024386a562b500000000c00008008000d00ac141400"], 0x28}}, 0x0) chdir(&(0x7f00000001c0)='./file0\x00') r2 = syz_open_dev$mouse(&(0x7f0000000400), 0x7fffffff, 0x2d0401) sendmsg$NL80211_CMD_ADD_NAN_FUNCTION(r2, &(0x7f0000000500)={&(0x7f0000000440)={0x10, 0x0, 0x0, 0x10}, 0xc, &(0x7f00000004c0)={&(0x7f00000002c0)={0x20, 0x0, 0x100, 0x70bd2b, 0x25dfdbfd, {{}, {@void, @val={0xc, 0x99, {0x3, 0x1b}}}}}, 0x20}, 0x1, 0x0, 0x0, 0x95}, 0x40000) ioctl$FICLONE(r2, 0x40049409, r0) r3 = open$dir(&(0x7f0000000000)='.\x00', 0x0, 0x0) perf_event_open(&(0x7f0000001d80)={0x6, 0x80, 0x0, 0x0, 0x0, 0x0, 0x4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffd, 0x0, @perf_bp={0x0, 0xffffffff81000000}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffd}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r4 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000040)='/proc/crypto\x00', 0x0, 0x0) r5 = openat2(r3, &(0x7f0000000180)='./file0\x00', &(0x7f0000000200)={0x800, 0x1b9}, 0x18) setsockopt$SO_TIMESTAMPING(r5, 0x1, 0x25, &(0x7f0000000240)=0x7100, 0x4) pread64(r4, &(0x7f00000010c0)=""/4088, 0xff8, 0x0) writev(0xffffffffffffffff, &(0x7f00000003c0)=[{&(0x7f0000000000)="0000abe02400030021206cda3b5e5672b89aeddb2a535fbd0706006dff0043a9d7cceb232fb81bf74ebdd05b7677", 0x2e}, {&(0x7f0000000680)}], 0x2) 05:34:05 executing program 5: ioctl$sock_SIOCDELRT(0xffffffffffffffff, 0x890c, &(0x7f0000000280)={0x0, @ax25={0x3, @netrom={0xbb, 0xbb, 0xbb, 0xbb, 0xbb, 0x0, 0x0}, 0x7}, @can={0x1d, 0x0}, @vsock={0x28, 0x0, 0x2710, @local}, 0x1ff, 0x0, 0x0, 0x0, 0x7, &(0x7f0000000240)='veth1\x00', 0x9a5, 0x7f, 0x7ff}) sendmmsg$inet(0xffffffffffffffff, &(0x7f0000000400)=[{{&(0x7f0000000000)={0x2, 0x4e24, @empty}, 0x10, &(0x7f0000000140)=[{&(0x7f0000000080)="2cc3450f6d887284fb278e8e82fec7ff197c86c420e20f8fa83f22183bdc78df10a29ca356866f631d03d50bf7b79b2707b4f1dde2c27f10270c65c1bae26a2097963332f26900d1a4e46d487e67df646249538d85e2d25dcc66aad0e8b1a695123e5f71a954d06f17d06514e9d9ac63ec8956de2e9027e1c96405900234c933faac0eab6e5c24c142e50e015b08ab6c155f179dcc9de4707278ca54abeca56fd668", 0xa2}], 0x1, &(0x7f0000000300)=[@ip_pktinfo={{0x1c, 0x0, 0x8, {r0, @rand_addr=0x64010100, @dev={0xac, 0x14, 0x14, 0x34}}}}, @ip_pktinfo={{0x1c, 0x0, 0x8, {0x0, @initdev={0xac, 0x1e, 0x0, 0x0}, @dev={0xac, 0x14, 0x14, 0x32}}}}, @ip_tos_u8={{0x11, 0x0, 0x1, 0x40}}, @ip_tos_u8={{0x11, 0x0, 0x1, 0x9}}, @ip_ttl={{0x14}}, @ip_pktinfo={{0x1c, 0x0, 0x8, {0x0, @loopback, @remote}}}, @ip_ttl={{0x14, 0x0, 0x2, 0x80000000}}, @ip_tos_int={{0x14, 0x0, 0x1, 0x4}}], 0xd8}}], 0x1, 0xc000) syz_emit_ethernet(0x32, &(0x7f0000000040)={@local, @remote, @void, {@ipv4={0x800, @igmp={{0x7, 0x4, 0x0, 0x0, 0x24, 0x0, 0x0, 0x0, 0x2, 0x0, @local, @private=0xa010102, {[@cipso={0x86, 0x8, 0x0, [{0x0, 0x2}]}]}}, {0x0, 0x0, 0x0, @broadcast}}}}}, 0x0) 05:34:05 executing program 1: perf_event_open(&(0x7f0000000040)={0x0, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_emit_ethernet(0x3a, &(0x7f0000000000)={@local, @remote, @void, {@ipv4={0x800, @tcp={{0x6, 0x4, 0x0, 0x0, 0x2c, 0x0, 0x0, 0x0, 0x32, 0x0, @dev, @private=0xa010100, {[@lsrr={0x83, 0x5}]}}, {{0x0, 0x0, 0x41424344, 0x41424344, 0x0, 0x7, 0x5}}}}}}, 0x0) 05:34:05 executing program 7: syz_emit_ethernet(0x32, &(0x7f0000000040)=ANY=[@ANYBLOB="aaaaaaaaaaaaaaaaaaaaaabb8800471414aa0a010102860800000000000200009078ffffffff00"/50], 0x0) r0 = openat$procfs(0xffffffffffffff9c, &(0x7f00000014c0)='/proc/bus/input/devices\x00', 0x0, 0x0) pread64(r0, &(0x7f0000000040)=""/4126, 0x101e, 0x2000) r1 = openat$procfs(0xffffffffffffff9c, &(0x7f00000014c0)='/proc/bus/input/devices\x00', 0x0, 0x0) pread64(r1, &(0x7f0000000040)=""/4126, 0x101e, 0x2000) write$tun(r1, &(0x7f0000001500)={@val={0x0, 0x6006}, @void, @ipv6=@tipc_packet={0xf, 0x6, "cc729e", 0x620, 0x6, 0x0, @rand_addr=' \x01\x00', @ipv4={'\x00', '\xff\xff', @remote}, {[@dstopts={0x5c, 0x18, '\x00', [@jumbo={0xc2, 0x4, 0xde}, @calipso={0x7, 0x38, {0x1, 0xc, 0x8, 0x2, [0x2, 0x7, 0x1000, 0xffffffffffffffe0, 0x5, 0x5]}}, @enc_lim={0x4, 0x1, 0x7}, @ra={0x5, 0x2, 0x1000}, @enc_lim, @calipso={0x7, 0x18, {0x3, 0x4, 0xad, 0x0, [0x101, 0xa6]}}, @generic={0x7b, 0x1b, "2551a0f02f0ffd2c98179a2e6c54a5f5c493966fbc74fb035efa42"}, @jumbo={0xc2, 0x4, 0xfffffffa}, @calipso={0x7, 0x38, {0x0, 0xc, 0x1f, 0x7ff, [0x6, 0x1, 0x2, 0x8, 0x1, 0x10000]}}]}, @routing={0x1d, 0xe, 0x2, 0x2, 0x0, [@private2={0xfc, 0x2, '\x00', 0x1}, @remote, @dev={0xfe, 0x80, '\x00', 0x2d}, @initdev={0xfe, 0x88, '\x00', 0x0, 0x0}, @private0={0xfc, 0x0, '\x00', 0x1}, @initdev={0xfe, 0x88, '\x00', 0x1, 0x0}, @initdev={0xfe, 0x88, '\x00', 0x0, 0x0}]}, @hopopts={0x3c, 0x1, '\x00', [@padn={0x1, 0x4, [0x0, 0x0, 0x0, 0x0]}, @pad1]}, @fragment={0x2b, 0x0, 0x9, 0x0, 0x0, 0xb, 0x65}, @hopopts={0x33, 0x26, '\x00', [@ra={0x5, 0x2, 0x7fff}, @jumbo={0xc2, 0x4, 0x7}, @ra={0x5, 0x2, 0x4000}, @ra={0x5, 0x2, 0xe6}, @jumbo={0xc2, 0x4, 0x52a}, @hao={0xc9, 0x10, @mcast2}, @pad1, @generic={0x6, 0xf5, "acfd223fbb24dd6ba327b08bc61ca400fc410321a9882288db464f59bf6fd5128487dc64cf208d65c970b16b1b68e56b4970c69ded5fcf6e86e428a169f0192de6b5c36dd8ae8806fddfe3167e89fe19ff21d00c9f0074377ce9357bb469d35c63bb75dc159859a57e07ad9851e7302a45489c964aeed045b6f9383d3994a1b378b05f183376cf78fec3ff2b442ff0b569ad94679051370c25b8ceccf483cd272f64941ab59b156dd7db61785907d6f59d66c9a27e8686143c9229090588e266a6ed56b41eb7dc249e8bb6bb5eb5bcc140d6a6edbc94d5e671979f550bc1cfccc34d523ac5cc86296202f4ae5be9ff1579ab3bdf2c"}, @hao={0xc9, 0x10, @private1={0xfc, 0x1, '\x00', 0x1}}]}, @routing={0xbb, 0xe, 0x0, 0x8, 0x0, [@local, @empty, @private2={0xfc, 0x2, '\x00', 0x1}, @local, @empty, @dev={0xfe, 0x80, '\x00', 0x29}, @private2]}, @routing={0x5c, 0x6, 0x2, 0x4, 0x0, [@mcast2, @private1={0xfc, 0x1, '\x00', 0x1}, @local]}, @dstopts={0x84, 0x3d, '\x00', [@pad1, @calipso={0x7, 0x50, {0x2, 0x12, 0x3, 0x3, [0x0, 0x0, 0x2, 0x8000, 0x8, 0xffffffffffffffff, 0x5, 0x0, 0x80000001]}}, @generic={0x9, 0xe1, "94575ffd2db71c2281b87e81eed07a26dd35046c48e9b35937407204fc5ce47c4ad9a47d68921440b46973b9d4d2f204109eb9da7cebe5e298120b155452a8d2e6aaa3bbf8077a869d136f58b06dee547b79d92b17b2220b0eba93a848a09c29b68b9758ca4bfc55503bd3d7d6b60ba6d16f40ecc7c0c4a1bb454756810f0f464f0aa2ca630ff8f03a7cc4c051f673fcef580d6a3436f7133e14ae9fe7d1889c65d38307b3185144fa60a7133e6c8865938f576ca5e682a32fbdb96fbc5c919058426f81cb534ba3fa777d4ea6043e90e48cec9caa0efff0d9826a6d9df8bda3fb"}, @padn={0x1, 0x4, [0x0, 0x0, 0x0, 0x0]}, @generic={0x6, 0xa2, "3198e7b66f4baeb6aced79a49cf5422f3ecb47c40850b7d8aae8a69779c879480e7615f7d3e5f812e05e162dd8ed2f21b9f3b86ab9b0a1929fd7c8aca429364dd9cbaa7a6391149bc0d5a8aedab0d7fe5843fe8bcb2b4249325a8ef49c45fbcc88db8e5316a7fe2ad9947062b50eee2d64a765d526bc2170fda6524716b725c356a9161f7cfda210926d4d67b2c5f7cec25aec134834b0d7f722536dad1b56dafd24"}, @padn={0x1, 0x8, [0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0]}]}], @name_distributor={{0xd0, 0x0, 0x0, 0x0, 0x0, 0xa, 0xb, 0x2, 0x8e7f, 0x0, 0x0, 0x3, 0x22, 0x1, 0x4e22, 0x4e21, 0x0, 0x1}, [{0x5, 0x385a, 0x7, 0x7fffffff, 0x135b, 0x6, 0x5, 0xa6}, {0x2, 0xfffffeff, 0x1ff, 0xff, 0x7, 0x4, 0x5, 0x4}, {0x8d4, 0x2, 0x6, 0x7fffffff, 0x607, 0xffffff00, 0x7, 0x3cd2}, {0x9, 0x1, 0x2, 0x6, 0xfffffffa, 0x3, 0x4, 0x1}, {0xfffffff9, 0x3, 0x531, 0xffff, 0xe679, 0xffffff7f, 0xe, 0xa5f740a}, {0x3, 0x8001, 0x10001, 0xf20, 0x80000001, 0x0, 0xe, 0x3}]}}}}, 0x64c) write$tun(r0, &(0x7f0000000080)={@void, @val={0x2, 0x0, 0x20, 0x8, 0x8000, 0x20}, @ipv4=@generic={{0x33, 0x4, 0x1, 0x7, 0x19f, 0x64, 0x0, 0x0, 0x62, 0x0, @local, @multicast2, {[@timestamp_prespec={0x44, 0xc, 0x9d, 0x3, 0x9, [{@private=0xa010101, 0x8}]}, @ssrr={0x89, 0x7, 0x2d, [@rand_addr=0x64010101]}, @timestamp_prespec={0x44, 0x14, 0x1b, 0x3, 0x6, [{@rand_addr=0x64010100, 0xffff}, {@broadcast, 0x38e0}]}, @noop, @generic={0x82, 0xf, "881e7e73d9e129e8a06a378a4d"}, @timestamp={0x44, 0xc, 0x43, 0x0, 0xd, [0x40, 0x377b]}, @rr={0x7, 0x7, 0xa0, [@loopback]}, @rr={0x7, 0x7, 0x59, [@remote]}, @cipso={0x86, 0x4a, 0xffffffffffffffff, [{0x0, 0x3, ' '}, {0x0, 0x10, "46652d0263ca6dc83d584380344e"}, {0x2, 0xf, "a2fc063b0696d62c35bbff0a49"}, {0x2, 0xe, "6fb83203156aa6e2b35487a7"}, {0x1, 0x8, "8b85b484b535"}, {0x7, 0x2}, {0x6, 0xa, "09cb2f4701d292be"}]}, @ssrr={0x89, 0x1b, 0xd4, [@rand_addr=0x64010101, @private=0xa010100, @loopback, @empty, @multicast2, @remote]}]}}, "dd3bd3eb45cde1c093de627514bf88f0834c99d2d799ddeea5c64b930ad0f0efec6019bc3b24f246ec9049a2c2fae6b0e226b3a1fbda04933e7ed661533c92310b814585d7a2ba6845528d6565500647ff530c278fe165ce065e0e9c8802fb94d3f1b6c36a60e95de36133789072f7f5704dd6b09b36d5ee7772184798e4961737bec82a9501bd6bbf67c506d57e60a1561e44e6a7eb416ffeb5a84b3ad4fd36831813a5c95cdd39c617c3946c81d148490259620d4487266a583b800ff2028517c8d93465559a9a3ca8583b6c47a3a128ee5c"}}, 0x1a9) 05:34:05 executing program 6: perf_event_open(&(0x7f0000001d80)={0x2, 0x80, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = syz_open_dev$vcsa(&(0x7f0000000040), 0x5, 0x111002) perf_event_open(&(0x7f0000000100)={0x0, 0x80, 0x8, 0x8, 0x40, 0x2, 0x0, 0x1, 0x20080, 0x4, 0x1, 0x0, 0x1, 0x1, 0x0, 0x1, 0x1, 0x0, 0x0, 0x1, 0x1, 0x1, 0x0, 0x0, 0x0, 0x1, 0x1, 0x1, 0x1, 0x0, 0x1, 0x1, 0x1, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x1, 0x1, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x1, 0x2, @perf_bp={&(0x7f0000000000), 0x8}, 0x2, 0x9, 0x800, 0x8, 0x6, 0x6, 0x1a6, 0x0, 0x38, 0x0, 0x92}, 0xffffffffffffffff, 0xe, r0, 0x8) syz_emit_ethernet(0x36, &(0x7f0000000080)=ANY=[@ANYBLOB="aaaaaaaaaaaaaaaaaaaa0800470000240000000000029078005013da1f000000dc435a38144958c1ac1414aa0a010102860800000000000200009078fffff6ef000000000000"], 0x0) [ 2553.296818] FAULT_INJECTION: forcing a failure. [ 2553.296818] name failslab, interval 1, probability 0, space 0, times 0 [ 2553.298165] CPU: 1 PID: 11613 Comm: syz-executor.2 Not tainted 5.10.204 #1 [ 2553.298904] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 2553.299785] Call Trace: [ 2553.300074] dump_stack+0x107/0x167 [ 2553.300472] should_fail.cold+0x5/0xa [ 2553.300885] ? create_object.isra.0+0x3a/0xa20 [ 2553.301380] should_failslab+0x5/0x20 [ 2553.301793] kmem_cache_alloc+0x5b/0x310 [ 2553.302237] create_object.isra.0+0x3a/0xa20 [ 2553.302703] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 2553.303245] kmem_cache_alloc+0x159/0x310 [ 2553.303692] jbd2__journal_start+0x190/0x7e0 [ 2553.304166] __ext4_journal_start_sb+0x214/0x390 [ 2553.304687] ext4_file_write_iter+0xdbf/0x18d0 [ 2553.305183] ? ext4_file_read_iter+0x4c0/0x4c0 [ 2553.305680] ? kasan_save_stack+0x32/0x40 [ 2553.306115] ? kasan_save_stack+0x1b/0x40 [ 2553.306578] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 2553.307123] ? iter_file_splice_write+0x16d/0xc30 [ 2553.307658] ? direct_splice_actor+0x10f/0x170 [ 2553.308152] ? splice_direct_to_actor+0x387/0x980 [ 2553.308676] ? do_splice_direct+0x1c4/0x290 [ 2553.309152] ? do_sendfile+0x553/0x1090 [ 2553.309592] ? __x64_sys_sendfile64+0x1d1/0x210 [ 2553.310124] do_iter_readv_writev+0x476/0x750 [ 2553.310624] ? new_sync_write+0x660/0x660 [ 2553.311084] ? selinux_file_permission+0x92/0x520 [ 2553.311625] do_iter_write+0x191/0x670 [ 2553.312062] vfs_iter_write+0x70/0xa0 [ 2553.312472] iter_file_splice_write+0x762/0xc30 [ 2553.312996] ? generic_splice_sendpage+0x140/0x140 [ 2553.313547] ? lockdep_init_map_type+0x2c7/0x780 [ 2553.314078] ? generic_splice_sendpage+0x140/0x140 [ 2553.314622] direct_splice_actor+0x10f/0x170 [ 2553.315100] splice_direct_to_actor+0x387/0x980 [ 2553.315619] ? pipe_to_sendpage+0x380/0x380 [ 2553.316095] ? do_splice_to+0x160/0x160 [ 2553.316538] ? security_file_permission+0x24e/0x570 [ 2553.317088] do_splice_direct+0x1c4/0x290 [ 2553.317559] ? splice_direct_to_actor+0x980/0x980 [ 2553.318100] ? selinux_file_permission+0x92/0x520 [ 2553.318644] ? security_file_permission+0x24e/0x570 [ 2553.319206] do_sendfile+0x553/0x1090 [ 2553.319637] ? do_pwritev+0x270/0x270 [ 2553.320057] ? setup_APIC_eilvt+0x2f0/0x2f0 [ 2553.320541] ? tick_program_event+0xa8/0x140 [ 2553.321035] __x64_sys_sendfile64+0x1d1/0x210 [ 2553.321530] ? __ia32_sys_sendfile+0x220/0x220 [ 2553.322050] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 2553.322642] ? syscall_enter_from_user_mode+0x1d/0x50 [ 2553.323244] do_syscall_64+0x33/0x40 [ 2553.323667] entry_SYSCALL_64_after_hwframe+0x62/0xc7 [ 2553.324249] RIP: 0033:0x7f29be4b1b19 [ 2553.324680] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 2553.325041] netlink: 8 bytes leftover after parsing attributes in process `syz-executor.3'. [ 2553.326718] RSP: 002b:00007f29bba27188 EFLAGS: 00000246 ORIG_RAX: 0000000000000028 [ 2553.326732] RAX: ffffffffffffffda RBX: 00007f29be5c4f60 RCX: 00007f29be4b1b19 [ 2553.326739] RDX: 0000000000000000 RSI: 0000000000000005 RDI: 0000000000000003 05:34:05 executing program 0: perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_emit_ethernet(0x3a, &(0x7f0000000000)={@local, @remote, @void, {@ipv4={0x800, @tcp={{0x6, 0x4, 0x0, 0x0, 0x2c, 0x0, 0x0, 0x0, 0x32, 0x0, @dev, @private, {[@lsrr={0x83, 0x5}]}}, {{0x0, 0x0, 0x41424344, 0x41424344, 0x0, 0x7, 0x5}}}}}}, 0x0) ioctl$BTRFS_IOC_BALANCE(0xffffffffffffffff, 0x5000940c, 0x0) close(0xffffffffffffffff) 05:34:05 executing program 4: perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_emit_ethernet(0x3a, &(0x7f0000000000)={@local, @remote, @void, {@ipv4={0x800, @tcp={{0x6, 0x4, 0x0, 0x0, 0x2c, 0x0, 0x0, 0x0, 0x32, 0x0, @dev, @private=0xa010100, {[@lsrr={0x83, 0x5}]}}, {{0x0, 0x0, 0x41424344, 0x41424344, 0x0, 0x7, 0x5}}}}}}, 0x0) (fail_nth: 6) openat$cgroup_devices(0xffffffffffffffff, 0x0, 0x2, 0x0) close(0xffffffffffffffff) pread64(0xffffffffffffffff, 0x0, 0x0, 0x2000) [ 2553.326745] RBP: 00007f29bba271d0 R08: 0000000000000000 R09: 0000000000000000 [ 2553.326752] R10: 0000000100000001 R11: 0000000000000246 R12: 0000000000000002 [ 2553.326759] R13: 00007ffc9a541dcf R14: 00007f29bba27300 R15: 0000000000022000 [ 2553.344356] FAULT_INJECTION: forcing a failure. [ 2553.344356] name failslab, interval 1, probability 0, space 0, times 0 [ 2553.346681] CPU: 0 PID: 11627 Comm: syz-executor.4 Not tainted 5.10.204 #1 [ 2553.348058] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 2553.349737] Call Trace: [ 2553.350277] dump_stack+0x107/0x167 [ 2553.351045] should_fail.cold+0x5/0xa [ 2553.351924] ? create_object.isra.0+0x3a/0xa20 [ 2553.352869] should_failslab+0x5/0x20 [ 2553.353667] kmem_cache_alloc+0x5b/0x310 [ 2553.354526] create_object.isra.0+0x3a/0xa20 [ 2553.355417] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 2553.356469] kmem_cache_alloc+0x159/0x310 [ 2553.357337] dst_alloc+0x9e/0x610 [ 2553.358084] rt_dst_alloc+0x73/0x440 [ 2553.358869] ip_route_input_slow+0x16f6/0x3050 [ 2553.359827] ? SOFTIRQ_verbose+0x10/0x10 [ 2553.360658] ? perf_trace_run_bpf_submit+0xf5/0x190 [ 2553.361686] ? fib_multipath_hash+0x940/0x940 [ 2553.362659] ? lock_release+0x680/0x680 [ 2553.363486] ? lock_acquire+0x197/0x470 [ 2553.364308] ? find_held_lock+0x2c/0x110 [ 2553.365177] ip_route_input_noref+0x117/0x2f0 [ 2553.366114] ? ip_route_input_slow+0x3050/0x3050 [ 2553.367090] ? nf_hook_slow+0xfc/0x1e0 [ 2553.367901] ? nf_hook.constprop.0+0x146/0x500 [ 2553.368833] ? ip_list_rcv_finish.constprop.0+0x590/0x590 [ 2553.369975] ip_rcv_finish_core.constprop.0+0x7b4/0x1c90 [ 2553.371102] ip_rcv_finish+0x4f/0x1e0 [ 2553.371884] ip_rcv+0xae/0xd0 [ 2553.372526] ? ip_local_deliver+0x200/0x200 [ 2553.373425] __netif_receive_skb_one_core+0x19b/0x1f0 [ 2553.374483] ? __netif_receive_skb_core+0x3780/0x3780 [ 2553.375564] ? __lock_acquire+0xbb1/0x5b00 [ 2553.376483] __netif_receive_skb+0x27/0x1d0 [ 2553.377391] netif_receive_skb+0x12d/0x710 [ 2553.378313] ? __netif_receive_skb+0x1d0/0x1d0 [ 2553.379268] ? SOFTIRQ_verbose+0x10/0x10 [ 2553.380134] ? __lockdep_reset_lock+0x180/0x180 [ 2553.381135] tun_rx_batched.isra.0+0x462/0x710 [ 2553.382069] ? lock_acquire+0x197/0x470 [ 2553.382900] ? tun_get_user+0xee3/0x32f0 [ 2553.383750] ? tun_sock_write_space+0x1d0/0x1d0 [ 2553.384732] ? lock_release+0x680/0x680 [ 2553.385563] ? tun_get_user+0x16e6/0x32f0 [ 2553.386459] ? lock_downgrade+0x6d0/0x6d0 [ 2553.387350] ? eth_type_trans+0x2ad/0x5b0 [ 2553.388243] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 2553.389364] tun_get_user+0x191d/0x32f0 [ 2553.390218] ? usage_accumulate+0x110/0x110 [ 2553.391166] ? tun_build_skb+0xfe0/0xfe0 05:34:06 executing program 5: syz_emit_ethernet(0x12e, &(0x7f0000000080)={@local, @remote, @void, {@ipv4={0x800, @igmp={{0x7, 0x4, 0x0, 0x0, 0x120, 0x0, 0x0, 0x0, 0x2, 0x0, @remote, @private=0xa010102, {[@cipso={0x86, 0x8, 0x0, [{0x0, 0x2}]}]}}, {0x15, 0xff, 0x0, @broadcast, "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"}}}}}, 0x0) [ 2553.392036] ? tun_device_event+0x990/0x1160 [ 2553.393087] ? SOFTIRQ_verbose+0x10/0x10 [ 2553.393995] tun_chr_write_iter+0xe1/0x1e0 [ 2553.394873] new_sync_write+0x42c/0x660 [ 2553.395692] ? new_sync_read+0x6f0/0x6f0 [ 2553.396551] ? _cond_resched+0x12/0x80 [ 2553.397363] ? avc_policy_seqno+0x9/0x70 [ 2553.398203] ? selinux_file_permission+0x92/0x520 [ 2553.399217] ? __fget_files+0x296/0x4c0 [ 2553.400054] vfs_write+0x747/0xa70 [ 2553.400804] ksys_write+0x12d/0x260 [ 2553.401533] ? __ia32_sys_read+0xb0/0xb0 [ 2553.402396] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 2553.403471] ? syscall_enter_from_user_mode+0x1d/0x50 [ 2553.404547] do_syscall_64+0x33/0x40 [ 2553.405320] entry_SYSCALL_64_after_hwframe+0x62/0xc7 [ 2553.406372] RIP: 0033:0x7f6e6cf425ff [ 2553.407142] Code: 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 99 fd ff ff 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 b8 01 00 00 00 0f 05 <48> 3d 00 f0 ff ff 77 31 44 89 c7 48 89 44 24 08 e8 cc fd ff ff 48 [ 2553.410935] RSP: 002b:00007f6e6a505150 EFLAGS: 00000293 ORIG_RAX: 0000000000000001 [ 2553.412504] RAX: ffffffffffffffda RBX: 00007f6e6d0a2f60 RCX: 00007f6e6cf425ff [ 2553.413987] RDX: 000000000000003a RSI: 0000000020000000 RDI: 00000000000000f0 [ 2553.415454] RBP: 00007f6e6a5051d0 R08: 0000000000000000 R09: 0000000000000000 [ 2553.417007] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000001 [ 2553.418486] R13: 00007fffc51a6e8f R14: 00007f6e6a505300 R15: 0000000000022000 05:34:06 executing program 6: r0 = perf_event_open(&(0x7f0000001d80)={0x2, 0x80, 0x70, 0xc2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10000000, 0x1, @perf_bp={&(0x7f0000000480), 0x5}, 0x13302, 0x0, 0x0, 0x3}, 0x0, 0x800000000000, 0xffffffffffffffff, 0x1) r1 = perf_event_open(&(0x7f0000001d80)={0x2, 0x80, 0x5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x40641, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x40, 0x0, @perf_config_ext, 0x0, 0x1, 0x0, 0x2, 0x0, 0x9}, 0x0, 0x0, 0xffffffffffffffff, 0xa) perf_event_open(&(0x7f0000001d80)={0x3, 0x80, 0x0, 0x0, 0x0, 0x0, 0x4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, r1, 0x0) ioctl$BTRFS_IOC_GET_SUBVOL_ROOTREF(r0, 0xd000943d, &(0x7f00000004c0)={0x4, [{}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {0x0, 0x0}], 0x80, "00508e508183c5"}) ioctl$BTRFS_IOC_INO_LOOKUP_USER(r1, 0xd000943e, &(0x7f0000001e00)={r2, 0x0, "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", "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"}) r3 = accept$inet(0xffffffffffffffff, &(0x7f0000000000)={0x2, 0x0, @multicast2}, &(0x7f0000000040)=0x10) writev(r3, &(0x7f00000003c0)=[{&(0x7f0000000140)="cd77f898d5d9987ff4898eb2e99dac97e4820a698778becfb252cf29fcd9b3cb0aabd3621ccf01305bcf358f344462af0764bff6b27ab37ecaa4865d942e3056c1c5ef93330184361db996b6ea1f785459343bd5c84c77c377d04057915417c45341", 0x62}, {&(0x7f00000001c0)="2489161c862f930464c8aca027139de8e2c7e57920a79c1d5095df7b6a", 0x1d}, {&(0x7f0000000200)="1f63492c8f4cc2aa575c5ce6bdde87db7779ad95f97626", 0x17}, {&(0x7f0000000240)="a52f981a709ae3064cc810d68b6e3c7fdd6f8ceb9c2d67635ad33808fd6bc0d54b59a5cd5c70e9de", 0x28}, {&(0x7f0000000280)="a4fae764a4c32d8c8c00979a24c059c6511c7f5efd55ed7bdee24a94827010de9e304d777b1b79b161dcd559a1170f832d015bd63186008caedea98e30aeaa6ad50c2f422f03009c1620e4b82c67d5be9f9530c6777d5267f84afc0b4ff2eb3fd9697015e821924a8ee6fa63caf326d4d10b1b318b07ca75ea3ba76de936cfc082d880", 0x83}, {&(0x7f0000000340)="17c07b0a3486553d94b5d162a5c0db36e11102999a24d78d83eaeb3715e8b97468acc7923f6f0b992a343c6ed4487168b6a9d693476dc5e58614a971cdcaeff2101c08c690a8", 0x46}], 0x6) write$tun(0xffffffffffffffff, &(0x7f0000000080)={@val={0x0, 0x8808}, @void, @eth={@random="59859dac51e7", @empty, @val={@void, {0x8100, 0x1, 0x1, 0x1}}, {@llc_tr={0x11, {@llc={0x171a370cffc98b55, 0xe, "a3b3", "5b0d83fe21aabdf2fe9a238ad20a023acc7def10e8211f2815bef430b82093edb11960cd6128908a01ea26f5ea09d3d09f4de4b3597d713b1f1ef1b45621d4c3d7d3f42b3a2a03c3471ba6295547302f928858cce4003bcaf2dccf3c33383389b1568a966a18895e627b957fee9e9093130e076080e053f46adf13fe4b3e1f2058439f5c61d9117f07842747f6dbfcaaf6f553c8"}}}}}}, 0xae) 05:34:06 executing program 5: ioctl$PIO_UNISCRNMAP(0xffffffffffffffff, 0x4b6a, 0x0) r0 = openat$sndseq(0xffffffffffffff9c, &(0x7f0000000080), 0x2) fcntl$dupfd(0xffffffffffffffff, 0x0, 0xffffffffffffffff) r1 = fcntl$dupfd(r0, 0x0, r0) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x0, 0x7}, 0x0, 0x0, 0x0, 0x0, 0xb7a}, 0x0, 0x0, 0xffffffffffffffff, 0x0) ioctl$SNDRV_SEQ_IOCTL_CREATE_QUEUE(r1, 0xc08c5332, &(0x7f0000000200)={0x0, 0x0, 0x0, 'queue1\x00'}) ioctl$BTRFS_IOC_RM_DEV_V2(0xffffffffffffffff, 0x5000943a, &(0x7f00000007c0)={{}, 0x0, 0x0, @inherit={0x50, &(0x7f0000000300)=ANY=[@ANYBLOB="01000000000000000100000000000000000800000000000096180000000000000800000000000000200000000000000007000000000000000800000000000000010000000000000b01fcffffff"]}, @devid}) write$sndseq(r0, &(0x7f00000002c0)=[{0x0, 0x0, 0x0, 0x0, @time, {}, {}, @ext={0xffffffffffffff94, 0x0}}], 0x200002dc) sendmsg$IPSET_CMD_HEADER(0xffffffffffffffff, &(0x7f0000000140)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x10000000}, 0xc, &(0x7f0000000100)={&(0x7f0000000080)={0x5c, 0xc, 0x6, 0x102, 0x0, 0x0, {0x3, 0x0, 0x5}, [@IPSET_ATTR_SETNAME={0x9, 0x2, 'syz0\x00'}, @IPSET_ATTR_PROTOCOL={0x5}, @IPSET_ATTR_SETNAME={0x9, 0x2, 'syz0\x00'}, @IPSET_ATTR_SETNAME={0x9, 0x2, 'syz2\x00'}, @IPSET_ATTR_PROTOCOL={0x5}, @IPSET_ATTR_SETNAME={0x9, 0x2, 'syz0\x00'}, @IPSET_ATTR_PROTOCOL={0x5}]}, 0x5c}, 0x1, 0x0, 0x0, 0x4000}, 0x4000000) syz_emit_ethernet(0x2e, &(0x7f0000000000)=ANY=[@ANYBLOB="aaaaaaaa2aaaaaaaaaaaaabb0800460000200000000000029078ac14eb0afc3fd5d914aa0a01010200009078fffff8d95937f8bcabb0ffff"], 0x0) 05:34:06 executing program 1: perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_emit_ethernet(0x3a, &(0x7f0000000000)={@local, @remote, @void, {@ipv4={0x800, @tcp={{0x6, 0x4, 0x0, 0x0, 0x2c, 0x0, 0x0, 0x0, 0x32, 0x0, @dev, @private=0xa010100, {[@lsrr={0x83, 0x5}]}}, {{0x0, 0x0, 0x41424344, 0x41424344, 0x0, 0x7, 0x5}}}}}}, 0x0) 05:34:06 executing program 7: syz_emit_ethernet(0x32, &(0x7f0000000040)=ANY=[@ANYBLOB="aaaaaaaaaaaaaaaaaaaabbbb0800470000240000000000029078ac1414aa0a010102860800000000000200009078ffffffff"], 0x0) 05:34:06 executing program 0: perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_emit_ethernet(0x3a, &(0x7f0000000000)={@local, @remote, @void, {@ipv4={0x800, @tcp={{0x6, 0x4, 0x0, 0x0, 0x2c, 0x0, 0x0, 0x0, 0x32, 0x0, @dev, @private, {[@lsrr={0x83, 0x5}]}}, {{0x0, 0x0, 0x41424344, 0x41424344, 0x0, 0x7, 0x5}}}}}}, 0x0) ioctl$BTRFS_IOC_BALANCE(0xffffffffffffffff, 0x5000940c, 0x0) close(0xffffffffffffffff) 05:34:06 executing program 4: perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_emit_ethernet(0x3a, &(0x7f0000000000)={@local, @remote, @void, {@ipv4={0x800, @tcp={{0x6, 0x4, 0x0, 0x0, 0x2c, 0x0, 0x0, 0x0, 0x32, 0x0, @dev, @private=0xa010100, {[@lsrr={0x83, 0x5}]}}, {{0x0, 0x0, 0x41424344, 0x41424344, 0x0, 0x7, 0x5}}}}}}, 0x0) (fail_nth: 7) openat$cgroup_devices(0xffffffffffffffff, 0x0, 0x2, 0x0) close(0xffffffffffffffff) pread64(0xffffffffffffffff, 0x0, 0x0, 0x2000) [ 2553.588685] FAULT_INJECTION: forcing a failure. [ 2553.588685] name fail_page_alloc, interval 1, probability 0, space 0, times 0 [ 2553.590028] CPU: 1 PID: 11650 Comm: syz-executor.4 Not tainted 5.10.204 #1 [ 2553.590767] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 2553.591672] Call Trace: [ 2553.591958] dump_stack+0x107/0x167 [ 2553.592351] should_fail.cold+0x5/0xa [ 2553.592766] __alloc_pages_nodemask+0x182/0x600 [ 2553.593265] ? stack_trace_consume_entry+0x160/0x160 [ 2553.593821] ? __alloc_pages_slowpath.constprop.0+0x2130/0x2130 [ 2553.594470] ? kmem_cache_alloc+0x301/0x310 [ 2553.594933] alloc_pages_current+0x187/0x280 [ 2553.595400] ? tun_rx_batched.isra.0+0x462/0x710 [ 2553.595908] allocate_slab+0x26f/0x380 [ 2553.596332] ___slab_alloc+0x470/0x700 [ 2553.596750] ? create_object.isra.0+0x3a/0xa20 [ 2553.597235] ? perf_trace_lock+0xac/0x490 [ 2553.597681] ? SOFTIRQ_verbose+0x10/0x10 [ 2553.598138] ? create_object.isra.0+0x3a/0xa20 [ 2553.598625] ? kmem_cache_alloc+0x301/0x310 [ 2553.599100] kmem_cache_alloc+0x301/0x310 [ 2553.599561] create_object.isra.0+0x3a/0xa20 [ 2553.600047] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 2553.600602] kmem_cache_alloc+0x159/0x310 [ 2553.601065] dst_alloc+0x9e/0x610 [ 2553.601453] rt_dst_alloc+0x73/0x440 [ 2553.601876] ip_route_input_slow+0x16f6/0x3050 [ 2553.602379] ? SOFTIRQ_verbose+0x10/0x10 [ 2553.602823] ? fib_multipath_hash+0x940/0x940 [ 2553.603332] ? lock_release+0x680/0x680 [ 2553.603771] ? lock_acquire+0x197/0x470 [ 2553.604210] ? find_held_lock+0x2c/0x110 [ 2553.604676] ip_route_input_noref+0x117/0x2f0 [ 2553.605169] ? ip_route_input_slow+0x3050/0x3050 [ 2553.605697] ? nf_hook_slow+0xfc/0x1e0 [ 2553.606131] ? nf_hook.constprop.0+0x146/0x500 [ 2553.606627] ? ip_list_rcv_finish.constprop.0+0x590/0x590 [ 2553.607219] ip_rcv_finish_core.constprop.0+0x7b4/0x1c90 [ 2553.607818] ip_rcv_finish+0x4f/0x1e0 [ 2553.608239] ip_rcv+0xae/0xd0 [ 2553.608587] ? ip_local_deliver+0x200/0x200 [ 2553.609063] __netif_receive_skb_one_core+0x19b/0x1f0 [ 2553.609619] ? __netif_receive_skb_core+0x3780/0x3780 [ 2553.610182] ? __lock_acquire+0xbb1/0x5b00 [ 2553.610649] __netif_receive_skb+0x27/0x1d0 [ 2553.611123] netif_receive_skb+0x12d/0x710 [ 2553.611586] ? __netif_receive_skb+0x1d0/0x1d0 [ 2553.612087] ? SOFTIRQ_verbose+0x10/0x10 [ 2553.612539] ? __lockdep_reset_lock+0x180/0x180 [ 2553.613049] tun_rx_batched.isra.0+0x462/0x710 [ 2553.613555] ? lock_acquire+0x197/0x470 [ 2553.614009] ? tun_get_user+0xee3/0x32f0 [ 2553.614457] ? tun_sock_write_space+0x1d0/0x1d0 [ 2553.614970] ? lock_release+0x680/0x680 [ 2553.615413] ? tun_get_user+0x16e6/0x32f0 [ 2553.615863] ? lock_downgrade+0x6d0/0x6d0 [ 2553.616315] ? eth_type_trans+0x2ad/0x5b0 [ 2553.616775] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 2553.617351] tun_get_user+0x191d/0x32f0 [ 2553.617800] ? usage_accumulate+0x110/0x110 [ 2553.618290] ? tun_build_skb+0xfe0/0xfe0 [ 2553.618736] ? tun_device_event+0x990/0x1160 [ 2553.619223] ? perf_trace_lock+0xac/0x490 [ 2553.619667] ? SOFTIRQ_verbose+0x10/0x10 [ 2553.620115] tun_chr_write_iter+0xe1/0x1e0 [ 2553.620585] new_sync_write+0x42c/0x660 [ 2553.621031] ? new_sync_read+0x6f0/0x6f0 [ 2553.621481] ? _cond_resched+0x12/0x80 [ 2553.621926] ? avc_policy_seqno+0x9/0x70 [ 2553.622371] ? selinux_file_permission+0x92/0x520 [ 2553.622896] ? __fget_files+0x296/0x4c0 [ 2553.623341] vfs_write+0x747/0xa70 [ 2553.623736] ksys_write+0x12d/0x260 [ 2553.624140] ? __ia32_sys_read+0xb0/0xb0 [ 2553.624580] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 2553.625157] ? syscall_enter_from_user_mode+0x1d/0x50 [ 2553.625739] do_syscall_64+0x33/0x40 [ 2553.626151] entry_SYSCALL_64_after_hwframe+0x62/0xc7 [ 2553.626706] RIP: 0033:0x7f6e6cf425ff [ 2553.627119] Code: 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 99 fd ff ff 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 b8 01 00 00 00 0f 05 <48> 3d 00 f0 ff ff 77 31 44 89 c7 48 89 44 24 08 e8 cc fd ff ff 48 [ 2553.629105] RSP: 002b:00007f6e6a505150 EFLAGS: 00000293 ORIG_RAX: 0000000000000001 [ 2553.629943] RAX: ffffffffffffffda RBX: 00007f6e6d0a2f60 RCX: 00007f6e6cf425ff [ 2553.630709] RDX: 000000000000003a RSI: 0000000020000000 RDI: 00000000000000f0 [ 2553.631483] RBP: 00007f6e6a5051d0 R08: 0000000000000000 R09: 0000000000000000 [ 2553.632242] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000001 [ 2553.633012] R13: 00007fffc51a6e8f R14: 00007f6e6a505300 R15: 0000000000022000 05:34:29 executing program 0: perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_emit_ethernet(0x36, &(0x7f0000000000)={@local, @remote, @void, {@ipv4={0x800, @tcp={{0x5, 0x4, 0x0, 0x0, 0x28, 0x0, 0x0, 0x0, 0x32, 0x0, @dev, @private=0xa010100}, {{0x0, 0x0, 0x41424344, 0x41424344, 0x0, 0x7, 0x5}}}}}}, 0x0) ioctl$BTRFS_IOC_BALANCE(0xffffffffffffffff, 0x5000940c, 0x0) close(0xffffffffffffffff) 05:34:29 executing program 3: r0 = perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x0, 0x3}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) pread64(0xffffffffffffffff, 0x0, 0x7ffffffff000, 0xf0ff1f00000000) bind$inet6(0xffffffffffffffff, &(0x7f0000000040)={0xa, 0x4e23, 0x0, @remote, 0xffff}, 0x1c) r1 = socket$netlink(0x10, 0x3, 0x0) sendmsg$nl_generic(0xffffffffffffffff, 0x0, 0x41) setsockopt$netlink_NETLINK_BROADCAST_ERROR(r1, 0x10e, 0x4, &(0x7f00000000c0)=0x1000, 0x4) sendmsg$nl_generic(r1, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000100)=ANY=[@ANYBLOB="28000000100001000000000000000000000000000500000024386a562b500000000c00008008000d00ac141400"], 0x28}}, 0x0) chdir(&(0x7f00000001c0)='./file0\x00') r2 = syz_open_dev$mouse(&(0x7f0000000400), 0x7fffffff, 0x2d0401) sendmsg$NL80211_CMD_ADD_NAN_FUNCTION(r2, &(0x7f0000000500)={&(0x7f0000000440)={0x10, 0x0, 0x0, 0x10}, 0xc, &(0x7f00000004c0)={&(0x7f00000002c0)={0x20, 0x0, 0x100, 0x70bd2b, 0x25dfdbfd, {{}, {@void, @val={0xc, 0x99, {0x3, 0x1b}}}}}, 0x20}, 0x1, 0x0, 0x0, 0x95}, 0x40000) ioctl$FICLONE(r2, 0x40049409, r0) r3 = open$dir(&(0x7f0000000000)='.\x00', 0x0, 0x0) perf_event_open(&(0x7f0000001d80)={0x6, 0x80, 0x0, 0x0, 0x0, 0x0, 0x4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffd, 0x0, @perf_bp={0x0, 0xffffffff81000000}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffd}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r4 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000040)='/proc/crypto\x00', 0x0, 0x0) r5 = openat2(r3, &(0x7f0000000180)='./file0\x00', &(0x7f0000000200)={0x800, 0x1b9}, 0x18) setsockopt$SO_TIMESTAMPING(r5, 0x1, 0x25, &(0x7f0000000240)=0x7100, 0x4) pread64(r4, &(0x7f00000010c0)=""/4088, 0xff8, 0x0) writev(0xffffffffffffffff, &(0x7f00000003c0)=[{&(0x7f0000000000)="0000abe02400030021206cda3b5e5672b89aeddb2a535fbd0706006dff0043a9d7cceb232fb81bf74ebdd05b7677", 0x2e}, {&(0x7f0000000680)}], 0x2) 05:34:29 executing program 2: preadv2(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x2) openat(0xffffffffffffff9c, 0x0, 0x0, 0x0) r0 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x105142, 0x62) r1 = openat(0xffffffffffffff9c, 0x0, 0x0, 0x0) fallocate(r1, 0x0, 0x0, 0x8800000) lseek(0xffffffffffffffff, 0x0, 0x0) openat(0xffffffffffffffff, 0x0, 0x0, 0x20) ioctl$FS_IOC_RESVSP(0xffffffffffffffff, 0x40305828, 0x0) faccessat2(0xffffffffffffffff, 0x0, 0x0, 0x0) openat(0xffffffffffffffff, 0x0, 0x1a340, 0x100) ioctl$LOOP_CTL_REMOVE(0xffffffffffffffff, 0x4c81, 0x0) r2 = fsmount(0xffffffffffffffff, 0x0, 0x0) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r3 = openat(r2, &(0x7f0000000000)='/proc/self/exe\x00', 0x4840, 0x2d) sendfile(r0, r3, 0x0, 0x100000001) (fail_nth: 37) 05:34:29 executing program 4: perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_emit_ethernet(0x3a, &(0x7f0000000000)={@local, @remote, @void, {@ipv4={0x800, @tcp={{0x6, 0x4, 0x0, 0x0, 0x2c, 0x0, 0x0, 0x0, 0x32, 0x0, @dev, @private=0xa010100, {[@lsrr={0x83, 0x5}]}}, {{0x0, 0x0, 0x41424344, 0x41424344, 0x0, 0x7, 0x5}}}}}}, 0x0) (fail_nth: 8) openat$cgroup_devices(0xffffffffffffffff, 0x0, 0x2, 0x0) close(0xffffffffffffffff) pread64(0xffffffffffffffff, 0x0, 0x0, 0x2000) 05:34:29 executing program 1: perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_emit_ethernet(0x3a, &(0x7f0000000000)={@local, @remote, @void, {@ipv4={0x800, @tcp={{0x6, 0x4, 0x0, 0x0, 0x2c, 0x0, 0x0, 0x0, 0x32, 0x0, @dev, @private=0xa010100, {[@lsrr={0x83, 0x5}]}}, {{0x0, 0x0, 0x41424344, 0x41424344, 0x0, 0x7, 0x5}}}}}}, 0x0) 05:34:29 executing program 7: syz_emit_ethernet(0x32, &(0x7f0000000040)=ANY=[@ANYBLOB="aaaaaaaaaaaaaaaaaaaaaabb08f9460000240000000002029078ac1414aa0a010102860800000000040000009078ffffffff"], 0x0) syz_extract_tcp_res$synack(&(0x7f0000000000), 0x1, 0x0) 05:34:29 executing program 6: perf_event_open(&(0x7f0000001d80)={0x2, 0x80, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_emit_ethernet(0x32, &(0x7f0000000040)={@local, @remote, @void, {@ipv4={0x800, @igmp={{0x7, 0x4, 0x0, 0x0, 0x24, 0x0, 0x0, 0x0, 0x2, 0x0, @local, @private=0xa010102, {[@cipso={0x86, 0x8, 0x0, [{0x0, 0x2}]}]}}, {0x0, 0x0, 0x0, @broadcast}}}}}, 0x0) r0 = openat$procfs(0xffffffffffffff9c, &(0x7f00000014c0)='/proc/bus/input/devices\x00', 0x0, 0x0) pread64(r0, &(0x7f0000000040)=""/4126, 0x101e, 0x2000) r1 = fork() move_pages(r1, 0x1, &(0x7f0000000100)=[&(0x7f0000ffa000/0x1000)=nil], 0x0, 0x0, 0x0) sendmsg$nl_generic(r0, &(0x7f00000016c0)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x20}, 0xc, &(0x7f0000001680)={&(0x7f0000000080)={0x15f4, 0x10, 0x400, 0x70bd2c, 0x25dfdbfe, {0x3}, [@nested={0x1e8, 0x7d, 0x0, 0x1, [@typed={0x8, 0x19, 0x0, 0x0, @pid=r1}, @typed={0x14, 0x54, 0x0, 0x0, @ipv6=@mcast1}, @generic="4428cda0c064addd1bb152a7c03ffb3a885048e89a6edb2a1b2f8df2680ba5fcf9c36abd0d403ac99db940640cb069046f6d181487db71e98960fea57a9fc627e7a674d04900817b9ce867a5a05a2556742420aa991fe2ef43d5132504d4765c6f471d925b88a5f06057d5da096495141027bdee702d87117ac93e633048d386741e9fcb8944f81b99eb63fa551f74", @typed={0x75, 0x1b, 0x0, 0x0, @binary="e2cbaa402bf6a41272e1308dae310dd38761b628b1c669bd98e47ee067ec556a8541053d6c3083c9ca054ad78b36c554dac9d00cd236f49d0c722d0576d960e102af61c8eb876f70449e01dfbd01ef4dd22db5b486a52de6c6d205171cbc668bb51cae3eeca0a462652f7c700c1ffbb3e0"}, @generic="e0057cb88d9af71433914f067ce279cc0203362aa74f714b8410324ebbc12b7b6dfdd820ffbeaeb1d670ad2bade0061fa26a4b6d87392739162ad5a79b0db517a8f9198c3340e661dd1ed13b41b6462039babb23de9da862edcbcdbe87b08b7c9e14225ec5a504b1c8aad8b6a267b805d111f45aaa1742c1b2a595695e53b948aa", @generic="f5003cf0695a2019706e91cf44a6ea2da0b24a68064c58385d862a489e6aecea30e18ddfd2ff6d91cf658ef669625e2d26f03018", @typed={0xc, 0xf, 0x0, 0x0, @u64=0x1}]}, @nested={0x112c, 0x1, 0x0, 0x1, [@generic="6754ae4118c0e718467d80e3bcd318cb992a36f507fb2bccba63e283d066f8985be022bc6a33167eb6bf0905b5e05374773b415681f3d04077e2c05dbc8a5c5acc793ea1ed4ec989ce8fd0224b0a836d40a04fd2cd369339fb1abfa0acc38d18c8b074dac66387234c3402ba6c4eb97c284764ecc3db55d80ca7f6a8e5938d211d190bc392fe2e", @generic="e53e0e2b9acbf971c9b84a1a498ade4fecfc7fe569be7914dc25107fcd8dad82dde40b15e83c516cbd5004c78a91abb528d1dd67e191c480778d958f3c686389da7176c5706ddac3b4a8a4a4bda32710dd4a88b668e8379581a2f6237c6797e96fa8ef2f934863418d04457d9d4173ca2ef0257bb26b96b856cfec0cfc6ca5121d66c2ec4190531194da37bcd35af9760a2e14caa7", @typed={0xc, 0x24, 0x0, 0x0, @u64=0x1}, @generic="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"]}, @nested={0x2ca, 0x5b, 0x0, 0x1, [@generic="c60ba10790904e3f9fdc4d8e2fe161f0d9a9d06a65d2b05c5e499d3cf90d3cc23c8a8d323a116e25b3d8ac4aeb436083eb63e759112529f99bf68b55b434a8c7a4eb7ed75c4cd47bee586ab2e50a00646e0f7e7380cf8e3a670dda0d97a1baa024d470b9a533fb11d27029e1ecbeb9", @generic="6336228133f4271e257326aabc0ca50416a6983098f25d26d188cb81fca0fde22e6da747e182bf978b4af02a208e33963e81ce94e7105f7ddb62c0de6d9de4d4a10b80b65387bdf85cc7aa7da9f75d2bebe451c157a58d522d1ff2129c716bd288fa1ce3", @typed={0x14, 0x82, 0x0, 0x0, @ipv6=@ipv4={'\x00', '\xff\xff', @multicast2}}, @generic="3d77ae6458e2f508193b5e72290bd65e6cf3a8c9a742229d941896a84c9a23611fd4bbb75d4a8607f9fa1f65f932766844e76e87d73caf21f0755dd87c1a1651856169cd185605c8187c338448ea8116250a9d68e2f787fb7e2b9f3c7dd07191234ee52894f4f321d5429a3062570c6f53354c7c516dd4f87337e6e5ba8c85dbbae8e03967f7d4924221a3396cea7cce3d3dee72420d3d78cb5fa9b3a931e196661f54eb48616326b7022432544701cee89a6e24961b63840b5b384aec1166011267024c07c03ca7d70bab72eba40e4873ca23e1fc9860351710fa97820ac851", @typed={0x8, 0x1b, 0x0, 0x0, @pid}, @typed={0x8, 0xb, 0x0, 0x0, @ipv4=@empty}, @generic="2e9a536f5df1768ae703ec0e3fc5bc5aed999891da211196bc44a06a55c5fe59e55f1fb1f4663a1bed3ac144387fcbfc1ac03c557dd54f9e5dc0de25dbce4ec8723de36fcd5cfa0a7c0de8f691d88d3a64434a7d2df1ce3a22bea685feda009d3e8e869c312d6f6826f83971e5a5db705b7ad2dbe513d963ba2c764a2bc0b097ab4ba1c47b5db35eaea244a24cb86be9e3245825d947a3ba101dd054dd4ada102fa6ea87dab5a39128dbb3b9bbd8d22b7c8cf1740820f029071135d9807e29c2f026524c532e977fd1948aceb8197a4bce0fed7499eec161617c47c551a6e6b5e1b99d", @typed={0xc, 0x4c, 0x0, 0x0, @u64=0x7}]}]}, 0x15f4}, 0x1, 0x0, 0x0, 0x44804}, 0x0) 05:34:29 executing program 5: syz_open_dev$tty20(0xc, 0x4, 0x0) syz_emit_ethernet(0x32, &(0x7f0000000040)=ANY=[@ANYBLOB="aaaaaaaaaaaaaaaaaaaabb080047000024005f0000000200009078ffffffff"], 0x0) [ 2577.159540] netlink: 8 bytes leftover after parsing attributes in process `syz-executor.3'. [ 2577.165350] FAULT_INJECTION: forcing a failure. [ 2577.165350] name failslab, interval 1, probability 0, space 0, times 0 [ 2577.167735] CPU: 1 PID: 11671 Comm: syz-executor.4 Not tainted 5.10.204 #1 [ 2577.169145] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 2577.170854] Call Trace: [ 2577.171430] dump_stack+0x107/0x167 [ 2577.172283] should_fail.cold+0x5/0xa [ 2577.173077] ? create_object.isra.0+0x3a/0xa20 [ 2577.174034] should_failslab+0x5/0x20 [ 2577.174816] kmem_cache_alloc+0x5b/0x310 [ 2577.175673] create_object.isra.0+0x3a/0xa20 [ 2577.176597] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 2577.177664] kmem_cache_alloc+0x159/0x310 [ 2577.178540] dst_alloc+0x9e/0x610 [ 2577.179269] rt_dst_alloc+0x73/0x440 [ 2577.180046] ip_route_output_key_hash_rcu+0x93d/0x2a90 [ 2577.181143] ip_route_output_key_hash+0x18d/0x340 [ 2577.182162] ? ip_route_output_key_hash_rcu+0x2a90/0x2a90 [ 2577.183328] icmp_route_lookup.constprop.0+0x349/0x11a0 [ 2577.184443] ? __lockdep_reset_lock+0x180/0x180 [ 2577.185426] ? icmp_timestamp+0x240/0x240 [ 2577.186296] ? memset+0x20/0x50 [ 2577.186987] ? __ip_options_echo+0x6f8/0x11a0 [ 2577.187921] ? lock_downgrade+0x6d0/0x6d0 [ 2577.188787] ? ip_options_build+0x780/0x780 [ 2577.189701] ? do_raw_spin_lock+0x260/0x260 [ 2577.190628] __icmp_send+0xa34/0x14d0 [ 2577.191448] ? icmp_route_lookup.constprop.0+0x11a0/0x11a0 [ 2577.192610] ? __lockdep_reset_lock+0x180/0x180 [ 2577.193581] ? find_held_lock+0x2c/0x110 [ 2577.194470] ? ip_route_input_noref+0x160/0x2f0 [ 2577.195450] ip_options_compile+0xad/0xf0 [ 2577.196313] ? __ip_options_compile+0x15d0/0x15d0 [ 2577.197316] ? ip_list_rcv_finish.constprop.0+0x590/0x590 [ 2577.198463] ip_rcv_finish_core.constprop.0+0x4fb/0x1c90 [ 2577.199589] ip_rcv_finish+0x4f/0x1e0 [ 2577.200382] ip_rcv+0xae/0xd0 [ 2577.201032] ? ip_local_deliver+0x200/0x200 [ 2577.201944] __netif_receive_skb_one_core+0x19b/0x1f0 [ 2577.203009] ? __netif_receive_skb_core+0x3780/0x3780 [ 2577.204069] ? __lock_acquire+0xbb1/0x5b00 [ 2577.204961] __netif_receive_skb+0x27/0x1d0 [ 2577.205856] netif_receive_skb+0x12d/0x710 [ 2577.206757] ? __netif_receive_skb+0x1d0/0x1d0 [ 2577.207700] ? SOFTIRQ_verbose+0x10/0x10 [ 2577.208580] ? __lockdep_reset_lock+0x180/0x180 05:34:29 executing program 7: syz_emit_ethernet(0x32, &(0x7f0000000040)=ANY=[@ANYBLOB="aaaaaaaabb0800470000240000000000029078ac1414aa0a010102860000000000000200009078ffffffff00000000000000"], 0x0) syz_emit_ethernet(0x1e, &(0x7f0000000000)={@multicast, @remote, @void, {@can={0xc, {{0x3, 0x1}, 0x2, 0x1, 0x0, 0x0, "28af07eecb4e6d16"}}}}, &(0x7f0000000080)={0x1, 0x2, [0x7df, 0x8d3, 0x853, 0x4f2]}) syz_emit_ethernet(0x42, &(0x7f00000001c0)=ANY=[@ANYBLOB="aaaaaaaaaabbffffffffffff0806000186dd061000040180c2000001ff010000000000000000000000200001aaaaaaaaaa3100"/66], &(0x7f0000000240)={0x9, 0x2, [0x2d1, 0xfb9, 0x23c, 0x60b]}) syz_emit_ethernet(0x8f, &(0x7f00000000c0)={@random="9e9591fea5f2", @broadcast, @void, {@llc_tr={0x11, {@llc={0x46, 0xf8, 'i', "4b11b63d7ea58dcaf0ac4a3ad91a1c1518b017f4b3972e5139798bd27879a71029555a8bc3485162159b9a5066ef7fde79e38a52eba1cc0f5a1490db4691ac3f3330216ce72bd101d987e5b5f8917be1e1fd654a21a37ca690b226b79802a8cc11ec0cb5911f5bd3e3c6fe03deb226be16033864bcae4669e0a4bd9c289b"}}}}}, &(0x7f0000000180)={0x1, 0x4, [0x8ea, 0xe9e, 0xfe5, 0xb3e]}) write$tun(0xffffffffffffffff, &(0x7f0000000280)={@void, @val={0x3, 0x80, 0x7, 0x3, 0xbd9, 0x800}, @ipv6=@tipc_packet={0x0, 0x6, "d0f399", 0x463, 0x6, 0x1, @initdev={0xfe, 0x88, '\x00', 0x1, 0x0}, @mcast2, {[@srh={0x2e, 0x2, 0x4, 0x1, 0xff, 0x40, 0x1, [@ipv4={'\x00', '\xff\xff', @remote}]}, @srh={0x88, 0xc, 0x4, 0x6, 0x2, 0x38, 0x7, [@private1, @private0, @private1, @private0={0xfc, 0x0, '\x00', 0x1}, @private1, @mcast1]}, @srh={0x87, 0xa, 0x4, 0x5, 0x81, 0x28, 0x40, [@mcast2, @local, @private2, @loopback, @private2={0xfc, 0x2, '\x00', 0x1}]}, @dstopts={0x71, 0xb, '\x00', [@calipso={0x7, 0x58, {0x1, 0x14, 0x0, 0x0, [0x0, 0x2, 0x9, 0xe6d, 0x8, 0x4d, 0x0, 0x5f6, 0x100000000, 0x1f]}}]}, @dstopts={0x6, 0x3, '\x00', [@pad1, @pad1, @hao={0xc9, 0x10, @private0}, @pad1]}, @routing={0x3b, 0x8, 0x0, 0x0, 0x0, [@mcast1, @rand_addr=' \x01\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x02', @loopback, @private2={0xfc, 0x2, '\x00', 0x1}]}, @hopopts={0x87, 0xf, '\x00', [@padn={0x1, 0x1, [0x0]}, @padn={0x1, 0x5, [0x0, 0x0, 0x0, 0x0, 0x0]}, @jumbo={0xc2, 0x4, 0x5}, @calipso={0x7, 0x10, {0x1, 0x2, 0x0, 0xe83, [0x29a]}}, @generic={0x1, 0x3a, "01c82a90ba6912d1ff94460996843c623bab9cf666c9f90a0f22b6b7f36fd43bc22d5c61c1fa8125ffc42d76cc359588d194d5f62994b9ca528a"}, @ra={0x5, 0x2, 0x8675}, @ra={0x5, 0x2, 0xfffa}, @generic={0x2}, @hao={0xc9, 0x10, @initdev={0xfe, 0x88, '\x00', 0x1, 0x0}}]}, @srh={0x62, 0xa, 0x4, 0x5, 0x40, 0x20, 0x13e, [@empty, @ipv4={'\x00', '\xff\xff', @initdev={0xac, 0x1e, 0x1, 0x0}}, @mcast2, @remote, @rand_addr=' \x01\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x01']}, @hopopts={0x33, 0x20, '\x00', [@padn={0x1, 0x3, [0x0, 0x0, 0x0]}, @jumbo={0xc2, 0x4, 0x20}, @ra={0x5, 0x2, 0xebc}, @calipso={0x7, 0x18, {0x2, 0x4, 0x88, 0x4, [0x4, 0x9]}}, @hao={0xc9, 0x10, @mcast1}, @enc_lim={0x4, 0x1, 0x5}, @enc_lim={0x4, 0x1, 0x81}, @generic={0x20, 0xba, "c41b2a1c9be2f183855b116270a0c439045a7c89c2f57e0c2b180f9a36de1ba28739abb9bd141a5c045a2dd8a730dba18926377f3c9a5f0c2b06e1f9f772bd2600be0db662ee0f61df605b74b775a5d33edb19c8c8eebb62185bd41784477624edd9a00a6001181c6d8aa08d6e8e5c7b675400bfe0d2525af651ae8457d221cb95437187c5990f44e748b84cc2cee4e8953f36804984ce5552d28d7f8db296a1d7a25ec6d81ad74e40ada00509f3fb2487ba90fc829339b7fa52"}, @padn={0x1, 0x1, [0x0]}, @padn={0x1, 0x3, [0x0, 0x0, 0x0]}]}, @dstopts={0x2c, 0x12, '\x00', [@padn={0x1, 0x4, [0x0, 0x0, 0x0, 0x0]}, @hao={0xc9, 0x10, @private1}, @hao={0xc9, 0x10, @mcast2}, @generic={0x80, 0x4b, "3ed4412bb6847d23b350558680dc76e51340520c67f86f637e0c4a92ec248278267b74568d36a572016706f45c823c1c14d8d337f0391b589cbb3bbf6fe5111cc2c4f8866371888283cfde"}, @pad1, @ra={0x5, 0x2, 0x1f}, @jumbo={0xc2, 0x4, 0x7fffffff}, @hao={0xc9, 0x10, @empty}]}], @payload_direct={{{{0x23, 0x0, 0x0, 0x1, 0x1, 0x8, 0x3, 0x2, 0x5, 0x0, 0x0, 0xf, 0x2, 0x3, 0x200, 0xef9, 0x3, 0x4e24, 0x4e22}, 0x2, 0x1}}, [0x0, 0x0, 0x0]}}}}, 0x495) [ 2577.209546] tun_rx_batched.isra.0+0x462/0x710 [ 2577.210708] ? lock_acquire+0x197/0x470 [ 2577.211506] ? tun_get_user+0xee3/0x32f0 [ 2577.212379] ? tun_sock_write_space+0x1d0/0x1d0 [ 2577.213373] ? lock_release+0x680/0x680 [ 2577.214198] ? tun_get_user+0x16e6/0x32f0 [ 2577.215048] ? lock_downgrade+0x6d0/0x6d0 [ 2577.215898] ? eth_type_trans+0x2ad/0x5b0 [ 2577.216759] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 2577.217842] tun_get_user+0x191d/0x32f0 [ 2577.218666] ? usage_accumulate+0x110/0x110 [ 2577.219573] ? tun_build_skb+0xfe0/0xfe0 [ 2577.220420] ? tun_device_event+0x990/0x1160 [ 2577.221318] ? perf_trace_lock+0xac/0x490 [ 2577.222304] ? SOFTIRQ_verbose+0x10/0x10 [ 2577.223304] tun_chr_write_iter+0xe1/0x1e0 05:34:29 executing program 5: syz_emit_ethernet(0x32, &(0x7f0000000040)={@local, @remote, @void, {@ipv4={0x800, @igmp={{0x7, 0x4, 0x0, 0x0, 0x24, 0x0, 0x0, 0x0, 0x2, 0x0, @local, @dev={0xac, 0x14, 0x14, 0x1e}, {[@cipso={0x86, 0x8, 0x0, [{0x0, 0x2}]}]}}, {0x0, 0x0, 0x0, @broadcast}}}}}, 0x0) r0 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000000)='/proc/key-users\x00', 0x0, 0x0) write$tun(r0, &(0x7f0000002300)={@void, @void, @llc={@snap={0x0, 0xab, 'T,', "e80818", 0xf6, "a9458b0628121ca15c39c4438c16200459134e836e384b0f42a317525c044b72ae7fa3df83d46b724d8be8a5a9a60cf59fc5dae43cad6782d602d2249032c730733a25e258beccdd841997fb1866a29b746319da26286153211b7daa88a4ab05eb6643"}}}, 0x6c) [ 2577.224306] new_sync_write+0x42c/0x660 [ 2577.225216] ? new_sync_read+0x6f0/0x6f0 [ 2577.226063] ? _cond_resched+0x12/0x80 [ 2577.226868] ? avc_policy_seqno+0x9/0x70 [ 2577.227701] ? selinux_file_permission+0x92/0x520 [ 2577.228743] ? __fget_files+0x296/0x4c0 [ 2577.229583] vfs_write+0x747/0xa70 [ 2577.230407] ksys_write+0x12d/0x260 [ 2577.231138] ? __ia32_sys_read+0xb0/0xb0 [ 2577.232044] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 2577.233107] ? syscall_enter_from_user_mode+0x1d/0x50 [ 2577.234254] do_syscall_64+0x33/0x40 [ 2577.235001] entry_SYSCALL_64_after_hwframe+0x62/0xc7 write$tun(0xffffffffffffffff, &(0x7f0000000080)={@val={0x0, 0x88be}, @val={0x1, 0x3, 0x2, 0x4, 0x6, 0x4e}, @ipv6=@gre_packet={0x3, 0x6, 't$H', 0x2218, 0x2f, 0x1, @loopback, @empty, {[@dstopts={0x0, 0x5, '\x00', [@hao={0xc9, 0x10, @rand_addr=' \x01\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x01'}, @jumbo={0xc2, 0x4, 0x3ff}, @hao={0xc9, 0x10, @ipv4={'\x00', '\xff\xff', @multicast2}}]}, @dstopts={0x3c, 0x3, '\x00', [@ra, @enc_lim={0x4, 0x1, 0x80}, @hao={0xc9, 0x10, @initdev={0xfe, 0x88, '\x00', 0x0, 0x0}}]}, @dstopts={0x2c, 0x0, '\x00', [@ra={0x5, 0x2, 0x9}]}], {{0x0, 0x0, 0x1, 0x0, 0x0, 0x1, 0x0, 0x1, 0x880b, 0xec, 0x0, [], "ce541947df504e61f92b351e44230ff27b5b5232ee8498a83191238c4ad682e0858d57abc6edfa1b5ce1586e86a932fea8790d507681ff86a9e609343ae003f52289588a96c0e8e8d6cc1a9b081df4403e0ed557b15a93554b1570b82f9e046bb98c3e0f82d59531066d9ef785a02a9b791ba4f7f9dbc7dfe9a146354edfb10a1a775a8a9b55ec02dc3203307ff07f1e03a470ff8014f6d1fa22ce22ff57ebe0a49f7dd51f09e097d6a62f9e7af8bd702317182cdea9d2bc1baa5b2fb993bb0261c084f914ad4f9462a2cf0725a2981f3332e433c7efb99fc553eff01c2f36e7194525f6fd64cd79f09d2657"}, {0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x800, [0x7, 0x3, 0x8], "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"}, {0x1, 0x0, 0x1, 0x0, 0x0, 0x0, 0x86dd, [0x1], "9d0a690aebeef7d9f9fde0e810ca912a74912f1eefcb08af6dd438c7da273ef13eb754094ebcc7939103d5fadeccc5978491cb2cfcc9ac1e3602fad57bbb283a775455b6cc207e6cd62821c73f1b8daad1867757a46ae327aec8c420be1405276b38bd152881d7d18ec602e57d40c3d9"}, {0x8, 0x88be, 0x0, {{0xf, 0x1, 0xff, 0x1, 0x0, 0x2, 0x5, 0x2}, 0x1, {0x2}}}, {0x8, 0x22eb, 0x2, {{0x0, 0x2, 0x20, 0x0, 0x0, 0x2, 0x6, 0x1}, 0x2, {0xffffffff, 0x7, 0x0, 0x4, 0x1, 0x0, 0x2, 0x1, 0x1}}}, {0x8, 0x6558, 0x1, "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"}}}}}, 0x224e) [ 2577.236064] RIP: 0033:0x7f6e6cf425ff [ 2577.236959] Code: 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 99 fd ff ff 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 b8 01 00 00 00 0f 05 <48> 3d 00 f0 ff ff 77 31 44 89 c7 48 89 44 24 08 e8 cc fd ff ff 48 [ 2577.240705] RSP: 002b:00007f6e6a505150 EFLAGS: 00000293 ORIG_RAX: 0000000000000001 [ 2577.242306] RAX: ffffffffffffffda RBX: 00007f6e6d0a2f60 RCX: 00007f6e6cf425ff [ 2577.243809] RDX: 000000000000003a RSI: 0000000020000000 RDI: 00000000000000f0 [ 2577.245294] RBP: 00007f6e6a5051d0 R08: 0000000000000000 R09: 0000000000000000 [ 2577.246744] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000001 [ 2577.248190] R13: 00007fffc51a6e8f R14: 00007f6e6a505300 R15: 0000000000022000 05:34:29 executing program 1: perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_emit_ethernet(0x3a, &(0x7f0000000000)={@local, @remote, @void, {@ipv4={0x800, @tcp={{0x6, 0x4, 0x0, 0x0, 0x2c, 0x0, 0x0, 0x0, 0x32, 0x0, @dev, @private=0xa010100, {[@lsrr={0x83, 0x5}]}}, {{0x0, 0x0, 0x41424344, 0x41424344, 0x0, 0x7, 0x5}}}}}}, 0x0) 05:34:29 executing program 7: creat(&(0x7f0000000000)='./file0\x00', 0x93) syz_emit_ethernet(0x32, &(0x7f0000000100)=ANY=[@ANYBLOB="aaaaaaaaaaaaaaaaaaaaaabb0800470000240000000000029078ac1414aa0a010102860800000000000200009078ffffffff44ba2862d76d2b2f5bad1000e2f978f39055a57f02222f6fbc0e06bb92a538d44262eb14740030b981f9a37e5c692ebc023df77d978f75ea1e13c6473b3c703d2a78fdee0e35efef6152a3b844b5c99ce6755666"], 0x0) 05:34:30 executing program 2: preadv2(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x2) openat(0xffffffffffffff9c, 0x0, 0x0, 0x0) r0 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x105142, 0x62) r1 = openat(0xffffffffffffff9c, 0x0, 0x0, 0x0) fallocate(r1, 0x0, 0x0, 0x8800000) lseek(0xffffffffffffffff, 0x0, 0x0) openat(0xffffffffffffffff, 0x0, 0x0, 0x20) ioctl$FS_IOC_RESVSP(0xffffffffffffffff, 0x40305828, 0x0) faccessat2(0xffffffffffffffff, 0x0, 0x0, 0x0) openat(0xffffffffffffffff, 0x0, 0x1a340, 0x100) ioctl$LOOP_CTL_REMOVE(0xffffffffffffffff, 0x4c81, 0x0) r2 = fsmount(0xffffffffffffffff, 0x0, 0x0) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r3 = openat(r2, &(0x7f0000000000)='/proc/self/exe\x00', 0x4840, 0x2d) sendfile(r0, r3, 0x0, 0x100000001) 05:34:30 executing program 0: perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_emit_ethernet(0x36, &(0x7f0000000000)={@local, @remote, @void, {@ipv4={0x800, @tcp={{0x5, 0x4, 0x0, 0x0, 0x28, 0x0, 0x0, 0x0, 0x32, 0x0, @dev, @private=0xa010100}, {{0x0, 0x0, 0x41424344, 0x41424344, 0x0, 0x7, 0x5}}}}}}, 0x0) ioctl$BTRFS_IOC_BALANCE(0xffffffffffffffff, 0x5000940c, 0x0) close(0xffffffffffffffff) 05:34:30 executing program 3: r0 = perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x0, 0x3}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) pread64(0xffffffffffffffff, 0x0, 0x7ffffffff000, 0xf0ff1f00000000) bind$inet6(0xffffffffffffffff, &(0x7f0000000040)={0xa, 0x4e23, 0x0, @remote, 0xffff}, 0x1c) r1 = socket$netlink(0x10, 0x3, 0x0) sendmsg$nl_generic(0xffffffffffffffff, 0x0, 0x41) setsockopt$netlink_NETLINK_BROADCAST_ERROR(r1, 0x10e, 0x4, &(0x7f00000000c0)=0x1000, 0x4) sendmsg$nl_generic(r1, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000100)=ANY=[@ANYBLOB="28000000100001000000000000000000000000000500000024386a562b500000000c00008008000d00ac141400"], 0x28}}, 0x0) chdir(&(0x7f00000001c0)='./file0\x00') r2 = syz_open_dev$mouse(&(0x7f0000000400), 0x7fffffff, 0x2d0401) sendmsg$NL80211_CMD_ADD_NAN_FUNCTION(r2, &(0x7f0000000500)={&(0x7f0000000440)={0x10, 0x0, 0x0, 0x10}, 0xc, &(0x7f00000004c0)={&(0x7f00000002c0)={0x20, 0x0, 0x100, 0x70bd2b, 0x25dfdbfd, {{}, {@void, @val={0xc, 0x99, {0x3, 0x1b}}}}}, 0x20}, 0x1, 0x0, 0x0, 0x95}, 0x40000) ioctl$FICLONE(r2, 0x40049409, r0) r3 = open$dir(&(0x7f0000000000)='.\x00', 0x0, 0x0) perf_event_open(&(0x7f0000001d80)={0x6, 0x80, 0x0, 0x0, 0x0, 0x0, 0x4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffd, 0x0, @perf_bp={0x0, 0xffffffff81000000}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffd}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r4 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000040)='/proc/crypto\x00', 0x0, 0x0) r5 = openat2(r3, &(0x7f0000000180)='./file0\x00', &(0x7f0000000200)={0x800, 0x1b9}, 0x18) setsockopt$SO_TIMESTAMPING(r5, 0x1, 0x25, &(0x7f0000000240)=0x7100, 0x4) pread64(r4, &(0x7f00000010c0)=""/4088, 0xff8, 0x0) writev(0xffffffffffffffff, &(0x7f00000003c0)=[{&(0x7f0000000000)="0000abe02400030021206cda3b5e5672b89aeddb2a535fbd0706006dff0043a9d7cceb232fb81bf74ebdd05b7677", 0x2e}, {&(0x7f0000000680)="7fd41c04550300020000000000000000010046e92ed261", 0x17}], 0x2) 05:34:30 executing program 6: syz_emit_ethernet(0x32, &(0x7f0000000040)={@local, @remote, @void, {@ipv4={0x800, @igmp={{0x7, 0x4, 0x0, 0x0, 0x24, 0x0, 0x0, 0x0, 0x2, 0x0, @local, @private=0xa010102, {[@cipso={0x86, 0x8, 0x0, [{0x0, 0x2}]}]}}, {0x0, 0x0, 0x0, @broadcast}}}}}, 0x0) syz_emit_ethernet(0xe2, &(0x7f0000000080)={@remote, @dev={'\xaa\xaa\xaa\xaa\xaa', 0x19}, @val={@void}, {@mpls_mc={0x8848, {[{0x86}, {0x6, 0x0, 0x1}], @generic="ff9a9e2ad16d77dcf2afd510e7d6535e1c19ae0ab05e0a31364f4373500cfd3e8ee1bd7fc93d8f303689392f99e05db44cdc435d3618db93ba289bb80dd54e24ff1d1f67cebd6f458d263e304c6cd28c50559dc7ccf13639435369d23c9f0f537aef378c4a644ecb721a09fd1312fe4aac653bd88b98162572cf9dc00390f2097b7089459f5606b6ef26dc91c254a4831f81323c22b5f31ea80fee1ddd2d84da432df04efa4c650fc4f06dfee9bc5aeb0d0f11f94e4dddb11d053532d6cac8685abe6385a531a70a"}}}}, &(0x7f0000000000)={0x1, 0x1, [0x465, 0xac6, 0xe56, 0x5d4]}) 05:34:30 executing program 5: syz_emit_ethernet(0x32, &(0x7f0000000040)={@local, @remote, @void, {@ipv4={0x800, @igmp={{0x7, 0x4, 0x0, 0x0, 0x24, 0x0, 0x0, 0x0, 0x2, 0x0, @local, @private=0xa010102, {[@cipso={0x86, 0x8, 0x0, [{0x0, 0x2}]}]}}, {0x0, 0x0, 0x0, @broadcast}}}}}, 0x0) r0 = openat$sr(0xffffffffffffff9c, &(0x7f0000000000), 0x280, 0x0) write$tun(r0, &(0x7f0000000080)=ANY=[@ANYBLOB="0004655803250a11060b0088ef444e9073d9754850e35306ab1bc410320180c200000233a2f9d7c0c68947fec11ca86d332e2a"], 0x33) 05:34:30 executing program 4: perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_emit_ethernet(0x3a, &(0x7f0000000000)={@local, @remote, @void, {@ipv4={0x800, @tcp={{0x6, 0x4, 0x0, 0x0, 0x2c, 0x0, 0x0, 0x0, 0x32, 0x0, @dev, @private=0xa010100, {[@lsrr={0x83, 0x5}]}}, {{0x0, 0x0, 0x41424344, 0x41424344, 0x0, 0x7, 0x5}}}}}}, 0x0) (fail_nth: 9) openat$cgroup_devices(0xffffffffffffffff, 0x0, 0x2, 0x0) close(0xffffffffffffffff) pread64(0xffffffffffffffff, 0x0, 0x0, 0x2000) [ 2577.434735] netlink: 8 bytes leftover after parsing attributes in process `syz-executor.3'. 05:34:30 executing program 1: perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_emit_ethernet(0x0, 0x0, 0x0) 05:34:30 executing program 6: lstat(&(0x7f00000000c0)='./file0\x00', &(0x7f0000000100)={0x0, 0x0, 0x0, 0x0, 0x0}) mount$cgroup(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000000080), 0x80, &(0x7f0000000180)={[{@cpuset_v2_mode}, {@none}, {@release_agent={'release_agent', 0x3d, './file0'}}, {}, {@noprefix}, {@cpuset_v2_mode}], [{@euid_eq={'euid', 0x3d, r0}}, {@obj_user={'obj_user', 0x3d, '\xaa\xaa\xaa\xaa\xaa'}}, {@audit}, {@smackfstransmute={'smackfstransmute', 0x3d, '${'}}, {@dont_hash}]}) perf_event_open(&(0x7f0000001d80)={0x2, 0x80, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_emit_ethernet(0x32, &(0x7f0000000040)={@local, @remote, @void, {@ipv4={0x800, @igmp={{0x7, 0x4, 0x0, 0x0, 0x24, 0x0, 0x0, 0x0, 0x2, 0x0, @local, @private=0xa010102, {[@cipso={0x86, 0x8, 0x0, [{0x0, 0x2}]}]}}, {0x0, 0x0, 0x0, @broadcast}}}}}, 0x0) 05:34:30 executing program 0: perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_emit_ethernet(0x36, &(0x7f0000000000)={@local, @remote, @void, {@ipv4={0x800, @tcp={{0x5, 0x4, 0x0, 0x0, 0x28, 0x0, 0x0, 0x0, 0x32, 0x0, @dev, @private=0xa010100}, {{0x0, 0x0, 0x41424344, 0x41424344, 0x0, 0x7, 0x5}}}}}}, 0x0) ioctl$BTRFS_IOC_BALANCE(0xffffffffffffffff, 0x5000940c, 0x0) close(0xffffffffffffffff) [ 2577.526865] FAULT_INJECTION: forcing a failure. [ 2577.526865] name failslab, interval 1, probability 0, space 0, times 0 [ 2577.529214] CPU: 0 PID: 11703 Comm: syz-executor.4 Not tainted 5.10.204 #1 [ 2577.530624] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 2577.532288] Call Trace: [ 2577.532833] dump_stack+0x107/0x167 [ 2577.533590] should_fail.cold+0x5/0xa [ 2577.534380] ? ip_setup_cork+0x6ea/0x930 [ 2577.535425] should_failslab+0x5/0x20 [ 2577.536299] kmem_cache_alloc_trace+0x55/0x320 [ 2577.537412] ? icmp_timestamp+0x240/0x240 [ 2577.538456] ip_setup_cork+0x6ea/0x930 [ 2577.539421] ? icmp_push_reply+0x490/0x490 [ 2577.540455] ip_append_data+0x167/0x1a0 [ 2577.541447] icmp_push_reply+0x13b/0x490 [ 2577.542475] __icmp_send+0xbc9/0x14d0 [ 2577.543446] ? icmp_route_lookup.constprop.0+0x11a0/0x11a0 [ 2577.544808] ? __lockdep_reset_lock+0x180/0x180 [ 2577.545998] ? find_held_lock+0x2c/0x110 [ 2577.547032] ? ip_route_input_noref+0x160/0x2f0 [ 2577.548003] ip_options_compile+0xad/0xf0 [ 2577.548851] ? __ip_options_compile+0x15d0/0x15d0 [ 2577.549840] ? ip_list_rcv_finish.constprop.0+0x590/0x590 [ 2577.551001] ip_rcv_finish_core.constprop.0+0x4fb/0x1c90 [ 2577.552125] ip_rcv_finish+0x4f/0x1e0 [ 2577.552910] ip_rcv+0xae/0xd0 [ 2577.553554] ? ip_local_deliver+0x200/0x200 [ 2577.554447] __netif_receive_skb_one_core+0x19b/0x1f0 [ 2577.555502] ? __netif_receive_skb_core+0x3780/0x3780 [ 2577.556569] ? __lock_acquire+0xbb1/0x5b00 [ 2577.557456] __netif_receive_skb+0x27/0x1d0 [ 2577.558369] netif_receive_skb+0x12d/0x710 [ 2577.559238] ? __netif_receive_skb+0x1d0/0x1d0 [ 2577.560169] ? SOFTIRQ_verbose+0x10/0x10 [ 2577.561014] ? __lockdep_reset_lock+0x180/0x180 [ 2577.561988] tun_rx_batched.isra.0+0x462/0x710 [ 2577.562924] ? lock_acquire+0x197/0x470 [ 2577.563739] ? tun_get_user+0xee3/0x32f0 [ 2577.564575] ? tun_sock_write_space+0x1d0/0x1d0 [ 2577.565530] ? lock_release+0x680/0x680 [ 2577.566357] ? tun_get_user+0x16e6/0x32f0 [ 2577.567208] ? lock_downgrade+0x6d0/0x6d0 [ 2577.568053] ? eth_type_trans+0x2ad/0x5b0 [ 2577.568920] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 2577.570025] tun_get_user+0x191d/0x32f0 [ 2577.570841] ? usage_accumulate+0x110/0x110 [ 2577.571761] ? tun_build_skb+0xfe0/0xfe0 [ 2577.572614] ? tun_device_event+0x990/0x1160 [ 2577.573528] ? SOFTIRQ_verbose+0x10/0x10 [ 2577.574408] tun_chr_write_iter+0xe1/0x1e0 [ 2577.575289] new_sync_write+0x42c/0x660 [ 2577.576107] ? new_sync_read+0x6f0/0x6f0 [ 2577.576946] ? _cond_resched+0x12/0x80 [ 2577.577753] ? avc_policy_seqno+0x9/0x70 [ 2577.578590] ? selinux_file_permission+0x92/0x520 [ 2577.579595] ? __fget_files+0x296/0x4c0 [ 2577.580432] vfs_write+0x747/0xa70 [ 2577.581179] ksys_write+0x12d/0x260 [ 2577.581964] ? __ia32_sys_read+0xb0/0xb0 [ 2577.582829] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 2577.583903] ? syscall_enter_from_user_mode+0x1d/0x50 [ 2577.584974] do_syscall_64+0x33/0x40 [ 2577.585743] entry_SYSCALL_64_after_hwframe+0x62/0xc7 [ 2577.586800] RIP: 0033:0x7f6e6cf425ff [ 2577.587564] Code: 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 99 fd ff ff 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 b8 01 00 00 00 0f 05 <48> 3d 00 f0 ff ff 77 31 44 89 c7 48 89 44 24 08 e8 cc fd ff ff 48 [ 2577.591297] RSP: 002b:00007f6e6a505150 EFLAGS: 00000293 ORIG_RAX: 0000000000000001 [ 2577.592849] RAX: ffffffffffffffda RBX: 00007f6e6d0a2f60 RCX: 00007f6e6cf425ff [ 2577.594326] RDX: 000000000000003a RSI: 0000000020000000 RDI: 00000000000000f0 [ 2577.595775] RBP: 00007f6e6a5051d0 R08: 0000000000000000 R09: 0000000000000000 [ 2577.597223] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000001 [ 2577.598731] R13: 00007fffc51a6e8f R14: 00007f6e6a505300 R15: 0000000000022000 05:34:30 executing program 1: perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_emit_ethernet(0x0, 0x0, 0x0) 05:34:30 executing program 3: r0 = perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x0, 0x3}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) pread64(0xffffffffffffffff, 0x0, 0x7ffffffff000, 0xf0ff1f00000000) bind$inet6(0xffffffffffffffff, &(0x7f0000000040)={0xa, 0x4e23, 0x0, @remote, 0xffff}, 0x1c) r1 = socket$netlink(0x10, 0x3, 0x0) sendmsg$nl_generic(0xffffffffffffffff, 0x0, 0x41) setsockopt$netlink_NETLINK_BROADCAST_ERROR(r1, 0x10e, 0x4, &(0x7f00000000c0)=0x1000, 0x4) sendmsg$nl_generic(r1, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000100)=ANY=[@ANYBLOB="28000000100001000000000000000000000000000500000024386a562b500000000c00008008000d00ac141400"], 0x28}}, 0x0) chdir(&(0x7f00000001c0)='./file0\x00') r2 = syz_open_dev$mouse(&(0x7f0000000400), 0x7fffffff, 0x2d0401) sendmsg$NL80211_CMD_ADD_NAN_FUNCTION(r2, &(0x7f0000000500)={&(0x7f0000000440)={0x10, 0x0, 0x0, 0x10}, 0xc, &(0x7f00000004c0)={&(0x7f00000002c0)={0x20, 0x0, 0x100, 0x70bd2b, 0x25dfdbfd, {{}, {@void, @val={0xc, 0x99, {0x3, 0x1b}}}}}, 0x20}, 0x1, 0x0, 0x0, 0x95}, 0x40000) ioctl$FICLONE(r2, 0x40049409, r0) r3 = open$dir(&(0x7f0000000000)='.\x00', 0x0, 0x0) perf_event_open(&(0x7f0000001d80)={0x6, 0x80, 0x0, 0x0, 0x0, 0x0, 0x4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffd, 0x0, @perf_bp={0x0, 0xffffffff81000000}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffd}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r4 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000040)='/proc/crypto\x00', 0x0, 0x0) r5 = openat2(r3, &(0x7f0000000180)='./file0\x00', &(0x7f0000000200)={0x800, 0x1b9}, 0x18) setsockopt$SO_TIMESTAMPING(r5, 0x1, 0x25, &(0x7f0000000240)=0x7100, 0x4) pread64(r4, &(0x7f00000010c0)=""/4088, 0xff8, 0x0) writev(0xffffffffffffffff, &(0x7f00000003c0)=[{&(0x7f0000000000)="0000abe02400030021206cda3b5e5672b89aeddb2a535fbd0706006dff0043a9d7cceb232fb81bf74ebdd05b7677", 0x2e}, {&(0x7f0000000680)="7fd41c04550300020000000000000000010046e92ed261", 0x17}], 0x2) 05:34:30 executing program 7: r0 = openat$procfs(0xffffffffffffff9c, &(0x7f00000014c0)='/proc/bus/input/devices\x00', 0x0, 0x0) pread64(r0, &(0x7f0000000040)=""/4126, 0x101e, 0x2000) faccessat2(r0, &(0x7f0000000000)='./file0\x00', 0x159, 0x1100) syz_emit_ethernet(0x32, &(0x7f0000000040)={@local, @remote, @void, {@ipv4={0x800, @igmp={{0x7, 0x4, 0x0, 0x0, 0x24, 0x0, 0x0, 0x0, 0x2, 0x0, @local, @private=0xa010102, {[@cipso={0x86, 0x8, 0x0, [{0x0, 0x2}]}]}}, {0x0, 0x0, 0x0, @broadcast}}}}}, 0x0) write$tun(0xffffffffffffffff, &(0x7f0000000080)={@void, @val={0x1, 0x4, 0x3, 0x8001, 0x1, 0x20}, @mpls={[{0x200, 0x0, 0x1}], @ipv4=@udp={{0x24, 0x4, 0x2, 0x4, 0x131, 0x64, 0x0, 0x1, 0x11, 0x0, @rand_addr=0x8, @dev={0xac, 0x14, 0x14, 0x1c}, {[@cipso={0x86, 0x1a, 0x2, [{0x6, 0xa, "f3e7797802609339"}, {0x1, 0x8, "b81192e2cb9c"}, {0x1, 0x2}]}, @timestamp_addr={0x44, 0x1c, 0xb0, 0x1, 0x1, [{@multicast1, 0x3}, {@rand_addr=0x64010101, 0x4}, {@empty, 0x8306}]}, @generic={0x86, 0xa, "8387e681ecd10cd3"}, @lsrr={0x83, 0xb, 0x8f, [@remote, @local]}, @cipso={0x86, 0x2d, 0x1, [{0x0, 0xb, "c615b6f08ae6268dbc"}, {0x0, 0x6, "19c8bcfe"}, {0x5, 0x5, "c70a39"}, {0x2, 0x11, "e29ade211a52f3a994aee368c64e20"}]}, @end]}}, {0x4e23, 0x4e21, 0xa1, 0x0, @opaque="79ddfe8880bebf84d8fcd601ccfc3c89aa7df3747c0fceb8d37a2e68f921a6730b421a8c7afb7dc889d9f48a235d040f8c96fb60c61061bfc966df6e64f958e8a8e321cd4fda9500dcef65089d36aeb8c83075fcb1078354afccbb661715ba3c5afc2eb530863cb5ac2dc1658f071fd90a840bf5f6de7efa9aac259701a633135a74a4f6a55fcd4151f3af7ab3113641d3645de1061dc69fc0"}}}}, 0x13f) write$tun(0xffffffffffffffff, &(0x7f00000001c0)={@val={0x0, 0x22f0}, @val={0x1, 0x1, 0x4, 0x8, 0x5, 0x3e43}, @mpls={[{0x3e, 0x0, 0x1}, {0x1}], @ipv4=@gre={{0x10, 0x4, 0x3, 0x1, 0x23c, 0x64, 0x0, 0x6, 0x2f, 0x0, @remote, @loopback, {[@ssrr={0x89, 0x2b, 0x36, [@private=0xa010102, @loopback, @local, @multicast1, @dev={0xac, 0x14, 0x14, 0x39}, @local, @multicast1, @multicast1, @loopback, @broadcast]}]}}, {{0x0, 0x0, 0x1, 0x1, 0x0, 0x1, 0x0, 0x1, 0x880b, 0xbf, 0x3, [0x5], "71ee700edac99319b76616dac86117930ed3224ba5773d1620d7a993316a2bf045cd4f9beb96ecd8fc81cd47ecb84a31c23f5c30143be916946ac23989ac969decbe32451c1c8e59f6f48e201035e372021cc26dad32025c548d8e538ae220eb1ed076435abda5f2d68f01f2d24b108c49b846f088a4833a02e567035070681d559ec7216d873a301c69e9be512da15133332ed3084b1018f35f93dbdc062efd1c50dcb5c1221a3ab5d370f2297bac286b5368ded88e2abb982f6069ba48cd"}, {0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x800, [0x8, 0x1f], "de28e8af2ac2e2449b729782fdfe186327b517cc01b75cdafa3a2a271d7dfd6ea7330969ad5b9956d8954c6f8340c9bf36debb6d6e5457365cfa277c050e67f377baf6b5668b"}, {0x0, 0x0, 0x1, 0x1, 0x0, 0x0, 0x86dd, [0x590, 0x7], "8cc45f2b387dd788462b3121e5beb65236709277e28f492ca8255456ba9e81d0fe49517080bbc695dae57d21dc69e98bbf0f50266dadf11385d667d341097526fadd48b0cf5cabc5fe8068b715ee3f051d96deba2dcf414792be3b1160c73c4bc84e77cb35d5061ba585bce904f2a91e5821ac9704edeb03f57e9896da8eb9c93c6674e0ca15c35dfc432fb40558cf770b32bd1d22fa4e53f50a1024b197a44d7b703998b1"}, {0x8, 0x88be, 0x3, {{0x8, 0x1, 0x40, 0x0, 0x0, 0x1, 0x2, 0xb8}, 0x1, {0x7}}}, {0x8, 0x22eb, 0x1, {{0xb, 0x2, 0x5, 0x2, 0x1, 0x3, 0x3, 0x1}, 0x2, {0x4, 0x6, 0x1, 0x2, 0x0, 0x0, 0x3, 0x1}}}, {0x8, 0x6558, 0x2, "abfbbc26"}}}}}, 0x252) [ 2577.693802] netlink: 8 bytes leftover after parsing attributes in process `syz-executor.3'. 05:34:30 executing program 5: ioctl$AUTOFS_DEV_IOCTL_CATATONIC(0xffffffffffffffff, 0xc0189379, &(0x7f0000000000)={{0x1, 0x1, 0x18, 0xffffffffffffffff}, './file0\x00'}) ioctl$TIOCL_GETKMSGREDIRECT(r0, 0x541c, &(0x7f0000000080)) syz_emit_ethernet(0x32, &(0x7f0000000040)={@local, @remote, @void, {@ipv4={0x800, @igmp={{0x7, 0x4, 0x0, 0x0, 0x24, 0x0, 0x0, 0x0, 0x2, 0x0, @local, @private=0xa010102, {[@cipso={0x86, 0x8, 0x0, [{0x0, 0x2}]}]}}, {0x0, 0x0, 0x0, @broadcast}}}}}, 0x0) 05:34:30 executing program 6: r0 = perf_event_open(&(0x7f0000001d80)={0x2, 0x80, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_emit_ethernet(0x32, &(0x7f0000000180)=ANY=[@ANYBLOB="aaaaaaaaaaaaaaaaa7aaaabb0800470000240000000000029078ac1414aa0a010102860800000000000200009078ffffffff56bf02888495c389e2371a91f600000000000000040c6b6e2b78114f309d650b80bcd67580d83a639748c55f9513fca5de20a6582de261cd3f7595d726ec6f37e4b7eaee2d511eb1327f37abc728f52e837a5fdcc96d7f4bd37174d7fdcc0d4c525bdda583c491af05083794ff05c37976d95784cd105e28f1ce90652e8e3abb3e7430fd70332f9df5aca3955e40d2a897e5f5c3da69eef21e56969edcd44ce38d0b8dcb0f603ece53eb1facd37a8b707f56e845f42b091d83327a1eba2605b4120c273f287b0bc1856095213402a1b37df8327b757b103e9ec4af09576c6518c1"], 0x0) ioctl$PERF_EVENT_IOC_QUERY_BPF(r0, 0xc008240a, &(0x7f0000000000)={0x7, 0x0, [0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0]}) write$tun(0xffffffffffffffff, &(0x7f0000000040)={@val={0x0, 0x9000}, @void, @arp=@generic={0x303, 0x805, 0x6, 0x1, 0x9, @broadcast, "1a", @local, "262982df5e508cd615aadf88"}}, 0x25) 05:34:30 executing program 1: perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_emit_ethernet(0x0, 0x0, 0x0) 05:34:30 executing program 7: r0 = openat$procfs(0xffffffffffffff9c, &(0x7f00000014c0)='/proc/bus/input/devices\x00', 0x0, 0x0) pread64(r0, &(0x7f0000000040)=""/4126, 0x101e, 0x2000) r1 = open_tree(0xffffffffffffff9c, &(0x7f0000001080)='./file0\x00', 0x80800) ioctl$RTC_UIE_ON(r1, 0x7003) syz_genetlink_get_family_id$nl80211(&(0x7f0000000000), r0) 05:34:30 executing program 4: perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_emit_ethernet(0x3a, &(0x7f0000000000)={@local, @remote, @void, {@ipv4={0x800, @tcp={{0x6, 0x4, 0x0, 0x0, 0x2c, 0x0, 0x0, 0x0, 0x32, 0x0, @dev, @private=0xa010100, {[@lsrr={0x83, 0x5}]}}, {{0x0, 0x0, 0x41424344, 0x41424344, 0x0, 0x7, 0x5}}}}}}, 0x0) (fail_nth: 10) openat$cgroup_devices(0xffffffffffffffff, 0x0, 0x2, 0x0) close(0xffffffffffffffff) pread64(0xffffffffffffffff, 0x0, 0x0, 0x2000) 05:34:30 executing program 1: perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_emit_ethernet(0x3a, &(0x7f0000000000)={@local, @remote, @void, {@ipv4={0x800, @tcp={{0x6, 0x4, 0x0, 0x0, 0x2c, 0x0, 0x0, 0x0, 0x32, 0x0, @dev, @private, {[@lsrr={0x83, 0x5}]}}, {{0x0, 0x0, 0x41424344, 0x41424344, 0x0, 0x7, 0x5}}}}}}, 0x0) [ 2577.916009] FAULT_INJECTION: forcing a failure. [ 2577.916009] name failslab, interval 1, probability 0, space 0, times 0 [ 2577.918407] CPU: 0 PID: 11731 Comm: syz-executor.4 Not tainted 5.10.204 #1 [ 2577.919824] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 2577.921528] Call Trace: [ 2577.922093] dump_stack+0x107/0x167 [ 2577.922868] should_fail.cold+0x5/0xa [ 2577.923664] ? create_object.isra.0+0x3a/0xa20 [ 2577.924619] should_failslab+0x5/0x20 [ 2577.925412] kmem_cache_alloc+0x5b/0x310 [ 2577.926300] create_object.isra.0+0x3a/0xa20 [ 2577.927208] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 2577.928269] kmem_cache_alloc_trace+0x151/0x320 [ 2577.929245] ip_setup_cork+0x6ea/0x930 [ 2577.930086] ? icmp_push_reply+0x490/0x490 [ 2577.931097] ip_append_data+0x167/0x1a0 [ 2577.931977] icmp_push_reply+0x13b/0x490 [ 2577.932878] __icmp_send+0xbc9/0x14d0 [ 2577.933715] ? icmp_route_lookup.constprop.0+0x11a0/0x11a0 [ 2577.934899] ? __lockdep_reset_lock+0x180/0x180 [ 2577.935883] ? find_held_lock+0x2c/0x110 [ 2577.936792] ? ip_route_input_noref+0x160/0x2f0 [ 2577.937768] ip_options_compile+0xad/0xf0 [ 2577.938645] ? __ip_options_compile+0x15d0/0x15d0 [ 2577.939649] ? ip_list_rcv_finish.constprop.0+0x590/0x590 [ 2577.940799] ip_rcv_finish_core.constprop.0+0x4fb/0x1c90 [ 2577.941943] ip_rcv_finish+0x4f/0x1e0 [ 2577.942739] ip_rcv+0xae/0xd0 [ 2577.943391] ? ip_local_deliver+0x200/0x200 [ 2577.944284] __netif_receive_skb_one_core+0x19b/0x1f0 [ 2577.945344] ? __netif_receive_skb_core+0x3780/0x3780 [ 2577.946428] ? __lock_acquire+0xbb1/0x5b00 [ 2577.947327] __netif_receive_skb+0x27/0x1d0 [ 2577.948225] netif_receive_skb+0x12d/0x710 [ 2577.949097] ? __netif_receive_skb+0x1d0/0x1d0 [ 2577.950056] ? SOFTIRQ_verbose+0x10/0x10 [ 2577.950907] ? __lockdep_reset_lock+0x180/0x180 [ 2577.951881] tun_rx_batched.isra.0+0x462/0x710 [ 2577.952818] ? lock_acquire+0x197/0x470 [ 2577.953636] ? tun_get_user+0xee3/0x32f0 [ 2577.954487] ? tun_sock_write_space+0x1d0/0x1d0 [ 2577.955443] ? lock_release+0x680/0x680 [ 2577.956262] ? tun_get_user+0x16e6/0x32f0 [ 2577.957114] ? lock_downgrade+0x6d0/0x6d0 [ 2577.957981] ? eth_type_trans+0x2ad/0x5b0 [ 2577.958853] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 2577.959951] tun_get_user+0x191d/0x32f0 [ 2577.960776] ? usage_accumulate+0x110/0x110 [ 2577.961715] ? tun_build_skb+0xfe0/0xfe0 [ 2577.962592] ? tun_device_event+0x990/0x1160 [ 2577.963515] ? SOFTIRQ_verbose+0x10/0x10 [ 2577.964401] tun_chr_write_iter+0xe1/0x1e0 [ 2577.965303] new_sync_write+0x42c/0x660 [ 2577.966252] ? new_sync_read+0x6f0/0x6f0 [ 2577.967174] ? _cond_resched+0x12/0x80 [ 2577.967992] ? avc_policy_seqno+0x9/0x70 [ 2577.968837] ? selinux_file_permission+0x92/0x520 [ 2577.969849] ? __fget_files+0x296/0x4c0 [ 2577.970717] vfs_write+0x747/0xa70 [ 2577.971473] ksys_write+0x12d/0x260 [ 2577.972223] ? __ia32_sys_read+0xb0/0xb0 [ 2577.973068] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 2577.974153] ? syscall_enter_from_user_mode+0x1d/0x50 [ 2577.975222] do_syscall_64+0x33/0x40 [ 2577.975991] entry_SYSCALL_64_after_hwframe+0x62/0xc7 [ 2577.977026] RIP: 0033:0x7f6e6cf425ff [ 2577.977817] Code: 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 99 fd ff ff 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 b8 01 00 00 00 0f 05 <48> 3d 00 f0 ff ff 77 31 44 89 c7 48 89 44 24 08 e8 cc fd ff ff 48 [ 2577.981713] RSP: 002b:00007f6e6a505150 EFLAGS: 00000293 ORIG_RAX: 0000000000000001 [ 2577.983390] RAX: ffffffffffffffda RBX: 00007f6e6d0a2f60 RCX: 00007f6e6cf425ff [ 2577.984949] RDX: 000000000000003a RSI: 0000000020000000 RDI: 00000000000000f0 [ 2577.986425] RBP: 00007f6e6a5051d0 R08: 0000000000000000 R09: 0000000000000000 [ 2577.987900] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000002 [ 2577.989361] R13: 00007fffc51a6e8f R14: 00007f6e6a505300 R15: 0000000000022000 05:34:45 executing program 1: perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_emit_ethernet(0x3a, &(0x7f0000000000)={@local, @remote, @void, {@ipv4={0x800, @tcp={{0x6, 0x4, 0x0, 0x0, 0x2c, 0x0, 0x0, 0x0, 0x32, 0x0, @dev, @private, {[@lsrr={0x83, 0x5}]}}, {{0x0, 0x0, 0x41424344, 0x41424344, 0x0, 0x7, 0x5}}}}}}, 0x0) 05:34:45 executing program 2: preadv2(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x2) openat(0xffffffffffffff9c, 0x0, 0x0, 0x0) r0 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x105142, 0x62) r1 = openat(0xffffffffffffff9c, 0x0, 0x0, 0x0) fallocate(r1, 0x0, 0x0, 0x8800000) lseek(0xffffffffffffffff, 0x0, 0x0) openat(0xffffffffffffffff, 0x0, 0x0, 0x20) ioctl$FS_IOC_RESVSP(0xffffffffffffffff, 0x40305828, 0x0) faccessat2(0xffffffffffffffff, 0x0, 0x0, 0x0) openat(0xffffffffffffffff, 0x0, 0x1a340, 0x100) ioctl$LOOP_CTL_REMOVE(0xffffffffffffffff, 0x4c81, 0x0) r2 = fsmount(0xffffffffffffffff, 0x0, 0x0) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r3 = openat(r2, &(0x7f0000000000)='/proc/self/exe\x00', 0x4840, 0x2d) sendfile(r0, r3, 0x0, 0x100000002) 05:34:45 executing program 5: syz_emit_ethernet(0x32, &(0x7f0000000080)=ANY=[@ANYBLOB="aaaaaaaaaa0100000000000000631e934700002400b87d1414aa02010100000800000000000200009078ffffffff00000000000000000000005be05d13f7824d2b671aeb72fe7341b1644ff6fa0efb8ed533852e0d20bcdeebec4ecd8fa0374c4b55e4083c1a44be68a8bc6fcd8acb23ca60a3"], 0x0) 05:34:45 executing program 3: r0 = perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x0, 0x3}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) pread64(0xffffffffffffffff, 0x0, 0x7ffffffff000, 0xf0ff1f00000000) bind$inet6(0xffffffffffffffff, &(0x7f0000000040)={0xa, 0x4e23, 0x0, @remote, 0xffff}, 0x1c) r1 = socket$netlink(0x10, 0x3, 0x0) sendmsg$nl_generic(0xffffffffffffffff, 0x0, 0x41) setsockopt$netlink_NETLINK_BROADCAST_ERROR(r1, 0x10e, 0x4, &(0x7f00000000c0)=0x1000, 0x4) sendmsg$nl_generic(r1, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000100)=ANY=[@ANYBLOB="28000000100001000000000000000000000000000500000024386a562b500000000c00008008000d00ac141400"], 0x28}}, 0x0) chdir(&(0x7f00000001c0)='./file0\x00') r2 = syz_open_dev$mouse(&(0x7f0000000400), 0x7fffffff, 0x2d0401) sendmsg$NL80211_CMD_ADD_NAN_FUNCTION(r2, &(0x7f0000000500)={&(0x7f0000000440)={0x10, 0x0, 0x0, 0x10}, 0xc, &(0x7f00000004c0)={&(0x7f00000002c0)={0x20, 0x0, 0x100, 0x70bd2b, 0x25dfdbfd, {{}, {@void, @val={0xc, 0x99, {0x3, 0x1b}}}}}, 0x20}, 0x1, 0x0, 0x0, 0x95}, 0x40000) ioctl$FICLONE(r2, 0x40049409, r0) r3 = open$dir(&(0x7f0000000000)='.\x00', 0x0, 0x0) perf_event_open(&(0x7f0000001d80)={0x6, 0x80, 0x0, 0x0, 0x0, 0x0, 0x4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffd, 0x0, @perf_bp={0x0, 0xffffffff81000000}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffd}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r4 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000040)='/proc/crypto\x00', 0x0, 0x0) r5 = openat2(r3, &(0x7f0000000180)='./file0\x00', &(0x7f0000000200)={0x800, 0x1b9}, 0x18) setsockopt$SO_TIMESTAMPING(r5, 0x1, 0x25, &(0x7f0000000240)=0x7100, 0x4) pread64(r4, &(0x7f00000010c0)=""/4088, 0xff8, 0x0) writev(0xffffffffffffffff, &(0x7f00000003c0)=[{&(0x7f0000000000)="0000abe02400030021206cda3b5e5672b89aeddb2a535fbd0706006dff0043a9d7cceb232fb81bf74ebdd05b7677", 0x2e}, {&(0x7f0000000680)="7fd41c04550300020000000000000000010046e92ed261", 0x17}], 0x2) 05:34:45 executing program 6: r0 = perf_event_open(&(0x7f0000001d80)={0x2, 0x80, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x800}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_emit_ethernet(0x32, &(0x7f0000000040)=ANY=[@ANYBLOB="aaaaaac7c56f4b908a43a5bb0800470000240000000800029078ac1414aa0a010102860806000000000200009078ffffffff"], 0x0) r1 = perf_event_open(&(0x7f0000001d80)={0x2, 0x80, 0x5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x40641, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x40, 0x0, @perf_config_ext, 0x0, 0x1, 0x0, 0x2, 0x0, 0x9}, 0x0, 0x0, 0xffffffffffffffff, 0xa) perf_event_open(&(0x7f0000001d80)={0x3, 0x80, 0x0, 0x0, 0x0, 0x0, 0x4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, r1, 0x0) dup3(r0, r1, 0x80000) 05:34:45 executing program 0: r0 = perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x0, 0x3}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) pread64(0xffffffffffffffff, 0x0, 0x7ffffffff000, 0xf0ff1f00000000) bind$inet6(0xffffffffffffffff, &(0x7f0000000040)={0xa, 0x4e23, 0x0, @remote, 0xffff}, 0x1c) r1 = socket$netlink(0x10, 0x3, 0x0) sendmsg$nl_generic(0xffffffffffffffff, 0x0, 0x41) setsockopt$netlink_NETLINK_BROADCAST_ERROR(r1, 0x10e, 0x4, &(0x7f00000000c0)=0x1000, 0x4) sendmsg$nl_generic(r1, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000100)=ANY=[@ANYBLOB="28000000100001000000000000000000000000000500000024386a562b500000000c00008008000d00ac141400"], 0x28}}, 0x0) chdir(&(0x7f00000001c0)='./file0\x00') r2 = syz_open_dev$mouse(&(0x7f0000000400), 0x7fffffff, 0x2d0401) sendmsg$NL80211_CMD_ADD_NAN_FUNCTION(r2, &(0x7f0000000500)={&(0x7f0000000440)={0x10, 0x0, 0x0, 0x10}, 0xc, &(0x7f00000004c0)={&(0x7f00000002c0)={0x20, 0x0, 0x100, 0x70bd2b, 0x25dfdbfd, {{}, {@void, @val={0xc, 0x99, {0x3, 0x1b}}}}}, 0x20}, 0x1, 0x0, 0x0, 0x95}, 0x40000) ioctl$FICLONE(r2, 0x40049409, r0) r3 = open$dir(&(0x7f0000000000)='.\x00', 0x0, 0x0) perf_event_open(&(0x7f0000001d80)={0x6, 0x80, 0x0, 0x0, 0x0, 0x0, 0x4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffd, 0x0, @perf_bp={0x0, 0xffffffff81000000}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffd}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r4 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000040)='/proc/crypto\x00', 0x0, 0x0) r5 = openat2(r3, &(0x7f0000000180)='./file0\x00', &(0x7f0000000200)={0x800, 0x1b9}, 0x18) setsockopt$SO_TIMESTAMPING(r5, 0x1, 0x25, &(0x7f0000000240)=0x7100, 0x4) pread64(r4, &(0x7f00000010c0)=""/4088, 0xff8, 0x0) writev(0xffffffffffffffff, &(0x7f00000003c0)=[{&(0x7f0000000000)="0000abe02400030021206cda3b5e5672b89aeddb2a535fbd0706006dff0043a9d7cceb232fb81bf74ebdd05b7677", 0x2e}, {&(0x7f0000000680)}], 0x2) 05:34:45 executing program 7: syz_emit_ethernet(0x3a, &(0x7f0000000000)={@local, @remote, @val={@val={0x9100, 0x4, 0x0, 0x4}, {0x8100, 0x2, 0x0, 0x2}}, {@ipv4={0x800, @igmp={{0x7, 0x4, 0x0, 0x0, 0x24, 0x0, 0x0, 0x0, 0x2, 0x0, @local, @remote, {[@cipso={0x86, 0x8, 0x0, [{0x0, 0x2}]}]}}, {0x0, 0x0, 0x0, @broadcast}}}}}, 0x0) 05:34:45 executing program 4: perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_emit_ethernet(0x3a, &(0x7f0000000000)={@local, @remote, @void, {@ipv4={0x800, @tcp={{0x6, 0x4, 0x0, 0x0, 0x2c, 0x0, 0x0, 0x0, 0x32, 0x0, @dev, @private=0xa010100, {[@lsrr={0x83, 0x5}]}}, {{0x0, 0x0, 0x41424344, 0x41424344, 0x0, 0x7, 0x5}}}}}}, 0x0) (fail_nth: 11) openat$cgroup_devices(0xffffffffffffffff, 0x0, 0x2, 0x0) close(0xffffffffffffffff) pread64(0xffffffffffffffff, 0x0, 0x0, 0x2000) [ 2593.380865] FAULT_INJECTION: forcing a failure. [ 2593.380865] name failslab, interval 1, probability 0, space 0, times 0 [ 2593.383233] CPU: 0 PID: 11751 Comm: syz-executor.4 Not tainted 5.10.204 #1 [ 2593.384642] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 2593.386361] Call Trace: [ 2593.386926] dump_stack+0x107/0x167 [ 2593.387699] should_fail.cold+0x5/0xa [ 2593.388500] ? __alloc_skb+0x6d/0x5b0 [ 2593.389300] should_failslab+0x5/0x20 [ 2593.390098] kmem_cache_alloc_node+0x55/0x330 [ 2593.391066] __alloc_skb+0x6d/0x5b0 [ 2593.391831] alloc_skb_with_frags+0x92/0x570 [ 2593.392750] ? stack_trace_save+0x8c/0xc0 [ 2593.393615] sock_alloc_send_pskb+0x7af/0x930 [ 2593.394546] ? perf_trace_run_bpf_submit+0xf5/0x190 [ 2593.395607] ? sk_alloc+0x350/0x350 [ 2593.396552] ? ip_rcv_finish_core.constprop.0+0x4fb/0x1c90 [ 2593.397684] ? ip_rcv_finish+0x4f/0x1e0 [ 2593.398514] ? ip_rcv+0xae/0xd0 [ 2593.399192] ? __netif_receive_skb_one_core+0x19b/0x1f0 [ 2593.400275] ? __netif_receive_skb+0x27/0x1d0 [ 2593.401187] ? netif_receive_skb+0x12d/0x710 [ 2593.402088] ? tun_rx_batched.isra.0+0x462/0x710 [ 2593.403065] ? tun_get_user+0x191d/0x32f0 [ 2593.403912] ? tun_chr_write_iter+0xe1/0x1e0 [ 2593.404810] ? new_sync_write+0x42c/0x660 [ 2593.405656] ? vfs_write+0x747/0xa70 [ 2593.406425] ? ksys_write+0x12d/0x260 [ 2593.407205] ? do_syscall_64+0x33/0x40 [ 2593.408000] ? entry_SYSCALL_64_after_hwframe+0x62/0xc7 [ 2593.409108] __ip_append_data+0x1628/0x3310 [ 2593.410033] ? icmp_push_reply+0x490/0x490 [ 2593.410946] ? ip_finish_output+0x330/0x330 [ 2593.411834] ? ipv4_mtu+0x1ed/0x2c0 [ 2593.412599] ? icmp_push_reply+0x490/0x490 [ 2593.413469] ip_append_data+0x114/0x1a0 [ 2593.414322] icmp_push_reply+0x13b/0x490 [ 2593.415180] __icmp_send+0xbc9/0x14d0 [ 2593.415994] ? icmp_route_lookup.constprop.0+0x11a0/0x11a0 [ 2593.417139] ? __lockdep_reset_lock+0x180/0x180 [ 2593.418133] ? find_held_lock+0x2c/0x110 [ 2593.419041] ? ip_route_input_noref+0x160/0x2f0 [ 2593.420014] ip_options_compile+0xad/0xf0 [ 2593.420867] ? __ip_options_compile+0x15d0/0x15d0 [ 2593.421858] ? ip_list_rcv_finish.constprop.0+0x590/0x590 [ 2593.423006] ip_rcv_finish_core.constprop.0+0x4fb/0x1c90 [ 2593.424136] ip_rcv_finish+0x4f/0x1e0 [ 2593.424925] ip_rcv+0xae/0xd0 [ 2593.425571] ? ip_local_deliver+0x200/0x200 [ 2593.426467] __netif_receive_skb_one_core+0x19b/0x1f0 [ 2593.427523] ? __netif_receive_skb_core+0x3780/0x3780 [ 2593.428593] ? __lock_acquire+0xbb1/0x5b00 [ 2593.429484] __netif_receive_skb+0x27/0x1d0 [ 2593.430396] netif_receive_skb+0x12d/0x710 [ 2593.431267] ? __netif_receive_skb+0x1d0/0x1d0 [ 2593.432202] ? SOFTIRQ_verbose+0x10/0x10 [ 2593.433048] ? __lockdep_reset_lock+0x180/0x180 [ 2593.434018] tun_rx_batched.isra.0+0x462/0x710 [ 2593.434962] ? lock_acquire+0x197/0x470 [ 2593.435782] ? tun_get_user+0xee3/0x32f0 [ 2593.436620] ? tun_sock_write_space+0x1d0/0x1d0 [ 2593.437576] ? lock_release+0x680/0x680 [ 2593.438413] ? tun_get_user+0x16e6/0x32f0 [ 2593.439270] ? lock_downgrade+0x6d0/0x6d0 [ 2593.440122] ? eth_type_trans+0x2ad/0x5b0 [ 2593.440992] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 2593.442085] tun_get_user+0x191d/0x32f0 [ 2593.442914] ? usage_accumulate+0x110/0x110 [ 2593.443842] ? tun_build_skb+0xfe0/0xfe0 [ 2593.444694] ? tun_device_event+0x990/0x1160 [ 2593.445613] ? SOFTIRQ_verbose+0x10/0x10 [ 2593.446507] tun_chr_write_iter+0xe1/0x1e0 [ 2593.447386] new_sync_write+0x42c/0x660 [ 2593.448211] ? new_sync_read+0x6f0/0x6f0 [ 2593.449055] ? _cond_resched+0x12/0x80 [ 2593.449873] ? avc_policy_seqno+0x9/0x70 [ 2593.450717] ? selinux_file_permission+0x92/0x520 [ 2593.451723] ? __fget_files+0x296/0x4c0 [ 2593.452571] vfs_write+0x747/0xa70 [ 2593.453322] ksys_write+0x12d/0x260 [ 2593.454075] ? __ia32_sys_read+0xb0/0xb0 [ 2593.454934] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 2593.456006] ? syscall_enter_from_user_mode+0x1d/0x50 [ 2593.457074] do_syscall_64+0x33/0x40 [ 2593.457842] entry_SYSCALL_64_after_hwframe+0x62/0xc7 [ 2593.458911] RIP: 0033:0x7f6e6cf425ff [ 2593.459674] Code: 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 99 fd ff ff 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 b8 01 00 00 00 0f 05 <48> 3d 00 f0 ff ff 77 31 44 89 c7 48 89 44 24 08 e8 cc fd ff ff 48 [ 2593.463399] RSP: 002b:00007f6e6a505150 EFLAGS: 00000293 ORIG_RAX: 0000000000000001 [ 2593.464952] RAX: ffffffffffffffda RBX: 00007f6e6d0a2f60 RCX: 00007f6e6cf425ff [ 2593.466409] RDX: 000000000000003a RSI: 0000000020000000 RDI: 00000000000000f0 [ 2593.467865] RBP: 00007f6e6a5051d0 R08: 0000000000000000 R09: 0000000000000000 [ 2593.469314] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000002 [ 2593.470787] R13: 00007fffc51a6e8f R14: 00007f6e6a505300 R15: 0000000000022000 [ 2593.483552] netlink: 8 bytes leftover after parsing attributes in process `syz-executor.0'. [ 2593.533033] netlink: 8 bytes leftover after parsing attributes in process `syz-executor.3'. 05:34:46 executing program 7: syz_emit_ethernet(0x32, &(0x7f0000000040)={@local, @remote, @void, {@ipv4={0x800, @igmp={{0x7, 0x4, 0x0, 0x0, 0x24, 0x0, 0x0, 0x0, 0x2, 0x0, @local, @private=0xa010102, {[@cipso={0x86, 0x8, 0x0, [{0x0, 0x2}]}]}}, {0x0, 0x0, 0x0, @broadcast}}}}}, 0x0) write$tun(0xffffffffffffffff, &(0x7f0000000000)={@void, @void, @arp=@ether_ipv6={0x1, 0x86dd, 0x6, 0x10, 0x8, @remote, @local, @empty, @dev={0xfe, 0x80, '\x00', 0x22}}}, 0x34) write$tun(0xffffffffffffffff, &(0x7f0000000080)={@val={0x0, 0x6006}, @void, @arp=@ether_ipv6={0x1, 0x86dd, 0x6, 0x10, 0x2, @random="e9c388d21b18", @private2, @random="b8ede5668f41", @private0}}, 0x38) 05:34:46 executing program 6: r0 = perf_event_open(&(0x7f0000001d80)={0x2, 0x80, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, @perf_config_ext={0x2000000000000}}, 0x0, 0x0, 0xffffffffffffffff, 0xb) syz_emit_ethernet(0x32, &(0x7f0000000040)={@local, @remote, @void, {@ipv4={0x800, @igmp={{0x7, 0x4, 0x0, 0x0, 0x24, 0x0, 0x0, 0x0, 0x2, 0x0, @local, @private=0xa010102, {[@cipso={0x86, 0x8, 0x0, [{0x0, 0x2}]}]}}, {0x0, 0x0, 0x0, @broadcast}}}}}, 0x0) ioctl$PERF_EVENT_IOC_REFRESH(r0, 0x2402, 0x1fc) 05:34:46 executing program 5: r0 = syz_open_dev$ptys(0xc, 0x3, 0x1) ioctl$TCSETS2(r0, 0x402c542b, &(0x7f0000000000)={0x5144, 0x400, 0x0, 0xb87a, 0x20, "86de27381f733895e856e95df12e3724beffc0", 0x1, 0x64}) syz_emit_ethernet(0x32, &(0x7f0000000040)={@local, @remote, @void, {@ipv4={0x800, @igmp={{0x7, 0x4, 0x0, 0x0, 0x24, 0x0, 0x0, 0x0, 0x2, 0x0, @local, @private=0xa010102, {[@cipso={0x86, 0x8, 0x0, [{0x0, 0x2}]}]}}, {0x0, 0x0, 0x0, @broadcast}}}}}, 0x0) 05:34:46 executing program 1: perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_emit_ethernet(0x3a, &(0x7f0000000000)={@local, @remote, @void, {@ipv4={0x800, @tcp={{0x6, 0x4, 0x0, 0x0, 0x2c, 0x0, 0x0, 0x0, 0x32, 0x0, @dev, @private, {[@lsrr={0x83, 0x5}]}}, {{0x0, 0x0, 0x41424344, 0x41424344, 0x0, 0x7, 0x5}}}}}}, 0x0) 05:34:46 executing program 7: syz_emit_ethernet(0x32, &(0x7f0000000000)=ANY=[@ANYBLOB="aaaaaaaaaaaaaaaaaaaaff22f1a1614b46aabb08004700002400000e0000029078ac1414aa0a010102862a00000000000278e4b988240f00aa"], 0x0) 05:34:46 executing program 1: perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_emit_ethernet(0x36, &(0x7f0000000000)={@local, @remote, @void, {@ipv4={0x800, @tcp={{0x5, 0x4, 0x0, 0x0, 0x28, 0x0, 0x0, 0x0, 0x32, 0x0, @dev, @private=0xa010100}, {{0x0, 0x0, 0x41424344, 0x41424344, 0x0, 0x7, 0x5}}}}}}, 0x0) 05:34:46 executing program 5: syz_emit_ethernet(0x32, &(0x7f0000000040)={@local, @remote, @void, {@ipv4={0x800, @igmp={{0x7, 0x4, 0x0, 0x0, 0x24, 0x0, 0x0, 0x0, 0x2, 0x0, @local, @private=0xa010102, {[@cipso={0x86, 0x8, 0x0, [{0x0, 0x2}]}]}}, {0x0, 0x0, 0x0, @broadcast}}}}}, 0x0) ioctl$AUTOFS_DEV_IOCTL_TIMEOUT(0xffffffffffffffff, 0xc018937a, &(0x7f0000000180)={{0x1, 0x1, 0x18, 0xffffffffffffffff, {0x5}}, './file0\x00'}) write$tun(r0, &(0x7f00000001c0)={@val={0x0, 0x6558}, @val={0x2, 0x3, 0x3, 0x800, 0x7, 0x40}, @eth={@local, @local, @val={@void, {0x8100, 0x1, 0x0, 0x3}}, {@ipv4={0x800, @igmp={{0xd, 0x4, 0x0, 0x36, 0x4e, 0x68, 0x0, 0x81, 0x2, 0x0, @local, @rand_addr=0x64010100, {[@generic={0x89, 0xc, "da94e939acca2e611d3f"}, @timestamp_addr={0x44, 0x4, 0xaf, 0x1, 0x4}, @generic={0x86, 0x10, "7a49c147dc4362655b7296307c9a"}]}}, {0x1f, 0x9, 0x0, @multicast1, "e4a77dd61c434e7d34f6e30fc66533321da5"}}}}}}, 0x6e) write$tun(0xffffffffffffffff, &(0x7f0000000000)={@void, @val={0x21d5bf4d7d2b04b4, 0x4, 0x4, 0xd, 0xfff, 0x7fff}, @eth={@empty, @link_local={0x1, 0x80, 0xc2, 0x0, 0x0, 0x2}, @val={@val={0x9100, 0x2}, {0x8100, 0x5}}, {@llc_tr={0x11, {@llc={0x1, 0x42, 'G'}}}}}}, 0x23) write$tun(0xffffffffffffffff, &(0x7f0000000080)={@void, @val={0x2, 0x80, 0x2, 0x9, 0x9, 0x3f}, @x25={0x2, 0x1, 0x1f, "c7137ca7c3192bfd026e00f15a55ecde1481b6384bd635a76844ac5e2f3b56684f4330802c10e1a93c2a07561e07f432367601c6debdf80b9a3481cf8b2b4b829f2591b94ae1f4a59ed3861952a040a62737ff12c86c5c7754e8d852abc306fd09ef29c9657bd96276e8614f69c82da1f3ccb170a11e7fcfac15356c9753a434f7536fb5141ebdfe325c9b789578c70ed58cbf8cf84b81674763adb4"}}, 0xa9) write$tun(0xffffffffffffffff, &(0x7f0000000140)={@val={0x0, 0x8863}, @val={0x2, 0x4, 0x8, 0x8001, 0x80, 0x80}, @arp=@generic={0x30a, 0x4305, 0x6, 0xe, 0x9, @local, "91d095e9bf27c0fe548de8405aa8", @link_local={0x1, 0x80, 0xc2, 0x0, 0x0, 0x2}, "985d5704e9451da3c9279a27"}}, 0x3c) 05:34:46 executing program 3: r0 = perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x0, 0x3}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) pread64(0xffffffffffffffff, 0x0, 0x7ffffffff000, 0xf0ff1f00000000) bind$inet6(0xffffffffffffffff, &(0x7f0000000040)={0xa, 0x4e23, 0x0, @remote, 0xffff}, 0x1c) r1 = socket$netlink(0x10, 0x3, 0x0) sendmsg$nl_generic(0xffffffffffffffff, 0x0, 0x41) setsockopt$netlink_NETLINK_BROADCAST_ERROR(r1, 0x10e, 0x4, &(0x7f00000000c0)=0x1000, 0x4) sendmsg$nl_generic(r1, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000100)=ANY=[@ANYBLOB="28000000100001000000000000000000000000000500000024386a562b500000000c00008008000d00ac141400"], 0x28}}, 0x0) chdir(&(0x7f00000001c0)='./file0\x00') r2 = syz_open_dev$mouse(&(0x7f0000000400), 0x7fffffff, 0x2d0401) sendmsg$NL80211_CMD_ADD_NAN_FUNCTION(r2, &(0x7f0000000500)={&(0x7f0000000440)={0x10, 0x0, 0x0, 0x10}, 0xc, &(0x7f00000004c0)={&(0x7f00000002c0)={0x20, 0x0, 0x100, 0x70bd2b, 0x25dfdbfd, {{}, {@void, @val={0xc, 0x99, {0x3, 0x1b}}}}}, 0x20}, 0x1, 0x0, 0x0, 0x95}, 0x40000) ioctl$FICLONE(r2, 0x40049409, r0) r3 = open$dir(&(0x7f0000000000)='.\x00', 0x0, 0x0) perf_event_open(&(0x7f0000001d80)={0x6, 0x80, 0x0, 0x0, 0x0, 0x0, 0x4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffd, 0x0, @perf_bp={0x0, 0xffffffff81000000}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffd}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r4 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000040)='/proc/crypto\x00', 0x0, 0x0) r5 = openat2(r3, &(0x7f0000000180)='./file0\x00', &(0x7f0000000200)={0x800, 0x1b9}, 0x18) setsockopt$SO_TIMESTAMPING(r5, 0x1, 0x25, &(0x7f0000000240)=0x7100, 0x4) pread64(r4, &(0x7f00000010c0)=""/4088, 0xff8, 0x0) writev(0xffffffffffffffff, &(0x7f00000003c0)=[{&(0x7f0000000000)="0000abe02400030021206cda3b5e5672b89aeddb2a535fbd0706006dff0043a9d7cceb232fb81bf74ebdd05b7677", 0x2e}, {&(0x7f0000000680)="7fd41c04550300020000000000000000010046e92ed2616f72657d044129471d4fd479", 0x23}], 0x2) [ 2593.744598] netlink: 8 bytes leftover after parsing attributes in process `syz-executor.3'. 05:35:00 executing program 6: r0 = perf_event_open(&(0x7f0000001d80)={0x2, 0x80, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r1 = openat$nvram(0xffffffffffffff9c, &(0x7f0000000000), 0x8000, 0x0) ioctl$PERF_EVENT_IOC_REFRESH(r1, 0x2402, 0x198) r2 = perf_event_open(&(0x7f0000001d80)={0x2, 0x80, 0x5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x40641, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x40, 0x0, @perf_config_ext, 0x0, 0x1, 0x0, 0x2, 0x0, 0x9}, 0x0, 0x0, 0xffffffffffffffff, 0xa) perf_event_open(&(0x7f0000001d80)={0x3, 0x80, 0x0, 0x0, 0x0, 0x0, 0x4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, r2, 0x0) ioctl$FICLONE(r0, 0x40049409, r2) syz_emit_ethernet(0x4a, &(0x7f0000000080)=ANY=[@ANYBLOB="aaaaaaaaaaaaaaaaaaaaaabb08004800003c0000000000029078ac1414aa0a01011f74080000000000028618fffffffc0504e8e9070739ff31b1fc0707b0087643ad00009078ffffffff"], 0x0) [ 2607.582683] FAULT_INJECTION: forcing a failure. [ 2607.582683] name failslab, interval 1, probability 0, space 0, times 0 [ 2607.583928] CPU: 1 PID: 11789 Comm: syz-executor.4 Not tainted 5.10.204 #1 [ 2607.584681] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 2607.585572] Call Trace: [ 2607.585872] dump_stack+0x107/0x167 [ 2607.586271] should_fail.cold+0x5/0xa [ 2607.586713] ? create_object.isra.0+0x3a/0xa20 [ 2607.587217] should_failslab+0x5/0x20 [ 2607.587624] kmem_cache_alloc+0x5b/0x310 [ 2607.588061] create_object.isra.0+0x3a/0xa20 [ 2607.588543] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 2607.589096] kmem_cache_alloc_node+0x169/0x330 [ 2607.589594] __alloc_skb+0x6d/0x5b0 [ 2607.589989] alloc_skb_with_frags+0x92/0x570 [ 2607.590471] ? stack_trace_save+0x8c/0xc0 [ 2607.590932] sock_alloc_send_pskb+0x7af/0x930 [ 2607.591428] ? sk_alloc+0x350/0x350 [ 2607.591840] ? ip_rcv_finish_core.constprop.0+0x4fb/0x1c90 [ 2607.592471] ? ip_rcv_finish+0x4f/0x1e0 [ 2607.592931] ? ip_rcv+0xae/0xd0 [ 2607.593310] ? __netif_receive_skb_one_core+0x19b/0x1f0 [ 2607.593917] ? __netif_receive_skb+0x27/0x1d0 [ 2607.594407] ? netif_receive_skb+0x12d/0x710 [ 2607.594900] ? tun_rx_batched.isra.0+0x462/0x710 [ 2607.595442] ? tun_get_user+0x191d/0x32f0 [ 2607.595921] ? tun_chr_write_iter+0xe1/0x1e0 [ 2607.596440] ? new_sync_write+0x42c/0x660 [ 2607.596912] ? vfs_write+0x747/0xa70 [ 2607.597348] ? ksys_write+0x12d/0x260 [ 2607.597792] ? do_syscall_64+0x33/0x40 [ 2607.598241] ? entry_SYSCALL_64_after_hwframe+0x62/0xc7 [ 2607.598874] __ip_append_data+0x1628/0x3310 [ 2607.599381] ? icmp_push_reply+0x490/0x490 [ 2607.599876] ? ip_finish_output+0x330/0x330 [ 2607.600367] ? ipv4_mtu+0x1ed/0x2c0 [ 2607.600791] ? icmp_push_reply+0x490/0x490 [ 2607.601279] ip_append_data+0x114/0x1a0 [ 2607.601749] icmp_push_reply+0x13b/0x490 [ 2607.602218] __icmp_send+0xbc9/0x14d0 [ 2607.602650] ? icmp_route_lookup.constprop.0+0x11a0/0x11a0 [ 2607.603287] ? __lockdep_reset_lock+0x180/0x180 [ 2607.603832] ? find_held_lock+0x2c/0x110 [ 2607.604320] ? ip_route_input_noref+0x160/0x2f0 [ 2607.604864] ip_options_compile+0xad/0xf0 [ 2607.605341] ? __ip_options_compile+0x15d0/0x15d0 [ 2607.605898] ? ip_list_rcv_finish.constprop.0+0x590/0x590 [ 2607.606531] ip_rcv_finish_core.constprop.0+0x4fb/0x1c90 [ 2607.607156] ip_rcv_finish+0x4f/0x1e0 [ 2607.607590] ip_rcv+0xae/0xd0 [ 2607.607948] ? ip_local_deliver+0x200/0x200 [ 2607.608446] __netif_receive_skb_one_core+0x19b/0x1f0 [ 2607.609030] ? __netif_receive_skb_core+0x3780/0x3780 [ 2607.609630] ? __lock_acquire+0xbb1/0x5b00 [ 2607.610128] __netif_receive_skb+0x27/0x1d0 [ 2607.610613] netif_receive_skb+0x12d/0x710 [ 2607.611098] ? __netif_receive_skb+0x1d0/0x1d0 [ 2607.611609] ? SOFTIRQ_verbose+0x10/0x10 [ 2607.612073] ? __lockdep_reset_lock+0x180/0x180 [ 2607.612612] tun_rx_batched.isra.0+0x462/0x710 [ 2607.613139] ? lock_acquire+0x197/0x470 [ 2607.613591] ? tun_get_user+0xee3/0x32f0 [ 2607.614064] ? tun_sock_write_space+0x1d0/0x1d0 [ 2607.614574] ? lock_release+0x680/0x680 [ 2607.615025] ? tun_get_user+0x16e6/0x32f0 [ 2607.615501] ? lock_downgrade+0x6d0/0x6d0 [ 2607.615946] ? eth_type_trans+0x2ad/0x5b0 [ 2607.616425] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 2607.617001] tun_get_user+0x191d/0x32f0 [ 2607.617457] ? usage_accumulate+0x110/0x110 [ 2607.617936] ? tun_build_skb+0xfe0/0xfe0 [ 2607.618405] ? tun_device_event+0x990/0x1160 [ 2607.618917] ? perf_trace_lock+0xac/0x490 [ 2607.619381] ? SOFTIRQ_verbose+0x10/0x10 [ 2607.619858] tun_chr_write_iter+0xe1/0x1e0 [ 2607.620346] new_sync_write+0x42c/0x660 [ 2607.620804] ? new_sync_read+0x6f0/0x6f0 [ 2607.621278] ? _cond_resched+0x12/0x80 [ 2607.621738] ? avc_policy_seqno+0x9/0x70 [ 2607.622200] ? selinux_file_permission+0x92/0x520 [ 2607.622773] ? __fget_files+0x296/0x4c0 [ 2607.623232] vfs_write+0x747/0xa70 [ 2607.623616] ksys_write+0x12d/0x260 [ 2607.624019] ? __ia32_sys_read+0xb0/0xb0 [ 2607.624504] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 2607.625104] ? syscall_enter_from_user_mode+0x1d/0x50 [ 2607.625703] do_syscall_64+0x33/0x40 [ 2607.626135] entry_SYSCALL_64_after_hwframe+0x62/0xc7 [ 2607.626742] RIP: 0033:0x7f6e6cf425ff [ 2607.627173] Code: 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 99 fd ff ff 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 b8 01 00 00 00 0f 05 <48> 3d 00 f0 ff ff 77 31 44 89 c7 48 89 44 24 08 e8 cc fd ff ff 48 [ 2607.629255] RSP: 002b:00007f6e6a505150 EFLAGS: 00000293 ORIG_RAX: 0000000000000001 [ 2607.630107] RAX: ffffffffffffffda RBX: 00007f6e6d0a2f60 RCX: 00007f6e6cf425ff [ 2607.630933] RDX: 000000000000003a RSI: 0000000020000000 RDI: 00000000000000f0 [ 2607.631759] RBP: 00007f6e6a5051d0 R08: 0000000000000000 R09: 0000000000000000 05:35:00 executing program 4: perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_emit_ethernet(0x3a, &(0x7f0000000000)={@local, @remote, @void, {@ipv4={0x800, @tcp={{0x6, 0x4, 0x0, 0x0, 0x2c, 0x0, 0x0, 0x0, 0x32, 0x0, @dev, @private=0xa010100, {[@lsrr={0x83, 0x5}]}}, {{0x0, 0x0, 0x41424344, 0x41424344, 0x0, 0x7, 0x5}}}}}}, 0x0) (fail_nth: 12) openat$cgroup_devices(0xffffffffffffffff, 0x0, 0x2, 0x0) close(0xffffffffffffffff) pread64(0xffffffffffffffff, 0x0, 0x0, 0x2000) [ 2607.632568] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000002 [ 2607.633765] R13: 00007fffc51a6e8f R14: 00007f6e6a505300 R15: 0000000000022000 [ 2607.658216] netlink: 8 bytes leftover after parsing attributes in process `syz-executor.0'. [ 2607.678720] netlink: 8 bytes leftover after parsing attributes in process `syz-executor.3'. 05:35:00 executing program 0: r0 = perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x0, 0x3}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) pread64(0xffffffffffffffff, 0x0, 0x7ffffffff000, 0xf0ff1f00000000) bind$inet6(0xffffffffffffffff, &(0x7f0000000040)={0xa, 0x4e23, 0x0, @remote, 0xffff}, 0x1c) r1 = socket$netlink(0x10, 0x3, 0x0) sendmsg$nl_generic(0xffffffffffffffff, 0x0, 0x41) setsockopt$netlink_NETLINK_BROADCAST_ERROR(r1, 0x10e, 0x4, &(0x7f00000000c0)=0x1000, 0x4) sendmsg$nl_generic(r1, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000100)=ANY=[@ANYBLOB="28000000100001000000000000000000000000000500000024386a562b500000000c00008008000d00ac141400"], 0x28}}, 0x0) chdir(&(0x7f00000001c0)='./file0\x00') r2 = syz_open_dev$mouse(&(0x7f0000000400), 0x7fffffff, 0x2d0401) sendmsg$NL80211_CMD_ADD_NAN_FUNCTION(r2, &(0x7f0000000500)={&(0x7f0000000440)={0x10, 0x0, 0x0, 0x10}, 0xc, &(0x7f00000004c0)={&(0x7f00000002c0)={0x20, 0x0, 0x100, 0x70bd2b, 0x25dfdbfd, {{}, {@void, @val={0xc, 0x99, {0x3, 0x1b}}}}}, 0x20}, 0x1, 0x0, 0x0, 0x95}, 0x40000) ioctl$FICLONE(r2, 0x40049409, r0) r3 = open$dir(&(0x7f0000000000)='.\x00', 0x0, 0x0) perf_event_open(&(0x7f0000001d80)={0x6, 0x80, 0x0, 0x0, 0x0, 0x0, 0x4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffd, 0x0, @perf_bp={0x0, 0xffffffff81000000}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffd}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r4 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000040)='/proc/crypto\x00', 0x0, 0x0) r5 = openat2(r3, &(0x7f0000000180)='./file0\x00', &(0x7f0000000200)={0x800, 0x1b9}, 0x18) setsockopt$SO_TIMESTAMPING(r5, 0x1, 0x25, &(0x7f0000000240)=0x7100, 0x4) pread64(r4, &(0x7f00000010c0)=""/4088, 0xff8, 0x0) writev(0xffffffffffffffff, &(0x7f00000003c0)=[{&(0x7f0000000000)="0000abe02400030021206cda3b5e5672b89aeddb2a535fbd0706006dff0043a9d7cceb232fb81bf74ebdd05b7677", 0x2e}, {&(0x7f0000000680)}], 0x2) 05:35:00 executing program 5: syz_emit_ethernet(0x32, &(0x7f0000000000)=ANY=[@ANYBLOB="aaaaaaaaaaaaaaaaaaaaaabb080047000024000000000002908d8ec37eacbfaa5478ac1414aa0a010102860800000000000200009078f7ffffff6e917c84af8537f7eea2070000003c14fcf4df512501000000004fab23c496d3f7"], 0x0) pipe(&(0x7f0000000080)={0xffffffffffffffff, 0xffffffffffffffff}) write$tun(r0, &(0x7f00000000c0)={@void, @val={0x1, 0x4, 0xfff, 0x40, 0x4, 0x8}, @x25={0x1, 0x1, 0x5c7ec2c3d5471c8f, "505d5c5837536f6cca7b52a34b4678a301f72630c384f81f89837bcd587aa39070530843c6a00ab3e72aa80f54b09fb5086e4ff7b4b9f169dc95dd4805a4252af561cb2cc66e324f1ddd243449f11289844070a3ed1b07468cff50bbe8"}}, 0x6a) 05:35:00 executing program 1: perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_emit_ethernet(0x36, &(0x7f0000000000)={@local, @remote, @void, {@ipv4={0x800, @tcp={{0x5, 0x4, 0x0, 0x0, 0x28, 0x0, 0x0, 0x0, 0x32, 0x0, @dev, @private=0xa010100}, {{0x0, 0x0, 0x41424344, 0x41424344, 0x0, 0x7, 0x5}}}}}}, 0x0) 05:35:00 executing program 3: r0 = perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x0, 0x3}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) pread64(0xffffffffffffffff, 0x0, 0x7ffffffff000, 0xf0ff1f00000000) bind$inet6(0xffffffffffffffff, &(0x7f0000000040)={0xa, 0x4e23, 0x0, @remote, 0xffff}, 0x1c) r1 = socket$netlink(0x10, 0x3, 0x0) sendmsg$nl_generic(0xffffffffffffffff, 0x0, 0x41) setsockopt$netlink_NETLINK_BROADCAST_ERROR(r1, 0x10e, 0x4, &(0x7f00000000c0)=0x1000, 0x4) sendmsg$nl_generic(r1, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000100)=ANY=[@ANYBLOB="28000000100001000000000000000000000000000500000024386a562b500000000c00008008000d00ac141400"], 0x28}}, 0x0) chdir(&(0x7f00000001c0)='./file0\x00') r2 = syz_open_dev$mouse(&(0x7f0000000400), 0x7fffffff, 0x2d0401) sendmsg$NL80211_CMD_ADD_NAN_FUNCTION(r2, &(0x7f0000000500)={&(0x7f0000000440)={0x10, 0x0, 0x0, 0x10}, 0xc, &(0x7f00000004c0)={&(0x7f00000002c0)={0x20, 0x0, 0x100, 0x70bd2b, 0x25dfdbfd, {{}, {@void, @val={0xc, 0x99, {0x3, 0x1b}}}}}, 0x20}, 0x1, 0x0, 0x0, 0x95}, 0x40000) ioctl$FICLONE(r2, 0x40049409, r0) r3 = open$dir(&(0x7f0000000000)='.\x00', 0x0, 0x0) perf_event_open(&(0x7f0000001d80)={0x6, 0x80, 0x0, 0x0, 0x0, 0x0, 0x4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffd, 0x0, @perf_bp={0x0, 0xffffffff81000000}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffd}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r4 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000040)='/proc/crypto\x00', 0x0, 0x0) r5 = openat2(r3, &(0x7f0000000180)='./file0\x00', &(0x7f0000000200)={0x800, 0x1b9}, 0x18) setsockopt$SO_TIMESTAMPING(r5, 0x1, 0x25, &(0x7f0000000240)=0x7100, 0x4) pread64(r4, &(0x7f00000010c0)=""/4088, 0xff8, 0x0) writev(0xffffffffffffffff, &(0x7f00000003c0)=[{&(0x7f0000000000)="0000abe02400030021206cda3b5e5672b89aeddb2a535fbd0706006dff0043a9d7cceb232fb81bf74ebdd05b7677", 0x2e}, {&(0x7f0000000680)="7fd41c04550300020000000000000000010046e92ed2616f72657d044129471d4fd479", 0x23}], 0x2) 05:35:00 executing program 7: syz_emit_ethernet(0x32, &(0x7f0000000040)=ANY=[@ANYBLOB="aaaaaabaaaaaaaaa827384f70800470000240000000000029078ac1414aa0a010102860800000003000200009078ffffffff"], 0x0) syz_extract_tcp_res(&(0x7f0000000000)={0x41424344}, 0x2, 0x8) r1 = openat$procfs(0xffffffffffffff9c, &(0x7f00000014c0)='/proc/bus/input/devices\x00', 0x0, 0x0) pread64(r1, &(0x7f0000000040)=""/4126, 0x101e, 0x2000) write$tun(r1, &(0x7f0000001080)=ANY=[@ANYBLOB="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"], 0xbb) r2 = openat$incfs(0xffffffffffffffff, &(0x7f00000004c0)='.pending_reads\x00', 0x10200, 0x90) write$tun(r2, &(0x7f0000000500)={@void, @void, @llc={@snap={0xff, 0xaa, "92", "c6ee86", 0x18, "79ae21c7124a51b07c0468ab6864cf603475aa6b5e4bf1a618a865fc6668d45ef05078e2b1e924316df80c8e2e5482a903055700308f5a1a2c38d2c8022ffe5bcee5234514112ae5a827cbda93e51be7aa1d7bfc58490a4391f4f51a1102460ac9b0250b37f4a18b0b25757a"}}}, 0x74) write$tun(0xffffffffffffffff, &(0x7f0000000080)={@val={0x0, 0x17}, @val={0x3, 0x0, 0x101, 0x3, 0xfff4}, @mpls={[{0x8}, {0x1f}, {0xffffb, 0x0, 0x1}, {0x2}, {0xfff22}, {0x20, 0x0, 0x1}, {0x581}, {0x4, 0x0, 0x1}], @ipv6=@tcp={0x9, 0x6, "ca690c", 0x38f, 0x6, 0xff, @mcast2, @remote, {[@hopopts={0x84, 0x18, '\x00', [@jumbo={0xc2, 0x4, 0x3}, @calipso={0x7, 0x18, {0x1, 0x4, 0x6, 0x7, [0x3ff, 0xfffffffffffffff7]}}, @pad1, @enc_lim={0x4, 0x1, 0x2}, @hao={0xc9, 0x10, @ipv4={'\x00', '\xff\xff', @remote}}, @padn={0x1, 0x3, [0x0, 0x0, 0x0]}, @calipso={0x7, 0x8, {0x1, 0x0, 0x7f, 0x3f9d}}, @ra={0x5, 0x2, 0x9}, @calipso={0x7, 0x38, {0x0, 0xc, 0xff, 0x3, [0x8000, 0x3f, 0x100, 0xaa3a, 0x200000000000000, 0x80000001]}}, @calipso={0x7, 0x40, {0x3, 0xe, 0x81, 0x7, [0xbd5c, 0x3, 0x3f, 0x2000, 0x4, 0x9, 0xffffffff80000001]}}]}, @hopopts={0x0, 0x2, '\x00', [@hao={0xc9, 0x10, @initdev={0xfe, 0x88, '\x00', 0x1, 0x0}}]}, @fragment={0x3a, 0x0, 0x5, 0x0, 0x0, 0x1, 0x68}, @dstopts={0x3c, 0x8, '\x00', [@pad1, @pad1, @enc_lim={0x4, 0x1, 0x40}, @jumbo={0xc2, 0x4, 0x7}, @pad1, @padn={0x1, 0x2, [0x0, 0x0]}, @calipso={0x7, 0x20, {0x0, 0x6, 0x89, 0x2, [0x7, 0x80000000, 0x9]}}, @padn={0x1, 0x7, [0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0]}]}, @routing={0xc, 0x6, 0x2, 0x40, 0x0, [@mcast1, @ipv4={'\x00', '\xff\xff', @loopback}, @mcast1]}, @fragment={0x3b, 0x0, 0x11, 0x1, 0x0, 0x8, 0x68}, @dstopts={0xa7, 0x1c, '\x00', [@hao={0xc9, 0x10, @initdev={0xfe, 0x88, '\x00', 0x0, 0x0}}, @padn={0x1, 0x5, [0x0, 0x0, 0x0, 0x0, 0x0]}, @hao={0xc9, 0x10, @empty}, @hao={0xc9, 0x10, @mcast2}, @hao={0xc9, 0x10, @remote}, @enc_lim={0x4, 0x1, 0x1f}, @ra={0x5, 0x2, 0x3}, @hao={0xc9, 0x10, @remote}, @generic={0x40, 0x65, "c63f88b7ef14e803a7a5f7452d2c952de07ed03963dfc06a106cf2f323691dca6a01d57acddfe2b35dd478307f03fee4dc17f63f6db9afc943c0ff83a34672760b9faf48b03710023c6f590a3530bfdc52d80e5d2b4d4ab894550358261f99833de1f961be"}, @hao={0xc9, 0x10, @dev={0xfe, 0x80, '\x00', 0xa}}]}, @hopopts={0x14}, @srh={0x0, 0x10, 0x4, 0x8, 0xc0, 0x28, 0x100, [@rand_addr=' \x01\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x01', @ipv4={'\x00', '\xff\xff', @rand_addr=0x64010101}, @dev={0xfe, 0x80, '\x00', 0x39}, @private0={0xfc, 0x0, '\x00', 0x1}, @remote, @local, @mcast2, @mcast2]}], {{0x4e20, 0x4e24, r0, 0x41424344, 0x0, 0x0, 0x10, 0x10, 0x0, 0x0, 0xfff9, {[@exp_fastopen={0xfe, 0xc, 0xf989, "cae5c2b525d1ec6d"}, @fastopen={0x22, 0x9, "e3840ce037c73d"}, @mss={0x2, 0x4, 0x8}, @nop, @sack_perm={0x4, 0x2}, @exp_smc={0xfe, 0x6}, @timestamp={0x8, 0xa, 0x1}]}}, {"cda64445f58f5449e3f4eea577ef886ea8939739da09732dd6d963b4b7d82528093be02f940ff1047ba6bbf1f7209a9c4d4fc16bca79894c86d229c8dc215149c75e4884fdfc33"}}}}}}, 0x3e5) r3 = perf_event_open(&(0x7f0000001d80)={0x2, 0x80, 0x5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x40641, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x40, 0x0, @perf_config_ext, 0x0, 0x1, 0x0, 0x2, 0x0, 0x9}, 0x0, 0x0, 0xffffffffffffffff, 0xa) perf_event_open(&(0x7f0000001d80)={0x3, 0x80, 0x0, 0x0, 0x0, 0x0, 0x4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, r3, 0x0) ioctl$F2FS_IOC_GET_COMPRESS_BLOCKS(r3, 0x8008f511, &(0x7f0000000480)) r4 = openat$hwrng(0xffffffffffffff9c, &(0x7f0000000580), 0xc00, 0x0) ioctl$EVIOCSCLOCKID(r4, 0x400445a0, &(0x7f00000005c0)=0x6) 05:35:00 executing program 2: preadv2(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x2) openat(0xffffffffffffff9c, 0x0, 0x0, 0x0) r0 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x105142, 0x62) r1 = openat(0xffffffffffffff9c, 0x0, 0x0, 0x0) fallocate(r1, 0x0, 0x0, 0x8800000) lseek(0xffffffffffffffff, 0x0, 0x0) openat(0xffffffffffffffff, 0x0, 0x0, 0x20) ioctl$FS_IOC_RESVSP(0xffffffffffffffff, 0x40305828, 0x0) faccessat2(0xffffffffffffffff, 0x0, 0x0, 0x0) openat(0xffffffffffffffff, 0x0, 0x1a340, 0x100) ioctl$LOOP_CTL_REMOVE(0xffffffffffffffff, 0x4c81, 0x0) r2 = fsmount(0xffffffffffffffff, 0x0, 0x0) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r3 = openat(r2, &(0x7f0000000000)='/proc/self/exe\x00', 0x4840, 0x2d) sendfile(r0, r3, 0x0, 0x100000003) 05:35:00 executing program 1: perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_emit_ethernet(0x36, &(0x7f0000000000)={@local, @remote, @void, {@ipv4={0x800, @tcp={{0x5, 0x4, 0x0, 0x0, 0x28, 0x0, 0x0, 0x0, 0x32, 0x0, @dev, @private=0xa010100}, {{0x0, 0x0, 0x41424344, 0x41424344, 0x0, 0x7, 0x5}}}}}}, 0x0) 05:35:00 executing program 0: r0 = perf_event_open(&(0x7f0000001d80)={0x2, 0x80, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, @perf_config_ext={0x2000000000000}}, 0x0, 0x0, 0xffffffffffffffff, 0xb) syz_emit_ethernet(0x32, &(0x7f0000000040)={@local, @remote, @void, {@ipv4={0x800, @igmp={{0x7, 0x4, 0x0, 0x0, 0x24, 0x0, 0x0, 0x0, 0x2, 0x0, @local, @private=0xa010102, {[@cipso={0x86, 0x8, 0x0, [{0x0, 0x2}]}]}}, {0x0, 0x0, 0x0, @broadcast}}}}}, 0x0) ioctl$PERF_EVENT_IOC_REFRESH(r0, 0x2402, 0x1fc) 05:35:00 executing program 7: r0 = socket$nl_sock_diag(0x10, 0x3, 0x4) sendmsg$DCCPDIAG_GETSOCK(r0, &(0x7f00000003c0)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x80000000}, 0xc, &(0x7f0000000380)={&(0x7f0000000080)={0x2cc, 0x13, 0x1, 0x70bd2d, 0x25dfdbfc, {0x2b, 0xf9, 0x2, 0x5, {0x4e24, 0x4e20, [0x5, 0x8001, 0x1, 0xfffffffc], [0x400, 0x1, 0x4096, 0x80], 0x0, [0x1, 0x7]}, 0xecea}, [@INET_DIAG_REQ_BYTECODE={0x40, 0x1, "381d61a4471a3dc65d0e5dd3d4c3984a34da948e6b7c517747e67b42ab94ec638531df9a75b898156f281c9701d22de2734e1c876674c9b5b4d131a8"}, @INET_DIAG_REQ_BYTECODE={0x36, 0x1, "833c37893449c606ef688eb66382294ea7af8adbd184efc35534dd10e0a522f0ecdd21f72a703708f0651a11ed6fd82927af"}, @INET_DIAG_REQ_BYTECODE={0xa0, 0x1, "db3ca4fdd3241664dc8ff9374468bf3ad6c59765bd5d4d875c45f7d60e21e5a8b50e4b5e881799a29494d12e3e209c07149d1e8852d37494c48b4710da9ada4218b9428b6b85024cb39c5d8e987802887cac1365ed271c41be79e5b7d213d44d20428773822b15ef218a25369d2be21fa32cb4fece0ae4c49e39f291f4e6ede346bc693893dcf7ef41ef2c1b6821c10870f612da11d2030c9c027f05"}, @INET_DIAG_REQ_BYTECODE={0xb1, 0x1, "d5f89c7c0b444f52d8b45d1ade089713a6ddddc49cb6950517030bc2bc7c0e7a9d8c8fb14bb26565daea57d00e007870948da30bc78ed610d97d18a52b34041f6ea3a43454975be837ef201fc34e4eb933c64f90accc9a40e474e0e7b494ca099c8aedf777c9d937be92950a2f68bb5be79d1febaafe898cd4d9e1be73373f9b3432680454479364c320fd499c2a126d81daa2e41727841adbeb7845fd9bde65508cce7b6f574be5f12c03c645"}, @INET_DIAG_REQ_BYTECODE={0xa8, 0x1, "a3acc415554f40064401b5dde0a4a513efa97a60e1257cc90832b68fd121920fcc310ed8e9ee42e59d2e4b15d9c017d43b41d470f705c9beac3e01859928545870c1456a2e1da78f1b5e32a6a148b296de73d7e15eed6b0a41bfee9752075030aabc40c49dddc2f12a125a84d6b63f73b9010205ade0ae0f2cfb4c9fc7e44891a2b91ea312a292fd11c5c8d56387f5c9dc2828321d2a164476b38807d8e206eed80fe826"}, @INET_DIAG_REQ_BYTECODE={0xa, 0x1, "3f91fa4e1f2a"}]}, 0x2cc}, 0x1, 0x0, 0x0, 0xe000}, 0x4004001) r1 = syz_genetlink_get_family_id$batadv(&(0x7f0000000440), r0) sendmsg$BATADV_CMD_GET_ORIGINATORS(0xffffffffffffffff, &(0x7f0000000500)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x200000}, 0xc, &(0x7f00000004c0)={&(0x7f0000000480)={0x24, r1, 0x800, 0x70bd25, 0x25dfdbfb, {}, [@BATADV_ATTR_GW_BANDWIDTH_DOWN={0x8, 0x31, 0xffff}, @BATADV_ATTR_MESH_IFINDEX={0x8}]}, 0x24}, 0x1, 0x0, 0x0, 0x4001}, 0x40000) syz_emit_ethernet(0x32, &(0x7f0000000400)=ANY=[@ANYBLOB="aaaaaaaaaad44304a601055cb04dee00f9773efca7aaaaaaaa3bc1150823a8c4629f2400de000000029078ac1414aa2a01010200"/64], 0x0) [ 2607.759650] SELinux: unrecognized netlink message: protocol=4 nlmsg_type=16 sclass=netlink_tcpdiag_socket pid=11812 comm=syz-executor.7 [ 2607.763434] SELinux: unrecognized netlink message: protocol=4 nlmsg_type=16 sclass=netlink_tcpdiag_socket pid=11813 comm=syz-executor.7 05:35:00 executing program 5: r0 = perf_event_open(&(0x7f0000001d80)={0x2, 0x80, 0x5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x40641, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x40, 0x0, @perf_config_ext, 0x0, 0x1, 0x0, 0x2, 0x0, 0x9}, 0x0, 0x0, 0xffffffffffffffff, 0xa) perf_event_open(&(0x7f0000001d80)={0x3, 0x80, 0x0, 0x0, 0x0, 0x0, 0x4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, r0, 0x0) ioctl$AUTOFS_IOC_SETTIMEOUT(r0, 0x80049367, &(0x7f0000000000)=0x6) syz_emit_ethernet(0xa3, &(0x7f0000000140)=ANY=[@ANYBLOB="aaaaaaaaaaaaaaaaaaaaaabb8848000000004611435f25be27dce74ebeda1560e13702cd95dc5cc92f436019263adfa8ff78c41657214ebaa25ebeeaa58f50a57dbeeda51f16ed34dac3dc8871a4d753571e6f9ad6295b3206e8000000007bb0f4f1c7d7d9b46a000050a1fbc6eab2f332039aad8df9869894746e3af471946b73b227ffed965fb597b3312c4349ec5f26b74fec97b485c11a9f1be577c51a8512bf47738c4ba75534e3e9c1"], 0x0) 05:35:00 executing program 4: perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_emit_ethernet(0x3a, &(0x7f0000000000)={@local, @remote, @void, {@ipv4={0x800, @tcp={{0x6, 0x4, 0x0, 0x0, 0x2c, 0x0, 0x0, 0x0, 0x32, 0x0, @dev, @private=0xa010100, {[@lsrr={0x83, 0x5}]}}, {{0x0, 0x0, 0x41424344, 0x41424344, 0x0, 0x7, 0x5}}}}}}, 0x0) (fail_nth: 13) openat$cgroup_devices(0xffffffffffffffff, 0x0, 0x2, 0x0) close(0xffffffffffffffff) pread64(0xffffffffffffffff, 0x0, 0x0, 0x2000) 05:35:00 executing program 7: r0 = perf_event_open(&(0x7f0000001d80)={0x2, 0x80, 0x5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x40641, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x40, 0x0, @perf_config_ext, 0x0, 0x1, 0x0, 0x2, 0x0, 0x8}, 0x0, 0x0, 0xffffffffffffffff, 0xa) perf_event_open(&(0x7f0000001d80)={0x3, 0x80, 0x0, 0x0, 0x0, 0x0, 0x4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, r0, 0x0) ioctl$F2FS_IOC_SET_PIN_FILE(r0, 0x4004f50d, &(0x7f0000000000)) syz_emit_ethernet(0x32, &(0x7f0000000040)={@local, @remote, @void, {@ipv4={0x800, @igmp={{0x7, 0x4, 0x0, 0x0, 0x24, 0x0, 0x0, 0x0, 0x2, 0x0, @local, @private=0xa010102, {[@cipso={0x86, 0x8, 0x0, [{0x0, 0x2}]}]}}, {0x0, 0x0, 0x0, @broadcast}}}}}, 0x0) [ 2607.865433] FAULT_INJECTION: forcing a failure. [ 2607.865433] name failslab, interval 1, probability 0, space 0, times 0 [ 2607.867741] CPU: 0 PID: 11822 Comm: syz-executor.4 Not tainted 5.10.204 #1 [ 2607.869149] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 2607.870890] Call Trace: [ 2607.871435] dump_stack+0x107/0x167 [ 2607.872178] should_fail.cold+0x5/0xa [ 2607.872952] ? create_object.isra.0+0x3a/0xa20 [ 2607.873875] should_failslab+0x5/0x20 [ 2607.874655] kmem_cache_alloc+0x5b/0x310 [ 2607.875495] create_object.isra.0+0x3a/0xa20 [ 2607.876382] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 2607.877425] kmem_cache_alloc_node+0x169/0x330 [ 2607.878379] __alloc_skb+0x6d/0x5b0 [ 2607.879136] alloc_skb_with_frags+0x92/0x570 [ 2607.880069] ? stack_trace_save+0x8c/0xc0 [ 2607.880936] sock_alloc_send_pskb+0x7af/0x930 [ 2607.881839] ? perf_trace_run_bpf_submit+0xf5/0x190 [ 2607.882929] ? sk_alloc+0x350/0x350 [ 2607.883674] ? ip_rcv_finish_core.constprop.0+0x4fb/0x1c90 [ 2607.884816] ? ip_rcv_finish+0x4f/0x1e0 [ 2607.885618] ? ip_rcv+0xae/0xd0 [ 2607.886302] ? __netif_receive_skb_one_core+0x19b/0x1f0 [ 2607.887383] ? __netif_receive_skb+0x27/0x1d0 [ 2607.888294] ? netif_receive_skb+0x12d/0x710 [ 2607.889295] ? tun_rx_batched.isra.0+0x462/0x710 [ 2607.890261] ? tun_get_user+0x191d/0x32f0 [ 2607.891119] ? tun_chr_write_iter+0xe1/0x1e0 [ 2607.892025] ? new_sync_write+0x42c/0x660 [ 2607.892867] ? vfs_write+0x747/0xa70 [ 2607.893702] ? ksys_write+0x12d/0x260 [ 2607.894497] ? do_syscall_64+0x33/0x40 [ 2607.895322] ? entry_SYSCALL_64_after_hwframe+0x62/0xc7 [ 2607.896415] __ip_append_data+0x1628/0x3310 [ 2607.897338] ? icmp_push_reply+0x490/0x490 [ 2607.898227] ? ip_finish_output+0x330/0x330 [ 2607.899135] ? ipv4_mtu+0x1ed/0x2c0 [ 2607.899891] ? icmp_push_reply+0x490/0x490 [ 2607.900761] ip_append_data+0x114/0x1a0 [ 2607.901596] icmp_push_reply+0x13b/0x490 [ 2607.902468] __icmp_send+0xbc9/0x14d0 [ 2607.903278] ? icmp_route_lookup.constprop.0+0x11a0/0x11a0 [ 2607.904422] ? __lockdep_reset_lock+0x180/0x180 [ 2607.905388] ? find_held_lock+0x2c/0x110 [ 2607.906299] ? ip_route_input_noref+0x160/0x2f0 [ 2607.907267] ip_options_compile+0xad/0xf0 [ 2607.908121] ? __ip_options_compile+0x15d0/0x15d0 [ 2607.909094] ? ip_list_rcv_finish.constprop.0+0x590/0x590 [ 2607.910243] ip_rcv_finish_core.constprop.0+0x4fb/0x1c90 [ 2607.911381] ip_rcv_finish+0x4f/0x1e0 [ 2607.912173] ip_rcv+0xae/0xd0 [ 2607.912814] ? ip_local_deliver+0x200/0x200 [ 2607.913697] __netif_receive_skb_one_core+0x19b/0x1f0 [ 2607.914749] ? __netif_receive_skb_core+0x3780/0x3780 [ 2607.915823] ? __lock_acquire+0xbb1/0x5b00 [ 2607.916701] __netif_receive_skb+0x27/0x1d0 [ 2607.917592] netif_receive_skb+0x12d/0x710 [ 2607.918462] ? __netif_receive_skb+0x1d0/0x1d0 [ 2607.919399] ? SOFTIRQ_verbose+0x10/0x10 [ 2607.920230] ? __lockdep_reset_lock+0x180/0x180 [ 2607.921205] tun_rx_batched.isra.0+0x462/0x710 [ 2607.922131] ? lock_acquire+0x197/0x470 [ 2607.922953] ? tun_get_user+0xee3/0x32f0 [ 2607.923782] ? tun_sock_write_space+0x1d0/0x1d0 [ 2607.924733] ? lock_release+0x680/0x680 [ 2607.925540] ? tun_get_user+0x16e6/0x32f0 [ 2607.926407] ? lock_downgrade+0x6d0/0x6d0 [ 2607.927244] ? eth_type_trans+0x2ad/0x5b0 [ 2607.928113] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 2607.929193] tun_get_user+0x191d/0x32f0 [ 2607.930016] ? usage_accumulate+0x110/0x110 [ 2607.930942] ? tun_build_skb+0xfe0/0xfe0 [ 2607.931792] ? tun_device_event+0x990/0x1160 [ 2607.932688] ? SOFTIRQ_verbose+0x10/0x10 [ 2607.933562] tun_chr_write_iter+0xe1/0x1e0 [ 2607.934441] new_sync_write+0x42c/0x660 [ 2607.935267] ? new_sync_read+0x6f0/0x6f0 [ 2607.936090] ? _cond_resched+0x12/0x80 [ 2607.936896] ? avc_policy_seqno+0x9/0x70 [ 2607.937716] ? selinux_file_permission+0x92/0x520 [ 2607.938725] ? __fget_files+0x296/0x4c0 [ 2607.939560] vfs_write+0x747/0xa70 [ 2607.940317] ksys_write+0x12d/0x260 [ 2607.941058] ? __ia32_sys_read+0xb0/0xb0 [ 2607.941904] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 2607.942987] ? syscall_enter_from_user_mode+0x1d/0x50 [ 2607.944051] do_syscall_64+0x33/0x40 [ 2607.944805] entry_SYSCALL_64_after_hwframe+0x62/0xc7 [ 2607.945870] RIP: 0033:0x7f6e6cf425ff [ 2607.946639] Code: 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 99 fd ff ff 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 b8 01 00 00 00 0f 05 <48> 3d 00 f0 ff ff 77 31 44 89 c7 48 89 44 24 08 e8 cc fd ff ff 48 [ 2607.950360] RSP: 002b:00007f6e6a505150 EFLAGS: 00000293 ORIG_RAX: 0000000000000001 [ 2607.951899] RAX: ffffffffffffffda RBX: 00007f6e6d0a2f60 RCX: 00007f6e6cf425ff [ 2607.953349] RDX: 000000000000003a RSI: 0000000020000000 RDI: 00000000000000f0 [ 2607.954815] RBP: 00007f6e6a5051d0 R08: 0000000000000000 R09: 0000000000000000 [ 2607.956264] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000002 [ 2607.957711] R13: 00007fffc51a6e8f R14: 00007f6e6a505300 R15: 0000000000022000 05:35:13 executing program 2: preadv2(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x2) openat(0xffffffffffffff9c, 0x0, 0x0, 0x0) r0 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x105142, 0x62) r1 = openat(0xffffffffffffff9c, 0x0, 0x0, 0x0) fallocate(r1, 0x0, 0x0, 0x8800000) lseek(0xffffffffffffffff, 0x0, 0x0) openat(0xffffffffffffffff, 0x0, 0x0, 0x20) ioctl$FS_IOC_RESVSP(0xffffffffffffffff, 0x40305828, 0x0) faccessat2(0xffffffffffffffff, 0x0, 0x0, 0x0) openat(0xffffffffffffffff, 0x0, 0x1a340, 0x100) ioctl$LOOP_CTL_REMOVE(0xffffffffffffffff, 0x4c81, 0x0) r2 = fsmount(0xffffffffffffffff, 0x0, 0x0) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r3 = openat(r2, &(0x7f0000000000)='/proc/self/exe\x00', 0x4840, 0x2d) sendfile(r0, r3, 0x0, 0x100000004) 05:35:13 executing program 6: ioctl$AUTOFS_DEV_IOCTL_FAIL(0xffffffffffffffff, 0xc0189377, &(0x7f0000000000)={{0x1, 0x1, 0x18, 0xffffffffffffffff, {0x0, 0x600}}, './file0\x00'}) perf_event_open(&(0x7f0000001d80)={0x2, 0x80, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x90, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x2, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7}, 0x0, 0xffffffffffffffff, r0, 0x0) perf_event_open(&(0x7f0000000080)={0x2, 0x80, 0x5, 0x2, 0x8, 0x7, 0x0, 0xb67, 0x3300, 0x4, 0x1, 0x0, 0x1, 0x1, 0x1, 0x0, 0x0, 0x1, 0x1, 0x1, 0x0, 0x1, 0x1, 0x1, 0x1, 0x3, 0x1, 0x1, 0x0, 0x0, 0x1, 0x1, 0x1, 0x1, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x1, 0x1, 0x1, 0x1, 0x1, 0x0, 0x1, 0x4, @perf_config_ext={0xc7, 0x3f}, 0x40000, 0x9, 0x20, 0x9, 0x4, 0x1f, 0x8, 0x0, 0x8001, 0x0, 0xfef}, 0xffffffffffffffff, 0x3, 0xffffffffffffffff, 0x3) syz_emit_ethernet(0x32, &(0x7f0000000040)=ANY=[@ANYBLOB="aa0000240000000000029078ac1414aa0a010102860800000000000200009078ffffffff00"/50], 0x0) read(r0, &(0x7f0000000100)=""/2, 0x2) 05:35:13 executing program 4: perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_emit_ethernet(0x3a, &(0x7f0000000000)={@local, @remote, @void, {@ipv4={0x800, @tcp={{0x6, 0x4, 0x0, 0x0, 0x2c, 0x0, 0x0, 0x0, 0x32, 0x0, @dev, @private=0xa010100, {[@lsrr={0x83, 0x5}]}}, {{0x0, 0x0, 0x41424344, 0x41424344, 0x0, 0x7, 0x5}}}}}}, 0x0) (fail_nth: 14) openat$cgroup_devices(0xffffffffffffffff, 0x0, 0x2, 0x0) close(0xffffffffffffffff) pread64(0xffffffffffffffff, 0x0, 0x0, 0x2000) 05:35:13 executing program 5: r0 = fcntl$dupfd(0xffffffffffffffff, 0x0, 0xffffffffffffffff) ioctl$PERF_EVENT_IOC_ENABLE(r0, 0x2400, 0x6) r1 = shmget(0x2, 0x2000, 0x200, &(0x7f0000ffe000/0x2000)=nil) shmctl$IPC_STAT(r1, 0x2, &(0x7f0000000400)=""/165) shmctl$IPC_RMID(r1, 0x0) r2 = shmget(0x2, 0x2000, 0x200, &(0x7f0000ffe000/0x2000)=nil) shmctl$IPC_STAT(r2, 0x2, &(0x7f0000000400)=""/165) shmctl$IPC_RMID(r2, 0x0) syz_emit_ethernet(0x32, &(0x7f0000000080)=ANY=[@ANYRES16=r0, @ANYRESHEX=r1, @ANYRES16=r2, @ANYRES32=r2, @ANYRES32=r1, @ANYRESOCT=r0, @ANYRESHEX=r0, @ANYBLOB="3e74529c0a2f0956fc11fb9f4c7cd9f47471ddaea01f0237c0f1a80131b14ea49fdc249a3b7b2cfab6cd2b131ca99d3e1d668f9f4d7bb6faf6f710e307dfa1bb602d80bb8effeaae2fae6c611c1a2d4d9d76085b2e9ab4878f28904bd00ca048c238c396c8ab7704062b64c17f"], 0x0) [ 2621.090390] FAULT_INJECTION: forcing a failure. [ 2621.090390] name failslab, interval 1, probability 0, space 0, times 0 [ 2621.092136] CPU: 1 PID: 11838 Comm: syz-executor.4 Not tainted 5.10.204 #1 [ 2621.093001] FAULT_INJECTION: forcing a failure. [ 2621.093001] name fail_page_alloc, interval 1, probability 0, space 0, times 0 [ 2621.093182] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 2621.093189] Call Trace: [ 2621.093211] dump_stack+0x107/0x167 [ 2621.093243] should_fail.cold+0x5/0xa [ 2621.098282] ? create_object.isra.0+0x3a/0xa20 [ 2621.099002] should_failslab+0x5/0x20 [ 2621.099573] kmem_cache_alloc+0x5b/0x310 [ 2621.100184] create_object.isra.0+0x3a/0xa20 [ 2621.100837] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 2621.101609] __kmalloc_node_track_caller+0x1a6/0x3b0 [ 2621.102357] ? alloc_skb_with_frags+0x92/0x570 [ 2621.103062] __alloc_skb+0xb1/0x5b0 [ 2621.103627] alloc_skb_with_frags+0x92/0x570 [ 2621.104320] ? stack_trace_save+0x8c/0xc0 [ 2621.104970] sock_alloc_send_pskb+0x7af/0x930 [ 2621.105677] ? sk_alloc+0x350/0x350 [ 2621.106247] ? ip_rcv_finish_core.constprop.0+0x4fb/0x1c90 [ 2621.107133] ? ip_rcv_finish+0x4f/0x1e0 [ 2621.107746] ? ip_rcv+0xae/0xd0 [ 2621.108258] ? __netif_receive_skb_one_core+0x19b/0x1f0 [ 2621.109087] ? __netif_receive_skb+0x27/0x1d0 [ 2621.109775] ? netif_receive_skb+0x12d/0x710 [ 2621.110464] ? tun_rx_batched.isra.0+0x462/0x710 [ 2621.111195] ? tun_get_user+0x191d/0x32f0 [ 2621.111833] ? tun_chr_write_iter+0xe1/0x1e0 [ 2621.112516] ? new_sync_write+0x42c/0x660 [ 2621.113151] ? vfs_write+0x747/0xa70 [ 2621.113728] ? ksys_write+0x12d/0x260 [ 2621.114319] ? do_syscall_64+0x33/0x40 [ 2621.114920] ? entry_SYSCALL_64_after_hwframe+0x62/0xc7 [ 2621.115747] __ip_append_data+0x1628/0x3310 [ 2621.116432] ? icmp_push_reply+0x490/0x490 [ 2621.117094] ? ip_finish_output+0x330/0x330 [ 2621.117759] ? ipv4_mtu+0x1ed/0x2c0 [ 2621.118337] ? icmp_push_reply+0x490/0x490 [ 2621.118999] ip_append_data+0x114/0x1a0 [ 2621.119625] icmp_push_reply+0x13b/0x490 [ 2621.120259] __icmp_send+0xbc9/0x14d0 [ 2621.120866] ? icmp_route_lookup.constprop.0+0x11a0/0x11a0 [ 2621.121730] ? __lockdep_reset_lock+0x180/0x180 [ 2621.122461] ? find_held_lock+0x2c/0x110 [ 2621.123125] ? ip_route_input_noref+0x160/0x2f0 [ 2621.123866] ip_options_compile+0xad/0xf0 [ 2621.124533] ? __ip_options_compile+0x15d0/0x15d0 [ 2621.125280] ? ip_list_rcv_finish.constprop.0+0x590/0x590 [ 2621.126132] ip_rcv_finish_core.constprop.0+0x4fb/0x1c90 [ 2621.127030] ip_rcv_finish+0x4f/0x1e0 [ 2621.127640] ip_rcv+0xae/0xd0 [ 2621.128163] ? ip_local_deliver+0x200/0x200 [ 2621.128834] __netif_receive_skb_one_core+0x19b/0x1f0 [ 2621.129627] ? __netif_receive_skb_core+0x3780/0x3780 [ 2621.130431] ? __lock_acquire+0xbb1/0x5b00 [ 2621.131110] __netif_receive_skb+0x27/0x1d0 [ 2621.131776] netif_receive_skb+0x12d/0x710 [ 2621.132442] ? __netif_receive_skb+0x1d0/0x1d0 [ 2621.133142] ? SOFTIRQ_verbose+0x10/0x10 [ 2621.133768] ? __lockdep_reset_lock+0x180/0x180 [ 2621.134508] tun_rx_batched.isra.0+0x462/0x710 [ 2621.135218] ? lock_acquire+0x197/0x470 [ 2621.135831] ? tun_get_user+0xee3/0x32f0 [ 2621.136459] ? tun_sock_write_space+0x1d0/0x1d0 [ 2621.137191] ? lock_release+0x680/0x680 [ 2621.137820] ? tun_get_user+0x16e6/0x32f0 [ 2621.138481] ? lock_downgrade+0x6d0/0x6d0 [ 2621.139125] ? eth_type_trans+0x2ad/0x5b0 [ 2621.139771] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 2621.140580] tun_get_user+0x191d/0x32f0 [ 2621.141189] ? usage_accumulate+0x110/0x110 [ 2621.141889] ? tun_build_skb+0xfe0/0xfe0 [ 2621.142530] ? tun_device_event+0x990/0x1160 [ 2621.143219] ? perf_trace_lock+0xac/0x490 [ 2621.143852] ? SOFTIRQ_verbose+0x10/0x10 [ 2621.144502] tun_chr_write_iter+0xe1/0x1e0 [ 2621.145152] new_sync_write+0x42c/0x660 [ 2621.145767] ? new_sync_read+0x6f0/0x6f0 [ 2621.146396] ? _cond_resched+0x12/0x80 [ 2621.147038] ? avc_policy_seqno+0x9/0x70 [ 2621.147671] ? selinux_file_permission+0x92/0x520 [ 2621.148432] ? __fget_files+0x296/0x4c0 [ 2621.149055] vfs_write+0x747/0xa70 [ 2621.149620] ksys_write+0x12d/0x260 [ 2621.150190] ? __ia32_sys_read+0xb0/0xb0 [ 2621.150838] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 2621.151657] ? syscall_enter_from_user_mode+0x1d/0x50 [ 2621.152461] do_syscall_64+0x33/0x40 [ 2621.153028] entry_SYSCALL_64_after_hwframe+0x62/0xc7 [ 2621.153827] RIP: 0033:0x7f6e6cf425ff [ 2621.154400] Code: 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 99 fd ff ff 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 b8 01 00 00 00 0f 05 <48> 3d 00 f0 ff ff 77 31 44 89 c7 48 89 44 24 08 e8 cc fd ff ff 48 [ 2621.157213] RSP: 002b:00007f6e6a505150 EFLAGS: 00000293 ORIG_RAX: 0000000000000001 [ 2621.158409] RAX: ffffffffffffffda RBX: 00007f6e6d0a2f60 RCX: 00007f6e6cf425ff [ 2621.159540] RDX: 000000000000003a RSI: 0000000020000000 RDI: 00000000000000f0 [ 2621.160650] RBP: 00007f6e6a5051d0 R08: 0000000000000000 R09: 0000000000000000 [ 2621.161765] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000002 [ 2621.162872] R13: 00007fffc51a6e8f R14: 00007f6e6a505300 R15: 0000000000022000 [ 2621.164014] CPU: 0 PID: 11839 Comm: syz-executor.0 Not tainted 5.10.204 #1 [ 2621.165418] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 2621.167089] Call Trace: [ 2621.167631] dump_stack+0x107/0x167 [ 2621.168379] should_fail.cold+0x5/0xa [ 2621.169161] __alloc_pages_nodemask+0x182/0x600 [ 2621.170105] ? __lockdep_reset_lock+0x180/0x180 [ 2621.171064] ? perf_event_switch_output+0x7d0/0x7d0 [ 2621.172073] ? __alloc_pages_slowpath.constprop.0+0x2130/0x2130 [ 2621.173309] ? tun_build_skb+0x181/0xfe0 [ 2621.174140] alloc_pages_current+0x187/0x280 [ 2621.175060] skb_page_frag_refill+0x27c/0x490 [ 2621.175976] tun_build_skb+0x1fa/0xfe0 [ 2621.176781] ? mark_lock+0xf5/0x2df0 [ 2621.177541] ? tun_xdp_act+0x6f0/0x6f0 [ 2621.178333] ? perf_trace_run_bpf_submit+0xf5/0x190 [ 2621.179366] ? perf_trace_run_bpf_submit+0xf5/0x190 [ 2621.180399] tun_get_user+0x6c1/0x32f0 [ 2621.181188] ? usage_accumulate+0x110/0x110 [ 2621.182109] ? tun_build_skb+0xfe0/0xfe0 [ 2621.182966] ? tun_device_event+0x990/0x1160 [ 2621.183878] ? lock_downgrade+0x6d0/0x6d0 [ 2621.184713] ? perf_trace_lock+0x2bd/0x490 [ 2621.185570] ? SOFTIRQ_verbose+0x10/0x10 [ 2621.186432] tun_chr_write_iter+0xe1/0x1e0 [ 2621.187461] new_sync_write+0x42c/0x660 [ 2621.188274] ? new_sync_read+0x6f0/0x6f0 [ 2621.189113] ? _cond_resched+0x12/0x80 [ 2621.189913] ? avc_policy_seqno+0x9/0x70 [ 2621.190746] ? selinux_file_permission+0x92/0x520 [ 2621.191734] ? __fget_files+0x296/0x4c0 [ 2621.192570] vfs_write+0x747/0xa70 [ 2621.193316] ksys_write+0x12d/0x260 [ 2621.194061] ? __ia32_sys_read+0xb0/0xb0 [ 2621.194900] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 2621.195966] ? syscall_enter_from_user_mode+0x1d/0x50 [ 2621.197021] do_syscall_64+0x33/0x40 [ 2621.197778] entry_SYSCALL_64_after_hwframe+0x62/0xc7 [ 2621.198831] RIP: 0033:0x7fc05d62c5ff [ 2621.199605] Code: 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 99 fd ff ff 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 b8 01 00 00 00 0f 05 <48> 3d 00 f0 ff ff 77 31 44 89 c7 48 89 44 24 08 e8 cc fd ff ff 48 [ 2621.203353] RSP: 002b:00007fc05abef150 EFLAGS: 00000293 ORIG_RAX: 0000000000000001 [ 2621.204920] RAX: ffffffffffffffda RBX: 00007fc05d78cf60 RCX: 00007fc05d62c5ff [ 2621.206380] RDX: 000000000000003a RSI: 0000000020000000 RDI: 00000000000000f0 [ 2621.207830] RBP: 00007fc05abef1d0 R08: 0000000000000000 R09: 0000000000000000 [ 2621.209267] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000001 [ 2621.210709] R13: 00007ffc5aac442f R14: 00007fc05abef300 R15: 0000000000022000 05:35:13 executing program 0: perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_emit_ethernet(0x3a, &(0x7f0000000000)={@local, @remote, @void, {@ipv4={0x800, @tcp={{0x6, 0x4, 0x0, 0x0, 0x2c, 0x0, 0x0, 0x0, 0x32, 0x0, @dev, @private=0xa010100, {[@lsrr={0x83, 0x5}]}}, {{0x0, 0x0, 0x41424344, 0x41424344, 0x0, 0x7, 0x5}}}}}}, 0x0) (fail_nth: 1) ioctl$BTRFS_IOC_BALANCE(0xffffffffffffffff, 0x5000940c, 0x0) close(0xffffffffffffffff) 05:35:13 executing program 3: r0 = perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x0, 0x3}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) pread64(0xffffffffffffffff, 0x0, 0x7ffffffff000, 0xf0ff1f00000000) bind$inet6(0xffffffffffffffff, &(0x7f0000000040)={0xa, 0x4e23, 0x0, @remote, 0xffff}, 0x1c) r1 = socket$netlink(0x10, 0x3, 0x0) sendmsg$nl_generic(0xffffffffffffffff, 0x0, 0x41) setsockopt$netlink_NETLINK_BROADCAST_ERROR(r1, 0x10e, 0x4, &(0x7f00000000c0)=0x1000, 0x4) sendmsg$nl_generic(r1, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000100)=ANY=[@ANYBLOB="28000000100001000000000000000000000000000500000024386a562b500000000c00008008000d00ac141400"], 0x28}}, 0x0) chdir(&(0x7f00000001c0)='./file0\x00') r2 = syz_open_dev$mouse(&(0x7f0000000400), 0x7fffffff, 0x2d0401) sendmsg$NL80211_CMD_ADD_NAN_FUNCTION(r2, &(0x7f0000000500)={&(0x7f0000000440)={0x10, 0x0, 0x0, 0x10}, 0xc, &(0x7f00000004c0)={&(0x7f00000002c0)={0x20, 0x0, 0x100, 0x70bd2b, 0x25dfdbfd, {{}, {@void, @val={0xc, 0x99, {0x3, 0x1b}}}}}, 0x20}, 0x1, 0x0, 0x0, 0x95}, 0x40000) ioctl$FICLONE(r2, 0x40049409, r0) r3 = open$dir(&(0x7f0000000000)='.\x00', 0x0, 0x0) perf_event_open(&(0x7f0000001d80)={0x6, 0x80, 0x0, 0x0, 0x0, 0x0, 0x4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffd, 0x0, @perf_bp={0x0, 0xffffffff81000000}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffd}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r4 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000040)='/proc/crypto\x00', 0x0, 0x0) r5 = openat2(r3, &(0x7f0000000180)='./file0\x00', &(0x7f0000000200)={0x800, 0x1b9}, 0x18) setsockopt$SO_TIMESTAMPING(r5, 0x1, 0x25, &(0x7f0000000240)=0x7100, 0x4) pread64(r4, &(0x7f00000010c0)=""/4088, 0xff8, 0x0) writev(0xffffffffffffffff, &(0x7f00000003c0)=[{&(0x7f0000000000)="0000abe02400030021206cda3b5e5672b89aeddb2a535fbd0706006dff0043a9d7cceb232fb81bf74ebdd05b7677", 0x2e}, {&(0x7f0000000680)="7fd41c04550300020000000000000000010046e92ed2616f72657d044129471d4fd479", 0x23}], 0x2) 05:35:13 executing program 7: syz_emit_ethernet(0x32, &(0x7f0000000040)={@local, @remote, @void, {@ipv4={0x800, @igmp={{0x7, 0x4, 0x0, 0x0, 0x24, 0x0, 0x0, 0x0, 0x2, 0x0, @local, @private=0xa010102, {[@cipso={0x86, 0x8, 0x0, [{0x0, 0x2}]}]}}, {0x0, 0x0, 0x0, @broadcast}}}}}, 0x0) r0 = openat$procfs(0xffffffffffffff9c, &(0x7f00000014c0)='/proc/bus/input/devices\x00', 0x0, 0x0) ioctl$CDROM_LAST_WRITTEN(r0, 0x5395, &(0x7f0000000000)) pread64(r0, &(0x7f0000000040)=""/4126, 0x101e, 0x2000) write$tun(r0, &(0x7f0000000080)={@void, @val={0x0, 0x80, 0x8000, 0x200, 0x4, 0xd7a}, @ipv4=@icmp={{0x27, 0x4, 0x0, 0x2, 0xf7, 0x68, 0x0, 0x8, 0x1, 0x0, @remote, @loopback, {[@rr={0x7, 0x1b, 0x70, [@loopback, @rand_addr=0x64010100, @rand_addr=0x64010102, @private=0xa010101, @multicast2, @multicast1]}, @cipso={0x86, 0x18, 0x2, [{0x5, 0x12, "68bd4646f8bc64be7ec883752e683b87"}]}, @lsrr={0x83, 0x7, 0x5f, [@private=0xa010101]}, @timestamp_prespec={0x44, 0x4c, 0x9a, 0x3, 0x1, [{@multicast2, 0xfffffffe}, {@local, 0x1}, {@local, 0x8}, {@broadcast, 0x20}, {@private=0xa010102, 0xfff}, {@dev={0xac, 0x14, 0x14, 0x3b}, 0x2}, {@remote, 0x7f}, {@initdev={0xac, 0x1e, 0x0, 0x0}, 0x2}, {@multicast2, 0x5}]}]}}, @echo_reply={0x0, 0x0, 0x0, 0x67, 0x0, "dc40c842c6e6c9fcfd555c094d245c25a0eee64b946173c564ed29dc5e552bb48b19242a8b4587f99bc1725309ba150a359440b0e6fa76bcc108217d2def6c3b480fd21d64d4f263bd01571b4a15a27c0b5c49"}}}, 0x101) 05:35:13 executing program 1: perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_emit_ethernet(0x3a, &(0x7f0000000000)={@local, @remote, @void, {@ipv4={0x800, @tcp={{0x6, 0x4, 0x0, 0x0, 0x2c, 0x0, 0x0, 0x0, 0x32, 0x0, @dev, @private=0xa010100, {[@lsrr={0x83, 0x5}]}}, {{0x0, 0x0, 0x41424344, 0x41424344, 0x0, 0x7, 0x5}}}}}}, 0x0) (fail_nth: 1) [ 2621.222686] FAULT_INJECTION: forcing a failure. [ 2621.222686] name fail_page_alloc, interval 1, probability 0, space 0, times 0 [ 2621.225238] CPU: 0 PID: 11847 Comm: syz-executor.1 Not tainted 5.10.204 #1 [ 2621.226668] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 2621.228357] Call Trace: [ 2621.228903] dump_stack+0x107/0x167 [ 2621.229672] should_fail.cold+0x5/0xa [ 2621.230473] __alloc_pages_nodemask+0x182/0x600 [ 2621.231430] ? __lockdep_reset_lock+0x180/0x180 [ 2621.232376] ? perf_event_switch_output+0x7d0/0x7d0 [ 2621.233399] ? __alloc_pages_slowpath.constprop.0+0x2130/0x2130 [ 2621.234677] ? tun_build_skb+0x181/0xfe0 [ 2621.235515] alloc_pages_current+0x187/0x280 [ 2621.236435] skb_page_frag_refill+0x27c/0x490 [ 2621.237358] tun_build_skb+0x1fa/0xfe0 [ 2621.238185] ? mark_lock+0xf5/0x2df0 [ 2621.238952] ? tun_xdp_act+0x6f0/0x6f0 [ 2621.239771] ? perf_trace_run_bpf_submit+0xf5/0x190 [ 2621.240793] ? perf_trace_run_bpf_submit+0xf5/0x190 [ 2621.241843] tun_get_user+0x6c1/0x32f0 [ 2621.242653] ? usage_accumulate+0x110/0x110 [ 2621.243575] ? tun_build_skb+0xfe0/0xfe0 [ 2621.244412] ? tun_device_event+0x990/0x1160 [ 2621.245313] ? lock_downgrade+0x6d0/0x6d0 [ 2621.246162] ? perf_trace_lock+0x2bd/0x490 [ 2621.247035] ? SOFTIRQ_verbose+0x10/0x10 [ 2621.247902] tun_chr_write_iter+0xe1/0x1e0 [ 2621.248775] new_sync_write+0x42c/0x660 [ 2621.249594] ? new_sync_read+0x6f0/0x6f0 [ 2621.250430] ? _cond_resched+0x12/0x80 [ 2621.251249] ? avc_policy_seqno+0x9/0x70 [ 2621.252079] ? selinux_file_permission+0x92/0x520 [ 2621.253080] ? __fget_files+0x296/0x4c0 [ 2621.253919] vfs_write+0x747/0xa70 [ 2621.254680] ksys_write+0x12d/0x260 [ 2621.255435] ? __ia32_sys_read+0xb0/0xb0 [ 2621.256277] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 2621.257343] ? syscall_enter_from_user_mode+0x1d/0x50 [ 2621.258410] do_syscall_64+0x33/0x40 [ 2621.259180] entry_SYSCALL_64_after_hwframe+0x62/0xc7 [ 2621.260235] RIP: 0033:0x7f56064f65ff [ 2621.261004] Code: 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 99 fd ff ff 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 b8 01 00 00 00 0f 05 <48> 3d 00 f0 ff ff 77 31 44 89 c7 48 89 44 24 08 e8 cc fd ff ff 48 [ 2621.264762] RSP: 002b:00007f5603ab9150 EFLAGS: 00000293 ORIG_RAX: 0000000000000001 [ 2621.266321] RAX: ffffffffffffffda RBX: 00007f5606656f60 RCX: 00007f56064f65ff [ 2621.267796] RDX: 000000000000003a RSI: 0000000020000000 RDI: 00000000000000f0 [ 2621.269267] RBP: 00007f5603ab91d0 R08: 0000000000000000 R09: 0000000000000000 [ 2621.270711] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000001 [ 2621.272154] R13: 00007ffe3650190f R14: 00007f5603ab9300 R15: 0000000000022000 [ 2621.283929] netlink: 8 bytes leftover after parsing attributes in process `syz-executor.3'. 05:35:13 executing program 7: syz_emit_ethernet(0x42, &(0x7f0000000080)={@local, @remote, @void, {@ipv4={0x800, @igmp={{0xb, 0x4, 0x0, 0x0, 0x34, 0x0, 0x0, 0x0, 0x2, 0x0, @local, @private=0xa010102, {[@cipso={0x86, 0x18, 0x0, [{0x0, 0x12, "4c0e2b97f707fcffffd7b4e0ff7f0000"}]}]}}, {0x0, 0x0, 0x0, @broadcast}}}}}, 0x0) 05:35:13 executing program 5: prctl$PR_GET_NAME(0x10, &(0x7f00000001c0)=""/4096) prctl$PR_GET_NAME(0x10, &(0x7f0000000000)=""/168) syz_emit_ethernet(0x32, &(0x7f0000000100)=ANY=[@ANYBLOB="aaaaaaaaaaaaaaaaaaaaaabb08004700002400000e8cf44d9d896dca000000029078ac1414aa0a01010286080000000000020000b078ffffffff42a51fffb456b10f06ed9388385e6cdc2007a81d8ec618a19bd18708436afb47b0c28e39abcbf17f50664080a0031140fa97f5624945c5252f2117fd8f00005f7d9497000000000000000000"], 0x0) 05:35:13 executing program 6: sendmsg$inet6(0xffffffffffffffff, &(0x7f0000000240)={&(0x7f0000000000)={0xa, 0x4e24, 0x5, @mcast2, 0xc9c8}, 0x1c, &(0x7f0000000200)=[{&(0x7f0000000080)="8895c6006b48ad5e584642a823cbe6074e470d916c85120653fa2d283d7e24fbb87efc3caf17e799", 0x28}, {&(0x7f00000000c0)="d3", 0x1}, {&(0x7f0000000100)="9583fd0533bbe2074b7c4075a9112b28165bb629d1ddf74fb3f53635d79266e17e91a4e954e19e808d54745f5d6a2c345b9bf366d960660f8d1c9bbad342ba294920af0a03668fa5c2150b37c3346746c0a49bf3169156b5257a2c22edf0b5839648a289490dd288fc177a7498987f73e58010323c81977f55174e32fc630b70cf0169371149fdc987e68d72097265cbb96c486725819539f56fea3c41a3185461da0b836ea3992b4881f0f0112b1e373a8861b7ab610e04af97e9aecea9d44851138fe74fe60d29b0f0b164580ba347d3c0930190e1004a1cec132db9bfee1f722f2508a987f9f4a5", 0xe9}], 0x3}, 0x20004011) perf_event_open(&(0x7f0000001d80)={0x2, 0x80, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_emit_ethernet(0x32, &(0x7f0000000280)=ANY=[@ANYBLOB="aaaaaaaaaaaaaaaaaaaaaabb0800470000240000000000029078ac1414aa0a010102860800000000000200009078ffffffff56d650832737cd23bbbfb373a20caf2bcd48256507a1a136796d947706efd3b483b8e15bfbc51ca75a96713407e7269a00000000e6d26974225d54c9d1a0e474f7492dcbfc52763a6eb026c5f1383315673eb963485b5384f62f2305da1394e0c18b212d66736d39ce09c14e290d13c5d89aa1904643c1379e9fb7f78afe508a5d497108846e35331df1"], 0x0) 05:35:14 executing program 3: r0 = perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x0, 0x3}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) pread64(0xffffffffffffffff, 0x0, 0x7ffffffff000, 0xf0ff1f00000000) bind$inet6(0xffffffffffffffff, &(0x7f0000000040)={0xa, 0x4e23, 0x0, @remote, 0xffff}, 0x1c) r1 = socket$netlink(0x10, 0x3, 0x0) sendmsg$nl_generic(0xffffffffffffffff, 0x0, 0x41) setsockopt$netlink_NETLINK_BROADCAST_ERROR(r1, 0x10e, 0x4, &(0x7f00000000c0)=0x1000, 0x4) sendmsg$nl_generic(r1, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000100)=ANY=[@ANYBLOB="28000000100001000000000000000000000000000500000024386a562b500000000c00008008000d00ac141400"], 0x28}}, 0x0) chdir(&(0x7f00000001c0)='./file0\x00') r2 = syz_open_dev$mouse(&(0x7f0000000400), 0x7fffffff, 0x2d0401) sendmsg$NL80211_CMD_ADD_NAN_FUNCTION(r2, &(0x7f0000000500)={&(0x7f0000000440)={0x10, 0x0, 0x0, 0x10}, 0xc, &(0x7f00000004c0)={&(0x7f00000002c0)={0x20, 0x0, 0x100, 0x70bd2b, 0x25dfdbfd, {{}, {@void, @val={0xc, 0x99, {0x3, 0x1b}}}}}, 0x20}, 0x1, 0x0, 0x0, 0x95}, 0x40000) ioctl$FICLONE(r2, 0x40049409, r0) r3 = open$dir(&(0x7f0000000000)='.\x00', 0x0, 0x0) perf_event_open(&(0x7f0000001d80)={0x6, 0x80, 0x0, 0x0, 0x0, 0x0, 0x4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffd, 0x0, @perf_bp={0x0, 0xffffffff81000000}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffd}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r4 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000040)='/proc/crypto\x00', 0x0, 0x0) r5 = openat2(r3, &(0x7f0000000180)='./file0\x00', &(0x7f0000000200)={0x800, 0x1b9}, 0x18) setsockopt$SO_TIMESTAMPING(r5, 0x1, 0x25, &(0x7f0000000240)=0x7100, 0x4) pread64(r4, &(0x7f00000010c0)=""/4088, 0xff8, 0x0) writev(0xffffffffffffffff, &(0x7f00000003c0)=[{&(0x7f0000000000)="0000abe02400030021206cda3b5e5672b89aeddb2a535fbd0706006dff0043a9d7cceb232fb81bf74ebdd05b7677", 0x2e}, {&(0x7f0000000680)="7fd41c04550300020000000000000000010046e92ed2616f72657d044129471d4fd47924fd0900e09e", 0x29}], 0x2) 05:35:14 executing program 5: syz_emit_ethernet(0x32, &(0x7f0000000200)=ANY=[@ANYBLOB="ffffffffffffaaaaaaaaaabb0800470000240000000000029078ac1414aa0a010102860800000000000200009078ffffffff24b92f8b2046f05cfe945293de4646ba9ba3b6bc4f96bd2945bf295205b17993cbb20e08f22366bf51e0a7e71090dac59e297000c87a60127a2ecc268a92c0de1c137a5e6fd2695cd7c301f331ef658fc431e0043eabb0c3b0ed56da873028cb7d951fd66111c63e236f6931dd6e9def2b4fc33dcbe2533701ffaceaa52601a86889b73872c1c0d96f4668f7aaed78b0f1b0e110530dcd6f54ec394bf56b4d2c0a873fa1c76cbea0456bf9b2a4b1cb16e47e3c28b1f17981e5adee"], 0x0) recvfrom(0xffffffffffffffff, &(0x7f0000000300)=""/246, 0xf6, 0x2022, &(0x7f0000000180)=@qipcrtr={0x2a, 0x1, 0x2}, 0x80) 05:35:14 executing program 7: sendmsg$DEVLINK_CMD_TRAP_GROUP_GET(0xffffffffffffffff, &(0x7f0000000180)={&(0x7f0000000080)={0x10, 0x0, 0x0, 0x4000}, 0xc, &(0x7f0000000140)={&(0x7f00000000c0)={0x70, 0x0, 0x300, 0x70bd28, 0x25dfdbfb, {}, [{@pci={{0x8}, {0x11}}, {0xd}}, {@nsim={{0xe}, {0xf, 0x2, {'netdevsim', 0x0}}}, {0xd}}]}, 0x70}, 0x1, 0x0, 0x0, 0x8}, 0x11) sendmsg$DEVLINK_CMD_TRAP_GROUP_SET(0xffffffffffffffff, &(0x7f00000003c0)={&(0x7f00000001c0)={0x10, 0x0, 0x0, 0x800000}, 0xc, &(0x7f0000000380)={&(0x7f0000000200)={0x154, 0x0, 0x100, 0x70bd2c, 0x25dfdbfd, {}, [{@pci={{0x8}, {0x11}}, {0xd}, {0x5}}, {@pci={{0x8}, {0x11}}, {0xd}, {0x5, 0x83, 0x1}}, {@pci={{0x8}, {0x11}}, {0xd}, {0x5, 0x83, 0x1}}, {@nsim={{0xe}, {0xf, 0x2, {'netdevsim', 0x0}}}, {0xd}, {0x5, 0x83, 0x1}}, {@pci={{0x8}, {0x11}}, {0xd}, {0x5}}, {@nsim={{0xe}, {0xf, 0x2, {'netdevsim', 0x0}}}, {0xd}, {0x5}}]}, 0x154}}, 0x1) syz_emit_ethernet(0x32, &(0x7f0000000000)=ANY=[@ANYRES16, @ANYRESHEX=0x0, @ANYBLOB="42aee012e57c5867d321888c51e4f3aef5c52fafdad0b8e343aa489f4a3b70fe9d7f5c8ca6baf12a79302e350fbe02cc67243e70ebec17"], 0x0) [ 2621.523482] netlink: 8 bytes leftover after parsing attributes in process `syz-executor.3'. 05:35:29 executing program 4: perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_emit_ethernet(0x3a, &(0x7f0000000000)={@local, @remote, @void, {@ipv4={0x800, @tcp={{0x6, 0x4, 0x0, 0x0, 0x2c, 0x0, 0x0, 0x0, 0x32, 0x0, @dev, @private=0xa010100, {[@lsrr={0x83, 0x5}]}}, {{0x0, 0x0, 0x41424344, 0x41424344, 0x0, 0x7, 0x5}}}}}}, 0x0) (fail_nth: 15) openat$cgroup_devices(0xffffffffffffffff, 0x0, 0x2, 0x0) close(0xffffffffffffffff) pread64(0xffffffffffffffff, 0x0, 0x0, 0x2000) 05:35:29 executing program 0: perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_emit_ethernet(0x3a, &(0x7f0000000000)={@local, @remote, @void, {@ipv4={0x800, @tcp={{0x6, 0x4, 0x0, 0x0, 0x2c, 0x0, 0x0, 0x0, 0x32, 0x0, @dev, @private=0xa010100, {[@lsrr={0x83, 0x5}]}}, {{0x0, 0x0, 0x41424344, 0x41424344, 0x0, 0x7, 0x5}}}}}}, 0x0) (fail_nth: 2) ioctl$BTRFS_IOC_BALANCE(0xffffffffffffffff, 0x5000940c, 0x0) close(0xffffffffffffffff) 05:35:29 executing program 2: preadv2(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x2) openat(0xffffffffffffff9c, 0x0, 0x0, 0x0) r0 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x105142, 0x62) r1 = openat(0xffffffffffffff9c, 0x0, 0x0, 0x0) fallocate(r1, 0x0, 0x0, 0x8800000) lseek(0xffffffffffffffff, 0x0, 0x0) openat(0xffffffffffffffff, 0x0, 0x0, 0x20) ioctl$FS_IOC_RESVSP(0xffffffffffffffff, 0x40305828, 0x0) faccessat2(0xffffffffffffffff, 0x0, 0x0, 0x0) openat(0xffffffffffffffff, 0x0, 0x1a340, 0x100) ioctl$LOOP_CTL_REMOVE(0xffffffffffffffff, 0x4c81, 0x0) r2 = fsmount(0xffffffffffffffff, 0x0, 0x0) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r3 = openat(r2, &(0x7f0000000000)='/proc/self/exe\x00', 0x4840, 0x2d) sendfile(r0, r3, 0x0, 0x100000005) 05:35:29 executing program 5: syz_emit_ethernet(0x3b, &(0x7f0000000000)={@local, @random="124cf72fc991", @void, {@ipv4={0x800, @udp={{0x9, 0x4, 0x2, 0xb, 0x2d, 0x64, 0x1, 0xf2, 0x11, 0x0, @loopback, @broadcast, {[@ssrr={0x89, 0xf, 0xc5, [@empty, @initdev={0xac, 0x1e, 0x1, 0x0}, @remote]}, @end]}}, {0x4e22, 0x4e23, 0x9, 0x0, @opaque="1c"}}}}}, 0x0) 05:35:29 executing program 1: perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_emit_ethernet(0x3a, &(0x7f0000000000)={@local, @remote, @void, {@ipv4={0x800, @tcp={{0x6, 0x4, 0x0, 0x0, 0x2c, 0x0, 0x0, 0x0, 0x32, 0x0, @dev, @private=0xa010100, {[@lsrr={0x83, 0x5}]}}, {{0x0, 0x0, 0x41424344, 0x41424344, 0x0, 0x7, 0x5}}}}}}, 0x0) (fail_nth: 2) 05:35:29 executing program 6: perf_event_open(&(0x7f0000001d80)={0x2, 0x80, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_emit_ethernet(0xbc, &(0x7f0000000180)=ANY=[@ANYBLOB="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"], 0x0) 05:35:29 executing program 7: syz_genetlink_get_family_id$tipc(&(0x7f0000000000), 0xffffffffffffffff) syz_emit_ethernet(0x32, &(0x7f0000000040)={@local, @remote, @void, {@ipv4={0x800, @igmp={{0x7, 0x4, 0x0, 0x0, 0x24, 0x0, 0x0, 0x0, 0x2, 0x0, @local, @private=0xa010102, {[@cipso={0x86, 0x8, 0x0, [{0x0, 0x2}]}]}}, {0x0, 0x0, 0x0, @broadcast}}}}}, 0x0) 05:35:29 executing program 3: r0 = perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x0, 0x3}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) pread64(0xffffffffffffffff, 0x0, 0x7ffffffff000, 0xf0ff1f00000000) bind$inet6(0xffffffffffffffff, &(0x7f0000000040)={0xa, 0x4e23, 0x0, @remote, 0xffff}, 0x1c) r1 = socket$netlink(0x10, 0x3, 0x0) sendmsg$nl_generic(0xffffffffffffffff, 0x0, 0x41) setsockopt$netlink_NETLINK_BROADCAST_ERROR(r1, 0x10e, 0x4, &(0x7f00000000c0)=0x1000, 0x4) sendmsg$nl_generic(r1, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000100)=ANY=[@ANYBLOB="28000000100001000000000000000000000000000500000024386a562b500000000c00008008000d00ac141400"], 0x28}}, 0x0) chdir(&(0x7f00000001c0)='./file0\x00') r2 = syz_open_dev$mouse(&(0x7f0000000400), 0x7fffffff, 0x2d0401) sendmsg$NL80211_CMD_ADD_NAN_FUNCTION(r2, &(0x7f0000000500)={&(0x7f0000000440)={0x10, 0x0, 0x0, 0x10}, 0xc, &(0x7f00000004c0)={&(0x7f00000002c0)={0x20, 0x0, 0x100, 0x70bd2b, 0x25dfdbfd, {{}, {@void, @val={0xc, 0x99, {0x3, 0x1b}}}}}, 0x20}, 0x1, 0x0, 0x0, 0x95}, 0x40000) ioctl$FICLONE(r2, 0x40049409, r0) r3 = open$dir(&(0x7f0000000000)='.\x00', 0x0, 0x0) perf_event_open(&(0x7f0000001d80)={0x6, 0x80, 0x0, 0x0, 0x0, 0x0, 0x4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffd, 0x0, @perf_bp={0x0, 0xffffffff81000000}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffd}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r4 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000040)='/proc/crypto\x00', 0x0, 0x0) r5 = openat2(r3, &(0x7f0000000180)='./file0\x00', &(0x7f0000000200)={0x800, 0x1b9}, 0x18) setsockopt$SO_TIMESTAMPING(r5, 0x1, 0x25, &(0x7f0000000240)=0x7100, 0x4) pread64(r4, &(0x7f00000010c0)=""/4088, 0xff8, 0x0) writev(0xffffffffffffffff, &(0x7f00000003c0)=[{&(0x7f0000000000)="0000abe02400030021206cda3b5e5672b89aeddb2a535fbd0706006dff0043a9d7cceb232fb81bf74ebdd05b7677", 0x2e}, {&(0x7f0000000680)="7fd41c04550300020000000000000000010046e92ed2616f72657d044129471d4fd47924fd0900e09e", 0x29}], 0x2) [ 2637.286337] FAULT_INJECTION: forcing a failure. [ 2637.286337] name failslab, interval 1, probability 0, space 0, times 0 [ 2637.288871] CPU: 1 PID: 11877 Comm: syz-executor.4 Not tainted 5.10.204 #1 [ 2637.290409] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 2637.292254] Call Trace: [ 2637.292841] dump_stack+0x107/0x167 [ 2637.293659] should_fail.cold+0x5/0xa [ 2637.294501] ? skb_clone+0x14f/0x3d0 [ 2637.295365] should_failslab+0x5/0x20 [ 2637.296208] kmem_cache_alloc+0x5b/0x310 [ 2637.297112] skb_clone+0x14f/0x3d0 [ 2637.297903] ip_mc_output+0x69c/0xa30 [ 2637.298805] ip_push_pending_frames+0x12e/0x2c0 [ 2637.299853] icmp_push_reply+0x351/0x490 [ 2637.300758] __icmp_send+0xbc9/0x14d0 [ 2637.301618] ? icmp_route_lookup.constprop.0+0x11a0/0x11a0 [ 2637.302885] ? __lockdep_reset_lock+0x180/0x180 [ 2637.303941] ? find_held_lock+0x2c/0x110 [ 2637.304876] ? ip_route_input_noref+0x160/0x2f0 [ 2637.305907] ip_options_compile+0xad/0xf0 [ 2637.306828] ? __ip_options_compile+0x15d0/0x15d0 [ 2637.307917] ? ip_list_rcv_finish.constprop.0+0x590/0x590 [ 2637.309134] ip_rcv_finish_core.constprop.0+0x4fb/0x1c90 [ 2637.310339] ip_rcv_finish+0x4f/0x1e0 [ 2637.311205] ip_rcv+0xae/0xd0 [ 2637.311923] ? ip_local_deliver+0x200/0x200 [ 2637.312884] __netif_receive_skb_one_core+0x19b/0x1f0 [ 2637.314022] ? __netif_receive_skb_core+0x3780/0x3780 [ 2637.315171] ? __lock_acquire+0xbb1/0x5b00 [ 2637.316144] __netif_receive_skb+0x27/0x1d0 [ 2637.317097] netif_receive_skb+0x12d/0x710 [ 2637.318028] ? __netif_receive_skb+0x1d0/0x1d0 [ 2637.319045] ? SOFTIRQ_verbose+0x10/0x10 [ 2637.319980] ? __lockdep_reset_lock+0x180/0x180 [ 2637.321036] tun_rx_batched.isra.0+0x462/0x710 [ 2637.322045] ? lock_acquire+0x197/0x470 [ 2637.322940] ? tun_get_user+0xee3/0x32f0 [ 2637.323836] ? tun_sock_write_space+0x1d0/0x1d0 [ 2637.324879] ? lock_release+0x680/0x680 [ 2637.325751] ? tun_get_user+0x16e6/0x32f0 [ 2637.326351] FAULT_INJECTION: forcing a failure. [ 2637.326351] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 2637.326671] ? lock_downgrade+0x6d0/0x6d0 [ 2637.326697] ? eth_type_trans+0x2ad/0x5b0 [ 2637.330820] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 2637.331975] tun_get_user+0x191d/0x32f0 [ 2637.332845] ? usage_accumulate+0x110/0x110 [ 2637.333811] ? tun_build_skb+0xfe0/0xfe0 [ 2637.334739] ? tun_device_event+0x990/0x1160 [ 2637.335721] ? perf_trace_lock+0xac/0x490 [ 2637.336626] ? SOFTIRQ_verbose+0x10/0x10 [ 2637.337535] tun_chr_write_iter+0xe1/0x1e0 [ 2637.338471] new_sync_write+0x42c/0x660 [ 2637.339378] ? new_sync_read+0x6f0/0x6f0 [ 2637.340273] ? _cond_resched+0x12/0x80 [ 2637.341132] ? avc_policy_seqno+0x9/0x70 [ 2637.342038] ? selinux_file_permission+0x92/0x520 [ 2637.343126] ? __fget_files+0x296/0x4c0 [ 2637.344015] vfs_write+0x747/0xa70 [ 2637.344802] ksys_write+0x12d/0x260 [ 2637.345609] ? __ia32_sys_read+0xb0/0xb0 [ 2637.346527] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 2637.347689] ? syscall_enter_from_user_mode+0x1d/0x50 [ 2637.348823] do_syscall_64+0x33/0x40 [ 2637.349645] entry_SYSCALL_64_after_hwframe+0x62/0xc7 [ 2637.350807] RIP: 0033:0x7f6e6cf425ff [ 2637.351624] Code: 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 99 fd ff ff 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 b8 01 00 00 00 0f 05 <48> 3d 00 f0 ff ff 77 31 44 89 c7 48 89 44 24 08 e8 cc fd ff ff 48 [ 2637.355673] RSP: 002b:00007f6e6a505150 EFLAGS: 00000293 ORIG_RAX: 0000000000000001 [ 2637.357333] RAX: ffffffffffffffda RBX: 00007f6e6d0a2f60 RCX: 00007f6e6cf425ff [ 2637.358925] RDX: 000000000000003a RSI: 0000000020000000 RDI: 00000000000000f0 [ 2637.360487] RBP: 00007f6e6a5051d0 R08: 0000000000000000 R09: 0000000000000000 [ 2637.362070] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000002 [ 2637.363656] R13: 00007fffc51a6e8f R14: 00007f6e6a505300 R15: 0000000000022000 [ 2637.365255] CPU: 0 PID: 11886 Comm: syz-executor.0 Not tainted 5.10.204 #1 [ 2637.366674] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 2637.368346] Call Trace: [ 2637.368889] dump_stack+0x107/0x167 [ 2637.369641] should_fail.cold+0x5/0xa [ 2637.370429] copy_page_from_iter+0x40a/0x900 [ 2637.371354] tun_build_skb+0x2d3/0xfe0 [ 2637.372179] ? tun_xdp_act+0x6f0/0x6f0 [ 2637.372979] ? perf_trace_run_bpf_submit+0xf5/0x190 [ 2637.373997] ? perf_trace_run_bpf_submit+0xf5/0x190 [ 2637.375057] tun_get_user+0x6c1/0x32f0 [ 2637.375852] ? usage_accumulate+0x110/0x110 [ 2637.376772] ? tun_build_skb+0xfe0/0xfe0 [ 2637.377616] ? tun_device_event+0x990/0x1160 [ 2637.378509] ? lock_downgrade+0x6d0/0x6d0 [ 2637.379356] ? perf_trace_lock+0x2bd/0x490 [ 2637.380217] ? SOFTIRQ_verbose+0x10/0x10 [ 2637.381078] tun_chr_write_iter+0xe1/0x1e0 [ 2637.381947] new_sync_write+0x42c/0x660 [ 2637.382768] ? new_sync_read+0x6f0/0x6f0 [ 2637.383598] ? _cond_resched+0x12/0x80 [ 2637.384396] ? avc_policy_seqno+0x9/0x70 [ 2637.385220] ? selinux_file_permission+0x92/0x520 [ 2637.386210] ? __fget_files+0x296/0x4c0 [ 2637.387066] vfs_write+0x747/0xa70 [ 2637.387812] ksys_write+0x12d/0x260 [ 2637.388558] ? __ia32_sys_read+0xb0/0xb0 [ 2637.389393] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 2637.390456] ? syscall_enter_from_user_mode+0x1d/0x50 [ 2637.391525] do_syscall_64+0x33/0x40 [ 2637.392283] entry_SYSCALL_64_after_hwframe+0x62/0xc7 [ 2637.392892] netlink: 8 bytes leftover after parsing attributes in process `syz-executor.3'. [ 2637.393315] RIP: 0033:0x7fc05d62c5ff [ 2637.393335] Code: 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 99 fd ff ff 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 b8 01 00 00 00 0f 05 <48> 3d 00 f0 ff ff 77 31 44 89 c7 48 89 44 24 08 e8 cc fd ff ff 48 [ 2637.393348] RSP: 002b:00007fc05abef150 EFLAGS: 00000293 ORIG_RAX: 0000000000000001 [ 2637.393372] RAX: ffffffffffffffda RBX: 00007fc05d78cf60 RCX: 00007fc05d62c5ff [ 2637.393386] RDX: 000000000000003a RSI: 0000000020000000 RDI: 00000000000000f0 [ 2637.393399] RBP: 00007fc05abef1d0 R08: 0000000000000000 R09: 0000000000000000 [ 2637.393411] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000001 [ 2637.393424] R13: 00007ffc5aac442f R14: 00007fc05abef300 R15: 0000000000022000 [ 2637.412139] FAULT_INJECTION: forcing a failure. [ 2637.412139] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 2637.414735] CPU: 1 PID: 11878 Comm: syz-executor.1 Not tainted 5.10.204 #1 [ 2637.416284] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 2637.418119] Call Trace: [ 2637.418712] dump_stack+0x107/0x167 [ 2637.419524] should_fail.cold+0x5/0xa [ 2637.420383] copy_page_from_iter+0x40a/0x900 [ 2637.421391] tun_build_skb+0x2d3/0xfe0 [ 2637.422277] ? tun_xdp_act+0x6f0/0x6f0 [ 2637.423168] ? __lock_acquire+0xbb1/0x5b00 [ 2637.424122] tun_get_user+0x6c1/0x32f0 [ 2637.425003] ? usage_accumulate+0x110/0x110 [ 2637.425986] ? tun_build_skb+0xfe0/0xfe0 [ 2637.426896] ? tun_device_event+0x990/0x1160 [ 2637.427871] ? lock_downgrade+0x6d0/0x6d0 [ 2637.428808] ? perf_trace_lock+0xac/0x490 [ 2637.429727] ? SOFTIRQ_verbose+0x10/0x10 [ 2637.430665] tun_chr_write_iter+0xe1/0x1e0 [ 2637.431639] new_sync_write+0x42c/0x660 [ 2637.432525] ? new_sync_read+0x6f0/0x6f0 [ 2637.433445] ? _cond_resched+0x12/0x80 [ 2637.434323] ? avc_policy_seqno+0x9/0x70 [ 2637.435229] ? selinux_file_permission+0x92/0x520 [ 2637.436299] ? __fget_files+0x296/0x4c0 [ 2637.437213] vfs_write+0x747/0xa70 [ 2637.438012] ksys_write+0x12d/0x260 [ 2637.438833] ? __ia32_sys_read+0xb0/0xb0 [ 2637.439741] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 2637.440922] ? syscall_enter_from_user_mode+0x1d/0x50 [ 2637.442079] do_syscall_64+0x33/0x40 [ 2637.442923] entry_SYSCALL_64_after_hwframe+0x62/0xc7 [ 2637.444080] RIP: 0033:0x7f56064f65ff [ 2637.444903] Code: 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 99 fd ff ff 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 b8 01 00 00 00 0f 05 <48> 3d 00 f0 ff ff 77 31 44 89 c7 48 89 44 24 08 e8 cc fd ff ff 48 [ 2637.448988] RSP: 002b:00007f5603ab9150 EFLAGS: 00000293 ORIG_RAX: 0000000000000001 [ 2637.450695] RAX: ffffffffffffffda RBX: 00007f5606656f60 RCX: 00007f56064f65ff [ 2637.452299] RDX: 000000000000003a RSI: 0000000020000000 RDI: 00000000000000f0 [ 2637.453901] RBP: 00007f5603ab91d0 R08: 0000000000000000 R09: 0000000000000000 [ 2637.455482] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000001 [ 2637.457079] R13: 00007ffe3650190f R14: 00007f5603ab9300 R15: 0000000000022000 05:35:30 executing program 4: perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_emit_ethernet(0x3a, &(0x7f0000000000)={@local, @remote, @void, {@ipv4={0x800, @tcp={{0x6, 0x4, 0x0, 0x0, 0x2c, 0x0, 0x0, 0x0, 0x32, 0x0, @dev, @private=0xa010100, {[@lsrr={0x83, 0x5}]}}, {{0x0, 0x0, 0x41424344, 0x41424344, 0x0, 0x7, 0x5}}}}}}, 0x0) (fail_nth: 16) openat$cgroup_devices(0xffffffffffffffff, 0x0, 0x2, 0x0) close(0xffffffffffffffff) pread64(0xffffffffffffffff, 0x0, 0x0, 0x2000) 05:35:30 executing program 6: r0 = perf_event_open(&(0x7f0000001d80)={0x2, 0x80, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) perf_event_open(&(0x7f0000000080)={0x0, 0x80, 0x3, 0x81, 0x9, 0x3, 0x0, 0xde82, 0x94000, 0xa, 0x1, 0x1, 0x0, 0x1, 0x1, 0x1, 0x1, 0x1, 0x1, 0x0, 0x1, 0x1, 0x0, 0x0, 0x1, 0x3, 0x1, 0x0, 0x1, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x1, 0x0, 0x0, 0x1, 0x1, 0x1, 0x0, 0x0, 0x0, 0x6, 0x4, @perf_config_ext={0x8, 0x2}, 0x6000, 0xfff, 0x13712e8, 0x8, 0x1000, 0x3, 0x4, 0x0, 0x1, 0x0, 0xffff}, 0xffffffffffffffff, 0x2, r0, 0x3) syz_emit_ethernet(0x32, &(0x7f0000000040)={@local, @remote, @void, {@ipv4={0x800, @igmp={{0x7, 0x4, 0x0, 0x0, 0x24, 0x0, 0x0, 0x0, 0x2, 0x0, @local, @private=0xa010102, {[@cipso={0x86, 0x8, 0x0, [{0x0, 0x2}]}]}}, {0x0, 0x0, 0x0, @broadcast}}}}}, 0x0) ioctl$BTRFS_IOC_GET_SUBVOL_INFO(r0, 0x81f8943c, &(0x7f0000000140)) r1 = perf_event_open(&(0x7f0000001d80)={0x2, 0x80, 0x5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x40641, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x40, 0x0, @perf_config_ext, 0x0, 0x1, 0x0, 0x2, 0x0, 0x9}, 0x0, 0x0, 0xffffffffffffffff, 0xa) perf_event_open(&(0x7f0000001d80)={0x3, 0x80, 0x0, 0x0, 0x0, 0x0, 0x4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x0, 0x3fe0000}}, 0x0, 0x0, r1, 0x0) r2 = perf_event_open(&(0x7f0000001d80)={0x2, 0x80, 0x5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x40641, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x40, 0x0, @perf_config_ext, 0x0, 0x1, 0x0, 0x2, 0x0, 0x9}, 0x0, 0x0, 0xffffffffffffffff, 0xa) perf_event_open(&(0x7f0000001d80)={0x3, 0x80, 0x0, 0x0, 0x0, 0x0, 0x4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, r2, 0x0) copy_file_range(r1, &(0x7f0000000000)=0x4, r2, &(0x7f0000000100)=0xffffffffffff8001, 0x7, 0x0) [ 2637.553320] FAULT_INJECTION: forcing a failure. [ 2637.553320] name failslab, interval 1, probability 0, space 0, times 0 [ 2637.555660] CPU: 0 PID: 11898 Comm: syz-executor.4 Not tainted 5.10.204 #1 [ 2637.557052] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 2637.558727] Call Trace: [ 2637.559271] dump_stack+0x107/0x167 [ 2637.560025] should_fail.cold+0x5/0xa [ 2637.560803] ? __sanitizer_cov_trace_switch+0x45/0x80 [ 2637.561849] ? create_object.isra.0+0x3a/0xa20 [ 2637.562919] should_failslab+0x5/0x20 [ 2637.563692] kmem_cache_alloc+0x5b/0x310 [ 2637.564536] create_object.isra.0+0x3a/0xa20 [ 2637.565429] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 2637.566471] kmem_cache_alloc+0x159/0x310 [ 2637.567339] skb_clone+0x14f/0x3d0 [ 2637.568078] ip_mc_output+0x69c/0xa30 [ 2637.568874] ip_push_pending_frames+0x12e/0x2c0 [ 2637.569831] icmp_push_reply+0x351/0x490 [ 2637.570696] __icmp_send+0xbc9/0x14d0 [ 2637.571511] ? icmp_route_lookup.constprop.0+0x11a0/0x11a0 [ 2637.572646] ? __lockdep_reset_lock+0x180/0x180 [ 2637.573622] ? find_held_lock+0x2c/0x110 [ 2637.574522] ? ip_route_input_noref+0x160/0x2f0 [ 2637.575513] ip_options_compile+0xad/0xf0 [ 2637.576358] ? __ip_options_compile+0x15d0/0x15d0 [ 2637.577339] ? ip_list_rcv_finish.constprop.0+0x590/0x590 [ 2637.578469] ip_rcv_finish_core.constprop.0+0x4fb/0x1c90 [ 2637.579606] ip_rcv_finish+0x4f/0x1e0 [ 2637.580388] ip_rcv+0xae/0xd0 [ 2637.581026] ? ip_local_deliver+0x200/0x200 [ 2637.581905] __netif_receive_skb_one_core+0x19b/0x1f0 [ 2637.582955] ? __netif_receive_skb_core+0x3780/0x3780 [ 2637.584013] ? __lock_acquire+0xbb1/0x5b00 [ 2637.584894] __netif_receive_skb+0x27/0x1d0 [ 2637.585774] netif_receive_skb+0x12d/0x710 [ 2637.586632] ? __netif_receive_skb+0x1d0/0x1d0 [ 2637.587564] ? SOFTIRQ_verbose+0x10/0x10 [ 2637.588399] ? __lockdep_reset_lock+0x180/0x180 [ 2637.589364] tun_rx_batched.isra.0+0x462/0x710 [ 2637.590290] ? lock_acquire+0x197/0x470 [ 2637.591117] ? tun_get_user+0xee3/0x32f0 [ 2637.591948] ? tun_sock_write_space+0x1d0/0x1d0 [ 2637.592894] ? lock_release+0x680/0x680 [ 2637.593704] ? tun_get_user+0x16e6/0x32f0 [ 2637.594548] ? lock_downgrade+0x6d0/0x6d0 [ 2637.595398] ? eth_type_trans+0x2ad/0x5b0 [ 2637.596259] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 2637.597340] tun_get_user+0x191d/0x32f0 [ 2637.598152] ? usage_accumulate+0x110/0x110 [ 2637.599078] ? tun_build_skb+0xfe0/0xfe0 [ 2637.599923] ? tun_device_event+0x990/0x1160 [ 2637.600829] ? SOFTIRQ_verbose+0x10/0x10 [ 2637.601699] tun_chr_write_iter+0xe1/0x1e0 [ 2637.602568] new_sync_write+0x42c/0x660 [ 2637.603401] ? new_sync_read+0x6f0/0x6f0 [ 2637.604237] ? _cond_resched+0x12/0x80 [ 2637.605042] ? avc_policy_seqno+0x9/0x70 [ 2637.605868] ? selinux_file_permission+0x92/0x520 [ 2637.606870] ? __fget_files+0x296/0x4c0 [ 2637.607709] vfs_write+0x747/0xa70 [ 2637.608456] ksys_write+0x12d/0x260 [ 2637.609199] ? __ia32_sys_read+0xb0/0xb0 [ 2637.610035] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 2637.611114] ? syscall_enter_from_user_mode+0x1d/0x50 [ 2637.612182] do_syscall_64+0x33/0x40 [ 2637.612939] entry_SYSCALL_64_after_hwframe+0x62/0xc7 [ 2637.613976] RIP: 0033:0x7f6e6cf425ff [ 2637.614748] Code: 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 99 fd ff ff 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 b8 01 00 00 00 0f 05 <48> 3d 00 f0 ff ff 77 31 44 89 c7 48 89 44 24 08 e8 cc fd ff ff 48 [ 2637.618435] RSP: 002b:00007f6e6a505150 EFLAGS: 00000293 ORIG_RAX: 0000000000000001 [ 2637.619993] RAX: ffffffffffffffda RBX: 00007f6e6d0a2f60 RCX: 00007f6e6cf425ff [ 2637.621434] RDX: 000000000000003a RSI: 0000000020000000 RDI: 00000000000000f0 [ 2637.622885] RBP: 00007f6e6a5051d0 R08: 0000000000000000 R09: 0000000000000000 [ 2637.624329] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000002 [ 2637.625774] R13: 00007fffc51a6e8f R14: 00007f6e6a505300 R15: 0000000000022000 05:35:30 executing program 6: r0 = socket$inet6_tcp(0xa, 0x1, 0x0) setsockopt$inet6_tcp_int(r0, 0x6, 0x2, &(0x7f0000000080)=0x90, 0x4) bind$inet6(r0, &(0x7f00000000c0)={0xa, 0x4e20, 0x0, @loopback}, 0x1c) connect$inet6(r0, &(0x7f0000000000)={0xa, 0x4e20, 0x0, @empty}, 0x1c) setsockopt$sock_int(r0, 0x1, 0x8, &(0x7f0000002ec0), 0x4) sendmsg$inet6(r0, &(0x7f00000006c0)={0x0, 0x0, &(0x7f0000000540)=[{&(0x7f00000001c0)="cf", 0xfffffdef}], 0x1}, 0x10044001) setsockopt$SO_TIMESTAMP(r0, 0x1, 0x40, &(0x7f0000000280)=0x380, 0x4) recvfrom$inet6(r0, &(0x7f0000001e00)=""/4096, 0x1000, 0xcd08, 0x0, 0x0) (fail_nth: 1) 05:35:30 executing program 7: syz_emit_ethernet(0x32, &(0x7f0000000040)={@local, @remote, @void, {@ipv4={0x800, @igmp={{0x7, 0x4, 0x0, 0x0, 0x24, 0x0, 0x0, 0x0, 0x2, 0x0, @local, @private=0xa010102, {[@cipso={0x86, 0x8, 0x0, [{0x0, 0x2}]}]}}, {0x0, 0x0, 0x0, @broadcast}}}}}, 0x0) ioctl$AUTOFS_DEV_IOCTL_CLOSEMOUNT(0xffffffffffffffff, 0xc0189375, &(0x7f0000000000)={{0x1, 0x1, 0x18, 0xffffffffffffffff}, './file0\x00'}) syz_emit_ethernet(0x2a, &(0x7f00000000c0)={@multicast, @link_local={0x1, 0x80, 0xc2, 0x0, 0x0, 0x3}, @void, {@ipv4={0x800, @icmp={{0x5, 0x4, 0x0, 0x29, 0x1c, 0x68, 0x0, 0x40, 0x1, 0x0, @multicast1, @multicast2}, @address_request={0x11, 0x0, 0x0, 0xffff}}}}}, &(0x7f0000000100)={0x1, 0x1, [0x2e, 0xe10, 0x9ca, 0x77]}) write$tun(r0, &(0x7f0000000080)={@void, @void, @arp=@ether_ipv4={0x1, 0x800, 0x6, 0x4, 0x4, @multicast, @broadcast, @local, @multicast2}}, 0x1c) 05:35:30 executing program 0: perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_emit_ethernet(0x3a, &(0x7f0000000000)={@local, @remote, @void, {@ipv4={0x800, @tcp={{0x6, 0x4, 0x0, 0x0, 0x2c, 0x0, 0x0, 0x0, 0x32, 0x0, @dev, @private=0xa010100, {[@lsrr={0x83, 0x5}]}}, {{0x0, 0x0, 0x41424344, 0x41424344, 0x0, 0x7, 0x5}}}}}}, 0x0) (fail_nth: 3) ioctl$BTRFS_IOC_BALANCE(0xffffffffffffffff, 0x5000940c, 0x0) close(0xffffffffffffffff) [ 2637.679912] FAULT_INJECTION: forcing a failure. 05:35:30 executing program 3: r0 = perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x0, 0x3}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) pread64(0xffffffffffffffff, 0x0, 0x7ffffffff000, 0xf0ff1f00000000) bind$inet6(0xffffffffffffffff, &(0x7f0000000040)={0xa, 0x4e23, 0x0, @remote, 0xffff}, 0x1c) r1 = socket$netlink(0x10, 0x3, 0x0) sendmsg$nl_generic(0xffffffffffffffff, 0x0, 0x41) setsockopt$netlink_NETLINK_BROADCAST_ERROR(r1, 0x10e, 0x4, &(0x7f00000000c0)=0x1000, 0x4) sendmsg$nl_generic(r1, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000100)=ANY=[@ANYBLOB="28000000100001000000000000000000000000000500000024386a562b500000000c00008008000d00ac141400"], 0x28}}, 0x0) chdir(&(0x7f00000001c0)='./file0\x00') r2 = syz_open_dev$mouse(&(0x7f0000000400), 0x7fffffff, 0x2d0401) sendmsg$NL80211_CMD_ADD_NAN_FUNCTION(r2, &(0x7f0000000500)={&(0x7f0000000440)={0x10, 0x0, 0x0, 0x10}, 0xc, &(0x7f00000004c0)={&(0x7f00000002c0)={0x20, 0x0, 0x100, 0x70bd2b, 0x25dfdbfd, {{}, {@void, @val={0xc, 0x99, {0x3, 0x1b}}}}}, 0x20}, 0x1, 0x0, 0x0, 0x95}, 0x40000) ioctl$FICLONE(r2, 0x40049409, r0) r3 = open$dir(&(0x7f0000000000)='.\x00', 0x0, 0x0) perf_event_open(&(0x7f0000001d80)={0x6, 0x80, 0x0, 0x0, 0x0, 0x0, 0x4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffd, 0x0, @perf_bp={0x0, 0xffffffff81000000}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffd}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r4 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000040)='/proc/crypto\x00', 0x0, 0x0) r5 = openat2(r3, &(0x7f0000000180)='./file0\x00', &(0x7f0000000200)={0x800, 0x1b9}, 0x18) setsockopt$SO_TIMESTAMPING(r5, 0x1, 0x25, &(0x7f0000000240)=0x7100, 0x4) pread64(r4, &(0x7f00000010c0)=""/4088, 0xff8, 0x0) writev(0xffffffffffffffff, &(0x7f00000003c0)=[{&(0x7f0000000000)="0000abe02400030021206cda3b5e5672b89aeddb2a535fbd0706006dff0043a9d7cceb232fb81bf74ebdd05b7677", 0x2e}, {&(0x7f0000000680)="7fd41c04550300020000000000000000010046e92ed2616f72657d044129471d4fd47924fd0900e09e", 0x29}], 0x2) [ 2637.679912] name failslab, interval 1, probability 0, space 0, times 0 [ 2637.682781] CPU: 0 PID: 11906 Comm: syz-executor.0 Not tainted 5.10.204 #1 [ 2637.684175] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 2637.685841] Call Trace: [ 2637.686384] dump_stack+0x107/0x167 [ 2637.687146] should_fail.cold+0x5/0xa [ 2637.687928] ? __build_skb+0x21/0x60 [ 2637.688698] should_failslab+0x5/0x20 [ 2637.689470] kmem_cache_alloc+0x5b/0x310 [ 2637.690311] __build_skb+0x21/0x60 [ 2637.691046] build_skb+0x1a/0x220 [ 2637.691761] __tun_build_skb+0x2c/0x260 [ 2637.692580] tun_build_skb+0x62c/0xfe0 [ 2637.693400] ? tun_xdp_act+0x6f0/0x6f0 [ 2637.694198] ? perf_trace_run_bpf_submit+0xf5/0x190 [ 2637.695229] ? perf_trace_run_bpf_submit+0xf5/0x190 [ 2637.696258] tun_get_user+0x6c1/0x32f0 [ 2637.697052] ? usage_accumulate+0x110/0x110 [ 2637.697996] ? tun_build_skb+0xfe0/0xfe0 [ 2637.698855] ? tun_device_event+0x990/0x1160 [ 2637.699758] ? lock_downgrade+0x6d0/0x6d0 [ 2637.700603] ? perf_trace_lock+0x2bd/0x490 [ 2637.701472] ? SOFTIRQ_verbose+0x10/0x10 [ 2637.702335] tun_chr_write_iter+0xe1/0x1e0 [ 2637.703221] new_sync_write+0x42c/0x660 [ 2637.704044] ? new_sync_read+0x6f0/0x6f0 [ 2637.704888] ? _cond_resched+0x12/0x80 [ 2637.705701] ? avc_policy_seqno+0x9/0x70 [ 2637.706525] ? selinux_file_permission+0x92/0x520 [ 2637.707548] ? __fget_files+0x296/0x4c0 [ 2637.708387] vfs_write+0x747/0xa70 [ 2637.709129] ksys_write+0x12d/0x260 [ 2637.709881] ? __ia32_sys_read+0xb0/0xb0 [ 2637.710726] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 2637.711785] ? syscall_enter_from_user_mode+0x1d/0x50 [ 2637.712846] do_syscall_64+0x33/0x40 [ 2637.713605] entry_SYSCALL_64_after_hwframe+0x62/0xc7 [ 2637.714666] RIP: 0033:0x7fc05d62c5ff [ 2637.715428] Code: 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 99 fd ff ff 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 b8 01 00 00 00 0f 05 <48> 3d 00 f0 ff ff 77 31 44 89 c7 48 89 44 24 08 e8 cc fd ff ff 48 [ 2637.719123] RSP: 002b:00007fc05abef150 EFLAGS: 00000293 ORIG_RAX: 0000000000000001 [ 2637.720666] RAX: ffffffffffffffda RBX: 00007fc05d78cf60 RCX: 00007fc05d62c5ff [ 2637.722106] RDX: 000000000000003a RSI: 0000000020000000 RDI: 00000000000000f0 [ 2637.723559] RBP: 00007fc05abef1d0 R08: 0000000000000000 R09: 0000000000000000 [ 2637.725000] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000001 [ 2637.726445] R13: 00007ffc5aac442f R14: 00007fc05abef300 R15: 0000000000022000 05:35:30 executing program 5: r0 = openat$procfs(0xffffffffffffff9c, &(0x7f00000014c0)='/proc/bus/input/devices\x00', 0x0, 0x0) pread64(r0, &(0x7f0000000040)=""/4126, 0x101e, 0x2000) ioctl$TIOCGPGRP(r0, 0x540f, &(0x7f0000001080)=0x0) r2 = getpgrp(0x0) r3 = fork() move_pages(r3, 0x1, &(0x7f0000000100)=[&(0x7f0000ffa000/0x1000)=nil], 0x0, 0x0, 0x0) r4 = fork() move_pages(r4, 0x1, &(0x7f0000000100)=[&(0x7f0000ffa000/0x1000)=nil], 0x0, 0x0, 0x0) clone3(&(0x7f0000000300)={0x8000, &(0x7f0000000000), &(0x7f0000000080), &(0x7f00000000c0), {0x2}, &(0x7f0000000100)=""/89, 0x59, &(0x7f0000000180)=""/205, &(0x7f00000002c0)=[0x0, r1, r2, r3, r4], 0x5}, 0x58) r5 = openat$procfs(0xffffffffffffff9c, &(0x7f00000014c0)='/proc/bus/input/devices\x00', 0x0, 0x0) pread64(r5, &(0x7f0000000040)=""/4126, 0x101e, 0x2000) ioctl$VT_GETSTATE(r5, 0x5603, &(0x7f0000000380)={0x1f, 0x400, 0x89}) move_pages(r3, 0xa, &(0x7f00000010c0)=[&(0x7f0000ff9000/0x3000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000ffa000/0x3000)=nil, &(0x7f0000ffa000/0x4000)=nil, &(0x7f0000ff9000/0x4000)=nil, &(0x7f0000ffb000/0x3000)=nil, &(0x7f0000ffb000/0x4000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000ffe000/0x2000)=nil, &(0x7f0000ff4000/0xc000)=nil], 0x0, &(0x7f0000001140)=[0x0, 0x0, 0x0, 0x0], 0x6) syz_emit_ethernet(0x32, &(0x7f0000000040)=ANY=[@ANYBLOB="aaaaaaaaaaaaaaaaaaaaaabb0800470000240000000000029078ac1414aa0a010102870800000000000200009078ffffffff"], 0x0) [ 2637.763342] FAULT_INJECTION: forcing a failure. [ 2637.763342] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 2637.766049] CPU: 1 PID: 11914 Comm: syz-executor.6 Not tainted 5.10.204 #1 [ 2637.767456] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 2637.769119] Call Trace: [ 2637.769660] dump_stack+0x107/0x167 [ 2637.770404] should_fail.cold+0x5/0xa [ 2637.771207] _copy_to_iter+0x264/0x12d0 [ 2637.772019] ? mark_lock+0xf5/0x2df0 [ 2637.772771] ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0 [ 2637.773824] ? SOFTIRQ_verbose+0x10/0x10 [ 2637.774653] ? _copy_from_iter_nocache+0xd60/0xd60 [ 2637.775660] ? lock_chain_count+0x20/0x20 [ 2637.776499] ? __virt_addr_valid+0x128/0x350 [ 2637.777384] ? __check_object_size+0x319/0x440 [ 2637.778319] simple_copy_to_iter+0x4c/0x70 [ 2637.778851] netlink: 8 bytes leftover after parsing attributes in process `syz-executor.3'. [ 2637.779198] __skb_datagram_iter+0x122/0x880 [ 2637.779247] ? do_raw_spin_lock+0x121/0x260 [ 2637.782654] ? zerocopy_sg_from_iter+0x110/0x110 [ 2637.783606] ? mark_held_locks+0x9e/0xe0 [ 2637.784435] skb_copy_datagram_iter+0x88/0x190 [ 2637.785362] tcp_recvmsg+0x13b5/0x2930 [ 2637.786167] ? tcp_splice_read+0x8c0/0x8c0 [ 2637.787051] ? sock_has_perm+0x1ea/0x280 [ 2637.787876] ? selinux_socket_post_create+0x7f0/0x7f0 [ 2637.788919] ? lock_downgrade+0x6d0/0x6d0 [ 2637.789753] ? perf_trace_lock+0xac/0x490 [ 2637.790598] ? tcp_splice_read+0x8c0/0x8c0 [ 2637.791456] inet6_recvmsg+0x13b/0x6e0 [ 2637.792247] ? inet6_bind+0x120/0x120 [ 2637.793023] ? security_socket_recvmsg+0x95/0xc0 [ 2637.793976] ? inet6_bind+0x120/0x120 [ 2637.794768] sock_recvmsg+0xff/0x180 [ 2637.795525] __sys_recvfrom+0x1be/0x2f0 [ 2637.796332] ? __ia32_sys_send+0x100/0x100 [ 2637.797184] ? lock_downgrade+0x6d0/0x6d0 [ 2637.798049] ? wait_for_completion_io+0x270/0x270 [ 2637.799036] ? rcu_read_lock_any_held+0x75/0xa0 [ 2637.799973] ? vfs_write+0x354/0xa70 [ 2637.800732] ? fput_many+0x2f/0x1a0 [ 2637.801469] ? ksys_write+0x1a9/0x260 [ 2637.802235] ? __ia32_sys_read+0xb0/0xb0 [ 2637.803074] __x64_sys_recvfrom+0xdd/0x1b0 [ 2637.803932] ? syscall_enter_from_user_mode+0x1d/0x50 [ 2637.804976] do_syscall_64+0x33/0x40 [ 2637.805725] entry_SYSCALL_64_after_hwframe+0x62/0xc7 [ 2637.806779] RIP: 0033:0x7f7d1addbb19 [ 2637.807531] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 2637.811233] RSP: 002b:00007f7d18330188 EFLAGS: 00000246 ORIG_RAX: 000000000000002d [ 2637.812764] RAX: ffffffffffffffda RBX: 00007f7d1aeef020 RCX: 00007f7d1addbb19 [ 2637.814206] RDX: 0000000000001000 RSI: 0000000020001e00 RDI: 0000000000000003 [ 2637.815654] RBP: 00007f7d183301d0 R08: 0000000000000000 R09: 0000000000000000 [ 2637.817094] R10: 000000000000cd08 R11: 0000000000000246 R12: 0000000000000001 [ 2637.818532] R13: 00007ffe0ac926cf R14: 00007f7d18330300 R15: 0000000000022000 05:35:30 executing program 7: syz_emit_ethernet(0x32, &(0x7f0000000040)={@local, @remote, @void, {@ipv4={0x800, @igmp={{0x7, 0x4, 0x0, 0x3f, 0x24, 0x0, 0x0, 0x0, 0x2, 0x0, @loopback, @private=0xa010102, {[@cipso={0x86, 0x8, 0x0, [{0x0, 0x2}]}]}}, {0x0, 0x0, 0x0, @broadcast}}}}}, 0x0) write$tun(0xffffffffffffffff, &(0x7f0000000080)={@val={0x0, 0x521}, @val={0x0, 0x1, 0x5, 0x1000, 0x200, 0x6}, @llc={@llc={0xf4, 0xbc, "3fc3", "d6c337c10faa48608090e0b56f8d99142d9e85e533fa973d6b71cdbd7411fe7cd01e30efdf690a617894deb19743a539ee40b5b76bafedd35b4511100110d04cb8d2d3"}}}, 0x55) 05:35:44 executing program 6: r0 = socket$inet6_tcp(0xa, 0x1, 0x0) setsockopt$inet6_tcp_int(r0, 0x6, 0x2, &(0x7f0000000080)=0x90, 0x4) bind$inet6(r0, &(0x7f00000000c0)={0xa, 0x4e20, 0x0, @loopback}, 0x1c) connect$inet6(r0, &(0x7f0000000000)={0xa, 0x4e20, 0x0, @empty}, 0x1c) setsockopt$sock_int(r0, 0x1, 0x8, &(0x7f0000002ec0), 0x4) sendmsg$inet6(r0, &(0x7f00000006c0)={0x0, 0x0, &(0x7f0000000540)=[{&(0x7f00000001c0)="cf", 0xfffffdef}], 0x1}, 0x10044001) setsockopt$SO_TIMESTAMP(r0, 0x1, 0x40, &(0x7f0000000280)=0x380, 0x4) recvfrom$inet6(r0, &(0x7f0000001e00)=""/4096, 0x1000, 0xcd08, 0x0, 0x0) (fail_nth: 2) 05:35:44 executing program 5: syz_emit_ethernet(0x105, &(0x7f0000000080)={@local, @remote, @void, {@ipv4={0x800, @igmp={{0x7, 0x4, 0x0, 0x0, 0xf7, 0x0, 0x0, 0x0, 0x2, 0x0, @local, @empty, {[@cipso={0x86, 0x8, 0x0, [{0x0, 0x2}]}]}}, {0x0, 0x0, 0x0, @broadcast, "4053205fcea0e02ee3aca243dba1f49d796c860253da80068030f463c7bcd186a499b7a1a8ce003055cdf696e7d7a1767b433f9483a5261b7637bb72fd1bcd4eba2a8cf3222dba991fb8a0f7fc1e0c7fa464f2bf375116eede841b78ac0cf04c5d8c2e6ac9d92d137b71b368e87f7773cf3853df4686fba3e1ae55014a932bf3553d8646b53d5eba40167d9fd51a30d445176ed95bdab58d9b87d81c9e717c1f6766aae0b21fa2cd444f57ec121cccd6e3a8b9a7322de4ecaa9647af5744c159bd91f399a9034a71148e0e14f3782ebe4ecd65"}}}}}, 0x0) [ 2651.683636] FAULT_INJECTION: forcing a failure. [ 2651.683636] name failslab, interval 1, probability 0, space 0, times 0 [ 2651.684874] CPU: 1 PID: 11933 Comm: syz-executor.1 Not tainted 5.10.204 #1 [ 2651.685613] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 2651.686511] Call Trace: [ 2651.686800] dump_stack+0x107/0x167 [ 2651.687211] should_fail.cold+0x5/0xa [ 2651.687630] ? __build_skb+0x21/0x60 [ 2651.688040] should_failslab+0x5/0x20 [ 2651.688456] kmem_cache_alloc+0x5b/0x310 [ 2651.688911] __build_skb+0x21/0x60 [ 2651.689306] build_skb+0x1a/0x220 [ 2651.689685] __tun_build_skb+0x2c/0x260 [ 2651.690117] tun_build_skb+0x62c/0xfe0 [ 2651.690554] ? tun_xdp_act+0x6f0/0x6f0 [ 2651.691005] ? __lock_acquire+0xbb1/0x5b00 [ 2651.691473] tun_get_user+0x6c1/0x32f0 [ 2651.691901] ? usage_accumulate+0x110/0x110 [ 2651.692374] ? tun_build_skb+0xfe0/0xfe0 [ 2651.692812] ? tun_device_event+0x990/0x1160 [ 2651.693284] ? lock_downgrade+0x6d0/0x6d0 [ 2651.693741] ? perf_trace_lock+0xac/0x490 [ 2651.694187] ? SOFTIRQ_verbose+0x10/0x10 [ 2651.694626] tun_chr_write_iter+0xe1/0x1e0 [ 2651.695121] new_sync_write+0x42c/0x660 [ 2651.695572] ? new_sync_read+0x6f0/0x6f0 [ 2651.696031] ? _cond_resched+0x12/0x80 [ 2651.696473] ? avc_policy_seqno+0x9/0x70 [ 2651.696929] ? selinux_file_permission+0x92/0x520 [ 2651.697478] ? __fget_files+0x296/0x4c0 [ 2651.697933] vfs_write+0x747/0xa70 [ 2651.698341] ksys_write+0x12d/0x260 [ 2651.698753] ? __ia32_sys_read+0xb0/0xb0 [ 2651.699221] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 2651.699803] ? syscall_enter_from_user_mode+0x1d/0x50 [ 2651.700390] do_syscall_64+0x33/0x40 [ 2651.700807] entry_SYSCALL_64_after_hwframe+0x62/0xc7 [ 2651.701387] RIP: 0033:0x7f56064f65ff 05:35:44 executing program 1: perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_emit_ethernet(0x3a, &(0x7f0000000000)={@local, @remote, @void, {@ipv4={0x800, @tcp={{0x6, 0x4, 0x0, 0x0, 0x2c, 0x0, 0x0, 0x0, 0x32, 0x0, @dev, @private=0xa010100, {[@lsrr={0x83, 0x5}]}}, {{0x0, 0x0, 0x41424344, 0x41424344, 0x0, 0x7, 0x5}}}}}}, 0x0) (fail_nth: 3) [ 2651.701809] Code: 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 99 fd ff ff 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 b8 01 00 00 00 0f 05 <48> 3d 00 f0 ff ff 77 31 44 89 c7 48 89 44 24 08 e8 cc fd ff ff 48 [ 2651.704129] RSP: 002b:00007f5603ab9150 EFLAGS: 00000293 ORIG_RAX: 0000000000000001 05:35:44 executing program 2: preadv2(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x2) openat(0xffffffffffffff9c, 0x0, 0x0, 0x0) r0 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x105142, 0x62) r1 = openat(0xffffffffffffff9c, 0x0, 0x0, 0x0) fallocate(r1, 0x0, 0x0, 0x8800000) lseek(0xffffffffffffffff, 0x0, 0x0) openat(0xffffffffffffffff, 0x0, 0x0, 0x20) ioctl$FS_IOC_RESVSP(0xffffffffffffffff, 0x40305828, 0x0) faccessat2(0xffffffffffffffff, 0x0, 0x0, 0x0) openat(0xffffffffffffffff, 0x0, 0x1a340, 0x100) ioctl$LOOP_CTL_REMOVE(0xffffffffffffffff, 0x4c81, 0x0) r2 = fsmount(0xffffffffffffffff, 0x0, 0x0) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r3 = openat(r2, &(0x7f0000000000)='/proc/self/exe\x00', 0x4840, 0x2d) sendfile(r0, r3, 0x0, 0x100000006) 05:35:44 executing program 4: perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_emit_ethernet(0x3a, &(0x7f0000000000)={@local, @remote, @void, {@ipv4={0x800, @tcp={{0x6, 0x4, 0x0, 0x0, 0x2c, 0x0, 0x0, 0x0, 0x32, 0x0, @dev, @private=0xa010100, {[@lsrr={0x83, 0x5}]}}, {{0x0, 0x0, 0x41424344, 0x41424344, 0x0, 0x7, 0x5}}}}}}, 0x0) (fail_nth: 17) openat$cgroup_devices(0xffffffffffffffff, 0x0, 0x2, 0x0) close(0xffffffffffffffff) pread64(0xffffffffffffffff, 0x0, 0x0, 0x2000) 05:35:44 executing program 3: r0 = perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x0, 0x3}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) pread64(0xffffffffffffffff, 0x0, 0x7ffffffff000, 0xf0ff1f00000000) bind$inet6(0xffffffffffffffff, &(0x7f0000000040)={0xa, 0x4e23, 0x0, @remote, 0xffff}, 0x1c) r1 = socket$netlink(0x10, 0x3, 0x0) sendmsg$nl_generic(0xffffffffffffffff, 0x0, 0x41) setsockopt$netlink_NETLINK_BROADCAST_ERROR(r1, 0x10e, 0x4, &(0x7f00000000c0)=0x1000, 0x4) sendmsg$nl_generic(r1, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000100)=ANY=[@ANYBLOB="28000000100001000000000000000000000000000500000024386a562b500000000c00008008000d00ac141400"], 0x28}}, 0x0) chdir(&(0x7f00000001c0)='./file0\x00') r2 = syz_open_dev$mouse(&(0x7f0000000400), 0x7fffffff, 0x2d0401) sendmsg$NL80211_CMD_ADD_NAN_FUNCTION(r2, &(0x7f0000000500)={&(0x7f0000000440)={0x10, 0x0, 0x0, 0x10}, 0xc, &(0x7f00000004c0)={&(0x7f00000002c0)={0x20, 0x0, 0x100, 0x70bd2b, 0x25dfdbfd, {{}, {@void, @val={0xc, 0x99, {0x3, 0x1b}}}}}, 0x20}, 0x1, 0x0, 0x0, 0x95}, 0x40000) ioctl$FICLONE(r2, 0x40049409, r0) r3 = open$dir(&(0x7f0000000000)='.\x00', 0x0, 0x0) perf_event_open(&(0x7f0000001d80)={0x6, 0x80, 0x0, 0x0, 0x0, 0x0, 0x4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffd, 0x0, @perf_bp={0x0, 0xffffffff81000000}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffd}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r4 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000040)='/proc/crypto\x00', 0x0, 0x0) r5 = openat2(r3, &(0x7f0000000180)='./file0\x00', &(0x7f0000000200)={0x800, 0x1b9}, 0x18) setsockopt$SO_TIMESTAMPING(r5, 0x1, 0x25, &(0x7f0000000240)=0x7100, 0x4) pread64(r4, &(0x7f00000010c0)=""/4088, 0xff8, 0x0) writev(0xffffffffffffffff, &(0x7f00000003c0)=[{&(0x7f0000000000)="0000abe02400030021206cda3b5e5672b89aeddb2a535fbd0706006dff0043a9d7cceb232fb81bf74ebdd05b7677", 0x2e}, {&(0x7f0000000680)="7fd41c04550300020000000000000000010046e92ed2616f72657d044129471d4fd47924fd0900e09e0068de", 0x2c}], 0x2) 05:35:44 executing program 7: syz_emit_ethernet(0xcb, &(0x7f0000000040)={@empty, @remote, @val={@void, {0x8100, 0x5, 0x0, 0x2}}, {@ipv4={0x800, @igmp={{0x5, 0x4, 0x0, 0x0, 0xb9, 0x2000, 0x0, 0x0, 0x2, 0x0, @local, @private=0xa010102}, {0x0, 0x0, 0x0, @rand_addr=0x64010100, "7d3c5cb9cb1bf031b4b925fb0c0e923b018df75cd1c03c284245eb1b97d9f516f5df8b6ff66c05d6207f8272966cfcbf41fd3d353184ae0b1da50f7a3c2086d15b5fdfd243d38d0f5878686a51d0c141021696cb7463a2d7e2e970c06a97e9f5eec5fb7b35ca75d550043ed820404a5502dcd678c44d15f17b833c430ebd4a366b0069b74200893ff58d8210278eae916d237e1c6c5688d9227ea7bb7b"}}}}}, 0x0) 05:35:44 executing program 0: perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_emit_ethernet(0x3a, &(0x7f0000000000)={@local, @remote, @void, {@ipv4={0x800, @tcp={{0x6, 0x4, 0x0, 0x0, 0x2c, 0x0, 0x0, 0x0, 0x32, 0x0, @dev, @private=0xa010100, {[@lsrr={0x83, 0x5}]}}, {{0x0, 0x0, 0x41424344, 0x41424344, 0x0, 0x7, 0x5}}}}}}, 0x0) (fail_nth: 4) ioctl$BTRFS_IOC_BALANCE(0xffffffffffffffff, 0x5000940c, 0x0) close(0xffffffffffffffff) [ 2651.705183] RAX: ffffffffffffffda RBX: 00007f5606656f60 RCX: 00007f56064f65ff [ 2651.705993] RDX: 000000000000003a RSI: 0000000020000000 RDI: 00000000000000f0 [ 2651.706757] RBP: 00007f5603ab91d0 R08: 0000000000000000 R09: 0000000000000000 [ 2651.707528] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000001 [ 2651.708283] R13: 00007ffe3650190f R14: 00007f5603ab9300 R15: 0000000000022000 [ 2651.722450] FAULT_INJECTION: forcing a failure. [ 2651.722450] name failslab, interval 1, probability 0, space 0, times 0 [ 2651.724950] CPU: 0 PID: 11942 Comm: syz-executor.4 Not tainted 5.10.204 #1 [ 2651.726428] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 2651.728241] Call Trace: [ 2651.728821] dump_stack+0x107/0x167 [ 2651.729631] should_fail.cold+0x5/0xa [ 2651.730458] ? dst_alloc+0x9e/0x610 [ 2651.731557] should_failslab+0x5/0x20 [ 2651.732498] kmem_cache_alloc+0x5b/0x310 [ 2651.733505] dst_alloc+0x9e/0x610 [ 2651.734374] rt_dst_clone+0x59/0x860 [ 2651.735297] ip_mc_finish_output+0x95/0x280 [ 2651.736359] ip_mc_output+0x71c/0xa30 [ 2651.737307] ip_push_pending_frames+0x12e/0x2c0 [ 2651.738448] icmp_push_reply+0x351/0x490 [ 2651.739469] __icmp_send+0xbc9/0x14d0 [ 2651.740350] ? icmp_route_lookup.constprop.0+0x11a0/0x11a0 [ 2651.741556] ? __lockdep_reset_lock+0x180/0x180 [ 2651.742587] ? find_held_lock+0x2c/0x110 [ 2651.743544] ? ip_route_input_noref+0x160/0x2f0 05:35:44 executing program 7: syz_emit_ethernet(0x36, &(0x7f0000000000)={@local, @remote, @val={@void, {0x8100, 0x5, 0x1}}, {@ipv4={0x800, @igmp={{0x7, 0x4, 0x0, 0x0, 0x24, 0x0, 0x0, 0x0, 0x2, 0x0, @local, @private=0xa010102, {[@cipso={0x86, 0x8, 0x0, [{0x0, 0x2}]}]}}, {0x0, 0x0, 0x0, @broadcast}}}}}, 0x0) [ 2651.744573] ip_options_compile+0xad/0xf0 [ 2651.745634] ? __ip_options_compile+0x15d0/0x15d0 [ 2651.746679] ? ip_list_rcv_finish.constprop.0+0x590/0x590 [ 2651.747910] ip_rcv_finish_core.constprop.0+0x4fb/0x1c90 [ 2651.749091] ip_rcv_finish+0x4f/0x1e0 [ 2651.749916] ip_rcv+0xae/0xd0 [ 2651.750592] ? ip_local_deliver+0x200/0x200 [ 2651.751540] __netif_receive_skb_one_core+0x19b/0x1f0 [ 2651.752654] ? __netif_receive_skb_core+0x3780/0x3780 [ 2651.753779] ? __lock_acquire+0xbb1/0x5b00 [ 2651.754714] __netif_receive_skb+0x27/0x1d0 [ 2651.755670] netif_receive_skb+0x12d/0x710 [ 2651.756582] ? __netif_receive_skb+0x1d0/0x1d0 [ 2651.757564] ? SOFTIRQ_verbose+0x10/0x10 [ 2651.758447] ? __lockdep_reset_lock+0x180/0x180 [ 2651.759492] tun_rx_batched.isra.0+0x462/0x710 [ 2651.760484] ? lock_acquire+0x197/0x470 [ 2651.761343] ? tun_get_user+0xee3/0x32f0 [ 2651.762230] ? tun_sock_write_space+0x1d0/0x1d0 [ 2651.763253] ? lock_release+0x680/0x680 [ 2651.764123] ? tun_get_user+0x16e6/0x32f0 [ 2651.765019] ? lock_downgrade+0x6d0/0x6d0 [ 2651.765927] ? eth_type_trans+0x2ad/0x5b0 [ 2651.766866] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 2651.768015] tun_get_user+0x191d/0x32f0 [ 2651.768874] ? usage_accumulate+0x110/0x110 [ 2651.769863] ? tun_build_skb+0xfe0/0xfe0 [ 2651.770766] ? tun_device_event+0x990/0x1160 [ 2651.771755] ? SOFTIRQ_verbose+0x10/0x10 [ 2651.772684] tun_chr_write_iter+0xe1/0x1e0 [ 2651.773630] new_sync_write+0x42c/0x660 [ 2651.774507] ? new_sync_read+0x6f0/0x6f0 [ 2651.775410] ? _cond_resched+0x12/0x80 [ 2651.776267] ? avc_policy_seqno+0x9/0x70 [ 2651.777164] ? selinux_file_permission+0x92/0x520 [ 2651.778236] ? __fget_files+0x296/0x4c0 [ 2651.779146] vfs_write+0x747/0xa70 [ 2651.779948] ksys_write+0x12d/0x260 [ 2651.780744] ? __ia32_sys_read+0xb0/0xb0 [ 2651.781642] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 2651.782769] ? syscall_enter_from_user_mode+0x1d/0x50 [ 2651.783917] do_syscall_64+0x33/0x40 [ 2651.784719] entry_SYSCALL_64_after_hwframe+0x62/0xc7 [ 2651.785836] RIP: 0033:0x7f6e6cf425ff [ 2651.786639] Code: 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 99 fd ff ff 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 b8 01 00 00 00 0f 05 <48> 3d 00 f0 ff ff 77 31 44 89 c7 48 89 44 24 08 e8 cc fd ff ff 48 [ 2651.790635] RSP: 002b:00007f6e6a505150 EFLAGS: 00000293 ORIG_RAX: 0000000000000001 [ 2651.792274] RAX: ffffffffffffffda RBX: 00007f6e6d0a2f60 RCX: 00007f6e6cf425ff [ 2651.793830] RDX: 000000000000003a RSI: 0000000020000000 RDI: 00000000000000f0 [ 2651.795389] RBP: 00007f6e6a5051d0 R08: 0000000000000000 R09: 0000000000000000 [ 2651.796912] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000002 [ 2651.798467] R13: 00007fffc51a6e8f R14: 00007f6e6a505300 R15: 0000000000022000 05:35:44 executing program 7: syz_emit_ethernet(0x32, &(0x7f0000000040)=ANY=[@ANYBLOB="aab5aaaaaaaaaaaaaaaaaabb0800470000240000000000029078ac1414aa0a010102860800000000000200009078ffffffff"], 0x0) [ 2651.806945] netlink: 8 bytes leftover after parsing attributes in process `syz-executor.3'. [ 2651.811888] FAULT_INJECTION: forcing a failure. [ 2651.811888] name fail_page_alloc, interval 1, probability 0, space 0, times 0 [ 2651.814958] CPU: 0 PID: 11951 Comm: syz-executor.6 Not tainted 5.10.204 #1 [ 2651.816521] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 2651.818291] Call Trace: [ 2651.818876] dump_stack+0x107/0x167 [ 2651.819663] should_fail.cold+0x5/0xa [ 2651.820497] __alloc_pages_nodemask+0x182/0x600 [ 2651.821489] ? lock_chain_count+0x20/0x20 [ 2651.822381] ? __alloc_pages_slowpath.constprop.0+0x2130/0x2130 [ 2651.823686] ? perf_trace_lock+0xac/0x490 [ 2651.824581] alloc_pages_vma+0xbb/0x410 [ 2651.825440] wp_page_copy+0xee7/0x1f00 [ 2651.826286] ? print_bad_pte+0x5a0/0x5a0 [ 2651.827179] ? lock_downgrade+0x6d0/0x6d0 [ 2651.828063] ? vm_normal_page+0x162/0x2e0 [ 2651.828956] ? count_memcg_event_mm.part.0+0x10f/0x2f0 [ 2651.830088] do_wp_page+0x27b/0x1390 [ 2651.830904] handle_mm_fault+0x1cc7/0x3500 [ 2651.831819] ? __pmd_alloc+0x5e0/0x5e0 [ 2651.832665] ? vmacache_find+0x55/0x2a0 [ 2651.833529] ? vmacache_update+0xce/0x140 [ 2651.834429] do_user_addr_fault+0x56e/0xc60 [ 2651.835382] exc_page_fault+0xa2/0x1a0 [ 2651.836222] asm_exc_page_fault+0x1e/0x30 [ 2651.837128] RIP: 0010:copy_user_generic_string+0x2c/0x40 [ 2651.838283] Code: cb 83 fa 08 72 27 89 f9 83 e1 07 74 15 83 e9 08 f7 d9 29 ca 8a 06 88 07 48 ff c6 48 ff c7 ff c9 75 f2 89 d1 c1 e9 03 83 e2 07 48 a5 89 d1 f3 a4 31 c0 0f 01 ca e9 73 c3 1e 02 0f 1f 00 0f 01 [ 2651.842291] RSP: 0018:ffff8880486f7820 EFLAGS: 00050202 [ 2651.843434] RAX: 0000000000000001 RBX: 0000000000000294 RCX: 0000000000000052 [ 2651.844971] RDX: 0000000000000004 RSI: ffff88801ced1800 RDI: 0000000020001e00 [ 2651.846488] RBP: 0000000020001e00 R08: 0000000000000000 R09: ffff88801ced1a93 [ 2651.848036] R10: ffffed10039da352 R11: 0000000000000001 R12: ffff88801ced1800 [ 2651.849553] R13: 0000000020002094 R14: 00007ffffffff000 R15: 0000000000000000 [ 2651.851134] copyout.part.0+0x10b/0x140 [ 2651.851990] _copy_to_iter+0x293/0x12d0 [ 2651.852863] ? mark_lock+0xf5/0x2df0 [ 2651.853661] ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0 [ 2651.854793] ? SOFTIRQ_verbose+0x10/0x10 [ 2651.855677] ? _copy_from_iter_nocache+0xd60/0xd60 [ 2651.856735] ? lock_chain_count+0x20/0x20 [ 2651.857620] ? __virt_addr_valid+0x128/0x350 [ 2651.858575] ? __check_object_size+0x319/0x440 [ 2651.859564] simple_copy_to_iter+0x4c/0x70 [ 2651.860482] __skb_datagram_iter+0x122/0x880 [ 2651.861421] ? do_raw_spin_lock+0x121/0x260 [ 2651.862360] ? zerocopy_sg_from_iter+0x110/0x110 [ 2651.863389] ? mark_held_locks+0x9e/0xe0 [ 2651.864282] skb_copy_datagram_iter+0x88/0x190 [ 2651.865259] tcp_recvmsg+0x13b5/0x2930 [ 2651.866128] ? tcp_splice_read+0x8c0/0x8c0 [ 2651.867053] ? sock_has_perm+0x1ea/0x280 [ 2651.867940] ? selinux_socket_post_create+0x7f0/0x7f0 [ 2651.869040] ? lock_downgrade+0x6d0/0x6d0 [ 2651.869941] ? perf_trace_lock+0xac/0x490 [ 2651.870853] ? tcp_splice_read+0x8c0/0x8c0 [ 2651.871771] inet6_recvmsg+0x13b/0x6e0 [ 2651.872621] ? inet6_bind+0x120/0x120 [ 2651.873452] ? security_socket_recvmsg+0x95/0xc0 [ 2651.874480] ? inet6_bind+0x120/0x120 [ 2651.875310] sock_recvmsg+0xff/0x180 [ 2651.876122] __sys_recvfrom+0x1be/0x2f0 [ 2651.876986] ? __ia32_sys_send+0x100/0x100 [ 2651.877904] ? lock_downgrade+0x6d0/0x6d0 [ 2651.878855] ? wait_for_completion_io+0x270/0x270 [ 2651.879904] ? rcu_read_lock_any_held+0x75/0xa0 [ 2651.880910] ? vfs_write+0x354/0xa70 [ 2651.881725] ? fput_many+0x2f/0x1a0 [ 2651.882521] ? ksys_write+0x1a9/0x260 [ 2651.883350] ? __ia32_sys_read+0xb0/0xb0 [ 2651.884232] __x64_sys_recvfrom+0xdd/0x1b0 [ 2651.885147] ? syscall_enter_from_user_mode+0x1d/0x50 [ 2651.886262] do_syscall_64+0x33/0x40 [ 2651.887061] entry_SYSCALL_64_after_hwframe+0x62/0xc7 [ 2651.888181] RIP: 0033:0x7f7d1addbb19 [ 2651.888973] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 2651.892936] RSP: 002b:00007f7d18330188 EFLAGS: 00000246 ORIG_RAX: 000000000000002d [ 2651.894551] RAX: ffffffffffffffda RBX: 00007f7d1aeef020 RCX: 00007f7d1addbb19 [ 2651.896094] RDX: 0000000000001000 RSI: 0000000020001e00 RDI: 0000000000000003 [ 2651.897629] RBP: 00007f7d183301d0 R08: 0000000000000000 R09: 0000000000000000 [ 2651.899182] R10: 000000000000cd08 R11: 0000000000000246 R12: 0000000000000001 [ 2651.900724] R13: 00007ffe0ac926cf R14: 00007f7d18330300 R15: 0000000000022000 05:35:44 executing program 1: perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_emit_ethernet(0x3a, &(0x7f0000000000)={@local, @remote, @void, {@ipv4={0x800, @tcp={{0x6, 0x4, 0x0, 0x0, 0x2c, 0x0, 0x0, 0x0, 0x32, 0x0, @dev, @private=0xa010100, {[@lsrr={0x83, 0x5}]}}, {{0x0, 0x0, 0x41424344, 0x41424344, 0x0, 0x7, 0x5}}}}}}, 0x0) (fail_nth: 4) [ 2651.916836] FAULT_INJECTION: forcing a failure. [ 2651.916836] name failslab, interval 1, probability 0, space 0, times 0 [ 2651.921287] CPU: 0 PID: 11952 Comm: syz-executor.0 Not tainted 5.10.204 #1 [ 2651.922862] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 2651.924631] Call Trace: [ 2651.925206] dump_stack+0x107/0x167 [ 2651.926010] should_fail.cold+0x5/0xa [ 2651.926866] ? create_object.isra.0+0x3a/0xa20 [ 2651.927863] should_failslab+0x5/0x20 [ 2651.928686] kmem_cache_alloc+0x5b/0x310 [ 2651.929585] create_object.isra.0+0x3a/0xa20 [ 2651.930542] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 2651.931671] kmem_cache_alloc+0x159/0x310 [ 2651.932579] __build_skb+0x21/0x60 [ 2651.933358] build_skb+0x1a/0x220 [ 2651.934120] __tun_build_skb+0x2c/0x260 [ 2651.934996] tun_build_skb+0x62c/0xfe0 [ 2651.935875] ? tun_xdp_act+0x6f0/0x6f0 [ 2651.936732] ? perf_trace_run_bpf_submit+0xf5/0x190 [ 2651.937821] ? perf_trace_run_bpf_submit+0xf5/0x190 [ 2651.938947] tun_get_user+0x6c1/0x32f0 [ 2651.939792] ? usage_accumulate+0x110/0x110 [ 2651.940767] ? tun_build_skb+0xfe0/0xfe0 [ 2651.941660] ? tun_device_event+0x990/0x1160 [ 2651.942616] ? lock_downgrade+0x6d0/0x6d0 [ 2651.943800] ? perf_trace_lock+0x2bd/0x490 [ 2651.944864] ? SOFTIRQ_verbose+0x10/0x10 [ 2651.945916] tun_chr_write_iter+0xe1/0x1e0 [ 2651.947014] new_sync_write+0x42c/0x660 [ 2651.948013] ? new_sync_read+0x6f0/0x6f0 [ 2651.949032] ? _cond_resched+0x12/0x80 [ 2651.950011] ? avc_policy_seqno+0x9/0x70 [ 2651.951028] ? selinux_file_permission+0x92/0x520 [ 2651.952237] ? __fget_files+0x296/0x4c0 [ 2651.953267] vfs_write+0x747/0xa70 [ 2651.954192] ksys_write+0x12d/0x260 [ 2651.955120] ? __ia32_sys_read+0xb0/0xb0 [ 2651.956156] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 2651.957480] ? syscall_enter_from_user_mode+0x1d/0x50 [ 2651.958786] do_syscall_64+0x33/0x40 [ 2651.959649] entry_SYSCALL_64_after_hwframe+0x62/0xc7 [ 2651.960729] RIP: 0033:0x7fc05d62c5ff [ 2651.961527] Code: 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 99 fd ff ff 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 b8 01 00 00 00 0f 05 <48> 3d 00 f0 ff ff 77 31 44 89 c7 48 89 44 24 08 e8 cc fd ff ff 48 [ 2651.965391] RSP: 002b:00007fc05abef150 EFLAGS: 00000293 ORIG_RAX: 0000000000000001 [ 2651.967007] RAX: ffffffffffffffda RBX: 00007fc05d78cf60 RCX: 00007fc05d62c5ff [ 2651.968505] RDX: 000000000000003a RSI: 0000000020000000 RDI: 00000000000000f0 [ 2651.969997] RBP: 00007fc05abef1d0 R08: 0000000000000000 R09: 0000000000000000 [ 2651.971531] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000001 [ 2651.973044] R13: 00007ffc5aac442f R14: 00007fc05abef300 R15: 0000000000022000 [ 2651.987590] FAULT_INJECTION: forcing a failure. [ 2651.987590] name failslab, interval 1, probability 0, space 0, times 0 [ 2651.990653] CPU: 0 PID: 11955 Comm: syz-executor.1 Not tainted 5.10.204 #1 [ 2651.992485] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 2651.994655] Call Trace: [ 2651.995353] dump_stack+0x107/0x167 [ 2651.996265] should_fail.cold+0x5/0xa [ 2651.997138] ? create_object.isra.0+0x3a/0xa20 [ 2651.998157] should_failslab+0x5/0x20 [ 2651.999032] kmem_cache_alloc+0x5b/0x310 [ 2651.999892] create_object.isra.0+0x3a/0xa20 [ 2652.000803] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 2652.001850] kmem_cache_alloc+0x159/0x310 [ 2652.002721] __build_skb+0x21/0x60 [ 2652.003483] build_skb+0x1a/0x220 [ 2652.004212] __tun_build_skb+0x2c/0x260 [ 2652.005054] tun_build_skb+0x62c/0xfe0 [ 2652.005897] ? tun_xdp_act+0x6f0/0x6f0 [ 2652.006718] ? perf_trace_run_bpf_submit+0xf5/0x190 [ 2652.007762] ? perf_trace_run_bpf_submit+0xf5/0x190 [ 2652.008801] tun_get_user+0x6c1/0x32f0 [ 2652.009612] ? usage_accumulate+0x110/0x110 [ 2652.010531] ? tun_build_skb+0xfe0/0xfe0 [ 2652.011397] ? tun_device_event+0x990/0x1160 [ 2652.012308] ? lock_downgrade+0x6d0/0x6d0 [ 2652.013155] ? perf_trace_lock+0x2bd/0x490 [ 2652.014015] ? SOFTIRQ_verbose+0x10/0x10 [ 2652.014905] tun_chr_write_iter+0xe1/0x1e0 [ 2652.015780] new_sync_write+0x42c/0x660 [ 2652.016613] ? new_sync_read+0x6f0/0x6f0 [ 2652.017460] ? _cond_resched+0x12/0x80 [ 2652.018276] ? avc_policy_seqno+0x9/0x70 [ 2652.019121] ? selinux_file_permission+0x92/0x520 [ 2652.020128] ? __fget_files+0x296/0x4c0 [ 2652.020964] vfs_write+0x747/0xa70 [ 2652.021718] ksys_write+0x12d/0x260 [ 2652.022471] ? __ia32_sys_read+0xb0/0xb0 [ 2652.023339] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 2652.024416] ? syscall_enter_from_user_mode+0x1d/0x50 [ 2652.025491] do_syscall_64+0x33/0x40 [ 2652.026256] entry_SYSCALL_64_after_hwframe+0x62/0xc7 [ 2652.027317] RIP: 0033:0x7f56064f65ff [ 2652.028087] Code: 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 99 fd ff ff 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 b8 01 00 00 00 0f 05 <48> 3d 00 f0 ff ff 77 31 44 89 c7 48 89 44 24 08 e8 cc fd ff ff 48 [ 2652.031846] RSP: 002b:00007f5603ab9150 EFLAGS: 00000293 ORIG_RAX: 0000000000000001 [ 2652.033360] RAX: ffffffffffffffda RBX: 00007f5606656f60 RCX: 00007f56064f65ff [ 2652.034852] RDX: 000000000000003a RSI: 0000000020000000 RDI: 00000000000000f0 [ 2652.036322] RBP: 00007f5603ab91d0 R08: 0000000000000000 R09: 0000000000000000 [ 2652.037772] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000001 [ 2652.039242] R13: 00007ffe3650190f R14: 00007f5603ab9300 R15: 0000000000022000 05:35:44 executing program 5: ioctl$IOC_PR_RESERVE(0xffffffffffffffff, 0x401070c9, &(0x7f0000000000)={0x2, 0x2}) syz_emit_ethernet(0x32, &(0x7f00000000c0)=ANY=[@ANYBLOB="aaaaaad56e6dd5be4cac650000029078ac1414aa0a0101029078912d2aff1c2cd2c53c6152687e36a30fdaf0f0705a7d478815680fb7b8f372984812938ad03003000115fa0c77cb00"/92], 0x0) [ 2667.321595] FAULT_INJECTION: forcing a failure. [ 2667.321595] name failslab, interval 1, probability 0, space 0, times 0 [ 2667.322866] CPU: 1 PID: 11973 Comm: syz-executor.4 Not tainted 5.10.204 #1 [ 2667.323627] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 2667.324510] Call Trace: [ 2667.324817] dump_stack+0x107/0x167 [ 2667.325221] should_fail.cold+0x5/0xa [ 2667.325636] ? create_object.isra.0+0x3a/0xa20 [ 2667.326141] should_failslab+0x5/0x20 [ 2667.326564] kmem_cache_alloc+0x5b/0x310 [ 2667.327021] create_object.isra.0+0x3a/0xa20 [ 2667.327503] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 2667.328060] kmem_cache_alloc+0x159/0x310 [ 2667.328517] dst_alloc+0x9e/0x610 [ 2667.328899] rt_dst_clone+0x59/0x860 [ 2667.329312] ip_mc_finish_output+0x95/0x280 [ 2667.329788] ip_mc_output+0x71c/0xa30 [ 2667.330200] ip_push_pending_frames+0x12e/0x2c0 [ 2667.330718] icmp_push_reply+0x351/0x490 [ 2667.331176] __icmp_send+0xbc9/0x14d0 [ 2667.331604] ? icmp_route_lookup.constprop.0+0x11a0/0x11a0 [ 2667.332207] ? __lockdep_reset_lock+0x180/0x180 [ 2667.332710] ? find_held_lock+0x2c/0x110 [ 2667.333173] ? ip_route_input_noref+0x160/0x2f0 [ 2667.333689] ip_options_compile+0xad/0xf0 [ 2667.334162] ? __ip_options_compile+0x15d0/0x15d0 [ 2667.334689] ? ip_list_rcv_finish.constprop.0+0x590/0x590 [ 2667.335331] ip_rcv_finish_core.constprop.0+0x4fb/0x1c90 [ 2667.335949] ip_rcv_finish+0x4f/0x1e0 [ 2667.336378] ip_rcv+0xae/0xd0 [ 2667.336731] ? ip_local_deliver+0x200/0x200 [ 2667.337228] __netif_receive_skb_one_core+0x19b/0x1f0 [ 2667.337806] ? __netif_receive_skb_core+0x3780/0x3780 [ 2667.338384] ? __lock_acquire+0xbb1/0x5b00 [ 2667.338868] __netif_receive_skb+0x27/0x1d0 [ 2667.339361] netif_receive_skb+0x12d/0x710 [ 2667.339831] ? __netif_receive_skb+0x1d0/0x1d0 [ 2667.340348] ? SOFTIRQ_verbose+0x10/0x10 [ 2667.340457] FAULT_INJECTION: forcing a failure. [ 2667.340457] name failslab, interval 1, probability 0, space 0, times 0 [ 2667.340794] ? __lockdep_reset_lock+0x180/0x180 [ 2667.343753] tun_rx_batched.isra.0+0x462/0x710 [ 2667.344277] ? lock_acquire+0x197/0x470 [ 2667.344721] ? tun_get_user+0xee3/0x32f0 [ 2667.345182] ? tun_sock_write_space+0x1d0/0x1d0 [ 2667.345702] ? lock_release+0x680/0x680 [ 2667.346144] ? tun_get_user+0x16e6/0x32f0 [ 2667.346610] ? lock_downgrade+0x6d0/0x6d0 [ 2667.347082] ? eth_type_trans+0x2ad/0x5b0 [ 2667.347551] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 2667.348148] tun_get_user+0x191d/0x32f0 [ 2667.348598] ? usage_accumulate+0x110/0x110 [ 2667.349097] ? tun_build_skb+0xfe0/0xfe0 [ 2667.349568] ? tun_device_event+0x990/0x1160 [ 2667.350062] ? perf_trace_lock+0xac/0x490 [ 2667.350534] ? SOFTIRQ_verbose+0x10/0x10 [ 2667.350994] tun_chr_write_iter+0xe1/0x1e0 [ 2667.351492] new_sync_write+0x42c/0x660 [ 2667.351944] ? new_sync_read+0x6f0/0x6f0 [ 2667.352410] ? _cond_resched+0x12/0x80 [ 2667.352849] ? avc_policy_seqno+0x9/0x70 [ 2667.353309] ? selinux_file_permission+0x92/0x520 [ 2667.353858] ? __fget_files+0x296/0x4c0 [ 2667.354312] vfs_write+0x747/0xa70 [ 2667.354717] ksys_write+0x12d/0x260 [ 2667.355139] ? __ia32_sys_read+0xb0/0xb0 [ 2667.355598] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 2667.356184] ? syscall_enter_from_user_mode+0x1d/0x50 [ 2667.356770] do_syscall_64+0x33/0x40 [ 2667.357191] entry_SYSCALL_64_after_hwframe+0x62/0xc7 [ 2667.357771] RIP: 0033:0x7f6e6cf425ff [ 2667.358191] Code: 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 99 fd ff ff 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 b8 01 00 00 00 0f 05 <48> 3d 00 f0 ff ff 77 31 44 89 c7 48 89 44 24 08 e8 cc fd ff ff 48 [ 2667.360242] RSP: 002b:00007f6e6a505150 EFLAGS: 00000293 ORIG_RAX: 0000000000000001 [ 2667.361092] RAX: ffffffffffffffda RBX: 00007f6e6d0a2f60 RCX: 00007f6e6cf425ff [ 2667.361899] RDX: 000000000000003a RSI: 0000000020000000 RDI: 00000000000000f0 [ 2667.362695] RBP: 00007f6e6a5051d0 R08: 0000000000000000 R09: 0000000000000000 [ 2667.363511] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000002 [ 2667.364309] R13: 00007fffc51a6e8f R14: 00007f6e6a505300 R15: 0000000000022000 [ 2667.365144] CPU: 0 PID: 11974 Comm: syz-executor.1 Not tainted 5.10.204 #1 [ 2667.366817] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 2667.368803] Call Trace: [ 2667.369451] dump_stack+0x107/0x167 [ 2667.370343] should_fail.cold+0x5/0xa [ 2667.371272] ? dst_alloc+0x9e/0x610 [ 2667.372345] should_failslab+0x5/0x20 [ 2667.373265] kmem_cache_alloc+0x5b/0x310 [ 2667.374258] dst_alloc+0x9e/0x610 [ 2667.375129] rt_dst_alloc+0x73/0x440 [ 2667.376035] ip_route_input_slow+0x16f6/0x3050 [ 2667.377178] ? SOFTIRQ_verbose+0x10/0x10 [ 2667.378146] ? perf_trace_run_bpf_submit+0xf5/0x190 [ 2667.379353] ? fib_multipath_hash+0x940/0x940 [ 2667.380495] ? lock_release+0x680/0x680 [ 2667.381477] ? lock_acquire+0x197/0x470 [ 2667.382436] ? find_held_lock+0x2c/0x110 [ 2667.383477] ip_route_input_noref+0x117/0x2f0 [ 2667.384551] ? ip_route_input_slow+0x3050/0x3050 [ 2667.385678] ? nf_hook_slow+0xfc/0x1e0 [ 2667.386622] ? nf_hook.constprop.0+0x146/0x500 [ 2667.387713] ? ip_list_rcv_finish.constprop.0+0x590/0x590 [ 2667.389032] ip_rcv_finish_core.constprop.0+0x7b4/0x1c90 [ 2667.390337] ip_rcv_finish+0x4f/0x1e0 [ 2667.391263] ip_rcv+0xae/0xd0 [ 2667.392009] ? ip_local_deliver+0x200/0x200 [ 2667.393031] __netif_receive_skb_one_core+0x19b/0x1f0 [ 2667.394247] ? __netif_receive_skb_core+0x3780/0x3780 [ 2667.395489] ? __lock_acquire+0xbb1/0x5b00 [ 2667.396523] __netif_receive_skb+0x27/0x1d0 [ 2667.397567] netif_receive_skb+0x12d/0x710 [ 2667.398571] ? __netif_receive_skb+0x1d0/0x1d0 [ 2667.399676] ? SOFTIRQ_verbose+0x10/0x10 [ 2667.400650] ? __lockdep_reset_lock+0x180/0x180 [ 2667.401773] tun_rx_batched.isra.0+0x462/0x710 [ 2667.402851] ? lock_acquire+0x197/0x470 [ 2667.403816] ? tun_get_user+0xee3/0x32f0 [ 2667.404784] ? tun_sock_write_space+0x1d0/0x1d0 [ 2667.405886] ? lock_release+0x680/0x680 [ 2667.406827] ? tun_get_user+0x16e6/0x32f0 [ 2667.407819] ? lock_downgrade+0x6d0/0x6d0 [ 2667.408801] ? eth_type_trans+0x2ad/0x5b0 [ 2667.409803] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 2667.411067] tun_get_user+0x191d/0x32f0 [ 2667.412014] ? usage_accumulate+0x110/0x110 [ 2667.413083] ? tun_build_skb+0xfe0/0xfe0 [ 2667.414064] ? tun_device_event+0x990/0x1160 [ 2667.415136] ? SOFTIRQ_verbose+0x10/0x10 [ 2667.416141] tun_chr_write_iter+0xe1/0x1e0 [ 2667.417149] new_sync_write+0x42c/0x660 [ 2667.418110] ? new_sync_read+0x6f0/0x6f0 [ 2667.419088] ? _cond_resched+0x12/0x80 [ 2667.420031] ? avc_policy_seqno+0x9/0x70 [ 2667.420993] ? selinux_file_permission+0x92/0x520 [ 2667.422159] ? __fget_files+0x296/0x4c0 [ 2667.423139] vfs_write+0x747/0xa70 [ 2667.423996] ksys_write+0x12d/0x260 [ 2667.424855] ? __ia32_sys_read+0xb0/0xb0 [ 2667.425820] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 2667.427060] ? syscall_enter_from_user_mode+0x1d/0x50 [ 2667.428284] do_syscall_64+0x33/0x40 [ 2667.429159] entry_SYSCALL_64_after_hwframe+0x62/0xc7 [ 2667.430356] RIP: 0033:0x7f56064f65ff [ 2667.431237] Code: 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 99 fd ff ff 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 b8 01 00 00 00 0f 05 <48> 3d 00 f0 ff ff 77 31 44 89 c7 48 89 44 24 08 e8 cc fd ff ff 48 [ 2667.435498] RSP: 002b:00007f5603ab9150 EFLAGS: 00000293 ORIG_RAX: 0000000000000001 [ 2667.437271] RAX: ffffffffffffffda RBX: 00007f5606656f60 RCX: 00007f56064f65ff [ 2667.438931] RDX: 000000000000003a RSI: 0000000020000000 RDI: 00000000000000f0 [ 2667.440610] RBP: 00007f5603ab91d0 R08: 0000000000000000 R09: 0000000000000000 [ 2667.442268] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000001 [ 2667.443920] R13: 00007ffe3650190f R14: 00007f5603ab9300 R15: 0000000000022000 05:35:59 executing program 4: perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_emit_ethernet(0x3a, &(0x7f0000000000)={@local, @remote, @void, {@ipv4={0x800, @tcp={{0x6, 0x4, 0x0, 0x0, 0x2c, 0x0, 0x0, 0x0, 0x32, 0x0, @dev, @private=0xa010100, {[@lsrr={0x83, 0x5}]}}, {{0x0, 0x0, 0x41424344, 0x41424344, 0x0, 0x7, 0x5}}}}}}, 0x0) (fail_nth: 18) openat$cgroup_devices(0xffffffffffffffff, 0x0, 0x2, 0x0) close(0xffffffffffffffff) pread64(0xffffffffffffffff, 0x0, 0x0, 0x2000) 05:35:59 executing program 6: r0 = socket$inet6_tcp(0xa, 0x1, 0x0) setsockopt$inet6_tcp_int(r0, 0x6, 0x2, &(0x7f0000000080)=0x90, 0x4) bind$inet6(r0, &(0x7f00000000c0)={0xa, 0x4e20, 0x0, @loopback}, 0x1c) connect$inet6(r0, &(0x7f0000000000)={0xa, 0x4e20, 0x0, @empty}, 0x1c) setsockopt$sock_int(r0, 0x1, 0x8, &(0x7f0000002ec0), 0x4) sendmsg$inet6(r0, &(0x7f00000006c0)={0x0, 0x0, &(0x7f0000000540)=[{&(0x7f00000001c0)="cf", 0xfffffdef}], 0x1}, 0x10044001) setsockopt$SO_TIMESTAMP(r0, 0x1, 0x40, &(0x7f0000000280)=0x380, 0x4) recvfrom$inet6(r0, &(0x7f0000001e00)=""/4096, 0x1000, 0xcd08, 0x0, 0x0) (fail_nth: 3) 05:35:59 executing program 2: preadv2(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x2) openat(0xffffffffffffff9c, 0x0, 0x0, 0x0) r0 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x105142, 0x62) r1 = openat(0xffffffffffffff9c, 0x0, 0x0, 0x0) fallocate(r1, 0x0, 0x0, 0x8800000) lseek(0xffffffffffffffff, 0x0, 0x0) openat(0xffffffffffffffff, 0x0, 0x0, 0x20) ioctl$FS_IOC_RESVSP(0xffffffffffffffff, 0x40305828, 0x0) faccessat2(0xffffffffffffffff, 0x0, 0x0, 0x0) openat(0xffffffffffffffff, 0x0, 0x1a340, 0x100) ioctl$LOOP_CTL_REMOVE(0xffffffffffffffff, 0x4c81, 0x0) r2 = fsmount(0xffffffffffffffff, 0x0, 0x0) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r3 = openat(r2, &(0x7f0000000000)='/proc/self/exe\x00', 0x4840, 0x2d) sendfile(r0, r3, 0x0, 0x100000007) 05:35:59 executing program 5: syz_emit_ethernet(0x32, &(0x7f0000000040)=ANY=[@ANYBLOB="aaaaaaaaaaaaaaaaaaaaaabb08004700002400000000004cb978ac1414aa0a010102860800000000000200009078ffffffff"], 0x0) write$tun(0xffffffffffffffff, &(0x7f0000000080)={@val={0x0, 0x8884}, @val={0x3, 0x1, 0x4, 0xfff7, 0x0, 0x81}, @llc={@llc={0x4, 0x8e, "91", "891afceaeca28b9b03f8cc504667a9c341d60794164534dc15d9a965eb9635802a3ed8e31bcaa1ec5632a7fd28b0063518f2c1354e6d8a7a20be721c6ff207e4819f3bd186"}}}, 0x56) 05:35:59 executing program 7: ioctl$sock_bt_hci(0xffffffffffffffff, 0x400448c9, &(0x7f0000000000)="d02d88c4275acf3ff23d1a4cd3c5b1dada0f19ea19fba1f0a25a59a76ef62c46947e51e3caa58dd00474ddb84d8eb03eea87f6a521e7f61383f47e39e6a992942aaec867414676cf8971e2c770c4c8efb2cbb5eab8c27f0923ea8bebb9018b54794ef8fcfbd0ffc923af27073ca88465e63ef11b914f74ec01c7d4af4a8216bb78acc5daa155cae8") r0 = shmget(0x2, 0x2000, 0x200, &(0x7f0000ffe000/0x2000)=nil) shmctl$IPC_STAT(r0, 0x2, &(0x7f0000000400)=""/165) shmctl$IPC_RMID(r0, 0x0) r1 = shmget(0x3, 0x1000, 0x8, &(0x7f0000ffe000/0x1000)=nil) shmctl$SHM_LOCK(r1, 0xb) syz_emit_ethernet(0x32, &(0x7f0000001080)=ANY=[@ANYRES32=r0], 0x0) socketpair(0x11, 0xa, 0x2, &(0x7f0000000140)={0xffffffffffffffff, 0xffffffffffffffff}) r3 = openat$procfs(0xffffffffffffff9c, &(0x7f00000014c0)='/proc/bus/input/devices\x00', 0x0, 0x0) r4 = perf_event_open(&(0x7f0000001d80)={0x2, 0x80, 0x5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x40641, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x40, 0x0, @perf_config_ext, 0x0, 0x1, 0x0, 0x2, 0x0, 0x9}, 0x0, 0x0, 0xffffffffffffffff, 0xa) perf_event_open(&(0x7f0000001d80)={0x3, 0x80, 0x0, 0x0, 0x0, 0x0, 0x4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, r4, 0x0) r5 = inotify_init() ioctl$EXT4_IOC_MOVE_EXT(r4, 0xc028660f, &(0x7f00000010c0)={0x0, r5, 0x5, 0x6, 0x20}) pread64(r3, &(0x7f0000000040)=""/4126, 0x101e, 0x2000) ioctl$sock_SIOCSIFVLAN_GET_VLAN_EGRESS_PRIORITY_CMD(r3, 0x8983, &(0x7f00000001c0)) r6 = perf_event_open(&(0x7f0000001d80)={0x2, 0x80, 0x5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x40641, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x40, 0x0, @perf_config_ext, 0x0, 0x1, 0x0, 0x2, 0x0, 0x9}, 0x0, 0x0, 0xffffffffffffffff, 0xa) perf_event_open(&(0x7f0000001d80)={0x3, 0x80, 0x0, 0x0, 0x0, 0x0, 0x4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, r6, 0x0) perf_event_open(&(0x7f0000001140)={0x0, 0x80, 0x1f, 0x2, 0xa1, 0x8, 0x0, 0xff, 0x400, 0x0, 0x0, 0x1, 0x0, 0x1, 0x0, 0x1, 0x1, 0x0, 0x1, 0x1, 0x0, 0x0, 0x1, 0x1, 0x1, 0x3, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x1, 0x1, 0x1, 0x1, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, 0x2, @perf_bp={&(0x7f0000001100), 0x2}, 0x2340, 0x3, 0x92, 0x2, 0x7fffffff, 0x41a, 0x1ff, 0x0, 0x5, 0x0, 0x4}, 0x0, 0x1, r6, 0x2) setsockopt$bt_hci_HCI_DATA_DIR(r2, 0x0, 0x1, &(0x7f0000000180)=0x10000, 0x4) syz_open_dev$tty1(0xc, 0x4, 0x2) 05:35:59 executing program 3: r0 = perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x0, 0x3}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) pread64(0xffffffffffffffff, 0x0, 0x7ffffffff000, 0xf0ff1f00000000) bind$inet6(0xffffffffffffffff, &(0x7f0000000040)={0xa, 0x4e23, 0x0, @remote, 0xffff}, 0x1c) r1 = socket$netlink(0x10, 0x3, 0x0) sendmsg$nl_generic(0xffffffffffffffff, 0x0, 0x41) setsockopt$netlink_NETLINK_BROADCAST_ERROR(r1, 0x10e, 0x4, &(0x7f00000000c0)=0x1000, 0x4) sendmsg$nl_generic(r1, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000100)=ANY=[@ANYBLOB="28000000100001000000000000000000000000000500000024386a562b500000000c00008008000d00ac141400"], 0x28}}, 0x0) chdir(&(0x7f00000001c0)='./file0\x00') r2 = syz_open_dev$mouse(&(0x7f0000000400), 0x7fffffff, 0x2d0401) sendmsg$NL80211_CMD_ADD_NAN_FUNCTION(r2, &(0x7f0000000500)={&(0x7f0000000440)={0x10, 0x0, 0x0, 0x10}, 0xc, &(0x7f00000004c0)={&(0x7f00000002c0)={0x20, 0x0, 0x100, 0x70bd2b, 0x25dfdbfd, {{}, {@void, @val={0xc, 0x99, {0x3, 0x1b}}}}}, 0x20}, 0x1, 0x0, 0x0, 0x95}, 0x40000) ioctl$FICLONE(r2, 0x40049409, r0) r3 = open$dir(&(0x7f0000000000)='.\x00', 0x0, 0x0) perf_event_open(&(0x7f0000001d80)={0x6, 0x80, 0x0, 0x0, 0x0, 0x0, 0x4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffd, 0x0, @perf_bp={0x0, 0xffffffff81000000}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffd}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r4 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000040)='/proc/crypto\x00', 0x0, 0x0) r5 = openat2(r3, &(0x7f0000000180)='./file0\x00', &(0x7f0000000200)={0x800, 0x1b9}, 0x18) setsockopt$SO_TIMESTAMPING(r5, 0x1, 0x25, &(0x7f0000000240)=0x7100, 0x4) pread64(r4, &(0x7f00000010c0)=""/4088, 0xff8, 0x0) writev(0xffffffffffffffff, &(0x7f00000003c0)=[{&(0x7f0000000000)="0000abe02400030021206cda3b5e5672b89aeddb2a535fbd0706006dff0043a9d7cceb232fb81bf74ebdd05b7677", 0x2e}, {&(0x7f0000000680)="7fd41c04550300020000000000000000010046e92ed2616f72657d044129471d4fd47924fd0900e09e0068de", 0x2c}], 0x2) 05:35:59 executing program 1: perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_emit_ethernet(0x3a, &(0x7f0000000000)={@local, @remote, @void, {@ipv4={0x800, @tcp={{0x6, 0x4, 0x0, 0x0, 0x2c, 0x0, 0x0, 0x0, 0x32, 0x0, @dev, @private=0xa010100, {[@lsrr={0x83, 0x5}]}}, {{0x0, 0x0, 0x41424344, 0x41424344, 0x0, 0x7, 0x5}}}}}}, 0x0) (fail_nth: 5) 05:35:59 executing program 0: perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_emit_ethernet(0x3a, &(0x7f0000000000)={@local, @remote, @void, {@ipv4={0x800, @tcp={{0x6, 0x4, 0x0, 0x0, 0x2c, 0x0, 0x0, 0x0, 0x32, 0x0, @dev, @private=0xa010100, {[@lsrr={0x83, 0x5}]}}, {{0x0, 0x0, 0x41424344, 0x41424344, 0x0, 0x7, 0x5}}}}}}, 0x0) (fail_nth: 5) ioctl$BTRFS_IOC_BALANCE(0xffffffffffffffff, 0x5000940c, 0x0) close(0xffffffffffffffff) [ 2667.450279] FAULT_INJECTION: forcing a failure. [ 2667.450279] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 2667.451658] CPU: 1 PID: 11980 Comm: syz-executor.6 Not tainted 5.10.204 #1 [ 2667.452401] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 2667.453305] Call Trace: [ 2667.453599] dump_stack+0x107/0x167 [ 2667.453995] should_fail.cold+0x5/0xa [ 2667.454412] _copy_to_iter+0x264/0x12d0 [ 2667.454857] ? mark_lock+0xf5/0x2df0 [ 2667.455280] ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0 [ 2667.455857] ? SOFTIRQ_verbose+0x10/0x10 [ 2667.456314] ? _copy_from_iter_nocache+0xd60/0xd60 [ 2667.456851] ? lock_chain_count+0x20/0x20 [ 2667.457314] ? __virt_addr_valid+0x128/0x350 [ 2667.457786] ? __check_object_size+0x319/0x440 [ 2667.458287] simple_copy_to_iter+0x4c/0x70 [ 2667.458748] __skb_datagram_iter+0x4f7/0x880 [ 2667.459267] ? zerocopy_sg_from_iter+0x110/0x110 [ 2667.459783] skb_copy_datagram_iter+0x88/0x190 [ 2667.460299] tcp_recvmsg+0x13b5/0x2930 [ 2667.460737] ? tcp_splice_read+0x8c0/0x8c0 [ 2667.461226] ? sock_has_perm+0x1ea/0x280 [ 2667.461672] ? selinux_socket_post_create+0x7f0/0x7f0 [ 2667.462258] ? lock_downgrade+0x6d0/0x6d0 [ 2667.462707] ? perf_trace_lock+0xac/0x490 [ 2667.463202] ? tcp_splice_read+0x8c0/0x8c0 [ 2667.463678] inet6_recvmsg+0x13b/0x6e0 [ 2667.464119] ? inet6_bind+0x120/0x120 [ 2667.464553] ? security_socket_recvmsg+0x95/0xc0 [ 2667.465065] ? inet6_bind+0x120/0x120 [ 2667.465511] sock_recvmsg+0xff/0x180 [ 2667.465941] __sys_recvfrom+0x1be/0x2f0 [ 2667.466373] ? __ia32_sys_send+0x100/0x100 [ 2667.466859] ? lock_downgrade+0x6d0/0x6d0 [ 2667.467326] ? wait_for_completion_io+0x270/0x270 [ 2667.467873] ? rcu_read_lock_any_held+0x75/0xa0 [ 2667.468371] ? vfs_write+0x354/0xa70 [ 2667.468793] ? fput_many+0x2f/0x1a0 [ 2667.469182] ? ksys_write+0x1a9/0x260 [ 2667.469619] ? __ia32_sys_read+0xb0/0xb0 [ 2667.470060] netlink: 8 bytes leftover after parsing attributes in process `syz-executor.3'. [ 2667.471021] __x64_sys_recvfrom+0xdd/0x1b0 [ 2667.471034] ? syscall_enter_from_user_mode+0x1d/0x50 [ 2667.471046] do_syscall_64+0x33/0x40 [ 2667.471055] entry_SYSCALL_64_after_hwframe+0x62/0xc7 [ 2667.471077] RIP: 0033:0x7f7d1addbb19 [ 2667.474062] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 2667.476143] RSP: 002b:00007f7d18330188 EFLAGS: 00000246 ORIG_RAX: 000000000000002d [ 2667.476989] RAX: ffffffffffffffda RBX: 00007f7d1aeef020 RCX: 00007f7d1addbb19 [ 2667.477785] RDX: 0000000000001000 RSI: 0000000020001e00 RDI: 0000000000000003 [ 2667.478594] RBP: 00007f7d183301d0 R08: 0000000000000000 R09: 0000000000000000 [ 2667.479284] FAULT_INJECTION: forcing a failure. [ 2667.479284] name failslab, interval 1, probability 0, space 0, times 0 [ 2667.479409] R10: 000000000000cd08 R11: 0000000000000246 R12: 0000000000000001 [ 2667.479427] R13: 00007ffe0ac926cf R14: 00007f7d18330300 R15: 0000000000022000 [ 2667.483569] CPU: 0 PID: 11984 Comm: syz-executor.0 Not tainted 5.10.204 #1 [ 2667.485207] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 2667.487145] Call Trace: [ 2667.487765] dump_stack+0x107/0x167 [ 2667.488622] should_fail.cold+0x5/0xa [ 2667.489548] ? dst_alloc+0x9e/0x610 [ 2667.490403] should_failslab+0x5/0x20 [ 2667.491323] kmem_cache_alloc+0x5b/0x310 [ 2667.492269] dst_alloc+0x9e/0x610 [ 2667.493086] rt_dst_alloc+0x73/0x440 [ 2667.493944] ip_route_input_slow+0x16f6/0x3050 [ 2667.495041] ? SOFTIRQ_verbose+0x10/0x10 [ 2667.495975] ? perf_trace_run_bpf_submit+0xf5/0x190 [ 2667.497109] ? fib_multipath_hash+0x940/0x940 [ 2667.498185] ? lock_release+0x680/0x680 [ 2667.499128] ? lock_acquire+0x197/0x470 [ 2667.500033] ? find_held_lock+0x2c/0x110 [ 2667.501014] ip_route_input_noref+0x117/0x2f0 [ 2667.502062] ? ip_route_input_slow+0x3050/0x3050 [ 2667.503159] ? nf_hook_slow+0xfc/0x1e0 05:36:00 executing program 1: perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_emit_ethernet(0x3a, &(0x7f0000000000)={@local, @remote, @void, {@ipv4={0x800, @tcp={{0x6, 0x4, 0x0, 0x0, 0x2c, 0x0, 0x0, 0x0, 0x32, 0x0, @dev, @private=0xa010100, {[@lsrr={0x83, 0x5}]}}, {{0x0, 0x0, 0x41424344, 0x41424344, 0x0, 0x7, 0x5}}}}}}, 0x0) (fail_nth: 6) [ 2667.504067] ? nf_hook.constprop.0+0x146/0x500 [ 2667.505257] ? ip_list_rcv_finish.constprop.0+0x590/0x590 [ 2667.506526] ip_rcv_finish_core.constprop.0+0x7b4/0x1c90 [ 2667.507812] ip_rcv_finish+0x4f/0x1e0 [ 2667.508687] ip_rcv+0xae/0xd0 [ 2667.509446] ? ip_local_deliver+0x200/0x200 [ 2667.510428] __netif_receive_skb_one_core+0x19b/0x1f0 [ 2667.511617] ? __netif_receive_skb_core+0x3780/0x3780 [ 2667.512793] ? lockdep_hardirqs_on_prepare+0x129/0x3e0 [ 2667.514026] ? ktime_get_with_offset+0x221/0x260 [ 2667.515112] ? trace_hardirqs_on+0x5b/0x180 [ 2667.516091] ? recalibrate_cpu_khz+0x10/0x10 [ 2667.517144] __netif_receive_skb+0x27/0x1d0 [ 2667.518125] netif_receive_skb+0x12d/0x710 [ 2667.519257] ? __netif_receive_skb+0x1d0/0x1d0 [ 2667.520400] ? SOFTIRQ_verbose+0x10/0x10 [ 2667.521407] ? __lockdep_reset_lock+0x180/0x180 [ 2667.522018] FAULT_INJECTION: forcing a failure. [ 2667.522018] name failslab, interval 1, probability 0, space 0, times 0 [ 2667.522559] tun_rx_batched.isra.0+0x462/0x710 [ 2667.522587] ? lock_acquire+0x197/0x470 [ 2667.525861] ? tun_get_user+0xee3/0x32f0 [ 2667.526860] ? tun_sock_write_space+0x1d0/0x1d0 [ 2667.528012] ? lock_release+0x680/0x680 [ 2667.528987] ? tun_get_user+0x16e6/0x32f0 [ 2667.530002] ? lock_downgrade+0x6d0/0x6d0 [ 2667.531020] ? eth_type_trans+0x2ad/0x5b0 [ 2667.532057] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 2667.533356] tun_get_user+0x191d/0x32f0 [ 2667.534330] ? usage_accumulate+0x110/0x110 [ 2667.535452] ? tun_build_skb+0xfe0/0xfe0 [ 2667.536361] ? tun_device_event+0x990/0x1160 [ 2667.537338] ? SOFTIRQ_verbose+0x10/0x10 [ 2667.538249] tun_chr_write_iter+0xe1/0x1e0 [ 2667.539204] new_sync_write+0x42c/0x660 [ 2667.540066] ? new_sync_read+0x6f0/0x6f0 [ 2667.540979] ? _cond_resched+0x12/0x80 [ 2667.541829] ? avc_policy_seqno+0x9/0x70 [ 2667.542729] ? selinux_file_permission+0x92/0x520 [ 2667.543790] ? __fget_files+0x296/0x4c0 [ 2667.544705] vfs_write+0x747/0xa70 [ 2667.545488] ksys_write+0x12d/0x260 [ 2667.546301] ? __ia32_sys_read+0xb0/0xb0 [ 2667.547200] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 2667.548341] ? syscall_enter_from_user_mode+0x1d/0x50 [ 2667.549468] do_syscall_64+0x33/0x40 [ 2667.550282] entry_SYSCALL_64_after_hwframe+0x62/0xc7 [ 2667.551418] RIP: 0033:0x7fc05d62c5ff [ 2667.552244] Code: 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 99 fd ff ff 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 b8 01 00 00 00 0f 05 <48> 3d 00 f0 ff ff 77 31 44 89 c7 48 89 44 24 08 e8 cc fd ff ff 48 [ 2667.556206] RSP: 002b:00007fc05abef150 EFLAGS: 00000293 ORIG_RAX: 0000000000000001 [ 2667.557855] RAX: ffffffffffffffda RBX: 00007fc05d78cf60 RCX: 00007fc05d62c5ff [ 2667.559408] RDX: 000000000000003a RSI: 0000000020000000 RDI: 00000000000000f0 [ 2667.560951] RBP: 00007fc05abef1d0 R08: 0000000000000000 R09: 0000000000000000 [ 2667.562478] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000001 [ 2667.564005] R13: 00007ffc5aac442f R14: 00007fc05abef300 R15: 0000000000022000 [ 2667.565637] CPU: 1 PID: 11987 Comm: syz-executor.1 Not tainted 5.10.204 #1 [ 2667.566442] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 2667.567322] Call Trace: [ 2667.567607] dump_stack+0x107/0x167 [ 2667.567995] should_fail.cold+0x5/0xa [ 2667.568397] ? create_object.isra.0+0x3a/0xa20 [ 2667.568880] should_failslab+0x5/0x20 [ 2667.569293] kmem_cache_alloc+0x5b/0x310 [ 2667.569724] create_object.isra.0+0x3a/0xa20 [ 2667.570189] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 2667.570741] kmem_cache_alloc+0x159/0x310 [ 2667.571198] dst_alloc+0x9e/0x610 [ 2667.571591] rt_dst_alloc+0x73/0x440 [ 2667.571994] ip_route_input_slow+0x16f6/0x3050 [ 2667.572497] ? SOFTIRQ_verbose+0x10/0x10 [ 2667.572937] ? fib_multipath_hash+0x940/0x940 [ 2667.573433] ? lock_release+0x680/0x680 [ 2667.573867] ? lock_acquire+0x197/0x470 [ 2667.574288] ? find_held_lock+0x2c/0x110 [ 2667.574751] ip_route_input_noref+0x117/0x2f0 [ 2667.575266] ? ip_route_input_slow+0x3050/0x3050 [ 2667.575797] ? nf_hook_slow+0xfc/0x1e0 [ 2667.576236] ? nf_hook.constprop.0+0x146/0x500 [ 2667.576748] ? ip_list_rcv_finish.constprop.0+0x590/0x590 [ 2667.577366] ip_rcv_finish_core.constprop.0+0x7b4/0x1c90 [ 2667.577980] ip_rcv_finish+0x4f/0x1e0 [ 2667.578406] ip_rcv+0xae/0xd0 [ 2667.578759] ? ip_local_deliver+0x200/0x200 [ 2667.579262] __netif_receive_skb_one_core+0x19b/0x1f0 [ 2667.579813] ? __netif_receive_skb_core+0x3780/0x3780 [ 2667.580390] ? lockdep_hardirqs_on_prepare+0x129/0x3e0 [ 2667.580979] ? ktime_get_with_offset+0x221/0x260 [ 2667.581507] ? trace_hardirqs_on+0x5b/0x180 [ 2667.581994] ? recalibrate_cpu_khz+0x10/0x10 [ 2667.582490] __netif_receive_skb+0x27/0x1d0 [ 2667.582976] netif_receive_skb+0x12d/0x710 [ 2667.583459] ? __netif_receive_skb+0x1d0/0x1d0 [ 2667.583969] ? SOFTIRQ_verbose+0x10/0x10 [ 2667.584430] ? __lockdep_reset_lock+0x180/0x180 [ 2667.584958] tun_rx_batched.isra.0+0x462/0x710 [ 2667.585471] ? lock_acquire+0x197/0x470 [ 2667.585918] ? tun_get_user+0xee3/0x32f0 [ 2667.586375] ? tun_sock_write_space+0x1d0/0x1d0 [ 2667.586902] ? lock_release+0x680/0x680 [ 2667.587353] ? tun_get_user+0x16e6/0x32f0 [ 2667.587818] ? lock_downgrade+0x6d0/0x6d0 [ 2667.588282] ? eth_type_trans+0x2ad/0x5b0 [ 2667.588756] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 2667.589350] tun_get_user+0x191d/0x32f0 [ 2667.589797] ? usage_accumulate+0x110/0x110 [ 2667.590291] ? tun_build_skb+0xfe0/0xfe0 [ 2667.590753] ? tun_device_event+0x990/0x1160 [ 2667.591252] ? perf_trace_lock+0xac/0x490 [ 2667.591714] ? SOFTIRQ_verbose+0x10/0x10 [ 2667.592178] tun_chr_write_iter+0xe1/0x1e0 [ 2667.592658] new_sync_write+0x42c/0x660 [ 2667.593104] ? new_sync_read+0x6f0/0x6f0 [ 2667.593562] ? _cond_resched+0x12/0x80 [ 2667.593999] ? avc_policy_seqno+0x9/0x70 [ 2667.594456] ? selinux_file_permission+0x92/0x520 [ 2667.595001] ? __fget_files+0x296/0x4c0 [ 2667.595473] vfs_write+0x747/0xa70 [ 2667.595878] ksys_write+0x12d/0x260 [ 2667.596295] ? __ia32_sys_read+0xb0/0xb0 [ 2667.596756] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 2667.597342] ? syscall_enter_from_user_mode+0x1d/0x50 [ 2667.597936] do_syscall_64+0x33/0x40 [ 2667.598328] entry_SYSCALL_64_after_hwframe+0x62/0xc7 [ 2667.598907] RIP: 0033:0x7f56064f65ff [ 2667.599339] Code: 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 99 fd ff ff 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 b8 01 00 00 00 0f 05 <48> 3d 00 f0 ff ff 77 31 44 89 c7 48 89 44 24 08 e8 cc fd ff ff 48 [ 2667.601420] RSP: 002b:00007f5603ab9150 EFLAGS: 00000293 ORIG_RAX: 0000000000000001 [ 2667.602266] RAX: ffffffffffffffda RBX: 00007f5606656f60 RCX: 00007f56064f65ff [ 2667.603021] RDX: 000000000000003a RSI: 0000000020000000 RDI: 00000000000000f0 [ 2667.603827] RBP: 00007f5603ab91d0 R08: 0000000000000000 R09: 0000000000000000 [ 2667.604619] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000001 [ 2667.605410] R13: 00007ffe3650190f R14: 00007f5603ab9300 R15: 0000000000022000 05:36:00 executing program 5: r0 = openat$procfs(0xffffffffffffff9c, &(0x7f0000001100)='/proc/asound/seq/clients\x00', 0x0, 0x0) ioctl$BLKROGET(r0, 0x125e, &(0x7f0000001140)) r1 = openat$procfs(0xffffffffffffff9c, &(0x7f00000014c0)='/proc/bus/input/devices\x00', 0x0, 0x0) getsockopt$inet6_udp_int(r1, 0x11, 0x65, &(0x7f0000001080), &(0x7f00000010c0)=0x4) r2 = timerfd_create(0x0, 0x400) dup2(r1, r2) r3 = openat$procfs(0xffffffffffffff9c, &(0x7f00000014c0)='/proc/bus/input/devices\x00', 0x0, 0x0) r4 = perf_event_open(&(0x7f0000001d80)={0x2, 0x80, 0x5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x40641, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x40, 0x0, @perf_config_ext, 0x0, 0x1, 0x0, 0x2, 0x0, 0x9}, 0x0, 0x0, 0xffffffffffffffff, 0xa) perf_event_open(&(0x7f0000001d80)={0x3, 0x80, 0x0, 0x0, 0x0, 0x0, 0x4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, r4, 0x0) r5 = dup2(r0, r3) sendfile(r4, r5, &(0x7f00000011c0)=0x3, 0x3f) pread64(r3, &(0x7f0000000040)=""/4126, 0x101e, 0x2000) r6 = open(&(0x7f0000001200)='./file0\x00', 0x100, 0x20) getsockopt$SO_COOKIE(r6, 0x1, 0x39, &(0x7f0000001240), &(0x7f0000001280)=0x8) ioctl$HDIO_GETGEO(r3, 0x301, &(0x7f0000001180)) pread64(r1, &(0x7f0000000040)=""/4126, 0x101e, 0x2000) r7 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000)='./cgroup.net/syz1\x00', 0x200002, 0x0) ioctl$AUTOFS_DEV_IOCTL_CATATONIC(r1, 0xc0189379, &(0x7f0000000040)=ANY=[@ANYBLOB="21ac16f60100000032000000", @ANYRES32=r7, @ANYBLOB='\x00\x00\x00\x00\x00\x00\x00\x00./file0\x00']) 05:36:00 executing program 4: perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_emit_ethernet(0x3a, &(0x7f0000000000)={@local, @remote, @void, {@ipv4={0x800, @tcp={{0x6, 0x4, 0x0, 0x0, 0x2c, 0x0, 0x0, 0x0, 0x32, 0x0, @dev, @private=0xa010100, {[@lsrr={0x83, 0x5}]}}, {{0x0, 0x0, 0x41424344, 0x41424344, 0x0, 0x7, 0x5}}}}}}, 0x0) (fail_nth: 19) openat$cgroup_devices(0xffffffffffffffff, 0x0, 0x2, 0x0) close(0xffffffffffffffff) pread64(0xffffffffffffffff, 0x0, 0x0, 0x2000) 05:36:00 executing program 7: r0 = openat$procfs(0xffffffffffffff9c, &(0x7f00000014c0)='/proc/bus/input/devices\x00', 0x0, 0x0) pread64(r0, &(0x7f0000000040)=""/4126, 0x101e, 0x2000) ioctl$TUNSETLINK(r0, 0x400454cd, 0x18) syz_emit_ethernet(0x32, &(0x7f0000001080)=ANY=[@ANYBLOB="aaaaaaaaaaaaaaaaaaaaaabb0800470000240000000000029078ac1414aa0a010102ca4e61d1b8a759f14cc45eb002bed4c862d715dc37f39c5cb029216468ca8565ae8a6c3b4a9d153e84064e954a45fed5c4ed372f71d32878f0827a8ca1a6c5b10ee29b1b25baaf8f4e464d2fd77216887d08692988b0328f7dbcba7c9d7d13e0348c5b946a0927a115bc2074721bedfd4b184a8fe76239b5e02aad495dae67fc881e66ce1c4d0415b802eba65594ec52758491bda27fd9f971488d7305d31678d91124df0df286a2d7c94527b2189ca785e9aa086f09ab881753bb0afbea32ef48c29b4ec675c838a5a6ea"], 0x0) 05:36:00 executing program 7: syz_emit_ethernet(0x32, &(0x7f0000000040)=ANY=[@ANYBLOB="aaaabaaaaaaaaaaaaaaaaabbad15a0b7b5c7778a0a9b55fa657f0800470000240000000000028608"], 0x0) write$tun(0xffffffffffffffff, &(0x7f0000000080)={@void, @val={0x2, 0x4, 0x1, 0x4f, 0x3f, 0x9}, @llc={@snap={0xaa, 0xab, 'r', "89360c", 0x840f, "0dd4581f0a3b233173ec5cc1957dde322e1b79e95d28219b5848d0824fd968f6bfc8e4816cb5251d212d8b8f17d29ce7292bc62fa968460a3cbb0ef88df9e186d6b95eafe4f19b99453b8b31293d6717fcfbc90229b72704f2234fe6ac3e1b0ef55d3bd3324914fe902f3fc16d910f0c35ef21a7b15419190c4b221a57e411b8b80bbe51fa1937e655afd62b31674562d8686e70ad4ea914d7c2ee602deb5e"}}}, 0xb1) [ 2667.739955] FAULT_INJECTION: forcing a failure. [ 2667.739955] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 2667.742580] CPU: 0 PID: 12003 Comm: syz-executor.4 Not tainted 5.10.204 #1 [ 2667.744111] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 2667.745991] Call Trace: [ 2667.746581] dump_stack+0x107/0x167 [ 2667.747405] should_fail.cold+0x5/0xa [ 2667.748259] _copy_to_user+0x2e/0x180 [ 2667.749110] simple_read_from_buffer+0xcc/0x160 [ 2667.750141] proc_fail_nth_read+0x198/0x230 [ 2667.751102] ? proc_sessionid_read+0x230/0x230 [ 2667.752101] ? security_file_permission+0x24e/0x570 [ 2667.753187] ? perf_trace_initcall_start+0x101/0x380 [ 2667.754320] ? proc_sessionid_read+0x230/0x230 [ 2667.755336] vfs_read+0x228/0x580 [ 2667.756118] ksys_read+0x12d/0x260 [ 2667.756906] ? vfs_write+0xa70/0xa70 [ 2667.757736] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 2667.758884] ? syscall_enter_from_user_mode+0x1d/0x50 [ 2667.760031] do_syscall_64+0x33/0x40 [ 2667.760847] entry_SYSCALL_64_after_hwframe+0x62/0xc7 [ 2667.761963] RIP: 0033:0x7f6e6cf4269c [ 2667.762780] Code: ec 28 48 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 f9 fc ff ff 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 31 c0 0f 05 <48> 3d 00 f0 ff ff 77 34 44 89 c7 48 89 44 24 08 e8 2f fd ff ff 48 [ 2667.766772] RSP: 002b:00007f6e6a505170 EFLAGS: 00000246 ORIG_RAX: 0000000000000000 [ 2667.768442] RAX: ffffffffffffffda RBX: 000000000000003a RCX: 00007f6e6cf4269c [ 2667.769995] RDX: 000000000000000f RSI: 00007f6e6a5051e0 RDI: 0000000000000004 [ 2667.771552] RBP: 00007f6e6a5051d0 R08: 0000000000000000 R09: 0000000000000000 [ 2667.773105] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 2667.774656] R13: 00007fffc51a6e8f R14: 00007f6e6a505300 R15: 0000000000022000 [ 2684.486932] netlink: 8 bytes leftover after parsing attributes in process `syz-executor.3'. [ 2684.489464] FAULT_INJECTION: forcing a failure. [ 2684.489464] name failslab, interval 1, probability 0, space 0, times 0 [ 2684.492165] CPU: 0 PID: 12014 Comm: syz-executor.1 Not tainted 5.10.204 #1 [ 2684.493641] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 2684.495425] Call Trace: [ 2684.496011] dump_stack+0x107/0x167 [ 2684.496818] should_fail.cold+0x5/0xa [ 2684.497648] ? dst_alloc+0x9e/0x610 [ 2684.498443] should_failslab+0x5/0x20 [ 2684.499270] kmem_cache_alloc+0x5b/0x310 [ 2684.500164] dst_alloc+0x9e/0x610 [ 2684.500936] rt_dst_alloc+0x73/0x440 [ 2684.501751] ip_route_output_key_hash_rcu+0x93d/0x2a90 [ 2684.502933] ip_route_output_key_hash+0x18d/0x340 [ 2684.503980] ? ip_route_output_key_hash_rcu+0x2a90/0x2a90 [ 2684.505228] icmp_route_lookup.constprop.0+0x349/0x11a0 [ 2684.506395] ? __lockdep_reset_lock+0x180/0x180 [ 2684.507427] ? icmp_timestamp+0x240/0x240 [ 2684.508341] ? memset+0x20/0x50 [ 2684.509073] ? __ip_options_echo+0x6f8/0x11a0 [ 2684.510072] ? lock_downgrade+0x6d0/0x6d0 [ 2684.510970] ? ip_options_build+0x780/0x780 [ 2684.511916] ? do_raw_spin_lock+0x260/0x260 [ 2684.512872] __icmp_send+0xa34/0x14d0 [ 2684.513747] ? icmp_route_lookup.constprop.0+0x11a0/0x11a0 [ 2684.514940] ? __lockdep_reset_lock+0x180/0x180 [ 2684.516000] ? find_held_lock+0x2c/0x110 [ 2684.516955] ? ip_route_input_noref+0x160/0x2f0 [ 2684.518000] ip_options_compile+0xad/0xf0 [ 2684.518891] ? __ip_options_compile+0x15d0/0x15d0 [ 2684.519962] ? ip_list_rcv_finish.constprop.0+0x590/0x590 [ 2684.521153] ip_rcv_finish_core.constprop.0+0x4fb/0x1c90 [ 2684.522372] ip_rcv_finish+0x4f/0x1e0 [ 2684.523230] ip_rcv+0xae/0xd0 [ 2684.523912] ? ip_local_deliver+0x200/0x200 [ 2684.524856] __netif_receive_skb_one_core+0x19b/0x1f0 [ 2684.525967] ? __netif_receive_skb_core+0x3780/0x3780 [ 2684.527106] ? __lock_acquire+0xbb1/0x5b00 [ 2684.528054] __netif_receive_skb+0x27/0x1d0 [ 2684.529000] netif_receive_skb+0x12d/0x710 [ 2684.529914] ? __netif_receive_skb+0x1d0/0x1d0 [ 2684.530907] ? SOFTIRQ_verbose+0x10/0x10 [ 2684.531818] ? __lockdep_reset_lock+0x180/0x180 [ 2684.532864] tun_rx_batched.isra.0+0x462/0x710 [ 2684.533840] ? lock_acquire+0x197/0x470 [ 2684.534716] ? tun_get_user+0xee3/0x32f0 [ 2684.535626] ? tun_sock_write_space+0x1d0/0x1d0 [ 2684.536650] ? lock_release+0x680/0x680 [ 2684.537526] ? tun_get_user+0x16e6/0x32f0 [ 2684.538440] ? lock_downgrade+0x6d0/0x6d0 [ 2684.539357] ? eth_type_trans+0x2ad/0x5b0 [ 2684.540296] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 2684.541478] tun_get_user+0x191d/0x32f0 [ 2684.542360] ? usage_accumulate+0x110/0x110 [ 2684.543382] ? tun_build_skb+0xfe0/0xfe0 [ 2684.544279] ? tun_device_event+0x990/0x1160 [ 2684.545270] ? SOFTIRQ_verbose+0x10/0x10 [ 2684.546195] tun_chr_write_iter+0xe1/0x1e0 [ 2684.547143] new_sync_write+0x42c/0x660 [ 2684.548013] ? new_sync_read+0x6f0/0x6f0 [ 2684.548902] ? _cond_resched+0x12/0x80 [ 2684.549757] ? avc_policy_seqno+0x9/0x70 [ 2684.550638] ? selinux_file_permission+0x92/0x520 [ 2684.551704] ? __fget_files+0x296/0x4c0 [ 2684.552593] vfs_write+0x747/0xa70 [ 2684.553388] ksys_write+0x12d/0x260 [ 2684.554180] ? __ia32_sys_read+0xb0/0xb0 [ 2684.555068] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 2684.556227] ? syscall_enter_from_user_mode+0x1d/0x50 [ 2684.557367] do_syscall_64+0x33/0x40 [ 2684.558186] entry_SYSCALL_64_after_hwframe+0x62/0xc7 [ 2684.559306] RIP: 0033:0x7f56064f65ff [ 2684.560131] Code: 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 99 fd ff ff 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 b8 01 00 00 00 0f 05 <48> 3d 00 f0 ff ff 77 31 44 89 c7 48 89 44 24 08 e8 cc fd ff ff 48 [ 2684.564116] RSP: 002b:00007f5603ab9150 EFLAGS: 00000293 ORIG_RAX: 0000000000000001 [ 2684.565761] RAX: ffffffffffffffda RBX: 00007f5606656f60 RCX: 00007f56064f65ff [ 2684.567299] RDX: 000000000000003a RSI: 0000000020000000 RDI: 00000000000000f0 [ 2684.568824] RBP: 00007f5603ab91d0 R08: 0000000000000000 R09: 0000000000000000 [ 2684.570385] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000001 [ 2684.571923] R13: 00007ffe3650190f R14: 00007f5603ab9300 R15: 0000000000022000 05:36:17 executing program 1: perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_emit_ethernet(0x3a, &(0x7f0000000000)={@local, @remote, @void, {@ipv4={0x800, @tcp={{0x6, 0x4, 0x0, 0x0, 0x2c, 0x0, 0x0, 0x0, 0x32, 0x0, @dev, @private=0xa010100, {[@lsrr={0x83, 0x5}]}}, {{0x0, 0x0, 0x41424344, 0x41424344, 0x0, 0x7, 0x5}}}}}}, 0x0) (fail_nth: 7) 05:36:17 executing program 6: r0 = socket$inet6_tcp(0xa, 0x1, 0x0) setsockopt$inet6_tcp_int(r0, 0x6, 0x2, &(0x7f0000000080)=0x90, 0x4) bind$inet6(r0, &(0x7f00000000c0)={0xa, 0x4e20, 0x0, @loopback}, 0x1c) connect$inet6(r0, &(0x7f0000000000)={0xa, 0x4e20, 0x0, @empty}, 0x1c) setsockopt$sock_int(r0, 0x1, 0x8, &(0x7f0000002ec0), 0x4) sendmsg$inet6(r0, &(0x7f00000006c0)={0x0, 0x0, &(0x7f0000000540)=[{&(0x7f00000001c0)="cf", 0xfffffdef}], 0x1}, 0x10044001) setsockopt$SO_TIMESTAMP(r0, 0x1, 0x40, &(0x7f0000000280)=0x380, 0x4) recvfrom$inet6(r0, &(0x7f0000001e00)=""/4096, 0x1000, 0xcd08, 0x0, 0x0) (fail_nth: 4) 05:36:17 executing program 2: preadv2(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x2) openat(0xffffffffffffff9c, 0x0, 0x0, 0x0) r0 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x105142, 0x62) r1 = openat(0xffffffffffffff9c, 0x0, 0x0, 0x0) fallocate(r1, 0x0, 0x0, 0x8800000) lseek(0xffffffffffffffff, 0x0, 0x0) openat(0xffffffffffffffff, 0x0, 0x0, 0x20) ioctl$FS_IOC_RESVSP(0xffffffffffffffff, 0x40305828, 0x0) faccessat2(0xffffffffffffffff, 0x0, 0x0, 0x0) openat(0xffffffffffffffff, 0x0, 0x1a340, 0x100) ioctl$LOOP_CTL_REMOVE(0xffffffffffffffff, 0x4c81, 0x0) r2 = fsmount(0xffffffffffffffff, 0x0, 0x0) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r3 = openat(r2, &(0x7f0000000000)='/proc/self/exe\x00', 0x4840, 0x2d) sendfile(r0, r3, 0x0, 0x100000008) 05:36:17 executing program 7: syz_emit_ethernet(0x32, &(0x7f0000001080)=ANY=[@ANYBLOB="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"], 0x0) r0 = openat$procfs(0xffffffffffffff9c, &(0x7f00000014c0)='/proc/bus/input/devices\x00', 0x0, 0x0) pread64(r0, &(0x7f0000000040)=""/4126, 0x101e, 0x2000) write$tun(r0, &(0x7f0000000080)={@void, @val={0x2, 0x3, 0x7ff, 0x5, 0x192, 0x7}, @x25={0x2, 0x81, 0xf7, "0654481ed2c09315bb5d1f1cb5e880e52fe5a734da34b6f7e7656e92f3b9aab0ccbce9a98f55b937686745f6f9f2618af0d248a45cf359e6e59a93af0b41179ed5d6a9110220f006dc7209f2ebb67338d53f5b95bb21537142b6bf609982ef09dda8e069dc9f62399b2cd7d79b507fe7689df2d3817094f32dc1621fe5a3790c9f0b04a38f3c698ba333d8500773056253c439d4b3855b67219dcdd4d79754c30e2a0591d3ea1ba290d90c6c656c9d97"}}, 0xbd) sendfile(r0, 0xffffffffffffffff, &(0x7f0000000000)=0x2, 0x1) 05:36:17 executing program 3: r0 = perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x0, 0x3}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) pread64(0xffffffffffffffff, 0x0, 0x7ffffffff000, 0xf0ff1f00000000) bind$inet6(0xffffffffffffffff, &(0x7f0000000040)={0xa, 0x4e23, 0x0, @remote, 0xffff}, 0x1c) r1 = socket$netlink(0x10, 0x3, 0x0) sendmsg$nl_generic(0xffffffffffffffff, 0x0, 0x41) setsockopt$netlink_NETLINK_BROADCAST_ERROR(r1, 0x10e, 0x4, &(0x7f00000000c0)=0x1000, 0x4) sendmsg$nl_generic(r1, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000100)=ANY=[@ANYBLOB="28000000100001000000000000000000000000000500000024386a562b500000000c00008008000d00ac141400"], 0x28}}, 0x0) chdir(&(0x7f00000001c0)='./file0\x00') r2 = syz_open_dev$mouse(&(0x7f0000000400), 0x7fffffff, 0x2d0401) sendmsg$NL80211_CMD_ADD_NAN_FUNCTION(r2, &(0x7f0000000500)={&(0x7f0000000440)={0x10, 0x0, 0x0, 0x10}, 0xc, &(0x7f00000004c0)={&(0x7f00000002c0)={0x20, 0x0, 0x100, 0x70bd2b, 0x25dfdbfd, {{}, {@void, @val={0xc, 0x99, {0x3, 0x1b}}}}}, 0x20}, 0x1, 0x0, 0x0, 0x95}, 0x40000) ioctl$FICLONE(r2, 0x40049409, r0) r3 = open$dir(&(0x7f0000000000)='.\x00', 0x0, 0x0) perf_event_open(&(0x7f0000001d80)={0x6, 0x80, 0x0, 0x0, 0x0, 0x0, 0x4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffd, 0x0, @perf_bp={0x0, 0xffffffff81000000}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffd}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r4 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000040)='/proc/crypto\x00', 0x0, 0x0) r5 = openat2(r3, &(0x7f0000000180)='./file0\x00', &(0x7f0000000200)={0x800, 0x1b9}, 0x18) setsockopt$SO_TIMESTAMPING(r5, 0x1, 0x25, &(0x7f0000000240)=0x7100, 0x4) pread64(r4, &(0x7f00000010c0)=""/4088, 0xff8, 0x0) writev(0xffffffffffffffff, &(0x7f00000003c0)=[{&(0x7f0000000000)="0000abe02400030021206cda3b5e5672b89aeddb2a535fbd0706006dff0043a9d7cceb232fb81bf74ebdd05b7677", 0x2e}, {&(0x7f0000000680)="7fd41c04550300020000000000000000010046e92ed2616f72657d044129471d4fd47924fd0900e09e0068de", 0x2c}], 0x2) 05:36:17 executing program 0: perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_emit_ethernet(0x3a, &(0x7f0000000000)={@local, @remote, @void, {@ipv4={0x800, @tcp={{0x6, 0x4, 0x0, 0x0, 0x2c, 0x0, 0x0, 0x0, 0x32, 0x0, @dev, @private=0xa010100, {[@lsrr={0x83, 0x5}]}}, {{0x0, 0x0, 0x41424344, 0x41424344, 0x0, 0x7, 0x5}}}}}}, 0x0) (fail_nth: 6) ioctl$BTRFS_IOC_BALANCE(0xffffffffffffffff, 0x5000940c, 0x0) close(0xffffffffffffffff) 05:36:17 executing program 4: perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_emit_ethernet(0x3a, &(0x7f0000000000)={@local, @remote, @void, {@ipv4={0x800, @tcp={{0x6, 0x4, 0x0, 0x0, 0x2c, 0x0, 0x0, 0x0, 0x32, 0x0, @dev, @private=0xa010100, {[@lsrr={0x83, 0x5}]}}, {{0x0, 0x0, 0x41424344, 0x41424344, 0x0, 0x7, 0x5}}}}}}, 0x0) openat$cgroup_devices(0xffffffffffffffff, 0x0, 0x2, 0x0) close(0xffffffffffffffff) pread64(0xffffffffffffffff, 0x0, 0x0, 0x2000) 05:36:17 executing program 5: syz_emit_ethernet(0x22, &(0x7f00000000c0)={@multicast, @remote, @val={@void, {0x8100, 0x5, 0x0, 0x3}}, {@can={0xc, {{0x0, 0x0, 0x0, 0x1}, 0x0, 0x1, 0x0, 0x0, "fd16887b35058b0c"}}}}, 0x0) r0 = syz_open_dev$mouse(&(0x7f0000000000), 0x2, 0x900) write$tun(r0, &(0x7f0000000040)={@void, @void, @x25={0x1, 0x1, 0xfb, "caa2ccfebdf21926f2b5491b"}}, 0xf) r1 = openat$vcsa(0xffffffffffffff9c, &(0x7f0000000200), 0x140, 0x0) write$tun(r1, &(0x7f0000000240)=ANY=[@ANYBLOB="0000080601048000050009000100000000000000000000000b0000000000200000000000000000000f000000000061b543fd00980601ff02000000000000000000000000000100000000000000000000000000010100000000000000000000000200004e2200004e22000000030000080000010000007a6e0000dfe00000cf5100000001000000107fffffff00000004ffffffff000008c20000000900003be10000005000000009fffffae20000000900000001000000067ffffff700100010800000004747df4b00000401e1ffffb60000007e000000090000000800"/233], 0xee) [ 2684.576950] FAULT_INJECTION: forcing a failure. [ 2684.576950] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 2684.578227] CPU: 1 PID: 12022 Comm: syz-executor.6 Not tainted 5.10.204 #1 [ 2684.578964] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 2684.579871] Call Trace: [ 2684.580159] dump_stack+0x107/0x167 [ 2684.580550] should_fail.cold+0x5/0xa [ 2684.580971] _copy_to_iter+0x264/0x12d0 [ 2684.581400] ? mark_lock+0xf5/0x2df0 [ 2684.581816] ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0 [ 2684.582379] ? SOFTIRQ_verbose+0x10/0x10 [ 2684.582816] ? _copy_from_iter_nocache+0xd60/0xd60 [ 2684.583341] ? lock_chain_count+0x20/0x20 [ 2684.583800] ? __virt_addr_valid+0x128/0x350 [ 2684.584276] ? __check_object_size+0x319/0x440 [ 2684.584785] simple_copy_to_iter+0x4c/0x70 [ 2684.585249] __skb_datagram_iter+0x4f7/0x880 [ 2684.585726] ? zerocopy_sg_from_iter+0x110/0x110 [ 2684.586242] skb_copy_datagram_iter+0x88/0x190 [ 2684.586742] tcp_recvmsg+0x13b5/0x2930 [ 2684.587172] ? tcp_splice_read+0x8c0/0x8c0 [ 2684.587644] ? sock_has_perm+0x1ea/0x280 [ 2684.588081] ? selinux_socket_post_create+0x7f0/0x7f0 [ 2684.588638] ? lock_downgrade+0x6d0/0x6d0 [ 2684.589085] ? perf_trace_lock+0xac/0x490 [ 2684.589539] ? tcp_splice_read+0x8c0/0x8c0 [ 2684.589996] inet6_recvmsg+0x13b/0x6e0 [ 2684.590423] ? inet6_bind+0x120/0x120 [ 2684.590842] ? security_socket_recvmsg+0x95/0xc0 [ 2684.591367] ? inet6_bind+0x120/0x120 [ 2684.591781] sock_recvmsg+0xff/0x180 [ 2684.592185] __sys_recvfrom+0x1be/0x2f0 [ 2684.592618] ? __ia32_sys_send+0x100/0x100 [ 2684.593071] ? lock_downgrade+0x6d0/0x6d0 [ 2684.593537] ? wait_for_completion_io+0x270/0x270 [ 2684.594055] ? rcu_read_lock_any_held+0x75/0xa0 [ 2684.594556] ? vfs_write+0x354/0xa70 [ 2684.594970] ? fput_many+0x2f/0x1a0 [ 2684.595378] ? ksys_write+0x1a9/0x260 [ 2684.595793] ? __ia32_sys_read+0xb0/0xb0 [ 2684.596234] __x64_sys_recvfrom+0xdd/0x1b0 [ 2684.596689] ? syscall_enter_from_user_mode+0x1d/0x50 [ 2684.597248] do_syscall_64+0x33/0x40 [ 2684.597649] entry_SYSCALL_64_after_hwframe+0x62/0xc7 [ 2684.598204] RIP: 0033:0x7f7d1addbb19 [ 2684.598607] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 2684.600557] RSP: 002b:00007f7d18330188 EFLAGS: 00000246 ORIG_RAX: 000000000000002d [ 2684.601376] RAX: ffffffffffffffda RBX: 00007f7d1aeef020 RCX: 00007f7d1addbb19 [ 2684.602129] RDX: 0000000000001000 RSI: 0000000020001e00 RDI: 0000000000000003 [ 2684.602897] RBP: 00007f7d183301d0 R08: 0000000000000000 R09: 0000000000000000 [ 2684.603670] R10: 000000000000cd08 R11: 0000000000000246 R12: 0000000000000001 [ 2684.604435] R13: 00007ffe0ac926cf R14: 00007f7d18330300 R15: 0000000000022000 [ 2684.616045] FAULT_INJECTION: forcing a failure. [ 2684.616045] name failslab, interval 1, probability 0, space 0, times 0 [ 2684.618549] CPU: 0 PID: 12030 Comm: syz-executor.0 Not tainted 5.10.204 #1 [ 2684.620046] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 2684.621820] Call Trace: [ 2684.622392] dump_stack+0x107/0x167 [ 2684.623202] should_fail.cold+0x5/0xa [ 2684.624038] ? create_object.isra.0+0x3a/0xa20 [ 2684.625031] should_failslab+0x5/0x20 [ 2684.625854] kmem_cache_alloc+0x5b/0x310 [ 2684.626768] create_object.isra.0+0x3a/0xa20 [ 2684.627757] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 2684.628893] kmem_cache_alloc+0x159/0x310 [ 2684.629832] dst_alloc+0x9e/0x610 [ 2684.630621] rt_dst_alloc+0x73/0x440 [ 2684.631460] ip_route_input_slow+0x16f6/0x3050 [ 2684.632488] ? SOFTIRQ_verbose+0x10/0x10 [ 2684.633386] ? perf_trace_run_bpf_submit+0xf5/0x190 [ 2684.634486] ? fib_multipath_hash+0x940/0x940 [ 2684.635534] ? lock_release+0x680/0x680 [ 2684.636431] ? lock_acquire+0x197/0x470 [ 2684.637311] ? find_held_lock+0x2c/0x110 [ 2684.638243] ip_route_input_noref+0x117/0x2f0 [ 2684.639254] ? ip_route_input_slow+0x3050/0x3050 [ 2684.640306] ? nf_hook_slow+0xfc/0x1e0 [ 2684.641183] ? nf_hook.constprop.0+0x146/0x500 [ 2684.642190] ? ip_list_rcv_finish.constprop.0+0x590/0x590 [ 2684.643425] ip_rcv_finish_core.constprop.0+0x7b4/0x1c90 [ 2684.644639] ip_rcv_finish+0x4f/0x1e0 [ 2684.645486] ip_rcv+0xae/0xd0 [ 2684.646179] ? ip_local_deliver+0x200/0x200 [ 2684.647136] __netif_receive_skb_one_core+0x19b/0x1f0 [ 2684.648285] ? __netif_receive_skb_core+0x3780/0x3780 [ 2684.649427] ? lockdep_hardirqs_on_prepare+0x129/0x3e0 [ 2684.650583] ? ktime_get_with_offset+0x221/0x260 [ 2684.651640] ? trace_hardirqs_on+0x5b/0x180 [ 2684.652598] ? recalibrate_cpu_khz+0x10/0x10 [ 2684.653582] __netif_receive_skb+0x27/0x1d0 [ 2684.654537] netif_receive_skb+0x12d/0x710 [ 2684.655459] ? __netif_receive_skb+0x1d0/0x1d0 [ 2684.656458] ? SOFTIRQ_verbose+0x10/0x10 [ 2684.657352] ? __lockdep_reset_lock+0x180/0x180 [ 2684.658397] tun_rx_batched.isra.0+0x462/0x710 [ 2684.659400] ? lock_acquire+0x197/0x470 [ 2684.660279] ? tun_get_user+0xee3/0x32f0 [ 2684.661169] ? tun_sock_write_space+0x1d0/0x1d0 [ 2684.662191] ? lock_release+0x680/0x680 [ 2684.663057] ? tun_get_user+0x16e6/0x32f0 [ 2684.663981] ? lock_downgrade+0x6d0/0x6d0 [ 2684.664896] ? eth_type_trans+0x2ad/0x5b0 [ 2684.665834] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 2684.667010] tun_get_user+0x191d/0x32f0 [ 2684.667902] ? usage_accumulate+0x110/0x110 [ 2684.668900] ? tun_build_skb+0xfe0/0xfe0 [ 2684.669816] ? tun_device_event+0x990/0x1160 [ 2684.670786] ? SOFTIRQ_verbose+0x10/0x10 [ 2684.671733] tun_chr_write_iter+0xe1/0x1e0 [ 2684.672659] new_sync_write+0x42c/0x660 [ 2684.673544] ? new_sync_read+0x6f0/0x6f0 [ 2684.674439] ? _cond_resched+0x12/0x80 [ 2684.675322] ? avc_policy_seqno+0x9/0x70 [ 2684.676199] ? selinux_file_permission+0x92/0x520 [ 2684.677284] ? __fget_files+0x296/0x4c0 [ 2684.678176] vfs_write+0x747/0xa70 [ 2684.678983] ksys_write+0x12d/0x260 [ 2684.679789] ? __ia32_sys_read+0xb0/0xb0 [ 2684.680691] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 2684.681830] ? syscall_enter_from_user_mode+0x1d/0x50 [ 2684.682987] do_syscall_64+0x33/0x40 [ 2684.683805] entry_SYSCALL_64_after_hwframe+0x62/0xc7 [ 2684.684930] RIP: 0033:0x7fc05d62c5ff [ 2684.685741] Code: 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 99 fd ff ff 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 b8 01 00 00 00 0f 05 <48> 3d 00 f0 ff ff 77 31 44 89 c7 48 89 44 24 08 e8 cc fd ff ff 48 [ 2684.689765] RSP: 002b:00007fc05abef150 EFLAGS: 00000293 ORIG_RAX: 0000000000000001 [ 2684.691425] RAX: ffffffffffffffda RBX: 00007fc05d78cf60 RCX: 00007fc05d62c5ff [ 2684.692980] RDX: 000000000000003a RSI: 0000000020000000 RDI: 00000000000000f0 [ 2684.694538] RBP: 00007fc05abef1d0 R08: 0000000000000000 R09: 0000000000000000 [ 2684.696085] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000001 [ 2684.697641] R13: 00007ffc5aac442f R14: 00007fc05abef300 R15: 0000000000022000 05:36:17 executing program 5: syz_emit_ethernet(0x32, &(0x7f0000000040)={@local, @remote, @void, {@ipv4={0x800, @igmp={{0x7, 0x4, 0x0, 0x0, 0x24, 0x0, 0x0, 0x0, 0x2, 0x0, @local, @private=0xa010102, {[@cipso={0x86, 0x8, 0x0, [{0x0, 0x2}]}]}}, {0x0, 0x0, 0x0, @broadcast}}}}}, 0x0) write$tun(0xffffffffffffffff, &(0x7f0000000080)={@void, @void, @x25={0x3, 0x7f, 0xa, "d312d9a2395801f7dd9566c1b375cc78c52c4367f8b1e3d3e987658ac3c6f2a16c1f95e048a70bc5c386744ab339752d39db42d98f1359585bfbd104b4bc504bf32fd39e56a07561f12220251ef8c0ca47bd69119faf0fcb76d500ee6d57b7d305d11acc5752ee003aa4858583533ee4c60c4fcab981758904377c481ef420c58b48834c73db8ae79ee5d9f630d613ff93e86b4561caed608b936dce6e18d7396c80e1d3e5131c2e3a1152cedf6ef63ec28c3fcf86f43ff61017c060b8278b78a697ef31882daf4298151f0374d0fd5741db589ba975bb8a"}}, 0xdb) 05:36:17 executing program 1: perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_emit_ethernet(0x3a, &(0x7f0000000000)={@local, @remote, @void, {@ipv4={0x800, @tcp={{0x6, 0x4, 0x0, 0x0, 0x2c, 0x0, 0x0, 0x0, 0x32, 0x0, @dev, @private=0xa010100, {[@lsrr={0x83, 0x5}]}}, {{0x0, 0x0, 0x41424344, 0x41424344, 0x0, 0x7, 0x5}}}}}}, 0x0) (fail_nth: 8) [ 2684.732045] FAULT_INJECTION: forcing a failure. [ 2684.732045] name failslab, interval 1, probability 0, space 0, times 0 [ 2684.733303] CPU: 1 PID: 12036 Comm: syz-executor.1 Not tainted 5.10.204 #1 [ 2684.734038] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 2684.734929] Call Trace: [ 2684.735245] dump_stack+0x107/0x167 [ 2684.735650] should_fail.cold+0x5/0xa [ 2684.736062] ? create_object.isra.0+0x3a/0xa20 [ 2684.736562] should_failslab+0x5/0x20 [ 2684.736970] kmem_cache_alloc+0x5b/0x310 [ 2684.737406] create_object.isra.0+0x3a/0xa20 [ 2684.737878] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 2684.738435] kmem_cache_alloc+0x159/0x310 [ 2684.738892] dst_alloc+0x9e/0x610 [ 2684.739281] rt_dst_alloc+0x73/0x440 [ 2684.739680] ip_route_output_key_hash_rcu+0x93d/0x2a90 [ 2684.740252] ip_route_output_key_hash+0x18d/0x340 [ 2684.740768] ? ip_route_output_key_hash_rcu+0x2a90/0x2a90 [ 2684.741388] icmp_route_lookup.constprop.0+0x349/0x11a0 [ 2684.741963] ? __lockdep_reset_lock+0x180/0x180 [ 2684.742468] ? icmp_timestamp+0x240/0x240 [ 2684.742917] ? memset+0x20/0x50 [ 2684.743294] ? __ip_options_echo+0x6f8/0x11a0 [ 2684.743775] ? lock_downgrade+0x6d0/0x6d0 [ 2684.744220] ? ip_options_build+0x780/0x780 [ 2684.744677] ? do_raw_spin_lock+0x260/0x260 [ 2684.745136] __icmp_send+0xa34/0x14d0 [ 2684.745557] ? icmp_route_lookup.constprop.0+0x11a0/0x11a0 [ 2684.746156] ? __lockdep_reset_lock+0x180/0x180 [ 2684.746651] ? find_held_lock+0x2c/0x110 [ 2684.747107] ? ip_route_input_noref+0x160/0x2f0 [ 2684.747617] ip_options_compile+0xad/0xf0 [ 2684.748063] ? __ip_options_compile+0x15d0/0x15d0 [ 2684.748584] ? ip_list_rcv_finish.constprop.0+0x590/0x590 [ 2684.749177] ip_rcv_finish_core.constprop.0+0x4fb/0x1c90 [ 2684.749767] ip_rcv_finish+0x4f/0x1e0 [ 2684.750175] ip_rcv+0xae/0xd0 [ 2684.750516] ? ip_local_deliver+0x200/0x200 [ 2684.750976] __netif_receive_skb_one_core+0x19b/0x1f0 [ 2684.751532] ? __netif_receive_skb_core+0x3780/0x3780 [ 2684.752089] ? lockdep_hardirqs_on_prepare+0x129/0x3e0 [ 2684.752649] ? ktime_get_with_offset+0x221/0x260 [ 2684.753149] ? trace_hardirqs_on+0x5b/0x180 [ 2684.753616] ? recalibrate_cpu_khz+0x10/0x10 [ 2684.754085] __netif_receive_skb+0x27/0x1d0 [ 2684.754553] netif_receive_skb+0x12d/0x710 [ 2684.755006] ? __netif_receive_skb+0x1d0/0x1d0 [ 2684.755509] ? SOFTIRQ_verbose+0x10/0x10 [ 2684.755947] ? __lockdep_reset_lock+0x180/0x180 [ 2684.756442] tun_rx_batched.isra.0+0x462/0x710 [ 2684.756934] ? lock_acquire+0x197/0x470 [ 2684.757352] ? tun_get_user+0xee3/0x32f0 [ 2684.757789] ? tun_sock_write_space+0x1d0/0x1d0 [ 2684.758281] ? lock_release+0x680/0x680 [ 2684.758708] ? tun_get_user+0x16e6/0x32f0 [ 2684.759148] ? lock_downgrade+0x6d0/0x6d0 [ 2684.759596] ? eth_type_trans+0x2ad/0x5b0 [ 2684.760049] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 2684.760608] tun_get_user+0x191d/0x32f0 [ 2684.761030] ? usage_accumulate+0x110/0x110 [ 2684.761502] ? tun_build_skb+0xfe0/0xfe0 [ 2684.761942] ? tun_device_event+0x990/0x1160 [ 2684.762414] ? perf_trace_lock+0xac/0x490 [ 2684.762854] ? SOFTIRQ_verbose+0x10/0x10 [ 2684.763309] tun_chr_write_iter+0xe1/0x1e0 [ 2684.763766] new_sync_write+0x42c/0x660 [ 2684.764189] ? new_sync_read+0x6f0/0x6f0 [ 2684.764628] ? _cond_resched+0x12/0x80 [ 2684.765046] ? avc_policy_seqno+0x9/0x70 [ 2684.765481] ? selinux_file_permission+0x92/0x520 [ 2684.766000] ? __fget_files+0x296/0x4c0 [ 2684.766438] vfs_write+0x747/0xa70 [ 2684.766820] ksys_write+0x12d/0x260 [ 2684.767216] ? __ia32_sys_read+0xb0/0xb0 [ 2684.767657] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 2684.768216] ? syscall_enter_from_user_mode+0x1d/0x50 [ 2684.768769] do_syscall_64+0x33/0x40 [ 2684.769161] entry_SYSCALL_64_after_hwframe+0x62/0xc7 [ 2684.769710] RIP: 0033:0x7f56064f65ff [ 2684.770106] Code: 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 99 fd ff ff 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 b8 01 00 00 00 0f 05 <48> 3d 00 f0 ff ff 77 31 44 89 c7 48 89 44 24 08 e8 cc fd ff ff 48 [ 2684.772061] RSP: 002b:00007f5603ab9150 EFLAGS: 00000293 ORIG_RAX: 0000000000000001 [ 2684.772872] RAX: ffffffffffffffda RBX: 00007f5606656f60 RCX: 00007f56064f65ff [ 2684.773630] RDX: 000000000000003a RSI: 0000000020000000 RDI: 00000000000000f0 [ 2684.774386] RBP: 00007f5603ab91d0 R08: 0000000000000000 R09: 0000000000000000 [ 2684.775155] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000001 [ 2684.775921] R13: 00007ffe3650190f R14: 00007f5603ab9300 R15: 0000000000022000 05:36:17 executing program 5: syz_emit_ethernet(0x2e, &(0x7f0000000100)=ANY=[@ANYBLOB="aaaaaaaaaaeaaaaaaaaaaabb0800460000200000000000029078ac1414aa7f0000018303bd0000009078ffffffff56d837aa7f1b2f23cc992d000000f19d5fee02bd3e1e35d94b24bec51e9fe876fd4f691614fcdbf81758ddaee7c00900000000000000503ca09a686f31e8a9e4f842101a753613f2d3596811171d73fd047b8af2b482ce51bfd57971015a85fa41e313e3e55ecc865fabea30f76ea113e139fcb82e1ddf9541a8fbf2f43447e72884a610"], 0x0) 05:36:17 executing program 4: perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_emit_ethernet(0xd, &(0x7f0000000000)={@local, @remote, @void, {@ipv4={0x800, @tcp={{0x6, 0x4, 0x0, 0x0, 0x2c, 0x0, 0x0, 0x0, 0x32, 0x0, @dev, @private=0xa010100, {[@lsrr={0x83, 0x5}]}}, {{0x0, 0x0, 0x41424344, 0x41424344, 0x0, 0x7, 0x5}}}}}}, 0x0) openat$cgroup_devices(0xffffffffffffffff, 0x0, 0x2, 0x0) close(0xffffffffffffffff) pread64(0xffffffffffffffff, 0x0, 0x0, 0x2000) 05:36:17 executing program 7: syz_emit_ethernet(0x32, &(0x7f0000000040)={@local, @remote, @void, {@ipv4={0x800, @igmp={{0x7, 0x4, 0x0, 0x0, 0x24, 0x0, 0x0, 0x0, 0x2, 0x0, @local, @private=0xa010102, {[@cipso={0x86, 0x8, 0x0, [{0x0, 0x2}]}]}}, {0x0, 0x0, 0x0, @broadcast}}}}}, 0x0) syz_extract_tcp_res(&(0x7f0000000000)={0x41424344}, 0x0, 0x4) write$tun(0xffffffffffffffff, &(0x7f0000000080)={@val={0x0, 0x9000}, @val={0x0, 0x1, 0x3, 0x8, 0x9, 0x7fff}, @mpls={[{0xf6a, 0x0, 0x1}, {0x0, 0x0, 0x1}, {0xffff, 0x0, 0x1}, {0xc258, 0x0, 0x1}, {0x7, 0x0, 0x1}, {0x40}], @ipv4=@tcp={{0x12, 0x4, 0x2, 0x0, 0x141, 0x67, 0x0, 0x9, 0x6, 0x0, @loopback, @loopback, {[@noop, @ssrr={0x89, 0xf, 0x69, [@local, @initdev={0xac, 0x1e, 0x0, 0x0}, @rand_addr=0x64010100]}, @timestamp={0x44, 0xc, 0xb5, 0x0, 0x7, [0x5, 0xb44]}, @cipso={0x86, 0x16, 0x0, [{0x1, 0x10, "d38ee3a918892fa86e7a906f5e60"}]}]}}, {{0x4e20, 0x4e24, 0x41424344, r0, 0x1, 0x0, 0x6, 0x10, 0x101, 0x0, 0x800, {[@nop, @sack_perm={0x4, 0x2}]}}, {"76e45071ee51cda1d2c65481894cf5c7eceb7d71c71a77f5ae4a3b6c244c5fe72856ae4c2a3d20d79647144f0ddad2de6b18f792931a3d1703b2676a784f561cccaa8c67a15c84004e37917d5fe68f45841c32c52cd4b94909016e97e2369d27f84b1da99ec4b2efb836653b1acd564ae3a2d46b1746207afef409d842a001dc06950e6806da83d2acd19501c36a6d76b4c52e189d4801e79b8c9fab594f9a2ac61b86f71d754f5a439c2e25f15456defd768fc7ff958ed88ace6cb27ec7b460d5ab04e440284af32193543113ed0ba61f520db1cac49a8b8da550195ec83fe4a7"}}}}}, 0x167) 05:36:17 executing program 3: r0 = perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x0, 0x3}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) pread64(0xffffffffffffffff, 0x0, 0x7ffffffff000, 0xf0ff1f00000000) bind$inet6(0xffffffffffffffff, &(0x7f0000000040)={0xa, 0x4e23, 0x0, @remote, 0xffff}, 0x1c) r1 = socket$netlink(0x10, 0x3, 0x0) sendmsg$nl_generic(0xffffffffffffffff, 0x0, 0x41) setsockopt$netlink_NETLINK_BROADCAST_ERROR(r1, 0x10e, 0x4, &(0x7f00000000c0)=0x1000, 0x4) sendmsg$nl_generic(r1, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000100)=ANY=[@ANYBLOB="28000000100001000000000000000000000000000500000024386a562b500000000c00008008000d00ac141400"], 0x28}}, 0x0) chdir(&(0x7f00000001c0)='./file0\x00') r2 = syz_open_dev$mouse(&(0x7f0000000400), 0x7fffffff, 0x2d0401) sendmsg$NL80211_CMD_ADD_NAN_FUNCTION(r2, &(0x7f0000000500)={&(0x7f0000000440)={0x10, 0x0, 0x0, 0x10}, 0xc, &(0x7f00000004c0)={&(0x7f00000002c0)={0x20, 0x0, 0x100, 0x70bd2b, 0x25dfdbfd, {{}, {@void, @val={0xc, 0x99, {0x3, 0x1b}}}}}, 0x20}, 0x1, 0x0, 0x0, 0x95}, 0x40000) ioctl$FICLONE(r2, 0x40049409, r0) r3 = open$dir(&(0x7f0000000000)='.\x00', 0x0, 0x0) perf_event_open(&(0x7f0000001d80)={0x6, 0x80, 0x0, 0x0, 0x0, 0x0, 0x4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffd, 0x0, @perf_bp={0x0, 0xffffffff81000000}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffd}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r4 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000040)='/proc/crypto\x00', 0x0, 0x0) r5 = openat2(r3, &(0x7f0000000180)='./file0\x00', &(0x7f0000000200)={0x800, 0x1b9}, 0x18) setsockopt$SO_TIMESTAMPING(r5, 0x1, 0x25, &(0x7f0000000240)=0x7100, 0x4) pread64(r4, &(0x7f00000010c0)=""/4088, 0xff8, 0x0) writev(0xffffffffffffffff, &(0x7f00000003c0)=[{&(0x7f0000000000)="0000abe02400030021206cda3b5e5672b89aeddb2a535fbd0706006dff0043a9d7cceb232fb81bf74ebdd05b7677", 0x2e}, {&(0x7f0000000680)="7fd41c04550300020000000000000000010046e92ed2616f72657d044129471d4fd47924fd0900e09e0068deec", 0x2d}], 0x2) [ 2684.837390] netlink: 8 bytes leftover after parsing attributes in process `syz-executor.3'. 05:36:17 executing program 5: setsockopt$packet_fanout(0xffffffffffffffff, 0x107, 0x12, &(0x7f0000000000)={0x0, 0x3}, 0x4) syz_emit_ethernet(0x32, &(0x7f0000000100)=ANY=[@ANYBLOB="aaaaaaaa9eaaaaaaaaaaaabb0800470000240000000000029078ac1414aa0a010102860800000000000200009078ffffffff0f8c5df2249216fe53733a0bb461ca681c570b6f2621d635528c9e4fb5b9c8f00000769f44478915dc3cbb41361fbad8694916f74d5ebc5e4aefbf0000fc8b8b4b717590f6861562bab368860a209a599b93aa513f0f5b89f34494c9d40eef8d8b362c92b901a35c334a674228b90416b7640255a71cdaf4bb82e30f61ccc31d680b9e"], 0x0) [ 2700.808452] FAULT_INJECTION: forcing a failure. [ 2700.808452] name failslab, interval 1, probability 0, space 0, times 0 [ 2700.809854] CPU: 1 PID: 12058 Comm: syz-executor.1 Not tainted 5.10.204 #1 [ 2700.810660] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 2700.811589] Call Trace: [ 2700.811908] dump_stack+0x107/0x167 [ 2700.812340] should_fail.cold+0x5/0xa [ 2700.812790] ? ip_setup_cork+0x6ea/0x930 [ 2700.813273] should_failslab+0x5/0x20 [ 2700.813725] kmem_cache_alloc_trace+0x55/0x320 [ 2700.814260] ? icmp_timestamp+0x240/0x240 [ 2700.814760] ip_setup_cork+0x6ea/0x930 [ 2700.815229] ? icmp_push_reply+0x490/0x490 [ 2700.815748] ip_append_data+0x167/0x1a0 [ 2700.816224] icmp_push_reply+0x13b/0x490 [ 2700.816715] __icmp_send+0xbc9/0x14d0 [ 2700.817178] ? icmp_route_lookup.constprop.0+0x11a0/0x11a0 [ 2700.817842] ? __lockdep_reset_lock+0x180/0x180 [ 2700.818401] ? find_held_lock+0x2c/0x110 [ 2700.818940] ? ip_route_input_noref+0x160/0x2f0 [ 2700.819544] ip_options_compile+0xad/0xf0 [ 2700.820060] ? __ip_options_compile+0x15d0/0x15d0 [ 2700.820679] ? ip_list_rcv_finish.constprop.0+0x590/0x590 [ 2700.821383] ip_rcv_finish_core.constprop.0+0x4fb/0x1c90 [ 2700.822028] ip_rcv_finish+0x4f/0x1e0 [ 2700.822480] ip_rcv+0xae/0xd0 [ 2700.822742] FAULT_INJECTION: forcing a failure. [ 2700.822742] name failslab, interval 1, probability 0, space 0, times 0 [ 2700.822841] ? ip_local_deliver+0x200/0x200 [ 2700.822866] __netif_receive_skb_one_core+0x19b/0x1f0 [ 2700.826733] ? __netif_receive_skb_core+0x3780/0x3780 [ 2700.827379] ? __lock_acquire+0xbb1/0x5b00 [ 2700.827923] __netif_receive_skb+0x27/0x1d0 [ 2700.828467] netif_receive_skb+0x12d/0x710 [ 2700.829000] ? __netif_receive_skb+0x1d0/0x1d0 [ 2700.829574] ? SOFTIRQ_verbose+0x10/0x10 [ 2700.830094] ? __lockdep_reset_lock+0x180/0x180 [ 2700.830681] tun_rx_batched.isra.0+0x462/0x710 [ 2700.831254] ? lock_acquire+0x197/0x470 [ 2700.831739] ? tun_get_user+0xee3/0x32f0 [ 2700.832235] ? tun_sock_write_space+0x1d0/0x1d0 [ 2700.832804] ? lock_release+0x680/0x680 [ 2700.833289] ? tun_get_user+0x16e6/0x32f0 [ 2700.833807] ? lock_downgrade+0x6d0/0x6d0 [ 2700.834290] ? eth_type_trans+0x2ad/0x5b0 [ 2700.834781] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 2700.835389] tun_get_user+0x191d/0x32f0 [ 2700.835844] ? usage_accumulate+0x110/0x110 [ 2700.836352] ? tun_build_skb+0xfe0/0xfe0 [ 2700.836869] ? tun_device_event+0x990/0x1160 [ 2700.837424] ? perf_trace_lock+0xac/0x490 [ 2700.837936] ? SOFTIRQ_verbose+0x10/0x10 [ 2700.838459] tun_chr_write_iter+0xe1/0x1e0 [ 2700.838985] new_sync_write+0x42c/0x660 [ 2700.839482] ? new_sync_read+0x6f0/0x6f0 [ 2700.839985] ? _cond_resched+0x12/0x80 [ 2700.840452] ? avc_policy_seqno+0x9/0x70 [ 2700.840946] ? selinux_file_permission+0x92/0x520 [ 2700.841553] ? __fget_files+0x296/0x4c0 [ 2700.842042] vfs_write+0x747/0xa70 [ 2700.842490] ksys_write+0x12d/0x260 [ 2700.842929] ? __ia32_sys_read+0xb0/0xb0 [ 2700.843442] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 2700.844087] ? syscall_enter_from_user_mode+0x1d/0x50 [ 2700.844726] do_syscall_64+0x33/0x40 [ 2700.845150] entry_SYSCALL_64_after_hwframe+0x62/0xc7 [ 2700.845738] RIP: 0033:0x7f56064f65ff [ 2700.846172] Code: 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 99 fd ff ff 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 b8 01 00 00 00 0f 05 <48> 3d 00 f0 ff ff 77 31 44 89 c7 48 89 44 24 08 e8 cc fd ff ff 48 [ 2700.848224] RSP: 002b:00007f5603ab9150 EFLAGS: 00000293 ORIG_RAX: 0000000000000001 [ 2700.849098] RAX: ffffffffffffffda RBX: 00007f5606656f60 RCX: 00007f56064f65ff [ 2700.849968] RDX: 000000000000003a RSI: 0000000020000000 RDI: 00000000000000f0 [ 2700.850867] RBP: 00007f5603ab91d0 R08: 0000000000000000 R09: 0000000000000000 [ 2700.851765] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000001 [ 2700.852588] R13: 00007ffe3650190f R14: 00007f5603ab9300 R15: 0000000000022000 [ 2700.853441] CPU: 0 PID: 12071 Comm: syz-executor.0 Not tainted 5.10.204 #1 [ 2700.855255] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 2700.857419] Call Trace: [ 2700.858051] dump_stack+0x107/0x167 [ 2700.858923] should_fail.cold+0x5/0xa [ 2700.859843] ? dst_alloc+0x9e/0x610 [ 2700.860701] should_failslab+0x5/0x20 [ 2700.861584] kmem_cache_alloc+0x5b/0x310 [ 2700.862562] dst_alloc+0x9e/0x610 [ 2700.863392] rt_dst_alloc+0x73/0x440 [ 2700.864295] ip_route_output_key_hash_rcu+0x93d/0x2a90 [ 2700.865549] ip_route_output_key_hash+0x18d/0x340 [ 2700.866689] ? ip_route_output_key_hash_rcu+0x2a90/0x2a90 [ 2700.868032] icmp_route_lookup.constprop.0+0x349/0x11a0 [ 2700.869297] ? __lockdep_reset_lock+0x180/0x180 [ 2700.870399] ? icmp_timestamp+0x240/0x240 [ 2700.871371] ? memset+0x20/0x50 [ 2700.872179] ? __ip_options_echo+0x6f8/0x11a0 [ 2700.873242] ? lock_downgrade+0x6d0/0x6d0 [ 2700.874223] ? ip_options_build+0x780/0x780 [ 2700.875232] ? do_raw_spin_lock+0x260/0x260 [ 2700.876280] __icmp_send+0xa34/0x14d0 [ 2700.877216] ? icmp_route_lookup.constprop.0+0x11a0/0x11a0 [ 2700.878511] ? __lockdep_reset_lock+0x180/0x180 [ 2700.879654] ? find_held_lock+0x2c/0x110 [ 2700.880694] ? ip_route_input_noref+0x160/0x2f0 [ 2700.881818] ip_options_compile+0xad/0xf0 [ 2700.882799] ? __ip_options_compile+0x15d0/0x15d0 [ 2700.883948] ? ip_list_rcv_finish.constprop.0+0x590/0x590 [ 2700.885262] ip_rcv_finish_core.constprop.0+0x4fb/0x1c90 [ 2700.886562] ip_rcv_finish+0x4f/0x1e0 [ 2700.887480] ip_rcv+0xae/0xd0 [ 2700.888223] ? ip_local_deliver+0x200/0x200 [ 2700.889243] __netif_receive_skb_one_core+0x19b/0x1f0 [ 2700.890448] ? __netif_receive_skb_core+0x3780/0x3780 [ 2700.891683] ? __lock_acquire+0xbb1/0x5b00 [ 2700.892779] __netif_receive_skb+0x27/0x1d0 [ 2700.893845] netif_receive_skb+0x12d/0x710 [ 2700.894903] ? __netif_receive_skb+0x1d0/0x1d0 [ 2700.896035] ? SOFTIRQ_verbose+0x10/0x10 [ 2700.897058] ? __lockdep_reset_lock+0x180/0x180 [ 2700.898222] tun_rx_batched.isra.0+0x462/0x710 [ 2700.899339] ? lock_acquire+0x197/0x470 [ 2700.900354] ? tun_get_user+0xee3/0x32f0 [ 2700.901353] ? tun_sock_write_space+0x1d0/0x1d0 [ 2700.902505] ? lock_release+0x680/0x680 [ 2700.903490] ? tun_get_user+0x16e6/0x32f0 [ 2700.904507] ? lock_downgrade+0x6d0/0x6d0 [ 2700.905522] ? eth_type_trans+0x2ad/0x5b0 [ 2700.906563] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 2700.907882] tun_get_user+0x191d/0x32f0 [ 2700.908860] ? usage_accumulate+0x110/0x110 [ 2700.909987] ? tun_build_skb+0xfe0/0xfe0 [ 2700.911008] ? tun_device_event+0x990/0x1160 [ 2700.912124] ? SOFTIRQ_verbose+0x10/0x10 [ 2700.913167] tun_chr_write_iter+0xe1/0x1e0 [ 2700.914218] new_sync_write+0x42c/0x660 [ 2700.915207] ? new_sync_read+0x6f0/0x6f0 [ 2700.916205] ? _cond_resched+0x12/0x80 [ 2700.917166] ? avc_policy_seqno+0x9/0x70 [ 2700.918147] ? selinux_file_permission+0x92/0x520 [ 2700.919329] ? __fget_files+0x296/0x4c0 [ 2700.920355] vfs_write+0x747/0xa70 [ 2700.921200] ksys_write+0x12d/0x260 [ 2700.922041] ? __ia32_sys_read+0xb0/0xb0 [ 2700.922991] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 2700.924201] ? syscall_enter_from_user_mode+0x1d/0x50 [ 2700.925427] do_syscall_64+0x33/0x40 [ 2700.926336] entry_SYSCALL_64_after_hwframe+0x62/0xc7 [ 2700.927582] RIP: 0033:0x7fc05d62c5ff [ 2700.928493] Code: 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 99 fd ff ff 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 b8 01 00 00 00 0f 05 <48> 3d 00 f0 ff ff 77 31 44 89 c7 48 89 44 24 08 e8 cc fd ff ff 48 [ 2700.932887] RSP: 002b:00007fc05abef150 EFLAGS: 00000293 ORIG_RAX: 0000000000000001 [ 2700.934684] RAX: ffffffffffffffda RBX: 00007fc05d78cf60 RCX: 00007fc05d62c5ff [ 2700.936416] RDX: 000000000000003a RSI: 0000000020000000 RDI: 00000000000000f0 [ 2700.938118] RBP: 00007fc05abef1d0 R08: 0000000000000000 R09: 0000000000000000 [ 2700.939842] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000001 [ 2700.941552] R13: 00007ffc5aac442f R14: 00007fc05abef300 R15: 0000000000022000 05:36:33 executing program 6: r0 = socket$inet6_tcp(0xa, 0x1, 0x0) setsockopt$inet6_tcp_int(r0, 0x6, 0x2, &(0x7f0000000080)=0x90, 0x4) bind$inet6(r0, &(0x7f00000000c0)={0xa, 0x4e20, 0x0, @loopback}, 0x1c) connect$inet6(r0, &(0x7f0000000000)={0xa, 0x4e20, 0x0, @empty}, 0x1c) setsockopt$sock_int(r0, 0x1, 0x8, &(0x7f0000002ec0), 0x4) sendmsg$inet6(r0, &(0x7f00000006c0)={0x0, 0x0, &(0x7f0000000540)=[{&(0x7f00000001c0)="cf", 0xfffffdef}], 0x1}, 0x10044001) setsockopt$SO_TIMESTAMP(r0, 0x1, 0x40, &(0x7f0000000280)=0x380, 0x4) recvfrom$inet6(r0, &(0x7f0000001e00)=""/4096, 0x1000, 0xcd08, 0x0, 0x0) (fail_nth: 5) 05:36:33 executing program 0: perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_emit_ethernet(0x3a, &(0x7f0000000000)={@local, @remote, @void, {@ipv4={0x800, @tcp={{0x6, 0x4, 0x0, 0x0, 0x2c, 0x0, 0x0, 0x0, 0x32, 0x0, @dev, @private=0xa010100, {[@lsrr={0x83, 0x5}]}}, {{0x0, 0x0, 0x41424344, 0x41424344, 0x0, 0x7, 0x5}}}}}}, 0x0) (fail_nth: 7) ioctl$BTRFS_IOC_BALANCE(0xffffffffffffffff, 0x5000940c, 0x0) close(0xffffffffffffffff) 05:36:33 executing program 1: perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_emit_ethernet(0x3a, &(0x7f0000000000)={@local, @remote, @void, {@ipv4={0x800, @tcp={{0x6, 0x4, 0x0, 0x0, 0x2c, 0x0, 0x0, 0x0, 0x32, 0x0, @dev, @private=0xa010100, {[@lsrr={0x83, 0x5}]}}, {{0x0, 0x0, 0x41424344, 0x41424344, 0x0, 0x7, 0x5}}}}}}, 0x0) (fail_nth: 9) 05:36:33 executing program 2: preadv2(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x2) openat(0xffffffffffffff9c, 0x0, 0x0, 0x0) r0 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x105142, 0x62) r1 = openat(0xffffffffffffff9c, 0x0, 0x0, 0x0) fallocate(r1, 0x0, 0x0, 0x8800000) lseek(0xffffffffffffffff, 0x0, 0x0) openat(0xffffffffffffffff, 0x0, 0x0, 0x20) ioctl$FS_IOC_RESVSP(0xffffffffffffffff, 0x40305828, 0x0) faccessat2(0xffffffffffffffff, 0x0, 0x0, 0x0) openat(0xffffffffffffffff, 0x0, 0x1a340, 0x100) ioctl$LOOP_CTL_REMOVE(0xffffffffffffffff, 0x4c81, 0x0) r2 = fsmount(0xffffffffffffffff, 0x0, 0x0) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r3 = openat(r2, &(0x7f0000000000)='/proc/self/exe\x00', 0x4840, 0x2d) sendfile(r0, r3, 0x0, 0x100000009) 05:36:33 executing program 4: perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_emit_ethernet(0x7a, &(0x7f0000000000)={@local, @remote, @void, {@ipv4={0x800, @tcp={{0x6, 0x4, 0x0, 0x0, 0x2c, 0x0, 0x0, 0x0, 0x32, 0x0, @dev, @private=0xa010100, {[@lsrr={0x83, 0x5}]}}, {{0x0, 0x0, 0x41424344, 0x41424344, 0x0, 0x7, 0x5}}}}}}, 0x0) openat$cgroup_devices(0xffffffffffffffff, 0x0, 0x2, 0x0) close(0xffffffffffffffff) pread64(0xffffffffffffffff, 0x0, 0x0, 0x2000) 05:36:33 executing program 7: ioctl$IOC_PR_PREEMPT_ABORT(0xffffffffffffffff, 0x401870cc, &(0x7f0000000000)={0x4, 0x200, 0x0, 0xffffffff}) syz_emit_ethernet(0x32, &(0x7f0000000040)={@local, @remote, @void, {@ipv4={0x800, @igmp={{0x7, 0x4, 0x0, 0x0, 0x24, 0x0, 0x0, 0x0, 0x2, 0x0, @local, @private=0xa010102, {[@cipso={0x86, 0x8, 0x0, [{0x0, 0x2}]}]}}, {0x0, 0x0, 0x0, @broadcast}}}}}, 0x0) 05:36:33 executing program 5: syz_emit_ethernet(0x32, &(0x7f0000000040)={@local, @remote, @void, {@ipv4={0x800, @igmp={{0x7, 0x4, 0x0, 0x0, 0x24, 0x0, 0x0, 0x0, 0x2, 0x0, @local, @private=0xa010102, {[@cipso={0x86, 0x8, 0x0, [{0x0, 0x2}]}]}}, {0x0, 0x0, 0x0, @broadcast}}}}}, 0x0) write$tun(0xffffffffffffffff, &(0x7f0000000240)=ANY=[@ANYBLOB="000000010380ff070600ffff07000000000000000000f4f880842a42cb1ac3ec1253072276fac294567ce29fdcf58fee0c8cf91f30899edb0d690987f11226f70c1aff488006a6af175f592db7ad17e4e9c24669c67484b93b8d0a8bb0f9fbe66011f443dfa5c9101525c80b9abe279404431b0a4662826cd9fe081fc9c71fefe6e4b2bb3c370f6f2def09edccfa5d2a42aaf4b7a4fbc8e726ce6ee570aaa5a23b684aac72ddbafd7278b43b9d09e49ed8da0b703a262031d1b7df2b90d0483dc4a37c50bb6f0dd29e4ebfa0abfaa847af33c2f0ae5c1960904f5f1af7f36372adbf9cb6cbe2dc15ac6f9edc5a01738b84b476cfa13f4304c897c5e45d7182082216d26b34a59f4728468ab8b537ff7b5b870fb277df78a925b62c6b294ab6c112d911365219046cde77065516574e92ca8ee6ff583591ac609a202830a48b5fd195cee30ed7025fbb1d2169f6e1fddbf6b1eb6f15397686e267a67c08f5766fb49445997f2e1ec7f84e599a1da9a4a90ee5682194ef2c71f37a21a392d0c30e52bc3b509d4c6652dc"], 0x111) 05:36:33 executing program 3: r0 = perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x0, 0x3}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) pread64(0xffffffffffffffff, 0x0, 0x7ffffffff000, 0xf0ff1f00000000) bind$inet6(0xffffffffffffffff, &(0x7f0000000040)={0xa, 0x4e23, 0x0, @remote, 0xffff}, 0x1c) r1 = socket$netlink(0x10, 0x3, 0x0) sendmsg$nl_generic(0xffffffffffffffff, 0x0, 0x41) setsockopt$netlink_NETLINK_BROADCAST_ERROR(r1, 0x10e, 0x4, &(0x7f00000000c0)=0x1000, 0x4) sendmsg$nl_generic(r1, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000100)=ANY=[@ANYBLOB="28000000100001000000000000000000000000000500000024386a562b500000000c00008008000d00ac141400"], 0x28}}, 0x0) chdir(&(0x7f00000001c0)='./file0\x00') r2 = syz_open_dev$mouse(&(0x7f0000000400), 0x7fffffff, 0x2d0401) sendmsg$NL80211_CMD_ADD_NAN_FUNCTION(r2, &(0x7f0000000500)={&(0x7f0000000440)={0x10, 0x0, 0x0, 0x10}, 0xc, &(0x7f00000004c0)={&(0x7f00000002c0)={0x20, 0x0, 0x100, 0x70bd2b, 0x25dfdbfd, {{}, {@void, @val={0xc, 0x99, {0x3, 0x1b}}}}}, 0x20}, 0x1, 0x0, 0x0, 0x95}, 0x40000) ioctl$FICLONE(r2, 0x40049409, r0) r3 = open$dir(&(0x7f0000000000)='.\x00', 0x0, 0x0) perf_event_open(&(0x7f0000001d80)={0x6, 0x80, 0x0, 0x0, 0x0, 0x0, 0x4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffd, 0x0, @perf_bp={0x0, 0xffffffff81000000}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffd}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r4 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000040)='/proc/crypto\x00', 0x0, 0x0) r5 = openat2(r3, &(0x7f0000000180)='./file0\x00', &(0x7f0000000200)={0x800, 0x1b9}, 0x18) setsockopt$SO_TIMESTAMPING(r5, 0x1, 0x25, &(0x7f0000000240)=0x7100, 0x4) pread64(r4, &(0x7f00000010c0)=""/4088, 0xff8, 0x0) writev(0xffffffffffffffff, &(0x7f00000003c0)=[{&(0x7f0000000000)="0000abe02400030021206cda3b5e5672b89aeddb2a535fbd0706006dff0043a9d7cceb232fb81bf74ebdd05b7677", 0x2e}, {&(0x7f0000000680)="7fd41c04550300020000000000000000010046e92ed2616f72657d044129471d4fd47924fd0900e09e0068deec", 0x2d}], 0x2) 05:36:33 executing program 5: pipe(&(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$CDROM_DISC_STATUS(r1, 0x5327) syz_emit_ethernet(0x32, &(0x7f0000000040)={@local, @remote, @void, {@ipv4={0x800, @igmp={{0x7, 0x4, 0x0, 0x0, 0x24, 0x0, 0x0, 0x0, 0x2, 0x0, @local, @private=0xa010102, {[@cipso={0x86, 0x8, 0x0, [{0x0, 0x2}]}]}}, {0x0, 0x0, 0x0, @broadcast}}}}}, 0x0) socketpair$nbd(0x1, 0x1, 0x0, &(0x7f00000002c0)={0xffffffffffffffff, 0xffffffffffffffff}) r3 = socket$inet6_tcp(0xa, 0x1, 0x0) splice(r3, &(0x7f00000005c0)=0x2, r2, &(0x7f0000000600)=0x8, 0x2000000000000000, 0x7) ioctl$AUTOFS_DEV_IOCTL_REQUESTER(r1, 0xc018937b, &(0x7f0000000440)={{0x1, 0x1, 0x18, r1, {0x0, 0xee00}}, './file0\x00'}) mount$9p_fd(0x0, &(0x7f0000000240)='./file0\x00', &(0x7f0000000280), 0x40000, &(0x7f0000000480)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r2}, 0x2c, {[{@dfltuid={'dfltuid', 0x3d, 0xee01}}, {@fscache}, {@afid={'afid', 0x3d, 0x5}}, {@afid={'afid', 0x3d, 0x7}}, {@afid={'afid', 0x3d, 0x8}}, {@mmap}, {@access_user}, {@access_client}, {@debug={'debug', 0x3d, 0xec8}}], [{@func={'func', 0x3d, 'FILE_MMAP'}}, {@euid_eq={'euid', 0x3d, r4}}, {@smackfshat}]}}) write$tun(0xffffffffffffffff, &(0x7f0000000640)=ANY=[@ANYBLOB="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"], 0x102) syz_emit_ethernet(0x16b, &(0x7f0000000080)={@empty, @link_local={0x1, 0x80, 0xc2, 0x0, 0x0, 0x3}, @val={@void, {0x8100, 0x4, 0x0, 0x1}}, {@ipv4={0x800, @igmp={{0x18, 0x4, 0x3, 0x1, 0x159, 0x68, 0x0, 0x0, 0x2, 0x0, @multicast2, @loopback, {[@cipso={0x86, 0x4b, 0x3, [{0x2, 0x8, "27e7b65fa2da"}, {0x0, 0x11, "1ff09ce8eafcdafd9faf3311b1a53b"}, {0x7, 0x12, "00cdb65389285d7fc534d39292de938d"}, {0x1, 0xd, "41a3240cf89efa2b8315dd"}, {0x0, 0xd, "5a9e928fc4cd2de40762f6"}]}]}}, {0x22, 0x20, 0x0, @multicast1, "d383775715ef1b4ee1078cfb5e392a0121a3f711d2218d6cb85b452cff4861dd4a377cf457d2f1f7f37e8c70dc4b49e1b30aa160bd93a3663e64624ac171e4bc5f00071ac3c35a62ea5f2545d88f5e8d4ae9162beba6ef82a727d712719e04636d426b117e48ab39eac2a063270f5d666c6d7149e6cefb961c4d7b592765b2728d971bfe78ea4100968daa701d13604cc2dfe5f4979618915e8dff302c3793f391bf374bc9a481d7fe8e86198e98925c01de426ba7b4566e88a897a5d885f4e078d679bba34bd7c66dd5bff0d9662ad43d9259cfdae4cc8d97d3225132898e36ea2e54e72030b25a03b55c58b9f21ee688"}}}}}, &(0x7f0000000000)={0x0, 0x3, [0xae, 0xef7, 0x2e8, 0xdcd]}) 05:36:33 executing program 7: syz_emit_ethernet(0x13db, &(0x7f0000002ac0)=ANY=[@ANYBLOB="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"], 0x0) r0 = fork() move_pages(r0, 0x1, &(0x7f0000000100)=[&(0x7f0000ffa000/0x1000)=nil], 0x0, 0x0, 0x0) r1 = perf_event_open(&(0x7f0000001d80)={0x2, 0x80, 0x5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x40641, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x40, 0x0, @perf_config_ext, 0x2, 0x1, 0x0, 0x2, 0x0, 0x9}, 0x0, 0x0, 0xffffffffffffffff, 0x8) r2 = perf_event_open(&(0x7f0000001d80)={0x3, 0x80, 0x0, 0x0, 0x0, 0x0, 0x4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, r1, 0x0) fcntl$lock(r1, 0x26, &(0x7f0000000000)={0x2, 0x2, 0x3, 0x800, r0}) io_setup(0x86f, &(0x7f0000000040)=0x0) ioctl$AUTOFS_DEV_IOCTL_PROTOSUBVER(0xffffffffffffffff, 0xc0189373, &(0x7f0000000080)={{0x1, 0x1, 0x18, r1, {0x1000}}, './file0\x00'}) r5 = accept$packet(0xffffffffffffffff, &(0x7f00000002c0), &(0x7f0000000300)=0x14) r6 = openat$procfs(0xffffffffffffff9c, &(0x7f00000014c0)='/proc/bus/input/devices\x00', 0x0, 0x0) pread64(r6, &(0x7f0000000040)=""/4126, 0x101e, 0x2000) r7 = eventfd(0x2005) r8 = openat$procfs(0xffffffffffffff9c, &(0x7f00000014c0)='/proc/bus/input/devices\x00', 0x0, 0x0) pread64(r8, &(0x7f0000000040)=""/4126, 0x101e, 0x2000) r9 = openat$procfs(0xffffffffffffff9c, &(0x7f00000014c0)='/proc/bus/input/devices\x00', 0x0, 0x0) pread64(r9, &(0x7f0000000040)=""/4126, 0x101e, 0x2000) io_submit(r3, 0x6, &(0x7f0000000740)=[&(0x7f00000000c0)={0x0, 0x0, 0x0, 0x2, 0x2000, r2, &(0x7f0000000140)="65e1dd3842ba547c24b05604934c46029bd4de8bcd35ddbc4897b1dfca69bf0b93e4f6d25ff0857bb98cd6023a4aff6950407e455e0ab2474bb61f0af23476d0ec492a2783eba86ccc25ed0b25d119ebc54304e6025b9017c0376d3546375ae83b4829c4336759f8f24b420489839243aaf03a76ad2901c121ca638798aee317381dca8fc21bdf4b94b34571ca161a9b45bf25b4dd5eaa521c4b607acb872d02d8458a859819cfb2c3872978959b216a3ddca0e3e7b5b189370f60bf39b64c72a16f726ba8b041a8c1395cd4ea0e8c0a22b4a2af8320acec856035717d370864491e1de3393bbed0", 0xe8, 0xffffffffffffff40, 0x0, 0x3, r4}, &(0x7f0000000280)={0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, &(0x7f0000000240)="862449361d208a4340eefcb923791fe1b6545c32e1115db0581283c2d819ea6a17ea84add747e7c1ee6a6a7b187dd977626e7562a1fd370d", 0x38, 0xf}, &(0x7f00000003c0)={0x0, 0x0, 0x0, 0x6, 0x1, r5, &(0x7f0000000340)="7fdc91c89f41d2207f8f9cbe3d4ceb92ed87df39ca4fd9de35a2749008a1176f9cc48088ac681d65bef87bb1b6d90bf5bbdbf097af667f58fa960559ebb5f3193d8f6f02", 0x44, 0x8995, 0x0, 0x0, r6}, &(0x7f0000000500)={0x0, 0x0, 0x0, 0x6, 0x0, r1, &(0x7f0000000400)="6754952dbb5d34838d361b1576f4911235907ce4832b4e1df7a3eb9fd8591505e9b75ac7dcb15091bb300164b0d9429ed473a34014589a91f13bf23a686320689364b57467ea6a3195d904d6e5f33fc096f380ec997afbfb964217a4162436cdc5d8d897cad936b9aa52886ac482541c5a7bb333eae072c864c5d1699ce3fe260b90c1d41fea10e3e6c7d4f2058f35e287f63e554ba8802138c91146ae2350fb16a9a1f1f21d42dd6039fdda2f9d788139380017c39a6b352880e0633eaa7137c00be86053cce95777", 0xc9, 0x9, 0x0, 0x0, r7}, &(0x7f00000005c0)={0x0, 0x0, 0x0, 0x2, 0x5, r2, &(0x7f0000000540)="3c3efbc27d02326ca03bf78fe4b2220f66b714e5fd930938575c2758b349104c33d21f508dc50e48f5f3521c717c75a8045a14067b52ad9a3e6c3b5a06e0b21b308cff96d5435bd842c24997195ff1371c3fcf337c9d9c2634680997cd9ef376589bf60fdd68ca849eb8fbf34ea4e36139908fa70b1454", 0x77, 0x10001, 0x0, 0x3, r8}, &(0x7f0000000700)={0x0, 0x0, 0x0, 0x8, 0x9, r2, &(0x7f0000000600)="413aadba86e156864c0d0796c5b9b7a6dd5674098d28beeb78ae3f8d935a11477cdc4e89ba13acd6cc64b0d13feb261d3c4a98d64d7ab579ff8377ace342c511d26798675fe19a1805cba6b61f0f00cc398689182e71d6e8eeb7327b46e991225921075606e8ad1b9243b59f54de2c3ac481cb9b38e196144217b02668d7bfe7fe67a1b5f219ce261827d607d0d48cf3e2071cbd30e0a2823533c3abdd19444b6144ab773b1821a236d622fa84a0cd291021d3949a1c02cbd237a6128bca1131be10933c", 0xc4, 0x7, 0x0, 0x1, r9}]) 05:36:33 executing program 1: perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_emit_ethernet(0x3a, &(0x7f0000000000)={@local, @remote, @void, {@ipv4={0x800, @tcp={{0x6, 0x4, 0x0, 0x0, 0x2c, 0x0, 0x0, 0x0, 0x32, 0x0, @dev, @private=0xa010100, {[@lsrr={0x83, 0x5}]}}, {{0x0, 0x0, 0x41424344, 0x41424344, 0x0, 0x7, 0x5}}}}}}, 0x0) (fail_nth: 10) 05:36:33 executing program 5: syz_emit_ethernet(0x32, &(0x7f0000000040)=ANY=[@ANYBLOB="aaaaaac837bfe0a33935ded5c4e29aa7906892aaaaaaaaaaaaaaaabb0800470000240000000000029078ac1414aa0a010102"], 0x0) syz_extract_tcp_res$synack(&(0x7f0000000000), 0x1, 0x0) [ 2700.966038] netlink: 8 bytes leftover after parsing attributes in process `syz-executor.3'. [ 2700.974548] FAULT_INJECTION: forcing a failure. [ 2700.974548] name failslab, interval 1, probability 0, space 0, times 0 [ 2700.977387] CPU: 0 PID: 12083 Comm: syz-executor.1 Not tainted 5.10.204 #1 [ 2700.979086] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 2700.981052] Call Trace: [ 2700.981691] dump_stack+0x107/0x167 [ 2700.982567] should_fail.cold+0x5/0xa [ 2700.983495] ? create_object.isra.0+0x3a/0xa20 [ 2700.984567] should_failslab+0x5/0x20 [ 2700.985473] kmem_cache_alloc+0x5b/0x310 [ 2700.986449] create_object.isra.0+0x3a/0xa20 [ 2700.987529] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 2700.988748] kmem_cache_alloc_trace+0x151/0x320 [ 2700.989870] ip_setup_cork+0x6ea/0x930 [ 2700.990841] ? icmp_push_reply+0x490/0x490 [ 2700.991855] ip_append_data+0x167/0x1a0 [ 2700.992821] icmp_push_reply+0x13b/0x490 05:36:33 executing program 5: r0 = add_key$keyring(&(0x7f0000000000), &(0x7f0000000080)={'syz', 0x0}, 0x0, 0x0, 0xfffffffffffffff8) r1 = add_key$fscrypt_v1(&(0x7f00000000c0), &(0x7f0000000100)={'fscrypt:', @desc1}, &(0x7f0000000140)={0x0, "19c9a020430ce6e1dde38dcf66740b52facd1c03aeb18945c7913a348d0d5362e89b871b51d8857b6cd9f35e999c9ac0aa6df5a1897d0521f11990ec4b02c170", 0x40}, 0x48, 0xfffffffffffffffa) keyctl$KEYCTL_MOVE(0x1e, 0x0, r0, r1, 0x1) syz_emit_ethernet(0x32, &(0x7f0000000040)=ANY=[@ANYRESHEX], 0x0) [ 2700.993802] __icmp_send+0xbc9/0x14d0 [ 2700.994844] ? icmp_route_lookup.constprop.0+0x11a0/0x11a0 [ 2700.996206] ? __lockdep_reset_lock+0x180/0x180 [ 2700.997342] ? find_held_lock+0x2c/0x110 [ 2700.998388] ? ip_route_input_noref+0x160/0x2f0 [ 2700.999521] ip_options_compile+0xad/0xf0 [ 2701.000502] ? __ip_options_compile+0x15d0/0x15d0 [ 2701.001636] ? ip_list_rcv_finish.constprop.0+0x590/0x590 [ 2701.002954] ip_rcv_finish_core.constprop.0+0x4fb/0x1c90 [ 2701.004259] ip_rcv_finish+0x4f/0x1e0 [ 2701.005147] ip_rcv+0xae/0xd0 [ 2701.005878] ? ip_local_deliver+0x200/0x200 [ 2701.006893] __netif_receive_skb_one_core+0x19b/0x1f0 [ 2701.008118] ? __netif_receive_skb_core+0x3780/0x3780 [ 2701.009332] ? __lock_acquire+0xbb1/0x5b00 [ 2701.010357] __netif_receive_skb+0x27/0x1d0 [ 2701.011377] netif_receive_skb+0x12d/0x710 [ 2701.012379] ? __netif_receive_skb+0x1d0/0x1d0 [ 2701.013389] ? SOFTIRQ_verbose+0x10/0x10 [ 2701.014302] ? __lockdep_reset_lock+0x180/0x180 [ 2701.015350] tun_rx_batched.isra.0+0x462/0x710 [ 2701.016430] ? lock_acquire+0x197/0x470 [ 2701.017350] ? tun_get_user+0xee3/0x32f0 [ 2701.018306] ? tun_sock_write_space+0x1d0/0x1d0 [ 2701.019391] ? lock_release+0x680/0x680 [ 2701.020331] ? tun_get_user+0x16e6/0x32f0 [ 2701.021307] ? lock_downgrade+0x6d0/0x6d0 [ 2701.022266] ? eth_type_trans+0x2ad/0x5b0 [ 2701.023289] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 2701.024580] tun_get_user+0x191d/0x32f0 [ 2701.025540] ? usage_accumulate+0x110/0x110 [ 2701.026614] ? tun_build_skb+0xfe0/0xfe0 [ 2701.027619] ? tun_device_event+0x990/0x1160 [ 2701.028688] ? SOFTIRQ_verbose+0x10/0x10 [ 2701.029720] tun_chr_write_iter+0xe1/0x1e0 [ 2701.030765] new_sync_write+0x42c/0x660 [ 2701.031768] ? new_sync_read+0x6f0/0x6f0 [ 2701.032747] ? _cond_resched+0x12/0x80 [ 2701.033692] ? avc_policy_seqno+0x9/0x70 [ 2701.034672] ? selinux_file_permission+0x92/0x520 [ 2701.035854] ? __fget_files+0x296/0x4c0 [ 2701.036848] vfs_write+0x747/0xa70 [ 2701.037734] ksys_write+0x12d/0x260 [ 2701.038609] ? __ia32_sys_read+0xb0/0xb0 [ 2701.039632] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 2701.040887] ? syscall_enter_from_user_mode+0x1d/0x50 [ 2701.042127] do_syscall_64+0x33/0x40 [ 2701.043035] entry_SYSCALL_64_after_hwframe+0x62/0xc7 [ 2701.044266] RIP: 0033:0x7f56064f65ff [ 2701.045154] Code: 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 99 fd ff ff 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 b8 01 00 00 00 0f 05 <48> 3d 00 f0 ff ff 77 31 44 89 c7 48 89 44 24 08 e8 cc fd ff ff 48 [ 2701.049457] RSP: 002b:00007f5603ab9150 EFLAGS: 00000293 ORIG_RAX: 0000000000000001 [ 2701.051238] RAX: ffffffffffffffda RBX: 00007f5606656f60 RCX: 00007f56064f65ff [ 2701.052879] RDX: 000000000000003a RSI: 0000000020000000 RDI: 00000000000000f0 [ 2701.054478] RBP: 00007f5603ab91d0 R08: 0000000000000000 R09: 0000000000000000 [ 2701.056084] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000002 [ 2701.057681] R13: 00007ffe3650190f R14: 00007f5603ab9300 R15: 0000000000022000 [ 2701.082366] FAULT_INJECTION: forcing a failure. [ 2701.082366] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 2701.083659] CPU: 1 PID: 12093 Comm: syz-executor.6 Not tainted 5.10.204 #1 [ 2701.084399] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 2701.085286] Call Trace: [ 2701.085582] dump_stack+0x107/0x167 [ 2701.085981] should_fail.cold+0x5/0xa [ 2701.086405] _copy_to_iter+0x264/0x12d0 [ 2701.086850] ? mark_lock+0xf5/0x2df0 [ 2701.087249] ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0 [ 2701.087819] ? SOFTIRQ_verbose+0x10/0x10 [ 2701.088274] ? _copy_from_iter_nocache+0xd60/0xd60 [ 2701.088822] ? lock_chain_count+0x20/0x20 [ 2701.089291] ? __virt_addr_valid+0x128/0x350 [ 2701.089787] ? __check_object_size+0x319/0x440 [ 2701.090304] simple_copy_to_iter+0x4c/0x70 [ 2701.090777] __skb_datagram_iter+0x4f7/0x880 [ 2701.091272] ? zerocopy_sg_from_iter+0x110/0x110 [ 2701.091820] skb_copy_datagram_iter+0x88/0x190 [ 2701.092336] tcp_recvmsg+0x13b5/0x2930 [ 2701.092784] ? tcp_splice_read+0x8c0/0x8c0 [ 2701.093266] ? sock_has_perm+0x1ea/0x280 [ 2701.093722] ? selinux_socket_post_create+0x7f0/0x7f0 [ 2701.094297] ? lock_downgrade+0x6d0/0x6d0 [ 2701.094762] ? perf_trace_lock+0xac/0x490 [ 2701.095234] ? tcp_splice_read+0x8c0/0x8c0 [ 2701.095729] inet6_recvmsg+0x13b/0x6e0 [ 2701.096170] ? inet6_bind+0x120/0x120 [ 2701.096608] ? security_socket_recvmsg+0x95/0xc0 [ 2701.097147] ? inet6_bind+0x120/0x120 [ 2701.097574] sock_recvmsg+0xff/0x180 [ 2701.097993] __sys_recvfrom+0x1be/0x2f0 [ 2701.098441] ? __ia32_sys_send+0x100/0x100 [ 2701.098910] ? lock_downgrade+0x6d0/0x6d0 [ 2701.099398] ? wait_for_completion_io+0x270/0x270 [ 2701.099965] ? rcu_read_lock_any_held+0x75/0xa0 [ 2701.100434] ? vfs_write+0x354/0xa70 [ 2701.100865] ? fput_many+0x2f/0x1a0 [ 2701.101273] ? ksys_write+0x1a9/0x260 [ 2701.101702] ? __ia32_sys_read+0xb0/0xb0 [ 2701.102119] __x64_sys_recvfrom+0xdd/0x1b0 [ 2701.102594] ? syscall_enter_from_user_mode+0x1d/0x50 [ 2701.103172] do_syscall_64+0x33/0x40 [ 2701.103600] entry_SYSCALL_64_after_hwframe+0x62/0xc7 [ 2701.104189] RIP: 0033:0x7f7d1addbb19 [ 2701.104564] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 2701.106616] RSP: 002b:00007f7d18330188 EFLAGS: 00000246 ORIG_RAX: 000000000000002d [ 2701.107477] RAX: ffffffffffffffda RBX: 00007f7d1aeef020 RCX: 00007f7d1addbb19 [ 2701.108207] RDX: 0000000000001000 RSI: 0000000020001e00 RDI: 0000000000000003 [ 2701.109010] RBP: 00007f7d183301d0 R08: 0000000000000000 R09: 0000000000000000 [ 2701.109805] R10: 000000000000cd08 R11: 0000000000000246 R12: 0000000000000001 [ 2701.110520] R13: 00007ffe0ac926cf R14: 00007f7d18330300 R15: 0000000000022000 05:36:50 executing program 6: r0 = socket$inet6_tcp(0xa, 0x1, 0x0) setsockopt$inet6_tcp_int(r0, 0x6, 0x2, &(0x7f0000000080)=0x90, 0x4) bind$inet6(r0, &(0x7f00000000c0)={0xa, 0x4e20, 0x0, @loopback}, 0x1c) connect$inet6(r0, &(0x7f0000000000)={0xa, 0x4e20, 0x0, @empty}, 0x1c) setsockopt$sock_int(r0, 0x1, 0x8, &(0x7f0000002ec0), 0x4) sendmsg$inet6(r0, &(0x7f00000006c0)={0x0, 0x0, &(0x7f0000000540)=[{&(0x7f00000001c0)="cf", 0xfffffdef}], 0x1}, 0x10044001) setsockopt$SO_TIMESTAMP(r0, 0x1, 0x40, &(0x7f0000000280)=0x380, 0x4) recvfrom$inet6(r0, &(0x7f0000001e00)=""/4096, 0x1000, 0xcd08, 0x0, 0x0) (fail_nth: 6) 05:36:50 executing program 5: syz_emit_ethernet(0x5a, &(0x7f0000000040)={@local, @remote, @val={@void, {0x8100, 0x2, 0x0, 0x4}}, {@canfd={0xd, {{}, 0x34, 0x1, 0x0, 0x0, "70a73d761622c1b105ed52316b3dced87d613a972febbd74b10fa4a9c1cb34ac4121d5d37a637e210def5d8407b2ce1320ebcb79875c24d2b2525c0f28ed4e4f"}}}}, 0x0) syz_extract_tcp_res$synack(&(0x7f0000000000)={0x41424344}, 0x1, 0x0) syz_emit_ethernet(0x198, &(0x7f00000000c0)={@remote, @remote, @void, {@ipv6={0x86dd, @tcp={0x4, 0x6, "aa08b7", 0x162, 0x6, 0x1, @ipv4={'\x00', '\xff\xff', @local}, @initdev={0xfe, 0x88, '\x00', 0x0, 0x0}, {[@hopopts={0x21, 0xe, '\x00', [@calipso={0x7, 0x58, {0x2, 0x14, 0x7c, 0x9, [0x1, 0x1, 0xb7, 0x6, 0x4, 0xfffffffffffffeff, 0x2, 0x9, 0x296, 0x3]}}, @calipso={0x7, 0x18, {0x1, 0x4, 0x0, 0x1, [0x4, 0xd231]}}]}, @routing={0x62, 0x2, 0x0, 0x3f, 0x0, [@dev={0xfe, 0x80, '\x00', 0x20}]}, @srh={0x2c, 0x2, 0x4, 0x1, 0x0, 0x10, 0xff8a, [@mcast1]}, @srh={0x0, 0x4, 0x4, 0x2, 0xd, 0x70, 0x1, [@remote, @initdev={0xfe, 0x88, '\x00', 0x1, 0x0}]}, @srh={0x21, 0x4, 0x4, 0x2, 0x0, 0x20, 0x0, [@private2, @private2={0xfc, 0x2, '\x00', 0x1}]}], {{0x4e24, 0x4e22, 0x41424344, r0, 0x1, 0x0, 0xb, 0x4, 0x0, 0x0, 0x400, {[@timestamp={0x8, 0xa, 0x9, 0x7}, @fastopen={0x22, 0xc, "a4a7e0459fe760ffeaf0"}, @nop]}}, {"62a3af07ebcb072442899a346ccf3aa00b4641ca8090e3cc9275550963de879c5fee8bc117130232486a4da734cb294ac638d6db19a0"}}}}}}}, &(0x7f0000000280)={0x0, 0x2, [0x3d7, 0xa53, 0xff4, 0xfb7]}) 05:36:50 executing program 2: preadv2(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x2) openat(0xffffffffffffff9c, 0x0, 0x0, 0x0) r0 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x105142, 0x62) r1 = openat(0xffffffffffffff9c, 0x0, 0x0, 0x0) fallocate(r1, 0x0, 0x0, 0x8800000) lseek(0xffffffffffffffff, 0x0, 0x0) openat(0xffffffffffffffff, 0x0, 0x0, 0x20) ioctl$FS_IOC_RESVSP(0xffffffffffffffff, 0x40305828, 0x0) faccessat2(0xffffffffffffffff, 0x0, 0x0, 0x0) openat(0xffffffffffffffff, 0x0, 0x1a340, 0x100) ioctl$LOOP_CTL_REMOVE(0xffffffffffffffff, 0x4c81, 0x0) r2 = fsmount(0xffffffffffffffff, 0x0, 0x0) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r3 = openat(r2, &(0x7f0000000000)='/proc/self/exe\x00', 0x4840, 0x2d) sendfile(r0, r3, 0x0, 0x10000000a) 05:36:50 executing program 3: r0 = perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x0, 0x3}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) pread64(0xffffffffffffffff, 0x0, 0x7ffffffff000, 0xf0ff1f00000000) bind$inet6(0xffffffffffffffff, &(0x7f0000000040)={0xa, 0x4e23, 0x0, @remote, 0xffff}, 0x1c) r1 = socket$netlink(0x10, 0x3, 0x0) sendmsg$nl_generic(0xffffffffffffffff, 0x0, 0x41) setsockopt$netlink_NETLINK_BROADCAST_ERROR(r1, 0x10e, 0x4, &(0x7f00000000c0)=0x1000, 0x4) sendmsg$nl_generic(r1, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000100)=ANY=[@ANYBLOB="28000000100001000000000000000000000000000500000024386a562b500000000c00008008000d00ac141400"], 0x28}}, 0x0) chdir(&(0x7f00000001c0)='./file0\x00') r2 = syz_open_dev$mouse(&(0x7f0000000400), 0x7fffffff, 0x2d0401) sendmsg$NL80211_CMD_ADD_NAN_FUNCTION(r2, &(0x7f0000000500)={&(0x7f0000000440)={0x10, 0x0, 0x0, 0x10}, 0xc, &(0x7f00000004c0)={&(0x7f00000002c0)={0x20, 0x0, 0x100, 0x70bd2b, 0x25dfdbfd, {{}, {@void, @val={0xc, 0x99, {0x3, 0x1b}}}}}, 0x20}, 0x1, 0x0, 0x0, 0x95}, 0x40000) ioctl$FICLONE(r2, 0x40049409, r0) r3 = open$dir(&(0x7f0000000000)='.\x00', 0x0, 0x0) perf_event_open(&(0x7f0000001d80)={0x6, 0x80, 0x0, 0x0, 0x0, 0x0, 0x4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffd, 0x0, @perf_bp={0x0, 0xffffffff81000000}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffd}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r4 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000040)='/proc/crypto\x00', 0x0, 0x0) r5 = openat2(r3, &(0x7f0000000180)='./file0\x00', &(0x7f0000000200)={0x800, 0x1b9}, 0x18) setsockopt$SO_TIMESTAMPING(r5, 0x1, 0x25, &(0x7f0000000240)=0x7100, 0x4) pread64(r4, &(0x7f00000010c0)=""/4088, 0xff8, 0x0) writev(0xffffffffffffffff, &(0x7f00000003c0)=[{&(0x7f0000000000)="0000abe02400030021206cda3b5e5672b89aeddb2a535fbd0706006dff0043a9d7cceb232fb81bf74ebdd05b7677", 0x2e}, {&(0x7f0000000680)="7fd41c04550300020000000000000000010046e92ed2616f72657d044129471d4fd47924fd0900e09e0068deec", 0x2d}], 0x2) [ 2717.714949] FAULT_INJECTION: forcing a failure. [ 2717.714949] name failslab, interval 1, probability 0, space 0, times 0 [ 2717.717378] CPU: 1 PID: 12115 Comm: syz-executor.0 Not tainted 5.10.204 #1 [ 2717.718768] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 2717.720443] Call Trace: [ 2717.720590] FAULT_INJECTION: forcing a failure. [ 2717.720590] name failslab, interval 1, probability 0, space 0, times 0 [ 2717.720977] dump_stack+0x107/0x167 [ 2717.724277] should_fail.cold+0x5/0xa [ 2717.725035] ? create_object.isra.0+0x3a/0xa20 [ 2717.725941] should_failslab+0x5/0x20 [ 2717.726693] kmem_cache_alloc+0x5b/0x310 [ 2717.727502] create_object.isra.0+0x3a/0xa20 [ 2717.728379] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 2717.729388] kmem_cache_alloc+0x159/0x310 [ 2717.730215] dst_alloc+0x9e/0x610 [ 2717.730912] rt_dst_alloc+0x73/0x440 [ 2717.731667] ip_route_output_key_hash_rcu+0x93d/0x2a90 [ 2717.732721] ip_route_output_key_hash+0x18d/0x340 [ 2717.733670] ? ip_route_output_key_hash_rcu+0x2a90/0x2a90 [ 2717.734801] icmp_route_lookup.constprop.0+0x349/0x11a0 [ 2717.735874] ? __lockdep_reset_lock+0x180/0x180 [ 2717.736797] ? icmp_timestamp+0x240/0x240 [ 2717.737618] ? memset+0x20/0x50 [ 2717.738278] ? __ip_options_echo+0x6f8/0x11a0 [ 2717.739175] ? lock_downgrade+0x6d0/0x6d0 [ 2717.740010] ? ip_options_build+0x780/0x780 [ 2717.740860] ? do_raw_spin_lock+0x260/0x260 [ 2717.741724] __icmp_send+0xa34/0x14d0 [ 2717.742500] ? icmp_route_lookup.constprop.0+0x11a0/0x11a0 [ 2717.743601] ? __lockdep_reset_lock+0x180/0x180 [ 2717.744552] ? find_held_lock+0x2c/0x110 [ 2717.745399] ? ip_route_input_noref+0x160/0x2f0 [ 2717.746325] ip_options_compile+0xad/0xf0 [ 2717.747144] ? __ip_options_compile+0x15d0/0x15d0 [ 2717.748104] ? ip_list_rcv_finish.constprop.0+0x590/0x590 [ 2717.749217] ip_rcv_finish_core.constprop.0+0x4fb/0x1c90 [ 2717.750312] ip_rcv_finish+0x4f/0x1e0 [ 2717.751053] ip_rcv+0xae/0xd0 [ 2717.751678] ? ip_local_deliver+0x200/0x200 [ 2717.752529] __netif_receive_skb_one_core+0x19b/0x1f0 [ 2717.753545] ? __netif_receive_skb_core+0x3780/0x3780 [ 2717.754578] ? __lock_acquire+0xbb1/0x5b00 [ 2717.755424] __netif_receive_skb+0x27/0x1d0 [ 2717.756298] netif_receive_skb+0x12d/0x710 [ 2717.757115] ? __netif_receive_skb+0x1d0/0x1d0 [ 2717.757977] ? SOFTIRQ_verbose+0x10/0x10 [ 2717.758783] ? __lockdep_reset_lock+0x180/0x180 [ 2717.759677] tun_rx_batched.isra.0+0x462/0x710 [ 2717.760563] ? lock_acquire+0x197/0x470 [ 2717.761325] ? tun_get_user+0xee3/0x32f0 [ 2717.762123] ? tun_sock_write_space+0x1d0/0x1d0 [ 2717.762995] ? lock_release+0x680/0x680 [ 2717.763779] ? tun_get_user+0x16e6/0x32f0 [ 2717.764592] ? lock_downgrade+0x6d0/0x6d0 [ 2717.765400] ? eth_type_trans+0x2ad/0x5b0 [ 2717.766192] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 2717.767211] tun_get_user+0x191d/0x32f0 [ 2717.768000] ? usage_accumulate+0x110/0x110 [ 2717.768854] ? tun_build_skb+0xfe0/0xfe0 [ 2717.769650] ? tun_device_event+0x990/0x1160 [ 2717.770514] ? perf_trace_lock+0xac/0x490 [ 2717.771310] ? SOFTIRQ_verbose+0x10/0x10 [ 2717.772125] tun_chr_write_iter+0xe1/0x1e0 [ 2717.772939] new_sync_write+0x42c/0x660 [ 2717.773721] ? new_sync_read+0x6f0/0x6f0 [ 2717.774524] ? _cond_resched+0x12/0x80 [ 2717.775281] ? avc_policy_seqno+0x9/0x70 [ 2717.776085] ? selinux_file_permission+0x92/0x520 [ 2717.777034] ? __fget_files+0x296/0x4c0 [ 2717.777830] vfs_write+0x747/0xa70 [ 2717.778527] ksys_write+0x12d/0x260 [ 2717.779238] ? __ia32_sys_read+0xb0/0xb0 [ 2717.780047] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 2717.781029] ? syscall_enter_from_user_mode+0x1d/0x50 [ 2717.782040] do_syscall_64+0x33/0x40 [ 2717.782766] entry_SYSCALL_64_after_hwframe+0x62/0xc7 [ 2717.783769] RIP: 0033:0x7fc05d62c5ff [ 2717.784487] Code: 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 99 fd ff ff 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 b8 01 00 00 00 0f 05 <48> 3d 00 f0 ff ff 77 31 44 89 c7 48 89 44 24 08 e8 cc fd ff ff 48 [ 2717.788571] RSP: 002b:00007fc05abef150 EFLAGS: 00000293 ORIG_RAX: 0000000000000001 [ 2717.790455] RAX: ffffffffffffffda RBX: 00007fc05d78cf60 RCX: 00007fc05d62c5ff [ 2717.792166] RDX: 000000000000003a RSI: 0000000020000000 RDI: 00000000000000f0 [ 2717.793888] RBP: 00007fc05abef1d0 R08: 0000000000000000 R09: 0000000000000000 [ 2717.795619] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000001 [ 2717.797346] R13: 00007ffc5aac442f R14: 00007fc05abef300 R15: 0000000000022000 [ 2717.799060] CPU: 0 PID: 12116 Comm: syz-executor.1 Not tainted 5.10.204 #1 [ 2717.800679] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 2717.802555] Call Trace: [ 2717.803162] dump_stack+0x107/0x167 [ 2717.804019] should_fail.cold+0x5/0xa [ 2717.804892] ? __alloc_skb+0x6d/0x5b0 [ 2717.805769] should_failslab+0x5/0x20 [ 2717.806635] kmem_cache_alloc_node+0x55/0x330 [ 2717.807679] __alloc_skb+0x6d/0x5b0 [ 2717.808528] alloc_skb_with_frags+0x92/0x570 [ 2717.809544] ? stack_trace_save+0x8c/0xc0 [ 2717.810502] sock_alloc_send_pskb+0x7af/0x930 [ 2717.811540] ? perf_trace_run_bpf_submit+0xf5/0x190 [ 2717.812738] ? sk_alloc+0x350/0x350 [ 2717.813565] ? ip_rcv_finish_core.constprop.0+0x4fb/0x1c90 [ 2717.814821] ? ip_rcv_finish+0x4f/0x1e0 [ 2717.815728] ? ip_rcv+0xae/0xd0 [ 2717.816479] ? __netif_receive_skb_one_core+0x19b/0x1f0 [ 2717.817680] ? __netif_receive_skb+0x27/0x1d0 [ 2717.818692] ? netif_receive_skb+0x12d/0x710 [ 2717.819696] ? tun_rx_batched.isra.0+0x462/0x710 [ 2717.820768] ? tun_get_user+0x191d/0x32f0 [ 2717.821759] ? tun_chr_write_iter+0xe1/0x1e0 [ 2717.822754] ? new_sync_write+0x42c/0x660 [ 2717.823731] ? vfs_write+0x747/0xa70 [ 2717.824576] ? ksys_write+0x12d/0x260 [ 2717.825693] ? do_syscall_64+0x33/0x40 [ 2717.826569] ? entry_SYSCALL_64_after_hwframe+0x62/0xc7 [ 2717.827795] __ip_append_data+0x1628/0x3310 [ 2717.828818] ? icmp_push_reply+0x490/0x490 [ 2717.829809] ? ip_finish_output+0x330/0x330 [ 2717.830789] ? ipv4_mtu+0x1ed/0x2c0 [ 2717.831652] ? icmp_push_reply+0x490/0x490 [ 2717.832614] ip_append_data+0x114/0x1a0 [ 2717.833550] icmp_push_reply+0x13b/0x490 [ 2717.834493] __icmp_send+0xbc9/0x14d0 [ 2717.835392] ? icmp_route_lookup.constprop.0+0x11a0/0x11a0 [ 2717.836401] ? __lockdep_reset_lock+0x180/0x180 [ 2717.837038] ? find_held_lock+0x2c/0x110 [ 2717.837648] ? ip_route_input_noref+0x160/0x2f0 [ 2717.838276] ip_options_compile+0xad/0xf0 [ 2717.838836] ? __ip_options_compile+0x15d0/0x15d0 [ 2717.839481] ? ip_list_rcv_finish.constprop.0+0x590/0x590 [ 2717.840248] ip_rcv_finish_core.constprop.0+0x4fb/0x1c90 [ 2717.840978] ip_rcv_finish+0x4f/0x1e0 [ 2717.841495] ip_rcv+0xae/0xd0 [ 2717.841917] ? ip_local_deliver+0x200/0x200 [ 2717.842498] __netif_receive_skb_one_core+0x19b/0x1f0 [ 2717.843176] ? __netif_receive_skb_core+0x3780/0x3780 [ 2717.843880] ? __lock_acquire+0xbb1/0x5b00 [ 2717.844466] __netif_receive_skb+0x27/0x1d0 [ 2717.845049] netif_receive_skb+0x12d/0x710 [ 2717.845614] ? __netif_receive_skb+0x1d0/0x1d0 [ 2717.846218] ? SOFTIRQ_verbose+0x10/0x10 [ 2717.846759] ? __lockdep_reset_lock+0x180/0x180 [ 2717.847387] tun_rx_batched.isra.0+0x462/0x710 [ 2717.847990] ? lock_acquire+0x197/0x470 [ 2717.848527] ? tun_get_user+0xee3/0x32f0 [ 2717.849070] ? tun_sock_write_space+0x1d0/0x1d0 [ 2717.849687] ? lock_release+0x680/0x680 [ 2717.850209] ? tun_get_user+0x16e6/0x32f0 [ 2717.850774] ? lock_downgrade+0x6d0/0x6d0 [ 2717.851320] ? eth_type_trans+0x2ad/0x5b0 [ 2717.851899] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 2717.852598] tun_get_user+0x191d/0x32f0 [ 2717.853138] ? usage_accumulate+0x110/0x110 [ 2717.853725] ? tun_build_skb+0xfe0/0xfe0 [ 2717.854294] ? tun_device_event+0x990/0x1160 [ 2717.854901] ? SOFTIRQ_verbose+0x10/0x10 [ 2717.855475] tun_chr_write_iter+0xe1/0x1e0 [ 2717.856072] new_sync_write+0x42c/0x660 [ 2717.856608] ? new_sync_read+0x6f0/0x6f0 [ 2717.857143] ? _cond_resched+0x12/0x80 [ 2717.857675] ? avc_policy_seqno+0x9/0x70 [ 2717.858200] ? selinux_file_permission+0x92/0x520 [ 2717.858873] ? __fget_files+0x296/0x4c0 [ 2717.859409] vfs_write+0x747/0xa70 [ 2717.859926] ksys_write+0x12d/0x260 [ 2717.860416] ? __ia32_sys_read+0xb0/0xb0 [ 2717.860993] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 2717.861682] ? syscall_enter_from_user_mode+0x1d/0x50 [ 2717.862413] do_syscall_64+0x33/0x40 [ 2717.862905] entry_SYSCALL_64_after_hwframe+0x62/0xc7 [ 2717.863723] RIP: 0033:0x7f56064f65ff [ 2717.864657] Code: 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 99 fd ff ff 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 b8 01 00 00 00 0f 05 <48> 3d 00 f0 ff ff 77 31 44 89 c7 48 89 44 24 08 e8 cc fd ff ff 48 [ 2717.869113] RSP: 002b:00007f5603ab9150 EFLAGS: 00000293 ORIG_RAX: 0000000000000001 [ 2717.870952] RAX: ffffffffffffffda RBX: 00007f5606656f60 RCX: 00007f56064f65ff [ 2717.872676] RDX: 000000000000003a RSI: 0000000020000000 RDI: 00000000000000f0 [ 2717.874392] RBP: 00007f5603ab91d0 R08: 0000000000000000 R09: 0000000000000000 [ 2717.876110] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000002 [ 2717.877831] R13: 00007ffe3650190f R14: 00007f5603ab9300 R15: 0000000000022000 05:36:50 executing program 0: perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_emit_ethernet(0x3a, &(0x7f0000000000)={@local, @remote, @void, {@ipv4={0x800, @tcp={{0x6, 0x4, 0x0, 0x0, 0x2c, 0x0, 0x0, 0x0, 0x32, 0x0, @dev, @private=0xa010100, {[@lsrr={0x83, 0x5}]}}, {{0x0, 0x0, 0x41424344, 0x41424344, 0x0, 0x7, 0x5}}}}}}, 0x0) (fail_nth: 8) ioctl$BTRFS_IOC_BALANCE(0xffffffffffffffff, 0x5000940c, 0x0) close(0xffffffffffffffff) 05:36:50 executing program 7: r0 = accept4$packet(0xffffffffffffffff, 0x0, &(0x7f0000000000), 0x800) dup2(0xffffffffffffffff, r0) r1 = perf_event_open(&(0x7f0000001d80)={0x2, 0x80, 0x5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x40641, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x40, 0x0, @perf_config_ext, 0x0, 0x1, 0x0, 0x2, 0x0, 0x9}, 0x0, 0x0, 0xffffffffffffffff, 0xa) perf_event_open(&(0x7f0000001d80)={0x3, 0x80, 0x0, 0x0, 0x0, 0x0, 0x4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x58440, 0x3f, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffe}, 0x0, 0x4, r1, 0x0) close(r1) syz_emit_ethernet(0x32, &(0x7f0000000040)={@local, @remote, @void, {@ipv4={0x800, @igmp={{0x7, 0x4, 0x0, 0x0, 0x24, 0x0, 0x0, 0x0, 0x2, 0x0, @local, @private=0xa010102, {[@cipso={0x86, 0x8, 0x0, [{0x0, 0x2}]}]}}, {0x0, 0x0, 0x0, @broadcast}}}}}, 0x0) r2 = openat$full(0xffffffffffffff9c, &(0x7f0000000080), 0x440000, 0x0) write$tun(r2, &(0x7f0000000680)=ANY=[@ANYBLOB="00000806070107000100010002006624183e029e0601fe8000000000000000000000000000aafe8000000000000000000000000000220010040806380100fe880000000000000000000000000001fe800000000000000000000000000018fe800000000000000000000000000042ff020000000000000000000000000001fe8000000000000000000000000000aaff010000000000000000000000000001ff020000000000000000000000000001fc01000000000000000000000000000189000141660000002b0604031f0005000000000000000000000000000000000000000000000000000000000000000000ff0100000000000000000000000000017902020600000000fc0100000000000000000000000000006c08030000000000fe80000000000000000000000000000b00000000000000000000000000000001fe800000000000000000000000000017fc02000000000000000000000000000167000200670000006c0b000000000000040102040101c20400000004010200000401c00740000000010e0801000500000000000000ff7f00000000000000000000000000003d7600000000000001000000000000003f00000000000000ed020000000000000401704e214e24", @ANYRES32=0x41424344, @ANYRES32=0x41424344, @ANYBLOB="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"], 0x2d4) 05:36:50 executing program 1: perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_emit_ethernet(0x3a, &(0x7f0000000000)={@local, @remote, @void, {@ipv4={0x800, @tcp={{0x6, 0x4, 0x0, 0x0, 0x2c, 0x0, 0x0, 0x0, 0x32, 0x0, @dev, @private=0xa010100, {[@lsrr={0x83, 0x5}]}}, {{0x0, 0x0, 0x41424344, 0x41424344, 0x0, 0x7, 0x5}}}}}}, 0x0) (fail_nth: 11) 05:36:50 executing program 4: perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_emit_ethernet(0xfdef, &(0x7f0000000000)={@local, @remote, @void, {@ipv4={0x800, @tcp={{0x6, 0x4, 0x0, 0x0, 0x2c, 0x0, 0x0, 0x0, 0x32, 0x0, @dev, @private=0xa010100, {[@lsrr={0x83, 0x5}]}}, {{0x0, 0x0, 0x41424344, 0x41424344, 0x0, 0x7, 0x5}}}}}}, 0x0) openat$cgroup_devices(0xffffffffffffffff, 0x0, 0x2, 0x0) close(0xffffffffffffffff) pread64(0xffffffffffffffff, 0x0, 0x0, 0x2000) [ 2717.884513] FAULT_INJECTION: forcing a failure. [ 2717.884513] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 2717.887386] CPU: 1 PID: 12122 Comm: syz-executor.6 Not tainted 5.10.204 #1 [ 2717.889013] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 2717.890946] Call Trace: [ 2717.891603] dump_stack+0x107/0x167 [ 2717.892506] should_fail.cold+0x5/0xa [ 2717.893443] _copy_to_iter+0x264/0x12d0 [ 2717.894394] ? mark_lock+0xf5/0x2df0 [ 2717.895022] netlink: 8 bytes leftover after parsing attributes in process `syz-executor.3'. [ 2717.895292] ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0 [ 2717.895316] ? SOFTIRQ_verbose+0x10/0x10 [ 2717.895345] ? _copy_from_iter_nocache+0xd60/0xd60 [ 2717.895377] ? lock_chain_count+0x20/0x20 [ 2717.901402] ? __virt_addr_valid+0x128/0x350 [ 2717.902462] ? __check_object_size+0x319/0x440 [ 2717.903508] simple_copy_to_iter+0x4c/0x70 [ 2717.904498] __skb_datagram_iter+0x4f7/0x880 [ 2717.905566] ? zerocopy_sg_from_iter+0x110/0x110 [ 2717.906657] skb_copy_datagram_iter+0x88/0x190 [ 2717.907725] tcp_recvmsg+0x13b5/0x2930 [ 2717.908677] ? tcp_splice_read+0x8c0/0x8c0 [ 2717.909578] ? sock_has_perm+0x1ea/0x280 [ 2717.910454] ? selinux_socket_post_create+0x7f0/0x7f0 [ 2717.911478] ? lock_downgrade+0x6d0/0x6d0 [ 2717.912405] ? perf_trace_lock+0xac/0x490 [ 2717.913213] ? tcp_splice_read+0x8c0/0x8c0 [ 2717.914070] inet6_recvmsg+0x13b/0x6e0 [ 2717.914853] ? inet6_bind+0x120/0x120 [ 2717.915621] ? security_socket_recvmsg+0x95/0xc0 [ 2717.916598] ? inet6_bind+0x120/0x120 [ 2717.917435] sock_recvmsg+0xff/0x180 [ 2717.918290] __sys_recvfrom+0x1be/0x2f0 [ 2717.919205] ? __ia32_sys_send+0x100/0x100 [ 2717.920202] ? lock_downgrade+0x6d0/0x6d0 [ 2717.921214] ? wait_for_completion_io+0x270/0x270 [ 2717.922274] ? rcu_read_lock_any_held+0x75/0xa0 [ 2717.923332] ? vfs_write+0x354/0xa70 [ 2717.924242] ? fput_many+0x2f/0x1a0 [ 2717.925103] ? ksys_write+0x1a9/0x260 [ 2717.926020] ? __ia32_sys_read+0xb0/0xb0 [ 2717.926952] __x64_sys_recvfrom+0xdd/0x1b0 [ 2717.927954] ? syscall_enter_from_user_mode+0x1d/0x50 [ 2717.929122] do_syscall_64+0x33/0x40 [ 2717.929955] entry_SYSCALL_64_after_hwframe+0x62/0xc7 [ 2717.931132] RIP: 0033:0x7f7d1addbb19 [ 2717.932001] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 2717.936055] RSP: 002b:00007f7d1830f188 EFLAGS: 00000246 ORIG_RAX: 000000000000002d [ 2717.937823] RAX: ffffffffffffffda RBX: 00007f7d1aeef0e0 RCX: 00007f7d1addbb19 [ 2717.939441] RDX: 0000000000001000 RSI: 0000000020001e00 RDI: 0000000000000003 [ 2717.941062] RBP: 00007f7d1830f1d0 R08: 0000000000000000 R09: 0000000000000000 [ 2717.942707] R10: 000000000000cd08 R11: 0000000000000246 R12: 0000000000000001 [ 2717.944370] R13: 00007ffe0ac926cf R14: 00007f7d1830f300 R15: 0000000000022000 05:36:50 executing program 5: syz_emit_ethernet(0x32, &(0x7f0000000040)={@local, @remote, @void, {@ipv4={0x800, @igmp={{0x7, 0x4, 0x0, 0x0, 0x24, 0x0, 0x0, 0x0, 0x2, 0x0, @broadcast, @private=0xa010100, {[@cipso={0x86, 0x8, 0x0, [{0x0, 0x2}]}]}}, {0x0, 0x0, 0x0, @broadcast}}}}}, 0x0) 05:36:50 executing program 0: perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_emit_ethernet(0x3a, &(0x7f0000000000)={@local, @remote, @void, {@ipv4={0x800, @tcp={{0x6, 0x4, 0x0, 0x0, 0x2c, 0x0, 0x0, 0x0, 0x32, 0x0, @dev, @private=0xa010100, {[@lsrr={0x83, 0x5}]}}, {{0x0, 0x0, 0x41424344, 0x41424344, 0x0, 0x7, 0x5}}}}}}, 0x0) (fail_nth: 9) ioctl$BTRFS_IOC_BALANCE(0xffffffffffffffff, 0x5000940c, 0x0) close(0xffffffffffffffff) 05:36:50 executing program 4: perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_emit_ethernet(0x2000003a, &(0x7f0000000000)={@local, @remote, @void, {@ipv4={0x800, @tcp={{0x6, 0x4, 0x0, 0x0, 0x2c, 0x0, 0x0, 0x0, 0x32, 0x0, @dev, @private=0xa010100, {[@lsrr={0x83, 0x5}]}}, {{0x0, 0x0, 0x41424344, 0x41424344, 0x0, 0x7, 0x5}}}}}}, 0x0) openat$cgroup_devices(0xffffffffffffffff, 0x0, 0x2, 0x0) close(0xffffffffffffffff) pread64(0xffffffffffffffff, 0x0, 0x0, 0x2000) 05:36:50 executing program 1: perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_emit_ethernet(0x3a, &(0x7f0000000000)={@local, @remote, @void, {@ipv4={0x800, @tcp={{0x6, 0x4, 0x0, 0x0, 0x2c, 0x0, 0x0, 0x0, 0x32, 0x0, @dev, @private=0xa010100, {[@lsrr={0x83, 0x5}]}}, {{0x0, 0x0, 0x41424344, 0x41424344, 0x0, 0x7, 0x5}}}}}}, 0x0) (fail_nth: 12) 05:36:50 executing program 7: syz_emit_ethernet(0x86, &(0x7f0000000100)={@local, @remote, @val={@val={0x9100, 0x1}, {0x8100, 0x4, 0x1, 0x2}}, {@ipv4={0x800, @igmp={{0x1a, 0x4, 0x0, 0x0, 0x70, 0x0, 0x0, 0x0, 0x2, 0x0, @local, @loopback, {[@timestamp_prespec={0x44, 0x3c, 0xa, 0x3, 0x5, [{@local, 0x6}, {@remote, 0x2}, {@local, 0x5}, {@loopback, 0xd5}, {@local, 0x9}, {@broadcast, 0xad}, {@dev={0xac, 0x14, 0x14, 0x15}, 0x101}]}, @ssrr={0x89, 0xb, 0xca, [@private=0xa010102, @multicast2]}, @timestamp={0x44, 0xc, 0x3d, 0x0, 0x5, [0xff, 0x9]}]}}, {0x0, 0x0, 0x0, @broadcast}}}}}, 0x0) [ 2718.109185] FAULT_INJECTION: forcing a failure. [ 2718.109185] name failslab, interval 1, probability 0, space 0, times 0 [ 2718.111086] CPU: 1 PID: 12134 Comm: syz-executor.0 Not tainted 5.10.204 #1 [ 2718.112212] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 2718.113701] Call Trace: [ 2718.114135] dump_stack+0x107/0x167 [ 2718.114736] should_fail.cold+0x5/0xa [ 2718.115363] ? ip_setup_cork+0x6ea/0x930 [ 2718.116042] should_failslab+0x5/0x20 [ 2718.116659] kmem_cache_alloc_trace+0x55/0x320 [ 2718.117529] ? icmp_timestamp+0x240/0x240 [ 2718.118206] ip_setup_cork+0x6ea/0x930 [ 2718.118920] ? icmp_push_reply+0x490/0x490 [ 2718.119683] ip_append_data+0x167/0x1a0 [ 2718.120523] icmp_push_reply+0x13b/0x490 [ 2718.121215] __icmp_send+0xbc9/0x14d0 [ 2718.121872] ? icmp_route_lookup.constprop.0+0x11a0/0x11a0 [ 2718.122801] ? __lockdep_reset_lock+0x180/0x180 [ 2718.123584] ? find_held_lock+0x2c/0x110 [ 2718.124307] ? ip_route_input_noref+0x160/0x2f0 [ 2718.125194] ip_options_compile+0xad/0xf0 [ 2718.125883] ? __ip_options_compile+0x15d0/0x15d0 [ 2718.126685] ? ip_list_rcv_finish.constprop.0+0x590/0x590 [ 2718.127606] ip_rcv_finish_core.constprop.0+0x4fb/0x1c90 [ 2718.128518] ip_rcv_finish+0x4f/0x1e0 [ 2718.129146] ip_rcv+0xae/0xd0 [ 2718.129679] ? ip_local_deliver+0x200/0x200 [ 2718.130507] __netif_receive_skb_one_core+0x19b/0x1f0 [ 2718.131405] ? __netif_receive_skb_core+0x3780/0x3780 [ 2718.132372] ? lockdep_hardirqs_on_prepare+0x129/0x3e0 [ 2718.133349] ? ktime_get_with_offset+0x221/0x260 [ 2718.134130] ? trace_hardirqs_on+0x5b/0x180 [ 2718.134852] ? recalibrate_cpu_khz+0x10/0x10 [ 2718.135585] __netif_receive_skb+0x27/0x1d0 [ 2718.136419] netif_receive_skb+0x12d/0x710 [ 2718.137121] ? __netif_receive_skb+0x1d0/0x1d0 [ 2718.137871] ? SOFTIRQ_verbose+0x10/0x10 [ 2718.138548] ? __lockdep_reset_lock+0x180/0x180 [ 2718.139439] tun_rx_batched.isra.0+0x462/0x710 [ 2718.140195] ? lock_acquire+0x197/0x470 [ 2718.140946] ? tun_get_user+0xee3/0x32f0 [ 2718.141619] ? tun_sock_write_space+0x1d0/0x1d0 [ 2718.142450] ? lock_release+0x680/0x680 [ 2718.143219] ? tun_get_user+0x16e6/0x32f0 [ 2718.143915] ? lock_downgrade+0x6d0/0x6d0 [ 2718.144608] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 2718.145450] tun_get_user+0x191d/0x32f0 [ 2718.146107] ? usage_accumulate+0x110/0x110 [ 2718.146823] ? tun_build_skb+0xfe0/0xfe0 [ 2718.147586] ? tun_device_event+0x990/0x1160 [ 2718.148291] ? perf_trace_lock+0xac/0x490 [ 2718.148949] ? SOFTIRQ_verbose+0x10/0x10 [ 2718.149722] tun_chr_write_iter+0xe1/0x1e0 [ 2718.150392] new_sync_write+0x42c/0x660 [ 2718.151123] ? new_sync_read+0x6f0/0x6f0 [ 2718.151824] ? _cond_resched+0x12/0x80 [ 2718.152597] ? avc_policy_seqno+0x9/0x70 [ 2718.153236] ? selinux_file_permission+0x92/0x520 [ 2718.154005] ? __fget_files+0x296/0x4c0 [ 2718.154644] vfs_write+0x747/0xa70 [ 2718.155337] ksys_write+0x12d/0x260 [ 2718.155971] ? __ia32_sys_read+0xb0/0xb0 [ 2718.156608] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 2718.157424] ? syscall_enter_from_user_mode+0x1d/0x50 [ 2718.158390] do_syscall_64+0x33/0x40 [ 2718.158969] entry_SYSCALL_64_after_hwframe+0x62/0xc7 [ 2718.159785] RIP: 0033:0x7fc05d62c5ff [ 2718.160371] Code: 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 99 fd ff ff 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 b8 01 00 00 00 0f 05 <48> 3d 00 f0 ff ff 77 31 44 89 c7 48 89 44 24 08 e8 cc fd ff ff 48 [ 2718.163427] RSP: 002b:00007fc05abef150 EFLAGS: 00000293 ORIG_RAX: 0000000000000001 [ 2718.164799] RAX: ffffffffffffffda RBX: 00007fc05d78cf60 RCX: 00007fc05d62c5ff [ 2718.165913] RDX: 000000000000003a RSI: 0000000020000000 RDI: 00000000000000f0 [ 2718.166986] RBP: 00007fc05abef1d0 R08: 0000000000000000 R09: 0000000000000000 [ 2718.168142] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000001 [ 2718.169261] R13: 00007ffc5aac442f R14: 00007fc05abef300 R15: 0000000000022000 05:36:50 executing program 3: r0 = perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x0, 0x3}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) pread64(0xffffffffffffffff, 0x0, 0x7ffffffff000, 0xf0ff1f00000000) bind$inet6(0xffffffffffffffff, &(0x7f0000000040)={0xa, 0x4e23, 0x0, @remote, 0xffff}, 0x1c) r1 = socket$netlink(0x10, 0x3, 0x0) sendmsg$nl_generic(0xffffffffffffffff, 0x0, 0x41) setsockopt$netlink_NETLINK_BROADCAST_ERROR(r1, 0x10e, 0x4, &(0x7f00000000c0)=0x1000, 0x4) sendmsg$nl_generic(r1, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000100)=ANY=[@ANYBLOB="28000000100001000000000000000000000000000500000024386a562b500000000c00008008000d00ac141400"], 0x28}}, 0x0) chdir(&(0x7f00000001c0)='./file0\x00') r2 = syz_open_dev$mouse(&(0x7f0000000400), 0x7fffffff, 0x2d0401) sendmsg$NL80211_CMD_ADD_NAN_FUNCTION(r2, &(0x7f0000000500)={&(0x7f0000000440)={0x10, 0x0, 0x0, 0x10}, 0xc, &(0x7f00000004c0)={&(0x7f00000002c0)={0x20, 0x0, 0x100, 0x70bd2b, 0x25dfdbfd, {{}, {@void, @val={0xc, 0x99, {0x3, 0x1b}}}}}, 0x20}, 0x1, 0x0, 0x0, 0x95}, 0x40000) ioctl$FICLONE(r2, 0x40049409, r0) r3 = open$dir(&(0x7f0000000000)='.\x00', 0x0, 0x0) perf_event_open(&(0x7f0000001d80)={0x6, 0x80, 0x0, 0x0, 0x0, 0x0, 0x4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffd, 0x0, @perf_bp={0x0, 0xffffffff81000000}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffd}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r4 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000040)='/proc/crypto\x00', 0x0, 0x0) r5 = openat2(r3, &(0x7f0000000180)='./file0\x00', &(0x7f0000000200)={0x800, 0x1b9}, 0x18) setsockopt$SO_TIMESTAMPING(r5, 0x1, 0x25, &(0x7f0000000240)=0x7100, 0x4) pread64(r4, &(0x7f00000010c0)=""/4088, 0xff8, 0x0) writev(0xffffffffffffffff, &(0x7f00000003c0)=[{&(0x7f0000000680)="7fd41c04550300020000000000000000010046e92ed2616f72657d044129471d4fd47924fd0900e09e0068deec02", 0x2e}], 0x1) [ 2718.215572] FAULT_INJECTION: forcing a failure. [ 2718.215572] name failslab, interval 1, probability 0, space 0, times 0 [ 2718.217264] CPU: 1 PID: 12138 Comm: syz-executor.1 Not tainted 5.10.204 #1 [ 2718.218272] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 2718.219496] Call Trace: [ 2718.219891] dump_stack+0x107/0x167 [ 2718.220444] should_fail.cold+0x5/0xa [ 2718.221016] ? create_object.isra.0+0x3a/0xa20 [ 2718.221705] should_failslab+0x5/0x20 [ 2718.222264] kmem_cache_alloc+0x5b/0x310 [ 2718.222877] create_object.isra.0+0x3a/0xa20 [ 2718.223534] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 2718.224291] kmem_cache_alloc_node+0x169/0x330 [ 2718.224958] __alloc_skb+0x6d/0x5b0 [ 2718.225516] alloc_skb_with_frags+0x92/0x570 [ 2718.226157] ? stack_trace_save+0x8c/0xc0 [ 2718.226797] sock_alloc_send_pskb+0x7af/0x930 [ 2718.227491] ? sk_alloc+0x350/0x350 [ 2718.228044] ? ip_rcv_finish_core.constprop.0+0x4fb/0x1c90 [ 2718.228890] ? ip_rcv_finish+0x4f/0x1e0 [ 2718.229471] ? ip_rcv+0xae/0xd0 [ 2718.229977] ? __netif_receive_skb_one_core+0x19b/0x1f0 [ 2718.230780] ? __netif_receive_skb+0x27/0x1d0 [ 2718.231458] ? netif_receive_skb+0x12d/0x710 [ 2718.232146] ? tun_rx_batched.isra.0+0x462/0x710 [ 2718.232871] ? tun_get_user+0x191d/0x32f0 [ 2718.233491] ? tun_chr_write_iter+0xe1/0x1e0 [ 2718.234166] ? new_sync_write+0x42c/0x660 [ 2718.234790] ? vfs_write+0x747/0xa70 [ 2718.235368] ? ksys_write+0x12d/0x260 [ 2718.235949] ? do_syscall_64+0x33/0x40 [ 2718.236541] ? entry_SYSCALL_64_after_hwframe+0x62/0xc7 [ 2718.237343] __ip_append_data+0x1628/0x3310 [ 2718.238026] ? icmp_push_reply+0x490/0x490 [ 2718.238676] ? ip_finish_output+0x330/0x330 [ 2718.239329] ? ipv4_mtu+0x1ed/0x2c0 [ 2718.239892] ? icmp_push_reply+0x490/0x490 [ 2718.240527] ip_append_data+0x114/0x1a0 [ 2718.241141] icmp_push_reply+0x13b/0x490 [ 2718.241763] __icmp_send+0xbc9/0x14d0 [ 2718.242350] ? icmp_route_lookup.constprop.0+0x11a0/0x11a0 [ 2718.243191] ? __lockdep_reset_lock+0x180/0x180 [ 2718.243919] ? find_held_lock+0x2c/0x110 [ 2718.244562] ? ip_route_input_noref+0x160/0x2f0 [ 2718.245274] ip_options_compile+0xad/0xf0 [ 2718.245901] ? __ip_options_compile+0x15d0/0x15d0 [ 2718.246625] ? ip_list_rcv_finish.constprop.0+0x590/0x590 [ 2718.247460] ip_rcv_finish_core.constprop.0+0x4fb/0x1c90 [ 2718.248298] ip_rcv_finish+0x4f/0x1e0 [ 2718.248870] ip_rcv+0xae/0xd0 [ 2718.249346] ? ip_local_deliver+0x200/0x200 [ 2718.249994] __netif_receive_skb_one_core+0x19b/0x1f0 [ 2718.250730] ? __netif_receive_skb_core+0x3780/0x3780 [ 2718.251508] ? lockdep_hardirqs_on_prepare+0x129/0x3e0 [ 2718.252305] ? ktime_get_with_offset+0x221/0x260 [ 2718.253012] ? trace_hardirqs_on+0x5b/0x180 [ 2718.253664] ? recalibrate_cpu_khz+0x10/0x10 [ 2718.254325] __netif_receive_skb+0x27/0x1d0 [ 2718.254971] netif_receive_skb+0x12d/0x710 [ 2718.255611] ? __netif_receive_skb+0x1d0/0x1d0 [ 2718.256302] ? SOFTIRQ_verbose+0x10/0x10 [ 2718.256917] ? __lockdep_reset_lock+0x180/0x180 [ 2718.257623] tun_rx_batched.isra.0+0x462/0x710 [ 2718.258316] ? lock_acquire+0x197/0x470 [ 2718.258909] ? tun_get_user+0xee3/0x32f0 [ 2718.259519] ? tun_sock_write_space+0x1d0/0x1d0 [ 2718.260228] ? lock_release+0x680/0x680 [ 2718.260824] ? tun_get_user+0x16e6/0x32f0 [ 2718.261449] ? lock_downgrade+0x6d0/0x6d0 [ 2718.262074] ? eth_type_trans+0x2ad/0x5b0 [ 2718.262700] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 2718.263497] tun_get_user+0x191d/0x32f0 [ 2718.264121] ? usage_accumulate+0x110/0x110 [ 2718.264783] ? tun_build_skb+0xfe0/0xfe0 [ 2718.265399] ? tun_device_event+0x990/0x1160 [ 2718.266057] ? perf_trace_lock+0xac/0x490 [ 2718.266671] ? SOFTIRQ_verbose+0x10/0x10 [ 2718.267289] tun_chr_write_iter+0xe1/0x1e0 [ 2718.267932] new_sync_write+0x42c/0x660 [ 2718.268525] ? new_sync_read+0x6f0/0x6f0 [ 2718.269132] ? _cond_resched+0x12/0x80 [ 2718.269717] ? avc_policy_seqno+0x9/0x70 [ 2718.270320] ? selinux_file_permission+0x92/0x520 [ 2718.271045] ? __fget_files+0x296/0x4c0 [ 2718.271660] vfs_write+0x747/0xa70 [ 2718.272196] ksys_write+0x12d/0x260 [ 2718.272734] ? __ia32_sys_read+0xb0/0xb0 [ 2718.273341] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 2718.274055] ? syscall_enter_from_user_mode+0x1d/0x50 [ 2718.274827] do_syscall_64+0x33/0x40 [ 2718.275376] entry_SYSCALL_64_after_hwframe+0x62/0xc7 [ 2718.276148] RIP: 0033:0x7f56064f65ff [ 2718.276699] Code: 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 99 fd ff ff 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 b8 01 00 00 00 0f 05 <48> 3d 00 f0 ff ff 77 31 44 89 c7 48 89 44 24 08 e8 cc fd ff ff 48 [ 2718.279406] RSP: 002b:00007f5603ab9150 EFLAGS: 00000293 ORIG_RAX: 0000000000000001 [ 2718.280543] RAX: ffffffffffffffda RBX: 00007f5606656f60 RCX: 00007f56064f65ff [ 2718.281590] RDX: 000000000000003a RSI: 0000000020000000 RDI: 00000000000000f0 [ 2718.282636] RBP: 00007f5603ab91d0 R08: 0000000000000000 R09: 0000000000000000 [ 2718.283698] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000002 [ 2718.284746] R13: 00007ffe3650190f R14: 00007f5603ab9300 R15: 0000000000022000 05:36:50 executing program 5: ioctl$EVIOCGID(0xffffffffffffffff, 0x80084502, &(0x7f00000003c0)=""/130) ioctl$BTRFS_IOC_START_SYNC(0xffffffffffffffff, 0x80089418, &(0x7f0000000100)=0x0) ioctl$BTRFS_IOC_SNAP_DESTROY_V2(0xffffffffffffffff, 0x5000943f, &(0x7f0000002e00)={{}, r0, 0x6, @unused=[0x3, 0x0, 0x2, 0xfe], @devid}) ioctl$BTRFS_IOC_SUBVOL_CREATE_V2(0xffffffffffffffff, 0x50009418, &(0x7f0000000440)={{}, r0, 0x0, @inherit={0x68, &(0x7f0000000340)={0x0, 0x4, 0x3b9e, 0x7fff, {0x22, 0x3c72, 0x2, 0x10000, 0x401}, [0x10001, 0x0, 0x6, 0x7fff]}}, @subvolid=0x2}) ioctl$BTRFS_IOC_SET_RECEIVED_SUBVOL(0xffffffffffffffff, 0xc0c89425, &(0x7f0000000480)={"34bf07660a6a5eab1c9f6b510a9885b8", r0, 0x0, {0x9, 0x800}, {0x7c29, 0x53}, 0x7f, [0x1, 0x400000000000, 0x5, 0xcf, 0x4, 0x4, 0x38e4, 0x401, 0x1bb8, 0x2, 0x0, 0x5, 0x6, 0x0, 0x5, 0xb4]}) syz_emit_ethernet(0x32, &(0x7f0000000040)={@local, @remote, @void, {@ipv4={0x800, @igmp={{0x7, 0x4, 0x0, 0x0, 0x24, 0x0, 0x0, 0x0, 0x2, 0x0, @local, @private=0xa010102, {[@cipso={0x86, 0x8, 0x0, [{0x5, 0x2}]}]}}, {0x0, 0x0, 0x0, @broadcast}}}}}, 0x0) write$tun(0xffffffffffffffff, &(0x7f0000000000)={@void, @void, @arp=@ether_ipv6={0x1, 0x86dd, 0x6, 0x10, 0x2, @random="5166711b275d", @empty, @multicast, @private1}}, 0x34) syz_extract_tcp_res(&(0x7f0000000080)={0x41424344}, 0xee8, 0xe0) syz_extract_tcp_res$synack(&(0x7f00000000c0)={0x41424344}, 0x1, 0x0) write$tun(0xffffffffffffffff, &(0x7f0000000100)=ANY=[@ANYBLOB="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", @ANYRES32=r1, @ANYRES32=r2, @ANYBLOB="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"], 0x29d) 05:36:50 executing program 7: syz_emit_ethernet(0x10a, &(0x7f0000000180)=ANY=[@ANYBLOB="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"], 0x0) [ 2718.313851] netlink: 8 bytes leftover after parsing attributes in process `syz-executor.3'. 05:37:04 executing program 4: perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_emit_ethernet(0xfffffdef, &(0x7f0000000000)={@local, @remote, @void, {@ipv4={0x800, @tcp={{0x6, 0x4, 0x0, 0x0, 0x2c, 0x0, 0x0, 0x0, 0x32, 0x0, @dev, @private=0xa010100, {[@lsrr={0x83, 0x5}]}}, {{0x0, 0x0, 0x41424344, 0x41424344, 0x0, 0x7, 0x5}}}}}}, 0x0) openat$cgroup_devices(0xffffffffffffffff, 0x0, 0x2, 0x0) close(0xffffffffffffffff) pread64(0xffffffffffffffff, 0x0, 0x0, 0x2000) 05:37:04 executing program 7: syz_io_uring_setup(0x2a29, &(0x7f00000000c0)={0x0, 0xd261, 0xe, 0x3, 0x137}, &(0x7f0000ffd000/0x1000)=nil, &(0x7f0000ffd000/0x3000)=nil, &(0x7f0000000040)=0x0, &(0x7f0000000140)) r1 = syz_open_procfs(0x0, &(0x7f0000000180)='cgroup\x00') syz_io_uring_submit(r0, 0x0, &(0x7f0000000440)=@IORING_OP_RECVMSG={0xa, 0x1, 0x0, r1, 0x0, &(0x7f0000000400)={0x0, 0x0, &(0x7f00000001c0)=[{&(0x7f00000002c0)=""/128, 0x80}, {&(0x7f0000001e00)=""/4096, 0x1000}], 0x2, &(0x7f0000000380)=""/99, 0x63}, 0x0, 0x40000100, 0x1, {0x3}}, 0x7ff) r2 = syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000040)='./file0\x00', 0x40004, 0x3, &(0x7f0000000200)=[{&(0x7f0000000440)="2000000080000000060000006a0000000f000000000000000100000001000000004000000040000020000000e0f4655fe0f4655f0100ffff53ef010001000000dff4655f000000000000000001000000000000000b0000000001", 0x5a, 0x400}, {&(0x7f0000010400)="020000000300000004", 0x9, 0x800}, {&(0x7f0000000100)="ed4100000093b200dff4655fe0f4655fe0f4655f0000080000000400045539545cee", 0x22, 0x2100}], 0x0, &(0x7f0000000140)=ANY=[]) r3 = mmap$IORING_OFF_CQ_RING(&(0x7f0000ffc000/0x2000)=nil, 0x2000, 0x2000002, 0x80010, r2, 0x8000000) r4 = syz_io_uring_setup(0x3a75, &(0x7f0000000500)={0x0, 0x1cb1}, &(0x7f0000ffb000/0x3000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200), &(0x7f0000000100)=0x0) r6 = io_uring_register$IORING_REGISTER_PERSONALITY(r4, 0x9, 0x0, 0x0) syz_io_uring_submit(r3, r5, &(0x7f0000000180)=@IORING_OP_TEE={0x21, 0x5, 0x0, @fd, 0x0, 0x0, 0x3ff, 0x6, 0x0, {0x0, r6, r2}}, 0xfffff801) r7 = accept(r1, &(0x7f0000000580)=@vsock={0x28, 0x0, 0x0, @hyper}, &(0x7f0000000080)=0x80) syz_io_uring_submit(r0, r5, &(0x7f0000000340)=@IORING_OP_FILES_UPDATE={0x14, 0x1, 0x0, 0x0, 0xdb, &(0x7f0000000280)=[r1, r7], 0x2, 0x0, 0x0, {0x0, r6}}, 0x215) syz_io_uring_submit(r3, r5, &(0x7f00000004c0)=@IORING_OP_SYNC_FILE_RANGE={0x8, 0x3, 0x0, @fd_index=0x9, 0x0, 0x0, 0x5, 0x7}, 0x7) syz_io_uring_submit(r0, r5, &(0x7f0000000000)=@IORING_OP_READ=@use_registered_buffer={0x16, 0x0, 0x4000, @fd_index=0x7, 0x3, 0x0, 0x0, 0x8}, 0x4ed1579c) syz_emit_ethernet(0x32, &(0x7f0000000040)={@local, @remote, @void, {@ipv4={0x800, @igmp={{0x7, 0x4, 0x0, 0x0, 0x24, 0x0, 0x0, 0x0, 0x2, 0x0, @local, @private=0xa010102, {[@cipso={0x86, 0x8, 0x0, [{0x0, 0x2}]}]}}, {0x0, 0x0, 0x0, @broadcast}}}}}, 0x0) 05:37:04 executing program 5: syz_emit_ethernet(0x32, &(0x7f0000000040)={@local, @remote, @void, {@ipv4={0x800, @igmp={{0x7, 0x4, 0x0, 0x0, 0x24, 0x0, 0x0, 0x0, 0x2, 0x0, @local, @private=0xa010102, {[@cipso={0x86, 0x8, 0x0, [{0x0, 0x2}]}]}}, {0x0, 0x0, 0x0, @broadcast}}}}}, 0x0) r0 = openat$procfs(0xffffffffffffff9c, &(0x7f00000014c0)='/proc/bus/input/devices\x00', 0x0, 0x0) pread64(r0, &(0x7f0000000040)=""/4126, 0x101e, 0x2000) write$tun(r0, &(0x7f0000000080)=ANY=[@ANYBLOB="0000800a02804000ff0100020600023fff1ae2ca578f3f1e77fb88e7076454522e127af0fad9cc97c48da986cb79d411ced71cac4b73112323d8f3eb472cbcf545e975c984388e6b98a593ca099b501c034d590529b51de77b13e4090f6c2231e3d5e4e5a59c68f2e76c254aa6810f8fd53a539f35df603952fdbca7dd4b8b09fa98d556b3754b34e7f98c3bcbf3a1c09625784077ccfe2dd91561ddd7d89f976173de3d07f7e0000000000000"], 0xad) 05:37:04 executing program 1: perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_emit_ethernet(0x3a, &(0x7f0000000000)={@local, @remote, @void, {@ipv4={0x800, @tcp={{0x6, 0x4, 0x0, 0x0, 0x2c, 0x0, 0x0, 0x0, 0x32, 0x0, @dev, @private=0xa010100, {[@lsrr={0x83, 0x5}]}}, {{0x0, 0x0, 0x41424344, 0x41424344, 0x0, 0x7, 0x5}}}}}}, 0x0) (fail_nth: 13) 05:37:04 executing program 0: perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_emit_ethernet(0x3a, &(0x7f0000000000)={@local, @remote, @void, {@ipv4={0x800, @tcp={{0x6, 0x4, 0x0, 0x0, 0x2c, 0x0, 0x0, 0x0, 0x32, 0x0, @dev, @private=0xa010100, {[@lsrr={0x83, 0x5}]}}, {{0x0, 0x0, 0x41424344, 0x41424344, 0x0, 0x7, 0x5}}}}}}, 0x0) (fail_nth: 10) ioctl$BTRFS_IOC_BALANCE(0xffffffffffffffff, 0x5000940c, 0x0) close(0xffffffffffffffff) 05:37:04 executing program 3: r0 = perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x0, 0x3}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) pread64(0xffffffffffffffff, 0x0, 0x7ffffffff000, 0xf0ff1f00000000) bind$inet6(0xffffffffffffffff, &(0x7f0000000040)={0xa, 0x4e23, 0x0, @remote, 0xffff}, 0x1c) r1 = socket$netlink(0x10, 0x3, 0x0) sendmsg$nl_generic(0xffffffffffffffff, 0x0, 0x41) setsockopt$netlink_NETLINK_BROADCAST_ERROR(r1, 0x10e, 0x4, &(0x7f00000000c0)=0x1000, 0x4) sendmsg$nl_generic(r1, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000100)=ANY=[@ANYBLOB="28000000100001000000000000000000000000000500000024386a562b500000000c00008008000d00ac141400"], 0x28}}, 0x0) chdir(&(0x7f00000001c0)='./file0\x00') r2 = syz_open_dev$mouse(&(0x7f0000000400), 0x7fffffff, 0x2d0401) sendmsg$NL80211_CMD_ADD_NAN_FUNCTION(r2, &(0x7f0000000500)={&(0x7f0000000440)={0x10, 0x0, 0x0, 0x10}, 0xc, &(0x7f00000004c0)={&(0x7f00000002c0)={0x20, 0x0, 0x100, 0x70bd2b, 0x25dfdbfd, {{}, {@void, @val={0xc, 0x99, {0x3, 0x1b}}}}}, 0x20}, 0x1, 0x0, 0x0, 0x95}, 0x40000) ioctl$FICLONE(r2, 0x40049409, r0) r3 = open$dir(&(0x7f0000000000)='.\x00', 0x0, 0x0) perf_event_open(&(0x7f0000001d80)={0x6, 0x80, 0x0, 0x0, 0x0, 0x0, 0x4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffd, 0x0, @perf_bp={0x0, 0xffffffff81000000}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffd}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r4 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000040)='/proc/crypto\x00', 0x0, 0x0) r5 = openat2(r3, &(0x7f0000000180)='./file0\x00', &(0x7f0000000200)={0x800, 0x1b9}, 0x18) setsockopt$SO_TIMESTAMPING(r5, 0x1, 0x25, &(0x7f0000000240)=0x7100, 0x4) pread64(r4, &(0x7f00000010c0)=""/4088, 0xff8, 0x0) writev(0xffffffffffffffff, &(0x7f00000003c0)=[{&(0x7f0000000680)="7fd41c04550300020000000000000000010046e92ed2616f72657d044129471d4fd47924fd0900e09e0068deec02", 0x2e}], 0x1) [ 2732.165817] netlink: 8 bytes leftover after parsing attributes in process `syz-executor.3'. 05:37:04 executing program 6: r0 = socket$inet6_tcp(0xa, 0x1, 0x0) setsockopt$inet6_tcp_int(r0, 0x6, 0x2, &(0x7f0000000080)=0x90, 0x4) bind$inet6(r0, &(0x7f00000000c0)={0xa, 0x4e20, 0x0, @loopback}, 0x1c) connect$inet6(r0, &(0x7f0000000000)={0xa, 0x4e20, 0x0, @empty}, 0x1c) setsockopt$sock_int(r0, 0x1, 0x8, &(0x7f0000002ec0), 0x4) sendmsg$inet6(r0, &(0x7f00000006c0)={0x0, 0x0, &(0x7f0000000540)=[{&(0x7f00000001c0)="cf", 0xfffffdef}], 0x1}, 0x10044001) setsockopt$SO_TIMESTAMP(r0, 0x1, 0x40, &(0x7f0000000280)=0x380, 0x4) recvfrom$inet6(r0, &(0x7f0000001e00)=""/4096, 0x1000, 0xcd08, 0x0, 0x0) (fail_nth: 7) 05:37:04 executing program 2: preadv2(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x2) openat(0xffffffffffffff9c, 0x0, 0x0, 0x0) r0 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x105142, 0x62) r1 = openat(0xffffffffffffff9c, 0x0, 0x0, 0x0) fallocate(r1, 0x0, 0x0, 0x8800000) lseek(0xffffffffffffffff, 0x0, 0x0) openat(0xffffffffffffffff, 0x0, 0x0, 0x20) ioctl$FS_IOC_RESVSP(0xffffffffffffffff, 0x40305828, 0x0) faccessat2(0xffffffffffffffff, 0x0, 0x0, 0x0) openat(0xffffffffffffffff, 0x0, 0x1a340, 0x100) ioctl$LOOP_CTL_REMOVE(0xffffffffffffffff, 0x4c81, 0x0) r2 = fsmount(0xffffffffffffffff, 0x0, 0x0) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r3 = openat(r2, &(0x7f0000000000)='/proc/self/exe\x00', 0x4840, 0x2d) sendfile(r0, r3, 0x0, 0x10000000b) [ 2732.193838] FAULT_INJECTION: forcing a failure. [ 2732.193838] name failslab, interval 1, probability 0, space 0, times 0 [ 2732.195083] CPU: 1 PID: 12165 Comm: syz-executor.0 Not tainted 5.10.204 #1 [ 2732.195824] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 2732.196722] Call Trace: [ 2732.197007] dump_stack+0x107/0x167 [ 2732.197406] should_fail.cold+0x5/0xa [ 2732.197816] ? create_object.isra.0+0x3a/0xa20 [ 2732.198328] should_failslab+0x5/0x20 [ 2732.198743] kmem_cache_alloc+0x5b/0x310 [ 2732.199187] create_object.isra.0+0x3a/0xa20 [ 2732.199656] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 2732.200237] kmem_cache_alloc_trace+0x151/0x320 [ 2732.200739] ip_setup_cork+0x6ea/0x930 [ 2732.201169] ? icmp_push_reply+0x490/0x490 [ 2732.201621] ip_append_data+0x167/0x1a0 [ 2732.202059] icmp_push_reply+0x13b/0x490 [ 2732.202512] __icmp_send+0xbc9/0x14d0 [ 2732.202937] ? icmp_route_lookup.constprop.0+0x11a0/0x11a0 [ 2732.203549] ? __lockdep_reset_lock+0x180/0x180 [ 2732.204058] ? find_held_lock+0x2c/0x110 [ 2732.204524] ? ip_route_input_noref+0x160/0x2f0 [ 2732.205030] ip_options_compile+0xad/0xf0 [ 2732.205485] ? __ip_options_compile+0x15d0/0x15d0 [ 2732.206011] ? ip_list_rcv_finish.constprop.0+0x590/0x590 [ 2732.206620] ip_rcv_finish_core.constprop.0+0x4fb/0x1c90 [ 2732.207222] ip_rcv_finish+0x4f/0x1e0 [ 2732.207659] ip_rcv+0xae/0xd0 [ 2732.208026] ? ip_local_deliver+0x200/0x200 [ 2732.208522] __netif_receive_skb_one_core+0x19b/0x1f0 [ 2732.209081] ? __netif_receive_skb_core+0x3780/0x3780 [ 2732.209656] ? __lock_acquire+0xbb1/0x5b00 [ 2732.210132] __netif_receive_skb+0x27/0x1d0 [ 2732.210610] netif_receive_skb+0x12d/0x710 [ 2732.211072] ? __netif_receive_skb+0x1d0/0x1d0 [ 2732.211143] FAULT_INJECTION: forcing a failure. [ 2732.211143] name failslab, interval 1, probability 0, space 0, times 0 [ 2732.211572] ? SOFTIRQ_verbose+0x10/0x10 [ 2732.211587] ? __lockdep_reset_lock+0x180/0x180 [ 2732.211610] tun_rx_batched.isra.0+0x462/0x710 [ 2732.215307] ? lock_acquire+0x197/0x470 [ 2732.215747] ? tun_get_user+0xee3/0x32f0 [ 2732.216213] ? tun_sock_write_space+0x1d0/0x1d0 [ 2732.216728] ? lock_release+0x680/0x680 [ 2732.217169] ? tun_get_user+0x16e6/0x32f0 [ 2732.217625] ? lock_downgrade+0x6d0/0x6d0 [ 2732.218089] ? eth_type_trans+0x2ad/0x5b0 [ 2732.218552] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 2732.219132] tun_get_user+0x191d/0x32f0 [ 2732.219567] ? usage_accumulate+0x110/0x110 [ 2732.220053] ? tun_build_skb+0xfe0/0xfe0 [ 2732.220504] ? tun_device_event+0x990/0x1160 [ 2732.220986] ? perf_trace_lock+0xac/0x490 [ 2732.221438] ? SOFTIRQ_verbose+0x10/0x10 [ 2732.221890] tun_chr_write_iter+0xe1/0x1e0 [ 2732.222358] new_sync_write+0x42c/0x660 [ 2732.222795] ? new_sync_read+0x6f0/0x6f0 [ 2732.223241] ? _cond_resched+0x12/0x80 [ 2732.223673] ? avc_policy_seqno+0x9/0x70 [ 2732.224128] ? selinux_file_permission+0x92/0x520 [ 2732.224669] ? __fget_files+0x296/0x4c0 [ 2732.225112] vfs_write+0x747/0xa70 [ 2732.225505] ksys_write+0x12d/0x260 [ 2732.225903] ? __ia32_sys_read+0xb0/0xb0 [ 2732.226351] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 2732.226927] ? syscall_enter_from_user_mode+0x1d/0x50 [ 2732.227497] do_syscall_64+0x33/0x40 [ 2732.227919] entry_SYSCALL_64_after_hwframe+0x62/0xc7 [ 2732.228474] RIP: 0033:0x7fc05d62c5ff [ 2732.228884] Code: 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 99 fd ff ff 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 b8 01 00 00 00 0f 05 <48> 3d 00 f0 ff ff 77 31 44 89 c7 48 89 44 24 08 e8 cc fd ff ff 48 [ 2732.230868] RSP: 002b:00007fc05abef150 EFLAGS: 00000293 ORIG_RAX: 0000000000000001 [ 2732.231703] RAX: ffffffffffffffda RBX: 00007fc05d78cf60 RCX: 00007fc05d62c5ff [ 2732.232497] RDX: 000000000000003a RSI: 0000000020000000 RDI: 00000000000000f0 [ 2732.233277] RBP: 00007fc05abef1d0 R08: 0000000000000000 R09: 0000000000000000 [ 2732.234054] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000002 [ 2732.234831] R13: 00007ffc5aac442f R14: 00007fc05abef300 R15: 0000000000022000 [ 2732.235634] CPU: 0 PID: 12168 Comm: syz-executor.1 Not tainted 5.10.204 #1 [ 2732.237097] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 2732.238822] Call Trace: [ 2732.239381] dump_stack+0x107/0x167 [ 2732.239654] FAULT_INJECTION: forcing a failure. [ 2732.239654] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 2732.240165] should_fail.cold+0x5/0xa [ 2732.240208] should_failslab+0x5/0x20 [ 2732.242949] __kmalloc_node_track_caller+0x74/0x3b0 [ 2732.243987] ? alloc_skb_with_frags+0x92/0x570 [ 2732.244911] __alloc_skb+0xb1/0x5b0 [ 2732.245679] alloc_skb_with_frags+0x92/0x570 [ 2732.246577] ? stack_trace_save+0x8c/0xc0 [ 2732.247446] sock_alloc_send_pskb+0x7af/0x930 [ 2732.248347] ? perf_trace_run_bpf_submit+0xf5/0x190 [ 2732.249406] ? sk_alloc+0x350/0x350 [ 2732.250143] ? ip_rcv_finish_core.constprop.0+0x4fb/0x1c90 [ 2732.251281] ? ip_rcv_finish+0x4f/0x1e0 [ 2732.252084] ? ip_rcv+0xae/0xd0 [ 2732.252770] ? __netif_receive_skb_one_core+0x19b/0x1f0 [ 2732.253820] ? __netif_receive_skb+0x27/0x1d0 [ 2732.254741] ? netif_receive_skb+0x12d/0x710 [ 2732.255629] ? tun_rx_batched.isra.0+0x462/0x710 [ 2732.256620] ? tun_get_user+0x191d/0x32f0 [ 2732.257460] ? tun_chr_write_iter+0xe1/0x1e0 [ 2732.258341] ? new_sync_write+0x42c/0x660 [ 2732.259192] ? vfs_write+0x747/0xa70 [ 2732.259936] ? ksys_write+0x12d/0x260 [ 2732.260725] ? do_syscall_64+0x33/0x40 [ 2732.261509] ? entry_SYSCALL_64_after_hwframe+0x62/0xc7 [ 2732.262623] __ip_append_data+0x1628/0x3310 [ 2732.263520] ? icmp_push_reply+0x490/0x490 [ 2732.264435] ? ip_finish_output+0x330/0x330 [ 2732.265302] ? ipv4_mtu+0x1ed/0x2c0 [ 2732.266071] ? icmp_push_reply+0x490/0x490 [ 2732.266915] ip_append_data+0x114/0x1a0 [ 2732.267771] icmp_push_reply+0x13b/0x490 [ 2732.268609] __icmp_send+0xbc9/0x14d0 [ 2732.269426] ? icmp_route_lookup.constprop.0+0x11a0/0x11a0 [ 2732.270604] ? __lockdep_reset_lock+0x180/0x180 [ 2732.271592] ? find_held_lock+0x2c/0x110 [ 2732.272489] ? ip_route_input_noref+0x160/0x2f0 [ 2732.273462] ip_options_compile+0xad/0xf0 [ 2732.274301] ? __ip_options_compile+0x15d0/0x15d0 [ 2732.275298] ? ip_list_rcv_finish.constprop.0+0x590/0x590 [ 2732.276479] ip_rcv_finish_core.constprop.0+0x4fb/0x1c90 [ 2732.277613] ip_rcv_finish+0x4f/0x1e0 [ 2732.278381] ip_rcv+0xae/0xd0 [ 2732.279029] ? ip_local_deliver+0x200/0x200 [ 2732.279904] __netif_receive_skb_one_core+0x19b/0x1f0 [ 2732.280965] ? __netif_receive_skb_core+0x3780/0x3780 [ 2732.282034] ? __lock_acquire+0xbb1/0x5b00 [ 2732.282927] __netif_receive_skb+0x27/0x1d0 [ 2732.283888] netif_receive_skb+0x12d/0x710 [ 2732.284765] ? __netif_receive_skb+0x1d0/0x1d0 [ 2732.285684] ? SOFTIRQ_verbose+0x10/0x10 [ 2732.286537] ? __lockdep_reset_lock+0x180/0x180 [ 2732.287486] tun_rx_batched.isra.0+0x462/0x710 [ 2732.288436] ? lock_acquire+0x197/0x470 [ 2732.289240] ? tun_get_user+0xee3/0x32f0 [ 2732.290083] ? tun_sock_write_space+0x1d0/0x1d0 [ 2732.291021] ? lock_release+0x680/0x680 [ 2732.291859] ? tun_get_user+0x16e6/0x32f0 [ 2732.292684] ? lock_downgrade+0x6d0/0x6d0 [ 2732.293538] ? eth_type_trans+0x2ad/0x5b0 [ 2732.294399] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 2732.295492] tun_get_user+0x191d/0x32f0 [ 2732.296296] ? usage_accumulate+0x110/0x110 [ 2732.297231] ? tun_build_skb+0xfe0/0xfe0 [ 2732.298060] ? tun_device_event+0x990/0x1160 [ 2732.298980] ? SOFTIRQ_verbose+0x10/0x10 [ 2732.299856] tun_chr_write_iter+0xe1/0x1e0 [ 2732.300711] new_sync_write+0x42c/0x660 [ 2732.301540] ? new_sync_read+0x6f0/0x6f0 [ 2732.302363] ? _cond_resched+0x12/0x80 [ 2732.303180] ? avc_policy_seqno+0x9/0x70 [ 2732.304008] ? selinux_file_permission+0x92/0x520 [ 2732.305020] ? __fget_files+0x296/0x4c0 [ 2732.305870] vfs_write+0x747/0xa70 [ 2732.306622] ksys_write+0x12d/0x260 [ 2732.307377] ? __ia32_sys_read+0xb0/0xb0 [ 2732.308235] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 2732.309314] ? syscall_enter_from_user_mode+0x1d/0x50 [ 2732.310397] do_syscall_64+0x33/0x40 [ 2732.311156] entry_SYSCALL_64_after_hwframe+0x62/0xc7 [ 2732.312241] RIP: 0033:0x7f56064f65ff [ 2732.313012] Code: 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 99 fd ff ff 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 b8 01 00 00 00 0f 05 <48> 3d 00 f0 ff ff 77 31 44 89 c7 48 89 44 24 08 e8 cc fd ff ff 48 [ 2732.316773] RSP: 002b:00007f5603ab9150 EFLAGS: 00000293 ORIG_RAX: 0000000000000001 [ 2732.318346] RAX: ffffffffffffffda RBX: 00007f5606656f60 RCX: 00007f56064f65ff [ 2732.319809] RDX: 000000000000003a RSI: 0000000020000000 RDI: 00000000000000f0 [ 2732.321273] RBP: 00007f5603ab91d0 R08: 0000000000000000 R09: 0000000000000000 [ 2732.322738] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000002 [ 2732.324207] R13: 00007ffe3650190f R14: 00007f5603ab9300 R15: 0000000000022000 [ 2732.325712] CPU: 1 PID: 12170 Comm: syz-executor.6 Not tainted 5.10.204 #1 [ 2732.326478] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 2732.327393] Call Trace: [ 2732.327681] dump_stack+0x107/0x167 [ 2732.328085] should_fail.cold+0x5/0xa [ 2732.328505] _copy_to_iter+0x264/0x12d0 [ 2732.328954] ? mark_lock+0xf5/0x2df0 [ 2732.329379] ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0 [ 2732.329957] ? SOFTIRQ_verbose+0x10/0x10 [ 2732.330402] ? _copy_from_iter_nocache+0xd60/0xd60 [ 2732.330931] ? lock_chain_count+0x20/0x20 [ 2732.331380] ? __virt_addr_valid+0x128/0x350 [ 2732.331871] ? __check_object_size+0x319/0x440 [ 2732.332360] simple_copy_to_iter+0x4c/0x70 [ 2732.332825] __skb_datagram_iter+0x4f7/0x880 [ 2732.333314] ? zerocopy_sg_from_iter+0x110/0x110 [ 2732.333847] skb_copy_datagram_iter+0x88/0x190 [ 2732.334349] tcp_recvmsg+0x13b5/0x2930 [ 2732.334796] ? tcp_splice_read+0x8c0/0x8c0 [ 2732.335267] ? sock_has_perm+0x1ea/0x280 [ 2732.335719] ? selinux_socket_post_create+0x7f0/0x7f0 [ 2732.336296] ? lock_downgrade+0x6d0/0x6d0 [ 2732.336751] ? perf_trace_lock+0xac/0x490 [ 2732.337206] ? tcp_splice_read+0x8c0/0x8c0 [ 2732.337672] inet6_recvmsg+0x13b/0x6e0 [ 2732.338105] ? inet6_bind+0x120/0x120 [ 2732.338527] ? security_socket_recvmsg+0x95/0xc0 [ 2732.339053] ? inet6_bind+0x120/0x120 [ 2732.339476] sock_recvmsg+0xff/0x180 [ 2732.339912] __sys_recvfrom+0x1be/0x2f0 [ 2732.340355] ? __ia32_sys_send+0x100/0x100 [ 2732.340820] ? lock_downgrade+0x6d0/0x6d0 [ 2732.341293] ? wait_for_completion_io+0x270/0x270 [ 2732.341828] ? rcu_read_lock_any_held+0x75/0xa0 [ 2732.342341] ? vfs_write+0x354/0xa70 [ 2732.342773] ? fput_many+0x2f/0x1a0 [ 2732.343179] ? ksys_write+0x1a9/0x260 [ 2732.343601] ? __ia32_sys_read+0xb0/0xb0 [ 2732.344057] __x64_sys_recvfrom+0xdd/0x1b0 [ 2732.344530] ? syscall_enter_from_user_mode+0x1d/0x50 [ 2732.345098] do_syscall_64+0x33/0x40 [ 2732.345508] entry_SYSCALL_64_after_hwframe+0x62/0xc7 [ 2732.346070] RIP: 0033:0x7f7d1addbb19 [ 2732.346481] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 2732.348532] RSP: 002b:00007f7d18330188 EFLAGS: 00000246 ORIG_RAX: 000000000000002d [ 2732.349381] RAX: ffffffffffffffda RBX: 00007f7d1aeef020 RCX: 00007f7d1addbb19 [ 2732.350161] RDX: 0000000000001000 RSI: 0000000020001e00 RDI: 0000000000000003 [ 2732.350958] RBP: 00007f7d183301d0 R08: 0000000000000000 R09: 0000000000000000 [ 2732.351755] R10: 000000000000cd08 R11: 0000000000000246 R12: 0000000000000001 [ 2732.352588] R13: 00007ffe0ac926cf R14: 00007f7d18330300 R15: 0000000000022000 [ 2732.365100] EXT4-fs (loop7): Unrecognized mount option "ÿÿÿÿÿÿÿÿ" or missing value 05:37:04 executing program 5: syz_emit_ethernet(0x32, &(0x7f0000000040)=ANY=[@ANYBLOB="aaaaaaaaaaaaaaa9249adc0d0c5b77aaaaaaaabb08ac1414aa0a01010286080000000000d651009078ffffffff0000000000"], 0x0) 05:37:05 executing program 1: perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_emit_ethernet(0x3a, &(0x7f0000000000)={@local, @remote, @void, {@ipv4={0x800, @tcp={{0x6, 0x4, 0x0, 0x0, 0x2c, 0x0, 0x0, 0x0, 0x32, 0x0, @dev, @private=0xa010100, {[@lsrr={0x83, 0x5}]}}, {{0x0, 0x0, 0x41424344, 0x41424344, 0x0, 0x7, 0x5}}}}}}, 0x0) (fail_nth: 14) 05:37:05 executing program 0: perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_emit_ethernet(0x3a, &(0x7f0000000000)={@local, @remote, @void, {@ipv4={0x800, @tcp={{0x6, 0x4, 0x0, 0x0, 0x2c, 0x0, 0x0, 0x0, 0x32, 0x0, @dev, @private=0xa010100, {[@lsrr={0x83, 0x5}]}}, {{0x0, 0x0, 0x41424344, 0x41424344, 0x0, 0x7, 0x5}}}}}}, 0x0) (fail_nth: 11) ioctl$BTRFS_IOC_BALANCE(0xffffffffffffffff, 0x5000940c, 0x0) close(0xffffffffffffffff) [ 2732.423194] FAULT_INJECTION: forcing a failure. [ 2732.423194] name failslab, interval 1, probability 0, space 0, times 0 [ 2732.424457] CPU: 1 PID: 12179 Comm: syz-executor.1 Not tainted 5.10.204 #1 [ 2732.425200] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 2732.426096] Call Trace: [ 2732.426392] dump_stack+0x107/0x167 [ 2732.426794] should_fail.cold+0x5/0xa [ 2732.427215] ? ___slab_alloc+0x155/0x700 [ 2732.427657] ? create_object.isra.0+0x3a/0xa20 [ 2732.428166] should_failslab+0x5/0x20 [ 2732.428573] kmem_cache_alloc+0x5b/0x310 [ 2732.429025] create_object.isra.0+0x3a/0xa20 [ 2732.429498] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 2732.430059] __kmalloc_node_track_caller+0x1a6/0x3b0 [ 2732.430611] ? alloc_skb_with_frags+0x92/0x570 [ 2732.431112] __alloc_skb+0xb1/0x5b0 [ 2732.431507] alloc_skb_with_frags+0x92/0x570 [ 2732.431992] ? stack_trace_save+0x8c/0xc0 [ 2732.432455] sock_alloc_send_pskb+0x7af/0x930 [ 2732.432950] ? sk_alloc+0x350/0x350 [ 2732.433352] ? ip_rcv_finish_core.constprop.0+0x4fb/0x1c90 [ 2732.433946] ? ip_rcv_finish+0x4f/0x1e0 [ 2732.434379] ? ip_rcv+0xae/0xd0 [ 2732.434731] ? __netif_receive_skb_one_core+0x19b/0x1f0 [ 2732.435301] ? __netif_receive_skb+0x27/0x1d0 [ 2732.435775] ? netif_receive_skb+0x12d/0x710 [ 2732.436270] ? tun_rx_batched.isra.0+0x462/0x710 [ 2732.436776] ? tun_get_user+0x191d/0x32f0 [ 2732.437231] ? tun_chr_write_iter+0xe1/0x1e0 [ 2732.437718] ? new_sync_write+0x42c/0x660 [ 2732.438174] ? vfs_write+0x747/0xa70 [ 2732.438584] ? ksys_write+0x12d/0x260 [ 2732.439004] ? do_syscall_64+0x33/0x40 [ 2732.439429] ? entry_SYSCALL_64_after_hwframe+0x62/0xc7 [ 2732.440026] __ip_append_data+0x1628/0x3310 [ 2732.440508] ? icmp_push_reply+0x490/0x490 [ 2732.440978] ? ip_finish_output+0x330/0x330 [ 2732.441453] ? ipv4_mtu+0x1ed/0x2c0 [ 2732.441860] ? icmp_push_reply+0x490/0x490 [ 2732.442328] ip_append_data+0x114/0x1a0 [ 2732.442775] icmp_push_reply+0x13b/0x490 [ 2732.443229] __icmp_send+0xbc9/0x14d0 [ 2732.443662] ? icmp_route_lookup.constprop.0+0x11a0/0x11a0 [ 2732.444285] ? __lockdep_reset_lock+0x180/0x180 [ 2732.444798] ? find_held_lock+0x2c/0x110 [ 2732.445264] ? ip_route_input_noref+0x160/0x2f0 [ 2732.445785] ip_options_compile+0xad/0xf0 [ 2732.446239] ? __ip_options_compile+0x15d0/0x15d0 [ 2732.446767] ? ip_list_rcv_finish.constprop.0+0x590/0x590 [ 2732.447371] ip_rcv_finish_core.constprop.0+0x4fb/0x1c90 [ 2732.448000] ip_rcv_finish+0x4f/0x1e0 [ 2732.448420] ip_rcv+0xae/0xd0 [ 2732.448764] ? ip_local_deliver+0x200/0x200 [ 2732.449243] __netif_receive_skb_one_core+0x19b/0x1f0 [ 2732.449822] ? __netif_receive_skb_core+0x3780/0x3780 [ 2732.450399] ? lockdep_hardirqs_on_prepare+0x129/0x3e0 [ 2732.450978] ? ktime_get_with_offset+0x221/0x260 [ 2732.451503] ? trace_hardirqs_on+0x5b/0x180 [ 2732.451999] ? recalibrate_cpu_khz+0x10/0x10 [ 2732.452489] __netif_receive_skb+0x27/0x1d0 [ 2732.452964] netif_receive_skb+0x12d/0x710 [ 2732.453431] ? __netif_receive_skb+0x1d0/0x1d0 [ 2732.453934] ? SOFTIRQ_verbose+0x10/0x10 [ 2732.454389] ? __lockdep_reset_lock+0x180/0x180 [ 2732.454908] tun_rx_batched.isra.0+0x462/0x710 [ 2732.455418] ? lock_acquire+0x197/0x470 [ 2732.455870] ? tun_get_user+0xee3/0x32f0 [ 2732.456324] ? tun_sock_write_space+0x1d0/0x1d0 [ 2732.456834] ? lock_release+0x680/0x680 [ 2732.457278] ? tun_get_user+0x16e6/0x32f0 [ 2732.457740] ? lock_downgrade+0x6d0/0x6d0 [ 2732.458200] ? eth_type_trans+0x2ad/0x5b0 [ 2732.458664] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 2732.459245] tun_get_user+0x191d/0x32f0 [ 2732.459690] ? usage_accumulate+0x110/0x110 [ 2732.460186] ? tun_build_skb+0xfe0/0xfe0 [ 2732.460656] ? tun_device_event+0x990/0x1160 [ 2732.461146] ? perf_trace_lock+0xac/0x490 [ 2732.461609] ? SOFTIRQ_verbose+0x10/0x10 [ 2732.462064] tun_chr_write_iter+0xe1/0x1e0 [ 2732.462540] new_sync_write+0x42c/0x660 [ 2732.462983] ? new_sync_read+0x6f0/0x6f0 [ 2732.463439] ? _cond_resched+0x12/0x80 [ 2732.463896] ? avc_policy_seqno+0x9/0x70 [ 2732.464347] ? selinux_file_permission+0x92/0x520 [ 2732.464896] ? __fget_files+0x296/0x4c0 [ 2732.465346] vfs_write+0x747/0xa70 [ 2732.465748] ksys_write+0x12d/0x260 [ 2732.466152] ? __ia32_sys_read+0xb0/0xb0 [ 2732.466606] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 2732.467188] ? syscall_enter_from_user_mode+0x1d/0x50 [ 2732.467754] do_syscall_64+0x33/0x40 [ 2732.468183] entry_SYSCALL_64_after_hwframe+0x62/0xc7 [ 2732.468747] RIP: 0033:0x7f56064f65ff [ 2732.469160] Code: 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 99 fd ff ff 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 b8 01 00 00 00 0f 05 <48> 3d 00 f0 ff ff 77 31 44 89 c7 48 89 44 24 08 e8 cc fd ff ff 48 [ 2732.471181] RSP: 002b:00007f5603ab9150 EFLAGS: 00000293 ORIG_RAX: 0000000000000001 [ 2732.472056] RAX: ffffffffffffffda RBX: 00007f5606656f60 RCX: 00007f56064f65ff [ 2732.472844] RDX: 000000000000003a RSI: 0000000020000000 RDI: 00000000000000f0 [ 2732.473628] RBP: 00007f5603ab91d0 R08: 0000000000000000 R09: 0000000000000000 [ 2732.474413] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000002 [ 2732.475208] R13: 00007ffe3650190f R14: 00007f5603ab9300 R15: 0000000000022000 05:37:05 executing program 3: r0 = perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x0, 0x3}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) pread64(0xffffffffffffffff, 0x0, 0x7ffffffff000, 0xf0ff1f00000000) bind$inet6(0xffffffffffffffff, &(0x7f0000000040)={0xa, 0x4e23, 0x0, @remote, 0xffff}, 0x1c) r1 = socket$netlink(0x10, 0x3, 0x0) sendmsg$nl_generic(0xffffffffffffffff, 0x0, 0x41) setsockopt$netlink_NETLINK_BROADCAST_ERROR(r1, 0x10e, 0x4, &(0x7f00000000c0)=0x1000, 0x4) sendmsg$nl_generic(r1, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000100)=ANY=[@ANYBLOB="28000000100001000000000000000000000000000500000024386a562b500000000c00008008000d00ac141400"], 0x28}}, 0x0) chdir(&(0x7f00000001c0)='./file0\x00') r2 = syz_open_dev$mouse(&(0x7f0000000400), 0x7fffffff, 0x2d0401) sendmsg$NL80211_CMD_ADD_NAN_FUNCTION(r2, &(0x7f0000000500)={&(0x7f0000000440)={0x10, 0x0, 0x0, 0x10}, 0xc, &(0x7f00000004c0)={&(0x7f00000002c0)={0x20, 0x0, 0x100, 0x70bd2b, 0x25dfdbfd, {{}, {@void, @val={0xc, 0x99, {0x3, 0x1b}}}}}, 0x20}, 0x1, 0x0, 0x0, 0x95}, 0x40000) ioctl$FICLONE(r2, 0x40049409, r0) r3 = open$dir(&(0x7f0000000000)='.\x00', 0x0, 0x0) perf_event_open(&(0x7f0000001d80)={0x6, 0x80, 0x0, 0x0, 0x0, 0x0, 0x4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffd, 0x0, @perf_bp={0x0, 0xffffffff81000000}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffd}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r4 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000040)='/proc/crypto\x00', 0x0, 0x0) r5 = openat2(r3, &(0x7f0000000180)='./file0\x00', &(0x7f0000000200)={0x800, 0x1b9}, 0x18) setsockopt$SO_TIMESTAMPING(r5, 0x1, 0x25, &(0x7f0000000240)=0x7100, 0x4) pread64(r4, &(0x7f00000010c0)=""/4088, 0xff8, 0x0) writev(0xffffffffffffffff, &(0x7f00000003c0)=[{&(0x7f0000000680)="7fd41c04550300020000000000000000010046e92ed2616f72657d044129471d4fd47924fd0900e09e0068deec02", 0x2e}], 0x1) 05:37:05 executing program 4: perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_emit_ethernet(0xfffffffffffffdef, &(0x7f0000000000)={@local, @remote, @void, {@ipv4={0x800, @tcp={{0x6, 0x4, 0x0, 0x0, 0x2c, 0x0, 0x0, 0x0, 0x32, 0x0, @dev, @private=0xa010100, {[@lsrr={0x83, 0x5}]}}, {{0x0, 0x0, 0x41424344, 0x41424344, 0x0, 0x7, 0x5}}}}}}, 0x0) openat$cgroup_devices(0xffffffffffffffff, 0x0, 0x2, 0x0) close(0xffffffffffffffff) pread64(0xffffffffffffffff, 0x0, 0x0, 0x2000) 05:37:05 executing program 2: preadv2(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x2) openat(0xffffffffffffff9c, 0x0, 0x0, 0x0) r0 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x105142, 0x62) r1 = openat(0xffffffffffffff9c, 0x0, 0x0, 0x0) fallocate(r1, 0x0, 0x0, 0x8800000) lseek(0xffffffffffffffff, 0x0, 0x0) openat(0xffffffffffffffff, 0x0, 0x0, 0x20) ioctl$FS_IOC_RESVSP(0xffffffffffffffff, 0x40305828, 0x0) faccessat2(0xffffffffffffffff, 0x0, 0x0, 0x0) openat(0xffffffffffffffff, 0x0, 0x1a340, 0x100) ioctl$LOOP_CTL_REMOVE(0xffffffffffffffff, 0x4c81, 0x0) r2 = fsmount(0xffffffffffffffff, 0x0, 0x0) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r3 = openat(r2, &(0x7f0000000000)='/proc/self/exe\x00', 0x4840, 0x2d) sendfile(r0, r3, 0x0, 0x10000000c) 05:37:05 executing program 1: perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_emit_ethernet(0x3a, &(0x7f0000000000)={@local, @remote, @void, {@ipv4={0x800, @tcp={{0x6, 0x4, 0x0, 0x0, 0x2c, 0x0, 0x0, 0x0, 0x32, 0x0, @dev, @private=0xa010100, {[@lsrr={0x83, 0x5}]}}, {{0x0, 0x0, 0x41424344, 0x41424344, 0x0, 0x7, 0x5}}}}}}, 0x0) (fail_nth: 15) 05:37:05 executing program 5: r0 = socket$nl_xfrm(0x10, 0x3, 0x6) r1 = socket$inet6_udplite(0xa, 0x2, 0x88) r2 = syz_genetlink_get_family_id$tipc(&(0x7f0000000680), 0xffffffffffffffff) sendmsg$TIPC_CMD_SET_LINK_WINDOW(0xffffffffffffffff, &(0x7f0000000780)={&(0x7f0000000640)={0x10, 0x0, 0x0, 0x800}, 0xc, &(0x7f0000000700)={&(0x7f00000006c0)={0xffffffffffffffd2, r2, 0x8, 0x70bd29, 0x25dfdbff, {{}, {}, {0x14, 0x18, {0xfffffff9, @bearer=@udp='udp:syz0\x00'}}}, ["", "", "", "", "", "", ""]}, 0x30}, 0x1, 0x0, 0x0, 0x20044054}, 0x44040) r3 = dup(r1) r4 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a) ioctl$sock_SIOCGIFINDEX(r4, 0x8933, &(0x7f0000000140)={'syz_tun\x00', 0x0}) ioctl$sock_inet6_SIOCDIFADDR(r3, 0x8936, &(0x7f0000000080)={@local, 0x78, r5}) ioctl$sock_inet6_SIOCDIFADDR(r3, 0x8916, &(0x7f0000000100)={@mcast1, 0x0, r5}) sendmsg$DCCPDIAG_GETSOCK(0xffffffffffffffff, &(0x7f0000000240)={&(0x7f00000000c0)={0x10, 0x0, 0x0, 0x1000000}, 0xc, &(0x7f0000000100)={&(0x7f0000000300)=ANY=[@ANYBLOB="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", @ANYRES32=r5, @ANYBLOB="000000000700000003000000010000000b0001008c5d14ca7613a300540001009cb0a60b6a57da9d360d1980b21c742168957b1b7270c743b4d264a8a369a7f31382dd0e73aade3ae87a78526b571240a835b80fe03294cc4925a521931ebbc2044c5065c5ced00fd51a9a4d6551854b"], 0xac}, 0x1, 0x0, 0x0, 0x10}, 0x0) sendmsg$nl_xfrm(r0, &(0x7f0000002e00)={0x0, 0x0, &(0x7f0000002dc0)={&(0x7f0000000000)=@updsa={0xf0, 0x1a, 0x1, 0x0, 0x0, {{@in=@multicast2, @in=@empty, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, r5, 0xee01}, {@in6=@private2, 0x0, 0x33}, @in=@local, {0x0, 0x0, 0x0, 0x0, 0x800000000}, {0x0, 0x0, 0x4}, {}, 0x0, 0x0, 0xa}}, 0xf0}}, 0x0) recvmsg(0xffffffffffffffff, &(0x7f0000000300)={&(0x7f0000000080)=@can={0x1d, 0x0}, 0x80, &(0x7f0000000280)=[{&(0x7f0000000100)=""/88, 0x58}, {&(0x7f0000000180)=""/201, 0xc9}], 0x2, &(0x7f00000002c0)=""/4, 0x4}, 0x40010000) ioctl$ifreq_SIOCGIFINDEX_team(0xffffffffffffffff, 0x8933, &(0x7f0000000340)={'team0\x00', 0x0}) ioctl$sock_ipv6_tunnel_SIOCDELTUNNEL(0xffffffffffffffff, 0x89f2, &(0x7f0000000400)={'sit0\x00', &(0x7f0000000380)={'ip6_vti0\x00', 0x0, 0x4, 0xb9, 0x4, 0x3, 0x20, @rand_addr=' \x01\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x02', @remote, 0x40, 0x700, 0x8, 0x9}}) sendmsg$ETHTOOL_MSG_COALESCE_GET(0xffffffffffffffff, &(0x7f0000000600)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x4000000}, 0xc, &(0x7f00000005c0)={&(0x7f0000000440)={0x160, 0x0, 0x400, 0x70bd25, 0x25dfdbfe, {}, [@HEADER={0x40, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_FLAGS={0x8, 0x3, 0x4}, @ETHTOOL_A_HEADER_FLAGS={0x8}, @ETHTOOL_A_HEADER_DEV_INDEX={0x8, 0x1, r5}, @ETHTOOL_A_HEADER_DEV_INDEX={0x8, 0x1, r6}, @ETHTOOL_A_HEADER_FLAGS={0x8, 0x3, 0xca456bf029000909}, @ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'rose0\x00'}]}, @HEADER={0x40, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_FLAGS={0x8, 0x3, 0x2}, @ETHTOOL_A_HEADER_DEV_INDEX={0x8}, @ETHTOOL_A_HEADER_DEV_INDEX={0x8}, @ETHTOOL_A_HEADER_DEV_INDEX={0x8, 0x1, r7}, @ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'dummy0\x00'}, @ETHTOOL_A_HEADER_FLAGS={0x8, 0x3, 0x2}]}, @HEADER={0x5c, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_DEV_INDEX={0x8, 0x1, r8}, @ETHTOOL_A_HEADER_DEV_INDEX={0x8}, @ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'macvtap0\x00'}, @ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'syzkaller0\x00'}, @ETHTOOL_A_HEADER_FLAGS={0x8, 0x3, 0x2}, @ETHTOOL_A_HEADER_FLAGS={0x8, 0x3, 0x3}, @ETHTOOL_A_HEADER_FLAGS={0x8}, @ETHTOOL_A_HEADER_DEV_INDEX={0x8}]}, @HEADER={0x14, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_FLAGS={0x8, 0x3, 0x1}, @ETHTOOL_A_HEADER_DEV_INDEX={0x8}]}, @HEADER={0x5c, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_FLAGS={0x8, 0x3, 0x3}, @ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'ip6gretap0\x00'}, @ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'vxcan1\x00'}, @ETHTOOL_A_HEADER_FLAGS={0x8}, @ETHTOOL_A_HEADER_DEV_INDEX={0x8}, @ETHTOOL_A_HEADER_FLAGS={0x8}, @ETHTOOL_A_HEADER_DEV_INDEX={0x8}, @ETHTOOL_A_HEADER_FLAGS={0x8, 0x3, 0x1}]}]}, 0x160}, 0x1, 0x0, 0x0, 0x2000c894}, 0xc000) syz_emit_ethernet(0x32, &(0x7f0000000040)=ANY=[@ANYBLOB="aaaaaaaaaaaaaaaaaaaaaabbfbff460000240000000000018000001414aa0a010102860800000000000200009078ffffffff"], 0x0) [ 2732.567114] FAULT_INJECTION: forcing a failure. [ 2732.567114] name failslab, interval 1, probability 0, space 0, times 0 [ 2732.567472] netlink: 8 bytes leftover after parsing attributes in process `syz-executor.3'. [ 2732.568406] CPU: 1 PID: 12192 Comm: syz-executor.0 Not tainted 5.10.204 #1 [ 2732.568413] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 2732.568417] Call Trace: [ 2732.568433] dump_stack+0x107/0x167 [ 2732.568452] should_fail.cold+0x5/0xa [ 2732.568465] ? __alloc_skb+0x6d/0x5b0 [ 2732.568479] should_failslab+0x5/0x20 [ 2732.568491] kmem_cache_alloc_node+0x55/0x330 [ 2732.568506] __alloc_skb+0x6d/0x5b0 [ 2732.568522] alloc_skb_with_frags+0x92/0x570 [ 2732.568538] ? stack_trace_save+0x8c/0xc0 [ 2732.568554] sock_alloc_send_pskb+0x7af/0x930 [ 2732.568581] ? sk_alloc+0x350/0x350 [ 2732.576500] ? ip_rcv_finish_core.constprop.0+0x4fb/0x1c90 [ 2732.577102] ? ip_rcv_finish+0x4f/0x1e0 [ 2732.577527] ? ip_rcv+0xae/0xd0 [ 2732.577874] ? __netif_receive_skb_one_core+0x19b/0x1f0 [ 2732.578449] ? __netif_receive_skb+0x27/0x1d0 [ 2732.578925] ? netif_receive_skb+0x12d/0x710 [ 2732.579412] ? tun_rx_batched.isra.0+0x462/0x710 [ 2732.579962] ? tun_get_user+0x191d/0x32f0 [ 2732.580423] ? tun_chr_write_iter+0xe1/0x1e0 [ 2732.580919] ? new_sync_write+0x42c/0x660 [ 2732.581384] ? vfs_write+0x747/0xa70 [ 2732.581794] ? ksys_write+0x12d/0x260 [ 2732.582225] ? do_syscall_64+0x33/0x40 [ 2732.582665] ? entry_SYSCALL_64_after_hwframe+0x62/0xc7 [ 2732.583269] __ip_append_data+0x1628/0x3310 [ 2732.583773] ? icmp_push_reply+0x490/0x490 [ 2732.584255] ? ip_finish_output+0x330/0x330 [ 2732.584743] ? ipv4_mtu+0x1ed/0x2c0 [ 2732.585152] ? icmp_push_reply+0x490/0x490 [ 2732.585628] ip_append_data+0x114/0x1a0 [ 2732.586087] icmp_push_reply+0x13b/0x490 [ 2732.586560] __icmp_send+0xbc9/0x14d0 [ 2732.586991] ? icmp_route_lookup.constprop.0+0x11a0/0x11a0 [ 2732.587630] ? __lockdep_reset_lock+0x180/0x180 [ 2732.588175] ? find_held_lock+0x2c/0x110 [ 2732.588643] ? ip_route_input_noref+0x160/0x2f0 [ 2732.589166] ip_options_compile+0xad/0xf0 [ 2732.589660] ? __ip_options_compile+0x15d0/0x15d0 [ 2732.590213] ? ip_list_rcv_finish.constprop.0+0x590/0x590 [ 2732.590832] ip_rcv_finish_core.constprop.0+0x4fb/0x1c90 [ 2732.591441] ip_rcv_finish+0x4f/0x1e0 [ 2732.591868] ip_rcv+0xae/0xd0 [ 2732.592216] ? ip_local_deliver+0x200/0x200 [ 2732.592683] __netif_receive_skb_one_core+0x19b/0x1f0 [ 2732.593255] ? __netif_receive_skb_core+0x3780/0x3780 [ 2732.593826] ? lockdep_hardirqs_on_prepare+0x129/0x3e0 [ 2732.594425] ? ktime_get_with_offset+0x221/0x260 [ 2732.594968] ? trace_hardirqs_on+0x5b/0x180 [ 2732.595433] ? recalibrate_cpu_khz+0x10/0x10 [ 2732.595929] __netif_receive_skb+0x27/0x1d0 [ 2732.596405] netif_receive_skb+0x12d/0x710 [ 2732.596878] ? __netif_receive_skb+0x1d0/0x1d0 [ 2732.597387] ? SOFTIRQ_verbose+0x10/0x10 [ 2732.597837] ? __lockdep_reset_lock+0x180/0x180 [ 2732.598335] tun_rx_batched.isra.0+0x462/0x710 [ 2732.598839] ? lock_acquire+0x197/0x470 [ 2732.599268] ? tun_get_user+0xee3/0x32f0 [ 2732.599722] ? tun_sock_write_space+0x1d0/0x1d0 [ 2732.600241] ? lock_release+0x680/0x680 [ 2732.600678] ? tun_get_user+0x16e6/0x32f0 [ 2732.601137] ? lock_downgrade+0x6d0/0x6d0 [ 2732.601596] ? eth_type_trans+0x2ad/0x5b0 [ 2732.602064] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 2732.602649] tun_get_user+0x191d/0x32f0 [ 2732.603097] ? usage_accumulate+0x110/0x110 [ 2732.603623] ? tun_build_skb+0xfe0/0xfe0 [ 2732.604100] ? tun_device_event+0x990/0x1160 [ 2732.604593] ? perf_trace_lock+0xac/0x490 [ 2732.605057] ? SOFTIRQ_verbose+0x10/0x10 [ 2732.605523] tun_chr_write_iter+0xe1/0x1e0 [ 2732.605993] new_sync_write+0x42c/0x660 [ 2732.606441] ? new_sync_read+0x6f0/0x6f0 [ 2732.606889] ? _cond_resched+0x12/0x80 [ 2732.607331] ? avc_policy_seqno+0x9/0x70 [ 2732.607784] ? selinux_file_permission+0x92/0x520 [ 2732.608343] ? __fget_files+0x296/0x4c0 [ 2732.608793] vfs_write+0x747/0xa70 [ 2732.609203] ksys_write+0x12d/0x260 [ 2732.609612] ? __ia32_sys_read+0xb0/0xb0 [ 2732.610067] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 2732.610647] ? syscall_enter_from_user_mode+0x1d/0x50 [ 2732.611220] do_syscall_64+0x33/0x40 [ 2732.611636] entry_SYSCALL_64_after_hwframe+0x62/0xc7 [ 2732.612228] RIP: 0033:0x7fc05d62c5ff [ 2732.612652] Code: 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 99 fd ff ff 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 b8 01 00 00 00 0f 05 <48> 3d 00 f0 ff ff 77 31 44 89 c7 48 89 44 24 08 e8 cc fd ff ff 48 [ 2732.614664] RSP: 002b:00007fc05abef150 EFLAGS: 00000293 ORIG_RAX: 0000000000000001 [ 2732.615500] RAX: ffffffffffffffda RBX: 00007fc05d78cf60 RCX: 00007fc05d62c5ff [ 2732.616307] RDX: 000000000000003a RSI: 0000000020000000 RDI: 00000000000000f0 [ 2732.617094] RBP: 00007fc05abef1d0 R08: 0000000000000000 R09: 0000000000000000 [ 2732.617877] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000002 [ 2732.618661] R13: 00007ffc5aac442f R14: 00007fc05abef300 R15: 0000000000022000 [ 2732.623149] FAULT_INJECTION: forcing a failure. [ 2732.623149] name failslab, interval 1, probability 0, space 0, times 0 [ 2732.624393] CPU: 1 PID: 12196 Comm: syz-executor.1 Not tainted 5.10.204 #1 [ 2732.625160] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 2732.626085] Call Trace: [ 2732.626391] dump_stack+0x107/0x167 [ 2732.626796] should_fail.cold+0x5/0xa [ 2732.627216] ? skb_clone+0x14f/0x3d0 [ 2732.627627] should_failslab+0x5/0x20 [ 2732.628065] kmem_cache_alloc+0x5b/0x310 [ 2732.628518] skb_clone+0x14f/0x3d0 [ 2732.628919] ip_mc_output+0x69c/0xa30 [ 2732.629336] ip_push_pending_frames+0x12e/0x2c0 [ 2732.629853] icmp_push_reply+0x351/0x490 [ 2732.630296] __icmp_send+0xbc9/0x14d0 [ 2732.630732] ? icmp_route_lookup.constprop.0+0x11a0/0x11a0 [ 2732.631349] ? __lockdep_reset_lock+0x180/0x180 [ 2732.631859] ? find_held_lock+0x2c/0x110 [ 2732.632338] ? ip_route_input_noref+0x160/0x2f0 [ 2732.632848] ip_options_compile+0xad/0xf0 [ 2732.633318] ? __ip_options_compile+0x15d0/0x15d0 [ 2732.633846] ? ip_list_rcv_finish.constprop.0+0x590/0x590 [ 2732.634453] ip_rcv_finish_core.constprop.0+0x4fb/0x1c90 [ 2732.635060] ip_rcv_finish+0x4f/0x1e0 [ 2732.635488] ip_rcv+0xae/0xd0 [ 2732.635846] ? ip_local_deliver+0x200/0x200 [ 2732.636334] __netif_receive_skb_one_core+0x19b/0x1f0 [ 2732.636907] ? __netif_receive_skb_core+0x3780/0x3780 [ 2732.637481] ? lockdep_hardirqs_on_prepare+0x129/0x3e0 [ 2732.638067] ? ktime_get_with_offset+0x221/0x260 [ 2732.638569] ? trace_hardirqs_on+0x5b/0x180 [ 2732.639029] ? recalibrate_cpu_khz+0x10/0x10 [ 2732.639525] __netif_receive_skb+0x27/0x1d0 [ 2732.639998] netif_receive_skb+0x12d/0x710 [ 2732.640462] ? __netif_receive_skb+0x1d0/0x1d0 [ 2732.640950] ? SOFTIRQ_verbose+0x10/0x10 [ 2732.641381] ? __lockdep_reset_lock+0x180/0x180 [ 2732.641887] tun_rx_batched.isra.0+0x462/0x710 [ 2732.642389] ? lock_acquire+0x197/0x470 [ 2732.642812] ? tun_get_user+0xee3/0x32f0 [ 2732.643229] ? tun_sock_write_space+0x1d0/0x1d0 [ 2732.643732] ? lock_release+0x680/0x680 [ 2732.644180] ? tun_get_user+0x16e6/0x32f0 [ 2732.644629] ? lock_downgrade+0x6d0/0x6d0 [ 2732.645066] ? eth_type_trans+0x2ad/0x5b0 [ 2732.645540] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 2732.646107] tun_get_user+0x191d/0x32f0 [ 2732.646550] ? usage_accumulate+0x110/0x110 [ 2732.647028] ? tun_build_skb+0xfe0/0xfe0 [ 2732.647479] ? tun_device_event+0x990/0x1160 [ 2732.647927] ? perf_trace_lock+0xac/0x490 [ 2732.648408] ? SOFTIRQ_verbose+0x10/0x10 [ 2732.648860] tun_chr_write_iter+0xe1/0x1e0 [ 2732.649335] new_sync_write+0x42c/0x660 [ 2732.649778] ? new_sync_read+0x6f0/0x6f0 [ 2732.650231] ? _cond_resched+0x12/0x80 [ 2732.650670] ? avc_policy_seqno+0x9/0x70 [ 2732.651123] ? selinux_file_permission+0x92/0x520 [ 2732.651670] ? __fget_files+0x296/0x4c0 [ 2732.652122] vfs_write+0x747/0xa70 [ 2732.652523] ksys_write+0x12d/0x260 [ 2732.652922] ? __ia32_sys_read+0xb0/0xb0 [ 2732.653393] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 2732.653950] ? syscall_enter_from_user_mode+0x1d/0x50 [ 2732.654551] do_syscall_64+0x33/0x40 [ 2732.654955] entry_SYSCALL_64_after_hwframe+0x62/0xc7 [ 2732.655519] RIP: 0033:0x7f56064f65ff [ 2732.655936] Code: 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 99 fd ff ff 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 b8 01 00 00 00 0f 05 <48> 3d 00 f0 ff ff 77 31 44 89 c7 48 89 44 24 08 e8 cc fd ff ff 48 [ 2732.657987] RSP: 002b:00007f5603ab9150 EFLAGS: 00000293 ORIG_RAX: 0000000000000001 [ 2732.658840] RAX: ffffffffffffffda RBX: 00007f5606656f60 RCX: 00007f56064f65ff [ 2732.659641] RDX: 000000000000003a RSI: 0000000020000000 RDI: 00000000000000f0 [ 2732.660463] RBP: 00007f5603ab91d0 R08: 0000000000000000 R09: 0000000000000000 [ 2732.661245] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000002 [ 2732.662050] R13: 00007ffe3650190f R14: 00007f5603ab9300 R15: 0000000000022000 05:37:05 executing program 7: r0 = perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x0, 0x3}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) pread64(0xffffffffffffffff, 0x0, 0x7ffffffff000, 0xf0ff1f00000000) bind$inet6(0xffffffffffffffff, &(0x7f0000000040)={0xa, 0x4e23, 0x0, @remote, 0xffff}, 0x1c) r1 = socket$netlink(0x10, 0x3, 0x0) sendmsg$nl_generic(0xffffffffffffffff, 0x0, 0x41) setsockopt$netlink_NETLINK_BROADCAST_ERROR(r1, 0x10e, 0x4, &(0x7f00000000c0)=0x1000, 0x4) sendmsg$nl_generic(r1, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000100)=ANY=[@ANYBLOB="28000000100001000000000000000000000000000500000024386a562b500000000c00008008000d00ac141400"], 0x28}}, 0x0) chdir(&(0x7f00000001c0)='./file0\x00') r2 = syz_open_dev$mouse(&(0x7f0000000400), 0x7fffffff, 0x2d0401) sendmsg$NL80211_CMD_ADD_NAN_FUNCTION(r2, &(0x7f0000000500)={&(0x7f0000000440)={0x10, 0x0, 0x0, 0x10}, 0xc, &(0x7f00000004c0)={&(0x7f00000002c0)={0x20, 0x0, 0x100, 0x70bd2b, 0x25dfdbfd, {{}, {@void, @val={0xc, 0x99, {0x3, 0x1b}}}}}, 0x20}, 0x1, 0x0, 0x0, 0x95}, 0x40000) ioctl$FICLONE(r2, 0x40049409, r0) r3 = open$dir(&(0x7f0000000000)='.\x00', 0x0, 0x0) perf_event_open(&(0x7f0000001d80)={0x6, 0x80, 0x0, 0x0, 0x0, 0x0, 0x4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffd, 0x0, @perf_bp={0x0, 0xffffffff81000000}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffd}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r4 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000040)='/proc/crypto\x00', 0x0, 0x0) r5 = openat2(r3, &(0x7f0000000180)='./file0\x00', &(0x7f0000000200)={0x800, 0x1b9}, 0x18) setsockopt$SO_TIMESTAMPING(r5, 0x1, 0x25, &(0x7f0000000240)=0x7100, 0x4) pread64(r4, &(0x7f00000010c0)=""/4088, 0xff8, 0x0) writev(0xffffffffffffffff, &(0x7f00000003c0)=[{&(0x7f0000000000)="0000abe02400030021206cda3b5e5672b89aeddb2a535fbd0706006dff0043a9d7cceb232fb81bf74ebdd05b7677", 0x2e}, {&(0x7f0000000680)="7fd41c04550300020000000000000000010046e92ed2616f72657d044129471d4fd47924fd0900e09e0068de", 0x2c}], 0x2) 05:37:05 executing program 0: perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_emit_ethernet(0x3a, &(0x7f0000000000)={@local, @remote, @void, {@ipv4={0x800, @tcp={{0x6, 0x4, 0x0, 0x0, 0x2c, 0x0, 0x0, 0x0, 0x32, 0x0, @dev, @private=0xa010100, {[@lsrr={0x83, 0x5}]}}, {{0x0, 0x0, 0x41424344, 0x41424344, 0x0, 0x7, 0x5}}}}}}, 0x0) (fail_nth: 12) ioctl$BTRFS_IOC_BALANCE(0xffffffffffffffff, 0x5000940c, 0x0) close(0xffffffffffffffff) 05:37:05 executing program 4: perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_emit_ethernet(0x3a, &(0x7f0000000000)={@local, @remote, @void, {@ipv4={0x500, @tcp={{0x6, 0x4, 0x0, 0x0, 0x2c, 0x0, 0x0, 0x0, 0x32, 0x0, @dev, @private=0xa010100, {[@lsrr={0x83, 0x5}]}}, {{0x0, 0x0, 0x41424344, 0x41424344, 0x0, 0x7, 0x5}}}}}}, 0x0) openat$cgroup_devices(0xffffffffffffffff, 0x0, 0x2, 0x0) close(0xffffffffffffffff) pread64(0xffffffffffffffff, 0x0, 0x0, 0x2000) [ 2732.744461] FAULT_INJECTION: forcing a failure. [ 2732.744461] name failslab, interval 1, probability 0, space 0, times 0 [ 2732.745731] CPU: 1 PID: 12202 Comm: syz-executor.0 Not tainted 5.10.204 #1 [ 2732.746499] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 2732.747398] Call Trace: [ 2732.747699] dump_stack+0x107/0x167 [ 2732.748104] should_fail.cold+0x5/0xa [ 2732.748518] ? create_object.isra.0+0x3a/0xa20 [ 2732.749027] should_failslab+0x5/0x20 [ 2732.749451] kmem_cache_alloc+0x5b/0x310 [ 2732.749909] create_object.isra.0+0x3a/0xa20 [ 2732.750389] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 2732.750949] kmem_cache_alloc_node+0x169/0x330 [ 2732.751457] __alloc_skb+0x6d/0x5b0 [ 2732.751868] alloc_skb_with_frags+0x92/0x570 [ 2732.752355] ? stack_trace_save+0x8c/0xc0 [ 2732.752814] sock_alloc_send_pskb+0x7af/0x930 [ 2732.753321] ? sk_alloc+0x350/0x350 [ 2732.753714] ? ip_rcv_finish_core.constprop.0+0x4fb/0x1c90 [ 2732.754314] ? ip_rcv_finish+0x4f/0x1e0 [ 2732.754754] ? ip_rcv+0xae/0xd0 [ 2732.755109] ? __netif_receive_skb_one_core+0x19b/0x1f0 [ 2732.755686] ? __netif_receive_skb+0x27/0x1d0 [ 2732.756193] ? netif_receive_skb+0x12d/0x710 [ 2732.756678] ? tun_rx_batched.isra.0+0x462/0x710 [ 2732.757200] ? tun_get_user+0x191d/0x32f0 [ 2732.757661] ? tun_chr_write_iter+0xe1/0x1e0 [ 2732.758140] ? new_sync_write+0x42c/0x660 [ 2732.758602] ? vfs_write+0x747/0xa70 [ 2732.759008] ? ksys_write+0x12d/0x260 [ 2732.759424] ? do_syscall_64+0x33/0x40 [ 2732.759865] ? entry_SYSCALL_64_after_hwframe+0x62/0xc7 [ 2732.760457] __ip_append_data+0x1628/0x3310 [ 2732.760957] ? icmp_push_reply+0x490/0x490 [ 2732.761434] ? ip_finish_output+0x330/0x330 [ 2732.761912] ? ipv4_mtu+0x1ed/0x2c0 [ 2732.762323] ? icmp_push_reply+0x490/0x490 [ 2732.762798] ip_append_data+0x114/0x1a0 [ 2732.763256] icmp_push_reply+0x13b/0x490 [ 2732.763712] __icmp_send+0xbc9/0x14d0 [ 2732.764167] ? icmp_route_lookup.constprop.0+0x11a0/0x11a0 [ 2732.764787] ? __lockdep_reset_lock+0x180/0x180 [ 2732.765312] ? find_held_lock+0x2c/0x110 [ 2732.765793] ? ip_route_input_noref+0x160/0x2f0 [ 2732.766322] ip_options_compile+0xad/0xf0 [ 2732.766780] ? __ip_options_compile+0x15d0/0x15d0 [ 2732.767313] ? ip_list_rcv_finish.constprop.0+0x590/0x590 [ 2732.767936] ip_rcv_finish_core.constprop.0+0x4fb/0x1c90 [ 2732.768552] ip_rcv_finish+0x4f/0x1e0 [ 2732.768982] ip_rcv+0xae/0xd0 [ 2732.769333] ? ip_local_deliver+0x200/0x200 [ 2732.769804] __netif_receive_skb_one_core+0x19b/0x1f0 [ 2732.770380] ? __netif_receive_skb_core+0x3780/0x3780 [ 2732.770954] ? lockdep_hardirqs_on_prepare+0x129/0x3e0 [ 2732.771540] ? ktime_get_with_offset+0x221/0x260 [ 2732.772070] ? trace_hardirqs_on+0x5b/0x180 [ 2732.772558] ? recalibrate_cpu_khz+0x10/0x10 [ 2732.773050] __netif_receive_skb+0x27/0x1d0 [ 2732.773520] netif_receive_skb+0x12d/0x710 [ 2732.773988] ? __netif_receive_skb+0x1d0/0x1d0 [ 2732.774493] ? SOFTIRQ_verbose+0x10/0x10 [ 2732.774948] ? __lockdep_reset_lock+0x180/0x180 [ 2732.775474] tun_rx_batched.isra.0+0x462/0x710 [ 2732.775988] ? lock_acquire+0x197/0x470 [ 2732.776436] ? tun_get_user+0xee3/0x32f0 [ 2732.776890] ? tun_sock_write_space+0x1d0/0x1d0 [ 2732.777401] ? lock_release+0x680/0x680 [ 2732.777839] ? tun_get_user+0x16e6/0x32f0 [ 2732.778294] ? lock_downgrade+0x6d0/0x6d0 [ 2732.778757] ? eth_type_trans+0x2ad/0x5b0 [ 2732.779224] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 2732.779813] tun_get_user+0x191d/0x32f0 [ 2732.780236] ? usage_accumulate+0x110/0x110 [ 2732.780722] ? tun_build_skb+0xfe0/0xfe0 [ 2732.781189] ? tun_device_event+0x990/0x1160 [ 2732.781668] ? perf_trace_lock+0xac/0x490 [ 2732.782135] ? SOFTIRQ_verbose+0x10/0x10 [ 2732.782593] tun_chr_write_iter+0xe1/0x1e0 [ 2732.783076] new_sync_write+0x42c/0x660 [ 2732.783521] ? new_sync_read+0x6f0/0x6f0 [ 2732.783992] ? _cond_resched+0x12/0x80 [ 2732.784428] ? avc_policy_seqno+0x9/0x70 [ 2732.784889] ? selinux_file_permission+0x92/0x520 [ 2732.785419] ? __fget_files+0x296/0x4c0 [ 2732.785877] vfs_write+0x747/0xa70 [ 2732.786272] ksys_write+0x12d/0x260 [ 2732.786681] ? __ia32_sys_read+0xb0/0xb0 [ 2732.787136] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 2732.787724] ? syscall_enter_from_user_mode+0x1d/0x50 [ 2732.788315] do_syscall_64+0x33/0x40 [ 2732.788725] entry_SYSCALL_64_after_hwframe+0x62/0xc7 [ 2732.789291] RIP: 0033:0x7fc05d62c5ff [ 2732.789706] Code: 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 99 fd ff ff 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 b8 01 00 00 00 0f 05 <48> 3d 00 f0 ff ff 77 31 44 89 c7 48 89 44 24 08 e8 cc fd ff ff 48 [ 2732.791740] RSP: 002b:00007fc05abef150 EFLAGS: 00000293 ORIG_RAX: 0000000000000001 [ 2732.792593] RAX: ffffffffffffffda RBX: 00007fc05d78cf60 RCX: 00007fc05d62c5ff [ 2732.793408] RDX: 000000000000003a RSI: 0000000020000000 RDI: 00000000000000f0 [ 2732.794213] RBP: 00007fc05abef1d0 R08: 0000000000000000 R09: 0000000000000000 [ 2732.794999] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000002 [ 2732.795877] R13: 00007ffc5aac442f R14: 00007fc05abef300 R15: 0000000000022000 [ 2732.800036] netlink: 8 bytes leftover after parsing attributes in process `syz-executor.7'. 05:37:05 executing program 4: perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_emit_ethernet(0x3a, &(0x7f0000000000)={@local, @remote, @void, {@ipv4={0x802, @tcp={{0x6, 0x4, 0x0, 0x0, 0x2c, 0x0, 0x0, 0x0, 0x32, 0x0, @dev, @private=0xa010100, {[@lsrr={0x83, 0x5}]}}, {{0x0, 0x0, 0x41424344, 0x41424344, 0x0, 0x7, 0x5}}}}}}, 0x0) openat$cgroup_devices(0xffffffffffffffff, 0x0, 0x2, 0x0) close(0xffffffffffffffff) pread64(0xffffffffffffffff, 0x0, 0x0, 0x2000) 05:37:05 executing program 1: perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_emit_ethernet(0x3a, &(0x7f0000000000)={@local, @remote, @void, {@ipv4={0x800, @tcp={{0x6, 0x4, 0x0, 0x0, 0x2c, 0x0, 0x0, 0x0, 0x32, 0x0, @dev, @private=0xa010100, {[@lsrr={0x83, 0x5}]}}, {{0x0, 0x0, 0x41424344, 0x41424344, 0x0, 0x7, 0x5}}}}}}, 0x0) (fail_nth: 16) [ 2732.853795] netlink: 8 bytes leftover after parsing attributes in process `syz-executor.3'. [ 2732.858700] FAULT_INJECTION: forcing a failure. [ 2732.858700] name failslab, interval 1, probability 0, space 0, times 0 [ 2732.860035] CPU: 1 PID: 12216 Comm: syz-executor.1 Not tainted 5.10.204 #1 [ 2732.860775] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 2732.861685] Call Trace: [ 2732.861977] dump_stack+0x107/0x167 [ 2732.862387] should_fail.cold+0x5/0xa [ 2732.862814] ? __sanitizer_cov_trace_switch+0x45/0x80 [ 2732.863390] ? create_object.isra.0+0x3a/0xa20 [ 2732.863894] should_failslab+0x5/0x20 [ 2732.864322] kmem_cache_alloc+0x5b/0x310 [ 2732.864768] create_object.isra.0+0x3a/0xa20 [ 2732.865262] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 2732.865830] kmem_cache_alloc+0x159/0x310 [ 2732.866307] skb_clone+0x14f/0x3d0 [ 2732.866708] ip_mc_output+0x69c/0xa30 [ 2732.867142] ip_push_pending_frames+0x12e/0x2c0 [ 2732.867654] icmp_push_reply+0x351/0x490 [ 2732.868128] __icmp_send+0xbc9/0x14d0 [ 2732.868551] ? icmp_route_lookup.constprop.0+0x11a0/0x11a0 [ 2732.869178] ? __lockdep_reset_lock+0x180/0x180 [ 2732.869698] ? find_held_lock+0x2c/0x110 [ 2732.870170] ? ip_route_input_noref+0x160/0x2f0 [ 2732.870681] ip_options_compile+0xad/0xf0 [ 2732.871146] ? __ip_options_compile+0x15d0/0x15d0 [ 2732.871682] ? ip_list_rcv_finish.constprop.0+0x590/0x590 [ 2732.872317] ip_rcv_finish_core.constprop.0+0x4fb/0x1c90 [ 2732.872916] ip_rcv_finish+0x4f/0x1e0 [ 2732.873341] ip_rcv+0xae/0xd0 [ 2732.873676] ? ip_local_deliver+0x200/0x200 [ 2732.874159] __netif_receive_skb_one_core+0x19b/0x1f0 [ 2732.874734] ? __netif_receive_skb_core+0x3780/0x3780 [ 2732.875313] ? lockdep_hardirqs_on_prepare+0x129/0x3e0 [ 2732.875898] ? ktime_get_with_offset+0x221/0x260 [ 2732.876426] ? trace_hardirqs_on+0x5b/0x180 [ 2732.876904] ? recalibrate_cpu_khz+0x10/0x10 [ 2732.877396] __netif_receive_skb+0x27/0x1d0 [ 2732.877875] netif_receive_skb+0x12d/0x710 [ 2732.878348] ? __netif_receive_skb+0x1d0/0x1d0 [ 2732.878850] ? SOFTIRQ_verbose+0x10/0x10 [ 2732.879307] ? __lockdep_reset_lock+0x180/0x180 [ 2732.879839] tun_rx_batched.isra.0+0x462/0x710 [ 2732.880353] ? lock_acquire+0x197/0x470 [ 2732.880792] ? tun_get_user+0xee3/0x32f0 [ 2732.881251] ? tun_sock_write_space+0x1d0/0x1d0 [ 2732.881769] ? lock_release+0x680/0x680 [ 2732.882211] ? tun_get_user+0x16e6/0x32f0 [ 2732.882674] ? lock_downgrade+0x6d0/0x6d0 [ 2732.883150] ? eth_type_trans+0x2ad/0x5b0 [ 2732.883614] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 2732.884217] tun_get_user+0x191d/0x32f0 [ 2732.884658] ? usage_accumulate+0x110/0x110 [ 2732.885153] ? tun_build_skb+0xfe0/0xfe0 [ 2732.885613] ? tun_device_event+0x990/0x1160 [ 2732.886112] ? perf_trace_lock+0xac/0x490 [ 2732.886575] ? SOFTIRQ_verbose+0x10/0x10 [ 2732.887037] tun_chr_write_iter+0xe1/0x1e0 [ 2732.887514] new_sync_write+0x42c/0x660 [ 2732.887966] ? new_sync_read+0x6f0/0x6f0 [ 2732.888427] ? _cond_resched+0x12/0x80 [ 2732.888885] ? avc_policy_seqno+0x9/0x70 [ 2732.889343] ? selinux_file_permission+0x92/0x520 [ 2732.889891] ? __fget_files+0x296/0x4c0 [ 2732.890341] vfs_write+0x747/0xa70 [ 2732.890741] ksys_write+0x12d/0x260 [ 2732.891150] ? __ia32_sys_read+0xb0/0xb0 [ 2732.891607] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 2732.892209] ? syscall_enter_from_user_mode+0x1d/0x50 [ 2732.892794] do_syscall_64+0x33/0x40 [ 2732.893211] entry_SYSCALL_64_after_hwframe+0x62/0xc7 [ 2732.893782] RIP: 0033:0x7f56064f65ff 05:37:05 executing program 3: r0 = perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x0, 0x3}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) pread64(0xffffffffffffffff, 0x0, 0x7ffffffff000, 0xf0ff1f00000000) bind$inet6(0xffffffffffffffff, &(0x7f0000000040)={0xa, 0x4e23, 0x0, @remote, 0xffff}, 0x1c) r1 = socket$netlink(0x10, 0x3, 0x0) sendmsg$nl_generic(0xffffffffffffffff, 0x0, 0x41) setsockopt$netlink_NETLINK_BROADCAST_ERROR(r1, 0x10e, 0x4, &(0x7f00000000c0)=0x1000, 0x4) sendmsg$nl_generic(r1, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000100)=ANY=[@ANYBLOB="28000000100001000000000000000000000000000500000024386a562b500000000c00008008000d00ac141400"], 0x28}}, 0x0) chdir(&(0x7f00000001c0)='./file0\x00') r2 = syz_open_dev$mouse(&(0x7f0000000400), 0x7fffffff, 0x2d0401) sendmsg$NL80211_CMD_ADD_NAN_FUNCTION(r2, &(0x7f0000000500)={&(0x7f0000000440)={0x10, 0x0, 0x0, 0x10}, 0xc, &(0x7f00000004c0)={&(0x7f00000002c0)={0x20, 0x0, 0x100, 0x70bd2b, 0x25dfdbfd, {{}, {@void, @val={0xc, 0x99, {0x3, 0x1b}}}}}, 0x20}, 0x1, 0x0, 0x0, 0x95}, 0x40000) ioctl$FICLONE(r2, 0x40049409, r0) r3 = open$dir(&(0x7f0000000000)='.\x00', 0x0, 0x0) perf_event_open(&(0x7f0000001d80)={0x6, 0x80, 0x0, 0x0, 0x0, 0x0, 0x4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffd, 0x0, @perf_bp={0x0, 0xffffffff81000000}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffd}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r4 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000040)='/proc/crypto\x00', 0x0, 0x0) r5 = openat2(r3, &(0x7f0000000180)='./file0\x00', &(0x7f0000000200)={0x800, 0x1b9}, 0x18) setsockopt$SO_TIMESTAMPING(r5, 0x1, 0x25, &(0x7f0000000240)=0x7100, 0x4) pread64(r4, &(0x7f00000010c0)=""/4088, 0xff8, 0x0) writev(0xffffffffffffffff, &(0x7f00000003c0)=[{0x0}, {&(0x7f0000000680)="7fd41c04550300020000000000000000010046e92ed2616f72657d044129471d4fd47924fd0900e09e0068deec02", 0x2e}], 0x2) [ 2732.894200] Code: 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 99 fd ff ff 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 b8 01 00 00 00 0f 05 <48> 3d 00 f0 ff ff 77 31 44 89 c7 48 89 44 24 08 e8 cc fd ff ff 48 [ 2732.896374] RSP: 002b:00007f5603ab9150 EFLAGS: 00000293 ORIG_RAX: 0000000000000001 [ 2732.897221] RAX: ffffffffffffffda RBX: 00007f5606656f60 RCX: 00007f56064f65ff [ 2732.898019] RDX: 000000000000003a RSI: 0000000020000000 RDI: 00000000000000f0 [ 2732.898812] RBP: 00007f5603ab91d0 R08: 0000000000000000 R09: 0000000000000000 [ 2732.899605] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000002 [ 2732.900409] R13: 00007ffe3650190f R14: 00007f5603ab9300 R15: 0000000000022000 [ 2747.097785] FAULT_INJECTION: forcing a failure. [ 2747.097785] name failslab, interval 1, probability 0, space 0, times 0 [ 2747.099096] CPU: 1 PID: 12237 Comm: syz-executor.0 Not tainted 5.10.204 #1 [ 2747.099855] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 2747.100737] Call Trace: [ 2747.101025] dump_stack+0x107/0x167 [ 2747.101442] should_fail.cold+0x5/0xa [ 2747.101861] should_failslab+0x5/0x20 [ 2747.102285] __kmalloc_node_track_caller+0x74/0x3b0 [ 2747.102839] ? alloc_skb_with_frags+0x92/0x570 [ 2747.103345] __alloc_skb+0xb1/0x5b0 [ 2747.103749] alloc_skb_with_frags+0x92/0x570 [ 2747.104260] ? stack_trace_save+0x8c/0xc0 [ 2747.104708] sock_alloc_send_pskb+0x7af/0x930 05:37:19 executing program 7: r0 = perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x0, 0x3}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) pread64(0xffffffffffffffff, 0x0, 0x7ffffffff000, 0xf0ff1f00000000) bind$inet6(0xffffffffffffffff, &(0x7f0000000040)={0xa, 0x4e23, 0x0, @remote, 0xffff}, 0x1c) r1 = socket$netlink(0x10, 0x3, 0x0) sendmsg$nl_generic(0xffffffffffffffff, 0x0, 0x41) setsockopt$netlink_NETLINK_BROADCAST_ERROR(r1, 0x10e, 0x4, &(0x7f00000000c0)=0x1000, 0x4) sendmsg$nl_generic(r1, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000100)=ANY=[@ANYBLOB="28000000100001000000000000000000000000000500000024386a562b500000000c00008008000d00ac141400"], 0x28}}, 0x0) chdir(&(0x7f00000001c0)='./file0\x00') r2 = syz_open_dev$mouse(&(0x7f0000000400), 0x7fffffff, 0x2d0401) sendmsg$NL80211_CMD_ADD_NAN_FUNCTION(r2, &(0x7f0000000500)={&(0x7f0000000440)={0x10, 0x0, 0x0, 0x10}, 0xc, &(0x7f00000004c0)={&(0x7f00000002c0)={0x20, 0x0, 0x100, 0x70bd2b, 0x25dfdbfd, {{}, {@void, @val={0xc, 0x99, {0x3, 0x1b}}}}}, 0x20}, 0x1, 0x0, 0x0, 0x95}, 0x40000) ioctl$FICLONE(r2, 0x40049409, r0) r3 = open$dir(&(0x7f0000000000)='.\x00', 0x0, 0x0) perf_event_open(&(0x7f0000001d80)={0x6, 0x80, 0x0, 0x0, 0x0, 0x0, 0x4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffd, 0x0, @perf_bp={0x0, 0xffffffff81000000}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffd}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r4 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000040)='/proc/crypto\x00', 0x0, 0x0) r5 = openat2(r3, &(0x7f0000000180)='./file0\x00', &(0x7f0000000200)={0x800, 0x1b9}, 0x18) setsockopt$SO_TIMESTAMPING(r5, 0x1, 0x25, &(0x7f0000000240)=0x7100, 0x4) pread64(r4, &(0x7f00000010c0)=""/4088, 0xff8, 0x0) writev(0xffffffffffffffff, &(0x7f00000003c0)=[{&(0x7f0000000000)="0000abe02400030021206cda3b5e5672b89aeddb2a535fbd0706006dff0043a9d7cceb232fb81bf74ebdd05b7677", 0x2e}, {&(0x7f0000000680)="7fd41c04550300020000000000000000010046e92ed2616f72657d044129471d4fd47924fd0900e09e", 0x29}], 0x2) 05:37:19 executing program 5: syz_emit_ethernet(0x32, &(0x7f0000000100)=ANY=[@ANYBLOB="aaaaaac3aaaaaaaaaaaaaabb0800470000240000000000029078ac1414aa0a010102860800000000000200009078ffffffff250aadf7b3859a49e5c96c281bf830e0716193226858722f34e4b6a0fa1da394ca5ed442685d9aac1b07dcbf54004ac697e53fe331c502425748a951b95d8b79bc15b51db9417fcac3773d58c3f97826abcc131ef06d98569303876f42f272c85f0ab154ad73f92367"], 0x0) 05:37:19 executing program 2: preadv2(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x2) openat(0xffffffffffffff9c, 0x0, 0x0, 0x0) r0 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x105142, 0x62) r1 = openat(0xffffffffffffff9c, 0x0, 0x0, 0x0) fallocate(r1, 0x0, 0x0, 0x8800000) lseek(0xffffffffffffffff, 0x0, 0x0) openat(0xffffffffffffffff, 0x0, 0x0, 0x20) ioctl$FS_IOC_RESVSP(0xffffffffffffffff, 0x40305828, 0x0) faccessat2(0xffffffffffffffff, 0x0, 0x0, 0x0) openat(0xffffffffffffffff, 0x0, 0x1a340, 0x100) ioctl$LOOP_CTL_REMOVE(0xffffffffffffffff, 0x4c81, 0x0) r2 = fsmount(0xffffffffffffffff, 0x0, 0x0) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r3 = openat(r2, &(0x7f0000000000)='/proc/self/exe\x00', 0x4840, 0x2d) sendfile(r0, r3, 0x0, 0x10000000d) 05:37:19 executing program 6: r0 = socket$inet6_tcp(0xa, 0x1, 0x0) setsockopt$inet6_tcp_int(r0, 0x6, 0x2, &(0x7f0000000080)=0x90, 0x4) bind$inet6(r0, &(0x7f00000000c0)={0xa, 0x4e20, 0x0, @loopback}, 0x1c) connect$inet6(r0, &(0x7f0000000000)={0xa, 0x4e20, 0x0, @empty}, 0x1c) setsockopt$sock_int(r0, 0x1, 0x8, &(0x7f0000002ec0), 0x4) sendmsg$inet6(r0, &(0x7f00000006c0)={0x0, 0x0, &(0x7f0000000540)=[{&(0x7f00000001c0)="cf", 0xfffffdef}], 0x1}, 0x10044001) setsockopt$SO_TIMESTAMP(r0, 0x1, 0x40, &(0x7f0000000280)=0x380, 0x4) recvfrom$inet6(r0, &(0x7f0000001e00)=""/4096, 0x1000, 0xcd08, 0x0, 0x0) (fail_nth: 8) 05:37:19 executing program 0: perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_emit_ethernet(0x3a, &(0x7f0000000000)={@local, @remote, @void, {@ipv4={0x800, @tcp={{0x6, 0x4, 0x0, 0x0, 0x2c, 0x0, 0x0, 0x0, 0x32, 0x0, @dev, @private=0xa010100, {[@lsrr={0x83, 0x5}]}}, {{0x0, 0x0, 0x41424344, 0x41424344, 0x0, 0x7, 0x5}}}}}}, 0x0) (fail_nth: 13) ioctl$BTRFS_IOC_BALANCE(0xffffffffffffffff, 0x5000940c, 0x0) close(0xffffffffffffffff) 05:37:19 executing program 3: r0 = perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x0, 0x3}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) pread64(0xffffffffffffffff, 0x0, 0x7ffffffff000, 0xf0ff1f00000000) bind$inet6(0xffffffffffffffff, &(0x7f0000000040)={0xa, 0x4e23, 0x0, @remote, 0xffff}, 0x1c) r1 = socket$netlink(0x10, 0x3, 0x0) sendmsg$nl_generic(0xffffffffffffffff, 0x0, 0x41) setsockopt$netlink_NETLINK_BROADCAST_ERROR(r1, 0x10e, 0x4, &(0x7f00000000c0)=0x1000, 0x4) sendmsg$nl_generic(r1, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000100)=ANY=[@ANYBLOB="28000000100001000000000000000000000000000500000024386a562b500000000c00008008000d00ac141400"], 0x28}}, 0x0) chdir(&(0x7f00000001c0)='./file0\x00') r2 = syz_open_dev$mouse(&(0x7f0000000400), 0x7fffffff, 0x2d0401) sendmsg$NL80211_CMD_ADD_NAN_FUNCTION(r2, &(0x7f0000000500)={&(0x7f0000000440)={0x10, 0x0, 0x0, 0x10}, 0xc, &(0x7f00000004c0)={&(0x7f00000002c0)={0x20, 0x0, 0x100, 0x70bd2b, 0x25dfdbfd, {{}, {@void, @val={0xc, 0x99, {0x3, 0x1b}}}}}, 0x20}, 0x1, 0x0, 0x0, 0x95}, 0x40000) ioctl$FICLONE(r2, 0x40049409, r0) r3 = open$dir(&(0x7f0000000000)='.\x00', 0x0, 0x0) perf_event_open(&(0x7f0000001d80)={0x6, 0x80, 0x0, 0x0, 0x0, 0x0, 0x4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffd, 0x0, @perf_bp={0x0, 0xffffffff81000000}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffd}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r4 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000040)='/proc/crypto\x00', 0x0, 0x0) r5 = openat2(r3, &(0x7f0000000180)='./file0\x00', &(0x7f0000000200)={0x800, 0x1b9}, 0x18) setsockopt$SO_TIMESTAMPING(r5, 0x1, 0x25, &(0x7f0000000240)=0x7100, 0x4) pread64(r4, &(0x7f00000010c0)=""/4088, 0xff8, 0x0) writev(0xffffffffffffffff, &(0x7f00000003c0)=[{0x0}, {&(0x7f0000000680)="7fd41c04550300020000000000000000010046e92ed2616f72657d044129471d4fd47924fd0900e09e0068deec02", 0x2e}], 0x2) 05:37:19 executing program 1: perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_emit_ethernet(0x3a, &(0x7f0000000000)={@local, @remote, @void, {@ipv4={0x800, @tcp={{0x6, 0x4, 0x0, 0x0, 0x2c, 0x0, 0x0, 0x0, 0x32, 0x0, @dev, @private=0xa010100, {[@lsrr={0x83, 0x5}]}}, {{0x0, 0x0, 0x41424344, 0x41424344, 0x0, 0x7, 0x5}}}}}}, 0x0) (fail_nth: 17) [ 2747.105254] ? sk_alloc+0x350/0x350 [ 2747.105711] ? ip_rcv_finish_core.constprop.0+0x4fb/0x1c90 [ 2747.106426] ? ip_rcv_finish+0x4f/0x1e0 [ 2747.106855] ? ip_rcv+0xae/0xd0 [ 2747.107205] ? __netif_receive_skb_one_core+0x19b/0x1f0 [ 2747.107779] ? __netif_receive_skb+0x27/0x1d0 [ 2747.108284] ? netif_receive_skb+0x12d/0x710 [ 2747.108763] ? tun_rx_batched.isra.0+0x462/0x710 [ 2747.109263] ? tun_get_user+0x191d/0x32f0 [ 2747.109716] ? tun_chr_write_iter+0xe1/0x1e0 [ 2747.110186] ? new_sync_write+0x42c/0x660 [ 2747.110640] ? vfs_write+0x747/0xa70 [ 2747.111035] ? ksys_write+0x12d/0x260 [ 2747.111464] ? do_syscall_64+0x33/0x40 [ 2747.111878] ? entry_SYSCALL_64_after_hwframe+0x62/0xc7 [ 2747.112499] __ip_append_data+0x1628/0x3310 [ 2747.112983] ? icmp_push_reply+0x490/0x490 [ 2747.113462] ? ip_finish_output+0x330/0x330 05:37:19 executing program 4: perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_emit_ethernet(0x3a, &(0x7f0000000000)={@local, @remote, @void, {@ipv4={0x803, @tcp={{0x6, 0x4, 0x0, 0x0, 0x2c, 0x0, 0x0, 0x0, 0x32, 0x0, @dev, @private=0xa010100, {[@lsrr={0x83, 0x5}]}}, {{0x0, 0x0, 0x41424344, 0x41424344, 0x0, 0x7, 0x5}}}}}}, 0x0) openat$cgroup_devices(0xffffffffffffffff, 0x0, 0x2, 0x0) close(0xffffffffffffffff) pread64(0xffffffffffffffff, 0x0, 0x0, 0x2000) [ 2747.113929] ? ipv4_mtu+0x1ed/0x2c0 [ 2747.114427] ? icmp_push_reply+0x490/0x490 [ 2747.114946] ip_append_data+0x114/0x1a0 [ 2747.115399] icmp_push_reply+0x13b/0x490 [ 2747.115858] __icmp_send+0xbc9/0x14d0 [ 2747.116303] ? icmp_route_lookup.constprop.0+0x11a0/0x11a0 [ 2747.116924] ? __lockdep_reset_lock+0x180/0x180 [ 2747.117445] ? find_held_lock+0x2c/0x110 [ 2747.117917] ? ip_route_input_noref+0x160/0x2f0 [ 2747.118435] ip_options_compile+0xad/0xf0 [ 2747.118895] ? __ip_options_compile+0x15d0/0x15d0 [ 2747.119431] ? ip_list_rcv_finish.constprop.0+0x590/0x590 [ 2747.120057] ip_rcv_finish_core.constprop.0+0x4fb/0x1c90 [ 2747.120689] ip_rcv_finish+0x4f/0x1e0 [ 2747.121115] ip_rcv+0xae/0xd0 [ 2747.121470] ? ip_local_deliver+0x200/0x200 [ 2747.121959] __netif_receive_skb_one_core+0x19b/0x1f0 [ 2747.122552] ? __netif_receive_skb_core+0x3780/0x3780 [ 2747.123150] ? __lock_acquire+0xbb1/0x5b00 [ 2747.123635] __netif_receive_skb+0x27/0x1d0 [ 2747.124143] netif_receive_skb+0x12d/0x710 [ 2747.124622] ? __netif_receive_skb+0x1d0/0x1d0 [ 2747.125124] ? SOFTIRQ_verbose+0x10/0x10 [ 2747.125596] ? __lockdep_reset_lock+0x180/0x180 [ 2747.126119] tun_rx_batched.isra.0+0x462/0x710 [ 2747.126635] ? lock_acquire+0x197/0x470 [ 2747.127088] ? tun_get_user+0xee3/0x32f0 [ 2747.127553] ? tun_sock_write_space+0x1d0/0x1d0 [ 2747.128090] ? lock_release+0x680/0x680 [ 2747.128539] ? tun_get_user+0x16e6/0x32f0 [ 2747.129010] ? lock_downgrade+0x6d0/0x6d0 [ 2747.129486] ? eth_type_trans+0x2ad/0x5b0 [ 2747.129943] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 2747.130549] tun_get_user+0x191d/0x32f0 [ 2747.130961] netlink: 8 bytes leftover after parsing attributes in process `syz-executor.7'. [ 2747.131000] ? usage_accumulate+0x110/0x110 [ 2747.131026] ? tun_build_skb+0xfe0/0xfe0 [ 2747.133784] ? tun_device_event+0x990/0x1160 [ 2747.134286] ? perf_trace_lock+0xac/0x490 [ 2747.134754] ? SOFTIRQ_verbose+0x10/0x10 [ 2747.135230] tun_chr_write_iter+0xe1/0x1e0 [ 2747.135723] new_sync_write+0x42c/0x660 [ 2747.136188] ? new_sync_read+0x6f0/0x6f0 [ 2747.136653] ? _cond_resched+0x12/0x80 [ 2747.137094] ? avc_policy_seqno+0x9/0x70 [ 2747.137546] ? selinux_file_permission+0x92/0x520 [ 2747.138108] ? __fget_files+0x296/0x4c0 [ 2747.138570] vfs_write+0x747/0xa70 [ 2747.138981] ksys_write+0x12d/0x260 [ 2747.139386] ? __ia32_sys_read+0xb0/0xb0 [ 2747.139850] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 2747.140460] ? syscall_enter_from_user_mode+0x1d/0x50 [ 2747.141492] do_syscall_64+0x33/0x40 [ 2747.142393] entry_SYSCALL_64_after_hwframe+0x62/0xc7 [ 2747.143644] RIP: 0033:0x7fc05d62c5ff [ 2747.144568] Code: 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 99 fd ff ff 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 b8 01 00 00 00 0f 05 <48> 3d 00 f0 ff ff 77 31 44 89 c7 48 89 44 24 08 e8 cc fd ff ff 48 [ 2747.149164] RSP: 002b:00007fc05abef150 EFLAGS: 00000293 ORIG_RAX: 0000000000000001 [ 2747.151018] RAX: ffffffffffffffda RBX: 00007fc05d78cf60 RCX: 00007fc05d62c5ff [ 2747.152743] RDX: 000000000000003a RSI: 0000000020000000 RDI: 00000000000000f0 [ 2747.154310] RBP: 00007fc05abef1d0 R08: 0000000000000000 R09: 0000000000000000 [ 2747.155808] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000002 [ 2747.157330] R13: 00007ffc5aac442f R14: 00007fc05abef300 R15: 0000000000022000 [ 2747.173045] FAULT_INJECTION: forcing a failure. [ 2747.173045] name failslab, interval 1, probability 0, space 0, times 0 [ 2747.175398] CPU: 1 PID: 12244 Comm: syz-executor.1 Not tainted 5.10.204 #1 [ 2747.176802] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 2747.178464] Call Trace: [ 2747.178995] dump_stack+0x107/0x167 [ 2747.179739] should_fail.cold+0x5/0xa [ 2747.180534] ? dst_alloc+0x9e/0x610 [ 2747.181274] should_failslab+0x5/0x20 [ 2747.182044] kmem_cache_alloc+0x5b/0x310 [ 2747.182870] dst_alloc+0x9e/0x610 [ 2747.183602] rt_dst_clone+0x59/0x860 [ 2747.184365] ip_mc_finish_output+0x95/0x280 [ 2747.185257] ip_mc_output+0x71c/0xa30 [ 2747.186036] ip_push_pending_frames+0x12e/0x2c0 [ 2747.186994] icmp_push_reply+0x351/0x490 [ 2747.187821] __icmp_send+0xbc9/0x14d0 [ 2747.188621] ? icmp_route_lookup.constprop.0+0x11a0/0x11a0 [ 2747.189751] ? __lockdep_reset_lock+0x180/0x180 [ 2747.190698] ? find_held_lock+0x2c/0x110 [ 2747.191557] ? ip_route_input_noref+0x160/0x2f0 [ 2747.192511] ip_options_compile+0xad/0xf0 [ 2747.193345] ? __ip_options_compile+0x15d0/0x15d0 [ 2747.194315] ? ip_list_rcv_finish.constprop.0+0x590/0x590 [ 2747.195428] ip_rcv_finish_core.constprop.0+0x4fb/0x1c90 [ 2747.196541] ip_rcv_finish+0x4f/0x1e0 [ 2747.197308] ip_rcv+0xae/0xd0 [ 2747.197938] ? ip_local_deliver+0x200/0x200 [ 2747.198788] __netif_receive_skb_one_core+0x19b/0x1f0 [ 2747.199822] ? __netif_receive_skb_core+0x3780/0x3780 [ 2747.200910] ? __lock_acquire+0xbb1/0x5b00 [ 2747.201758] __netif_receive_skb+0x27/0x1d0 [ 2747.202608] netif_receive_skb+0x12d/0x710 [ 2747.203431] ? __netif_receive_skb+0x1d0/0x1d0 [ 2747.204348] ? SOFTIRQ_verbose+0x10/0x10 [ 2747.205218] ? __lockdep_reset_lock+0x180/0x180 [ 2747.206227] tun_rx_batched.isra.0+0x462/0x710 [ 2747.207204] ? lock_acquire+0x197/0x470 [ 2747.208088] ? tun_get_user+0xee3/0x32f0 [ 2747.208958] ? tun_sock_write_space+0x1d0/0x1d0 [ 2747.209956] ? lock_release+0x680/0x680 [ 2747.210836] ? tun_get_user+0x16e6/0x32f0 [ 2747.211716] ? lock_downgrade+0x6d0/0x6d0 [ 2747.212641] ? eth_type_trans+0x2ad/0x5b0 [ 2747.213542] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 2747.214678] tun_get_user+0x191d/0x32f0 [ 2747.215504] ? usage_accumulate+0x110/0x110 [ 2747.216399] ? tun_build_skb+0xfe0/0xfe0 [ 2747.217224] ? tun_device_event+0x990/0x1160 [ 2747.218104] ? perf_trace_lock+0xac/0x490 [ 2747.218921] ? SOFTIRQ_verbose+0x10/0x10 [ 2747.219747] tun_chr_write_iter+0xe1/0x1e0 [ 2747.220610] new_sync_write+0x42c/0x660 [ 2747.221394] ? new_sync_read+0x6f0/0x6f0 [ 2747.222215] ? _cond_resched+0x12/0x80 [ 2747.223014] ? avc_policy_seqno+0x9/0x70 [ 2747.223856] ? selinux_file_permission+0x92/0x520 [ 2747.224926] ? __fget_files+0x296/0x4c0 [ 2747.225842] vfs_write+0x747/0xa70 [ 2747.226633] ksys_write+0x12d/0x260 [ 2747.227457] ? __ia32_sys_read+0xb0/0xb0 [ 2747.228366] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 2747.229545] ? syscall_enter_from_user_mode+0x1d/0x50 [ 2747.230710] do_syscall_64+0x33/0x40 [ 2747.231551] entry_SYSCALL_64_after_hwframe+0x62/0xc7 [ 2747.232722] RIP: 0033:0x7f56064f65ff [ 2747.233565] Code: 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 99 fd ff ff 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 b8 01 00 00 00 0f 05 <48> 3d 00 f0 ff ff 77 31 44 89 c7 48 89 44 24 08 e8 cc fd ff ff 48 [ 2747.237716] RSP: 002b:00007f5603ab9150 EFLAGS: 00000293 ORIG_RAX: 0000000000000001 [ 2747.239437] RAX: ffffffffffffffda RBX: 00007f5606656f60 RCX: 00007f56064f65ff [ 2747.241048] RDX: 000000000000003a RSI: 0000000020000000 RDI: 00000000000000f0 [ 2747.242614] RBP: 00007f5603ab91d0 R08: 0000000000000000 R09: 0000000000000000 [ 2747.244177] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000002 [ 2747.245736] R13: 00007ffe3650190f R14: 00007f5603ab9300 R15: 0000000000022000 [ 2747.261827] netlink: 8 bytes leftover after parsing attributes in process `syz-executor.3'. [ 2747.306237] FAULT_INJECTION: forcing a failure. [ 2747.306237] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 2747.309520] CPU: 0 PID: 12247 Comm: syz-executor.6 Not tainted 5.10.204 #1 [ 2747.311545] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 2747.313842] Call Trace: [ 2747.314590] dump_stack+0x107/0x167 [ 2747.315610] should_fail.cold+0x5/0xa [ 2747.316556] _copy_to_iter+0x264/0x12d0 [ 2747.317438] ? mark_lock+0xf5/0x2df0 [ 2747.318253] ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0 [ 2747.319392] ? SOFTIRQ_verbose+0x10/0x10 [ 2747.320316] ? _copy_from_iter_nocache+0xd60/0xd60 [ 2747.321381] ? lock_chain_count+0x20/0x20 [ 2747.322298] ? __virt_addr_valid+0x128/0x350 [ 2747.323282] ? __check_object_size+0x319/0x440 [ 2747.324321] simple_copy_to_iter+0x4c/0x70 [ 2747.325253] __skb_datagram_iter+0x4f7/0x880 [ 2747.326247] ? zerocopy_sg_from_iter+0x110/0x110 [ 2747.327289] skb_copy_datagram_iter+0x88/0x190 [ 2747.328291] tcp_recvmsg+0x13b5/0x2930 [ 2747.329180] ? tcp_splice_read+0x8c0/0x8c0 [ 2747.330117] ? sock_has_perm+0x1ea/0x280 [ 2747.331004] ? selinux_socket_post_create+0x7f0/0x7f0 [ 2747.332135] ? lock_downgrade+0x6d0/0x6d0 [ 2747.333040] ? perf_trace_lock+0xac/0x490 [ 2747.333947] ? tcp_splice_read+0x8c0/0x8c0 [ 2747.334874] inet6_recvmsg+0x13b/0x6e0 [ 2747.335730] ? inet6_bind+0x120/0x120 [ 2747.336583] ? security_socket_recvmsg+0x95/0xc0 [ 2747.337625] ? inet6_bind+0x120/0x120 [ 2747.338457] sock_recvmsg+0xff/0x180 [ 2747.339286] __sys_recvfrom+0x1be/0x2f0 [ 2747.340164] ? __ia32_sys_send+0x100/0x100 [ 2747.341082] ? lock_downgrade+0x6d0/0x6d0 [ 2747.342021] ? wait_for_completion_io+0x270/0x270 [ 2747.343094] ? rcu_read_lock_any_held+0x75/0xa0 [ 2747.344115] ? vfs_write+0x354/0xa70 [ 2747.344938] ? fput_many+0x2f/0x1a0 [ 2747.345743] ? ksys_write+0x1a9/0x260 [ 2747.346574] ? __ia32_sys_read+0xb0/0xb0 [ 2747.347464] __x64_sys_recvfrom+0xdd/0x1b0 [ 2747.348404] ? syscall_enter_from_user_mode+0x1d/0x50 [ 2747.349531] do_syscall_64+0x33/0x40 [ 2747.350342] entry_SYSCALL_64_after_hwframe+0x62/0xc7 [ 2747.351469] RIP: 0033:0x7f7d1addbb19 [ 2747.352295] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 2747.356327] RSP: 002b:00007f7d18330188 EFLAGS: 00000246 ORIG_RAX: 000000000000002d [ 2747.357989] RAX: ffffffffffffffda RBX: 00007f7d1aeef020 RCX: 00007f7d1addbb19 [ 2747.359548] RDX: 0000000000001000 RSI: 0000000020001e00 RDI: 0000000000000003 [ 2747.361110] RBP: 00007f7d183301d0 R08: 0000000000000000 R09: 0000000000000000 [ 2747.362671] R10: 000000000000cd08 R11: 0000000000000246 R12: 0000000000000001 [ 2747.364239] R13: 00007ffe0ac926cf R14: 00007f7d18330300 R15: 0000000000022000 05:37:19 executing program 4: perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_emit_ethernet(0x3a, &(0x7f0000000000)={@local, @remote, @void, {@ipv4={0x804, @tcp={{0x6, 0x4, 0x0, 0x0, 0x2c, 0x0, 0x0, 0x0, 0x32, 0x0, @dev, @private=0xa010100, {[@lsrr={0x83, 0x5}]}}, {{0x0, 0x0, 0x41424344, 0x41424344, 0x0, 0x7, 0x5}}}}}}, 0x0) openat$cgroup_devices(0xffffffffffffffff, 0x0, 0x2, 0x0) close(0xffffffffffffffff) pread64(0xffffffffffffffff, 0x0, 0x0, 0x2000) 05:37:20 executing program 7: socket$netlink(0x10, 0x3, 0x0) r0 = socket$netlink(0x10, 0x3, 0x0) sendmsg$nl_generic(r0, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000240)={&(0x7f0000002780)=ANY=[@ANYBLOB="180000006800210c0000000000000000fd00000004000400"], 0x18}}, 0x0) 05:37:20 executing program 0: perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_emit_ethernet(0x3a, &(0x7f0000000000)={@local, @remote, @void, {@ipv4={0x800, @tcp={{0x6, 0x4, 0x0, 0x0, 0x2c, 0x0, 0x0, 0x0, 0x32, 0x0, @dev, @private=0xa010100, {[@lsrr={0x83, 0x5}]}}, {{0x0, 0x0, 0x41424344, 0x41424344, 0x0, 0x7, 0x5}}}}}}, 0x0) (fail_nth: 14) ioctl$BTRFS_IOC_BALANCE(0xffffffffffffffff, 0x5000940c, 0x0) close(0xffffffffffffffff) 05:37:20 executing program 1: perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_emit_ethernet(0x3a, &(0x7f0000000000)={@local, @remote, @void, {@ipv4={0x800, @tcp={{0x6, 0x4, 0x0, 0x0, 0x2c, 0x0, 0x0, 0x0, 0x32, 0x0, @dev, @private=0xa010100, {[@lsrr={0x83, 0x5}]}}, {{0x0, 0x0, 0x41424344, 0x41424344, 0x0, 0x7, 0x5}}}}}}, 0x0) (fail_nth: 18) [ 2747.495585] FAULT_INJECTION: forcing a failure. [ 2747.495585] name failslab, interval 1, probability 0, space 0, times 0 [ 2747.498105] CPU: 0 PID: 12255 Comm: syz-executor.0 Not tainted 5.10.204 #1 [ 2747.499634] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 2747.501566] Call Trace: [ 2747.502155] dump_stack+0x107/0x167 [ 2747.502978] should_fail.cold+0x5/0xa [ 2747.503829] ? create_object.isra.0+0x3a/0xa20 [ 2747.504849] should_failslab+0x5/0x20 [ 2747.505700] kmem_cache_alloc+0x5b/0x310 [ 2747.506615] create_object.isra.0+0x3a/0xa20 [ 2747.507599] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 2747.508745] __kmalloc_node_track_caller+0x1a6/0x3b0 [ 2747.509865] ? alloc_skb_with_frags+0x92/0x570 [ 2747.510893] __alloc_skb+0xb1/0x5b0 [ 2747.511712] alloc_skb_with_frags+0x92/0x570 [ 2747.512711] ? stack_trace_save+0x8c/0xc0 [ 2747.513639] sock_alloc_send_pskb+0x7af/0x930 [ 2747.514621] ? lock_chain_count+0x20/0x20 [ 2747.515529] ? perf_trace_run_bpf_submit+0xf5/0x190 [ 2747.516663] ? sk_alloc+0x350/0x350 [ 2747.517464] ? ip_rcv_finish_core.constprop.0+0x4fb/0x1c90 [ 2747.518678] ? ip_rcv_finish+0x4f/0x1e0 [ 2747.519550] ? ip_rcv+0xae/0xd0 [ 2747.520291] ? __netif_receive_skb_one_core+0x19b/0x1f0 [ 2747.521451] ? __netif_receive_skb+0x27/0x1d0 [ 2747.522430] ? netif_receive_skb+0x12d/0x710 [ 2747.523410] ? tun_rx_batched.isra.0+0x462/0x710 [ 2747.524456] ? tun_get_user+0x191d/0x32f0 [ 2747.525371] ? tun_chr_write_iter+0xe1/0x1e0 [ 2747.526334] ? new_sync_write+0x42c/0x660 [ 2747.527248] ? vfs_write+0x747/0xa70 [ 2747.528081] ? ksys_write+0x12d/0x260 [ 2747.528915] ? do_syscall_64+0x33/0x40 [ 2747.529782] ? entry_SYSCALL_64_after_hwframe+0x62/0xc7 [ 2747.530979] __ip_append_data+0x1628/0x3310 [ 2747.532003] ? icmp_push_reply+0x490/0x490 [ 2747.532973] ? ip_finish_output+0x330/0x330 [ 2747.533941] ? ipv4_mtu+0x1ed/0x2c0 [ 2747.534759] ? icmp_push_reply+0x490/0x490 [ 2747.535693] ip_append_data+0x114/0x1a0 [ 2747.536607] icmp_push_reply+0x13b/0x490 [ 2747.537528] __icmp_send+0xbc9/0x14d0 [ 2747.538421] ? icmp_route_lookup.constprop.0+0x11a0/0x11a0 [ 2747.539651] ? __lockdep_reset_lock+0x180/0x180 [ 2747.540704] ? find_held_lock+0x2c/0x110 [ 2747.541679] ? ip_route_input_noref+0x160/0x2f0 [ 2747.542720] ip_options_compile+0xad/0xf0 [ 2747.543636] ? __ip_options_compile+0x15d0/0x15d0 [ 2747.544715] ? ip_list_rcv_finish.constprop.0+0x590/0x590 [ 2747.545954] ip_rcv_finish_core.constprop.0+0x4fb/0x1c90 [ 2747.547175] ip_rcv_finish+0x4f/0x1e0 [ 2747.548032] ip_rcv+0xae/0xd0 [ 2747.548725] ? ip_local_deliver+0x200/0x200 [ 2747.549688] __netif_receive_skb_one_core+0x19b/0x1f0 [ 2747.550812] ? __netif_receive_skb_core+0x3780/0x3780 [ 2747.551944] ? lockdep_hardirqs_on_prepare+0x129/0x3e0 [ 2747.553113] ? ktime_get_with_offset+0x221/0x260 [ 2747.554143] ? trace_hardirqs_on+0x5b/0x180 [ 2747.555102] ? recalibrate_cpu_khz+0x10/0x10 [ 2747.556089] __netif_receive_skb+0x27/0x1d0 [ 2747.557043] netif_receive_skb+0x12d/0x710 [ 2747.557970] ? __netif_receive_skb+0x1d0/0x1d0 [ 2747.558976] ? SOFTIRQ_verbose+0x10/0x10 [ 2747.559881] ? __lockdep_reset_lock+0x180/0x180 [ 2747.560955] tun_rx_batched.isra.0+0x462/0x710 [ 2747.561946] ? lock_acquire+0x197/0x470 [ 2747.562832] ? tun_get_user+0xee3/0x32f0 [ 2747.563718] ? tun_sock_write_space+0x1d0/0x1d0 [ 2747.564768] ? lock_release+0x680/0x680 [ 2747.565634] ? tun_get_user+0x16e6/0x32f0 [ 2747.566557] ? lock_downgrade+0x6d0/0x6d0 [ 2747.567456] ? eth_type_trans+0x2ad/0x5b0 [ 2747.568392] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 2747.569561] tun_get_user+0x191d/0x32f0 [ 2747.570446] ? usage_accumulate+0x110/0x110 [ 2747.571434] ? tun_build_skb+0xfe0/0xfe0 [ 2747.572357] ? tun_device_event+0x990/0x1160 [ 2747.573335] ? SOFTIRQ_verbose+0x10/0x10 [ 2747.574279] tun_chr_write_iter+0xe1/0x1e0 [ 2747.575215] new_sync_write+0x42c/0x660 [ 2747.576114] ? new_sync_read+0x6f0/0x6f0 [ 2747.577011] ? _cond_resched+0x12/0x80 [ 2747.577883] ? avc_policy_seqno+0x9/0x70 [ 2747.578776] ? selinux_file_permission+0x92/0x520 [ 2747.579856] ? __fget_files+0x296/0x4c0 [ 2747.580776] vfs_write+0x747/0xa70 [ 2747.581589] ksys_write+0x12d/0x260 [ 2747.582395] ? __ia32_sys_read+0xb0/0xb0 [ 2747.583302] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 2747.584461] ? syscall_enter_from_user_mode+0x1d/0x50 [ 2747.585609] do_syscall_64+0x33/0x40 [ 2747.586429] entry_SYSCALL_64_after_hwframe+0x62/0xc7 [ 2747.587554] RIP: 0033:0x7fc05d62c5ff [ 2747.588389] Code: 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 99 fd ff ff 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 b8 01 00 00 00 0f 05 <48> 3d 00 f0 ff ff 77 31 44 89 c7 48 89 44 24 08 e8 cc fd ff ff 48 [ 2747.592416] RSP: 002b:00007fc05abef150 EFLAGS: 00000293 ORIG_RAX: 0000000000000001 [ 2747.594078] RAX: ffffffffffffffda RBX: 00007fc05d78cf60 RCX: 00007fc05d62c5ff [ 2747.595642] RDX: 000000000000003a RSI: 0000000020000000 RDI: 00000000000000f0 [ 2747.597210] RBP: 00007fc05abef1d0 R08: 0000000000000000 R09: 0000000000000000 [ 2747.598769] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000002 [ 2747.600345] R13: 00007ffc5aac442f R14: 00007fc05abef300 R15: 0000000000022000 05:37:20 executing program 4: perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_emit_ethernet(0x3a, &(0x7f0000000000)={@local, @remote, @void, {@ipv4={0x806, @tcp={{0x6, 0x4, 0x0, 0x0, 0x2c, 0x0, 0x0, 0x0, 0x32, 0x0, @dev, @private=0xa010100, {[@lsrr={0x83, 0x5}]}}, {{0x0, 0x0, 0x41424344, 0x41424344, 0x0, 0x7, 0x5}}}}}}, 0x0) openat$cgroup_devices(0xffffffffffffffff, 0x0, 0x2, 0x0) close(0xffffffffffffffff) pread64(0xffffffffffffffff, 0x0, 0x0, 0x2000) [ 2747.644501] FAULT_INJECTION: forcing a failure. [ 2747.644501] name failslab, interval 1, probability 0, space 0, times 0 [ 2747.647194] CPU: 0 PID: 12257 Comm: syz-executor.1 Not tainted 5.10.204 #1 [ 2747.648725] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 2747.650506] Call Trace: [ 2747.651088] dump_stack+0x107/0x167 [ 2747.651890] should_fail.cold+0x5/0xa [ 2747.652744] ? create_object.isra.0+0x3a/0xa20 [ 2747.653746] should_failslab+0x5/0x20 [ 2747.654575] kmem_cache_alloc+0x5b/0x310 [ 2747.655488] create_object.isra.0+0x3a/0xa20 [ 2747.656465] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 2747.657592] kmem_cache_alloc+0x159/0x310 [ 2747.658522] dst_alloc+0x9e/0x610 [ 2747.659312] rt_dst_clone+0x59/0x860 [ 2747.660302] ip_mc_finish_output+0x95/0x280 [ 2747.661257] ip_mc_output+0x71c/0xa30 [ 2747.662117] ip_push_pending_frames+0x12e/0x2c0 [ 2747.663153] icmp_push_reply+0x351/0x490 [ 2747.664078] __icmp_send+0xbc9/0x14d0 [ 2747.664947] ? icmp_route_lookup.constprop.0+0x11a0/0x11a0 [ 2747.666177] ? __lockdep_reset_lock+0x180/0x180 [ 2747.667221] ? find_held_lock+0x2c/0x110 [ 2747.668190] ? ip_route_input_noref+0x160/0x2f0 [ 2747.669232] ip_options_compile+0xad/0xf0 [ 2747.670141] ? __ip_options_compile+0x15d0/0x15d0 [ 2747.671198] ? ip_list_rcv_finish.constprop.0+0x590/0x590 [ 2747.672428] ip_rcv_finish_core.constprop.0+0x4fb/0x1c90 [ 2747.673636] ip_rcv_finish+0x4f/0x1e0 [ 2747.674486] ip_rcv+0xae/0xd0 [ 2747.675174] ? ip_local_deliver+0x200/0x200 [ 2747.676150] __netif_receive_skb_one_core+0x19b/0x1f0 [ 2747.677281] ? __netif_receive_skb_core+0x3780/0x3780 [ 2747.678429] ? lockdep_hardirqs_on_prepare+0x129/0x3e0 [ 2747.679578] ? ktime_get_with_offset+0x221/0x260 [ 2747.680620] ? trace_hardirqs_on+0x5b/0x180 [ 2747.681568] ? recalibrate_cpu_khz+0x10/0x10 [ 2747.682534] __netif_receive_skb+0x27/0x1d0 [ 2747.683475] netif_receive_skb+0x12d/0x710 [ 2747.684403] ? __netif_receive_skb+0x1d0/0x1d0 [ 2747.685396] ? SOFTIRQ_verbose+0x10/0x10 [ 2747.686287] ? __lockdep_reset_lock+0x180/0x180 [ 2747.687314] tun_rx_batched.isra.0+0x462/0x710 [ 2747.688308] ? lock_acquire+0x197/0x470 [ 2747.689178] ? tun_get_user+0xee3/0x32f0 [ 2747.690079] ? tun_sock_write_space+0x1d0/0x1d0 [ 2747.691110] ? lock_release+0x680/0x680 [ 2747.691999] ? tun_get_user+0x16e6/0x32f0 [ 2747.692912] ? lock_downgrade+0x6d0/0x6d0 [ 2747.693843] ? eth_type_trans+0x2ad/0x5b0 [ 2747.694772] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 2747.695959] tun_get_user+0x191d/0x32f0 [ 2747.696863] ? usage_accumulate+0x110/0x110 [ 2747.697879] ? tun_build_skb+0xfe0/0xfe0 [ 2747.698726] ? tun_device_event+0x990/0x1160 [ 2747.699633] ? finish_task_switch+0xef/0x5d0 [ 2747.700553] ? __switch_to+0x572/0xf70 [ 2747.701364] ? __switch_to_asm+0x34/0x60 [ 2747.702241] tun_chr_write_iter+0xe1/0x1e0 [ 2747.703129] new_sync_write+0x42c/0x660 [ 2747.703948] ? new_sync_read+0x6f0/0x6f0 [ 2747.704811] ? _cond_resched+0x5d/0x80 [ 2747.705635] ? avc_policy_seqno+0x9/0x70 [ 2747.706496] ? selinux_file_permission+0x92/0x520 [ 2747.707498] ? __fget_files+0x296/0x4c0 [ 2747.708359] vfs_write+0x747/0xa70 [ 2747.709108] ksys_write+0x12d/0x260 [ 2747.709852] ? __ia32_sys_read+0xb0/0xb0 [ 2747.710702] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 2747.711810] ? syscall_enter_from_user_mode+0x1d/0x50 [ 2747.712908] do_syscall_64+0x33/0x40 [ 2747.713695] entry_SYSCALL_64_after_hwframe+0x62/0xc7 [ 2747.714749] RIP: 0033:0x7f56064f65ff [ 2747.715534] Code: 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 99 fd ff ff 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 b8 01 00 00 00 0f 05 <48> 3d 00 f0 ff ff 77 31 44 89 c7 48 89 44 24 08 e8 cc fd ff ff 48 [ 2747.719293] RSP: 002b:00007f5603ab9150 EFLAGS: 00000293 ORIG_RAX: 0000000000000001 [ 2747.720910] RAX: ffffffffffffffda RBX: 00007f5606656f60 RCX: 00007f56064f65ff [ 2747.722370] RDX: 000000000000003a RSI: 0000000020000000 RDI: 00000000000000f0 [ 2747.723865] RBP: 00007f5603ab91d0 R08: 0000000000000000 R09: 0000000000000000 [ 2747.725357] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000002 [ 2747.726848] R13: 00007ffe3650190f R14: 00007f5603ab9300 R15: 0000000000022000 05:37:34 executing program 7: r0 = syz_io_uring_setup(0x7f02, &(0x7f0000000240)={0x0, 0x3}, &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000080)=0x0, &(0x7f00000000c0)=0x0) r3 = syz_init_net_socket$bt_l2cap(0x1f, 0x3, 0x0) syz_io_uring_submit(r1, r2, &(0x7f0000000040)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x80, &(0x7f0000000180)=@sco}, 0x0) r4 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, 0xffffffffffffffff, 0x0) syz_io_uring_submit(r4, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x3, 0x0, 0xffffffffffffffff, 0x0}, 0x8001) syz_io_uring_setup(0x4b33, &(0x7f00000002c0)={0x0, 0x20fe, 0x10, 0x2, 0x112, 0x0, r0}, &(0x7f0000ffe000/0x2000)=nil, &(0x7f0000ffe000/0x2000)=nil, 0x0, &(0x7f0000000140)=0x0) r6 = openat$tcp_congestion(0xffffffffffffff9c, &(0x7f0000000200), 0x1, 0x0) r7 = io_uring_register$IORING_REGISTER_PERSONALITY(r0, 0x9, 0x0, 0x0) syz_io_uring_submit(r1, r5, &(0x7f0000000580)=@IORING_OP_WRITEV={0x2, 0x1, 0x2004, @fd=r6, 0x7, &(0x7f0000000540)=[{&(0x7f0000000380)="62256bc166ded64125e7565ab0b0c467110cc4d729a6bd5f408edc6df14d5e8232d24da644d24dc2e4576db7b6ae26bdd840572dfb89c083d9ecf99d4b791da4a753cdd8da3bc0c9d90ff2c4ba3896bea6f935f1e35422a8482d5dcff613160e8174325e6951846b5bf4a21f1e838e0330a64a6616d9ae887e9897c15086bf13b9576eba6474600b53c001118865898719f6a3bc6fa15f6050c844326b075ff391bdcd8a4a721fd9e21cafdec98b5162e4820c51a645186940ddbceb3f061e5657117b86f57b6638d5d50dbfb4e2ebdd6767b9ad649243020b5223a709f6247fe214cefaadc9adc7bb2292055ddf41a95bb043d870e459", 0xf7}, {&(0x7f0000000480)="b05738d73c1db88c716e66796ae67d5d3d45a11f5e87e83d32da4f179e1a08ae565f3952f86b5811cb7253afafb0e4ead272dee9284c0816fc3b9bc19c62c013e160244a1c2fd7ed0e39b8718b0b6dff4dffced8bb1fe77f17609e18283ada746b4a6fec54aa24528f43cf6f498739018fcb17250f", 0x75}], 0x2, 0x10, 0x1, {0x3, r7}}, 0x9) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) io_uring_enter(r0, 0x7e66, 0x9016, 0x0, &(0x7f0000000340)={[0xec16]}, 0x8) 05:37:34 executing program 2: preadv2(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x2) openat(0xffffffffffffff9c, 0x0, 0x0, 0x0) r0 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x105142, 0x62) r1 = openat(0xffffffffffffff9c, 0x0, 0x0, 0x0) fallocate(r1, 0x0, 0x0, 0x8800000) lseek(0xffffffffffffffff, 0x0, 0x0) openat(0xffffffffffffffff, 0x0, 0x0, 0x20) ioctl$FS_IOC_RESVSP(0xffffffffffffffff, 0x40305828, 0x0) faccessat2(0xffffffffffffffff, 0x0, 0x0, 0x0) openat(0xffffffffffffffff, 0x0, 0x1a340, 0x100) ioctl$LOOP_CTL_REMOVE(0xffffffffffffffff, 0x4c81, 0x0) r2 = fsmount(0xffffffffffffffff, 0x0, 0x0) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r3 = openat(r2, &(0x7f0000000000)='/proc/self/exe\x00', 0x4840, 0x2d) sendfile(r0, r3, 0x0, 0x10000000f) 05:37:34 executing program 6: r0 = socket$inet6_tcp(0xa, 0x1, 0x0) setsockopt$inet6_tcp_int(r0, 0x6, 0x2, &(0x7f0000000080)=0x90, 0x4) bind$inet6(r0, &(0x7f00000000c0)={0xa, 0x4e20, 0x0, @loopback}, 0x1c) connect$inet6(r0, &(0x7f0000000000)={0xa, 0x4e20, 0x0, @empty}, 0x1c) setsockopt$sock_int(r0, 0x1, 0x8, &(0x7f0000002ec0), 0x4) sendmsg$inet6(r0, &(0x7f00000006c0)={0x0, 0x0, &(0x7f0000000540)=[{&(0x7f00000001c0)="cf", 0xfffffdef}], 0x1}, 0x10044001) setsockopt$SO_TIMESTAMP(r0, 0x1, 0x40, &(0x7f0000000280)=0x380, 0x4) recvfrom$inet6(r0, &(0x7f0000001e00)=""/4096, 0x1000, 0xcd08, 0x0, 0x0) (fail_nth: 9) 05:37:34 executing program 0: perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_emit_ethernet(0x3a, &(0x7f0000000000)={@local, @remote, @void, {@ipv4={0x800, @tcp={{0x6, 0x4, 0x0, 0x0, 0x2c, 0x0, 0x0, 0x0, 0x32, 0x0, @dev, @private=0xa010100, {[@lsrr={0x83, 0x5}]}}, {{0x0, 0x0, 0x41424344, 0x41424344, 0x0, 0x7, 0x5}}}}}}, 0x0) (fail_nth: 15) ioctl$BTRFS_IOC_BALANCE(0xffffffffffffffff, 0x5000940c, 0x0) close(0xffffffffffffffff) 05:37:34 executing program 3: r0 = perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x0, 0x3}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) pread64(0xffffffffffffffff, 0x0, 0x7ffffffff000, 0xf0ff1f00000000) bind$inet6(0xffffffffffffffff, &(0x7f0000000040)={0xa, 0x4e23, 0x0, @remote, 0xffff}, 0x1c) r1 = socket$netlink(0x10, 0x3, 0x0) sendmsg$nl_generic(0xffffffffffffffff, 0x0, 0x41) setsockopt$netlink_NETLINK_BROADCAST_ERROR(r1, 0x10e, 0x4, &(0x7f00000000c0)=0x1000, 0x4) sendmsg$nl_generic(r1, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000100)=ANY=[@ANYBLOB="28000000100001000000000000000000000000000500000024386a562b500000000c00008008000d00ac141400"], 0x28}}, 0x0) chdir(&(0x7f00000001c0)='./file0\x00') r2 = syz_open_dev$mouse(&(0x7f0000000400), 0x7fffffff, 0x2d0401) sendmsg$NL80211_CMD_ADD_NAN_FUNCTION(r2, &(0x7f0000000500)={&(0x7f0000000440)={0x10, 0x0, 0x0, 0x10}, 0xc, &(0x7f00000004c0)={&(0x7f00000002c0)={0x20, 0x0, 0x100, 0x70bd2b, 0x25dfdbfd, {{}, {@void, @val={0xc, 0x99, {0x3, 0x1b}}}}}, 0x20}, 0x1, 0x0, 0x0, 0x95}, 0x40000) ioctl$FICLONE(r2, 0x40049409, r0) r3 = open$dir(&(0x7f0000000000)='.\x00', 0x0, 0x0) perf_event_open(&(0x7f0000001d80)={0x6, 0x80, 0x0, 0x0, 0x0, 0x0, 0x4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffd, 0x0, @perf_bp={0x0, 0xffffffff81000000}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffd}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r4 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000040)='/proc/crypto\x00', 0x0, 0x0) r5 = openat2(r3, &(0x7f0000000180)='./file0\x00', &(0x7f0000000200)={0x800, 0x1b9}, 0x18) setsockopt$SO_TIMESTAMPING(r5, 0x1, 0x25, &(0x7f0000000240)=0x7100, 0x4) pread64(r4, &(0x7f00000010c0)=""/4088, 0xff8, 0x0) writev(0xffffffffffffffff, &(0x7f00000003c0)=[{0x0}, {&(0x7f0000000680)="7fd41c04550300020000000000000000010046e92ed2616f72657d044129471d4fd47924fd0900e09e0068deec02", 0x2e}], 0x2) 05:37:34 executing program 4: perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_emit_ethernet(0x3a, &(0x7f0000000000)={@local, @remote, @void, {@ipv4={0x808, @tcp={{0x6, 0x4, 0x0, 0x0, 0x2c, 0x0, 0x0, 0x0, 0x32, 0x0, @dev, @private=0xa010100, {[@lsrr={0x83, 0x5}]}}, {{0x0, 0x0, 0x41424344, 0x41424344, 0x0, 0x7, 0x5}}}}}}, 0x0) openat$cgroup_devices(0xffffffffffffffff, 0x0, 0x2, 0x0) close(0xffffffffffffffff) pread64(0xffffffffffffffff, 0x0, 0x0, 0x2000) 05:37:34 executing program 1: perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_emit_ethernet(0x3a, &(0x7f0000000000)={@local, @remote, @void, {@ipv4={0x800, @tcp={{0x6, 0x4, 0x0, 0x0, 0x2c, 0x0, 0x0, 0x0, 0x32, 0x0, @dev, @private=0xa010100, {[@lsrr={0x83, 0x5}]}}, {{0x0, 0x0, 0x41424344, 0x41424344, 0x0, 0x7, 0x5}}}}}}, 0x0) (fail_nth: 19) 05:37:34 executing program 5: syz_emit_ethernet(0x36, &(0x7f00000010c0)={@local, @remote, @val={@void, {0x8100, 0x5, 0x0, 0x3}}, {@ipv4={0x800, @igmp={{0x7, 0x4, 0x0, 0x0, 0x24, 0x0, 0x0, 0x0, 0x2, 0x0, @local, @private=0xa010112, {[@cipso={0x86, 0x8, 0x0, [{0x0, 0x2}]}]}}, {0x0, 0x0, 0x0, @broadcast}}}}}, 0x0) r0 = syz_init_net_socket$802154_dgram(0x24, 0x2, 0x0) write$tun(0xffffffffffffffff, &(0x7f0000001100)={@void, @val={0x0, 0x1, 0x2d, 0xce, 0x9, 0xfb07}, @ipv6=@generic={0x5, 0x6, "51d0cc", 0x369, 0x8, 0x1, @private1, @loopback, {[@srh={0x6, 0xe, 0x4, 0x7, 0x2, 0x40, 0x6, [@rand_addr=' \x01\x00', @local, @loopback, @remote, @ipv4={'\x00', '\xff\xff', @loopback}, @rand_addr=' \x01\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x02', @private2={0xfc, 0x2, '\x00', 0x1}]}, @dstopts={0x1, 0x0, '\x00', [@padn={0x1, 0x3, [0x0, 0x0, 0x0]}]}, @routing={0x84, 0x8, 0x1, 0x8, 0x0, [@private2, @initdev={0xfe, 0x88, '\x00', 0x1, 0x0}, @empty, @private2]}, @routing={0x4, 0x4, 0x2, 0x1, 0x0, [@rand_addr=' \x01\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x01', @loopback]}, @hopopts={0x3a}, @hopopts={0x11, 0x2e, '\x00', [@pad1, @padn={0x1, 0x4, [0x0, 0x0, 0x0, 0x0]}, @jumbo={0xc2, 0x4, 0x3}, @generic={0x20, 0xcc, "4e109e421140973b4220dad16bff837cdeb5b80f5a02514cd75c0a63d1dcf435a87aabb1363b0a9ca8a502399af130441c9005ff50e5caa25a646ac1963ab5dd84269ab6637e835758f631727a95644b8258297dba5a7e8eb5bed9ced3d9a831d2188eb948132d49dea3a81e11f9c1ceee4d5967abcd0ccbb692317a9123e3559051f2908fabceedca61c95c18e8695ce863f41ae8ffca7fc0ef268ea95db2e11ad521aea7cacec4b12060e129b48d3b67799a76e77166cba7cd3d92b91ed89f23ab447d144342687f35fd9d"}, @pad1, @generic={0xff, 0x90, "94fcef449c457a729bbefac8a8d00a90a18f135bea07e037c60576538da0daa55c4591d3981d4749bb5ef6bab44881f4b8528bba35693d45bfac4930ba5105db4eeb21b142a1c06b37f72b00fba355c3445609d919a870cfb9ca2b0c3eb345a1ae471d8e4de71fa01c7c37f08532831edc4e3ba3ab559ca65338d0b0e12d01ac46af6e660e878f155c2dbb3155205a66"}]}, @fragment={0x88, 0x0, 0x81, 0x1, 0x0, 0x3, 0x67}, @srh={0x1d, 0x10, 0x4, 0x8, 0x0, 0x18, 0xfffc, [@initdev={0xfe, 0x88, '\x00', 0x0, 0x0}, @private0, @mcast1, @remote, @private1, @mcast1, @ipv4={'\x00', '\xff\xff', @initdev={0xac, 0x1e, 0x0, 0x0}}, @private2]}], "2ec3181e85992dfa65d74b2ce43e258551b791adb09de05e87bcaf624bc459dd71f38fe748287482e4b10404815b71090daa76836168a04a81a0aa16169b091e6e5928b2c1f19b1f9f69c7604b607d97b5fd7419d8345dcb79"}}}, 0x39b) ioctl$AUTOFS_DEV_IOCTL_SETPIPEFD(0xffffffffffffffff, 0xc0189378, &(0x7f0000000000)={{0x1, 0x1, 0x18, 0xffffffffffffffff, {r0}}, './file0\x00'}) write$tun(r2, &(0x7f0000000080)=ANY=[@ANYBLOB="000022ebbc48efd102564b7dafc37a7fa39e2c9ba77b10152e36a839b38129bb3735bfff0f7622664e1b0f71459d8a3508c8fe53873efcf9c4640e1f2600f7ff802e115ccb6ed734e9df220114d96596fd3ad77216822749d955b52207f9fd2ac8c890888f8cbabafeec2f9bad01fa9d2b5490edf6f40d4f4a2b08c10e6a2cfd145359038812220d9852ac1eb866a2e785da0e086e5b7aff7d5057cae00a8e684863ecb2a83934d01a7d554c70cd463c6d76518a119d8d1dc8bea79ca14b201c7a81484d30d33816929580f28fea64b92888420ddefedd2efb29290ecc375a71"], 0xe0) r3 = openat$procfs(0xffffffffffffff9c, &(0x7f00000014c0)='/proc/bus/input/devices\x00', 0x0, 0x0) pread64(r1, &(0x7f0000001500)=""/4096, 0x1000, 0x52f) pread64(r3, &(0x7f0000000040)=""/4126, 0x101e, 0x2000) r4 = syz_open_dev$vcsa(&(0x7f0000002880), 0x7, 0x4000) write$tun(r4, &(0x7f00000028c0)={@void, @void, @eth={@link_local, @dev={'\xaa\xaa\xaa\xaa\xaa', 0xe}, @val={@void, {0x8100, 0x4, 0x1, 0x3}}, {@canfd={0xd, {{0x4}, 0x2e, 0x0, 0x0, 0x0, "533a1a270396d660186d56d83c65352e372ec34dd741305f92c82a14e093cc451e235b688a712a30815cf729af64f2d8dafe1687c049d8d77b4dfc743a8b25e9"}}}}}, 0x5a) openat(r2, &(0x7f0000001080)='./file0\x00', 0x20080, 0x103) write$tun(r3, &(0x7f0000002500)=ANY=[@ANYBLOB="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", @ANYRES32=0x41424344, @ANYRES32=0x41424344, @ANYBLOB="91040004907800081e0ff0807f0000010100f8f1a593d0000fe7d8047e2632560df2fed1c74f31910cbab99ecb515187258264fd5e960a22f93f5d8114638132a03852e71fa3c9060193af30b115bb6119af04107423579879252e460f69a1267cd94d696763b2ee968a7dce30fd0d20f39cabc2415a1d0d44f840862400cf74e221ebcab2757007df21315bb7f9d41cf23eee8eaad330064058b893a7a15e5ef875d56119e1fcdd50482f7fb146c147fed9af325cdcdf717e14429ae6fbbda021ca6e6ce7c5be85bff1e2af1204bce9851893154ebc29f6c26062a7fde3b01128492353d74a9930461e4bbaa01065aa6bbade"], 0x297) [ 2761.838535] netlink: 8 bytes leftover after parsing attributes in process `syz-executor.3'. [ 2761.849208] FAULT_INJECTION: forcing a failure. [ 2761.849208] name failslab, interval 1, probability 0, space 0, times 0 [ 2761.851496] CPU: 0 PID: 12288 Comm: syz-executor.0 Not tainted 5.10.204 #1 [ 2761.852900] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 2761.854664] Call Trace: [ 2761.855235] dump_stack+0x107/0x167 [ 2761.856000] should_fail.cold+0x5/0xa [ 2761.856795] ? skb_clone+0x14f/0x3d0 [ 2761.857585] should_failslab+0x5/0x20 [ 2761.858352] kmem_cache_alloc+0x5b/0x310 [ 2761.859218] skb_clone+0x14f/0x3d0 [ 2761.859950] ip_mc_output+0x69c/0xa30 [ 2761.860767] ip_push_pending_frames+0x12e/0x2c0 [ 2761.861724] icmp_push_reply+0x351/0x490 [ 2761.862584] __icmp_send+0xbc9/0x14d0 [ 2761.863385] ? icmp_route_lookup.constprop.0+0x11a0/0x11a0 [ 2761.864559] ? __lockdep_reset_lock+0x180/0x180 [ 2761.865540] ? find_held_lock+0x2c/0x110 [ 2761.866458] ? ip_route_input_noref+0x160/0x2f0 [ 2761.867425] ip_options_compile+0xad/0xf0 [ 2761.868318] ? __ip_options_compile+0x15d0/0x15d0 [ 2761.869298] ? ip_list_rcv_finish.constprop.0+0x590/0x590 [ 2761.870474] ip_rcv_finish_core.constprop.0+0x4fb/0x1c90 [ 2761.871595] ip_rcv_finish+0x4f/0x1e0 [ 2761.872404] ip_rcv+0xae/0xd0 [ 2761.873043] ? ip_local_deliver+0x200/0x200 [ 2761.873939] __netif_receive_skb_one_core+0x19b/0x1f0 [ 2761.875084] ? __netif_receive_skb_core+0x3780/0x3780 [ 2761.876630] ? __lock_acquire+0xbb1/0x5b00 [ 2761.877662] __netif_receive_skb+0x27/0x1d0 [ 2761.878689] netif_receive_skb+0x12d/0x710 [ 2761.879673] ? __netif_receive_skb+0x1d0/0x1d0 [ 2761.880772] ? SOFTIRQ_verbose+0x10/0x10 [ 2761.882016] ? __lockdep_reset_lock+0x180/0x180 [ 2761.883424] tun_rx_batched.isra.0+0x462/0x710 [ 2761.884802] ? lock_acquire+0x197/0x470 [ 2761.885981] ? tun_get_user+0xee3/0x32f0 [ 2761.887205] ? tun_sock_write_space+0x1d0/0x1d0 [ 2761.888600] ? lock_release+0x680/0x680 [ 2761.889791] ? tun_get_user+0x16e6/0x32f0 [ 2761.891024] ? lock_downgrade+0x6d0/0x6d0 [ 2761.892160] FAULT_INJECTION: forcing a failure. [ 2761.892160] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 2761.892274] ? eth_type_trans+0x2ad/0x5b0 [ 2761.896289] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 2761.897715] tun_get_user+0x191d/0x32f0 [ 2761.898901] ? usage_accumulate+0x110/0x110 [ 2761.900168] ? tun_build_skb+0xfe0/0xfe0 [ 2761.901284] ? tun_device_event+0x990/0x1160 [ 2761.902602] ? SOFTIRQ_verbose+0x10/0x10 [ 2761.903879] tun_chr_write_iter+0xe1/0x1e0 [ 2761.905156] new_sync_write+0x42c/0x660 [ 2761.906349] ? new_sync_read+0x6f0/0x6f0 [ 2761.907556] ? _cond_resched+0x12/0x80 [ 2761.908679] ? avc_policy_seqno+0x9/0x70 [ 2761.909648] ? selinux_file_permission+0x92/0x520 [ 2761.910877] ? __fget_files+0x296/0x4c0 [ 2761.911839] vfs_write+0x747/0xa70 [ 2761.912934] ksys_write+0x12d/0x260 [ 2761.914013] ? __ia32_sys_read+0xb0/0xb0 [ 2761.915235] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 2761.916790] ? syscall_enter_from_user_mode+0x1d/0x50 [ 2761.918350] do_syscall_64+0x33/0x40 [ 2761.919452] entry_SYSCALL_64_after_hwframe+0x62/0xc7 [ 2761.920974] RIP: 0033:0x7fc05d62c5ff [ 2761.922070] Code: 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 99 fd ff ff 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 b8 01 00 00 00 0f 05 <48> 3d 00 f0 ff ff 77 31 44 89 c7 48 89 44 24 08 e8 cc fd ff ff 48 [ 2761.927418] RSP: 002b:00007fc05abef150 EFLAGS: 00000293 ORIG_RAX: 0000000000000001 [ 2761.929642] RAX: ffffffffffffffda RBX: 00007fc05d78cf60 RCX: 00007fc05d62c5ff [ 2761.931719] RDX: 000000000000003a RSI: 0000000020000000 RDI: 00000000000000f0 [ 2761.933817] RBP: 00007fc05abef1d0 R08: 0000000000000000 R09: 0000000000000000 [ 2761.935898] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000002 [ 2761.937617] R13: 00007ffc5aac442f R14: 00007fc05abef300 R15: 0000000000022000 [ 2761.939307] CPU: 1 PID: 12289 Comm: syz-executor.1 Not tainted 5.10.204 #1 [ 2761.940119] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 2761.941053] Call Trace: [ 2761.941358] dump_stack+0x107/0x167 [ 2761.941766] should_fail.cold+0x5/0xa [ 2761.942201] _copy_to_user+0x2e/0x180 [ 2761.942625] simple_read_from_buffer+0xcc/0x160 [ 2761.943142] proc_fail_nth_read+0x198/0x230 [ 2761.943631] ? proc_sessionid_read+0x230/0x230 [ 2761.944157] ? security_file_permission+0x24e/0x570 [ 2761.944709] ? perf_trace_initcall_start+0x101/0x380 [ 2761.945277] ? proc_sessionid_read+0x230/0x230 [ 2761.945986] vfs_read+0x228/0x580 [ 2761.946382] ksys_read+0x12d/0x260 [ 2761.946770] ? vfs_write+0xa70/0xa70 05:37:34 executing program 7: perf_event_open(&(0x7f0000001d80)={0x4, 0x80, 0x0, 0x0, 0x10, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x0, 0x0, 0x800000, 0x9, 0x0, 0x5b, 0x0, 0x0, 0xe725}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) openat(0xffffffffffffffff, &(0x7f0000000240)='./file1\x00', 0x4102, 0xc0) r0 = openat(0xffffffffffffff9c, &(0x7f0000000140)='./cgroup.net/cgroup.procs\x00', 0x0, 0x0) r1 = openat(0xffffffffffffff9c, &(0x7f00000001c0)='./cgroup.net/cgroup.procs\x00', 0x2, 0x0) sendfile(r1, r0, &(0x7f0000000000)=0x80, 0x6) creat(&(0x7f0000000080)='./file0\x00', 0x38) syz_genetlink_get_family_id$nl80211(&(0x7f0000000040), 0xffffffffffffffff) r2 = openat$selinux_attr(0xffffffffffffff9c, &(0x7f0000000180)='/proc/self/attr/fscreate\x00', 0x2, 0x0) ioctl$FS_IOC_FSSETXATTR(r2, 0x401c5820, &(0x7f0000000200)={0xfc0, 0x6, 0x26, 0x6, 0x5}) ioctl$sock_SIOCGIFINDEX_80211(0xffffffffffffffff, 0x8933, &(0x7f0000000100)={'wlan0\x00', 0x0}) syz_mount_image$msdos(&(0x7f00000013c0), &(0x7f0000001400)='./file1\x00', 0x0, 0x0, &(0x7f0000001900), 0x50, &(0x7f00000003c0)=ANY=[@ANYRES16=r3, @ANYRESDEC, @ANYBLOB="d2cc4c7927c428e32bd6fbffc51f173a91a507005d062e7a1999a402000000001cc8c7dccdf691519db5ed7ff08ee809bb02809c8476c1916f5c7712d2120c2cf41442439b0900c19af659e94f5fdcb19d170cf3c7a5f7e47e441540c733ca4f83f44ac2541030723f9b98ed2091631d6356a919e95a5d459b2d72e321483551d3f28762cfc5fcdbdf4dadf2e9b461a93fab9419043d4e874af3361633329c8a23f221e2313375b7f62d1fa9b537fc00c27769e3f4b3951a995f6fc326803fdd2b32ab4eca075e382c713376146682c4ae3081b3cccee3c4707eb98c3544850447b0653ddbb13847a2621eeb"]) r4 = socket$inet6_udp(0xa, 0x2, 0x0) connect$inet6(r4, &(0x7f0000000540)={0xa, 0x0, 0x0, @dev, 0x2}, 0x1c) connect$inet6(r4, &(0x7f0000000000)={0xa, 0x4e20, 0x0, @ipv4={'\x00', '\xff\xff', @multicast2}, 0x9}, 0x1c) sendmmsg$inet6(r4, &(0x7f0000004d00), 0x2f, 0x0) ioctl$sock_SIOCSIFVLAN_GET_VLAN_EGRESS_PRIORITY_CMD(r4, 0x8983, &(0x7f00000000c0)) 05:37:34 executing program 5: r0 = syz_io_uring_setup(0x3a75, &(0x7f0000000080), &(0x7f0000ffb000/0x3000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=0x0, &(0x7f0000000100)) io_uring_register$IORING_REGISTER_PERSONALITY(r0, 0x9, 0x0, 0x0) io_uring_register$IORING_REGISTER_PERSONALITY(r0, 0x9, 0x0, 0x0) r2 = syz_open_procfs(0x0, &(0x7f00000005c0)='fdinfo/3\x00') pread64(r2, &(0x7f0000000040)=""/55, 0x37, 0x0) r3 = syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000040)='./file0\x00', 0x40004, 0x3, &(0x7f0000000200)=[{&(0x7f0000000440)="2000000080000000060000006a0000000f000000000000000100000001000000004000000040000020000000e0f4655fe0f4655f0100ffff53ef010001000000dff4655f000000000000000001000000000000000b0000000001", 0x5a, 0x400}, {&(0x7f0000010400)="020000000300000004", 0x9, 0x800}, {&(0x7f0000000100)="ed4100000093b200dff4655fe0f4655fe0f4655f0000080000000400045539545cee", 0x22, 0x2100}], 0x0, &(0x7f0000000140)=ANY=[]) r4 = mmap$IORING_OFF_CQ_RING(&(0x7f0000ffc000/0x2000)=nil, 0x2000, 0x2000002, 0x80010, r3, 0x8000000) openat$vcsu(0xffffffffffffff9c, &(0x7f0000000140), 0x0, 0x0) r5 = syz_io_uring_setup(0x3a75, &(0x7f0000000500)={0x0, 0x1cb2}, &(0x7f0000ffb000/0x3000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200), &(0x7f0000000100)=0x0) r7 = io_uring_register$IORING_REGISTER_PERSONALITY(r5, 0x9, 0x0, 0x0) syz_io_uring_submit(r4, r6, &(0x7f0000000180)=@IORING_OP_TEE={0x21, 0x5, 0x0, @fd, 0x0, 0x0, 0x3ff, 0x6, 0x0, {0x0, r7, r3}}, 0xfffff801) syz_io_uring_submit(r4, r6, &(0x7f00000004c0)=@IORING_OP_SYNC_FILE_RANGE={0x8, 0x3, 0x0, @fd_index=0x9, 0x0, 0x0, 0x5, 0x7}, 0x7) r8 = io_uring_register$IORING_REGISTER_PERSONALITY(r2, 0x9, 0x0, 0x0) syz_io_uring_submit(r1, r6, &(0x7f0000000000)=@IORING_OP_MADVISE={0x19, 0x0, 0x0, 0x0, 0x0, &(0x7f0000ffd000/0x2000)=nil, 0x2000, 0x4, 0x2, {0x0, r8}}, 0x200) 05:37:34 executing program 4: perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_emit_ethernet(0x3a, &(0x7f0000000000)={@local, @remote, @void, {@ipv4={0x80a, @tcp={{0x6, 0x4, 0x0, 0x0, 0x2c, 0x0, 0x0, 0x0, 0x32, 0x0, @dev, @private=0xa010100, {[@lsrr={0x83, 0x5}]}}, {{0x0, 0x0, 0x41424344, 0x41424344, 0x0, 0x7, 0x5}}}}}}, 0x0) openat$cgroup_devices(0xffffffffffffffff, 0x0, 0x2, 0x0) close(0xffffffffffffffff) pread64(0xffffffffffffffff, 0x0, 0x0, 0x2000) [ 2761.947193] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 2761.947888] ? syscall_enter_from_user_mode+0x1d/0x50 [ 2761.948479] do_syscall_64+0x33/0x40 [ 2761.948897] entry_SYSCALL_64_after_hwframe+0x62/0xc7 [ 2761.949461] RIP: 0033:0x7f56064f669c [ 2761.949862] Code: ec 28 48 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 f9 fc ff ff 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 31 c0 0f 05 <48> 3d 00 f0 ff ff 77 34 44 89 c7 48 89 44 24 08 e8 2f fd ff ff 48 [ 2761.951899] RSP: 002b:00007f5603ab9170 EFLAGS: 00000246 ORIG_RAX: 0000000000000000 [ 2761.952728] RAX: ffffffffffffffda RBX: 000000000000003a RCX: 00007f56064f669c [ 2761.953487] RDX: 000000000000000f RSI: 00007f5603ab91e0 RDI: 0000000000000004 [ 2761.954247] RBP: 00007f5603ab91d0 R08: 0000000000000000 R09: 0000000000000000 [ 2761.955007] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 2761.955767] R13: 00007ffe3650190f R14: 00007f5603ab9300 R15: 0000000000022000 [ 2762.012379] FAULT_INJECTION: forcing a failure. [ 2762.012379] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 2762.015288] CPU: 0 PID: 12301 Comm: syz-executor.6 Not tainted 5.10.204 #1 [ 2762.016928] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 2762.018809] Call Trace: [ 2762.019416] dump_stack+0x107/0x167 [ 2762.020266] should_fail.cold+0x5/0xa [ 2762.021142] _copy_to_iter+0x264/0x12d0 [ 2762.022061] ? mark_lock+0xf5/0x2df0 [ 2762.022917] ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0 [ 2762.024093] ? SOFTIRQ_verbose+0x10/0x10 [ 2762.025044] ? _copy_from_iter_nocache+0xd60/0xd60 [ 2762.026145] ? lock_chain_count+0x20/0x20 [ 2762.027096] ? __virt_addr_valid+0x128/0x350 [ 2762.028086] ? __check_object_size+0x319/0x440 [ 2762.029145] simple_copy_to_iter+0x4c/0x70 [ 2762.030101] __skb_datagram_iter+0x4f7/0x880 [ 2762.031115] ? zerocopy_sg_from_iter+0x110/0x110 [ 2762.032224] skb_copy_datagram_iter+0x88/0x190 [ 2762.033256] tcp_recvmsg+0x13b5/0x2930 [ 2762.034172] ? tcp_splice_read+0x8c0/0x8c0 [ 2762.035133] ? sock_has_perm+0x1ea/0x280 [ 2762.036068] ? selinux_socket_post_create+0x7f0/0x7f0 [ 2762.037231] ? lock_downgrade+0x6d0/0x6d0 [ 2762.038184] ? perf_trace_lock+0xac/0x490 [ 2762.039121] ? tcp_splice_read+0x8c0/0x8c0 [ 2762.040086] inet6_recvmsg+0x13b/0x6e0 [ 2762.040972] ? inet6_bind+0x120/0x120 [ 2762.041853] ? security_socket_recvmsg+0x95/0xc0 [ 2762.042919] ? inet6_bind+0x120/0x120 [ 2762.043788] sock_recvmsg+0xff/0x180 [ 2762.044645] __sys_recvfrom+0x1be/0x2f0 [ 2762.045556] ? __ia32_sys_send+0x100/0x100 [ 2762.046503] ? lock_downgrade+0x6d0/0x6d0 [ 2762.047483] ? wait_for_completion_io+0x270/0x270 [ 2762.048732] ? rcu_read_lock_any_held+0x75/0xa0 [ 2762.049801] ? vfs_write+0x354/0xa70 [ 2762.050664] ? fput_many+0x2f/0x1a0 [ 2762.051504] ? ksys_write+0x1a9/0x260 [ 2762.052397] ? __ia32_sys_read+0xb0/0xb0 [ 2762.053340] __x64_sys_recvfrom+0xdd/0x1b0 [ 2762.054319] ? syscall_enter_from_user_mode+0x1d/0x50 [ 2762.055493] do_syscall_64+0x33/0x40 [ 2762.056346] entry_SYSCALL_64_after_hwframe+0x62/0xc7 [ 2762.057510] RIP: 0033:0x7f7d1addbb19 [ 2762.058362] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 2762.062533] RSP: 002b:00007f7d18330188 EFLAGS: 00000246 ORIG_RAX: 000000000000002d [ 2762.064269] RAX: ffffffffffffffda RBX: 00007f7d1aeef020 RCX: 00007f7d1addbb19 [ 2762.065891] RDX: 0000000000001000 RSI: 0000000020001e00 RDI: 0000000000000003 [ 2762.067517] RBP: 00007f7d183301d0 R08: 0000000000000000 R09: 0000000000000000 [ 2762.069141] R10: 000000000000cd08 R11: 0000000000000246 R12: 0000000000000001 [ 2762.070763] R13: 00007ffe0ac926cf R14: 00007f7d18330300 R15: 0000000000022000 05:37:34 executing program 4: perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_emit_ethernet(0x3a, &(0x7f0000000000)={@local, @remote, @void, {@ipv4={0x80e, @tcp={{0x6, 0x4, 0x0, 0x0, 0x2c, 0x0, 0x0, 0x0, 0x32, 0x0, @dev, @private=0xa010100, {[@lsrr={0x83, 0x5}]}}, {{0x0, 0x0, 0x41424344, 0x41424344, 0x0, 0x7, 0x5}}}}}}, 0x0) openat$cgroup_devices(0xffffffffffffffff, 0x0, 0x2, 0x0) close(0xffffffffffffffff) pread64(0xffffffffffffffff, 0x0, 0x0, 0x2000) [ 2762.085121] FAT-fs (loop7): Unrecognized mount option "ÿÿ18446744073709551615ÒÌLy'Ä(ã+ÖûÿÅ:‘¥" or missing value 05:37:34 executing program 0: perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_emit_ethernet(0x3a, &(0x7f0000000000)={@local, @remote, @void, {@ipv4={0x800, @tcp={{0x6, 0x4, 0x0, 0x0, 0x2c, 0x0, 0x0, 0x0, 0x32, 0x0, @dev, @private=0xa010100, {[@lsrr={0x83, 0x5}]}}, {{0x0, 0x0, 0x41424344, 0x41424344, 0x0, 0x7, 0x5}}}}}}, 0x0) (fail_nth: 16) ioctl$BTRFS_IOC_BALANCE(0xffffffffffffffff, 0x5000940c, 0x0) close(0xffffffffffffffff) 05:37:34 executing program 1: perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_emit_ethernet(0x3a, &(0x7f0000000000)={@local, @remote, @void, {@ipv4={0x800, @tcp={{0x6, 0x4, 0x0, 0x0, 0x2c, 0x0, 0x0, 0x0, 0x32, 0x0, @dev, @private=0xa010100, {[@lsrr={0x83, 0x5}]}}, {{0x0, 0x0, 0x41424344, 0x41424344, 0x0, 0x7, 0x5}}}}}}, 0x0) [ 2762.146233] FAULT_INJECTION: forcing a failure. [ 2762.146233] name failslab, interval 1, probability 0, space 0, times 0 [ 2762.146441] EXT4-fs (loop5): mounted filesystem without journal. Opts: ,errors=continue [ 2762.149135] CPU: 0 PID: 12313 Comm: syz-executor.0 Not tainted 5.10.204 #1 [ 2762.151953] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 2762.153878] Call Trace: [ 2762.154613] dump_stack+0x107/0x167 [ 2762.155483] should_fail.cold+0x5/0xa [ 2762.156387] ? skb_clone+0x14f/0x3d0 [ 2762.157263] should_failslab+0x5/0x20 [ 2762.158148] kmem_cache_alloc+0x5b/0x310 [ 2762.159107] skb_clone+0x14f/0x3d0 [ 2762.159942] ip_mc_output+0x69c/0xa30 [ 2762.160867] ip_push_pending_frames+0x12e/0x2c0 [ 2762.161959] icmp_push_reply+0x351/0x490 [ 2762.162915] __icmp_send+0xbc9/0x14d0 [ 2762.163830] ? icmp_route_lookup.constprop.0+0x11a0/0x11a0 [ 2762.165133] ? __lockdep_reset_lock+0x180/0x180 [ 2762.166233] ? find_held_lock+0x2c/0x110 [ 2762.167248] ? ip_route_input_noref+0x160/0x2f0 [ 2762.168347] ip_options_compile+0xad/0xf0 [ 2762.169304] ? __ip_options_compile+0x15d0/0x15d0 [ 2762.170418] ? ip_list_rcv_finish.constprop.0+0x590/0x590 [ 2762.171700] ip_rcv_finish_core.constprop.0+0x4fb/0x1c90 [ 2762.172995] ip_rcv_finish+0x4f/0x1e0 [ 2762.173882] ip_rcv+0xae/0xd0 [ 2762.174607] ? ip_local_deliver+0x200/0x200 [ 2762.175603] __netif_receive_skb_one_core+0x19b/0x1f0 [ 2762.176797] ? __netif_receive_skb_core+0x3780/0x3780 [ 2762.178002] ? __lock_acquire+0xbb1/0x5b00 [ 2762.179004] __netif_receive_skb+0x27/0x1d0 [ 2762.180006] netif_receive_skb+0x12d/0x710 [ 2762.181001] ? __netif_receive_skb+0x1d0/0x1d0 [ 2762.182044] ? SOFTIRQ_verbose+0x10/0x10 [ 2762.182986] ? __lockdep_reset_lock+0x180/0x180 [ 2762.184080] tun_rx_batched.isra.0+0x462/0x710 [ 2762.185151] ? lock_acquire+0x197/0x470 [ 2762.186067] ? tun_get_user+0xee3/0x32f0 [ 2762.187068] ? tun_sock_write_space+0x1d0/0x1d0 [ 2762.188410] ? lock_release+0x680/0x680 [ 2762.189539] ? tun_get_user+0x16e6/0x32f0 [ 2762.190712] ? lock_downgrade+0x6d0/0x6d0 [ 2762.191877] ? eth_type_trans+0x2ad/0x5b0 [ 2762.193083] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 2762.194588] tun_get_user+0x191d/0x32f0 [ 2762.195681] ? usage_accumulate+0x110/0x110 [ 2762.196965] ? tun_build_skb+0xfe0/0xfe0 [ 2762.198122] ? tun_device_event+0x990/0x1160 [ 2762.199411] ? SOFTIRQ_verbose+0x10/0x10 [ 2762.200684] tun_chr_write_iter+0xe1/0x1e0 [ 2762.201906] new_sync_write+0x42c/0x660 [ 2762.202842] ? new_sync_read+0x6f0/0x6f0 [ 2762.203964] ? _cond_resched+0x12/0x80 [ 2762.204906] ? avc_policy_seqno+0x9/0x70 [ 2762.206029] ? selinux_file_permission+0x92/0x520 [ 2762.207167] ? __fget_files+0x296/0x4c0 [ 2762.208307] vfs_write+0x747/0xa70 [ 2762.209167] ksys_write+0x12d/0x260 [ 2762.210171] ? __ia32_sys_read+0xb0/0xb0 [ 2762.211127] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 2762.212570] ? syscall_enter_from_user_mode+0x1d/0x50 [ 2762.213786] do_syscall_64+0x33/0x40 [ 2762.214654] entry_SYSCALL_64_after_hwframe+0x62/0xc7 [ 2762.216060] RIP: 0033:0x7fc05d62c5ff [ 2762.216955] Code: 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 99 fd ff ff 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 b8 01 00 00 00 0f 05 <48> 3d 00 f0 ff ff 77 31 44 89 c7 48 89 44 24 08 e8 cc fd ff ff 48 [ 2762.221950] RSP: 002b:00007fc05abef150 EFLAGS: 00000293 ORIG_RAX: 0000000000000001 [ 2762.223715] RAX: ffffffffffffffda RBX: 00007fc05d78cf60 RCX: 00007fc05d62c5ff [ 2762.225368] RDX: 000000000000003a RSI: 0000000020000000 RDI: 00000000000000f0 [ 2762.227011] RBP: 00007fc05abef1d0 R08: 0000000000000000 R09: 0000000000000000 [ 2762.228674] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000002 [ 2762.230320] R13: 00007ffc5aac442f R14: 00007fc05abef300 R15: 0000000000022000 05:37:34 executing program 4: perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_emit_ethernet(0x3a, &(0x7f0000000000)={@local, @remote, @void, {@ipv4={0x811, @tcp={{0x6, 0x4, 0x0, 0x0, 0x2c, 0x0, 0x0, 0x0, 0x32, 0x0, @dev, @private=0xa010100, {[@lsrr={0x83, 0x5}]}}, {{0x0, 0x0, 0x41424344, 0x41424344, 0x0, 0x7, 0x5}}}}}}, 0x0) openat$cgroup_devices(0xffffffffffffffff, 0x0, 0x2, 0x0) close(0xffffffffffffffff) pread64(0xffffffffffffffff, 0x0, 0x0, 0x2000) 05:37:34 executing program 1: perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_emit_ethernet(0xd, &(0x7f0000000000)={@local, @remote, @void, {@ipv4={0x800, @tcp={{0x6, 0x4, 0x0, 0x0, 0x2c, 0x0, 0x0, 0x0, 0x32, 0x0, @dev, @private=0xa010100, {[@lsrr={0x83, 0x5}]}}, {{0x0, 0x0, 0x41424344, 0x41424344, 0x0, 0x7, 0x5}}}}}}, 0x0) [ 2762.306416] FAT-fs (loop7): Unrecognized mount option "ÿÿ18446744073709551615ÒÌLy'Ä(ã+ÖûÿÅ:‘¥" or missing value [ 2763.860098] Bluetooth: hci7: command 0x0405 tx timeout 05:37:47 executing program 3: r0 = perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x0, 0x3}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) pread64(0xffffffffffffffff, 0x0, 0x7ffffffff000, 0xf0ff1f00000000) bind$inet6(0xffffffffffffffff, &(0x7f0000000040)={0xa, 0x4e23, 0x0, @remote, 0xffff}, 0x1c) r1 = socket$netlink(0x10, 0x3, 0x0) sendmsg$nl_generic(0xffffffffffffffff, 0x0, 0x41) setsockopt$netlink_NETLINK_BROADCAST_ERROR(r1, 0x10e, 0x4, &(0x7f00000000c0)=0x1000, 0x4) sendmsg$nl_generic(r1, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000100)=ANY=[@ANYBLOB="28000000100001000000000000000000000000000500000024386a562b500000000c00008008000d00ac141400"], 0x28}}, 0x0) chdir(&(0x7f00000001c0)='./file0\x00') r2 = syz_open_dev$mouse(&(0x7f0000000400), 0x7fffffff, 0x2d0401) sendmsg$NL80211_CMD_ADD_NAN_FUNCTION(r2, &(0x7f0000000500)={&(0x7f0000000440)={0x10, 0x0, 0x0, 0x10}, 0xc, &(0x7f00000004c0)={&(0x7f00000002c0)={0x20, 0x0, 0x100, 0x70bd2b, 0x25dfdbfd, {{}, {@void, @val={0xc, 0x99, {0x3, 0x1b}}}}}, 0x20}, 0x1, 0x0, 0x0, 0x95}, 0x40000) ioctl$FICLONE(r2, 0x40049409, r0) r3 = open$dir(&(0x7f0000000000)='.\x00', 0x0, 0x0) perf_event_open(&(0x7f0000001d80)={0x6, 0x80, 0x0, 0x0, 0x0, 0x0, 0x4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffd, 0x0, @perf_bp={0x0, 0xffffffff81000000}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffd}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r4 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000040)='/proc/crypto\x00', 0x0, 0x0) r5 = openat2(r3, &(0x7f0000000180)='./file0\x00', &(0x7f0000000200)={0x800, 0x1b9}, 0x18) setsockopt$SO_TIMESTAMPING(r5, 0x1, 0x25, &(0x7f0000000240)=0x7100, 0x4) pread64(r4, &(0x7f00000010c0)=""/4088, 0xff8, 0x0) writev(0xffffffffffffffff, &(0x7f00000003c0)=[{}, {&(0x7f0000000680)="7fd41c04550300020000000000000000010046e92ed2616f72657d044129471d4fd47924fd0900e09e0068deec02", 0x2e}], 0x2) 05:37:47 executing program 4: perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_emit_ethernet(0x3a, &(0x7f0000000000)={@local, @remote, @void, {@ipv4={0x82c, @tcp={{0x6, 0x4, 0x0, 0x0, 0x2c, 0x0, 0x0, 0x0, 0x32, 0x0, @dev, @private=0xa010100, {[@lsrr={0x83, 0x5}]}}, {{0x0, 0x0, 0x41424344, 0x41424344, 0x0, 0x7, 0x5}}}}}}, 0x0) openat$cgroup_devices(0xffffffffffffffff, 0x0, 0x2, 0x0) close(0xffffffffffffffff) pread64(0xffffffffffffffff, 0x0, 0x0, 0x2000) 05:37:47 executing program 7: r0 = socket$inet6_udp(0xa, 0x2, 0x0) ioctl$sock_ipv4_tunnel_SIOCDELTUNNEL(0xffffffffffffffff, 0x89f2, &(0x7f0000000400)={'erspan0\x00', &(0x7f0000000600)={'tunl0\x00', 0x0, 0x700, 0x7800, 0x8, 0x101, {{0x41, 0x4, 0x2, 0x6, 0x104, 0x64, 0x0, 0x1, 0x2f, 0x0, @empty, @remote, {[@noop, @noop, @ssrr={0x89, 0xb, 0xa3, [@broadcast, @initdev={0xac, 0x1e, 0x0, 0x0}]}, @ssrr={0x89, 0x17, 0x3e, [@multicast2, @dev={0xac, 0x14, 0x14, 0x32}, @dev={0xac, 0x14, 0x14, 0x24}, @rand_addr=0x64010100, @broadcast]}, @lsrr={0x83, 0x27, 0xd1, [@private=0xa010101, @loopback, @empty, @multicast2, @local, @multicast1, @broadcast, @private=0xa010101, @initdev={0xac, 0x1e, 0x0, 0x0}]}, @timestamp_prespec={0x44, 0x44, 0x32, 0x3, 0xb, [{@rand_addr=0x64010101, 0x1}, {@multicast1, 0x79}, {@dev={0xac, 0x14, 0x14, 0xa}, 0x3}, {@loopback, 0x1}, {@dev={0xac, 0x14, 0x14, 0x33}, 0x3}, {@multicast2, 0x8}, {@local, 0x1ff}, {@loopback, 0x9}]}, @generic={0x44, 0x2}, @end, @cipso={0x86, 0x59, 0x1, [{0x2, 0xb, "e8edd3eeb92f87d3a7"}, {0x5, 0x12, "961271d58097fedb63d2bbe9b477f03a"}, {0x0, 0x8, "bbe7106c31ba"}, {0x1, 0xa, "cbc248b1343bdbbf"}, {0x1, 0x4, "0d82"}, {0x2, 0xe, "b91a15e583cf39dd62354737"}, {0x1, 0x12, "c000bd067c4c0745272addcb663489ae"}]}, @ra={0x94, 0x4}]}}}}}) sendmmsg$inet6(r0, &(0x7f0000000440)=[{{&(0x7f0000000040)={0xa, 0x4e22, 0x9, @initdev={0xfe, 0x88, '\x00', 0x0, 0x0}}, 0x1c, &(0x7f0000000100)=[{&(0x7f0000000200)="dd7e1320ca4b03e006c4bde1e901fd94c8911a760d2743a27be309ac2d77684c58abd8cd6c176b2889fa464a2667e5c2aee90af5e2fd8dbe2a6fdafe73005331ac6d6588ce15a7666b09aeb739a37106096c471673adb0e1b338e684947b97d286ca2f350c812a055103ba6da8969a4f46944bba115abb85e5c1cd44b0d50d26e5c35cc429ca512011e7eb4f412ef6744013a3ae0b3c65759f0edcb525ebefd6e28a7c06aa69f33192c698e4c82cd88b5610842d2493e89b029ef3dffa7130683a6cce440a932277552e3f16402afa47eaef9f12d8813f0f60933eec3d00e0", 0xdf}, {&(0x7f0000000300)="05510e21c41dca7e54a2ca360a2dc4f6b297eb9f869794721a5fd570fa289072da55e63dc40af3dc707e213dd852375671958b6778b0b3c653980cad5a3387316c5a08be49a0b2c771f09f618df1f760a27054fcc6752efc8086877bfcdde19722075caa7909977c7a450c5ed1a03b31a6f9e16970a18c3e8c8fd9e2df4e39376a80622325aea5dab6bfd2b3e7b09693d5a257fe504841146aa4b7e1ad5c2464dd50737a77f52e7f49b33ac32aead782db68b8f17048048f2b008f0962c1c3c408ee715f4d95e8dea975afd8f5ddf773ed996900130c1bec24dd7ff59ebcac9e45d501161b4a6bc89acebf481e2251eecd7784b6283c7b", 0xf7}, {&(0x7f0000000500)="603460107b1c8b2a36caa221409409f5e36a1f8ad5edf40513868ba7127d146f3b2aa5ce5344358fc31d4bd4619cd0528c46a3703cf6f59e0317bf77d6c2bf34eea0f665877bdc76dc3bccb58b64fe9b3b6ecb468108352ea409087d4ad077fcccb50a98cd9e1b5526f434f336521dfb8b7df6c8dc541a42f50ebe878335edfcdfd33eaf1e4e517044e54a77654a1f7691d677a8e054ae77a8a6c5a192ae87e4373bff3f5b6e6042bac326da42875e900b9da35b452f59c04d0039a164087ebcb38df5d6573d", 0xc6}], 0x3, &(0x7f0000000740)=[@hoplimit={{0x14, 0x29, 0x34, 0x101}}, @hoplimit_2292={{0x14, 0x29, 0x8, 0xed}}, @dontfrag={{0x14, 0x29, 0x3e, 0x100}}, @rthdrdstopts={{0xf0, 0x29, 0x37, {0x3b, 0x1a, '\x00', [@generic={0x4, 0x10, "d65acd741944e450f8595730bd9c010b"}, @generic={0x20, 0xad, "b2f742d5d7392367e1bff457a8a1241eca97679b4041301d492ee1d240021452f39f6f07b81d6eaa61dc9b14b5fbded8725a23abb94e72547bcbc3bcafdddc0a3bff32268f14a515d9005fe9e7e154278eb4f71b4b2d49c9513b9b1c8e803e865944506826d2fc9f724133d7e3ce8e7f3606f4ac8bc86650b2f26c86a6873ab6a90080b919b263f3b30f3ab725750590e3dcd8bc95fe3db9e22c23eb09fed94caeb635f2477868039f2645c42c"}, @enc_lim={0x4, 0x1, 0x8}, @hao={0xc9, 0x10, @mcast1}]}}}, @flowinfo={{0x14, 0x29, 0xb, 0x5}}, @hopopts_2292={{0xd0, 0x29, 0x36, {0x5c, 0x16, '\x00', [@padn={0x1, 0xa, [0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0]}, @calipso={0x7, 0x28, {0x3, 0x8, 0xbb, 0x9, [0x0, 0x44b2, 0x59f2, 0x0]}}, @generic={0x7, 0x7a, "11ae227669492e48ccd1a7b2ca8054eb460fceb64786c2166ae8b21edbc84f6871c856186c662d0d3bf7b4312820d992f906d6b0387602ec5da08214d30a9288e0d239d0629a24ad73713ef524160d223b14e2df00ccaa82bfb55a620ba622dc3934c0f962fddf52c47f9a3d8cc152bf34a5bba6646d328c6cca"}]}}}, @pktinfo={{0x24, 0x29, 0x32, {@ipv4={'\x00', '\xff\xff', @local}, r1}}}, @flowinfo={{0x14, 0x29, 0xb, 0x81}}], 0x260}}], 0x1, 0x0) connect$inet6(r0, &(0x7f00000001c0)={0xa, 0x0, 0x0, @mcast2, 0x3}, 0x1c) perf_event_open(&(0x7f0000000140)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8001, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r2 = socket$packet(0x11, 0x3, 0x300) ioctl$int_in(r2, 0x5452, &(0x7f00000000c0)=0x87) r3 = socket$inet6_udp(0xa, 0x2, 0x0) getsockopt$inet6_IPV6_FLOWLABEL_MGR(r3, 0x29, 0x2, 0x0, &(0x7f0000004b80)) setsockopt$packet_fanout(r2, 0x107, 0x12, &(0x7f0000000000)={0x2, 0x4}, 0x4) mmap$IORING_OFF_CQ_RING(&(0x7f0000ffc000/0x1000)=nil, 0x1000, 0x0, 0x12, 0xffffffffffffffff, 0x8000000) socket$inet6_icmp(0xa, 0x2, 0x3a) r4 = openat$zero(0xffffffffffffff9c, 0x0, 0x0, 0x0) sendmsg$IPCTNL_MSG_EXP_GET(r4, 0x0, 0x8800) sendmmsg$inet6(r0, &(0x7f0000004d00)=[{{0x0, 0x1100, &(0x7f00000004c0)=[{&(0x7f0000000080)='K', 0x1}], 0x1}}], 0x7ffff000, 0x0) [ 2775.223878] netlink: 8 bytes leftover after parsing attributes in process `syz-executor.3'. 05:37:47 executing program 5: perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x8) r0 = socket$inet(0x2, 0x1, 0x0) bind$inet(r0, &(0x7f0000000000)={0x2, 0x4e21, @multicast1}, 0x10) r1 = openat$zero(0xffffffffffffff9c, &(0x7f0000000200), 0x80, 0x0) ioctl$BLKFRASET(r1, 0x1264, &(0x7f0000000280)=0xff) dup3(r0, 0xffffffffffffffff, 0x80000) ioctl$AUTOFS_DEV_IOCTL_OPENMOUNT(0xffffffffffffffff, 0xc0189374, 0x0) connect$inet(r0, &(0x7f0000000240)={0x2, 0x4e1e, @initdev={0xac, 0x1e, 0x0, 0x0}}, 0x10) connect$inet(0xffffffffffffffff, 0x0, 0x0) connect$inet(r0, &(0x7f0000000140)={0x2, 0x4e21, @local}, 0x10) perf_event_open(&(0x7f0000001d80)={0x2, 0x80, 0x94, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x47c0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) getrandom(0x0, 0x0, 0x0) dup2(0xffffffffffffffff, r0) shutdown(r0, 0x1) syz_io_uring_setup(0x6ad4, &(0x7f00000000c0)={0x0, 0x198c, 0x8, 0x2, 0xae}, &(0x7f0000ff7000/0x7000)=nil, &(0x7f0000ffd000/0x3000)=nil, &(0x7f0000000180), &(0x7f00000001c0)) ioctl$FS_IOC_FSSETXATTR(0xffffffffffffffff, 0x40086602, &(0x7f0000000000)={0x0, 0x7, 0x8000}) openat(0xffffffffffffffff, &(0x7f0000000040)='./file0\x00', 0x509940, 0x11) openat(0xffffffffffffffff, &(0x7f0000000080)='./file0\x00', 0x40, 0x2c1) unshare(0x48020200) kcmp(0x0, 0x0, 0x2, 0xffffffffffffffff, 0xffffffffffffffff) 05:37:47 executing program 6: r0 = socket$inet6_tcp(0xa, 0x1, 0x0) setsockopt$inet6_tcp_int(r0, 0x6, 0x2, &(0x7f0000000080)=0x90, 0x4) bind$inet6(r0, &(0x7f00000000c0)={0xa, 0x4e20, 0x0, @loopback}, 0x1c) connect$inet6(r0, &(0x7f0000000000)={0xa, 0x4e20, 0x0, @empty}, 0x1c) setsockopt$sock_int(r0, 0x1, 0x8, &(0x7f0000002ec0), 0x4) sendmsg$inet6(r0, &(0x7f00000006c0)={0x0, 0x0, &(0x7f0000000540)=[{&(0x7f00000001c0)="cf", 0xfffffdef}], 0x1}, 0x10044001) setsockopt$SO_TIMESTAMP(r0, 0x1, 0x40, &(0x7f0000000280)=0x380, 0x4) recvfrom$inet6(r0, &(0x7f0000001e00)=""/4096, 0x1000, 0xcd08, 0x0, 0x0) (fail_nth: 10) 05:37:47 executing program 2: preadv2(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x2) openat(0xffffffffffffff9c, 0x0, 0x0, 0x0) r0 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x105142, 0x62) r1 = openat(0xffffffffffffff9c, 0x0, 0x0, 0x0) fallocate(r1, 0x0, 0x0, 0x8800000) lseek(0xffffffffffffffff, 0x0, 0x0) openat(0xffffffffffffffff, 0x0, 0x0, 0x20) ioctl$FS_IOC_RESVSP(0xffffffffffffffff, 0x40305828, 0x0) faccessat2(0xffffffffffffffff, 0x0, 0x0, 0x0) openat(0xffffffffffffffff, 0x0, 0x1a340, 0x100) ioctl$LOOP_CTL_REMOVE(0xffffffffffffffff, 0x4c81, 0x0) r2 = fsmount(0xffffffffffffffff, 0x0, 0x0) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r3 = openat(r2, &(0x7f0000000000)='/proc/self/exe\x00', 0x4840, 0x2d) sendfile(r0, r3, 0x0, 0x100000010) 05:37:47 executing program 0: perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_emit_ethernet(0x3a, &(0x7f0000000000)={@local, @remote, @void, {@ipv4={0x800, @tcp={{0x6, 0x4, 0x0, 0x0, 0x2c, 0x0, 0x0, 0x0, 0x32, 0x0, @dev, @private=0xa010100, {[@lsrr={0x83, 0x5}]}}, {{0x0, 0x0, 0x41424344, 0x41424344, 0x0, 0x7, 0x5}}}}}}, 0x0) (fail_nth: 17) ioctl$BTRFS_IOC_BALANCE(0xffffffffffffffff, 0x5000940c, 0x0) close(0xffffffffffffffff) 05:37:47 executing program 1: perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_emit_ethernet(0x7a, &(0x7f0000000000)={@local, @remote, @void, {@ipv4={0x800, @tcp={{0x6, 0x4, 0x0, 0x0, 0x2c, 0x0, 0x0, 0x0, 0x32, 0x0, @dev, @private=0xa010100, {[@lsrr={0x83, 0x5}]}}, {{0x0, 0x0, 0x41424344, 0x41424344, 0x0, 0x7, 0x5}}}}}}, 0x0) [ 2775.269913] FAULT_INJECTION: forcing a failure. [ 2775.269913] name failslab, interval 1, probability 0, space 0, times 0 [ 2775.272457] CPU: 1 PID: 12338 Comm: syz-executor.0 Not tainted 5.10.204 #1 [ 2775.273911] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 2775.275745] Call Trace: [ 2775.276296] dump_stack+0x107/0x167 [ 2775.277096] should_fail.cold+0x5/0xa [ 2775.277936] ? dst_alloc+0x9e/0x610 [ 2775.278766] should_failslab+0x5/0x20 [ 2775.279602] kmem_cache_alloc+0x5b/0x310 [ 2775.280523] dst_alloc+0x9e/0x610 [ 2775.281301] rt_dst_clone+0x59/0x860 [ 2775.282126] ip_mc_finish_output+0x95/0x280 [ 2775.283056] ip_mc_output+0x71c/0xa30 [ 2775.283862] ip_push_pending_frames+0x12e/0x2c0 [ 2775.284892] icmp_push_reply+0x351/0x490 [ 2775.285805] __icmp_send+0xbc9/0x14d0 [ 2775.286650] ? icmp_route_lookup.constprop.0+0x11a0/0x11a0 [ 2775.287808] ? __lockdep_reset_lock+0x180/0x180 [ 2775.288859] ? find_held_lock+0x2c/0x110 [ 2775.289804] ? ip_route_input_noref+0x160/0x2f0 [ 2775.290836] ip_options_compile+0xad/0xf0 [ 2775.291682] ? __ip_options_compile+0x15d0/0x15d0 [ 2775.292771] ? ip_list_rcv_finish.constprop.0+0x590/0x590 [ 2775.293999] ip_rcv_finish_core.constprop.0+0x4fb/0x1c90 [ 2775.295169] ip_rcv_finish+0x4f/0x1e0 [ 2775.295969] ip_rcv+0xae/0xd0 [ 2775.296676] ? ip_local_deliver+0x200/0x200 [ 2775.297651] __netif_receive_skb_one_core+0x19b/0x1f0 [ 2775.298790] ? __netif_receive_skb_core+0x3780/0x3780 [ 2775.299909] ? __lock_acquire+0xbb1/0x5b00 [ 2775.300824] __netif_receive_skb+0x27/0x1d0 [ 2775.301766] netif_receive_skb+0x12d/0x710 [ 2775.302706] ? __netif_receive_skb+0x1d0/0x1d0 [ 2775.303636] ? SOFTIRQ_verbose+0x10/0x10 [ 2775.304553] ? __lockdep_reset_lock+0x180/0x180 [ 2775.305595] tun_rx_batched.isra.0+0x462/0x710 [ 2775.306607] ? lock_acquire+0x197/0x470 [ 2775.307434] ? tun_get_user+0xee3/0x32f0 [ 2775.308338] ? tun_sock_write_space+0x1d0/0x1d0 [ 2775.309371] ? lock_release+0x680/0x680 [ 2775.310257] ? tun_get_user+0x16e6/0x32f0 [ 2775.311143] ? lock_downgrade+0x6d0/0x6d0 [ 2775.312020] ? eth_type_trans+0x2ad/0x5b0 [ 2775.312964] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 2775.314122] tun_get_user+0x191d/0x32f0 [ 2775.314951] ? usage_accumulate+0x110/0x110 [ 2775.315945] ? tun_build_skb+0xfe0/0xfe0 [ 2775.316895] ? tun_device_event+0x990/0x1160 [ 2775.317880] ? perf_trace_lock+0xac/0x490 [ 2775.318758] ? SOFTIRQ_verbose+0x10/0x10 [ 2775.319689] tun_chr_write_iter+0xe1/0x1e0 [ 2775.320659] new_sync_write+0x42c/0x660 [ 2775.321552] ? new_sync_read+0x6f0/0x6f0 [ 2775.322465] ? _cond_resched+0x12/0x80 [ 2775.323344] ? avc_policy_seqno+0x9/0x70 [ 2775.324250] ? selinux_file_permission+0x92/0x520 [ 2775.325371] ? __fget_files+0x296/0x4c0 [ 2775.326277] vfs_write+0x747/0xa70 [ 2775.327067] ksys_write+0x12d/0x260 [ 2775.327837] ? __ia32_sys_read+0xb0/0xb0 [ 2775.328758] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 2775.329916] ? syscall_enter_from_user_mode+0x1d/0x50 [ 2775.331024] do_syscall_64+0x33/0x40 [ 2775.331860] entry_SYSCALL_64_after_hwframe+0x62/0xc7 [ 2775.333018] RIP: 0033:0x7fc05d62c5ff [ 2775.333852] Code: 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 99 fd ff ff 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 b8 01 00 00 00 0f 05 <48> 3d 00 f0 ff ff 77 31 44 89 c7 48 89 44 24 08 e8 cc fd ff ff 48 [ 2775.337933] RSP: 002b:00007fc05abef150 EFLAGS: 00000293 ORIG_RAX: 0000000000000001 [ 2775.339622] RAX: ffffffffffffffda RBX: 00007fc05d78cf60 RCX: 00007fc05d62c5ff [ 2775.341224] RDX: 000000000000003a RSI: 0000000020000000 RDI: 00000000000000f0 [ 2775.342823] RBP: 00007fc05abef1d0 R08: 0000000000000000 R09: 0000000000000000 [ 2775.344374] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000002 [ 2775.345971] R13: 00007ffc5aac442f R14: 00007fc05abef300 R15: 0000000000022000 [ 2775.361593] FAULT_INJECTION: forcing a failure. [ 2775.361593] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 2775.364462] CPU: 0 PID: 12350 Comm: syz-executor.6 Not tainted 5.10.204 #1 [ 2775.365999] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 2775.367826] Call Trace: [ 2775.368486] dump_stack+0x107/0x167 [ 2775.369318] should_fail.cold+0x5/0xa [ 2775.370247] _copy_to_iter+0x264/0x12d0 [ 2775.371158] ? mark_lock+0xf5/0x2df0 [ 2775.371990] ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0 [ 2775.373261] ? SOFTIRQ_verbose+0x10/0x10 [ 2775.374191] ? _copy_from_iter_nocache+0xd60/0xd60 [ 2775.375371] ? lock_chain_count+0x20/0x20 [ 2775.376331] ? __virt_addr_valid+0x128/0x350 [ 2775.377402] ? __check_object_size+0x319/0x440 [ 2775.378446] simple_copy_to_iter+0x4c/0x70 [ 2775.379468] __skb_datagram_iter+0x4f7/0x880 [ 2775.380465] ? zerocopy_sg_from_iter+0x110/0x110 [ 2775.381520] skb_copy_datagram_iter+0x88/0x190 [ 2775.382867] tcp_recvmsg+0x13b5/0x2930 [ 2775.383762] ? tcp_splice_read+0x8c0/0x8c0 [ 2775.384823] ? sock_has_perm+0x1ea/0x280 [ 2775.385731] ? selinux_socket_post_create+0x7f0/0x7f0 [ 2775.386979] ? lock_downgrade+0x6d0/0x6d0 [ 2775.387904] ? perf_trace_lock+0xac/0x490 [ 2775.388913] ? tcp_splice_read+0x8c0/0x8c0 [ 2775.389862] inet6_recvmsg+0x13b/0x6e0 [ 2775.390714] ? inet6_bind+0x120/0x120 [ 2775.391586] ? security_socket_recvmsg+0x95/0xc0 [ 2775.392742] ? inet6_bind+0x120/0x120 [ 2775.393601] sock_recvmsg+0xff/0x180 [ 2775.394432] __sys_recvfrom+0x1be/0x2f0 [ 2775.395304] ? __ia32_sys_send+0x100/0x100 [ 2775.396245] ? lock_downgrade+0x6d0/0x6d0 [ 2775.397213] ? wait_for_completion_io+0x270/0x270 [ 2775.398297] ? rcu_read_lock_any_held+0x75/0xa0 [ 2775.399303] ? vfs_write+0x354/0xa70 [ 2775.400131] ? fput_many+0x2f/0x1a0 [ 2775.400946] ? ksys_write+0x1a9/0x260 [ 2775.401790] ? __ia32_sys_read+0xb0/0xb0 [ 2775.402693] __x64_sys_recvfrom+0xdd/0x1b0 [ 2775.403634] ? syscall_trace_enter.constprop.0+0x10d/0x1e0 [ 2775.404886] do_syscall_64+0x33/0x40 [ 2775.405711] entry_SYSCALL_64_after_hwframe+0x62/0xc7 [ 2775.406848] RIP: 0033:0x7f7d1addbb19 [ 2775.407676] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 2775.411780] RSP: 002b:00007f7d18330188 EFLAGS: 00000246 ORIG_RAX: 000000000000002d [ 2775.413475] RAX: ffffffffffffffda RBX: 00007f7d1aeef020 RCX: 00007f7d1addbb19 [ 2775.415064] RDX: 0000000000001000 RSI: 0000000020001e00 RDI: 0000000000000003 [ 2775.416662] RBP: 00007f7d183301d0 R08: 0000000000000000 R09: 0000000000000000 [ 2775.418246] R10: 000000000000cd08 R11: 0000000000000246 R12: 0000000000000002 [ 2775.419824] R13: 00007ffe0ac926cf R14: 00007f7d18330300 R15: 0000000000022000 05:37:48 executing program 1: perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_emit_ethernet(0xfdef, &(0x7f0000000000)={@local, @remote, @void, {@ipv4={0x800, @tcp={{0x6, 0x4, 0x0, 0x0, 0x2c, 0x0, 0x0, 0x0, 0x32, 0x0, @dev, @private=0xa010100, {[@lsrr={0x83, 0x5}]}}, {{0x0, 0x0, 0x41424344, 0x41424344, 0x0, 0x7, 0x5}}}}}}, 0x0) 05:37:48 executing program 4: perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_emit_ethernet(0x3a, &(0x7f0000000000)={@local, @remote, @void, {@ipv4={0x848, @tcp={{0x6, 0x4, 0x0, 0x0, 0x2c, 0x0, 0x0, 0x0, 0x32, 0x0, @dev, @private=0xa010100, {[@lsrr={0x83, 0x5}]}}, {{0x0, 0x0, 0x41424344, 0x41424344, 0x0, 0x7, 0x5}}}}}}, 0x0) openat$cgroup_devices(0xffffffffffffffff, 0x0, 0x2, 0x0) close(0xffffffffffffffff) pread64(0xffffffffffffffff, 0x0, 0x0, 0x2000) 05:37:48 executing program 2: preadv2(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x2) openat(0xffffffffffffff9c, 0x0, 0x0, 0x0) r0 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x105142, 0x62) r1 = openat(0xffffffffffffff9c, 0x0, 0x0, 0x0) fallocate(r1, 0x0, 0x0, 0x8800000) lseek(0xffffffffffffffff, 0x0, 0x0) openat(0xffffffffffffffff, 0x0, 0x0, 0x20) ioctl$FS_IOC_RESVSP(0xffffffffffffffff, 0x40305828, 0x0) faccessat2(0xffffffffffffffff, 0x0, 0x0, 0x0) openat(0xffffffffffffffff, 0x0, 0x1a340, 0x100) ioctl$LOOP_CTL_REMOVE(0xffffffffffffffff, 0x4c81, 0x0) r2 = fsmount(0xffffffffffffffff, 0x0, 0x0) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r3 = openat(r2, &(0x7f0000000000)='/proc/self/exe\x00', 0x4840, 0x2d) sendfile(r0, r3, 0x0, 0x100000011) 05:37:48 executing program 4: perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_emit_ethernet(0x3a, &(0x7f0000000000)={@local, @remote, @void, {@ipv4={0x856, @tcp={{0x6, 0x4, 0x0, 0x0, 0x2c, 0x0, 0x0, 0x0, 0x32, 0x0, @dev, @private=0xa010100, {[@lsrr={0x83, 0x5}]}}, {{0x0, 0x0, 0x41424344, 0x41424344, 0x0, 0x7, 0x5}}}}}}, 0x0) openat$cgroup_devices(0xffffffffffffffff, 0x0, 0x2, 0x0) close(0xffffffffffffffff) pread64(0xffffffffffffffff, 0x0, 0x0, 0x2000) 05:37:48 executing program 3: r0 = perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x0, 0x3}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) pread64(0xffffffffffffffff, 0x0, 0x7ffffffff000, 0xf0ff1f00000000) bind$inet6(0xffffffffffffffff, &(0x7f0000000040)={0xa, 0x4e23, 0x0, @remote, 0xffff}, 0x1c) r1 = socket$netlink(0x10, 0x3, 0x0) sendmsg$nl_generic(0xffffffffffffffff, 0x0, 0x41) setsockopt$netlink_NETLINK_BROADCAST_ERROR(r1, 0x10e, 0x4, &(0x7f00000000c0)=0x1000, 0x4) sendmsg$nl_generic(r1, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000100)=ANY=[@ANYBLOB="28000000100001000000000000000000000000000500000024386a562b500000000c00008008000d00ac141400"], 0x28}}, 0x0) chdir(&(0x7f00000001c0)='./file0\x00') r2 = syz_open_dev$mouse(&(0x7f0000000400), 0x7fffffff, 0x2d0401) sendmsg$NL80211_CMD_ADD_NAN_FUNCTION(r2, &(0x7f0000000500)={&(0x7f0000000440)={0x10, 0x0, 0x0, 0x10}, 0xc, &(0x7f00000004c0)={&(0x7f00000002c0)={0x20, 0x0, 0x100, 0x70bd2b, 0x25dfdbfd, {{}, {@void, @val={0xc, 0x99, {0x3, 0x1b}}}}}, 0x20}, 0x1, 0x0, 0x0, 0x95}, 0x40000) ioctl$FICLONE(r2, 0x40049409, r0) r3 = open$dir(&(0x7f0000000000)='.\x00', 0x0, 0x0) perf_event_open(&(0x7f0000001d80)={0x6, 0x80, 0x0, 0x0, 0x0, 0x0, 0x4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffd, 0x0, @perf_bp={0x0, 0xffffffff81000000}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffd}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r4 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000040)='/proc/crypto\x00', 0x0, 0x0) r5 = openat2(r3, &(0x7f0000000180)='./file0\x00', &(0x7f0000000200)={0x800, 0x1b9}, 0x18) setsockopt$SO_TIMESTAMPING(r5, 0x1, 0x25, &(0x7f0000000240)=0x7100, 0x4) pread64(r4, &(0x7f00000010c0)=""/4088, 0xff8, 0x0) writev(0xffffffffffffffff, &(0x7f00000003c0)=[{}, {&(0x7f0000000680)="7fd41c04550300020000000000000000010046e92ed2616f72657d044129471d4fd47924fd0900e09e0068deec02", 0x2e}], 0x2) 05:37:48 executing program 1: perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_emit_ethernet(0x2000003a, &(0x7f0000000000)={@local, @remote, @void, {@ipv4={0x800, @tcp={{0x6, 0x4, 0x0, 0x0, 0x2c, 0x0, 0x0, 0x0, 0x32, 0x0, @dev, @private=0xa010100, {[@lsrr={0x83, 0x5}]}}, {{0x0, 0x0, 0x41424344, 0x41424344, 0x0, 0x7, 0x5}}}}}}, 0x0) 05:37:48 executing program 0: perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_emit_ethernet(0x3a, &(0x7f0000000000)={@local, @remote, @void, {@ipv4={0x800, @tcp={{0x6, 0x4, 0x0, 0x0, 0x2c, 0x0, 0x0, 0x0, 0x32, 0x0, @dev, @private=0xa010100, {[@lsrr={0x83, 0x5}]}}, {{0x0, 0x0, 0x41424344, 0x41424344, 0x0, 0x7, 0x5}}}}}}, 0x0) (fail_nth: 18) ioctl$BTRFS_IOC_BALANCE(0xffffffffffffffff, 0x5000940c, 0x0) close(0xffffffffffffffff) [ 2775.701697] netlink: 8 bytes leftover after parsing attributes in process `syz-executor.3'. [ 2775.786349] FAULT_INJECTION: forcing a failure. [ 2775.786349] name failslab, interval 1, probability 0, space 0, times 0 [ 2775.788792] CPU: 1 PID: 12372 Comm: syz-executor.0 Not tainted 5.10.204 #1 [ 2775.790307] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 2775.792108] Call Trace: [ 2775.792700] dump_stack+0x107/0x167 [ 2775.793673] should_fail.cold+0x5/0xa [ 2775.794480] ? create_object.isra.0+0x3a/0xa20 [ 2775.795533] should_failslab+0x5/0x20 [ 2775.796434] kmem_cache_alloc+0x5b/0x310 [ 2775.797377] create_object.isra.0+0x3a/0xa20 [ 2775.798565] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 2775.799693] kmem_cache_alloc+0x159/0x310 [ 2775.800680] dst_alloc+0x9e/0x610 [ 2775.801527] rt_dst_clone+0x59/0x860 [ 2775.802293] ip_mc_finish_output+0x95/0x280 [ 2775.803250] ip_mc_output+0x71c/0xa30 [ 2775.804199] ip_push_pending_frames+0x12e/0x2c0 [ 2775.805281] icmp_push_reply+0x351/0x490 [ 2775.806212] __icmp_send+0xbc9/0x14d0 [ 2775.807029] ? icmp_route_lookup.constprop.0+0x11a0/0x11a0 [ 2775.808193] ? __lockdep_reset_lock+0x180/0x180 [ 2775.809301] ? find_held_lock+0x2c/0x110 [ 2775.810180] ? ip_route_input_noref+0x160/0x2f0 [ 2775.811146] ip_options_compile+0xad/0xf0 [ 2775.812089] ? __ip_options_compile+0x15d0/0x15d0 [ 2775.813261] ? ip_list_rcv_finish.constprop.0+0x590/0x590 [ 2775.814430] ip_rcv_finish_core.constprop.0+0x4fb/0x1c90 [ 2775.815655] ip_rcv_finish+0x4f/0x1e0 [ 2775.816462] ip_rcv+0xae/0xd0 [ 2775.817156] ? ip_local_deliver+0x200/0x200 [ 2775.818165] __netif_receive_skb_one_core+0x19b/0x1f0 [ 2775.819406] ? __netif_receive_skb_core+0x3780/0x3780 [ 2775.820459] ? lockdep_hardirqs_on_prepare+0x129/0x3e0 [ 2775.821563] ? ktime_get_with_offset+0x221/0x260 [ 2775.822629] ? trace_hardirqs_on+0x5b/0x180 [ 2775.823523] ? recalibrate_cpu_khz+0x10/0x10 [ 2775.824470] __netif_receive_skb+0x27/0x1d0 [ 2775.825364] netif_receive_skb+0x12d/0x710 [ 2775.826337] ? __netif_receive_skb+0x1d0/0x1d0 [ 2775.827263] ? SOFTIRQ_verbose+0x10/0x10 [ 2775.828101] ? __lockdep_reset_lock+0x180/0x180 [ 2775.829174] tun_rx_batched.isra.0+0x462/0x710 [ 2775.830325] ? lock_acquire+0x197/0x470 [ 2775.831143] ? tun_get_user+0xee3/0x32f0 [ 2775.832077] ? tun_sock_write_space+0x1d0/0x1d0 [ 2775.833058] ? lock_release+0x680/0x680 [ 2775.833897] ? tun_get_user+0x16e6/0x32f0 [ 2775.834846] ? lock_downgrade+0x6d0/0x6d0 [ 2775.835853] ? eth_type_trans+0x2ad/0x5b0 [ 2775.836815] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 2775.837913] tun_get_user+0x191d/0x32f0 [ 2775.838798] ? usage_accumulate+0x110/0x110 [ 2775.839754] ? tun_build_skb+0xfe0/0xfe0 [ 2775.840621] ? tun_device_event+0x990/0x1160 [ 2775.841636] ? perf_trace_lock+0xac/0x490 [ 2775.842586] ? SOFTIRQ_verbose+0x10/0x10 [ 2775.843636] tun_chr_write_iter+0xe1/0x1e0 [ 2775.844542] new_sync_write+0x42c/0x660 [ 2775.845465] ? new_sync_read+0x6f0/0x6f0 [ 2775.846310] ? _cond_resched+0x12/0x80 [ 2775.847266] ? avc_policy_seqno+0x9/0x70 [ 2775.848176] ? selinux_file_permission+0x92/0x520 [ 2775.849369] ? __fget_files+0x296/0x4c0 [ 2775.850199] vfs_write+0x747/0xa70 [ 2775.850951] ksys_write+0x12d/0x260 [ 2775.851705] ? __ia32_sys_read+0xb0/0xb0 [ 2775.852575] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 2775.853669] ? syscall_enter_from_user_mode+0x1d/0x50 [ 2775.854879] do_syscall_64+0x33/0x40 [ 2775.855649] entry_SYSCALL_64_after_hwframe+0x62/0xc7 [ 2775.856790] RIP: 0033:0x7fc05d62c5ff [ 2775.857639] Code: 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 99 fd ff ff 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 b8 01 00 00 00 0f 05 <48> 3d 00 f0 ff ff 77 31 44 89 c7 48 89 44 24 08 e8 cc fd ff ff 48 [ 2775.861706] RSP: 002b:00007fc05abef150 EFLAGS: 00000293 ORIG_RAX: 0000000000000001 [ 2775.863358] RAX: ffffffffffffffda RBX: 00007fc05d78cf60 RCX: 00007fc05d62c5ff [ 2775.865066] RDX: 000000000000003a RSI: 0000000020000000 RDI: 00000000000000f0 [ 2775.866561] RBP: 00007fc05abef1d0 R08: 0000000000000000 R09: 0000000000000000 [ 2775.868107] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000002 [ 2775.869781] R13: 00007ffc5aac442f R14: 00007fc05abef300 R15: 0000000000022000 05:38:05 executing program 4: perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_emit_ethernet(0x3a, &(0x7f0000000000)={@local, @remote, @void, {@ipv4={0x860, @tcp={{0x6, 0x4, 0x0, 0x0, 0x2c, 0x0, 0x0, 0x0, 0x32, 0x0, @dev, @private=0xa010100, {[@lsrr={0x83, 0x5}]}}, {{0x0, 0x0, 0x41424344, 0x41424344, 0x0, 0x7, 0x5}}}}}}, 0x0) openat$cgroup_devices(0xffffffffffffffff, 0x0, 0x2, 0x0) close(0xffffffffffffffff) pread64(0xffffffffffffffff, 0x0, 0x0, 0x2000) 05:38:05 executing program 7: r0 = syz_open_dev$vcsn(&(0x7f0000000a40), 0x0, 0x0) close_range(0xffffffffffffffff, 0xffffffffffffffff, 0x0) setsockopt$WPAN_SECURITY(r0, 0x0, 0x1, &(0x7f0000000000)=0x1, 0x4) setsockopt$bt_l2cap_L2CAP_OPTIONS(r0, 0x6, 0x1, 0x0, 0x0) perf_event_open(&(0x7f0000001d80)={0x2, 0x80, 0x94, 0x0, 0x0, 0x0, 0x0, 0x0, 0x482, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffc, 0x0, @perf_config_ext={0x2}, 0x10088, 0x0, 0xfffffffe, 0x0, 0x0, 0xfffffffc}, 0x0, 0x0, 0xffffffffffffffff, 0x0) move_pages(0x0, 0x9, 0x0, 0x0, 0x0, 0x0) ioctl$sock_SIOCSIFVLAN_SET_VLAN_NAME_TYPE_CMD(r0, 0x8983, &(0x7f0000000380)={0x6, 'gre0\x00', {0x7fff}, 0x20}) munlock(&(0x7f0000ffc000/0x4000)=nil, 0x4000) syz_io_uring_setup(0x29af, &(0x7f0000000040)={0x0, 0x800, 0x20, 0x400203, 0x53de, 0x0, r0}, &(0x7f0000ffe000/0x2000)=nil, &(0x7f0000ffc000/0x2000)=nil, &(0x7f00000000c0), &(0x7f00000001c0)) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) fsetxattr$security_ima(r0, &(0x7f0000000140), &(0x7f0000000640)=ANY=[@ANYBLOB="e6023600410008004b33fec0cefcedccc159540e87e8604062e864456dc3026fc72706b110464b3d6294265da8c2e2b55681e2d10d69c19cc92a89e0e801002d49bcf41c215ba94446d4e47c5c000af61edf63cc21ce45d5c92cb4cc2f0fbfdb33c39758cb188602a31173750e60a0ab5fcabf1c15ff49ec57c6f3ee9ceda34cc0e02aeac038b1aa05092e462078889727301f618d83794c58bce24382f44b484e7b1cb9af4601173fad890ea6ceb30d21aeff6054c178bb5dccc7b67b0c755695e496b9c6278abb52f35ca955b50a0547ea3809a5799087f79099e5fd6da102013d49984d8652da7a02d807a804406e3247e605ad8d9c4c750276e3d451eeab1d67d499946e41619e644b1d593138b452c040cf93d322c8fe70515ff96c0445360282b9cbc6c150b86d3917041b12246ed28e4436afdbeb6efa3d0f6781e66905f5ecac1290f58d4f56ceb48cfd5ad58ab8b5b7ac61842e67b818989061cfd61110abc04a933fcd0608d957e3444f6caa2e38a739f848abc9808045fdaa6685ed16f495a104572ed7b33c31dc555997103f8e899d3b855c177a8917e5dbfecba3954409a84b9b03dbb3f3687d323d25bc68766d475f45d59e870de5109f7089f169b13e9b97d09aa29e55017b9b8af2d2586ecea268e7f9472e67"], 0x54, 0x1) r1 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f0000000180), 0x180, 0x0) r2 = socket$inet6_udp(0xa, 0x2, 0x0) r3 = dup2(0xffffffffffffffff, r2) ioctl$LOOP_CTL_REMOVE(r3, 0x4c81, 0xb) move_pages(0x0, 0xa, &(0x7f0000000200)=[&(0x7f0000ffb000/0x2000)=nil, &(0x7f0000ffc000/0x2000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000ffd000/0x3000)=nil, &(0x7f0000ffd000/0x1000)=nil, &(0x7f0000ffa000/0x3000)=nil, &(0x7f0000ffb000/0x2000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000ffb000/0x3000)=nil, &(0x7f0000ffe000/0x1000)=nil], &(0x7f0000000280)=[0xd52], &(0x7f0000000300)=[0x0, 0x0], 0x4) r4 = ioctl$LOOP_CTL_GET_FREE(r1, 0x4c82) madvise(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x10) ioctl$LOOP_CTL_REMOVE(r1, 0x4c81, r4) 05:38:05 executing program 6: r0 = socket$inet6_tcp(0xa, 0x1, 0x0) setsockopt$inet6_tcp_int(r0, 0x6, 0x2, &(0x7f0000000080)=0x90, 0x4) bind$inet6(r0, &(0x7f00000000c0)={0xa, 0x4e20, 0x0, @loopback}, 0x1c) connect$inet6(r0, &(0x7f0000000000)={0xa, 0x4e20, 0x0, @empty}, 0x1c) setsockopt$sock_int(r0, 0x1, 0x8, &(0x7f0000002ec0), 0x4) sendmsg$inet6(r0, &(0x7f00000006c0)={0x0, 0x0, &(0x7f0000000540)=[{&(0x7f00000001c0)="cf", 0xfffffdef}], 0x1}, 0x10044001) setsockopt$SO_TIMESTAMP(r0, 0x1, 0x40, &(0x7f0000000280)=0x380, 0x4) recvfrom$inet6(r0, &(0x7f0000001e00)=""/4096, 0x1000, 0xcd08, 0x0, 0x0) (fail_nth: 11) 05:38:05 executing program 3: r0 = perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x0, 0x3}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) pread64(0xffffffffffffffff, 0x0, 0x7ffffffff000, 0xf0ff1f00000000) bind$inet6(0xffffffffffffffff, &(0x7f0000000040)={0xa, 0x4e23, 0x0, @remote, 0xffff}, 0x1c) r1 = socket$netlink(0x10, 0x3, 0x0) sendmsg$nl_generic(0xffffffffffffffff, 0x0, 0x41) setsockopt$netlink_NETLINK_BROADCAST_ERROR(r1, 0x10e, 0x4, &(0x7f00000000c0)=0x1000, 0x4) sendmsg$nl_generic(r1, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000100)=ANY=[@ANYBLOB="28000000100001000000000000000000000000000500000024386a562b500000000c00008008000d00ac141400"], 0x28}}, 0x0) chdir(&(0x7f00000001c0)='./file0\x00') r2 = syz_open_dev$mouse(&(0x7f0000000400), 0x7fffffff, 0x2d0401) sendmsg$NL80211_CMD_ADD_NAN_FUNCTION(r2, &(0x7f0000000500)={&(0x7f0000000440)={0x10, 0x0, 0x0, 0x10}, 0xc, &(0x7f00000004c0)={&(0x7f00000002c0)={0x20, 0x0, 0x100, 0x70bd2b, 0x25dfdbfd, {{}, {@void, @val={0xc, 0x99, {0x3, 0x1b}}}}}, 0x20}, 0x1, 0x0, 0x0, 0x95}, 0x40000) ioctl$FICLONE(r2, 0x40049409, r0) r3 = open$dir(&(0x7f0000000000)='.\x00', 0x0, 0x0) perf_event_open(&(0x7f0000001d80)={0x6, 0x80, 0x0, 0x0, 0x0, 0x0, 0x4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffd, 0x0, @perf_bp={0x0, 0xffffffff81000000}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffd}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r4 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000040)='/proc/crypto\x00', 0x0, 0x0) r5 = openat2(r3, &(0x7f0000000180)='./file0\x00', &(0x7f0000000200)={0x800, 0x1b9}, 0x18) setsockopt$SO_TIMESTAMPING(r5, 0x1, 0x25, &(0x7f0000000240)=0x7100, 0x4) pread64(r4, &(0x7f00000010c0)=""/4088, 0xff8, 0x0) writev(0xffffffffffffffff, &(0x7f00000003c0)=[{}, {&(0x7f0000000680)="7fd41c04550300020000000000000000010046e92ed2616f72657d044129471d4fd47924fd0900e09e0068deec02", 0x2e}], 0x2) 05:38:05 executing program 1: perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_emit_ethernet(0xfffffdef, &(0x7f0000000000)={@local, @remote, @void, {@ipv4={0x800, @tcp={{0x6, 0x4, 0x0, 0x0, 0x2c, 0x0, 0x0, 0x0, 0x32, 0x0, @dev, @private=0xa010100, {[@lsrr={0x83, 0x5}]}}, {{0x0, 0x0, 0x41424344, 0x41424344, 0x0, 0x7, 0x5}}}}}}, 0x0) 05:38:05 executing program 5: r0 = open(&(0x7f0000000040)='./file0\x00', 0x1810c1, 0x0) fallocate(r0, 0x20, 0x0, 0x7ffc) pipe2$9p(&(0x7f0000000000)={0xffffffffffffffff, 0xffffffffffffffff}, 0x800) stat(&(0x7f0000000300)='./file0\x00', &(0x7f0000000280)) r2 = perf_event_open(&(0x7f0000001d80)={0x2, 0x80, 0x5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x40641, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x40, 0x0, @perf_config_ext, 0x0, 0x1, 0x0, 0x2, 0x0, 0x9}, 0x0, 0x0, 0xffffffffffffffff, 0xa) perf_event_open(&(0x7f0000001d80)={0x3, 0x80, 0x0, 0x0, 0x0, 0x0, 0x4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, r2, 0x0) dup2(r1, r2) r3 = gettid() perf_event_open(&(0x7f00000001c0)={0x3, 0x80, 0x5, 0x80, 0x9, 0x42, 0x0, 0x3f, 0x10040, 0x6, 0x1, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x1, 0x0, 0x1, 0x0, 0x0, 0x0, 0x1, 0x0, 0x3, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x1, 0x1, 0x0, 0x0, 0x1, 0x0, 0x1, 0x1, 0x0, 0x1, 0x0, 0x0, 0x1, 0x0, 0x3, 0x0, @perf_bp={&(0x7f0000000180), 0x1}, 0x3514, 0xffffffffffff0000, 0x7, 0x3, 0x8, 0x400, 0x6, 0x0, 0x0, 0x0, 0x800}, r3, 0xf, 0xffffffffffffffff, 0x8) recvmsg(r0, &(0x7f0000000140)={&(0x7f0000000080)=@xdp, 0x80, &(0x7f0000000000), 0x0, &(0x7f0000000100)=""/49, 0x31}, 0x2020) 05:38:05 executing program 0: perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_emit_ethernet(0x3a, &(0x7f0000000000)={@local, @remote, @void, {@ipv4={0x800, @tcp={{0x6, 0x4, 0x0, 0x0, 0x2c, 0x0, 0x0, 0x0, 0x32, 0x0, @dev, @private=0xa010100, {[@lsrr={0x83, 0x5}]}}, {{0x0, 0x0, 0x41424344, 0x41424344, 0x0, 0x7, 0x5}}}}}}, 0x0) (fail_nth: 19) ioctl$BTRFS_IOC_BALANCE(0xffffffffffffffff, 0x5000940c, 0x0) close(0xffffffffffffffff) 05:38:05 executing program 2: preadv2(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x2) openat(0xffffffffffffff9c, 0x0, 0x0, 0x0) r0 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x105142, 0x62) r1 = openat(0xffffffffffffff9c, 0x0, 0x0, 0x0) fallocate(r1, 0x0, 0x0, 0x8800000) lseek(0xffffffffffffffff, 0x0, 0x0) openat(0xffffffffffffffff, 0x0, 0x0, 0x20) ioctl$FS_IOC_RESVSP(0xffffffffffffffff, 0x40305828, 0x0) faccessat2(0xffffffffffffffff, 0x0, 0x0, 0x0) openat(0xffffffffffffffff, 0x0, 0x1a340, 0x100) ioctl$LOOP_CTL_REMOVE(0xffffffffffffffff, 0x4c81, 0x0) r2 = fsmount(0xffffffffffffffff, 0x0, 0x0) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r3 = openat(r2, &(0x7f0000000000)='/proc/self/exe\x00', 0x4840, 0x2d) sendfile(r0, r3, 0x0, 0x100000023) [ 2792.625720] netlink: 8 bytes leftover after parsing attributes in process `syz-executor.3'. [ 2792.628913] FAULT_INJECTION: forcing a failure. [ 2792.628913] name fail_page_alloc, interval 1, probability 0, space 0, times 0 [ 2792.630348] CPU: 1 PID: 12396 Comm: syz-executor.0 Not tainted 5.10.204 #1 [ 2792.631268] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 2792.632198] Call Trace: [ 2792.632503] dump_stack+0x107/0x167 [ 2792.632932] should_fail.cold+0x5/0xa [ 2792.633389] __alloc_pages_nodemask+0x182/0x600 [ 2792.634051] ? stack_trace_consume_entry+0x160/0x160 [ 2792.634639] ? __alloc_pages_slowpath.constprop.0+0x2130/0x2130 [ 2792.635322] ? kmem_cache_alloc+0x301/0x310 [ 2792.635809] alloc_pages_current+0x187/0x280 [ 2792.636308] ? ip_rcv+0xae/0xd0 [ 2792.636693] allocate_slab+0x26f/0x380 [ 2792.637146] ___slab_alloc+0x470/0x700 [ 2792.637605] ? create_object.isra.0+0x3a/0xa20 [ 2792.638126] ? lock_acquire+0x197/0x470 [ 2792.638586] ? find_held_lock+0x2c/0x110 [ 2792.639063] ? create_object.isra.0+0x3a/0xa20 [ 2792.639604] ? kmem_cache_alloc+0x301/0x310 [ 2792.640097] kmem_cache_alloc+0x301/0x310 [ 2792.640590] create_object.isra.0+0x3a/0xa20 [ 2792.641103] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 2792.641701] kmem_cache_alloc+0x159/0x310 [ 2792.642292] dst_alloc+0x9e/0x610 [ 2792.642736] rt_dst_clone+0x59/0x860 [ 2792.643173] ip_mc_finish_output+0x95/0x280 [ 2792.643687] ip_mc_output+0x71c/0xa30 [ 2792.644130] ip_push_pending_frames+0x12e/0x2c0 [ 2792.644676] icmp_push_reply+0x351/0x490 [ 2792.645137] __icmp_send+0xbc9/0x14d0 [ 2792.645578] ? icmp_route_lookup.constprop.0+0x11a0/0x11a0 [ 2792.646203] ? __lockdep_reset_lock+0x180/0x180 [ 2792.646738] ? find_held_lock+0x2c/0x110 [ 2792.647221] ? ip_route_input_noref+0x160/0x2f0 [ 2792.647761] ip_options_compile+0xad/0xf0 [ 2792.648230] ? __ip_options_compile+0x15d0/0x15d0 [ 2792.648793] ? ip_list_rcv_finish.constprop.0+0x590/0x590 [ 2792.649421] ip_rcv_finish_core.constprop.0+0x4fb/0x1c90 [ 2792.650028] ip_rcv_finish+0x4f/0x1e0 [ 2792.650457] ip_rcv+0xae/0xd0 [ 2792.650805] ? ip_local_deliver+0x200/0x200 [ 2792.651288] __netif_receive_skb_one_core+0x19b/0x1f0 [ 2792.651862] ? __netif_receive_skb_core+0x3780/0x3780 [ 2792.652459] ? __lock_acquire+0xbb1/0x5b00 [ 2792.652941] __netif_receive_skb+0x27/0x1d0 [ 2792.653421] netif_receive_skb+0x12d/0x710 [ 2792.653889] ? __netif_receive_skb+0x1d0/0x1d0 [ 2792.654398] ? SOFTIRQ_verbose+0x10/0x10 [ 2792.654867] ? __lockdep_reset_lock+0x180/0x180 [ 2792.655394] tun_rx_batched.isra.0+0x462/0x710 [ 2792.655899] ? lock_acquire+0x197/0x470 [ 2792.656349] ? tun_get_user+0xee3/0x32f0 [ 2792.656818] ? tun_sock_write_space+0x1d0/0x1d0 [ 2792.657328] ? lock_release+0x680/0x680 [ 2792.657768] ? tun_get_user+0x16e6/0x32f0 [ 2792.658228] ? lock_downgrade+0x6d0/0x6d0 [ 2792.658689] ? eth_type_trans+0x2ad/0x5b0 [ 2792.659149] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 2792.659732] tun_get_user+0x191d/0x32f0 [ 2792.660168] ? usage_accumulate+0x110/0x110 [ 2792.660673] ? tun_build_skb+0xfe0/0xfe0 [ 2792.661138] ? tun_device_event+0x990/0x1160 [ 2792.661629] ? perf_trace_lock+0xac/0x490 [ 2792.662096] ? SOFTIRQ_verbose+0x10/0x10 [ 2792.662558] tun_chr_write_iter+0xe1/0x1e0 [ 2792.663040] new_sync_write+0x42c/0x660 [ 2792.663488] ? new_sync_read+0x6f0/0x6f0 [ 2792.663949] ? _cond_resched+0x12/0x80 [ 2792.664394] ? avc_policy_seqno+0x9/0x70 [ 2792.664854] ? selinux_file_permission+0x92/0x520 [ 2792.665396] ? __fget_files+0x296/0x4c0 [ 2792.665844] vfs_write+0x747/0xa70 [ 2792.666241] ksys_write+0x12d/0x260 [ 2792.666638] ? __ia32_sys_read+0xb0/0xb0 [ 2792.667108] do_syscall_64+0x33/0x40 [ 2792.667514] entry_SYSCALL_64_after_hwframe+0x62/0xc7 [ 2792.668088] RIP: 0033:0x7fc05d62c5ff [ 2792.668506] Code: 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 99 fd ff ff 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 b8 01 00 00 00 0f 05 <48> 3d 00 f0 ff ff 77 31 44 89 c7 48 89 44 24 08 e8 cc fd ff ff 48 [ 2792.670559] RSP: 002b:00007fc05abef150 EFLAGS: 00000293 ORIG_RAX: 0000000000000001 [ 2792.671418] RAX: ffffffffffffffda RBX: 00007fc05d78cf60 RCX: 00007fc05d62c5ff [ 2792.672194] RDX: 000000000000003a RSI: 0000000020000000 RDI: 00000000000000f0 [ 2792.672974] RBP: 00007fc05abef1d0 R08: 0000000000000000 R09: 0000000000000000 [ 2792.673737] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000002 05:38:05 executing program 1: perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_emit_ethernet(0xfffffffffffffdef, &(0x7f0000000000)={@local, @remote, @void, {@ipv4={0x800, @tcp={{0x6, 0x4, 0x0, 0x0, 0x2c, 0x0, 0x0, 0x0, 0x32, 0x0, @dev, @private=0xa010100, {[@lsrr={0x83, 0x5}]}}, {{0x0, 0x0, 0x41424344, 0x41424344, 0x0, 0x7, 0x5}}}}}}, 0x0) [ 2792.674504] R13: 00007ffc5aac442f R14: 00007fc05abef300 R15: 0000000000022000 05:38:05 executing program 0: perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_emit_ethernet(0x3a, &(0x7f0000000000)={@local, @remote, @void, {@ipv4={0x800, @tcp={{0x6, 0x4, 0x0, 0x0, 0x2c, 0x0, 0x0, 0x0, 0x32, 0x0, @dev, @private=0xa010100, {[@lsrr={0x83, 0x5}]}}, {{0x0, 0x0, 0x41424344, 0x41424344, 0x0, 0x7, 0x5}}}}}}, 0x0) (fail_nth: 20) ioctl$BTRFS_IOC_BALANCE(0xffffffffffffffff, 0x5000940c, 0x0) close(0xffffffffffffffff) 05:38:05 executing program 4: perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_emit_ethernet(0x3a, &(0x7f0000000000)={@local, @remote, @void, {@ipv4={0x8e0, @tcp={{0x6, 0x4, 0x0, 0x0, 0x2c, 0x0, 0x0, 0x0, 0x32, 0x0, @dev, @private=0xa010100, {[@lsrr={0x83, 0x5}]}}, {{0x0, 0x0, 0x41424344, 0x41424344, 0x0, 0x7, 0x5}}}}}}, 0x0) openat$cgroup_devices(0xffffffffffffffff, 0x0, 0x2, 0x0) close(0xffffffffffffffff) pread64(0xffffffffffffffff, 0x0, 0x0, 0x2000) 05:38:05 executing program 5: perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_emit_ethernet(0xfffffdef, &(0x7f0000000000)={@local, @remote, @void, {@ipv4={0x800, @tcp={{0x6, 0x4, 0x0, 0x0, 0x2c, 0x0, 0x0, 0x0, 0x32, 0x0, @dev, @private=0xa010100, {[@lsrr={0x83, 0x5}]}}, {{0x0, 0x0, 0x41424344, 0x41424344, 0x0, 0x7, 0x5}}}}}}, 0x0) [ 2792.769333] FAULT_INJECTION: forcing a failure. [ 2792.769333] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 2792.770900] CPU: 1 PID: 12407 Comm: syz-executor.0 Not tainted 5.10.204 #1 [ 2792.771680] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 2792.772600] Call Trace: [ 2792.772893] dump_stack+0x107/0x167 [ 2792.773320] should_fail.cold+0x5/0xa [ 2792.773750] _copy_from_user+0x2e/0x1b0 [ 2792.774215] kstrtouint_from_user+0xbd/0x220 [ 2792.774696] ? kstrtou8_from_user+0x210/0x210 [ 2792.775218] ? lock_acquire+0x197/0x470 [ 2792.775670] ? ksys_write+0x12d/0x260 [ 2792.776108] proc_fail_nth_write+0x78/0x220 [ 2792.776586] ? proc_task_getattr+0x1f0/0x1f0 [ 2792.777081] ? __fget_files+0x296/0x4c0 [ 2792.777523] ? proc_task_getattr+0x1f0/0x1f0 [ 2792.778011] vfs_write+0x29a/0xa70 [ 2792.778411] ksys_write+0x12d/0x260 [ 2792.778832] ? __ia32_sys_read+0xb0/0xb0 [ 2792.779292] do_syscall_64+0x33/0x40 [ 2792.779716] entry_SYSCALL_64_after_hwframe+0x62/0xc7 [ 2792.780282] RIP: 0033:0x7fc05d62c5ff [ 2792.780711] Code: 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 99 fd ff ff 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 b8 01 00 00 00 0f 05 <48> 3d 00 f0 ff ff 77 31 44 89 c7 48 89 44 24 08 e8 cc fd ff ff 48 [ 2792.782775] RSP: 002b:00007fc05abef170 EFLAGS: 00000293 ORIG_RAX: 0000000000000001 [ 2792.783608] RAX: ffffffffffffffda RBX: 0000000000000000 RCX: 00007fc05d62c5ff [ 2792.784420] RDX: 0000000000000001 RSI: 00007fc05abef1e0 RDI: 0000000000000004 [ 2792.785247] RBP: 00007fc05abef1d0 R08: 0000000000000000 R09: 0000000000000000 [ 2792.786035] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000002 [ 2792.786861] R13: 00007ffc5aac442f R14: 00007fc05abef300 R15: 0000000000022000 05:38:05 executing program 3: r0 = perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x0, 0x3}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) pread64(0xffffffffffffffff, 0x0, 0x7ffffffff000, 0xf0ff1f00000000) bind$inet6(0xffffffffffffffff, &(0x7f0000000040)={0xa, 0x4e23, 0x0, @remote, 0xffff}, 0x1c) r1 = socket$netlink(0x10, 0x3, 0x0) sendmsg$nl_generic(0xffffffffffffffff, 0x0, 0x41) setsockopt$netlink_NETLINK_BROADCAST_ERROR(r1, 0x10e, 0x4, &(0x7f00000000c0)=0x1000, 0x4) sendmsg$nl_generic(r1, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000100)=ANY=[@ANYBLOB="28000000100001000000000000000000000000000500000024386a562b500000000c00008008000d00ac141400"], 0x28}}, 0x0) chdir(&(0x7f00000001c0)='./file0\x00') r2 = syz_open_dev$mouse(&(0x7f0000000400), 0x7fffffff, 0x2d0401) sendmsg$NL80211_CMD_ADD_NAN_FUNCTION(r2, &(0x7f0000000500)={&(0x7f0000000440)={0x10, 0x0, 0x0, 0x10}, 0xc, &(0x7f00000004c0)={&(0x7f00000002c0)={0x20, 0x0, 0x100, 0x70bd2b, 0x25dfdbfd, {{}, {@void, @val={0xc, 0x99, {0x3, 0x1b}}}}}, 0x20}, 0x1, 0x0, 0x0, 0x95}, 0x40000) ioctl$FICLONE(r2, 0x40049409, r0) r3 = open$dir(&(0x7f0000000000)='.\x00', 0x0, 0x0) perf_event_open(&(0x7f0000001d80)={0x6, 0x80, 0x0, 0x0, 0x0, 0x0, 0x4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffd, 0x0, @perf_bp={0x0, 0xffffffff81000000}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffd}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r4 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000040)='/proc/crypto\x00', 0x0, 0x0) r5 = openat2(r3, &(0x7f0000000180)='./file0\x00', &(0x7f0000000200)={0x800, 0x1b9}, 0x18) setsockopt$SO_TIMESTAMPING(r5, 0x1, 0x25, &(0x7f0000000240)=0x7100, 0x4) pread64(r4, &(0x7f00000010c0)=""/4088, 0xff8, 0x0) writev(0xffffffffffffffff, &(0x7f00000003c0)=[{&(0x7f0000000000)="0000abe02400030021206cda3b5e5672b89aeddb2a535f", 0x17}, {&(0x7f0000000680)="7fd41c04550300020000000000000000010046e92ed2616f72657d044129471d4fd47924fd0900e09e0068deec02", 0x2e}], 0x2) 05:38:05 executing program 0: perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_emit_ethernet(0x3a, &(0x7f0000000000)={@local, @remote, @void, {@ipv4={0x800, @tcp={{0x6, 0x4, 0x0, 0x0, 0x2c, 0x0, 0x0, 0x0, 0x32, 0x0, @dev, @private=0xa010100, {[@lsrr={0x83, 0x5}]}}, {{0x0, 0x0, 0x41424344, 0x41424344, 0x0, 0x7, 0x5}}}}}}, 0x0) ioctl$BTRFS_IOC_BALANCE(0xffffffffffffffff, 0x5000940c, 0x0) close(0xffffffffffffffff) [ 2792.884685] FAULT_INJECTION: forcing a failure. [ 2792.884685] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 2792.887273] CPU: 0 PID: 12405 Comm: syz-executor.6 Not tainted 5.10.204 #1 [ 2792.888688] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 2792.890340] Call Trace: [ 2792.890882] dump_stack+0x107/0x167 [ 2792.891633] should_fail.cold+0x5/0xa [ 2792.892412] _copy_to_iter+0x264/0x12d0 [ 2792.893255] ? sk_wait_data+0x353/0x4d0 [ 2792.894116] ? _copy_from_iter_nocache+0xd60/0xd60 [ 2792.895119] ? mark_held_locks+0x9e/0xe0 [ 2792.895949] ? __virt_addr_valid+0x128/0x350 [ 2792.896857] ? __check_object_size+0x319/0x440 [ 2792.897797] simple_copy_to_iter+0x4c/0x70 [ 2792.898665] __skb_datagram_iter+0x4f7/0x880 [ 2792.899571] ? zerocopy_sg_from_iter+0x110/0x110 [ 2792.900564] skb_copy_datagram_iter+0x88/0x190 [ 2792.901502] tcp_recvmsg+0x13b5/0x2930 [ 2792.902323] ? tcp_splice_read+0x8c0/0x8c0 [ 2792.903212] ? sock_has_perm+0x1ea/0x280 [ 2792.904051] ? selinux_socket_post_create+0x7f0/0x7f0 [ 2792.905142] ? lock_downgrade+0x6d0/0x6d0 [ 2792.905990] ? perf_trace_lock+0xac/0x490 [ 2792.906842] ? tcp_splice_read+0x8c0/0x8c0 [ 2792.907703] inet6_recvmsg+0x13b/0x6e0 [ 2792.908501] ? inet6_bind+0x120/0x120 [ 2792.909293] ? security_socket_recvmsg+0x95/0xc0 [ 2792.910256] ? inet6_bind+0x120/0x120 [ 2792.911032] sock_recvmsg+0xff/0x180 [ 2792.911793] __sys_recvfrom+0x1be/0x2f0 [ 2792.912617] ? __ia32_sys_send+0x100/0x100 [ 2792.913480] ? lock_downgrade+0x6d0/0x6d0 [ 2792.914373] ? fput+0x9/0x20 [ 2792.914996] ? __sanitizer_cov_trace_pc+0x3c/0x60 [ 2792.915978] ? fput_many+0x2f/0x1a0 [ 2792.916742] ? ksys_write+0x1a9/0x260 [ 2792.917520] ? __ia32_sys_read+0xb0/0xb0 [ 2792.918355] __x64_sys_recvfrom+0xdd/0x1b0 [ 2792.919218] ? syscall_trace_enter.constprop.0+0x10d/0x1e0 [ 2792.920354] do_syscall_64+0x33/0x40 [ 2792.921120] entry_SYSCALL_64_after_hwframe+0x62/0xc7 [ 2792.922159] RIP: 0033:0x7f7d1addbb19 [ 2792.922913] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 2792.926565] RSP: 002b:00007f7d18330188 EFLAGS: 00000246 ORIG_RAX: 000000000000002d [ 2792.928118] RAX: ffffffffffffffda RBX: 00007f7d1aeef020 RCX: 00007f7d1addbb19 [ 2792.929593] RDX: 0000000000001000 RSI: 0000000020001e00 RDI: 0000000000000003 [ 2792.931063] RBP: 00007f7d183301d0 R08: 0000000000000000 R09: 0000000000000000 [ 2792.932513] R10: 000000000000cd08 R11: 0000000000000246 R12: 0000000000000002 [ 2792.933969] R13: 00007ffe0ac926cf R14: 00007f7d18330300 R15: 0000000000022000 [ 2792.996596] netlink: 8 bytes leftover after parsing attributes in process `syz-executor.3'. 05:38:19 executing program 6: r0 = socket$inet6_tcp(0xa, 0x1, 0x0) setsockopt$inet6_tcp_int(r0, 0x6, 0x2, &(0x7f0000000080)=0x90, 0x4) bind$inet6(r0, &(0x7f00000000c0)={0xa, 0x4e20, 0x0, @loopback}, 0x1c) connect$inet6(r0, &(0x7f0000000000)={0xa, 0x4e20, 0x0, @empty}, 0x1c) setsockopt$sock_int(r0, 0x1, 0x8, &(0x7f0000002ec0), 0x4) sendmsg$inet6(r0, &(0x7f00000006c0)={0x0, 0x0, &(0x7f0000000540)=[{&(0x7f00000001c0)="cf", 0xfffffdef}], 0x1}, 0x10044001) setsockopt$SO_TIMESTAMP(r0, 0x1, 0x40, &(0x7f0000000280)=0x380, 0x4) recvfrom$inet6(r0, &(0x7f0000001e00)=""/4096, 0x1000, 0xcd08, 0x0, 0x0) (fail_nth: 12) 05:38:19 executing program 0: perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_emit_ethernet(0xd, &(0x7f0000000000)={@local, @remote, @void, {@ipv4={0x800, @tcp={{0x6, 0x4, 0x0, 0x0, 0x2c, 0x0, 0x0, 0x0, 0x32, 0x0, @dev, @private=0xa010100, {[@lsrr={0x83, 0x5}]}}, {{0x0, 0x0, 0x41424344, 0x41424344, 0x0, 0x7, 0x5}}}}}}, 0x0) ioctl$BTRFS_IOC_BALANCE(0xffffffffffffffff, 0x5000940c, 0x0) close(0xffffffffffffffff) 05:38:19 executing program 2: preadv2(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x2) openat(0xffffffffffffff9c, 0x0, 0x0, 0x0) r0 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x105142, 0x62) r1 = openat(0xffffffffffffff9c, 0x0, 0x0, 0x0) fallocate(r1, 0x0, 0x0, 0x8800000) lseek(0xffffffffffffffff, 0x0, 0x0) openat(0xffffffffffffffff, 0x0, 0x0, 0x20) ioctl$FS_IOC_RESVSP(0xffffffffffffffff, 0x40305828, 0x0) faccessat2(0xffffffffffffffff, 0x0, 0x0, 0x0) openat(0xffffffffffffffff, 0x0, 0x1a340, 0x100) ioctl$LOOP_CTL_REMOVE(0xffffffffffffffff, 0x4c81, 0x0) r2 = fsmount(0xffffffffffffffff, 0x0, 0x0) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r3 = openat(r2, &(0x7f0000000000)='/proc/self/exe\x00', 0x4840, 0x2d) sendfile(r0, r3, 0x0, 0x100000281) 05:38:19 executing program 5: perf_event_open(&(0x7f0000001d80)={0x2, 0x80, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000000)='/proc/sysvipc/shm\x00', 0x0, 0x0) r1 = creat(&(0x7f0000000040)='./file0\x00', 0x50) openat(r1, &(0x7f0000000080)='./file0\x00', 0x109000, 0x50) pread64(r0, &(0x7f0000001e00)=""/4140, 0x102c, 0x0) 05:38:19 executing program 4: perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_emit_ethernet(0x3a, &(0x7f0000000000)={@local, @remote, @void, {@ipv4={0x4305, @tcp={{0x6, 0x4, 0x0, 0x0, 0x2c, 0x0, 0x0, 0x0, 0x32, 0x0, @dev, @private=0xa010100, {[@lsrr={0x83, 0x5}]}}, {{0x0, 0x0, 0x41424344, 0x41424344, 0x0, 0x7, 0x5}}}}}}, 0x0) openat$cgroup_devices(0xffffffffffffffff, 0x0, 0x2, 0x0) close(0xffffffffffffffff) pread64(0xffffffffffffffff, 0x0, 0x0, 0x2000) 05:38:19 executing program 1: perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_emit_ethernet(0x3a, &(0x7f0000000000)={@local, @remote, @void, {@ipv4={0x500, @tcp={{0x6, 0x4, 0x0, 0x0, 0x2c, 0x0, 0x0, 0x0, 0x32, 0x0, @dev, @private=0xa010100, {[@lsrr={0x83, 0x5}]}}, {{0x0, 0x0, 0x41424344, 0x41424344, 0x0, 0x7, 0x5}}}}}}, 0x0) 05:38:19 executing program 3: r0 = perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x0, 0x3}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) pread64(0xffffffffffffffff, 0x0, 0x7ffffffff000, 0xf0ff1f00000000) bind$inet6(0xffffffffffffffff, &(0x7f0000000040)={0xa, 0x4e23, 0x0, @remote, 0xffff}, 0x1c) r1 = socket$netlink(0x10, 0x3, 0x0) sendmsg$nl_generic(0xffffffffffffffff, 0x0, 0x41) setsockopt$netlink_NETLINK_BROADCAST_ERROR(r1, 0x10e, 0x4, &(0x7f00000000c0)=0x1000, 0x4) sendmsg$nl_generic(r1, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000100)=ANY=[@ANYBLOB="28000000100001000000000000000000000000000500000024386a562b500000000c00008008000d00ac141400"], 0x28}}, 0x0) chdir(&(0x7f00000001c0)='./file0\x00') r2 = syz_open_dev$mouse(&(0x7f0000000400), 0x7fffffff, 0x2d0401) sendmsg$NL80211_CMD_ADD_NAN_FUNCTION(r2, &(0x7f0000000500)={&(0x7f0000000440)={0x10, 0x0, 0x0, 0x10}, 0xc, &(0x7f00000004c0)={&(0x7f00000002c0)={0x20, 0x0, 0x100, 0x70bd2b, 0x25dfdbfd, {{}, {@void, @val={0xc, 0x99, {0x3, 0x1b}}}}}, 0x20}, 0x1, 0x0, 0x0, 0x95}, 0x40000) ioctl$FICLONE(r2, 0x40049409, r0) r3 = open$dir(&(0x7f0000000000)='.\x00', 0x0, 0x0) perf_event_open(&(0x7f0000001d80)={0x6, 0x80, 0x0, 0x0, 0x0, 0x0, 0x4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffd, 0x0, @perf_bp={0x0, 0xffffffff81000000}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffd}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r4 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000040)='/proc/crypto\x00', 0x0, 0x0) r5 = openat2(r3, &(0x7f0000000180)='./file0\x00', &(0x7f0000000200)={0x800, 0x1b9}, 0x18) setsockopt$SO_TIMESTAMPING(r5, 0x1, 0x25, &(0x7f0000000240)=0x7100, 0x4) pread64(r4, &(0x7f00000010c0)=""/4088, 0xff8, 0x0) writev(0xffffffffffffffff, &(0x7f00000003c0)=[{&(0x7f0000000000)="0000abe02400030021206cda3b5e5672b89aeddb2a535f", 0x17}, {&(0x7f0000000680)="7fd41c04550300020000000000000000010046e92ed2616f72657d044129471d4fd47924fd0900e09e0068deec02", 0x2e}], 0x2) 05:38:19 executing program 7: syz_mount_image$vfat(&(0x7f0000000000), &(0x7f0000000100)='./file0\x00', 0x4, 0x0, &(0x7f0000000200), 0x0, &(0x7f00000002c0)=ANY=[]) chdir(&(0x7f0000000040)='./file0\x00') r0 = openat(0xffffffffffffff9c, &(0x7f00000010c0)='./file0\x00', 0x115142, 0x0) r1 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0) sendfile(r0, r1, 0x0, 0x100000001) r2 = creat(&(0x7f0000000040)='./file0\x00', 0x0) r3 = openat$procfs(0xffffffffffffff9c, &(0x7f00000014c0)='/proc/bus/input/devices\x00', 0x0, 0x0) pread64(r3, &(0x7f0000000040)=""/4126, 0x101e, 0x2000) openat(r3, &(0x7f0000000080)='\x00', 0x8080, 0x26) ioctl$FITRIM(r2, 0xc0185879, &(0x7f00000000c0)={0x0, 0xfffefffffffffffd}) 05:38:19 executing program 1: perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_emit_ethernet(0x3a, &(0x7f0000000000)={@local, @remote, @void, {@ipv4={0x802, @tcp={{0x6, 0x4, 0x0, 0x0, 0x2c, 0x0, 0x0, 0x0, 0x32, 0x0, @dev, @private=0xa010100, {[@lsrr={0x83, 0x5}]}}, {{0x0, 0x0, 0x41424344, 0x41424344, 0x0, 0x7, 0x5}}}}}}, 0x0) [ 2807.013597] netlink: 8 bytes leftover after parsing attributes in process `syz-executor.3'. [ 2807.032407] FAT-fs (loop7): bogus number of reserved sectors [ 2807.033201] FAT-fs (loop7): Can't find a valid FAT filesystem 05:38:19 executing program 4: perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_emit_ethernet(0x3a, &(0x7f0000000000)={@local, @remote, @void, {@ipv4={0x6558, @tcp={{0x6, 0x4, 0x0, 0x0, 0x2c, 0x0, 0x0, 0x0, 0x32, 0x0, @dev, @private=0xa010100, {[@lsrr={0x83, 0x5}]}}, {{0x0, 0x0, 0x41424344, 0x41424344, 0x0, 0x7, 0x5}}}}}}, 0x0) openat$cgroup_devices(0xffffffffffffffff, 0x0, 0x2, 0x0) close(0xffffffffffffffff) pread64(0xffffffffffffffff, 0x0, 0x0, 0x2000) 05:38:19 executing program 0: perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_emit_ethernet(0x7a, &(0x7f0000000000)={@local, @remote, @void, {@ipv4={0x800, @tcp={{0x6, 0x4, 0x0, 0x0, 0x2c, 0x0, 0x0, 0x0, 0x32, 0x0, @dev, @private=0xa010100, {[@lsrr={0x83, 0x5}]}}, {{0x0, 0x0, 0x41424344, 0x41424344, 0x0, 0x7, 0x5}}}}}}, 0x0) ioctl$BTRFS_IOC_BALANCE(0xffffffffffffffff, 0x5000940c, 0x0) close(0xffffffffffffffff) 05:38:19 executing program 5: perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) connect$inet6(0xffffffffffffffff, 0x0, 0x0) readv(0xffffffffffffffff, &(0x7f0000000280), 0x1000000000000048) r0 = ioctl$NS_GET_PARENT(0xffffffffffffffff, 0xb702, 0x0) writev(r0, &(0x7f0000000200)=[{&(0x7f0000000140)="98174bd7bcbeeaf5cd7be1571978c272bb002c8036357cb8881b618b664c7eb4b52808d321aa21c6ad6758a90fa9d4277c7075e4d12345dce72eb28b9a113f57877445e073cad8340d3b255d9dc70889b81cbf29953265c20b0ce0559695362a65d0511553510326dce96c314e7161cf2ca9ab4c4c3d12a94a1a47c7362a9455cf0e2a2285f5d63a934e6c43d0ccb0707f82f0", 0x93}], 0x1) r1 = syz_open_procfs(0x0, &(0x7f0000000080)='net/ip6_flowlabel\x00') r2 = perf_event_open(&(0x7f0000001d80)={0x2, 0x80, 0x5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x40641, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x40, 0x0, @perf_config_ext, 0x0, 0x1, 0x0, 0x2, 0x0, 0x9}, 0x0, 0x0, 0xffffffffffffffff, 0xa) perf_event_open(&(0x7f0000001d80)={0x3, 0x80, 0x0, 0x0, 0x0, 0x0, 0x4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, r2, 0x0) fsetxattr$security_capability(r2, &(0x7f0000000240), &(0x7f0000000280)=@v1={0x1000000, [{0x0, 0x8}]}, 0xc, 0x1) setsockopt$inet6_MRT6_ADD_MFC(0xffffffffffffffff, 0x29, 0xcc, &(0x7f00000000c0)={{0xa, 0x4e20, 0x0, @local, 0x4}, {0xa, 0x4e23, 0x80000001, @mcast1, 0x1}, 0x3ff, [0x3, 0x2, 0x873e, 0x40, 0x1000, 0x0, 0x7, 0x9db8]}, 0x5c) fsmount(r1, 0x1, 0xf4) 05:38:19 executing program 1: perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_emit_ethernet(0x3a, &(0x7f0000000000)={@local, @remote, @void, {@ipv4={0x803, @tcp={{0x6, 0x4, 0x0, 0x0, 0x2c, 0x0, 0x0, 0x0, 0x32, 0x0, @dev, @private=0xa010100, {[@lsrr={0x83, 0x5}]}}, {{0x0, 0x0, 0x41424344, 0x41424344, 0x0, 0x7, 0x5}}}}}}, 0x0) 05:38:19 executing program 3: r0 = perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x0, 0x3}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) pread64(0xffffffffffffffff, 0x0, 0x7ffffffff000, 0xf0ff1f00000000) bind$inet6(0xffffffffffffffff, &(0x7f0000000040)={0xa, 0x4e23, 0x0, @remote, 0xffff}, 0x1c) r1 = socket$netlink(0x10, 0x3, 0x0) sendmsg$nl_generic(0xffffffffffffffff, 0x0, 0x41) setsockopt$netlink_NETLINK_BROADCAST_ERROR(r1, 0x10e, 0x4, &(0x7f00000000c0)=0x1000, 0x4) sendmsg$nl_generic(r1, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000100)=ANY=[@ANYBLOB="28000000100001000000000000000000000000000500000024386a562b500000000c00008008000d00ac141400"], 0x28}}, 0x0) chdir(&(0x7f00000001c0)='./file0\x00') r2 = syz_open_dev$mouse(&(0x7f0000000400), 0x7fffffff, 0x2d0401) sendmsg$NL80211_CMD_ADD_NAN_FUNCTION(r2, &(0x7f0000000500)={&(0x7f0000000440)={0x10, 0x0, 0x0, 0x10}, 0xc, &(0x7f00000004c0)={&(0x7f00000002c0)={0x20, 0x0, 0x100, 0x70bd2b, 0x25dfdbfd, {{}, {@void, @val={0xc, 0x99, {0x3, 0x1b}}}}}, 0x20}, 0x1, 0x0, 0x0, 0x95}, 0x40000) ioctl$FICLONE(r2, 0x40049409, r0) r3 = open$dir(&(0x7f0000000000)='.\x00', 0x0, 0x0) perf_event_open(&(0x7f0000001d80)={0x6, 0x80, 0x0, 0x0, 0x0, 0x0, 0x4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffd, 0x0, @perf_bp={0x0, 0xffffffff81000000}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffd}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r4 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000040)='/proc/crypto\x00', 0x0, 0x0) r5 = openat2(r3, &(0x7f0000000180)='./file0\x00', &(0x7f0000000200)={0x800, 0x1b9}, 0x18) setsockopt$SO_TIMESTAMPING(r5, 0x1, 0x25, &(0x7f0000000240)=0x7100, 0x4) pread64(r4, &(0x7f00000010c0)=""/4088, 0xff8, 0x0) writev(0xffffffffffffffff, &(0x7f00000003c0)=[{&(0x7f0000000000)="0000abe02400030021206cda3b5e5672b89aeddb2a535f", 0x17}, {&(0x7f0000000680)="7fd41c04550300020000000000000000010046e92ed2616f72657d044129471d4fd47924fd0900e09e0068deec02", 0x2e}], 0x2) 05:38:19 executing program 1: perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_emit_ethernet(0x3a, &(0x7f0000000000)={@local, @remote, @void, {@ipv4={0x804, @tcp={{0x6, 0x4, 0x0, 0x0, 0x2c, 0x0, 0x0, 0x0, 0x32, 0x0, @dev, @private=0xa010100, {[@lsrr={0x83, 0x5}]}}, {{0x0, 0x0, 0x41424344, 0x41424344, 0x0, 0x7, 0x5}}}}}}, 0x0) [ 2807.158663] FAT-fs (loop7): bogus number of reserved sectors [ 2807.159369] FAT-fs (loop7): Can't find a valid FAT filesystem [ 2807.185396] netlink: 8 bytes leftover after parsing attributes in process `syz-executor.3'. 05:38:19 executing program 4: perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_emit_ethernet(0x3a, &(0x7f0000000000)={@local, @remote, @void, {@ipv4={0x8035, @tcp={{0x6, 0x4, 0x0, 0x0, 0x2c, 0x0, 0x0, 0x0, 0x32, 0x0, @dev, @private=0xa010100, {[@lsrr={0x83, 0x5}]}}, {{0x0, 0x0, 0x41424344, 0x41424344, 0x0, 0x7, 0x5}}}}}}, 0x0) openat$cgroup_devices(0xffffffffffffffff, 0x0, 0x2, 0x0) close(0xffffffffffffffff) pread64(0xffffffffffffffff, 0x0, 0x0, 0x2000) [ 2807.254638] FAULT_INJECTION: forcing a failure. [ 2807.254638] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 2807.255947] CPU: 1 PID: 12449 Comm: syz-executor.6 Not tainted 5.10.204 #1 [ 2807.256704] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 2807.257619] Call Trace: [ 2807.257925] dump_stack+0x107/0x167 [ 2807.258321] should_fail.cold+0x5/0xa [ 2807.258740] _copy_to_iter+0x264/0x12d0 [ 2807.259181] ? sk_wait_data+0x353/0x4d0 [ 2807.259610] ? _copy_from_iter_nocache+0xd60/0xd60 [ 2807.260157] ? mark_held_locks+0x9e/0xe0 [ 2807.260604] ? __virt_addr_valid+0x128/0x350 [ 2807.261102] ? __check_object_size+0x319/0x440 [ 2807.261600] simple_copy_to_iter+0x4c/0x70 [ 2807.262070] __skb_datagram_iter+0x122/0x880 [ 2807.262542] ? sock_set_mark+0x130/0x130 [ 2807.262992] ? zerocopy_sg_from_iter+0x110/0x110 [ 2807.263509] skb_copy_datagram_iter+0x88/0x190 [ 2807.264021] tcp_recvmsg+0x13b5/0x2930 [ 2807.264460] ? tcp_splice_read+0x8c0/0x8c0 [ 2807.264957] ? sock_has_perm+0x1ea/0x280 [ 2807.265402] ? perf_trace_lock+0xac/0x490 [ 2807.265873] ? tcp_splice_read+0x8c0/0x8c0 [ 2807.266335] inet6_recvmsg+0x13b/0x6e0 [ 2807.266772] ? inet6_bind+0x120/0x120 [ 2807.267185] ? security_socket_recvmsg+0x95/0xc0 [ 2807.267718] ? inet6_bind+0x120/0x120 [ 2807.268125] sock_recvmsg+0xff/0x180 [ 2807.268546] __sys_recvfrom+0x1be/0x2f0 [ 2807.268991] ? __ia32_sys_send+0x100/0x100 [ 2807.269473] ? lock_downgrade+0x6d0/0x6d0 [ 2807.269958] ? wait_for_completion_io+0x270/0x270 [ 2807.270471] ? rcu_read_lock_any_held+0x75/0xa0 [ 2807.270990] ? vfs_write+0x354/0xa70 [ 2807.271391] ? fput_many+0x2f/0x1a0 [ 2807.271804] ? ksys_write+0x1a9/0x260 [ 2807.272209] ? __ia32_sys_read+0xb0/0xb0 [ 2807.272670] __x64_sys_recvfrom+0xdd/0x1b0 [ 2807.273144] ? syscall_enter_from_user_mode+0x1d/0x50 [ 2807.273729] do_syscall_64+0x33/0x40 [ 2807.274142] entry_SYSCALL_64_after_hwframe+0x62/0xc7 [ 2807.274694] RIP: 0033:0x7f7d1addbb19 [ 2807.275123] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 2807.277173] RSP: 002b:00007f7d18330188 EFLAGS: 00000246 ORIG_RAX: 000000000000002d [ 2807.277977] RAX: ffffffffffffffda RBX: 00007f7d1aeef020 RCX: 00007f7d1addbb19 [ 2807.278757] RDX: 0000000000001000 RSI: 0000000020001e00 RDI: 0000000000000003 [ 2807.279510] RBP: 00007f7d183301d0 R08: 0000000000000000 R09: 0000000000000000 [ 2807.280305] R10: 000000000000cd08 R11: 0000000000000246 R12: 0000000000000002 [ 2807.281068] R13: 00007ffe0ac926cf R14: 00007f7d18330300 R15: 0000000000022000 05:38:34 executing program 1: perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_emit_ethernet(0x3a, &(0x7f0000000000)={@local, @remote, @void, {@ipv4={0x806, @tcp={{0x6, 0x4, 0x0, 0x0, 0x2c, 0x0, 0x0, 0x0, 0x32, 0x0, @dev, @private=0xa010100, {[@lsrr={0x83, 0x5}]}}, {{0x0, 0x0, 0x41424344, 0x41424344, 0x0, 0x7, 0x5}}}}}}, 0x0) 05:38:34 executing program 4: perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_emit_ethernet(0x3a, &(0x7f0000000000)={@local, @remote, @void, {@ipv4={0x8100, @tcp={{0x6, 0x4, 0x0, 0x0, 0x2c, 0x0, 0x0, 0x0, 0x32, 0x0, @dev, @private=0xa010100, {[@lsrr={0x83, 0x5}]}}, {{0x0, 0x0, 0x41424344, 0x41424344, 0x0, 0x7, 0x5}}}}}}, 0x0) openat$cgroup_devices(0xffffffffffffffff, 0x0, 0x2, 0x0) close(0xffffffffffffffff) pread64(0xffffffffffffffff, 0x0, 0x0, 0x2000) 05:38:34 executing program 0: perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_emit_ethernet(0xfdef, &(0x7f0000000000)={@local, @remote, @void, {@ipv4={0x800, @tcp={{0x6, 0x4, 0x0, 0x0, 0x2c, 0x0, 0x0, 0x0, 0x32, 0x0, @dev, @private=0xa010100, {[@lsrr={0x83, 0x5}]}}, {{0x0, 0x0, 0x41424344, 0x41424344, 0x0, 0x7, 0x5}}}}}}, 0x0) ioctl$BTRFS_IOC_BALANCE(0xffffffffffffffff, 0x5000940c, 0x0) close(0xffffffffffffffff) 05:38:34 executing program 5: r0 = inotify_init1(0x0) syz_mount_image$nfs4(0x0, &(0x7f0000005040)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0, 0x6}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r1 = memfd_create(&(0x7f0000000080)='ext4\x00', 0x0) r2 = openat$ttyS3(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0) dup2(r1, r2) fsync(0xffffffffffffffff) r3 = openat$selinux_attr(0xffffffffffffff9c, &(0x7f0000000180)='/proc/thread-self/attr/sockcreate\x00', 0x2, 0x0) mkdirat(0xffffffffffffffff, 0x0, 0x88) signalfd4(r3, 0x0, 0x0, 0x80000) ioctl$FS_IOC_RESVSP(0xffffffffffffffff, 0x40305828, &(0x7f00000001c0)={0x0, 0x0, 0x9, 0x200}) r4 = syz_mount_image$iso9660(&(0x7f0000000300), &(0x7f0000000340)='./file0\x00', 0x8af, 0x3, &(0x7f00000005c0)=[{&(0x7f0000000380)="b441a37e782abac9603456a84b445feda0821214902c2f5e6588e800b0d147c3a699125f34714bd65cf2be56d7f4f1b2ab6f5bb8cfa304bb64816ea52d9c89394695aa6c564ceeec2a0bb6f72604e30d50d406e64a387b16f306d8d24ba855e9f03988c875bc0ec4cad017891dd3d1d7eb4565878b8949ca796e3e38d5f32046c62b5ea8", 0x84}, {&(0x7f0000000440)="9dee70042ef8fb44ce2a1a45b4610e39a0dcdc01087eeea2bd5b6ff559453f9ccce06599f815fb1890bcb8f7bfa9648e248791e476db5e415c0764180646130f9d9511d9290e2420ed0c3cff1b098a12f1937cbb960d539600c6cf5e8d90375d246695ae62", 0x65}, {0x0, 0x0, 0x6}], 0x20, 0x0) fsconfig$FSCONFIG_SET_FD(0xffffffffffffffff, 0x5, &(0x7f00000002c0)='\x00', 0x0, r4) msgctl$IPC_SET(0x0, 0x3, &(0x7f00000000c0)={{0x0}}) perf_event_open(&(0x7f00000000c0)={0x5, 0x80, 0x4, 0x0, 0x0, 0x40, 0x0, 0xfffffffffffffffe, 0x2000, 0x5, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x1, 0x1, 0x1, 0x1, 0x1, 0x0, 0x0, 0x2, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x1, 0x0, 0x0, 0x0, 0xfffffffe, 0x0, @perf_config_ext={0x0, 0x3}, 0x100, 0x1418, 0x8, 0x0, 0x5, 0x1000, 0x0, 0x0, 0xff, 0x0, 0x7fff}, 0xffffffffffffffff, 0x2, 0xffffffffffffffff, 0x2) inotify_add_watch(r0, &(0x7f0000000140)='./file0\x00', 0x43000f99) openat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x8000, 0xa4) 05:38:34 executing program 6: r0 = socket$inet6_tcp(0xa, 0x1, 0x0) setsockopt$inet6_tcp_int(r0, 0x6, 0x2, &(0x7f0000000080)=0x90, 0x4) bind$inet6(r0, &(0x7f00000000c0)={0xa, 0x4e20, 0x0, @loopback}, 0x1c) connect$inet6(r0, &(0x7f0000000000)={0xa, 0x4e20, 0x0, @empty}, 0x1c) setsockopt$sock_int(r0, 0x1, 0x8, &(0x7f0000002ec0), 0x4) sendmsg$inet6(r0, &(0x7f00000006c0)={0x0, 0x0, &(0x7f0000000540)=[{&(0x7f00000001c0)="cf", 0xfffffdef}], 0x1}, 0x10044001) setsockopt$SO_TIMESTAMP(r0, 0x1, 0x40, &(0x7f0000000280)=0x380, 0x4) recvfrom$inet6(r0, &(0x7f0000001e00)=""/4096, 0x1000, 0xcd08, 0x0, 0x0) (fail_nth: 13) 05:38:34 executing program 2: preadv2(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x2) openat(0xffffffffffffff9c, 0x0, 0x0, 0x0) r0 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x105142, 0x62) r1 = openat(0xffffffffffffff9c, 0x0, 0x0, 0x0) fallocate(r1, 0x0, 0x0, 0x8800000) lseek(0xffffffffffffffff, 0x0, 0x0) openat(0xffffffffffffffff, 0x0, 0x0, 0x20) ioctl$FS_IOC_RESVSP(0xffffffffffffffff, 0x40305828, 0x0) faccessat2(0xffffffffffffffff, 0x0, 0x0, 0x0) openat(0xffffffffffffffff, 0x0, 0x1a340, 0x100) ioctl$LOOP_CTL_REMOVE(0xffffffffffffffff, 0x4c81, 0x0) r2 = fsmount(0xffffffffffffffff, 0x0, 0x0) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r3 = openat(r2, &(0x7f0000000000)='/proc/self/exe\x00', 0x4840, 0x2d) sendfile(r0, r3, 0x0, 0x100000300) 05:38:34 executing program 3: r0 = perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x0, 0x3}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) pread64(0xffffffffffffffff, 0x0, 0x7ffffffff000, 0xf0ff1f00000000) bind$inet6(0xffffffffffffffff, &(0x7f0000000040)={0xa, 0x4e23, 0x0, @remote, 0xffff}, 0x1c) r1 = socket$netlink(0x10, 0x3, 0x0) sendmsg$nl_generic(0xffffffffffffffff, 0x0, 0x41) setsockopt$netlink_NETLINK_BROADCAST_ERROR(r1, 0x10e, 0x4, &(0x7f00000000c0)=0x1000, 0x4) sendmsg$nl_generic(r1, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000100)=ANY=[@ANYBLOB="28000000100001000000000000000000000000000500000024386a562b500000000c00008008000d00ac141400"], 0x28}}, 0x0) chdir(&(0x7f00000001c0)='./file0\x00') r2 = syz_open_dev$mouse(&(0x7f0000000400), 0x7fffffff, 0x2d0401) sendmsg$NL80211_CMD_ADD_NAN_FUNCTION(r2, &(0x7f0000000500)={&(0x7f0000000440)={0x10, 0x0, 0x0, 0x10}, 0xc, &(0x7f00000004c0)={&(0x7f00000002c0)={0x20, 0x0, 0x100, 0x70bd2b, 0x25dfdbfd, {{}, {@void, @val={0xc, 0x99, {0x3, 0x1b}}}}}, 0x20}, 0x1, 0x0, 0x0, 0x95}, 0x40000) ioctl$FICLONE(r2, 0x40049409, r0) r3 = open$dir(&(0x7f0000000000)='.\x00', 0x0, 0x0) perf_event_open(&(0x7f0000001d80)={0x6, 0x80, 0x0, 0x0, 0x0, 0x0, 0x4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffd, 0x0, @perf_bp={0x0, 0xffffffff81000000}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffd}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r4 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000040)='/proc/crypto\x00', 0x0, 0x0) r5 = openat2(r3, &(0x7f0000000180)='./file0\x00', &(0x7f0000000200)={0x800, 0x1b9}, 0x18) setsockopt$SO_TIMESTAMPING(r5, 0x1, 0x25, &(0x7f0000000240)=0x7100, 0x4) pread64(r4, &(0x7f00000010c0)=""/4088, 0xff8, 0x0) writev(0xffffffffffffffff, &(0x7f00000003c0)=[{&(0x7f0000000000)="0000abe02400030021206cda3b5e5672b89aeddb2a535fbd0706006dff0043a9d7cceb", 0x23}, {&(0x7f0000000680)="7fd41c04550300020000000000000000010046e92ed2616f72657d044129471d4fd47924fd0900e09e0068deec02", 0x2e}], 0x2) 05:38:34 executing program 7: r0 = openat(0xffffffffffffff9c, 0x0, 0x639d1876ab868171, 0x0) readv(0xffffffffffffffff, 0x0, 0x0) r1 = accept$unix(0xffffffffffffffff, &(0x7f0000000140)=@abs, 0xfffffffffffffffc) preadv(r0, &(0x7f00000001c0)=[{&(0x7f0000000340)=""/196, 0xc4}, {&(0x7f0000000480)=""/178, 0xb2}, {&(0x7f0000000540)=""/161, 0xa1}, {&(0x7f0000000600)=""/224, 0xe0}], 0x4, 0x9, 0x2) openat(0xffffffffffffffff, &(0x7f0000000200)='./file0\x00', 0x20a100, 0x161) r2 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x105142, 0x62) ioctl$BTRFS_IOC_QUOTA_CTL(0xffffffffffffffff, 0xc0109428, 0x0) creat(&(0x7f0000000000)='./file0\x00', 0x0) r3 = dup2(0xffffffffffffffff, 0xffffffffffffffff) preadv(r3, &(0x7f0000000440)=[{&(0x7f00000002c0)=""/77, 0x4d}, {&(0x7f0000000240)=""/103, 0x67}], 0x2, 0x2, 0x0) fallocate(0xffffffffffffffff, 0x0, 0x0, 0x8800000) r4 = dup2(0xffffffffffffffff, r1) ioctl$BTRFS_IOC_GET_SUPPORTED_FEATURES(r4, 0x80489439, &(0x7f0000000080)) ioctl$FS_IOC_RESVSP(0xffffffffffffffff, 0x40305828, &(0x7f0000000040)) ioctl$LOOP_CTL_REMOVE(r4, 0x4c81, 0xc) fsmount(0xffffffffffffffff, 0x0, 0x0) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x20, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, @perf_config_ext={0xcfb2}, 0x4c20, 0x0, 0x400, 0x0, 0x0, 0x0, 0x4}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r5 = openat(0xffffffffffffffff, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0) sendfile(r2, r5, 0x0, 0x100000001) [ 2821.654971] netlink: 8 bytes leftover after parsing attributes in process `syz-executor.3'. 05:38:34 executing program 1: perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_emit_ethernet(0x3a, &(0x7f0000000000)={@local, @remote, @void, {@ipv4={0x808, @tcp={{0x6, 0x4, 0x0, 0x0, 0x2c, 0x0, 0x0, 0x0, 0x32, 0x0, @dev, @private=0xa010100, {[@lsrr={0x83, 0x5}]}}, {{0x0, 0x0, 0x41424344, 0x41424344, 0x0, 0x7, 0x5}}}}}}, 0x0) 05:38:34 executing program 0: perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_emit_ethernet(0x2000003a, &(0x7f0000000000)={@local, @remote, @void, {@ipv4={0x800, @tcp={{0x6, 0x4, 0x0, 0x0, 0x2c, 0x0, 0x0, 0x0, 0x32, 0x0, @dev, @private=0xa010100, {[@lsrr={0x83, 0x5}]}}, {{0x0, 0x0, 0x41424344, 0x41424344, 0x0, 0x7, 0x5}}}}}}, 0x0) ioctl$BTRFS_IOC_BALANCE(0xffffffffffffffff, 0x5000940c, 0x0) close(0xffffffffffffffff) 05:38:34 executing program 4: perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_emit_ethernet(0x3a, &(0x7f0000000000)={@local, @remote, @void, {@ipv4={0x8847, @tcp={{0x6, 0x4, 0x0, 0x0, 0x2c, 0x0, 0x0, 0x0, 0x32, 0x0, @dev, @private=0xa010100, {[@lsrr={0x83, 0x5}]}}, {{0x0, 0x0, 0x41424344, 0x41424344, 0x0, 0x7, 0x5}}}}}}, 0x0) openat$cgroup_devices(0xffffffffffffffff, 0x0, 0x2, 0x0) close(0xffffffffffffffff) pread64(0xffffffffffffffff, 0x0, 0x0, 0x2000) [ 2821.740504] audit: type=1400 audit(1702877914.357:100): avc: denied { watch_reads } for pid=12477 comm="syz-executor.5" path="/syzkaller-testdir534228037/syzkaller.hUuNJu/434/file0" dev="sda" ino=16035 scontext=system_u:system_r:kernel_t:s0 tcontext=system_u:object_r:unlabeled_t:s0 tclass=dir permissive=1 05:38:34 executing program 3: r0 = perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x0, 0x3}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) pread64(0xffffffffffffffff, 0x0, 0x7ffffffff000, 0xf0ff1f00000000) bind$inet6(0xffffffffffffffff, &(0x7f0000000040)={0xa, 0x4e23, 0x0, @remote, 0xffff}, 0x1c) r1 = socket$netlink(0x10, 0x3, 0x0) sendmsg$nl_generic(0xffffffffffffffff, 0x0, 0x41) setsockopt$netlink_NETLINK_BROADCAST_ERROR(r1, 0x10e, 0x4, &(0x7f00000000c0)=0x1000, 0x4) sendmsg$nl_generic(r1, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000100)=ANY=[@ANYBLOB="28000000100001000000000000000000000000000500000024386a562b500000000c00008008000d00ac141400"], 0x28}}, 0x0) chdir(&(0x7f00000001c0)='./file0\x00') r2 = syz_open_dev$mouse(&(0x7f0000000400), 0x7fffffff, 0x2d0401) sendmsg$NL80211_CMD_ADD_NAN_FUNCTION(r2, &(0x7f0000000500)={&(0x7f0000000440)={0x10, 0x0, 0x0, 0x10}, 0xc, &(0x7f00000004c0)={&(0x7f00000002c0)={0x20, 0x0, 0x100, 0x70bd2b, 0x25dfdbfd, {{}, {@void, @val={0xc, 0x99, {0x3, 0x1b}}}}}, 0x20}, 0x1, 0x0, 0x0, 0x95}, 0x40000) ioctl$FICLONE(r2, 0x40049409, r0) r3 = open$dir(&(0x7f0000000000)='.\x00', 0x0, 0x0) perf_event_open(&(0x7f0000001d80)={0x6, 0x80, 0x0, 0x0, 0x0, 0x0, 0x4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffd, 0x0, @perf_bp={0x0, 0xffffffff81000000}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffd}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r4 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000040)='/proc/crypto\x00', 0x0, 0x0) r5 = openat2(r3, &(0x7f0000000180)='./file0\x00', &(0x7f0000000200)={0x800, 0x1b9}, 0x18) setsockopt$SO_TIMESTAMPING(r5, 0x1, 0x25, &(0x7f0000000240)=0x7100, 0x4) pread64(r4, &(0x7f00000010c0)=""/4088, 0xff8, 0x0) writev(0xffffffffffffffff, &(0x7f00000003c0)=[{&(0x7f0000000000)="0000abe02400030021206cda3b5e5672b89aeddb2a535fbd0706006dff0043a9d7cceb", 0x23}, {&(0x7f0000000680)="7fd41c04550300020000000000000000010046e92ed2616f72657d044129471d4fd47924fd0900e09e0068deec02", 0x2e}], 0x2) 05:38:34 executing program 1: perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_emit_ethernet(0x3a, &(0x7f0000000000)={@local, @remote, @void, {@ipv4={0x80a, @tcp={{0x6, 0x4, 0x0, 0x0, 0x2c, 0x0, 0x0, 0x0, 0x32, 0x0, @dev, @private=0xa010100, {[@lsrr={0x83, 0x5}]}}, {{0x0, 0x0, 0x41424344, 0x41424344, 0x0, 0x7, 0x5}}}}}}, 0x0) [ 2821.894544] FAULT_INJECTION: forcing a failure. [ 2821.894544] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 2821.897286] CPU: 0 PID: 12494 Comm: syz-executor.6 Not tainted 5.10.204 #1 [ 2821.898670] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 2821.900343] Call Trace: [ 2821.900902] dump_stack+0x107/0x167 [ 2821.901649] should_fail.cold+0x5/0xa [ 2821.902421] _copy_to_iter+0x264/0x12d0 [ 2821.903237] ? sk_wait_data+0x353/0x4d0 [ 2821.904036] ? _copy_from_iter_nocache+0xd60/0xd60 [ 2821.905030] ? mark_held_locks+0x9e/0xe0 [ 2821.905841] ? __virt_addr_valid+0x128/0x350 [ 2821.906734] ? __check_object_size+0x319/0x440 [ 2821.907667] simple_copy_to_iter+0x4c/0x70 [ 2821.908520] __skb_datagram_iter+0x4f7/0x880 [ 2821.909416] ? zerocopy_sg_from_iter+0x110/0x110 [ 2821.910370] skb_copy_datagram_iter+0x88/0x190 [ 2821.911292] tcp_recvmsg+0x13b5/0x2930 [ 2821.912102] ? tcp_splice_read+0x8c0/0x8c0 [ 2821.912973] ? sock_has_perm+0x1ea/0x280 [ 2821.913798] ? perf_trace_lock+0xac/0x490 [ 2821.914631] ? tcp_splice_read+0x8c0/0x8c0 [ 2821.915477] inet6_recvmsg+0x13b/0x6e0 [ 2821.916270] ? inet6_bind+0x120/0x120 [ 2821.917039] ? security_socket_recvmsg+0x95/0xc0 [ 2821.917985] ? inet6_bind+0x120/0x120 [ 2821.918759] sock_recvmsg+0xff/0x180 [ 2821.919509] __sys_recvfrom+0x1be/0x2f0 [ 2821.920497] ? __ia32_sys_send+0x100/0x100 [ 2821.921359] ? lock_downgrade+0x6d0/0x6d0 [ 2821.922235] ? wait_for_completion_io+0x270/0x270 [ 2821.923201] ? rcu_read_lock_any_held+0x75/0xa0 [ 2821.924138] ? vfs_write+0x354/0xa70 [ 2821.924898] ? fput_many+0x2f/0x1a0 [ 2821.925641] ? ksys_write+0x1a9/0x260 [ 2821.926413] ? __ia32_sys_read+0xb0/0xb0 [ 2821.927239] __x64_sys_recvfrom+0xdd/0x1b0 [ 2821.928099] ? syscall_enter_from_user_mode+0x1d/0x50 [ 2821.929135] do_syscall_64+0x33/0x40 [ 2821.929888] entry_SYSCALL_64_after_hwframe+0x62/0xc7 [ 2821.930911] RIP: 0033:0x7f7d1addbb19 [ 2821.931672] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 2821.935392] RSP: 002b:00007f7d18330188 EFLAGS: 00000246 ORIG_RAX: 000000000000002d [ 2821.936915] RAX: ffffffffffffffda RBX: 00007f7d1aeef020 RCX: 00007f7d1addbb19 [ 2821.938330] RDX: 0000000000001000 RSI: 0000000020001e00 RDI: 0000000000000003 [ 2821.939747] RBP: 00007f7d183301d0 R08: 0000000000000000 R09: 0000000000000000 [ 2821.941179] R10: 000000000000cd08 R11: 0000000000000246 R12: 0000000000000002 [ 2821.942597] R13: 00007ffe0ac926cf R14: 00007f7d18330300 R15: 0000000000022000 05:38:34 executing program 1: perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_emit_ethernet(0x3a, &(0x7f0000000000)={@local, @remote, @void, {@ipv4={0x80e, @tcp={{0x6, 0x4, 0x0, 0x0, 0x2c, 0x0, 0x0, 0x0, 0x32, 0x0, @dev, @private=0xa010100, {[@lsrr={0x83, 0x5}]}}, {{0x0, 0x0, 0x41424344, 0x41424344, 0x0, 0x7, 0x5}}}}}}, 0x0) 05:38:34 executing program 0: perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_emit_ethernet(0xfffffdef, &(0x7f0000000000)={@local, @remote, @void, {@ipv4={0x800, @tcp={{0x6, 0x4, 0x0, 0x0, 0x2c, 0x0, 0x0, 0x0, 0x32, 0x0, @dev, @private=0xa010100, {[@lsrr={0x83, 0x5}]}}, {{0x0, 0x0, 0x41424344, 0x41424344, 0x0, 0x7, 0x5}}}}}}, 0x0) ioctl$BTRFS_IOC_BALANCE(0xffffffffffffffff, 0x5000940c, 0x0) close(0xffffffffffffffff) [ 2821.981664] netlink: 8 bytes leftover after parsing attributes in process `syz-executor.3'. 05:38:34 executing program 5: syz_mount_image$ext4(0x0, &(0x7f0000000100)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0) mount$9p_unix(&(0x7f0000000140)='./file0/../file0\x00', &(0x7f00000001c0)='./file0\x00', 0x0, 0x173000, 0x0) mkdir(&(0x7f0000000300)='./file0/file0\x00', 0x0) r0 = openat$procfs(0xffffffffffffff9c, &(0x7f00000014c0)='/proc/bus/input/devices\x00', 0x0, 0x0) pread64(r0, &(0x7f0000000040)=""/4126, 0x101e, 0x2000) renameat2(0xffffffffffffffff, &(0x7f0000000080)='./file0/file0\x00', r0, &(0x7f0000000200)='./file0/../file0\x00', 0x0) mount$bind(&(0x7f00000000c0)='./file0/file0\x00', &(0x7f0000000180)='./file0/file0\x00', 0x0, 0x1000, 0x0) r1 = syz_mount_image$tmpfs(&(0x7f0000000040), &(0x7f0000000240)='./file0\x00', 0x0, 0x0, 0x0, 0x84000, &(0x7f00000002c0)=ANY=[]) move_mount(r1, &(0x7f0000000c80)='./file0/../file0\x00', 0xffffffffffffff9c, &(0x7f0000000000)='./file0/../file0\x00', 0x20) 05:38:34 executing program 4: perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_emit_ethernet(0x3a, &(0x7f0000000000)={@local, @remote, @void, {@ipv4={0x8848, @tcp={{0x6, 0x4, 0x0, 0x0, 0x2c, 0x0, 0x0, 0x0, 0x32, 0x0, @dev, @private=0xa010100, {[@lsrr={0x83, 0x5}]}}, {{0x0, 0x0, 0x41424344, 0x41424344, 0x0, 0x7, 0x5}}}}}}, 0x0) openat$cgroup_devices(0xffffffffffffffff, 0x0, 0x2, 0x0) close(0xffffffffffffffff) pread64(0xffffffffffffffff, 0x0, 0x0, 0x2000) 05:38:34 executing program 1: perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_emit_ethernet(0x3a, &(0x7f0000000000)={@local, @remote, @void, {@ipv4={0x811, @tcp={{0x6, 0x4, 0x0, 0x0, 0x2c, 0x0, 0x0, 0x0, 0x32, 0x0, @dev, @private=0xa010100, {[@lsrr={0x83, 0x5}]}}, {{0x0, 0x0, 0x41424344, 0x41424344, 0x0, 0x7, 0x5}}}}}}, 0x0) 05:38:34 executing program 0: perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_emit_ethernet(0xfffffffffffffdef, &(0x7f0000000000)={@local, @remote, @void, {@ipv4={0x800, @tcp={{0x6, 0x4, 0x0, 0x0, 0x2c, 0x0, 0x0, 0x0, 0x32, 0x0, @dev, @private=0xa010100, {[@lsrr={0x83, 0x5}]}}, {{0x0, 0x0, 0x41424344, 0x41424344, 0x0, 0x7, 0x5}}}}}}, 0x0) ioctl$BTRFS_IOC_BALANCE(0xffffffffffffffff, 0x5000940c, 0x0) close(0xffffffffffffffff) 05:38:34 executing program 4: perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_emit_ethernet(0x3a, &(0x7f0000000000)={@local, @remote, @void, {@ipv4={0x8864, @tcp={{0x6, 0x4, 0x0, 0x0, 0x2c, 0x0, 0x0, 0x0, 0x32, 0x0, @dev, @private=0xa010100, {[@lsrr={0x83, 0x5}]}}, {{0x0, 0x0, 0x41424344, 0x41424344, 0x0, 0x7, 0x5}}}}}}, 0x0) openat$cgroup_devices(0xffffffffffffffff, 0x0, 0x2, 0x0) close(0xffffffffffffffff) pread64(0xffffffffffffffff, 0x0, 0x0, 0x2000) 05:38:49 executing program 5: syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x40000, 0x4, &(0x7f0000000200)=[{&(0x7f0000010000)="20000000000100000c000000d40000000f000000010000000000000000000000002000000020000020000000d7f4655fd7f4655f0100ffff53ef010001000000d7f4655f000000000000000001000000000000000b00000000020000280200000284", 0x62, 0x400}, {&(0x7f0000010400)="030000000400000005000000d4000f", 0xf, 0x800}, {&(0x7f0000010500)="ffffffffff070000000000000000000000000000000000000000000000000080ffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffff", 0x402, 0xc00}, {&(0x7f0000000180)="ed41000000040000d7f4655fd7f4655fd7f4655f000000000000040002", 0x1d, 0x1600}], 0x8010, &(0x7f0000000280)=ANY=[]) chdir(&(0x7f0000000040)='./file0\x00') r0 = openat(0xffffffffffffff9c, &(0x7f0000000080)='./file1\x00', 0x105142, 0x0) r1 = openat(0xffffffffffffffff, &(0x7f0000000100)='./file0\x00', 0x0, 0x8) openat(0xffffffffffffffff, &(0x7f00000000c0)='./file0\x00', 0x8c0, 0x6) r2 = openat(0xffffffffffffff9c, &(0x7f0000000200)='./file1\x00', 0x2, 0x0) ioctl$FS_IOC_FSSETXATTR(0xffffffffffffffff, 0x40086602, &(0x7f0000000000)) getsockname(0xffffffffffffffff, &(0x7f0000000440)=@generic, &(0x7f00000004c0)=0x80) write(r2, &(0x7f0000000240)="01", 0x1) pipe2(&(0x7f0000000480), 0x0) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0xf1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4, @perf_bp={&(0x7f0000000140), 0x1}, 0x0, 0x0, 0x2000, 0xb, 0x0, 0x8000}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) write$P9_RREADLINK(r0, &(0x7f0000000140)=ANY=[], 0x10) sendfile(r0, r1, 0x0, 0x20d315) openat$tcp_congestion(0xffffffffffffff9c, 0x0, 0x1, 0x0) io_uring_register$IORING_REGISTER_EVENTFD_ASYNC(0xffffffffffffffff, 0x7, &(0x7f0000000280), 0x1) openat(0xffffffffffffff9c, &(0x7f0000000000)='./file1\x00', 0x802c0, 0x0) sendfile(0xffffffffffffffff, r2, &(0x7f00000001c0)=0x7, 0x3) open(&(0x7f0000000040)='./file0\x00', 0x1810c1, 0x0) fcntl$dupfd(0xffffffffffffffff, 0x0, 0xffffffffffffffff) [ 2837.294605] netlink: 8 bytes leftover after parsing attributes in process `syz-executor.3'. 05:38:49 executing program 2: preadv2(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x2) openat(0xffffffffffffff9c, 0x0, 0x0, 0x0) r0 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x105142, 0x62) r1 = openat(0xffffffffffffff9c, 0x0, 0x0, 0x0) fallocate(r1, 0x0, 0x0, 0x8800000) lseek(0xffffffffffffffff, 0x0, 0x0) openat(0xffffffffffffffff, 0x0, 0x0, 0x20) ioctl$FS_IOC_RESVSP(0xffffffffffffffff, 0x40305828, 0x0) faccessat2(0xffffffffffffffff, 0x0, 0x0, 0x0) openat(0xffffffffffffffff, 0x0, 0x1a340, 0x100) ioctl$LOOP_CTL_REMOVE(0xffffffffffffffff, 0x4c81, 0x0) r2 = fsmount(0xffffffffffffffff, 0x0, 0x0) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r3 = openat(r2, &(0x7f0000000000)='/proc/self/exe\x00', 0x4840, 0x2d) sendfile(r0, r3, 0x0, 0x100000500) 05:38:49 executing program 3: r0 = perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x0, 0x3}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) pread64(0xffffffffffffffff, 0x0, 0x7ffffffff000, 0xf0ff1f00000000) bind$inet6(0xffffffffffffffff, &(0x7f0000000040)={0xa, 0x4e23, 0x0, @remote, 0xffff}, 0x1c) r1 = socket$netlink(0x10, 0x3, 0x0) sendmsg$nl_generic(0xffffffffffffffff, 0x0, 0x41) setsockopt$netlink_NETLINK_BROADCAST_ERROR(r1, 0x10e, 0x4, &(0x7f00000000c0)=0x1000, 0x4) sendmsg$nl_generic(r1, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000100)=ANY=[@ANYBLOB="28000000100001000000000000000000000000000500000024386a562b500000000c00008008000d00ac141400"], 0x28}}, 0x0) chdir(&(0x7f00000001c0)='./file0\x00') r2 = syz_open_dev$mouse(&(0x7f0000000400), 0x7fffffff, 0x2d0401) sendmsg$NL80211_CMD_ADD_NAN_FUNCTION(r2, &(0x7f0000000500)={&(0x7f0000000440)={0x10, 0x0, 0x0, 0x10}, 0xc, &(0x7f00000004c0)={&(0x7f00000002c0)={0x20, 0x0, 0x100, 0x70bd2b, 0x25dfdbfd, {{}, {@void, @val={0xc, 0x99, {0x3, 0x1b}}}}}, 0x20}, 0x1, 0x0, 0x0, 0x95}, 0x40000) ioctl$FICLONE(r2, 0x40049409, r0) r3 = open$dir(&(0x7f0000000000)='.\x00', 0x0, 0x0) perf_event_open(&(0x7f0000001d80)={0x6, 0x80, 0x0, 0x0, 0x0, 0x0, 0x4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffd, 0x0, @perf_bp={0x0, 0xffffffff81000000}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffd}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r4 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000040)='/proc/crypto\x00', 0x0, 0x0) r5 = openat2(r3, &(0x7f0000000180)='./file0\x00', &(0x7f0000000200)={0x800, 0x1b9}, 0x18) setsockopt$SO_TIMESTAMPING(r5, 0x1, 0x25, &(0x7f0000000240)=0x7100, 0x4) pread64(r4, &(0x7f00000010c0)=""/4088, 0xff8, 0x0) writev(0xffffffffffffffff, &(0x7f00000003c0)=[{&(0x7f0000000000)="0000abe02400030021206cda3b5e5672b89aeddb2a535fbd0706006dff0043a9d7cceb", 0x23}, {&(0x7f0000000680)="7fd41c04550300020000000000000000010046e92ed2616f72657d044129471d4fd47924fd0900e09e0068deec02", 0x2e}], 0x2) 05:38:49 executing program 1: perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_emit_ethernet(0x3a, &(0x7f0000000000)={@local, @remote, @void, {@ipv4={0x82c, @tcp={{0x6, 0x4, 0x0, 0x0, 0x2c, 0x0, 0x0, 0x0, 0x32, 0x0, @dev, @private=0xa010100, {[@lsrr={0x83, 0x5}]}}, {{0x0, 0x0, 0x41424344, 0x41424344, 0x0, 0x7, 0x5}}}}}}, 0x0) 05:38:49 executing program 6: r0 = socket$inet6_tcp(0xa, 0x1, 0x0) setsockopt$inet6_tcp_int(r0, 0x6, 0x2, &(0x7f0000000080)=0x90, 0x4) bind$inet6(r0, &(0x7f00000000c0)={0xa, 0x4e20, 0x0, @loopback}, 0x1c) connect$inet6(r0, &(0x7f0000000000)={0xa, 0x4e20, 0x0, @empty}, 0x1c) setsockopt$sock_int(r0, 0x1, 0x8, &(0x7f0000002ec0), 0x4) sendmsg$inet6(r0, &(0x7f00000006c0)={0x0, 0x0, &(0x7f0000000540)=[{&(0x7f00000001c0)="cf", 0xfffffdef}], 0x1}, 0x10044001) setsockopt$SO_TIMESTAMP(r0, 0x1, 0x40, &(0x7f0000000280)=0x380, 0x4) recvfrom$inet6(r0, &(0x7f0000001e00)=""/4096, 0x1000, 0xcd08, 0x0, 0x0) (fail_nth: 14) 05:38:49 executing program 7: syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./mnt\x00', 0x10000, 0x1d, &(0x7f0000000200)=[{&(0x7f0000010000)="1000000040000000030000002b00000005000000010000000000000000000000002000000020000010000000000000009f09c75f0000ffff53ef0100010000009f09c75f000000000000000001000000000000000b0000008000000038000000c20201006b04000076b65be2f6da47278c750525a5b65a090000000000000000", 0x80, 0x400}, {&(0x7f0000010080)="000000000000000000000000ede2de4df49d4f87b54a3176cfd4eb4f010040000c000000000000009f09c75f00"/64, 0x40, 0x4e0}, {&(0x7f00000100c0)="0100000000000000000000000000000000000000040100001200000000000000", 0x20, 0x560}, {&(0x7f00000100e0)="0000000000000000000000000000000000000000010400"/32, 0x20, 0x640}, {&(0x7f0000010100)="000000000000000000000000000000000000000000000000000000005178aedb0300000013000000230000002b0005000200040000000000907306c205002a9c00000000000000000000000000000000000000000000000091ecd11b00000000", 0x60, 0x7e0}, {&(0x7f0000010160)="ffff05000c000080ffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffff020000000c0001022e000000020000000c0002022e2e00000b000000dc030a026c6f73742b666f756e6400"/1088, 0x440, 0xc00}, {&(0x7f00000105a0)="0000000000000000000000000000000000000000000000000c0000de46b807b70b0000000c0001022e00000002000000e80302022e2e00"/64, 0x40, 0x13e0}, {&(0x7f00000105e0)="0000000000000000000000000000000000000000000000000c0000de5551aadd00000000f40300"/64, 0x40, 0x17e0}, {&(0x7f0000010620)="0000000000000000000000000000000000000000000000000c0000de2b607f2900000000f40300"/64, 0x40, 0x1be0}, {&(0x7f0000010660)="0000000000000000000000000000000000000000000000000c0000de2b607f2900000000f40300"/64, 0x40, 0x1fe0}, {&(0x7f00000106a0)="0000000000000000000000000000000000000000000000000c0000de2b607f2900000000f40300"/64, 0x40, 0x23e0}, {&(0x7f00000106e0)="0000000000000000000000000000000000000000000000000c0000de2b607f2900000000f40300"/64, 0x40, 0x27e0}, {&(0x7f0000010720)="0000000000000000000000000000000000000000000000000c0000de2b607f2900000000f40300"/64, 0x40, 0x2be0}, {&(0x7f0000010760)="0000000000000000000000000000000000000000000000000c0000de2b607f2900000000f40300"/64, 0x40, 0x2fe0}, {&(0x7f00000107a0)="0000000000000000000000000000000000000000000000000c0000de2b607f2900000000f40300"/64, 0x40, 0x33e0}, {&(0x7f00000107e0)="0000000000000000000000000000000000000000000000000c0000de2b607f2900000000f40300"/64, 0x40, 0x37e0}, {&(0x7f0000010820)="0000000000000000000000000000000000000000000000000c0000de2b607f2900000000f40300"/64, 0x40, 0x3be0}, {&(0x7f0000010860)="0000000000000000000000000000000000000000000000000c0000de2b607f2900000000f40300"/64, 0x40, 0x3fe0}, {&(0x7f00000108a0)="0000000000000000000000000000000000000000000000000c0000de2b607f29", 0x20, 0x43e0}, {&(0x7f00000108c0)="ff07ffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffff", 0x400, 0x4c00}, {&(0x7f0000010cc0)="00000000000000009f09c75f9f09c75f9f09c75f00"/32, 0x20, 0x8c00}, {&(0x7f0000010ce0)="00000000000000000000000000000000000000000000000000000000c99b0000ed410000000400009f09c75f9f09c75f9f09c75f00000000000003000200000000000800000000000af3010004000000000000000000000001000000040000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000005c1f0000", 0xa0, 0x8c60}, {&(0x7f0000010d80)="00000000000000000000000000000000000000000000000000000000acff0000", 0x20, 0x8d60}, {&(0x7f0000010da0)="000000000000000000000000000000000000000000000000000000000ee30000", 0x20, 0x8de0}, {&(0x7f0000010dc0)="00000000000000000000000000000000000000000000000000000000ce1e0000", 0x20, 0x8e60}, {&(0x7f0000000600)="000000000000000000000000000000000000000000000000000000007f6e000080810000003004049f09c75f9f09c75f9f09c75f000000000000010002000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000110000000000000000000000000000000000000000b746e963c3076022e7d06f777c44000000000000000000000005620000", 0xae, 0x8ee0}, {&(0x7f0000010e80)='\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00;W\x00\x00', 0x20, 0x8fe0}, {&(0x7f0000010ea0)="00000000000000000000000000000000000000000000000000000000fbaa0000", 0x20, 0x9060}, {&(0x7f0000010ec0)="000000000000000000000000000000000000000000000000000000004ada0000c0410000003000009f09c75f9f09c75f9f09c75f00000000000002001800000000000800000000000af301000400000000000000000000000c0000000500000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000070fa0000", 0xa0, 0x90e0}], 0x0, &(0x7f0000010f60)) r0 = openat(0xffffffffffffff9c, &(0x7f00000000c0)='mnt', 0x0, 0x0) ioctl$FS_IOC_ADD_ENCRYPTION_KEY(r0, 0xc0506617, &(0x7f0000000140)={@id={0x2, 0x0, @a}, 0x40, 0x0, '\x00', @a}) mkdirat(0xffffffffffffff9c, &(0x7f00000004c0)='mnt/encrypted_dir\x00', 0x1c0) r1 = openat(0xffffffffffffff9c, &(0x7f0000000500)='mnt/encrypted_dir\x00', 0x0, 0x0) ioctl$FS_IOC_SET_ENCRYPTION_POLICY(r1, 0x800c6613, &(0x7f0000000540)=@v2={0x2, @aes256, 0x0, '\x00', @a}) r2 = openat(0xffffffffffffff9c, &(0x7f0000000580)='mnt/encrypted_dir/file\x00', 0x42, 0x180) write(r2, &(0x7f00000005c0)='foo', 0x3) 05:38:49 executing program 4: perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_emit_ethernet(0x3a, &(0x7f0000000000)={@local, @remote, @void, {@ipv4={0x8906, @tcp={{0x6, 0x4, 0x0, 0x0, 0x2c, 0x0, 0x0, 0x0, 0x32, 0x0, @dev, @private=0xa010100, {[@lsrr={0x83, 0x5}]}}, {{0x0, 0x0, 0x41424344, 0x41424344, 0x0, 0x7, 0x5}}}}}}, 0x0) openat$cgroup_devices(0xffffffffffffffff, 0x0, 0x2, 0x0) close(0xffffffffffffffff) pread64(0xffffffffffffffff, 0x0, 0x0, 0x2000) 05:38:49 executing program 0: perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_emit_ethernet(0x3a, &(0x7f0000000000)={@local, @remote, @void, {@ipv4={0x500, @tcp={{0x6, 0x4, 0x0, 0x0, 0x2c, 0x0, 0x0, 0x0, 0x32, 0x0, @dev, @private=0xa010100, {[@lsrr={0x83, 0x5}]}}, {{0x0, 0x0, 0x41424344, 0x41424344, 0x0, 0x7, 0x5}}}}}}, 0x0) ioctl$BTRFS_IOC_BALANCE(0xffffffffffffffff, 0x5000940c, 0x0) close(0xffffffffffffffff) 05:38:49 executing program 1: perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_emit_ethernet(0x3a, &(0x7f0000000000)={@local, @remote, @void, {@ipv4={0x848, @tcp={{0x6, 0x4, 0x0, 0x0, 0x2c, 0x0, 0x0, 0x0, 0x32, 0x0, @dev, @private=0xa010100, {[@lsrr={0x83, 0x5}]}}, {{0x0, 0x0, 0x41424344, 0x41424344, 0x0, 0x7, 0x5}}}}}}, 0x0) 05:38:49 executing program 0: perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_emit_ethernet(0x3a, &(0x7f0000000000)={@local, @remote, @void, {@ipv4={0x802, @tcp={{0x6, 0x4, 0x0, 0x0, 0x2c, 0x0, 0x0, 0x0, 0x32, 0x0, @dev, @private=0xa010100, {[@lsrr={0x83, 0x5}]}}, {{0x0, 0x0, 0x41424344, 0x41424344, 0x0, 0x7, 0x5}}}}}}, 0x0) ioctl$BTRFS_IOC_BALANCE(0xffffffffffffffff, 0x5000940c, 0x0) close(0xffffffffffffffff) [ 2837.328999] EXT4-fs (loop7): mounted filesystem without journal. Opts: ,errors=continue [ 2837.330957] ext4 filesystem being mounted at /syzkaller-testdir997385470/syzkaller.YcPRdt/451/mnt supports timestamps until 2038 (0x7fffffff) [ 2837.342076] EXT4-fs (loop5): mounted filesystem without journal. Opts: ,errors=continue 05:38:49 executing program 4: perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_emit_ethernet(0x3a, &(0x7f0000000000)={@local, @remote, @void, {@ipv4={0x800, @tcp={{0x4, 0x4, 0x0, 0x0, 0x2c, 0x0, 0x0, 0x0, 0x32, 0x0, @dev, @private=0xa010100, {[@lsrr={0x83, 0x5}]}}, {{0x0, 0x0, 0x41424344, 0x41424344, 0x0, 0x7, 0x5}}}}}}, 0x0) openat$cgroup_devices(0xffffffffffffffff, 0x0, 0x2, 0x0) close(0xffffffffffffffff) pread64(0xffffffffffffffff, 0x0, 0x0, 0x2000) 05:38:50 executing program 7: r0 = openat(0xffffffffffffff9c, &(0x7f0000000280)='./file0\x00', 0x46e2, 0x0) execveat(r0, &(0x7f00000000c0)='./file1\x00', &(0x7f00000004c0)=[&(0x7f0000000140)='p\x00', &(0x7f00000002c0)='\x00', &(0x7f0000000300)='security.capability\x00', &(0x7f0000000340)='security.capability\x00'], &(0x7f0000000440)=[&(0x7f00000003c0)='\x00', &(0x7f0000000400)=']$-\x00'], 0x1000) fallocate(0xffffffffffffffff, 0x0, 0x0, 0x0) ftruncate(r0, 0x1000003) r1 = socket$inet6_udp(0xa, 0x2, 0x0) fcntl$dupfd(0xffffffffffffffff, 0x0, r1) r2 = openat$full(0xffffffffffffff9c, 0x0, 0x0, 0x0) dup2(0xffffffffffffffff, 0xffffffffffffffff) perf_event_open(&(0x7f0000001d80)={0x2, 0x80, 0x69, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) ioctl$FS_IOC_FSSETXATTR(r0, 0x40086602, &(0x7f0000000000)) getsockopt$inet6_IPV6_IPSEC_POLICY(r0, 0x29, 0x22, &(0x7f0000000180)={{{@in6=@empty}}, {{@in=@broadcast}, 0x0, @in=@local}}, &(0x7f0000000100)=0xdc) fsetxattr$security_capability(r0, &(0x7f0000000040), &(0x7f0000000080)=@v2={0x2000000, [{}, {0x8000000, 0x3}]}, 0x14, 0x0) stat(&(0x7f0000000500)='./file1\x00', &(0x7f0000000540)) connect$inet6(0xffffffffffffffff, &(0x7f00000005c0)={0xa, 0x4e21, 0x523, @ipv4={'\x00', '\xff\xff', @dev={0xac, 0x14, 0x14, 0xbe}}, 0x20}, 0x1c) socket$netlink(0x10, 0x3, 0x0) ioctl$KDSKBLED(r2, 0x4b65, 0x8) write$binfmt_elf32(r1, &(0x7f0000000840)=ANY=[@ANYBLOB="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"/535, @ANYRES32], 0x227) ioctl$BTRFS_IOC_SUBVOL_GETFLAGS(0xffffffffffffffff, 0x80089419, &(0x7f0000000480)) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5b, 0x1, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5, 0x0, @perf_config_ext={0x7}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) write$binfmt_elf64(r0, &(0x7f00000001c0)=ANY=[], 0xfdef) 05:38:50 executing program 0: perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_emit_ethernet(0x3a, &(0x7f0000000000)={@local, @remote, @void, {@ipv4={0x803, @tcp={{0x6, 0x4, 0x0, 0x0, 0x2c, 0x0, 0x0, 0x0, 0x32, 0x0, @dev, @private=0xa010100, {[@lsrr={0x83, 0x5}]}}, {{0x0, 0x0, 0x41424344, 0x41424344, 0x0, 0x7, 0x5}}}}}}, 0x0) ioctl$BTRFS_IOC_BALANCE(0xffffffffffffffff, 0x5000940c, 0x0) close(0xffffffffffffffff) 05:38:50 executing program 3: r0 = perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x0, 0x3}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) pread64(0xffffffffffffffff, 0x0, 0x7ffffffff000, 0xf0ff1f00000000) bind$inet6(0xffffffffffffffff, &(0x7f0000000040)={0xa, 0x4e23, 0x0, @remote, 0xffff}, 0x1c) r1 = socket$netlink(0x10, 0x3, 0x0) sendmsg$nl_generic(0xffffffffffffffff, 0x0, 0x41) setsockopt$netlink_NETLINK_BROADCAST_ERROR(r1, 0x10e, 0x4, &(0x7f00000000c0)=0x1000, 0x4) sendmsg$nl_generic(r1, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000100)=ANY=[@ANYBLOB="28000000100001000000000000000000000000000500000024386a562b500000000c00008008000d00ac141400"], 0x28}}, 0x0) chdir(&(0x7f00000001c0)='./file0\x00') r2 = syz_open_dev$mouse(&(0x7f0000000400), 0x7fffffff, 0x2d0401) sendmsg$NL80211_CMD_ADD_NAN_FUNCTION(r2, &(0x7f0000000500)={&(0x7f0000000440)={0x10, 0x0, 0x0, 0x10}, 0xc, &(0x7f00000004c0)={&(0x7f00000002c0)={0x20, 0x0, 0x100, 0x70bd2b, 0x25dfdbfd, {{}, {@void, @val={0xc, 0x99, {0x3, 0x1b}}}}}, 0x20}, 0x1, 0x0, 0x0, 0x95}, 0x40000) ioctl$FICLONE(r2, 0x40049409, r0) r3 = open$dir(&(0x7f0000000000)='.\x00', 0x0, 0x0) perf_event_open(&(0x7f0000001d80)={0x6, 0x80, 0x0, 0x0, 0x0, 0x0, 0x4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffd, 0x0, @perf_bp={0x0, 0xffffffff81000000}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffd}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r4 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000040)='/proc/crypto\x00', 0x0, 0x0) r5 = openat2(r3, &(0x7f0000000180)='./file0\x00', &(0x7f0000000200)={0x800, 0x1b9}, 0x18) setsockopt$SO_TIMESTAMPING(r5, 0x1, 0x25, &(0x7f0000000240)=0x7100, 0x4) pread64(r4, &(0x7f00000010c0)=""/4088, 0xff8, 0x0) writev(0xffffffffffffffff, &(0x7f00000003c0)=[{&(0x7f0000000000)="0000abe02400030021206cda3b5e5672b89aeddb2a535fbd0706006dff0043a9d7cceb232fb81bf74e", 0x29}, {&(0x7f0000000680)="7fd41c04550300020000000000000000010046e92ed2616f72657d044129471d4fd47924fd0900e09e0068deec02", 0x2e}], 0x2) 05:38:50 executing program 1: perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_emit_ethernet(0x3a, &(0x7f0000000000)={@local, @remote, @void, {@ipv4={0x856, @tcp={{0x6, 0x4, 0x0, 0x0, 0x2c, 0x0, 0x0, 0x0, 0x32, 0x0, @dev, @private=0xa010100, {[@lsrr={0x83, 0x5}]}}, {{0x0, 0x0, 0x41424344, 0x41424344, 0x0, 0x7, 0x5}}}}}}, 0x0) 05:38:50 executing program 4: perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_emit_ethernet(0x3a, &(0x7f0000000000)={@local, @remote, @void, {@ipv4={0x800, @tcp={{0x5, 0x4, 0x0, 0x0, 0x2c, 0x0, 0x0, 0x0, 0x32, 0x0, @dev, @private=0xa010100, {[@lsrr={0x83, 0x5}]}}, {{0x0, 0x0, 0x41424344, 0x41424344, 0x0, 0x7, 0x5}}}}}}, 0x0) openat$cgroup_devices(0xffffffffffffffff, 0x0, 0x2, 0x0) close(0xffffffffffffffff) pread64(0xffffffffffffffff, 0x0, 0x0, 0x2000) 05:38:50 executing program 5: syz_emit_ethernet(0xf2, &(0x7f0000000040)={@random="0df4b71197dc", @broadcast, @val={@void}, {@ipv6={0x86dd, @generic={0x0, 0x6, "cd8964", 0xb8, 0x0, 0x0, @local, @private0, {[@dstopts={0x0, 0x16, '\x00', [@generic={0x0, 0x9c, "a7d658ec6c1dcb93ff30c2e3da720e3f50f6da1b93eea95cc69f99015ba6928dd353be91e210fc9b51bec4063452f9d78876a65dc32cb56d11577409d5a76353e92d18d51131b9f3109908dcd3172121f464b115a28545b561667059bbfa6a8d5ce7e9153ec4bf4be64dfa00510940c049a2726ff85d1e574401475cbc4095acf62c972acd685bea1fd2d85f00b0e1fb16f5484b1489b8ded153e28a"}, @hao={0xc9, 0x10, @empty}]}]}}}}}, 0x0) write$tun(0xffffffffffffffff, &(0x7f0000001080)={@val={0x0, 0x8848}, @val={0x3, 0x0, 0x0, 0x80, 0xc00, 0x7fff}, @mpls={[{0x2, 0x0, 0x1}, {0x81}], @llc={@snap={0xaa, 0xaa, 'E', 'Ea.', 0x19, "ef72f2f8d9143140e113ae053b0ffc370681bfda9d0dd0826d6c15f25975e8d6d1508a27388231c427894890ce6e8bce5af07290f5527cbe39ae3f594b363e8a0b13fdb76b34be148274be1b3669d573dcf75c0a1f173c7b6198e947c4ca8dd2a9457e600ace63378c63346c1179812cc7318ec548a9c4c274321291"}}}}, 0x9a) r0 = openat$procfs(0xffffffffffffff9c, &(0x7f00000014c0)='/proc/bus/input/devices\x00', 0x0, 0x0) pread64(r0, &(0x7f0000000040)=""/4126, 0x101e, 0x2000) write$tun(r0, &(0x7f0000000140)={@void, @val={0x0, 0x1, 0x6, 0x401, 0x401, 0xc17}, @ipv4=@gre={{0xa, 0x4, 0x3, 0x2, 0x302, 0x66, 0x0, 0x70, 0x2f, 0x0, @broadcast, @loopback, {[@generic={0x94, 0x11, "5972ba1cb7a1caeb883332fa575731"}]}}, {{0x0, 0x0, 0x1, 0x1, 0x0, 0x1, 0x0, 0x1, 0x880b, 0xca, 0x1, [0x8, 0x1], "69502309d4a077d8b0c4ec54ebd5fccfbad296ee912d9378019b91b0a2b11c4e81e52918b3f623411d71af6c4a4786ec9d57e14a69609c06003703dd269ecd55419102cea657d022382282be99da08c5ecb7d79db43315dcb8b463149553464646a189ad37b25fb24b646a35f403e9c07ce06b0fe0b87b7b563588b362361ad6de6d12759a6ca97af3424ca7bb02ce656a952e8a71d6f393c88a124924a6011de88d04734f8dafb947289a7e6404a7b45fc975cfe08a6727442a72dbdceff255ec2037af01ff640ec6a6"}, {0x1, 0x0, 0x1, 0x1, 0x0, 0x0, 0x800, [0x7]}, {0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x86dd, [0x81, 0x7, 0x0], "408f0a90b74916cb201e9fdc6826169039e4042fdc71aef18bbadfb2da8e2a1e638de35aae6257a3a572223029ba2d455ef9f919a8365c699bf9a1f2bab80bdad7abc6e6181fdd472306da98feb70a5d717d87e905407aa340f8fd69ee825a5bbf703bea3e1430aa42f676e2742647e4bd84dd311c1b15a58d5345ec52602dba4804519c8a1bc153c4a1414b38476aa76f85a61b286fce5ab7da32907aed4b21c81a9526f87e38da054f14c7f9a501f0b9de24745a40346a5d9841e8ce9e95d3737a713fb24dffb72147545c30557cc140bd4aa9783f879281602b57a90cd8eeef5c2547dae2252fe3c8dcffc4d9e60d2bd0"}, {0x8, 0x88be, 0x3, {{0x6, 0x1, 0xe1, 0x0, 0x1, 0x2, 0x7, 0xf2}, 0x1, {0x5}}}, {0x8, 0x22eb, 0x0, {{0x5, 0x2, 0x4, 0x0, 0x0, 0x0, 0x7, 0x5}, 0x2, {0x1, 0x9, 0x3, 0x8, 0x0, 0x0, 0x1, 0x1}}}, {0x8, 0x6558, 0x1, "0cc9cf70b79cbfaa744134a2a87dd58422f0cba1794e166d0974c5c6381df615252bd9135513398626298e074cfe95326cefe208c82a0e3a54360024c6fd0878e7c910e4a653049299bc34f751abc12eb7339c9e89e5e3b7b3db169cb7bbedd9f33cfb536da451c8dabd55c6bb756553fc22779066110dfd8c0f49b9413f54bd9d27eca43e618897a4a6fdc9149931257c7630a253c8bc204d84babe4ddba2ebb14d2982bb599fd6ec847de7920ce2ae5df0c95f56e0477fd02c87949c266c0dd3514730da1dd8b6a474455adbd1"}}}}, 0x30c) [ 2837.522689] netlink: 8 bytes leftover after parsing attributes in process `syz-executor.3'. [ 2837.573007] FAULT_INJECTION: forcing a failure. [ 2837.573007] name failslab, interval 1, probability 0, space 0, times 0 [ 2837.574627] CPU: 1 PID: 12562 Comm: syz-executor.6 Not tainted 5.10.204 #1 [ 2837.575536] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 2837.576609] Call Trace: [ 2837.576953] dump_stack+0x107/0x167 [ 2837.577449] should_fail.cold+0x5/0xa [ 2837.577947] ? ___slab_alloc+0x155/0x700 [ 2837.578474] ? create_object.isra.0+0x3a/0xa20 [ 2837.579069] should_failslab+0x5/0x20 [ 2837.579560] kmem_cache_alloc+0x5b/0x310 [ 2837.580088] create_object.isra.0+0x3a/0xa20 [ 2837.580655] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 2837.581328] kmem_cache_alloc_node+0x169/0x330 [ 2837.581804] __alloc_skb+0x6d/0x5b0 [ 2837.582201] __tcp_send_ack.part.0+0x67/0x650 [ 2837.582650] tcp_send_ack+0x7d/0xa0 [ 2837.583013] __tcp_ack_snd_check+0x156/0x9f0 [ 2837.583454] tcp_rcv_established+0x955/0x1e30 [ 2837.583905] ? tcp_check_space+0x6c0/0x6c0 [ 2837.584342] tcp_v6_do_rcv+0x7b3/0x1520 [ 2837.584740] __release_sock+0x139/0x3b0 [ 2837.585160] release_sock+0x54/0x1b0 [ 2837.585531] sk_wait_data+0x1a7/0x4d0 [ 2837.585943] ? sock_set_mark+0x130/0x130 [ 2837.586360] ? prepare_to_wait_exclusive+0x2a0/0x2a0 [ 2837.586909] ? tcp_mstamp_refresh+0x12/0xa0 [ 2837.587341] ? sock_rfree+0x107/0x170 [ 2837.587723] ? __sanitizer_cov_trace_switch+0x45/0x80 [ 2837.588244] tcp_recvmsg+0x17b2/0x2930 [ 2837.588646] ? tcp_splice_read+0x8c0/0x8c0 [ 2837.589126] ? sock_has_perm+0x1ea/0x280 [ 2837.589541] ? perf_trace_lock+0xac/0x490 [ 2837.589960] ? tcp_splice_read+0x8c0/0x8c0 [ 2837.590403] inet6_recvmsg+0x13b/0x6e0 [ 2837.590815] ? inet6_bind+0x120/0x120 [ 2837.591252] ? security_socket_recvmsg+0x95/0xc0 [ 2837.591742] ? inet6_bind+0x120/0x120 [ 2837.592142] sock_recvmsg+0xff/0x180 [ 2837.592530] __sys_recvfrom+0x1be/0x2f0 [ 2837.592947] ? __ia32_sys_send+0x100/0x100 [ 2837.593397] ? lock_downgrade+0x6d0/0x6d0 [ 2837.593850] ? wait_for_completion_io+0x270/0x270 [ 2837.594360] ? rcu_read_lock_any_held+0x75/0xa0 [ 2837.594846] ? vfs_write+0x354/0xa70 [ 2837.595237] ? fput_many+0x2f/0x1a0 [ 2837.595614] ? ksys_write+0x1a9/0x260 [ 2837.596009] ? __ia32_sys_read+0xb0/0xb0 [ 2837.596443] __x64_sys_recvfrom+0xdd/0x1b0 [ 2837.596886] ? syscall_enter_from_user_mode+0x1d/0x50 [ 2837.597452] do_syscall_64+0x33/0x40 [ 2837.597842] entry_SYSCALL_64_after_hwframe+0x62/0xc7 [ 2837.598382] RIP: 0033:0x7f7d1addbb19 [ 2837.598771] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 2837.600670] RSP: 002b:00007f7d18330188 EFLAGS: 00000246 ORIG_RAX: 000000000000002d [ 2837.601544] RAX: ffffffffffffffda RBX: 00007f7d1aeef020 RCX: 00007f7d1addbb19 [ 2837.602284] RDX: 0000000000001000 RSI: 0000000020001e00 RDI: 0000000000000003 [ 2837.603075] RBP: 00007f7d183301d0 R08: 0000000000000000 R09: 0000000000000000 [ 2837.603838] R10: 000000000000cd08 R11: 0000000000000246 R12: 0000000000000002 [ 2837.604586] R13: 00007ffe0ac926cf R14: 00007f7d18330300 R15: 0000000000022000 05:39:08 executing program 6: r0 = socket$inet6_tcp(0xa, 0x1, 0x0) setsockopt$inet6_tcp_int(r0, 0x6, 0x2, &(0x7f0000000080)=0x90, 0x4) bind$inet6(r0, &(0x7f00000000c0)={0xa, 0x4e20, 0x0, @loopback}, 0x1c) connect$inet6(r0, &(0x7f0000000000)={0xa, 0x4e20, 0x0, @empty}, 0x1c) setsockopt$sock_int(r0, 0x1, 0x8, &(0x7f0000002ec0), 0x4) sendmsg$inet6(r0, &(0x7f00000006c0)={0x0, 0x0, &(0x7f0000000540)=[{&(0x7f00000001c0)="cf", 0xfffffdef}], 0x1}, 0x10044001) setsockopt$SO_TIMESTAMP(r0, 0x1, 0x40, &(0x7f0000000280)=0x380, 0x4) recvfrom$inet6(r0, &(0x7f0000001e00)=""/4096, 0x1000, 0xcd08, 0x0, 0x0) (fail_nth: 15) 05:39:08 executing program 3: r0 = perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x0, 0x3}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) pread64(0xffffffffffffffff, 0x0, 0x7ffffffff000, 0xf0ff1f00000000) bind$inet6(0xffffffffffffffff, &(0x7f0000000040)={0xa, 0x4e23, 0x0, @remote, 0xffff}, 0x1c) r1 = socket$netlink(0x10, 0x3, 0x0) sendmsg$nl_generic(0xffffffffffffffff, 0x0, 0x41) setsockopt$netlink_NETLINK_BROADCAST_ERROR(r1, 0x10e, 0x4, &(0x7f00000000c0)=0x1000, 0x4) sendmsg$nl_generic(r1, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000100)=ANY=[@ANYBLOB="28000000100001000000000000000000000000000500000024386a562b500000000c00008008000d00ac141400"], 0x28}}, 0x0) chdir(&(0x7f00000001c0)='./file0\x00') r2 = syz_open_dev$mouse(&(0x7f0000000400), 0x7fffffff, 0x2d0401) sendmsg$NL80211_CMD_ADD_NAN_FUNCTION(r2, &(0x7f0000000500)={&(0x7f0000000440)={0x10, 0x0, 0x0, 0x10}, 0xc, &(0x7f00000004c0)={&(0x7f00000002c0)={0x20, 0x0, 0x100, 0x70bd2b, 0x25dfdbfd, {{}, {@void, @val={0xc, 0x99, {0x3, 0x1b}}}}}, 0x20}, 0x1, 0x0, 0x0, 0x95}, 0x40000) ioctl$FICLONE(r2, 0x40049409, r0) r3 = open$dir(&(0x7f0000000000)='.\x00', 0x0, 0x0) perf_event_open(&(0x7f0000001d80)={0x6, 0x80, 0x0, 0x0, 0x0, 0x0, 0x4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffd, 0x0, @perf_bp={0x0, 0xffffffff81000000}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffd}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r4 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000040)='/proc/crypto\x00', 0x0, 0x0) r5 = openat2(r3, &(0x7f0000000180)='./file0\x00', &(0x7f0000000200)={0x800, 0x1b9}, 0x18) setsockopt$SO_TIMESTAMPING(r5, 0x1, 0x25, &(0x7f0000000240)=0x7100, 0x4) pread64(r4, &(0x7f00000010c0)=""/4088, 0xff8, 0x0) writev(0xffffffffffffffff, &(0x7f00000003c0)=[{&(0x7f0000000000)="0000abe02400030021206cda3b5e5672b89aeddb2a535fbd0706006dff0043a9d7cceb232fb81bf74e", 0x29}, {&(0x7f0000000680)="7fd41c04550300020000000000000000010046e92ed2616f72657d044129471d4fd47924fd0900e09e0068deec02", 0x2e}], 0x2) 05:39:08 executing program 1: perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_emit_ethernet(0x3a, &(0x7f0000000000)={@local, @remote, @void, {@ipv4={0x860, @tcp={{0x6, 0x4, 0x0, 0x0, 0x2c, 0x0, 0x0, 0x0, 0x32, 0x0, @dev, @private=0xa010100, {[@lsrr={0x83, 0x5}]}}, {{0x0, 0x0, 0x41424344, 0x41424344, 0x0, 0x7, 0x5}}}}}}, 0x0) 05:39:08 executing program 2: preadv2(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x2) openat(0xffffffffffffff9c, 0x0, 0x0, 0x0) r0 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x105142, 0x62) r1 = openat(0xffffffffffffff9c, 0x0, 0x0, 0x0) fallocate(r1, 0x0, 0x0, 0x8800000) lseek(0xffffffffffffffff, 0x0, 0x0) openat(0xffffffffffffffff, 0x0, 0x0, 0x20) ioctl$FS_IOC_RESVSP(0xffffffffffffffff, 0x40305828, 0x0) faccessat2(0xffffffffffffffff, 0x0, 0x0, 0x0) openat(0xffffffffffffffff, 0x0, 0x1a340, 0x100) ioctl$LOOP_CTL_REMOVE(0xffffffffffffffff, 0x4c81, 0x0) r2 = fsmount(0xffffffffffffffff, 0x0, 0x0) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r3 = openat(r2, &(0x7f0000000000)='/proc/self/exe\x00', 0x4840, 0x2d) sendfile(r0, r3, 0x0, 0x100000600) 05:39:08 executing program 4: perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_emit_ethernet(0x3a, &(0x7f0000000000)={@local, @remote, @void, {@ipv4={0x800, @tcp={{0x6, 0x2, 0x0, 0x0, 0x2c, 0x0, 0x0, 0x0, 0x32, 0x0, @dev, @private=0xa010100, {[@lsrr={0x83, 0x5}]}}, {{0x0, 0x0, 0x41424344, 0x41424344, 0x0, 0x7, 0x5}}}}}}, 0x0) openat$cgroup_devices(0xffffffffffffffff, 0x0, 0x2, 0x0) close(0xffffffffffffffff) pread64(0xffffffffffffffff, 0x0, 0x0, 0x2000) 05:39:08 executing program 7: r0 = dup2(0xffffffffffffffff, 0xffffffffffffffff) ioctl$F2FS_IOC_MOVE_RANGE(0xffffffffffffffff, 0xc020f509, &(0x7f0000000280)={0xffffffffffffffff}) statx(0xffffffffffffffff, &(0x7f0000000180)='./file1\x00', 0x100, 0x8, 0x0) write$selinux_attr(r1, &(0x7f00000000c0)='system_u:object_r:unconfined_exec_t:s0\x00', 0x27) mknodat$loop(0xffffffffffffff9c, &(0x7f0000000040)='./file1\x00', 0x0, 0x0) lstat(&(0x7f00000002c0)='./file1\x00', 0x0) ioctl$SNDRV_TIMER_IOCTL_STATUS64(r0, 0x80605414, &(0x7f0000000100)) ioctl$AUTOFS_DEV_IOCTL_CATATONIC(0xffffffffffffffff, 0xc0189379, 0x0) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x1000000}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r2 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$nl_generic(r2, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000480)={&(0x7f00000001c0)=ANY=[@ANYBLOB="1c3e02c297b04fe3313ad0c232b8882fdb460d001d00210c000000f0ffffff0900000000080000000000000053717253d51f8558f3666ca5f3d5eb4d8f227844acc73b32076938f82cab5b4a42778d41a35ab6ecd498251ce2950f3dbc72c77021067f675f456cda86948025723b103c98fd8e0b135391d19c6f2c7297219d9e11ffe4a7d8aec897f48852941217791de1ea11ac4a079cefd7f875ac49c7d6c8a270fb1afd6086b253"], 0x1c}}, 0x0) 05:39:08 executing program 5: getresuid(&(0x7f0000000140), &(0x7f0000000180), &(0x7f00000001c0)=0x0) stat(&(0x7f0000000280)='./file0\x00', &(0x7f0000000500)={0x0, 0x0, 0x0, 0x0, 0x0}) r2 = geteuid() r3 = socket$unix(0x1, 0x5, 0x0) getresgid(&(0x7f0000000340)=0x0, &(0x7f0000000300), &(0x7f0000000380)) fchown(r3, 0xffffffffffffffff, r4) ioctl$AUTOFS_DEV_IOCTL_REQUESTER(0xffffffffffffffff, 0xc018937b, &(0x7f0000000300)={{0x1, 0x1, 0x18, 0xffffffffffffffff, {0xee01, 0xee00}}, './file0\x00'}) r7 = socket$unix(0x1, 0x5, 0x0) getresgid(&(0x7f0000000340)=0x0, &(0x7f0000000300), &(0x7f0000000380)) getsockopt$inet6_IPV6_IPSEC_POLICY(r5, 0x29, 0x22, &(0x7f00000003c0)={{{@in6=@initdev, @in=@private}}, {{@in=@remote}, 0x0, @in=@private}}, &(0x7f00000004c0)=0xe8) fchown(r7, 0xffffffffffffffff, r8) setxattr$system_posix_acl(&(0x7f0000000040)='./file0\x00', &(0x7f00000000c0)='system.posix_acl_access\x00', &(0x7f0000000340)={{}, {0x1, 0x2}, [{0x2, 0x2, r0}, {0x2, 0x4, r1}, {0x2, 0x2, 0xffffffffffffffff}, {0x2, 0x0, r2}], {0x4, 0x5}, [{0x8, 0x2, r4}, {0x8, 0x4, r6}, {0x8, 0x6, 0xee00}, {0x8, 0x2, r8}], {}, {0x20, 0x3}}, 0x64, 0x3) syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0x2, &(0x7f0000000200)=[{&(0x7f0000010000)="200000004000000003000000290000000f000000000000000200000002000000008000000080000020000000e0f4655fe0f4655f0100ffff53ef", 0x3a, 0x400}, {0x0}], 0x0, &(0x7f0000000080)={[{@journal_dev}]}) 05:39:08 executing program 0: perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_emit_ethernet(0x3a, &(0x7f0000000000)={@local, @remote, @void, {@ipv4={0x804, @tcp={{0x6, 0x4, 0x0, 0x0, 0x2c, 0x0, 0x0, 0x0, 0x32, 0x0, @dev, @private=0xa010100, {[@lsrr={0x83, 0x5}]}}, {{0x0, 0x0, 0x41424344, 0x41424344, 0x0, 0x7, 0x5}}}}}}, 0x0) ioctl$BTRFS_IOC_BALANCE(0xffffffffffffffff, 0x5000940c, 0x0) close(0xffffffffffffffff) 05:39:08 executing program 4: perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_emit_ethernet(0x3a, &(0x7f0000000000)={@local, @remote, @void, {@ipv4={0x800, @tcp={{0x6, 0x3, 0x0, 0x0, 0x2c, 0x0, 0x0, 0x0, 0x32, 0x0, @dev, @private=0xa010100, {[@lsrr={0x83, 0x5}]}}, {{0x0, 0x0, 0x41424344, 0x41424344, 0x0, 0x7, 0x5}}}}}}, 0x0) openat$cgroup_devices(0xffffffffffffffff, 0x0, 0x2, 0x0) close(0xffffffffffffffff) pread64(0xffffffffffffffff, 0x0, 0x0, 0x2000) [ 2855.586453] netlink: 8 bytes leftover after parsing attributes in process `syz-executor.3'. 05:39:08 executing program 0: perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_emit_ethernet(0x3a, &(0x7f0000000000)={@local, @remote, @void, {@ipv4={0x806, @tcp={{0x6, 0x4, 0x0, 0x0, 0x2c, 0x0, 0x0, 0x0, 0x32, 0x0, @dev, @private=0xa010100, {[@lsrr={0x83, 0x5}]}}, {{0x0, 0x0, 0x41424344, 0x41424344, 0x0, 0x7, 0x5}}}}}}, 0x0) ioctl$BTRFS_IOC_BALANCE(0xffffffffffffffff, 0x5000940c, 0x0) close(0xffffffffffffffff) [ 2855.621420] EXT4-fs (loop5): Can't read superblock on 2nd try [ 2855.656586] EXT4-fs (loop5): Can't read superblock on 2nd try 05:39:08 executing program 5: perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f0000000040), 0x3}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r0 = syz_mount_image$tmpfs(&(0x7f0000000000), &(0x7f0000000080)='./file0\x00', 0x0, 0x0, 0x0, 0x0, &(0x7f0000000600)=ANY=[]) mknodat$loop(r0, &(0x7f0000000100)='./file0\x00', 0x0, 0x1) r1 = openat$dir(0xffffffffffffff9c, &(0x7f0000000140)='./file2\x00', 0x0, 0x0) linkat(r1, &(0x7f00000006c0)='./file0\x00', r1, &(0x7f0000000180)='./file2\x00', 0x1000) r2 = socket$packet(0x11, 0x2, 0x300) dup2(0xffffffffffffffff, r2) 05:39:08 executing program 1: perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_emit_ethernet(0x3a, &(0x7f0000000000)={@local, @remote, @void, {@ipv4={0x8e0, @tcp={{0x6, 0x4, 0x0, 0x0, 0x2c, 0x0, 0x0, 0x0, 0x32, 0x0, @dev, @private=0xa010100, {[@lsrr={0x83, 0x5}]}}, {{0x0, 0x0, 0x41424344, 0x41424344, 0x0, 0x7, 0x5}}}}}}, 0x0) 05:39:08 executing program 7: perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = socket$netlink(0x10, 0x3, 0x0) sendmsg$nl_generic(r0, &(0x7f0000000100)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000000)=ANY=[@ANYBLOB="1400000019000156a900ff010000000000000000"], 0x14}}, 0x0) r1 = dup(r0) getsockopt$SO_TIMESTAMPING(0xffffffffffffffff, 0x1, 0x0, 0x0, 0x0) connect$netlink(0xffffffffffffffff, &(0x7f0000000140)=@unspec, 0xc) pread64(0xffffffffffffffff, 0x0, 0x0, 0x0) ioctl$AUTOFS_DEV_IOCTL_PROTOVER(0xffffffffffffffff, 0xc0189372, 0x0) getsockopt$IP_VS_SO_GET_INFO(0xffffffffffffffff, 0x0, 0x481, &(0x7f0000000180), 0x0) perf_event_open(0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) recvmmsg(r1, &(0x7f0000007940)=[{{0x0, 0x0, 0x0}}], 0x500, 0x20000022, 0x0) getpgid(0x0) 05:39:08 executing program 4: perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_emit_ethernet(0x3a, &(0x7f0000000000)={@local, @remote, @void, {@ipv4={0x800, @tcp={{0x6, 0x5, 0x0, 0x0, 0x2c, 0x0, 0x0, 0x0, 0x32, 0x0, @dev, @private=0xa010100, {[@lsrr={0x83, 0x5}]}}, {{0x0, 0x0, 0x41424344, 0x41424344, 0x0, 0x7, 0x5}}}}}}, 0x0) openat$cgroup_devices(0xffffffffffffffff, 0x0, 0x2, 0x0) close(0xffffffffffffffff) pread64(0xffffffffffffffff, 0x0, 0x0, 0x2000) 05:39:08 executing program 0: perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_emit_ethernet(0x3a, &(0x7f0000000000)={@local, @remote, @void, {@ipv4={0x808, @tcp={{0x6, 0x4, 0x0, 0x0, 0x2c, 0x0, 0x0, 0x0, 0x32, 0x0, @dev, @private=0xa010100, {[@lsrr={0x83, 0x5}]}}, {{0x0, 0x0, 0x41424344, 0x41424344, 0x0, 0x7, 0x5}}}}}}, 0x0) ioctl$BTRFS_IOC_BALANCE(0xffffffffffffffff, 0x5000940c, 0x0) close(0xffffffffffffffff) [ 2855.828744] FAULT_INJECTION: forcing a failure. [ 2855.828744] name failslab, interval 1, probability 0, space 0, times 0 [ 2855.831331] CPU: 0 PID: 12614 Comm: syz-executor.6 Not tainted 5.10.204 #1 [ 2855.832796] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 2855.834504] Call Trace: [ 2855.835056] dump_stack+0x107/0x167 [ 2855.835812] should_fail.cold+0x5/0xa [ 2855.836614] should_failslab+0x5/0x20 [ 2855.837408] __kmalloc_node_track_caller+0x74/0x3b0 [ 2855.838417] ? __tcp_send_ack.part.0+0x67/0x650 [ 2855.839371] __alloc_skb+0xb1/0x5b0 [ 2855.840126] __tcp_send_ack.part.0+0x67/0x650 [ 2855.841039] tcp_send_ack+0x7d/0xa0 [ 2855.841796] __tcp_ack_snd_check+0x156/0x9f0 [ 2855.842695] tcp_rcv_established+0x955/0x1e30 [ 2855.843614] ? tcp_check_space+0x6c0/0x6c0 [ 2855.844489] tcp_v6_do_rcv+0x7b3/0x1520 [ 2855.845309] __release_sock+0x139/0x3b0 [ 2855.846172] release_sock+0x54/0x1b0 [ 2855.846928] sk_wait_data+0x1a7/0x4d0 [ 2855.847706] ? sock_set_mark+0x130/0x130 [ 2855.848541] ? prepare_to_wait_exclusive+0x2a0/0x2a0 [ 2855.849598] ? tcp_mstamp_refresh+0x12/0xa0 [ 2855.850477] ? sock_rfree+0x107/0x170 [ 2855.851253] ? __sanitizer_cov_trace_switch+0x45/0x80 [ 2855.852304] tcp_recvmsg+0x17b2/0x2930 [ 2855.853121] ? tcp_splice_read+0x8c0/0x8c0 [ 2855.854000] ? sock_has_perm+0x1ea/0x280 [ 2855.854837] ? perf_trace_lock+0xac/0x490 [ 2855.855687] ? tcp_splice_read+0x8c0/0x8c0 [ 2855.856546] inet6_recvmsg+0x13b/0x6e0 [ 2855.857357] ? inet6_bind+0x120/0x120 [ 2855.858136] ? security_socket_recvmsg+0x95/0xc0 [ 2855.859096] ? inet6_bind+0x120/0x120 [ 2855.859871] sock_recvmsg+0xff/0x180 [ 2855.860634] __sys_recvfrom+0x1be/0x2f0 [ 2855.861453] ? __ia32_sys_send+0x100/0x100 [ 2855.862315] ? lock_downgrade+0x6d0/0x6d0 [ 2855.863190] ? wait_for_completion_io+0x270/0x270 [ 2855.864176] ? rcu_read_lock_any_held+0x75/0xa0 [ 2855.865124] ? vfs_write+0x354/0xa70 [ 2855.865913] ? fput_many+0x2f/0x1a0 [ 2855.866656] ? ksys_write+0x1a9/0x260 [ 2855.867417] ? __ia32_sys_read+0xb0/0xb0 [ 2855.868266] __x64_sys_recvfrom+0xdd/0x1b0 [ 2855.869131] ? syscall_enter_from_user_mode+0x1d/0x50 [ 2855.870200] do_syscall_64+0x33/0x40 [ 2855.870957] entry_SYSCALL_64_after_hwframe+0x62/0xc7 [ 2855.872007] RIP: 0033:0x7f7d1addbb19 [ 2855.872767] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 2855.876556] RSP: 002b:00007f7d18330188 EFLAGS: 00000246 ORIG_RAX: 000000000000002d [ 2855.878114] RAX: ffffffffffffffda RBX: 00007f7d1aeef020 RCX: 00007f7d1addbb19 [ 2855.879557] RDX: 0000000000001000 RSI: 0000000020001e00 RDI: 0000000000000003 [ 2855.881027] RBP: 00007f7d183301d0 R08: 0000000000000000 R09: 0000000000000000 [ 2855.882488] R10: 000000000000cd08 R11: 0000000000000246 R12: 0000000000000002 [ 2855.883941] R13: 00007ffe0ac926cf R14: 00007f7d18330300 R15: 0000000000022000 05:39:23 executing program 6: r0 = socket$inet6_tcp(0xa, 0x1, 0x0) setsockopt$inet6_tcp_int(r0, 0x6, 0x2, &(0x7f0000000080)=0x90, 0x4) bind$inet6(r0, &(0x7f00000000c0)={0xa, 0x4e20, 0x0, @loopback}, 0x1c) connect$inet6(r0, &(0x7f0000000000)={0xa, 0x4e20, 0x0, @empty}, 0x1c) setsockopt$sock_int(r0, 0x1, 0x8, &(0x7f0000002ec0), 0x4) sendmsg$inet6(r0, &(0x7f00000006c0)={0x0, 0x0, &(0x7f0000000540)=[{&(0x7f00000001c0)="cf", 0xfffffdef}], 0x1}, 0x10044001) setsockopt$SO_TIMESTAMP(r0, 0x1, 0x40, &(0x7f0000000280)=0x380, 0x4) recvfrom$inet6(r0, &(0x7f0000001e00)=""/4096, 0x1000, 0xcd08, 0x0, 0x0) (fail_nth: 16) 05:39:23 executing program 2: preadv2(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x2) openat(0xffffffffffffff9c, 0x0, 0x0, 0x0) r0 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x105142, 0x62) r1 = openat(0xffffffffffffff9c, 0x0, 0x0, 0x0) fallocate(r1, 0x0, 0x0, 0x8800000) lseek(0xffffffffffffffff, 0x0, 0x0) openat(0xffffffffffffffff, 0x0, 0x0, 0x20) ioctl$FS_IOC_RESVSP(0xffffffffffffffff, 0x40305828, 0x0) faccessat2(0xffffffffffffffff, 0x0, 0x0, 0x0) openat(0xffffffffffffffff, 0x0, 0x1a340, 0x100) ioctl$LOOP_CTL_REMOVE(0xffffffffffffffff, 0x4c81, 0x0) r2 = fsmount(0xffffffffffffffff, 0x0, 0x0) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r3 = openat(r2, &(0x7f0000000000)='/proc/self/exe\x00', 0x4840, 0x2d) sendfile(r0, r3, 0x0, 0x100000700) 05:39:23 executing program 1: perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_emit_ethernet(0x3a, &(0x7f0000000000)={@local, @remote, @void, {@ipv4={0x4305, @tcp={{0x6, 0x4, 0x0, 0x0, 0x2c, 0x0, 0x0, 0x0, 0x32, 0x0, @dev, @private=0xa010100, {[@lsrr={0x83, 0x5}]}}, {{0x0, 0x0, 0x41424344, 0x41424344, 0x0, 0x7, 0x5}}}}}}, 0x0) 05:39:23 executing program 3: r0 = perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x0, 0x3}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) pread64(0xffffffffffffffff, 0x0, 0x7ffffffff000, 0xf0ff1f00000000) bind$inet6(0xffffffffffffffff, &(0x7f0000000040)={0xa, 0x4e23, 0x0, @remote, 0xffff}, 0x1c) r1 = socket$netlink(0x10, 0x3, 0x0) sendmsg$nl_generic(0xffffffffffffffff, 0x0, 0x41) setsockopt$netlink_NETLINK_BROADCAST_ERROR(r1, 0x10e, 0x4, &(0x7f00000000c0)=0x1000, 0x4) sendmsg$nl_generic(r1, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000100)=ANY=[@ANYBLOB="28000000100001000000000000000000000000000500000024386a562b500000000c00008008000d00ac141400"], 0x28}}, 0x0) chdir(&(0x7f00000001c0)='./file0\x00') r2 = syz_open_dev$mouse(&(0x7f0000000400), 0x7fffffff, 0x2d0401) sendmsg$NL80211_CMD_ADD_NAN_FUNCTION(r2, &(0x7f0000000500)={&(0x7f0000000440)={0x10, 0x0, 0x0, 0x10}, 0xc, &(0x7f00000004c0)={&(0x7f00000002c0)={0x20, 0x0, 0x100, 0x70bd2b, 0x25dfdbfd, {{}, {@void, @val={0xc, 0x99, {0x3, 0x1b}}}}}, 0x20}, 0x1, 0x0, 0x0, 0x95}, 0x40000) ioctl$FICLONE(r2, 0x40049409, r0) r3 = open$dir(&(0x7f0000000000)='.\x00', 0x0, 0x0) perf_event_open(&(0x7f0000001d80)={0x6, 0x80, 0x0, 0x0, 0x0, 0x0, 0x4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffd, 0x0, @perf_bp={0x0, 0xffffffff81000000}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffd}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r4 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000040)='/proc/crypto\x00', 0x0, 0x0) r5 = openat2(r3, &(0x7f0000000180)='./file0\x00', &(0x7f0000000200)={0x800, 0x1b9}, 0x18) setsockopt$SO_TIMESTAMPING(r5, 0x1, 0x25, &(0x7f0000000240)=0x7100, 0x4) pread64(r4, &(0x7f00000010c0)=""/4088, 0xff8, 0x0) writev(0xffffffffffffffff, &(0x7f00000003c0)=[{&(0x7f0000000000)="0000abe02400030021206cda3b5e5672b89aeddb2a535fbd0706006dff0043a9d7cceb232fb81bf74e", 0x29}, {&(0x7f0000000680)="7fd41c04550300020000000000000000010046e92ed2616f72657d044129471d4fd47924fd0900e09e0068deec02", 0x2e}], 0x2) 05:39:23 executing program 0: perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_emit_ethernet(0x3a, &(0x7f0000000000)={@local, @remote, @void, {@ipv4={0x80a, @tcp={{0x6, 0x4, 0x0, 0x0, 0x2c, 0x0, 0x0, 0x0, 0x32, 0x0, @dev, @private=0xa010100, {[@lsrr={0x83, 0x5}]}}, {{0x0, 0x0, 0x41424344, 0x41424344, 0x0, 0x7, 0x5}}}}}}, 0x0) ioctl$BTRFS_IOC_BALANCE(0xffffffffffffffff, 0x5000940c, 0x0) close(0xffffffffffffffff) 05:39:23 executing program 7: r0 = socket$inet6_udp(0xa, 0x2, 0x0) connect$inet6(r0, &(0x7f00000001c0)={0xa, 0x0, 0x0, @mcast2, 0x3}, 0x1c) r1 = perf_event_open(&(0x7f0000000140)={0x1, 0x80, 0x0, 0x0, 0x0, 0x5, 0x0, 0x8001, 0x40001, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x0, 0x0, 0x0, 0x0, 0x7}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) ioctl$int_in(0xffffffffffffffff, 0x5452, &(0x7f00000000c0)=0x87) ioctl$sock_inet6_SIOCDIFADDR(0xffffffffffffffff, 0x8936, &(0x7f0000000000)={@empty, 0x23}) socket$inet6_icmp(0xa, 0x2, 0x3a) r2 = openat$zero(0xffffffffffffff9c, &(0x7f0000000400), 0x80, 0x0) lseek(r2, 0x0, 0x0) sendmsg$IPCTNL_MSG_EXP_GET(r2, 0x0, 0x0) sendmmsg$inet6(r0, &(0x7f0000004d00)=[{{0x0, 0x1100, &(0x7f00000004c0)=[{&(0x7f0000000080)='K', 0x1}], 0x1}}], 0x7ffff000, 0x0) ioctl$AUTOFS_DEV_IOCTL_EXPIRE(0xffffffffffffffff, 0xc018937c, &(0x7f0000000040)={{0x1, 0x1, 0x18, r1, {0x2}}, './file0\x00'}) open_tree(r3, &(0x7f0000000100)='./file0\x00', 0x8000) 05:39:23 executing program 4: perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_emit_ethernet(0x3a, &(0x7f0000000000)={@local, @remote, @void, {@ipv4={0x800, @tcp={{0x6, 0x4, 0x0, 0x0, 0x2c, 0x0, 0x0, 0x0, 0x32, 0x0, @dev, @private=0xa010100, {[@lsrr={0x83, 0x5}]}}, {{0x0, 0x0, 0x41424344, 0x41424344, 0x0, 0x7, 0x5}}}}}}, 0x0) openat$cgroup_devices(0xffffffffffffffff, 0x0, 0x2, 0x0) close(0xffffffffffffffff) pread64(0xffffffffffffffff, 0x0, 0x0, 0x2000) [ 2870.710653] netlink: 8 bytes leftover after parsing attributes in process `syz-executor.3'. 05:39:23 executing program 5: sendmsg$BATADV_CMD_SET_HARDIF(0xffffffffffffffff, &(0x7f0000000280)={&(0x7f00000000c0)={0x10, 0x0, 0x0, 0x200}, 0xc, &(0x7f0000000240)={&(0x7f0000000200)={0x24, 0x0, 0x4, 0x70bd25, 0x25dfdbfe, {}, [@BATADV_ATTR_GW_BANDWIDTH_DOWN={0x8, 0x31, 0x7}, @BATADV_ATTR_MESH_IFINDEX={0x8}]}, 0x24}, 0x1, 0x0, 0x0, 0x800}, 0x0) r0 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x42, 0x0) r1 = openat$vcs(0xffffffffffffff9c, &(0x7f0000000080), 0x2, 0x0) getsockopt$inet6_IPV6_XFRM_POLICY(r1, 0x29, 0x23, &(0x7f00000004c0)={{{@in6=@private0, @in6=@empty, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}}, {{@in6=@local}, 0x0, @in6=@private0}}, &(0x7f00000005c0)=0xe8) r3 = socket$inet6_udplite(0xa, 0x2, 0x88) r4 = dup(r3) r5 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a) ioctl$sock_SIOCGIFINDEX(r5, 0x8933, &(0x7f0000000140)={'syz_tun\x00', 0x0}) ioctl$sock_inet6_SIOCDIFADDR(r4, 0x8936, &(0x7f0000000080)={@local, 0x78, r6}) ioctl$sock_inet6_SIOCDIFADDR(r4, 0x8916, &(0x7f0000000100)={@mcast1, 0x0, r6}) r7 = socket$nl_generic(0x10, 0x3, 0x10) r8 = syz_genetlink_get_family_id$ethtool(&(0x7f0000002740), 0xffffffffffffffff) r9 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a) ioctl$sock_SIOCGIFINDEX(r9, 0x8933, &(0x7f0000000140)={'syz_tun\x00', 0x0}) sendmsg$ETHTOOL_MSG_EEE_SET(r7, &(0x7f0000002800)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000700)=ANY=[@ANYBLOB="e0010000", @ANYRES16=r8, @ANYBLOB="010000000000020050a99e0000080000050c00018008", @ANYRES32=r10, @ANYBLOB="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"/467], 0x1e0}}, 0x0) setsockopt$inet6_mreq(r4, 0x29, 0xe, &(0x7f0000000280)={@empty, r10}, 0x14) ioctl$sock_ipv6_tunnel_SIOCDELPRL(r1, 0x89f6, &(0x7f00000007c0)={'syztnl1\x00', &(0x7f0000000740)={'ip6gre0\x00', 0x0, 0x29, 0x81, 0x4, 0x2, 0x20, @private0, @remote, 0x10, 0x1, 0x1, 0x4}}) sendmsg$ETHTOOL_MSG_LINKSTATE_GET(0xffffffffffffffff, &(0x7f0000000a40)={&(0x7f00000002c0)={0x10, 0x0, 0x0, 0x10000000}, 0xc, &(0x7f0000000a00)={&(0x7f0000000800)={0x200, 0x0, 0x10, 0x70bd2a, 0x25dfdbfb, {}, [@HEADER={0x80, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_FLAGS={0x8, 0x3, 0x1}, @ETHTOOL_A_HEADER_FLAGS={0x8}, @ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'vlan0\x00'}, @ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'gretap0\x00'}, @ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'veth1_vlan\x00'}, @ETHTOOL_A_HEADER_DEV_INDEX={0x8}, @ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'wlan1\x00'}, @ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'vcan0\x00'}]}, @HEADER={0x34, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'rose0\x00'}, @ETHTOOL_A_HEADER_DEV_NAME={0x14}, @ETHTOOL_A_HEADER_FLAGS={0x8, 0x3, 0x1}]}, @HEADER={0x60, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'ip_vti0\x00'}, @ETHTOOL_A_HEADER_DEV_INDEX={0x8}, @ETHTOOL_A_HEADER_FLAGS={0x8}, @ETHTOOL_A_HEADER_FLAGS={0x8}, @ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'veth1_to_batadv\x00'}, @ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'xfrm0\x00'}, @ETHTOOL_A_HEADER_DEV_INDEX={0x8}]}, @HEADER={0x4}, @HEADER={0x44, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'bridge_slave_1\x00'}, @ETHTOOL_A_HEADER_DEV_INDEX={0x8}, @ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'dummy0\x00'}, @ETHTOOL_A_HEADER_FLAGS={0x8, 0x3, 0x2}, @ETHTOOL_A_HEADER_DEV_INDEX={0x8}]}, @HEADER={0x40, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_FLAGS={0x8, 0x3, 0x2}, @ETHTOOL_A_HEADER_DEV_INDEX={0x8, 0x1, r2}, @ETHTOOL_A_HEADER_FLAGS={0x8, 0x3, 0x1}, @ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'bridge_slave_0\x00'}, @ETHTOOL_A_HEADER_DEV_INDEX={0x8, 0x1, r10}, @ETHTOOL_A_HEADER_DEV_INDEX={0x8, 0x1, r11}]}, @HEADER={0x30, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_DEV_INDEX={0x8}, @ETHTOOL_A_HEADER_FLAGS={0x8, 0x3, 0x2}, @ETHTOOL_A_HEADER_FLAGS={0x8, 0x3, 0x7}, @ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'netdevsim0\x00'}]}, @HEADER={0x14, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_FLAGS={0x8, 0x3, 0x3}, @ETHTOOL_A_HEADER_FLAGS={0x8, 0x3, 0x2}]}, @HEADER={0xc, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_FLAGS={0x8, 0x3, 0x2}]}]}, 0x200}, 0x1, 0x0, 0x0, 0x11}, 0x8000) setsockopt$inet6_IPV6_RTHDR(r0, 0x29, 0x39, &(0x7f0000000180)={0x3b, 0xa, 0x1, 0x40, 0x0, [@initdev={0xfe, 0x88, '\x00', 0x0, 0x0}, @initdev={0xfe, 0x88, '\x00', 0x0, 0x0}, @private0={0xfc, 0x0, '\x00', 0x1}, @private2, @private2={0xfc, 0x2, '\x00', 0x1}]}, 0x58) mount$9p_fd(0x0, &(0x7f0000000000)='./file1\x00', &(0x7f0000000040), 0x0, &(0x7f0000000140)=ANY=[@ANYBLOB="7472616e73188c00007266646e6f3d", @ANYRESHEX=r0, @ANYBLOB="374f6204e0ff30", @ANYRESHEX=r1, @ANYBLOB=',\x00']) 05:39:23 executing program 1: perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_emit_ethernet(0x3a, &(0x7f0000000000)={@local, @remote, @void, {@ipv4={0x6558, @tcp={{0x6, 0x4, 0x0, 0x0, 0x2c, 0x0, 0x0, 0x0, 0x32, 0x0, @dev, @private=0xa010100, {[@lsrr={0x83, 0x5}]}}, {{0x0, 0x0, 0x41424344, 0x41424344, 0x0, 0x7, 0x5}}}}}}, 0x0) 05:39:23 executing program 4: perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_emit_ethernet(0x3a, &(0x7f0000000000)={@local, @remote, @void, {@ipv4={0x800, @tcp={{0x6, 0x4, 0x2, 0x0, 0x2c, 0x0, 0x0, 0x0, 0x32, 0x0, @dev, @private=0xa010100, {[@lsrr={0x83, 0x5}]}}, {{0x0, 0x0, 0x41424344, 0x41424344, 0x0, 0x7, 0x5}}}}}}, 0x0) openat$cgroup_devices(0xffffffffffffffff, 0x0, 0x2, 0x0) close(0xffffffffffffffff) pread64(0xffffffffffffffff, 0x0, 0x0, 0x2000) 05:39:23 executing program 0: perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_emit_ethernet(0x3a, &(0x7f0000000000)={@local, @remote, @void, {@ipv4={0x80e, @tcp={{0x6, 0x4, 0x0, 0x0, 0x2c, 0x0, 0x0, 0x0, 0x32, 0x0, @dev, @private=0xa010100, {[@lsrr={0x83, 0x5}]}}, {{0x0, 0x0, 0x41424344, 0x41424344, 0x0, 0x7, 0x5}}}}}}, 0x0) ioctl$BTRFS_IOC_BALANCE(0xffffffffffffffff, 0x5000940c, 0x0) close(0xffffffffffffffff) 05:39:23 executing program 3: r0 = perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x0, 0x3}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) pread64(0xffffffffffffffff, 0x0, 0x7ffffffff000, 0xf0ff1f00000000) bind$inet6(0xffffffffffffffff, &(0x7f0000000040)={0xa, 0x4e23, 0x0, @remote, 0xffff}, 0x1c) r1 = socket$netlink(0x10, 0x3, 0x0) sendmsg$nl_generic(0xffffffffffffffff, 0x0, 0x41) setsockopt$netlink_NETLINK_BROADCAST_ERROR(r1, 0x10e, 0x4, &(0x7f00000000c0)=0x1000, 0x4) sendmsg$nl_generic(r1, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000100)=ANY=[@ANYBLOB="28000000100001000000000000000000000000000500000024386a562b500000000c00008008000d00ac141400"], 0x28}}, 0x0) chdir(&(0x7f00000001c0)='./file0\x00') r2 = syz_open_dev$mouse(&(0x7f0000000400), 0x7fffffff, 0x2d0401) sendmsg$NL80211_CMD_ADD_NAN_FUNCTION(r2, &(0x7f0000000500)={&(0x7f0000000440)={0x10, 0x0, 0x0, 0x10}, 0xc, &(0x7f00000004c0)={&(0x7f00000002c0)={0x20, 0x0, 0x100, 0x70bd2b, 0x25dfdbfd, {{}, {@void, @val={0xc, 0x99, {0x3, 0x1b}}}}}, 0x20}, 0x1, 0x0, 0x0, 0x95}, 0x40000) ioctl$FICLONE(r2, 0x40049409, r0) r3 = open$dir(&(0x7f0000000000)='.\x00', 0x0, 0x0) perf_event_open(&(0x7f0000001d80)={0x6, 0x80, 0x0, 0x0, 0x0, 0x0, 0x4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffd, 0x0, @perf_bp={0x0, 0xffffffff81000000}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffd}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r4 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000040)='/proc/crypto\x00', 0x0, 0x0) r5 = openat2(r3, &(0x7f0000000180)='./file0\x00', &(0x7f0000000200)={0x800, 0x1b9}, 0x18) setsockopt$SO_TIMESTAMPING(r5, 0x1, 0x25, &(0x7f0000000240)=0x7100, 0x4) pread64(r4, &(0x7f00000010c0)=""/4088, 0xff8, 0x0) writev(0xffffffffffffffff, &(0x7f00000003c0)=[{&(0x7f0000000000)="0000abe02400030021206cda3b5e5672b89aeddb2a535fbd0706006dff0043a9d7cceb232fb81bf74ebdd05b", 0x2c}, {&(0x7f0000000680)="7fd41c04550300020000000000000000010046e92ed2616f72657d044129471d4fd47924fd0900e09e0068deec02", 0x2e}], 0x2) 05:39:23 executing program 1: perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_emit_ethernet(0x3a, &(0x7f0000000000)={@local, @remote, @void, {@ipv4={0x8035, @tcp={{0x6, 0x4, 0x0, 0x0, 0x2c, 0x0, 0x0, 0x0, 0x32, 0x0, @dev, @private=0xa010100, {[@lsrr={0x83, 0x5}]}}, {{0x0, 0x0, 0x41424344, 0x41424344, 0x0, 0x7, 0x5}}}}}}, 0x0) [ 2870.984330] FAULT_INJECTION: forcing a failure. [ 2870.984330] name failslab, interval 1, probability 0, space 0, times 0 [ 2870.987220] CPU: 0 PID: 12665 Comm: syz-executor.6 Not tainted 5.10.204 #1 [ 2870.988664] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 2870.990363] Call Trace: [ 2870.990914] dump_stack+0x107/0x167 [ 2870.991676] should_fail.cold+0x5/0xa [ 2870.992454] ? create_object.isra.0+0x3a/0xa20 [ 2870.993397] should_failslab+0x5/0x20 [ 2870.994194] kmem_cache_alloc+0x5b/0x310 [ 2870.995391] create_object.isra.0+0x3a/0xa20 [ 2870.996444] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 2870.997679] kmem_cache_alloc_node+0x169/0x330 [ 2870.998770] ? kmem_cache_free+0xa7/0x2d0 [ 2870.999769] __alloc_skb+0x6d/0x5b0 [ 2871.000652] __tcp_send_ack.part.0+0x67/0x650 [ 2871.001734] ? kmem_cache_free+0x249/0x2d0 [ 2871.002753] tcp_send_ack+0x7d/0xa0 [ 2871.003624] tcp_cleanup_rbuf+0x468/0x5a0 [ 2871.004619] tcp_recvmsg+0xb85/0x2930 [ 2871.005591] ? tcp_splice_read+0x8c0/0x8c0 [ 2871.006533] ? sock_has_perm+0x1ea/0x280 [ 2871.007394] ? perf_trace_lock+0xac/0x490 [ 2871.008241] ? tcp_splice_read+0x8c0/0x8c0 [ 2871.009120] inet6_recvmsg+0x13b/0x6e0 [ 2871.009916] ? inet6_bind+0x120/0x120 [ 2871.010694] ? security_socket_recvmsg+0x95/0xc0 [ 2871.011657] ? inet6_bind+0x120/0x120 [ 2871.012429] sock_recvmsg+0xff/0x180 [ 2871.013185] __sys_recvfrom+0x1be/0x2f0 [ 2871.013999] ? __ia32_sys_send+0x100/0x100 [ 2871.014854] ? lock_downgrade+0x6d0/0x6d0 [ 2871.015725] ? wait_for_completion_io+0x270/0x270 [ 2871.016737] ? rcu_read_lock_any_held+0x75/0xa0 [ 2871.017695] ? vfs_write+0x354/0xa70 [ 2871.018474] ? fput_many+0x2f/0x1a0 [ 2871.019219] ? ksys_write+0x1a9/0x260 [ 2871.020009] ? __ia32_sys_read+0xb0/0xb0 [ 2871.020843] __x64_sys_recvfrom+0xdd/0x1b0 [ 2871.021710] ? syscall_enter_from_user_mode+0x1d/0x50 [ 2871.022756] do_syscall_64+0x33/0x40 [ 2871.023509] entry_SYSCALL_64_after_hwframe+0x62/0xc7 [ 2871.024550] RIP: 0033:0x7f7d1addbb19 [ 2871.025306] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 2871.029042] RSP: 002b:00007f7d18330188 EFLAGS: 00000246 ORIG_RAX: 000000000000002d [ 2871.030592] RAX: ffffffffffffffda RBX: 00007f7d1aeef020 RCX: 00007f7d1addbb19 [ 2871.032033] RDX: 0000000000001000 RSI: 0000000020001e00 RDI: 0000000000000003 [ 2871.033482] RBP: 00007f7d183301d0 R08: 0000000000000000 R09: 0000000000000000 [ 2871.034924] R10: 000000000000cd08 R11: 0000000000000246 R12: 0000000000000002 [ 2871.036362] R13: 00007ffe0ac926cf R14: 00007f7d18330300 R15: 0000000000022000 05:39:23 executing program 5: r0 = creat(0x0, 0x0) open_by_handle_at(r0, 0x0, 0x0) syz_mount_image$vfat(&(0x7f0000000080), &(0x7f0000000240)='./file0\x00', 0x0, 0x2, &(0x7f0000000200)=[{&(0x7f0000000140)="eb3c906d6b66732e66617400020801000470000000f801", 0x17}, {0x0, 0x0, 0x1000a00}], 0x0, &(0x7f00000000c0)=ANY=[]) chdir(&(0x7f0000000040)='./file0\x00') perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x3}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r1 = creat(&(0x7f0000000080)='./file0\x00', 0x0) creat(&(0x7f00000002c0)='./file0\x00', 0x47) getpgid(0xffffffffffffffff) getsockopt$inet_IP_XFRM_POLICY(0xffffffffffffffff, 0x0, 0x11, &(0x7f0000001880)={{{@in=@remote, @in6=@empty, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}}, {{@in=@multicast1}, 0x0, @in=@empty}}, &(0x7f0000001980)=0xe8) syz_mount_image$iso9660(&(0x7f0000000000), &(0x7f0000000100)='./file0\x00', 0x0, 0x5, &(0x7f0000000400)=[{&(0x7f0000000680)="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", 0x1000}, {&(0x7f0000000340)="975066b66f72d809bd820db1166439108ced3f07c5b757a1205cae3731d3cce6cf083ff475941db5e5501bc2106411b2037eb2f4ab7779eb30f0fa9689fe7c77ae2b4ce583bf9eaf458a8d5eb9bbda7b7c498cf47626bcbc32dfe10b66ed6a034795c5640cbf4602ddc9e7eaef15ab162e4bd1bc99c234def48f71e240f0b62f72523b4abe2fcaa209f32812913921e9980d1230474969139d20a02e956d02cce5d3ae9e", 0xa4, 0x2d1}, {&(0x7f0000001680)="d94d4c7b4fd31b414771dbf1a77c3790155b6e4dce083e243f63061bde7c68b71f25f13fe2ebe025a0b57d3b4d5540e78cfb67b97d74b44e93514b12f1e35de372911d24332b6a8f88078a17b3d6566fe34101dcb45203412f14226c0301017d34021fe9356bb7cdfcdcff647760c6bb7a0fb2ae41bc3af5e0b2a0e5279f359a2ba9cbdbc0ddc4e7ce8926221e047bcf4def4651c10b4e02c4a85977a53e5d9782c67c423aa1f47059cff50bb6ec1c80cc271975e8caff8be09804736366e0a37e3b3f2bfb35740d326d48f24513c0150e149454312ac356cc3d50a41d809a4a959984727030f845e084935d1f0a5a0a", 0xf0, 0x800}, {&(0x7f0000000540)="30c92cb044e63ff131d13aa3415b0693deba19b14b5d57d8efeccfa626392174adb8d41d8ff7e43f197548d3a4642e41d9145bcc7c7f7b45084d77908ad8cda1aa87e98468207abeb334df3ef17e179720facba5365fd7a4ea66a6ce9994416d373145f51ec8d21cf0ee21472f1211cb0aa988c980c55300c25c6da2d7ee3145c725d172aebf06418c", 0x89, 0x40}, {&(0x7f0000001780)="e07f992325b0b0e21912c6df77f818e9cb2a85ccfe119c7dcbbae65a135c97dc3c109b2d4e3c1a17e3f9a913cd7a175203bccc5156915814597dae81572c00f5b2ab953aac894e437e1f71c991c217be63b55678d2c811934648dda13c41fd2e4b3ba67f16c143c5d058f3f097f4250e21bbd8c63585cbe1398638194495bb0fab371731514339c6979faf01a10970a7a204a161086d063abe8b40e96dff693c2ab75d80ad14b16cb09291d32ed14bcd3c6e5db5a064de155fa7d8d342e03fca27171ad62247a487e37d8481eec867dc2a", 0xd1, 0x401}], 0x2, &(0x7f00000019c0)={[{@block={'block', 0x3d, 0x400}}, {@block}, {@uid={'uid', 0x3d, 0xee01}}, {}, {@hide}, {@iocharset={'iocharset', 0x3d, 'cp936'}}], [{@audit}, {@fowner_gt={'fowner>', r2}}, {@subj_type={'subj_type', 0x3d, '):'}}, {@mask={'mask', 0x3d, '^MAY_EXEC'}}, {@smackfsroot={'smackfsroot', 0x3d, '\\'}}, {@permit_directio}]}) ioctl$NS_GET_PARENT(0xffffffffffffffff, 0xb702, 0x0) socket$inet6_udp(0xa, 0x2, 0x0) r3 = perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x10000, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x0, 0x4000004}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x2) fstat(r3, &(0x7f0000000600)={0x0, 0x0, 0x0, 0x0, 0x0}) quotactl(0x2, &(0x7f00000005c0)='./file0\x00', r4, &(0x7f0000000680)="69eb1e6f327054e098d4b672a2ac69e4a486eec99baaeb24bc9dc28efe8d0c838961f1d61ceaf812d84d496f943e749abf74baedc04a5553b47861f92ca15074048c41addccf37") syz_mount_image$ext4(&(0x7f00000001c0)='ext4\x00', &(0x7f0000001ac0)='./file0\x00', 0x8000, 0x3, &(0x7f0000001c80)=[{&(0x7f0000001b00)="5c9f40c90485c4f9dd992f731117bab08d8264c1cc13bd330f5163edb5c5b76f1d025a6ce84e96b6ab500d59aa52a715469824dce18bd6b4b264a8ed47c86803381170d8522fb05c72aa6b7b6cfe59c85419de2a24d88a14cd83808e76705cfe2810c00bdcb40a4f896b1d4668b912edf7a3d311628fb4962b892df20483ad7dedc56a92c832509e3a6ead87db472e550036", 0x92, 0xa5}, {&(0x7f0000001bc0)="56f823b321801c74a2aed9bfc39fb0c825bb6a5312a12e34c0622fcff394d107cd5f03651924aec9a6233de2bcd8cf4bef78238ac959222d3d253343d901dbad66b67605e016376e3ccb3b5a50", 0x4d, 0x1}, {&(0x7f0000001c40)="37613fda1e3bacaa3cfec0d8856fb7e77a1cf4217fa8851ade60b8eded91602feaeb71f8be7786dcf1fad24cda08", 0x2e, 0x3f}], 0x2031000, &(0x7f0000001d00)={[{@min_batch_time={'min_batch_time', 0x3d, 0x2}}, {@i_version}, {@nojournal_checksum}, {@inode_readahead_blks={'inode_readahead_blks', 0x3d, 0x8000000}}], [{@fowner_gt={'fowner>', r2}}, {@uid_lt={'uid<', r4}}, {@subj_type={'subj_type', 0x3d, '#'}}, {@permit_directio}, {@dont_measure}, {@audit}, {@fsname={'fsname', 0x3d, 'mask'}}, {@measure}, {@fowner_lt={'fowner<', r2}}]}) signalfd(r0, &(0x7f0000000180)={[0x267a1bf6]}, 0x8) getresuid(0x0, &(0x7f0000000280), &(0x7f0000000300)) sendmsg$nl_generic(0xffffffffffffffff, &(0x7f0000000640)={&(0x7f0000000500)={0x10, 0x0, 0x0, 0x1000000}, 0xc, &(0x7f0000000600)={0x0}, 0x1, 0x0, 0x0, 0x50}, 0x0) pwrite64(r1, &(0x7f00000000c0)="04", 0x1, 0x3ff03) [ 2871.057817] netlink: 8 bytes leftover after parsing attributes in process `syz-executor.3'. 05:39:23 executing program 4: perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_emit_ethernet(0x3a, &(0x7f0000000000)={@local, @remote, @void, {@ipv4={0x800, @tcp={{0x6, 0x4, 0x3, 0x0, 0x2c, 0x0, 0x0, 0x0, 0x32, 0x0, @dev, @private=0xa010100, {[@lsrr={0x83, 0x5}]}}, {{0x0, 0x0, 0x41424344, 0x41424344, 0x0, 0x7, 0x5}}}}}}, 0x0) openat$cgroup_devices(0xffffffffffffffff, 0x0, 0x2, 0x0) close(0xffffffffffffffff) pread64(0xffffffffffffffff, 0x0, 0x0, 0x2000) 05:39:23 executing program 0: perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_emit_ethernet(0x3a, &(0x7f0000000000)={@local, @remote, @void, {@ipv4={0x811, @tcp={{0x6, 0x4, 0x0, 0x0, 0x2c, 0x0, 0x0, 0x0, 0x32, 0x0, @dev, @private=0xa010100, {[@lsrr={0x83, 0x5}]}}, {{0x0, 0x0, 0x41424344, 0x41424344, 0x0, 0x7, 0x5}}}}}}, 0x0) ioctl$BTRFS_IOC_BALANCE(0xffffffffffffffff, 0x5000940c, 0x0) close(0xffffffffffffffff) 05:39:38 executing program 6: r0 = socket$inet6_tcp(0xa, 0x1, 0x0) setsockopt$inet6_tcp_int(r0, 0x6, 0x2, &(0x7f0000000080)=0x90, 0x4) bind$inet6(r0, &(0x7f00000000c0)={0xa, 0x4e20, 0x0, @loopback}, 0x1c) connect$inet6(r0, &(0x7f0000000000)={0xa, 0x4e20, 0x0, @empty}, 0x1c) setsockopt$sock_int(r0, 0x1, 0x8, &(0x7f0000002ec0), 0x4) sendmsg$inet6(r0, &(0x7f00000006c0)={0x0, 0x0, &(0x7f0000000540)=[{&(0x7f00000001c0)="cf", 0xfffffdef}], 0x1}, 0x10044001) setsockopt$SO_TIMESTAMP(r0, 0x1, 0x40, &(0x7f0000000280)=0x380, 0x4) recvfrom$inet6(r0, &(0x7f0000001e00)=""/4096, 0x1000, 0xcd08, 0x0, 0x0) (fail_nth: 17) 05:39:38 executing program 7: syz_mount_image$vfat(&(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x0, 0x2, &(0x7f0000000180)=[{&(0x7f0000000140)="eb3c906d6b66732e66617400020801000470008400f801", 0x17, 0x3}, {0x0, 0x0, 0x10009ff}], 0x0, &(0x7f0000000480)=ANY=[@ANYRES64, @ANYRESOCT, @ANYRES32, @ANYRES64]) r0 = memfd_create(&(0x7f0000000340)='\x00', 0x0) fcntl$addseals(r0, 0x409, 0xe) fallocate(r0, 0x0, 0x0, 0x4) chdir(&(0x7f0000000040)='./file0\x00') perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5c, 0x80180, 0xe, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) rename(&(0x7f00000001c0)='./file1\x00', &(0x7f0000000240)='./file2\x00') creat(&(0x7f0000000100)='./file2\x00', 0x2) chroot(&(0x7f0000000280)='./file2\x00') r1 = openat(0xffffffffffffff9c, &(0x7f00000002c0)='./file1\x00', 0x105142, 0x0) r2 = openat(0xffffffffffffffff, &(0x7f0000000300)='./file1\x00', 0x509441, 0x18e) r3 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0) write(r2, &(0x7f00000003c0)="0289819eecd945439d8a8b16bf2bf2b67eefb591f4cf4db9ead300c6ac8ba94f7d4a804292338b2abd8472d8beffa0ce3669f0087fe6e41dd4cf60d158da85532ae8", 0x42) r4 = socket$inet_udp(0x2, 0x2, 0x0) getsockopt$inet_mreq(r4, 0x0, 0x4, 0x0, &(0x7f0000000340)) r5 = socket$inet_udp(0x2, 0x2, 0x0) getsockopt$inet_mreq(r5, 0x0, 0x4, 0x0, &(0x7f0000000340)) fcntl$dupfd(r4, 0x0, r4) sendfile(r1, r3, 0x0, 0x100000001) 05:39:38 executing program 5: r0 = syz_io_uring_setup(0x21, &(0x7f0000000080)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, &(0x7f0000ffd000/0x2000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000180)=0x0, &(0x7f0000000040)=0x0) r3 = eventfd2(0x200000, 0x800) perf_event_open(&(0x7f0000000140)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4303, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) syz_io_uring_submit(r1, r2, &(0x7f0000000340)=@IORING_OP_WRITE={0x17, 0x0, 0x0, @fd=r3, 0x0, 0x0}, 0x0) syz_io_uring_setup(0x3167, &(0x7f0000000380)={0x0, 0x0, 0x20, 0x0, 0x0, 0x0, 0x0}, &(0x7f00000a0000)=nil, &(0x7f0000ffb000/0x4000)=nil, &(0x7f00000002c0)=0x0, &(0x7f0000000280)) r5 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2) dup2(r5, r5) r6 = inotify_init1(0x0) inotify_rm_watch(r6, 0x0) ioctl$FS_IOC_FSSETXATTR(r6, 0x401c5820, 0x0) r7 = inotify_init1(0x0) r8 = openat$procfs(0xffffffffffffff9c, &(0x7f00000014c0)='/proc/bus/input/devices\x00', 0x0, 0x0) pread64(r8, &(0x7f0000000040)=""/4126, 0x101e, 0x2000) setsockopt$SO_TIMESTAMP(r8, 0x1, 0x23, &(0x7f0000000100)=0x4, 0x4) r9 = inotify_add_watch(r7, &(0x7f0000000040)='.\x00', 0x0) inotify_rm_watch(r7, r9) syz_io_uring_submit(r4, r2, &(0x7f0000000000)=@IORING_OP_TEE={0x21, 0x4, 0x0, @fd=r3, 0x0, 0x0, 0x2, 0x2, 0x0, {0x0, 0x0, r7}}, 0x8) io_uring_enter(r0, 0x76d3, 0x0, 0x0, 0x0, 0x0) 05:39:38 executing program 1: perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_emit_ethernet(0x3a, &(0x7f0000000000)={@local, @remote, @void, {@ipv4={0x8100, @tcp={{0x6, 0x4, 0x0, 0x0, 0x2c, 0x0, 0x0, 0x0, 0x32, 0x0, @dev, @private=0xa010100, {[@lsrr={0x83, 0x5}]}}, {{0x0, 0x0, 0x41424344, 0x41424344, 0x0, 0x7, 0x5}}}}}}, 0x0) 05:39:38 executing program 0: perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_emit_ethernet(0x3a, &(0x7f0000000000)={@local, @remote, @void, {@ipv4={0x82c, @tcp={{0x6, 0x4, 0x0, 0x0, 0x2c, 0x0, 0x0, 0x0, 0x32, 0x0, @dev, @private=0xa010100, {[@lsrr={0x83, 0x5}]}}, {{0x0, 0x0, 0x41424344, 0x41424344, 0x0, 0x7, 0x5}}}}}}, 0x0) ioctl$BTRFS_IOC_BALANCE(0xffffffffffffffff, 0x5000940c, 0x0) close(0xffffffffffffffff) 05:39:38 executing program 3: r0 = perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x0, 0x3}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) pread64(0xffffffffffffffff, 0x0, 0x7ffffffff000, 0xf0ff1f00000000) bind$inet6(0xffffffffffffffff, &(0x7f0000000040)={0xa, 0x4e23, 0x0, @remote, 0xffff}, 0x1c) r1 = socket$netlink(0x10, 0x3, 0x0) sendmsg$nl_generic(0xffffffffffffffff, 0x0, 0x41) setsockopt$netlink_NETLINK_BROADCAST_ERROR(r1, 0x10e, 0x4, &(0x7f00000000c0)=0x1000, 0x4) sendmsg$nl_generic(r1, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000100)=ANY=[@ANYBLOB="28000000100001000000000000000000000000000500000024386a562b500000000c00008008000d00ac141400"], 0x28}}, 0x0) chdir(&(0x7f00000001c0)='./file0\x00') r2 = syz_open_dev$mouse(&(0x7f0000000400), 0x7fffffff, 0x2d0401) sendmsg$NL80211_CMD_ADD_NAN_FUNCTION(r2, &(0x7f0000000500)={&(0x7f0000000440)={0x10, 0x0, 0x0, 0x10}, 0xc, &(0x7f00000004c0)={&(0x7f00000002c0)={0x20, 0x0, 0x100, 0x70bd2b, 0x25dfdbfd, {{}, {@void, @val={0xc, 0x99, {0x3, 0x1b}}}}}, 0x20}, 0x1, 0x0, 0x0, 0x95}, 0x40000) ioctl$FICLONE(r2, 0x40049409, r0) r3 = open$dir(&(0x7f0000000000)='.\x00', 0x0, 0x0) perf_event_open(&(0x7f0000001d80)={0x6, 0x80, 0x0, 0x0, 0x0, 0x0, 0x4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffd, 0x0, @perf_bp={0x0, 0xffffffff81000000}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffd}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r4 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000040)='/proc/crypto\x00', 0x0, 0x0) r5 = openat2(r3, &(0x7f0000000180)='./file0\x00', &(0x7f0000000200)={0x800, 0x1b9}, 0x18) setsockopt$SO_TIMESTAMPING(r5, 0x1, 0x25, &(0x7f0000000240)=0x7100, 0x4) pread64(r4, &(0x7f00000010c0)=""/4088, 0xff8, 0x0) writev(0xffffffffffffffff, &(0x7f00000003c0)=[{&(0x7f0000000000)="0000abe02400030021206cda3b5e5672b89aeddb2a535fbd0706006dff0043a9d7cceb232fb81bf74ebdd05b", 0x2c}, {&(0x7f0000000680)="7fd41c04550300020000000000000000010046e92ed2616f72657d044129471d4fd47924fd0900e09e0068deec02", 0x2e}], 0x2) 05:39:38 executing program 4: perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_emit_ethernet(0x3a, &(0x7f0000000000)={@local, @remote, @void, {@ipv4={0x800, @tcp={{0x6, 0x4, 0x0, 0x0, 0x2c, 0x0, 0x0, 0x0, 0x32, 0x0, @dev, @private=0xa010100, {[@lsrr={0x83, 0x5}]}}, {{0x0, 0x0, 0x41424344, 0x41424344, 0x0, 0x7, 0x5}}}}}}, 0x0) openat$cgroup_devices(0xffffffffffffffff, 0x0, 0x2, 0x0) close(0xffffffffffffffff) pread64(0xffffffffffffffff, 0x0, 0x0, 0x2000) 05:39:38 executing program 2: preadv2(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x2) openat(0xffffffffffffff9c, 0x0, 0x0, 0x0) r0 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x105142, 0x62) r1 = openat(0xffffffffffffff9c, 0x0, 0x0, 0x0) fallocate(r1, 0x0, 0x0, 0x8800000) lseek(0xffffffffffffffff, 0x0, 0x0) openat(0xffffffffffffffff, 0x0, 0x0, 0x20) ioctl$FS_IOC_RESVSP(0xffffffffffffffff, 0x40305828, 0x0) faccessat2(0xffffffffffffffff, 0x0, 0x0, 0x0) openat(0xffffffffffffffff, 0x0, 0x1a340, 0x100) ioctl$LOOP_CTL_REMOVE(0xffffffffffffffff, 0x4c81, 0x0) r2 = fsmount(0xffffffffffffffff, 0x0, 0x0) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r3 = openat(r2, &(0x7f0000000000)='/proc/self/exe\x00', 0x4840, 0x2d) sendfile(r0, r3, 0x0, 0x100000900) [ 2886.080395] netlink: 8 bytes leftover after parsing attributes in process `syz-executor.3'. 05:39:38 executing program 1: perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_emit_ethernet(0x3a, &(0x7f0000000000)={@local, @remote, @void, {@ipv4={0x8847, @tcp={{0x6, 0x4, 0x0, 0x0, 0x2c, 0x0, 0x0, 0x0, 0x32, 0x0, @dev, @private=0xa010100, {[@lsrr={0x83, 0x5}]}}, {{0x0, 0x0, 0x41424344, 0x41424344, 0x0, 0x7, 0x5}}}}}}, 0x0) 05:39:38 executing program 0: perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_emit_ethernet(0x3a, &(0x7f0000000000)={@local, @remote, @void, {@ipv4={0x848, @tcp={{0x6, 0x4, 0x0, 0x0, 0x2c, 0x0, 0x0, 0x0, 0x32, 0x0, @dev, @private=0xa010100, {[@lsrr={0x83, 0x5}]}}, {{0x0, 0x0, 0x41424344, 0x41424344, 0x0, 0x7, 0x5}}}}}}, 0x0) ioctl$BTRFS_IOC_BALANCE(0xffffffffffffffff, 0x5000940c, 0x0) close(0xffffffffffffffff) 05:39:38 executing program 4: perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_emit_ethernet(0x3a, &(0x7f0000000000)={@local, @remote, @void, {@ipv4={0x800, @tcp={{0x6, 0x4, 0x0, 0x2, 0x2c, 0x0, 0x0, 0x0, 0x32, 0x0, @dev, @private=0xa010100, {[@lsrr={0x83, 0x5}]}}, {{0x0, 0x0, 0x41424344, 0x41424344, 0x0, 0x7, 0x5}}}}}}, 0x0) openat$cgroup_devices(0xffffffffffffffff, 0x0, 0x2, 0x0) close(0xffffffffffffffff) pread64(0xffffffffffffffff, 0x0, 0x0, 0x2000) 05:39:38 executing program 3: r0 = perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x0, 0x3}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) pread64(0xffffffffffffffff, 0x0, 0x7ffffffff000, 0xf0ff1f00000000) bind$inet6(0xffffffffffffffff, &(0x7f0000000040)={0xa, 0x4e23, 0x0, @remote, 0xffff}, 0x1c) r1 = socket$netlink(0x10, 0x3, 0x0) sendmsg$nl_generic(0xffffffffffffffff, 0x0, 0x41) setsockopt$netlink_NETLINK_BROADCAST_ERROR(r1, 0x10e, 0x4, &(0x7f00000000c0)=0x1000, 0x4) sendmsg$nl_generic(r1, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000100)=ANY=[@ANYBLOB="28000000100001000000000000000000000000000500000024386a562b500000000c00008008000d00ac141400"], 0x28}}, 0x0) chdir(&(0x7f00000001c0)='./file0\x00') r2 = syz_open_dev$mouse(&(0x7f0000000400), 0x7fffffff, 0x2d0401) sendmsg$NL80211_CMD_ADD_NAN_FUNCTION(r2, &(0x7f0000000500)={&(0x7f0000000440)={0x10, 0x0, 0x0, 0x10}, 0xc, &(0x7f00000004c0)={&(0x7f00000002c0)={0x20, 0x0, 0x100, 0x70bd2b, 0x25dfdbfd, {{}, {@void, @val={0xc, 0x99, {0x3, 0x1b}}}}}, 0x20}, 0x1, 0x0, 0x0, 0x95}, 0x40000) ioctl$FICLONE(r2, 0x40049409, r0) r3 = open$dir(&(0x7f0000000000)='.\x00', 0x0, 0x0) perf_event_open(&(0x7f0000001d80)={0x6, 0x80, 0x0, 0x0, 0x0, 0x0, 0x4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffd, 0x0, @perf_bp={0x0, 0xffffffff81000000}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffd}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r4 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000040)='/proc/crypto\x00', 0x0, 0x0) r5 = openat2(r3, &(0x7f0000000180)='./file0\x00', &(0x7f0000000200)={0x800, 0x1b9}, 0x18) setsockopt$SO_TIMESTAMPING(r5, 0x1, 0x25, &(0x7f0000000240)=0x7100, 0x4) pread64(r4, &(0x7f00000010c0)=""/4088, 0xff8, 0x0) writev(0xffffffffffffffff, &(0x7f00000003c0)=[{&(0x7f0000000000)="0000abe02400030021206cda3b5e5672b89aeddb2a535fbd0706006dff0043a9d7cceb232fb81bf74ebdd05b", 0x2c}, {&(0x7f0000000680)="7fd41c04550300020000000000000000010046e92ed2616f72657d044129471d4fd47924fd0900e09e0068deec02", 0x2e}], 0x2) 05:39:38 executing program 1: perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_emit_ethernet(0x3a, &(0x7f0000000000)={@local, @remote, @void, {@ipv4={0x8848, @tcp={{0x6, 0x4, 0x0, 0x0, 0x2c, 0x0, 0x0, 0x0, 0x32, 0x0, @dev, @private=0xa010100, {[@lsrr={0x83, 0x5}]}}, {{0x0, 0x0, 0x41424344, 0x41424344, 0x0, 0x7, 0x5}}}}}}, 0x0) 05:39:38 executing program 4: perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_emit_ethernet(0x3a, &(0x7f0000000000)={@local, @remote, @void, {@ipv4={0x800, @tcp={{0x6, 0x4, 0x0, 0x3, 0x2c, 0x0, 0x0, 0x0, 0x32, 0x0, @dev, @private=0xa010100, {[@lsrr={0x83, 0x5}]}}, {{0x0, 0x0, 0x41424344, 0x41424344, 0x0, 0x7, 0x5}}}}}}, 0x0) openat$cgroup_devices(0xffffffffffffffff, 0x0, 0x2, 0x0) close(0xffffffffffffffff) pread64(0xffffffffffffffff, 0x0, 0x0, 0x2000) 05:39:38 executing program 0: perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_emit_ethernet(0x3a, &(0x7f0000000000)={@local, @remote, @void, {@ipv4={0x856, @tcp={{0x6, 0x4, 0x0, 0x0, 0x2c, 0x0, 0x0, 0x0, 0x32, 0x0, @dev, @private=0xa010100, {[@lsrr={0x83, 0x5}]}}, {{0x0, 0x0, 0x41424344, 0x41424344, 0x0, 0x7, 0x5}}}}}}, 0x0) ioctl$BTRFS_IOC_BALANCE(0xffffffffffffffff, 0x5000940c, 0x0) close(0xffffffffffffffff) 05:39:38 executing program 5: r0 = syz_io_uring_setup(0x21, &(0x7f0000000080)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, &(0x7f0000ffd000/0x2000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000180)=0x0, &(0x7f0000000040)=0x0) r3 = eventfd2(0x200000, 0x800) perf_event_open(&(0x7f0000000140)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4303, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) syz_io_uring_submit(r1, r2, &(0x7f0000000340)=@IORING_OP_WRITE={0x17, 0x0, 0x0, @fd=r3, 0x0, 0x0}, 0x0) syz_io_uring_setup(0x3167, &(0x7f0000000380)={0x0, 0x0, 0x20, 0x0, 0x0, 0x0, 0x0}, &(0x7f00000a0000)=nil, &(0x7f0000ffb000/0x4000)=nil, &(0x7f00000002c0)=0x0, &(0x7f0000000280)) r5 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2) dup2(r5, r5) r6 = inotify_init1(0x0) inotify_rm_watch(r6, 0x0) ioctl$FS_IOC_FSSETXATTR(r6, 0x401c5820, 0x0) r7 = inotify_init1(0x0) r8 = openat$procfs(0xffffffffffffff9c, &(0x7f00000014c0)='/proc/bus/input/devices\x00', 0x0, 0x0) pread64(r8, &(0x7f0000000040)=""/4126, 0x101e, 0x2000) setsockopt$SO_TIMESTAMP(r8, 0x1, 0x23, &(0x7f0000000100)=0x4, 0x4) r9 = inotify_add_watch(r7, &(0x7f0000000040)='.\x00', 0x0) inotify_rm_watch(r7, r9) syz_io_uring_submit(r4, r2, &(0x7f0000000000)=@IORING_OP_TEE={0x21, 0x4, 0x0, @fd=r3, 0x0, 0x0, 0x2, 0x2, 0x0, {0x0, 0x0, r7}}, 0x8) io_uring_enter(r0, 0x76d3, 0x0, 0x0, 0x0, 0x0) [ 2886.274186] FAT-fs (loop7): Unrecognized mount option "ÿÿÿÿÿÿÿÿ01777777777777777777777ÿÿÿÿÿÿÿÿÿÿÿÿ" or missing value [ 2886.292825] netlink: 8 bytes leftover after parsing attributes in process `syz-executor.3'. [ 2886.382888] FAULT_INJECTION: forcing a failure. [ 2886.382888] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 2886.384507] CPU: 1 PID: 12724 Comm: syz-executor.6 Not tainted 5.10.204 #1 [ 2886.385359] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 2886.386489] Call Trace: [ 2886.386919] dump_stack+0x107/0x167 [ 2886.387374] should_fail.cold+0x5/0xa [ 2886.387802] _copy_to_iter+0x264/0x12d0 [ 2886.388263] ? sk_wait_data+0x353/0x4d0 [ 2886.388708] ? _copy_from_iter_nocache+0xd60/0xd60 [ 2886.389266] ? mark_held_locks+0x9e/0xe0 [ 2886.389742] ? __virt_addr_valid+0x128/0x350 [ 2886.390241] ? __check_object_size+0x319/0x440 [ 2886.390754] simple_copy_to_iter+0x4c/0x70 [ 2886.391227] __skb_datagram_iter+0x4f7/0x880 [ 2886.391730] ? zerocopy_sg_from_iter+0x110/0x110 [ 2886.392267] skb_copy_datagram_iter+0x88/0x190 [ 2886.392791] tcp_recvmsg+0x13b5/0x2930 [ 2886.393235] ? tcp_splice_read+0x8c0/0x8c0 [ 2886.393732] ? sock_has_perm+0x1ea/0x280 [ 2886.394196] ? perf_trace_lock+0xac/0x490 [ 2886.394658] ? tcp_splice_read+0x8c0/0x8c0 [ 2886.395126] inet6_recvmsg+0x13b/0x6e0 [ 2886.395562] ? inet6_bind+0x120/0x120 [ 2886.395991] ? security_socket_recvmsg+0x95/0xc0 [ 2886.396525] ? inet6_bind+0x120/0x120 [ 2886.396950] sock_recvmsg+0xff/0x180 [ 2886.397375] __sys_recvfrom+0x1be/0x2f0 [ 2886.397825] ? __ia32_sys_send+0x100/0x100 [ 2886.398291] ? lock_downgrade+0x6d0/0x6d0 [ 2886.398769] ? wait_for_completion_io+0x270/0x270 [ 2886.399307] ? rcu_read_lock_any_held+0x75/0xa0 [ 2886.399832] ? vfs_write+0x354/0xa70 [ 2886.400255] ? fput_many+0x2f/0x1a0 [ 2886.400661] ? ksys_write+0x1a9/0x260 [ 2886.401088] ? __ia32_sys_read+0xb0/0xb0 [ 2886.401538] __x64_sys_recvfrom+0xdd/0x1b0 [ 2886.402029] ? syscall_enter_from_user_mode+0x1d/0x50 [ 2886.402608] do_syscall_64+0x33/0x40 [ 2886.403024] entry_SYSCALL_64_after_hwframe+0x62/0xc7 [ 2886.403598] RIP: 0033:0x7f7d1addbb19 [ 2886.404020] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 2886.406072] RSP: 002b:00007f7d18330188 EFLAGS: 00000246 ORIG_RAX: 000000000000002d [ 2886.406910] RAX: ffffffffffffffda RBX: 00007f7d1aeef020 RCX: 00007f7d1addbb19 [ 2886.407713] RDX: 0000000000001000 RSI: 0000000020001e00 RDI: 0000000000000003 [ 2886.408504] RBP: 00007f7d183301d0 R08: 0000000000000000 R09: 0000000000000000 [ 2886.409312] R10: 000000000000cd08 R11: 0000000000000246 R12: 0000000000000002 [ 2886.410122] R13: 00007ffe0ac926cf R14: 00007f7d18330300 R15: 0000000000022000 [ 2886.567468] FAT-fs (loop7): Unrecognized mount option "ÿÿÿÿÿÿÿÿ01777777777777777777777ÿÿÿÿÿÿÿÿÿÿÿÿ" or missing value [ 2901.501633] netlink: 8 bytes leftover after parsing attributes in process `syz-executor.3'. 05:39:54 executing program 7: r0 = openat(0xffffffffffffff9c, &(0x7f0000000280)='./file0\x00', 0x46e2, 0x0) r1 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$nl_generic(0xffffffffffffffff, 0x0, 0x4000) ftruncate(r0, 0x1000003) dup2(r0, r1) ioctl$FS_IOC_FSSETXATTR(r0, 0x40086602, &(0x7f0000000000)) fsetxattr$security_capability(r0, &(0x7f0000000040), &(0x7f0000000080)=@v1={0x1000000, [{0xa4, 0x5}]}, 0xc, 0x0) splice(0xffffffffffffffff, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0) sendmsg$NL80211_CMD_STOP_AP(0xffffffffffffffff, &(0x7f0000000340)={&(0x7f0000000100)={0x10, 0x0, 0x0, 0x800}, 0xc, &(0x7f00000002c0)={&(0x7f0000000240)={0x14, 0x0, 0x2, 0x70bd29, 0x25dfdbfd, {{}, {@void, @void}}, [""]}, 0x14}, 0x1, 0x0, 0x0, 0x80c0}, 0x40000) open(&(0x7f00000000c0)='./file0\x00', 0x2e142, 0x0) r2 = syz_open_dev$vcsa(&(0x7f0000000140), 0x80000001, 0x212801) r3 = eventfd(0x0) io_uring_register$IORING_REGISTER_EVENTFD(0xffffffffffffffff, 0x4, &(0x7f0000000140)=r3, 0x1) ioctl$AUTOFS_DEV_IOCTL_ISMOUNTPOINT(0xffffffffffffffff, 0xc018937e, &(0x7f0000000380)=ANY=[@ANYBLOB="010000000100000018000000", @ANYRES32=r3, @ANYBLOB="00001a000000005f4741b834c9ca8200ff0b5246cf11e2aa411a47cf74ebd0e0bca0b2d43ed8179542f9854ad46e9c52777b9435d1e34059f14f4d42fa11f69512e4488dd461b41b1c399964741b0548f9b5128fc99f54152a55ad967a4061eb32669883f310fd47c2bfa50c9aaf96ac75bed42942b6c3c79145b126ed1577cbdc427d230b053e94f1f1908e"]) syz_open_procfs(0xffffffffffffffff, 0x0) ioctl$BTRFS_IOC_TREE_SEARCH_V2(r1, 0xc0709411, &(0x7f0000000180)=ANY=[@ANYRES64=0x0, @ANYBLOB="000000000000000007000000000000000800000000000000000000000000000000000000000000000000000000000000190c000000800000000000000000000000000043820000000000000000000000010000000000000006000000000000001800"/128]) dup(r3) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x1, 0xf, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x5c982, 0x0, 0x0, 0x7, 0xff}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) write$binfmt_script(r1, &(0x7f0000000300)={'#! ', './file0', [], 0xd}, 0xb) ioctl$EVIOCGNAME(r2, 0x80404506, &(0x7f0000000440)=""/233) 05:39:54 executing program 3: r0 = perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x0, 0x3}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) pread64(0xffffffffffffffff, 0x0, 0x7ffffffff000, 0xf0ff1f00000000) bind$inet6(0xffffffffffffffff, &(0x7f0000000040)={0xa, 0x4e23, 0x0, @remote, 0xffff}, 0x1c) r1 = socket$netlink(0x10, 0x3, 0x0) sendmsg$nl_generic(0xffffffffffffffff, 0x0, 0x41) setsockopt$netlink_NETLINK_BROADCAST_ERROR(r1, 0x10e, 0x4, &(0x7f00000000c0)=0x1000, 0x4) sendmsg$nl_generic(r1, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000100)=ANY=[@ANYBLOB="28000000100001000000000000000000000000000500000024386a562b500000000c00008008000d00ac141400"], 0x28}}, 0x0) chdir(&(0x7f00000001c0)='./file0\x00') r2 = syz_open_dev$mouse(&(0x7f0000000400), 0x7fffffff, 0x2d0401) sendmsg$NL80211_CMD_ADD_NAN_FUNCTION(r2, &(0x7f0000000500)={&(0x7f0000000440)={0x10, 0x0, 0x0, 0x10}, 0xc, &(0x7f00000004c0)={&(0x7f00000002c0)={0x20, 0x0, 0x100, 0x70bd2b, 0x25dfdbfd, {{}, {@void, @val={0xc, 0x99, {0x3, 0x1b}}}}}, 0x20}, 0x1, 0x0, 0x0, 0x95}, 0x40000) ioctl$FICLONE(r2, 0x40049409, r0) r3 = open$dir(&(0x7f0000000000)='.\x00', 0x0, 0x0) perf_event_open(&(0x7f0000001d80)={0x6, 0x80, 0x0, 0x0, 0x0, 0x0, 0x4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffd, 0x0, @perf_bp={0x0, 0xffffffff81000000}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffd}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r4 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000040)='/proc/crypto\x00', 0x0, 0x0) r5 = openat2(r3, &(0x7f0000000180)='./file0\x00', &(0x7f0000000200)={0x800, 0x1b9}, 0x18) setsockopt$SO_TIMESTAMPING(r5, 0x1, 0x25, &(0x7f0000000240)=0x7100, 0x4) pread64(r4, &(0x7f00000010c0)=""/4088, 0xff8, 0x0) writev(0xffffffffffffffff, &(0x7f00000003c0)=[{&(0x7f0000000000)="0000abe02400030021206cda3b5e5672b89aeddb2a535fbd0706006dff0043a9d7cceb232fb81bf74ebdd05b76", 0x2d}, {&(0x7f0000000680)="7fd41c04550300020000000000000000010046e92ed2616f72657d044129471d4fd47924fd0900e09e0068deec02", 0x2e}], 0x2) 05:39:54 executing program 0: perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_emit_ethernet(0x3a, &(0x7f0000000000)={@local, @remote, @void, {@ipv4={0x860, @tcp={{0x6, 0x4, 0x0, 0x0, 0x2c, 0x0, 0x0, 0x0, 0x32, 0x0, @dev, @private=0xa010100, {[@lsrr={0x83, 0x5}]}}, {{0x0, 0x0, 0x41424344, 0x41424344, 0x0, 0x7, 0x5}}}}}}, 0x0) ioctl$BTRFS_IOC_BALANCE(0xffffffffffffffff, 0x5000940c, 0x0) close(0xffffffffffffffff) 05:39:54 executing program 1: perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_emit_ethernet(0x3a, &(0x7f0000000000)={@local, @remote, @void, {@ipv4={0x8864, @tcp={{0x6, 0x4, 0x0, 0x0, 0x2c, 0x0, 0x0, 0x0, 0x32, 0x0, @dev, @private=0xa010100, {[@lsrr={0x83, 0x5}]}}, {{0x0, 0x0, 0x41424344, 0x41424344, 0x0, 0x7, 0x5}}}}}}, 0x0) 05:39:54 executing program 4: perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_emit_ethernet(0x3a, &(0x7f0000000000)={@local, @remote, @void, {@ipv4={0x800, @tcp={{0x6, 0x4, 0x0, 0x4, 0x2c, 0x0, 0x0, 0x0, 0x32, 0x0, @dev, @private=0xa010100, {[@lsrr={0x83, 0x5}]}}, {{0x0, 0x0, 0x41424344, 0x41424344, 0x0, 0x7, 0x5}}}}}}, 0x0) openat$cgroup_devices(0xffffffffffffffff, 0x0, 0x2, 0x0) close(0xffffffffffffffff) pread64(0xffffffffffffffff, 0x0, 0x0, 0x2000) 05:39:54 executing program 5: r0 = syz_io_uring_setup(0x21, &(0x7f0000000080)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, &(0x7f0000ffd000/0x2000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000180)=0x0, &(0x7f0000000040)=0x0) r3 = eventfd2(0x200000, 0x800) perf_event_open(&(0x7f0000000140)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4303, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) syz_io_uring_submit(r1, r2, &(0x7f0000000340)=@IORING_OP_WRITE={0x17, 0x0, 0x0, @fd=r3, 0x0, 0x0}, 0x0) syz_io_uring_setup(0x3167, &(0x7f0000000380)={0x0, 0x0, 0x20, 0x0, 0x0, 0x0, 0x0}, &(0x7f00000a0000)=nil, &(0x7f0000ffb000/0x4000)=nil, &(0x7f00000002c0)=0x0, &(0x7f0000000280)) r5 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2) dup2(r5, r5) r6 = inotify_init1(0x0) inotify_rm_watch(r6, 0x0) ioctl$FS_IOC_FSSETXATTR(r6, 0x401c5820, 0x0) r7 = inotify_init1(0x0) r8 = openat$procfs(0xffffffffffffff9c, &(0x7f00000014c0)='/proc/bus/input/devices\x00', 0x0, 0x0) pread64(r8, &(0x7f0000000040)=""/4126, 0x101e, 0x2000) setsockopt$SO_TIMESTAMP(r8, 0x1, 0x23, &(0x7f0000000100)=0x4, 0x4) r9 = inotify_add_watch(r7, &(0x7f0000000040)='.\x00', 0x0) inotify_rm_watch(r7, r9) syz_io_uring_submit(r4, r2, &(0x7f0000000000)=@IORING_OP_TEE={0x21, 0x4, 0x0, @fd=r3, 0x0, 0x0, 0x2, 0x2, 0x0, {0x0, 0x0, r7}}, 0x8) io_uring_enter(r0, 0x76d3, 0x0, 0x0, 0x0, 0x0) 05:39:54 executing program 6: r0 = socket$inet6_tcp(0xa, 0x1, 0x0) setsockopt$inet6_tcp_int(r0, 0x6, 0x2, &(0x7f0000000080)=0x90, 0x4) bind$inet6(r0, &(0x7f00000000c0)={0xa, 0x4e20, 0x0, @loopback}, 0x1c) connect$inet6(r0, &(0x7f0000000000)={0xa, 0x4e20, 0x0, @empty}, 0x1c) setsockopt$sock_int(r0, 0x1, 0x8, &(0x7f0000002ec0), 0x4) sendmsg$inet6(r0, &(0x7f00000006c0)={0x0, 0x0, &(0x7f0000000540)=[{&(0x7f00000001c0)="cf", 0xfffffdef}], 0x1}, 0x10044001) setsockopt$SO_TIMESTAMP(r0, 0x1, 0x40, &(0x7f0000000280)=0x380, 0x4) recvfrom$inet6(r0, &(0x7f0000001e00)=""/4096, 0x1000, 0xcd08, 0x0, 0x0) (fail_nth: 18) 05:39:54 executing program 2: preadv2(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x2) openat(0xffffffffffffff9c, 0x0, 0x0, 0x0) r0 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x105142, 0x62) r1 = openat(0xffffffffffffff9c, 0x0, 0x0, 0x0) fallocate(r1, 0x0, 0x0, 0x8800000) lseek(0xffffffffffffffff, 0x0, 0x0) openat(0xffffffffffffffff, 0x0, 0x0, 0x20) ioctl$FS_IOC_RESVSP(0xffffffffffffffff, 0x40305828, 0x0) faccessat2(0xffffffffffffffff, 0x0, 0x0, 0x0) openat(0xffffffffffffffff, 0x0, 0x1a340, 0x100) ioctl$LOOP_CTL_REMOVE(0xffffffffffffffff, 0x4c81, 0x0) r2 = fsmount(0xffffffffffffffff, 0x0, 0x0) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r3 = openat(r2, &(0x7f0000000000)='/proc/self/exe\x00', 0x4840, 0x2d) sendfile(r0, r3, 0x0, 0x100000a00) 05:39:54 executing program 1: perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_emit_ethernet(0x3a, &(0x7f0000000000)={@local, @remote, @void, {@ipv4={0x8906, @tcp={{0x6, 0x4, 0x0, 0x0, 0x2c, 0x0, 0x0, 0x0, 0x32, 0x0, @dev, @private=0xa010100, {[@lsrr={0x83, 0x5}]}}, {{0x0, 0x0, 0x41424344, 0x41424344, 0x0, 0x7, 0x5}}}}}}, 0x0) 05:39:54 executing program 0: perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_emit_ethernet(0x3a, &(0x7f0000000000)={@local, @remote, @void, {@ipv4={0x8e0, @tcp={{0x6, 0x4, 0x0, 0x0, 0x2c, 0x0, 0x0, 0x0, 0x32, 0x0, @dev, @private=0xa010100, {[@lsrr={0x83, 0x5}]}}, {{0x0, 0x0, 0x41424344, 0x41424344, 0x0, 0x7, 0x5}}}}}}, 0x0) ioctl$BTRFS_IOC_BALANCE(0xffffffffffffffff, 0x5000940c, 0x0) close(0xffffffffffffffff) 05:39:54 executing program 4: perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_emit_ethernet(0x3a, &(0x7f0000000000)={@local, @remote, @void, {@ipv4={0x800, @tcp={{0x6, 0x4, 0x0, 0x8, 0x2c, 0x0, 0x0, 0x0, 0x32, 0x0, @dev, @private=0xa010100, {[@lsrr={0x83, 0x5}]}}, {{0x0, 0x0, 0x41424344, 0x41424344, 0x0, 0x7, 0x5}}}}}}, 0x0) openat$cgroup_devices(0xffffffffffffffff, 0x0, 0x2, 0x0) close(0xffffffffffffffff) pread64(0xffffffffffffffff, 0x0, 0x0, 0x2000) 05:39:54 executing program 5: r0 = syz_io_uring_setup(0x21, &(0x7f0000000080)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, &(0x7f0000ffd000/0x2000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000180)=0x0, &(0x7f0000000040)=0x0) r3 = eventfd2(0x200000, 0x800) perf_event_open(&(0x7f0000000140)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4303, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) syz_io_uring_submit(r1, r2, &(0x7f0000000340)=@IORING_OP_WRITE={0x17, 0x0, 0x0, @fd=r3, 0x0, 0x0}, 0x0) syz_io_uring_setup(0x3167, &(0x7f0000000380)={0x0, 0x0, 0x20, 0x0, 0x0, 0x0, 0x0}, &(0x7f00000a0000)=nil, &(0x7f0000ffb000/0x4000)=nil, &(0x7f00000002c0)=0x0, &(0x7f0000000280)) r5 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2) dup2(r5, r5) r6 = inotify_init1(0x0) inotify_rm_watch(r6, 0x0) ioctl$FS_IOC_FSSETXATTR(r6, 0x401c5820, 0x0) r7 = inotify_init1(0x0) r8 = openat$procfs(0xffffffffffffff9c, &(0x7f00000014c0)='/proc/bus/input/devices\x00', 0x0, 0x0) pread64(r8, &(0x7f0000000040)=""/4126, 0x101e, 0x2000) setsockopt$SO_TIMESTAMP(r8, 0x1, 0x23, &(0x7f0000000100)=0x4, 0x4) r9 = inotify_add_watch(r7, &(0x7f0000000040)='.\x00', 0x0) inotify_rm_watch(r7, r9) syz_io_uring_submit(r4, r2, &(0x7f0000000000)=@IORING_OP_TEE={0x21, 0x4, 0x0, @fd=r3, 0x0, 0x0, 0x2, 0x2, 0x0, {0x0, 0x0, r7}}, 0x8) io_uring_enter(r0, 0x76d3, 0x0, 0x0, 0x0, 0x0) 05:39:54 executing program 1: perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_emit_ethernet(0x3a, &(0x7f0000000000)={@local, @remote, @void, {@ipv4={0x800, @tcp={{0x4, 0x4, 0x0, 0x0, 0x2c, 0x0, 0x0, 0x0, 0x32, 0x0, @dev, @private=0xa010100, {[@lsrr={0x83, 0x5}]}}, {{0x0, 0x0, 0x41424344, 0x41424344, 0x0, 0x7, 0x5}}}}}}, 0x0) 05:39:54 executing program 3: r0 = perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x0, 0x3}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) pread64(0xffffffffffffffff, 0x0, 0x7ffffffff000, 0xf0ff1f00000000) bind$inet6(0xffffffffffffffff, &(0x7f0000000040)={0xa, 0x4e23, 0x0, @remote, 0xffff}, 0x1c) r1 = socket$netlink(0x10, 0x3, 0x0) sendmsg$nl_generic(0xffffffffffffffff, 0x0, 0x41) setsockopt$netlink_NETLINK_BROADCAST_ERROR(r1, 0x10e, 0x4, &(0x7f00000000c0)=0x1000, 0x4) sendmsg$nl_generic(r1, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000100)=ANY=[@ANYBLOB="28000000100001000000000000000000000000000500000024386a562b500000000c00008008000d00ac141400"], 0x28}}, 0x0) chdir(&(0x7f00000001c0)='./file0\x00') r2 = syz_open_dev$mouse(&(0x7f0000000400), 0x7fffffff, 0x2d0401) sendmsg$NL80211_CMD_ADD_NAN_FUNCTION(r2, &(0x7f0000000500)={&(0x7f0000000440)={0x10, 0x0, 0x0, 0x10}, 0xc, &(0x7f00000004c0)={&(0x7f00000002c0)={0x20, 0x0, 0x100, 0x70bd2b, 0x25dfdbfd, {{}, {@void, @val={0xc, 0x99, {0x3, 0x1b}}}}}, 0x20}, 0x1, 0x0, 0x0, 0x95}, 0x40000) ioctl$FICLONE(r2, 0x40049409, r0) r3 = open$dir(&(0x7f0000000000)='.\x00', 0x0, 0x0) perf_event_open(&(0x7f0000001d80)={0x6, 0x80, 0x0, 0x0, 0x0, 0x0, 0x4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffd, 0x0, @perf_bp={0x0, 0xffffffff81000000}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffd}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r4 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000040)='/proc/crypto\x00', 0x0, 0x0) r5 = openat2(r3, &(0x7f0000000180)='./file0\x00', &(0x7f0000000200)={0x800, 0x1b9}, 0x18) setsockopt$SO_TIMESTAMPING(r5, 0x1, 0x25, &(0x7f0000000240)=0x7100, 0x4) pread64(r4, &(0x7f00000010c0)=""/4088, 0xff8, 0x0) writev(0xffffffffffffffff, &(0x7f00000003c0)=[{&(0x7f0000000000)="0000abe02400030021206cda3b5e5672b89aeddb2a535fbd0706006dff0043a9d7cceb232fb81bf74ebdd05b76", 0x2d}, {&(0x7f0000000680)="7fd41c04550300020000000000000000010046e92ed2616f72657d044129471d4fd47924fd0900e09e0068deec02", 0x2e}], 0x2) 05:39:54 executing program 0: perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_emit_ethernet(0x3a, &(0x7f0000000000)={@local, @remote, @void, {@ipv4={0x4305, @tcp={{0x6, 0x4, 0x0, 0x0, 0x2c, 0x0, 0x0, 0x0, 0x32, 0x0, @dev, @private=0xa010100, {[@lsrr={0x83, 0x5}]}}, {{0x0, 0x0, 0x41424344, 0x41424344, 0x0, 0x7, 0x5}}}}}}, 0x0) ioctl$BTRFS_IOC_BALANCE(0xffffffffffffffff, 0x5000940c, 0x0) close(0xffffffffffffffff) 05:39:54 executing program 7: r0 = openat(0xffffffffffffff9c, &(0x7f0000000280)='./file0\x00', 0x0, 0x0) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0xe28, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) ioctl$AUTOFS_DEV_IOCTL_CLOSEMOUNT(0xffffffffffffffff, 0xc0189375, 0x0) ioctl$sock_inet_SIOCDARP(0xffffffffffffffff, 0x8953, 0x0) connect$inet(0xffffffffffffffff, 0x0, 0x0) r1 = syz_open_procfs(0x0, &(0x7f0000000040)='net/protocols\x00') preadv(r1, &(0x7f0000001480)=[{&(0x7f0000001300)=""/156, 0x9c}], 0x1, 0xfff, 0x0) epoll_create(0x6) perf_event_open(&(0x7f0000001d80)={0x4, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0xde, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f0000000180), 0x5}, 0x0, 0x3, 0x100, 0x6}, 0x0, 0xffffffdfffffffff, 0xffffffffffffffff, 0x0) r2 = creat(&(0x7f0000000040)='./file0\x00', 0x0) dup(0xffffffffffffffff) pwrite64(r0, &(0x7f0000000340), 0x0, 0x0) flock(r0, 0x1) openat(r2, &(0x7f00000001c0)='./file1/file0\x00', 0x4000, 0x0) ioctl$AUTOFS_DEV_IOCTL_READY(0xffffffffffffffff, 0xc0189376, &(0x7f0000000300)=ANY=[@ANYBLOB="01000000f8f3b392c2a266f31949b65b52f9c10abd2f9d64815f0e48c334e66813e6d00ef4c1df1d255db9eb176a0e0d694a4e2df9e832ebdcee378ff959fad7fb76b27672af754018a8222140bb03000000aa3f17a315533535fb5b16c7939e1bb9acb898d77261559f8ab38fb12338ad7c60b8eeb350c2b74a8ac8722f1cb1", @ANYRES32, @ANYBLOB="ffffff7f000000002e2f66696c653000"]) r3 = openat(0xffffffffffffff9c, &(0x7f0000000000)='./file1\x00', 0x0, 0x7d) writev(0xffffffffffffffff, &(0x7f00000000c0)=[{&(0x7f0000000200)="af", 0x1}], 0x1) accept4$unix(r3, &(0x7f0000000200)=@abs, &(0x7f00000002c0)=0x6e, 0x0) ioctl$FS_IOC_GETFSMAP(r2, 0xc0c0583b, &(0x7f0000000080)=ANY=[@ANYBLOB="00000000fffffdfd020100000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000697d0000000000000000000000000000000000000000000000000000000000000000000000080000000000000000001f0000000400"/256]) timerfd_create(0x8, 0x0) 05:39:54 executing program 4: perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_emit_ethernet(0x3a, &(0x7f0000000000)={@local, @remote, @void, {@ipv4={0x800, @tcp={{0x6, 0x4, 0x0, 0xa, 0x2c, 0x0, 0x0, 0x0, 0x32, 0x0, @dev, @private=0xa010100, {[@lsrr={0x83, 0x5}]}}, {{0x0, 0x0, 0x41424344, 0x41424344, 0x0, 0x7, 0x5}}}}}}, 0x0) openat$cgroup_devices(0xffffffffffffffff, 0x0, 0x2, 0x0) close(0xffffffffffffffff) pread64(0xffffffffffffffff, 0x0, 0x0, 0x2000) [ 2901.791570] netlink: 8 bytes leftover after parsing attributes in process `syz-executor.3'. [ 2901.813677] FAULT_INJECTION: forcing a failure. [ 2901.813677] name failslab, interval 1, probability 0, space 0, times 0 [ 2901.815522] CPU: 1 PID: 12778 Comm: syz-executor.6 Not tainted 5.10.204 #1 [ 2901.816544] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 2901.817770] Call Trace: [ 2901.818186] dump_stack+0x107/0x167 [ 2901.818732] should_fail.cold+0x5/0xa [ 2901.819304] ? create_object.isra.0+0x3a/0xa20 [ 2901.819973] should_failslab+0x5/0x20 [ 2901.820545] kmem_cache_alloc+0x5b/0x310 [ 2901.821154] create_object.isra.0+0x3a/0xa20 [ 2901.821788] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 2901.822575] kmem_cache_alloc_node+0x169/0x330 [ 2901.823249] __alloc_skb+0x6d/0x5b0 [ 2901.823783] tcp_collapse+0x42c/0xf20 [ 2901.824353] ? tcp_queue_rcv+0x7c0/0x7c0 [ 2901.824946] ? tcp_xmit_retransmit_queue+0x57/0x70 [ 2901.825659] ? tcp_xmit_recovery+0x86/0x180 [ 2901.826295] ? tcp_ack+0xeef/0x5690 [ 2901.826828] tcp_try_rmem_schedule+0xa6c/0x1690 [ 2901.827523] tcp_data_queue+0x16ba/0x47f0 [ 2901.828155] ? tcp_data_ready+0x500/0x500 [ 2901.828772] ? tcp_urg.part.0+0x157/0x2e0 [ 2901.829384] ? tcp_try_keep_open+0x2f0/0x2f0 [ 2901.830043] ? tcp_validate_incoming+0x431/0x16a0 [ 2901.830747] ? tcp_check_urg.isra.0+0x1db/0x720 [ 2901.831428] tcp_rcv_established+0x868/0x1e30 [ 2901.832108] ? tcp_check_space+0x6c0/0x6c0 [ 2901.832739] tcp_v6_do_rcv+0x7b3/0x1520 [ 2901.833325] __release_sock+0x139/0x3b0 [ 2901.833924] release_sock+0x54/0x1b0 [ 2901.834472] sk_wait_data+0x1a7/0x4d0 [ 2901.835035] ? sock_set_mark+0x130/0x130 [ 2901.835616] ? prepare_to_wait_exclusive+0x2a0/0x2a0 [ 2901.836342] ? tcp_mstamp_refresh+0x12/0xa0 [ 2901.836958] ? sock_rfree+0x107/0x170 [ 2901.837503] ? __sanitizer_cov_trace_switch+0x45/0x80 [ 2901.838272] tcp_recvmsg+0x17b2/0x2930 [ 2901.838845] ? tcp_splice_read+0x8c0/0x8c0 [ 2901.839459] ? sock_has_perm+0x1ea/0x280 [ 2901.840050] ? perf_trace_lock+0xac/0x490 [ 2901.840643] ? tcp_splice_read+0x8c0/0x8c0 [ 2901.841250] inet6_recvmsg+0x13b/0x6e0 [ 2901.841809] ? inet6_bind+0x120/0x120 [ 2901.842378] ? security_socket_recvmsg+0x95/0xc0 [ 2901.843051] ? inet6_bind+0x120/0x120 [ 2901.843598] sock_recvmsg+0xff/0x180 [ 2901.844131] __sys_recvfrom+0x1be/0x2f0 [ 2901.844697] ? __ia32_sys_send+0x100/0x100 [ 2901.845300] ? lock_downgrade+0x6d0/0x6d0 [ 2901.845930] ? wait_for_completion_io+0x270/0x270 [ 2901.846617] ? rcu_read_lock_any_held+0x75/0xa0 [ 2901.847286] ? vfs_write+0x354/0xa70 [ 2901.847828] ? fput_many+0x2f/0x1a0 [ 2901.848358] ? ksys_write+0x1a9/0x260 [ 2901.848908] ? __ia32_sys_read+0xb0/0xb0 [ 2901.849496] __x64_sys_recvfrom+0xdd/0x1b0 [ 2901.850127] ? syscall_enter_from_user_mode+0x1d/0x50 [ 2901.850874] do_syscall_64+0x33/0x40 [ 2901.851401] entry_SYSCALL_64_after_hwframe+0x62/0xc7 [ 2901.852138] RIP: 0033:0x7f7d1addbb19 [ 2901.852675] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 2901.855307] RSP: 002b:00007f7d18330188 EFLAGS: 00000246 ORIG_RAX: 000000000000002d [ 2901.856381] RAX: ffffffffffffffda RBX: 00007f7d1aeef020 RCX: 00007f7d1addbb19 [ 2901.857401] RDX: 0000000000001000 RSI: 0000000020001e00 RDI: 0000000000000003 [ 2901.858429] RBP: 00007f7d183301d0 R08: 0000000000000000 R09: 0000000000000000 [ 2901.859454] R10: 000000000000cd08 R11: 0000000000000246 R12: 0000000000000002 [ 2901.860476] R13: 00007ffe0ac926cf R14: 00007f7d18330300 R15: 0000000000022000 05:40:08 executing program 6: r0 = socket$inet6_tcp(0xa, 0x1, 0x0) setsockopt$inet6_tcp_int(r0, 0x6, 0x2, &(0x7f0000000080)=0x90, 0x4) bind$inet6(r0, &(0x7f00000000c0)={0xa, 0x4e20, 0x0, @loopback}, 0x1c) connect$inet6(r0, &(0x7f0000000000)={0xa, 0x4e20, 0x0, @empty}, 0x1c) setsockopt$sock_int(r0, 0x1, 0x8, &(0x7f0000002ec0), 0x4) sendmsg$inet6(r0, &(0x7f00000006c0)={0x0, 0x0, &(0x7f0000000540)=[{&(0x7f00000001c0)="cf", 0xfffffdef}], 0x1}, 0x10044001) setsockopt$SO_TIMESTAMP(r0, 0x1, 0x40, &(0x7f0000000280)=0x380, 0x4) recvfrom$inet6(r0, &(0x7f0000001e00)=""/4096, 0x1000, 0xcd08, 0x0, 0x0) (fail_nth: 19) 05:40:08 executing program 2: preadv2(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x2) openat(0xffffffffffffff9c, 0x0, 0x0, 0x0) r0 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x105142, 0x62) r1 = openat(0xffffffffffffff9c, 0x0, 0x0, 0x0) fallocate(r1, 0x0, 0x0, 0x8800000) lseek(0xffffffffffffffff, 0x0, 0x0) openat(0xffffffffffffffff, 0x0, 0x0, 0x20) ioctl$FS_IOC_RESVSP(0xffffffffffffffff, 0x40305828, 0x0) faccessat2(0xffffffffffffffff, 0x0, 0x0, 0x0) openat(0xffffffffffffffff, 0x0, 0x1a340, 0x100) ioctl$LOOP_CTL_REMOVE(0xffffffffffffffff, 0x4c81, 0x0) r2 = fsmount(0xffffffffffffffff, 0x0, 0x0) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r3 = openat(r2, &(0x7f0000000000)='/proc/self/exe\x00', 0x4840, 0x2d) sendfile(r0, r3, 0x0, 0x100000b00) 05:40:08 executing program 5: perf_event_open(&(0x7f0000000640)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r0 = syz_open_dev$tty1(0xc, 0x4, 0x4) add_key$keyring(&(0x7f0000000040), &(0x7f0000000080)={'syz', 0x3}, 0x0, 0x0, 0xfffffffffffffffd) r1 = add_key$keyring(&(0x7f00000000c0), &(0x7f0000000180)={'syz', 0x3}, 0x0, 0x0, 0xfffffffffffffffc) add_key$keyring(&(0x7f0000000040), &(0x7f0000000100)={'syz', 0x0}, 0x0, 0x0, r1) ioctl$KDGKBLED(r0, 0x4b64, &(0x7f0000000140)) r2 = add_key$keyring(&(0x7f0000000040), &(0x7f0000000080)={'syz', 0x3}, 0x0, 0x0, 0xfffffffffffffffd) r3 = add_key$keyring(&(0x7f00000000c0), &(0x7f0000000180)={'syz', 0x3}, 0x0, 0x0, 0xfffffffffffffffc) keyctl$KEYCTL_MOVE(0x1e, r3, 0xfffffffffffffffc, r2, 0x0) add_key(&(0x7f00000001c0)='user\x00', &(0x7f0000000200)={'syz', 0x1}, 0x0, 0x0, r2) ioctl$PIO_UNIMAP(r0, 0x4b67, &(0x7f00000000c0)={0x8, &(0x7f0000000080)=[{0x7, 0x3}, {0x495, 0x6}, {0x0, 0xb6}, {0x3, 0xd6}, {0x100}, {0x7, 0x7}, {0x0, 0x6}, {0x400}]}) unshare(0x48020200) 05:40:08 executing program 0: perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_emit_ethernet(0x3a, &(0x7f0000000000)={@local, @remote, @void, {@ipv4={0x6558, @tcp={{0x6, 0x4, 0x0, 0x0, 0x2c, 0x0, 0x0, 0x0, 0x32, 0x0, @dev, @private=0xa010100, {[@lsrr={0x83, 0x5}]}}, {{0x0, 0x0, 0x41424344, 0x41424344, 0x0, 0x7, 0x5}}}}}}, 0x0) ioctl$BTRFS_IOC_BALANCE(0xffffffffffffffff, 0x5000940c, 0x0) close(0xffffffffffffffff) [ 2916.276254] netlink: 8 bytes leftover after parsing attributes in process `syz-executor.3'. 05:40:08 executing program 1: perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_emit_ethernet(0x3a, &(0x7f0000000000)={@local, @remote, @void, {@ipv4={0x800, @tcp={{0x5, 0x4, 0x0, 0x0, 0x2c, 0x0, 0x0, 0x0, 0x32, 0x0, @dev, @private=0xa010100, {[@lsrr={0x83, 0x5}]}}, {{0x0, 0x0, 0x41424344, 0x41424344, 0x0, 0x7, 0x5}}}}}}, 0x0) 05:40:08 executing program 4: perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_emit_ethernet(0x3a, &(0x7f0000000000)={@local, @remote, @void, {@ipv4={0x800, @tcp={{0x6, 0x4, 0x0, 0xe, 0x2c, 0x0, 0x0, 0x0, 0x32, 0x0, @dev, @private=0xa010100, {[@lsrr={0x83, 0x5}]}}, {{0x0, 0x0, 0x41424344, 0x41424344, 0x0, 0x7, 0x5}}}}}}, 0x0) openat$cgroup_devices(0xffffffffffffffff, 0x0, 0x2, 0x0) close(0xffffffffffffffff) pread64(0xffffffffffffffff, 0x0, 0x0, 0x2000) 05:40:08 executing program 3: r0 = perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x0, 0x3}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) pread64(0xffffffffffffffff, 0x0, 0x7ffffffff000, 0xf0ff1f00000000) bind$inet6(0xffffffffffffffff, &(0x7f0000000040)={0xa, 0x4e23, 0x0, @remote, 0xffff}, 0x1c) r1 = socket$netlink(0x10, 0x3, 0x0) sendmsg$nl_generic(0xffffffffffffffff, 0x0, 0x41) setsockopt$netlink_NETLINK_BROADCAST_ERROR(r1, 0x10e, 0x4, &(0x7f00000000c0)=0x1000, 0x4) sendmsg$nl_generic(r1, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000100)=ANY=[@ANYBLOB="28000000100001000000000000000000000000000500000024386a562b500000000c00008008000d00ac141400"], 0x28}}, 0x0) chdir(&(0x7f00000001c0)='./file0\x00') r2 = syz_open_dev$mouse(&(0x7f0000000400), 0x7fffffff, 0x2d0401) sendmsg$NL80211_CMD_ADD_NAN_FUNCTION(r2, &(0x7f0000000500)={&(0x7f0000000440)={0x10, 0x0, 0x0, 0x10}, 0xc, &(0x7f00000004c0)={&(0x7f00000002c0)={0x20, 0x0, 0x100, 0x70bd2b, 0x25dfdbfd, {{}, {@void, @val={0xc, 0x99, {0x3, 0x1b}}}}}, 0x20}, 0x1, 0x0, 0x0, 0x95}, 0x40000) ioctl$FICLONE(r2, 0x40049409, r0) r3 = open$dir(&(0x7f0000000000)='.\x00', 0x0, 0x0) perf_event_open(&(0x7f0000001d80)={0x6, 0x80, 0x0, 0x0, 0x0, 0x0, 0x4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffd, 0x0, @perf_bp={0x0, 0xffffffff81000000}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffd}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r4 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000040)='/proc/crypto\x00', 0x0, 0x0) r5 = openat2(r3, &(0x7f0000000180)='./file0\x00', &(0x7f0000000200)={0x800, 0x1b9}, 0x18) setsockopt$SO_TIMESTAMPING(r5, 0x1, 0x25, &(0x7f0000000240)=0x7100, 0x4) pread64(r4, &(0x7f00000010c0)=""/4088, 0xff8, 0x0) writev(0xffffffffffffffff, &(0x7f00000003c0)=[{&(0x7f0000000000)="0000abe02400030021206cda3b5e5672b89aeddb2a535fbd0706006dff0043a9d7cceb232fb81bf74ebdd05b76", 0x2d}, {&(0x7f0000000680)="7fd41c04550300020000000000000000010046e92ed2616f72657d044129471d4fd47924fd0900e09e0068deec02", 0x2e}], 0x2) 05:40:08 executing program 7: r0 = syz_mount_image$ext4(&(0x7f0000000100)='ext4\x00', &(0x7f0000000140)='./file0\x00', 0x1000, 0x5, &(0x7f00000013c0)=[{&(0x7f0000000200)="a59e49610d2beec7e17edac5d99b48b3b8ca7505461c8c2b5c0281d1c0468e49b9dff4834e1e39f32fbc", 0x2a, 0x800}, {&(0x7f0000000240)="e74fd0ec722b67a70ae5c4849b3f94752df52455a8f1b6200bc748c5534efdefa6d64ded765d138342006d62", 0x2c, 0xffffffffffffffa4}, {&(0x7f00000002c0)="53d9519359e9bb95d3176a53b3231d0765e5d4736d21d9a2c5164cbf426138e908eea29c772a5da85eee3015cc888b980c78b44773cce35c61e21f5341d38af33b94b2072776ec3079fab9a8229e98a1356896eabdbe1277b2bde9e5b6f8621a11321f3eb65235f8afc9c034b2b6176a37e641083d9eb659f7c262ff973892efe9f5d57e5772ab226151e071", 0x8c, 0x863}, {&(0x7f0000000380)="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", 0x1000, 0x15e0}, {&(0x7f0000001380)="845fc200605b10b00810c425acfc137a3f849f9b4af66037a483a17bbe4056c4a75c9ed6", 0x24, 0x80000001}], 0x100000, &(0x7f0000001440)={[{@abort}, {@commit={'commit', 0x3d, 0x7c}}], [{@audit}, {@fowner_eq={'fowner', 0x3d, 0xffffffffffffffff}}, {@permit_directio}, {@obj_user={'obj_user', 0x3d, 'fscrypt:'}}, {@smackfsdef={'smackfsdef', 0x3d, '!.,:!@(#,'}}, {@obj_role}, {@fsname={'fsname', 0x3d, '\x00'}}, {@hash}, {@dont_appraise}]}) openat(r0, &(0x7f0000001500)='./file0\x00', 0x80, 0x10b) perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r1 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a) bind$inet6(r1, &(0x7f0000000280)={0xa, 0x0, 0x0, @mcast1, 0xfffffffd}, 0x1c) syz_emit_ethernet(0x5e, &(0x7f0000001580)=ANY=[@ANYBLOB="07af43ba2470a62475dec40200100000000000283a00fe8000000000000000000000000000aafe800000000800007af4b8abf52294b8052cd06e37935741a6cc0c000000000000000000000000ffff00000000fe887ca5a29ab0da317eebd54e9a85f081000000000000000000002000000100000000"], 0x0) perf_event_open(&(0x7f0000001d80)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0, 0xffffffff81000000}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2c}, 0x0, 0x0, 0xffffffffffffffff, 0x0) clone3(0x0, 0x0) openat$zero(0xffffffffffffff9c, 0x0, 0x90101, 0x0) writev(0xffffffffffffffff, &(0x7f0000002b80), 0x0) connect$inet6(r1, &(0x7f0000001540)={0xa, 0x4e21, 0x0, @remote, 0x9}, 0x1c) r2 = add_key$fscrypt_v1(&(0x7f0000000000), &(0x7f0000000040)={'fscrypt:', @desc1}, &(0x7f0000000080)={0x0, "6ae3a2279441c8bccb61a522f5e4e661ce0cb09305967cbd5b3e03bcee0579af6f2b79a27a599a8947acb47fc038d0c2a8bf68feedeeb2fcfcb3f785bb85aec9"}, 0x78bd, 0xfffffffffffffffd) stat(&(0x7f0000001cc0)='.\x00', &(0x7f0000001c00)={0x0, 0x0, 0x0, 0x0, 0x0}) keyctl$chown(0x4, r2, r3, 0x0) fsetxattr$security_capability(r1, &(0x7f0000000000), &(0x7f00000000c0)=@v3={0x3000000, [{0x6, 0xc0}, {0x1d55, 0x180}], r3}, 0x18, 0x1) 05:40:08 executing program 4: perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_emit_ethernet(0x3a, &(0x7f0000000000)={@local, @remote, @void, {@ipv4={0x800, @tcp={{0x6, 0x4, 0x0, 0x11, 0x2c, 0x0, 0x0, 0x0, 0x32, 0x0, @dev, @private=0xa010100, {[@lsrr={0x83, 0x5}]}}, {{0x0, 0x0, 0x41424344, 0x41424344, 0x0, 0x7, 0x5}}}}}}, 0x0) openat$cgroup_devices(0xffffffffffffffff, 0x0, 0x2, 0x0) close(0xffffffffffffffff) pread64(0xffffffffffffffff, 0x0, 0x0, 0x2000) 05:40:08 executing program 1: perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_emit_ethernet(0x3a, &(0x7f0000000000)={@local, @remote, @void, {@ipv4={0x800, @tcp={{0x6, 0x2, 0x0, 0x0, 0x2c, 0x0, 0x0, 0x0, 0x32, 0x0, @dev, @private=0xa010100, {[@lsrr={0x83, 0x5}]}}, {{0x0, 0x0, 0x41424344, 0x41424344, 0x0, 0x7, 0x5}}}}}}, 0x0) 05:40:09 executing program 0: perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_emit_ethernet(0x3a, &(0x7f0000000000)={@local, @remote, @void, {@ipv4={0x8035, @tcp={{0x6, 0x4, 0x0, 0x0, 0x2c, 0x0, 0x0, 0x0, 0x32, 0x0, @dev, @private=0xa010100, {[@lsrr={0x83, 0x5}]}}, {{0x0, 0x0, 0x41424344, 0x41424344, 0x0, 0x7, 0x5}}}}}}, 0x0) ioctl$BTRFS_IOC_BALANCE(0xffffffffffffffff, 0x5000940c, 0x0) close(0xffffffffffffffff) 05:40:09 executing program 3: r0 = perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x0, 0x3}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) pread64(0xffffffffffffffff, 0x0, 0x7ffffffff000, 0xf0ff1f00000000) bind$inet6(0xffffffffffffffff, &(0x7f0000000040)={0xa, 0x4e23, 0x0, @remote, 0xffff}, 0x1c) r1 = socket$netlink(0x10, 0x3, 0x0) sendmsg$nl_generic(0xffffffffffffffff, 0x0, 0x41) setsockopt$netlink_NETLINK_BROADCAST_ERROR(r1, 0x10e, 0x4, &(0x7f00000000c0)=0x1000, 0x4) sendmsg$nl_generic(r1, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000100)=ANY=[@ANYBLOB="28000000100001000000000000000000000000000500000024386a562b500000000c00008008000d00ac141400"], 0x28}}, 0x0) (fail_nth: 1) chdir(&(0x7f00000001c0)='./file0\x00') r2 = syz_open_dev$mouse(&(0x7f0000000400), 0x7fffffff, 0x2d0401) sendmsg$NL80211_CMD_ADD_NAN_FUNCTION(r2, &(0x7f0000000500)={&(0x7f0000000440)={0x10, 0x0, 0x0, 0x10}, 0xc, &(0x7f00000004c0)={&(0x7f00000002c0)={0x20, 0x0, 0x100, 0x70bd2b, 0x25dfdbfd, {{}, {@void, @val={0xc, 0x99, {0x3, 0x1b}}}}}, 0x20}, 0x1, 0x0, 0x0, 0x95}, 0x40000) ioctl$FICLONE(r2, 0x40049409, r0) r3 = open$dir(&(0x7f0000000000)='.\x00', 0x0, 0x0) perf_event_open(&(0x7f0000001d80)={0x6, 0x80, 0x0, 0x0, 0x0, 0x0, 0x4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffd, 0x0, @perf_bp={0x0, 0xffffffff81000000}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffd}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r4 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000040)='/proc/crypto\x00', 0x0, 0x0) r5 = openat2(r3, &(0x7f0000000180)='./file0\x00', &(0x7f0000000200)={0x800, 0x1b9}, 0x18) setsockopt$SO_TIMESTAMPING(r5, 0x1, 0x25, &(0x7f0000000240)=0x7100, 0x4) pread64(r4, &(0x7f00000010c0)=""/4088, 0xff8, 0x0) writev(0xffffffffffffffff, &(0x7f00000003c0)=[{&(0x7f0000000000)="0000abe02400030021206cda3b5e5672b89aeddb2a535fbd0706006dff0043a9d7cceb232fb81bf74ebdd05b7677", 0x2e}, {&(0x7f0000000680)="7fd41c04550300020000000000000000010046e92ed2616f72657d044129471d4fd47924fd0900e09e0068deec02", 0x2e}], 0x2) [ 2916.522687] FAULT_INJECTION: forcing a failure. [ 2916.522687] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 2916.524098] CPU: 1 PID: 12843 Comm: syz-executor.3 Not tainted 5.10.204 #1 [ 2916.524857] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 2916.525742] Call Trace: [ 2916.526053] dump_stack+0x107/0x167 [ 2916.526451] should_fail.cold+0x5/0xa [ 2916.526867] _copy_from_user+0x2e/0x1b0 [ 2916.527305] __copy_msghdr_from_user+0x91/0x4b0 [ 2916.527795] ? __ia32_sys_shutdown+0x80/0x80 [ 2916.528288] ? __lock_acquire+0xbb1/0x5b00 [ 2916.528746] sendmsg_copy_msghdr+0xa1/0x160 [ 2916.529221] ? do_recvmmsg+0x6d0/0x6d0 [ 2916.529642] ? perf_trace_lock+0xac/0x490 [ 2916.530110] ? SOFTIRQ_verbose+0x10/0x10 [ 2916.530544] ? __lockdep_reset_lock+0x180/0x180 [ 2916.531052] ___sys_sendmsg+0xc6/0x170 [ 2916.531469] ? sendmsg_copy_msghdr+0x160/0x160 [ 2916.531966] ? __fget_files+0x26d/0x4c0 [ 2916.532392] ? lock_downgrade+0x6d0/0x6d0 [ 2916.532824] ? find_held_lock+0x2c/0x110 [ 2916.533267] ? clockevents_program_event+0x14b/0x360 [ 2916.533801] ? __fget_files+0x296/0x4c0 [ 2916.534249] ? __fget_light+0xea/0x290 [ 2916.534680] __sys_sendmsg+0xe5/0x1b0 [ 2916.535092] ? __sys_sendmsg_sock+0x40/0x40 [ 2916.535576] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 2916.536131] ? syscall_enter_from_user_mode+0x1d/0x50 [ 2916.536679] ? trace_hardirqs_on+0x5b/0x180 [ 2916.537155] do_syscall_64+0x33/0x40 [ 2916.537554] entry_SYSCALL_64_after_hwframe+0x62/0xc7 [ 2916.538118] RIP: 0033:0x7f2cef979b19 [ 2916.538529] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 2916.540478] RSP: 002b:00007f2ceceef188 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 2916.541284] RAX: ffffffffffffffda RBX: 00007f2cefa8cf60 RCX: 00007f2cef979b19 [ 2916.542043] RDX: 0000000000000000 RSI: 0000000020000140 RDI: 0000000000000004 [ 2916.542810] RBP: 00007f2ceceef1d0 R08: 0000000000000000 R09: 0000000000000000 [ 2916.543570] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 2916.544326] R13: 00007ffcfa2c816f R14: 00007f2ceceef300 R15: 0000000000022000 05:40:09 executing program 7: syz_80211_join_ibss(&(0x7f0000000040)='wlan1\x00', 0x0, 0x0, 0x0) r0 = fork() tkill(0x0, 0x0) r1 = perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x2, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, @perf_config_ext={0x6, 0x40}, 0x0, 0x0, 0x100, 0x5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x101}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x1) sendmsg$nl_generic(0xffffffffffffffff, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000240)={&(0x7f0000000040)=ANY=[@ANYBLOB="2c0000002804210c0000000000000000000000000400000008000000", @ANYRES32, @ANYBLOB='\f\x00'/12], 0x2c}}, 0x0) kcmp(r0, r0, 0x4, 0xffffffffffffffff, r1) set_mempolicy(0x2, &(0x7f0000000100)=0x3, 0x4) kcmp(0x0, r0, 0x4, 0xffffffffffffffff, r1) r2 = fork() ptrace$setopts(0x4206, r2, 0x0, 0x0) ptrace(0x8, r2) ioctl$SNDRV_SEQ_IOCTL_PVERSION(0xffffffffffffffff, 0x80045300, &(0x7f0000000400)) r3 = perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4, @perf_config_ext={0x1}, 0x0, 0x0, 0x101, 0x0, 0x0, 0x2, 0x2}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r4 = fcntl$getown(r3, 0x9) tkill(r2, 0x3) perf_event_open(&(0x7f0000001d80)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x90100, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, @perf_config_ext, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xff}, r4, 0x0, 0xffffffffffffffff, 0x0) perf_event_open(&(0x7f0000001d80)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, @perf_config_ext={0xffffffffffffff00, 0x39}, 0x2112, 0x0, 0x0, 0x0, 0x0, 0x20}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r5 = getpgrp(r0) syz_open_procfs(r5, &(0x7f0000000140)='net/rt_acct\x00') 05:40:09 executing program 4: perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_emit_ethernet(0x3a, &(0x7f0000000000)={@local, @remote, @void, {@ipv4={0x800, @tcp={{0x6, 0x4, 0x0, 0x2c, 0x2c, 0x0, 0x0, 0x0, 0x32, 0x0, @dev, @private=0xa010100, {[@lsrr={0x83, 0x5}]}}, {{0x0, 0x0, 0x41424344, 0x41424344, 0x0, 0x7, 0x5}}}}}}, 0x0) openat$cgroup_devices(0xffffffffffffffff, 0x0, 0x2, 0x0) close(0xffffffffffffffff) pread64(0xffffffffffffffff, 0x0, 0x0, 0x2000) 05:40:09 executing program 2: preadv2(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x2) openat(0xffffffffffffff9c, 0x0, 0x0, 0x0) r0 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x105142, 0x62) r1 = openat(0xffffffffffffff9c, 0x0, 0x0, 0x0) fallocate(r1, 0x0, 0x0, 0x8800000) lseek(0xffffffffffffffff, 0x0, 0x0) openat(0xffffffffffffffff, 0x0, 0x0, 0x20) ioctl$FS_IOC_RESVSP(0xffffffffffffffff, 0x40305828, 0x0) faccessat2(0xffffffffffffffff, 0x0, 0x0, 0x0) openat(0xffffffffffffffff, 0x0, 0x1a340, 0x100) ioctl$LOOP_CTL_REMOVE(0xffffffffffffffff, 0x4c81, 0x0) r2 = fsmount(0xffffffffffffffff, 0x0, 0x0) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r3 = openat(r2, &(0x7f0000000000)='/proc/self/exe\x00', 0x4840, 0x2d) sendfile(r0, r3, 0x0, 0x100000c00) [ 2916.593379] FAULT_INJECTION: forcing a failure. [ 2916.593379] name failslab, interval 1, probability 0, space 0, times 0 [ 2916.595730] CPU: 0 PID: 12835 Comm: syz-executor.6 Not tainted 5.10.204 #1 [ 2916.597140] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 2916.598838] Call Trace: [ 2916.599389] dump_stack+0x107/0x167 [ 2916.600157] should_fail.cold+0x5/0xa [ 2916.600943] should_failslab+0x5/0x20 [ 2916.601715] __kmalloc_node_track_caller+0x74/0x3b0 [ 2916.602750] ? tcp_collapse+0x42c/0xf20 [ 2916.603567] __alloc_skb+0xb1/0x5b0 [ 2916.604318] tcp_collapse+0x42c/0xf20 [ 2916.605102] ? tcp_queue_rcv+0x7c0/0x7c0 [ 2916.605940] ? tcp_xmit_retransmit_queue+0x57/0x70 [ 2916.606936] ? tcp_xmit_recovery+0x86/0x180 [ 2916.607812] ? tcp_ack+0xeef/0x5690 [ 2916.608570] tcp_try_rmem_schedule+0xa6c/0x1690 [ 2916.609617] tcp_data_queue+0x16ba/0x47f0 [ 2916.610511] ? tcp_data_ready+0x500/0x500 [ 2916.611360] ? tcp_urg.part.0+0x157/0x2e0 [ 2916.612200] ? tcp_try_keep_open+0x2f0/0x2f0 [ 2916.613097] ? tcp_validate_incoming+0x431/0x16a0 [ 2916.614082] ? tcp_check_urg.isra.0+0x1db/0x720 [ 2916.615049] tcp_rcv_established+0x868/0x1e30 [ 2916.615978] ? tcp_check_space+0x6c0/0x6c0 [ 2916.616849] tcp_v6_do_rcv+0x7b3/0x1520 [ 2916.617664] __release_sock+0x139/0x3b0 [ 2916.618490] release_sock+0x54/0x1b0 [ 2916.619247] sk_wait_data+0x1a7/0x4d0 [ 2916.620030] ? sock_set_mark+0x130/0x130 [ 2916.620859] ? prepare_to_wait_exclusive+0x2a0/0x2a0 [ 2916.621894] ? tcp_mstamp_refresh+0x12/0xa0 [ 2916.622779] ? sock_rfree+0x107/0x170 [ 2916.623553] ? __sanitizer_cov_trace_switch+0x45/0x80 [ 2916.624599] tcp_recvmsg+0x17b2/0x2930 [ 2916.625418] ? tcp_splice_read+0x8c0/0x8c0 [ 2916.626291] ? sock_has_perm+0x1ea/0x280 [ 2916.627131] ? perf_trace_lock+0xac/0x490 [ 2916.627972] ? tcp_splice_read+0x8c0/0x8c0 [ 2916.628835] inet6_recvmsg+0x13b/0x6e0 [ 2916.629622] ? inet6_bind+0x120/0x120 [ 2916.630428] ? security_socket_recvmsg+0x95/0xc0 [ 2916.631385] ? inet6_bind+0x120/0x120 [ 2916.632157] sock_recvmsg+0xff/0x180 [ 2916.632913] __sys_recvfrom+0x1be/0x2f0 [ 2916.633724] ? __ia32_sys_send+0x100/0x100 [ 2916.634590] ? lock_downgrade+0x6d0/0x6d0 [ 2916.635466] ? wait_for_completion_io+0x270/0x270 [ 2916.636448] ? rcu_read_lock_any_held+0x75/0xa0 [ 2916.637393] ? vfs_write+0x354/0xa70 [ 2916.638171] ? fput_many+0x2f/0x1a0 [ 2916.638918] ? ksys_write+0x1a9/0x260 [ 2916.639687] ? __ia32_sys_read+0xb0/0xb0 [ 2916.640519] __x64_sys_recvfrom+0xdd/0x1b0 [ 2916.641376] ? syscall_enter_from_user_mode+0x1d/0x50 [ 2916.642442] do_syscall_64+0x33/0x40 [ 2916.643201] entry_SYSCALL_64_after_hwframe+0x62/0xc7 [ 2916.644236] RIP: 0033:0x7f7d1addbb19 [ 2916.644991] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 2916.648696] RSP: 002b:00007f7d18330188 EFLAGS: 00000246 ORIG_RAX: 000000000000002d [ 2916.650246] RAX: ffffffffffffffda RBX: 00007f7d1aeef020 RCX: 00007f7d1addbb19 [ 2916.651679] RDX: 0000000000001000 RSI: 0000000020001e00 RDI: 0000000000000003 [ 2916.653111] RBP: 00007f7d183301d0 R08: 0000000000000000 R09: 0000000000000000 [ 2916.654550] R10: 000000000000cd08 R11: 0000000000000246 R12: 0000000000000002 [ 2916.655985] R13: 00007ffe0ac926cf R14: 00007f7d18330300 R15: 0000000000022000 05:40:09 executing program 1: perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_emit_ethernet(0x3a, &(0x7f0000000000)={@local, @remote, @void, {@ipv4={0x800, @tcp={{0x6, 0x3, 0x0, 0x0, 0x2c, 0x0, 0x0, 0x0, 0x32, 0x0, @dev, @private=0xa010100, {[@lsrr={0x83, 0x5}]}}, {{0x0, 0x0, 0x41424344, 0x41424344, 0x0, 0x7, 0x5}}}}}}, 0x0) 05:40:22 executing program 0: perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_emit_ethernet(0x3a, &(0x7f0000000000)={@local, @remote, @void, {@ipv4={0x8100, @tcp={{0x6, 0x4, 0x0, 0x0, 0x2c, 0x0, 0x0, 0x0, 0x32, 0x0, @dev, @private=0xa010100, {[@lsrr={0x83, 0x5}]}}, {{0x0, 0x0, 0x41424344, 0x41424344, 0x0, 0x7, 0x5}}}}}}, 0x0) ioctl$BTRFS_IOC_BALANCE(0xffffffffffffffff, 0x5000940c, 0x0) close(0xffffffffffffffff) 05:40:22 executing program 6: r0 = socket$inet6_tcp(0xa, 0x1, 0x0) setsockopt$inet6_tcp_int(r0, 0x6, 0x2, &(0x7f0000000080)=0x90, 0x4) bind$inet6(r0, &(0x7f00000000c0)={0xa, 0x4e20, 0x0, @loopback}, 0x1c) connect$inet6(r0, &(0x7f0000000000)={0xa, 0x4e20, 0x0, @empty}, 0x1c) setsockopt$sock_int(r0, 0x1, 0x8, &(0x7f0000002ec0), 0x4) sendmsg$inet6(r0, &(0x7f00000006c0)={0x0, 0x0, &(0x7f0000000540)=[{&(0x7f00000001c0)="cf", 0xfffffdef}], 0x1}, 0x10044001) setsockopt$SO_TIMESTAMP(r0, 0x1, 0x40, &(0x7f0000000280)=0x380, 0x4) recvfrom$inet6(r0, &(0x7f0000001e00)=""/4096, 0x1000, 0xcd08, 0x0, 0x0) (fail_nth: 20) 05:40:22 executing program 1: perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_emit_ethernet(0x3a, &(0x7f0000000000)={@local, @remote, @void, {@ipv4={0x800, @tcp={{0x6, 0x5, 0x0, 0x0, 0x2c, 0x0, 0x0, 0x0, 0x32, 0x0, @dev, @private=0xa010100, {[@lsrr={0x83, 0x5}]}}, {{0x0, 0x0, 0x41424344, 0x41424344, 0x0, 0x7, 0x5}}}}}}, 0x0) 05:40:22 executing program 5: r0 = creat(0x0, 0x0) r1 = accept4(0xffffffffffffffff, 0x0, 0x0, 0x80000) r2 = openat(0xffffffffffffffff, &(0x7f0000000000)='./file0\x00', 0x0, 0x0) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x28, 0x9}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) ioctl$sock_SIOCGIFINDEX(0xffffffffffffffff, 0x8933, &(0x7f0000000140)={'syz_tun\x00', 0x0}) sendmsg$ETHTOOL_MSG_EEE_SET(0xffffffffffffffff, &(0x7f0000002800)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000700)=ANY=[@ANYBLOB="e0010000", @ANYRES16, @ANYBLOB="010000000000020050a99e0000080000050c00018008", @ANYRES32=r3, @ANYBLOB="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"/467], 0x1e0}}, 0x0) setsockopt$inet6_mreq(0xffffffffffffffff, 0x29, 0xe, &(0x7f0000000280)={@empty, r3}, 0x14) getsockopt$inet_pktinfo(r2, 0x0, 0x8, &(0x7f00000000c0)={0x0, @remote, @multicast1}, &(0x7f0000000100)=0xc) r5 = socket$nl_xfrm(0x10, 0x3, 0x6) r6 = socket$inet6_udplite(0xa, 0x2, 0x88) r7 = dup(r6) r8 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a) ioctl$sock_SIOCGIFINDEX(r8, 0x8933, &(0x7f0000000140)={'syz_tun\x00', 0x0}) ioctl$sock_inet6_SIOCDIFADDR(r7, 0x8936, &(0x7f0000000080)={@local, 0x78, r9}) ioctl$sock_inet6_SIOCDIFADDR(r7, 0x8916, &(0x7f0000000100)={@mcast1, 0x0, r9}) sendmsg$DCCPDIAG_GETSOCK(0xffffffffffffffff, &(0x7f0000000240)={&(0x7f00000000c0)={0x10, 0x0, 0x0, 0x1000000}, 0xc, &(0x7f0000000100)={&(0x7f0000000b00)=ANY=[@ANYBLOB="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", @ANYRES32=r9, @ANYBLOB="000000000700000003000000010000000b0001008c5d14ca7613a3005457da9d360d1980b21c74216886771b7270c743b4d264a8a369a7f31382476573aade3ae87ab3fd6b571240a835b80fe03294cc4925a521931ebbc2044c5065c5ced00fd51a9a4d6551854bb554ee743d5f45bb3d3607d8815bdf1dcc5fdc89451f186824fef2ee0f259dad8cb174b7c2530be8f2073f8d07aacf7ad95a5def98dbda55c76b125c2daf5228be62dd4a8d95e97bc634bdd7f72966daa751093fd267ecdc5f546bdcf8457e42fecc7e5ab6c8b6eaacdf192f44979e4002bfb94eae3b26c5262de73a21dad440"], 0xac}, 0x1, 0x0, 0x0, 0x10}, 0x0) sendmsg$nl_xfrm(r5, &(0x7f0000002e00)={0x0, 0x0, &(0x7f0000002dc0)={&(0x7f0000000000)=@updsa={0xf0, 0x1a, 0x1, 0x0, 0x0, {{@in=@multicast2, @in=@empty, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, r9, 0xee01}, {@in6=@private2, 0x0, 0x33}, @in=@remote, {0x0, 0x0, 0x0, 0x0, 0x800000000}, {0x0, 0x0, 0x4}, {}, 0x0, 0x0, 0xa}}, 0xf0}}, 0x0) getsockopt$inet6_IPV6_IPSEC_POLICY(r0, 0x29, 0x22, &(0x7f0000000280)={{{@in6=@empty, @in=@private, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}}, {{@in6=@mcast1}, 0x0, @in6=@private0}}, &(0x7f0000000140)=0xe8) sendmsg$TEAM_CMD_OPTIONS_GET(r1, &(0x7f00000001c0)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x800000}, 0xc, &(0x7f0000000180)={&(0x7f0000000380)={0x76c, 0x0, 0x100, 0x70bd25, 0x25dfdbfc, {}, [{{0x8}, {0x160, 0x2, 0x0, 0x1, [{0x38, 0x1, @lb_stats_refresh_interval={{0x24}, {0x5}, {0x8, 0x4, 0x1ff}}}, {0x40, 0x1, @lb_hash_stats={{{0x24}, {0x5}, {0x8, 0x4, 0x1}}, {0x8}}}, {0x38, 0x1, @lb_stats_refresh_interval={{0x24}, {0x5}, {0x8, 0x4, 0x1ff}}}, {0x3c, 0x1, @name={{0x24}, {0x5}, {0xb, 0x4, 'random\x00'}}}, {0x38, 0x1, @mcast_rejoin_interval={{0x24}, {0x5}, {0x8, 0x4, 0xfffffbff}}}, {0x38, 0x1, @activeport={{0x24}, {0x5}, {0x8}}}]}}, {{0x8}, {0x1ec, 0x2, 0x0, 0x1, [{0x3c, 0x1, @user_linkup={{{0x24}, {0x5}, {0x4}}, {0x8}}}, {0x40, 0x1, @name={{0x24}, {0x5}, {0xe, 0x4, 'broadcast\x00'}}}, {0x38, 0x1, @activeport={{0x24}, {0x5}, {0x8, 0x4, r3}}}, {0x3c, 0x1, @user_linkup_enabled={{{0x24}, {0x5}, {0x4}}, {0x8}}}, {0x4c, 0x1, @lb_tx_method={{0x24}, {0x5}, {0x19, 0x4, 'hash_to_port_mapping\x00'}}}, {0x3c, 0x1, @user_linkup_enabled={{{0x24}, {0x5}, {0x4}}, {0x8}}}, {0x38, 0x1, @notify_peers_count={{0x24}, {0x5}, {0x8, 0x4, 0xaa4e}}}, {0x38, 0x1, @mcast_rejoin_count={{0x24}, {0x5}, {0x8, 0x4, 0x400}}}]}}, {{0x8, 0x1, r4}, {0x1e4, 0x2, 0x0, 0x1, [{0x38, 0x1, @notify_peers_interval={{0x24}, {0x5}, {0x8, 0x4, 0x2}}}, {0x40, 0x1, @lb_tx_hash_to_port_mapping={{{0x24}, {0x5}, {0x8}}, {0x8}}}, {0x3c, 0x1, @enabled={{{0x24}, {0x5}, {0x4}}, {0x8}}}, {0x38, 0x1, @mcast_rejoin_interval={{0x24}, {0x5}, {0x8, 0x4, 0x4}}}, {0x3c, 0x1, @lb_tx_method={{0x24}, {0x5}, {0x9, 0x4, 'hash\x00'}}}, {0x40, 0x1, @lb_port_stats={{{0x24}, {0x5}, {0x8, 0x4, 0xff}}, {0x8}}}, {0x40, 0x1, @priority={{{0x24}, {0x5}, {0x8, 0x4, 0x8001}}, {0x8}}}, {0x38, 0x1, @activeport={{0x24}, {0x5}, {0x8, 0x4, r9}}}]}}, {{0x8}, {0xb4, 0x2, 0x0, 0x1, [{0x40, 0x1, @lb_hash_stats={{{0x24}, {0x5}, {0x8, 0x4, 0x7}}, {0x8}}}, {0x38, 0x1, @notify_peers_interval={{0x24}, {0x5}, {0x8, 0x4, 0x4}}}, {0x38, 0x1, @notify_peers_count={{0x24}, {0x5}, {0x8, 0x4, 0x6dbd792a}}}]}}, {{0x8}, {0x80, 0x2, 0x0, 0x1, [{0x3c, 0x1, @enabled={{{0x24}, {0x5}, {0x4}}, {0x8}}}, {0x40, 0x1, @queue_id={{{0x24}, {0x5}, {0x8, 0x4, 0x6}}, {0x8, 0x6, r10}}}]}}, {{0x8}, {0xc4, 0x2, 0x0, 0x1, [{0x40, 0x1, @name={{0x24}, {0x5}, {0x10, 0x4, 'loadbalance\x00'}}}, {0x40, 0x1, @name={{0x24}, {0x5}, {0xe, 0x4, 'broadcast\x00'}}}, {0x40, 0x1, @queue_id={{{0x24}, {0x5}, {0x8}}, {0x8}}}]}}]}, 0x76c}, 0x1, 0x0, 0x0, 0x1}, 0x80d5) migrate_pages(0x0, 0x4, &(0x7f0000000200)=0x7a52b9a7, &(0x7f0000000240)=0x1) 05:40:22 executing program 4: perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_emit_ethernet(0x3a, &(0x7f0000000000)={@local, @remote, @void, {@ipv4={0x800, @tcp={{0x6, 0x4, 0x0, 0x3f, 0x2c, 0x0, 0x0, 0x0, 0x32, 0x0, @dev, @private=0xa010100, {[@lsrr={0x83, 0x5}]}}, {{0x0, 0x0, 0x41424344, 0x41424344, 0x0, 0x7, 0x5}}}}}}, 0x0) openat$cgroup_devices(0xffffffffffffffff, 0x0, 0x2, 0x0) close(0xffffffffffffffff) pread64(0xffffffffffffffff, 0x0, 0x0, 0x2000) 05:40:22 executing program 3: r0 = perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x0, 0x3}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) pread64(0xffffffffffffffff, 0x0, 0x7ffffffff000, 0xf0ff1f00000000) bind$inet6(0xffffffffffffffff, &(0x7f0000000040)={0xa, 0x4e23, 0x0, @remote, 0xffff}, 0x1c) r1 = socket$netlink(0x10, 0x3, 0x0) sendmsg$nl_generic(0xffffffffffffffff, 0x0, 0x41) setsockopt$netlink_NETLINK_BROADCAST_ERROR(r1, 0x10e, 0x4, &(0x7f00000000c0)=0x1000, 0x4) sendmsg$nl_generic(r1, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000100)=ANY=[@ANYBLOB="28000000100001000000000000000000000000000500000024386a562b500000000c00008008000d00ac141400"], 0x28}}, 0x0) (fail_nth: 2) chdir(&(0x7f00000001c0)='./file0\x00') r2 = syz_open_dev$mouse(&(0x7f0000000400), 0x7fffffff, 0x2d0401) sendmsg$NL80211_CMD_ADD_NAN_FUNCTION(r2, &(0x7f0000000500)={&(0x7f0000000440)={0x10, 0x0, 0x0, 0x10}, 0xc, &(0x7f00000004c0)={&(0x7f00000002c0)={0x20, 0x0, 0x100, 0x70bd2b, 0x25dfdbfd, {{}, {@void, @val={0xc, 0x99, {0x3, 0x1b}}}}}, 0x20}, 0x1, 0x0, 0x0, 0x95}, 0x40000) ioctl$FICLONE(r2, 0x40049409, r0) r3 = open$dir(&(0x7f0000000000)='.\x00', 0x0, 0x0) perf_event_open(&(0x7f0000001d80)={0x6, 0x80, 0x0, 0x0, 0x0, 0x0, 0x4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffd, 0x0, @perf_bp={0x0, 0xffffffff81000000}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffd}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r4 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000040)='/proc/crypto\x00', 0x0, 0x0) r5 = openat2(r3, &(0x7f0000000180)='./file0\x00', &(0x7f0000000200)={0x800, 0x1b9}, 0x18) setsockopt$SO_TIMESTAMPING(r5, 0x1, 0x25, &(0x7f0000000240)=0x7100, 0x4) pread64(r4, &(0x7f00000010c0)=""/4088, 0xff8, 0x0) writev(0xffffffffffffffff, &(0x7f00000003c0)=[{&(0x7f0000000000)="0000abe02400030021206cda3b5e5672b89aeddb2a535fbd0706006dff0043a9d7cceb232fb81bf74ebdd05b7677", 0x2e}, {&(0x7f0000000680)="7fd41c04550300020000000000000000010046e92ed2616f72657d044129471d4fd47924fd0900e09e0068deec02", 0x2e}], 0x2) 05:40:22 executing program 2: preadv2(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x2) openat(0xffffffffffffff9c, 0x0, 0x0, 0x0) r0 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x105142, 0x62) r1 = openat(0xffffffffffffff9c, 0x0, 0x0, 0x0) fallocate(r1, 0x0, 0x0, 0x8800000) lseek(0xffffffffffffffff, 0x0, 0x0) openat(0xffffffffffffffff, 0x0, 0x0, 0x20) ioctl$FS_IOC_RESVSP(0xffffffffffffffff, 0x40305828, 0x0) faccessat2(0xffffffffffffffff, 0x0, 0x0, 0x0) openat(0xffffffffffffffff, 0x0, 0x1a340, 0x100) ioctl$LOOP_CTL_REMOVE(0xffffffffffffffff, 0x4c81, 0x0) r2 = fsmount(0xffffffffffffffff, 0x0, 0x0) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r3 = openat(r2, &(0x7f0000000000)='/proc/self/exe\x00', 0x4840, 0x2d) sendfile(r0, r3, 0x0, 0x100000d00) 05:40:22 executing program 7: msgsnd(0x0, 0x0, 0x3f9, 0x0) msgctl$IPC_RMID(0x0, 0x0) msgsnd(0x0, 0x0, 0x0, 0x0) msgctl$IPC_INFO(0x0, 0x3, 0x0) r0 = msgget(0x0, 0x0) msgctl$IPC_INFO(r0, 0x3, 0x0) perf_event_open(0x0, 0x0, 0xc, 0xffffffffffffffff, 0x0) r1 = getpgrp(0x0) setpriority(0x0, r1, 0x0) msgsnd(r0, &(0x7f0000000300)={0x1, "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"}, 0x1008, 0x800) pipe(&(0x7f00000002c0)) getpgrp(0x0) getpgrp(0x0) getpgrp(0x0) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0xff, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x0, 0x0, 0x1002}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0x7, &(0x7f0000000200)=[{&(0x7f0000010000)="200000000002000019000000500100000f000000000000000000000004000000000002000020000020000000def4655fdef4655f0100ffff53ef010001000000ddf4655f000000000000000001000000000000000b0000008000000018000000c20500002b02", 0x66, 0x400}, {&(0x7f0000010100)="000000000000000000000000e58ca12e13a240e2b1a22f8d07e8e55f010040", 0x1f, 0x4e0}, {&(0x7f0000010200)="010000000000050040", 0x9, 0x560}, {&(0x7f0000010300)="030000000400000005", 0x9, 0x800}, {0x0, 0x0, 0x1000000000c00}, {&(0x7f0000010d00)="ed41000000040000ddf4655fdef4655fdef4655f000000000000040020", 0x1d, 0x1480}, {&(0x7f0000012000)="504d4d00504d4dff", 0x8, 0x10000}], 0x0, &(0x7f0000012b00)=ANY=[]) 05:40:22 executing program 0: perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_emit_ethernet(0x3a, &(0x7f0000000000)={@local, @remote, @void, {@ipv4={0x8847, @tcp={{0x6, 0x4, 0x0, 0x0, 0x2c, 0x0, 0x0, 0x0, 0x32, 0x0, @dev, @private=0xa010100, {[@lsrr={0x83, 0x5}]}}, {{0x0, 0x0, 0x41424344, 0x41424344, 0x0, 0x7, 0x5}}}}}}, 0x0) ioctl$BTRFS_IOC_BALANCE(0xffffffffffffffff, 0x5000940c, 0x0) close(0xffffffffffffffff) [ 2930.073754] FAULT_INJECTION: forcing a failure. [ 2930.073754] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 2930.075376] CPU: 1 PID: 12895 Comm: syz-executor.3 Not tainted 5.10.204 #1 [ 2930.076115] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 2930.077018] Call Trace: [ 2930.077295] dump_stack+0x107/0x167 [ 2930.077666] should_fail.cold+0x5/0xa [ 2930.078057] _copy_from_user+0x2e/0x1b0 [ 2930.078473] iovec_from_user+0x141/0x400 [ 2930.078894] __import_iovec+0x67/0x590 [ 2930.079299] ? __ia32_sys_shutdown+0x80/0x80 [ 2930.079747] ? perf_trace_lock+0xac/0x490 [ 2930.080200] import_iovec+0x83/0xb0 [ 2930.080573] sendmsg_copy_msghdr+0x131/0x160 [ 2930.081012] ? do_recvmmsg+0x6d0/0x6d0 [ 2930.081403] ? perf_trace_lock+0xac/0x490 [ 2930.081858] ? __lockdep_reset_lock+0x180/0x180 [ 2930.082326] ? perf_trace_lock+0xac/0x490 [ 2930.082769] ? SOFTIRQ_verbose+0x10/0x10 [ 2930.083195] ___sys_sendmsg+0xc6/0x170 [ 2930.083594] ? sendmsg_copy_msghdr+0x160/0x160 [ 2930.084066] ? __fget_files+0x26d/0x4c0 [ 2930.084464] ? lock_downgrade+0x6d0/0x6d0 [ 2930.084877] ? find_held_lock+0x2c/0x110 [ 2930.085288] ? __fget_files+0x296/0x4c0 [ 2930.085702] ? __fget_light+0xea/0x290 [ 2930.086113] __sys_sendmsg+0xe5/0x1b0 [ 2930.086550] ? __sys_sendmsg_sock+0x40/0x40 [ 2930.087006] ? rcu_read_lock_any_held+0x75/0xa0 [ 2930.087534] ? fput_many+0x2f/0x1a0 [ 2930.087932] ? ksys_write+0x1a9/0x260 [ 2930.088369] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 2930.088923] ? syscall_enter_from_user_mode+0x1d/0x50 [ 2930.089489] ? trace_hardirqs_on+0x5b/0x180 [ 2930.089941] do_syscall_64+0x33/0x40 [ 2930.090371] entry_SYSCALL_64_after_hwframe+0x62/0xc7 [ 2930.090904] RIP: 0033:0x7f2cef979b19 [ 2930.091293] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 2930.093305] RSP: 002b:00007f2ceceef188 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 2930.094109] RAX: ffffffffffffffda RBX: 00007f2cefa8cf60 RCX: 00007f2cef979b19 [ 2930.094874] RDX: 0000000000000000 RSI: 0000000020000140 RDI: 0000000000000004 [ 2930.095621] RBP: 00007f2ceceef1d0 R08: 0000000000000000 R09: 0000000000000000 [ 2930.096397] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 2930.097138] R13: 00007ffcfa2c816f R14: 00007f2ceceef300 R15: 0000000000022000 05:40:22 executing program 1: perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_emit_ethernet(0x3a, &(0x7f0000000000)={@local, @remote, @void, {@ipv4={0x800, @tcp={{0x6, 0x4, 0x0, 0x0, 0x2c, 0x0, 0x0, 0x0, 0x32, 0x0, @dev, @private=0xa010100, {[@lsrr={0x83, 0x5}]}}, {{0x0, 0x0, 0x41424344, 0x41424344, 0x0, 0x7, 0x5}}}}}}, 0x0) 05:40:22 executing program 4: perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_emit_ethernet(0x3a, &(0x7f0000000000)={@local, @remote, @void, {@ipv4={0x800, @tcp={{0x6, 0x4, 0x0, 0x0, 0x13, 0x0, 0x0, 0x0, 0x32, 0x0, @dev, @private=0xa010100, {[@lsrr={0x83, 0x5}]}}, {{0x0, 0x0, 0x41424344, 0x41424344, 0x0, 0x7, 0x5}}}}}}, 0x0) openat$cgroup_devices(0xffffffffffffffff, 0x0, 0x2, 0x0) close(0xffffffffffffffff) pread64(0xffffffffffffffff, 0x0, 0x0, 0x2000) 05:40:22 executing program 0: perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_emit_ethernet(0x3a, &(0x7f0000000000)={@local, @remote, @void, {@ipv4={0x8848, @tcp={{0x6, 0x4, 0x0, 0x0, 0x2c, 0x0, 0x0, 0x0, 0x32, 0x0, @dev, @private=0xa010100, {[@lsrr={0x83, 0x5}]}}, {{0x0, 0x0, 0x41424344, 0x41424344, 0x0, 0x7, 0x5}}}}}}, 0x0) ioctl$BTRFS_IOC_BALANCE(0xffffffffffffffff, 0x5000940c, 0x0) close(0xffffffffffffffff) [ 2930.159258] EXT4-fs (loop7): mounted filesystem without journal. Opts: ,errors=continue [ 2930.160378] ext4 filesystem being mounted at /syzkaller-testdir997385470/syzkaller.YcPRdt/461/file0 supports timestamps until 2038 (0x7fffffff) [ 2930.287766] FAULT_INJECTION: forcing a failure. [ 2930.287766] name failslab, interval 1, probability 0, space 0, times 0 [ 2930.290060] CPU: 1 PID: 12896 Comm: syz-executor.6 Not tainted 5.10.204 #1 [ 2930.291475] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 2930.293153] Call Trace: [ 2930.293694] dump_stack+0x107/0x167 [ 2930.294455] should_fail.cold+0x5/0xa [ 2930.295243] ? create_object.isra.0+0x3a/0xa20 [ 2930.296186] should_failslab+0x5/0x20 [ 2930.296950] kmem_cache_alloc+0x5b/0x310 [ 2930.297773] create_object.isra.0+0x3a/0xa20 [ 2930.298667] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 2930.299697] kmem_cache_alloc_node+0x169/0x330 [ 2930.300632] __alloc_skb+0x6d/0x5b0 [ 2930.301375] tcp_collapse+0x42c/0xf20 [ 2930.302162] ? tcp_queue_rcv+0x7c0/0x7c0 [ 2930.303009] ? tcp_xmit_retransmit_queue+0x57/0x70 [ 2930.303993] ? tcp_xmit_recovery+0x86/0x180 [ 2930.304858] ? tcp_ack+0xeef/0x5690 [ 2930.305606] tcp_try_rmem_schedule+0xb8a/0x1690 [ 2930.306571] tcp_data_queue+0x16ba/0x47f0 [ 2930.307421] ? mark_held_locks+0x9e/0xe0 [ 2930.308242] ? tcp_data_ready+0x500/0x500 [ 2930.309071] ? tcp_urg.part.0+0x157/0x2e0 [ 2930.309919] ? tcp_try_keep_open+0x2f0/0x2f0 [ 2930.310812] ? tcp_validate_incoming+0x431/0x16a0 [ 2930.311811] ? tcp_check_urg.isra.0+0x1db/0x720 [ 2930.312764] tcp_rcv_established+0x868/0x1e30 [ 2930.313705] ? tcp_check_space+0x6c0/0x6c0 [ 2930.314605] tcp_v6_do_rcv+0x7b3/0x1520 [ 2930.315424] __release_sock+0x139/0x3b0 [ 2930.316250] release_sock+0x54/0x1b0 [ 2930.317016] sk_wait_data+0x1a7/0x4d0 [ 2930.317791] ? sock_set_mark+0x130/0x130 [ 2930.318635] ? prepare_to_wait_exclusive+0x2a0/0x2a0 [ 2930.319667] ? tcp_send_ack+0x7d/0xa0 [ 2930.320444] tcp_recvmsg+0x17b2/0x2930 [ 2930.321253] ? tcp_splice_read+0x8c0/0x8c0 [ 2930.322117] ? sock_has_perm+0x1ea/0x280 [ 2930.322963] ? perf_trace_lock+0xac/0x490 [ 2930.323808] ? tcp_splice_read+0x8c0/0x8c0 [ 2930.324663] inet6_recvmsg+0x13b/0x6e0 [ 2930.325455] ? inet6_bind+0x120/0x120 [ 2930.326238] ? security_socket_recvmsg+0x95/0xc0 [ 2930.327197] ? inet6_bind+0x120/0x120 [ 2930.327964] sock_recvmsg+0xff/0x180 [ 2930.328722] __sys_recvfrom+0x1be/0x2f0 [ 2930.329530] ? __ia32_sys_send+0x100/0x100 [ 2930.330412] ? lock_downgrade+0x6d0/0x6d0 [ 2930.331279] ? wait_for_completion_io+0x270/0x270 [ 2930.332257] ? rcu_read_lock_any_held+0x75/0xa0 [ 2930.333190] ? vfs_write+0x354/0xa70 [ 2930.333966] ? fput_many+0x2f/0x1a0 [ 2930.334716] ? ksys_write+0x1a9/0x260 [ 2930.335522] ? __ia32_sys_read+0xb0/0xb0 [ 2930.336352] __x64_sys_recvfrom+0xdd/0x1b0 [ 2930.337207] ? syscall_enter_from_user_mode+0x1d/0x50 [ 2930.338255] do_syscall_64+0x33/0x40 [ 2930.339004] entry_SYSCALL_64_after_hwframe+0x62/0xc7 [ 2930.340036] RIP: 0033:0x7f7d1addbb19 [ 2930.340788] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 2930.344501] RSP: 002b:00007f7d18330188 EFLAGS: 00000246 ORIG_RAX: 000000000000002d [ 2930.346036] RAX: ffffffffffffffda RBX: 00007f7d1aeef020 RCX: 00007f7d1addbb19 [ 2930.347487] RDX: 0000000000001000 RSI: 0000000020001e00 RDI: 0000000000000003 [ 2930.348917] RBP: 00007f7d183301d0 R08: 0000000000000000 R09: 0000000000000000 [ 2930.350367] R10: 000000000000cd08 R11: 0000000000000246 R12: 0000000000000002 [ 2930.351798] R13: 00007ffe0ac926cf R14: 00007f7d18330300 R15: 0000000000022000 05:40:37 executing program 6: r0 = socket$inet6_tcp(0xa, 0x1, 0x0) setsockopt$inet6_tcp_int(r0, 0x6, 0x2, &(0x7f0000000080)=0x90, 0x4) bind$inet6(r0, &(0x7f00000000c0)={0xa, 0x4e20, 0x0, @loopback}, 0x1c) connect$inet6(r0, &(0x7f0000000000)={0xa, 0x4e20, 0x0, @empty}, 0x1c) setsockopt$sock_int(r0, 0x1, 0x8, &(0x7f0000002ec0), 0x4) sendmsg$inet6(r0, &(0x7f00000006c0)={0x0, 0x0, &(0x7f0000000540)=[{&(0x7f00000001c0)="cf", 0xfffffdef}], 0x1}, 0x10044001) setsockopt$SO_TIMESTAMP(r0, 0x1, 0x40, &(0x7f0000000280)=0x380, 0x4) recvfrom$inet6(r0, &(0x7f0000001e00)=""/4096, 0x1000, 0xcd08, 0x0, 0x0) (fail_nth: 21) 05:40:37 executing program 4: perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_emit_ethernet(0x3a, &(0x7f0000000000)={@local, @remote, @void, {@ipv4={0x800, @tcp={{0x6, 0x4, 0x0, 0x0, 0x18, 0x0, 0x0, 0x0, 0x32, 0x0, @dev, @private=0xa010100, {[@lsrr={0x83, 0x5}]}}, {{0x0, 0x0, 0x41424344, 0x41424344, 0x0, 0x7, 0x5}}}}}}, 0x0) openat$cgroup_devices(0xffffffffffffffff, 0x0, 0x2, 0x0) close(0xffffffffffffffff) pread64(0xffffffffffffffff, 0x0, 0x0, 0x2000) 05:40:37 executing program 7: r0 = openat(0xffffffffffffff9c, 0x0, 0x105142, 0x0) pwritev(r0, &(0x7f0000000000)=[{&(0x7f00000013c0)="e1b0012fe0606d96efb436cc61f22c7f9b82dd545a627ea9481e2f5e07aa509ba598d2c381d12b55cd1dfdf384b87fc1e43e0ec5b5d0f0271a0d37e73cd5bda4346ffae495b26950edc778e9355d26104f53733c6cd4c182839c7690136e077fd5425b25afbab9618c13bd0e60dbc181806617eac20ba0ae570a04c3c6f4eb3320e5681cd964b92f1a958c3d95d5736892ba68140770d031b2966f39bac190441b4121402f3424b1e869edc3339904d44f35ed76ee7df6185d38946e85a3adee4debb513987d6b7a9ea72b82da496eca97a561206b8ae93560179472a4bc4b79ae81f116442b9aa3552ea7c67b41afc2ba9abe2a7dbbd25fff", 0xf9}, {&(0x7f00000014c0)="16f79791e89e13c02b091ad89cf136f4a263b3a40fa6ba24aaa36297eb22f41bf911d6e34c339e079483d8dc5265dd2ca4b3e12ce7d6cdd1fb6dd2afa1f4ff135f8f16658a6a6693185d1fd55ad63c3e06aa94af33afbb4973ec3d0a2bcc50a85398ff718d6555c2bfe353a8308bee0fd8149f20f111a666d43d4cf1dbdd7416d60658c9e7cfaacfc96ade90cbcd249aa07e5e6628d8905d3e6d30d762fac30a83f055f537a5241c5ea929d65e8204a7cc1202379ab88caa39b8bcaf1776926968d633b5af80b3d94c3d187b09df0307d2dd3fc4e5574b17a96b57a108334a15923ca0420a0f8514047e2237a707510d1980af4f01c80e", 0xf7}], 0x2, 0x20, 0x4) r1 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x105142, 0x0) perf_event_open(&(0x7f0000000140)={0x1, 0x80, 0x2, 0xff, 0x9, 0x6, 0x0, 0x3, 0x10020, 0x4, 0x0, 0x1, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x1, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x1, 0x1, 0x0, 0x1, 0x1, 0x1, 0x0, 0x1, 0x0, 0x1, 0x0, 0x1, 0x0, 0x6, 0x2, @perf_config_ext={0x7, 0x71}, 0x12, 0x8000, 0x3, 0x1, 0x0, 0x8, 0x2, 0x0, 0xa2b80000, 0x0, 0x7}, 0xffffffffffffffff, 0xa, r0, 0x9) setsockopt$inet_pktinfo(r1, 0x0, 0x8, &(0x7f0000000040)={0x0, @loopback, @loopback}, 0xc) ioctl$FIBMAP(0xffffffffffffffff, 0x1, &(0x7f0000000080)) lseek(r1, 0x800, 0x0) readlinkat(0xffffffffffffffff, &(0x7f00000001c0)='./file1\x00', &(0x7f00000012c0)=""/239, 0xef) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x400}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) ioctl$BTRFS_IOC_DEV_INFO(0xffffffffffffffff, 0xd000941e, &(0x7f00000002c0)={0x0, "a66cb98e93196a8dc998d8ebfe459ed0"}) openat(0xffffffffffffffff, &(0x7f0000000280)='/proc/self/exe\x00', 0x0, 0x0) sendfile(r1, r0, 0x0, 0x100000001) 05:40:37 executing program 1: perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_emit_ethernet(0x3a, &(0x7f0000000000)={@local, @remote, @void, {@ipv4={0x800, @tcp={{0x6, 0x4, 0x2, 0x0, 0x2c, 0x0, 0x0, 0x0, 0x32, 0x0, @dev, @private=0xa010100, {[@lsrr={0x83, 0x5}]}}, {{0x0, 0x0, 0x41424344, 0x41424344, 0x0, 0x7, 0x5}}}}}}, 0x0) 05:40:37 executing program 5: r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = dup(r0) ioctl$sock_SIOCGIFINDEX_80211(r1, 0x8933, &(0x7f0000000080)={'wlan1\x00'}) syz_genetlink_get_family_id$nl80211(&(0x7f00000000c0), 0xffffffffffffffff) socketpair(0x12, 0x80000, 0x1, &(0x7f0000000000)={0xffffffffffffffff}) sendmsg$NL80211_CMD_SET_INTERFACE(r2, &(0x7f0000000200)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000240)=ANY=[], 0x24}, 0x1, 0x0, 0x0, 0x40080c0}, 0x0) 05:40:37 executing program 0: perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_emit_ethernet(0x3a, &(0x7f0000000000)={@local, @remote, @void, {@ipv4={0x8864, @tcp={{0x6, 0x4, 0x0, 0x0, 0x2c, 0x0, 0x0, 0x0, 0x32, 0x0, @dev, @private=0xa010100, {[@lsrr={0x83, 0x5}]}}, {{0x0, 0x0, 0x41424344, 0x41424344, 0x0, 0x7, 0x5}}}}}}, 0x0) ioctl$BTRFS_IOC_BALANCE(0xffffffffffffffff, 0x5000940c, 0x0) close(0xffffffffffffffff) 05:40:37 executing program 3: r0 = perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x0, 0x3}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) pread64(0xffffffffffffffff, 0x0, 0x7ffffffff000, 0xf0ff1f00000000) bind$inet6(0xffffffffffffffff, &(0x7f0000000040)={0xa, 0x4e23, 0x0, @remote, 0xffff}, 0x1c) r1 = socket$netlink(0x10, 0x3, 0x0) sendmsg$nl_generic(0xffffffffffffffff, 0x0, 0x41) setsockopt$netlink_NETLINK_BROADCAST_ERROR(r1, 0x10e, 0x4, &(0x7f00000000c0)=0x1000, 0x4) sendmsg$nl_generic(r1, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000100)=ANY=[@ANYBLOB="28000000100001000000000000000000000000000500000024386a562b500000000c00008008000d00ac141400"], 0x28}}, 0x0) (fail_nth: 3) chdir(&(0x7f00000001c0)='./file0\x00') r2 = syz_open_dev$mouse(&(0x7f0000000400), 0x7fffffff, 0x2d0401) sendmsg$NL80211_CMD_ADD_NAN_FUNCTION(r2, &(0x7f0000000500)={&(0x7f0000000440)={0x10, 0x0, 0x0, 0x10}, 0xc, &(0x7f00000004c0)={&(0x7f00000002c0)={0x20, 0x0, 0x100, 0x70bd2b, 0x25dfdbfd, {{}, {@void, @val={0xc, 0x99, {0x3, 0x1b}}}}}, 0x20}, 0x1, 0x0, 0x0, 0x95}, 0x40000) ioctl$FICLONE(r2, 0x40049409, r0) r3 = open$dir(&(0x7f0000000000)='.\x00', 0x0, 0x0) perf_event_open(&(0x7f0000001d80)={0x6, 0x80, 0x0, 0x0, 0x0, 0x0, 0x4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffd, 0x0, @perf_bp={0x0, 0xffffffff81000000}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffd}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r4 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000040)='/proc/crypto\x00', 0x0, 0x0) r5 = openat2(r3, &(0x7f0000000180)='./file0\x00', &(0x7f0000000200)={0x800, 0x1b9}, 0x18) setsockopt$SO_TIMESTAMPING(r5, 0x1, 0x25, &(0x7f0000000240)=0x7100, 0x4) pread64(r4, &(0x7f00000010c0)=""/4088, 0xff8, 0x0) writev(0xffffffffffffffff, &(0x7f00000003c0)=[{&(0x7f0000000000)="0000abe02400030021206cda3b5e5672b89aeddb2a535fbd0706006dff0043a9d7cceb232fb81bf74ebdd05b7677", 0x2e}, {&(0x7f0000000680)="7fd41c04550300020000000000000000010046e92ed2616f72657d044129471d4fd47924fd0900e09e0068deec02", 0x2e}], 0x2) 05:40:37 executing program 2: preadv2(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x2) openat(0xffffffffffffff9c, 0x0, 0x0, 0x0) r0 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x105142, 0x62) r1 = openat(0xffffffffffffff9c, 0x0, 0x0, 0x0) fallocate(r1, 0x0, 0x0, 0x8800000) lseek(0xffffffffffffffff, 0x0, 0x0) openat(0xffffffffffffffff, 0x0, 0x0, 0x20) ioctl$FS_IOC_RESVSP(0xffffffffffffffff, 0x40305828, 0x0) faccessat2(0xffffffffffffffff, 0x0, 0x0, 0x0) openat(0xffffffffffffffff, 0x0, 0x1a340, 0x100) ioctl$LOOP_CTL_REMOVE(0xffffffffffffffff, 0x4c81, 0x0) r2 = fsmount(0xffffffffffffffff, 0x0, 0x0) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r3 = openat(r2, &(0x7f0000000000)='/proc/self/exe\x00', 0x4840, 0x2d) sendfile(r0, r3, 0x0, 0x100000e00) 05:40:37 executing program 4: perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_emit_ethernet(0x3a, &(0x7f0000000000)={@local, @remote, @void, {@ipv4={0x800, @tcp={{0x6, 0x4, 0x0, 0x0, 0x1c, 0x0, 0x0, 0x0, 0x32, 0x0, @dev, @private=0xa010100, {[@lsrr={0x83, 0x5}]}}, {{0x0, 0x0, 0x41424344, 0x41424344, 0x0, 0x7, 0x5}}}}}}, 0x0) openat$cgroup_devices(0xffffffffffffffff, 0x0, 0x2, 0x0) close(0xffffffffffffffff) pread64(0xffffffffffffffff, 0x0, 0x0, 0x2000) [ 2944.685512] FAULT_INJECTION: forcing a failure. [ 2944.685512] name failslab, interval 1, probability 0, space 0, times 0 [ 2944.686678] CPU: 1 PID: 12927 Comm: syz-executor.3 Not tainted 5.10.204 #1 [ 2944.687359] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 2944.688182] Call Trace: [ 2944.688466] dump_stack+0x107/0x167 [ 2944.688836] should_fail.cold+0x5/0xa [ 2944.689218] ? __alloc_skb+0x6d/0x5b0 [ 2944.689605] should_failslab+0x5/0x20 [ 2944.689984] kmem_cache_alloc_node+0x55/0x330 [ 2944.690438] __alloc_skb+0x6d/0x5b0 [ 2944.690812] netlink_sendmsg+0x998/0xdf0 [ 2944.691221] ? netlink_unicast+0x7f0/0x7f0 [ 2944.691651] ? netlink_unicast+0x7f0/0x7f0 [ 2944.692074] __sock_sendmsg+0x154/0x190 [ 2944.692496] ____sys_sendmsg+0x70d/0x870 [ 2944.692925] ? sock_write_iter+0x3d0/0x3d0 [ 2944.693376] ? do_recvmmsg+0x6d0/0x6d0 [ 2944.693790] ? perf_trace_lock+0xac/0x490 [ 2944.694235] ? __lockdep_reset_lock+0x180/0x180 [ 2944.694739] ? perf_trace_lock+0xac/0x490 [ 2944.695175] ? SOFTIRQ_verbose+0x10/0x10 [ 2944.695607] ___sys_sendmsg+0xf3/0x170 [ 2944.696027] ? sendmsg_copy_msghdr+0x160/0x160 [ 2944.696487] ? lock_downgrade+0x6d0/0x6d0 [ 2944.696924] ? find_held_lock+0x2c/0x110 [ 2944.697360] ? __fget_files+0x296/0x4c0 [ 2944.697784] ? __fget_light+0xea/0x290 [ 2944.698202] __sys_sendmsg+0xe5/0x1b0 [ 2944.698589] ? __sys_sendmsg_sock+0x40/0x40 [ 2944.699047] ? rcu_read_lock_any_held+0x75/0xa0 [ 2944.699552] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 2944.700111] ? syscall_enter_from_user_mode+0x1d/0x50 [ 2944.700652] ? trace_hardirqs_on+0x5b/0x180 [ 2944.701092] do_syscall_64+0x33/0x40 [ 2944.701485] entry_SYSCALL_64_after_hwframe+0x62/0xc7 [ 2944.702024] RIP: 0033:0x7f2cef979b19 [ 2944.702437] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 2944.704361] RSP: 002b:00007f2ceceef188 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 2944.705191] RAX: ffffffffffffffda RBX: 00007f2cefa8cf60 RCX: 00007f2cef979b19 [ 2944.705898] RDX: 0000000000000000 RSI: 0000000020000140 RDI: 0000000000000004 [ 2944.706657] RBP: 00007f2ceceef1d0 R08: 0000000000000000 R09: 0000000000000000 [ 2944.707370] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 2944.708120] R13: 00007ffcfa2c816f R14: 00007f2ceceef300 R15: 0000000000022000 05:40:37 executing program 7: r0 = socket$netlink(0x10, 0x3, 0x0) r1 = fcntl$dupfd(r0, 0x0, 0xffffffffffffffff) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x248e, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x5, 0x0, 0x9}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x2) ioctl$SECCOMP_IOCTL_NOTIF_RECV(0xffffffffffffffff, 0xc0502100, 0x0) r2 = openat$dir(0xffffffffffffff9c, &(0x7f0000000000)='.\x00', 0x0, 0x0) getdents64(r2, &(0x7f00000000c0)=""/149, 0x95) ioctl$AUTOFS_DEV_IOCTL_ASKUMOUNT(r1, 0xc018937d, &(0x7f0000000340)=ANY=[@ANYBLOB="001800007bc2000000000000b9ab2b3b8d7d4ebbce54cdb6a461c1df8be3a0642cf5dc46855e3ace55d874c740080d888b96e4757e36cc210045cb6fc11ef0a47669756aef14d6673fa1ff20091748b7a93ee050ba01fce417472c6e66436b65130539259cabb26a8cf4a3d10c128e096410313c9d9adcdce087d7a47bc9d20f094728a0e7e3421d17d84cadda33dcd71483e2f4a2ec9a97f0949f3b6b7780ad8b855bdf07d3d2b9070a70221820a47488219ba25005cde7e5e06d", @ANYRESDEC, @ANYRESHEX=r2]) ioctl$PERF_EVENT_IOC_REFRESH(0xffffffffffffffff, 0x2402, 0x6) dup3(0xffffffffffffffff, 0xffffffffffffffff, 0x80000) getdents64(r1, &(0x7f0000000080)=""/42, 0x2a) r3 = epoll_create(0x3) r4 = dup2(r3, 0xffffffffffffffff) dup(r0) ioctl$FIBMAP(0xffffffffffffffff, 0x1, &(0x7f0000000200)=0xffffff29) socket$netlink(0x10, 0x3, 0x0) unshare(0x48020200) unlinkat(r4, &(0x7f0000000040)='./file0\x00', 0x0) 05:40:37 executing program 1: perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_emit_ethernet(0x3a, &(0x7f0000000000)={@local, @remote, @void, {@ipv4={0x800, @tcp={{0x6, 0x4, 0x3, 0x0, 0x2c, 0x0, 0x0, 0x0, 0x32, 0x0, @dev, @private=0xa010100, {[@lsrr={0x83, 0x5}]}}, {{0x0, 0x0, 0x41424344, 0x41424344, 0x0, 0x7, 0x5}}}}}}, 0x0) 05:40:37 executing program 0: perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_emit_ethernet(0x3a, &(0x7f0000000000)={@local, @remote, @void, {@ipv4={0x8906, @tcp={{0x6, 0x4, 0x0, 0x0, 0x2c, 0x0, 0x0, 0x0, 0x32, 0x0, @dev, @private=0xa010100, {[@lsrr={0x83, 0x5}]}}, {{0x0, 0x0, 0x41424344, 0x41424344, 0x0, 0x7, 0x5}}}}}}, 0x0) ioctl$BTRFS_IOC_BALANCE(0xffffffffffffffff, 0x5000940c, 0x0) close(0xffffffffffffffff) 05:40:37 executing program 4: perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_emit_ethernet(0x3a, &(0x7f0000000000)={@local, @remote, @void, {@ipv4={0x800, @tcp={{0x6, 0x4, 0x0, 0x0, 0x224, 0x0, 0x0, 0x0, 0x32, 0x0, @dev, @private=0xa010100, {[@lsrr={0x83, 0x5}]}}, {{0x0, 0x0, 0x41424344, 0x41424344, 0x0, 0x7, 0x5}}}}}}, 0x0) openat$cgroup_devices(0xffffffffffffffff, 0x0, 0x2, 0x0) close(0xffffffffffffffff) pread64(0xffffffffffffffff, 0x0, 0x0, 0x2000) 05:40:37 executing program 1: perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_emit_ethernet(0x3a, &(0x7f0000000000)={@local, @remote, @void, {@ipv4={0x800, @tcp={{0x6, 0x4, 0x0, 0x0, 0x2c, 0x0, 0x0, 0x0, 0x32, 0x0, @dev, @private=0xa010100, {[@lsrr={0x83, 0x5}]}}, {{0x0, 0x0, 0x41424344, 0x41424344, 0x0, 0x7, 0x5}}}}}}, 0x0) 05:40:37 executing program 0: perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_emit_ethernet(0x3a, &(0x7f0000000000)={@local, @remote, @void, {@ipv4={0x800, @tcp={{0x4, 0x4, 0x0, 0x0, 0x2c, 0x0, 0x0, 0x0, 0x32, 0x0, @dev, @private=0xa010100, {[@lsrr={0x83, 0x5}]}}, {{0x0, 0x0, 0x41424344, 0x41424344, 0x0, 0x7, 0x5}}}}}}, 0x0) ioctl$BTRFS_IOC_BALANCE(0xffffffffffffffff, 0x5000940c, 0x0) close(0xffffffffffffffff) 05:40:37 executing program 5: perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0xffffffffffffffff, 0x0, 0xffffffffffffffff, 0x0) syz_open_dev$tty20(0xc, 0x4, 0x0) r0 = socket$netlink(0x10, 0x3, 0x0) sendmsg$nl_generic(r0, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000240)={&(0x7f0000000040)=ANY=[@ANYBLOB="2c0000006600210e000100100000000000000000", @ANYRES32], 0x2c}}, 0x0) io_setup(0x0, 0x0) ioctl$TIOCVHANGUP(0xffffffffffffffff, 0x5437, 0x0) [ 2944.934872] FAULT_INJECTION: forcing a failure. [ 2944.934872] name failslab, interval 1, probability 0, space 0, times 0 [ 2944.936113] CPU: 1 PID: 12936 Comm: syz-executor.6 Not tainted 5.10.204 #1 [ 2944.936837] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 2944.937709] Call Trace: [ 2944.938003] dump_stack+0x107/0x167 [ 2944.938412] should_fail.cold+0x5/0xa [ 2944.938834] should_failslab+0x5/0x20 [ 2944.939240] __kmalloc_node_track_caller+0x74/0x3b0 [ 2944.939767] ? tcp_collapse+0x42c/0xf20 [ 2944.940196] __alloc_skb+0xb1/0x5b0 [ 2944.940579] tcp_collapse+0x42c/0xf20 [ 2944.940991] ? tcp_queue_rcv+0x7c0/0x7c0 [ 2944.941426] ? tcp_xmit_retransmit_queue+0x57/0x70 [ 2944.941945] ? tcp_xmit_recovery+0x86/0x180 [ 2944.942407] ? tcp_ack+0xeef/0x5690 [ 2944.942803] tcp_try_rmem_schedule+0xb8a/0x1690 [ 2944.943313] tcp_data_queue+0x16ba/0x47f0 [ 2944.943760] ? mark_held_locks+0x9e/0xe0 [ 2944.944193] ? tcp_data_ready+0x500/0x500 [ 2944.944628] ? tcp_urg.part.0+0x157/0x2e0 [ 2944.945072] ? tcp_try_keep_open+0x2f0/0x2f0 [ 2944.945534] ? tcp_validate_incoming+0x431/0x16a0 [ 2944.946064] ? i915_gem_set_domain_ioctl+0x1f9/0x850 [ 2944.946613] ? tcp_check_urg.isra.0+0x1db/0x720 [ 2944.947107] tcp_rcv_established+0x868/0x1e30 [ 2944.947591] ? tcp_check_space+0x6c0/0x6c0 [ 2944.948055] tcp_v6_do_rcv+0x7b3/0x1520 [ 2944.948483] __release_sock+0x139/0x3b0 [ 2944.948919] release_sock+0x54/0x1b0 [ 2944.949313] sk_wait_data+0x1a7/0x4d0 [ 2944.949725] ? sock_set_mark+0x130/0x130 [ 2944.950160] ? prepare_to_wait_exclusive+0x2a0/0x2a0 [ 2944.950705] ? tcp_send_ack+0x7d/0xa0 [ 2944.951112] tcp_recvmsg+0x17b2/0x2930 [ 2944.951545] ? tcp_splice_read+0x8c0/0x8c0 [ 2944.952007] ? sock_has_perm+0x1ea/0x280 [ 2944.952445] ? perf_trace_lock+0xac/0x490 [ 2944.952896] ? tcp_splice_read+0x8c0/0x8c0 [ 2944.953350] inet6_recvmsg+0x13b/0x6e0 [ 2944.953768] ? inet6_bind+0x120/0x120 [ 2944.954176] ? security_socket_recvmsg+0x95/0xc0 [ 2944.954683] ? inet6_bind+0x120/0x120 [ 2944.955087] sock_recvmsg+0xff/0x180 [ 2944.955485] __sys_recvfrom+0x1be/0x2f0 [ 2944.955910] ? __ia32_sys_send+0x100/0x100 [ 2944.956359] ? lock_downgrade+0x6d0/0x6d0 [ 2944.956817] ? wait_for_completion_io+0x270/0x270 [ 2944.957336] ? rcu_read_lock_any_held+0x75/0xa0 [ 2944.957830] ? vfs_write+0x354/0xa70 [ 2944.958227] ? fput_many+0x2f/0x1a0 [ 2944.958622] ? ksys_write+0x1a9/0x260 [ 2944.959025] ? __ia32_sys_read+0xb0/0xb0 [ 2944.959457] __x64_sys_recvfrom+0xdd/0x1b0 [ 2944.959907] ? syscall_enter_from_user_mode+0x1d/0x50 [ 2944.960469] do_syscall_64+0x33/0x40 [ 2944.960857] entry_SYSCALL_64_after_hwframe+0x62/0xc7 [ 2944.961403] RIP: 0033:0x7f7d1addbb19 [ 2944.961808] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 2944.963753] RSP: 002b:00007f7d18330188 EFLAGS: 00000246 ORIG_RAX: 000000000000002d [ 2944.964554] RAX: ffffffffffffffda RBX: 00007f7d1aeef020 RCX: 00007f7d1addbb19 [ 2944.965299] RDX: 0000000000001000 RSI: 0000000020001e00 RDI: 0000000000000003 [ 2944.966050] RBP: 00007f7d183301d0 R08: 0000000000000000 R09: 0000000000000000 [ 2944.966810] R10: 000000000000cd08 R11: 0000000000000246 R12: 0000000000000002 [ 2944.967554] R13: 00007ffe0ac926cf R14: 00007f7d18330300 R15: 0000000000022000 [ 2945.006638] netlink: 8 bytes leftover after parsing attributes in process `syz-executor.5'. [ 2945.024641] netlink: 8 bytes leftover after parsing attributes in process `syz-executor.5'. 05:40:54 executing program 0: perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_emit_ethernet(0x3a, &(0x7f0000000000)={@local, @remote, @void, {@ipv4={0x800, @tcp={{0x5, 0x4, 0x0, 0x0, 0x2c, 0x0, 0x0, 0x0, 0x32, 0x0, @dev, @private=0xa010100, {[@lsrr={0x83, 0x5}]}}, {{0x0, 0x0, 0x41424344, 0x41424344, 0x0, 0x7, 0x5}}}}}}, 0x0) ioctl$BTRFS_IOC_BALANCE(0xffffffffffffffff, 0x5000940c, 0x0) close(0xffffffffffffffff) 05:40:54 executing program 7: r0 = socket$inet6_tcp(0xa, 0x1, 0x0) setsockopt$sock_int(r0, 0x1, 0xf, &(0x7f0000003d40)=0xfffe, 0x4) bind$inet6(r0, &(0x7f00000000c0)={0xa, 0x4e20, 0x0, @ipv4={'\x00', '\xff\xff', @multicast1}}, 0x1c) listen(r0, 0x0) r1 = openat$procfs(0xffffffffffffff9c, &(0x7f00000014c0)='/proc/bus/input/devices\x00', 0x0, 0x0) pread64(r1, &(0x7f0000000040)=""/4126, 0x101e, 0x2000) bind$inet6(r1, &(0x7f0000000000)={0xa, 0x4e20, 0x8, @loopback, 0x7f}, 0x1c) r2 = socket$inet6_tcp(0xa, 0x1, 0x0) setsockopt$sock_int(r2, 0x1, 0xf, &(0x7f0000003d40)=0xfffe, 0x4) bind$inet6(r2, &(0x7f00000000c0)={0xa, 0x4e20, 0x0, @ipv4={'\x00', '\xff\xff', @remote}}, 0x1c) listen(r2, 0x0) 05:40:54 executing program 6: r0 = socket$inet6_tcp(0xa, 0x1, 0x0) setsockopt$inet6_tcp_int(r0, 0x6, 0x2, &(0x7f0000000080)=0x90, 0x4) bind$inet6(r0, &(0x7f00000000c0)={0xa, 0x4e20, 0x0, @loopback}, 0x1c) connect$inet6(r0, &(0x7f0000000000)={0xa, 0x4e20, 0x0, @empty}, 0x1c) setsockopt$sock_int(r0, 0x1, 0x8, &(0x7f0000002ec0), 0x4) sendmsg$inet6(r0, &(0x7f00000006c0)={0x0, 0x0, &(0x7f0000000540)=[{&(0x7f00000001c0)="cf", 0xfffffdef}], 0x1}, 0x10044001) setsockopt$SO_TIMESTAMP(r0, 0x1, 0x40, &(0x7f0000000280)=0x380, 0x4) recvfrom$inet6(r0, &(0x7f0000001e00)=""/4096, 0x1000, 0xcd08, 0x0, 0x0) (fail_nth: 22) 05:40:54 executing program 3: r0 = perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x0, 0x3}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) pread64(0xffffffffffffffff, 0x0, 0x7ffffffff000, 0xf0ff1f00000000) bind$inet6(0xffffffffffffffff, &(0x7f0000000040)={0xa, 0x4e23, 0x0, @remote, 0xffff}, 0x1c) r1 = socket$netlink(0x10, 0x3, 0x0) sendmsg$nl_generic(0xffffffffffffffff, 0x0, 0x41) setsockopt$netlink_NETLINK_BROADCAST_ERROR(r1, 0x10e, 0x4, &(0x7f00000000c0)=0x1000, 0x4) sendmsg$nl_generic(r1, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000100)=ANY=[@ANYBLOB="28000000100001000000000000000000000000000500000024386a562b500000000c00008008000d00ac141400"], 0x28}}, 0x0) (fail_nth: 4) chdir(&(0x7f00000001c0)='./file0\x00') r2 = syz_open_dev$mouse(&(0x7f0000000400), 0x7fffffff, 0x2d0401) sendmsg$NL80211_CMD_ADD_NAN_FUNCTION(r2, &(0x7f0000000500)={&(0x7f0000000440)={0x10, 0x0, 0x0, 0x10}, 0xc, &(0x7f00000004c0)={&(0x7f00000002c0)={0x20, 0x0, 0x100, 0x70bd2b, 0x25dfdbfd, {{}, {@void, @val={0xc, 0x99, {0x3, 0x1b}}}}}, 0x20}, 0x1, 0x0, 0x0, 0x95}, 0x40000) ioctl$FICLONE(r2, 0x40049409, r0) r3 = open$dir(&(0x7f0000000000)='.\x00', 0x0, 0x0) perf_event_open(&(0x7f0000001d80)={0x6, 0x80, 0x0, 0x0, 0x0, 0x0, 0x4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffd, 0x0, @perf_bp={0x0, 0xffffffff81000000}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffd}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r4 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000040)='/proc/crypto\x00', 0x0, 0x0) r5 = openat2(r3, &(0x7f0000000180)='./file0\x00', &(0x7f0000000200)={0x800, 0x1b9}, 0x18) setsockopt$SO_TIMESTAMPING(r5, 0x1, 0x25, &(0x7f0000000240)=0x7100, 0x4) pread64(r4, &(0x7f00000010c0)=""/4088, 0xff8, 0x0) writev(0xffffffffffffffff, &(0x7f00000003c0)=[{&(0x7f0000000000)="0000abe02400030021206cda3b5e5672b89aeddb2a535fbd0706006dff0043a9d7cceb232fb81bf74ebdd05b7677", 0x2e}, {&(0x7f0000000680)="7fd41c04550300020000000000000000010046e92ed2616f72657d044129471d4fd47924fd0900e09e0068deec02", 0x2e}], 0x2) 05:40:54 executing program 1: perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_emit_ethernet(0x3a, &(0x7f0000000000)={@local, @remote, @void, {@ipv4={0x800, @tcp={{0x6, 0x4, 0x0, 0x2, 0x2c, 0x0, 0x0, 0x0, 0x32, 0x0, @dev, @private=0xa010100, {[@lsrr={0x83, 0x5}]}}, {{0x0, 0x0, 0x41424344, 0x41424344, 0x0, 0x7, 0x5}}}}}}, 0x0) 05:40:54 executing program 4: perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_emit_ethernet(0x3a, &(0x7f0000000000)={@local, @remote, @void, {@ipv4={0x800, @tcp={{0x6, 0x4, 0x0, 0x0, 0x2c, 0x0, 0x0, 0x0, 0x32, 0x0, @dev, @private=0xa010100, {[@lsrr={0x83, 0x5}]}}, {{0x0, 0x0, 0x41424344, 0x41424344, 0x0, 0x7, 0x5}}}}}}, 0x0) openat$cgroup_devices(0xffffffffffffffff, 0x0, 0x2, 0x0) close(0xffffffffffffffff) pread64(0xffffffffffffffff, 0x0, 0x0, 0x2000) 05:40:54 executing program 5: perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0xffffffffffffffff, 0x0, 0xffffffffffffffff, 0x0) syz_open_dev$tty20(0xc, 0x4, 0x0) r0 = socket$netlink(0x10, 0x3, 0x0) sendmsg$nl_generic(r0, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000240)={&(0x7f0000000040)=ANY=[@ANYBLOB="2c0000006600210e000100100000000000000000", @ANYRES32], 0x2c}}, 0x0) io_setup(0x0, 0x0) ioctl$TIOCVHANGUP(0xffffffffffffffff, 0x5437, 0x0) 05:40:54 executing program 2: preadv2(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x2) openat(0xffffffffffffff9c, 0x0, 0x0, 0x0) r0 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x105142, 0x62) r1 = openat(0xffffffffffffff9c, 0x0, 0x0, 0x0) fallocate(r1, 0x0, 0x0, 0x8800000) lseek(0xffffffffffffffff, 0x0, 0x0) openat(0xffffffffffffffff, 0x0, 0x0, 0x20) ioctl$FS_IOC_RESVSP(0xffffffffffffffff, 0x40305828, 0x0) faccessat2(0xffffffffffffffff, 0x0, 0x0, 0x0) openat(0xffffffffffffffff, 0x0, 0x1a340, 0x100) ioctl$LOOP_CTL_REMOVE(0xffffffffffffffff, 0x4c81, 0x0) r2 = fsmount(0xffffffffffffffff, 0x0, 0x0) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r3 = openat(r2, &(0x7f0000000000)='/proc/self/exe\x00', 0x4840, 0x2d) sendfile(r0, r3, 0x0, 0x100000f00) 05:40:54 executing program 1: perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_emit_ethernet(0x3a, &(0x7f0000000000)={@local, @remote, @void, {@ipv4={0x800, @tcp={{0x6, 0x4, 0x0, 0x3, 0x2c, 0x0, 0x0, 0x0, 0x32, 0x0, @dev, @private=0xa010100, {[@lsrr={0x83, 0x5}]}}, {{0x0, 0x0, 0x41424344, 0x41424344, 0x0, 0x7, 0x5}}}}}}, 0x0) [ 2962.141605] netlink: 8 bytes leftover after parsing attributes in process `syz-executor.5'. 05:40:54 executing program 7: syz_emit_ethernet(0x62, &(0x7f0000000000)={@local, @link_local, @void, {@ipv6={0x86dd, @tcp={0x0, 0x6, "0900ad", 0x2c, 0x2b, 0x0, @remote, @local, {[@dstopts={0x32, 0x0, '\x00', [@ra={0x5, 0x2, 0x20}]}, @dstopts={0x2f}], {{0x0, 0x0, 0x41424344, 0x41424344, 0x0, 0x0, 0x5}}}}}}}, 0x0) [ 2962.174803] FAULT_INJECTION: forcing a failure. [ 2962.174803] name failslab, interval 1, probability 0, space 0, times 0 [ 2962.177566] CPU: 0 PID: 12986 Comm: syz-executor.3 Not tainted 5.10.204 #1 [ 2962.179040] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 2962.180751] Call Trace: [ 2962.181313] dump_stack+0x107/0x167 [ 2962.182085] should_fail.cold+0x5/0xa [ 2962.182889] ? create_object.isra.0+0x3a/0xa20 [ 2962.183834] should_failslab+0x5/0x20 [ 2962.184624] kmem_cache_alloc+0x5b/0x310 [ 2962.185463] create_object.isra.0+0x3a/0xa20 [ 2962.186367] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 2962.187423] kmem_cache_alloc_node+0x169/0x330 [ 2962.188372] __alloc_skb+0x6d/0x5b0 [ 2962.189147] netlink_sendmsg+0x998/0xdf0 [ 2962.189988] ? netlink_unicast+0x7f0/0x7f0 [ 2962.190883] ? netlink_unicast+0x7f0/0x7f0 05:40:54 executing program 5: syz_emit_ethernet(0x4e, &(0x7f0000000000)={@multicast, @multicast, @val={@val={0x9100, 0x6, 0x1, 0x3}, {0x8100, 0x4, 0x1, 0x4}}, {@ipv6={0x86dd, @icmpv6={0x0, 0x6, "96153f", 0x10, 0x3a, 0xff, @dev, @mcast2, {[], @ndisc_ra={0x86, 0x2}}}}}}, 0x0) [ 2962.191752] __sock_sendmsg+0x154/0x190 [ 2962.192678] ____sys_sendmsg+0x70d/0x870 [ 2962.193525] ? sock_write_iter+0x3d0/0x3d0 [ 2962.194396] ? do_recvmmsg+0x6d0/0x6d0 [ 2962.195218] ? perf_trace_lock+0xac/0x490 [ 2962.196077] ? __lockdep_reset_lock+0x180/0x180 [ 2962.197033] ? perf_trace_lock+0xac/0x490 [ 2962.197872] ? SOFTIRQ_verbose+0x10/0x10 [ 2962.198717] ___sys_sendmsg+0xf3/0x170 [ 2962.199517] ? sendmsg_copy_msghdr+0x160/0x160 [ 2962.200459] ? lock_downgrade+0x6d0/0x6d0 [ 2962.201314] ? find_held_lock+0x2c/0x110 [ 2962.202194] ? __fget_files+0x296/0x4c0 [ 2962.203042] ? __fget_light+0xea/0x290 [ 2962.203860] __sys_sendmsg+0xe5/0x1b0 [ 2962.204655] ? __sys_sendmsg_sock+0x40/0x40 [ 2962.205554] ? rcu_read_lock_any_held+0x75/0xa0 [ 2962.206543] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 2962.207663] ? syscall_enter_from_user_mode+0x1d/0x50 [ 2962.208732] ? trace_hardirqs_on+0x5b/0x180 [ 2962.209656] do_syscall_64+0x33/0x40 [ 2962.210437] entry_SYSCALL_64_after_hwframe+0x62/0xc7 [ 2962.211538] RIP: 0033:0x7f2cef979b19 [ 2962.212310] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 2962.216241] RSP: 002b:00007f2ceceef188 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 2962.217806] RAX: ffffffffffffffda RBX: 00007f2cefa8cf60 RCX: 00007f2cef979b19 [ 2962.219276] RDX: 0000000000000000 RSI: 0000000020000140 RDI: 0000000000000004 05:40:54 executing program 1: perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_emit_ethernet(0x3a, &(0x7f0000000000)={@local, @remote, @void, {@ipv4={0x800, @tcp={{0x6, 0x4, 0x0, 0x4, 0x2c, 0x0, 0x0, 0x0, 0x32, 0x0, @dev, @private=0xa010100, {[@lsrr={0x83, 0x5}]}}, {{0x0, 0x0, 0x41424344, 0x41424344, 0x0, 0x7, 0x5}}}}}}, 0x0) 05:40:54 executing program 7: getsockopt$inet_IP_XFRM_POLICY(0xffffffffffffffff, 0x0, 0x11, 0x0, &(0x7f0000000180)) r0 = creat(&(0x7f0000000440)='./file0\x00', 0x0) perf_event_open(&(0x7f0000000100)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x5805}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r1 = socket$inet6_udplite(0xa, 0x2, 0x88) setsockopt$inet6_IPV6_DSTOPTS(r1, 0x29, 0x3b, &(0x7f0000000200)=ANY=[], 0x8) sendmmsg$inet6(r1, &(0x7f0000000040)=[{{&(0x7f0000000000)={0xa, 0x4e23, 0x0, @empty}, 0x1c, 0x0}}, {{0x0, 0x0, &(0x7f0000000640)=[{&(0x7f0000000440)="10", 0xffd0}], 0x1}}, {{0x0, 0x0, &(0x7f0000000900)=[{&(0x7f00000008c0)="7f", 0x1}], 0x1}}], 0x28, 0x8080) openat(0xffffffffffffffff, &(0x7f00000001c0)='./file0\x00', 0x440000, 0x80) sendmsg$inet6(r1, &(0x7f0000004380)={0x0, 0x0, 0x0}, 0x0) openat$ptmx(0xffffffffffffff9c, &(0x7f0000000000), 0xc02, 0x0) unshare(0x48020200) ioctl$BTRFS_IOC_LOGICAL_INO(r0, 0xc0389424, &(0x7f0000000240)={0x101, 0x8, '\x00', 0x1, &(0x7f0000000200)=[0x0]}) unshare(0x2000100) [ 2962.220730] RBP: 00007f2ceceef1d0 R08: 0000000000000000 R09: 0000000000000000 [ 2962.222249] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 2962.223728] R13: 00007ffcfa2c816f R14: 00007f2ceceef300 R15: 0000000000022000 [ 2962.254368] netlink: 8 bytes leftover after parsing attributes in process `syz-executor.3'. 05:40:54 executing program 4: perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_emit_ethernet(0x3a, &(0x7f0000000000)={@local, @remote, @void, {@ipv4={0x800, @tcp={{0x6, 0x4, 0x0, 0x0, 0x2c, 0x2, 0x0, 0x0, 0x32, 0x0, @dev, @private=0xa010100, {[@lsrr={0x83, 0x5}]}}, {{0x0, 0x0, 0x41424344, 0x41424344, 0x0, 0x7, 0x5}}}}}}, 0x0) openat$cgroup_devices(0xffffffffffffffff, 0x0, 0x2, 0x0) close(0xffffffffffffffff) pread64(0xffffffffffffffff, 0x0, 0x0, 0x2000) 05:40:54 executing program 0: perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_emit_ethernet(0x3a, &(0x7f0000000000)={@local, @remote, @void, {@ipv4={0x800, @tcp={{0x6, 0x2, 0x0, 0x0, 0x2c, 0x0, 0x0, 0x0, 0x32, 0x0, @dev, @private=0xa010100, {[@lsrr={0x83, 0x5}]}}, {{0x0, 0x0, 0x41424344, 0x41424344, 0x0, 0x7, 0x5}}}}}}, 0x0) ioctl$BTRFS_IOC_BALANCE(0xffffffffffffffff, 0x5000940c, 0x0) close(0xffffffffffffffff) 05:40:54 executing program 5: perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xd, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x0, 0x0, 0x400000, 0x0, 0x7}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = inotify_init1(0x0) inotify_add_watch(r0, &(0x7f0000000040)='.\x00', 0x2000003) r1 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x46e2, 0x0) preadv(r1, 0x0, 0x0, 0x0, 0x0) ftruncate(r1, 0x0) readv(r0, &(0x7f0000000200)=[{&(0x7f00000000c0)=""/32, 0x20}, {0x0}], 0x2) 05:40:54 executing program 3: r0 = perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x0, 0x3}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) pread64(0xffffffffffffffff, 0x0, 0x7ffffffff000, 0xf0ff1f00000000) bind$inet6(0xffffffffffffffff, &(0x7f0000000040)={0xa, 0x4e23, 0x0, @remote, 0xffff}, 0x1c) r1 = socket$netlink(0x10, 0x3, 0x0) sendmsg$nl_generic(0xffffffffffffffff, 0x0, 0x41) setsockopt$netlink_NETLINK_BROADCAST_ERROR(r1, 0x10e, 0x4, &(0x7f00000000c0)=0x1000, 0x4) sendmsg$nl_generic(r1, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000100)=ANY=[@ANYBLOB="28000000100001000000000000000000000000000500000024386a562b500000000c00008008000d00ac141400"], 0x28}}, 0x0) (fail_nth: 5) chdir(&(0x7f00000001c0)='./file0\x00') r2 = syz_open_dev$mouse(&(0x7f0000000400), 0x7fffffff, 0x2d0401) sendmsg$NL80211_CMD_ADD_NAN_FUNCTION(r2, &(0x7f0000000500)={&(0x7f0000000440)={0x10, 0x0, 0x0, 0x10}, 0xc, &(0x7f00000004c0)={&(0x7f00000002c0)={0x20, 0x0, 0x100, 0x70bd2b, 0x25dfdbfd, {{}, {@void, @val={0xc, 0x99, {0x3, 0x1b}}}}}, 0x20}, 0x1, 0x0, 0x0, 0x95}, 0x40000) ioctl$FICLONE(r2, 0x40049409, r0) r3 = open$dir(&(0x7f0000000000)='.\x00', 0x0, 0x0) perf_event_open(&(0x7f0000001d80)={0x6, 0x80, 0x0, 0x0, 0x0, 0x0, 0x4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffd, 0x0, @perf_bp={0x0, 0xffffffff81000000}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffd}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r4 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000040)='/proc/crypto\x00', 0x0, 0x0) r5 = openat2(r3, &(0x7f0000000180)='./file0\x00', &(0x7f0000000200)={0x800, 0x1b9}, 0x18) setsockopt$SO_TIMESTAMPING(r5, 0x1, 0x25, &(0x7f0000000240)=0x7100, 0x4) pread64(r4, &(0x7f00000010c0)=""/4088, 0xff8, 0x0) writev(0xffffffffffffffff, &(0x7f00000003c0)=[{&(0x7f0000000000)="0000abe02400030021206cda3b5e5672b89aeddb2a535fbd0706006dff0043a9d7cceb232fb81bf74ebdd05b7677", 0x2e}, {&(0x7f0000000680)="7fd41c04550300020000000000000000010046e92ed2616f72657d044129471d4fd47924fd0900e09e0068deec02", 0x2e}], 0x2) 05:40:55 executing program 1: perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_emit_ethernet(0x3a, &(0x7f0000000000)={@local, @remote, @void, {@ipv4={0x800, @tcp={{0x6, 0x4, 0x0, 0x8, 0x2c, 0x0, 0x0, 0x0, 0x32, 0x0, @dev, @private=0xa010100, {[@lsrr={0x83, 0x5}]}}, {{0x0, 0x0, 0x41424344, 0x41424344, 0x0, 0x7, 0x5}}}}}}, 0x0) [ 2962.397367] FAULT_INJECTION: forcing a failure. [ 2962.397367] name failslab, interval 1, probability 0, space 0, times 0 [ 2962.399806] CPU: 0 PID: 12994 Comm: syz-executor.6 Not tainted 5.10.204 #1 [ 2962.401226] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 2962.402940] Call Trace: [ 2962.403487] dump_stack+0x107/0x167 [ 2962.403888] FAULT_INJECTION: forcing a failure. [ 2962.403888] name failslab, interval 1, probability 0, space 0, times 0 [ 2962.404236] should_fail.cold+0x5/0xa [ 2962.404261] ? create_object.isra.0+0x3a/0xa20 [ 2962.407166] should_failslab+0x5/0x20 [ 2962.407940] kmem_cache_alloc+0x5b/0x310 [ 2962.408779] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 2962.409853] create_object.isra.0+0x3a/0xa20 [ 2962.410775] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 2962.411813] kmem_cache_alloc_node+0x169/0x330 [ 2962.412758] __alloc_skb+0x6d/0x5b0 [ 2962.413521] __tcp_send_ack.part.0+0x67/0x650 [ 2962.414451] tcp_send_ack+0x7d/0xa0 [ 2962.415229] __tcp_ack_snd_check+0x156/0x9f0 [ 2962.416139] tcp_rcv_established+0x955/0x1e30 [ 2962.417078] ? tcp_check_space+0x6c0/0x6c0 [ 2962.417964] tcp_v6_do_rcv+0x7b3/0x1520 [ 2962.418803] __release_sock+0x139/0x3b0 [ 2962.419640] release_sock+0x54/0x1b0 [ 2962.420404] sk_wait_data+0x1a7/0x4d0 [ 2962.421224] ? sock_set_mark+0x130/0x130 [ 2962.422069] ? prepare_to_wait_exclusive+0x2a0/0x2a0 [ 2962.423159] tcp_recvmsg+0x17b2/0x2930 [ 2962.423980] ? tcp_splice_read+0x8c0/0x8c0 [ 2962.424870] ? sock_has_perm+0x1ea/0x280 [ 2962.425725] ? perf_trace_lock+0xac/0x490 [ 2962.426600] ? tcp_splice_read+0x8c0/0x8c0 [ 2962.427475] inet6_recvmsg+0x13b/0x6e0 [ 2962.428284] ? inet6_bind+0x120/0x120 [ 2962.429074] ? security_socket_recvmsg+0x95/0xc0 [ 2962.430067] ? inet6_bind+0x120/0x120 [ 2962.430861] sock_recvmsg+0xff/0x180 [ 2962.431634] __sys_recvfrom+0x1be/0x2f0 [ 2962.432455] ? __ia32_sys_send+0x100/0x100 [ 2962.433319] ? lock_downgrade+0x6d0/0x6d0 [ 2962.434202] ? wait_for_completion_io+0x270/0x270 [ 2962.435198] ? rcu_read_lock_any_held+0x75/0xa0 [ 2962.436145] ? vfs_write+0x354/0xa70 [ 2962.436911] ? fput_many+0x2f/0x1a0 [ 2962.437655] ? ksys_write+0x1a9/0x260 [ 2962.438504] ? __ia32_sys_read+0xb0/0xb0 [ 2962.439357] __x64_sys_recvfrom+0xdd/0x1b0 [ 2962.440229] ? syscall_enter_from_user_mode+0x1d/0x50 [ 2962.441279] do_syscall_64+0x33/0x40 [ 2962.442036] entry_SYSCALL_64_after_hwframe+0x62/0xc7 [ 2962.443096] RIP: 0033:0x7f7d1addbb19 [ 2962.443860] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 2962.447620] RSP: 002b:00007f7d18330188 EFLAGS: 00000246 ORIG_RAX: 000000000000002d [ 2962.449174] RAX: ffffffffffffffda RBX: 00007f7d1aeef020 RCX: 00007f7d1addbb19 [ 2962.450647] RDX: 0000000000001000 RSI: 0000000020001e00 RDI: 0000000000000003 [ 2962.452101] RBP: 00007f7d183301d0 R08: 0000000000000000 R09: 0000000000000000 [ 2962.453558] R10: 000000000000cd08 R11: 0000000000000246 R12: 0000000000000002 [ 2962.455020] R13: 00007ffe0ac926cf R14: 00007f7d18330300 R15: 0000000000022000 [ 2962.456509] CPU: 1 PID: 13011 Comm: syz-executor.3 Not tainted 5.10.204 #1 [ 2962.457252] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 2962.458124] Call Trace: [ 2962.458409] dump_stack+0x107/0x167 [ 2962.458812] should_fail.cold+0x5/0xa [ 2962.459234] should_failslab+0x5/0x20 [ 2962.459661] __kmalloc_node_track_caller+0x74/0x3b0 [ 2962.460200] ? netlink_sendmsg+0x998/0xdf0 [ 2962.460672] __alloc_skb+0xb1/0x5b0 [ 2962.461217] netlink_sendmsg+0x998/0xdf0 [ 2962.461688] ? netlink_unicast+0x7f0/0x7f0 [ 2962.462147] ? netlink_unicast+0x7f0/0x7f0 [ 2962.462638] __sock_sendmsg+0x154/0x190 [ 2962.463053] ____sys_sendmsg+0x70d/0x870 [ 2962.463507] ? sock_write_iter+0x3d0/0x3d0 [ 2962.463949] ? do_recvmmsg+0x6d0/0x6d0 [ 2962.464390] ? perf_trace_lock+0xac/0x490 [ 2962.464826] ? __lockdep_reset_lock+0x180/0x180 [ 2962.465309] ? perf_trace_lock+0xac/0x490 [ 2962.465737] ? SOFTIRQ_verbose+0x10/0x10 [ 2962.466169] ___sys_sendmsg+0xf3/0x170 [ 2962.466586] ? sendmsg_copy_msghdr+0x160/0x160 [ 2962.467079] ? lock_downgrade+0x6d0/0x6d0 [ 2962.467519] ? find_held_lock+0x2c/0x110 [ 2962.467981] ? __fget_files+0x296/0x4c0 [ 2962.468407] ? __fget_light+0xea/0x290 [ 2962.468849] __sys_sendmsg+0xe5/0x1b0 [ 2962.469254] ? __sys_sendmsg_sock+0x40/0x40 [ 2962.469728] ? rcu_read_lock_any_held+0x75/0xa0 [ 2962.470248] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 2962.470837] ? syscall_enter_from_user_mode+0x1d/0x50 [ 2962.471368] ? trace_hardirqs_on+0x5b/0x180 [ 2962.471849] do_syscall_64+0x33/0x40 [ 2962.472238] entry_SYSCALL_64_after_hwframe+0x62/0xc7 [ 2962.472797] RIP: 0033:0x7f2cef979b19 [ 2962.473189] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 2962.475070] RSP: 002b:00007f2ceceef188 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 2962.475897] RAX: ffffffffffffffda RBX: 00007f2cefa8cf60 RCX: 00007f2cef979b19 [ 2962.476636] RDX: 0000000000000000 RSI: 0000000020000140 RDI: 0000000000000004 [ 2962.477406] RBP: 00007f2ceceef1d0 R08: 0000000000000000 R09: 0000000000000000 [ 2962.478143] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 2962.478898] R13: 00007ffcfa2c816f R14: 00007f2ceceef300 R15: 0000000000022000 05:41:11 executing program 6: r0 = socket$inet6_tcp(0xa, 0x1, 0x0) setsockopt$inet6_tcp_int(r0, 0x6, 0x2, &(0x7f0000000080)=0x90, 0x4) bind$inet6(r0, &(0x7f00000000c0)={0xa, 0x4e20, 0x0, @loopback}, 0x1c) connect$inet6(r0, &(0x7f0000000000)={0xa, 0x4e20, 0x0, @empty}, 0x1c) setsockopt$sock_int(r0, 0x1, 0x8, &(0x7f0000002ec0), 0x4) sendmsg$inet6(r0, &(0x7f00000006c0)={0x0, 0x0, &(0x7f0000000540)=[{&(0x7f00000001c0)="cf", 0xfffffdef}], 0x1}, 0x10044001) setsockopt$SO_TIMESTAMP(r0, 0x1, 0x40, &(0x7f0000000280)=0x380, 0x4) recvfrom$inet6(r0, &(0x7f0000001e00)=""/4096, 0x1000, 0xcd08, 0x0, 0x0) (fail_nth: 23) 05:41:11 executing program 0: perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_emit_ethernet(0x3a, &(0x7f0000000000)={@local, @remote, @void, {@ipv4={0x800, @tcp={{0x6, 0x3, 0x0, 0x0, 0x2c, 0x0, 0x0, 0x0, 0x32, 0x0, @dev, @private=0xa010100, {[@lsrr={0x83, 0x5}]}}, {{0x0, 0x0, 0x41424344, 0x41424344, 0x0, 0x7, 0x5}}}}}}, 0x0) ioctl$BTRFS_IOC_BALANCE(0xffffffffffffffff, 0x5000940c, 0x0) close(0xffffffffffffffff) 05:41:11 executing program 7: perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x1}, 0x0, 0x1}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_open_procfs$userns(0xffffffffffffffff, &(0x7f0000000000)) connect$unix(0xffffffffffffffff, 0x0, 0x0) openat$ptmx(0xffffffffffffff9c, 0x0, 0x0, 0x0) 05:41:11 executing program 4: perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_emit_ethernet(0x3a, &(0x7f0000000000)={@local, @remote, @void, {@ipv4={0x800, @tcp={{0x6, 0x4, 0x0, 0x0, 0x2c, 0x3, 0x0, 0x0, 0x32, 0x0, @dev, @private=0xa010100, {[@lsrr={0x83, 0x5}]}}, {{0x0, 0x0, 0x41424344, 0x41424344, 0x0, 0x7, 0x5}}}}}}, 0x0) openat$cgroup_devices(0xffffffffffffffff, 0x0, 0x2, 0x0) close(0xffffffffffffffff) pread64(0xffffffffffffffff, 0x0, 0x0, 0x2000) 05:41:11 executing program 3: r0 = perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x0, 0x3}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) pread64(0xffffffffffffffff, 0x0, 0x7ffffffff000, 0xf0ff1f00000000) bind$inet6(0xffffffffffffffff, &(0x7f0000000040)={0xa, 0x4e23, 0x0, @remote, 0xffff}, 0x1c) r1 = socket$netlink(0x10, 0x3, 0x0) sendmsg$nl_generic(0xffffffffffffffff, 0x0, 0x41) setsockopt$netlink_NETLINK_BROADCAST_ERROR(r1, 0x10e, 0x4, &(0x7f00000000c0)=0x1000, 0x4) sendmsg$nl_generic(r1, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000100)=ANY=[@ANYBLOB="28000000100001000000000000000000000000000500000024386a562b500000000c00008008000d00ac141400"], 0x28}}, 0x0) (fail_nth: 6) chdir(&(0x7f00000001c0)='./file0\x00') r2 = syz_open_dev$mouse(&(0x7f0000000400), 0x7fffffff, 0x2d0401) sendmsg$NL80211_CMD_ADD_NAN_FUNCTION(r2, &(0x7f0000000500)={&(0x7f0000000440)={0x10, 0x0, 0x0, 0x10}, 0xc, &(0x7f00000004c0)={&(0x7f00000002c0)={0x20, 0x0, 0x100, 0x70bd2b, 0x25dfdbfd, {{}, {@void, @val={0xc, 0x99, {0x3, 0x1b}}}}}, 0x20}, 0x1, 0x0, 0x0, 0x95}, 0x40000) ioctl$FICLONE(r2, 0x40049409, r0) r3 = open$dir(&(0x7f0000000000)='.\x00', 0x0, 0x0) perf_event_open(&(0x7f0000001d80)={0x6, 0x80, 0x0, 0x0, 0x0, 0x0, 0x4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffd, 0x0, @perf_bp={0x0, 0xffffffff81000000}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffd}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r4 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000040)='/proc/crypto\x00', 0x0, 0x0) r5 = openat2(r3, &(0x7f0000000180)='./file0\x00', &(0x7f0000000200)={0x800, 0x1b9}, 0x18) setsockopt$SO_TIMESTAMPING(r5, 0x1, 0x25, &(0x7f0000000240)=0x7100, 0x4) pread64(r4, &(0x7f00000010c0)=""/4088, 0xff8, 0x0) writev(0xffffffffffffffff, &(0x7f00000003c0)=[{&(0x7f0000000000)="0000abe02400030021206cda3b5e5672b89aeddb2a535fbd0706006dff0043a9d7cceb232fb81bf74ebdd05b7677", 0x2e}, {&(0x7f0000000680)="7fd41c04550300020000000000000000010046e92ed2616f72657d044129471d4fd47924fd0900e09e0068deec02", 0x2e}], 0x2) [ 2979.249554] FAULT_INJECTION: forcing a failure. [ 2979.249554] name failslab, interval 1, probability 0, space 0, times 0 [ 2979.250888] CPU: 1 PID: 13028 Comm: syz-executor.3 Not tainted 5.10.204 #1 [ 2979.251645] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 2979.252557] Call Trace: [ 2979.252853] dump_stack+0x107/0x167 [ 2979.253255] should_fail.cold+0x5/0xa [ 2979.253677] ? create_object.isra.0+0x3a/0xa20 [ 2979.254178] should_failslab+0x5/0x20 [ 2979.254594] kmem_cache_alloc+0x5b/0x310 [ 2979.255056] create_object.isra.0+0x3a/0xa20 [ 2979.255540] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 2979.256108] __kmalloc_node_track_caller+0x1a6/0x3b0 [ 2979.256655] ? netlink_sendmsg+0x998/0xdf0 [ 2979.257120] __alloc_skb+0xb1/0x5b0 [ 2979.257520] netlink_sendmsg+0x998/0xdf0 [ 2979.257967] ? netlink_unicast+0x7f0/0x7f0 [ 2979.258427] ? netlink_unicast+0x7f0/0x7f0 [ 2979.258899] __sock_sendmsg+0x154/0x190 [ 2979.259332] ____sys_sendmsg+0x70d/0x870 [ 2979.259785] ? sock_write_iter+0x3d0/0x3d0 [ 2979.260249] ? do_recvmmsg+0x6d0/0x6d0 [ 2979.260676] ? perf_trace_lock+0xac/0x490 [ 2979.261143] ? __lockdep_reset_lock+0x180/0x180 [ 2979.261655] ? perf_trace_lock+0xac/0x490 [ 2979.262126] ? SOFTIRQ_verbose+0x10/0x10 [ 2979.262577] ___sys_sendmsg+0xf3/0x170 [ 2979.263031] ? sendmsg_copy_msghdr+0x160/0x160 [ 2979.263537] ? lock_downgrade+0x6d0/0x6d0 [ 2979.263998] ? find_held_lock+0x2c/0x110 [ 2979.264456] ? __fget_files+0x296/0x4c0 [ 2979.264909] ? __fget_light+0xea/0x290 [ 2979.265353] __sys_sendmsg+0xe5/0x1b0 [ 2979.265776] ? __sys_sendmsg_sock+0x40/0x40 [ 2979.266263] ? rcu_read_lock_any_held+0x75/0xa0 [ 2979.266802] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 2979.267387] ? syscall_enter_from_user_mode+0x1d/0x50 [ 2979.267963] ? trace_hardirqs_on+0x5b/0x180 [ 2979.268446] do_syscall_64+0x33/0x40 [ 2979.268863] entry_SYSCALL_64_after_hwframe+0x62/0xc7 [ 2979.269441] RIP: 0033:0x7f2cef979b19 [ 2979.269852] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 2979.271907] RSP: 002b:00007f2ceceef188 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 2979.272757] RAX: ffffffffffffffda RBX: 00007f2cefa8cf60 RCX: 00007f2cef979b19 [ 2979.273550] RDX: 0000000000000000 RSI: 0000000020000140 RDI: 0000000000000004 [ 2979.274344] RBP: 00007f2ceceef1d0 R08: 0000000000000000 R09: 0000000000000000 [ 2979.275149] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 2979.275950] R13: 00007ffcfa2c816f R14: 00007f2ceceef300 R15: 0000000000022000 05:41:11 executing program 5: r0 = perf_event_open(&(0x7f0000001d80)={0x6, 0x80, 0x7, 0x0, 0x0, 0x0, 0x4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0, 0xffffffff81000000}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r1 = perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) getpeername$packet(r1, &(0x7f00000018c0)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @local}, &(0x7f0000001900)=0x14) bind$packet(0xffffffffffffffff, &(0x7f0000001940)={0x11, 0x18, r2, 0x1, 0x8, 0x6, @multicast}, 0x14) r3 = syz_open_procfs(0x0, &(0x7f0000000140)='personality\x00') prctl$PR_SET_MM_EXE_FILE(0x23, 0xd, r1) r4 = socket$inet_tcp(0x2, 0x1, 0x0) setsockopt$inet_tcp_TCP_REPAIR(r4, 0x6, 0x13, &(0x7f0000000080)=0x1, 0x4) connect$inet(r4, &(0x7f0000000000)={0x2, 0x0, @loopback}, 0x10) setsockopt$inet_tcp_TCP_REPAIR(r4, 0x6, 0x13, &(0x7f0000000040)=0xffffffffffffffff, 0x4) sendto$inet(r4, &(0x7f0000000180)='\\', 0xfffffdef, 0x240, 0x0, 0x7) r5 = openat$bsg(0xffffffffffffff9c, &(0x7f0000000280), 0x0, 0x0) ioctl$FS_IOC_ENABLE_VERITY(r5, 0x40806685, &(0x7f0000001300)={0x1, 0x0, 0x1000, 0x0, 0x0, 0xbe0, 0x0, &(0x7f0000000300)="c6aa5ec472e4ed13d2875d38e550467b56f77da54529628adf518f1a086b122c5a8fc819776b1bc135130244c3b2849d35b6ea350e76e2a6b4456cfeed77bccc9dcc18dd5709df6729fbfdc765b03de2146ea2e096c8067e4abc31e6cf9c909aeae1fed5a2f7959a4651bc018b9dfc14f997121a75c47b59861ee799e0a5fc9fabf5abe21f7eb3180426d7d7f4b19eebc38fc1f7cd073a3919bb3404a4df9d0baece606a3e7190603d334faeac26a544049245fe645323b957c4300e5b55e612cc6fd93a3bbe62124f2d8766be7e583c5286a46fa0bbd00b2540e7f85c86af7e00211cda516821730c73163369d698dea1f1731c4d483e74ab1f172a8723c8329417649e761fdbaf4b5c52a932a0116ea27fca58886aea656384ce4d3305cb16593700a648bc0387189991648614584c72252ec6ccce024561497019c3f2383a57215733b50e28273104d95c037a44e6ef6d78775bf9857d050afa4124a9c4a98527cfe7aa30fa49310bc5289bd91774d76bcb6b6ff1008bebfaa2c0594a6e1c172dd842821139303c59585b8e070004598862012cac2360ef5717a26f5bfb1bab2b874807effd7ab2f0253fa6ca12434bd7e6a9f6a4249944bbac991813567f0f043d859aaaacd1443b0816421fc838b8dc3cf95d12783e51684c3996d7affa509ec8e7c0582dc691aea1a448c4aeb67e49ca10d6f6bc278470221e01525db8efb2564002f0b0c302dea43e14885bcbb890c93b156d0a20a307f58e9a1ef9cdab8c5a03ed5ed6306cf700f266c2dbf04ae69eb41afdbab0b897faa438c32db4eaad4d622775ee1eb1eb4d6d18a3ac6f21fddf88e0c60b182a221c603a4af00b904d31eb5c490d57046242df916a251ba102cc14100dbada9ac026ce94ae067104a08442d78ab3369fee3e6573dde8a3d30263e6b964b8ee75a85746d24ad39dd17265ba0a0b134c5cec1f7c52ad3d0f894d0b1e100d6d4737e3d7f5db3664fd244aad88a18c3e6beb00bd383714284f17221eb249150432ef2bd5e8bc3fbe742d63bf5b78112a7c65283f41eb34c3738a119596eefb914681c6b34684e5d05c85dfb308826757f95bd41ece45a697624a35b0bb9325a9088832edff93fb9b273a91cb04fa787f5a4e2a6eb40df35b4c534ffbfabebd69fc7154ef5c781640db1266c0ef1c3c71c723cfca637ad0a1cfa55ec99aab65ea993dc916d590e1d54086859c55a8bc7656747dcb4f014cb9938a5ba5ba5546ae70dcd2b076e45d817e53a1a914d01394d3732c25ade2ecfa799632675011d9d0147f0f070258ac183fc52b3518f4e18ce9f24e055bc01631c20a4ae9c0b490881857562e43261757c2375935b64e0a579f52fd0c72cff2ab3c68efb51c7aa2172a668dc11683a5313f7df065a1c48346408c488663f0bd4318fc9065eb089b7119d47ccaaf9ce64f6e9e11599c85eb764337a705591197281b346c89aaaca6009bb5076e36e19c26a76788ba4a663ff6ee439049301f5b335404768b281772b6d1c29a63048cbdedabea1c37bc52eb83fbab12f8382026ccbf25dc7697e5d963f63746eecbb6d8899081fc9ecc8b5c28ec78e2072b5eebac8dd150c1b2c3b2dc195e6a0c666efa19641fe55f93182c761b68dcc51739c04ecb65f155c3128bc44d6b6ed05d700fa0e526e4958ec6fff88200cc7c20a6041b3a3da4b315dffff9b60c0faf3fa6b121c2103c354609c1e88d7b9a35bfae4c32f8c5036d45c309e4f16079cba021d664afdded328da62dd8b718a5f335f46b490441e1d61e067c72bce8e48e59aec45a158a624a70f71ce7ce06f3f91d5ddaf6d9bcaa2f6aaaf333ae270e9ce09076954d66e1f52b36ea12ec9c7240a54b0aeb3ec9863b04606a72e5191879066fdecf61b7c4d2033a41ef1bf902dc4f394f3078bd7fb225b7e43205c15e597d1df083529fd9e4f8fe3dd2bfca561434724d3bd4c631b831f13464b01f66e19b26f913e71f9c54bb2a430c2a43cd1e1a59c9476db41adf1d518229e76f58383d2d7a9c603126e072008352e81d36d14b2e11df4643f07f41f3b099354b16a10d017b45a2bfd9f95bd155566e34d75fb18b5f44ac1eb6f68b8cb832c45f2c101a1d2fca859a6e183e5957dc581e8526ae8d1c4ffbe1443d4367774257c61fa84ce10dab0e3077f9cb009266640bed3f4e70e087655f7423fe0080343e2434372034b49c2d32f1607e74019285ab33816cd33bb3fd3c1bfd6fcd4e15787a5d89c34b7d49692e2f27ff88a6abfe2ea07c6ac3b2f7ccf21dafdb9eac5bc498c4b2783688bdcf8a161c37112e2869acc6b86b15460cb8be2983919fffd988c6398df6d099f4a25c807c1e70e722a841699601f65a4e185eabc56b2ee114cec5a7d2aad747753189ebd73209d57ed4fa68905964fa39c23da8bdc64b63798a2e0b028824b8a26043e1bc0a9d1c9c1218534200f8ae0916f2808cbc0eae6fb5d8413ecdaba5c463917d490fb802d39aa0244449db6bfb3076ef322ac91da548c6eee396be2e0175df76d203435ff94324433f4e50fd47e8b2e38dd9cbfa497274ba2de6ff92a397a295ba2dc0e80db0d85af4e66c66ad6231a036238759f3f3fe77d4a24238ea90ea6ea9a49ca5052d1d6d927e2f95828b4a054d2d7cfa6393e2bcfa2b2e1ec8812e3c8da6f7867a62b892e10f532c627979ba81c62b44dc4f7749a749e1aa937299b354b97bb1eb75fb07dfd900bcd7be289785dc89e3cd3cc1bb6f05dfc6bb06dc31aeffad1dfc0dd1a1f70bfa08c032b13c108f173cda3f3354e6ad4ae84dd99b21a1bc031d2244e1434074d65f8c6892fc13ad3f02cdbc78f9ef68f90c9629b3473cb6001ad9b383f75b9897f213787e719b9b92e1ea43f2d96271c377cc2d56576132ae1c05c27e983912a89d7445655eb7c6b4dd954559c65041c9959f06c2ac3f5f2f22697d4ad36bb846443fc14e992047e5f2ad6ddde975121637ec47d149df8f7b64b11178252561be9133ccd428b2101bdffdcb4dc5b9748bdaa3b20344d14ebfe25f6e81220b6a0cb58427f6523b8d262cc59e97efb215c3f05a946bd938f5c8bdca8783f9b57b8594a7cf8e97222107912a65d284cb2a564a2606ed4f970d8334e2fbdc3e2533b8d693ad238b0c4dab09e295d2831a2d94b8d74a49cd7322bd3fa68606ecbffbf357a00b021eb241bbdca6e97e6e3a100dcb01e8e80e1a849461aa0f250efbe5c24724f4d478b36a9714e99e5a55a233e00c249d6356a4a57010b6e4ab8333c76cfd3a09d6131dad9628a734ce80215dca4afeb827216855e350f0ad999cc649efd2ac92874e694d0d9ed841bf88a1175e0aa8d03f98a9d84ab98d4d912133507d116762370373a9ac20ac78005cbbe390c0061343a72cf66f1522220e8d130a71d2c35696901d9c490855d428af090bfdaf4d27bcb17ffc7634dd9ef98cd61e7c70528b35a1fdbf4fbcb1c9ff589bf7b36f24923e373bbfc70cbe47d36503fabfd8d6700b3b7d1308e6c8c5b7d76a53518058c2eab03203d4256c9a27b3926d59f6325104ca949e66998f1ecfae35a0a587ca3abf56d82ef2a752a1f15d473bcde58a2a806eeaa467619e6cca9514dbac7e4e0126827860889422ba4052609c3ba03fd5d974e5bbe14a50e93891307db0b9d6d52b77cf21cbb96c88770ef5f7bd56b290b43acea858b00d68a78804c05585fc60d9c3056968e6525b391a21380a71822742da333bb934fc8027f493f6c84a3fbdb9993622c6b2e22b113a6e638104056b71fb6de0d3045a7ce85fcfdda011d98603d6ef4dbfb286a0a794674f4f3c719bc0ddf964ee23a1ba876e9eec5668b823d41430782401cd29ee25ba5a88e73cf9baf148579ec4d80c0d8dda8ed4638bd9b5dd8a3cf668544ae8c3417609d6a84f14263e593099c4048adac8565eb38a9d2b3cc05d5c302013178529ba354d5658d1e278dfbf1d0c2426bc889e85f3ec777a187b6ed8495d7baaefc8ccb13f2c718d32d0246a6a29f43d5b7ff45413eb88a34d96a2fb87d156d6f88c24d551c4d9f3deb88bfe71a3ebf7b11f03c2be3f9b9ecfbe630903bf3277a26dc7087a7ad0d98c2d9c7d5185adb1db4e01452e0fe57de77fa34b6f19a7035abcfff4025315d1d746cc4a6ee6b0ac329838ae7fbd2d8dda505031c4b2f318afa8beb04da361d56c23fdec98f4452848acc659f80cb0336ab5431d7c7133dbbabe1cfebdcbef2748bedd99d179ce85aa094a1a8efa7fa0e7e7b76cc0e7e79a21974b6198b9216ad37ad3454c3c7df9f1ce3e2656fd65"}) ioctl$AUTOFS_DEV_IOCTL_CLOSEMOUNT(r3, 0xc0189375, 0x0) close_range(r4, 0xffffffffffffffff, 0x0) fchmod(r4, 0x18) preadv(r3, &(0x7f0000001280)=[{&(0x7f00000001c0)=""/166, 0xa6}, {&(0x7f0000000f00)=""/253, 0xfd}, {&(0x7f0000001000)=""/200, 0xc8}, {&(0x7f0000000100)=""/37, 0x25}, {&(0x7f0000001100)=""/67, 0x43}, {&(0x7f0000001180)=""/202, 0xca}], 0x6, 0x1, 0x0) dup3(r3, r0, 0x0) 05:41:11 executing program 1: perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_emit_ethernet(0x3a, &(0x7f0000000000)={@local, @remote, @void, {@ipv4={0x800, @tcp={{0x6, 0x4, 0x0, 0xa, 0x2c, 0x0, 0x0, 0x0, 0x32, 0x0, @dev, @private=0xa010100, {[@lsrr={0x83, 0x5}]}}, {{0x0, 0x0, 0x41424344, 0x41424344, 0x0, 0x7, 0x5}}}}}}, 0x0) 05:41:11 executing program 2: preadv2(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x2) openat(0xffffffffffffff9c, 0x0, 0x0, 0x0) r0 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x105142, 0x62) r1 = openat(0xffffffffffffff9c, 0x0, 0x0, 0x0) fallocate(r1, 0x0, 0x0, 0x8800000) lseek(0xffffffffffffffff, 0x0, 0x0) openat(0xffffffffffffffff, 0x0, 0x0, 0x20) ioctl$FS_IOC_RESVSP(0xffffffffffffffff, 0x40305828, 0x0) faccessat2(0xffffffffffffffff, 0x0, 0x0, 0x0) openat(0xffffffffffffffff, 0x0, 0x1a340, 0x100) ioctl$LOOP_CTL_REMOVE(0xffffffffffffffff, 0x4c81, 0x0) r2 = fsmount(0xffffffffffffffff, 0x0, 0x0) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r3 = openat(r2, &(0x7f0000000000)='/proc/self/exe\x00', 0x4840, 0x2d) sendfile(r0, r3, 0x0, 0x100002000) [ 2979.315260] netlink: 8 bytes leftover after parsing attributes in process `syz-executor.3'. 05:41:11 executing program 1: perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_emit_ethernet(0x3a, &(0x7f0000000000)={@local, @remote, @void, {@ipv4={0x800, @tcp={{0x6, 0x4, 0x0, 0xe, 0x2c, 0x0, 0x0, 0x0, 0x32, 0x0, @dev, @private=0xa010100, {[@lsrr={0x83, 0x5}]}}, {{0x0, 0x0, 0x41424344, 0x41424344, 0x0, 0x7, 0x5}}}}}}, 0x0) 05:41:11 executing program 4: perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_emit_ethernet(0x3a, &(0x7f0000000000)={@local, @remote, @void, {@ipv4={0x800, @tcp={{0x6, 0x4, 0x0, 0x0, 0x2c, 0x4, 0x0, 0x0, 0x32, 0x0, @dev, @private=0xa010100, {[@lsrr={0x83, 0x5}]}}, {{0x0, 0x0, 0x41424344, 0x41424344, 0x0, 0x7, 0x5}}}}}}, 0x0) openat$cgroup_devices(0xffffffffffffffff, 0x0, 0x2, 0x0) close(0xffffffffffffffff) pread64(0xffffffffffffffff, 0x0, 0x0, 0x2000) 05:41:11 executing program 3: r0 = perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x0, 0x3}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) pread64(0xffffffffffffffff, 0x0, 0x7ffffffff000, 0xf0ff1f00000000) bind$inet6(0xffffffffffffffff, &(0x7f0000000040)={0xa, 0x4e23, 0x0, @remote, 0xffff}, 0x1c) r1 = socket$netlink(0x10, 0x3, 0x0) sendmsg$nl_generic(0xffffffffffffffff, 0x0, 0x41) setsockopt$netlink_NETLINK_BROADCAST_ERROR(r1, 0x10e, 0x4, &(0x7f00000000c0)=0x1000, 0x4) sendmsg$nl_generic(r1, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000100)=ANY=[@ANYBLOB="28000000100001000000000000000000000000000500000024386a562b500000000c00008008000d00ac141400"], 0x28}}, 0x0) (fail_nth: 7) chdir(&(0x7f00000001c0)='./file0\x00') r2 = syz_open_dev$mouse(&(0x7f0000000400), 0x7fffffff, 0x2d0401) sendmsg$NL80211_CMD_ADD_NAN_FUNCTION(r2, &(0x7f0000000500)={&(0x7f0000000440)={0x10, 0x0, 0x0, 0x10}, 0xc, &(0x7f00000004c0)={&(0x7f00000002c0)={0x20, 0x0, 0x100, 0x70bd2b, 0x25dfdbfd, {{}, {@void, @val={0xc, 0x99, {0x3, 0x1b}}}}}, 0x20}, 0x1, 0x0, 0x0, 0x95}, 0x40000) ioctl$FICLONE(r2, 0x40049409, r0) r3 = open$dir(&(0x7f0000000000)='.\x00', 0x0, 0x0) perf_event_open(&(0x7f0000001d80)={0x6, 0x80, 0x0, 0x0, 0x0, 0x0, 0x4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffd, 0x0, @perf_bp={0x0, 0xffffffff81000000}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffd}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r4 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000040)='/proc/crypto\x00', 0x0, 0x0) r5 = openat2(r3, &(0x7f0000000180)='./file0\x00', &(0x7f0000000200)={0x800, 0x1b9}, 0x18) setsockopt$SO_TIMESTAMPING(r5, 0x1, 0x25, &(0x7f0000000240)=0x7100, 0x4) pread64(r4, &(0x7f00000010c0)=""/4088, 0xff8, 0x0) writev(0xffffffffffffffff, &(0x7f00000003c0)=[{&(0x7f0000000000)="0000abe02400030021206cda3b5e5672b89aeddb2a535fbd0706006dff0043a9d7cceb232fb81bf74ebdd05b7677", 0x2e}, {&(0x7f0000000680)="7fd41c04550300020000000000000000010046e92ed2616f72657d044129471d4fd47924fd0900e09e0068deec02", 0x2e}], 0x2) 05:41:11 executing program 7: perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x1}, 0x0, 0x1}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_open_procfs$userns(0xffffffffffffffff, &(0x7f0000000000)) connect$unix(0xffffffffffffffff, 0x0, 0x0) openat$ptmx(0xffffffffffffff9c, 0x0, 0x0, 0x0) 05:41:12 executing program 0: perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_emit_ethernet(0x3a, &(0x7f0000000000)={@local, @remote, @void, {@ipv4={0x800, @tcp={{0x6, 0x5, 0x0, 0x0, 0x2c, 0x0, 0x0, 0x0, 0x32, 0x0, @dev, @private=0xa010100, {[@lsrr={0x83, 0x5}]}}, {{0x0, 0x0, 0x41424344, 0x41424344, 0x0, 0x7, 0x5}}}}}}, 0x0) ioctl$BTRFS_IOC_BALANCE(0xffffffffffffffff, 0x5000940c, 0x0) close(0xffffffffffffffff) [ 2979.402905] FAULT_INJECTION: forcing a failure. [ 2979.402905] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 2979.404316] CPU: 1 PID: 13048 Comm: syz-executor.3 Not tainted 5.10.204 #1 [ 2979.405084] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 2979.406008] Call Trace: [ 2979.406309] dump_stack+0x107/0x167 [ 2979.406721] should_fail.cold+0x5/0xa [ 2979.407160] _copy_from_iter_full+0x201/0xa60 [ 2979.407666] ? __virt_addr_valid+0x128/0x350 [ 2979.408143] ? __check_object_size+0x319/0x440 [ 2979.408659] netlink_sendmsg+0x879/0xdf0 [ 2979.409103] ? netlink_unicast+0x7f0/0x7f0 [ 2979.409573] ? netlink_unicast+0x7f0/0x7f0 [ 2979.410041] __sock_sendmsg+0x154/0x190 [ 2979.410478] ____sys_sendmsg+0x70d/0x870 [ 2979.410932] ? sock_write_iter+0x3d0/0x3d0 [ 2979.411387] ? do_recvmmsg+0x6d0/0x6d0 [ 2979.411838] ? perf_trace_lock+0xac/0x490 [ 2979.412301] ? __lockdep_reset_lock+0x180/0x180 [ 2979.412802] ? perf_trace_lock+0xac/0x490 [ 2979.413257] ? SOFTIRQ_verbose+0x10/0x10 [ 2979.413719] ___sys_sendmsg+0xf3/0x170 [ 2979.414146] ? sendmsg_copy_msghdr+0x160/0x160 [ 2979.414657] ? lock_downgrade+0x6d0/0x6d0 [ 2979.415150] ? find_held_lock+0x2c/0x110 [ 2979.415628] ? __fget_files+0x296/0x4c0 [ 2979.416090] ? __fget_light+0xea/0x290 [ 2979.416557] __sys_sendmsg+0xe5/0x1b0 [ 2979.417006] ? __sys_sendmsg_sock+0x40/0x40 [ 2979.417537] ? rcu_read_lock_any_held+0x75/0xa0 05:41:12 executing program 1: perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_emit_ethernet(0x3a, &(0x7f0000000000)={@local, @remote, @void, {@ipv4={0x800, @tcp={{0x6, 0x4, 0x0, 0x11, 0x2c, 0x0, 0x0, 0x0, 0x32, 0x0, @dev, @private=0xa010100, {[@lsrr={0x83, 0x5}]}}, {{0x0, 0x0, 0x41424344, 0x41424344, 0x0, 0x7, 0x5}}}}}}, 0x0) [ 2979.418221] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 2979.418944] ? syscall_enter_from_user_mode+0x1d/0x50 [ 2979.419520] ? trace_hardirqs_on+0x5b/0x180 [ 2979.420008] do_syscall_64+0x33/0x40 [ 2979.420422] entry_SYSCALL_64_after_hwframe+0x62/0xc7 [ 2979.420987] RIP: 0033:0x7f2cef979b19 [ 2979.421403] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 2979.423468] RSP: 002b:00007f2ceceef188 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 2979.424297] RAX: ffffffffffffffda RBX: 00007f2cefa8cf60 RCX: 00007f2cef979b19 [ 2979.425110] RDX: 0000000000000000 RSI: 0000000020000140 RDI: 0000000000000004 [ 2979.425914] RBP: 00007f2ceceef1d0 R08: 0000000000000000 R09: 0000000000000000 [ 2979.426715] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 2979.427514] R13: 00007ffcfa2c816f R14: 00007f2ceceef300 R15: 0000000000022000 [ 2979.550261] FAULT_INJECTION: forcing a failure. [ 2979.550261] name failslab, interval 1, probability 0, space 0, times 0 [ 2979.551645] CPU: 1 PID: 13043 Comm: syz-executor.6 Not tainted 5.10.204 #1 [ 2979.552404] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 2979.553306] Call Trace: [ 2979.553604] dump_stack+0x107/0x167 [ 2979.554016] should_fail.cold+0x5/0xa [ 2979.554433] ? ___slab_alloc+0x360/0x700 [ 2979.554901] ? create_object.isra.0+0x3a/0xa20 [ 2979.555406] should_failslab+0x5/0x20 [ 2979.555818] kmem_cache_alloc+0x5b/0x310 [ 2979.556264] create_object.isra.0+0x3a/0xa20 [ 2979.556752] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 2979.557311] __kmalloc_node_track_caller+0x1a6/0x3b0 [ 2979.557861] ? tcp_collapse+0x42c/0xf20 [ 2979.558306] __alloc_skb+0xb1/0x5b0 [ 2979.558715] tcp_collapse+0x42c/0xf20 [ 2979.559146] ? tcp_queue_rcv+0x7c0/0x7c0 [ 2979.559603] ? tcp_xmit_retransmit_queue+0x57/0x70 [ 2979.560145] ? tcp_xmit_recovery+0x86/0x180 [ 2979.560626] ? tcp_ack+0xeef/0x5690 [ 2979.561039] tcp_try_rmem_schedule+0xb8a/0x1690 [ 2979.561572] tcp_data_queue+0x16ba/0x47f0 [ 2979.562041] ? mark_held_locks+0x9e/0xe0 [ 2979.562496] ? tcp_data_ready+0x500/0x500 [ 2979.562958] ? tcp_urg.part.0+0x157/0x2e0 [ 2979.563423] ? tcp_try_keep_open+0x2f0/0x2f0 [ 2979.563921] ? tcp_validate_incoming+0x431/0x16a0 [ 2979.564460] ? tcp_check_urg.isra.0+0x1db/0x720 [ 2979.564992] tcp_rcv_established+0x868/0x1e30 [ 2979.565492] ? tcp_check_space+0x6c0/0x6c0 [ 2979.565975] tcp_v6_do_rcv+0x7b3/0x1520 [ 2979.566418] __release_sock+0x139/0x3b0 [ 2979.566890] release_sock+0x54/0x1b0 [ 2979.567304] sk_wait_data+0x1a7/0x4d0 [ 2979.567730] ? sock_set_mark+0x130/0x130 [ 2979.568187] ? prepare_to_wait_exclusive+0x2a0/0x2a0 [ 2979.568759] ? tcp_send_ack+0x7d/0xa0 [ 2979.569183] tcp_recvmsg+0x17b2/0x2930 [ 2979.569632] ? tcp_splice_read+0x8c0/0x8c0 [ 2979.570116] ? sock_has_perm+0x1ea/0x280 [ 2979.570572] ? perf_trace_lock+0xac/0x490 [ 2979.571041] ? tcp_splice_read+0x8c0/0x8c0 [ 2979.571515] inet6_recvmsg+0x13b/0x6e0 [ 2979.571947] ? inet6_bind+0x120/0x120 [ 2979.572373] ? security_socket_recvmsg+0x95/0xc0 [ 2979.572911] ? inet6_bind+0x120/0x120 [ 2979.573338] sock_recvmsg+0xff/0x180 [ 2979.573758] __sys_recvfrom+0x1be/0x2f0 [ 2979.574208] ? __ia32_sys_send+0x100/0x100 [ 2979.574676] ? lock_downgrade+0x6d0/0x6d0 [ 2979.575166] ? wait_for_completion_io+0x270/0x270 [ 2979.575699] ? rcu_read_lock_any_held+0x75/0xa0 [ 2979.576215] ? vfs_write+0x354/0xa70 [ 2979.576628] ? fput_many+0x2f/0x1a0 [ 2979.577040] ? ksys_write+0x1a9/0x260 [ 2979.577581] ? __ia32_sys_read+0xb0/0xb0 [ 2979.578182] __x64_sys_recvfrom+0xdd/0x1b0 [ 2979.578700] ? syscall_enter_from_user_mode+0x1d/0x50 [ 2979.579316] do_syscall_64+0x33/0x40 [ 2979.579748] entry_SYSCALL_64_after_hwframe+0x62/0xc7 [ 2979.580403] RIP: 0033:0x7f7d1addbb19 [ 2979.580817] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 2979.583120] RSP: 002b:00007f7d18330188 EFLAGS: 00000246 ORIG_RAX: 000000000000002d [ 2979.584139] RAX: ffffffffffffffda RBX: 00007f7d1aeef020 RCX: 00007f7d1addbb19 [ 2979.585047] RDX: 0000000000001000 RSI: 0000000020001e00 RDI: 0000000000000003 [ 2979.585863] RBP: 00007f7d183301d0 R08: 0000000000000000 R09: 0000000000000000 [ 2979.586772] R10: 000000000000cd08 R11: 0000000000000246 R12: 0000000000000002 [ 2979.587688] R13: 00007ffe0ac926cf R14: 00007f7d18330300 R15: 0000000000022000 05:41:27 executing program 0: perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_emit_ethernet(0x3a, &(0x7f0000000000)={@local, @remote, @void, {@ipv4={0x800, @tcp={{0x6, 0x4, 0x0, 0x0, 0x2c, 0x0, 0x0, 0x0, 0x32, 0x0, @dev, @private=0xa010100, {[@lsrr={0x83, 0x5}]}}, {{0x0, 0x0, 0x41424344, 0x41424344, 0x0, 0x7, 0x5}}}}}}, 0x0) ioctl$BTRFS_IOC_BALANCE(0xffffffffffffffff, 0x5000940c, 0x0) close(0xffffffffffffffff) 05:41:27 executing program 2: preadv2(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x2) openat(0xffffffffffffff9c, 0x0, 0x0, 0x0) r0 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x105142, 0x62) r1 = openat(0xffffffffffffff9c, 0x0, 0x0, 0x0) fallocate(r1, 0x0, 0x0, 0x8800000) lseek(0xffffffffffffffff, 0x0, 0x0) openat(0xffffffffffffffff, 0x0, 0x0, 0x20) ioctl$FS_IOC_RESVSP(0xffffffffffffffff, 0x40305828, 0x0) faccessat2(0xffffffffffffffff, 0x0, 0x0, 0x0) openat(0xffffffffffffffff, 0x0, 0x1a340, 0x100) ioctl$LOOP_CTL_REMOVE(0xffffffffffffffff, 0x4c81, 0x0) r2 = fsmount(0xffffffffffffffff, 0x0, 0x0) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r3 = openat(r2, &(0x7f0000000000)='/proc/self/exe\x00', 0x4840, 0x2d) sendfile(r0, r3, 0x0, 0x1fffffff5) 05:41:27 executing program 4: perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_emit_ethernet(0x3a, &(0x7f0000000000)={@local, @remote, @void, {@ipv4={0x800, @tcp={{0x6, 0x4, 0x0, 0x0, 0x2c, 0x8, 0x0, 0x0, 0x32, 0x0, @dev, @private=0xa010100, {[@lsrr={0x83, 0x5}]}}, {{0x0, 0x0, 0x41424344, 0x41424344, 0x0, 0x7, 0x5}}}}}}, 0x0) openat$cgroup_devices(0xffffffffffffffff, 0x0, 0x2, 0x0) close(0xffffffffffffffff) pread64(0xffffffffffffffff, 0x0, 0x0, 0x2000) 05:41:27 executing program 6: r0 = socket$inet6_tcp(0xa, 0x1, 0x0) setsockopt$inet6_tcp_int(r0, 0x6, 0x2, &(0x7f0000000080)=0x90, 0x4) bind$inet6(r0, &(0x7f00000000c0)={0xa, 0x4e20, 0x0, @loopback}, 0x1c) connect$inet6(r0, &(0x7f0000000000)={0xa, 0x4e20, 0x0, @empty}, 0x1c) setsockopt$sock_int(r0, 0x1, 0x8, &(0x7f0000002ec0), 0x4) sendmsg$inet6(r0, &(0x7f00000006c0)={0x0, 0x0, &(0x7f0000000540)=[{&(0x7f00000001c0)="cf", 0xfffffdef}], 0x1}, 0x10044001) setsockopt$SO_TIMESTAMP(r0, 0x1, 0x40, &(0x7f0000000280)=0x380, 0x4) recvfrom$inet6(r0, &(0x7f0000001e00)=""/4096, 0x1000, 0xcd08, 0x0, 0x0) (fail_nth: 24) 05:41:27 executing program 5: r0 = openat$vcsa(0xffffffffffffff9c, &(0x7f000001f880), 0x0, 0x0) r1 = perf_event_open(&(0x7f0000001d80)={0x2, 0x80, 0x5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x40641, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x40, 0x0, @perf_config_ext, 0x0, 0x1, 0x0, 0x2, 0x0, 0x9}, 0x0, 0x0, 0xffffffffffffffff, 0xa) perf_event_open(&(0x7f0000001d80)={0x3, 0x80, 0x0, 0x0, 0x0, 0x0, 0x4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, r1, 0x0) ioctl$F2FS_IOC_DEFRAGMENT(r1, 0xc010f508, &(0x7f0000000040)={0xfff, 0x3}) epoll_ctl$EPOLL_CTL_ADD(r0, 0x1, r0, &(0x7f0000000000)={0x40000000}) 05:41:27 executing program 3: r0 = perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x0, 0x3}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) pread64(0xffffffffffffffff, 0x0, 0x7ffffffff000, 0xf0ff1f00000000) bind$inet6(0xffffffffffffffff, &(0x7f0000000040)={0xa, 0x4e23, 0x0, @remote, 0xffff}, 0x1c) r1 = socket$netlink(0x10, 0x3, 0x0) sendmsg$nl_generic(0xffffffffffffffff, 0x0, 0x41) setsockopt$netlink_NETLINK_BROADCAST_ERROR(r1, 0x10e, 0x4, &(0x7f00000000c0)=0x1000, 0x4) sendmsg$nl_generic(r1, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000100)=ANY=[@ANYBLOB="28000000100001000000000000000000000000000500000024386a562b500000000c00008008000d00ac141400"], 0x28}}, 0x0) (fail_nth: 8) chdir(&(0x7f00000001c0)='./file0\x00') r2 = syz_open_dev$mouse(&(0x7f0000000400), 0x7fffffff, 0x2d0401) sendmsg$NL80211_CMD_ADD_NAN_FUNCTION(r2, &(0x7f0000000500)={&(0x7f0000000440)={0x10, 0x0, 0x0, 0x10}, 0xc, &(0x7f00000004c0)={&(0x7f00000002c0)={0x20, 0x0, 0x100, 0x70bd2b, 0x25dfdbfd, {{}, {@void, @val={0xc, 0x99, {0x3, 0x1b}}}}}, 0x20}, 0x1, 0x0, 0x0, 0x95}, 0x40000) ioctl$FICLONE(r2, 0x40049409, r0) r3 = open$dir(&(0x7f0000000000)='.\x00', 0x0, 0x0) perf_event_open(&(0x7f0000001d80)={0x6, 0x80, 0x0, 0x0, 0x0, 0x0, 0x4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffd, 0x0, @perf_bp={0x0, 0xffffffff81000000}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffd}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r4 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000040)='/proc/crypto\x00', 0x0, 0x0) r5 = openat2(r3, &(0x7f0000000180)='./file0\x00', &(0x7f0000000200)={0x800, 0x1b9}, 0x18) setsockopt$SO_TIMESTAMPING(r5, 0x1, 0x25, &(0x7f0000000240)=0x7100, 0x4) pread64(r4, &(0x7f00000010c0)=""/4088, 0xff8, 0x0) writev(0xffffffffffffffff, &(0x7f00000003c0)=[{&(0x7f0000000000)="0000abe02400030021206cda3b5e5672b89aeddb2a535fbd0706006dff0043a9d7cceb232fb81bf74ebdd05b7677", 0x2e}, {&(0x7f0000000680)="7fd41c04550300020000000000000000010046e92ed2616f72657d044129471d4fd47924fd0900e09e0068deec02", 0x2e}], 0x2) 05:41:27 executing program 7: perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x1}, 0x0, 0x1}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_open_procfs$userns(0xffffffffffffffff, &(0x7f0000000000)) connect$unix(0xffffffffffffffff, 0x0, 0x0) openat$ptmx(0xffffffffffffff9c, 0x0, 0x0, 0x0) [ 2994.982716] FAULT_INJECTION: forcing a failure. [ 2994.982716] name failslab, interval 1, probability 0, space 0, times 0 [ 2994.985488] CPU: 0 PID: 13072 Comm: syz-executor.3 Not tainted 5.10.204 #1 [ 2994.986954] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 2994.988688] Call Trace: [ 2994.989239] dump_stack+0x107/0x167 [ 2994.989999] should_fail.cold+0x5/0xa [ 2994.990781] ? rtnl_newlink+0x46/0xa0 [ 2994.991585] should_failslab+0x5/0x20 [ 2994.992396] kmem_cache_alloc_trace+0x55/0x320 [ 2994.993351] rtnl_newlink+0x46/0xa0 [ 2994.994098] ? __rtnl_newlink+0x1700/0x1700 [ 2994.994989] rtnetlink_rcv_msg+0x41e/0xbb0 [ 2994.995869] ? rtnl_fdb_dump+0x9d0/0x9d0 [ 2994.996707] ? perf_trace_lock+0xac/0x490 [ 2994.997574] ? __lockdep_reset_lock+0x180/0x180 [ 2994.998538] netlink_rcv_skb+0x14b/0x430 [ 2994.999388] ? rtnl_fdb_dump+0x9d0/0x9d0 [ 2995.000248] ? netlink_ack+0xab0/0xab0 [ 2995.001052] ? netlink_deliver_tap+0x1ae/0xcd0 [ 2995.002003] ? netlink_deliver_tap+0x1c4/0xcd0 [ 2995.002951] ? is_vmalloc_addr+0x7b/0xb0 [ 2995.003795] netlink_unicast+0x549/0x7f0 [ 2995.004635] ? netlink_attachskb+0x870/0x870 [ 2995.005566] ? __virt_addr_valid+0x128/0x350 [ 2995.006576] netlink_sendmsg+0x90f/0xdf0 [ 2995.007442] ? netlink_unicast+0x7f0/0x7f0 [ 2995.008336] ? netlink_unicast+0x7f0/0x7f0 [ 2995.009206] __sock_sendmsg+0x154/0x190 [ 2995.010022] ____sys_sendmsg+0x70d/0x870 [ 2995.010863] ? sock_write_iter+0x3d0/0x3d0 [ 2995.011734] ? do_recvmmsg+0x6d0/0x6d0 [ 2995.012535] ? perf_trace_lock+0xac/0x490 [ 2995.013391] ? __lockdep_reset_lock+0x180/0x180 [ 2995.014343] ? perf_trace_lock+0xac/0x490 [ 2995.015208] ? SOFTIRQ_verbose+0x10/0x10 [ 2995.016049] ___sys_sendmsg+0xf3/0x170 [ 2995.016851] ? sendmsg_copy_msghdr+0x160/0x160 [ 2995.017802] ? lock_downgrade+0x6d0/0x6d0 [ 2995.018660] ? find_held_lock+0x2c/0x110 [ 2995.019520] ? __fget_files+0x296/0x4c0 [ 2995.020360] ? __fget_light+0xea/0x290 [ 2995.021171] __sys_sendmsg+0xe5/0x1b0 [ 2995.021954] ? __sys_sendmsg_sock+0x40/0x40 [ 2995.022838] ? rcu_read_lock_any_held+0x75/0xa0 [ 2995.023837] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 2995.024911] ? syscall_enter_from_user_mode+0x1d/0x50 [ 2995.025955] ? trace_hardirqs_on+0x5b/0x180 [ 2995.026845] do_syscall_64+0x33/0x40 [ 2995.027620] entry_SYSCALL_64_after_hwframe+0x62/0xc7 [ 2995.028681] RIP: 0033:0x7f2cef979b19 05:41:27 executing program 1: perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_emit_ethernet(0x3a, &(0x7f0000000000)={@local, @remote, @void, {@ipv4={0x800, @tcp={{0x6, 0x4, 0x0, 0x2c, 0x2c, 0x0, 0x0, 0x0, 0x32, 0x0, @dev, @private=0xa010100, {[@lsrr={0x83, 0x5}]}}, {{0x0, 0x0, 0x41424344, 0x41424344, 0x0, 0x7, 0x5}}}}}}, 0x0) [ 2995.029454] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 2995.033361] RSP: 002b:00007f2ceceef188 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 2995.034906] RAX: ffffffffffffffda RBX: 00007f2cefa8cf60 RCX: 00007f2cef979b19 [ 2995.036366] RDX: 0000000000000000 RSI: 0000000020000140 RDI: 0000000000000004 [ 2995.037823] RBP: 00007f2ceceef1d0 R08: 0000000000000000 R09: 0000000000000000 [ 2995.039278] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 2995.040738] R13: 00007ffcfa2c816f R14: 00007f2ceceef300 R15: 0000000000022000 05:41:27 executing program 0: perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_emit_ethernet(0x3a, &(0x7f0000000000)={@local, @remote, @void, {@ipv4={0x800, @tcp={{0x6, 0x4, 0x2, 0x0, 0x2c, 0x0, 0x0, 0x0, 0x32, 0x0, @dev, @private=0xa010100, {[@lsrr={0x83, 0x5}]}}, {{0x0, 0x0, 0x41424344, 0x41424344, 0x0, 0x7, 0x5}}}}}}, 0x0) ioctl$BTRFS_IOC_BALANCE(0xffffffffffffffff, 0x5000940c, 0x0) close(0xffffffffffffffff) 05:41:27 executing program 4: perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_emit_ethernet(0x3a, &(0x7f0000000000)={@local, @remote, @void, {@ipv4={0x800, @tcp={{0x6, 0x4, 0x0, 0x0, 0x2c, 0xa, 0x0, 0x0, 0x32, 0x0, @dev, @private=0xa010100, {[@lsrr={0x83, 0x5}]}}, {{0x0, 0x0, 0x41424344, 0x41424344, 0x0, 0x7, 0x5}}}}}}, 0x0) openat$cgroup_devices(0xffffffffffffffff, 0x0, 0x2, 0x0) close(0xffffffffffffffff) pread64(0xffffffffffffffff, 0x0, 0x0, 0x2000) 05:41:27 executing program 7: perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x1}, 0x0, 0x1}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_open_procfs$userns(0xffffffffffffffff, &(0x7f0000000000)) connect$unix(0xffffffffffffffff, 0x0, 0x0) openat$ptmx(0xffffffffffffff9c, 0x0, 0x0, 0x0) 05:41:27 executing program 1: perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_emit_ethernet(0x3a, &(0x7f0000000000)={@local, @remote, @void, {@ipv4={0x800, @tcp={{0x6, 0x4, 0x0, 0x3f, 0x2c, 0x0, 0x0, 0x0, 0x32, 0x0, @dev, @private=0xa010100, {[@lsrr={0x83, 0x5}]}}, {{0x0, 0x0, 0x41424344, 0x41424344, 0x0, 0x7, 0x5}}}}}}, 0x0) 05:41:27 executing program 0: perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_emit_ethernet(0x3a, &(0x7f0000000000)={@local, @remote, @void, {@ipv4={0x800, @tcp={{0x6, 0x4, 0x3, 0x0, 0x2c, 0x0, 0x0, 0x0, 0x32, 0x0, @dev, @private=0xa010100, {[@lsrr={0x83, 0x5}]}}, {{0x0, 0x0, 0x41424344, 0x41424344, 0x0, 0x7, 0x5}}}}}}, 0x0) ioctl$BTRFS_IOC_BALANCE(0xffffffffffffffff, 0x5000940c, 0x0) close(0xffffffffffffffff) 05:41:27 executing program 4: perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_emit_ethernet(0x3a, &(0x7f0000000000)={@local, @remote, @void, {@ipv4={0x800, @tcp={{0x6, 0x4, 0x0, 0x0, 0x2c, 0xe, 0x0, 0x0, 0x32, 0x0, @dev, @private=0xa010100, {[@lsrr={0x83, 0x5}]}}, {{0x0, 0x0, 0x41424344, 0x41424344, 0x0, 0x7, 0x5}}}}}}, 0x0) openat$cgroup_devices(0xffffffffffffffff, 0x0, 0x2, 0x0) close(0xffffffffffffffff) pread64(0xffffffffffffffff, 0x0, 0x0, 0x2000) 05:41:27 executing program 5: perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_emit_ethernet(0x3a, &(0x7f0000000000)={@local, @remote, @void, {@ipv4={0x800, @tcp={{0x6, 0x4, 0x0, 0x0, 0x2c, 0x4, 0x0, 0x0, 0x32, 0x0, @dev, @private=0xa010100, {[@lsrr={0x83, 0x5}]}}, {{0x0, 0x0, 0x41424344, 0x41424344, 0x0, 0x7, 0x5}}}}}}, 0x0) openat$cgroup_devices(0xffffffffffffffff, 0x0, 0x2, 0x0) close(0xffffffffffffffff) pread64(0xffffffffffffffff, 0x0, 0x0, 0x2000) 05:41:27 executing program 1: perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_emit_ethernet(0x3a, &(0x7f0000000000)={@local, @remote, @void, {@ipv4={0x800, @tcp={{0x6, 0x4, 0x0, 0x0, 0x13, 0x0, 0x0, 0x0, 0x32, 0x0, @dev, @private=0xa010100, {[@lsrr={0x83, 0x5}]}}, {{0x0, 0x0, 0x41424344, 0x41424344, 0x0, 0x7, 0x5}}}}}}, 0x0) [ 2995.398597] FAULT_INJECTION: forcing a failure. [ 2995.398597] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 2995.401181] CPU: 1 PID: 13095 Comm: syz-executor.6 Not tainted 5.10.204 #1 [ 2995.402618] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 2995.404324] Call Trace: [ 2995.404873] dump_stack+0x107/0x167 [ 2995.405633] should_fail.cold+0x5/0xa [ 2995.406420] _copy_to_iter+0x264/0x12d0 [ 2995.407268] ? _copy_from_iter_nocache+0xd60/0xd60 [ 2995.408268] ? mark_held_locks+0x9e/0xe0 [ 2995.409099] ? __virt_addr_valid+0x128/0x350 [ 2995.410018] ? __check_object_size+0x319/0x440 [ 2995.410959] simple_copy_to_iter+0x4c/0x70 [ 2995.411855] __skb_datagram_iter+0x4f7/0x880 [ 2995.412764] ? zerocopy_sg_from_iter+0x110/0x110 [ 2995.413739] skb_copy_datagram_iter+0x88/0x190 [ 2995.414672] tcp_recvmsg+0x13b5/0x2930 [ 2995.415499] ? tcp_splice_read+0x8c0/0x8c0 [ 2995.416373] ? sock_has_perm+0x1ea/0x280 [ 2995.417209] ? selinux_socket_post_create+0x7f0/0x7f0 [ 2995.418260] ? lock_downgrade+0x6d0/0x6d0 [ 2995.419117] ? perf_trace_lock+0xac/0x490 [ 2995.419968] ? tcp_splice_read+0x8c0/0x8c0 [ 2995.420828] inet6_recvmsg+0x13b/0x6e0 [ 2995.421624] ? inet6_bind+0x120/0x120 [ 2995.422406] ? security_socket_recvmsg+0x95/0xc0 [ 2995.423389] ? inet6_bind+0x120/0x120 [ 2995.424171] sock_recvmsg+0xff/0x180 [ 2995.424936] __sys_recvfrom+0x1be/0x2f0 [ 2995.425753] ? __ia32_sys_send+0x100/0x100 [ 2995.426617] ? lock_downgrade+0x6d0/0x6d0 [ 2995.427508] ? wait_for_completion_io+0x270/0x270 [ 2995.428500] ? rcu_read_lock_any_held+0x75/0xa0 [ 2995.429453] ? vfs_write+0x354/0xa70 [ 2995.430231] ? fput_many+0x2f/0x1a0 [ 2995.431001] ? ksys_write+0x1a9/0x260 [ 2995.431791] ? __ia32_sys_read+0xb0/0xb0 [ 2995.432632] __x64_sys_recvfrom+0xdd/0x1b0 [ 2995.433497] ? syscall_enter_from_user_mode+0x1d/0x50 [ 2995.434567] do_syscall_64+0x33/0x40 [ 2995.435331] entry_SYSCALL_64_after_hwframe+0x62/0xc7 [ 2995.436381] RIP: 0033:0x7f7d1addbb19 [ 2995.437144] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 2995.440901] RSP: 002b:00007f7d182ee188 EFLAGS: 00000246 ORIG_RAX: 000000000000002d [ 2995.442455] RAX: ffffffffffffffda RBX: 00007f7d1aeef1a0 RCX: 00007f7d1addbb19 [ 2995.443924] RDX: 0000000000001000 RSI: 0000000020001e00 RDI: 0000000000000003 [ 2995.445382] RBP: 00007f7d182ee1d0 R08: 0000000000000000 R09: 0000000000000000 [ 2995.446844] R10: 000000000000cd08 R11: 0000000000000246 R12: 0000000000000002 [ 2995.448311] R13: 00007ffe0ac926cf R14: 00007f7d182ee300 R15: 0000000000022000 05:41:44 executing program 2: preadv2(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x2) openat(0xffffffffffffff9c, 0x0, 0x0, 0x0) r0 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x105142, 0x62) r1 = openat(0xffffffffffffff9c, 0x0, 0x0, 0x0) fallocate(r1, 0x0, 0x0, 0x8800000) lseek(0xffffffffffffffff, 0x0, 0x0) openat(0xffffffffffffffff, 0x0, 0x0, 0x20) ioctl$FS_IOC_FSSETXATTR(r0, 0x401c5820, &(0x7f0000000040)={0x4000009, 0x4, 0x3, 0xfffffffc, 0x4}) ioctl$FS_IOC_RESVSP(0xffffffffffffffff, 0x40305828, 0x0) faccessat2(0xffffffffffffffff, 0x0, 0x0, 0x0) openat(0xffffffffffffffff, 0x0, 0x1a340, 0x182) ioctl$LOOP_CTL_REMOVE(0xffffffffffffffff, 0x4c81, 0x0) r2 = fsmount(0xffffffffffffffff, 0x0, 0x0) unlink(&(0x7f0000000080)='./file1\x00') perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r3 = openat(r2, &(0x7f0000000000)='/proc/self/exe\x00', 0x4840, 0x2d) sendfile(r0, r3, 0x0, 0x100000001) 05:41:44 executing program 6: r0 = socket$inet6_tcp(0xa, 0x1, 0x0) setsockopt$inet6_tcp_int(r0, 0x6, 0x2, &(0x7f0000000080)=0x90, 0x4) bind$inet6(r0, &(0x7f00000000c0)={0xa, 0x4e20, 0x0, @loopback}, 0x1c) connect$inet6(r0, &(0x7f0000000000)={0xa, 0x4e20, 0x0, @empty}, 0x1c) setsockopt$sock_int(r0, 0x1, 0x8, &(0x7f0000002ec0), 0x4) sendmsg$inet6(r0, &(0x7f00000006c0)={0x0, 0x0, &(0x7f0000000540)=[{&(0x7f00000001c0)="cf", 0xfffffdef}], 0x1}, 0x10044001) setsockopt$SO_TIMESTAMP(r0, 0x1, 0x40, &(0x7f0000000280)=0x380, 0x4) recvfrom$inet6(r0, &(0x7f0000001e00)=""/4096, 0x1000, 0xcd08, 0x0, 0x0) (fail_nth: 25) 05:41:44 executing program 0: perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_emit_ethernet(0x3a, &(0x7f0000000000)={@local, @remote, @void, {@ipv4={0x800, @tcp={{0x6, 0x4, 0x0, 0x0, 0x2c, 0x0, 0x0, 0x0, 0x32, 0x0, @dev, @private=0xa010100, {[@lsrr={0x83, 0x5}]}}, {{0x0, 0x0, 0x41424344, 0x41424344, 0x0, 0x7, 0x5}}}}}}, 0x0) ioctl$BTRFS_IOC_BALANCE(0xffffffffffffffff, 0x5000940c, 0x0) close(0xffffffffffffffff) 05:41:44 executing program 4: perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_emit_ethernet(0x3a, &(0x7f0000000000)={@local, @remote, @void, {@ipv4={0x800, @tcp={{0x6, 0x4, 0x0, 0x0, 0x2c, 0x11, 0x0, 0x0, 0x32, 0x0, @dev, @private=0xa010100, {[@lsrr={0x83, 0x5}]}}, {{0x0, 0x0, 0x41424344, 0x41424344, 0x0, 0x7, 0x5}}}}}}, 0x0) openat$cgroup_devices(0xffffffffffffffff, 0x0, 0x2, 0x0) close(0xffffffffffffffff) pread64(0xffffffffffffffff, 0x0, 0x0, 0x2000) 05:41:44 executing program 7: mlock2(&(0x7f0000ffd000/0x3000)=nil, 0x3000, 0x0) pkey_mprotect(&(0x7f0000ffb000/0x3000)=nil, 0x3000, 0x2000000, 0xffffffffffffffff) r0 = perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, @perf_config_ext={0x8}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) mbind(&(0x7f0000ffd000/0x3000)=nil, 0x3000, 0x4000, 0x0, 0x0, 0x3) pkey_alloc(0x0, 0x0) r1 = pkey_alloc(0x0, 0x2) pkey_mprotect(&(0x7f0000ffe000/0x2000)=nil, 0x2000, 0x0, r1) pkey_mprotect(&(0x7f0000ffe000/0x1000)=nil, 0x1000, 0x2, r1) ioctl$AUTOFS_DEV_IOCTL_PROTOSUBVER(0xffffffffffffffff, 0xc0189373, &(0x7f0000000140)={{0x1, 0x1, 0x18, r0, {0x7}}, './file0\x00'}) perf_event_open(0x0, 0x0, 0x4, r2, 0x0) pkey_mprotect(&(0x7f0000ffc000/0x1000)=nil, 0x1000, 0x2000001, 0xffffffffffffffff) r3 = openat(0xffffffffffffff9c, &(0x7f0000000080)='/proc/self/exe\x00', 0x0, 0x0) r4 = socket$inet6_tcp(0xa, 0x1, 0x0) creat(&(0x7f0000000100)='./file0\x00', 0x26) setsockopt$sock_int(r4, 0x1, 0x12, &(0x7f0000000200)=0x33e0, 0x4) pkey_alloc(0x0, 0x1) setsockopt$inet6_tcp_int(r4, 0x6, 0x2, &(0x7f0000000040)=0x81, 0x4) bind$inet6(r4, &(0x7f00000000c0)={0xa, 0x4e20, 0x0, @loopback}, 0x1c) connect$inet6(r4, &(0x7f0000000000)={0xa, 0x4e20, 0x0, @loopback}, 0x1c) sendfile(r4, r3, 0x0, 0x9bbb) 05:41:44 executing program 3: r0 = perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x0, 0x3}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) pread64(0xffffffffffffffff, 0x0, 0x7ffffffff000, 0xf0ff1f00000000) bind$inet6(0xffffffffffffffff, &(0x7f0000000040)={0xa, 0x4e23, 0x0, @remote, 0xffff}, 0x1c) r1 = socket$netlink(0x10, 0x3, 0x0) sendmsg$nl_generic(0xffffffffffffffff, 0x0, 0x41) setsockopt$netlink_NETLINK_BROADCAST_ERROR(r1, 0x10e, 0x4, &(0x7f00000000c0)=0x1000, 0x4) sendmsg$nl_generic(r1, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000100)=ANY=[@ANYBLOB="28000000100001000000000000000000000000000500000024386a562b500000000c00008008000d00ac141400"], 0x28}}, 0x0) (fail_nth: 9) chdir(&(0x7f00000001c0)='./file0\x00') r2 = syz_open_dev$mouse(&(0x7f0000000400), 0x7fffffff, 0x2d0401) sendmsg$NL80211_CMD_ADD_NAN_FUNCTION(r2, &(0x7f0000000500)={&(0x7f0000000440)={0x10, 0x0, 0x0, 0x10}, 0xc, &(0x7f00000004c0)={&(0x7f00000002c0)={0x20, 0x0, 0x100, 0x70bd2b, 0x25dfdbfd, {{}, {@void, @val={0xc, 0x99, {0x3, 0x1b}}}}}, 0x20}, 0x1, 0x0, 0x0, 0x95}, 0x40000) ioctl$FICLONE(r2, 0x40049409, r0) r3 = open$dir(&(0x7f0000000000)='.\x00', 0x0, 0x0) perf_event_open(&(0x7f0000001d80)={0x6, 0x80, 0x0, 0x0, 0x0, 0x0, 0x4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffd, 0x0, @perf_bp={0x0, 0xffffffff81000000}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffd}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r4 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000040)='/proc/crypto\x00', 0x0, 0x0) r5 = openat2(r3, &(0x7f0000000180)='./file0\x00', &(0x7f0000000200)={0x800, 0x1b9}, 0x18) setsockopt$SO_TIMESTAMPING(r5, 0x1, 0x25, &(0x7f0000000240)=0x7100, 0x4) pread64(r4, &(0x7f00000010c0)=""/4088, 0xff8, 0x0) writev(0xffffffffffffffff, &(0x7f00000003c0)=[{&(0x7f0000000000)="0000abe02400030021206cda3b5e5672b89aeddb2a535fbd0706006dff0043a9d7cceb232fb81bf74ebdd05b7677", 0x2e}, {&(0x7f0000000680)="7fd41c04550300020000000000000000010046e92ed2616f72657d044129471d4fd47924fd0900e09e0068deec02", 0x2e}], 0x2) 05:41:44 executing program 1: perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_emit_ethernet(0x3a, &(0x7f0000000000)={@local, @remote, @void, {@ipv4={0x800, @tcp={{0x6, 0x4, 0x0, 0x0, 0x18, 0x0, 0x0, 0x0, 0x32, 0x0, @dev, @private=0xa010100, {[@lsrr={0x83, 0x5}]}}, {{0x0, 0x0, 0x41424344, 0x41424344, 0x0, 0x7, 0x5}}}}}}, 0x0) 05:41:44 executing program 5: perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x248e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0, 0xb}, 0x40000, 0x0, 0x0, 0x0, 0x0, 0x6}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r0 = socket$inet_udp(0x2, 0x2, 0x0) openat$procfs(0xffffffffffffff9c, &(0x7f0000000180)='/proc/slabinfo\x00', 0x0, 0x0) connect$inet(r0, &(0x7f0000000000)={0x2, 0x0, @dev={0xac, 0x14, 0x14, 0x26}}, 0x10) r1 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000080)='/proc/vmallocinfo\x00', 0x0, 0x0) r2 = perf_event_open(&(0x7f0000001d80)={0x2, 0x80, 0x5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x40641, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x40, 0x0, @perf_config_ext, 0x0, 0x1, 0x0, 0x2, 0x0, 0x9}, 0x0, 0x0, 0xffffffffffffffff, 0xa) perf_event_open(&(0x7f0000001d80)={0x3, 0x80, 0x0, 0x0, 0x0, 0x0, 0x4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3}, 0x0, 0x0, r2, 0x0) fcntl$addseals(r2, 0x409, 0x4) add_key$fscrypt_provisioning(&(0x7f0000000580), &(0x7f00000005c0)={'syz', 0x2}, &(0x7f0000001680)=ANY=[@ANYBLOB="02000000000000000102030405060708090a0b0c0d0e0f1011121314151b12d2161718191a1b1c000000000000000025122728292a2b2c2d2e2f301132333435363738393acc0300000050c8af41bf1df470"], 0x48, 0xfffffffffffffff9) timerfd_create(0x7, 0x800) ioctl$FS_IOC_ADD_ENCRYPTION_KEY(r1, 0xc0506617, &(0x7f0000000400)=ANY=[@ANYBLOB="0200000089953e3fca78820bdc000000a5ec00000000000000000000000000f320fbc5a81c394be0cb0000005c8745426c7263ef5b6772ccc779ccda776973bb2f124d640b71df2fa94c138dce40b80bdb87d6744856fed6115aa0262b8aa6be73e9a6d59058394f40df10c47871484a7812944c62674cb31a0ba49f48e13a26a86cc2374c2de8872dc85f4b6f461931ca228ded0354bfe5fe852649c0b79dcc8843b5677c3f9d782d884e5ce5f29f19e08286cc847224eaea0d85a359a7b9fea28a503aa1d7fdb9e1682c043d898d9915b62357b4c268", @ANYRES32=0x0, @ANYBLOB="0000000000000000000000000000000000000000000000000000000087ac9b43105c96666768696a6b6c6d6e6f707172737475767778797a3031"]) add_key(&(0x7f0000000040)='asymmetric\x00', &(0x7f00000000c0)={'syz', 0x0}, &(0x7f0000000680)="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", 0x1000, 0xfffffffffffffffe) sendfile(r0, r1, 0x0, 0xffe3) syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2) r3 = openat$procfs(0xffffffffffffff9c, &(0x7f00000014c0)='/proc/bus/input/devices\x00', 0x0, 0x0) pread64(r3, &(0x7f0000000040)=""/4126, 0x101e, 0x2000) connect$inet(r3, &(0x7f0000000140)={0x2, 0x4e21, @loopback}, 0x10) ioctl$PERF_EVENT_IOC_SET_OUTPUT(0xffffffffffffffff, 0x2405, 0xffffffffffffffff) socket$inet6_udplite(0xa, 0x2, 0x88) clock_gettime(0x0, &(0x7f0000000100)) 05:41:44 executing program 4: perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_emit_ethernet(0x3a, &(0x7f0000000000)={@local, @remote, @void, {@ipv4={0x800, @tcp={{0x6, 0x4, 0x0, 0x0, 0x2c, 0x2c, 0x0, 0x0, 0x32, 0x0, @dev, @private=0xa010100, {[@lsrr={0x83, 0x5}]}}, {{0x0, 0x0, 0x41424344, 0x41424344, 0x0, 0x7, 0x5}}}}}}, 0x0) openat$cgroup_devices(0xffffffffffffffff, 0x0, 0x2, 0x0) close(0xffffffffffffffff) pread64(0xffffffffffffffff, 0x0, 0x0, 0x2000) [ 3012.122708] FAULT_INJECTION: forcing a failure. [ 3012.122708] name failslab, interval 1, probability 0, space 0, times 0 [ 3012.125688] CPU: 1 PID: 13130 Comm: syz-executor.3 Not tainted 5.10.204 #1 [ 3012.127289] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 3012.129178] Call Trace: [ 3012.129789] dump_stack+0x107/0x167 [ 3012.130642] should_fail.cold+0x5/0xa [ 3012.131546] ? create_object.isra.0+0x3a/0xa20 [ 3012.132717] should_failslab+0x5/0x20 [ 3012.133604] kmem_cache_alloc+0x5b/0x310 [ 3012.134538] ? mutex_lock_io_nested+0xf30/0xf30 [ 3012.135643] create_object.isra.0+0x3a/0xa20 [ 3012.136648] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 3012.137808] kmem_cache_alloc_trace+0x151/0x320 [ 3012.138891] rtnl_newlink+0x46/0xa0 [ 3012.139731] ? __rtnl_newlink+0x1700/0x1700 [ 3012.140714] rtnetlink_rcv_msg+0x41e/0xbb0 [ 3012.141679] ? rtnl_fdb_dump+0x9d0/0x9d0 [ 3012.142605] ? perf_trace_lock+0xac/0x490 [ 3012.143579] ? __lockdep_reset_lock+0x180/0x180 [ 3012.144646] netlink_rcv_skb+0x14b/0x430 [ 3012.145570] ? rtnl_fdb_dump+0x9d0/0x9d0 [ 3012.146495] ? netlink_ack+0xab0/0xab0 [ 3012.147401] ? netlink_deliver_tap+0x1ae/0xcd0 [ 3012.148452] ? netlink_deliver_tap+0x1c4/0xcd0 [ 3012.149491] ? is_vmalloc_addr+0x7b/0xb0 [ 3012.150423] netlink_unicast+0x549/0x7f0 [ 3012.151384] ? netlink_attachskb+0x870/0x870 [ 3012.152379] ? __virt_addr_valid+0x128/0x350 [ 3012.153395] netlink_sendmsg+0x90f/0xdf0 [ 3012.154326] ? netlink_unicast+0x7f0/0x7f0 [ 3012.155325] ? netlink_unicast+0x7f0/0x7f0 [ 3012.156289] __sock_sendmsg+0x154/0x190 [ 3012.157200] ____sys_sendmsg+0x70d/0x870 [ 3012.158130] ? sock_write_iter+0x3d0/0x3d0 [ 3012.159089] ? do_recvmmsg+0x6d0/0x6d0 [ 3012.159993] ? perf_trace_lock+0xac/0x490 [ 3012.160940] ? __lockdep_reset_lock+0x180/0x180 [ 3012.161995] ? perf_trace_lock+0xac/0x490 [ 3012.162938] ? SOFTIRQ_verbose+0x10/0x10 [ 3012.163880] ___sys_sendmsg+0xf3/0x170 [ 3012.164900] ? sendmsg_copy_msghdr+0x160/0x160 [ 3012.165948] ? lock_downgrade+0x6d0/0x6d0 [ 3012.167054] ? find_held_lock+0x2c/0x110 [ 3012.168016] ? __fget_files+0x296/0x4c0 [ 3012.168957] ? __fget_light+0xea/0x290 [ 3012.169919] __sys_sendmsg+0xe5/0x1b0 [ 3012.170803] ? __sys_sendmsg_sock+0x40/0x40 [ 3012.171809] ? rcu_read_lock_any_held+0x75/0xa0 [ 3012.172894] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 3012.174089] ? syscall_enter_from_user_mode+0x1d/0x50 [ 3012.175296] ? trace_hardirqs_on+0x5b/0x180 [ 3012.176288] do_syscall_64+0x33/0x40 [ 3012.177141] entry_SYSCALL_64_after_hwframe+0x62/0xc7 [ 3012.178312] RIP: 0033:0x7f2cef979b19 [ 3012.179167] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 3012.183373] RSP: 002b:00007f2ceceef188 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 3012.185113] RAX: ffffffffffffffda RBX: 00007f2cefa8cf60 RCX: 00007f2cef979b19 [ 3012.186738] RDX: 0000000000000000 RSI: 0000000020000140 RDI: 0000000000000004 [ 3012.188367] RBP: 00007f2ceceef1d0 R08: 0000000000000000 R09: 0000000000000000 [ 3012.190078] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 3012.191719] R13: 00007ffcfa2c816f R14: 00007f2ceceef300 R15: 0000000000022000 [ 3012.193903] netlink: 8 bytes leftover after parsing attributes in process `syz-executor.3'. 05:41:44 executing program 0: perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_emit_ethernet(0x3a, &(0x7f0000000000)={@local, @remote, @void, {@ipv4={0x800, @tcp={{0x6, 0x4, 0x0, 0x2, 0x2c, 0x0, 0x0, 0x0, 0x32, 0x0, @dev, @private=0xa010100, {[@lsrr={0x83, 0x5}]}}, {{0x0, 0x0, 0x41424344, 0x41424344, 0x0, 0x7, 0x5}}}}}}, 0x0) ioctl$BTRFS_IOC_BALANCE(0xffffffffffffffff, 0x5000940c, 0x0) close(0xffffffffffffffff) 05:41:44 executing program 1: perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_emit_ethernet(0x3a, &(0x7f0000000000)={@local, @remote, @void, {@ipv4={0x800, @tcp={{0x6, 0x4, 0x0, 0x0, 0x1c, 0x0, 0x0, 0x0, 0x32, 0x0, @dev, @private=0xa010100, {[@lsrr={0x83, 0x5}]}}, {{0x0, 0x0, 0x41424344, 0x41424344, 0x0, 0x7, 0x5}}}}}}, 0x0) 05:41:44 executing program 4: perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_emit_ethernet(0x3a, &(0x7f0000000000)={@local, @remote, @void, {@ipv4={0x800, @tcp={{0x6, 0x4, 0x0, 0x0, 0x2c, 0x48, 0x0, 0x0, 0x32, 0x0, @dev, @private=0xa010100, {[@lsrr={0x83, 0x5}]}}, {{0x0, 0x0, 0x41424344, 0x41424344, 0x0, 0x7, 0x5}}}}}}, 0x0) openat$cgroup_devices(0xffffffffffffffff, 0x0, 0x2, 0x0) close(0xffffffffffffffff) pread64(0xffffffffffffffff, 0x0, 0x0, 0x2000) 05:41:44 executing program 0: perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_emit_ethernet(0x3a, &(0x7f0000000000)={@local, @remote, @void, {@ipv4={0x800, @tcp={{0x6, 0x4, 0x0, 0x3, 0x2c, 0x0, 0x0, 0x0, 0x32, 0x0, @dev, @private=0xa010100, {[@lsrr={0x83, 0x5}]}}, {{0x0, 0x0, 0x41424344, 0x41424344, 0x0, 0x7, 0x5}}}}}}, 0x0) ioctl$BTRFS_IOC_BALANCE(0xffffffffffffffff, 0x5000940c, 0x0) close(0xffffffffffffffff) 05:41:44 executing program 1: perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_emit_ethernet(0x3a, &(0x7f0000000000)={@local, @remote, @void, {@ipv4={0x800, @tcp={{0x6, 0x4, 0x0, 0x0, 0x224, 0x0, 0x0, 0x0, 0x32, 0x0, @dev, @private=0xa010100, {[@lsrr={0x83, 0x5}]}}, {{0x0, 0x0, 0x41424344, 0x41424344, 0x0, 0x7, 0x5}}}}}}, 0x0) [ 3012.385689] FAULT_INJECTION: forcing a failure. [ 3012.385689] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 3012.388259] CPU: 0 PID: 13137 Comm: syz-executor.6 Not tainted 5.10.204 #1 [ 3012.389662] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 3012.391357] Call Trace: [ 3012.391899] dump_stack+0x107/0x167 [ 3012.392645] should_fail.cold+0x5/0xa [ 3012.393427] _copy_to_iter+0x264/0x12d0 [ 3012.394254] ? sk_wait_data+0x353/0x4d0 [ 3012.395188] ? _copy_from_iter_nocache+0xd60/0xd60 [ 3012.396187] ? mark_held_locks+0x9e/0xe0 [ 3012.397014] ? __virt_addr_valid+0x128/0x350 [ 3012.397910] ? __check_object_size+0x319/0x440 [ 3012.398844] simple_copy_to_iter+0x4c/0x70 [ 3012.399716] __skb_datagram_iter+0x4f7/0x880 [ 3012.400618] ? zerocopy_sg_from_iter+0x110/0x110 [ 3012.401594] skb_copy_datagram_iter+0x88/0x190 [ 3012.402525] tcp_recvmsg+0x13b5/0x2930 [ 3012.403357] ? tcp_splice_read+0x8c0/0x8c0 [ 3012.404226] ? sock_has_perm+0x1ea/0x280 [ 3012.405061] ? perf_trace_lock+0xac/0x490 [ 3012.405906] ? tcp_splice_read+0x8c0/0x8c0 [ 3012.406765] inet6_recvmsg+0x13b/0x6e0 [ 3012.407564] ? inet6_bind+0x120/0x120 [ 3012.408343] ? security_socket_recvmsg+0x95/0xc0 [ 3012.409302] ? inet6_bind+0x120/0x120 [ 3012.410079] sock_recvmsg+0xff/0x180 [ 3012.410837] __sys_recvfrom+0x1be/0x2f0 [ 3012.411666] ? __ia32_sys_send+0x100/0x100 [ 3012.412525] ? lock_downgrade+0x6d0/0x6d0 [ 3012.413405] ? wait_for_completion_io+0x270/0x270 [ 3012.414390] ? rcu_read_lock_any_held+0x75/0xa0 [ 3012.415338] ? vfs_write+0x354/0xa70 [ 3012.416101] ? fput_many+0x2f/0x1a0 [ 3012.416842] ? ksys_write+0x1a9/0x260 [ 3012.417618] ? __ia32_sys_read+0xb0/0xb0 [ 3012.418451] __x64_sys_recvfrom+0xdd/0x1b0 [ 3012.419318] ? syscall_enter_from_user_mode+0x1d/0x50 [ 3012.420366] do_syscall_64+0x33/0x40 [ 3012.421121] entry_SYSCALL_64_after_hwframe+0x62/0xc7 [ 3012.422165] RIP: 0033:0x7f7d1addbb19 [ 3012.422927] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 3012.426675] RSP: 002b:00007f7d18330188 EFLAGS: 00000246 ORIG_RAX: 000000000000002d [ 3012.428227] RAX: ffffffffffffffda RBX: 00007f7d1aeef020 RCX: 00007f7d1addbb19 [ 3012.429673] RDX: 0000000000001000 RSI: 0000000020001e00 RDI: 0000000000000003 [ 3012.431120] RBP: 00007f7d183301d0 R08: 0000000000000000 R09: 0000000000000000 [ 3012.432595] R10: 000000000000cd08 R11: 0000000000000246 R12: 0000000000000002 [ 3012.434039] R13: 00007ffe0ac926cf R14: 00007f7d18330300 R15: 0000000000022000 05:41:45 executing program 4: perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_emit_ethernet(0x3a, &(0x7f0000000000)={@local, @remote, @void, {@ipv4={0x800, @tcp={{0x6, 0x4, 0x0, 0x0, 0x2c, 0x56, 0x0, 0x0, 0x32, 0x0, @dev, @private=0xa010100, {[@lsrr={0x83, 0x5}]}}, {{0x0, 0x0, 0x41424344, 0x41424344, 0x0, 0x7, 0x5}}}}}}, 0x0) openat$cgroup_devices(0xffffffffffffffff, 0x0, 0x2, 0x0) close(0xffffffffffffffff) pread64(0xffffffffffffffff, 0x0, 0x0, 0x2000) 05:41:45 executing program 7: r0 = syz_mount_image$tmpfs(0x0, &(0x7f00000000c0)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0) r1 = dup(r0) r2 = syz_open_dev$vcsa(&(0x7f0000000000), 0x10000, 0x0) sendfile(r2, r1, &(0x7f0000000080)=0x478, 0x5) r3 = inotify_init1(0x0) r4 = openat$procfs(0xffffffffffffff9c, &(0x7f00000014c0)='/proc/bus/input/devices\x00', 0x0, 0x0) pread64(r4, &(0x7f0000000040)=""/4126, 0x101e, 0x2000) ioctl$CDROMREADALL(r4, 0x5318, &(0x7f00000001c0)) ioctl$F2FS_IOC_GET_FEATURES(0xffffffffffffffff, 0x8004f50c, &(0x7f00000010c0)) perf_event_open(&(0x7f0000001d80)={0x2, 0x80, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r5 = openat$procfs(0xffffffffffffff9c, &(0x7f00000014c0)='/proc/bus/input/devices\x00', 0x0, 0x0) pread64(r5, &(0x7f0000000040)=""/4126, 0x101e, 0x2000) inotify_add_watch(r5, &(0x7f0000001080)='./file0\x00', 0x200001d) inotify_add_watch(r3, &(0x7f0000000040)='./file0\x00', 0x4000000) inotify_add_watch(r3, &(0x7f0000000180)='./file0\x00', 0x4000000) 05:42:00 executing program 2: preadv2(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x2) r0 = openat(0xffffffffffffff9c, 0x0, 0x0, 0x0) r1 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x105142, 0x62) r2 = openat(0xffffffffffffff9c, 0x0, 0x0, 0x0) fallocate(r2, 0x0, 0x0, 0x8800000) lseek(0xffffffffffffffff, 0x0, 0x0) openat(0xffffffffffffffff, 0x0, 0x0, 0x20) ioctl$FS_IOC_RESVSP(0xffffffffffffffff, 0x40305828, 0x0) faccessat2(0xffffffffffffffff, 0x0, 0x0, 0x0) openat(0xffffffffffffffff, 0x0, 0x1a340, 0x100) ioctl$LOOP_CTL_REMOVE(0xffffffffffffffff, 0x4c81, 0x0) r3 = fsmount(0xffffffffffffffff, 0x0, 0x0) sendmsg$NFNL_MSG_ACCT_NEW(r0, &(0x7f0000000180)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x200}, 0xc, &(0x7f0000000140)={&(0x7f0000000080)={0x80, 0x0, 0x7, 0x801, 0x0, 0x0, {0xc, 0x0, 0xcc2}, [@NFACCT_PKTS={0xc, 0x2, 0x1, 0x0, 0xff}, @NFACCT_QUOTA={0xc, 0x6, 0x1, 0x0, 0x4}, @NFACCT_FILTER={0x2c, 0x7, 0x0, 0x1, [@NFACCT_FILTER_MASK={0x8, 0x1, 0x1, 0x0, 0xfffffff8}, @NFACCT_FILTER_MASK={0x8, 0x1, 0x1, 0x0, 0x81}, @NFACCT_FILTER_MASK={0x8, 0x1, 0x1, 0x0, 0x7ff}, @NFACCT_FILTER_VALUE={0x8, 0x2, 0x1, 0x0, 0xf6f}, @NFACCT_FILTER_VALUE={0x8, 0x2, 0x1, 0x0, 0xed1}]}, @NFACCT_FLAGS={0x8, 0x5, 0x1, 0x0, 0x1}, @NFACCT_NAME={0x9, 0x1, 'syz1\x00'}, @NFACCT_FLAGS={0x8, 0x5, 0x1, 0x0, 0x2}, @NFACCT_BYTES={0xc, 0x3, 0x1, 0x0, 0x20}]}, 0x80}, 0x1, 0x0, 0x0, 0x4080}, 0x4000080) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r4 = openat(r3, &(0x7f0000000000)='/proc/self/exe\x00', 0x4840, 0x2d) sendfile(r1, r4, 0x0, 0x100000001) 05:42:00 executing program 7: syz_mount_image$vfat(&(0x7f0000000080), &(0x7f0000000100)='./file0\x00', 0x0, 0x2, &(0x7f0000000200)=[{&(0x7f0000000180)="eb3c906d6b66732e66617400020801000470000000f801", 0x17}, {0x0, 0x0, 0x1000a00}], 0x0, &(0x7f00000000c0)=ANY=[]) chdir(&(0x7f0000000040)='./file0\x00') r0 = openat(0xffffffffffffff9c, &(0x7f00000004c0)='./file1\x00', 0x42, 0x0) close(r0) r1 = perf_event_open(&(0x7f0000001d80)={0x2, 0x80, 0x5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x40641, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x40, 0x0, @perf_config_ext, 0x0, 0x1, 0x0, 0x2, 0x0, 0x9}, 0x0, 0x0, 0xffffffffffffffff, 0xa) perf_event_open(&(0x7f0000001d80)={0x3, 0x80, 0x0, 0x0, 0x0, 0x0, 0x4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, r1, 0x0) openat(r0, &(0x7f0000000240)='./file1\x00', 0x4040, 0x80) ioctl$BTRFS_IOC_LOGICAL_INO_V2(r1, 0xc038943b, &(0x7f00000000c0)={0x4, 0x8, '\x00', 0x0, &(0x7f0000000000)=[0x0]}) clone3(&(0x7f00000008c0)={0x201044100, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0, 0x0, {r0}}, 0x58) newfstatat(0xffffffffffffff9c, &(0x7f00000002c0)='./file0\x00', &(0x7f0000000300), 0x1000) sendfile(0xffffffffffffffff, 0xffffffffffffffff, 0x0, 0x0) setxattr$incfs_id(0x0, 0x0, 0x0, 0x0, 0x2) openat$dir(0xffffffffffffff9c, &(0x7f00000001c0)='./file0\x00', 0x280000, 0x46) r2 = openat(0xffffffffffffff9c, &(0x7f0000000280)='./file1\x00', 0x0, 0x0) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x61, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x406}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) ioctl$FITRIM(r2, 0xc0185879, &(0x7f0000000140)={0x0, 0x100000000}) 05:42:00 executing program 1: perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_emit_ethernet(0x3a, &(0x7f0000000000)={@local, @remote, @void, {@ipv4={0x800, @tcp={{0x6, 0x4, 0x0, 0x0, 0x2c, 0x0, 0x0, 0x0, 0x32, 0x0, @dev, @private=0xa010100, {[@lsrr={0x83, 0x5}]}}, {{0x0, 0x0, 0x41424344, 0x41424344, 0x0, 0x7, 0x5}}}}}}, 0x0) 05:42:00 executing program 6: r0 = socket$inet6_tcp(0xa, 0x1, 0x0) setsockopt$inet6_tcp_int(r0, 0x6, 0x2, &(0x7f0000000080)=0x90, 0x4) bind$inet6(r0, &(0x7f00000000c0)={0xa, 0x4e20, 0x0, @loopback}, 0x1c) connect$inet6(r0, &(0x7f0000000000)={0xa, 0x4e20, 0x0, @empty}, 0x1c) setsockopt$sock_int(r0, 0x1, 0x8, &(0x7f0000002ec0), 0x4) sendmsg$inet6(r0, &(0x7f00000006c0)={0x0, 0x0, &(0x7f0000000540)=[{&(0x7f00000001c0)="cf", 0xfffffdef}], 0x1}, 0x10044001) setsockopt$SO_TIMESTAMP(r0, 0x1, 0x40, &(0x7f0000000280)=0x380, 0x4) recvfrom$inet6(r0, &(0x7f0000001e00)=""/4096, 0x1000, 0xcd08, 0x0, 0x0) (fail_nth: 26) 05:42:00 executing program 4: perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_emit_ethernet(0x3a, &(0x7f0000000000)={@local, @remote, @void, {@ipv4={0x800, @tcp={{0x6, 0x4, 0x0, 0x0, 0x2c, 0x60, 0x0, 0x0, 0x32, 0x0, @dev, @private=0xa010100, {[@lsrr={0x83, 0x5}]}}, {{0x0, 0x0, 0x41424344, 0x41424344, 0x0, 0x7, 0x5}}}}}}, 0x0) openat$cgroup_devices(0xffffffffffffffff, 0x0, 0x2, 0x0) close(0xffffffffffffffff) pread64(0xffffffffffffffff, 0x0, 0x0, 0x2000) 05:42:00 executing program 0: perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_emit_ethernet(0x3a, &(0x7f0000000000)={@local, @remote, @void, {@ipv4={0x800, @tcp={{0x6, 0x4, 0x0, 0x4, 0x2c, 0x0, 0x0, 0x0, 0x32, 0x0, @dev, @private=0xa010100, {[@lsrr={0x83, 0x5}]}}, {{0x0, 0x0, 0x41424344, 0x41424344, 0x0, 0x7, 0x5}}}}}}, 0x0) ioctl$BTRFS_IOC_BALANCE(0xffffffffffffffff, 0x5000940c, 0x0) close(0xffffffffffffffff) 05:42:00 executing program 3: r0 = perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x0, 0x3}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) pread64(0xffffffffffffffff, 0x0, 0x7ffffffff000, 0xf0ff1f00000000) bind$inet6(0xffffffffffffffff, &(0x7f0000000040)={0xa, 0x4e23, 0x0, @remote, 0xffff}, 0x1c) r1 = socket$netlink(0x10, 0x3, 0x0) sendmsg$nl_generic(0xffffffffffffffff, 0x0, 0x41) setsockopt$netlink_NETLINK_BROADCAST_ERROR(r1, 0x10e, 0x4, &(0x7f00000000c0)=0x1000, 0x4) sendmsg$nl_generic(r1, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000100)=ANY=[@ANYBLOB="28000000100001000000000000000000000000000500000024386a562b500000000c00008008000d00ac141400"], 0x28}}, 0x0) (fail_nth: 10) chdir(&(0x7f00000001c0)='./file0\x00') r2 = syz_open_dev$mouse(&(0x7f0000000400), 0x7fffffff, 0x2d0401) sendmsg$NL80211_CMD_ADD_NAN_FUNCTION(r2, &(0x7f0000000500)={&(0x7f0000000440)={0x10, 0x0, 0x0, 0x10}, 0xc, &(0x7f00000004c0)={&(0x7f00000002c0)={0x20, 0x0, 0x100, 0x70bd2b, 0x25dfdbfd, {{}, {@void, @val={0xc, 0x99, {0x3, 0x1b}}}}}, 0x20}, 0x1, 0x0, 0x0, 0x95}, 0x40000) ioctl$FICLONE(r2, 0x40049409, r0) r3 = open$dir(&(0x7f0000000000)='.\x00', 0x0, 0x0) perf_event_open(&(0x7f0000001d80)={0x6, 0x80, 0x0, 0x0, 0x0, 0x0, 0x4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffd, 0x0, @perf_bp={0x0, 0xffffffff81000000}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffd}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r4 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000040)='/proc/crypto\x00', 0x0, 0x0) r5 = openat2(r3, &(0x7f0000000180)='./file0\x00', &(0x7f0000000200)={0x800, 0x1b9}, 0x18) setsockopt$SO_TIMESTAMPING(r5, 0x1, 0x25, &(0x7f0000000240)=0x7100, 0x4) pread64(r4, &(0x7f00000010c0)=""/4088, 0xff8, 0x0) writev(0xffffffffffffffff, &(0x7f00000003c0)=[{&(0x7f0000000000)="0000abe02400030021206cda3b5e5672b89aeddb2a535fbd0706006dff0043a9d7cceb232fb81bf74ebdd05b7677", 0x2e}, {&(0x7f0000000680)="7fd41c04550300020000000000000000010046e92ed2616f72657d044129471d4fd47924fd0900e09e0068deec02", 0x2e}], 0x2) 05:42:00 executing program 5: perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_emit_ethernet(0x3a, &(0x7f0000000000)={@local, @remote, @void, {@ipv4={0x800, @tcp={{0x6, 0x4, 0x0, 0x0, 0x2c, 0x56, 0x0, 0x0, 0x32, 0x0, @dev, @private=0xa010100, {[@lsrr={0x83, 0x5}]}}, {{0x0, 0x0, 0x41424344, 0x41424344, 0x0, 0x7, 0x5}}}}}}, 0x0) openat$cgroup_devices(0xffffffffffffffff, 0x0, 0x2, 0x0) close(0xffffffffffffffff) pread64(0xffffffffffffffff, 0x0, 0x0, 0x2000) 05:42:00 executing program 5: r0 = openat(0xffffffffffffff9c, &(0x7f0000000000)='./cgroup/pids.max\x00', 0x200c02, 0x0) write$P9_RREADLINK(r0, &(0x7f0000000040)=ANY=[], 0x10) [ 3028.109556] netlink: 8 bytes leftover after parsing attributes in process `syz-executor.3'. 05:42:00 executing program 4: perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_emit_ethernet(0x3a, &(0x7f0000000000)={@local, @remote, @void, {@ipv4={0x800, @tcp={{0x6, 0x4, 0x0, 0x0, 0x2c, 0xe0, 0x0, 0x0, 0x32, 0x0, @dev, @private=0xa010100, {[@lsrr={0x83, 0x5}]}}, {{0x0, 0x0, 0x41424344, 0x41424344, 0x0, 0x7, 0x5}}}}}}, 0x0) openat$cgroup_devices(0xffffffffffffffff, 0x0, 0x2, 0x0) close(0xffffffffffffffff) pread64(0xffffffffffffffff, 0x0, 0x0, 0x2000) [ 3028.120364] FAULT_INJECTION: forcing a failure. [ 3028.120364] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 3028.123391] CPU: 0 PID: 13185 Comm: syz-executor.3 Not tainted 5.10.204 #1 [ 3028.124879] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 3028.126568] Call Trace: [ 3028.127107] dump_stack+0x107/0x167 [ 3028.127868] should_fail.cold+0x5/0xa [ 3028.128656] _copy_to_user+0x2e/0x180 [ 3028.129445] simple_read_from_buffer+0xcc/0x160 [ 3028.130400] proc_fail_nth_read+0x198/0x230 [ 3028.131288] ? proc_sessionid_read+0x230/0x230 [ 3028.132235] ? security_file_permission+0x24e/0x570 [ 3028.133252] ? perf_trace_initcall_start+0x101/0x380 [ 3028.134298] ? proc_sessionid_read+0x230/0x230 [ 3028.135229] vfs_read+0x228/0x580 [ 3028.135995] ksys_read+0x12d/0x260 [ 3028.136723] ? vfs_write+0xa70/0xa70 [ 3028.137488] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 3028.138562] ? syscall_enter_from_user_mode+0x1d/0x50 [ 3028.139629] do_syscall_64+0x33/0x40 05:42:00 executing program 1: perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_emit_ethernet(0x3a, &(0x7f0000000000)={@local, @remote, @void, {@ipv4={0x800, @tcp={{0x6, 0x4, 0x0, 0x0, 0x2c, 0x2, 0x0, 0x0, 0x32, 0x0, @dev, @private=0xa010100, {[@lsrr={0x83, 0x5}]}}, {{0x0, 0x0, 0x41424344, 0x41424344, 0x0, 0x7, 0x5}}}}}}, 0x0) [ 3028.140388] entry_SYSCALL_64_after_hwframe+0x62/0xc7 [ 3028.141507] RIP: 0033:0x7f2cef92c69c [ 3028.142266] Code: ec 28 48 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 f9 fc ff ff 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 31 c0 0f 05 <48> 3d 00 f0 ff ff 77 34 44 89 c7 48 89 44 24 08 e8 2f fd ff ff 48 [ 3028.146009] RSP: 002b:00007f2ceceef170 EFLAGS: 00000246 ORIG_RAX: 0000000000000000 [ 3028.147573] RAX: ffffffffffffffda RBX: 0000000000000028 RCX: 00007f2cef92c69c 05:42:00 executing program 0: perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_emit_ethernet(0x3a, &(0x7f0000000000)={@local, @remote, @void, {@ipv4={0x800, @tcp={{0x6, 0x4, 0x0, 0x8, 0x2c, 0x0, 0x0, 0x0, 0x32, 0x0, @dev, @private=0xa010100, {[@lsrr={0x83, 0x5}]}}, {{0x0, 0x0, 0x41424344, 0x41424344, 0x0, 0x7, 0x5}}}}}}, 0x0) ioctl$BTRFS_IOC_BALANCE(0xffffffffffffffff, 0x5000940c, 0x0) close(0xffffffffffffffff) [ 3028.149022] RDX: 000000000000000f RSI: 00007f2ceceef1e0 RDI: 0000000000000005 [ 3028.150525] RBP: 00007f2ceceef1d0 R08: 0000000000000000 R09: 0000000000000000 [ 3028.151999] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 3028.153449] R13: 00007ffcfa2c816f R14: 00007f2ceceef300 R15: 0000000000022000 05:42:00 executing program 7: syz_mount_image$vfat(&(0x7f0000000080), &(0x7f0000000100)='./file0\x00', 0x0, 0x2, &(0x7f0000000200)=[{&(0x7f0000000180)="eb3c906d6b66732e66617400020801000470000000f801", 0x17}, {0x0, 0x0, 0x1000a00}], 0x0, &(0x7f00000000c0)=ANY=[]) chdir(&(0x7f0000000040)='./file0\x00') r0 = openat(0xffffffffffffff9c, &(0x7f00000004c0)='./file1\x00', 0x42, 0x0) close(r0) r1 = perf_event_open(&(0x7f0000001d80)={0x2, 0x80, 0x5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x40641, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x40, 0x0, @perf_config_ext, 0x0, 0x1, 0x0, 0x2, 0x0, 0x9}, 0x0, 0x0, 0xffffffffffffffff, 0xa) perf_event_open(&(0x7f0000001d80)={0x3, 0x80, 0x0, 0x0, 0x0, 0x0, 0x4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, r1, 0x0) openat(r0, &(0x7f0000000240)='./file1\x00', 0x4040, 0x80) ioctl$BTRFS_IOC_LOGICAL_INO_V2(r1, 0xc038943b, &(0x7f00000000c0)={0x4, 0x8, '\x00', 0x0, &(0x7f0000000000)=[0x0]}) clone3(&(0x7f00000008c0)={0x201044100, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0, 0x0, {r0}}, 0x58) newfstatat(0xffffffffffffff9c, &(0x7f00000002c0)='./file0\x00', &(0x7f0000000300), 0x1000) sendfile(0xffffffffffffffff, 0xffffffffffffffff, 0x0, 0x0) setxattr$incfs_id(0x0, 0x0, 0x0, 0x0, 0x2) openat$dir(0xffffffffffffff9c, &(0x7f00000001c0)='./file0\x00', 0x280000, 0x46) r2 = openat(0xffffffffffffff9c, &(0x7f0000000280)='./file1\x00', 0x0, 0x0) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x61, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x406}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) ioctl$FITRIM(r2, 0xc0185879, &(0x7f0000000140)={0x0, 0x100000000}) 05:42:00 executing program 4: perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_emit_ethernet(0x3a, &(0x7f0000000000)={@local, @remote, @void, {@ipv4={0x800, @tcp={{0x6, 0x4, 0x0, 0x0, 0x2c, 0x1f4, 0x0, 0x0, 0x32, 0x0, @dev, @private=0xa010100, {[@lsrr={0x83, 0x5}]}}, {{0x0, 0x0, 0x41424344, 0x41424344, 0x0, 0x7, 0x5}}}}}}, 0x0) openat$cgroup_devices(0xffffffffffffffff, 0x0, 0x2, 0x0) close(0xffffffffffffffff) pread64(0xffffffffffffffff, 0x0, 0x0, 0x2000) 05:42:00 executing program 3: r0 = perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x0, 0x3}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) pread64(0xffffffffffffffff, 0x0, 0x7ffffffff000, 0xf0ff1f00000000) bind$inet6(0xffffffffffffffff, &(0x7f0000000040)={0xa, 0x4e23, 0x0, @remote, 0xffff}, 0x1c) r1 = socket$netlink(0x10, 0x3, 0x0) sendmsg$nl_generic(0xffffffffffffffff, 0x0, 0x41) setsockopt$netlink_NETLINK_BROADCAST_ERROR(r1, 0x10e, 0x4, &(0x7f00000000c0)=0x1000, 0x4) sendmsg$nl_generic(r1, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000100)=ANY=[@ANYBLOB="28000000100001000000000000000000000000000500000024386a562b500000000c00008008000d00ac141400"], 0x28}}, 0x0) chdir(&(0x7f00000001c0)='./file0\x00') r2 = syz_open_dev$mouse(&(0x7f0000000400), 0x7fffffff, 0x2d0401) sendmsg$NL80211_CMD_ADD_NAN_FUNCTION(r2, &(0x7f0000000500)={&(0x7f0000000440)={0x10, 0x0, 0x0, 0x10}, 0xc, &(0x7f00000004c0)={&(0x7f00000002c0)={0x20, 0x0, 0x100, 0x70bd2b, 0x25dfdbfd, {{}, {@void, @val={0xc, 0x99, {0x3, 0x1b}}}}}, 0x20}, 0x1, 0x0, 0x0, 0x95}, 0x40000) ioctl$FICLONE(r2, 0x40049409, r0) r3 = open$dir(&(0x7f0000000000)='.\x00', 0x0, 0x0) perf_event_open(&(0x7f0000001d80)={0x6, 0x80, 0x0, 0x0, 0x0, 0x0, 0x4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffd, 0x0, @perf_bp={0x0, 0xffffffff81000000}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffd}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r4 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000040)='/proc/crypto\x00', 0x0, 0x0) r5 = openat2(r3, &(0x7f0000000180)='./file0\x00', &(0x7f0000000200)={0x800, 0x1b9}, 0x18) setsockopt$SO_TIMESTAMPING(r5, 0x1, 0x25, &(0x7f0000000240)=0x7100, 0x4) pread64(r4, &(0x7f00000010c0)=""/4088, 0xff8, 0x0) writev(0xffffffffffffffff, &(0x7f00000003c0)=[{&(0x7f0000000000)="0000abe02400030021206cda3b5e5672b89aeddb2a535fbd0706006dff0043a9d7cceb232fb81bf74ebdd05b7677", 0x2e}, {&(0x7f0000000680)="7fd41c04550300020000000000000000010046e92ed2616f72657d044129471d4fd47924fd0900e09e0068deec02", 0x2e}], 0x2) 05:42:00 executing program 5: r0 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x42, 0x0) openat(0xffffffffffffff9c, &(0x7f0000000280)='./file0\x00', 0x0, 0x0) r1 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$BATADV_CMD_GET_BLA_CLAIM(r1, &(0x7f0000000880)={0x0, 0x0, &(0x7f0000000840)={&(0x7f0000000300)=ANY=[@ANYBLOB="cfc0ecda", @ANYRES16=0x0], 0x14}}, 0x0) ioctl$TIOCSETD(0xffffffffffffffff, 0x5423, 0x0) fcntl$lock(r1, 0x25, 0x0) ioctl$FS_IOC_FSSETXATTR(0xffffffffffffffff, 0x401c5820, &(0x7f0000000000)={0x81, 0x802}) readlinkat(0xffffffffffffffff, &(0x7f0000000140)='./file1\x00', &(0x7f0000000440)=""/192, 0xc0) syz_mount_image$nfs4(0x0, &(0x7f0000005040)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0) perf_event_open(&(0x7f0000000180)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f0000000040), 0x8}, 0x0, 0x0, 0x0, 0x9}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) rmdir(&(0x7f0000000000)='./file0\x00') syz_open_procfs(0x0, &(0x7f0000000200)='net/nfsfs\x00') ioctl$EXT4_IOC_GROUP_ADD(r0, 0x40286608, &(0x7f0000000040)={0x10}) [ 3028.327383] netlink: 8 bytes leftover after parsing attributes in process `syz-executor.3'. [ 3028.334776] FAULT_INJECTION: forcing a failure. [ 3028.334776] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 3028.336054] CPU: 1 PID: 13194 Comm: syz-executor.6 Not tainted 5.10.204 #1 [ 3028.336764] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 3028.337608] Call Trace: [ 3028.337890] dump_stack+0x107/0x167 [ 3028.338271] should_fail.cold+0x5/0xa [ 3028.338666] _copy_to_iter+0x264/0x12d0 [ 3028.339097] ? sk_wait_data+0x353/0x4d0 [ 3028.339520] ? _copy_from_iter_nocache+0xd60/0xd60 [ 3028.340043] ? mark_held_locks+0x9e/0xe0 [ 3028.340462] ? __virt_addr_valid+0x128/0x350 [ 3028.340910] ? __check_object_size+0x319/0x440 [ 3028.341388] simple_copy_to_iter+0x4c/0x70 [ 3028.341821] __skb_datagram_iter+0x4f7/0x880 [ 3028.342277] ? zerocopy_sg_from_iter+0x110/0x110 [ 3028.342768] skb_copy_datagram_iter+0x88/0x190 [ 3028.343238] tcp_recvmsg+0x13b5/0x2930 [ 3028.343665] ? tcp_splice_read+0x8c0/0x8c0 [ 3028.344162] ? sock_has_perm+0x1ea/0x280 [ 3028.344627] ? perf_trace_lock+0xac/0x490 [ 3028.345080] ? tcp_splice_read+0x8c0/0x8c0 [ 3028.345540] inet6_recvmsg+0x13b/0x6e0 [ 3028.345939] ? inet6_bind+0x120/0x120 [ 3028.346357] ? security_socket_recvmsg+0x95/0xc0 [ 3028.346874] ? inet6_bind+0x120/0x120 [ 3028.347312] sock_recvmsg+0xff/0x180 [ 3028.347751] __sys_recvfrom+0x1be/0x2f0 [ 3028.348183] ? __ia32_sys_send+0x100/0x100 [ 3028.348639] ? lock_downgrade+0x6d0/0x6d0 [ 3028.349102] ? wait_for_completion_io+0x270/0x270 [ 3028.349627] ? rcu_read_lock_any_held+0x75/0xa0 [ 3028.350133] ? vfs_write+0x354/0xa70 [ 3028.350528] ? fput_many+0x2f/0x1a0 [ 3028.350936] ? ksys_write+0x1a9/0x260 [ 3028.351354] ? __ia32_sys_read+0xb0/0xb0 [ 3028.351819] __x64_sys_recvfrom+0xdd/0x1b0 [ 3028.352274] ? syscall_enter_from_user_mode+0x1d/0x50 [ 3028.352866] do_syscall_64+0x33/0x40 [ 3028.353294] entry_SYSCALL_64_after_hwframe+0x62/0xc7 [ 3028.353852] RIP: 0033:0x7f7d1addbb19 [ 3028.354264] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 3028.356320] RSP: 002b:00007f7d18330188 EFLAGS: 00000246 ORIG_RAX: 000000000000002d [ 3028.357154] RAX: ffffffffffffffda RBX: 00007f7d1aeef020 RCX: 00007f7d1addbb19 [ 3028.357952] RDX: 0000000000001000 RSI: 0000000020001e00 RDI: 0000000000000003 [ 3028.358717] RBP: 00007f7d183301d0 R08: 0000000000000000 R09: 0000000000000000 [ 3028.359533] R10: 000000000000cd08 R11: 0000000000000246 R12: 0000000000000002 [ 3028.360324] R13: 00007ffe0ac926cf R14: 00007f7d18330300 R15: 0000000000022000 [ 3028.409635] EXT4-fs warning (device sda): verify_group_input:170: Bad blocks count 0 [ 3028.524942] EXT4-fs warning (device sda): verify_group_input:170: Bad blocks count 0 05:42:15 executing program 6: r0 = socket$inet6_tcp(0xa, 0x1, 0x0) setsockopt$inet6_tcp_int(r0, 0x6, 0x2, &(0x7f0000000080)=0x90, 0x4) bind$inet6(r0, &(0x7f00000000c0)={0xa, 0x4e20, 0x0, @loopback}, 0x1c) connect$inet6(r0, &(0x7f0000000000)={0xa, 0x4e20, 0x0, @empty}, 0x1c) setsockopt$sock_int(r0, 0x1, 0x8, &(0x7f0000002ec0), 0x4) sendmsg$inet6(r0, &(0x7f00000006c0)={0x0, 0x0, &(0x7f0000000540)=[{&(0x7f00000001c0)="cf", 0xfffffdef}], 0x1}, 0x10044001) setsockopt$SO_TIMESTAMP(r0, 0x1, 0x40, &(0x7f0000000280)=0x380, 0x4) recvfrom$inet6(r0, &(0x7f0000001e00)=""/4096, 0x1000, 0xcd08, 0x0, 0x0) (fail_nth: 27) 05:42:15 executing program 4: perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_emit_ethernet(0x3a, &(0x7f0000000000)={@local, @remote, @void, {@ipv4={0x800, @tcp={{0x6, 0x4, 0x0, 0x0, 0x2c, 0x300, 0x0, 0x0, 0x32, 0x0, @dev, @private=0xa010100, {[@lsrr={0x83, 0x5}]}}, {{0x0, 0x0, 0x41424344, 0x41424344, 0x0, 0x7, 0x5}}}}}}, 0x0) openat$cgroup_devices(0xffffffffffffffff, 0x0, 0x2, 0x0) close(0xffffffffffffffff) pread64(0xffffffffffffffff, 0x0, 0x0, 0x2000) 05:42:15 executing program 3: r0 = perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x0, 0x3}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) pread64(0xffffffffffffffff, 0x0, 0x7ffffffff000, 0xf0ff1f00000000) bind$inet6(0xffffffffffffffff, &(0x7f0000000040)={0xa, 0x4e23, 0x0, @remote, 0xffff}, 0x1c) r1 = socket$netlink(0x10, 0x3, 0x0) sendmsg$nl_generic(0xffffffffffffffff, 0x0, 0x41) setsockopt$netlink_NETLINK_BROADCAST_ERROR(r1, 0x10e, 0x4, &(0x7f00000000c0)=0x1000, 0x4) sendmsg$nl_generic(r1, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000100)=ANY=[@ANYBLOB="28000000100001000000000000000000000000000500000024386a562b500000000c00008008000d00ac141400"], 0x28}}, 0x0) chdir(&(0x7f00000001c0)='./file0\x00') r2 = syz_open_dev$mouse(&(0x7f0000000400), 0x7fffffff, 0x2d0401) sendmsg$NL80211_CMD_ADD_NAN_FUNCTION(r2, &(0x7f0000000500)={&(0x7f0000000440)={0x10, 0x0, 0x0, 0x10}, 0xc, &(0x7f00000004c0)={&(0x7f00000002c0)={0x20, 0x0, 0x100, 0x70bd2b, 0x25dfdbfd, {{}, {@void, @val={0xc, 0x99, {0x3, 0x1b}}}}}, 0x20}, 0x1, 0x0, 0x0, 0x95}, 0x40000) ioctl$FICLONE(r2, 0x40049409, r0) r3 = open$dir(&(0x7f0000000000)='.\x00', 0x0, 0x0) perf_event_open(&(0x7f0000001d80)={0x6, 0x80, 0x0, 0x0, 0x0, 0x0, 0x4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffd, 0x0, @perf_bp={0x0, 0xffffffff81000000}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffd}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r4 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000040)='/proc/crypto\x00', 0x0, 0x0) r5 = openat2(r3, &(0x7f0000000180)='./file0\x00', &(0x7f0000000200)={0x800, 0x1b9}, 0x18) setsockopt$SO_TIMESTAMPING(r5, 0x1, 0x25, &(0x7f0000000240)=0x7100, 0x4) pread64(r4, &(0x7f00000010c0)=""/4088, 0xff8, 0x0) writev(0xffffffffffffffff, &(0x7f00000003c0)=[{&(0x7f0000000000)="0000abe02400030021206cda3b5e5672b89aeddb2a535fbd0706006dff0043a9d7cceb232fb81bf74ebdd05b7677", 0x2e}, {&(0x7f0000000680)="7fd41c04550300020000000000000000010046e92ed2616f72657d044129471d4fd47924fd0900e09e0068deec02", 0x2e}], 0x2) 05:42:15 executing program 7: r0 = fsopen(&(0x7f00000000c0)='ramfs\x00', 0x0) fsconfig$FSCONFIG_CMD_CREATE(r0, 0x6, 0x0, 0x0, 0x0) fsconfig$FSCONFIG_SET_FD(r0, 0x5, &(0x7f0000000040)='{@[#\x00', 0x0, 0xffffffffffffffff) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0xb, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f0000001080), 0xe}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r1 = syz_open_procfs(0xffffffffffffffff, &(0x7f0000000000)='net/fib_triestat\x00') preadv(r1, &(0x7f0000002400)=[{&(0x7f0000000440)=""/213, 0xd5}], 0x1, 0x0, 0x0) setsockopt$SO_TIMESTAMPING(0xffffffffffffffff, 0x1, 0x41, &(0x7f00000000c0), 0x4) sendmmsg$inet(0xffffffffffffffff, &(0x7f0000000c00)=[{{0x0, 0x0, &(0x7f00000014c0)=[{&(0x7f0000000180)='0', 0x1}], 0x1}}], 0x1, 0x0) r2 = openat$procfs(0xffffffffffffff9c, &(0x7f00000014c0)='/proc/bus/input/devices\x00', 0x0, 0x0) pread64(r2, &(0x7f0000000040)=""/4126, 0x101e, 0x2000) ioctl$sock_SIOCSIFVLAN_GET_VLAN_VID_CMD(r2, 0x8983, &(0x7f0000000080)) r3 = socket$inet(0x2, 0x0, 0x0) connect$inet(r3, &(0x7f0000000140)={0x2, 0x4e21, @local}, 0x10) setsockopt$SO_TIMESTAMPING(r3, 0x1, 0x41, 0x0, 0x0) 05:42:15 executing program 5: r0 = perf_event_open(0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) fallocate(0xffffffffffffffff, 0x0, 0x0, 0x0) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0, 0x4}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) fcntl$lock(r0, 0x24, &(0x7f0000000140)={0x1, 0x4, 0x9, 0xa6, 0xffffffffffffffff}) r1 = syz_io_uring_setup(0x21, &(0x7f0000000080)={0x0, 0x45ae, 0x0, 0x2, 0x3b2, 0x0, 0x0}, &(0x7f00000a0000)=nil, &(0x7f0000ffe000/0x1000)=nil, &(0x7f0000000100)=0x0, &(0x7f0000000340)=0x0) r4 = socket$inet6_tcp(0xa, 0x1, 0x0) syz_io_uring_submit(r2, r3, &(0x7f0000000000)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r4, 0x80, &(0x7f0000000280)=@in6={0xa, 0x0, 0x0, @ipv4={'\x00', '\xff\xff', @dev={0xac, 0x14, 0x14, 0x20}}}}, 0x0) io_uring_enter(r1, 0x76d2, 0x0, 0x0, 0x0, 0x0) pwrite64(0xffffffffffffffff, 0x0, 0x0, 0x0) openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x0, 0x0) r5 = creat(&(0x7f0000000040)='./file0\x00', 0x0) sendfile(0xffffffffffffffff, 0xffffffffffffffff, 0x0, 0x9) ioctl$AUTOFS_IOC_FAIL(0xffffffffffffffff, 0x9361, 0x4) creat(0x0, 0xc1) write$binfmt_elf64(r5, &(0x7f0000000100)=ANY=[], 0xfdef) r6 = socket$nl_sock_diag(0x10, 0x3, 0x4) ppoll(&(0x7f0000000000)=[{0xffffffffffffffff, 0x230}, {r6}, {0xffffffffffffffff, 0x4}, {0xffffffffffffffff, 0x408}, {r5, 0x108}], 0x5, &(0x7f0000000080)={0x77359400}, &(0x7f00000000c0)={[0x8]}, 0x8) fallocate(r5, 0x8, 0x0, 0x8000) openat(r5, &(0x7f0000000180)='./file0\x00', 0x351201, 0x3) openat(0xffffffffffffff9c, 0x0, 0x105142, 0x0) 05:42:15 executing program 2: preadv2(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x2) openat(0xffffffffffffff9c, 0x0, 0x0, 0x0) r0 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x105142, 0x62) r1 = openat(0xffffffffffffff9c, 0x0, 0x0, 0x0) fallocate(r1, 0x0, 0x0, 0x8800000) lseek(0xffffffffffffffff, 0x0, 0x0) r2 = openat(0xffffffffffffffff, 0x0, 0x0, 0x20) ioctl$FS_IOC_RESVSP(0xffffffffffffffff, 0x40305828, 0x0) faccessat2(0xffffffffffffffff, 0x0, 0x0, 0x0) openat(0xffffffffffffffff, 0x0, 0x1a340, 0x100) ioctl$LOOP_CTL_REMOVE(0xffffffffffffffff, 0x4c81, 0x0) r3 = openat$cgroup_ro(0xffffffffffffffff, &(0x7f0000000040)='cgroup.controllers\x00', 0x0, 0x0) r4 = openat(r3, &(0x7f0000000080)='./file1\x00', 0x48480, 0x4) r5 = fsmount(0xffffffffffffffff, 0x0, 0x0) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, @perf_config_ext, 0x46030, 0x0, 0x0, 0x8}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r6 = openat(r5, &(0x7f0000000000)='/proc/self/exe\x00', 0x4840, 0x2d) ioctl$AUTOFS_DEV_IOCTL_VERSION(r2, 0xc0189371, &(0x7f00000000c0)={{0x1, 0x1, 0x18, r4}, './file1\x00'}) ioctl$sock_inet_SIOCGIFBRDADDR(r7, 0x8919, &(0x7f0000000140)={'veth1_to_batadv\x00', {0x2, 0x0, @dev}}) sendfile(r0, r6, 0x0, 0x100000001) 05:42:15 executing program 0: perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_emit_ethernet(0x3a, &(0x7f0000000000)={@local, @remote, @void, {@ipv4={0x800, @tcp={{0x6, 0x4, 0x0, 0xa, 0x2c, 0x0, 0x0, 0x0, 0x32, 0x0, @dev, @private=0xa010100, {[@lsrr={0x83, 0x5}]}}, {{0x0, 0x0, 0x41424344, 0x41424344, 0x0, 0x7, 0x5}}}}}}, 0x0) ioctl$BTRFS_IOC_BALANCE(0xffffffffffffffff, 0x5000940c, 0x0) close(0xffffffffffffffff) 05:42:15 executing program 1: perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_emit_ethernet(0x3a, &(0x7f0000000000)={@local, @remote, @void, {@ipv4={0x800, @tcp={{0x6, 0x4, 0x0, 0x0, 0x2c, 0x3, 0x0, 0x0, 0x32, 0x0, @dev, @private=0xa010100, {[@lsrr={0x83, 0x5}]}}, {{0x0, 0x0, 0x41424344, 0x41424344, 0x0, 0x7, 0x5}}}}}}, 0x0) [ 3042.629688] netlink: 8 bytes leftover after parsing attributes in process `syz-executor.3'. 05:42:15 executing program 4: perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_emit_ethernet(0x3a, &(0x7f0000000000)={@local, @remote, @void, {@ipv4={0x800, @tcp={{0x6, 0x4, 0x0, 0x0, 0x2c, 0x3e8, 0x0, 0x0, 0x32, 0x0, @dev, @private=0xa010100, {[@lsrr={0x83, 0x5}]}}, {{0x0, 0x0, 0x41424344, 0x41424344, 0x0, 0x7, 0x5}}}}}}, 0x0) openat$cgroup_devices(0xffffffffffffffff, 0x0, 0x2, 0x0) close(0xffffffffffffffff) pread64(0xffffffffffffffff, 0x0, 0x0, 0x2000) 05:42:15 executing program 1: perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_emit_ethernet(0x3a, &(0x7f0000000000)={@local, @remote, @void, {@ipv4={0x800, @tcp={{0x6, 0x4, 0x0, 0x0, 0x2c, 0x4, 0x0, 0x0, 0x32, 0x0, @dev, @private=0xa010100, {[@lsrr={0x83, 0x5}]}}, {{0x0, 0x0, 0x41424344, 0x41424344, 0x0, 0x7, 0x5}}}}}}, 0x0) 05:42:15 executing program 0: perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_emit_ethernet(0x3a, &(0x7f0000000000)={@local, @remote, @void, {@ipv4={0x800, @tcp={{0x6, 0x4, 0x0, 0xe, 0x2c, 0x0, 0x0, 0x0, 0x32, 0x0, @dev, @private=0xa010100, {[@lsrr={0x83, 0x5}]}}, {{0x0, 0x0, 0x41424344, 0x41424344, 0x0, 0x7, 0x5}}}}}}, 0x0) ioctl$BTRFS_IOC_BALANCE(0xffffffffffffffff, 0x5000940c, 0x0) close(0xffffffffffffffff) [ 3042.744176] netlink: 8 bytes leftover after parsing attributes in process `syz-executor.3'. 05:42:15 executing program 7: perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_emit_ethernet(0x3a, &(0x7f0000000000)={@local, @remote, @void, {@ipv4={0x800, @tcp={{0x6, 0x4, 0x0, 0x0, 0x2c, 0x1f4, 0x0, 0x0, 0x32, 0x0, @dev, @private=0xa010100, {[@lsrr={0x83, 0x5}]}}, {{0x0, 0x0, 0x41424344, 0x41424344, 0x0, 0x7, 0x5}}}}}}, 0x0) openat$cgroup_devices(0xffffffffffffffff, 0x0, 0x2, 0x0) close(0xffffffffffffffff) pread64(0xffffffffffffffff, 0x0, 0x0, 0x2000) 05:42:15 executing program 1: perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_emit_ethernet(0x3a, &(0x7f0000000000)={@local, @remote, @void, {@ipv4={0x800, @tcp={{0x6, 0x4, 0x0, 0x0, 0x2c, 0x8, 0x0, 0x0, 0x32, 0x0, @dev, @private=0xa010100, {[@lsrr={0x83, 0x5}]}}, {{0x0, 0x0, 0x41424344, 0x41424344, 0x0, 0x7, 0x5}}}}}}, 0x0) 05:42:15 executing program 3: r0 = perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x0, 0x3}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) pread64(0xffffffffffffffff, 0x0, 0x7ffffffff000, 0xf0ff1f00000000) bind$inet6(0xffffffffffffffff, &(0x7f0000000040)={0xa, 0x4e23, 0x0, @remote, 0xffff}, 0x1c) r1 = socket$netlink(0x10, 0x3, 0x0) sendmsg$nl_generic(0xffffffffffffffff, 0x0, 0x41) setsockopt$netlink_NETLINK_BROADCAST_ERROR(r1, 0x10e, 0x4, &(0x7f00000000c0)=0x1000, 0x4) sendmsg$nl_generic(r1, &(0x7f0000000140)={0x0, 0x2, &(0x7f0000000080)={&(0x7f0000000100)=ANY=[@ANYBLOB="28000000100001000000000000000000000000000500000024386a562b500000000c00008008000d00ac141400"], 0x28}}, 0x0) chdir(&(0x7f00000001c0)='./file0\x00') r2 = syz_open_dev$mouse(&(0x7f0000000400), 0x7fffffff, 0x2d0401) sendmsg$NL80211_CMD_ADD_NAN_FUNCTION(r2, &(0x7f0000000500)={&(0x7f0000000440)={0x10, 0x0, 0x0, 0x10}, 0xc, &(0x7f00000004c0)={&(0x7f00000002c0)={0x20, 0x0, 0x100, 0x70bd2b, 0x25dfdbfd, {{}, {@void, @val={0xc, 0x99, {0x3, 0x1b}}}}}, 0x20}, 0x1, 0x0, 0x0, 0x95}, 0x40000) ioctl$FICLONE(r2, 0x40049409, r0) r3 = open$dir(&(0x7f0000000000)='.\x00', 0x0, 0x0) perf_event_open(&(0x7f0000001d80)={0x6, 0x80, 0x0, 0x0, 0x0, 0x0, 0x4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffd, 0x0, @perf_bp={0x0, 0xffffffff81000000}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffd}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r4 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000040)='/proc/crypto\x00', 0x0, 0x0) r5 = openat2(r3, &(0x7f0000000180)='./file0\x00', &(0x7f0000000200)={0x800, 0x1b9}, 0x18) setsockopt$SO_TIMESTAMPING(r5, 0x1, 0x25, &(0x7f0000000240)=0x7100, 0x4) pread64(r4, &(0x7f00000010c0)=""/4088, 0xff8, 0x0) writev(0xffffffffffffffff, &(0x7f00000003c0)=[{&(0x7f0000000000)="0000abe02400030021206cda3b5e5672b89aeddb2a535fbd0706006dff0043a9d7cceb232fb81bf74ebdd05b7677", 0x2e}, {&(0x7f0000000680)="7fd41c04550300020000000000000000010046e92ed2616f72657d044129471d4fd47924fd0900e09e0068deec02", 0x2e}], 0x2) 05:42:15 executing program 4: perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_emit_ethernet(0x3a, &(0x7f0000000000)={@local, @remote, @void, {@ipv4={0x800, @tcp={{0x6, 0x4, 0x0, 0x0, 0x2c, 0x480, 0x0, 0x0, 0x32, 0x0, @dev, @private=0xa010100, {[@lsrr={0x83, 0x5}]}}, {{0x0, 0x0, 0x41424344, 0x41424344, 0x0, 0x7, 0x5}}}}}}, 0x0) openat$cgroup_devices(0xffffffffffffffff, 0x0, 0x2, 0x0) close(0xffffffffffffffff) pread64(0xffffffffffffffff, 0x0, 0x0, 0x2000) [ 3042.902893] FAULT_INJECTION: forcing a failure. [ 3042.902893] name failslab, interval 1, probability 0, space 0, times 0 [ 3042.905379] CPU: 0 PID: 13242 Comm: syz-executor.6 Not tainted 5.10.204 #1 [ 3042.906830] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 3042.908566] Call Trace: [ 3042.909101] dump_stack+0x107/0x167 [ 3042.909838] should_fail.cold+0x5/0xa [ 3042.910618] should_failslab+0x5/0x20 [ 3042.911386] __kmalloc_node_track_caller+0x74/0x3b0 [ 3042.912394] ? __tcp_send_ack.part.0+0x67/0x650 [ 3042.913322] __alloc_skb+0xb1/0x5b0 [ 3042.914050] __tcp_send_ack.part.0+0x67/0x650 [ 3042.914958] tcp_send_ack+0x7d/0xa0 [ 3042.915711] __tcp_ack_snd_check+0x156/0x9f0 [ 3042.916608] tcp_rcv_established+0x955/0x1e30 [ 3042.917514] ? tcp_check_space+0x6c0/0x6c0 [ 3042.918385] tcp_v6_do_rcv+0x7b3/0x1520 [ 3042.919186] __release_sock+0x139/0x3b0 [ 3042.920001] release_sock+0x54/0x1b0 [ 3042.920735] sk_wait_data+0x1a7/0x4d0 [ 3042.921496] ? sock_set_mark+0x130/0x130 [ 3042.922313] ? prepare_to_wait_exclusive+0x2a0/0x2a0 [ 3042.923316] ? tcp_mstamp_refresh+0x12/0xa0 [ 3042.924206] ? sock_rfree+0x107/0x170 [ 3042.924979] ? __sanitizer_cov_trace_switch+0x45/0x80 [ 3042.926029] tcp_recvmsg+0x17b2/0x2930 [ 3042.926834] ? tcp_splice_read+0x8c0/0x8c0 05:42:15 executing program 7: close_range(0xffffffffffffffff, 0xffffffffffffffff, 0x0) r0 = openat$procfs(0xffffffffffffff9c, &(0x7f00000000c0)='/proc/locks\x00', 0x0, 0x0) flock(0xffffffffffffffff, 0x0) ioctl$RNDGETENTCNT(0xffffffffffffffff, 0x80045200, &(0x7f00000001c0)) seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x6, &(0x7f0000000000)={0x1, &(0x7f0000000180)=[{0x6, 0x0, 0x0, 0x7ffc0000}]}) syz_io_uring_setup(0x4d4f, &(0x7f00000002c0), &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200), &(0x7f0000000140)) sendmsg$NL80211_CMD_GET_WIPHY(0xffffffffffffffff, &(0x7f0000000100)={0x0, 0x0, 0x0}, 0x0) ioctl$EVIOCSKEYCODE_V2(0xffffffffffffffff, 0x40284504, 0x0) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) sync_file_range(r0, 0x1, 0x6ed85df, 0x0) syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0x5, &(0x7f0000000440)=[{&(0x7f0000000040)="2000000080000000060000006a0000000f000000000000000100000001000000004000000040000020000000e0f4655fe0f4655f0100ffff53ef010001000000dff4655f000000000000000001000000000000000b0000000001", 0x5a, 0x400}, {0x0}, {0x0, 0x0, 0xffffffffdffffff8}, {&(0x7f0000010400)="020000000300000004", 0x9, 0x800}, {&(0x7f0000011600)="ed41000000080000dff46552e0f4655fe0f4655f000000000000040004", 0x1d, 0x2100}], 0x0, &(0x7f0000000140)={[{@noacl}]}) [ 3042.927696] ? sock_has_perm+0x1ea/0x280 [ 3042.928671] ? perf_trace_lock+0xac/0x490 [ 3042.929507] ? tcp_splice_read+0x8c0/0x8c0 [ 3042.930351] inet6_recvmsg+0x13b/0x6e0 [ 3042.931133] ? inet6_bind+0x120/0x120 [ 3042.931932] ? security_socket_recvmsg+0x95/0xc0 [ 3042.932905] ? inet6_bind+0x120/0x120 [ 3042.933674] sock_recvmsg+0xff/0x180 [ 3042.934431] __sys_recvfrom+0x1be/0x2f0 [ 3042.935234] ? __ia32_sys_send+0x100/0x100 [ 3042.936124] ? lock_downgrade+0x6d0/0x6d0 [ 3042.937017] ? wait_for_completion_io+0x270/0x270 [ 3042.938012] ? rcu_read_lock_any_held+0x75/0xa0 [ 3042.938972] ? vfs_write+0x354/0xa70 [ 3042.939759] ? fput_many+0x2f/0x1a0 [ 3042.940522] ? ksys_write+0x1a9/0x260 [ 3042.941306] ? __ia32_sys_read+0xb0/0xb0 [ 3042.942159] __x64_sys_recvfrom+0xdd/0x1b0 [ 3042.943047] ? syscall_enter_from_user_mode+0x1d/0x50 [ 3042.944107] do_syscall_64+0x33/0x40 [ 3042.944900] entry_SYSCALL_64_after_hwframe+0x62/0xc7 [ 3042.945954] RIP: 0033:0x7f7d1addbb19 [ 3042.946719] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 3042.950485] RSP: 002b:00007f7d18330188 EFLAGS: 00000246 ORIG_RAX: 000000000000002d [ 3042.952055] RAX: ffffffffffffffda RBX: 00007f7d1aeef020 RCX: 00007f7d1addbb19 [ 3042.953512] RDX: 0000000000001000 RSI: 0000000020001e00 RDI: 0000000000000003 [ 3042.954966] RBP: 00007f7d183301d0 R08: 0000000000000000 R09: 0000000000000000 [ 3042.956446] R10: 000000000000cd08 R11: 0000000000000246 R12: 0000000000000002 [ 3042.957905] R13: 00007ffe0ac926cf R14: 00007f7d18330300 R15: 0000000000022000 [ 3042.990701] netlink: 8 bytes leftover after parsing attributes in process `syz-executor.3'. [ 3043.043723] netlink: 8 bytes leftover after parsing attributes in process `syz-executor.3'. [ 3043.222325] EXT4-fs (loop7): Mount option "noacl" will be removed by 3.5 [ 3043.222325] Contact linux-ext4@vger.kernel.org if you think we should keep it. [ 3043.222325] [ 3043.297906] EXT4-fs (loop7): mounted filesystem without journal. Opts: noacl,,errors=continue [ 3043.474770] audit: type=1326 audit(1702878136.092:101): auid=0 uid=0 gid=0 ses=4 subj=system_u:system_r:kernel_t:s0 pid=13266 comm="syz-executor.7" exe="/syz-executor.7" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f87c112eb19 code=0x7ffc0000 [ 3043.481639] audit: type=1326 audit(1702878136.092:102): auid=0 uid=0 gid=0 ses=4 subj=system_u:system_r:kernel_t:s0 pid=13266 comm="syz-executor.7" exe="/syz-executor.7" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f87c112eb19 code=0x7ffc0000 [ 3043.489498] audit: type=1326 audit(1702878136.099:103): auid=0 uid=0 gid=0 ses=4 subj=system_u:system_r:kernel_t:s0 pid=13266 comm="syz-executor.7" exe="/syz-executor.7" sig=0 arch=c000003e syscall=436 compat=0 ip=0x7f87c112eb19 code=0x7ffc0000 [ 3043.497231] audit: type=1326 audit(1702878136.099:104): auid=0 uid=0 gid=0 ses=4 subj=system_u:system_r:kernel_t:s0 pid=13266 comm="syz-executor.7" exe="/syz-executor.7" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f87c112eb19 code=0x7ffc0000 [ 3043.505637] audit: type=1326 audit(1702878136.101:105): auid=0 uid=0 gid=0 ses=4 subj=system_u:system_r:kernel_t:s0 pid=13266 comm="syz-executor.7" exe="/syz-executor.7" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f87c112eb19 code=0x7ffc0000 [ 3043.512346] audit: type=1326 audit(1702878136.104:106): auid=0 uid=0 gid=0 ses=4 subj=system_u:system_r:kernel_t:s0 pid=13266 comm="syz-executor.7" exe="/syz-executor.7" sig=0 arch=c000003e syscall=257 compat=0 ip=0x7f87c112eb19 code=0x7ffc0000 [ 3043.519810] audit: type=1326 audit(1702878136.104:107): auid=0 uid=0 gid=0 ses=4 subj=system_u:system_r:kernel_t:s0 pid=13266 comm="syz-executor.7" exe="/syz-executor.7" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f87c112eb19 code=0x7ffc0000 [ 3043.528136] audit: type=1326 audit(1702878136.106:108): auid=0 uid=0 gid=0 ses=4 subj=system_u:system_r:kernel_t:s0 pid=13266 comm="syz-executor.7" exe="/syz-executor.7" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f87c112eb19 code=0x7ffc0000 [ 3043.534917] audit: type=1326 audit(1702878136.107:109): auid=0 uid=0 gid=0 ses=4 subj=system_u:system_r:kernel_t:s0 pid=13266 comm="syz-executor.7" exe="/syz-executor.7" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f87c112eb19 code=0x7ffc0000 [ 3043.543614] audit: type=1326 audit(1702878136.107:110): auid=0 uid=0 gid=0 ses=4 subj=system_u:system_r:kernel_t:s0 pid=13266 comm="syz-executor.7" exe="/syz-executor.7" sig=0 arch=c000003e syscall=425 compat=0 ip=0x7f87c112eb19 code=0x7ffc0000 05:42:30 executing program 4: perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_emit_ethernet(0x3a, &(0x7f0000000000)={@local, @remote, @void, {@ipv4={0x800, @tcp={{0x6, 0x4, 0x0, 0x0, 0x2c, 0xa00, 0x0, 0x0, 0x32, 0x0, @dev, @private=0xa010100, {[@lsrr={0x83, 0x5}]}}, {{0x0, 0x0, 0x41424344, 0x41424344, 0x0, 0x7, 0x5}}}}}}, 0x0) openat$cgroup_devices(0xffffffffffffffff, 0x0, 0x2, 0x0) close(0xffffffffffffffff) pread64(0xffffffffffffffff, 0x0, 0x0, 0x2000) 05:42:30 executing program 6: r0 = socket$inet6_tcp(0xa, 0x1, 0x0) setsockopt$inet6_tcp_int(r0, 0x6, 0x2, &(0x7f0000000080)=0x90, 0x4) bind$inet6(r0, &(0x7f00000000c0)={0xa, 0x4e20, 0x0, @loopback}, 0x1c) connect$inet6(r0, &(0x7f0000000000)={0xa, 0x4e20, 0x0, @empty}, 0x1c) setsockopt$sock_int(r0, 0x1, 0x8, &(0x7f0000002ec0), 0x4) sendmsg$inet6(r0, &(0x7f00000006c0)={0x0, 0x0, &(0x7f0000000540)=[{&(0x7f00000001c0)="cf", 0xfffffdef}], 0x1}, 0x10044001) setsockopt$SO_TIMESTAMP(r0, 0x1, 0x40, &(0x7f0000000280)=0x380, 0x4) recvfrom$inet6(r0, &(0x7f0000001e00)=""/4096, 0x1000, 0xcd08, 0x0, 0x0) (fail_nth: 28) 05:42:30 executing program 1: perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_emit_ethernet(0x3a, &(0x7f0000000000)={@local, @remote, @void, {@ipv4={0x800, @tcp={{0x6, 0x4, 0x0, 0x0, 0x2c, 0xa, 0x0, 0x0, 0x32, 0x0, @dev, @private=0xa010100, {[@lsrr={0x83, 0x5}]}}, {{0x0, 0x0, 0x41424344, 0x41424344, 0x0, 0x7, 0x5}}}}}}, 0x0) 05:42:30 executing program 3: r0 = perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x0, 0x3}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) pread64(0xffffffffffffffff, 0x0, 0x7ffffffff000, 0xf0ff1f00000000) bind$inet6(0xffffffffffffffff, &(0x7f0000000040)={0xa, 0x4e23, 0x0, @remote, 0xffff}, 0x1c) r1 = socket$netlink(0x10, 0x3, 0x0) sendmsg$nl_generic(0xffffffffffffffff, 0x0, 0x41) setsockopt$netlink_NETLINK_BROADCAST_ERROR(r1, 0x10e, 0x4, &(0x7f00000000c0)=0x1000, 0x4) sendmsg$nl_generic(r1, &(0x7f0000000140)={0x0, 0x3, &(0x7f0000000080)={&(0x7f0000000100)=ANY=[@ANYBLOB="28000000100001000000000000000000000000000500000024386a562b500000000c00008008000d00ac141400"], 0x28}}, 0x0) chdir(&(0x7f00000001c0)='./file0\x00') r2 = syz_open_dev$mouse(&(0x7f0000000400), 0x7fffffff, 0x2d0401) sendmsg$NL80211_CMD_ADD_NAN_FUNCTION(r2, &(0x7f0000000500)={&(0x7f0000000440)={0x10, 0x0, 0x0, 0x10}, 0xc, &(0x7f00000004c0)={&(0x7f00000002c0)={0x20, 0x0, 0x100, 0x70bd2b, 0x25dfdbfd, {{}, {@void, @val={0xc, 0x99, {0x3, 0x1b}}}}}, 0x20}, 0x1, 0x0, 0x0, 0x95}, 0x40000) ioctl$FICLONE(r2, 0x40049409, r0) r3 = open$dir(&(0x7f0000000000)='.\x00', 0x0, 0x0) perf_event_open(&(0x7f0000001d80)={0x6, 0x80, 0x0, 0x0, 0x0, 0x0, 0x4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffd, 0x0, @perf_bp={0x0, 0xffffffff81000000}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffd}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r4 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000040)='/proc/crypto\x00', 0x0, 0x0) r5 = openat2(r3, &(0x7f0000000180)='./file0\x00', &(0x7f0000000200)={0x800, 0x1b9}, 0x18) setsockopt$SO_TIMESTAMPING(r5, 0x1, 0x25, &(0x7f0000000240)=0x7100, 0x4) pread64(r4, &(0x7f00000010c0)=""/4088, 0xff8, 0x0) writev(0xffffffffffffffff, &(0x7f00000003c0)=[{&(0x7f0000000000)="0000abe02400030021206cda3b5e5672b89aeddb2a535fbd0706006dff0043a9d7cceb232fb81bf74ebdd05b7677", 0x2e}, {&(0x7f0000000680)="7fd41c04550300020000000000000000010046e92ed2616f72657d044129471d4fd47924fd0900e09e0068deec02", 0x2e}], 0x2) 05:42:30 executing program 0: perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_emit_ethernet(0x3a, &(0x7f0000000000)={@local, @remote, @void, {@ipv4={0x800, @tcp={{0x6, 0x4, 0x0, 0x11, 0x2c, 0x0, 0x0, 0x0, 0x32, 0x0, @dev, @private=0xa010100, {[@lsrr={0x83, 0x5}]}}, {{0x0, 0x0, 0x41424344, 0x41424344, 0x0, 0x7, 0x5}}}}}}, 0x0) ioctl$BTRFS_IOC_BALANCE(0xffffffffffffffff, 0x5000940c, 0x0) close(0xffffffffffffffff) 05:42:30 executing program 5: r0 = openat$sr(0xffffffffffffff9c, &(0x7f00000035c0), 0xe0b02, 0x0) r1 = openat$procfs(0xffffffffffffff9c, &(0x7f00000014c0)='/proc/bus/input/devices\x00', 0x0, 0x0) syz_open_procfs(0xffffffffffffffff, &(0x7f0000000000)='net/ip6_mr_vif\x00') pread64(r1, &(0x7f0000001500)=""/4101, 0x1005, 0x2000) ioctl$TCFLSH(r1, 0x540b, 0x1) fallocate(r0, 0x11, 0x4, 0x40000fffffffe) 05:42:30 executing program 7: sendmsg$ETHTOOL_MSG_FEATURES_SET(0xffffffffffffffff, 0x0, 0x0) r0 = syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000040)='./file0\x00', 0x40004, 0x3, &(0x7f0000000200)=[{&(0x7f0000000440)="2000000080000000060000006a0000000f000000000000000100000001000000004000000040000020000000e0f4655fe0f4655f0100ffff53ef010001000000dff4655f000000000000000001000000000000000b0000000001", 0x5a, 0x400}, {&(0x7f0000010400)="020000000300000004", 0x9, 0x800}, {&(0x7f0000000100)="ed4100000093b200dff4655fe0f4655fe0f4655f0000080000000400045539545cee", 0x22, 0x2100}], 0x0, &(0x7f0000000140)=ANY=[]) mmap$IORING_OFF_CQ_RING(&(0x7f0000ffc000/0x2000)=nil, 0x2000, 0x2000002, 0x80010, r0, 0x8000000) accept4$bt_l2cap(0xffffffffffffffff, &(0x7f00000001c0)={0x1f, 0x0, @fixed}, &(0x7f0000000300)=0xe, 0x0) r1 = perf_event_open(&(0x7f00000000c0)={0x3, 0x80, 0x0, 0x6, 0x7, 0x1f, 0x0, 0xd5, 0x40000, 0x0, 0x0, 0x1, 0x0, 0x0, 0x1, 0x1, 0x1, 0x0, 0x0, 0x0, 0x1, 0x0, 0x1, 0x1, 0x1, 0x1, 0x0, 0x1, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x1, 0x0, 0x1, 0x1, 0x0, 0x1, 0x1, 0x0, 0x0, 0x1, 0x0, 0x1, 0x0, 0x0, 0xad3, 0x1, @perf_bp={&(0x7f0000000040)}, 0x8000, 0x7f000000, 0x0, 0x2, 0x7ff, 0xb0, 0x2, 0x0, 0x0, 0x0, 0x6}, 0x0, 0xb, 0xffffffffffffffff, 0x2) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x1, 0x1}, 0x0, 0x0, 0x2, 0x0, 0xa4c, 0xafff, 0xfffd, 0x0, 0x0, 0x0, 0xffffffff}, 0x0, 0xffffffffffffffff, r1, 0x8) ioctl$MON_IOCT_RING_SIZE(0xffffffffffffffff, 0x9204, 0x124d63) ioctl$PERF_EVENT_IOC_ENABLE(0xffffffffffffffff, 0x2400, 0x8) syz_open_procfs(0xffffffffffffffff, &(0x7f0000000000)='net/ipv6_route\x00') pread64(0xffffffffffffffff, &(0x7f00000001c0)=""/115, 0x73, 0x40000000000) fadvise64(0xffffffffffffffff, 0xfffffffffffffffc, 0x0, 0x3) openat(0xffffffffffffffff, &(0x7f0000000380)='./file0\x00', 0x44000, 0x0) r2 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f0000000180), 0x84180, 0x0) sendmsg$nl_generic(0xffffffffffffffff, &(0x7f0000000500)={0x0, 0x0, &(0x7f0000000080)={&(0x7f00000003c0)=ANY=[@ANYBLOB="0100000000000000000000000000050044b688489d390027000000000800008004001600772285a4cc6ef7b5a6f26a0e"], 0x24}}, 0x0) ioctl$BTRFS_IOC_SET_FEATURES(0xffffffffffffffff, 0x40309439, &(0x7f0000000340)={0x3, 0x1, 0x1b}) r3 = syz_open_procfs(0xffffffffffffffff, &(0x7f00000004c0)='net/icmp\x00') syz_io_uring_setup(0x1c26, &(0x7f0000000240)={0x0, 0x1dbb, 0x2, 0x1, 0x280, 0x0, r3}, &(0x7f0000ffe000/0x1000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f00000002c0), &(0x7f0000000400)) ioctl$LOOP_CTL_GET_FREE(r2, 0x4c82) r4 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f0000000180), 0x180, 0x0) ioctl$LOOP_CTL_GET_FREE(r4, 0x4c82) 05:42:30 executing program 4: perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_emit_ethernet(0x3a, &(0x7f0000000000)={@local, @remote, @void, {@ipv4={0x800, @tcp={{0x6, 0x4, 0x0, 0x0, 0x2c, 0xe00, 0x0, 0x0, 0x32, 0x0, @dev, @private=0xa010100, {[@lsrr={0x83, 0x5}]}}, {{0x0, 0x0, 0x41424344, 0x41424344, 0x0, 0x7, 0x5}}}}}}, 0x0) openat$cgroup_devices(0xffffffffffffffff, 0x0, 0x2, 0x0) close(0xffffffffffffffff) pread64(0xffffffffffffffff, 0x0, 0x0, 0x2000) 05:42:30 executing program 2: preadv2(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x2) openat(0xffffffffffffff9c, 0x0, 0x0, 0x0) r0 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x105142, 0x62) r1 = openat(0xffffffffffffff9c, 0x0, 0x0, 0x0) fallocate(r1, 0x0, 0x0, 0x8800000) lseek(0xffffffffffffffff, 0x0, 0x0) openat(0xffffffffffffffff, 0x0, 0x0, 0x20) ioctl$FS_IOC_RESVSP(0xffffffffffffffff, 0x40305828, 0x0) faccessat2(0xffffffffffffffff, 0x0, 0x0, 0x0) syz_io_uring_submit(0x0, 0x0, &(0x7f0000000180)=@IORING_OP_RECVMSG={0xa, 0x1, 0x0, 0xffffffffffffffff, 0x0, &(0x7f0000000140)={&(0x7f00000001c0)=@xdp, 0x80, &(0x7f0000001740)=[{&(0x7f0000000500)=""/4081, 0xff1}, {&(0x7f0000001e00)=""/4091, 0x1000}, {&(0x7f0000000240)=""/110, 0xf}, {&(0x7f00000017c0)=""/244, 0xf4}, {&(0x7f00000003c0)=""/126, 0x7e}, {&(0x7f0000001500)=""/93, 0x5d}, {&(0x7f0000001580)=""/140, 0x8c}, {&(0x7f00000002c0)=""/194, 0xc2}], 0x8, &(0x7f00000000c0)=""/57, 0x39}, 0x0, 0x10022}, 0xfffff801) syz_io_uring_submit(0x0, 0x0, &(0x7f00000004c0)=@IORING_OP_SYNC_FILE_RANGE={0x8, 0x3, 0x0, @fd_index=0x9, 0x0, 0x0, 0x5, 0x7}, 0x7) syz_io_uring_submit(0x0, 0x0, &(0x7f0000000080)=@IORING_OP_ASYNC_CANCEL={0xe, 0x1}, 0x0) openat(0xffffffffffffffff, 0x0, 0x1a340, 0x100) r2 = openat$sr(0xffffffffffffff9c, &(0x7f0000000040), 0x4080, 0x0) ioctl$LOOP_CTL_REMOVE(r2, 0x4c81, 0x1) r3 = fsmount(0xffffffffffffffff, 0x0, 0x0) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r4 = openat(r3, &(0x7f0000000000)='/proc/self/exe\x00', 0x4840, 0x2d) sendfile(r0, r4, 0x0, 0x100000001) [ 3058.321396] netlink: 8 bytes leftover after parsing attributes in process `syz-executor.3'. [ 3058.346203] EXT4-fs (loop7): mounted filesystem without journal. Opts: ,errors=continue 05:42:31 executing program 0: perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_emit_ethernet(0x3a, &(0x7f0000000000)={@local, @remote, @void, {@ipv4={0x800, @tcp={{0x6, 0x4, 0x0, 0x2c, 0x2c, 0x0, 0x0, 0x0, 0x32, 0x0, @dev, @private=0xa010100, {[@lsrr={0x83, 0x5}]}}, {{0x0, 0x0, 0x41424344, 0x41424344, 0x0, 0x7, 0x5}}}}}}, 0x0) ioctl$BTRFS_IOC_BALANCE(0xffffffffffffffff, 0x5000940c, 0x0) close(0xffffffffffffffff) 05:42:31 executing program 4: perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_emit_ethernet(0x3a, &(0x7f0000000000)={@local, @remote, @void, {@ipv4={0x800, @tcp={{0x6, 0x4, 0x0, 0x0, 0x2c, 0x1100, 0x0, 0x0, 0x32, 0x0, @dev, @private=0xa010100, {[@lsrr={0x83, 0x5}]}}, {{0x0, 0x0, 0x41424344, 0x41424344, 0x0, 0x7, 0x5}}}}}}, 0x0) openat$cgroup_devices(0xffffffffffffffff, 0x0, 0x2, 0x0) close(0xffffffffffffffff) pread64(0xffffffffffffffff, 0x0, 0x0, 0x2000) 05:42:31 executing program 1: perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_emit_ethernet(0x3a, &(0x7f0000000000)={@local, @remote, @void, {@ipv4={0x800, @tcp={{0x6, 0x4, 0x0, 0x0, 0x2c, 0xe, 0x0, 0x0, 0x32, 0x0, @dev, @private=0xa010100, {[@lsrr={0x83, 0x5}]}}, {{0x0, 0x0, 0x41424344, 0x41424344, 0x0, 0x7, 0x5}}}}}}, 0x0) [ 3058.407001] netlink: 8 bytes leftover after parsing attributes in process `syz-executor.3'. 05:42:31 executing program 5: openat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x46e2, 0x0) r0 = openat(0xffffffffffffff9c, &(0x7f0000000000)='./file0\x00', 0x0, 0x0) r1 = request_key(&(0x7f0000000080)='.request_key_auth\x00', &(0x7f00000000c0)={'syz', 0x3}, &(0x7f0000000100)='*^}&\x00', 0xfffffffffffffff8) ioctl$FS_IOC_ADD_ENCRYPTION_KEY(r0, 0xc0506617, &(0x7f0000000140)={@id={0x2, 0x0, @c}, 0x6, r1, '\x00', @auto=[0x33, 0x1f, 0x3b, 0x2f, 0x17, 0x34]}) perf_event_open(&(0x7f0000001d80)={0x7, 0x80, 0x0, 0x0, 0x0, 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp, 0x0, 0xfffffffffffffffc}, 0x0, 0x0, 0xffffffffffffffff, 0x0) 05:42:31 executing program 7: futex(0x0, 0x7, 0x0, 0x0, 0x0, 0x0) r0 = openat$cgroup_ro(0xffffffffffffffff, 0x0, 0x0, 0x0) r1 = add_key$fscrypt_v1(&(0x7f0000000180), 0x0, &(0x7f0000000200)={0x0, "f038779de021f8c8c974dd89170cf2579d1fa459ba726003d07140eeb342b87ae631f7a548867a29f29fd1637ddac658a709b49b093393d0e1c7391515c7ab7c"}, 0x48, 0xfffffffffffffffe) keyctl$KEYCTL_RESTRICT_KEYRING(0x1d, 0x0, 0x0, 0x0) keyctl$chown(0x4, r1, 0xee01, 0x0) openat(0xffffffffffffff9c, &(0x7f0000000100)='./file0\x00', 0x80743, 0x88) r2 = openat$rfkill(0xffffffffffffff9c, &(0x7f0000000000), 0x101001, 0x0) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x3) setsockopt$inet6_tcp_int(r0, 0x6, 0x1f5f2be7478746da, &(0x7f0000000040)=0x1, 0x4) write$rfkill(r2, &(0x7f00000000c0)={0x0, 0x0, 0x3, 0x1}, 0x8) perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0) 05:42:31 executing program 3: r0 = perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x0, 0x3}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) pread64(0xffffffffffffffff, 0x0, 0x7ffffffff000, 0xf0ff1f00000000) bind$inet6(0xffffffffffffffff, &(0x7f0000000040)={0xa, 0x4e23, 0x0, @remote, 0xffff}, 0x1c) r1 = socket$netlink(0x10, 0x3, 0x0) sendmsg$nl_generic(0xffffffffffffffff, 0x0, 0x41) setsockopt$netlink_NETLINK_BROADCAST_ERROR(r1, 0x10e, 0x4, &(0x7f00000000c0)=0x1000, 0x4) sendmsg$nl_generic(r1, &(0x7f0000000140)={0x0, 0x4, &(0x7f0000000080)={&(0x7f0000000100)=ANY=[@ANYBLOB="28000000100001000000000000000000000000000500000024386a562b500000000c00008008000d00ac141400"], 0x28}}, 0x0) chdir(&(0x7f00000001c0)='./file0\x00') r2 = syz_open_dev$mouse(&(0x7f0000000400), 0x7fffffff, 0x2d0401) sendmsg$NL80211_CMD_ADD_NAN_FUNCTION(r2, &(0x7f0000000500)={&(0x7f0000000440)={0x10, 0x0, 0x0, 0x10}, 0xc, &(0x7f00000004c0)={&(0x7f00000002c0)={0x20, 0x0, 0x100, 0x70bd2b, 0x25dfdbfd, {{}, {@void, @val={0xc, 0x99, {0x3, 0x1b}}}}}, 0x20}, 0x1, 0x0, 0x0, 0x95}, 0x40000) ioctl$FICLONE(r2, 0x40049409, r0) r3 = open$dir(&(0x7f0000000000)='.\x00', 0x0, 0x0) perf_event_open(&(0x7f0000001d80)={0x6, 0x80, 0x0, 0x0, 0x0, 0x0, 0x4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffd, 0x0, @perf_bp={0x0, 0xffffffff81000000}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffd}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r4 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000040)='/proc/crypto\x00', 0x0, 0x0) r5 = openat2(r3, &(0x7f0000000180)='./file0\x00', &(0x7f0000000200)={0x800, 0x1b9}, 0x18) setsockopt$SO_TIMESTAMPING(r5, 0x1, 0x25, &(0x7f0000000240)=0x7100, 0x4) pread64(r4, &(0x7f00000010c0)=""/4088, 0xff8, 0x0) writev(0xffffffffffffffff, &(0x7f00000003c0)=[{&(0x7f0000000000)="0000abe02400030021206cda3b5e5672b89aeddb2a535fbd0706006dff0043a9d7cceb232fb81bf74ebdd05b7677", 0x2e}, {&(0x7f0000000680)="7fd41c04550300020000000000000000010046e92ed2616f72657d044129471d4fd47924fd0900e09e0068deec02", 0x2e}], 0x2) 05:42:31 executing program 0: perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_emit_ethernet(0x3a, &(0x7f0000000000)={@local, @remote, @void, {@ipv4={0x800, @tcp={{0x6, 0x4, 0x0, 0x3f, 0x2c, 0x0, 0x0, 0x0, 0x32, 0x0, @dev, @private=0xa010100, {[@lsrr={0x83, 0x5}]}}, {{0x0, 0x0, 0x41424344, 0x41424344, 0x0, 0x7, 0x5}}}}}}, 0x0) ioctl$BTRFS_IOC_BALANCE(0xffffffffffffffff, 0x5000940c, 0x0) close(0xffffffffffffffff) 05:42:31 executing program 1: perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_emit_ethernet(0x3a, &(0x7f0000000000)={@local, @remote, @void, {@ipv4={0x800, @tcp={{0x6, 0x4, 0x0, 0x0, 0x2c, 0x11, 0x0, 0x0, 0x32, 0x0, @dev, @private=0xa010100, {[@lsrr={0x83, 0x5}]}}, {{0x0, 0x0, 0x41424344, 0x41424344, 0x0, 0x7, 0x5}}}}}}, 0x0) [ 3058.562684] [ 3058.562913] ====================================================== [ 3058.563595] WARNING: possible circular locking dependency detected [ 3058.564286] 5.10.204 #1 Not tainted [ 3058.564667] ------------------------------------------------------ [ 3058.565338] syz-executor.7/13327 is trying to acquire lock: [ 3058.565932] ffff88801804cae8 ((work_completion)(&hdev->tx_work)){+.+.}-{0:0}, at: __flush_work+0xdd/0xa90 [ 3058.567038] [ 3058.567038] but task is already holding lock: [ 3058.567709] ffff88801804cf40 (&hdev->req_lock){+.+.}-{3:3}, at: hci_dev_do_close+0xef/0x1240 [ 3058.568696] [ 3058.568696] which lock already depends on the new lock. [ 3058.568696] [ 3058.569595] [ 3058.569595] the existing dependency chain (in reverse order) is: [ 3058.570399] [ 3058.570399] -> #3 (&hdev->req_lock){+.+.}-{3:3}: [ 3058.571094] __mutex_lock+0x13d/0x10b0 [ 3058.571581] hci_dev_do_close+0xef/0x1240 [ 3058.572121] hci_rfkill_set_block+0x166/0x1a0 [ 3058.572693] rfkill_set_block+0x1fd/0x540 [ 3058.573234] rfkill_fop_write+0x253/0x4b0 [ 3058.574231] netlink: 8 bytes leftover after parsing attributes in process `syz-executor.3'. [ 3058.575167] vfs_write+0x29a/0xa70 [ 3058.575177] ksys_write+0x1f6/0x260 [ 3058.575187] do_syscall_64+0x33/0x40 [ 3058.575196] entry_SYSCALL_64_after_hwframe+0x62/0xc7 [ 3058.575199] [ 3058.575199] -> #2 (rfkill_global_mutex){+.+.}-{3:3}: [ 3058.575219] __mutex_lock+0x13d/0x10b0 [ 3058.575227] rfkill_register+0x36/0xa10 [ 3058.575235] hci_register_dev+0x42e/0xc00 [ 3058.575246] __vhci_create_device+0x2c8/0x5c0 [ 3058.575255] vhci_open_timeout+0x38/0x50 [ 3058.575263] process_one_work+0x9a9/0x14b0 [ 3058.575270] worker_thread+0x61d/0x1310 [ 3058.575279] kthread+0x38f/0x470 [ 3058.575288] ret_from_fork+0x22/0x30 [ 3058.575291] [ 3058.575291] -> #1 (&data->open_mutex){+.+.}-{3:3}: [ 3058.575310] __mutex_lock+0x13d/0x10b0 [ 3058.575330] vhci_send_frame+0x63/0xa0 [ 3058.587478] hci_send_frame+0x1b9/0x320 [ 3058.587983] hci_tx_work+0x10af/0x1660 [ 3058.588470] process_one_work+0x9a9/0x14b0 [ 3058.588987] worker_thread+0x61d/0x1310 [ 3058.589482] kthread+0x38f/0x470 [ 3058.589924] ret_from_fork+0x22/0x30 [ 3058.590387] [ 3058.590387] -> #0 ((work_completion)(&hdev->tx_work)){+.+.}-{0:0}: [ 3058.591264] __lock_acquire+0x29e7/0x5b00 [ 3058.591781] lock_acquire+0x197/0x470 [ 3058.592267] __flush_work+0x105/0xa90 [ 3058.592736] hci_dev_do_close+0x131/0x1240 [ 3058.593264] hci_rfkill_set_block+0x166/0x1a0 [ 3058.593804] rfkill_set_block+0x1fd/0x540 [ 3058.594319] rfkill_fop_write+0x253/0x4b0 [ 3058.594821] vfs_write+0x29a/0xa70 [ 3058.595280] ksys_write+0x1f6/0x260 [ 3058.595743] do_syscall_64+0x33/0x40 [ 3058.596231] entry_SYSCALL_64_after_hwframe+0x62/0xc7 [ 3058.596853] [ 3058.596853] other info that might help us debug this: [ 3058.596853] [ 3058.597717] Chain exists of: [ 3058.597717] (work_completion)(&hdev->tx_work) --> rfkill_global_mutex --> &hdev->req_lock [ 3058.597717] [ 3058.599133] Possible unsafe locking scenario: [ 3058.599133] [ 3058.599793] CPU0 CPU1 [ 3058.600301] ---- ---- [ 3058.600786] lock(&hdev->req_lock); [ 3058.601212] lock(rfkill_global_mutex); [ 3058.601918] lock(&hdev->req_lock); [ 3058.602582] lock((work_completion)(&hdev->tx_work)); [ 3058.603156] [ 3058.603156] *** DEADLOCK *** [ 3058.603156] [ 3058.603824] 2 locks held by syz-executor.7/13327: [ 3058.604343] #0: ffffffff85619628 (rfkill_global_mutex){+.+.}-{3:3}, at: rfkill_fop_write+0xff/0x4b0 [ 3058.605374] #1: ffff88801804cf40 (&hdev->req_lock){+.+.}-{3:3}, at: hci_dev_do_close+0xef/0x1240 [ 3058.606376] [ 3058.606376] stack backtrace: [ 3058.606865] CPU: 1 PID: 13327 Comm: syz-executor.7 Not tainted 5.10.204 #1 [ 3058.607631] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 3058.608570] Call Trace: [ 3058.608863] dump_stack+0x107/0x167 [ 3058.609272] check_noncircular+0x263/0x2e0 [ 3058.609733] ? register_lock_class+0xbb/0x17b0 [ 3058.610229] ? print_circular_bug+0x470/0x470 [ 3058.610715] ? alloc_chain_hlocks+0x342/0x5a0 [ 3058.611210] __lock_acquire+0x29e7/0x5b00 [ 3058.611657] ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0 [ 3058.612236] ? SOFTIRQ_verbose+0x10/0x10 [ 3058.612669] ? asm_sysvec_apic_timer_interrupt+0x12/0x20 [ 3058.613255] ? asm_sysvec_apic_timer_interrupt+0x12/0x20 [ 3058.613832] lock_acquire+0x197/0x470 [ 3058.614246] ? __flush_work+0xdd/0xa90 [ 3058.614663] ? lock_release+0x680/0x680 [ 3058.615109] ? lock_release+0x680/0x680 [ 3058.615548] ? lock_chain_count+0x20/0x20 [ 3058.616011] ? perf_trace_lock+0xac/0x490 [ 3058.616475] ? lock_chain_count+0x20/0x20 [ 3058.616930] __flush_work+0x105/0xa90 [ 3058.617360] ? __flush_work+0xdd/0xa90 [ 3058.617792] ? queue_delayed_work_on+0xe0/0xe0 [ 3058.618311] ? hci_dev_do_close+0xef/0x1240 [ 3058.618784] ? __cancel_work_timer+0x2a9/0x4c0 [ 3058.619306] ? mutex_lock_io_nested+0xf30/0xf30 [ 3058.619821] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 3058.620405] ? __cancel_work+0x250/0x2b0 [ 3058.620833] ? trace_hardirqs_on+0x5b/0x180 [ 3058.621321] ? __cancel_work+0x1bb/0x2b0 [ 3058.621772] ? try_to_grab_pending+0xe0/0xe0 [ 3058.622271] hci_dev_do_close+0x131/0x1240 [ 3058.622733] ? rfkill_set_block+0x18f/0x540 [ 3058.623222] ? hci_dev_open+0x350/0x350 [ 3058.623658] ? mark_held_locks+0x9e/0xe0 [ 3058.624130] hci_rfkill_set_block+0x166/0x1a0 [ 3058.624622] ? hci_power_off+0x20/0x20 [ 3058.625051] rfkill_set_block+0x1fd/0x540 [ 3058.625517] rfkill_fop_write+0x253/0x4b0 [ 3058.625980] ? rfkill_sync_work+0xa0/0xa0 [ 3058.626456] ? security_file_permission+0x24e/0x570 [ 3058.627012] ? rfkill_sync_work+0xa0/0xa0 [ 3058.627479] vfs_write+0x29a/0xa70 [ 3058.627881] ksys_write+0x1f6/0x260 [ 3058.628300] ? __ia32_sys_read+0xb0/0xb0 [ 3058.628744] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 3058.629336] ? syscall_enter_from_user_mode+0x1d/0x50 [ 3058.629904] do_syscall_64+0x33/0x40 [ 3058.630328] entry_SYSCALL_64_after_hwframe+0x62/0xc7 [ 3058.630884] RIP: 0033:0x7f87c112eb19 [ 3058.631290] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 3058.633278] RSP: 002b:00007f87be6a4188 EFLAGS: 00000246 ORIG_RAX: 0000000000000001 [ 3058.634096] RAX: ffffffffffffffda RBX: 00007f87c1241f60 RCX: 00007f87c112eb19 [ 3058.634858] RDX: 0000000000000008 RSI: 00000000200000c0 RDI: 0000000000000004 [ 3058.635635] RBP: 00007f87c1188f6d R08: 0000000000000000 R09: 0000000000000000 [ 3058.636422] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 3058.637184] R13: 00007fffc7db264f R14: 00007f87be6a4300 R15: 0000000000022000 [ 3058.645620] FAULT_INJECTION: forcing a failure. [ 3058.645620] name failslab, interval 1, probability 0, space 0, times 0 [ 3058.646864] CPU: 1 PID: 13311 Comm: syz-executor.6 Not tainted 5.10.204 #1 [ 3058.647629] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 3058.648544] Call Trace: [ 3058.648825] dump_stack+0x107/0x167 [ 3058.649312] should_fail.cold+0x5/0xa [ 3058.649787] ? __alloc_skb+0x6d/0x5b0 [ 3058.650224] should_failslab+0x5/0x20 [ 3058.650806] kmem_cache_alloc_node+0x55/0x330 [ 3058.651378] __alloc_skb+0x6d/0x5b0 [ 3058.651793] tcp_collapse+0x42c/0xf20 [ 3058.652210] ? tcp_queue_rcv+0x7c0/0x7c0 [ 3058.652655] ? tcp_xmit_retransmit_queue+0x57/0x70 [ 3058.653175] ? tcp_xmit_recovery+0x86/0x180 [ 3058.653642] ? tcp_ack+0xeef/0x5690 [ 3058.654053] tcp_try_rmem_schedule+0xb8a/0x1690 [ 3058.654571] tcp_data_queue+0x16ba/0x47f0 [ 3058.655026] ? lock_release+0x680/0x680 [ 3058.655462] ? tcp_data_ready+0x500/0x500 [ 3058.655922] ? tcp_urg.part.0+0x157/0x2e0 [ 3058.656375] ? tcp_try_keep_open+0x2f0/0x2f0 [ 3058.656849] ? tcp_validate_incoming+0x431/0x16a0 [ 3058.657359] ? tcp_check_urg.isra.0+0x1db/0x720 [ 3058.657858] tcp_rcv_established+0x868/0x1e30 [ 3058.658337] ? tcp_check_space+0x6c0/0x6c0 [ 3058.658795] tcp_v6_do_rcv+0x7b3/0x1520 [ 3058.659238] __release_sock+0x139/0x3b0 [ 3058.659681] release_sock+0x54/0x1b0 [ 3058.660095] sk_wait_data+0x1a7/0x4d0 [ 3058.660515] ? sock_set_mark+0x130/0x130 [ 3058.660977] ? prepare_to_wait_exclusive+0x2a0/0x2a0 [ 3058.661532] ? tcp_mstamp_refresh+0x12/0xa0 [ 3058.662001] ? sock_rfree+0x107/0x170 [ 3058.662415] ? __sanitizer_cov_trace_switch+0x45/0x80 [ 3058.662983] tcp_recvmsg+0x17b2/0x2930 [ 3058.663421] ? tcp_splice_read+0x8c0/0x8c0 [ 3058.663894] ? sock_has_perm+0x1ea/0x280 [ 3058.664339] ? perf_trace_lock+0xac/0x490 [ 3058.664789] ? tcp_splice_read+0x8c0/0x8c0 [ 3058.665254] inet6_recvmsg+0x13b/0x6e0 [ 3058.665677] ? inet6_bind+0x120/0x120 [ 3058.666111] ? security_socket_recvmsg+0x95/0xc0 [ 3058.666633] ? inet6_bind+0x120/0x120 [ 3058.667055] sock_recvmsg+0xff/0x180 [ 3058.667476] __sys_recvfrom+0x1be/0x2f0 [ 3058.667939] ? __ia32_sys_send+0x100/0x100 [ 3058.668414] ? lock_downgrade+0x6d0/0x6d0 [ 3058.668873] ? wait_for_completion_io+0x270/0x270 [ 3058.669417] ? rcu_read_lock_any_held+0x75/0xa0 [ 3058.669932] ? vfs_write+0x354/0xa70 [ 3058.670347] ? fput_many+0x2f/0x1a0 [ 3058.670754] ? ksys_write+0x1a9/0x260 [ 3058.671163] ? __ia32_sys_read+0xb0/0xb0 [ 3058.671609] __x64_sys_recvfrom+0xdd/0x1b0 [ 3058.672072] ? syscall_enter_from_user_mode+0x1d/0x50 [ 3058.672623] do_syscall_64+0x33/0x40 [ 3058.673027] entry_SYSCALL_64_after_hwframe+0x62/0xc7 [ 3058.673582] RIP: 0033:0x7f7d1addbb19 [ 3058.673997] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 3058.676013] RSP: 002b:00007f7d18330188 EFLAGS: 00000246 ORIG_RAX: 000000000000002d [ 3058.676840] RAX: ffffffffffffffda RBX: 00007f7d1aeef020 RCX: 00007f7d1addbb19 [ 3058.677609] RDX: 0000000000001000 RSI: 0000000020001e00 RDI: 0000000000000003 [ 3058.678379] RBP: 00007f7d183301d0 R08: 0000000000000000 R09: 0000000000000000 [ 3058.679131] R10: 000000000000cd08 R11: 0000000000000246 R12: 0000000000000002 [ 3058.679898] R13: 00007ffe0ac926cf R14: 00007f7d18330300 R15: 0000000000022000 [ 3058.714966] netlink: 8 bytes leftover after parsing attributes in process `syz-executor.3'. VM DIAGNOSIS: 05:42:31 Registers: info registers vcpu 0 RAX=dffffc0000000005 RBX=00000000000003f9 RCX=0000000000000000 RDX=00000000000003f9 RSI=ffffffff822cadfc RDI=ffffffff879e8240 RBP=ffffffff879e8200 RSP=ffff8880472eeca0 R8 =0000000000000001 R9 =0000000000000003 R10=ffffed1008e5dd85 R11=0000000000000001 R12=0000000000000000 R13=0000000000000000 R14=0000000000000001 R15=ffffffff879e8250 RIP=ffffffff822cae50 RFL=00000006 [-----P-] CPL=0 II=0 A20=1 SMM=0 HLT=0 ES =0000 0000000000000000 00000000 00000000 CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA] SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS [-WA] DS =0000 0000000000000000 00000000 00000000 FS =0000 00007f2ceceef700 00000000 00000000 GS =0000 ffff88806ce00000 00000000 00000000 LDT=0000 fffffe0500000000 00000000 00000000 TR =0040 fffffe0000003000 00004087 00008b00 DPL=0 TSS64-busy GDT= fffffe0000001000 0000007f IDT= fffffe0000000000 00000fff CR0=80050033 CR2=00005555555ffc58 CR3=000000004d31e000 CR4=00350ef0 DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 DR6=00000000ffff0ff0 DR7=0000000000000400 EFER=0000000000000d01 FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80 FPR0=0000000000000000 0000 FPR1=0000000000000000 0000 FPR2=0000000000000000 0000 FPR3=0000000000000000 0000 FPR4=0000000000000000 0000 FPR5=0000000000000000 0000 FPR6=0000000000000000 0000 FPR7=0000000000000000 0000 XMM00=00000000000000000000000000000000 XMM01=ffffffffffffffffffffffffffffffff XMM02=00000000000000000000000000000000 XMM03=00000000000000000000000000000000 XMM04=000000000000000000000000000000ff XMM05=00000000000000000000000000000000 XMM06=0000000000000000000000524f525245 XMM07=00000000000000000000000000000000 XMM08=000000000000000000524f5252450040 XMM09=00000000000000000000000000000000 XMM10=00000000000000000000000000000000 XMM11=00000000000000000000000000000000 XMM12=00000000000000000000000000000000 XMM13=00000000000000000000000000000000 XMM14=00000000000000000000000000000000 XMM15=00000000000000000000000000000000 info registers vcpu 1 RAX=000000000001fa01 RBX=0000000000000001 RCX=ffffc90007228000 RDX=0000000000040000 RSI=ffffffff81299ee1 RDI=0000000000000001 RBP=0000000000000000 RSP=ffff888051b575d8 R8 =0000000000000000 R9 =ffffffff8567278f R10=0000000000000000 R11=0000000000000001 R12=0000000000000020 R13=0000000000000002 R14=ffff88804e5a0000 R15=0000000000000000 RIP=ffffffff81299ee3 RFL=00000016 [----AP-] CPL=0 II=0 A20=1 SMM=0 HLT=0 ES =0000 0000000000000000 00000000 00000000 CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA] SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS [-WA] DS =0000 0000000000000000 00000000 00000000 FS =0000 00007f87be6a4700 00000000 00000000 GS =0000 ffff88806cf00000 00000000 00000000 LDT=0000 fffffe1100000000 00000000 00000000 TR =0040 fffffe000004a000 00004087 00008b00 DPL=0 TSS64-busy GDT= fffffe0000048000 0000007f IDT= fffffe0000000000 00000fff CR0=80050033 CR2=00007f6e6d072dd8 CR3=000000004fb68000 CR4=00350ee0 DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 DR6=00000000ffff0ff0 DR7=0000000000000400 EFER=0000000000000d01 FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80 FPR0=0000000000000000 0000 FPR1=0000000000000000 0000 FPR2=0000000000000000 0000 FPR3=0000000000000000 0000 FPR4=0000000000000000 0000 FPR5=0000000000000000 0000 FPR6=0000000000000000 0000 FPR7=0000000000000000 0000 XMM00=00000000000000000000000000000000 XMM01=ffffffffffffffffffffffffffffffff XMM02=00000000000000000000000000000000 XMM03=00000000000000000000000000000000 XMM04=000000000000000000000000000000ff XMM05=00000000000000000000000000000000 XMM06=0000000000000000000000524f525245 XMM07=00000000000000000000000000000000 XMM08=000000000000000000524f5252450040 XMM09=00000000000000000000000000000000 XMM10=00000000000000000000000000000000 XMM11=00000000000000000000000000000000 XMM12=00000000000000000000000000000000 XMM13=00000000000000000000000000000000 XMM14=00000000000000000000000000000000 XMM15=00000000000000000000000000000000