ffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffff0000000000000000d4f4655fd4f4655fd4f4655f00"/8224, 0x2020, 0x2000}, {&(0x7f0000012600)="ed41000000100000d4f4655fd5f4655fd5f4655f00000000000004000800000000000000050000000800"/64, 0x40, 0x4200}, {&(0x7f0000012700)="200000001cc2eb501cc2eb5000000000d4f4655f00"/32, 0x20, 0x4280}, {&(0x7f0000012800)="c041000000300000d4f4655fd4f4655fd4f4655f0000000000000200180000000000000000000000090000000a0000000b00"/64, 0x40, 0x5400}, {&(0x7f0000012900)="20000000000000000000000000000000d4f4655f000000000000000000000000000002ea00"/64, 0x40, 0x5480}, {&(0x7f0000012a00)="ed4100003c000000d5f4655fd5f4655fd5f4655f0000000000000200000000000000001003000000020000000d0000001000050166696c65300000000e0000002800050766696c6531000000000000000000000000000000000000000000000000000000b698e28d000000000000000000000000000000000000000000000000200000001cc2eb501cc2eb501cc2eb50d5f4655f1cc2eb500000000000000000000002ea04070000000000000000000000000000646174610000000000000000", 0xc0, 0x5600}, {&(0x7f0000012b00)="ed8100001a040000d5f4655fd5f4655fd5f4655f00000000000001000800000000000000010000000c00000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000a20e8d2000000000000000000000000000000000000000000000000200000001cc2eb501cc2eb501cc2eb50d5f4655f1cc2eb500000000000000000", 0xa0, 0x5800}, {&(0x7f0000012c00)="ffa1000026000000d5f4655fd5f4655fd5f4655f00000000000001000000000000000000010000002f746d702f73797a2d696d61676567656e3631313037333137322f66696c65302f66696c65300000000000000000000000000000000000000000000015d4476a000000000000000000000000000000000000000000000000200000001cc2eb501cc2eb501cc2eb50d5f4655f1cc2eb500000000000000000", 0xa0, 0x5a00}, {&(0x7f0000012d00)="ed8100000a000000d5f4655fd5f4655fd5f4655f000000000000010000000000000000100100000073797a6b616c6c657273000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000008851284000000000000000000000000000000000000000000000000200000001cc2eb501cc2eb501cc2eb50d5f4655f1cc2eb500000000000000000000002ea040700000000000000000000000000006461746106015401000000000600000000000000786174747231000006014c0100000000060000000000000078617474723200"/256, 0x100, 0x5c00}, {&(0x7f0000012e00)="0000000000000000000000000000000078617474723200007861747472310000ed81000028230000d5f4655fd5f4655fd5f4655f00000000000002001800000000000000010000000d0000000e0000000f000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000f2c222a9000000000000000000000000000000000000000000000000200000001cc2eb501cc2eb501cc2eb50d5f4655f1cc2eb500000000000000000", 0xc0, 0x5de0}, {&(0x7f0000012f00)="ed81000064000000d5f4655fd5f4655fd5f4655f000000000000010000000000000000100100000073797a6b616c6c657273797a6b616c6c657273797a6b616c6c657273797a6b616c6c657273797a6b616c6c657273797a6b616c6c657273797a6b616c1705df1d000000000000000000000000000000000000000000000000200000001cc2eb501cc2eb501cc2eb50d5f4655f1cc2eb500000000000000000000002ea04073401000000002800000000000000646174610000000000000000", 0xc0, 0x6000}, {&(0x7f0000013000)='\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00lersyzkallersyzkallersyzkallersyzkallers', 0x40, 0x61c0}, {&(0x7f0000013100)="020000000c0001022e000000020000000c0002022e2e00000b00000014000a026c6f73742b666f756e6400000c0000001000050266696c65300000000f0000001000050166696c6531000000100000001000050166696c6532000000100000001000050166696c653300000011000000940f090166696c652e636f6c64000000", 0x80, 0x8000}, {&(0x7f0000013200)="0b0000000c0001022e000000020000000c0002022e2e000000000000e80f0000", 0x20, 0x9000}, {&(0x7f0000013300)="00000000001000"/32, 0x20, 0xa000}, {&(0x7f0000013400)="00000000001000"/32, 0x20, 0xb000}, {&(0x7f0000013500)='syzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkal\x00\x00\x00\x00\x00\x00', 0x420, 0xc000}], 0x0, &(0x7f0000013a00)) 10:13:06 executing program 1: r0 = syz_open_procfs(0x0, &(0x7f0000000200)='smaps\x00') preadv(r0, &(0x7f0000000100), 0x0, 0xfff, 0x0) r1 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000040), 0x2, 0x0) write$binfmt_aout(r1, &(0x7f0000000640)=ANY=[@ANYBLOB='\x00'/22], 0x20) read(r1, &(0x7f0000000100)=""/146, 0x92) preadv(r1, &(0x7f0000000080)=[{&(0x7f0000000000)=""/75, 0x4b}], 0x1, 0x3, 0x80) [ 277.004108] tmpfs: Unknown parameter 'sizg' [ 277.007907] EXT4-fs (loop7): mounted filesystem without journal. Opts: ,errors=continue 10:13:06 executing program 2: perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_emit_ethernet(0xa2, &(0x7f00000000c0)={@local, @random="94a36045c978", @void, {@ipv6={0x86dd, @tcp={0x0, 0x6, "afb6a5", 0x6c, 0x6, 0x0, @ipv4={'\x00', '\xff\xff', @remote}, @local, {[], {{0x0, 0x0, 0x41424344, 0x41424344, 0x0, 0x0, 0x1b, 0x0, 0x0, 0x0, 0x0, {[@timestamp={0x8, 0xa}, @timestamp={0x8, 0xa}, @exp_fastopen={0xfe, 0x7, 0xf989, "0e8b7a"}, @timestamp={0x8, 0xa}, @sack={0x5, 0x12, [0x0, 0x0, 0x0, 0x0]}, @mss={0x2, 0x4}, @sack={0x5, 0x1a, [0x81, 0xffff, 0x1ff, 0x7d, 0x0, 0x800]}]}}}}}}}}, 0x0) 10:13:06 executing program 7: openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x42, 0x0) r0 = socket$netlink(0x10, 0x3, 0x0) r1 = fcntl$dupfd(r0, 0x0, r0) getsockopt$netlink(r1, 0x10e, 0x0, 0x0, 0xfffffffffffffffe) r2 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000040), 0x2, 0x0) write$binfmt_aout(r2, &(0x7f0000000640), 0x20) read(r2, &(0x7f0000000100)=""/146, 0x92) sendmsg$nl_generic(r1, &(0x7f0000000080)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x20}, 0xc, &(0x7f0000000040)={&(0x7f0000000140)={0xfc, 0x3b, 0x300, 0x70bd29, 0x25dfdbfe, {0x3}, [@typed={0x8, 0x27, 0x0, 0x0, @fd=r2}, @generic="d0cafd8d21f29669c16a256f28b13f87815bda4ab9838c2f0ef067957fd156c90a811c1629c5d67af3c82ffc745d1517ef544e2f7b6ed9d05d103898a6e58c7637e237dd4cb9b9dbcdbd048d19f9835afde4fc6cbca7d4853aa546633d6f6648e860ff451aa4ef14ae4ca90b7b49a1ed7a07d889ef29a58a8fe698392a78a2d584ce5171af03fcc0778664507d315e0fc4473e9dabdf7b7781e5dfc157b7302097c37418b06500ab81a7df3d39a781b5a04a0df23fac646b317e2efa8a7d166064464ab8b348c7be08b2124e4d4da4775113815e430de39e", @typed={0x5, 0x87, 0x0, 0x0, @str='\x00'}]}, 0xfc}, 0x1, 0x0, 0x0, 0x8000}, 0x40000) openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x0, 0x0) io_uring_setup(0x26779, &(0x7f00000008c0)={0x0, 0x0, 0x10}) socket$inet6_udp(0xa, 0x2, 0x0) mq_notify(0xffffffffffffffff, &(0x7f00000000c0)={0x400000, 0x6, 0x2, @thr={0x0, 0x0}}) [ 277.059835] EXT4-fs (loop6): mounted filesystem without journal. Opts: ,errors=continue [ 277.064078] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=59 sclass=netlink_route_socket pid=5113 comm=syz-executor.7 [ 277.069285] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=59 sclass=netlink_route_socket pid=5113 comm=syz-executor.7 10:13:06 executing program 5: r0 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x46e2, 0x0) r1 = dup2(r0, r0) r2 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000040), 0x2, 0x0) mount$9p_fd(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f00000000c0), 0x2000000, &(0x7f00000004c0)={'trans=fd,', {'rfdno', 0x3d, r1}, 0x2c, {'wfdno', 0x3d, r2}, 0x2c, {[{@debug}, {@debug={'debug', 0x3d, 0x10001}}, {@version_u}], [{@hash}, {@euid_gt}, {@fsmagic={'fsmagic', 0x3d, 0xfffffffffffffffc}}, {@euid_eq={'euid', 0x3d, 0xffffffffffffffff}}]}}) 10:13:06 executing program 3: perf_event_open(&(0x7f0000001d80)={0x2, 0x80, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4, 0x0, @perf_bp={&(0x7f0000000340), 0xd}, 0x0, 0x0, 0x0, 0x0, 0x4, 0x20000, 0x0, 0x0, 0x4}, 0x0, 0xfffffffffffffffe, 0xffffffffffffffff, 0x0) r0 = socket$inet(0x2, 0x1, 0x0) r1 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000300)='/proc/partitions\x00', 0x0, 0x0) ioctl$sock_inet_SIOCADDRT(r1, 0x890b, &(0x7f00000000c0)={0x0, {0x2, 0x4e22, @broadcast}, {0x2, 0x4e20, @loopback}, {0x2, 0x4e20, @broadcast}, 0x20, 0x0, 0x0, 0x0, 0xfc, &(0x7f0000000080)='bond_slave_1\x00', 0x6aa87d12, 0xfffffffffffffffb, 0x7}) ioctl$sock_inet_SIOCGARP(r0, 0x8955, &(0x7f0000000000)={{0x2, 0x0, @broadcast}, {0x1, @broadcast}, 0x12, {0x2, 0x0, @private=0x9}, 'lo\x00'}) getsockopt$ARPT_SO_GET_ENTRIES(r0, 0x0, 0x61, &(0x7f0000000200)={'filter\x00', 0x5f, "9e6ccbe8ec0f99e5e1090e6de930d2cd60fb0a463d35a775cf596bf6a7152a48c00f49b1edb3f903e6b54c8377582ab84db668a9292a79f64965fd0662a04d2df8898d76629d20e83891e0b1eac09711872da204196bdf1d6793318c3962e4"}, &(0x7f00000002c0)=0x83) r2 = socket$inet(0x2, 0x1, 0x0) setsockopt$inet_int(r2, 0x0, 0x13, &(0x7f0000000180)=0x1, 0x4) bind$inet(r2, &(0x7f0000000c00)={0x2, 0x0, @multicast2}, 0x10) setsockopt$inet_mreqsrc(r2, 0x0, 0x27, &(0x7f0000000140)={@multicast2, @private=0xa010102, @local}, 0xc) r3 = socket$inet(0x2, 0x1, 0x0) setsockopt$inet_int(r3, 0x0, 0x13, &(0x7f0000000180)=0x1, 0x4) bind$inet(r3, &(0x7f0000000c00)={0x2, 0x0, @multicast2}, 0x10) bind$inet(r3, &(0x7f00000001c0)={0x2, 0x4e22, @private=0xa010101}, 0x10) 10:13:06 executing program 1: r0 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x46e2, 0x0) r1 = dup2(r0, r0) r2 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000040), 0x2, 0x0) write$binfmt_aout(r2, &(0x7f0000000200)=ANY=[@ANYBLOB="000000000000000000000000000200000000010000000000000000000000000050fccefbf10dcbf8e699c4746b2726bb37dc9916b61154f45febad914026116e8e9d581162331503abe7fe2f7e2bc318ee16226555d6f2075aa28a5be86dd874817ff91ff951ccd1db0aeb37223d2ffe033c17acec25378e13799bc1656dab68f5cc594cedb51340e91fd73b49a9e944e210ed78c63ad827f66b8ad25b4ecb74ab7f6e65f31669c4e79f5fd8d49cea2eb65b5c54ab87a49131eeccabd8"], 0x20) mount$9p_fd(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f00000000c0), 0x2000000, &(0x7f00000004c0)={'trans=fd,', {'rfdno', 0x3d, r1}, 0x2c, {'wfdno', 0x3d, r2}, 0x2c, {[{@debug}, {@debug={'debug', 0x3d, 0x10001}}, {@version_u}], [{@hash}, {@euid_gt}, {@fsmagic={'fsmagic', 0x3d, 0xfffffffffffffffc}}, {@euid_eq={'euid', 0x3d, 0xffffffffffffffff}}]}}) 10:13:06 executing program 7: r0 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x105142, 0x0) r1 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0) copy_file_range(r1, 0x0, r0, 0x0, 0x200f5ef, 0x0) r2 = syz_mount_image$iso9660(&(0x7f0000000040), &(0x7f0000000080)='./file1\x00', 0x0, 0x0, &(0x7f0000001640), 0x10018c6, &(0x7f0000000200)=ANY=[]) ioctl$FS_IOC_RESVSP(r2, 0x40305828, &(0x7f00000000c0)={0x0, 0x3, 0x8, 0x9}) r3 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x105142, 0x0) syz_mount_image$nfs(0x0, 0x0, 0x8000000000000, 0x0, &(0x7f0000001400), 0x0, 0x0) statx(r0, &(0x7f0000001740)='./file0\x00', 0x6000, 0x800, &(0x7f0000001780)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0}) syz_mount_image$iso9660(&(0x7f00000001c0), &(0x7f0000000200)='./file1\x00', 0x432, 0x7, &(0x7f0000001680)=[{&(0x7f0000000240)="031b39432c84cffdcab38c01021017a38f4875cc5ae23266d266a51e81127c08ccd19afd431693b1ff03fba771", 0x2d, 0x3c65}, {&(0x7f0000000280)="f7d0ae80a598c8ea4f20b574f0607bd245c685f2d6755ed8e03866ef9770e47431b2870abc82456a6bb5ccba518ea432f87a8dd9f2a960556e95e22f71a03548f0", 0x41, 0x2}, {&(0x7f0000000300)="4b0e0564e4699469eb10fa7e4cc4c394f944d7913311b3d64085ddba6bc7c618c99faa1d36fd54e87c098918fdb9d16292b9efee3d71be892936cf6117d349d96c4c8076eb3f8b5fb0da27bb2b7c87be4fba05d875fd1fa766af1d9dcfe6b55f1f39d3c6f1120483a7868ce0e9eebfb9db1b2ae74bf09b9d0c00d023b17aaf8df2d9ae16f6f137f41886abf7cbe113650a4f1b3e867d422ec8b35a82372d60f72425b9", 0xa3, 0xb6}, {&(0x7f00000003c0)="11195406d3a0004ace4a507f40509eef86867c0e0df1fffcd654101a974e308f119b0d15c220ebb2021253113b0630ab62ff279e606293403a50f471a340a3eea03c539c337637e8d17b547aadeb43bcd56606756c5dea315eec0f0e194e0dc3145ae5d91a83f03d4230224d44b8cdfe0b65be46eef629d3fef0b8885b7b2b231ea9372d61b200aa6251a243fd2a553223780272500cc1c8772c9a6314b91d679b414cebaef01ad1e89b43872028608c0ca9aee6cd1401447621dd9b1ee795fd5e279ee57fb6fd47dfa277042f282d6c1e2395406f7b6537d98b9d0008", 0xdd, 0x55b}, {&(0x7f00000004c0)="cfaa39ffb22138bd46182fb7dd5c639d9dca8a25cca9a5d565c16d33351ae4b1e6aad6903621f38e96da53a1785c6dfc035d7fe1f4dc889619226d5582d51503ccc7618fd1471a783f3ac91131fc631737d20f1dc5c80733bc7aa2b7e6d62eee226cb7c7d8485f24001c44206dce737aff642c547ea892b4e3da0af5b5746eb529a22d07dfc7ceb25cdc4435fad0f8e19dbd036814c9aba3746a3d9f7e54e6c044e364ea3ae285e8a56313a2e22d6c523807839bbe8a0348db84cd7008333b3269ac758b609f35d067e8e598f9b455ff3b7c042f971ba6ac50cf3da72aa5a635552af71d20fca101c5244067852ad43445338bf40eb8412b26", 0xf9, 0xf30d}, {&(0x7f00000005c0)="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", 0x1000}, {&(0x7f00000015c0)="1d29033d838fbe63c3113997f4ad2307b142c4d42f6a48d576ea888a80c27f1e2a7362caaff9cc30403901f586b32f5371dffb75708ac8fbda50f18d6cff31f6b397ac3fce00d657dfc84a4d15026af959f7c75b1f5d0c3ed8e60d2b2034be7f836fe22ff801a48a220f82ea229c23ca02a7390d08ba3625b8e6b0d18d5627512f0f75dd26d9", 0x86, 0x81}], 0x1200804, &(0x7f0000001880)={[{@sbsector={'sbsector', 0x3d, 0x4}}, {@gid={'gid', 0x3d, r4}}, {@nojoliet}, {@sbsector={'sbsector', 0x3d, 0x8001}}, {@iocharset={'iocharset', 0x3d, 'cp932'}}], [{@fscontext={'fscontext', 0x3d, 'root'}}]}) sendfile(r3, r0, 0x0, 0x7ffffff9) fstat(r0, &(0x7f0000000140)) lchown(0x0, 0x0, 0x0) 10:13:07 executing program 6: r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) ioctl$sock_SIOCGIFINDEX_802154(0xffffffffffffffff, 0x8933, &(0x7f00000000c0)={'wpan1\x00', 0x0}) sendmsg$NL802154_CMD_DEL_SEC_KEY(r0, &(0x7f00000002c0)={&(0x7f0000000080)={0x10, 0x0, 0x0, 0x80}, 0xc, &(0x7f0000000280)={&(0x7f0000000140)={0x134, 0x0, 0x1, 0x70bd2b, 0x25dfdbff, {}, [@NL802154_ATTR_WPAN_DEV={0xc, 0x6, 0x200000002}, @NL802154_ATTR_IFINDEX={0x8}, @NL802154_ATTR_IFINDEX={0x8, 0x3, r1}, @NL802154_ATTR_SEC_KEY={0xc8, 0x25, 0x0, 0x1, [@NL802154_KEY_ATTR_ID={0xc, 0x1, 0x0, 0x1, [@NL802154_KEY_ID_ATTR_INDEX={0x5, 0x2, 0x3}]}, @NL802154_KEY_ATTR_ID={0x3c, 0x1, 0x0, 0x1, [@NL802154_KEY_ID_ATTR_SOURCE_EXTENDED={0xc}, @NL802154_KEY_ID_ATTR_IMPLICIT={0x2c, 0x3, 0x0, 0x1, [@NL802154_DEV_ADDR_ATTR_EXTENDED={0xc, 0x4, {0x300}}, @NL802154_DEV_ADDR_ATTR_SHORT={0x6, 0x3, 0xaaa0}, @NL802154_DEV_ADDR_ATTR_EXTENDED={0xc, 0x4, {0xaaaaaaaaaaaa0302}}, @NL802154_DEV_ADDR_ATTR_SHORT={0x6, 0x3, 0xaaa0}]}]}, @NL802154_KEY_ATTR_BYTES={0x14, 0x4, "cfb31f55230ecd4b990208fac0b4702f"}, @NL802154_KEY_ATTR_ID={0x68, 0x1, 0x0, 0x1, [@NL802154_KEY_ID_ATTR_SOURCE_SHORT={0x8, 0x4, 0x400}, @NL802154_KEY_ID_ATTR_IMPLICIT={0x54, 0x3, 0x0, 0x1, [@NL802154_DEV_ADDR_ATTR_EXTENDED={0xc, 0x4, {0xaaaaaaaaaaaa0102}}, @NL802154_DEV_ADDR_ATTR_MODE={0x8}, @NL802154_DEV_ADDR_ATTR_MODE={0x8, 0x2, 0x2}, @NL802154_DEV_ADDR_ATTR_SHORT={0x6, 0x3, 0xffff}, @NL802154_DEV_ADDR_ATTR_SHORT={0x6}, @NL802154_DEV_ADDR_ATTR_SHORT={0x6, 0x3, 0xaaa3}, @NL802154_DEV_ADDR_ATTR_PAN_ID={0x6, 0x1, 0xffff}, @NL802154_DEV_ADDR_ATTR_EXTENDED={0xc, 0x4, {0xaaaaaaaaaaaa0002}}, @NL802154_DEV_ADDR_ATTR_SHORT={0x6, 0x3, 0xaaa0}]}, @NL802154_KEY_ID_ATTR_MODE={0x8, 0x1, 0x2}]}]}, @NL802154_ATTR_SEC_KEY={0x30, 0x25, 0x0, 0x1, [@NL802154_KEY_ATTR_USAGE_FRAMES={0x5, 0x2, 0xe9}, @NL802154_KEY_ATTR_USAGE_CMDS={0x24, 0x3, "161b643fb47e5a348a4b41680b34de501c1c857acdfabdc0f9f4e4691b2cf682"}]}, @NL802154_ATTR_WPAN_DEV={0xc}]}, 0x134}, 0x1, 0x0, 0x0, 0x4000000}, 0x10) r2 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) r3 = syz_genetlink_get_family_id$netlbl_mgmt(&(0x7f0000000600), r2) sendmsg$NLBL_MGMT_C_ADDDEF(r2, &(0x7f0000000700)={0x0, 0x0, &(0x7f00000006c0)={&(0x7f0000000640)={0x24, r3, 0xa1c047e168b2633, 0x0, 0x0, {}, [@NLBL_MGMT_A_PROTOCOL={0x8}, @NLBL_MGMT_A_DOMAIN={0x8, 0x8, '-)%\x00'}]}, 0x24}}, 0x0) ioctl$sock_SIOCGIFINDEX_802154(r2, 0x8933, &(0x7f0000000300)={'wpan3\x00'}) syz_mount_image$ext4(&(0x7f0000000000)='ext2\x00', &(0x7f0000000100)='./file0\x00', 0xef3b, 0xab4, &(0x7f0000000140), 0x1001, &(0x7f0000000180)=ANY=[]) rmdir(&(0x7f0000000040)='./file0\x00') syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) 10:13:07 executing program 2: r0 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x42, 0x0) ioctl$FS_IOC_SETFLAGS(r0, 0x40086602, &(0x7f00000003c0)) io_setup(0x5, &(0x7f0000000080)=0x0) io_submit(r1, 0x1, &(0x7f00000008c0)=[&(0x7f0000000200)={0x0, 0x0, 0x5, 0x1, 0x0, r0, &(0x7f0000000140)="ee", 0x1, 0x800000}]) r2 = openat(0xffffffffffffff9c, &(0x7f0000000280)='./file0\x00', 0x307542, 0x0) r3 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0) copy_file_range(r3, 0x0, r2, 0x0, 0x200f5ef, 0x0) io_setup(0x0, &(0x7f00000000c0)) r4 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x0, 0x0) r5 = openat$bsg(0xffffffffffffff9c, &(0x7f0000000340), 0x40080, 0x0) r6 = eventfd2(0x4, 0x80000) io_submit(0x0, 0x3, &(0x7f0000000740)=[&(0x7f0000000440)={0x0, 0x0, 0x0, 0x0, 0x13, 0xffffffffffffffff, &(0x7f00000002c0)="43b09fe301da563a6dd6dc8a29b5850f943de21aac6540651999eb96762871c5978973579d474ee0a80b63cf9f78295eb41152c0e735793d883aecba84431eec629954c3a5e4435986a36f1980cc5374c6175fa17d95112945982e980cb606366b2a24a64451580f03185fd36282e8", 0x6f, 0x7fff, 0x0, 0x1, r5}, &(0x7f0000000480)={0x0, 0x0, 0x0, 0x8, 0x9, r4, &(0x7f0000000540)="24d6ee4dd8ee54aad06de84312856877b6174f475656f19e8cd4bf509007c4229c82dc1fe3cac3165c3bd83ad2e6ee3cc0ae9b1f25e2511bbca5e9585641d7e4020c1f0ea76546876c6c6857e9aabe36c6b91b75adc1ad428c9038631579f36946856fbbed9374cfe71007d1628e6f3fc5515e32f12160f8c6f4a9f0f8e14606b4ce2455ea207b8aeb36", 0x8a, 0x969, 0x0, 0x2, r6}, &(0x7f0000000700)={0x0, 0x0, 0x0, 0x6, 0x4, r2, &(0x7f0000000600)="9b97b158902f33d35a7cdf0c39c7218e60315d3064b4f87365799cbad34639cb8946fb9181d25d97647adafb4e53b20cb29c365af14322d8e8c9145625e1bf13109af0bfc8ef17b998812f92d30fab118ed5fb2edf7967af6d19980fbfe8cb0c48c30f149a2fd820ac198531acf049cf94ead13d4bf9d97026cde82b5e3c244b04df627a8cd967b9fc0da6a54e526fb6cedc7ce1a2ca905665f043b153bdac7e2cef9d2aefa66621cce387976a66de14f4fff34a0c66aab195fb085c7f3cc796d44f9eca1a59d3280ab0cae9767d647e5ca49145", 0xd4, 0xfffffffffffffffa, 0x0, 0x2}]) getpeername(r3, &(0x7f0000000180)=@pppol2tpv3in6={0x18, 0x1, {0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, {0xa, 0x0, 0x0, @private2}}}, &(0x7f0000000040)=0x80) utimes(&(0x7f00000004c0)='./file0\x00', &(0x7f0000000500)={{0x77359400}}) accept(0xffffffffffffffff, 0x0, &(0x7f0000000240)) fallocate(0xffffffffffffffff, 0x0, 0x0, 0x0) r7 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0) copy_file_range(r7, 0x0, r4, 0x0, 0x200f5ef, 0x0) clock_gettime(0x0, &(0x7f0000000380)) io_pgetevents(0x0, 0x8000, 0x0, 0x0, &(0x7f0000000400), 0x0) 10:13:07 executing program 1: r0 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x46e2, 0x0) r1 = dup2(r0, r0) r2 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000040), 0x2, 0x0) write$binfmt_aout(r2, &(0x7f0000000200)=ANY=[@ANYBLOB="000000000000000000000000000200000000010000000000000000000000000050fccefbf10dcbf8e699c4746b2726bb37dc9916b61154f45febad914026116e8e9d581162331503abe7fe2f7e2bc318ee16226555d6f2075aa28a5be86dd874817ff91ff951ccd1db0aeb37223d2ffe033c17acec25378e13799bc1656dab68f5cc594cedb51340e91fd73b49a9e944e210ed78c63ad827f66b8ad25b4ecb74ab7f6e65f31669c4e79f5fd8d49cea2eb65b5c54ab87a49131eeccabd8"], 0x20) mount$9p_fd(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f00000000c0), 0x2000000, &(0x7f00000004c0)={'trans=fd,', {'rfdno', 0x3d, r1}, 0x2c, {'wfdno', 0x3d, r2}, 0x2c, {[{@debug}, {@debug={'debug', 0x3d, 0x10001}}, {@version_u}], [{@hash}, {@euid_gt}, {@fsmagic={'fsmagic', 0x3d, 0xfffffffffffffffc}}, {@euid_eq={'euid', 0x3d, 0xffffffffffffffff}}]}}) [ 277.776204] tmpfs: Unknown parameter 'sizg' 10:13:18 executing program 1: r0 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x46e2, 0x0) r1 = dup2(r0, r0) r2 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000040), 0x2, 0x0) write$binfmt_aout(r2, &(0x7f0000000200)=ANY=[@ANYBLOB="000000000000000000000000000200000000010000000000000000000000000050fccefbf10dcbf8e699c4746b2726bb37dc9916b61154f45febad914026116e8e9d581162331503abe7fe2f7e2bc318ee16226555d6f2075aa28a5be86dd874817ff91ff951ccd1db0aeb37223d2ffe033c17acec25378e13799bc1656dab68f5cc594cedb51340e91fd73b49a9e944e210ed78c63ad827f66b8ad25b4ecb74ab7f6e65f31669c4e79f5fd8d49cea2eb65b5c54ab87a49131eeccabd8"], 0x20) mount$9p_fd(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f00000000c0), 0x2000000, &(0x7f00000004c0)={'trans=fd,', {'rfdno', 0x3d, r1}, 0x2c, {'wfdno', 0x3d, r2}, 0x2c, {[{@debug}, {@debug={'debug', 0x3d, 0x10001}}, {@version_u}], [{@hash}, {@euid_gt}, {@fsmagic={'fsmagic', 0x3d, 0xfffffffffffffffc}}, {@euid_eq={'euid', 0x3d, 0xffffffffffffffff}}]}}) 10:13:18 executing program 0: ioctl$sock_SIOCGIFINDEX_802154(0xffffffffffffffff, 0x8933, &(0x7f0000000240)={'wpan3\x00'}) r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$nl802154(&(0x7f00000006c0), r0) sendmsg$NL802154_CMD_SET_CCA_MODE(0xffffffffffffffff, &(0x7f0000000780)={&(0x7f0000000680), 0xc, &(0x7f0000000740)={&(0x7f0000000380)=ANY=[@ANYBLOB="1c000000", @ANYRES16=r1, @ANYBLOB="080028bd7000fddbdf250d00000008000300", @ANYRES32=0x0, @ANYBLOB="9f7e20717095eb042acb8f"], 0x1c}}, 0x10) ioctl$sock_SIOCGIFINDEX_802154(0xffffffffffffffff, 0x8933, &(0x7f00000000c0)={'wpan1\x00', 0x0}) sendmsg$NL802154_CMD_DEL_SEC_KEY(0xffffffffffffffff, &(0x7f0000000280)={&(0x7f0000000080)={0x10, 0x0, 0x0, 0x200000}, 0xc, &(0x7f0000000240)={&(0x7f0000000100)=ANY=[@ANYBLOB="c0000000", @ANYRES16=r1, @ANYBLOB="00012dbd7000fddbdf251800000008000300", @ANYRES32=0x0, @ANYBLOB="9000258014000400d9b35a16820057e3a054740e780aa98305000200800000000c000180050002000300004005000200d800000024000300059eedfcd6ac1a5c32f321393811f4e1c785b6a99ccf533c75d5e7138b7666f514000400e3ba46a2a1a1d11b36a4103d57ab947624000300e14b29ee2dbf5c0c40c4f2e8ac7575bb88d698a7e70747e70816c7503a80cf3008000300", @ANYRES32=r2, @ANYBLOB], 0xc0}, 0x1, 0x0, 0x0, 0x48045}, 0x20000883) r3 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) sendmsg$NL802154_CMD_SET_CHANNEL(r3, &(0x7f00000001c0)={&(0x7f0000000100), 0xc, &(0x7f0000000180)={&(0x7f0000000140)={0x14, 0x0, 0x4}, 0x14}, 0x1, 0x0, 0x0, 0x40000}, 0x0) ioctl$sock_SIOCGIFINDEX_802154(r3, 0x8933, &(0x7f0000000240)={'wpan3\x00'}) r4 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) r5 = syz_genetlink_get_family_id$nl802154(&(0x7f00000006c0), r4) sendmsg$NL802154_CMD_SET_CCA_MODE(0xffffffffffffffff, &(0x7f0000000780)={&(0x7f0000000680), 0xc, &(0x7f0000000740)={&(0x7f0000000380)=ANY=[@ANYBLOB="1c000000", @ANYRES16=r5, @ANYBLOB="080028bd7000fddbdf250d00000008000300", @ANYRES32=0x0, @ANYBLOB="9f7e20717095eb042acb8f"], 0x1c}}, 0x10) ioctl$sock_SIOCGIFINDEX_802154(0xffffffffffffffff, 0x8933, &(0x7f00000000c0)={'wpan1\x00', 0x0}) sendmsg$NL802154_CMD_DEL_SEC_KEY(r3, &(0x7f0000000280)={&(0x7f0000000080)={0x10, 0x0, 0x0, 0x200000}, 0xc, &(0x7f0000000240)={&(0x7f0000000100)=ANY=[@ANYBLOB="c0000000", @ANYRES16=r5, @ANYBLOB="00012dbd7000fddbdf251800000008000300", @ANYRES32=0x0, @ANYBLOB="9000258014000400d9b35a16820057e3a054740e780aa98305000200800000000c000180050002000300004005000200d800000024000300059eedfcd6ac1a5c32f321393811f4e1c785b6a99ccf533c75d5e7138b7666f514000400e3ba46a2a1a1d11b36a4103d57ab947624000300e14b29ee2dbf5c0c40c4f2e8ac7575bb88d698a7e70747e70816c7503a80cf3008000300", @ANYRES32=r6, @ANYBLOB], 0xc0}, 0x1, 0x0, 0x0, 0x48045}, 0x20000883) sendmsg$IEEE802154_LLSEC_DEL_DEV(0xffffffffffffffff, &(0x7f0000000200)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x22100002}, 0xc, &(0x7f0000000100)={&(0x7f0000000280)={0x4c, 0x0, 0x100, 0x70bd25, 0x25dfdbfd, {}, [@IEEE802154_ATTR_HW_ADDR={0xc}, @IEEE802154_ATTR_HW_ADDR={0xc, 0x5, {0xaaaaaaaaaaaa0002}}, @IEEE802154_ATTR_DEV_INDEX={0x8}, @IEEE802154_ATTR_DEV_INDEX={0x8}, @IEEE802154_ATTR_DEV_INDEX={0x8, 0x2, r2}, @IEEE802154_ATTR_DEV_INDEX={0x8, 0x2, r6}]}, 0x4c}, 0x1, 0x0, 0x0, 0x24008841}, 0x10) r7 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x46e2, 0x0) r8 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffd000/0x3000)=nil, 0x3000, 0x0, 0x13, r7, 0x0) syz_io_uring_submit(r8, 0x0, &(0x7f0000000240)=@IORING_OP_FADVISE={0x18, 0x0, 0x0, @fd, 0x2}, 0x0) sigaltstack(&(0x7f0000ffd000/0x1000)=nil, 0x0) 10:13:18 executing program 5: r0 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x46e2, 0x0) r1 = dup2(r0, r0) mount$9p_fd(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f00000000c0), 0x2000000, &(0x7f00000004c0)={'trans=fd,', {'rfdno', 0x3d, r1}, 0x2c, {}, 0x2c, {[{@debug}, {@debug={'debug', 0x3d, 0x10001}}, {@version_u}], [{@hash}, {@euid_gt}, {@fsmagic={'fsmagic', 0x3d, 0xfffffffffffffffc}}, {@euid_eq={'euid', 0x3d, 0xffffffffffffffff}}]}}) 10:13:18 executing program 3: r0 = syz_open_procfs(0xffffffffffffffff, &(0x7f00000000c0)='comm\x00') read$snapshot(r0, &(0x7f0000000240)=""/255, 0xff) write$snapshot(r0, &(0x7f0000000100)="3a86340fd4e5bd415dab14e72ca571f2a0f68f26488cfce85c54b624b40ba5cd43d1b393369fc97c86d2332ee8875f733e08672e1ec22f6891d633ce8066347949646e3c65447adf9c96cec7bda6a40cd0ec4e6aca91754a60c527eccf54c695167705b5fe980f084a48427fe8560c9fb6d66a74326139575618ed24dea7f38db9bbdd4a05c5320a394e28b078ef3bd866e52ab4cfd60a9ff059f1bae33c6c7908857aa98f62ac1b4836645c50f29e030228de20cb076f36be2b1e7b8ed748b268f70dab180af6ff52c57fa4eab9f7e990eb9a3e8a64729d29c7f95481232a23112a0b3b7556c0084cedd45fcd477396ca30af17395401794e", 0xf9) pipe(&(0x7f0000000000)) r1 = openat$tun(0xffffffffffffff9c, &(0x7f0000000040), 0x90480, 0x0) fchown(r1, 0x0, 0xee01) 10:13:18 executing program 2: fcntl$setstatus(0xffffffffffffffff, 0x4, 0x42000) perf_event_open(&(0x7f0000001d80)={0x2, 0x80, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = fork() fcntl$setownex(0xffffffffffffffff, 0xf, &(0x7f0000000100)={0x2, r0}) write(0xffffffffffffffff, &(0x7f0000000140)="5c69dc499ce3177705741f30381310b3980fb9a9e34c2cd3db7d1f5cd66c8270fd0c5c49e10386d11aa95d87179d97c007898f1141b675e0a9dfb724f5c001be0ea7325d2ad595037ba8d4619ebd6d33d90511fc7151e5a06dfaf259ee5379cbc916d15ce9ec955b0af09032aa32e20e9476366209f7b4acb071abc163453ae94244627da561fccb09fffe2f1e710564fa0808d85b0d2f697f16726d8ad782af6fdbceaf527a2d128969f5e9b7d3bbe76ce62bc338f9bc2fe2", 0xb9) write$P9_RATTACH(0xffffffffffffffff, &(0x7f00000000c0)={0x14}, 0x14) 10:13:18 executing program 7: r0 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x105142, 0x0) r1 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0) copy_file_range(r1, 0x0, r0, 0x0, 0x200f5ef, 0x0) r2 = syz_mount_image$iso9660(&(0x7f0000000040), &(0x7f0000000080)='./file1\x00', 0x0, 0x0, &(0x7f0000001640), 0x10018c6, &(0x7f0000000200)=ANY=[]) ioctl$FS_IOC_RESVSP(r2, 0x40305828, &(0x7f00000000c0)={0x0, 0x3, 0x8, 0x9}) r3 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x105142, 0x0) syz_mount_image$nfs(0x0, 0x0, 0x8000000000000, 0x0, &(0x7f0000001400), 0x0, 0x0) statx(r0, &(0x7f0000001740)='./file0\x00', 0x6000, 0x800, &(0x7f0000001780)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0}) syz_mount_image$iso9660(&(0x7f00000001c0), &(0x7f0000000200)='./file1\x00', 0x432, 0x7, &(0x7f0000001680)=[{&(0x7f0000000240)="031b39432c84cffdcab38c01021017a38f4875cc5ae23266d266a51e81127c08ccd19afd431693b1ff03fba771", 0x2d, 0x3c65}, {&(0x7f0000000280)="f7d0ae80a598c8ea4f20b574f0607bd245c685f2d6755ed8e03866ef9770e47431b2870abc82456a6bb5ccba518ea432f87a8dd9f2a960556e95e22f71a03548f0", 0x41, 0x2}, {&(0x7f0000000300)="4b0e0564e4699469eb10fa7e4cc4c394f944d7913311b3d64085ddba6bc7c618c99faa1d36fd54e87c098918fdb9d16292b9efee3d71be892936cf6117d349d96c4c8076eb3f8b5fb0da27bb2b7c87be4fba05d875fd1fa766af1d9dcfe6b55f1f39d3c6f1120483a7868ce0e9eebfb9db1b2ae74bf09b9d0c00d023b17aaf8df2d9ae16f6f137f41886abf7cbe113650a4f1b3e867d422ec8b35a82372d60f72425b9", 0xa3, 0xb6}, {&(0x7f00000003c0)="11195406d3a0004ace4a507f40509eef86867c0e0df1fffcd654101a974e308f119b0d15c220ebb2021253113b0630ab62ff279e606293403a50f471a340a3eea03c539c337637e8d17b547aadeb43bcd56606756c5dea315eec0f0e194e0dc3145ae5d91a83f03d4230224d44b8cdfe0b65be46eef629d3fef0b8885b7b2b231ea9372d61b200aa6251a243fd2a553223780272500cc1c8772c9a6314b91d679b414cebaef01ad1e89b43872028608c0ca9aee6cd1401447621dd9b1ee795fd5e279ee57fb6fd47dfa277042f282d6c1e2395406f7b6537d98b9d0008", 0xdd, 0x55b}, {&(0x7f00000004c0)="cfaa39ffb22138bd46182fb7dd5c639d9dca8a25cca9a5d565c16d33351ae4b1e6aad6903621f38e96da53a1785c6dfc035d7fe1f4dc889619226d5582d51503ccc7618fd1471a783f3ac91131fc631737d20f1dc5c80733bc7aa2b7e6d62eee226cb7c7d8485f24001c44206dce737aff642c547ea892b4e3da0af5b5746eb529a22d07dfc7ceb25cdc4435fad0f8e19dbd036814c9aba3746a3d9f7e54e6c044e364ea3ae285e8a56313a2e22d6c523807839bbe8a0348db84cd7008333b3269ac758b609f35d067e8e598f9b455ff3b7c042f971ba6ac50cf3da72aa5a635552af71d20fca101c5244067852ad43445338bf40eb8412b26", 0xf9, 0xf30d}, {&(0x7f00000005c0)="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", 0x1000}, {&(0x7f00000015c0)="1d29033d838fbe63c3113997f4ad2307b142c4d42f6a48d576ea888a80c27f1e2a7362caaff9cc30403901f586b32f5371dffb75708ac8fbda50f18d6cff31f6b397ac3fce00d657dfc84a4d15026af959f7c75b1f5d0c3ed8e60d2b2034be7f836fe22ff801a48a220f82ea229c23ca02a7390d08ba3625b8e6b0d18d5627512f0f75dd26d9", 0x86, 0x81}], 0x1200804, &(0x7f0000001880)={[{@sbsector={'sbsector', 0x3d, 0x4}}, {@gid={'gid', 0x3d, r4}}, {@nojoliet}, {@sbsector={'sbsector', 0x3d, 0x8001}}, {@iocharset={'iocharset', 0x3d, 'cp932'}}], [{@fscontext={'fscontext', 0x3d, 'root'}}]}) sendfile(r3, r0, 0x0, 0x7ffffff9) fstat(r0, &(0x7f0000000140)) lchown(0x0, 0x0, 0x0) 10:13:18 executing program 6: r0 = perf_event_open(&(0x7f0000000040)={0x2, 0xfffffffffffffecf, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r1 = openat$procfs(0xffffffffffffff9c, &(0x7f00000000c0)='/proc/crypto\x00', 0x0, 0x0) sendfile(r0, r1, &(0x7f0000000100)=0x5, 0x300000000) r2 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000040), 0x2, 0x0) write$binfmt_aout(r2, &(0x7f0000000640), 0x20) read(r2, &(0x7f0000000100)=""/146, 0x92) r3 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000040), 0x0, 0x0) write$binfmt_aout(r3, &(0x7f0000000640)=ANY=[@ANYBLOB="0000000000000000000024680de420cb92bb00"/32], 0x20) r4 = socket$nl_route(0x10, 0x3, 0x0) ioctl$BTRFS_IOC_DEFAULT_SUBVOL(r4, 0x40089413, &(0x7f0000000200)=0x6) read(r3, &(0x7f0000000100)=""/146, 0x92) ioctl$TIOCGSID(r3, 0x5429, &(0x7f00000001c0)) close(r2) r5 = syz_open_dev$ttys(0xc, 0x2, 0x1) ioctl$EXT4_IOC_GROUP_ADD(r5, 0x40286608, &(0x7f0000000000)={0x2, 0x4, 0x81, 0x6, 0x800, 0x1}) 10:13:18 executing program 4: perf_event_open(&(0x7f0000001d80)={0x2, 0x80, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = syz_open_dev$tty1(0xc, 0x4, 0x1) r1 = dup2(r0, r0) r2 = syz_io_uring_complete(0x0) ioctl$TIOCGPTPEER(r2, 0x5441, 0x80000) readv(r1, &(0x7f00000000c0)=[{&(0x7f0000000000)=""/140, 0x8c}], 0x1) ioctl$KDSETMODE(r1, 0x4b45, 0x2) [ 288.749226] 9pnet: Insufficient options for proto=fd 10:13:18 executing program 3: r0 = syz_open_procfs(0xffffffffffffffff, &(0x7f00000000c0)='comm\x00') read$snapshot(r0, &(0x7f0000000240)=""/255, 0xff) write$snapshot(r0, &(0x7f0000000100)="3a86340fd4e5bd415dab14e72ca571f2a0f68f26488cfce85c54b624b40ba5cd43d1b393369fc97c86d2332ee8875f733e08672e1ec22f6891d633ce8066347949646e3c65447adf9c96cec7bda6a40cd0ec4e6aca91754a60c527eccf54c695167705b5fe980f084a48427fe8560c9fb6d66a74326139575618ed24dea7f38db9bbdd4a05c5320a394e28b078ef3bd866e52ab4cfd60a9ff059f1bae33c6c7908857aa98f62ac1b4836645c50f29e030228de20cb076f36be2b1e7b8ed748b268f70dab180af6ff52c57fa4eab9f7e990eb9a3e8a64729d29c7f95481232a23112a0b3b7556c0084cedd45fcd477396ca30af17395401794e", 0xf9) pipe(&(0x7f0000000000)) r1 = openat$tun(0xffffffffffffff9c, &(0x7f0000000040), 0x90480, 0x0) fchown(r1, 0x0, 0xee01) 10:13:18 executing program 5: r0 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x46e2, 0x0) r1 = dup2(r0, r0) mount$9p_fd(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f00000000c0), 0x2000000, &(0x7f00000004c0)={'trans=fd,', {'rfdno', 0x3d, r1}, 0x2c, {}, 0x2c, {[{@debug}, {@debug={'debug', 0x3d, 0x10001}}, {@version_u}], [{@hash}, {@euid_gt}, {@fsmagic={'fsmagic', 0x3d, 0xfffffffffffffffc}}, {@euid_eq={'euid', 0x3d, 0xffffffffffffffff}}]}}) 10:13:18 executing program 1: r0 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x46e2, 0x0) r1 = dup2(r0, r0) r2 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000040), 0x2, 0x0) mount$9p_fd(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f00000000c0), 0x2000000, &(0x7f00000004c0)={'trans=fd,', {'rfdno', 0x3d, r1}, 0x2c, {'wfdno', 0x3d, r2}, 0x2c, {[{@debug}, {@debug={'debug', 0x3d, 0x10001}}, {@version_u}], [{@hash}, {@euid_gt}, {@fsmagic={'fsmagic', 0x3d, 0xfffffffffffffffc}}, {@euid_eq={'euid', 0x3d, 0xffffffffffffffff}}]}}) 10:13:18 executing program 2: syz_mount_image$ext4(&(0x7f0000000040)='ext2\x00', &(0x7f0000000100)='./file0\x00', 0x40000, 0x4, &(0x7f0000000200)=[{&(0x7f0000010000)="2000000080000000060000006a0000000f000000000000000100000001000000004000000040000020000000e0f4655fe0f4655f0100ffff53ef010001000000dff4655f000000000000000001000000000000000b0000000001", 0x5a, 0x400}, {&(0x7f0000010400)="0200000003000000040000006a000f", 0xf, 0x800}, {&(0x7f0000010500)="ffff3f00000000000000000000000000ffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffff", 0x802, 0x1000}, {&(0x7f0000011600)="ed41000000080000dff4655fe0f4655fe0f4655f000000000000040004", 0x1d, 0x2100}], 0x0, &(0x7f0000012c00)=ANY=[]) chdir(&(0x7f0000000040)='./file0\x00') r0 = creat(&(0x7f0000000080)='./file0\x00', 0x0) pwrite64(r0, &(0x7f0000000300)="af", 0xfffffeb2, 0x0) chmod(&(0x7f0000000000)='./file0\x00', 0x0) creat(&(0x7f0000000080)='./file0\x00', 0x0) 10:13:18 executing program 0: ioctl$sock_SIOCGIFINDEX_802154(0xffffffffffffffff, 0x8933, &(0x7f0000000240)={'wpan3\x00'}) r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$nl802154(&(0x7f00000006c0), r0) sendmsg$NL802154_CMD_SET_CCA_MODE(0xffffffffffffffff, &(0x7f0000000780)={&(0x7f0000000680), 0xc, &(0x7f0000000740)={&(0x7f0000000380)=ANY=[@ANYBLOB="1c000000", @ANYRES16=r1, @ANYBLOB="080028bd7000fddbdf250d00000008000300", @ANYRES32=0x0, @ANYBLOB="9f7e20717095eb042acb8f"], 0x1c}}, 0x10) ioctl$sock_SIOCGIFINDEX_802154(0xffffffffffffffff, 0x8933, &(0x7f00000000c0)={'wpan1\x00', 0x0}) sendmsg$NL802154_CMD_DEL_SEC_KEY(0xffffffffffffffff, &(0x7f0000000280)={&(0x7f0000000080)={0x10, 0x0, 0x0, 0x200000}, 0xc, &(0x7f0000000240)={&(0x7f0000000100)=ANY=[@ANYBLOB="c0000000", @ANYRES16=r1, @ANYBLOB="00012dbd7000fddbdf251800000008000300", @ANYRES32=0x0, @ANYBLOB="9000258014000400d9b35a16820057e3a054740e780aa98305000200800000000c000180050002000300004005000200d800000024000300059eedfcd6ac1a5c32f321393811f4e1c785b6a99ccf533c75d5e7138b7666f514000400e3ba46a2a1a1d11b36a4103d57ab947624000300e14b29ee2dbf5c0c40c4f2e8ac7575bb88d698a7e70747e70816c7503a80cf3008000300", @ANYRES32=r2, @ANYBLOB], 0xc0}, 0x1, 0x0, 0x0, 0x48045}, 0x20000883) r3 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) sendmsg$NL802154_CMD_SET_CHANNEL(r3, &(0x7f00000001c0)={&(0x7f0000000100), 0xc, &(0x7f0000000180)={&(0x7f0000000140)={0x14, 0x0, 0x4}, 0x14}, 0x1, 0x0, 0x0, 0x40000}, 0x0) ioctl$sock_SIOCGIFINDEX_802154(r3, 0x8933, &(0x7f0000000240)={'wpan3\x00'}) r4 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) r5 = syz_genetlink_get_family_id$nl802154(&(0x7f00000006c0), r4) sendmsg$NL802154_CMD_SET_CCA_MODE(0xffffffffffffffff, &(0x7f0000000780)={&(0x7f0000000680), 0xc, &(0x7f0000000740)={&(0x7f0000000380)=ANY=[@ANYBLOB="1c000000", @ANYRES16=r5, @ANYBLOB="080028bd7000fddbdf250d00000008000300", @ANYRES32=0x0, @ANYBLOB="9f7e20717095eb042acb8f"], 0x1c}}, 0x10) ioctl$sock_SIOCGIFINDEX_802154(0xffffffffffffffff, 0x8933, &(0x7f00000000c0)={'wpan1\x00', 0x0}) sendmsg$NL802154_CMD_DEL_SEC_KEY(r3, &(0x7f0000000280)={&(0x7f0000000080)={0x10, 0x0, 0x0, 0x200000}, 0xc, &(0x7f0000000240)={&(0x7f0000000100)=ANY=[@ANYBLOB="c0000000", @ANYRES16=r5, @ANYBLOB="00012dbd7000fddbdf251800000008000300", @ANYRES32=0x0, @ANYBLOB="9000258014000400d9b35a16820057e3a054740e780aa98305000200800000000c000180050002000300004005000200d800000024000300059eedfcd6ac1a5c32f321393811f4e1c785b6a99ccf533c75d5e7138b7666f514000400e3ba46a2a1a1d11b36a4103d57ab947624000300e14b29ee2dbf5c0c40c4f2e8ac7575bb88d698a7e70747e70816c7503a80cf3008000300", @ANYRES32=r6, @ANYBLOB], 0xc0}, 0x1, 0x0, 0x0, 0x48045}, 0x20000883) sendmsg$IEEE802154_LLSEC_DEL_DEV(0xffffffffffffffff, &(0x7f0000000200)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x22100002}, 0xc, &(0x7f0000000100)={&(0x7f0000000280)={0x4c, 0x0, 0x100, 0x70bd25, 0x25dfdbfd, {}, [@IEEE802154_ATTR_HW_ADDR={0xc}, @IEEE802154_ATTR_HW_ADDR={0xc, 0x5, {0xaaaaaaaaaaaa0002}}, @IEEE802154_ATTR_DEV_INDEX={0x8}, @IEEE802154_ATTR_DEV_INDEX={0x8}, @IEEE802154_ATTR_DEV_INDEX={0x8, 0x2, r2}, @IEEE802154_ATTR_DEV_INDEX={0x8, 0x2, r6}]}, 0x4c}, 0x1, 0x0, 0x0, 0x24008841}, 0x10) r7 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x46e2, 0x0) r8 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffd000/0x3000)=nil, 0x3000, 0x0, 0x13, r7, 0x0) syz_io_uring_submit(r8, 0x0, &(0x7f0000000240)=@IORING_OP_FADVISE={0x18, 0x0, 0x0, @fd, 0x2}, 0x0) sigaltstack(&(0x7f0000ffd000/0x1000)=nil, 0x0) [ 288.896540] 9pnet: Insufficient options for proto=fd 10:13:18 executing program 5: r0 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x46e2, 0x0) r1 = dup2(r0, r0) mount$9p_fd(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f00000000c0), 0x2000000, &(0x7f00000004c0)={'trans=fd,', {'rfdno', 0x3d, r1}, 0x2c, {}, 0x2c, {[{@debug}, {@debug={'debug', 0x3d, 0x10001}}, {@version_u}], [{@hash}, {@euid_gt}, {@fsmagic={'fsmagic', 0x3d, 0xfffffffffffffffc}}, {@euid_eq={'euid', 0x3d, 0xffffffffffffffff}}]}}) [ 288.955403] 9pnet: Insufficient options for proto=fd 10:13:18 executing program 3: io_setup(0x10000, &(0x7f00000000c0)) io_setup(0x6, &(0x7f0000000800)=0x0) io_destroy(r0) eventfd(0x1) pipe2$9p(&(0x7f0000000100)={0xffffffffffffffff, 0xffffffffffffffff}, 0x4000) r2 = socket$netlink(0x10, 0x3, 0x0) r3 = fcntl$dupfd(r2, 0x0, r2) getsockopt$netlink(r3, 0x10e, 0x0, 0x0, 0xfffffffffffffffe) r4 = dup(r3) r5 = socket$netlink(0x10, 0x3, 0x0) r6 = fcntl$dupfd(r5, 0x0, r5) getsockopt$netlink(r6, 0x10e, 0x0, 0x0, 0xfffffffffffffffe) r7 = socket$netlink(0x10, 0x3, 0x0) r8 = fcntl$dupfd(r7, 0x0, r7) getsockopt$netlink(r8, 0x10e, 0x0, 0x0, 0xfffffffffffffffe) io_submit(r0, 0x5, &(0x7f00000004c0)=[&(0x7f0000000040)={0x0, 0x0, 0x0, 0x6, 0x10ff, 0xffffffffffffffff, &(0x7f0000000000)="90d4d722bb64f923175653d9545086a0364a8454269e685448f48420adaf6f5aadf945037f8dc8281dc5d3f289", 0x2d, 0x6, 0x0, 0x2}, &(0x7f0000000080)={0x0, 0x0, 0x0, 0x0, 0x2, r4, &(0x7f0000000840)="f76300cd3266e2c8c50c521b1bb12c5e6fd8dd671c63bbd94a32a22d6bb20a976c0e16343a740c8e87c4c7603fb88bb6f4c669d0f5b73e2806c2b7ab48c0d16164dfa701010f0fbbd921a37a7528e8e1ec809841e9a7f37420915ad1255c77716481ef37e0c7e9bb88d057ef11c9f4332c1cbd42a307f7afaed2c59874d5a72e7e3441514bef93a1f9074a072aa25c5b1cd5e2a8706361ba5bd5933f79b8d79089becb8c84430134a4eaf8deee69a132343e99ecfce797cbd123677b28ed233de9b42b29e3e06d04a7790c6e62f2902abafad39884dbab3e8b8d33f0e812da698db95f732b4f3dceb578a00d01ab596ef4f6a431e13bdcf931e8c3a19f189243cf47f3d0cc0dc12111fe62bd3fb46226bf182e083c68250de7409a2963ce19236b1af0e75d1cb68158ef1c5b255542f532ab997ba6d79dd387db46eb8a62c9b6c12f3cbf90fd042bfc6590fe1fde8a01117c18fc037a5e82943e16ace98358f0367e48f0b14950b556a9548765fcd954e646b7d652e9f8abf51e15a2cbc0c664efdb15bd60d110300be9ee3c58f319bb3d564049b990df49cc813b8974a940f33014b1f42d0349d1fdb96bf57c64e84aabdbe1521895b7ea5fee8ad0322b0698a8eae5b78757df45dc5ef26edf85b8c4489a369e36b2a6466628443b8cb5a736eea03ccd686703b25164d1727e142d5cd0d5c2c4d7ca255f0aedc2fdde47922c3d4f7c4168e7e51390584a1bad65fc9270601bcbf38872bb452954b5979304e8c6f662b35c63068d612f351f49117d887e181335eadda97fa975b4ef4eae1f84cb8d8135674616cbb3ec0fe57548b7671a2e502d397caba63dc706405d1dbf826412494a62e543238ee659325d16e1c7c813e565536d229be7f8d7bf396f944663fd7af14b5e778070bd7e545a5776ba2b58ab0a759ffa17f3c29536fd2a557e9ae4584258c84cb96b6ffcb0b25d8b2d73c8569b9b21776963588a9151f3d64dcc9b12c119025040bab6dd9b9a275e32b4662d89be7e078d18a1f7664486b436f989ec818eca53a04db0306fdde811c40bd149ad31ca215f88e4a34b2b56a5b71a9c614708d8ffca4a03ccb0678079c66bd63b7828ffb2b737f8d47309d0a3e6469c89ffac618c1a345197b6a828bdbfe39a8fe68f07a2921b95201d32237b0b42de8b3f8527ac5ff74983b69ba71c147a6fbe6271433f48b4768eaefe078b87af0eff1c3bfb9ebca49f8545f5bf447f9a931a86b388f22a642910bd0077394ce2b8fb43810aef7b8a0454fc147c65c6f1fd7821c8e932ff5cb6a809b7240d37ea67183c077acaf67d83c1b514872b66fab3e05bbcb64be0f8821ce6330b4dc2abbcb808e4ecd7cd13b7e0ef8d2b48bd93837265aa12ad465ecf58a95c608c4d0dc9248e5bcfaf127606de505a5e42f18d3ad2a5126e141f22883aa5191edb41d9bdc576b07a9c1f18f4d920b014a05192fcee79dcc0c25eb8d4d3fedc6d1822b1518dc2d007448f162967b4f8c295eb817d3bc0b152a7f342798c236b4f5eac5f1f67f74e93baf3f7ed089e3260804be004a26309ab87b64cba4761fd2dd45a64f7b126495757d0a1ff923c14fb9afce7cadaf2a5adb7e3e6f9541cd9f9a80b76fd4777e9ba16545a994959ce7e00b865f6eee5212b8998f13ff4a3aa340030537232e067dfb4e5ec6b9c1e516f8b28663b9552b8b32008be83c41ed2d409907844fe434000dad9c752b47afc15d216d590220c750787bfc6ea771a5f2171abbb0e74bdc422921e04dd24b300d21bb7a6b9d49a2d55e6a2d50c3ddb7aafdcddd6e57c2b6e5e277f8f1f39ed02a54b4f0a2f58619827e3ff77a3852b1386626deda5bd077b2d007c1596706d263a9fcd88dfdb4c41d7945d300e90ab3bacf98e756dffc98a05f3f5a473e96a0c7d146a7da9cc98c26ff243d89b3833f5d8179be7424cab3b0976d1ba186baee277f43f309f6fd925fc0e8ec875729b0db8e1e09871c9865331c8ec357daffc4496b98ba505e4d67f8c4c31e97ab77b7d49894296f036740dce8a81e274f68f4ac7497a9f11d4a323a627685c7b1a9a26dcf63a366557d04d5670c5a743c9b9de1753a42493cab1cb322a3e03d710b4f13661b5cfd1d4a316648212c31be68c96c4e762a8342f3da6f621eed4ade6dcd70e0a061fbff5dc14f84c632696c15163a616d690b74039e2b93f2001ac056df85067f60cc3383d4d6ff5f7b7589313575b43f5f05f0a671a29745f4c6e3fccceb388ad97ad6e361bf0ea0b640f5eea097d9e86c8471212379e24157dde180289e8beee27431f7c125e8e0b37b2bbe8489629aa97d5bb286bfe682fa58d17471cfa99a591be6240e16a8b24b7302a6b5da2a4625ed3317bd9fb250b65c2a11b4ca34319ab0dfd32693980441ef119eadbfd956a47395440209485d63b2ad6f3bc1e21ad7150381efb7b77c868eeb72e95c0d8de051158fd7e053956befc5fa2b38722c9a16b0ab46be18785d84c30de32f2efc7acbeb6f5ce9ffd7452b8be91c197f43ad5db14961c5bdc0e5970cc374b63367142b412ad8f35000ae7eab594256c378f1a8efa8039bc930673b5260282cb673d872ed0ad44d52ebce12e72f234c806ff03651dcf8aad47793c71213f9fea6a2f666b479c8b0193bf18a1ebd99ae65a746b447381705f1eb434b7cb1ba7d438c91d80a4b8a4f65e06aebdddce6faa03164f54dd37566b7b7dc516fa3e82bcc822856c0aa31776c8bc3348db6518563019cf5e9cbb80ccf0c97e4e2dad98610dc0c277a6bfa25c7d58df56250fc3f3997cad93e48f4997663fefa7d8b86ab05e524de12a5e1b0909403eda89c4e777a1704fcf97ac2f47f16fd36ef9a4396c13c7cf85428940b81370ff90c8ae28bc3585b8e233c4c35921dfe8484709590a12944caa7f383d43c43889730bf213419e6dd79a855f03fffba84eb1a494ab79115b22e53fc6b363fb96dd836a1839e480360e5bd2e612c7e7f2d8c8bb09b71c2baf3333a2c4c5ab9b1c27224df94eaaf18aee5c475c95d865ba56daf34e80b0bcea2bac7d553aaf7f1f613a24c46c0fcb448c55bdf22799ed155e42d0342ab39ff3765abcf861cbcbc7eb05e2c8f10a695fd0f4a2269402822dcb9132e5e3b6ddf961e270d45aa5e16ea89751b696574f3504e2f4b81e3068b40a9b3f6da5ec9d305269bc4f8eb1c60ccc07eef5b30456ef10af220bc9a62ec1706946e7668cd9ff44804a70a754525631758945477d86bed4cdb7acc3c0fd3162197ba3acbe277cbe0c225358482f5c09be3b04287bb883e485c87ab3b40c2c2640a2a1b2ec20a37e2f9704643d55baa5ae54571bcd43b2c62d99aba83be9d4e30e629c0b28ab2cf5c551a1860f3b39aa975a7ca0ab56008a47c9be1fa1baf58df359995c841b333e0009d69195e34ca50b6e19bbb740d779262db712ceb6f2d5883ca78fd44d52735c0302c85656cf44d03504fd31b2a359932946a5a94407390d4582b35c39d0cb17902e2827c29acfb66bcccb3e2b483ed463e033785a162573b3f98ace206cb6a89a98af7c371672e76aae17a803ed852fa013bb092e8b22c74570b17b27dc5c1b533982916261094cce5e3e97a5a95de13ccb3c971dd1a55e2322a6553e48367a8d5a084019dd8788283e97453ad410a29c6beabf881f03e277a6b586cd05650fe3e383bcf54b07b0048a18535d6f7216dbc64b55ac29289e528dc42e95123809b6da64bbace965abbc8b5840ad640f288915faa7ef2381f2a0b387b240a3aa097f0602e4d9436998e56ddafaf2f2cdc4600dd68d3e31fe49a01992cc1263bdb8ede01b0e6493763fa0758b100a5bae464316c9b0492e9800daec2029e0e5d6fb58eff241c56b2a8706932ca4e6282c127325068de21874c204eb7d882957f4bb2a9e90b398bb504a3820085613adc2749bc2329d929559421c9461b79c7a47412802de86d11a910590367b1adbf7d0fe41e73c04be2ef33b31b2151b90078bceb596701e05c568f614b979f68b422a2a33ab8a70f52378c6f5ce2b35768d3dcdf22a1db1cb5426f2d82aab0c76ddb4871bac8ab27d65b44e986b16f153a1f0bd86821b9dacde9eb2e49a0b4aed6adff0b5799b61ec0e02e04f69497fbd6c70317ce25e2a04f9e2bdf7c82e3f362529738432bb0f1000840c3a975afb9e712264c8c54a2b47e3df52a1bbe7d57fd9905764961c04e247a1d8dcac9e373d002100e7ca2605e9f4c5f37c7a9877296b2ca0b97790ac36535e8320631847d7242936e905bbe9da8723e2dbc0a3bd60a27e21723c6c46a66d438df1c7f456a8860ac6766319896dd7668e471ac5135bf60e7187cdab238d0a27d6874392b5eba60f612d6a0ffe9e8ee45f08fdf04164cfdbefaee90ecb342a391cf09f879a6341ebc5c3e328c187670be2740d772f22fbbddde1ad344c3ded1b6c6289a6d2e8d3f908c19d3eec1386b283acd603bc9ab1832c88c21a386e523cc1d48bf0499323e56d4abdbab43e74962b1ee6ae8353ce0f0c9c67a1e64a08dc5964ac4ffc449c340c5707efb05a18b0899652ebb76a1087fd2b131bf7556f8132df66ea7de8b7e24632c852c8ed47f25e6335ec4b9b4c28aa15e27215286be766a7032cd81bd475aca6bc5c6af0a0ec44f1fb5e0b3aa4e88a43bf93f91bd8d1c4fc6e8cb6201d5b6b028d4ad1da1cade4037dd8ffb257cc4edc401362b705d7407b6843a5f832f166607a0e718eb7912e6ab3e778dd17b8838634f7f1161351e94b86851a98598b058e3f9ca6868574713cf9f59b4725b68687f680ba57e0aa2776d6c514a9693ce5e0bf330566cef2aba3dea481cab9d23beffea1fd1a07c2e435c2f294c3267f38c2f8e11ffed749517b4d817b8bbd4e1918d52eafd8b63b8cf9491b2511919b0137b9186c3b71fab4840fb9c6daf92450b9e1ba6c160f6648f4ad433f595acd0d8046b0c8d5f42166cceab0d8e7c8a797c0cd293fd6ef2841c7acb4aab80c7da48c740c760f0b29de2fd64263fe4448f9df62cb6d6a74ac26dc4bf6fc7c5c09b1508eebdaddfa2a727fe4440b90b174bf021e922d197cf48a90a1b415ffd357b4180245fd577df954ba13e06d1125d2abdef02645c4ed3bb29282fbbf9d074da288421ed2793af62ca9ee43e5bc167afd42fa864214ca126639314f9e2152ec2ceaa17fed92bd6ff2423be9210ab7dbc4b28be3c1108ea579ef35938f28d91affa5fffc408bff66cae1260357639e162e22d1c3154a38f339f103e8e4bd768312fc4196b617e399b09a70783e20ce6f7daf6b05555a56dd5d3e2ae1a199d301e6edf8cecef3c892131ff869def1dc8756d09b7e1f1a12b6f5f1bc3443fbcc35f2557b8267b36d1b462876300878c7191a0c2e5a567feb648d8b7fd287ff32519f01ce1325851afd4378c803600d035a34c46b85404a5f2c0ad86a612cc372f7a68754e67f750bdb58bf7ded5061287e6d968b186e693ee3a057e7ecfc4186d279673a5b16e5b0322dadf08d3563869290611c3b39aa4afef29b36a4640317827d8b8ccc615ec2af16e3113001f6eea0c96dfd0337f369fdea5b85e1e253fb1e3b3fc0fd7279a2bc0f2dd6ae71a7e15ca1339cf01353dce9b15067409cb0eea4a46ebe784a9abfaa3032e79e300a73fc0a087dfcee97c20a0f865f8422a85db34f3de3716c234d02803be2acac5b6b0ef1e48ff5e9d5b5adc8d5128c2c0571154a4eb1ba7df6636431437338bf014ae54ec7842a5a1eeffa1490449b419a14c950d4249b95c7799fe89c4445ac8023", 0x1000, 0x5, 0x0, 0x2, r8}, &(0x7f0000000240)={0x0, 0x0, 0x0, 0x1, 0x7, r1, &(0x7f0000000140)="a3022779931c12769a4bea418a7fb1dc32a7c68b91d60e79a3ed0a926d37e21f4cf61933d4bc7ed7df42341578d7849b1ebae5dd534c3fb7982730d44ea3b9ccb2fb5bb4ecbdb8fe3bf3f20726a6fc2c6505c15fb5544f9228954c78f483e5e3516f694d490993a0944dfdb22bece69ff5018d15ad25e3618185c082f7a0e7ab886a8eab06b54d4b70808eda832165db20a582fac8c7f1b6ce72d485756bb4f0e0d081e83c808eefd969efcb1ba0371b12c705b5ea9d56342b57f635845ce28f5e3a423db7a094850982bc0f099178bcda79f5eca5d6dd137ee5df80820a700350", 0xe1, 0x13ee692d, 0x0, 0x1}, &(0x7f0000000380)={0x0, 0x0, 0x0, 0x7, 0x40, 0xffffffffffffffff, &(0x7f0000000280)="18472b8ae37619357da06c75f9d9393cfa8113de20a79148224a1d932a8180ef582ce188d54ed67c04fb0eeda1fc4da58d41785fdf95e9390c05a70d1e5fd8829d2ff1b8ab0cbda4e8885853bb3a44e5216599978c15a0eb383479daa00d36877ceb7192e2023f205ef9d20a85e5011f8a19b44c3ca5c945f9501535a878736b565f50c4c308f592837baf23c00de5afbf5ef7a9f110d32d52d489f8be6026d8921e25b7d8f4c8643f19b6e1179f50e1f4235ed1eed1f5307519de70c00ef6945d62c45f1acf3dd35b626a328f645f8b4cd20548c726f4092b2a19c358ce5b2e469d43ee2512c0bf2a414b8e73eefff9395fe49f90d594", 0xf7, 0x3, 0x0, 0x2}, &(0x7f0000000480)={0x0, 0x0, 0x0, 0x3, 0x4, 0xffffffffffffffff, &(0x7f00000003c0)="7717b435c6cdfdd4d1c2fab3c6bdebd7f4a36ea09eab3cbb188d18447bc50adedabfd61fc91c718201c2ad3e58d41e2b820170b2c693106c400ccc3f5bb080e5494568255e9dde460c9af8b6aa02b0ebd679bff88b7c40dd4d087c48a05ca52d2af0670aeda432f838beee70ca13840b790fc8edb944962d5133b39d047ba01dc258c953dc8cc0e00a734ab561f04cc6205afa30f4eac62c99f2d479066b1d5eb1b80d39c6faf1c04b416d67648e66422e2845ca57", 0xb5, 0x0, 0x0, 0x2, r6}]) 10:13:18 executing program 5: openat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x46e2, 0x0) r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000040), 0x2, 0x0) mount$9p_fd(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f00000000c0), 0x2000000, &(0x7f00000004c0)={'trans=fd,', {}, 0x2c, {'wfdno', 0x3d, r0}, 0x2c, {[{@debug}, {@debug={'debug', 0x3d, 0x10001}}, {@version_u}], [{@hash}, {@euid_gt}, {@fsmagic={'fsmagic', 0x3d, 0xfffffffffffffffc}}, {@euid_eq={'euid', 0x3d, 0xffffffffffffffff}}]}}) 10:13:18 executing program 1: r0 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x46e2, 0x0) r1 = dup2(r0, r0) mount$9p_fd(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f00000000c0), 0x2000000, &(0x7f00000004c0)={'trans=fd,', {'rfdno', 0x3d, r1}, 0x2c, {}, 0x2c, {[{@debug}, {@debug={'debug', 0x3d, 0x10001}}, {@version_u}], [{@hash}, {@euid_gt}, {@fsmagic={'fsmagic', 0x3d, 0xfffffffffffffffc}}, {@euid_eq={'euid', 0x3d, 0xffffffffffffffff}}]}}) [ 289.068147] 9pnet: Insufficient options for proto=fd 10:13:18 executing program 1: r0 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x46e2, 0x0) r1 = dup2(r0, r0) mount$9p_fd(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f00000000c0), 0x2000000, &(0x7f00000004c0)={'trans=fd,', {'rfdno', 0x3d, r1}, 0x2c, {}, 0x2c, {[{@debug}, {@debug={'debug', 0x3d, 0x10001}}, {@version_u}], [{@hash}, {@euid_gt}, {@fsmagic={'fsmagic', 0x3d, 0xfffffffffffffffc}}, {@euid_eq={'euid', 0x3d, 0xffffffffffffffff}}]}}) 10:13:18 executing program 7: perf_event_open(&(0x7f0000001d80)={0x2, 0x80, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = syz_open_dev$tty20(0xc, 0x4, 0x0) r1 = dup2(r0, r0) r2 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000040), 0x2, 0x0) write$binfmt_aout(r2, &(0x7f0000000640), 0x20) read(r2, &(0x7f0000000100)=""/146, 0x92) ioctl$TIOCL_SETSEL(r2, 0x541c, &(0x7f0000000000)={0x2, {0x2, 0xf38c, 0x1ff, 0x3, 0x800, 0x1e}}) ioctl$TCXONC(r1, 0x4b63, 0x3) [ 289.113955] 9pnet: Insufficient options for proto=fd [ 289.123542] 9pnet: Insufficient options for proto=fd 10:13:18 executing program 5: openat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x46e2, 0x0) r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000040), 0x2, 0x0) mount$9p_fd(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f00000000c0), 0x2000000, &(0x7f00000004c0)={'trans=fd,', {}, 0x2c, {'wfdno', 0x3d, r0}, 0x2c, {[{@debug}, {@debug={'debug', 0x3d, 0x10001}}, {@version_u}], [{@hash}, {@euid_gt}, {@fsmagic={'fsmagic', 0x3d, 0xfffffffffffffffc}}, {@euid_eq={'euid', 0x3d, 0xffffffffffffffff}}]}}) 10:13:18 executing program 1: r0 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x46e2, 0x0) r1 = dup2(r0, r0) mount$9p_fd(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f00000000c0), 0x2000000, &(0x7f00000004c0)={'trans=fd,', {'rfdno', 0x3d, r1}, 0x2c, {}, 0x2c, {[{@debug}, {@debug={'debug', 0x3d, 0x10001}}, {@version_u}], [{@hash}, {@euid_gt}, {@fsmagic={'fsmagic', 0x3d, 0xfffffffffffffffc}}, {@euid_eq={'euid', 0x3d, 0xffffffffffffffff}}]}}) 10:13:19 executing program 7: perf_event_open(&(0x7f0000001d80)={0x2, 0x80, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = syz_open_dev$tty20(0xc, 0x4, 0x0) r1 = dup2(r0, r0) r2 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000040), 0x2, 0x0) write$binfmt_aout(r2, &(0x7f0000000640), 0x20) read(r2, &(0x7f0000000100)=""/146, 0x92) ioctl$TIOCL_SETSEL(r2, 0x541c, &(0x7f0000000000)={0x2, {0x2, 0xf38c, 0x1ff, 0x3, 0x800, 0x1e}}) ioctl$TCXONC(r1, 0x4b63, 0x3) [ 289.176149] 9pnet: Insufficient options for proto=fd [ 289.245008] 9pnet: Insufficient options for proto=fd 10:13:30 executing program 3: perf_event_open(&(0x7f0000001d80)={0x2, 0x80, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = syz_open_dev$tty20(0xc, 0x4, 0x0) r1 = dup2(r0, r0) r2 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000040), 0x2, 0x0) write$binfmt_aout(r2, &(0x7f0000000640), 0x20) read(r2, &(0x7f0000000100)=""/146, 0x92) ioctl$TIOCL_SETSEL(r2, 0x541c, &(0x7f0000000000)={0x2, {0x2, 0xf38c, 0x1ff, 0x3, 0x800, 0x1e}}) ioctl$TCXONC(r1, 0x4b63, 0x3) 10:13:30 executing program 1: openat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x46e2, 0x0) r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000040), 0x2, 0x0) mount$9p_fd(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f00000000c0), 0x2000000, &(0x7f00000004c0)={'trans=fd,', {}, 0x2c, {'wfdno', 0x3d, r0}, 0x2c, {[{@debug}, {@debug={'debug', 0x3d, 0x10001}}, {@version_u}], [{@hash}, {@euid_gt}, {@fsmagic={'fsmagic', 0x3d, 0xfffffffffffffffc}}, {@euid_eq={'euid', 0x3d, 0xffffffffffffffff}}]}}) 10:13:30 executing program 0: ioctl$sock_SIOCGIFINDEX_802154(0xffffffffffffffff, 0x8933, &(0x7f0000000240)={'wpan3\x00'}) r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$nl802154(&(0x7f00000006c0), r0) sendmsg$NL802154_CMD_SET_CCA_MODE(0xffffffffffffffff, &(0x7f0000000780)={&(0x7f0000000680), 0xc, &(0x7f0000000740)={&(0x7f0000000380)=ANY=[@ANYBLOB="1c000000", @ANYRES16=r1, @ANYBLOB="080028bd7000fddbdf250d00000008000300", @ANYRES32=0x0, @ANYBLOB="9f7e20717095eb042acb8f"], 0x1c}}, 0x10) ioctl$sock_SIOCGIFINDEX_802154(0xffffffffffffffff, 0x8933, &(0x7f00000000c0)={'wpan1\x00', 0x0}) sendmsg$NL802154_CMD_DEL_SEC_KEY(0xffffffffffffffff, &(0x7f0000000280)={&(0x7f0000000080)={0x10, 0x0, 0x0, 0x200000}, 0xc, &(0x7f0000000240)={&(0x7f0000000100)=ANY=[@ANYBLOB="c0000000", @ANYRES16=r1, @ANYBLOB="00012dbd7000fddbdf251800000008000300", @ANYRES32=0x0, @ANYBLOB="9000258014000400d9b35a16820057e3a054740e780aa98305000200800000000c000180050002000300004005000200d800000024000300059eedfcd6ac1a5c32f321393811f4e1c785b6a99ccf533c75d5e7138b7666f514000400e3ba46a2a1a1d11b36a4103d57ab947624000300e14b29ee2dbf5c0c40c4f2e8ac7575bb88d698a7e70747e70816c7503a80cf3008000300", @ANYRES32=r2, @ANYBLOB], 0xc0}, 0x1, 0x0, 0x0, 0x48045}, 0x20000883) r3 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) sendmsg$NL802154_CMD_SET_CHANNEL(r3, &(0x7f00000001c0)={&(0x7f0000000100), 0xc, &(0x7f0000000180)={&(0x7f0000000140)={0x14, 0x0, 0x4}, 0x14}, 0x1, 0x0, 0x0, 0x40000}, 0x0) ioctl$sock_SIOCGIFINDEX_802154(r3, 0x8933, &(0x7f0000000240)={'wpan3\x00'}) r4 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) r5 = syz_genetlink_get_family_id$nl802154(&(0x7f00000006c0), r4) sendmsg$NL802154_CMD_SET_CCA_MODE(0xffffffffffffffff, &(0x7f0000000780)={&(0x7f0000000680), 0xc, &(0x7f0000000740)={&(0x7f0000000380)=ANY=[@ANYBLOB="1c000000", @ANYRES16=r5, @ANYBLOB="080028bd7000fddbdf250d00000008000300", @ANYRES32=0x0, @ANYBLOB="9f7e20717095eb042acb8f"], 0x1c}}, 0x10) ioctl$sock_SIOCGIFINDEX_802154(0xffffffffffffffff, 0x8933, &(0x7f00000000c0)={'wpan1\x00', 0x0}) sendmsg$NL802154_CMD_DEL_SEC_KEY(r3, &(0x7f0000000280)={&(0x7f0000000080)={0x10, 0x0, 0x0, 0x200000}, 0xc, &(0x7f0000000240)={&(0x7f0000000100)=ANY=[@ANYBLOB="c0000000", @ANYRES16=r5, @ANYBLOB="00012dbd7000fddbdf251800000008000300", @ANYRES32=0x0, @ANYBLOB="9000258014000400d9b35a16820057e3a054740e780aa98305000200800000000c000180050002000300004005000200d800000024000300059eedfcd6ac1a5c32f321393811f4e1c785b6a99ccf533c75d5e7138b7666f514000400e3ba46a2a1a1d11b36a4103d57ab947624000300e14b29ee2dbf5c0c40c4f2e8ac7575bb88d698a7e70747e70816c7503a80cf3008000300", @ANYRES32=r6, @ANYBLOB], 0xc0}, 0x1, 0x0, 0x0, 0x48045}, 0x20000883) sendmsg$IEEE802154_LLSEC_DEL_DEV(0xffffffffffffffff, &(0x7f0000000200)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x22100002}, 0xc, &(0x7f0000000100)={&(0x7f0000000280)={0x4c, 0x0, 0x100, 0x70bd25, 0x25dfdbfd, {}, [@IEEE802154_ATTR_HW_ADDR={0xc}, @IEEE802154_ATTR_HW_ADDR={0xc, 0x5, {0xaaaaaaaaaaaa0002}}, @IEEE802154_ATTR_DEV_INDEX={0x8}, @IEEE802154_ATTR_DEV_INDEX={0x8}, @IEEE802154_ATTR_DEV_INDEX={0x8, 0x2, r2}, @IEEE802154_ATTR_DEV_INDEX={0x8, 0x2, r6}]}, 0x4c}, 0x1, 0x0, 0x0, 0x24008841}, 0x10) openat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x46e2, 0x0) syz_io_uring_setup(0x4b9f, &(0x7f0000000140), &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000ffd000/0x3000)=nil, &(0x7f00000000c0), &(0x7f00000001c0)=0x0) syz_io_uring_submit(0x0, r7, &(0x7f0000000240)=@IORING_OP_FADVISE={0x18, 0x0, 0x0, @fd, 0x2}, 0x0) sigaltstack(&(0x7f0000ffd000/0x1000)=nil, 0x0) 10:13:30 executing program 2: sendmsg$TIPC_CMD_SET_LINK_PRI(0xffffffffffffffff, &(0x7f0000000180)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x2000}, 0xc, &(0x7f00000001c0)={&(0x7f0000000040)={0x68, 0x0, 0x100, 0x70bd2d, 0x25dfdbfd, {{}, {}, {0x4c, 0x18, {0x7, @link='syz0\x00'}}}, ["", "", ""]}, 0x68}, 0x1, 0x0, 0x0, 0x20004804}, 0x20000804) r0 = socket$netlink(0x10, 0x3, 0x0) r1 = fcntl$dupfd(r0, 0x0, r0) getsockopt$netlink(r1, 0x10e, 0x0, 0x0, 0xfffffffffffffffe) sendmsg$NL80211_CMD_DEAUTHENTICATE(r1, &(0x7f00000002c0)={&(0x7f0000000140)={0x10, 0x0, 0x0, 0x10}, 0xc, &(0x7f0000000280)={&(0x7f0000000200)={0x54, 0x0, 0x20, 0x70bd2c, 0x25dfdbfd, {{}, {@void, @val={0xc, 0x99, {0x7, 0x8}}}}, [@NL80211_ATTR_SSID={0x1c, 0x34, @random="1cbdc8c190834b369d301b0f5329f2244968cc2f1e4bc91e"}, @NL80211_ATTR_MAC={0xa, 0x6, @random="3285f2d3c379"}, @NL80211_ATTR_MAC={0xa, 0x6, @from_mac}]}, 0x54}, 0x1, 0x0, 0x0, 0x4044884}, 0x4004085) syz_mount_image$tmpfs(&(0x7f00000000c0), &(0x7f0000000100)='./file0\x00', 0x0, 0x0, 0x0, 0x0, &(0x7f0000000340)={[], [{@defcontext={'defcontext', 0x3d, 'unconfined_u'}}]}) 10:13:30 executing program 6: r0 = perf_event_open(&(0x7f0000000040)={0x2, 0xfffffffffffffecf, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r1 = openat$procfs(0xffffffffffffff9c, &(0x7f00000000c0)='/proc/crypto\x00', 0x0, 0x0) sendfile(r0, r1, &(0x7f0000000100)=0x5, 0x300000000) r2 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000040), 0x2, 0x0) write$binfmt_aout(r2, &(0x7f0000000640), 0x20) read(r2, &(0x7f0000000100)=""/146, 0x92) r3 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000040), 0x0, 0x0) write$binfmt_aout(r3, &(0x7f0000000640)=ANY=[@ANYBLOB="0000000000000000000024680de420cb92bb00"/32], 0x20) r4 = socket$nl_route(0x10, 0x3, 0x0) ioctl$BTRFS_IOC_DEFAULT_SUBVOL(r4, 0x40089413, &(0x7f0000000200)=0x6) read(r3, &(0x7f0000000100)=""/146, 0x92) ioctl$TIOCGSID(r3, 0x5429, &(0x7f00000001c0)) close(r2) r5 = syz_open_dev$ttys(0xc, 0x2, 0x1) ioctl$EXT4_IOC_GROUP_ADD(r5, 0x40286608, &(0x7f0000000000)={0x2, 0x4, 0x81, 0x6, 0x800, 0x1}) 10:13:30 executing program 7: perf_event_open(&(0x7f0000001d80)={0x2, 0x80, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = syz_open_dev$tty20(0xc, 0x4, 0x0) r1 = dup2(r0, r0) r2 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000040), 0x2, 0x0) write$binfmt_aout(r2, &(0x7f0000000640), 0x20) read(r2, &(0x7f0000000100)=""/146, 0x92) ioctl$TIOCL_SETSEL(r2, 0x541c, &(0x7f0000000000)={0x2, {0x2, 0xf38c, 0x1ff, 0x3, 0x800, 0x1e}}) ioctl$TCXONC(r1, 0x4b63, 0x3) 10:13:30 executing program 5: openat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x46e2, 0x0) r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000040), 0x2, 0x0) mount$9p_fd(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f00000000c0), 0x2000000, &(0x7f00000004c0)={'trans=fd,', {}, 0x2c, {'wfdno', 0x3d, r0}, 0x2c, {[{@debug}, {@debug={'debug', 0x3d, 0x10001}}, {@version_u}], [{@hash}, {@euid_gt}, {@fsmagic={'fsmagic', 0x3d, 0xfffffffffffffffc}}, {@euid_eq={'euid', 0x3d, 0xffffffffffffffff}}]}}) 10:13:30 executing program 4: r0 = perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x0, 0xf9}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) fchmod(r0, 0x4) syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0x8, &(0x7f0000000200)=[{&(0x7f0000010000)="200000000002000019000000500100000f000000000000000000000004000000000002000020000020000000def4655fdef4655f0100ffff53ef010001000000ddf4655f000000000000000001000000000000000b0000008000000018000000c20500002b02", 0x66, 0x400}, {&(0x7f0000010100)="000000000000000000000000e58ca12e13a240e2b1a22f8d07e8e55f010040", 0x1f, 0x4e0}, {&(0x7f0000010200)="010000000000050040", 0x9, 0x560}, {&(0x7f0000010300)="030000000400000005", 0x9, 0x800}, {0x0, 0x0, 0x1000000000c00}, {&(0x7f0000010d00)="ed41000000040000ddf4655fdef4655fdef4655f00000000000004002000", 0x1e, 0x1480}, {0x0}, {&(0x7f0000012000)="504d4d00504d4dff", 0x8, 0x10000}], 0x0, &(0x7f0000012b00)=ANY=[]) newfstatat(0xffffffffffffff9c, &(0x7f0000002c80)='./file0\x00', 0x0, 0x0) syz_mount_image$nfs4(0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0) [ 301.055945] SELinux: security_context_str_to_sid(unconfined_u) failed for (dev tmpfs, type tmpfs) errno=-22 [ 301.058099] SELinux: security_context_str_to_sid(unconfined_u) failed for (dev tmpfs, type tmpfs) errno=-22 10:13:30 executing program 2: r0 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x46e2, 0x0) openat(0xffffffffffffff9c, &(0x7f0000000000)='./file0\x00', 0x0, 0x0) ioctl$BTRFS_IOC_QGROUP_LIMIT(r0, 0x8030942b, &(0x7f00000001c0)={0x9, {0x20, 0x1, 0x9, 0xbf, 0xb8f}}) perf_event_open(&(0x7f0000001d80)={0x7, 0x80, 0x0, 0x0, 0x0, 0x0, 0x2}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r1 = creat(&(0x7f0000000080)='./file0\x00', 0x0) pwrite64(r1, &(0x7f0000000000)="a7", 0xfffffd6b, 0x0) mmap$IORING_OFF_SQ_RING(&(0x7f0000ffb000/0x3000)=nil, 0x3000, 0x0, 0x4022812, r0, 0x0) syz_io_uring_setup(0x489a, &(0x7f00000000c0)={0x0, 0xc203}, &(0x7f0000ffd000/0x1000)=nil, &(0x7f0000ffb000/0x1000)=nil, &(0x7f0000000140), &(0x7f0000000180)) [ 301.081341] 9pnet: Insufficient options for proto=fd [ 301.083756] 9pnet: Insufficient options for proto=fd 10:13:30 executing program 7: perf_event_open(&(0x7f0000001d80)={0x2, 0x80, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = syz_open_dev$tty20(0xc, 0x4, 0x0) r1 = dup2(r0, r0) r2 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000040), 0x2, 0x0) write$binfmt_aout(r2, &(0x7f0000000640), 0x20) read(r2, &(0x7f0000000100)=""/146, 0x92) ioctl$TIOCL_SETSEL(r2, 0x541c, &(0x7f0000000000)={0x2, {0x2, 0xf38c, 0x1ff, 0x3, 0x800, 0x1e}}) ioctl$TCXONC(r1, 0x4b63, 0x3) [ 301.141318] EXT4-fs (loop4): mounted filesystem without journal. Opts: ,errors=continue [ 301.142467] ext4 filesystem being mounted at /syzkaller-testdir776399023/syzkaller.JueKaw/23/file0 supports timestamps until 2038 (0x7fffffff) 10:13:43 executing program 3: perf_event_open(&(0x7f0000001d80)={0x2, 0x80, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = syz_open_dev$tty20(0xc, 0x4, 0x0) r1 = dup2(r0, r0) r2 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000040), 0x2, 0x0) write$binfmt_aout(r2, &(0x7f0000000640), 0x20) read(r2, &(0x7f0000000100)=""/146, 0x92) ioctl$TIOCL_SETSEL(r2, 0x541c, &(0x7f0000000000)={0x2, {0x2, 0xf38c, 0x1ff, 0x3, 0x800, 0x1e}}) ioctl$TCXONC(r1, 0x4b63, 0x3) 10:13:43 executing program 6: mknod$loop(&(0x7f00000000c0)='./file0\x00', 0x0, 0x1) r0 = inotify_init1(0x0) creat(&(0x7f0000000100)='./file0\x00', 0x8) inotify_add_watch(r0, &(0x7f0000000040)='.\x00', 0x2000003) creat(&(0x7f0000000080)='./file0\x00', 0x0) creat(&(0x7f0000000000)='./file0\x00', 0x0) 10:13:43 executing program 5: r0 = dup2(0xffffffffffffffff, 0xffffffffffffffff) r1 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000040), 0x2, 0x0) mount$9p_fd(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f00000000c0), 0x2000000, &(0x7f00000004c0)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}, 0x2c, {[{@debug}, {@debug={'debug', 0x3d, 0x10001}}, {@version_u}], [{@hash}, {@euid_gt}, {@fsmagic={'fsmagic', 0x3d, 0xfffffffffffffffc}}, {@euid_eq={'euid', 0x3d, 0xffffffffffffffff}}]}}) 10:13:43 executing program 2: r0 = socket$packet(0x11, 0x3, 0x300) r1 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a) r2 = openat2(0xffffffffffffff9c, &(0x7f0000000000)='./file0\x00', &(0x7f0000000040)={0x109402, 0x4, 0x10}, 0x18) ioctl$sock_ipv6_tunnel_SIOCDEL6RD(0xffffffffffffffff, 0x89fa, &(0x7f00000009c0)={'ip6_vti0\x00', &(0x7f0000000940)={'ip6tnl0\x00', 0x0, 0x4, 0x1f, 0xff, 0xd2, 0x50, @rand_addr=' \x01\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x01', @ipv4={'\x00', '\xff\xff', @loopback}, 0x20, 0x80, 0x7fffffff, 0x2}}) bind$packet(r2, &(0x7f0000000a00)={0x11, 0x19, r3, 0x1, 0x3, 0x6, @dev={'\xaa\xaa\xaa\xaa\xaa', 0x2c}}, 0x14) ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000140)={'lo\x00', 0x0}) setsockopt$packet_add_memb(r0, 0x107, 0x1, &(0x7f0000000100)={r4, 0x3, 0x6}, 0x10) setsockopt$packet_add_memb(r0, 0x107, 0x1, &(0x7f0000000080)={r4, 0x1, 0x6, @dev}, 0x10) dup2(r1, r0) 10:13:43 executing program 4: openat(0xffffffffffffffff, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0) r0 = perf_event_open(&(0x7f0000001d80)={0x7, 0x80, 0x0, 0x0, 0x0, 0x0, 0x2}, 0xffffffffffffffff, 0x0, 0xffffffffffffffff, 0x0) r1 = socket$netlink(0x10, 0x3, 0x0) dup3(r1, r0, 0x0) r2 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000040), 0x2, 0x0) write$binfmt_aout(r2, &(0x7f0000000640), 0x20) read(r2, &(0x7f0000000100)=""/146, 0x92) ftruncate(r2, 0x1) pipe2(&(0x7f0000000040)={0xffffffffffffffff, 0xffffffffffffffff}, 0x80000) fallocate(r3, 0x1, 0x8, 0x3) 10:13:43 executing program 7: clock_gettime(0x1, &(0x7f00000002c0)) ppoll(&(0x7f0000000180)=[{0xffffffffffffffff, 0x80}], 0x1, &(0x7f00000001c0)={0x0, 0x989680}, &(0x7f00000003c0)={[0x1]}, 0x8) syz_mount_image$ext4(&(0x7f0000000000)='ext2\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0x8, &(0x7f0000000200)=[{&(0x7f0000010000)="200000000002000019000000800100000f000000000000000100000005000000000004000040000020000000e0f4655fe0f4655f0100ffff53ef010001000000e0f4655f000000000000000001000000000000000b0000000004000008000000d2c201001203", 0x66, 0x400}, {&(0x7f0000000300)="000000000000000000000000cf5621b2fc8a43c4a394dcf8911d59660100402a8c0e390180029dc84407321ea1f0a7fa21eb6b9c7ac8129979ba53eab76587befe130686c0350435cb95ace29ed6f61b7507eb51243d0380eaf1c988df7309cac39abc6450a47bf82caaf5e3131ae7c7fe6e111c76eacfb7dc8d8dd6f5dc31dddbe595029e73d766832f9a1e6b9433ce0eb1235cf4b6a9dd200562fffdbd4dbb5029ce19ee75c86c9a0a6141ec3e3ba7b9c179680a", 0xb5, 0x4e0}, {&(0x7f0000000140)="1a53b2aa6e84f4e5db4e522e6be9eddc9a252521de", 0x15, 0x640}, {&(0x7f0000000040)="02000000030000000400000018000f000300040000000000000000000f00c2b4", 0x20, 0x800}, {&(0x7f0000011600)="ed41000000080000e0f4655fe0f4655fe0f4655f000000000000040040", 0x1d, 0x2400}, {&(0x7f0000011800)="80810000005f00000000000af30100040000000000000000000000030000004000"/47, 0x2f, 0x2800}, {0x0, 0x0, 0x8200287d}, {&(0x7f0000012d00)="111fc0d901000000803a0900803a09000000000006", 0x15, 0x20000}], 0x40000, &(0x7f00000003c0)=ANY=[]) chroot(&(0x7f0000000080)='./file0\x00') umount2(&(0x7f00000000c0)='./file0\x00', 0x0) 10:13:43 executing program 0: ioctl$sock_SIOCGIFINDEX_802154(0xffffffffffffffff, 0x8933, &(0x7f0000000240)={'wpan3\x00'}) r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$nl802154(&(0x7f00000006c0), r0) sendmsg$NL802154_CMD_SET_CCA_MODE(0xffffffffffffffff, &(0x7f0000000780)={&(0x7f0000000680), 0xc, &(0x7f0000000740)={&(0x7f0000000380)=ANY=[@ANYBLOB="1c000000", @ANYRES16=r1, @ANYBLOB="080028bd7000fddbdf250d00000008000300", @ANYRES32=0x0, @ANYBLOB="9f7e20717095eb042acb8f"], 0x1c}}, 0x10) ioctl$sock_SIOCGIFINDEX_802154(0xffffffffffffffff, 0x8933, &(0x7f00000000c0)={'wpan1\x00', 0x0}) sendmsg$NL802154_CMD_DEL_SEC_KEY(0xffffffffffffffff, &(0x7f0000000280)={&(0x7f0000000080)={0x10, 0x0, 0x0, 0x200000}, 0xc, &(0x7f0000000240)={&(0x7f0000000100)=ANY=[@ANYBLOB="c0000000", @ANYRES16=r1, @ANYBLOB="00012dbd7000fddbdf251800000008000300", @ANYRES32=0x0, @ANYBLOB="9000258014000400d9b35a16820057e3a054740e780aa98305000200800000000c000180050002000300004005000200d800000024000300059eedfcd6ac1a5c32f321393811f4e1c785b6a99ccf533c75d5e7138b7666f514000400e3ba46a2a1a1d11b36a4103d57ab947624000300e14b29ee2dbf5c0c40c4f2e8ac7575bb88d698a7e70747e70816c7503a80cf3008000300", @ANYRES32=r2, @ANYBLOB], 0xc0}, 0x1, 0x0, 0x0, 0x48045}, 0x20000883) r3 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) sendmsg$NL802154_CMD_SET_CHANNEL(r3, &(0x7f00000001c0)={&(0x7f0000000100), 0xc, &(0x7f0000000180)={&(0x7f0000000140)={0x14, 0x0, 0x4}, 0x14}, 0x1, 0x0, 0x0, 0x40000}, 0x0) ioctl$sock_SIOCGIFINDEX_802154(r3, 0x8933, &(0x7f0000000240)={'wpan3\x00'}) r4 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) r5 = syz_genetlink_get_family_id$nl802154(&(0x7f00000006c0), r4) sendmsg$NL802154_CMD_SET_CCA_MODE(0xffffffffffffffff, &(0x7f0000000780)={&(0x7f0000000680), 0xc, &(0x7f0000000740)={&(0x7f0000000380)=ANY=[@ANYBLOB="1c000000", @ANYRES16=r5, @ANYBLOB="080028bd7000fddbdf250d00000008000300", @ANYRES32=0x0, @ANYBLOB="9f7e20717095eb042acb8f"], 0x1c}}, 0x10) ioctl$sock_SIOCGIFINDEX_802154(0xffffffffffffffff, 0x8933, &(0x7f00000000c0)={'wpan1\x00', 0x0}) sendmsg$NL802154_CMD_DEL_SEC_KEY(r3, &(0x7f0000000280)={&(0x7f0000000080)={0x10, 0x0, 0x0, 0x200000}, 0xc, &(0x7f0000000240)={&(0x7f0000000100)=ANY=[@ANYBLOB="c0000000", @ANYRES16=r5, @ANYBLOB="00012dbd7000fddbdf251800000008000300", @ANYRES32=0x0, @ANYBLOB="9000258014000400d9b35a16820057e3a054740e780aa98305000200800000000c000180050002000300004005000200d800000024000300059eedfcd6ac1a5c32f321393811f4e1c785b6a99ccf533c75d5e7138b7666f514000400e3ba46a2a1a1d11b36a4103d57ab947624000300e14b29ee2dbf5c0c40c4f2e8ac7575bb88d698a7e70747e70816c7503a80cf3008000300", @ANYRES32=r6, @ANYBLOB], 0xc0}, 0x1, 0x0, 0x0, 0x48045}, 0x20000883) sendmsg$IEEE802154_LLSEC_DEL_DEV(0xffffffffffffffff, &(0x7f0000000200)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x22100002}, 0xc, &(0x7f0000000100)={&(0x7f0000000280)={0x4c, 0x0, 0x100, 0x70bd25, 0x25dfdbfd, {}, [@IEEE802154_ATTR_HW_ADDR={0xc}, @IEEE802154_ATTR_HW_ADDR={0xc, 0x5, {0xaaaaaaaaaaaa0002}}, @IEEE802154_ATTR_DEV_INDEX={0x8}, @IEEE802154_ATTR_DEV_INDEX={0x8}, @IEEE802154_ATTR_DEV_INDEX={0x8, 0x2, r2}, @IEEE802154_ATTR_DEV_INDEX={0x8, 0x2, r6}]}, 0x4c}, 0x1, 0x0, 0x0, 0x24008841}, 0x10) openat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x46e2, 0x0) syz_io_uring_setup(0x4b9f, &(0x7f0000000140), &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000ffd000/0x3000)=nil, &(0x7f00000000c0), &(0x7f00000001c0)=0x0) syz_io_uring_submit(0x0, r7, &(0x7f0000000240)=@IORING_OP_FADVISE={0x18, 0x0, 0x0, @fd, 0x2}, 0x0) sigaltstack(&(0x7f0000ffd000/0x1000)=nil, 0x0) 10:13:43 executing program 1: openat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x46e2, 0x0) r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000040), 0x2, 0x0) mount$9p_fd(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f00000000c0), 0x2000000, &(0x7f00000004c0)={'trans=fd,', {}, 0x2c, {'wfdno', 0x3d, r0}, 0x2c, {[{@debug}, {@debug={'debug', 0x3d, 0x10001}}, {@version_u}], [{@hash}, {@euid_gt}, {@fsmagic={'fsmagic', 0x3d, 0xfffffffffffffffc}}, {@euid_eq={'euid', 0x3d, 0xffffffffffffffff}}]}}) [ 313.703169] device lo entered promiscuous mode [ 313.715514] device lo left promiscuous mode 10:13:43 executing program 5: r0 = dup2(0xffffffffffffffff, 0xffffffffffffffff) r1 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000040), 0x2, 0x0) mount$9p_fd(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f00000000c0), 0x2000000, &(0x7f00000004c0)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}, 0x2c, {[{@debug}, {@debug={'debug', 0x3d, 0x10001}}, {@version_u}], [{@hash}, {@euid_gt}, {@fsmagic={'fsmagic', 0x3d, 0xfffffffffffffffc}}, {@euid_eq={'euid', 0x3d, 0xffffffffffffffff}}]}}) [ 313.737628] 9pnet: Insufficient options for proto=fd 10:13:43 executing program 6: open_tree(0xffffffffffffffff, &(0x7f0000000000)='./file0\x00', 0x101) r0 = socket$netlink(0x10, 0x3, 0x0) r1 = fcntl$dupfd(r0, 0x0, r0) getsockopt$netlink(r1, 0x10e, 0x0, 0x0, 0xfffffffffffffffe) timerfd_gettime(r1, &(0x7f0000000080)) 10:13:43 executing program 1: openat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x46e2, 0x0) r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000040), 0x2, 0x0) mount$9p_fd(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f00000000c0), 0x2000000, &(0x7f00000004c0)={'trans=fd,', {}, 0x2c, {'wfdno', 0x3d, r0}, 0x2c, {[{@debug}, {@debug={'debug', 0x3d, 0x10001}}, {@version_u}], [{@hash}, {@euid_gt}, {@fsmagic={'fsmagic', 0x3d, 0xfffffffffffffffc}}, {@euid_eq={'euid', 0x3d, 0xffffffffffffffff}}]}}) 10:13:43 executing program 7: r0 = creat(&(0x7f0000000000)='./file2\x00', 0x0) fcntl$setlease(r0, 0x400, 0x1) perf_event_open(&(0x7f0000001d80)={0x2, 0x80, 0x9, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffff, 0x0, 0x0, 0x0, 0x3}, 0x0, 0x0, 0xffffffffffffffff, 0x0) fcntl$setown(r0, 0x8, 0xffffffffffffffff) openat$dir(0xffffffffffffff9c, &(0x7f0000000240)='./file2\x00', 0x0, 0x0) [ 313.761185] device lo entered promiscuous mode [ 313.764277] device lo left promiscuous mode 10:13:43 executing program 2: r0 = openat(0xffffffffffffff9c, &(0x7f0000000000)='./file1\x00', 0x802c2, 0x0) r1 = open(&(0x7f0000000040)='./file0\x00', 0x1810c1, 0x0) r2 = openat(0xffffffffffffff9c, &(0x7f0000000080)='./file0/file0\x00', 0x719f02, 0x0) r3 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0) creat(&(0x7f0000000100)='./file1\x00', 0x100) copy_file_range(r3, 0x0, r2, 0x0, 0x200f5ef, 0x0) r4 = openat(0xffffffffffffff9c, &(0x7f00000000c0)='./file0/file0\x00', 0x105142, 0x0) creat(&(0x7f00000003c0)='./file1\x00', 0x0) r5 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0) copy_file_range(r5, 0x0, r4, 0x0, 0x200f5ef, 0x0) ioctl$EXT4_IOC_MOVE_EXT(r0, 0xc028660f, &(0x7f00000004c0)={0x3, r1, 0x35}) 10:13:43 executing program 3: sendmsg$NL80211_CMD_GET_MPP(0xffffffffffffffff, &(0x7f00000004c0)={0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x14}, 0x0) r0 = syz_open_dev$sg(&(0x7f0000000400), 0x0, 0x0) r1 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000040), 0x2, 0x0) write$binfmt_aout(r1, &(0x7f0000000640), 0x20) read(r1, &(0x7f0000000100)=""/146, 0x92) dup2(r1, r0) r2 = syz_open_dev$evdev(&(0x7f0000000040), 0x1, 0x8802) syz_open_dev$evdev(0x0, 0x0, 0x0) writev(0xffffffffffffffff, 0x0, 0x0) r3 = fcntl$dupfd(r2, 0x0, r0) r4 = syz_open_dev$evdev(&(0x7f0000000040), 0x1, 0x0) ioctl$EVIOCGRAB(r4, 0x40044590, &(0x7f0000000800)) writev(r3, &(0x7f0000000140)=[{&(0x7f0000000300)="0040abe02400030021206cda3b5e5672b89aeddb2a535fbd", 0x7e0}], 0x1) [ 313.825946] 9pnet: Insufficient options for proto=fd 10:13:43 executing program 4: r0 = fork() fcntl$lock(0xffffffffffffffff, 0x6, &(0x7f0000000000)={0x2, 0x2, 0x8, 0x73e, r0}) perf_event_open(&(0x7f0000001d80)={0x2, 0x80, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r1 = fork() ioctl$SECCOMP_IOCTL_NOTIF_RECV(0xffffffffffffffff, 0xc0502100, &(0x7f0000000040)={0x0, 0x0}) ptrace(0x8, r2) r3 = fork() r4 = getpgrp(r3) process_vm_writev(r4, &(0x7f00000001c0)=[{&(0x7f00000000c0)=""/217, 0xd9}], 0x1, &(0x7f00000002c0)=[{&(0x7f0000000200)=""/187, 0xbb}], 0x1, 0x0) ptrace(0x11, r1) 10:13:43 executing program 1: r0 = dup2(0xffffffffffffffff, 0xffffffffffffffff) r1 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000040), 0x2, 0x0) mount$9p_fd(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f00000000c0), 0x2000000, &(0x7f00000004c0)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}, 0x2c, {[{@debug}, {@debug={'debug', 0x3d, 0x10001}}, {@version_u}], [{@hash}, {@euid_gt}, {@fsmagic={'fsmagic', 0x3d, 0xfffffffffffffffc}}, {@euid_eq={'euid', 0x3d, 0xffffffffffffffff}}]}}) 10:13:43 executing program 5: r0 = dup2(0xffffffffffffffff, 0xffffffffffffffff) r1 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000040), 0x2, 0x0) mount$9p_fd(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f00000000c0), 0x2000000, &(0x7f00000004c0)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}, 0x2c, {[{@debug}, {@debug={'debug', 0x3d, 0x10001}}, {@version_u}], [{@hash}, {@euid_gt}, {@fsmagic={'fsmagic', 0x3d, 0xfffffffffffffffc}}, {@euid_eq={'euid', 0x3d, 0xffffffffffffffff}}]}}) 10:13:43 executing program 6: ioctl$SNDRV_TIMER_IOCTL_GINFO(0xffffffffffffffff, 0xc0f85403, &(0x7f0000000080)={{0xffffffffffffffff, 0x2, 0x60b0, 0x1, 0x81}, 0x9, 0x10000, 'id0\x00', 'timer0\x00', 0x0, 0xc54, 0x9, 0x3ff, 0x4}) r0 = socket$netlink(0x10, 0x3, 0x0) r1 = fcntl$dupfd(r0, 0x0, r0) getsockopt$netlink(r1, 0x10e, 0x0, 0x0, 0xfffffffffffffffe) ioctl$SNDRV_TIMER_IOCTL_SELECT(r1, 0x40345410, &(0x7f0000000180)={{0x3, 0x2, 0x31a8, 0x3, 0xb5}}) r2 = syz_open_procfs(0x0, &(0x7f0000001280)='ns\x00') getdents64(r2, &(0x7f0000000000)=""/113, 0xfff9) getdents64(r2, 0x0, 0x0) fallocate(r2, 0x10, 0x6, 0x2) 10:13:43 executing program 0: ioctl$sock_SIOCGIFINDEX_802154(0xffffffffffffffff, 0x8933, &(0x7f0000000240)={'wpan3\x00'}) r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$nl802154(&(0x7f00000006c0), r0) sendmsg$NL802154_CMD_SET_CCA_MODE(0xffffffffffffffff, &(0x7f0000000780)={&(0x7f0000000680), 0xc, &(0x7f0000000740)={&(0x7f0000000380)=ANY=[@ANYBLOB="1c000000", @ANYRES16=r1, @ANYBLOB="080028bd7000fddbdf250d00000008000300", @ANYRES32=0x0, @ANYBLOB="9f7e20717095eb042acb8f"], 0x1c}}, 0x10) ioctl$sock_SIOCGIFINDEX_802154(0xffffffffffffffff, 0x8933, &(0x7f00000000c0)={'wpan1\x00', 0x0}) sendmsg$NL802154_CMD_DEL_SEC_KEY(0xffffffffffffffff, &(0x7f0000000280)={&(0x7f0000000080)={0x10, 0x0, 0x0, 0x200000}, 0xc, &(0x7f0000000240)={&(0x7f0000000100)=ANY=[@ANYBLOB="c0000000", @ANYRES16=r1, @ANYBLOB="00012dbd7000fddbdf251800000008000300", @ANYRES32=0x0, @ANYBLOB="9000258014000400d9b35a16820057e3a054740e780aa98305000200800000000c000180050002000300004005000200d800000024000300059eedfcd6ac1a5c32f321393811f4e1c785b6a99ccf533c75d5e7138b7666f514000400e3ba46a2a1a1d11b36a4103d57ab947624000300e14b29ee2dbf5c0c40c4f2e8ac7575bb88d698a7e70747e70816c7503a80cf3008000300", @ANYRES32=r2, @ANYBLOB], 0xc0}, 0x1, 0x0, 0x0, 0x48045}, 0x20000883) r3 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) sendmsg$NL802154_CMD_SET_CHANNEL(r3, &(0x7f00000001c0)={&(0x7f0000000100), 0xc, &(0x7f0000000180)={&(0x7f0000000140)={0x14, 0x0, 0x4}, 0x14}, 0x1, 0x0, 0x0, 0x40000}, 0x0) ioctl$sock_SIOCGIFINDEX_802154(r3, 0x8933, &(0x7f0000000240)={'wpan3\x00'}) r4 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) r5 = syz_genetlink_get_family_id$nl802154(&(0x7f00000006c0), r4) sendmsg$NL802154_CMD_SET_CCA_MODE(0xffffffffffffffff, &(0x7f0000000780)={&(0x7f0000000680), 0xc, &(0x7f0000000740)={&(0x7f0000000380)=ANY=[@ANYBLOB="1c000000", @ANYRES16=r5, @ANYBLOB="080028bd7000fddbdf250d00000008000300", @ANYRES32=0x0, @ANYBLOB="9f7e20717095eb042acb8f"], 0x1c}}, 0x10) ioctl$sock_SIOCGIFINDEX_802154(0xffffffffffffffff, 0x8933, &(0x7f00000000c0)={'wpan1\x00', 0x0}) sendmsg$NL802154_CMD_DEL_SEC_KEY(r3, &(0x7f0000000280)={&(0x7f0000000080)={0x10, 0x0, 0x0, 0x200000}, 0xc, &(0x7f0000000240)={&(0x7f0000000100)=ANY=[@ANYBLOB="c0000000", @ANYRES16=r5, @ANYBLOB="00012dbd7000fddbdf251800000008000300", @ANYRES32=0x0, @ANYBLOB="9000258014000400d9b35a16820057e3a054740e780aa98305000200800000000c000180050002000300004005000200d800000024000300059eedfcd6ac1a5c32f321393811f4e1c785b6a99ccf533c75d5e7138b7666f514000400e3ba46a2a1a1d11b36a4103d57ab947624000300e14b29ee2dbf5c0c40c4f2e8ac7575bb88d698a7e70747e70816c7503a80cf3008000300", @ANYRES32=r6, @ANYBLOB], 0xc0}, 0x1, 0x0, 0x0, 0x48045}, 0x20000883) sendmsg$IEEE802154_LLSEC_DEL_DEV(0xffffffffffffffff, &(0x7f0000000200)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x22100002}, 0xc, &(0x7f0000000100)={&(0x7f0000000280)={0x4c, 0x0, 0x100, 0x70bd25, 0x25dfdbfd, {}, [@IEEE802154_ATTR_HW_ADDR={0xc}, @IEEE802154_ATTR_HW_ADDR={0xc, 0x5, {0xaaaaaaaaaaaa0002}}, @IEEE802154_ATTR_DEV_INDEX={0x8}, @IEEE802154_ATTR_DEV_INDEX={0x8}, @IEEE802154_ATTR_DEV_INDEX={0x8, 0x2, r2}, @IEEE802154_ATTR_DEV_INDEX={0x8, 0x2, r6}]}, 0x4c}, 0x1, 0x0, 0x0, 0x24008841}, 0x10) openat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x46e2, 0x0) syz_io_uring_setup(0x4b9f, &(0x7f0000000140), &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000ffd000/0x3000)=nil, &(0x7f00000000c0), &(0x7f00000001c0)=0x0) syz_io_uring_submit(0x0, r7, &(0x7f0000000240)=@IORING_OP_FADVISE={0x18, 0x0, 0x0, @fd, 0x2}, 0x0) sigaltstack(&(0x7f0000ffd000/0x1000)=nil, 0x0) 10:13:43 executing program 3: r0 = socket$inet6_tcp(0xa, 0x1, 0x0) setsockopt$inet6_tcp_int(r0, 0x6, 0x2, &(0x7f0000000080)=0x90, 0x4) bind$inet6(r0, &(0x7f00000000c0)={0xa, 0x4e20, 0x0, @loopback}, 0x1c) connect$inet6(r0, &(0x7f0000000000)={0xa, 0x4e20, 0x0, @loopback}, 0x1c) setsockopt$sock_int(0xffffffffffffffff, 0x1, 0x0, 0x0, 0x0) pwrite64(r0, &(0x7f0000000100)="c2825f4a089b925ba82794caec7c8d1bb1ef69a407cc0ebf005e8da1ad65d8c7f7c66a38441d8084c4b32c691303628ac6fc073fea0fa85aec5f87ba7b93268300b62c7568c50b282369c05df86307f231345bdf49de98377f9da89b97bf665be95c8e467d95eb7f1481be1a7c49a12932e0264fe51ebe494d4fe945877ab1ad61f9cda357361ae1db7e5abbdca8821a3e1a72900c04791856cfebeb2d1857a4602aba42d7f1e4e1bd097b7cd93adcab5cd4e401eebcbbbd22", 0xb9, 0x8000) setsockopt$sock_int(r0, 0x1, 0x8, &(0x7f0000002ec0), 0x4) sendmsg$inet6(r0, &(0x7f00000006c0)={0x0, 0x0, &(0x7f0000000540)=[{&(0x7f00000001c0)="cf", 0xfffffdef}], 0x1}, 0x10044001) r1 = socket$inet6_udplite(0xa, 0x2, 0x88) r2 = syz_open_procfs$userns(0xffffffffffffffff, &(0x7f0000000040)) ioctl$F2FS_IOC_MOVE_RANGE(r2, 0xc020f509, &(0x7f0000000200)={r1, 0xfff, 0x7, 0x7}) setsockopt$inet6_udp_int(r3, 0x11, 0x67, &(0x7f0000000240)=0x1, 0x4) fcntl$getflags(r2, 0xb) recvfrom$inet6(r0, &(0x7f0000000700)=""/4096, 0xe34e, 0xcd08, 0x0, 0x6b4) 10:13:57 executing program 2: syz_mount_image$nfs4(0x0, 0x0, 0x0, 0x0, &(0x7f0000000180), 0x2010020, 0x0) r0 = openat$hwrng(0xffffffffffffff9c, &(0x7f0000000040), 0x0, 0x0) symlinkat(&(0x7f0000000000)='./file0\x00', r0, &(0x7f0000000080)='./file0\x00') 10:13:57 executing program 3: r0 = syz_mount_image$ext4(0x0, &(0x7f0000000200)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0) mount(0x0, &(0x7f00000004c0)='./file0\x00', &(0x7f0000000500)='ramfs\x00', 0x0, 0x0) mount(0x0, &(0x7f0000000100)='./file0\x00', 0x0, 0x100000, 0x0) open_tree(r0, &(0x7f00000001c0)='./file0\x00', 0x900) mount$bind(&(0x7f00000000c0)='./file0\x00', &(0x7f0000000140)='./file0\x00', 0x0, 0x1000, 0x0) removexattr(&(0x7f0000000040)='./file0\x00', &(0x7f0000000080)=@random={'osx.', '}\x00'}) umount2(&(0x7f0000000180)='./file0\x00', 0x4) umount2(&(0x7f0000000000)='./file0\x00', 0x0) 10:13:57 executing program 7: r0 = creat(&(0x7f0000000000)='./file2\x00', 0x0) fcntl$setlease(r0, 0x400, 0x1) perf_event_open(&(0x7f0000001d80)={0x2, 0x80, 0x9, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffff, 0x0, 0x0, 0x0, 0x3}, 0x0, 0x0, 0xffffffffffffffff, 0x0) fcntl$setown(r0, 0x8, 0xffffffffffffffff) openat$dir(0xffffffffffffff9c, &(0x7f0000000240)='./file2\x00', 0x0, 0x0) 10:13:57 executing program 5: r0 = openat(0xffffffffffffff9c, 0x0, 0x46e2, 0x0) r1 = dup2(r0, r0) r2 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000040), 0x2, 0x0) mount$9p_fd(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f00000000c0), 0x2000000, &(0x7f00000004c0)={'trans=fd,', {'rfdno', 0x3d, r1}, 0x2c, {'wfdno', 0x3d, r2}, 0x2c, {[{@debug}, {@debug={'debug', 0x3d, 0x10001}}, {@version_u}], [{@hash}, {@euid_gt}, {@fsmagic={'fsmagic', 0x3d, 0xfffffffffffffffc}}, {@euid_eq={'euid', 0x3d, 0xffffffffffffffff}}]}}) 10:13:57 executing program 6: syz_mount_image$ext4(0x0, &(0x7f0000000100)='./file0\x00', 0x0, 0x0, 0x0, 0x10000, 0x0) mount(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000000080)='devtmpfs\x00', 0x0, 0x0) r0 = creat(&(0x7f00000001c0)='./file0/file0\x00', 0x0) write$P9_RLERROR(r0, &(0x7f0000000200)=ANY=[@ANYBLOB="1300000027100ee9c95d00000000000000000000001506000000b620ea455990fa921e0095f2430e9d9001b3bd204c02d30bb929dbf258c6bdad0d8d6149a471bcf010fd262d053acd2b92aa0831c6d4d4a11d0d47294b1ad2e5b14e69d5c222"], 0xffffff2c) fallocate(r0, 0x0, 0x0, 0x80003) r1 = creat(&(0x7f0000000000)='./file2\x00', 0x0) add_key$keyring(&(0x7f0000000240), 0x0, 0x0, 0x0, 0xfffffffffffffffe) r2 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x42, 0x1ff) close(r2) clone3(&(0x7f0000000080)={0x3040300, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) execveat(0xffffffffffffff9c, &(0x7f0000000000)='./file1\x00', 0x0, 0x0, 0x0) fcntl$setlease(0xffffffffffffffff, 0x400, 0x1) fcntl$getownex(r1, 0x10, &(0x7f0000000180)) mount(&(0x7f0000000040)=@nullb, &(0x7f0000000280)='./file0\x00', &(0x7f00000002c0)='openpromfs\x00', 0x400, 0x0) mkdirat(r1, &(0x7f0000000140)='./file0/file1\x00', 0x24) umount2(&(0x7f00000000c0)='./file0\x00', 0xa) openat$hpet(0xffffffffffffff9c, 0x0, 0x0, 0x0) 10:13:57 executing program 4: mknod$loop(&(0x7f0000000100)='./file0\x00', 0x40, 0x0) r0 = creat(&(0x7f0000000080)='./file0\x00', 0x89) ioctl$LOOP_SET_STATUS(r0, 0x127d, 0x0) fork() ioctl$BLKTRACESETUP(r0, 0xc0481273, &(0x7f0000000000)={'\x00', 0x7, 0xffff51b2, 0x7fff, 0x7, 0xfffffffffffffffd}) close_range(r0, r0, 0x0) ioctl$FS_IOC_SETFLAGS(r0, 0x40086602, &(0x7f00000000c0)=0x2000) ioctl$BLKTRACETEARDOWN(r0, 0x1276, 0x0) ioctl$BLKTRACESETUP(r0, 0xc0481273, &(0x7f0000000140)={'\x00', 0x3f, 0x401, 0x8, 0x3, 0x3}) 10:13:57 executing program 0: ioctl$sock_SIOCGIFINDEX_802154(0xffffffffffffffff, 0x8933, &(0x7f0000000240)={'wpan3\x00'}) r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$nl802154(&(0x7f00000006c0), r0) sendmsg$NL802154_CMD_SET_CCA_MODE(0xffffffffffffffff, &(0x7f0000000780)={&(0x7f0000000680), 0xc, &(0x7f0000000740)={&(0x7f0000000380)=ANY=[@ANYBLOB="1c000000", @ANYRES16=r1, @ANYBLOB="080028bd7000fddbdf250d00000008000300", @ANYRES32=0x0, @ANYBLOB="9f7e20717095eb042acb8f"], 0x1c}}, 0x10) ioctl$sock_SIOCGIFINDEX_802154(0xffffffffffffffff, 0x8933, &(0x7f00000000c0)={'wpan1\x00', 0x0}) sendmsg$NL802154_CMD_DEL_SEC_KEY(0xffffffffffffffff, &(0x7f0000000280)={&(0x7f0000000080)={0x10, 0x0, 0x0, 0x200000}, 0xc, &(0x7f0000000240)={&(0x7f0000000100)=ANY=[@ANYBLOB="c0000000", @ANYRES16=r1, @ANYBLOB="00012dbd7000fddbdf251800000008000300", @ANYRES32=0x0, @ANYBLOB="9000258014000400d9b35a16820057e3a054740e780aa98305000200800000000c000180050002000300004005000200d800000024000300059eedfcd6ac1a5c32f321393811f4e1c785b6a99ccf533c75d5e7138b7666f514000400e3ba46a2a1a1d11b36a4103d57ab947624000300e14b29ee2dbf5c0c40c4f2e8ac7575bb88d698a7e70747e70816c7503a80cf3008000300", @ANYRES32=r2, @ANYBLOB], 0xc0}, 0x1, 0x0, 0x0, 0x48045}, 0x20000883) r3 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) sendmsg$NL802154_CMD_SET_CHANNEL(r3, &(0x7f00000001c0)={&(0x7f0000000100), 0xc, &(0x7f0000000180)={&(0x7f0000000140)={0x14, 0x0, 0x4}, 0x14}, 0x1, 0x0, 0x0, 0x40000}, 0x0) ioctl$sock_SIOCGIFINDEX_802154(r3, 0x8933, &(0x7f0000000240)={'wpan3\x00'}) r4 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) r5 = syz_genetlink_get_family_id$nl802154(&(0x7f00000006c0), r4) sendmsg$NL802154_CMD_SET_CCA_MODE(0xffffffffffffffff, &(0x7f0000000780)={&(0x7f0000000680), 0xc, &(0x7f0000000740)={&(0x7f0000000380)=ANY=[@ANYBLOB="1c000000", @ANYRES16=r5, @ANYBLOB="080028bd7000fddbdf250d00000008000300", @ANYRES32=0x0, @ANYBLOB="9f7e20717095eb042acb8f"], 0x1c}}, 0x10) ioctl$sock_SIOCGIFINDEX_802154(0xffffffffffffffff, 0x8933, &(0x7f00000000c0)={'wpan1\x00', 0x0}) sendmsg$NL802154_CMD_DEL_SEC_KEY(r3, &(0x7f0000000280)={&(0x7f0000000080)={0x10, 0x0, 0x0, 0x200000}, 0xc, &(0x7f0000000240)={&(0x7f0000000100)=ANY=[@ANYBLOB="c0000000", @ANYRES16=r5, @ANYBLOB="00012dbd7000fddbdf251800000008000300", @ANYRES32=0x0, @ANYBLOB="9000258014000400d9b35a16820057e3a054740e780aa98305000200800000000c000180050002000300004005000200d800000024000300059eedfcd6ac1a5c32f321393811f4e1c785b6a99ccf533c75d5e7138b7666f514000400e3ba46a2a1a1d11b36a4103d57ab947624000300e14b29ee2dbf5c0c40c4f2e8ac7575bb88d698a7e70747e70816c7503a80cf3008000300", @ANYRES32=r6, @ANYBLOB], 0xc0}, 0x1, 0x0, 0x0, 0x48045}, 0x20000883) sendmsg$IEEE802154_LLSEC_DEL_DEV(0xffffffffffffffff, &(0x7f0000000200)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x22100002}, 0xc, &(0x7f0000000100)={&(0x7f0000000280)={0x4c, 0x0, 0x100, 0x70bd25, 0x25dfdbfd, {}, [@IEEE802154_ATTR_HW_ADDR={0xc}, @IEEE802154_ATTR_HW_ADDR={0xc, 0x5, {0xaaaaaaaaaaaa0002}}, @IEEE802154_ATTR_DEV_INDEX={0x8}, @IEEE802154_ATTR_DEV_INDEX={0x8}, @IEEE802154_ATTR_DEV_INDEX={0x8, 0x2, r2}, @IEEE802154_ATTR_DEV_INDEX={0x8, 0x2, r6}]}, 0x4c}, 0x1, 0x0, 0x0, 0x24008841}, 0x10) r7 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffd000/0x3000)=nil, 0x3000, 0x0, 0x13, 0xffffffffffffffff, 0x0) syz_io_uring_setup(0x4b9f, &(0x7f0000000140), &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000ffd000/0x3000)=nil, &(0x7f00000000c0), &(0x7f00000001c0)=0x0) syz_io_uring_submit(r7, r8, &(0x7f0000000240)=@IORING_OP_FADVISE={0x18, 0x0, 0x0, @fd, 0x2}, 0x0) sigaltstack(&(0x7f0000ffd000/0x1000)=nil, 0x0) 10:13:57 executing program 1: r0 = dup2(0xffffffffffffffff, 0xffffffffffffffff) r1 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000040), 0x2, 0x0) mount$9p_fd(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f00000000c0), 0x2000000, &(0x7f00000004c0)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}, 0x2c, {[{@debug}, {@debug={'debug', 0x3d, 0x10001}}, {@version_u}], [{@hash}, {@euid_gt}, {@fsmagic={'fsmagic', 0x3d, 0xfffffffffffffffc}}, {@euid_eq={'euid', 0x3d, 0xffffffffffffffff}}]}}) 10:13:57 executing program 5: r0 = openat(0xffffffffffffff9c, 0x0, 0x46e2, 0x0) r1 = dup2(r0, r0) r2 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000040), 0x2, 0x0) mount$9p_fd(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f00000000c0), 0x2000000, &(0x7f00000004c0)={'trans=fd,', {'rfdno', 0x3d, r1}, 0x2c, {'wfdno', 0x3d, r2}, 0x2c, {[{@debug}, {@debug={'debug', 0x3d, 0x10001}}, {@version_u}], [{@hash}, {@euid_gt}, {@fsmagic={'fsmagic', 0x3d, 0xfffffffffffffffc}}, {@euid_eq={'euid', 0x3d, 0xffffffffffffffff}}]}}) 10:13:57 executing program 1: r0 = dup2(0xffffffffffffffff, 0xffffffffffffffff) r1 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000040), 0x2, 0x0) mount$9p_fd(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f00000000c0), 0x2000000, &(0x7f00000004c0)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}, 0x2c, {[{@debug}, {@debug={'debug', 0x3d, 0x10001}}, {@version_u}], [{@hash}, {@euid_gt}, {@fsmagic={'fsmagic', 0x3d, 0xfffffffffffffffc}}, {@euid_eq={'euid', 0x3d, 0xffffffffffffffff}}]}}) 10:13:57 executing program 2: r0 = socket$netlink(0x10, 0x3, 0x0) r1 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000040), 0x2, 0x0) write$binfmt_aout(r1, &(0x7f0000000640), 0x20) read(r1, &(0x7f0000000100)=""/146, 0x92) r2 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000040), 0x2, 0x0) write$binfmt_aout(r2, &(0x7f0000000640), 0x20) read(r2, &(0x7f0000000100)=""/146, 0x92) r3 = openat$hpet(0xffffffffffffff9c, &(0x7f0000000000), 0x222702, 0x0) r4 = fcntl$dupfd(r0, 0x406, r3) sendmsg$nl_generic(r4, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000001140)=ANY=[@ANYBLOB="2400000002000000080000010000000008001e003d"], 0x24}}, 0x2000011) 10:13:57 executing program 3: r0 = syz_mount_image$ext4(0x0, &(0x7f0000000200)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0) mount(0x0, &(0x7f00000004c0)='./file0\x00', &(0x7f0000000500)='ramfs\x00', 0x0, 0x0) mount(0x0, &(0x7f0000000100)='./file0\x00', 0x0, 0x100000, 0x0) open_tree(r0, &(0x7f00000001c0)='./file0\x00', 0x900) mount$bind(&(0x7f00000000c0)='./file0\x00', &(0x7f0000000140)='./file0\x00', 0x0, 0x1000, 0x0) removexattr(&(0x7f0000000040)='./file0\x00', &(0x7f0000000080)=@random={'osx.', '}\x00'}) umount2(&(0x7f0000000180)='./file0\x00', 0x4) umount2(&(0x7f0000000000)='./file0\x00', 0x0) 10:13:57 executing program 4: mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x7, 0x5e032, 0xffffffffffffffff, 0x4000) 10:13:57 executing program 2: socketpair$unix(0x1, 0x5, 0x0, &(0x7f00000001c0)={0xffffffffffffffff}) ioctl$sock_SIOCGIFVLAN_GET_VLAN_VID_CMD(r0, 0x8982, &(0x7f0000001540)) syz_mount_image$ext4(&(0x7f0000000040)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x40000, 0x4, &(0x7f0000000200)=[{&(0x7f0000010000)="2000000080000000060000006a0000000f000000000000000100000001000000004000000040000020000000e0f4655fe0f4655f0100ffff53ef010001000000dff4655f000000000000000001000000000000000b0000000001", 0x5a, 0x400}, {&(0x7f0000010400)="0200000003000000040000006a000f", 0xf, 0x800}, {&(0x7f0000010500)="ffff3f00000000000000000000000000ffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffff", 0x802, 0x1000}, {&(0x7f0000011600)="ed41000000080000dff4655fe0f4655fe0f4655f000000000000040004", 0x1d, 0x2100}], 0x12, &(0x7f0000012c00)=ANY=[]) chdir(&(0x7f0000000040)='./file0\x00') r1 = creat(&(0x7f0000000080)='./file0\x00', 0x0) pwrite64(r1, &(0x7f0000000300)="af", 0xfffffeb2, 0x0) write$cgroup_type(r1, &(0x7f0000000000), 0x9) io_setup(0x0, &(0x7f0000000080)) openat$tcp_congestion(0xffffffffffffff9c, &(0x7f0000000300), 0x1, 0x0) fsconfig$FSCONFIG_SET_STRING(0xffffffffffffffff, 0x1, 0x0, 0x0, 0x0) ioctl$sock_SIOCETHTOOL(0xffffffffffffffff, 0x8946, 0x0) stat(&(0x7f0000001cc0)='.\x00', &(0x7f0000001c00)={0x0, 0x0, 0x0, 0x0, 0x0}) setresuid(0xffffffffffffffff, r2, 0x0) syz_mount_image$nfs4(&(0x7f00000000c0), &(0x7f0000000140)='./file0\x00', 0x6, 0x4, &(0x7f0000000280)=[{&(0x7f0000000340)="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", 0x1000, 0x7fff}, {&(0x7f0000001340)="19847720e10629e7ed5acd3b71a136070a23705611b7986f4bd579d53cd09411676613f31642139c11a8a81644ddef77a77105bc1f35c2eb9382dd111288791af47d2d3c05208fd91e77024923905683fe40123b5b3308be364e6974c37592383cffbbdda0ba6c21c763207ef1381f80d049c778025924f15cf955b0ebfeecf9b4c641ac2f13253c372d424ac6d3538bbca9832e998fbab35dd111283afb", 0x9e, 0xca64}, {&(0x7f0000000180)="4e3bd1672243523709945becfb32eef2f873df0e0f3a6c1b706a2c4e63829b1a95a2081b", 0x24, 0x4}, {&(0x7f0000001400)="2aafeddff389a33ef2050c4d1cd2dbaa92e75ffa7bae25ad0aad60b7dbd84b041958a6b0a4f56847d5360ee0c53e1b08709d5a7f0a75b51ca8151435c0e8758c9055dd82de7ae3c82563b22c46688d07e17d99a8c7eea7c1f79b53f6bc421c1927ad449a12c2d25cb3a73ca9d4555dc51c241e249622aef8a7da53803c904e9bd3af36ad0526863be5946afd873bd64f49aa4980f94495833b138301334c", 0x9e, 0x4}], 0x800006, &(0x7f00000014c0)={[{'ext4\x00'}], [{@smackfshat}, {@fsmagic={'fsmagic', 0x3d, 0x100000001}}, {@fowner_eq={'fowner', 0x3d, r2}}, {@appraise_type}]}) 10:13:57 executing program 4: ioctl$TIOCMBIS(0xffffffffffffffff, 0x5416, &(0x7f0000000040)=0xb0) socket$nl_netfilter(0x10, 0x3, 0xc) kexec_load(0x0, 0x1, &(0x7f00000000c0)=[{0x0, 0x0, 0x1000000, 0x8000000}], 0x0) ioctl$TIOCMBIC(0xffffffffffffffff, 0x5417, &(0x7f0000000000)) r0 = syz_io_uring_complete(0x0) sendmsg$IPCTNL_MSG_EXP_GET(r0, &(0x7f0000000180)={&(0x7f0000000080)={0x10, 0x0, 0x0, 0x100}, 0xc, &(0x7f0000000140)={&(0x7f0000000100)={0x3c, 0x1, 0x2, 0x5, 0x0, 0x0, {0x7, 0x0, 0x8}, [@CTA_EXPECT_FN={0x13, 0xb, 'callforwarding\x00'}, @CTA_EXPECT_NAT={0x14, 0xa, 0x0, 0x1, [@CTA_EXPECT_NAT_DIR={0x8, 0x1, 0x1, 0x0, 0x1}, @CTA_EXPECT_NAT_DIR={0x8, 0x1, 0x1, 0x0, 0x1}]}]}, 0x3c}, 0x1, 0x0, 0x0, 0x2000c030}, 0x24000095) syz_open_dev$vcsu(&(0x7f0000002440), 0x3, 0x101001) r1 = syz_open_dev$tty20(0xc, 0x4, 0x1) r2 = openat$ttyS3(0xffffffffffffff9c, &(0x7f00000001c0), 0x408601, 0x0) ioctl$TIOCSTI(r2, 0x5412, &(0x7f0000000200)=0x8) ioctl$TCSETSF(r1, 0x5404, &(0x7f0000000000)={0x0, 0xfff, 0x0, 0x0, 0x0, "8ad11e23c8e8e80f03daee8fe8fe61406cd1f0"}) r3 = syz_open_dev$tty20(0xc, 0x4, 0x1) writev(r3, &(0x7f0000000240)=[{&(0x7f0000000b00)="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", 0x289}], 0x1) 10:13:57 executing program 6: syz_mount_image$ext4(0x0, &(0x7f0000000100)='./file0\x00', 0x0, 0x0, 0x0, 0x10000, 0x0) mount(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000000080)='devtmpfs\x00', 0x0, 0x0) r0 = creat(&(0x7f00000001c0)='./file0/file0\x00', 0x0) write$P9_RLERROR(r0, &(0x7f0000000200)=ANY=[@ANYBLOB="1300000027100ee9c95d00000000000000000000001506000000b620ea455990fa921e0095f2430e9d9001b3bd204c02d30bb929dbf258c6bdad0d8d6149a471bcf010fd262d053acd2b92aa0831c6d4d4a11d0d47294b1ad2e5b14e69d5c222"], 0xffffff2c) fallocate(r0, 0x0, 0x0, 0x80003) r1 = creat(&(0x7f0000000000)='./file2\x00', 0x0) add_key$keyring(&(0x7f0000000240), 0x0, 0x0, 0x0, 0xfffffffffffffffe) r2 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x42, 0x1ff) close(r2) clone3(&(0x7f0000000080)={0x3040300, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) execveat(0xffffffffffffff9c, &(0x7f0000000000)='./file1\x00', 0x0, 0x0, 0x0) fcntl$setlease(0xffffffffffffffff, 0x400, 0x1) fcntl$getownex(r1, 0x10, &(0x7f0000000180)) mount(&(0x7f0000000040)=@nullb, &(0x7f0000000280)='./file0\x00', &(0x7f00000002c0)='openpromfs\x00', 0x400, 0x0) mkdirat(r1, &(0x7f0000000140)='./file0/file1\x00', 0x24) umount2(&(0x7f00000000c0)='./file0\x00', 0xa) openat$hpet(0xffffffffffffff9c, 0x0, 0x0, 0x0) 10:13:57 executing program 1: r0 = openat(0xffffffffffffff9c, 0x0, 0x46e2, 0x0) r1 = dup2(r0, r0) r2 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000040), 0x2, 0x0) mount$9p_fd(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f00000000c0), 0x2000000, &(0x7f00000004c0)={'trans=fd,', {'rfdno', 0x3d, r1}, 0x2c, {'wfdno', 0x3d, r2}, 0x2c, {[{@debug}, {@debug={'debug', 0x3d, 0x10001}}, {@version_u}], [{@hash}, {@euid_gt}, {@fsmagic={'fsmagic', 0x3d, 0xfffffffffffffffc}}, {@euid_eq={'euid', 0x3d, 0xffffffffffffffff}}]}}) 10:14:10 executing program 5: r0 = openat(0xffffffffffffff9c, 0x0, 0x46e2, 0x0) r1 = dup2(r0, r0) r2 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000040), 0x2, 0x0) mount$9p_fd(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f00000000c0), 0x2000000, &(0x7f00000004c0)={'trans=fd,', {'rfdno', 0x3d, r1}, 0x2c, {'wfdno', 0x3d, r2}, 0x2c, {[{@debug}, {@debug={'debug', 0x3d, 0x10001}}, {@version_u}], [{@hash}, {@euid_gt}, {@fsmagic={'fsmagic', 0x3d, 0xfffffffffffffffc}}, {@euid_eq={'euid', 0x3d, 0xffffffffffffffff}}]}}) 10:14:10 executing program 7: r0 = semget$private(0x0, 0x6, 0x0) semop(r0, &(0x7f0000000000)=[{0x2, 0xffff}], 0x1) semtimedop(r0, &(0x7f0000000100)=[{0x0, 0x0, 0x1800}, {0x0, 0x8001}], 0x2, 0x0) semtimedop(r0, &(0x7f0000000180)=[{0x0, 0x8001}], 0x1, 0x0) semctl$SETALL(r0, 0x0, 0x11, &(0x7f0000000080)=[0x3]) semop(r0, &(0x7f0000000040)=[{0x4, 0x3, 0x800}, {0x3, 0x3f}, {0x4, 0x1, 0x1800}, {0x2, 0x9, 0x800}, {0x1, 0x4cdd}, {0x2, 0x8, 0x1000}], 0x6) 10:14:10 executing program 2: r0 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x105142, 0x0) r1 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0) copy_file_range(r1, 0x0, r0, 0x0, 0x200f5ef, 0x0) openat(r1, &(0x7f0000000040)='./file1\x00', 0x8100, 0x2) setsockopt$inet_tcp_TLS_TX(r1, 0x6, 0x1, 0x0, 0x0) r2 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x101142, 0x0) r3 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x105142, 0x0) ioctl$sock_SIOCGIFINDEX(0xffffffffffffffff, 0x8933, &(0x7f0000000140)={'syz_tun\x00'}) sendto$packet(0xffffffffffffffff, 0x0, 0x0, 0x40000, &(0x7f0000000180)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @remote}, 0x14) ftruncate(r2, 0x2) sendfile(r3, r2, 0x0, 0x4) 10:14:10 executing program 3: r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) r2 = syz_genetlink_get_family_id$netlbl_mgmt(&(0x7f0000000600), r1) sendmsg$NLBL_MGMT_C_ADDDEF(r1, &(0x7f0000000700)={0x0, 0x0, &(0x7f00000006c0)={&(0x7f0000000640)=ANY=[@ANYBLOB='$\x00\x00\x00', @ANYRES16=r2, @ANYBLOB="4234f7293360332600000000000000030400000008000000000000000800"], 0x24}}, 0x0) r3 = syz_genetlink_get_family_id$nl802154(&(0x7f0000000100), 0xffffffffffffffff) sendmsg$NL802154_CMD_GET_INTERFACE(r1, &(0x7f0000000240)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x4}, 0xc, &(0x7f0000000200)={&(0x7f0000000140)={0x2c, r3, 0x400, 0x70bd28, 0x25dfdbff, {}, [@NL802154_ATTR_WPAN_DEV={0xc, 0x6, 0x100000001}, @NL802154_ATTR_WPAN_DEV={0xc, 0x6, 0x300000003}]}, 0x2c}, 0x1, 0x0, 0x0, 0x20000000}, 0x48800) syz_genetlink_get_family_id$ieee802154(&(0x7f0000000540), r1) syz_genetlink_get_family_id$netlbl_cipso(&(0x7f00000002c0), r0) r4 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) r5 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) r6 = syz_genetlink_get_family_id$netlbl_cipso(&(0x7f00000000c0), r5) sendmsg$NLBL_CIPSOV4_C_ADD(r4, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000180)={&(0x7f00000003c0)=ANY=[@ANYBLOB='0\x00\x00\x00', @ANYRES16=r6, @ANYBLOB="01000002000000000000010000000c001e502203437f0480370000000800"], 0x30}}, 0x0) sendmsg$NLBL_CIPSOV4_C_ADD(r0, &(0x7f00000003c0)={0x0, 0x0, &(0x7f0000000380)={&(0x7f0000000040)={0x5c, r6, 0x400, 0x0, 0x0, {0x2}, [@NLBL_CIPSOV4_A_MLSLVLLST={0x48, 0x8, 0x0, 0x1, [{0x44, 0x7, 0x0, 0x1, [@NLBL_CIPSOV4_A_MLSLVLREM={0x8, 0x6, 0x3d}, @NLBL_CIPSOV4_A_MLSLVLREM={0x8, 0x6, 0xb5}, @NLBL_CIPSOV4_A_MLSLVLREM={0x8, 0x6, 0x6}, @NLBL_CIPSOV4_A_MLSLVLLOC={0x8, 0x5, 0x3be79dea}, @NLBL_CIPSOV4_A_MLSLVLLOC={0x8, 0x5, 0x131cd128}, @NLBL_CIPSOV4_A_MLSLVLREM={0x8, 0x6, 0x43}, @NLBL_CIPSOV4_A_MLSLVLREM={0x8, 0x6, 0x1047}, @NLBL_CIPSOV4_A_MLSLVLREM={0x8, 0x6, 0x71}]}]}]}, 0x5c}, 0x1, 0x0, 0x0, 0x20008004}, 0x0) sendmsg$IEEE802154_SCAN_REQ(r5, &(0x7f0000000400)={&(0x7f0000000280)={0x10, 0x0, 0x0, 0x200}, 0xc, &(0x7f0000000340)={&(0x7f0000000300)={0x24, 0x0, 0x4, 0x70bd29, 0x25dfdbfb, {}, [@IEEE802154_ATTR_CHANNELS={0x8}, @IEEE802154_ATTR_DURATION={0x5, 0x15, 0x3}]}, 0x24}, 0x1, 0x0, 0x0, 0x880}, 0x859) sendmsg$NL802154_CMD_SET_TX_POWER(r1, &(0x7f0000000500)={&(0x7f0000000440)={0x10, 0x0, 0x0, 0x10000100}, 0xc, &(0x7f00000004c0)={&(0x7f0000000480)={0x1c, r3, 0x1, 0x70bd2a, 0x5, {}, [@NL802154_ATTR_WPAN_PHY={0x8, 0x1, 0x1}]}, 0x1c}, 0x1, 0x0, 0x0, 0x200400c0}, 0x0) 10:14:10 executing program 0: ioctl$sock_SIOCGIFINDEX_802154(0xffffffffffffffff, 0x8933, &(0x7f0000000240)={'wpan3\x00'}) r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$nl802154(&(0x7f00000006c0), r0) sendmsg$NL802154_CMD_SET_CCA_MODE(0xffffffffffffffff, &(0x7f0000000780)={&(0x7f0000000680), 0xc, &(0x7f0000000740)={&(0x7f0000000380)=ANY=[@ANYBLOB="1c000000", @ANYRES16=r1, @ANYBLOB="080028bd7000fddbdf250d00000008000300", @ANYRES32=0x0, @ANYBLOB="9f7e20717095eb042acb8f"], 0x1c}}, 0x10) ioctl$sock_SIOCGIFINDEX_802154(0xffffffffffffffff, 0x8933, &(0x7f00000000c0)={'wpan1\x00', 0x0}) sendmsg$NL802154_CMD_DEL_SEC_KEY(0xffffffffffffffff, &(0x7f0000000280)={&(0x7f0000000080)={0x10, 0x0, 0x0, 0x200000}, 0xc, &(0x7f0000000240)={&(0x7f0000000100)=ANY=[@ANYBLOB="c0000000", @ANYRES16=r1, @ANYBLOB="00012dbd7000fddbdf251800000008000300", @ANYRES32=0x0, @ANYBLOB="9000258014000400d9b35a16820057e3a054740e780aa98305000200800000000c000180050002000300004005000200d800000024000300059eedfcd6ac1a5c32f321393811f4e1c785b6a99ccf533c75d5e7138b7666f514000400e3ba46a2a1a1d11b36a4103d57ab947624000300e14b29ee2dbf5c0c40c4f2e8ac7575bb88d698a7e70747e70816c7503a80cf3008000300", @ANYRES32=r2, @ANYBLOB], 0xc0}, 0x1, 0x0, 0x0, 0x48045}, 0x20000883) r3 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) sendmsg$NL802154_CMD_SET_CHANNEL(r3, &(0x7f00000001c0)={&(0x7f0000000100), 0xc, &(0x7f0000000180)={&(0x7f0000000140)={0x14, 0x0, 0x4}, 0x14}, 0x1, 0x0, 0x0, 0x40000}, 0x0) ioctl$sock_SIOCGIFINDEX_802154(r3, 0x8933, &(0x7f0000000240)={'wpan3\x00'}) r4 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) r5 = syz_genetlink_get_family_id$nl802154(&(0x7f00000006c0), r4) sendmsg$NL802154_CMD_SET_CCA_MODE(0xffffffffffffffff, &(0x7f0000000780)={&(0x7f0000000680), 0xc, &(0x7f0000000740)={&(0x7f0000000380)=ANY=[@ANYBLOB="1c000000", @ANYRES16=r5, @ANYBLOB="080028bd7000fddbdf250d00000008000300", @ANYRES32=0x0, @ANYBLOB="9f7e20717095eb042acb8f"], 0x1c}}, 0x10) ioctl$sock_SIOCGIFINDEX_802154(0xffffffffffffffff, 0x8933, &(0x7f00000000c0)={'wpan1\x00', 0x0}) sendmsg$NL802154_CMD_DEL_SEC_KEY(r3, &(0x7f0000000280)={&(0x7f0000000080)={0x10, 0x0, 0x0, 0x200000}, 0xc, &(0x7f0000000240)={&(0x7f0000000100)=ANY=[@ANYBLOB="c0000000", @ANYRES16=r5, @ANYBLOB="00012dbd7000fddbdf251800000008000300", @ANYRES32=0x0, @ANYBLOB="9000258014000400d9b35a16820057e3a054740e780aa98305000200800000000c000180050002000300004005000200d800000024000300059eedfcd6ac1a5c32f321393811f4e1c785b6a99ccf533c75d5e7138b7666f514000400e3ba46a2a1a1d11b36a4103d57ab947624000300e14b29ee2dbf5c0c40c4f2e8ac7575bb88d698a7e70747e70816c7503a80cf3008000300", @ANYRES32=r6, @ANYBLOB], 0xc0}, 0x1, 0x0, 0x0, 0x48045}, 0x20000883) sendmsg$IEEE802154_LLSEC_DEL_DEV(0xffffffffffffffff, &(0x7f0000000200)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x22100002}, 0xc, &(0x7f0000000100)={&(0x7f0000000280)={0x4c, 0x0, 0x100, 0x70bd25, 0x25dfdbfd, {}, [@IEEE802154_ATTR_HW_ADDR={0xc}, @IEEE802154_ATTR_HW_ADDR={0xc, 0x5, {0xaaaaaaaaaaaa0002}}, @IEEE802154_ATTR_DEV_INDEX={0x8}, @IEEE802154_ATTR_DEV_INDEX={0x8}, @IEEE802154_ATTR_DEV_INDEX={0x8, 0x2, r2}, @IEEE802154_ATTR_DEV_INDEX={0x8, 0x2, r6}]}, 0x4c}, 0x1, 0x0, 0x0, 0x24008841}, 0x10) r7 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffd000/0x3000)=nil, 0x3000, 0x0, 0x13, 0xffffffffffffffff, 0x0) syz_io_uring_setup(0x4b9f, &(0x7f0000000140), &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000ffd000/0x3000)=nil, &(0x7f00000000c0), &(0x7f00000001c0)=0x0) syz_io_uring_submit(r7, r8, &(0x7f0000000240)=@IORING_OP_FADVISE={0x18, 0x0, 0x0, @fd, 0x2}, 0x0) sigaltstack(&(0x7f0000ffd000/0x1000)=nil, 0x0) 10:14:10 executing program 1: r0 = openat(0xffffffffffffff9c, 0x0, 0x46e2, 0x0) r1 = dup2(r0, r0) r2 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000040), 0x2, 0x0) mount$9p_fd(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f00000000c0), 0x2000000, &(0x7f00000004c0)={'trans=fd,', {'rfdno', 0x3d, r1}, 0x2c, {'wfdno', 0x3d, r2}, 0x2c, {[{@debug}, {@debug={'debug', 0x3d, 0x10001}}, {@version_u}], [{@hash}, {@euid_gt}, {@fsmagic={'fsmagic', 0x3d, 0xfffffffffffffffc}}, {@euid_eq={'euid', 0x3d, 0xffffffffffffffff}}]}}) 10:14:10 executing program 6: r0 = openat(0xffffffffffffff9c, &(0x7f0000000000)='./file1\x00', 0x802c2, 0x0) r1 = open(&(0x7f0000000040)='./file0\x00', 0x1810c1, 0x0) r2 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x105142, 0x0) r3 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0) openat$vcs(0xffffffffffffff9c, &(0x7f0000000080), 0x208002, 0x0) copy_file_range(r3, 0x0, r2, 0x0, 0x200f5ef, 0x0) lseek(r1, 0xc18c, 0x0) write$binfmt_elf64(r1, &(0x7f0000002180)=ANY=[], 0x78) r4 = socket$inet(0x2, 0x1, 0x0) setsockopt$inet_int(r4, 0x0, 0x13, &(0x7f0000000180)=0x1, 0x4) bind$inet(r4, &(0x7f0000000c00)={0x2, 0x0, @multicast2}, 0x10) ioctl$sock_SIOCGIFINDEX_80211(r4, 0x8933, &(0x7f00000000c0)={'wlan1\x00'}) r5 = syz_genetlink_get_family_id$nl80211(&(0x7f00000001c0), 0xffffffffffffffff) sendmsg$NL80211_CMD_LEAVE_MESH(r3, &(0x7f0000000280)={&(0x7f0000000140)={0x10, 0x0, 0x0, 0x6008}, 0xc, &(0x7f0000000240)={&(0x7f00000002c0)=ANY=[@ANYBLOB="14000000", @ANYRES16=r5, @ANYBLOB="0004ccc04caa9b2a72279adffe2a80232f28a0ccd9c702a6a900000000000000004739b639bd7000c03c41b5c506000064c42816934f0a779da7a4d6a18ca0e4fd42c44078dac673fd7b92c9658b3497ef967c2432d2f0469b312832758dd8e329c754c860b5cc8392fc1fb91ecdfbe4face6b3c9d28bd"], 0x14}, 0x1, 0x0, 0x0, 0x20004015}, 0x800) ioctl$EXT4_IOC_MOVE_EXT(r0, 0xc028660f, &(0x7f0000000040)={0x0, r1}) 10:14:10 executing program 4: ioctl$TIOCMBIS(0xffffffffffffffff, 0x5416, &(0x7f0000000040)=0xb0) socket$nl_netfilter(0x10, 0x3, 0xc) kexec_load(0x0, 0x1, &(0x7f00000000c0)=[{0x0, 0x0, 0x1000000, 0x8000000}], 0x0) ioctl$TIOCMBIC(0xffffffffffffffff, 0x5417, &(0x7f0000000000)) r0 = syz_io_uring_complete(0x0) sendmsg$IPCTNL_MSG_EXP_GET(r0, &(0x7f0000000180)={&(0x7f0000000080)={0x10, 0x0, 0x0, 0x100}, 0xc, &(0x7f0000000140)={&(0x7f0000000100)={0x3c, 0x1, 0x2, 0x5, 0x0, 0x0, {0x7, 0x0, 0x8}, [@CTA_EXPECT_FN={0x13, 0xb, 'callforwarding\x00'}, @CTA_EXPECT_NAT={0x14, 0xa, 0x0, 0x1, [@CTA_EXPECT_NAT_DIR={0x8, 0x1, 0x1, 0x0, 0x1}, @CTA_EXPECT_NAT_DIR={0x8, 0x1, 0x1, 0x0, 0x1}]}]}, 0x3c}, 0x1, 0x0, 0x0, 0x2000c030}, 0x24000095) syz_open_dev$vcsu(&(0x7f0000002440), 0x3, 0x101001) r1 = syz_open_dev$tty20(0xc, 0x4, 0x1) r2 = openat$ttyS3(0xffffffffffffff9c, &(0x7f00000001c0), 0x408601, 0x0) ioctl$TIOCSTI(r2, 0x5412, &(0x7f0000000200)=0x8) ioctl$TCSETSF(r1, 0x5404, &(0x7f0000000000)={0x0, 0xfff, 0x0, 0x0, 0x0, "8ad11e23c8e8e80f03daee8fe8fe61406cd1f0"}) r3 = syz_open_dev$tty20(0xc, 0x4, 0x1) writev(r3, &(0x7f0000000240)=[{&(0x7f0000000b00)="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", 0x289}], 0x1) 10:14:10 executing program 1: r0 = openat(0xffffffffffffff9c, 0x0, 0x46e2, 0x0) r1 = dup2(r0, r0) r2 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000040), 0x2, 0x0) mount$9p_fd(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f00000000c0), 0x2000000, &(0x7f00000004c0)={'trans=fd,', {'rfdno', 0x3d, r1}, 0x2c, {'wfdno', 0x3d, r2}, 0x2c, {[{@debug}, {@debug={'debug', 0x3d, 0x10001}}, {@version_u}], [{@hash}, {@euid_gt}, {@fsmagic={'fsmagic', 0x3d, 0xfffffffffffffffc}}, {@euid_eq={'euid', 0x3d, 0xffffffffffffffff}}]}}) 10:14:10 executing program 5: r0 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x0, 0x0) r1 = dup2(r0, r0) r2 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000040), 0x2, 0x0) mount$9p_fd(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f00000000c0), 0x2000000, &(0x7f00000004c0)={'trans=fd,', {'rfdno', 0x3d, r1}, 0x2c, {'wfdno', 0x3d, r2}, 0x2c, {[{@debug}, {@debug={'debug', 0x3d, 0x10001}}, {@version_u}], [{@hash}, {@euid_gt}, {@fsmagic={'fsmagic', 0x3d, 0xfffffffffffffffc}}, {@euid_eq={'euid', 0x3d, 0xffffffffffffffff}}]}}) 10:14:10 executing program 1: r0 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x0, 0x0) r1 = dup2(r0, r0) r2 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000040), 0x2, 0x0) mount$9p_fd(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f00000000c0), 0x2000000, &(0x7f00000004c0)={'trans=fd,', {'rfdno', 0x3d, r1}, 0x2c, {'wfdno', 0x3d, r2}, 0x2c, {[{@debug}, {@debug={'debug', 0x3d, 0x10001}}, {@version_u}], [{@hash}, {@euid_gt}, {@fsmagic={'fsmagic', 0x3d, 0xfffffffffffffffc}}, {@euid_eq={'euid', 0x3d, 0xffffffffffffffff}}]}}) [ 340.564742] netlink: 16 bytes leftover after parsing attributes in process `syz-executor.3'. 10:14:10 executing program 5: r0 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x0, 0x0) r1 = dup2(r0, r0) r2 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000040), 0x2, 0x0) mount$9p_fd(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f00000000c0), 0x2000000, &(0x7f00000004c0)={'trans=fd,', {'rfdno', 0x3d, r1}, 0x2c, {'wfdno', 0x3d, r2}, 0x2c, {[{@debug}, {@debug={'debug', 0x3d, 0x10001}}, {@version_u}], [{@hash}, {@euid_gt}, {@fsmagic={'fsmagic', 0x3d, 0xfffffffffffffffc}}, {@euid_eq={'euid', 0x3d, 0xffffffffffffffff}}]}}) 10:14:10 executing program 0: ioctl$sock_SIOCGIFINDEX_802154(0xffffffffffffffff, 0x8933, &(0x7f0000000240)={'wpan3\x00'}) r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$nl802154(&(0x7f00000006c0), r0) sendmsg$NL802154_CMD_SET_CCA_MODE(0xffffffffffffffff, &(0x7f0000000780)={&(0x7f0000000680), 0xc, &(0x7f0000000740)={&(0x7f0000000380)=ANY=[@ANYBLOB="1c000000", @ANYRES16=r1, @ANYBLOB="080028bd7000fddbdf250d00000008000300", @ANYRES32=0x0, @ANYBLOB="9f7e20717095eb042acb8f"], 0x1c}}, 0x10) ioctl$sock_SIOCGIFINDEX_802154(0xffffffffffffffff, 0x8933, &(0x7f00000000c0)={'wpan1\x00', 0x0}) sendmsg$NL802154_CMD_DEL_SEC_KEY(0xffffffffffffffff, &(0x7f0000000280)={&(0x7f0000000080)={0x10, 0x0, 0x0, 0x200000}, 0xc, &(0x7f0000000240)={&(0x7f0000000100)=ANY=[@ANYBLOB="c0000000", @ANYRES16=r1, @ANYBLOB="00012dbd7000fddbdf251800000008000300", @ANYRES32=0x0, @ANYBLOB="9000258014000400d9b35a16820057e3a054740e780aa98305000200800000000c000180050002000300004005000200d800000024000300059eedfcd6ac1a5c32f321393811f4e1c785b6a99ccf533c75d5e7138b7666f514000400e3ba46a2a1a1d11b36a4103d57ab947624000300e14b29ee2dbf5c0c40c4f2e8ac7575bb88d698a7e70747e70816c7503a80cf3008000300", @ANYRES32=r2, @ANYBLOB], 0xc0}, 0x1, 0x0, 0x0, 0x48045}, 0x20000883) r3 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) sendmsg$NL802154_CMD_SET_CHANNEL(r3, &(0x7f00000001c0)={&(0x7f0000000100), 0xc, &(0x7f0000000180)={&(0x7f0000000140)={0x14, 0x0, 0x4}, 0x14}, 0x1, 0x0, 0x0, 0x40000}, 0x0) ioctl$sock_SIOCGIFINDEX_802154(r3, 0x8933, &(0x7f0000000240)={'wpan3\x00'}) r4 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) r5 = syz_genetlink_get_family_id$nl802154(&(0x7f00000006c0), r4) sendmsg$NL802154_CMD_SET_CCA_MODE(0xffffffffffffffff, &(0x7f0000000780)={&(0x7f0000000680), 0xc, &(0x7f0000000740)={&(0x7f0000000380)=ANY=[@ANYBLOB="1c000000", @ANYRES16=r5, @ANYBLOB="080028bd7000fddbdf250d00000008000300", @ANYRES32=0x0, @ANYBLOB="9f7e20717095eb042acb8f"], 0x1c}}, 0x10) ioctl$sock_SIOCGIFINDEX_802154(0xffffffffffffffff, 0x8933, &(0x7f00000000c0)={'wpan1\x00', 0x0}) sendmsg$NL802154_CMD_DEL_SEC_KEY(r3, &(0x7f0000000280)={&(0x7f0000000080)={0x10, 0x0, 0x0, 0x200000}, 0xc, &(0x7f0000000240)={&(0x7f0000000100)=ANY=[@ANYBLOB="c0000000", @ANYRES16=r5, @ANYBLOB="00012dbd7000fddbdf251800000008000300", @ANYRES32=0x0, @ANYBLOB="9000258014000400d9b35a16820057e3a054740e780aa98305000200800000000c000180050002000300004005000200d800000024000300059eedfcd6ac1a5c32f321393811f4e1c785b6a99ccf533c75d5e7138b7666f514000400e3ba46a2a1a1d11b36a4103d57ab947624000300e14b29ee2dbf5c0c40c4f2e8ac7575bb88d698a7e70747e70816c7503a80cf3008000300", @ANYRES32=r6, @ANYBLOB], 0xc0}, 0x1, 0x0, 0x0, 0x48045}, 0x20000883) sendmsg$IEEE802154_LLSEC_DEL_DEV(0xffffffffffffffff, &(0x7f0000000200)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x22100002}, 0xc, &(0x7f0000000100)={&(0x7f0000000280)={0x4c, 0x0, 0x100, 0x70bd25, 0x25dfdbfd, {}, [@IEEE802154_ATTR_HW_ADDR={0xc}, @IEEE802154_ATTR_HW_ADDR={0xc, 0x5, {0xaaaaaaaaaaaa0002}}, @IEEE802154_ATTR_DEV_INDEX={0x8}, @IEEE802154_ATTR_DEV_INDEX={0x8}, @IEEE802154_ATTR_DEV_INDEX={0x8, 0x2, r2}, @IEEE802154_ATTR_DEV_INDEX={0x8, 0x2, r6}]}, 0x4c}, 0x1, 0x0, 0x0, 0x24008841}, 0x10) r7 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffd000/0x3000)=nil, 0x3000, 0x0, 0x13, 0xffffffffffffffff, 0x0) syz_io_uring_setup(0x4b9f, &(0x7f0000000140), &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000ffd000/0x3000)=nil, &(0x7f00000000c0), &(0x7f00000001c0)=0x0) syz_io_uring_submit(r7, r8, &(0x7f0000000240)=@IORING_OP_FADVISE={0x18, 0x0, 0x0, @fd, 0x2}, 0x0) sigaltstack(&(0x7f0000ffd000/0x1000)=nil, 0x0) 10:14:10 executing program 3: r0 = openat$vcsa(0xffffffffffffff9c, &(0x7f00000000c0), 0xa0400, 0x0) sendmsg$IPCTNL_MSG_EXP_NEW(r0, &(0x7f0000000280)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x20000}, 0xc, &(0x7f0000000240)={&(0x7f0000000300)=ANY=[@ANYBLOB="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"], 0x180}, 0x1, 0x0, 0x0, 0x10}, 0x40000) r1 = perf_event_open(&(0x7f0000001d80)={0x6, 0x80, 0x0, 0x0, 0x0, 0x0, 0x4, 0x0, 0x2220, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0, 0xffffffff8101b303}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffc}, 0xffffffffffffffff, 0x0, 0xffffffffffffffff, 0x2) r2 = socket$inet_tcp(0x2, 0x1, 0x0) setsockopt$inet_tcp_TCP_REPAIR(r2, 0x6, 0x13, &(0x7f0000000080)=0x1, 0x4) r3 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000040), 0x2, 0x0) write$binfmt_aout(r3, &(0x7f0000000640), 0x20) read(r3, &(0x7f0000000100)=""/146, 0x92) ioctl$EXT4_IOC_SWAP_BOOT(r3, 0x6611) connect$inet(r2, &(0x7f0000000000)={0x2, 0x0, @remote}, 0x10) r4 = dup2(r1, r2) r5 = signalfd4(r4, &(0x7f0000000200)={[0x8]}, 0x8, 0x800) sendto$inet(r5, &(0x7f0000000540)="ffaaff4c1aedff6d03735c5314773c5bf70e79b23e62006273681cec1bb818d9f5fc4e4db7a8aae55472518f9a7086ab82f639ee6541a0d490fd69e60350a3d34d14fdf54d0d94e969dff7aa3cb9eccb301ae1ae3a9f3cde4a4e390100b13e052c3ecdaa2281bb8823d87eb7240a4d8613c46e5ac391e067545abbfd535c423555d38b297255ea3c91b1810d4f735e15d1dd2d35a9d694d7fb8f4bebfb8e67b6e6291023866418f62155c94a06e5d8548305ebe5b80e3fdbaaeae96b5d4652b4b07ae5649ce4742c3a8c16154ebb2e5caa3893cef506808360cd49beba85ddcbef7b4b821c1a81aac2f4cb8db6172935c291b85395b451fc", 0xf8, 0x24044041, &(0x7f00000002c0)={0x2, 0x4e22, @rand_addr=0x64010101}, 0x10) r6 = socket$inet_udp(0x2, 0x2, 0x0) connect$inet(r6, &(0x7f00000001c0)={0x2, 0x4e24, @dev={0xac, 0x14, 0x14, 0x2d}}, 0x10) 10:14:10 executing program 2: timer_create(0x2, 0x0, &(0x7f0000000080)=0x0) timer_create(0x3, &(0x7f0000000000)={0x0, 0x1c, 0x0, @tid=0xffffffffffffffff}, &(0x7f0000000040)=0x0) timer_settime(r1, 0x1, &(0x7f0000000080)={{0x77359400}, {0x0, 0x989680}}, 0x0) timer_getoverrun(r1) timer_settime(0x0, 0x0, &(0x7f0000000100)={{}, {0x0, 0x989680}}, 0x0) timer_settime(r0, 0x1, &(0x7f0000000040)={{0x0, 0x989680}}, &(0x7f00000000c0)) timer_settime(0x0, 0x0, &(0x7f0000000000)={{0x0, 0x3938700}, {0x77359400}}, 0x0) clone3(&(0x7f0000000700)={0x40182300, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) 10:14:22 executing program 5: r0 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x0, 0x0) r1 = dup2(r0, r0) r2 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000040), 0x2, 0x0) mount$9p_fd(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f00000000c0), 0x2000000, &(0x7f00000004c0)={'trans=fd,', {'rfdno', 0x3d, r1}, 0x2c, {'wfdno', 0x3d, r2}, 0x2c, {[{@debug}, {@debug={'debug', 0x3d, 0x10001}}, {@version_u}], [{@hash}, {@euid_gt}, {@fsmagic={'fsmagic', 0x3d, 0xfffffffffffffffc}}, {@euid_eq={'euid', 0x3d, 0xffffffffffffffff}}]}}) 10:14:22 executing program 4: r0 = open(&(0x7f0000000540)='./file0\x00', 0x2, 0x4) signalfd4(r0, &(0x7f0000000580)={[0x7]}, 0x8, 0x80800) syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x40000, 0x16, &(0x7f0000000200)=[{&(0x7f0000010000)="200000004000000003000000300000000f000000000000000200000002000000008000000080000020000000d5f4655fd5f4655f0100ffff53ef010001000000d4f4655f000000000000000001000000000000000b0000000002000028020000028401001b0000000000000000000000000000000000000073797a6b616c6c6572000000000000002f746d702f73797a2d696d61676567656e36313130373331373200"/192, 0xc0, 0x400}, {&(0x7f0000010100)="000000000000000000000000da61426b81ed44a9ac5d6d8d66d52a0c010000000c00000000000000d4f4655f00"/64, 0x40, 0x4e0}, {&(0x7f0000010200)="00000000000000000000000000000000000000000000000000000000200020000100000000000000000000000000000000000000000000003900000000000000", 0x40, 0x540}, {&(0x7f0000010300)="0000000000000000000000000000000000000000010400"/32, 0x20, 0x640}, {&(0x7f0000010400)="02000000030000000400000030000f000300040000000000000000000f008ec4", 0x20, 0x1000}, {&(0x7f0000010500)="ffff000000000000ffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffff0100ffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffff0000000000000000d4f4655fd4f4655fd4f4655f00"/8224, 0x2020, 0x2000}, {&(0x7f0000012600)="ed41000000100000d4f4655fd5f4655fd5f4655f00000000000004000800000000000000050000000800"/64, 0x40, 0x4200}, {&(0x7f0000012700)="200000001cc2eb501cc2eb5000000000d4f4655f00"/32, 0x20, 0x4280}, {&(0x7f0000012800)="c041000000300000d4f4655fd4f4655fd4f4655f0000000000000200180000000000000000000000090000000a0000000b00"/64, 0x40, 0x5400}, {&(0x7f0000012900)="20000000000000000000000000000000d4f4655f000000000000000000000000000002ea00"/64, 0x40, 0x5480}, {&(0x7f0000012a00)="ed4100003c000000d5f4655fd5f4655fd5f4655f0000000000000200000000000000001003000000020000000d0000001000050166696c65300000000e0000002800050766696c6531000000000000000000000000000000000000000000000000000000b698e28d000000000000000000000000000000000000000000000000200000001cc2eb501cc2eb501cc2eb50d5f4655f1cc2eb500000000000000000000002ea04070000000000000000000000000000646174610000000000000000", 0xc0, 0x5600}, {&(0x7f0000012b00)="ed8100001a040000d5f4655fd5f4655fd5f4655f00000000000001000800000000000000010000000c00000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000a20e8d2000000000000000000000000000000000000000000000000200000001cc2eb501cc2eb501cc2eb50d5f4655f1cc2eb500000000000000000", 0xa0, 0x5800}, {&(0x7f0000012c00)="ffa1000026000000d5f4655fd5f4655fd5f4655f00000000000001000000000000000000010000002f746d702f73797a2d696d61676567656e3631313037333137322f66696c65302f66696c65300000000900000000000000000000000000000000000015d4476a000000000000000000000000000000000000000000000000200000001cc2eb501cc2eb501cc2eb50d5f4655f1cc2eb500000000000000000", 0xa0, 0x5a00}, {&(0x7f0000012d00)="ed8100000a000000d5f4655fd5f4655fd5f4655f000000000000010000000000000000100100000073797a6b616c6c657273000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000008851284000000000000000000000000000000000000000000000000200000001cc2eb501cc2eb501cc2eb50d5f4655f1cc2eb500000000000000000000002ea040700000000000000000000000000006461746106015401000000000600000000000000786174747231000006014c0100000000060000000000000078617474723200"/256, 0x100, 0x5c00}, {&(0x7f0000012e00)="0000000000000000000000000000000078617474723200007861747472310000ed81000028230000d5f4655fd5f4655fd5f4655f00000000000002001800000000000000010000000d0000000e0000000f000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000f2c222a9000000000000000000000000000000000000000000000000200000001cc2eb501cc2eb501cc2eb50d5f4655f1cc2eb500000000000000000", 0xc0, 0x5de0}, {&(0x7f0000012f00)="ed81000064000000d5f4655fd5f4655fd5f4655f000000000000010000000000000000100100000073797a6b616c6c657273797a6b616c6c657273797a6b616c6c657273797a6b616c6c657273797a6b616c6c657273797a6b616c6c657273797a6b616c1705df1d000000000000000000000000000000000000000000000000200000001cc2eb501cc2eb501cc2eb50d5f4655f1cc2eb500000000000000000000002ea04073401000000002800000000000000646174610000000000000000", 0xc0, 0x5ffe}, {&(0x7f0000013000)='\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00lersyzkallersyzkallersyzkallersyzkallers', 0x40, 0x61c0}, {&(0x7f0000013100)="020000000c0001022e000000020000000c0002022e2e00000b00000014000a026c6f73742b666f756e6400000c0000001000050266696c65300000000f0000001000050166696c6531000000100000001000050166696c6532000000100000001000050166696c653300000011000000940f090166696c652e636f6c64000000", 0x80, 0x8000}, {&(0x7f0000013200)="0b7eb10000000c0001022e000000020000000c0002022e2e000000000000e80f", 0x20, 0x9000}, {&(0x7f0000013300)="00000000001000"/32, 0x20, 0xa000}, {&(0x7f0000000140)="00000000001000000000000000000000000000000000000000000000000000007355c36a34ec2d5d23adb41cc593439a9ce0a73cfd62939b40141967f3fb86d00bcdd4fe70558628ba587018ac3dcdcd2823e1f6ea900d30786f130867f7c9e914cd5ed869b262f68aebddd2d9ed2d450b0f32dfdb7f8c613202b868f267f5affe803d54f5c753aef23993b6eac54b3b38055552b956c84dce47ec50a368366d879ac85e6ad82121d0fc958b702178a5c9e66947f7b6a47c2e073e646a7d19ab", 0x20, 0xb000}, {&(0x7f0000013500)='syzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkal\x00\x00\x00\x00\x00\x00', 0x447, 0xc000}], 0x200000, &(0x7f0000013a00)=ANY=[@ANYBLOB='\x00']) mount(&(0x7f0000000440)=@filename='./file0\x00', &(0x7f0000000480)='./file0\x00', &(0x7f00000004c0)='btrfs\x00', 0x10000, &(0x7f0000000500)='binder\x00') mount(&(0x7f0000000040)=ANY=[@ANYBLOB='/dvv/nbd0\x00'], &(0x7f0000000080)='./file0\x00', &(0x7f00000000c0)='binder\x00', 0x0, 0x0) 10:14:22 executing program 7: r0 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000040), 0xffffffffffffffff) sendmsg$NL80211_CMD_GET_MPP(0xffffffffffffffff, &(0x7f0000000840)={&(0x7f0000000780), 0xc, &(0x7f0000000800)={&(0x7f00000007c0)={0x38, r0, 0x100, 0x70bd2b, 0x25dfdbfd, {{}, {@void, @val={0xc, 0x99, {0xb98, 0x74}}}}, [@NL80211_ATTR_MPATH_NEXT_HOP={0xa, 0x1a, @device_b}, @NL80211_ATTR_MPATH_NEXT_HOP={0xa}]}, 0x38}, 0x1, 0x0, 0x0, 0x404d840}, 0x2010) syz_genetlink_get_family_id$ieee802154(&(0x7f0000000080), 0xffffffffffffffff) r1 = socket$netlink(0x10, 0x3, 0x0) fcntl$dupfd(r1, 0x0, r1) ioctl$sock_SIOCGIFINDEX(0xffffffffffffffff, 0x8933, &(0x7f0000000240)={'netdevsim0\x00', 0x0}) sendmsg$ETHTOOL_MSG_FEATURES_SET(r1, &(0x7f0000000740)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x10000000}, 0xc, &(0x7f0000000700)={&(0x7f0000000280)={0x45c, 0x0, 0x200, 0x70bd29, 0x25dfdbfc, {}, [@ETHTOOL_A_FEATURES_WANTED={0xd4, 0x3, 0x0, 0x1, [@ETHTOOL_A_BITSET_VALUE={0x4a, 0x4, "6aff0e390c22228193049cb8fc4968398ac78dc524afb1d0fb55d3913a519a2a15899277f4e13addec692942a8b293c2d705a20765dc522cd9df7580dddbeb6463ae3d2b5749"}, @ETHTOOL_A_BITSET_SIZE={0x8, 0x2, 0x2}, @ETHTOOL_A_BITSET_SIZE={0x8, 0x2, 0x8}, @ETHTOOL_A_BITSET_SIZE={0x8, 0x2, 0x6}, @ETHTOOL_A_BITSET_MASK={0x60, 0x5, "6decf44b6057f733ed0a5fddd8af2a0e4d74db1047b4d1ead6c698bb366a9886a4031757cdb73b40a215e58890182fb7063b23d9e43c9f3c562d26dc37cdea5c38a5f11abf588ce7fe2fb5fd3edff9b7a581f80d8d37f848803c565b"}, @ETHTOOL_A_BITSET_SIZE={0x8, 0x2, 0x5}, @ETHTOOL_A_BITSET_NOMASK={0x4}]}, @ETHTOOL_A_FEATURES_WANTED={0x320, 0x3, 0x0, 0x1, [@ETHTOOL_A_BITSET_BITS={0xc4, 0x3, 0x0, 0x1, [{0x48, 0x1, 0x0, 0x1, [@ETHTOOL_A_BITSET_BIT_NAME={0x11, 0x2, '802.15.4 MAC\x00'}, @ETHTOOL_A_BITSET_BIT_NAME={0x7, 0x2, '}\x95\x00'}, @ETHTOOL_A_BITSET_BIT_NAME={0x9, 0x2, 'E$,#\x00'}, @ETHTOOL_A_BITSET_BIT_VALUE={0x4}, @ETHTOOL_A_BITSET_BIT_INDEX={0x8, 0x1, 0xf3da}, @ETHTOOL_A_BITSET_BIT_VALUE={0x4}, @ETHTOOL_A_BITSET_BIT_VALUE={0x4}, @ETHTOOL_A_BITSET_BIT_INDEX={0x8, 0x1, 0x4}]}, {0x44, 0x1, 0x0, 0x1, [@ETHTOOL_A_BITSET_BIT_INDEX={0x8, 0x1, 0xf34c}, @ETHTOOL_A_BITSET_BIT_VALUE={0x4}, @ETHTOOL_A_BITSET_BIT_INDEX={0x8, 0x1, 0x3f}, @ETHTOOL_A_BITSET_BIT_INDEX={0x8, 0x1, 0xfff}, @ETHTOOL_A_BITSET_BIT_VALUE={0x4}, @ETHTOOL_A_BITSET_BIT_INDEX={0x8, 0x1, 0x9}, @ETHTOOL_A_BITSET_BIT_NAME={0xa, 0x2, ',-.,%\x00'}, @ETHTOOL_A_BITSET_BIT_NAME={0xc, 0x2, 'nl80211\x00'}]}, {0x28, 0x1, 0x0, 0x1, [@ETHTOOL_A_BITSET_BIT_VALUE={0x4}, @ETHTOOL_A_BITSET_BIT_INDEX={0x8, 0x1, 0xa}, @ETHTOOL_A_BITSET_BIT_INDEX={0x8, 0x1, 0x1}, @ETHTOOL_A_BITSET_BIT_VALUE={0x4}, @ETHTOOL_A_BITSET_BIT_NAME={0xa, 0x2, '((+-:\x00'}]}, {0xc, 0x1, 0x0, 0x1, [@ETHTOOL_A_BITSET_BIT_VALUE={0x4}, @ETHTOOL_A_BITSET_BIT_VALUE={0x4}]}]}, @ETHTOOL_A_BITSET_NOMASK={0x4}, @ETHTOOL_A_BITSET_BITS={0x158, 0x3, 0x0, 0x1, [{0x28, 0x1, 0x0, 0x1, [@ETHTOOL_A_BITSET_BIT_VALUE={0x4}, @ETHTOOL_A_BITSET_BIT_NAME={0xc, 0x2, 'nl80211\x00'}, @ETHTOOL_A_BITSET_BIT_INDEX={0x8, 0x1, 0x1f4b}, @ETHTOOL_A_BITSET_BIT_INDEX={0x8, 0x1, 0xb08}, @ETHTOOL_A_BITSET_BIT_VALUE={0x4}]}, {0x14, 0x1, 0x0, 0x1, [@ETHTOOL_A_BITSET_BIT_INDEX={0x8, 0x1, 0x10000}, @ETHTOOL_A_BITSET_BIT_INDEX={0x8, 0x1, 0x5}]}, {0x28, 0x1, 0x0, 0x1, [@ETHTOOL_A_BITSET_BIT_INDEX={0x8, 0x1, 0x9}, @ETHTOOL_A_BITSET_BIT_INDEX={0x8}, @ETHTOOL_A_BITSET_BIT_NAME={0x11, 0x2, '802.15.4 MAC\x00'}]}, {0x4c, 0x1, 0x0, 0x1, [@ETHTOOL_A_BITSET_BIT_NAME={0x6, 0x2, '@\x00'}, @ETHTOOL_A_BITSET_BIT_VALUE={0x4}, @ETHTOOL_A_BITSET_BIT_INDEX={0x8, 0x1, 0x80000001}, @ETHTOOL_A_BITSET_BIT_NAME={0xc, 0x2, 'nl80211\x00'}, @ETHTOOL_A_BITSET_BIT_INDEX={0x8, 0x1, 0x5}, @ETHTOOL_A_BITSET_BIT_NAME={0x9, 0x2, '/&\\}\x00'}, @ETHTOOL_A_BITSET_BIT_VALUE={0x4}, @ETHTOOL_A_BITSET_BIT_VALUE={0x4}, @ETHTOOL_A_BITSET_BIT_VALUE={0x4}, @ETHTOOL_A_BITSET_BIT_NAME={0x7, 0x2, '*%\x00'}]}, {0x4c, 0x1, 0x0, 0x1, [@ETHTOOL_A_BITSET_BIT_VALUE={0x4}, @ETHTOOL_A_BITSET_BIT_INDEX={0x8, 0x1, 0x8baf}, @ETHTOOL_A_BITSET_BIT_INDEX={0x8, 0x1, 0x100}, @ETHTOOL_A_BITSET_BIT_INDEX={0x8, 0x1, 0x8}, @ETHTOOL_A_BITSET_BIT_VALUE={0x4}, @ETHTOOL_A_BITSET_BIT_INDEX={0x8, 0x1, 0x7}, @ETHTOOL_A_BITSET_BIT_NAME={0xc, 0x2, 'nl80211\x00'}, @ETHTOOL_A_BITSET_BIT_NAME={0x11, 0x2, '802.15.4 MAC\x00'}]}, {0x8, 0x1, 0x0, 0x1, [@ETHTOOL_A_BITSET_BIT_VALUE={0x4}]}, {0x18, 0x1, 0x0, 0x1, [@ETHTOOL_A_BITSET_BIT_NAME={0x11, 0x2, '802.15.4 MAC\x00'}]}, {0xc, 0x1, 0x0, 0x1, [@ETHTOOL_A_BITSET_BIT_INDEX={0x8, 0x1, 0x8}]}, {0x10, 0x1, 0x0, 0x1, [@ETHTOOL_A_BITSET_BIT_INDEX={0x8, 0x1, 0x8}, @ETHTOOL_A_BITSET_BIT_VALUE={0x4}]}, {0x1c, 0x1, 0x0, 0x1, [@ETHTOOL_A_BITSET_BIT_INDEX={0x8, 0x1, 0x81}, @ETHTOOL_A_BITSET_BIT_VALUE={0x4}, @ETHTOOL_A_BITSET_BIT_INDEX={0x8}, @ETHTOOL_A_BITSET_BIT_VALUE={0x4}]}]}, @ETHTOOL_A_BITSET_NOMASK={0x4}, @ETHTOOL_A_BITSET_MASK={0xf5, 0x5, "1cd522ea8916f9fcf2d22ab885ce16d81e42433602a679a590eacf0be357a214efd3b36abb85eb2244d93df89678429b728d438599c9cd4084826d8308a49659ee0ddaa1a724d8eda5bac1afcc08108a83ae79a81e0754c2d015ababd38d6ad8493b083471908f10cee24a5238760a64f08bc6416dbb548756038710c812cb6250c4d63cfd4091e21df564b3f5ec946f93dd94c262459c196ac3f1ffc524c16b93f6a68cd691036785f52ec306d61c275cbc934d691bd42b63bff28de19d56d8eefd4ea4b83f6760fe4f4eb70231913d1e426a28dd39003355167d289243f7b6bbb562a0b2d085e3d7327f4397e0c48e52"}]}, @ETHTOOL_A_FEATURES_HEADER={0x14, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_DEV_INDEX={0x8}, @ETHTOOL_A_HEADER_DEV_INDEX={0x8, 0x1, r2}]}, @ETHTOOL_A_FEATURES_WANTED={0x40, 0x3, 0x0, 0x1, [@ETHTOOL_A_BITSET_MASK={0x37, 0x5, "a1c97dab6d6280525c8dffd10b374f4fe550abbae326d706ad96cb652d2972f74c39432859b91006d82e9055172067810fc35c"}, @ETHTOOL_A_BITSET_NOMASK={0x4}]}]}, 0x45c}}, 0x44000) r3 = socket$nl_generic(0x10, 0x3, 0x10) syz_genetlink_get_family_id$nl80211(&(0x7f00000000c0), r3) syz_genetlink_get_family_id$ieee802154(&(0x7f0000000100), r3) syz_genetlink_get_family_id$nl80211(&(0x7f0000000140), r3) r4 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) syz_genetlink_get_family_id$nl80211(&(0x7f0000000180), r4) syz_genetlink_get_family_id$ieee802154(&(0x7f00000001c0), r4) r5 = socket$inet_udp(0x2, 0x2, 0x0) syz_genetlink_get_family_id$nl80211(&(0x7f0000000200), r5) 10:14:22 executing program 2: syz_io_uring_setup(0x34aa, &(0x7f0000000000), &(0x7f0000fff000/0x1000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000080), 0x0) syz_io_uring_setup(0x2d96, &(0x7f00000000c0)={0x0, 0x152c, 0x39, 0x1, 0x153}, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000ffe000/0x2000)=nil, &(0x7f0000000140), &(0x7f0000000180)) 10:14:22 executing program 1: r0 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x0, 0x0) r1 = dup2(r0, r0) r2 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000040), 0x2, 0x0) mount$9p_fd(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f00000000c0), 0x2000000, &(0x7f00000004c0)={'trans=fd,', {'rfdno', 0x3d, r1}, 0x2c, {'wfdno', 0x3d, r2}, 0x2c, {[{@debug}, {@debug={'debug', 0x3d, 0x10001}}, {@version_u}], [{@hash}, {@euid_gt}, {@fsmagic={'fsmagic', 0x3d, 0xfffffffffffffffc}}, {@euid_eq={'euid', 0x3d, 0xffffffffffffffff}}]}}) 10:14:22 executing program 0: ioctl$sock_SIOCGIFINDEX_802154(0xffffffffffffffff, 0x8933, &(0x7f0000000240)={'wpan3\x00'}) r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$nl802154(&(0x7f00000006c0), r0) sendmsg$NL802154_CMD_SET_CCA_MODE(0xffffffffffffffff, &(0x7f0000000780)={&(0x7f0000000680), 0xc, &(0x7f0000000740)={&(0x7f0000000380)=ANY=[@ANYBLOB="1c000000", @ANYRES16=r1, @ANYBLOB="080028bd7000fddbdf250d00000008000300", @ANYRES32=0x0, @ANYBLOB="9f7e20717095eb042acb8f"], 0x1c}}, 0x10) ioctl$sock_SIOCGIFINDEX_802154(0xffffffffffffffff, 0x8933, &(0x7f00000000c0)={'wpan1\x00', 0x0}) sendmsg$NL802154_CMD_DEL_SEC_KEY(0xffffffffffffffff, &(0x7f0000000280)={&(0x7f0000000080)={0x10, 0x0, 0x0, 0x200000}, 0xc, &(0x7f0000000240)={&(0x7f0000000100)=ANY=[@ANYBLOB="c0000000", @ANYRES16=r1, @ANYBLOB="00012dbd7000fddbdf251800000008000300", @ANYRES32=0x0, @ANYBLOB="9000258014000400d9b35a16820057e3a054740e780aa98305000200800000000c000180050002000300004005000200d800000024000300059eedfcd6ac1a5c32f321393811f4e1c785b6a99ccf533c75d5e7138b7666f514000400e3ba46a2a1a1d11b36a4103d57ab947624000300e14b29ee2dbf5c0c40c4f2e8ac7575bb88d698a7e70747e70816c7503a80cf3008000300", @ANYRES32=r2, @ANYBLOB], 0xc0}, 0x1, 0x0, 0x0, 0x48045}, 0x20000883) r3 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) sendmsg$NL802154_CMD_SET_CHANNEL(r3, &(0x7f00000001c0)={&(0x7f0000000100), 0xc, &(0x7f0000000180)={&(0x7f0000000140)={0x14, 0x0, 0x4}, 0x14}, 0x1, 0x0, 0x0, 0x40000}, 0x0) ioctl$sock_SIOCGIFINDEX_802154(r3, 0x8933, &(0x7f0000000240)={'wpan3\x00'}) r4 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) r5 = syz_genetlink_get_family_id$nl802154(&(0x7f00000006c0), r4) sendmsg$NL802154_CMD_SET_CCA_MODE(0xffffffffffffffff, &(0x7f0000000780)={&(0x7f0000000680), 0xc, &(0x7f0000000740)={&(0x7f0000000380)=ANY=[@ANYBLOB="1c000000", @ANYRES16=r5, @ANYBLOB="080028bd7000fddbdf250d00000008000300", @ANYRES32=0x0, @ANYBLOB="9f7e20717095eb042acb8f"], 0x1c}}, 0x10) ioctl$sock_SIOCGIFINDEX_802154(0xffffffffffffffff, 0x8933, &(0x7f00000000c0)={'wpan1\x00', 0x0}) sendmsg$NL802154_CMD_DEL_SEC_KEY(r3, &(0x7f0000000280)={&(0x7f0000000080)={0x10, 0x0, 0x0, 0x200000}, 0xc, &(0x7f0000000240)={&(0x7f0000000100)=ANY=[@ANYBLOB="c0000000", @ANYRES16=r5, @ANYBLOB="00012dbd7000fddbdf251800000008000300", @ANYRES32=0x0, @ANYBLOB="9000258014000400d9b35a16820057e3a054740e780aa98305000200800000000c000180050002000300004005000200d800000024000300059eedfcd6ac1a5c32f321393811f4e1c785b6a99ccf533c75d5e7138b7666f514000400e3ba46a2a1a1d11b36a4103d57ab947624000300e14b29ee2dbf5c0c40c4f2e8ac7575bb88d698a7e70747e70816c7503a80cf3008000300", @ANYRES32=r6, @ANYBLOB], 0xc0}, 0x1, 0x0, 0x0, 0x48045}, 0x20000883) r7 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x46e2, 0x0) r8 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffd000/0x3000)=nil, 0x3000, 0x0, 0x13, r7, 0x0) syz_io_uring_setup(0x4b9f, &(0x7f0000000140), &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000ffd000/0x3000)=nil, &(0x7f00000000c0), &(0x7f00000001c0)=0x0) syz_io_uring_submit(r8, r9, &(0x7f0000000240)=@IORING_OP_FADVISE={0x18, 0x0, 0x0, @fd, 0x2}, 0x0) sigaltstack(&(0x7f0000ffd000/0x1000)=nil, 0x0) 10:14:22 executing program 3: r0 = openat(0xffffffffffffff9c, &(0x7f0000000000)='./file1\x00', 0x802c2, 0x0) r1 = open(&(0x7f0000000040)='./file0\x00', 0x1810c1, 0x0) r2 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x105142, 0x0) r3 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0) openat$vcs(0xffffffffffffff9c, &(0x7f0000000080), 0x208002, 0x0) copy_file_range(r3, 0x0, r2, 0x0, 0x200f5ef, 0x0) lseek(r1, 0xc18c, 0x0) write$binfmt_elf64(r1, &(0x7f0000002180)=ANY=[], 0x78) r4 = socket$inet(0x2, 0x1, 0x0) setsockopt$inet_int(r4, 0x0, 0x13, &(0x7f0000000180)=0x1, 0x4) bind$inet(r4, &(0x7f0000000c00)={0x2, 0x0, @multicast2}, 0x10) ioctl$sock_SIOCGIFINDEX_80211(r4, 0x8933, &(0x7f00000000c0)={'wlan1\x00'}) r5 = syz_genetlink_get_family_id$nl80211(&(0x7f00000001c0), 0xffffffffffffffff) sendmsg$NL80211_CMD_LEAVE_MESH(r3, &(0x7f0000000280)={&(0x7f0000000140)={0x10, 0x0, 0x0, 0x6008}, 0xc, &(0x7f0000000240)={&(0x7f00000002c0)=ANY=[@ANYBLOB="14000000", @ANYRES16=r5, @ANYBLOB="0004ccc04caa9b2a72279adffe2a80232f28a0ccd9c702a6a900000000000000004739b639bd7000c03c41b5c506000064c42816934f0a779da7a4d6a18ca0e4fd42c44078dac673fd7b92c9658b3497ef967c2432d2f0469b312832758dd8e329c754c860b5cc8392fc1fb91ecdfbe4face6b3c9d28bd"], 0x14}, 0x1, 0x0, 0x0, 0x20004015}, 0x800) ioctl$EXT4_IOC_MOVE_EXT(r0, 0xc028660f, &(0x7f0000000040)={0x0, r1}) 10:14:22 executing program 6: r0 = openat(0xffffffffffffff9c, &(0x7f0000000000)='./file1\x00', 0x802c2, 0x0) r1 = open(&(0x7f0000000040)='./file0\x00', 0x1810c1, 0x0) r2 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x105142, 0x0) r3 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0) openat$vcs(0xffffffffffffff9c, &(0x7f0000000080), 0x208002, 0x0) copy_file_range(r3, 0x0, r2, 0x0, 0x200f5ef, 0x0) lseek(r1, 0xc18c, 0x0) write$binfmt_elf64(r1, &(0x7f0000002180)=ANY=[], 0x78) r4 = socket$inet(0x2, 0x1, 0x0) setsockopt$inet_int(r4, 0x0, 0x13, &(0x7f0000000180)=0x1, 0x4) bind$inet(r4, &(0x7f0000000c00)={0x2, 0x0, @multicast2}, 0x10) ioctl$sock_SIOCGIFINDEX_80211(r4, 0x8933, &(0x7f00000000c0)={'wlan1\x00'}) r5 = syz_genetlink_get_family_id$nl80211(&(0x7f00000001c0), 0xffffffffffffffff) sendmsg$NL80211_CMD_LEAVE_MESH(r3, &(0x7f0000000280)={&(0x7f0000000140)={0x10, 0x0, 0x0, 0x6008}, 0xc, &(0x7f0000000240)={&(0x7f00000002c0)=ANY=[@ANYBLOB="14000000", @ANYRES16=r5, @ANYBLOB="0004ccc04caa9b2a72279adffe2a80232f28a0ccd9c702a6a900000000000000004739b639bd7000c03c41b5c506000064c42816934f0a779da7a4d6a18ca0e4fd42c44078dac673fd7b92c9658b3497ef967c2432d2f0469b312832758dd8e329c754c860b5cc8392fc1fb91ecdfbe4face6b3c9d28bd"], 0x14}, 0x1, 0x0, 0x0, 0x20004015}, 0x800) ioctl$EXT4_IOC_MOVE_EXT(r0, 0xc028660f, &(0x7f0000000040)={0x0, r1}) [ 353.137204] EXT4-fs (loop4): mounted filesystem without journal. Opts: ,errors=continue 10:14:22 executing program 1: r0 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x0, 0x0) r1 = dup2(r0, r0) r2 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000040), 0x2, 0x0) mount$9p_fd(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f00000000c0), 0x2000000, &(0x7f00000004c0)={'trans=fd,', {'rfdno', 0x3d, r1}, 0x2c, {'wfdno', 0x3d, r2}, 0x2c, {[{@debug}, {@debug={'debug', 0x3d, 0x10001}}, {@version_u}], [{@hash}, {@euid_gt}, {@fsmagic={'fsmagic', 0x3d, 0xfffffffffffffffc}}, {@euid_eq={'euid', 0x3d, 0xffffffffffffffff}}]}}) 10:14:23 executing program 2: r0 = syz_mount_image$tmpfs(&(0x7f0000000000), &(0x7f0000000080)='./file0\x00', 0x0, 0x0, 0x0, 0x0, &(0x7f0000000600)=ANY=[]) mknodat$loop(r0, &(0x7f0000000300)='./file1\x00', 0x6003, 0x0) execveat(r0, &(0x7f0000000080)='./file0\x00', 0x0, 0x0, 0x1000) [ 353.192732] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=0 sclass=netlink_route_socket pid=5537 comm=syz-executor.7 10:14:23 executing program 5: r0 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x46e2, 0x0) r1 = dup2(0xffffffffffffffff, r0) r2 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000040), 0x2, 0x0) mount$9p_fd(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f00000000c0), 0x2000000, &(0x7f00000004c0)={'trans=fd,', {'rfdno', 0x3d, r1}, 0x2c, {'wfdno', 0x3d, r2}, 0x2c, {[{@debug}, {@debug={'debug', 0x3d, 0x10001}}, {@version_u}], [{@hash}, {@euid_gt}, {@fsmagic={'fsmagic', 0x3d, 0xfffffffffffffffc}}, {@euid_eq={'euid', 0x3d, 0xffffffffffffffff}}]}}) [ 353.253863] 9pnet: Insufficient options for proto=fd [ 353.356184] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=0 sclass=netlink_route_socket pid=5582 comm=syz-executor.7 10:14:33 executing program 7: ioctl$FITRIM(0xffffffffffffffff, 0xc0185879, &(0x7f0000000080)={0xbb, 0x2, 0x3}) syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x40000, 0x4, &(0x7f0000000200)=[{&(0x7f0000010000)="200000004000000003000000320000000f000000000000000200000002000000008000000080000020000000dbf4655fdbf4655f0100ffff53ef010001000000daf4655f000000000000000001000000000000000b0000000001", 0x5a, 0x400}, {&(0x7f0000010200)="0000000000000000000000000000000000000000000000000000000020002000010000000000000000000000000000a68fe8", 0x32, 0x540}, {&(0x7f0000000280)="021ece7a000f00000600b10e95136e01ee79e3140d28b22a855e05db501a3be6672de678d7cd74ebd2a489cc4c46c1f6cfc9f27d623c46bbbae8e9402dd157a852e9ea0757e5f716a11d17325221a4219a3e34ec001d5174805866774595a6d82fc12cad4bf301882ebcc66ab9a25ecef937da06679d19550213f819d86dab1de79f18a065383ca79b3807efe87332e1290bcc017e2267e363b35743573da0f724f2d1b800cae7ae169d0eba1e556f3ea62ab4f9d0bbcff0586a5f0468499493aa58d8efba599970385308809ef8c884ae08c614faeb66c5f0a2f3e7af037b0b435c2e4993a84f32", 0xe8, 0x1000}, {&(0x7f0000012500)="ed41000000100000daf4655fdbf4655fdbf4655f000000000000040008", 0x1d, 0x4100}], 0x0, &(0x7f0000000040)=ANY=[@ANYBLOB="da060000edeb329ac5490d1ab3a6d3161500c43a37c497055786efd024"]) 10:14:33 executing program 6: semop(0xffffffffffffffff, &(0x7f0000000240)=[{0x1, 0x3f, 0x1000}, {0x1, 0xcd59, 0x800}, {0x4, 0x5, 0x1000}], 0x3) waitid(0x0, 0x0, 0x0, 0x0, 0x0) r0 = syz_open_dev$vcsn(0x0, 0x50, 0x0) ioctl$FS_IOC_RESVSP(r0, 0x40305828, &(0x7f00000002c0)={0x0, 0x4, 0x4, 0xb71}) waitid(0x1, 0xffffffffffffffff, &(0x7f0000000300), 0x4, &(0x7f0000000400)) clone3(&(0x7f0000000380)={0xf0001100, &(0x7f0000000000), &(0x7f0000000040), &(0x7f0000000080), {0x2b}, &(0x7f00000000c0)=""/102, 0x66, &(0x7f0000000140)=""/203, &(0x7f0000000280)=[0x0, 0x0], 0x2, {r0}}, 0x58) 10:14:33 executing program 1: r0 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x46e2, 0x0) r1 = dup2(0xffffffffffffffff, r0) r2 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000040), 0x2, 0x0) mount$9p_fd(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f00000000c0), 0x2000000, &(0x7f00000004c0)={'trans=fd,', {'rfdno', 0x3d, r1}, 0x2c, {'wfdno', 0x3d, r2}, 0x2c, {[{@debug}, {@debug={'debug', 0x3d, 0x10001}}, {@version_u}], [{@hash}, {@euid_gt}, {@fsmagic={'fsmagic', 0x3d, 0xfffffffffffffffc}}, {@euid_eq={'euid', 0x3d, 0xffffffffffffffff}}]}}) 10:14:33 executing program 0: ioctl$sock_SIOCGIFINDEX_802154(0xffffffffffffffff, 0x8933, &(0x7f0000000240)={'wpan3\x00'}) r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$nl802154(&(0x7f00000006c0), r0) sendmsg$NL802154_CMD_SET_CCA_MODE(0xffffffffffffffff, &(0x7f0000000780)={&(0x7f0000000680), 0xc, &(0x7f0000000740)={&(0x7f0000000380)=ANY=[@ANYBLOB="1c000000", @ANYRES16=r1, @ANYBLOB="080028bd7000fddbdf250d00000008000300", @ANYRES32=0x0, @ANYBLOB="9f7e20717095eb042acb8f"], 0x1c}}, 0x10) ioctl$sock_SIOCGIFINDEX_802154(0xffffffffffffffff, 0x8933, &(0x7f00000000c0)={'wpan1\x00', 0x0}) sendmsg$NL802154_CMD_DEL_SEC_KEY(0xffffffffffffffff, &(0x7f0000000280)={&(0x7f0000000080)={0x10, 0x0, 0x0, 0x200000}, 0xc, &(0x7f0000000240)={&(0x7f0000000100)=ANY=[@ANYBLOB="c0000000", @ANYRES16=r1, @ANYBLOB="00012dbd7000fddbdf251800000008000300", @ANYRES32=0x0, @ANYBLOB="9000258014000400d9b35a16820057e3a054740e780aa98305000200800000000c000180050002000300004005000200d800000024000300059eedfcd6ac1a5c32f321393811f4e1c785b6a99ccf533c75d5e7138b7666f514000400e3ba46a2a1a1d11b36a4103d57ab947624000300e14b29ee2dbf5c0c40c4f2e8ac7575bb88d698a7e70747e70816c7503a80cf3008000300", @ANYRES32=r2, @ANYBLOB], 0xc0}, 0x1, 0x0, 0x0, 0x48045}, 0x20000883) r3 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) sendmsg$NL802154_CMD_SET_CHANNEL(r3, &(0x7f00000001c0)={&(0x7f0000000100), 0xc, &(0x7f0000000180)={&(0x7f0000000140)={0x14, 0x0, 0x4}, 0x14}, 0x1, 0x0, 0x0, 0x40000}, 0x0) ioctl$sock_SIOCGIFINDEX_802154(r3, 0x8933, &(0x7f0000000240)={'wpan3\x00'}) r4 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) r5 = syz_genetlink_get_family_id$nl802154(&(0x7f00000006c0), r4) sendmsg$NL802154_CMD_SET_CCA_MODE(0xffffffffffffffff, &(0x7f0000000780)={&(0x7f0000000680), 0xc, &(0x7f0000000740)={&(0x7f0000000380)=ANY=[@ANYBLOB="1c000000", @ANYRES16=r5, @ANYBLOB="080028bd7000fddbdf250d00000008000300", @ANYRES32=0x0, @ANYBLOB="9f7e20717095eb042acb8f"], 0x1c}}, 0x10) ioctl$sock_SIOCGIFINDEX_802154(0xffffffffffffffff, 0x8933, &(0x7f00000000c0)={'wpan1\x00'}) r6 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x46e2, 0x0) r7 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffd000/0x3000)=nil, 0x3000, 0x0, 0x13, r6, 0x0) syz_io_uring_setup(0x4b9f, &(0x7f0000000140), &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000ffd000/0x3000)=nil, &(0x7f00000000c0), &(0x7f00000001c0)=0x0) syz_io_uring_submit(r7, r8, &(0x7f0000000240)=@IORING_OP_FADVISE={0x18, 0x0, 0x0, @fd, 0x2}, 0x0) sigaltstack(&(0x7f0000ffd000/0x1000)=nil, 0x0) 10:14:33 executing program 4: r0 = perf_event_open(&(0x7f0000001d80)={0x2, 0x80, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) dup(r0) r1 = socket$netlink(0x10, 0x3, 0x0) r2 = syz_open_dev$loop(&(0x7f0000000100), 0x0, 0x0) ioctl$LOOP_SET_STATUS(r2, 0x4c02, &(0x7f00000001c0)={0x0, {}, 0x0, {0x4000}, 0x0, 0x0, 0x0, 0x0, "d158cf95b37a93bd7f40ffad7329ef7d0ae387108fb77692cb94fcd8d52a3cb29cf9bfecdd4d5782ee91bbd7903bd4c9f0fe2810ba8ee6b01aa560f599bee070", "6e1903aca03a47297d856319fb98abce945b71f30a97faaf0acfb6f04df91acd"}) sendmsg$nl_generic(r1, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000300)={&(0x7f00000002c0)=ANY=[@ANYRES32, @ANYRESDEC, @ANYRESOCT=r2, @ANYRES64=r0], 0x2c}}, 0x0) r3 = syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x40000, 0x3, &(0x7f0000000200)=[{&(0x7f0000010000)}, {&(0x7f0000010300)="020000000300000004", 0x9, 0x800}, {&(0x7f0000011500)="ed41000000080000d9f4655fdaf4655fdaf4655f000000000000040004", 0x1d, 0x2200}], 0x0, 0x0) ioctl$BTRFS_IOC_SNAP_CREATE_V2(r3, 0x50009417, &(0x7f0000000340)={{r1}, 0x0, 0xa, @unused=[0x7, 0xff, 0x80, 0x6], @subvolid}) chroot(0x0) umount2(0x0, 0x0) 10:14:33 executing program 5: r0 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x46e2, 0x0) r1 = dup2(0xffffffffffffffff, r0) r2 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000040), 0x2, 0x0) mount$9p_fd(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f00000000c0), 0x2000000, &(0x7f00000004c0)={'trans=fd,', {'rfdno', 0x3d, r1}, 0x2c, {'wfdno', 0x3d, r2}, 0x2c, {[{@debug}, {@debug={'debug', 0x3d, 0x10001}}, {@version_u}], [{@hash}, {@euid_gt}, {@fsmagic={'fsmagic', 0x3d, 0xfffffffffffffffc}}, {@euid_eq={'euid', 0x3d, 0xffffffffffffffff}}]}}) 10:14:33 executing program 3: ioctl$sock_SIOCGIFINDEX_802154(0xffffffffffffffff, 0x8933, &(0x7f0000000240)={'wpan3\x00'}) r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$nl802154(&(0x7f00000006c0), r0) sendmsg$NL802154_CMD_SET_CCA_MODE(0xffffffffffffffff, &(0x7f0000000780)={&(0x7f0000000680), 0xc, &(0x7f0000000740)={&(0x7f0000000380)=ANY=[@ANYBLOB="1c000000", @ANYRES16=r1, @ANYBLOB="080028bd7000fddbdf250d00000008000300", @ANYRES32=0x0, @ANYBLOB="9f7e20717095eb042acb8f"], 0x1c}}, 0x10) ioctl$sock_SIOCGIFINDEX_802154(0xffffffffffffffff, 0x8933, &(0x7f00000000c0)={'wpan1\x00', 0x0}) sendmsg$NL802154_CMD_DEL_SEC_KEY(0xffffffffffffffff, &(0x7f0000000280)={&(0x7f0000000080)={0x10, 0x0, 0x0, 0x200000}, 0xc, &(0x7f0000000240)={&(0x7f0000000100)=ANY=[@ANYBLOB="c0000000", @ANYRES16=r1, @ANYBLOB="00012dbd7000fddbdf251800000008000300", @ANYRES32=0x0, @ANYBLOB="9000258014000400d9b35a16820057e3a054740e780aa98305000200800000000c000180050002000300004005000200d800000024000300059eedfcd6ac1a5c32f321393811f4e1c785b6a99ccf533c75d5e7138b7666f514000400e3ba46a2a1a1d11b36a4103d57ab947624000300e14b29ee2dbf5c0c40c4f2e8ac7575bb88d698a7e70747e70816c7503a80cf3008000300", @ANYRES32=r2, @ANYBLOB], 0xc0}, 0x1, 0x0, 0x0, 0x48045}, 0x20000883) r3 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) sendmsg$NL802154_CMD_SET_CHANNEL(r3, &(0x7f00000001c0)={&(0x7f0000000100), 0xc, &(0x7f0000000180)={&(0x7f0000000140)={0x14, 0x0, 0x4}, 0x14}, 0x1, 0x0, 0x0, 0x40000}, 0x0) ioctl$sock_SIOCGIFINDEX_802154(r3, 0x8933, &(0x7f0000000240)={'wpan3\x00'}) r4 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) r5 = syz_genetlink_get_family_id$nl802154(&(0x7f00000006c0), r4) sendmsg$NL802154_CMD_SET_CCA_MODE(0xffffffffffffffff, &(0x7f0000000780)={&(0x7f0000000680), 0xc, &(0x7f0000000740)={&(0x7f0000000380)=ANY=[@ANYBLOB="1c000000", @ANYRES16=r5, @ANYBLOB="080028bd7000fddbdf250d00000008000300", @ANYRES32=0x0, @ANYBLOB="9f7e20717095eb042acb8f"], 0x1c}}, 0x10) ioctl$sock_SIOCGIFINDEX_802154(0xffffffffffffffff, 0x8933, &(0x7f00000000c0)={'wpan1\x00', 0x0}) sendmsg$NL802154_CMD_DEL_SEC_KEY(r3, &(0x7f0000000280)={&(0x7f0000000080)={0x10, 0x0, 0x0, 0x200000}, 0xc, &(0x7f0000000240)={&(0x7f0000000100)=ANY=[@ANYBLOB="c0000000", @ANYRES16=r5, @ANYBLOB="00012dbd7000fddbdf251800000008000300", @ANYRES32=0x0, @ANYBLOB="9000258014000400d9b35a16820057e3a054740e780aa98305000200800000000c000180050002000300004005000200d800000024000300059eedfcd6ac1a5c32f321393811f4e1c785b6a99ccf533c75d5e7138b7666f514000400e3ba46a2a1a1d11b36a4103d57ab947624000300e14b29ee2dbf5c0c40c4f2e8ac7575bb88d698a7e70747e70816c7503a80cf3008000300", @ANYRES32=r6, @ANYBLOB], 0xc0}, 0x1, 0x0, 0x0, 0x48045}, 0x20000883) r7 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x46e2, 0x0) r8 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffd000/0x3000)=nil, 0x3000, 0x0, 0x13, r7, 0x0) syz_io_uring_setup(0x4b9f, &(0x7f0000000140), &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000ffd000/0x3000)=nil, &(0x7f00000000c0), &(0x7f00000001c0)=0x0) syz_io_uring_submit(r8, r9, &(0x7f0000000240)=@IORING_OP_FADVISE={0x18, 0x0, 0x0, @fd, 0x2}, 0x0) sigaltstack(&(0x7f0000ffd000/0x1000)=nil, 0x0) 10:14:33 executing program 2: sendmsg$unix(0xffffffffffffffff, 0x0, 0x2) r0 = accept4$inet6(0xffffffffffffffff, 0x0, &(0x7f00000002c0), 0x0) ioctl$sock_inet6_SIOCSIFADDR(r0, 0x8916, &(0x7f0000000300)={@empty}) sendmsg$GTP_CMD_DELPDP(0xffffffffffffffff, &(0x7f0000000400)={&(0x7f0000000340), 0xc, &(0x7f00000003c0)={&(0x7f0000000000)=ANY=[@ANYBLOB='$\x00\x00\x00', @ANYRES16=0x0, @ANYBLOB="200026bd7000fedbdf250100000008000100", @ANYRES32=0x0, @ANYBLOB="08000800030000004ee5947a96ffa0233ba6e8120b704b54354e2aa735f0992bf51c8a3fc819ce4965ce4dac2351aea1309023b296ac0487e62fb86609226e3e6e9b7fbfde63fe9c9512e7952caa34037a9422bc5653b000000000000000"], 0x24}, 0x1, 0x0, 0x0, 0x800}, 0x8004) fsopen(&(0x7f0000000440)='mqueue\x00', 0x1) r1 = syz_genetlink_get_family_id$nl80211(&(0x7f00000004c0), 0xffffffffffffffff) syz_mount_image$tmpfs(&(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x3, 0xa, &(0x7f0000001d80)=[{&(0x7f0000000100)="b2c2b76f6680563012834fbc", 0xc, 0x1}, {&(0x7f0000000140)="de8a1f40c4", 0x5, 0x2}, {&(0x7f0000000180)="6cbab93b0d43a265b53ba688cbb8688be3b1d99983a69543110cb1ac5a2c87d14ab3da1140de76f9d8df8e009bdc93b8f73c4dccc2a97d", 0x37, 0x7}, {&(0x7f00000001c0)="ca419c9317d7955eb0746974fdeedb7a0c881bf1f41d24ee40ec43ed72febd6d04b24214c2340c62352fc313bf5c371aaf516d785f3ecb8c845613b9300b90efcf6720e79092e3eeccc3ca7df9d28c6a59657a57c4b8c78f9b46162a8a43a260acc1d77d15a6a8a3024a710f6823f62f7a596277bb0b8bf80f75f283973ff6890b0c3ca42db9fa11a71d980ddb7cef4777100d32a81f2578d121720abfbab04fa30423ce59311ef712d047cfd4846a7e5fdb480535629f9a45dea2274b6212f86d7064a4d1f768d534392d", 0xcb, 0x7fff}, {&(0x7f0000000380)="4829e96185a179929d0d8ef896a176631146f8be1553d21ba5c6edb1fe2a30733b22964b07767ab9efcd0a6ab5f74fa54975007f", 0x34, 0x3ff}, {&(0x7f0000000640)="2b8b26629f0b6a69c9159ef2ce7140d2c43595dbd34d2583c9095921b24895a64e659b373c4d55766e9960a630e2aea3e414edc459127294ae85f1e02ac0", 0x3e, 0x8}, {&(0x7f0000000680)="f4", 0x1, 0x5}, {&(0x7f00000006c0)="8908a79022ad0f5d9d5b1d1766214c95f59c0f120cd20ecfb309f48daa42f8682ca5bb5ded1f55f39c35dec365b8878f0206d7f1a1b63a2c5a1e4d4e06ab192088afcbd88cf0a3f4735bc7fcc8a8fb58e6a66c2e44ece7287a84c55f7d6a2183269b0f838edeb239ea86c9fe44ac49baa08093ed2f4307cf93fde81bcf5a7b1d9545f87c6ad288f95dbf57a09a38d146837de52c325120ea4c65ea42e2744d72b8", 0xa1}, {&(0x7f0000000840)="8916a13888fe09ababc9f3f19b57ab27ff1fc05e6bcd105070e6bdaae645626fe2aecf1e05bc26be87d9cbb5760e2f5f7ae36894d5ba057cdfd067f00140ad781ac34f4f4d2861420c76669a2062ba87028f4303120919c9f68a87ece675903860a5ce0d38fd7ecf1c9690c38116ca334bdd476004d81f0902f94e5227cf061b32e838b7a1699e2f82dcf628d64c5d2080218bf27d96c4187fd16ef8d831481e1b27e217cbff7da58be115", 0xab, 0x9}, {&(0x7f0000000d80)="a1de2653eb9db9936843ac5a938fcb7dcf376ee58e17b3a0f472fa49ea3e31f9fcbb81dbec4044ac8dcf915cfd02e13b1a8128aad66b650c5606ae13f1ae712ee1caab59f38196268209fa8b833fe15e353112b7f8b8f117c4dc111256ca45cff5445fd4611ba4193958956c4f13fd3358ed2e5460dbb4c9943adf2f6e4bd1684f49b1a2c9b5b71e7b42198755271d8f373baf7a81f32ddefb98633d6343c32239ca093cf56cadc26db6406ad7ba069c9b648d1472154f34b5121349149ca2ca6ee4ac2accf00fee5ac5595de91858cea650b9268b689fa948b4ed5f0b5371a856d218479a81de25c00b169aa5709315cf10e35ec0845dcf25ccb17a333d78bfeae2a8bfa007ae327237f33fae46c5a12608ff72e8e13ac8a67416bb2a4699bf0b7a7a674dbbbd6efee1914f3d877310bd6274086bee461c9d2e85cc8857202e89202c41cb5f1a30e5e2f652086509382baa73a6b1da280255c7f5e1b3fec4a7bdb39c333a1e54009b53bbc44c40510ecd39f0a98e019c3706689b9d3be210e54f2847aa72f520ac45ff0c6728cc0b2908ea8182e94c329c4aad933a72a18d08d219affded39dcc2e9d88b8ee8ed5a655ac2c812e8a135a0b3080deb92d6d9c7fa07319e65e2fc0ddf9b5775b9f74a71e874a0d2e953c9dba3d1d488bc64fcc1627c0bbfa26a3906994af59ad72617c0f7a3fa798aa6f744bfe06dd021a8ffd619e11afc28b60ee4bc0c4242b293e246cc22e0278ebd9d3ff6f34dbe72f9230d022ae01e7cebda881ace431cd65c2ed277ace41897d097b497d42eef70bea8fe033bf83820ebc0b5147560ceeba47e0346541faae7564130771634a0bc8c74ab1651fd5f446b6d9046022188717f7b94de2c982b4beebf4972969ca6027e3a4dca4e14dce9d2ae290797c598a01d1e2a6677d21e15d70277b3f412fe159afaecf4b44375048073b4a54439167a5300c33ae4d1a8b6de51a19efbebe1582ebc4fa9ba96292e8dba6ff849755dfe900a32b4295b927919ac9047becac6c18a5f9aba9a166988a072451dbd5929b0daf333fc12f78cb3d048349efd8758de9a48518a01e0f0e6376964fb004a448a28449b3aa6f68c1277ebc4f7cf5556df555e512b794dac179eabf8054f5137d7cbc8ca5ebc516c861b95223c072d4f70480584a48ff47e9a75f557bfad6fd45f03d3780fe699b9bc7ebbe581c6f0930b636369e5ef14c0b19689b3676a55e2e6822e9ab316c4e6407e3314055cbd4cce0a3f860e5894e6e6085cbe2b03e6da2d768ef8af3e5680ca30ee4b588d644ef0c14ca74b93b99d7d3007e859aa461a641fd22696675af5502c83c97c9b26ed143efabe76d7180cc60bdfecf459bf3722a93c89899a63252bcac4c1d894e6b03f0f75595afcd3cd889ac6f28f5426f392ccb368843c1c00b6ba3dbcf3b1f7cbcb3de3c54dab0fe5c68f92320d2a8b70453900a2135313c9911cd81d6d08ebdc1b64ef3fa26c445b6f0e85ca604f450e4e2ac646c5cb4c3700e17a4fc9d9d70d9bd38c2b476a7cf4d6c0222e6c31a204758809fd289f097e2591bab5372c7e907d5fdaec5a2ae3c170cb6377f1c309a327eeaa308cc516a37e4ed57fa7b529c8dc0a8f31c5943441d11b074de2487994a8fcddb632f2712bb67ebdf4925af25698d6759233a876776b8be502c1b85b4ff26ec492fc6b3da1f3be607ffe8e4a03a7d8cae97793c69f60bdbdcacb9d23986c90d2d9ea0e0263fa865452839000c1b55df706d79e774cf7d9f4cc599d2d87cd5e3adcd12d1ae9a58a1179e6a2523b8d8db9a71cc8b22181296fe2012cc8711fcb011daa1e54c6c41730312df80ce49e0289a95caa7c41564c8bd166e266ea6d2597a469fefebe741c9ecc892b160798adc581e0dc35d4d77226970c220388e88e07893d3ff62fc51ff4c12cf48a809fbdd993fe088ff0b68ef6b5b5827109b9c2fa159350b7f5395b905b46471ae8f8853fd5a9da722e422a46dacef8ed0094a5d5eeed1600bb5d663d43540f97eaddae81814627710ba0abd57ca1022f525a6b4e8578cd6133f6267066c8b14c67b255d8a982112bee387d71c8e954713185d6727e003c79071e93d1c22789e9f2a3ab17e1327ff5e96c56447f55696b2d384455a6452e1e417de6254c59bdeb1d48190685708bca9819ad736b242dbdb65b60b34f0f77bd024d04f2eb7e2819dcaf1a8a77f4c22a1ad1a304258bec2f2e8edb8b1244c0cfa80c1b0d63654d93a5fae27ff1a03ccc86583b0e2e20af1ea8d44c1549bdfdddec8e142f1a4903edcfc5cb5454344d24bdbe575101ebb865d0ba9f60ece712d2200c8eac63bea15f8c6ea8019d82d8ab2704be26f0aa8c556813bfcc05a1f511730fbc7a0fb4a60588d420d01c58690bd77b7f95aa75f7130c72e6aba92050a5969d5b610da92092acb13558a8af5b8fd1ff5a9e622ad15574555d86646f99b4aa3c0dfc197e121c4d3b15073713347d4b2225e0b30ba01d92ee80624ad4a4aaab672a4ad7da48c00303add6894fbca68acd62e8e605b40cde8c0cac02f0ad2dbe567a2c71f96e31648f264a2be3d6171ec00bcebe89a1c0866d82f37586f72624a125f588b68baee58c85e263b1bb0dc68200e7660092d4600334bf511fbb26711169b4f5d073ebac368df43211701e5e16fef7304711750c9ac7e8fe728813e8d4ef897efaf79c04d24349bd966453296d975f1245248cccb2054c6a9b80962043a28baf1cc193ee15d840ade1d7c9e8e536548632b72eed17dba90d5c4f98d0f67041c29f0077b3ca4b7aaab2af405b25931016901a2a4b6eab4bebf86751c82d8fb5e4a944ba4df995322f3ee2c7f6d483e8cb116b13b0f31104f44e14f0dab2606935c3a38bfa407002a97146af4b563ca6ecd9099b1b6e52324f56b0f09cb13dc9b197511bbf3364b62f141c9c653cc84316c56a9fb63a01a44a675ddd35b192cdf54773936332856426f47be0937be6a54bf121b8e62ae12b2792d0fd8aada74d4024ecb01c7a09b930ddea53401e84d5d9238d2a460ceadd03a9cf726c6308e9755861ee2427253fddc19ca3e58cd914146b2a262adf5e568d7d660c60447bfbc45fd8ca86af32f7eca76707ee5b51d1ab5e3a69673a2b22feabbfc358fc15509d8a1f86f4b96b2fde5b800c572748722c7a05d031522a3861bc85d04ce9d1f6ceb8efa798f47048cdc3a48e558754806071ffacce0cc69bd4254f55d7b24e939d7217f4e7d1c32e5c5e59eb6c59480bdf2cd7affde0ec1a22fa17dc4da6b74a4f0d6cb54c51c7fae2abe582eff74fa0f383edc5711cb9c825c8c8c6d97338e2c228e2b8dbcc4239b87fe4a9ff5b9246d996640582e495cf39ca9e2747bdc6be7f94b224bc94006b7be4385acaed968d52f530ca3c29270caadd0aa8aaba4af6ce4754f1b96c5715c0d9c0ed327831c6731719e75ba71a9ac6d4e7c1450a8161ca9f190fb2afc2c107498a2d8e602be2fc573439ceba6f8316a8ced819581046a11f4ae6a0f52f5d346ec91dd957f44597aeff2c21bba16aa1676e69e146b0c76c241709a3759ce7cfc510ae3ee449e43cf344bc599d40dae44e5ac4d1f812039c2104edc2a64d747cacef373a0d06d5c554a0050bc27bd18aabf729e2dc9a0aaadfa48a7a495a96ccd23b7202e0b7ceda6a37b823f89cb2f349fcaeb07fac3449383e3abf064fe907078fbe9b5c5b04f32d3c92abecd03688cc6fbe5c5fc4c8097c215f46f3e63e417f79e97d8464b398882fce920ec74fc12bd4d50b08b64725a310effea1df5621c7796fe573fe60bb39e70b2cbb11a17d1eb7f69fc446270de6ab7c19e00c418e41b47b3c2bb0cd53eb58003994dbea53d74615da36ae6c06e80851b4d8749f6000fc0ef79e2ee96a2e4a90f38ad2330703e13680e240699ef99c245446fa7f2b3e0b53f5ba5bc532964a41e901cb2a6535d270f2b9df0e4415bdca6b8b942d824b56482023c9be62d68b6c28eec94b1f3c7048344f5ea460e5db95be77f25a2c0ab84e512a4ec785afb0d6dda481bb5251a3885cd4d78586ca11cfac9341697698d8523604ff0ca548e40c4785a1230e565d6671eaeff8760a2223646e1a2c95e1b7dc18a46aa4f4e02c1f40320d0839585cc79035ceb3c0043e7b1f5a09aafba7aec4cc5aa8aacb1268820bb869051fe98e52e21e55c0899ef1c2d76ef4c92062c7b651320a1fbe72eb2d60aeb0450b2d69fc3802ea3061060f14943aff56ce8c31110270c4006136b3447adce41f7d6ba9a6c94294fd30be2004fd4aa0930dc8f113aeb2a9b480b7e0f8cc6ee1c15313ff505e771c25644ca6fdf1acc2d273ef6261d11e9cdb65784e8b85db0fabd550236fa1306a6bdeacbd2b61574cfdb9e9594a9f2995f6526011fd5060e294c19b74999402f1bbec9cb9534b798c51816200e26ca5b81379ca866a6ded6e25b8d05da94b49089b2daa36a7b394fa1ed0fe8e987478bfb44d170f2de6df40a5d88c0b99b8b3af1583996aa6689ac9d9db74cb5ea74703a91ef8bd6174bb0dfdf3f7565f43788ef2e2094d28895aa1710dafa729af3e2249eec6319dafa8a57c969021241616fa149bdfd2322147edf1c48517e6809cb582b991d4a2235c8ac182a3613d19b9b8eaa37226b1e5593206e6f6db8e1ac7a2503618c94dbf0fec1db1c4bf91d8f4d9b79a2b34fad9d9b07003088e3b7c0f457010bc4cdf92cd9616a9ba053c977f8aa2c46ec90363fa7a70acd25e1a0dd01ad49a283db1b6348a54019b1fda2ce09234efef8565444bdf0dd2cdef6953f0c7235137dea35416a4f18653d3f29c4cb3fc283695f2f6021af1700e197dcc14086b72b8165e967ce0195a4046c3e7d21c1f9929accea5d9396cb090da5dc4077b34c5336f474aea561c2b7ffd27327ecd8a732fc769f5b5258396cc4a8d644385333ac71695ae2b7eb0c86a1519139e37985310ea950ccad53b5e4d6c39c880baeff4c7ff12652e502649204ca71c4f507687f70df3fc2d06856931672e97c16384fd0cf5316a4f5f52ef7549beac70882cee28daa1bcb4d90c80797b10c3e314972a865995a9891ebb9d6c04c63e6640a77620d1e11a912365a2dbcb07ad5c7fecd977b344df4819f7db5579285da1cd4b92bb2c3bfc56c7981cf3aece8cd69413ebcfe751d4250c3221d21e4de170152c6ff734cf4f17e818e1e9b4a4113827197577c11acd05adf042947dbbad3680e61730e478b5e2799a02b48ae5ec7dc86f7fab26fc2e876dfb0724296f60b5c267d17f86bbc1d73bd87e2b6169cdea914655fa9a355664dadd54f37595d66cdeb3de706fc929a84a4eae57028a91d35385b0633ed1754c6fadc76ae725ed78963d885f6e67ac2f082b9b147ff3ef20f96e6e445981af092bfa7cc090aba726b3468e4a347e8c0bc16c01979ff8fccfb977f31fc6894962316f9da19d9126bdf7af77fcb97adc967ae340b4528563f4e9f9384ac3f53da453a6080418e4c06546235fff29999d124e00eeb6e493ef00f104635c08ec4ae874795cdb8487c3668d2e3f20cac12b85950f3aaf0e9b5d26e026e9bcd7c69ce52d92d2e6254c239cdbec873f7a251448765ac2a1af8a8bc70b1a0f55e29aac40367b35228eb7c57fb1b75e05116b480d9540c8f68e7d5f28d9149eaf22dbd165c8c22b521efdb681e7ba7deaed913771554beb6e7042aadfd7516cf5cf05450ac1a48ef51bea5cadf3ecae5c31e4aaaeb81f3ea1c7ac2d68ad5b71f8a7b852034b33ab993cb272bcaa6d9e36ae4f36d58dc1c6", 0x1000, 0x2}], 0x40002, &(0x7f0000000900)={[{@mpol={'mpol', 0x3d, {'interleave', '', @void}}}, {@size={'size', 0x3d, [0x6b]}}, {@nr_inodes={'nr_inodes', 0x3d, [0x35, 0x67, 0x6b, 0x35, 0x33, 0x35, 0x2d, 0x78]}}, {@mpol={'mpol', 0x3d, {'prefer', '', @void}}}], [{@defcontext={'defcontext', 0x3d, 'system_u'}}]}) sendmsg$NL80211_CMD_DEL_MPATH(0xffffffffffffffff, &(0x7f00000005c0)={&(0x7f0000000480)={0x10, 0x0, 0x0, 0x10}, 0xc, &(0x7f0000000580)={&(0x7f0000000500)={0x4c, r1, 0x800, 0xffff, 0x25dfdbff, {{}, {@val={0x8}, @void}}, [@NL80211_ATTR_MPATH_NEXT_HOP={0xa, 0x1a, @device_b}, @NL80211_ATTR_MAC={0xa, 0x6, @device_b}, @NL80211_ATTR_MAC={0xa, 0x6, @broadcast}, @NL80211_ATTR_MPATH_NEXT_HOP={0xa, 0x1a, @broadcast}]}, 0x4c}}, 0x44081) socket$nl_generic(0x10, 0x3, 0x10) accept4$packet(0xffffffffffffffff, &(0x7f0000000600)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @dev}, 0x0, 0x0) ioctl$NS_GET_OWNER_UID(0xffffffffffffffff, 0xb704, &(0x7f00000007c0)) syz_open_procfs$userns(0xffffffffffffffff, &(0x7f0000000800)) syz_open_procfs$namespace(0xffffffffffffffff, 0x0) statx(0xffffffffffffff9c, &(0x7f00000009c0)='./file0\x00', 0x6000, 0x7ff, &(0x7f0000000a00)) syz_mount_image$tmpfs(&(0x7f0000000b00), &(0x7f0000000b40)='./file0\x00', 0x100, 0x1, &(0x7f0000000c80)=[{&(0x7f0000000b80)="8f9014b9d8e4e57fac31b7e4b176f0a7342ab07cc8fbf6e0f324af54d31472358e9de3f6037a9f8167e007d7f6071506becf1e51f4144edb4055f77c160a1fd956da306388e6811b240f20f4c79590e5133798a0188d498636cc8c6209186737528b7ae12e83c96c1bd040afca89a411ee2ba13483460827e1f4a7eb437e074a29d1fe7384f9c4a0d335c35f95e2482271010d180804326095ba2e39a100989fdafd51f2ede4842d121c380dcdc00147b0d8ad883f730fb32d07534bdd3c1300451942475e890fb070e590b70c20d32b709bf7d670f19c8d932b39c469b71d8f3dc880", 0xe3, 0x8000}], 0x7dd00afb0d49c4e9, &(0x7f0000000cc0)={[{@huge_within_size}, {@mode}, {@gid}, {@uid={'uid', 0x3d, 0xee00}}], [{@subj_type={'subj_type', 0x3d, '\x00'}}, {@fowner_eq}, {@uid_gt}]}) [ 363.832519] EXT4-fs (loop7): Unrecognized mount option "Ú" or missing value [ 363.833390] 9pnet: Insufficient options for proto=fd [ 363.845777] audit: type=1400 audit(1628676873.679:10): avc: denied { sys_admin } for pid=5595 comm="syz-executor.6" capability=21 scontext=system_u:system_r:kernel_t:s0 tcontext=system_u:system_r:kernel_t:s0 tclass=cap_userns permissive=1 10:14:33 executing program 1: r0 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x46e2, 0x0) r1 = dup2(0xffffffffffffffff, r0) r2 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000040), 0x2, 0x0) mount$9p_fd(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f00000000c0), 0x2000000, &(0x7f00000004c0)={'trans=fd,', {'rfdno', 0x3d, r1}, 0x2c, {'wfdno', 0x3d, r2}, 0x2c, {[{@debug}, {@debug={'debug', 0x3d, 0x10001}}, {@version_u}], [{@hash}, {@euid_gt}, {@fsmagic={'fsmagic', 0x3d, 0xfffffffffffffffc}}, {@euid_eq={'euid', 0x3d, 0xffffffffffffffff}}]}}) [ 363.868150] 9pnet: Insufficient options for proto=fd 10:14:33 executing program 7: r0 = socket$inet(0x2, 0x2, 0x8) r1 = socket$inet(0x2, 0x1, 0x0) setsockopt$inet_int(r1, 0x0, 0x13, &(0x7f0000000180)=0x1, 0x4) bind$inet(r1, &(0x7f0000000c00)={0x2, 0x0, @multicast2}, 0x10) bind$inet(r1, &(0x7f00000000c0)={0x2, 0x4e22, @broadcast}, 0x10) ioctl$FS_IOC_FSGETXATTR(r0, 0x801c581f, &(0x7f0000000000)={0x200, 0xadb, 0x8, 0x81, 0x3}) r2 = socket$nl_netfilter(0x10, 0x3, 0xc) r3 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000040), 0x2, 0x0) write$binfmt_aout(r3, &(0x7f0000000640), 0x20) read(r3, &(0x7f0000000100)=""/146, 0x92) fcntl$F_GET_RW_HINT(r3, 0x40b, &(0x7f0000000040)) sendmsg$nl_netfilter(r2, &(0x7f0000000700)={0x0, 0x0, &(0x7f0000000680)={&(0x7f0000000080)={0x1c, 0x10, 0x0, 0x0, 0x0, 0x0, {}, [@typed={0x8, 0x0, 0x0, 0x0, @ipv4=@dev}]}, 0x33fe0}}, 0x0) syz_io_uring_complete(0x0) 10:14:33 executing program 4: r0 = creat(&(0x7f0000000040)='./file0\x00', 0x0) r1 = socket$inet6_tcp(0xa, 0x1, 0x0) setsockopt$inet6_tcp_int(r1, 0x6, 0xa, &(0x7f0000000040)=0x28c0, 0x4) setsockopt$inet6_tcp_TCP_MD5SIG(r1, 0x6, 0xe, &(0x7f0000001880)={@in6={{0xa, 0x0, 0x0, @loopback}}, 0x0, 0x0, 0x8, 0x0, "e838101e7b9a5d8333d402046e4fa3b469a144c0b255d40b8055ea3505456429ede9750f780504d16fc00cceb8fd57bd1027e9afae1129eb68c6f3e15b9cc5cb95055ee1aa7012dd8385f3c6094b7df4"}, 0xd8) bind$inet6(r1, &(0x7f00000000c0)={0xa, 0x4e20, 0x10, @ipv4={'\x00', '\xff\xff', @remote}, 0xffffffff}, 0x1c) socket$inet6_tcp(0xa, 0x1, 0x0) connect$inet6(r1, &(0x7f0000000000)={0xa, 0x4e20, 0x0, @loopback}, 0x1c) sendmsg$inet6(r1, &(0x7f00000006c0)={0x0, 0x0, &(0x7f0000000540)=[{&(0x7f00000001c0)="cf", 0xfffffdef}], 0x1}, 0x10044001) recvfrom$inet6(r1, &(0x7f0000000700)=""/4096, 0x20001700, 0xcd00, 0x0, 0x0) syncfs(r0) 10:14:33 executing program 2: r0 = perf_event_open(&(0x7f0000001d80)={0x2, 0x80, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_mount_image$ext4(0x0, &(0x7f00000001c0)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0) pivot_root(&(0x7f0000000040)='./file0\x00', &(0x7f0000000080)='./file0\x00') io_setup(0x6, &(0x7f00000000c0)=0x0) io_pgetevents(r1, 0x0, 0x0, 0x0, 0x0, 0x0) r2 = ioctl$NS_GET_PARENT(0xffffffffffffffff, 0xb702, 0x0) r3 = syz_io_uring_complete(0x0) r4 = socket$netlink(0x10, 0x3, 0x0) r5 = fcntl$dupfd(r4, 0x0, r4) getsockopt$netlink(r5, 0x10e, 0x0, 0x0, 0xfffffffffffffffe) r6 = syz_open_procfs$namespace(0xffffffffffffffff, &(0x7f0000000240)='ns/time_for_children\x00') r7 = socket$netlink(0x10, 0x3, 0x0) r8 = fcntl$dupfd(r7, 0x0, r7) getsockopt$netlink(r8, 0x10e, 0x0, 0x0, 0xfffffffffffffffe) r9 = syz_open_procfs(0xffffffffffffffff, &(0x7f0000000400)='net/packet\x00') io_submit(r1, 0x5, &(0x7f0000000480)=[&(0x7f0000000000)={0x0, 0x0, 0x0, 0x2, 0x40, r2, &(0x7f00000000c0)="3dfffe5a4c8987c619564b12c00b5fc5d03819ed3ebf73b718b0bb36c6c4e3cdfaae3d22cff26ab9e7e465d86e39ffca5a6198de4bbd7cb2b285fca817d2632b4f80006461dd33f0a3b0c8a86f07b17eb05189f3cfac728fee9300202228", 0x5e, 0x5, 0x0, 0x1, r3}, &(0x7f0000000200)={0x0, 0x0, 0x0, 0x2, 0x9c6, 0xffffffffffffffff, &(0x7f0000000140)="7c5e34da88a099a7d0b2963889aa2000214a768c608a2080b1fe0ca67ddb484be79aac875a19f314567aba2a61550828b914b5a4d51967563776cc8eabe8ddfa6a4281c526fc728b01431be9732b7552a8281bf0ab8f2e54be12a57ac7ad9031e551ccebaa9b9ff446ee751a", 0x6c, 0x80, 0x0, 0x2, r5}, &(0x7f0000000300)={0x0, 0x0, 0x0, 0x0, 0x0, r6, &(0x7f0000000280)="8c1cb8e64d035e1724be0082c78cfb0cefd9999084f6cd5ca61a40d3455c2c0ee21ba66436fd736322f5541a33d17bfcc13d3419ee3e9d22ff1dc784725615893806a719c5200f7d513f7e9b0c02e23db3e6eadf84837594e3f07653fa3e61cc812a9e776ac74edcc6968f6fe1b2300eb46d89c2f9228a1be3adb46d", 0x7c, 0x1000, 0x0, 0x2, r8}, &(0x7f0000000380)={0x0, 0x0, 0x0, 0x1, 0x2, 0xffffffffffffffff, &(0x7f0000000340), 0x0, 0x7}, &(0x7f0000000440)={0x0, 0x0, 0x0, 0x1, 0xfc01, r0, &(0x7f00000003c0)="4c3fa83e37d22433249daf24", 0xc, 0x5, 0x0, 0x3, r9}]) [ 363.952039] 9pnet: Insufficient options for proto=fd 10:14:33 executing program 5: r0 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x46e2, 0x0) r1 = dup2(0xffffffffffffffff, r0) r2 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000040), 0x2, 0x0) mount$9p_fd(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f00000000c0), 0x2000000, &(0x7f00000004c0)={'trans=fd,', {'rfdno', 0x3d, r1}, 0x2c, {'wfdno', 0x3d, r2}, 0x2c, {[{@debug}, {@debug={'debug', 0x3d, 0x10001}}, {@version_u}], [{@hash}, {@euid_gt}, {@fsmagic={'fsmagic', 0x3d, 0xfffffffffffffffc}}, {@euid_eq={'euid', 0x3d, 0xffffffffffffffff}}]}}) 10:14:33 executing program 1: r0 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x46e2, 0x0) r1 = dup2(0xffffffffffffffff, r0) r2 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000040), 0x2, 0x0) mount$9p_fd(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f00000000c0), 0x2000000, &(0x7f00000004c0)={'trans=fd,', {'rfdno', 0x3d, r1}, 0x2c, {'wfdno', 0x3d, r2}, 0x2c, {[{@debug}, {@debug={'debug', 0x3d, 0x10001}}, {@version_u}], [{@hash}, {@euid_gt}, {@fsmagic={'fsmagic', 0x3d, 0xfffffffffffffffc}}, {@euid_eq={'euid', 0x3d, 0xffffffffffffffff}}]}}) 10:14:33 executing program 6: r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000040), 0x2, 0x0) write$binfmt_aout(r0, &(0x7f0000000640)=ANY=[@ANYBLOB="b900000000000000000000000000000000000000000000000001000000000000"], 0x20) read(r0, &(0x7f0000000100)=""/146, 0x92) ioctl$FS_IOC_GETVERSION(r0, 0x80087601, &(0x7f0000000040)) ioctl$TIOCGPTLCK(r0, 0x80045439, &(0x7f0000000080)) syz_mount_image$vfat(&(0x7f0000000000), &(0x7f0000000100)='./file0\x00', 0x200000, 0x8, &(0x7f0000000200)=[{&(0x7f0000010000)="601c6d6b646f73662a7b3b00088001000240000004f801002000400000000000000000008000"/64, 0x40}, {&(0x7f0000010100)="f8ffff00f0ffffffffffffff00"/32, 0x20, 0x800}, {&(0x7f0000010200)="f8ffff00f0ffffffffffffff00"/32, 0x20, 0x1000}, {&(0x7f0000010300)="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", 0x120, 0x1800}, {&(0x7f0000010500)="2e20202020202020202020100016e870325132510000e87032510300000000002e2e202020202020202020100016e870325132510000e870325100000000000041660069006c00650030000f00fc0000ffffffffffffffffffff0000ffffffff46494c4530202020202020200016e870325132510000e870325104001a040000", 0x80, 0x42000}, {&(0x7f0000010600)='syzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkal\x00\x00\x00\x00\x00\x00', 0x420, 0x82000}, {&(0x7f0000010b00)='syzkallers\x00'/32, 0x20, 0xc2000}, {&(0x7f0000010c00)='syzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallers\x00'/128, 0x80, 0x142000}], 0x0, &(0x7f0000010d00)) r1 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a) ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000140)={'lo\x00'}) ioctl$sock_inet6_SIOCDELRT(r1, 0x890c, &(0x7f00000002c0)={@private2={0xfc, 0x2, '\x00', 0x1}, @ipv4={'\x00', '\xff\xff', @broadcast}, @private0, 0x6, 0x7f, 0x400, 0x0, 0x5, 0x80002}) 10:14:33 executing program 3: r0 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0xa43, 0x0) mount(&(0x7f0000000080)=ANY=[@ANYRESDEC=r0], &(0x7f0000000040)='./file1\x00', 0x0, 0x0, 0x0) ioctl$BTRFS_IOC_QGROUP_LIMIT(0xffffffffffffffff, 0x8030942b, &(0x7f0000000000)={0x0, {0x0, 0x0, 0x0, 0x0, 0x7}}) r1 = openat(0xffffffffffffff9c, &(0x7f0000004c40)='./file1\x00', 0x84e00, 0x0) ioctl$SG_SET_TIMEOUT(r1, 0x5393, &(0x7f0000000000)) 10:14:33 executing program 0: ioctl$sock_SIOCGIFINDEX_802154(0xffffffffffffffff, 0x8933, &(0x7f0000000240)={'wpan3\x00'}) r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$nl802154(&(0x7f00000006c0), r0) sendmsg$NL802154_CMD_SET_CCA_MODE(0xffffffffffffffff, &(0x7f0000000780)={&(0x7f0000000680), 0xc, &(0x7f0000000740)={&(0x7f0000000380)=ANY=[@ANYBLOB="1c000000", @ANYRES16=r1, @ANYBLOB="080028bd7000fddbdf250d00000008000300", @ANYRES32=0x0, @ANYBLOB="9f7e20717095eb042acb8f"], 0x1c}}, 0x10) ioctl$sock_SIOCGIFINDEX_802154(0xffffffffffffffff, 0x8933, &(0x7f00000000c0)={'wpan1\x00', 0x0}) sendmsg$NL802154_CMD_DEL_SEC_KEY(0xffffffffffffffff, &(0x7f0000000280)={&(0x7f0000000080)={0x10, 0x0, 0x0, 0x200000}, 0xc, &(0x7f0000000240)={&(0x7f0000000100)=ANY=[@ANYBLOB="c0000000", @ANYRES16=r1, @ANYBLOB="00012dbd7000fddbdf251800000008000300", @ANYRES32=0x0, @ANYBLOB="9000258014000400d9b35a16820057e3a054740e780aa98305000200800000000c000180050002000300004005000200d800000024000300059eedfcd6ac1a5c32f321393811f4e1c785b6a99ccf533c75d5e7138b7666f514000400e3ba46a2a1a1d11b36a4103d57ab947624000300e14b29ee2dbf5c0c40c4f2e8ac7575bb88d698a7e70747e70816c7503a80cf3008000300", @ANYRES32=r2, @ANYBLOB], 0xc0}, 0x1, 0x0, 0x0, 0x48045}, 0x20000883) r3 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) sendmsg$NL802154_CMD_SET_CHANNEL(r3, &(0x7f00000001c0)={&(0x7f0000000100), 0xc, &(0x7f0000000180)={&(0x7f0000000140)={0x14, 0x0, 0x4}, 0x14}, 0x1, 0x0, 0x0, 0x40000}, 0x0) ioctl$sock_SIOCGIFINDEX_802154(r3, 0x8933, &(0x7f0000000240)={'wpan3\x00'}) r4 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) r5 = syz_genetlink_get_family_id$nl802154(&(0x7f00000006c0), r4) sendmsg$NL802154_CMD_SET_CCA_MODE(0xffffffffffffffff, &(0x7f0000000780)={&(0x7f0000000680), 0xc, &(0x7f0000000740)={&(0x7f0000000380)=ANY=[@ANYBLOB="1c000000", @ANYRES16=r5, @ANYBLOB="080028bd7000fddbdf250d00000008000300", @ANYRES32=0x0, @ANYBLOB="9f7e20717095eb042acb8f"], 0x1c}}, 0x10) r6 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x46e2, 0x0) r7 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffd000/0x3000)=nil, 0x3000, 0x0, 0x13, r6, 0x0) syz_io_uring_setup(0x4b9f, &(0x7f0000000140), &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000ffd000/0x3000)=nil, &(0x7f00000000c0), &(0x7f00000001c0)=0x0) syz_io_uring_submit(r7, r8, &(0x7f0000000240)=@IORING_OP_FADVISE={0x18, 0x0, 0x0, @fd, 0x2}, 0x0) sigaltstack(&(0x7f0000ffd000/0x1000)=nil, 0x0) [ 364.047817] 9pnet: Insufficient options for proto=fd [ 364.052997] 9pnet: Insufficient options for proto=fd 10:14:33 executing program 5: r0 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x46e2, 0x0) r1 = dup2(r0, 0xffffffffffffffff) r2 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000040), 0x2, 0x0) mount$9p_fd(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f00000000c0), 0x2000000, &(0x7f00000004c0)={'trans=fd,', {'rfdno', 0x3d, r1}, 0x2c, {'wfdno', 0x3d, r2}, 0x2c, {[{@debug}, {@debug={'debug', 0x3d, 0x10001}}, {@version_u}], [{@hash}, {@euid_gt}, {@fsmagic={'fsmagic', 0x3d, 0xfffffffffffffffc}}, {@euid_eq={'euid', 0x3d, 0xffffffffffffffff}}]}}) [ 364.137344] 9pnet: Insufficient options for proto=fd 10:14:44 executing program 0: ioctl$sock_SIOCGIFINDEX_802154(0xffffffffffffffff, 0x8933, &(0x7f0000000240)={'wpan3\x00'}) r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$nl802154(&(0x7f00000006c0), r0) sendmsg$NL802154_CMD_SET_CCA_MODE(0xffffffffffffffff, &(0x7f0000000780)={&(0x7f0000000680), 0xc, &(0x7f0000000740)={&(0x7f0000000380)=ANY=[@ANYBLOB="1c000000", @ANYRES16=r1, @ANYBLOB="080028bd7000fddbdf250d00000008000300", @ANYRES32=0x0, @ANYBLOB="9f7e20717095eb042acb8f"], 0x1c}}, 0x10) ioctl$sock_SIOCGIFINDEX_802154(0xffffffffffffffff, 0x8933, &(0x7f00000000c0)={'wpan1\x00', 0x0}) sendmsg$NL802154_CMD_DEL_SEC_KEY(0xffffffffffffffff, &(0x7f0000000280)={&(0x7f0000000080)={0x10, 0x0, 0x0, 0x200000}, 0xc, &(0x7f0000000240)={&(0x7f0000000100)=ANY=[@ANYBLOB="c0000000", @ANYRES16=r1, @ANYBLOB="00012dbd7000fddbdf251800000008000300", @ANYRES32=0x0, @ANYBLOB="9000258014000400d9b35a16820057e3a054740e780aa98305000200800000000c000180050002000300004005000200d800000024000300059eedfcd6ac1a5c32f321393811f4e1c785b6a99ccf533c75d5e7138b7666f514000400e3ba46a2a1a1d11b36a4103d57ab947624000300e14b29ee2dbf5c0c40c4f2e8ac7575bb88d698a7e70747e70816c7503a80cf3008000300", @ANYRES32=r2, @ANYBLOB], 0xc0}, 0x1, 0x0, 0x0, 0x48045}, 0x20000883) r3 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) sendmsg$NL802154_CMD_SET_CHANNEL(r3, &(0x7f00000001c0)={&(0x7f0000000100), 0xc, &(0x7f0000000180)={&(0x7f0000000140)={0x14, 0x0, 0x4}, 0x14}, 0x1, 0x0, 0x0, 0x40000}, 0x0) ioctl$sock_SIOCGIFINDEX_802154(r3, 0x8933, &(0x7f0000000240)={'wpan3\x00'}) r4 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) syz_genetlink_get_family_id$nl802154(&(0x7f00000006c0), r4) r5 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x46e2, 0x0) r6 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffd000/0x3000)=nil, 0x3000, 0x0, 0x13, r5, 0x0) syz_io_uring_setup(0x4b9f, &(0x7f0000000140), &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000ffd000/0x3000)=nil, &(0x7f00000000c0), &(0x7f00000001c0)=0x0) syz_io_uring_submit(r6, r7, &(0x7f0000000240)=@IORING_OP_FADVISE={0x18, 0x0, 0x0, @fd, 0x2}, 0x0) sigaltstack(&(0x7f0000ffd000/0x1000)=nil, 0x0) 10:14:44 executing program 1: r0 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x46e2, 0x0) r1 = dup2(r0, 0xffffffffffffffff) r2 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000040), 0x2, 0x0) mount$9p_fd(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f00000000c0), 0x2000000, &(0x7f00000004c0)={'trans=fd,', {'rfdno', 0x3d, r1}, 0x2c, {'wfdno', 0x3d, r2}, 0x2c, {[{@debug}, {@debug={'debug', 0x3d, 0x10001}}, {@version_u}], [{@hash}, {@euid_gt}, {@fsmagic={'fsmagic', 0x3d, 0xfffffffffffffffc}}, {@euid_eq={'euid', 0x3d, 0xffffffffffffffff}}]}}) 10:14:44 executing program 3: r0 = syz_mount_image$tmpfs(&(0x7f0000000000), &(0x7f0000000040)='./file0\x00', 0x4, 0x0, 0x0, 0x0, &(0x7f0000000200)={[{@nr_inodes={'nr_inodes', 0x3d, [0x6b]}}]}) getdents(r0, &(0x7f0000000080)=""/28, 0x1c) r1 = syz_mount_image$tmpfs(&(0x7f0000000040), &(0x7f00000000c0)='./file0\x00', 0x0, 0x0, 0x0, 0x8420, &(0x7f0000000140)={[{@nr_inodes={'nr_inodes', 0x3d, [0x31]}}]}) getdents64(r1, &(0x7f0000000240)=""/205, 0xcd) sendto(0xffffffffffffffff, &(0x7f0000000340)="9c19ca70c153ebad7515a81a04ebc4498f185c888d1e437398251919e0703c1d51153b31c33ceb4be5ed21072582c7ffaea493ba4f8e1b560af553a7a4de5fc9bc23dc0c7f3a0878482ad104f7b2f5860bda0a9e8e95521279f8c6ad8ec991b93fc9b865e80f9e256d041c0ee8a22b93f5b548908db2295afb3affaa9278ade5ddbfbc714bf2bac81cfea17abf60fc1f70012a6428e21a55392d541596446501584e4597b610fc1e70f2619f3d851b95fbe914e6fae3c3115e4779c50870f898633ac2a63fd4734f724f75640db72699cc967b91717a3f5b", 0xd8, 0x40840, &(0x7f0000000180)=@un=@abs={0x0, 0x0, 0x4e20}, 0x80) 10:14:44 executing program 4: syz_mount_image$ext4(0x0, &(0x7f0000000100)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0) mount(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000000140)='configfs\x00', 0x0, 0x0) r0 = openat$dir(0xffffffffffffff9c, &(0x7f00000000c0)='./file0\x00', 0x0, 0x0) openat(r0, &(0x7f0000000040)='./file0\x00', 0x8a380, 0x5) lseek(r0, 0x20000000007, 0x0) 10:14:44 executing program 7: r0 = syz_io_uring_setup(0x2, &(0x7f0000000640)={0x0, 0x0, 0x1}, &(0x7f0000ffb000/0x3000)=nil, &(0x7f0000ffd000/0x3000)=nil, &(0x7f00000005c0)=0x0, &(0x7f0000000140)=0x0) r3 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000040), 0x2, 0x0) write$binfmt_aout(r3, &(0x7f0000000640), 0x20) read(r3, &(0x7f0000000100)=""/146, 0x92) syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_CLOSE={0x13, 0x2, 0x0, r3}, 0x721) r4 = io_uring_setup(0x3de1, &(0x7f0000000200)) r5 = eventfd(0x0) r6 = dup2(r4, r5) syz_io_uring_submit(r1, r2, &(0x7f00000000c0)=@IORING_OP_OPENAT={0x12, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0}, 0x0) r7 = dup2(r0, r6) io_uring_enter(r7, 0x173b, 0x0, 0x6, 0x0, 0x0) 10:14:44 executing program 5: r0 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x46e2, 0x0) r1 = dup2(r0, 0xffffffffffffffff) r2 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000040), 0x2, 0x0) mount$9p_fd(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f00000000c0), 0x2000000, &(0x7f00000004c0)={'trans=fd,', {'rfdno', 0x3d, r1}, 0x2c, {'wfdno', 0x3d, r2}, 0x2c, {[{@debug}, {@debug={'debug', 0x3d, 0x10001}}, {@version_u}], [{@hash}, {@euid_gt}, {@fsmagic={'fsmagic', 0x3d, 0xfffffffffffffffc}}, {@euid_eq={'euid', 0x3d, 0xffffffffffffffff}}]}}) 10:14:44 executing program 6: r0 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x105142, 0x0) r1 = openat2$dir(0xffffffffffffff9c, &(0x7f0000000040)='./file1\x00', &(0x7f00000000c0)={0x80, 0x0, 0x8}, 0x18) openat$dir(0xffffffffffffff9c, &(0x7f0000000140)='./file1\x00', 0x0, 0x2c) r2 = openat(r1, &(0x7f0000000000)='./file1\x00', 0x0, 0x52) copy_file_range(r2, 0x0, r0, 0x0, 0x200f5ef, 0x0) mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x1000002, 0x4000010, r0, 0x0) sigaltstack(&(0x7f0000ffc000/0x2000)=nil, 0x0) sigaltstack(&(0x7f0000ffd000/0x3000)=nil, &(0x7f0000000080)) r3 = syz_mount_image$iso9660(&(0x7f0000000180), &(0x7f00000001c0)='./file1\x00', 0x1f7, 0x6, &(0x7f0000000540)=[{&(0x7f0000000200)="e329d0002830f48e5c915d903aeb4565392ad719046278b5503772fe3cfd050b", 0x20, 0x101}, {&(0x7f0000000240)="f05c1a4cedf7431378844c16269756a1fff70f9b37cda9f25a9ec3c5cf145acb74c96f10e5b246121c57438aaa99a843be999373e31ee0598de33b39c5ed97ad572657de9d89fa167c2b44b1f8e2424be3fb5ff3c97d4dd46d7e53d007d692c868acb1a5c5b8246634ea58143316d927022a216c208a987a3b698d8f90894906d05058dfd0652cc9181b64c9fab509e3be53165a853203ab15edbef97b87cebc23b76037eb44ee64958d22294d9d69e2b5de0869edb65d", 0xb7, 0x4}, {&(0x7f0000000300)="5fece90e731c5d77742fad228c38220441f7a7c5196c4b9975d4b8311dd0c3d2db81f0d321504375e61cf57ded123e0cef3490a2c3f9bcecdeea755bfdfd413efaaf12265de2b71d9c32d2dec5efd33834ba30f72ce74c58e58f", 0x5a, 0xffffffff}, {&(0x7f0000000380)="3c5cd9fe4b50fc7f0f004b8507d48b75d2c91f802a0b3d4feeffb8512432c06e85e77c5ea4d79c1424212487763b870d9cfc82e6c869ffa26e0013387abbe25bb4c0547f524067fb226308468d2aed87f8ef0ba42f494061c39380f2a76185e79eb37da279dbbe29aebc0c15ccb187abc4d8f10b723ff65ed8fd16eeb6", 0x7d, 0x1ff}, {&(0x7f0000000400)="3d4d2a82800594197124ffaf06631d048a7d690f6f8aa0c297e0ea4d975b181f137c7a91579056b341bfcb0fcdc2882b64407bacf06f5e49b3a7a80487279601b3b7c8aa17548cfd010ca77f63b8fc70dbe50596dd57934bc4c7f9d73c6ee29723b20b7bebab942bc58de8f7033fca03a7b774cf6056e11a929a5f4f74506a2e9d1ce2d16d2fdd669c7828e28ac01e2e7acd8038303f136466e9060db465e564351569f36131067469336cc1e4826ab52d1731f41c5bf12d2be428e9e9792adce184ef8426aa8f", 0xc7, 0x5}, {&(0x7f0000000500)="28459b05bee7331da1589eb7f608d4beeb426698a54e3e1a9aea1f1f7b12969b82", 0x21, 0x3}], 0x9002, &(0x7f0000000600)=ANY=[@ANYBLOB='norock,map=off,unhide,seclabel,fowner<', @ANYRESDEC=0xee01, @ANYBLOB=',uid=', @ANYRESDEC=0xee00, @ANYBLOB=',uid>', @ANYRESDEC=0xee01, @ANYBLOB=',smackfsdef=]+-5euid>', @ANYRESDEC=0xee01, @ANYBLOB=',\x00']) openat(r3, &(0x7f00000006c0)='./file1\x00', 0x440080, 0x28) r4 = syz_genetlink_get_family_id$devlink(&(0x7f00000007c0), r2) sendmsg$DEVLINK_CMD_PORT_GET(r0, &(0x7f00000008c0)={&(0x7f0000000780)={0x10, 0x0, 0x0, 0x2000000}, 0xc, &(0x7f0000000880)={&(0x7f0000000800)={0x80, r4, 0x200, 0x70bd2a, 0x25dfdbfe, {}, [{{@pci={{0x8}, {0x11}}, {0x8}}}, {{@pci={{0x8}, {0x11}}, {0x8}}}, {{@pci={{0x8}, {0x11}}, {0x8, 0x3, 0x1}}}]}, 0x80}, 0x1, 0x0, 0x0, 0x20000041}, 0x800) r5 = socket$netlink(0x10, 0x3, 0x0) r6 = fcntl$dupfd(r5, 0x0, r5) getsockopt$netlink(r6, 0x10e, 0x0, 0x0, 0xfffffffffffffffe) r7 = socket$netlink(0x10, 0x3, 0x0) r8 = fcntl$dupfd(r7, 0x0, r7) getsockopt$netlink(r8, 0x10e, 0x0, 0x0, 0xfffffffffffffffe) madvise(&(0x7f0000ffc000/0x3000)=nil, 0x3000, 0x10) 10:14:44 executing program 2: r0 = socket$inet6_tcp(0xa, 0x1, 0x0) setsockopt$inet6_tcp_int(r0, 0x6, 0x12, &(0x7f0000001300)=0x7, 0x4) bind$inet6(r0, &(0x7f0000000200)={0xa, 0x4e20, 0x0, @loopback}, 0x1c) connect$inet6(r0, &(0x7f0000000000)={0xa, 0x4e20, 0x0, @loopback}, 0x1c) r1 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a) setsockopt$packet_add_memb(0xffffffffffffffff, 0x107, 0x1, &(0x7f0000000080)={0x0, 0x1, 0x6, @dev={'\xaa\xaa\xaa\xaa\xaa', 0x25}}, 0x10) setsockopt$packet_add_memb(0xffffffffffffffff, 0x107, 0x1, &(0x7f0000000180)={0x0, 0x1, 0x6}, 0x10) ioctl$BTRFS_IOC_LOGICAL_INO(0xffffffffffffffff, 0xc0389424, &(0x7f0000000040)={0xffff, 0x10, '\x00', 0x1, &(0x7f0000000000)=[0x0, 0x0]}) fsetxattr$security_capability(0xffffffffffffffff, &(0x7f00000000c0), &(0x7f0000000100)=@v1={0x1000000, [{0xfff, 0x8}]}, 0xc, 0x1) ioctl$sock_SIOCGIFINDEX(r1, 0x8914, &(0x7f0000000140)={'lo\x00'}) r2 = creat(&(0x7f0000000080)='./file0\x00', 0x0) pwrite64(r2, &(0x7f0000000000)="a7", 0xfffffd6b, 0x0) r3 = socket$inet6_udplite(0xa, 0x2, 0x88) dup(r3) r4 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a) ioctl$sock_SIOCGIFINDEX(r4, 0x8933, &(0x7f0000000140)={'lo\x00', 0x0}) ioctl$sock_inet6_SIOCDIFADDR(0xffffffffffffffff, 0x8916, &(0x7f0000000000)={@empty, 0x2c}) setsockopt$packet_add_memb(r2, 0x107, 0x1, &(0x7f0000000080)={r5, 0x1, 0x6, @link_local={0x1, 0x80, 0xc2, 0x0, 0x0, 0x3}}, 0x10) socket$packet(0x11, 0x0, 0x300) sendmsg$inet6(r0, &(0x7f00000006c0)={0x0, 0x0, &(0x7f0000000540)=[{&(0x7f00000001c0)="cf", 0xfffffdef}], 0x1}, 0x10044008) [ 374.699726] tmpfs: Cannot retroactively limit inodes 10:14:44 executing program 4: r0 = socket$inet6_tcp(0xa, 0x1, 0x0) setsockopt$inet6_tcp_int(r0, 0x6, 0x2, &(0x7f0000000080)=0x90, 0x4) bind$inet6(r0, &(0x7f0000000140)={0xa, 0x4e20, 0x0, @private2}, 0x3) r1 = socket$nl_netfilter(0x10, 0x3, 0xc) syncfs(r1) connect$inet6(r0, &(0x7f0000000000)={0xa, 0x4e20, 0x0, @loopback}, 0x1c) setsockopt$sock_int(r0, 0x1, 0x8, &(0x7f0000002ec0), 0x4) sendmsg$inet6(r0, &(0x7f00000006c0)={0x0, 0x0, &(0x7f0000000540)=[{&(0x7f00000001c0)="cf", 0xfffffdef}], 0x1}, 0x10044001) recvfrom$inet6(r0, &(0x7f0000000700)=""/4095, 0xfff, 0xcd09, 0x0, 0xfffffffffffffdf2) [ 374.715814] tmpfs: Cannot retroactively limit inodes [ 374.727838] 9pnet: Insufficient options for proto=fd [ 374.736862] 9pnet: Insufficient options for proto=fd 10:14:44 executing program 4: r0 = socket$inet6_udplite(0xa, 0x2, 0x88) setsockopt$inet6_IPV6_RTHDR(r0, 0x29, 0x39, &(0x7f00000001c0)=ANY=[@ANYBLOB="00840400b7510022bb060e16b95751000015fa7b48c1ddc8fad4"], 0x28) setsockopt$inet6_opts(r0, 0x29, 0x37, &(0x7f0000000080), 0x8) sendmmsg$inet6(r0, &(0x7f0000003940)=[{{&(0x7f0000000440)={0xa, 0x4e20, 0x0, @private1}, 0x1c, 0x0}}, {{&(0x7f0000000000)={0xa, 0x4e20, 0x401, @private0, 0x3}, 0x1c, &(0x7f0000000100)=[{&(0x7f00000000c0)="d3d0c5a3252dffea826c54edd0f1af57364193f3327ef3464360fefe243c5673e600903774e64fca71465651a53cd7", 0x2f}], 0x1, &(0x7f0000002540)=[@hopopts={{0x58, 0x29, 0x36, {0x16, 0x7, '\x00', [@calipso={0x7, 0x10, {0x3, 0x2, 0x1, 0x3, [0x80]}}, @padn={0x1, 0x6, [0x0, 0x0, 0x0, 0x0, 0x0, 0x0]}, @ra={0x5, 0x2, 0x401}, @pad1, @pad1, @jumbo={0xc2, 0x4, 0xffff}, @enc_lim={0x4, 0x1, 0x80}, @padn={0x1, 0x3, [0x0, 0x0, 0x0]}, @padn={0x1, 0x5, [0x0, 0x0, 0x0, 0x0, 0x0]}]}}}, @hoplimit={{0x14, 0x29, 0x34, 0x5}}, @dstopts={{0x28, 0x29, 0x37, {0x87, 0x1, '\x00', [@enc_lim={0x4, 0x1, 0x3}, @jumbo, @jumbo={0xc2, 0x4, 0x2}]}}}, @rthdr_2292={{0x38, 0x29, 0x39, {0x3a, 0x4, 0x1, 0xe7, 0x0, [@remote, @rand_addr=' \x01\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x01']}}}, @tclass={{0x14, 0x29, 0x43, 0xd0}}], 0xe8}}, {{&(0x7f0000000140)={0xa, 0x4e20, 0x2, @initdev={0xfe, 0x88, '\x00', 0x1, 0x0}, 0x10001}, 0x1c, &(0x7f0000000180)=[{&(0x7f0000000480)="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", 0x1000}, {&(0x7f0000000300)="b8d1151292af1ace3ca8a59bc3a40c328f22159862a8df436aa220d4a4b5d30d1c60e64bef692ea65e88924d03530ec4628849fda52231ef8d760e0ed61a17c46645101842308417ad769a02423cd801ca00713b13362e9671d828eb3decd48d7ec90edf3dc74530dcb0b75330a40e27ccd04c07b2793e7fecde44f15eaf7e89c666c0cf1131e0767597f4", 0x8b}, {&(0x7f0000001480)="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", 0x1000}, {&(0x7f0000002480)="ee2b7848232062ff07b845b8d7d24e3ec271214818f79b319b503a45b1ef8af22eefa41b0fd88cbba8670e8b3d43b74f5647e70774f01f926805dc334f0295e0c6e19d27ceba833837b18d02ebcdf8c89c80e6d9510b902398ae8eabce878a0ff1af542deef91d80d7e077620a6adb56750bef6e871990517cf1d918902eac4cd4655b701800f82cc524d9f0155829cbce5ef175f7f5388423ba6d8a641a8690ac1cc9d821", 0xa5}], 0x4, &(0x7f0000003a40)=[@pktinfo={{0x24, 0x29, 0x32, {@rand_addr=' \x01\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x02'}}}, @hopopts={{0x1f0, 0x29, 0x36, {0x2f, 0x3a, '\x00', [@jumbo={0xc2, 0x4, 0x80000000}, @jumbo={0xc2, 0x4, 0xfffffff8}, @hao={0xc9, 0x10, @ipv4={'\x00', '\xff\xff', @rand_addr=0x64010100}}, @jumbo, @hao={0xc9, 0x10, @mcast1}, @jumbo={0xc2, 0x4, 0x3f}, @hao={0xc9, 0x10, @private2={0xfc, 0x2, '\x00', 0x1}}, @generic={0x3, 0xef, "a481537d0d858b537558b86ddab55996b7c7f7d51e8cb8b151d8d067b0ea522e64056067e94d2e5600674487d2bd583c837616361645131459a2f508f51c00ac91e1e2cb135d021d8f99e3c51ba04d7821ca6bec98a6c196e0244b772a45daa1431cdcc153696cd447d129cebb3d517b068301b51b0c7de03ddd88a8b47bf75db64808eaec144b4442db4062bd6fd6bb681016465db7c2369f64f2add14ad62c4ac88749929e1ac9bbab54acaa8c6e5247b3a25366157b3747d13d165151f7546fbe4315799b7e9b0ae3a10561251bceb6f74b894c0b44c2bbbadd1323bdbc4bc66b9a1f49e5a242e9989612dc477a"}, @generic={0xff, 0x90, "fc267bcd389bc3aacf163ce8784f0f26fe82c528f18fcbb0261aba96b9b41b6ab5d22695e4f38071a7c348f52f15ce3d60b7711fe292d4baabc70773e3a40ade33404ca49d22634767fbbf3a5679441bcc9f5accdb445ac31eb229fbc3ae8f9d6ecade94b4a5937b67c6e57bc425626afeeeaf89bae19530e92b2451b273fbd5d9230478d0501e175ca4abcf6f9e45b5"}, @enc_lim={0x4, 0x1, 0x4}]}}}, @hopopts={{0x40, 0x29, 0x36, {0x1, 0x4, '\x00', [@hao={0xc9, 0x10, @local}, @padn={0x1, 0x6, [0x0, 0x0, 0x0, 0x0, 0x0, 0x0]}, @jumbo={0xc2, 0x4, 0xb4}, @pad1, @enc_lim={0x4, 0x1, 0x2}]}}}, @hoplimit={{0x14, 0x29, 0x34, 0x800000}}, @tclass={{0x14, 0x29, 0x43, 0x4}}, @flowinfo={{0x14, 0x29, 0xb, 0x8}}, @rthdr_2292={{0x48, 0x29, 0x39, {0x5c, 0x6, 0x0, 0x1f, 0x0, [@remote, @private2={0xfc, 0x2, '\x00', 0x1}, @local]}}}, @dstopts={{0x58, 0x29, 0x37, {0x1d, 0x8, '\x00', [@padn={0x1, 0x6, [0x0, 0x0, 0x0, 0x0, 0x0, 0x0]}, @padn={0x1, 0x5, [0x0, 0x0, 0x0, 0x0, 0x0]}, @hao={0xc9, 0x10, @rand_addr=' \x01\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x01'}, @jumbo={0xc2, 0x4, 0x80}, @pad1, @ra, @hao={0xc9, 0x10, @local}]}}}], 0x340}}, {{&(0x7f00000003c0)={0xa, 0x4e24, 0x40, @private1, 0x2d}, 0x1c, &(0x7f0000003880)=[{&(0x7f0000000400)="c3666db0d86d4896d834e872cbf3", 0xe}, {&(0x7f0000002880)="179c855ff4fdb85927c3978feb8e7c5acb98817c21f080f070629a77064d6cceb13e3c68b0215f2cfb0c9da7c7d8da22ee2206317d43a666bdd884fe23b40d8e02c60c1cf2aafeb2a434f5818f62337558fc18b3037a3ed9084333ff45713037804e0205f62637b94a0d3b4a435f9c04087cd6b342cf5560740d0ffa3649920d9ee0c9fc3c1dabd736298da18d73dac11483b29e5787d3d6917659d574c06934b8f89ac87dd696a2af37c0a092d6a8d6ab001117be628df142f24ee46714fb8b78cff73668e3637f222cd1dfc7b9573fc7d13f801ee4c976cf66d8d30ebb4b1f4f56f6637d96da2b75f7a31ed701c62d24834218b375e9afc7db236f09e791a16181366b84c1f54064a33bba7e96440d7292d4cd30321409ab1e17064d2ea3f5f64a338b60c3f6e2158c30506f52d7b8daf501f8228e3482e9b758631361f823089165efc9135582ad3889e93331d8ed7e505709426e78374e67dfc597cc4aabc467221735c9a33069d4f45a19ff07eaeb9cb9b7d71cbb1caccb7fe30d8b55cb1ad6ba376bb4ee38f349c8bbc13dbd76b2a9befd3c88c149fa9a71f59c4cad313b599f7e3eb154ae1aeb3978889ebb2ce3489508925c6b4b4742b3276778526dfc0d6b10066dec48d2d823370f8b66adfe74a4d05a6d5c34d040432e837289c7dd0c87d14bfe593f2313fab6702f15429c883ae83404a5c473f5bf0eda150506a85b1d592e7a72025b68265ba940f6f4c45118f00048a6d0973de6f35ca250986cb4d330eef2868284c8e4ca688169aea716ec8903cec917cbcb541bd13fbf98c453458434000b3a7a0ef8b8ac21245f90b96ad23860eb896a20037cd9da8def8a03af4c07fbc7a0fae5f7ca531427164445e44407b6ba1492034cfaa885ceb92828056ad83748b7294a7246bce7ae44ed2007377a111aac117747eb6fcfccbf3dbfc5b1a83b3b667df01b0058d0c2062d540ca3f97c8b5cf14eeb7fe9b8d53c7be54d8c2fca15b659838cf687037c5ae9d2c1ade05cce6155e2d25a80a199048ec770e1ee0645935d5ee2d1a15e349e4b90aade581fd4eab67de96e77d964cd3a3650b8bfcba654fb339552e583ecb107ba73dbbcbc6bb5f4aa4d8e70a5cb6ec3bb8881d463c8c8fc681cadadb4e2176aab34f115b76855e95d9bf385b3a1b8059d796920def93f0e6ee92b1c976de31c076bf8f91eb0d3159d7e01a03ec385e0c725ef932da0502ca5da82121ee7ff815fd1e07f1b0573bf11ec45f9f7091d6078d14408fe99d0a0c353bb4c7f3ea8af292127f80dba326e81ad85a7b50bb7d55310d14bd093c8e49a617b1c47bd4a0f94c8081f207289ce5cb5b3cda27c866e506b426c9cacf431e5a8047ef1a2c1d8349d25a8ebe6c282d8679a81dcce9731a40a2c61cf94c1aa1d9d94973d184bae4cc5ad6ab04f3f2dcf547e1e4f8f6ff7ea0ee890accdefd6eff5720d32054815d03fe3142b16ee96ae5afccb37f0e8be72cb7949a8053e8d18e15c1ad753c9e3688ce3ee3197990940969f1f377cbf24f17c80f06ef78b69e3130c239bf63d404086ae6dc5a26d34ce7dc441229d153e39609a736c200c3b3cf92742963287d7f9b725383afe378d1399362463b653b35490bfd2059e8a3ba4dc54c662a5b1344c02d512d115649bf4de25fb0c1702fbf4ad55280447344167395aa7cb149c70402549313659fee8e8173b56a937474ebfe1cf03e7c16c6fc52709c7f4b9c0cc529473f927b13ff87de0518a4cabcbe9dd9f755df1a20f0cf41e23822f20bcb739dc843e7c7ba639f2090d6364fc550b73fd6de8a517cd3049cfac4fe056bdc3048d08651c09bf3dc16fde2ae26e802e635c6ead29e16f7122a4e2004892dabb7f1fabd518095b20607261feb3dce19153497be933c5f5f8eb1138fe54d5c750ced0d49fc559ad0853528ae58769317490f8467a141a9ea0ca2163482dd3a4d0b1151c57de2115b688ca6acd0e05f6435f7a8b890002faa0a9c046eb077b21fee846a5763b5b87e7d6976108681bab4faeb622b30c1123d38520fabc68ef330967eda774d8d75dd2bf69da986a51f563952fb976d28786a3c26a2a593ea8b8a71f9f60ea095a807e5c0b2100d11119399e979c7192f751024c392dd0c8f45af50b05988317241191ba7ac6d88de6f60fc80a2755d24460419a6e255521ae0ce9d47c1c8e5a2fe529e5fc9d4fcb66c40d2f47faa512113aa4e6c6edd0cda347b5cb88055a94eb6348d8bd26becfdfc47ec5ac817a6ad9b479bef40a9f16ff8a2d5600b32c3973f2c44c6a2f878dc4cdb25eb760806db42f9dfec55fbdebd07e01b4740d719002b04dfbc7ec9a381592169b2b5fc55c1caf2e97e5e44120d7e95ecf4268bd219a0c3b3749e07e67c69f127b6936146dc7c56afbe3bbfdfea55bebd55c24e8567a46f2504a611c5a7e2e6d6a01601495e41399cce7ac71caf228ee1abb67f3750a14993df98f8e10925c0d37de7266889395255ab1d283a68245663c73aa6e86f69346e0713439e8cbf04ea3602d9cca4c6578cb142291ed29573635113c5eaed02c4858d6c5cf8c68fdcbcba380044fc79faa51efc491088c3317a1a24021565109b88538513a7b998d245541e6f7fca4f85866fc3f56df8c96fd5a4aeafdf61113a782cb586e9b6b0afe2bc4e8594306a33c94f9b910dd4a87d240671d7c892cf2f10cddf0422c6cfee25e232237530073d3f2ddc8342d13d11136470177cfb83d0fa1f8e3981d01693ca74b2b9c821692f84c6f4734542f166ee24f08fb6d1acf18bd86c94266301aece41bd63802f51a1113b3928ff0ff4edf8386593e35ab9a9b6437b4ba77c0358868a64468f66faabe5a84e4960931914553dc55adc2107a6cbdbcb93a9f51d1f41d5f27b780aac91967db2e9d281cd4573b4ad50573271f24e2a5ac8de3e28cec65ee870ee53574efb3832f037745101c6a2c8e895ed046fbb672ef95a322c5d1ae3e13d319a85455f1b208192ed68e9829edc4fe1c0d35b2d32cd5cc3dd59c5e08829fbc425652ae15a820791da855de7a485243882830893831488476a258b6193a0d2f8dc4d1d9b7f9adbde57322c96b647db623b7484c90189b9713f29296bdb8c16b518331fb04ab98fa98a82fc03c5a77650f75dbdf627cf7d5f921e1752643d075b09db7cddd1c43b413e531cf60f18d673ab34215d8ff4ecba58216ea0be24cb65be4d931814978d492601f05cad063650202aae2073a024c5da9440cae8af1c374877b765078bab8e0fa3ca75042477d31c79c1a63c9f8881c578a3f599c5e6aea86c1ec0c8e16777f0cd0a7a8cce1fc19f9cfb1e842113f96d45247fbdc92171cf4f5a1ac88f69518e989014459ad9ac9adef34c626ebf1e51f2431f9578a8e4a818600c6f6bec2f6940bd16f44e04e8d6e9fab84db77ace21a732082fb4ca10a28d38178fdc35010aab9fa595a5c6381977c5611083329567398770a515c795b1b0faf48d06f7a23aaefede0a8b6b87d642bb3c65d1a3365a3a75b8425b3ba6bb3b170d81c8cd52080f421dd43bf5aa2a38ec4aacd5e702111c790f28328e068ae8635f2a0347cde76934d310c591b6e98f47a2a64e196d6fb9cc650f66ce67c95faf7514f6f567b7418275cb6865fde44a038fc19bb20e8fae720c2277a4a724bd8afcef558e8876a370dc5b2da941684222523c0488d38b594384ded34d76cc3b72935cdd81b712719a623518a54289761b25d66c295e6eadda6606b102e4593c65610f4c3140dba76607ccf5dfdb66aa669a57383a1a4838170bff753c583015d522eb3dfeff1f237de4d1184ab71502389f368926773d67b68386c2d760cd5ec6e081a2262ffe40cc165ce4f788791cde3dc1d9cac50c009f86f7f64f80fd012405be6d637dcbb8221a3d7693ce29b3ceaa220a0037778370d5cea734d1e737d46bd588b44e344da32f56f394b97b1fa174d8e38476e700c5105f378aa9f9f94f826c25e7a3f05bcd920c85b7c5b58745d74482468785dea3e6a2c2c37fc96127e5540cece051ac948114f8fb5fdb561b0af1cc0fd6a9e5542ef12683678efb6a36e9c95daed57ba5f09b15337da17a6bf64381a36c5b534c7301514ffdca30db12b181fa29023912ee9a8e942f5e2ad291f087ddf6b97f9cffcdb3a47847757b2f7bcea03ae752a293da1f46cbf53b3469540f375c3443933badf29a19f67f1d011eafdab51fcd7c0c2e607f723fc0ab394f40b078124160619ef5d9afa0e9193da9ae093405b91793c4fcdf266ae7b961cd393b9524fdc051df0787364b61db5e76571b1ad31729168b94ef5e59bc98e4ff181e2b87cbce58451e99567a76143e7bd095cf25e5dedfabbabf50fca525a5541f6c41de66141ffd482c7300dc84d79011e45e96c7ec7822a86ceda8b5abd4bb4b0efdfcdabbccb3a30f86383ea5451e3999f74feeb864e492dd6cf6d6ae10850336bd6891d0b557698cfccd50ff70ed48e95aadddc907eb774f2437cdb09cae638089d7743545663f25b8ecd927b1e78f0054aa2a5bf82d76f50cca79c7b73404923b842ad781672796130777ce9146e5b659dddea5d8445345139011a4f37d47fe4952ea3382cd3144c8ae9521ba8580919c1f88492d576ed1405a07737075e3c8416c1cc5171901551f3c401aa4afbc284ac892d2916a19beac4873f101d7acde487299aabfd962f5bcbd20ad2a9725480c7c53d21b4d3ca7126348b3d618469591cfc56cd6c5fb3bac5210bae412c79d27f9f080418681065626df86a6d1a0495bd217adbb2f677a54158d21815d7f99433ba00a02b0586c7aa5e9a38e38a2b070f8050f07ac6f3cc75636591a367ca727192633ed3b1f3f32741328340333d07f2941c46bcaaee718955fa304a98b43e2367bf55a4e618ef11ef7e4198df765ba3a0e594d1eb0ee840834a0b17081a367a73a1b72969a95479d637e1212ea4201ad1a51b73984410f447b2456757770f07275d8ce01515092f38127223263875b1bbc8816d10be728b5c536ef4f161eafa40eb09f366fcd5a4a70b96ea3e7086c8e6bde8083f433b52b65851fa1b261ee15fe95c91058d5257d5869fc6b57ad6a4ddcb5711126ec47fb8c865d84117aab4ad76931d3a511a6940b82782d4e6cb225ca425f591db741b7f22e0d0dfcbb2c730b2e29401eb5d410be6220997b9b110efa084f2159aed6e0ba181f5ece61d666d6d4aac25bb0396c8bebbd29a2be758d3d3621256782301f08eac855e782773715c9f704379c9fce31246e4fa88930bcf238b90d4de7c73fb44d025317eea598e2633ddfec2dd55aa64535b4b74f1c0987ef72dc139762988cd46b6b0c44ffef76223d3e78b878dd0517d2ba05f14874b7cb3f0d371a3d6c1b331eb142b8318567a4b59dd608a1928d7c6ae3d151a2da8b8017b6cc82c4c21901f0446a30e64b343412d3d917c3d6c0590257a00bc4d8598152fa552183caaf02ff8cfcf3cce2970a1cdff267365f6f0cfc315c62e6c81ffe723328c44df6aeb0322455992554f85bbc6907ba0fc5b90405b9dc453db61dbb078c45cb72f4bdd90955e1880774e115458bc86c122f94803055e46021abc3bdaa960df8024a177ffe84b6dab8760d7ecca23bbdb90fa5afcc689f43649ed4c0f95e8e8bb21cffb281edd8ebc4e0b6f4f90179c88da0e33275a50398e6ba97fa0f9d1cb3841bb3c08ba26bde68324d752a821b561b75c0c0e79f3b7b7e31a3d1fcec15814dd88009b16dfde837b47a1219a09c3829355034b11616fcf23fdeb", 0x1000}], 0x2, &(0x7f0000000040)=[@dontfrag={{0x14, 0x29, 0x3e, 0x80000000}}], 0x18}}], 0x4, 0x0) 10:14:44 executing program 4: r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000040), 0x2, 0x0) write$binfmt_aout(r0, &(0x7f0000000640), 0x20) read(r0, &(0x7f0000000100)=""/146, 0x92) r1 = fork() sendmsg$nl_generic(0xffffffffffffffff, &(0x7f0000000800)={&(0x7f0000000140)={0x10, 0x0, 0x0, 0x20000000}, 0xc, &(0x7f0000000740)={&(0x7f0000000180)={0x24, 0x2d, 0x20, 0x70bd2b, 0x20, {0xb}, [@typed={0x8, 0x33, 0x0, 0x0, @fd=r0}, @typed={0x8, 0x18, 0x0, 0x0, @pid=r1}, @generic]}, 0x24}, 0x1, 0x0, 0x0, 0x80}, 0x11) ioctl$TCSETA(r0, 0x5406, &(0x7f0000000840)={0x0, 0x400, 0x4, 0x0, 0xb, "790ef9308291c936"}) r2 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0xb80, 0x104) lstat(&(0x7f0000000040)='./file1\x00', &(0x7f0000000780)) write$P9_RREADLINK(r2, &(0x7f00000003c0)=ANY=[], 0x10) unlink(&(0x7f00000000c0)='./file1\x00') pipe(&(0x7f0000000080)={0xffffffffffffffff}) execveat(r3, &(0x7f00000001c0)='./file1\x00', &(0x7f0000000400)=[&(0x7f0000000200)='/\x00', &(0x7f0000000240)='!],\x00', &(0x7f0000000280)='#\x00', &(0x7f00000002c0)='&^\x00', &(0x7f0000000300)='\\^\x00', &(0x7f0000000340)='(,!#/}$!%\x00', &(0x7f0000000380)='\x86\x00', &(0x7f00000003c0)='+\x00'], &(0x7f00000006c0)=[&(0x7f0000000440)='\x00', &(0x7f0000000480)='{\x00', &(0x7f00000004c0)='{\x00', &(0x7f0000000500)='[\x00', &(0x7f0000000540)='\x00', &(0x7f0000000580)='\x00', &(0x7f00000005c0)=':^}}\x00', &(0x7f0000000600)='\x00', &(0x7f0000000640)='\\)/(![,\x00', &(0x7f0000000680)='}&$-#\x00'], 0x0) openat(r2, &(0x7f0000000000)='./file1\x00', 0x4e2800, 0x2) ftruncate(r2, 0x0) 10:14:44 executing program 3: prctl$PR_GET_FP_MODE(0x2e) r0 = fork() r1 = pidfd_open(r0, 0x0) prctl$PR_GET_FP_MODE(0x2e) prctl$PR_GET_FP_MODE(0x2e) r2 = dup(r1) stat(&(0x7f0000001cc0)='.\x00', &(0x7f0000001c00)={0x0, 0x0, 0x0, 0x0, 0x0}) prctl$PR_GET_FP_MODE(0x2e) setresuid(0xffffffffffffffff, r3, 0x0) prctl$PR_GET_FP_MODE(0x2e) stat(&(0x7f0000001cc0)='.\x00', &(0x7f0000001c00)={0x0, 0x0, 0x0, 0x0, 0x0}) setresuid(0xffffffffffffffff, r4, 0x0) setresuid(r4, r3, r3) setns(r2, 0x28020080) 10:14:44 executing program 1: r0 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x46e2, 0x0) r1 = dup2(r0, 0xffffffffffffffff) r2 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000040), 0x2, 0x0) mount$9p_fd(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f00000000c0), 0x2000000, &(0x7f00000004c0)={'trans=fd,', {'rfdno', 0x3d, r1}, 0x2c, {'wfdno', 0x3d, r2}, 0x2c, {[{@debug}, {@debug={'debug', 0x3d, 0x10001}}, {@version_u}], [{@hash}, {@euid_gt}, {@fsmagic={'fsmagic', 0x3d, 0xfffffffffffffffc}}, {@euid_eq={'euid', 0x3d, 0xffffffffffffffff}}]}}) 10:14:44 executing program 5: r0 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x46e2, 0x0) r1 = dup2(r0, 0xffffffffffffffff) r2 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000040), 0x2, 0x0) mount$9p_fd(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f00000000c0), 0x2000000, &(0x7f00000004c0)={'trans=fd,', {'rfdno', 0x3d, r1}, 0x2c, {'wfdno', 0x3d, r2}, 0x2c, {[{@debug}, {@debug={'debug', 0x3d, 0x10001}}, {@version_u}], [{@hash}, {@euid_gt}, {@fsmagic={'fsmagic', 0x3d, 0xfffffffffffffffc}}, {@euid_eq={'euid', 0x3d, 0xffffffffffffffff}}]}}) [ 374.881010] 9pnet: Insufficient options for proto=fd 10:14:44 executing program 7: r0 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x46e2, 0x0) creat(&(0x7f0000000000)='./file0\x00', 0xb3868b9d8f37b772) ioctl$FS_IOC_FSSETXATTR(r0, 0x40086602, &(0x7f0000000080)={0x2000010}) ioctl$FS_IOC_FSSETXATTR(r0, 0x401c5820, &(0x7f0000000140)={0x8}) 10:14:44 executing program 6: seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f0000000140)={0x1, &(0x7f0000000040)=[{0x6, 0x0, 0x0, 0x7ffffff7}]}) r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000040), 0x2, 0x0) write$binfmt_aout(r0, &(0x7f0000000640), 0x20) read(r0, &(0x7f0000000100)=""/146, 0x92) fstat(r0, &(0x7f0000000180)) lsetxattr$trusted_overlay_nlink(&(0x7f00000000c0)='./cgroup/cgroup.procs/file0\x00', &(0x7f0000000080), 0x0, 0x3a, 0x1) 10:14:44 executing program 0: ioctl$sock_SIOCGIFINDEX_802154(0xffffffffffffffff, 0x8933, &(0x7f0000000240)={'wpan3\x00'}) r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$nl802154(&(0x7f00000006c0), r0) sendmsg$NL802154_CMD_SET_CCA_MODE(0xffffffffffffffff, &(0x7f0000000780)={&(0x7f0000000680), 0xc, &(0x7f0000000740)={&(0x7f0000000380)=ANY=[@ANYBLOB="1c000000", @ANYRES16=r1, @ANYBLOB="080028bd7000fddbdf250d00000008000300", @ANYRES32=0x0, @ANYBLOB="9f7e20717095eb042acb8f"], 0x1c}}, 0x10) ioctl$sock_SIOCGIFINDEX_802154(0xffffffffffffffff, 0x8933, &(0x7f00000000c0)={'wpan1\x00', 0x0}) sendmsg$NL802154_CMD_DEL_SEC_KEY(0xffffffffffffffff, &(0x7f0000000280)={&(0x7f0000000080)={0x10, 0x0, 0x0, 0x200000}, 0xc, &(0x7f0000000240)={&(0x7f0000000100)=ANY=[@ANYBLOB="c0000000", @ANYRES16=r1, @ANYBLOB="00012dbd7000fddbdf251800000008000300", @ANYRES32=0x0, @ANYBLOB="9000258014000400d9b35a16820057e3a054740e780aa98305000200800000000c000180050002000300004005000200d800000024000300059eedfcd6ac1a5c32f321393811f4e1c785b6a99ccf533c75d5e7138b7666f514000400e3ba46a2a1a1d11b36a4103d57ab947624000300e14b29ee2dbf5c0c40c4f2e8ac7575bb88d698a7e70747e70816c7503a80cf3008000300", @ANYRES32=r2, @ANYBLOB], 0xc0}, 0x1, 0x0, 0x0, 0x48045}, 0x20000883) r3 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) sendmsg$NL802154_CMD_SET_CHANNEL(r3, &(0x7f00000001c0)={&(0x7f0000000100), 0xc, &(0x7f0000000180)={&(0x7f0000000140)={0x14, 0x0, 0x4}, 0x14}, 0x1, 0x0, 0x0, 0x40000}, 0x0) ioctl$sock_SIOCGIFINDEX_802154(r3, 0x8933, &(0x7f0000000240)={'wpan3\x00'}) syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) r4 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x46e2, 0x0) r5 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffd000/0x3000)=nil, 0x3000, 0x0, 0x13, r4, 0x0) syz_io_uring_setup(0x4b9f, &(0x7f0000000140), &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000ffd000/0x3000)=nil, &(0x7f00000000c0), &(0x7f00000001c0)=0x0) syz_io_uring_submit(r5, r6, &(0x7f0000000240)=@IORING_OP_FADVISE={0x18, 0x0, 0x0, @fd, 0x2}, 0x0) sigaltstack(&(0x7f0000ffd000/0x1000)=nil, 0x0) [ 374.947706] 9pnet: Insufficient options for proto=fd 10:14:57 executing program 3: r0 = inotify_init1(0x0) inotify_add_watch(r0, &(0x7f0000000040)='.\x00', 0x2000003) setxattr$security_ima(&(0x7f0000000180)='./file1\x00', &(0x7f00000000c0), &(0x7f0000000140)=@v1={0x2, 't?'}, 0x3, 0x0) r1 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x105142, 0x0) r2 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0) copy_file_range(r2, 0x0, r1, 0x0, 0x200f5ef, 0x0) 10:14:57 executing program 0: ioctl$sock_SIOCGIFINDEX_802154(0xffffffffffffffff, 0x8933, &(0x7f0000000240)={'wpan3\x00'}) r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$nl802154(&(0x7f00000006c0), r0) sendmsg$NL802154_CMD_SET_CCA_MODE(0xffffffffffffffff, &(0x7f0000000780)={&(0x7f0000000680), 0xc, &(0x7f0000000740)={&(0x7f0000000380)=ANY=[@ANYBLOB="1c000000", @ANYRES16=r1, @ANYBLOB="080028bd7000fddbdf250d00000008000300", @ANYRES32=0x0, @ANYBLOB="9f7e20717095eb042acb8f"], 0x1c}}, 0x10) ioctl$sock_SIOCGIFINDEX_802154(0xffffffffffffffff, 0x8933, &(0x7f00000000c0)={'wpan1\x00', 0x0}) sendmsg$NL802154_CMD_DEL_SEC_KEY(0xffffffffffffffff, &(0x7f0000000280)={&(0x7f0000000080)={0x10, 0x0, 0x0, 0x200000}, 0xc, &(0x7f0000000240)={&(0x7f0000000100)=ANY=[@ANYBLOB="c0000000", @ANYRES16=r1, @ANYBLOB="00012dbd7000fddbdf251800000008000300", @ANYRES32=0x0, @ANYBLOB="9000258014000400d9b35a16820057e3a054740e780aa98305000200800000000c000180050002000300004005000200d800000024000300059eedfcd6ac1a5c32f321393811f4e1c785b6a99ccf533c75d5e7138b7666f514000400e3ba46a2a1a1d11b36a4103d57ab947624000300e14b29ee2dbf5c0c40c4f2e8ac7575bb88d698a7e70747e70816c7503a80cf3008000300", @ANYRES32=r2, @ANYBLOB], 0xc0}, 0x1, 0x0, 0x0, 0x48045}, 0x20000883) r3 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) sendmsg$NL802154_CMD_SET_CHANNEL(r3, &(0x7f00000001c0)={&(0x7f0000000100), 0xc, &(0x7f0000000180)={&(0x7f0000000140)={0x14, 0x0, 0x4}, 0x14}, 0x1, 0x0, 0x0, 0x40000}, 0x0) ioctl$sock_SIOCGIFINDEX_802154(r3, 0x8933, &(0x7f0000000240)={'wpan3\x00'}) r4 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x46e2, 0x0) r5 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffd000/0x3000)=nil, 0x3000, 0x0, 0x13, r4, 0x0) syz_io_uring_setup(0x4b9f, &(0x7f0000000140), &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000ffd000/0x3000)=nil, &(0x7f00000000c0), &(0x7f00000001c0)=0x0) syz_io_uring_submit(r5, r6, &(0x7f0000000240)=@IORING_OP_FADVISE={0x18, 0x0, 0x0, @fd, 0x2}, 0x0) sigaltstack(&(0x7f0000ffd000/0x1000)=nil, 0x0) 10:14:57 executing program 5: r0 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x46e2, 0x0) r1 = dup2(r0, r0) r2 = openat$ptmx(0xffffffffffffff9c, 0x0, 0x2, 0x0) mount$9p_fd(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f00000000c0), 0x2000000, &(0x7f00000004c0)={'trans=fd,', {'rfdno', 0x3d, r1}, 0x2c, {'wfdno', 0x3d, r2}, 0x2c, {[{@debug}, {@debug={'debug', 0x3d, 0x10001}}, {@version_u}], [{@hash}, {@euid_gt}, {@fsmagic={'fsmagic', 0x3d, 0xfffffffffffffffc}}, {@euid_eq={'euid', 0x3d, 0xffffffffffffffff}}]}}) 10:14:57 executing program 2: syz_mount_image$ext4(&(0x7f0000000040)='ext3\x00', &(0x7f0000000100)='./file0\x00', 0x40000, 0x4, &(0x7f0000000340)=[{&(0x7f0000010000)="2000000080000000060000006a0000000f00001e00000001000000004000000040000020000000e0f4655fe0f4655f01008754cdda56ffff53ee010001000000dff4655f000000000000000001000000000000000b", 0x55, 0x400}, {&(0x7f0000010400)="0200000003000000040000006a000f", 0xf, 0x800}, {&(0x7f0000010500)="ffff3f00000000000000000000000000ffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffff", 0x802, 0x1000}, {&(0x7f0000011600)="ed4100000000000000007f5fe0f4655fe0f4655f000000000000040004", 0x1d, 0x2100}], 0x402, &(0x7f0000012c00)=ANY=[]) chdir(&(0x7f0000000040)='./file0\x00') r0 = creat(&(0x7f0000000080)='./file0\x00', 0x0) openat(0xffffffffffffffff, &(0x7f0000000000)='./file0\x00', 0x8202, 0x99) pwrite64(r0, &(0x7f0000000300)="af", 0xfffffeb2, 0x21) 10:14:57 executing program 1: r0 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x46e2, 0x0) r1 = dup2(r0, 0xffffffffffffffff) r2 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000040), 0x2, 0x0) mount$9p_fd(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f00000000c0), 0x2000000, &(0x7f00000004c0)={'trans=fd,', {'rfdno', 0x3d, r1}, 0x2c, {'wfdno', 0x3d, r2}, 0x2c, {[{@debug}, {@debug={'debug', 0x3d, 0x10001}}, {@version_u}], [{@hash}, {@euid_gt}, {@fsmagic={'fsmagic', 0x3d, 0xfffffffffffffffc}}, {@euid_eq={'euid', 0x3d, 0xffffffffffffffff}}]}}) 10:14:57 executing program 4: r0 = socket$inet6_udp(0xa, 0x2, 0x0) sendmmsg$inet6(r0, &(0x7f0000001c80)=[{{&(0x7f0000001480)={0xa, 0x4e20, 0x0, @private0}, 0x1c, 0x0, 0x0, &(0x7f00000019c0)=ANY=[], 0x18}}], 0x1, 0x0) sendmsg$inet6(r0, &(0x7f0000000680)={&(0x7f0000000000)={0xa, 0x4e20, 0xa0, @private2={0xfc, 0x2, '\x00', 0x1}, 0xfd}, 0x1c, &(0x7f0000000600)=[{&(0x7f0000000040)="a8af546034478b979751f593be5ab062ea06a9cf8eb82866f9841ffc2e909382426ccfcd64750c5418d7b69b094690b9da001334ac39836d898b983803c60969e0ce0764dad1b20f509cd096bf6401165811efe52d76", 0x56}, {&(0x7f00000000c0)="f56071d1b47b47faee3dd139faeb438b181962ecca0b98da0ff087524a7500626c00310216fc9326f99ef4b7d6db3639b81ba83ee557d657b7de53532eab9ffb06c6c15350c7a72939aa0bb24afe82e483d142cb67c237f98cadd7f11b572227ca1690553a208f8dda189da26bb9b6c610c1c3bd355b552470b23b8d1f4a8e335639d9fdabce06e4b818ae6c16a0c756b9948ebdd4ca8853d1dec7f2", 0x9c}, {&(0x7f0000000180)="9ee64630ecc6e66944e3a9f379665f814498b2e327feca3ab7bbb4c8b4e3190f727d53322221c07d32111fe887b605ab9efd255eccd3ddefc54f82bd7f836369c68b2eca1b01ac3c4794029618f26588ff79af5774324443a43126e01ee10e97e4ad085da6696ed080", 0x69}, {&(0x7f0000000200)="e22d4e875f4f59c3d76deb580e6ddb104640a8fd0e2d2d6eff9d8ecdee03f60eb08049387fc46cbc4ba9b6f267e67404e73b841493b3797d3303d1349084cf8c5bdf1ad3a0de4c58a5252e03c469b06234b4cbc17d6e837f90e28adacdf505f6df5c1c43acbb472d3e1df14fc17a330cde86b2e803ccd01274893b702954def95ca92ce0e694847b50090647bda67f28e348a5791814586cc21c8fd162329fc0f377d00a314a589a9a1dc2b292197f1fb2409dfb92e32b698d87a3f3c2458092a92ef21240f50f1d685248861b70077f9cd19d90a533c9567e8512345b627a4f18fba4846cb193c64cc5923d", 0xec}, {&(0x7f0000000300)="9be73d34bf8fef70e6d17a89edf2f8915a27a979a5e9d940c7b857cc58d629eea5a40b93480c7f4c88546bf02dc4de3b3f865394c1d4c5c936b58f5668cd0237a24734edd3c317fc7082551297c16e4b4fd59a4ad4b1634939e2341a29467f6afd038d6ab6c901501e0d216c28f2013be95d1ff857d996d06f499c7b65eabd7c5840545d7fb0acec4a433ab117495f6eebe2babdeca01f750ef7cb60922807a83228074828e7ac56d8cb17b0308168b23172e2ca89fdea5623d38453895e100990dc4b99f8d448db", 0xc8}, {&(0x7f0000000400)="ac4f8caab7218b6cf7630b53a6e99ee9dcc86474810eb2f4bd266979ce0cc836582c3f341f74953c99f3493ac2862b480e65063a2a6c2fd965426ab3e1808d322fd7201a0f420247bf785742d397e49cb440a9a6c0463e40b8eb233d0c63e978d4fe6af612755caab7324632dd185b325ab67c479cbac3e9bc5a4c028fe43762cb9efcd0995094adbded4d736e71a3c798b7c8e74e6931e3322f82b9c0efa251049a475d6b4d2a5215ca0622c5278cf87a7b96ce12822a051d07", 0xba}, {&(0x7f00000004c0)="d00cd76969", 0x5}, {&(0x7f0000000500)="2dd88a8cdc431d6838f4f92d18fdbe63562666cf509f1a9da812c800f016f894031142dae9073305fcfdf91b749932cbe7e63ea348f88169e7055d5f217e6406e8edf88f45b31c7519cbc6096ecac0b795a83e55fa2fdb651a72da5a061c426dddb7ded4a3bbeef51f16cf7e16d3be5c03bc3bb6b108a2a684a2ba1a7097a5fb1ee4ffe3978dc34d7b9d50e4c1f0a03ac1829f42515b83ab611e888f778629396a743153f8e0325b74b531fff06f7275af47f93b5d650f895b9d6e66b619f796b4b6676d290be0c9dcaaca", 0xcb}], 0x8}, 0x80) 10:14:57 executing program 7: pread64(0xffffffffffffffff, 0x0, 0x0, 0x0) unshare(0x60040000) fcntl$setpipe(0xffffffffffffffff, 0x407, 0x2) r0 = socket$inet(0x2, 0x1, 0x0) ioctl$sock_inet_SIOCADDRT(r0, 0x890b, &(0x7f00000000c0)={0x0, {0x2, 0x4e23, @broadcast}, {0x2, 0x0, @empty}, {0x2, 0x0, @rand_addr=0x40000}, 0xe4, 0x0, 0x0, 0x0, 0x14, 0x0, 0x0, 0xb1c3}) 10:14:57 executing program 6: openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x42, 0x1ff) ioctl$BTRFS_IOC_LOGICAL_INO(0xffffffffffffffff, 0xc0389424, 0x0) r0 = creat(&(0x7f0000000080)='./file1\x00', 0x0) pwrite64(r0, &(0x7f0000000300)="af", 0xfffffeb2, 0x0) clone3(&(0x7f00000008c0)={0x1040100, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) socket$netlink(0x10, 0x3, 0x0) execveat(0xffffffffffffff9c, &(0x7f0000000000)='./file1\x00', 0x0, 0x0, 0x0) creat(&(0x7f0000000040)='./file1\x00', 0x0) r1 = inotify_init1(0x40800) ioctl$FS_IOC_GETFLAGS(r1, 0x80086601, &(0x7f00000000c0)) [ 387.746778] 9pnet: Insufficient options for proto=fd [ 387.765110] 9pnet: Insufficient options for proto=fd 10:14:57 executing program 4: ioctl$TCSETSF2(0xffffffffffffffff, 0x402c542d, &(0x7f0000000000)={0x0, 0x0, 0x0, 0x0, 0x6, "779b1e7567d62f09a2d166d436fc9990c772b9"}) r0 = openat$tun(0xffffffffffffff9c, &(0x7f0000000700), 0x0, 0x0) ioctl$TCSETAW(0xffffffffffffffff, 0x5407, &(0x7f0000000040)={0x1f, 0x8, 0x3, 0x7, 0xe, "3dba5f6340376ba0"}) ioctl$TUNSETQUEUE(r0, 0x400454ca, &(0x7f0000000000)={'veth0_vlan\x00'}) r1 = openat$tun(0xffffffffffffff9c, &(0x7f0000000140), 0x0, 0x0) r2 = socket$netlink(0x10, 0x3, 0x0) r3 = fcntl$dupfd(r2, 0x0, r2) getsockopt$netlink(r3, 0x10e, 0x0, 0x0, 0xfffffffffffffffe) ioctl$TUNSETQUEUE(r3, 0x400454d9, &(0x7f0000000080)={'wlan0\x00'}) ioctl$TUNSETGROUP(r0, 0x400454ce, 0xee01) ioctl$TUNSETQUEUE(r1, 0x400454ca, &(0x7f0000000000)={'veth0_vlan\x00'}) 10:14:57 executing program 1: r0 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x46e2, 0x0) r1 = dup2(r0, r0) r2 = openat$ptmx(0xffffffffffffff9c, 0x0, 0x2, 0x0) mount$9p_fd(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f00000000c0), 0x2000000, &(0x7f00000004c0)={'trans=fd,', {'rfdno', 0x3d, r1}, 0x2c, {'wfdno', 0x3d, r2}, 0x2c, {[{@debug}, {@debug={'debug', 0x3d, 0x10001}}, {@version_u}], [{@hash}, {@euid_gt}, {@fsmagic={'fsmagic', 0x3d, 0xfffffffffffffffc}}, {@euid_eq={'euid', 0x3d, 0xffffffffffffffff}}]}}) 10:14:57 executing program 5: r0 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x46e2, 0x0) r1 = dup2(r0, r0) r2 = openat$ptmx(0xffffffffffffff9c, 0x0, 0x2, 0x0) mount$9p_fd(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f00000000c0), 0x2000000, &(0x7f00000004c0)={'trans=fd,', {'rfdno', 0x3d, r1}, 0x2c, {'wfdno', 0x3d, r2}, 0x2c, {[{@debug}, {@debug={'debug', 0x3d, 0x10001}}, {@version_u}], [{@hash}, {@euid_gt}, {@fsmagic={'fsmagic', 0x3d, 0xfffffffffffffffc}}, {@euid_eq={'euid', 0x3d, 0xffffffffffffffff}}]}}) [ 388.003557] 9pnet: Insufficient options for proto=fd [ 388.012736] 9pnet: Insufficient options for proto=fd 10:14:57 executing program 7: r0 = openat$snapshot(0xffffffffffffff9c, &(0x7f0000000280), 0x1, 0x0) writev(r0, &(0x7f0000000180)=[{&(0x7f0000000000)="73283c34c4315d63c60515aece884993efc502ebec9bc8bee08a8fa5932db3c6c6a81afb5fdf6980dce92904de2cd109262fbaf5f64a8210898e156a64b351f0a326f22f0dc46df93cb2e02f2a67b1ce40c1bd605776b6f570a6754ef68853f9d7c09232d5fe85e25a48783006be43b25a9ec0a732b8ec8c4acb811c56a943ecb3421577b2e0f3809d920a80a11d5ad40a6092203b3f993ba24ed0837595", 0x9e}, {&(0x7f00000000c0)="d8c93be2ff448b7f8796c4eda1c0b4d38b312c523d73c4c7568869437dc902a757b738049819493a59c49450dc8d5dd0a6498a739fe4c8b2b04e16a90c7681a4395dd3502893f5aba9c654611177285ddcdadc2e2c54519cf8fb4a74252a00b7aeac91ad7ae6b1704d7220584511327843820bbec7a2a0389bf7f698f368fb7e4bd7b0c0635582f9", 0x88}], 0x2) openat$vcsa(0xffffffffffffff9c, &(0x7f00000001c0), 0x80, 0x0) 10:14:57 executing program 0: ioctl$sock_SIOCGIFINDEX_802154(0xffffffffffffffff, 0x8933, &(0x7f0000000240)={'wpan3\x00'}) r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$nl802154(&(0x7f00000006c0), r0) sendmsg$NL802154_CMD_SET_CCA_MODE(0xffffffffffffffff, &(0x7f0000000780)={&(0x7f0000000680), 0xc, &(0x7f0000000740)={&(0x7f0000000380)=ANY=[@ANYBLOB="1c000000", @ANYRES16=r1, @ANYBLOB="080028bd7000fddbdf250d00000008000300", @ANYRES32=0x0, @ANYBLOB="9f7e20717095eb042acb8f"], 0x1c}}, 0x10) ioctl$sock_SIOCGIFINDEX_802154(0xffffffffffffffff, 0x8933, &(0x7f00000000c0)={'wpan1\x00', 0x0}) sendmsg$NL802154_CMD_DEL_SEC_KEY(0xffffffffffffffff, &(0x7f0000000280)={&(0x7f0000000080)={0x10, 0x0, 0x0, 0x200000}, 0xc, &(0x7f0000000240)={&(0x7f0000000100)=ANY=[@ANYBLOB="c0000000", @ANYRES16=r1, @ANYBLOB="00012dbd7000fddbdf251800000008000300", @ANYRES32=0x0, @ANYBLOB="9000258014000400d9b35a16820057e3a054740e780aa98305000200800000000c000180050002000300004005000200d800000024000300059eedfcd6ac1a5c32f321393811f4e1c785b6a99ccf533c75d5e7138b7666f514000400e3ba46a2a1a1d11b36a4103d57ab947624000300e14b29ee2dbf5c0c40c4f2e8ac7575bb88d698a7e70747e70816c7503a80cf3008000300", @ANYRES32=r2, @ANYBLOB], 0xc0}, 0x1, 0x0, 0x0, 0x48045}, 0x20000883) r3 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) sendmsg$NL802154_CMD_SET_CHANNEL(r3, &(0x7f00000001c0)={&(0x7f0000000100), 0xc, &(0x7f0000000180)={&(0x7f0000000140)={0x14, 0x0, 0x4}, 0x14}, 0x1, 0x0, 0x0, 0x40000}, 0x0) r4 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x46e2, 0x0) r5 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffd000/0x3000)=nil, 0x3000, 0x0, 0x13, r4, 0x0) syz_io_uring_setup(0x4b9f, &(0x7f0000000140), &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000ffd000/0x3000)=nil, &(0x7f00000000c0), &(0x7f00000001c0)=0x0) syz_io_uring_submit(r5, r6, &(0x7f0000000240)=@IORING_OP_FADVISE={0x18, 0x0, 0x0, @fd, 0x2}, 0x0) sigaltstack(&(0x7f0000ffd000/0x1000)=nil, 0x0) 10:14:57 executing program 3: r0 = inotify_init1(0x0) inotify_add_watch(r0, &(0x7f0000000040)='.\x00', 0x2000003) setxattr$security_ima(&(0x7f0000000180)='./file1\x00', &(0x7f00000000c0), &(0x7f0000000140)=@v1={0x2, 't?'}, 0x3, 0x0) r1 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x105142, 0x0) r2 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0) copy_file_range(r2, 0x0, r1, 0x0, 0x200f5ef, 0x0) 10:14:57 executing program 1: r0 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x46e2, 0x0) r1 = dup2(r0, r0) r2 = openat$ptmx(0xffffffffffffff9c, 0x0, 0x2, 0x0) mount$9p_fd(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f00000000c0), 0x2000000, &(0x7f00000004c0)={'trans=fd,', {'rfdno', 0x3d, r1}, 0x2c, {'wfdno', 0x3d, r2}, 0x2c, {[{@debug}, {@debug={'debug', 0x3d, 0x10001}}, {@version_u}], [{@hash}, {@euid_gt}, {@fsmagic={'fsmagic', 0x3d, 0xfffffffffffffffc}}, {@euid_eq={'euid', 0x3d, 0xffffffffffffffff}}]}}) 10:14:57 executing program 4: ioctl$TCSETSF2(0xffffffffffffffff, 0x402c542d, &(0x7f0000000000)={0x0, 0x0, 0x0, 0x0, 0x6, "779b1e7567d62f09a2d166d436fc9990c772b9"}) r0 = openat$tun(0xffffffffffffff9c, &(0x7f0000000700), 0x0, 0x0) ioctl$TCSETAW(0xffffffffffffffff, 0x5407, &(0x7f0000000040)={0x1f, 0x8, 0x3, 0x7, 0xe, "3dba5f6340376ba0"}) ioctl$TUNSETQUEUE(r0, 0x400454ca, &(0x7f0000000000)={'veth0_vlan\x00'}) r1 = openat$tun(0xffffffffffffff9c, &(0x7f0000000140), 0x0, 0x0) r2 = socket$netlink(0x10, 0x3, 0x0) r3 = fcntl$dupfd(r2, 0x0, r2) getsockopt$netlink(r3, 0x10e, 0x0, 0x0, 0xfffffffffffffffe) ioctl$TUNSETQUEUE(r3, 0x400454d9, &(0x7f0000000080)={'wlan0\x00'}) ioctl$TUNSETGROUP(r0, 0x400454ce, 0xee01) ioctl$TUNSETQUEUE(r1, 0x400454ca, &(0x7f0000000000)={'veth0_vlan\x00'}) [ 388.204991] 9pnet: Insufficient options for proto=fd 10:15:09 executing program 6: seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f0000000080)) socket$inet6_udplite(0xa, 0x2, 0x88) 10:15:09 executing program 2: r0 = syz_open_dev$sg(&(0x7f0000000400), 0x0, 0x0) ioctl$SCSI_IOCTL_SEND_COMMAND(r0, 0x1, &(0x7f0000000440)={0x0, 0x0, 0xffffffa2}) r1 = socket$netlink(0x10, 0x3, 0x0) r2 = fcntl$dupfd(r1, 0x0, r1) getsockopt$netlink(r2, 0x10e, 0x0, 0x0, 0xfffffffffffffffe) read$usbmon(r2, &(0x7f0000000000)=""/60, 0x3c) 10:15:09 executing program 5: r0 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x46e2, 0x0) r1 = dup2(r0, r0) r2 = openat$ptmx(0xffffffffffffff9c, 0x0, 0x2, 0x0) mount$9p_fd(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f00000000c0), 0x2000000, &(0x7f00000004c0)={'trans=fd,', {'rfdno', 0x3d, r1}, 0x2c, {'wfdno', 0x3d, r2}, 0x2c, {[{@debug}, {@debug={'debug', 0x3d, 0x10001}}, {@version_u}], [{@hash}, {@euid_gt}, {@fsmagic={'fsmagic', 0x3d, 0xfffffffffffffffc}}, {@euid_eq={'euid', 0x3d, 0xffffffffffffffff}}]}}) 10:15:09 executing program 1: r0 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x46e2, 0x0) r1 = dup2(r0, r0) r2 = openat$ptmx(0xffffffffffffff9c, 0x0, 0x2, 0x0) mount$9p_fd(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f00000000c0), 0x2000000, &(0x7f00000004c0)={'trans=fd,', {'rfdno', 0x3d, r1}, 0x2c, {'wfdno', 0x3d, r2}, 0x2c, {[{@debug}, {@debug={'debug', 0x3d, 0x10001}}, {@version_u}], [{@hash}, {@euid_gt}, {@fsmagic={'fsmagic', 0x3d, 0xfffffffffffffffc}}, {@euid_eq={'euid', 0x3d, 0xffffffffffffffff}}]}}) 10:15:09 executing program 7: r0 = syz_mount_image$vfat(&(0x7f0000000000), &(0x7f0000000100)='./file0\x00', 0xfffffffffffffffd, 0x1, &(0x7f0000000080)=[{&(0x7f0000010000)="601c6d6b646f736606ecb500080801000440040000f801", 0x17}], 0x0, &(0x7f00000000c0)={[{@uni_xlate}]}) r1 = syz_open_procfs(0xffffffffffffffff, &(0x7f00000030c0)='mountinfo\x00') r2 = fork() ioprio_get$pid(0x1, r2) tkill(r2, 0x7) waitid(0x1, r2, 0x0, 0x4, 0x0) r3 = openat$hwrng(0xffffffffffffff9c, 0x0, 0x400000, 0x0) sendmsg$DEVLINK_CMD_SB_TC_POOL_BIND_GET(r3, 0x0, 0x0) sendmsg$NL80211_CMD_CONTROL_PORT_FRAME(r1, &(0x7f00000005c0)={&(0x7f0000000500)={0x10, 0x0, 0x0, 0x400000}, 0xc, &(0x7f0000000580)={&(0x7f00000002c0)=ANY=[@ANYBLOB="3f7bcd22b90000000000007eff529011a7f3819b8702778cc5d34eba8beac85f507af1e671db728b1f1944c455a182a79fd81c175c89e291566b6384a1d0de0716b2bc4d39cc220fa3808ca3dbce9a3d28", @ANYRES16=0x0, @ANYRES16=r2, @ANYRESOCT=r0, @ANYRESOCT], 0x24}, 0x1, 0x0, 0x0, 0x4000044}, 0x4000000) kcmp(r2, 0xffffffffffffffff, 0x4, r3, r1) preadv(r1, &(0x7f0000002400)=[{&(0x7f0000000140)=""/213, 0xd5}], 0x1, 0x7ff, 0x0) 10:15:09 executing program 0: ioctl$sock_SIOCGIFINDEX_802154(0xffffffffffffffff, 0x8933, &(0x7f0000000240)={'wpan3\x00'}) r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$nl802154(&(0x7f00000006c0), r0) sendmsg$NL802154_CMD_SET_CCA_MODE(0xffffffffffffffff, &(0x7f0000000780)={&(0x7f0000000680), 0xc, &(0x7f0000000740)={&(0x7f0000000380)=ANY=[@ANYBLOB="1c000000", @ANYRES16=r1, @ANYBLOB="080028bd7000fddbdf250d00000008000300", @ANYRES32=0x0, @ANYBLOB="9f7e20717095eb042acb8f"], 0x1c}}, 0x10) ioctl$sock_SIOCGIFINDEX_802154(0xffffffffffffffff, 0x8933, &(0x7f00000000c0)={'wpan1\x00', 0x0}) sendmsg$NL802154_CMD_DEL_SEC_KEY(0xffffffffffffffff, &(0x7f0000000280)={&(0x7f0000000080)={0x10, 0x0, 0x0, 0x200000}, 0xc, &(0x7f0000000240)={&(0x7f0000000100)=ANY=[@ANYBLOB="c0000000", @ANYRES16=r1, @ANYBLOB="00012dbd7000fddbdf251800000008000300", @ANYRES32=0x0, @ANYBLOB="9000258014000400d9b35a16820057e3a054740e780aa98305000200800000000c000180050002000300004005000200d800000024000300059eedfcd6ac1a5c32f321393811f4e1c785b6a99ccf533c75d5e7138b7666f514000400e3ba46a2a1a1d11b36a4103d57ab947624000300e14b29ee2dbf5c0c40c4f2e8ac7575bb88d698a7e70747e70816c7503a80cf3008000300", @ANYRES32=r2, @ANYBLOB], 0xc0}, 0x1, 0x0, 0x0, 0x48045}, 0x20000883) syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) r3 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x46e2, 0x0) r4 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffd000/0x3000)=nil, 0x3000, 0x0, 0x13, r3, 0x0) syz_io_uring_setup(0x4b9f, &(0x7f0000000140), &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000ffd000/0x3000)=nil, &(0x7f00000000c0), &(0x7f00000001c0)=0x0) syz_io_uring_submit(r4, r5, &(0x7f0000000240)=@IORING_OP_FADVISE={0x18, 0x0, 0x0, @fd, 0x2}, 0x0) sigaltstack(&(0x7f0000ffd000/0x1000)=nil, 0x0) 10:15:09 executing program 3: perf_event_open(&(0x7f0000000040)={0x1, 0x80, 0x6f, 0x0, 0x0, 0x9, 0x0, 0x0, 0x0, 0xa, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x3, 0x3800000000}, 0x14a, 0x2, 0x200, 0x2, 0x20000, 0xffffffff, 0x0, 0x0, 0x1}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a) ioctl$sock_SIOCGIFINDEX(r0, 0x8914, &(0x7f0000000140)={'lo\x00', 0x0}) r2 = socket$packet(0x11, 0x3, 0x300) r3 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a) ioctl$sock_SIOCGIFINDEX(r3, 0x8933, &(0x7f0000000140)={'lo\x00'}) bind$packet(r2, &(0x7f0000000000)={0x11, 0x0, r1, 0x1, 0x0, 0x6, @remote}, 0x14) r4 = open(&(0x7f00000000c0)='./file0\x00', 0x820000, 0x0) r5 = socket$inet6_udplite(0xa, 0x2, 0x88) r6 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a) r7 = fsopen(&(0x7f0000000000)='selinuxfs\x00', 0x0) fsconfig$FSCONFIG_CMD_CREATE(r7, 0x6, 0x0, 0x0, 0x0) fsmount(r7, 0x0, 0x0) fsconfig$FSCONFIG_CMD_RECONFIGURE(r7, 0x7, 0x0, 0x0, 0x0) ioctl$FS_IOC_GETVERSION(r7, 0x80087601, &(0x7f0000000180)) ioctl$sock_SIOCGIFINDEX(r6, 0x8933, &(0x7f0000000140)={'syz_tun\x00', 0x0}) sendmmsg$inet(r5, &(0x7f00000035c0)=[{{&(0x7f0000000000)={0x2, 0x4e20, @loopback}, 0x10, 0x0}}, {{&(0x7f0000001140)={0x2, 0x4e24, @broadcast}, 0x10, 0x0, 0x0, &(0x7f00000015c0)=[@ip_pktinfo={{0x1c, 0x0, 0x8, {r8, @empty, @loopback}}}], 0x20}}], 0x2, 0x0) ioctl$sock_inet6_SIOCDIFADDR(r4, 0x8936, &(0x7f0000000100)={@mcast2, 0x18, r8}) socket$inet6_icmp_raw(0xa, 0x3, 0x3a) dup2(0xffffffffffffffff, r4) 10:15:09 executing program 4: syz_mount_image$vfat(&(0x7f0000000000), &(0x7f0000000100)='./file0\x00', 0x0, 0x2, &(0x7f0000000140)=[{&(0x7f0000000040)="eb58906d6b66732e66617400020820000200008000f8000020004000000000000000000001", 0x25}, {0x0, 0x0, 0x4000}], 0x0, &(0x7f0000001500)=ANY=[]) chdir(&(0x7f0000000180)='./file0\x00') r0 = openat(0xffffffffffffff9c, &(0x7f0000000000)='./file1\x00', 0x802c2, 0x0) r1 = mq_open(&(0x7f0000000240)='\x00', 0x1, 0x0, &(0x7f0000000280)={0x3, 0x3799, 0xfff, 0x9}) ioctl$FITRIM(r1, 0xc0185879, &(0x7f0000000080)={0x0, 0xff, 0x1}) r2 = socket$netlink(0x10, 0x3, 0x0) r3 = fcntl$dupfd(r2, 0x0, r2) r4 = fsmount(r0, 0x0, 0xff) sendmsg$NL80211_CMD_GET_REG(r4, &(0x7f0000000480)={&(0x7f00000000c0)={0x10, 0x0, 0x0, 0x800}, 0xc, &(0x7f0000000440)={&(0x7f0000000300)={0x130, 0x0, 0x20, 0x70bd28, 0x25dfdbfd, {}, [@NL80211_ATTR_USER_REG_HINT_TYPE={0x8, 0x9a, 0x2}, @NL80211_ATTR_REG_ALPHA2={0x6, 0x21, 'a\x00'}, @NL80211_ATTR_REG_ALPHA2={0x7, 0x21, 'bb\x00'}, @NL80211_ATTR_SOCKET_OWNER={0x4}, @NL80211_ATTR_REG_RULES={0x54, 0x22, 0x0, 0x1, [{0x3c, 0x0, 0x0, 0x1, [@NL80211_ATTR_DFS_CAC_TIME={0x8}, @NL80211_ATTR_DFS_CAC_TIME={0x8, 0x7, 0xbc9}, @NL80211_ATTR_POWER_RULE_MAX_ANT_GAIN={0x8, 0x5, 0xc8ce}, @NL80211_ATTR_POWER_RULE_MAX_ANT_GAIN={0x8, 0x5, 0xc8}, @NL80211_ATTR_REG_RULE_FLAGS={0x8, 0x1, 0x6}, @NL80211_ATTR_DFS_CAC_TIME={0x8, 0x7, 0x7}, @NL80211_ATTR_REG_RULE_FLAGS={0x8, 0x1, 0x4}]}, {0x14, 0x0, 0x0, 0x1, [@NL80211_ATTR_FREQ_RANGE_START={0x8, 0x2, 0x25a5}, @NL80211_ATTR_FREQ_RANGE_START={0x8, 0x2, 0x1000}]}]}, @NL80211_ATTR_DFS_REGION={0x5, 0x92, 0x7f}, @NL80211_ATTR_USER_REG_HINT_TYPE={0x8}, @NL80211_ATTR_REG_RULES={0x9c, 0x22, 0x0, 0x1, [{0xc, 0x0, 0x0, 0x1, [@NL80211_ATTR_POWER_RULE_MAX_EIRP={0x8, 0x6, 0x101}]}, {0xc, 0x0, 0x0, 0x1, [@NL80211_ATTR_POWER_RULE_MAX_ANT_GAIN={0x8, 0x5, 0xffff}]}, {0x44, 0x0, 0x0, 0x1, [@NL80211_ATTR_FREQ_RANGE_END={0x8, 0x3, 0x3}, @NL80211_ATTR_FREQ_RANGE_END={0x8, 0x3, 0x7fff}, @NL80211_ATTR_FREQ_RANGE_END={0x8, 0x3, 0x6}, @NL80211_ATTR_FREQ_RANGE_START={0x8, 0x2, 0x20}, @NL80211_ATTR_DFS_CAC_TIME={0x8, 0x7, 0x3}, @NL80211_ATTR_FREQ_RANGE_MAX_BW={0x8, 0x4, 0x8}, @NL80211_ATTR_FREQ_RANGE_START={0x8, 0x2, 0x256}, @NL80211_ATTR_REG_RULE_FLAGS={0x8, 0x1, 0x3f}]}, {0x3c, 0x0, 0x0, 0x1, [@NL80211_ATTR_FREQ_RANGE_END={0x8, 0x3, 0xf74}, @NL80211_ATTR_FREQ_RANGE_MAX_BW={0x8, 0x4, 0x8001}, @NL80211_ATTR_FREQ_RANGE_MAX_BW={0x8, 0x4, 0x7fff}, @NL80211_ATTR_FREQ_RANGE_END={0x8, 0x3, 0x9}, @NL80211_ATTR_FREQ_RANGE_END={0x8, 0x3, 0x200}, @NL80211_ATTR_POWER_RULE_MAX_EIRP={0x8, 0x6, 0x299b}, @NL80211_ATTR_REG_RULE_FLAGS={0x8, 0x1, 0x1}]}]}]}, 0x130}, 0x1, 0x0, 0x0, 0x8010}, 0x20040840) getsockopt$netlink(r3, 0x10e, 0x0, 0x0, 0xfffffffffffffffe) ioctl$sock_ipv6_tunnel_SIOCCHGPRL(r3, 0x89f7, &(0x7f00000002c0)={'syztnl2\x00', &(0x7f00000001c0)={'ip6gre0\x00', 0x0, 0x29, 0x1, 0x7, 0xcb8a, 0x30, @private2, @mcast2, 0x40, 0x7800, 0xc93, 0xb0}}) [ 400.062028] 9pnet: Insufficient options for proto=fd [ 400.071864] 9pnet: Insufficient options for proto=fd [ 400.078905] FAT-fs (loop4): Invalid FSINFO signature: 0x00000000, 0x00000000 (sector = 1) 10:15:09 executing program 5: r0 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x46e2, 0x0) r1 = dup2(r0, r0) r2 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000040), 0x0, 0x0) mount$9p_fd(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f00000000c0), 0x2000000, &(0x7f00000004c0)={'trans=fd,', {'rfdno', 0x3d, r1}, 0x2c, {'wfdno', 0x3d, r2}, 0x2c, {[{@debug}, {@debug={'debug', 0x3d, 0x10001}}, {@version_u}], [{@hash}, {@euid_gt}, {@fsmagic={'fsmagic', 0x3d, 0xfffffffffffffffc}}, {@euid_eq={'euid', 0x3d, 0xffffffffffffffff}}]}}) 10:15:09 executing program 6: r0 = openat$snapshot(0xffffffffffffff9c, &(0x7f0000000280), 0x1, 0x0) r1 = socket$netlink(0x10, 0x3, 0x0) r2 = fcntl$dupfd(r1, 0x0, r1) ioctl$SNAPSHOT_FREE(r2, 0x3305) writev(r0, &(0x7f0000000100)=[{&(0x7f00000002c0)="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", 0x800}, {&(0x7f0000000000)="f8", 0x1}], 0x2) 10:15:09 executing program 3: r0 = socket$inet6_udplite(0xa, 0x2, 0x88) sendmmsg$inet(r0, &(0x7f000000c9c0)=[{{&(0x7f0000009bc0)={0x2, 0x4e21, @loopback}, 0x10, &(0x7f000000b040)=[{&(0x7f0000000000)="8b1ad9631e6947ad31fc1e84831e26886c0008f3861a253f", 0x18}, {&(0x7f0000009c40)="fef9297a94b1d66e02305f0c3c2f08e8a3c1c5ec717051ec9a0948ce1ec336212a36918c8ca02b541f4ade", 0x2b}, {&(0x7f0000009c80)="546ce56e2aeb2a65ddd99db5317d2f826e1502317c6f57f80b720657a61a6a0e1888ecfd417065707bcd15f98a135fccc52e6b4073a2ce3e5b567ae240836df0c56f6a673dbbc86aa65216c883611a2702b2b42cf199f9409a2c29dfec3e3afdd33d1f4a75371ac80375515401d4297a171836e4867a6947e81e", 0x7a}, {&(0x7f0000009d00)="5ccdd806b961b260c1dc827f1ef15570dfa017067a92cedb2b439eb4479fe88e19d66c5314b569ff1db3df2d51ba5db7a82f6ae40ae7ddca46876dfe4303467eefbd2321861a0e533c600153b1b655aa922c1104d04e8cebb878142080175caa62c4c05a1d2293c01f2d7d4aa57d1025f348795ffd57c466228829b8959660bf15cd243adf71ec99f7407d38728aac4f7ba25e5956515cb79aa28ca0eb7ce28bc3c7831bc45054075ea31d6fff9a68d69540a0b801", 0xb5}, {&(0x7f0000009dc0)="18045538d3b9c3d267e865b28dc1142c4f6f622586002533988fe6d7b665a8b796b2d12ea994c7cee301649a9fc63f57a4886e49b5a9bf0788bf93d5d76f77823b0da106dffc1f3fb1229ae77ead123d1c69e56c7473715ed459824c65bf78ad76ac1f651aed1b0f2075a76583d07890a45c3504fcc40f6365df01af", 0x7c}, {0x0}, {&(0x7f000000ae80)="4b75cd22514aa1dad1a07e9a94a7f37b87ad2023fbf567d254f4a93d2f7a1e1def6548c57a5aa669494105f7adfc9d59a4ddc75e38f8fdb91cb4f728bf6bcf7844defb062ce98358f82c4091b155527fcbd34b9d075b4948b8180bcd67e524a78be9ad5effa000914f1ff7498bd328d66c307f048e25dba32f31670b228ceef42706fcbe5ba8db5a039fa63bfae6afe57a5c3ae0be3713ea0cbca4fb01fec710d71785cd424fe211fcdd401f7959c93782b503e469d5b43c2d4f64a9cc397ffbe5da4c4b0b4902ea65b72f19831a8208f4c87ef163c36ab3adbad2d523db1037af425c0fea04e6", 0xe7}, {&(0x7f000000af80)="ca3dfc0ba733829d05b3a7fd01f5f00850649985948fed18712b498f0878812a36dcfdcf6725b29a31dd9c8a3891b8cdf76661991dd326000597adeeed394e666a66fb13f2cdf67e1ebe23cfa2f23c5e77d22f5272bea7cbcc4901d8a943f6c0f36cdd2692542fe0f87e4bba29b95d297892ccba2f", 0x75}, {&(0x7f000000b000)="ebe2ec4476cbe81f48b4", 0xa}], 0x9, &(0x7f0000000040)=[@ip_tos_int={{0x14}}, @ip_tos_u8={{0x11}}, @ip_pktinfo={{0x1c, 0x0, 0x8, {0x0, @loopback, @empty}}}], 0x50}}, {{&(0x7f000000b180)={0x2, 0x4e24, @private}, 0x10, &(0x7f000000c380)=[{0x0, 0x2f}, {0x0}], 0x2, &(0x7f000000c400)}}, {{&(0x7f000000c440)={0x2, 0x0, @remote}, 0x10, 0x0, 0x0, &(0x7f000000c900)}}], 0x3, 0x0) pipe2(&(0x7f00000000c0)={0xffffffffffffffff}, 0x80000) ioctl$sock_ipv6_tunnel_SIOCADD6RD(r1, 0x89f9, &(0x7f0000000180)={'ip6gre0\x00', &(0x7f0000000100)={'syztnl1\x00', 0x0, 0x2f, 0x2, 0xff, 0x2, 0x14, @private1={0xfc, 0x1, '\x00', 0x1}, @rand_addr=' \x01\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x01', 0x8000, 0x7, 0x23f, 0xae6}}) 10:15:10 executing program 1: r0 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x46e2, 0x0) r1 = dup2(r0, r0) r2 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000040), 0x0, 0x0) mount$9p_fd(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f00000000c0), 0x2000000, &(0x7f00000004c0)={'trans=fd,', {'rfdno', 0x3d, r1}, 0x2c, {'wfdno', 0x3d, r2}, 0x2c, {[{@debug}, {@debug={'debug', 0x3d, 0x10001}}, {@version_u}], [{@hash}, {@euid_gt}, {@fsmagic={'fsmagic', 0x3d, 0xfffffffffffffffc}}, {@euid_eq={'euid', 0x3d, 0xffffffffffffffff}}]}}) 10:15:10 executing program 6: r0 = openat$snapshot(0xffffffffffffff9c, &(0x7f0000000280), 0x1, 0x0) r1 = socket$netlink(0x10, 0x3, 0x0) r2 = fcntl$dupfd(r1, 0x0, r1) ioctl$SNAPSHOT_FREE(r2, 0x3305) writev(r0, &(0x7f0000000100)=[{&(0x7f00000002c0)="06b47b8c029d36845f23f05f7c51c81304da82843f186690fdc1627b3072a142626f471b3648b21fbdd368d3223abdbca65dde342c9d6a42635c0737f6728d8893f407c7dfe45d6ae3d23250066812e2a6b7975e2eb8816dfce885d5ec6950485a1ea6897e0b0eae8ded29a3ad6716844ca8e5bd9ef4f9e49c1f51be7a2674ffa52c6d7ab49388afb4dc10140b11981fb4d82c120b5a0d0862977f31d23bafb8a4c3399a15c6da40cdf29f67a4863373d657fc6a9988448b060a4ecb61cc4e6143ee0deb5c60ba64005003d384c0234cccc00aa2efb2348f639784f1611fc69e913fb44b9d95e55f23da8f6c90d5fdd1b61c66ed0b7b7a92fef21f65a99af9a7623fa9fcbe19a3803327eda73695854f1459f3bbe7657f8e3815baab805eba266c8b6126ad8a7127109360a2cf1fbdf18eede111aa0a9631e0c09d90c1f1bd8c467137da264ea7ea54c15ac70ed935b8b6ff0f383cf459dcb6510fa255c6d375fa910a4d40fe986b6ea867137d1097cb7d4e6ff67b3e457bd4e7e42210d97c67cbd58b8634ad3e48a07c0049a321fc6f16726c23a9a449e06c347749f4cf71c5815cabdab31d69f88142928b5211894ad0d5a603f584dbba42be34cf37b574365313f013cf44c34f3ced8a553b9f17e790f0c6590555a42e08ed5c3589cfeee6424105e4b5b9902534586919833715a43ddb9130bb5edd6fdb0b6805f33ac3ab2a2a681f3aea7724a3632c39427c25a06b15728215718a0df1f1d0c6eb93324fc875221b4ebf3a9c5d4eb63870b78c1d003dc2c1337f8bb22fcb15cda0a12165e6c9c207adaa39544b89d9eea04d63d81e80c6357b242175300c1d505c64d43b6d318c12d57379b900a6b08cf41edad74f7d164965a68f952cd02397861e52f93bc569a53f2e5d034f3cbb075ccd9622c5aa09b8239eefa1a5a8b3f6bc31a990641d3a4c07060f2db39f857db307b1187d18bbda92348b65e006177ef4a359e469765f250e043269a86c62e2374e3ac0df39d18e07c928606f8dab047bb09ebc14fd6b7bed8d04580b1902674621efa2bf6f53113fc3c2f2bdb3893c5432efb9677775a7f7959fab627a720d8c26ad9a02269501a77f767e2ef12f8e0590de688e7800cee3d0d58b5df4c455870fe0fe10d21811ce834f9e33e140175736551e5db5895f5618dfaf8cbe38a5a39d72d8824cb6ce83273d37476bef82899af4c617c87c844f1ea4559d1db353e6e2b4e89561ed73785401b1ceba5131ebaf444762b1a4c3d4d6cea0298d73f3b7440fe1e71cd613afd55f3ec4eccd7df8195adc94fd843007cb884463ff6fc2cff1e960907455774061e3c57ec341da44867caca98865fbd92aa0f90e471a958f8b6ed733d86ddb64547f07518c8e72bbb4b606956bbf053c4612c8dd6fd74f25771fb42f80211420366e718d8264f737b8e671fe6b49062ea8bb4334503fdc4dde7dc08f0e7b6b2bd350e169964aaac3005d01adf23a65466bcfb26bb8466b2d1c786f5954d1052487ffde78ba2a4d2575f5234016b7cdcb5ea883f69dfac34f6cda93f9eee544be3488bbbbf5c42be066499d03ea6bf1b9fa4ce09b74a431ffaf3a60db8a4a92f6d92c95476de39ee718327c5eb77d3b33b2f15e0085f2c2e877cd44842572d8436089fd6b3e5b1395d8a9f6aaaa2484bee92aabc79ddb6eca5bf2795c5a3200552841b8508050cb26a42d57921c862beab91ae46c2f5036f81e5ecc29bfd2cba268c0cdc932dfa0b3e185a99c9c7eac09c258ce440c94eb4052d67bb09f24e3a32be7b77090659480ce0884d26acc291b2f64211012ff17fee8d04ccf337fa7c3e636ef338a6f5e3cf84ecc7881f9fdc13d3a7f81422e6fcb3e4016bdc11bccd88c6dc4d0be9229df0af77b22706f1417b5929427f6918d51653780d94ff63f26420b6f95dcda5ddfea362d0251528e004bc498ec137030787bd1cb02a9c2de18c8d8db582d63cb648a8a0cc36aaec817424f77c94bbe82502440409d4af83e952afa0d85c9f1230f15bca4e4feb108b12b426079a7acfb207216b71f6408bf220941d9df821ff97eded503d436aedb8cc3b87f90fe80ec6ae99ebe603be63d66c17dce83a6a27008e95a3d2696e4c3c26dc673b02e8269001cbb11898c059b2e6b7935d02baf2b704ab7e05335866a2e98f828e10d8afff4e2e552ed449e7a9479ecefb51e06dbb21de263e25ebfed7ef6bfa4ca97deee668d85dd3f3335af0357a8fa84bd884037a8ae1865e2393b80080d8ed8f0f5009a6c8c5b72592855851620db9a559f4cd186b6765c262d73ffb65186dac1af2a3f498181d8c551b090ae3efffd327e3fe3e333183630c63a4d711daae17db562aadd44b45ae8e0a4eb5758074595aa670546c23b04ecb7d3d18f18df5243fd79decb0b80cfc464faa6b416ae5132a2f9dbbce7bbe81f14421ffd948c6cd55c4b8fc54cb9a2bc4fe057eb7b36bac3b0714a6b6e918049b3b382eae6f0a6c7062b6e7428b550bb6f8eb96c18eaf86f17ad14c8b9968054e7f7148bc5ac352554f0e4c1cb08ac7ad9b3c1c0b47e53cbc6a5e361123589e662fc46bd39bfbb5787c6a87c4fc104963f45971b923d51d35937bdaa9a19c87f850c2bb3f7ccde27e970f8a83914ace5b041bf5272d9b7f41f5922ab7f8c737141f9ba10d065b7d60fade71ad385aadccdf05a35a58410491fec228d15f902d1c212edca2dbf412ba14a7e23faf0da51fc9fc6ba36ed6973a6946ca1596725c9fdf8597eeb7ffed623fbcd3dc69b8afb2bdd16ddfeaebc2ca1dd6415f80dd1225365456a4d02c2c2631b74ad87ea65aafd2c0bf8d9edb9cfa1c1d61ad10f2451846622a7624481794500968bac0bdb798749dd7cf86bb997ea16412a180c", 0x800}, {&(0x7f0000000000)="f8", 0x1}], 0x2) [ 400.258955] FAT-fs (loop4): Invalid FSINFO signature: 0x00000000, 0x00000000 (sector = 1) 10:15:10 executing program 4: syz_mount_image$vfat(&(0x7f0000000000), &(0x7f0000000100)='./file0\x00', 0x0, 0x2, &(0x7f0000000140)=[{&(0x7f0000000040)="eb58906d6b66732e66617400020820000200008000f8000020004000000000000000000001", 0x25}, {0x0, 0x0, 0x4000}], 0x0, &(0x7f0000001500)=ANY=[]) chdir(&(0x7f0000000180)='./file0\x00') r0 = openat(0xffffffffffffff9c, &(0x7f0000000000)='./file1\x00', 0x802c2, 0x0) r1 = mq_open(&(0x7f0000000240)='\x00', 0x1, 0x0, &(0x7f0000000280)={0x3, 0x3799, 0xfff, 0x9}) ioctl$FITRIM(r1, 0xc0185879, &(0x7f0000000080)={0x0, 0xff, 0x1}) r2 = socket$netlink(0x10, 0x3, 0x0) r3 = fcntl$dupfd(r2, 0x0, r2) r4 = fsmount(r0, 0x0, 0xff) sendmsg$NL80211_CMD_GET_REG(r4, &(0x7f0000000480)={&(0x7f00000000c0)={0x10, 0x0, 0x0, 0x800}, 0xc, &(0x7f0000000440)={&(0x7f0000000300)={0x130, 0x0, 0x20, 0x70bd28, 0x25dfdbfd, {}, [@NL80211_ATTR_USER_REG_HINT_TYPE={0x8, 0x9a, 0x2}, @NL80211_ATTR_REG_ALPHA2={0x6, 0x21, 'a\x00'}, @NL80211_ATTR_REG_ALPHA2={0x7, 0x21, 'bb\x00'}, @NL80211_ATTR_SOCKET_OWNER={0x4}, @NL80211_ATTR_REG_RULES={0x54, 0x22, 0x0, 0x1, [{0x3c, 0x0, 0x0, 0x1, [@NL80211_ATTR_DFS_CAC_TIME={0x8}, @NL80211_ATTR_DFS_CAC_TIME={0x8, 0x7, 0xbc9}, @NL80211_ATTR_POWER_RULE_MAX_ANT_GAIN={0x8, 0x5, 0xc8ce}, @NL80211_ATTR_POWER_RULE_MAX_ANT_GAIN={0x8, 0x5, 0xc8}, @NL80211_ATTR_REG_RULE_FLAGS={0x8, 0x1, 0x6}, @NL80211_ATTR_DFS_CAC_TIME={0x8, 0x7, 0x7}, @NL80211_ATTR_REG_RULE_FLAGS={0x8, 0x1, 0x4}]}, {0x14, 0x0, 0x0, 0x1, [@NL80211_ATTR_FREQ_RANGE_START={0x8, 0x2, 0x25a5}, @NL80211_ATTR_FREQ_RANGE_START={0x8, 0x2, 0x1000}]}]}, @NL80211_ATTR_DFS_REGION={0x5, 0x92, 0x7f}, @NL80211_ATTR_USER_REG_HINT_TYPE={0x8}, @NL80211_ATTR_REG_RULES={0x9c, 0x22, 0x0, 0x1, [{0xc, 0x0, 0x0, 0x1, [@NL80211_ATTR_POWER_RULE_MAX_EIRP={0x8, 0x6, 0x101}]}, {0xc, 0x0, 0x0, 0x1, [@NL80211_ATTR_POWER_RULE_MAX_ANT_GAIN={0x8, 0x5, 0xffff}]}, {0x44, 0x0, 0x0, 0x1, [@NL80211_ATTR_FREQ_RANGE_END={0x8, 0x3, 0x3}, @NL80211_ATTR_FREQ_RANGE_END={0x8, 0x3, 0x7fff}, @NL80211_ATTR_FREQ_RANGE_END={0x8, 0x3, 0x6}, @NL80211_ATTR_FREQ_RANGE_START={0x8, 0x2, 0x20}, @NL80211_ATTR_DFS_CAC_TIME={0x8, 0x7, 0x3}, @NL80211_ATTR_FREQ_RANGE_MAX_BW={0x8, 0x4, 0x8}, @NL80211_ATTR_FREQ_RANGE_START={0x8, 0x2, 0x256}, @NL80211_ATTR_REG_RULE_FLAGS={0x8, 0x1, 0x3f}]}, {0x3c, 0x0, 0x0, 0x1, [@NL80211_ATTR_FREQ_RANGE_END={0x8, 0x3, 0xf74}, @NL80211_ATTR_FREQ_RANGE_MAX_BW={0x8, 0x4, 0x8001}, @NL80211_ATTR_FREQ_RANGE_MAX_BW={0x8, 0x4, 0x7fff}, @NL80211_ATTR_FREQ_RANGE_END={0x8, 0x3, 0x9}, @NL80211_ATTR_FREQ_RANGE_END={0x8, 0x3, 0x200}, @NL80211_ATTR_POWER_RULE_MAX_EIRP={0x8, 0x6, 0x299b}, @NL80211_ATTR_REG_RULE_FLAGS={0x8, 0x1, 0x1}]}]}]}, 0x130}, 0x1, 0x0, 0x0, 0x8010}, 0x20040840) getsockopt$netlink(r3, 0x10e, 0x0, 0x0, 0xfffffffffffffffe) ioctl$sock_ipv6_tunnel_SIOCCHGPRL(r3, 0x89f7, &(0x7f00000002c0)={'syztnl2\x00', &(0x7f00000001c0)={'ip6gre0\x00', 0x0, 0x29, 0x1, 0x7, 0xcb8a, 0x30, @private2, @mcast2, 0x40, 0x7800, 0xc93, 0xb0}}) 10:15:10 executing program 0: ioctl$sock_SIOCGIFINDEX_802154(0xffffffffffffffff, 0x8933, &(0x7f0000000240)={'wpan3\x00'}) r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$nl802154(&(0x7f00000006c0), r0) sendmsg$NL802154_CMD_SET_CCA_MODE(0xffffffffffffffff, &(0x7f0000000780)={&(0x7f0000000680), 0xc, &(0x7f0000000740)={&(0x7f0000000380)=ANY=[@ANYBLOB="1c000000", @ANYRES16=r1, @ANYBLOB="080028bd7000fddbdf250d00000008000300", @ANYRES32=0x0, @ANYBLOB="9f7e20717095eb042acb8f"], 0x1c}}, 0x10) ioctl$sock_SIOCGIFINDEX_802154(0xffffffffffffffff, 0x8933, &(0x7f00000000c0)={'wpan1\x00', 0x0}) sendmsg$NL802154_CMD_DEL_SEC_KEY(0xffffffffffffffff, &(0x7f0000000280)={&(0x7f0000000080)={0x10, 0x0, 0x0, 0x200000}, 0xc, &(0x7f0000000240)={&(0x7f0000000100)=ANY=[@ANYBLOB="c0000000", @ANYRES16=r1, @ANYBLOB="00012dbd7000fddbdf251800000008000300", @ANYRES32=0x0, @ANYBLOB="9000258014000400d9b35a16820057e3a054740e780aa98305000200800000000c000180050002000300004005000200d800000024000300059eedfcd6ac1a5c32f321393811f4e1c785b6a99ccf533c75d5e7138b7666f514000400e3ba46a2a1a1d11b36a4103d57ab947624000300e14b29ee2dbf5c0c40c4f2e8ac7575bb88d698a7e70747e70816c7503a80cf3008000300", @ANYRES32=r2, @ANYBLOB], 0xc0}, 0x1, 0x0, 0x0, 0x48045}, 0x20000883) syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) r3 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x46e2, 0x0) r4 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffd000/0x3000)=nil, 0x3000, 0x0, 0x13, r3, 0x0) syz_io_uring_setup(0x4b9f, &(0x7f0000000140), &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000ffd000/0x3000)=nil, &(0x7f00000000c0), &(0x7f00000001c0)=0x0) syz_io_uring_submit(r4, r5, &(0x7f0000000240)=@IORING_OP_FADVISE={0x18, 0x0, 0x0, @fd, 0x2}, 0x0) sigaltstack(&(0x7f0000ffd000/0x1000)=nil, 0x0) 10:15:10 executing program 5: r0 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x46e2, 0x0) r1 = dup2(r0, r0) r2 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000040), 0x0, 0x0) mount$9p_fd(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f00000000c0), 0x2000000, &(0x7f00000004c0)={'trans=fd,', {'rfdno', 0x3d, r1}, 0x2c, {'wfdno', 0x3d, r2}, 0x2c, {[{@debug}, {@debug={'debug', 0x3d, 0x10001}}, {@version_u}], [{@hash}, {@euid_gt}, {@fsmagic={'fsmagic', 0x3d, 0xfffffffffffffffc}}, {@euid_eq={'euid', 0x3d, 0xffffffffffffffff}}]}}) 10:15:10 executing program 6: syz_mount_image$ext4(0x0, &(0x7f0000000100)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0) mount(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000000140)='configfs\x00', 0x0, 0x0) syz_mount_image$iso9660(0x0, &(0x7f0000000280)='./file0/file0\x00', 0x0, 0x0, 0x0, 0x1080042, 0x0) [ 400.352298] FAT-fs (loop4): Invalid FSINFO signature: 0x00000000, 0x00000000 (sector = 1) [ 400.436854] FAT-fs (loop4): Invalid FSINFO signature: 0x00000000, 0x00000000 (sector = 1) 10:15:20 executing program 3: r0 = syz_mount_image$vfat(&(0x7f0000000000), &(0x7f0000000100)='./file0\x00', 0xfffffffffffffffd, 0x1, &(0x7f0000000080)=[{&(0x7f0000010000)="601c6d6b646f736606ecb500080801000440040000f801", 0x17}], 0x0, &(0x7f00000000c0)={[{@uni_xlate}]}) r1 = syz_open_procfs(0xffffffffffffffff, &(0x7f00000030c0)='mountinfo\x00') r2 = fork() ioprio_get$pid(0x1, r2) tkill(r2, 0x7) waitid(0x1, r2, 0x0, 0x4, 0x0) r3 = openat$hwrng(0xffffffffffffff9c, 0x0, 0x400000, 0x0) sendmsg$DEVLINK_CMD_SB_TC_POOL_BIND_GET(r3, 0x0, 0x0) sendmsg$NL80211_CMD_CONTROL_PORT_FRAME(r1, &(0x7f00000005c0)={&(0x7f0000000500)={0x10, 0x0, 0x0, 0x400000}, 0xc, &(0x7f0000000580)={&(0x7f00000002c0)=ANY=[@ANYBLOB="3f7bcd22b90000000000007eff529011a7f3819b8702778cc5d34eba8beac85f507af1e671db728b1f1944c455a182a79fd81c175c89e291566b6384a1d0de0716b2bc4d39cc220fa3808ca3dbce9a3d28", @ANYRES16=0x0, @ANYRES16=r2, @ANYRESOCT=r0, @ANYRESOCT], 0x24}, 0x1, 0x0, 0x0, 0x4000044}, 0x4000000) kcmp(r2, 0xffffffffffffffff, 0x4, r3, r1) preadv(r1, &(0x7f0000002400)=[{&(0x7f0000000140)=""/213, 0xd5}], 0x1, 0x7ff, 0x0) 10:15:20 executing program 5: r0 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x46e2, 0x0) r1 = dup2(r0, r0) r2 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000040), 0x0, 0x0) mount$9p_fd(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f00000000c0), 0x2000000, &(0x7f00000004c0)={'trans=fd,', {'rfdno', 0x3d, r1}, 0x2c, {'wfdno', 0x3d, r2}, 0x2c, {[{@debug}, {@debug={'debug', 0x3d, 0x10001}}, {@version_u}], [{@hash}, {@euid_gt}, {@fsmagic={'fsmagic', 0x3d, 0xfffffffffffffffc}}, {@euid_eq={'euid', 0x3d, 0xffffffffffffffff}}]}}) 10:15:20 executing program 2: clone3(&(0x7f00000008c0)={0x1040100, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) pipe(&(0x7f00000001c0)={0xffffffffffffffff, 0xffffffffffffffff}) mount$9p_fd(0x0, &(0x7f0000000040)='./file1\x00', &(0x7f00000000c0), 0x0, &(0x7f0000000200)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}, 0x2c, {[{@access_uid}]}}) 10:15:20 executing program 7: r0 = syz_mount_image$vfat(&(0x7f0000000000), &(0x7f0000000100)='./file0\x00', 0xfffffffffffffffd, 0x1, &(0x7f0000000080)=[{&(0x7f0000010000)="601c6d6b646f736606ecb500080801000440040000f801", 0x17}], 0x0, &(0x7f00000000c0)={[{@uni_xlate}]}) r1 = syz_open_procfs(0xffffffffffffffff, &(0x7f00000030c0)='mountinfo\x00') r2 = fork() ioprio_get$pid(0x1, r2) tkill(r2, 0x7) waitid(0x1, r2, 0x0, 0x4, 0x0) r3 = openat$hwrng(0xffffffffffffff9c, 0x0, 0x400000, 0x0) sendmsg$DEVLINK_CMD_SB_TC_POOL_BIND_GET(r3, 0x0, 0x0) sendmsg$NL80211_CMD_CONTROL_PORT_FRAME(r1, &(0x7f00000005c0)={&(0x7f0000000500)={0x10, 0x0, 0x0, 0x400000}, 0xc, &(0x7f0000000580)={&(0x7f00000002c0)=ANY=[@ANYBLOB="3f7bcd22b90000000000007eff529011a7f3819b8702778cc5d34eba8beac85f507af1e671db728b1f1944c455a182a79fd81c175c89e291566b6384a1d0de0716b2bc4d39cc220fa3808ca3dbce9a3d28", @ANYRES16=0x0, @ANYRES16=r2, @ANYRESOCT=r0, @ANYRESOCT], 0x24}, 0x1, 0x0, 0x0, 0x4000044}, 0x4000000) kcmp(r2, 0xffffffffffffffff, 0x4, r3, r1) preadv(r1, &(0x7f0000002400)=[{&(0x7f0000000140)=""/213, 0xd5}], 0x1, 0x7ff, 0x0) 10:15:20 executing program 0: ioctl$sock_SIOCGIFINDEX_802154(0xffffffffffffffff, 0x8933, &(0x7f0000000240)={'wpan3\x00'}) r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$nl802154(&(0x7f00000006c0), r0) sendmsg$NL802154_CMD_SET_CCA_MODE(0xffffffffffffffff, &(0x7f0000000780)={&(0x7f0000000680), 0xc, &(0x7f0000000740)={&(0x7f0000000380)=ANY=[@ANYBLOB="1c000000", @ANYRES16=r1, @ANYBLOB="080028bd7000fddbdf250d00000008000300", @ANYRES32=0x0, @ANYBLOB="9f7e20717095eb042acb8f"], 0x1c}}, 0x10) ioctl$sock_SIOCGIFINDEX_802154(0xffffffffffffffff, 0x8933, &(0x7f00000000c0)={'wpan1\x00', 0x0}) sendmsg$NL802154_CMD_DEL_SEC_KEY(0xffffffffffffffff, &(0x7f0000000280)={&(0x7f0000000080)={0x10, 0x0, 0x0, 0x200000}, 0xc, &(0x7f0000000240)={&(0x7f0000000100)=ANY=[@ANYBLOB="c0000000", @ANYRES16=r1, @ANYBLOB="00012dbd7000fddbdf251800000008000300", @ANYRES32=0x0, @ANYBLOB="9000258014000400d9b35a16820057e3a054740e780aa98305000200800000000c000180050002000300004005000200d800000024000300059eedfcd6ac1a5c32f321393811f4e1c785b6a99ccf533c75d5e7138b7666f514000400e3ba46a2a1a1d11b36a4103d57ab947624000300e14b29ee2dbf5c0c40c4f2e8ac7575bb88d698a7e70747e70816c7503a80cf3008000300", @ANYRES32=r2, @ANYBLOB], 0xc0}, 0x1, 0x0, 0x0, 0x48045}, 0x20000883) r3 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x46e2, 0x0) r4 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffd000/0x3000)=nil, 0x3000, 0x0, 0x13, r3, 0x0) syz_io_uring_setup(0x4b9f, &(0x7f0000000140), &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000ffd000/0x3000)=nil, &(0x7f00000000c0), &(0x7f00000001c0)=0x0) syz_io_uring_submit(r4, r5, &(0x7f0000000240)=@IORING_OP_FADVISE={0x18, 0x0, 0x0, @fd, 0x2}, 0x0) sigaltstack(&(0x7f0000ffd000/0x1000)=nil, 0x0) 10:15:20 executing program 6: ioctl$F2FS_IOC_START_ATOMIC_WRITE(0xffffffffffffffff, 0xf501, 0x0) syz_mount_image$vfat(&(0x7f0000000000), &(0x7f0000000100)='./file0\x00', 0x0, 0x2, &(0x7f0000000200)=[{&(0x7f0000010000)="601c6d6b646f7366ee578400080820000200008000f8000020004000000000000000000001", 0x25}, {&(0x7f0000010400)="f8ffff1903000040df915302", 0xc, 0x10000}], 0x0, &(0x7f0000000040)=ANY=[@ANYBLOB='tnm_ 0,\x00']) 10:15:20 executing program 4: r0 = socket$inet6_udplite(0xa, 0x2, 0x88) r1 = openat$vcs(0xffffffffffffff9c, &(0x7f0000000000), 0x1a1a00, 0x0) setsockopt$inet6_group_source_req(r1, 0x29, 0x0, &(0x7f0000000040)={0x1, {{0xa, 0x4e24, 0x3, @mcast1, 0x1}}, {{0xa, 0x4e20, 0x1, @dev={0xfe, 0x80, '\x00', 0x1f}, 0xf2}}}, 0x108) close_range(r0, 0xffffffffffffffff, 0x0) syz_usb_connect$cdc_ecm(0x0, 0x4d, &(0x7f0000000340)=ANY=[], 0x0) r2 = dup2(r0, r0) r3 = socket$inet6_tcp(0xa, 0x1, 0x0) setsockopt$inet6_MCAST_MSFILTER(r3, 0x29, 0x30, &(0x7f0000000180)={0xfffffffd, {{0xa, 0x4e21, 0x6eb, @private1={0xfc, 0x1, '\x00', 0x1}, 0x72d}}, 0x9ba6ee5baac2d37c, 0x7, [{{0xa, 0x4e21, 0x66774e95, @empty, 0xff}}, {{0xa, 0x4e20, 0x2, @dev={0xfe, 0x80, '\x00', 0x35}, 0x200}}, {{0xa, 0x4e22, 0x110ff610, @private0={0xfc, 0x0, '\x00', 0x1}, 0x10001}}, {{0xa, 0x4e20, 0x41, @mcast1, 0x8001}}, {{0xa, 0x4e24, 0x8, @dev={0xfe, 0x80, '\x00', 0x43}, 0x100000}}, {{0xa, 0x4e22, 0x5, @ipv4={'\x00', '\xff\xff', @broadcast}, 0x3}}, {{0xa, 0x4e20, 0x6, @mcast2, 0xfffffffe}}]}, 0x410) ioctl$sock_SIOCETHTOOL(r2, 0x41015500, 0x0) 10:15:20 executing program 1: r0 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x46e2, 0x0) r1 = dup2(r0, r0) r2 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000040), 0x0, 0x0) mount$9p_fd(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f00000000c0), 0x2000000, &(0x7f00000004c0)={'trans=fd,', {'rfdno', 0x3d, r1}, 0x2c, {'wfdno', 0x3d, r2}, 0x2c, {[{@debug}, {@debug={'debug', 0x3d, 0x10001}}, {@version_u}], [{@hash}, {@euid_gt}, {@fsmagic={'fsmagic', 0x3d, 0xfffffffffffffffc}}, {@euid_eq={'euid', 0x3d, 0xffffffffffffffff}}]}}) [ 411.162906] udc-core: couldn't find an available UDC or it's busy [ 411.164452] misc raw-gadget: fail, usb_gadget_probe_driver returned -19 [ 411.166793] FAT-fs (loop6): Unrecognized mount option "tnm_ 0" or missing value 10:15:21 executing program 0: ioctl$sock_SIOCGIFINDEX_802154(0xffffffffffffffff, 0x8933, &(0x7f0000000240)={'wpan3\x00'}) r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$nl802154(&(0x7f00000006c0), r0) sendmsg$NL802154_CMD_SET_CCA_MODE(0xffffffffffffffff, &(0x7f0000000780)={&(0x7f0000000680), 0xc, &(0x7f0000000740)={&(0x7f0000000380)=ANY=[@ANYBLOB="1c000000", @ANYRES16=r1, @ANYBLOB="080028bd7000fddbdf250d00000008000300", @ANYRES32=0x0, @ANYBLOB="9f7e20717095eb042acb8f"], 0x1c}}, 0x10) ioctl$sock_SIOCGIFINDEX_802154(0xffffffffffffffff, 0x8933, &(0x7f00000000c0)={'wpan1\x00'}) r2 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x46e2, 0x0) r3 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffd000/0x3000)=nil, 0x3000, 0x0, 0x13, r2, 0x0) syz_io_uring_setup(0x4b9f, &(0x7f0000000140), &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000ffd000/0x3000)=nil, &(0x7f00000000c0), &(0x7f00000001c0)=0x0) syz_io_uring_submit(r3, r4, &(0x7f0000000240)=@IORING_OP_FADVISE={0x18, 0x0, 0x0, @fd, 0x2}, 0x0) sigaltstack(&(0x7f0000ffd000/0x1000)=nil, 0x0) 10:15:21 executing program 2: perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x9, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x0, 0x0, 0x0, 0x3}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = syz_mount_image$tmpfs(&(0x7f0000000040), &(0x7f00000000c0)='./file0\x00', 0x0, 0x0, 0x0, 0x0, &(0x7f0000000140)=ANY=[@ANYBLOB="6e725f696e6f64657dc3059e00"]) openat(r0, &(0x7f0000000180)='./file0\x00', 0x64841, 0x0) 10:15:21 executing program 5: r0 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x46e2, 0x0) r1 = dup2(r0, r0) r2 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000040), 0x2, 0x0) mount$9p_fd(0x0, 0x0, &(0x7f00000000c0), 0x2000000, &(0x7f00000004c0)={'trans=fd,', {'rfdno', 0x3d, r1}, 0x2c, {'wfdno', 0x3d, r2}, 0x2c, {[{@debug}, {@debug={'debug', 0x3d, 0x10001}}, {@version_u}], [{@hash}, {@euid_gt}, {@fsmagic={'fsmagic', 0x3d, 0xfffffffffffffffc}}, {@euid_eq={'euid', 0x3d, 0xffffffffffffffff}}]}}) 10:15:21 executing program 5: r0 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x46e2, 0x0) r1 = dup2(r0, r0) r2 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000040), 0x2, 0x0) mount$9p_fd(0x0, 0x0, &(0x7f00000000c0), 0x2000000, &(0x7f00000004c0)={'trans=fd,', {'rfdno', 0x3d, r1}, 0x2c, {'wfdno', 0x3d, r2}, 0x2c, {[{@debug}, {@debug={'debug', 0x3d, 0x10001}}, {@version_u}], [{@hash}, {@euid_gt}, {@fsmagic={'fsmagic', 0x3d, 0xfffffffffffffffc}}, {@euid_eq={'euid', 0x3d, 0xffffffffffffffff}}]}}) 10:15:21 executing program 1: r0 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x46e2, 0x0) r1 = dup2(r0, r0) r2 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000040), 0x0, 0x0) mount$9p_fd(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f00000000c0), 0x2000000, &(0x7f00000004c0)={'trans=fd,', {'rfdno', 0x3d, r1}, 0x2c, {'wfdno', 0x3d, r2}, 0x2c, {[{@debug}, {@debug={'debug', 0x3d, 0x10001}}, {@version_u}], [{@hash}, {@euid_gt}, {@fsmagic={'fsmagic', 0x3d, 0xfffffffffffffffc}}, {@euid_eq={'euid', 0x3d, 0xffffffffffffffff}}]}}) 10:15:21 executing program 6: r0 = add_key$keyring(&(0x7f00000021c0), &(0x7f0000002200)={'syz', 0x0}, 0x0, 0x0, 0xfffffffffffffffd) r1 = add_key$fscrypt_v1(&(0x7f0000000080), &(0x7f00000000c0)={'fscrypt:', @desc2}, &(0x7f0000000100)={0x0, "ddc34a612dba25f9118707a5f1c1cdbfc72c59569b9f5c9a5bca7a66cfae4691177879b79748353c32fd9b792a52fecbfd26b6f3770dfd704650ce4fcd437188"}, 0x48, r0) r2 = add_key$keyring(&(0x7f0000000040), &(0x7f00000002c0)={'syz', 0x3}, 0x0, 0x0, 0xfffffffffffffffd) r3 = add_key$fscrypt_v1(&(0x7f0000000000), &(0x7f0000000180)={'fscrypt:', @desc2}, &(0x7f00000001c0)={0x0, "63ab521ec4e38fcbcda26b3dd52413f882bfb4f7320e619a23ffa8172e83b3882b3e10335047361a0b262aec58bbe6c21626108aa9c23b7e90fee573e72b4d37", 0x30}, 0x48, r0) keyctl$clear(0x7, r3) keyctl$KEYCTL_MOVE(0x1e, r1, r0, r2, 0x0) [ 411.280979] tmpfs: Unknown parameter 'nr_inode}Þ' 10:15:21 executing program 3: r0 = socket$inet6_tcp(0xa, 0x1, 0x0) setsockopt$inet6_tcp_int(r0, 0x6, 0x12, &(0x7f0000001300)=0x7, 0x4) bind$inet6(r0, &(0x7f00000000c0)={0xa, 0x4e20, 0x0, @loopback}, 0x1c) connect$inet6(0xffffffffffffffff, &(0x7f0000000000)={0xa, 0x4e20, 0x0, @private1}, 0x1c) r1 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a) setsockopt$packet_add_memb(0xffffffffffffffff, 0x107, 0x1, &(0x7f0000000080)={0x0, 0x1, 0x6, @dev}, 0x10) setsockopt$packet_add_memb(0xffffffffffffffff, 0x107, 0x1, &(0x7f0000000200)={0x0, 0x1, 0x6, @remote}, 0x10) ioctl$BTRFS_IOC_LOGICAL_INO(0xffffffffffffffff, 0xc0389424, &(0x7f0000000040)={0xffff, 0x10, '\x00', 0x1, &(0x7f0000000000)=[0x0, 0x0]}) r2 = socket$packet(0x11, 0x2, 0x300) fsetxattr$security_capability(r2, &(0x7f00000000c0), &(0x7f0000000100)=@v1={0x1000000, [{0xfff, 0x8}]}, 0xc, 0x1) ioctl$sock_SIOCGIFINDEX(r1, 0x8914, &(0x7f0000000140)={'lo\x00'}) r3 = creat(&(0x7f0000000080)='./file0\x00', 0x0) pwrite64(r1, &(0x7f0000000240)="a7", 0x1, 0x200000004) r4 = socket$inet6_udplite(0xa, 0x2, 0x88) r5 = dup(r4) r6 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a) ioctl$sock_SIOCGIFINDEX(r6, 0x8933, &(0x7f0000000140)={'lo\x00', 0x0}) ioctl$sock_inet6_SIOCDIFADDR(r5, 0x8916, &(0x7f0000000000)={@initdev={0xfe, 0x88, '\x00', 0x0, 0x0}, 0x0, r7}) setsockopt$packet_add_memb(r3, 0x107, 0x1, &(0x7f0000000080)={r7, 0x1, 0x6, @link_local={0x1, 0x80, 0xc2, 0x0, 0x0, 0x2}}, 0x10) sendmsg$inet6(r0, &(0x7f00000006c0)={0x0, 0x0, &(0x7f0000000540)=[{&(0x7f00000001c0)="cf", 0xfffffdef}], 0x1}, 0x10044008) [ 411.288481] tmpfs: Unknown parameter 'nr_inode}Þ' 10:15:32 executing program 3: r0 = add_key$keyring(&(0x7f00000021c0), &(0x7f0000002200)={'syz', 0x0}, 0x0, 0x0, 0xfffffffffffffffd) r1 = add_key$fscrypt_v1(&(0x7f0000000080), &(0x7f00000000c0)={'fscrypt:', @desc2}, &(0x7f0000000100)={0x0, "ddc34a612dba25f9118707a5f1c1cdbfc72c59569b9f5c9a5bca7a66cfae4691177879b79748353c32fd9b792a52fecbfd26b6f3770dfd704650ce4fcd437188"}, 0x48, r0) r2 = add_key$keyring(&(0x7f0000000040), &(0x7f00000002c0)={'syz', 0x3}, 0x0, 0x0, 0xfffffffffffffffd) r3 = add_key$fscrypt_v1(&(0x7f0000000000), &(0x7f0000000180)={'fscrypt:', @desc2}, &(0x7f00000001c0)={0x0, "63ab521ec4e38fcbcda26b3dd52413f882bfb4f7320e619a23ffa8172e83b3882b3e10335047361a0b262aec58bbe6c21626108aa9c23b7e90fee573e72b4d37", 0x30}, 0x48, r0) keyctl$clear(0x7, r3) keyctl$KEYCTL_MOVE(0x1e, r1, r0, r2, 0x0) 10:15:32 executing program 6: r0 = add_key$keyring(&(0x7f00000021c0), &(0x7f0000002200)={'syz', 0x0}, 0x0, 0x0, 0xfffffffffffffffd) r1 = add_key$fscrypt_v1(&(0x7f0000000080), &(0x7f00000000c0)={'fscrypt:', @desc2}, &(0x7f0000000100)={0x0, "ddc34a612dba25f9118707a5f1c1cdbfc72c59569b9f5c9a5bca7a66cfae4691177879b79748353c32fd9b792a52fecbfd26b6f3770dfd704650ce4fcd437188"}, 0x48, r0) r2 = add_key$keyring(&(0x7f0000000040), &(0x7f00000002c0)={'syz', 0x3}, 0x0, 0x0, 0xfffffffffffffffd) r3 = add_key$fscrypt_v1(&(0x7f0000000000), &(0x7f0000000180)={'fscrypt:', @desc2}, &(0x7f00000001c0)={0x0, "63ab521ec4e38fcbcda26b3dd52413f882bfb4f7320e619a23ffa8172e83b3882b3e10335047361a0b262aec58bbe6c21626108aa9c23b7e90fee573e72b4d37", 0x30}, 0x48, r0) keyctl$clear(0x7, r3) keyctl$KEYCTL_MOVE(0x1e, r1, r0, r2, 0x0) 10:15:32 executing program 1: r0 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x46e2, 0x0) r1 = dup2(r0, r0) r2 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000040), 0x2, 0x0) mount$9p_fd(0x0, 0x0, &(0x7f00000000c0), 0x2000000, &(0x7f00000004c0)={'trans=fd,', {'rfdno', 0x3d, r1}, 0x2c, {'wfdno', 0x3d, r2}, 0x2c, {[{@debug}, {@debug={'debug', 0x3d, 0x10001}}, {@version_u}], [{@hash}, {@euid_gt}, {@fsmagic={'fsmagic', 0x3d, 0xfffffffffffffffc}}, {@euid_eq={'euid', 0x3d, 0xffffffffffffffff}}]}}) 10:15:32 executing program 0: ioctl$sock_SIOCGIFINDEX_802154(0xffffffffffffffff, 0x8933, &(0x7f0000000240)={'wpan3\x00'}) r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$nl802154(&(0x7f00000006c0), r0) sendmsg$NL802154_CMD_SET_CCA_MODE(0xffffffffffffffff, &(0x7f0000000780)={&(0x7f0000000680), 0xc, &(0x7f0000000740)={&(0x7f0000000380)=ANY=[@ANYBLOB="1c000000", @ANYRES16=r1, @ANYBLOB="080028bd7000fddbdf250d00000008000300", @ANYRES32=0x0, @ANYBLOB="9f7e20717095eb042acb8f"], 0x1c}}, 0x10) r2 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x46e2, 0x0) r3 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffd000/0x3000)=nil, 0x3000, 0x0, 0x13, r2, 0x0) syz_io_uring_setup(0x4b9f, &(0x7f0000000140), &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000ffd000/0x3000)=nil, &(0x7f00000000c0), &(0x7f00000001c0)=0x0) syz_io_uring_submit(r3, r4, &(0x7f0000000240)=@IORING_OP_FADVISE={0x18, 0x0, 0x0, @fd, 0x2}, 0x0) sigaltstack(&(0x7f0000ffd000/0x1000)=nil, 0x0) 10:15:32 executing program 5: r0 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x46e2, 0x0) r1 = dup2(r0, r0) r2 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000040), 0x2, 0x0) mount$9p_fd(0x0, 0x0, &(0x7f00000000c0), 0x2000000, &(0x7f00000004c0)={'trans=fd,', {'rfdno', 0x3d, r1}, 0x2c, {'wfdno', 0x3d, r2}, 0x2c, {[{@debug}, {@debug={'debug', 0x3d, 0x10001}}, {@version_u}], [{@hash}, {@euid_gt}, {@fsmagic={'fsmagic', 0x3d, 0xfffffffffffffffc}}, {@euid_eq={'euid', 0x3d, 0xffffffffffffffff}}]}}) 10:15:32 executing program 4: r0 = socket$inet_icmp_raw(0x2, 0x3, 0x1) setsockopt$inet_group_source_req(r0, 0x0, 0x5, &(0x7f0000000100)={0x1, {{0x2, 0x0, @multicast2}}, {{0x2, 0x4e25, @local}}}, 0x108) setsockopt$inet_group_source_req(r0, 0x0, 0x2e, &(0x7f0000000100)={0x1, {{0x2, 0x0, @multicast2}}, {{0x2, 0x0, @local}}}, 0x108) r1 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a) ioctl$sock_SIOCGIFINDEX(r1, 0x8914, &(0x7f0000000140)={'lo\x00'}) r2 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a) ioctl$sock_SIOCGIFINDEX(r2, 0x8933, &(0x7f0000000140)={'lo\x00'}) r3 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a) r4 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a) r5 = socket$packet(0x11, 0x2, 0x300) ioctl$ifreq_SIOCGIFINDEX_wireguard(r5, 0x8933, &(0x7f00000002c0)={'wg0\x00', 0x0}) setsockopt$packet_add_memb(r5, 0x107, 0x1, &(0x7f0000000080)={r6, 0x1, 0x6, @local}, 0x10) ioctl$sock_SIOCGIFINDEX(r4, 0x8933, &(0x7f0000000140)={'lo\x00'}) setsockopt$IP6T_SO_SET_ADD_COUNTERS(r4, 0x29, 0x41, &(0x7f0000000000)={'filter\x00', 0x5, [{}, {}, {}, {}, {}]}, 0x78) ioctl$sock_SIOCGIFINDEX(r3, 0x8914, &(0x7f0000000140)={'lo\x00'}) 10:15:32 executing program 7: syz_mount_image$ext4(0x0, &(0x7f0000000100)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0) syz_mount_image$ext4(&(0x7f0000002880)='ext3\x00', 0x0, 0x0, 0x0, 0x0, 0x0, 0x0) clone3(&(0x7f00000008c0)={0x1040100, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) clone3(&(0x7f0000000500)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, &(0x7f00000004c0)=[0x0], 0x1}, 0x58) syz_open_dev$tty20(0xc, 0x4, 0x1) r0 = syz_open_dev$evdev(0x0, 0x4, 0x0) ioctl$EVIOCSMASK(r0, 0x40104593, &(0x7f0000000140)={0x5, 0x50, &(0x7f0000000080)="dac673f9d495b57d2bda349b8616fa0c5dc6315e4816f92702c06be6992dbe51823e117cd02971e5628d7c82e684c9e45f45ddd1e39b943342d9cadc5d950c323f014eb0bb8f4996bd2a4c667c2b645e"}) r1 = signalfd4(r0, &(0x7f0000000180)={[0x8c]}, 0x8, 0x80000) r2 = syz_open_dev$hidraw(&(0x7f00000001c0), 0x6, 0x800) fcntl$dupfd(r1, 0x406, r2) clone3(&(0x7f00000008c0)={0x1040100, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) clone3(&(0x7f0000000500)={0x8000000, 0x0, &(0x7f0000000340), &(0x7f0000000380), {}, 0x0, 0x0, 0x0, 0x0}, 0x58) fork() ptrace$setregset(0x4205, 0xffffffffffffffff, 0x202, &(0x7f0000000040)={&(0x7f0000000000)="3426432fb85c1a1fc20a7c08f5b250923055334a3e058ffce7241305e7b626432f612811b4c7121e34b8a5948f45b76d4fb649fd", 0x34}) wait4(0x0, 0x0, 0x0, 0x0) getgid() 10:15:32 executing program 2: perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6, 0x0, 0x0, 0x0, 0x0, 0x4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x0, 0x0, 0xfffffffe}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r0 = syz_open_dev$usbmon(&(0x7f0000000180), 0x0, 0x0) r1 = epoll_create1(0x0) epoll_ctl$EPOLL_CTL_ADD(r1, 0x1, r0, &(0x7f00000000c0)={0x20002009}) epoll_ctl$EPOLL_CTL_ADD(r1, 0x1, r0, &(0x7f0000000280)={0x50000000}) r2 = gettid() r3 = openat$cgroup_ro(r0, &(0x7f0000000300)='cpu.stat\x00', 0x0, 0x0) pwritev2(r3, &(0x7f0000000440)=[{&(0x7f0000000340)="c3193bb0ceddb56dea5924c4ac3bd84c96e2d169005394c8b321712d838ef06c8c1833d46a3e4d56d16aec12cd2f5de4e28788c54b87dfa08679d2ae", 0x3c}, {&(0x7f0000000380)="b972f85055a88eef2d57b76fce181075a0581c339798b275948137eb6b81c347c47cd4516c938f892a73e2eefb7e528349a2dd159cb8", 0x36}, {&(0x7f00000003c0)="3be29d8af1b5ff0ec54875aae74d5cb2006f0f84f689eab080ef1f3e7b2db875a5342beab699e7a4728ecef56b88379348111ecd37b0553305716e1d090608af893f1f25e8a3", 0x46}], 0x3, 0x0, 0x6, 0x4) rt_sigqueueinfo(r2, 0x400001, &(0x7f00000000c0)) r4 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000000)='/proc/meminfo\x00', 0x0, 0x0) ioctl$SNDRV_SEQ_IOCTL_CREATE_QUEUE(r4, 0xc08c5332, &(0x7f00000001c0)={0x7b, 0x40, 0x0, 'queue0\x00', 0x10000}) perf_event_open(&(0x7f0000000100)={0x0, 0x80, 0x3f, 0x3, 0x2, 0x4, 0x0, 0x5bf, 0xe0615, 0x0, 0x1, 0x1, 0x0, 0x1, 0x1, 0x0, 0x0, 0x1, 0x1, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x1, 0x1, 0x1, 0x0, 0x1, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x1, 0x0, 0x1, 0x1, 0x1, 0x0, 0x1, 0x0, 0x0, 0x20, 0x0, @perf_config_ext={0xff, 0x20}, 0x800, 0x7fffffff, 0x1f, 0x9, 0x1, 0x1f, 0x7, 0x0, 0x3, 0x0, 0x7}, r2, 0x10, 0xffffffffffffffff, 0x2) r5 = dup2(r0, r1) epoll_ctl$EPOLL_CTL_ADD(r5, 0x1, r1, &(0x7f00000002c0)={0xd0000000}) [ 423.080323] audit: type=1400 audit(1628676932.914:11): avc: denied { block_suspend } for pid=5953 comm="syz-executor.2" capability=36 scontext=system_u:system_r:kernel_t:s0 tcontext=system_u:system_r:kernel_t:s0 tclass=capability2 permissive=1 10:15:32 executing program 5: r0 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x46e2, 0x0) r1 = dup2(r0, r0) r2 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000040), 0x2, 0x0) mount$9p_fd(0x0, &(0x7f0000000000)='./file0\x00', 0x0, 0x2000000, &(0x7f00000004c0)={'trans=fd,', {'rfdno', 0x3d, r1}, 0x2c, {'wfdno', 0x3d, r2}, 0x2c, {[{@debug}, {@debug={'debug', 0x3d, 0x10001}}, {@version_u}], [{@hash}, {@euid_gt}, {@fsmagic={'fsmagic', 0x3d, 0xfffffffffffffffc}}, {@euid_eq={'euid', 0x3d, 0xffffffffffffffff}}]}}) 10:15:32 executing program 6: syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x100000, 0x19, &(0x7f0000000200)=[{&(0x7f0000010000)="200000000002000019000000500100000f000000000000000100000005000000000004000040000020000000dbf4655fdbf4655f0100ffff53ef010001000000dbf4655f000000000000000001000000000000000b0000008000000018000000c20500002b0200000000000000000000000000000000000073797a6b616c6c6572000000000000002f746d702f73797a2d696d61676567656e36383530363930383600"/192, 0xc0, 0x400}, {&(0x7f0000010100)="000000000000000000000000244b8e9b57f04b59aa229cc218853f95010040000c00000000000000dbf4655f00"/64, 0x40, 0x4e0}, {&(0x7f0000010200)="0100000000000500400000000000000000000000000000004700000000000000", 0x20, 0x560}, {&(0x7f0000010300)="02000000030000000400000015000f0003000400"/32, 0x20, 0x800}, {&(0x7f0000010400)="ff070000ffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffff0100ffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffff0000000000000000dbf4655fdbf4655fdbf4655f00"/4128, 0x1020, 0x1000}, {&(0x7f0000011500)="ed41000000080000dbf4655fdbf4655fdbf4655f00000000000004004000000000000800050000000af301000400000000000000000000000100000010000000", 0x40, 0x2080}, {&(0x7f0000011600)="8081000000601020dbf4655fdbf4655fdbf4655f00000000000001004000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000030000000", 0x60, 0x2300}, {&(0x7f0000011700)="c041000000400000dbf4655fdbf4655fdbf4655f00000000000002004000000000000800000000000af301000400000000000000000000000800000020000000", 0x40, 0x2500}, {&(0x7f0000011800)="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"/768, 0x300, 0x2580}, {&(0x7f0000011b00)="020000000c0001022e000000020000000c0002022e2e00000b00000014000a026c6f73742b666f756e6400000c0000001000050266696c65300000000f0000001000050166696c6531000000100000001000050166696c6532000000100000001000050166696c6533000000110000009407090166696c652e636f6c64000000", 0x80, 0x8000}, {&(0x7f0000011c00)="0b0000000c0001022e00000002000000f40702022e2e00"/32, 0x20, 0x10000}, {&(0x7f0000011d00)='\x00\x00\x00\x00\x00\b\x00'/32, 0x20, 0x10800}, {&(0x7f0000011e00)='\x00\x00\x00\x00\x00\b\x00'/32, 0x20, 0x11000}, {&(0x7f0000011f00)='\x00\x00\x00\x00\x00\b\x00'/32, 0x20, 0x11800}, {&(0x7f0000012000)='\x00\x00\x00\x00\x00\b\x00'/32, 0x20, 0x12000}, {&(0x7f0000012100)='\x00\x00\x00\x00\x00\b\x00'/32, 0x20, 0x12800}, {&(0x7f0000012200)='\x00\x00\x00\x00\x00\b\x00'/32, 0x20, 0x13000}, {&(0x7f0000012300)='\x00\x00\x00\x00\x00\b\x00'/32, 0x20, 0x13800}, {&(0x7f0000012400)="504d4d00504d4dffdbf4655f00000000647679756b6f762d676c6170746f70320000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000006c6f6f7033340075782f746573742f73797a5f6d6f756e745f696d6167655f650500"/128, 0x80, 0x20000}, {&(0x7f0000012500)="0c0000000c0001022e000000020000000c0002022e2e00000d0000001000050166696c65300000000e000000d807050766696c653100"/64, 0x40, 0x28000}, {&(0x7f0000012600)='syzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkal\x00\x00\x00\x00\x00\x00', 0x420, 0x30000}, {&(0x7f0000012b00)='syzkallers\x00'/32, 0x20, 0x38000}, {&(0x7f0000012c00)="000002ea0100000001000000270f240c000000000000000000000000000000000601f8070000000006000000779b539778617474723100000601f00700000000060000007498539778617474723200"/96, 0x60, 0x40000}, {&(0x7f0000012d00)='\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00xattr2\x00\x00xattr1\x00\x00', 0x20, 0x407e0}, {&(0x7f0000012e00)='syzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallers\x00'/128, 0x80, 0x50000}], 0x0, &(0x7f0000012f00)=ANY=[@ANYBLOB=';']) 10:15:33 executing program 3: r0 = perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x39, 0x0, 0x0, 0x0, 0x0, 0xfffffffffffffffe, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r1 = fcntl$getown(r0, 0x9) perf_event_open(&(0x7f0000000100)={0x0, 0x80, 0x6, 0x1f, 0x0, 0x1f, 0x0, 0x8, 0x40081, 0x4, 0x1, 0x1, 0x0, 0x1, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x1, 0x1, 0x0, 0x1, 0x1, 0x0, 0x0, 0x1, 0x1, 0x1, 0x0, 0x1, 0x1, 0x0, 0x1, 0x1, 0x1, 0x0, 0x1, 0x1, 0x0, 0x0, 0x1, 0x1, 0x0, 0x1, 0x2, @perf_bp={&(0x7f00000000c0), 0x4}, 0x40, 0x1, 0xa7e, 0x6, 0x5, 0x4, 0x1, 0x0, 0x800, 0x0, 0xfffffffffffffffa}, r1, 0x10, r0, 0x2) r2 = socket$netlink(0x10, 0x3, 0x0) r3 = fcntl$dupfd(r2, 0x0, r2) sendmsg$nl_generic(r3, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000000)={&(0x7f00000002c0)={0x1c, 0x52, 0x200, 0x0, 0x0, {0xa, 0x0, 0x2}, [@nested={0x8, 0x1, 0x0, 0x1, [@typed={0x4, 0x0, 0x0, 0x0, @binary}]}]}, 0x1c}}, 0x40000) 10:15:33 executing program 5: r0 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x46e2, 0x0) r1 = dup2(r0, r0) r2 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000040), 0x2, 0x0) mount$9p_fd(0x0, &(0x7f0000000000)='./file0\x00', 0x0, 0x2000000, &(0x7f00000004c0)={'trans=fd,', {'rfdno', 0x3d, r1}, 0x2c, {'wfdno', 0x3d, r2}, 0x2c, {[{@debug}, {@debug={'debug', 0x3d, 0x10001}}, {@version_u}], [{@hash}, {@euid_gt}, {@fsmagic={'fsmagic', 0x3d, 0xfffffffffffffffc}}, {@euid_eq={'euid', 0x3d, 0xffffffffffffffff}}]}}) 10:15:33 executing program 1: r0 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x46e2, 0x0) r1 = dup2(r0, r0) r2 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000040), 0x2, 0x0) mount$9p_fd(0x0, 0x0, &(0x7f00000000c0), 0x2000000, &(0x7f00000004c0)={'trans=fd,', {'rfdno', 0x3d, r1}, 0x2c, {'wfdno', 0x3d, r2}, 0x2c, {[{@debug}, {@debug={'debug', 0x3d, 0x10001}}, {@version_u}], [{@hash}, {@euid_gt}, {@fsmagic={'fsmagic', 0x3d, 0xfffffffffffffffc}}, {@euid_eq={'euid', 0x3d, 0xffffffffffffffff}}]}}) 10:15:33 executing program 0: ioctl$sock_SIOCGIFINDEX_802154(0xffffffffffffffff, 0x8933, &(0x7f0000000240)={'wpan3\x00'}) r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) syz_genetlink_get_family_id$nl802154(&(0x7f00000006c0), r0) r1 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x46e2, 0x0) r2 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffd000/0x3000)=nil, 0x3000, 0x0, 0x13, r1, 0x0) syz_io_uring_setup(0x4b9f, &(0x7f0000000140), &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000ffd000/0x3000)=nil, &(0x7f00000000c0), &(0x7f00000001c0)=0x0) syz_io_uring_submit(r2, r3, &(0x7f0000000240)=@IORING_OP_FADVISE={0x18, 0x0, 0x0, @fd, 0x2}, 0x0) sigaltstack(&(0x7f0000ffd000/0x1000)=nil, 0x0) 10:15:33 executing program 2: r0 = add_key$user(&(0x7f0000000040), &(0x7f0000000080)={'syz', 0x2}, &(0x7f00000000c0)="81596ed28367295dc937053bb1dabc622f2c60f8e09b233ba150f1fcbb003b3b69d2760c9db0cfdce7147df65dd9251124993d1193f5f768020cbbc3069ed806372906fcceea9d8fac183ede49177de669acef10098d6af84fae3327372736f2f6c33800a0f10bdd12b5069cb97f3a783cc831522eb81c4fa1a7c01b2fc0dc5223558ede9a10bd0acaf57c11aa8c31867ef4a4504c0c908a14085da8d04fe6afe7939f2a515002a025eae47c8efd6b814f9d957c6c9b44f1f7d200ae3a48e44bcb17b43aef323c326315eb02e2f50b34f2c8", 0xd2, 0xfffffffffffffffa) r1 = add_key$keyring(&(0x7f00000002c0), &(0x7f0000000300)={'syz', 0x0}, 0x0, 0x0, 0xfffffffffffffffd) add_key(&(0x7f00000000c0)='dns_resolver\x00', &(0x7f0000000100)={'syz', 0x2}, &(0x7f0000000340)="a407c3efc1edfab7037255db440500824001767ee5522ccc6b4a4c358e2f414cae835269010f99ea715085731fa8ad0600", 0xfffff, r1) keyctl$search(0xa, r0, &(0x7f0000000200)='keyring\x00', &(0x7f0000000240)={'syz', 0x1}, r1) syz_mount_image$nfs4(&(0x7f0000000000), 0x0, 0x3c, 0xaaaab26, &(0x7f0000000180), 0x40, &(0x7f00000001c0)) 10:15:33 executing program 5: r0 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x46e2, 0x0) r1 = dup2(r0, r0) r2 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000040), 0x2, 0x0) mount$9p_fd(0x0, &(0x7f0000000000)='./file0\x00', 0x0, 0x2000000, &(0x7f00000004c0)={'trans=fd,', {'rfdno', 0x3d, r1}, 0x2c, {'wfdno', 0x3d, r2}, 0x2c, {[{@debug}, {@debug={'debug', 0x3d, 0x10001}}, {@version_u}], [{@hash}, {@euid_gt}, {@fsmagic={'fsmagic', 0x3d, 0xfffffffffffffffc}}, {@euid_eq={'euid', 0x3d, 0xffffffffffffffff}}]}}) [ 423.281127] EXT4-fs (loop6): Unrecognized mount option ";" or missing value 10:15:33 executing program 7: r0 = socket$netlink(0x10, 0x3, 0x10) sendmsg$NFT_BATCH(r0, &(0x7f0000001200)={0x0, 0x0, &(0x7f00000011c0)={&(0x7f0000000580)=ANY=[@ANYBLOB="140000001000fbffffffffffffff000003"], 0x28}}, 0x0) r1 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x42, 0x0) io_setup(0xffffffff, &(0x7f00000000c0)=0x0) sendmsg$NFT_MSG_GETSETELEM(r0, &(0x7f00000001c0)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x4000000}, 0xc, &(0x7f0000000180)={&(0x7f0000001240)={0x1d04, 0xd, 0xa, 0x101, 0x0, 0x0, {0x1, 0x0, 0x9}, [@NFTA_SET_ELEM_LIST_ELEMENTS={0x1cf0, 0x3, 0x0, 0x1, [{0x4b0, 0x0, 0x0, 0x1, [@NFTA_SET_ELEM_KEY_END={0xe8, 0xa, 0x0, 0x1, [@NFTA_DATA_VALUE={0x90, 0x1, "9ac10d4bbc517132976f2fd8ac406bd59e1c5be2caa3188168bf4151e77c7997989e6846d37ba2eb048894e0a726336860a053c286123d3afabe2cc95e822b0f496bf609cb72a34f67be74061d19d15ad388c86b912e8491f0ed746251fe96759fb7698d1d8582564ba100331a38e727e90ca69bffb02108c3cc65413bcd3109baaed3e3b0a605e266b7a0cc"}, @NFTA_DATA_VALUE={0x53, 0x1, "643cfe93acc2dc0f0c4d2b188204a08ac211723feea34380e94dadc5e69e84a3bc3b2ebd892933e19d95a6125f90c951220eabeb2d5ca54e1ce7e8c719654f317a2170ed2c10fe507eadd56ce1a2e0"}]}, @NFTA_SET_ELEM_KEY={0x3b8, 0x1, 0x0, 0x1, [@NFTA_DATA_VALUE={0x53, 0x1, "0dfc95281047c17dfc0335f5df9bac3e5b2f54ec7c19cfda72102ef9a5f99d96bc0608d6843391457ff078b46150cc4af86f4ae7dd94ceac75faf94bcca6c5d04dcea08c9c7f558e8a02ddcbfdb94f"}, @NFTA_DATA_VALUE={0x100, 0x1, "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"}, @NFTA_DATA_VALUE={0x9a, 0x1, "361c7e007eb5cccf6d30d305082507ce234af01f5790c7bdd2f602955c66b2b0dddaa87d48e4ee72e63cf03b0b3e907bc66457a84dc2fe1b098c62fe91413bacbd4379208431edecb40d00b058d9fceaa534a9631cc5971ba76a53d0e0825f0956176b9ba3f799469f95fb5d49fdee902f437c1fcd30f468ac7060cd1c98122875f187c2058b5a1f42bb3733e54e9ca5f81006bea0e9"}, @NFTA_DATA_VERDICT={0x2c, 0x2, 0x0, 0x1, [@NFTA_VERDICT_CODE={0x8, 0x1, 0x0, 0x1, 0xfffffffffffffffd}, @NFTA_VERDICT_CHAIN={0x9, 0x2, 'syz2\x00'}, @NFTA_VERDICT_CHAIN={0x9, 0x2, 'syz1\x00'}, @NFTA_VERDICT_CODE={0x8, 0x1, 0x0, 0x1, 0xfffffffffffffffe}]}, @NFTA_DATA_VALUE={0xcf, 0x1, "2c3ea9b4e266be84b7518c73b551567aa8ce40a8910b482854ecad5859276da8faca51b16d5ad206175130f6054858964de9bbb1c6412ed6962d15a5f9d48b923c22b777b698277e7a42a73a5821d5b9dfc04a14ff923a5173df1a620a2a9d85c08121f5e1413479e9c5512e5e7ad9ffd8198ff8f730ce525dde98b0396a5586d819a00c3df1c15da374f387ce69d82def9a1196c936bf20451d3d8194eb8febd9ad48c007197bfd309bdea32abeb02cf87445a4e840a1c7e0593c3095cc06021e91e3f9afd056277fdc98"}, @NFTA_DATA_VALUE={0x7, 0x1, "a08181"}, @NFTA_DATA_VALUE={0x1f, 0x1, "119941ed89b270dc0d6cbe1120320e29f2327f0bc9a77c2ddb9f15"}, @NFTA_DATA_VALUE={0x9f, 0x1, "41408cfe3b8a8b985e467548589372f4f7eed252b2acd5d9011fe8d1796e113db3f6055d53bc9ed7390877c12446868e7a9a8de18e0d9823f2680abfc70d39e6bf50dac6a7071b2b77996973406306e8e4c242fc28b12ef3aaf74dac358904aa4bcbed2c1f56cb16279f9ebcf21c2ea39bbc53949d864fe0d0dbbafcdf5bc3e2b1bfdb62738910be6139a2b5fd17842a96cfe9059765cb1594f1ed"}]}, @NFTA_SET_ELEM_TIMEOUT={0xc, 0x4, 0x1, 0x0, 0x7}]}, {0x1208, 0x0, 0x0, 0x1, [@NFTA_SET_ELEM_KEY_END={0x11ec, 0xa, 0x0, 0x1, [@NFTA_DATA_VALUE={0xf2, 0x1, "c5bf94f4feb417e3520a9b54c1639c7621c146885e26f582c3e91f0fc448af16d2bd410e5c225fc01427fe7441dab35d90b412fc44db2e3f1e78caf46308fe4d4eed3a0a4ad9f712f3ba844ed3c10ddaea5f9987ff8de5f52c6f373cd106e1e0d5885b858779298e8af26725c4665da45e321fce44e701761070947ffa6c5df6b13c91380b3b7c32187d80c5301d7183aaf3a56a20095f42c7ac0622ccfd48ba14f02a1ac84ca93115b9662fff82efdff70e28675be2d510b5d163861578609d2267d5ed9773a733e8c711deca87fdc22afc8f67d7004e2aadc013308cbae7f91771b05c44c284a367794c2b2d2a"}, @NFTA_DATA_VERDICT={0x4}, @NFTA_DATA_VERDICT={0x10, 0x2, 0x0, 0x1, [@NFTA_VERDICT_CHAIN={0x9, 0x2, 'syz0\x00'}]}, @NFTA_DATA_VALUE={0x1004, 0x1, "4879561a390737299fba5cf5378c4b7f1615f3965818cbf460a5f0c1164f20996018571e25511646fda875811a6b59955bae695f508271cb7368c8a81d35bea4ac0ddaa464fe3ebde832e49deadd3ac6e7520ae0118ef0eb1f2d77eccc8a16570dcda3752697f44f9179029caee6d8a6ed688129f9e4b17143bd186bafb9c935c050c6c2012181a1af9093ae4a8064ad6d4578fa8e524b8caab7629d7d4c526fd346bf1e63df608673bd0d3dd4b9507bb5b326931f7a6d4cd924f770c132a9bafd405d01bee22e4075c4c96e65fa762374c5d17c1ef40c0d976d44228aa4b809278bc96958e974ce4d174b0ac1c0be79cb87bc5cee16a7dc521312ec6667842d6fadc73a19d94ff5c8cb434fc3555502cb5ea0f6b8f6fa545743551948cc2ad1cef7e6cf5054f726b84356af9c79c3a9aa1e7990c1db4e2eca283f456b1f03be6070435b4d9960c114f070299b3ebdede6c8b5a88a1abedeb8d33fd263a9722ec59b69ed321b2944ad82c9ed0d8dd09fb634c226390fb60414d929186e6b28e70310c7413d21e326b31d7175fb64cbc6799b7e05e07aec7504b88fe1fd37ba6ef7473d8aed48d7995f6bc53c88dce5da6f602bb54bd3169d587a9eee135d15d5022fdcb51d11e1931140829ccff45278fee542d4122e77ad3ae221bf20a28cae2eaf4203949c74d23db5dec8cc7d4a232a30ea0c3005f0969b4a5f061eb2ead8411830ee71a77dd7dcd503f2e4748feb895183d8f0eb3cd50b412be0722a2a429a3f06d3de8008d91edf401843455b92a8cf45117d116828b2722a50c70e2a1fee6ca31cf73a277a5cf54caaa1e660bddba43c6f75b95d80b998c69a5f473e06673de3eeb0c1435d9815c8765fae298944b931c205fd1089ea9d44e03d2e2730b80d53e7775055b4ac895a4384c70184956d7017c4afed568f7bc68fabba0878d35440e3031f37d4a8e8567abe38fea1c101274e18de34f7c6d65892c79e33f3a713d6514d3f23a8175a164dd5eb03033d8458d699cf83245129ab3255992912c8c5a843f593cf263ece916b3f844ffaf4a6a9d056df281e89a0535b141eed1e69e94e4eec918c6454a98834bf6e2da08c68ab4f68def456fbd446c5248e2e8d2be65341bb1f2bb29ad4b091dbe84e9f086bbb24c8eb8da0466301cabdfc4e821d72389efbf1dfb53ffd7cec108687f5a6aac891339f177a8d6ee2b2112514d06ba3de5649c4af264cfde78af0b54a096508349be5aa169ba0ee2f1042897ff8802b888217fd23c8cc414de05a00d7d24f329e14c3c67f20dceccfc563888662f5d9c8bdb12471014700a562cd69a8ef4088fdcafdc2fdf0a8e7bbb9233167c43d2bef596a4123e17990c46520973eea286939106003443781407385b8fed3071305c696f87df53642c39ea796215fa3ad46ca88bde109d4dfceaf8ea3faf34641313196182d79888a4fdcdb38faf95d7e949f9a22032ee4def2979b91d44430cf681dc861497205967e7015b976062d736eba656f32cd6695bb94d03367967d4e4a6e50c13dbdcb55252bce48081f78b2087f69a3eb887b009f039b9efb5fc90dd7983939b077f3509060c626a1109d22ef7bce41859aba6878de59b51bf8e4496bdc131bed83347ae10773559e1b28c7c53c05937f25d63af79114ee841fc63ef34f954fea40db15299670acc446610632493e770fa52b9a0e9a04a90b6f0f2c2477ad8c401f9606705d1a674dbaab7d6eedf5577acb0d7fbe71029348c8f6f77b51b060b6b8f1c1dc84f74db9826974831d8a45e5d385b2095249619f9932f8ed2acea7f5b6b1bd35486ec7a29bb548688049754d24405fe2e1a47a6ceea07055e6ecda45ab463ff5406d8795d781b4283fb797e56ec32e41b0c6aee389cff21bb1aff93f590b342627d45583618b24f71ac52fea5c476ba98140ed3626886201576bfa2f4fdc2488d3c30acb9beb31b82600182e0672c896558455552e3c83763137ed6c38348e1809ba4204ba00500490a5fea98dca987bacc46fa420399b006437f7733464d3b7e4a29a767ac670078582356665cd49f8dba795c194b104e48892022635f12881988ab9f315d41861bf5c57a3dcc0853580a0a4e7453ad606f105f27b42984ecc9ecc026b1a182995901477dfd795dd90a2e77fd31b77423d41ceaeb6e71a85576b1fb3098edabbf5b82890a5e55e9879ef6c9f2e66d9e037c2ea8b982f9ed12348013cb8561609a96647f01e7c2d86b27bf86b5a9deb877abe37348d1bb186cde946e70e873615bda46e91021438dae3b5cbce48caa3bc558e33f2a972e7964884b93be693a51d019c796e29142dcfbc2365984efb6b534e81884a8b339df038ab0ffb5b83a2aa3ddca169bad2cef023e93d22d881084abe5452e2bc74e3efc44af4cc8f1dd3411a69072280ef3403d752829df93f889d0941be32ac5ab55eaabf0249a65eb7a180b3c9189ce09d6a06db4da6b1d75e40f474db4adbd756a28ca8d63ec00f0c00130c858418517d8fe0e18c502231590b782bdffeb7bbedbe73014fabc53521a98b7bb8dd53e18128205c152b2219bbfe33a34569b03cebcef69357b95adae347ce2c1a6456a5ae5c4226db4904af4e925a5ac6fda8103e090baac8b2edc3116ea404031d0813cebbd9174ae581417f24408b4c6447b4d16e23527c6d69fd120b3c9f038016e9d2c977ecfe25298603fa04ed76be1a6f5423102aaafb6fd0b0939305196db94e62dfa1ff5af3842a76be5cedd5e0c2c607f418f73ec08464a6006483843c3e03df8c7004372bf3177fd598866437725d14bcd79a5c4e39e47040c40959ec391f224cb42f145877e3e22dd2b7a13550d16eb673c11d5160b12763d0997285d7a570d24e51187b5ff9aa0c644a03f8b97c253474827b02cbe9a26090fa6046648504e5991b971040773a06311d7dde13450a02c1ab160840f7311cbe8ffbe84571c1214f97383eff94b1e939d31f95a7eef47afa0e2947641dd8e4226ed1a6d53dedceabf22a9cce65054faf73b3ba0422982626f8ca53745bfc75dd681cf149a64c4a5d8ff2aad342de4ace272a9cafb5baf6127928b77b3f8fad604bdd943b47f6079e089504985b572a51cb3aa7896ad530c8e7e6687abb403362cb7ed8f5fba1ebaae3c5878b2720fc8e97762eaf2599271029401dbe9835817111f58d4ca02dd0e03d32ab4aa438bec24c54e420d7105bf8c42a70db1a8e1f0973215b081ec1929fb1e3f6d368fce6b8237c2ef9ba94341d431ea798333ac5766c6d84e8ed80fd87f72075425387aba14f2d0da01ae3afa49c643e6ef818bab9fa361abeb1af11de0f51c7e09f3725919ad9d6c09c144dc926d5f84d0c95c4f5be5837e7257ed45c875f4c78bd29500f026d8961c2fc61d0fb9ef0d1f00e91ca6751069b854bb8823c24ed6c2f5a2f1823d1cd2d357443deb4494c85b78aac77e98c80425e11fd1cedc32d67c9d1ea08274986a4795101b266ba83c8aacafc2e55e842ba5725ae4813cd68aafae081bfae2fc68cc769c43d26512f849d335d9b92188c1881ef11140f4e69a3c293396fe7d010fda1c33dfb8a39a27bfa38ccc4dbba0d3383b6b15a52b7af9b52d8ea0ddf54e4221013da89dd72675a7a69606a3d5fbb32d9460539546e11bf1808d34cdaa4dfe1fcaa5897e4455a5ab2944bb5fb3b662cc36697deb9f4dc215125ea725b3087ec2d6823d2fb61b179080308bf0420b17c316f629fe2a135f1f819fa0ef9b711b40c59f257d88a2a351a1db94b7049d20e66a7967d670bdf670cf640af4846654ca6880d64984565e49e4c19bf130c163fef57c4da16f249e136a0c480967e336f36d90c0c4534274a3faef459d9ce1ec49248fcf4dc0389e8cef9796fe20fed65527d4ca7126641c4a66fbee9dc9f796cd912c6542fd1247263e80185c62fc842d377018a3cc6caa8336ff3854d7c0c57f4a86146908fd2fed3258997fe82437809b37f9941bb316bdc863ab58bb849dfc3fbbdbd4e65fd8e7b76f8f8e16b0ee1cb01572e79712da9f5997ae54168f17f0fcd8a96ca8f90ff9371569809e05c3d3c1e5e5c092ad0f7b0702f5d93b639a5aebf07d4b5f2341a76efbc2b3b33196b11658ca6bd893a682cbe8f667b7e9ffe3509e0e9784dcc7ebcc5bf09787ee9ecf2164c32e1a57ad780c6b03be5630416fbb7661cb56025051cc3ddb499eacdb3533c21eab00f405576fa9682d8ce6558ed0b35946c91ade47390bef7c66330e0c0f418f893ccd579f760c4e1c0e8ab72b00b0089cbffd3701ed687e2bbaacdafe11df07b9e7b56dbfd105feb1146712653d093ef4d692e937a1d771bced32186a8f65ac80113587cc8cf54de80403c9b9eb7fb9266a9652b4b5d46e9e5514410498838e40e7ee99bc1d9128a106e8390d0dc15677ce315ef3c2e0862b5516592424cc815d06d0b8b37603632531713dff4ee79b113b9c523cf9a7e0eb277d949b98849e5461c4caf83d65af98bf665f3b2169fe015ce495270ff0a690b5b609ba98ea1c42fd2a87f12087bba44dfaaad5289f40627bec7cbfd6b390b6c6c4f327f1f89627d67d92e082583e1d44a66fe22b6dc038ce501386e7009903ae98372b2e0630d1e97c7c8022ddc2e4098719788577180037334e16f370f0c28253551fbbe7098ce30e471bc38969aeed2e9bc06a5f7076de75d8d7cc190f66945b6a8ff5fddd92475b46e426f7651eaed98b4cea5eb37cb8afc2676423e36ee6da58f19eb5f0ef9a86d0c9a0a4722885fbd1e2210dc68b533f04d83c35ed8bad9b05607d267512e468c485f30b355dfc1a95a3ba39258a5a26bdeb0c0f734b497901c927487ba6d4524a2a90a5009c6fb579d447645974a44abc8257ccf3b659ad830f40a44195142783eebebe54cd1fdda6f6934246c54c0d23cf069a1849aa11de7cbb0e5fe30f8b5773c2cc9ccc2a512fdf286f33f54b282501dc550be14eeb67764ae5c998dc64d2df7fdd7850ed9e8b87b93cadb5aeb15838dc13654ad2a8463add48953257d4bb4a82073f56f2c3c310962da25f8f335013599ec2f84bc853cf92790a717ad3cd387134469c4cf9da4b334f3496ad15928fe00673db41ace58a8e79d7f03a003f3863a23fe1f99e0569b1a742a0ecd198ce322ec02cc560e9f3b138b7ae40c0eee5de3ae6f1f2bff03279ac2b4bb5cda0665d64c822900485150966c936cfd1f34ae059f7875f1332ed48e06ee64d3707000eff3365b0b0ca0257d5b541634df6ca13706e0a9e92aa90d0a71c1fc6632b46cf44d9a9e378f1cbc314af4da5f4c099c269bf49cad8012d64561f9b7f61b8411ba3b7b449befcc853b6c3a5ba161062678bedcb579e1698e048e7268d618be2d0167e2e06e7592461d57faae036a278c097b7b3357d7d7eda2dab111ec48481fe12cdf62be5fbb5092c4578dd2223e26b87bc07aebbba7f2d52a1c8d18e6ab4491a37e5347415084174112e031995c55db2fa8d626b256af1967a0f23882732b96474b2454ebdb140cb2425bf23ed5c479bddad5b6131444331bf86241998bb0eed918b4d5d3fe630473e62970ca1c76dc283670c1b516f73bce371d69239576ec3b8de51b814d19339cff96d2df0b7a47127c95192a2fb002e6108807816330ff10c1b9593f317b745c9f0888af91e5204a2c5c4791cbc04e8aef96453efcca945b508c2cca13865dffcf3edc98c48f62c402769b383443cbd3b67e06698682f6b324768daad674d31de0b5e01404a9124e39dfbadddfc66a89abba803f5b902e"}, @NFTA_DATA_VERDICT={0x2c, 0x2, 0x0, 0x1, [@NFTA_VERDICT_CHAIN={0x9, 0x2, 'syz1\x00'}, @NFTA_VERDICT_CHAIN={0x9, 0x2, 'syz1\x00'}, @NFTA_VERDICT_CODE={0x8, 0x1, 0x0, 0x1, 0xfffffffffffffffd}, @NFTA_VERDICT_CODE={0x8, 0x1, 0x0, 0x1, 0xfffffffffffffffc}]}, @NFTA_DATA_VALUE={0x67, 0x1, "1f554f6fb7e2db46dda91b16b2583c00bce34ff29cfef5b5271d8c2fdcd25a8a602a396c8d1d3dec2a939e8bb6786085f43eee31ab3690f3746fb0a942975af20c3cd5da32a69f14219ef4579ee752798733564edeb88398c91ddd19dc513e1a5efe94"}, @NFTA_DATA_VERDICT={0x48, 0x2, 0x0, 0x1, [@NFTA_VERDICT_CODE={0x8, 0x1, 0x0, 0x1, 0xffffffffffffffff}, @NFTA_VERDICT_CHAIN={0x9, 0x2, 'syz2\x00'}, @NFTA_VERDICT_CODE={0x8, 0x1, 0x0, 0x1, 0xfffffffffffffffb}, @NFTA_VERDICT_CODE={0x8}, @NFTA_VERDICT_CHAIN={0x9, 0x2, 'syz1\x00'}, @NFTA_VERDICT_CHAIN={0x9, 0x2, 'syz1\x00'}, @NFTA_VERDICT_CODE={0x8, 0x1, 0x0, 0x1, 0xffffffffffffffff}]}]}, @NFTA_SET_ELEM_EXPIRATION={0xc, 0x5, 0x1, 0x0, 0x1ff}, @NFTA_SET_ELEM_OBJREF={0x9, 0x9, 'syz0\x00'}]}, {0x228, 0x0, 0x0, 0x1, [@NFTA_SET_ELEM_OBJREF={0x9, 0x9, 'syz1\x00'}, @NFTA_SET_ELEM_KEY={0x10c, 0x1, 0x0, 0x1, [@NFTA_DATA_VALUE={0x50, 0x1, "98b482981f0e833c5eb29e20e9ea5e730abe89d65d0da036b7e0e5941a47e79581f8f7adec706fd79910115f630b068adb822c232ac39d6315e8e9cc5801c44c753eb063f28a7440428cae7e"}, @NFTA_DATA_VERDICT={0x58, 0x2, 0x0, 0x1, [@NFTA_VERDICT_CODE={0x8, 0x1, 0x0, 0x1, 0xfffffffffffffffe}, @NFTA_VERDICT_CODE={0x8, 0x1, 0x0, 0x1, 0xfffffffffffffffe}, @NFTA_VERDICT_CHAIN={0x9, 0x2, 'syz1\x00'}, @NFTA_VERDICT_CODE={0x8}, @NFTA_VERDICT_CHAIN={0x9, 0x2, 'syz2\x00'}, @NFTA_VERDICT_CODE={0x8, 0x1, 0x0, 0x1, 0xffffffffffffffff}, @NFTA_VERDICT_CODE={0x8}, @NFTA_VERDICT_CHAIN={0x9, 0x2, 'syz2\x00'}, @NFTA_VERDICT_CODE={0x8, 0x1, 0x0, 0x1, 0xfffffffffffffffb}]}, @NFTA_DATA_VERDICT={0x60, 0x2, 0x0, 0x1, [@NFTA_VERDICT_CODE={0x8, 0x1, 0x0, 0x1, 0xffffffffffffffff}, @NFTA_VERDICT_CHAIN={0x9, 0x2, 'syz1\x00'}, @NFTA_VERDICT_CHAIN={0x9, 0x2, 'syz2\x00'}, @NFTA_VERDICT_CODE={0x8}, @NFTA_VERDICT_CHAIN={0x9, 0x2, 'syz0\x00'}, @NFTA_VERDICT_CODE={0x8, 0x1, 0x0, 0x1, 0xfffffffffffffffc}, @NFTA_VERDICT_CODE={0x8, 0x1, 0x0, 0x1, 0xffffffffffffffff}, @NFTA_VERDICT_CODE={0x8, 0x1, 0x0, 0x1, 0xfffffffffffffffe}, @NFTA_VERDICT_CODE={0x8, 0x1, 0x0, 0x1, 0xfffffffffffffffd}, @NFTA_VERDICT_CODE={0x8, 0x1, 0x0, 0x1, 0xfffffffffffffffc}]}]}, @NFTA_SET_ELEM_DATA={0x60, 0x2, 0x0, 0x1, [@NFTA_DATA_VERDICT={0x4c, 0x2, 0x0, 0x1, [@NFTA_VERDICT_CODE={0x8, 0x1, 0x0, 0x1, 0xfffffffffffffffb}, @NFTA_VERDICT_CODE={0x8, 0x1, 0x0, 0x1, 0xfffffffffffffffc}, @NFTA_VERDICT_CODE={0x8, 0x1, 0x0, 0x1, 0xfffffffffffffffb}, @NFTA_VERDICT_CODE={0x8, 0x1, 0x0, 0x1, 0xfffffffffffffffd}, @NFTA_VERDICT_CHAIN={0x9, 0x2, 'syz0\x00'}, @NFTA_VERDICT_CODE={0x8, 0x1, 0x0, 0x1, 0xfffffffffffffffe}, @NFTA_VERDICT_CHAIN={0x9, 0x2, 'syz2\x00'}, @NFTA_VERDICT_CODE={0x8, 0x1, 0x0, 0x1, 0xfffffffffffffffd}]}, @NFTA_DATA_VERDICT={0x10, 0x2, 0x0, 0x1, [@NFTA_VERDICT_CHAIN={0x9, 0x2, 'syz1\x00'}]}]}, @NFTA_SET_ELEM_USERDATA={0xa6, 0x6, 0x1, 0x0, "43230a34023b98e89a00f6a94a03546fde7caf578db0e973e8b80b349a89dbd802b3da8ec3a9830d5f64fd3424f2973f6ce6c9bbb2660ec442c476b8a2ff44872d49deb1fead95b164e60321dfc4ae70beae24b4734eb94ba2119445deeafbf5b9ae036232295d1a591c51cea099d390a47a1e5491725835521ed443906bf374c9f4cbe7e7e5854d91116724c579fc7ad428584a8d63bf03e4f453eaf6842727cbce"}, @NFTA_SET_ELEM_EXPR={0x4}]}, {0x250, 0x0, 0x0, 0x1, [@NFTA_SET_ELEM_EXPR={0x4}, @NFTA_SET_ELEM_EXPR={0x4}, @NFTA_SET_ELEM_EXPR={0x4}, @NFTA_SET_ELEM_DATA={0x40, 0x2, 0x0, 0x1, [@NFTA_DATA_VERDICT={0x3c, 0x2, 0x0, 0x1, [@NFTA_VERDICT_CODE={0x8, 0x1, 0x0, 0x1, 0xfffffffffffffffb}, @NFTA_VERDICT_CHAIN={0x9, 0x2, 'syz1\x00'}, @NFTA_VERDICT_CODE={0x8, 0x1, 0x0, 0x1, 0xfffffffffffffffe}, @NFTA_VERDICT_CODE={0x8, 0x1, 0x0, 0x1, 0xfffffffffffffffb}, @NFTA_VERDICT_CODE={0x8, 0x1, 0x0, 0x1, 0xfffffffffffffffd}, @NFTA_VERDICT_CHAIN={0x9, 0x2, 'syz2\x00'}]}]}, @NFTA_SET_ELEM_EXPIRATION={0xc, 0x5, 0x1, 0x0, 0x6}, @NFTA_SET_ELEM_KEY_END={0x1ec, 0xa, 0x0, 0x1, [@NFTA_DATA_VALUE={0xb8, 0x1, "9ef055548280320be1ab46b751afcde49ec4cb92edac233605be7cafbe6eb22c5176bf4c5bba80323e5d7121c25dca215b222d484f5ba72fb12015c9f469f16a46f4595c0c5e4d24f83b3419ba4e8998bda611c7f20aacbb46da93e971c1188936a318fb1259915328ac59ac3977a374b60c9886d7bce3e95195e3d282aeef82963cf629adcfdd054a0473c11599b52dbfc09632b1d04107aa9582385c037c0566c5ee636eb9700390e7a5b943368c0b8ee2bc1a"}, @NFTA_DATA_VALUE={0xe3, 0x1, "440a5b2b7c6ed55bc4dcdb67c9798a030dcfa607187de75f80e82e2eb60e346969fa70bce61ab8205a850d97b546fb336fd5483159e50a8dd3e9856517b882d5714a3cb78aee37525cbd6d82618c1829799d03f700d420df14a8dc488138fc711359ed346a5e02cf29cbf2fdf8141043b56e9b827b26fe9002a183dd764812055c9f5afa0fb682f3d1d639bc1d4b39806ba580413ba496837af6ff02d7c8c73b5f3f4ebc8a218158a707713c0d002b24574240ff7201fc1e5c232face36c2c2b5f333afc202681157096bbfbaf7b29bd7cac8d3514fd47d8016ce250cf228c"}, @NFTA_DATA_VALUE={0x4a, 0x1, "4bdf23a79a549194f0776944a6ecd051365009d682a84ca36bf84a96a81b7560ea25e7ff0de8e2f9ec3b525a625eec9dd4a3277a98206cd2bdee54f8d8b68dec9eca7871e80c"}]}, @NFTA_SET_ELEM_FLAGS={0x8}]}, {0x14, 0x0, 0x0, 0x1, [@NFTA_SET_ELEM_EXPR={0x4}, @NFTA_SET_ELEM_EXPIRATION={0xc, 0x5, 0x1, 0x0, 0x5}]}, {0xe0, 0x0, 0x0, 0x1, [@NFTA_SET_ELEM_DATA={0xd0, 0x2, 0x0, 0x1, [@NFTA_DATA_VALUE={0xc9, 0x1, "aa7ec0abe3373b8e5a23263de958138240ebecdafef17efcd89f1c06deccab3d752484dad266edb0b8159ed6dcd426fa63ef292f785c33182260773dac2d704b9904df5f559d15200726ceb27fa2ee94f5da94ebd7fc77310db8730df2b0ee1ba128e64cea94b3957313bfa7d415b1f22cc477bb6bb7deb0df21ca9d4d2191041e7b49af5ec0f2632b609c3f8770167fa05bf1a1350dca3074c75dc19108a0fcac04f1f0eb9aa4004cdbca0a53b668055987da6904e8dc3aa0cc1851f6cf1fbfe916f6be6d"}]}, @NFTA_SET_ELEM_OBJREF={0x9, 0x9, 'syz0\x00'}]}, {0xc0, 0x0, 0x0, 0x1, [@NFTA_SET_ELEM_FLAGS={0x8}, @NFTA_SET_ELEM_EXPR={0x4}, @NFTA_SET_ELEM_USERDATA={0xaf, 0x6, 0x1, 0x0, "22b84efb53480b41eec4c103866a0c018367e106adc512804505d389c61c177f953a4dc192eccf725e76413380da8487be9e0507e426340d905f2cff274a6cc32d20340b0d0885004f8891582d45df60dffea3f7b3490eac240680df6d7dfd18fec14ad0a435e888e9e5fb3ad1573b1dc31f77ac2050484f8399ef6916b9a993b344f96a092a8766e0e4587aa3f81018dd92aca9835675166f972c192b547a5def9555f8f227263ca71ca1"}]}, {0x8, 0x0, 0x0, 0x1, [@NFTA_SET_ELEM_EXPR={0x4}]}]}]}, 0x1d04}, 0x1, 0x0, 0x0, 0x40}, 0x20008886) io_submit(r2, 0x1, &(0x7f00000008c0)=[&(0x7f0000000200)={0x0, 0x0, 0x5, 0x1, 0x0, r1, &(0x7f0000000140)="ee", 0x1}]) r3 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000040), 0x2, 0x0) write$binfmt_aout(r3, &(0x7f0000000640), 0x20) read(r3, &(0x7f0000000100)=""/146, 0x92) io_submit(r2, 0x1, &(0x7f0000000380)=[&(0x7f0000000340)={0x0, 0x0, 0x0, 0x8, 0x16, r3, &(0x7f0000000240)="b6f11291d41e537990de8e72dab807341a4ef76b4f9ad111c024cc34c3472134e8bcd44bb89da4ef6f9a573e31c506eae0d1d67dcf7e269c90b55ca4c9a5d1ec9dffc57ccf8119945eec669357d15dab3e47a2a834df800624b5fab925f7ef9ab447db807b123cf350e1060b370dd17aa91701d936a74df90be55048d52528364a93fb17d5f446bfb105a92e52d31ba9dec9b979d846630772c4e182277bd8f17417dce47ab5e81af5e2c88ba3ce2f6c0310366af308413aaeec29d2337b85d84a034992e8a90eebb93cb1e0d3d5233b13a71a70a573e19c7fd3eb3c", 0xdc, 0x8000, 0x0, 0x2, r1}]) r4 = openat$vcsa(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0) r5 = mmap$IORING_OFF_CQ_RING(&(0x7f0000ffc000/0x1000)=nil, 0x1000, 0x1000000, 0x50, r4, 0x8000000) r6 = mmap$IORING_OFF_SQES(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x1, 0x110, r4, 0x10000000) r7 = io_uring_register$IORING_REGISTER_PERSONALITY(0xffffffffffffffff, 0x9, 0x0, 0x0) syz_io_uring_submit(r5, r6, &(0x7f0000000400)=@IORING_OP_LINK_TIMEOUT={0xf, 0x4, 0x0, 0x0, 0x0, &(0x7f00000003c0)={0x0, 0x989680}, 0x1, 0x1, 0x0, {0x0, r7}}, 0x886f) syz_genetlink_get_family_id$team(&(0x7f0000000080), r0) [ 423.313250] EXT4-fs (loop6): Unrecognized mount option ";" or missing value 10:15:33 executing program 4: r0 = creat(&(0x7f0000000080)='./file0\x00', 0x0) syz_open_procfs(0x0, &(0x7f0000000180)='net/netlink\x00') r1 = creat(&(0x7f0000000000)='./file0\x00', 0x21) syz_open_procfs(0xffffffffffffffff, &(0x7f0000000040)='numa_maps\x00') r2 = socket$inet(0x2, 0x5, 0x101) creat(&(0x7f00000000c0)='./file0\x00', 0x50) stat(&(0x7f0000001cc0)='.\x00', &(0x7f0000001c00)={0x0, 0x0, 0x0, 0x0, 0x0}) setresuid(0xffffffffffffffff, r3, 0x0) syz_mount_image$ext4(&(0x7f0000000280)='ext2\x00', &(0x7f00000002c0)='./file0\x00', 0x4, 0x3, &(0x7f0000000440)=[{&(0x7f0000000340), 0x0, 0x80}, {&(0x7f0000000380)="e420a61d0ed54183ec85850cd1b22dfed40d4bbdd705b13328311247555e7457db3bddcff5f4e8bdb3d55213acce7b74ecd9284faa5fcd104cec7052c5bd756d01b5219d29e32f7b8d5597c348bbda59f08d8251152a468fa680202200b2e5fbe7d41746afb0b52e7c314b8fce2b3348ab90ac80c5277ff19fcfa0f291c5fa5820a19505a184204470654944488a0fbdf0e57c", 0x93, 0x4}, {&(0x7f0000000680)="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", 0x1000, 0x997b}], 0x8080, &(0x7f00000004c0)={[], [{@uid_eq={'uid', 0x3d, 0xee01}}, {@hash}, {@fscontext={'fscontext', 0x3d, 'unconfined_u'}}, {@smackfsdef={'smackfsdef', 0x3d, '^-!\\'}}, {@permit_directio}, {@obj_user={'obj_user', 0x3d, ')'}}, {@mask={'mask', 0x3d, '^MAY_READ'}}, {@fowner_eq={'fowner', 0x3d, r3}}, {@subj_user={'subj_user', 0x3d, '/dev/ptmx\x00'}}]}) ioctl$sock_inet_SIOCSARP(r2, 0x8955, &(0x7f00000001c0)={{0x2, 0x4e22, @multicast2}, {0x1, @local}, 0x26, {0x2, 0x4e23, @multicast2}}) setsockopt$inet_int(0xffffffffffffffff, 0x0, 0x13, &(0x7f0000000180)=0x1, 0x4) bind$inet(0xffffffffffffffff, &(0x7f0000000c00)={0x2, 0x0, @multicast2}, 0x10) ioctl$sock_inet_SIOCSARP(0xffffffffffffffff, 0x8955, &(0x7f0000000580)={{0x2, 0x4e22, @loopback}, {0x6, @link_local={0x1, 0x80, 0xc2, 0x0, 0x0, 0x3}}, 0x52, {0x2, 0x4e23, @empty}, 'bond0\x00'}) link(&(0x7f0000000100)='./file0\x00', &(0x7f0000000140)='./file0\x00') r4 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000040), 0x2, 0x0) write$binfmt_aout(r4, &(0x7f0000000640), 0x20) read(r4, &(0x7f0000000100)=""/146, 0x92) fcntl$setownex(r4, 0xf, &(0x7f0000000240)={0x1, 0xffffffffffffffff}) fallocate(r1, 0x0, 0x0, 0x8800000) pwrite64(r0, &(0x7f0000000300)="af", 0xfffffeb2, 0x0) 10:15:33 executing program 6: perf_event_open(&(0x7f0000001d80)={0x2, 0x80, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r0 = perf_event_open(&(0x7f0000001d80)={0x5, 0x80, 0xfe, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x401, 0x0, 0x0, 0x0, 0x0, 0x1}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r1 = epoll_create(0x7) epoll_ctl$EPOLL_CTL_ADD(r1, 0x1, r0, &(0x7f0000003200)) epoll_ctl$EPOLL_CTL_MOD(r1, 0x3, r0, &(0x7f0000000000)) r2 = openat$vcsa(0xffffffffffffff9c, &(0x7f0000000040), 0x100, 0x0) ioctl$PERF_EVENT_IOC_QUERY_BPF(r2, 0xc008240a, &(0x7f0000000080)={0x1, 0x0, [0x0]}) 10:15:33 executing program 5: r0 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x46e2, 0x0) r1 = dup2(r0, r0) r2 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000040), 0x2, 0x0) mount$9p_fd(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f00000000c0), 0x0, &(0x7f00000004c0)={'trans=fd,', {'rfdno', 0x3d, r1}, 0x2c, {'wfdno', 0x3d, r2}, 0x2c, {[{@debug}, {@debug={'debug', 0x3d, 0x10001}}, {@version_u}], [{@hash}, {@euid_gt}, {@fsmagic={'fsmagic', 0x3d, 0xfffffffffffffffc}}, {@euid_eq={'euid', 0x3d, 0xffffffffffffffff}}]}}) 10:15:46 executing program 0: ioctl$sock_SIOCGIFINDEX_802154(0xffffffffffffffff, 0x8933, &(0x7f0000000240)={'wpan3\x00'}) syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) r0 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x46e2, 0x0) r1 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffd000/0x3000)=nil, 0x3000, 0x0, 0x13, r0, 0x0) syz_io_uring_setup(0x4b9f, &(0x7f0000000140), &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000ffd000/0x3000)=nil, &(0x7f00000000c0), &(0x7f00000001c0)=0x0) syz_io_uring_submit(r1, r2, &(0x7f0000000240)=@IORING_OP_FADVISE={0x18, 0x0, 0x0, @fd, 0x2}, 0x0) sigaltstack(&(0x7f0000ffd000/0x1000)=nil, 0x0) 10:15:46 executing program 2: syz_open_dev$vcsn(&(0x7f0000000080), 0x7, 0x0) r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000040), 0x2, 0x0) write$binfmt_aout(r0, &(0x7f0000000640), 0x20) read(r0, &(0x7f0000000100)=""/146, 0x92) fcntl$addseals(r0, 0x409, 0xc) sendmsg$NLBL_CIPSOV4_C_ADD(0xffffffffffffffff, 0x0, 0x0) r1 = syz_open_dev$vcsu(&(0x7f0000000000), 0x101, 0x400) ioctl$EVIOCSABS20(r1, 0x401845e0, &(0x7f00000000c0)={0x9, 0x44, 0x9b76, 0x20, 0x4, 0x80}) 10:15:46 executing program 7: syz_mount_image$ext4(0x0, &(0x7f0000000100)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0) mount(0x0, &(0x7f0000000180)='./file0\x00', &(0x7f0000000040)='sysfs\x00', 0x0, 0x0) umount2(&(0x7f0000000080)='./file0\x00', 0x4) pivot_root(&(0x7f00000000c0)='./file1\x00', &(0x7f0000000200)='./file0\x00') 10:15:46 executing program 6: io_setup(0x2, &(0x7f0000000080)=0x0) r1 = socket$inet_tcp(0x2, 0x1, 0x0) r2 = socket$inet(0x2, 0x1, 0x0) setsockopt$inet_int(r2, 0x0, 0x13, &(0x7f0000000180)=0x1, 0x4) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000040)={0xffffffffffffffff, 0xffffffffffffffff}) r4 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000040), 0x2, 0x0) write$binfmt_aout(r4, &(0x7f0000000640)={{0x0, 0x0, 0x10, 0x1d5, 0x0, 0x0, 0x0, 0x1000}}, 0x20) read(r4, &(0x7f0000000100)=""/146, 0x92) ioctl$INCFS_IOC_PERMIT_FILL(r3, 0x40046721, &(0x7f00000000c0)={r4}) bind$inet(r2, &(0x7f0000000c00)={0x2, 0x0, @multicast2}, 0x10) setsockopt$inet_tcp_TCP_REPAIR_OPTIONS(r2, 0x6, 0x16, &(0x7f0000000000)=[@timestamp, @timestamp, @timestamp, @sack_perm, @sack_perm, @timestamp, @timestamp, @mss={0x2, 0x2}], 0x8) r5 = socket$inet_tcp(0x2, 0x1, 0x0) setsockopt$inet_tcp_TCP_REPAIR(r1, 0x6, 0x13, &(0x7f00000001c0), 0x4) io_submit(r0, 0x2, &(0x7f00000002c0)=[&(0x7f0000000200)={0x0, 0x0, 0x0, 0x0, 0x0, r1, 0x0}, &(0x7f0000000280)={0x0, 0x0, 0x0, 0x2, 0x0, r5, &(0x7f0000000240)}]) 10:15:46 executing program 5: r0 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x46e2, 0x0) dup2(r0, r0) openat$ptmx(0xffffffffffffff9c, &(0x7f0000000040), 0x2, 0x0) mount$9p_fd(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f00000000c0), 0x0, 0x0) 10:15:46 executing program 1: r0 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x46e2, 0x0) r1 = dup2(r0, r0) r2 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000040), 0x2, 0x0) mount$9p_fd(0x0, 0x0, &(0x7f00000000c0), 0x2000000, &(0x7f00000004c0)={'trans=fd,', {'rfdno', 0x3d, r1}, 0x2c, {'wfdno', 0x3d, r2}, 0x2c, {[{@debug}, {@debug={'debug', 0x3d, 0x10001}}, {@version_u}], [{@hash}, {@euid_gt}, {@fsmagic={'fsmagic', 0x3d, 0xfffffffffffffffc}}, {@euid_eq={'euid', 0x3d, 0xffffffffffffffff}}]}}) 10:15:46 executing program 4: perf_event_open(&(0x7f0000001d80)={0x2, 0x80, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000480)={0xffffffffffffffff, 0xffffffffffffffff}) r2 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000040), 0x2, 0x0) write$binfmt_aout(r2, &(0x7f0000000640), 0x20) read(r2, &(0x7f0000000100)=""/146, 0x92) r3 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000040), 0x2, 0x0) write$binfmt_aout(r3, &(0x7f0000000640), 0x20) read(r3, &(0x7f0000000100)=""/146, 0x92) getsockopt$sock_cred(r1, 0x1, 0x11, &(0x7f0000000000)={0x0}, &(0x7f0000000080)=0xc) r5 = getgid() lchown(&(0x7f0000000400)='./file2\x00', 0xffffffffffffffff, r5) r6 = getpgrp(r4) sendmsg$unix(r0, &(0x7f0000000100)={0x0, 0x0, 0x0, 0x0, &(0x7f00000001c0)=[@rights={{0x14, 0x1, 0x1, [r1]}}, @cred={{0x1c, 0x1, 0x2, {r6, 0xffffffffffffffff, r5}}}], 0x38, 0x4040040}, 0x0) mmap(&(0x7f0000001000/0x2000)=nil, 0x2000, 0x0, 0x20031, 0xffffffffffffffff, 0x0) recvmmsg(r1, &(0x7f0000004400)=[{{0x0, 0x0, 0x0, 0x0, &(0x7f0000002440)=""/24, 0x18}}], 0x1, 0x0, 0x0) r7 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000040), 0x2, 0x0) write$binfmt_aout(r7, &(0x7f0000000640), 0x20) read(r7, &(0x7f0000000100)=""/146, 0x92) write$binfmt_aout(r7, &(0x7f00000004c0)={{0x107, 0x1f, 0x80, 0x270, 0x43, 0x1ff, 0x1d3, 0x6}, "f29fbc77cfe2e1f503057c85edb09f2519586b2f3770730d03446a4476a169ee799181c670b7869a4eea68da57007fb2064b659c2dd6159983c918044a0c2c9669add0a879aa040f01da126de78a88d82f74c94ecd2a66cf488d4f170b5b8c68f34e41b1ea62fda974a04718528d158023f043ecd7c06a6090e33920a8707ccb3db6817f5651f55338988fa15fef87084bd4ea98375972efad8dff2b9ee316a6d0c4cd68cca0d482b924d76dcfaebfd66b597087b845ed31b6faae200a1c05186be408aa7ba224b9e0df12053739ea46e2", ['\x00', '\x00', '\x00', '\x00', '\x00']}, 0x5f1) 10:15:46 executing program 3: creat(&(0x7f0000000080)='./file0\x00', 0x0) creat(&(0x7f0000000040)='./file0\x00', 0x0) r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000040), 0x2, 0x0) write$binfmt_aout(r0, &(0x7f0000000640), 0x20) read(r0, &(0x7f0000000100)=""/146, 0x92) fallocate(r0, 0x41, 0x0, 0x8800000) r1 = seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0xa, &(0x7f00000000c0)={0x1, &(0x7f0000000000)=[{0x40, 0x0, 0x8, 0x1}]}) r2 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000040), 0x2, 0x0) write$binfmt_aout(r2, &(0x7f0000000640), 0x20) read(r2, &(0x7f0000000100)=""/146, 0x92) dup3(r1, r2, 0x0) pwrite64(r1, &(0x7f0000000100)="af", 0x1, 0xed24) 10:15:46 executing program 7: r0 = openat(0xffffffffffffff9c, &(0x7f0000000000)='./file1\x00', 0x802c2, 0x0) r1 = open(&(0x7f0000000040)='./file0\x00', 0x1810c1, 0x0) r2 = openat(0xffffffffffffff9c, &(0x7f00000000c0)='./file1\x00', 0x101802, 0x0) r3 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0) copy_file_range(r3, 0x0, r2, 0x0, 0x200f5ef, 0x0) r4 = openat(0xffffffffffffff9c, &(0x7f0000000140)='./file0\x00', 0x105142, 0x0) creat(&(0x7f00000003c0)='./file1\x00', 0x0) r5 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0) fcntl$dupfd(0xffffffffffffffff, 0x0, 0xffffffffffffffff) copy_file_range(r5, 0x0, r4, 0x0, 0x200f5ef, 0x0) ioctl$EXT4_IOC_MOVE_EXT(r0, 0xc028660f, &(0x7f00000004c0)={0x3, r1}) 10:15:46 executing program 5: r0 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x46e2, 0x0) dup2(r0, r0) openat$ptmx(0xffffffffffffff9c, &(0x7f0000000040), 0x2, 0x0) mount$9p_fd(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f00000000c0), 0x0, 0x0) 10:15:46 executing program 3: r0 = add_key$user(&(0x7f0000000040), &(0x7f0000000080)={'syz', 0x3}, &(0x7f00000000c0)="413991923ecc960861ea6db52c5a91aa03ff85d16694e54cfe9a88507d78c0655ca4120a0c3e82ed4c6042572478678040f59ab4c1d4ade99ded52c613cd0b64e00c010acb0bb03141b0ad0e66577912d1c3bf69c787719a1570590a40081cd3abdc9104035ffaf8e2900ab1bd98a8e59aa724f26d7882121165e309729cd4d2e293f7524bbfb1b1d36e18d45f151cfe326c90f3b6428171ff", 0x99, 0xfffffffffffffffd) r1 = request_key(&(0x7f00000000c0)='syzkaller\x00', &(0x7f0000000100)={'syz', 0x2}, &(0x7f0000000140)='#$[\\$,!\x00', 0xffffffffffffffff) r2 = request_key(&(0x7f00000005c0)='keyring\x00', &(0x7f0000000600)={'syz', 0x1}, &(0x7f0000000380)='&+\x8bv^E\xf4\xbfd\x00LF\xd2\xae\xbd\x9a\xfd\x03\xc1O(U^\xa9W\xfci^/\xd0\xf1~>\xb1e\aZ|pR\x81\"\x84\xd8\xc1\xa8\xa9\xc5\x1fq7\xa6cF\xa8\x87`\xdc\xac\xe1\xe03\xbar\xa0\x8c\x17!\xccQw\xd8i\x95A\xf6?\x8b\xe6|\xc8\x13\xc7L\xa9e\xddY\xa1\xcbLI\x89\xc2A7%\x18\xee\x14S\xa4\xa8\x1a\x84\xb2\xbd\xbb\xaf\xdew\x9e\x19\xe2n\x01\x16\xc3\xd3[=\xde\xc4\xf0\xc5\xb8\x83\xb4\xe1N\x96\x1e89\xb0P\xfe\xfb)9\xf5b\xaa?\"T\x93u;\xbb\x01\xc8\xe4d\t\xd3f\xb5\xaf\xff\x16l(\xa7C\xbbkW9\xe4\x0eS\x18ba\x99\xa2y\xd9\'\x13\xfd^\xc6\x13=\xc4g\xb3C\x1f\xb7\vl\\z\xbes\xbb[j \xd1\x19\xa6\xc1\xd2\xf4\x94~\xe7\xaf[\v\xb1\x83\xdf\\\xc4Z\x93\xf1\x006\x9amx\x11\xfb)\xc5\x11\xcd\xdf\xd1\x1c\xe0\xb9omu8QU\xe8\xe3E@\xe2G\x10\xffV\xda\x87\x9d6\xc5\xe7\xa5\xc0\xbb\x15\xbd|H\xca\xc7\xd3E\xe6C\rV\xba\r\x8f\x13p\x81.\x81JK\xae\xa0\xef\xc3\xbf|\x94\xb56\xc2O\xab\xf4\xdd\xfa\x96b\xb0,\x01\xa8\xf5\xb3iU\xd0<\x9d\\\f\x81\xd2wa\x05\"lS\r\x82)>\xaeE\xa8\xb0\x00', r1) r3 = request_key(&(0x7f0000000280)='rxrpc\x00', &(0x7f00000002c0)={'syz', 0x2}, &(0x7f0000000300)='\x00', r2) keyctl$KEYCTL_MOVE(0x1e, r2, r3, 0xffffffffffffffff, 0x1) keyctl$get_keyring_id(0x0, r2, 0x5) keyctl$dh_compute(0x17, &(0x7f0000000180)={r0, r1}, &(0x7f0000000200)=""/19, 0x13, 0x0) r4 = syz_open_procfs(0x0, &(0x7f00000001c0)='net/rt_cache\x00') pread64(r4, &(0x7f0000000000)=""/39, 0x27, 0x100000000) r5 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000040), 0x2, 0x0) write$binfmt_aout(r5, &(0x7f0000000640)=ANY=[@ANYBLOB='\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00@\x00'/32], 0x20) read(r5, &(0x7f0000000100)=""/146, 0x92) fcntl$setownex(r5, 0xf, &(0x7f0000000240)) add_key$user(&(0x7f0000000580), &(0x7f0000000680)={'syz', 0x0}, &(0x7f00000006c0)="4cdec3f809ec91ddfca4dedd0e3992cc7daff5", 0x13, r1) r6 = request_key(&(0x7f0000000340)='blacklist\x00', &(0x7f0000000500)={'syz', 0x3}, &(0x7f0000000540)='net/rt_cache\x00', r2) r7 = add_key$keyring(&(0x7f00000002c0), &(0x7f0000000300)={'syz', 0x0}, 0x0, 0x0, 0xfffffffffffffffd) add_key(&(0x7f00000000c0)='dns_resolver\x00', &(0x7f0000000100)={'syz', 0x2}, &(0x7f0000000340)="a407c3efc1edfab7037255db440500824001767ee5522ccc6b4a4c358e2f414cae835269010f99ea715085731fa8ad0600", 0xfffff, r7) keyctl$reject(0x13, r6, 0x8, 0x9, r7) 10:15:46 executing program 0: ioctl$sock_SIOCGIFINDEX_802154(0xffffffffffffffff, 0x8933, &(0x7f0000000240)={'wpan3\x00'}) r0 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x46e2, 0x0) r1 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffd000/0x3000)=nil, 0x3000, 0x0, 0x13, r0, 0x0) syz_io_uring_setup(0x4b9f, &(0x7f0000000140), &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000ffd000/0x3000)=nil, &(0x7f00000000c0), &(0x7f00000001c0)=0x0) syz_io_uring_submit(r1, r2, &(0x7f0000000240)=@IORING_OP_FADVISE={0x18, 0x0, 0x0, @fd, 0x2}, 0x0) sigaltstack(&(0x7f0000ffd000/0x1000)=nil, 0x0) 10:15:46 executing program 1: r0 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x46e2, 0x0) r1 = dup2(r0, r0) r2 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000040), 0x2, 0x0) mount$9p_fd(0x0, &(0x7f0000000000)='./file0\x00', 0x0, 0x2000000, &(0x7f00000004c0)={'trans=fd,', {'rfdno', 0x3d, r1}, 0x2c, {'wfdno', 0x3d, r2}, 0x2c, {[{@debug}, {@debug={'debug', 0x3d, 0x10001}}, {@version_u}], [{@hash}, {@euid_gt}, {@fsmagic={'fsmagic', 0x3d, 0xfffffffffffffffc}}, {@euid_eq={'euid', 0x3d, 0xffffffffffffffff}}]}}) 10:15:46 executing program 6: r0 = syz_mount_image$vfat(&(0x7f0000000080), &(0x7f0000000100)='./file0\x00', 0x0, 0x2, &(0x7f0000000200)=[{&(0x7f0000010000)="eb3c906d6b66732e66617400020801000470008000f801", 0x17}, {0x0, 0x0, 0x1000a00}], 0x0, &(0x7f00000001c0)) pwrite64(r0, &(0x7f0000000300)="e6213bbc43006d1643abc0effe58792c8626955e7d5e3e53716ea654782feff7d36bdff0e6dacb5fa3b6310a9710f19b4754c190cc81583fda20fcf0a85267231f27d246e87ee1314e727ea14b6f6fc2ee5ee2e529ce637276c4cf34e24e8a3abbd9dc7654d7d6c20e2cbde1a4587d63c0254ec50cd6ba041d2e9d5e82907fced4237391eda312dd109c97c51c02e511dc5393ec9c51ac4f6801e891a9bb3d0499add8bbe46bbca0be2692e03808c3b1c48262b40c35cc67f2319b461a4777d651e20b9447ad7a08684aaa5f37a0cf895ec07f125668e960ab02c7f1867d434f8f850fda", 0xe4, 0x15) statfs(&(0x7f0000000000)='./file0\x00', &(0x7f0000000240)=""/177) mount(0x0, &(0x7f0000001180)='./file0\x00', 0x0, 0x2020020, 0x0) 10:15:46 executing program 2: r0 = socket$netlink(0x10, 0x3, 0x0) sendmsg$DCCPDIAG_GETSOCK(r0, &(0x7f0000001700)={0x0, 0x0, &(0x7f00000018c0)={&(0x7f0000002dc0)={0x4c, 0x10, 0x1, 0x0, 0x0, {0x0, 0x0, 0x0, 0x0, {0x300, 0x0, [0x8]}}}, 0x4c}}, 0x0) r1 = syz_genetlink_get_family_id$nl80211(&(0x7f00000004c0), 0xffffffffffffffff) sendmsg$NL80211_CMD_DEL_MPATH(0xffffffffffffffff, &(0x7f00000005c0)={&(0x7f0000000480)={0x10, 0x0, 0x0, 0x10}, 0xc, &(0x7f0000000580)={&(0x7f0000000500)={0x4c, r1, 0x800, 0xffff, 0x25dfdbff, {{}, {@val={0x8}, @void}}, [@NL80211_ATTR_MPATH_NEXT_HOP={0xa, 0x1a, @device_b}, @NL80211_ATTR_MAC={0xa, 0x6, @device_b}, @NL80211_ATTR_MAC={0xa, 0x6, @broadcast}, @NL80211_ATTR_MPATH_NEXT_HOP={0xa, 0x1a, @broadcast}]}, 0x4c}}, 0x44081) sendmsg$NL80211_CMD_SET_NOACK_MAP(r0, &(0x7f0000000100)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x2000000}, 0xc, &(0x7f00000000c0)={&(0x7f0000000040)={0x50, r1, 0x1, 0x70bd2c, 0x25dfdbfd, {{}, {@void, @val={0xc, 0x99, {0x7fff, 0x65}}}}, [@NL80211_ATTR_NOACK_MAP={0x6, 0x95, 0x1f}, @NL80211_ATTR_NOACK_MAP={0x6, 0x95, 0x7}, @NL80211_ATTR_NOACK_MAP={0x6, 0x95, 0x735}, @NL80211_ATTR_NOACK_MAP={0x6, 0x95, 0x7}, @NL80211_ATTR_NOACK_MAP={0x6, 0x95, 0x1}, @NL80211_ATTR_NOACK_MAP={0x6, 0x95, 0x4}]}, 0x50}, 0x1, 0x0, 0x0, 0x20048090}, 0x20000004) 10:15:46 executing program 0: r0 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x46e2, 0x0) r1 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffd000/0x3000)=nil, 0x3000, 0x0, 0x13, r0, 0x0) syz_io_uring_setup(0x4b9f, &(0x7f0000000140), &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000ffd000/0x3000)=nil, &(0x7f00000000c0), &(0x7f00000001c0)=0x0) syz_io_uring_submit(r1, r2, &(0x7f0000000240)=@IORING_OP_FADVISE={0x18, 0x0, 0x0, @fd, 0x2}, 0x0) sigaltstack(&(0x7f0000ffd000/0x1000)=nil, 0x0) [ 436.484438] netlink: 44 bytes leftover after parsing attributes in process `syz-executor.2'. [ 436.496719] netlink: 44 bytes leftover after parsing attributes in process `syz-executor.2'. 10:15:46 executing program 1: r0 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x46e2, 0x0) r1 = dup2(r0, r0) r2 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000040), 0x2, 0x0) mount$9p_fd(0x0, &(0x7f0000000000)='./file0\x00', 0x0, 0x2000000, &(0x7f00000004c0)={'trans=fd,', {'rfdno', 0x3d, r1}, 0x2c, {'wfdno', 0x3d, r2}, 0x2c, {[{@debug}, {@debug={'debug', 0x3d, 0x10001}}, {@version_u}], [{@hash}, {@euid_gt}, {@fsmagic={'fsmagic', 0x3d, 0xfffffffffffffffc}}, {@euid_eq={'euid', 0x3d, 0xffffffffffffffff}}]}}) 10:15:46 executing program 5: r0 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x46e2, 0x0) dup2(r0, r0) openat$ptmx(0xffffffffffffff9c, &(0x7f0000000040), 0x2, 0x0) mount$9p_fd(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f00000000c0), 0x0, 0x0) 10:15:46 executing program 2: r0 = socket$netlink(0x10, 0x3, 0x0) sendmsg$DCCPDIAG_GETSOCK(r0, &(0x7f0000001700)={0x0, 0x0, &(0x7f00000018c0)={&(0x7f0000002dc0)={0x4c, 0x10, 0x1, 0x0, 0x0, {0x0, 0x0, 0x0, 0x0, {0x300, 0x0, [0x8]}}}, 0x4c}}, 0x0) r1 = syz_genetlink_get_family_id$nl80211(&(0x7f00000004c0), 0xffffffffffffffff) sendmsg$NL80211_CMD_DEL_MPATH(0xffffffffffffffff, &(0x7f00000005c0)={&(0x7f0000000480)={0x10, 0x0, 0x0, 0x10}, 0xc, &(0x7f0000000580)={&(0x7f0000000500)={0x4c, r1, 0x800, 0xffff, 0x25dfdbff, {{}, {@val={0x8}, @void}}, [@NL80211_ATTR_MPATH_NEXT_HOP={0xa, 0x1a, @device_b}, @NL80211_ATTR_MAC={0xa, 0x6, @device_b}, @NL80211_ATTR_MAC={0xa, 0x6, @broadcast}, @NL80211_ATTR_MPATH_NEXT_HOP={0xa, 0x1a, @broadcast}]}, 0x4c}}, 0x44081) sendmsg$NL80211_CMD_SET_NOACK_MAP(r0, &(0x7f0000000100)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x2000000}, 0xc, &(0x7f00000000c0)={&(0x7f0000000040)={0x50, r1, 0x1, 0x70bd2c, 0x25dfdbfd, {{}, {@void, @val={0xc, 0x99, {0x7fff, 0x65}}}}, [@NL80211_ATTR_NOACK_MAP={0x6, 0x95, 0x1f}, @NL80211_ATTR_NOACK_MAP={0x6, 0x95, 0x7}, @NL80211_ATTR_NOACK_MAP={0x6, 0x95, 0x735}, @NL80211_ATTR_NOACK_MAP={0x6, 0x95, 0x7}, @NL80211_ATTR_NOACK_MAP={0x6, 0x95, 0x1}, @NL80211_ATTR_NOACK_MAP={0x6, 0x95, 0x4}]}, 0x50}, 0x1, 0x0, 0x0, 0x20048090}, 0x20000004) 10:15:46 executing program 3: r0 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x46e2, 0x0) r1 = dup2(r0, r0) r2 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000040), 0x2, 0x0) mount$9p_fd(0x0, &(0x7f0000000000)='./file0\x00', 0x0, 0x2000000, &(0x7f00000004c0)={'trans=fd,', {'rfdno', 0x3d, r1}, 0x2c, {'wfdno', 0x3d, r2}, 0x2c, {[{@debug}, {@debug={'debug', 0x3d, 0x10001}}, {@version_u}], [{@hash}, {@euid_gt}, {@fsmagic={'fsmagic', 0x3d, 0xfffffffffffffffc}}, {@euid_eq={'euid', 0x3d, 0xffffffffffffffff}}]}}) 10:15:46 executing program 1: r0 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x46e2, 0x0) r1 = dup2(r0, r0) r2 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000040), 0x2, 0x0) mount$9p_fd(0x0, &(0x7f0000000000)='./file0\x00', 0x0, 0x2000000, &(0x7f00000004c0)={'trans=fd,', {'rfdno', 0x3d, r1}, 0x2c, {'wfdno', 0x3d, r2}, 0x2c, {[{@debug}, {@debug={'debug', 0x3d, 0x10001}}, {@version_u}], [{@hash}, {@euid_gt}, {@fsmagic={'fsmagic', 0x3d, 0xfffffffffffffffc}}, {@euid_eq={'euid', 0x3d, 0xffffffffffffffff}}]}}) [ 436.618887] netlink: 44 bytes leftover after parsing attributes in process `syz-executor.2'. 10:15:46 executing program 2: perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x40, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x105142, 0x0) r1 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0) r2 = fsmount(r1, 0x0, 0xd9ce7fabcbcb8114) openat(r2, &(0x7f00000001c0)='./file1\x00', 0x100, 0x6) r3 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x105142, 0x0) r4 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0) bind(r4, &(0x7f0000000280)=@llc={0x1a, 0x207, 0x3, 0x2, 0xa5, 0x6, @broadcast}, 0x80) copy_file_range(r4, 0x0, r3, 0x0, 0x200f5ef, 0x0) ioctl$EXT4_IOC_MOVE_EXT(0xffffffffffffffff, 0xc028660f, 0x0) r5 = gettid() r6 = openat$dir(0xffffffffffffff9c, &(0x7f0000000200)='./file1\x00', 0x240001, 0x4) openat(r6, &(0x7f0000000240)='./file1\x00', 0x2, 0x8) perf_event_open(&(0x7f0000000140)={0x2, 0x80, 0x20, 0x1, 0x0, 0x8, 0x0, 0x8, 0x11, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x1, 0x0, 0x1, 0x1, 0x0, 0x1, 0x0, 0x1, 0x0, 0x1, 0x0, 0x1, 0x0, 0x0, 0x1, 0x1, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x3, 0x0, @perf_bp={&(0x7f00000000c0), 0x9}, 0x10598, 0x800, 0x5, 0x0, 0xd0, 0x100, 0x19c9, 0x0, 0x1, 0x0, 0x4}, r5, 0xe, r4, 0x1b) copy_file_range(r1, 0x0, r0, 0x0, 0x200f5ef, 0x0) r7 = openat(0xffffffffffffffff, &(0x7f0000000300)='./file1\x00', 0x201, 0x80) getsockname(r7, &(0x7f0000000340)=@nfc_llcp, &(0x7f00000003c0)=0x80) 10:15:57 executing program 0: r0 = openat(0xffffffffffffff9c, 0x0, 0x46e2, 0x0) r1 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffd000/0x3000)=nil, 0x3000, 0x0, 0x13, r0, 0x0) syz_io_uring_setup(0x4b9f, &(0x7f0000000140), &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000ffd000/0x3000)=nil, &(0x7f00000000c0), &(0x7f00000001c0)=0x0) syz_io_uring_submit(r1, r2, &(0x7f0000000240)=@IORING_OP_FADVISE={0x18, 0x0, 0x0, @fd, 0x2}, 0x0) sigaltstack(&(0x7f0000ffd000/0x1000)=nil, 0x0) 10:15:57 executing program 3: r0 = socket$inet6_udp(0xa, 0x2, 0x0) pipe2(&(0x7f0000000040)={0xffffffffffffffff}, 0x84800) r2 = fsmount(0xffffffffffffffff, 0x1, 0x6) ioctl$SNDRV_TIMER_IOCTL_PARAMS(r2, 0x40505412, &(0x7f0000000100)={0x0, 0x4, 0x1f, 0x0, 0x1}) connect$inet6(r1, &(0x7f00000000c0)={0xa, 0x4e22, 0x38, @private0={0xfc, 0x0, '\x00', 0x1}, 0x2}, 0x1c) setsockopt$inet6_int(r0, 0x29, 0x6a, &(0x7f0000000000)=0xce88, 0x4) sendmmsg$inet6(r0, &(0x7f0000000300)=[{{&(0x7f0000000080)={0xa, 0x4e24, 0x0, @dev}, 0x1c, 0x0}}], 0x1, 0x0) 10:15:57 executing program 6: r0 = openat(0xffffffffffffff9c, &(0x7f0000000080)='./file1\x00', 0x42, 0x44) close(r0) clone3(&(0x7f00000008c0)={0x1040100, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) r1 = openat$autofs(0xffffffffffffff9c, &(0x7f0000000040), 0x103002, 0x0) openat$cgroup_netprio_ifpriomap(r1, &(0x7f00000000c0), 0x2, 0x0) r2 = syz_mount_image$nfs4(&(0x7f0000000100), &(0x7f0000000140)='./file1\x00', 0x0, 0x3, &(0x7f00000002c0)=[{&(0x7f0000000180), 0x0, 0x7fffffff}, {&(0x7f00000001c0)="8f99a4ed9a60a780f4adee811343", 0xe, 0x8}, {&(0x7f0000000200)="8d94ce12eed7b352abd9eca64c718590367d13eac4acb313b2471b3c13f8367fede0c2386bfd6d6816f3d3e79d49bf678443f991228fdc982303c6c5c3793b446b7a7442a297adbbbbfc97c171535dc564f43eb5ab6b4c1179f91955bb4561f32aac41264a287ae88ce2bbe863c24ad9fd80884cfbccaccbf357662c5183caf38955939320d61dc4a22825f27e9063bd04acbaf49830d8fcecd1052c89677b6b4ca54153df60369588d1bb5e16ce4d35fd1b6072", 0xb4, 0xfd}], 0x842008, &(0x7f0000000340)={[{'}'}, {'net_prio.ifpriomap\x00'}], [{@measure}, {@fowner_lt={'fowner<', 0xee00}}, {@appraise_type}, {@obj_user={'obj_user', 0x3d, '+:]@-'}}, {@seclabel}, {@func={'func', 0x3d, 'KEXEC_INITRAMFS_CHECK'}}]}) r3 = socket$inet(0x2, 0xa, 0x6) r4 = socket(0x21, 0x80000, 0x7ff) r5 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000040), 0x2, 0x0) write$binfmt_aout(r5, &(0x7f0000000640), 0x20) read(r5, &(0x7f0000000100)=""/146, 0x92) r6 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000040), 0x2, 0x0) write$binfmt_aout(r6, &(0x7f0000000640), 0x20) read(r6, &(0x7f0000000100)=""/146, 0x92) io_uring_register$IORING_REGISTER_FILES_UPDATE(r0, 0x6, &(0x7f0000000440)={0x6, 0x0, &(0x7f0000000400)=[r2, r3, r1, r4, r0, r1, r5, r6, r0]}, 0x9) execveat(0xffffffffffffff9c, &(0x7f0000000000)='./file1\x00', 0x0, 0x0, 0x1000) 10:15:57 executing program 5: r0 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x46e2, 0x0) dup2(r0, r0) r1 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000040), 0x2, 0x0) mount$9p_fd(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f00000000c0), 0x0, &(0x7f00000004c0)={'trans=fd,', {}, 0x2c, {'wfdno', 0x3d, r1}, 0x2c, {[{@debug}, {@debug={'debug', 0x3d, 0x10001}}, {@version_u}], [{@hash}, {@euid_gt}, {@fsmagic={'fsmagic', 0x3d, 0xfffffffffffffffc}}, {@euid_eq={'euid', 0x3d, 0xffffffffffffffff}}]}}) 10:15:57 executing program 1: r0 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x46e2, 0x0) r1 = dup2(r0, r0) r2 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000040), 0x2, 0x0) mount$9p_fd(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f00000000c0), 0x0, &(0x7f00000004c0)={'trans=fd,', {'rfdno', 0x3d, r1}, 0x2c, {'wfdno', 0x3d, r2}, 0x2c, {[{@debug}, {@debug={'debug', 0x3d, 0x10001}}, {@version_u}], [{@hash}, {@euid_gt}, {@fsmagic={'fsmagic', 0x3d, 0xfffffffffffffffc}}, {@euid_eq={'euid', 0x3d, 0xffffffffffffffff}}]}}) 10:15:57 executing program 7: r0 = openat(0xffffffffffffff9c, &(0x7f0000000000)='./file1\x00', 0x802c2, 0x0) r1 = open(&(0x7f0000000040)='./file0\x00', 0x1810c1, 0x0) r2 = openat(0xffffffffffffff9c, &(0x7f00000000c0)='./file1\x00', 0x101802, 0x0) r3 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0) copy_file_range(r3, 0x0, r2, 0x0, 0x200f5ef, 0x0) r4 = openat(0xffffffffffffff9c, &(0x7f0000000140)='./file0\x00', 0x105142, 0x0) creat(&(0x7f00000003c0)='./file1\x00', 0x0) r5 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0) fcntl$dupfd(0xffffffffffffffff, 0x0, 0xffffffffffffffff) copy_file_range(r5, 0x0, r4, 0x0, 0x200f5ef, 0x0) ioctl$EXT4_IOC_MOVE_EXT(r0, 0xc028660f, &(0x7f00000004c0)={0x3, r1}) 10:15:57 executing program 4: perf_event_open(&(0x7f0000001d80)={0x2, 0x80, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000480)={0xffffffffffffffff, 0xffffffffffffffff}) r2 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000040), 0x2, 0x0) write$binfmt_aout(r2, &(0x7f0000000640), 0x20) read(r2, &(0x7f0000000100)=""/146, 0x92) r3 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000040), 0x2, 0x0) write$binfmt_aout(r3, &(0x7f0000000640), 0x20) read(r3, &(0x7f0000000100)=""/146, 0x92) getsockopt$sock_cred(r1, 0x1, 0x11, &(0x7f0000000000)={0x0}, &(0x7f0000000080)=0xc) r5 = getgid() lchown(&(0x7f0000000400)='./file2\x00', 0xffffffffffffffff, r5) r6 = getpgrp(r4) sendmsg$unix(r0, &(0x7f0000000100)={0x0, 0x0, 0x0, 0x0, &(0x7f00000001c0)=[@rights={{0x14, 0x1, 0x1, [r1]}}, @cred={{0x1c, 0x1, 0x2, {r6, 0xffffffffffffffff, r5}}}], 0x38, 0x4040040}, 0x0) mmap(&(0x7f0000001000/0x2000)=nil, 0x2000, 0x0, 0x20031, 0xffffffffffffffff, 0x0) recvmmsg(r1, &(0x7f0000004400)=[{{0x0, 0x0, 0x0, 0x0, &(0x7f0000002440)=""/24, 0x18}}], 0x1, 0x0, 0x0) r7 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000040), 0x2, 0x0) write$binfmt_aout(r7, &(0x7f0000000640), 0x20) read(r7, &(0x7f0000000100)=""/146, 0x92) write$binfmt_aout(r7, &(0x7f00000004c0)={{0x107, 0x1f, 0x80, 0x270, 0x43, 0x1ff, 0x1d3, 0x6}, "f29fbc77cfe2e1f503057c85edb09f2519586b2f3770730d03446a4476a169ee799181c670b7869a4eea68da57007fb2064b659c2dd6159983c918044a0c2c9669add0a879aa040f01da126de78a88d82f74c94ecd2a66cf488d4f170b5b8c68f34e41b1ea62fda974a04718528d158023f043ecd7c06a6090e33920a8707ccb3db6817f5651f55338988fa15fef87084bd4ea98375972efad8dff2b9ee316a6d0c4cd68cca0d482b924d76dcfaebfd66b597087b845ed31b6faae200a1c05186be408aa7ba224b9e0df12053739ea46e2", ['\x00', '\x00', '\x00', '\x00', '\x00']}, 0x5f1) 10:15:57 executing program 2: syz_extract_tcp_res$synack(&(0x7f0000000100), 0x1, 0x0) r0 = inotify_init1(0x0) inotify_add_watch(r0, &(0x7f00000000c0)='./file0\x00', 0x10000200) seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f0000000000)={0x1, &(0x7f0000000040)=[{0x6, 0x0, 0x0, 0x7fffffff}]}) r1 = memfd_create(&(0x7f00000006c0)='nfs4\x00', 0x3) ftruncate(r1, 0x2) syz_mount_image$nfs4(0x0, &(0x7f0000000040)='./file0\x00', 0x1, 0x0, 0x0, 0x264c2291390a28ee, 0x0) r2 = inotify_add_watch(r0, &(0x7f0000000000)='./file0\x00', 0xa4000004) inotify_rm_watch(r0, r2) inotify_add_watch(r0, &(0x7f0000000080)='./file0\x00', 0x42) ioctl$NS_GET_OWNER_UID(0xffffffffffffffff, 0xb704, &(0x7f0000000800)=0x0) syz_mount_image$nfs4(&(0x7f0000000140), &(0x7f0000000180)='./file0\x00', 0x6, 0xa, &(0x7f0000000700)=[{&(0x7f00000001c0)="c5310df33b8f2d03026598b88bda9def6cb0bd39e47671215551cf996137851b3b517aea2c86211c3f3d04ed0525c93b170acdddfe803466b7a82939d9d102b8d48cd0ccabbb4f69234b31805f491678bc643984a3e5ee6f32a55f43e1c5bbd98f8a8bad7ce29c2739706ca741d56c6dee7130e653726629a1340e5acf8da5101907366d08f017a57ff6e94a3c308a7bb3cfa6b1a5843eca7bbc78b4b1accad4bd5d330f7cdf2c3338b61db229da029a278e7c639fc2f6", 0xb7, 0x5a7}, {&(0x7f0000000280)="ba493cf321512ef2545fb10bd21afd1124380d3c43f34525b0abf3fe58bbbbf0d8d5c12251e78e0a141b1a7094136182a4500025d3cdc59846a3d37ee1b9fde0a1c5c20fdc687a77f2d520fafceb18e2d7dfcfcc2c3fcac88bfba8d8ee23b9bc75cd94aae1687f", 0x67, 0x2}, {&(0x7f0000000300)="43f7283d7296b7d4c18be039f9e08d5c399546a5dbd26f3886a8733f13187069094c348edcf0e7c46433399d59fb7a6b3e301e9ae0390b348b7607a19fcf50026ac9a09113270127f1b7bf17973274b6bc2f16c5591f10903cd06bb55323ecc7a91665cdfec267cb7024bc3d41f6946cd0a8ed128be7d1a6483f827e3e", 0x7d, 0x6}, {&(0x7f0000000380)="dfe3292f9ed9ccba1f6669219882e400dd5dfce73e882ae74767ad02ae2ca095409d4581ce5435fe9f4266d1e5e8933e1c68cd3661cb6d73d2", 0x39, 0x1000}, {&(0x7f00000003c0)="757cd74066104ec257452951ecc3aaaa3d9cebba01db6903611a699c15e3ade03ff78b0d8044f106cd4c1a2fc997271f2b09ab0fb5d89b108618f377ed0b206051ddec719c82a94e1354542b000000000000", 0x52, 0x400}, {&(0x7f0000000440)="92c3bb663e07358859c51141076b272e3b5a27ca6c1deac6c9ccf12834986ad7eeee587e57aa2d89dc46a003d7546b3dbb448abe9a481e662fbbad1cbcfcb0cec7fcf3c4da537747e4faa48e2525a59c35e73178ba12d0eebc553d9c8b0c0c2935e172b670d541d8ee9ec65f0459100afedd9db5c17f50680f", 0x79, 0x4}, {&(0x7f00000004c0)="09b3ca534fc42589739785b6d40cbe", 0xf, 0x1}, {&(0x7f0000000500)="ea00c43e803bd0cde285b48f45e3a0a697b11e4322247eb48b10d8968db3e27ea9b58d5e183a28c5f26cb7cd50636da1a46452a46f1d96bc6facb72c89ac836c978e6a425eeb1211891ea47cfe42103f5f5579421b1d84c566ff8eae5c32d7ff818201263bd1e6f04ef440d3a974e72219c47a92fb66376ba6dd1b5785ca42a782ad7a2fe50c3ef38309061b2af3f6ace8b352c575ca165752274cbb820360bf2940ed5a700f2454976265f8b720756f0aa94669", 0xb4, 0x8}, {&(0x7f00000005c0)="c53312da1fbb240dbdfe8e2ff2d0c3c421607e76042759af3817f74b3c48cfc2abc1a560b7e0903e95af06c4daaa90f1c5b7e870082726dea671ab8f0625cf0cea64e001f6f528eba8a29cb6d4808361d005fb250ebd018077cf3c9d8a73c71a2db547eed6349c81c05af928dc00117571dc111d8281487d7ea4495d7450b7abae5f54df2c8f3aecd6cb996a9c4c4d6c26f1043becc469e1a052e4f772b2e299661047a12ac3ec1404d4d740c97dc5b1aea754d6c2e81274fe282b19a0e1047d53b2840dd4c555fcfe217c688a2ad4b9a033dfbd655a5b", 0xd7, 0x7f}, {&(0x7f00000008c0)="78942d50096420014c9dc31a98d06d3167eaf456e920b6b3803c0dcb0000000000", 0x21, 0x8}], 0x1, &(0x7f0000000840)=ANY=[@ANYBLOB="2c7b7b212c21232efa5c232c5e69295d2e5b272c5c2e5d2c2a21243a5b7b282c9b2c657569643d", @ANYRESDEC=r3, @ANYBLOB="2c736d61636b6600726f6f743d7b2c61756469742c66736d6167690600000000000000ffffffffffffff30303030302c00"]) [ 447.603157] 9pnet: Insufficient options for proto=fd 10:15:57 executing program 5: r0 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x46e2, 0x0) dup2(r0, r0) r1 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000040), 0x2, 0x0) mount$9p_fd(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f00000000c0), 0x0, &(0x7f00000004c0)={'trans=fd,', {}, 0x2c, {'wfdno', 0x3d, r1}, 0x2c, {[{@debug}, {@debug={'debug', 0x3d, 0x10001}}, {@version_u}], [{@hash}, {@euid_gt}, {@fsmagic={'fsmagic', 0x3d, 0xfffffffffffffffc}}, {@euid_eq={'euid', 0x3d, 0xffffffffffffffff}}]}}) [ 447.658473] 9pnet: Insufficient options for proto=fd 10:15:57 executing program 1: r0 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x46e2, 0x0) dup2(r0, r0) openat$ptmx(0xffffffffffffff9c, &(0x7f0000000040), 0x2, 0x0) mount$9p_fd(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f00000000c0), 0x0, 0x0) 10:15:57 executing program 5: r0 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x46e2, 0x0) dup2(r0, r0) r1 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000040), 0x2, 0x0) mount$9p_fd(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f00000000c0), 0x0, &(0x7f00000004c0)={'trans=fd,', {}, 0x2c, {'wfdno', 0x3d, r1}, 0x2c, {[{@debug}, {@debug={'debug', 0x3d, 0x10001}}, {@version_u}], [{@hash}, {@euid_gt}, {@fsmagic={'fsmagic', 0x3d, 0xfffffffffffffffc}}, {@euid_eq={'euid', 0x3d, 0xffffffffffffffff}}]}}) [ 447.769947] 9pnet: Insufficient options for proto=fd 10:16:10 executing program 4: sendto$packet(0xffffffffffffffff, 0x0, 0x0, 0x0, &(0x7f00000000c0)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @local}, 0x14) mknod$loop(&(0x7f0000000400)='./file0\x00', 0x6000, 0x0) r0 = creat(&(0x7f0000000080)='./file0\x00', 0x2) ioctl$LOOP_SET_STATUS(r0, 0x127d, &(0x7f00000000c0)={0x0, {}, 0x0, {}, 0x0, 0x0, 0x0, 0x0, "200b45308126f4d56bd2ba158d4c64e1f35cac77c8e818b6a5589e4a69395a5223db6b4323e0b29fba0da3344bc9163688567feda8dba320d292f4ebefe64e99", "0a646610847852624bde09525bf1c35930ac1d9247664c1420b156a2ac400377"}) creat(&(0x7f0000000000)='./file0\x00', 0x289) ioctl$BLKTRACETEARDOWN(r0, 0x1276, 0x0) 10:16:10 executing program 7: r0 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x46e2, 0x0) dup2(r0, r0) openat$ptmx(0xffffffffffffff9c, &(0x7f0000000040), 0x2, 0x0) mount$9p_fd(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f00000000c0), 0x0, 0x0) 10:16:10 executing program 0: r0 = openat(0xffffffffffffff9c, 0x0, 0x46e2, 0x0) r1 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffd000/0x3000)=nil, 0x3000, 0x0, 0x13, r0, 0x0) syz_io_uring_setup(0x4b9f, &(0x7f0000000140), &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000ffd000/0x3000)=nil, &(0x7f00000000c0), &(0x7f00000001c0)=0x0) syz_io_uring_submit(r1, r2, &(0x7f0000000240)=@IORING_OP_FADVISE={0x18, 0x0, 0x0, @fd, 0x2}, 0x0) sigaltstack(&(0x7f0000ffd000/0x1000)=nil, 0x0) 10:16:10 executing program 6: r0 = openat(0xffffffffffffff9c, &(0x7f0000000080)='./file1\x00', 0x42, 0x44) close(r0) clone3(&(0x7f00000008c0)={0x1040100, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) r1 = openat$autofs(0xffffffffffffff9c, &(0x7f0000000040), 0x103002, 0x0) openat$cgroup_netprio_ifpriomap(r1, &(0x7f00000000c0), 0x2, 0x0) r2 = syz_mount_image$nfs4(&(0x7f0000000100), &(0x7f0000000140)='./file1\x00', 0x0, 0x3, &(0x7f00000002c0)=[{&(0x7f0000000180), 0x0, 0x7fffffff}, {&(0x7f00000001c0)="8f99a4ed9a60a780f4adee811343", 0xe, 0x8}, {&(0x7f0000000200)="8d94ce12eed7b352abd9eca64c718590367d13eac4acb313b2471b3c13f8367fede0c2386bfd6d6816f3d3e79d49bf678443f991228fdc982303c6c5c3793b446b7a7442a297adbbbbfc97c171535dc564f43eb5ab6b4c1179f91955bb4561f32aac41264a287ae88ce2bbe863c24ad9fd80884cfbccaccbf357662c5183caf38955939320d61dc4a22825f27e9063bd04acbaf49830d8fcecd1052c89677b6b4ca54153df60369588d1bb5e16ce4d35fd1b6072", 0xb4, 0xfd}], 0x842008, &(0x7f0000000340)={[{'}'}, {'net_prio.ifpriomap\x00'}], [{@measure}, {@fowner_lt={'fowner<', 0xee00}}, {@appraise_type}, {@obj_user={'obj_user', 0x3d, '+:]@-'}}, {@seclabel}, {@func={'func', 0x3d, 'KEXEC_INITRAMFS_CHECK'}}]}) r3 = socket$inet(0x2, 0xa, 0x6) r4 = socket(0x21, 0x80000, 0x7ff) r5 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000040), 0x2, 0x0) write$binfmt_aout(r5, &(0x7f0000000640), 0x20) read(r5, &(0x7f0000000100)=""/146, 0x92) r6 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000040), 0x2, 0x0) write$binfmt_aout(r6, &(0x7f0000000640), 0x20) read(r6, &(0x7f0000000100)=""/146, 0x92) io_uring_register$IORING_REGISTER_FILES_UPDATE(r0, 0x6, &(0x7f0000000440)={0x6, 0x0, &(0x7f0000000400)=[r2, r3, r1, r4, r0, r1, r5, r6, r0]}, 0x9) execveat(0xffffffffffffff9c, &(0x7f0000000000)='./file1\x00', 0x0, 0x0, 0x1000) 10:16:10 executing program 2: syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x100000, 0x3, &(0x7f0000000200)=[{&(0x7f0000010000)="200000000002000019000000900100000f000000000000000100000005000000000004000040000020000000d6f4655fd6f4655f0100ffff53ef010001000000d5f4655f000000000000000001000000000000000b0000000001000018000000c28500002b02", 0x66, 0x400}, {&(0x7f0000010100)="000000000000000000000000f4e089668a0d4000840a22d1089d0f04010040", 0x1f, 0x4e0}, {&(0x7f0000010300)="00fdcd9a000000800000", 0xa, 0x800}], 0x0, &(0x7f0000000140)=ANY=[@ANYBLOB="6d61785f6469725f73787a8dea28c981e2956d3030303030303030303030303065302c64696f726561645f6e6f6c6f636b2c746573745f64756d6d795f656e6372797074696f6e2c6461782c6772706a71756f74613d2c64656275672c00"]) 10:16:10 executing program 3: r0 = openat(0xffffffffffffffff, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0) r1 = perf_event_open(&(0x7f0000001d80)={0x7, 0x80, 0x0, 0x0, 0x0, 0x0, 0x2}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r2 = gettid() r3 = socket$netlink(0x10, 0x3, 0x0) r4 = fcntl$dupfd(r3, 0x0, r3) r5 = socket$netlink(0x10, 0x3, 0x0) r6 = fcntl$dupfd(r5, 0x0, r5) getsockopt$netlink(r6, 0x10e, 0x0, 0x0, 0xfffffffffffffffe) openat$cgroup(r6, &(0x7f00000001c0)='syz0\x00', 0x200002, 0x0) getsockopt$netlink(r4, 0x10e, 0x0, 0x0, 0xfffffffffffffffe) openat(r4, &(0x7f0000000180)='./file0\x00', 0x0, 0x18) rt_sigqueueinfo(r2, 0x400001, &(0x7f00000000c0)) perf_event_open(&(0x7f0000000040)={0x5, 0x80, 0x7c, 0x8, 0x2, 0x1, 0x0, 0xb44b, 0x8260, 0xe, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x1, 0x2, 0x0, 0x1, 0x1, 0x1, 0x1, 0x1, 0x0, 0x1, 0x1, 0x1, 0x1, 0x0, 0x1, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x1, @perf_config_ext={0x3, 0x1}, 0x0, 0x1ffe00, 0x2, 0x0, 0x0, 0xc3800000, 0x7f, 0x0, 0x20, 0x0, 0x1}, r2, 0xb, 0xffffffffffffffff, 0x2) r7 = memfd_create(&(0x7f0000000140)='%Q\\[\x00', 0x1) fcntl$setstatus(r7, 0x4, 0x0) fsetxattr$trusted_overlay_opaque(r6, &(0x7f0000000200), &(0x7f0000000240), 0x2, 0x0) close(r1) dup(r1) pread64(r0, 0x0, 0x0, 0x10000007fffffff) 10:16:10 executing program 5: r0 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x46e2, 0x0) r1 = dup2(r0, r0) openat$ptmx(0xffffffffffffff9c, &(0x7f0000000040), 0x2, 0x0) mount$9p_fd(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f00000000c0), 0x0, &(0x7f00000004c0)={'trans=fd,', {'rfdno', 0x3d, r1}, 0x2c, {}, 0x2c, {[{@debug}, {@debug={'debug', 0x3d, 0x10001}}, {@version_u}], [{@hash}, {@euid_gt}, {@fsmagic={'fsmagic', 0x3d, 0xfffffffffffffffc}}, {@euid_eq={'euid', 0x3d, 0xffffffffffffffff}}]}}) 10:16:10 executing program 1: r0 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x46e2, 0x0) dup2(r0, r0) openat$ptmx(0xffffffffffffff9c, &(0x7f0000000040), 0x2, 0x0) mount$9p_fd(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f00000000c0), 0x0, 0x0) 10:16:10 executing program 2: unshare(0x60040000) socket$inet(0x2, 0x0, 0x0) r0 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a) ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000140)={'lo\x00', 0x0}) socket$netlink(0x10, 0x3, 0x0) r2 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000040), 0x2, 0x0) write$binfmt_aout(r2, &(0x7f0000000640), 0x20) read(r2, &(0x7f0000000100)=""/146, 0x92) r3 = openat$pidfd(0xffffffffffffff9c, &(0x7f00000000c0), 0x101002, 0x0) r4 = fcntl$dupfd(r3, 0x406, r2) getsockopt$netlink(r4, 0x10e, 0x0, 0x0, 0xfffffffffffffffe) sendmsg$NL80211_CMD_UPDATE_CONNECT_PARAMS(r4, &(0x7f00000001c0)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x40000}, 0xc, &(0x7f0000000040)={&(0x7f0000000180)=ANY=[@ANYBLOB='\x00', @ANYRES16=0x0, @ANYRES16=r1], 0x287c}, 0x1, 0x0, 0x0, 0x40000}, 0x80) r5 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a) ioctl$sock_SIOCGIFINDEX(r5, 0x8923, &(0x7f0000000140)={'lo\x00'}) r6 = syz_open_procfs(0xffffffffffffffff, 0x0) ioctl$sock_inet_SIOCSARP(r6, 0x8955, 0x0) sendmmsg$inet(0xffffffffffffffff, 0x0, 0x0, 0x0) 10:16:10 executing program 0: r0 = openat(0xffffffffffffff9c, 0x0, 0x46e2, 0x0) r1 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffd000/0x3000)=nil, 0x3000, 0x0, 0x13, r0, 0x0) syz_io_uring_setup(0x4b9f, &(0x7f0000000140), &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000ffd000/0x3000)=nil, &(0x7f00000000c0), &(0x7f00000001c0)=0x0) syz_io_uring_submit(r1, r2, &(0x7f0000000240)=@IORING_OP_FADVISE={0x18, 0x0, 0x0, @fd, 0x2}, 0x0) sigaltstack(&(0x7f0000ffd000/0x1000)=nil, 0x0) [ 460.582248] 9pnet: Insufficient options for proto=fd 10:16:10 executing program 6: r0 = openat(0xffffffffffffff9c, &(0x7f0000000080)='./file1\x00', 0x42, 0x44) close(r0) clone3(&(0x7f00000008c0)={0x1040100, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) r1 = openat$autofs(0xffffffffffffff9c, &(0x7f0000000040), 0x103002, 0x0) openat$cgroup_netprio_ifpriomap(r1, &(0x7f00000000c0), 0x2, 0x0) r2 = syz_mount_image$nfs4(&(0x7f0000000100), &(0x7f0000000140)='./file1\x00', 0x0, 0x3, &(0x7f00000002c0)=[{&(0x7f0000000180), 0x0, 0x7fffffff}, {&(0x7f00000001c0)="8f99a4ed9a60a780f4adee811343", 0xe, 0x8}, {&(0x7f0000000200)="8d94ce12eed7b352abd9eca64c718590367d13eac4acb313b2471b3c13f8367fede0c2386bfd6d6816f3d3e79d49bf678443f991228fdc982303c6c5c3793b446b7a7442a297adbbbbfc97c171535dc564f43eb5ab6b4c1179f91955bb4561f32aac41264a287ae88ce2bbe863c24ad9fd80884cfbccaccbf357662c5183caf38955939320d61dc4a22825f27e9063bd04acbaf49830d8fcecd1052c89677b6b4ca54153df60369588d1bb5e16ce4d35fd1b6072", 0xb4, 0xfd}], 0x842008, &(0x7f0000000340)={[{'}'}, {'net_prio.ifpriomap\x00'}], [{@measure}, {@fowner_lt={'fowner<', 0xee00}}, {@appraise_type}, {@obj_user={'obj_user', 0x3d, '+:]@-'}}, {@seclabel}, {@func={'func', 0x3d, 'KEXEC_INITRAMFS_CHECK'}}]}) r3 = socket$inet(0x2, 0xa, 0x6) r4 = socket(0x21, 0x80000, 0x7ff) r5 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000040), 0x2, 0x0) write$binfmt_aout(r5, &(0x7f0000000640), 0x20) read(r5, &(0x7f0000000100)=""/146, 0x92) r6 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000040), 0x2, 0x0) write$binfmt_aout(r6, &(0x7f0000000640), 0x20) read(r6, &(0x7f0000000100)=""/146, 0x92) io_uring_register$IORING_REGISTER_FILES_UPDATE(r0, 0x6, &(0x7f0000000440)={0x6, 0x0, &(0x7f0000000400)=[r2, r3, r1, r4, r0, r1, r5, r6, r0]}, 0x9) execveat(0xffffffffffffff9c, &(0x7f0000000000)='./file1\x00', 0x0, 0x0, 0x1000) 10:16:10 executing program 1: r0 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x46e2, 0x0) dup2(r0, r0) openat$ptmx(0xffffffffffffff9c, &(0x7f0000000040), 0x2, 0x0) mount$9p_fd(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f00000000c0), 0x0, 0x0) 10:16:10 executing program 4: fcntl$notify(0xffffffffffffffff, 0x402, 0x34) syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0x8, &(0x7f0000000200)=[{&(0x7f0000010000)="20000000000100000c000000500000000f000000000000000200000006000000000008000080000020000000d5f4655fd5f4655f0100ffff53ef010001000000d4f4655f000000000000000001000000000000000b0000008000000018000000c20500002b82", 0x66, 0x400}, {&(0x7f0000000040)="00000000000000000000000016d7fb4ca540446e9e3afc5ae1325600010040d3ba4988e037a88b81ae7d9db4c2de0204590a1fd7383dc3c30b19c52b28ce501c052faf098e7c3ecf760e7465c33a6c0d98f9a4c6127f92f78257552c539f8488c4", 0x1f, 0x4e0}, {&(0x7f0000010200)="010000000000050040", 0x16, 0x560}, {&(0x7f0000010300)="020000000300000004", 0x9, 0x1000}, {&(0x7f0000012500)="ed41000000100000d5f4655fd5f4655fd5f4655f000000000000040080", 0x1d, 0x4080}, {0x0}, {&(0x7f0000013000)="504d4d00504d4dff", 0x8, 0x40000}, {0x0, 0x0, 0x80000}], 0x0, &(0x7f0000013b00)) 10:16:10 executing program 5: r0 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x46e2, 0x0) r1 = dup2(r0, r0) openat$ptmx(0xffffffffffffff9c, &(0x7f0000000040), 0x2, 0x0) mount$9p_fd(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f00000000c0), 0x0, &(0x7f00000004c0)={'trans=fd,', {'rfdno', 0x3d, r1}, 0x2c, {}, 0x2c, {[{@debug}, {@debug={'debug', 0x3d, 0x10001}}, {@version_u}], [{@hash}, {@euid_gt}, {@fsmagic={'fsmagic', 0x3d, 0xfffffffffffffffc}}, {@euid_eq={'euid', 0x3d, 0xffffffffffffffff}}]}}) [ 460.697239] 9pnet: Insufficient options for proto=fd 10:16:10 executing program 0: r0 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x0, 0x0) r1 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffd000/0x3000)=nil, 0x3000, 0x0, 0x13, r0, 0x0) syz_io_uring_setup(0x4b9f, &(0x7f0000000140), &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000ffd000/0x3000)=nil, &(0x7f00000000c0), &(0x7f00000001c0)=0x0) syz_io_uring_submit(r1, r2, &(0x7f0000000240)=@IORING_OP_FADVISE={0x18, 0x0, 0x0, @fd, 0x2}, 0x0) sigaltstack(&(0x7f0000ffd000/0x1000)=nil, 0x0) 10:16:10 executing program 5: r0 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x46e2, 0x0) r1 = dup2(r0, r0) openat$ptmx(0xffffffffffffff9c, &(0x7f0000000040), 0x2, 0x0) mount$9p_fd(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f00000000c0), 0x0, &(0x7f00000004c0)={'trans=fd,', {'rfdno', 0x3d, r1}, 0x2c, {}, 0x2c, {[{@debug}, {@debug={'debug', 0x3d, 0x10001}}, {@version_u}], [{@hash}, {@euid_gt}, {@fsmagic={'fsmagic', 0x3d, 0xfffffffffffffffc}}, {@euid_eq={'euid', 0x3d, 0xffffffffffffffff}}]}}) 10:16:10 executing program 2: stat(&(0x7f0000001cc0)='.\x00', &(0x7f0000001c00)={0x0, 0x0, 0x0, 0x0, 0x0}) truncate(&(0x7f0000000040)='./file0\x00', 0xffffffffffffff1d) setresuid(0xffffffffffffffff, r0, 0x0) r1 = syz_mount_image$iso9660(&(0x7f0000000000), &(0x7f00000000c0)='./file0\x00', 0x0, 0x2, &(0x7f0000000080)=[{&(0x7f0000010a00)="0243443030310100004c0049004e0055005800200020002000200020002000200020002000200020004300440052004f004d0020002000200020002000200020002000200020002000000000000000004f0200000000024f252f4500000000000000000000000000000000000000000000000000000000000100000101000001000808001c0000000000001c18000000000000000000001a0000000022001e", 0x9f, 0x8001}, {&(0x7f0000000180)="d603b7e98b25f20000000000001e008cd1a51b0008007809140b2a3a", 0x1c, 0xf000}], 0x0, &(0x7f00000001c0)=ANY=[@ANYBLOB="73657373696f6e3d3078303030303030303030303030303030352c6d61703d6f41d9485219c77d4d6a98fcc866662c6d61703d61636f726e", @ANYRESDEC=r0, @ANYBLOB=',\x00']) r2 = getuid() r3 = socket$netlink(0x10, 0x3, 0x0) r4 = fcntl$dupfd(r3, 0x0, r3) getsockopt$netlink(r4, 0x10e, 0x0, 0x0, 0xfffffffffffffffe) r5 = socket$netlink(0x10, 0x3, 0x0) r6 = fcntl$dupfd(r5, 0x0, r5) getsockopt$netlink(r6, 0x10e, 0x0, 0x0, 0xfffffffffffffffe) renameat(r4, &(0x7f0000000240)='./file0/file0\x00', r6, &(0x7f0000000280)='./file0\x00') fstat(r1, &(0x7f0000000100)={0x0, 0x0, 0x0, 0x0, 0x0}) stat(&(0x7f0000001cc0)='.\x00', &(0x7f0000001c00)={0x0, 0x0, 0x0, 0x0, 0x0}) setresuid(0xffffffffffffffff, r8, 0x0) setresuid(r2, r7, r8) 10:16:10 executing program 7: r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$netlbl_mgmt(&(0x7f0000000600), r0) sendmsg$NLBL_MGMT_C_ADDDEF(r0, &(0x7f0000000700)={0x0, 0x0, &(0x7f00000006c0)={&(0x7f0000000640)={0x24, r1, 0xa1c047e168b2633, 0x0, 0x0, {}, [@NLBL_MGMT_A_PROTOCOL={0x8}, @NLBL_MGMT_A_DOMAIN={0x8, 0x8, '-)%\x00'}]}, 0x24}}, 0x0) r2 = syz_genetlink_get_family_id$netlbl_calipso(&(0x7f0000000140), 0xffffffffffffffff) sendmsg$NLBL_CALIPSO_C_LISTALL(r0, &(0x7f00000002c0)={&(0x7f0000000080)={0x10, 0x0, 0x0, 0x4000}, 0xc, &(0x7f0000000280)={&(0x7f0000000180)={0x24, r2, 0x4, 0x70bd29, 0x25dfdbff, {}, [@NLBL_CALIPSO_A_MTYPE={0x8}, @NLBL_CALIPSO_A_MTYPE={0x8}]}, 0x24}, 0x1, 0x0, 0x0, 0x48000}, 0x4) r3 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x42, 0x0) clone3(&(0x7f00000008c0)={0x1040100, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) pipe(&(0x7f00000001c0)={0xffffffffffffffff, 0xffffffffffffffff}) mount$9p_fd(0x0, &(0x7f0000000040)='./file1\x00', &(0x7f00000000c0), 0x0, &(0x7f0000000200)=ANY=[@ANYBLOB="cd101d6304000000000000000000000000000000304010b1ce", @ANYRESOCT=r3, @ANYBLOB=',wfdno=', @ANYRESHEX=r4, @ANYBLOB=',afid=0x']) syz_genetlink_get_family_id$netlbl_mgmt(&(0x7f0000000300), r0) pipe(&(0x7f0000000000)) 10:16:10 executing program 1: r0 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x46e2, 0x0) dup2(r0, r0) r1 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000040), 0x2, 0x0) mount$9p_fd(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f00000000c0), 0x0, &(0x7f00000004c0)={'trans=fd,', {}, 0x2c, {'wfdno', 0x3d, r1}, 0x2c, {[{@debug}, {@debug={'debug', 0x3d, 0x10001}}, {@version_u}], [{@hash}, {@euid_gt}, {@fsmagic={'fsmagic', 0x3d, 0xfffffffffffffffc}}, {@euid_eq={'euid', 0x3d, 0xffffffffffffffff}}]}}) 10:16:10 executing program 6: r0 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x105142, 0x0) mmap$IORING_OFF_SQ_RING(&(0x7f0000003000/0x2000)=nil, 0x2000, 0xd, 0x12, r0, 0x0) r1 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x145142, 0x0) r2 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0) copy_file_range(r2, 0x0, r1, 0x0, 0x200f5ef, 0x1081030000000000) pipe2(&(0x7f0000000000)={0x0, 0x0}, 0x0) syz_io_uring_setup(0x5ece, &(0x7f0000001040)={0x0, 0x39b9, 0x20, 0x2, 0x800, 0x0, r3}, &(0x7f0000004000/0x3000)=nil, &(0x7f0000002000/0x2000)=nil, &(0x7f00000010c0), &(0x7f0000001100)) vmsplice(r4, &(0x7f00000012c0)=[{&(0x7f0000000040)="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", 0xfffffe90}], 0x1, 0x0) 10:16:10 executing program 2: r0 = creat(&(0x7f0000000000)='./file0\x00', 0x0) writev(r0, &(0x7f0000001340)=[{&(0x7f0000000080)='>', 0x1}], 0x1) fallocate(r0, 0x11, 0x0, 0x1000007ffe) fallocate(r0, 0x3, 0x0, 0x4) openat(0xffffffffffffff9c, &(0x7f0000000140)='./file0\x00', 0x105142, 0x0) r1 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0) r2 = openat$null(0xffffffffffffff9c, &(0x7f0000000040), 0x40, 0x0) ioctl$RTC_WKALM_RD(r2, 0x80287010, &(0x7f00000000c0)) copy_file_range(r1, 0x0, r0, 0x0, 0x200f5ef, 0x0) [ 460.800436] 9pnet: Insufficient options for proto=fd [ 460.864437] EXT4-fs (loop4): mounted filesystem without journal. Opts: ,errors=continue [ 460.865725] ext4 filesystem being mounted at /syzkaller-testdir776399023/syzkaller.JueKaw/48/file0 supports timestamps until 2038 (0x7fffffff) [ 460.871936] 9pnet: Insufficient options for proto=fd 10:16:21 executing program 2: perf_event_open(&(0x7f00000002c0)={0x2, 0x80, 0x9d, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x105142, 0x0) r1 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0) copy_file_range(r1, 0x0, r0, 0x0, 0x200f5ef, 0x0) r2 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000040)='/proc/diskstats\x00', 0x0, 0x0) ioctl$BTRFS_IOC_RM_DEV(r2, 0x5000940b, &(0x7f0000000340)={{}, "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"}) 10:16:21 executing program 6: r0 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x105142, 0x0) mmap$IORING_OFF_SQ_RING(&(0x7f0000003000/0x2000)=nil, 0x2000, 0xd, 0x12, r0, 0x0) r1 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x145142, 0x0) r2 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0) copy_file_range(r2, 0x0, r1, 0x0, 0x200f5ef, 0x1081030000000000) pipe2(&(0x7f0000000000)={0x0, 0x0}, 0x0) syz_io_uring_setup(0x5ece, &(0x7f0000001040)={0x0, 0x39b9, 0x20, 0x2, 0x800, 0x0, r3}, &(0x7f0000004000/0x3000)=nil, &(0x7f0000002000/0x2000)=nil, &(0x7f00000010c0), &(0x7f0000001100)) vmsplice(r4, &(0x7f00000012c0)=[{&(0x7f0000000040)="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", 0xfffffe90}], 0x1, 0x0) 10:16:21 executing program 3: r0 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x42, 0x0) openat(0xffffffffffffffff, &(0x7f0000000000)='./file1\x00', 0x200, 0xc4) r1 = openat$pidfd(0xffffffffffffff9c, &(0x7f00000000c0), 0x20600, 0x0) close(r1) ioctl$EXT4_IOC_GROUP_ADD(r0, 0xc0c0583b, &(0x7f0000000080)={0x5}) 10:16:21 executing program 0: r0 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x0, 0x0) r1 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffd000/0x3000)=nil, 0x3000, 0x0, 0x13, r0, 0x0) syz_io_uring_setup(0x4b9f, &(0x7f0000000140), &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000ffd000/0x3000)=nil, &(0x7f00000000c0), &(0x7f00000001c0)=0x0) syz_io_uring_submit(r1, r2, &(0x7f0000000240)=@IORING_OP_FADVISE={0x18, 0x0, 0x0, @fd, 0x2}, 0x0) sigaltstack(&(0x7f0000ffd000/0x1000)=nil, 0x0) 10:16:21 executing program 7: syz_mount_image$ext4(0x0, &(0x7f0000000380)='./file0\x00', 0x0, 0xffffffffffffff20, 0x0, 0x0, 0x0) syz_mount_image$nfs(&(0x7f0000000140), 0x0, 0x0, 0x1, &(0x7f0000000480)=[{&(0x7f0000000280), 0x0, 0xffffffffffffff4e}], 0x2081800, &(0x7f00000000c0)={[{'sysfs\x00'}, {'sysfs\x00'}, {'sysfs\x00'}, {}, {'/@!@^],+&$+^'}, {}], [{@fowner_eq={'fowner', 0x3d, 0xffffffffffffffff}}, {@euid_eq={'euid', 0x3d, 0xee01}}, {@smackfsroot={'smackfsroot', 0x3d, '[\'*(]#!+-'}}]}) mount(0x0, &(0x7f0000000180)='./file0\x00', &(0x7f0000000040)='sysfs\x00', 0x0, 0x0) umount2(&(0x7f0000000080)='./file0\x00', 0x4) creat(&(0x7f0000000080)='./file1\x00', 0x0) r0 = syz_io_uring_complete(0x0) write$P9_RREADDIR(r0, &(0x7f00000001c0)=ANY=[@ANYBLOB="49000000290200090000000003000000010000000000000002000000000000000007002e2f66696c6531000000000003000000000000002a6b1af1000000004007002e2f66696c6531"], 0x49) umount2(&(0x7f0000000000)='./file0\x00', 0xc) 10:16:21 executing program 5: r0 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x46e2, 0x0) r1 = dup2(r0, r0) r2 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000040), 0x2, 0x0) mount$9p_fd(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f00000000c0), 0x0, &(0x7f00000004c0)={'trans=fd,', {'rfdno', 0x3d, r1}, 0x2c, {'wfdno', 0x3d, r2}, 0x2c, {[{@debug}, {@debug={'debug', 0x3d, 0x10001}}], [{@hash}, {@euid_gt}, {@fsmagic={'fsmagic', 0x3d, 0xfffffffffffffffc}}, {@euid_eq={'euid', 0x3d, 0xffffffffffffffff}}]}}) 10:16:21 executing program 4: r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000040), 0x2, 0x0) write$binfmt_aout(r0, &(0x7f0000000640), 0x20) read(r0, &(0x7f0000000100)=""/146, 0x92) ioctl$TIOCNOTTY(r0, 0x5422) r1 = syz_mount_image$vfat(&(0x7f0000000000), &(0x7f0000000100)='./file0\x00', 0x0, 0x2, &(0x7f0000000200)=[{&(0x7f0000010000)="eb3c906d6b66732e66617400028001000440000004f801", 0x17}, {0x0, 0x0, 0xfff}], 0x0, &(0x7f0000000440)=ANY=[]) symlinkat(&(0x7f0000000040)='./file0\x00', r1, &(0x7f0000000080)='./file1\x00') 10:16:21 executing program 1: r0 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x46e2, 0x0) dup2(r0, r0) r1 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000040), 0x2, 0x0) mount$9p_fd(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f00000000c0), 0x0, &(0x7f00000004c0)={'trans=fd,', {}, 0x2c, {'wfdno', 0x3d, r1}, 0x2c, {[{@debug}, {@debug={'debug', 0x3d, 0x10001}}, {@version_u}], [{@hash}, {@euid_gt}, {@fsmagic={'fsmagic', 0x3d, 0xfffffffffffffffc}}, {@euid_eq={'euid', 0x3d, 0xffffffffffffffff}}]}}) [ 472.137544] 9pnet: Insufficient options for proto=fd 10:16:22 executing program 1: r0 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x46e2, 0x0) dup2(r0, r0) r1 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000040), 0x2, 0x0) mount$9p_fd(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f00000000c0), 0x0, &(0x7f00000004c0)={'trans=fd,', {}, 0x2c, {'wfdno', 0x3d, r1}, 0x2c, {[{@debug}, {@debug={'debug', 0x3d, 0x10001}}, {@version_u}], [{@hash}, {@euid_gt}, {@fsmagic={'fsmagic', 0x3d, 0xfffffffffffffffc}}, {@euid_eq={'euid', 0x3d, 0xffffffffffffffff}}]}}) 10:16:22 executing program 0: r0 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x0, 0x0) r1 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffd000/0x3000)=nil, 0x3000, 0x0, 0x13, r0, 0x0) syz_io_uring_setup(0x4b9f, &(0x7f0000000140), &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000ffd000/0x3000)=nil, &(0x7f00000000c0), &(0x7f00000001c0)=0x0) syz_io_uring_submit(r1, r2, &(0x7f0000000240)=@IORING_OP_FADVISE={0x18, 0x0, 0x0, @fd, 0x2}, 0x0) sigaltstack(&(0x7f0000ffd000/0x1000)=nil, 0x0) 10:16:22 executing program 5: r0 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x46e2, 0x0) r1 = dup2(r0, r0) r2 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000040), 0x2, 0x0) mount$9p_fd(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f00000000c0), 0x0, &(0x7f00000004c0)={'trans=fd,', {'rfdno', 0x3d, r1}, 0x2c, {'wfdno', 0x3d, r2}, 0x2c, {[{@debug}], [{@hash}, {@euid_gt}, {@fsmagic={'fsmagic', 0x3d, 0xfffffffffffffffc}}, {@euid_eq={'euid', 0x3d, 0xffffffffffffffff}}]}}) 10:16:22 executing program 4: r0 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x46e2, 0x0) r1 = dup2(r0, r0) r2 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000040), 0x2, 0x0) mount$9p_fd(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f00000000c0), 0x0, &(0x7f00000004c0)={'trans=fd,', {'rfdno', 0x3d, r1}, 0x2c, {'wfdno', 0x3d, r2}, 0x2c, {[{@debug}, {@debug={'debug', 0x3d, 0x10001}}], [{@hash}, {@euid_gt}, {@fsmagic={'fsmagic', 0x3d, 0xfffffffffffffffc}}, {@euid_eq={'euid', 0x3d, 0xffffffffffffffff}}]}}) [ 472.281827] 9pnet: Insufficient options for proto=fd 10:16:22 executing program 3: syz_mount_image$ext4(0x0, &(0x7f0000000040)='./file0\x00', 0x0, 0x0, 0x0, 0x308400, 0x0) mount(0x0, &(0x7f00000004c0)='./file0\x00', &(0x7f0000000500)='ramfs\x00', 0x0, 0x0) unlink(&(0x7f0000000080)='./file0/file1\x00') 10:16:22 executing program 1: r0 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x46e2, 0x0) r1 = dup2(r0, r0) openat$ptmx(0xffffffffffffff9c, &(0x7f0000000040), 0x2, 0x0) mount$9p_fd(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f00000000c0), 0x0, &(0x7f00000004c0)={'trans=fd,', {'rfdno', 0x3d, r1}, 0x2c, {}, 0x2c, {[{@debug}, {@debug={'debug', 0x3d, 0x10001}}, {@version_u}], [{@hash}, {@euid_gt}, {@fsmagic={'fsmagic', 0x3d, 0xfffffffffffffffc}}, {@euid_eq={'euid', 0x3d, 0xffffffffffffffff}}]}}) 10:16:22 executing program 7: r0 = perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x0, 0x0, 0x0, 0x0, 0x80}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r1 = gettid() rt_sigqueueinfo(r1, 0x400001, &(0x7f00000000c0)) perf_event_open(&(0x7f0000000100)={0x4, 0x80, 0x2, 0x5, 0xfe, 0xfb, 0x0, 0x3, 0x60208, 0x5, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x1, 0x1, 0x1, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x3, 0x1, 0x1, 0x1, 0x1, 0x1, 0x0, 0x0, 0x0, 0x1, 0x0, 0x1, 0x1, 0x0, 0x1, 0x0, 0x1, 0x0, 0x0, 0x1, 0x1, 0x0, 0x0, 0x2, 0x0, @perf_config_ext={0x7fffffff, 0x5}, 0x1e000, 0x1, 0xfff, 0x2, 0x9f0, 0x6, 0x9, 0x0, 0x7f, 0x0, 0x4}, r1, 0xf, r0, 0x4) r2 = socket$nl_xfrm(0x10, 0x3, 0x6) ioctl$PERF_EVENT_IOC_SET_OUTPUT(r0, 0x2405, r0) r3 = dup2(r2, r0) mmap$perf(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x2000000, 0x13, r3, 0xfffffffffffffff9) sendmsg$nl_xfrm(r2, &(0x7f0000000000)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000280)=@newpolicy={0xb8, 0x13, 0x1, 0x0, 0x0, {{@in=@broadcast, @in6=@mcast2, 0x0, 0x0, 0x0, 0x0, 0xa, 0x40, 0x3c}}}, 0xb8}}, 0x0) 10:16:22 executing program 5: r0 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x46e2, 0x0) r1 = dup2(r0, r0) r2 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000040), 0x2, 0x0) mount$9p_fd(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f00000000c0), 0x0, &(0x7f00000004c0)={'trans=fd,', {'rfdno', 0x3d, r1}, 0x2c, {'wfdno', 0x3d, r2}, 0x2c, {[], [{@hash}, {@euid_gt}, {@fsmagic={'fsmagic', 0x3d, 0xfffffffffffffffc}}, {@euid_eq={'euid', 0x3d, 0xffffffffffffffff}}]}}) [ 472.393414] 9pnet: Insufficient options for proto=fd 10:16:33 executing program 6: r0 = socket$inet_udp(0x2, 0x2, 0x0) bind$inet(r0, &(0x7f0000000040)={0x2, 0x4e20, @empty}, 0x10) syz_emit_ethernet(0x2a, &(0x7f0000000080)={@local, @empty, @void, {@ipv4={0x800, @udp={{0x5, 0x4, 0x0, 0x0, 0x1c, 0x0, 0x0, 0x0, 0x11, 0x0, @empty, @empty}, {0x0, 0x4e20, 0x8}}}}}, 0x0) setsockopt$IP_VS_SO_SET_STARTDAEMON(r0, 0x0, 0x48b, &(0x7f00000000c0)={0x2, 'vlan1\x00', 0x2}, 0x18) setsockopt$SO_TIMESTAMP(r0, 0x1, 0x1d, &(0x7f0000000000)=0x7f, 0x4) recvfrom(r0, 0x0, 0x0, 0x0, 0x0, 0x0) 10:16:33 executing program 5: r0 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x46e2, 0x0) r1 = dup2(r0, r0) r2 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000040), 0x2, 0x0) mount$9p_fd(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f00000000c0), 0x0, &(0x7f00000004c0)={'trans=fd,', {'rfdno', 0x3d, r1}, 0x2c, {'wfdno', 0x3d, r2}, 0x2c, {[], [{@hash}, {@euid_gt}, {@fsmagic={'fsmagic', 0x3d, 0xfffffffffffffffc}}]}}) 10:16:33 executing program 4: r0 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x46e2, 0x0) r1 = dup2(r0, r0) r2 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000040), 0x2, 0x0) mount$9p_fd(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f00000000c0), 0x0, &(0x7f00000004c0)={'trans=fd,', {'rfdno', 0x3d, r1}, 0x2c, {'wfdno', 0x3d, r2}, 0x2c, {[{@debug}], [{@hash}, {@euid_gt}, {@fsmagic={'fsmagic', 0x3d, 0xfffffffffffffffc}}, {@euid_eq={'euid', 0x3d, 0xffffffffffffffff}}]}}) 10:16:33 executing program 0: r0 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x46e2, 0x0) r1 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffd000/0x3000)=nil, 0x3000, 0x0, 0x10, r0, 0x0) syz_io_uring_setup(0x4b9f, &(0x7f0000000140), &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000ffd000/0x3000)=nil, &(0x7f00000000c0), &(0x7f00000001c0)=0x0) syz_io_uring_submit(r1, r2, &(0x7f0000000240)=@IORING_OP_FADVISE={0x18, 0x0, 0x0, @fd, 0x2}, 0x0) sigaltstack(&(0x7f0000ffd000/0x1000)=nil, 0x0) 10:16:33 executing program 2: ioctl$TCSETSF2(0xffffffffffffffff, 0x402c542d, &(0x7f0000000000)={0x0, 0x0, 0x0, 0x0, 0x6, "e50081000000f1000000000000a62200"}) r0 = openat$tun(0xffffffffffffff9c, &(0x7f0000000700), 0x0, 0x0) ioctl$TUNSETQUEUE(r0, 0x400454ca, &(0x7f0000000000)={'veth0_vlan\x00'}) r1 = io_uring_setup(0x0, &(0x7f00000001c0)={0x0, 0x0, 0x0, 0x0, 0x161}) pread64(r1, &(0x7f00000000c0)=""/154, 0x9a, 0x0) r2 = socket$inet(0x2, 0xa, 0x0) ioctl$sock_inet_SIOCGIFNETMASK(r2, 0x8914, &(0x7f00000001c0)={'veth0_vlan\x00', {0x2, 0x0, @empty}}) 10:16:33 executing program 1: r0 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x46e2, 0x0) r1 = dup2(r0, r0) openat$ptmx(0xffffffffffffff9c, &(0x7f0000000040), 0x2, 0x0) mount$9p_fd(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f00000000c0), 0x0, &(0x7f00000004c0)={'trans=fd,', {'rfdno', 0x3d, r1}, 0x2c, {}, 0x2c, {[{@debug}, {@debug={'debug', 0x3d, 0x10001}}, {@version_u}], [{@hash}, {@euid_gt}, {@fsmagic={'fsmagic', 0x3d, 0xfffffffffffffffc}}, {@euid_eq={'euid', 0x3d, 0xffffffffffffffff}}]}}) 10:16:33 executing program 3: openat(0xffffffffffffffff, &(0x7f0000000000)='/proc/self/exe\x00', 0x40, 0x0) lsetxattr$trusted_overlay_origin(&(0x7f0000000040)='./file0\x00', &(0x7f0000000080), &(0x7f00000000c0), 0x2, 0x1) unlink(&(0x7f0000000100)='./file0\x00') 10:16:33 executing program 7: r0 = creat(&(0x7f0000000200)='./file1\x00', 0x0) r1 = socket$inet6_tcp(0xa, 0x1, 0x0) r2 = openat(0xffffffffffffffff, &(0x7f0000000100)='./file1\x00', 0x42, 0x0) r3 = open(&(0x7f0000000040)='./file0\x00', 0x1810c1, 0x0) r4 = creat(&(0x7f0000000080)='./file1\x00', 0x41) pwrite64(r4, &(0x7f0000000000)="a7", 0xfffffd6b, 0x0) pwrite64(r3, 0x0, 0x0, 0x0) creat(&(0x7f0000000000)='./file0\x00', 0x0) dup2(r2, r3) setsockopt$inet6_tcp_int(r1, 0x6, 0xa, &(0x7f0000000040)=0x28c0, 0x4) bind$inet6(0xffffffffffffffff, &(0x7f00000000c0)={0xa, 0x4e20, 0x0, @dev={0xfe, 0x80, '\x00', 0x16}}, 0x9) connect$inet6(r1, &(0x7f0000000000)={0xa, 0x4e20, 0x0, @loopback}, 0x1c) sendmsg$inet6(r1, &(0x7f00000006c0)={0x0, 0x0, &(0x7f0000000540)=[{&(0x7f00000001c0)="cf", 0xfffffdef}], 0x1}, 0x10044001) unlink(&(0x7f0000000140)='./file0\x00') recvfrom$inet6(r0, &(0x7f0000002740)=""/4116, 0x1000, 0x100c0, 0x0, 0xfffffffffffffdc3) recvmsg(0xffffffffffffffff, &(0x7f0000001400)={&(0x7f0000000080)=@rc={0x1f, @none}, 0x80, &(0x7f0000000380)=[{0x0}, {&(0x7f0000000000)=""/9, 0x9}, {&(0x7f00000001c0)=""/27, 0x1b}, {&(0x7f0000000280)=""/28, 0x1c}, {&(0x7f00000002c0)=""/154, 0x9a}], 0x5, &(0x7f0000000400)=""/4096, 0x1000}, 0x0) ioctl$SNDRV_SEQ_IOCTL_SET_QUEUE_CLIENT(0xffffffffffffffff, 0x404c534a, 0x0) connect$inet6(0xffffffffffffffff, 0x0, 0x0) ioctl$sock_inet6_tcp_SIOCINQ(r0, 0x541b, &(0x7f0000000180)) fallocate(0xffffffffffffffff, 0x0, 0x0, 0x8800000) [ 483.644166] 9pnet: Insufficient options for proto=fd 10:16:33 executing program 3: perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r0 = socket$inet6_tcp(0xa, 0x1, 0x0) fcntl$setstatus(r0, 0x4, 0x2000) splice(r0, &(0x7f0000000000)=0xee6, r0, &(0x7f00000000c0)=0x1, 0x4, 0xc) r1 = fork() ioctl$sock_SIOCSPGRP(r0, 0x8902, &(0x7f0000000040)=r1) connect$inet6(r0, &(0x7f0000000140)={0xa, 0x4e20, 0x3, @mcast1, 0x5}, 0x1c) connect$inet6(r0, &(0x7f0000000180)={0xa, 0x0, 0x0, @empty}, 0x1c) setsockopt$inet6_int(0xffffffffffffffff, 0x29, 0x33, &(0x7f0000000100)=0x80, 0x4) r2 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000040), 0x2, 0x0) write$binfmt_aout(r2, &(0x7f0000000640), 0x20) read(r2, &(0x7f0000000100)=""/146, 0x92) ioctl$F2FS_IOC_RESERVE_COMPRESS_BLOCKS(r2, 0x8008f513, &(0x7f00000001c0)) 10:16:33 executing program 0: r0 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x46e2, 0x0) r1 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffd000/0x3000)=nil, 0x3000, 0x0, 0x10, r0, 0x0) syz_io_uring_setup(0x4b9f, &(0x7f0000000140), &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000ffd000/0x3000)=nil, &(0x7f00000000c0), &(0x7f00000001c0)=0x0) syz_io_uring_submit(r1, r2, &(0x7f0000000240)=@IORING_OP_FADVISE={0x18, 0x0, 0x0, @fd, 0x2}, 0x0) sigaltstack(&(0x7f0000ffd000/0x1000)=nil, 0x0) 10:16:33 executing program 1: r0 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x46e2, 0x0) r1 = dup2(r0, r0) openat$ptmx(0xffffffffffffff9c, &(0x7f0000000040), 0x2, 0x0) mount$9p_fd(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f00000000c0), 0x0, &(0x7f00000004c0)={'trans=fd,', {'rfdno', 0x3d, r1}, 0x2c, {}, 0x2c, {[{@debug}, {@debug={'debug', 0x3d, 0x10001}}, {@version_u}], [{@hash}, {@euid_gt}, {@fsmagic={'fsmagic', 0x3d, 0xfffffffffffffffc}}, {@euid_eq={'euid', 0x3d, 0xffffffffffffffff}}]}}) 10:16:33 executing program 4: r0 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x46e2, 0x0) r1 = dup2(r0, r0) r2 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000040), 0x2, 0x0) mount$9p_fd(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f00000000c0), 0x0, &(0x7f00000004c0)={'trans=fd,', {'rfdno', 0x3d, r1}, 0x2c, {'wfdno', 0x3d, r2}, 0x2c, {[{@debug}], [{@hash}, {@euid_gt}, {@fsmagic={'fsmagic', 0x3d, 0xfffffffffffffffc}}, {@euid_eq={'euid', 0x3d, 0xffffffffffffffff}}]}}) 10:16:33 executing program 5: r0 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x46e2, 0x0) r1 = dup2(r0, r0) r2 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000040), 0x2, 0x0) mount$9p_fd(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f00000000c0), 0x0, &(0x7f00000004c0)={'trans=fd,', {'rfdno', 0x3d, r1}, 0x2c, {'wfdno', 0x3d, r2}, 0x2c, {[], [{@hash}, {@euid_gt}]}}) [ 483.745755] 9pnet: Insufficient options for proto=fd [ 483.823797] device veth0_vlan entered promiscuous mode [ 483.957087] device veth0_vlan entered promiscuous mode 10:16:45 executing program 1: r0 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x46e2, 0x0) r1 = dup2(r0, r0) r2 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000040), 0x2, 0x0) mount$9p_fd(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f00000000c0), 0x0, &(0x7f00000004c0)={'trans=fd,', {'rfdno', 0x3d, r1}, 0x2c, {'wfdno', 0x3d, r2}, 0x2c, {[{@debug}, {@debug={'debug', 0x3d, 0x10001}}], [{@hash}, {@euid_gt}, {@fsmagic={'fsmagic', 0x3d, 0xfffffffffffffffc}}, {@euid_eq={'euid', 0x3d, 0xffffffffffffffff}}]}}) 10:16:45 executing program 6: syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x40000, 0x4, &(0x7f0000000440)=[{&(0x7f0000010000)="200000008000000006000000660000000f000000000000000100000001000000004000000040000020000000daf4655fdaf4655f0100ffff53ef010001000000d9f4655f000000000000000001000000000000000b0000000002", 0x5a, 0x400}, {&(0x7f0000010100)="0000000000000000655a4e10bf1130ee7fdbd1e0010000000c00000000000000d9f4", 0x22, 0x4e0}, {&(0x7f0000010300)="02000000030000000400000066000f000300040000000000000000000f007f5c", 0x20, 0x800}, {&(0x7f0000011500)="ed41000000080000d9f4655fdaf4655fdaf4655f000000000000040004", 0x1d, 0x2200}], 0x0, &(0x7f0000012c00)) mount(&(0x7f0000000040)=@nullb, &(0x7f0000000080)='./file0\x00', &(0x7f00000000c0)='ext4\x00', 0x8000, 0x0) mknod$loop(&(0x7f0000000140)='./file0\x00', 0x2, 0x0) 10:16:45 executing program 7: r0 = fork() r1 = pidfd_open(r0, 0x0) tkill(r0, 0x34) wait4(r0, &(0x7f0000000000), 0xf, &(0x7f0000000040)) fork() process_madvise(r1, 0x0, 0x0, 0x14, 0x0) 10:16:45 executing program 2: perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r0 = socket$inet6_tcp(0xa, 0x1, 0x0) fcntl$setstatus(r0, 0x4, 0x2000) splice(r0, &(0x7f0000000000)=0xee6, r0, &(0x7f00000000c0)=0x1, 0x4, 0xc) r1 = fork() ioctl$sock_SIOCSPGRP(r0, 0x8902, &(0x7f0000000040)=r1) connect$inet6(r0, &(0x7f0000000140)={0xa, 0x4e20, 0x3, @mcast1, 0x5}, 0x1c) connect$inet6(r0, &(0x7f0000000180)={0xa, 0x0, 0x0, @empty}, 0x1c) setsockopt$inet6_int(0xffffffffffffffff, 0x29, 0x33, &(0x7f0000000100)=0x80, 0x4) r2 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000040), 0x2, 0x0) write$binfmt_aout(r2, &(0x7f0000000640), 0x20) read(r2, &(0x7f0000000100)=""/146, 0x92) ioctl$F2FS_IOC_RESERVE_COMPRESS_BLOCKS(r2, 0x8008f513, &(0x7f00000001c0)) 10:16:45 executing program 4: r0 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x46e2, 0x0) r1 = dup2(r0, r0) r2 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000040), 0x2, 0x0) mount$9p_fd(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f00000000c0), 0x0, &(0x7f00000004c0)={'trans=fd,', {'rfdno', 0x3d, r1}, 0x2c, {'wfdno', 0x3d, r2}, 0x2c, {[{@debug}], [{@hash}, {@euid_gt}, {@fsmagic={'fsmagic', 0x3d, 0xfffffffffffffffc}}, {@euid_eq={'euid', 0x3d, 0xffffffffffffffff}}]}}) 10:16:45 executing program 0: r0 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x46e2, 0x0) r1 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffd000/0x3000)=nil, 0x3000, 0x0, 0x10, r0, 0x0) syz_io_uring_setup(0x4b9f, &(0x7f0000000140), &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000ffd000/0x3000)=nil, &(0x7f00000000c0), &(0x7f00000001c0)=0x0) syz_io_uring_submit(r1, r2, &(0x7f0000000240)=@IORING_OP_FADVISE={0x18, 0x0, 0x0, @fd, 0x2}, 0x0) sigaltstack(&(0x7f0000ffd000/0x1000)=nil, 0x0) 10:16:45 executing program 3: perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r0 = socket$inet6_tcp(0xa, 0x1, 0x0) fcntl$setstatus(r0, 0x4, 0x2000) splice(r0, &(0x7f0000000000)=0xee6, r0, &(0x7f00000000c0)=0x1, 0x4, 0xc) r1 = fork() ioctl$sock_SIOCSPGRP(r0, 0x8902, &(0x7f0000000040)=r1) connect$inet6(r0, &(0x7f0000000140)={0xa, 0x4e20, 0x3, @mcast1, 0x5}, 0x1c) connect$inet6(r0, &(0x7f0000000180)={0xa, 0x0, 0x0, @empty}, 0x1c) setsockopt$inet6_int(0xffffffffffffffff, 0x29, 0x33, &(0x7f0000000100)=0x80, 0x4) r2 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000040), 0x2, 0x0) write$binfmt_aout(r2, &(0x7f0000000640), 0x20) read(r2, &(0x7f0000000100)=""/146, 0x92) ioctl$F2FS_IOC_RESERVE_COMPRESS_BLOCKS(r2, 0x8008f513, &(0x7f00000001c0)) 10:16:45 executing program 5: r0 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x46e2, 0x0) r1 = dup2(r0, r0) r2 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000040), 0x2, 0x0) mount$9p_fd(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f00000000c0), 0x0, &(0x7f00000004c0)={'trans=fd,', {'rfdno', 0x3d, r1}, 0x2c, {'wfdno', 0x3d, r2}, 0x2c, {[], [{@hash}]}}) [ 495.967312] [EXT4 FS bs=2048, gc=1, bpg=16384, ipg=32, mo=e802e018, mo2=0002] [ 495.968711] System zones: 0-11 [ 495.972081] EXT4-fs error (device loop6): ext4_orphan_get:1413: comm syz-executor.6: bad orphan inode 273570405 [ 495.995700] EXT4-fs (loop6): mounted filesystem without journal. Opts: ,errors=continue 10:16:45 executing program 5: r0 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x46e2, 0x0) r1 = dup2(r0, r0) r2 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000040), 0x2, 0x0) mount$9p_fd(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f00000000c0), 0x0, &(0x7f00000004c0)={'trans=fd,', {'rfdno', 0x3d, r1}, 0x2c, {'wfdno', 0x3d, r2}}) 10:16:45 executing program 0: openat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x46e2, 0x0) r0 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffd000/0x3000)=nil, 0x3000, 0x0, 0x13, 0xffffffffffffffff, 0x0) syz_io_uring_setup(0x4b9f, &(0x7f0000000140), &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000ffd000/0x3000)=nil, &(0x7f00000000c0), &(0x7f00000001c0)=0x0) syz_io_uring_submit(r0, r1, &(0x7f0000000240)=@IORING_OP_FADVISE={0x18, 0x0, 0x0, @fd, 0x2}, 0x0) sigaltstack(&(0x7f0000ffd000/0x1000)=nil, 0x0) 10:16:45 executing program 4: r0 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x46e2, 0x0) r1 = dup2(r0, r0) mount$9p_fd(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f00000000c0), 0x0, &(0x7f00000004c0)={'trans=fd,', {'rfdno', 0x3d, r1}, 0x2c, {}, 0x2c, {[{@debug}], [{@hash}, {@euid_gt}, {@fsmagic={'fsmagic', 0x3d, 0xfffffffffffffffc}}, {@euid_eq={'euid', 0x3d, 0xffffffffffffffff}}]}}) 10:16:45 executing program 1: r0 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x46e2, 0x0) r1 = dup2(r0, r0) r2 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000040), 0x2, 0x0) mount$9p_fd(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f00000000c0), 0x0, &(0x7f00000004c0)={'trans=fd,', {'rfdno', 0x3d, r1}, 0x2c, {'wfdno', 0x3d, r2}, 0x2c, {[{@debug}], [{@hash}, {@euid_gt}, {@fsmagic={'fsmagic', 0x3d, 0xfffffffffffffffc}}, {@euid_eq={'euid', 0x3d, 0xffffffffffffffff}}]}}) 10:16:45 executing program 6: r0 = syz_mount_image$vfat(0x0, 0x0, 0x0, 0x2, &(0x7f0000000d40)=[{&(0x7f0000000b40)="ca", 0x1}, {&(0x7f0000000c80)="ac", 0x1}], 0x0, 0x0) dup3(r0, r0, 0x0) 10:16:45 executing program 0: openat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x46e2, 0x0) r0 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffd000/0x3000)=nil, 0x3000, 0x0, 0x13, 0xffffffffffffffff, 0x0) syz_io_uring_setup(0x4b9f, &(0x7f0000000140), &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000ffd000/0x3000)=nil, &(0x7f00000000c0), &(0x7f00000001c0)=0x0) syz_io_uring_submit(r0, r1, &(0x7f0000000240)=@IORING_OP_FADVISE={0x18, 0x0, 0x0, @fd, 0x2}, 0x0) sigaltstack(&(0x7f0000ffd000/0x1000)=nil, 0x0) [ 496.149495] 9pnet: Insufficient options for proto=fd 10:16:46 executing program 5 (fault-call:3 fault-nth:0): r0 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x46e2, 0x0) r1 = dup2(r0, r0) r2 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000040), 0x2, 0x0) mount$9p_fd(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f00000000c0), 0x0, &(0x7f00000004c0)={'trans=fd,', {'rfdno', 0x3d, r1}, 0x2c, {'wfdno', 0x3d, r2}}) 10:16:46 executing program 7: r0 = syz_open_dev$tty1(0xc, 0x4, 0x1) writev(r0, &(0x7f00000005c0)=[{0x0}, {0x0}, {&(0x7f0000000240)}, {&(0x7f0000000840)="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", 0x6c8}], 0x4) ioctl$VT_DISALLOCATE(r0, 0x5608) r1 = syz_open_dev$tty1(0xc, 0x4, 0x1) ioctl$PIO_FONTX(r1, 0x4b6c, &(0x7f0000000500)={0x0, 0x12, &(0x7f0000000100)="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"}) ioctl$TIOCGSERIAL(r1, 0x541e, &(0x7f0000000540)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, &(0x7f0000000000)=""/134}) r2 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000040), 0x2, 0x0) write$binfmt_aout(r2, &(0x7f0000000640), 0x20) read(r2, &(0x7f0000000100)=""/146, 0x92) vmsplice(0xffffffffffffffff, &(0x7f0000000800)=[{&(0x7f0000000680)="8a6e5148a1b71042a348dbc6af4dd486ab99ccca22596cd2e2f645a2a046bcb82df7131adc34b473d15ee3f079640f822b9915727ebd1b01bc0aac00fd0b41c1e1a15441a864978ba0b6e72154b001392a4d7e66c4de1c42c2bcfbb10616adca54a190f8f029fb2275bdcb2bf70b23f7b3f357f903d3715afe7ea0f3a42045640401b058289e489e5bc1ee947812d398f7872c62e18af6964b7ad59fee8425135d73473ef0a8dcb8308ffd22ac9023a02945ac3fae4ec472c21f55cd634c9ebcf0f27f9bad44c40290264caf703c1b493e5982573e8afbcdf7783ef849ba866e797b7482246400031eec945c8f42", 0xee}, {&(0x7f0000000f40)="ae86de22061c08a5c330e0ac226e46bcdd3db0a9ea907cca4f0aefb6f729bc1600247bd395129821201c11b6d60b75eb0f363d0c076ce4faae3ab9b84235b61d0e822eaebe25d2d8ef219daccf1d617260f1f6845e8f6fc9b114609dfb32cbd4496347a928b16bae04eb776aa7ef0fcafa5bdafcce34637b4c5007ae63b01399b9198673b23af647b629ade2b0e89e4867d4d84479d396f63f1b2734ace25ab04c80d312f6a4bb6c54c389691026860f151151e3efe1b67b28fea46fcbb6cbfd99128ce567217173f0cd5b34acb47c3a47dd503844f780f72ca5e8b466d0fd7476f5a45d1305a4573cc75b9f954106da", 0xf0}, {&(0x7f0000000780)="fb46187b14a1d65c0fae2a0316b554baa0441047c21e689cb0b877221ccce55afe033fd9c915f805cf699a99584cb9f3e831d40ee73b6f20017fde58158d3aaaaec35c", 0x43}, {&(0x7f0000000600)="f00c52d6d88470e2251970bdca261d641ceafbbb8bc5623a4dcab75f4e607ba1d4d58a261c2419", 0x27}], 0x4, 0xa) sendfile(r0, r2, &(0x7f00000000c0), 0x82) 10:16:46 executing program 6: r0 = syz_mount_image$vfat(&(0x7f0000000080), &(0x7f0000000100)='./file0\x00', 0x0, 0x2, &(0x7f0000000200)=[{&(0x7f0000000140)="eb3c906d6b66732e66617400020801000470008000f801", 0x17}, {0x0, 0x0, 0x1000a00}], 0x0, &(0x7f0000000000)) chdir(&(0x7f0000000040)='./file0\x00') r1 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x105142, 0x0) r2 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x105142, 0x0) uselib(&(0x7f00000000c0)='./file0\x00') r3 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0) copy_file_range(r3, 0x0, r2, 0x0, 0x200f5ef, 0x0) ftruncate(r1, 0xfff) ioctl$sock_inet_SIOCSIFFLAGS(0xffffffffffffffff, 0x8914, &(0x7f0000000180)={'tunl0\x00'}) copy_file_range(r0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0) [ 496.206058] FAULT_INJECTION: forcing a failure. [ 496.206058] name failslab, interval 1, probability 0, space 0, times 1 [ 496.208628] CPU: 0 PID: 6377 Comm: syz-executor.5 Not tainted 5.10.56 #1 [ 496.210066] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS rel-1.14.0-0-g155821a1990b-prebuilt.qemu.org 04/01/2014 [ 496.212513] Call Trace: [ 496.213078] dump_stack+0x107/0x163 [ 496.213854] should_fail.cold+0x5/0xa [ 496.214689] should_failslab+0x5/0x10 [ 496.215492] __kmalloc_track_caller+0x79/0x3c0 [ 496.216452] ? strndup_user+0x70/0xe0 [ 496.217265] memdup_user+0x22/0xd0 [ 496.218041] strndup_user+0x70/0xe0 [ 496.218835] __x64_sys_mount+0x133/0x300 [ 496.219712] ? path_mount+0x2080/0x2080 [ 496.220569] ? rcu_read_lock_sched_held+0x3a/0x70 [ 496.221607] do_syscall_64+0x33/0x40 [ 496.222403] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 496.223507] RIP: 0033:0x466609 [ 496.224195] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 496.228160] RSP: 002b:00007fd61fccc188 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5 [ 496.229787] RAX: ffffffffffffffda RBX: 000000000056bf80 RCX: 0000000000466609 [ 496.231317] RDX: 00000000200000c0 RSI: 0000000020000000 RDI: 0000000000000000 [ 496.232838] RBP: 00007fd61fccc1d0 R08: 00000000200004c0 R09: 0000000000000000 [ 496.234353] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 496.235887] R13: 00007fff09eaa3cf R14: 00007fd61fccc300 R15: 0000000000022000 10:16:46 executing program 4: r0 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x46e2, 0x0) r1 = dup2(r0, r0) mount$9p_fd(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f00000000c0), 0x0, &(0x7f00000004c0)={'trans=fd,', {'rfdno', 0x3d, r1}, 0x2c, {}, 0x2c, {[{@debug}], [{@hash}, {@euid_gt}, {@fsmagic={'fsmagic', 0x3d, 0xfffffffffffffffc}}, {@euid_eq={'euid', 0x3d, 0xffffffffffffffff}}]}}) 10:16:46 executing program 0: openat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x46e2, 0x0) r0 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffd000/0x3000)=nil, 0x3000, 0x0, 0x13, 0xffffffffffffffff, 0x0) syz_io_uring_setup(0x4b9f, &(0x7f0000000140), &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000ffd000/0x3000)=nil, &(0x7f00000000c0), &(0x7f00000001c0)=0x0) syz_io_uring_submit(r0, r1, &(0x7f0000000240)=@IORING_OP_FADVISE={0x18, 0x0, 0x0, @fd, 0x2}, 0x0) sigaltstack(&(0x7f0000ffd000/0x1000)=nil, 0x0) [ 496.287175] 9pnet: Insufficient options for proto=fd 10:17:00 executing program 7: r0 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$TEAM_CMD_NOOP(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000040)={0x0}, 0x1, 0x0, 0x0, 0x1}, 0x0) syz_genetlink_get_family_id$team(&(0x7f0000000080), r0) r1 = openat$procfs(0xffffffffffffff9c, &(0x7f00000000c0)='/proc/sysvipc/msg\x00', 0x0, 0x0) getsockopt$netlink(r1, 0x10e, 0xa, &(0x7f0000000100)=""/40, &(0x7f0000000140)=0x28) 10:17:00 executing program 3: perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r0 = socket$inet6_tcp(0xa, 0x1, 0x0) fcntl$setstatus(r0, 0x4, 0x2000) splice(r0, &(0x7f0000000000)=0xee6, r0, &(0x7f00000000c0)=0x1, 0x4, 0xc) r1 = fork() ioctl$sock_SIOCSPGRP(r0, 0x8902, &(0x7f0000000040)=r1) connect$inet6(r0, &(0x7f0000000140)={0xa, 0x4e20, 0x3, @mcast1, 0x5}, 0x1c) connect$inet6(r0, &(0x7f0000000180)={0xa, 0x0, 0x0, @empty}, 0x1c) setsockopt$inet6_int(0xffffffffffffffff, 0x29, 0x33, &(0x7f0000000100)=0x80, 0x4) r2 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000040), 0x2, 0x0) write$binfmt_aout(r2, &(0x7f0000000640), 0x20) read(r2, &(0x7f0000000100)=""/146, 0x92) ioctl$F2FS_IOC_RESERVE_COMPRESS_BLOCKS(r2, 0x8008f513, &(0x7f00000001c0)) 10:17:00 executing program 2: openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x42, 0x0) mount(&(0x7f0000000080)=@sr0, &(0x7f00000000c0)='./file1\x00', 0x0, 0x209000, 0x0) r0 = openat(0xffffffffffffff9c, &(0x7f0000004c40)='./file1\x00', 0x84e00, 0x0) stat(&(0x7f0000001cc0)='.\x00', &(0x7f0000001c00)={0x0, 0x0, 0x0, 0x0, 0x0}) setresuid(0x0, r1, 0x0) ioctl$SG_SET_TIMEOUT(r0, 0x31f, 0x0) setxattr$incfs_size(&(0x7f0000000000)='./file1\x00', &(0x7f0000000040), &(0x7f0000000140)=0x10001, 0x8, 0x3) 10:17:00 executing program 1: r0 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x46e2, 0x0) r1 = dup2(r0, r0) r2 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000040), 0x2, 0x0) mount$9p_fd(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f00000000c0), 0x0, &(0x7f00000004c0)={'trans=fd,', {'rfdno', 0x3d, r1}, 0x2c, {'wfdno', 0x3d, r2}, 0x2c, {[], [{@hash}, {@euid_gt}, {@fsmagic={'fsmagic', 0x3d, 0xfffffffffffffffc}}, {@euid_eq={'euid', 0x3d, 0xffffffffffffffff}}]}}) 10:17:00 executing program 0: r0 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x46e2, 0x0) r1 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffd000/0x3000)=nil, 0x3000, 0x0, 0x13, r0, 0x0) syz_io_uring_setup(0x0, &(0x7f0000000140), &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000ffd000/0x3000)=nil, &(0x7f00000000c0), &(0x7f00000001c0)=0x0) syz_io_uring_submit(r1, r2, &(0x7f0000000240)=@IORING_OP_FADVISE={0x18, 0x0, 0x0, @fd, 0x2}, 0x0) sigaltstack(&(0x7f0000ffd000/0x1000)=nil, 0x0) 10:17:00 executing program 4: r0 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x46e2, 0x0) r1 = dup2(r0, r0) mount$9p_fd(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f00000000c0), 0x0, &(0x7f00000004c0)={'trans=fd,', {'rfdno', 0x3d, r1}, 0x2c, {}, 0x2c, {[{@debug}], [{@hash}, {@euid_gt}, {@fsmagic={'fsmagic', 0x3d, 0xfffffffffffffffc}}, {@euid_eq={'euid', 0x3d, 0xffffffffffffffff}}]}}) 10:17:00 executing program 6: mlock2(&(0x7f0000bff000/0x400000)=nil, 0x400000, 0x0) fork() mlock2(&(0x7f0000cf0000/0x4000)=nil, 0x4000, 0x0) r0 = syz_io_uring_setup(0x68e4, &(0x7f0000000000)={0x0, 0x0, 0x10, 0x3}, &(0x7f0000d2c000/0x4000)=nil, &(0x7f0000c0f000/0x3000)=nil, &(0x7f0000000280), &(0x7f0000000200)=0x0) r2 = pkey_alloc(0x0, 0x1) io_uring_enter(r0, 0x5dc, 0x570, 0x0, &(0x7f0000000080)={[0x1]}, 0x8) pkey_mprotect(&(0x7f0000d90000/0x1000)=nil, 0x1000, 0x1000008, r2) pkey_mprotect(&(0x7f0000e22000/0x4000)=nil, 0x4000, 0x0, 0xffffffffffffffff) syz_io_uring_setup(0x606c, &(0x7f0000000100)={0x0, 0xf849, 0x10, 0x1, 0xab, 0x0, r0}, &(0x7f0000f2e000/0x4000)=nil, &(0x7f0000de5000/0x1000)=nil, &(0x7f0000000180)=0x0, &(0x7f00000000c0)) syz_io_uring_submit(r3, r1, &(0x7f0000000240)=@IORING_OP_FSYNC={0x3, 0x2, 0x0, @fd_index=0x2, 0x0, 0x0, 0x0, 0x1, 0x1}, 0x469) 10:17:00 executing program 5 (fault-call:3 fault-nth:1): r0 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x46e2, 0x0) r1 = dup2(r0, r0) r2 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000040), 0x2, 0x0) mount$9p_fd(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f00000000c0), 0x0, &(0x7f00000004c0)={'trans=fd,', {'rfdno', 0x3d, r1}, 0x2c, {'wfdno', 0x3d, r2}}) [ 510.758979] 9pnet: Insufficient options for proto=fd [ 510.774545] FAULT_INJECTION: forcing a failure. [ 510.774545] name failslab, interval 1, probability 0, space 0, times 0 [ 510.777034] CPU: 1 PID: 6413 Comm: syz-executor.5 Not tainted 5.10.56 #1 [ 510.778486] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS rel-1.14.0-0-g155821a1990b-prebuilt.qemu.org 04/01/2014 [ 510.780987] Call Trace: [ 510.781582] dump_stack+0x107/0x163 [ 510.782373] should_fail.cold+0x5/0xa [ 510.783241] ? create_object.isra.0+0x3a/0xa20 [ 510.784241] should_failslab+0x5/0x10 [ 510.785043] kmem_cache_alloc+0x5b/0x350 [ 510.785937] create_object.isra.0+0x3a/0xa20 [ 510.786878] ? __kasan_kmalloc.constprop.0+0xc2/0xd0 [ 510.787985] __kmalloc_track_caller+0x177/0x3c0 [ 510.788970] ? strndup_user+0x70/0xe0 [ 510.789805] memdup_user+0x22/0xd0 [ 510.790579] strndup_user+0x70/0xe0 [ 510.791366] __x64_sys_mount+0x133/0x300 [ 510.792253] ? path_mount+0x2080/0x2080 [ 510.793096] ? rcu_read_lock_sched_held+0x3a/0x70 [ 510.794150] do_syscall_64+0x33/0x40 [ 510.794953] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 510.796072] RIP: 0033:0x466609 [ 510.796776] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 510.800670] RSP: 002b:00007fd61fccc188 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5 [ 510.802325] RAX: ffffffffffffffda RBX: 000000000056bf80 RCX: 0000000000466609 [ 510.803899] RDX: 00000000200000c0 RSI: 0000000020000000 RDI: 0000000000000000 [ 510.805452] RBP: 00007fd61fccc1d0 R08: 00000000200004c0 R09: 0000000000000000 [ 510.807014] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 510.808563] R13: 00007fff09eaa3cf R14: 00007fd61fccc300 R15: 0000000000022000 10:17:00 executing program 4: openat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x46e2, 0x0) r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000040), 0x2, 0x0) mount$9p_fd(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f00000000c0), 0x0, &(0x7f00000004c0)={'trans=fd,', {}, 0x2c, {'wfdno', 0x3d, r0}, 0x2c, {[{@debug}], [{@hash}, {@euid_gt}, {@fsmagic={'fsmagic', 0x3d, 0xfffffffffffffffc}}, {@euid_eq={'euid', 0x3d, 0xffffffffffffffff}}]}}) 10:17:00 executing program 0: r0 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x46e2, 0x0) r1 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffd000/0x3000)=nil, 0x3000, 0x0, 0x13, r0, 0x0) syz_io_uring_setup(0x0, &(0x7f0000000140), &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000ffd000/0x3000)=nil, &(0x7f00000000c0), &(0x7f00000001c0)=0x0) syz_io_uring_submit(r1, r2, &(0x7f0000000240)=@IORING_OP_FADVISE={0x18, 0x0, 0x0, @fd, 0x2}, 0x0) sigaltstack(&(0x7f0000ffd000/0x1000)=nil, 0x0) 10:17:00 executing program 2: r0 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0) ioctl$LOOP_CTL_ADD(r0, 0x4c80, 0x1) r1 = pidfd_getfd(0xffffffffffffffff, r0, 0x0) ioctl$LOOP_CTL_REMOVE(r1, 0x4c81, 0x1) ioctl$LOOP_CTL_GET_FREE(0xffffffffffffffff, 0x4c82) ioctl$LOOP_CTL_REMOVE(r0, 0x4c81, 0x1) [ 510.878413] 9pnet: Insufficient options for proto=fd 10:17:11 executing program 7: seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f0000000040)={0x1, &(0x7f00000001c0)=[{0x6, 0x0, 0x0, 0x7ffc0000}]}) r0 = creat(&(0x7f0000000040)='./file0\x00', 0x0) setxattr$trusted_overlay_nlink(&(0x7f00000000c0)='./file0\x00', &(0x7f00000001c0), 0x0, 0x0, 0x0) fremovexattr(r0, &(0x7f0000000080)=@known='trusted.overlay.nlink\x00') r1 = openat$cgroup_ro(r0, &(0x7f0000000000)='freezer.state\x00', 0x0, 0x0) ioctl$SECCOMP_IOCTL_NOTIF_RECV(r1, 0xc0502100, &(0x7f0000000100)) 10:17:11 executing program 2: r0 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0) ioctl$LOOP_CTL_ADD(r0, 0x4c80, 0x1) r1 = pidfd_getfd(0xffffffffffffffff, r0, 0x0) ioctl$LOOP_CTL_REMOVE(r1, 0x4c81, 0x1) ioctl$LOOP_CTL_GET_FREE(0xffffffffffffffff, 0x4c82) ioctl$LOOP_CTL_REMOVE(r0, 0x4c81, 0x1) 10:17:11 executing program 5 (fault-call:3 fault-nth:2): r0 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x46e2, 0x0) r1 = dup2(r0, r0) r2 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000040), 0x2, 0x0) mount$9p_fd(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f00000000c0), 0x0, &(0x7f00000004c0)={'trans=fd,', {'rfdno', 0x3d, r1}, 0x2c, {'wfdno', 0x3d, r2}}) 10:17:11 executing program 0: r0 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x46e2, 0x0) r1 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffd000/0x3000)=nil, 0x3000, 0x0, 0x13, r0, 0x0) syz_io_uring_setup(0x0, &(0x7f0000000140), &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000ffd000/0x3000)=nil, &(0x7f00000000c0), &(0x7f00000001c0)=0x0) syz_io_uring_submit(r1, r2, &(0x7f0000000240)=@IORING_OP_FADVISE={0x18, 0x0, 0x0, @fd, 0x2}, 0x0) sigaltstack(&(0x7f0000ffd000/0x1000)=nil, 0x0) 10:17:11 executing program 1: r0 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x46e2, 0x0) r1 = dup2(r0, r0) r2 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000040), 0x2, 0x0) mount$9p_fd(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f00000000c0), 0x0, &(0x7f00000004c0)={'trans=fd,', {'rfdno', 0x3d, r1}, 0x2c, {'wfdno', 0x3d, r2}, 0x2c, {[], [{@hash}, {@euid_gt}, {@fsmagic={'fsmagic', 0x3d, 0xfffffffffffffffc}}]}}) 10:17:11 executing program 6: mlock2(&(0x7f0000bff000/0x400000)=nil, 0x400000, 0x0) fork() mlock2(&(0x7f0000cf0000/0x4000)=nil, 0x4000, 0x0) r0 = syz_io_uring_setup(0x68e4, &(0x7f0000000000)={0x0, 0x0, 0x10, 0x3}, &(0x7f0000d2c000/0x4000)=nil, &(0x7f0000c0f000/0x3000)=nil, &(0x7f0000000280), &(0x7f0000000200)=0x0) r2 = pkey_alloc(0x0, 0x1) io_uring_enter(r0, 0x5dc, 0x570, 0x0, &(0x7f0000000080)={[0x1]}, 0x8) pkey_mprotect(&(0x7f0000d90000/0x1000)=nil, 0x1000, 0x1000008, r2) pkey_mprotect(&(0x7f0000e22000/0x4000)=nil, 0x4000, 0x0, 0xffffffffffffffff) syz_io_uring_setup(0x606c, &(0x7f0000000100)={0x0, 0xf849, 0x10, 0x1, 0xab, 0x0, r0}, &(0x7f0000f2e000/0x4000)=nil, &(0x7f0000de5000/0x1000)=nil, &(0x7f0000000180)=0x0, &(0x7f00000000c0)) syz_io_uring_submit(r3, r1, &(0x7f0000000240)=@IORING_OP_FSYNC={0x3, 0x2, 0x0, @fd_index=0x2, 0x0, 0x0, 0x0, 0x1, 0x1}, 0x469) 10:17:11 executing program 4: openat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x46e2, 0x0) r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000040), 0x2, 0x0) mount$9p_fd(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f00000000c0), 0x0, &(0x7f00000004c0)={'trans=fd,', {}, 0x2c, {'wfdno', 0x3d, r0}, 0x2c, {[{@debug}], [{@hash}, {@euid_gt}, {@fsmagic={'fsmagic', 0x3d, 0xfffffffffffffffc}}, {@euid_eq={'euid', 0x3d, 0xffffffffffffffff}}]}}) 10:17:11 executing program 3: perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r0 = socket$inet6_tcp(0xa, 0x1, 0x0) fcntl$setstatus(r0, 0x4, 0x2000) splice(r0, &(0x7f0000000000)=0xee6, r0, &(0x7f00000000c0)=0x1, 0x4, 0xc) r1 = fork() ioctl$sock_SIOCSPGRP(r0, 0x8902, &(0x7f0000000040)=r1) connect$inet6(r0, &(0x7f0000000140)={0xa, 0x4e20, 0x3, @mcast1, 0x5}, 0x1c) connect$inet6(r0, &(0x7f0000000180)={0xa, 0x0, 0x0, @empty}, 0x1c) setsockopt$inet6_int(0xffffffffffffffff, 0x29, 0x33, &(0x7f0000000100)=0x80, 0x4) r2 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000040), 0x2, 0x0) write$binfmt_aout(r2, &(0x7f0000000640), 0x20) read(r2, &(0x7f0000000100)=""/146, 0x92) ioctl$F2FS_IOC_RESERVE_COMPRESS_BLOCKS(r2, 0x8008f513, &(0x7f00000001c0)) [ 522.094869] FAULT_INJECTION: forcing a failure. [ 522.094869] name fail_usercopy, interval 1, probability 0, space 0, times 1 [ 522.096245] CPU: 0 PID: 6462 Comm: syz-executor.5 Not tainted 5.10.56 #1 [ 522.096995] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS rel-1.14.0-0-g155821a1990b-prebuilt.qemu.org 04/01/2014 [ 522.098280] Call Trace: [ 522.098586] dump_stack+0x107/0x163 [ 522.099011] should_fail.cold+0x5/0xa [ 522.099443] _copy_from_user+0x2e/0x1b0 [ 522.099883] memdup_user+0x65/0xd0 [ 522.100290] strndup_user+0x70/0xe0 [ 522.100703] __x64_sys_mount+0x133/0x300 [ 522.101166] ? path_mount+0x2080/0x2080 [ 522.101615] ? rcu_read_lock_sched_held+0x3a/0x70 [ 522.102158] do_syscall_64+0x33/0x40 [ 522.102578] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 522.103186] RIP: 0033:0x466609 [ 522.103536] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 522.105617] RSP: 002b:00007fd61fccc188 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5 [ 522.106476] RAX: ffffffffffffffda RBX: 000000000056bf80 RCX: 0000000000466609 [ 522.107279] RDX: 00000000200000c0 RSI: 0000000020000000 RDI: 0000000000000000 [ 522.108064] RBP: 00007fd61fccc1d0 R08: 00000000200004c0 R09: 0000000000000000 [ 522.108867] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 522.109675] R13: 00007fff09eaa3cf R14: 00007fd61fccc300 R15: 0000000000022000 [ 522.117124] 9pnet: Insufficient options for proto=fd [ 522.150873] audit: type=1326 audit(1628677031.985:12): auid=0 uid=0 gid=0 ses=4 subj=system_u:system_r:kernel_t:s0 pid=6459 comm="syz-executor.7" exe="/syz-executor.7" sig=0 arch=c000003e syscall=202 compat=0 ip=0x466609 code=0x7ffc0000 10:17:11 executing program 0: r0 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x46e2, 0x0) r1 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffd000/0x3000)=nil, 0x3000, 0x0, 0x13, r0, 0x0) syz_io_uring_setup(0x4b9f, 0x0, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000ffd000/0x3000)=nil, &(0x7f00000000c0), &(0x7f00000001c0)=0x0) syz_io_uring_submit(r1, r2, &(0x7f0000000240)=@IORING_OP_FADVISE={0x18, 0x0, 0x0, @fd, 0x2}, 0x0) sigaltstack(&(0x7f0000ffd000/0x1000)=nil, 0x0) [ 522.159207] audit: type=1326 audit(1628677031.985:13): auid=0 uid=0 gid=0 ses=4 subj=system_u:system_r:kernel_t:s0 pid=6459 comm="syz-executor.7" exe="/syz-executor.7" sig=0 arch=c000003e syscall=202 compat=0 ip=0x466609 code=0x7ffc0000 [ 522.204149] audit: type=1326 audit(1628677031.995:14): auid=0 uid=0 gid=0 ses=4 subj=system_u:system_r:kernel_t:s0 pid=6459 comm="syz-executor.7" exe="/syz-executor.7" sig=0 arch=c000003e syscall=85 compat=0 ip=0x466609 code=0x7ffc0000 10:17:12 executing program 0: r0 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x46e2, 0x0) r1 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffd000/0x3000)=nil, 0x3000, 0x0, 0x13, r0, 0x0) syz_io_uring_setup(0x4b9f, 0x0, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000ffd000/0x3000)=nil, &(0x7f00000000c0), &(0x7f00000001c0)=0x0) syz_io_uring_submit(r1, r2, &(0x7f0000000240)=@IORING_OP_FADVISE={0x18, 0x0, 0x0, @fd, 0x2}, 0x0) sigaltstack(&(0x7f0000ffd000/0x1000)=nil, 0x0) [ 522.226328] audit: type=1326 audit(1628677031.996:15): auid=0 uid=0 gid=0 ses=4 subj=system_u:system_r:kernel_t:s0 pid=6459 comm="syz-executor.7" exe="/syz-executor.7" sig=0 arch=c000003e syscall=202 compat=0 ip=0x466609 code=0x7ffc0000 10:17:12 executing program 1: r0 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x46e2, 0x0) r1 = dup2(r0, r0) r2 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000040), 0x2, 0x0) mount$9p_fd(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f00000000c0), 0x0, &(0x7f00000004c0)={'trans=fd,', {'rfdno', 0x3d, r1}, 0x2c, {'wfdno', 0x3d, r2}, 0x2c, {[], [{@hash}, {@euid_gt}]}}) 10:17:12 executing program 5 (fault-call:3 fault-nth:3): r0 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x46e2, 0x0) r1 = dup2(r0, r0) r2 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000040), 0x2, 0x0) mount$9p_fd(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f00000000c0), 0x0, &(0x7f00000004c0)={'trans=fd,', {'rfdno', 0x3d, r1}, 0x2c, {'wfdno', 0x3d, r2}}) [ 522.251263] audit: type=1326 audit(1628677031.996:16): auid=0 uid=0 gid=0 ses=4 subj=system_u:system_r:kernel_t:s0 pid=6459 comm="syz-executor.7" exe="/syz-executor.7" sig=0 arch=c000003e syscall=202 compat=0 ip=0x466609 code=0x7ffc0000 [ 522.259286] audit: type=1326 audit(1628677031.998:17): auid=0 uid=0 gid=0 ses=4 subj=system_u:system_r:kernel_t:s0 pid=6459 comm="syz-executor.7" exe="/syz-executor.7" sig=0 arch=c000003e syscall=188 compat=0 ip=0x466609 code=0x7ffc0000 10:17:12 executing program 4: openat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x46e2, 0x0) r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000040), 0x2, 0x0) mount$9p_fd(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f00000000c0), 0x0, &(0x7f00000004c0)={'trans=fd,', {}, 0x2c, {'wfdno', 0x3d, r0}, 0x2c, {[{@debug}], [{@hash}, {@euid_gt}, {@fsmagic={'fsmagic', 0x3d, 0xfffffffffffffffc}}, {@euid_eq={'euid', 0x3d, 0xffffffffffffffff}}]}}) [ 522.284045] FAULT_INJECTION: forcing a failure. [ 522.284045] name failslab, interval 1, probability 0, space 0, times 0 [ 522.286663] CPU: 1 PID: 6483 Comm: syz-executor.5 Not tainted 5.10.56 #1 [ 522.287167] audit: type=1326 audit(1628677031.999:18): auid=0 uid=0 gid=0 ses=4 subj=system_u:system_r:kernel_t:s0 pid=6459 comm="syz-executor.7" exe="/syz-executor.7" sig=0 arch=c000003e syscall=202 compat=0 ip=0x466609 code=0x7ffc0000 [ 522.288155] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS rel-1.14.0-0-g155821a1990b-prebuilt.qemu.org 04/01/2014 [ 522.288164] Call Trace: [ 522.288193] dump_stack+0x107/0x163 [ 522.288228] should_fail.cold+0x5/0xa [ 522.295156] ? copy_mount_options+0x55/0x180 [ 522.296116] should_failslab+0x5/0x10 [ 522.296962] kmem_cache_alloc_trace+0x55/0x360 [ 522.297959] ? _copy_from_user+0xfb/0x1b0 [ 522.298858] copy_mount_options+0x55/0x180 [ 522.299804] __x64_sys_mount+0x1a8/0x300 [ 522.300686] ? path_mount+0x2080/0x2080 [ 522.300709] audit: type=1326 audit(1628677031.999:19): auid=0 uid=0 gid=0 ses=4 subj=system_u:system_r:kernel_t:s0 pid=6459 comm="syz-executor.7" exe="/syz-executor.7" sig=0 arch=c000003e syscall=202 compat=0 ip=0x466609 code=0x7ffc0000 [ 522.301559] ? rcu_read_lock_sched_held+0x3a/0x70 [ 522.304868] do_syscall_64+0x33/0x40 [ 522.305726] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 522.306855] RIP: 0033:0x466609 [ 522.307563] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 522.311564] RSP: 002b:00007fd61fccc188 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5 10:17:12 executing program 0: r0 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x46e2, 0x0) r1 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffd000/0x3000)=nil, 0x3000, 0x0, 0x13, r0, 0x0) syz_io_uring_setup(0x4b9f, 0x0, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000ffd000/0x3000)=nil, &(0x7f00000000c0), &(0x7f00000001c0)=0x0) syz_io_uring_submit(r1, r2, &(0x7f0000000240)=@IORING_OP_FADVISE={0x18, 0x0, 0x0, @fd, 0x2}, 0x0) sigaltstack(&(0x7f0000ffd000/0x1000)=nil, 0x0) [ 522.313202] RAX: ffffffffffffffda RBX: 000000000056bf80 RCX: 0000000000466609 [ 522.314992] RDX: 00000000200000c0 RSI: 0000000020000000 RDI: 0000000000000000 [ 522.316531] RBP: 00007fd61fccc1d0 R08: 00000000200004c0 R09: 0000000000000000 [ 522.318067] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 522.319623] R13: 00007fff09eaa3cf R14: 00007fd61fccc300 R15: 0000000000022000 [ 522.321770] audit: type=1326 audit(1628677032.000:20): auid=0 uid=0 gid=0 ses=4 subj=system_u:system_r:kernel_t:s0 pid=6459 comm="syz-executor.7" exe="/syz-executor.7" sig=0 arch=c000003e syscall=199 compat=0 ip=0x466609 code=0x7ffc0000 [ 522.332571] audit: type=1326 audit(1628677032.000:21): auid=0 uid=0 gid=0 ses=4 subj=system_u:system_r:kernel_t:s0 pid=6459 comm="syz-executor.7" exe="/syz-executor.7" sig=0 arch=c000003e syscall=202 compat=0 ip=0x466609 code=0x7ffc0000 10:17:12 executing program 2: r0 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0) ioctl$LOOP_CTL_ADD(r0, 0x4c80, 0x1) r1 = pidfd_getfd(0xffffffffffffffff, r0, 0x0) ioctl$LOOP_CTL_REMOVE(r1, 0x4c81, 0x1) ioctl$LOOP_CTL_GET_FREE(0xffffffffffffffff, 0x4c82) ioctl$LOOP_CTL_REMOVE(r0, 0x4c81, 0x1) 10:17:12 executing program 7: r0 = syz_open_procfs(0xffffffffffffffff, &(0x7f0000001080)='projid_map\x00') preadv(r0, &(0x7f00000003c0)=[{&(0x7f0000000280)=""/70, 0x46}], 0x1, 0x0, 0x0) fcntl$addseals(r0, 0x409, 0x0) fcntl$setownex(r0, 0xf, &(0x7f0000000000)) [ 522.384136] 9pnet: Insufficient options for proto=fd 10:17:12 executing program 0: r0 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x46e2, 0x0) r1 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffd000/0x3000)=nil, 0x3000, 0x0, 0x13, r0, 0x0) syz_io_uring_setup(0x4b9f, &(0x7f0000000140), &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000ffd000/0x3000)=nil, 0x0, &(0x7f00000001c0)=0x0) syz_io_uring_submit(r1, r2, &(0x7f0000000240)=@IORING_OP_FADVISE={0x18, 0x0, 0x0, @fd, 0x2}, 0x0) sigaltstack(&(0x7f0000ffd000/0x1000)=nil, 0x0) 10:17:24 executing program 2: r0 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x105142, 0x0) r1 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0) copy_file_range(r1, 0x0, r1, 0x0, 0x200f5ef, 0x0) seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f0000000000)={0x1, &(0x7f00000000c0)=[{0x6, 0x0, 0x0, 0x7fffffff}]}) mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x3000)=nil, 0x3000, 0x100000b, 0x12, r0, 0x0) sigaltstack(&(0x7f0000ffc000/0x2000)=nil, 0x0) 10:17:24 executing program 7: r0 = socket$inet(0x2, 0xa, 0x0) r1 = signalfd(r0, &(0x7f0000000100)={[0x7]}, 0x8) r2 = openat$tcp_mem(0xffffffffffffff9c, &(0x7f0000000240)='/proc/sys/net/ipv4/tcp_rmem\x00', 0x1, 0x0) r3 = eventfd(0x9) r4 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000040), 0x2, 0x0) r5 = syz_mount_image$iso9660(&(0x7f0000000500), &(0x7f0000000540)='./file0\x00', 0x349, 0x3, &(0x7f0000000840)=[{&(0x7f0000000580)="8d5b492d05082a0619c2ab49bb9332ba5b164153294fd36fd625db7a887f4430c5d9287c6760dd9605d58849d4081660d5431150ff7ae7fe539f17bf3886182a5b9a772d448368c3b6902e88c555c0c826c242c3b86a5ac2c60f4d4f99ea6bda5f505a557a427e5d68cbd5e70e154814885180422f95f94b4f184226296921c76142343adb468143f9801b4b9e74f6b3eda5dab561642a5a6551ac9c12adfcecd1d0a1e770df9450572400615c2e4f03877fd8607e90adc228ff78490a7f03cb46158c4ada0c24d5a347ac257588921040bb14e14ce0dd5e516d6d9a33dd7e3547fbf1ccd126441e61995d2adfa0192b82f4c1934d9d", 0xf6, 0xffff}, {&(0x7f0000000680)="7108004ac8aea85e45f9ae95fc2c5e2c14344c49326c39bfa12504cd402eed781369d20a01807e75f6f6a375bd84326ccbec56531acaca08c5e8e02beda32d9efeb7d5a755444eb9f8caf252c7870138ccb97cecb469c54c629188fc6a95499052f61768137cb84407d5a845031502655ed24ee68e371cdaa8d7b2835c96b0fd75b425b7986e05142f98b714cebccb7fc5e4a4b717dbde9e5d0272f5982f32672557a4cc60d388f33ab181f86ec5e271f173f8a98afbbb177306191bee50b3caad9715fc71ba2cf8f832303b00080514478428646c40b9f9e92cd2c180d6a6ae1d7ba385524aa783968ccb74d2eeae8689bbfd1a0a23", 0xf6, 0x1}, {&(0x7f0000000780)="106ed3d21a69d8814e3f9667fafa89b47d7d577046c35f1ec9902e7d496fa3ce4fb35b87b026e93a9506f2a6c89e70d0bfabe7bcc2f5edae6ef0100af11804e8854f175bbbaa5a4b658d50433016125c3164bbca62249776c444282bafb177c84c53f8c52803aaf1bc93cc65243cd1b8fec803ec68386a91634f271a2cb123cd825a322a37facb4dee14b2df7d60fc57", 0x90, 0x1}], 0x1000002, &(0x7f00000008c0)=ANY=[@ANYBLOB="626c6fffff000000000000c02b59bf7fcad60d75d2f73462303030303030303030303030302c636865636b3d73747269637400"]) write$binfmt_aout(r5, &(0x7f0000000900)=ANY=[@ANYBLOB="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"], 0x41) getsockopt$netlink(0xffffffffffffffff, 0x10e, 0x0, 0x0, 0xfffffffffffffffe) r6 = socket$netlink(0x10, 0x3, 0x0) r7 = fcntl$dupfd(r6, 0x0, r6) getsockopt$netlink(r7, 0x10e, 0x0, 0x0, 0xfffffffffffffffe) io_uring_register$IORING_REGISTER_EVENTFD_ASYNC(0xffffffffffffffff, 0x7, &(0x7f0000000480)=r7, 0x1) read(r4, &(0x7f0000000100)=""/146, 0x92) io_submit(0x0, 0x3, &(0x7f0000000440)=[&(0x7f0000000200)={0x0, 0x0, 0x0, 0x1, 0xfe, r0, &(0x7f0000000140)="2f54a57529545eb224ce4440b403dd146441420d5f4c3750e9152f495ccce0bf297b154b2f6878a36564aef0c27e87696b302fc4851406b6f0d7d04d59ecfe754ff6edce4469845af63f95341abe54f6eb547b217ff8e214e7611eb528cf3a5094f93c4e9f58a074afa8588cf48eb08f9700", 0x72, 0x401, 0x0, 0x1}, &(0x7f0000000340)={0x0, 0x0, 0x0, 0x4, 0x5, r2, &(0x7f0000000280)="a1fb8e89759e24a37655dbe0c04d25a4f4fa4f2fe8f1dc5c06549f048e8db983077b4d7164a48a6b485a4217720fac31091bb151ea9292c525bc4a6861c60cb39f93406d30b0cb4f8ef7085028f7bd05b366dcec58495525fccff8458f50c66affe27e7563be488374395892e30240769fd04c52798f546e75fb30c2ae4bf8e3c03a8e4c5bfe207c699f64", 0x8b, 0x2, 0x0, 0x2, r3}, &(0x7f0000000400)={0x0, 0x0, 0x0, 0x7, 0x1, r4, &(0x7f0000000380)="172bd67e354d67fb8c95a215a31d4275e3a10258dcbe79757ce494f22fa4b727851e268f0f571ca6c228cfc4f58627d8e9134a38deb5c1f6eeee579c5e938d7c9959ad674b70073b87befb9544b9e24fdff6deecc4562f7ad3b030258a6b62ca3d695ba2b9", 0x65, 0x1, 0x0, 0x1, r1}]) ioctl$sock_inet_SIOCGIFNETMASK(r1, 0x8917, &(0x7f00000001c0)={'veth0_virt_wifi\x00', {0x2, 0x0, @empty}}) r8 = socket$inet(0x2, 0xa, 0x0) ioctl$sock_inet_SIOCADDRT(r0, 0x890b, &(0x7f0000000080)={0x0, {0x2, 0x4e22, @loopback}, {0x2, 0x4e21, @local}, {0x2, 0x4e24, @initdev={0xac, 0x1e, 0x1, 0x0}}, 0x152, 0x0, 0x0, 0x0, 0x8, &(0x7f0000000040)='vlan0\x00', 0x447, 0x4c, 0x2}) ioctl$sock_inet_SIOCGIFNETMASK(r8, 0x891a, &(0x7f00000001c0)={'syz_tun\x00', {0x2, 0x0, @empty}}) r9 = openat$urandom(0xffffffffffffff9c, &(0x7f0000000000), 0x200, 0x0) fcntl$setsig(r9, 0xa, 0x1b) 10:17:24 executing program 6: capset(&(0x7f0000000980)={0x20071026}, &(0x7f00000009c0)={0x0, 0xe92}) r0 = syz_open_dev$tty20(0xc, 0x4, 0x0) ioctl$VT_SETMODE(r0, 0x4b68, 0x0) 10:17:24 executing program 5 (fault-call:3 fault-nth:4): r0 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x46e2, 0x0) r1 = dup2(r0, r0) r2 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000040), 0x2, 0x0) mount$9p_fd(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f00000000c0), 0x0, &(0x7f00000004c0)={'trans=fd,', {'rfdno', 0x3d, r1}, 0x2c, {'wfdno', 0x3d, r2}}) 10:17:24 executing program 3: perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r0 = socket$inet6_tcp(0xa, 0x1, 0x0) fcntl$setstatus(r0, 0x4, 0x2000) splice(r0, &(0x7f0000000000)=0xee6, r0, &(0x7f00000000c0)=0x1, 0x4, 0xc) r1 = fork() ioctl$sock_SIOCSPGRP(r0, 0x8902, &(0x7f0000000040)=r1) connect$inet6(r0, &(0x7f0000000140)={0xa, 0x4e20, 0x3, @mcast1, 0x5}, 0x1c) connect$inet6(r0, &(0x7f0000000180)={0xa, 0x0, 0x0, @empty}, 0x1c) setsockopt$inet6_int(0xffffffffffffffff, 0x29, 0x33, &(0x7f0000000100)=0x80, 0x4) r2 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000040), 0x2, 0x0) write$binfmt_aout(r2, &(0x7f0000000640), 0x20) read(r2, &(0x7f0000000100)=""/146, 0x92) 10:17:24 executing program 1: r0 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x46e2, 0x0) r1 = dup2(r0, r0) r2 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000040), 0x2, 0x0) mount$9p_fd(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f00000000c0), 0x0, &(0x7f00000004c0)={'trans=fd,', {'rfdno', 0x3d, r1}, 0x2c, {'wfdno', 0x3d, r2}, 0x2c, {[], [{@hash}]}}) 10:17:24 executing program 4: r0 = dup2(0xffffffffffffffff, 0xffffffffffffffff) r1 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000040), 0x2, 0x0) mount$9p_fd(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f00000000c0), 0x0, &(0x7f00000004c0)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}, 0x2c, {[{@debug}], [{@hash}, {@euid_gt}, {@fsmagic={'fsmagic', 0x3d, 0xfffffffffffffffc}}, {@euid_eq={'euid', 0x3d, 0xffffffffffffffff}}]}}) 10:17:24 executing program 0: r0 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x46e2, 0x0) r1 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffd000/0x3000)=nil, 0x3000, 0x0, 0x13, r0, 0x0) syz_io_uring_setup(0x4b9f, &(0x7f0000000140), &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000ffd000/0x3000)=nil, 0x0, &(0x7f00000001c0)=0x0) syz_io_uring_submit(r1, r2, &(0x7f0000000240)=@IORING_OP_FADVISE={0x18, 0x0, 0x0, @fd, 0x2}, 0x0) sigaltstack(&(0x7f0000ffd000/0x1000)=nil, 0x0) [ 534.440745] capability: warning: `syz-executor.6' uses deprecated v2 capabilities in a way that may be insecure [ 534.462674] FAULT_INJECTION: forcing a failure. [ 534.462674] name failslab, interval 1, probability 0, space 0, times 0 [ 534.464416] CPU: 0 PID: 6522 Comm: syz-executor.5 Not tainted 5.10.56 #1 [ 534.464426] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS rel-1.14.0-0-g155821a1990b-prebuilt.qemu.org 04/01/2014 10:17:24 executing program 1: r0 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x46e2, 0x0) r1 = dup2(r0, r0) r2 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000040), 0x2, 0x0) mount$9p_fd(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f00000000c0), 0x0, &(0x7f00000004c0)={'trans=fd,', {'rfdno', 0x3d, r1}, 0x2c, {'wfdno', 0x3d, r2}}) [ 534.464431] Call Trace: [ 534.464449] dump_stack+0x107/0x163 [ 534.464469] should_fail.cold+0x5/0xa [ 534.464489] ? create_object.isra.0+0x3a/0xa20 [ 534.464505] should_failslab+0x5/0x10 [ 534.464518] kmem_cache_alloc+0x5b/0x350 [ 534.464540] create_object.isra.0+0x3a/0xa20 10:17:24 executing program 2: r0 = openat(0xffffffffffffffff, &(0x7f0000000040)='./file1\x00', 0x688742, 0x0) r1 = openat$thread_pidfd(0xffffffffffffff9c, &(0x7f0000000000), 0x404000, 0x0) sendfile(r0, r1, 0x0, 0x6) r2 = openat(0xffffffffffffff9c, &(0x7f00000002c0)='/proc/self/exe\x00', 0x0, 0x0) r3 = socket$inet6_udplite(0xa, 0x2, 0x88) setsockopt$inet6_IPV6_PKTINFO(r3, 0x29, 0x12, &(0x7f00000010c0)={@dev}, 0x14) recvmsg(0xffffffffffffffff, &(0x7f0000000300)={&(0x7f0000000080)=@pppol2tpv3={0x18, 0x1, {0x0, 0xffffffffffffffff, {0x2, 0x0, @local}}}, 0x80, &(0x7f0000000200)=[{&(0x7f0000000140)=""/151, 0x97}, {&(0x7f0000001580)=""/251, 0xfb}, {&(0x7f0000000400)=""/4096, 0x1000}], 0x3}, 0x40010100) bind$inet6(r4, &(0x7f0000000280)={0xa, 0x4e23, 0x9, @mcast1, 0x7}, 0x1c) copy_file_range(r2, 0x0, r0, 0x0, 0x2000000200f5ef, 0x700000000000000) [ 534.464553] ? __kasan_kmalloc.constprop.0+0xc2/0xd0 [ 534.464575] kmem_cache_alloc_trace+0x151/0x360 [ 534.464589] ? _copy_from_user+0xfb/0x1b0 [ 534.464611] copy_mount_options+0x55/0x180 10:17:24 executing program 4: r0 = dup2(0xffffffffffffffff, 0xffffffffffffffff) r1 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000040), 0x2, 0x0) mount$9p_fd(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f00000000c0), 0x0, &(0x7f00000004c0)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}, 0x2c, {[{@debug}], [{@hash}, {@euid_gt}, {@fsmagic={'fsmagic', 0x3d, 0xfffffffffffffffc}}, {@euid_eq={'euid', 0x3d, 0xffffffffffffffff}}]}}) [ 534.464631] __x64_sys_mount+0x1a8/0x300 [ 534.464647] ? path_mount+0x2080/0x2080 [ 534.464669] ? rcu_read_lock_sched_held+0x3a/0x70 [ 534.464689] do_syscall_64+0x33/0x40 [ 534.464704] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 534.464713] RIP: 0033:0x466609 [ 534.464728] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 534.464736] RSP: 002b:00007fd61fccc188 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5 [ 534.464751] RAX: ffffffffffffffda RBX: 000000000056bf80 RCX: 0000000000466609 10:17:24 executing program 0: r0 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x46e2, 0x0) r1 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffd000/0x3000)=nil, 0x3000, 0x0, 0x13, r0, 0x0) syz_io_uring_setup(0x4b9f, &(0x7f0000000140), &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000ffd000/0x3000)=nil, 0x0, &(0x7f00000001c0)=0x0) syz_io_uring_submit(r1, r2, &(0x7f0000000240)=@IORING_OP_FADVISE={0x18, 0x0, 0x0, @fd, 0x2}, 0x0) sigaltstack(&(0x7f0000ffd000/0x1000)=nil, 0x0) [ 534.464760] RDX: 00000000200000c0 RSI: 0000000020000000 RDI: 0000000000000000 [ 534.464768] RBP: 00007fd61fccc1d0 R08: 00000000200004c0 R09: 0000000000000000 [ 534.464776] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 534.464784] R13: 00007fff09eaa3cf R14: 00007fd61fccc300 R15: 0000000000022000 10:17:24 executing program 5 (fault-call:3 fault-nth:5): r0 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x46e2, 0x0) r1 = dup2(r0, r0) r2 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000040), 0x2, 0x0) mount$9p_fd(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f00000000c0), 0x0, &(0x7f00000004c0)={'trans=fd,', {'rfdno', 0x3d, r1}, 0x2c, {'wfdno', 0x3d, r2}}) 10:17:24 executing program 2: sendmsg$unix(0xffffffffffffffff, &(0x7f0000000700)={0x0, 0x0, &(0x7f00000005c0)=[{&(0x7f0000000000)="9977c475f1e3966c184264a67b1499549b", 0x11}], 0x1}, 0x0) r0 = openat$tun(0xffffffffffffff9c, &(0x7f0000000140), 0x80402, 0x0) ioctl$TUNSETQUEUE(r0, 0x400454ca, &(0x7f0000000000)={'veth0_vlan\x00'}) perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) writev(r0, &(0x7f00000001c0)=[{&(0x7f0000000040)="11100000", 0x4}], 0x1) r1 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000040), 0x2, 0x0) write$binfmt_aout(r1, &(0x7f0000000640), 0x20) read(r1, &(0x7f0000000100)=""/146, 0x92) dup3(r0, r1, 0x0) 10:17:24 executing program 6: timer_create(0x3, &(0x7f0000000000)={0x0, 0x1c, 0x0, @tid=0xffffffffffffffff}, &(0x7f0000000040)=0x0) timer_settime(0x0, 0x0, &(0x7f0000000080)={{0x77359400}, {0x0, 0x989680}}, 0x0) timer_settime(r0, 0x0, &(0x7f00000000c0)={{0x0, 0x989680}, {0x77359400}}, &(0x7f0000000100)) timer_create(0x3, &(0x7f0000000000)={0x0, 0x1c, 0x0, @tid=0xffffffffffffffff}, &(0x7f0000000040)=0x0) clock_gettime(0x0, &(0x7f0000000140)={0x0, 0x0}) timer_settime(r1, 0x1, &(0x7f00000001c0)={{0x77359400}, {r2, r3+10000000}}, &(0x7f0000000180)) timer_settime(r1, 0x1, &(0x7f0000000080)={{0x77359400}, {0x0, 0x989680}}, 0x0) timer_settime(r0, 0x0, 0x0, 0x0) timer_create(0x3, 0x0, 0x0) timer_create(0x4, &(0x7f0000000300)={0x0, 0x27, 0x4, @thr={&(0x7f0000000200)="776c7dba11cccd813c856d7cbef0053809646dacdcb21fdbd87eb4a5859f7084a3164b", &(0x7f0000000240)="7d4223830aefdbd460c59ac0d1d067176ed9ff71f40720f094ba67d30ca635361cef9a0c068fcf1bd2e86e12edb165c44ffc968428bfee205fdbe3b3d1116aaaecb1259cf3299e7ddc916015638f12a5730353811f7b6e6154e6915865c84501f0178762045a742aa2608dbbee8321a6d7d453e5d6463951e7bcbad9a5b70f2c5dd1dfbea76fdc167ed907f411c0be609e26342be196"}}, &(0x7f0000000340)=0x0) timer_delete(r4) timer_settime(0x0, 0x0, &(0x7f0000000480)={{}, {0x0, 0x3938700}}, 0x0) clone3(&(0x7f00000005c0)={0x40182300, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) [ 534.624909] FAULT_INJECTION: forcing a failure. [ 534.624909] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 534.626667] CPU: 0 PID: 6543 Comm: syz-executor.5 Not tainted 5.10.56 #1 [ 534.627722] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS rel-1.14.0-0-g155821a1990b-prebuilt.qemu.org 04/01/2014 [ 534.629305] Call Trace: [ 534.629722] dump_stack+0x107/0x163 [ 534.630237] should_fail.cold+0x5/0xa [ 534.630778] _copy_from_user+0x2e/0x1b0 [ 534.631350] copy_mount_options+0x76/0x180 [ 534.631959] __x64_sys_mount+0x1a8/0x300 [ 534.632633] ? path_mount+0x2080/0x2080 [ 534.633237] ? rcu_read_lock_sched_held+0x3a/0x70 [ 534.633925] do_syscall_64+0x33/0x40 [ 534.634468] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 534.635331] RIP: 0033:0x466609 [ 534.635825] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 534.638539] RSP: 002b:00007fd61fccc188 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5 [ 534.639657] RAX: ffffffffffffffda RBX: 000000000056bf80 RCX: 0000000000466609 [ 534.640649] RDX: 00000000200000c0 RSI: 0000000020000000 RDI: 0000000000000000 [ 534.641684] RBP: 00007fd61fccc1d0 R08: 00000000200004c0 R09: 0000000000000000 [ 534.642678] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 534.643709] R13: 00007fff09eaa3cf R14: 00007fd61fccc300 R15: 0000000000022000 10:17:37 executing program 7: rmdir(&(0x7f0000000080)='./file0\x00') openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x42, 0x0) mount$9p_unix(&(0x7f0000000000)='./file1\x00', &(0x7f0000000040)='./file1\x00', 0x0, 0x21008, 0x0) 10:17:37 executing program 6: r0 = syz_mount_image$tmpfs(&(0x7f0000000000), &(0x7f0000000080)='./file0\x00', 0x0, 0x0, 0x0, 0x0, &(0x7f0000000600)=ANY=[]) unlinkat(r0, &(0x7f0000000040)='./file0\x00', 0x200) mknodat$loop(r0, &(0x7f0000000300)='./file0\x00', 0x0, 0x1) fchmodat(r0, &(0x7f0000000140)='./file0\x00', 0x0) 10:17:37 executing program 3: perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r0 = socket$inet6_tcp(0xa, 0x1, 0x0) fcntl$setstatus(r0, 0x4, 0x2000) splice(r0, &(0x7f0000000000)=0xee6, r0, &(0x7f00000000c0)=0x1, 0x4, 0xc) r1 = fork() ioctl$sock_SIOCSPGRP(r0, 0x8902, &(0x7f0000000040)=r1) connect$inet6(r0, &(0x7f0000000140)={0xa, 0x4e20, 0x3, @mcast1, 0x5}, 0x1c) connect$inet6(r0, &(0x7f0000000180)={0xa, 0x0, 0x0, @empty}, 0x1c) setsockopt$inet6_int(0xffffffffffffffff, 0x29, 0x33, &(0x7f0000000100)=0x80, 0x4) r2 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000040), 0x2, 0x0) read(r2, &(0x7f0000000100)=""/146, 0x92) 10:17:37 executing program 0: r0 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x46e2, 0x0) r1 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffd000/0x3000)=nil, 0x3000, 0x0, 0x13, r0, 0x0) syz_io_uring_setup(0x4b9f, &(0x7f0000000140), &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000ffd000/0x3000)=nil, &(0x7f00000000c0), 0x0) syz_io_uring_submit(r1, 0x0, &(0x7f0000000240)=@IORING_OP_FADVISE={0x18, 0x0, 0x0, @fd, 0x2}, 0x0) sigaltstack(&(0x7f0000ffd000/0x1000)=nil, 0x0) 10:17:37 executing program 4: r0 = dup2(0xffffffffffffffff, 0xffffffffffffffff) r1 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000040), 0x2, 0x0) mount$9p_fd(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f00000000c0), 0x0, &(0x7f00000004c0)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}, 0x2c, {[{@debug}], [{@hash}, {@euid_gt}, {@fsmagic={'fsmagic', 0x3d, 0xfffffffffffffffc}}, {@euid_eq={'euid', 0x3d, 0xffffffffffffffff}}]}}) 10:17:37 executing program 1 (fault-call:3 fault-nth:0): r0 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x46e2, 0x0) r1 = dup2(r0, r0) r2 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000040), 0x2, 0x0) mount$9p_fd(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f00000000c0), 0x0, &(0x7f00000004c0)={'trans=fd,', {'rfdno', 0x3d, r1}, 0x2c, {'wfdno', 0x3d, r2}}) 10:17:37 executing program 5 (fault-call:3 fault-nth:6): r0 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x46e2, 0x0) r1 = dup2(r0, r0) r2 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000040), 0x2, 0x0) mount$9p_fd(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f00000000c0), 0x0, &(0x7f00000004c0)={'trans=fd,', {'rfdno', 0x3d, r1}, 0x2c, {'wfdno', 0x3d, r2}}) 10:17:37 executing program 2: creat(&(0x7f0000000000)='./file1\x00', 0x0) pipe(&(0x7f0000000100)={0xffffffffffffffff, 0xffffffffffffffff}) r2 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000040), 0x2, 0x0) write$binfmt_aout(r2, &(0x7f0000000640), 0x20) read(r2, &(0x7f0000000100)=""/146, 0x92) r3 = timerfd_create(0x3, 0x800) splice(r2, &(0x7f0000000080)=0xd312, r3, &(0x7f00000000c0)=0x9, 0x1, 0x8) mount$9p_fd(0x0, &(0x7f0000000040)='./file1\x00', &(0x7f0000000200), 0x0, &(0x7f0000000700)=ANY=[@ANYBLOB='trans=fd,rfdno=', @ANYRESHEX=r0, @ANYBLOB=',wfdno=', @ANYRESHEX=r1, @ANYBLOB="2c6490bbf28969643d", @ANYRESHEX, @ANYBLOB=',\x00']) clone3(&(0x7f0000000500)={0x8000000, &(0x7f0000000300), &(0x7f0000000340), &(0x7f0000000380), {}, 0x0, 0x0, 0x0, &(0x7f00000004c0)=[0x0, 0x0, 0x0, 0x0], 0x4}, 0x58) ioctl$LOOP_CTL_REMOVE(0xffffffffffffffff, 0x4c81, 0x0) openat$dir(0xffffffffffffff9c, &(0x7f00000005c0)='./file2\x00', 0x0, 0x21) [ 547.501388] FAULT_INJECTION: forcing a failure. [ 547.501388] name failslab, interval 1, probability 0, space 0, times 0 [ 547.504140] CPU: 1 PID: 6577 Comm: syz-executor.1 Not tainted 5.10.56 #1 [ 547.505624] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS rel-1.14.0-0-g155821a1990b-prebuilt.qemu.org 04/01/2014 [ 547.508164] Call Trace: [ 547.508741] dump_stack+0x107/0x163 [ 547.509572] should_fail.cold+0x5/0xa 10:17:37 executing program 0: r0 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x46e2, 0x0) r1 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffd000/0x3000)=nil, 0x3000, 0x0, 0x13, r0, 0x0) syz_io_uring_setup(0x4b9f, &(0x7f0000000140), &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000ffd000/0x3000)=nil, &(0x7f00000000c0), 0x0) syz_io_uring_submit(r1, 0x0, &(0x7f0000000240)=@IORING_OP_FADVISE={0x18, 0x0, 0x0, @fd, 0x2}, 0x0) sigaltstack(&(0x7f0000ffd000/0x1000)=nil, 0x0) [ 547.510392] should_failslab+0x5/0x10 [ 547.511480] __kmalloc_track_caller+0x79/0x3c0 [ 547.512457] ? strndup_user+0x70/0xe0 [ 547.513283] memdup_user+0x22/0xd0 [ 547.514041] strndup_user+0x70/0xe0 [ 547.514820] __x64_sys_mount+0x133/0x300 [ 547.515698] ? path_mount+0x2080/0x2080 [ 547.516551] ? rcu_read_lock_sched_held+0x3a/0x70 [ 547.517582] do_syscall_64+0x33/0x40 [ 547.518377] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 547.519492] RIP: 0033:0x466609 [ 547.520183] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 547.524099] RSP: 002b:00007fdc84e63188 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5 [ 547.525717] RAX: ffffffffffffffda RBX: 000000000056bf80 RCX: 0000000000466609 [ 547.527232] RDX: 00000000200000c0 RSI: 0000000020000000 RDI: 0000000000000000 [ 547.528755] RBP: 00007fdc84e631d0 R08: 00000000200004c0 R09: 0000000000000000 [ 547.530268] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 547.531802] R13: 00007ffc7c6b7e8f R14: 00007fdc84e63300 R15: 0000000000022000 10:17:37 executing program 0: r0 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x46e2, 0x0) r1 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffd000/0x3000)=nil, 0x3000, 0x0, 0x13, r0, 0x0) syz_io_uring_setup(0x4b9f, &(0x7f0000000140), &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000ffd000/0x3000)=nil, &(0x7f00000000c0), 0x0) syz_io_uring_submit(r1, 0x0, &(0x7f0000000240)=@IORING_OP_FADVISE={0x18, 0x0, 0x0, @fd, 0x2}, 0x0) sigaltstack(&(0x7f0000ffd000/0x1000)=nil, 0x0) [ 547.554253] FAULT_INJECTION: forcing a failure. [ 547.554253] name failslab, interval 1, probability 0, space 0, times 0 [ 547.555610] CPU: 0 PID: 6593 Comm: syz-executor.5 Not tainted 5.10.56 #1 [ 547.556400] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS rel-1.14.0-0-g155821a1990b-prebuilt.qemu.org 04/01/2014 [ 547.557714] Call Trace: [ 547.558016] dump_stack+0x107/0x163 [ 547.558446] should_fail.cold+0x5/0xa [ 547.558884] ? getname_flags.part.0+0x50/0x4f0 [ 547.559432] should_failslab+0x5/0x10 [ 547.559854] kmem_cache_alloc+0x5b/0x350 [ 547.560322] getname_flags.part.0+0x50/0x4f0 [ 547.560829] ? _copy_from_user+0xfb/0x1b0 [ 547.561301] user_path_at_empty+0xa1/0x100 [ 547.561794] __x64_sys_mount+0x1e9/0x300 [ 547.562251] ? path_mount+0x2080/0x2080 [ 547.562706] ? rcu_read_lock_sched_held+0x3a/0x70 [ 547.563256] do_syscall_64+0x33/0x40 [ 547.563710] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 547.564297] RIP: 0033:0x466609 [ 547.564668] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 547.566779] RSP: 002b:00007fd61fcab188 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5 [ 547.567667] RAX: ffffffffffffffda RBX: 000000000056c038 RCX: 0000000000466609 [ 547.568487] RDX: 00000000200000c0 RSI: 0000000020000000 RDI: 0000000000000000 [ 547.569313] RBP: 00007fd61fcab1d0 R08: 00000000200004c0 R09: 0000000000000000 [ 547.570162] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 547.570975] R13: 00007fff09eaa3cf R14: 00007fd61fcab300 R15: 0000000000022000 10:17:37 executing program 4: r0 = openat(0xffffffffffffff9c, 0x0, 0x46e2, 0x0) r1 = dup2(r0, r0) r2 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000040), 0x2, 0x0) mount$9p_fd(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f00000000c0), 0x0, &(0x7f00000004c0)={'trans=fd,', {'rfdno', 0x3d, r1}, 0x2c, {'wfdno', 0x3d, r2}, 0x2c, {[{@debug}], [{@hash}, {@euid_gt}, {@fsmagic={'fsmagic', 0x3d, 0xfffffffffffffffc}}, {@euid_eq={'euid', 0x3d, 0xffffffffffffffff}}]}}) 10:17:37 executing program 0: r0 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x46e2, 0x0) mmap$IORING_OFF_SQ_RING(&(0x7f0000ffd000/0x3000)=nil, 0x3000, 0x0, 0x13, r0, 0x0) syz_io_uring_setup(0x4b9f, &(0x7f0000000140), &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000ffd000/0x3000)=nil, &(0x7f00000000c0), &(0x7f00000001c0)=0x0) syz_io_uring_submit(0x0, r1, &(0x7f0000000240)=@IORING_OP_FADVISE={0x18, 0x0, 0x0, @fd, 0x2}, 0x0) sigaltstack(&(0x7f0000ffd000/0x1000)=nil, 0x0) 10:17:37 executing program 0: r0 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x46e2, 0x0) mmap$IORING_OFF_SQ_RING(&(0x7f0000ffd000/0x3000)=nil, 0x3000, 0x0, 0x13, r0, 0x0) syz_io_uring_setup(0x4b9f, &(0x7f0000000140), &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000ffd000/0x3000)=nil, &(0x7f00000000c0), &(0x7f00000001c0)=0x0) syz_io_uring_submit(0x0, r1, &(0x7f0000000240)=@IORING_OP_FADVISE={0x18, 0x0, 0x0, @fd, 0x2}, 0x0) sigaltstack(&(0x7f0000ffd000/0x1000)=nil, 0x0) 10:17:37 executing program 7: perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r0 = socket$inet6_tcp(0xa, 0x1, 0x0) fcntl$setstatus(r0, 0x4, 0x2000) splice(r0, &(0x7f0000000000)=0xee6, r0, &(0x7f00000000c0)=0x1, 0x4, 0xc) r1 = fork() ioctl$sock_SIOCSPGRP(r0, 0x8902, &(0x7f0000000040)=r1) connect$inet6(r0, &(0x7f0000000140)={0xa, 0x4e20, 0x3, @mcast1, 0x5}, 0x1c) connect$inet6(r0, &(0x7f0000000180)={0xa, 0x0, 0x0, @empty}, 0x1c) setsockopt$inet6_int(0xffffffffffffffff, 0x29, 0x33, &(0x7f0000000100)=0x80, 0x4) r2 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000040), 0x2, 0x0) write$binfmt_aout(r2, &(0x7f0000000640), 0x20) read(r2, &(0x7f0000000100)=""/146, 0x92) 10:17:37 executing program 6: syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x100000, 0x19, &(0x7f0000000200)=[{&(0x7f0000010000)="200000000002000019000000500100000f00000100000005000000000004000040000020000000dbf4655fdbf4655f0100ffff53ef010001000000dbf4655f000000000000000011000000000000000b0000008000000018000000c20500002b0200000000000000000000000000000200000073797a6b616c6c6572000000000000002f746d702f73797a2d696d61676567656e36383530363930383600"/187, 0xbb, 0x1000}, {&(0x7f0000010100)="000000000000000000000000244b8e9b57f04b59aa229cc218853f95010040000c00000000000000dbf4655f00"/64, 0x40, 0x4e0}, {&(0x7f0000000140)="010000d84a58197f102b000000c7ec092a4e884882f9f00040000000000000006fbd3fc3681125335e000000000000000047c43eb5f96f5287eaaa1088fcfbb73b0be0622f906783ecf3cc4bf914aaf7eb17a2721245198ff6853e56fbafba51eab54f68340fd4f6dfd1a302000000000000005a1af607c71ce0c156ddc42e6a56cc7af43864f9b8a6865c3ced8228de94da9e8f16e3056c1e97f69d", 0x9c, 0x560}, {&(0x7f0000010300)="02000000030000000400000015000f0003000400"/32, 0x20, 0x800}, {&(0x7f0000010400)="ff070000fffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffdffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffff0100ffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffff0000000000000000dbf4655fdbf4655fdbf4655f00"/4128, 0x1020, 0x1000}, {&(0x7f0000000040)="ed41000000080000dbf4655fdbf4655fdbf4655f0000000000000400393ab7d74000000000000800050000000af301000400000000000000000000000100000010000000", 0x44, 0x2080}, {&(0x7f0000011600)="8081000000601020dbf4655fdbf4655fdbf4655f00000000000001004000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000030000000", 0x60, 0x2300}, {&(0x7f0000011700)="c041000000400000dbf4655fdbf4655fdbf4655f00000000000002004000000000000800000000000af301000400000000000000000000000800000020000000", 0x40, 0x2500}, {&(0x7f0000011800)="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"/768, 0x300, 0x2580}, {&(0x7f0000000480)="020000000c0011022e000000020000000c0002022e2e00000b00000014000a026c6f73742b6b6f756e6400000c0000001000050266696c65300000070f0000001000050166696c6531000000100000001000050166696c6532000000100000001000050166696c6533000000110000009407090166696c652e636f6c64000000", 0x80, 0x8000}, {&(0x7f0000000500)="0b0000000c0001022e00000002000000f40702022e2e00000000000000000000d8b7d5ad596b3326deaaad200440bd217fba00a152eef64e6f33a9170ebc7cce92395915bcc54c21db66d03675c7571310c010c23a099cbc00ffd24c7b06988e1385648e14fe722349c3c63f8aa3070715882ee708f890369796b26f68a0e66d82d785283dad4b784fba7409d0679168e7f050abd67ff1f5421660f8b3960388a2367c3166038d91dd94a2ded4f4a42b3c57a46c6326c13ecd4cf72a0b4f2116f75bd748", 0xc4, 0x10000}, {&(0x7f0000011d00)='\x00\x00\x00\x00\x00\b\x00'/32, 0x20, 0x10800}, {&(0x7f0000011e00)='\x00\x00\x00\x00\x00\b\x00'/32, 0x20, 0x11005}, {&(0x7f0000011f00)="00e1000000080084fa00"/32, 0x20, 0x11800}, {&(0x7f0000012000)='\x00\x00\x00\x00\x00\b\x00'/32, 0x20, 0x12000}, {&(0x7f0000012100)='\x00\x00\x00\x00\x00\b\x00'/32, 0x20, 0x12800}, {&(0x7f0000012200)='\x00\x00\x00\x00\x00\b\x00'/32, 0x20, 0x13000}, {&(0x7f0000000680)="00000000000800000000000000000000000000000000000000000000000000004ce5d636483ee602b9d77f8bee96357e20943bcceb0a9760c8b49f28b8170825fa74bd9a01d9b91558115ed9f0197c905f738e7d3a26181b482bc22a4d4c5fff7a427afea50fb32d323705ecd8a0416d722087bd77acb0989fd1a63bd432f7fa9388bd560a2fe48cde466678ce8d6e7978c1c10fe7f16bf27f4c369d551b499c4d267b8ed64ddfa1671a23869f81105b8c479a03435a2c07d9fbe570ee32d2407b31f20143fa327ddc0a12c682db21997aa0a43a9223ea75f66415b2cdf1c44dfab57def849dadc36f1c7d15", 0xec, 0x13800}, {&(0x7f0000012400)="504d4d00504d4dffdbf4655f00000000647679756b6f762d676c6170746f70320000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000006c6f6f7033340075782f746573742f73797a5f6d6f756e745f696d6167655f650500"/128, 0x80, 0xafdf}, {&(0x7f0000012500)="0c0000000c0001022e000000020000000c0002022e2e00000d0000001000050166696c65300000000e000000d807050766696c653100"/64, 0x40, 0x28000}, {&(0x7f0000012600)="73797a6b616c6c657273797a6b616c6c657273797a6b616c6c657273797a6b616c6c657273797a6b616c6c657273797a6b616c6c657273797a6b616c6c657273797a6b616c6c657273797a6b616c6c657273797a6b616c6c657273797a6b616c6c657273797a6b616c6c657273797a6b616c6c657273797a6b616c6c657273797a6b616c6c657273797a6b616c6c657273797a6b616c6c657273797a6b616c6c657273797a6b616c6c657273797a6b616c6c657273797a6b616c6c657273797a6b616c6c657273797a6b616c6c657273797a6b616c6c657273797a6b616c6c657273797a6b616c6c657273797a6b616c6c657273797a6b616c6c657273797a6b616c6c657273797a6b616c6c657273797a6b616c6c657273797a6b616c6c657273797a6b616c6c657273797a6b616c6c657273797a6b616c6c657273797a6b616c6c657273797a6b616c6c657273797a6b616c6c657273797a6b616c6c657273797a6b616c6c657273797a6b616c6c657273797a6b616c6c657273797a6b616c6c657273797a6b616c6c657273797a6b616c6c657273797a6b616c6c657273797a6b616c6c657273797a6b616c6c657273797a6b616c6c657273797a6b616c6c657273797a6b616c6c657273797a6b616c6c657273797a6b616c6c657273797a6b616c6c657273797a6b616c6c657273797a6b616c6c657273797a6b616c6c657273797a6b616c6c657273797a6b616c6c657273797a6b616c6c657273797a6b616c6c657273797a6b616c6c657273797a6b616c6c657273797a7a6b616c6c657273797a6b616c6c657273797a6b616c6c657273797a6b616c6c657273797a6b616c6c657273797a6b616c6c657273797a6b616c6c6572735e7a6b616c6c657273797a6b616c6c657273797a6b616c6c657273797a6b616c6c657273797a6b616c6c657273797a6b616c6c657273797a6b616c6c657273797a6b616c6c657273797a6b616c6c657273797a6b616c6c657273797a6b616c6c657273797a6b616c6c657273797a6b616c6c657273797a6b616c6c657273797a6b616c6c657273797a6b616c6c657273797a6b616c6c657273797a6b616c6c657273797a6b616c6c657273797a6b616c6c657273797a6b616c6c657273797a6b616c6c657273797a6b616c6c657273797a6b616c6c657273797a6b616c6c657273797a6b616c6c657273797a074e34e69a99e57431b92e17b96b616c6c657273797a6b616c6c657273797a6b616c6c657273797a6b616c6c657273797a6b616c6c657273797a6b616c6c657273797a6b616c6c657273797ab15c7ebf88f906737bc06b616c6c657273797a6b616c6c657273797a6b616c6c657273797a6b616c6c657273797a6b616c6c657273797a6b616c6c657273797a6b616c6c657273797a6b616c6c657273797a6b616c6c657273797a6b616c6c657273797a6b616c6c657273797a6b616c", 0x420, 0x30000}, {&(0x7f0000012b00)="73797a6b616c6c65728c00000000e4ff00"/32, 0x20, 0x38000}, {&(0x7f0000012c00)="000002ea0100000001000000270f240c000000000000000000000000000000000601f8070000000006000000779b539778617474723100000601f00700000000060000007498539778617474723200"/96, 0x60, 0x5}, {&(0x7f0000012d00)='\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00xattr2\x00\x00xattr1\x00\x00', 0x20, 0x407e0}, {&(0x7f0000012e00)='syzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallers\x00'/128, 0x80, 0x50000}], 0x800810, &(0x7f0000000840)=ANY=[@ANYBLOB="7569643da86cc2ea9cce171af11f957a036778a1d9e97f1052d4944c7f80f1f16f7f601c5bd43f552e91170434e799f851bb1c52f178fb72b4ddd9fecf69b42474352a623ba3a70c9ad9f293", @ANYRESDEC, @ANYBLOB=',smackfsroot=$%%,euid=', @ANYRESDEC=0xee01, @ANYBLOB=',dont_appraise,\x00']) 10:17:37 executing program 5 (fault-call:3 fault-nth:7): r0 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x46e2, 0x0) r1 = dup2(r0, r0) r2 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000040), 0x2, 0x0) mount$9p_fd(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f00000000c0), 0x0, &(0x7f00000004c0)={'trans=fd,', {'rfdno', 0x3d, r1}, 0x2c, {'wfdno', 0x3d, r2}}) [ 547.758184] FAULT_INJECTION: forcing a failure. [ 547.758184] name fail_page_alloc, interval 1, probability 0, space 0, times 1 [ 547.759649] CPU: 0 PID: 6618 Comm: syz-executor.5 Not tainted 5.10.56 #1 [ 547.760452] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS rel-1.14.0-0-g155821a1990b-prebuilt.qemu.org 04/01/2014 [ 547.761706] Call Trace: [ 547.762019] dump_stack+0x107/0x163 [ 547.762440] should_fail.cold+0x5/0xa [ 547.762878] __alloc_pages_nodemask+0x182/0x680 [ 547.763445] ? __alloc_pages_slowpath.constprop.0+0x2210/0x2210 [ 547.764147] ? perf_trace_lock+0xac/0x490 [ 547.764616] ? _down_write_nest_lock+0x150/0x150 [ 547.765168] alloc_pages_current+0x187/0x280 [ 547.765678] allocate_slab+0x26b/0x380 [ 547.766126] ___slab_alloc+0x46c/0x700 [ 547.766582] ? getname_flags.part.0+0x50/0x4f0 [ 547.767118] ? getname_flags.part.0+0x50/0x4f0 [ 547.767684] ? kmem_cache_alloc+0x33f/0x350 [ 547.768201] kmem_cache_alloc+0x33f/0x350 [ 547.768654] getname_flags.part.0+0x50/0x4f0 [ 547.769152] ? _copy_from_user+0xfb/0x1b0 [ 547.769603] user_path_at_empty+0xa1/0x100 [ 547.770084] __x64_sys_mount+0x1e9/0x300 [ 547.770555] ? path_mount+0x2080/0x2080 [ 547.771016] ? rcu_read_lock_sched_held+0x3a/0x70 [ 547.771560] do_syscall_64+0x33/0x40 [ 547.771978] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 547.772557] RIP: 0033:0x466609 [ 547.772924] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 547.775062] RSP: 002b:00007fd61fccc188 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5 [ 547.775964] RAX: ffffffffffffffda RBX: 000000000056bf80 RCX: 0000000000466609 [ 547.776787] RDX: 00000000200000c0 RSI: 0000000020000000 RDI: 0000000000000000 [ 547.777613] RBP: 00007fd61fccc1d0 R08: 00000000200004c0 R09: 0000000000000000 [ 547.778442] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 547.779266] R13: 00007fff09eaa3cf R14: 00007fd61fccc300 R15: 0000000000022000 [ 547.791793] EXT4-fs (loop6): VFS: Can't find ext4 filesystem 10:17:37 executing program 7: perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r0 = socket$inet6_tcp(0xa, 0x1, 0x0) fcntl$setstatus(r0, 0x4, 0x2000) splice(r0, &(0x7f0000000000)=0xee6, r0, &(0x7f00000000c0)=0x1, 0x4, 0xc) r1 = fork() ioctl$sock_SIOCSPGRP(r0, 0x8902, &(0x7f0000000040)=r1) connect$inet6(r0, &(0x7f0000000140)={0xa, 0x4e20, 0x3, @mcast1, 0x5}, 0x1c) connect$inet6(r0, &(0x7f0000000180)={0xa, 0x0, 0x0, @empty}, 0x1c) setsockopt$inet6_int(0xffffffffffffffff, 0x29, 0x33, &(0x7f0000000100)=0x80, 0x4) r2 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000040), 0x2, 0x0) write$binfmt_aout(r2, &(0x7f0000000640), 0x20) read(r2, &(0x7f0000000100)=""/146, 0x92) 10:17:37 executing program 4: r0 = openat(0xffffffffffffff9c, 0x0, 0x46e2, 0x0) r1 = dup2(r0, r0) r2 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000040), 0x2, 0x0) mount$9p_fd(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f00000000c0), 0x0, &(0x7f00000004c0)={'trans=fd,', {'rfdno', 0x3d, r1}, 0x2c, {'wfdno', 0x3d, r2}, 0x2c, {[{@debug}], [{@hash}, {@euid_gt}, {@fsmagic={'fsmagic', 0x3d, 0xfffffffffffffffc}}, {@euid_eq={'euid', 0x3d, 0xffffffffffffffff}}]}}) [ 547.834829] EXT4-fs (loop6): VFS: Can't find ext4 filesystem 10:17:50 executing program 1 (fault-call:3 fault-nth:1): r0 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x46e2, 0x0) r1 = dup2(r0, r0) r2 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000040), 0x2, 0x0) mount$9p_fd(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f00000000c0), 0x0, &(0x7f00000004c0)={'trans=fd,', {'rfdno', 0x3d, r1}, 0x2c, {'wfdno', 0x3d, r2}}) 10:17:50 executing program 3: perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r0 = socket$inet6_tcp(0xa, 0x1, 0x0) fcntl$setstatus(r0, 0x4, 0x2000) splice(r0, &(0x7f0000000000)=0xee6, r0, &(0x7f00000000c0)=0x1, 0x4, 0xc) r1 = fork() ioctl$sock_SIOCSPGRP(r0, 0x8902, &(0x7f0000000040)=r1) connect$inet6(r0, &(0x7f0000000140)={0xa, 0x4e20, 0x3, @mcast1, 0x5}, 0x1c) connect$inet6(r0, &(0x7f0000000180)={0xa, 0x0, 0x0, @empty}, 0x1c) setsockopt$inet6_int(0xffffffffffffffff, 0x29, 0x33, &(0x7f0000000100)=0x80, 0x4) r2 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000040), 0x2, 0x0) read(r2, &(0x7f0000000100)=""/146, 0x92) 10:17:50 executing program 2: mlock2(&(0x7f0000bff000/0x400000)=nil, 0x400000, 0x0) munmap(&(0x7f0000def000/0x3000)=nil, 0x3000) munmap(&(0x7f0000e52000/0x4000)=nil, 0x4000) mremap(&(0x7f0000e33000/0x3000)=nil, 0x3000, 0x3000, 0x7, &(0x7f0000f15000/0x3000)=nil) fork() r0 = openat(0xffffffffffffff9c, &(0x7f0000000140)='./file0\x00', 0x105142, 0x0) r1 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0) copy_file_range(r1, 0x0, r0, 0x0, 0x200f5ef, 0x0) r2 = creat(&(0x7f0000000080)='./file0\x00', 0x0) pwrite64(r2, &(0x7f0000000300)="af", 0xfffffeb2, 0x0) openat(r2, 0x0, 0x206a01, 0x182) unlink(&(0x7f0000000040)='./file0\x00') madvise(&(0x7f0000ffb000/0x3000)=nil, 0x3000, 0xc) r3 = socket$netlink(0x10, 0x3, 0x0) r4 = pkey_alloc(0x0, 0x0) pkey_mprotect(&(0x7f0000ffc000/0x2000)=nil, 0x2000, 0x2000001, r4) pkey_mprotect(&(0x7f0000ffb000/0x3000)=nil, 0x3000, 0x2000001, r4) r5 = fcntl$dupfd(r3, 0x0, r3) getsockopt$netlink(r5, 0x10e, 0x0, 0x0, 0xfffffffffffffffe) syz_io_uring_setup(0x68e7, &(0x7f0000000000)={0x0, 0xffffffff, 0x1, 0x4, 0x193, 0x0, r5}, &(0x7f0000fa3000/0x2000)=nil, &(0x7f0000ce2000/0x4000)=nil, &(0x7f00000000c0), 0x0) 10:17:50 executing program 4: r0 = openat(0xffffffffffffff9c, 0x0, 0x46e2, 0x0) r1 = dup2(r0, r0) r2 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000040), 0x2, 0x0) mount$9p_fd(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f00000000c0), 0x0, &(0x7f00000004c0)={'trans=fd,', {'rfdno', 0x3d, r1}, 0x2c, {'wfdno', 0x3d, r2}, 0x2c, {[{@debug}], [{@hash}, {@euid_gt}, {@fsmagic={'fsmagic', 0x3d, 0xfffffffffffffffc}}, {@euid_eq={'euid', 0x3d, 0xffffffffffffffff}}]}}) 10:17:50 executing program 6: sendmsg$nl_generic(0xffffffffffffffff, &(0x7f00000001c0)={&(0x7f0000000080)={0x10, 0x0, 0x0, 0x40000}, 0xc, &(0x7f0000000180)={&(0x7f00000000c0)={0x1c, 0x26, 0x100, 0x70bd2d, 0x25dfdbfb, {0xb}, [@typed={0x5, 0x76, 0x0, 0x0, @str='\x00'}]}, 0x1c}}, 0x8040) socket$nl_xfrm(0x10, 0x3, 0x6) r0 = socket$unix(0x1, 0x2, 0x0) r1 = socket$unix(0x1, 0x2, 0x0) bind$unix(r1, &(0x7f0000000000)=@abs={0x1}, 0x6e) bind$unix(r1, &(0x7f0000000100)=@abs={0x0, 0x0, 0x4e21}, 0x6e) sendto$unix(r0, 0x0, 0x0, 0x0, &(0x7f0000000400)=@file={0x1, './file0\x00'}, 0x6e) r2 = socket$nl_xfrm(0x10, 0x3, 0x6) sendmsg$nl_xfrm(r2, &(0x7f00000004c0)={0x0, 0x0, &(0x7f0000000480)={&(0x7f0000000380)=@flushpolicy={0x10, 0x1d, 0x501}, 0x10}}, 0x0) 10:17:50 executing program 7: perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r0 = socket$inet6_tcp(0xa, 0x1, 0x0) fcntl$setstatus(r0, 0x4, 0x2000) splice(r0, &(0x7f0000000000)=0xee6, r0, &(0x7f00000000c0)=0x1, 0x4, 0xc) r1 = fork() ioctl$sock_SIOCSPGRP(r0, 0x8902, &(0x7f0000000040)=r1) connect$inet6(r0, &(0x7f0000000140)={0xa, 0x4e20, 0x3, @mcast1, 0x5}, 0x1c) connect$inet6(r0, &(0x7f0000000180)={0xa, 0x0, 0x0, @empty}, 0x1c) setsockopt$inet6_int(0xffffffffffffffff, 0x29, 0x33, &(0x7f0000000100)=0x80, 0x4) r2 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000040), 0x2, 0x0) write$binfmt_aout(r2, &(0x7f0000000640), 0x20) read(r2, &(0x7f0000000100)=""/146, 0x92) 10:17:50 executing program 0: r0 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x46e2, 0x0) mmap$IORING_OFF_SQ_RING(&(0x7f0000ffd000/0x3000)=nil, 0x3000, 0x0, 0x13, r0, 0x0) syz_io_uring_setup(0x4b9f, &(0x7f0000000140), &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000ffd000/0x3000)=nil, &(0x7f00000000c0), &(0x7f00000001c0)=0x0) syz_io_uring_submit(0x0, r1, &(0x7f0000000240)=@IORING_OP_FADVISE={0x18, 0x0, 0x0, @fd, 0x2}, 0x0) sigaltstack(&(0x7f0000ffd000/0x1000)=nil, 0x0) 10:17:50 executing program 5 (fault-call:3 fault-nth:8): r0 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x46e2, 0x0) r1 = dup2(r0, r0) r2 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000040), 0x2, 0x0) mount$9p_fd(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f00000000c0), 0x0, &(0x7f00000004c0)={'trans=fd,', {'rfdno', 0x3d, r1}, 0x2c, {'wfdno', 0x3d, r2}}) [ 560.381790] FAULT_INJECTION: forcing a failure. [ 560.381790] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 560.383203] CPU: 0 PID: 6635 Comm: syz-executor.5 Not tainted 5.10.56 #1 [ 560.384026] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS rel-1.14.0-0-g155821a1990b-prebuilt.qemu.org 04/01/2014 [ 560.385269] Call Trace: [ 560.385562] dump_stack+0x107/0x163 [ 560.385963] should_fail.cold+0x5/0xa [ 560.386401] strncpy_from_user+0x34/0x460 [ 560.386859] getname_flags.part.0+0x95/0x4f0 [ 560.387353] ? _copy_from_user+0xfb/0x1b0 [ 560.387853] user_path_at_empty+0xa1/0x100 [ 560.388331] __x64_sys_mount+0x1e9/0x300 [ 560.388781] ? path_mount+0x2080/0x2080 [ 560.389224] ? rcu_read_lock_sched_held+0x3a/0x70 [ 560.389772] do_syscall_64+0x33/0x40 [ 560.390181] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 560.390774] RIP: 0033:0x466609 [ 560.391149] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 560.393192] RSP: 002b:00007fd61fccc188 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5 [ 560.394066] RAX: ffffffffffffffda RBX: 000000000056bf80 RCX: 0000000000466609 [ 560.394897] RDX: 00000000200000c0 RSI: 0000000020000000 RDI: 0000000000000000 [ 560.395750] RBP: 00007fd61fccc1d0 R08: 00000000200004c0 R09: 0000000000000000 [ 560.396575] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 560.397397] R13: 00007fff09eaa3cf R14: 00007fd61fccc300 R15: 0000000000022000 [ 560.424379] FAULT_INJECTION: forcing a failure. [ 560.424379] name failslab, interval 1, probability 0, space 0, times 0 [ 560.426151] CPU: 1 PID: 6644 Comm: syz-executor.1 Not tainted 5.10.56 #1 [ 560.427148] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS rel-1.14.0-0-g155821a1990b-prebuilt.qemu.org 04/01/2014 [ 560.428832] Call Trace: [ 560.429222] dump_stack+0x107/0x163 [ 560.429759] should_fail.cold+0x5/0xa [ 560.430310] ? create_object.isra.0+0x3a/0xa20 [ 560.430961] should_failslab+0x5/0x10 [ 560.431501] kmem_cache_alloc+0x5b/0x350 [ 560.432105] create_object.isra.0+0x3a/0xa20 [ 560.432728] ? __kasan_kmalloc.constprop.0+0xc2/0xd0 [ 560.433464] __kmalloc_track_caller+0x177/0x3c0 [ 560.434111] ? strndup_user+0x70/0xe0 [ 560.434661] memdup_user+0x22/0xd0 [ 560.435171] strndup_user+0x70/0xe0 [ 560.435731] __x64_sys_mount+0x133/0x300 [ 560.436317] ? path_mount+0x2080/0x2080 [ 560.436906] ? rcu_read_lock_sched_held+0x3a/0x70 [ 560.437609] do_syscall_64+0x33/0x40 [ 560.438119] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 560.438864] RIP: 0033:0x466609 [ 560.439324] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 560.443750] RSP: 002b:00007fdc84e63188 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5 [ 560.445601] RAX: ffffffffffffffda RBX: 000000000056bf80 RCX: 0000000000466609 [ 560.447327] RDX: 00000000200000c0 RSI: 0000000020000000 RDI: 0000000000000000 [ 560.449060] RBP: 00007fdc84e631d0 R08: 00000000200004c0 R09: 0000000000000000 [ 560.450792] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 560.452530] R13: 00007ffc7c6b7e8f R14: 00007fdc84e63300 R15: 0000000000022000 10:17:50 executing program 6: perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r0 = socket$inet6_tcp(0xa, 0x1, 0x0) fcntl$setstatus(r0, 0x4, 0x2000) splice(r0, &(0x7f0000000000)=0xee6, r0, &(0x7f00000000c0)=0x1, 0x4, 0xc) r1 = fork() ioctl$sock_SIOCSPGRP(r0, 0x8902, &(0x7f0000000040)=r1) connect$inet6(r0, &(0x7f0000000140)={0xa, 0x4e20, 0x3, @mcast1, 0x5}, 0x1c) connect$inet6(r0, &(0x7f0000000180)={0xa, 0x0, 0x0, @empty}, 0x1c) setsockopt$inet6_int(0xffffffffffffffff, 0x29, 0x33, &(0x7f0000000100)=0x80, 0x4) r2 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000040), 0x2, 0x0) read(r2, &(0x7f0000000100)=""/146, 0x92) 10:17:50 executing program 5 (fault-call:3 fault-nth:9): r0 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x46e2, 0x0) r1 = dup2(r0, r0) r2 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000040), 0x2, 0x0) mount$9p_fd(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f00000000c0), 0x0, &(0x7f00000004c0)={'trans=fd,', {'rfdno', 0x3d, r1}, 0x2c, {'wfdno', 0x3d, r2}}) [ 560.510726] FAULT_INJECTION: forcing a failure. [ 560.510726] name failslab, interval 1, probability 0, space 0, times 0 [ 560.512168] CPU: 0 PID: 6656 Comm: syz-executor.5 Not tainted 5.10.56 #1 [ 560.512895] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS rel-1.14.0-0-g155821a1990b-prebuilt.qemu.org 04/01/2014 [ 560.514114] Call Trace: [ 560.514398] dump_stack+0x107/0x163 [ 560.514787] should_fail.cold+0x5/0xa [ 560.515200] ? alloc_fs_context+0x57/0x840 [ 560.515664] should_failslab+0x5/0x10 [ 560.516067] kmem_cache_alloc_trace+0x55/0x360 [ 560.516564] alloc_fs_context+0x57/0x840 [ 560.517003] path_mount+0xa4e/0x2080 [ 560.517426] ? strncpy_from_user+0x9e/0x460 [ 560.517898] ? finish_automount+0xa40/0xa40 [ 560.518367] ? getname_flags.part.0+0x1dd/0x4f0 [ 560.518874] ? _copy_from_user+0xfb/0x1b0 [ 560.519320] __x64_sys_mount+0x27e/0x300 [ 560.519778] ? path_mount+0x2080/0x2080 [ 560.520214] ? rcu_read_lock_sched_held+0x3a/0x70 [ 560.520740] do_syscall_64+0x33/0x40 [ 560.521152] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 560.521721] RIP: 0033:0x466609 [ 560.522065] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 560.524042] RSP: 002b:00007fd61fccc188 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5 [ 560.524865] RAX: ffffffffffffffda RBX: 000000000056bf80 RCX: 0000000000466609 [ 560.525641] RDX: 00000000200000c0 RSI: 0000000020000000 RDI: 0000000000000000 [ 560.526402] RBP: 00007fd61fccc1d0 R08: 00000000200004c0 R09: 0000000000000000 [ 560.527171] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 560.527965] R13: 00007fff09eaa3cf R14: 00007fd61fccc300 R15: 0000000000022000 10:18:02 executing program 5 (fault-call:3 fault-nth:10): r0 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x46e2, 0x0) r1 = dup2(r0, r0) r2 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000040), 0x2, 0x0) mount$9p_fd(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f00000000c0), 0x0, &(0x7f00000004c0)={'trans=fd,', {'rfdno', 0x3d, r1}, 0x2c, {'wfdno', 0x3d, r2}}) 10:18:02 executing program 4: r0 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x0, 0x0) r1 = dup2(r0, r0) r2 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000040), 0x2, 0x0) mount$9p_fd(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f00000000c0), 0x0, &(0x7f00000004c0)={'trans=fd,', {'rfdno', 0x3d, r1}, 0x2c, {'wfdno', 0x3d, r2}, 0x2c, {[{@debug}], [{@hash}, {@euid_gt}, {@fsmagic={'fsmagic', 0x3d, 0xfffffffffffffffc}}, {@euid_eq={'euid', 0x3d, 0xffffffffffffffff}}]}}) 10:18:02 executing program 6: r0 = pidfd_getfd(0xffffffffffffffff, 0xffffffffffffffff, 0x0) read(0xffffffffffffffff, &(0x7f0000000100)=""/146, 0x92) fcntl$F_GET_RW_HINT(0xffffffffffffffff, 0x40b, &(0x7f0000000100)) ioctl$BTRFS_IOC_SUBVOL_CREATE_V2(0xffffffffffffffff, 0x50009418, &(0x7f0000000140)={{}, 0x0, 0x0, @inherit={0x58, &(0x7f0000001180)=ANY=[@ANYRESOCT=r0, @ANYRESOCT=r0, @ANYRES64]}, @devid}) openat(0xffffffffffffffff, 0x0, 0x0, 0x1) r1 = creat(&(0x7f0000000040)='./file0\x00', 0x0) openat(0xffffffffffffffff, 0x0, 0x0, 0x0) r2 = creat(&(0x7f0000000080)='./file0\x00', 0x0) fallocate(0xffffffffffffffff, 0x35, 0x1, 0x0) fallocate(r2, 0x0, 0x0, 0x8800000) ioctl$EXT4_IOC_PRECACHE_EXTENTS(0xffffffffffffffff, 0x6612) fcntl$F_GET_RW_HINT(0xffffffffffffffff, 0x40b, &(0x7f0000000000)) fallocate(0xffffffffffffffff, 0x0, 0x0, 0x8000) syncfs(r1) r3 = openat(0xffffffffffffff9c, &(0x7f0000000080)='/proc/self/exe\x00', 0x0, 0x0) r4 = socket$inet6_tcp(0xa, 0x1, 0x0) setsockopt$inet6_tcp_int(r4, 0x6, 0x2, &(0x7f0000000040)=0x81, 0x4) bind$inet6(r4, &(0x7f00000000c0)={0xa, 0x4e20, 0x0, @loopback}, 0x1c) connect$inet6(r4, &(0x7f0000000000)={0xa, 0x4e20, 0x0, @loopback}, 0x1c) sendfile(r4, r3, 0x0, 0x80464c453f) 10:18:02 executing program 3: perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r0 = socket$inet6_tcp(0xa, 0x1, 0x0) fcntl$setstatus(r0, 0x4, 0x2000) splice(r0, &(0x7f0000000000)=0xee6, r0, &(0x7f00000000c0)=0x1, 0x4, 0xc) r1 = fork() ioctl$sock_SIOCSPGRP(r0, 0x8902, &(0x7f0000000040)=r1) connect$inet6(r0, &(0x7f0000000140)={0xa, 0x4e20, 0x3, @mcast1, 0x5}, 0x1c) connect$inet6(r0, &(0x7f0000000180)={0xa, 0x0, 0x0, @empty}, 0x1c) setsockopt$inet6_int(0xffffffffffffffff, 0x29, 0x33, &(0x7f0000000100)=0x80, 0x4) r2 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000040), 0x2, 0x0) read(r2, &(0x7f0000000100)=""/146, 0x92) 10:18:02 executing program 0: r0 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x46e2, 0x0) r1 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffd000/0x3000)=nil, 0x3000, 0x0, 0x13, r0, 0x0) syz_io_uring_setup(0x4b9f, &(0x7f0000000140), &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000ffd000/0x3000)=nil, &(0x7f00000000c0), &(0x7f00000001c0)) syz_io_uring_submit(r1, 0x0, &(0x7f0000000240)=@IORING_OP_FADVISE={0x18, 0x0, 0x0, @fd, 0x2}, 0x0) sigaltstack(&(0x7f0000ffd000/0x1000)=nil, 0x0) 10:18:02 executing program 1 (fault-call:3 fault-nth:2): r0 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x46e2, 0x0) r1 = dup2(r0, r0) r2 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000040), 0x2, 0x0) mount$9p_fd(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f00000000c0), 0x0, &(0x7f00000004c0)={'trans=fd,', {'rfdno', 0x3d, r1}, 0x2c, {'wfdno', 0x3d, r2}}) 10:18:02 executing program 2: mlock2(&(0x7f0000bff000/0x400000)=nil, 0x400000, 0x0) munmap(&(0x7f0000def000/0x3000)=nil, 0x3000) munmap(&(0x7f0000e52000/0x4000)=nil, 0x4000) mremap(&(0x7f0000e33000/0x3000)=nil, 0x3000, 0x3000, 0x7, &(0x7f0000f15000/0x3000)=nil) fork() r0 = openat(0xffffffffffffff9c, &(0x7f0000000140)='./file0\x00', 0x105142, 0x0) r1 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0) copy_file_range(r1, 0x0, r0, 0x0, 0x200f5ef, 0x0) r2 = creat(&(0x7f0000000080)='./file0\x00', 0x0) pwrite64(r2, &(0x7f0000000300)="af", 0xfffffeb2, 0x0) openat(r2, 0x0, 0x206a01, 0x182) unlink(&(0x7f0000000040)='./file0\x00') madvise(&(0x7f0000ffb000/0x3000)=nil, 0x3000, 0xc) r3 = socket$netlink(0x10, 0x3, 0x0) r4 = pkey_alloc(0x0, 0x0) pkey_mprotect(&(0x7f0000ffc000/0x2000)=nil, 0x2000, 0x2000001, r4) pkey_mprotect(&(0x7f0000ffb000/0x3000)=nil, 0x3000, 0x2000001, r4) r5 = fcntl$dupfd(r3, 0x0, r3) getsockopt$netlink(r5, 0x10e, 0x0, 0x0, 0xfffffffffffffffe) syz_io_uring_setup(0x68e7, &(0x7f0000000000)={0x0, 0xffffffff, 0x1, 0x4, 0x193, 0x0, r5}, &(0x7f0000fa3000/0x2000)=nil, &(0x7f0000ce2000/0x4000)=nil, &(0x7f00000000c0), 0x0) 10:18:02 executing program 7: perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r0 = socket$inet6_tcp(0xa, 0x1, 0x0) fcntl$setstatus(r0, 0x4, 0x2000) splice(r0, &(0x7f0000000000)=0xee6, r0, &(0x7f00000000c0)=0x1, 0x4, 0xc) r1 = fork() ioctl$sock_SIOCSPGRP(r0, 0x8902, &(0x7f0000000040)=r1) connect$inet6(r0, &(0x7f0000000140)={0xa, 0x4e20, 0x3, @mcast1, 0x5}, 0x1c) connect$inet6(r0, &(0x7f0000000180)={0xa, 0x0, 0x0, @empty}, 0x1c) setsockopt$inet6_int(0xffffffffffffffff, 0x29, 0x33, &(0x7f0000000100)=0x80, 0x4) r2 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000040), 0x2, 0x0) read(r2, &(0x7f0000000100)=""/146, 0x92) [ 572.944247] FAULT_INJECTION: forcing a failure. [ 572.944247] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 572.945975] CPU: 1 PID: 6691 Comm: syz-executor.1 Not tainted 5.10.56 #1 [ 572.947083] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS rel-1.14.0-0-g155821a1990b-prebuilt.qemu.org 04/01/2014 [ 572.948683] Call Trace: [ 572.949135] dump_stack+0x107/0x163 [ 572.949700] should_fail.cold+0x5/0xa [ 572.950255] _copy_from_user+0x2e/0x1b0 [ 572.950854] memdup_user+0x65/0xd0 [ 572.951359] strndup_user+0x70/0xe0 [ 572.951990] __x64_sys_mount+0x133/0x300 [ 572.952566] ? path_mount+0x2080/0x2080 [ 572.953083] ? rcu_read_lock_sched_held+0x3a/0x70 [ 572.953729] do_syscall_64+0x33/0x40 [ 572.954267] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 572.954991] RIP: 0033:0x466609 [ 572.955415] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 572.957866] RSP: 002b:00007fdc84e63188 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5 [ 572.958860] RAX: ffffffffffffffda RBX: 000000000056bf80 RCX: 0000000000466609 [ 572.959822] RDX: 00000000200000c0 RSI: 0000000020000000 RDI: 0000000000000000 [ 572.960750] RBP: 00007fdc84e631d0 R08: 00000000200004c0 R09: 0000000000000000 [ 572.961686] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 572.962624] R13: 00007ffc7c6b7e8f R14: 00007fdc84e63300 R15: 0000000000022000 [ 572.991964] FAULT_INJECTION: forcing a failure. [ 572.991964] name failslab, interval 1, probability 0, space 0, times 0 [ 572.993617] CPU: 0 PID: 6688 Comm: syz-executor.5 Not tainted 5.10.56 #1 [ 572.994556] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS rel-1.14.0-0-g155821a1990b-prebuilt.qemu.org 04/01/2014 [ 572.996184] Call Trace: [ 572.996564] dump_stack+0x107/0x163 [ 572.997080] should_fail.cold+0x5/0xa [ 572.997612] ? create_object.isra.0+0x3a/0xa20 [ 572.998268] should_failslab+0x5/0x10 [ 572.998818] kmem_cache_alloc+0x5b/0x350 [ 572.999393] create_object.isra.0+0x3a/0xa20 [ 573.000011] ? __kasan_kmalloc.constprop.0+0xc2/0xd0 [ 573.000735] kmem_cache_alloc_trace+0x151/0x360 [ 573.001406] alloc_fs_context+0x57/0x840 [ 573.001989] path_mount+0xa4e/0x2080 [ 573.002536] ? strncpy_from_user+0x9e/0x460 [ 573.003147] ? finish_automount+0xa40/0xa40 [ 573.003772] ? getname_flags.part.0+0x1dd/0x4f0 [ 573.004441] ? _copy_from_user+0xfb/0x1b0 [ 573.005058] __x64_sys_mount+0x27e/0x300 [ 573.005645] ? path_mount+0x2080/0x2080 [ 573.006215] ? rcu_read_lock_sched_held+0x3a/0x70 [ 573.006876] do_syscall_64+0x33/0x40 [ 573.007397] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 573.008138] RIP: 0033:0x466609 [ 573.008595] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 573.011182] RSP: 002b:00007fd61fccc188 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5 [ 573.012247] RAX: ffffffffffffffda RBX: 000000000056bf80 RCX: 0000000000466609 [ 573.013255] RDX: 00000000200000c0 RSI: 0000000020000000 RDI: 0000000000000000 [ 573.014247] RBP: 00007fd61fccc1d0 R08: 00000000200004c0 R09: 0000000000000000 [ 573.015252] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 573.016291] R13: 00007fff09eaa3cf R14: 00007fd61fccc300 R15: 0000000000022000 10:18:02 executing program 0: r0 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x46e2, 0x0) r1 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffd000/0x3000)=nil, 0x3000, 0x0, 0x13, r0, 0x0) syz_io_uring_setup(0x4b9f, &(0x7f0000000140), &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000ffd000/0x3000)=nil, &(0x7f00000000c0), &(0x7f00000001c0)) syz_io_uring_submit(r1, 0x0, &(0x7f0000000240)=@IORING_OP_FADVISE={0x18, 0x0, 0x0, @fd, 0x2}, 0x0) sigaltstack(&(0x7f0000ffd000/0x1000)=nil, 0x0) 10:18:02 executing program 4: r0 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x0, 0x0) r1 = dup2(r0, r0) r2 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000040), 0x2, 0x0) mount$9p_fd(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f00000000c0), 0x0, &(0x7f00000004c0)={'trans=fd,', {'rfdno', 0x3d, r1}, 0x2c, {'wfdno', 0x3d, r2}, 0x2c, {[{@debug}], [{@hash}, {@euid_gt}, {@fsmagic={'fsmagic', 0x3d, 0xfffffffffffffffc}}, {@euid_eq={'euid', 0x3d, 0xffffffffffffffff}}]}}) 10:18:02 executing program 1 (fault-call:3 fault-nth:3): r0 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x46e2, 0x0) r1 = dup2(r0, r0) r2 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000040), 0x2, 0x0) mount$9p_fd(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f00000000c0), 0x0, &(0x7f00000004c0)={'trans=fd,', {'rfdno', 0x3d, r1}, 0x2c, {'wfdno', 0x3d, r2}}) 10:18:02 executing program 0: r0 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x46e2, 0x0) r1 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffd000/0x3000)=nil, 0x3000, 0x0, 0x13, r0, 0x0) syz_io_uring_setup(0x4b9f, &(0x7f0000000140), &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000ffd000/0x3000)=nil, &(0x7f00000000c0), &(0x7f00000001c0)) syz_io_uring_submit(r1, 0x0, &(0x7f0000000240)=@IORING_OP_FADVISE={0x18, 0x0, 0x0, @fd, 0x2}, 0x0) sigaltstack(&(0x7f0000ffd000/0x1000)=nil, 0x0) [ 573.113288] FAULT_INJECTION: forcing a failure. [ 573.113288] name failslab, interval 1, probability 0, space 0, times 0 [ 573.114695] CPU: 1 PID: 6704 Comm: syz-executor.1 Not tainted 5.10.56 #1 [ 573.115447] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS rel-1.14.0-0-g155821a1990b-prebuilt.qemu.org 04/01/2014 [ 573.116771] Call Trace: [ 573.117078] dump_stack+0x107/0x163 [ 573.117529] should_fail.cold+0x5/0xa [ 573.117984] ? copy_mount_options+0x55/0x180 [ 573.118497] should_failslab+0x5/0x10 [ 573.118930] kmem_cache_alloc_trace+0x55/0x360 [ 573.119449] ? _copy_from_user+0xfb/0x1b0 [ 573.119929] copy_mount_options+0x55/0x180 [ 573.120421] __x64_sys_mount+0x1a8/0x300 [ 573.120872] ? path_mount+0x2080/0x2080 [ 573.121342] ? rcu_read_lock_sched_held+0x3a/0x70 [ 573.121888] do_syscall_64+0x33/0x40 [ 573.122319] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 573.122889] RIP: 0033:0x466609 [ 573.123259] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 573.125365] RSP: 002b:00007fdc84e63188 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5 [ 573.126241] RAX: ffffffffffffffda RBX: 000000000056bf80 RCX: 0000000000466609 [ 573.127051] RDX: 00000000200000c0 RSI: 0000000020000000 RDI: 0000000000000000 [ 573.127875] RBP: 00007fdc84e631d0 R08: 00000000200004c0 R09: 0000000000000000 [ 573.128680] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 573.129507] R13: 00007ffc7c6b7e8f R14: 00007fdc84e63300 R15: 0000000000022000 [ 584.008878] kmemleak: 1 new suspected memory leaks (see /sys/kernel/debug/kmemleak) 10:18:21 executing program 6: perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r0 = socket$inet6_tcp(0xa, 0x1, 0x0) fcntl$setstatus(r0, 0x4, 0x2000) splice(r0, &(0x7f0000000000)=0xee6, r0, &(0x7f00000000c0)=0x1, 0x4, 0xc) r1 = fork() ioctl$sock_SIOCSPGRP(r0, 0x8902, &(0x7f0000000040)=r1) connect$inet6(r0, &(0x7f0000000140)={0xa, 0x4e20, 0x3, @mcast1, 0x5}, 0x1c) connect$inet6(r0, &(0x7f0000000180)={0xa, 0x0, 0x0, @empty}, 0x1c) setsockopt$inet6_int(0xffffffffffffffff, 0x29, 0x33, &(0x7f0000000100)=0x80, 0x4) r2 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000040), 0x2, 0x0) read(r2, &(0x7f0000000100)=""/146, 0x92) 10:18:21 executing program 4: r0 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x0, 0x0) r1 = dup2(r0, r0) r2 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000040), 0x2, 0x0) mount$9p_fd(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f00000000c0), 0x0, &(0x7f00000004c0)={'trans=fd,', {'rfdno', 0x3d, r1}, 0x2c, {'wfdno', 0x3d, r2}, 0x2c, {[{@debug}], [{@hash}, {@euid_gt}, {@fsmagic={'fsmagic', 0x3d, 0xfffffffffffffffc}}, {@euid_eq={'euid', 0x3d, 0xffffffffffffffff}}]}}) 10:18:21 executing program 0: r0 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x46e2, 0x0) r1 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffd000/0x3000)=nil, 0x3000, 0x0, 0x13, r0, 0x0) syz_io_uring_setup(0x4b9f, &(0x7f0000000140), &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000ffd000/0x3000)=nil, &(0x7f00000000c0), &(0x7f00000001c0)=0x0) syz_io_uring_submit(r1, r2, 0x0, 0x0) sigaltstack(&(0x7f0000ffd000/0x1000)=nil, 0x0) 10:18:21 executing program 7: perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r0 = socket$inet6_tcp(0xa, 0x1, 0x0) fcntl$setstatus(r0, 0x4, 0x2000) splice(r0, &(0x7f0000000000)=0xee6, r0, &(0x7f00000000c0)=0x1, 0x4, 0xc) r1 = fork() ioctl$sock_SIOCSPGRP(r0, 0x8902, &(0x7f0000000040)=r1) connect$inet6(r0, &(0x7f0000000140)={0xa, 0x4e20, 0x3, @mcast1, 0x5}, 0x1c) connect$inet6(r0, &(0x7f0000000180)={0xa, 0x0, 0x0, @empty}, 0x1c) setsockopt$inet6_int(0xffffffffffffffff, 0x29, 0x33, &(0x7f0000000100)=0x80, 0x4) r2 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000040), 0x2, 0x0) read(r2, &(0x7f0000000100)=""/146, 0x92) 10:18:21 executing program 5 (fault-call:3 fault-nth:11): r0 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x46e2, 0x0) r1 = dup2(r0, r0) r2 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000040), 0x2, 0x0) mount$9p_fd(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f00000000c0), 0x0, &(0x7f00000004c0)={'trans=fd,', {'rfdno', 0x3d, r1}, 0x2c, {'wfdno', 0x3d, r2}}) 10:18:21 executing program 1 (fault-call:3 fault-nth:4): r0 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x46e2, 0x0) r1 = dup2(r0, r0) r2 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000040), 0x2, 0x0) mount$9p_fd(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f00000000c0), 0x0, &(0x7f00000004c0)={'trans=fd,', {'rfdno', 0x3d, r1}, 0x2c, {'wfdno', 0x3d, r2}}) 10:18:21 executing program 2: fremovexattr(0xffffffffffffffff, &(0x7f0000000000)=@random={'security.', '^^,(\x00'}) syz_mount_image$vfat(&(0x7f0000000080), &(0x7f0000000100)='./file0\x00', 0xfffffff0, 0x2, &(0x7f0000000200)=[{&(0x7f0000010000)="eb3c906d6b66732e66617400020801000470008000f801", 0x17}, {0x0, 0x0, 0x1000a00}], 0x0, &(0x7f00000001c0)=ANY=[@ANYBLOB='\b\x00:flus']) 10:18:21 executing program 3: perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r0 = socket$inet6_tcp(0xa, 0x1, 0x0) fcntl$setstatus(r0, 0x4, 0x2000) splice(r0, &(0x7f0000000000)=0xee6, r0, &(0x7f00000000c0)=0x1, 0x4, 0xc) r1 = fork() ioctl$sock_SIOCSPGRP(r0, 0x8902, &(0x7f0000000040)=r1) connect$inet6(r0, &(0x7f0000000140)={0xa, 0x4e20, 0x3, @mcast1, 0x5}, 0x1c) connect$inet6(r0, &(0x7f0000000180)={0xa, 0x0, 0x0, @empty}, 0x1c) setsockopt$inet6_int(0xffffffffffffffff, 0x29, 0x33, &(0x7f0000000100)=0x80, 0x4) write$binfmt_aout(0xffffffffffffffff, &(0x7f0000000640), 0x20) read(0xffffffffffffffff, &(0x7f0000000100)=""/146, 0x92) [ 591.841156] FAULT_INJECTION: forcing a failure. [ 591.841156] name failslab, interval 1, probability 0, space 0, times 0 [ 591.842940] CPU: 1 PID: 6729 Comm: syz-executor.1 Not tainted 5.10.56 #1 [ 591.843921] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS rel-1.14.0-0-g155821a1990b-prebuilt.qemu.org 04/01/2014 [ 591.845557] Call Trace: [ 591.845943] dump_stack+0x107/0x163 [ 591.846475] should_fail.cold+0x5/0xa [ 591.847039] ? create_object.isra.0+0x3a/0xa20 [ 591.847707] should_failslab+0x5/0x10 [ 591.848275] kmem_cache_alloc+0x5b/0x350 [ 591.848872] create_object.isra.0+0x3a/0xa20 [ 591.849504] ? __kasan_kmalloc.constprop.0+0xc2/0xd0 [ 591.850233] kmem_cache_alloc_trace+0x151/0x360 [ 591.850919] copy_mount_options+0x55/0x180 [ 591.851543] __x64_sys_mount+0x1a8/0x300 [ 591.852147] ? path_mount+0x2080/0x2080 [ 591.852737] ? rcu_read_lock_sched_held+0x3a/0x70 [ 591.853456] do_syscall_64+0x33/0x40 [ 591.854010] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 591.854757] RIP: 0033:0x466609 [ 591.855228] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 591.857952] RSP: 002b:00007fdc84e63188 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5 [ 591.859086] RAX: ffffffffffffffda RBX: 000000000056bf80 RCX: 0000000000466609 [ 591.860190] RDX: 00000000200000c0 RSI: 0000000020000000 RDI: 0000000000000000 [ 591.861233] RBP: 00007fdc84e631d0 R08: 00000000200004c0 R09: 0000000000000000 [ 591.862258] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 591.863278] R13: 00007ffc7c6b7e8f R14: 00007fdc84e63300 R15: 0000000000022000 [ 591.882290] FAULT_INJECTION: forcing a failure. [ 591.882290] name failslab, interval 1, probability 0, space 0, times 0 [ 591.884005] CPU: 1 PID: 6733 Comm: syz-executor.5 Not tainted 5.10.56 #1 [ 591.884994] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS rel-1.14.0-0-g155821a1990b-prebuilt.qemu.org 04/01/2014 [ 591.886579] Call Trace: [ 591.886963] dump_stack+0x107/0x163 [ 591.887510] should_fail.cold+0x5/0xa [ 591.888085] ? legacy_init_fs_context+0x44/0xe0 [ 591.888759] should_failslab+0x5/0x10 [ 591.889316] kmem_cache_alloc_trace+0x55/0x360 [ 591.889978] legacy_init_fs_context+0x44/0xe0 [ 591.890598] ? generic_parse_monolithic+0x1f0/0x1f0 [ 591.891289] alloc_fs_context+0x4f8/0x840 [ 591.891898] path_mount+0xa4e/0x2080 [ 591.892456] ? strncpy_from_user+0x9e/0x460 [ 591.893069] ? finish_automount+0xa40/0xa40 [ 591.893711] ? getname_flags.part.0+0x1dd/0x4f0 [ 591.894375] ? _copy_from_user+0xfb/0x1b0 [ 591.894978] __x64_sys_mount+0x27e/0x300 [ 591.895564] ? path_mount+0x2080/0x2080 [ 591.896148] ? rcu_read_lock_sched_held+0x3a/0x70 [ 591.896843] do_syscall_64+0x33/0x40 [ 591.897379] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 591.898121] RIP: 0033:0x466609 [ 591.898596] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 591.901258] RSP: 002b:00007fd61fccc188 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5 [ 591.902362] RAX: ffffffffffffffda RBX: 000000000056bf80 RCX: 0000000000466609 [ 591.903411] RDX: 00000000200000c0 RSI: 0000000020000000 RDI: 0000000000000000 [ 591.904454] RBP: 00007fd61fccc1d0 R08: 00000000200004c0 R09: 0000000000000000 [ 591.905493] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 591.906537] R13: 00007fff09eaa3cf R14: 00007fd61fccc300 R15: 0000000000022000 10:18:21 executing program 4: r0 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x46e2, 0x0) r1 = dup2(0xffffffffffffffff, r0) r2 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000040), 0x2, 0x0) mount$9p_fd(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f00000000c0), 0x0, &(0x7f00000004c0)={'trans=fd,', {'rfdno', 0x3d, r1}, 0x2c, {'wfdno', 0x3d, r2}, 0x2c, {[{@debug}], [{@hash}, {@euid_gt}, {@fsmagic={'fsmagic', 0x3d, 0xfffffffffffffffc}}, {@euid_eq={'euid', 0x3d, 0xffffffffffffffff}}]}}) 10:18:21 executing program 0: r0 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x46e2, 0x0) r1 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffd000/0x3000)=nil, 0x3000, 0x0, 0x13, r0, 0x0) syz_io_uring_setup(0x4b9f, &(0x7f0000000140), &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000ffd000/0x3000)=nil, &(0x7f00000000c0), &(0x7f00000001c0)=0x0) syz_io_uring_submit(r1, r2, 0x0, 0x0) sigaltstack(&(0x7f0000ffd000/0x1000)=nil, 0x0) 10:18:21 executing program 1 (fault-call:3 fault-nth:5): r0 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x46e2, 0x0) r1 = dup2(r0, r0) r2 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000040), 0x2, 0x0) mount$9p_fd(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f00000000c0), 0x0, &(0x7f00000004c0)={'trans=fd,', {'rfdno', 0x3d, r1}, 0x2c, {'wfdno', 0x3d, r2}}) 10:18:21 executing program 5 (fault-call:3 fault-nth:12): r0 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x46e2, 0x0) r1 = dup2(r0, r0) r2 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000040), 0x2, 0x0) mount$9p_fd(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f00000000c0), 0x0, &(0x7f00000004c0)={'trans=fd,', {'rfdno', 0x3d, r1}, 0x2c, {'wfdno', 0x3d, r2}}) [ 592.013883] FAULT_INJECTION: forcing a failure. [ 592.013883] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 592.015606] CPU: 1 PID: 6749 Comm: syz-executor.1 Not tainted 5.10.56 #1 [ 592.016586] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS rel-1.14.0-0-g155821a1990b-prebuilt.qemu.org 04/01/2014 [ 592.018221] Call Trace: [ 592.018600] dump_stack+0x107/0x163 [ 592.019151] should_fail.cold+0x5/0xa [ 592.019711] _copy_from_user+0x2e/0x1b0 [ 592.020300] copy_mount_options+0x76/0x180 [ 592.020890] __x64_sys_mount+0x1a8/0x300 [ 592.021464] ? path_mount+0x2080/0x2080 [ 592.022007] ? rcu_read_lock_sched_held+0x3a/0x70 [ 592.022726] do_syscall_64+0x33/0x40 [ 592.023223] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 592.023936] RIP: 0033:0x466609 [ 592.024373] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 592.026974] RSP: 002b:00007fdc84e63188 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5 [ 592.028006] RAX: ffffffffffffffda RBX: 000000000056bf80 RCX: 0000000000466609 [ 592.029029] RDX: 00000000200000c0 RSI: 0000000020000000 RDI: 0000000000000000 [ 592.030052] RBP: 00007fdc84e631d0 R08: 00000000200004c0 R09: 0000000000000000 [ 592.031075] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 592.032077] R13: 00007ffc7c6b7e8f R14: 00007fdc84e63300 R15: 0000000000022000 10:18:21 executing program 3: perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r0 = socket$inet6_tcp(0xa, 0x1, 0x0) fcntl$setstatus(r0, 0x4, 0x2000) splice(r0, &(0x7f0000000000)=0xee6, r0, &(0x7f00000000c0)=0x1, 0x4, 0xc) r1 = fork() ioctl$sock_SIOCSPGRP(r0, 0x8902, &(0x7f0000000040)=r1) connect$inet6(r0, &(0x7f0000000140)={0xa, 0x4e20, 0x3, @mcast1, 0x5}, 0x1c) connect$inet6(r0, &(0x7f0000000180)={0xa, 0x0, 0x0, @empty}, 0x1c) setsockopt$inet6_int(0xffffffffffffffff, 0x29, 0x33, &(0x7f0000000100)=0x80, 0x4) write$binfmt_aout(0xffffffffffffffff, &(0x7f0000000640), 0x20) read(0xffffffffffffffff, &(0x7f0000000100)=""/146, 0x92) [ 592.041561] 9pnet: Insufficient options for proto=fd 10:18:21 executing program 2: r0 = syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0x4, &(0x7f0000000440)=[{&(0x7f00000001c0)="f2894876c84780ef020051bb6bbdc2c87ab6542b204144effc84c631e690e41ac9e2fe8ba0d97926a86a13c9f2dca17d61caf3c8b8142a0ba4b497e51e0ebd9bdf447a268b81d6c6b3d8a630c394abef3503dff35372cca1a5a9ae8ac45591f3223c68bd79288c715f9d7bf4fe19ac7b835501353954c5dc335dca10fd7c2a362a88c582ac737929ffb87d356bf7d3a0aabf05c08e79eb6e6d396db9c993b9955e71f3a0195e5969926b52767ebbd0cc47dc7af85fa59fd82012da76e0b6150b96fbe20a", 0xc4, 0x5}, {&(0x7f00000002c0)="f9f6db69bea19dcdbd5f39a04e7596a2b63b9f1d592777fbfa363f4dd7091b71fdee411c8a3b7677f40a3fd978ca983199deaf12cb6da61685df4f9c5ad48a7947f0102472365cb873b167ad856e9c72f8f74519f3d1d8646c3c3a7bb5ee87c49a6fb81e757154dcba9c957aad6a76df19714883e7bbde823095272cf670c85dad9ce98f57d5f77f3958f4c86314af5ab0df7fd756bf2e5101b4380189cf0a80b73ec3c7a0bc752199f3f4a1a8f1122f6315ce9760", 0xb5, 0xdd}, {&(0x7f0000000080)="2cc9caf7ddc03826e2320ec2adc5c7", 0xf, 0x5}, {&(0x7f0000000380)="c5cf3f456c99f38838099b434e813e8db65dedb4657501c97f8083fcee4dd310e8cc492b898d433e49577a5616bed22871b79dafdc550f3d3c11e4a26db91ad3fe004cb38325fdb993325061ebc7752f978a31c20249ca34ddf8e1d2fa026dc39ca6fcc39eb9aa85e394a45e0e66919b3494a765ab24e1ec73f8c421c6f2accd994efd17cc515ffdfa0f7883f8fba0307722218773", 0x95}], 0x0, &(0x7f00000004c0)=ANY=[@ANYBLOB="b0481fa6e9bbd8eb2154c24109dbac9e0698d7cccdad81e11d6d4781d8e4ca64656ac66d"]) clock_gettime(0x0, &(0x7f0000000140)={0x0, 0x0}) setresuid(0xffffffffffffffff, 0x0, 0x0) stat(&(0x7f0000001cc0)='.\x00', &(0x7f0000001c00)={0x0, 0x0, 0x0, 0x0, 0x0}) setresuid(0xffffffffffffffff, r3, 0x0) stat(&(0x7f0000001cc0)='.\x00', &(0x7f0000001c00)={0x0, 0x0, 0x0, 0x0, 0x0}) setresuid(0xffffffffffffffff, r4, 0x0) fstat(r0, &(0x7f0000000540)) r5 = getgid() lchown(&(0x7f0000000400)='./file2\x00', 0xffffffffffffffff, r5) futimesat(r0, &(0x7f00000000c0)='./file0\x00', &(0x7f0000000180)={{r1, r2/1000+60000}}) [ 592.078376] FAULT_INJECTION: forcing a failure. [ 592.078376] name failslab, interval 1, probability 0, space 0, times 0 [ 592.080186] CPU: 1 PID: 6753 Comm: syz-executor.5 Not tainted 5.10.56 #1 [ 592.081307] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS rel-1.14.0-0-g155821a1990b-prebuilt.qemu.org 04/01/2014 [ 592.083059] Call Trace: [ 592.083490] dump_stack+0x107/0x163 [ 592.084114] should_fail.cold+0x5/0xa [ 592.084742] ? create_object.isra.0+0x3a/0xa20 [ 592.085492] should_failslab+0x5/0x10 [ 592.086112] kmem_cache_alloc+0x5b/0x350 [ 592.086779] create_object.isra.0+0x3a/0xa20 [ 592.087495] ? __kasan_kmalloc.constprop.0+0xc2/0xd0 [ 592.088336] kmem_cache_alloc_trace+0x151/0x360 [ 592.089102] legacy_init_fs_context+0x44/0xe0 [ 592.089830] ? generic_parse_monolithic+0x1f0/0x1f0 [ 592.090640] alloc_fs_context+0x4f8/0x840 [ 592.091328] path_mount+0xa4e/0x2080 [ 592.091944] ? strncpy_from_user+0x9e/0x460 [ 592.092656] ? finish_automount+0xa40/0xa40 [ 592.093361] ? getname_flags.part.0+0x1dd/0x4f0 [ 592.094119] ? _copy_from_user+0xfb/0x1b0 [ 592.094805] __x64_sys_mount+0x27e/0x300 [ 592.095467] ? path_mount+0x2080/0x2080 [ 592.096146] ? rcu_read_lock_sched_held+0x3a/0x70 [ 592.096948] do_syscall_64+0x33/0x40 [ 592.097555] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 592.098389] RIP: 0033:0x466609 [ 592.098916] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 592.101917] RSP: 002b:00007fd61fccc188 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5 [ 592.103148] RAX: ffffffffffffffda RBX: 000000000056bf80 RCX: 0000000000466609 [ 592.104320] RDX: 00000000200000c0 RSI: 0000000020000000 RDI: 0000000000000000 [ 592.105461] RBP: 00007fd61fccc1d0 R08: 00000000200004c0 R09: 0000000000000000 [ 592.106600] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 592.107732] R13: 00007fff09eaa3cf R14: 00007fd61fccc300 R15: 0000000000022000 10:18:21 executing program 4: r0 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x46e2, 0x0) r1 = dup2(0xffffffffffffffff, r0) r2 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000040), 0x2, 0x0) mount$9p_fd(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f00000000c0), 0x0, &(0x7f00000004c0)={'trans=fd,', {'rfdno', 0x3d, r1}, 0x2c, {'wfdno', 0x3d, r2}, 0x2c, {[{@debug}], [{@hash}, {@euid_gt}, {@fsmagic={'fsmagic', 0x3d, 0xfffffffffffffffc}}, {@euid_eq={'euid', 0x3d, 0xffffffffffffffff}}]}}) 10:18:21 executing program 3: perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r0 = socket$inet6_tcp(0xa, 0x1, 0x0) fcntl$setstatus(r0, 0x4, 0x2000) splice(r0, &(0x7f0000000000)=0xee6, r0, &(0x7f00000000c0)=0x1, 0x4, 0xc) r1 = fork() ioctl$sock_SIOCSPGRP(r0, 0x8902, &(0x7f0000000040)=r1) connect$inet6(r0, &(0x7f0000000140)={0xa, 0x4e20, 0x3, @mcast1, 0x5}, 0x1c) connect$inet6(r0, &(0x7f0000000180)={0xa, 0x0, 0x0, @empty}, 0x1c) setsockopt$inet6_int(0xffffffffffffffff, 0x29, 0x33, &(0x7f0000000100)=0x80, 0x4) write$binfmt_aout(0xffffffffffffffff, &(0x7f0000000640), 0x20) read(0xffffffffffffffff, &(0x7f0000000100)=""/146, 0x92) [ 592.164883] 9pnet: Insufficient options for proto=fd 10:18:34 executing program 7: perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r0 = socket$inet6_tcp(0xa, 0x1, 0x0) fcntl$setstatus(r0, 0x4, 0x2000) splice(r0, &(0x7f0000000000)=0xee6, r0, &(0x7f00000000c0)=0x1, 0x4, 0xc) r1 = fork() ioctl$sock_SIOCSPGRP(r0, 0x8902, &(0x7f0000000040)=r1) connect$inet6(r0, &(0x7f0000000140)={0xa, 0x4e20, 0x3, @mcast1, 0x5}, 0x1c) connect$inet6(r0, &(0x7f0000000180)={0xa, 0x0, 0x0, @empty}, 0x1c) setsockopt$inet6_int(0xffffffffffffffff, 0x29, 0x33, &(0x7f0000000100)=0x80, 0x4) r2 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000040), 0x2, 0x0) read(r2, &(0x7f0000000100)=""/146, 0x92) 10:18:34 executing program 6: r0 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x105142, 0x0) r1 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0) copy_file_range(r1, 0x0, r0, 0x0, 0x200f5ef, 0x0) r2 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x105142, 0x15e) r3 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0) copy_file_range(r3, 0x0, r2, 0x0, 0x200f5ef, 0x0) 10:18:34 executing program 0: r0 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x46e2, 0x0) r1 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffd000/0x3000)=nil, 0x3000, 0x0, 0x13, r0, 0x0) syz_io_uring_setup(0x4b9f, &(0x7f0000000140), &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000ffd000/0x3000)=nil, &(0x7f00000000c0), &(0x7f00000001c0)=0x0) syz_io_uring_submit(r1, r2, 0x0, 0x0) sigaltstack(&(0x7f0000ffd000/0x1000)=nil, 0x0) 10:18:34 executing program 1 (fault-call:3 fault-nth:6): r0 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x46e2, 0x0) r1 = dup2(r0, r0) r2 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000040), 0x2, 0x0) mount$9p_fd(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f00000000c0), 0x0, &(0x7f00000004c0)={'trans=fd,', {'rfdno', 0x3d, r1}, 0x2c, {'wfdno', 0x3d, r2}}) 10:18:34 executing program 3: perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r0 = socket$inet6_tcp(0xa, 0x1, 0x0) fcntl$setstatus(r0, 0x4, 0x2000) splice(r0, &(0x7f0000000000)=0xee6, r0, &(0x7f00000000c0)=0x1, 0x4, 0xc) r1 = fork() ioctl$sock_SIOCSPGRP(r0, 0x8902, &(0x7f0000000040)=r1) connect$inet6(r0, &(0x7f0000000140)={0xa, 0x4e20, 0x3, @mcast1, 0x5}, 0x1c) connect$inet6(r0, &(0x7f0000000180)={0xa, 0x0, 0x0, @empty}, 0x1c) r2 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000040), 0x2, 0x0) write$binfmt_aout(r2, &(0x7f0000000640), 0x20) read(r2, &(0x7f0000000100)=""/146, 0x92) 10:18:34 executing program 4: r0 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x46e2, 0x0) r1 = dup2(0xffffffffffffffff, r0) r2 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000040), 0x2, 0x0) mount$9p_fd(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f00000000c0), 0x0, &(0x7f00000004c0)={'trans=fd,', {'rfdno', 0x3d, r1}, 0x2c, {'wfdno', 0x3d, r2}, 0x2c, {[{@debug}], [{@hash}, {@euid_gt}, {@fsmagic={'fsmagic', 0x3d, 0xfffffffffffffffc}}, {@euid_eq={'euid', 0x3d, 0xffffffffffffffff}}]}}) 10:18:34 executing program 5 (fault-call:3 fault-nth:13): r0 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x46e2, 0x0) r1 = dup2(r0, r0) r2 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000040), 0x2, 0x0) mount$9p_fd(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f00000000c0), 0x0, &(0x7f00000004c0)={'trans=fd,', {'rfdno', 0x3d, r1}, 0x2c, {'wfdno', 0x3d, r2}}) [ 604.353123] FAULT_INJECTION: forcing a failure. [ 604.353123] name failslab, interval 1, probability 0, space 0, times 0 [ 604.355673] CPU: 0 PID: 6783 Comm: syz-executor.5 Not tainted 5.10.56 #1 [ 604.357125] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS rel-1.14.0-0-g155821a1990b-prebuilt.qemu.org 04/01/2014 [ 604.359486] Call Trace: [ 604.360059] dump_stack+0x107/0x163 [ 604.360864] should_fail.cold+0x5/0xa [ 604.361675] ? create_object.isra.0+0x3a/0xa20 [ 604.362659] should_failslab+0x5/0x10 [ 604.363477] kmem_cache_alloc+0x5b/0x350 [ 604.364370] create_object.isra.0+0x3a/0xa20 [ 604.365320] ? __kasan_kmalloc.constprop.0+0xc2/0xd0 [ 604.366397] kmem_cache_alloc_trace+0x151/0x360 [ 604.367407] legacy_init_fs_context+0x44/0xe0 [ 604.368381] ? generic_parse_monolithic+0x1f0/0x1f0 [ 604.369433] alloc_fs_context+0x4f8/0x840 [ 604.370344] path_mount+0xa4e/0x2080 [ 604.371138] ? strncpy_from_user+0x9e/0x460 [ 604.372079] ? finish_automount+0xa40/0xa40 [ 604.373035] ? getname_flags.part.0+0x1dd/0x4f0 [ 604.374039] ? _copy_from_user+0xfb/0x1b0 [ 604.374332] FAULT_INJECTION: forcing a failure. [ 604.374332] name failslab, interval 1, probability 0, space 0, times 0 [ 604.374942] __x64_sys_mount+0x27e/0x300 [ 604.374961] ? path_mount+0x2080/0x2080 [ 604.374987] ? rcu_read_lock_sched_held+0x3a/0x70 [ 604.379298] do_syscall_64+0x33/0x40 [ 604.380104] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 604.381219] RIP: 0033:0x466609 [ 604.381916] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 604.385908] RSP: 002b:00007fd61fccc188 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5 [ 604.387553] RAX: ffffffffffffffda RBX: 000000000056bf80 RCX: 0000000000466609 [ 604.389099] RDX: 00000000200000c0 RSI: 0000000020000000 RDI: 0000000000000000 [ 604.390641] RBP: 00007fd61fccc1d0 R08: 00000000200004c0 R09: 0000000000000000 [ 604.392180] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 604.393739] R13: 00007fff09eaa3cf R14: 00007fd61fccc300 R15: 0000000000022000 [ 604.395315] CPU: 1 PID: 6790 Comm: syz-executor.1 Not tainted 5.10.56 #1 [ 604.396392] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS rel-1.14.0-0-g155821a1990b-prebuilt.qemu.org 04/01/2014 [ 604.398130] Call Trace: [ 604.398540] dump_stack+0x107/0x163 [ 604.399103] should_fail.cold+0x5/0xa [ 604.399449] 9pnet: Insufficient options for proto=fd [ 604.399687] ? getname_flags.part.0+0x50/0x4f0 [ 604.399703] should_failslab+0x5/0x10 [ 604.399721] kmem_cache_alloc+0x5b/0x350 [ 604.402702] getname_flags.part.0+0x50/0x4f0 [ 604.403372] ? _copy_from_user+0xfb/0x1b0 [ 604.404010] user_path_at_empty+0xa1/0x100 [ 604.404674] __x64_sys_mount+0x1e9/0x300 [ 604.405302] ? path_mount+0x2080/0x2080 [ 604.405928] ? rcu_read_lock_sched_held+0x3a/0x70 [ 604.406671] do_syscall_64+0x33/0x40 [ 604.407244] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 604.408033] RIP: 0033:0x466609 [ 604.408553] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 604.411363] RSP: 002b:00007fdc84e63188 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5 [ 604.412546] RAX: ffffffffffffffda RBX: 000000000056bf80 RCX: 0000000000466609 [ 604.413641] RDX: 00000000200000c0 RSI: 0000000020000000 RDI: 0000000000000000 [ 604.414736] RBP: 00007fdc84e631d0 R08: 00000000200004c0 R09: 0000000000000000 [ 604.415819] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 604.416930] R13: 00007ffc7c6b7e8f R14: 00007fdc84e63300 R15: 0000000000022000 10:18:34 executing program 4: r0 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x46e2, 0x0) r1 = dup2(r0, 0xffffffffffffffff) r2 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000040), 0x2, 0x0) mount$9p_fd(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f00000000c0), 0x0, &(0x7f00000004c0)={'trans=fd,', {'rfdno', 0x3d, r1}, 0x2c, {'wfdno', 0x3d, r2}, 0x2c, {[{@debug}], [{@hash}, {@euid_gt}, {@fsmagic={'fsmagic', 0x3d, 0xfffffffffffffffc}}, {@euid_eq={'euid', 0x3d, 0xffffffffffffffff}}]}}) 10:18:34 executing program 2: r0 = seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f0000000000)={0x1, &(0x7f0000000080)=[{0x34}]}) r1 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000040), 0x2, 0x0) write$binfmt_aout(r1, &(0x7f00000001c0)=ANY=[@ANYBLOB="00b700"/33], 0x20) read(r1, &(0x7f0000000100)=""/146, 0x92) clock_gettime(0x0, &(0x7f00000000c0)={0x0, 0x0}) syz_io_uring_setup(0x8e7, &(0x7f0000000200)={0x0, 0xe687, 0x20, 0x1, 0x350}, &(0x7f0000ffc000/0x2000)=nil, &(0x7f0000ffd000/0x2000)=nil, &(0x7f0000000280), &(0x7f00000002c0)=0x0) syz_io_uring_setup(0x4d4f, &(0x7f0000000080), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=0x0, &(0x7f0000000140)=0x0) r7 = syz_io_uring_setup(0x1, &(0x7f0000000080), &(0x7f0000ffd000/0x2000)=nil, &(0x7f0000ffc000/0x2000)=nil, &(0x7f0000000100), &(0x7f0000000140)) r8 = io_uring_register$IORING_REGISTER_PERSONALITY(r7, 0x9, 0x0, 0x0) syz_io_uring_submit(r5, r6, &(0x7f0000000380)=@IORING_OP_PROVIDE_BUFFERS={0x1f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, {0x0, r8}}, 0x101) syz_io_uring_submit(0x0, r4, &(0x7f0000000300)=@IORING_OP_SYNC_FILE_RANGE={0x8, 0x0, 0x0, @fd_index=0x3, 0x3, 0x0, 0x6, 0x5, 0x1, {0x0, r8}}, 0x400000) ppoll(&(0x7f0000000040)=[{r1, 0x4000}, {r0, 0x4}, {r0, 0x8000}, {r0, 0x108}], 0x4, &(0x7f0000000100)={r2, r3+10000000}, &(0x7f0000000140)={[0x4]}, 0x8) [ 604.475000] 9pnet: Insufficient options for proto=fd 10:18:34 executing program 4: r0 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x46e2, 0x0) r1 = dup2(r0, 0xffffffffffffffff) r2 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000040), 0x2, 0x0) mount$9p_fd(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f00000000c0), 0x0, &(0x7f00000004c0)={'trans=fd,', {'rfdno', 0x3d, r1}, 0x2c, {'wfdno', 0x3d, r2}, 0x2c, {[{@debug}], [{@hash}, {@euid_gt}, {@fsmagic={'fsmagic', 0x3d, 0xfffffffffffffffc}}, {@euid_eq={'euid', 0x3d, 0xffffffffffffffff}}]}}) 10:18:34 executing program 0: r0 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x46e2, 0x0) r1 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffd000/0x3000)=nil, 0x3000, 0x0, 0x13, r0, 0x0) syz_io_uring_setup(0x4b9f, &(0x7f0000000140), &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000ffd000/0x3000)=nil, &(0x7f00000000c0), &(0x7f00000001c0)=0x0) syz_io_uring_submit(r1, r2, &(0x7f0000000240)=@IORING_OP_FADVISE, 0x0) sigaltstack(&(0x7f0000ffd000/0x1000)=nil, 0x0) [ 604.544543] 9pnet: Insufficient options for proto=fd 10:18:34 executing program 5 (fault-call:3 fault-nth:14): r0 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x46e2, 0x0) r1 = dup2(r0, r0) r2 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000040), 0x2, 0x0) mount$9p_fd(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f00000000c0), 0x0, &(0x7f00000004c0)={'trans=fd,', {'rfdno', 0x3d, r1}, 0x2c, {'wfdno', 0x3d, r2}}) 10:18:34 executing program 4: r0 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x46e2, 0x0) r1 = dup2(r0, 0xffffffffffffffff) r2 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000040), 0x2, 0x0) mount$9p_fd(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f00000000c0), 0x0, &(0x7f00000004c0)={'trans=fd,', {'rfdno', 0x3d, r1}, 0x2c, {'wfdno', 0x3d, r2}, 0x2c, {[{@debug}], [{@hash}, {@euid_gt}, {@fsmagic={'fsmagic', 0x3d, 0xfffffffffffffffc}}, {@euid_eq={'euid', 0x3d, 0xffffffffffffffff}}]}}) 10:18:34 executing program 3: perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r0 = socket$inet6_tcp(0xa, 0x1, 0x0) fcntl$setstatus(r0, 0x4, 0x2000) splice(r0, &(0x7f0000000000)=0xee6, r0, &(0x7f00000000c0)=0x1, 0x4, 0xc) r1 = fork() ioctl$sock_SIOCSPGRP(r0, 0x8902, &(0x7f0000000040)=r1) connect$inet6(r0, &(0x7f0000000140)={0xa, 0x4e20, 0x3, @mcast1, 0x5}, 0x1c) r2 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000040), 0x2, 0x0) write$binfmt_aout(r2, &(0x7f0000000640), 0x20) read(r2, &(0x7f0000000100)=""/146, 0x92) [ 604.623992] FAULT_INJECTION: forcing a failure. [ 604.623992] name failslab, interval 1, probability 0, space 0, times 0 [ 604.625655] CPU: 0 PID: 6814 Comm: syz-executor.5 Not tainted 5.10.56 #1 [ 604.626565] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS rel-1.14.0-0-g155821a1990b-prebuilt.qemu.org 04/01/2014 [ 604.628007] Call Trace: [ 604.628358] dump_stack+0x107/0x163 [ 604.628825] should_fail.cold+0x5/0xa [ 604.629315] ? create_object.isra.0+0x3a/0xa20 [ 604.629900] should_failslab+0x5/0x10 [ 604.630385] kmem_cache_alloc+0x5b/0x350 [ 604.630904] ? cred_has_capability.isra.0+0x14e/0x2b0 [ 604.631546] create_object.isra.0+0x3a/0xa20 [ 604.632110] ? __kasan_kmalloc.constprop.0+0xc2/0xd0 [ 604.632753] kmem_cache_alloc_trace+0x151/0x360 [ 604.633354] ? v9fs_write_inode+0x60/0x60 [ 604.633862] v9fs_mount+0x5a/0x8f0 [ 604.634313] ? v9fs_write_inode+0x60/0x60 [ 604.634824] legacy_get_tree+0x105/0x220 [ 604.635343] vfs_get_tree+0x8e/0x2f0 [ 604.635803] path_mount+0x139a/0x2080 [ 604.636307] ? strncpy_from_user+0x9e/0x460 [ 604.636863] ? finish_automount+0xa40/0xa40 [ 604.637414] ? getname_flags.part.0+0x1dd/0x4f0 [ 604.637997] ? _copy_from_user+0xfb/0x1b0 [ 604.638533] __x64_sys_mount+0x27e/0x300 [ 604.639048] ? path_mount+0x2080/0x2080 [ 604.639541] ? rcu_read_lock_sched_held+0x3a/0x70 [ 604.640158] do_syscall_64+0x33/0x40 [ 604.640628] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 604.641277] RIP: 0033:0x466609 [ 604.641684] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 604.644008] RSP: 002b:00007fd61fccc188 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5 [ 604.644989] RAX: ffffffffffffffda RBX: 000000000056bf80 RCX: 0000000000466609 [ 604.645899] RDX: 00000000200000c0 RSI: 0000000020000000 RDI: 0000000000000000 [ 604.646804] RBP: 00007fd61fccc1d0 R08: 00000000200004c0 R09: 0000000000000000 [ 604.647711] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 604.648626] R13: 00007fff09eaa3cf R14: 00007fd61fccc300 R15: 0000000000022000 10:18:34 executing program 1 (fault-call:3 fault-nth:7): r0 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x46e2, 0x0) r1 = dup2(r0, r0) r2 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000040), 0x2, 0x0) mount$9p_fd(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f00000000c0), 0x0, &(0x7f00000004c0)={'trans=fd,', {'rfdno', 0x3d, r1}, 0x2c, {'wfdno', 0x3d, r2}}) [ 604.673914] 9pnet: Insufficient options for proto=fd 10:18:34 executing program 0: r0 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x46e2, 0x0) r1 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffd000/0x3000)=nil, 0x3000, 0x0, 0x13, r0, 0x0) syz_io_uring_setup(0x4b9f, &(0x7f0000000140), &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000ffd000/0x3000)=nil, &(0x7f00000000c0), &(0x7f00000001c0)=0x0) syz_io_uring_submit(r1, r2, &(0x7f0000000240)=@IORING_OP_FADVISE, 0x0) sigaltstack(&(0x7f0000ffd000/0x1000)=nil, 0x0) [ 604.733043] FAULT_INJECTION: forcing a failure. [ 604.733043] name failslab, interval 1, probability 0, space 0, times 0 [ 604.734731] CPU: 1 PID: 6821 Comm: syz-executor.1 Not tainted 5.10.56 #1 [ 604.735707] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS rel-1.14.0-0-g155821a1990b-prebuilt.qemu.org 04/01/2014 [ 604.737338] Call Trace: [ 604.737718] dump_stack+0x107/0x163 [ 604.738140] should_fail.cold+0x5/0xa [ 604.738571] ? create_object.isra.0+0x3a/0xa20 [ 604.739083] should_failslab+0x5/0x10 [ 604.739515] kmem_cache_alloc+0x5b/0x350 [ 604.739977] create_object.isra.0+0x3a/0xa20 [ 604.740482] ? __kasan_kmalloc.constprop.0+0xc2/0xd0 [ 604.741054] kmem_cache_alloc+0x159/0x350 [ 604.741550] getname_flags.part.0+0x50/0x4f0 [ 604.742080] ? _copy_from_user+0xfb/0x1b0 [ 604.742543] user_path_at_empty+0xa1/0x100 [ 604.743040] __x64_sys_mount+0x1e9/0x300 [ 604.743493] ? path_mount+0x2080/0x2080 [ 604.743959] ? rcu_read_lock_sched_held+0x3a/0x70 [ 604.744529] do_syscall_64+0x33/0x40 [ 604.744958] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 604.745520] RIP: 0033:0x466609 [ 604.745874] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 604.747928] RSP: 002b:00007fdc84e63188 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5 [ 604.748793] RAX: ffffffffffffffda RBX: 000000000056bf80 RCX: 0000000000466609 [ 604.749630] RDX: 00000000200000c0 RSI: 0000000020000000 RDI: 0000000000000000 [ 604.750464] RBP: 00007fdc84e631d0 R08: 00000000200004c0 R09: 0000000000000000 [ 604.751279] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 604.752101] R13: 00007ffc7c6b7e8f R14: 00007fdc84e63300 R15: 0000000000022000 10:18:47 executing program 4: r0 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x46e2, 0x0) r1 = dup2(r0, r0) r2 = openat$ptmx(0xffffffffffffff9c, 0x0, 0x2, 0x0) mount$9p_fd(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f00000000c0), 0x0, &(0x7f00000004c0)={'trans=fd,', {'rfdno', 0x3d, r1}, 0x2c, {'wfdno', 0x3d, r2}, 0x2c, {[{@debug}], [{@hash}, {@euid_gt}, {@fsmagic={'fsmagic', 0x3d, 0xfffffffffffffffc}}, {@euid_eq={'euid', 0x3d, 0xffffffffffffffff}}]}}) 10:18:47 executing program 0: r0 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x46e2, 0x0) r1 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffd000/0x3000)=nil, 0x3000, 0x0, 0x13, r0, 0x0) syz_io_uring_setup(0x4b9f, &(0x7f0000000140), &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000ffd000/0x3000)=nil, &(0x7f00000000c0), &(0x7f00000001c0)=0x0) syz_io_uring_submit(r1, r2, &(0x7f0000000240)=@IORING_OP_FADVISE, 0x0) sigaltstack(&(0x7f0000ffd000/0x1000)=nil, 0x0) 10:18:47 executing program 1 (fault-call:3 fault-nth:8): r0 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x46e2, 0x0) r1 = dup2(r0, r0) r2 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000040), 0x2, 0x0) mount$9p_fd(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f00000000c0), 0x0, &(0x7f00000004c0)={'trans=fd,', {'rfdno', 0x3d, r1}, 0x2c, {'wfdno', 0x3d, r2}}) 10:18:47 executing program 6: r0 = creat(&(0x7f0000000140)='./file0\x00', 0x2) r1 = socket$netlink(0x10, 0x3, 0x0) fcntl$dupfd(r1, 0x406, r1) r2 = syz_genetlink_get_family_id$nl80211(&(0x7f00000004c0), 0xffffffffffffffff) sendmsg$NL80211_CMD_DEL_MPATH(0xffffffffffffffff, &(0x7f00000005c0)={&(0x7f0000000480)={0x10, 0x0, 0x0, 0x10}, 0xc, &(0x7f0000000580)={&(0x7f0000000500)={0x4c, r2, 0x800, 0xffff, 0x25dfdbff, {{}, {@val={0x8}, @void}}, [@NL80211_ATTR_MPATH_NEXT_HOP={0xa, 0x1a, @device_b}, @NL80211_ATTR_MAC={0xa, 0x6, @device_b}, @NL80211_ATTR_MAC={0xa, 0x6, @broadcast}, @NL80211_ATTR_MPATH_NEXT_HOP={0xa, 0x1a, @broadcast}]}, 0x4c}}, 0x44081) r3 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x46e2, 0x0) ftruncate(r3, 0x1000003) ioctl$FS_IOC_FSSETXATTR(r3, 0x40086602, &(0x7f00000000c0)) ioctl$BTRFS_IOC_SUBVOL_CREATE_V2(r0, 0x50009418, &(0x7f0000000700)={{r3}, 0x0, 0x2, @inherit={0x88, &(0x7f00000003c0)={0x1, 0x8, 0x7, 0xc6, {0x1, 0xffffffffffffffff, 0x7, 0x400}, [0x6, 0x100000000, 0x31e, 0x5, 0x6, 0xa85, 0x0, 0xffffffffffffff3a]}}, @subvolid=0x3f}) write$binfmt_elf64(r3, &(0x7f00000001c0)=ANY=[], 0xfdef) lseek(r3, 0x0, 0x3) ioctl$sock_SIOCGIFINDEX_80211(0xffffffffffffffff, 0x8933, &(0x7f0000000680)={'wlan0\x00', 0x0}) sendmsg$NL80211_CMD_LEAVE_MESH(0xffffffffffffffff, &(0x7f0000000300)={&(0x7f0000000240)={0x10, 0x0, 0x0, 0x400}, 0xc, &(0x7f00000002c0)={&(0x7f00000006c0)={0x1c, 0x0, 0x300, 0x70bd27, 0x25dfdbfc, {{}, {@val={0x8, 0x3, r4}, @void}}, [""]}, 0x1c}, 0x1, 0x0, 0x0, 0x2004c880}, 0x4044880) sendmsg$NL80211_CMD_SET_PMK(r3, &(0x7f0000000200)={&(0x7f0000000080)={0x10, 0x0, 0x0, 0x20}, 0xc, &(0x7f00000001c0)={&(0x7f0000000100)={0xb4, 0x0, 0x100, 0x70bd2c, 0x25dfdbfb, {{}, {@val={0x8, 0x3, r4}, @val={0xc, 0x99, {0x4}}}}, [@NL80211_ATTR_MAC={0xa, 0x6, @broadcast}, @NL80211_ATTR_MAC={0xa, 0x6, @broadcast}, @NL80211_ATTR_MAC={0xa, 0x6, @device_b}, @NL80211_ATTR_PMK={0x14, 0xfe, "8116318664cdae6aec6b71baba6f6dfb"}, @NL80211_ATTR_PMKR0_NAME={0x14, 0x102, "79671d343424bf4d15a10d504ec5aa88"}, @NL80211_ATTR_MAC={0xa, 0x6, @device_b}, @NL80211_ATTR_MAC={0xa, 0x6, @device_b}, @NL80211_ATTR_PMK={0x14, 0xfe, "75000000001500"}, @NL80211_ATTR_PMK={0x14, 0xfe, "cf0600000000000000f05fd28e7ce85e"}]}, 0xb4}}, 0x8000) sendmsg$NL80211_CMD_SET_WDS_PEER(r1, &(0x7f0000000280)={&(0x7f0000000180)={0x10, 0x0, 0x0, 0x800}, 0xc, &(0x7f0000000240)={&(0x7f0000000340)=ANY=[@ANYBLOB='L\x00\x00\x00', @ANYRES16=r2, @ANYBLOB="100027bd7000fcdbdf254200000008000300", @ANYRES32=r4, @ANYBLOB="0c009900000000003f0000000a00060050505050505000000a000600ffff6d878ddc1a6cf1ffffffff00000e0006080802110000000000"], 0x4c}, 0x1, 0x0, 0x0, 0x40004}, 0x4000080) syz_open_procfs(0xffffffffffffffff, &(0x7f0000000000)='uid_map\x00') 10:18:47 executing program 3: perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r0 = socket$inet6_tcp(0xa, 0x1, 0x0) fcntl$setstatus(r0, 0x4, 0x2000) splice(r0, &(0x7f0000000000)=0xee6, r0, &(0x7f00000000c0)=0x1, 0x4, 0xc) r1 = fork() ioctl$sock_SIOCSPGRP(r0, 0x8902, &(0x7f0000000040)=r1) r2 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000040), 0x2, 0x0) write$binfmt_aout(r2, &(0x7f0000000640), 0x20) read(r2, &(0x7f0000000100)=""/146, 0x92) 10:18:47 executing program 5 (fault-call:3 fault-nth:15): r0 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x46e2, 0x0) r1 = dup2(r0, r0) r2 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000040), 0x2, 0x0) mount$9p_fd(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f00000000c0), 0x0, &(0x7f00000004c0)={'trans=fd,', {'rfdno', 0x3d, r1}, 0x2c, {'wfdno', 0x3d, r2}}) 10:18:47 executing program 7: perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r0 = socket$inet6_tcp(0xa, 0x1, 0x0) fcntl$setstatus(r0, 0x4, 0x2000) splice(r0, &(0x7f0000000000)=0xee6, r0, &(0x7f00000000c0)=0x1, 0x4, 0xc) r1 = fork() ioctl$sock_SIOCSPGRP(r0, 0x8902, &(0x7f0000000040)=r1) connect$inet6(r0, &(0x7f0000000140)={0xa, 0x4e20, 0x3, @mcast1, 0x5}, 0x1c) connect$inet6(r0, &(0x7f0000000180)={0xa, 0x0, 0x0, @empty}, 0x1c) setsockopt$inet6_int(0xffffffffffffffff, 0x29, 0x33, &(0x7f0000000100)=0x80, 0x4) write$binfmt_aout(0xffffffffffffffff, &(0x7f0000000640), 0x20) read(0xffffffffffffffff, &(0x7f0000000100)=""/146, 0x92) 10:18:47 executing program 2: perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r0 = perf_event_open(&(0x7f0000001d80)={0x6, 0x80, 0x0, 0x0, 0x0, 0x0, 0x4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0, 0xffffffff81000000}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) perf_event_open(&(0x7f0000001d80)={0x3, 0x80, 0x0, 0x0, 0x0, 0x0, 0x4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, r0, 0x3) creat(0x0, 0x0) r1 = openat(0xffffffffffffff9c, 0x0, 0x0, 0x0) r2 = openat(0xffffffffffffff9c, &(0x7f0000000000)='./file0\x00', 0x40000, 0x1ad) ftruncate(0xffffffffffffffff, 0x0) ioctl$SCSI_IOCTL_START_UNIT(0xffffffffffffffff, 0x5) ioctl$FS_IOC_FSSETXATTR(0xffffffffffffffff, 0x40086602, 0x0) write$binfmt_elf64(0xffffffffffffffff, 0x0, 0xfdef) lseek(0xffffffffffffffff, 0x0, 0x0) ioctl$sock_SIOCGIFINDEX_80211(0xffffffffffffffff, 0x8933, 0x0) sendmsg$NL80211_CMD_LEAVE_MESH(0xffffffffffffffff, 0x0, 0x0) r3 = syz_genetlink_get_family_id$nl80211(&(0x7f00000004c0), 0xffffffffffffffff) r4 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000280), r2) ioctl$sock_SIOCGIFINDEX_80211(r1, 0x8933, &(0x7f00000002c0)={'wlan1\x00', 0x0}) sendmsg$NL80211_CMD_SET_MCAST_RATE(0xffffffffffffffff, &(0x7f0000000380)={&(0x7f0000000240)={0x10, 0x0, 0x0, 0x800000}, 0xc, &(0x7f0000000340)={&(0x7f0000000300)={0x2c, r4, 0x200, 0x70bd29, 0x25dfdbfe, {{}, {@val={0x8, 0x3, r5}, @void}}, [@NL80211_ATTR_MCAST_RATE={0x8, 0x6b, 0x21c}, @NL80211_ATTR_MCAST_RATE={0x8, 0x6b, 0x6e}]}, 0x2c}}, 0x4000010) sendmsg$NL80211_CMD_DEL_MPATH(0xffffffffffffffff, &(0x7f00000005c0)={&(0x7f0000000480)={0x10, 0x0, 0x0, 0x10}, 0xc, &(0x7f0000000580)={&(0x7f0000000500)={0x4c, r3, 0x800, 0xffff, 0x25dfdbff, {{}, {@val={0x8}, @void}}, [@NL80211_ATTR_MPATH_NEXT_HOP={0xa, 0x1a, @device_b}, @NL80211_ATTR_MAC={0xa, 0x6, @device_b}, @NL80211_ATTR_MAC={0xa, 0x6, @broadcast}, @NL80211_ATTR_MPATH_NEXT_HOP={0xa, 0x1a, @broadcast}]}, 0x4c}}, 0x44081) sendmsg$NL80211_CMD_STOP_SCHED_SCAN(r2, &(0x7f00000001c0)={&(0x7f00000000c0)={0x10, 0x0, 0x0, 0x80}, 0xc, &(0x7f0000000180)={&(0x7f0000000100)={0x50, r3, 0x800, 0x70bd2c, 0x25dfdbfe, {{}, {@void, @val={0xc, 0x99, {0x5ffc, 0x1d}}}}, [@NL80211_ATTR_COOKIE={0xc, 0x58, 0x18}, @NL80211_ATTR_COOKIE={0xc, 0x58, 0xe}, @NL80211_ATTR_COOKIE={0xc, 0x58, 0x1c}, @NL80211_ATTR_COOKIE={0xc, 0x58, 0x7b}]}, 0x50}, 0x1, 0x0, 0x0, 0x80}, 0x4000001) sendmsg$NL80211_CMD_SET_MCAST_RATE(0xffffffffffffffff, 0x0, 0x0) [ 617.420787] 9pnet: Insufficient options for proto=fd [ 617.435291] FAULT_INJECTION: forcing a failure. [ 617.435291] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 617.436781] CPU: 0 PID: 6856 Comm: syz-executor.1 Not tainted 5.10.56 #1 [ 617.437593] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS rel-1.14.0-0-g155821a1990b-prebuilt.qemu.org 04/01/2014 [ 617.439023] Call Trace: [ 617.439352] dump_stack+0x107/0x163 [ 617.439837] should_fail.cold+0x5/0xa [ 617.440308] strncpy_from_user+0x34/0x460 [ 617.440852] getname_flags.part.0+0x95/0x4f0 [ 617.441425] ? _copy_from_user+0xfb/0x1b0 [ 617.441958] user_path_at_empty+0xa1/0x100 [ 617.442455] __x64_sys_mount+0x1e9/0x300 [ 617.442999] ? path_mount+0x2080/0x2080 [ 617.443486] ? rcu_read_lock_sched_held+0x3a/0x70 [ 617.444074] do_syscall_64+0x33/0x40 [ 617.444573] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 617.445211] RIP: 0033:0x466609 [ 617.445631] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 617.447852] RSP: 002b:00007fdc84e63188 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5 [ 617.448804] RAX: ffffffffffffffda RBX: 000000000056bf80 RCX: 0000000000466609 [ 617.449659] RDX: 00000000200000c0 RSI: 0000000020000000 RDI: 0000000000000000 [ 617.450544] RBP: 00007fdc84e631d0 R08: 00000000200004c0 R09: 0000000000000000 [ 617.451409] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 617.452266] R13: 00007ffc7c6b7e8f R14: 00007fdc84e63300 R15: 0000000000022000 [ 617.461982] FAULT_INJECTION: forcing a failure. [ 617.461982] name failslab, interval 1, probability 0, space 0, times 0 [ 617.463198] CPU: 0 PID: 6855 Comm: syz-executor.5 Not tainted 5.10.56 #1 [ 617.463955] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS rel-1.14.0-0-g155821a1990b-prebuilt.qemu.org 04/01/2014 [ 617.465246] Call Trace: [ 617.465540] dump_stack+0x107/0x163 [ 617.465947] should_fail.cold+0x5/0xa [ 617.466378] should_failslab+0x5/0x10 [ 617.466806] __kmalloc_track_caller+0x79/0x3c0 [ 617.467318] ? v9fs_session_init+0xa7/0x1690 [ 617.467815] ? kernel_text_address+0xea/0x120 [ 617.468324] kstrdup+0x36/0x70 [ 617.468693] v9fs_session_init+0xa7/0x1690 [ 617.469181] ? find_held_lock+0x2c/0x110 [ 617.469643] ? kmem_cache_alloc_trace+0x151/0x360 [ 617.470191] ? v9fs_show_options+0x690/0x690 [ 617.470696] ? kasan_unpoison_shadow+0x33/0x40 [ 617.471213] ? __kasan_kmalloc.constprop.0+0xc2/0xd0 [ 617.471788] v9fs_mount+0x79/0x8f0 [ 617.472192] ? v9fs_write_inode+0x60/0x60 [ 617.472679] legacy_get_tree+0x105/0x220 [ 617.473142] vfs_get_tree+0x8e/0x2f0 [ 617.473556] path_mount+0x139a/0x2080 [ 617.473993] ? strncpy_from_user+0x9e/0x460 [ 617.474476] ? finish_automount+0xa40/0xa40 [ 617.474965] ? getname_flags.part.0+0x1dd/0x4f0 [ 617.475485] ? _copy_from_user+0xfb/0x1b0 [ 617.475962] __x64_sys_mount+0x27e/0x300 [ 617.476423] ? path_mount+0x2080/0x2080 [ 617.476892] ? rcu_read_lock_sched_held+0x3a/0x70 10:18:47 executing program 4: r0 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x46e2, 0x0) r1 = dup2(r0, r0) r2 = openat$ptmx(0xffffffffffffff9c, 0x0, 0x2, 0x0) mount$9p_fd(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f00000000c0), 0x0, &(0x7f00000004c0)={'trans=fd,', {'rfdno', 0x3d, r1}, 0x2c, {'wfdno', 0x3d, r2}, 0x2c, {[{@debug}], [{@hash}, {@euid_gt}, {@fsmagic={'fsmagic', 0x3d, 0xfffffffffffffffc}}, {@euid_eq={'euid', 0x3d, 0xffffffffffffffff}}]}}) [ 617.477444] do_syscall_64+0x33/0x40 [ 617.478008] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 617.478617] RIP: 0033:0x466609 [ 617.478958] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 617.480810] RSP: 002b:00007fd61fccc188 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5 [ 617.481640] RAX: ffffffffffffffda RBX: 000000000056bf80 RCX: 0000000000466609 [ 617.482353] RDX: 00000000200000c0 RSI: 0000000020000000 RDI: 0000000000000000 [ 617.483141] RBP: 00007fd61fccc1d0 R08: 00000000200004c0 R09: 0000000000000000 [ 617.483912] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 617.484697] R13: 00007fff09eaa3cf R14: 00007fd61fccc300 R15: 0000000000022000 10:18:47 executing program 0 (fault-call:4 fault-nth:0): r0 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x46e2, 0x0) r1 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffd000/0x3000)=nil, 0x3000, 0x0, 0x13, r0, 0x0) syz_io_uring_setup(0x4b9f, &(0x7f0000000140), &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000ffd000/0x3000)=nil, &(0x7f00000000c0), &(0x7f00000001c0)=0x0) syz_io_uring_submit(r1, r2, &(0x7f0000000240)=@IORING_OP_FADVISE={0x18, 0x0, 0x0, @fd, 0x2}, 0x0) sigaltstack(&(0x7f0000ffd000/0x1000)=nil, 0x0) 10:18:47 executing program 7: perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r0 = socket$inet6_tcp(0xa, 0x1, 0x0) fcntl$setstatus(r0, 0x4, 0x2000) splice(r0, &(0x7f0000000000)=0xee6, r0, &(0x7f00000000c0)=0x1, 0x4, 0xc) r1 = fork() ioctl$sock_SIOCSPGRP(r0, 0x8902, &(0x7f0000000040)=r1) connect$inet6(r0, &(0x7f0000000140)={0xa, 0x4e20, 0x3, @mcast1, 0x5}, 0x1c) connect$inet6(r0, &(0x7f0000000180)={0xa, 0x0, 0x0, @empty}, 0x1c) setsockopt$inet6_int(0xffffffffffffffff, 0x29, 0x33, &(0x7f0000000100)=0x80, 0x4) write$binfmt_aout(0xffffffffffffffff, &(0x7f0000000640), 0x20) read(0xffffffffffffffff, &(0x7f0000000100)=""/146, 0x92) 10:18:47 executing program 6: r0 = creat(&(0x7f0000000000)='./file0\x00', 0x0) fcntl$lock(r0, 0x26, &(0x7f0000000600)={0x1}) ioctl$sock_FIOGETOWN(r0, 0x8903, &(0x7f00000000c0)) r1 = creat(&(0x7f0000000000)='./file0\x00', 0x0) fcntl$lock(r1, 0x26, &(0x7f0000000600)={0x1}) r2 = creat(&(0x7f0000000000)='./file0\x00', 0x0) fcntl$lock(r2, 0x26, &(0x7f0000000600)={0x1}) r3 = seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f0000000000)={0x1, &(0x7f0000000040)=[{0x6, 0x0, 0x0, 0x7fffffff}]}) fcntl$lock(r2, 0x26, &(0x7f0000000080)={0x1}) close_range(r3, 0xffffffffffffffff, 0x0) [ 617.580129] 9pnet: Insufficient options for proto=fd 10:18:47 executing program 3: perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r0 = socket$inet6_tcp(0xa, 0x1, 0x0) fcntl$setstatus(r0, 0x4, 0x2000) splice(r0, &(0x7f0000000000)=0xee6, r0, &(0x7f00000000c0)=0x1, 0x4, 0xc) fork() r1 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000040), 0x2, 0x0) write$binfmt_aout(r1, &(0x7f0000000640), 0x20) read(r1, &(0x7f0000000100)=""/146, 0x92) 10:18:47 executing program 2: r0 = perf_event_open(&(0x7f0000001d80)={0x2, 0x80, 0x94, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x100}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) write$binfmt_misc(r0, &(0x7f0000000200)=ANY=[@ANYBLOB="73797a30c4cae24f73aca923bf3a3f8f88733192752ba37e76c480367dfec5af7b786cfc8586ebbc158f17f71a05ecb07901f56e4a9094bb0f8c4095cbcd7c59681129d3211fc235dacbfe4e132005c1a002e80b42fbe602e9ff135f21b1bf1064b886182747ba45d9ce8f261a86c4304643db220f9925b73ea382847e1bcf9a29d8db3d39833acfd79e8842286d4ae39cc164f1c155c6ee0000dc5e5c592b2c1fa5075edd424ec50d87c425d54fb9c9ec7c6ddce00000000004000000000000"], 0xc0) r1 = syz_io_uring_setup(0x21, &(0x7f0000000080)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, &(0x7f0000ffd000/0x2000)=nil, &(0x7f00000b0000)=nil, &(0x7f0000000180), &(0x7f0000000000)) r2 = socket$netlink(0x10, 0x3, 0x0) r3 = fcntl$dupfd(r2, 0x0, r2) r4 = openat$nvram(0xffffffffffffff9c, &(0x7f00000002c0), 0x541080, 0x0) setsockopt$packet_buf(r4, 0x107, 0x2, &(0x7f0000000300)="d6ee426fb1c07772fa10e69d49bfd082dc218fbf9e1055d8da7f745158eb50ba760834bf722bcc29b2e22eb940", 0x2d) getsockopt$netlink(r3, 0x10e, 0x0, 0x0, 0xfffffffffffffffe) r5 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000040), 0x2, 0x0) write$binfmt_aout(r5, &(0x7f0000000640), 0x20) read(r5, &(0x7f0000000100)=""/146, 0x92) epoll_ctl$EPOLL_CTL_DEL(r3, 0x2, r5) io_uring_register$IORING_REGISTER_PROBE(r1, 0x8, &(0x7f00000001c0)={0x0, 0x0, 0x0, '\x00', [{}, {}, {}]}, 0x3) syz_open_dev$tty20(0xc, 0x4, 0x0) io_uring_enter(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0) [ 617.609082] FAULT_INJECTION: forcing a failure. [ 617.609082] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 617.610386] CPU: 0 PID: 6869 Comm: syz-executor.0 Not tainted 5.10.56 #1 [ 617.611148] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS rel-1.14.0-0-g155821a1990b-prebuilt.qemu.org 04/01/2014 [ 617.612449] Call Trace: [ 617.612762] dump_stack+0x107/0x163 [ 617.613183] should_fail.cold+0x5/0xa [ 617.613684] _copy_from_user+0x2e/0x1b0 [ 617.614175] __x64_sys_sigaltstack+0xe8/0x380 [ 617.614705] ? kernel_sigaction+0x220/0x220 [ 617.615230] ? fput_many+0x2f/0x1a0 [ 617.615644] ? ksys_write+0x1a5/0x250 [ 617.616127] ? rcu_read_lock_sched_held+0x3a/0x70 [ 617.616685] do_syscall_64+0x33/0x40 [ 617.617104] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 617.617712] RIP: 0033:0x466609 [ 617.618089] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 617.620280] RSP: 002b:00007ff0a682c188 EFLAGS: 00000246 ORIG_RAX: 0000000000000083 [ 617.621176] RAX: ffffffffffffffda RBX: 000000000056bf80 RCX: 0000000000466609 [ 617.622024] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000020ffd000 [ 617.622875] RBP: 00007ff0a682c1d0 R08: 0000000000000000 R09: 0000000000000000 [ 617.623732] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 617.624578] R13: 00007ffe4d4781af R14: 00007ff0a682c300 R15: 0000000000022000 10:18:47 executing program 4: r0 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x46e2, 0x0) r1 = dup2(r0, r0) r2 = openat$ptmx(0xffffffffffffff9c, 0x0, 0x2, 0x0) mount$9p_fd(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f00000000c0), 0x0, &(0x7f00000004c0)={'trans=fd,', {'rfdno', 0x3d, r1}, 0x2c, {'wfdno', 0x3d, r2}, 0x2c, {[{@debug}], [{@hash}, {@euid_gt}, {@fsmagic={'fsmagic', 0x3d, 0xfffffffffffffffc}}, {@euid_eq={'euid', 0x3d, 0xffffffffffffffff}}]}}) 10:18:47 executing program 5 (fault-call:3 fault-nth:16): r0 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x46e2, 0x0) r1 = dup2(r0, r0) r2 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000040), 0x2, 0x0) mount$9p_fd(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f00000000c0), 0x0, &(0x7f00000004c0)={'trans=fd,', {'rfdno', 0x3d, r1}, 0x2c, {'wfdno', 0x3d, r2}}) 10:18:47 executing program 1 (fault-call:3 fault-nth:9): r0 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x46e2, 0x0) r1 = dup2(r0, r0) r2 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000040), 0x2, 0x0) mount$9p_fd(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f00000000c0), 0x0, &(0x7f00000004c0)={'trans=fd,', {'rfdno', 0x3d, r1}, 0x2c, {'wfdno', 0x3d, r2}}) 10:18:47 executing program 7: perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r0 = socket$inet6_tcp(0xa, 0x1, 0x0) fcntl$setstatus(r0, 0x4, 0x2000) splice(r0, &(0x7f0000000000)=0xee6, r0, &(0x7f00000000c0)=0x1, 0x4, 0xc) r1 = fork() ioctl$sock_SIOCSPGRP(r0, 0x8902, &(0x7f0000000040)=r1) connect$inet6(r0, &(0x7f0000000140)={0xa, 0x4e20, 0x3, @mcast1, 0x5}, 0x1c) connect$inet6(r0, &(0x7f0000000180)={0xa, 0x0, 0x0, @empty}, 0x1c) setsockopt$inet6_int(0xffffffffffffffff, 0x29, 0x33, &(0x7f0000000100)=0x80, 0x4) write$binfmt_aout(0xffffffffffffffff, &(0x7f0000000640), 0x20) read(0xffffffffffffffff, &(0x7f0000000100)=""/146, 0x92) [ 617.718093] FAULT_INJECTION: forcing a failure. [ 617.718093] name failslab, interval 1, probability 0, space 0, times 0 [ 617.719487] CPU: 0 PID: 6889 Comm: syz-executor.5 Not tainted 5.10.56 #1 [ 617.720249] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS rel-1.14.0-0-g155821a1990b-prebuilt.qemu.org 04/01/2014 [ 617.721573] Call Trace: [ 617.721875] dump_stack+0x107/0x163 [ 617.722299] should_fail.cold+0x5/0xa [ 617.722726] ? create_object.isra.0+0x3a/0xa20 [ 617.723255] should_failslab+0x5/0x10 [ 617.723687] kmem_cache_alloc+0x5b/0x350 [ 617.724153] create_object.isra.0+0x3a/0xa20 [ 617.724681] ? __kasan_kmalloc.constprop.0+0xc2/0xd0 [ 617.725267] __kmalloc_track_caller+0x177/0x3c0 [ 617.725764] ? v9fs_session_init+0xa7/0x1690 [ 617.726248] ? kernel_text_address+0xea/0x120 [ 617.726738] kstrdup+0x36/0x70 [ 617.727088] v9fs_session_init+0xa7/0x1690 [ 617.727548] ? find_held_lock+0x2c/0x110 [ 617.727996] ? kmem_cache_alloc_trace+0x151/0x360 [ 617.728538] ? v9fs_show_options+0x690/0x690 [ 617.729019] ? kasan_unpoison_shadow+0x33/0x40 [ 617.729517] ? __kasan_kmalloc.constprop.0+0xc2/0xd0 [ 617.730070] v9fs_mount+0x79/0x8f0 [ 617.730456] ? v9fs_write_inode+0x60/0x60 [ 617.730906] legacy_get_tree+0x105/0x220 [ 617.731350] vfs_get_tree+0x8e/0x2f0 [ 617.731524] 9pnet: Insufficient options for proto=fd [ 617.731785] path_mount+0x139a/0x2080 [ 617.731799] ? strncpy_from_user+0x9e/0x460 [ 617.731816] ? finish_automount+0xa40/0xa40 [ 617.734308] ? getname_flags.part.0+0x1dd/0x4f0 [ 617.734822] ? _copy_from_user+0xfb/0x1b0 [ 617.735299] __x64_sys_mount+0x27e/0x300 [ 617.735737] ? path_mount+0x2080/0x2080 [ 617.736200] ? rcu_read_lock_sched_held+0x3a/0x70 [ 617.736742] do_syscall_64+0x33/0x40 [ 617.737170] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 617.737735] RIP: 0033:0x466609 [ 617.738103] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 617.740116] RSP: 002b:00007fd61fccc188 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5 [ 617.740945] RAX: ffffffffffffffda RBX: 000000000056bf80 RCX: 0000000000466609 [ 617.741732] RDX: 00000000200000c0 RSI: 0000000020000000 RDI: 0000000000000000 [ 617.742525] RBP: 00007fd61fccc1d0 R08: 00000000200004c0 R09: 0000000000000000 [ 617.743305] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 617.744079] R13: 00007fff09eaa3cf R14: 00007fd61fccc300 R15: 0000000000022000 10:18:47 executing program 0 (fault-call:4 fault-nth:1): r0 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x46e2, 0x0) r1 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffd000/0x3000)=nil, 0x3000, 0x0, 0x13, r0, 0x0) syz_io_uring_setup(0x4b9f, &(0x7f0000000140), &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000ffd000/0x3000)=nil, &(0x7f00000000c0), &(0x7f00000001c0)=0x0) syz_io_uring_submit(r1, r2, &(0x7f0000000240)=@IORING_OP_FADVISE={0x18, 0x0, 0x0, @fd, 0x2}, 0x0) sigaltstack(&(0x7f0000ffd000/0x1000)=nil, 0x0) [ 617.787783] FAULT_INJECTION: forcing a failure. [ 617.787783] name failslab, interval 1, probability 0, space 0, times 0 [ 617.790539] CPU: 1 PID: 6897 Comm: syz-executor.1 Not tainted 5.10.56 #1 [ 617.792125] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS rel-1.14.0-0-g155821a1990b-prebuilt.qemu.org 04/01/2014 [ 617.794923] Call Trace: [ 617.795498] dump_stack+0x107/0x163 [ 617.796410] should_fail.cold+0x5/0xa [ 617.797372] ? alloc_fs_context+0x57/0x840 [ 617.798291] should_failslab+0x5/0x10 [ 617.799114] kmem_cache_alloc_trace+0x55/0x360 [ 617.800105] alloc_fs_context+0x57/0x840 [ 617.801123] path_mount+0xa4e/0x2080 [ 617.802000] ? strncpy_from_user+0x9e/0x460 [ 617.803002] ? finish_automount+0xa40/0xa40 [ 617.804068] ? getname_flags.part.0+0x1dd/0x4f0 [ 617.805220] ? _copy_from_user+0xfb/0x1b0 [ 617.806148] __x64_sys_mount+0x27e/0x300 [ 617.807143] ? path_mount+0x2080/0x2080 [ 617.808124] ? rcu_read_lock_sched_held+0x3a/0x70 [ 617.809287] do_syscall_64+0x33/0x40 [ 617.810213] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 617.811427] RIP: 0033:0x466609 [ 617.812178] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 617.816564] RSP: 002b:00007fdc84e63188 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5 [ 617.818404] RAX: ffffffffffffffda RBX: 000000000056bf80 RCX: 0000000000466609 [ 617.820044] RDX: 00000000200000c0 RSI: 0000000020000000 RDI: 0000000000000000 [ 617.821593] RBP: 00007fdc84e631d0 R08: 00000000200004c0 R09: 0000000000000000 [ 617.823132] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 617.824695] R13: 00007ffc7c6b7e8f R14: 00007fdc84e63300 R15: 0000000000022000 10:18:47 executing program 7: perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r0 = socket$inet6_tcp(0xa, 0x1, 0x0) fcntl$setstatus(r0, 0x4, 0x2000) splice(r0, &(0x7f0000000000)=0xee6, r0, &(0x7f00000000c0)=0x1, 0x4, 0xc) r1 = fork() ioctl$sock_SIOCSPGRP(r0, 0x8902, &(0x7f0000000040)=r1) connect$inet6(r0, &(0x7f0000000140)={0xa, 0x4e20, 0x3, @mcast1, 0x5}, 0x1c) connect$inet6(r0, &(0x7f0000000180)={0xa, 0x0, 0x0, @empty}, 0x1c) r2 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000040), 0x2, 0x0) write$binfmt_aout(r2, &(0x7f0000000640), 0x20) read(r2, &(0x7f0000000100)=""/146, 0x92) 10:18:47 executing program 3: perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r0 = socket$inet6_tcp(0xa, 0x1, 0x0) fcntl$setstatus(r0, 0x4, 0x2000) splice(r0, &(0x7f0000000000)=0xee6, r0, &(0x7f00000000c0)=0x1, 0x4, 0xc) r1 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000040), 0x2, 0x0) write$binfmt_aout(r1, &(0x7f0000000640), 0x20) read(r1, &(0x7f0000000100)=""/146, 0x92) 10:18:47 executing program 4: r0 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x46e2, 0x0) r1 = dup2(r0, r0) r2 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000040), 0x0, 0x0) mount$9p_fd(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f00000000c0), 0x0, &(0x7f00000004c0)={'trans=fd,', {'rfdno', 0x3d, r1}, 0x2c, {'wfdno', 0x3d, r2}, 0x2c, {[{@debug}], [{@hash}, {@euid_gt}, {@fsmagic={'fsmagic', 0x3d, 0xfffffffffffffffc}}, {@euid_eq={'euid', 0x3d, 0xffffffffffffffff}}]}}) [ 617.930394] FAULT_INJECTION: forcing a failure. [ 617.930394] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 617.933342] CPU: 1 PID: 6907 Comm: syz-executor.0 Not tainted 5.10.56 #1 [ 617.934806] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS rel-1.14.0-0-g155821a1990b-prebuilt.qemu.org 04/01/2014 [ 617.937268] Call Trace: [ 617.937841] dump_stack+0x107/0x163 [ 617.938632] should_fail.cold+0x5/0xa [ 617.939461] _copy_to_user+0x2e/0x180 [ 617.940291] simple_read_from_buffer+0xcc/0x160 [ 617.941310] proc_fail_nth_read+0x194/0x220 [ 617.942243] ? proc_sessionid_read+0x220/0x220 [ 617.943225] ? security_file_permission+0x24e/0x570 [ 617.944310] ? proc_sessionid_read+0x220/0x220 [ 617.945309] vfs_read+0x228/0x580 [ 617.946069] ksys_read+0x12d/0x250 [ 617.946835] ? __ia32_sys_pwrite64+0x230/0x230 [ 617.947826] ? rcu_read_lock_sched_held+0x3a/0x70 [ 617.948881] do_syscall_64+0x33/0x40 [ 617.949687] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 617.950793] RIP: 0033:0x41935c [ 617.951509] Code: ec 28 48 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 f9 fc ff ff 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 31 c0 0f 05 <48> 3d 00 f0 ff ff 77 34 44 89 c7 48 89 44 24 08 e8 2f fd ff ff 48 [ 617.955497] RSP: 002b:00007ff0a682c170 EFLAGS: 00000246 ORIG_RAX: 0000000000000000 [ 617.957174] RAX: ffffffffffffffda RBX: 0000000000000000 RCX: 000000000041935c [ 617.958726] RDX: 000000000000000f RSI: 00007ff0a682c1e0 RDI: 0000000000000005 [ 617.960266] RBP: 00007ff0a682c1d0 R08: 0000000000000000 R09: 0000000000000000 [ 617.961814] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 617.963363] R13: 00007ffe4d4781af R14: 00007ff0a682c300 R15: 0000000000022000 10:18:59 executing program 2: syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0x1, &(0x7f0000000140)=[{&(0x7f0000000400)="20000000000100000c000000dc0000000f000000010000000000000000000000002000000020000020000000d1f4655fd1f4655f0100ffff53ef010001000000d1f4655f000000000000000001000000000000000b0000000001c6c54ad78af3c182d38edf6b5ad3fcb09b73cffb39651c8667f2741f98d152f3d9d98a26aed490ab31162ae7f0122fdeff0e5c8e994aa60d5903898c876e0dcf2d6f311c6158da6ba25412496e73d7f842c958e6608df1b56d000000000000000000348ac67222e2c946e61d5a0b54cd1b20d6e9ad55085f5ba5e4607591ffe5f73aebbfb95eb592b0a777ff819d666650f08dae9830e560bae83d4733faff3622543565d5cd713a63e2f094d619778fb4bb40434feec487437cdc5f63b525fbeb9c394d9ae148aa150845022956b78dd9c8e96f8ff86a73c523b4ab09658d7ba1c796ee8ccb328d6a0298c75aac7348857d70da3659a6acea9e60eaeb277e79afe85799345c", 0x160, 0x400}], 0x0, &(0x7f0000012800)) r0 = syz_open_dev$tty20(0xc, 0x4, 0x1) r1 = fcntl$dupfd(r0, 0x0, r0) ioctl$TIOCL_PASTESEL(r1, 0x4b52, &(0x7f0000000080)) 10:18:59 executing program 0: r0 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x46e2, 0x0) r1 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffd000/0x3000)=nil, 0x3000, 0x0, 0x13, r0, 0x0) syz_io_uring_setup(0x4b9f, &(0x7f0000000140), &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000ffd000/0x3000)=nil, &(0x7f00000000c0), &(0x7f00000001c0)=0x0) syz_io_uring_submit(r1, r2, &(0x7f0000000240)=@IORING_OP_FADVISE={0x18, 0x0, 0x0, @fd, 0x2}, 0x0) sigaltstack(&(0x7f0000ffd000/0x1000)=nil, 0x0) 10:18:59 executing program 1 (fault-call:3 fault-nth:10): r0 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x46e2, 0x0) r1 = dup2(r0, r0) r2 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000040), 0x2, 0x0) mount$9p_fd(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f00000000c0), 0x0, &(0x7f00000004c0)={'trans=fd,', {'rfdno', 0x3d, r1}, 0x2c, {'wfdno', 0x3d, r2}}) 10:18:59 executing program 7: perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r0 = socket$inet6_tcp(0xa, 0x1, 0x0) fcntl$setstatus(r0, 0x4, 0x2000) splice(r0, &(0x7f0000000000)=0xee6, r0, &(0x7f00000000c0)=0x1, 0x4, 0xc) r1 = fork() ioctl$sock_SIOCSPGRP(r0, 0x8902, &(0x7f0000000040)=r1) connect$inet6(r0, &(0x7f0000000140)={0xa, 0x4e20, 0x3, @mcast1, 0x5}, 0x1c) r2 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000040), 0x2, 0x0) write$binfmt_aout(r2, &(0x7f0000000640), 0x20) read(r2, &(0x7f0000000100)=""/146, 0x92) 10:18:59 executing program 5 (fault-call:3 fault-nth:17): r0 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x46e2, 0x0) r1 = dup2(r0, r0) r2 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000040), 0x2, 0x0) mount$9p_fd(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f00000000c0), 0x0, &(0x7f00000004c0)={'trans=fd,', {'rfdno', 0x3d, r1}, 0x2c, {'wfdno', 0x3d, r2}}) 10:18:59 executing program 6: perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r0 = socket$inet6_tcp(0xa, 0x1, 0x0) fcntl$setstatus(r0, 0x4, 0x2000) splice(r0, &(0x7f0000000000)=0xee6, r0, &(0x7f00000000c0)=0x1, 0x4, 0xc) fork() r1 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000040), 0x2, 0x0) write$binfmt_aout(r1, &(0x7f0000000640), 0x20) read(r1, &(0x7f0000000100)=""/146, 0x92) 10:18:59 executing program 3: perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r0 = socket$inet6_tcp(0xa, 0x1, 0x0) fcntl$setstatus(r0, 0x4, 0x2000) r1 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000040), 0x2, 0x0) write$binfmt_aout(r1, &(0x7f0000000640), 0x20) read(r1, &(0x7f0000000100)=""/146, 0x92) 10:18:59 executing program 4: r0 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x46e2, 0x0) r1 = dup2(r0, r0) r2 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000040), 0x0, 0x0) mount$9p_fd(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f00000000c0), 0x0, &(0x7f00000004c0)={'trans=fd,', {'rfdno', 0x3d, r1}, 0x2c, {'wfdno', 0x3d, r2}, 0x2c, {[{@debug}], [{@hash}, {@euid_gt}, {@fsmagic={'fsmagic', 0x3d, 0xfffffffffffffffc}}, {@euid_eq={'euid', 0x3d, 0xffffffffffffffff}}]}}) [ 629.548983] FAULT_INJECTION: forcing a failure. [ 629.548983] name failslab, interval 1, probability 0, space 0, times 0 [ 629.550721] CPU: 1 PID: 6919 Comm: syz-executor.1 Not tainted 5.10.56 #1 [ 629.551720] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS rel-1.14.0-0-g155821a1990b-prebuilt.qemu.org 04/01/2014 [ 629.553289] Call Trace: [ 629.553668] dump_stack+0x107/0x163 [ 629.554184] should_fail.cold+0x5/0xa [ 629.554722] ? create_object.isra.0+0x3a/0xa20 [ 629.555367] should_failslab+0x5/0x10 [ 629.555906] kmem_cache_alloc+0x5b/0x350 [ 629.556490] create_object.isra.0+0x3a/0xa20 [ 629.557124] ? __kasan_kmalloc.constprop.0+0xc2/0xd0 [ 629.557856] kmem_cache_alloc_trace+0x151/0x360 [ 629.558561] alloc_fs_context+0x57/0x840 [ 629.559160] path_mount+0xa4e/0x2080 [ 629.559730] ? strncpy_from_user+0x9e/0x460 [ 629.560364] ? finish_automount+0xa40/0xa40 [ 629.561041] ? getname_flags.part.0+0x1dd/0x4f0 [ 629.561709] ? _copy_from_user+0xfb/0x1b0 [ 629.562345] __x64_sys_mount+0x27e/0x300 [ 629.562953] ? path_mount+0x2080/0x2080 [ 629.563555] ? rcu_read_lock_sched_held+0x3a/0x70 [ 629.564290] do_syscall_64+0x33/0x40 [ 629.565019] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 629.566399] RIP: 0033:0x466609 [ 629.567266] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 629.571845] RSP: 002b:00007fdc84e63188 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5 [ 629.573021] FAULT_INJECTION: forcing a failure. [ 629.573021] name failslab, interval 1, probability 0, space 0, times 0 [ 629.573712] RAX: ffffffffffffffda RBX: 000000000056bf80 RCX: 0000000000466609 [ 629.573729] RDX: 00000000200000c0 RSI: 0000000020000000 RDI: 0000000000000000 [ 629.573746] RBP: 00007fdc84e631d0 R08: 00000000200004c0 R09: 0000000000000000 [ 629.580889] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 629.582868] R13: 00007ffc7c6b7e8f R14: 00007fdc84e63300 R15: 0000000000022000 [ 629.584918] CPU: 0 PID: 6929 Comm: syz-executor.5 Not tainted 5.10.56 #1 [ 629.585650] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS rel-1.14.0-0-g155821a1990b-prebuilt.qemu.org 04/01/2014 [ 629.586847] Call Trace: [ 629.587139] dump_stack+0x107/0x163 [ 629.587532] should_fail.cold+0x5/0xa [ 629.587967] should_failslab+0x5/0x10 [ 629.588377] __kmalloc_track_caller+0x79/0x3c0 [ 629.588873] ? v9fs_session_init+0xe9/0x1690 [ 629.589344] ? kernel_text_address+0xea/0x120 [ 629.589848] kstrdup+0x36/0x70 [ 629.590193] v9fs_session_init+0xe9/0x1690 [ 629.590682] ? find_held_lock+0x2c/0x110 [ 629.591140] ? kmem_cache_alloc_trace+0x151/0x360 [ 629.591687] ? v9fs_show_options+0x690/0x690 [ 629.592192] ? kasan_unpoison_shadow+0x33/0x40 [ 629.592734] ? __kasan_kmalloc.constprop.0+0xc2/0xd0 [ 629.593459] v9fs_mount+0x79/0x8f0 [ 629.593907] ? v9fs_write_inode+0x60/0x60 [ 629.594411] legacy_get_tree+0x105/0x220 [ 629.595048] vfs_get_tree+0x8e/0x2f0 [ 629.595618] path_mount+0x139a/0x2080 [ 629.596120] ? strncpy_from_user+0x9e/0x460 [ 629.596776] ? finish_automount+0xa40/0xa40 [ 629.597403] ? getname_flags.part.0+0x1dd/0x4f0 [ 629.598114] ? _copy_from_user+0xfb/0x1b0 [ 629.598724] __x64_sys_mount+0x27e/0x300 [ 629.599353] ? path_mount+0x2080/0x2080 [ 629.599932] ? rcu_read_lock_sched_held+0x3a/0x70 [ 629.600695] do_syscall_64+0x33/0x40 [ 629.601215] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 629.601846] RIP: 0033:0x466609 [ 629.602186] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 629.604344] RSP: 002b:00007fd61fccc188 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5 [ 629.605184] RAX: ffffffffffffffda RBX: 000000000056bf80 RCX: 0000000000466609 [ 629.605949] RDX: 00000000200000c0 RSI: 0000000020000000 RDI: 0000000000000000 [ 629.606720] RBP: 00007fd61fccc1d0 R08: 00000000200004c0 R09: 0000000000000000 [ 629.607553] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 629.608316] R13: 00007fff09eaa3cf R14: 00007fd61fccc300 R15: 0000000000022000 10:18:59 executing program 3: perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) socket$inet6_tcp(0xa, 0x1, 0x0) r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000040), 0x2, 0x0) write$binfmt_aout(r0, &(0x7f0000000640), 0x20) read(r0, &(0x7f0000000100)=""/146, 0x92) 10:18:59 executing program 3: perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000040), 0x2, 0x0) write$binfmt_aout(r0, &(0x7f0000000640), 0x20) read(r0, &(0x7f0000000100)=""/146, 0x92) 10:19:12 executing program 4: r0 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x46e2, 0x0) r1 = dup2(r0, r0) r2 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000040), 0x0, 0x0) mount$9p_fd(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f00000000c0), 0x0, &(0x7f00000004c0)={'trans=fd,', {'rfdno', 0x3d, r1}, 0x2c, {'wfdno', 0x3d, r2}, 0x2c, {[{@debug}], [{@hash}, {@euid_gt}, {@fsmagic={'fsmagic', 0x3d, 0xfffffffffffffffc}}, {@euid_eq={'euid', 0x3d, 0xffffffffffffffff}}]}}) 10:19:12 executing program 3: r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000040), 0x2, 0x0) write$binfmt_aout(r0, &(0x7f0000000640), 0x20) read(r0, &(0x7f0000000100)=""/146, 0x92) 10:19:12 executing program 1 (fault-call:3 fault-nth:11): r0 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x46e2, 0x0) r1 = dup2(r0, r0) r2 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000040), 0x2, 0x0) mount$9p_fd(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f00000000c0), 0x0, &(0x7f00000004c0)={'trans=fd,', {'rfdno', 0x3d, r1}, 0x2c, {'wfdno', 0x3d, r2}}) 10:19:12 executing program 2: prctl$PR_GET_NO_NEW_PRIVS(0x27) r0 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x42, 0x0) clone3(&(0x7f00000003c0)={0x220000000, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0, 0x0, {r0}}, 0x58) 10:19:12 executing program 0: r0 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x46e2, 0x0) r1 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffd000/0x3000)=nil, 0x3000, 0x0, 0x13, r0, 0x0) openat(r0, &(0x7f0000000000)='./file0\x00', 0x644580, 0x0) syz_io_uring_setup(0x4b9f, &(0x7f0000000140), &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000ffd000/0x3000)=nil, &(0x7f00000000c0), &(0x7f00000001c0)=0x0) syz_io_uring_submit(r1, r2, &(0x7f0000000240)=@IORING_OP_FADVISE={0x18, 0x0, 0x0, @fd, 0x2}, 0x0) sigaltstack(&(0x7f0000ffd000/0x1000)=nil, 0x0) 10:19:12 executing program 5 (fault-call:3 fault-nth:18): r0 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x46e2, 0x0) r1 = dup2(r0, r0) r2 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000040), 0x2, 0x0) mount$9p_fd(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f00000000c0), 0x0, &(0x7f00000004c0)={'trans=fd,', {'rfdno', 0x3d, r1}, 0x2c, {'wfdno', 0x3d, r2}}) 10:19:12 executing program 6: perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r0 = socket$inet6_tcp(0xa, 0x1, 0x0) fcntl$setstatus(r0, 0x4, 0x2000) splice(r0, &(0x7f0000000000)=0xee6, r0, &(0x7f00000000c0)=0x1, 0x4, 0xc) fork() r1 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000040), 0x2, 0x0) write$binfmt_aout(r1, &(0x7f0000000640), 0x20) read(r1, &(0x7f0000000100)=""/146, 0x92) 10:19:12 executing program 7: perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r0 = socket$inet6_tcp(0xa, 0x1, 0x0) fcntl$setstatus(r0, 0x4, 0x2000) splice(r0, &(0x7f0000000000)=0xee6, r0, &(0x7f00000000c0)=0x1, 0x4, 0xc) r1 = fork() ioctl$sock_SIOCSPGRP(r0, 0x8902, &(0x7f0000000040)=r1) r2 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000040), 0x2, 0x0) write$binfmt_aout(r2, &(0x7f0000000640), 0x20) read(r2, &(0x7f0000000100)=""/146, 0x92) [ 642.769273] FAULT_INJECTION: forcing a failure. [ 642.769273] name failslab, interval 1, probability 0, space 0, times 0 [ 642.771035] CPU: 1 PID: 6948 Comm: syz-executor.1 Not tainted 5.10.56 #1 [ 642.772048] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS rel-1.14.0-0-g155821a1990b-prebuilt.qemu.org 04/01/2014 [ 642.773761] Call Trace: [ 642.774165] dump_stack+0x107/0x163 [ 642.774725] should_fail.cold+0x5/0xa [ 642.775309] ? legacy_init_fs_context+0x44/0xe0 [ 642.776025] should_failslab+0x5/0x10 [ 642.776609] kmem_cache_alloc_trace+0x55/0x360 [ 642.777343] legacy_init_fs_context+0x44/0xe0 [ 642.778029] ? generic_parse_monolithic+0x1f0/0x1f0 [ 642.778790] alloc_fs_context+0x4f8/0x840 [ 642.779435] path_mount+0xa4e/0x2080 [ 642.780015] ? strncpy_from_user+0x9e/0x460 [ 642.780681] ? finish_automount+0xa40/0xa40 [ 642.781352] ? getname_flags.part.0+0x1dd/0x4f0 [ 642.782068] ? _copy_from_user+0xfb/0x1b0 [ 642.782719] __x64_sys_mount+0x27e/0x300 [ 642.783339] ? path_mount+0x2080/0x2080 [ 642.783956] ? rcu_read_lock_sched_held+0x3a/0x70 [ 642.784704] do_syscall_64+0x33/0x40 [ 642.785303] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 642.786084] RIP: 0033:0x466609 [ 642.786581] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 642.789412] RSP: 002b:00007fdc84e63188 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5 [ 642.790584] RAX: ffffffffffffffda RBX: 000000000056bf80 RCX: 0000000000466609 [ 642.791668] RDX: 00000000200000c0 RSI: 0000000020000000 RDI: 0000000000000000 [ 642.792749] RBP: 00007fdc84e631d0 R08: 00000000200004c0 R09: 0000000000000000 [ 642.793845] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 642.794932] R13: 00007ffc7c6b7e8f R14: 00007fdc84e63300 R15: 0000000000022000 [ 642.817745] FAULT_INJECTION: forcing a failure. [ 642.817745] name failslab, interval 1, probability 0, space 0, times 0 [ 642.819198] CPU: 0 PID: 6963 Comm: syz-executor.5 Not tainted 5.10.56 #1 [ 642.819980] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS rel-1.14.0-0-g155821a1990b-prebuilt.qemu.org 04/01/2014 [ 642.821297] Call Trace: [ 642.821594] dump_stack+0x107/0x163 [ 642.822005] should_fail.cold+0x5/0xa [ 642.822438] ? create_object.isra.0+0x3a/0xa20 [ 642.822953] should_failslab+0x5/0x10 [ 642.823386] kmem_cache_alloc+0x5b/0x350 [ 642.823843] create_object.isra.0+0x3a/0xa20 [ 642.824333] ? __kasan_kmalloc.constprop.0+0xc2/0xd0 [ 642.824911] __kmalloc_track_caller+0x177/0x3c0 [ 642.825448] ? v9fs_session_init+0xe9/0x1690 [ 642.825941] ? kernel_text_address+0xea/0x120 [ 642.826459] kstrdup+0x36/0x70 [ 642.826824] v9fs_session_init+0xe9/0x1690 [ 642.827314] ? find_held_lock+0x2c/0x110 [ 642.827780] ? kmem_cache_alloc_trace+0x151/0x360 [ 642.828338] ? v9fs_show_options+0x690/0x690 [ 642.828846] ? kasan_unpoison_shadow+0x33/0x40 [ 642.829390] ? __kasan_kmalloc.constprop.0+0xc2/0xd0 [ 642.829976] v9fs_mount+0x79/0x8f0 [ 642.830384] ? v9fs_write_inode+0x60/0x60 [ 642.830872] legacy_get_tree+0x105/0x220 [ 642.831339] vfs_get_tree+0x8e/0x2f0 [ 642.831765] path_mount+0x139a/0x2080 [ 642.832207] ? strncpy_from_user+0x9e/0x460 [ 642.832699] ? finish_automount+0xa40/0xa40 [ 642.833198] ? getname_flags.part.0+0x1dd/0x4f0 [ 642.833729] ? _copy_from_user+0xfb/0x1b0 [ 642.834206] __x64_sys_mount+0x27e/0x300 [ 642.834681] ? path_mount+0x2080/0x2080 [ 642.835135] ? rcu_read_lock_sched_held+0x3a/0x70 [ 642.835684] do_syscall_64+0x33/0x40 [ 642.836118] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 642.836710] RIP: 0033:0x466609 [ 642.837090] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 642.839232] RSP: 002b:00007fd61fccc188 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5 [ 642.840110] RAX: ffffffffffffffda RBX: 000000000056bf80 RCX: 0000000000466609 [ 642.840942] RDX: 00000000200000c0 RSI: 0000000020000000 RDI: 0000000000000000 [ 642.841750] RBP: 00007fd61fccc1d0 R08: 00000000200004c0 R09: 0000000000000000 [ 642.842573] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 642.843396] R13: 00007fff09eaa3cf R14: 00007fd61fccc300 R15: 0000000000022000 10:19:12 executing program 3: r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000040), 0x2, 0x0) write$binfmt_aout(r0, &(0x7f0000000640), 0x20) read(r0, &(0x7f0000000100)=""/146, 0x92) 10:19:12 executing program 4: r0 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x46e2, 0x0) r1 = dup2(r0, r0) r2 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000040), 0x2, 0x0) mount$9p_fd(0x0, 0x0, &(0x7f00000000c0), 0x0, &(0x7f00000004c0)={'trans=fd,', {'rfdno', 0x3d, r1}, 0x2c, {'wfdno', 0x3d, r2}, 0x2c, {[{@debug}], [{@hash}, {@euid_gt}, {@fsmagic={'fsmagic', 0x3d, 0xfffffffffffffffc}}, {@euid_eq={'euid', 0x3d, 0xffffffffffffffff}}]}}) 10:19:12 executing program 6: perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r0 = socket$inet6_tcp(0xa, 0x1, 0x0) fcntl$setstatus(r0, 0x4, 0x2000) splice(r0, &(0x7f0000000000)=0xee6, r0, &(0x7f00000000c0)=0x1, 0x4, 0xc) fork() r1 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000040), 0x2, 0x0) write$binfmt_aout(r1, &(0x7f0000000640), 0x20) read(r1, &(0x7f0000000100)=""/146, 0x92) 10:19:12 executing program 7: perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r0 = socket$inet6_tcp(0xa, 0x1, 0x0) fcntl$setstatus(r0, 0x4, 0x2000) splice(r0, &(0x7f0000000000)=0xee6, r0, &(0x7f00000000c0)=0x1, 0x4, 0xc) fork() r1 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000040), 0x2, 0x0) write$binfmt_aout(r1, &(0x7f0000000640), 0x20) read(r1, &(0x7f0000000100)=""/146, 0x92) 10:19:12 executing program 0: r0 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x46e2, 0x0) r1 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffd000/0x3000)=nil, 0x3000, 0x0, 0x13, r0, 0x0) syz_io_uring_setup(0x4b9f, &(0x7f0000000280)={0x0, 0x1f2f, 0x0, 0x0, 0x8000}, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000ffd000/0x3000)=nil, &(0x7f00000000c0), &(0x7f00000001c0)=0x0) r3 = syz_open_dev$mouse(&(0x7f0000000a80), 0x7, 0x345080) syz_io_uring_setup(0x547d, &(0x7f0000000080)={0x0, 0x0, 0x0, 0x0, 0x301, 0x0, r3}, &(0x7f0000feb000/0x13000)=nil, &(0x7f0000ff8000/0x1000)=nil, &(0x7f0000000180)=0x0, &(0x7f0000002a40)=0x0) syz_io_uring_submit(r4, r5, &(0x7f00000001c0)=@IORING_OP_OPENAT2={0x1c, 0x2, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x23456}, 0x0) syz_io_uring_setup(0x4d4f, &(0x7f0000000080), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=0x0, &(0x7f0000000140)=0x0) syz_io_uring_setup(0x1, &(0x7f0000000080), &(0x7f0000ffd000/0x2000)=nil, &(0x7f0000ffc000/0x2000)=nil, &(0x7f0000000100), &(0x7f0000000140)) syz_io_uring_submit(r6, r7, &(0x7f0000000380)=@IORING_OP_PROVIDE_BUFFERS={0x1f, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x101) syz_io_uring_submit(r1, r2, &(0x7f0000000240)=@IORING_OP_FADVISE={0x18, 0x0, 0x0, @fd, 0x2}, 0x0) syz_io_uring_setup(0x1e, &(0x7f0000000080), &(0x7f0000feb000/0x13000)=nil, &(0x7f00000b0000)=nil, &(0x7f0000000180)=0x0, &(0x7f0000002a40)=0x0) syz_io_uring_submit(r8, r9, &(0x7f00000001c0)=@IORING_OP_OPENAT2={0x1c, 0x2, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x23456}, 0x0) syz_io_uring_submit(r8, r7, &(0x7f0000000ac0)=@IORING_OP_SPLICE={0x1e, 0x0, 0x0, @fd_index=0x7, 0x70c, {}, 0x1f, 0x3, 0x0, {0x0, 0x0, r3}}, 0x9f) r10 = socket$netlink(0x10, 0x3, 0x0) r11 = fcntl$dupfd(r10, 0x0, r10) getsockopt$netlink(r11, 0x10e, 0x0, 0x0, 0xfffffffffffffffe) io_uring_enter(r11, 0x427, 0xbf5c, 0x3, &(0x7f0000000b00)={[0x9]}, 0x8) sigaltstack(&(0x7f0000ffd000/0x1000)=nil, 0x0) 10:19:12 executing program 1 (fault-call:3 fault-nth:12): r0 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x46e2, 0x0) r1 = dup2(r0, r0) r2 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000040), 0x2, 0x0) mount$9p_fd(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f00000000c0), 0x0, &(0x7f00000004c0)={'trans=fd,', {'rfdno', 0x3d, r1}, 0x2c, {'wfdno', 0x3d, r2}}) 10:19:12 executing program 3: r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000040), 0x2, 0x0) write$binfmt_aout(r0, &(0x7f0000000640), 0x20) read(r0, &(0x7f0000000100)=""/146, 0x92) 10:19:12 executing program 4: r0 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x46e2, 0x0) r1 = dup2(r0, r0) r2 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000040), 0x2, 0x0) mount$9p_fd(0x0, 0x0, &(0x7f00000000c0), 0x0, &(0x7f00000004c0)={'trans=fd,', {'rfdno', 0x3d, r1}, 0x2c, {'wfdno', 0x3d, r2}, 0x2c, {[{@debug}], [{@hash}, {@euid_gt}, {@fsmagic={'fsmagic', 0x3d, 0xfffffffffffffffc}}, {@euid_eq={'euid', 0x3d, 0xffffffffffffffff}}]}}) [ 643.007524] FAULT_INJECTION: forcing a failure. [ 643.007524] name failslab, interval 1, probability 0, space 0, times 0 [ 643.008826] CPU: 1 PID: 6988 Comm: syz-executor.1 Not tainted 5.10.56 #1 [ 643.009624] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS rel-1.14.0-0-g155821a1990b-prebuilt.qemu.org 04/01/2014 [ 643.010892] Call Trace: [ 643.011201] dump_stack+0x107/0x163 [ 643.011612] should_fail.cold+0x5/0xa [ 643.012046] ? create_object.isra.0+0x3a/0xa20 [ 643.012556] should_failslab+0x5/0x10 [ 643.013002] kmem_cache_alloc+0x5b/0x350 [ 643.013459] create_object.isra.0+0x3a/0xa20 [ 643.013952] ? __kasan_kmalloc.constprop.0+0xc2/0xd0 [ 643.014518] kmem_cache_alloc_trace+0x151/0x360 [ 643.015054] legacy_init_fs_context+0x44/0xe0 [ 643.015558] ? generic_parse_monolithic+0x1f0/0x1f0 [ 643.016118] alloc_fs_context+0x4f8/0x840 [ 643.016590] path_mount+0xa4e/0x2080 [ 643.017030] ? strncpy_from_user+0x9e/0x460 [ 643.017535] ? finish_automount+0xa40/0xa40 [ 643.018021] ? getname_flags.part.0+0x1dd/0x4f0 [ 643.018546] ? _copy_from_user+0xfb/0x1b0 [ 643.019013] __x64_sys_mount+0x27e/0x300 [ 643.019470] ? path_mount+0x2080/0x2080 [ 643.019920] ? rcu_read_lock_sched_held+0x3a/0x70 [ 643.020465] do_syscall_64+0x33/0x40 [ 643.020883] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 643.021470] RIP: 0033:0x466609 [ 643.021830] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 643.023881] RSP: 002b:00007fdc84e63188 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5 [ 643.024727] RAX: ffffffffffffffda RBX: 000000000056bf80 RCX: 0000000000466609 [ 643.025525] RDX: 00000000200000c0 RSI: 0000000020000000 RDI: 0000000000000000 [ 643.026325] RBP: 00007fdc84e631d0 R08: 00000000200004c0 R09: 0000000000000000 [ 643.027129] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 643.027937] R13: 00007ffc7c6b7e8f R14: 00007fdc84e63300 R15: 0000000000022000 10:19:12 executing program 5 (fault-call:3 fault-nth:19): r0 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x46e2, 0x0) r1 = dup2(r0, r0) r2 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000040), 0x2, 0x0) mount$9p_fd(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f00000000c0), 0x0, &(0x7f00000004c0)={'trans=fd,', {'rfdno', 0x3d, r1}, 0x2c, {'wfdno', 0x3d, r2}}) 10:19:12 executing program 7: perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r0 = socket$inet6_tcp(0xa, 0x1, 0x0) fcntl$setstatus(r0, 0x4, 0x2000) splice(r0, &(0x7f0000000000)=0xee6, r0, &(0x7f00000000c0)=0x1, 0x4, 0xc) r1 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000040), 0x2, 0x0) write$binfmt_aout(r1, &(0x7f0000000640), 0x20) read(r1, &(0x7f0000000100)=""/146, 0x92) 10:19:12 executing program 2: perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r0 = socket$inet6_tcp(0xa, 0x1, 0x0) fcntl$setstatus(r0, 0x4, 0x2000) splice(r0, &(0x7f0000000000)=0xee6, r0, &(0x7f00000000c0)=0x1, 0x4, 0xc) r1 = fork() ioctl$sock_SIOCSPGRP(r0, 0x8902, &(0x7f0000000040)=r1) r2 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000040), 0x2, 0x0) write$binfmt_aout(r2, &(0x7f0000000640), 0x20) read(r2, &(0x7f0000000100)=""/146, 0x92) [ 643.083356] FAULT_INJECTION: forcing a failure. [ 643.083356] name failslab, interval 1, probability 0, space 0, times 0 [ 643.084699] CPU: 1 PID: 7018 Comm: syz-executor.5 Not tainted 5.10.56 #1 [ 643.085481] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS rel-1.14.0-0-g155821a1990b-prebuilt.qemu.org 04/01/2014 [ 643.086811] Call Trace: [ 643.087115] dump_stack+0x107/0x163 [ 643.087536] should_fail.cold+0x5/0xa [ 643.087977] ? p9_client_create+0xaf/0x1090 [ 643.088464] should_failslab+0x5/0x10 [ 643.088897] kmem_cache_alloc_trace+0x55/0x360 [ 643.089440] ? find_held_lock+0x2c/0x110 [ 643.089909] p9_client_create+0xaf/0x1090 [ 643.090387] ? lock_downgrade+0x6d0/0x6d0 [ 643.090867] ? p9_client_flush+0x430/0x430 [ 643.091350] ? lockdep_init_map_waits+0x26a/0x700 [ 643.091898] ? __raw_spin_lock_init+0x34/0x100 [ 643.092426] v9fs_session_init+0x1dd/0x1690 [ 643.092934] ? kmem_cache_alloc_trace+0x151/0x360 [ 643.093479] ? v9fs_show_options+0x690/0x690 [ 643.093986] ? kasan_unpoison_shadow+0x33/0x40 [ 643.094505] ? __kasan_kmalloc.constprop.0+0xc2/0xd0 [ 643.095083] v9fs_mount+0x79/0x8f0 [ 643.095489] ? v9fs_write_inode+0x60/0x60 [ 643.095956] legacy_get_tree+0x105/0x220 [ 643.096428] vfs_get_tree+0x8e/0x2f0 [ 643.096860] path_mount+0x139a/0x2080 [ 643.097319] ? strncpy_from_user+0x9e/0x460 [ 643.097812] ? finish_automount+0xa40/0xa40 [ 643.098320] ? getname_flags.part.0+0x1dd/0x4f0 [ 643.098847] ? _copy_from_user+0xfb/0x1b0 [ 643.099325] __x64_sys_mount+0x27e/0x300 [ 643.099779] ? path_mount+0x2080/0x2080 [ 643.100240] ? rcu_read_lock_sched_held+0x3a/0x70 [ 643.100798] do_syscall_64+0x33/0x40 [ 643.101233] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 643.101810] RIP: 0033:0x466609 [ 643.102175] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 643.104269] RSP: 002b:00007fd61fccc188 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5 [ 643.105156] RAX: ffffffffffffffda RBX: 000000000056bf80 RCX: 0000000000466609 [ 643.105979] RDX: 00000000200000c0 RSI: 0000000020000000 RDI: 0000000000000000 [ 643.106794] RBP: 00007fd61fccc1d0 R08: 00000000200004c0 R09: 0000000000000000 [ 643.107604] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 643.108417] R13: 00007fff09eaa3cf R14: 00007fd61fccc300 R15: 0000000000022000 10:19:24 executing program 2: r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000040), 0x2, 0x0) write$binfmt_aout(r0, &(0x7f0000000640), 0x20) read(r0, &(0x7f0000000100)=""/146, 0x92) 10:19:24 executing program 6: perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r0 = socket$inet6_tcp(0xa, 0x1, 0x0) fcntl$setstatus(r0, 0x4, 0x2000) splice(r0, &(0x7f0000000000)=0xee6, r0, &(0x7f00000000c0)=0x1, 0x4, 0xc) fork() r1 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000040), 0x2, 0x0) write$binfmt_aout(r1, &(0x7f0000000640), 0x20) 10:19:24 executing program 1 (fault-call:3 fault-nth:13): r0 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x46e2, 0x0) r1 = dup2(r0, r0) r2 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000040), 0x2, 0x0) mount$9p_fd(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f00000000c0), 0x0, &(0x7f00000004c0)={'trans=fd,', {'rfdno', 0x3d, r1}, 0x2c, {'wfdno', 0x3d, r2}}) 10:19:24 executing program 3: perf_event_open(0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000040), 0x2, 0x0) write$binfmt_aout(r0, &(0x7f0000000640), 0x20) read(r0, &(0x7f0000000100)=""/146, 0x92) 10:19:24 executing program 5 (fault-call:3 fault-nth:20): r0 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x46e2, 0x0) r1 = dup2(r0, r0) r2 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000040), 0x2, 0x0) mount$9p_fd(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f00000000c0), 0x0, &(0x7f00000004c0)={'trans=fd,', {'rfdno', 0x3d, r1}, 0x2c, {'wfdno', 0x3d, r2}}) 10:19:24 executing program 4: r0 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x46e2, 0x0) r1 = dup2(r0, r0) r2 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000040), 0x2, 0x0) mount$9p_fd(0x0, 0x0, &(0x7f00000000c0), 0x0, &(0x7f00000004c0)={'trans=fd,', {'rfdno', 0x3d, r1}, 0x2c, {'wfdno', 0x3d, r2}, 0x2c, {[{@debug}], [{@hash}, {@euid_gt}, {@fsmagic={'fsmagic', 0x3d, 0xfffffffffffffffc}}, {@euid_eq={'euid', 0x3d, 0xffffffffffffffff}}]}}) 10:19:24 executing program 0: r0 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x46e2, 0x0) r1 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffd000/0x3000)=nil, 0x3000, 0x0, 0x13, r0, 0x0) syz_io_uring_setup(0x4b9f, &(0x7f0000000140), &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000ffd000/0x3000)=nil, &(0x7f00000000c0), &(0x7f00000001c0)=0x0) syz_io_uring_submit(r1, r2, &(0x7f0000000240)=@IORING_OP_FADVISE={0x18, 0x0, 0x0, @fd, 0x2}, 0x0) r3 = socket$netlink(0x10, 0x3, 0x0) r4 = fcntl$dupfd(r3, 0x0, r3) getsockopt$netlink(r4, 0x10e, 0x0, 0x0, 0xfffffffffffffffe) io_uring_enter(r4, 0x9fa, 0x648c, 0x1, &(0x7f0000000000)={[0x8]}, 0x8) sigaltstack(&(0x7f0000ffd000/0x1000)=nil, 0x0) 10:19:24 executing program 7: perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r0 = socket$inet6_tcp(0xa, 0x1, 0x0) fcntl$setstatus(r0, 0x4, 0x2000) r1 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000040), 0x2, 0x0) write$binfmt_aout(r1, &(0x7f0000000640), 0x20) read(r1, &(0x7f0000000100)=""/146, 0x92) [ 654.669971] FAULT_INJECTION: forcing a failure. [ 654.669971] name failslab, interval 1, probability 0, space 0, times 0 [ 654.672233] CPU: 0 PID: 7038 Comm: syz-executor.1 Not tainted 5.10.56 #1 [ 654.673475] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS rel-1.14.0-0-g155821a1990b-prebuilt.qemu.org 04/01/2014 [ 654.675528] Call Trace: [ 654.675995] dump_stack+0x107/0x163 [ 654.676663] should_fail.cold+0x5/0xa [ 654.677376] ? v9fs_mount+0x5a/0x8f0 [ 654.678064] ? v9fs_mount+0x5a/0x8f0 [ 654.678750] should_failslab+0x5/0x10 [ 654.679448] kmem_cache_alloc_trace+0x55/0x360 [ 654.680289] ? v9fs_write_inode+0x60/0x60 [ 654.681041] v9fs_mount+0x5a/0x8f0 [ 654.681722] ? v9fs_write_inode+0x60/0x60 [ 654.682486] legacy_get_tree+0x105/0x220 [ 654.683231] vfs_get_tree+0x8e/0x2f0 [ 654.683913] path_mount+0x139a/0x2080 [ 654.684620] ? strncpy_from_user+0x9e/0x460 [ 654.685430] ? finish_automount+0xa40/0xa40 [ 654.686218] ? getname_flags.part.0+0x1dd/0x4f0 [ 654.687057] ? _copy_from_user+0xfb/0x1b0 [ 654.687812] __x64_sys_mount+0x27e/0x300 [ 654.688554] ? path_mount+0x2080/0x2080 [ 654.689301] ? rcu_read_lock_sched_held+0x3a/0x70 [ 654.690186] do_syscall_64+0x33/0x40 [ 654.690870] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 654.691797] RIP: 0033:0x466609 [ 654.692386] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 654.695745] RSP: 002b:00007fdc84e63188 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5 [ 654.697143] RAX: ffffffffffffffda RBX: 000000000056bf80 RCX: 0000000000466609 [ 654.698439] RDX: 00000000200000c0 RSI: 0000000020000000 RDI: 0000000000000000 [ 654.699743] RBP: 00007fdc84e631d0 R08: 00000000200004c0 R09: 0000000000000000 [ 654.701026] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 654.702353] R13: 00007ffc7c6b7e8f R14: 00007fdc84e63300 R15: 0000000000022000 [ 654.711309] FAULT_INJECTION: forcing a failure. [ 654.711309] name failslab, interval 1, probability 0, space 0, times 0 [ 654.713325] CPU: 1 PID: 7037 Comm: syz-executor.5 Not tainted 5.10.56 #1 [ 654.714520] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS rel-1.14.0-0-g155821a1990b-prebuilt.qemu.org 04/01/2014 [ 654.716521] Call Trace: [ 654.716996] dump_stack+0x107/0x163 [ 654.717675] should_fail.cold+0x5/0xa [ 654.718359] ? create_object.isra.0+0x3a/0xa20 [ 654.719180] should_failslab+0x5/0x10 [ 654.719865] kmem_cache_alloc+0x5b/0x350 [ 654.720600] ? kernel_text_address+0xea/0x120 [ 654.721415] create_object.isra.0+0x3a/0xa20 [ 654.722203] ? __kasan_kmalloc.constprop.0+0xc2/0xd0 [ 654.723116] kmem_cache_alloc_trace+0x151/0x360 [ 654.723952] ? find_held_lock+0x2c/0x110 [ 654.724693] p9_client_create+0xaf/0x1090 [ 654.725453] ? lock_downgrade+0x6d0/0x6d0 [ 654.726211] ? p9_client_flush+0x430/0x430 [ 654.726983] ? lockdep_init_map_waits+0x26a/0x700 [ 654.727855] ? __raw_spin_lock_init+0x34/0x100 [ 654.728687] v9fs_session_init+0x1dd/0x1690 [ 654.729509] ? kmem_cache_alloc_trace+0x151/0x360 [ 654.730379] ? v9fs_show_options+0x690/0x690 [ 654.731193] ? kasan_unpoison_shadow+0x33/0x40 [ 654.732012] ? __kasan_kmalloc.constprop.0+0xc2/0xd0 [ 654.732936] v9fs_mount+0x79/0x8f0 [ 654.733589] ? v9fs_write_inode+0x60/0x60 [ 654.734343] legacy_get_tree+0x105/0x220 [ 654.735085] vfs_get_tree+0x8e/0x2f0 [ 654.735761] path_mount+0x139a/0x2080 [ 654.736433] ? strncpy_from_user+0x9e/0x460 [ 654.737243] ? finish_automount+0xa40/0xa40 [ 654.738028] ? getname_flags.part.0+0x1dd/0x4f0 [ 654.738862] ? _copy_from_user+0xfb/0x1b0 [ 654.739611] __x64_sys_mount+0x27e/0x300 [ 654.740328] ? path_mount+0x2080/0x2080 [ 654.741029] ? rcu_read_lock_sched_held+0x3a/0x70 [ 654.741935] do_syscall_64+0x33/0x40 [ 654.742589] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 654.743528] RIP: 0033:0x466609 [ 654.744094] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 654.747457] RSP: 002b:00007fd61fccc188 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5 [ 654.748795] RAX: ffffffffffffffda RBX: 000000000056bf80 RCX: 0000000000466609 [ 654.750112] RDX: 00000000200000c0 RSI: 0000000020000000 RDI: 0000000000000000 [ 654.751412] RBP: 00007fd61fccc1d0 R08: 00000000200004c0 R09: 0000000000000000 [ 654.752717] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 654.754014] R13: 00007fff09eaa3cf R14: 00007fd61fccc300 R15: 0000000000022000 10:19:24 executing program 4: r0 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x46e2, 0x0) r1 = dup2(r0, r0) r2 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000040), 0x2, 0x0) mount$9p_fd(0x0, &(0x7f0000000000)='./file0\x00', 0x0, 0x0, &(0x7f00000004c0)={'trans=fd,', {'rfdno', 0x3d, r1}, 0x2c, {'wfdno', 0x3d, r2}, 0x2c, {[{@debug}], [{@hash}, {@euid_gt}, {@fsmagic={'fsmagic', 0x3d, 0xfffffffffffffffc}}, {@euid_eq={'euid', 0x3d, 0xffffffffffffffff}}]}}) 10:19:24 executing program 3: perf_event_open(0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000040), 0x2, 0x0) write$binfmt_aout(r0, &(0x7f0000000640), 0x20) read(r0, &(0x7f0000000100)=""/146, 0x92) 10:19:24 executing program 7: perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) socket$inet6_tcp(0xa, 0x1, 0x0) r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000040), 0x2, 0x0) write$binfmt_aout(r0, &(0x7f0000000640), 0x20) read(r0, &(0x7f0000000100)=""/146, 0x92) 10:19:24 executing program 1 (fault-call:3 fault-nth:14): r0 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x46e2, 0x0) r1 = dup2(r0, r0) r2 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000040), 0x2, 0x0) mount$9p_fd(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f00000000c0), 0x0, &(0x7f00000004c0)={'trans=fd,', {'rfdno', 0x3d, r1}, 0x2c, {'wfdno', 0x3d, r2}}) 10:19:24 executing program 0: r0 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x46e2, 0x0) r1 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffd000/0x3000)=nil, 0x3000, 0x0, 0x13, r0, 0x0) r2 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000040), 0x2, 0x0) write$binfmt_aout(r2, &(0x7f0000000640), 0x20) read(r2, &(0x7f0000000100)=""/146, 0x92) ioctl$FS_IOC_FSSETXATTR(r2, 0x401c5820, &(0x7f0000000000)={0x3, 0xba62, 0x9, 0x80}) syz_io_uring_setup(0x4b9f, &(0x7f0000000140), &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000ffd000/0x3000)=nil, &(0x7f00000000c0), &(0x7f00000001c0)=0x0) syz_io_uring_submit(r1, r3, &(0x7f0000000240)=@IORING_OP_FADVISE={0x18, 0x0, 0x0, @fd, 0x2}, 0x0) sigaltstack(&(0x7f0000ffd000/0x1000)=nil, 0x0) 10:19:24 executing program 6: perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r0 = socket$inet6_tcp(0xa, 0x1, 0x0) fcntl$setstatus(r0, 0x4, 0x2000) splice(r0, &(0x7f0000000000)=0xee6, r0, &(0x7f00000000c0)=0x1, 0x4, 0xc) fork() write$binfmt_aout(0xffffffffffffffff, &(0x7f0000000640), 0x20) [ 654.930480] FAULT_INJECTION: forcing a failure. [ 654.930480] name failslab, interval 1, probability 0, space 0, times 0 [ 654.932089] CPU: 1 PID: 7053 Comm: syz-executor.1 Not tainted 5.10.56 #1 [ 654.933019] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS rel-1.14.0-0-g155821a1990b-prebuilt.qemu.org 04/01/2014 [ 654.934568] Call Trace: [ 654.934937] dump_stack+0x107/0x163 [ 654.935439] should_fail.cold+0x5/0xa [ 654.935977] ? create_object.isra.0+0x3a/0xa20 [ 654.936610] should_failslab+0x5/0x10 [ 654.937142] kmem_cache_alloc+0x5b/0x350 [ 654.937705] ? cred_has_capability.isra.0+0x14e/0x2b0 [ 654.938421] create_object.isra.0+0x3a/0xa20 [ 654.939027] ? __kasan_kmalloc.constprop.0+0xc2/0xd0 [ 654.939731] kmem_cache_alloc_trace+0x151/0x360 [ 654.940387] ? v9fs_write_inode+0x60/0x60 [ 654.940955] v9fs_mount+0x5a/0x8f0 [ 654.941463] ? v9fs_write_inode+0x60/0x60 [ 654.942031] legacy_get_tree+0x105/0x220 [ 654.942585] vfs_get_tree+0x8e/0x2f0 [ 654.943095] path_mount+0x139a/0x2080 [ 654.943626] ? strncpy_from_user+0x9e/0x460 [ 654.944229] ? finish_automount+0xa40/0xa40 [ 654.944821] ? getname_flags.part.0+0x1dd/0x4f0 [ 654.945465] ? _copy_from_user+0xfb/0x1b0 [ 654.946039] __x64_sys_mount+0x27e/0x300 [ 654.946597] ? path_mount+0x2080/0x2080 [ 654.947145] ? rcu_read_lock_sched_held+0x3a/0x70 [ 654.947798] do_syscall_64+0x33/0x40 [ 654.948322] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 654.949025] RIP: 0033:0x466609 [ 654.949461] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 654.952001] RSP: 002b:00007fdc84e63188 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5 [ 654.953047] RAX: ffffffffffffffda RBX: 000000000056bf80 RCX: 0000000000466609 [ 654.954043] RDX: 00000000200000c0 RSI: 0000000020000000 RDI: 0000000000000000 [ 654.955019] RBP: 00007fdc84e631d0 R08: 00000000200004c0 R09: 0000000000000000 [ 654.956004] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 654.956992] R13: 00007ffc7c6b7e8f R14: 00007fdc84e63300 R15: 0000000000022000 10:19:24 executing program 4: r0 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x46e2, 0x0) r1 = dup2(r0, r0) r2 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000040), 0x2, 0x0) mount$9p_fd(0x0, &(0x7f0000000000)='./file0\x00', 0x0, 0x0, &(0x7f00000004c0)={'trans=fd,', {'rfdno', 0x3d, r1}, 0x2c, {'wfdno', 0x3d, r2}, 0x2c, {[{@debug}], [{@hash}, {@euid_gt}, {@fsmagic={'fsmagic', 0x3d, 0xfffffffffffffffc}}, {@euid_eq={'euid', 0x3d, 0xffffffffffffffff}}]}}) 10:19:36 executing program 0: r0 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x46e2, 0x0) mmap$IORING_OFF_SQ_RING(&(0x7f0000ffd000/0x3000)=nil, 0x3000, 0x0, 0x13, r0, 0x0) syz_io_uring_setup(0x4b9f, &(0x7f0000000140), &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000ffd000/0x3000)=nil, &(0x7f00000000c0), &(0x7f00000001c0)=0x0) syz_io_uring_setup(0x54f3, &(0x7f0000000280)={0x0, 0xb0a7, 0x2, 0x3, 0x28, 0x0, r0}, &(0x7f0000ffd000/0x1000)=nil, &(0x7f0000ffe000/0x2000)=nil, &(0x7f0000000000)=0x0, &(0x7f0000000080)) syz_io_uring_submit(r2, r1, &(0x7f0000000240)=@IORING_OP_FADVISE={0x18, 0x0, 0x0, @fd, 0x2}, 0x0) sigaltstack(&(0x7f0000ffd000/0x1000)=nil, 0x0) 10:19:36 executing program 7: perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000040), 0x2, 0x0) write$binfmt_aout(r0, &(0x7f0000000640), 0x20) read(r0, &(0x7f0000000100)=""/146, 0x92) 10:19:36 executing program 4: r0 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x46e2, 0x0) r1 = dup2(r0, r0) r2 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000040), 0x2, 0x0) mount$9p_fd(0x0, &(0x7f0000000000)='./file0\x00', 0x0, 0x0, &(0x7f00000004c0)={'trans=fd,', {'rfdno', 0x3d, r1}, 0x2c, {'wfdno', 0x3d, r2}, 0x2c, {[{@debug}], [{@hash}, {@euid_gt}, {@fsmagic={'fsmagic', 0x3d, 0xfffffffffffffffc}}, {@euid_eq={'euid', 0x3d, 0xffffffffffffffff}}]}}) 10:19:36 executing program 5 (fault-call:3 fault-nth:21): r0 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x46e2, 0x0) r1 = dup2(r0, r0) r2 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000040), 0x2, 0x0) mount$9p_fd(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f00000000c0), 0x0, &(0x7f00000004c0)={'trans=fd,', {'rfdno', 0x3d, r1}, 0x2c, {'wfdno', 0x3d, r2}}) 10:19:36 executing program 3: perf_event_open(0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000040), 0x2, 0x0) write$binfmt_aout(r0, &(0x7f0000000640), 0x20) read(r0, &(0x7f0000000100)=""/146, 0x92) 10:19:36 executing program 1 (fault-call:3 fault-nth:15): r0 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x46e2, 0x0) r1 = dup2(r0, r0) r2 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000040), 0x2, 0x0) mount$9p_fd(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f00000000c0), 0x0, &(0x7f00000004c0)={'trans=fd,', {'rfdno', 0x3d, r1}, 0x2c, {'wfdno', 0x3d, r2}}) 10:19:36 executing program 6: perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r0 = socket$inet6_tcp(0xa, 0x1, 0x0) fcntl$setstatus(r0, 0x4, 0x2000) splice(r0, &(0x7f0000000000)=0xee6, r0, &(0x7f00000000c0)=0x1, 0x4, 0xc) fork() write$binfmt_aout(0xffffffffffffffff, &(0x7f0000000640), 0x20) 10:19:36 executing program 2: r0 = socket$netlink(0x10, 0x3, 0x0) r1 = fcntl$dupfd(r0, 0x0, r0) getsockopt$netlink(r1, 0x10e, 0x0, 0x0, 0xfffffffffffffffe) r2 = syz_genetlink_get_family_id$tipc2(0x0, 0xffffffffffffffff) sendmsg$TIPC_NL_LINK_GET(0xffffffffffffffff, &(0x7f0000000280)={&(0x7f0000000140)={0x10, 0x0, 0x0, 0x400000}, 0xc, &(0x7f0000000240)={&(0x7f00000001c0)={0x44, r2, 0x1, 0x70bd27, 0x25dfdbfc, {}, [@TIPC_NLA_SOCK={0x18, 0x2, 0x0, 0x1, [@TIPC_NLA_SOCK_CON={0x14, 0x3, 0x0, 0x1, [@TIPC_NLA_CON_FLAG={0x8, 0x1, 0x10000}, @TIPC_NLA_CON_NODE={0x8, 0x2, 0x459}]}]}, @TIPC_NLA_MEDIA={0x18, 0x5, 0x0, 0x1, [@TIPC_NLA_MEDIA_PROP={0x14, 0x2, 0x0, 0x1, [@TIPC_NLA_PROP_PRIO={0x8, 0x1, 0x1c}, @TIPC_NLA_PROP_WIN={0x8}]}]}]}, 0x44}, 0x1, 0x0, 0x0, 0x20040000}, 0x0) sendmsg$TIPC_NL_MON_SET(0xffffffffffffffff, &(0x7f0000000400)={&(0x7f00000002c0)={0x10, 0x0, 0x0, 0x80000000}, 0xc, &(0x7f00000003c0)={&(0x7f0000000300)={0xc0, r2, 0x800, 0x70bd2c, 0x25dfdbfc, {}, [@TIPC_NLA_PUBL={0xc, 0x3, 0x0, 0x1, [@TIPC_NLA_PUBL_UPPER={0x8, 0x3, 0x80}]}, @TIPC_NLA_BEARER={0x58, 0x1, 0x0, 0x1, [@TIPC_NLA_BEARER_UDP_OPTS={0x2c, 0x4, {{0x14, 0x1, @in={0x2, 0x4e24, @private=0xa010102}}, {0x14, 0x2, @in={0x2, 0x4e21, @private=0xa010100}}}}, @TIPC_NLA_BEARER_NAME={0x15, 0x1, @l2={'eth', 0x3a, 'team_slave_0\x00'}}, @TIPC_NLA_BEARER_NAME={0xd, 0x1, @udp='udp:syz2\x00'}]}, @TIPC_NLA_BEARER={0x48, 0x1, 0x0, 0x1, [@TIPC_NLA_BEARER_DOMAIN={0x8, 0x3, 0xd9a3}, @TIPC_NLA_BEARER_UDP_OPTS={0x2c, 0x4, {{0x14, 0x1, @in={0x2, 0x4e20, @local}}, {0x14, 0x2, @in={0x2, 0x4e24, @remote}}}}, @TIPC_NLA_BEARER_NAME={0xd, 0x1, @udp='udp:syz2\x00'}]}]}, 0xc0}, 0x1, 0x0, 0x0, 0x20000800}, 0x4000) sendmsg$TIPC_NL_MON_PEER_GET(r1, &(0x7f0000000380)={&(0x7f00000001c0)={0x10, 0x0, 0x0, 0x2000000}, 0xc, &(0x7f0000000340)={&(0x7f0000000440)={0x148, r2, 0x200, 0x70bd27, 0x25dfdbfc, {}, [@TIPC_NLA_MEDIA={0xcc, 0x5, 0x0, 0x1, [@TIPC_NLA_MEDIA_NAME={0x8, 0x1, 'eth\x00'}, @TIPC_NLA_MEDIA_PROP={0xc, 0x2, 0x0, 0x1, [@TIPC_NLA_PROP_WIN={0x8, 0x3, 0xfffffff9}]}, @TIPC_NLA_MEDIA_PROP={0x44, 0x2, 0x0, 0x1, [@TIPC_NLA_PROP_PRIO={0x8, 0x1, 0x11}, @TIPC_NLA_PROP_PRIO={0x8, 0x1, 0xa}, @TIPC_NLA_PROP_MTU={0x8, 0x4, 0x7}, @TIPC_NLA_PROP_TOL={0x8, 0x2, 0x1}, @TIPC_NLA_PROP_PRIO={0x8, 0x1, 0xc}, @TIPC_NLA_PROP_PRIO={0x8, 0x1, 0x19}, @TIPC_NLA_PROP_TOL={0x8, 0x2, 0x2}, @TIPC_NLA_PROP_PRIO={0x8, 0x1, 0xa}]}, @TIPC_NLA_MEDIA_PROP={0x4c, 0x2, 0x0, 0x1, [@TIPC_NLA_PROP_PRIO={0x8, 0x1, 0x15}, @TIPC_NLA_PROP_PRIO={0x8, 0x1, 0xc}, @TIPC_NLA_PROP_WIN={0x8, 0x3, 0x7}, @TIPC_NLA_PROP_WIN={0x8, 0x3, 0x7ff}, @TIPC_NLA_PROP_MTU={0x8, 0x4, 0x4}, @TIPC_NLA_PROP_WIN={0x8, 0x3, 0x4}, @TIPC_NLA_PROP_WIN={0x8, 0x3, 0x4ec}, @TIPC_NLA_PROP_MTU={0x8, 0x4, 0xfffffffb}, @TIPC_NLA_PROP_MTU={0x8}]}, @TIPC_NLA_MEDIA_PROP={0x24, 0x2, 0x0, 0x1, [@TIPC_NLA_PROP_WIN={0x8, 0x3, 0x10000}, @TIPC_NLA_PROP_WIN={0x8, 0x3, 0x9}, @TIPC_NLA_PROP_WIN={0x8, 0x3, 0x5}, @TIPC_NLA_PROP_WIN={0x8}]}]}, @TIPC_NLA_LINK={0x18, 0x4, 0x0, 0x1, [@TIPC_NLA_LINK_NAME={0x13, 0x1, 'broadcast-link\x00'}]}, @TIPC_NLA_SOCK={0x50, 0x2, 0x0, 0x1, [@TIPC_NLA_SOCK_HAS_PUBL={0x4}, @TIPC_NLA_SOCK_CON={0x3c, 0x3, 0x0, 0x1, [@TIPC_NLA_CON_NODE={0x8, 0x2, 0x3}, @TIPC_NLA_CON_FLAG={0x8, 0x1, 0x8}, @TIPC_NLA_CON_NODE={0x8, 0x2, 0x9}, @TIPC_NLA_CON_FLAG={0x8, 0x1, 0x80000001}, @TIPC_NLA_CON_FLAG={0x8, 0x1, 0x5d8}, @TIPC_NLA_CON_NODE={0x8, 0x2, 0x3}, @TIPC_NLA_CON_NODE={0x8, 0x2, 0x8}]}, @TIPC_NLA_SOCK_HAS_PUBL={0x4}, @TIPC_NLA_SOCK_ADDR={0x8, 0x1, 0x7}]}]}, 0x148}, 0x1, 0x0, 0x0, 0x2000c001}, 0x2000800) sendmsg$IPVS_CMD_NEW_DEST(0xffffffffffffffff, &(0x7f0000000180)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x80}, 0xc, &(0x7f0000000140)={&(0x7f0000000040)={0xd4, 0x0, 0x10, 0x70bd27, 0x25dfdbfb, {}, [@IPVS_CMD_ATTR_TIMEOUT_TCP_FIN={0x8, 0x5, 0x3}, @IPVS_CMD_ATTR_SERVICE={0x38, 0x1, 0x0, 0x1, [@IPVS_SVC_ATTR_FLAGS={0xc, 0x7, {0x6, 0x21}}, @IPVS_SVC_ATTR_PE_NAME={0x8}, @IPVS_SVC_ATTR_AF={0x6, 0x1, 0x2}, @IPVS_SVC_ATTR_SCHED_NAME={0x8, 0x6, 'wrr\x00'}, @IPVS_SVC_ATTR_AF={0x6, 0x1, 0x2}, @IPVS_SVC_ATTR_AF={0x6, 0x1, 0x2}]}, @IPVS_CMD_ATTR_TIMEOUT_TCP_FIN={0x8}, @IPVS_CMD_ATTR_TIMEOUT_TCP_FIN={0x8, 0x5, 0x101}, @IPVS_CMD_ATTR_DEST={0x28, 0x2, 0x0, 0x1, [@IPVS_DEST_ATTR_ADDR={0x14, 0x1, @ipv6=@loopback}, @IPVS_DEST_ATTR_TUN_FLAGS={0x6, 0xf, 0x6}, @IPVS_DEST_ATTR_ADDR_FAMILY={0x6, 0xb, 0x2}]}, @IPVS_CMD_ATTR_DAEMON={0xc, 0x3, 0x0, 0x1, [@IPVS_DAEMON_ATTR_STATE={0x8, 0x1, 0x2}]}, @IPVS_CMD_ATTR_TIMEOUT_TCP_FIN={0x8}, @IPVS_CMD_ATTR_SERVICE={0x2c, 0x1, 0x0, 0x1, [@IPVS_SVC_ATTR_PE_NAME={0x8}, @IPVS_SVC_ATTR_FLAGS={0xc, 0x7, {0x20, 0x20}}, @IPVS_SVC_ATTR_ADDR={0x14, 0x3, @ipv4=@loopback}]}, @IPVS_CMD_ATTR_TIMEOUT_TCP_FIN={0x8}]}, 0xd4}, 0x1, 0x0, 0x0, 0x4}, 0x8010) sendmsg$NL80211_CMD_SET_TID_CONFIG(0xffffffffffffffff, &(0x7f0000000ac0)={&(0x7f0000000980)={0x10, 0x0, 0x0, 0x40000}, 0xc, &(0x7f0000000a80)={&(0x7f00000009c0)={0x88, 0x0, 0x400, 0x70bd2d, 0x25dfdbfb, {{}, {@val={0x8}, @void}}, [@NL80211_ATTR_TID_CONFIG={0x6c, 0x11d, 0x0, 0x1, [{0x54, 0x0, 0x0, 0x1, [@NL80211_TID_CONFIG_ATTR_RETRY_SHORT={0x5, 0x7, 0x34}, @NL80211_TID_CONFIG_ATTR_RTSCTS_CTRL={0x5}, @NL80211_TID_CONFIG_ATTR_RETRY_LONG={0x5, 0x8, 0x8b}, @NL80211_TID_CONFIG_ATTR_AMPDU_CTRL={0x5}, @NL80211_TID_CONFIG_ATTR_AMPDU_CTRL={0x5}, @NL80211_TID_CONFIG_ATTR_RTSCTS_CTRL={0x5}, @NL80211_TID_CONFIG_ATTR_TIDS={0x6, 0x5, 0x53}, @NL80211_TID_CONFIG_ATTR_AMPDU_CTRL={0x5}, @NL80211_TID_CONFIG_ATTR_RTSCTS_CTRL={0x5, 0xa, 0x1}, @NL80211_TID_CONFIG_ATTR_RETRY_SHORT={0x5, 0x7, 0x97}]}, {0x14, 0x0, 0x0, 0x1, [@NL80211_TID_CONFIG_ATTR_AMSDU_CTRL={0x5, 0xb, 0x1}, @NL80211_TID_CONFIG_ATTR_AMSDU_CTRL={0x5, 0xb, 0x1}]}]}]}, 0x88}, 0x1, 0x0, 0x0, 0x80}, 0xc450) perf_event_open(&(0x7f0000001d80)={0x2, 0x80, 0x93, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) getresgid(&(0x7f0000000600), &(0x7f0000000640), &(0x7f0000000680)) r3 = socket$netlink(0x10, 0x3, 0x0) r4 = fcntl$dupfd(r3, 0x0, r3) getsockopt$netlink(r4, 0x10e, 0x0, 0x0, 0xfffffffffffffffe) r5 = syz_genetlink_get_family_id$nl80211(&(0x7f00000006c0), r0) ioctl$sock_SIOCGIFINDEX_80211(r0, 0x8933, &(0x7f0000000700)={'wlan1\x00', 0x0}) r7 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000840), r4) ioctl$sock_SIOCGIFINDEX_80211(r4, 0x8933, &(0x7f0000000880)={'wlan1\x00', 0x0}) sendmsg$NL80211_CMD_GET_WIPHY(r0, &(0x7f0000000940)={&(0x7f0000000800)={0x10, 0x0, 0x0, 0x2000000}, 0xc, &(0x7f0000000900)={&(0x7f00000008c0)={0x28, r7, 0x8, 0x70bd26, 0x25dfdbfb, {{}, {@void, @val={0x8, 0x3, r8}, @val={0xc, 0x99, {0x5, 0x3}}}}, ["", "", "", ""]}, 0x28}}, 0x40000c0) sendmsg$NL80211_CMD_GET_INTERFACE(r4, &(0x7f00000007c0)={&(0x7f00000005c0)={0x10, 0x0, 0x0, 0x10000000}, 0xc, &(0x7f0000000780)={&(0x7f0000000740)={0x1c, r5, 0x4, 0x70bd29, 0x25dfdbfc, {{}, {@val={0x8, 0x3, r6}, @void}}, [""]}, 0x1c}, 0x1, 0x0, 0x0, 0x4}, 0x20000) [ 666.373282] FAULT_INJECTION: forcing a failure. [ 666.373282] name failslab, interval 1, probability 0, space 0, times 0 [ 666.374154] FAULT_INJECTION: forcing a failure. [ 666.374154] name failslab, interval 1, probability 0, space 0, times 0 [ 666.375256] CPU: 0 PID: 7085 Comm: syz-executor.5 Not tainted 5.10.56 #1 [ 666.375272] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS rel-1.14.0-0-g155821a1990b-prebuilt.qemu.org 04/01/2014 [ 666.380749] Call Trace: [ 666.381205] dump_stack+0x107/0x163 [ 666.381841] should_fail.cold+0x5/0xa [ 666.382524] should_failslab+0x5/0x10 [ 666.383163] __kmalloc_track_caller+0x79/0x3c0 [ 666.383963] ? p9_client_create+0x41d/0x1090 [ 666.384712] ? lockdep_init_map_waits+0x26a/0x700 [ 666.385580] kstrdup+0x36/0x70 [ 666.386121] p9_client_create+0x41d/0x1090 [ 666.386866] ? lock_downgrade+0x6d0/0x6d0 [ 666.387562] ? p9_client_flush+0x430/0x430 [ 666.388333] ? lockdep_init_map_waits+0x26a/0x700 [ 666.389155] ? __raw_spin_lock_init+0x34/0x100 [ 666.389973] v9fs_session_init+0x1dd/0x1690 [ 666.390707] ? kmem_cache_alloc_trace+0x151/0x360 [ 666.391551] ? v9fs_show_options+0x690/0x690 [ 666.392310] ? kasan_unpoison_shadow+0x33/0x40 [ 666.393126] ? __kasan_kmalloc.constprop.0+0xc2/0xd0 [ 666.394006] v9fs_mount+0x79/0x8f0 [ 666.394639] ? v9fs_write_inode+0x60/0x60 [ 666.395329] legacy_get_tree+0x105/0x220 [ 666.396039] vfs_get_tree+0x8e/0x2f0 [ 666.396667] path_mount+0x139a/0x2080 [ 666.397339] ? strncpy_from_user+0x9e/0x460 [ 666.398080] ? finish_automount+0xa40/0xa40 [ 666.398854] ? getname_flags.part.0+0x1dd/0x4f0 [ 666.399633] ? _copy_from_user+0xfb/0x1b0 [ 666.400363] __x64_sys_mount+0x27e/0x300 [ 666.401042] ? path_mount+0x2080/0x2080 [ 666.401758] ? rcu_read_lock_sched_held+0x3a/0x70 [ 666.402563] do_syscall_64+0x33/0x40 [ 666.403236] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 666.404097] RIP: 0033:0x466609 [ 666.404672] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 666.407768] RSP: 002b:00007fd61fccc188 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5 [ 666.409094] RAX: ffffffffffffffda RBX: 000000000056bf80 RCX: 0000000000466609 [ 666.410302] RDX: 00000000200000c0 RSI: 0000000020000000 RDI: 0000000000000000 [ 666.411491] RBP: 00007fd61fccc1d0 R08: 00000000200004c0 R09: 0000000000000000 [ 666.412699] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 666.413869] R13: 00007fff09eaa3cf R14: 00007fd61fccc300 R15: 0000000000022000 [ 666.415102] CPU: 1 PID: 7082 Comm: syz-executor.1 Not tainted 5.10.56 #1 [ 666.416587] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS rel-1.14.0-0-g155821a1990b-prebuilt.qemu.org 04/01/2014 [ 666.419027] Call Trace: [ 666.419594] dump_stack+0x107/0x163 [ 666.420386] should_fail.cold+0x5/0xa [ 666.421213] should_failslab+0x5/0x10 [ 666.422050] __kmalloc_track_caller+0x79/0x3c0 [ 666.423037] ? v9fs_session_init+0xa7/0x1690 [ 666.423985] ? kernel_text_address+0xea/0x120 [ 666.424958] kstrdup+0x36/0x70 [ 666.425660] v9fs_session_init+0xa7/0x1690 [ 666.426580] ? find_held_lock+0x2c/0x110 [ 666.427458] ? kmem_cache_alloc_trace+0x151/0x360 [ 666.428493] ? v9fs_show_options+0x690/0x690 [ 666.429479] ? kasan_unpoison_shadow+0x33/0x40 [ 666.430467] ? __kasan_kmalloc.constprop.0+0xc2/0xd0 [ 666.431562] v9fs_mount+0x79/0x8f0 [ 666.432329] ? v9fs_write_inode+0x60/0x60 [ 666.433224] legacy_get_tree+0x105/0x220 [ 666.434133] vfs_get_tree+0x8e/0x2f0 [ 666.434954] path_mount+0x139a/0x2080 [ 666.435780] ? strncpy_from_user+0x9e/0x460 [ 666.436725] ? finish_automount+0xa40/0xa40 [ 666.437669] ? getname_flags.part.0+0x1dd/0x4f0 [ 666.438678] ? _copy_from_user+0xfb/0x1b0 [ 666.439592] __x64_sys_mount+0x27e/0x300 [ 666.440427] ? path_mount+0x2080/0x2080 [ 666.441200] ? rcu_read_lock_sched_held+0x3a/0x70 [ 666.442134] do_syscall_64+0x33/0x40 10:19:36 executing program 3: perf_event_open(&(0x7f0000000040)={0x0, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000040), 0x2, 0x0) write$binfmt_aout(r0, &(0x7f0000000640), 0x20) read(r0, &(0x7f0000000100)=""/146, 0x92) [ 666.442849] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 666.444009] RIP: 0033:0x466609 [ 666.444639] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 666.448161] RSP: 002b:00007fdc84e63188 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5 [ 666.449641] RAX: ffffffffffffffda RBX: 000000000056bf80 RCX: 0000000000466609 [ 666.451015] RDX: 00000000200000c0 RSI: 0000000020000000 RDI: 0000000000000000 [ 666.452395] RBP: 00007fdc84e631d0 R08: 00000000200004c0 R09: 0000000000000000 [ 666.453772] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 666.455139] R13: 00007ffc7c6b7e8f R14: 00007fdc84e63300 R15: 0000000000022000 10:19:36 executing program 4: r0 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x46e2, 0x0) dup2(r0, r0) openat$ptmx(0xffffffffffffff9c, &(0x7f0000000040), 0x2, 0x0) mount$9p_fd(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f00000000c0), 0x0, 0x0) [ 666.470993] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=0 sclass=netlink_route_socket pid=7088 comm=syz-executor.2 10:19:36 executing program 3: perf_event_open(&(0x7f0000000040)={0x0, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000040), 0x2, 0x0) write$binfmt_aout(r0, &(0x7f0000000640), 0x20) read(r0, &(0x7f0000000100)=""/146, 0x92) 10:19:36 executing program 5 (fault-call:3 fault-nth:22): r0 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x46e2, 0x0) r1 = dup2(r0, r0) r2 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000040), 0x2, 0x0) mount$9p_fd(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f00000000c0), 0x0, &(0x7f00000004c0)={'trans=fd,', {'rfdno', 0x3d, r1}, 0x2c, {'wfdno', 0x3d, r2}}) 10:19:36 executing program 7: r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000040), 0x2, 0x0) write$binfmt_aout(r0, &(0x7f0000000640), 0x20) read(r0, &(0x7f0000000100)=""/146, 0x92) 10:19:36 executing program 0: r0 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x46e2, 0x0) r1 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffd000/0x3000)=nil, 0x3000, 0x0, 0x13, r0, 0x0) r2 = syz_io_uring_setup(0x4b9f, &(0x7f0000000140)={0x0, 0x0, 0x1, 0xfffffffc, 0x0, 0x0, r0}, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000ffd000/0x3000)=nil, &(0x7f00000000c0), &(0x7f00000001c0)=0x0) clock_gettime(0x0, &(0x7f0000000100)={0x0, 0x0}) r6 = io_uring_register$IORING_REGISTER_PERSONALITY(0xffffffffffffffff, 0x9, 0x0, 0x0) syz_io_uring_submit(r1, r3, &(0x7f0000000240)=@IORING_OP_TIMEOUT={0xb, 0x4, 0x0, 0x0, 0xa, &(0x7f0000000200)={r4, r5+10000000}, 0x1, 0x1, 0x0, {0x0, r6}}, 0x0) syz_io_uring_setup(0x79aa, &(0x7f0000000280)={0x0, 0x6f4d, 0x8, 0x0, 0x309, 0x0, r2}, &(0x7f0000ffd000/0x3000)=nil, &(0x7f0000ffc000/0x2000)=nil, &(0x7f0000000000), &(0x7f0000000080)) sigaltstack(&(0x7f0000ffd000/0x1000)=nil, 0x0) madvise(&(0x7f0000ffd000/0x3000)=nil, 0x3000, 0x9) [ 666.614292] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=0 sclass=netlink_route_socket pid=7110 comm=syz-executor.2 [ 666.626859] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=0 sclass=netlink_route_socket pid=7088 comm=syz-executor.2 10:19:36 executing program 4: r0 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x46e2, 0x0) dup2(r0, r0) openat$ptmx(0xffffffffffffff9c, &(0x7f0000000040), 0x2, 0x0) mount$9p_fd(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f00000000c0), 0x0, 0x0) 10:19:36 executing program 6: perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r0 = socket$inet6_tcp(0xa, 0x1, 0x0) fcntl$setstatus(r0, 0x4, 0x2000) splice(r0, &(0x7f0000000000)=0xee6, r0, &(0x7f00000000c0)=0x1, 0x4, 0xc) fork() write$binfmt_aout(0xffffffffffffffff, &(0x7f0000000640), 0x20) [ 666.662055] FAULT_INJECTION: forcing a failure. [ 666.662055] name failslab, interval 1, probability 0, space 0, times 0 [ 666.664308] CPU: 0 PID: 7114 Comm: syz-executor.5 Not tainted 5.10.56 #1 [ 666.665601] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS rel-1.14.0-0-g155821a1990b-prebuilt.qemu.org 04/01/2014 [ 666.667771] Call Trace: [ 666.668289] dump_stack+0x107/0x163 [ 666.668985] should_fail.cold+0x5/0xa [ 666.669728] ? create_object.isra.0+0x3a/0xa20 [ 666.670597] should_failslab+0x5/0x10 [ 666.671319] kmem_cache_alloc+0x5b/0x350 [ 666.672099] ? lock_downgrade+0x6d0/0x6d0 [ 666.672905] create_object.isra.0+0x3a/0xa20 [ 666.673813] ? __kasan_kmalloc.constprop.0+0xc2/0xd0 [ 666.674785] __kmalloc_track_caller+0x177/0x3c0 [ 666.675669] ? p9_client_create+0x41d/0x1090 [ 666.676512] kstrdup+0x36/0x70 [ 666.677128] p9_client_create+0x41d/0x1090 [ 666.677938] ? lock_downgrade+0x6d0/0x6d0 [ 666.678732] ? p9_client_flush+0x430/0x430 [ 666.679548] ? lockdep_init_map_waits+0x26a/0x700 [ 666.680466] ? __raw_spin_lock_init+0x34/0x100 [ 666.681355] v9fs_session_init+0x1dd/0x1690 [ 666.682189] ? kmem_cache_alloc_trace+0x151/0x360 [ 666.683111] ? v9fs_show_options+0x690/0x690 [ 666.683967] ? kasan_unpoison_shadow+0x33/0x40 [ 666.684836] ? __kasan_kmalloc.constprop.0+0xc2/0xd0 [ 666.685821] v9fs_mount+0x79/0x8f0 [ 666.686506] ? v9fs_write_inode+0x60/0x60 [ 666.687307] legacy_get_tree+0x105/0x220 [ 666.688114] vfs_get_tree+0x8e/0x2f0 [ 666.688821] path_mount+0x139a/0x2080 [ 666.689589] ? strncpy_from_user+0x9e/0x460 [ 666.690410] ? finish_automount+0xa40/0xa40 [ 666.691234] ? getname_flags.part.0+0x1dd/0x4f0 [ 666.692117] ? _copy_from_user+0xfb/0x1b0 [ 666.692916] __x64_sys_mount+0x27e/0x300 [ 666.693715] ? path_mount+0x2080/0x2080 [ 666.694478] ? rcu_read_lock_sched_held+0x3a/0x70 [ 666.695423] do_syscall_64+0x33/0x40 [ 666.696138] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 666.697110] RIP: 0033:0x466609 [ 666.697735] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 666.701479] RSP: 002b:00007fd61fccc188 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5 [ 666.702935] RAX: ffffffffffffffda RBX: 000000000056bf80 RCX: 0000000000466609 [ 666.704303] RDX: 00000000200000c0 RSI: 0000000020000000 RDI: 0000000000000000 [ 666.705694] RBP: 00007fd61fccc1d0 R08: 00000000200004c0 R09: 0000000000000000 [ 666.707283] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 666.708816] R13: 00007fff09eaa3cf R14: 00007fd61fccc300 R15: 0000000000022000 10:19:36 executing program 7: r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000040), 0x2, 0x0) write$binfmt_aout(r0, &(0x7f0000000640), 0x20) read(r0, &(0x7f0000000100)=""/146, 0x92) 10:19:36 executing program 3: perf_event_open(&(0x7f0000000040)={0x0, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000040), 0x2, 0x0) write$binfmt_aout(r0, &(0x7f0000000640), 0x20) read(r0, &(0x7f0000000100)=""/146, 0x92) [ 666.753996] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=0 sclass=netlink_route_socket pid=7092 comm=syz-executor.2 [ 666.758101] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=0 sclass=netlink_route_socket pid=7110 comm=syz-executor.2 [ 666.761844] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=0 sclass=netlink_route_socket pid=7110 comm=syz-executor.2 10:19:36 executing program 6: perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r0 = socket$inet6_tcp(0xa, 0x1, 0x0) fcntl$setstatus(r0, 0x4, 0x2000) splice(r0, &(0x7f0000000000)=0xee6, r0, &(0x7f00000000c0)=0x1, 0x4, 0xc) r1 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000040), 0x2, 0x0) write$binfmt_aout(r1, &(0x7f0000000640), 0x20) 10:19:36 executing program 4: r0 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x46e2, 0x0) dup2(r0, r0) openat$ptmx(0xffffffffffffff9c, &(0x7f0000000040), 0x2, 0x0) mount$9p_fd(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f00000000c0), 0x0, 0x0) 10:19:36 executing program 2: perf_event_open(0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000040), 0x2, 0x0) write$binfmt_aout(r0, &(0x7f0000000640), 0x20) read(r0, &(0x7f0000000100)=""/146, 0x92) 10:19:49 executing program 7: r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000040), 0x2, 0x0) write$binfmt_aout(r0, &(0x7f0000000640), 0x20) read(r0, &(0x7f0000000100)=""/146, 0x92) 10:19:49 executing program 4: r0 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x46e2, 0x0) dup2(r0, r0) r1 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000040), 0x2, 0x0) mount$9p_fd(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f00000000c0), 0x0, &(0x7f00000004c0)={'trans=fd,', {}, 0x2c, {'wfdno', 0x3d, r1}, 0x2c, {[{@debug}], [{@hash}, {@euid_gt}, {@fsmagic={'fsmagic', 0x3d, 0xfffffffffffffffc}}, {@euid_eq={'euid', 0x3d, 0xffffffffffffffff}}]}}) 10:19:49 executing program 1 (fault-call:3 fault-nth:16): r0 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x46e2, 0x0) r1 = dup2(r0, r0) r2 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000040), 0x2, 0x0) mount$9p_fd(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f00000000c0), 0x0, &(0x7f00000004c0)={'trans=fd,', {'rfdno', 0x3d, r1}, 0x2c, {'wfdno', 0x3d, r2}}) 10:19:49 executing program 2: r0 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x46e2, 0x0) r1 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffd000/0x3000)=nil, 0x3000, 0x0, 0x13, r0, 0x0) syz_io_uring_setup(0x4b9f, &(0x7f0000000140), &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000ffd000/0x3000)=nil, &(0x7f00000000c0), &(0x7f00000001c0)=0x0) syz_io_uring_submit(r1, r2, &(0x7f0000000240)=@IORING_OP_FADVISE={0x18, 0x0, 0x0, @fd, 0x2}, 0x0) r3 = socket$netlink(0x10, 0x3, 0x0) r4 = fcntl$dupfd(r3, 0x0, r3) getsockopt$netlink(r4, 0x10e, 0x0, 0x0, 0xfffffffffffffffe) io_uring_enter(r4, 0x9fa, 0x648c, 0x1, &(0x7f0000000000)={[0x8]}, 0x8) sigaltstack(&(0x7f0000ffd000/0x1000)=nil, 0x0) 10:19:49 executing program 5 (fault-call:3 fault-nth:23): r0 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x46e2, 0x0) r1 = dup2(r0, r0) r2 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000040), 0x2, 0x0) mount$9p_fd(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f00000000c0), 0x0, &(0x7f00000004c0)={'trans=fd,', {'rfdno', 0x3d, r1}, 0x2c, {'wfdno', 0x3d, r2}}) 10:19:49 executing program 0: r0 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x46e2, 0x0) r1 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffd000/0x3000)=nil, 0x3000, 0x0, 0x13, r0, 0x0) syz_io_uring_setup(0x4b9f, &(0x7f0000000140), &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000ffd000/0x3000)=nil, &(0x7f00000000c0), &(0x7f00000001c0)=0x0) syz_io_uring_submit(r1, r2, &(0x7f0000000240)=@IORING_OP_FADVISE={0x18, 0x0, 0x0, @fd, 0x2}, 0x0) 10:19:49 executing program 6: perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r0 = socket$inet6_tcp(0xa, 0x1, 0x0) fcntl$setstatus(r0, 0x4, 0x2000) r1 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000040), 0x2, 0x0) write$binfmt_aout(r1, &(0x7f0000000640), 0x20) 10:19:49 executing program 3: perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000040), 0x2, 0x0) write$binfmt_aout(r0, &(0x7f0000000640), 0x20) read(r0, &(0x7f0000000100)=""/146, 0x92) [ 679.680256] FAULT_INJECTION: forcing a failure. [ 679.680256] name failslab, interval 1, probability 0, space 0, times 0 [ 679.681588] CPU: 0 PID: 7155 Comm: syz-executor.1 Not tainted 5.10.56 #1 [ 679.682315] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS rel-1.14.0-0-g155821a1990b-prebuilt.qemu.org 04/01/2014 [ 679.683521] Call Trace: [ 679.683811] dump_stack+0x107/0x163 [ 679.684205] should_fail.cold+0x5/0xa [ 679.684614] ? create_object.isra.0+0x3a/0xa20 [ 679.685111] should_failslab+0x5/0x10 [ 679.685520] kmem_cache_alloc+0x5b/0x350 [ 679.685979] create_object.isra.0+0x3a/0xa20 [ 679.686447] ? __kasan_kmalloc.constprop.0+0xc2/0xd0 [ 679.686990] __kmalloc_track_caller+0x177/0x3c0 [ 679.687490] ? v9fs_session_init+0xa7/0x1690 [ 679.687993] ? kernel_text_address+0xea/0x120 [ 679.688473] kstrdup+0x36/0x70 [ 679.688817] v9fs_session_init+0xa7/0x1690 [ 679.689288] ? find_held_lock+0x2c/0x110 [ 679.689738] ? kmem_cache_alloc_trace+0x151/0x360 [ 679.690258] ? v9fs_show_options+0x690/0x690 [ 679.690746] ? kasan_unpoison_shadow+0x33/0x40 [ 679.691238] ? __kasan_kmalloc.constprop.0+0xc2/0xd0 [ 679.691796] v9fs_mount+0x79/0x8f0 [ 679.692177] ? v9fs_write_inode+0x60/0x60 [ 679.692624] legacy_get_tree+0x105/0x220 [ 679.693062] vfs_get_tree+0x8e/0x2f0 [ 679.693464] path_mount+0x139a/0x2080 [ 679.693887] ? strncpy_from_user+0x9e/0x460 [ 679.694351] ? finish_automount+0xa40/0xa40 [ 679.694819] ? getname_flags.part.0+0x1dd/0x4f0 [ 679.695318] ? _copy_from_user+0xfb/0x1b0 [ 679.695798] __x64_sys_mount+0x27e/0x300 [ 679.696256] ? path_mount+0x2080/0x2080 [ 679.696698] ? rcu_read_lock_sched_held+0x3a/0x70 [ 679.697215] do_syscall_64+0x33/0x40 [ 679.697635] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 679.698267] RIP: 0033:0x466609 [ 679.698650] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 679.700658] RSP: 002b:00007fdc84e63188 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5 [ 679.701484] RAX: ffffffffffffffda RBX: 000000000056bf80 RCX: 0000000000466609 [ 679.702259] RDX: 00000000200000c0 RSI: 0000000020000000 RDI: 0000000000000000 [ 679.703016] RBP: 00007fdc84e631d0 R08: 00000000200004c0 R09: 0000000000000000 [ 679.703915] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 679.704779] R13: 00007ffc7c6b7e8f R14: 00007fdc84e63300 R15: 0000000000022000 [ 679.714821] FAULT_INJECTION: forcing a failure. [ 679.714821] name failslab, interval 1, probability 0, space 0, times 0 [ 679.716145] CPU: 0 PID: 7156 Comm: syz-executor.5 Not tainted 5.10.56 #1 [ 679.716870] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS rel-1.14.0-0-g155821a1990b-prebuilt.qemu.org 04/01/2014 [ 679.718111] Call Trace: [ 679.718418] dump_stack+0x107/0x163 [ 679.718810] should_fail.cold+0x5/0xa [ 679.719241] should_failslab+0x5/0x10 [ 679.719654] __kmalloc_track_caller+0x79/0x3c0 [ 679.720086] 9pnet: Insufficient options for proto=fd [ 679.720138] ? p9_client_create+0x51e/0x1090 [ 679.720155] kmemdup_nul+0x2d/0xa0 [ 679.722145] p9_client_create+0x51e/0x1090 [ 679.722605] ? p9_client_flush+0x430/0x430 [ 679.723066] ? lockdep_init_map_waits+0x26a/0x700 [ 679.723595] ? __raw_spin_lock_init+0x34/0x100 [ 679.724133] v9fs_session_init+0x1dd/0x1690 [ 679.724616] ? kmem_cache_alloc_trace+0x151/0x360 [ 679.725137] ? v9fs_show_options+0x690/0x690 [ 679.725640] ? kasan_unpoison_shadow+0x33/0x40 [ 679.726127] ? __kasan_kmalloc.constprop.0+0xc2/0xd0 [ 679.726672] v9fs_mount+0x79/0x8f0 [ 679.727054] ? v9fs_write_inode+0x60/0x60 [ 679.727572] legacy_get_tree+0x105/0x220 [ 679.728037] vfs_get_tree+0x8e/0x2f0 [ 679.728527] path_mount+0x139a/0x2080 [ 679.728957] ? strncpy_from_user+0x9e/0x460 [ 679.729426] ? finish_automount+0xa40/0xa40 [ 679.729899] ? getname_flags.part.0+0x1dd/0x4f0 [ 679.730504] ? _copy_from_user+0xfb/0x1b0 [ 679.730956] __x64_sys_mount+0x27e/0x300 [ 679.731467] ? path_mount+0x2080/0x2080 [ 679.731944] ? rcu_read_lock_sched_held+0x3a/0x70 [ 679.732499] do_syscall_64+0x33/0x40 [ 679.732949] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 679.733507] RIP: 0033:0x466609 [ 679.733879] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 679.735895] RSP: 002b:00007fd61fccc188 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5 [ 679.736727] RAX: ffffffffffffffda RBX: 000000000056bf80 RCX: 0000000000466609 [ 679.737509] RDX: 00000000200000c0 RSI: 0000000020000000 RDI: 0000000000000000 [ 679.738292] RBP: 00007fd61fccc1d0 R08: 00000000200004c0 R09: 0000000000000000 [ 679.739069] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 679.739835] R13: 00007fff09eaa3cf R14: 00007fd61fccc300 R15: 0000000000022000 10:19:49 executing program 3: perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000040), 0x2, 0x0) write$binfmt_aout(r0, &(0x7f0000000640), 0x20) read(r0, &(0x7f0000000100)=""/146, 0x92) 10:19:49 executing program 4: r0 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x46e2, 0x0) dup2(r0, r0) r1 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000040), 0x2, 0x0) mount$9p_fd(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f00000000c0), 0x0, &(0x7f00000004c0)={'trans=fd,', {}, 0x2c, {'wfdno', 0x3d, r1}, 0x2c, {[{@debug}], [{@hash}, {@euid_gt}, {@fsmagic={'fsmagic', 0x3d, 0xfffffffffffffffc}}, {@euid_eq={'euid', 0x3d, 0xffffffffffffffff}}]}}) [ 679.832467] 9pnet: Insufficient options for proto=fd 10:20:01 executing program 1 (fault-call:3 fault-nth:17): r0 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x46e2, 0x0) r1 = dup2(r0, r0) r2 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000040), 0x2, 0x0) mount$9p_fd(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f00000000c0), 0x0, &(0x7f00000004c0)={'trans=fd,', {'rfdno', 0x3d, r1}, 0x2c, {'wfdno', 0x3d, r2}}) 10:20:01 executing program 4: r0 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x46e2, 0x0) dup2(r0, r0) r1 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000040), 0x2, 0x0) mount$9p_fd(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f00000000c0), 0x0, &(0x7f00000004c0)={'trans=fd,', {}, 0x2c, {'wfdno', 0x3d, r1}, 0x2c, {[{@debug}], [{@hash}, {@euid_gt}, {@fsmagic={'fsmagic', 0x3d, 0xfffffffffffffffc}}, {@euid_eq={'euid', 0x3d, 0xffffffffffffffff}}]}}) 10:20:01 executing program 3: perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000040), 0x2, 0x0) write$binfmt_aout(r0, &(0x7f0000000640), 0x20) read(r0, &(0x7f0000000100)=""/146, 0x92) 10:20:01 executing program 6: perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) socket$inet6_tcp(0xa, 0x1, 0x0) r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000040), 0x2, 0x0) write$binfmt_aout(r0, &(0x7f0000000640), 0x20) 10:20:01 executing program 7: perf_event_open(0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000040), 0x2, 0x0) write$binfmt_aout(r0, &(0x7f0000000640), 0x20) read(r0, &(0x7f0000000100)=""/146, 0x92) 10:20:01 executing program 5 (fault-call:3 fault-nth:24): r0 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x46e2, 0x0) r1 = dup2(r0, r0) r2 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000040), 0x2, 0x0) mount$9p_fd(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f00000000c0), 0x0, &(0x7f00000004c0)={'trans=fd,', {'rfdno', 0x3d, r1}, 0x2c, {'wfdno', 0x3d, r2}}) 10:20:01 executing program 0: r0 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x46e2, 0x0) r1 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffd000/0x3000)=nil, 0x3000, 0x0, 0x13, r0, 0x0) syz_io_uring_setup(0x7aa8, &(0x7f0000000280)={0x0, 0xdead, 0x10, 0x3, 0x322}, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000ffe000/0x2000)=nil, &(0x7f0000000080), &(0x7f0000000100)) syz_io_uring_setup(0x4b9f, &(0x7f0000000140), &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000ffd000/0x3000)=nil, &(0x7f00000000c0), &(0x7f00000001c0)=0x0) eventfd(0x31b6) syz_io_uring_submit(r1, r2, &(0x7f0000000240)=@IORING_OP_FADVISE={0x18, 0x0, 0x0, @fd, 0x2}, 0x0) r3 = socket$netlink(0x10, 0x3, 0x0) r4 = fcntl$dupfd(r3, 0x0, r3) getsockopt$netlink(r4, 0x10e, 0x0, 0x0, 0xfffffffffffffffe) r5 = socket$netlink(0x10, 0x3, 0x0) r6 = fcntl$dupfd(r5, 0x0, r5) getsockopt$netlink(r6, 0x10e, 0x0, 0x0, 0xfffffffffffffffe) r7 = eventfd(0x20) io_uring_register$IORING_REGISTER_EVENTFD(r4, 0x4, &(0x7f0000000000)=r7, 0x1) sigaltstack(&(0x7f0000ffd000/0x1000)=nil, 0x0) 10:20:01 executing program 2: r0 = socket$inet(0x2, 0x1, 0x2) setsockopt$inet_int(r0, 0x0, 0x13, &(0x7f0000000180)=0x1, 0x4) bind$inet(r0, &(0x7f0000000c00)={0x2, 0x0, @multicast2}, 0x10) setsockopt$SO_BINDTODEVICE_wg(r0, 0x1, 0x19, &(0x7f0000000000)='wg1\x00', 0x4) sendmsg$nl_generic(0xffffffffffffffff, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000080)={&(0x7f00000002c0)=ANY=[@ANYBLOB="28000000130001000000000000800000b152006a9c8c14104c08"], 0x28}}, 0x0) setsockopt$IP_VS_SO_SET_DEL(r0, 0x0, 0x484, &(0x7f00000000c0)={0x16, @multicast2, 0x4e24, 0x2, 'rr\x00', 0x20, 0x3, 0x12}, 0x2c) bind$inet(r0, &(0x7f0000000040)={0x2, 0x4e23, @private=0xa010101}, 0x10) socket$netlink(0x10, 0x3, 0x8) [ 691.970110] FAULT_INJECTION: forcing a failure. [ 691.970110] name failslab, interval 1, probability 0, space 0, times 0 [ 691.972726] CPU: 0 PID: 7202 Comm: syz-executor.1 Not tainted 5.10.56 #1 [ 691.974232] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS rel-1.14.0-0-g155821a1990b-prebuilt.qemu.org 04/01/2014 [ 691.976689] Call Trace: [ 691.977266] dump_stack+0x107/0x163 [ 691.978066] should_fail.cold+0x5/0xa [ 691.978891] should_failslab+0x5/0x10 [ 691.979712] __kmalloc_track_caller+0x79/0x3c0 [ 691.980695] ? v9fs_session_init+0xe9/0x1690 [ 691.981719] ? kernel_text_address+0xea/0x120 [ 691.982724] kstrdup+0x36/0x70 [ 691.983420] v9fs_session_init+0xe9/0x1690 [ 691.984339] ? find_held_lock+0x2c/0x110 [ 691.985331] ? kmem_cache_alloc_trace+0x151/0x360 [ 691.986707] ? v9fs_show_options+0x690/0x690 [ 691.987885] ? kasan_unpoison_shadow+0x33/0x40 [ 691.989153] ? __kasan_kmalloc.constprop.0+0xc2/0xd0 [ 691.990470] v9fs_mount+0x79/0x8f0 [ 691.991292] ? v9fs_write_inode+0x60/0x60 [ 691.992225] legacy_get_tree+0x105/0x220 [ 691.993132] vfs_get_tree+0x8e/0x2f0 [ 691.993982] path_mount+0x139a/0x2080 [ 691.994855] ? strncpy_from_user+0x9e/0x460 [ 691.996053] ? finish_automount+0xa40/0xa40 [ 691.997247] ? getname_flags.part.0+0x1dd/0x4f0 [ 691.998536] ? _copy_from_user+0xfb/0x1b0 [ 691.999628] __x64_sys_mount+0x27e/0x300 [ 692.000529] ? path_mount+0x2080/0x2080 [ 692.001409] ? rcu_read_lock_sched_held+0x3a/0x70 [ 692.002498] do_syscall_64+0x33/0x40 [ 692.003330] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 692.004454] RIP: 0033:0x466609 [ 692.005170] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 692.009221] RSP: 002b:00007fdc84e63188 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5 [ 692.010876] RAX: ffffffffffffffda RBX: 000000000056bf80 RCX: 0000000000466609 [ 692.012414] RDX: 00000000200000c0 RSI: 0000000020000000 RDI: 0000000000000000 [ 692.013944] RBP: 00007fdc84e631d0 R08: 00000000200004c0 R09: 0000000000000000 [ 692.015467] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 692.017002] R13: 00007ffc7c6b7e8f R14: 00007fdc84e63300 R15: 0000000000022000 10:20:01 executing program 7: perf_event_open(0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000040), 0x2, 0x0) write$binfmt_aout(r0, &(0x7f0000000640), 0x20) read(r0, &(0x7f0000000100)=""/146, 0x92) [ 692.020099] FAULT_INJECTION: forcing a failure. [ 692.020099] name failslab, interval 1, probability 0, space 0, times 0 [ 692.022620] CPU: 1 PID: 7194 Comm: syz-executor.5 Not tainted 5.10.56 #1 [ 692.024081] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS rel-1.14.0-0-g155821a1990b-prebuilt.qemu.org 04/01/2014 [ 692.026534] Call Trace: [ 692.027100] dump_stack+0x107/0x163 [ 692.027898] should_fail.cold+0x5/0xa [ 692.028718] ? create_object.isra.0+0x3a/0xa20 [ 692.029686] should_failslab+0x5/0x10 [ 692.030520] kmem_cache_alloc+0x5b/0x350 [ 692.031395] create_object.isra.0+0x3a/0xa20 [ 692.032338] ? __kasan_kmalloc.constprop.0+0xc2/0xd0 [ 692.033424] __kmalloc_track_caller+0x177/0x3c0 [ 692.034428] ? p9_client_create+0x51e/0x1090 [ 692.035364] kmemdup_nul+0x2d/0xa0 [ 692.036118] p9_client_create+0x51e/0x1090 [ 692.037027] ? p9_client_flush+0x430/0x430 [ 692.037953] ? lockdep_init_map_waits+0x26a/0x700 [ 692.038981] ? __raw_spin_lock_init+0x34/0x100 [ 692.039957] v9fs_session_init+0x1dd/0x1690 [ 692.040866] ? kmem_cache_alloc_trace+0x151/0x360 [ 692.041896] ? v9fs_show_options+0x690/0x690 [ 692.042848] ? kasan_unpoison_shadow+0x33/0x40 [ 692.043810] ? __kasan_kmalloc.constprop.0+0xc2/0xd0 [ 692.044884] v9fs_mount+0x79/0x8f0 [ 692.045639] ? v9fs_write_inode+0x60/0x60 [ 692.046534] legacy_get_tree+0x105/0x220 [ 692.047398] vfs_get_tree+0x8e/0x2f0 [ 692.048189] path_mount+0x139a/0x2080 [ 692.049007] ? strncpy_from_user+0x9e/0x460 [ 692.049932] ? finish_automount+0xa40/0xa40 [ 692.050858] ? getname_flags.part.0+0x1dd/0x4f0 [ 692.051841] ? _copy_from_user+0xfb/0x1b0 [ 692.052735] __x64_sys_mount+0x27e/0x300 [ 692.053597] ? path_mount+0x2080/0x2080 [ 692.054454] ? rcu_read_lock_sched_held+0x3a/0x70 [ 692.055481] do_syscall_64+0x33/0x40 [ 692.056275] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 692.057359] RIP: 0033:0x466609 [ 692.058065] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 692.061997] RSP: 002b:00007fd61fccc188 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5 [ 692.063623] RAX: ffffffffffffffda RBX: 000000000056bf80 RCX: 0000000000466609 [ 692.065134] RDX: 00000000200000c0 RSI: 0000000020000000 RDI: 0000000000000000 [ 692.066659] RBP: 00007fd61fccc1d0 R08: 00000000200004c0 R09: 0000000000000000 [ 692.068176] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 692.069695] R13: 00007fff09eaa3cf R14: 00007fd61fccc300 R15: 0000000000022000 [ 692.075897] 9pnet: Insufficient options for proto=fd 10:20:01 executing program 6: perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000040), 0x2, 0x0) write$binfmt_aout(r0, &(0x7f0000000640), 0x20) 10:20:01 executing program 3: perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000040), 0x2, 0x0) write$binfmt_aout(r0, &(0x7f0000000640), 0x20) read(r0, &(0x7f0000000100)=""/146, 0x92) 10:20:02 executing program 4: r0 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x46e2, 0x0) r1 = dup2(r0, r0) openat$ptmx(0xffffffffffffff9c, &(0x7f0000000040), 0x2, 0x0) mount$9p_fd(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f00000000c0), 0x0, &(0x7f00000004c0)={'trans=fd,', {'rfdno', 0x3d, r1}, 0x2c, {}, 0x2c, {[{@debug}], [{@hash}, {@euid_gt}, {@fsmagic={'fsmagic', 0x3d, 0xfffffffffffffffc}}, {@euid_eq={'euid', 0x3d, 0xffffffffffffffff}}]}}) 10:20:02 executing program 3: perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000040), 0x2, 0x0) write$binfmt_aout(r0, &(0x7f0000000640), 0x20) read(r0, &(0x7f0000000100)=""/146, 0x92) 10:20:02 executing program 0: ioctl$KDSETKEYCODE(0xffffffffffffffff, 0x4b4d, &(0x7f0000000000)={0x7f, 0xe1ab}) r0 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x46e2, 0x0) r1 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffd000/0x3000)=nil, 0x3000, 0x0, 0x13, r0, 0x0) syz_io_uring_setup(0x4b9f, &(0x7f0000000140), &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000ffd000/0x3000)=nil, &(0x7f00000000c0), &(0x7f00000001c0)=0x0) syz_io_uring_submit(r1, r2, &(0x7f0000000240)=@IORING_OP_FADVISE={0x18, 0x0, 0x0, @fd, 0x2}, 0x0) sigaltstack(&(0x7f0000ffd000/0x1000)=nil, 0x0) 10:20:02 executing program 7: perf_event_open(0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000040), 0x2, 0x0) write$binfmt_aout(r0, &(0x7f0000000640), 0x20) read(r0, &(0x7f0000000100)=""/146, 0x92) 10:20:02 executing program 6: r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000040), 0x2, 0x0) write$binfmt_aout(r0, &(0x7f0000000640), 0x20) 10:20:02 executing program 1 (fault-call:3 fault-nth:18): r0 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x46e2, 0x0) r1 = dup2(r0, r0) r2 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000040), 0x2, 0x0) mount$9p_fd(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f00000000c0), 0x0, &(0x7f00000004c0)={'trans=fd,', {'rfdno', 0x3d, r1}, 0x2c, {'wfdno', 0x3d, r2}}) 10:20:02 executing program 2: perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000040), 0x2, 0x0) write$binfmt_aout(r0, &(0x7f0000000640), 0x20) read(r0, &(0x7f0000000100)=""/146, 0x92) [ 692.374710] 9pnet: Insufficient options for proto=fd 10:20:02 executing program 7: perf_event_open(&(0x7f0000000040)={0x0, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000040), 0x2, 0x0) write$binfmt_aout(r0, &(0x7f0000000640), 0x20) read(r0, &(0x7f0000000100)=""/146, 0x92) 10:20:02 executing program 0: r0 = socket$netlink(0x10, 0x3, 0x0) r1 = fcntl$dupfd(r0, 0x0, r0) getsockopt$netlink(r1, 0x10e, 0x0, 0x0, 0xfffffffffffffffe) fsconfig$FSCONFIG_SET_PATH(0xffffffffffffffff, 0x3, &(0x7f0000000000)='&!%.[@$\x00', &(0x7f0000000080)='./file0\x00', r1) r2 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x46e2, 0x0) r3 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffd000/0x3000)=nil, 0x3000, 0x0, 0x13, r2, 0x0) syz_io_uring_setup(0x4b9f, &(0x7f0000000140), &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000ffd000/0x3000)=nil, &(0x7f00000000c0), &(0x7f00000001c0)=0x0) syz_io_uring_submit(r3, r4, &(0x7f0000000240)=@IORING_OP_FADVISE={0x18, 0x0, 0x0, @fd, 0x2}, 0x0) sigaltstack(&(0x7f0000ffd000/0x1000)=nil, 0x0) 10:20:02 executing program 5 (fault-call:3 fault-nth:25): r0 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x46e2, 0x0) r1 = dup2(r0, r0) r2 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000040), 0x2, 0x0) mount$9p_fd(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f00000000c0), 0x0, &(0x7f00000004c0)={'trans=fd,', {'rfdno', 0x3d, r1}, 0x2c, {'wfdno', 0x3d, r2}}) 10:20:02 executing program 4: r0 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x46e2, 0x0) r1 = dup2(r0, r0) openat$ptmx(0xffffffffffffff9c, &(0x7f0000000040), 0x2, 0x0) mount$9p_fd(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f00000000c0), 0x0, &(0x7f00000004c0)={'trans=fd,', {'rfdno', 0x3d, r1}, 0x2c, {}, 0x2c, {[{@debug}], [{@hash}, {@euid_gt}, {@fsmagic={'fsmagic', 0x3d, 0xfffffffffffffffc}}, {@euid_eq={'euid', 0x3d, 0xffffffffffffffff}}]}}) 10:20:02 executing program 6: r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000040), 0x2, 0x0) write$binfmt_aout(r0, &(0x7f0000000640), 0x20) [ 692.513103] FAULT_INJECTION: forcing a failure. [ 692.513103] name failslab, interval 1, probability 0, space 0, times 0 [ 692.515390] CPU: 0 PID: 7248 Comm: syz-executor.1 Not tainted 5.10.56 #1 [ 692.516706] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS rel-1.14.0-0-g155821a1990b-prebuilt.qemu.org 04/01/2014 [ 692.518908] Call Trace: [ 692.519416] dump_stack+0x107/0x163 [ 692.520118] should_fail.cold+0x5/0xa [ 692.520854] ? create_object.isra.0+0x3a/0xa20 [ 692.521760] should_failslab+0x5/0x10 [ 692.522532] kmem_cache_alloc+0x5b/0x350 [ 692.523346] create_object.isra.0+0x3a/0xa20 [ 692.524212] ? __kasan_kmalloc.constprop.0+0xc2/0xd0 [ 692.525214] __kmalloc_track_caller+0x177/0x3c0 [ 692.526130] ? v9fs_session_init+0xe9/0x1690 [ 692.526986] ? kernel_text_address+0xea/0x120 [ 692.527873] kstrdup+0x36/0x70 [ 692.528498] v9fs_session_init+0xe9/0x1690 [ 692.529309] ? find_held_lock+0x2c/0x110 [ 692.530121] ? kmem_cache_alloc_trace+0x151/0x360 [ 692.531054] ? v9fs_show_options+0x690/0x690 [ 692.531912] ? kasan_unpoison_shadow+0x33/0x40 [ 692.532780] ? __kasan_kmalloc.constprop.0+0xc2/0xd0 [ 692.533750] v9fs_mount+0x79/0x8f0 [ 692.534452] ? v9fs_write_inode+0x60/0x60 [ 692.535244] legacy_get_tree+0x105/0x220 [ 692.536023] vfs_get_tree+0x8e/0x2f0 [ 692.536735] path_mount+0x139a/0x2080 [ 692.537152] FAULT_INJECTION: forcing a failure. [ 692.537152] name failslab, interval 1, probability 0, space 0, times 0 [ 692.537473] ? strncpy_from_user+0x9e/0x460 [ 692.537492] ? finish_automount+0xa40/0xa40 [ 692.537517] ? getname_flags.part.0+0x1dd/0x4f0 [ 692.542425] ? _copy_from_user+0xfb/0x1b0 [ 692.543226] __x64_sys_mount+0x27e/0x300 [ 692.544025] ? path_mount+0x2080/0x2080 [ 692.544788] ? rcu_read_lock_sched_held+0x3a/0x70 [ 692.545717] do_syscall_64+0x33/0x40 [ 692.546448] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 692.547425] RIP: 0033:0x466609 [ 692.548040] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 692.551556] RSP: 002b:00007fdc84e63188 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5 [ 692.553007] RAX: ffffffffffffffda RBX: 000000000056bf80 RCX: 0000000000466609 [ 692.554376] RDX: 00000000200000c0 RSI: 0000000020000000 RDI: 0000000000000000 [ 692.555741] RBP: 00007fdc84e631d0 R08: 00000000200004c0 R09: 0000000000000000 [ 692.557098] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 692.558474] R13: 00007ffc7c6b7e8f R14: 00007fdc84e63300 R15: 0000000000022000 [ 692.559870] CPU: 1 PID: 7252 Comm: syz-executor.5 Not tainted 5.10.56 #1 [ 692.561337] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS rel-1.14.0-0-g155821a1990b-prebuilt.qemu.org 04/01/2014 [ 692.563749] Call Trace: [ 692.564315] dump_stack+0x107/0x163 [ 692.565100] should_fail.cold+0x5/0xa [ 692.565926] should_failslab+0x5/0x10 [ 692.566741] __kmalloc_track_caller+0x79/0x3c0 [ 692.567712] ? parse_opts.part.0+0x8e/0x340 [ 692.568638] kstrdup+0x36/0x70 [ 692.569323] parse_opts.part.0+0x8e/0x340 [ 692.570233] ? __delete_object+0xb3/0x100 [ 692.571121] ? p9_fd_show_options+0x1c0/0x1c0 [ 692.572104] ? lockdep_hardirqs_on_prepare+0x273/0x3e0 [ 692.573221] ? quarantine_put+0x87/0x1a0 [ 692.574104] ? trace_hardirqs_on+0x5b/0x180 [ 692.575028] ? kfree+0xca/0x360 [ 692.575739] p9_fd_create+0x98/0x420 [ 692.576532] ? p9_conn_create+0x500/0x500 [ 692.577418] ? kfree+0xca/0x360 [ 692.578145] p9_client_create+0x7fb/0x1090 [ 692.579057] ? p9_client_flush+0x430/0x430 [ 692.579968] ? lockdep_init_map_waits+0x26a/0x700 [ 692.581001] ? __raw_spin_lock_init+0x34/0x100 [ 692.581999] v9fs_session_init+0x1dd/0x1690 [ 692.582946] ? kmem_cache_alloc_trace+0x151/0x360 [ 692.583981] ? v9fs_show_options+0x690/0x690 [ 692.584946] ? kasan_unpoison_shadow+0x33/0x40 [ 692.585936] ? __kasan_kmalloc.constprop.0+0xc2/0xd0 [ 692.587025] v9fs_mount+0x79/0x8f0 [ 692.587789] ? v9fs_write_inode+0x60/0x60 [ 692.588669] legacy_get_tree+0x105/0x220 [ 692.589542] vfs_get_tree+0x8e/0x2f0 [ 692.590357] path_mount+0x139a/0x2080 [ 692.591182] ? strncpy_from_user+0x9e/0x460 [ 692.592107] ? finish_automount+0xa40/0xa40 [ 692.593036] ? getname_flags.part.0+0x1dd/0x4f0 [ 692.594036] ? _copy_from_user+0xfb/0x1b0 [ 692.594938] __x64_sys_mount+0x27e/0x300 [ 692.595804] ? path_mount+0x2080/0x2080 [ 692.596664] ? rcu_read_lock_sched_held+0x3a/0x70 [ 692.597697] do_syscall_64+0x33/0x40 [ 692.598503] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 692.599599] RIP: 0033:0x466609 [ 692.600291] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 692.604227] RSP: 002b:00007fd61fccc188 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5 [ 692.605859] RAX: ffffffffffffffda RBX: 000000000056bf80 RCX: 0000000000466609 [ 692.607381] RDX: 00000000200000c0 RSI: 0000000020000000 RDI: 0000000000000000 [ 692.608908] RBP: 00007fd61fccc1d0 R08: 00000000200004c0 R09: 0000000000000000 [ 692.610441] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 692.611964] R13: 00007fff09eaa3cf R14: 00007fd61fccc300 R15: 0000000000022000 [ 692.613720] 9pnet: Insufficient options for proto=fd [ 692.626152] 9pnet: Insufficient options for proto=fd 10:20:18 executing program 1 (fault-call:3 fault-nth:19): r0 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x46e2, 0x0) r1 = dup2(r0, r0) r2 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000040), 0x2, 0x0) mount$9p_fd(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f00000000c0), 0x0, &(0x7f00000004c0)={'trans=fd,', {'rfdno', 0x3d, r1}, 0x2c, {'wfdno', 0x3d, r2}}) 10:20:18 executing program 5 (fault-call:3 fault-nth:26): r0 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x46e2, 0x0) r1 = dup2(r0, r0) r2 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000040), 0x2, 0x0) mount$9p_fd(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f00000000c0), 0x0, &(0x7f00000004c0)={'trans=fd,', {'rfdno', 0x3d, r1}, 0x2c, {'wfdno', 0x3d, r2}}) 10:20:18 executing program 3: perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000040), 0x2, 0x0) write$binfmt_aout(r0, &(0x7f0000000640), 0x20) read(r0, &(0x7f0000000100)=""/146, 0x92) 10:20:18 executing program 4: r0 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x46e2, 0x0) r1 = dup2(r0, r0) openat$ptmx(0xffffffffffffff9c, &(0x7f0000000040), 0x2, 0x0) mount$9p_fd(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f00000000c0), 0x0, &(0x7f00000004c0)={'trans=fd,', {'rfdno', 0x3d, r1}, 0x2c, {}, 0x2c, {[{@debug}], [{@hash}, {@euid_gt}, {@fsmagic={'fsmagic', 0x3d, 0xfffffffffffffffc}}, {@euid_eq={'euid', 0x3d, 0xffffffffffffffff}}]}}) 10:20:18 executing program 7: perf_event_open(&(0x7f0000000040)={0x0, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000040), 0x2, 0x0) write$binfmt_aout(r0, &(0x7f0000000640), 0x20) read(r0, &(0x7f0000000100)=""/146, 0x92) 10:20:18 executing program 2: perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000040), 0x2, 0x0) write$binfmt_aout(r0, &(0x7f0000000640), 0x20) read(r0, &(0x7f0000000100)=""/146, 0x92) 10:20:18 executing program 6: r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000040), 0x2, 0x0) write$binfmt_aout(r0, &(0x7f0000000640), 0x20) 10:20:18 executing program 0: r0 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x46e2, 0x0) r1 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffd000/0x3000)=nil, 0x3000, 0x0, 0x13, r0, 0x0) syz_io_uring_setup(0x4b9f, &(0x7f0000000140)={0x0, 0x0, 0x8}, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000ffd000/0x3000)=nil, &(0x7f00000000c0), &(0x7f00000001c0)=0x0) io_uring_enter(0xffffffffffffffff, 0x78d4, 0x583e, 0x0, &(0x7f0000000000)={[0x1]}, 0x8) syz_io_uring_submit(r1, r2, &(0x7f0000000240)=@IORING_OP_FADVISE={0x18, 0x0, 0x0, @fd=r0, 0x2}, 0x0) sigaltstack(&(0x7f0000ffd000/0x1000)=nil, 0x0) [ 708.467075] 9pnet: Insufficient options for proto=fd [ 708.485672] FAULT_INJECTION: forcing a failure. [ 708.485672] name failslab, interval 1, probability 0, space 0, times 0 [ 708.486812] FAULT_INJECTION: forcing a failure. [ 708.486812] name failslab, interval 1, probability 0, space 0, times 0 [ 708.487018] CPU: 0 PID: 7272 Comm: syz-executor.1 Not tainted 5.10.56 #1 [ 708.490082] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS rel-1.14.0-0-g155821a1990b-prebuilt.qemu.org 04/01/2014 [ 708.491381] Call Trace: [ 708.491668] dump_stack+0x107/0x163 [ 708.492088] should_fail.cold+0x5/0xa [ 708.492509] ? p9_client_create+0xaf/0x1090 [ 708.493007] should_failslab+0x5/0x10 [ 708.493417] kmem_cache_alloc_trace+0x55/0x360 [ 708.493933] ? find_held_lock+0x2c/0x110 [ 708.494383] p9_client_create+0xaf/0x1090 [ 708.494861] ? lock_downgrade+0x6d0/0x6d0 [ 708.495306] ? p9_client_flush+0x430/0x430 [ 708.495808] ? lockdep_init_map_waits+0x26a/0x700 [ 708.496324] ? __raw_spin_lock_init+0x34/0x100 [ 708.496859] v9fs_session_init+0x1dd/0x1690 [ 708.497328] ? kmem_cache_alloc_trace+0x151/0x360 [ 708.497886] ? v9fs_show_options+0x690/0x690 [ 708.498388] ? kasan_unpoison_shadow+0x33/0x40 [ 708.498912] ? __kasan_kmalloc.constprop.0+0xc2/0xd0 [ 708.499452] v9fs_mount+0x79/0x8f0 [ 708.499858] ? v9fs_write_inode+0x60/0x60 [ 708.500297] legacy_get_tree+0x105/0x220 [ 708.500769] vfs_get_tree+0x8e/0x2f0 [ 708.501174] path_mount+0x139a/0x2080 [ 708.501618] ? strncpy_from_user+0x9e/0x460 [ 708.502088] ? finish_automount+0xa40/0xa40 [ 708.502585] ? getname_flags.part.0+0x1dd/0x4f0 [ 708.503088] ? _copy_from_user+0xfb/0x1b0 [ 708.503564] __x64_sys_mount+0x27e/0x300 [ 708.503995] ? path_mount+0x2080/0x2080 [ 708.504456] ? rcu_read_lock_sched_held+0x3a/0x70 [ 708.504981] do_syscall_64+0x33/0x40 [ 708.505412] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 708.505974] RIP: 0033:0x466609 [ 708.506360] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 708.508313] RSP: 002b:00007fdc84e63188 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5 [ 708.509197] RAX: ffffffffffffffda RBX: 000000000056bf80 RCX: 0000000000466609 [ 708.510026] RDX: 00000000200000c0 RSI: 0000000020000000 RDI: 0000000000000000 [ 708.510864] RBP: 00007fdc84e631d0 R08: 00000000200004c0 R09: 0000000000000000 [ 708.511699] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 708.512526] R13: 00007ffc7c6b7e8f R14: 00007fdc84e63300 R15: 0000000000022000 [ 708.513380] CPU: 1 PID: 7266 Comm: syz-executor.5 Not tainted 5.10.56 #1 [ 708.514855] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS rel-1.14.0-0-g155821a1990b-prebuilt.qemu.org 04/01/2014 [ 708.517278] Call Trace: [ 708.517867] dump_stack+0x107/0x163 [ 708.518676] should_fail.cold+0x5/0xa [ 708.519500] ? create_object.isra.0+0x3a/0xa20 [ 708.520481] should_failslab+0x5/0x10 [ 708.521296] kmem_cache_alloc+0x5b/0x350 [ 708.522182] ? v9fs_session_init+0x1dd/0x1690 [ 708.523139] ? v9fs_mount+0x79/0x8f0 [ 708.523947] create_object.isra.0+0x3a/0xa20 [ 708.524889] ? __kasan_kmalloc.constprop.0+0xc2/0xd0 [ 708.525987] __kmalloc_track_caller+0x177/0x3c0 [ 708.527011] ? parse_opts.part.0+0x8e/0x340 [ 708.527947] kstrdup+0x36/0x70 [ 708.528648] parse_opts.part.0+0x8e/0x340 [ 708.529540] ? __delete_object+0xb3/0x100 [ 708.530454] ? p9_fd_show_options+0x1c0/0x1c0 [ 708.531610] ? lockdep_hardirqs_on_prepare+0x273/0x3e0 [ 708.532746] ? quarantine_put+0x87/0x1a0 [ 708.533603] ? trace_hardirqs_on+0x5b/0x180 [ 708.534569] ? kfree+0xca/0x360 [ 708.535275] p9_fd_create+0x98/0x420 [ 708.536074] ? p9_conn_create+0x500/0x500 [ 708.536945] ? kfree+0xca/0x360 [ 708.537676] p9_client_create+0x7fb/0x1090 [ 708.538594] ? p9_client_flush+0x430/0x430 [ 708.539520] ? lockdep_init_map_waits+0x26a/0x700 [ 708.540540] ? __raw_spin_lock_init+0x34/0x100 [ 708.541543] v9fs_session_init+0x1dd/0x1690 [ 708.542481] ? kmem_cache_alloc_trace+0x151/0x360 [ 708.543520] ? v9fs_show_options+0x690/0x690 [ 708.544476] ? kasan_unpoison_shadow+0x33/0x40 [ 708.545469] ? __kasan_kmalloc.constprop.0+0xc2/0xd0 [ 708.546564] v9fs_mount+0x79/0x8f0 [ 708.547324] ? v9fs_write_inode+0x60/0x60 [ 708.548198] legacy_get_tree+0x105/0x220 [ 708.549078] vfs_get_tree+0x8e/0x2f0 [ 708.549866] path_mount+0x139a/0x2080 [ 708.550700] ? strncpy_from_user+0x9e/0x460 [ 708.551612] ? finish_automount+0xa40/0xa40 [ 708.552553] ? getname_flags.part.0+0x1dd/0x4f0 [ 708.553529] ? _copy_from_user+0xfb/0x1b0 [ 708.554465] __x64_sys_mount+0x27e/0x300 [ 708.555327] ? path_mount+0x2080/0x2080 [ 708.556196] ? rcu_read_lock_sched_held+0x3a/0x70 [ 708.557221] do_syscall_64+0x33/0x40 [ 708.558026] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 708.559183] RIP: 0033:0x466609 [ 708.559880] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 708.563836] RSP: 002b:00007fd61fccc188 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5 [ 708.565446] RAX: ffffffffffffffda RBX: 000000000056bf80 RCX: 0000000000466609 [ 708.566976] RDX: 00000000200000c0 RSI: 0000000020000000 RDI: 0000000000000000 [ 708.568494] RBP: 00007fd61fccc1d0 R08: 00000000200004c0 R09: 0000000000000000 [ 708.570011] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 708.571541] R13: 00007fff09eaa3cf R14: 00007fd61fccc300 R15: 0000000000022000 10:20:18 executing program 4: r0 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x46e2, 0x0) r1 = dup2(r0, r0) r2 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000040), 0x2, 0x0) mount$9p_fd(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f00000000c0), 0x0, &(0x7f00000004c0)={'trans=fd,', {'rfdno', 0x3d, r1}, 0x2c, {'wfdno', 0x3d, r2}, 0x2c, {[], [{@hash}, {@euid_gt}, {@fsmagic={'fsmagic', 0x3d, 0xfffffffffffffffc}}, {@euid_eq={'euid', 0x3d, 0xffffffffffffffff}}]}}) 10:20:18 executing program 7: perf_event_open(&(0x7f0000000040)={0x0, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000040), 0x2, 0x0) write$binfmt_aout(r0, &(0x7f0000000640), 0x20) read(r0, &(0x7f0000000100)=""/146, 0x92) 10:20:18 executing program 4: r0 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x46e2, 0x0) r1 = dup2(r0, r0) r2 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000040), 0x2, 0x0) mount$9p_fd(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f00000000c0), 0x0, &(0x7f00000004c0)={'trans=fd,', {'rfdno', 0x3d, r1}, 0x2c, {'wfdno', 0x3d, r2}, 0x2c, {[], [{@hash}, {@euid_gt}, {@fsmagic={'fsmagic', 0x3d, 0xfffffffffffffffc}}]}}) 10:20:32 executing program 5 (fault-call:3 fault-nth:27): r0 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x46e2, 0x0) r1 = dup2(r0, r0) r2 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000040), 0x2, 0x0) mount$9p_fd(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f00000000c0), 0x0, &(0x7f00000004c0)={'trans=fd,', {'rfdno', 0x3d, r1}, 0x2c, {'wfdno', 0x3d, r2}}) 10:20:32 executing program 4: r0 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x46e2, 0x0) r1 = dup2(r0, r0) r2 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000040), 0x2, 0x0) mount$9p_fd(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f00000000c0), 0x0, &(0x7f00000004c0)={'trans=fd,', {'rfdno', 0x3d, r1}, 0x2c, {'wfdno', 0x3d, r2}, 0x2c, {[], [{@hash}, {@euid_gt}]}}) 10:20:32 executing program 2: perf_event_open(0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000040), 0x2, 0x0) write$binfmt_aout(r0, &(0x7f0000000640), 0x20) read(r0, &(0x7f0000000100)=""/146, 0x92) 10:20:32 executing program 1 (fault-call:3 fault-nth:20): r0 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x46e2, 0x0) r1 = dup2(r0, r0) r2 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000040), 0x2, 0x0) mount$9p_fd(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f00000000c0), 0x0, &(0x7f00000004c0)={'trans=fd,', {'rfdno', 0x3d, r1}, 0x2c, {'wfdno', 0x3d, r2}}) 10:20:32 executing program 3: perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r0 = openat$ptmx(0xffffffffffffff9c, 0x0, 0x2, 0x0) write$binfmt_aout(r0, &(0x7f0000000640), 0x20) read(r0, &(0x7f0000000100)=""/146, 0x92) 10:20:32 executing program 6: perf_event_open(0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000040), 0x2, 0x0) write$binfmt_aout(r0, &(0x7f0000000640), 0x20) 10:20:32 executing program 7: perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000040), 0x2, 0x0) write$binfmt_aout(r0, &(0x7f0000000640), 0x20) read(r0, &(0x7f0000000100)=""/146, 0x92) 10:20:32 executing program 0: r0 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x46e2, 0x0) close(r0) syz_io_uring_setup(0x1e, &(0x7f0000000080), &(0x7f0000feb000/0x13000)=nil, &(0x7f00000b0000)=nil, &(0x7f0000000180)=0x0, &(0x7f0000002a40)=0x0) syz_io_uring_submit(r1, r2, &(0x7f00000001c0)=@IORING_OP_OPENAT2={0x1c, 0x2, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x23456}, 0x0) syz_io_uring_setup(0x4d4f, &(0x7f0000000080), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=0x0, &(0x7f0000000140)=0x0) r5 = socket$inet(0x2, 0x1, 0x0) setsockopt$inet_int(r5, 0x0, 0x13, &(0x7f0000000180)=0x1, 0x4) bind$inet(r5, &(0x7f0000000c00)={0x2, 0x0, @multicast2}, 0x10) sendmmsg$sock(r5, &(0x7f0000001740)=[{{&(0x7f00000003c0)=@ipx={0x4, 0x4, 0x1, "26d316eecbcf", 0x4}, 0x80, &(0x7f0000001680)=[{&(0x7f0000000440)="c2fdead62ef8b4799d397d250d7fc79a3c091696764adeb5138d4ff2dfda2b3f67aec802020be20081de613e1c202423eecfd162e8588fe31a3686e601ea6cb7f571535178f3e57b3d3571f014eefed033e6c47045b34d78b3280dfdba1add53ead3f4df1cf3cd22", 0x68}, {&(0x7f00000004c0)="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", 0x1000}, {&(0x7f00000014c0)="3162a399f2c52da55ca91362ddf3ab914af5802731846bda74a28e7549d9e358b6699b8a24ca9b5625c619f666c6a617c940fe5c94377c98f81582791b473f892ff37b24c6f64df613ab856e4ddb8fa6eed4401ade8e4473c2d73268e1939c954f7af1b08d71a712539d99efaa30df8e49c7eab30c6c0868aa637f07a017b30574f964", 0x83}, {&(0x7f0000001580)="7ea7725661fcf8cf69039f2e794f6a96006f4190e4c98f1b16dfec6e61cbec42072de55664821727c5d60f4f687940f1add4924e77fdcf5c864586d039b0769e40c980e350010c7ced5c", 0x4a}, {&(0x7f0000001600)="607a12d63bc09fba3a5722ebbda5d5c3d1875fea379c9205947d16ec424ceb2b8d03bf5917ad63354ff29a502017acdfdc6dcd566abf9520dca9a591826564de263a2c5aa19ac77031572164a3afd117bd80868b515683d113ebfa1aba28ca7cc543cb0cefaefcf29a0e013b4316b3b120", 0x71}], 0x5, &(0x7f0000001700)=[@txtime={{0x18, 0x1, 0x3d, 0x4}}], 0x18}}], 0x1, 0x40) r6 = syz_io_uring_setup(0x1, &(0x7f0000000080), &(0x7f0000ffd000/0x2000)=nil, &(0x7f0000ffc000/0x2000)=nil, &(0x7f0000000100), &(0x7f0000000140)) r7 = io_uring_register$IORING_REGISTER_PERSONALITY(r6, 0x9, 0x0, 0x0) r8 = openat$cgroup_ro(r0, &(0x7f0000000240)='freezer.parent_freezing\x00', 0x0, 0x0) io_uring_enter(r8, 0x7ef3, 0xe73e, 0x2, &(0x7f00000017c0)={[0x8000]}, 0x8) syz_io_uring_submit(r3, r4, &(0x7f0000000380)=@IORING_OP_PROVIDE_BUFFERS={0x1f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, {0x0, r7}}, 0x101) syz_io_uring_submit(r1, 0x0, &(0x7f0000000000)=@IORING_OP_WRITE={0x17, 0x5, 0x0, @fd_index=0x3, 0x3, &(0x7f0000000280)="a4db3fabd65d652304d6595d1cf5ba499b0fb4b04c2e3fb7fd4282728e3222d1bd7e78f2a07d0ec824335fdae1ae9bf4845f05119db4f806381dc16d898f19481073e212fed59dd34c70e9b95a25185443c239d9ff814a835cebdbd7ed2c1a1a8be8f95a4854d57816754b1f1d155c99687a0137875954d6e54cd1491ca66a71c5dc33ed09be393f6fa78dfa2022c2cd7f7b1737cb9c866a34121a2a0dbe448340cbcd4e11534feb9c0ee4119ae70daf9ce7c05c912de0d2b3050f75c4d5128bb0f8b1e72316f925d5556bd3ddca5d7794ac1164c1", 0xd5, 0x8, 0x0, {0x0, r7}}, 0x200) r9 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffd000/0x3000)=nil, 0x3000, 0x0, 0x13, r0, 0x0) syz_io_uring_setup(0x4b9f, &(0x7f0000000140), &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000ffd000/0x3000)=nil, &(0x7f00000000c0), &(0x7f00000001c0)=0x0) syz_io_uring_submit(r9, r10, &(0x7f0000001780)=@IORING_OP_FADVISE={0x18, 0x0, 0x0, @fd=r0, 0x2}, 0x0) sigaltstack(&(0x7f0000ffd000/0x1000)=nil, 0x0) 10:20:32 executing program 7: perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000040), 0x2, 0x0) write$binfmt_aout(r0, &(0x7f0000000640), 0x20) read(r0, &(0x7f0000000100)=""/146, 0x92) [ 722.216058] FAULT_INJECTION: forcing a failure. [ 722.216058] name failslab, interval 1, probability 0, space 0, times 0 [ 722.218623] CPU: 1 PID: 7295 Comm: syz-executor.5 Not tainted 5.10.56 #1 [ 722.220099] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS rel-1.14.0-0-g155821a1990b-prebuilt.qemu.org 04/01/2014 [ 722.222583] Call Trace: [ 722.223155] dump_stack+0x107/0x163 [ 722.223943] should_fail.cold+0x5/0xa [ 722.224784] should_failslab+0x5/0x10 [ 722.225610] __kmalloc_track_caller+0x79/0x3c0 [ 722.226609] ? match_number+0xaf/0x1c0 [ 722.227462] kmemdup_nul+0x2d/0xa0 [ 722.228230] match_number+0xaf/0x1c0 [ 722.229054] ? match_u64+0x180/0x180 [ 722.229855] ? __kmalloc_track_caller+0x2d0/0x3c0 [ 722.230919] ? memcpy+0x39/0x60 [ 722.231643] parse_opts.part.0+0x1f3/0x340 [ 722.232558] ? p9_fd_show_options+0x1c0/0x1c0 [ 722.233541] ? quarantine_put+0x87/0x1a0 [ 722.234439] ? trace_hardirqs_on+0x5b/0x180 [ 722.235377] ? kfree+0xca/0x360 [ 722.236097] p9_fd_create+0x98/0x420 [ 722.236903] ? p9_conn_create+0x500/0x500 [ 722.237797] ? kfree+0xca/0x360 [ 722.238531] p9_client_create+0x7fb/0x1090 [ 722.239458] ? p9_client_flush+0x430/0x430 [ 722.240391] ? lockdep_init_map_waits+0x26a/0x700 [ 722.241434] ? __raw_spin_lock_init+0x34/0x100 [ 722.242449] v9fs_session_init+0x1dd/0x1690 [ 722.243400] ? kmem_cache_alloc_trace+0x151/0x360 [ 722.244446] ? v9fs_show_options+0x690/0x690 [ 722.245415] ? kasan_unpoison_shadow+0x33/0x40 [ 722.246425] ? __kasan_kmalloc.constprop.0+0xc2/0xd0 [ 722.247521] v9fs_mount+0x79/0x8f0 [ 722.248292] ? v9fs_write_inode+0x60/0x60 [ 722.249185] legacy_get_tree+0x105/0x220 [ 722.250074] vfs_get_tree+0x8e/0x2f0 [ 722.250889] path_mount+0x139a/0x2080 [ 722.251728] ? strncpy_from_user+0x9e/0x460 [ 722.252661] ? finish_automount+0xa40/0xa40 [ 722.253311] FAULT_INJECTION: forcing a failure. [ 722.253311] name failslab, interval 1, probability 0, space 0, times 0 [ 722.253597] ? getname_flags.part.0+0x1dd/0x4f0 [ 722.253616] ? _copy_from_user+0xfb/0x1b0 [ 722.253649] __x64_sys_mount+0x27e/0x300 [ 722.258417] ? path_mount+0x2080/0x2080 [ 722.259282] ? rcu_read_lock_sched_held+0x3a/0x70 [ 722.260328] do_syscall_64+0x33/0x40 [ 722.261132] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 722.262238] RIP: 0033:0x466609 [ 722.262946] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 722.266934] RSP: 002b:00007fd61fccc188 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5 [ 722.268573] RAX: ffffffffffffffda RBX: 000000000056bf80 RCX: 0000000000466609 [ 722.270114] RDX: 00000000200000c0 RSI: 0000000020000000 RDI: 0000000000000000 [ 722.271658] RBP: 00007fd61fccc1d0 R08: 00000000200004c0 R09: 0000000000000000 [ 722.273197] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 722.274740] R13: 00007fff09eaa3cf R14: 00007fd61fccc300 R15: 0000000000022000 [ 722.276314] CPU: 0 PID: 7307 Comm: syz-executor.1 Not tainted 5.10.56 #1 [ 722.277563] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS rel-1.14.0-0-g155821a1990b-prebuilt.qemu.org 04/01/2014 [ 722.279639] Call Trace: [ 722.280126] dump_stack+0x107/0x163 [ 722.280793] should_fail.cold+0x5/0xa [ 722.281493] ? create_object.isra.0+0x3a/0xa20 [ 722.282330] should_failslab+0x5/0x10 [ 722.283019] kmem_cache_alloc+0x5b/0x350 [ 722.283779] ? kernel_text_address+0xea/0x120 [ 722.284599] create_object.isra.0+0x3a/0xa20 [ 722.285396] ? __kasan_kmalloc.constprop.0+0xc2/0xd0 [ 722.286333] kmem_cache_alloc_trace+0x151/0x360 [ 722.287170] ? find_held_lock+0x2c/0x110 [ 722.287915] p9_client_create+0xaf/0x1090 [ 722.288667] ? lock_downgrade+0x6d0/0x6d0 [ 722.289429] ? p9_client_flush+0x430/0x430 [ 722.290206] ? lockdep_init_map_waits+0x26a/0x700 [ 722.291105] ? __raw_spin_lock_init+0x34/0x100 [ 722.291944] v9fs_session_init+0x1dd/0x1690 [ 722.292741] ? kmem_cache_alloc_trace+0x151/0x360 [ 722.293637] ? v9fs_show_options+0x690/0x690 [ 722.294460] ? kasan_unpoison_shadow+0x33/0x40 [ 722.295278] ? __kasan_kmalloc.constprop.0+0xc2/0xd0 [ 722.296195] v9fs_mount+0x79/0x8f0 [ 722.296840] ? v9fs_write_inode+0x60/0x60 [ 722.297593] legacy_get_tree+0x105/0x220 [ 722.297602] 9pnet: Insufficient options for proto=fd [ 722.299253] vfs_get_tree+0x8e/0x2f0 [ 722.299922] path_mount+0x139a/0x2080 10:20:32 executing program 4: r0 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x46e2, 0x0) r1 = dup2(r0, r0) r2 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000040), 0x2, 0x0) mount$9p_fd(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f00000000c0), 0x0, &(0x7f00000004c0)={'trans=fd,', {'rfdno', 0x3d, r1}, 0x2c, {'wfdno', 0x3d, r2}, 0x2c, {[], [{@hash}]}}) [ 722.300612] ? strncpy_from_user+0x9e/0x460 [ 722.301585] ? finish_automount+0xa40/0xa40 [ 722.302373] ? getname_flags.part.0+0x1dd/0x4f0 [ 722.303208] ? _copy_from_user+0xfb/0x1b0 [ 722.303967] __x64_sys_mount+0x27e/0x300 [ 722.304699] ? path_mount+0x2080/0x2080 [ 722.305429] ? rcu_read_lock_sched_held+0x3a/0x70 [ 722.306307] do_syscall_64+0x33/0x40 [ 722.306983] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 722.307909] RIP: 0033:0x466609 [ 722.308491] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 722.311795] RSP: 002b:00007fdc84e63188 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5 [ 722.313160] RAX: ffffffffffffffda RBX: 000000000056bf80 RCX: 0000000000466609 [ 722.314446] RDX: 00000000200000c0 RSI: 0000000020000000 RDI: 0000000000000000 [ 722.315719] RBP: 00007fdc84e631d0 R08: 00000000200004c0 R09: 0000000000000000 [ 722.316992] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 722.318267] R13: 00007ffc7c6b7e8f R14: 00007fdc84e63300 R15: 0000000000022000 10:20:32 executing program 3: perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r0 = openat$ptmx(0xffffffffffffff9c, 0x0, 0x2, 0x0) write$binfmt_aout(r0, &(0x7f0000000640), 0x20) read(r0, &(0x7f0000000100)=""/146, 0x92) 10:20:32 executing program 2: perf_event_open(0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000040), 0x2, 0x0) write$binfmt_aout(r0, &(0x7f0000000640), 0x20) read(r0, &(0x7f0000000100)=""/146, 0x92) 10:20:32 executing program 5 (fault-call:3 fault-nth:28): r0 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x46e2, 0x0) r1 = dup2(r0, r0) r2 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000040), 0x2, 0x0) mount$9p_fd(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f00000000c0), 0x0, &(0x7f00000004c0)={'trans=fd,', {'rfdno', 0x3d, r1}, 0x2c, {'wfdno', 0x3d, r2}}) 10:20:32 executing program 6: perf_event_open(0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000040), 0x2, 0x0) write$binfmt_aout(r0, &(0x7f0000000640), 0x20) 10:20:32 executing program 4: r0 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x46e2, 0x0) r1 = dup2(r0, r0) r2 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000040), 0x2, 0x0) mount$9p_fd(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f00000000c0), 0x0, &(0x7f00000004c0)={'trans=fd,', {'rfdno', 0x3d, r1}, 0x2c, {'wfdno', 0x3d, r2}}) [ 722.470993] FAULT_INJECTION: forcing a failure. [ 722.470993] name failslab, interval 1, probability 0, space 0, times 0 [ 722.473222] CPU: 0 PID: 7320 Comm: syz-executor.5 Not tainted 5.10.56 #1 [ 722.474387] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS rel-1.14.0-0-g155821a1990b-prebuilt.qemu.org 04/01/2014 [ 722.476312] Call Trace: [ 722.476763] dump_stack+0x107/0x163 [ 722.477383] should_fail.cold+0x5/0xa [ 722.478033] ? create_object.isra.0+0x3a/0xa20 [ 722.478830] should_failslab+0x5/0x10 [ 722.479474] kmem_cache_alloc+0x5b/0x350 [ 722.480175] create_object.isra.0+0x3a/0xa20 [ 722.480918] ? __kasan_kmalloc.constprop.0+0xc2/0xd0 [ 722.481822] __kmalloc_track_caller+0x177/0x3c0 [ 722.482618] ? match_number+0xaf/0x1c0 [ 722.483290] kmemdup_nul+0x2d/0xa0 [ 722.483893] match_number+0xaf/0x1c0 [ 722.484518] ? match_u64+0x180/0x180 [ 722.485146] ? __kmalloc_track_caller+0x2d0/0x3c0 [ 722.485984] ? memcpy+0x39/0x60 [ 722.486555] parse_opts.part.0+0x1f3/0x340 [ 722.487289] ? p9_fd_show_options+0x1c0/0x1c0 [ 722.488056] ? quarantine_put+0x87/0x1a0 [ 722.488762] ? trace_hardirqs_on+0x5b/0x180 [ 722.489490] ? kfree+0xca/0x360 [ 722.490060] p9_fd_create+0x98/0x420 [ 722.490707] ? p9_conn_create+0x500/0x500 [ 722.491418] ? kfree+0xca/0x360 [ 722.491986] p9_client_create+0x7fb/0x1090 [ 722.492717] ? p9_client_flush+0x430/0x430 [ 722.493440] ? lockdep_init_map_waits+0x26a/0x700 [ 722.494256] ? __raw_spin_lock_init+0x34/0x100 [ 722.495036] v9fs_session_init+0x1dd/0x1690 [ 722.495772] ? kmem_cache_alloc_trace+0x151/0x360 [ 722.496584] ? v9fs_show_options+0x690/0x690 [ 722.497342] ? kasan_unpoison_shadow+0x33/0x40 [ 722.498111] ? __kasan_kmalloc.constprop.0+0xc2/0xd0 [ 722.498979] v9fs_mount+0x79/0x8f0 [ 722.499582] ? v9fs_write_inode+0x60/0x60 [ 722.500278] legacy_get_tree+0x105/0x220 [ 722.500977] vfs_get_tree+0x8e/0x2f0 [ 722.501605] path_mount+0x139a/0x2080 [ 722.502251] ? strncpy_from_user+0x9e/0x460 [ 722.502979] ? finish_automount+0xa40/0xa40 [ 722.503711] ? getname_flags.part.0+0x1dd/0x4f0 [ 722.504496] ? _copy_from_user+0xfb/0x1b0 [ 722.505206] __x64_sys_mount+0x27e/0x300 [ 722.505889] ? path_mount+0x2080/0x2080 [ 722.506571] ? rcu_read_lock_sched_held+0x3a/0x70 [ 722.507393] do_syscall_64+0x33/0x40 [ 722.508029] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 722.508890] RIP: 0033:0x466609 [ 722.509442] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 722.512538] RSP: 002b:00007fd61fccc188 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5 [ 722.513826] RAX: ffffffffffffffda RBX: 000000000056bf80 RCX: 0000000000466609 [ 722.515031] RDX: 00000000200000c0 RSI: 0000000020000000 RDI: 0000000000000000 [ 722.516226] RBP: 00007fd61fccc1d0 R08: 00000000200004c0 R09: 0000000000000000 [ 722.517409] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 722.518601] R13: 00007fff09eaa3cf R14: 00007fd61fccc300 R15: 0000000000022000 10:20:32 executing program 7: perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000040), 0x2, 0x0) write$binfmt_aout(r0, &(0x7f0000000640), 0x20) read(r0, &(0x7f0000000100)=""/146, 0x92) 10:20:44 executing program 3: perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r0 = openat$ptmx(0xffffffffffffff9c, 0x0, 0x2, 0x0) write$binfmt_aout(r0, &(0x7f0000000640), 0x20) read(r0, &(0x7f0000000100)=""/146, 0x92) 10:20:44 executing program 5 (fault-call:3 fault-nth:29): r0 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x46e2, 0x0) r1 = dup2(r0, r0) r2 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000040), 0x2, 0x0) mount$9p_fd(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f00000000c0), 0x0, &(0x7f00000004c0)={'trans=fd,', {'rfdno', 0x3d, r1}, 0x2c, {'wfdno', 0x3d, r2}}) 10:20:44 executing program 1 (fault-call:3 fault-nth:21): r0 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x46e2, 0x0) r1 = dup2(r0, r0) r2 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000040), 0x2, 0x0) mount$9p_fd(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f00000000c0), 0x0, &(0x7f00000004c0)={'trans=fd,', {'rfdno', 0x3d, r1}, 0x2c, {'wfdno', 0x3d, r2}}) 10:20:44 executing program 6: perf_event_open(0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000040), 0x2, 0x0) write$binfmt_aout(r0, &(0x7f0000000640), 0x20) 10:20:44 executing program 0: r0 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x46e2, 0x0) r1 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffd000/0x3000)=nil, 0x3000, 0x0, 0x13, r0, 0x0) syz_io_uring_setup(0x4b9f, &(0x7f0000000140), &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000ffd000/0x3000)=nil, &(0x7f00000000c0), &(0x7f00000001c0)=0x0) syz_io_uring_submit(r1, r2, &(0x7f0000000240)=@IORING_OP_FADVISE={0x18, 0x0, 0x0, @fd, 0x2}, 0x0) r3 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000040), 0x2, 0x0) write$binfmt_aout(r3, &(0x7f0000000640), 0x20) read(r3, &(0x7f0000000100)=""/146, 0x92) flock(r3, 0x2) sigaltstack(&(0x7f0000ffd000/0x1000)=nil, 0x0) 10:20:44 executing program 4 (fault-call:3 fault-nth:0): r0 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x46e2, 0x0) r1 = dup2(r0, r0) r2 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000040), 0x2, 0x0) mount$9p_fd(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f00000000c0), 0x0, &(0x7f00000004c0)={'trans=fd,', {'rfdno', 0x3d, r1}, 0x2c, {'wfdno', 0x3d, r2}}) 10:20:44 executing program 7: perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000040), 0x2, 0x0) write$binfmt_aout(r0, &(0x7f0000000640), 0x20) read(r0, &(0x7f0000000100)=""/146, 0x92) 10:20:44 executing program 2: r0 = getpid() ptrace$setregset(0x4205, r0, 0x202, &(0x7f00000001c0)={&(0x7f0000000700)="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", 0x1000}) setxattr$incfs_size(&(0x7f0000000000)='./file0\x00', &(0x7f0000000080), &(0x7f00000000c0)=0xf1e5, 0x8, 0x5) r1 = syz_open_dev$tty20(0xc, 0x4, 0x1) writev(r1, &(0x7f00000006c0)=[{&(0x7f00000002c0)="9aca958312bbac092a16f44417d65630985be72477ab1e9e07cfb3647d767dd4a48cd9010ca75ccbb2a94c010fffca99e426e908b96fd094ac73530295b1d411750ac52fa09aa0b2802e2547e49e71ba2e73bf016287958cb07ba09039d81a1120976ab17bed69481fd2d568370082880f1a0e03bb8a6be2db1090ad8a7370b882536885629e6a31da74fa69d126e09b3f", 0x91}], 0x1) writev(r1, &(0x7f0000000100)=[{&(0x7f0000000040)='\ah', 0x2}], 0x1) r2 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000040), 0x2, 0x0) write$binfmt_aout(r2, &(0x7f0000000640), 0x20) read(r2, &(0x7f0000000100)=""/146, 0x92) ioctl$TIOCL_SETSEL(r2, 0x541c, &(0x7f0000000140)={0x2, {0x2, 0x70, 0x4, 0x2, 0x4}}) r3 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000040), 0x2, 0x0) write$binfmt_aout(r3, &(0x7f0000000640), 0x20) read(r3, &(0x7f0000000100)=""/146, 0x92) r4 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000040), 0x2, 0x0) write$binfmt_aout(r4, &(0x7f0000000640), 0x20) read(r4, &(0x7f0000000100)=""/146, 0x92) tee(r3, r4, 0x8, 0x5) 10:20:45 executing program 7: perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = openat$ptmx(0xffffffffffffff9c, 0x0, 0x2, 0x0) write$binfmt_aout(r0, &(0x7f0000000640), 0x20) read(r0, &(0x7f0000000100)=""/146, 0x92) [ 735.232970] FAULT_INJECTION: forcing a failure. [ 735.232970] name failslab, interval 1, probability 0, space 0, times 0 10:20:45 executing program 3: perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000040), 0x0, 0x0) write$binfmt_aout(r0, &(0x7f0000000640), 0x20) read(r0, &(0x7f0000000100)=""/146, 0x92) [ 735.236275] CPU: 1 PID: 7339 Comm: syz-executor.5 Not tainted 5.10.56 #1 [ 735.238307] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS rel-1.14.0-0-g155821a1990b-prebuilt.qemu.org 04/01/2014 [ 735.241498] Call Trace: [ 735.242251] dump_stack+0x107/0x163 [ 735.243300] should_fail.cold+0x5/0xa [ 735.244389] should_failslab+0x5/0x10 [ 735.245463] __kmalloc_track_caller+0x79/0x3c0 [ 735.246757] ? match_number+0xaf/0x1c0 [ 735.247864] kmemdup_nul+0x2d/0xa0 [ 735.248871] match_number+0xaf/0x1c0 [ 735.249929] ? match_u64+0x180/0x180 [ 735.251014] ? __kmalloc_track_caller+0x2d0/0x3c0 [ 735.252387] ? irqentry_enter+0x26/0x50 [ 735.253539] ? memcpy+0x39/0x60 [ 735.254499] parse_opts.part.0+0x1f3/0x340 10:20:45 executing program 7: perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = openat$ptmx(0xffffffffffffff9c, 0x0, 0x2, 0x0) write$binfmt_aout(r0, &(0x7f0000000640), 0x20) read(r0, &(0x7f0000000100)=""/146, 0x92) [ 735.255438] ? p9_fd_show_options+0x1c0/0x1c0 [ 735.256548] ? quarantine_put+0x87/0x1a0 [ 735.257450] ? trace_hardirqs_on+0x5b/0x180 [ 735.258388] ? kfree+0xca/0x360 [ 735.259121] p9_fd_create+0x98/0x420 [ 735.259910] ? p9_conn_create+0x500/0x500 [ 735.260789] ? kfree+0xca/0x360 [ 735.261500] p9_client_create+0x7fb/0x1090 [ 735.262409] ? p9_client_flush+0x430/0x430 [ 735.263328] ? lockdep_init_map_waits+0x26a/0x700 [ 735.264358] ? __raw_spin_lock_init+0x34/0x100 [ 735.265337] v9fs_session_init+0x1dd/0x1690 [ 735.266270] ? kmem_cache_alloc_trace+0x151/0x360 [ 735.267336] ? v9fs_show_options+0x690/0x690 [ 735.268301] ? kasan_unpoison_shadow+0x33/0x40 [ 735.269282] ? __kasan_kmalloc.constprop.0+0xc2/0xd0 [ 735.270365] v9fs_mount+0x79/0x8f0 [ 735.271123] ? v9fs_write_inode+0x60/0x60 [ 735.272006] legacy_get_tree+0x105/0x220 [ 735.272879] vfs_get_tree+0x8e/0x2f0 [ 735.273692] path_mount+0x139a/0x2080 [ 735.274526] ? strncpy_from_user+0x9e/0x460 [ 735.275461] ? finish_automount+0xa40/0xa40 [ 735.276390] ? getname_flags.part.0+0x1dd/0x4f0 [ 735.277394] ? _copy_from_user+0xfb/0x1b0 [ 735.278303] __x64_sys_mount+0x27e/0x300 [ 735.279180] ? path_mount+0x2080/0x2080 [ 735.280050] ? rcu_read_lock_sched_held+0x3a/0x70 [ 735.281082] do_syscall_64+0x33/0x40 [ 735.281891] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 735.283023] RIP: 0033:0x466609 [ 735.283710] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 735.287701] RSP: 002b:00007fd61fccc188 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5 [ 735.289318] RAX: ffffffffffffffda RBX: 000000000056bf80 RCX: 0000000000466609 [ 735.290878] RDX: 00000000200000c0 RSI: 0000000020000000 RDI: 0000000000000000 [ 735.292422] RBP: 00007fd61fccc1d0 R08: 00000000200004c0 R09: 0000000000000000 [ 735.293960] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 735.295512] R13: 00007fff09eaa3cf R14: 00007fd61fccc300 R15: 0000000000022000 [ 735.297284] 9pnet: Insufficient options for proto=fd 10:20:45 executing program 0: openat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x46e2, 0x0) syz_io_uring_setup(0x4b9f, &(0x7f0000000140), &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000ffd000/0x3000)=nil, &(0x7f00000000c0), &(0x7f00000001c0)=0x0) syz_io_uring_submit(0x0, r0, &(0x7f0000000240)=@IORING_OP_FADVISE={0x18, 0x0, 0x0, @fd, 0x2}, 0x0) io_uring_setup(0x232, &(0x7f0000000280)={0x0, 0x8054, 0xf86252d898791568, 0x2, 0x6d}) sigaltstack(&(0x7f0000ffd000/0x1000)=nil, 0x0) [ 735.325904] FAULT_INJECTION: forcing a failure. [ 735.325904] name failslab, interval 1, probability 0, space 0, times 0 [ 735.327233] CPU: 0 PID: 7368 Comm: syz-executor.1 Not tainted 5.10.56 #1 [ 735.327960] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS rel-1.14.0-0-g155821a1990b-prebuilt.qemu.org 04/01/2014 [ 735.329182] Call Trace: [ 735.329482] dump_stack+0x107/0x163 [ 735.329876] should_fail.cold+0x5/0xa [ 735.330319] ? create_object.isra.0+0x3a/0xa20 [ 735.330847] should_failslab+0x5/0x10 [ 735.330963] FAULT_INJECTION: forcing a failure. [ 735.330963] name failslab, interval 1, probability 0, space 0, times 0 [ 735.331275] kmem_cache_alloc+0x5b/0x350 [ 735.331285] ? kernel_text_address+0xea/0x120 [ 735.331304] create_object.isra.0+0x3a/0xa20 [ 735.335164] ? __kasan_kmalloc.constprop.0+0xc2/0xd0 [ 735.335737] kmem_cache_alloc_trace+0x151/0x360 [ 735.336258] ? find_held_lock+0x2c/0x110 [ 735.336711] p9_client_create+0xaf/0x1090 [ 735.337169] ? lock_downgrade+0x6d0/0x6d0 [ 735.337630] ? p9_client_flush+0x430/0x430 [ 735.338106] ? lockdep_init_map_waits+0x26a/0x700 [ 735.338652] ? __raw_spin_lock_init+0x34/0x100 [ 735.339173] v9fs_session_init+0x1dd/0x1690 [ 735.339657] ? kmem_cache_alloc_trace+0x151/0x360 [ 735.340191] ? v9fs_show_options+0x690/0x690 [ 735.340690] ? kasan_unpoison_shadow+0x33/0x40 [ 735.341201] ? __kasan_kmalloc.constprop.0+0xc2/0xd0 [ 735.341773] v9fs_mount+0x79/0x8f0 [ 735.342175] ? v9fs_write_inode+0x60/0x60 [ 735.342653] legacy_get_tree+0x105/0x220 [ 735.343104] vfs_get_tree+0x8e/0x2f0 [ 735.343516] path_mount+0x139a/0x2080 [ 735.343948] ? strncpy_from_user+0x9e/0x460 [ 735.344421] ? finish_automount+0xa40/0xa40 [ 735.344895] ? getname_flags.part.0+0x1dd/0x4f0 [ 735.345401] ? _copy_from_user+0xfb/0x1b0 [ 735.345856] __x64_sys_mount+0x27e/0x300 [ 735.346299] ? path_mount+0x2080/0x2080 [ 735.346788] ? rcu_read_lock_sched_held+0x3a/0x70 [ 735.347323] do_syscall_64+0x33/0x40 [ 735.347730] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 735.348292] RIP: 0033:0x466609 [ 735.348643] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 735.350685] RSP: 002b:00007fdc84e63188 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5 [ 735.351533] RAX: ffffffffffffffda RBX: 000000000056bf80 RCX: 0000000000466609 [ 735.352320] RDX: 00000000200000c0 RSI: 0000000020000000 RDI: 0000000000000000 [ 735.353107] RBP: 00007fdc84e631d0 R08: 00000000200004c0 R09: 0000000000000000 [ 735.353893] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 735.354691] R13: 00007ffc7c6b7e8f R14: 00007fdc84e63300 R15: 0000000000022000 [ 735.355500] CPU: 1 PID: 7356 Comm: syz-executor.4 Not tainted 5.10.56 #1 [ 735.356943] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS rel-1.14.0-0-g155821a1990b-prebuilt.qemu.org 04/01/2014 [ 735.359352] Call Trace: [ 735.359913] dump_stack+0x107/0x163 [ 735.360693] should_fail.cold+0x5/0xa [ 735.361512] should_failslab+0x5/0x10 [ 735.362321] __kmalloc_track_caller+0x79/0x3c0 [ 735.363313] ? strndup_user+0x70/0xe0 [ 735.364130] memdup_user+0x22/0xd0 [ 735.364890] strndup_user+0x70/0xe0 [ 735.365666] __x64_sys_mount+0x133/0x300 [ 735.366543] ? path_mount+0x2080/0x2080 [ 735.367395] ? rcu_read_lock_sched_held+0x3a/0x70 [ 735.368427] do_syscall_64+0x33/0x40 [ 735.369228] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 735.370327] RIP: 0033:0x466609 [ 735.371040] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 735.374961] RSP: 002b:00007f33d7a83188 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5 [ 735.376582] RAX: ffffffffffffffda RBX: 000000000056bf80 RCX: 0000000000466609 [ 735.378094] RDX: 00000000200000c0 RSI: 0000000020000000 RDI: 0000000000000000 [ 735.379615] RBP: 00007f33d7a831d0 R08: 00000000200004c0 R09: 0000000000000000 [ 735.381133] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 735.382661] R13: 00007ffecc2507ff R14: 00007f33d7a83300 R15: 0000000000022000 10:20:57 executing program 7: perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = openat$ptmx(0xffffffffffffff9c, 0x0, 0x2, 0x0) write$binfmt_aout(r0, &(0x7f0000000640), 0x20) read(r0, &(0x7f0000000100)=""/146, 0x92) 10:20:57 executing program 3: perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000040), 0x0, 0x0) write$binfmt_aout(r0, &(0x7f0000000640), 0x20) read(r0, &(0x7f0000000100)=""/146, 0x92) 10:20:57 executing program 4 (fault-call:3 fault-nth:1): r0 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x46e2, 0x0) r1 = dup2(r0, r0) r2 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000040), 0x2, 0x0) mount$9p_fd(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f00000000c0), 0x0, &(0x7f00000004c0)={'trans=fd,', {'rfdno', 0x3d, r1}, 0x2c, {'wfdno', 0x3d, r2}}) 10:20:57 executing program 5 (fault-call:3 fault-nth:30): r0 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x46e2, 0x0) r1 = dup2(r0, r0) r2 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000040), 0x2, 0x0) mount$9p_fd(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f00000000c0), 0x0, &(0x7f00000004c0)={'trans=fd,', {'rfdno', 0x3d, r1}, 0x2c, {'wfdno', 0x3d, r2}}) 10:20:57 executing program 6: perf_event_open(&(0x7f0000000040)={0x0, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000040), 0x2, 0x0) write$binfmt_aout(r0, &(0x7f0000000640), 0x20) 10:20:57 executing program 1 (fault-call:3 fault-nth:22): r0 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x46e2, 0x0) r1 = dup2(r0, r0) r2 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000040), 0x2, 0x0) mount$9p_fd(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f00000000c0), 0x0, &(0x7f00000004c0)={'trans=fd,', {'rfdno', 0x3d, r1}, 0x2c, {'wfdno', 0x3d, r2}}) 10:20:57 executing program 2: r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000040), 0x2, 0x0) write$binfmt_aout(r0, &(0x7f0000000640)={{0x0, 0x0, 0x0, 0xcf}}, 0x20) read(r0, &(0x7f0000000100)=""/146, 0x92) fstatfs(r0, &(0x7f0000000080)=""/7) r1 = syz_mount_image$vfat(&(0x7f0000000000), &(0x7f0000000100)='./file0\x00', 0x0, 0x2, &(0x7f0000000200)=[{&(0x7f0000010000)="eb3c906d6b66732e66617400020801000470008000f801", 0x17}, {0x0, 0x0, 0xa00}], 0x0, &(0x7f0000010f00)) syz_open_procfs$namespace(0x0, &(0x7f00000004c0)='ns/pid\x00') r2 = openat(r1, &(0x7f0000000100)='./file1\x00', 0x105142, 0x0) read(0xffffffffffffffff, &(0x7f0000000240)=""/145, 0x91) openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0) r3 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000040), 0x2, 0x0) r4 = syz_open_dev$vcsa(&(0x7f0000000580), 0x6, 0x200000) ioctl$FIBMAP(r2, 0x1, &(0x7f0000000600)=0x58) openat(r4, &(0x7f00000005c0)='./file0\x00', 0x100, 0x89) ioctl$TIOCGLCKTRMIOS(0xffffffffffffffff, 0x5456, &(0x7f00000006c0)={0x3, 0xffff, 0x0, 0x5, 0x2, "c8052183f68ad3d8dfee6110dbf69996cbf301"}) write$binfmt_aout(r3, &(0x7f0000000640)=ANY=[@ANYBLOB="00000000000001267f00000000000000000000000900"/32], 0x20) read(r3, &(0x7f0000000100)=""/146, 0x92) sendmsg$TIPC_NL_NAME_TABLE_GET(0xffffffffffffffff, &(0x7f0000000480)={&(0x7f00000000c0)={0x10, 0x0, 0x0, 0x4000}, 0xc, &(0x7f00000001c0)={&(0x7f0000000700)=ANY=[@ANYBLOB="2a003001e800", @ANYRES16=0x0, @ANYBLOB="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"], 0x150}, 0x1, 0x0, 0x0, 0x8000}, 0x40000) ioctl$F2FS_IOC_MOVE_RANGE(0xffffffffffffffff, 0xc020f509, &(0x7f0000000340)={0xffffffffffffffff, 0x28cbdf91, 0x1ff, 0x8000}) copy_file_range(r3, 0x0, r2, 0x0, 0x200f5f2, 0x0) sendfile(r2, r2, 0x0, 0x20000007ffffffc) 10:20:57 executing program 0: r0 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x46e2, 0x0) mmap$IORING_OFF_SQ_RING(&(0x7f0000ffd000/0x3000)=nil, 0x3000, 0x0, 0x13, r0, 0x0) r1 = syz_io_uring_setup(0x4b9f, &(0x7f0000000140), &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000ffd000/0x3000)=nil, &(0x7f00000000c0), &(0x7f00000001c0)=0x0) r3 = mmap$IORING_OFF_CQ_RING(&(0x7f0000ffd000/0x3000)=nil, 0x3000, 0x1000000, 0x12, r1, 0x8000000) syz_io_uring_submit(r3, r2, &(0x7f0000000240)=@IORING_OP_FADVISE={0x18, 0x0, 0x0, @fd, 0x2, 0x0, 0x0, 0x5}, 0x0) sigaltstack(&(0x7f0000ffd000/0x1000)=nil, 0x0) [ 747.777052] FAULT_INJECTION: forcing a failure. [ 747.777052] name failslab, interval 1, probability 0, space 0, times 0 [ 747.778844] CPU: 1 PID: 7387 Comm: syz-executor.4 Not tainted 5.10.56 #1 [ 747.779894] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS rel-1.14.0-0-g155821a1990b-prebuilt.qemu.org 04/01/2014 [ 747.781637] Call Trace: [ 747.782046] dump_stack+0x107/0x163 [ 747.782606] should_fail.cold+0x5/0xa [ 747.783201] ? create_object.isra.0+0x3a/0xa20 [ 747.783898] should_failslab+0x5/0x10 [ 747.784479] kmem_cache_alloc+0x5b/0x350 [ 747.785106] create_object.isra.0+0x3a/0xa20 [ 747.785778] ? __kasan_kmalloc.constprop.0+0xc2/0xd0 [ 747.786556] __kmalloc_track_caller+0x177/0x3c0 [ 747.787276] ? strndup_user+0x70/0xe0 [ 747.787860] memdup_user+0x22/0xd0 [ 747.788399] strndup_user+0x70/0xe0 [ 747.788968] __x64_sys_mount+0x133/0x300 [ 747.789591] ? path_mount+0x2080/0x2080 [ 747.790200] ? rcu_read_lock_sched_held+0x3a/0x70 [ 747.790950] do_syscall_64+0x33/0x40 [ 747.791523] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 747.792296] RIP: 0033:0x466609 [ 747.792788] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 747.795581] RSP: 002b:00007f33d7a83188 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5 [ 747.796744] RAX: ffffffffffffffda RBX: 000000000056bf80 RCX: 0000000000466609 [ 747.797833] RDX: 00000000200000c0 RSI: 0000000020000000 RDI: 0000000000000000 [ 747.798934] RBP: 00007f33d7a831d0 R08: 00000000200004c0 R09: 0000000000000000 [ 747.800027] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 747.801110] R13: 00007ffecc2507ff R14: 00007f33d7a83300 R15: 0000000000022000 [ 747.806226] FAULT_INJECTION: forcing a failure. [ 747.806226] name failslab, interval 1, probability 0, space 0, times 0 [ 747.808750] CPU: 0 PID: 7396 Comm: syz-executor.5 Not tainted 5.10.56 #1 [ 747.810173] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS rel-1.14.0-0-g155821a1990b-prebuilt.qemu.org 04/01/2014 [ 747.812585] Call Trace: [ 747.813131] dump_stack+0x107/0x163 [ 747.813882] should_fail.cold+0x5/0xa [ 747.814674] should_failslab+0x5/0x10 [ 747.815493] __kmalloc_track_caller+0x79/0x3c0 [ 747.816460] ? match_number+0xaf/0x1c0 [ 747.817276] kmemdup_nul+0x2d/0xa0 [ 747.818014] match_number+0xaf/0x1c0 [ 747.818819] ? match_u64+0x180/0x180 [ 747.819581] ? __kmalloc_track_caller+0x2d0/0x3c0 [ 747.820599] ? memcpy+0x39/0x60 [ 747.821283] parse_opts.part.0+0x1f3/0x340 [ 747.822186] ? p9_fd_show_options+0x1c0/0x1c0 [ 747.823141] ? quarantine_put+0x87/0x1a0 [ 747.823976] ? trace_hardirqs_on+0x5b/0x180 [ 747.824860] ? kfree+0xca/0x360 [ 747.825543] p9_fd_create+0x98/0x420 [ 747.826303] ? p9_conn_create+0x500/0x500 [ 747.827160] ? kfree+0xca/0x360 [ 747.827846] p9_client_create+0x7fb/0x1090 [ 747.828761] ? p9_client_flush+0x430/0x430 [ 747.829678] ? lockdep_init_map_waits+0x26a/0x700 [ 747.830669] ? __raw_spin_lock_init+0x34/0x100 [ 747.831646] v9fs_session_init+0x1dd/0x1690 [ 747.832543] ? kmem_cache_alloc_trace+0x151/0x360 [ 747.833537] ? v9fs_show_options+0x690/0x690 [ 747.834510] ? kasan_unpoison_shadow+0x33/0x40 [ 747.835470] ? __kasan_kmalloc.constprop.0+0xc2/0xd0 [ 747.836520] v9fs_mount+0x79/0x8f0 [ 747.837256] ? v9fs_write_inode+0x60/0x60 [ 747.838110] legacy_get_tree+0x105/0x220 [ 747.838976] vfs_get_tree+0x8e/0x2f0 [ 747.839766] path_mount+0x139a/0x2080 [ 747.840598] ? strncpy_from_user+0x9e/0x460 [ 747.841483] ? finish_automount+0xa40/0xa40 [ 747.842359] ? getname_flags.part.0+0x1dd/0x4f0 [ 747.843369] ? _copy_from_user+0xfb/0x1b0 [ 747.844262] __x64_sys_mount+0x27e/0x300 [ 747.845089] ? path_mount+0x2080/0x2080 [ 747.845902] ? rcu_read_lock_sched_held+0x3a/0x70 [ 747.846913] do_syscall_64+0x33/0x40 [ 747.847670] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 747.848708] RIP: 0033:0x466609 [ 747.849362] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 747.853169] RSP: 002b:00007fd61fccc188 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5 [ 747.854774] RAX: ffffffffffffffda RBX: 000000000056bf80 RCX: 0000000000466609 [ 747.856238] RDX: 00000000200000c0 RSI: 0000000020000000 RDI: 0000000000000000 [ 747.857686] RBP: 00007fd61fccc1d0 R08: 00000000200004c0 R09: 0000000000000000 [ 747.859128] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 747.860129] FAULT_INJECTION: forcing a failure. [ 747.860129] name failslab, interval 1, probability 0, space 0, times 0 [ 747.860598] R13: 00007fff09eaa3cf R14: 00007fd61fccc300 R15: 0000000000022000 [ 747.860851] 9pnet: Insufficient options for proto=fd [ 747.862412] CPU: 1 PID: 7394 Comm: syz-executor.1 Not tainted 5.10.56 #1 [ 747.865531] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS rel-1.14.0-0-g155821a1990b-prebuilt.qemu.org 04/01/2014 [ 747.867226] Call Trace: [ 747.867617] dump_stack+0x107/0x163 [ 747.868163] should_fail.cold+0x5/0xa [ 747.868728] ? create_object.isra.0+0x3a/0xa20 [ 747.869408] should_failslab+0x5/0x10 [ 747.869979] kmem_cache_alloc+0x5b/0x350 [ 747.870583] ? lock_downgrade+0x6d0/0x6d0 [ 747.871209] create_object.isra.0+0x3a/0xa20 [ 747.871858] ? __kasan_kmalloc.constprop.0+0xc2/0xd0 [ 747.872616] __kmalloc_track_caller+0x177/0x3c0 [ 747.873301] ? p9_client_create+0x41d/0x1090 [ 747.873950] kstrdup+0x36/0x70 [ 747.874424] p9_client_create+0x41d/0x1090 [ 747.875053] ? lock_downgrade+0x6d0/0x6d0 [ 747.875667] ? p9_client_flush+0x430/0x430 [ 747.876318] ? lockdep_init_map_waits+0x26a/0x700 [ 747.877053] ? __raw_spin_lock_init+0x34/0x100 [ 747.877738] v9fs_session_init+0x1dd/0x1690 [ 747.878385] ? kmem_cache_alloc_trace+0x151/0x360 [ 747.879105] ? v9fs_show_options+0x690/0x690 [ 747.879765] ? kasan_unpoison_shadow+0x33/0x40 [ 747.880434] ? __kasan_kmalloc.constprop.0+0xc2/0xd0 [ 747.881181] v9fs_mount+0x79/0x8f0 [ 747.881705] ? v9fs_write_inode+0x60/0x60 [ 747.882315] legacy_get_tree+0x105/0x220 [ 747.882941] vfs_get_tree+0x8e/0x2f0 [ 747.883490] path_mount+0x139a/0x2080 [ 747.884086] ? strncpy_from_user+0x9e/0x460 [ 747.884723] ? finish_automount+0xa40/0xa40 [ 747.885359] ? getname_flags.part.0+0x1dd/0x4f0 [ 747.886051] ? _copy_from_user+0xfb/0x1b0 [ 747.886679] __x64_sys_mount+0x27e/0x300 [ 747.887291] ? path_mount+0x2080/0x2080 [ 747.887881] ? rcu_read_lock_sched_held+0x3a/0x70 [ 747.888592] do_syscall_64+0x33/0x40 [ 747.889141] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 747.889897] RIP: 0033:0x466609 [ 747.890368] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 747.893068] RSP: 002b:00007fdc84e63188 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5 [ 747.894179] RAX: ffffffffffffffda RBX: 000000000056bf80 RCX: 0000000000466609 [ 747.895252] RDX: 00000000200000c0 RSI: 0000000020000000 RDI: 0000000000000000 [ 747.896317] RBP: 00007fdc84e631d0 R08: 00000000200004c0 R09: 0000000000000000 [ 747.897374] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 747.898420] R13: 00007ffc7c6b7e8f R14: 00007fdc84e63300 R15: 0000000000022000 10:20:57 executing program 5 (fault-call:3 fault-nth:31): r0 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x46e2, 0x0) r1 = dup2(r0, r0) r2 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000040), 0x2, 0x0) mount$9p_fd(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f00000000c0), 0x0, &(0x7f00000004c0)={'trans=fd,', {'rfdno', 0x3d, r1}, 0x2c, {'wfdno', 0x3d, r2}}) 10:20:57 executing program 4 (fault-call:3 fault-nth:2): r0 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x46e2, 0x0) r1 = dup2(r0, r0) r2 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000040), 0x2, 0x0) mount$9p_fd(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f00000000c0), 0x0, &(0x7f00000004c0)={'trans=fd,', {'rfdno', 0x3d, r1}, 0x2c, {'wfdno', 0x3d, r2}}) 10:20:57 executing program 7: perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000040), 0x0, 0x0) write$binfmt_aout(r0, &(0x7f0000000640), 0x20) read(r0, &(0x7f0000000100)=""/146, 0x92) 10:20:57 executing program 0: r0 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x46e2, 0x0) r1 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffd000/0x3000)=nil, 0x3000, 0x0, 0x13, r0, 0x0) syz_io_uring_setup(0x4b9f, &(0x7f0000000140), &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000ffd000/0x3000)=nil, &(0x7f00000000c0), &(0x7f00000001c0)) syz_io_uring_setup(0x4b93, &(0x7f0000000280)={0x0, 0x3023, 0x10, 0x0, 0x31e, 0x0, r0}, &(0x7f0000ffe000/0x1000)=nil, &(0x7f0000ffd000/0x2000)=nil, &(0x7f0000000000), &(0x7f0000000080)=0x0) r3 = socket$inet(0x2, 0x1, 0x0) setsockopt$inet_int(r3, 0x0, 0x13, &(0x7f0000000180)=0x1, 0x4) bind$inet(r3, &(0x7f0000000c00)={0x2, 0x0, @multicast2}, 0x10) syz_io_uring_submit(r1, r2, &(0x7f0000000240)=@IORING_OP_ACCEPT={0xd, 0x1, 0x0, r3, &(0x7f0000000100)}, 0x0) sigaltstack(&(0x7f0000ffd000/0x1000)=nil, 0x0) [ 747.966013] FAULT_INJECTION: forcing a failure. [ 747.966013] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 747.967778] CPU: 1 PID: 7408 Comm: syz-executor.4 Not tainted 5.10.56 #1 [ 747.968756] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS rel-1.14.0-0-g155821a1990b-prebuilt.qemu.org 04/01/2014 [ 747.970421] Call Trace: [ 747.970820] dump_stack+0x107/0x163 [ 747.971361] should_fail.cold+0x5/0xa [ 747.971939] _copy_from_user+0x2e/0x1b0 [ 747.972518] memdup_user+0x65/0xd0 [ 747.973034] strndup_user+0x70/0xe0 [ 747.973571] __x64_sys_mount+0x133/0x300 [ 747.974167] ? path_mount+0x2080/0x2080 [ 747.974775] ? rcu_read_lock_sched_held+0x3a/0x70 [ 747.975501] do_syscall_64+0x33/0x40 [ 747.976047] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 747.976794] RIP: 0033:0x466609 [ 747.977264] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 747.980013] RSP: 002b:00007f33d7a83188 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5 [ 747.981289] RAX: ffffffffffffffda RBX: 000000000056bf80 RCX: 0000000000466609 [ 747.982479] RDX: 00000000200000c0 RSI: 0000000020000000 RDI: 0000000000000000 [ 747.983682] RBP: 00007f33d7a831d0 R08: 00000000200004c0 R09: 0000000000000000 [ 747.984861] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 747.986049] R13: 00007ffecc2507ff R14: 00007f33d7a83300 R15: 0000000000022000 [ 747.994654] FAULT_INJECTION: forcing a failure. [ 747.994654] name failslab, interval 1, probability 0, space 0, times 0 [ 747.996559] CPU: 1 PID: 7409 Comm: syz-executor.5 Not tainted 5.10.56 #1 [ 747.997695] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS rel-1.14.0-0-g155821a1990b-prebuilt.qemu.org 04/01/2014 [ 747.999568] Call Trace: [ 748.000004] dump_stack+0x107/0x163 [ 748.000603] should_fail.cold+0x5/0xa [ 748.001241] ? p9_fd_create+0x161/0x420 [ 748.001913] should_failslab+0x5/0x10 [ 748.002550] kmem_cache_alloc_trace+0x55/0x360 [ 748.003339] p9_fd_create+0x161/0x420 [ 748.003964] ? p9_conn_create+0x500/0x500 [ 748.004644] ? kfree+0xca/0x360 [ 748.005199] p9_client_create+0x7fb/0x1090 [ 748.005902] ? p9_client_flush+0x430/0x430 [ 748.006607] ? lockdep_init_map_waits+0x26a/0x700 [ 748.007431] ? __raw_spin_lock_init+0x34/0x100 [ 748.008201] v9fs_session_init+0x1dd/0x1690 [ 748.008920] ? kmem_cache_alloc_trace+0x151/0x360 [ 748.009718] ? v9fs_show_options+0x690/0x690 [ 748.010449] ? kasan_unpoison_shadow+0x33/0x40 [ 748.011210] ? __kasan_kmalloc.constprop.0+0xc2/0xd0 [ 748.012042] v9fs_mount+0x79/0x8f0 [ 748.012626] ? v9fs_write_inode+0x60/0x60 [ 748.013313] legacy_get_tree+0x105/0x220 [ 748.013984] vfs_get_tree+0x8e/0x2f0 [ 748.014596] path_mount+0x139a/0x2080 [ 748.015270] ? strncpy_from_user+0x9e/0x460 [ 748.016005] ? finish_automount+0xa40/0xa40 [ 748.016696] ? getname_flags.part.0+0x1dd/0x4f0 [ 748.017468] ? _copy_from_user+0xfb/0x1b0 [ 748.018153] __x64_sys_mount+0x27e/0x300 [ 748.018811] ? path_mount+0x2080/0x2080 [ 748.019469] ? rcu_read_lock_sched_held+0x3a/0x70 [ 748.020278] do_syscall_64+0x33/0x40 [ 748.020892] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 748.021736] RIP: 0033:0x466609 [ 748.022282] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 748.025356] RSP: 002b:00007fd61fccc188 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5 [ 748.026596] RAX: ffffffffffffffda RBX: 000000000056bf80 RCX: 0000000000466609 [ 748.027778] RDX: 00000000200000c0 RSI: 0000000020000000 RDI: 0000000000000000 [ 748.028951] RBP: 00007fd61fccc1d0 R08: 00000000200004c0 R09: 0000000000000000 [ 748.030158] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 748.031360] R13: 00007fff09eaa3cf R14: 00007fd61fccc300 R15: 0000000000022000 10:20:57 executing program 6: perf_event_open(&(0x7f0000000040)={0x0, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000040), 0x2, 0x0) write$binfmt_aout(r0, &(0x7f0000000640), 0x20) 10:20:57 executing program 2: r0 = creat(&(0x7f0000000040)='./file0\x00', 0x0) creat(&(0x7f0000000080)='./file0\x00', 0x8) fallocate(0xffffffffffffffff, 0x0, 0x0, 0x0) getresuid(&(0x7f0000000240), &(0x7f0000000280), 0x0) stat(&(0x7f0000000340)='./file0\x00', &(0x7f0000000380)) syncfs(r0) r1 = open_tree(0xffffffffffffff9c, &(0x7f0000000100)='./file0\x00', 0x0) r2 = socket$inet6_udplite(0xa, 0x2, 0x88) setsockopt$inet6_mreq(r2, 0x29, 0x1b, &(0x7f0000000000)={@empty}, 0x14) fallocate(r2, 0x1, 0x1ffffffffffffffe, 0x80000000) sendmsg$nl_netfilter(r1, &(0x7f00000002c0)={&(0x7f0000000140)={0x10, 0x0, 0x0, 0x2}, 0xc, 0x0, 0x1, 0x0, 0x0, 0x40800}, 0x0) r3 = openat(0xffffffffffffff9c, &(0x7f0000000080)='/proc/self/exe\x00', 0x0, 0x0) r4 = socket$inet6_tcp(0xa, 0x1, 0x0) ioctl$BTRFS_IOC_TREE_SEARCH_V2(0xffffffffffffffff, 0xc0709411, &(0x7f0000000540)=ANY=[@ANYRES64=0x0, @ANYBLOB="0300000000000000040080000000000017000000000000002e00000000000000040000000000000008000000000000004131826a20daef71fbffffff00000080dbd5000000000000090000000000000030070000000000000010000000000000400000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000c451deb975a11e138dfe269d83f24e5a4053cd09502d9c745c22e6a79fc563be4506bdb956aaf3c34319de269dfc84bd07dba4ed81ef0086297e1f90502125792fc338e903c766d9d23e124ee05b17b882"]) setsockopt$inet6_tcp_int(r4, 0x6, 0x2, &(0x7f0000000040)=0x81, 0x4) bind$inet6(r4, &(0x7f00000000c0)={0xa, 0x4e20, 0x0, @loopback}, 0x1c) connect$inet6(r4, &(0x7f0000000000)={0xa, 0x4e20, 0x0, @loopback}, 0x1c) sendfile(r4, r3, 0x0, 0x80464c453f) ioctl$EXT4_IOC_ALLOC_DA_BLKS(r0, 0x660c) creat(&(0x7f0000000180)='./file0\x00', 0x0) 10:20:57 executing program 4 (fault-call:3 fault-nth:3): r0 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x46e2, 0x0) r1 = dup2(r0, r0) r2 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000040), 0x2, 0x0) mount$9p_fd(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f00000000c0), 0x0, &(0x7f00000004c0)={'trans=fd,', {'rfdno', 0x3d, r1}, 0x2c, {'wfdno', 0x3d, r2}}) [ 748.094068] FAULT_INJECTION: forcing a failure. [ 748.094068] name failslab, interval 1, probability 0, space 0, times 0 [ 748.095978] CPU: 1 PID: 7421 Comm: syz-executor.4 Not tainted 5.10.56 #1 [ 748.097050] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS rel-1.14.0-0-g155821a1990b-prebuilt.qemu.org 04/01/2014 [ 748.098891] Call Trace: [ 748.099319] dump_stack+0x107/0x163 [ 748.099901] should_fail.cold+0x5/0xa [ 748.100508] ? copy_mount_options+0x55/0x180 [ 748.101236] should_failslab+0x5/0x10 [ 748.101857] kmem_cache_alloc_trace+0x55/0x360 [ 748.102587] ? _copy_from_user+0xfb/0x1b0 [ 748.103268] copy_mount_options+0x55/0x180 [ 748.103961] __x64_sys_mount+0x1a8/0x300 [ 748.104628] ? path_mount+0x2080/0x2080 [ 748.105282] ? rcu_read_lock_sched_held+0x3a/0x70 [ 748.106074] do_syscall_64+0x33/0x40 [ 748.106683] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 748.107542] RIP: 0033:0x466609 [ 748.108068] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 748.111135] RSP: 002b:00007f33d7a83188 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5 [ 748.112370] RAX: ffffffffffffffda RBX: 000000000056bf80 RCX: 0000000000466609 [ 748.113528] RDX: 00000000200000c0 RSI: 0000000020000000 RDI: 0000000000000000 [ 748.114691] RBP: 00007f33d7a831d0 R08: 00000000200004c0 R09: 0000000000000000 [ 748.115867] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 748.117028] R13: 00007ffecc2507ff R14: 00007f33d7a83300 R15: 0000000000022000 10:20:57 executing program 1 (fault-call:3 fault-nth:23): r0 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x46e2, 0x0) r1 = dup2(r0, r0) r2 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000040), 0x2, 0x0) mount$9p_fd(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f00000000c0), 0x0, &(0x7f00000004c0)={'trans=fd,', {'rfdno', 0x3d, r1}, 0x2c, {'wfdno', 0x3d, r2}}) 10:20:57 executing program 5 (fault-call:3 fault-nth:32): r0 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x46e2, 0x0) r1 = dup2(r0, r0) r2 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000040), 0x2, 0x0) mount$9p_fd(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f00000000c0), 0x0, &(0x7f00000004c0)={'trans=fd,', {'rfdno', 0x3d, r1}, 0x2c, {'wfdno', 0x3d, r2}}) [ 748.175133] FAULT_INJECTION: forcing a failure. [ 748.175133] name failslab, interval 1, probability 0, space 0, times 0 [ 748.176892] CPU: 1 PID: 7431 Comm: syz-executor.1 Not tainted 5.10.56 #1 [ 748.177927] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS rel-1.14.0-0-g155821a1990b-prebuilt.qemu.org 04/01/2014 [ 748.179563] Call Trace: [ 748.180004] dump_stack+0x107/0x163 [ 748.180517] should_fail.cold+0x5/0xa [ 748.181050] should_failslab+0x5/0x10 [ 748.181578] __kmalloc_track_caller+0x79/0x3c0 [ 748.182211] ? p9_client_create+0x51e/0x1090 [ 748.182837] kmemdup_nul+0x2d/0xa0 [ 748.183338] p9_client_create+0x51e/0x1090 [ 748.183933] ? p9_client_flush+0x430/0x430 [ 748.184534] ? lockdep_init_map_waits+0x26a/0x700 [ 748.185221] ? __raw_spin_lock_init+0x34/0x100 [ 748.185849] v9fs_session_init+0x1dd/0x1690 [ 748.186456] ? kmem_cache_alloc_trace+0x151/0x360 [ 748.187152] ? v9fs_show_options+0x690/0x690 [ 748.187792] ? kasan_unpoison_shadow+0x33/0x40 [ 748.188436] ? __kasan_kmalloc.constprop.0+0xc2/0xd0 [ 748.189155] v9fs_mount+0x79/0x8f0 [ 748.189657] ? v9fs_write_inode+0x60/0x60 [ 748.190248] legacy_get_tree+0x105/0x220 [ 748.190857] vfs_get_tree+0x8e/0x2f0 [ 748.191383] path_mount+0x139a/0x2080 [ 748.191920] ? strncpy_from_user+0x9e/0x460 [ 748.192535] ? finish_automount+0xa40/0xa40 [ 748.193142] ? getname_flags.part.0+0x1dd/0x4f0 [ 748.193799] ? _copy_from_user+0xfb/0x1b0 [ 748.194390] __x64_sys_mount+0x27e/0x300 [ 748.194976] ? path_mount+0x2080/0x2080 [ 748.195542] ? rcu_read_lock_sched_held+0x3a/0x70 [ 748.196230] do_syscall_64+0x33/0x40 [ 748.196755] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 748.197481] RIP: 0033:0x466609 [ 748.197934] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 748.200515] RSP: 002b:00007fdc84e63188 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5 [ 748.201574] RAX: ffffffffffffffda RBX: 000000000056bf80 RCX: 0000000000466609 [ 748.202564] RDX: 00000000200000c0 RSI: 0000000020000000 RDI: 0000000000000000 [ 748.203575] RBP: 00007fdc84e631d0 R08: 00000000200004c0 R09: 0000000000000000 [ 748.204555] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 748.205539] R13: 00007ffc7c6b7e8f R14: 00007fdc84e63300 R15: 0000000000022000 [ 748.216398] FAULT_INJECTION: forcing a failure. [ 748.216398] name failslab, interval 1, probability 0, space 0, times 0 [ 748.218062] CPU: 1 PID: 7432 Comm: syz-executor.5 Not tainted 5.10.56 #1 [ 748.218996] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS rel-1.14.0-0-g155821a1990b-prebuilt.qemu.org 04/01/2014 [ 748.220833] Call Trace: [ 748.221208] dump_stack+0x107/0x163 [ 748.221731] should_fail.cold+0x5/0xa [ 748.222255] ? create_object.isra.0+0x3a/0xa20 [ 748.222909] should_failslab+0x5/0x10 [ 748.223456] kmem_cache_alloc+0x5b/0x350 [ 748.224018] ? p9_fd_show_options+0x1c0/0x1c0 [ 748.224647] create_object.isra.0+0x3a/0xa20 [ 748.225241] ? __kasan_kmalloc.constprop.0+0xc2/0xd0 [ 748.225952] kmem_cache_alloc_trace+0x151/0x360 [ 748.226586] p9_fd_create+0x161/0x420 [ 748.227119] ? p9_conn_create+0x500/0x500 [ 748.227701] ? kfree+0xca/0x360 [ 748.228149] p9_client_create+0x7fb/0x1090 [ 748.228779] ? p9_client_flush+0x430/0x430 [ 748.229390] ? lockdep_init_map_waits+0x26a/0x700 [ 748.230065] ? __raw_spin_lock_init+0x34/0x100 [ 748.230708] v9fs_session_init+0x1dd/0x1690 [ 748.231346] ? kmem_cache_alloc_trace+0x151/0x360 [ 748.232006] ? v9fs_show_options+0x690/0x690 [ 748.232632] ? kasan_unpoison_shadow+0x33/0x40 [ 748.233256] ? __kasan_kmalloc.constprop.0+0xc2/0xd0 [ 748.233967] v9fs_mount+0x79/0x8f0 [ 748.234469] ? v9fs_write_inode+0x60/0x60 [ 748.235109] legacy_get_tree+0x105/0x220 [ 748.235693] vfs_get_tree+0x8e/0x2f0 [ 748.236225] path_mount+0x139a/0x2080 [ 748.236763] ? strncpy_from_user+0x9e/0x460 [ 748.237370] ? finish_automount+0xa40/0xa40 [ 748.237971] ? getname_flags.part.0+0x1dd/0x4f0 [ 748.238620] ? _copy_from_user+0xfb/0x1b0 [ 748.239231] __x64_sys_mount+0x27e/0x300 [ 748.239792] ? path_mount+0x2080/0x2080 [ 748.240349] ? rcu_read_lock_sched_held+0x3a/0x70 [ 748.241021] do_syscall_64+0x33/0x40 [ 748.241546] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 748.242252] RIP: 0033:0x466609 [ 748.242705] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 748.245288] RSP: 002b:00007fd61fccc188 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5 [ 748.246344] RAX: ffffffffffffffda RBX: 000000000056bf80 RCX: 0000000000466609 [ 748.247353] RDX: 00000000200000c0 RSI: 0000000020000000 RDI: 0000000000000000 [ 748.248347] RBP: 00007fd61fccc1d0 R08: 00000000200004c0 R09: 0000000000000000 [ 748.249370] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 748.250367] R13: 00007fff09eaa3cf R14: 00007fd61fccc300 R15: 0000000000022000 10:21:11 executing program 4 (fault-call:3 fault-nth:4): r0 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x46e2, 0x0) r1 = dup2(r0, r0) r2 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000040), 0x2, 0x0) mount$9p_fd(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f00000000c0), 0x0, &(0x7f00000004c0)={'trans=fd,', {'rfdno', 0x3d, r1}, 0x2c, {'wfdno', 0x3d, r2}}) 10:21:11 executing program 7: perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000040), 0x0, 0x0) write$binfmt_aout(r0, &(0x7f0000000640), 0x20) read(r0, &(0x7f0000000100)=""/146, 0x92) 10:21:11 executing program 6: perf_event_open(&(0x7f0000000040)={0x0, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000040), 0x2, 0x0) write$binfmt_aout(r0, &(0x7f0000000640), 0x20) 10:21:11 executing program 2: r0 = creat(&(0x7f0000000040)='./file0\x00', 0x0) creat(&(0x7f0000000080)='./file0\x00', 0x8) fallocate(0xffffffffffffffff, 0x0, 0x0, 0x0) getresuid(&(0x7f0000000240), &(0x7f0000000280), 0x0) stat(&(0x7f0000000340)='./file0\x00', &(0x7f0000000380)) syncfs(r0) r1 = open_tree(0xffffffffffffff9c, &(0x7f0000000100)='./file0\x00', 0x0) r2 = socket$inet6_udplite(0xa, 0x2, 0x88) setsockopt$inet6_mreq(r2, 0x29, 0x1b, &(0x7f0000000000)={@empty}, 0x14) fallocate(r2, 0x1, 0x1ffffffffffffffe, 0x80000000) sendmsg$nl_netfilter(r1, &(0x7f00000002c0)={&(0x7f0000000140)={0x10, 0x0, 0x0, 0x2}, 0xc, 0x0, 0x1, 0x0, 0x0, 0x40800}, 0x0) r3 = openat(0xffffffffffffff9c, &(0x7f0000000080)='/proc/self/exe\x00', 0x0, 0x0) r4 = socket$inet6_tcp(0xa, 0x1, 0x0) ioctl$BTRFS_IOC_TREE_SEARCH_V2(0xffffffffffffffff, 0xc0709411, &(0x7f0000000540)=ANY=[@ANYRES64=0x0, @ANYBLOB="0300000000000000040080000000000017000000000000002e00000000000000040000000000000008000000000000004131826a20daef71fbffffff00000080dbd5000000000000090000000000000030070000000000000010000000000000400000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000c451deb975a11e138dfe269d83f24e5a4053cd09502d9c745c22e6a79fc563be4506bdb956aaf3c34319de269dfc84bd07dba4ed81ef0086297e1f90502125792fc338e903c766d9d23e124ee05b17b882"]) setsockopt$inet6_tcp_int(r4, 0x6, 0x2, &(0x7f0000000040)=0x81, 0x4) bind$inet6(r4, &(0x7f00000000c0)={0xa, 0x4e20, 0x0, @loopback}, 0x1c) connect$inet6(r4, &(0x7f0000000000)={0xa, 0x4e20, 0x0, @loopback}, 0x1c) sendfile(r4, r3, 0x0, 0x80464c453f) ioctl$EXT4_IOC_ALLOC_DA_BLKS(r0, 0x660c) creat(&(0x7f0000000180)='./file0\x00', 0x0) 10:21:11 executing program 0: r0 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x46e2, 0x0) r1 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffd000/0x3000)=nil, 0x3000, 0x0, 0x13, r0, 0x0) syz_io_uring_setup(0x4b9f, &(0x7f0000000140)={0x0, 0x0, 0x0, 0x0, 0x1b8}, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000ffd000/0x3000)=nil, &(0x7f00000000c0), &(0x7f00000001c0)=0x0) syz_io_uring_submit(r1, r2, &(0x7f0000000240)=@IORING_OP_FADVISE={0x18, 0x0, 0x0, @fd, 0x2}, 0x0) sigaltstack(&(0x7f0000ffd000/0x1000)=nil, 0x0) 10:21:11 executing program 5 (fault-call:3 fault-nth:33): r0 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x46e2, 0x0) r1 = dup2(r0, r0) r2 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000040), 0x2, 0x0) mount$9p_fd(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f00000000c0), 0x0, &(0x7f00000004c0)={'trans=fd,', {'rfdno', 0x3d, r1}, 0x2c, {'wfdno', 0x3d, r2}}) 10:21:11 executing program 1 (fault-call:3 fault-nth:24): r0 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x46e2, 0x0) r1 = dup2(r0, r0) r2 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000040), 0x2, 0x0) mount$9p_fd(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f00000000c0), 0x0, &(0x7f00000004c0)={'trans=fd,', {'rfdno', 0x3d, r1}, 0x2c, {'wfdno', 0x3d, r2}}) 10:21:11 executing program 3: perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000040), 0x0, 0x0) write$binfmt_aout(r0, &(0x7f0000000640), 0x20) read(r0, &(0x7f0000000100)=""/146, 0x92) [ 762.045162] FAULT_INJECTION: forcing a failure. [ 762.045162] name failslab, interval 1, probability 0, space 0, times 0 [ 762.047646] CPU: 1 PID: 7450 Comm: syz-executor.1 Not tainted 5.10.56 #1 [ 762.049032] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS rel-1.14.0-0-g155821a1990b-prebuilt.qemu.org 04/01/2014 [ 762.051408] Call Trace: [ 762.051950] dump_stack+0x107/0x163 [ 762.052713] should_fail.cold+0x5/0xa [ 762.053514] ? create_object.isra.0+0x3a/0xa20 [ 762.054457] should_failslab+0x5/0x10 [ 762.055272] kmem_cache_alloc+0x5b/0x350 [ 762.056120] create_object.isra.0+0x3a/0xa20 [ 762.057015] ? __kasan_kmalloc.constprop.0+0xc2/0xd0 [ 762.058072] __kmalloc_track_caller+0x177/0x3c0 [ 762.059052] ? p9_client_create+0x51e/0x1090 [ 762.059981] kmemdup_nul+0x2d/0xa0 [ 762.060724] p9_client_create+0x51e/0x1090 [ 762.061612] ? p9_client_flush+0x430/0x430 [ 762.062500] ? lockdep_init_map_waits+0x26a/0x700 [ 762.063539] ? __raw_spin_lock_init+0x34/0x100 [ 762.064492] v9fs_session_init+0x1dd/0x1690 [ 762.065398] ? kmem_cache_alloc_trace+0x151/0x360 [ 762.066391] ? v9fs_show_options+0x690/0x690 [ 762.067345] ? kasan_unpoison_shadow+0x33/0x40 [ 762.068288] ? __kasan_kmalloc.constprop.0+0xc2/0xd0 [ 762.069343] v9fs_mount+0x79/0x8f0 [ 762.070082] ? v9fs_write_inode+0x60/0x60 [ 762.070926] legacy_get_tree+0x105/0x220 [ 762.071801] vfs_get_tree+0x8e/0x2f0 [ 762.072574] path_mount+0x139a/0x2080 [ 762.073373] ? strncpy_from_user+0x9e/0x460 [ 762.074266] ? finish_automount+0xa40/0xa40 [ 762.075204] ? getname_flags.part.0+0x1dd/0x4f0 [ 762.076166] ? _copy_from_user+0xfb/0x1b0 [ 762.077031] __x64_sys_mount+0x27e/0x300 [ 762.077871] ? path_mount+0x2080/0x2080 [ 762.078703] ? rcu_read_lock_sched_held+0x3a/0x70 [ 762.079908] do_syscall_64+0x33/0x40 [ 762.080832] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 762.082146] RIP: 0033:0x466609 [ 762.083017] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 762.087794] RSP: 002b:00007fdc84e63188 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5 [ 762.089714] RAX: ffffffffffffffda RBX: 000000000056bf80 RCX: 0000000000466609 [ 762.091214] RDX: 00000000200000c0 RSI: 0000000020000000 RDI: 0000000000000000 [ 762.092692] RBP: 00007fdc84e631d0 R08: 00000000200004c0 R09: 0000000000000000 [ 762.094167] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 762.095668] R13: 00007ffc7c6b7e8f R14: 00007fdc84e63300 R15: 0000000000022000 [ 762.109415] FAULT_INJECTION: forcing a failure. [ 762.109415] name failslab, interval 1, probability 0, space 0, times 0 [ 762.112070] CPU: 1 PID: 7464 Comm: syz-executor.4 Not tainted 5.10.56 #1 [ 762.113502] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS rel-1.14.0-0-g155821a1990b-prebuilt.qemu.org 04/01/2014 [ 762.116064] Call Trace: [ 762.116632] dump_stack+0x107/0x163 [ 762.117403] should_fail.cold+0x5/0xa [ 762.118208] ? create_object.isra.0+0x3a/0xa20 [ 762.119174] should_failslab+0x5/0x10 [ 762.119952] kmem_cache_alloc+0x5b/0x350 [ 762.120375] FAULT_INJECTION: forcing a failure. [ 762.120375] name failslab, interval 1, probability 0, space 0, times 0 [ 762.120902] create_object.isra.0+0x3a/0xa20 [ 762.120919] ? __kasan_kmalloc.constprop.0+0xc2/0xd0 [ 762.120941] kmem_cache_alloc_trace+0x151/0x360 [ 762.120966] copy_mount_options+0x55/0x180 [ 762.120986] __x64_sys_mount+0x1a8/0x300 [ 762.121004] ? path_mount+0x2080/0x2080 [ 762.121036] ? rcu_read_lock_sched_held+0x3a/0x70 [ 762.121068] do_syscall_64+0x33/0x40 [ 762.130593] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 762.131672] RIP: 0033:0x466609 [ 762.132357] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 762.136200] RSP: 002b:00007f33d7a62188 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5 [ 762.137838] RAX: ffffffffffffffda RBX: 000000000056c038 RCX: 0000000000466609 [ 762.139587] RDX: 00000000200000c0 RSI: 0000000020000000 RDI: 0000000000000000 [ 762.141335] RBP: 00007f33d7a621d0 R08: 00000000200004c0 R09: 0000000000000000 [ 762.143095] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 762.144828] R13: 00007ffecc2507ff R14: 00007f33d7a62300 R15: 0000000000022000 [ 762.146608] CPU: 0 PID: 7456 Comm: syz-executor.5 Not tainted 5.10.56 #1 [ 762.148308] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS rel-1.14.0-0-g155821a1990b-prebuilt.qemu.org 04/01/2014 [ 762.148921] 9pnet: Insufficient options for proto=fd [ 762.150751] Call Trace: [ 762.150781] dump_stack+0x107/0x163 [ 762.150804] should_fail.cold+0x5/0xa [ 762.150827] ? p9_client_prepare_req.part.0+0x3a/0xb30 [ 762.150852] should_failslab+0x5/0x10 [ 762.156258] kmem_cache_alloc+0x5b/0x350 [ 762.157142] p9_client_prepare_req.part.0+0x3a/0xb30 [ 762.158244] p9_client_rpc+0x21c/0x1200 [ 762.159137] ? p9_client_prepare_req.part.0+0xb30/0xb30 [ 762.160287] ? n_tty_ioctl+0x370/0x370 [ 762.161128] ? ldsem_up_read+0x40/0x80 [ 762.161961] ? n_tty_ioctl+0x370/0x370 [ 762.162803] ? tty_poll+0x159/0x1c0 [ 762.163591] ? tty_release+0xe90/0xe90 [ 762.164431] ? p9_fd_poll+0x1e0/0x2c0 [ 762.165258] ? p9_fd_create+0x2eb/0x420 [ 762.166116] ? p9_conn_create+0x500/0x500 [ 762.167024] ? kfree+0xca/0x360 [ 762.167747] p9_client_create+0xa72/0x1090 [ 762.168671] ? p9_client_flush+0x430/0x430 [ 762.169596] ? lockdep_init_map_waits+0x26a/0x700 [ 762.170638] ? __raw_spin_lock_init+0x34/0x100 [ 762.171640] v9fs_session_init+0x1dd/0x1690 [ 762.172586] ? kmem_cache_alloc_trace+0x151/0x360 [ 762.173626] ? v9fs_show_options+0x690/0x690 [ 762.174595] ? kasan_unpoison_shadow+0x33/0x40 [ 762.175585] ? __kasan_kmalloc.constprop.0+0xc2/0xd0 [ 762.176686] v9fs_mount+0x79/0x8f0 [ 762.177453] ? v9fs_write_inode+0x60/0x60 [ 762.178348] legacy_get_tree+0x105/0x220 [ 762.179250] vfs_get_tree+0x8e/0x2f0 [ 762.180057] path_mount+0x139a/0x2080 [ 762.180883] ? strncpy_from_user+0x9e/0x460 [ 762.181816] ? finish_automount+0xa40/0xa40 [ 762.182747] ? getname_flags.part.0+0x1dd/0x4f0 [ 762.183780] ? _copy_from_user+0xfb/0x1b0 [ 762.184684] __x64_sys_mount+0x27e/0x300 [ 762.185557] ? path_mount+0x2080/0x2080 [ 762.186419] ? rcu_read_lock_sched_held+0x3a/0x70 [ 762.187472] do_syscall_64+0x33/0x40 [ 762.188279] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 762.189386] RIP: 0033:0x466609 [ 762.190084] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 762.194056] RSP: 002b:00007fd61fccc188 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5 [ 762.195701] RAX: ffffffffffffffda RBX: 000000000056bf80 RCX: 0000000000466609 [ 762.197226] RDX: 00000000200000c0 RSI: 0000000020000000 RDI: 0000000000000000 [ 762.198753] RBP: 00007fd61fccc1d0 R08: 00000000200004c0 R09: 0000000000000000 [ 762.200300] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 762.201828] R13: 00007fff09eaa3cf R14: 00007fd61fccc300 R15: 0000000000022000 10:21:12 executing program 1 (fault-call:3 fault-nth:25): r0 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x46e2, 0x0) r1 = dup2(r0, r0) r2 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000040), 0x2, 0x0) mount$9p_fd(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f00000000c0), 0x0, &(0x7f00000004c0)={'trans=fd,', {'rfdno', 0x3d, r1}, 0x2c, {'wfdno', 0x3d, r2}}) 10:21:12 executing program 4 (fault-call:3 fault-nth:5): r0 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x46e2, 0x0) r1 = dup2(r0, r0) r2 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000040), 0x2, 0x0) mount$9p_fd(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f00000000c0), 0x0, &(0x7f00000004c0)={'trans=fd,', {'rfdno', 0x3d, r1}, 0x2c, {'wfdno', 0x3d, r2}}) 10:21:12 executing program 6: perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000040), 0x2, 0x0) write$binfmt_aout(r0, &(0x7f0000000640), 0x20) [ 762.250329] FAULT_INJECTION: forcing a failure. [ 762.250329] name failslab, interval 1, probability 0, space 0, times 0 [ 762.252838] CPU: 0 PID: 7471 Comm: syz-executor.1 Not tainted 5.10.56 #1 [ 762.254286] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS rel-1.14.0-0-g155821a1990b-prebuilt.qemu.org 04/01/2014 [ 762.256741] Call Trace: [ 762.257314] dump_stack+0x107/0x163 [ 762.258116] should_fail.cold+0x5/0xa [ 762.258948] should_failslab+0x5/0x10 [ 762.259797] __kmalloc_track_caller+0x79/0x3c0 [ 762.260783] ? parse_opts.part.0+0x8e/0x340 [ 762.261723] kstrdup+0x36/0x70 [ 762.262418] parse_opts.part.0+0x8e/0x340 [ 762.263325] ? __delete_object+0xb3/0x100 [ 762.264217] ? p9_fd_show_options+0x1c0/0x1c0 [ 762.265198] ? lockdep_hardirqs_on_prepare+0x273/0x3e0 [ 762.266337] ? quarantine_put+0x87/0x1a0 [ 762.267230] ? trace_hardirqs_on+0x5b/0x180 [ 762.268175] ? kfree+0xca/0x360 [ 762.268896] p9_fd_create+0x98/0x420 [ 762.269701] ? p9_conn_create+0x500/0x500 [ 762.270595] ? kfree+0xca/0x360 [ 762.271329] p9_client_create+0x7fb/0x1090 [ 762.272255] ? p9_client_flush+0x430/0x430 [ 762.273175] ? lockdep_init_map_waits+0x26a/0x700 [ 762.274297] ? __raw_spin_lock_init+0x34/0x100 [ 762.275344] v9fs_session_init+0x1dd/0x1690 [ 762.276081] FAULT_INJECTION: forcing a failure. [ 762.276081] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 762.276307] ? kmem_cache_alloc_trace+0x151/0x360 [ 762.276328] ? v9fs_show_options+0x690/0x690 [ 762.276368] ? kasan_unpoison_shadow+0x33/0x40 [ 762.281949] ? __kasan_kmalloc.constprop.0+0xc2/0xd0 [ 762.283084] v9fs_mount+0x79/0x8f0 [ 762.283890] ? v9fs_write_inode+0x60/0x60 [ 762.284803] legacy_get_tree+0x105/0x220 [ 762.285699] vfs_get_tree+0x8e/0x2f0 [ 762.286521] path_mount+0x139a/0x2080 [ 762.287392] ? strncpy_from_user+0x9e/0x460 [ 762.288342] ? finish_automount+0xa40/0xa40 [ 762.289289] ? getname_flags.part.0+0x1dd/0x4f0 [ 762.290310] ? _copy_from_user+0xfb/0x1b0 [ 762.291266] __x64_sys_mount+0x27e/0x300 [ 762.292151] ? path_mount+0x2080/0x2080 [ 762.293035] ? rcu_read_lock_sched_held+0x3a/0x70 [ 762.294095] do_syscall_64+0x33/0x40 [ 762.294919] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 762.296070] RIP: 0033:0x466609 [ 762.296786] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 762.300817] RSP: 002b:00007fdc84e63188 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5 [ 762.302490] RAX: ffffffffffffffda RBX: 000000000056bf80 RCX: 0000000000466609 [ 762.304075] RDX: 00000000200000c0 RSI: 0000000020000000 RDI: 0000000000000000 [ 762.305639] RBP: 00007fdc84e631d0 R08: 00000000200004c0 R09: 0000000000000000 [ 762.307220] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 762.308790] R13: 00007ffc7c6b7e8f R14: 00007fdc84e63300 R15: 0000000000022000 [ 762.310387] CPU: 1 PID: 7472 Comm: syz-executor.4 Not tainted 5.10.56 #1 [ 762.310494] 9pnet: Insufficient options for proto=fd [ 762.311934] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS rel-1.14.0-0-g155821a1990b-prebuilt.qemu.org 04/01/2014 [ 762.311941] Call Trace: [ 762.311965] dump_stack+0x107/0x163 [ 762.311989] should_fail.cold+0x5/0xa [ 762.318111] _copy_from_user+0x2e/0x1b0 [ 762.319282] copy_mount_options+0x76/0x180 [ 762.320317] __x64_sys_mount+0x1a8/0x300 [ 762.321329] ? path_mount+0x2080/0x2080 [ 762.322374] ? rcu_read_lock_sched_held+0x3a/0x70 [ 762.323556] do_syscall_64+0x33/0x40 [ 762.324527] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 762.325831] RIP: 0033:0x466609 [ 762.326759] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 762.331156] RSP: 002b:00007f33d7a83188 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5 [ 762.332844] RAX: ffffffffffffffda RBX: 000000000056bf80 RCX: 0000000000466609 [ 762.334424] RDX: 00000000200000c0 RSI: 0000000020000000 RDI: 0000000000000000 [ 762.336013] RBP: 00007f33d7a831d0 R08: 00000000200004c0 R09: 0000000000000000 [ 762.337596] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 762.339192] R13: 00007ffecc2507ff R14: 00007f33d7a83300 R15: 0000000000022000 10:21:12 executing program 0: r0 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x46e2, 0x0) r1 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffd000/0x3000)=nil, 0x3000, 0x0, 0x13, r0, 0x0) syz_io_uring_setup(0x4b9f, &(0x7f0000000140), &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000ffd000/0x3000)=nil, &(0x7f00000000c0), &(0x7f00000001c0)=0x0) syz_io_uring_submit(r1, r2, &(0x7f0000000240)=@IORING_OP_FADVISE={0x18, 0x0, 0x0, @fd, 0x2}, 0x0) sigaltstack(&(0x7f0000ffd000/0x1000)=nil, 0x0) r3 = socket$netlink(0x10, 0x3, 0x0) r4 = fcntl$dupfd(r3, 0x0, r3) getsockopt$netlink(r4, 0x10e, 0x0, 0x0, 0xfffffffffffffffe) syz_io_uring_setup(0x7d21, &(0x7f0000000280)={0x0, 0x732c, 0x20, 0x3, 0x11b, 0x0, r4}, &(0x7f0000ffe000/0x2000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000000), &(0x7f0000000080)) 10:21:12 executing program 5 (fault-call:3 fault-nth:34): r0 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x46e2, 0x0) r1 = dup2(r0, r0) r2 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000040), 0x2, 0x0) mount$9p_fd(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f00000000c0), 0x0, &(0x7f00000004c0)={'trans=fd,', {'rfdno', 0x3d, r1}, 0x2c, {'wfdno', 0x3d, r2}}) 10:21:12 executing program 1 (fault-call:3 fault-nth:26): r0 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x46e2, 0x0) r1 = dup2(r0, r0) r2 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000040), 0x2, 0x0) mount$9p_fd(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f00000000c0), 0x0, &(0x7f00000004c0)={'trans=fd,', {'rfdno', 0x3d, r1}, 0x2c, {'wfdno', 0x3d, r2}}) [ 762.378313] FAULT_INJECTION: forcing a failure. [ 762.378313] name failslab, interval 1, probability 0, space 0, times 0 [ 762.379725] CPU: 0 PID: 7475 Comm: syz-executor.5 Not tainted 5.10.56 #1 [ 762.380444] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS rel-1.14.0-0-g155821a1990b-prebuilt.qemu.org 04/01/2014 [ 762.381660] Call Trace: [ 762.381946] dump_stack+0x107/0x163 [ 762.382338] should_fail.cold+0x5/0xa [ 762.382752] ? create_object.isra.0+0x3a/0xa20 [ 762.383255] should_failslab+0x5/0x10 [ 762.383664] kmem_cache_alloc+0x5b/0x350 [ 762.384111] ? add_wait_queue+0x46/0x140 [ 762.384552] create_object.isra.0+0x3a/0xa20 [ 762.385025] ? __kasan_kmalloc.constprop.0+0xc2/0xd0 [ 762.385573] kmem_cache_alloc+0x159/0x350 [ 762.386030] p9_client_prepare_req.part.0+0x3a/0xb30 [ 762.386550] p9_client_rpc+0x21c/0x1200 [ 762.386968] ? p9_client_prepare_req.part.0+0xb30/0xb30 [ 762.387568] ? n_tty_ioctl+0x370/0x370 [ 762.388006] ? ldsem_up_read+0x40/0x80 [ 762.388424] ? n_tty_ioctl+0x370/0x370 [ 762.388845] ? tty_poll+0x159/0x1c0 [ 762.389244] ? tty_release+0xe90/0xe90 [ 762.389671] ? p9_fd_poll+0x1e0/0x2c0 [ 762.390087] ? p9_fd_create+0x2eb/0x420 [ 762.390522] ? p9_conn_create+0x500/0x500 [ 762.390965] ? kfree+0xca/0x360 [ 762.391353] p9_client_create+0xa72/0x1090 [ 762.391822] ? p9_client_flush+0x430/0x430 [ 762.392288] ? lockdep_init_map_waits+0x26a/0x700 [ 762.392811] ? __raw_spin_lock_init+0x34/0x100 [ 762.393309] v9fs_session_init+0x1dd/0x1690 [ 762.393787] ? kmem_cache_alloc_trace+0x151/0x360 [ 762.394304] ? v9fs_show_options+0x690/0x690 [ 762.394789] ? kasan_unpoison_shadow+0x33/0x40 [ 762.395296] ? __kasan_kmalloc.constprop.0+0xc2/0xd0 [ 762.395856] v9fs_mount+0x79/0x8f0 [ 762.396247] ? v9fs_write_inode+0x60/0x60 [ 762.396700] legacy_get_tree+0x105/0x220 [ 762.397143] vfs_get_tree+0x8e/0x2f0 [ 762.397549] path_mount+0x139a/0x2080 [ 762.397971] ? strncpy_from_user+0x9e/0x460 [ 762.398409] ? finish_automount+0xa40/0xa40 [ 762.398888] ? getname_flags.part.0+0x1dd/0x4f0 [ 762.399404] ? _copy_from_user+0xfb/0x1b0 [ 762.399860] __x64_sys_mount+0x27e/0x300 [ 762.400300] ? path_mount+0x2080/0x2080 [ 762.400738] ? rcu_read_lock_sched_held+0x3a/0x70 [ 762.401265] do_syscall_64+0x33/0x40 [ 762.401669] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 762.402219] RIP: 0033:0x466609 [ 762.402565] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 762.404590] RSP: 002b:00007fd61fccc188 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5 [ 762.405418] RAX: ffffffffffffffda RBX: 000000000056bf80 RCX: 0000000000466609 [ 762.406200] RDX: 00000000200000c0 RSI: 0000000020000000 RDI: 0000000000000000 [ 762.406991] RBP: 00007fd61fccc1d0 R08: 00000000200004c0 R09: 0000000000000000 [ 762.407765] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 762.408535] R13: 00007fff09eaa3cf R14: 00007fd61fccc300 R15: 0000000000022000 10:21:12 executing program 5 (fault-call:3 fault-nth:35): r0 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x46e2, 0x0) r1 = dup2(r0, r0) r2 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000040), 0x2, 0x0) mount$9p_fd(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f00000000c0), 0x0, &(0x7f00000004c0)={'trans=fd,', {'rfdno', 0x3d, r1}, 0x2c, {'wfdno', 0x3d, r2}}) [ 762.433631] FAULT_INJECTION: forcing a failure. [ 762.433631] name failslab, interval 1, probability 0, space 0, times 0 [ 762.434969] CPU: 0 PID: 7481 Comm: syz-executor.5 Not tainted 5.10.56 #1 [ 762.435699] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS rel-1.14.0-0-g155821a1990b-prebuilt.qemu.org 04/01/2014 [ 762.436911] Call Trace: [ 762.437201] dump_stack+0x107/0x163 [ 762.437599] should_fail.cold+0x5/0xa [ 762.438013] ? p9_fcall_init+0x97/0x210 [ 762.438468] should_failslab+0x5/0x10 [ 762.438879] __kmalloc+0x72/0x3e0 [ 762.439276] p9_fcall_init+0x97/0x210 [ 762.439697] p9_client_prepare_req.part.0+0x8c/0xb30 [ 762.440371] p9_client_rpc+0x21c/0x1200 [ 762.440811] ? p9_client_prepare_req.part.0+0xb30/0xb30 [ 762.441527] ? n_tty_ioctl+0x370/0x370 [ 762.441961] ? ldsem_up_read+0x40/0x80 [ 762.442467] ? n_tty_ioctl+0x370/0x370 [ 762.442990] ? tty_poll+0x159/0x1c0 [ 762.443390] ? tty_release+0xe90/0xe90 [ 762.443900] ? p9_fd_poll+0x1e0/0x2c0 [ 762.444404] ? p9_fd_create+0x2eb/0x420 [ 762.444924] ? p9_conn_create+0x500/0x500 [ 762.445472] ? kfree+0xca/0x360 [ 762.445908] p9_client_create+0xa72/0x1090 [ 762.446474] ? p9_client_flush+0x430/0x430 [ 762.447043] ? lockdep_init_map_waits+0x26a/0x700 [ 762.447684] ? __raw_spin_lock_init+0x34/0x100 [ 762.448287] v9fs_session_init+0x1dd/0x1690 [ 762.448856] ? kmem_cache_alloc_trace+0x151/0x360 [ 762.449483] ? v9fs_show_options+0x690/0x690 [ 762.450065] ? kasan_unpoison_shadow+0x33/0x40 [ 762.450658] ? __kasan_kmalloc.constprop.0+0xc2/0xd0 [ 762.451333] v9fs_mount+0x79/0x8f0 [ 762.451797] ? v9fs_write_inode+0x60/0x60 [ 762.452341] legacy_get_tree+0x105/0x220 [ 762.452873] vfs_get_tree+0x8e/0x2f0 [ 762.453363] path_mount+0x139a/0x2080 [ 762.453866] ? strncpy_from_user+0x9e/0x460 [ 762.454425] ? finish_automount+0xa40/0xa40 [ 762.455007] ? getname_flags.part.0+0x1dd/0x4f0 [ 762.455618] ? _copy_from_user+0xfb/0x1b0 [ 762.456167] __x64_sys_mount+0x27e/0x300 [ 762.456701] ? path_mount+0x2080/0x2080 [ 762.457228] ? rcu_read_lock_sched_held+0x3a/0x70 [ 762.457864] do_syscall_64+0x33/0x40 [ 762.458357] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 762.459042] RIP: 0033:0x466609 [ 762.459462] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 762.461873] RSP: 002b:00007fd61fccc188 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5 [ 762.462858] RAX: ffffffffffffffda RBX: 000000000056bf80 RCX: 0000000000466609 [ 762.463799] RDX: 00000000200000c0 RSI: 0000000020000000 RDI: 0000000000000000 [ 762.464725] RBP: 00007fd61fccc1d0 R08: 00000000200004c0 R09: 0000000000000000 [ 762.465656] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 762.466588] R13: 00007fff09eaa3cf R14: 00007fd61fccc300 R15: 0000000000022000 [ 762.466866] FAULT_INJECTION: forcing a failure. [ 762.466866] name failslab, interval 1, probability 0, space 0, times 0 [ 762.470071] CPU: 1 PID: 7483 Comm: syz-executor.1 Not tainted 5.10.56 #1 [ 762.471560] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS rel-1.14.0-0-g155821a1990b-prebuilt.qemu.org 04/01/2014 [ 762.474005] Call Trace: [ 762.474578] dump_stack+0x107/0x163 [ 762.475379] should_fail.cold+0x5/0xa [ 762.476208] should_failslab+0x5/0x10 [ 762.477028] __kmalloc_track_caller+0x79/0x3c0 [ 762.478012] ? parse_opts.part.0+0x8e/0x340 [ 762.478951] kstrdup+0x36/0x70 [ 762.479653] parse_opts.part.0+0x8e/0x340 [ 762.480555] ? __delete_object+0xb3/0x100 [ 762.481449] ? p9_fd_show_options+0x1c0/0x1c0 10:21:12 executing program 5 (fault-call:3 fault-nth:36): r0 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x46e2, 0x0) r1 = dup2(r0, r0) r2 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000040), 0x2, 0x0) mount$9p_fd(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f00000000c0), 0x0, &(0x7f00000004c0)={'trans=fd,', {'rfdno', 0x3d, r1}, 0x2c, {'wfdno', 0x3d, r2}}) [ 762.482435] ? lockdep_hardirqs_on_prepare+0x273/0x3e0 [ 762.483739] ? quarantine_put+0x87/0x1a0 [ 762.484608] ? trace_hardirqs_on+0x5b/0x180 [ 762.485540] ? kfree+0xca/0x360 [ 762.486252] p9_fd_create+0x98/0x420 [ 762.487054] ? p9_conn_create+0x500/0x500 [ 762.487940] ? kfree+0xca/0x360 [ 762.488663] p9_client_create+0x7fb/0x1090 [ 762.489588] ? p9_client_flush+0x430/0x430 [ 762.490508] ? lockdep_init_map_waits+0x26a/0x700 [ 762.491563] ? __raw_spin_lock_init+0x34/0x100 [ 762.492559] v9fs_session_init+0x1dd/0x1690 [ 762.493502] ? kmem_cache_alloc_trace+0x151/0x360 [ 762.494546] ? v9fs_show_options+0x690/0x690 [ 762.495519] ? kasan_unpoison_shadow+0x33/0x40 [ 762.496507] ? __kasan_kmalloc.constprop.0+0xc2/0xd0 [ 762.497602] v9fs_mount+0x79/0x8f0 [ 762.498370] ? v9fs_write_inode+0x60/0x60 [ 762.499282] legacy_get_tree+0x105/0x220 [ 762.500157] vfs_get_tree+0x8e/0x2f0 [ 762.500964] path_mount+0x139a/0x2080 [ 762.501791] ? strncpy_from_user+0x9e/0x460 10:21:12 executing program 6: perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000040), 0x2, 0x0) write$binfmt_aout(r0, &(0x7f0000000640), 0x20) [ 762.502827] ? finish_automount+0xa40/0xa40 [ 762.503758] ? getname_flags.part.0+0x1dd/0x4f0 [ 762.504743] ? _copy_from_user+0xfb/0x1b0 [ 762.505634] __x64_sys_mount+0x27e/0x300 [ 762.506499] ? path_mount+0x2080/0x2080 [ 762.507372] ? rcu_read_lock_sched_held+0x3a/0x70 [ 762.508400] do_syscall_64+0x33/0x40 [ 762.509192] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 762.510273] RIP: 0033:0x466609 [ 762.510955] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 762.514852] RSP: 002b:00007fdc84e63188 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5 [ 762.516480] RAX: ffffffffffffffda RBX: 000000000056bf80 RCX: 0000000000466609 [ 762.518000] RDX: 00000000200000c0 RSI: 0000000020000000 RDI: 0000000000000000 [ 762.519522] RBP: 00007fdc84e631d0 R08: 00000000200004c0 R09: 0000000000000000 [ 762.521004] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 762.522474] R13: 00007ffc7c6b7e8f R14: 00007fdc84e63300 R15: 0000000000022000 [ 762.524090] 9pnet: Insufficient options for proto=fd [ 762.548183] FAULT_INJECTION: forcing a failure. [ 762.548183] name failslab, interval 1, probability 0, space 0, times 0 [ 762.550599] CPU: 1 PID: 7487 Comm: syz-executor.5 Not tainted 5.10.56 #1 [ 762.552008] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS rel-1.14.0-0-g155821a1990b-prebuilt.qemu.org 04/01/2014 [ 762.554323] Call Trace: [ 762.554857] dump_stack+0x107/0x163 [ 762.555607] should_fail.cold+0x5/0xa [ 762.556389] ? create_object.isra.0+0x3a/0xa20 [ 762.557320] should_failslab+0x5/0x10 [ 762.558102] kmem_cache_alloc+0x5b/0x350 [ 762.558946] create_object.isra.0+0x3a/0xa20 [ 762.559864] ? __kasan_kmalloc.constprop.0+0xc2/0xd0 [ 762.560893] __kmalloc+0x16e/0x3e0 [ 762.561621] p9_fcall_init+0x97/0x210 [ 762.562399] p9_client_prepare_req.part.0+0x8c/0xb30 [ 762.563448] p9_client_rpc+0x21c/0x1200 [ 762.564266] ? p9_client_prepare_req.part.0+0xb30/0xb30 [ 762.565350] ? n_tty_ioctl+0x370/0x370 [ 762.566147] ? ldsem_up_read+0x40/0x80 [ 762.566946] ? n_tty_ioctl+0x370/0x370 [ 762.567747] ? tty_poll+0x159/0x1c0 [ 762.568486] ? tty_release+0xe90/0xe90 [ 762.569282] ? p9_fd_poll+0x1e0/0x2c0 [ 762.570076] ? p9_fd_create+0x2eb/0x420 [ 762.570882] ? p9_conn_create+0x500/0x500 [ 762.571740] ? kfree+0xca/0x360 [ 762.572418] p9_client_create+0xa72/0x1090 [ 762.573284] ? p9_client_flush+0x430/0x430 [ 762.574153] ? lockdep_init_map_waits+0x26a/0x700 [ 762.575148] ? __raw_spin_lock_init+0x34/0x100 [ 762.576085] v9fs_session_init+0x1dd/0x1690 [ 762.576970] ? kmem_cache_alloc_trace+0x151/0x360 [ 762.577943] ? v9fs_show_options+0x690/0x690 [ 762.578858] ? kasan_unpoison_shadow+0x33/0x40 [ 762.579795] ? __kasan_kmalloc.constprop.0+0xc2/0xd0 [ 762.580829] v9fs_mount+0x79/0x8f0 [ 762.581551] ? v9fs_write_inode+0x60/0x60 [ 762.582394] legacy_get_tree+0x105/0x220 [ 762.583234] vfs_get_tree+0x8e/0x2f0 [ 762.583992] path_mount+0x139a/0x2080 [ 762.584772] ? strncpy_from_user+0x9e/0x460 [ 762.585648] ? finish_automount+0xa40/0xa40 [ 762.586545] ? getname_flags.part.0+0x1dd/0x4f0 [ 762.587670] ? _copy_from_user+0xfb/0x1b0 [ 762.588669] __x64_sys_mount+0x27e/0x300 [ 762.589635] ? path_mount+0x2080/0x2080 [ 762.590586] ? rcu_read_lock_sched_held+0x3a/0x70 [ 762.591745] do_syscall_64+0x33/0x40 [ 762.592636] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 762.593850] RIP: 0033:0x466609 [ 762.594615] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 762.599069] RSP: 002b:00007fd61fccc188 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5 [ 762.600881] RAX: ffffffffffffffda RBX: 000000000056bf80 RCX: 0000000000466609 [ 762.602573] RDX: 00000000200000c0 RSI: 0000000020000000 RDI: 0000000000000000 [ 762.604275] RBP: 00007fd61fccc1d0 R08: 00000000200004c0 R09: 0000000000000000 [ 762.605951] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 762.607636] R13: 00007fff09eaa3cf R14: 00007fd61fccc300 R15: 0000000000022000 10:21:24 executing program 2: perf_event_open(&(0x7f0000001d80)={0x4, 0x80, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) 10:21:24 executing program 5 (fault-call:3 fault-nth:37): r0 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x46e2, 0x0) r1 = dup2(r0, r0) r2 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000040), 0x2, 0x0) mount$9p_fd(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f00000000c0), 0x0, &(0x7f00000004c0)={'trans=fd,', {'rfdno', 0x3d, r1}, 0x2c, {'wfdno', 0x3d, r2}}) 10:21:24 executing program 3: perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000040), 0x2, 0x0) write$binfmt_aout(0xffffffffffffffff, &(0x7f0000000640), 0x20) read(r0, &(0x7f0000000100)=""/146, 0x92) 10:21:24 executing program 6: perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000040), 0x2, 0x0) write$binfmt_aout(r0, &(0x7f0000000640), 0x20) 10:21:24 executing program 1 (fault-call:3 fault-nth:27): r0 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x46e2, 0x0) r1 = dup2(r0, r0) r2 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000040), 0x2, 0x0) mount$9p_fd(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f00000000c0), 0x0, &(0x7f00000004c0)={'trans=fd,', {'rfdno', 0x3d, r1}, 0x2c, {'wfdno', 0x3d, r2}}) 10:21:24 executing program 4 (fault-call:3 fault-nth:6): r0 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x46e2, 0x0) r1 = dup2(r0, r0) r2 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000040), 0x2, 0x0) mount$9p_fd(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f00000000c0), 0x0, &(0x7f00000004c0)={'trans=fd,', {'rfdno', 0x3d, r1}, 0x2c, {'wfdno', 0x3d, r2}}) 10:21:24 executing program 7: perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000040), 0x0, 0x0) write$binfmt_aout(r0, &(0x7f0000000640), 0x20) read(r0, &(0x7f0000000100)=""/146, 0x92) 10:21:24 executing program 0: r0 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x46e2, 0x0) r1 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffd000/0x3000)=nil, 0x3000, 0x0, 0x13, r0, 0x0) syz_io_uring_setup(0x4b9f, &(0x7f0000000140), &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000ffd000/0x3000)=nil, &(0x7f00000000c0)=0x0, &(0x7f00000001c0)=0x0) syz_io_uring_submit(r1, r3, &(0x7f0000000240)=@IORING_OP_FADVISE={0x18, 0x0, 0x0, @fd, 0x2}, 0x0) sigaltstack(&(0x7f0000ffd000/0x1000)=nil, 0x0) syz_io_uring_setup(0x100001e, &(0x7f0000000080)={0x0, 0xb9b5, 0x8}, &(0x7f0000feb000/0x13000)=nil, &(0x7f00000b0000)=nil, &(0x7f0000000180)=0x0, &(0x7f0000002a40)=0x0) syz_io_uring_submit(r4, r5, &(0x7f00000001c0)=@IORING_OP_OPENAT2={0x1c, 0x2, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x23456}, 0x0) syz_io_uring_setup(0x4d4d, &(0x7f0000000080)={0x0, 0xa52c}, &(0x7f00000a0000)=nil, &(0x7f0000ff5000/0x2000)=nil, &(0x7f0000000200)=0x0, &(0x7f0000000280)=0x0) r8 = syz_io_uring_setup(0x1, &(0x7f00000002c0), &(0x7f0000ffd000/0x2000)=nil, &(0x7f0000ffc000/0x2000)=nil, &(0x7f0000000100), &(0x7f0000000140)) r9 = io_uring_register$IORING_REGISTER_PERSONALITY(r8, 0x9, 0x0, 0x0) syz_io_uring_submit(r6, r7, &(0x7f0000000380)=@IORING_OP_PROVIDE_BUFFERS={0x1f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, {0x0, r9}}, 0x101) syz_io_uring_submit(r2, r5, &(0x7f0000000000)=@IORING_OP_RECV=@use_registered_buffer={0x1b, 0x4, 0x0, r0, 0x0, 0x0, 0x0, 0x2000, 0x0, {0x1, r9}}, 0x7) [ 774.966687] FAULT_INJECTION: forcing a failure. [ 774.966687] name failslab, interval 1, probability 0, space 0, times 0 [ 774.968166] CPU: 0 PID: 7512 Comm: syz-executor.4 Not tainted 5.10.56 #1 [ 774.968983] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS rel-1.14.0-0-g155821a1990b-prebuilt.qemu.org 04/01/2014 [ 774.970322] Call Trace: [ 774.970628] dump_stack+0x107/0x163 [ 774.971050] should_fail.cold+0x5/0xa [ 774.971518] ? getname_flags.part.0+0x50/0x4f0 [ 774.972047] should_failslab+0x5/0x10 [ 774.972489] kmem_cache_alloc+0x5b/0x350 [ 774.972983] getname_flags.part.0+0x50/0x4f0 [ 774.973510] ? _copy_from_user+0xfb/0x1b0 [ 774.974000] user_path_at_empty+0xa1/0x100 [ 774.974492] __x64_sys_mount+0x1e9/0x300 [ 774.974962] ? path_mount+0x2080/0x2080 [ 774.975435] ? rcu_read_lock_sched_held+0x3a/0x70 [ 774.976006] do_syscall_64+0x33/0x40 [ 774.976439] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 774.977029] RIP: 0033:0x466609 [ 774.977402] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 774.979588] RSP: 002b:00007f33d7a83188 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5 [ 774.980507] RAX: ffffffffffffffda RBX: 000000000056bf80 RCX: 0000000000466609 [ 774.981359] RDX: 00000000200000c0 RSI: 0000000020000000 RDI: 0000000000000000 [ 774.982225] RBP: 00007f33d7a831d0 R08: 00000000200004c0 R09: 0000000000000000 [ 774.983083] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 774.983939] R13: 00007ffecc2507ff R14: 00007f33d7a83300 R15: 0000000000022000 [ 775.003567] FAULT_INJECTION: forcing a failure. [ 775.003567] name failslab, interval 1, probability 0, space 0, times 0 [ 775.004445] FAULT_INJECTION: forcing a failure. [ 775.004445] name failslab, interval 1, probability 0, space 0, times 0 [ 775.005019] CPU: 0 PID: 7513 Comm: syz-executor.5 Not tainted 5.10.56 #1 [ 775.005026] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS rel-1.14.0-0-g155821a1990b-prebuilt.qemu.org 04/01/2014 [ 775.005030] Call Trace: [ 775.005044] dump_stack+0x107/0x163 [ 775.005059] should_fail.cold+0x5/0xa [ 775.005071] ? p9_fcall_init+0x97/0x210 [ 775.005083] should_failslab+0x5/0x10 [ 775.005092] __kmalloc+0x72/0x3e0 [ 775.005102] ? __kasan_kmalloc.constprop.0+0xc2/0xd0 [ 775.005115] p9_fcall_init+0x97/0x210 [ 775.005128] p9_client_prepare_req.part.0+0xf0/0xb30 [ 775.005144] p9_client_rpc+0x21c/0x1200 [ 775.005161] ? p9_client_prepare_req.part.0+0xb30/0xb30 [ 775.005171] ? n_tty_ioctl+0x370/0x370 [ 775.005181] ? ldsem_up_read+0x40/0x80 [ 775.005205] ? n_tty_ioctl+0x370/0x370 [ 775.016762] ? tty_poll+0x159/0x1c0 [ 775.017188] ? tty_release+0xe90/0xe90 [ 775.017647] ? p9_fd_poll+0x1e0/0x2c0 [ 775.018086] ? p9_fd_create+0x2eb/0x420 [ 775.018554] ? p9_conn_create+0x500/0x500 [ 775.019045] ? kfree+0xca/0x360 [ 775.019451] p9_client_create+0xa72/0x1090 [ 775.019946] ? p9_client_flush+0x430/0x430 [ 775.020457] ? lockdep_init_map_waits+0x26a/0x700 [ 775.021015] ? __raw_spin_lock_init+0x34/0x100 [ 775.021558] v9fs_session_init+0x1dd/0x1690 [ 775.022071] ? kmem_cache_alloc_trace+0x151/0x360 [ 775.022639] ? v9fs_show_options+0x690/0x690 [ 775.023153] ? kasan_unpoison_shadow+0x33/0x40 [ 775.023693] ? __kasan_kmalloc.constprop.0+0xc2/0xd0 [ 775.024274] v9fs_mount+0x79/0x8f0 [ 775.024693] ? v9fs_write_inode+0x60/0x60 [ 775.025182] legacy_get_tree+0x105/0x220 [ 775.025660] vfs_get_tree+0x8e/0x2f0 [ 775.026090] path_mount+0x139a/0x2080 [ 775.026543] ? strncpy_from_user+0x9e/0x460 [ 775.027047] ? finish_automount+0xa40/0xa40 [ 775.027557] ? getname_flags.part.0+0x1dd/0x4f0 [ 775.028097] ? _copy_from_user+0xfb/0x1b0 [ 775.028585] __x64_sys_mount+0x27e/0x300 [ 775.029070] ? path_mount+0x2080/0x2080 [ 775.029540] ? rcu_read_lock_sched_held+0x3a/0x70 [ 775.030109] do_syscall_64+0x33/0x40 [ 775.030546] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 775.031122] RIP: 0033:0x466609 [ 775.031493] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 775.033560] RSP: 002b:00007fd61fccc188 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5 [ 775.034407] RAX: ffffffffffffffda RBX: 000000000056bf80 RCX: 0000000000466609 [ 775.035231] RDX: 00000000200000c0 RSI: 0000000020000000 RDI: 0000000000000000 [ 775.036025] RBP: 00007fd61fccc1d0 R08: 00000000200004c0 R09: 0000000000000000 [ 775.036825] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 775.037623] R13: 00007fff09eaa3cf R14: 00007fd61fccc300 R15: 0000000000022000 [ 775.038462] CPU: 1 PID: 7511 Comm: syz-executor.1 Not tainted 5.10.56 #1 [ 775.040452] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS rel-1.14.0-0-g155821a1990b-prebuilt.qemu.org 04/01/2014 [ 775.043626] Call Trace: [ 775.044380] dump_stack+0x107/0x163 [ 775.045420] should_fail.cold+0x5/0xa [ 775.046502] ? create_object.isra.0+0x3a/0xa20 [ 775.047808] should_failslab+0x5/0x10 [ 775.048872] kmem_cache_alloc+0x5b/0x350 [ 775.050010] ? v9fs_session_init+0x1dd/0x1690 [ 775.051279] ? v9fs_mount+0x79/0x8f0 [ 775.052336] create_object.isra.0+0x3a/0xa20 [ 775.053562] ? __kasan_kmalloc.constprop.0+0xc2/0xd0 [ 775.054985] __kmalloc_track_caller+0x177/0x3c0 [ 775.056298] ? parse_opts.part.0+0x8e/0x340 [ 775.057513] kstrdup+0x36/0x70 [ 775.058414] parse_opts.part.0+0x8e/0x340 [ 775.059580] ? __delete_object+0xb3/0x100 [ 775.060732] ? p9_fd_show_options+0x1c0/0x1c0 [ 775.062005] ? lockdep_hardirqs_on_prepare+0x273/0x3e0 [ 775.063490] ? quarantine_put+0x87/0x1a0 [ 775.064634] ? trace_hardirqs_on+0x5b/0x180 [ 775.065847] ? kfree+0xca/0x360 [ 775.066784] p9_fd_create+0x98/0x420 [ 775.067849] ? p9_conn_create+0x500/0x500 [ 775.069020] ? kfree+0xca/0x360 [ 775.069970] p9_client_create+0x7fb/0x1090 [ 775.071187] ? p9_client_flush+0x430/0x430 [ 775.072406] ? lockdep_init_map_waits+0x26a/0x700 [ 775.073759] ? __raw_spin_lock_init+0x34/0x100 [ 775.075050] v9fs_session_init+0x1dd/0x1690 [ 775.076286] ? kmem_cache_alloc_trace+0x151/0x360 [ 775.077628] ? v9fs_show_options+0x690/0x690 [ 775.078896] ? kasan_unpoison_shadow+0x33/0x40 [ 775.080196] ? __kasan_kmalloc.constprop.0+0xc2/0xd0 [ 775.081614] v9fs_mount+0x79/0x8f0 [ 775.082610] ? v9fs_write_inode+0x60/0x60 [ 775.083777] legacy_get_tree+0x105/0x220 [ 775.083801] FAULT_INJECTION: forcing a failure. [ 775.083801] name failslab, interval 1, probability 0, space 0, times 0 [ 775.084919] vfs_get_tree+0x8e/0x2f0 [ 775.084954] path_mount+0x139a/0x2080 [ 775.088310] ? strncpy_from_user+0x9e/0x460 [ 775.089528] ? finish_automount+0xa40/0xa40 [ 775.090754] ? getname_flags.part.0+0x1dd/0x4f0 [ 775.092067] ? _copy_from_user+0xfb/0x1b0 [ 775.093268] __x64_sys_mount+0x27e/0x300 [ 775.094410] ? path_mount+0x2080/0x2080 [ 775.095557] ? rcu_read_lock_sched_held+0x3a/0x70 [ 775.096918] do_syscall_64+0x33/0x40 [ 775.097981] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 775.099492] RIP: 0033:0x466609 [ 775.100189] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 775.104169] RSP: 002b:00007fdc84e63188 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5 [ 775.105829] RAX: ffffffffffffffda RBX: 000000000056bf80 RCX: 0000000000466609 [ 775.107390] RDX: 00000000200000c0 RSI: 0000000020000000 RDI: 0000000000000000 [ 775.108936] RBP: 00007fdc84e631d0 R08: 00000000200004c0 R09: 0000000000000000 [ 775.110494] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 775.112054] R13: 00007ffc7c6b7e8f R14: 00007fdc84e63300 R15: 0000000000022000 [ 775.113639] CPU: 0 PID: 7530 Comm: syz-executor.4 Not tainted 5.10.56 #1 10:21:24 executing program 4 (fault-call:3 fault-nth:7): r0 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x46e2, 0x0) r1 = dup2(r0, r0) r2 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000040), 0x2, 0x0) mount$9p_fd(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f00000000c0), 0x0, &(0x7f00000004c0)={'trans=fd,', {'rfdno', 0x3d, r1}, 0x2c, {'wfdno', 0x3d, r2}}) [ 775.114403] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS rel-1.14.0-0-g155821a1990b-prebuilt.qemu.org 04/01/2014 [ 775.115820] Call Trace: [ 775.116110] dump_stack+0x107/0x163 [ 775.116505] should_fail.cold+0x5/0xa [ 775.116924] ? create_object.isra.0+0x3a/0xa20 [ 775.117423] should_failslab+0x5/0x10 [ 775.117831] kmem_cache_alloc+0x5b/0x350 [ 775.118274] create_object.isra.0+0x3a/0xa20 [ 775.118745] ? __kasan_kmalloc.constprop.0+0xc2/0xd0 [ 775.119308] kmem_cache_alloc+0x159/0x350 [ 775.119763] getname_flags.part.0+0x50/0x4f0 [ 775.120239] ? _copy_from_user+0xfb/0x1b0 [ 775.120697] user_path_at_empty+0xa1/0x100 [ 775.121156] __x64_sys_mount+0x1e9/0x300 [ 775.121602] ? path_mount+0x2080/0x2080 [ 775.122031] ? rcu_read_lock_sched_held+0x3a/0x70 [ 775.122544] do_syscall_64+0x33/0x40 [ 775.122943] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 775.123513] RIP: 0033:0x466609 [ 775.123859] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 775.125824] RSP: 002b:00007f33d7a83188 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5 [ 775.126634] RAX: ffffffffffffffda RBX: 000000000056bf80 RCX: 0000000000466609 [ 775.127401] RDX: 00000000200000c0 RSI: 0000000020000000 RDI: 0000000000000000 [ 775.128154] RBP: 00007f33d7a831d0 R08: 00000000200004c0 R09: 0000000000000000 [ 775.128919] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 775.129678] R13: 00007ffecc2507ff R14: 00007f33d7a83300 R15: 0000000000022000 10:21:24 executing program 5 (fault-call:3 fault-nth:38): r0 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x46e2, 0x0) r1 = dup2(r0, r0) r2 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000040), 0x2, 0x0) mount$9p_fd(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f00000000c0), 0x0, &(0x7f00000004c0)={'trans=fd,', {'rfdno', 0x3d, r1}, 0x2c, {'wfdno', 0x3d, r2}}) 10:21:24 executing program 0: prctl$PR_TASK_PERF_EVENTS_ENABLE(0x20) r0 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x46e2, 0x0) mmap$IORING_OFF_SQ_RING(&(0x7f0000ffd000/0x3000)=nil, 0x3000, 0x0, 0x13, r0, 0x0) syz_io_uring_setup(0x4b9f, &(0x7f0000000140), &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000ffd000/0x3000)=nil, &(0x7f00000000c0)=0x0, &(0x7f00000001c0)=0x0) syz_io_uring_submit(r1, r2, &(0x7f0000000240)=@IORING_OP_FADVISE={0x18, 0x0, 0x0, @fd_index=0x9, 0x6}, 0x0) sigaltstack(&(0x7f0000ffd000/0x1000)=nil, 0x0) 10:21:25 executing program 2: r0 = socket$inet6_udplite(0xa, 0x2, 0x88) ioctl$sock_SIOCETHTOOL(r0, 0x8946, &(0x7f0000000180)={'syz_tun\x00', &(0x7f00000001c0)=ANY=[@ANYBLOB="4d000000000000000000000000000003ffffffff00000000000000000000000000000000000000000000000000000000b01f1369e1f34ed6f8240b80e55b18f7ef1515ba8b124275025449a6d1a5a32b2dd76b5b589e400d0f804361a6dd43a172122da0c51bea296ac2fe6a27601e5f117d6a6bdfbb59458e83e1feb477eb7bfbf6e9925d6438e6a69c30f91d5d6bf2a69053805d"]}) [ 775.214450] FAULT_INJECTION: forcing a failure. [ 775.214450] name failslab, interval 1, probability 0, space 0, times 0 [ 775.216438] CPU: 0 PID: 7536 Comm: syz-executor.5 Not tainted 5.10.56 #1 [ 775.217572] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS rel-1.14.0-0-g155821a1990b-prebuilt.qemu.org 04/01/2014 [ 775.219426] Call Trace: [ 775.219862] dump_stack+0x107/0x163 [ 775.220461] should_fail.cold+0x5/0xa [ 775.221089] ? create_object.isra.0+0x3a/0xa20 [ 775.221840] should_failslab+0x5/0x10 [ 775.222461] kmem_cache_alloc+0x5b/0x350 [ 775.223136] create_object.isra.0+0x3a/0xa20 [ 775.223904] ? __kasan_kmalloc.constprop.0+0xc2/0xd0 [ 775.224802] __kmalloc+0x16e/0x3e0 [ 775.225408] p9_fcall_init+0x97/0x210 [ 775.226057] p9_client_prepare_req.part.0+0xf0/0xb30 [ 775.226923] p9_client_rpc+0x21c/0x1200 [ 775.227618] ? p9_client_prepare_req.part.0+0xb30/0xb30 [ 775.228516] ? n_tty_ioctl+0x370/0x370 [ 775.229179] ? ldsem_up_read+0x40/0x80 [ 775.229843] ? n_tty_ioctl+0x370/0x370 [ 775.230529] ? tty_poll+0x159/0x1c0 [ 775.231142] ? tty_release+0xe90/0xe90 [ 775.231817] ? p9_fd_poll+0x1e0/0x2c0 [ 775.232466] ? p9_fd_create+0x2eb/0x420 [ 775.233149] ? p9_conn_create+0x500/0x500 [ 775.233875] ? kfree+0xca/0x360 [ 775.234462] p9_client_create+0xa72/0x1090 [ 775.235186] ? p9_client_flush+0x430/0x430 [ 775.235935] ? lockdep_init_map_waits+0x26a/0x700 [ 775.236753] ? __raw_spin_lock_init+0x34/0x100 [ 775.237538] v9fs_session_init+0x1dd/0x1690 [ 775.238278] ? kmem_cache_alloc_trace+0x151/0x360 [ 775.239116] ? v9fs_show_options+0x690/0x690 [ 775.239894] ? kasan_unpoison_shadow+0x33/0x40 [ 775.240671] ? __kasan_kmalloc.constprop.0+0xc2/0xd0 [ 775.241526] v9fs_mount+0x79/0x8f0 [ 775.242127] ? v9fs_write_inode+0x60/0x60 [ 775.242828] legacy_get_tree+0x105/0x220 [ 775.243533] vfs_get_tree+0x8e/0x2f0 [ 775.244165] path_mount+0x139a/0x2080 [ 775.244816] ? strncpy_from_user+0x9e/0x460 [ 775.245568] ? finish_automount+0xa40/0xa40 [ 775.246309] ? getname_flags.part.0+0x1dd/0x4f0 [ 775.247098] ? _copy_from_user+0xfb/0x1b0 [ 775.247838] __x64_sys_mount+0x27e/0x300 [ 775.248528] ? path_mount+0x2080/0x2080 [ 775.249209] ? rcu_read_lock_sched_held+0x3a/0x70 [ 775.250034] do_syscall_64+0x33/0x40 [ 775.250676] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 775.251571] RIP: 0033:0x466609 [ 775.252118] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 775.255264] RSP: 002b:00007fd61fccc188 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5 [ 775.256558] RAX: ffffffffffffffda RBX: 000000000056bf80 RCX: 0000000000466609 [ 775.257791] RDX: 00000000200000c0 RSI: 0000000020000000 RDI: 0000000000000000 [ 775.259005] RBP: 00007fd61fccc1d0 R08: 00000000200004c0 R09: 0000000000000000 [ 775.260240] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 775.261485] R13: 00007fff09eaa3cf R14: 00007fd61fccc300 R15: 0000000000022000 10:21:25 executing program 6: perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000040), 0x2, 0x0) write$binfmt_aout(r0, &(0x7f0000000640), 0x20) 10:21:25 executing program 5 (fault-call:3 fault-nth:39): r0 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x46e2, 0x0) r1 = dup2(r0, r0) r2 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000040), 0x2, 0x0) mount$9p_fd(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f00000000c0), 0x0, &(0x7f00000004c0)={'trans=fd,', {'rfdno', 0x3d, r1}, 0x2c, {'wfdno', 0x3d, r2}}) 10:21:25 executing program 4 (fault-call:3 fault-nth:8): r0 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x46e2, 0x0) r1 = dup2(r0, r0) r2 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000040), 0x2, 0x0) mount$9p_fd(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f00000000c0), 0x0, &(0x7f00000004c0)={'trans=fd,', {'rfdno', 0x3d, r1}, 0x2c, {'wfdno', 0x3d, r2}}) 10:21:25 executing program 0: r0 = openat(0xffffffffffffffff, &(0x7f0000000040)='./file0\x00', 0x46e2, 0x0) r1 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffd000/0x3000)=nil, 0x3000, 0x0, 0x13, r0, 0x0) syz_io_uring_setup(0x422f, &(0x7f0000000140)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, r0}, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000ffd000/0x2000)=nil, &(0x7f00000000c0), &(0x7f00000001c0)=0x0) r3 = io_uring_register$IORING_REGISTER_PERSONALITY(r0, 0x9, 0x0, 0x0) syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_FADVISE={0x18, 0x2, 0x0, @fd, 0x2, 0x0, 0x0, 0x0, 0x0, {0x0, r3}}, 0x0) sigaltstack(&(0x7f0000ffd000/0x1000)=nil, 0x0) 10:21:25 executing program 2: r0 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x105142, 0x0) r1 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0) openat(r1, &(0x7f0000000040)='./file1\x00', 0x40000, 0x42) open(&(0x7f00000000c0)='./file1\x00', 0x8400, 0x102) copy_file_range(r1, 0x0, r0, 0x0, 0x200f5ef, 0x0) r2 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x105142, 0x0) sendfile(r2, r0, 0x0, 0x7ffffffc) r3 = timerfd_create(0x0, 0x800) r4 = syz_open_dev$hidraw(&(0x7f0000000080), 0x8, 0x1c4240) tee(r3, r4, 0x7, 0x4) [ 775.410516] FAULT_INJECTION: forcing a failure. [ 775.410516] name failslab, interval 1, probability 0, space 0, times 0 [ 775.413172] CPU: 1 PID: 7548 Comm: syz-executor.5 Not tainted 5.10.56 #1 [ 775.414624] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS rel-1.14.0-0-g155821a1990b-prebuilt.qemu.org 04/01/2014 [ 775.417070] Call Trace: [ 775.417648] dump_stack+0x107/0x163 [ 775.418417] should_fail.cold+0x5/0xa [ 775.419253] ? radix_tree_node_alloc.constprop.0+0x1df/0x300 [ 775.420473] should_failslab+0x5/0x10 [ 775.421277] kmem_cache_alloc+0x5b/0x350 [ 775.422153] radix_tree_node_alloc.constprop.0+0x1df/0x300 [ 775.423352] idr_get_free+0x4b5/0x8f0 [ 775.424180] idr_alloc_u32+0x170/0x2d0 [ 775.425015] ? __fprop_inc_percpu_max+0x120/0x120 [ 775.426045] ? p9_client_prepare_req.part.0+0x206/0xb30 [ 775.427178] ? lock_release+0x6b0/0x6b0 [ 775.428040] idr_alloc+0xc2/0x130 [ 775.428778] ? idr_alloc_u32+0x2d0/0x2d0 [ 775.429664] ? rwlock_bug.part.0+0x90/0x90 [ 775.430588] p9_client_prepare_req.part.0+0x621/0xb30 [ 775.431757] p9_client_rpc+0x21c/0x1200 [ 775.432423] FAULT_INJECTION: forcing a failure. [ 775.432423] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 775.432617] ? p9_client_prepare_req.part.0+0xb30/0xb30 [ 775.435773] ? n_tty_ioctl+0x370/0x370 [ 775.436603] ? ldsem_up_read+0x40/0x80 [ 775.437429] ? n_tty_ioctl+0x370/0x370 [ 775.438258] ? tty_poll+0x159/0x1c0 [ 775.439032] ? tty_release+0xe90/0xe90 [ 775.439886] ? p9_fd_poll+0x1e0/0x2c0 [ 775.440712] ? p9_fd_create+0x2eb/0x420 [ 775.441559] ? p9_conn_create+0x500/0x500 [ 775.442448] ? kfree+0xca/0x360 [ 775.443163] p9_client_create+0xa72/0x1090 [ 775.444084] ? p9_client_flush+0x430/0x430 [ 775.444994] ? lockdep_init_map_waits+0x26a/0x700 [ 775.446019] ? __raw_spin_lock_init+0x34/0x100 [ 775.447000] v9fs_session_init+0x1dd/0x1690 [ 775.447940] ? kmem_cache_alloc_trace+0x151/0x360 [ 775.448961] ? v9fs_show_options+0x690/0x690 [ 775.449917] ? kasan_unpoison_shadow+0x33/0x40 [ 775.450923] ? __kasan_kmalloc.constprop.0+0xc2/0xd0 [ 775.452034] v9fs_mount+0x79/0x8f0 [ 775.452821] ? v9fs_write_inode+0x60/0x60 [ 775.453705] legacy_get_tree+0x105/0x220 [ 775.454623] vfs_get_tree+0x8e/0x2f0 [ 775.455433] path_mount+0x139a/0x2080 [ 775.456296] ? strncpy_from_user+0x9e/0x460 [ 775.457236] ? finish_automount+0xa40/0xa40 [ 775.458207] ? getname_flags.part.0+0x1dd/0x4f0 [ 775.459238] ? _copy_from_user+0xfb/0x1b0 [ 775.460182] __x64_sys_mount+0x27e/0x300 [ 775.461067] ? path_mount+0x2080/0x2080 [ 775.461954] ? rcu_read_lock_sched_held+0x3a/0x70 [ 775.463034] do_syscall_64+0x33/0x40 [ 775.463858] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 775.465006] RIP: 0033:0x466609 [ 775.465699] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 775.469828] RSP: 002b:00007fd61fccc188 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5 [ 775.471552] RAX: ffffffffffffffda RBX: 000000000056bf80 RCX: 0000000000466609 [ 775.473143] RDX: 00000000200000c0 RSI: 0000000020000000 RDI: 0000000000000000 [ 775.474728] RBP: 00007fd61fccc1d0 R08: 00000000200004c0 R09: 0000000000000000 [ 775.476281] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 775.477857] R13: 00007fff09eaa3cf R14: 00007fd61fccc300 R15: 0000000000022000 [ 775.479454] CPU: 0 PID: 7552 Comm: syz-executor.4 Not tainted 5.10.56 #1 [ 775.480722] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS rel-1.14.0-0-g155821a1990b-prebuilt.qemu.org 04/01/2014 [ 775.482873] Call Trace: [ 775.483387] dump_stack+0x107/0x163 [ 775.484081] should_fail.cold+0x5/0xa [ 775.484816] strncpy_from_user+0x34/0x460 [ 775.485626] getname_flags.part.0+0x95/0x4f0 [ 775.486451] ? _copy_from_user+0xfb/0x1b0 [ 775.487254] user_path_at_empty+0xa1/0x100 [ 775.488056] __x64_sys_mount+0x1e9/0x300 [ 775.488821] ? path_mount+0x2080/0x2080 [ 775.489570] ? rcu_read_lock_sched_held+0x3a/0x70 [ 775.490470] do_syscall_64+0x33/0x40 [ 775.491174] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 775.492137] RIP: 0033:0x466609 [ 775.492725] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 775.496141] RSP: 002b:00007f33d7a83188 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5 [ 775.497552] RAX: ffffffffffffffda RBX: 000000000056bf80 RCX: 0000000000466609 [ 775.498872] RDX: 00000000200000c0 RSI: 0000000020000000 RDI: 0000000000000000 [ 775.500213] RBP: 00007f33d7a831d0 R08: 00000000200004c0 R09: 0000000000000000 [ 775.501536] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 775.502867] R13: 00007ffecc2507ff R14: 00007f33d7a83300 R15: 0000000000022000 10:21:36 executing program 1 (fault-call:3 fault-nth:28): r0 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x46e2, 0x0) r1 = dup2(r0, r0) r2 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000040), 0x2, 0x0) mount$9p_fd(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f00000000c0), 0x0, &(0x7f00000004c0)={'trans=fd,', {'rfdno', 0x3d, r1}, 0x2c, {'wfdno', 0x3d, r2}}) 10:21:36 executing program 6: perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000040), 0x2, 0x0) write$binfmt_aout(r0, &(0x7f0000000640), 0x20) 10:21:36 executing program 2: r0 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x105142, 0x0) r1 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0) openat(r1, &(0x7f0000000040)='./file1\x00', 0x40000, 0x42) open(&(0x7f00000000c0)='./file1\x00', 0x8400, 0x102) copy_file_range(r1, 0x0, r0, 0x0, 0x200f5ef, 0x0) r2 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x105142, 0x0) sendfile(r2, r0, 0x0, 0x7ffffffc) r3 = timerfd_create(0x0, 0x800) r4 = syz_open_dev$hidraw(&(0x7f0000000080), 0x8, 0x1c4240) tee(r3, r4, 0x7, 0x4) 10:21:36 executing program 7: perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000040), 0x2, 0x0) write$binfmt_aout(0xffffffffffffffff, &(0x7f0000000640), 0x20) read(r0, &(0x7f0000000100)=""/146, 0x92) 10:21:36 executing program 0: r0 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x46e2, 0x0) r1 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffd000/0x3000)=nil, 0x3000, 0x0, 0x13, r0, 0x0) syz_io_uring_setup(0x4b9f, &(0x7f0000000140), &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000ffd000/0x3000)=nil, &(0x7f00000000c0), &(0x7f00000001c0)=0x0) syz_io_uring_submit(r1, r2, &(0x7f0000000240)=@IORING_OP_FADVISE={0x18, 0x0, 0x0, @fd, 0x2}, 0x0) sigaltstack(&(0x7f0000ffd000/0x1000)=nil, 0x0) r3 = creat(&(0x7f0000000000)='./file0\x00', 0x40) r4 = accept$unix(r0, 0x0, &(0x7f0000000080)) r5 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000040), 0x2, 0x0) write$binfmt_aout(r5, &(0x7f0000000640), 0x20) read(r5, &(0x7f0000000100)=""/146, 0x92) r6 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000040), 0x2, 0x0) write$binfmt_aout(r6, &(0x7f0000000640), 0x20) read(r6, &(0x7f0000000100)=""/146, 0x92) io_uring_register$IORING_REGISTER_FILES(r3, 0x2, &(0x7f0000000100)=[r0, 0xffffffffffffffff, r4, r5, r0, r6], 0x6) 10:21:36 executing program 5 (fault-call:3 fault-nth:40): r0 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x46e2, 0x0) r1 = dup2(r0, r0) r2 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000040), 0x2, 0x0) mount$9p_fd(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f00000000c0), 0x0, &(0x7f00000004c0)={'trans=fd,', {'rfdno', 0x3d, r1}, 0x2c, {'wfdno', 0x3d, r2}}) 10:21:36 executing program 3: perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000040), 0x2, 0x0) write$binfmt_aout(0xffffffffffffffff, &(0x7f0000000640), 0x20) read(r0, &(0x7f0000000100)=""/146, 0x92) 10:21:36 executing program 4 (fault-call:3 fault-nth:9): r0 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x46e2, 0x0) r1 = dup2(r0, r0) r2 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000040), 0x2, 0x0) mount$9p_fd(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f00000000c0), 0x0, &(0x7f00000004c0)={'trans=fd,', {'rfdno', 0x3d, r1}, 0x2c, {'wfdno', 0x3d, r2}}) [ 787.028036] FAULT_INJECTION: forcing a failure. [ 787.028036] name failslab, interval 1, probability 0, space 0, times 0 [ 787.030635] CPU: 0 PID: 7580 Comm: syz-executor.4 Not tainted 5.10.56 #1 [ 787.032104] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS rel-1.14.0-0-g155821a1990b-prebuilt.qemu.org 04/01/2014 [ 787.034469] Call Trace: [ 787.035026] dump_stack+0x107/0x163 [ 787.035812] should_fail.cold+0x5/0xa [ 787.036615] ? alloc_fs_context+0x57/0x840 [ 787.037503] should_failslab+0x5/0x10 [ 787.038300] kmem_cache_alloc_trace+0x55/0x360 [ 787.039265] alloc_fs_context+0x57/0x840 [ 787.040132] path_mount+0xa4e/0x2080 [ 787.040922] ? strncpy_from_user+0x9e/0x460 [ 787.041828] ? finish_automount+0xa40/0xa40 [ 787.042734] ? getname_flags.part.0+0x1dd/0x4f0 [ 787.043720] ? _copy_from_user+0xfb/0x1b0 [ 787.044602] __x64_sys_mount+0x27e/0x300 [ 787.045454] ? path_mount+0x2080/0x2080 [ 787.046294] ? rcu_read_lock_sched_held+0x3a/0x70 [ 787.047309] do_syscall_64+0x33/0x40 [ 787.048098] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 787.049174] RIP: 0033:0x466609 [ 787.049851] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 787.053695] RSP: 002b:00007f33d7a83188 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5 [ 787.055287] RAX: ffffffffffffffda RBX: 000000000056bf80 RCX: 0000000000466609 [ 787.056803] RDX: 00000000200000c0 RSI: 0000000020000000 RDI: 0000000000000000 [ 787.058297] RBP: 00007f33d7a831d0 R08: 00000000200004c0 R09: 0000000000000000 [ 787.059800] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 787.061295] R13: 00007ffecc2507ff R14: 00007f33d7a83300 R15: 0000000000022000 10:21:36 executing program 6: perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000040), 0x2, 0x0) write$binfmt_aout(r0, &(0x7f0000000640), 0x20) [ 787.080491] FAULT_INJECTION: forcing a failure. [ 787.080491] name failslab, interval 1, probability 0, space 0, times 0 [ 787.083273] CPU: 1 PID: 7582 Comm: syz-executor.1 Not tainted 5.10.56 #1 [ 787.084933] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS rel-1.14.0-0-g155821a1990b-prebuilt.qemu.org 04/01/2014 [ 787.087741] Call Trace: [ 787.088399] dump_stack+0x107/0x163 [ 787.089009] should_fail.cold+0x5/0xa [ 787.089562] ? create_object.isra.0+0x3a/0xa20 [ 787.090208] should_failslab+0x5/0x10 [ 787.090791] kmem_cache_alloc+0x5b/0x350 [ 787.091447] create_object.isra.0+0x3a/0xa20 [ 787.092081] ? __kasan_kmalloc.constprop.0+0xc2/0xd0 [ 787.092765] __kmalloc_track_caller+0x177/0x3c0 [ 787.093298] ? match_number+0xaf/0x1c0 [ 787.093755] kmemdup_nul+0x2d/0xa0 [ 787.094161] match_number+0xaf/0x1c0 [ 787.094592] ? match_u64+0x180/0x180 [ 787.095015] ? __kmalloc_track_caller+0x2d0/0x3c0 [ 787.095591] ? memcpy+0x39/0x60 [ 787.095967] parse_opts.part.0+0x1f3/0x340 [ 787.096454] ? p9_fd_show_options+0x1c0/0x1c0 [ 787.096959] ? quarantine_put+0x87/0x1a0 [ 787.097418] ? trace_hardirqs_on+0x5b/0x180 [ 787.097902] ? kfree+0xca/0x360 [ 787.098277] p9_fd_create+0x98/0x420 [ 787.098702] ? p9_conn_create+0x500/0x500 [ 787.099177] ? kfree+0xca/0x360 [ 787.099574] p9_client_create+0x7fb/0x1090 [ 787.100080] ? p9_client_flush+0x430/0x430 [ 787.100561] ? lockdep_init_map_waits+0x26a/0x700 [ 787.101129] ? __raw_spin_lock_init+0x34/0x100 [ 787.101663] v9fs_session_init+0x1dd/0x1690 [ 787.102174] ? kmem_cache_alloc_trace+0x151/0x360 [ 787.102731] ? v9fs_show_options+0x690/0x690 [ 787.103239] ? kasan_unpoison_shadow+0x33/0x40 [ 787.103745] ? __kasan_kmalloc.constprop.0+0xc2/0xd0 [ 787.104341] v9fs_mount+0x79/0x8f0 [ 787.104748] ? v9fs_write_inode+0x60/0x60 [ 787.105228] legacy_get_tree+0x105/0x220 [ 787.105709] vfs_get_tree+0x8e/0x2f0 [ 787.106151] path_mount+0x139a/0x2080 [ 787.106591] ? strncpy_from_user+0x9e/0x460 [ 787.107088] ? finish_automount+0xa40/0xa40 [ 787.107599] ? getname_flags.part.0+0x1dd/0x4f0 [ 787.108143] ? _copy_from_user+0xfb/0x1b0 [ 787.108626] __x64_sys_mount+0x27e/0x300 [ 787.109102] ? path_mount+0x2080/0x2080 [ 787.109561] ? rcu_read_lock_sched_held+0x3a/0x70 [ 787.110127] do_syscall_64+0x33/0x40 [ 787.110559] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 787.111169] RIP: 0033:0x466609 [ 787.111563] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 787.113701] RSP: 002b:00007fdc84e63188 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5 [ 787.114589] RAX: ffffffffffffffda RBX: 000000000056bf80 RCX: 0000000000466609 [ 787.115418] RDX: 00000000200000c0 RSI: 0000000020000000 RDI: 0000000000000000 [ 787.116250] RBP: 00007fdc84e631d0 R08: 00000000200004c0 R09: 0000000000000000 [ 787.117082] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 787.117930] R13: 00007ffc7c6b7e8f R14: 00007fdc84e63300 R15: 0000000000022000 [ 787.122061] FAULT_INJECTION: forcing a failure. [ 787.122061] name failslab, interval 1, probability 0, space 0, times 0 [ 787.123620] CPU: 1 PID: 7584 Comm: syz-executor.5 Not tainted 5.10.56 #1 [ 787.124510] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS rel-1.14.0-0-g155821a1990b-prebuilt.qemu.org 04/01/2014 [ 787.126058] Call Trace: [ 787.126354] dump_stack+0x107/0x163 [ 787.126772] should_fail.cold+0x5/0xa [ 787.127208] ? ___slab_alloc+0x35c/0x700 [ 787.127692] ? create_object.isra.0+0x3a/0xa20 [ 787.128225] should_failslab+0x5/0x10 [ 787.128670] kmem_cache_alloc+0x5b/0x350 [ 787.129142] create_object.isra.0+0x3a/0xa20 [ 787.129653] ? __kasan_kmalloc.constprop.0+0xc2/0xd0 [ 787.130238] kmem_cache_alloc+0x159/0x350 [ 787.130721] radix_tree_node_alloc.constprop.0+0x1df/0x300 [ 787.131344] idr_get_free+0x4b5/0x8f0 [ 787.131809] idr_alloc_u32+0x170/0x2d0 [ 787.132254] ? __fprop_inc_percpu_max+0x120/0x120 [ 787.132813] ? p9_client_prepare_req.part.0+0x206/0xb30 [ 787.133433] ? lock_release+0x6b0/0x6b0 [ 787.133893] idr_alloc+0xc2/0x130 [ 787.134292] ? idr_alloc_u32+0x2d0/0x2d0 [ 787.134759] ? rwlock_bug.part.0+0x90/0x90 [ 787.135259] p9_client_prepare_req.part.0+0x621/0xb30 [ 787.135876] p9_client_rpc+0x21c/0x1200 [ 787.136338] ? p9_client_prepare_req.part.0+0xb30/0xb30 [ 787.136963] ? n_tty_ioctl+0x370/0x370 [ 787.137395] ? ldsem_up_read+0x40/0x80 [ 787.137830] ? n_tty_ioctl+0x370/0x370 [ 787.138264] ? tty_poll+0x159/0x1c0 [ 787.138671] ? tty_release+0xe90/0xe90 [ 787.139107] ? p9_fd_poll+0x1e0/0x2c0 [ 787.139554] ? p9_fd_create+0x2eb/0x420 [ 787.140008] ? p9_conn_create+0x500/0x500 [ 787.140473] ? kfree+0xca/0x360 [ 787.140856] p9_client_create+0xa72/0x1090 [ 787.141352] ? p9_client_flush+0x430/0x430 [ 787.141840] ? lockdep_init_map_waits+0x26a/0x700 [ 787.142387] ? __raw_spin_lock_init+0x34/0x100 [ 787.142905] v9fs_session_init+0x1dd/0x1690 [ 787.143390] ? kmem_cache_alloc_trace+0x151/0x360 [ 787.143957] ? v9fs_show_options+0x690/0x690 [ 787.144474] ? kasan_unpoison_shadow+0x33/0x40 [ 787.144997] ? __kasan_kmalloc.constprop.0+0xc2/0xd0 [ 787.145574] v9fs_mount+0x79/0x8f0 [ 787.145984] ? v9fs_write_inode+0x60/0x60 [ 787.146454] legacy_get_tree+0x105/0x220 [ 787.146924] vfs_get_tree+0x8e/0x2f0 [ 787.147357] path_mount+0x139a/0x2080 [ 787.147834] ? strncpy_from_user+0x9e/0x460 [ 787.148338] ? finish_automount+0xa40/0xa40 [ 787.148842] ? getname_flags.part.0+0x1dd/0x4f0 [ 787.149386] ? _copy_from_user+0xfb/0x1b0 [ 787.149893] __x64_sys_mount+0x27e/0x300 [ 787.150384] ? path_mount+0x2080/0x2080 [ 787.150852] ? rcu_read_lock_sched_held+0x3a/0x70 [ 787.151430] do_syscall_64+0x33/0x40 [ 787.151863] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 787.152465] RIP: 0033:0x466609 [ 787.152846] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 787.154979] RSP: 002b:00007fd61fccc188 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5 [ 787.155852] RAX: ffffffffffffffda RBX: 000000000056bf80 RCX: 0000000000466609 [ 787.156667] RDX: 00000000200000c0 RSI: 0000000020000000 RDI: 0000000000000000 [ 787.157501] RBP: 00007fd61fccc1d0 R08: 00000000200004c0 R09: 0000000000000000 [ 787.158307] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 787.159122] R13: 00007fff09eaa3cf R14: 00007fd61fccc300 R15: 0000000000022000 10:21:36 executing program 6: perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r0 = openat$ptmx(0xffffffffffffff9c, 0x0, 0x2, 0x0) write$binfmt_aout(r0, &(0x7f0000000640), 0x20) 10:21:37 executing program 6: perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r0 = openat$ptmx(0xffffffffffffff9c, 0x0, 0x2, 0x0) write$binfmt_aout(r0, &(0x7f0000000640), 0x20) 10:21:37 executing program 5 (fault-call:3 fault-nth:41): r0 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x46e2, 0x0) r1 = dup2(r0, r0) r2 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000040), 0x2, 0x0) mount$9p_fd(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f00000000c0), 0x0, &(0x7f00000004c0)={'trans=fd,', {'rfdno', 0x3d, r1}, 0x2c, {'wfdno', 0x3d, r2}}) 10:21:37 executing program 6: perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r0 = openat$ptmx(0xffffffffffffff9c, 0x0, 0x2, 0x0) write$binfmt_aout(r0, &(0x7f0000000640), 0x20) 10:21:37 executing program 1 (fault-call:3 fault-nth:29): r0 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x46e2, 0x0) r1 = dup2(r0, r0) r2 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000040), 0x2, 0x0) mount$9p_fd(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f00000000c0), 0x0, &(0x7f00000004c0)={'trans=fd,', {'rfdno', 0x3d, r1}, 0x2c, {'wfdno', 0x3d, r2}}) [ 787.265216] FAULT_INJECTION: forcing a failure. [ 787.265216] name failslab, interval 1, probability 0, space 0, times 0 [ 787.266535] CPU: 1 PID: 7603 Comm: syz-executor.5 Not tainted 5.10.56 #1 [ 787.267252] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS rel-1.14.0-0-g155821a1990b-prebuilt.qemu.org 04/01/2014 [ 787.268488] Call Trace: [ 787.268873] dump_stack+0x107/0x163 [ 787.269409] should_fail.cold+0x5/0xa [ 787.269824] ? radix_tree_node_alloc.constprop.0+0x1df/0x300 [ 787.270444] should_failslab+0x5/0x10 [ 787.270856] kmem_cache_alloc+0x5b/0x350 [ 787.271293] radix_tree_node_alloc.constprop.0+0x1df/0x300 [ 787.271898] idr_get_free+0x4b5/0x8f0 [ 787.272337] idr_alloc_u32+0x170/0x2d0 [ 787.272831] ? __fprop_inc_percpu_max+0x120/0x120 [ 787.273526] ? p9_client_prepare_req.part.0+0x206/0xb30 [ 787.274175] ? lock_release+0x6b0/0x6b0 [ 787.274600] idr_alloc+0xc2/0x130 [ 787.275098] ? idr_alloc_u32+0x2d0/0x2d0 [ 787.275556] ? rwlock_bug.part.0+0x90/0x90 [ 787.276043] p9_client_prepare_req.part.0+0x621/0xb30 [ 787.276633] p9_client_rpc+0x21c/0x1200 [ 787.277620] ? p9_client_prepare_req.part.0+0xb30/0xb30 [ 787.278780] ? n_tty_ioctl+0x370/0x370 [ 787.279633] ? ldsem_up_read+0x40/0x80 [ 787.280653] ? n_tty_ioctl+0x370/0x370 [ 787.281522] ? tty_poll+0x159/0x1c0 [ 787.282400] ? tty_release+0xe90/0xe90 [ 787.283386] ? p9_fd_poll+0x1e0/0x2c0 [ 787.284232] ? p9_fd_create+0x2eb/0x420 [ 787.285090] ? p9_conn_create+0x500/0x500 [ 787.285986] ? kfree+0xca/0x360 [ 787.286854] p9_client_create+0xa72/0x1090 [ 787.287857] ? p9_client_flush+0x430/0x430 [ 787.288857] ? lockdep_init_map_waits+0x26a/0x700 [ 787.289966] ? __raw_spin_lock_init+0x34/0x100 [ 787.291032] v9fs_session_init+0x1dd/0x1690 [ 787.291993] ? kmem_cache_alloc_trace+0x151/0x360 [ 787.293033] ? v9fs_show_options+0x690/0x690 [ 787.294192] ? kasan_unpoison_shadow+0x33/0x40 [ 787.295179] ? __kasan_kmalloc.constprop.0+0xc2/0xd0 [ 787.296386] v9fs_mount+0x79/0x8f0 [ 787.297189] ? v9fs_write_inode+0x60/0x60 [ 787.298149] legacy_get_tree+0x105/0x220 [ 787.299174] vfs_get_tree+0x8e/0x2f0 [ 787.299999] path_mount+0x139a/0x2080 [ 787.300883] ? strncpy_from_user+0x9e/0x460 [ 787.301934] ? finish_automount+0xa40/0xa40 [ 787.302880] ? getname_flags.part.0+0x1dd/0x4f0 [ 787.303901] ? _copy_from_user+0xfb/0x1b0 [ 787.304917] __x64_sys_mount+0x27e/0x300 [ 787.305879] ? path_mount+0x2080/0x2080 [ 787.306849] ? rcu_read_lock_sched_held+0x3a/0x70 [ 787.307998] do_syscall_64+0x33/0x40 [ 787.308900] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 787.310008] RIP: 0033:0x466609 [ 787.310709] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 787.315048] RSP: 002b:00007fd61fccc188 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5 [ 787.316927] RAX: ffffffffffffffda RBX: 000000000056bf80 RCX: 0000000000466609 [ 787.318731] RDX: 00000000200000c0 RSI: 0000000020000000 RDI: 0000000000000000 [ 787.320279] RBP: 00007fd61fccc1d0 R08: 00000000200004c0 R09: 0000000000000000 [ 787.321942] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 787.323680] R13: 00007fff09eaa3cf R14: 00007fd61fccc300 R15: 0000000000022000 10:21:37 executing program 0: r0 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x46e2, 0x0) r1 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffd000/0x3000)=nil, 0x3000, 0x0, 0x13, r0, 0x0) r2 = fspick(r0, &(0x7f0000000000)='./file0\x00', 0x0) ioctl$BTRFS_IOC_QGROUP_ASSIGN(r2, 0x40189429, &(0x7f0000000080)={0x0, 0x10000, 0xff}) syz_io_uring_setup(0x4b9f, &(0x7f0000000140), &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000ffd000/0x3000)=nil, &(0x7f00000000c0), &(0x7f00000001c0)=0x0) syz_io_uring_submit(r1, r3, &(0x7f0000000240)=@IORING_OP_FADVISE={0x18, 0x0, 0x0, @fd, 0x2}, 0x0) sigaltstack(&(0x7f0000ffd000/0x1000)=nil, 0x0) 10:21:37 executing program 4 (fault-call:3 fault-nth:10): r0 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x46e2, 0x0) r1 = dup2(r0, r0) r2 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000040), 0x2, 0x0) mount$9p_fd(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f00000000c0), 0x0, &(0x7f00000004c0)={'trans=fd,', {'rfdno', 0x3d, r1}, 0x2c, {'wfdno', 0x3d, r2}}) [ 787.388654] FAULT_INJECTION: forcing a failure. [ 787.388654] name failslab, interval 1, probability 0, space 0, times 0 [ 787.391155] CPU: 1 PID: 7605 Comm: syz-executor.1 Not tainted 5.10.56 #1 [ 787.392683] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS rel-1.14.0-0-g155821a1990b-prebuilt.qemu.org 04/01/2014 [ 787.395145] Call Trace: [ 787.395754] dump_stack+0x107/0x163 [ 787.396541] should_fail.cold+0x5/0xa [ 787.397391] should_failslab+0x5/0x10 [ 787.398224] __kmalloc_track_caller+0x79/0x3c0 [ 787.399221] ? match_number+0xaf/0x1c0 [ 787.400110] kmemdup_nul+0x2d/0xa0 [ 787.400902] match_number+0xaf/0x1c0 [ 787.401737] ? match_u64+0x180/0x180 [ 787.402534] ? __kmalloc_track_caller+0x2d0/0x3c0 [ 787.403622] ? memcpy+0x39/0x60 [ 787.404347] parse_opts.part.0+0x1f3/0x340 [ 787.405267] ? p9_fd_show_options+0x1c0/0x1c0 [ 787.406253] ? quarantine_put+0x87/0x1a0 [ 787.407132] ? trace_hardirqs_on+0x5b/0x180 [ 787.408077] ? kfree+0xca/0x360 [ 787.408800] p9_fd_create+0x98/0x420 [ 787.409606] ? p9_conn_create+0x500/0x500 [ 787.410506] ? kfree+0xca/0x360 [ 787.411234] p9_client_create+0x7fb/0x1090 [ 787.412191] ? p9_client_flush+0x430/0x430 [ 787.413121] ? lockdep_init_map_waits+0x26a/0x700 [ 787.414174] ? __raw_spin_lock_init+0x34/0x100 [ 787.415173] v9fs_session_init+0x1dd/0x1690 [ 787.416131] ? kmem_cache_alloc_trace+0x151/0x360 [ 787.417178] ? v9fs_show_options+0x690/0x690 [ 787.417502] FAULT_INJECTION: forcing a failure. [ 787.417502] name failslab, interval 1, probability 0, space 0, times 0 [ 787.418163] ? kasan_unpoison_shadow+0x33/0x40 [ 787.421603] ? __kasan_kmalloc.constprop.0+0xc2/0xd0 [ 787.422708] v9fs_mount+0x79/0x8f0 [ 787.423488] ? v9fs_write_inode+0x60/0x60 [ 787.424386] legacy_get_tree+0x105/0x220 [ 787.425271] vfs_get_tree+0x8e/0x2f0 [ 787.426075] path_mount+0x139a/0x2080 [ 787.426904] ? strncpy_from_user+0x9e/0x460 [ 787.427838] ? finish_automount+0xa40/0xa40 [ 787.428768] ? getname_flags.part.0+0x1dd/0x4f0 [ 787.429767] ? _copy_from_user+0xfb/0x1b0 [ 787.430682] __x64_sys_mount+0x27e/0x300 [ 787.431575] ? path_mount+0x2080/0x2080 [ 787.432448] ? rcu_read_lock_sched_held+0x3a/0x70 [ 787.433494] do_syscall_64+0x33/0x40 [ 787.434297] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 787.435403] RIP: 0033:0x466609 [ 787.436122] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 787.440148] RSP: 002b:00007fdc84e63188 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5 [ 787.441807] RAX: ffffffffffffffda RBX: 000000000056bf80 RCX: 0000000000466609 [ 787.443351] RDX: 00000000200000c0 RSI: 0000000020000000 RDI: 0000000000000000 [ 787.444906] RBP: 00007fdc84e631d0 R08: 00000000200004c0 R09: 0000000000000000 [ 787.446452] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 787.448008] R13: 00007ffc7c6b7e8f R14: 00007fdc84e63300 R15: 0000000000022000 [ 787.449596] CPU: 0 PID: 7609 Comm: syz-executor.4 Not tainted 5.10.56 #1 [ 787.449793] 9pnet: Insufficient options for proto=fd [ 787.451097] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS rel-1.14.0-0-g155821a1990b-prebuilt.qemu.org 04/01/2014 [ 787.451105] Call Trace: [ 787.451138] dump_stack+0x107/0x163 [ 787.456242] should_fail.cold+0x5/0xa [ 787.457070] ? create_object.isra.0+0x3a/0xa20 [ 787.458060] should_failslab+0x5/0x10 [ 787.458881] kmem_cache_alloc+0x5b/0x350 [ 787.459777] create_object.isra.0+0x3a/0xa20 [ 787.460726] ? __kasan_kmalloc.constprop.0+0xc2/0xd0 [ 787.461826] kmem_cache_alloc_trace+0x151/0x360 [ 787.462838] alloc_fs_context+0x57/0x840 [ 787.463750] path_mount+0xa4e/0x2080 [ 787.464562] ? strncpy_from_user+0x9e/0x460 [ 787.465496] ? finish_automount+0xa40/0xa40 [ 787.466430] ? getname_flags.part.0+0x1dd/0x4f0 [ 787.467438] ? _copy_from_user+0xfb/0x1b0 [ 787.468348] __x64_sys_mount+0x27e/0x300 [ 787.469227] ? path_mount+0x2080/0x2080 [ 787.470092] ? rcu_read_lock_sched_held+0x3a/0x70 [ 787.471138] do_syscall_64+0x33/0x40 [ 787.471949] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 787.473057] RIP: 0033:0x466609 [ 787.473751] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 787.477725] RSP: 002b:00007f33d7a83188 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5 [ 787.479369] RAX: ffffffffffffffda RBX: 000000000056bf80 RCX: 0000000000466609 [ 787.480914] RDX: 00000000200000c0 RSI: 0000000020000000 RDI: 0000000000000000 [ 787.482451] RBP: 00007f33d7a831d0 R08: 00000000200004c0 R09: 0000000000000000 [ 787.484006] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 787.485547] R13: 00007ffecc2507ff R14: 00007f33d7a83300 R15: 0000000000022000 10:21:37 executing program 6: perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000040), 0x0, 0x0) write$binfmt_aout(r0, &(0x7f0000000640), 0x20) 10:21:37 executing program 0: r0 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x46e2, 0x0) r1 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffd000/0x3000)=nil, 0x3000, 0x0, 0x13, r0, 0x0) ioctl$TUNSETQUEUE(r0, 0x400454d9, &(0x7f0000000080)={'macvlan1\x00'}) ioctl$TUNGETFEATURES(r0, 0x800454cf, &(0x7f0000000100)) r2 = openat(0xffffffffffffffff, &(0x7f0000000000)='./file0\x00', 0x2002, 0x98) write$binfmt_misc(r2, &(0x7f0000000280)={'syz0', "6782da8190dd10d14c2eb451f3c08ade9a6718f9c95889566ad82950035c0f6a03208219059b9e0e0ef0da4b8922dfc6c9a389fe4f81359897bc805351bc4d7436f6f636dfd685b9257458fcb389b9f376ba"}, 0x56) syz_io_uring_setup(0x4b9f, &(0x7f0000000140), &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000ffd000/0x3000)=nil, &(0x7f00000000c0), &(0x7f00000001c0)=0x0) syz_io_uring_submit(r1, r3, &(0x7f0000000240)=@IORING_OP_FADVISE={0x18, 0x0, 0x0, @fd, 0x2}, 0x0) sigaltstack(&(0x7f0000ffd000/0x1000)=nil, 0x0) 10:21:50 executing program 5 (fault-call:3 fault-nth:42): r0 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x46e2, 0x0) r1 = dup2(r0, r0) r2 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000040), 0x2, 0x0) mount$9p_fd(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f00000000c0), 0x0, &(0x7f00000004c0)={'trans=fd,', {'rfdno', 0x3d, r1}, 0x2c, {'wfdno', 0x3d, r2}}) 10:21:50 executing program 7: perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000040), 0x2, 0x0) write$binfmt_aout(0xffffffffffffffff, &(0x7f0000000640), 0x20) read(r0, &(0x7f0000000100)=""/146, 0x92) 10:21:50 executing program 3: perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000040), 0x2, 0x0) write$binfmt_aout(0xffffffffffffffff, &(0x7f0000000640), 0x20) read(r0, &(0x7f0000000100)=""/146, 0x92) 10:21:50 executing program 4 (fault-call:3 fault-nth:11): r0 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x46e2, 0x0) r1 = dup2(r0, r0) r2 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000040), 0x2, 0x0) mount$9p_fd(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f00000000c0), 0x0, &(0x7f00000004c0)={'trans=fd,', {'rfdno', 0x3d, r1}, 0x2c, {'wfdno', 0x3d, r2}}) 10:21:50 executing program 0: r0 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x46e2, 0x0) r1 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffd000/0x3000)=nil, 0x3000, 0x0, 0x13, r0, 0x0) r2 = socket$netlink(0x10, 0x3, 0x0) socket$nl_sock_diag(0x10, 0x3, 0x4) r3 = fcntl$dupfd(r2, 0x0, r2) getsockopt$netlink(r3, 0x10e, 0x0, 0x0, 0xfffffffffffffffe) syz_io_uring_setup(0x421e, &(0x7f0000000140)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, r3}, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000ffd000/0x3000)=nil, &(0x7f0000000000), &(0x7f00000001c0)=0x0) syz_io_uring_submit(r1, r4, &(0x7f0000000240)=@IORING_OP_FADVISE={0x18, 0x0, 0x0, @fd, 0x2}, 0x0) r5 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000040), 0x2, 0x0) write$binfmt_aout(r5, &(0x7f0000000640), 0x20) read(r5, &(0x7f0000000100)=""/146, 0x92) close_range(r5, 0xffffffffffffffff, 0x2) sigaltstack(&(0x7f0000ffd000/0x1000)=nil, 0x0) 10:21:50 executing program 2: r0 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x105142, 0x0) r1 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0) openat(r1, &(0x7f0000000040)='./file1\x00', 0x40000, 0x42) open(&(0x7f00000000c0)='./file1\x00', 0x8400, 0x102) copy_file_range(r1, 0x0, r0, 0x0, 0x200f5ef, 0x0) r2 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x105142, 0x0) sendfile(r2, r0, 0x0, 0x7ffffffc) r3 = timerfd_create(0x0, 0x800) r4 = syz_open_dev$hidraw(&(0x7f0000000080), 0x8, 0x1c4240) tee(r3, r4, 0x7, 0x4) 10:21:50 executing program 6: perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000040), 0x0, 0x0) write$binfmt_aout(r0, &(0x7f0000000640), 0x20) 10:21:50 executing program 1 (fault-call:3 fault-nth:30): r0 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x46e2, 0x0) r1 = dup2(r0, r0) r2 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000040), 0x2, 0x0) mount$9p_fd(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f00000000c0), 0x0, &(0x7f00000004c0)={'trans=fd,', {'rfdno', 0x3d, r1}, 0x2c, {'wfdno', 0x3d, r2}}) [ 800.563850] FAULT_INJECTION: forcing a failure. 10:21:50 executing program 6: perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000040), 0x0, 0x0) write$binfmt_aout(r0, &(0x7f0000000640), 0x20) [ 800.563850] name failslab, interval 1, probability 0, space 0, times 0 [ 800.566803] CPU: 1 PID: 7644 Comm: syz-executor.4 Not tainted 5.10.56 #1 [ 800.568208] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS rel-1.14.0-0-g155821a1990b-prebuilt.qemu.org 04/01/2014 [ 800.570525] Call Trace: [ 800.571070] dump_stack+0x107/0x163 [ 800.571832] should_fail.cold+0x5/0xa [ 800.572617] ? legacy_init_fs_context+0x44/0xe0 [ 800.573572] should_failslab+0x5/0x10 [ 800.574349] kmem_cache_alloc_trace+0x55/0x360 [ 800.575290] legacy_init_fs_context+0x44/0xe0 [ 800.576219] ? generic_parse_monolithic+0x1f0/0x1f0 [ 800.577227] alloc_fs_context+0x4f8/0x840 [ 800.578086] path_mount+0xa4e/0x2080 [ 800.578848] ? strncpy_from_user+0x9e/0x460 [ 800.579717] ? finish_automount+0xa40/0xa40 [ 800.580600] ? getname_flags.part.0+0x1dd/0x4f0 [ 800.581540] ? _copy_from_user+0xfb/0x1b0 [ 800.582393] __x64_sys_mount+0x27e/0x300 [ 800.583216] ? path_mount+0x2080/0x2080 [ 800.584068] ? rcu_read_lock_sched_held+0x3a/0x70 [ 800.585053] do_syscall_64+0x33/0x40 [ 800.585810] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 800.586849] RIP: 0033:0x466609 [ 800.587502] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 800.591329] RSP: 002b:00007f33d7a83188 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5 [ 800.592887] RAX: ffffffffffffffda RBX: 000000000056bf80 RCX: 0000000000466609 [ 800.594340] RDX: 00000000200000c0 RSI: 0000000020000000 RDI: 0000000000000000 [ 800.595806] RBP: 00007f33d7a831d0 R08: 00000000200004c0 R09: 0000000000000000 [ 800.597251] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 800.598694] R13: 00007ffecc2507ff R14: 00007f33d7a83300 R15: 0000000000022000 [ 800.606319] FAULT_INJECTION: forcing a failure. [ 800.606319] name failslab, interval 1, probability 0, space 0, times 0 [ 800.607707] CPU: 0 PID: 7645 Comm: syz-executor.5 Not tainted 5.10.56 #1 [ 800.608493] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS rel-1.14.0-0-g155821a1990b-prebuilt.qemu.org 04/01/2014 [ 800.610036] Call Trace: [ 800.610346] dump_stack+0x107/0x163 [ 800.610766] should_fail.cold+0x5/0xa [ 800.611219] ? radix_tree_node_alloc.constprop.0+0x1df/0x300 [ 800.611900] should_failslab+0x5/0x10 [ 800.611977] FAULT_INJECTION: forcing a failure. [ 800.611977] name failslab, interval 1, probability 0, space 0, times 0 [ 800.612334] kmem_cache_alloc+0x5b/0x350 [ 800.612351] radix_tree_node_alloc.constprop.0+0x1df/0x300 [ 800.615717] idr_get_free+0x4b5/0x8f0 [ 800.616177] idr_alloc_u32+0x170/0x2d0 [ 800.616636] ? __fprop_inc_percpu_max+0x120/0x120 [ 800.617206] ? p9_client_prepare_req.part.0+0x206/0xb30 [ 800.617841] ? lock_release+0x6b0/0x6b0 [ 800.618312] idr_alloc+0xc2/0x130 [ 800.618717] ? idr_alloc_u32+0x2d0/0x2d0 [ 800.619186] ? rwlock_bug.part.0+0x90/0x90 [ 800.619720] p9_client_prepare_req.part.0+0x621/0xb30 [ 800.620335] p9_client_rpc+0x21c/0x1200 [ 800.620774] ? p9_client_prepare_req.part.0+0xb30/0xb30 [ 800.621398] ? n_tty_ioctl+0x370/0x370 [ 800.621857] ? ldsem_up_read+0x40/0x80 [ 800.622313] ? n_tty_ioctl+0x370/0x370 [ 800.622765] ? tty_poll+0x159/0x1c0 [ 800.623189] ? tty_release+0xe90/0xe90 [ 800.623655] ? p9_fd_poll+0x1e0/0x2c0 [ 800.624105] ? p9_fd_create+0x2eb/0x420 [ 800.624557] ? p9_conn_create+0x500/0x500 [ 800.625008] ? kfree+0xca/0x360 [ 800.625393] p9_client_create+0xa72/0x1090 [ 800.625858] ? p9_client_flush+0x430/0x430 [ 800.626340] ? lockdep_init_map_waits+0x26a/0x700 [ 800.626863] ? __raw_spin_lock_init+0x34/0x100 [ 800.627391] v9fs_session_init+0x1dd/0x1690 [ 800.627934] ? kmem_cache_alloc_trace+0x151/0x360 [ 800.628489] ? v9fs_show_options+0x690/0x690 [ 800.629000] ? kasan_unpoison_shadow+0x33/0x40 [ 800.629523] ? __kasan_kmalloc.constprop.0+0xc2/0xd0 [ 800.630100] v9fs_mount+0x79/0x8f0 [ 800.630510] ? v9fs_write_inode+0x60/0x60 [ 800.630957] legacy_get_tree+0x105/0x220 [ 800.631405] vfs_get_tree+0x8e/0x2f0 [ 800.631860] path_mount+0x139a/0x2080 [ 800.632318] ? strncpy_from_user+0x9e/0x460 [ 800.632819] ? finish_automount+0xa40/0xa40 [ 800.633322] ? getname_flags.part.0+0x1dd/0x4f0 [ 800.633861] ? _copy_from_user+0xfb/0x1b0 [ 800.634360] __x64_sys_mount+0x27e/0x300 [ 800.634832] ? path_mount+0x2080/0x2080 [ 800.635304] ? rcu_read_lock_sched_held+0x3a/0x70 [ 800.635885] do_syscall_64+0x33/0x40 [ 800.636316] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 800.636911] RIP: 0033:0x466609 [ 800.637262] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 800.639401] RSP: 002b:00007fd61fccc188 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5 [ 800.640318] RAX: ffffffffffffffda RBX: 000000000056bf80 RCX: 0000000000466609 [ 800.641149] RDX: 00000000200000c0 RSI: 0000000020000000 RDI: 0000000000000000 [ 800.641978] RBP: 00007fd61fccc1d0 R08: 00000000200004c0 R09: 0000000000000000 [ 800.642800] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 800.643610] R13: 00007fff09eaa3cf R14: 00007fd61fccc300 R15: 0000000000022000 [ 800.644497] CPU: 1 PID: 7642 Comm: syz-executor.1 Not tainted 5.10.56 #1 [ 800.645942] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS rel-1.14.0-0-g155821a1990b-prebuilt.qemu.org 04/01/2014 [ 800.648436] Call Trace: [ 800.648980] dump_stack+0x107/0x163 [ 800.649724] should_fail.cold+0x5/0xa [ 800.650507] ? create_object.isra.0+0x3a/0xa20 [ 800.651440] should_failslab+0x5/0x10 [ 800.652223] kmem_cache_alloc+0x5b/0x350 [ 800.653059] create_object.isra.0+0x3a/0xa20 [ 800.653984] ? __kasan_kmalloc.constprop.0+0xc2/0xd0 [ 800.655014] __kmalloc_track_caller+0x177/0x3c0 [ 800.655960] ? match_number+0xaf/0x1c0 [ 800.656752] kmemdup_nul+0x2d/0xa0 10:21:50 executing program 6: perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) openat$ptmx(0xffffffffffffff9c, &(0x7f0000000040), 0x2, 0x0) write$binfmt_aout(0xffffffffffffffff, &(0x7f0000000640), 0x20) [ 800.657468] match_number+0xaf/0x1c0 [ 800.658432] ? match_u64+0x180/0x180 [ 800.659182] ? __kmalloc_track_caller+0x2d0/0x3c0 [ 800.660169] ? memcpy+0x39/0x60 [ 800.660839] parse_opts.part.0+0x1f3/0x340 [ 800.661693] ? p9_fd_show_options+0x1c0/0x1c0 [ 800.662615] ? quarantine_put+0x87/0x1a0 [ 800.663444] ? trace_hardirqs_on+0x5b/0x180 [ 800.664327] ? kfree+0xca/0x360 [ 800.665000] p9_fd_create+0x98/0x420 [ 800.665751] ? p9_conn_create+0x500/0x500 [ 800.666606] ? kfree+0xca/0x360 [ 800.667277] p9_client_create+0x7fb/0x1090 [ 800.668176] ? p9_client_flush+0x430/0x430 [ 800.669041] ? lockdep_init_map_waits+0x26a/0x700 [ 800.670019] ? __raw_spin_lock_init+0x34/0x100 [ 800.670962] v9fs_session_init+0x1dd/0x1690 [ 800.671874] ? kmem_cache_alloc_trace+0x151/0x360 [ 800.672853] ? v9fs_show_options+0x690/0x690 [ 800.673765] ? kasan_unpoison_shadow+0x33/0x40 [ 800.674686] ? __kasan_kmalloc.constprop.0+0xc2/0xd0 [ 800.675733] v9fs_mount+0x79/0x8f0 [ 800.676469] ? v9fs_write_inode+0x60/0x60 [ 800.677314] legacy_get_tree+0x105/0x220 [ 800.678142] vfs_get_tree+0x8e/0x2f0 [ 800.678902] path_mount+0x139a/0x2080 [ 800.679700] ? strncpy_from_user+0x9e/0x460 [ 800.680590] ? finish_automount+0xa40/0xa40 [ 800.681447] ? getname_flags.part.0+0x1dd/0x4f0 [ 800.682391] ? _copy_from_user+0xfb/0x1b0 [ 800.683241] __x64_sys_mount+0x27e/0x300 [ 800.684080] ? path_mount+0x2080/0x2080 [ 800.684880] ? rcu_read_lock_sched_held+0x3a/0x70 [ 800.685858] do_syscall_64+0x33/0x40 [ 800.686622] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 800.687684] RIP: 0033:0x466609 [ 800.688334] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 800.692189] RSP: 002b:00007fdc84e63188 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5 [ 800.693721] RAX: ffffffffffffffda RBX: 000000000056bf80 RCX: 0000000000466609 [ 800.695161] RDX: 00000000200000c0 RSI: 0000000020000000 RDI: 0000000000000000 [ 800.696695] RBP: 00007fdc84e631d0 R08: 00000000200004c0 R09: 0000000000000000 [ 800.698194] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 800.699664] R13: 00007ffc7c6b7e8f R14: 00007fdc84e63300 R15: 0000000000022000 10:21:50 executing program 0: r0 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x46e2, 0x0) r1 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffd000/0x3000)=nil, 0x3000, 0x0, 0x13, r0, 0x0) syz_io_uring_setup(0x4b9f, &(0x7f0000000140), &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000ffd000/0x3000)=nil, &(0x7f00000000c0), &(0x7f00000001c0)=0x0) syz_io_uring_submit(r1, r2, &(0x7f0000000240)=@IORING_OP_FADVISE={0x18, 0x0, 0x0, @fd, 0x2}, 0x0) sigaltstack(&(0x7f0000ffd000/0x1000)=nil, 0x0) munmap(&(0x7f0000ffe000/0x1000)=nil, 0x1000) r3 = openat$zero(0xffffffffffffff9c, &(0x7f0000000000), 0x8000, 0x0) openat(r3, &(0x7f0000000080)='./file1\x00', 0x20080, 0x4e) madvise(&(0x7f0000ffb000/0x3000)=nil, 0x3000, 0x11) 10:21:50 executing program 1 (fault-call:3 fault-nth:31): r0 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x46e2, 0x0) r1 = dup2(r0, r0) r2 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000040), 0x2, 0x0) mount$9p_fd(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f00000000c0), 0x0, &(0x7f00000004c0)={'trans=fd,', {'rfdno', 0x3d, r1}, 0x2c, {'wfdno', 0x3d, r2}}) 10:21:50 executing program 5 (fault-call:3 fault-nth:43): r0 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x46e2, 0x0) r1 = dup2(r0, r0) r2 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000040), 0x2, 0x0) mount$9p_fd(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f00000000c0), 0x0, &(0x7f00000004c0)={'trans=fd,', {'rfdno', 0x3d, r1}, 0x2c, {'wfdno', 0x3d, r2}}) 10:21:50 executing program 4 (fault-call:3 fault-nth:12): r0 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x46e2, 0x0) r1 = dup2(r0, r0) r2 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000040), 0x2, 0x0) mount$9p_fd(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f00000000c0), 0x0, &(0x7f00000004c0)={'trans=fd,', {'rfdno', 0x3d, r1}, 0x2c, {'wfdno', 0x3d, r2}}) [ 800.842161] FAULT_INJECTION: forcing a failure. [ 800.842161] name failslab, interval 1, probability 0, space 0, times 0 [ 800.844224] CPU: 1 PID: 7670 Comm: syz-executor.1 Not tainted 5.10.56 #1 [ 800.845341] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS rel-1.14.0-0-g155821a1990b-prebuilt.qemu.org 04/01/2014 [ 800.847210] Call Trace: [ 800.847659] dump_stack+0x107/0x163 [ 800.848271] should_fail.cold+0x5/0xa [ 800.848904] ? p9_fd_create+0x161/0x420 [ 800.849566] should_failslab+0x5/0x10 [ 800.850197] kmem_cache_alloc_trace+0x55/0x360 [ 800.850958] p9_fd_create+0x161/0x420 [ 800.851589] ? p9_conn_create+0x500/0x500 [ 800.852299] ? kfree+0xca/0x360 [ 800.852857] p9_client_create+0x7fb/0x1090 [ 800.853570] ? p9_client_flush+0x430/0x430 [ 800.854282] ? lockdep_init_map_waits+0x26a/0x700 [ 800.855078] FAULT_INJECTION: forcing a failure. [ 800.855078] name failslab, interval 1, probability 0, space 0, times 0 [ 800.856917] ? __raw_spin_lock_init+0x34/0x100 [ 800.857683] v9fs_session_init+0x1dd/0x1690 [ 800.858411] ? kmem_cache_alloc_trace+0x151/0x360 [ 800.859209] ? v9fs_show_options+0x690/0x690 [ 800.859970] ? kasan_unpoison_shadow+0x33/0x40 [ 800.860729] ? __kasan_kmalloc.constprop.0+0xc2/0xd0 [ 800.861571] v9fs_mount+0x79/0x8f0 [ 800.862164] ? v9fs_write_inode+0x60/0x60 [ 800.862853] legacy_get_tree+0x105/0x220 [ 800.863533] vfs_get_tree+0x8e/0x2f0 [ 800.864168] path_mount+0x139a/0x2080 [ 800.864804] ? strncpy_from_user+0x9e/0x460 [ 800.865521] ? finish_automount+0xa40/0xa40 [ 800.866236] ? getname_flags.part.0+0x1dd/0x4f0 [ 800.867012] ? _copy_from_user+0xfb/0x1b0 [ 800.867719] __x64_sys_mount+0x27e/0x300 [ 800.868394] ? path_mount+0x2080/0x2080 [ 800.869060] ? rcu_read_lock_sched_held+0x3a/0x70 [ 800.869868] do_syscall_64+0x33/0x40 [ 800.870486] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 800.871335] RIP: 0033:0x466609 [ 800.871909] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 800.874960] RSP: 002b:00007fdc84e63188 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5 [ 800.876242] RAX: ffffffffffffffda RBX: 000000000056bf80 RCX: 0000000000466609 [ 800.877428] RDX: 00000000200000c0 RSI: 0000000020000000 RDI: 0000000000000000 [ 800.878618] RBP: 00007fdc84e631d0 R08: 00000000200004c0 R09: 0000000000000000 [ 800.879811] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 800.880997] R13: 00007ffc7c6b7e8f R14: 00007fdc84e63300 R15: 0000000000022000 [ 800.882206] CPU: 0 PID: 7669 Comm: syz-executor.5 Not tainted 5.10.56 #1 [ 800.883167] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS rel-1.14.0-0-g155821a1990b-prebuilt.qemu.org 04/01/2014 [ 800.884489] Call Trace: [ 800.884794] dump_stack+0x107/0x163 [ 800.885216] should_fail.cold+0x5/0xa [ 800.885666] ? radix_tree_node_alloc.constprop.0+0x1df/0x300 [ 800.886325] should_failslab+0x5/0x10 [ 800.886774] kmem_cache_alloc+0x5b/0x350 [ 800.887260] radix_tree_node_alloc.constprop.0+0x1df/0x300 [ 800.887912] idr_get_free+0x4b5/0x8f0 [ 800.888355] idr_alloc_u32+0x170/0x2d0 [ 800.888804] ? __fprop_inc_percpu_max+0x120/0x120 [ 800.889346] ? p9_client_prepare_req.part.0+0x206/0xb30 [ 800.889957] ? lock_release+0x6b0/0x6b0 [ 800.890414] idr_alloc+0xc2/0x130 [ 800.890826] ? idr_alloc_u32+0x2d0/0x2d0 [ 800.891303] ? rwlock_bug.part.0+0x90/0x90 [ 800.891817] p9_client_prepare_req.part.0+0x621/0xb30 [ 800.892426] p9_client_rpc+0x21c/0x1200 [ 800.892883] ? p9_client_prepare_req.part.0+0xb30/0xb30 [ 800.893497] ? n_tty_ioctl+0x370/0x370 [ 800.893911] ? ldsem_up_read+0x40/0x80 [ 800.894357] ? n_tty_ioctl+0x370/0x370 [ 800.894812] ? tty_poll+0x159/0x1c0 [ 800.895225] ? tty_release+0xe90/0xe90 [ 800.895690] ? p9_fd_poll+0x1e0/0x2c0 [ 800.896137] ? p9_fd_create+0x2eb/0x420 [ 800.896593] ? p9_conn_create+0x500/0x500 [ 800.897071] ? kfree+0xca/0x360 [ 800.897452] p9_client_create+0xa72/0x1090 [ 800.897950] ? p9_client_flush+0x430/0x430 [ 800.898407] ? lockdep_init_map_waits+0x26a/0x700 [ 800.898965] ? __raw_spin_lock_init+0x34/0x100 [ 800.899498] v9fs_session_init+0x1dd/0x1690 [ 800.900012] ? kmem_cache_alloc_trace+0x151/0x360 [ 800.900565] ? v9fs_show_options+0x690/0x690 [ 800.901081] ? kasan_unpoison_shadow+0x33/0x40 [ 800.901571] ? __kasan_kmalloc.constprop.0+0xc2/0xd0 [ 800.902115] v9fs_mount+0x79/0x8f0 [ 800.902494] ? v9fs_write_inode+0x60/0x60 [ 800.902937] legacy_get_tree+0x105/0x220 [ 800.903373] vfs_get_tree+0x8e/0x2f0 [ 800.903779] path_mount+0x139a/0x2080 [ 800.904185] ? strncpy_from_user+0x9e/0x460 [ 800.904648] ? finish_automount+0xa40/0xa40 [ 800.905112] ? getname_flags.part.0+0x1dd/0x4f0 [ 800.905606] ? _copy_from_user+0xfb/0x1b0 [ 800.906055] __x64_sys_mount+0x27e/0x300 [ 800.906487] ? path_mount+0x2080/0x2080 [ 800.906918] ? rcu_read_lock_sched_held+0x3a/0x70 [ 800.907438] do_syscall_64+0x33/0x40 [ 800.907846] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 800.908396] RIP: 0033:0x466609 [ 800.908739] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 800.910747] RSP: 002b:00007fd61fccc188 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5 [ 800.911547] RAX: ffffffffffffffda RBX: 000000000056bf80 RCX: 0000000000466609 [ 800.912375] RDX: 00000000200000c0 RSI: 0000000020000000 RDI: 0000000000000000 [ 800.913214] RBP: 00007fd61fccc1d0 R08: 00000000200004c0 R09: 0000000000000000 [ 800.914033] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 800.914854] R13: 00007fff09eaa3cf R14: 00007fd61fccc300 R15: 0000000000022000 [ 800.969215] FAULT_INJECTION: forcing a failure. [ 800.969215] name failslab, interval 1, probability 0, space 0, times 0 [ 800.970623] CPU: 0 PID: 7673 Comm: syz-executor.4 Not tainted 5.10.56 #1 [ 800.971385] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS rel-1.14.0-0-g155821a1990b-prebuilt.qemu.org 04/01/2014 [ 800.972741] Call Trace: [ 800.973059] dump_stack+0x107/0x163 [ 800.973477] should_fail.cold+0x5/0xa [ 800.973905] ? create_object.isra.0+0x3a/0xa20 [ 800.974437] should_failslab+0x5/0x10 [ 800.974880] kmem_cache_alloc+0x5b/0x350 [ 800.975343] create_object.isra.0+0x3a/0xa20 [ 800.975856] ? __kasan_kmalloc.constprop.0+0xc2/0xd0 [ 800.976440] kmem_cache_alloc_trace+0x151/0x360 [ 800.976980] legacy_init_fs_context+0x44/0xe0 [ 800.977503] ? generic_parse_monolithic+0x1f0/0x1f0 [ 800.978064] alloc_fs_context+0x4f8/0x840 [ 800.978545] path_mount+0xa4e/0x2080 [ 800.978980] ? strncpy_from_user+0x9e/0x460 [ 800.979482] ? finish_automount+0xa40/0xa40 [ 800.979960] ? getname_flags.part.0+0x1dd/0x4f0 [ 800.980502] ? _copy_from_user+0xfb/0x1b0 [ 800.980996] __x64_sys_mount+0x27e/0x300 [ 800.981466] ? path_mount+0x2080/0x2080 [ 800.981930] ? rcu_read_lock_sched_held+0x3a/0x70 [ 800.982496] do_syscall_64+0x33/0x40 [ 800.982928] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 800.983516] RIP: 0033:0x466609 [ 800.983881] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 800.986012] RSP: 002b:00007f33d7a83188 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5 [ 800.986889] RAX: ffffffffffffffda RBX: 000000000056bf80 RCX: 0000000000466609 [ 800.987732] RDX: 00000000200000c0 RSI: 0000000020000000 RDI: 0000000000000000 [ 800.988511] RBP: 00007f33d7a831d0 R08: 00000000200004c0 R09: 0000000000000000 [ 800.989333] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 800.990171] R13: 00007ffecc2507ff R14: 00007f33d7a83300 R15: 0000000000022000 10:22:02 executing program 0: r0 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x46e2, 0x0) r1 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffd000/0x3000)=nil, 0x3000, 0x0, 0x13, r0, 0x0) syz_io_uring_setup(0x4b9f, &(0x7f0000000140), &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000ffd000/0x3000)=nil, &(0x7f00000000c0), &(0x7f00000001c0)=0x0) syz_io_uring_setup(0x4d4f, &(0x7f0000000080), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=0x0, &(0x7f0000000140)=0x0) r5 = syz_io_uring_setup(0x1, &(0x7f0000000080), &(0x7f0000ffd000/0x2000)=nil, &(0x7f0000ffc000/0x2000)=nil, &(0x7f0000000100), &(0x7f0000000140)) r6 = io_uring_register$IORING_REGISTER_PERSONALITY(r5, 0x9, 0x0, 0x0) syz_io_uring_submit(r3, r4, &(0x7f0000000380)=@IORING_OP_PROVIDE_BUFFERS={0x1f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, {0x0, r6}}, 0x101) syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_READ_FIXED={0x4, 0x3, 0x0, @fd_index=0xa, 0x5, 0x6, 0x9, 0x19, 0x0, {0x0, r6}}, 0x10000) syz_io_uring_submit(r1, r2, &(0x7f0000000240)=@IORING_OP_FADVISE={0x18, 0x0, 0x0, @fd, 0x2}, 0x0) sigaltstack(&(0x7f0000ffd000/0x1000)=nil, 0x0) 10:22:02 executing program 6: perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) openat$ptmx(0xffffffffffffff9c, &(0x7f0000000040), 0x2, 0x0) write$binfmt_aout(0xffffffffffffffff, &(0x7f0000000640), 0x20) 10:22:02 executing program 3: perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000040), 0x2, 0x0) write$binfmt_aout(r0, 0x0, 0x0) read(r0, &(0x7f0000000100)=""/146, 0x92) 10:22:02 executing program 7: perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000040), 0x2, 0x0) write$binfmt_aout(0xffffffffffffffff, &(0x7f0000000640), 0x20) read(r0, &(0x7f0000000100)=""/146, 0x92) 10:22:02 executing program 5 (fault-call:3 fault-nth:44): r0 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x46e2, 0x0) r1 = dup2(r0, r0) r2 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000040), 0x2, 0x0) mount$9p_fd(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f00000000c0), 0x0, &(0x7f00000004c0)={'trans=fd,', {'rfdno', 0x3d, r1}, 0x2c, {'wfdno', 0x3d, r2}}) 10:22:02 executing program 4 (fault-call:3 fault-nth:13): r0 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x46e2, 0x0) r1 = dup2(r0, r0) r2 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000040), 0x2, 0x0) mount$9p_fd(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f00000000c0), 0x0, &(0x7f00000004c0)={'trans=fd,', {'rfdno', 0x3d, r1}, 0x2c, {'wfdno', 0x3d, r2}}) 10:22:02 executing program 2: perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r0 = syz_open_procfs(0xffffffffffffffff, &(0x7f00000000c0)='comm\x00') ioctl$EVIOCGPHYS(r0, 0x80404507, &(0x7f0000000100)=""/110) read$snapshot(r0, &(0x7f0000000240)=""/255, 0xff) 10:22:02 executing program 1 (fault-call:3 fault-nth:32): r0 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x46e2, 0x0) r1 = dup2(r0, r0) r2 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000040), 0x2, 0x0) mount$9p_fd(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f00000000c0), 0x0, &(0x7f00000004c0)={'trans=fd,', {'rfdno', 0x3d, r1}, 0x2c, {'wfdno', 0x3d, r2}}) [ 812.930542] FAULT_INJECTION: forcing a failure. [ 812.930542] name failslab, interval 1, probability 0, space 0, times 0 [ 812.931719] CPU: 1 PID: 7688 Comm: syz-executor.5 Not tainted 5.10.56 #1 [ 812.932434] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS rel-1.14.0-0-g155821a1990b-prebuilt.qemu.org 04/01/2014 [ 812.933585] Call Trace: [ 812.933856] dump_stack+0x107/0x163 [ 812.934224] should_fail.cold+0x5/0xa [ 812.934640] ? create_object.isra.0+0x3a/0xa20 [ 812.935101] should_failslab+0x5/0x10 [ 812.935508] kmem_cache_alloc+0x5b/0x350 [ 812.935937] create_object.isra.0+0x3a/0xa20 [ 812.936375] ? __kasan_kmalloc.constprop.0+0xc2/0xd0 [ 812.936912] kmem_cache_alloc+0x159/0x350 [ 812.937340] radix_tree_node_alloc.constprop.0+0x1df/0x300 [ 812.937926] idr_get_free+0x4b5/0x8f0 [ 812.938318] idr_alloc_u32+0x170/0x2d0 [ 812.938715] ? __fprop_inc_percpu_max+0x120/0x120 [ 812.939227] ? p9_client_prepare_req.part.0+0x206/0xb30 [ 812.939687] FAULT_INJECTION: forcing a failure. [ 812.939687] name failslab, interval 1, probability 0, space 0, times 0 [ 812.939767] ? lock_release+0x6b0/0x6b0 [ 812.939788] idr_alloc+0xc2/0x130 [ 812.943089] ? idr_alloc_u32+0x2d0/0x2d0 [ 812.943548] ? rwlock_bug.part.0+0x90/0x90 [ 812.944047] p9_client_prepare_req.part.0+0x621/0xb30 [ 812.944653] p9_client_rpc+0x21c/0x1200 [ 812.945106] ? p9_client_prepare_req.part.0+0xb30/0xb30 [ 812.945705] ? n_tty_ioctl+0x370/0x370 [ 812.946122] ? ldsem_up_read+0x40/0x80 [ 812.946560] ? n_tty_ioctl+0x370/0x370 [ 812.946996] ? tty_poll+0x159/0x1c0 [ 812.947401] ? tty_release+0xe90/0xe90 [ 812.947869] ? p9_fd_poll+0x1e0/0x2c0 [ 812.948312] ? p9_fd_create+0x2eb/0x420 [ 812.948781] ? p9_conn_create+0x500/0x500 [ 812.949239] ? kfree+0xca/0x360 [ 812.949616] p9_client_create+0xa72/0x1090 [ 812.950100] ? p9_client_flush+0x430/0x430 [ 812.950580] ? lockdep_init_map_waits+0x26a/0x700 [ 812.951150] ? __raw_spin_lock_init+0x34/0x100 [ 812.951671] v9fs_session_init+0x1dd/0x1690 [ 812.952177] ? kmem_cache_alloc_trace+0x151/0x360 [ 812.952720] ? v9fs_show_options+0x690/0x690 [ 812.953247] ? kasan_unpoison_shadow+0x33/0x40 [ 812.953766] ? __kasan_kmalloc.constprop.0+0xc2/0xd0 [ 812.954361] v9fs_mount+0x79/0x8f0 [ 812.954767] ? v9fs_write_inode+0x60/0x60 [ 812.955234] legacy_get_tree+0x105/0x220 [ 812.955695] vfs_get_tree+0x8e/0x2f0 [ 812.956117] path_mount+0x139a/0x2080 [ 812.956566] ? strncpy_from_user+0x9e/0x460 [ 812.957050] ? finish_automount+0xa40/0xa40 [ 812.957565] ? getname_flags.part.0+0x1dd/0x4f0 [ 812.958090] ? _copy_from_user+0xfb/0x1b0 [ 812.958587] __x64_sys_mount+0x27e/0x300 [ 812.959042] ? path_mount+0x2080/0x2080 [ 812.959492] ? rcu_read_lock_sched_held+0x3a/0x70 [ 812.960042] do_syscall_64+0x33/0x40 [ 812.960455] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 812.961027] RIP: 0033:0x466609 [ 812.961377] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 812.963383] RSP: 002b:00007fd61fccc188 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5 [ 812.964256] RAX: ffffffffffffffda RBX: 000000000056bf80 RCX: 0000000000466609 [ 812.965018] RDX: 00000000200000c0 RSI: 0000000020000000 RDI: 0000000000000000 [ 812.965809] RBP: 00007fd61fccc1d0 R08: 00000000200004c0 R09: 0000000000000000 [ 812.966607] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 812.967394] R13: 00007fff09eaa3cf R14: 00007fd61fccc300 R15: 0000000000022000 [ 812.968219] CPU: 0 PID: 7692 Comm: syz-executor.4 Not tainted 5.10.56 #1 [ 812.969622] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS rel-1.14.0-0-g155821a1990b-prebuilt.qemu.org 04/01/2014 [ 812.971937] Call Trace: [ 812.972484] dump_stack+0x107/0x163 [ 812.973233] should_fail.cold+0x5/0xa [ 812.974013] ? v9fs_mount+0x5a/0x8f0 [ 812.974778] should_failslab+0x5/0x10 [ 812.975555] kmem_cache_alloc_trace+0x55/0x360 [ 812.976500] ? v9fs_write_inode+0x60/0x60 [ 812.977342] v9fs_mount+0x5a/0x8f0 [ 812.978072] ? v9fs_write_inode+0x60/0x60 [ 812.978918] legacy_get_tree+0x105/0x220 [ 812.979752] vfs_get_tree+0x8e/0x2f0 [ 812.980515] path_mount+0x139a/0x2080 [ 812.981285] ? strncpy_from_user+0x9e/0x460 [ 812.982154] ? finish_automount+0xa40/0xa40 [ 812.983036] ? getname_flags.part.0+0x1dd/0x4f0 [ 812.983992] ? _copy_from_user+0xfb/0x1b0 [ 812.984834] __x64_sys_mount+0x27e/0x300 [ 812.985654] ? path_mount+0x2080/0x2080 [ 812.986463] ? rcu_read_lock_sched_held+0x3a/0x70 [ 812.987468] do_syscall_64+0x33/0x40 [ 812.988226] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 812.989251] RIP: 0033:0x466609 [ 812.989899] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 812.993588] RSP: 002b:00007f33d7a83188 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5 [ 812.995114] RAX: ffffffffffffffda RBX: 000000000056bf80 RCX: 0000000000466609 [ 812.996763] RDX: 00000000200000c0 RSI: 0000000020000000 RDI: 0000000000000000 [ 812.998426] RBP: 00007f33d7a831d0 R08: 00000000200004c0 R09: 0000000000000000 [ 813.000104] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 813.001775] R13: 00007ffecc2507ff R14: 00007f33d7a83300 R15: 0000000000022000 10:22:02 executing program 6: perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) openat$ptmx(0xffffffffffffff9c, &(0x7f0000000040), 0x2, 0x0) write$binfmt_aout(0xffffffffffffffff, &(0x7f0000000640), 0x20) [ 813.021239] FAULT_INJECTION: forcing a failure. [ 813.021239] name failslab, interval 1, probability 0, space 0, times 0 [ 813.024016] CPU: 0 PID: 7687 Comm: syz-executor.1 Not tainted 5.10.56 #1 [ 813.025612] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS rel-1.14.0-0-g155821a1990b-prebuilt.qemu.org 04/01/2014 [ 813.028274] Call Trace: [ 813.028889] dump_stack+0x107/0x163 [ 813.029738] should_fail.cold+0x5/0xa [ 813.030634] ? create_object.isra.0+0x3a/0xa20 [ 813.031696] should_failslab+0x5/0x10 [ 813.032586] kmem_cache_alloc+0x5b/0x350 [ 813.033525] ? p9_fd_show_options+0x1c0/0x1c0 [ 813.034568] create_object.isra.0+0x3a/0xa20 [ 813.035583] ? __kasan_kmalloc.constprop.0+0xc2/0xd0 [ 813.036781] kmem_cache_alloc_trace+0x151/0x360 [ 813.037864] p9_fd_create+0x161/0x420 [ 813.038743] ? p9_conn_create+0x500/0x500 [ 813.039704] ? kfree+0xca/0x360 [ 813.040491] p9_client_create+0x7fb/0x1090 [ 813.041485] ? p9_client_flush+0x430/0x430 [ 813.042469] ? lockdep_init_map_waits+0x26a/0x700 [ 813.043579] ? __raw_spin_lock_init+0x34/0x100 [ 813.044644] v9fs_session_init+0x1dd/0x1690 10:22:02 executing program 6: perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000040), 0x2, 0x0) write$binfmt_aout(r0, 0x0, 0x0) [ 813.045648] ? kmem_cache_alloc_trace+0x151/0x360 [ 813.046943] ? v9fs_show_options+0x690/0x690 [ 813.047982] ? kasan_unpoison_shadow+0x33/0x40 [ 813.049027] ? __kasan_kmalloc.constprop.0+0xc2/0xd0 [ 813.050193] v9fs_mount+0x79/0x8f0 [ 813.051013] ? v9fs_write_inode+0x60/0x60 [ 813.051971] legacy_get_tree+0x105/0x220 [ 813.052910] vfs_get_tree+0x8e/0x2f0 [ 813.053764] path_mount+0x139a/0x2080 [ 813.054645] ? strncpy_from_user+0x9e/0x460 [ 813.055638] ? finish_automount+0xa40/0xa40 [ 813.056647] ? getname_flags.part.0+0x1dd/0x4f0 [ 813.057702] ? _copy_from_user+0xfb/0x1b0 [ 813.058658] __x64_sys_mount+0x27e/0x300 [ 813.059578] ? path_mount+0x2080/0x2080 [ 813.060498] ? rcu_read_lock_sched_held+0x3a/0x70 [ 813.061600] do_syscall_64+0x33/0x40 [ 813.062444] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 813.063603] RIP: 0033:0x466609 [ 813.064344] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 813.068532] RSP: 002b:00007fdc84e63188 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5 [ 813.070268] RAX: ffffffffffffffda RBX: 000000000056bf80 RCX: 0000000000466609 [ 813.071898] RDX: 00000000200000c0 RSI: 0000000020000000 RDI: 0000000000000000 [ 813.073497] RBP: 00007fdc84e631d0 R08: 00000000200004c0 R09: 0000000000000000 [ 813.075093] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 813.076725] R13: 00007ffc7c6b7e8f R14: 00007fdc84e63300 R15: 0000000000022000 10:22:02 executing program 5 (fault-call:3 fault-nth:45): r0 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x46e2, 0x0) r1 = dup2(r0, r0) r2 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000040), 0x2, 0x0) mount$9p_fd(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f00000000c0), 0x0, &(0x7f00000004c0)={'trans=fd,', {'rfdno', 0x3d, r1}, 0x2c, {'wfdno', 0x3d, r2}}) 10:22:02 executing program 2: r0 = add_key$fscrypt_provisioning(&(0x7f0000000040), &(0x7f00000000c0)={'syz', 0x3}, &(0x7f0000000100)=ANY=[@ANYBLOB="01000000f7ffffff2f18"], 0xa, 0xfffffffffffffff8) r1 = add_key(&(0x7f0000000180)='trusted\x00', &(0x7f00000001c0)={'syz', 0x2}, 0x0, 0x0, 0xfffffffffffffffd) keyctl$negate(0xd, r0, 0x1, r1) perf_event_open(&(0x7f0000001d80)={0x2, 0x80, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r2 = syz_mount_image$tmpfs(&(0x7f0000000000), &(0x7f0000000080)='./file0\x00', 0x0, 0x0, 0x0, 0x0, &(0x7f0000000600)=ANY=[]) add_key$keyring(&(0x7f0000000380), &(0x7f00000003c0)={'syz', 0x1}, 0x0, 0x0, 0x0) mknodat$loop(r2, &(0x7f0000000300)='./file0\x00', 0x1000, 0x0) r3 = openat(r2, &(0x7f0000000140)='./file0\x00', 0x60002, 0xe) r4 = request_key(&(0x7f0000000200)='ceph\x00', &(0x7f0000000240)={'syz', 0x1}, &(0x7f0000000280)='trusted\x00', r1) r5 = add_key$keyring(&(0x7f00000002c0), &(0x7f0000000300)={'syz', 0x0}, 0x0, 0x0, 0xfffffffffffffffd) r6 = gettid() rt_sigqueueinfo(r6, 0x400001, &(0x7f00000000c0)) perf_event_open(&(0x7f00000005c0)={0x0, 0x80, 0x0, 0x0, 0x40, 0x0, 0x0, 0xb54a, 0x42030, 0x7, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x1, 0x1, 0x1, 0x0, 0x0, 0x1, 0x0, 0x1, 0x0, 0x0, 0x0, 0x1, 0x1, 0x1, 0x1, 0x0, 0x1, 0x0, 0x1, 0x1, 0x1, 0x1, 0x1, 0x0, 0x8, 0x4, @perf_config_ext={0x5, 0x7}, 0x4202, 0x6, 0x7, 0x6, 0xe8a, 0x5, 0x6, 0x0, 0x0, 0x0, 0x7ff}, r6, 0x3, r3, 0x0) r7 = add_key(&(0x7f0000000540)='.request_key_auth\x00', &(0x7f0000000580)={'syz', 0x2}, 0x0, 0x0, r4) r8 = add_key(&(0x7f0000000400)='trusted\x00', &(0x7f0000000440)={'syz', 0x2}, &(0x7f0000000480)="674252184a15aff801ae085a15a68a582a6a85ccd144052f72307332c5064e2139108cf90ff0dbb1db1a46de10460be08c0a454b06efa66d7a31baf0d752038e26ebe7c79c1ac70eaba1ecc18b8f2bcaa3b5b16f43eda31ce29eb60c8cb9323c97accc6f1ce093a546a43e9d450dbf9667240675e7228770653a3c750005c849118cdde69b7d355bc3d99f8d00dc7ed5fb9e22cf8f726b2a54e428bcddd035ea605d822f06feea333ad6380ce24f944f7b3bf0701fd4799273", 0xb9, r7) r9 = add_key$keyring(&(0x7f00000002c0), &(0x7f0000000300)={'syz', 0x0}, 0x0, 0x0, 0xfffffffffffffffd) add_key(&(0x7f00000000c0)='dns_resolver\x00', &(0x7f0000000100)={'syz', 0x2}, &(0x7f0000000340)="a407c3efc1edfab7037255db440500824001767ee5522ccc6b4a4c358e2f414cae835269010f99ea715085731fa8ad0600", 0xfffff, r9) keyctl$KEYCTL_MOVE(0x1e, 0x0, r8, r9, 0x0) add_key(&(0x7f00000000c0)='dns_resolver\x00', &(0x7f0000000100)={'syz', 0x2}, &(0x7f0000000340)="a407c3efc1edfab7037255db440500824001767ee5522ccc6b4a4c358e2f414cae835269010f99ea715085731fa8ad0600", 0xfffff, r5) keyctl$KEYCTL_MOVE(0x1e, r0, r4, r5, 0x1) 10:22:02 executing program 6: perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000040), 0x2, 0x0) write$binfmt_aout(r0, 0x0, 0x0) [ 813.163151] tmpfs: Unknown parameter '' 10:22:03 executing program 0: r0 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x486aa3, 0xd6) r1 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffd000/0x3000)=nil, 0x3000, 0x0, 0x13, r0, 0x0) syz_io_uring_setup(0x4b9f, &(0x7f0000000140)={0x0, 0x0, 0x0, 0x0, 0xffffffff}, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000ffd000/0x3000)=nil, &(0x7f00000000c0), &(0x7f00000001c0)=0x0) syz_io_uring_submit(r1, r2, &(0x7f0000000240)=@IORING_OP_FADVISE={0x18, 0x0, 0x0, @fd, 0x2}, 0x0) sigaltstack(&(0x7f0000ffd000/0x1000)=nil, 0x0) 10:22:03 executing program 6: perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000040), 0x2, 0x0) write$binfmt_aout(r0, 0x0, 0x0) [ 813.199339] FAULT_INJECTION: forcing a failure. [ 813.199339] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 813.201943] CPU: 0 PID: 7722 Comm: syz-executor.5 Not tainted 5.10.56 #1 [ 813.203329] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS rel-1.14.0-0-g155821a1990b-prebuilt.qemu.org 04/01/2014 [ 813.205668] Call Trace: [ 813.206229] dump_stack+0x107/0x163 [ 813.206983] should_fail.cold+0x5/0xa [ 813.207780] _copy_to_user+0x2e/0x180 [ 813.208583] simple_read_from_buffer+0xcc/0x160 [ 813.209536] proc_fail_nth_read+0x194/0x220 [ 813.210419] ? proc_sessionid_read+0x220/0x220 [ 813.211352] ? security_file_permission+0x24e/0x570 [ 813.212392] ? proc_sessionid_read+0x220/0x220 [ 813.213321] vfs_read+0x228/0x580 [ 813.214035] ksys_read+0x12d/0x250 [ 813.214757] ? __ia32_sys_pwrite64+0x230/0x230 [ 813.215696] ? rcu_read_lock_sched_held+0x3a/0x70 [ 813.216693] do_syscall_64+0x33/0x40 [ 813.217455] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 813.218496] RIP: 0033:0x41935c [ 813.219150] Code: ec 28 48 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 f9 fc ff ff 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 31 c0 0f 05 <48> 3d 00 f0 ff ff 77 34 44 89 c7 48 89 44 24 08 e8 2f fd ff ff 48 [ 813.222882] RSP: 002b:00007fd61fccc170 EFLAGS: 00000246 ORIG_RAX: 0000000000000000 [ 813.224429] RAX: ffffffffffffffda RBX: ffffffffffffffff RCX: 000000000041935c [ 813.225867] RDX: 000000000000000f RSI: 00007fd61fccc1e0 RDI: 0000000000000005 [ 813.227307] RBP: 00007fd61fccc1d0 R08: 0000000000000000 R09: 0000000000000000 [ 813.228757] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 813.230197] R13: 00007fff09eaa3cf R14: 00007fd61fccc300 R15: 0000000000022000 10:22:03 executing program 1 (fault-call:3 fault-nth:33): r0 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x46e2, 0x0) r1 = dup2(r0, r0) r2 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000040), 0x2, 0x0) mount$9p_fd(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f00000000c0), 0x0, &(0x7f00000004c0)={'trans=fd,', {'rfdno', 0x3d, r1}, 0x2c, {'wfdno', 0x3d, r2}}) [ 813.263138] FAULT_INJECTION: forcing a failure. [ 813.263138] name failslab, interval 1, probability 0, space 0, times 0 [ 813.266218] CPU: 0 PID: 7728 Comm: syz-executor.1 Not tainted 5.10.56 #1 [ 813.267953] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS rel-1.14.0-0-g155821a1990b-prebuilt.qemu.org 04/01/2014 [ 813.270605] Call Trace: [ 813.271193] dump_stack+0x107/0x163 [ 813.272031] should_fail.cold+0x5/0xa [ 813.272873] ? p9_client_prepare_req.part.0+0x3a/0xb30 [ 813.274046] should_failslab+0x5/0x10 [ 813.274865] kmem_cache_alloc+0x5b/0x350 [ 813.275772] p9_client_prepare_req.part.0+0x3a/0xb30 [ 813.276928] p9_client_rpc+0x21c/0x1200 [ 813.277816] ? p9_client_prepare_req.part.0+0xb30/0xb30 [ 813.278995] ? n_tty_ioctl+0x370/0x370 [ 813.279880] ? ldsem_up_read+0x40/0x80 [ 813.280733] ? n_tty_ioctl+0x370/0x370 [ 813.281577] ? tty_poll+0x159/0x1c0 [ 813.282358] ? tty_release+0xe90/0xe90 [ 813.283216] ? p9_fd_poll+0x1e0/0x2c0 [ 813.284082] ? p9_fd_create+0x2eb/0x420 [ 813.284947] ? p9_conn_create+0x500/0x500 [ 813.285843] ? kfree+0xca/0x360 [ 813.286582] p9_client_create+0xa72/0x1090 [ 813.287514] ? p9_client_flush+0x430/0x430 [ 813.288462] ? lockdep_init_map_waits+0x26a/0x700 [ 813.289522] ? __raw_spin_lock_init+0x34/0x100 [ 813.290545] v9fs_session_init+0x1dd/0x1690 [ 813.291518] ? kmem_cache_alloc_trace+0x151/0x360 [ 813.292572] ? v9fs_show_options+0x690/0x690 [ 813.293561] ? kasan_unpoison_shadow+0x33/0x40 [ 813.294546] ? __kasan_kmalloc.constprop.0+0xc2/0xd0 [ 813.295652] v9fs_mount+0x79/0x8f0 [ 813.296425] ? v9fs_write_inode+0x60/0x60 [ 813.297324] legacy_get_tree+0x105/0x220 [ 813.298212] vfs_get_tree+0x8e/0x2f0 [ 813.299015] path_mount+0x139a/0x2080 [ 813.299869] ? strncpy_from_user+0x9e/0x460 [ 813.300806] ? finish_automount+0xa40/0xa40 [ 813.301741] ? getname_flags.part.0+0x1dd/0x4f0 [ 813.302742] ? _copy_from_user+0xfb/0x1b0 [ 813.303646] __x64_sys_mount+0x27e/0x300 [ 813.304524] ? path_mount+0x2080/0x2080 [ 813.305382] ? rcu_read_lock_sched_held+0x3a/0x70 [ 813.306419] do_syscall_64+0x33/0x40 [ 813.307220] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 813.308321] RIP: 0033:0x466609 [ 813.309013] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 813.312952] RSP: 002b:00007fdc84e63188 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5 [ 813.314589] RAX: ffffffffffffffda RBX: 000000000056bf80 RCX: 0000000000466609 [ 813.316116] RDX: 00000000200000c0 RSI: 0000000020000000 RDI: 0000000000000000 [ 813.317632] RBP: 00007fdc84e631d0 R08: 00000000200004c0 R09: 0000000000000000 [ 813.319151] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 813.320683] R13: 00007ffc7c6b7e8f R14: 00007fdc84e63300 R15: 0000000000022000 10:22:15 executing program 7: perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000040), 0x2, 0x0) write$binfmt_aout(r0, 0x0, 0x0) read(r0, &(0x7f0000000100)=""/146, 0x92) 10:22:15 executing program 3: perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000040), 0x2, 0x0) write$binfmt_aout(r0, 0x0, 0x0) read(r0, &(0x7f0000000100)=""/146, 0x92) 10:22:15 executing program 0: r0 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x46e2, 0x0) r1 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffd000/0x3000)=nil, 0x3000, 0x0, 0x13, r0, 0x0) r2 = fcntl$dupfd(r0, 0x406, r0) syz_io_uring_setup(0x4b9f, &(0x7f0000000140)={0x0, 0x0, 0x0, 0x0, 0x1, 0x0, r2}, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000ffd000/0x3000)=nil, &(0x7f00000000c0), &(0x7f00000001c0)=0x0) syz_io_uring_submit(r1, r3, &(0x7f0000000240)=@IORING_OP_FADVISE={0x18, 0x0, 0x0, @fd, 0x2}, 0x0) sigaltstack(&(0x7f0000ffd000/0x1000)=nil, 0x0) 10:22:15 executing program 6 (fault-call:2 fault-nth:0): perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000040), 0x2, 0x0) write$binfmt_aout(r0, &(0x7f0000000640), 0x20) 10:22:15 executing program 4 (fault-call:3 fault-nth:14): r0 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x46e2, 0x0) r1 = dup2(r0, r0) r2 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000040), 0x2, 0x0) mount$9p_fd(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f00000000c0), 0x0, &(0x7f00000004c0)={'trans=fd,', {'rfdno', 0x3d, r1}, 0x2c, {'wfdno', 0x3d, r2}}) 10:22:15 executing program 5: r0 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x46e2, 0x0) r1 = dup2(r0, r0) r2 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000040), 0x2, 0x0) mount$9p_fd(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f00000000c0), 0x0, &(0x7f00000004c0)={'trans=fd,', {'rfdno', 0x3d, r1}, 0x2c, {'wfdno', 0x3d, r2}}) 10:22:15 executing program 1 (fault-call:3 fault-nth:34): r0 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x46e2, 0x0) r1 = dup2(r0, r0) r2 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000040), 0x2, 0x0) mount$9p_fd(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f00000000c0), 0x0, &(0x7f00000004c0)={'trans=fd,', {'rfdno', 0x3d, r1}, 0x2c, {'wfdno', 0x3d, r2}}) [ 825.908165] FAULT_INJECTION: forcing a failure. [ 825.908165] name failslab, interval 1, probability 0, space 0, times 0 [ 825.910704] CPU: 1 PID: 7747 Comm: syz-executor.4 Not tainted 5.10.56 #1 [ 825.912196] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS rel-1.14.0-0-g155821a1990b-prebuilt.qemu.org 04/01/2014 [ 825.914640] Call Trace: [ 825.915213] dump_stack+0x107/0x163 [ 825.916007] should_fail.cold+0x5/0xa [ 825.916857] ? create_object.isra.0+0x3a/0xa20 [ 825.917862] should_failslab+0x5/0x10 [ 825.918714] kmem_cache_alloc+0x5b/0x350 [ 825.919586] ? cred_has_capability.isra.0+0x14e/0x2b0 [ 825.920779] create_object.isra.0+0x3a/0xa20 [ 825.921739] ? __kasan_kmalloc.constprop.0+0xc2/0xd0 [ 825.922851] kmem_cache_alloc_trace+0x151/0x360 [ 825.923872] ? v9fs_write_inode+0x60/0x60 [ 825.924794] v9fs_mount+0x5a/0x8f0 [ 825.925615] ? v9fs_write_inode+0x60/0x60 [ 825.926525] legacy_get_tree+0x105/0x220 [ 825.927421] vfs_get_tree+0x8e/0x2f0 [ 825.928266] path_mount+0x139a/0x2080 [ 825.929101] ? strncpy_from_user+0x9e/0x460 [ 825.930047] ? finish_automount+0xa40/0xa40 [ 825.930997] ? getname_flags.part.0+0x1dd/0x4f0 [ 825.932011] ? _copy_from_user+0xfb/0x1b0 [ 825.932943] __x64_sys_mount+0x27e/0x300 [ 825.933831] ? path_mount+0x2080/0x2080 [ 825.934708] ? rcu_read_lock_sched_held+0x3a/0x70 [ 825.935765] do_syscall_64+0x33/0x40 [ 825.936595] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 825.937259] FAULT_INJECTION: forcing a failure. [ 825.937259] name failslab, interval 1, probability 0, space 0, times 0 [ 825.937708] RIP: 0033:0x466609 [ 825.937730] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 825.937741] RSP: 002b:00007f33d7a83188 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5 [ 825.937761] RAX: ffffffffffffffda RBX: 000000000056bf80 RCX: 0000000000466609 [ 825.937772] RDX: 00000000200000c0 RSI: 0000000020000000 RDI: 0000000000000000 [ 825.937783] RBP: 00007f33d7a831d0 R08: 00000000200004c0 R09: 0000000000000000 [ 825.937794] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 825.937805] R13: 00007ffecc2507ff R14: 00007f33d7a83300 R15: 0000000000022000 [ 825.939811] FAULT_INJECTION: forcing a failure. [ 825.939811] name failslab, interval 1, probability 0, space 0, times 0 [ 825.941158] CPU: 0 PID: 7749 Comm: syz-executor.6 Not tainted 5.10.56 #1 [ 825.963401] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS rel-1.14.0-0-g155821a1990b-prebuilt.qemu.org 04/01/2014 [ 825.966531] Call Trace: [ 825.967285] dump_stack+0x107/0x163 [ 825.968334] should_fail.cold+0x5/0xa [ 825.969399] ? file_tty_write.constprop.0+0x64b/0x8d0 [ 825.970842] should_failslab+0x5/0x10 [ 825.971898] __kmalloc+0x72/0x3e0 [ 825.972880] ? mutex_trylock+0x233/0x2a0 [ 825.973997] ? file_tty_write.constprop.0+0x29d/0x8d0 [ 825.975453] file_tty_write.constprop.0+0x64b/0x8d0 [ 825.976858] ? n_tty_receive_char_lnext+0x6f0/0x6f0 [ 825.978295] new_sync_write+0x42c/0x660 [ 825.979418] ? new_sync_read+0x6f0/0x6f0 [ 825.980568] ? _cond_resched+0x12/0x80 [ 825.981672] ? avc_policy_seqno+0x9/0x70 [ 825.982802] ? selinux_file_permission+0x36/0x510 [ 825.984262] vfs_write+0x743/0xa20 [ 825.985285] ksys_write+0x12d/0x250 [ 825.986310] ? __ia32_sys_read+0xb0/0xb0 [ 825.987463] ? rcu_read_lock_sched_held+0x3a/0x70 [ 825.988878] do_syscall_64+0x33/0x40 [ 825.989917] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 825.991335] RIP: 0033:0x466609 [ 825.992244] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 825.997310] RSP: 002b:00007f4dcb0c5188 EFLAGS: 00000246 ORIG_RAX: 0000000000000001 [ 825.999421] RAX: ffffffffffffffda RBX: 000000000056bf80 RCX: 0000000000466609 [ 826.001406] RDX: 0000000000000020 RSI: 0000000020000640 RDI: 0000000000000004 [ 826.003386] RBP: 00007f4dcb0c51d0 R08: 0000000000000000 R09: 0000000000000000 [ 826.005374] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 826.007345] R13: 00007ffff1ba1e4f R14: 00007f4dcb0c5300 R15: 0000000000022000 [ 826.009431] CPU: 1 PID: 7746 Comm: syz-executor.1 Not tainted 5.10.56 #1 [ 826.010927] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS rel-1.14.0-0-g155821a1990b-prebuilt.qemu.org 04/01/2014 [ 826.013409] Call Trace: [ 826.013981] dump_stack+0x107/0x163 [ 826.014785] should_fail.cold+0x5/0xa [ 826.015624] ? create_object.isra.0+0x3a/0xa20 [ 826.016626] should_failslab+0x5/0x10 [ 826.017453] kmem_cache_alloc+0x5b/0x350 [ 826.018334] ? add_wait_queue+0x46/0x140 [ 826.019224] create_object.isra.0+0x3a/0xa20 [ 826.020199] ? __kasan_kmalloc.constprop.0+0xc2/0xd0 [ 826.021309] kmem_cache_alloc+0x159/0x350 [ 826.022225] p9_client_prepare_req.part.0+0x3a/0xb30 [ 826.023340] p9_client_rpc+0x21c/0x1200 [ 826.024232] ? p9_client_prepare_req.part.0+0xb30/0xb30 [ 826.025391] ? n_tty_ioctl+0x370/0x370 [ 826.026238] ? ldsem_up_read+0x40/0x80 [ 826.027066] ? n_tty_ioctl+0x370/0x370 [ 826.027902] ? tty_poll+0x159/0x1c0 [ 826.028708] ? tty_release+0xe90/0xe90 [ 826.029550] ? p9_fd_poll+0x1e0/0x2c0 [ 826.030382] ? p9_fd_create+0x2eb/0x420 [ 826.031231] ? p9_conn_create+0x500/0x500 [ 826.032121] ? kfree+0xca/0x360 [ 826.032845] p9_client_create+0xa72/0x1090 [ 826.033771] ? p9_client_flush+0x430/0x430 [ 826.034699] ? lockdep_init_map_waits+0x26a/0x700 [ 826.035741] ? __raw_spin_lock_init+0x34/0x100 [ 826.036763] v9fs_session_init+0x1dd/0x1690 [ 826.037711] ? kmem_cache_alloc_trace+0x151/0x360 [ 826.038753] ? v9fs_show_options+0x690/0x690 [ 826.039723] ? kasan_unpoison_shadow+0x33/0x40 [ 826.040726] ? __kasan_kmalloc.constprop.0+0xc2/0xd0 [ 826.041823] v9fs_mount+0x79/0x8f0 [ 826.042597] ? v9fs_write_inode+0x60/0x60 [ 826.043500] legacy_get_tree+0x105/0x220 [ 826.044402] vfs_get_tree+0x8e/0x2f0 [ 826.045213] path_mount+0x139a/0x2080 [ 826.046039] ? strncpy_from_user+0x9e/0x460 [ 826.046974] ? finish_automount+0xa40/0xa40 [ 826.047908] ? getname_flags.part.0+0x1dd/0x4f0 [ 826.048935] ? _copy_from_user+0xfb/0x1b0 [ 826.049845] __x64_sys_mount+0x27e/0x300 [ 826.050727] ? path_mount+0x2080/0x2080 [ 826.051595] ? rcu_read_lock_sched_held+0x3a/0x70 [ 826.052672] do_syscall_64+0x33/0x40 [ 826.053479] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 826.054585] RIP: 0033:0x466609 [ 826.055283] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 826.059264] RSP: 002b:00007fdc84e63188 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5 [ 826.060913] RAX: ffffffffffffffda RBX: 000000000056bf80 RCX: 0000000000466609 [ 826.062460] RDX: 00000000200000c0 RSI: 0000000020000000 RDI: 0000000000000000 [ 826.063990] RBP: 00007fdc84e631d0 R08: 00000000200004c0 R09: 0000000000000000 [ 826.065551] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 826.067076] R13: 00007ffc7c6b7e8f R14: 00007fdc84e63300 R15: 0000000000022000 10:22:15 executing program 0: r0 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x46e2, 0x0) r1 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffd000/0x3000)=nil, 0x3000, 0x0, 0x13, r0, 0x0) r2 = syz_io_uring_setup(0x4b9f, &(0x7f0000000140)={0x0, 0xd792, 0x1, 0x0, 0x1}, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000ffd000/0x3000)=nil, &(0x7f00000000c0), &(0x7f0000000100)=0x0) r4 = pidfd_getfd(r0, r2, 0x0) openat(r4, &(0x7f0000000000)='./file0\x00', 0x10001, 0x4) syz_io_uring_submit(r1, r3, &(0x7f0000000240)=@IORING_OP_FADVISE={0x18, 0x0, 0x0, @fd, 0x2}, 0x0) sigaltstack(&(0x7f0000ffd000/0x1000)=nil, 0x0) 10:22:15 executing program 5: r0 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x46e2, 0x0) r1 = dup2(r0, r0) r2 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000040), 0x2, 0x0) mount$9p_fd(0x2, &(0x7f0000000000)='./file0\x00', &(0x7f00000000c0), 0x0, &(0x7f00000004c0)={'trans=fd,', {'rfdno', 0x3d, r1}, 0x2c, {'wfdno', 0x3d, r2}}) 10:22:15 executing program 1 (fault-call:3 fault-nth:35): r0 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x46e2, 0x0) r1 = dup2(r0, r0) r2 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000040), 0x2, 0x0) mount$9p_fd(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f00000000c0), 0x0, &(0x7f00000004c0)={'trans=fd,', {'rfdno', 0x3d, r1}, 0x2c, {'wfdno', 0x3d, r2}}) 10:22:15 executing program 5: r0 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x46e2, 0x0) r1 = dup2(r0, r0) r2 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000040), 0x2, 0x0) mount$9p_fd(0xf0, &(0x7f0000000000)='./file0\x00', &(0x7f00000000c0), 0x0, &(0x7f00000004c0)={'trans=fd,', {'rfdno', 0x3d, r1}, 0x2c, {'wfdno', 0x3d, r2}}) 10:22:16 executing program 4 (fault-call:3 fault-nth:15): r0 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x46e2, 0x0) r1 = dup2(r0, r0) r2 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000040), 0x2, 0x0) mount$9p_fd(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f00000000c0), 0x0, &(0x7f00000004c0)={'trans=fd,', {'rfdno', 0x3d, r1}, 0x2c, {'wfdno', 0x3d, r2}}) 10:22:16 executing program 0: r0 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x46e2, 0x0) r1 = openat$zero(0xffffffffffffff9c, &(0x7f0000000080), 0xa0000, 0x0) openat(r1, &(0x7f0000000100)='./file0\x00', 0x60000, 0x40) creat(&(0x7f0000000200)='./file0\x00', 0x2) r2 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffd000/0x3000)=nil, 0x3000, 0x0, 0x13, r0, 0x0) syz_io_uring_setup(0x4b9f, &(0x7f0000000140), &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000ffd000/0x3000)=nil, &(0x7f00000000c0), &(0x7f00000001c0)=0x0) open(&(0x7f0000000000)='./file0\x00', 0x200002, 0x100) syz_io_uring_submit(r2, r3, &(0x7f0000000240)=@IORING_OP_FADVISE={0x18, 0x0, 0x0, @fd, 0x2}, 0x0) sigaltstack(&(0x7f0000ffd000/0x1000)=nil, 0x0) 10:22:16 executing program 5: r0 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x46e2, 0x0) r1 = dup2(r0, r0) r2 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000040), 0x2, 0x0) mount$9p_fd(0x228, &(0x7f0000000000)='./file0\x00', &(0x7f00000000c0), 0x0, &(0x7f00000004c0)={'trans=fd,', {'rfdno', 0x3d, r1}, 0x2c, {'wfdno', 0x3d, r2}}) [ 826.243325] FAULT_INJECTION: forcing a failure. [ 826.243325] name failslab, interval 1, probability 0, space 0, times 0 [ 826.244695] CPU: 0 PID: 7775 Comm: syz-executor.1 Not tainted 5.10.56 #1 [ 826.245461] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS rel-1.14.0-0-g155821a1990b-prebuilt.qemu.org 04/01/2014 [ 826.246749] Call Trace: [ 826.247043] dump_stack+0x107/0x163 [ 826.247474] should_fail.cold+0x5/0xa [ 826.247915] ? p9_fcall_init+0x97/0x210 [ 826.248392] should_failslab+0x5/0x10 [ 826.248828] __kmalloc+0x72/0x3e0 [ 826.249237] p9_fcall_init+0x97/0x210 [ 826.249670] p9_client_prepare_req.part.0+0x8c/0xb30 [ 826.250270] p9_client_rpc+0x21c/0x1200 [ 826.250731] ? p9_client_prepare_req.part.0+0xb30/0xb30 [ 826.251344] ? n_tty_ioctl+0x370/0x370 [ 826.251786] ? ldsem_up_read+0x40/0x80 [ 826.252248] ? n_tty_ioctl+0x370/0x370 [ 826.252690] ? tty_poll+0x159/0x1c0 [ 826.253096] ? tty_release+0xe90/0xe90 [ 826.253544] ? p9_fd_poll+0x1e0/0x2c0 [ 826.253982] ? p9_fd_create+0x2eb/0x420 [ 826.254439] ? p9_conn_create+0x500/0x500 [ 826.254909] ? kfree+0xca/0x360 [ 826.255295] p9_client_create+0xa72/0x1090 [ 826.255783] ? p9_client_flush+0x430/0x430 [ 826.256291] ? lockdep_init_map_waits+0x26a/0x700 [ 826.256840] ? __raw_spin_lock_init+0x34/0x100 [ 826.257364] v9fs_session_init+0x1dd/0x1690 [ 826.257858] ? kmem_cache_alloc_trace+0x151/0x360 [ 826.258419] ? v9fs_show_options+0x690/0x690 [ 826.258926] ? kasan_unpoison_shadow+0x33/0x40 [ 826.259444] ? __kasan_kmalloc.constprop.0+0xc2/0xd0 [ 826.260014] v9fs_mount+0x79/0x8f0 [ 826.260440] ? v9fs_write_inode+0x60/0x60 [ 826.260906] legacy_get_tree+0x105/0x220 [ 826.261370] vfs_get_tree+0x8e/0x2f0 [ 826.261786] path_mount+0x139a/0x2080 [ 826.262228] ? strncpy_from_user+0x9e/0x460 [ 826.262712] ? finish_automount+0xa40/0xa40 [ 826.263208] ? getname_flags.part.0+0x1dd/0x4f0 [ 826.263728] ? _copy_from_user+0xfb/0x1b0 [ 826.264229] __x64_sys_mount+0x27e/0x300 [ 826.264693] ? path_mount+0x2080/0x2080 [ 826.265149] ? rcu_read_lock_sched_held+0x3a/0x70 [ 826.265708] do_syscall_64+0x33/0x40 [ 826.266130] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 826.266721] RIP: 0033:0x466609 [ 826.267088] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 826.269210] RSP: 002b:00007fdc84e63188 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5 [ 826.270070] RAX: ffffffffffffffda RBX: 000000000056bf80 RCX: 0000000000466609 [ 826.270876] RDX: 00000000200000c0 RSI: 0000000020000000 RDI: 0000000000000000 [ 826.271684] RBP: 00007fdc84e631d0 R08: 00000000200004c0 R09: 0000000000000000 [ 826.272514] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 826.273336] R13: 00007ffc7c6b7e8f R14: 00007fdc84e63300 R15: 0000000000022000 10:22:16 executing program 6 (fault-call:2 fault-nth:1): perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000040), 0x2, 0x0) write$binfmt_aout(r0, &(0x7f0000000640), 0x20) [ 826.308480] FAULT_INJECTION: forcing a failure. [ 826.308480] name failslab, interval 1, probability 0, space 0, times 0 [ 826.309764] CPU: 0 PID: 7779 Comm: syz-executor.4 Not tainted 5.10.56 #1 [ 826.310509] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS rel-1.14.0-0-g155821a1990b-prebuilt.qemu.org 04/01/2014 [ 826.311785] Call Trace: [ 826.312093] dump_stack+0x107/0x163 [ 826.312509] should_fail.cold+0x5/0xa [ 826.312943] should_failslab+0x5/0x10 [ 826.313380] __kmalloc_track_caller+0x79/0x3c0 [ 826.313903] ? v9fs_session_init+0xa7/0x1690 [ 826.314409] ? kernel_text_address+0xea/0x120 [ 826.314931] kstrdup+0x36/0x70 [ 826.315281] v9fs_session_init+0xa7/0x1690 [ 826.315741] ? find_held_lock+0x2c/0x110 [ 826.316195] ? kmem_cache_alloc_trace+0x151/0x360 [ 826.316715] ? v9fs_show_options+0x690/0x690 [ 826.317198] ? kasan_unpoison_shadow+0x33/0x40 [ 826.317702] ? __kasan_kmalloc.constprop.0+0xc2/0xd0 [ 826.318247] v9fs_mount+0x79/0x8f0 [ 826.318642] ? v9fs_write_inode+0x60/0x60 [ 826.319096] legacy_get_tree+0x105/0x220 [ 826.319536] vfs_get_tree+0x8e/0x2f0 [ 826.319941] path_mount+0x139a/0x2080 [ 826.320365] ? strncpy_from_user+0x9e/0x460 [ 826.320828] ? finish_automount+0xa40/0xa40 [ 826.321292] ? getname_flags.part.0+0x1dd/0x4f0 [ 826.321805] ? _copy_from_user+0xfb/0x1b0 [ 826.322256] __x64_sys_mount+0x27e/0x300 [ 826.322702] ? path_mount+0x2080/0x2080 [ 826.323131] ? rcu_read_lock_sched_held+0x3a/0x70 [ 826.323672] do_syscall_64+0x33/0x40 [ 826.324069] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 826.324628] RIP: 0033:0x466609 [ 826.324982] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 826.326945] RSP: 002b:00007f33d7a83188 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5 [ 826.327760] RAX: ffffffffffffffda RBX: 000000000056bf80 RCX: 0000000000466609 [ 826.328539] RDX: 00000000200000c0 RSI: 0000000020000000 RDI: 0000000000000000 [ 826.329305] RBP: 00007f33d7a831d0 R08: 00000000200004c0 R09: 0000000000000000 [ 826.330073] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 826.330832] R13: 00007ffecc2507ff R14: 00007f33d7a83300 R15: 0000000000022000 [ 826.354932] FAULT_INJECTION: forcing a failure. [ 826.354932] name failslab, interval 1, probability 0, space 0, times 0 [ 826.356295] CPU: 0 PID: 7790 Comm: syz-executor.6 Not tainted 5.10.56 #1 [ 826.357020] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS rel-1.14.0-0-g155821a1990b-prebuilt.qemu.org 04/01/2014 [ 826.358228] Call Trace: [ 826.358520] dump_stack+0x107/0x163 [ 826.358918] should_fail.cold+0x5/0xa [ 826.359335] ? create_object.isra.0+0x3a/0xa20 [ 826.359837] should_failslab+0x5/0x10 [ 826.360273] kmem_cache_alloc+0x5b/0x350 [ 826.360714] create_object.isra.0+0x3a/0xa20 [ 826.361179] ? __kasan_kmalloc.constprop.0+0xc2/0xd0 [ 826.361757] __kmalloc+0x16e/0x3e0 [ 826.362141] ? mutex_trylock+0x233/0x2a0 [ 826.362608] file_tty_write.constprop.0+0x64b/0x8d0 [ 826.363161] ? n_tty_receive_char_lnext+0x6f0/0x6f0 [ 826.363733] new_sync_write+0x42c/0x660 [ 826.364186] ? new_sync_read+0x6f0/0x6f0 [ 826.364643] ? irqentry_enter+0x26/0x50 [ 826.365098] ? trace_hardirqs_on+0x5b/0x180 [ 826.365586] ? asm_sysvec_apic_timer_interrupt+0x12/0x20 [ 826.366212] vfs_write+0x743/0xa20 [ 826.366616] ksys_write+0x12d/0x250 [ 826.367017] ? __ia32_sys_read+0xb0/0xb0 [ 826.367483] ? rcu_read_lock_sched_held+0x3a/0x70 [ 826.368023] do_syscall_64+0x33/0x40 [ 826.368466] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 826.369047] RIP: 0033:0x466609 [ 826.369405] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 826.371447] RSP: 002b:00007f4dcb0c5188 EFLAGS: 00000246 ORIG_RAX: 0000000000000001 [ 826.372310] RAX: ffffffffffffffda RBX: 000000000056bf80 RCX: 0000000000466609 [ 826.373111] RDX: 0000000000000020 RSI: 0000000020000640 RDI: 0000000000000004 [ 826.373909] RBP: 00007f4dcb0c51d0 R08: 0000000000000000 R09: 0000000000000000 [ 826.374705] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 826.375502] R13: 00007ffff1ba1e4f R14: 00007f4dcb0c5300 R15: 0000000000022000 10:22:16 executing program 5: r0 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x46e2, 0x0) r1 = dup2(r0, r0) r2 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000040), 0x2, 0x0) mount$9p_fd(0x2802, &(0x7f0000000000)='./file0\x00', &(0x7f00000000c0), 0x0, &(0x7f00000004c0)={'trans=fd,', {'rfdno', 0x3d, r1}, 0x2c, {'wfdno', 0x3d, r2}}) 10:22:27 executing program 4 (fault-call:3 fault-nth:16): r0 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x46e2, 0x0) r1 = dup2(r0, r0) r2 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000040), 0x2, 0x0) mount$9p_fd(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f00000000c0), 0x0, &(0x7f00000004c0)={'trans=fd,', {'rfdno', 0x3d, r1}, 0x2c, {'wfdno', 0x3d, r2}}) 10:22:27 executing program 7: perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000040), 0x2, 0x0) write$binfmt_aout(r0, 0x0, 0x0) read(r0, &(0x7f0000000100)=""/146, 0x92) 10:22:27 executing program 0: r0 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x46e2, 0x0) r1 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffd000/0x3000)=nil, 0x3000, 0x0, 0x13, r0, 0x0) ioctl$BTRFS_IOC_BALANCE_PROGRESS(r0, 0x84009422, &(0x7f0000000280)) syz_io_uring_setup(0x4b9f, &(0x7f0000000140), &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000ffd000/0x3000)=nil, &(0x7f00000000c0), &(0x7f00000001c0)=0x0) syz_io_uring_submit(r1, r2, &(0x7f0000000240)=@IORING_OP_FADVISE={0x18, 0x0, 0x0, @fd, 0x2}, 0x0) sigaltstack(&(0x7f0000ffd000/0x1000)=nil, 0x0) 10:22:27 executing program 5: r0 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x46e2, 0x0) r1 = dup2(r0, r0) r2 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000040), 0x2, 0x0) mount$9p_fd(0x4000, &(0x7f0000000000)='./file0\x00', &(0x7f00000000c0), 0x0, &(0x7f00000004c0)={'trans=fd,', {'rfdno', 0x3d, r1}, 0x2c, {'wfdno', 0x3d, r2}}) 10:22:27 executing program 6 (fault-call:2 fault-nth:2): perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000040), 0x2, 0x0) write$binfmt_aout(r0, &(0x7f0000000640), 0x20) 10:22:27 executing program 1 (fault-call:3 fault-nth:36): r0 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x46e2, 0x0) r1 = dup2(r0, r0) r2 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000040), 0x2, 0x0) mount$9p_fd(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f00000000c0), 0x0, &(0x7f00000004c0)={'trans=fd,', {'rfdno', 0x3d, r1}, 0x2c, {'wfdno', 0x3d, r2}}) 10:22:27 executing program 2: r0 = openat$full(0xffffffffffffff9c, 0x0, 0x0, 0x0) r1 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000040), 0x2, 0x0) write$binfmt_aout(r1, &(0x7f0000000640), 0x20) read(r1, &(0x7f0000000100)=""/146, 0x92) r2 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000040), 0x2, 0x0) ioctl$BTRFS_IOC_GET_SUBVOL_INFO(0xffffffffffffffff, 0x81f8943c, &(0x7f0000001300)={0x0, ""/256, 0x0, 0x0}) ioctl$BTRFS_IOC_GET_SUBVOL_ROOTREF(0xffffffffffffffff, 0xd000943d, &(0x7f000007d440)={0x9, [{}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {0x0, r3}], 0x0, "46dacd8396fe92"}) ioctl$BTRFS_IOC_INO_LOOKUP_USER(r0, 0xd000943e, &(0x7f000004b040)={0x0, 0x0, "81de2b6f6acf55940f8b8aeb09a54e8a05eb4843a7f15f2ff8fdfdbb82114febc7ba810d3016ea8be2bbb9057f4cc4b1e4fa689cd2c74f18d67f1e5df598765733c1b345bfea941f543928508b0195226bec5d692ea0b67e9b22e5a4417c1c6a79ee0aff334ccdafc00bcda7b92f8cd6caa83430f35abf4ac021834050c2bdbd5a87878e5ca1c4b19122c82b6ef47e85d4cdbdd42dbfdcaf4b6219f4bda75b942c031e0c05e96fe38379e023af2681de094f5fca27a9fe72e40b2dec48460e8b375f4778128aefcb62ffd3c7c1cb3cca64016bfaedd5a37489abd7dae0a6743ef1a3b6b1101651c463e3e59c10dc253146452ddda57d2d660e4adc2bae276a19", "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"}) ioctl$BTRFS_IOC_GET_SUBVOL_ROOTREF(0xffffffffffffffff, 0xd000943d, &(0x7f0000007640)={0x7, [{}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {0x0, 0x0}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {0x0}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {0x0, 0x0}], 0x4, "9755154351ac9a"}) ioctl$BTRFS_IOC_GET_SUBVOL_INFO(0xffffffffffffffff, 0x81f8943c, &(0x7f0000009640)={0x0, ""/256, 0x0}) ioctl$BTRFS_IOC_INO_LOOKUP_USER(0xffffffffffffffff, 0xd000943e, &(0x7f000000aa40)={0x0, 0x0, "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", "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"}) ioctl$BTRFS_IOC_GET_SUBVOL_INFO(0xffffffffffffffff, 0x81f8943c, &(0x7f0000001300)={0x0, ""/256, 0x0, 0x0}) ioctl$BTRFS_IOC_GET_SUBVOL_ROOTREF(0xffffffffffffffff, 0xd000943d, &(0x7f000007d440)={0x9, [{}, {}, {0x0, r7}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {r6}, {}, {}, {}, {r8}, {}, {}, {}, {}, {r9}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {0x0, r5}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {0x0, r10}], 0x0, "46dacd8396fe92"}) ioctl$BTRFS_IOC_GET_SUBVOL_ROOTREF(r1, 0xd000943d, &(0x7f000004c040)={0x719, [{}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {0x0, r4}, {}, {r8}], 0x8, "34fcba9b664ced"}) write$binfmt_aout(r2, &(0x7f0000000640), 0x20) read(r2, &(0x7f0000000100)=""/146, 0x92) dup3(r1, r2, 0x0) unshare(0x28020600) unshare(0x30000200) unshare(0x800) 10:22:27 executing program 3: perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000040), 0x2, 0x0) write$binfmt_aout(r0, 0x0, 0x0) read(r0, &(0x7f0000000100)=""/146, 0x92) [ 837.409174] FAULT_INJECTION: forcing a failure. [ 837.409174] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 837.410495] CPU: 0 PID: 7806 Comm: syz-executor.6 Not tainted 5.10.56 #1 [ 837.411222] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS rel-1.14.0-0-g155821a1990b-prebuilt.qemu.org 04/01/2014 [ 837.412447] Call Trace: [ 837.412748] dump_stack+0x107/0x163 [ 837.413145] should_fail.cold+0x5/0xa [ 837.413565] _copy_from_iter+0x202/0xd40 [ 837.414018] ? __check_object_size+0x319/0x440 [ 837.414522] file_tty_write.constprop.0+0x4a4/0x8d0 [ 837.415057] ? n_tty_receive_char_lnext+0x6f0/0x6f0 [ 837.415609] new_sync_write+0x42c/0x660 [ 837.416039] ? new_sync_read+0x6f0/0x6f0 [ 837.416495] ? _cond_resched+0x12/0x80 [ 837.416924] ? avc_policy_seqno+0x9/0x70 [ 837.417362] ? selinux_file_permission+0x36/0x510 [ 837.417928] FAULT_INJECTION: forcing a failure. [ 837.417928] name failslab, interval 1, probability 0, space 0, times 0 [ 837.417935] vfs_write+0x743/0xa20 [ 837.417955] ksys_write+0x12d/0x250 [ 837.421418] ? __ia32_sys_read+0xb0/0xb0 [ 837.421891] ? rcu_read_lock_sched_held+0x3a/0x70 [ 837.422472] do_syscall_64+0x33/0x40 [ 837.422893] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 837.423471] RIP: 0033:0x466609 [ 837.423834] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 837.425912] RSP: 002b:00007f4dcb0c5188 EFLAGS: 00000246 ORIG_RAX: 0000000000000001 [ 837.426784] RAX: ffffffffffffffda RBX: 000000000056bf80 RCX: 0000000000466609 [ 837.427594] RDX: 0000000000000020 RSI: 0000000020000640 RDI: 0000000000000004 [ 837.428431] RBP: 00007f4dcb0c51d0 R08: 0000000000000000 R09: 0000000000000000 [ 837.429253] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 837.430067] R13: 00007ffff1ba1e4f R14: 00007f4dcb0c5300 R15: 0000000000022000 [ 837.430937] CPU: 1 PID: 7810 Comm: syz-executor.1 Not tainted 5.10.56 #1 [ 837.432589] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS rel-1.14.0-0-g155821a1990b-prebuilt.qemu.org 04/01/2014 [ 837.435121] Call Trace: [ 837.435694] dump_stack+0x107/0x163 [ 837.436495] should_fail.cold+0x5/0xa [ 837.437323] ? create_object.isra.0+0x3a/0xa20 [ 837.438316] should_failslab+0x5/0x10 [ 837.439139] kmem_cache_alloc+0x5b/0x350 [ 837.440028] create_object.isra.0+0x3a/0xa20 [ 837.440977] ? __kasan_kmalloc.constprop.0+0xc2/0xd0 [ 837.442066] __kmalloc+0x16e/0x3e0 [ 837.442788] FAULT_INJECTION: forcing a failure. [ 837.442788] name failslab, interval 1, probability 0, space 0, times 0 [ 837.442840] p9_fcall_init+0x97/0x210 [ 837.444877] p9_client_prepare_req.part.0+0x8c/0xb30 [ 837.445979] p9_client_rpc+0x21c/0x1200 [ 837.446849] ? p9_client_prepare_req.part.0+0xb30/0xb30 [ 837.447997] ? n_tty_ioctl+0x370/0x370 [ 837.448846] ? ldsem_up_read+0x40/0x80 [ 837.449679] ? n_tty_ioctl+0x370/0x370 [ 837.450513] ? tty_poll+0x159/0x1c0 [ 837.451293] ? tty_release+0xe90/0xe90 [ 837.452133] ? p9_fd_poll+0x1e0/0x2c0 [ 837.452976] ? p9_fd_create+0x2eb/0x420 [ 837.453829] ? p9_conn_create+0x500/0x500 [ 837.454722] ? kfree+0xca/0x360 [ 837.455443] p9_client_create+0xa72/0x1090 [ 837.456411] ? p9_client_flush+0x430/0x430 [ 837.457340] ? lockdep_init_map_waits+0x26a/0x700 [ 837.458421] ? __raw_spin_lock_init+0x34/0x100 [ 837.459416] v9fs_session_init+0x1dd/0x1690 [ 837.460410] ? kmem_cache_alloc_trace+0x151/0x360 [ 837.461449] ? v9fs_show_options+0x690/0x690 [ 837.462419] ? kasan_unpoison_shadow+0x33/0x40 [ 837.463407] ? __kasan_kmalloc.constprop.0+0xc2/0xd0 [ 837.464530] v9fs_mount+0x79/0x8f0 [ 837.465302] ? v9fs_write_inode+0x60/0x60 [ 837.466197] legacy_get_tree+0x105/0x220 [ 837.467078] vfs_get_tree+0x8e/0x2f0 [ 837.467886] path_mount+0x139a/0x2080 [ 837.468721] ? strncpy_from_user+0x9e/0x460 [ 837.469654] ? finish_automount+0xa40/0xa40 [ 837.470588] ? getname_flags.part.0+0x1dd/0x4f0 [ 837.471595] ? _copy_from_user+0xfb/0x1b0 [ 837.472521] __x64_sys_mount+0x27e/0x300 [ 837.473399] ? path_mount+0x2080/0x2080 [ 837.474266] ? rcu_read_lock_sched_held+0x3a/0x70 [ 837.475311] do_syscall_64+0x33/0x40 [ 837.476118] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 837.477276] RIP: 0033:0x466609 [ 837.477977] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 837.482113] RSP: 002b:00007fdc84e63188 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5 [ 837.483757] RAX: ffffffffffffffda RBX: 000000000056bf80 RCX: 0000000000466609 [ 837.485372] RDX: 00000000200000c0 RSI: 0000000020000000 RDI: 0000000000000000 [ 837.486913] RBP: 00007fdc84e631d0 R08: 00000000200004c0 R09: 0000000000000000 [ 837.488479] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 837.490021] R13: 00007ffc7c6b7e8f R14: 00007fdc84e63300 R15: 0000000000022000 [ 837.491593] CPU: 0 PID: 7809 Comm: syz-executor.4 Not tainted 5.10.56 #1 [ 837.492359] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS rel-1.14.0-0-g155821a1990b-prebuilt.qemu.org 04/01/2014 [ 837.493614] Call Trace: [ 837.493895] dump_stack+0x107/0x163 [ 837.494295] should_fail.cold+0x5/0xa [ 837.494709] ? create_object.isra.0+0x3a/0xa20 [ 837.495213] should_failslab+0x5/0x10 [ 837.495629] kmem_cache_alloc+0x5b/0x350 [ 837.496077] create_object.isra.0+0x3a/0xa20 [ 837.496564] ? __kasan_kmalloc.constprop.0+0xc2/0xd0 [ 837.497125] __kmalloc_track_caller+0x177/0x3c0 [ 837.497636] ? v9fs_session_init+0xa7/0x1690 [ 837.498121] kstrdup+0x36/0x70 [ 837.498464] v9fs_session_init+0xa7/0x1690 [ 837.498928] ? find_held_lock+0x2c/0x110 [ 837.499375] ? kmem_cache_alloc_trace+0x151/0x360 [ 837.499904] ? v9fs_show_options+0x690/0x690 [ 837.500403] ? kasan_unpoison_shadow+0x33/0x40 [ 837.500904] ? __kasan_kmalloc.constprop.0+0xc2/0xd0 [ 837.501465] v9fs_mount+0x79/0x8f0 [ 837.501857] ? v9fs_write_inode+0x60/0x60 [ 837.502313] legacy_get_tree+0x105/0x220 [ 837.502763] vfs_get_tree+0x8e/0x2f0 [ 837.503159] path_mount+0x139a/0x2080 [ 837.503585] ? strncpy_from_user+0x9e/0x460 [ 837.504059] ? finish_automount+0xa40/0xa40 [ 837.504534] ? getname_flags.part.0+0x1dd/0x4f0 [ 837.505045] ? _copy_from_user+0xfb/0x1b0 [ 837.505508] __x64_sys_mount+0x27e/0x300 [ 837.505958] ? path_mount+0x2080/0x2080 [ 837.506400] ? rcu_read_lock_sched_held+0x3a/0x70 [ 837.506935] do_syscall_64+0x33/0x40 [ 837.507348] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 837.507916] RIP: 0033:0x466609 [ 837.508260] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 837.510294] RSP: 002b:00007f33d7a83188 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5 [ 837.511101] RAX: ffffffffffffffda RBX: 000000000056bf80 RCX: 0000000000466609 [ 837.511885] RDX: 00000000200000c0 RSI: 0000000020000000 RDI: 0000000000000000 [ 837.512690] RBP: 00007f33d7a831d0 R08: 00000000200004c0 R09: 0000000000000000 [ 837.513473] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 837.514268] R13: 00007ffecc2507ff R14: 00007f33d7a83300 R15: 0000000000022000 10:22:27 executing program 5: r0 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x46e2, 0x0) r1 = dup2(r0, r0) r2 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000040), 0x2, 0x0) mount$9p_fd(0xf000, &(0x7f0000000000)='./file0\x00', &(0x7f00000000c0), 0x0, &(0x7f00000004c0)={'trans=fd,', {'rfdno', 0x3d, r1}, 0x2c, {'wfdno', 0x3d, r2}}) 10:22:27 executing program 0: openat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x46e2, 0x0) r0 = socket$netlink(0x10, 0x3, 0x0) r1 = fcntl$dupfd(r0, 0x0, r0) getsockopt$netlink(r1, 0x10e, 0x0, 0x0, 0xfffffffffffffffe) r2 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x3, 0x11, r1, 0x0) syz_io_uring_setup(0x6d4e, &(0x7f0000000140)={0x0, 0x2, 0x20, 0x1}, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f00000000c0), &(0x7f00000001c0)=0x0) syz_io_uring_submit(r2, r3, &(0x7f0000000240)=@IORING_OP_FADVISE={0x18, 0x0, 0x0, @fd, 0x2}, 0x0) lremovexattr(&(0x7f0000000000)='./file0\x00', &(0x7f0000000080)=@known='system.sockprotoname\x00') setxattr$trusted_overlay_nlink(&(0x7f0000000100)='\x00', &(0x7f0000000200), &(0x7f0000000280)={'U-', 0xc9}, 0x16, 0x3) sigaltstack(&(0x7f0000ffa000/0x6000)=nil, 0x0) clock_gettime(0x0, &(0x7f0000000300)={0x0, 0x0}) utimes(&(0x7f00000002c0)='./file0\x00', &(0x7f0000000340)={{r4, r5/1000+60000}, {0x0, 0xea60}}) 10:22:27 executing program 4 (fault-call:3 fault-nth:17): r0 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x46e2, 0x0) r1 = dup2(r0, r0) r2 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000040), 0x2, 0x0) mount$9p_fd(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f00000000c0), 0x0, &(0x7f00000004c0)={'trans=fd,', {'rfdno', 0x3d, r1}, 0x2c, {'wfdno', 0x3d, r2}}) 10:22:27 executing program 2: r0 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x46e2, 0x0) r1 = dup2(r0, r0) r2 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000040), 0x2, 0x0) mount$9p_fd(0xf0, &(0x7f0000000000)='./file0\x00', &(0x7f00000000c0), 0x0, &(0x7f00000004c0)={'trans=fd,', {'rfdno', 0x3d, r1}, 0x2c, {'wfdno', 0x3d, r2}}) 10:22:27 executing program 6 (fault-call:2 fault-nth:3): perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000040), 0x2, 0x0) write$binfmt_aout(r0, &(0x7f0000000640), 0x20) [ 837.635194] FAULT_INJECTION: forcing a failure. [ 837.635194] name failslab, interval 1, probability 0, space 0, times 0 [ 837.640054] CPU: 1 PID: 7831 Comm: syz-executor.6 Not tainted 5.10.56 #1 [ 837.641559] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS rel-1.14.0-0-g155821a1990b-prebuilt.qemu.org 04/01/2014 [ 837.644110] Call Trace: [ 837.644690] dump_stack+0x107/0x163 [ 837.645514] should_fail.cold+0x5/0xa [ 837.646341] ? tty_buffer_alloc+0x23f/0x2a0 [ 837.647257] should_failslab+0x5/0x10 [ 837.648088] __kmalloc+0x72/0x3e0 [ 837.648860] tty_buffer_alloc+0x23f/0x2a0 [ 837.649760] __tty_buffer_request_room+0x156/0x2a0 [ 837.650801] tty_insert_flip_string_fixed_flag+0x91/0x250 [ 837.652006] pty_write+0x126/0x1f0 [ 837.652776] n_tty_write+0xa44/0xf90 [ 837.653607] ? n_tty_receive_char_lnext+0x6f0/0x6f0 [ 837.654690] ? prepare_to_wait_exclusive+0x2a0/0x2a0 [ 837.655798] ? __check_object_size+0x319/0x440 [ 837.656819] file_tty_write.constprop.0+0x4f8/0x8d0 [ 837.657900] ? n_tty_receive_char_lnext+0x6f0/0x6f0 [ 837.658987] new_sync_write+0x42c/0x660 [ 837.659850] ? new_sync_read+0x6f0/0x6f0 [ 837.660746] ? _cond_resched+0x12/0x80 [ 837.661610] ? avc_policy_seqno+0x9/0x70 [ 837.662482] ? selinux_file_permission+0x36/0x510 [ 837.663583] vfs_write+0x743/0xa20 [ 837.664438] ksys_write+0x12d/0x250 [ 837.665233] ? __ia32_sys_read+0xb0/0xb0 [ 837.666123] ? rcu_read_lock_sched_held+0x3a/0x70 [ 837.667149] do_syscall_64+0x33/0x40 [ 837.667941] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 837.669062] RIP: 0033:0x466609 [ 837.669761] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 837.673739] RSP: 002b:00007f4dcb0c5188 EFLAGS: 00000246 ORIG_RAX: 0000000000000001 [ 837.675389] RAX: ffffffffffffffda RBX: 000000000056bf80 RCX: 0000000000466609 [ 837.676940] RDX: 0000000000000020 RSI: 0000000020000640 RDI: 0000000000000004 [ 837.678478] RBP: 00007f4dcb0c51d0 R08: 0000000000000000 R09: 0000000000000000 [ 837.680024] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 837.681576] R13: 00007ffff1ba1e4f R14: 00007f4dcb0c5300 R15: 0000000000022000 [ 837.683180] [ 837.683188] ====================================================== [ 837.683195] WARNING: possible circular locking dependency detected [ 837.683199] 5.10.56 #1 Not tainted [ 837.683205] ------------------------------------------------------ [ 837.683211] syz-executor.6/7831 is trying to acquire lock: [ 837.683216] ffffffff84d0a8a0 (console_owner){-.-.}-{0:0}, at: console_unlock+0x2e1/0xb30 [ 837.683236] [ 837.683241] but task is already holding lock: [ 837.683245] ffff8880174ff958 (&port->lock){-.-.}-{2:2}, at: pty_write+0xf4/0x1f0 [ 837.683263] [ 837.683268] which lock already depends on the new lock. [ 837.683270] [ 837.683273] [ 837.683279] the existing dependency chain (in reverse order) is: [ 837.683282] [ 837.683285] -> #2 (&port->lock){-.-.}-{2:2}: [ 837.683303] _raw_spin_lock_irqsave+0x36/0x50 [ 837.683307] tty_port_tty_get+0x1f/0x100 [ 837.683312] tty_port_default_wakeup+0x11/0x40 [ 837.683317] serial8250_tx_chars+0x516/0xb40 [ 837.683322] serial8250_handle_irq.part.0+0x3f1/0x4c0 [ 837.683328] serial8250_default_handle_irq+0xb8/0x230 [ 837.683333] serial8250_interrupt+0xf4/0x1a0 [ 837.683338] __handle_irq_event_percpu+0x2ef/0x820 [ 837.683342] handle_irq_event+0x102/0x290 [ 837.683347] handle_edge_irq+0x249/0xd00 [ 837.683352] asm_call_irq_on_stack+0x12/0x20 [ 837.683357] common_interrupt+0xdd/0x190 [ 837.683362] asm_common_interrupt+0x1e/0x40 [ 837.683366] _raw_spin_unlock_irqrestore+0x25/0x40 [ 837.683371] uart_write+0x304/0x580 [ 837.683375] do_output_char+0x5e4/0x860 [ 837.683380] n_tty_write+0x487/0xf90 [ 837.683385] file_tty_write.constprop.0+0x4f8/0x8d0 [ 837.683390] redirected_tty_write+0xa1/0xc0 [ 837.683394] do_iter_readv_writev+0x476/0x750 [ 837.683399] do_iter_write+0x18d/0x670 [ 837.683403] vfs_writev+0x1aa/0x5e0 [ 837.683407] do_writev+0x139/0x300 [ 837.683411] do_syscall_64+0x33/0x40 [ 837.683417] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 837.683419] [ 837.683422] -> #1 (&port_lock_key){-.-.}-{2:2}: [ 837.683440] _raw_spin_lock_irqsave+0x36/0x50 [ 837.683446] serial8250_console_write+0x8dd/0xb20 [ 837.683450] console_unlock+0x826/0xb30 [ 837.683455] register_console+0x53d/0x800 [ 837.683460] univ8250_console_init+0x3a/0x46 [ 837.683464] console_init+0x361/0x4fa [ 837.683469] start_kernel+0x2f2/0x49b [ 837.683474] secondary_startup_64_no_verify+0xc2/0xcb [ 837.683476] [ 837.683479] -> #0 (console_owner){-.-.}-{0:0}: [ 837.683497] __lock_acquire+0x29f6/0x5b20 [ 837.683502] lock_acquire+0x197/0x490 [ 837.683507] console_unlock+0x360/0xb30 [ 837.683511] vprintk_emit+0x1da/0x4d0 [ 837.683515] vprintk_func+0x8b/0x140 [ 837.683519] printk+0xba/0xed [ 837.683523] should_fail+0x472/0x5a0 [ 837.683528] should_failslab+0x5/0x10 [ 837.683532] __kmalloc+0x72/0x3e0 [ 837.683537] tty_buffer_alloc+0x23f/0x2a0 [ 837.683542] __tty_buffer_request_room+0x156/0x2a0 [ 837.683547] tty_insert_flip_string_fixed_flag+0x91/0x250 [ 837.683552] pty_write+0x126/0x1f0 10:22:27 executing program 5: r0 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x46e2, 0x0) r1 = dup2(r0, r0) r2 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000040), 0x2, 0x0) mount$9p_fd(0xf0ffff, &(0x7f0000000000)='./file0\x00', &(0x7f00000000c0), 0x0, &(0x7f00000004c0)={'trans=fd,', {'rfdno', 0x3d, r1}, 0x2c, {'wfdno', 0x3d, r2}}) [ 837.683556] n_tty_write+0xa44/0xf90 [ 837.683561] file_tty_write.constprop.0+0x4f8/0x8d0 [ 837.683566] new_sync_write+0x42c/0x660 [ 837.683570] vfs_write+0x743/0xa20 [ 837.683574] ksys_write+0x12d/0x250 [ 837.683579] do_syscall_64+0x33/0x40 [ 837.683584] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 837.683587] [ 837.683591] other info that might help us debug this: [ 837.683594] [ 837.683597] Chain exists of: [ 837.683600] console_owner --> &port_lock_key --> &port->lock [ 837.683623] [ 837.683627] Possible unsafe locking scenario: [ 837.683630] [ 837.683634] CPU0 CPU1 [ 837.683639] ---- ---- [ 837.683642] lock(&port->lock); [ 837.683653] lock(&port_lock_key); [ 837.683665] lock(&port->lock); [ 837.683675] lock(console_owner); [ 837.683684] [ 837.683688] *** DEADLOCK *** [ 837.683690] [ 837.683695] 6 locks held by syz-executor.6/7831: [ 837.683698] #0: ffff888045366098 (&tty->ldisc_sem){++++}-{0:0}, at: tty_ldisc_ref_wait+0x22/0x80 [ 837.683720] #1: ffff888045366130 (&tty->atomic_write_lock){+.+.}-{3:3}, at: file_tty_write.constprop.0+0x29d/0x8d0 [ 837.683743] #2: ffff8880453662e8 (&tty->termios_rwsem){++++}-{3:3}, at: n_tty_write+0x1bf/0xf90 [ 837.683765] #3: ffffc9001275b378 (&ldata->output_lock){+.+.}-{3:3}, at: n_tty_write+0xa0b/0xf90 [ 837.683787] #4: ffff8880174ff958 (&port->lock){-.-.}-{2:2}, at: pty_write+0xf4/0x1f0 [ 837.683808] #5: ffffffff84deac20 (console_lock){+.+.}-{0:0}, at: vprintk_func+0x8b/0x140 [ 837.683829] [ 837.683833] stack backtrace: [ 837.683839] CPU: 1 PID: 7831 Comm: syz-executor.6 Not tainted 5.10.56 #1 [ 837.683848] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS rel-1.14.0-0-g155821a1990b-prebuilt.qemu.org 04/01/2014 [ 837.683851] Call Trace: [ 837.683856] dump_stack+0x107/0x163 [ 837.683860] check_noncircular+0x25f/0x2e0 [ 837.683865] ? stack_trace_consume_entry+0x160/0x160 [ 837.683869] ? print_circular_bug+0x470/0x470 [ 837.683873] ? memcpy+0x39/0x60 [ 837.683878] ? alloc_chain_hlocks+0x1ec/0x5a0 [ 837.683882] __lock_acquire+0x29f6/0x5b20 [ 837.683887] ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0 [ 837.683892] ? SOFTIRQ_verbose+0x10/0x10 [ 837.683896] ? __lockdep_reset_lock+0x180/0x180 [ 837.683900] lock_acquire+0x197/0x490 [ 837.683904] ? console_unlock+0x2e1/0xb30 [ 837.683909] ? lock_release+0x6b0/0x6b0 [ 837.683913] ? lock_downgrade+0x6d0/0x6d0 [ 837.683917] ? do_raw_spin_lock+0x121/0x260 [ 837.683922] ? rwlock_bug.part.0+0x90/0x90 [ 837.683926] console_unlock+0x360/0xb30 [ 837.683930] ? console_unlock+0x2e1/0xb30 [ 837.683934] ? devkmsg_read+0x720/0x720 [ 837.683938] ? lock_release+0x6b0/0x6b0 [ 837.683943] ? do_raw_spin_unlock+0x4f/0x210 [ 837.683947] ? vprintk_func+0x8b/0x140 [ 837.683951] vprintk_emit+0x1da/0x4d0 [ 837.683954] vprintk_func+0x8b/0x140 [ 837.683958] printk+0xba/0xed [ 837.683963] ? record_print_text.cold+0x16/0x16 [ 837.683968] ? perf_trace_run_bpf_submit+0xf5/0x190 [ 837.683972] ? ___ratelimit+0x21c/0x460 [ 837.683976] should_fail+0x472/0x5a0 [ 837.683980] ? tty_buffer_alloc+0x23f/0x2a0 [ 837.683984] should_failslab+0x5/0x10 [ 837.683988] __kmalloc+0x72/0x3e0 [ 837.683992] tty_buffer_alloc+0x23f/0x2a0 [ 837.683997] __tty_buffer_request_room+0x156/0x2a0 [ 837.684002] tty_insert_flip_string_fixed_flag+0x91/0x250 [ 837.684006] pty_write+0x126/0x1f0 [ 837.684010] n_tty_write+0xa44/0xf90 [ 837.684015] ? n_tty_receive_char_lnext+0x6f0/0x6f0 [ 837.684020] ? prepare_to_wait_exclusive+0x2a0/0x2a0 [ 837.684024] ? __check_object_size+0x319/0x440 [ 837.684029] file_tty_write.constprop.0+0x4f8/0x8d0 [ 837.684034] ? n_tty_receive_char_lnext+0x6f0/0x6f0 [ 837.684038] new_sync_write+0x42c/0x660 [ 837.684042] ? new_sync_read+0x6f0/0x6f0 [ 837.684046] ? _cond_resched+0x12/0x80 [ 837.684050] ? avc_policy_seqno+0x9/0x70 [ 837.684055] ? selinux_file_permission+0x36/0x510 [ 837.684059] vfs_write+0x743/0xa20 [ 837.684063] ksys_write+0x12d/0x250 [ 837.684067] ? __ia32_sys_read+0xb0/0xb0 [ 837.684072] ? rcu_read_lock_sched_held+0x3a/0x70 [ 837.684076] do_syscall_64+0x33/0x40 [ 837.684081] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 837.684085] RIP: 0033:0x466609 [ 837.684098] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 837.684103] RSP: 002b:00007f4dcb0c5188 EFLAGS: 00000246 ORIG_RAX: 0000000000000001 [ 837.684114] RAX: ffffffffffffffda RBX: 000000000056bf80 RCX: 0000000000466609 [ 837.684121] RDX: 0000000000000020 RSI: 0000000020000640 RDI: 0000000000000004 [ 837.684127] RBP: 00007f4dcb0c51d0 R08: 0000000000000000 R09: 0000000000000000 [ 837.684133] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 837.684140] R13: 00007ffff1ba1e4f R14: 00007f4dcb0c5300 R15: 0000000000022000 [ 837.762276] FAULT_INJECTION: forcing a failure. [ 837.762276] name failslab, interval 1, probability 0, space 0, times 0 [ 837.807755] CPU: 0 PID: 7834 Comm: syz-executor.4 Not tainted 5.10.56 #1 [ 837.808507] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS rel-1.14.0-0-g155821a1990b-prebuilt.qemu.org 04/01/2014 [ 837.809767] Call Trace: [ 837.810051] dump_stack+0x107/0x163 [ 837.810454] should_fail.cold+0x5/0xa [ 837.810865] should_failslab+0x5/0x10 [ 837.811300] __kmalloc_track_caller+0x79/0x3c0 [ 837.811798] ? v9fs_session_init+0xe9/0x1690 [ 837.812285] ? kernel_text_address+0xea/0x120 [ 837.812768] kstrdup+0x36/0x70 [ 837.813107] v9fs_session_init+0xe9/0x1690 [ 837.813570] ? lock_release+0x6b0/0x6b0 [ 837.813998] ? rcu_read_lock_sched_held+0xd/0x70 [ 837.814510] ? lock_release+0x4db/0x6b0 [ 837.814936] ? stack_trace_save+0x8c/0xc0 [ 837.815388] ? kmem_cache_alloc_trace+0x151/0x360 [ 837.815900] ? v9fs_show_options+0x690/0x690 [ 837.816408] ? trace_hardirqs_on+0x5b/0x180 [ 837.816874] ? kasan_unpoison_shadow+0x33/0x40 [ 837.817382] ? __kasan_kmalloc.constprop.0+0xc2/0xd0 [ 837.817934] v9fs_mount+0x79/0x8f0 [ 837.818319] ? v9fs_write_inode+0x60/0x60 [ 837.818769] legacy_get_tree+0x105/0x220 [ 837.819205] vfs_get_tree+0x8e/0x2f0 [ 837.819614] path_mount+0x139a/0x2080 [ 837.820019] ? strncpy_from_user+0x9e/0x460 [ 837.820493] ? finish_automount+0xa40/0xa40 [ 837.820955] ? getname_flags.part.0+0x1dd/0x4f0 [ 837.821450] ? _copy_from_user+0xfb/0x1b0 [ 837.821898] __x64_sys_mount+0x27e/0x300 [ 837.822328] ? path_mount+0x2080/0x2080 [ 837.822758] ? rcu_read_lock_sched_held+0xd/0x70 [ 837.823270] do_syscall_64+0x33/0x40 [ 837.823669] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 837.824215] RIP: 0033:0x466609 [ 837.824570] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 837.826562] RSP: 002b:00007f33d7a83188 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5 [ 837.827375] RAX: ffffffffffffffda RBX: 000000000056bf80 RCX: 0000000000466609 [ 837.828153] RDX: 00000000200000c0 RSI: 0000000020000000 RDI: 0000000000000000 [ 837.828937] RBP: 00007f33d7a831d0 R08: 00000000200004c0 R09: 0000000000000000 [ 837.829708] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 837.830473] R13: 00007ffecc2507ff R14: 00007f33d7a83300 R15: 0000000000022000 10:22:36 executing program 7: perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000040), 0x2, 0x0) write$binfmt_aout(r0, 0x0, 0x0) read(r0, &(0x7f0000000100)=""/146, 0x92) 10:22:36 executing program 6: perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000040), 0x2, 0x0) write$binfmt_aout(r0, &(0x7f0000000640), 0x20) 10:22:36 executing program 2: r0 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x46e2, 0x0) r1 = dup2(r0, r0) r2 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000040), 0x2, 0x0) mount$9p_fd(0xf0ffff, &(0x7f0000000000)='./file0\x00', &(0x7f00000000c0), 0x0, &(0x7f00000004c0)={'trans=fd,', {'rfdno', 0x3d, r1}, 0x2c, {'wfdno', 0x3d, r2}}) 10:22:36 executing program 1 (fault-call:3 fault-nth:37): r0 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x46e2, 0x0) r1 = dup2(r0, r0) r2 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000040), 0x2, 0x0) mount$9p_fd(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f00000000c0), 0x0, &(0x7f00000004c0)={'trans=fd,', {'rfdno', 0x3d, r1}, 0x2c, {'wfdno', 0x3d, r2}}) 10:22:36 executing program 4 (fault-call:3 fault-nth:18): r0 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x46e2, 0x0) r1 = dup2(r0, r0) r2 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000040), 0x2, 0x0) mount$9p_fd(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f00000000c0), 0x0, &(0x7f00000004c0)={'trans=fd,', {'rfdno', 0x3d, r1}, 0x2c, {'wfdno', 0x3d, r2}}) 10:22:36 executing program 0: r0 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x46e2, 0x0) r1 = socket$netlink(0x10, 0x3, 0x0) r2 = fcntl$dupfd(r1, 0x0, r1) getsockopt$netlink(r2, 0x10e, 0x0, 0x0, 0xfffffffffffffffe) r3 = socket$unix(0x1, 0x5, 0x0) ioctl$NS_GET_OWNER_UID(r0, 0xb704, &(0x7f0000000200)=0x0) mount$9p_fd(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000000080), 0x20, &(0x7f0000000300)={'trans=fd,', {'rfdno', 0x3d, r2}, 0x2c, {'wfdno', 0x3d, r3}, 0x2c, {[{@cache_mmap}, {@cache_loose}, {@access_user}], [{@rootcontext={'rootcontext', 0x3d, 'root'}}, {@measure}, {@measure}, {@smackfsfloor={'smackfsfloor', 0x3d, '*@\\]'}}, {@fowner_gt={'fowner>', r4}}]}}) r5 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffd000/0x3000)=nil, 0x3000, 0x0, 0x13, r0, 0x0) syz_io_uring_setup(0x4b9f, &(0x7f0000000140), &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000ffd000/0x3000)=nil, &(0x7f00000000c0), &(0x7f00000001c0)=0x0) syz_io_uring_submit(r5, r6, &(0x7f0000000240)=@IORING_OP_FADVISE={0x18, 0x0, 0x0, @fd, 0x2}, 0x0) sigaltstack(&(0x7f0000ffd000/0x1000)=nil, 0x0) 10:22:36 executing program 3: perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000040), 0x2, 0x0) write$binfmt_aout(r0, &(0x7f0000000640), 0x20) read(0xffffffffffffffff, &(0x7f0000000100)=""/146, 0x92) 10:22:36 executing program 5: r0 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x46e2, 0x0) r1 = dup2(r0, r0) r2 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000040), 0x2, 0x0) mount$9p_fd(0x1000000, &(0x7f0000000000)='./file0\x00', &(0x7f00000000c0), 0x0, &(0x7f00000004c0)={'trans=fd,', {'rfdno', 0x3d, r1}, 0x2c, {'wfdno', 0x3d, r2}}) 10:22:36 executing program 5: r0 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x46e2, 0x0) r1 = dup2(r0, r0) r2 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000040), 0x2, 0x0) mount$9p_fd(0x2000000, &(0x7f0000000000)='./file0\x00', &(0x7f00000000c0), 0x0, &(0x7f00000004c0)={'trans=fd,', {'rfdno', 0x3d, r1}, 0x2c, {'wfdno', 0x3d, r2}}) 10:22:36 executing program 0: r0 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x46e2, 0x0) r1 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffd000/0x3000)=nil, 0x3000, 0x0, 0x13, r0, 0x0) syz_io_uring_setup(0x4b9f, &(0x7f0000000140)={0x0, 0x0, 0x20}, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000ffd000/0x3000)=nil, &(0x7f00000000c0), &(0x7f00000001c0)=0x0) syz_io_uring_submit(r1, r2, &(0x7f0000000240)=@IORING_OP_FADVISE={0x18, 0x0, 0x0, @fd, 0x2}, 0x0) sigaltstack(&(0x7f0000ffd000/0x1000)=nil, 0x0) [ 847.061479] FAULT_INJECTION: forcing a failure. [ 847.061479] name failslab, interval 1, probability 0, space 0, times 0 [ 847.063148] CPU: 1 PID: 7865 Comm: syz-executor.4 Not tainted 5.10.56 #1 [ 847.064083] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS rel-1.14.0-0-g155821a1990b-prebuilt.qemu.org 04/01/2014 [ 847.065643] Call Trace: [ 847.066001] dump_stack+0x107/0x163 [ 847.066492] should_fail.cold+0x5/0xa [ 847.067006] ? create_object.isra.0+0x3a/0xa20 [ 847.067600] FAULT_INJECTION: forcing a failure. [ 847.067600] name failslab, interval 1, probability 0, space 0, times 0 [ 847.067631] should_failslab+0x5/0x10 [ 847.070509] kmem_cache_alloc+0x5b/0x350 [ 847.071043] create_object.isra.0+0x3a/0xa20 [ 847.071616] ? __kasan_kmalloc.constprop.0+0xc2/0xd0 [ 847.072281] __kmalloc_track_caller+0x177/0x3c0 [ 847.072894] ? v9fs_session_init+0xe9/0x1690 [ 847.073469] ? kernel_text_address+0xea/0x120 [ 847.074055] kstrdup+0x36/0x70 [ 847.074477] v9fs_session_init+0xe9/0x1690 [ 847.075034] ? lock_release+0x6b0/0x6b0 [ 847.075553] ? rcu_read_lock_sched_held+0xd/0x70 [ 847.076169] ? lock_release+0x4db/0x6b0 [ 847.076705] ? stack_trace_save+0x8c/0xc0 [ 847.077241] ? kmem_cache_alloc_trace+0x151/0x360 [ 847.077872] ? v9fs_show_options+0x690/0x690 [ 847.078451] ? trace_hardirqs_on+0x5b/0x180 [ 847.079013] ? kasan_unpoison_shadow+0x33/0x40 [ 847.079614] ? __kasan_kmalloc.constprop.0+0xc2/0xd0 [ 847.080277] v9fs_mount+0x79/0x8f0 [ 847.080748] ? v9fs_write_inode+0x60/0x60 [ 847.081291] legacy_get_tree+0x105/0x220 [ 847.081820] vfs_get_tree+0x8e/0x2f0 [ 847.082306] path_mount+0x139a/0x2080 [ 847.082808] ? strncpy_from_user+0x9e/0x460 [ 847.083371] ? finish_automount+0xa40/0xa40 [ 847.083934] ? getname_flags.part.0+0x1dd/0x4f0 [ 847.084549] ? _copy_from_user+0xfb/0x1b0 [ 847.085091] __x64_sys_mount+0x27e/0x300 [ 847.085626] ? path_mount+0x2080/0x2080 [ 847.086147] ? rcu_read_lock_sched_held+0xd/0x70 [ 847.086769] do_syscall_64+0x33/0x40 [ 847.087255] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 847.087927] RIP: 0033:0x466609 [ 847.088346] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 847.090772] RSP: 002b:00007f33d7a83188 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5 [ 847.091775] RAX: ffffffffffffffda RBX: 000000000056bf80 RCX: 0000000000466609 [ 847.092718] RDX: 00000000200000c0 RSI: 0000000020000000 RDI: 0000000000000000 [ 847.093653] RBP: 00007f33d7a831d0 R08: 00000000200004c0 R09: 0000000000000000 [ 847.094584] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 847.095524] R13: 00007ffecc2507ff R14: 00007f33d7a83300 R15: 0000000000022000 [ 847.096493] CPU: 0 PID: 7864 Comm: syz-executor.1 Not tainted 5.10.56 #1 [ 847.097965] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS rel-1.14.0-0-g155821a1990b-prebuilt.qemu.org 04/01/2014 [ 847.100387] Call Trace: [ 847.100963] dump_stack+0x107/0x163 [ 847.101739] should_fail.cold+0x5/0xa [ 847.102592] ? quarantine_reduce+0xc/0x200 [ 847.103494] ? p9_fcall_init+0x97/0x210 [ 847.104346] should_failslab+0x5/0x10 [ 847.105179] __kmalloc+0x72/0x3e0 [ 847.105919] ? __kasan_kmalloc.constprop.0+0xc2/0xd0 [ 847.107004] p9_fcall_init+0x97/0x210 [ 847.107818] p9_client_prepare_req.part.0+0xf0/0xb30 [ 847.108915] ? lock_release+0x4db/0x6b0 [ 847.109763] p9_client_rpc+0x21c/0x1200 [ 847.110617] ? p9_client_prepare_req.part.0+0xb30/0xb30 [ 847.111759] ? n_tty_ioctl+0x370/0x370 [ 847.112596] ? ldsem_up_read+0x40/0x80 [ 847.113419] ? n_tty_ioctl+0x370/0x370 [ 847.114237] ? tty_poll+0x159/0x1c0 [ 847.115007] ? tty_release+0xe90/0xe90 [ 847.115833] ? p9_fd_poll+0x1e0/0x2c0 [ 847.116660] ? p9_fd_create+0x2eb/0x420 [ 847.117503] ? p9_conn_create+0x500/0x500 [ 847.118383] ? kfree+0xca/0x360 [ 847.119089] p9_client_create+0xa72/0x1090 [ 847.119992] ? p9_client_flush+0x430/0x430 [ 847.120901] ? trace_hardirqs_on+0x5b/0x180 [ 847.121818] ? lockdep_init_map_waits+0x26a/0x700 [ 847.122843] ? __raw_spin_lock_init+0x34/0x100 [ 847.123817] v9fs_session_init+0x1dd/0x1690 [ 847.124746] ? lock_release+0x6b0/0x6b0 [ 847.125594] ? rcu_read_lock_sched_held+0xd/0x70 [ 847.126597] ? lock_release+0x4db/0x6b0 [ 847.127441] ? stack_trace_save+0x8c/0xc0 [ 847.128319] ? kmem_cache_alloc_trace+0x151/0x360 [ 847.129370] ? v9fs_show_options+0x690/0x690 [ 847.130307] ? trace_hardirqs_on+0x5b/0x180 [ 847.131224] ? kasan_unpoison_shadow+0x33/0x40 [ 847.132187] ? __kasan_kmalloc.constprop.0+0xc2/0xd0 [ 847.133279] v9fs_mount+0x79/0x8f0 [ 847.134034] ? v9fs_write_inode+0x60/0x60 [ 847.134910] legacy_get_tree+0x105/0x220 [ 847.135773] vfs_get_tree+0x8e/0x2f0 [ 847.136574] path_mount+0x139a/0x2080 [ 847.137382] ? strncpy_from_user+0x9e/0x460 [ 847.138294] ? finish_automount+0xa40/0xa40 [ 847.139209] ? getname_flags.part.0+0x1dd/0x4f0 [ 847.140192] ? _copy_from_user+0xfb/0x1b0 [ 847.141090] __x64_sys_mount+0x27e/0x300 [ 847.141959] ? path_mount+0x2080/0x2080 [ 847.142802] ? rcu_read_lock_sched_held+0xd/0x70 [ 847.143821] do_syscall_64+0x33/0x40 [ 847.144626] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 847.145727] RIP: 0033:0x466609 [ 847.146416] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 847.150390] RSP: 002b:00007fdc84e63188 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5 [ 847.152025] RAX: ffffffffffffffda RBX: 000000000056bf80 RCX: 0000000000466609 [ 847.153566] RDX: 00000000200000c0 RSI: 0000000020000000 RDI: 0000000000000000 [ 847.155096] RBP: 00007fdc84e631d0 R08: 00000000200004c0 R09: 0000000000000000 [ 847.156641] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 847.158166] R13: 00007ffc7c6b7e8f R14: 00007fdc84e63300 R15: 0000000000022000 10:22:36 executing program 2: r0 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x46e2, 0x0) r1 = dup2(r0, r0) r2 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000040), 0x2, 0x0) mount$9p_fd(0xf0ffff, &(0x7f0000000000)='./file0\x00', &(0x7f00000000c0), 0x0, &(0x7f00000004c0)={'trans=fd,', {'rfdno', 0x3d, r1}, 0x2c, {'wfdno', 0x3d, r2}}) 10:22:36 executing program 0: r0 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x46e2, 0x0) r1 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffd000/0x3000)=nil, 0x3000, 0x0, 0x13, r0, 0x0) open_by_handle_at(r0, &(0x7f0000000000)=@reiserfs_6={0x18, 0x6, {0xffffffff, 0xffff0000, 0x452, 0x80000001, 0x10000, 0x80}}, 0x40) syz_io_uring_setup(0x4b9f, &(0x7f0000000280)={0x0, 0x0, 0x0, 0xfffffffd, 0x1b1}, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000ffd000/0x3000)=nil, &(0x7f00000000c0), &(0x7f00000001c0)=0x0) syz_io_uring_submit(r1, r2, &(0x7f0000000240)=@IORING_OP_FADVISE={0x18, 0x0, 0x0, @fd, 0x2}, 0x0) sigaltstack(&(0x7f0000ffd000/0x1000)=nil, 0x0) 10:22:36 executing program 5: r0 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x46e2, 0x0) r1 = dup2(r0, r0) r2 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000040), 0x2, 0x0) mount$9p_fd(0x2280000, &(0x7f0000000000)='./file0\x00', &(0x7f00000000c0), 0x0, &(0x7f00000004c0)={'trans=fd,', {'rfdno', 0x3d, r1}, 0x2c, {'wfdno', 0x3d, r2}}) 10:22:37 executing program 3: perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000040), 0x2, 0x0) write$binfmt_aout(r0, &(0x7f0000000640), 0x20) read(0xffffffffffffffff, &(0x7f0000000100)=""/146, 0x92) 10:22:37 executing program 4 (fault-call:3 fault-nth:19): r0 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x46e2, 0x0) r1 = dup2(r0, r0) r2 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000040), 0x2, 0x0) mount$9p_fd(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f00000000c0), 0x0, &(0x7f00000004c0)={'trans=fd,', {'rfdno', 0x3d, r1}, 0x2c, {'wfdno', 0x3d, r2}}) 10:22:37 executing program 5: r0 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x46e2, 0x0) r1 = dup2(r0, r0) r2 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000040), 0x2, 0x0) mount$9p_fd(0x40000000, &(0x7f0000000000)='./file0\x00', &(0x7f00000000c0), 0x0, &(0x7f00000004c0)={'trans=fd,', {'rfdno', 0x3d, r1}, 0x2c, {'wfdno', 0x3d, r2}}) [ 847.273175] FAULT_INJECTION: forcing a failure. [ 847.273175] name failslab, interval 1, probability 0, space 0, times 0 [ 847.275755] CPU: 0 PID: 7891 Comm: syz-executor.4 Not tainted 5.10.56 #1 [ 847.277251] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS rel-1.14.0-0-g155821a1990b-prebuilt.qemu.org 04/01/2014 [ 847.279704] Call Trace: [ 847.280275] dump_stack+0x107/0x163 [ 847.281072] should_fail.cold+0x5/0xa [ 847.281901] ? p9_client_create+0xaf/0x1090 [ 847.282838] should_failslab+0x5/0x10 [ 847.283662] kmem_cache_alloc_trace+0x55/0x360 [ 847.284667] p9_client_create+0xaf/0x1090 [ 847.285567] ? lock_downgrade+0x6d0/0x6d0 [ 847.286466] ? p9_client_flush+0x430/0x430 [ 847.287380] ? trace_hardirqs_on+0x5b/0x180 [ 847.288310] ? lockdep_init_map_waits+0x26a/0x700 [ 847.289367] ? __raw_spin_lock_init+0x34/0x100 [ 847.290359] v9fs_session_init+0x1dd/0x1690 [ 847.291289] ? lock_release+0x6b0/0x6b0 [ 847.292150] ? __kthread_should_park+0x81/0xd0 [ 847.293147] ? asm_sysvec_apic_timer_interrupt+0x12/0x20 [ 847.294311] ? trace_hardirqs_on+0x5b/0x180 [ 847.295242] ? v9fs_show_options+0x690/0x690 [ 847.296196] ? _raw_spin_unlock_irqrestore+0x25/0x40 [ 847.297312] ? kasan_unpoison_shadow+0x33/0x40 [ 847.298295] ? __kasan_kmalloc.constprop.0+0xc2/0xd0 [ 847.299386] v9fs_mount+0x79/0x8f0 [ 847.300151] ? v9fs_write_inode+0x60/0x60 [ 847.301057] legacy_get_tree+0x105/0x220 [ 847.301934] vfs_get_tree+0x8e/0x2f0 [ 847.302734] path_mount+0x139a/0x2080 [ 847.303557] ? strncpy_from_user+0x9e/0x460 [ 847.304492] ? finish_automount+0xa40/0xa40 [ 847.305422] ? getname_flags.part.0+0x1dd/0x4f0 [ 847.306421] ? _copy_from_user+0xfb/0x1b0 [ 847.307318] __x64_sys_mount+0x27e/0x300 [ 847.308190] ? path_mount+0x2080/0x2080 [ 847.309071] ? rcu_read_lock_sched_held+0xd/0x70 [ 847.310092] do_syscall_64+0x33/0x40 [ 847.310891] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 847.311996] RIP: 0033:0x466609 [ 847.312698] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 847.316696] RSP: 002b:00007f33d7a83188 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5 [ 847.318475] RAX: ffffffffffffffda RBX: 000000000056bf80 RCX: 0000000000466609 [ 847.320019] RDX: 00000000200000c0 RSI: 0000000020000000 RDI: 0000000000000000 [ 847.321566] RBP: 00007f33d7a831d0 R08: 00000000200004c0 R09: 0000000000000000 [ 847.323104] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 847.324653] R13: 00007ffecc2507ff R14: 00007f33d7a83300 R15: 0000000000022000 VM DIAGNOSIS: 10:22:27 Registers: info registers vcpu 0 RAX=0000000000000000 RBX=ffffed1001d00ed4 RCX=0000000000000003 RDX=0000000000000000 RSI=1ffffd1ffff8107a RDI=ffffffff84cfcb40 RBP=ffff88800e807748 RSP=ffff88800e807670 R8 =0000000000000000 R9 =ffffffff8544fb4f R10=fffffbfff0a89f69 R11=0000000000000001 R12=ffffffff84e99d00 R13=ffffe8ffffc083d0 R14=ffffffff84cfcac0 R15=ffff88800e807720 RIP=ffffffff81259f17 RFL=00000246 [---Z-P-] CPL=0 II=0 A20=1 SMM=0 HLT=0 ES =0000 0000000000000000 00000000 00000000 CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA] SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS [-WA] DS =0000 0000000000000000 00000000 00000000 FS =0000 00007f7da232c8c0 00000000 00000000 GS =0000 ffff88806ce00000 00000000 00000000 LDT=0000 fffffe0000000000 00000000 00000000 TR =0040 fffffe0000003000 00004087 00008b00 DPL=0 TSS64-busy GDT= fffffe0000001000 0000007f IDT= fffffe0000000000 00000fff CR0=80050033 CR2=00007ffdbc01d8f7 CR3=0000000008984000 CR4=00350ef0 DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 DR6=00000000ffff0ff0 DR7=0000000000000400 EFER=0000000000000d01 FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00009fc0 FPR0=0000000000000000 0000 FPR1=0000000000000000 0000 FPR2=0000000000000000 0000 FPR3=0000000000000000 0000 FPR4=0000000000000000 0000 FPR5=cc80000000000000 4007 FPR6=cc80000000000000 4007 FPR7=cdc0000000000000 4008 XMM00=00000000000000000000000000000000 XMM01=00000000000000000000000000000000 XMM02=ffff0f0e0d0c0b0a0908070605040302 XMM03=00000000000000000000000000000000 XMM04=00000000000000000000000000000000 XMM05=00000000000000000000000800000005 XMM06=00000000000000000000000000000000 XMM07=00000000000000000000000000000000 XMM08=00000000000001100000000000000102 XMM09=ffffff0000ffffffffffffffffffffff XMM10=20202000002020202020202020202020 XMM11=00000000000000000000000000000000 XMM12=00000000000000000000000000000000 XMM13=00000000000000000000000000000000 XMM14=00000000000000000000000000000000 XMM15=00000000000000000000000000000000 info registers vcpu 1 RAX=0000000000000005 RBX=00000000000003f9 RCX=0000000000000000 RDX=00000000000003f9 RSI=ffffffff8226e001 RDI=ffffffff87679000 RBP=ffffffff87678fc0 RSP=ffff88806cf09cd0 R8 =0000000000000001 R9 =0000000000000003 R10=0000000000000000 R11=0000000000000001 R12=0000000000000005 R13=ffffffff87679018 R14=0000000000000001 R15=ffffffff87679010 RIP=ffffffff8226e058 RFL=00000006 [-----P-] CPL=0 II=0 A20=1 SMM=0 HLT=0 ES =0000 0000000000000000 00000000 00000000 CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA] SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS [-WA] DS =0000 0000000000000000 00000000 00000000 FS =0000 00007f4dcb0c5700 00000000 00000000 GS =0000 ffff88806cf00000 00000000 00000000 LDT=0000 fffffe0000000000 00000000 00000000 TR =0040 fffffe000003e000 00004087 00008b00 DPL=0 TSS64-busy GDT= fffffe000003c000 0000007f IDT= fffffe0000000000 00000fff CR0=80050033 CR2=00007f4dcb0c4f78 CR3=00000000185a0000 CR4=00350ee0 DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 DR6=00000000ffff0ff0 DR7=0000000000000400 EFER=0000000000000d01 FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80 FPR0=0000000000000000 0000 FPR1=0000000000000000 0000 FPR2=0000000000000000 0000 FPR3=0000000000000000 0000 FPR4=0000000000000000 0000 FPR5=c200000000000000 4005 FPR6=c200000000000000 4005 FPR7=c700000000000000 4006 XMM00=ffffffffffffffffffffffffffffffff XMM01=ffffffffffffffffffffffffffffffff XMM02=ffffffffffffffffffffffffffffffff XMM03=ffffffffffffffffffffffffffffffff XMM04=ffffffffffffffffffffffffffffffff XMM05=ffffffffffffffffffffffffffffffff XMM06=000000000000000000524f5252450040 XMM07=000000000000000000e800a800000000 XMM08=2570756c6c25706f6f6c2f7665642f00 XMM09=00000000000000000000000000000000 XMM10=00000000000000000000000000000000 XMM11=00000000000000000000000000000000 XMM12=00000000000000000000000000000000 XMM13=00000000000000000000000000000000 XMM14=00000000000000000000000000000000 XMM15=00000000000000000000000000000000