&(0x7f0000000080), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200), &(0x7f0000000140)=0x0) r2 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0) perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_io_uring_submit(r2, r1, &(0x7f0000000100)=@IORING_OP_SPLICE, 0x4) io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0) execveat(0xffffffffffffffff, &(0x7f00000002c0)='./file0\x00', 0x0, 0x0, 0x0) 12:24:36 executing program 4: r0 = syz_io_uring_setup(0x4d4f, &(0x7f0000000080), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200), &(0x7f0000000140)=0x0) r2 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0) perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_io_uring_submit(r2, r1, &(0x7f0000000100)=@IORING_OP_SPLICE, 0x4) io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0) execveat(0xffffffffffffffff, &(0x7f00000002c0)='./file0\x00', 0x0, 0x0, 0x1000) 12:24:36 executing program 2: r0 = syz_init_net_socket$802154_dgram(0x24, 0x2, 0x0) r1 = dup(r0) sendmsg$BATADV_CMD_GET_BLA_BACKBONE(r1, &(0x7f0000000540)={&(0x7f0000000100), 0xc, &(0x7f0000000500)={0x0}}, 0x0) ioctl$sock_SIOCINQ(r1, 0xc020660b, &(0x7f0000000000)) [ 1405.836595] EXT4-fs (loop6): ext4_check_descriptors: Block bitmap for group 0 overlaps superblock [ 1405.836932] FAULT_INJECTION: forcing a failure. [ 1405.836932] name failslab, interval 1, probability 0, space 0, times 0 [ 1405.838185] EXT4-fs (loop6): group descriptors corrupted! [ 1405.840437] CPU: 0 PID: 11043 Comm: syz-executor.5 Not tainted 5.10.60 #1 [ 1405.841379] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS rel-1.14.0-0-g155821a1990b-prebuilt.qemu.org 04/01/2014 [ 1405.842882] Call Trace: [ 1405.843241] dump_stack+0x107/0x163 [ 1405.843727] should_fail.cold+0x5/0xa [ 1405.844235] ? alloc_fdtable+0x7e/0x280 [ 1405.844764] should_failslab+0x5/0x10 [ 1405.845267] kmem_cache_alloc_trace+0x55/0x350 [ 1405.845822] ? rwlock_bug.part.0+0x90/0x90 [ 1405.846297] alloc_fdtable+0x7e/0x280 [ 1405.846719] dup_fd+0x71a/0xc50 [ 1405.847099] unshare_files+0x16c/0x260 [ 1405.847525] ? __ia32_sys_unshare+0x40/0x40 [ 1405.847998] ? rcu_read_lock_sched_held+0x3a/0x70 [ 1405.848532] ? trace_rss_stat+0x174/0x210 [ 1405.849001] bprm_execve+0x123/0x1b00 [ 1405.849423] ? get_arg_page+0x153/0x200 [ 1405.849870] ? acct_arg_size+0xe0/0xe0 [ 1405.850301] ? open_exec+0x70/0x70 [ 1405.850717] ? memcpy+0x39/0x60 [ 1405.851080] ? copy_strings.isra.0+0x492/0x690 [ 1405.851580] ? copy_string_kernel+0x3ad/0x440 [ 1405.852066] do_execveat_common.isra.0+0x524/0x670 [ 1405.852619] __x64_sys_execveat+0xe7/0x130 [ 1405.853066] do_syscall_64+0x33/0x40 [ 1405.853485] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 1405.854034] RIP: 0033:0x466609 [ 1405.854394] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1405.856367] RSP: 002b:00007feb29e67188 EFLAGS: 00000246 ORIG_RAX: 0000000000000142 [ 1405.857196] RAX: ffffffffffffffda RBX: 000000000056bf80 RCX: 0000000000466609 [ 1405.857959] RDX: 0000000000000000 RSI: 00000000200002c0 RDI: ffffffffffffffff [ 1405.858779] RBP: 00007feb29e671d0 R08: 0000000000000000 R09: 0000000000000000 [ 1405.859574] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 1405.860371] R13: 00007ffde08160ef R14: 00007feb29e67300 R15: 0000000000022000 [ 1405.891322] FAULT_INJECTION: forcing a failure. [ 1405.891322] name failslab, interval 1, probability 0, space 0, times 0 [ 1405.892955] CPU: 1 PID: 11047 Comm: syz-executor.0 Not tainted 5.10.60 #1 [ 1405.893958] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS rel-1.14.0-0-g155821a1990b-prebuilt.qemu.org 04/01/2014 [ 1405.895607] Call Trace: [ 1405.895991] dump_stack+0x107/0x163 [ 1405.896538] should_fail.cold+0x5/0xa [ 1405.897123] ? create_object.isra.0+0x3a/0xa10 [ 1405.897807] should_failslab+0x5/0x10 [ 1405.898372] kmem_cache_alloc+0x5b/0x350 [ 1405.898985] create_object.isra.0+0x3a/0xa10 [ 1405.899640] ? __kasan_kmalloc.constprop.0+0xc2/0xd0 [ 1405.900374] kmem_cache_alloc+0x15b/0x350 [ 1405.900973] __anon_vma_prepare+0x281/0x4f0 [ 1405.901604] ? __pte_alloc+0x194/0x320 [ 1405.902183] handle_mm_fault+0x2be1/0x3570 [ 1405.902760] ? __pmd_alloc+0x5e0/0x5e0 [ 1405.903206] __get_user_pages+0x61d/0x1400 [ 1405.903676] ? follow_page_mask+0x1820/0x1820 [ 1405.904174] ? hlock_class+0x120/0x120 [ 1405.904602] __get_user_pages_remote+0x1d1/0x860 [ 1405.905125] ? find_held_lock+0x2c/0x110 [ 1405.905578] get_user_pages_remote+0x63/0x90 [ 1405.906063] get_arg_page+0xba/0x200 [ 1405.906478] ? acct_arg_size+0xe0/0xe0 [ 1405.906926] copy_string_kernel+0x1b0/0x440 [ 1405.907407] do_execveat_common.isra.0+0x405/0x670 [ 1405.907956] __x64_sys_execveat+0xe7/0x130 [ 1405.908432] do_syscall_64+0x33/0x40 [ 1405.908843] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 1405.909431] RIP: 0033:0x466609 [ 1405.909804] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1405.911925] RSP: 002b:00007f4e87c42188 EFLAGS: 00000246 ORIG_RAX: 0000000000000142 [ 1405.912781] RAX: ffffffffffffffda RBX: 000000000056bf80 RCX: 0000000000466609 [ 1405.913573] RDX: 0000000020000380 RSI: 00000000200002c0 RDI: ffffffffffffffff [ 1405.914358] RBP: 00007f4e87c421d0 R08: 0000000000001000 R09: 0000000000000000 [ 1405.915188] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 1405.915969] R13: 00007ffc014a64bf R14: 00007f4e87c42300 R15: 0000000000022000 12:24:36 executing program 5 (fault-call:6 fault-nth:27): r0 = syz_io_uring_setup(0x4d4f, &(0x7f0000000080), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=0x0, &(0x7f0000000140)=0x0) syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_POLL_ADD={0x6, 0x0, 0x0, @fd=r0, 0x0, 0x0, 0x0, {0x194}}, 0x0) r3 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0) perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_io_uring_submit(r3, r2, &(0x7f0000000100)=@IORING_OP_SPLICE, 0x4) io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0) execveat(0xffffffffffffffff, &(0x7f00000002c0)='./file0\x00', 0x0, 0x0, 0x0) 12:24:36 executing program 1: r0 = syz_io_uring_setup(0x4d4f, &(0x7f0000000080), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=0x0, &(0x7f0000000140)=0x0) syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_POLL_ADD={0x6, 0x0, 0x0, @fd=r0, 0x0, 0x0, 0x0, {0x194}}, 0x0) r3 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0) perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_io_uring_submit(r3, r2, &(0x7f0000000100)=@IORING_OP_SPLICE, 0x4) io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0) execveat(0xffffffffffffffff, &(0x7f00000002c0)='./file0\x00', &(0x7f0000000380), &(0x7f0000000640)=[&(0x7f00000003c0)='\x00', &(0x7f0000000440)='+)>{)U\x00', &(0x7f0000000480)='{@#@\x00', &(0x7f00000004c0)='\x00', &(0x7f0000000500)='/dev/sg#\x00'], 0x1000) [ 1405.960456] EXT4-fs (loop7): mounted filesystem without journal. Opts: ,errors=continue [ 1405.968422] FAULT_INJECTION: forcing a failure. [ 1405.968422] name fail_page_alloc, interval 1, probability 0, space 0, times 0 [ 1405.969831] CPU: 1 PID: 11058 Comm: syz-executor.3 Not tainted 5.10.60 #1 [ 1405.970599] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS rel-1.14.0-0-g155821a1990b-prebuilt.qemu.org 04/01/2014 [ 1405.971850] Call Trace: [ 1405.972146] dump_stack+0x107/0x163 [ 1405.972547] should_fail.cold+0x5/0xa [ 1405.972970] __alloc_pages_nodemask+0x17f/0x670 [ 1405.973487] ? __alloc_pages_slowpath.constprop.0+0x2090/0x2090 [ 1405.974151] ? lock_downgrade+0x6d0/0x6d0 [ 1405.974621] ? do_raw_spin_lock+0x129/0x270 [ 1405.975164] alloc_pages_current+0x187/0x280 [ 1405.975697] __pmd_alloc+0x3b/0x5e0 [ 1405.976156] handle_mm_fault+0x1a30/0x3570 [ 1405.976708] ? perf_trace_lock+0xb6/0x470 [ 1405.977206] ? hlock_class+0x120/0x120 [ 1405.977650] ? __pmd_alloc+0x5e0/0x5e0 [ 1405.978176] __get_user_pages+0x61d/0x1400 [ 1405.978691] ? follow_page_mask+0x1820/0x1820 [ 1405.979207] ? __lockdep_reset_lock+0x180/0x180 [ 1405.979734] ? avc_has_perm_noaudit+0x1f8/0x3a0 [ 1405.980339] ? find_held_lock+0x2c/0x110 [ 1405.980804] __get_user_pages_remote+0x1d1/0x860 [ 1405.981353] get_user_pages_remote+0x63/0x90 [ 1405.981874] get_arg_page+0xba/0x200 [ 1405.982307] ? acct_arg_size+0xe0/0xe0 [ 1405.982770] ? insert_vm_struct+0x1f7/0x340 [ 1405.983305] copy_string_kernel+0x1b0/0x440 [ 1405.983811] do_execveat_common.isra.0+0x405/0x670 [ 1405.984417] __x64_sys_execveat+0xe7/0x130 [ 1405.984893] do_syscall_64+0x33/0x40 [ 1405.985324] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 1405.985924] RIP: 0033:0x466609 [ 1405.986310] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1405.988483] RSP: 002b:00007f7f315af188 EFLAGS: 00000246 ORIG_RAX: 0000000000000142 [ 1405.989387] RAX: ffffffffffffffda RBX: 000000000056bf80 RCX: 0000000000466609 [ 1405.990302] RDX: 0000000000000000 RSI: 00000000200002c0 RDI: ffffffffffffffff [ 1405.991226] RBP: 00007f7f315af1d0 R08: 0000000000000000 R09: 0000000000000000 [ 1405.992189] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 1405.993030] R13: 00007ffe8cd6fa4f R14: 00007f7f315af300 R15: 0000000000022000 [ 1406.070212] FAULT_INJECTION: forcing a failure. [ 1406.070212] name failslab, interval 1, probability 0, space 0, times 0 [ 1406.071514] CPU: 0 PID: 11073 Comm: syz-executor.5 Not tainted 5.10.60 #1 [ 1406.072306] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS rel-1.14.0-0-g155821a1990b-prebuilt.qemu.org 04/01/2014 [ 1406.073608] Call Trace: [ 1406.073919] dump_stack+0x107/0x163 [ 1406.074341] should_fail.cold+0x5/0xa [ 1406.074799] ? create_object.isra.0+0x3a/0xa10 [ 1406.075333] should_failslab+0x5/0x10 [ 1406.075778] kmem_cache_alloc+0x5b/0x350 [ 1406.076256] create_object.isra.0+0x3a/0xa10 [ 1406.076760] ? __kasan_kmalloc.constprop.0+0xc2/0xd0 [ 1406.077313] kmem_cache_alloc_trace+0x153/0x350 [ 1406.077861] ? rwlock_bug.part.0+0x90/0x90 [ 1406.078326] alloc_fdtable+0x7e/0x280 [ 1406.078780] dup_fd+0x71a/0xc50 [ 1406.079186] unshare_files+0x16c/0x260 [ 1406.079627] ? __ia32_sys_unshare+0x40/0x40 [ 1406.080119] ? rcu_read_lock_sched_held+0x3a/0x70 [ 1406.080662] ? trace_rss_stat+0x174/0x210 [ 1406.081124] bprm_execve+0x123/0x1b00 [ 1406.081534] ? get_arg_page+0x153/0x200 [ 1406.081981] ? acct_arg_size+0xe0/0xe0 [ 1406.082401] ? open_exec+0x70/0x70 [ 1406.082797] ? memcpy+0x39/0x60 [ 1406.083154] ? copy_strings.isra.0+0x492/0x690 [ 1406.083654] ? copy_string_kernel+0x3ad/0x440 [ 1406.084146] do_execveat_common.isra.0+0x524/0x670 [ 1406.084689] __x64_sys_execveat+0xe7/0x130 [ 1406.085157] do_syscall_64+0x33/0x40 [ 1406.085571] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 1406.086121] RIP: 0033:0x466609 [ 1406.086474] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1406.088486] RSP: 002b:00007feb29e67188 EFLAGS: 00000246 ORIG_RAX: 0000000000000142 [ 1406.089313] RAX: ffffffffffffffda RBX: 000000000056bf80 RCX: 0000000000466609 [ 1406.090083] RDX: 0000000000000000 RSI: 00000000200002c0 RDI: ffffffffffffffff [ 1406.090873] RBP: 00007feb29e671d0 R08: 0000000000000000 R09: 0000000000000000 [ 1406.091652] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 1406.092425] R13: 00007ffde08160ef R14: 00007feb29e67300 R15: 0000000000022000 12:24:49 executing program 0 (fault-call:6 fault-nth:23): r0 = syz_io_uring_setup(0x4d4f, &(0x7f0000000080), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=0x0, &(0x7f0000000140)=0x0) syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_POLL_ADD={0x6, 0x0, 0x0, @fd=r0, 0x0, 0x0, 0x0, {0x194}}, 0x0) r3 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0) perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_io_uring_submit(r3, r2, &(0x7f0000000100)=@IORING_OP_SPLICE, 0x4) io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0) execveat(0xffffffffffffffff, &(0x7f00000002c0)='./file0\x00', &(0x7f0000000380), 0x0, 0x1000) 12:24:49 executing program 7: syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000040)='./file0\x00', 0x40000, 0x3, &(0x7f0000000200)=[{&(0x7f0000010000)="2000000080000000060000006a0000000f000000000000000100000001000000004000000040000020000000e0f4655fe0f4655f0100ffff53ef010001000000dff4655f000000000000000001000000000000000b0000000001", 0x5a, 0x400}, {&(0x7f0000010400)="020000000300000004", 0x9, 0x800}, {&(0x7f0000011600)="ed41000000080000dff4655fe0f4655fe0f4655f000000000000040004", 0x1d, 0x2100}], 0x0, &(0x7f0000000080)=ANY=[]) syz_mount_image$ext4(&(0x7f0000000000)='ext2\x00', &(0x7f0000000040)='./file0/../file0\x00', 0x0, 0x0, 0x0, 0x0, &(0x7f00000001c0)={[{@data_err_abort}]}) 12:24:49 executing program 1: r0 = syz_io_uring_setup(0x4d4f, &(0x7f0000000080), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=0x0, &(0x7f0000000140)=0x0) syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_POLL_ADD={0x6, 0x0, 0x0, @fd=r0, 0x0, 0x0, 0x0, {0x194}}, 0x0) r3 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0) perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_io_uring_submit(r3, r2, &(0x7f0000000100)=@IORING_OP_SPLICE, 0x4) io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0) execveat(0xffffffffffffffff, &(0x7f00000002c0)='./file0\x00', &(0x7f0000000380), &(0x7f0000000640)=[&(0x7f00000003c0)='\x00', &(0x7f0000000440)='+)>{)U\x00', &(0x7f0000000480)='{@#@\x00', &(0x7f00000004c0)='\x00'], 0x1000) 12:24:49 executing program 5 (fault-call:6 fault-nth:28): r0 = syz_io_uring_setup(0x4d4f, &(0x7f0000000080), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=0x0, &(0x7f0000000140)=0x0) syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_POLL_ADD={0x6, 0x0, 0x0, @fd=r0, 0x0, 0x0, 0x0, {0x194}}, 0x0) r3 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0) perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_io_uring_submit(r3, r2, &(0x7f0000000100)=@IORING_OP_SPLICE, 0x4) io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0) execveat(0xffffffffffffffff, &(0x7f00000002c0)='./file0\x00', 0x0, 0x0, 0x0) 12:24:49 executing program 3 (fault-call:5 fault-nth:14): r0 = syz_io_uring_setup(0x4d4f, &(0x7f0000000080), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200), &(0x7f0000000140)=0x0) r2 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0) perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_io_uring_submit(r2, r1, &(0x7f0000000100)=@IORING_OP_SPLICE, 0x4) io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0) execveat(0xffffffffffffffff, &(0x7f00000002c0)='./file0\x00', 0x0, 0x0, 0x0) 12:24:49 executing program 4: r0 = syz_io_uring_setup(0x4d4f, &(0x7f0000000080), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200), &(0x7f0000000140)=0x0) r2 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0) perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_io_uring_submit(r2, r1, &(0x7f0000000100)=@IORING_OP_SPLICE, 0x4) io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0) execveat(0xffffffffffffffff, &(0x7f00000002c0)='./file0\x00', 0x0, 0x0, 0x0) 12:24:49 executing program 2: r0 = syz_init_net_socket$802154_dgram(0x24, 0x2, 0x0) r1 = dup(r0) sendmsg$BATADV_CMD_GET_BLA_BACKBONE(r1, &(0x7f0000000540)={&(0x7f0000000100)={0x10, 0x0, 0x0, 0x10}, 0xc, &(0x7f0000000040)={0x0}}, 0x0) ioctl$sock_SIOCINQ(r1, 0x541b, &(0x7f0000000000)) 12:24:49 executing program 6: syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000040)='./file0\x00', 0x40000, 0x3, &(0x7f0000000200)=[{&(0x7f0000010000)="2000000080000000060000006a0000000f000000000000000100000001000000004000000040000020000000e0f4655fe0f4655f0100ffff53ef010001000000dff4655f000000000000000001000000000000000b00000000010000280200000284", 0x62, 0x400}, {&(0x7f0000010400)="020000000300000004", 0x9}, {&(0x7f0000011600)="ed41000000080000dff4655fe0f4655fe0f4655f000000000000040004", 0x1d, 0x2100}], 0x0, &(0x7f0000000080)=ANY=[]) syz_mount_image$ext4(&(0x7f0000000000)='ext2\x00', &(0x7f0000000040)='./file0/../file0\x00', 0x0, 0x0, 0x0, 0x104e034, &(0x7f00000001c0)={[{@data_err_abort}]}) [ 1419.111598] FAULT_INJECTION: forcing a failure. [ 1419.111598] name failslab, interval 1, probability 0, space 0, times 0 [ 1419.113842] CPU: 1 PID: 11091 Comm: syz-executor.3 Not tainted 5.10.60 #1 [ 1419.115200] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS rel-1.14.0-0-g155821a1990b-prebuilt.qemu.org 04/01/2014 [ 1419.117384] Call Trace: [ 1419.117894] dump_stack+0x107/0x163 [ 1419.118604] should_fail.cold+0x5/0xa [ 1419.119356] ? __pmd_alloc+0x98/0x5e0 [ 1419.120079] should_failslab+0x5/0x10 [ 1419.120803] kmem_cache_alloc+0x5b/0x350 [ 1419.121612] __pmd_alloc+0x98/0x5e0 [ 1419.122327] handle_mm_fault+0x1a30/0x3570 [ 1419.123142] ? perf_trace_lock+0xb6/0x470 [ 1419.124078] ? hlock_class+0x120/0x120 [ 1419.125040] ? __pmd_alloc+0x5e0/0x5e0 [ 1419.125984] __get_user_pages+0x61d/0x1400 [ 1419.127031] ? follow_page_mask+0x1820/0x1820 [ 1419.128052] ? __lockdep_reset_lock+0x180/0x180 [ 1419.129152] ? avc_has_perm_noaudit+0x1f8/0x3a0 [ 1419.130233] ? find_held_lock+0x2c/0x110 [ 1419.131209] __get_user_pages_remote+0x1d1/0x860 [ 1419.132338] get_user_pages_remote+0x63/0x90 [ 1419.133403] get_arg_page+0xba/0x200 [ 1419.134191] ? acct_arg_size+0xe0/0xe0 [ 1419.134953] ? insert_vm_struct+0x1f7/0x340 [ 1419.135797] copy_string_kernel+0x1b0/0x440 [ 1419.136648] do_execveat_common.isra.0+0x405/0x670 [ 1419.137609] __x64_sys_execveat+0xe7/0x130 [ 1419.138437] do_syscall_64+0x33/0x40 [ 1419.139167] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 1419.140153] RIP: 0033:0x466609 [ 1419.140792] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1419.144399] RSP: 002b:00007f7f315af188 EFLAGS: 00000246 ORIG_RAX: 0000000000000142 [ 1419.145941] RAX: ffffffffffffffda RBX: 000000000056bf80 RCX: 0000000000466609 [ 1419.147486] RDX: 0000000000000000 RSI: 00000000200002c0 RDI: ffffffffffffffff [ 1419.148922] RBP: 00007f7f315af1d0 R08: 0000000000000000 R09: 0000000000000000 [ 1419.150413] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 1419.151819] R13: 00007ffe8cd6fa4f R14: 00007f7f315af300 R15: 0000000000022000 [ 1419.182718] FAULT_INJECTION: forcing a failure. [ 1419.182718] name fail_page_alloc, interval 1, probability 0, space 0, times 0 [ 1419.184489] CPU: 0 PID: 11097 Comm: syz-executor.0 Not tainted 5.10.60 #1 [ 1419.185445] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS rel-1.14.0-0-g155821a1990b-prebuilt.qemu.org 04/01/2014 [ 1419.187011] Call Trace: [ 1419.187397] dump_stack+0x107/0x163 [ 1419.187912] should_fail.cold+0x5/0xa [ 1419.188463] __alloc_pages_nodemask+0x17f/0x670 [ 1419.189129] ? __alloc_pages_slowpath.constprop.0+0x2090/0x2090 [ 1419.189974] ? up_write+0x191/0x550 [ 1419.190507] ? rwlock_bug.part.0+0x90/0x90 [ 1419.191132] ? rcu_read_lock_sched_held+0x3a/0x70 [ 1419.191811] ? anon_vma_interval_tree_insert+0x277/0x450 [ 1419.192594] alloc_pages_vma+0xbb/0x410 [ 1419.193171] handle_mm_fault+0x1506/0x3570 [ 1419.193780] ? __pmd_alloc+0x5e0/0x5e0 12:24:49 executing program 3 (fault-call:5 fault-nth:15): r0 = syz_io_uring_setup(0x4d4f, &(0x7f0000000080), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200), &(0x7f0000000140)=0x0) r2 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0) perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_io_uring_submit(r2, r1, &(0x7f0000000100)=@IORING_OP_SPLICE, 0x4) io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0) execveat(0xffffffffffffffff, &(0x7f00000002c0)='./file0\x00', 0x0, 0x0, 0x0) [ 1419.194578] __get_user_pages+0x61d/0x1400 [ 1419.195347] ? follow_page_mask+0x1820/0x1820 [ 1419.195987] ? perf_trace_lock+0x2cd/0x470 [ 1419.196590] ? hlock_class+0x120/0x120 [ 1419.197151] __get_user_pages_remote+0x1d1/0x860 [ 1419.197826] ? find_held_lock+0x2c/0x110 [ 1419.198403] get_user_pages_remote+0x63/0x90 [ 1419.199370] get_arg_page+0xba/0x200 [ 1419.200310] ? acct_arg_size+0xe0/0xe0 [ 1419.201351] copy_string_kernel+0x1b0/0x440 [ 1419.202450] do_execveat_common.isra.0+0x405/0x670 [ 1419.203804] __x64_sys_execveat+0xe7/0x130 [ 1419.204977] do_syscall_64+0x33/0x40 [ 1419.206004] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 1419.207142] RIP: 0033:0x466609 [ 1419.207864] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1419.211859] RSP: 002b:00007f4e87c42188 EFLAGS: 00000246 ORIG_RAX: 0000000000000142 [ 1419.213554] RAX: ffffffffffffffda RBX: 000000000056bf80 RCX: 0000000000466609 [ 1419.215187] RDX: 0000000020000380 RSI: 00000000200002c0 RDI: ffffffffffffffff [ 1419.216750] RBP: 00007f4e87c421d0 R08: 0000000000001000 R09: 0000000000000000 [ 1419.218341] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 1419.219921] R13: 00007ffc014a64bf R14: 00007f4e87c42300 R15: 0000000000022000 [ 1419.264498] FAULT_INJECTION: forcing a failure. [ 1419.264498] name failslab, interval 1, probability 0, space 0, times 0 [ 1419.265704] EXT4-fs (loop6): ext4_check_descriptors: Block bitmap for group 0 overlaps superblock [ 1419.267014] CPU: 0 PID: 11107 Comm: syz-executor.5 Not tainted 5.10.60 #1 [ 1419.267029] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS rel-1.14.0-0-g155821a1990b-prebuilt.qemu.org 04/01/2014 [ 1419.267037] Call Trace: [ 1419.267064] dump_stack+0x107/0x163 [ 1419.267098] should_fail.cold+0x5/0xa [ 1419.269136] EXT4-fs (loop6): group descriptors corrupted! [ 1419.270620] ? kvmalloc_node+0x61/0xf0 [ 1419.270648] should_failslab+0x5/0x10 [ 1419.278444] __kmalloc_node+0x76/0x4a0 [ 1419.279330] kvmalloc_node+0x61/0xf0 [ 1419.280166] alloc_fdtable+0xcd/0x280 [ 1419.281004] dup_fd+0x71a/0xc50 [ 1419.281770] unshare_files+0x16c/0x260 [ 1419.282629] ? __ia32_sys_unshare+0x40/0x40 [ 1419.283611] ? rcu_read_lock_sched_held+0x3a/0x70 [ 1419.284671] ? trace_rss_stat+0x174/0x210 [ 1419.285602] bprm_execve+0x123/0x1b00 [ 1419.286442] ? get_arg_page+0x153/0x200 [ 1419.287327] ? acct_arg_size+0xe0/0xe0 [ 1419.288201] ? open_exec+0x70/0x70 [ 1419.288980] ? memcpy+0x39/0x60 [ 1419.289704] ? copy_strings.isra.0+0x492/0x690 [ 1419.290706] ? copy_string_kernel+0x3ad/0x440 [ 1419.291720] do_execveat_common.isra.0+0x524/0x670 [ 1419.292833] __x64_sys_execveat+0xe7/0x130 [ 1419.293851] do_syscall_64+0x33/0x40 [ 1419.294691] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 1419.295832] RIP: 0033:0x466609 [ 1419.296550] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1419.300570] RSP: 002b:00007feb29e67188 EFLAGS: 00000246 ORIG_RAX: 0000000000000142 [ 1419.302236] RAX: ffffffffffffffda RBX: 000000000056bf80 RCX: 0000000000466609 [ 1419.303807] RDX: 0000000000000000 RSI: 00000000200002c0 RDI: ffffffffffffffff [ 1419.305367] RBP: 00007feb29e671d0 R08: 0000000000000000 R09: 0000000000000000 [ 1419.306944] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 1419.308524] R13: 00007ffde08160ef R14: 00007feb29e67300 R15: 0000000000022000 [ 1419.329577] EXT4-fs (loop7): mounting ext2 file system using the ext4 subsystem 12:24:49 executing program 5 (fault-call:6 fault-nth:29): r0 = syz_io_uring_setup(0x4d4f, &(0x7f0000000080), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=0x0, &(0x7f0000000140)=0x0) syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_POLL_ADD={0x6, 0x0, 0x0, @fd=r0, 0x0, 0x0, 0x0, {0x194}}, 0x0) r3 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0) perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_io_uring_submit(r3, r2, &(0x7f0000000100)=@IORING_OP_SPLICE, 0x4) io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0) execveat(0xffffffffffffffff, &(0x7f00000002c0)='./file0\x00', 0x0, 0x0, 0x0) 12:24:49 executing program 4: r0 = syz_io_uring_setup(0x4d4f, &(0x7f0000000080), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200), &(0x7f0000000140)=0x0) r2 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0) perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_io_uring_submit(r2, r1, &(0x7f0000000100)=@IORING_OP_SPLICE, 0x4) io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0) execveat(0xffffffffffffffff, &(0x7f00000002c0)='./file0\x00', 0x0, 0x0, 0x0) 12:24:49 executing program 1: r0 = syz_io_uring_setup(0x4d4f, &(0x7f0000000080), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=0x0, &(0x7f0000000140)=0x0) syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_POLL_ADD={0x6, 0x0, 0x0, @fd=r0, 0x0, 0x0, 0x0, {0x194}}, 0x0) r3 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0) perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_io_uring_submit(r3, r2, &(0x7f0000000100)=@IORING_OP_SPLICE, 0x4) io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0) execveat(0xffffffffffffffff, &(0x7f00000002c0)='./file0\x00', &(0x7f0000000380), &(0x7f0000000640)=[&(0x7f00000003c0)='\x00', &(0x7f0000000440)='+)>{)U\x00', &(0x7f0000000480)='{@#@\x00', &(0x7f00000004c0)='\x00'], 0x1000) 12:24:49 executing program 0 (fault-call:6 fault-nth:24): r0 = syz_io_uring_setup(0x4d4f, &(0x7f0000000080), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=0x0, &(0x7f0000000140)=0x0) syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_POLL_ADD={0x6, 0x0, 0x0, @fd=r0, 0x0, 0x0, 0x0, {0x194}}, 0x0) r3 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0) perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_io_uring_submit(r3, r2, &(0x7f0000000100)=@IORING_OP_SPLICE, 0x4) io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0) execveat(0xffffffffffffffff, &(0x7f00000002c0)='./file0\x00', &(0x7f0000000380), 0x0, 0x1000) [ 1419.429854] EXT4-fs (loop7): mounted filesystem without journal. Opts: ,errors=continue 12:24:49 executing program 2: r0 = syz_init_net_socket$802154_dgram(0x24, 0x2, 0x0) r1 = dup(r0) sendmsg$BATADV_CMD_GET_BLA_BACKBONE(r1, &(0x7f0000000540)={&(0x7f0000000100)={0x10, 0x0, 0x0, 0x40000000}, 0xc, &(0x7f0000000040)={0x0}}, 0x0) ioctl$sock_SIOCINQ(r1, 0x541b, &(0x7f0000000000)) [ 1419.525707] FAULT_INJECTION: forcing a failure. [ 1419.525707] name failslab, interval 1, probability 0, space 0, times 0 [ 1419.527837] CPU: 1 PID: 11123 Comm: syz-executor.3 Not tainted 5.10.60 #1 [ 1419.529037] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS rel-1.14.0-0-g155821a1990b-prebuilt.qemu.org 04/01/2014 [ 1419.531070] Call Trace: [ 1419.531535] dump_stack+0x107/0x163 [ 1419.532178] should_fail.cold+0x5/0xa [ 1419.532856] ? create_object.isra.0+0x3a/0xa10 [ 1419.533660] should_failslab+0x5/0x10 [ 1419.534333] kmem_cache_alloc+0x5b/0x350 [ 1419.535062] create_object.isra.0+0x3a/0xa10 [ 1419.535832] ? __kasan_kmalloc.constprop.0+0xc2/0xd0 [ 1419.536716] kmem_cache_alloc+0x15b/0x350 [ 1419.537464] __pmd_alloc+0x98/0x5e0 [ 1419.538106] handle_mm_fault+0x1a30/0x3570 [ 1419.538882] ? __schedule+0x853/0x1e90 [ 1419.539561] ? __pmd_alloc+0x5e0/0x5e0 [ 1419.540269] __get_user_pages+0x61d/0x1400 [ 1419.541023] ? follow_page_mask+0x1820/0x1820 [ 1419.541810] ? __lockdep_reset_lock+0x180/0x180 [ 1419.542638] ? avc_has_perm_noaudit+0x1f8/0x3a0 [ 1419.543483] ? find_held_lock+0x2c/0x110 [ 1419.544207] __get_user_pages_remote+0x1d1/0x860 [ 1419.545253] get_user_pages_remote+0x63/0x90 [ 1419.546294] get_arg_page+0xba/0x200 [ 1419.547149] ? acct_arg_size+0xe0/0xe0 [ 1419.547871] ? insert_vm_struct+0x1f7/0x340 [ 1419.548657] copy_string_kernel+0x1b0/0x440 [ 1419.549615] do_execveat_common.isra.0+0x405/0x670 [ 1419.550812] __x64_sys_execveat+0xe7/0x130 [ 1419.551792] do_syscall_64+0x33/0x40 [ 1419.552661] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 1419.553803] RIP: 0033:0x466609 [ 1419.554540] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1419.558655] RSP: 002b:00007f7f315af188 EFLAGS: 00000246 ORIG_RAX: 0000000000000142 [ 1419.560479] RAX: ffffffffffffffda RBX: 000000000056bf80 RCX: 0000000000466609 [ 1419.562078] RDX: 0000000000000000 RSI: 00000000200002c0 RDI: ffffffffffffffff [ 1419.563675] RBP: 00007f7f315af1d0 R08: 0000000000000000 R09: 0000000000000000 [ 1419.565275] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 1419.566880] R13: 00007ffe8cd6fa4f R14: 00007f7f315af300 R15: 0000000000022000 [ 1419.632674] FAULT_INJECTION: forcing a failure. [ 1419.632674] name failslab, interval 1, probability 0, space 0, times 0 [ 1419.635225] CPU: 1 PID: 11130 Comm: syz-executor.5 Not tainted 5.10.60 #1 [ 1419.637038] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS rel-1.14.0-0-g155821a1990b-prebuilt.qemu.org 04/01/2014 [ 1419.640126] Call Trace: [ 1419.640758] dump_stack+0x107/0x163 [ 1419.641668] should_fail.cold+0x5/0xa [ 1419.642549] ? create_object.isra.0+0x3a/0xa10 [ 1419.643592] should_failslab+0x5/0x10 [ 1419.644448] kmem_cache_alloc+0x5b/0x350 [ 1419.645351] create_object.isra.0+0x3a/0xa10 [ 1419.646296] ? __kasan_kmalloc.constprop.0+0xc2/0xd0 [ 1419.647375] __kmalloc_node+0x1b0/0x4a0 [ 1419.648241] kvmalloc_node+0x61/0xf0 [ 1419.649004] alloc_fdtable+0xcd/0x280 [ 1419.649856] dup_fd+0x71a/0xc50 [ 1419.650563] unshare_files+0x16c/0x260 [ 1419.651410] ? __ia32_sys_unshare+0x40/0x40 [ 1419.652308] ? rcu_read_lock_sched_held+0x3a/0x70 [ 1419.653335] ? trace_rss_stat+0x174/0x210 [ 1419.654229] bprm_execve+0x123/0x1b00 [ 1419.655031] ? get_arg_page+0x153/0x200 [ 1419.655892] ? acct_arg_size+0xe0/0xe0 [ 1419.656701] ? open_exec+0x70/0x70 [ 1419.657465] ? memcpy+0x39/0x60 [ 1419.658145] ? copy_strings.isra.0+0x492/0x690 [ 1419.659151] ? copy_string_kernel+0x3ad/0x440 [ 1419.660083] do_execveat_common.isra.0+0x524/0x670 [ 1419.661165] __x64_sys_execveat+0xe7/0x130 [ 1419.662055] do_syscall_64+0x33/0x40 [ 1419.662880] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 1419.664005] RIP: 0033:0x466609 [ 1419.664678] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1419.668605] RSP: 002b:00007feb29e67188 EFLAGS: 00000246 ORIG_RAX: 0000000000000142 [ 1419.670193] RAX: ffffffffffffffda RBX: 000000000056bf80 RCX: 0000000000466609 [ 1419.671704] RDX: 0000000000000000 RSI: 00000000200002c0 RDI: ffffffffffffffff [ 1419.673184] RBP: 00007feb29e671d0 R08: 0000000000000000 R09: 0000000000000000 [ 1419.674651] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 1419.676149] R13: 00007ffde08160ef R14: 00007feb29e67300 R15: 0000000000022000 [ 1419.728178] FAULT_INJECTION: forcing a failure. [ 1419.728178] name failslab, interval 1, probability 0, space 0, times 0 [ 1419.731122] CPU: 0 PID: 11141 Comm: syz-executor.0 Not tainted 5.10.60 #1 [ 1419.732760] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS rel-1.14.0-0-g155821a1990b-prebuilt.qemu.org 04/01/2014 [ 1419.735262] Call Trace: [ 1419.735841] dump_stack+0x107/0x163 [ 1419.736665] should_fail.cold+0x5/0xa [ 1419.737511] ? dup_fd+0x89/0xc50 [ 1419.738266] should_failslab+0x5/0x10 [ 1419.739115] kmem_cache_alloc+0x5b/0x350 [ 1419.740004] ? io_wake_function+0x2e0/0x2e0 [ 1419.740980] dup_fd+0x89/0xc50 [ 1419.741707] ? __io_uring_task_cancel+0x1d1/0x250 [ 1419.742792] unshare_files+0x16c/0x260 [ 1419.743648] ? __ia32_sys_unshare+0x40/0x40 [ 1419.744626] ? rcu_read_lock_sched_held+0x3a/0x70 [ 1419.745677] ? trace_rss_stat+0x174/0x210 [ 1419.746602] bprm_execve+0x123/0x1b00 [ 1419.747463] ? get_arg_page+0x153/0x200 [ 1419.748359] ? acct_arg_size+0xe0/0xe0 [ 1419.749223] ? open_exec+0x70/0x70 [ 1419.750005] ? memcpy+0x39/0x60 [ 1419.750727] ? copy_strings.isra.0+0x492/0x690 [ 1419.751744] ? copy_string_kernel+0x3ad/0x440 [ 1419.752759] do_execveat_common.isra.0+0x524/0x670 [ 1419.753862] __x64_sys_execveat+0xe7/0x130 [ 1419.754829] do_syscall_64+0x33/0x40 [ 1419.755667] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 1419.756798] RIP: 0033:0x466609 [ 1419.757510] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1419.761767] RSP: 002b:00007f4e87c42188 EFLAGS: 00000246 ORIG_RAX: 0000000000000142 [ 1419.763923] RAX: ffffffffffffffda RBX: 000000000056bf80 RCX: 0000000000466609 [ 1419.765842] RDX: 0000000020000380 RSI: 00000000200002c0 RDI: ffffffffffffffff [ 1419.767422] RBP: 00007f4e87c421d0 R08: 0000000000001000 R09: 0000000000000000 [ 1419.768972] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 1419.770548] R13: 00007ffc014a64bf R14: 00007f4e87c42300 R15: 0000000000022000 12:25:02 executing program 2: r0 = syz_init_net_socket$802154_dgram(0x24, 0x2, 0x0) r1 = dup(r0) sendmsg$BATADV_CMD_GET_BLA_BACKBONE(r1, &(0x7f0000000540)={&(0x7f0000000100), 0xc, &(0x7f0000000500)={0x0}}, 0x0) ioctl$sock_SIOCINQ(r1, 0x541b, &(0x7f0000000000)) ioctl$sock_ipv6_tunnel_SIOCCHGPRL(r1, 0x89f7, &(0x7f00000000c0)={'syztnl0\x00', &(0x7f0000000040)={'syztnl2\x00', 0x0, 0x29, 0x5, 0x80, 0x3, 0x2c, @mcast1, @mcast2, 0x7, 0x40, 0x80000001, 0x2}}) 12:25:02 executing program 0 (fault-call:6 fault-nth:25): r0 = syz_io_uring_setup(0x4d4f, &(0x7f0000000080), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=0x0, &(0x7f0000000140)=0x0) syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_POLL_ADD={0x6, 0x0, 0x0, @fd=r0, 0x0, 0x0, 0x0, {0x194}}, 0x0) r3 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0) perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_io_uring_submit(r3, r2, &(0x7f0000000100)=@IORING_OP_SPLICE, 0x4) io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0) execveat(0xffffffffffffffff, &(0x7f00000002c0)='./file0\x00', &(0x7f0000000380), 0x0, 0x1000) 12:25:02 executing program 6: syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000040)='./file0\x00', 0x40000, 0x2, &(0x7f0000000200)=[{&(0x7f0000010400)="020000000300000004", 0x9, 0x800}, {&(0x7f0000011600)="ed41000000080000dff4655fe0f4655fe0f4655f000000000000040004", 0x1d, 0x2100}], 0x0, &(0x7f0000000080)=ANY=[]) syz_mount_image$ext4(&(0x7f0000000000)='ext2\x00', &(0x7f0000000040)='./file0/../file0\x00', 0x0, 0x0, 0x0, 0x104e034, &(0x7f00000001c0)={[{@data_err_abort}]}) 12:25:02 executing program 5 (fault-call:6 fault-nth:30): r0 = syz_io_uring_setup(0x4d4f, &(0x7f0000000080), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=0x0, &(0x7f0000000140)=0x0) syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_POLL_ADD={0x6, 0x0, 0x0, @fd=r0, 0x0, 0x0, 0x0, {0x194}}, 0x0) r3 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0) perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_io_uring_submit(r3, r2, &(0x7f0000000100)=@IORING_OP_SPLICE, 0x4) io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0) execveat(0xffffffffffffffff, &(0x7f00000002c0)='./file0\x00', 0x0, 0x0, 0x0) 12:25:02 executing program 7: syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000040)='./file0\x00', 0x40000, 0x3, &(0x7f0000000200)=[{&(0x7f0000010000)="2000000080000000060000006a0000000f000000000000000100000001000000004000000040000020000000e0f4655fe0f4655f0100ffff53ef010001000000dff4655f000000000000000001000000000000000b0000000001", 0x5a, 0x400}, {&(0x7f0000010400)="020000000300000004", 0x9, 0x800}, {&(0x7f0000011600)="ed41000000080000dff4655fe0f4655fe0f4655f000000000000040004", 0x1d, 0x2100}], 0x0, &(0x7f0000000080)=ANY=[]) syz_mount_image$ext4(&(0x7f0000000000)='ext2\x00', &(0x7f0000000040)='./file0/../file0\x00', 0x0, 0x0, 0x0, 0x0, &(0x7f00000001c0)={[{@data_err_abort}]}) 12:25:02 executing program 3 (fault-call:5 fault-nth:16): r0 = syz_io_uring_setup(0x4d4f, &(0x7f0000000080), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200), &(0x7f0000000140)=0x0) r2 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0) perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_io_uring_submit(r2, r1, &(0x7f0000000100)=@IORING_OP_SPLICE, 0x4) io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0) execveat(0xffffffffffffffff, &(0x7f00000002c0)='./file0\x00', 0x0, 0x0, 0x0) 12:25:02 executing program 1: r0 = syz_io_uring_setup(0x4d4f, &(0x7f0000000080), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=0x0, &(0x7f0000000140)=0x0) syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_POLL_ADD={0x6, 0x0, 0x0, @fd=r0, 0x0, 0x0, 0x0, {0x194}}, 0x0) r3 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0) perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_io_uring_submit(r3, r2, &(0x7f0000000100)=@IORING_OP_SPLICE, 0x4) io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0) execveat(0xffffffffffffffff, &(0x7f00000002c0)='./file0\x00', &(0x7f0000000380), &(0x7f0000000640)=[&(0x7f00000003c0)='\x00', &(0x7f0000000440)='+)>{)U\x00', &(0x7f0000000480)='{@#@\x00', &(0x7f00000004c0)='\x00'], 0x1000) 12:25:02 executing program 4: r0 = syz_io_uring_setup(0x4d4f, &(0x7f0000000080), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=0x0, &(0x7f0000000140)=0x0) syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_POLL_ADD={0x6, 0x0, 0x0, @fd=r0, 0x0, 0x0, 0x0, {0x194}}, 0x0) r3 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0) perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_io_uring_submit(r3, r2, &(0x7f0000000100)=@IORING_OP_SPLICE, 0x4) io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0) execveat(0xffffffffffffffff, &(0x7f00000002c0)='./file0\x00', &(0x7f0000000380), &(0x7f0000000640)=[&(0x7f00000003c0)='\x00', &(0x7f0000000440)='+)>{)U\x00', &(0x7f0000000480)='{@#@\x00', &(0x7f00000004c0)='\x00'], 0x1000) [ 1431.898791] FAULT_INJECTION: forcing a failure. [ 1431.898791] name failslab, interval 1, probability 0, space 0, times 0 [ 1431.902304] CPU: 1 PID: 11157 Comm: syz-executor.0 Not tainted 5.10.60 #1 [ 1431.904279] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS rel-1.14.0-0-g155821a1990b-prebuilt.qemu.org 04/01/2014 [ 1431.907493] Call Trace: [ 1431.908272] dump_stack+0x107/0x163 [ 1431.909362] should_fail.cold+0x5/0xa [ 1431.910500] ? create_object.isra.0+0x3a/0xa10 [ 1431.911870] should_failslab+0x5/0x10 [ 1431.912998] kmem_cache_alloc+0x5b/0x350 [ 1431.914226] create_object.isra.0+0x3a/0xa10 [ 1431.915561] ? __kasan_kmalloc.constprop.0+0xc2/0xd0 [ 1431.917066] kmem_cache_alloc+0x15b/0x350 [ 1431.918310] dup_fd+0x89/0xc50 [ 1431.919285] ? __io_uring_task_cancel+0x1d1/0x250 [ 1431.920703] unshare_files+0x16c/0x260 [ 1431.921797] ? __ia32_sys_unshare+0x40/0x40 [ 1431.923056] ? rcu_read_lock_sched_held+0x3a/0x70 [ 1431.924405] ? trace_rss_stat+0x174/0x210 [ 1431.925580] bprm_execve+0x123/0x1b00 [ 1431.926681] ? get_arg_page+0x153/0x200 [ 1431.927998] ? acct_arg_size+0xe0/0xe0 [ 1431.929219] ? open_exec+0x70/0x70 [ 1431.930288] ? memcpy+0x39/0x60 [ 1431.931329] ? copy_strings.isra.0+0x492/0x690 [ 1431.932734] ? copy_string_kernel+0x3ad/0x440 [ 1431.934172] do_execveat_common.isra.0+0x524/0x670 [ 1431.935743] __x64_sys_execveat+0xe7/0x130 [ 1431.937076] do_syscall_64+0x33/0x40 [ 1431.938176] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 1431.939738] RIP: 0033:0x466609 [ 1431.940804] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1431.946120] RSP: 002b:00007f4e87c42188 EFLAGS: 00000246 ORIG_RAX: 0000000000000142 [ 1431.948399] RAX: ffffffffffffffda RBX: 000000000056bf80 RCX: 0000000000466609 [ 1431.950508] RDX: 0000000020000380 RSI: 00000000200002c0 RDI: ffffffffffffffff [ 1431.952639] RBP: 00007f4e87c421d0 R08: 0000000000001000 R09: 0000000000000000 [ 1431.954586] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 1431.956501] R13: 00007ffc014a64bf R14: 00007f4e87c42300 R15: 0000000000022000 12:25:02 executing program 1: r0 = syz_io_uring_setup(0x4d4f, &(0x7f0000000080), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=0x0, &(0x7f0000000140)=0x0) syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_POLL_ADD={0x6, 0x0, 0x0, @fd=r0, 0x0, 0x0, 0x0, {0x194}}, 0x0) r3 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0) perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_io_uring_submit(r3, r2, &(0x7f0000000100)=@IORING_OP_SPLICE, 0x4) io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0) execveat(0xffffffffffffffff, &(0x7f00000002c0)='./file0\x00', &(0x7f0000000380), &(0x7f0000000640)=[&(0x7f00000003c0)='\x00', &(0x7f0000000440)='+)>{)U\x00', &(0x7f0000000480)='{@#@\x00'], 0x1000) [ 1432.002003] FAULT_INJECTION: forcing a failure. [ 1432.002003] name fail_page_alloc, interval 1, probability 0, space 0, times 0 [ 1432.005440] CPU: 0 PID: 11175 Comm: syz-executor.3 Not tainted 5.10.60 #1 [ 1432.007265] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS rel-1.14.0-0-g155821a1990b-prebuilt.qemu.org 04/01/2014 [ 1432.010257] Call Trace: [ 1432.011007] dump_stack+0x107/0x163 [ 1432.012006] should_fail.cold+0x5/0xa [ 1432.013071] __alloc_pages_nodemask+0x17f/0x670 [ 1432.014342] ? __alloc_pages_slowpath.constprop.0+0x2090/0x2090 [ 1432.015994] ? __pmd_alloc+0x2e6/0x5e0 [ 1432.017041] ? lock_downgrade+0x6d0/0x6d0 [ 1432.018173] ? do_raw_spin_lock+0x129/0x270 [ 1432.019375] alloc_pages_current+0x187/0x280 [ 1432.020590] pte_alloc_one+0x16/0x190 [ 1432.021633] __pte_alloc+0x1d/0x320 [ 1432.022632] handle_mm_fault+0x290c/0x3570 [ 1432.023814] ? hlock_class+0x120/0x120 [ 1432.024878] ? __pmd_alloc+0x5e0/0x5e0 [ 1432.025992] __get_user_pages+0x61d/0x1400 [ 1432.027171] ? follow_page_mask+0x1820/0x1820 [ 1432.028376] ? __lockdep_reset_lock+0x180/0x180 [ 1432.029242] FAULT_INJECTION: forcing a failure. [ 1432.029242] name failslab, interval 1, probability 0, space 0, times 0 [ 1432.029617] ? avc_has_perm_noaudit+0x1f8/0x3a0 [ 1432.029676] ? find_held_lock+0x2c/0x110 [ 1432.029722] __get_user_pages_remote+0x1d1/0x860 [ 1432.036208] get_user_pages_remote+0x63/0x90 [ 1432.037419] get_arg_page+0xba/0x200 [ 1432.038425] ? acct_arg_size+0xe0/0xe0 [ 1432.039509] ? insert_vm_struct+0x1f7/0x340 [ 1432.040685] copy_string_kernel+0x1b0/0x440 [ 1432.041878] do_execveat_common.isra.0+0x405/0x670 [ 1432.043254] __x64_sys_execveat+0xe7/0x130 [ 1432.044417] do_syscall_64+0x33/0x40 [ 1432.045421] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 1432.046777] RIP: 0033:0x466609 [ 1432.047656] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1432.052569] RSP: 002b:00007f7f3158e188 EFLAGS: 00000246 ORIG_RAX: 0000000000000142 [ 1432.054606] RAX: ffffffffffffffda RBX: 000000000056c038 RCX: 0000000000466609 [ 1432.056525] RDX: 0000000000000000 RSI: 00000000200002c0 RDI: ffffffffffffffff [ 1432.058431] RBP: 00007f7f3158e1d0 R08: 0000000000000000 R09: 0000000000000000 [ 1432.060363] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 1432.062270] R13: 00007ffe8cd6fa4f R14: 00007f7f3158e300 R15: 0000000000022000 [ 1432.064398] CPU: 1 PID: 11182 Comm: syz-executor.5 Not tainted 5.10.60 #1 [ 1432.066172] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS rel-1.14.0-0-g155821a1990b-prebuilt.qemu.org 04/01/2014 [ 1432.069189] Call Trace: [ 1432.069788] dump_stack+0x107/0x163 [ 1432.070611] should_fail.cold+0x5/0xa [ 1432.071523] ? kvmalloc_node+0x61/0xf0 [ 1432.072404] should_failslab+0x5/0x10 [ 1432.073252] __kmalloc_node+0x76/0x4a0 [ 1432.074130] ? __kasan_kmalloc.constprop.0+0xc2/0xd0 [ 1432.075300] kvmalloc_node+0x61/0xf0 [ 1432.076116] alloc_fdtable+0x138/0x280 [ 1432.076954] dup_fd+0x71a/0xc50 [ 1432.077691] unshare_files+0x16c/0x260 [ 1432.078538] ? __ia32_sys_unshare+0x40/0x40 [ 1432.079502] ? rcu_read_lock_sched_held+0x3a/0x70 [ 1432.080538] ? trace_rss_stat+0x174/0x210 [ 1432.081437] bprm_execve+0x123/0x1b00 [ 1432.082250] ? get_arg_page+0x153/0x200 [ 1432.083136] ? acct_arg_size+0xe0/0xe0 [ 1432.083987] ? open_exec+0x70/0x70 [ 1432.084752] ? memcpy+0x39/0x60 [ 1432.085456] ? copy_strings.isra.0+0x492/0x690 [ 1432.086444] ? copy_string_kernel+0x3ad/0x440 [ 1432.087443] do_execveat_common.isra.0+0x524/0x670 [ 1432.088519] __x64_sys_execveat+0xe7/0x130 [ 1432.089437] do_syscall_64+0x33/0x40 [ 1432.090240] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 1432.091362] RIP: 0033:0x466609 [ 1432.092057] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1432.096056] RSP: 002b:00007feb29e25188 EFLAGS: 00000246 ORIG_RAX: 0000000000000142 [ 1432.097706] RAX: ffffffffffffffda RBX: 000000000056c0f0 RCX: 0000000000466609 [ 1432.099271] RDX: 0000000000000000 RSI: 00000000200002c0 RDI: ffffffffffffffff [ 1432.100815] RBP: 00007feb29e251d0 R08: 0000000000000000 R09: 0000000000000000 [ 1432.102362] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 1432.103935] R13: 00007ffde08160ef R14: 00007feb29e25300 R15: 0000000000022000 [ 1432.179765] EXT4-fs (loop7): mounted filesystem without journal. Opts: ,errors=continue 12:25:02 executing program 4: r0 = syz_io_uring_setup(0x4d4f, &(0x7f0000000080), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=0x0, &(0x7f0000000140)=0x0) syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_POLL_ADD={0x6, 0x0, 0x0, @fd=r0, 0x0, 0x0, 0x0, {0x194}}, 0x0) r3 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0) perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_io_uring_submit(r3, r2, &(0x7f0000000100)=@IORING_OP_SPLICE, 0x4) io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0) execveat(0xffffffffffffffff, &(0x7f00000002c0)='./file0\x00', &(0x7f0000000380), &(0x7f0000000640)=[&(0x7f00000003c0)='\x00', &(0x7f0000000440)='+)>{)U\x00', &(0x7f0000000480)='{@#@\x00', &(0x7f00000004c0)='\x00'], 0x1000) 12:25:02 executing program 6: syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000040)='./file0\x00', 0x40000, 0x2, &(0x7f0000000200)=[{&(0x7f0000010400)="020000000300000004", 0x9, 0x800}, {&(0x7f0000011600)="ed41000000080000dff4655fe0f4655fe0f4655f000000000000040004", 0x1d, 0x2100}], 0x0, &(0x7f0000000080)=ANY=[]) syz_mount_image$ext4(&(0x7f0000000000)='ext2\x00', &(0x7f0000000040)='./file0/../file0\x00', 0x0, 0x0, 0x0, 0x104e034, &(0x7f00000001c0)={[{@data_err_abort}]}) 12:25:02 executing program 0 (fault-call:6 fault-nth:26): r0 = syz_io_uring_setup(0x4d4f, &(0x7f0000000080), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=0x0, &(0x7f0000000140)=0x0) syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_POLL_ADD={0x6, 0x0, 0x0, @fd=r0, 0x0, 0x0, 0x0, {0x194}}, 0x0) r3 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0) perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_io_uring_submit(r3, r2, &(0x7f0000000100)=@IORING_OP_SPLICE, 0x4) io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0) execveat(0xffffffffffffffff, &(0x7f00000002c0)='./file0\x00', &(0x7f0000000380), 0x0, 0x1000) 12:25:02 executing program 7: syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000040)='./file0\x00', 0x40000, 0x3, &(0x7f0000000200)=[{&(0x7f0000010000)="2000000080000000060000006a0000000f000000000000000100000001000000004000000040000020000000e0f4655fe0f4655f0100ffff53ef010001000000dff4655f000000000000000001000000000000000b0000000001", 0x5a, 0x400}, {&(0x7f0000010400)="020000000300000004", 0x9, 0x800}, {&(0x7f0000011600)="ed41000000080000dff4655fe0f4655fe0f4655f000000000000040004", 0x1d, 0x2100}], 0x0, &(0x7f0000000080)=ANY=[]) syz_mount_image$ext4(&(0x7f0000000000)='ext2\x00', &(0x7f0000000040)='./file0/../file0\x00', 0x0, 0x0, 0x0, 0x0, &(0x7f00000001c0)={[{@data_err_abort}]}) 12:25:02 executing program 3 (fault-call:5 fault-nth:17): r0 = syz_io_uring_setup(0x4d4f, &(0x7f0000000080), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200), &(0x7f0000000140)=0x0) r2 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0) perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_io_uring_submit(r2, r1, &(0x7f0000000100)=@IORING_OP_SPLICE, 0x4) io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0) execveat(0xffffffffffffffff, &(0x7f00000002c0)='./file0\x00', 0x0, 0x0, 0x0) 12:25:02 executing program 1: r0 = syz_io_uring_setup(0x4d4f, &(0x7f0000000080), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=0x0, &(0x7f0000000140)=0x0) syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_POLL_ADD={0x6, 0x0, 0x0, @fd=r0, 0x0, 0x0, 0x0, {0x194}}, 0x0) r3 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0) perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_io_uring_submit(r3, r2, &(0x7f0000000100)=@IORING_OP_SPLICE, 0x4) io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0) execveat(0xffffffffffffffff, &(0x7f00000002c0)='./file0\x00', &(0x7f0000000380), &(0x7f0000000640)=[&(0x7f00000003c0)='\x00', &(0x7f0000000440)='+)>{)U\x00', &(0x7f0000000480)='{@#@\x00'], 0x1000) 12:25:02 executing program 5 (fault-call:6 fault-nth:31): r0 = syz_io_uring_setup(0x4d4f, &(0x7f0000000080), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=0x0, &(0x7f0000000140)=0x0) syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_POLL_ADD={0x6, 0x0, 0x0, @fd=r0, 0x0, 0x0, 0x0, {0x194}}, 0x0) r3 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0) perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_io_uring_submit(r3, r2, &(0x7f0000000100)=@IORING_OP_SPLICE, 0x4) io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0) execveat(0xffffffffffffffff, &(0x7f00000002c0)='./file0\x00', 0x0, 0x0, 0x0) [ 1432.391691] FAULT_INJECTION: forcing a failure. [ 1432.391691] name failslab, interval 1, probability 0, space 0, times 0 [ 1432.393203] CPU: 0 PID: 11206 Comm: syz-executor.0 Not tainted 5.10.60 #1 [ 1432.394044] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS rel-1.14.0-0-g155821a1990b-prebuilt.qemu.org 04/01/2014 [ 1432.395322] Call Trace: [ 1432.395644] dump_stack+0x107/0x163 [ 1432.396075] should_fail.cold+0x5/0xa [ 1432.396536] ? alloc_fdtable+0x7e/0x280 [ 1432.397012] should_failslab+0x5/0x10 [ 1432.397465] kmem_cache_alloc_trace+0x55/0x350 [ 1432.397999] ? rwlock_bug.part.0+0x90/0x90 [ 1432.398477] alloc_fdtable+0x7e/0x280 [ 1432.398929] dup_fd+0x71a/0xc50 [ 1432.399315] unshare_files+0x16c/0x260 [ 1432.399774] ? __ia32_sys_unshare+0x40/0x40 [ 1432.400261] ? rcu_read_lock_sched_held+0x3a/0x70 [ 1432.400820] ? trace_rss_stat+0x174/0x210 [ 1432.401282] bprm_execve+0x123/0x1b00 [ 1432.401717] ? get_arg_page+0x153/0x200 [ 1432.402176] ? acct_arg_size+0xe0/0xe0 [ 1432.402633] ? open_exec+0x70/0x70 [ 1432.403039] ? memcpy+0x39/0x60 [ 1432.403425] ? copy_strings.isra.0+0x492/0x690 [ 1432.403920] ? copy_string_kernel+0x3ad/0x440 [ 1432.404445] do_execveat_common.isra.0+0x524/0x670 [ 1432.405008] __x64_sys_execveat+0xe7/0x130 [ 1432.405504] do_syscall_64+0x33/0x40 [ 1432.405928] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 1432.406525] RIP: 0033:0x466609 [ 1432.406910] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1432.409044] RSP: 002b:00007f4e87c42188 EFLAGS: 00000246 ORIG_RAX: 0000000000000142 [ 1432.409914] RAX: ffffffffffffffda RBX: 000000000056bf80 RCX: 0000000000466609 [ 1432.410747] RDX: 0000000020000380 RSI: 00000000200002c0 RDI: ffffffffffffffff [ 1432.411580] RBP: 00007f4e87c421d0 R08: 0000000000001000 R09: 0000000000000000 [ 1432.412424] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 1432.413249] R13: 00007ffc014a64bf R14: 00007f4e87c42300 R15: 0000000000022000 [ 1432.425277] EXT4-fs (loop6): VFS: Can't find ext4 filesystem [ 1432.582264] EXT4-fs (loop7): mounted filesystem without journal. Opts: ,errors=continue [ 1432.658971] FAULT_INJECTION: forcing a failure. [ 1432.658971] name failslab, interval 1, probability 0, space 0, times 0 [ 1432.660358] CPU: 0 PID: 11219 Comm: syz-executor.3 Not tainted 5.10.60 #1 [ 1432.661150] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS rel-1.14.0-0-g155821a1990b-prebuilt.qemu.org 04/01/2014 [ 1432.662480] Call Trace: [ 1432.662788] dump_stack+0x107/0x163 [ 1432.663245] should_fail.cold+0x5/0xa [ 1432.663793] ? ptlock_alloc+0x1d/0x70 [ 1432.664409] should_failslab+0x5/0x10 [ 1432.665007] kmem_cache_alloc+0x5b/0x350 [ 1432.665662] ptlock_alloc+0x1d/0x70 [ 1432.666249] pte_alloc_one+0x68/0x190 [ 1432.666849] __pte_alloc+0x1d/0x320 [ 1432.667455] handle_mm_fault+0x290c/0x3570 [ 1432.668126] ? hlock_class+0x120/0x120 [ 1432.668751] ? __pmd_alloc+0x5e0/0x5e0 [ 1432.669416] __get_user_pages+0x61d/0x1400 [ 1432.670096] ? follow_page_mask+0x1820/0x1820 [ 1432.670834] ? __lockdep_reset_lock+0x180/0x180 [ 1432.671634] ? avc_has_perm_noaudit+0x1f8/0x3a0 [ 1432.672427] ? find_held_lock+0x2c/0x110 [ 1432.673071] __get_user_pages_remote+0x1d1/0x860 [ 1432.673896] get_user_pages_remote+0x63/0x90 [ 1432.674631] get_arg_page+0xba/0x200 [ 1432.675252] ? acct_arg_size+0xe0/0xe0 [ 1432.675762] ? insert_vm_struct+0x1f7/0x340 [ 1432.676265] copy_string_kernel+0x1b0/0x440 [ 1432.676766] do_execveat_common.isra.0+0x405/0x670 [ 1432.677351] __x64_sys_execveat+0xe7/0x130 [ 1432.677839] do_syscall_64+0x33/0x40 [ 1432.678276] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 1432.678861] RIP: 0033:0x466609 [ 1432.679255] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1432.681376] RSP: 002b:00007f7f315af188 EFLAGS: 00000246 ORIG_RAX: 0000000000000142 [ 1432.682254] RAX: ffffffffffffffda RBX: 000000000056bf80 RCX: 0000000000466609 [ 1432.683079] RDX: 0000000000000000 RSI: 00000000200002c0 RDI: ffffffffffffffff [ 1432.683905] RBP: 00007f7f315af1d0 R08: 0000000000000000 R09: 0000000000000000 [ 1432.684715] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 1432.685533] R13: 00007ffe8cd6fa4f R14: 00007f7f315af300 R15: 0000000000022000 [ 1432.700348] FAULT_INJECTION: forcing a failure. [ 1432.700348] name failslab, interval 1, probability 0, space 0, times 0 [ 1432.703221] CPU: 1 PID: 11224 Comm: syz-executor.5 Not tainted 5.10.60 #1 [ 1432.704996] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS rel-1.14.0-0-g155821a1990b-prebuilt.qemu.org 04/01/2014 [ 1432.707875] Call Trace: [ 1432.708444] dump_stack+0x107/0x163 [ 1432.709232] should_fail.cold+0x5/0xa [ 1432.709894] ? create_object.isra.0+0x3a/0xa10 [ 1432.710645] should_failslab+0x5/0x10 [ 1432.711285] kmem_cache_alloc+0x5b/0x350 [ 1432.711994] create_object.isra.0+0x3a/0xa10 [ 1432.712698] ? __kasan_kmalloc.constprop.0+0xc2/0xd0 [ 1432.713460] __kmalloc_node+0x1b0/0x4a0 [ 1432.714166] kvmalloc_node+0x61/0xf0 [ 1432.714741] alloc_fdtable+0x138/0x280 [ 1432.715337] dup_fd+0x71a/0xc50 [ 1432.715947] unshare_files+0x16c/0x260 [ 1432.716627] ? __ia32_sys_unshare+0x40/0x40 [ 1432.717333] ? rcu_read_lock_sched_held+0x3a/0x70 [ 1432.718061] ? trace_rss_stat+0x174/0x210 [ 1432.718719] bprm_execve+0x123/0x1b00 [ 1432.719308] ? get_arg_page+0x153/0x200 [ 1432.719889] ? acct_arg_size+0xe0/0xe0 [ 1432.720530] ? open_exec+0x70/0x70 [ 1432.720941] ? memcpy+0x39/0x60 [ 1432.721525] ? copy_strings.isra.0+0x492/0x690 [ 1432.723052] ? copy_string_kernel+0x3ad/0x440 [ 1432.724501] do_execveat_common.isra.0+0x524/0x670 [ 1432.726073] __x64_sys_execveat+0xe7/0x130 [ 1432.727502] do_syscall_64+0x33/0x40 [ 1432.728571] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 1432.730022] RIP: 0033:0x466609 [ 1432.730950] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1432.736191] RSP: 002b:00007feb29e67188 EFLAGS: 00000246 ORIG_RAX: 0000000000000142 [ 1432.738351] RAX: ffffffffffffffda RBX: 000000000056bf80 RCX: 0000000000466609 [ 1432.740379] RDX: 0000000000000000 RSI: 00000000200002c0 RDI: ffffffffffffffff [ 1432.742377] RBP: 00007feb29e671d0 R08: 0000000000000000 R09: 0000000000000000 [ 1432.744439] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 1432.746470] R13: 00007ffde08160ef R14: 00007feb29e67300 R15: 0000000000022000 12:25:14 executing program 5 (fault-call:6 fault-nth:32): r0 = syz_io_uring_setup(0x4d4f, &(0x7f0000000080), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=0x0, &(0x7f0000000140)=0x0) syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_POLL_ADD={0x6, 0x0, 0x0, @fd=r0, 0x0, 0x0, 0x0, {0x194}}, 0x0) r3 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0) perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_io_uring_submit(r3, r2, &(0x7f0000000100)=@IORING_OP_SPLICE, 0x4) io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0) execveat(0xffffffffffffffff, &(0x7f00000002c0)='./file0\x00', 0x0, 0x0, 0x0) 12:25:14 executing program 0 (fault-call:6 fault-nth:27): r0 = syz_io_uring_setup(0x4d4f, &(0x7f0000000080), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=0x0, &(0x7f0000000140)=0x0) syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_POLL_ADD={0x6, 0x0, 0x0, @fd=r0, 0x0, 0x0, 0x0, {0x194}}, 0x0) r3 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0) perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_io_uring_submit(r3, r2, &(0x7f0000000100)=@IORING_OP_SPLICE, 0x4) io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0) execveat(0xffffffffffffffff, &(0x7f00000002c0)='./file0\x00', &(0x7f0000000380), 0x0, 0x1000) 12:25:14 executing program 4: r0 = syz_io_uring_setup(0x4d4f, &(0x7f0000000080), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200), &(0x7f0000000140)=0x0) r2 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0) perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_io_uring_submit(r2, r1, &(0x7f0000000100)=@IORING_OP_SPLICE, 0x4) io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0) execveat(0xffffffffffffffff, &(0x7f00000002c0)='./file0\x00', 0x0, 0x0, 0x1000) 12:25:14 executing program 3 (fault-call:5 fault-nth:18): r0 = syz_io_uring_setup(0x4d4f, &(0x7f0000000080), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200), &(0x7f0000000140)=0x0) r2 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0) perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_io_uring_submit(r2, r1, &(0x7f0000000100)=@IORING_OP_SPLICE, 0x4) io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0) execveat(0xffffffffffffffff, &(0x7f00000002c0)='./file0\x00', 0x0, 0x0, 0x0) 12:25:14 executing program 6: syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000040)='./file0\x00', 0x40000, 0x2, &(0x7f0000000200)=[{&(0x7f0000010400)="020000000300000004", 0x9, 0x800}, {&(0x7f0000011600)="ed41000000080000dff4655fe0f4655fe0f4655f000000000000040004", 0x1d, 0x2100}], 0x0, &(0x7f0000000080)=ANY=[]) syz_mount_image$ext4(&(0x7f0000000000)='ext2\x00', &(0x7f0000000040)='./file0/../file0\x00', 0x0, 0x0, 0x0, 0x104e034, &(0x7f00000001c0)={[{@data_err_abort}]}) 12:25:14 executing program 2: r0 = syz_init_net_socket$802154_dgram(0x24, 0x2, 0x0) r1 = accept4(r0, &(0x7f0000000280)=@qipcrtr, &(0x7f0000000200)=0x80, 0x800) ioctl$sock_SIOCSIFVLAN_SET_VLAN_FLAG_CMD(r1, 0x8983, &(0x7f0000000300)={0x7, 'veth0_to_bridge\x00', {0x5}}) r2 = dup(r0) sendmsg$BATADV_CMD_GET_BLA_BACKBONE(r2, &(0x7f0000000540)={&(0x7f0000000100), 0xc, &(0x7f0000000500)={0x0}}, 0x0) ioctl$sock_SIOCINQ(r2, 0x541b, &(0x7f0000000000)) r3 = syz_init_net_socket$802154_dgram(0x24, 0x2, 0x0) r4 = dup(r3) r5 = openat$tun(0xffffffffffffff9c, &(0x7f0000000040), 0x0, 0x0) ioctl$TUNSETQUEUE(r5, 0x400454ca, &(0x7f00000000c0)={'ipvlan1\x00'}) ioctl$EXT4_IOC_GROUP_EXTEND(r5, 0x40086607, &(0x7f00000001c0)=0x6) ioctl$sock_SIOCINQ(r4, 0x541b, &(0x7f0000000000)) r6 = socket$netlink(0x10, 0x3, 0x0) sendmsg$nl_generic(r6, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000240)={&(0x7f0000000340)=ANY=[@ANYBLOB="28002eee00002c00010d000000000000e4ffffffff2dd1f91074fec3fd3f8dbbffffffffff"], 0x28}}, 0x0) sendmsg$TIPC_CMD_ENABLE_BEARER(r6, &(0x7f0000000180)={&(0x7f0000000080)={0x10, 0x0, 0x0, 0x8000000}, 0xc, &(0x7f0000000140)={&(0x7f0000000380)=ANY=[@ANYBLOB="21d07c693f0300811a9fff566178eb", @ANYRES16=0x0, @ANYBLOB="040028bd7000fddbdf25010000000000000001410000002000170000001e000000076574683a76657468315f766972745f7769666900"], 0x3c}}, 0x4000805) bind$802154_dgram(r4, &(0x7f0000000040)={0x24, @none={0x0, 0x2}}, 0x14) 12:25:14 executing program 7: syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000040)='./file0\x00', 0x40000, 0x3, &(0x7f0000000200)=[{&(0x7f0000010000)="2000000080000000060000006a0000000f000000000000000100000001000000004000000040000020000000e0f4655fe0f4655f0100ffff53ef010001000000dff4655f000000000000000001000000000000000b0000000001", 0x5a, 0x400}, {&(0x7f0000010400)="020000000300000004", 0x9, 0x800}, {&(0x7f0000011600)="ed41000000080000dff4655fe0f4655fe0f4655f000000000000040004", 0x1d, 0x2100}], 0x0, &(0x7f0000000080)=ANY=[]) syz_mount_image$ext4(&(0x7f0000000000)='ext2\x00', &(0x7f0000000040)='./file0/../file0\x00', 0x0, 0x0, 0x0, 0x104e034, 0x0) 12:25:14 executing program 1: r0 = syz_io_uring_setup(0x4d4f, &(0x7f0000000080), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=0x0, &(0x7f0000000140)=0x0) syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_POLL_ADD={0x6, 0x0, 0x0, @fd=r0, 0x0, 0x0, 0x0, {0x194}}, 0x0) r3 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0) perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_io_uring_submit(r3, r2, &(0x7f0000000100)=@IORING_OP_SPLICE, 0x4) io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0) execveat(0xffffffffffffffff, &(0x7f00000002c0)='./file0\x00', &(0x7f0000000380), &(0x7f0000000640)=[&(0x7f00000003c0)='\x00', &(0x7f0000000440)='+)>{)U\x00', &(0x7f0000000480)='{@#@\x00'], 0x1000) [ 1444.626490] EXT4-fs (loop6): VFS: Can't find ext4 filesystem [ 1444.664174] FAULT_INJECTION: forcing a failure. [ 1444.664174] name failslab, interval 1, probability 0, space 0, times 0 [ 1444.666706] CPU: 1 PID: 11245 Comm: syz-executor.3 Not tainted 5.10.60 #1 [ 1444.667742] Unsupported ieee802154 address type: 0 [ 1444.668194] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS rel-1.14.0-0-g155821a1990b-prebuilt.qemu.org 04/01/2014 [ 1444.668202] Call Trace: [ 1444.668228] dump_stack+0x107/0x163 [ 1444.668250] should_fail.cold+0x5/0xa [ 1444.668273] ? create_object.isra.0+0x3a/0xa10 [ 1444.668292] should_failslab+0x5/0x10 [ 1444.668322] kmem_cache_alloc+0x5b/0x350 [ 1444.668343] ? __alloc_pages_slowpath.constprop.0+0x2090/0x2090 [ 1444.678638] create_object.isra.0+0x3a/0xa10 [ 1444.679606] ? __kasan_kmalloc.constprop.0+0xc2/0xd0 [ 1444.680701] kmem_cache_alloc+0x15b/0x350 [ 1444.681602] ptlock_alloc+0x1d/0x70 [ 1444.682383] pte_alloc_one+0x68/0x190 [ 1444.683238] __pte_alloc+0x1d/0x320 [ 1444.684032] handle_mm_fault+0x290c/0x3570 [ 1444.684945] ? perf_trace_lock+0xb6/0x470 [ 1444.685834] ? hlock_class+0x120/0x120 [ 1444.686690] ? __pmd_alloc+0x5e0/0x5e0 [ 1444.687594] __get_user_pages+0x61d/0x1400 [ 1444.688507] ? follow_page_mask+0x1820/0x1820 [ 1444.689476] ? __lockdep_reset_lock+0x180/0x180 [ 1444.690473] ? avc_has_perm_noaudit+0x1f8/0x3a0 [ 1444.691559] ? find_held_lock+0x2c/0x110 [ 1444.692434] __get_user_pages_remote+0x1d1/0x860 [ 1444.693489] get_user_pages_remote+0x63/0x90 [ 1444.694437] get_arg_page+0xba/0x200 [ 1444.695299] ? acct_arg_size+0xe0/0xe0 [ 1444.696166] ? insert_vm_struct+0x1f7/0x340 [ 1444.697116] copy_string_kernel+0x1b0/0x440 [ 1444.698085] do_execveat_common.isra.0+0x405/0x670 [ 1444.699179] __x64_sys_execveat+0xe7/0x130 [ 1444.700150] do_syscall_64+0x33/0x40 [ 1444.700973] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 1444.702093] RIP: 0033:0x466609 [ 1444.702817] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1444.706778] RSP: 002b:00007f7f315af188 EFLAGS: 00000246 ORIG_RAX: 0000000000000142 [ 1444.708449] RAX: ffffffffffffffda RBX: 000000000056bf80 RCX: 0000000000466609 [ 1444.710010] RDX: 0000000000000000 RSI: 00000000200002c0 RDI: ffffffffffffffff [ 1444.711610] RBP: 00007f7f315af1d0 R08: 0000000000000000 R09: 0000000000000000 [ 1444.713177] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 1444.714750] R13: 00007ffe8cd6fa4f R14: 00007f7f315af300 R15: 0000000000022000 [ 1444.724360] FAULT_INJECTION: forcing a failure. [ 1444.724360] name failslab, interval 1, probability 0, space 0, times 0 [ 1444.727074] CPU: 1 PID: 11247 Comm: syz-executor.0 Not tainted 5.10.60 #1 [ 1444.728618] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS rel-1.14.0-0-g155821a1990b-prebuilt.qemu.org 04/01/2014 [ 1444.731379] Call Trace: [ 1444.731970] dump_stack+0x107/0x163 [ 1444.732774] should_fail.cold+0x5/0xa [ 1444.733624] ? create_object.isra.0+0x3a/0xa10 [ 1444.734636] should_failslab+0x5/0x10 [ 1444.735469] kmem_cache_alloc+0x5b/0x350 [ 1444.736368] create_object.isra.0+0x3a/0xa10 [ 1444.737329] ? __kasan_kmalloc.constprop.0+0xc2/0xd0 [ 1444.738460] kmem_cache_alloc_trace+0x153/0x350 [ 1444.739510] ? rwlock_bug.part.0+0x90/0x90 [ 1444.740448] alloc_fdtable+0x7e/0x280 [ 1444.741279] dup_fd+0x71a/0xc50 [ 1444.742008] unshare_files+0x16c/0x260 [ 1444.742873] ? __ia32_sys_unshare+0x40/0x40 [ 1444.743818] ? rcu_read_lock_sched_held+0x3a/0x70 [ 1444.744862] ? trace_rss_stat+0x174/0x210 [ 1444.745770] bprm_execve+0x123/0x1b00 [ 1444.746592] ? get_arg_page+0x153/0x200 [ 1444.747474] ? acct_arg_size+0xe0/0xe0 [ 1444.748323] ? open_exec+0x70/0x70 [ 1444.749095] ? memcpy+0x39/0x60 [ 1444.749801] ? copy_strings.isra.0+0x492/0x690 [ 1444.750806] ? copy_string_kernel+0x3ad/0x440 [ 1444.751805] do_execveat_common.isra.0+0x524/0x670 [ 1444.752889] __x64_sys_execveat+0xe7/0x130 [ 1444.753800] do_syscall_64+0x33/0x40 [ 1444.754630] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 1444.755737] RIP: 0033:0x466609 [ 1444.756439] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1444.760372] RSP: 002b:00007f4e87c42188 EFLAGS: 00000246 ORIG_RAX: 0000000000000142 [ 1444.762043] RAX: ffffffffffffffda RBX: 000000000056bf80 RCX: 0000000000466609 [ 1444.763640] RDX: 0000000020000380 RSI: 00000000200002c0 RDI: ffffffffffffffff [ 1444.765190] RBP: 00007f4e87c421d0 R08: 0000000000001000 R09: 0000000000000000 [ 1444.766769] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 1444.768337] R13: 00007ffc014a64bf R14: 00007f4e87c42300 R15: 0000000000022000 [ 1444.775860] FAULT_INJECTION: forcing a failure. [ 1444.775860] name failslab, interval 1, probability 0, space 0, times 0 [ 1444.778631] CPU: 1 PID: 11252 Comm: syz-executor.5 Not tainted 5.10.60 #1 [ 1444.780157] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS rel-1.14.0-0-g155821a1990b-prebuilt.qemu.org 04/01/2014 [ 1444.782649] Call Trace: [ 1444.783236] dump_stack+0x107/0x163 [ 1444.784044] should_fail.cold+0x5/0xa [ 1444.784884] ? prepare_creds+0x29/0x670 [ 1444.785763] should_failslab+0x5/0x10 [ 1444.786610] kmem_cache_alloc+0x5b/0x350 [ 1444.787514] prepare_creds+0x29/0x670 [ 1444.788360] prepare_exec_creds+0xd/0x250 [ 1444.789268] bprm_execve+0x1e3/0x1b00 [ 1444.790103] ? get_arg_page+0x153/0x200 [ 1444.790994] ? acct_arg_size+0xe0/0xe0 [ 1444.791880] ? open_exec+0x70/0x70 [ 1444.792662] ? memcpy+0x39/0x60 [ 1444.793375] ? copy_strings.isra.0+0x492/0x690 [ 1444.794382] ? copy_string_kernel+0x3ad/0x440 [ 1444.795374] do_execveat_common.isra.0+0x524/0x670 [ 1444.796461] __x64_sys_execveat+0xe7/0x130 [ 1444.797376] do_syscall_64+0x33/0x40 [ 1444.798194] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 1444.799328] RIP: 0033:0x466609 [ 1444.800047] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1444.803982] RSP: 002b:00007feb29e67188 EFLAGS: 00000246 ORIG_RAX: 0000000000000142 [ 1444.805657] RAX: ffffffffffffffda RBX: 000000000056bf80 RCX: 0000000000466609 [ 1444.807233] RDX: 0000000000000000 RSI: 00000000200002c0 RDI: ffffffffffffffff [ 1444.808802] RBP: 00007feb29e671d0 R08: 0000000000000000 R09: 0000000000000000 [ 1444.810352] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 1444.811913] R13: 00007ffde08160ef R14: 00007feb29e67300 R15: 0000000000022000 [ 1444.862689] EXT4-fs (loop7): mounted filesystem without journal. Opts: ,errors=continue 12:25:15 executing program 0 (fault-call:6 fault-nth:28): r0 = syz_io_uring_setup(0x4d4f, &(0x7f0000000080), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=0x0, &(0x7f0000000140)=0x0) syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_POLL_ADD={0x6, 0x0, 0x0, @fd=r0, 0x0, 0x0, 0x0, {0x194}}, 0x0) r3 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0) perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_io_uring_submit(r3, r2, &(0x7f0000000100)=@IORING_OP_SPLICE, 0x4) io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0) execveat(0xffffffffffffffff, &(0x7f00000002c0)='./file0\x00', &(0x7f0000000380), 0x0, 0x1000) 12:25:15 executing program 7: syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000040)='./file0\x00', 0x40000, 0x3, &(0x7f0000000200)=[{&(0x7f0000010000)="2000000080000000060000006a0000000f000000000000000100000001000000004000000040000020000000e0f4655fe0f4655f0100ffff53ef010001000000dff4655f000000000000000001000000000000000b0000000001", 0x5a, 0x400}, {&(0x7f0000010400)="020000000300000004", 0x9, 0x800}, {&(0x7f0000011600)="ed41000000080000dff4655fe0f4655fe0f4655f000000000000040004", 0x1d, 0x2100}], 0x0, &(0x7f0000000080)=ANY=[]) syz_mount_image$ext4(&(0x7f0000000000)='ext2\x00', &(0x7f0000000040)='./file0/../file0\x00', 0x0, 0x0, 0x0, 0x104e034, 0x0) 12:25:15 executing program 6: syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000040)='./file0\x00', 0x40000, 0x3, &(0x7f0000000200)=[{0x0, 0x0, 0x400}, {&(0x7f0000010400)="020000000300000004", 0x9, 0x800}, {&(0x7f0000011600)="ed41000000080000dff4655fe0f4655fe0f4655f000000000000040004", 0x1d, 0x2100}], 0x0, &(0x7f0000000080)=ANY=[]) syz_mount_image$ext4(&(0x7f0000000000)='ext2\x00', &(0x7f0000000040)='./file0/../file0\x00', 0x0, 0x0, 0x0, 0x104e034, &(0x7f00000001c0)={[{@data_err_abort}]}) 12:25:15 executing program 1: r0 = syz_io_uring_setup(0x4d4f, &(0x7f0000000080), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=0x0, &(0x7f0000000140)=0x0) syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_POLL_ADD={0x6, 0x0, 0x0, @fd=r0, 0x0, 0x0, 0x0, {0x194}}, 0x0) r3 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0) perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_io_uring_submit(r3, r2, &(0x7f0000000100)=@IORING_OP_SPLICE, 0x4) io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0) execveat(0xffffffffffffffff, &(0x7f00000002c0)='./file0\x00', &(0x7f0000000380), &(0x7f0000000640)=[&(0x7f00000003c0)='\x00', &(0x7f0000000440)='+)>{)U\x00', &(0x7f0000000480)='{@#@\x00', 0x0], 0x1000) 12:25:15 executing program 3 (fault-call:5 fault-nth:19): r0 = syz_io_uring_setup(0x4d4f, &(0x7f0000000080), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200), &(0x7f0000000140)=0x0) r2 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0) perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_io_uring_submit(r2, r1, &(0x7f0000000100)=@IORING_OP_SPLICE, 0x4) io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0) execveat(0xffffffffffffffff, &(0x7f00000002c0)='./file0\x00', 0x0, 0x0, 0x0) 12:25:15 executing program 4: r0 = syz_io_uring_setup(0x4d4f, &(0x7f0000000080), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=0x0, &(0x7f0000000140)=0x0) syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_POLL_ADD={0x6, 0x0, 0x0, @fd=r0, 0x0, 0x0, 0x0, {0x194}}, 0x0) r3 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0) perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_io_uring_submit(r3, r2, &(0x7f0000000100)=@IORING_OP_SPLICE, 0x4) io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0) execveat(0xffffffffffffffff, &(0x7f00000002c0)='./file0\x00', &(0x7f0000000380), &(0x7f0000000640)=[&(0x7f00000003c0)='\x00', &(0x7f0000000440)='+)>{)U\x00', &(0x7f0000000480)='{@#@\x00', &(0x7f00000004c0)='\x00', &(0x7f0000000500)='/dev/sg#\x00'], 0x1000) 12:25:15 executing program 2: r0 = syz_init_net_socket$802154_dgram(0x24, 0x2, 0x0) r1 = syz_init_net_socket$802154_dgram(0x24, 0x2, 0x0) r2 = dup(r1) bind$802154_dgram(r1, &(0x7f0000000040), 0x14) bind$802154_dgram(r0, &(0x7f0000000380)={0x24, @none={0x0, 0x1}}, 0x14) r3 = dup(r0) sendmsg$BATADV_CMD_GET_BLA_BACKBONE(r3, &(0x7f0000000540)={&(0x7f0000000100), 0xc, &(0x7f0000000500)={0x0}}, 0x0) r4 = pidfd_getfd(r2, r1, 0x0) bind$802154_dgram(r4, &(0x7f0000000340)={0x24, @none={0x0, 0xffff}}, 0x14) r5 = socket$netlink(0x10, 0x3, 0x0) r6 = syz_init_net_socket$802154_dgram(0x24, 0x2, 0x0) dup(r6) r7 = syz_init_net_socket$802154_dgram(0x24, 0x2, 0x0) dup(r7) bind$802154_dgram(r7, &(0x7f00000000c0)={0x24, @short={0x2, 0x0, 0xaaa1}}, 0x14) getsockopt$WPAN_WANTLQI(r6, 0x0, 0x3, &(0x7f00000001c0), &(0x7f0000000200)=0x4) sendmsg$nl_generic(r5, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000240)={&(0x7f0000000080)=ANY=[@ANYBLOB="280000002c00010d000000000000e4ffff1600ffffffffff"], 0x28}}, 0x0) sendmsg$FOU_CMD_DEL(r5, &(0x7f0000000180)={&(0x7f0000000080)={0x10, 0x0, 0x0, 0x400}, 0xc, &(0x7f00000003c0)={&(0x7f0000000400)=ANY=[@ANYBLOB=' \x00\x00\x00', @ANYRES64=r6, @ANYBLOB="100025bd7000fd4fe4ae8d000000000000af500000000000000000000000d3007bf9fde62a7227a32550ccc8771f967d93dfc66e06b235c4a6ad40d11da8a0dae2ddc5d211751fb071a019d1939288d5bf295de895a638e8cb151797bc2955786a6c62323127b176866fe0395a84f55ae7c8252813ecc9088fde64fd8b958ae1bca645abb2edaa727e320a10ef9d8b7c4ce0c50640937f38bda647fb06a42ef2"], 0x20}, 0x1, 0x0, 0x0, 0x80}, 0x4010) ioctl$sock_SIOCINQ(r3, 0x541b, &(0x7f0000000000)) 12:25:15 executing program 5 (fault-call:6 fault-nth:33): r0 = syz_io_uring_setup(0x4d4f, &(0x7f0000000080), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=0x0, &(0x7f0000000140)=0x0) syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_POLL_ADD={0x6, 0x0, 0x0, @fd=r0, 0x0, 0x0, 0x0, {0x194}}, 0x0) r3 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0) perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_io_uring_submit(r3, r2, &(0x7f0000000100)=@IORING_OP_SPLICE, 0x4) io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0) execveat(0xffffffffffffffff, &(0x7f00000002c0)='./file0\x00', 0x0, 0x0, 0x0) [ 1445.209363] FAULT_INJECTION: forcing a failure. [ 1445.209363] name failslab, interval 1, probability 0, space 0, times 0 [ 1445.211898] CPU: 1 PID: 11274 Comm: syz-executor.0 Not tainted 5.10.60 #1 [ 1445.213375] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS rel-1.14.0-0-g155821a1990b-prebuilt.qemu.org 04/01/2014 [ 1445.215826] Call Trace: [ 1445.216403] dump_stack+0x107/0x163 [ 1445.217186] should_fail.cold+0x5/0xa [ 1445.218017] ? create_object.isra.0+0x3a/0xa10 [ 1445.218999] should_failslab+0x5/0x10 [ 1445.219836] kmem_cache_alloc+0x5b/0x350 [ 1445.220717] create_object.isra.0+0x3a/0xa10 [ 1445.221654] ? __kasan_kmalloc.constprop.0+0xc2/0xd0 [ 1445.222753] kmem_cache_alloc_trace+0x153/0x350 [ 1445.223765] ? rwlock_bug.part.0+0x90/0x90 [ 1445.224682] alloc_fdtable+0x7e/0x280 [ 1445.225492] dup_fd+0x71a/0xc50 [ 1445.226219] unshare_files+0x16c/0x260 [ 1445.227052] ? __ia32_sys_unshare+0x40/0x40 [ 1445.227996] ? rcu_read_lock_sched_held+0x3a/0x70 [ 1445.229025] ? trace_rss_stat+0x174/0x210 [ 1445.229920] bprm_execve+0x123/0x1b00 [ 1445.230737] ? get_arg_page+0x153/0x200 [ 1445.231591] ? acct_arg_size+0xe0/0xe0 [ 1445.232427] ? open_exec+0x70/0x70 [ 1445.233189] ? memcpy+0x39/0x60 [ 1445.233891] ? copy_strings.isra.0+0x492/0x690 [ 1445.234870] ? copy_string_kernel+0x3ad/0x440 [ 1445.235845] do_execveat_common.isra.0+0x524/0x670 [ 1445.236903] __x64_sys_execveat+0xe7/0x130 [ 1445.237813] do_syscall_64+0x33/0x40 [ 1445.238609] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 1445.239723] RIP: 0033:0x466609 [ 1445.240415] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1445.244369] RSP: 002b:00007f4e87c42188 EFLAGS: 00000246 ORIG_RAX: 0000000000000142 [ 1445.245993] RAX: ffffffffffffffda RBX: 000000000056bf80 RCX: 0000000000466609 [ 1445.247522] RDX: 0000000020000380 RSI: 00000000200002c0 RDI: ffffffffffffffff [ 1445.249044] RBP: 00007f4e87c421d0 R08: 0000000000001000 R09: 0000000000000000 [ 1445.250563] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 1445.252107] R13: 00007ffc014a64bf R14: 00007f4e87c42300 R15: 0000000000022000 [ 1445.278333] FAULT_INJECTION: forcing a failure. [ 1445.278333] name failslab, interval 1, probability 0, space 0, times 0 [ 1445.280152] CPU: 0 PID: 11289 Comm: syz-executor.5 Not tainted 5.10.60 #1 [ 1445.281144] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS rel-1.14.0-0-g155821a1990b-prebuilt.qemu.org 04/01/2014 [ 1445.282803] Call Trace: [ 1445.283192] dump_stack+0x107/0x163 [ 1445.283742] should_fail.cold+0x5/0xa [ 1445.284313] ? create_object.isra.0+0x3a/0xa10 [ 1445.284988] should_failslab+0x5/0x10 [ 1445.285552] kmem_cache_alloc+0x5b/0x350 [ 1445.286162] create_object.isra.0+0x3a/0xa10 [ 1445.286804] ? __kasan_kmalloc.constprop.0+0xc2/0xd0 [ 1445.287565] kmem_cache_alloc+0x15b/0x350 [ 1445.288186] prepare_creds+0x29/0x670 [ 1445.288744] prepare_exec_creds+0xd/0x250 [ 1445.289351] bprm_execve+0x1e3/0x1b00 [ 1445.289904] ? get_arg_page+0x153/0x200 [ 1445.290480] ? acct_arg_size+0xe0/0xe0 [ 1445.291050] ? open_exec+0x70/0x70 [ 1445.291571] ? memcpy+0x39/0x60 [ 1445.292045] ? copy_strings.isra.0+0x492/0x690 [ 1445.292705] ? copy_string_kernel+0x3ad/0x440 [ 1445.293377] do_execveat_common.isra.0+0x524/0x670 [ 1445.294135] __x64_sys_execveat+0xe7/0x130 [ 1445.294782] do_syscall_64+0x33/0x40 [ 1445.295360] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 1445.296114] RIP: 0033:0x466609 [ 1445.296594] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1445.299299] RSP: 002b:00007feb29e46188 EFLAGS: 00000246 ORIG_RAX: 0000000000000142 [ 1445.300409] RAX: ffffffffffffffda RBX: 000000000056c038 RCX: 0000000000466609 [ 1445.301472] RDX: 0000000000000000 RSI: 00000000200002c0 RDI: ffffffffffffffff [ 1445.302520] RBP: 00007feb29e461d0 R08: 0000000000000000 R09: 0000000000000000 [ 1445.303590] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 1445.304639] R13: 00007ffde08160ef R14: 00007feb29e46300 R15: 0000000000022000 [ 1445.318800] Unsupported ieee802154 address type: 0 [ 1445.321884] Unsupported ieee802154 address type: 0 [ 1445.359295] FAULT_INJECTION: forcing a failure. [ 1445.359295] name failslab, interval 1, probability 0, space 0, times 0 [ 1445.361750] CPU: 1 PID: 11293 Comm: syz-executor.3 Not tainted 5.10.60 #1 [ 1445.363217] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS rel-1.14.0-0-g155821a1990b-prebuilt.qemu.org 04/01/2014 [ 1445.365635] Call Trace: [ 1445.366207] dump_stack+0x107/0x163 [ 1445.366994] should_fail.cold+0x5/0xa [ 1445.367518] EXT4-fs (loop6): VFS: Can't find ext4 filesystem [ 1445.367817] ? __anon_vma_prepare+0x62/0x4f0 [ 1445.367838] should_failslab+0x5/0x10 [ 1445.367854] kmem_cache_alloc+0x5b/0x350 [ 1445.367886] __anon_vma_prepare+0x62/0x4f0 [ 1445.372573] ? __pte_alloc+0x194/0x320 [ 1445.373414] handle_mm_fault+0x2be1/0x3570 [ 1445.374329] ? perf_trace_lock+0xb6/0x470 [ 1445.375233] ? hlock_class+0x120/0x120 [ 1445.376066] ? __pmd_alloc+0x5e0/0x5e0 [ 1445.376919] __get_user_pages+0x61d/0x1400 [ 1445.377837] ? follow_page_mask+0x1820/0x1820 [ 1445.378784] ? __lockdep_reset_lock+0x180/0x180 [ 1445.379805] ? avc_has_perm_noaudit+0x1f8/0x3a0 [ 1445.380818] ? find_held_lock+0x2c/0x110 [ 1445.381685] __get_user_pages_remote+0x1d1/0x860 [ 1445.382703] get_user_pages_remote+0x63/0x90 [ 1445.383676] get_arg_page+0xba/0x200 [ 1445.384473] ? acct_arg_size+0xe0/0xe0 [ 1445.385300] ? insert_vm_struct+0x1f7/0x340 [ 1445.386204] copy_string_kernel+0x1b0/0x440 [ 1445.387114] do_execveat_common.isra.0+0x405/0x670 [ 1445.388187] __x64_sys_execveat+0xe7/0x130 [ 1445.389112] do_syscall_64+0x33/0x40 [ 1445.389922] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 1445.391024] RIP: 0033:0x466609 [ 1445.391729] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1445.395801] RSP: 002b:00007f7f315af188 EFLAGS: 00000246 ORIG_RAX: 0000000000000142 [ 1445.397429] RAX: ffffffffffffffda RBX: 000000000056bf80 RCX: 0000000000466609 [ 1445.398952] RDX: 0000000000000000 RSI: 00000000200002c0 RDI: ffffffffffffffff [ 1445.400742] RBP: 00007f7f315af1d0 R08: 0000000000000000 R09: 0000000000000000 [ 1445.402540] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 1445.404313] R13: 00007ffe8cd6fa4f R14: 00007f7f315af300 R15: 0000000000022000 12:25:15 executing program 4: r0 = syz_init_net_socket$802154_dgram(0x24, 0x2, 0x0) r1 = dup(r0) sendmsg$BATADV_CMD_GET_BLA_BACKBONE(r1, &(0x7f0000000540)={&(0x7f0000000100), 0xc, &(0x7f0000000500)={0x0}}, 0x0) ioctl$sock_SIOCINQ(r1, 0x40086602, &(0x7f0000000000)) 12:25:15 executing program 1: r0 = syz_io_uring_setup(0x4d4f, &(0x7f0000000080), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=0x0, &(0x7f0000000140)=0x0) syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_POLL_ADD={0x6, 0x0, 0x0, @fd=r0, 0x0, 0x0, 0x0, {0x194}}, 0x0) r3 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0) perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_io_uring_submit(r3, r2, &(0x7f0000000100)=@IORING_OP_SPLICE, 0x4) io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0) execveat(0xffffffffffffffff, &(0x7f00000002c0)='./file0\x00', &(0x7f0000000380), &(0x7f0000000640)=[&(0x7f00000003c0)='\x00', &(0x7f0000000440)='+)>{)U\x00', &(0x7f0000000480)='{@#@\x00', 0x0], 0x1000) [ 1445.432535] netlink: 4 bytes leftover after parsing attributes in process `syz-executor.2'. [ 1445.437611] selinux_netlink_send: 13 callbacks suppressed [ 1445.437628] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=9 sclass=netlink_route_socket pid=11291 comm=syz-executor.2 12:25:15 executing program 6: syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000040)='./file0\x00', 0x40000, 0x3, &(0x7f0000000200)=[{0x0, 0x0, 0x400}, {&(0x7f0000010400)="020000000300000004", 0x9, 0x800}, {&(0x7f0000011600)="ed41000000080000dff4655fe0f4655fe0f4655f000000000000040004", 0x1d, 0x2100}], 0x0, &(0x7f0000000080)=ANY=[]) syz_mount_image$ext4(&(0x7f0000000000)='ext2\x00', &(0x7f0000000040)='./file0/../file0\x00', 0x0, 0x0, 0x0, 0x104e034, &(0x7f00000001c0)={[{@data_err_abort}]}) [ 1445.498078] Unsupported ieee802154 address type: 0 [ 1445.512199] Unsupported ieee802154 address type: 0 [ 1445.519429] netlink: 4 bytes leftover after parsing attributes in process `syz-executor.2'. [ 1445.522534] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=9 sclass=netlink_route_socket pid=11305 comm=syz-executor.2 [ 1445.542483] EXT4-fs (loop7): mounted filesystem without journal. Opts: ,errors=continue 12:25:15 executing program 5 (fault-call:6 fault-nth:34): r0 = syz_io_uring_setup(0x4d4f, &(0x7f0000000080), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=0x0, &(0x7f0000000140)=0x0) syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_POLL_ADD={0x6, 0x0, 0x0, @fd=r0, 0x0, 0x0, 0x0, {0x194}}, 0x0) r3 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0) perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_io_uring_submit(r3, r2, &(0x7f0000000100)=@IORING_OP_SPLICE, 0x4) io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0) execveat(0xffffffffffffffff, &(0x7f00000002c0)='./file0\x00', 0x0, 0x0, 0x0) 12:25:15 executing program 0 (fault-call:6 fault-nth:29): r0 = syz_io_uring_setup(0x4d4f, &(0x7f0000000080), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=0x0, &(0x7f0000000140)=0x0) syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_POLL_ADD={0x6, 0x0, 0x0, @fd=r0, 0x0, 0x0, 0x0, {0x194}}, 0x0) r3 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0) perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_io_uring_submit(r3, r2, &(0x7f0000000100)=@IORING_OP_SPLICE, 0x4) io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0) execveat(0xffffffffffffffff, &(0x7f00000002c0)='./file0\x00', &(0x7f0000000380), 0x0, 0x1000) 12:25:15 executing program 2: r0 = syz_init_net_socket$802154_dgram(0x24, 0x2, 0x0) r1 = dup(r0) connect$802154_dgram(r1, &(0x7f0000000040)={0x24, @short={0x2, 0x1fff8}}, 0x14) sendmsg$BATADV_CMD_GET_BLA_BACKBONE(r1, &(0x7f0000000540)={&(0x7f0000000100), 0xc, &(0x7f0000000500)={0x0}}, 0x0) ioctl$sock_SIOCINQ(r1, 0x541b, &(0x7f0000000000)) [ 1445.729611] EXT4-fs (loop6): VFS: Can't find ext4 filesystem [ 1445.804428] FAULT_INJECTION: forcing a failure. [ 1445.804428] name failslab, interval 1, probability 0, space 0, times 0 [ 1445.806675] CPU: 0 PID: 11320 Comm: syz-executor.5 Not tainted 5.10.60 #1 [ 1445.807981] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS rel-1.14.0-0-g155821a1990b-prebuilt.qemu.org 04/01/2014 [ 1445.809422] Call Trace: [ 1445.809744] dump_stack+0x107/0x163 [ 1445.810210] should_fail.cold+0x5/0xa [ 1445.810663] ? security_prepare_creds+0x10a/0x180 [ 1445.811267] should_failslab+0x5/0x10 [ 1445.811704] __kmalloc+0x72/0x3e0 [ 1445.812139] security_prepare_creds+0x10a/0x180 [ 1445.812676] prepare_creds+0x45c/0x670 [ 1445.813156] prepare_exec_creds+0xd/0x250 [ 1445.813629] bprm_execve+0x1e3/0x1b00 [ 1445.814083] ? get_arg_page+0x153/0x200 [ 1445.814561] ? acct_arg_size+0xe0/0xe0 [ 1445.815048] ? open_exec+0x70/0x70 [ 1445.815486] ? memcpy+0x39/0x60 [ 1445.815879] ? copy_strings.isra.0+0x492/0x690 [ 1445.816413] ? copy_string_kernel+0x3ad/0x440 [ 1445.817001] do_execveat_common.isra.0+0x524/0x670 [ 1445.817596] __x64_sys_execveat+0xe7/0x130 [ 1445.818101] do_syscall_64+0x33/0x40 [ 1445.818549] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 1445.819161] RIP: 0033:0x466609 [ 1445.819553] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1445.821725] RSP: 002b:00007feb29e67188 EFLAGS: 00000246 ORIG_RAX: 0000000000000142 [ 1445.822617] RAX: ffffffffffffffda RBX: 000000000056bf80 RCX: 0000000000466609 [ 1445.823456] RDX: 0000000000000000 RSI: 00000000200002c0 RDI: ffffffffffffffff [ 1445.824310] RBP: 00007feb29e671d0 R08: 0000000000000000 R09: 0000000000000000 [ 1445.825155] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 1445.825984] R13: 00007ffde08160ef R14: 00007feb29e67300 R15: 0000000000022000 [ 1445.868604] FAULT_INJECTION: forcing a failure. [ 1445.868604] name failslab, interval 1, probability 0, space 0, times 0 [ 1445.869901] CPU: 0 PID: 11324 Comm: syz-executor.0 Not tainted 5.10.60 #1 [ 1445.870683] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS rel-1.14.0-0-g155821a1990b-prebuilt.qemu.org 04/01/2014 [ 1445.872017] Call Trace: [ 1445.872341] dump_stack+0x107/0x163 [ 1445.872764] should_fail.cold+0x5/0xa [ 1445.873209] ? create_object.isra.0+0x3a/0xa10 [ 1445.873734] should_failslab+0x5/0x10 [ 1445.874173] kmem_cache_alloc+0x5b/0x350 [ 1445.874640] create_object.isra.0+0x3a/0xa10 [ 1445.875162] ? __kasan_kmalloc.constprop.0+0xc2/0xd0 [ 1445.875773] __kmalloc_node+0x1b0/0x4a0 [ 1445.876261] kvmalloc_node+0x61/0xf0 [ 1445.876697] alloc_fdtable+0xcd/0x280 [ 1445.877153] dup_fd+0x71a/0xc50 [ 1445.877555] unshare_files+0x16c/0x260 [ 1445.878007] ? __ia32_sys_unshare+0x40/0x40 [ 1445.878520] ? rcu_read_lock_sched_held+0x3a/0x70 [ 1445.879083] ? trace_rss_stat+0x174/0x210 [ 1445.879586] bprm_execve+0x123/0x1b00 [ 1445.880018] ? get_arg_page+0x153/0x200 [ 1445.880483] ? acct_arg_size+0xe0/0xe0 [ 1445.880928] ? open_exec+0x70/0x70 [ 1445.881345] ? memcpy+0x39/0x60 [ 1445.881719] ? copy_strings.isra.0+0x492/0x690 [ 1445.882241] ? copy_string_kernel+0x3ad/0x440 [ 1445.882764] do_execveat_common.isra.0+0x524/0x670 [ 1445.883382] __x64_sys_execveat+0xe7/0x130 [ 1445.883862] do_syscall_64+0x33/0x40 [ 1445.884302] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 1445.884880] RIP: 0033:0x466609 [ 1445.885259] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1445.887433] RSP: 002b:00007f4e87c42188 EFLAGS: 00000246 ORIG_RAX: 0000000000000142 [ 1445.888316] RAX: ffffffffffffffda RBX: 000000000056bf80 RCX: 0000000000466609 [ 1445.889153] RDX: 0000000020000380 RSI: 00000000200002c0 RDI: ffffffffffffffff [ 1445.889975] RBP: 00007f4e87c421d0 R08: 0000000000001000 R09: 0000000000000000 [ 1445.890821] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 1445.891676] R13: 00007ffc014a64bf R14: 00007f4e87c42300 R15: 0000000000022000 12:25:26 executing program 0 (fault-call:6 fault-nth:30): r0 = syz_io_uring_setup(0x4d4f, &(0x7f0000000080), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=0x0, &(0x7f0000000140)=0x0) syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_POLL_ADD={0x6, 0x0, 0x0, @fd=r0, 0x0, 0x0, 0x0, {0x194}}, 0x0) r3 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0) perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_io_uring_submit(r3, r2, &(0x7f0000000100)=@IORING_OP_SPLICE, 0x4) io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0) execveat(0xffffffffffffffff, &(0x7f00000002c0)='./file0\x00', &(0x7f0000000380), 0x0, 0x1000) 12:25:26 executing program 2: r0 = syz_init_net_socket$802154_dgram(0x24, 0x2, 0x0) r1 = dup(r0) sendmsg$BATADV_CMD_GET_BLA_BACKBONE(r1, &(0x7f0000000540)={&(0x7f0000000100)={0x10, 0x0, 0x0, 0x800000}, 0xc, &(0x7f0000000500)={0x0}}, 0x0) sendmsg$MPTCP_PM_CMD_FLUSH_ADDRS(r1, &(0x7f0000000180)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x40000000}, 0xc, &(0x7f0000000140)={&(0x7f0000000080)={0x58, 0x0, 0x1, 0x70bd25, 0x25dfdbfd, {}, [@MPTCP_PM_ATTR_RCV_ADD_ADDRS={0x8, 0x2, 0x8}, @MPTCP_PM_ATTR_SUBFLOWS={0x8, 0x3, 0x4}, @MPTCP_PM_ATTR_SUBFLOWS={0x8, 0x3, 0x2}, @MPTCP_PM_ATTR_ADDR={0x1c, 0x1, 0x0, 0x1, [@MPTCP_PM_ADDR_ATTR_ADDR4={0x8, 0x3, @loopback}, @MPTCP_PM_ADDR_ATTR_PORT={0x6, 0x5, 0x4e21}, @MPTCP_PM_ADDR_ATTR_ADDR4={0x8, 0x3, @multicast1}]}, @MPTCP_PM_ATTR_RCV_ADD_ADDRS={0x8, 0x2, 0x8}, @MPTCP_PM_ATTR_RCV_ADD_ADDRS={0x8, 0x2, 0x1}]}, 0x58}, 0x1, 0x0, 0x0, 0x40004}, 0x90) ioctl$sock_SIOCINQ(r1, 0x541b, &(0x7f0000000000)) 12:25:26 executing program 7: syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000040)='./file0\x00', 0x40000, 0x3, &(0x7f0000000200)=[{&(0x7f0000010000)="2000000080000000060000006a0000000f000000000000000100000001000000004000000040000020000000e0f4655fe0f4655f0100ffff53ef010001000000dff4655f000000000000000001000000000000000b0000000001", 0x5a, 0x400}, {&(0x7f0000010400)="020000000300000004", 0x9, 0x800}, {&(0x7f0000011600)="ed41000000080000dff4655fe0f4655fe0f4655f000000000000040004", 0x1d, 0x2100}], 0x0, &(0x7f0000000080)=ANY=[]) syz_mount_image$ext4(&(0x7f0000000000)='ext2\x00', &(0x7f0000000040)='./file0/../file0\x00', 0x0, 0x0, 0x0, 0x104e034, 0x0) 12:25:26 executing program 1: r0 = syz_io_uring_setup(0x4d4f, &(0x7f0000000080), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=0x0, &(0x7f0000000140)=0x0) syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_POLL_ADD={0x6, 0x0, 0x0, @fd=r0, 0x0, 0x0, 0x0, {0x194}}, 0x0) r3 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0) perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_io_uring_submit(r3, r2, &(0x7f0000000100)=@IORING_OP_SPLICE, 0x4) io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0) execveat(0xffffffffffffffff, &(0x7f00000002c0)='./file0\x00', &(0x7f0000000380), &(0x7f0000000640)=[&(0x7f00000003c0)='\x00', &(0x7f0000000440)='+)>{)U\x00', 0x0], 0x1000) 12:25:26 executing program 3 (fault-call:5 fault-nth:20): r0 = syz_io_uring_setup(0x4d4f, &(0x7f0000000080), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200), &(0x7f0000000140)=0x0) r2 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0) perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_io_uring_submit(r2, r1, &(0x7f0000000100)=@IORING_OP_SPLICE, 0x4) io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0) execveat(0xffffffffffffffff, &(0x7f00000002c0)='./file0\x00', 0x0, 0x0, 0x0) 12:25:26 executing program 4: syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000040)='./file0\x00', 0x40000, 0x3, &(0x7f0000000200)=[{&(0x7f0000010000)="2000000080000000060000006a0000000f000000000000000100000001000000004000000040000020000000e0f4655fe0f4655f0100ffff53ef010001000000dff4655f000000000000000001000000000000000b00000000010000280200000284", 0x62, 0x400}, {&(0x7f0000010400)="0200000003000000040000", 0xb, 0x800}, {&(0x7f0000011600)="ed41000000080000dff4655fe0f4655fe0f4655f000000000000040004", 0x1d, 0x2100}], 0x0, &(0x7f0000000080)=ANY=[]) syz_mount_image$ext4(&(0x7f0000000000)='ext2\x00', &(0x7f0000000040)='./file0/../file0\x00', 0x0, 0x0, 0x0, 0x104e034, &(0x7f00000001c0)={[{@data_err_abort}]}) 12:25:26 executing program 6: syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000040)='./file0\x00', 0x40000, 0x3, &(0x7f0000000200)=[{0x0, 0x0, 0x400}, {&(0x7f0000010400)="020000000300000004", 0x9, 0x800}, {&(0x7f0000011600)="ed41000000080000dff4655fe0f4655fe0f4655f000000000000040004", 0x1d, 0x2100}], 0x0, &(0x7f0000000080)=ANY=[]) syz_mount_image$ext4(&(0x7f0000000000)='ext2\x00', &(0x7f0000000040)='./file0/../file0\x00', 0x0, 0x0, 0x0, 0x104e034, &(0x7f00000001c0)={[{@data_err_abort}]}) 12:25:26 executing program 5 (fault-call:6 fault-nth:35): r0 = syz_io_uring_setup(0x4d4f, &(0x7f0000000080), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=0x0, &(0x7f0000000140)=0x0) syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_POLL_ADD={0x6, 0x0, 0x0, @fd=r0, 0x0, 0x0, 0x0, {0x194}}, 0x0) r3 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0) perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_io_uring_submit(r3, r2, &(0x7f0000000100)=@IORING_OP_SPLICE, 0x4) io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0) execveat(0xffffffffffffffff, &(0x7f00000002c0)='./file0\x00', 0x0, 0x0, 0x0) [ 1456.605784] FAULT_INJECTION: forcing a failure. [ 1456.605784] name failslab, interval 1, probability 0, space 0, times 0 [ 1456.607137] CPU: 0 PID: 11340 Comm: syz-executor.3 Not tainted 5.10.60 #1 [ 1456.607903] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS rel-1.14.0-0-g155821a1990b-prebuilt.qemu.org 04/01/2014 [ 1456.609157] Call Trace: [ 1456.609464] dump_stack+0x107/0x163 [ 1456.609879] should_fail.cold+0x5/0xa [ 1456.610308] ? create_object.isra.0+0x3a/0xa10 [ 1456.610812] should_failslab+0x5/0x10 [ 1456.611250] kmem_cache_alloc+0x5b/0x350 [ 1456.611717] create_object.isra.0+0x3a/0xa10 [ 1456.612172] ? __kasan_kmalloc.constprop.0+0xc2/0xd0 [ 1456.612727] kmem_cache_alloc+0x15b/0x350 [ 1456.613165] __anon_vma_prepare+0x62/0x4f0 [ 1456.613616] ? __pte_alloc+0x194/0x320 [ 1456.614051] handle_mm_fault+0x2be1/0x3570 [ 1456.614515] ? hlock_class+0x120/0x120 [ 1456.614932] ? __pmd_alloc+0x5e0/0x5e0 [ 1456.615401] __get_user_pages+0x61d/0x1400 [ 1456.615857] ? follow_page_mask+0x1820/0x1820 [ 1456.616346] ? __lockdep_reset_lock+0x180/0x180 [ 1456.616824] ? avc_has_perm_noaudit+0x1f8/0x3a0 [ 1456.617342] ? find_held_lock+0x2c/0x110 [ 1456.617760] __get_user_pages_remote+0x1d1/0x860 [ 1456.618354] get_user_pages_remote+0x63/0x90 [ 1456.618947] get_arg_page+0xba/0x200 [ 1456.619455] ? acct_arg_size+0xe0/0xe0 [ 1456.619969] ? insert_vm_struct+0x1f7/0x340 [ 1456.620553] copy_string_kernel+0x1b0/0x440 [ 1456.621013] do_execveat_common.isra.0+0x405/0x670 [ 1456.621555] __x64_sys_execveat+0xe7/0x130 [ 1456.622006] do_syscall_64+0x33/0x40 [ 1456.622411] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 1456.622945] RIP: 0033:0x466609 [ 1456.623277] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1456.625262] RSP: 002b:00007f7f315af188 EFLAGS: 00000246 ORIG_RAX: 0000000000000142 [ 1456.626077] RAX: ffffffffffffffda RBX: 000000000056bf80 RCX: 0000000000466609 [ 1456.626872] RDX: 0000000000000000 RSI: 00000000200002c0 RDI: ffffffffffffffff [ 1456.627658] RBP: 00007f7f315af1d0 R08: 0000000000000000 R09: 0000000000000000 [ 1456.628436] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 1456.629206] R13: 00007ffe8cd6fa4f R14: 00007f7f315af300 R15: 0000000000022000 [ 1456.706604] FAULT_INJECTION: forcing a failure. [ 1456.706604] name failslab, interval 1, probability 0, space 0, times 0 [ 1456.709490] CPU: 1 PID: 11348 Comm: syz-executor.5 Not tainted 5.10.60 #1 [ 1456.711186] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS rel-1.14.0-0-g155821a1990b-prebuilt.qemu.org 04/01/2014 [ 1456.714089] Call Trace: [ 1456.714693] dump_stack+0x107/0x163 [ 1456.715684] should_fail.cold+0x5/0xa [ 1456.716624] ? create_object.isra.0+0x3a/0xa10 [ 1456.717767] should_failslab+0x5/0x10 [ 1456.718719] kmem_cache_alloc+0x5b/0x350 [ 1456.719694] create_object.isra.0+0x3a/0xa10 [ 1456.720826] ? __kasan_kmalloc.constprop.0+0xc2/0xd0 [ 1456.722034] __kmalloc+0x170/0x3e0 [ 1456.722937] security_prepare_creds+0x10a/0x180 [ 1456.724049] EXT4-fs (loop6): VFS: Can't find ext4 filesystem [ 1456.724158] prepare_creds+0x45c/0x670 [ 1456.725660] prepare_exec_creds+0xd/0x250 [ 1456.726603] bprm_execve+0x1e3/0x1b00 [ 1456.727547] ? get_arg_page+0x153/0x200 [ 1456.728687] ? acct_arg_size+0xe0/0xe0 [ 1456.729807] ? open_exec+0x70/0x70 [ 1456.730630] ? memcpy+0x39/0x60 [ 1456.731479] ? copy_strings.isra.0+0x492/0x690 [ 1456.732377] ? copy_string_kernel+0x3ad/0x440 [ 1456.733032] do_execveat_common.isra.0+0x524/0x670 [ 1456.733769] __x64_sys_execveat+0xe7/0x130 [ 1456.734387] do_syscall_64+0x33/0x40 [ 1456.734943] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 1456.735716] RIP: 0033:0x466609 [ 1456.736155] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1456.738847] RSP: 002b:00007feb29e67188 EFLAGS: 00000246 ORIG_RAX: 0000000000000142 [ 1456.740287] RAX: ffffffffffffffda RBX: 000000000056bf80 RCX: 0000000000466609 [ 1456.741846] RDX: 0000000000000000 RSI: 00000000200002c0 RDI: ffffffffffffffff [ 1456.743377] RBP: 00007feb29e671d0 R08: 0000000000000000 R09: 0000000000000000 [ 1456.744933] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 1456.746456] R13: 00007ffde08160ef R14: 00007feb29e67300 R15: 0000000000022000 [ 1456.750179] EXT4-fs (loop7): mounted filesystem without journal. Opts: ,errors=continue [ 1456.758681] FAULT_INJECTION: forcing a failure. [ 1456.758681] name failslab, interval 1, probability 0, space 0, times 0 [ 1456.761318] CPU: 1 PID: 11362 Comm: syz-executor.0 Not tainted 5.10.60 #1 [ 1456.762773] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS rel-1.14.0-0-g155821a1990b-prebuilt.qemu.org 04/01/2014 [ 1456.765387] Call Trace: [ 1456.765969] dump_stack+0x107/0x163 [ 1456.766741] should_fail.cold+0x5/0xa [ 1456.767584] ? kvmalloc_node+0x61/0xf0 [ 1456.768431] should_failslab+0x5/0x10 [ 1456.769265] __kmalloc_node+0x76/0x4a0 [ 1456.770108] ? __kasan_kmalloc.constprop.0+0xc2/0xd0 [ 1456.771207] kvmalloc_node+0x61/0xf0 [ 1456.772028] alloc_fdtable+0x138/0x280 [ 1456.772870] dup_fd+0x71a/0xc50 [ 1456.773605] unshare_files+0x16c/0x260 [ 1456.774467] ? __ia32_sys_unshare+0x40/0x40 [ 1456.775585] ? rcu_read_lock_sched_held+0x3a/0x70 [ 1456.776910] ? trace_rss_stat+0x174/0x210 [ 1456.778067] bprm_execve+0x123/0x1b00 [ 1456.779097] ? get_arg_page+0x153/0x200 [ 1456.779993] ? acct_arg_size+0xe0/0xe0 [ 1456.780815] ? open_exec+0x70/0x70 [ 1456.781674] ? memcpy+0x39/0x60 [ 1456.782382] ? copy_strings.isra.0+0x492/0x690 [ 1456.783358] ? copy_string_kernel+0x3ad/0x440 [ 1456.784367] do_execveat_common.isra.0+0x524/0x670 [ 1456.785433] __x64_sys_execveat+0xe7/0x130 [ 1456.786342] do_syscall_64+0x33/0x40 [ 1456.787139] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 1456.788261] RIP: 0033:0x466609 [ 1456.788958] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1456.792923] RSP: 002b:00007f4e87c21188 EFLAGS: 00000246 ORIG_RAX: 0000000000000142 [ 1456.794573] RAX: ffffffffffffffda RBX: 000000000056c038 RCX: 0000000000466609 [ 1456.796275] RDX: 0000000020000380 RSI: 00000000200002c0 RDI: ffffffffffffffff [ 1456.797916] RBP: 00007f4e87c211d0 R08: 0000000000001000 R09: 0000000000000000 [ 1456.799316] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 1456.800502] R13: 00007ffc014a64bf R14: 00007f4e87c21300 R15: 0000000000022000 [ 1456.811235] EXT4-fs (loop4): mounted filesystem without journal. Opts: ,errors=continue 12:25:39 executing program 3 (fault-call:5 fault-nth:21): r0 = syz_io_uring_setup(0x4d4f, &(0x7f0000000080), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200), &(0x7f0000000140)=0x0) r2 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0) perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_io_uring_submit(r2, r1, &(0x7f0000000100)=@IORING_OP_SPLICE, 0x4) io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0) execveat(0xffffffffffffffff, &(0x7f00000002c0)='./file0\x00', 0x0, 0x0, 0x0) 12:25:39 executing program 1: r0 = syz_io_uring_setup(0x4d4f, &(0x7f0000000080), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=0x0, &(0x7f0000000140)=0x0) syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_POLL_ADD={0x6, 0x0, 0x0, @fd=r0, 0x0, 0x0, 0x0, {0x194}}, 0x0) r3 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0) perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_io_uring_submit(r3, r2, &(0x7f0000000100)=@IORING_OP_SPLICE, 0x4) io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0) execveat(0xffffffffffffffff, &(0x7f00000002c0)='./file0\x00', &(0x7f0000000380), &(0x7f0000000640)=[&(0x7f00000003c0)='\x00', 0x0], 0x1000) 12:25:39 executing program 6: syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000040)='./file0\x00', 0x40000, 0x3, &(0x7f0000000200)=[{&(0x7f0000010000), 0x0, 0x400}, {&(0x7f0000010400)="020000000300000004", 0x9, 0x800}, {&(0x7f0000011600)="ed41000000080000dff4655fe0f4655fe0f4655f000000000000040004", 0x1d, 0x2100}], 0x0, &(0x7f0000000080)=ANY=[]) syz_mount_image$ext4(&(0x7f0000000000)='ext2\x00', &(0x7f0000000040)='./file0/../file0\x00', 0x0, 0x0, 0x0, 0x104e034, &(0x7f00000001c0)={[{@data_err_abort}]}) 12:25:39 executing program 5 (fault-call:6 fault-nth:36): r0 = syz_io_uring_setup(0x4d4f, &(0x7f0000000080), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=0x0, &(0x7f0000000140)=0x0) syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_POLL_ADD={0x6, 0x0, 0x0, @fd=r0, 0x0, 0x0, 0x0, {0x194}}, 0x0) r3 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0) perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_io_uring_submit(r3, r2, &(0x7f0000000100)=@IORING_OP_SPLICE, 0x4) io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0) execveat(0xffffffffffffffff, &(0x7f00000002c0)='./file0\x00', 0x0, 0x0, 0x0) 12:25:39 executing program 7: syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000040)='./file0\x00', 0x40000, 0x3, &(0x7f0000000200)=[{&(0x7f0000010000)="2000000080000000060000006a0000000f000000000000000100000001000000004000000040000020000000e0f4655fe0f4655f0100ffff53ef010001000000dff4655f000000000000000001000000000000000b0000000001", 0x5a, 0x400}, {&(0x7f0000010400)="020000000300000004", 0x9, 0x800}, {&(0x7f0000011600)="ed41000000080000dff4655fe0f4655fe0f4655f000000000000040004", 0x1d, 0x2100}], 0x0, &(0x7f0000000080)=ANY=[]) syz_mount_image$ext4(&(0x7f0000000000)='ext2\x00', &(0x7f0000000040)='./file0/../file0\x00', 0x0, 0x0, 0x0, 0x104e034, &(0x7f00000001c0)) 12:25:39 executing program 4: syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000040)='./file0\x00', 0x40000, 0x3, &(0x7f0000000200)=[{&(0x7f0000010000)="2000000080000000060000006a0000000f000000000000000100000001000000004000000040000020000000e0f4655fe0f4655f0100ffff53ef010001000000dff4655f000000000000000001000000000000000b00000000010000280200000284", 0x62, 0x400}, {&(0x7f0000010400)="020000000300000004000000", 0xc, 0x800}, {&(0x7f0000011600)="ed41000000080000dff4655fe0f4655fe0f4655f000000000000040004", 0x1d, 0x2100}], 0x0, &(0x7f0000000080)=ANY=[]) syz_mount_image$ext4(&(0x7f0000000000)='ext2\x00', &(0x7f0000000040)='./file0/../file0\x00', 0x0, 0x0, 0x0, 0x104e034, &(0x7f00000001c0)={[{@data_err_abort}]}) 12:25:39 executing program 0 (fault-call:6 fault-nth:31): r0 = syz_io_uring_setup(0x4d4f, &(0x7f0000000080), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=0x0, &(0x7f0000000140)=0x0) syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_POLL_ADD={0x6, 0x0, 0x0, @fd=r0, 0x0, 0x0, 0x0, {0x194}}, 0x0) r3 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0) perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_io_uring_submit(r3, r2, &(0x7f0000000100)=@IORING_OP_SPLICE, 0x4) io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0) execveat(0xffffffffffffffff, &(0x7f00000002c0)='./file0\x00', &(0x7f0000000380), 0x0, 0x1000) 12:25:39 executing program 2: r0 = syz_init_net_socket$802154_dgram(0x24, 0x2, 0x0) r1 = socket$inet6_udp(0xa, 0x2, 0x0) setsockopt$inet6_MRT6_ADD_MFC_PROXY(r1, 0x29, 0xd2, 0x0, 0x0) r2 = socket$packet(0x11, 0x3, 0x300) r3 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a) ioctl$sock_SIOCGIFINDEX(r3, 0x8933, &(0x7f0000000140)={'syz_tun\x00', 0x0}) setsockopt$packet_add_memb(r2, 0x107, 0x1, &(0x7f0000000040)={r4, 0x1, 0x6, @local}, 0x10) r5 = socket$packet(0x11, 0x3, 0x300) r6 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a) ioctl$sock_SIOCGIFINDEX(r6, 0x8933, &(0x7f0000000140)={'syz_tun\x00', 0x0}) setsockopt$packet_add_memb(r5, 0x107, 0x1, &(0x7f0000000040)={r7, 0x1, 0x6, @local}, 0x10) sendmmsg$sock(r1, &(0x7f0000004e00)=[{{&(0x7f0000000040)=@rxrpc=@in6={0x21, 0x4, 0x2, 0x1c, {0xa, 0x4e20, 0x3, @private0, 0x20}}, 0x80, &(0x7f0000001580)=[{&(0x7f0000000140)="185694b89c96276d534a65c0a854094c248fb15c3d1e54767a0f77db177b416dd85f6091cc5c007c7b06a8f587484bd531227d72ed8286ed85ab00dc6618fd47a91d4d050ebdcd78a743d81b22aa16aab4ee6b5170610c1e38b62154f1897d9095adbd51aea2adaaf2e7bbbaec4e7bb1e682a544b5500eac63c56a2473c48925828b13081ecf89839ea2e1933e69910ccbd97bad308162541f93da07", 0x9c}, {&(0x7f0000000580)="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", 0x1000}, {&(0x7f0000000200)="b01b4282c34229f42eff52d961edf37b23fd2c909504aa869583b06714c943fc1e75c1509442f81894c2e2a67835cb7d752ed52cfcdbd906ea4078244e0e35e1cc3441b575ed67a22d43fa8346e9258d2de16bf7f9bd43aeb15a7cde1c3b54aba091704aee39f82969255d366cb0d25537d466e763df7c8241a802c10e629bc7a8c61f8d7ab1d70f107122d489aa6dcab4937c0b292a167eb00ed0edca69a9f00495d8cb6a7236afd322a3a68d35280b77333bf1c5b363739f6d648a5e20087c44", 0xc1}, {&(0x7f0000000300)="6055292959a7d934b8a4f98f04e89638bafd7e44e169cf19ab945fd94ae96d24385bb2030c682eb63f695fb204fed0a3c8392a31876f9c784016aca317bceb24b5adf15eae289944dfc5b4bba1", 0x4d}, {&(0x7f0000000380)="cb0ea6d625d3088e7a2c817523036f5a70bbeb307f58ee26e83f98d1abc1c3d5f998740b5a2cc11c153e26807375afa4ef0b6639099a7616c009278a08a684d9c1ed2d0950f7200a8065bc38aac8fab33c9820119e17b196ac1a81a48f7b207edacb39e6", 0x64}, {&(0x7f0000000400)="98d23df6cf1c230f63d9fb13e689d1a4d0a8f4ccd4fba983b1f07539686818bc79b5b214cc2c9eff616718c23816611521912c2763d69078ff8605b2c14f9128349984614dcf4cf77fbfc3f2a4b9b15be9545831ca25de2ba7152647cfa881ff3bb47170243a300013bec900c9b65f7ae4ec6dd4b82e075ae296c4fb3eaa67bbc39eb97eb4069602c471feea6dce36cea659c5b8a42427d4ba22139d84c6aa551862c06254fd615b586e697d9336ce5b263d935e88664aa918ccf5120cfe625aa3d59d0664493566f6e50d1ce256697824ab424d11a8cfcf3c9d0407", 0xdc}], 0x6, &(0x7f0000001600)=[@txtime={{0x18, 0x1, 0x3d, 0x80000000}}, @timestamping={{0x14, 0x1, 0x25, 0x1}}, @txtime={{0x18, 0x1, 0x3d, 0x1}}, @mark={{0x14, 0x1, 0x24, 0x5}}, @txtime={{0x18, 0x1, 0x3d, 0x1}}, @mark={{0x14, 0x1, 0x24, 0x8000}}], 0x90}}, {{&(0x7f00000016c0)=@xdp={0x2c, 0x4, r4, 0x34}, 0x80, &(0x7f0000002880)=[{&(0x7f0000001740)="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", 0x1000}, {&(0x7f00000000c0)="0be4c48ac6802147eeb536dec3ba1005d632fca5", 0x14}, {&(0x7f0000002740)="97e15852cedde980dedd6c0cdcccef34c128fccc28e853a4d28dca6c8ab3ca88f2a195e1e02c", 0x26}, {&(0x7f0000002780)="c66cb26ea4b3976fa47c25206f174d35f469f081e339832cdf2cb90fccbc000518fc4aa01cf6c5d6fbca91a353e28166c2001cbee3c3753bc56efc88154219376b95398573c97b6314250b1fc17eb303a66a3d562dc91fcc0dcebd28934b8cc44bd41ec4d282c3ba41629955a78b48ff7c7e6b3e1cdb1f8cd5237dd13018d7c8806a4338800547ecd96c1afd5b3ca6279dd68f4145f77f495b2478f1d53b377322874ecbfbff7cb9375798a08e94c613", 0xb0}, {&(0x7f0000002840)="e9ca2aa88e9323e804dd5aec2dff39405a8f9d3b6892336560bf15c9e8a5f7766b565f", 0x23}], 0x5, &(0x7f0000002900)=[@txtime={{0x18, 0x1, 0x3d, 0xffffffffffffff01}}, @timestamping={{0x14, 0x1, 0x25, 0x3}}, @txtime={{0x18, 0x1, 0x3d, 0x2d3}}, @txtime={{0x18, 0x1, 0x3d, 0x1}}], 0x60}}, {{&(0x7f0000002980)=@generic={0x26, "2b7f2398b97e514db98f437b79314a129d986357c75bb7009cef60c6f149ec798be210ac3e345cd98c0c75b1baed3762d9b2874a11d870d9861a1f29d9dae9d815673070aa62ce8e8d6653136508b19c2d4bd1da9ceac48093af8e3739498b8589d981f6da77a3bd26996fe9fe0d6510bbe99e635fa541af07450971b315"}, 0x80, &(0x7f0000002e00)=[{&(0x7f0000002a00)="a3e69213208d3a6ae6e49b35892908", 0xf}, {&(0x7f0000002a40)="67bed5d34f738c6fab9e607a7540f856c1a2bf7eda2a244878ce9d7fb9a299f5e82dae16ef23713cd5f27429c21b272bb75f7775e3444209a8f2c829703aa64f60399d5d0ceaec5879d2fc8368d0227c8179e99fc3eb96c552beb2be3c00ec328356fa9a5d9c425084c0b0582cfa84f6ba0cae3fc6e365c04a8e8a8cc771ba8481f51aa7eb76eedc6a2a7656b1a3481b52213821e3de16fdd00da68991b942a9e3be06ff23eece0388ca", 0xaa}, {&(0x7f0000002b00)="8ff456eda45f0d47421cf501c23d7de7f4fadc351699167f08e8f44634387fde123e8c0a8f781703540a5c5ab9a3d2beceebe75b5bdd4152789ba30ed92110c0019bad00c23875dd41d40256695461159b0fbfa575d695c900d8e36db177a360748b3530da8751366399978e6d1c137d1baa35acef6cde4be7f9e1710b1a2a430577b7b9baaf71d031850b917d7ebd293f9a926ad43b9602b868c0dbd90aa0f1f1a4e988e13ee44ae6570756d40fa3ab05a6b1bdc77068e9", 0xb8}, {&(0x7f0000002bc0)="b627f9ea315f883bfd7e55765395", 0xe}, {&(0x7f0000002c00)="1355776b6b0ca7df853657cd5a064dc427e977b9c7aafbdf109356107eaa543c2a403f3f569bbe87a8817c5a5f1f497e9f64ab9856166bf3ad217f5c4a08f478e7e74d5b0212e4650a14d7eff11adb067eedbca080ad792e83cf285afa81193e58d1d0e335da99440a2c6877c9455449d34485e36b0c1f4434e7e9b7043288da71b3d4980b13731ed9485295061aaeec2f7ebb918646728e34023ce8dc65e19409dec3743b1076fab06e36e06e9ce32314f6f69574f522d86a16054d35e5074681c604c8a6651df869c1f57b42e49b7d712d57cdcc262ca58a617500e89d04f564021396ee9c0ca85eb48d58d75502a5b7", 0xf1}, {&(0x7f0000002d00)="a35b68537d464a930e6787dd54a7b38dca547068ac954599c5d1c9ce653d17929297c30756fb1a9c0f63af408d515ab25f170b347d6ea040fdd6232639aea81061d21c3771484467f1257107315da0ab858999c2ed477f1c9e9a8db4293f1447e0f9cdf0144adbba54b2646a910ab52e5b052e6f492aba9f48d6ec44b5ae83742b512cba7d2c10468dc71561ef5dd63f2615f0de4a340ad88607bb53fb546b648d6100187de79095b1fb1b712aac66af8c627b88284a8244d0d1ab15cd89bdd5b2c71b0672c7728beacbf69cc6e6b5c4815b517db5ac697ee8d8f4e068928706635465", 0xe3}], 0x6, &(0x7f0000002e80)=[@mark={{0x14, 0x1, 0x24, 0x7}}], 0x18}}, {{&(0x7f0000002ec0)=@sco={0x1f, @fixed={'\xaa\xaa\xaa\xaa\xaa', 0x10}}, 0x80, &(0x7f0000002f80)=[{&(0x7f0000002f40)="b66c0863872223cce72faf", 0xb}], 0x1, &(0x7f0000002fc0)=[@timestamping={{0x14, 0x1, 0x25, 0x2}}, @txtime={{0x18, 0x1, 0x3d, 0x100}}, @txtime={{0x18, 0x1, 0x3d, 0x9}}, @timestamping={{0x14, 0x1, 0x25, 0x1000}}, @txtime={{0x18, 0x1, 0x3d, 0x7}}, @txtime={{0x18, 0x1, 0x3d, 0x8000}}, @txtime={{0x18, 0x1, 0x3d, 0x7ff}}], 0xa8}}, {{&(0x7f0000003080)=@can={0x1d, r7}, 0x80, &(0x7f0000004240)=[{&(0x7f0000003100)="617a1958527815cb082ca88074adaa0af0a14dfdc4e29fa12cbe05ef80215d90c721261fc67bf4d941518835ebfaeb0e1a76a75138b7a3070c2e37cce10e13853040fd04fde7bd2322361d70b9d4fdd556647f37d8cde1398a526180c774c26d1c0590749190879f437b3ddff5ce1d6a0d514125404508babc656af19efa4acd12ccdbc1a66e72855296150672de4d9e349fb1312594b468aa90f34d1cf0a0a8411d57dc714152a086ac029c8a81faa4d8e891a729f827d6d9a9ead3e374931e0396fc7ac21686e6e8bbe2917b91df3e39a0f9d5c92379fcb64a09", 0xdb}, {&(0x7f0000003200)="a9df4c2867fd3deaf028f4bc1a6302510725fa4bd8888ab6e9b05047ceae3d9db20985d676d482bc1fecb32b44f00801bf4405aa1f0b2fb1b73aeb", 0x3b}, {&(0x7f0000003240)="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", 0x1000}], 0x3, &(0x7f0000004280)=[@timestamping={{0x14, 0x1, 0x25, 0x4}}, @txtime={{0x18, 0x1, 0x3d, 0x2}}], 0x30}}, {{&(0x7f00000042c0)=@in6={0xa, 0x4e21, 0x400, @initdev={0xfe, 0x88, '\x00', 0x1, 0x0}, 0x8}, 0x80, &(0x7f0000004780)=[{&(0x7f0000004340)="cccb9643321722db9673455b", 0xc}, {&(0x7f0000004380)="ca66a56c7da0cc009f2eaf93219394d184be67681d208c3393c87a4049d21df4bb16d7ae04bc8125ee4d277e9c5484b1ef56dd63e6c55114f1ebb0d5ee2de892664f3493b3cda608fdedde323e891c7a0de47a58783ff825d1471c1aae28dd0d0f801a942e34b40b208fd2ee0e5280f1068ebfe65f221eba97d59701d0140149006334d3f48d0a803d51f5a794e95cb7f885f7a6ef3576c0ab82e7e6", 0x9c}, {&(0x7f0000004440)="649b7a420ed8d7bd2e7c71fbdb50b28c6b80de12a875668b49c1d99fa8bef007af73546e3136a619aa97112918ce9722f2029db89bb45763b6b5bf28913282ea1afb819d84d5f1094d2d7d6c7651b2968d4c87006ccb7bba3666674cb03ba35a57fe090a5b122e10fbc8d60801672e097404733249c5687cef9b184906f4879ad00272311b90f4f685af0b2187659c0d34aeafc90950ed894c074318742444f1434328125513a8222449c8a370861c28faea1d78cdcbde544cea34423b6a6565bb6ec348ff271dba78fe5183fb127bbce87be628ebd0bc2f1c240aa50fd541ae23c7016c3ab8", 0xe6}, {&(0x7f0000004540)="21779a006fba", 0x6}, {&(0x7f0000004580)="70e48fc615b8eaff90cb60e1c60282e7db0dc12875a7897729d669027d4ec813705d7f88a2da844574c6df8aa1ee71831728c78afbd9558a45f9443ca90424aa4844d02545a7d70e14f0f6928dfb602a7d67f135634e680b9cdcc6f5c3943e9130431974cdc26ca6dbc2b319d4105ae4e0da23c1cdb10417d442ed64c5e11ef83944544eb2", 0x85}, {&(0x7f0000004640)="11378aec18ebae6fcfcf0af828bf38ed41e38edd9059065de4efaba82a2118d950b0f5abbdac11d09687d311f3cf3294ec25a23af1f6fe100fbf56872bcbfebbbc0dfeded2b9f3618f8af56e97dff37a9ac864ceff36ea7ad62b651fb4514d407891cdcd2f7077ff53952ca751e11e694c8842645af2", 0x76}, {&(0x7f00000046c0)="6553ff0a96c2f1d24c882d584d4493b904985c6c1db6d7ddc209eafe400f6662338600209b79d093438591e08b5d492e058bb33cadfa131762d5310b93f50042fe87eaa9b6702b2246ca593df20487df1b395d30c6e42903bc84dfef45f4e522235727ac23f9ebf382ecdfdb2830b8d43e1bf132fc3edda1b71365a6409139f688508a4c1773deb77c00de6b755573666a7bfa685dbb3b9f2a06220f0bed4c286a84625bdf", 0xa5}], 0x7, &(0x7f0000004800)=[@timestamping={{0x14, 0x1, 0x25, 0x80000000}}], 0x18}}, {{&(0x7f0000004840)=@pppoe={0x18, 0x0, {0x4, @local, 'erspan0\x00'}}, 0x80, &(0x7f0000004ac0)=[{&(0x7f00000048c0)="524ecb", 0x3}, {&(0x7f0000004900)="e09c60469448f5081a6bd285982794d4c3be742ce746bd6694d94f5eea877a0cc3a0bcec69cf395cabf1bb5a153a00596100f669db631e27c95de61a309de96282c0ad86559d36c68cfa79fb222edf8a9543d3a5565338620b87cf76b0b808ea1a182d6f4fb9afd3ae615ba3bb999aca548e56014dc80644711ad548e358d204b9273816e02f5af76c7cb709bbafd7e7c522b685388177756c6e", 0x9a}, {&(0x7f00000049c0)="1ac574f4649d4be2712dcff2e44ccccf359b22c25c85", 0x16}, {&(0x7f0000004a00)="3ca01653c6becbb641b2a48041b45417c3a961be124c63a2a1b9d7fcb8a9e290209db73690c0a23f6bcf2c95bd941e6f366bb31aa0e7b1c4ea11d4dcc9d9a5063c85cc15dd925f1e1d2a58f8e0d5b89c2ed973f4c52000d0420adccd002628b3402e4d6fb984a9c39da50c4eaa8d1896b58d359ed1781e2274bcf0527e4c45702c1d4b579ae57c2d13500957abb416ec34b5ae9c6edae96332d68725fa9e7d54ae4686e3", 0xa4}], 0x4, &(0x7f0000004b00)=[@txtime={{0x18, 0x1, 0x3d, 0x9}}, @timestamping={{0x14, 0x1, 0x25, 0x7}}, @timestamping={{0x14, 0x1, 0x25, 0x990}}, @mark={{0x14, 0x1, 0x24, 0x4}}, @txtime={{0x18, 0x1, 0x3d, 0x3}}, @mark={{0x14, 0x1, 0x24, 0x10001}}, @mark={{0x14, 0x1, 0x24, 0x1}}, @txtime={{0x18, 0x1, 0x3d, 0x5}}, @mark={{0x14, 0x1, 0x24, 0x7ff}}], 0xd8}}, {{&(0x7f0000004c00)=@sco={0x1f, @fixed={'\xaa\xaa\xaa\xaa\xaa', 0x10}}, 0x80, &(0x7f0000004cc0)=[{&(0x7f0000004c80)="4d500ed27c14317a04cb4e6cccf1a337fe4e9b8bf2d78f0379e46c6848062e6647ed65f58bee6ba5a107036cc5ca59157ab24d48", 0x34}], 0x1, &(0x7f0000004d00)=[@txtime={{0x18, 0x1, 0x3d, 0xfffffffffffffff7}}, @txtime={{0x18, 0x1, 0x3d, 0x4}}, @mark={{0x14, 0x1, 0x24, 0x2}}, @mark={{0x14, 0x1, 0x24, 0x800}}, @txtime={{0x18, 0x1, 0x3d, 0x6}}, @mark={{0x14, 0x1, 0x24, 0x7f}}, @txtime={{0x18, 0x1, 0x3d, 0x200}}, @txtime={{0x18, 0x1, 0x3d, 0x400}}, @mark={{0x14, 0x1, 0x24, 0x3}}, @txtime={{0x18, 0x1, 0x3d, 0xda}}], 0xf0}}], 0x8, 0x800) r8 = dup(r0) sendmsg$BATADV_CMD_GET_BLA_BACKBONE(r8, &(0x7f0000000540)={&(0x7f0000000100), 0xc, &(0x7f0000000500)={0x0}}, 0x0) ioctl$sock_SIOCINQ(r8, 0x541b, &(0x7f0000000000)) [ 1469.004827] device syz_tun entered promiscuous mode 12:25:39 executing program 1: r0 = syz_io_uring_setup(0x4d4f, &(0x7f0000000080), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=0x0, &(0x7f0000000140)=0x0) syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_POLL_ADD={0x6, 0x0, 0x0, @fd=r0, 0x0, 0x0, 0x0, {0x194}}, 0x0) r3 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0) perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_io_uring_submit(r3, r2, &(0x7f0000000100)=@IORING_OP_SPLICE, 0x4) io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0) execveat(0xffffffffffffffff, &(0x7f00000002c0)='./file0\x00', &(0x7f0000000380), &(0x7f0000000640)=[&(0x7f00000003c0)='\x00', 0x0], 0x1000) [ 1469.019967] FAULT_INJECTION: forcing a failure. [ 1469.019967] name failslab, interval 1, probability 0, space 0, times 0 [ 1469.022497] CPU: 1 PID: 11384 Comm: syz-executor.3 Not tainted 5.10.60 #1 [ 1469.023973] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS rel-1.14.0-0-g155821a1990b-prebuilt.qemu.org 04/01/2014 [ 1469.026408] Call Trace: [ 1469.026974] dump_stack+0x107/0x163 [ 1469.027777] should_fail.cold+0x5/0xa [ 1469.028613] ? __anon_vma_prepare+0x281/0x4f0 [ 1469.029581] should_failslab+0x5/0x10 [ 1469.030552] kmem_cache_alloc+0x5b/0x350 [ 1469.031698] __anon_vma_prepare+0x281/0x4f0 [ 1469.032880] ? __pte_alloc+0x194/0x320 [ 1469.033916] handle_mm_fault+0x2be1/0x3570 [ 1469.034838] ? perf_trace_lock+0xb6/0x470 [ 1469.035762] ? hlock_class+0x120/0x120 [ 1469.036694] ? __pmd_alloc+0x5e0/0x5e0 [ 1469.037586] __get_user_pages+0x61d/0x1400 [ 1469.038566] ? follow_page_mask+0x1820/0x1820 [ 1469.039564] ? __lockdep_reset_lock+0x180/0x180 [ 1469.040604] ? avc_has_perm_noaudit+0x1f8/0x3a0 [ 1469.041620] ? find_held_lock+0x2c/0x110 [ 1469.042503] __get_user_pages_remote+0x1d1/0x860 [ 1469.043560] get_user_pages_remote+0x63/0x90 [ 1469.044531] get_arg_page+0xba/0x200 [ 1469.045353] ? acct_arg_size+0xe0/0xe0 [ 1469.046187] ? insert_vm_struct+0x1f7/0x340 [ 1469.047179] copy_string_kernel+0x1b0/0x440 [ 1469.048147] do_execveat_common.isra.0+0x405/0x670 [ 1469.049242] __x64_sys_execveat+0xe7/0x130 [ 1469.050178] do_syscall_64+0x33/0x40 [ 1469.051040] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 1469.052253] RIP: 0033:0x466609 [ 1469.052946] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1469.057018] RSP: 002b:00007f7f315af188 EFLAGS: 00000246 ORIG_RAX: 0000000000000142 [ 1469.058700] RAX: ffffffffffffffda RBX: 000000000056bf80 RCX: 0000000000466609 [ 1469.060284] RDX: 0000000000000000 RSI: 00000000200002c0 RDI: ffffffffffffffff [ 1469.061837] RBP: 00007f7f315af1d0 R08: 0000000000000000 R09: 0000000000000000 [ 1469.063436] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 1469.065051] R13: 00007ffe8cd6fa4f R14: 00007f7f315af300 R15: 0000000000022000 [ 1469.073681] FAULT_INJECTION: forcing a failure. [ 1469.073681] name failslab, interval 1, probability 0, space 0, times 0 [ 1469.076197] CPU: 1 PID: 11382 Comm: syz-executor.5 Not tainted 5.10.60 #1 [ 1469.077700] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS rel-1.14.0-0-g155821a1990b-prebuilt.qemu.org 04/01/2014 [ 1469.080223] Call Trace: [ 1469.080794] dump_stack+0x107/0x163 [ 1469.081591] should_fail.cold+0x5/0xa [ 1469.082392] EXT4-fs (loop7): mounted filesystem without journal. Opts: ,errors=continue [ 1469.082454] ? __alloc_file+0x21/0x310 [ 1469.084463] should_failslab+0x5/0x10 [ 1469.085288] kmem_cache_alloc+0x5b/0x350 [ 1469.086207] ? mark_lock+0x108/0x3020 [ 1469.087063] __alloc_file+0x21/0x310 [ 1469.087898] alloc_empty_file+0x6a/0x160 [ 1469.088778] path_openat+0xdf/0x2690 [ 1469.089633] ? stack_trace_consume_entry+0x160/0x160 [ 1469.090824] ? path_lookupat+0x780/0x780 [ 1469.091768] ? __lock_acquire+0x1616/0x5b60 [ 1469.092783] do_filp_open+0x192/0x3e0 [ 1469.093607] ? may_open_dev+0xf0/0xf0 [ 1469.094491] ? perf_trace_lock+0xb6/0x470 [ 1469.095403] ? perf_trace_lock+0xb6/0x470 [ 1469.096344] ? __lockdep_reset_lock+0x180/0x180 [ 1469.097361] ? find_held_lock+0x2c/0x110 [ 1469.098286] do_open_execat+0x10c/0x690 [ 1469.099170] ? __ia32_sys_uselib+0x40/0x40 [ 1469.100162] ? do_raw_spin_lock+0x129/0x270 [ 1469.101120] ? rwlock_bug.part.0+0x90/0x90 [ 1469.102122] bprm_execve+0x5b2/0x1b00 [ 1469.102946] ? get_arg_page+0x153/0x200 [ 1469.103862] ? open_exec+0x70/0x70 [ 1469.104671] ? memcpy+0x39/0x60 [ 1469.105420] ? copy_strings.isra.0+0x492/0x690 [ 1469.106422] ? copy_string_kernel+0x3ad/0x440 [ 1469.107467] do_execveat_common.isra.0+0x524/0x670 [ 1469.108581] __x64_sys_execveat+0xe7/0x130 [ 1469.109566] do_syscall_64+0x33/0x40 [ 1469.110400] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 1469.111575] RIP: 0033:0x466609 [ 1469.112286] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1469.116485] RSP: 002b:00007feb29e67188 EFLAGS: 00000246 ORIG_RAX: 0000000000000142 [ 1469.118135] RAX: ffffffffffffffda RBX: 000000000056bf80 RCX: 0000000000466609 [ 1469.119779] RDX: 0000000000000000 RSI: 00000000200002c0 RDI: ffffffffffffffff [ 1469.121413] RBP: 00007feb29e671d0 R08: 0000000000000000 R09: 0000000000000000 [ 1469.123089] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 1469.124709] R13: 00007ffde08160ef R14: 00007feb29e67300 R15: 0000000000022000 [ 1469.127734] device syz_tun left promiscuous mode [ 1469.139991] FAULT_INJECTION: forcing a failure. [ 1469.139991] name failslab, interval 1, probability 0, space 0, times 0 [ 1469.142814] CPU: 1 PID: 11383 Comm: syz-executor.0 Not tainted 5.10.60 #1 [ 1469.144451] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS rel-1.14.0-0-g155821a1990b-prebuilt.qemu.org 04/01/2014 [ 1469.146982] Call Trace: [ 1469.147600] dump_stack+0x107/0x163 [ 1469.148444] should_fail.cold+0x5/0xa [ 1469.149311] ? create_object.isra.0+0x3a/0xa10 [ 1469.150342] should_failslab+0x5/0x10 [ 1469.151200] kmem_cache_alloc+0x5b/0x350 [ 1469.152152] create_object.isra.0+0x3a/0xa10 [ 1469.153154] ? __kasan_kmalloc.constprop.0+0xc2/0xd0 [ 1469.154301] __kmalloc_node+0x1b0/0x4a0 [ 1469.155211] kvmalloc_node+0x61/0xf0 [ 1469.156069] alloc_fdtable+0x138/0x280 [ 1469.156961] dup_fd+0x71a/0xc50 [ 1469.157739] unshare_files+0x16c/0x260 [ 1469.158679] ? __ia32_sys_unshare+0x40/0x40 [ 1469.159738] ? rcu_read_lock_sched_held+0x3a/0x70 [ 1469.160834] ? trace_rss_stat+0x174/0x210 [ 1469.161998] bprm_execve+0x123/0x1b00 [ 1469.162865] ? get_arg_page+0x153/0x200 [ 1469.163785] ? acct_arg_size+0xe0/0xe0 [ 1469.164687] ? open_exec+0x70/0x70 [ 1469.165488] ? memcpy+0x39/0x60 [ 1469.166232] ? copy_strings.isra.0+0x492/0x690 [ 1469.167255] ? copy_string_kernel+0x3ad/0x440 [ 1469.168285] do_execveat_common.isra.0+0x524/0x670 [ 1469.169450] __x64_sys_execveat+0xe7/0x130 [ 1469.170413] do_syscall_64+0x33/0x40 [ 1469.171292] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 1469.172470] RIP: 0033:0x466609 [ 1469.173248] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1469.177559] RSP: 002b:00007f4e87c42188 EFLAGS: 00000246 ORIG_RAX: 0000000000000142 [ 1469.179351] RAX: ffffffffffffffda RBX: 000000000056bf80 RCX: 0000000000466609 [ 1469.181078] RDX: 0000000020000380 RSI: 00000000200002c0 RDI: ffffffffffffffff [ 1469.182680] RBP: 00007f4e87c421d0 R08: 0000000000001000 R09: 0000000000000000 [ 1469.184302] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 1469.185827] R13: 00007ffc014a64bf R14: 00007f4e87c42300 R15: 0000000000022000 [ 1469.201559] device syz_tun entered promiscuous mode [ 1469.215574] device syz_tun left promiscuous mode [ 1469.260403] EXT4-fs (loop4): couldn't mount as ext2 due to feature incompatibilities 12:25:39 executing program 2: r0 = syz_init_net_socket$802154_dgram(0x24, 0x2, 0x0) r1 = syz_init_net_socket$802154_dgram(0x24, 0x2, 0x0) r2 = dup(r1) ioctl$sock_SIOCINQ(r2, 0x541b, &(0x7f0000000000)) bind$802154_dgram(r2, &(0x7f0000000040)={0x24, @short={0x2, 0x2, 0xfffe}}, 0x14) r3 = dup(r0) sendmsg$BATADV_CMD_GET_BLA_BACKBONE(r3, &(0x7f0000000540)={&(0x7f0000000100), 0xc, &(0x7f0000000500)={0x0}}, 0x0) connect$802154_dgram(r1, &(0x7f0000000080)={0x24, @short={0x2, 0xffff, 0xaaa1}}, 0x14) ioctl$sock_SIOCINQ(r3, 0x541b, &(0x7f0000000000)) [ 1469.269228] EXT4-fs (loop6): VFS: Can't find ext4 filesystem 12:25:39 executing program 7: syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000040)='./file0\x00', 0x40000, 0x3, &(0x7f0000000200)=[{&(0x7f0000010000)="2000000080000000060000006a0000000f000000000000000100000001000000004000000040000020000000e0f4655fe0f4655f0100ffff53ef010001000000dff4655f000000000000000001000000000000000b0000000001", 0x5a, 0x400}, {&(0x7f0000010400)="020000000300000004", 0x9, 0x800}, {&(0x7f0000011600)="ed41000000080000dff4655fe0f4655fe0f4655f000000000000040004", 0x1d, 0x2100}], 0x0, &(0x7f0000000080)=ANY=[]) syz_mount_image$ext4(&(0x7f0000000000)='ext2\x00', &(0x7f0000000040)='./file0/../file0\x00', 0x0, 0x0, 0x0, 0x104e034, &(0x7f00000001c0)) 12:25:39 executing program 3 (fault-call:5 fault-nth:22): r0 = syz_io_uring_setup(0x4d4f, &(0x7f0000000080), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200), &(0x7f0000000140)=0x0) r2 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0) perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_io_uring_submit(r2, r1, &(0x7f0000000100)=@IORING_OP_SPLICE, 0x4) io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0) execveat(0xffffffffffffffff, &(0x7f00000002c0)='./file0\x00', 0x0, 0x0, 0x0) 12:25:39 executing program 4: syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000040)='./file0\x00', 0x40000, 0x3, &(0x7f0000000200)=[{&(0x7f0000010000)="2000000080000000060000006a0000000f000000000000000100000001000000004000000040000020000000e0f4655fe0f4655f0100ffff53ef010001000000dff4655f000000000000000001000000000000000b00000000010000280200000284", 0x62, 0x400}, {&(0x7f0000010400)="020000000300000004000000", 0xc, 0x800}, {&(0x7f0000011600)="ed41000000080000dff4655fe0f4655fe0f4655f000000000000040004", 0x1d, 0x2100}], 0x0, &(0x7f0000000080)=ANY=[]) syz_mount_image$ext4(&(0x7f0000000000)='ext2\x00', &(0x7f0000000040)='./file0/../file0\x00', 0x0, 0x0, 0x0, 0x104e034, &(0x7f00000001c0)={[{@data_err_abort}]}) 12:25:39 executing program 6: syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000040)='./file0\x00', 0x40000, 0x3, &(0x7f0000000200)=[{&(0x7f0000010000), 0x0, 0x400}, {&(0x7f0000010400)="020000000300000004", 0x9, 0x800}, {&(0x7f0000011600)="ed41000000080000dff4655fe0f4655fe0f4655f000000000000040004", 0x1d, 0x2100}], 0x0, &(0x7f0000000080)=ANY=[]) syz_mount_image$ext4(&(0x7f0000000000)='ext2\x00', &(0x7f0000000040)='./file0/../file0\x00', 0x0, 0x0, 0x0, 0x104e034, &(0x7f00000001c0)={[{@data_err_abort}]}) 12:25:39 executing program 0 (fault-call:6 fault-nth:32): r0 = syz_io_uring_setup(0x4d4f, &(0x7f0000000080), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=0x0, &(0x7f0000000140)=0x0) syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_POLL_ADD={0x6, 0x0, 0x0, @fd=r0, 0x0, 0x0, 0x0, {0x194}}, 0x0) r3 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0) perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_io_uring_submit(r3, r2, &(0x7f0000000100)=@IORING_OP_SPLICE, 0x4) io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0) execveat(0xffffffffffffffff, &(0x7f00000002c0)='./file0\x00', &(0x7f0000000380), 0x0, 0x1000) 12:25:39 executing program 5 (fault-call:6 fault-nth:37): r0 = syz_io_uring_setup(0x4d4f, &(0x7f0000000080), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=0x0, &(0x7f0000000140)=0x0) syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_POLL_ADD={0x6, 0x0, 0x0, @fd=r0, 0x0, 0x0, 0x0, {0x194}}, 0x0) r3 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0) perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_io_uring_submit(r3, r2, &(0x7f0000000100)=@IORING_OP_SPLICE, 0x4) io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0) execveat(0xffffffffffffffff, &(0x7f00000002c0)='./file0\x00', 0x0, 0x0, 0x0) 12:25:39 executing program 1: r0 = syz_io_uring_setup(0x4d4f, &(0x7f0000000080), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=0x0, &(0x7f0000000140)=0x0) syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_POLL_ADD={0x6, 0x0, 0x0, @fd=r0, 0x0, 0x0, 0x0, {0x194}}, 0x0) r3 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0) perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_io_uring_submit(r3, r2, &(0x7f0000000100)=@IORING_OP_SPLICE, 0x4) io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0) execveat(0xffffffffffffffff, &(0x7f00000002c0)='./file0\x00', &(0x7f0000000380), &(0x7f0000000640)=[&(0x7f00000003c0)='\x00', 0x0], 0x1000) [ 1469.576780] FAULT_INJECTION: forcing a failure. [ 1469.576780] name failslab, interval 1, probability 0, space 0, times 0 [ 1469.579002] CPU: 1 PID: 11416 Comm: syz-executor.3 Not tainted 5.10.60 #1 [ 1469.580369] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS rel-1.14.0-0-g155821a1990b-prebuilt.qemu.org 04/01/2014 [ 1469.582620] Call Trace: [ 1469.583170] dump_stack+0x107/0x163 [ 1469.583924] should_fail.cold+0x5/0xa [ 1469.584671] ? create_object.isra.0+0x3a/0xa10 [ 1469.585570] should_failslab+0x5/0x10 [ 1469.586311] kmem_cache_alloc+0x5b/0x350 [ 1469.587120] create_object.isra.0+0x3a/0xa10 [ 1469.587971] ? __kasan_kmalloc.constprop.0+0xc2/0xd0 [ 1469.588927] kmem_cache_alloc+0x15b/0x350 [ 1469.589768] __anon_vma_prepare+0x281/0x4f0 [ 1469.590692] ? __pte_alloc+0x194/0x320 [ 1469.591457] handle_mm_fault+0x2be1/0x3570 [ 1469.592457] ? perf_trace_lock+0xb6/0x470 [ 1469.593252] ? hlock_class+0x120/0x120 [ 1469.593974] ? __pmd_alloc+0x5e0/0x5e0 [ 1469.594744] __get_user_pages+0x61d/0x1400 [ 1469.595679] ? follow_page_mask+0x1820/0x1820 [ 1469.596702] ? __lockdep_reset_lock+0x180/0x180 [ 1469.597612] ? avc_has_perm_noaudit+0x1f8/0x3a0 [ 1469.598508] ? find_held_lock+0x2c/0x110 [ 1469.599294] __get_user_pages_remote+0x1d1/0x860 [ 1469.600239] get_user_pages_remote+0x63/0x90 [ 1469.601086] get_arg_page+0xba/0x200 [ 1469.601876] ? acct_arg_size+0xe0/0xe0 [ 1469.602805] ? insert_vm_struct+0x1f7/0x340 [ 1469.603697] copy_string_kernel+0x1b0/0x440 [ 1469.604537] do_execveat_common.isra.0+0x405/0x670 [ 1469.605492] __x64_sys_execveat+0xe7/0x130 [ 1469.606327] do_syscall_64+0x33/0x40 [ 1469.607032] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 1469.608029] RIP: 0033:0x466609 [ 1469.608647] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1469.612472] RSP: 002b:00007f7f315af188 EFLAGS: 00000246 ORIG_RAX: 0000000000000142 [ 1469.613921] RAX: ffffffffffffffda RBX: 000000000056bf80 RCX: 0000000000466609 [ 1469.615291] RDX: 0000000000000000 RSI: 00000000200002c0 RDI: ffffffffffffffff [ 1469.616679] RBP: 00007f7f315af1d0 R08: 0000000000000000 R09: 0000000000000000 [ 1469.618049] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 1469.619429] R13: 00007ffe8cd6fa4f R14: 00007f7f315af300 R15: 0000000000022000 12:25:39 executing program 2: r0 = syz_init_net_socket$802154_dgram(0x24, 0x2, 0x0) r1 = socket$inet6_udp(0xa, 0x2, 0x0) setsockopt$inet6_MRT6_ADD_MFC_PROXY(r1, 0x29, 0xd2, 0x0, 0x0) clock_gettime(0x0, &(0x7f00000009c0)={0x0, 0x0}) r4 = socket$inet6_udp(0xa, 0x2, 0x0) setsockopt$inet6_MRT6_ADD_MFC_PROXY(r4, 0x29, 0xd2, 0x0, 0x0) r5 = openat$bsg(0xffffffffffffff9c, &(0x7f0000000bc0), 0x0, 0x0) setsockopt$inet6_IPV6_PKTINFO(r5, 0x29, 0x32, &(0x7f0000000c00)={@rand_addr=' \x01\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x02'}, 0x14) recvmmsg(r4, &(0x7f0000000940)=[{{&(0x7f0000000140)=@can, 0x80, &(0x7f0000000340)=[{&(0x7f00000001c0)=""/75, 0x4b}, {&(0x7f0000000240)=""/211, 0xd3}], 0x2}, 0x5e}, {{0x0, 0x0, &(0x7f0000000cc0)=[{&(0x7f0000000f80)=""/145, 0x8f}, {&(0x7f0000000440)=""/179, 0xb3}, {&(0x7f0000000580)=""/26, 0x1a}, {&(0x7f00000005c0)=""/181, 0xb5}, {&(0x7f0000000c40)=""/60, 0x35}, {&(0x7f00000006c0)=""/218, 0xda}, {&(0x7f00000007c0)=""/147, 0x93}, {&(0x7f0000000880)=""/25, 0x19}, {&(0x7f0000000380)=""/1, 0x1}, {&(0x7f00000003c0)=""/24, 0xffe3}, {&(0x7f0000000400)=""/25, 0x19}], 0xb}, 0x5}], 0x2, 0x3, &(0x7f0000000a00)={r2, r3+60000000}) r6 = openat$tun(0xffffffffffffff9c, &(0x7f0000000040), 0x0, 0x0) ioctl$TUNSETQUEUE(0xffffffffffffffff, 0x400454ca, &(0x7f0000000680)={'ipvlan1\x00'}) vmsplice(r6, &(0x7f0000000b40)=[{&(0x7f00000008c0)="100fb0ad", 0x4}, {&(0x7f0000000d80)="dcc3ba92021657db15bd5628e4f9baf5fa783738001c18d68ac0a4d1d5f98c7c18678bde6f935a15868680f38d4c270421497cf22322dd686ec4f8cc1b347772f5b0dc8dd9555089f5bd18aedf9bb67e17e10459d6a1499f31c48de39878dd03c6328fcf1258d50adc984d", 0x6b}, {&(0x7f0000000e00)="9dda5b07768bb1c48ac2b1990aafeb9c3add099ec942a19faf065fb66a41a4f18355fdfbd3617bcd4e032a249f0a3f445e3967f1ae287325446f0c7a1cd88240267887ef5c7edf97358ae83d6752a42fed37d87b81797c8f61a5cad51c41204ff8cc4f8f98c72eef149d82e9f80f34ae08f6eea48f0c", 0x76}, {&(0x7f0000000900)="e0a11a72a2bf21c7f491e83e180a0547", 0x10}], 0x4, 0x1) ioctl$ifreq_SIOCGIFINDEX_batadv_mesh(r1, 0x8933, &(0x7f0000000a40)={'batadv0\x00', 0x0}) ioctl$sock_ipv4_tunnel_SIOCADDTUNNEL(0xffffffffffffffff, 0x89f1, &(0x7f0000000b80)={'syztnl0\x00', &(0x7f0000001040)=ANY=[@ANYRES64, @ANYRES32=r7, @ANYBLOB="0001001000000033000000074fb700bc0066000002049078ac1414aaffffffff865b000000000507e62c34fb00010871f0e4a4892a000e81b732b8400a9ff094fb9937000d55f1800a02ce793e4a0d2502057575190109d893911243be8a0605f75703060cbd805a0f9771d85a0ffc0507e772e8c089000513422e89071aac1414bb4404636f861b00000003020752db244d930703e0010ba6825fde20dedeefc5ea44241d03ac1e000100000001ac1414aa000fcde07f0800010000001f0000000000000765000000", @ANYRES64=r0, @ANYRESHEX=0x0]}) r8 = dup(r0) sendmsg$BATADV_CMD_GET_BLA_BACKBONE(r8, &(0x7f0000000540)={&(0x7f0000000100), 0xc, &(0x7f0000000500)={0x0}}, 0x0) r9 = openat$tun(0xffffffffffffff9c, &(0x7f0000000040), 0x0, 0x0) ioctl$TUNSETQUEUE(r9, 0x400454ca, &(0x7f00000000c0)={'ipvlan1\x00'}) fsetxattr$security_evm(r9, &(0x7f0000000040), &(0x7f0000000080)=@sha1={0x1, "d033d9c398acadc1c9901cf5eebcc261abb20d0b"}, 0x15, 0x1) ioctl$sock_SIOCINQ(r8, 0x541b, &(0x7f0000000000)) [ 1469.671075] EXT4-fs (loop6): VFS: Can't find ext4 filesystem [ 1469.683242] FAULT_INJECTION: forcing a failure. [ 1469.683242] name failslab, interval 1, probability 0, space 0, times 0 [ 1469.684539] CPU: 0 PID: 11429 Comm: syz-executor.5 Not tainted 5.10.60 #1 [ 1469.685317] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS rel-1.14.0-0-g155821a1990b-prebuilt.qemu.org 04/01/2014 [ 1469.686581] Call Trace: [ 1469.686882] dump_stack+0x107/0x163 [ 1469.687288] should_fail.cold+0x5/0xa [ 1469.687723] ? create_object.isra.0+0x3a/0xa10 [ 1469.688264] should_failslab+0x5/0x10 [ 1469.688683] kmem_cache_alloc+0x5b/0x350 [ 1469.689147] create_object.isra.0+0x3a/0xa10 [ 1469.689635] ? __kasan_kmalloc.constprop.0+0xc2/0xd0 [ 1469.690195] kmem_cache_alloc+0x15b/0x350 [ 1469.690658] __alloc_file+0x21/0x310 [ 1469.691073] alloc_empty_file+0x6a/0x160 [ 1469.691541] path_openat+0xdf/0x2690 [ 1469.691974] ? stack_trace_consume_entry+0x160/0x160 [ 1469.692538] ? path_lookupat+0x780/0x780 [ 1469.693005] ? __lock_acquire+0x1616/0x5b60 [ 1469.693506] do_filp_open+0x192/0x3e0 [ 1469.693936] ? may_open_dev+0xf0/0xf0 [ 1469.694367] ? perf_trace_lock+0xb6/0x470 [ 1469.694828] ? perf_trace_lock+0xb6/0x470 [ 1469.695299] ? __lockdep_reset_lock+0x180/0x180 [ 1469.695836] ? find_held_lock+0x2c/0x110 [ 1469.696283] do_open_execat+0x10c/0x690 [ 1469.696722] ? __ia32_sys_uselib+0x40/0x40 [ 1469.697186] ? do_raw_spin_lock+0x129/0x270 [ 1469.697674] ? rwlock_bug.part.0+0x90/0x90 [ 1469.698148] bprm_execve+0x5b2/0x1b00 [ 1469.698563] ? get_arg_page+0x153/0x200 [ 1469.699018] ? open_exec+0x70/0x70 [ 1469.699412] ? memcpy+0x39/0x60 [ 1469.699782] ? copy_strings.isra.0+0x492/0x690 [ 1469.700286] ? copy_string_kernel+0x3ad/0x440 [ 1469.700785] do_execveat_common.isra.0+0x524/0x670 [ 1469.701348] __x64_sys_execveat+0xe7/0x130 [ 1469.701822] do_syscall_64+0x33/0x40 [ 1469.702242] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 1469.702816] RIP: 0033:0x466609 [ 1469.703171] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1469.705216] RSP: 002b:00007feb29e67188 EFLAGS: 00000246 ORIG_RAX: 0000000000000142 [ 1469.706066] RAX: ffffffffffffffda RBX: 000000000056bf80 RCX: 0000000000466609 [ 1469.706870] RDX: 0000000000000000 RSI: 00000000200002c0 RDI: ffffffffffffffff [ 1469.707674] RBP: 00007feb29e671d0 R08: 0000000000000000 R09: 0000000000000000 [ 1469.708482] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 1469.709286] R13: 00007ffde08160ef R14: 00007feb29e67300 R15: 0000000000022000 [ 1469.722681] FAULT_INJECTION: forcing a failure. [ 1469.722681] name failslab, interval 1, probability 0, space 0, times 0 [ 1469.725822] CPU: 1 PID: 11430 Comm: syz-executor.0 Not tainted 5.10.60 #1 [ 1469.727658] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS rel-1.14.0-0-g155821a1990b-prebuilt.qemu.org 04/01/2014 [ 1469.730886] Call Trace: [ 1469.731682] dump_stack+0x107/0x163 [ 1469.732738] should_fail.cold+0x5/0xa [ 1469.733840] ? prepare_creds+0x29/0x670 [ 1469.734987] should_failslab+0x5/0x10 [ 1469.735942] kmem_cache_alloc+0x5b/0x350 [ 1469.736922] prepare_creds+0x29/0x670 [ 1469.737844] prepare_exec_creds+0xd/0x250 [ 1469.738834] bprm_execve+0x1e3/0x1b00 [ 1469.739749] ? get_arg_page+0x153/0x200 [ 1469.740704] ? acct_arg_size+0xe0/0xe0 [ 1469.741637] ? open_exec+0x70/0x70 [ 1469.742483] ? memcpy+0x39/0x60 [ 1469.743265] ? copy_strings.isra.0+0x492/0x690 [ 1469.744375] ? copy_string_kernel+0x3ad/0x440 [ 1469.745446] do_execveat_common.isra.0+0x524/0x670 [ 1469.746595] __x64_sys_execveat+0xe7/0x130 [ 1469.747616] do_syscall_64+0x33/0x40 [ 1469.748491] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 1469.748604] EXT4-fs (loop7): mounted filesystem without journal. Opts: ,errors=continue [ 1469.749678] RIP: 0033:0x466609 [ 1469.749705] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1469.749719] RSP: 002b:00007f4e87c42188 EFLAGS: 00000246 ORIG_RAX: 0000000000000142 [ 1469.757576] RAX: ffffffffffffffda RBX: 000000000056bf80 RCX: 0000000000466609 [ 1469.759250] RDX: 0000000020000380 RSI: 00000000200002c0 RDI: ffffffffffffffff [ 1469.760949] RBP: 00007f4e87c421d0 R08: 0000000000001000 R09: 0000000000000000 [ 1469.762636] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 1469.764346] R13: 00007ffc014a64bf R14: 00007f4e87c42300 R15: 0000000000022000 [ 1469.768667] EXT4-fs (loop4): mounted filesystem without journal. Opts: ,errors=continue 12:25:40 executing program 7: syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000040)='./file0\x00', 0x40000, 0x3, &(0x7f0000000200)=[{&(0x7f0000010000)="2000000080000000060000006a0000000f000000000000000100000001000000004000000040000020000000e0f4655fe0f4655f0100ffff53ef010001000000dff4655f000000000000000001000000000000000b0000000001", 0x5a, 0x400}, {&(0x7f0000010400)="020000000300000004", 0x9, 0x800}, {&(0x7f0000011600)="ed41000000080000dff4655fe0f4655fe0f4655f000000000000040004", 0x1d, 0x2100}], 0x0, &(0x7f0000000080)=ANY=[]) syz_mount_image$ext4(&(0x7f0000000000)='ext2\x00', &(0x7f0000000040)='./file0/../file0\x00', 0x0, 0x0, 0x0, 0x104e034, &(0x7f00000001c0)) 12:25:40 executing program 4: syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000040)='./file0\x00', 0x40000, 0x3, &(0x7f0000000200)=[{&(0x7f0000010000)="2000000080000000060000006a0000000f000000000000000100000001000000004000000040000020000000e0f4655fe0f4655f0100ffff53ef010001000000dff4655f000000000000000001000000000000000b00000000010000280200000284", 0x62, 0x400}, {&(0x7f0000010400)="020000000300000004000000", 0xc, 0x800}, {&(0x7f0000011600)="ed41000000080000dff4655fe0f4655fe0f4655f000000000000040004", 0x1d, 0x2100}], 0x0, &(0x7f0000000080)=ANY=[]) syz_mount_image$ext4(&(0x7f0000000000)='ext2\x00', &(0x7f0000000040)='./file0/../file0\x00', 0x0, 0x0, 0x0, 0x104e034, &(0x7f00000001c0)={[{@data_err_abort}]}) 12:25:40 executing program 0 (fault-call:6 fault-nth:33): r0 = syz_io_uring_setup(0x4d4f, &(0x7f0000000080), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=0x0, &(0x7f0000000140)=0x0) syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_POLL_ADD={0x6, 0x0, 0x0, @fd=r0, 0x0, 0x0, 0x0, {0x194}}, 0x0) r3 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0) perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_io_uring_submit(r3, r2, &(0x7f0000000100)=@IORING_OP_SPLICE, 0x4) io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0) execveat(0xffffffffffffffff, &(0x7f00000002c0)='./file0\x00', &(0x7f0000000380), 0x0, 0x1000) 12:25:40 executing program 6: syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000040)='./file0\x00', 0x40000, 0x3, &(0x7f0000000200)=[{&(0x7f0000010000), 0x0, 0x400}, {&(0x7f0000010400)="020000000300000004", 0x9, 0x800}, {&(0x7f0000011600)="ed41000000080000dff4655fe0f4655fe0f4655f000000000000040004", 0x1d, 0x2100}], 0x0, &(0x7f0000000080)=ANY=[]) syz_mount_image$ext4(&(0x7f0000000000)='ext2\x00', &(0x7f0000000040)='./file0/../file0\x00', 0x0, 0x0, 0x0, 0x104e034, &(0x7f00000001c0)={[{@data_err_abort}]}) [ 1469.959808] FAULT_INJECTION: forcing a failure. [ 1469.959808] name failslab, interval 1, probability 0, space 0, times 0 [ 1469.961128] CPU: 0 PID: 11453 Comm: syz-executor.0 Not tainted 5.10.60 #1 [ 1469.961882] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS rel-1.14.0-0-g155821a1990b-prebuilt.qemu.org 04/01/2014 [ 1469.963172] Call Trace: [ 1469.963471] dump_stack+0x107/0x163 [ 1469.963911] should_fail.cold+0x5/0xa [ 1469.964346] ? create_object.isra.0+0x3a/0xa10 [ 1469.964862] should_failslab+0x5/0x10 [ 1469.965308] kmem_cache_alloc+0x5b/0x350 [ 1469.965781] create_object.isra.0+0x3a/0xa10 [ 1469.966283] ? __kasan_kmalloc.constprop.0+0xc2/0xd0 [ 1469.966848] kmem_cache_alloc+0x15b/0x350 [ 1469.967326] prepare_creds+0x29/0x670 [ 1469.967765] prepare_exec_creds+0xd/0x250 [ 1469.968250] bprm_execve+0x1e3/0x1b00 [ 1469.968670] ? get_arg_page+0x153/0x200 [ 1469.969129] ? acct_arg_size+0xe0/0xe0 [ 1469.969582] ? open_exec+0x70/0x70 [ 1469.969991] ? memcpy+0x39/0x60 [ 1469.970366] ? copy_strings.isra.0+0x492/0x690 [ 1469.970877] ? copy_string_kernel+0x3ad/0x440 [ 1469.971400] do_execveat_common.isra.0+0x524/0x670 [ 1469.971970] __x64_sys_execveat+0xe7/0x130 [ 1469.972453] do_syscall_64+0x33/0x40 [ 1469.972874] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 1469.973456] RIP: 0033:0x466609 [ 1469.973815] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1469.975895] RSP: 002b:00007f4e87c42188 EFLAGS: 00000246 ORIG_RAX: 0000000000000142 [ 1469.976772] RAX: ffffffffffffffda RBX: 000000000056bf80 RCX: 0000000000466609 [ 1469.977584] RDX: 0000000020000380 RSI: 00000000200002c0 RDI: ffffffffffffffff [ 1469.978399] RBP: 00007f4e87c421d0 R08: 0000000000001000 R09: 0000000000000000 [ 1469.979220] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 1469.980032] R13: 00007ffc014a64bf R14: 00007f4e87c42300 R15: 0000000000022000 [ 1470.030244] EXT4-fs (loop6): VFS: Can't find ext4 filesystem [ 1470.035706] EXT4-fs (loop4): mounted filesystem without journal. Opts: ,errors=continue [ 1470.053038] EXT4-fs (loop4): re-mounted. Opts: data_err=abort,,errors=continue [ 1470.070777] EXT4-fs (loop7): mounted filesystem without journal. Opts: ,errors=continue [ 1470.084642] EXT4-fs (loop7): re-mounted. Opts: ,errors=continue [ 1482.772677] kmemleak: 1 new suspected memory leaks (see /sys/kernel/debug/kmemleak) 12:26:00 executing program 1: r0 = syz_io_uring_setup(0x4d4f, &(0x7f0000000080), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=0x0, &(0x7f0000000140)=0x0) syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_POLL_ADD={0x6, 0x0, 0x0, @fd=r0, 0x0, 0x0, 0x0, {0x194}}, 0x0) r3 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0) perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_io_uring_submit(r3, r2, &(0x7f0000000100)=@IORING_OP_SPLICE, 0x4) io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0) execveat(0xffffffffffffffff, &(0x7f00000002c0)='./file0\x00', &(0x7f0000000380), &(0x7f0000000640)=[&(0x7f00000003c0)='\x00', 0x0, 0x0], 0x1000) 12:26:00 executing program 5 (fault-call:6 fault-nth:38): r0 = syz_io_uring_setup(0x4d4f, &(0x7f0000000080), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=0x0, &(0x7f0000000140)=0x0) syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_POLL_ADD={0x6, 0x0, 0x0, @fd=r0, 0x0, 0x0, 0x0, {0x194}}, 0x0) r3 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0) perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_io_uring_submit(r3, r2, &(0x7f0000000100)=@IORING_OP_SPLICE, 0x4) io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0) execveat(0xffffffffffffffff, &(0x7f00000002c0)='./file0\x00', 0x0, 0x0, 0x0) 12:26:00 executing program 6: syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000040)='./file0\x00', 0x40000, 0x3, &(0x7f0000000200)=[{&(0x7f0000010000)="2000000080000000060000006a0000000f000000000000000100000001000000004000000040000020000000e0f4655fe0", 0x31, 0x400}, {&(0x7f0000010400)="020000000300000004", 0x9, 0x800}, {&(0x7f0000011600)="ed41000000080000dff4655fe0f4655fe0f4655f000000000000040004", 0x1d, 0x2100}], 0x0, &(0x7f0000000080)=ANY=[]) syz_mount_image$ext4(&(0x7f0000000000)='ext2\x00', &(0x7f0000000040)='./file0/../file0\x00', 0x0, 0x0, 0x0, 0x104e034, &(0x7f00000001c0)={[{@data_err_abort}]}) 12:26:00 executing program 3 (fault-call:5 fault-nth:23): r0 = syz_io_uring_setup(0x4d4f, &(0x7f0000000080), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200), &(0x7f0000000140)=0x0) r2 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0) perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_io_uring_submit(r2, r1, &(0x7f0000000100)=@IORING_OP_SPLICE, 0x4) io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0) execveat(0xffffffffffffffff, &(0x7f00000002c0)='./file0\x00', 0x0, 0x0, 0x0) 12:26:00 executing program 4: syz_mount_image$ext4(&(0x7f0000000000)='ext2\x00', &(0x7f0000000040)='./file0/../file0\x00', 0x0, 0x0, 0x0, 0x104e034, &(0x7f00000001c0)={[{@data_err_abort}]}) 12:26:00 executing program 7: r0 = syz_init_net_socket$802154_dgram(0x24, 0x2, 0x0) r1 = socket$inet6_udp(0xa, 0x2, 0x0) setsockopt$inet6_MRT6_ADD_MFC_PROXY(r1, 0x29, 0xd2, 0x0, 0x0) r2 = socket$packet(0x11, 0x3, 0x300) r3 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a) ioctl$sock_SIOCGIFINDEX(r3, 0x8933, &(0x7f0000000140)={'syz_tun\x00', 0x0}) setsockopt$packet_add_memb(r2, 0x107, 0x1, &(0x7f0000000040)={r4, 0x1, 0x6, @local}, 0x10) r5 = socket$packet(0x11, 0x3, 0x300) r6 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a) ioctl$sock_SIOCGIFINDEX(r6, 0x8933, &(0x7f0000000140)={'syz_tun\x00', 0x0}) setsockopt$packet_add_memb(r5, 0x107, 0x1, &(0x7f0000000040)={r7, 0x1, 0x6, @local}, 0x10) sendmmsg$sock(r1, &(0x7f0000004e00)=[{{&(0x7f0000000040)=@rxrpc=@in6={0x21, 0x4, 0x2, 0x1c, {0xa, 0x4e20, 0x3, @private0, 0x20}}, 0x80, &(0x7f0000001580)=[{&(0x7f0000000140)="185694b89c96276d534a65c0a854094c248fb15c3d1e54767a0f77db177b416dd85f6091cc5c007c7b06a8f587484bd531227d72ed8286ed85ab00dc6618fd47a91d4d050ebdcd78a743d81b22aa16aab4ee6b5170610c1e38b62154f1897d9095adbd51aea2adaaf2e7bbbaec4e7bb1e682a544b5500eac63c56a2473c48925828b13081ecf89839ea2e1933e69910ccbd97bad308162541f93da07", 0x9c}, {&(0x7f0000000580)="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", 0x1000}, {&(0x7f0000000200)="b01b4282c34229f42eff52d961edf37b23fd2c909504aa869583b06714c943fc1e75c1509442f81894c2e2a67835cb7d752ed52cfcdbd906ea4078244e0e35e1cc3441b575ed67a22d43fa8346e9258d2de16bf7f9bd43aeb15a7cde1c3b54aba091704aee39f82969255d366cb0d25537d466e763df7c8241a802c10e629bc7a8c61f8d7ab1d70f107122d489aa6dcab4937c0b292a167eb00ed0edca69a9f00495d8cb6a7236afd322a3a68d35280b77333bf1c5b363739f6d648a5e20087c44", 0xc1}, {&(0x7f0000000300)="6055292959a7d934b8a4f98f04e89638bafd7e44e169cf19ab945fd94ae96d24385bb2030c682eb63f695fb204fed0a3c8392a31876f9c784016aca317bceb24b5adf15eae289944dfc5b4bba1", 0x4d}, {&(0x7f0000000380)="cb0ea6d625d3088e7a2c817523036f5a70bbeb307f58ee26e83f98d1abc1c3d5f998740b5a2cc11c153e26807375afa4ef0b6639099a7616c009278a08a684d9c1ed2d0950f7200a8065bc38aac8fab33c9820119e17b196ac1a81a48f7b207edacb39e6", 0x64}, {&(0x7f0000000400)="98d23df6cf1c230f63d9fb13e689d1a4d0a8f4ccd4fba983b1f07539686818bc79b5b214cc2c9eff616718c23816611521912c2763d69078ff8605b2c14f9128349984614dcf4cf77fbfc3f2a4b9b15be9545831ca25de2ba7152647cfa881ff3bb47170243a300013bec900c9b65f7ae4ec6dd4b82e075ae296c4fb3eaa67bbc39eb97eb4069602c471feea6dce36cea659c5b8a42427d4ba22139d84c6aa551862c06254fd615b586e697d9336ce5b263d935e88664aa918ccf5120cfe625aa3d59d0664493566f6e50d1ce256697824ab424d11a8cfcf3c9d0407", 0xdc}], 0x6, &(0x7f0000001600)=[@txtime={{0x18, 0x1, 0x3d, 0x80000000}}, @timestamping={{0x14, 0x1, 0x25, 0x1}}, @txtime={{0x18, 0x1, 0x3d, 0x1}}, @mark={{0x14, 0x1, 0x24, 0x5}}, @txtime={{0x18, 0x1, 0x3d, 0x1}}, @mark={{0x14, 0x1, 0x24, 0x8000}}], 0x90}}, {{&(0x7f00000016c0)=@xdp={0x2c, 0x4, r4, 0x34}, 0x80, &(0x7f0000002880)=[{&(0x7f0000001740)="405c3ea9fbc258071b84b88f8c18e76fb1d1d9967a07a6de9f30d1ed58dd1bbeafba77ca443993be2100770ec7008d8227d86dc4512dffc4365bc6957b34545c2d8245106fb77b5e60621eace9294057d2ab7fe2dc76084e2f7643b3b70b283ca1601c508e1323440d91fc2d03ab42a3ce233e73b3225134088afca9d0bb654f263fec85172304b3f99295b7d8a897a83bee7131a443aad8a6566b6104eb4fefec21ed63b24f449a36388672834bddb71fc2bbcc38c82d027f843d053417e78f013325a8e76428eb32c11c2f2a752f3a208c375b2a61ec132091d5090d02deac6168d65187234539116df80874969cb32a16fef69f434485d9b38227ea0dc6ef444aea44a67333921a25abdf51893f2b571faad4dfa1dae3012d36dc4a0ba59046cec5dde234d1075aad6c28aa7e74601beb4eec5cc81fe6d4301329393391ce5743d2716702642a00c3f9eac081b40dfd0e300748036fdaf08a7ebb2da442e8eccc0062b7578b745a5c4900635afc6f2872a3e02553ef6c7e433af945128bc646258e5d39311ff03cd34d140e66c9be5ce1fd186538238e96c52be1da8a9e5cfe02bd9df6f17899be309c471348acf2331eae157ed6e891d9e6167f077d9c0c6c2b0d679bfbc3273064f5172b6ee17c7fae24169981a41273ce6032affc6b9b720e9b9318150731a486a300a6563e62cbab92ec7d68e47a9d8beafbaec756c4bf0525b35a6b6d1db5680a63b31dcc5ffe799d25b2732468f416065c9bc51b2acd9a71e6fc3648593fb6448b45e791173411c4c901bfdb7f2dd198bce295cac3f7453ca648474a496a8053fddd56c8f5b5fb2ebb23be39aa74cbc07cc62760f4693bb82ccaa10b8a5ea81a0ad31514f3bac6627b6a5e352aa42b49a1de7f18ac29a03ce819b911106df65201f9d294b39fb4eae08b38f5564c0369c94963c2f640a1f16cd0e19783f1b471150b1be271087de59913ff40a80f01e354533c854d53506f3d29a11af523d614192b49206a2faa9fc189ed30ccb12d0ec6d291bd07bb6c343c3a9d359da4088538da47a4a78ae3403fd7c2edad870fe8a8ebf5462b84b90f443bc1031bb323fe6d478c7f76877ad15d7b886eeda1f26e3f7a9aadce932421848ada5f5629114631d2cb003bb705f59b48e94968eb14c0528e2494f2800a634bec47f9eded25d90d527f48f5daf63cdcea8ccc24fdeda73e0ba4450c3fa03fd52e575153d020aa11050552b713141097cea4840cb89584641679a65ac27fa344b03b658fd81153f41f52df3497788d98b1399fe641801f8b348aa1ecf6722551e2ef63f61945ed294afd70bf0571a83a6f40bc870e6f709fba4d04cf3d08df9df09e749a04580146af4fabadc0f7309490180e99395ecf5a2bb7106690be08d8f3a9dd6ca0ff421c2c9b5019e9b88599755d2ccb63d0ea60c378a3a2a9478036314f5cacdd2456fcf197e8794a32ce8d1a2453dc02c9a305ebe498eba295e16d593fb09f52960999ad5b172d7cb73bbb062eedd2258a43f62d3d66724952990db14f1aeeef8e1566a9cc86609e12f6e0b4d1c29679d82188d5a94408faffaa974758aa818d07505b5bd8044486dcc6f14952bf456ad77c46d72030205285fa0cce16fec4c2fc20ca4ca790da6c8648a5048bbb936170cd3689e916d779d41ed5dffc820a67947efde2fd7f57e7252d49101c99d8c2d9c1b450abf2dafbbd9e72db7bcb1a30287a43b4ce41be959f8449fb26c919c54df9dfc5c7fcd54efcdf494ea2287c8f8c5fc92dc06aaf1a7a9e9311e9ff296f09c88b7fef9290bbda25557b0ce11e80d4e5f57ba5e9ab208fe0943671f86badc079a93876e53bc9b96ff82f351a77b317e3cf4e0b4ec89542576b5a890b62cc605cdc2b6b63d299b0f475593bcc92dbabc21d3ed2e4f056899270d09ffca2fed837005beff70a19ae5732a2b7ed76ba774669155420cc82cc5d251fb6454b73fb47caf609a69768a86151cca8a9e956b1084e11d75ce725472042f5187fe9d9824fafeee19a11e4cfd134edfd78a9b93a7e20b5d1def0ceb6b00862ac207ff70fd28aa1270abff727fa5ba0617069f86ceac7b9a36305ee0b556c17608783b0b58d91bd5a28033d39e3348561b6a12a19421932a5fc934ddb959182ed8969fcae189453ceac61213fcc818274df186e5c321389f0af9702641595963794f08df0749f437f7426b4ff2dd132aa0cfcc4af0728f9e424a533fa4e00103ece54d583710f865f72df879d1a4a1437f5ab610e7d89787b844c8b1f4a69d386072f62c50b8596e1758e38d6c0c3c02c4bdac655d428984469413de83b7256f594ef405d7c314dae3fc2616439b665cf5597e27d94f4260d36234fa3646880b97acf7499a8368c784aa539be55d19110076f77eee8f87b75413923dbb08505af93f181dac354c9f9dad9ef784df8600c2dae87476a2e62a66b909cbe1943ae60a6db4075b2c2e8e9c3b58be818248315244980d17fd9394e34948985dfe8bf40f41712f84fcb03497d76686cb1758d05f8f0fe7bacfa92d32594864f88dd9d1c4da1f2301083be7bcaaa55a1d6f0106252c5180834296d843e0ac6384929f8fcc3d24abd8fcdf0f5b972a213449ca238ba5de0354c9ecff10e8c5a25302c34136164b42a9afc780a0c4027b174c676b4a4880448bb862b7f8c951e196af635b897f89b40ff0d9e7e7f32faace06ba7716c4706232ccb3d9c77d504b9cf9440713222f83f5ac05f8ae0d0d34319bda44c4b567a36b7e6097169a02fcc2f25708eb20547afef44e873805be77a0e523df3254d69c744d9a8e9c55da54d9e6cafa658a1a9ce126138093dd439fd0fe5ec584afd8d49c4c49944d0e9fcab2b0d3d02fefdccd0806ebbd45f19645abacce538e9ad529118049de1394b2c19751421ae84f000d0054e229c931dbb81aa293e0d86450edcf8ca262281b9b6ab0ded5197e5027aa59af28396887b44aa6dcf8aaf9deeeb8cd7c272ec89074e38a4c7892ba2b70cf9caa06c7b5230cc27a6b3a0142bd0c1e73e23ed28a20fa43c460bfd0aa5327879e7ff069fa641954bea9da041b55ba8a268f8f1c324b32d48adf0a976c542ca7732b32baf7cfe721f04e3cc351d933175c8d23be4d76bef1eadec43ab7cae1b85bc4dc87effa176ef90ef51bc69795a1bd7888851b5bd4323ec6548d1e266aae5f99287e8ac27c1df03033c043e3a1f3ec3396e6e2c8d779d658f9f6727be97357f503ce3ea0aa8527dbd1d447176ecb5c9fbe4fd0d83f514e0c07c782a6b8816e5e1fe77bb29c37911d6214e5c0c386bff68f48e2d2fdbd5c55889e5e8c7bac19fe0b4ead70ca2cecf900375e166d3fa7fd340b82a110123922c0f7fc6b0e63a58da0bef63f27400ad32cc821ca032b8f45c749210d97f550443d0eeb61e01d26bfc9fb8d3f7b07a2d566d50cfbd3bada2558444aa6c79df74e39964130019376f58eeab35c6c671e54f2963d4a677171602a5393cd624a34b38f72d9ad1becb7241dd4825fe1c64e423a1e83381f6d60ce7cc55141ebae1e6c5a7e9b504b9592976060884b06a248e94d6b419e989d7b1362fffbdb1e0917443746e27367979fe23c34e3f00d0905a0adcebbda1f44e1c88c2a68319d6d777ee4bd049b925dbfab16f6558f5fe03671db3a2c59332cdef8ecbc4d4617661e6c07d79f006db4bcc37723262662cebbbb1b0d4e275107f85382585d4d4b8cddc0c930173ae3653683ba79fd28f6cbcf07765f92d1941fe3ff5bc443a8f0bea14cee151721d71380616f907afcc5a2a7f42515633c4faf99c921f207189a3bd687eee53524a63d59f26ec0cc0ee17e6aeff923753ff8cf0f9e24578b384fe6b386f7bcb1ae19f41b7837ef76a08fdca56ec4c23fe5bb9fcef5f698057c93b6370e22d461aacfaded613877396aa6aa57f87075d455da721521b392bbbb1f91714380b9bf7e461bc8bdce5abfd30d0e5754079910258ab424c3a089bba2e1f7e7d9eb55999d827b19be507c147fa0966c6c9aab449a4d5fc63820324239c18ea68afef960870792c60777677eb9640796423c5bbb40f449e843aa69fbfd904927b5a18d8927aab90cfc21c0f8f7c26358af95105775f63004f4d38b522c7a34d7c6cef8f64b52f26e03e6c776dfd091dc0361d3e5eab8871a1fba427368ba11f8208273a1eee859ada517cf72d1358724e6cf4d0b92644e3a8dfde171ec112a913be7f59e8393ae5cb05d1a86a2785ac9d05f1986c4d99949e2b158ed0ea5e020e26da0241ff2d24f98e173c78074469badd32fd04565a9c345a5731e0108adf8919ec1b5d5f95177a41c66ff28223de673e9cdf416efb77be3016228221d31c1d6c6e1363c1241d842a822d9ad79304a11e87e9da90af3398683a1ce002dcf02c6eb35fb903fefe73698b87d48ec0a77f3e64087f92482a628f773428cc27b4bdd991edf22e8943c14889e59f906a5e9c5846d57986c8c8199168a02966539e24d6ca9bbe9d3a5db1beb291aa20cb0a6a300fb52397831fb5ab0241d8e45eefdd3eaf0e4439f654a8132d068e63775cd133dc0aaf2f6e0bd2ffd651cbe5e1347fe16d677ff079ad1e4f7fb1a68b7e022079b7ac7229387ada87490c3875129a7a7e5664b5de86a0aa9733c45a2b14dd455f7d0ec73cf9cab618ae88c61bc5ade8a9308547672bfac22066181ff7f738de1b513f1aea508ef9bfb97af3f1ed5b4de20ab7c0e1b0b3fa3c28812a80ec2a096a8f6c6e1dbd137cedaadaf6d53a03e6cf65a196d56e85461fdbd0c64aa85c7733cbf8bd60255019ac944739cda6d5e08ada5bede14ed307483b7564f9b19df5376a94469d70d67dcae34414bf0ee7fd52b1dfaea03863ad2153af9a33cd1a67cf8b133f939a9de0b4e3d62dc30b34ba59c617269cc3e3972c23eed7195ec312a3f9641d88d77a8e4fb2ece092f6f2b7e90b6f845bbf3dcdee0e66cdf21b6c2dd0e6e5c7e3f1c9fa5704a2794ad8fb6f10081c62a25018b847feb70a4192d3d098bcb40f3d4f289b4fbe6950fb4b97e66d999bfd4dd6d31b330fdb9c1e8e1419dd79eaab8b4bd3daa13784da32a00af75d75397955cf1b94cb6723a2799d8a613e7b77055a754edf0fcaf86b8982fb50e46cd06c9c41b6a1942a23e23a3ff5e119cc69f7f171a3df9e51bbe151293175644f295752779f91e01b87c95cab0d147c6a1ccae9580d041e6abe963815cf09634ace556abbf40100f77d1ba8c3af05843c8b705dd4d0cbe73d34b27723fa891a2f44173d910d076c3cb764ee6b8b731e6246a96ec726730e604cbbffce1b9ca490ec92a7cb99c31834527c4af0934afebf85f64d23d9cf368e38cd21914042f76ca5830241a288ade8afc34555422b7fc62cb3e5c205c4bb89d79b6831701180a601ee0592f83bc9564ccdc7581ccbc37749ca6b58a8d2f284dbc17d520df68645f9db25396a235953dd0f5834c184ae0ae862b1cfaaa2ddd79f99b4131809b7a230558bfb20e612d424248066c75acef3340d6667f8cf501cf13ea8e7289e119f14d123eb34c346b771b2d88a084dc6a36913a7e1705e4a5a0f78b7b8f8f01e332afd7a9c53492c9f953e83621f3999d0b9eb137d38e2abdaed5356abaa7e6b26d260dee31bf0a6b8047e5ad39b2d5513eca53c8dabb99cb375850ac34b164d794f27f842ce6eae83c5456d9cc3520739d78a027d4963a75c49118b31eee5fbde6d262eb0d1fa23e6296b9a3cf80fcd0bab381da021576b831672cf790f9cf296ecc877c85a32e7aa60f1f9", 0x1000}, {&(0x7f00000000c0)="0be4c48ac6802147eeb536dec3ba1005d632fca5", 0x14}, {&(0x7f0000002740)="97e15852cedde980dedd6c0cdcccef34c128fccc28e853a4d28dca6c8ab3ca88f2a195e1e02c", 0x26}, {&(0x7f0000002780)="c66cb26ea4b3976fa47c25206f174d35f469f081e339832cdf2cb90fccbc000518fc4aa01cf6c5d6fbca91a353e28166c2001cbee3c3753bc56efc88154219376b95398573c97b6314250b1fc17eb303a66a3d562dc91fcc0dcebd28934b8cc44bd41ec4d282c3ba41629955a78b48ff7c7e6b3e1cdb1f8cd5237dd13018d7c8806a4338800547ecd96c1afd5b3ca6279dd68f4145f77f495b2478f1d53b377322874ecbfbff7cb9375798a08e94c613", 0xb0}, {&(0x7f0000002840)="e9ca2aa88e9323e804dd5aec2dff39405a8f9d3b6892336560bf15c9e8a5f7766b565f", 0x23}], 0x5, &(0x7f0000002900)=[@txtime={{0x18, 0x1, 0x3d, 0xffffffffffffff01}}, @timestamping={{0x14, 0x1, 0x25, 0x3}}, @txtime={{0x18, 0x1, 0x3d, 0x2d3}}, @txtime={{0x18, 0x1, 0x3d, 0x1}}], 0x60}}, {{&(0x7f0000002980)=@generic={0x26, "2b7f2398b97e514db98f437b79314a129d986357c75bb7009cef60c6f149ec798be210ac3e345cd98c0c75b1baed3762d9b2874a11d870d9861a1f29d9dae9d815673070aa62ce8e8d6653136508b19c2d4bd1da9ceac48093af8e3739498b8589d981f6da77a3bd26996fe9fe0d6510bbe99e635fa541af07450971b315"}, 0x80, &(0x7f0000002e00)=[{&(0x7f0000002a00)="a3e69213208d3a6ae6e49b35892908", 0xf}, {&(0x7f0000002a40)="67bed5d34f738c6fab9e607a7540f856c1a2bf7eda2a244878ce9d7fb9a299f5e82dae16ef23713cd5f27429c21b272bb75f7775e3444209a8f2c829703aa64f60399d5d0ceaec5879d2fc8368d0227c8179e99fc3eb96c552beb2be3c00ec328356fa9a5d9c425084c0b0582cfa84f6ba0cae3fc6e365c04a8e8a8cc771ba8481f51aa7eb76eedc6a2a7656b1a3481b52213821e3de16fdd00da68991b942a9e3be06ff23eece0388ca", 0xaa}, {&(0x7f0000002b00)="8ff456eda45f0d47421cf501c23d7de7f4fadc351699167f08e8f44634387fde123e8c0a8f781703540a5c5ab9a3d2beceebe75b5bdd4152789ba30ed92110c0019bad00c23875dd41d40256695461159b0fbfa575d695c900d8e36db177a360748b3530da8751366399978e6d1c137d1baa35acef6cde4be7f9e1710b1a2a430577b7b9baaf71d031850b917d7ebd293f9a926ad43b9602b868c0dbd90aa0f1f1a4e988e13ee44ae6570756d40fa3ab05a6b1bdc77068e9", 0xb8}, {&(0x7f0000002bc0)="b627f9ea315f883bfd7e55765395", 0xe}, {&(0x7f0000002c00)="1355776b6b0ca7df853657cd5a064dc427e977b9c7aafbdf109356107eaa543c2a403f3f569bbe87a8817c5a5f1f497e9f64ab9856166bf3ad217f5c4a08f478e7e74d5b0212e4650a14d7eff11adb067eedbca080ad792e83cf285afa81193e58d1d0e335da99440a2c6877c9455449d34485e36b0c1f4434e7e9b7043288da71b3d4980b13731ed9485295061aaeec2f7ebb918646728e34023ce8dc65e19409dec3743b1076fab06e36e06e9ce32314f6f69574f522d86a16054d35e5074681c604c8a6651df869c1f57b42e49b7d712d57cdcc262ca58a617500e89d04f564021396ee9c0ca85eb48d58d75502a5b7", 0xf1}, {&(0x7f0000002d00)="a35b68537d464a930e6787dd54a7b38dca547068ac954599c5d1c9ce653d17929297c30756fb1a9c0f63af408d515ab25f170b347d6ea040fdd6232639aea81061d21c3771484467f1257107315da0ab858999c2ed477f1c9e9a8db4293f1447e0f9cdf0144adbba54b2646a910ab52e5b052e6f492aba9f48d6ec44b5ae83742b512cba7d2c10468dc71561ef5dd63f2615f0de4a340ad88607bb53fb546b648d6100187de79095b1fb1b712aac66af8c627b88284a8244d0d1ab15cd89bdd5b2c71b0672c7728beacbf69cc6e6b5c4815b517db5ac697ee8d8f4e068928706635465", 0xe3}], 0x6, &(0x7f0000002e80)=[@mark={{0x14, 0x1, 0x24, 0x7}}], 0x18}}, {{&(0x7f0000002ec0)=@sco={0x1f, @fixed={'\xaa\xaa\xaa\xaa\xaa', 0x10}}, 0x80, &(0x7f0000002f80)=[{&(0x7f0000002f40)="b66c0863872223cce72faf", 0xb}], 0x1, &(0x7f0000002fc0)=[@timestamping={{0x14, 0x1, 0x25, 0x2}}, @txtime={{0x18, 0x1, 0x3d, 0x100}}, @txtime={{0x18, 0x1, 0x3d, 0x9}}, @timestamping={{0x14, 0x1, 0x25, 0x1000}}, @txtime={{0x18, 0x1, 0x3d, 0x7}}, @txtime={{0x18, 0x1, 0x3d, 0x8000}}, @txtime={{0x18, 0x1, 0x3d, 0x7ff}}], 0xa8}}, {{&(0x7f0000003080)=@can={0x1d, r7}, 0x80, &(0x7f0000004240)=[{&(0x7f0000003100)="617a1958527815cb082ca88074adaa0af0a14dfdc4e29fa12cbe05ef80215d90c721261fc67bf4d941518835ebfaeb0e1a76a75138b7a3070c2e37cce10e13853040fd04fde7bd2322361d70b9d4fdd556647f37d8cde1398a526180c774c26d1c0590749190879f437b3ddff5ce1d6a0d514125404508babc656af19efa4acd12ccdbc1a66e72855296150672de4d9e349fb1312594b468aa90f34d1cf0a0a8411d57dc714152a086ac029c8a81faa4d8e891a729f827d6d9a9ead3e374931e0396fc7ac21686e6e8bbe2917b91df3e39a0f9d5c92379fcb64a09", 0xdb}, {&(0x7f0000003200)="a9df4c2867fd3deaf028f4bc1a6302510725fa4bd8888ab6e9b05047ceae3d9db20985d676d482bc1fecb32b44f00801bf4405aa1f0b2fb1b73aeb", 0x3b}, {&(0x7f0000003240)="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", 0x1000}], 0x3, &(0x7f0000004280)=[@timestamping={{0x14, 0x1, 0x25, 0x4}}, @txtime={{0x18, 0x1, 0x3d, 0x2}}], 0x30}}, {{&(0x7f00000042c0)=@in6={0xa, 0x4e21, 0x400, @initdev={0xfe, 0x88, '\x00', 0x1, 0x0}, 0x8}, 0x80, &(0x7f0000004780)=[{&(0x7f0000004340)="cccb9643321722db9673455b", 0xc}, {&(0x7f0000004380)="ca66a56c7da0cc009f2eaf93219394d184be67681d208c3393c87a4049d21df4bb16d7ae04bc8125ee4d277e9c5484b1ef56dd63e6c55114f1ebb0d5ee2de892664f3493b3cda608fdedde323e891c7a0de47a58783ff825d1471c1aae28dd0d0f801a942e34b40b208fd2ee0e5280f1068ebfe65f221eba97d59701d0140149006334d3f48d0a803d51f5a794e95cb7f885f7a6ef3576c0ab82e7e6", 0x9c}, {&(0x7f0000004440)="649b7a420ed8d7bd2e7c71fbdb50b28c6b80de12a875668b49c1d99fa8bef007af73546e3136a619aa97112918ce9722f2029db89bb45763b6b5bf28913282ea1afb819d84d5f1094d2d7d6c7651b2968d4c87006ccb7bba3666674cb03ba35a57fe090a5b122e10fbc8d60801672e097404733249c5687cef9b184906f4879ad00272311b90f4f685af0b2187659c0d34aeafc90950ed894c074318742444f1434328125513a8222449c8a370861c28faea1d78cdcbde544cea34423b6a6565bb6ec348ff271dba78fe5183fb127bbce87be628ebd0bc2f1c240aa50fd541ae23c7016c3ab8", 0xe6}, {&(0x7f0000004540)="21779a006fba", 0x6}, {&(0x7f0000004580)="70e48fc615b8eaff90cb60e1c60282e7db0dc12875a7897729d669027d4ec813705d7f88a2da844574c6df8aa1ee71831728c78afbd9558a45f9443ca90424aa4844d02545a7d70e14f0f6928dfb602a7d67f135634e680b9cdcc6f5c3943e9130431974cdc26ca6dbc2b319d4105ae4e0da23c1cdb10417d442ed64c5e11ef83944544eb2", 0x85}, {&(0x7f0000004640)="11378aec18ebae6fcfcf0af828bf38ed41e38edd9059065de4efaba82a2118d950b0f5abbdac11d09687d311f3cf3294ec25a23af1f6fe100fbf56872bcbfebbbc0dfeded2b9f3618f8af56e97dff37a9ac864ceff36ea7ad62b651fb4514d407891cdcd2f7077ff53952ca751e11e694c8842645af2", 0x76}, {&(0x7f00000046c0)="6553ff0a96c2f1d24c882d584d4493b904985c6c1db6d7ddc209eafe400f6662338600209b79d093438591e08b5d492e058bb33cadfa131762d5310b93f50042fe87eaa9b6702b2246ca593df20487df1b395d30c6e42903bc84dfef45f4e522235727ac23f9ebf382ecdfdb2830b8d43e1bf132fc3edda1b71365a6409139f688508a4c1773deb77c00de6b755573666a7bfa685dbb3b9f2a06220f0bed4c286a84625bdf", 0xa5}], 0x7, &(0x7f0000004800)=[@timestamping={{0x14, 0x1, 0x25, 0x80000000}}], 0x18}}, {{&(0x7f0000004840)=@pppoe={0x18, 0x0, {0x4, @local, 'erspan0\x00'}}, 0x80, &(0x7f0000004ac0)=[{&(0x7f00000048c0)="524ecb", 0x3}, {&(0x7f0000004900)="e09c60469448f5081a6bd285982794d4c3be742ce746bd6694d94f5eea877a0cc3a0bcec69cf395cabf1bb5a153a00596100f669db631e27c95de61a309de96282c0ad86559d36c68cfa79fb222edf8a9543d3a5565338620b87cf76b0b808ea1a182d6f4fb9afd3ae615ba3bb999aca548e56014dc80644711ad548e358d204b9273816e02f5af76c7cb709bbafd7e7c522b685388177756c6e", 0x9a}, {&(0x7f00000049c0)="1ac574f4649d4be2712dcff2e44ccccf359b22c25c85", 0x16}, {&(0x7f0000004a00)="3ca01653c6becbb641b2a48041b45417c3a961be124c63a2a1b9d7fcb8a9e290209db73690c0a23f6bcf2c95bd941e6f366bb31aa0e7b1c4ea11d4dcc9d9a5063c85cc15dd925f1e1d2a58f8e0d5b89c2ed973f4c52000d0420adccd002628b3402e4d6fb984a9c39da50c4eaa8d1896b58d359ed1781e2274bcf0527e4c45702c1d4b579ae57c2d13500957abb416ec34b5ae9c6edae96332d68725fa9e7d54ae4686e3", 0xa4}], 0x4, &(0x7f0000004b00)=[@txtime={{0x18, 0x1, 0x3d, 0x9}}, @timestamping={{0x14, 0x1, 0x25, 0x7}}, @timestamping={{0x14, 0x1, 0x25, 0x990}}, @mark={{0x14, 0x1, 0x24, 0x4}}, @txtime={{0x18, 0x1, 0x3d, 0x3}}, @mark={{0x14, 0x1, 0x24, 0x10001}}, @mark={{0x14, 0x1, 0x24, 0x1}}, @txtime={{0x18, 0x1, 0x3d, 0x5}}, @mark={{0x14, 0x1, 0x24, 0x7ff}}], 0xd8}}, {{&(0x7f0000004c00)=@sco={0x1f, @fixed={'\xaa\xaa\xaa\xaa\xaa', 0x10}}, 0x80, &(0x7f0000004cc0)=[{&(0x7f0000004c80)="4d500ed27c14317a04cb4e6cccf1a337fe4e9b8bf2d78f0379e46c6848062e6647ed65f58bee6ba5a107036cc5ca59157ab24d48", 0x34}], 0x1, &(0x7f0000004d00)=[@txtime={{0x18, 0x1, 0x3d, 0xfffffffffffffff7}}, @txtime={{0x18, 0x1, 0x3d, 0x4}}, @mark={{0x14, 0x1, 0x24, 0x2}}, @mark={{0x14, 0x1, 0x24, 0x800}}, @txtime={{0x18, 0x1, 0x3d, 0x6}}, @mark={{0x14, 0x1, 0x24, 0x7f}}, @txtime={{0x18, 0x1, 0x3d, 0x200}}, @txtime={{0x18, 0x1, 0x3d, 0x400}}, @mark={{0x14, 0x1, 0x24, 0x3}}, @txtime={{0x18, 0x1, 0x3d, 0xda}}], 0xf0}}], 0x8, 0x800) r8 = dup(r0) sendmsg$BATADV_CMD_GET_BLA_BACKBONE(r8, &(0x7f0000000540)={&(0x7f0000000100), 0xc, &(0x7f0000000500)={0x0}}, 0x0) ioctl$sock_SIOCINQ(r8, 0x541b, &(0x7f0000000000)) 12:26:00 executing program 2: syz_init_net_socket$802154_dgram(0x24, 0x2, 0x0) r0 = openat$tun(0xffffffffffffff9c, &(0x7f0000000040), 0x0, 0x0) ioctl$TUNSETQUEUE(r0, 0x400454ca, &(0x7f00000000c0)={'ipvlan1\x00'}) r1 = openat$tun(0xffffffffffffff9c, &(0x7f0000000040), 0x0, 0x0) r2 = openat$vcs(0xffffffffffffff9c, &(0x7f0000000080), 0x12a02, 0x0) ioctl$TUNSETLINK(r2, 0x400454cd, 0x0) ioctl$TUNSETQUEUE(r1, 0x400454ca, &(0x7f00000000c0)={'ipvlan1\x00'}) r3 = openat$tun(0xffffffffffffff9c, &(0x7f0000000040), 0x0, 0x0) ioctl$TUNSETQUEUE(r3, 0x400454ca, &(0x7f00000000c0)={'ipvlan1\x00'}) openat$cgroup(0xffffffffffffffff, &(0x7f0000000000)='syz0\x00', 0x200002, 0x0) r4 = dup(r0) sendmsg$BATADV_CMD_GET_BLA_BACKBONE(r4, &(0x7f0000000540)={&(0x7f0000000100)={0x10, 0x0, 0x0, 0x8000000}, 0xc, &(0x7f0000000500)={0x0}}, 0x0) 12:26:00 executing program 0 (fault-call:6 fault-nth:34): r0 = syz_io_uring_setup(0x4d4f, &(0x7f0000000080), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=0x0, &(0x7f0000000140)=0x0) syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_POLL_ADD={0x6, 0x0, 0x0, @fd=r0, 0x0, 0x0, 0x0, {0x194}}, 0x0) r3 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0) perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_io_uring_submit(r3, r2, &(0x7f0000000100)=@IORING_OP_SPLICE, 0x4) io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0) execveat(0xffffffffffffffff, &(0x7f00000002c0)='./file0\x00', &(0x7f0000000380), 0x0, 0x1000) [ 1489.985148] FAULT_INJECTION: forcing a failure. [ 1489.985148] name fail_page_alloc, interval 1, probability 0, space 0, times 0 [ 1489.986487] CPU: 0 PID: 11488 Comm: syz-executor.3 Not tainted 5.10.60 #1 [ 1489.987225] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS rel-1.14.0-0-g155821a1990b-prebuilt.qemu.org 04/01/2014 [ 1489.987429] EXT4-fs (loop6): VFS: Can't find ext4 filesystem [ 1489.988434] Call Trace: [ 1489.988452] dump_stack+0x107/0x163 [ 1489.988467] should_fail.cold+0x5/0xa [ 1489.988486] __alloc_pages_nodemask+0x17f/0x670 [ 1489.988503] ? __alloc_pages_slowpath.constprop.0+0x2090/0x2090 [ 1489.988513] ? up_write+0x191/0x550 [ 1489.988543] ? rwlock_bug.part.0+0x90/0x90 [ 1489.993312] ? rcu_read_lock_sched_held+0x3a/0x70 [ 1489.993831] ? anon_vma_interval_tree_insert+0x277/0x450 [ 1489.994418] alloc_pages_vma+0xbb/0x410 [ 1489.994847] handle_mm_fault+0x1506/0x3570 [ 1489.995305] ? hlock_class+0x120/0x120 [ 1489.995722] ? __pmd_alloc+0x5e0/0x5e0 [ 1489.996176] __get_user_pages+0x61d/0x1400 [ 1489.996642] ? follow_page_mask+0x1820/0x1820 [ 1489.997120] ? __lockdep_reset_lock+0x180/0x180 [ 1489.997621] ? avc_has_perm_noaudit+0x1f8/0x3a0 [ 1489.998123] ? find_held_lock+0x2c/0x110 [ 1489.998562] __get_user_pages_remote+0x1d1/0x860 [ 1489.999085] get_user_pages_remote+0x63/0x90 [ 1489.999563] get_arg_page+0xba/0x200 [ 1489.999974] ? acct_arg_size+0xe0/0xe0 [ 1490.000395] ? insert_vm_struct+0x1f7/0x340 [ 1490.000872] copy_string_kernel+0x1b0/0x440 [ 1490.001346] do_execveat_common.isra.0+0x405/0x670 [ 1490.001877] __x64_sys_execveat+0xe7/0x130 [ 1490.002338] do_syscall_64+0x33/0x40 [ 1490.002746] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 1490.003294] RIP: 0033:0x466609 [ 1490.003640] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1490.005614] RSP: 002b:00007f7f315af188 EFLAGS: 00000246 ORIG_RAX: 0000000000000142 [ 1490.006421] RAX: ffffffffffffffda RBX: 000000000056bf80 RCX: 0000000000466609 [ 1490.007188] RDX: 0000000000000000 RSI: 00000000200002c0 RDI: ffffffffffffffff [ 1490.007962] RBP: 00007f7f315af1d0 R08: 0000000000000000 R09: 0000000000000000 [ 1490.008759] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 1490.009517] R13: 00007ffe8cd6fa4f R14: 00007f7f315af300 R15: 0000000000022000 [ 1490.013152] device syz_tun entered promiscuous mode [ 1490.037277] device syz_tun left promiscuous mode [ 1490.044045] FAULT_INJECTION: forcing a failure. [ 1490.044045] name failslab, interval 1, probability 0, space 0, times 0 [ 1490.045318] CPU: 0 PID: 11493 Comm: syz-executor.5 Not tainted 5.10.60 #1 [ 1490.046182] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS rel-1.14.0-0-g155821a1990b-prebuilt.qemu.org 04/01/2014 [ 1490.047385] Call Trace: [ 1490.047681] dump_stack+0x107/0x163 [ 1490.048097] should_fail.cold+0x5/0xa [ 1490.048509] ? security_file_alloc+0x34/0x170 [ 1490.049000] should_failslab+0x5/0x10 [ 1490.049407] kmem_cache_alloc+0x5b/0x350 [ 1490.049853] security_file_alloc+0x34/0x170 [ 1490.050319] __alloc_file+0xb6/0x310 [ 1490.050734] alloc_empty_file+0x6a/0x160 [ 1490.051174] path_openat+0xdf/0x2690 [ 1490.051593] ? stack_trace_consume_entry+0x160/0x160 [ 1490.052155] ? path_lookupat+0x780/0x780 [ 1490.052621] ? perf_trace_run_bpf_submit+0xf5/0x190 [ 1490.053153] ? __lock_acquire+0x1616/0x5b60 [ 1490.053627] do_filp_open+0x192/0x3e0 [ 1490.054040] ? may_open_dev+0xf0/0xf0 [ 1490.054448] ? perf_trace_run_bpf_submit+0xf5/0x190 [ 1490.054989] ? perf_trace_lock+0x2cd/0x470 [ 1490.055139] FAULT_INJECTION: forcing a failure. [ 1490.055139] name failslab, interval 1, probability 0, space 0, times 0 [ 1490.055465] ? __lockdep_reset_lock+0x180/0x180 [ 1490.055493] ? find_held_lock+0x2c/0x110 [ 1490.058839] do_open_execat+0x10c/0x690 [ 1490.059266] ? __ia32_sys_uselib+0x40/0x40 [ 1490.059719] ? do_raw_spin_lock+0x129/0x270 [ 1490.060200] ? rwlock_bug.part.0+0x90/0x90 [ 1490.060665] bprm_execve+0x5b2/0x1b00 [ 1490.061069] ? get_arg_page+0x153/0x200 [ 1490.061501] ? open_exec+0x70/0x70 [ 1490.061888] ? memcpy+0x39/0x60 [ 1490.062240] ? copy_strings.isra.0+0x492/0x690 [ 1490.062727] ? copy_string_kernel+0x3ad/0x440 [ 1490.063218] do_execveat_common.isra.0+0x524/0x670 [ 1490.063751] __x64_sys_execveat+0xe7/0x130 [ 1490.064226] do_syscall_64+0x33/0x40 [ 1490.064629] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 1490.065175] RIP: 0033:0x466609 [ 1490.065521] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1490.067475] RSP: 002b:00007feb29e67188 EFLAGS: 00000246 ORIG_RAX: 0000000000000142 [ 1490.068307] RAX: ffffffffffffffda RBX: 000000000056bf80 RCX: 0000000000466609 [ 1490.069060] RDX: 0000000000000000 RSI: 00000000200002c0 RDI: ffffffffffffffff [ 1490.069816] RBP: 00007feb29e671d0 R08: 0000000000000000 R09: 0000000000000000 [ 1490.070580] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 1490.071346] R13: 00007ffde08160ef R14: 00007feb29e67300 R15: 0000000000022000 [ 1490.072159] CPU: 1 PID: 11504 Comm: syz-executor.0 Not tainted 5.10.60 #1 [ 1490.073739] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS rel-1.14.0-0-g155821a1990b-prebuilt.qemu.org 04/01/2014 [ 1490.076270] Call Trace: [ 1490.076856] dump_stack+0x107/0x163 [ 1490.077655] should_fail.cold+0x5/0xa [ 1490.078504] ? security_prepare_creds+0x10a/0x180 [ 1490.079558] should_failslab+0x5/0x10 [ 1490.080402] __kmalloc+0x72/0x3e0 [ 1490.081183] security_prepare_creds+0x10a/0x180 [ 1490.082217] prepare_creds+0x45c/0x670 [ 1490.083071] prepare_exec_creds+0xd/0x250 [ 1490.083989] bprm_execve+0x1e3/0x1b00 12:26:00 executing program 2: r0 = syz_init_net_socket$802154_dgram(0x24, 0x2, 0x0) r1 = dup(r0) sendmsg$BATADV_CMD_GET_BLA_BACKBONE(r1, &(0x7f0000000540)={&(0x7f0000000100), 0xc, &(0x7f0000000500)={0x0}}, 0x0) r2 = socket$inet6_udp(0xa, 0x2, 0x0) connect$802154_dgram(r1, &(0x7f0000000000)={0x24, @short={0x2, 0x0, 0xfffe}}, 0x14) setsockopt$inet6_MRT6_ADD_MFC_PROXY(r2, 0x29, 0xd2, 0x0, 0x0) ioctl$sock_SIOCINQ(r2, 0x541b, &(0x7f0000000040)) [ 1490.084807] ? get_arg_page+0x153/0x200 [ 1490.085851] ? acct_arg_size+0xe0/0xe0 [ 1490.086721] ? open_exec+0x70/0x70 [ 1490.087563] ? memcpy+0x39/0x60 [ 1490.088298] ? copy_strings.isra.0+0x492/0x690 [ 1490.089284] ? copy_string_kernel+0x3ad/0x440 [ 1490.090275] do_execveat_common.isra.0+0x524/0x670 [ 1490.091357] __x64_sys_execveat+0xe7/0x130 [ 1490.092296] do_syscall_64+0x33/0x40 [ 1490.093111] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 1490.094239] RIP: 0033:0x466609 [ 1490.094955] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1490.099203] RSP: 002b:00007f4e87c21188 EFLAGS: 00000246 ORIG_RAX: 0000000000000142 [ 1490.100935] RAX: ffffffffffffffda RBX: 000000000056c038 RCX: 0000000000466609 [ 1490.102558] RDX: 0000000020000380 RSI: 00000000200002c0 RDI: ffffffffffffffff [ 1490.104220] RBP: 00007f4e87c211d0 R08: 0000000000001000 R09: 0000000000000000 [ 1490.105794] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 1490.107451] R13: 00007ffc014a64bf R14: 00007f4e87c21300 R15: 0000000000022000 12:26:12 executing program 4: syz_mount_image$ext4(&(0x7f0000000000)='ext2\x00', &(0x7f0000000040)='./file0/../file0\x00', 0x0, 0x0, 0x0, 0x104e034, &(0x7f00000001c0)={[{@data_err_abort}]}) 12:26:12 executing program 2: r0 = syz_init_net_socket$802154_dgram(0x24, 0x2, 0x0) r1 = dup(r0) r2 = openat$full(0xffffffffffffff9c, &(0x7f0000000080), 0x101440, 0x0) recvfrom$inet6(r2, &(0x7f00000000c0)=""/102391, 0x18ff7, 0x40012002, 0x0, 0x0) clock_gettime(0x0, &(0x7f0000019500)={0x0, 0x0}) futimesat(0xffffffffffffff9c, &(0x7f00000194c0)='./file0\x00', &(0x7f0000019540)={{r3, r4/1000+10000}, {0x77359400}}) ioctl$sock_SIOCINQ(r1, 0x541b, &(0x7f0000000000)) ioctl$sock_SIOCGIFVLAN_SET_VLAN_NAME_TYPE_CMD(r0, 0x8982, &(0x7f0000000040)={0x6, 'wlan1\x00', {0x3}, 0x200}) r5 = socket$inet_udp(0x2, 0x2, 0x0) r6 = openat$tun(0xffffffffffffff9c, &(0x7f0000000040), 0x0, 0x0) ioctl$TUNSETQUEUE(r6, 0x400454ca, &(0x7f00000000c0)={'ipvlan1\x00'}) preadv(r6, &(0x7f0000019440)=[{&(0x7f0000019100)=""/125, 0x7d}, {&(0x7f0000019180)=""/142, 0x8e}, {&(0x7f0000019240)=""/89, 0x59}, {&(0x7f00000192c0)=""/255, 0xff}, {&(0x7f00000193c0)=""/59, 0x3b}, {&(0x7f0000019400)=""/6, 0x6}], 0x6, 0x6, 0x4) connect$inet(r5, &(0x7f0000000040)={0x2, 0x0, @local}, 0x10) getsockname$inet(r5, 0x0, &(0x7f00000001c0)) setsockopt$IP_VS_SO_SET_STARTDAEMON(r5, 0x0, 0x48b, &(0x7f00000190c0)={0x1, 'ipvlan0\x00', 0x3}, 0x18) r7 = ioctl$NS_GET_PARENT(r2, 0xb702, 0x0) dup3(r7, r5, 0x80000) 12:26:12 executing program 0 (fault-call:6 fault-nth:35): r0 = syz_io_uring_setup(0x4d4f, &(0x7f0000000080), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=0x0, &(0x7f0000000140)=0x0) syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_POLL_ADD={0x6, 0x0, 0x0, @fd=r0, 0x0, 0x0, 0x0, {0x194}}, 0x0) r3 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0) perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_io_uring_submit(r3, r2, &(0x7f0000000100)=@IORING_OP_SPLICE, 0x4) io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0) execveat(0xffffffffffffffff, &(0x7f00000002c0)='./file0\x00', &(0x7f0000000380), 0x0, 0x1000) 12:26:12 executing program 6: syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000040)='./file0\x00', 0x40000, 0x3, &(0x7f0000000200)=[{&(0x7f0000010000)="2000000080000000060000006a0000000f000000000000000100000001000000004000000040000020000000e0f4655fe0", 0x31, 0x400}, {&(0x7f0000010400)="020000000300000004", 0x9, 0x800}, {&(0x7f0000011600)="ed41000000080000dff4655fe0f4655fe0f4655f000000000000040004", 0x1d, 0x2100}], 0x0, &(0x7f0000000080)=ANY=[]) syz_mount_image$ext4(&(0x7f0000000000)='ext2\x00', &(0x7f0000000040)='./file0/../file0\x00', 0x0, 0x0, 0x0, 0x104e034, &(0x7f00000001c0)={[{@data_err_abort}]}) 12:26:12 executing program 1: r0 = syz_io_uring_setup(0x4d4f, &(0x7f0000000080), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=0x0, &(0x7f0000000140)=0x0) syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_POLL_ADD={0x6, 0x0, 0x0, @fd=r0, 0x0, 0x0, 0x0, {0x194}}, 0x0) r3 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0) perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_io_uring_submit(r3, r2, &(0x7f0000000100)=@IORING_OP_SPLICE, 0x4) io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0) execveat(0xffffffffffffffff, &(0x7f00000002c0)='./file0\x00', &(0x7f0000000380), &(0x7f0000000640)=[0x0, 0x0], 0x1000) 12:26:12 executing program 7: r0 = syz_init_net_socket$802154_dgram(0x24, 0x2, 0x0) r1 = dup(r0) sendmsg$BATADV_CMD_GET_BLA_BACKBONE(r1, &(0x7f0000000540)={&(0x7f0000000100), 0xc, &(0x7f0000000500)={0x0}}, 0x0) ioctl$sock_SIOCINQ(r1, 0x8983, &(0x7f0000000000)) 12:26:12 executing program 3 (fault-call:5 fault-nth:24): r0 = syz_io_uring_setup(0x4d4f, &(0x7f0000000080), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200), &(0x7f0000000140)=0x0) r2 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0) perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_io_uring_submit(r2, r1, &(0x7f0000000100)=@IORING_OP_SPLICE, 0x4) io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0) execveat(0xffffffffffffffff, &(0x7f00000002c0)='./file0\x00', 0x0, 0x0, 0x0) 12:26:12 executing program 5 (fault-call:6 fault-nth:39): r0 = syz_io_uring_setup(0x4d4f, &(0x7f0000000080), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=0x0, &(0x7f0000000140)=0x0) syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_POLL_ADD={0x6, 0x0, 0x0, @fd=r0, 0x0, 0x0, 0x0, {0x194}}, 0x0) r3 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0) perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_io_uring_submit(r3, r2, &(0x7f0000000100)=@IORING_OP_SPLICE, 0x4) io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0) execveat(0xffffffffffffffff, &(0x7f00000002c0)='./file0\x00', 0x0, 0x0, 0x0) [ 1502.449255] FAULT_INJECTION: forcing a failure. [ 1502.449255] name failslab, interval 1, probability 0, space 0, times 0 [ 1502.450885] CPU: 0 PID: 11522 Comm: syz-executor.3 Not tainted 5.10.60 #1 [ 1502.451799] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS rel-1.14.0-0-g155821a1990b-prebuilt.qemu.org 04/01/2014 [ 1502.453388] Call Trace: [ 1502.453761] dump_stack+0x107/0x163 [ 1502.454282] should_fail.cold+0x5/0xa [ 1502.454805] ? dup_fd+0x89/0xc50 [ 1502.455292] should_failslab+0x5/0x10 [ 1502.455811] kmem_cache_alloc+0x5b/0x350 [ 1502.456398] ? io_wake_function+0x2e0/0x2e0 [ 1502.456995] dup_fd+0x89/0xc50 [ 1502.457462] ? __io_uring_task_cancel+0x1d1/0x250 [ 1502.458127] unshare_files+0x16c/0x260 [ 1502.458686] ? __ia32_sys_unshare+0x40/0x40 [ 1502.459281] ? rcu_read_lock_sched_held+0x3a/0x70 [ 1502.459991] ? trace_rss_stat+0x174/0x210 [ 1502.460621] bprm_execve+0x123/0x1b00 [ 1502.461185] ? get_arg_page+0x153/0x200 [ 1502.461777] ? acct_arg_size+0xe0/0xe0 [ 1502.462211] FAULT_INJECTION: forcing a failure. [ 1502.462211] name failslab, interval 1, probability 0, space 0, times 0 [ 1502.462357] ? open_exec+0x70/0x70 [ 1502.465220] ? memcpy+0x39/0x60 [ 1502.465707] ? copy_strings.isra.0+0x492/0x690 [ 1502.466383] ? copy_string_kernel+0x3ad/0x440 [ 1502.467019] do_execveat_common.isra.0+0x524/0x670 [ 1502.467767] __x64_sys_execveat+0xe7/0x130 [ 1502.468404] do_syscall_64+0x33/0x40 [ 1502.468963] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 1502.469730] RIP: 0033:0x466609 [ 1502.470208] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1502.472921] RSP: 002b:00007f7f315af188 EFLAGS: 00000246 ORIG_RAX: 0000000000000142 [ 1502.474045] RAX: ffffffffffffffda RBX: 000000000056bf80 RCX: 0000000000466609 [ 1502.475103] RDX: 0000000000000000 RSI: 00000000200002c0 RDI: ffffffffffffffff [ 1502.476175] RBP: 00007f7f315af1d0 R08: 0000000000000000 R09: 0000000000000000 [ 1502.477228] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 1502.478283] R13: 00007ffe8cd6fa4f R14: 00007f7f315af300 R15: 0000000000022000 [ 1502.479386] CPU: 1 PID: 11532 Comm: syz-executor.5 Not tainted 5.10.60 #1 [ 1502.480861] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS rel-1.14.0-0-g155821a1990b-prebuilt.qemu.org 04/01/2014 [ 1502.483281] Call Trace: [ 1502.483843] dump_stack+0x107/0x163 [ 1502.484649] should_fail.cold+0x5/0xa [ 1502.485464] ? create_object.isra.0+0x3a/0xa10 [ 1502.486435] should_failslab+0x5/0x10 [ 1502.487242] kmem_cache_alloc+0x5b/0x350 [ 1502.488109] ? percpu_ref_put_many.constprop.0+0x4e/0x100 [ 1502.489292] create_object.isra.0+0x3a/0xa10 [ 1502.490228] ? __kasan_kmalloc.constprop.0+0xc2/0xd0 [ 1502.491316] kmem_cache_alloc+0x15b/0x350 [ 1502.492227] security_file_alloc+0x34/0x170 [ 1502.493148] __alloc_file+0xb6/0x310 [ 1502.493942] alloc_empty_file+0x6a/0x160 [ 1502.494805] path_openat+0xdf/0x2690 [ 1502.495616] ? stack_trace_consume_entry+0x160/0x160 [ 1502.496699] ? path_lookupat+0x780/0x780 [ 1502.497576] ? __lock_acquire+0x1616/0x5b60 [ 1502.498502] do_filp_open+0x192/0x3e0 [ 1502.499312] ? may_open_dev+0xf0/0xf0 [ 1502.500160] ? perf_trace_lock+0xb6/0x470 [ 1502.501039] ? perf_trace_lock+0xb6/0x470 [ 1502.501939] ? __lockdep_reset_lock+0x180/0x180 [ 1502.502935] ? find_held_lock+0x2c/0x110 [ 1502.503803] do_open_execat+0x10c/0x690 [ 1502.504655] ? __ia32_sys_uselib+0x40/0x40 [ 1502.505553] ? do_raw_spin_lock+0x129/0x270 [ 1502.506470] ? rwlock_bug.part.0+0x90/0x90 [ 1502.507385] bprm_execve+0x5b2/0x1b00 [ 1502.508200] ? get_arg_page+0x153/0x200 [ 1502.509052] ? open_exec+0x70/0x70 [ 1502.509807] ? memcpy+0x39/0x60 [ 1502.510509] ? copy_strings.isra.0+0x492/0x690 [ 1502.511477] ? copy_string_kernel+0x3ad/0x440 [ 1502.512457] do_execveat_common.isra.0+0x524/0x670 [ 1502.513508] __x64_sys_execveat+0xe7/0x130 [ 1502.514412] do_syscall_64+0x33/0x40 [ 1502.515200] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 1502.516296] RIP: 0033:0x466609 [ 1502.516981] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1502.520877] RSP: 002b:00007feb29e67188 EFLAGS: 00000246 ORIG_RAX: 0000000000000142 [ 1502.522487] RAX: ffffffffffffffda RBX: 000000000056bf80 RCX: 0000000000466609 [ 1502.523997] RDX: 0000000000000000 RSI: 00000000200002c0 RDI: ffffffffffffffff [ 1502.525512] RBP: 00007feb29e671d0 R08: 0000000000000000 R09: 0000000000000000 [ 1502.527020] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 1502.528543] R13: 00007ffde08160ef R14: 00007feb29e67300 R15: 0000000000022000 12:26:12 executing program 4: syz_mount_image$ext4(&(0x7f0000000000)='ext2\x00', &(0x7f0000000040)='./file0/../file0\x00', 0x0, 0x0, 0x0, 0x104e034, &(0x7f00000001c0)={[{@data_err_abort}]}) [ 1502.561332] EXT4-fs (loop6): VFS: Can't find ext4 filesystem [ 1502.572502] FAULT_INJECTION: forcing a failure. [ 1502.572502] name failslab, interval 1, probability 0, space 0, times 0 [ 1502.574079] CPU: 1 PID: 11523 Comm: syz-executor.0 Not tainted 5.10.60 #1 [ 1502.575021] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS rel-1.14.0-0-g155821a1990b-prebuilt.qemu.org 04/01/2014 [ 1502.576571] Call Trace: [ 1502.576936] dump_stack+0x107/0x163 [ 1502.577443] should_fail.cold+0x5/0xa [ 1502.577959] ? create_object.isra.0+0x3a/0xa10 [ 1502.578596] should_failslab+0x5/0x10 [ 1502.579119] kmem_cache_alloc+0x5b/0x350 [ 1502.579687] create_object.isra.0+0x3a/0xa10 [ 1502.580312] ? __kasan_kmalloc.constprop.0+0xc2/0xd0 [ 1502.581005] __kmalloc+0x170/0x3e0 [ 1502.581522] security_prepare_creds+0x10a/0x180 [ 1502.582184] prepare_creds+0x45c/0x670 [ 1502.582754] prepare_exec_creds+0xd/0x250 [ 1502.583332] bprm_execve+0x1e3/0x1b00 [ 1502.583857] ? get_arg_page+0x153/0x200 [ 1502.584432] ? acct_arg_size+0xe0/0xe0 [ 1502.584983] ? open_exec+0x70/0x70 [ 1502.585484] ? memcpy+0x39/0x60 [ 1502.585950] ? copy_strings.isra.0+0x492/0x690 [ 1502.586584] ? copy_string_kernel+0x3ad/0x440 [ 1502.587228] do_execveat_common.isra.0+0x524/0x670 [ 1502.587909] __x64_sys_execveat+0xe7/0x130 [ 1502.588543] do_syscall_64+0x33/0x40 [ 1502.589056] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 1502.589777] RIP: 0033:0x466609 [ 1502.590228] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1502.592904] RSP: 002b:00007f4e87c42188 EFLAGS: 00000246 ORIG_RAX: 0000000000000142 [ 1502.593963] RAX: ffffffffffffffda RBX: 000000000056bf80 RCX: 0000000000466609 [ 1502.595010] RDX: 0000000020000380 RSI: 00000000200002c0 RDI: ffffffffffffffff [ 1502.596003] RBP: 00007f4e87c421d0 R08: 0000000000001000 R09: 0000000000000000 [ 1502.597031] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 1502.598028] R13: 00007ffc014a64bf R14: 00007f4e87c42300 R15: 0000000000022000 12:26:12 executing program 1: r0 = syz_io_uring_setup(0x4d4f, &(0x7f0000000080), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=0x0, &(0x7f0000000140)=0x0) syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_POLL_ADD={0x6, 0x0, 0x0, @fd=r0, 0x0, 0x0, 0x0, {0x194}}, 0x0) r3 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0) perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_io_uring_submit(r3, r2, &(0x7f0000000100)=@IORING_OP_SPLICE, 0x4) io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0) execveat(0xffffffffffffffff, &(0x7f00000002c0)='./file0\x00', &(0x7f0000000380), &(0x7f0000000640)=[0x0, 0x0], 0x1000) 12:26:12 executing program 3 (fault-call:5 fault-nth:25): r0 = syz_io_uring_setup(0x4d4f, &(0x7f0000000080), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200), &(0x7f0000000140)=0x0) r2 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0) perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_io_uring_submit(r2, r1, &(0x7f0000000100)=@IORING_OP_SPLICE, 0x4) io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0) execveat(0xffffffffffffffff, &(0x7f00000002c0)='./file0\x00', 0x0, 0x0, 0x0) 12:26:12 executing program 2: r0 = syz_init_net_socket$802154_dgram(0x24, 0x2, 0x0) r1 = dup(r0) sendmsg$BATADV_CMD_GET_BLA_BACKBONE(r1, &(0x7f0000000540)={&(0x7f0000000100), 0xc, &(0x7f0000000500)={0x0}}, 0x0) r2 = openat$rtc(0xffffffffffffff9c, &(0x7f0000000200), 0x10800, 0x0) ioctl$F2FS_IOC_SET_PIN_FILE(r2, 0x4004f50d, &(0x7f0000000240)) r3 = syz_open_dev$vcsa(&(0x7f0000004cc0), 0x4802, 0x501001) syz_genetlink_get_family_id$ethtool(&(0x7f0000004d40), r1) sendmsg$ETHTOOL_MSG_LINKSTATE_GET(r3, &(0x7f0000004e40)={&(0x7f0000004d00)={0x10, 0x0, 0x0, 0x121000c}, 0xc, &(0x7f0000000180)={&(0x7f0000000300)=ANY=[], 0x54}, 0x1, 0x0, 0x0, 0x4}, 0x20008892) dup(r1) r4 = socket$nl_audit(0x10, 0x3, 0x9) fsetxattr$security_evm(r4, &(0x7f00000000c0), &(0x7f0000000580)=@v2={0x3, 0x2, 0x1, 0x6, 0x1000, "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"}, 0x1009, 0x3) r5 = openat$tun(0xffffffffffffff9c, &(0x7f0000000040), 0x0, 0x0) ioctl$TUNSETQUEUE(r5, 0x400454ca, &(0x7f00000000c0)={'ipvlan1\x00'}) r6 = openat$tun(0xffffffffffffff9c, &(0x7f0000000040), 0x0, 0x0) ioctl$TUNSETQUEUE(r6, 0x400454ca, &(0x7f00000000c0)={'ipvlan1\x00'}) openat$cgroup_type(r1, &(0x7f0000000140), 0x2, 0x0) fstat(r4, &(0x7f0000000280)) r7 = socket$inet6_udp(0xa, 0x2, 0x0) setsockopt$inet6_MRT6_ADD_MFC_PROXY(r7, 0x29, 0xd2, 0x0, 0x0) ioctl$sock_SIOCINQ(r7, 0x541b, &(0x7f0000000000)) 12:26:12 executing program 7: r0 = syz_io_uring_setup(0x4d4f, &(0x7f0000000080), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200), &(0x7f0000000140)=0x0) r2 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0) perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_io_uring_submit(r2, r1, 0x0, 0x4) io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0) execveat(0xffffffffffffffff, &(0x7f00000002c0)='./file0\x00', &(0x7f0000000380)=[&(0x7f0000000300)='*{+#+\v@\'-[*\x00', &(0x7f0000000340)='/dev/sg#\x00'], &(0x7f0000000640)=[&(0x7f00000003c0)='\x00', &(0x7f0000000440)='+)>{)U\x00', &(0x7f0000000480)='{@#@\x00', &(0x7f00000004c0)='\x00', &(0x7f0000000500)='/dev/sg#\x00', &(0x7f0000000540)='/dev/sg#\x00', &(0x7f0000000580)='\x00', &(0x7f00000005c0)='\x00', &(0x7f0000000600)='\x00'], 0x1000) 12:26:12 executing program 0 (fault-call:6 fault-nth:36): r0 = syz_io_uring_setup(0x4d4f, &(0x7f0000000080), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=0x0, &(0x7f0000000140)=0x0) syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_POLL_ADD={0x6, 0x0, 0x0, @fd=r0, 0x0, 0x0, 0x0, {0x194}}, 0x0) r3 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0) perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_io_uring_submit(r3, r2, &(0x7f0000000100)=@IORING_OP_SPLICE, 0x4) io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0) execveat(0xffffffffffffffff, &(0x7f00000002c0)='./file0\x00', &(0x7f0000000380), 0x0, 0x1000) 12:26:12 executing program 6: syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000040)='./file0\x00', 0x40000, 0x3, &(0x7f0000000200)=[{&(0x7f0000010000)="2000000080000000060000006a0000000f000000000000000100000001000000004000000040000020000000e0f4655fe0", 0x31, 0x400}, {&(0x7f0000010400)="020000000300000004", 0x9, 0x800}, {&(0x7f0000011600)="ed41000000080000dff4655fe0f4655fe0f4655f000000000000040004", 0x1d, 0x2100}], 0x0, &(0x7f0000000080)=ANY=[]) syz_mount_image$ext4(&(0x7f0000000000)='ext2\x00', &(0x7f0000000040)='./file0/../file0\x00', 0x0, 0x0, 0x0, 0x104e034, &(0x7f00000001c0)={[{@data_err_abort}]}) 12:26:12 executing program 5 (fault-call:6 fault-nth:40): r0 = syz_io_uring_setup(0x4d4f, &(0x7f0000000080), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=0x0, &(0x7f0000000140)=0x0) syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_POLL_ADD={0x6, 0x0, 0x0, @fd=r0, 0x0, 0x0, 0x0, {0x194}}, 0x0) r3 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0) perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_io_uring_submit(r3, r2, &(0x7f0000000100)=@IORING_OP_SPLICE, 0x4) io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0) execveat(0xffffffffffffffff, &(0x7f00000002c0)='./file0\x00', 0x0, 0x0, 0x0) 12:26:13 executing program 4: syz_mount_image$ext4(0x0, &(0x7f0000000040)='./file0\x00', 0x40000, 0x3, &(0x7f0000000200)=[{&(0x7f0000010000)="2000000080000000060000006a0000000f000000000000000100000001000000004000000040000020000000e0f4655fe0f4655f0100ffff53ef010001000000dff4655f000000000000000001000000000000000b00000000010000280200000284", 0x62, 0x400}, {&(0x7f0000010400)="020000000300000004000000", 0xc, 0x800}, {&(0x7f0000011600)="ed41000000080000dff4655fe0f4655fe0f4655f000000000000040004", 0x1d, 0x2100}], 0x0, &(0x7f0000000080)=ANY=[]) syz_mount_image$ext4(&(0x7f0000000000)='ext2\x00', &(0x7f0000000040)='./file0/../file0\x00', 0x0, 0x0, 0x0, 0x104e034, &(0x7f00000001c0)={[{@data_err_abort}]}) [ 1502.777740] FAULT_INJECTION: forcing a failure. [ 1502.777740] name failslab, interval 1, probability 0, space 0, times 0 [ 1502.779085] CPU: 1 PID: 11552 Comm: syz-executor.3 Not tainted 5.10.60 #1 [ 1502.779822] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS rel-1.14.0-0-g155821a1990b-prebuilt.qemu.org 04/01/2014 [ 1502.781055] Call Trace: [ 1502.781359] dump_stack+0x107/0x163 [ 1502.781753] should_fail.cold+0x5/0xa [ 1502.782165] ? create_object.isra.0+0x3a/0xa10 [ 1502.782652] should_failslab+0x5/0x10 [ 1502.783051] kmem_cache_alloc+0x5b/0x350 [ 1502.783506] create_object.isra.0+0x3a/0xa10 [ 1502.783977] ? __kasan_kmalloc.constprop.0+0xc2/0xd0 [ 1502.784663] kmem_cache_alloc+0x15b/0x350 [ 1502.785131] dup_fd+0x89/0xc50 [ 1502.785495] ? __io_uring_task_cancel+0x1d1/0x250 [ 1502.786005] unshare_files+0x16c/0x260 [ 1502.786439] ? __ia32_sys_unshare+0x40/0x40 [ 1502.786900] ? rcu_read_lock_sched_held+0x3a/0x70 [ 1502.787422] ? trace_rss_stat+0x174/0x210 [ 1502.787872] bprm_execve+0x123/0x1b00 [ 1502.788312] ? get_arg_page+0x153/0x200 [ 1502.788733] ? acct_arg_size+0xe0/0xe0 [ 1502.789155] ? open_exec+0x70/0x70 [ 1502.789535] ? memcpy+0x39/0x60 [ 1502.789882] ? copy_strings.isra.0+0x492/0x690 [ 1502.790369] ? copy_string_kernel+0x3ad/0x440 [ 1502.790852] do_execveat_common.isra.0+0x524/0x670 [ 1502.791381] __x64_sys_execveat+0xe7/0x130 [ 1502.791839] do_syscall_64+0x33/0x40 [ 1502.792274] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 1502.792841] RIP: 0033:0x466609 [ 1502.793206] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1502.795238] RSP: 002b:00007f7f315af188 EFLAGS: 00000246 ORIG_RAX: 0000000000000142 [ 1502.796107] RAX: ffffffffffffffda RBX: 000000000056bf80 RCX: 0000000000466609 [ 1502.796913] RDX: 0000000000000000 RSI: 00000000200002c0 RDI: ffffffffffffffff [ 1502.797705] RBP: 00007f7f315af1d0 R08: 0000000000000000 R09: 0000000000000000 [ 1502.798491] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 1502.799280] R13: 00007ffe8cd6fa4f R14: 00007f7f315af300 R15: 0000000000022000 12:26:13 executing program 3 (fault-call:5 fault-nth:26): r0 = syz_io_uring_setup(0x4d4f, &(0x7f0000000080), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200), &(0x7f0000000140)=0x0) r2 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0) perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_io_uring_submit(r2, r1, &(0x7f0000000100)=@IORING_OP_SPLICE, 0x4) io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0) execveat(0xffffffffffffffff, &(0x7f00000002c0)='./file0\x00', 0x0, 0x0, 0x0) 12:26:13 executing program 1: r0 = syz_io_uring_setup(0x4d4f, &(0x7f0000000080), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=0x0, &(0x7f0000000140)=0x0) syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_POLL_ADD={0x6, 0x0, 0x0, @fd=r0, 0x0, 0x0, 0x0, {0x194}}, 0x0) r3 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0) perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_io_uring_submit(r3, r2, &(0x7f0000000100)=@IORING_OP_SPLICE, 0x4) io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0) execveat(0xffffffffffffffff, &(0x7f00000002c0)='./file0\x00', &(0x7f0000000380), &(0x7f0000000640)=[0x0, 0x0], 0x1000) [ 1502.897426] FAULT_INJECTION: forcing a failure. [ 1502.897426] name failslab, interval 1, probability 0, space 0, times 0 [ 1502.898759] CPU: 1 PID: 11567 Comm: syz-executor.0 Not tainted 5.10.60 #1 [ 1502.899523] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS rel-1.14.0-0-g155821a1990b-prebuilt.qemu.org 04/01/2014 [ 1502.900808] Call Trace: [ 1502.901106] dump_stack+0x107/0x163 [ 1502.901538] should_fail.cold+0x5/0xa [ 1502.901966] ? __alloc_file+0x21/0x310 [ 1502.902401] should_failslab+0x5/0x10 [ 1502.902874] kmem_cache_alloc+0x5b/0x350 [ 1502.903408] ? mark_lock+0x108/0x3020 [ 1502.903821] __alloc_file+0x21/0x310 [ 1502.904254] alloc_empty_file+0x6a/0x160 [ 1502.904701] path_openat+0xdf/0x2690 [ 1502.905199] ? stack_trace_consume_entry+0x160/0x160 [ 1502.905896] ? path_lookupat+0x780/0x780 [ 1502.906367] ? __lock_acquire+0x1616/0x5b60 [ 1502.906846] do_filp_open+0x192/0x3e0 [ 1502.907275] ? may_open_dev+0xf0/0xf0 [ 1502.907701] ? perf_trace_lock+0xb6/0x470 [ 1502.908265] ? perf_trace_lock+0xb6/0x470 [ 1502.908723] ? __lockdep_reset_lock+0x180/0x180 [ 1502.909730] ? find_held_lock+0x2c/0x110 [ 1502.910737] do_open_execat+0x10c/0x690 [ 1502.911783] ? __ia32_sys_uselib+0x40/0x40 [ 1502.912386] ? do_raw_spin_lock+0x129/0x270 [ 1502.912846] ? rwlock_bug.part.0+0x90/0x90 [ 1502.913319] bprm_execve+0x5b2/0x1b00 [ 1502.913724] ? get_arg_page+0x153/0x200 [ 1502.914165] ? open_exec+0x70/0x70 [ 1502.914548] ? memcpy+0x39/0x60 [ 1502.914913] ? copy_strings.isra.0+0x492/0x690 [ 1502.915414] ? copy_string_kernel+0x3ad/0x440 [ 1502.915900] do_execveat_common.isra.0+0x524/0x670 [ 1502.916451] __x64_sys_execveat+0xe7/0x130 [ 1502.916919] do_syscall_64+0x33/0x40 [ 1502.917325] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 1502.917880] RIP: 0033:0x466609 [ 1502.918231] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1502.920457] RSP: 002b:00007f4e87c42188 EFLAGS: 00000246 ORIG_RAX: 0000000000000142 [ 1502.921291] RAX: ffffffffffffffda RBX: 000000000056bf80 RCX: 0000000000466609 [ 1502.922055] RDX: 0000000020000380 RSI: 00000000200002c0 RDI: ffffffffffffffff [ 1502.922817] RBP: 00007f4e87c421d0 R08: 0000000000001000 R09: 0000000000000000 [ 1502.923570] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 1502.924364] R13: 00007ffc014a64bf R14: 00007f4e87c42300 R15: 0000000000022000 12:26:13 executing program 2: r0 = syz_init_net_socket$802154_dgram(0x24, 0x2, 0x0) r1 = dup(r0) r2 = accept$packet(r1, &(0x7f0000000040)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @link_local}, &(0x7f0000000080)=0x14) dup(r2) sendmsg$BATADV_CMD_GET_BLA_BACKBONE(r1, &(0x7f0000000540)={&(0x7f0000000100), 0xc, &(0x7f0000000500)={0x0}}, 0x0) ioctl$sock_SIOCINQ(r1, 0x541b, &(0x7f0000000000)) [ 1502.963895] EXT4-fs (loop6): VFS: Can't find ext4 filesystem 12:26:13 executing program 6: syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000040)='./file0\x00', 0x40000, 0x3, &(0x7f0000000200)=[{&(0x7f0000010000)="2000000080000000060000006a0000000f000000000000000100000001000000004000000040000020000000e0f4655fe0f4655f0100ffff53ef010001000000dff4655f000000000000", 0x4a, 0x400}, {&(0x7f0000010400)="020000000300000004", 0x9, 0x800}, {&(0x7f0000011600)="ed41000000080000dff4655fe0f4655fe0f4655f000000000000040004", 0x1d, 0x2100}], 0x0, &(0x7f0000000080)=ANY=[]) syz_mount_image$ext4(&(0x7f0000000000)='ext2\x00', &(0x7f0000000040)='./file0/../file0\x00', 0x0, 0x0, 0x0, 0x104e034, &(0x7f00000001c0)={[{@data_err_abort}]}) [ 1503.044556] FAULT_INJECTION: forcing a failure. [ 1503.044556] name fail_page_alloc, interval 1, probability 0, space 0, times 0 [ 1503.047327] CPU: 0 PID: 11579 Comm: syz-executor.5 Not tainted 5.10.60 #1 [ 1503.048843] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS rel-1.14.0-0-g155821a1990b-prebuilt.qemu.org 04/01/2014 [ 1503.051263] Call Trace: [ 1503.051840] dump_stack+0x107/0x163 [ 1503.052645] should_fail.cold+0x5/0xa [ 1503.053480] __alloc_pages_nodemask+0x17f/0x670 [ 1503.054539] ? __alloc_pages_slowpath.constprop.0+0x2090/0x2090 [ 1503.055881] ? trace_hardirqs_on+0x5b/0x180 [ 1503.056885] ? kmem_cache_free+0x99/0x2f0 [ 1503.057828] alloc_pages_current+0x187/0x280 [ 1503.058836] __get_free_pages+0xc/0xa0 [ 1503.059689] tlb_remove_table+0x3ca/0xcb0 [ 1503.060641] ___pte_free_tlb+0x86/0xb0 [ 1503.061497] free_pgd_range+0x736/0x1390 [ 1503.062487] free_pgtables+0x22a/0x2f0 [ 1503.063350] exit_mmap+0x28e/0x4e0 [ 1503.063506] FAULT_INJECTION: forcing a failure. [ 1503.063506] name failslab, interval 1, probability 0, space 0, times 0 [ 1503.064114] ? do_munmap+0x40/0x40 [ 1503.064219] mmput+0xca/0x340 [ 1503.068269] free_bprm+0x65/0x2e0 [ 1503.069020] do_execveat_common.isra.0+0x534/0x670 [ 1503.070148] __x64_sys_execveat+0xe7/0x130 [ 1503.071067] do_syscall_64+0x33/0x40 [ 1503.071910] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 1503.073014] RIP: 0033:0x466609 [ 1503.073735] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1503.077669] RSP: 002b:00007feb29e67188 EFLAGS: 00000246 ORIG_RAX: 0000000000000142 [ 1503.079299] RAX: ffffffffffffffda RBX: 000000000056bf80 RCX: 0000000000466609 [ 1503.080833] RDX: 0000000000000000 RSI: 00000000200002c0 RDI: ffffffffffffffff [ 1503.082354] RBP: 00007feb29e671d0 R08: 0000000000000000 R09: 0000000000000000 [ 1503.083878] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 1503.085416] R13: 00007ffde08160ef R14: 00007feb29e67300 R15: 0000000000022000 [ 1503.086985] CPU: 1 PID: 11589 Comm: syz-executor.3 Not tainted 5.10.60 #1 [ 1503.087761] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS rel-1.14.0-0-g155821a1990b-prebuilt.qemu.org 04/01/2014 [ 1503.089023] Call Trace: [ 1503.089324] dump_stack+0x107/0x163 [ 1503.089733] should_fail.cold+0x5/0xa [ 1503.090160] ? alloc_fdtable+0x7e/0x280 [ 1503.090599] should_failslab+0x5/0x10 [ 1503.091024] kmem_cache_alloc_trace+0x55/0x350 [ 1503.091528] ? rwlock_bug.part.0+0x90/0x90 [ 1503.091976] alloc_fdtable+0x7e/0x280 [ 1503.092413] dup_fd+0x71a/0xc50 [ 1503.092846] unshare_files+0x16c/0x260 [ 1503.093281] ? __ia32_sys_unshare+0x40/0x40 [ 1503.093753] ? rcu_read_lock_sched_held+0x3a/0x70 [ 1503.094276] ? trace_rss_stat+0x174/0x210 [ 1503.094737] bprm_execve+0x123/0x1b00 [ 1503.095159] ? get_arg_page+0x153/0x200 [ 1503.095599] ? acct_arg_size+0xe0/0xe0 [ 1503.096038] ? open_exec+0x70/0x70 [ 1503.096432] ? memcpy+0x39/0x60 [ 1503.096800] ? copy_strings.isra.0+0x492/0x690 [ 1503.097300] ? copy_string_kernel+0x3ad/0x440 [ 1503.097778] do_execveat_common.isra.0+0x524/0x670 [ 1503.098330] __x64_sys_execveat+0xe7/0x130 [ 1503.098801] do_syscall_64+0x33/0x40 [ 1503.099215] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 1503.099758] RIP: 0033:0x466609 [ 1503.100114] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1503.102077] RSP: 002b:00007f7f3158e188 EFLAGS: 00000246 ORIG_RAX: 0000000000000142 [ 1503.102923] RAX: ffffffffffffffda RBX: 000000000056c038 RCX: 0000000000466609 [ 1503.103713] RDX: 0000000000000000 RSI: 00000000200002c0 RDI: ffffffffffffffff [ 1503.104520] RBP: 00007f7f3158e1d0 R08: 0000000000000000 R09: 0000000000000000 [ 1503.105306] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 1503.106098] R13: 00007ffe8cd6fa4f R14: 00007f7f3158e300 R15: 0000000000022000 [ 1503.237118] EXT4-fs error (device loop6): ext4_fill_super:4954: inode #2: comm syz-executor.6: iget: root inode unallocated [ 1503.241449] EXT4-fs (loop6): get root inode failed [ 1503.242568] EXT4-fs (loop6): mount failed [ 1514.616257] kmemleak: 1 new suspected memory leaks (see /sys/kernel/debug/kmemleak) 12:26:31 executing program 7: r0 = syz_io_uring_setup(0x4d4f, &(0x7f0000000080), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200), &(0x7f0000000140)=0x0) r2 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0) perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_io_uring_submit(r2, r1, 0x0, 0x4) io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0) execveat(0xffffffffffffffff, &(0x7f00000002c0)='./file0\x00', &(0x7f0000000380)=[&(0x7f0000000300)='*{+#+\v@\'-[*\x00', &(0x7f0000000340)='/dev/sg#\x00'], &(0x7f0000000640)=[&(0x7f00000003c0)='\x00', &(0x7f0000000440)='+)>{)U\x00', &(0x7f0000000480)='{@#@\x00', &(0x7f00000004c0)='\x00', &(0x7f0000000500)='/dev/sg#\x00', &(0x7f0000000540)='/dev/sg#\x00', &(0x7f0000000580)='\x00', &(0x7f00000005c0)='\x00', &(0x7f0000000600)='\x00'], 0x1000) 12:26:31 executing program 5 (fault-call:6 fault-nth:41): r0 = syz_io_uring_setup(0x4d4f, &(0x7f0000000080), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=0x0, &(0x7f0000000140)=0x0) syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_POLL_ADD={0x6, 0x0, 0x0, @fd=r0, 0x0, 0x0, 0x0, {0x194}}, 0x0) r3 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0) perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_io_uring_submit(r3, r2, &(0x7f0000000100)=@IORING_OP_SPLICE, 0x4) io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0) execveat(0xffffffffffffffff, &(0x7f00000002c0)='./file0\x00', 0x0, 0x0, 0x0) 12:26:31 executing program 3 (fault-call:5 fault-nth:27): r0 = syz_io_uring_setup(0x4d4f, &(0x7f0000000080), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200), &(0x7f0000000140)=0x0) r2 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0) perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_io_uring_submit(r2, r1, &(0x7f0000000100)=@IORING_OP_SPLICE, 0x4) io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0) execveat(0xffffffffffffffff, &(0x7f00000002c0)='./file0\x00', 0x0, 0x0, 0x0) 12:26:31 executing program 2: r0 = syz_init_net_socket$802154_dgram(0x24, 0x2, 0x0) r1 = dup(r0) sendmsg$BATADV_CMD_GET_BLA_BACKBONE(r1, &(0x7f0000000540)={&(0x7f0000000100), 0xc, &(0x7f0000000500)={0x0}}, 0x10) sendmmsg(r0, &(0x7f000000aa40)=[{{&(0x7f0000000080)=@generic={0x1, "4c6acda515a5c60d6ce0d4e06d9f708243b907db89fdd843bf175c8adcb718d1dd8d762c6571254a885c9d4ab28aad3f88f2696a6db7572fa92c2fce11c4f66bfcd386f261a0acd691825b6499c894b11a7b9496af1a0ecbcf397026ca3e34dda1a2d736b3e885a2e8563cd72a60531a306d48bc15b0a987970f2b8ad663"}, 0x80, &(0x7f0000000000)=[{&(0x7f0000000140)="5d8dc11e96a40493905278fd91552d741a5f1ed1fae6873a27d9a347878f57dc3e3630fd4ffebea700e5c115d066ccf41ca5b80fd4676f7fe4a738fa8d0f95ef82eba481113aec880f48cbae252629ce3719ab53821c475e6fb8b465bad62461d124f868ec17fd49a86c643f1d43fda9e22a51c45a43c51a2d4a859d3e104ff3487e5aad7244725044e4429a4c44f8051310ce3de95d59a5b92edb40f08c9739d6cb250705a1fb38ffe2562b3d9bad3a9f3fba34c39f00341f2db0a4cd62e94dc7b421b0d2bb2854c0032087b7c6af71900e010e1346ff2b2aebbb6c8440f0a2b3c6134a62dc698c3d28aedb311911c3", 0xf0}, {&(0x7f0000000580)="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", 0x1000}, {&(0x7f0000000240)="2d71a583ab37a6eff3095bbb996bd9a6249a3980bc9dad0403599668593f65c42e6dd03503782350c11ba0d962319aaf1e2d625b8fd03709ea621fe1f048903da83416f7ae19f4c91c58ead0810b39007d", 0x51}], 0x3, &(0x7f0000001580)=[{0x20, 0x116, 0x1, "3d8e018898996a1bed8dc99841719eb6"}, {0x1010, 0x103, 0x4, "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"}, {0x1010, 0x110, 0x5, "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"}], 0x2040}}, {{&(0x7f00000002c0)=@un=@file={0x0, './file0\x00'}, 0x80, &(0x7f0000000340), 0x0, &(0x7f0000000380)=[{0x28, 0x113, 0x2bcdc451, "5bdc5bfec3f9cffe8f42f670cbe4bc284bcf5f7881e5ad6c"}, {0xc8, 0x10f, 0x7, "94cbaae4701ad2f33e526e726f0db62c3065a19f0a976a00a82f7de7a44a72b19fd5223840e41e6c272dd1fbdf3dd9b6ac992bd60e3ef8b0d8316179e9ec46245ee5b6afe6d5dd6dcfa85270c6349ff974a8e95a4c0fec621ddd5421d3b627620381773389a9beaa4b342bf02f09d04ea2f6d3422c1514c7b91e595750d022707c22a8ae8bd6341202742caa1d4ef1784c57847ef1310cd506cf9f13b33489c2d60857c5328d77245db18b33443c6db59aee9430"}], 0xf0}}, {{&(0x7f0000000480)=@ax25={{0x3, @null, 0x6}, [@default, @netrom={0xbb, 0xbb, 0xbb, 0xbb, 0xbb, 0x0, 0x0}, @bcast, @bcast, @bcast, @netrom={0xbb, 0xbb, 0xbb, 0xbb, 0xbb, 0x0, 0x0}, @bcast, @remote={0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0x1}]}, 0x80, &(0x7f0000003680)=[{&(0x7f00000035c0)="9b9784f8a48c516325bff6698a0722128ec9a4950c44b055b0c7f8996d1132702e9ec82e9701bc4c9340aee011232097e7d9c3efd3ec5c4ff92cb8fb8011305149d3c7a197ee5fb4816fc8cb06f2ce310a73ceaa8589450678a5bace40327a1f2cb948aa48431b6ee50bb0d718020403c94b999e1b1628d788e3f65ad29bd89b5d03c38cbec9ce1d22b9f687b8163e58cec9d569b260a40869388cbaeca884f973a31395ccba8a5a4414732daa73cc6429", 0xb1}], 0x1, &(0x7f00000036c0)=[{0xf0, 0x113, 0x2, "656402584d1c949db0ea555e3f207825fdea6d531a1ec6068e676432d2172a5305b3d36fe45dd94d52abdc51d85722523357d5f2783ba702b52f2f8771ea21853f3b6435a54112b5f95f166aaa9053542276560dffea88e1be6045c53ba1a0e5edd584503ab3836bcf47e72d2d0d136e7f86317cb87c2629b2cb8b699a267dc61e5aeb2269eaf805970e38a5124ac21725b5279d209ce4f75ebff9d98f36da22c896228e1d6f8905968a38099bd3291c8d78e3258947398a398b3acac7d822e7617d85aef905e0960d6eb0d8d7d5ad862fa4464174dd5eb20821"}, {0x80, 0x3a, 0x5, "d36cd3b209d48550ddd62c9d47591bace3f7b339e1b82b40f3b0066120668fff8987c4dd85b09654d3ea692d394b1bb23f23f9016c593dc62573c0729aa5d4c8a0290a29246cbb8605893e8d57872b06f88d1b839886d7cc80e12770f42a2a171e8e506ebbd48986d7420c920162"}, {0xb8, 0x100, 0x20, "7afbd5fe30f65de78dff5978702b62bbf52d4983c82ba8c981d31b726a7bc8086e1b62b6f5e8978aafc674a8f82d5b60e2543dd49225826bc37bf136142524c9c04dab96c529355a847ff043193dfd35575fc72429b3395b475131a208e55c8dbc17ab542048f6d7cccbe8abd8fc427e4956489ecdf23ce6079b68d358e7ddd779780ee30cccbe67899054602ff70b155117c81959f519b98279401f1d09a6bd74"}, {0xf0, 0x1, 0x3, "170bb20b64e9b1289da59dedb40d948dafa58541c9964fdf3efeecc81e8e13334dde89feca696fa931538aaf318da54740f231c386ca2a3e9cc547a5dddd9b4bf92b55f3d41ea572e34b3bd0a397be87a9e01d71f603bb312f5419260f0dcdcce0001f7fb60fce15f3c53785c44bbfd270a2c331168e6511a75c157d53a5d2ab7294bcaf20de61939e5df89ec7b937385eca7e6d97c417fa7ee6471fe2812d25818969489a1fce4c961ea6e8959f49ba91e3fe2bd2baa8997ba895838042757f3fb67764e2be39cf287a4afac16236660f289f1a9d696bbf3296d289"}, {0xa8, 0x113, 0xffff, "abc7032a7d60631f8b3a52c0a138df3538a25f8ca3f28c1414493a961ea09a9cac90b6735ae2918bb43af31488ea98ab2e7d3bab5c64e56b635d2cb5e610d8c3bd9db0f4e9aa233c378bc3d0a2c4d7421505059483b7de821e6c90791ca2760e364fff295e091d8ffb008c755a631d2ffaa828c0803aec9171120e56bd11b5fb552956857f4cd4f23fa072b9258bd76f3ffeee5bf17fd1c5"}, {0x1010, 0x111, 0x7, "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"}, {0x110, 0x109, 0x5, "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"}, {0x108, 0x84, 0x28, "e2faf8b2afc79b184173b5e5199e11c554a80e335f7350a56fbd9de9dcc80ec7ef88cf2118394fb19d1d338ee5badb101e2fd8746e6fdfc275ecd950650886ddeee480eee261cfe98ec2d20398fea8b8ca99bbd6f0a0622e22daebbe3260f06fa3f4c44c8ffb463036e705373cb668336cdf1dcb73c0a25a9a9fb8732904a0f7c6d326ef32f2a18f9d17537a9d5a9cee4d5d755fe934bf80c1301fef7fb71656174f2a85e1e8b0f33a005980b46da0bf8dc69e03023cf13ca74aba925fad9048e61e8b064cf91a89435eb406ffd526d0ed1bd79decf9e472c2a12b98a6354531fbf6700b95c44527e2a13831fb2e3e152db0"}, {0xb0, 0x119, 0x2, "2613cc238ace61cbd7f716f60819dafcadf879b37550799511e514a46b436bb0a59f5bec176775895f3aac0b256705f1116a3a9e0f09201ce04e553f9fd3f525dd565be48ba18a0b060df77d93295dc2e91202c54ece5a4189e05c6e60e59cbaca5c44d586f88b59b919c82c0da26b2c083ed264b6cdcabe7aea60daceb6f9b2fb22bb48c8f914ce91ffb68078fe2858ed7805219df30baa5856b8"}], 0x1698}}, {{0x0, 0x0, &(0x7f00000060c0)=[{&(0x7f0000004d80)="0297b278159bd4b780212e872bbe277757b8a55763f35fdad5c8f23507548b9602dd44623f9b497649133998acae2be4dfeef52e764e64691830af2e63129ec8b29f96b45d054a19dd9dea9dc310e9b2701fdf0cabfd627357087184b3d86811754bfd989b2437a0c552a289bdc78ac42a49de1fe1404b16f43bd0042c08a82800490165e75527c4ba9323c9b068c2a808761bd4d0e577cc4cb4756c46f18ed975a2b4a07f3d489a1f4b276eaef4ae4799bbe529be0b72916b7297aa83241dd23004e5c04681090824f89ee115cbb558dc21", 0xd2}, {&(0x7f0000004e80)="2ceacc09be38e9aa8b48f41605c2ec85eee3f8ca9bfdf80244de6dd632d977a16d833e70c12c6c524e8d617456f4061ee2ee0c283f466a19e8f1a17bba624c33ec8b741aae440972eaf18867c75c991bb0825a2006ffda3b3f9042fe3649247f0b0e0919a4add85020d73085d7b4c9556580570ba7cec682ddb0f964a1ecf32abcee7ed95d5f1bbcb290a1c9c6372f3631de4a23", 0x94}, {&(0x7f0000004f40)="de338cd6b235d8c4379e26739101f9ec44502738557230fcabe78c44307d7f2fb933087d4ed1371c3d854120a82d55c4f5490ef7ed3a721244db7b3b12739717a577ecbc178ad065a17fe6a35ff62738364a1bc214bc46b38b8ae26aa8617ab18480d2154be37a353adc92ef1cc964e14d", 0x71}, {&(0x7f0000004fc0)="b4c83900f31d8b257814e4a0ef9b9db22fb515cc0ca2cf314d0a3ad1ed272234c8bbbe7b02ad749036ee5456ca1438a06439a4c2605f6bce68969f2c06d4b34de650405ad88da5a43d46bce6749ff22f5bcb7d2a", 0x54}, {&(0x7f0000005040)="6dbbfbd4b6d3ed3bb3fe46fe43394e9d0ec0991dac00a90d5036a675a8d400bed610b3eeb31f25b0b290", 0x2a}, {&(0x7f0000005080)="8e", 0x1}, {&(0x7f00000050c0)="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", 0x1000}], 0x7, &(0x7f0000006140)=[{0x1010, 0x8, 0x1, "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"}, {0x78, 0x100, 0x27, "9dc0dfc02d52b11275e818840deb959c022bae4b7910770cded39914e1580ee1b45e427ce23787997e2a05a01a64862143a52d5833da88498cbb9eb7efa58266570fb052d0aad18982773f43739e4ed304c6c5699342ef23bdd1833893cb637e1ef6e28b4bf0"}, {0xd0, 0x1, 0x0, "a276297521fee77bcbebe419d904b65ee4cbae32f23eea5c35edcecf7d00dc86574f82c9e3ef9181b0345c0aa4263b52a24ebbab8870f763183906a5f1b6be43dd3df44dc5a23d5fb6625f8a8e6eec4fc79836297086c7402e5a2d2ed4cb9c23ebbec2470e8da8f9c9d271c62517c533a1087b9733c7e6d5f66b8a3e8663800d47c89175aded00789621dbe137ba1e381a7b777e53501cd4c11ad585ca60173c12e8c5fe41ac1ff096a0c9ff54b11cd344a8089d108682f3e61bef3504e6e32a"}, {0x20, 0x102, 0x1, "f4957945fcd8bc401e5885e230e330b0"}, {0x1010, 0x116, 0x7, "06f27d0dd20176aad72eadd0e5340a5f12acfbd002bea860457186f55fb5ce83fc14c7dd10c402c38e998d8d4facf527c641f0f7e6a17c3bb7456ec301b66826781e411ee8da0abde3e77b36d3f82964a3a13825f2a6be93f18da901b286e6abad223e73f75de6c16059ab5c1a7c9d834192a9b0e2bf1abcceee570b5fb5596d5fc50abe72e8f4588785508e481268d4d735d2611e412327b1383a7c798f82968716e8c3e861198a9c14b895cf61c716f20a43fe8e0385b5c09756fe21f74d7f5f0cf48632a1cd0a099dfb2295ac056a0207fdc4222b17af04fc8774801ac9d86e8abb5aed0c7fda0189ba3d6d0c04dc4a08e59250237d578255a8d389b5ba572da3389fae4c38a800492e937a4c3f9c5fb805f3f6ea8583956dcbaffb947f836f89b8daa49cd389b953533a54a131b0bb83ae450816651c2715bbd1327d0429014e8a7cb384586ce039abc5d3b20839d149a7c496271e7e5b32bb80fd9861bca692c4f6f675de515e550cc8f79412329c98d9758a33ea835189194dd244f1be82290d749cc6d8f3c0854c3bd60de74bab4a2240ac40b77158640ba7ddcbdb4cc469b783967b4cc84ded8bddca353a0b077e7a01fdef060a405a5895d2c3ae8cb92f6af961ed8e1424ade71e965721bd05274c22e15fd0a1d6a6c1e6e158f314f8ab01c79694f23dc7ca30287dfbb1fca05460b1c5774a053e81970205ff81b1ca4a807cb42b04b411a08dc34f01330da74a77f9ba84d202091885407c3f4b81487ea89b94bfe9da34b2400f580432900af27d9ff593d1d8709d7e3f6300555d4dfa8aec56fcacde6224ed781150d6890c3232bb2c53243734d6f3184442bf0f2c4e5779c50dd2f5ac0902a0b407f77369a262c7b59ed523c3e54b6b7dc6180e476376e93a8cf6791ddf1669f9c86cb8ff7221f415180190382e484ef13f336069ed680a1ab7fe9b59d39bdea0062f7fedfc8ea929540e3d55f7ee3d63b0e1e82e45f2715ee3b06764ecb673127047f01e62e04cb97ca95c027bb946d3efc5808310e5bf0bd5b75727273409f9492dcb49ca0c1f08b9bca3750146a9b8ff92381388184912df02e71af6176663cc1574bc0d490f7f39e1c44c679faebb9c8093199cd1a99b878fdc9f043b1bed81a94e884642cbc6ab6eedd6bb26c12921dca01bc54c6aab756dd2612adaeb4c67dd9f66328dda10d4532e330bf8772dcca8032d44d1e10865fc2580626a6d6583de1ec731424d634b90686277b9fe35348b66fd227d066388288f7716209f0dae76d392f5a97e009fa91e8ed8b049e6fef26d078aeed4796d85e2cae4f31c00fa7905aa10b2ff32393559cd1454987602c3d611b2f2851e07a66d9362c0e5d275e27d8007ba7ca5496602f07d3a89b7032ec91a2cd67c13926f6ae14fb69053bb3b71cba5509100c2470fbc32cf11d5d595f135004da39b54820a9101de10dff30b99b78e8a153819ea4341738ce9291259cea32607abfc0d4e057234853606dc5a85ba66bfb2096b29658260eb1c74e095a1fa8a0dd960b9e835b806e4a4bddb1e7df47b7612e2f67aab54f82ce0eacd19a7e9e7ae4105148965cfc1ce477861d94f4ea53e8c66db67053d06a3e6acb104279d70ccd60c4d25c41aa386120267c595587ac1729a3560982cf65683a0620cc3cd1ce2007aac7d0c427b51c29abc88fea03a451b289da4b9b9bdfd375ebf09a554028a780c042ee263d0b509a06d762d79737aa823f32b6953dece3dacea8429e0f7f1f4099bc284e107e6345123bc2e3b3b21eb941522a8992a9da8cf871ba55f34b06b48fe5da0e357117018055483eec3a976f7aa92d8017f3e42c0c0db39dfaaffe8f9e9804e2ff7e69e5a700278308373c027a66a50802b7a5926cc5ddd959f26ca87c0c3508db66ae466a1acdf6c07a916931c5d5e37feb09ca44f1432060dc489f2e5dd95a26b5f8fad0041d5b533f72e7ae7d9d6cd6e7089e3f8f4f3eb1f4fd913f5b707097921906756008d6de03c93827b3bfc804165b033df08e05aa5e56ce80708c1c207e2a2eb7e0172f65af7f3d4cedab1173af27e8e42c0b542721b4e8024c2251c232b63bb3cded1d69650edc39d6c91591dceea3d2bd4744ff67add304c82a37f737edbeb22bd161f8975f193b3ba515c9251cc324491c3b929109a591af8ed8d8d469ea2498dc6b61133e2a47e582bb537f08872dcdb6536e148c87e9e18263ac16510b8a33d5c409926a53260eb71cc69819ea2893a1da40600875296114ca037bbce14613d2883e631268dcfcf7f835cc840b9fc92e1e0b9aa456b1526ee5f150e908fafe9ccc09022fda3dd281e082e5589a106cee5fcbcdef43bc8ec4b0a53a476653d7dae5aaad158453c5b3968f5969571fdf7fa177bb99d4c6ab0f30365e5228c525dfd5cd1b8c86262b35cbaefe7cc700426eb5aa49cfc075d34a972e5816be068920e5b81fe8229e72a002bc009d814c0637c42a36d5c3ae9628735e02fd15203c02dee1169141390e4af99d6f71e3ef8e68b330289f09d11c0fccdae54eb89ba4231fefe453838fed3b1aa8bc5a55daceee1c8408a40e7d360bcfb6a4090f5e90955d9b0896cbbaa076b0409ff11fa3ccd1e53318e3041f4e4cd79b29dd3c25eb77558c5f2949d753faa763ddf8b562f069d5c34517a25ea70b2d794cce1450d8080a58a30a2effeed286d9d57cf516be8c876c0781be6242c5816efcdb0f9a47ffe69707c059aa6196c7785acca42c21b134e80755918088de9f0d2d9fc361edc6301c1914cbaa9c8e7f1b4028972a084630a205baaad40f855c81a7e95cdb2dadb1e51d217e3e1330218e26f6563d45c7e2eaa5a1177e0ee34794c51712e154ed15c7f37efd775e6e2c99a9062b15be41bd2d47e511c1b52a7b67b78e29d406adce62af55ebf77c2d736c02ce32e497084a4194cc55dfa23f0d5d6ee80e13c7ec577182d4ddd5465bad9ca557ebcca5d594b538eb9b83e4e87df83e5eb34b853eda7c92321e4fb46405fca7ed0175322709f69604baf9662cc37bddb82d4e3f6bcaf8f16f6f87d1625eac71c3fbd2073b761ed52af40082428ead2ae10738ec729629d65aa7bd296f8c2988d6f3934c1230569f8cf9bacf2baa43253c12c80ea9ff97fa70229e8881145b91393f9c900bc1dab07fd62e09728fd004492395b6d44f32c1efe87d65e01841ea3209b9b97d798fc450ee0d02d3e56bd59d4a2e183b629ff02a04ed31a572910e2c26e260f664d161c84598868e948afbd1db50e5840ed8b9ce1b4cf770d969e48e9e7c42bc5818226fdbcf42135bdb82b0d4bc158cc05a29b75ad88fb4eb0deaf034145b8c069e47568373fdb9a9a089ba7827cf74b6ab567a24a9dede75dd6a223e31a4486ef31bac032a4f713eeb3b6088b5985206fe4a2984982470d57fc62392ec3c4bffd39d0fdca593a118f2b581228c6764c67eb5a0d5a48732931e9e4a94c41ad1b5bf0cda69f5f9f0faa606b4fcef0a91ae9f7fe9545db5669f783bdaaf0331d46d34bf9cced999a5fa5129a58a1794aa5464e4ef7fb4f0905c655d095fd2224e3056b480422b42e75f051ce9dc51b9a01471401e0b5f93da4c303889c97bef5d1379e591ba9dcbd0a2a030d19e14b891028df63d62d22705a9d4a382fbe3971626149354921ac2540271533159bc29f4a1754990adff0f73a182c1d8fe1a83f877660b413569cbc759b0250dd188f171440a0d44dde1d22a5352b6b4d026698ca20e80683bd9d44a463d6b93f634ef72ab0e58f7938f57b2ed31b96e552fcde293abcaaff926c731de4467d4376ac883cd72b87ad522f1313dbe4a914dd8520c19ff6a4124ca8cf53ac16d418619f2e54e47e12b1a1e6a0feda293082a3f16149834942ad2ba8a78e26d305918de7f0cdd6e942f24a03be8527c25157791430ac9398fe8eff2078f4d874654324c54b86806a16c4d6b8acf10d7dc107d1863f9f6b40e49d8da7b3e1d717c4b41c815dee51dea1820331ed02c33d9606e2e108a7bc2fdcc5b7c54b6e5ae2dc728a2b7e648f7f47bd1f80aeaa5eca36cfb1339937465d6379db0d2e4ef77101c070645f6986790102e770f3e6857dc4be0427f5642b5c242dd647076a54f248205b5ba78655bcc9bb5335aadb42acbfa1038f1379add7e24b6e5a2a39e6ff28e2a6aac8e4cbd63258878ebb24fc9349be892e6df2214d93beed2ecaad1c778c2b91d5d18a770798efb03a902d294e3ab832a5251d869f3f455599f98fb19031bcdc2812d12e25e18c3073b6ff8b880d345452a6ed06a7e70c4b84154eb080d5791eef609897eda658d67349a9debc1db284d1e0a7774e11b62475c8565179cd90f87aa1289769d62a78e410ab6494c1b5e83ac8303a4bab8e1b9e9193145e9537802c864ff50a26d815c0cb11c42a78d994ae0f83d0d8846a714ef59efc2d67fbea4c34e14c483d187318b2f151800d987e65369608e094aadea47b1de99297a60a8d381e448e33525047a1a5b48d210759cdbd08cf8b06eb677975d2f175c25a63a3d92bcd47e2c13c65944266048e0a8ae6313f457fea88f4440357264c71624da143ad92f59b71dc0fd3ffd987c58f922a9ff1737d8b558cf4def304e38e9d062ad0d6031618773ad1c7cdab487583b8ba524d8dd82574f9a3919a4508cc84e0dd8f7e188e55393b5e98f0325a95b3ff3eb1008f3c00f300a6c6f6c0b2d47f51b226c5268900b39dc474a27f82fc70815ac32572d91702d22072367f6a264f9cd8079f1a7c3df691da23b95665b60e4cb1d91ae8f49925f88db5a385296e9d9ee03590eee79c5a231d3f031cbd35388229eb9f2131e6cbc027f989081635291adc548775a96298dccca73e5a809979871235f54d2153ea189bb5fc8891ffac32d8324d881748256b1623d49d2744738efddb1f8831c1bdcf6ab38cb467c4ff6fe950b8b84682d1f9e82b88d5eb0b758a43066e0ab72371b9e47a27f222a821ea39b1f5ae3d38de8a37d0219fc384922c19a37dade56287d2640aaecdd42a1c2e809f1e23c031ad03b4c88d2e8ec655b34ecfb1cbac4c4267050cb468bf862688d0c92807282bb02d90d4f045fb6b072577d0ac6465cf554c97542633b13ed899942bf24b54664775881ffdbf8d9e7ba243c60e460288887aa728d4392cdfd4fdac4a70088f4c6f994236935fa3dcf26f7f87addeff9ec0d0ec74917ce94d2db323528209f75b5eafd0d35d1ecacc1d64e30c8ed221387e366e5fbb9df0b819a60e622b0074f968abe3ad7927006a935b425b02250c82ba7460b41f0104232ebfc3de2868c64934d5815c050cc1004365a58058994df161767406151b6c911503c2614afc3d0a74b85a892eb5132901eea8428080b428a0580009c296611ee835064471c58fa79eed66a771b35bdeb50360c0e49e0e4825f2060ceed99ff114f7f6fc62a6661e29523b05e53b2d4e185127c23ca6927eb8a50c84d8d3d3987131f54dd4c37ddd09271464006ea835f793ebe1b9ca71c95feb072365058b117e5931c1df9c9b3cc3e712985b2fcedfde13aeacd9ac08824d165f39f74634232da59544ae36deb33b85448ef413785acf877749c45c20f92d7f210752c8441968f66b83270b0f17ca585a27b52153fe04ca7f284a1f9999f2f5608733a3959e097490d249eac267a5d7b364d0dd363da557ab6200594e91095cce0a651c42eb1b1fb92cf602fce5cd2d1db36095b4e6182838b8af6b502822106e5711c0b4c05cd920f6ca98c9da93b67bd4a6eadad5ade51125cd"}, {0x108, 0x9d, 0x2, "07e34e3952021d707adf7109ef762d249c5865c58bd473fab92504af6e32c232d499c56378330a0579fb1ecc14b39451f3cce1c4cd29e28c8be8dea4c9f3c6001ab5f567afddd6b401d8b9b0ddea4f7ef2b13b48a57642a8140534ffd2da6ac1a55251f363b3699419c2686fb69f1fc6e066c0bcabbc79ca2993989171812e61e10028fbb014f030d96b0932342cf3e7d67f880d89fb3db049888237924c44e1ba2b64f1c9aa2e6cf7b5ad40da2f2c292fe85f4fff2c48ff173a7a1c3b8dd950504ecd8c278a64b92365b8d406bde87e122a481b9e35231bd61a834ef46b9ad6ab0d099570c4398e93ebbb21f765a7ff1ddabbc0f320ab"}, {0x60, 0xff, 0x1, "6afb173eba486244243f913297fb180b31e53de294839e25a280c909f938c485bb419bcbd045388a61c3f11615a3758eb34fc8c43817a813c22111d320a26ef0e5e0d8bbc98c89f3a91230dfcfd9"}, {0x58, 0x114, 0x5, "80905fbc62c222518b226c3ef34a0526f20f5c1337dad96ada49e5df456c3405e2225476d9042552f1e419ee6d9b1565665780a409dc5e2fc0df3caa5dee9c395cb81f926d23"}, {0x1010, 0x102, 0x6, "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"}], 0x3358}}, {{0x0, 0x0, &(0x7f0000009700)=[{0xffffffffffffffff}, {&(0x7f00000094c0)="a5ddfe1911203c12bd6693c0e6620e85c63c644d7284a3c2c6e9621a77cf6090c9a504e3489abe0f479935d8f42c3647ccb46b5edfc85ea9e66305d05f542e361ceb92268cbf02d7c240ea897bdbad50a1383a0ac532e64383017f11b3848150d1bc25eb4345a5bb3905b7031734f58e4bb0c118a005bdac2b58f1cc8e77c8074cea7558043002db26db8efa01224cfb4c84f31e351c117ab016f1dfd4d2b47f99f6a8311dfe4c10397b7eb386fa5978c184eee839b746a8a41e6428438069497c7bbc423229c123dfea280ef1e4b7475120c1b19cf48c31f56f2fbd5dd61a051363b4e8b1d740", 0xe7}, {&(0x7f00000095c0)="c1b0d75a764efce13e839fa5c78c78ab677d24ac7322efb63e46793543d644ac2bd80363bddf0a6aa8ec6a1e8b7f997b0c85d41c2b2538ad0f1d249f4733d26d324f9caea04ebcd580ef2e1ccba81ab7a92b5331d207ebcd65776983", 0x5c}, {&(0x7f0000009640)="57d63a6198d1021f7c30bc7ead08142b50ac0915b71f8fe1236484483d8c71a4c584a670c82dfbafdcf237808dcf229ae6e09092a6bac6a1ea18f6cdb56c08c30b56f6df77798e5be31984d0eed37e1f9634d3466d97efd6edeb6e058719fbab435d216ad399", 0x66}, {&(0x7f00000096c0)="b23a7c57796d95f8abcf915e0c24450bd0d3fc642a9f382dd8c8d09fa42b642e5d45a1a546e4d2f538703048cd", 0x2d}], 0x5, &(0x7f0000009780)=[{0xc0, 0x107, 0x6, "034d922480d3250b379fa1f0aaab6e9be7c81ce450304228eddce2cdabeaf413f9525fbbf633e102ae44a0e1318a9e87d4230c02427ae0356247a705fb696b3e36ba7e7dbb12fee835f983aad3e7887b56dca46dadc79d9b8be01a65dc41310e4629d14ea258eab52ab1a548fc7bf8694d408076df1d9542dcbac0c67bbf10926c243de5cc4570d609ebff535a07dffb76d059f6a0b4bf3bd13f9d16bcd0bfd5bdc9ed877a0d49f7bf2c5f526c"}, {0x58, 0x1, 0x20, "d2c595bf091fb0aff3be382710f8b0a1ebcb9cfd2a5411a6ec246b98a919f5802112b3734dfcc30387ed58d4062470d9b91055f72afa674099a6f015d9866175a3806c"}, {0x1010, 0x115, 0x50a, "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"}, {0xd0, 0x11, 0x1, "743541bde7ab953cdc799b5b0a0462c21199a7e8aba27e6f5a2f5a2bfadc676803036c79e92d3532770fe6c74ca3a0bed5945d80cb32f5809e5aaad28d791e23c319a4ae15c2c553eee80026cd99cfd1d5f0839404279a436d900068bef81fd20dab1469008b6b0b4f1f0cff04b761feb3656087dd5a76ad2d82c6d36a335d7786ff4bc17268f6316140ee5ed2ff1a7f2ebabc8879436db6a7b8f6ca0c781e9eafcc17de8d87d95d3296d470a29de4504cf65a5222aecce11d532f432e9d83"}, {0xa8, 0x102, 0xcc, "2aa7284a0c50c7c4df30d3aa3de2b4a7868b8723e5b0415fb8ee1a00c1979b24afdcd67ff1ea78b02f409d5ab2caf79359f2891a8c242804e46cdef3c9d7e9e2ec6e15578d8c11ced446fb5943821b0fa96bab7abb1a1e4052a5709ba6367ebef313ae3eed3444d3f91da78359b4978c0154fab3fe13dc6519bf1675d901ad3d9a40f7985c05a26415683b7208b5c3108e8e6b5c188bbf"}], 0x12a0}}], 0x5, 0xd5) ioctl$sock_SIOCINQ(r1, 0x541b, &(0x7f0000000040)) 12:26:31 executing program 0 (fault-call:6 fault-nth:37): r0 = syz_io_uring_setup(0x4d4f, &(0x7f0000000080), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=0x0, &(0x7f0000000140)=0x0) syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_POLL_ADD={0x6, 0x0, 0x0, @fd=r0, 0x0, 0x0, 0x0, {0x194}}, 0x0) r3 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0) perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_io_uring_submit(r3, r2, &(0x7f0000000100)=@IORING_OP_SPLICE, 0x4) io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0) execveat(0xffffffffffffffff, &(0x7f00000002c0)='./file0\x00', &(0x7f0000000380), 0x0, 0x1000) 12:26:31 executing program 4: syz_mount_image$ext4(0x0, &(0x7f0000000040)='./file0\x00', 0x40000, 0x3, &(0x7f0000000200)=[{&(0x7f0000010000)="2000000080000000060000006a0000000f000000000000000100000001000000004000000040000020000000e0f4655fe0f4655f0100ffff53ef010001000000dff4655f000000000000000001000000000000000b00000000010000280200000284", 0x62, 0x400}, {&(0x7f0000010400)="020000000300000004000000", 0xc, 0x800}, {&(0x7f0000011600)="ed41000000080000dff4655fe0f4655fe0f4655f000000000000040004", 0x1d, 0x2100}], 0x0, &(0x7f0000000080)=ANY=[]) syz_mount_image$ext4(&(0x7f0000000000)='ext2\x00', &(0x7f0000000040)='./file0/../file0\x00', 0x0, 0x0, 0x0, 0x104e034, &(0x7f00000001c0)={[{@data_err_abort}]}) 12:26:31 executing program 1: r0 = syz_io_uring_setup(0x4d4f, &(0x7f0000000080), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=0x0, &(0x7f0000000140)=0x0) syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_POLL_ADD={0x6, 0x0, 0x0, @fd=r0, 0x0, 0x0, 0x0, {0x194}}, 0x0) r3 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0) perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_io_uring_submit(r3, r2, &(0x7f0000000100)=@IORING_OP_SPLICE, 0x4) io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0) execveat(0xffffffffffffffff, &(0x7f00000002c0)='./file0\x00', &(0x7f0000000380), &(0x7f0000000640)=[0x0, 0x0, 0x0], 0x1000) 12:26:31 executing program 6: syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000040)='./file0\x00', 0x40000, 0x3, &(0x7f0000000200)=[{&(0x7f0000010000)="2000000080000000060000006a0000000f000000000000000100000001000000004000000040000020000000e0f4655fe0f4655f0100ffff53ef010001000000dff4655f000000000000", 0x4a, 0x400}, {&(0x7f0000010400)="020000000300000004", 0x9, 0x800}, {&(0x7f0000011600)="ed41000000080000dff4655fe0f4655fe0f4655f000000000000040004", 0x1d, 0x2100}], 0x0, &(0x7f0000000080)=ANY=[]) syz_mount_image$ext4(&(0x7f0000000000)='ext2\x00', &(0x7f0000000040)='./file0/../file0\x00', 0x0, 0x0, 0x0, 0x104e034, &(0x7f00000001c0)={[{@data_err_abort}]}) 12:26:31 executing program 4: syz_mount_image$ext4(0x0, &(0x7f0000000040)='./file0\x00', 0x40000, 0x3, &(0x7f0000000200)=[{&(0x7f0000010000)="2000000080000000060000006a0000000f000000000000000100000001000000004000000040000020000000e0f4655fe0f4655f0100ffff53ef010001000000dff4655f000000000000000001000000000000000b00000000010000280200000284", 0x62, 0x400}, {&(0x7f0000010400)="020000000300000004000000", 0xc, 0x800}, {&(0x7f0000011600)="ed41000000080000dff4655fe0f4655fe0f4655f000000000000040004", 0x1d, 0x2100}], 0x0, &(0x7f0000000080)=ANY=[]) syz_mount_image$ext4(&(0x7f0000000000)='ext2\x00', &(0x7f0000000040)='./file0/../file0\x00', 0x0, 0x0, 0x0, 0x104e034, &(0x7f00000001c0)={[{@data_err_abort}]}) [ 1521.597261] FAULT_INJECTION: forcing a failure. [ 1521.597261] name failslab, interval 1, probability 0, space 0, times 0 [ 1521.598973] CPU: 1 PID: 11622 Comm: syz-executor.0 Not tainted 5.10.60 #1 [ 1521.599966] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS rel-1.14.0-0-g155821a1990b-prebuilt.qemu.org 04/01/2014 [ 1521.601569] Call Trace: [ 1521.601947] dump_stack+0x107/0x163 [ 1521.602473] should_fail.cold+0x5/0xa [ 1521.603016] ? create_object.isra.0+0x3a/0xa10 [ 1521.603234] FAULT_INJECTION: forcing a failure. [ 1521.603234] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 1521.603661] should_failslab+0x5/0x10 [ 1521.606016] kmem_cache_alloc+0x5b/0x350 [ 1521.606602] create_object.isra.0+0x3a/0xa10 [ 1521.607224] ? __kasan_kmalloc.constprop.0+0xc2/0xd0 [ 1521.607938] kmem_cache_alloc+0x15b/0x350 [ 1521.608556] __alloc_file+0x21/0x310 [ 1521.609096] alloc_empty_file+0x6a/0x160 [ 1521.609673] path_openat+0xdf/0x2690 [ 1521.610221] ? stack_trace_consume_entry+0x160/0x160 [ 1521.610931] ? path_lookupat+0x780/0x780 [ 1521.611522] ? __lock_acquire+0x1616/0x5b60 [ 1521.612151] do_filp_open+0x192/0x3e0 [ 1521.612710] ? may_open_dev+0xf0/0xf0 [ 1521.613274] ? perf_trace_lock+0xb6/0x470 [ 1521.613858] ? perf_trace_lock+0xb6/0x470 [ 1521.614473] ? __lockdep_reset_lock+0x180/0x180 [ 1521.615144] ? find_held_lock+0x2c/0x110 [ 1521.615744] do_open_execat+0x10c/0x690 [ 1521.616309] ? __ia32_sys_uselib+0x40/0x40 [ 1521.616940] ? do_raw_spin_lock+0x129/0x270 [ 1521.617568] ? rwlock_bug.part.0+0x90/0x90 [ 1521.618208] bprm_execve+0x5b2/0x1b00 [ 1521.618742] ? get_arg_page+0x153/0x200 [ 1521.619334] ? open_exec+0x70/0x70 [ 1521.619841] ? memcpy+0x39/0x60 [ 1521.620318] ? copy_strings.isra.0+0x492/0x690 [ 1521.620985] ? copy_string_kernel+0x3ad/0x440 [ 1521.621655] do_execveat_common.isra.0+0x524/0x670 [ 1521.622394] __x64_sys_execveat+0xe7/0x130 [ 1521.623022] do_syscall_64+0x33/0x40 [ 1521.623572] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 1521.624321] RIP: 0033:0x466609 [ 1521.624810] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1521.627459] RSP: 002b:00007f4e87c42188 EFLAGS: 00000246 ORIG_RAX: 0000000000000142 [ 1521.628583] RAX: ffffffffffffffda RBX: 000000000056bf80 RCX: 0000000000466609 [ 1521.629628] RDX: 0000000020000380 RSI: 00000000200002c0 RDI: ffffffffffffffff [ 1521.630671] RBP: 00007f4e87c421d0 R08: 0000000000001000 R09: 0000000000000000 [ 1521.631713] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 1521.632763] R13: 00007ffc014a64bf R14: 00007f4e87c42300 R15: 0000000000022000 [ 1521.633836] CPU: 0 PID: 11624 Comm: syz-executor.5 Not tainted 5.10.60 #1 [ 1521.634627] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS rel-1.14.0-0-g155821a1990b-prebuilt.qemu.org 04/01/2014 [ 1521.635921] Call Trace: [ 1521.636232] dump_stack+0x107/0x163 [ 1521.636682] should_fail.cold+0x5/0xa [ 1521.637131] _copy_to_user+0x2e/0x180 [ 1521.637578] simple_read_from_buffer+0xcc/0x160 [ 1521.638127] proc_fail_nth_read+0x194/0x220 [ 1521.638635] ? proc_exe_link+0x1d0/0x1d0 [ 1521.639106] ? security_file_permission+0x178/0x550 [ 1521.639692] ? proc_exe_link+0x1d0/0x1d0 [ 1521.640161] vfs_read+0x226/0x580 [ 1521.640587] ksys_read+0x12d/0x250 [ 1521.641162] ? __ia32_sys_pwrite64+0x230/0x230 [ 1521.641693] ? lockdep_hardirqs_on_prepare+0x273/0x3e0 [ 1521.642295] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1521.642894] do_syscall_64+0x33/0x40 [ 1521.643317] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 1521.643910] RIP: 0033:0x41935c [ 1521.644273] Code: ec 28 48 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 f9 fc ff ff 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 31 c0 0f 05 <48> 3d 00 f0 ff ff 77 34 44 89 c7 48 89 44 24 08 e8 2f fd ff ff 48 [ 1521.646366] RSP: 002b:00007feb29e67170 EFLAGS: 00000246 ORIG_RAX: 0000000000000000 [ 1521.647235] RAX: ffffffffffffffda RBX: ffffffffffffffff RCX: 000000000041935c [ 1521.648045] RDX: 000000000000000f RSI: 00007feb29e671e0 RDI: 0000000000000005 [ 1521.648852] RBP: 00007feb29e671d0 R08: 0000000000000000 R09: 0000000000000000 [ 1521.649644] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 1521.650450] R13: 00007ffde08160ef R14: 00007feb29e67300 R15: 0000000000022000 [ 1521.650898] FAULT_INJECTION: forcing a failure. 12:26:31 executing program 1: r0 = syz_io_uring_setup(0x4d4f, &(0x7f0000000080), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=0x0, &(0x7f0000000140)=0x0) syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_POLL_ADD={0x6, 0x0, 0x0, @fd=r0, 0x0, 0x0, 0x0, {0x194}}, 0x0) r3 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0) perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_io_uring_submit(r3, r2, &(0x7f0000000100)=@IORING_OP_SPLICE, 0x4) io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0) execveat(0xffffffffffffffff, &(0x7f00000002c0)='./file0\x00', &(0x7f0000000380), &(0x7f0000000640)=[0x0, 0x0, 0x0], 0x0) [ 1521.650898] name failslab, interval 1, probability 0, space 0, times 0 [ 1521.652813] CPU: 1 PID: 11621 Comm: syz-executor.3 Not tainted 5.10.60 #1 [ 1521.653630] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS rel-1.14.0-0-g155821a1990b-prebuilt.qemu.org 04/01/2014 [ 1521.655069] Call Trace: [ 1521.655375] dump_stack+0x107/0x163 [ 1521.655780] should_fail.cold+0x5/0xa [ 1521.656218] ? create_object.isra.0+0x3a/0xa10 [ 1521.656744] should_failslab+0x5/0x10 [ 1521.657170] kmem_cache_alloc+0x5b/0x350 [ 1521.657640] create_object.isra.0+0x3a/0xa10 [ 1521.658136] ? __kasan_kmalloc.constprop.0+0xc2/0xd0 [ 1521.658722] kmem_cache_alloc_trace+0x153/0x350 [ 1521.659242] ? rwlock_bug.part.0+0x90/0x90 [ 1521.659718] alloc_fdtable+0x7e/0x280 [ 1521.660151] dup_fd+0x71a/0xc50 [ 1521.660537] unshare_files+0x16c/0x260 [ 1521.660983] ? __ia32_sys_unshare+0x40/0x40 [ 1521.661478] ? rcu_read_lock_sched_held+0x3a/0x70 [ 1521.662020] ? trace_rss_stat+0x174/0x210 [ 1521.662492] bprm_execve+0x123/0x1b00 [ 1521.662932] ? get_arg_page+0x153/0x200 [ 1521.663378] ? acct_arg_size+0xe0/0xe0 [ 1521.663827] ? open_exec+0x70/0x70 [ 1521.664296] ? memcpy+0x39/0x60 [ 1521.664740] ? copy_strings.isra.0+0x492/0x690 [ 1521.665324] ? copy_string_kernel+0x3ad/0x440 [ 1521.665876] do_execveat_common.isra.0+0x524/0x670 [ 1521.666575] __x64_sys_execveat+0xe7/0x130 [ 1521.667089] do_syscall_64+0x33/0x40 [ 1521.667519] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 1521.668157] RIP: 0033:0x466609 [ 1521.668600] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1521.671638] RSP: 002b:00007f7f315af188 EFLAGS: 00000246 ORIG_RAX: 0000000000000142 [ 1521.672864] RAX: ffffffffffffffda RBX: 000000000056bf80 RCX: 0000000000466609 [ 1521.673974] RDX: 0000000000000000 RSI: 00000000200002c0 RDI: ffffffffffffffff [ 1521.675173] RBP: 00007f7f315af1d0 R08: 0000000000000000 R09: 0000000000000000 [ 1521.676367] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 1521.677483] R13: 00007ffe8cd6fa4f R14: 00007f7f315af300 R15: 0000000000022000 12:26:31 executing program 2: syz_init_net_socket$802154_dgram(0x24, 0x2, 0x0) r0 = openat$tun(0xffffffffffffff9c, &(0x7f0000000040), 0x0, 0x0) ioctl$TUNSETQUEUE(r0, 0x400454ca, &(0x7f00000000c0)={'ipvlan1\x00'}) r1 = dup(r0) sendmsg$BATADV_CMD_GET_BLA_BACKBONE(r1, &(0x7f0000000540)={&(0x7f0000000080)={0x10, 0x0, 0x0, 0x80000}, 0xc, &(0x7f0000000240)={0x0}, 0x1, 0x0, 0x0, 0x22004819}, 0x8001) r2 = open_tree(r1, &(0x7f00000001c0)='./file0\x00', 0x800) r3 = accept$packet(r1, &(0x7f0000000140)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @link_local}, &(0x7f0000000180)=0x14) ioctl$F2FS_IOC_MOVE_RANGE(0xffffffffffffffff, 0xc020f509, &(0x7f0000000300)={r1, 0x411, 0x1f, 0x7}) ioctl$EVIOCGSND(r4, 0x8040451a, &(0x7f0000000340)=""/142) r5 = socket$inet6_udp(0xa, 0x2, 0x0) setsockopt$inet6_MRT6_ADD_MFC_PROXY(r5, 0x29, 0xd2, 0x0, 0x0) accept(r5, &(0x7f0000000400)=@isdn, &(0x7f0000000480)=0x80) r6 = syz_io_uring_complete(0x0) ioctl$CHAR_RAW_ROGET(r6, 0x125e, &(0x7f0000000100)) ioctl$sock_SIOCINQ(r3, 0x541b, &(0x7f0000000000)) r7 = accept4$inet(r2, &(0x7f0000000200)={0x2, 0x0, @initdev}, &(0x7f0000000280)=0x10, 0x80000) ioctl$sock_SIOCGIFVLAN_GET_VLAN_INGRESS_PRIORITY_CMD(r7, 0x8982, &(0x7f00000002c0)) [ 1521.706803] EXT4-fs error (device loop6): ext4_fill_super:4954: inode #2: comm syz-executor.6: iget: root inode unallocated [ 1521.709981] EXT4-fs (loop6): get root inode failed [ 1521.711233] EXT4-fs (loop6): mount failed 12:26:31 executing program 5: r0 = syz_io_uring_setup(0x4d4f, &(0x7f0000000080), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=0x0, &(0x7f0000000140)=0x0) syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_POLL_ADD={0x6, 0x0, 0x0, @fd=r0, 0x0, 0x0, 0x0, {0x194}}, 0x0) r3 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0) perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_io_uring_submit(r3, r2, &(0x7f0000000100)=@IORING_OP_SPLICE, 0x4) io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0) execveat(0xffffffffffffffff, &(0x7f00000002c0)='./file0\x00', 0x0, 0x0, 0x0) 12:26:31 executing program 7: r0 = syz_io_uring_setup(0x4d4f, &(0x7f0000000080), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=0x0, &(0x7f0000000140)=0x0) syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_POLL_ADD={0x6, 0x0, 0x0, @fd=r0, 0x0, 0x0, 0x0, {0x194}}, 0x0) r3 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0) perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_io_uring_submit(r3, r2, &(0x7f0000000100)=@IORING_OP_SPLICE, 0x4) io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0) execveat(0xffffffffffffffff, &(0x7f00000002c0)='./file0\x00', &(0x7f0000000380), &(0x7f0000000640)=[0x0, 0x0, 0x0], 0x1000) 12:26:31 executing program 3 (fault-call:5 fault-nth:28): r0 = syz_io_uring_setup(0x4d4f, &(0x7f0000000080), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200), &(0x7f0000000140)=0x0) r2 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0) perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_io_uring_submit(r2, r1, &(0x7f0000000100)=@IORING_OP_SPLICE, 0x4) io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0) execveat(0xffffffffffffffff, &(0x7f00000002c0)='./file0\x00', 0x0, 0x0, 0x0) 12:26:32 executing program 4: syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', 0x0, 0x40000, 0x3, &(0x7f0000000200)=[{&(0x7f0000010000)="2000000080000000060000006a0000000f000000000000000100000001000000004000000040000020000000e0f4655fe0f4655f0100ffff53ef010001000000dff4655f000000000000000001000000000000000b00000000010000280200000284", 0x62, 0x400}, {&(0x7f0000010400)="020000000300000004000000", 0xc, 0x800}, {&(0x7f0000011600)="ed41000000080000dff4655fe0f4655fe0f4655f000000000000040004", 0x1d, 0x2100}], 0x0, &(0x7f0000000080)=ANY=[]) syz_mount_image$ext4(&(0x7f0000000000)='ext2\x00', &(0x7f0000000040)='./file0/../file0\x00', 0x0, 0x0, 0x0, 0x104e034, &(0x7f00000001c0)={[{@data_err_abort}]}) [ 1521.887274] FAULT_INJECTION: forcing a failure. [ 1521.887274] name failslab, interval 1, probability 0, space 0, times 0 [ 1521.888598] CPU: 1 PID: 11659 Comm: syz-executor.3 Not tainted 5.10.60 #1 [ 1521.889335] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS rel-1.14.0-0-g155821a1990b-prebuilt.qemu.org 04/01/2014 [ 1521.890538] Call Trace: [ 1521.890825] dump_stack+0x107/0x163 [ 1521.891216] should_fail.cold+0x5/0xa [ 1521.891631] ? kvmalloc_node+0x61/0xf0 [ 1521.892056] should_failslab+0x5/0x10 [ 1521.892479] __kmalloc_node+0x76/0x4a0 [ 1521.892904] kvmalloc_node+0x61/0xf0 [ 1521.893300] alloc_fdtable+0xcd/0x280 [ 1521.893705] dup_fd+0x71a/0xc50 [ 1521.894066] unshare_files+0x16c/0x260 [ 1521.894481] ? __ia32_sys_unshare+0x40/0x40 [ 1521.894949] ? rcu_read_lock_sched_held+0x3a/0x70 [ 1521.895459] ? trace_rss_stat+0x174/0x210 [ 1521.895903] bprm_execve+0x123/0x1b00 [ 1521.896317] ? get_arg_page+0x153/0x200 [ 1521.896773] ? acct_arg_size+0xe0/0xe0 [ 1521.897191] ? open_exec+0x70/0x70 [ 1521.897602] ? memcpy+0x39/0x60 [ 1521.898015] ? copy_strings.isra.0+0x492/0x690 [ 1521.898617] ? copy_string_kernel+0x3ad/0x440 [ 1521.899194] do_execveat_common.isra.0+0x524/0x670 [ 1521.899726] __x64_sys_execveat+0xe7/0x130 [ 1521.900217] do_syscall_64+0x33/0x40 [ 1521.900638] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 1521.901224] RIP: 0033:0x466609 [ 1521.901640] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1521.903822] RSP: 002b:00007f7f315af188 EFLAGS: 00000246 ORIG_RAX: 0000000000000142 [ 1521.904684] RAX: ffffffffffffffda RBX: 000000000056bf80 RCX: 0000000000466609 [ 1521.905474] RDX: 0000000000000000 RSI: 00000000200002c0 RDI: ffffffffffffffff [ 1521.906357] RBP: 00007f7f315af1d0 R08: 0000000000000000 R09: 0000000000000000 [ 1521.907224] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 1521.908017] R13: 00007ffe8cd6fa4f R14: 00007f7f315af300 R15: 0000000000022000 [ 1534.387206] kmemleak: 1 new suspected memory leaks (see /sys/kernel/debug/kmemleak) 12:26:50 executing program 3 (fault-call:5 fault-nth:29): r0 = syz_io_uring_setup(0x4d4f, &(0x7f0000000080), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200), &(0x7f0000000140)=0x0) r2 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0) perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_io_uring_submit(r2, r1, &(0x7f0000000100)=@IORING_OP_SPLICE, 0x4) io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0) execveat(0xffffffffffffffff, &(0x7f00000002c0)='./file0\x00', 0x0, 0x0, 0x0) 12:26:50 executing program 6: syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000040)='./file0\x00', 0x40000, 0x3, &(0x7f0000000200)=[{&(0x7f0000010000)="2000000080000000060000006a0000000f000000000000000100000001000000004000000040000020000000e0f4655fe0f4655f0100ffff53ef010001000000dff4655f000000000000", 0x4a, 0x400}, {&(0x7f0000010400)="020000000300000004", 0x9, 0x800}, {&(0x7f0000011600)="ed41000000080000dff4655fe0f4655fe0f4655f000000000000040004", 0x1d, 0x2100}], 0x0, &(0x7f0000000080)=ANY=[]) syz_mount_image$ext4(&(0x7f0000000000)='ext2\x00', &(0x7f0000000040)='./file0/../file0\x00', 0x0, 0x0, 0x0, 0x104e034, &(0x7f00000001c0)={[{@data_err_abort}]}) 12:26:50 executing program 5: r0 = syz_io_uring_setup(0x4d4f, &(0x7f0000000080), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=0x0, &(0x7f0000000140)=0x0) syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_POLL_ADD={0x6, 0x0, 0x0, @fd=r0, 0x0, 0x0, 0x0, {0x194}}, 0x0) r3 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0) perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_io_uring_submit(r3, r2, &(0x7f0000000100)=@IORING_OP_SPLICE, 0x4) io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0) execveat(0xffffffffffffffff, &(0x7f00000002c0)='./file0\x00', 0x0, 0x0, 0x2) 12:26:50 executing program 2: r0 = syz_init_net_socket$802154_dgram(0x24, 0x2, 0x0) r1 = dup(r0) r2 = fcntl$dupfd(r1, 0x406, r1) r3 = socket$netlink(0x10, 0x3, 0x0) sendmsg$nl_generic(r3, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000240)={&(0x7f0000000080)=ANY=[@ANYBLOB="280000002c00010d000000000000e4ffffffffffffffffff"], 0x28}}, 0x0) stat(&(0x7f0000001cc0)='.\x00', &(0x7f0000001c00)={0x0, 0x0, 0x0, 0x0, 0x0}) setresuid(0xffffffffffffffff, r4, 0x0) sendmsg$nl_generic(r3, &(0x7f0000000180)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x80000000}, 0xc, &(0x7f0000000140)={&(0x7f0000000080)={0x4c, 0x18, 0x100, 0x70bd25, 0x25dfdbfd, {0x1b}, [@nested={0x2a, 0x39, 0x0, 0x1, [@typed={0x4, 0x3a}, @generic="b19556f9f88cd7c70a280cad7537ac6475ad84b32024f216759bd084674efcf2c297"]}, @nested={0xc, 0x18, 0x0, 0x1, [@typed={0x8, 0x24, 0x0, 0x0, @uid=r4}]}]}, 0x4c}, 0x1, 0x0, 0x0, 0xc0}, 0x8000) ioctl$TIOCMIWAIT(r2, 0x545c, 0x0) sendmsg$BATADV_CMD_GET_BLA_BACKBONE(r1, &(0x7f0000000540)={&(0x7f0000000100), 0xc, &(0x7f0000000500)={0x0}}, 0x0) ioctl$sock_SIOCINQ(r1, 0x541b, &(0x7f0000000000)) 12:26:50 executing program 0 (fault-call:6 fault-nth:38): r0 = syz_io_uring_setup(0x4d4f, &(0x7f0000000080), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=0x0, &(0x7f0000000140)=0x0) syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_POLL_ADD={0x6, 0x0, 0x0, @fd=r0, 0x0, 0x0, 0x0, {0x194}}, 0x0) r3 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0) perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_io_uring_submit(r3, r2, &(0x7f0000000100)=@IORING_OP_SPLICE, 0x4) io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0) execveat(0xffffffffffffffff, &(0x7f00000002c0)='./file0\x00', &(0x7f0000000380), 0x0, 0x1000) 12:26:50 executing program 1: r0 = syz_io_uring_setup(0x4d4f, &(0x7f0000000080), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=0x0, &(0x7f0000000140)=0x0) syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_POLL_ADD={0x6, 0x0, 0x0, @fd=r0, 0x0, 0x0, 0x0, {0x194}}, 0x0) r3 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0) perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_io_uring_submit(r3, r2, &(0x7f0000000100)=@IORING_OP_SPLICE, 0x4) io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0) execveat(0xffffffffffffffff, &(0x7f00000002c0)='./file0\x00', &(0x7f0000000380), &(0x7f0000000640)=[0x0, 0x0, 0x0], 0x0) 12:26:50 executing program 7: syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000040)='./file0\x00', 0x40000, 0x3, &(0x7f0000000200)=[{&(0x7f0000010000)="2000000080000000060000006a0000000f000000000000000100000001000000004000000040000020000000e0f4655fe0f4655f0100ffff53ef010001000000dff4655f000000000000000001000000000000000b00000000010000280200000284", 0x62, 0x400}, {&(0x7f0000010400)="0200000003000000040000006a00", 0xe, 0x800}, {&(0x7f0000011600)="ed41000000080000dff4655fe0f4655fe0f4655f000000000000040004", 0x1d, 0x2100}], 0x0, &(0x7f0000000080)=ANY=[]) syz_mount_image$ext4(&(0x7f0000000000)='ext2\x00', &(0x7f0000000040)='./file0/../file0\x00', 0x0, 0x0, 0x0, 0x104e034, &(0x7f00000001c0)={[{@data_err_abort}]}) 12:26:50 executing program 4: syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', 0x0, 0x40000, 0x3, &(0x7f0000000200)=[{&(0x7f0000010000)="2000000080000000060000006a0000000f000000000000000100000001000000004000000040000020000000e0f4655fe0f4655f0100ffff53ef010001000000dff4655f000000000000000001000000000000000b00000000010000280200000284", 0x62, 0x400}, {&(0x7f0000010400)="020000000300000004000000", 0xc, 0x800}, {&(0x7f0000011600)="ed41000000080000dff4655fe0f4655fe0f4655f000000000000040004", 0x1d, 0x2100}], 0x0, &(0x7f0000000080)=ANY=[]) syz_mount_image$ext4(&(0x7f0000000000)='ext2\x00', &(0x7f0000000040)='./file0/../file0\x00', 0x0, 0x0, 0x0, 0x104e034, &(0x7f00000001c0)={[{@data_err_abort}]}) [ 1540.663665] FAULT_INJECTION: forcing a failure. [ 1540.663665] name failslab, interval 1, probability 0, space 0, times 0 [ 1540.666229] CPU: 1 PID: 11686 Comm: syz-executor.3 Not tainted 5.10.60 #1 [ 1540.667708] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS rel-1.14.0-0-g155821a1990b-prebuilt.qemu.org 04/01/2014 [ 1540.670174] Call Trace: [ 1540.670761] dump_stack+0x107/0x163 [ 1540.671549] should_fail.cold+0x5/0xa [ 1540.672377] ? create_object.isra.0+0x3a/0xa10 [ 1540.673390] should_failslab+0x5/0x10 [ 1540.674234] kmem_cache_alloc+0x5b/0x350 [ 1540.675134] create_object.isra.0+0x3a/0xa10 [ 1540.676082] ? __kasan_kmalloc.constprop.0+0xc2/0xd0 [ 1540.676557] netlink: 4 bytes leftover after parsing attributes in process `syz-executor.2'. [ 1540.677208] __kmalloc_node+0x1b0/0x4a0 [ 1540.677239] kvmalloc_node+0x61/0xf0 [ 1540.677260] alloc_fdtable+0xcd/0x280 [ 1540.681073] dup_fd+0x71a/0xc50 [ 1540.681804] unshare_files+0x16c/0x260 [ 1540.682950] ? __ia32_sys_unshare+0x40/0x40 [ 1540.683882] ? rcu_read_lock_sched_held+0x3a/0x70 [ 1540.684935] ? trace_rss_stat+0x174/0x210 [ 1540.685856] bprm_execve+0x123/0x1b00 [ 1540.686689] ? get_arg_page+0x153/0x200 [ 1540.687568] ? acct_arg_size+0xe0/0xe0 [ 1540.688430] ? open_exec+0x70/0x70 [ 1540.689231] ? memcpy+0x39/0x60 [ 1540.689954] ? copy_strings.isra.0+0x492/0x690 [ 1540.690962] ? copy_string_kernel+0x3ad/0x440 [ 1540.691946] do_execveat_common.isra.0+0x524/0x670 [ 1540.693065] __x64_sys_execveat+0xe7/0x130 [ 1540.694003] do_syscall_64+0x33/0x40 [ 1540.694830] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 1540.695819] RIP: 0033:0x466609 [ 1540.696408] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1540.699805] RSP: 002b:00007f7f315af188 EFLAGS: 00000246 ORIG_RAX: 0000000000000142 [ 1540.701219] RAX: ffffffffffffffda RBX: 000000000056bf80 RCX: 0000000000466609 [ 1540.702542] RDX: 0000000000000000 RSI: 00000000200002c0 RDI: ffffffffffffffff [ 1540.703870] RBP: 00007f7f315af1d0 R08: 0000000000000000 R09: 0000000000000000 [ 1540.705206] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 1540.706523] R13: 00007ffe8cd6fa4f R14: 00007f7f315af300 R15: 0000000000022000 [ 1540.718115] FAULT_INJECTION: forcing a failure. [ 1540.718115] name failslab, interval 1, probability 0, space 0, times 0 [ 1540.720216] CPU: 1 PID: 11701 Comm: syz-executor.0 Not tainted 5.10.60 #1 [ 1540.721485] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS rel-1.14.0-0-g155821a1990b-prebuilt.qemu.org 04/01/2014 [ 1540.723519] Call Trace: [ 1540.723997] dump_stack+0x107/0x163 [ 1540.724657] should_fail.cold+0x5/0xa [ 1540.725382] ? security_file_alloc+0x34/0x170 [ 1540.726194] should_failslab+0x5/0x10 [ 1540.726878] kmem_cache_alloc+0x5b/0x350 [ 1540.727621] security_file_alloc+0x34/0x170 [ 1540.728409] __alloc_file+0xb6/0x310 [ 1540.729090] alloc_empty_file+0x6a/0x160 [ 1540.729816] path_openat+0xdf/0x2690 [ 1540.730501] ? stack_trace_consume_entry+0x160/0x160 [ 1540.731417] ? path_lookupat+0x780/0x780 [ 1540.732190] ? __lock_acquire+0x1616/0x5b60 [ 1540.733036] do_filp_open+0x192/0x3e0 [ 1540.733752] ? may_open_dev+0xf0/0xf0 [ 1540.734480] ? perf_trace_lock+0xb6/0x470 [ 1540.735253] ? perf_trace_lock+0xb6/0x470 [ 1540.736037] ? __lockdep_reset_lock+0x180/0x180 [ 1540.736931] ? find_held_lock+0x2c/0x110 [ 1540.737699] do_open_execat+0x10c/0x690 [ 1540.738445] ? __ia32_sys_uselib+0x40/0x40 [ 1540.739236] ? do_raw_spin_lock+0x129/0x270 [ 1540.740041] ? rwlock_bug.part.0+0x90/0x90 [ 1540.740868] bprm_execve+0x5b2/0x1b00 [ 1540.741576] ? get_arg_page+0x153/0x200 [ 1540.742316] ? open_exec+0x70/0x70 [ 1540.742974] ? memcpy+0x39/0x60 [ 1540.743578] ? copy_strings.isra.0+0x492/0x690 [ 1540.744422] ? copy_string_kernel+0x3ad/0x440 [ 1540.745287] do_execveat_common.isra.0+0x524/0x670 [ 1540.746210] __x64_sys_execveat+0xe7/0x130 [ 1540.747000] do_syscall_64+0x33/0x40 [ 1540.747695] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 1540.748643] RIP: 0033:0x466609 [ 1540.749253] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1540.752631] RSP: 002b:00007f4e87c21188 EFLAGS: 00000246 ORIG_RAX: 0000000000000142 [ 1540.754059] RAX: ffffffffffffffda RBX: 000000000056c038 RCX: 0000000000466609 [ 1540.755396] RDX: 0000000020000380 RSI: 00000000200002c0 RDI: ffffffffffffffff [ 1540.756723] RBP: 00007f4e87c211d0 R08: 0000000000001000 R09: 0000000000000000 [ 1540.758057] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 1540.759386] R13: 00007ffc014a64bf R14: 00007f4e87c21300 R15: 0000000000022000 12:26:51 executing program 1: r0 = syz_io_uring_setup(0x4d4f, &(0x7f0000000080), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=0x0, &(0x7f0000000140)=0x0) syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_POLL_ADD={0x6, 0x0, 0x0, @fd=r0, 0x0, 0x0, 0x0, {0x194}}, 0x0) r3 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0) perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_io_uring_submit(r3, r2, &(0x7f0000000100)=@IORING_OP_SPLICE, 0x4) io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0) execveat(0xffffffffffffffff, &(0x7f00000002c0)='./file0\x00', &(0x7f0000000380), &(0x7f0000000640)=[0x0, 0x0, 0x0], 0x0) 12:26:51 executing program 5: r0 = syz_io_uring_setup(0x4d4f, &(0x7f0000000080), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=0x0, &(0x7f0000000140)=0x0) syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_POLL_ADD={0x6, 0x0, 0x0, @fd=r0, 0x0, 0x0, 0x0, {0x194}}, 0x0) r3 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0) perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_io_uring_submit(r3, r2, &(0x7f0000000100)=@IORING_OP_SPLICE, 0x4) io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0) execveat(0xffffffffffffffff, &(0x7f00000002c0)='./file0\x00', 0x0, 0x0, 0x3) [ 1540.799682] EXT4-fs (loop6): mounting ext2 file system using the ext4 subsystem [ 1540.816861] EXT4-fs (loop7): mounted filesystem without journal. Opts: ,errors=continue [ 1540.818579] EXT4-fs error (device loop6): ext4_fill_super:4954: inode #2: comm syz-executor.6: iget: root inode unallocated [ 1540.821856] EXT4-fs (loop6): get root inode failed [ 1540.822525] EXT4-fs (loop6): mount failed 12:26:51 executing program 4: syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', 0x0, 0x40000, 0x3, &(0x7f0000000200)=[{&(0x7f0000010000)="2000000080000000060000006a0000000f000000000000000100000001000000004000000040000020000000e0f4655fe0f4655f0100ffff53ef010001000000dff4655f000000000000000001000000000000000b00000000010000280200000284", 0x62, 0x400}, {&(0x7f0000010400)="020000000300000004000000", 0xc, 0x800}, {&(0x7f0000011600)="ed41000000080000dff4655fe0f4655fe0f4655f000000000000040004", 0x1d, 0x2100}], 0x0, &(0x7f0000000080)=ANY=[]) syz_mount_image$ext4(&(0x7f0000000000)='ext2\x00', &(0x7f0000000040)='./file0/../file0\x00', 0x0, 0x0, 0x0, 0x104e034, &(0x7f00000001c0)={[{@data_err_abort}]}) 12:26:51 executing program 7: syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000040)='./file0\x00', 0x40000, 0x3, &(0x7f0000000200)=[{&(0x7f0000010000)="2000000080000000060000006a0000000f000000000000000100000001000000004000000040000020000000e0f4655fe0f4655f0100ffff53ef010001000000dff4655f000000000000000001000000000000000b00000000010000280200000284", 0x62, 0x400}, {&(0x7f0000010400)="0200000003000000040000006a00", 0xe, 0x800}, {&(0x7f0000011600)="ed41000000080000dff4655fe0f4655fe0f4655f000000000000040004", 0x1d, 0x2100}], 0x0, &(0x7f0000000080)=ANY=[]) syz_mount_image$ext4(&(0x7f0000000000)='ext2\x00', &(0x7f0000000040)='./file0/../file0\x00', 0x0, 0x0, 0x0, 0x104e034, &(0x7f00000001c0)={[{@data_err_abort}]}) 12:26:51 executing program 6: syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000040)='./file0\x00', 0x40000, 0x3, &(0x7f0000000200)=[{&(0x7f0000010000)="2000000080000000060000006a0000000f000000000000000100000001000000004000000040000020000000e0f4655fe0f4655f0100ffff53ef010001000000dff4655f000000000000000001000000000000000b00", 0x56, 0x400}, {&(0x7f0000010400)="020000000300000004", 0x9, 0x800}, {&(0x7f0000011600)="ed41000000080000dff4655fe0f4655fe0f4655f000000000000040004", 0x1d, 0x2100}], 0x0, &(0x7f0000000080)=ANY=[]) syz_mount_image$ext4(&(0x7f0000000000)='ext2\x00', &(0x7f0000000040)='./file0/../file0\x00', 0x0, 0x0, 0x0, 0x104e034, &(0x7f00000001c0)={[{@data_err_abort}]}) [ 1541.034237] EXT4-fs (loop7): mounted filesystem without journal. Opts: ,errors=continue [ 1541.043442] EXT4-fs (loop7): re-mounted. Opts: data_err=abort,,errors=continue [ 1541.071780] EXT4-fs (loop6): unsupported inode size: 0 [ 1541.072493] EXT4-fs (loop6): blocksize: 2048 12:27:03 executing program 2: r0 = syz_init_net_socket$802154_dgram(0x24, 0x2, 0x0) r1 = syz_init_net_socket$802154_dgram(0x24, 0x2, 0x0) r2 = dup(r1) ioctl$sock_SIOCINQ(r2, 0x541b, &(0x7f0000000000)) connect$802154_dgram(r2, &(0x7f00000001c0)={0x24, @none={0x0, 0x1}}, 0x14) r3 = dup(r0) sendmsg$BATADV_CMD_GET_BLA_BACKBONE(r3, &(0x7f0000000540)={&(0x7f0000000100), 0xc, &(0x7f0000000500)={0x0}}, 0x0) r4 = socket$netlink(0x10, 0x3, 0x0) sendmsg$nl_generic(r4, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000240)={&(0x7f0000000080)=ANY=[@ANYBLOB="280000002c00010d000000000000e4ffffffffffffffffff"], 0x28}}, 0x0) r5 = syz_init_net_socket$802154_dgram(0x24, 0x2, 0x0) r6 = dup(r5) ioctl$sock_SIOCINQ(r6, 0x541b, &(0x7f0000000000)) bind$802154_dgram(r6, &(0x7f00000000c0)={0x24, @none={0x0, 0x2}}, 0x14) r7 = syz_genetlink_get_family_id$devlink(&(0x7f0000000380), 0xffffffffffffffff) sendmsg$DEVLINK_CMD_TRAP_POLICER_GET(0xffffffffffffffff, &(0x7f0000000440)={&(0x7f0000000340)={0x10, 0x0, 0x0, 0x20000000}, 0xc, &(0x7f0000000400)={&(0x7f00000003c0)=ANY=[@ANYBLOB='<\x00\x00\x00', @ANYRES16=r7, @ANYBLOB="130425bd7000ffdbdf25450000000e0001006e657464657673696d0000000f0002006e657464657673696d300003000000"], 0x3c}, 0x1, 0x0, 0x0, 0x41}, 0x40000c5) fcntl$notify(r3, 0x402, 0x13) ioctl$sock_SIOCINQ(r3, 0x541b, &(0x7f0000000040)) getpeername$unix(0xffffffffffffffff, 0x0, &(0x7f0000000080)) bind$bt_sco(0xffffffffffffffff, &(0x7f0000000200), 0x8) 12:27:03 executing program 6: syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000040)='./file0\x00', 0x40000, 0x3, &(0x7f0000000200)=[{&(0x7f0000010000)="2000000080000000060000006a0000000f000000000000000100000001000000004000000040000020000000e0f4655fe0f4655f0100ffff53ef010001000000dff4655f000000000000000001000000000000000b00", 0x56, 0x400}, {&(0x7f0000010400)="020000000300000004", 0x9, 0x800}, {&(0x7f0000011600)="ed41000000080000dff4655fe0f4655fe0f4655f000000000000040004", 0x1d, 0x2100}], 0x0, &(0x7f0000000080)=ANY=[]) syz_mount_image$ext4(&(0x7f0000000000)='ext2\x00', &(0x7f0000000040)='./file0/../file0\x00', 0x0, 0x0, 0x0, 0x104e034, &(0x7f00000001c0)={[{@data_err_abort}]}) 12:27:03 executing program 7 (fault-call:1 fault-nth:0): syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000040)='./file0\x00', 0x40000, 0x3, &(0x7f0000000200)=[{&(0x7f0000010000)="2000000080000000060000006a0000000f000000000000000100000001000000004000000040000020000000e0f4655fe0f4655f0100ffff53ef010001000000dff4655f000000000000000001000000000000000b0000000001", 0x5a, 0x400}, {&(0x7f0000010400)="020000000300000004", 0x9, 0x800}, {&(0x7f0000011600)="ed41000000080000dff4655fe0f4655fe0f4655f000000000000040004", 0x1d, 0x2100}], 0x0, &(0x7f0000000080)=ANY=[]) syz_mount_image$ext4(&(0x7f0000000000)='ext2\x00', &(0x7f0000000040)='./file0/../file0\x00', 0x0, 0x0, 0x0, 0x104e034, &(0x7f00000001c0)) 12:27:03 executing program 4: syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000040)='./file0\x00', 0x0, 0x3, &(0x7f0000000200)=[{&(0x7f0000010000)="2000000080000000060000006a0000000f000000000000000100000001000000004000000040000020000000e0f4655fe0f4655f0100ffff53ef010001000000dff4655f000000000000000001000000000000000b00000000010000280200000284", 0x62, 0x400}, {&(0x7f0000010400)="020000000300000004000000", 0xc, 0x800}, {&(0x7f0000011600)="ed41000000080000dff4655fe0f4655fe0f4655f000000000000040004", 0x1d, 0x2100}], 0x0, &(0x7f0000000080)=ANY=[]) syz_mount_image$ext4(&(0x7f0000000000)='ext2\x00', &(0x7f0000000040)='./file0/../file0\x00', 0x0, 0x0, 0x0, 0x104e034, &(0x7f00000001c0)={[{@data_err_abort}]}) 12:27:03 executing program 0 (fault-call:6 fault-nth:39): r0 = syz_io_uring_setup(0x4d4f, &(0x7f0000000080), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=0x0, &(0x7f0000000140)=0x0) syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_POLL_ADD={0x6, 0x0, 0x0, @fd=r0, 0x0, 0x0, 0x0, {0x194}}, 0x0) r3 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0) perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_io_uring_submit(r3, r2, &(0x7f0000000100)=@IORING_OP_SPLICE, 0x4) io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0) execveat(0xffffffffffffffff, &(0x7f00000002c0)='./file0\x00', &(0x7f0000000380), 0x0, 0x1000) 12:27:03 executing program 3 (fault-call:5 fault-nth:30): r0 = syz_io_uring_setup(0x4d4f, &(0x7f0000000080), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200), &(0x7f0000000140)=0x0) r2 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0) perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_io_uring_submit(r2, r1, &(0x7f0000000100)=@IORING_OP_SPLICE, 0x4) io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0) execveat(0xffffffffffffffff, &(0x7f00000002c0)='./file0\x00', 0x0, 0x0, 0x0) 12:27:03 executing program 5: r0 = syz_io_uring_setup(0x4d4f, &(0x7f0000000080), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=0x0, &(0x7f0000000140)=0x0) syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_POLL_ADD={0x6, 0x0, 0x0, @fd=r0, 0x0, 0x0, 0x0, {0x194}}, 0x0) r3 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0) perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_io_uring_submit(r3, r2, &(0x7f0000000100)=@IORING_OP_SPLICE, 0x4) io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0) execveat(0xffffffffffffffff, &(0x7f00000002c0)='./file0\x00', 0x0, 0x0, 0x4) 12:27:03 executing program 1 (fault-call:6 fault-nth:0): r0 = syz_io_uring_setup(0x4d4f, &(0x7f0000000080), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=0x0, &(0x7f0000000140)=0x0) syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_POLL_ADD={0x6, 0x0, 0x0, @fd=r0, 0x0, 0x0, 0x0, {0x194}}, 0x0) r3 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0) perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_io_uring_submit(r3, r2, &(0x7f0000000100)=@IORING_OP_SPLICE, 0x4) io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0) execveat(0xffffffffffffffff, &(0x7f00000002c0)='./file0\x00', &(0x7f0000000380), &(0x7f0000000640)=[0x0, 0x0, 0x0], 0x0) [ 1553.430710] netlink: 4 bytes leftover after parsing attributes in process `syz-executor.2'. [ 1553.450908] Unsupported ieee802154 address type: 0 [ 1553.462832] EXT4-fs (loop4): bad geometry: block count 128 exceeds size of device (8 blocks) [ 1553.467453] FAULT_INJECTION: forcing a failure. [ 1553.467453] name failslab, interval 1, probability 0, space 0, times 0 [ 1553.468799] CPU: 0 PID: 11754 Comm: syz-executor.3 Not tainted 5.10.60 #1 [ 1553.469611] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS rel-1.14.0-0-g155821a1990b-prebuilt.qemu.org 04/01/2014 [ 1553.470917] Call Trace: [ 1553.471237] dump_stack+0x107/0x163 [ 1553.471653] should_fail.cold+0x5/0xa [ 1553.472101] ? kvmalloc_node+0x61/0xf0 [ 1553.472551] should_failslab+0x5/0x10 [ 1553.472998] __kmalloc_node+0x76/0x4a0 [ 1553.473458] ? __kasan_kmalloc.constprop.0+0xc2/0xd0 [ 1553.474058] kvmalloc_node+0x61/0xf0 [ 1553.474488] alloc_fdtable+0x138/0x280 [ 1553.474928] dup_fd+0x71a/0xc50 [ 1553.475327] unshare_files+0x16c/0x260 [ 1553.475768] ? __ia32_sys_unshare+0x40/0x40 [ 1553.476275] ? rcu_read_lock_sched_held+0x3a/0x70 [ 1553.476824] ? trace_rss_stat+0x174/0x210 [ 1553.477328] bprm_execve+0x123/0x1b00 [ 1553.477763] ? get_arg_page+0x153/0x200 [ 1553.478234] ? acct_arg_size+0xe0/0xe0 [ 1553.478675] ? open_exec+0x70/0x70 [ 1553.479093] ? memcpy+0x39/0x60 [ 1553.479466] ? copy_strings.isra.0+0x492/0x690 [ 1553.479996] ? copy_string_kernel+0x3ad/0x440 [ 1553.480534] do_execveat_common.isra.0+0x524/0x670 [ 1553.480713] netlink: 4 bytes leftover after parsing attributes in process `syz-executor.2'. [ 1553.481154] __x64_sys_execveat+0xe7/0x130 [ 1553.481171] do_syscall_64+0x33/0x40 [ 1553.481186] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 1553.483250] Unsupported ieee802154 address type: 0 [ 1553.483472] RIP: 0033:0x466609 [ 1553.485263] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1553.487371] RSP: 002b:00007f7f315af188 EFLAGS: 00000246 ORIG_RAX: 0000000000000142 [ 1553.488253] RAX: ffffffffffffffda RBX: 000000000056bf80 RCX: 0000000000466609 [ 1553.489092] RDX: 0000000000000000 RSI: 00000000200002c0 RDI: ffffffffffffffff [ 1553.489920] RBP: 00007f7f315af1d0 R08: 0000000000000000 R09: 0000000000000000 [ 1553.490738] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 1553.491556] R13: 00007ffe8cd6fa4f R14: 00007f7f315af300 R15: 0000000000022000 [ 1553.503628] FAULT_INJECTION: forcing a failure. [ 1553.503628] name failslab, interval 1, probability 0, space 0, times 0 [ 1553.505775] CPU: 1 PID: 11780 Comm: syz-executor.1 Not tainted 5.10.60 #1 [ 1553.506967] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS rel-1.14.0-0-g155821a1990b-prebuilt.qemu.org 04/01/2014 [ 1553.508922] Call Trace: [ 1553.509364] dump_stack+0x107/0x163 [ 1553.509969] should_fail.cold+0x5/0xa [ 1553.510604] ? getname_flags.part.0+0x50/0x4e0 [ 1553.511358] should_failslab+0x5/0x10 [ 1553.511983] kmem_cache_alloc+0x5b/0x350 [ 1553.512659] ? rcu_read_lock_any_held+0x69/0x90 [ 1553.513457] ? vfs_write+0x34f/0xa50 [ 1553.514075] getname_flags.part.0+0x50/0x4e0 [ 1553.514801] getname_flags+0x9a/0xe0 [ 1553.515420] __x64_sys_execveat+0xd0/0x130 [ 1553.516116] do_syscall_64+0x33/0x40 [ 1553.516728] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 1553.517601] RIP: 0033:0x466609 [ 1553.518133] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1553.521195] RSP: 002b:00007f443d715188 EFLAGS: 00000246 ORIG_RAX: 0000000000000142 [ 1553.522528] RAX: ffffffffffffffda RBX: 000000000056c038 RCX: 0000000000466609 [ 1553.523851] RDX: 0000000020000380 RSI: 00000000200002c0 RDI: ffffffffffffffff [ 1553.525143] RBP: 00007f443d7151d0 R08: 0000000000000000 R09: 0000000000000000 [ 1553.526468] R10: 0000000020000640 R11: 0000000000000246 R12: 0000000000000001 [ 1553.527777] R13: 00007ffeb6924e7f R14: 00007f443d715300 R15: 0000000000022000 12:27:03 executing program 3 (fault-call:5 fault-nth:31): r0 = syz_io_uring_setup(0x4d4f, &(0x7f0000000080), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200), &(0x7f0000000140)=0x0) r2 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0) perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_io_uring_submit(r2, r1, &(0x7f0000000100)=@IORING_OP_SPLICE, 0x4) io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0) execveat(0xffffffffffffffff, &(0x7f00000002c0)='./file0\x00', 0x0, 0x0, 0x0) [ 1553.548633] FAULT_INJECTION: forcing a failure. [ 1553.548633] name failslab, interval 1, probability 0, space 0, times 0 [ 1553.550831] CPU: 1 PID: 11763 Comm: syz-executor.0 Not tainted 5.10.60 #1 [ 1553.552046] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS rel-1.14.0-0-g155821a1990b-prebuilt.qemu.org 04/01/2014 [ 1553.554015] Call Trace: [ 1553.554549] dump_stack+0x107/0x163 [ 1553.555233] should_fail.cold+0x5/0xa [ 1553.555925] ? create_object.isra.0+0x3a/0xa10 [ 1553.556772] should_failslab+0x5/0x10 [ 1553.557464] kmem_cache_alloc+0x5b/0x350 [ 1553.558219] ? percpu_ref_put_many.constprop.0+0x4e/0x100 [ 1553.559207] create_object.isra.0+0x3a/0xa10 [ 1553.559960] ? __kasan_kmalloc.constprop.0+0xc2/0xd0 [ 1553.560801] kmem_cache_alloc+0x15b/0x350 [ 1553.561522] security_file_alloc+0x34/0x170 [ 1553.562258] __alloc_file+0xb6/0x310 [ 1553.562881] alloc_empty_file+0x6a/0x160 [ 1553.563559] path_openat+0xdf/0x2690 [ 1553.564198] ? stack_trace_consume_entry+0x160/0x160 [ 1553.565063] ? path_lookupat+0x780/0x780 [ 1553.565750] ? __lock_acquire+0x1616/0x5b60 [ 1553.566524] do_filp_open+0x192/0x3e0 [ 1553.567195] ? may_open_dev+0xf0/0xf0 [ 1553.567813] EXT4-fs (loop6): unsupported inode size: 0 [ 1553.567821] EXT4-fs (loop6): blocksize: 2048 [ 1553.568728] ? perf_trace_lock+0xb6/0x470 [ 1553.568741] ? perf_trace_lock+0xb6/0x470 [ 1553.568761] ? __lockdep_reset_lock+0x180/0x180 [ 1553.571412] ? find_held_lock+0x2c/0x110 [ 1553.572103] do_open_execat+0x10c/0x690 [ 1553.572763] ? __ia32_sys_uselib+0x40/0x40 [ 1553.573491] ? do_raw_spin_lock+0x129/0x270 [ 1553.574224] ? rwlock_bug.part.0+0x90/0x90 [ 1553.574938] bprm_execve+0x5b2/0x1b00 [ 1553.575587] ? get_arg_page+0x153/0x200 [ 1553.576290] ? open_exec+0x70/0x70 [ 1553.576883] ? memcpy+0x39/0x60 [ 1553.577497] ? copy_strings.isra.0+0x492/0x690 [ 1553.578299] ? copy_string_kernel+0x3ad/0x440 [ 1553.579059] do_execveat_common.isra.0+0x524/0x670 [ 1553.579982] __x64_sys_execveat+0xe7/0x130 [ 1553.580791] do_syscall_64+0x33/0x40 [ 1553.581444] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 1553.581715] FAULT_INJECTION: forcing a failure. [ 1553.581715] name failslab, interval 1, probability 0, space 0, times 0 [ 1553.582373] RIP: 0033:0x466609 [ 1553.582389] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1553.582400] RSP: 002b:00007f4e87c42188 EFLAGS: 00000246 ORIG_RAX: 0000000000000142 [ 1553.588697] RAX: ffffffffffffffda RBX: 000000000056bf80 RCX: 0000000000466609 [ 1553.589940] RDX: 0000000020000380 RSI: 00000000200002c0 RDI: ffffffffffffffff [ 1553.591140] RBP: 00007f4e87c421d0 R08: 0000000000001000 R09: 0000000000000000 [ 1553.592330] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 1553.593545] R13: 00007ffc014a64bf R14: 00007f4e87c42300 R15: 0000000000022000 [ 1553.594757] CPU: 0 PID: 11782 Comm: syz-executor.7 Not tainted 5.10.60 #1 [ 1553.595570] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS rel-1.14.0-0-g155821a1990b-prebuilt.qemu.org 04/01/2014 [ 1553.596955] Call Trace: [ 1553.597272] dump_stack+0x107/0x163 [ 1553.597688] should_fail.cold+0x5/0xa [ 1553.598128] ? getname_flags.part.0+0x50/0x4e0 [ 1553.598648] should_failslab+0x5/0x10 [ 1553.599075] kmem_cache_alloc+0x5b/0x350 [ 1553.599536] getname_flags.part.0+0x50/0x4e0 [ 1553.600026] ? wait_for_completion+0x270/0x270 [ 1553.600551] getname_flags+0x9a/0xe0 [ 1553.600982] do_mkdirat+0x8d/0x2a0 [ 1553.601388] ? user_path_create+0xf0/0xf0 [ 1553.601864] ? lockdep_hardirqs_on_prepare+0x273/0x3e0 [ 1553.602452] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1553.603037] do_syscall_64+0x33/0x40 [ 1553.603465] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 1553.604051] RIP: 0033:0x465717 [ 1553.604417] Code: 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 83 c8 ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 b8 53 00 00 00 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1553.606506] RSP: 002b:00007f2f6c54dfa8 EFLAGS: 00000246 ORIG_RAX: 0000000000000053 [ 1553.607372] RAX: ffffffffffffffda RBX: 0000000000000000 RCX: 0000000000465717 [ 1553.608175] RDX: 0000000000000000 RSI: 00000000000001ff RDI: 0000000020000040 [ 1553.608982] RBP: 00007f2f6c54e040 R08: 0000000000000000 R09: 000000000104e034 [ 1553.609799] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000020000000 [ 1553.610607] R13: 0000000020000040 R14: 00007f2f6c54e000 R15: 00000000200001c0 [ 1553.637382] EXT4-fs (loop7): mounted filesystem without journal. Opts: ,errors=continue 12:27:03 executing program 6: syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000040)='./file0\x00', 0x40000, 0x3, &(0x7f0000000200)=[{&(0x7f0000010000)="2000000080000000060000006a0000000f000000000000000100000001000000004000000040000020000000e0f4655fe0f4655f0100ffff53ef010001000000dff4655f000000000000000001000000000000000b00", 0x56, 0x400}, {&(0x7f0000010400)="020000000300000004", 0x9, 0x800}, {&(0x7f0000011600)="ed41000000080000dff4655fe0f4655fe0f4655f000000000000040004", 0x1d, 0x2100}], 0x0, &(0x7f0000000080)=ANY=[]) syz_mount_image$ext4(&(0x7f0000000000)='ext2\x00', &(0x7f0000000040)='./file0/../file0\x00', 0x0, 0x0, 0x0, 0x104e034, &(0x7f00000001c0)={[{@data_err_abort}]}) 12:27:03 executing program 2: r0 = syz_init_net_socket$802154_dgram(0x24, 0x2, 0x0) r1 = dup(r0) sendmsg$BATADV_CMD_GET_BLA_BACKBONE(r1, &(0x7f0000000540)={&(0x7f0000000100), 0x49, &(0x7f0000000500)={0x0}, 0x1, 0x0, 0x0, 0x4008004}, 0x0) r2 = syz_open_dev$vcsn(&(0x7f0000000080), 0x100000000, 0x100) syz_genetlink_get_family_id$nl80211(&(0x7f0000000040), r2) close_range(0xffffffffffffffff, r1, 0x0) ioctl$sock_SIOCINQ(r1, 0x541b, &(0x7f0000000000)) 12:27:03 executing program 4: syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000040)='./file0\x00', 0x0, 0x3, &(0x7f0000000200)=[{&(0x7f0000010000)="2000000080000000060000006a0000000f000000000000000100000001000000004000000040000020000000e0f4655fe0f4655f0100ffff53ef010001000000dff4655f000000000000000001000000000000000b00000000010000280200000284", 0x62, 0x400}, {&(0x7f0000010400)="020000000300000004000000", 0xc, 0x800}, {&(0x7f0000011600)="ed41000000080000dff4655fe0f4655fe0f4655f000000000000040004", 0x1d, 0x2100}], 0x0, &(0x7f0000000080)=ANY=[]) syz_mount_image$ext4(&(0x7f0000000000)='ext2\x00', &(0x7f0000000040)='./file0/../file0\x00', 0x0, 0x0, 0x0, 0x104e034, &(0x7f00000001c0)={[{@data_err_abort}]}) [ 1553.676738] EXT4-fs (loop7): re-mounted. Opts: ,errors=continue 12:27:03 executing program 1 (fault-call:6 fault-nth:1): r0 = syz_io_uring_setup(0x4d4f, &(0x7f0000000080), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=0x0, &(0x7f0000000140)=0x0) syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_POLL_ADD={0x6, 0x0, 0x0, @fd=r0, 0x0, 0x0, 0x0, {0x194}}, 0x0) r3 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0) perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_io_uring_submit(r3, r2, &(0x7f0000000100)=@IORING_OP_SPLICE, 0x4) io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0) execveat(0xffffffffffffffff, &(0x7f00000002c0)='./file0\x00', &(0x7f0000000380), &(0x7f0000000640)=[0x0, 0x0, 0x0], 0x0) [ 1553.720593] FAULT_INJECTION: forcing a failure. [ 1553.720593] name failslab, interval 1, probability 0, space 0, times 0 [ 1553.723548] CPU: 0 PID: 11791 Comm: syz-executor.3 Not tainted 5.10.60 #1 [ 1553.725180] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS rel-1.14.0-0-g155821a1990b-prebuilt.qemu.org 04/01/2014 [ 1553.727848] Call Trace: [ 1553.728478] dump_stack+0x107/0x163 [ 1553.729364] should_fail.cold+0x5/0xa [ 1553.730264] ? create_object.isra.0+0x3a/0xa10 [ 1553.731344] should_failslab+0x5/0x10 [ 1553.732233] kmem_cache_alloc+0x5b/0x350 [ 1553.733223] create_object.isra.0+0x3a/0xa10 [ 1553.734245] ? __kasan_kmalloc.constprop.0+0xc2/0xd0 [ 1553.735443] __kmalloc_node+0x1b0/0x4a0 [ 1553.736393] kvmalloc_node+0x61/0xf0 [ 1553.737296] alloc_fdtable+0x138/0x280 [ 1553.738222] dup_fd+0x71a/0xc50 [ 1553.739022] unshare_files+0x16c/0x260 [ 1553.739945] ? __ia32_sys_unshare+0x40/0x40 [ 1553.740961] ? rcu_read_lock_sched_held+0x3a/0x70 [ 1553.742113] ? trace_rss_stat+0x174/0x210 [ 1553.743108] bprm_execve+0x123/0x1b00 [ 1553.743989] ? get_arg_page+0x153/0x200 [ 1553.744918] ? acct_arg_size+0xe0/0xe0 [ 1553.745849] ? open_exec+0x70/0x70 [ 1553.746690] ? memcpy+0x39/0x60 [ 1553.747474] ? copy_strings.isra.0+0x492/0x690 [ 1553.748533] ? copy_string_kernel+0x3ad/0x440 [ 1553.749614] do_execveat_common.isra.0+0x524/0x670 [ 1553.750767] __x64_sys_execveat+0xe7/0x130 [ 1553.751768] do_syscall_64+0x33/0x40 [ 1553.752634] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 1553.753824] RIP: 0033:0x466609 [ 1553.754570] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1553.758927] RSP: 002b:00007f7f315af188 EFLAGS: 00000246 ORIG_RAX: 0000000000000142 [ 1553.760675] RAX: ffffffffffffffda RBX: 000000000056bf80 RCX: 0000000000466609 [ 1553.762392] RDX: 0000000000000000 RSI: 00000000200002c0 RDI: ffffffffffffffff [ 1553.764087] RBP: 00007f7f315af1d0 R08: 0000000000000000 R09: 0000000000000000 [ 1553.765762] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 1553.767482] R13: 00007ffe8cd6fa4f R14: 00007f7f315af300 R15: 0000000000022000 12:27:04 executing program 7 (fault-call:1 fault-nth:1): syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000040)='./file0\x00', 0x40000, 0x3, &(0x7f0000000200)=[{&(0x7f0000010000)="2000000080000000060000006a0000000f000000000000000100000001000000004000000040000020000000e0f4655fe0f4655f0100ffff53ef010001000000dff4655f000000000000000001000000000000000b0000000001", 0x5a, 0x400}, {&(0x7f0000010400)="020000000300000004", 0x9, 0x800}, {&(0x7f0000011600)="ed41000000080000dff4655fe0f4655fe0f4655f000000000000040004", 0x1d, 0x2100}], 0x0, &(0x7f0000000080)=ANY=[]) syz_mount_image$ext4(&(0x7f0000000000)='ext2\x00', &(0x7f0000000040)='./file0/../file0\x00', 0x0, 0x0, 0x0, 0x104e034, &(0x7f00000001c0)) 12:27:04 executing program 5: r0 = syz_io_uring_setup(0x4d4f, &(0x7f0000000080), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=0x0, &(0x7f0000000140)=0x0) syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_POLL_ADD={0x6, 0x0, 0x0, @fd=r0, 0x0, 0x0, 0x0, {0x194}}, 0x0) r3 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0) perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_io_uring_submit(r3, r2, &(0x7f0000000100)=@IORING_OP_SPLICE, 0x4) io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0) execveat(0xffffffffffffffff, &(0x7f00000002c0)='./file0\x00', 0x0, 0x0, 0x5) [ 1553.825887] EXT4-fs (loop6): unsupported inode size: 0 [ 1553.827268] EXT4-fs (loop6): blocksize: 2048 12:27:04 executing program 3 (fault-call:5 fault-nth:32): r0 = syz_io_uring_setup(0x4d4f, &(0x7f0000000080), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200), &(0x7f0000000140)=0x0) r2 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0) perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_io_uring_submit(r2, r1, &(0x7f0000000100)=@IORING_OP_SPLICE, 0x4) io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0) execveat(0xffffffffffffffff, &(0x7f00000002c0)='./file0\x00', 0x0, 0x0, 0x0) 12:27:04 executing program 6: syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000040)='./file0\x00', 0x40000, 0x3, &(0x7f0000000200)=[{&(0x7f0000010000)="2000000080000000060000006a0000000f000000000000000100000001000000004000000040000020000000e0f4655fe0f4655f0100ffff53ef010001000000dff4655f000000000000000001000000000000000b00000000010000", 0x5c, 0x400}, {&(0x7f0000010400)="020000000300000004", 0x9, 0x800}, {&(0x7f0000011600)="ed41000000080000dff4655fe0f4655fe0f4655f000000000000040004", 0x1d, 0x2100}], 0x0, &(0x7f0000000080)=ANY=[]) syz_mount_image$ext4(&(0x7f0000000000)='ext2\x00', &(0x7f0000000040)='./file0/../file0\x00', 0x0, 0x0, 0x0, 0x104e034, &(0x7f00000001c0)={[{@data_err_abort}]}) 12:27:04 executing program 2: r0 = syz_init_net_socket$802154_dgram(0x24, 0x2, 0x0) r1 = dup(r0) sendmsg$BATADV_CMD_GET_BLA_BACKBONE(r1, &(0x7f0000000540)={&(0x7f0000000100), 0xc, &(0x7f0000000500)={0x0}}, 0x0) connect$802154_dgram(r1, &(0x7f0000000040)={0x24, @short={0x2, 0xffff, 0xfffe}}, 0x1e) preadv2(r0, &(0x7f0000000080), 0x0, 0x1, 0x3ff, 0x19) r2 = syz_mount_image$nfs(&(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x3, 0x8, &(0x7f0000000680)=[{&(0x7f0000000140)="2925b81d33e36273bdd50baf5d7313a3b6184231b8555842921e25742906cd2360e1228deca7babc9dfdaff04d967d33369f1f2883af4fff36ab2824dd38d4c531913938db561f9b147c6aa8b91bcb90a6d6", 0x52}, {&(0x7f00000001c0)="15c20ea40f9eca62e8eb0bc629b36147d5332136743cf2ed04174d5b99a49636827f0e603a5ba6ad31070ba7f6e1b9b5416e53d523b9066a3f67cd9348c00db8df897eea0bb75954565dad503af61aca00ff0d7a5a9f28f7a8e0d538431bf4679b1d5a5db028b7eafdec6ae76a78eae4476cdebb1f764d1090e6d3dbb62f61ad42b9ae76c76ac100614bd288da7f808f7cbedde41661791df7907884903bcfc90540ca859355313d6f484c29da0eb2dc5ef4b52b0aca94a5b0fc8937892063763cead3d99ee4f9d2551afd817747f8bc03d5750c15508f5e0c0974334f1432dd3026ab4074fe44fd7e40740baf2abe62b7a69feabb", 0xf5, 0x80}, {&(0x7f00000002c0)="b2cf050a9d74446762b8570b675514aaf5f84a1e80b5c1b18ee7a1804b1da166db690aaa04749c5f5147aab7e0f0211eabf931b2436d8d9bcc734d75c61236fb50f1ce959b9dfb413d523f3646802c32584b4dc97a7c67de5098ee7d0a1460461082689c3bfd5ca786e4f9a3b1a778f3261b4b408021683eb0e549252cb0b4b73317b139d66799c679856d66faaf693a84369307ae1e7f89ce8d", 0x9a, 0x4}, {&(0x7f0000000380)="ed67ed151e8806b22dc166699ac7573c9121f276b1d1b8fa69c0f360090312ed2f8b09e83f14cc5247f894654552101111dcc84ad30433468ae7114b2400fee4d68196880bac07d65d37325a29fc8ae58dc0943f", 0x54, 0x3f8000000000}, {&(0x7f0000000400)="061aa564339e9e0d4867a93c0fbe9d445788dbb4681188e81e7bfb89c4bcae563d131ebe488783e4126f0a2e6df2d75e03d818fbf89bf2cf95f167d33b903f2055572156907b4152cd5dad85501c31d110cc5c764fb7698be713764db6e7abaf286d0d5c6d8a1b32413883fa4434c7c18ee6b689d2af3a4f958bfc46ff4b4b0e29a99b5aa0bb7d0eece1ec55cc23916d6d7585050ffa21a031b8ed3bf9437077f363bf11f1bad6d9de24eac797976dac1a55ed75676fbeb1fe5b0d979fadb5bcbfd8af7b4f27d989a2f8562adaca82eef7359b69c408b661dce32dcc701c", 0xde, 0x4}, {&(0x7f0000000580)="113ec634a8d5b99a26a3808d60955e7b9f6c2625cdedafb7eb64cc54eacd8a19d21bb9040b2243df42299bbb650f5b8f3e6833b3f863327399df01bb9472ae", 0x3f, 0xeb00}, {&(0x7f00000005c0)="a71341e9", 0x4, 0xfff}, {&(0x7f0000000600)="62bc07093b34fec43b6c9a36cd1432dcdfeabafe820cfec1404c9b8342ec3988c021b7e3a015d6faeb931ecb443f1edda3ca92a0a8728c8e122e3ca91ae3b9cf17e59aa22b9991bafd6e0e8c974043dd362069f7075a5cdec72e5649823957b267031ee25f3b0a21a30a3c5ef270ef33bc2675c8c2402d3a8e59992671cd", 0x7e, 0x400}], 0x8822, &(0x7f0000000740)={[{'&r!/](*\xbf'}, {}, {')#^[,'}, {}], [{@fsmagic={'fsmagic', 0x3d, 0x1}}, {@appraise}, {@defcontext={'defcontext', 0x3d, 'root'}}, {@euid_lt}, {@pcr={'pcr', 0x3d, 0x38}}, {@obj_type={'obj_type', 0x3d, ':$\x00'}}, {@appraise}]}) pwrite64(r2, &(0x7f0000000800)="a285e11d0b3ae97d95d772", 0xb, 0xfffffffffffffffe) ioctl$sock_SIOCINQ(r1, 0x541b, &(0x7f0000000000)) [ 1553.931580] FAULT_INJECTION: forcing a failure. [ 1553.931580] name failslab, interval 1, probability 0, space 0, times 0 [ 1553.933108] CPU: 0 PID: 11805 Comm: syz-executor.1 Not tainted 5.10.60 #1 [ 1553.933991] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS rel-1.14.0-0-g155821a1990b-prebuilt.qemu.org 04/01/2014 [ 1553.935307] Call Trace: [ 1553.935620] dump_stack+0x107/0x163 [ 1553.936076] should_fail.cold+0x5/0xa [ 1553.936530] ? create_object.isra.0+0x3a/0xa10 [ 1553.937078] should_failslab+0x5/0x10 [ 1553.937520] kmem_cache_alloc+0x5b/0x350 [ 1553.938024] ? lock_downgrade+0x6d0/0x6d0 [ 1553.938532] create_object.isra.0+0x3a/0xa10 [ 1553.939056] ? __kasan_kmalloc.constprop.0+0xc2/0xd0 [ 1553.939664] kmem_cache_alloc+0x15b/0x350 [ 1553.940171] getname_flags.part.0+0x50/0x4e0 [ 1553.940687] getname_flags+0x9a/0xe0 [ 1553.941167] __x64_sys_execveat+0xd0/0x130 [ 1553.941664] do_syscall_64+0x33/0x40 [ 1553.942111] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 1553.942705] RIP: 0033:0x466609 [ 1553.943090] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1553.945250] RSP: 002b:00007f443d736188 EFLAGS: 00000246 ORIG_RAX: 0000000000000142 [ 1553.946155] RAX: ffffffffffffffda RBX: 000000000056bf80 RCX: 0000000000466609 [ 1553.946986] RDX: 0000000020000380 RSI: 00000000200002c0 RDI: ffffffffffffffff [ 1553.947812] RBP: 00007f443d7361d0 R08: 0000000000000000 R09: 0000000000000000 [ 1553.948651] R10: 0000000020000640 R11: 0000000000000246 R12: 0000000000000001 [ 1553.949499] R13: 00007ffeb6924e7f R14: 00007f443d736300 R15: 0000000000022000 12:27:04 executing program 0 (fault-call:6 fault-nth:40): r0 = syz_io_uring_setup(0x4d4f, &(0x7f0000000080), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=0x0, &(0x7f0000000140)=0x0) syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_POLL_ADD={0x6, 0x0, 0x0, @fd=r0, 0x0, 0x0, 0x0, {0x194}}, 0x0) r3 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0) perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_io_uring_submit(r3, r2, &(0x7f0000000100)=@IORING_OP_SPLICE, 0x4) io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0) execveat(0xffffffffffffffff, &(0x7f00000002c0)='./file0\x00', &(0x7f0000000380), 0x0, 0x1000) [ 1553.992639] EXT4-fs (loop4): bad geometry: block count 128 exceeds size of device (8 blocks) 12:27:04 executing program 1 (fault-call:6 fault-nth:2): r0 = syz_io_uring_setup(0x4d4f, &(0x7f0000000080), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=0x0, &(0x7f0000000140)=0x0) syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_POLL_ADD={0x6, 0x0, 0x0, @fd=r0, 0x0, 0x0, 0x0, {0x194}}, 0x0) r3 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0) perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_io_uring_submit(r3, r2, &(0x7f0000000100)=@IORING_OP_SPLICE, 0x4) io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0) execveat(0xffffffffffffffff, &(0x7f00000002c0)='./file0\x00', &(0x7f0000000380), &(0x7f0000000640)=[0x0, 0x0, 0x0], 0x0) [ 1554.038719] FAULT_INJECTION: forcing a failure. [ 1554.038719] name failslab, interval 1, probability 0, space 0, times 0 [ 1554.041260] CPU: 1 PID: 11816 Comm: syz-executor.3 Not tainted 5.10.60 #1 [ 1554.042779] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS rel-1.14.0-0-g155821a1990b-prebuilt.qemu.org 04/01/2014 [ 1554.045252] Call Trace: [ 1554.045823] dump_stack+0x107/0x163 [ 1554.046619] should_fail.cold+0x5/0xa [ 1554.047457] ? prepare_creds+0x29/0x670 [ 1554.048345] should_failslab+0x5/0x10 [ 1554.049218] kmem_cache_alloc+0x5b/0x350 [ 1554.050120] prepare_creds+0x29/0x670 [ 1554.050960] prepare_exec_creds+0xd/0x250 [ 1554.051917] bprm_execve+0x1e3/0x1b00 [ 1554.052801] ? get_arg_page+0x153/0x200 [ 1554.053738] ? acct_arg_size+0xe0/0xe0 [ 1554.054647] ? open_exec+0x70/0x70 [ 1554.055480] ? memcpy+0x39/0x60 [ 1554.056255] ? copy_strings.isra.0+0x492/0x690 [ 1554.057466] ? copy_string_kernel+0x3ad/0x440 [ 1554.058462] do_execveat_common.isra.0+0x524/0x670 [ 1554.059543] __x64_sys_execveat+0xe7/0x130 [ 1554.060482] do_syscall_64+0x33/0x40 [ 1554.061315] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 1554.062791] RIP: 0033:0x466609 [ 1554.063700] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1554.068261] RSP: 002b:00007f7f315af188 EFLAGS: 00000246 ORIG_RAX: 0000000000000142 [ 1554.070078] RAX: ffffffffffffffda RBX: 000000000056bf80 RCX: 0000000000466609 [ 1554.071624] RDX: 0000000000000000 RSI: 00000000200002c0 RDI: ffffffffffffffff [ 1554.073220] RBP: 00007f7f315af1d0 R08: 0000000000000000 R09: 0000000000000000 [ 1554.074947] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 1554.076494] R13: 00007ffe8cd6fa4f R14: 00007f7f315af300 R15: 0000000000022000 [ 1554.108260] EXT4-fs (loop7): mounted filesystem without journal. Opts: ,errors=continue [ 1554.155833] EXT4-fs (loop6): mounted filesystem without journal. Opts: ,errors=continue [ 1554.165796] FAULT_INJECTION: forcing a failure. [ 1554.165796] name failslab, interval 1, probability 0, space 0, times 0 [ 1554.169114] CPU: 0 PID: 11829 Comm: syz-executor.7 Not tainted 5.10.60 #1 [ 1554.170999] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS rel-1.14.0-0-g155821a1990b-prebuilt.qemu.org 04/01/2014 [ 1554.173845] Call Trace: [ 1554.174383] dump_stack+0x107/0x163 [ 1554.175102] should_fail.cold+0x5/0xa [ 1554.175851] ? create_object.isra.0+0x3a/0xa10 [ 1554.176737] should_failslab+0x5/0x10 [ 1554.177487] kmem_cache_alloc+0x5b/0x350 [ 1554.178287] ? ksys_write+0x212/0x250 [ 1554.179039] create_object.isra.0+0x3a/0xa10 [ 1554.179885] ? __kasan_kmalloc.constprop.0+0xc2/0xd0 [ 1554.180867] kmem_cache_alloc+0x15b/0x350 [ 1554.181718] getname_flags.part.0+0x50/0x4e0 [ 1554.182588] ? wait_for_completion+0x270/0x270 [ 1554.183499] getname_flags+0x9a/0xe0 [ 1554.184239] do_mkdirat+0x8d/0x2a0 [ 1554.184920] ? user_path_create+0xf0/0xf0 [ 1554.185732] ? lockdep_hardirqs_on_prepare+0x273/0x3e0 [ 1554.186720] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1554.187696] do_syscall_64+0x33/0x40 [ 1554.188400] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 1554.189396] RIP: 0033:0x465717 [ 1554.190011] Code: 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 83 c8 ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 b8 53 00 00 00 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1554.193755] RSP: 002b:00007f2f6c54dfa8 EFLAGS: 00000246 ORIG_RAX: 0000000000000053 [ 1554.195646] RAX: ffffffffffffffda RBX: 0000000000000000 RCX: 0000000000465717 [ 1554.197415] RDX: 0000000000000000 RSI: 00000000000001ff RDI: 0000000020000040 [ 1554.199070] RBP: 00007f2f6c54e040 R08: 0000000000000000 R09: 000000000104e034 [ 1554.200613] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000020000000 [ 1554.202273] R13: 0000000020000040 R14: 00007f2f6c54e000 R15: 00000000200001c0 [ 1554.209652] EXT4-fs (loop7): re-mounted. Opts: ,errors=continue [ 1554.212436] EXT4-fs (loop6): re-mounted. Opts: data_err=abort,,errors=continue [ 1554.297634] FAULT_INJECTION: forcing a failure. [ 1554.297634] name fail_page_alloc, interval 1, probability 0, space 0, times 0 [ 1554.299079] CPU: 1 PID: 11834 Comm: syz-executor.0 Not tainted 5.10.60 #1 [ 1554.299892] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS rel-1.14.0-0-g155821a1990b-prebuilt.qemu.org 04/01/2014 [ 1554.301489] Call Trace: [ 1554.301930] dump_stack+0x107/0x163 [ 1554.302561] should_fail.cold+0x5/0xa [ 1554.303260] __alloc_pages_nodemask+0x17f/0x670 [ 1554.304196] ? __alloc_pages_slowpath.constprop.0+0x2090/0x2090 [ 1554.305379] ? trace_hardirqs_on+0x5b/0x180 [ 1554.305974] ? kmem_cache_free+0x99/0x2f0 [ 1554.306460] alloc_pages_current+0x187/0x280 [ 1554.306960] __get_free_pages+0xc/0xa0 [ 1554.307414] tlb_remove_table+0x3ca/0xcb0 [ 1554.307883] ___pte_free_tlb+0x86/0xb0 [ 1554.308333] free_pgd_range+0x736/0x1390 [ 1554.308803] free_pgtables+0x22a/0x2f0 [ 1554.308832] FAULT_INJECTION: forcing a failure. [ 1554.308832] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 1554.309273] exit_mmap+0x28e/0x4e0 [ 1554.309283] ? do_munmap+0x40/0x40 [ 1554.309310] mmput+0xca/0x340 [ 1554.309322] free_bprm+0x65/0x2e0 [ 1554.309332] do_execveat_common.isra.0+0x534/0x670 [ 1554.309360] __x64_sys_execveat+0xe7/0x130 [ 1554.315153] do_syscall_64+0x33/0x40 [ 1554.315578] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 1554.316167] RIP: 0033:0x466609 [ 1554.316536] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1554.318675] RSP: 002b:00007f4e87c42188 EFLAGS: 00000246 ORIG_RAX: 0000000000000142 [ 1554.319549] RAX: ffffffffffffffda RBX: 000000000056bf80 RCX: 0000000000466609 [ 1554.320377] RDX: 0000000020000380 RSI: 00000000200002c0 RDI: ffffffffffffffff [ 1554.321212] RBP: 00007f4e87c421d0 R08: 0000000000001000 R09: 0000000000000000 [ 1554.322020] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 1554.322834] R13: 00007ffc014a64bf R14: 00007f4e87c42300 R15: 0000000000022000 [ 1554.323676] CPU: 0 PID: 11837 Comm: syz-executor.1 Not tainted 5.10.60 #1 [ 1554.325647] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS rel-1.14.0-0-g155821a1990b-prebuilt.qemu.org 04/01/2014 [ 1554.328845] Call Trace: [ 1554.329632] dump_stack+0x107/0x163 [ 1554.330692] should_fail.cold+0x5/0xa [ 1554.331811] strncpy_from_user+0x34/0x420 [ 1554.333033] getname_flags.part.0+0x95/0x4e0 [ 1554.334323] getname_flags+0x9a/0xe0 [ 1554.335406] __x64_sys_execveat+0xd0/0x130 [ 1554.336636] do_syscall_64+0x33/0x40 [ 1554.337713] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 1554.339177] RIP: 0033:0x466609 [ 1554.340103] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1554.345332] RSP: 002b:00007f443d736188 EFLAGS: 00000246 ORIG_RAX: 0000000000000142 [ 1554.347508] RAX: ffffffffffffffda RBX: 000000000056bf80 RCX: 0000000000466609 [ 1554.349560] RDX: 0000000020000380 RSI: 00000000200002c0 RDI: ffffffffffffffff [ 1554.351586] RBP: 00007f443d7361d0 R08: 0000000000000000 R09: 0000000000000000 [ 1554.353629] R10: 0000000020000640 R11: 0000000000000246 R12: 0000000000000001 [ 1554.355662] R13: 00007ffeb6924e7f R14: 00007f443d736300 R15: 0000000000022000 12:27:18 executing program 0 (fault-call:6 fault-nth:41): r0 = syz_io_uring_setup(0x4d4f, &(0x7f0000000080), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=0x0, &(0x7f0000000140)=0x0) syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_POLL_ADD={0x6, 0x0, 0x0, @fd=r0, 0x0, 0x0, 0x0, {0x194}}, 0x0) r3 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0) perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_io_uring_submit(r3, r2, &(0x7f0000000100)=@IORING_OP_SPLICE, 0x4) io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0) execveat(0xffffffffffffffff, &(0x7f00000002c0)='./file0\x00', &(0x7f0000000380), 0x0, 0x1000) 12:27:18 executing program 1 (fault-call:6 fault-nth:3): r0 = syz_io_uring_setup(0x4d4f, &(0x7f0000000080), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=0x0, &(0x7f0000000140)=0x0) syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_POLL_ADD={0x6, 0x0, 0x0, @fd=r0, 0x0, 0x0, 0x0, {0x194}}, 0x0) r3 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0) perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_io_uring_submit(r3, r2, &(0x7f0000000100)=@IORING_OP_SPLICE, 0x4) io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0) execveat(0xffffffffffffffff, &(0x7f00000002c0)='./file0\x00', &(0x7f0000000380), &(0x7f0000000640)=[0x0, 0x0, 0x0], 0x0) 12:27:18 executing program 4: syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000040)='./file0\x00', 0x0, 0x3, &(0x7f0000000200)=[{&(0x7f0000010000)="2000000080000000060000006a0000000f000000000000000100000001000000004000000040000020000000e0f4655fe0f4655f0100ffff53ef010001000000dff4655f000000000000000001000000000000000b00000000010000280200000284", 0x62, 0x400}, {&(0x7f0000010400)="020000000300000004000000", 0xc, 0x800}, {&(0x7f0000011600)="ed41000000080000dff4655fe0f4655fe0f4655f000000000000040004", 0x1d, 0x2100}], 0x0, &(0x7f0000000080)=ANY=[]) syz_mount_image$ext4(&(0x7f0000000000)='ext2\x00', &(0x7f0000000040)='./file0/../file0\x00', 0x0, 0x0, 0x0, 0x104e034, &(0x7f00000001c0)={[{@data_err_abort}]}) 12:27:18 executing program 7 (fault-call:1 fault-nth:2): syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000040)='./file0\x00', 0x40000, 0x3, &(0x7f0000000200)=[{&(0x7f0000010000)="2000000080000000060000006a0000000f000000000000000100000001000000004000000040000020000000e0f4655fe0f4655f0100ffff53ef010001000000dff4655f000000000000000001000000000000000b0000000001", 0x5a, 0x400}, {&(0x7f0000010400)="020000000300000004", 0x9, 0x800}, {&(0x7f0000011600)="ed41000000080000dff4655fe0f4655fe0f4655f000000000000040004", 0x1d, 0x2100}], 0x0, &(0x7f0000000080)=ANY=[]) syz_mount_image$ext4(&(0x7f0000000000)='ext2\x00', &(0x7f0000000040)='./file0/../file0\x00', 0x0, 0x0, 0x0, 0x104e034, &(0x7f00000001c0)) 12:27:18 executing program 5: r0 = syz_io_uring_setup(0x4d4f, &(0x7f0000000080), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=0x0, &(0x7f0000000140)=0x0) syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_POLL_ADD={0x6, 0x0, 0x0, @fd=r0, 0x0, 0x0, 0x0, {0x194}}, 0x0) r3 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0) perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_io_uring_submit(r3, r2, &(0x7f0000000100)=@IORING_OP_SPLICE, 0x4) io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0) execveat(0xffffffffffffffff, &(0x7f00000002c0)='./file0\x00', 0x0, 0x0, 0x6) 12:27:18 executing program 3 (fault-call:5 fault-nth:33): r0 = syz_io_uring_setup(0x4d4f, &(0x7f0000000080), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200), &(0x7f0000000140)=0x0) r2 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0) perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_io_uring_submit(r2, r1, &(0x7f0000000100)=@IORING_OP_SPLICE, 0x4) io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0) execveat(0xffffffffffffffff, &(0x7f00000002c0)='./file0\x00', 0x0, 0x0, 0x0) 12:27:18 executing program 6: syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000040)='./file0\x00', 0x40000, 0x3, &(0x7f0000000200)=[{&(0x7f0000010000)="2000000080000000060000006a0000000f000000000000000100000001000000004000000040000020000000e0f4655fe0f4655f0100ffff53ef010001000000dff4655f000000000000000001000000000000000b00", 0x56, 0x400}, {&(0x7f0000010400)="020000000300000004", 0x9, 0x800}, {&(0x7f0000011600)="ed41000000080000dff4655fe0f4655fe0f4655f000000000000040004", 0x1d, 0x2100}], 0x0, &(0x7f0000000080)=ANY=[]) syz_mount_image$ext4(&(0x7f0000000000)='ext2\x00', &(0x7f0000000040)='./file0/../file0\x00', 0x0, 0x0, 0x0, 0x104e034, &(0x7f00000001c0)={[{@data_err_abort}]}) 12:27:18 executing program 2: r0 = syz_init_net_socket$802154_dgram(0x24, 0x2, 0x0) r1 = dup(r0) sendmsg$BATADV_CMD_GET_BLA_BACKBONE(r1, &(0x7f0000000040)={&(0x7f0000000100)={0x10, 0x0, 0x0, 0x20000000}, 0xc, &(0x7f0000000500)={0x0}, 0x1, 0x0, 0x0, 0x20000040}, 0x4044000) r2 = socket$netlink(0x10, 0x3, 0x0) sendmsg$nl_generic(r2, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000240)={&(0x7f0000000080)=ANY=[@ANYBLOB="280000002c00010d000000000000e4ffffffffffffffffff"], 0x28}}, 0x0) r3 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000280), r1) sendmsg$NL80211_CMD_REGISTER_BEACONS(r2, &(0x7f0000000340)={&(0x7f0000000240), 0xc, &(0x7f0000000300)={&(0x7f00000002c0)={0x1c, r3, 0x4, 0x70bd2c, 0x25dfdbfd, {{}, {@val={0x8, 0x1, 0x2b}, @void, @void}}, ["", "", ""]}, 0x1c}, 0x1, 0x0, 0x0, 0x40000000}, 0x20000890) r4 = syz_genetlink_get_family_id$SEG6(&(0x7f00000000c0), r1) sendmsg$SEG6_CMD_GET_TUNSRC(r1, &(0x7f0000000200)={&(0x7f0000000080)={0x10, 0x0, 0x0, 0x84102201}, 0xc, &(0x7f00000001c0)={&(0x7f0000000140)={0x48, r4, 0x10, 0x70bd2c, 0x25dfdbfd, {}, [@SEG6_ATTR_DSTLEN={0x8, 0x2, 0xb5}, @SEG6_ATTR_HMACKEYID={0x8, 0x3, 0xf90}, @SEG6_ATTR_SECRETLEN={0x5}, @SEG6_ATTR_HMACKEYID={0x8, 0x3, 0x6}, @SEG6_ATTR_DST={0x14, 0x1, @mcast1}]}, 0x48}, 0x1, 0x0, 0x0, 0x4004000}, 0x8845) ioctl$sock_SIOCINQ(r1, 0x541b, &(0x7f0000000000)) [ 1567.862279] netlink: 4 bytes leftover after parsing attributes in process `syz-executor.2'. [ 1567.867888] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=0 sclass=netlink_route_socket pid=11857 comm=syz-executor.2 [ 1567.881000] EXT4-fs (loop7): mounted filesystem without journal. Opts: ,errors=continue [ 1567.881869] FAULT_INJECTION: forcing a failure. [ 1567.881869] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 1567.884365] CPU: 0 PID: 11855 Comm: syz-executor.0 Not tainted 5.10.60 #1 [ 1567.885378] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS rel-1.14.0-0-g155821a1990b-prebuilt.qemu.org 04/01/2014 [ 1567.885466] netlink: 4 bytes leftover after parsing attributes in process `syz-executor.2'. [ 1567.887017] Call Trace: [ 1567.887040] dump_stack+0x107/0x163 [ 1567.887059] should_fail.cold+0x5/0xa [ 1567.887082] _copy_to_user+0x2e/0x180 [ 1567.890667] simple_read_from_buffer+0xcc/0x160 [ 1567.891354] proc_fail_nth_read+0x194/0x220 [ 1567.891824] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=0 sclass=netlink_route_socket pid=11869 comm=syz-executor.2 [ 1567.891990] ? proc_exe_link+0x1d0/0x1d0 [ 1567.894967] ? security_file_permission+0x178/0x550 [ 1567.895879] ? proc_exe_link+0x1d0/0x1d0 [ 1567.896629] vfs_read+0x226/0x580 [ 1567.897311] ksys_read+0x12d/0x250 [ 1567.897867] ? __ia32_sys_pwrite64+0x230/0x230 [ 1567.898544] ? lockdep_hardirqs_on_prepare+0x273/0x3e0 [ 1567.899333] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1567.900078] do_syscall_64+0x33/0x40 [ 1567.900622] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 1567.901400] RIP: 0033:0x41935c [ 1567.901865] Code: ec 28 48 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 f9 fc ff ff 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 31 c0 0f 05 <48> 3d 00 f0 ff ff 77 34 44 89 c7 48 89 44 24 08 e8 2f fd ff ff 48 [ 1567.904608] RSP: 002b:00007f4e87c42170 EFLAGS: 00000246 ORIG_RAX: 0000000000000000 [ 1567.905705] RAX: ffffffffffffffda RBX: ffffffffffffffff RCX: 000000000041935c [ 1567.906802] RDX: 000000000000000f RSI: 00007f4e87c421e0 RDI: 0000000000000005 [ 1567.908031] RBP: 00007f4e87c421d0 R08: 0000000000000000 R09: 0000000000000000 [ 1567.909190] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 1567.910238] R13: 00007ffc014a64bf R14: 00007f4e87c42300 R15: 0000000000022000 [ 1567.932903] FAULT_INJECTION: forcing a failure. [ 1567.932903] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 1567.935574] CPU: 1 PID: 11853 Comm: syz-executor.7 Not tainted 5.10.60 #1 [ 1567.937255] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS rel-1.14.0-0-g155821a1990b-prebuilt.qemu.org 04/01/2014 [ 1567.939439] Call Trace: [ 1567.939946] dump_stack+0x107/0x163 [ 1567.940641] should_fail.cold+0x5/0xa [ 1567.941388] strncpy_from_user+0x34/0x420 [ 1567.942209] getname_flags.part.0+0x95/0x4e0 [ 1567.943078] ? wait_for_completion+0x270/0x270 [ 1567.943949] getname_flags+0x9a/0xe0 [ 1567.944662] do_mkdirat+0x8d/0x2a0 [ 1567.945359] ? user_path_create+0xf0/0xf0 [ 1567.946153] ? lockdep_hardirqs_on_prepare+0x273/0x3e0 [ 1567.947148] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1567.948115] FAULT_INJECTION: forcing a failure. [ 1567.948115] name failslab, interval 1, probability 0, space 0, times 0 [ 1567.950236] do_syscall_64+0x33/0x40 [ 1567.950253] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 1567.950271] RIP: 0033:0x465717 [ 1567.952431] Code: 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 83 c8 ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 b8 53 00 00 00 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1567.955919] RSP: 002b:00007f2f6c56efa8 EFLAGS: 00000246 ORIG_RAX: 0000000000000053 [ 1567.957386] RAX: ffffffffffffffda RBX: 0000000000000000 RCX: 0000000000465717 [ 1567.958749] RDX: 0000000000000000 RSI: 00000000000001ff RDI: 0000000020000040 [ 1567.960100] RBP: 00007f2f6c56f040 R08: 0000000000000000 R09: 000000000104e034 [ 1567.961463] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000020000000 [ 1567.962815] R13: 0000000020000040 R14: 00007f2f6c56f000 R15: 00000000200001c0 [ 1567.964190] CPU: 0 PID: 11870 Comm: syz-executor.3 Not tainted 5.10.60 #1 [ 1567.965257] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS rel-1.14.0-0-g155821a1990b-prebuilt.qemu.org 04/01/2014 [ 1567.966965] Call Trace: [ 1567.967381] dump_stack+0x107/0x163 [ 1567.967938] should_fail.cold+0x5/0xa [ 1567.968522] ? create_object.isra.0+0x3a/0xa10 [ 1567.969229] should_failslab+0x5/0x10 [ 1567.969797] kmem_cache_alloc+0x5b/0x350 [ 1567.970425] create_object.isra.0+0x3a/0xa10 [ 1567.971078] ? __kasan_kmalloc.constprop.0+0xc2/0xd0 [ 1567.971853] kmem_cache_alloc+0x15b/0x350 [ 1567.972529] prepare_creds+0x29/0x670 [ 1567.973174] prepare_exec_creds+0xd/0x250 [ 1567.973828] bprm_execve+0x1e3/0x1b00 [ 1567.974411] ? get_arg_page+0x153/0x200 [ 1567.975000] ? acct_arg_size+0xe0/0xe0 [ 1567.975594] ? open_exec+0x70/0x70 [ 1567.976123] ? memcpy+0x39/0x60 [ 1567.976750] ? copy_strings.isra.0+0x492/0x690 [ 1567.977457] ? copy_string_kernel+0x3ad/0x440 [ 1567.978142] do_execveat_common.isra.0+0x524/0x670 [ 1567.978880] __x64_sys_execveat+0xe7/0x130 [ 1567.979533] do_syscall_64+0x33/0x40 [ 1567.980086] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 1567.980817] RIP: 0033:0x466609 [ 1567.981308] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1567.983829] RSP: 002b:00007f7f3158e188 EFLAGS: 00000246 ORIG_RAX: 0000000000000142 [ 1567.984890] RAX: ffffffffffffffda RBX: 000000000056c038 RCX: 0000000000466609 [ 1567.985913] RDX: 0000000000000000 RSI: 00000000200002c0 RDI: ffffffffffffffff [ 1567.986985] RBP: 00007f7f3158e1d0 R08: 0000000000000000 R09: 0000000000000000 [ 1567.988045] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 1567.989098] R13: 00007ffe8cd6fa4f R14: 00007f7f3158e300 R15: 0000000000022000 [ 1567.999330] FAULT_INJECTION: forcing a failure. [ 1567.999330] name failslab, interval 1, probability 0, space 0, times 0 [ 1568.001078] CPU: 0 PID: 11863 Comm: syz-executor.1 Not tainted 5.10.60 #1 [ 1568.002100] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS rel-1.14.0-0-g155821a1990b-prebuilt.qemu.org 04/01/2014 [ 1568.003782] Call Trace: [ 1568.004199] dump_stack+0x107/0x163 [ 1568.004771] should_fail.cold+0x5/0xa [ 1568.005361] ? alloc_bprm+0x51/0x890 [ 1568.005924] should_failslab+0x5/0x10 [ 1568.006489] kmem_cache_alloc_trace+0x55/0x350 [ 1568.007140] ? __check_object_size+0x319/0x440 [ 1568.007830] alloc_bprm+0x51/0x890 [ 1568.008332] ? strncpy_from_user+0xa5/0x420 [ 1568.008989] do_execveat_common.isra.0+0x217/0x670 [ 1568.009770] __x64_sys_execveat+0xe7/0x130 [ 1568.010412] do_syscall_64+0x33/0x40 [ 1568.010975] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 1568.011757] RIP: 0033:0x466609 [ 1568.012246] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1568.015061] RSP: 002b:00007f443d736188 EFLAGS: 00000246 ORIG_RAX: 0000000000000142 [ 1568.016214] RAX: ffffffffffffffda RBX: 000000000056bf80 RCX: 0000000000466609 [ 1568.017308] RDX: 0000000020000380 RSI: 00000000200002c0 RDI: ffffffffffffffff [ 1568.018385] RBP: 00007f443d7361d0 R08: 0000000000000000 R09: 0000000000000000 [ 1568.019474] R10: 0000000020000640 R11: 0000000000000246 R12: 0000000000000001 [ 1568.020570] R13: 00007ffeb6924e7f R14: 00007f443d736300 R15: 0000000000022000 [ 1568.024381] EXT4-fs (loop6): unsupported inode size: 0 [ 1568.025730] EXT4-fs (loop6): blocksize: 2048 [ 1568.026746] EXT4-fs (loop4): couldn't mount as ext2 due to feature incompatibilities [ 1568.127968] EXT4-fs (loop7): re-mounted. Opts: ,errors=continue [ 1580.408931] kmemleak: 1 new suspected memory leaks (see /sys/kernel/debug/kmemleak) 12:27:37 executing program 7 (fault-call:1 fault-nth:3): syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000040)='./file0\x00', 0x40000, 0x3, &(0x7f0000000200)=[{&(0x7f0000010000)="2000000080000000060000006a0000000f000000000000000100000001000000004000000040000020000000e0f4655fe0f4655f0100ffff53ef010001000000dff4655f000000000000000001000000000000000b0000000001", 0x5a, 0x400}, {&(0x7f0000010400)="020000000300000004", 0x9, 0x800}, {&(0x7f0000011600)="ed41000000080000dff4655fe0f4655fe0f4655f000000000000040004", 0x1d, 0x2100}], 0x0, &(0x7f0000000080)=ANY=[]) syz_mount_image$ext4(&(0x7f0000000000)='ext2\x00', &(0x7f0000000040)='./file0/../file0\x00', 0x0, 0x0, 0x0, 0x104e034, &(0x7f00000001c0)) 12:27:37 executing program 0: r0 = syz_io_uring_setup(0x4d4f, &(0x7f0000000080), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=0x0, &(0x7f0000000140)=0x0) syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_POLL_ADD={0x6, 0x0, 0x0, @fd=r0, 0x0, 0x0, 0x0, {0x194}}, 0x0) r3 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0) perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_io_uring_submit(r3, r2, &(0x7f0000000100)=@IORING_OP_SPLICE, 0x4) io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0) execveat(0xffffffffffffffff, &(0x7f00000002c0)='./file0\x00', &(0x7f0000000380), 0x0, 0x1000) 12:27:37 executing program 2: r0 = syz_init_net_socket$802154_dgram(0x24, 0x2, 0x0) r1 = dup(r0) sendmsg$BATADV_CMD_GET_BLA_BACKBONE(r1, &(0x7f0000000540)={&(0x7f0000000100), 0xc, &(0x7f0000000500)={0x0}}, 0x0) ioctl$sock_SIOCINQ(r1, 0x541b, &(0x7f0000000000)) connect$802154_dgram(r1, &(0x7f0000000040)={0x24, @short={0x2, 0x0, 0xaaa3}}, 0x14) 12:27:37 executing program 1 (fault-call:6 fault-nth:4): r0 = syz_io_uring_setup(0x4d4f, &(0x7f0000000080), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=0x0, &(0x7f0000000140)=0x0) syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_POLL_ADD={0x6, 0x0, 0x0, @fd=r0, 0x0, 0x0, 0x0, {0x194}}, 0x0) r3 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0) perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_io_uring_submit(r3, r2, &(0x7f0000000100)=@IORING_OP_SPLICE, 0x4) io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0) execveat(0xffffffffffffffff, &(0x7f00000002c0)='./file0\x00', &(0x7f0000000380), &(0x7f0000000640)=[0x0, 0x0, 0x0], 0x0) 12:27:37 executing program 5: r0 = syz_io_uring_setup(0x4d4f, &(0x7f0000000080), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=0x0, &(0x7f0000000140)=0x0) syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_POLL_ADD={0x6, 0x0, 0x0, @fd=r0, 0x0, 0x0, 0x0, {0x194}}, 0x0) r3 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0) perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_io_uring_submit(r3, r2, &(0x7f0000000100)=@IORING_OP_SPLICE, 0x4) io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0) execveat(0xffffffffffffffff, &(0x7f00000002c0)='./file0\x00', 0x0, 0x0, 0x7) 12:27:37 executing program 3 (fault-call:5 fault-nth:34): r0 = syz_io_uring_setup(0x4d4f, &(0x7f0000000080), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200), &(0x7f0000000140)=0x0) r2 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0) perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_io_uring_submit(r2, r1, &(0x7f0000000100)=@IORING_OP_SPLICE, 0x4) io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0) execveat(0xffffffffffffffff, &(0x7f00000002c0)='./file0\x00', 0x0, 0x0, 0x0) 12:27:37 executing program 6: syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000040)='./file0\x00', 0x40000, 0x3, &(0x7f0000000200)=[{&(0x7f0000010000)="2000000080000000060000006a0000000f000000000000000100000001000000004000000040000020000000e0f4655fe0f4655f0100ffff53ef010001000000dff4655f000000000000000001000000000000000b00", 0x56, 0x400}, {&(0x7f0000010400)="020000000300000004", 0x9, 0x800}, {&(0x7f0000011600)="ed41000000080000dff4655fe0f4655fe0f4655f000000000000040004", 0x1d, 0x2100}], 0x0, &(0x7f0000000080)=ANY=[]) syz_mount_image$ext4(&(0x7f0000000000)='ext2\x00', &(0x7f0000000040)='./file0/../file0\x00', 0x0, 0x0, 0x0, 0x104e034, &(0x7f00000001c0)={[{@data_err_abort}]}) 12:27:37 executing program 4: syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000040)='./file0\x00', 0x40000, 0x0, 0x0, 0x0, &(0x7f0000000080)=ANY=[]) syz_mount_image$ext4(&(0x7f0000000000)='ext2\x00', &(0x7f0000000040)='./file0/../file0\x00', 0x0, 0x0, 0x0, 0x104e034, &(0x7f00000001c0)={[{@data_err_abort}]}) [ 1587.553524] EXT4-fs (loop6): unsupported inode size: 0 [ 1587.554381] EXT4-fs (loop6): blocksize: 2048 [ 1587.574369] EXT4-fs (loop7): mounted filesystem without journal. Opts: ,errors=continue [ 1587.587559] FAULT_INJECTION: forcing a failure. [ 1587.587559] name failslab, interval 1, probability 0, space 0, times 0 [ 1587.590118] CPU: 1 PID: 11902 Comm: syz-executor.7 Not tainted 5.10.60 #1 [ 1587.591635] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS rel-1.14.0-0-g155821a1990b-prebuilt.qemu.org 04/01/2014 [ 1587.594081] Call Trace: [ 1587.594816] dump_stack+0x107/0x163 [ 1587.595861] should_fail.cold+0x5/0xa [ 1587.596308] FAULT_INJECTION: forcing a failure. [ 1587.596308] name failslab, interval 1, probability 0, space 0, times 0 [ 1587.596951] should_failslab+0x5/0x10 [ 1587.599497] __kmalloc_track_caller+0x79/0x3b0 [ 1587.600494] ? strndup_user+0x70/0xe0 [ 1587.601338] ? getname_flags.part.0+0x1dd/0x4e0 [ 1587.602383] memdup_user+0x22/0xd0 [ 1587.603184] strndup_user+0x70/0xe0 [ 1587.603986] __x64_sys_mount+0x133/0x300 [ 1587.604890] ? path_mount+0x2080/0x2080 [ 1587.605789] ? lockdep_hardirqs_on_prepare+0x273/0x3e0 [ 1587.606946] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1587.608111] do_syscall_64+0x33/0x40 [ 1587.608936] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 1587.610093] RIP: 0033:0x467b2a [ 1587.610814] Code: 48 c7 c2 bc ff ff ff f7 d8 64 89 02 b8 ff ff ff ff eb d2 e8 b8 04 00 00 0f 1f 84 00 00 00 00 00 49 89 ca b8 a5 00 00 00 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1587.614896] RSP: 002b:00007f2f6c56efa8 EFLAGS: 00000202 ORIG_RAX: 00000000000000a5 [ 1587.616588] RAX: ffffffffffffffda RBX: 0000000000000000 RCX: 0000000000467b2a [ 1587.618197] RDX: 0000000020000000 RSI: 0000000020000040 RDI: 0000000000000000 [ 1587.619773] RBP: 00007f2f6c56f040 R08: 00007f2f6c56f040 R09: 0000000020000000 [ 1587.621347] R10: 000000000104e034 R11: 0000000000000202 R12: 0000000020000000 [ 1587.622923] R13: 0000000020000040 R14: 00007f2f6c56f000 R15: 00000000200001c0 [ 1587.624541] CPU: 0 PID: 11901 Comm: syz-executor.3 Not tainted 5.10.60 #1 [ 1587.625525] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS rel-1.14.0-0-g155821a1990b-prebuilt.qemu.org 04/01/2014 [ 1587.627139] Call Trace: [ 1587.627527] dump_stack+0x107/0x163 [ 1587.628050] should_fail.cold+0x5/0xa [ 1587.628601] ? security_prepare_creds+0x10a/0x180 [ 1587.629303] should_failslab+0x5/0x10 [ 1587.629861] __kmalloc+0x72/0x3e0 [ 1587.630378] security_prepare_creds+0x10a/0x180 [ 1587.631040] prepare_creds+0x45c/0x670 [ 1587.631602] prepare_exec_creds+0xd/0x250 [ 1587.632203] bprm_execve+0x1e3/0x1b00 [ 1587.632738] ? get_arg_page+0x153/0x200 [ 1587.633308] ? acct_arg_size+0xe0/0xe0 [ 1587.633882] ? open_exec+0x70/0x70 [ 1587.634394] ? memcpy+0x39/0x60 [ 1587.634859] ? copy_strings.isra.0+0x492/0x690 [ 1587.635519] ? copy_string_kernel+0x3ad/0x440 [ 1587.636176] do_execveat_common.isra.0+0x524/0x670 [ 1587.636878] __x64_sys_execveat+0xe7/0x130 [ 1587.637503] do_syscall_64+0x33/0x40 [ 1587.638044] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 1587.638781] RIP: 0033:0x466609 [ 1587.639257] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1587.641884] RSP: 002b:00007f7f315af188 EFLAGS: 00000246 ORIG_RAX: 0000000000000142 [ 1587.642963] RAX: ffffffffffffffda RBX: 000000000056bf80 RCX: 0000000000466609 [ 1587.643994] RDX: 0000000000000000 RSI: 00000000200002c0 RDI: ffffffffffffffff [ 1587.645017] RBP: 00007f7f315af1d0 R08: 0000000000000000 R09: 0000000000000000 [ 1587.646047] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 1587.647072] R13: 00007ffe8cd6fa4f R14: 00007f7f315af300 R15: 0000000000022000 12:27:37 executing program 6: syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000040)='./file0\x00', 0x40000, 0x3, &(0x7f0000000200)=[{&(0x7f0000010000)="2000000080000000060000006a0000000f000000000000000100000001000000004000000040000020000000e0f4655fe0f4655f0100ffff53ef010001000000dff4655f000000000000000001000000000000000b00", 0x56, 0x400}, {&(0x7f0000010400)="020000000300000004", 0x9, 0x800}, {&(0x7f0000011600)="ed41000000080000dff4655fe0f4655fe0f4655f000000000000040004", 0x1d, 0x2100}], 0x0, &(0x7f0000000080)=ANY=[]) syz_mount_image$ext4(&(0x7f0000000000)='ext2\x00', &(0x7f0000000040)='./file0/../file0\x00', 0x0, 0x0, 0x0, 0x104e034, &(0x7f00000001c0)={[{@data_err_abort}]}) 12:27:37 executing program 4: syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000040)='./file0\x00', 0x40000, 0x0, 0x0, 0x0, &(0x7f0000000080)=ANY=[]) syz_mount_image$ext4(&(0x7f0000000000)='ext2\x00', &(0x7f0000000040)='./file0/../file0\x00', 0x0, 0x0, 0x0, 0x104e034, &(0x7f00000001c0)={[{@data_err_abort}]}) [ 1587.698203] FAULT_INJECTION: forcing a failure. [ 1587.698203] name failslab, interval 1, probability 0, space 0, times 0 [ 1587.700195] CPU: 0 PID: 11903 Comm: syz-executor.1 Not tainted 5.10.60 #1 [ 1587.701219] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS rel-1.14.0-0-g155821a1990b-prebuilt.qemu.org 04/01/2014 [ 1587.702766] Call Trace: [ 1587.703140] dump_stack+0x107/0x163 [ 1587.703639] should_fail.cold+0x5/0xa [ 1587.704176] ? create_object.isra.0+0x3a/0xa10 [ 1587.704802] should_failslab+0x5/0x10 [ 1587.705331] kmem_cache_alloc+0x5b/0x350 [ 1587.705897] create_object.isra.0+0x3a/0xa10 [ 1587.706484] ? __kasan_kmalloc.constprop.0+0xc2/0xd0 [ 1587.707164] kmem_cache_alloc_trace+0x153/0x350 [ 1587.707802] alloc_bprm+0x51/0x890 [ 1587.708282] ? strncpy_from_user+0xa5/0x420 [ 1587.708874] do_execveat_common.isra.0+0x217/0x670 [ 1587.709566] __x64_sys_execveat+0xe7/0x130 [ 1587.710149] do_syscall_64+0x33/0x40 [ 1587.710653] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 1587.711349] RIP: 0033:0x466609 [ 1587.711781] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1587.714207] RSP: 002b:00007f443d736188 EFLAGS: 00000246 ORIG_RAX: 0000000000000142 [ 1587.715227] RAX: ffffffffffffffda RBX: 000000000056bf80 RCX: 0000000000466609 [ 1587.716177] RDX: 0000000020000380 RSI: 00000000200002c0 RDI: ffffffffffffffff [ 1587.717135] RBP: 00007f443d7361d0 R08: 0000000000000000 R09: 0000000000000000 [ 1587.718135] R10: 0000000020000640 R11: 0000000000000246 R12: 0000000000000001 [ 1587.719085] R13: 00007ffeb6924e7f R14: 00007f443d736300 R15: 0000000000022000 12:27:38 executing program 2: r0 = syz_init_net_socket$802154_dgram(0x24, 0x2, 0x0) r1 = dup(r0) sendmsg$BATADV_CMD_GET_BLA_BACKBONE(r1, &(0x7f0000000540)={&(0x7f0000000100)={0x10, 0x0, 0x0, 0x1000}, 0xc, &(0x7f0000000500)={0x0}}, 0x20048000) r2 = syz_init_net_socket$802154_dgram(0x24, 0x2, 0x0) r3 = dup(r2) ioctl$sock_SIOCINQ(r3, 0x541b, &(0x7f0000000000)) connect$802154_dgram(r3, &(0x7f0000000040)={0x24, @none={0x0, 0xffff}}, 0x14) ioctl$sock_SIOCINQ(r1, 0x541b, &(0x7f0000000000)) 12:27:38 executing program 7 (fault-call:1 fault-nth:4): syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000040)='./file0\x00', 0x40000, 0x3, &(0x7f0000000200)=[{&(0x7f0000010000)="2000000080000000060000006a0000000f000000000000000100000001000000004000000040000020000000e0f4655fe0f4655f0100ffff53ef010001000000dff4655f000000000000000001000000000000000b0000000001", 0x5a, 0x400}, {&(0x7f0000010400)="020000000300000004", 0x9, 0x800}, {&(0x7f0000011600)="ed41000000080000dff4655fe0f4655fe0f4655f000000000000040004", 0x1d, 0x2100}], 0x0, &(0x7f0000000080)=ANY=[]) syz_mount_image$ext4(&(0x7f0000000000)='ext2\x00', &(0x7f0000000040)='./file0/../file0\x00', 0x0, 0x0, 0x0, 0x104e034, &(0x7f00000001c0)) 12:27:38 executing program 0: r0 = syz_io_uring_setup(0x4d4f, &(0x7f0000000080), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=0x0, &(0x7f0000000140)=0x0) syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_POLL_ADD={0x6, 0x0, 0x0, @fd=r0, 0x0, 0x0, 0x0, {0x194}}, 0x0) r3 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0) perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_io_uring_submit(r3, r2, &(0x7f0000000100)=@IORING_OP_SPLICE, 0x4) io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0) execveat(0xffffffffffffffff, &(0x7f00000002c0)='./file0\x00', &(0x7f0000000380), 0x0, 0x300) 12:27:38 executing program 5: r0 = syz_io_uring_setup(0x4d4f, &(0x7f0000000080), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=0x0, &(0x7f0000000140)=0x0) syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_POLL_ADD={0x6, 0x0, 0x0, @fd=r0, 0x0, 0x0, 0x0, {0x194}}, 0x0) r3 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0) perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_io_uring_submit(r3, r2, &(0x7f0000000100)=@IORING_OP_SPLICE, 0x4) io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0) execveat(0xffffffffffffffff, &(0x7f00000002c0)='./file0\x00', 0x0, 0x0, 0xc) [ 1587.898238] EXT4-fs (loop6): unsupported inode size: 0 [ 1587.899121] EXT4-fs (loop6): blocksize: 2048 12:27:38 executing program 4: syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000040)='./file0\x00', 0x40000, 0x0, 0x0, 0x0, &(0x7f0000000080)=ANY=[]) syz_mount_image$ext4(&(0x7f0000000000)='ext2\x00', &(0x7f0000000040)='./file0/../file0\x00', 0x0, 0x0, 0x0, 0x104e034, &(0x7f00000001c0)={[{@data_err_abort}]}) [ 1587.964667] EXT4-fs (loop7): mounted filesystem without journal. Opts: ,errors=continue [ 1587.974966] FAULT_INJECTION: forcing a failure. [ 1587.974966] name failslab, interval 1, probability 0, space 0, times 0 [ 1587.976841] CPU: 0 PID: 11935 Comm: syz-executor.7 Not tainted 5.10.60 #1 [ 1587.977911] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS rel-1.14.0-0-g155821a1990b-prebuilt.qemu.org 04/01/2014 [ 1587.979522] Call Trace: [ 1587.979907] dump_stack+0x107/0x163 [ 1587.980447] should_fail.cold+0x5/0xa [ 1587.980992] should_failslab+0x5/0x10 [ 1587.981546] __kmalloc_track_caller+0x79/0x3b0 [ 1587.982194] ? strndup_user+0x70/0xe0 [ 1587.982722] ? __schedule+0x853/0x1e90 [ 1587.983278] memdup_user+0x22/0xd0 [ 1587.983785] strndup_user+0x70/0xe0 [ 1587.984302] __x64_sys_mount+0x133/0x300 [ 1587.984880] ? path_mount+0x2080/0x2080 [ 1587.985438] ? lockdep_hardirqs_on_prepare+0x273/0x3e0 [ 1587.986210] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1587.986992] do_syscall_64+0x33/0x40 [ 1587.987536] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 1587.988252] RIP: 0033:0x467b2a [ 1587.988713] Code: 48 c7 c2 bc ff ff ff f7 d8 64 89 02 b8 ff ff ff ff eb d2 e8 b8 04 00 00 0f 1f 84 00 00 00 00 00 49 89 ca b8 a5 00 00 00 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 12:27:38 executing program 1 (fault-call:6 fault-nth:5): r0 = syz_io_uring_setup(0x4d4f, &(0x7f0000000080), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=0x0, &(0x7f0000000140)=0x0) syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_POLL_ADD={0x6, 0x0, 0x0, @fd=r0, 0x0, 0x0, 0x0, {0x194}}, 0x0) r3 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0) perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_io_uring_submit(r3, r2, &(0x7f0000000100)=@IORING_OP_SPLICE, 0x4) io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0) execveat(0xffffffffffffffff, &(0x7f00000002c0)='./file0\x00', &(0x7f0000000380), &(0x7f0000000640)=[0x0, 0x0, 0x0], 0x0) [ 1587.991316] RSP: 002b:00007f2f6c56efa8 EFLAGS: 00000202 ORIG_RAX: 00000000000000a5 [ 1587.992616] RAX: ffffffffffffffda RBX: 0000000000000000 RCX: 0000000000467b2a [ 1587.993846] RDX: 0000000020000000 RSI: 0000000020000040 RDI: 0000000000000000 [ 1587.995085] RBP: 00007f2f6c56f040 R08: 00007f2f6c56f040 R09: 0000000020000000 [ 1587.996108] R10: 000000000104e034 R11: 0000000000000202 R12: 0000000020000000 [ 1587.997120] R13: 0000000020000040 R14: 00007f2f6c56f000 R15: 00000000200001c0 12:27:38 executing program 6: syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000040)='./file0\x00', 0x40000, 0x3, &(0x7f0000000200)=[{&(0x7f0000010000)="2000000080000000060000006a0000000f000000000000000100000001000000004000000040000020000000e0f4655fe0f4655f0100ffff53ef010001000000dff4655f000000000000000001000000000000000b00000000", 0x59, 0x400}, {&(0x7f0000010400)="020000000300000004", 0x9, 0x800}, {&(0x7f0000011600)="ed41000000080000dff4655fe0f4655fe0f4655f000000000000040004", 0x1d, 0x2100}], 0x0, &(0x7f0000000080)=ANY=[]) syz_mount_image$ext4(&(0x7f0000000000)='ext2\x00', &(0x7f0000000040)='./file0/../file0\x00', 0x0, 0x0, 0x0, 0x104e034, &(0x7f00000001c0)={[{@data_err_abort}]}) 12:27:38 executing program 0: r0 = syz_io_uring_setup(0x4d4f, &(0x7f0000000080), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=0x0, &(0x7f0000000140)=0x0) syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_POLL_ADD={0x6, 0x0, 0x0, @fd=r0, 0x0, 0x0, 0x0, {0x194}}, 0x0) r3 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0) perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_io_uring_submit(r3, r2, &(0x7f0000000100)=@IORING_OP_SPLICE, 0x4) io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0) execveat(0xffffffffffffffff, &(0x7f00000002c0)='./file0\x00', &(0x7f0000000380), 0x0, 0x500) 12:27:38 executing program 2: r0 = syz_init_net_socket$802154_dgram(0x24, 0x2, 0x0) r1 = dup(r0) sendmsg$BATADV_CMD_GET_BLA_BACKBONE(r1, &(0x7f0000000540)={&(0x7f0000000100)={0x10, 0x0, 0x0, 0x40000}, 0xc, &(0x7f0000000500)={0x0}}, 0x0) ioctl$sock_SIOCINQ(r1, 0x541b, &(0x7f0000000000)) 12:27:38 executing program 7 (fault-call:1 fault-nth:5): syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000040)='./file0\x00', 0x40000, 0x3, &(0x7f0000000200)=[{&(0x7f0000010000)="2000000080000000060000006a0000000f000000000000000100000001000000004000000040000020000000e0f4655fe0f4655f0100ffff53ef010001000000dff4655f000000000000000001000000000000000b0000000001", 0x5a, 0x400}, {&(0x7f0000010400)="020000000300000004", 0x9, 0x800}, {&(0x7f0000011600)="ed41000000080000dff4655fe0f4655fe0f4655f000000000000040004", 0x1d, 0x2100}], 0x0, &(0x7f0000000080)=ANY=[]) syz_mount_image$ext4(&(0x7f0000000000)='ext2\x00', &(0x7f0000000040)='./file0/../file0\x00', 0x0, 0x0, 0x0, 0x104e034, &(0x7f00000001c0)) 12:27:38 executing program 3 (fault-call:5 fault-nth:35): r0 = syz_io_uring_setup(0x4d4f, &(0x7f0000000080), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200), &(0x7f0000000140)=0x0) r2 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0) perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_io_uring_submit(r2, r1, &(0x7f0000000100)=@IORING_OP_SPLICE, 0x4) io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0) execveat(0xffffffffffffffff, &(0x7f00000002c0)='./file0\x00', 0x0, 0x0, 0x0) 12:27:38 executing program 5: r0 = syz_io_uring_setup(0x4d4f, &(0x7f0000000080), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=0x0, &(0x7f0000000140)=0x0) syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_POLL_ADD={0x6, 0x0, 0x0, @fd=r0, 0x0, 0x0, 0x0, {0x194}}, 0x0) r3 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0) perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_io_uring_submit(r3, r2, &(0x7f0000000100)=@IORING_OP_SPLICE, 0x4) io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0) execveat(0xffffffffffffffff, &(0x7f00000002c0)='./file0\x00', 0x0, 0x0, 0x10) [ 1588.189168] EXT4-fs (loop6): unsupported inode size: 0 [ 1588.189859] EXT4-fs (loop6): blocksize: 2048 [ 1588.202661] FAULT_INJECTION: forcing a failure. [ 1588.202661] name failslab, interval 1, probability 0, space 0, times 0 [ 1588.204172] CPU: 1 PID: 11957 Comm: syz-executor.1 Not tainted 5.10.60 #1 [ 1588.204976] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS rel-1.14.0-0-g155821a1990b-prebuilt.qemu.org 04/01/2014 [ 1588.206333] Call Trace: [ 1588.206648] dump_stack+0x107/0x163 [ 1588.207102] should_fail.cold+0x5/0xa [ 1588.207563] should_failslab+0x5/0x10 [ 1588.208016] __kmalloc_track_caller+0x79/0x3b0 [ 1588.208556] ? kasprintf+0xbb/0xf0 [ 1588.208980] ? __lockdep_reset_lock+0x180/0x180 [ 1588.209527] kvasprintf+0xb5/0x150 [ 1588.209927] ? bust_spinlocks+0xe0/0xe0 [ 1588.210475] ? kmem_cache_alloc_trace+0x153/0x350 [ 1588.211212] kasprintf+0xbb/0xf0 [ 1588.211726] ? kvasprintf_const+0x190/0x190 [ 1588.212367] alloc_bprm+0x10b/0x890 [ 1588.212792] ? strncpy_from_user+0xa5/0x420 [ 1588.213307] do_execveat_common.isra.0+0x217/0x670 [ 1588.213901] __x64_sys_execveat+0xe7/0x130 [ 1588.214402] do_syscall_64+0x33/0x40 [ 1588.214850] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 1588.215456] RIP: 0033:0x466609 [ 1588.215834] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1588.218010] RSP: 002b:00007f443d736188 EFLAGS: 00000246 ORIG_RAX: 0000000000000142 [ 1588.218887] RAX: ffffffffffffffda RBX: 000000000056bf80 RCX: 0000000000466609 [ 1588.219714] RDX: 0000000020000380 RSI: 00000000200002c0 RDI: ffffffffffffffff [ 1588.220567] RBP: 00007f443d7361d0 R08: 0000000000000000 R09: 0000000000000000 [ 1588.221422] R10: 0000000020000640 R11: 0000000000000246 R12: 0000000000000001 [ 1588.222278] R13: 00007ffeb6924e7f R14: 00007f443d736300 R15: 0000000000022000 12:27:38 executing program 4: syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000040)='./file0\x00', 0x40000, 0x2, &(0x7f0000000200)=[{&(0x7f0000010000)="2000000080000000060000006a0000000f000000000000000100000001000000004000000040000020000000e0f4655fe0f4655f0100ffff53ef010001000000dff4655f000000000000000001000000000000000b00000000010000280200000284", 0x62, 0x400}, {&(0x7f0000010400)="020000000300000004000000", 0xc, 0x800}], 0x0, &(0x7f0000000080)=ANY=[]) syz_mount_image$ext4(&(0x7f0000000000)='ext2\x00', &(0x7f0000000040)='./file0/../file0\x00', 0x0, 0x0, 0x0, 0x104e034, &(0x7f00000001c0)={[{@data_err_abort}]}) [ 1588.293403] FAULT_INJECTION: forcing a failure. [ 1588.293403] name failslab, interval 1, probability 0, space 0, times 0 [ 1588.294784] CPU: 1 PID: 11974 Comm: syz-executor.3 Not tainted 5.10.60 #1 [ 1588.295595] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS rel-1.14.0-0-g155821a1990b-prebuilt.qemu.org 04/01/2014 [ 1588.296839] Call Trace: [ 1588.297146] dump_stack+0x107/0x163 [ 1588.297542] should_fail.cold+0x5/0xa [ 1588.297987] ? create_object.isra.0+0x3a/0xa10 [ 1588.298485] should_failslab+0x5/0x10 [ 1588.298918] kmem_cache_alloc+0x5b/0x350 [ 1588.299367] create_object.isra.0+0x3a/0xa10 [ 1588.299840] ? __kasan_kmalloc.constprop.0+0xc2/0xd0 [ 1588.300418] __kmalloc+0x170/0x3e0 [ 1588.300808] security_prepare_creds+0x10a/0x180 [ 1588.301327] prepare_creds+0x45c/0x670 [ 1588.301778] prepare_exec_creds+0xd/0x250 [ 1588.302241] bprm_execve+0x1e3/0x1b00 [ 1588.302717] ? get_arg_page+0x153/0x200 [ 1588.303291] ? acct_arg_size+0xe0/0xe0 [ 1588.303850] ? open_exec+0x70/0x70 [ 1588.304362] ? memcpy+0x39/0x60 [ 1588.304834] ? copy_strings.isra.0+0x492/0x690 [ 1588.305335] ? copy_string_kernel+0x3ad/0x440 [ 1588.305885] do_execveat_common.isra.0+0x524/0x670 [ 1588.306429] __x64_sys_execveat+0xe7/0x130 [ 1588.306924] do_syscall_64+0x33/0x40 [ 1588.307327] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 1588.307940] RIP: 0033:0x466609 [ 1588.308291] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1588.310301] RSP: 002b:00007f7f315af188 EFLAGS: 00000246 ORIG_RAX: 0000000000000142 [ 1588.311139] RAX: ffffffffffffffda RBX: 000000000056bf80 RCX: 0000000000466609 [ 1588.311916] RDX: 0000000000000000 RSI: 00000000200002c0 RDI: ffffffffffffffff [ 1588.312680] RBP: 00007f7f315af1d0 R08: 0000000000000000 R09: 0000000000000000 [ 1588.313466] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 1588.314270] R13: 00007ffe8cd6fa4f R14: 00007f7f315af300 R15: 0000000000022000 [ 1588.325714] EXT4-fs (loop7): mounted filesystem without journal. Opts: ,errors=continue [ 1588.331970] FAULT_INJECTION: forcing a failure. [ 1588.331970] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 1588.333399] CPU: 1 PID: 11973 Comm: syz-executor.7 Not tainted 5.10.60 #1 [ 1588.334173] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS rel-1.14.0-0-g155821a1990b-prebuilt.qemu.org 04/01/2014 [ 1588.335399] Call Trace: [ 1588.335697] dump_stack+0x107/0x163 [ 1588.336099] should_fail.cold+0x5/0xa [ 1588.336527] _copy_from_user+0x2e/0x1b0 [ 1588.336982] memdup_user+0x65/0xd0 [ 1588.337380] strndup_user+0x70/0xe0 [ 1588.337924] __x64_sys_mount+0x133/0x300 [ 1588.338531] ? path_mount+0x2080/0x2080 [ 1588.338963] ? lockdep_hardirqs_on_prepare+0x273/0x3e0 [ 1588.339670] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1588.340366] do_syscall_64+0x33/0x40 [ 1588.340871] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 1588.341573] RIP: 0033:0x467b2a [ 1588.342027] Code: 48 c7 c2 bc ff ff ff f7 d8 64 89 02 b8 ff ff ff ff eb d2 e8 b8 04 00 00 0f 1f 84 00 00 00 00 00 49 89 ca b8 a5 00 00 00 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1588.344467] RSP: 002b:00007f2f6c56efa8 EFLAGS: 00000202 ORIG_RAX: 00000000000000a5 [ 1588.345476] RAX: ffffffffffffffda RBX: 0000000000000000 RCX: 0000000000467b2a [ 1588.346430] RDX: 0000000020000000 RSI: 0000000020000040 RDI: 0000000000000000 [ 1588.347367] RBP: 00007f2f6c56f040 R08: 00007f2f6c56f040 R09: 0000000020000000 [ 1588.348310] R10: 000000000104e034 R11: 0000000000000202 R12: 0000000020000000 [ 1588.349250] R13: 0000000020000040 R14: 00007f2f6c56f000 R15: 00000000200001c0 [ 1588.440354] EXT4-fs error (device loop4): ext4_fill_super:4954: inode #2: comm syz-executor.4: iget: root inode unallocated [ 1588.444092] EXT4-fs (loop4): get root inode failed [ 1588.444654] EXT4-fs (loop4): mount failed [ 1601.205497] kmemleak: 1 new suspected memory leaks (see /sys/kernel/debug/kmemleak) 12:28:00 executing program 1 (fault-call:6 fault-nth:6): r0 = syz_io_uring_setup(0x4d4f, &(0x7f0000000080), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=0x0, &(0x7f0000000140)=0x0) syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_POLL_ADD={0x6, 0x0, 0x0, @fd=r0, 0x0, 0x0, 0x0, {0x194}}, 0x0) r3 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0) perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_io_uring_submit(r3, r2, &(0x7f0000000100)=@IORING_OP_SPLICE, 0x4) io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0) execveat(0xffffffffffffffff, &(0x7f00000002c0)='./file0\x00', &(0x7f0000000380), &(0x7f0000000640)=[0x0, 0x0, 0x0], 0x0) 12:28:00 executing program 4: syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000040)='./file0\x00', 0x40000, 0x2, &(0x7f0000000200)=[{&(0x7f0000010000)="2000000080000000060000006a0000000f000000000000000100000001000000004000000040000020000000e0f4655fe0f4655f0100ffff53ef010001000000dff4655f000000000000000001000000000000000b00000000010000280200000284", 0x62, 0x400}, {&(0x7f0000010400)="020000000300000004000000", 0xc, 0x800}], 0x0, &(0x7f0000000080)=ANY=[]) syz_mount_image$ext4(&(0x7f0000000000)='ext2\x00', &(0x7f0000000040)='./file0/../file0\x00', 0x0, 0x0, 0x0, 0x104e034, &(0x7f00000001c0)={[{@data_err_abort}]}) 12:28:00 executing program 7 (fault-call:1 fault-nth:6): syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000040)='./file0\x00', 0x40000, 0x3, &(0x7f0000000200)=[{&(0x7f0000010000)="2000000080000000060000006a0000000f000000000000000100000001000000004000000040000020000000e0f4655fe0f4655f0100ffff53ef010001000000dff4655f000000000000000001000000000000000b0000000001", 0x5a, 0x400}, {&(0x7f0000010400)="020000000300000004", 0x9, 0x800}, {&(0x7f0000011600)="ed41000000080000dff4655fe0f4655fe0f4655f000000000000040004", 0x1d, 0x2100}], 0x0, &(0x7f0000000080)=ANY=[]) syz_mount_image$ext4(&(0x7f0000000000)='ext2\x00', &(0x7f0000000040)='./file0/../file0\x00', 0x0, 0x0, 0x0, 0x104e034, &(0x7f00000001c0)) 12:28:00 executing program 0: r0 = syz_io_uring_setup(0x4d4f, &(0x7f0000000080), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=0x0, &(0x7f0000000140)=0x0) syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_POLL_ADD={0x6, 0x0, 0x0, @fd=r0, 0x0, 0x0, 0x0, {0x194}}, 0x0) r3 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0) perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_io_uring_submit(r3, r2, &(0x7f0000000100)=@IORING_OP_SPLICE, 0x4) io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0) execveat(0xffffffffffffffff, &(0x7f00000002c0)='./file0\x00', &(0x7f0000000380), 0x0, 0x600) 12:28:00 executing program 6: syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000040)='./file0\x00', 0x40000, 0x3, &(0x7f0000000200)=[{&(0x7f0000010000)="2000000080000000060000006a0000000f000000000000000100000001000000004000000040000020000000e0f4655fe0f4655f0100ffff53ef010001000000dff4655f000000000000000001000000000000000b00000000", 0x59, 0x400}, {&(0x7f0000010400)="020000000300000004", 0x9, 0x800}, {&(0x7f0000011600)="ed41000000080000dff4655fe0f4655fe0f4655f000000000000040004", 0x1d, 0x2100}], 0x0, &(0x7f0000000080)=ANY=[]) syz_mount_image$ext4(&(0x7f0000000000)='ext2\x00', &(0x7f0000000040)='./file0/../file0\x00', 0x0, 0x0, 0x0, 0x104e034, &(0x7f00000001c0)={[{@data_err_abort}]}) 12:28:00 executing program 2: r0 = syz_init_net_socket$802154_dgram(0x24, 0x2, 0x0) bind(r0, &(0x7f0000000140)=@pppol2tpv3in6={0x18, 0x1, {0x0, r0, 0x1, 0x3, 0x1, 0x3, {0xa, 0x4e23, 0x1f62, @rand_addr=' \x01\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x02', 0x101}}}, 0x80) r1 = dup(r0) sendmsg$BATADV_CMD_GET_BLA_BACKBONE(r1, &(0x7f0000000540)={&(0x7f0000000100), 0xc, &(0x7f0000000500)={0x0}}, 0x0) preadv(0xffffffffffffffff, &(0x7f00000000c0)=[{&(0x7f0000000040)=""/116, 0x74}], 0x1, 0x31, 0x8) ioctl$sock_SIOCINQ(r1, 0x541b, &(0x7f0000000000)) 12:28:00 executing program 5: r0 = syz_io_uring_setup(0x4d4f, &(0x7f0000000080), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=0x0, &(0x7f0000000140)=0x0) syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_POLL_ADD={0x6, 0x0, 0x0, @fd=r0, 0x0, 0x0, 0x0, {0x194}}, 0x0) r3 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0) perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_io_uring_submit(r3, r2, &(0x7f0000000100)=@IORING_OP_SPLICE, 0x4) io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0) execveat(0xffffffffffffffff, &(0x7f00000002c0)='./file0\x00', 0x0, 0x0, 0x12) 12:28:00 executing program 3 (fault-call:5 fault-nth:36): r0 = syz_io_uring_setup(0x4d4f, &(0x7f0000000080), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200), &(0x7f0000000140)=0x0) r2 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0) perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_io_uring_submit(r2, r1, &(0x7f0000000100)=@IORING_OP_SPLICE, 0x4) io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0) execveat(0xffffffffffffffff, &(0x7f00000002c0)='./file0\x00', 0x0, 0x0, 0x0) [ 1610.222309] EXT4-fs (loop6): unsupported inode size: 0 [ 1610.222907] EXT4-fs (loop6): blocksize: 2048 [ 1610.234887] EXT4-fs error (device loop4): ext4_fill_super:4954: inode #2: comm syz-executor.4: iget: root inode unallocated [ 1610.236647] EXT4-fs (loop4): get root inode failed [ 1610.237262] EXT4-fs (loop4): mount failed [ 1610.259444] FAULT_INJECTION: forcing a failure. [ 1610.259444] name failslab, interval 1, probability 0, space 0, times 0 [ 1610.262437] CPU: 0 PID: 12014 Comm: syz-executor.1 Not tainted 5.10.60 #1 [ 1610.264196] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS rel-1.14.0-0-g155821a1990b-prebuilt.qemu.org 04/01/2014 [ 1610.267245] Call Trace: [ 1610.267946] dump_stack+0x107/0x163 [ 1610.268905] should_fail.cold+0x5/0xa [ 1610.269917] ? create_object.isra.0+0x3a/0xa10 [ 1610.271218] should_failslab+0x5/0x10 [ 1610.272330] kmem_cache_alloc+0x5b/0x350 [ 1610.273531] ? vsnprintf+0x4ba/0x1600 [ 1610.274626] create_object.isra.0+0x3a/0xa10 [ 1610.275768] ? __kasan_kmalloc.constprop.0+0xc2/0xd0 [ 1610.277093] __kmalloc_track_caller+0x179/0x3b0 [ 1610.278316] ? kasprintf+0xbb/0xf0 [ 1610.279261] kvasprintf+0xb5/0x150 [ 1610.280183] ? bust_spinlocks+0xe0/0xe0 [ 1610.281360] ? kmem_cache_alloc_trace+0x153/0x350 [ 1610.282792] kasprintf+0xbb/0xf0 [ 1610.283782] ? kvasprintf_const+0x190/0x190 [ 1610.285116] alloc_bprm+0x10b/0x890 [ 1610.286192] ? strncpy_from_user+0xa5/0x420 [ 1610.287475] do_execveat_common.isra.0+0x217/0x670 [ 1610.288933] __x64_sys_execveat+0xe7/0x130 [ 1610.290195] do_syscall_64+0x33/0x40 [ 1610.291283] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 1610.292761] RIP: 0033:0x466609 [ 1610.293695] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1610.298977] RSP: 002b:00007f443d736188 EFLAGS: 00000246 ORIG_RAX: 0000000000000142 [ 1610.301173] RAX: ffffffffffffffda RBX: 000000000056bf80 RCX: 0000000000466609 [ 1610.303226] RDX: 0000000020000380 RSI: 00000000200002c0 RDI: ffffffffffffffff [ 1610.305275] RBP: 00007f443d7361d0 R08: 0000000000000000 R09: 0000000000000000 [ 1610.307357] R10: 0000000020000640 R11: 0000000000000246 R12: 0000000000000001 [ 1610.309406] R13: 00007ffeb6924e7f R14: 00007f443d736300 R15: 0000000000022000 12:28:00 executing program 2: r0 = syz_init_net_socket$802154_dgram(0x24, 0x2, 0x0) r1 = dup(r0) sendmsg$BATADV_CMD_GET_BLA_BACKBONE(r1, &(0x7f0000000540)={&(0x7f0000000100)={0x10, 0x0, 0x0, 0x80000}, 0xc, &(0x7f0000000500)={0x0}, 0x1, 0x0, 0x0, 0x10}, 0x0) r2 = openat$null(0xffffffffffffff9c, &(0x7f0000000040), 0x604100, 0x0) epoll_ctl$EPOLL_CTL_ADD(r2, 0x1, r1, &(0x7f0000000080)={0x20000018}) ioctl$sock_SIOCINQ(r1, 0x541b, &(0x7f0000000000)) 12:28:00 executing program 6: syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000040)='./file0\x00', 0x40000, 0x3, &(0x7f0000000200)=[{&(0x7f0000010000)="2000000080000000060000006a0000000f000000000000000100000001000000004000000040000020000000e0f4655fe0f4655f0100ffff53ef010001000000dff4655f000000000000000001000000000000000b00000000", 0x59, 0x400}, {&(0x7f0000010400)="020000000300000004", 0x9, 0x800}, {&(0x7f0000011600)="ed41000000080000dff4655fe0f4655fe0f4655f000000000000040004", 0x1d, 0x2100}], 0x0, &(0x7f0000000080)=ANY=[]) syz_mount_image$ext4(&(0x7f0000000000)='ext2\x00', &(0x7f0000000040)='./file0/../file0\x00', 0x0, 0x0, 0x0, 0x104e034, &(0x7f00000001c0)={[{@data_err_abort}]}) [ 1610.325489] FAULT_INJECTION: forcing a failure. [ 1610.325489] name failslab, interval 1, probability 0, space 0, times 0 [ 1610.328898] CPU: 0 PID: 12015 Comm: syz-executor.3 Not tainted 5.10.60 #1 [ 1610.330648] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS rel-1.14.0-0-g155821a1990b-prebuilt.qemu.org 04/01/2014 [ 1610.333487] Call Trace: [ 1610.334201] dump_stack+0x107/0x163 [ 1610.335147] should_fail.cold+0x5/0xa [ 1610.336124] ? __alloc_file+0x21/0x310 [ 1610.337100] should_failslab+0x5/0x10 [ 1610.338081] kmem_cache_alloc+0x5b/0x350 [ 1610.339135] __alloc_file+0x21/0x310 [ 1610.340231] alloc_empty_file+0x6a/0x160 [ 1610.341267] path_openat+0xdf/0x2690 [ 1610.342259] ? stack_trace_consume_entry+0x160/0x160 [ 1610.343535] ? path_lookupat+0x780/0x780 [ 1610.344595] ? perf_trace_run_bpf_submit+0xf5/0x190 [ 1610.344950] FAULT_INJECTION: forcing a failure. [ 1610.344950] name failslab, interval 1, probability 0, space 0, times 0 [ 1610.345833] ? __lock_acquire+0x1616/0x5b60 [ 1610.345897] do_filp_open+0x192/0x3e0 [ 1610.349552] ? may_open_dev+0xf0/0xf0 [ 1610.350542] ? perf_trace_run_bpf_submit+0xf5/0x190 [ 1610.351817] ? perf_trace_lock+0x2cd/0x470 [ 1610.352921] ? __lockdep_reset_lock+0x180/0x180 [ 1610.354136] ? find_held_lock+0x2c/0x110 [ 1610.355179] do_open_execat+0x10c/0x690 [ 1610.356186] ? __ia32_sys_uselib+0x40/0x40 [ 1610.357243] ? do_raw_spin_lock+0x129/0x270 [ 1610.358343] ? rwlock_bug.part.0+0x90/0x90 [ 1610.359451] bprm_execve+0x5b2/0x1b00 [ 1610.360398] ? get_arg_page+0x153/0x200 [ 1610.361427] ? open_exec+0x70/0x70 [ 1610.362348] ? memcpy+0x39/0x60 [ 1610.363172] ? copy_strings.isra.0+0x492/0x690 [ 1610.364310] ? copy_string_kernel+0x3ad/0x440 [ 1610.365457] do_execveat_common.isra.0+0x524/0x670 [ 1610.366729] __x64_sys_execveat+0xe7/0x130 [ 1610.367802] do_syscall_64+0x33/0x40 [ 1610.368732] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 1610.370022] RIP: 0033:0x466609 [ 1610.370827] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1610.375366] RSP: 002b:00007f7f315af188 EFLAGS: 00000246 ORIG_RAX: 0000000000000142 [ 1610.377255] RAX: ffffffffffffffda RBX: 000000000056bf80 RCX: 0000000000466609 [ 1610.379031] RDX: 0000000000000000 RSI: 00000000200002c0 RDI: ffffffffffffffff [ 1610.380786] RBP: 00007f7f315af1d0 R08: 0000000000000000 R09: 0000000000000000 [ 1610.382551] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 1610.384291] R13: 00007ffe8cd6fa4f R14: 00007f7f315af300 R15: 0000000000022000 [ 1610.386131] CPU: 1 PID: 12033 Comm: syz-executor.7 Not tainted 5.10.60 #1 [ 1610.388026] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS rel-1.14.0-0-g155821a1990b-prebuilt.qemu.org 04/01/2014 [ 1610.390717] Call Trace: [ 1610.391110] dump_stack+0x107/0x163 [ 1610.391654] should_fail.cold+0x5/0xa [ 1610.392213] ? copy_mount_options+0x55/0x180 [ 1610.392851] should_failslab+0x5/0x10 [ 1610.393403] kmem_cache_alloc_trace+0x55/0x350 [ 1610.394074] ? _copy_from_user+0xfb/0x1b0 [ 1610.394669] copy_mount_options+0x55/0x180 [ 1610.395300] __x64_sys_mount+0x1a8/0x300 [ 1610.395899] ? path_mount+0x2080/0x2080 [ 1610.396478] ? lockdep_hardirqs_on_prepare+0x273/0x3e0 [ 1610.397246] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1610.398016] do_syscall_64+0x33/0x40 [ 1610.398553] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 1610.399309] RIP: 0033:0x467b2a [ 1610.399793] Code: 48 c7 c2 bc ff ff ff f7 d8 64 89 02 b8 ff ff ff ff eb d2 e8 b8 04 00 00 0f 1f 84 00 00 00 00 00 49 89 ca b8 a5 00 00 00 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1610.402453] RSP: 002b:00007f2f6c54dfa8 EFLAGS: 00000202 ORIG_RAX: 00000000000000a5 [ 1610.403549] RAX: ffffffffffffffda RBX: 0000000000000000 RCX: 0000000000467b2a [ 1610.404599] RDX: 0000000020000000 RSI: 0000000020000040 RDI: 0000000000000000 [ 1610.405631] RBP: 00007f2f6c54e040 R08: 00007f2f6c54e040 R09: 0000000020000000 [ 1610.406668] R10: 000000000104e034 R11: 0000000000000202 R12: 0000000020000000 [ 1610.407716] R13: 0000000020000040 R14: 00007f2f6c54e000 R15: 00000000200001c0 [ 1610.446718] EXT4-fs (loop7): mounted filesystem without journal. Opts: ,errors=continue 12:28:00 executing program 4: syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000040)='./file0\x00', 0x40000, 0x2, &(0x7f0000000200)=[{&(0x7f0000010000)="2000000080000000060000006a0000000f000000000000000100000001000000004000000040000020000000e0f4655fe0f4655f0100ffff53ef010001000000dff4655f000000000000000001000000000000000b00000000010000280200000284", 0x62, 0x400}, {&(0x7f0000010400)="020000000300000004000000", 0xc, 0x800}], 0x0, &(0x7f0000000080)=ANY=[]) syz_mount_image$ext4(&(0x7f0000000000)='ext2\x00', &(0x7f0000000040)='./file0/../file0\x00', 0x0, 0x0, 0x0, 0x104e034, &(0x7f00000001c0)={[{@data_err_abort}]}) 12:28:00 executing program 0: r0 = syz_io_uring_setup(0x4d4f, &(0x7f0000000080), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=0x0, &(0x7f0000000140)=0x0) syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_POLL_ADD={0x6, 0x0, 0x0, @fd=r0, 0x0, 0x0, 0x0, {0x194}}, 0x0) r3 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0) perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_io_uring_submit(r3, r2, &(0x7f0000000100)=@IORING_OP_SPLICE, 0x4) io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0) execveat(0xffffffffffffffff, &(0x7f00000002c0)='./file0\x00', &(0x7f0000000380), 0x0, 0x700) 12:28:00 executing program 5: r0 = syz_io_uring_setup(0x4d4f, &(0x7f0000000080), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=0x0, &(0x7f0000000140)=0x0) syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_POLL_ADD={0x6, 0x0, 0x0, @fd=r0, 0x0, 0x0, 0x0, {0x194}}, 0x0) r3 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0) perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_io_uring_submit(r3, r2, &(0x7f0000000100)=@IORING_OP_SPLICE, 0x4) io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0) execveat(0xffffffffffffffff, &(0x7f00000002c0)='./file0\x00', 0x0, 0x0, 0x18) 12:28:00 executing program 7 (fault-call:1 fault-nth:7): syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000040)='./file0\x00', 0x40000, 0x3, &(0x7f0000000200)=[{&(0x7f0000010000)="2000000080000000060000006a0000000f000000000000000100000001000000004000000040000020000000e0f4655fe0f4655f0100ffff53ef010001000000dff4655f000000000000000001000000000000000b0000000001", 0x5a, 0x400}, {&(0x7f0000010400)="020000000300000004", 0x9, 0x800}, {&(0x7f0000011600)="ed41000000080000dff4655fe0f4655fe0f4655f000000000000040004", 0x1d, 0x2100}], 0x0, &(0x7f0000000080)=ANY=[]) syz_mount_image$ext4(&(0x7f0000000000)='ext2\x00', &(0x7f0000000040)='./file0/../file0\x00', 0x0, 0x0, 0x0, 0x104e034, &(0x7f00000001c0)) 12:28:00 executing program 1 (fault-call:6 fault-nth:7): r0 = syz_io_uring_setup(0x4d4f, &(0x7f0000000080), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=0x0, &(0x7f0000000140)=0x0) syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_POLL_ADD={0x6, 0x0, 0x0, @fd=r0, 0x0, 0x0, 0x0, {0x194}}, 0x0) r3 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0) perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_io_uring_submit(r3, r2, &(0x7f0000000100)=@IORING_OP_SPLICE, 0x4) io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0) execveat(0xffffffffffffffff, &(0x7f00000002c0)='./file0\x00', &(0x7f0000000380), &(0x7f0000000640)=[0x0, 0x0, 0x0], 0x0) 12:28:00 executing program 3 (fault-call:5 fault-nth:37): r0 = syz_io_uring_setup(0x4d4f, &(0x7f0000000080), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200), &(0x7f0000000140)=0x0) r2 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0) perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_io_uring_submit(r2, r1, &(0x7f0000000100)=@IORING_OP_SPLICE, 0x4) io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0) execveat(0xffffffffffffffff, &(0x7f00000002c0)='./file0\x00', 0x0, 0x0, 0x0) [ 1610.624178] EXT4-fs (loop6): unsupported inode size: 0 [ 1610.625468] EXT4-fs (loop6): blocksize: 2048 [ 1610.690084] FAULT_INJECTION: forcing a failure. [ 1610.690084] name failslab, interval 1, probability 0, space 0, times 0 [ 1610.691917] CPU: 1 PID: 12052 Comm: syz-executor.3 Not tainted 5.10.60 #1 [ 1610.692913] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS rel-1.14.0-0-g155821a1990b-prebuilt.qemu.org 04/01/2014 [ 1610.693660] EXT4-fs error (device loop4): ext4_fill_super:4954: inode #2: comm syz-executor.4: iget: root inode unallocated [ 1610.694650] Call Trace: [ 1610.694672] dump_stack+0x107/0x163 [ 1610.694693] should_fail.cold+0x5/0xa [ 1610.694715] ? create_object.isra.0+0x3a/0xa10 [ 1610.696849] EXT4-fs (loop4): get root inode failed [ 1610.696956] should_failslab+0x5/0x10 [ 1610.697581] EXT4-fs (loop4): mount failed [ 1610.698150] kmem_cache_alloc+0x5b/0x350 [ 1610.698169] create_object.isra.0+0x3a/0xa10 [ 1610.698186] ? __kasan_kmalloc.constprop.0+0xc2/0xd0 [ 1610.702748] kmem_cache_alloc+0x15b/0x350 [ 1610.703389] __alloc_file+0x21/0x310 [ 1610.703952] alloc_empty_file+0x6a/0x160 [ 1610.704568] path_openat+0xdf/0x2690 [ 1610.705147] ? stack_trace_consume_entry+0x160/0x160 [ 1610.705924] ? path_lookupat+0x780/0x780 [ 1610.706550] ? __lock_acquire+0x1616/0x5b60 [ 1610.707210] do_filp_open+0x192/0x3e0 [ 1610.707786] ? may_open_dev+0xf0/0xf0 [ 1610.708377] ? perf_trace_lock+0xb6/0x470 [ 1610.708954] ? perf_trace_lock+0xb6/0x470 [ 1610.709593] ? __lockdep_reset_lock+0x180/0x180 [ 1610.710330] ? find_held_lock+0x2c/0x110 [ 1610.710963] do_open_execat+0x10c/0x690 [ 1610.711563] ? __ia32_sys_uselib+0x40/0x40 [ 1610.712196] ? do_raw_spin_lock+0x129/0x270 [ 1610.712852] ? rwlock_bug.part.0+0x90/0x90 [ 1610.713495] bprm_execve+0x5b2/0x1b00 [ 1610.714084] ? get_arg_page+0x153/0x200 [ 1610.714681] ? open_exec+0x70/0x70 [ 1610.715225] ? memcpy+0x39/0x60 [ 1610.715730] ? copy_strings.isra.0+0x492/0x690 [ 1610.716415] ? copy_string_kernel+0x3ad/0x440 [ 1610.717106] do_execveat_common.isra.0+0x524/0x670 [ 1610.717864] __x64_sys_execveat+0xe7/0x130 [ 1610.718487] do_syscall_64+0x33/0x40 [ 1610.719058] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 1610.719859] RIP: 0033:0x466609 [ 1610.720339] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1610.723136] RSP: 002b:00007f7f315af188 EFLAGS: 00000246 ORIG_RAX: 0000000000000142 [ 1610.724206] RAX: ffffffffffffffda RBX: 000000000056bf80 RCX: 0000000000466609 [ 1610.725276] RDX: 0000000000000000 RSI: 00000000200002c0 RDI: ffffffffffffffff [ 1610.726352] RBP: 00007f7f315af1d0 R08: 0000000000000000 R09: 0000000000000000 [ 1610.727403] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 1610.728538] R13: 00007ffe8cd6fa4f R14: 00007f7f315af300 R15: 0000000000022000 [ 1610.760914] FAULT_INJECTION: forcing a failure. [ 1610.760914] name failslab, interval 1, probability 0, space 0, times 0 [ 1610.762993] CPU: 0 PID: 12072 Comm: syz-executor.1 Not tainted 5.10.60 #1 [ 1610.764217] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS rel-1.14.0-0-g155821a1990b-prebuilt.qemu.org 04/01/2014 [ 1610.766112] Call Trace: [ 1610.766552] dump_stack+0x107/0x163 [ 1610.767161] should_fail.cold+0x5/0xa [ 1610.767799] ? mm_alloc+0x19/0xc0 [ 1610.768381] should_failslab+0x5/0x10 [ 1610.769008] kmem_cache_alloc+0x5b/0x350 [ 1610.769687] mm_alloc+0x19/0xc0 [ 1610.770246] alloc_bprm+0x19a/0x890 [ 1610.770844] ? strncpy_from_user+0xa5/0x420 [ 1610.771568] do_execveat_common.isra.0+0x217/0x670 [ 1610.772389] __x64_sys_execveat+0xe7/0x130 [ 1610.773097] do_syscall_64+0x33/0x40 [ 1610.773721] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 1610.774579] RIP: 0033:0x466609 [ 1610.775114] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1610.778155] RSP: 002b:00007f443d736188 EFLAGS: 00000246 ORIG_RAX: 0000000000000142 [ 1610.779407] RAX: ffffffffffffffda RBX: 000000000056bf80 RCX: 0000000000466609 [ 1610.780579] RDX: 0000000020000380 RSI: 00000000200002c0 RDI: ffffffffffffffff [ 1610.781750] RBP: 00007f443d7361d0 R08: 0000000000000000 R09: 0000000000000000 [ 1610.782925] R10: 0000000020000640 R11: 0000000000000246 R12: 0000000000000001 [ 1610.784099] R13: 00007ffeb6924e7f R14: 00007f443d736300 R15: 0000000000022000 [ 1610.827256] EXT4-fs (loop7): mounted filesystem without journal. Opts: ,errors=continue [ 1610.831200] FAULT_INJECTION: forcing a failure. [ 1610.831200] name failslab, interval 1, probability 0, space 0, times 0 [ 1610.833085] CPU: 0 PID: 12075 Comm: syz-executor.7 Not tainted 5.10.60 #1 [ 1610.834213] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS rel-1.14.0-0-g155821a1990b-prebuilt.qemu.org 04/01/2014 [ 1610.836110] Call Trace: [ 1610.836549] dump_stack+0x107/0x163 [ 1610.837150] should_fail.cold+0x5/0xa [ 1610.837776] ? create_object.isra.0+0x3a/0xa10 [ 1610.838546] should_failslab+0x5/0x10 [ 1610.839167] kmem_cache_alloc+0x5b/0x350 [ 1610.839840] create_object.isra.0+0x3a/0xa10 [ 1610.840562] ? __kasan_kmalloc.constprop.0+0xc2/0xd0 [ 1610.841390] kmem_cache_alloc_trace+0x153/0x350 [ 1610.842165] copy_mount_options+0x55/0x180 [ 1610.842859] __x64_sys_mount+0x1a8/0x300 [ 1610.843523] ? path_mount+0x2080/0x2080 [ 1610.844179] ? lockdep_hardirqs_on_prepare+0x273/0x3e0 [ 1610.845035] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1610.845881] do_syscall_64+0x33/0x40 [ 1610.846499] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 1610.847335] RIP: 0033:0x467b2a [ 1610.847865] Code: 48 c7 c2 bc ff ff ff f7 d8 64 89 02 b8 ff ff ff ff eb d2 e8 b8 04 00 00 0f 1f 84 00 00 00 00 00 49 89 ca b8 a5 00 00 00 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1610.850878] RSP: 002b:00007f2f6c56efa8 EFLAGS: 00000202 ORIG_RAX: 00000000000000a5 [ 1610.852121] RAX: ffffffffffffffda RBX: 0000000000000000 RCX: 0000000000467b2a [ 1610.853284] RDX: 0000000020000000 RSI: 0000000020000040 RDI: 0000000000000000 [ 1610.854466] RBP: 00007f2f6c56f040 R08: 00007f2f6c56f040 R09: 0000000020000000 [ 1610.855631] R10: 000000000104e034 R11: 0000000000000202 R12: 0000000020000000 [ 1610.856794] R13: 0000000020000040 R14: 00007f2f6c56f000 R15: 00000000200001c0 [ 1610.861095] EXT4-fs (loop7): re-mounted. Opts: ,errors=continue 12:28:11 executing program 3 (fault-call:5 fault-nth:38): r0 = syz_io_uring_setup(0x4d4f, &(0x7f0000000080), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200), &(0x7f0000000140)=0x0) r2 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0) perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_io_uring_submit(r2, r1, &(0x7f0000000100)=@IORING_OP_SPLICE, 0x4) io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0) execveat(0xffffffffffffffff, &(0x7f00000002c0)='./file0\x00', 0x0, 0x0, 0x0) 12:28:11 executing program 7 (fault-call:1 fault-nth:8): syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000040)='./file0\x00', 0x40000, 0x3, &(0x7f0000000200)=[{&(0x7f0000010000)="2000000080000000060000006a0000000f000000000000000100000001000000004000000040000020000000e0f4655fe0f4655f0100ffff53ef010001000000dff4655f000000000000000001000000000000000b0000000001", 0x5a, 0x400}, {&(0x7f0000010400)="020000000300000004", 0x9, 0x800}, {&(0x7f0000011600)="ed41000000080000dff4655fe0f4655fe0f4655f000000000000040004", 0x1d, 0x2100}], 0x0, &(0x7f0000000080)=ANY=[]) syz_mount_image$ext4(&(0x7f0000000000)='ext2\x00', &(0x7f0000000040)='./file0/../file0\x00', 0x0, 0x0, 0x0, 0x104e034, &(0x7f00000001c0)) 12:28:11 executing program 2: r0 = openat$tun(0xffffffffffffff9c, &(0x7f0000000040), 0x0, 0x0) ioctl$TUNSETQUEUE(r0, 0x400454ca, &(0x7f00000000c0)={'ipvlan1\x00'}) r1 = openat$tun(0xffffffffffffff9c, &(0x7f0000000040), 0x0, 0x0) ioctl$TUNSETQUEUE(r1, 0x400454ca, &(0x7f00000000c0)={'ipvlan1\x00'}) r2 = fcntl$dupfd(r0, 0x0, r1) r3 = syz_init_net_socket$802154_dgram(0x24, 0x2, 0x0) r4 = dup(r3) r5 = openat$incfs(r2, &(0x7f00000001c0)='.log\x00', 0x561100, 0x8e) connect$802154_dgram(r5, &(0x7f0000000200)={0x24, @short={0x2, 0x3}}, 0x14) sendmsg$BATADV_CMD_GET_BLA_BACKBONE(r4, &(0x7f0000000540)={&(0x7f0000000100), 0xc, &(0x7f0000000500)={0x0}}, 0x0) ioctl$sock_SIOCINQ(r4, 0x541b, &(0x7f0000000000)) 12:28:11 executing program 0: r0 = syz_io_uring_setup(0x4d4f, &(0x7f0000000080), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=0x0, &(0x7f0000000140)=0x0) syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_POLL_ADD={0x6, 0x0, 0x0, @fd=r0, 0x0, 0x0, 0x0, {0x194}}, 0x0) r3 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0) perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_io_uring_submit(r3, r2, &(0x7f0000000100)=@IORING_OP_SPLICE, 0x4) io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0) execveat(0xffffffffffffffff, &(0x7f00000002c0)='./file0\x00', &(0x7f0000000380), 0x0, 0x900) 12:28:11 executing program 6: syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000040)='./file0\x00', 0x40000, 0x3, &(0x7f0000000200)=[{&(0x7f0000010000)="2000000080000000060000006a0000000f000000000000000100000001000000004000000040000020000000e0f4655fe0f4655f0100ffff53ef010001000000dff4655f000000000000000001000000000000000b000000000100", 0x5b, 0x400}, {&(0x7f0000010400)="020000000300000004", 0x9, 0x800}, {&(0x7f0000011600)="ed41000000080000dff4655fe0f4655fe0f4655f000000000000040004", 0x1d, 0x2100}], 0x0, &(0x7f0000000080)=ANY=[]) syz_mount_image$ext4(&(0x7f0000000000)='ext2\x00', &(0x7f0000000040)='./file0/../file0\x00', 0x0, 0x0, 0x0, 0x104e034, &(0x7f00000001c0)={[{@data_err_abort}]}) 12:28:11 executing program 4: syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000040)='./file0\x00', 0x40000, 0x3, &(0x7f0000000200)=[{&(0x7f0000010000)="2000000080000000060000006a0000000f000000000000000100000001000000004000000040000020000000e0f4655fe0f4655f0100ffff53ef010001000000dff4655f000000000000000001000000000000000b00000000010000280200000284", 0x62, 0x400}, {&(0x7f0000010400)="020000000300000004000000", 0xc, 0x800}, {0x0, 0x0, 0x2100}], 0x0, &(0x7f0000000080)=ANY=[]) syz_mount_image$ext4(&(0x7f0000000000)='ext2\x00', &(0x7f0000000040)='./file0/../file0\x00', 0x0, 0x0, 0x0, 0x104e034, &(0x7f00000001c0)={[{@data_err_abort}]}) 12:28:11 executing program 5: r0 = syz_io_uring_setup(0x4d4f, &(0x7f0000000080), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=0x0, &(0x7f0000000140)=0x0) syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_POLL_ADD={0x6, 0x0, 0x0, @fd=r0, 0x0, 0x0, 0x0, {0x194}}, 0x0) r3 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0) perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_io_uring_submit(r3, r2, &(0x7f0000000100)=@IORING_OP_SPLICE, 0x4) io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0) execveat(0xffffffffffffffff, &(0x7f00000002c0)='./file0\x00', 0x0, 0x0, 0x1e) 12:28:11 executing program 1 (fault-call:6 fault-nth:8): r0 = syz_io_uring_setup(0x4d4f, &(0x7f0000000080), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=0x0, &(0x7f0000000140)=0x0) syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_POLL_ADD={0x6, 0x0, 0x0, @fd=r0, 0x0, 0x0, 0x0, {0x194}}, 0x0) r3 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0) perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_io_uring_submit(r3, r2, &(0x7f0000000100)=@IORING_OP_SPLICE, 0x4) io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0) execveat(0xffffffffffffffff, &(0x7f00000002c0)='./file0\x00', &(0x7f0000000380), &(0x7f0000000640)=[0x0, 0x0, 0x0], 0x0) [ 1621.825868] FAULT_INJECTION: forcing a failure. [ 1621.825868] name failslab, interval 1, probability 0, space 0, times 0 [ 1621.827960] CPU: 0 PID: 12097 Comm: syz-executor.3 Not tainted 5.10.60 #1 [ 1621.829224] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS rel-1.14.0-0-g155821a1990b-prebuilt.qemu.org 04/01/2014 [ 1621.831079] Call Trace: [ 1621.831551] dump_stack+0x107/0x163 [ 1621.832165] should_fail.cold+0x5/0xa [ 1621.832820] ? security_file_alloc+0x34/0x170 [ 1621.833585] should_failslab+0x5/0x10 [ 1621.834252] kmem_cache_alloc+0x5b/0x350 [ 1621.834949] security_file_alloc+0x34/0x170 [ 1621.835477] __alloc_file+0xb6/0x310 [ 1621.835906] alloc_empty_file+0x6a/0x160 [ 1621.836406] path_openat+0xdf/0x2690 [ 1621.836847] ? stack_trace_consume_entry+0x160/0x160 [ 1621.837445] ? path_lookupat+0x780/0x780 [ 1621.837927] ? perf_trace_run_bpf_submit+0xf5/0x190 [ 1621.838524] ? __lock_acquire+0x1616/0x5b60 [ 1621.839042] do_filp_open+0x192/0x3e0 [ 1621.839502] ? may_open_dev+0xf0/0xf0 [ 1621.839956] ? perf_trace_run_bpf_submit+0xf5/0x190 [ 1621.840565] ? perf_trace_lock+0x2cd/0x470 [ 1621.841072] ? __lockdep_reset_lock+0x180/0x180 [ 1621.841631] ? find_held_lock+0x2c/0x110 [ 1621.842132] do_open_execat+0x10c/0x690 [ 1621.842605] ? __ia32_sys_uselib+0x40/0x40 [ 1621.843102] ? do_raw_spin_lock+0x129/0x270 [ 1621.843619] ? rwlock_bug.part.0+0x90/0x90 [ 1621.844129] bprm_execve+0x5b2/0x1b00 [ 1621.844581] ? get_arg_page+0x153/0x200 [ 1621.845054] ? open_exec+0x70/0x70 [ 1621.845497] ? memcpy+0x39/0x60 [ 1621.845885] ? copy_strings.isra.0+0x492/0x690 [ 1621.846454] ? copy_string_kernel+0x3ad/0x440 [ 1621.847001] do_execveat_common.isra.0+0x524/0x670 [ 1621.847590] __x64_sys_execveat+0xe7/0x130 [ 1621.848094] do_syscall_64+0x33/0x40 [ 1621.848541] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 1621.849138] RIP: 0033:0x466609 [ 1621.849517] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1621.851687] RSP: 002b:00007f7f315af188 EFLAGS: 00000246 ORIG_RAX: 0000000000000142 [ 1621.852593] RAX: ffffffffffffffda RBX: 000000000056bf80 RCX: 0000000000466609 [ 1621.853438] RDX: 0000000000000000 RSI: 00000000200002c0 RDI: ffffffffffffffff [ 1621.854290] RBP: 00007f7f315af1d0 R08: 0000000000000000 R09: 0000000000000000 [ 1621.855124] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 1621.855966] R13: 00007ffe8cd6fa4f R14: 00007f7f315af300 R15: 0000000000022000 [ 1621.871324] EXT4-fs (loop6): mounted filesystem without journal. Opts: ,errors=continue 12:28:12 executing program 3 (fault-call:5 fault-nth:39): r0 = syz_io_uring_setup(0x4d4f, &(0x7f0000000080), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200), &(0x7f0000000140)=0x0) r2 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0) perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_io_uring_submit(r2, r1, &(0x7f0000000100)=@IORING_OP_SPLICE, 0x4) io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0) execveat(0xffffffffffffffff, &(0x7f00000002c0)='./file0\x00', 0x0, 0x0, 0x0) [ 1621.894753] EXT4-fs (loop6): re-mounted. Opts: data_err=abort,,errors=continue 12:28:12 executing program 0: r0 = syz_io_uring_setup(0x4d4f, &(0x7f0000000080), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=0x0, &(0x7f0000000140)=0x0) syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_POLL_ADD={0x6, 0x0, 0x0, @fd=r0, 0x0, 0x0, 0x0, {0x194}}, 0x0) r3 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0) perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_io_uring_submit(r3, r2, &(0x7f0000000100)=@IORING_OP_SPLICE, 0x4) io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0) execveat(0xffffffffffffffff, &(0x7f00000002c0)='./file0\x00', &(0x7f0000000380), 0x0, 0xa00) [ 1621.951739] EXT4-fs (loop7): mounted filesystem without journal. Opts: ,errors=continue [ 1621.963088] FAULT_INJECTION: forcing a failure. [ 1621.963088] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 1621.965036] CPU: 0 PID: 12106 Comm: syz-executor.7 Not tainted 5.10.60 #1 [ 1621.966011] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS rel-1.14.0-0-g155821a1990b-prebuilt.qemu.org 04/01/2014 [ 1621.967674] Call Trace: [ 1621.968066] dump_stack+0x107/0x163 [ 1621.968592] should_fail.cold+0x5/0xa [ 1621.969150] _copy_from_user+0x2e/0x1b0 [ 1621.969742] copy_mount_options+0x76/0x180 [ 1621.970371] __x64_sys_mount+0x1a8/0x300 [ 1621.970975] ? path_mount+0x2080/0x2080 [ 1621.971512] ? lockdep_hardirqs_on_prepare+0x273/0x3e0 [ 1621.972268] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1621.973007] do_syscall_64+0x33/0x40 [ 1621.973535] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 1621.974293] RIP: 0033:0x467b2a [ 1621.974772] Code: 48 c7 c2 bc ff ff ff f7 d8 64 89 02 b8 ff ff ff ff eb d2 e8 b8 04 00 00 0f 1f 84 00 00 00 00 00 49 89 ca b8 a5 00 00 00 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1621.977612] RSP: 002b:00007f2f6c56efa8 EFLAGS: 00000202 ORIG_RAX: 00000000000000a5 [ 1621.978723] RAX: ffffffffffffffda RBX: 0000000000000000 RCX: 0000000000467b2a [ 1621.979783] RDX: 0000000020000000 RSI: 0000000020000040 RDI: 0000000000000000 [ 1621.980843] RBP: 00007f2f6c56f040 R08: 00007f2f6c56f040 R09: 0000000020000000 [ 1621.981888] R10: 000000000104e034 R11: 0000000000000202 R12: 0000000020000000 [ 1621.982901] R13: 0000000020000040 R14: 00007f2f6c56f000 R15: 00000000200001c0 [ 1622.033648] FAULT_INJECTION: forcing a failure. [ 1622.033648] name failslab, interval 1, probability 0, space 0, times 0 [ 1622.035312] CPU: 0 PID: 12114 Comm: syz-executor.1 Not tainted 5.10.60 #1 [ 1622.036140] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS rel-1.14.0-0-g155821a1990b-prebuilt.qemu.org 04/01/2014 [ 1622.037458] Call Trace: [ 1622.037769] dump_stack+0x107/0x163 [ 1622.038215] should_fail.cold+0x5/0xa [ 1622.038656] ? create_object.isra.0+0x3a/0xa10 [ 1622.039202] should_failslab+0x5/0x10 [ 1622.039641] kmem_cache_alloc+0x5b/0x350 [ 1622.040139] create_object.isra.0+0x3a/0xa10 [ 1622.040641] ? __kasan_kmalloc.constprop.0+0xc2/0xd0 [ 1622.041234] kmem_cache_alloc+0x15b/0x350 [ 1622.041718] mm_alloc+0x19/0xc0 [ 1622.042114] alloc_bprm+0x19a/0x890 [ 1622.042535] ? strncpy_from_user+0xa5/0x420 [ 1622.043052] do_execveat_common.isra.0+0x217/0x670 [ 1622.043629] __x64_sys_execveat+0xe7/0x130 [ 1622.044134] do_syscall_64+0x33/0x40 [ 1622.044570] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 1622.045162] RIP: 0033:0x466609 [ 1622.045545] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1622.047668] RSP: 002b:00007f443d736188 EFLAGS: 00000246 ORIG_RAX: 0000000000000142 [ 1622.048549] RAX: ffffffffffffffda RBX: 000000000056bf80 RCX: 0000000000466609 [ 1622.049364] RDX: 0000000020000380 RSI: 00000000200002c0 RDI: ffffffffffffffff [ 1622.050201] RBP: 00007f443d7361d0 R08: 0000000000000000 R09: 0000000000000000 [ 1622.051023] R10: 0000000020000640 R11: 0000000000000246 R12: 0000000000000001 [ 1622.051848] R13: 00007ffeb6924e7f R14: 00007f443d736300 R15: 0000000000022000 [ 1622.064512] EXT4-fs error (device loop4): ext4_fill_super:4954: inode #2: comm syz-executor.4: iget: root inode unallocated 12:28:12 executing program 6: syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000040)='./file0\x00', 0x40000, 0x3, &(0x7f0000000200)=[{&(0x7f0000010000)="2000000080000000060000006a0000000f000000000000000100000001000000004000000040000020000000e0f4655fe0f4655f0100ffff53ef010001000000dff4655f000000000000000001000000000000000b000000000100", 0x5b, 0x400}, {&(0x7f0000010400)="020000000300000004", 0x9, 0x800}, {&(0x7f0000011600)="ed41000000080000dff4655fe0f4655fe0f4655f000000000000040004", 0x1d, 0x2100}], 0x0, &(0x7f0000000080)=ANY=[]) syz_mount_image$ext4(&(0x7f0000000000)='ext2\x00', &(0x7f0000000040)='./file0/../file0\x00', 0x0, 0x0, 0x0, 0x104e034, &(0x7f00000001c0)={[{@data_err_abort}]}) [ 1622.075783] EXT4-fs (loop4): get root inode failed [ 1622.076546] EXT4-fs (loop4): mount failed 12:28:12 executing program 2: r0 = syz_init_net_socket$802154_dgram(0x24, 0x2, 0x0) r1 = dup(r0) r2 = syz_init_net_socket$802154_dgram(0x24, 0x2, 0x0) r3 = dup(r2) ioctl$sock_SIOCINQ(r3, 0x541b, &(0x7f0000000000)) r4 = openat$tun(0xffffffffffffff9c, &(0x7f0000000040), 0x0, 0x0) ioctl$TUNSETQUEUE(r4, 0x400454ca, &(0x7f00000000c0)={'ipvlan1\x00'}) mount$9p_fd(0x0, &(0x7f0000000040)='./file0\x00', &(0x7f0000000080), 0x2000000, &(0x7f0000000140)={'trans=fd,', {'rfdno', 0x3d, r3}, 0x2c, {'wfdno', 0x3d, r4}, 0x2c, {[{@nodevmap}], [{@measure}, {@smackfsfloor={'smackfsfloor', 0x3d, '+,'}}]}}) sendmsg$BATADV_CMD_GET_BLA_BACKBONE(r1, &(0x7f0000000540)={&(0x7f0000000100), 0xc, &(0x7f0000000500)={0x0}}, 0x0) ioctl$sock_SIOCINQ(r1, 0x541b, &(0x7f0000000000)) [ 1622.178356] EXT4-fs (loop7): re-mounted. Opts: ,errors=continue 12:28:12 executing program 4: syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000040)='./file0\x00', 0x40000, 0x3, &(0x7f0000000200)=[{&(0x7f0000010000)="2000000080000000060000006a0000000f000000000000000100000001000000004000000040000020000000e0f4655fe0f4655f0100ffff53ef010001000000dff4655f000000000000000001000000000000000b00000000010000280200000284", 0x62, 0x400}, {&(0x7f0000010400)="020000000300000004000000", 0xc, 0x800}, {0x0, 0x0, 0x2100}], 0x0, &(0x7f0000000080)=ANY=[]) syz_mount_image$ext4(&(0x7f0000000000)='ext2\x00', &(0x7f0000000040)='./file0/../file0\x00', 0x0, 0x0, 0x0, 0x104e034, &(0x7f00000001c0)={[{@data_err_abort}]}) 12:28:12 executing program 5: r0 = syz_io_uring_setup(0x4d4f, &(0x7f0000000080), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=0x0, &(0x7f0000000140)=0x0) syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_POLL_ADD={0x6, 0x0, 0x0, @fd=r0, 0x0, 0x0, 0x0, {0x194}}, 0x0) r3 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0) perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_io_uring_submit(r3, r2, &(0x7f0000000100)=@IORING_OP_SPLICE, 0x4) io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0) execveat(0xffffffffffffffff, &(0x7f00000002c0)='./file0\x00', 0x0, 0x0, 0x24) [ 1622.208383] FAULT_INJECTION: forcing a failure. [ 1622.208383] name failslab, interval 1, probability 0, space 0, times 0 [ 1622.211581] CPU: 1 PID: 12134 Comm: syz-executor.3 Not tainted 5.10.60 #1 [ 1622.213490] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS rel-1.14.0-0-g155821a1990b-prebuilt.qemu.org 04/01/2014 [ 1622.216672] Call Trace: [ 1622.217426] dump_stack+0x107/0x163 [ 1622.218470] should_fail.cold+0x5/0xa [ 1622.219554] ? create_object.isra.0+0x3a/0xa10 [ 1622.220836] should_failslab+0x5/0x10 [ 1622.221900] kmem_cache_alloc+0x5b/0x350 [ 1622.223053] ? percpu_ref_put_many.constprop.0+0x4e/0x100 [ 1622.224597] create_object.isra.0+0x3a/0xa10 [ 1622.225825] ? __kasan_kmalloc.constprop.0+0xc2/0xd0 [ 1622.227285] kmem_cache_alloc+0x15b/0x350 [ 1622.228469] security_file_alloc+0x34/0x170 [ 1622.229687] __alloc_file+0xb6/0x310 [ 1622.230744] alloc_empty_file+0x6a/0x160 [ 1622.231885] path_openat+0xdf/0x2690 12:28:12 executing program 1 (fault-call:6 fault-nth:9): r0 = syz_io_uring_setup(0x4d4f, &(0x7f0000000080), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=0x0, &(0x7f0000000140)=0x0) syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_POLL_ADD={0x6, 0x0, 0x0, @fd=r0, 0x0, 0x0, 0x0, {0x194}}, 0x0) r3 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0) perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_io_uring_submit(r3, r2, &(0x7f0000000100)=@IORING_OP_SPLICE, 0x4) io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0) execveat(0xffffffffffffffff, &(0x7f00000002c0)='./file0\x00', &(0x7f0000000380), &(0x7f0000000640)=[0x0, 0x0, 0x0], 0x0) [ 1622.232954] ? stack_trace_consume_entry+0x160/0x160 [ 1622.234563] ? path_lookupat+0x780/0x780 12:28:12 executing program 7 (fault-call:1 fault-nth:9): syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000040)='./file0\x00', 0x40000, 0x3, &(0x7f0000000200)=[{&(0x7f0000010000)="2000000080000000060000006a0000000f000000000000000100000001000000004000000040000020000000e0f4655fe0f4655f0100ffff53ef010001000000dff4655f000000000000000001000000000000000b0000000001", 0x5a, 0x400}, {&(0x7f0000010400)="020000000300000004", 0x9, 0x800}, {&(0x7f0000011600)="ed41000000080000dff4655fe0f4655fe0f4655f000000000000040004", 0x1d, 0x2100}], 0x0, &(0x7f0000000080)=ANY=[]) syz_mount_image$ext4(&(0x7f0000000000)='ext2\x00', &(0x7f0000000040)='./file0/../file0\x00', 0x0, 0x0, 0x0, 0x104e034, &(0x7f00000001c0)) [ 1622.235741] ? __lock_acquire+0x1616/0x5b60 [ 1622.237060] do_filp_open+0x192/0x3e0 [ 1622.238151] ? may_open_dev+0xf0/0xf0 [ 1622.239262] ? perf_trace_lock+0xb6/0x470 [ 1622.240423] ? perf_trace_lock+0xb6/0x470 [ 1622.241602] ? __lockdep_reset_lock+0x180/0x180 [ 1622.242935] ? find_held_lock+0x2c/0x110 [ 1622.244091] do_open_execat+0x10c/0x690 [ 1622.245213] ? __ia32_sys_uselib+0x40/0x40 [ 1622.246422] ? do_raw_spin_lock+0x129/0x270 [ 1622.247637] ? rwlock_bug.part.0+0x90/0x90 [ 1622.248853] bprm_execve+0x5b2/0x1b00 [ 1622.249917] ? get_arg_page+0x153/0x200 [ 1622.251064] ? open_exec+0x70/0x70 [ 1622.252068] ? memcpy+0x39/0x60 [ 1622.253002] ? copy_strings.isra.0+0x492/0x690 [ 1622.254316] ? copy_string_kernel+0x3ad/0x440 [ 1622.255607] do_execveat_common.isra.0+0x524/0x670 [ 1622.257015] __x64_sys_execveat+0xe7/0x130 [ 1622.258233] do_syscall_64+0x33/0x40 [ 1622.259285] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 1622.260731] RIP: 0033:0x466609 [ 1622.261639] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1622.266794] RSP: 002b:00007f7f315af188 EFLAGS: 00000246 ORIG_RAX: 0000000000000142 [ 1622.269092] RAX: ffffffffffffffda RBX: 000000000056bf80 RCX: 0000000000466609 [ 1622.271237] RDX: 0000000000000000 RSI: 00000000200002c0 RDI: ffffffffffffffff [ 1622.273224] RBP: 00007f7f315af1d0 R08: 0000000000000000 R09: 0000000000000000 [ 1622.275313] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 1622.277389] R13: 00007ffe8cd6fa4f R14: 00007f7f315af300 R15: 0000000000022000 [ 1622.454873] FAULT_INJECTION: forcing a failure. [ 1622.454873] name fail_page_alloc, interval 1, probability 0, space 0, times 0 [ 1622.456706] CPU: 0 PID: 12156 Comm: syz-executor.1 Not tainted 5.10.60 #1 [ 1622.457764] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS rel-1.14.0-0-g155821a1990b-prebuilt.qemu.org 04/01/2014 [ 1622.459524] Call Trace: [ 1622.459949] dump_stack+0x107/0x163 [ 1622.460524] should_fail.cold+0x5/0xa [ 1622.461122] __alloc_pages_nodemask+0x17f/0x670 [ 1622.461827] ? perf_trace_lock+0x2cd/0x470 [ 1622.462506] ? __alloc_pages_slowpath.constprop.0+0x2090/0x2090 [ 1622.463463] alloc_pages_current+0x187/0x280 [ 1622.464172] __get_free_pages+0xc/0xa0 [ 1622.464772] pgd_alloc+0x84/0x4f0 [ 1622.465405] ? pgd_page_get_mm+0x40/0x40 [ 1622.466179] ? lockdep_init_map_waits+0x26a/0x700 [ 1622.466985] ? lockdep_init_map_waits+0x26a/0x700 [ 1622.467709] mm_init+0x633/0xa30 [ 1622.468209] mm_alloc+0x99/0xc0 [ 1622.468705] alloc_bprm+0x19a/0x890 [ 1622.469240] ? strncpy_from_user+0xa5/0x420 [ 1622.469894] do_execveat_common.isra.0+0x217/0x670 [ 1622.470610] __x64_sys_execveat+0xe7/0x130 [ 1622.471263] do_syscall_64+0x33/0x40 [ 1622.471786] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 1622.472545] RIP: 0033:0x466609 [ 1622.473017] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1622.475811] RSP: 002b:00007f443d736188 EFLAGS: 00000246 ORIG_RAX: 0000000000000142 [ 1622.476890] RAX: ffffffffffffffda RBX: 000000000056bf80 RCX: 0000000000466609 [ 1622.477947] RDX: 0000000020000380 RSI: 00000000200002c0 RDI: ffffffffffffffff [ 1622.479036] RBP: 00007f443d7361d0 R08: 0000000000000000 R09: 0000000000000000 [ 1622.480108] R10: 0000000020000640 R11: 0000000000000246 R12: 0000000000000002 [ 1622.481191] R13: 00007ffeb6924e7f R14: 00007f443d736300 R15: 0000000000022000 [ 1622.488431] EXT4-fs (loop6): mounted filesystem without journal. Opts: ,errors=continue [ 1622.503305] EXT4-fs (loop6): re-mounted. Opts: data_err=abort,,errors=continue [ 1622.561375] EXT4-fs error (device loop4): ext4_fill_super:4954: inode #2: comm syz-executor.4: iget: root inode unallocated [ 1622.563596] EXT4-fs (loop4): get root inode failed [ 1622.564491] EXT4-fs (loop4): mount failed [ 1622.638505] EXT4-fs (loop7): mounted filesystem without journal. Opts: ,errors=continue [ 1622.643425] FAULT_INJECTION: forcing a failure. [ 1622.643425] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 1622.645157] CPU: 0 PID: 12168 Comm: syz-executor.7 Not tainted 5.10.60 #1 [ 1622.646192] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS rel-1.14.0-0-g155821a1990b-prebuilt.qemu.org 04/01/2014 [ 1622.647644] Call Trace: [ 1622.647995] dump_stack+0x107/0x163 [ 1622.648466] should_fail.cold+0x5/0xa [ 1622.648977] _copy_from_user+0x2e/0x1b0 [ 1622.649501] copy_mount_options+0x76/0x180 [ 1622.650068] __x64_sys_mount+0x1a8/0x300 [ 1622.650606] ? path_mount+0x2080/0x2080 [ 1622.651140] ? lockdep_hardirqs_on_prepare+0x273/0x3e0 [ 1622.651824] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1622.652488] do_syscall_64+0x33/0x40 [ 1622.652984] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 1622.653652] RIP: 0033:0x467b2a [ 1622.654074] Code: 48 c7 c2 bc ff ff ff f7 d8 64 89 02 b8 ff ff ff ff eb d2 e8 b8 04 00 00 0f 1f 84 00 00 00 00 00 49 89 ca b8 a5 00 00 00 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1622.656459] RSP: 002b:00007f2f6c56efa8 EFLAGS: 00000202 ORIG_RAX: 00000000000000a5 [ 1622.657444] RAX: ffffffffffffffda RBX: 0000000000000000 RCX: 0000000000467b2a [ 1622.658407] RDX: 0000000020000000 RSI: 0000000020000040 RDI: 0000000000000000 [ 1622.659342] RBP: 00007f2f6c56f040 R08: 00007f2f6c56f040 R09: 0000000020000000 [ 1622.660253] R10: 000000000104e034 R11: 0000000000000202 R12: 0000000020000000 [ 1622.661192] R13: 0000000020000040 R14: 00007f2f6c56f000 R15: 00000000200001c0 [ 1622.696659] EXT4-fs (loop7): re-mounted. Opts: ,errors=continue 12:28:25 executing program 3 (fault-call:5 fault-nth:40): r0 = syz_io_uring_setup(0x4d4f, &(0x7f0000000080), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200), &(0x7f0000000140)=0x0) r2 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0) perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_io_uring_submit(r2, r1, &(0x7f0000000100)=@IORING_OP_SPLICE, 0x4) io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0) execveat(0xffffffffffffffff, &(0x7f00000002c0)='./file0\x00', 0x0, 0x0, 0x0) 12:28:25 executing program 7 (fault-call:1 fault-nth:10): syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000040)='./file0\x00', 0x40000, 0x3, &(0x7f0000000200)=[{&(0x7f0000010000)="2000000080000000060000006a0000000f000000000000000100000001000000004000000040000020000000e0f4655fe0f4655f0100ffff53ef010001000000dff4655f000000000000000001000000000000000b0000000001", 0x5a, 0x400}, {&(0x7f0000010400)="020000000300000004", 0x9, 0x800}, {&(0x7f0000011600)="ed41000000080000dff4655fe0f4655fe0f4655f000000000000040004", 0x1d, 0x2100}], 0x0, &(0x7f0000000080)=ANY=[]) syz_mount_image$ext4(&(0x7f0000000000)='ext2\x00', &(0x7f0000000040)='./file0/../file0\x00', 0x0, 0x0, 0x0, 0x104e034, &(0x7f00000001c0)) 12:28:25 executing program 4: syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000040)='./file0\x00', 0x40000, 0x3, &(0x7f0000000200)=[{&(0x7f0000010000)="2000000080000000060000006a0000000f000000000000000100000001000000004000000040000020000000e0f4655fe0f4655f0100ffff53ef010001000000dff4655f000000000000000001000000000000000b00000000010000280200000284", 0x62, 0x400}, {&(0x7f0000010400)="020000000300000004000000", 0xc, 0x800}, {0x0, 0x0, 0x2100}], 0x0, &(0x7f0000000080)=ANY=[]) syz_mount_image$ext4(&(0x7f0000000000)='ext2\x00', &(0x7f0000000040)='./file0/../file0\x00', 0x0, 0x0, 0x0, 0x104e034, &(0x7f00000001c0)={[{@data_err_abort}]}) 12:28:25 executing program 0: r0 = syz_io_uring_setup(0x4d4f, &(0x7f0000000080), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=0x0, &(0x7f0000000140)=0x0) syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_POLL_ADD={0x6, 0x0, 0x0, @fd=r0, 0x0, 0x0, 0x0, {0x194}}, 0x0) r3 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0) perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_io_uring_submit(r3, r2, &(0x7f0000000100)=@IORING_OP_SPLICE, 0x4) io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0) execveat(0xffffffffffffffff, &(0x7f00000002c0)='./file0\x00', &(0x7f0000000380), 0x0, 0xb00) 12:28:25 executing program 1 (fault-call:6 fault-nth:10): r0 = syz_io_uring_setup(0x4d4f, &(0x7f0000000080), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=0x0, &(0x7f0000000140)=0x0) syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_POLL_ADD={0x6, 0x0, 0x0, @fd=r0, 0x0, 0x0, 0x0, {0x194}}, 0x0) r3 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0) perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_io_uring_submit(r3, r2, &(0x7f0000000100)=@IORING_OP_SPLICE, 0x4) io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0) execveat(0xffffffffffffffff, &(0x7f00000002c0)='./file0\x00', &(0x7f0000000380), &(0x7f0000000640)=[0x0, 0x0, 0x0], 0x0) 12:28:25 executing program 6: syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000040)='./file0\x00', 0x40000, 0x3, &(0x7f0000000200)=[{&(0x7f0000010000)="2000000080000000060000006a0000000f000000000000000100000001000000004000000040000020000000e0f4655fe0f4655f0100ffff53ef010001000000dff4655f000000000000000001000000000000000b0000000001", 0x5a, 0x400}, {&(0x7f0000010400)="020000000300000004", 0x9, 0x800}, {&(0x7f0000011600)="ed41000000080000dff4655fe0f4655fe0f4655f000000000000040004", 0x1d, 0x2100}], 0x0, &(0x7f0000000080)=ANY=[]) syz_mount_image$ext4(&(0x7f0000000000)='ext2\x00', &(0x7f0000000040)='./file0/../file0\x00', 0x0, 0x0, 0x0, 0x104e034, &(0x7f00000001c0)={[{@data_err_abort}]}) 12:28:25 executing program 5: r0 = syz_io_uring_setup(0x4d4f, &(0x7f0000000080), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=0x0, &(0x7f0000000140)=0x0) syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_POLL_ADD={0x6, 0x0, 0x0, @fd=r0, 0x0, 0x0, 0x0, {0x194}}, 0x0) r3 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0) perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_io_uring_submit(r3, r2, &(0x7f0000000100)=@IORING_OP_SPLICE, 0x4) io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0) execveat(0xffffffffffffffff, &(0x7f00000002c0)='./file0\x00', 0x0, 0x0, 0x2a) 12:28:25 executing program 2: r0 = syz_init_net_socket$802154_dgram(0x24, 0x2, 0x0) r1 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f00000001c0)='./cgroup/syz0\x00', 0x200002, 0x0) r2 = dup(r1) openat$cgroup_devices(r1, &(0x7f0000000200)='devices.deny\x00', 0x2, 0x0) sendmsg$BATADV_CMD_GET_BLA_BACKBONE(r2, &(0x7f0000000540)={&(0x7f0000000100), 0xc, &(0x7f0000000500)={0x0}}, 0x0) accept4(r0, &(0x7f0000000240)=@un=@abs, &(0x7f0000000000)=0x80, 0x0) r3 = socket$inet6_icmp(0xa, 0x2, 0x3a) r4 = accept$inet6(r3, &(0x7f00000002c0)={0xa, 0x0, 0x0, @remote}, &(0x7f0000000300)=0x1c) openat$null(0xffffffffffffff9c, &(0x7f0000000340), 0x511d80, 0x0) r5 = socket$inet6_udp(0xa, 0x2, 0x0) r6 = syz_init_net_socket$802154_dgram(0x24, 0x2, 0x0) r7 = dup(r6) fcntl$notify(0xffffffffffffffff, 0x402, 0x0) ioctl$sock_SIOCINQ(r7, 0x541b, &(0x7f0000000000)) bind$packet(r7, &(0x7f00000003c0)={0x11, 0x8, 0x0, 0x1, 0xed, 0x6, @local}, 0x14) r8 = syz_genetlink_get_family_id$batadv(&(0x7f0000000800), 0xffffffffffffffff) sendmsg$BATADV_CMD_GET_ORIGINATORS(0xffffffffffffffff, &(0x7f0000000580)={&(0x7f0000000400)={0x10, 0x0, 0x0, 0x8}, 0xc, &(0x7f00000004c0)={&(0x7f00000005c0)=ANY=[@ANYBLOB="6016bcfa18001f46a89d7aa30000a4b5addd38ac5e376fa7160fc15eed0db2e9beeadce2521d5708422b3d26422f877c35e56b1d815078cf1e10ae52a9e391a35763bd453240598a012835b0906c9e8a41c8119a43d2ab4fddb5454faeb5cee1c92d396d97e46ce38aaea2fac7ee8c6601eea54ac890de01028753a3af22f6941f99b9cda25d81f1912a5f519ef1c1fff19ecd11c908166a63adc99022a706307ceff28e69f0f64994b0372d805c06809d35856406f0a7", @ANYRES16=r8, @ANYBLOB="000326bd7000fbdbdf25080000000a000900ffffffffffff0000080031000400000005003000000000000a00090073117e2d17be000005002a000000000005002900000000000a000900aaaaaaaaaabb000008000b003f000000"], 0x60}, 0x1, 0x0, 0x0, 0x8000}, 0x40000) setsockopt$inet6_MRT6_ADD_MFC_PROXY(r5, 0x29, 0xd2, 0x0, 0x0) ioctl$sock_SIOCINQ(r4, 0x541b, &(0x7f0000000380)) sendmsg$TIPC_CMD_SET_LINK_TOL(r2, &(0x7f0000000180)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x400000}, 0xc, &(0x7f0000000140)={&(0x7f0000000700)=ANY=[@ANYBLOB="6800000026e299196aafc962071d63450f2bf1857c6ae92f7c7db89517070c285df164c5cb1bd313147d8245cef29b1a0f917d1cdf4957d87e8c588879edf0379b97bda74aeca3", @ANYRES16=0x0, @ANYBLOB="00012abd7000fcdbdf25010000000000000007410000004c00180000000965746800"/98], 0x1e}, 0x1, 0x0, 0x0, 0x4001}, 0x4040410) [ 1635.435942] EXT4-fs error (device loop4): ext4_fill_super:4954: inode #2: comm syz-executor.4: iget: root inode unallocated [ 1635.437567] EXT4-fs (loop4): get root inode failed [ 1635.437703] FAULT_INJECTION: forcing a failure. [ 1635.437703] name failslab, interval 1, probability 0, space 0, times 0 [ 1635.438162] EXT4-fs (loop4): mount failed [ 1635.439550] CPU: 0 PID: 12189 Comm: syz-executor.1 Not tainted 5.10.60 #1 [ 1635.440778] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS rel-1.14.0-0-g155821a1990b-prebuilt.qemu.org 04/01/2014 [ 1635.442113] Call Trace: [ 1635.442437] dump_stack+0x107/0x163 [ 1635.442870] should_fail.cold+0x5/0xa [ 1635.443324] ? vm_area_alloc+0x1c/0x110 [ 1635.443798] should_failslab+0x5/0x10 [ 1635.444234] kmem_cache_alloc+0x5b/0x350 [ 1635.444708] vm_area_alloc+0x1c/0x110 [ 1635.445174] alloc_bprm+0x306/0x890 [ 1635.445603] ? strncpy_from_user+0xa5/0x420 [ 1635.446124] do_execveat_common.isra.0+0x217/0x670 [ 1635.446720] __x64_sys_execveat+0xe7/0x130 [ 1635.447224] do_syscall_64+0x33/0x40 [ 1635.447658] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 1635.448265] RIP: 0033:0x466609 [ 1635.448642] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1635.450782] RSP: 002b:00007f443d736188 EFLAGS: 00000246 ORIG_RAX: 0000000000000142 [ 1635.451677] RAX: ffffffffffffffda RBX: 000000000056bf80 RCX: 0000000000466609 [ 1635.452512] RDX: 0000000020000380 RSI: 00000000200002c0 RDI: ffffffffffffffff [ 1635.453353] RBP: 00007f443d7361d0 R08: 0000000000000000 R09: 0000000000000000 [ 1635.454187] R10: 0000000020000640 R11: 0000000000000246 R12: 0000000000000002 [ 1635.455030] R13: 00007ffeb6924e7f R14: 00007f443d736300 R15: 0000000000022000 [ 1635.458468] FAULT_INJECTION: forcing a failure. [ 1635.458468] name fail_page_alloc, interval 1, probability 0, space 0, times 0 [ 1635.460280] CPU: 1 PID: 12196 Comm: syz-executor.3 Not tainted 5.10.60 #1 [ 1635.461346] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS rel-1.14.0-0-g155821a1990b-prebuilt.qemu.org 04/01/2014 [ 1635.462973] Call Trace: [ 1635.463362] dump_stack+0x107/0x163 [ 1635.463884] should_fail.cold+0x5/0xa [ 1635.464471] __alloc_pages_nodemask+0x17f/0x670 [ 1635.465134] ? __alloc_pages_slowpath.constprop.0+0x2090/0x2090 [ 1635.466016] ? trace_hardirqs_on+0x5b/0x180 [ 1635.466634] ? kmem_cache_free+0x99/0x2f0 [ 1635.467099] alloc_pages_current+0x187/0x280 [ 1635.467571] __get_free_pages+0xc/0xa0 [ 1635.467994] tlb_remove_table+0x3ca/0xcb0 [ 1635.468456] ___pte_free_tlb+0x86/0xb0 [ 1635.468873] free_pgd_range+0x736/0x1390 [ 1635.469332] free_pgtables+0x22a/0x2f0 [ 1635.469757] exit_mmap+0x28e/0x4e0 [ 1635.470164] ? do_munmap+0x40/0x40 [ 1635.470503] EXT4-fs (loop7): mounted filesystem without journal. Opts: ,errors=continue [ 1635.470572] mmput+0xca/0x340 [ 1635.471994] free_bprm+0x65/0x2e0 [ 1635.472565] do_execveat_common.isra.0+0x534/0x670 [ 1635.473501] __x64_sys_execveat+0xe7/0x130 [ 1635.474151] do_syscall_64+0x33/0x40 [ 1635.474792] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 1635.475424] RIP: 0033:0x466609 [ 1635.475814] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1635.478298] RSP: 002b:00007f7f315af188 EFLAGS: 00000246 ORIG_RAX: 0000000000000142 [ 1635.479273] RAX: ffffffffffffffda RBX: 000000000056bf80 RCX: 0000000000466609 [ 1635.480330] RDX: 0000000000000000 RSI: 00000000200002c0 RDI: ffffffffffffffff [ 1635.481039] EXT4-fs (loop6): mounted filesystem without journal. Opts: ,errors=continue [ 1635.481253] RBP: 00007f7f315af1d0 R08: 0000000000000000 R09: 0000000000000000 [ 1635.481265] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 1635.483818] R13: 00007ffe8cd6fa4f R14: 00007f7f315af300 R15: 0000000000022000 [ 1635.501487] FAULT_INJECTION: forcing a failure. [ 1635.501487] name failslab, interval 1, probability 0, space 0, times 0 [ 1635.502943] CPU: 0 PID: 12188 Comm: syz-executor.7 Not tainted 5.10.60 #1 [ 1635.503728] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS rel-1.14.0-0-g155821a1990b-prebuilt.qemu.org 04/01/2014 [ 1635.505051] Call Trace: [ 1635.505377] dump_stack+0x107/0x163 [ 1635.505811] should_fail.cold+0x5/0xa [ 1635.506262] ? create_object.isra.0+0x3a/0xa10 [ 1635.506796] should_failslab+0x5/0x10 [ 1635.507230] kmem_cache_alloc+0x5b/0x350 [ 1635.507667] ? lockdep_hardirqs_on_prepare+0x273/0x3e0 [ 1635.508236] create_object.isra.0+0x3a/0xa10 [ 1635.508719] ? __kasan_kmalloc.constprop.0+0xc2/0xd0 [ 1635.509271] kmem_cache_alloc+0x15b/0x350 [ 1635.509728] getname_flags.part.0+0x50/0x4e0 [ 1635.510251] user_path_at_empty+0xa1/0x100 [ 1635.510725] __x64_sys_mount+0x1e9/0x300 [ 1635.511248] ? path_mount+0x2080/0x2080 [ 1635.511816] ? lockdep_hardirqs_on_prepare+0x273/0x3e0 [ 1635.512392] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1635.513136] do_syscall_64+0x33/0x40 [ 1635.513643] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 1635.514240] RIP: 0033:0x467b2a [ 1635.514614] Code: 48 c7 c2 bc ff ff ff f7 d8 64 89 02 b8 ff ff ff ff eb d2 e8 b8 04 00 00 0f 1f 84 00 00 00 00 00 49 89 ca b8 a5 00 00 00 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1635.516698] RSP: 002b:00007f2f6c56efa8 EFLAGS: 00000202 ORIG_RAX: 00000000000000a5 [ 1635.517523] RAX: ffffffffffffffda RBX: 0000000000000000 RCX: 0000000000467b2a [ 1635.518374] RDX: 0000000020000000 RSI: 0000000020000040 RDI: 0000000000000000 [ 1635.519193] RBP: 00007f2f6c56f040 R08: 00007f2f6c56f040 R09: 0000000020000000 [ 1635.520000] R10: 000000000104e034 R11: 0000000000000202 R12: 0000000020000000 [ 1635.520807] R13: 0000000020000040 R14: 00007f2f6c56f000 R15: 00000000200001c0 12:28:25 executing program 4: syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000040)='./file0\x00', 0x40000, 0x3, &(0x7f0000000200)=[{&(0x7f0000010000)="2000000080000000060000006a0000000f000000000000000100000001000000004000000040000020000000e0f4655fe0f4655f0100ffff53ef010001000000dff4655f000000000000000001000000000000000b00000000010000280200000284", 0x62, 0x400}, {&(0x7f0000010400)="020000000300000004000000", 0xc, 0x800}, {&(0x7f0000011600), 0x0, 0x2100}], 0x0, &(0x7f0000000080)=ANY=[]) syz_mount_image$ext4(&(0x7f0000000000)='ext2\x00', &(0x7f0000000040)='./file0/../file0\x00', 0x0, 0x0, 0x0, 0x104e034, &(0x7f00000001c0)={[{@data_err_abort}]}) 12:28:25 executing program 5: r0 = syz_io_uring_setup(0x4d4f, &(0x7f0000000080), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=0x0, &(0x7f0000000140)=0x0) syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_POLL_ADD={0x6, 0x0, 0x0, @fd=r0, 0x0, 0x0, 0x0, {0x194}}, 0x0) r3 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0) perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_io_uring_submit(r3, r2, &(0x7f0000000100)=@IORING_OP_SPLICE, 0x4) io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0) execveat(0xffffffffffffffff, &(0x7f00000002c0)='./file0\x00', 0x0, 0x0, 0x30) [ 1635.563610] EXT4-fs (loop6): re-mounted. Opts: data_err=abort,,errors=continue 12:28:25 executing program 0: r0 = syz_io_uring_setup(0x4d4f, &(0x7f0000000080), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=0x0, &(0x7f0000000140)=0x0) syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_POLL_ADD={0x6, 0x0, 0x0, @fd=r0, 0x0, 0x0, 0x0, {0x194}}, 0x0) r3 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0) perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_io_uring_submit(r3, r2, &(0x7f0000000100)=@IORING_OP_SPLICE, 0x4) io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0) execveat(0xffffffffffffffff, &(0x7f00000002c0)='./file0\x00', &(0x7f0000000380), 0x0, 0xc00) 12:28:25 executing program 2: r0 = syz_init_net_socket$802154_dgram(0x24, 0x2, 0x0) r1 = dup(r0) r2 = openat$vcsu(0xffffffffffffff9c, &(0x7f0000000040), 0x103400, 0x0) sendmsg$802154_dgram(r2, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000140)="4e6d91eec69c5f7065d5666bf83d26afbe6da26f449e54c89be6e6f9ff00dd5f77aa23db7a0ab3b6a71b88580f623bc86343eab80226e8e32183755607056ef52a6cf350f0d0496cd23ab89da5f0880fa4223138a35210a8baf98f982f750f30bde73f4b418df2807e83dab765ee6bddb361b1e49a6d3313b187c1df57e23728f514f45308a6e9fa07fdb4288092c038eaa06d0f5054f1498e3edeeddd41c48d5d20756e0113e5b2104015a638b59caaeab5f3e7ede0007ff998cf3b89918f2dad295fae969707f2d899795b81815ee4be8b412c3a1c65411a3a06dfe920e33703bf39", 0xe3}, 0x1, 0x0, 0x0, 0x40801}, 0x4000010) r3 = openat$tun(0xffffffffffffff9c, &(0x7f0000000040), 0x0, 0x0) ioctl$TUNSETQUEUE(r3, 0x400454ca, &(0x7f00000000c0)={'ipvlan1\x00'}) fcntl$F_GET_RW_HINT(r3, 0x40b, &(0x7f0000000240)) ioctl$TUNDETACHFILTER(r2, 0x401054d6, 0x0) sendmsg$BATADV_CMD_GET_BLA_BACKBONE(r2, &(0x7f0000000540)={&(0x7f0000000100), 0xc, &(0x7f0000000500)={0x0}, 0x1, 0x0, 0x0, 0x8041}, 0x4004) ioctl$sock_SIOCINQ(r1, 0x541b, &(0x7f0000000000)) [ 1635.617323] EXT4-fs (loop7): re-mounted. Opts: ,errors=continue 12:28:25 executing program 6: syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000040)='./file0\x00', 0x40000, 0x3, &(0x7f0000000200)=[{&(0x7f0000010000)="2000000080000000060000006a0000000f000000000000000100000001000000004000000040000020000000e0f4655fe0f4655f0100ffff53ef010001000000dff4655f000000000000000001000000000000000b00000000", 0x59, 0x400}, {&(0x7f0000010400)="020000000300000004", 0x9, 0x800}, {&(0x7f0000011600)="ed41000000080000dff4655fe0f4655fe0f4655f000000000000040004", 0x1d, 0x2100}], 0x0, &(0x7f0000000080)=ANY=[]) syz_mount_image$ext4(&(0x7f0000000000)='ext2\x00', &(0x7f0000000040)='./file0/../file0\x00', 0x0, 0x0, 0x0, 0x104e034, &(0x7f00000001c0)={[{@data_err_abort}]}) 12:28:25 executing program 3 (fault-call:5 fault-nth:41): r0 = syz_io_uring_setup(0x4d4f, &(0x7f0000000080), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200), &(0x7f0000000140)=0x0) r2 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0) perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_io_uring_submit(r2, r1, &(0x7f0000000100)=@IORING_OP_SPLICE, 0x4) io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0) execveat(0xffffffffffffffff, &(0x7f00000002c0)='./file0\x00', 0x0, 0x0, 0x0) 12:28:25 executing program 1 (fault-call:6 fault-nth:11): r0 = syz_io_uring_setup(0x4d4f, &(0x7f0000000080), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=0x0, &(0x7f0000000140)=0x0) syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_POLL_ADD={0x6, 0x0, 0x0, @fd=r0, 0x0, 0x0, 0x0, {0x194}}, 0x0) r3 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0) perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_io_uring_submit(r3, r2, &(0x7f0000000100)=@IORING_OP_SPLICE, 0x4) io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0) execveat(0xffffffffffffffff, &(0x7f00000002c0)='./file0\x00', &(0x7f0000000380), &(0x7f0000000640)=[0x0, 0x0, 0x0], 0x0) [ 1635.678109] EXT4-fs error (device loop4): ext4_fill_super:4954: inode #2: comm syz-executor.4: iget: root inode unallocated 12:28:25 executing program 7 (fault-call:1 fault-nth:11): syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000040)='./file0\x00', 0x40000, 0x3, &(0x7f0000000200)=[{&(0x7f0000010000)="2000000080000000060000006a0000000f000000000000000100000001000000004000000040000020000000e0f4655fe0f4655f0100ffff53ef010001000000dff4655f000000000000000001000000000000000b0000000001", 0x5a, 0x400}, {&(0x7f0000010400)="020000000300000004", 0x9, 0x800}, {&(0x7f0000011600)="ed41000000080000dff4655fe0f4655fe0f4655f000000000000040004", 0x1d, 0x2100}], 0x0, &(0x7f0000000080)=ANY=[]) syz_mount_image$ext4(&(0x7f0000000000)='ext2\x00', &(0x7f0000000040)='./file0/../file0\x00', 0x0, 0x0, 0x0, 0x104e034, &(0x7f00000001c0)) [ 1635.681451] EXT4-fs (loop4): get root inode failed [ 1635.682181] EXT4-fs (loop4): mount failed 12:28:25 executing program 5: r0 = syz_io_uring_setup(0x4d4f, &(0x7f0000000080), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=0x0, &(0x7f0000000140)=0x0) syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_POLL_ADD={0x6, 0x0, 0x0, @fd=r0, 0x0, 0x0, 0x0, {0x194}}, 0x0) r3 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0) perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_io_uring_submit(r3, r2, &(0x7f0000000100)=@IORING_OP_SPLICE, 0x4) io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0) execveat(0xffffffffffffffff, &(0x7f00000002c0)='./file0\x00', 0x0, 0x0, 0x36) [ 1635.760044] FAULT_INJECTION: forcing a failure. [ 1635.760044] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 1635.761660] CPU: 1 PID: 12248 Comm: syz-executor.3 Not tainted 5.10.60 #1 [ 1635.762572] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS rel-1.14.0-0-g155821a1990b-prebuilt.qemu.org 04/01/2014 [ 1635.763955] Call Trace: [ 1635.764265] dump_stack+0x107/0x163 [ 1635.764677] should_fail.cold+0x5/0xa [ 1635.765111] _copy_to_user+0x2e/0x180 [ 1635.765548] simple_read_from_buffer+0xcc/0x160 [ 1635.766136] proc_fail_nth_read+0x194/0x220 [ 1635.766754] ? proc_exe_link+0x1d0/0x1d0 [ 1635.767270] ? security_file_permission+0x178/0x550 [ 1635.767997] ? proc_exe_link+0x1d0/0x1d0 [ 1635.768589] vfs_read+0x226/0x580 [ 1635.769017] ksys_read+0x12d/0x250 [ 1635.769423] ? __ia32_sys_pwrite64+0x230/0x230 [ 1635.769919] ? lockdep_hardirqs_on_prepare+0x273/0x3e0 [ 1635.770545] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1635.771138] do_syscall_64+0x33/0x40 [ 1635.771567] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 1635.772168] RIP: 0033:0x41935c [ 1635.772566] Code: ec 28 48 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 f9 fc ff ff 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 31 c0 0f 05 <48> 3d 00 f0 ff ff 77 34 44 89 c7 48 89 44 24 08 e8 2f fd ff ff 48 [ 1635.774674] RSP: 002b:00007f7f315af170 EFLAGS: 00000246 ORIG_RAX: 0000000000000000 [ 1635.775532] RAX: ffffffffffffffda RBX: ffffffffffffffff RCX: 000000000041935c [ 1635.776339] RDX: 000000000000000f RSI: 00007f7f315af1e0 RDI: 0000000000000005 [ 1635.777158] RBP: 00007f7f315af1d0 R08: 0000000000000000 R09: 0000000000000000 [ 1635.777951] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 1635.778768] R13: 00007ffe8cd6fa4f R14: 00007f7f315af300 R15: 0000000000022000 [ 1635.804515] FAULT_INJECTION: forcing a failure. [ 1635.804515] name failslab, interval 1, probability 0, space 0, times 0 [ 1635.805840] CPU: 1 PID: 12252 Comm: syz-executor.1 Not tainted 5.10.60 #1 [ 1635.806615] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS rel-1.14.0-0-g155821a1990b-prebuilt.qemu.org 04/01/2014 [ 1635.807905] Call Trace: [ 1635.808218] dump_stack+0x107/0x163 [ 1635.808641] should_fail.cold+0x5/0xa [ 1635.809080] ? create_object.isra.0+0x3a/0xa10 [ 1635.809605] should_failslab+0x5/0x10 [ 1635.810044] kmem_cache_alloc+0x5b/0x350 [ 1635.810539] create_object.isra.0+0x3a/0xa10 [ 1635.811038] ? __kasan_kmalloc.constprop.0+0xc2/0xd0 [ 1635.811600] kmem_cache_alloc+0x15b/0x350 [ 1635.812075] vm_area_alloc+0x1c/0x110 [ 1635.812494] alloc_bprm+0x306/0x890 [ 1635.812903] ? strncpy_from_user+0xa5/0x420 [ 1635.813370] do_execveat_common.isra.0+0x217/0x670 [ 1635.813926] __x64_sys_execveat+0xe7/0x130 [ 1635.814401] do_syscall_64+0x33/0x40 [ 1635.814822] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 1635.815383] RIP: 0033:0x466609 [ 1635.815748] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1635.817729] RSP: 002b:00007f443d736188 EFLAGS: 00000246 ORIG_RAX: 0000000000000142 [ 1635.818628] RAX: ffffffffffffffda RBX: 000000000056bf80 RCX: 0000000000466609 [ 1635.819432] RDX: 0000000020000380 RSI: 00000000200002c0 RDI: ffffffffffffffff [ 1635.820230] RBP: 00007f443d7361d0 R08: 0000000000000000 R09: 0000000000000000 [ 1635.821026] R10: 0000000020000640 R11: 0000000000000246 R12: 0000000000000002 [ 1635.821835] R13: 00007ffeb6924e7f R14: 00007f443d736300 R15: 0000000000022000 [ 1635.835338] EXT4-fs (loop6): unsupported inode size: 0 [ 1635.836338] EXT4-fs (loop6): blocksize: 2048 [ 1635.902664] EXT4-fs (loop7): mounted filesystem without journal. Opts: ,errors=continue [ 1635.906311] FAULT_INJECTION: forcing a failure. [ 1635.906311] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 1635.907896] CPU: 0 PID: 12263 Comm: syz-executor.7 Not tainted 5.10.60 #1 [ 1635.908730] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS rel-1.14.0-0-g155821a1990b-prebuilt.qemu.org 04/01/2014 [ 1635.909986] Call Trace: [ 1635.910309] dump_stack+0x107/0x163 [ 1635.910750] should_fail.cold+0x5/0xa [ 1635.911201] strncpy_from_user+0x34/0x420 [ 1635.911675] getname_flags.part.0+0x95/0x4e0 [ 1635.912187] user_path_at_empty+0xa1/0x100 [ 1635.912670] __x64_sys_mount+0x1e9/0x300 [ 1635.913132] ? path_mount+0x2080/0x2080 [ 1635.913596] ? lockdep_hardirqs_on_prepare+0x273/0x3e0 [ 1635.914187] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1635.914802] do_syscall_64+0x33/0x40 [ 1635.915222] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 1635.915808] RIP: 0033:0x467b2a [ 1635.916175] Code: 48 c7 c2 bc ff ff ff f7 d8 64 89 02 b8 ff ff ff ff eb d2 e8 b8 04 00 00 0f 1f 84 00 00 00 00 00 49 89 ca b8 a5 00 00 00 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1635.918225] RSP: 002b:00007f2f6c56efa8 EFLAGS: 00000202 ORIG_RAX: 00000000000000a5 [ 1635.919081] RAX: ffffffffffffffda RBX: 0000000000000000 RCX: 0000000000467b2a [ 1635.919872] RDX: 0000000020000000 RSI: 0000000020000040 RDI: 0000000000000000 [ 1635.920647] RBP: 00007f2f6c56f040 R08: 00007f2f6c56f040 R09: 0000000020000000 [ 1635.921422] R10: 000000000104e034 R11: 0000000000000202 R12: 0000000020000000 [ 1635.922201] R13: 0000000020000040 R14: 00007f2f6c56f000 R15: 00000000200001c0 12:28:39 executing program 4: syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000040)='./file0\x00', 0x40000, 0x3, &(0x7f0000000200)=[{&(0x7f0000010000)="2000000080000000060000006a0000000f000000000000000100000001000000004000000040000020000000e0f4655fe0f4655f0100ffff53ef010001000000dff4655f000000000000000001000000000000000b00000000010000280200000284", 0x62, 0x400}, {&(0x7f0000010400)="020000000300000004000000", 0xc, 0x800}, {&(0x7f0000011600), 0x0, 0x2100}], 0x0, &(0x7f0000000080)=ANY=[]) syz_mount_image$ext4(&(0x7f0000000000)='ext2\x00', &(0x7f0000000040)='./file0/../file0\x00', 0x0, 0x0, 0x0, 0x104e034, &(0x7f00000001c0)={[{@data_err_abort}]}) 12:28:39 executing program 7 (fault-call:1 fault-nth:12): syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000040)='./file0\x00', 0x40000, 0x3, &(0x7f0000000200)=[{&(0x7f0000010000)="2000000080000000060000006a0000000f000000000000000100000001000000004000000040000020000000e0f4655fe0f4655f0100ffff53ef010001000000dff4655f000000000000000001000000000000000b0000000001", 0x5a, 0x400}, {&(0x7f0000010400)="020000000300000004", 0x9, 0x800}, {&(0x7f0000011600)="ed41000000080000dff4655fe0f4655fe0f4655f000000000000040004", 0x1d, 0x2100}], 0x0, &(0x7f0000000080)=ANY=[]) syz_mount_image$ext4(&(0x7f0000000000)='ext2\x00', &(0x7f0000000040)='./file0/../file0\x00', 0x0, 0x0, 0x0, 0x104e034, &(0x7f00000001c0)) 12:28:39 executing program 5: r0 = syz_io_uring_setup(0x4d4f, &(0x7f0000000080), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=0x0, &(0x7f0000000140)=0x0) syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_POLL_ADD={0x6, 0x0, 0x0, @fd=r0, 0x0, 0x0, 0x0, {0x194}}, 0x0) r3 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0) perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_io_uring_submit(r3, r2, &(0x7f0000000100)=@IORING_OP_SPLICE, 0x4) io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0) execveat(0xffffffffffffffff, &(0x7f00000002c0)='./file0\x00', 0x0, 0x0, 0x3c) 12:28:39 executing program 3: r0 = syz_io_uring_setup(0x4d4f, &(0x7f0000000080), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200), &(0x7f0000000140)=0x0) r2 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0) perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_io_uring_submit(r2, r1, &(0x7f0000000100)=@IORING_OP_SPLICE, 0x4) io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0) execveat(0xffffffffffffffff, &(0x7f00000002c0)='./file0\x00', 0x0, 0x0, 0x0) 12:28:39 executing program 2: r0 = socket$nl_sock_diag(0x10, 0x3, 0x4) ioctl$BTRFS_IOC_SYNC(r0, 0x9408, 0x0) r1 = syz_init_net_socket$802154_dgram(0x24, 0x2, 0x0) r2 = dup(r1) sendmsg$BATADV_CMD_GET_BLA_BACKBONE(r2, &(0x7f0000000540)={&(0x7f0000000100), 0xc, &(0x7f0000000500)={0x0}}, 0x0) r3 = openat$null(0xffffffffffffff9c, &(0x7f0000000180), 0x200200, 0x0) sendmsg$nl_generic(r3, &(0x7f00000002c0)={&(0x7f00000001c0)={0x10, 0x0, 0x0, 0x100000}, 0xc, &(0x7f0000000280)={&(0x7f0000000200)={0x34, 0x20, 0x2, 0x70bd25, 0x25dfdbfd, {0x3}, [@typed={0x14, 0x7, 0x0, 0x0, @ipv6=@loopback}, @typed={0xc, 0x67, 0x0, 0x0, @u64=0xffffffffffffff00}]}, 0x34}, 0x1, 0x0, 0x0, 0x20000005}, 0x4080) ioctl$sock_SIOCINQ(r2, 0x541b, &(0x7f0000000000)) r4 = socket$netlink(0x10, 0x3, 0x0) sendmsg$nl_generic(r4, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000240)={&(0x7f0000000080)=ANY=[@ANYBLOB="280000002c00010d000000000000e4ffffffffffffffffff"], 0x28}}, 0x0) sendmsg$NL80211_CMD_GET_WOWLAN(r4, &(0x7f0000000140)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x2}, 0xc, &(0x7f00000000c0)={&(0x7f0000000080)={0x14, 0x0, 0x200, 0x70bd26, 0x25dfdbff, {{}, {@void, @void, @void}}, ["", "", "", "", "", ""]}, 0x14}, 0x1, 0x0, 0x0, 0x20000004}, 0x80) 12:28:39 executing program 0: r0 = syz_io_uring_setup(0x4d4f, &(0x7f0000000080), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=0x0, &(0x7f0000000140)=0x0) syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_POLL_ADD={0x6, 0x0, 0x0, @fd=r0, 0x0, 0x0, 0x0, {0x194}}, 0x0) r3 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0) perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_io_uring_submit(r3, r2, &(0x7f0000000100)=@IORING_OP_SPLICE, 0x4) io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0) execveat(0xffffffffffffffff, &(0x7f00000002c0)='./file0\x00', &(0x7f0000000380), 0x0, 0xd00) 12:28:39 executing program 1 (fault-call:6 fault-nth:12): r0 = syz_io_uring_setup(0x4d4f, &(0x7f0000000080), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=0x0, &(0x7f0000000140)=0x0) syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_POLL_ADD={0x6, 0x0, 0x0, @fd=r0, 0x0, 0x0, 0x0, {0x194}}, 0x0) r3 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0) perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_io_uring_submit(r3, r2, &(0x7f0000000100)=@IORING_OP_SPLICE, 0x4) io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0) execveat(0xffffffffffffffff, &(0x7f00000002c0)='./file0\x00', &(0x7f0000000380), &(0x7f0000000640)=[0x0, 0x0, 0x0], 0x0) 12:28:39 executing program 6: syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000040)='./file0\x00', 0x40000, 0x3, &(0x7f0000000200)=[{&(0x7f0000010000)="2000000080000000060000006a0000000f000000000000000100000001000000004000000040000020000000e0f4655fe0f4655f0100ffff53ef010001000000dff4655f000000000000000001000000000000000b00000000", 0x59, 0x400}, {&(0x7f0000010400)="020000000300000004", 0x9, 0x800}, {&(0x7f0000011600)="ed41000000080000dff4655fe0f4655fe0f4655f000000000000040004", 0x1d, 0x2100}], 0x0, &(0x7f0000000080)=ANY=[]) syz_mount_image$ext4(&(0x7f0000000000)='ext2\x00', &(0x7f0000000040)='./file0/../file0\x00', 0x0, 0x0, 0x0, 0x104e034, &(0x7f00000001c0)={[{@data_err_abort}]}) [ 1649.186902] EXT4-fs error (device loop4): ext4_fill_super:4954: inode #2: comm syz-executor.4: iget: root inode unallocated [ 1649.190706] EXT4-fs (loop4): get root inode failed [ 1649.191641] EXT4-fs (loop4): mount failed [ 1649.199819] netlink: 4 bytes leftover after parsing attributes in process `syz-executor.2'. [ 1649.205952] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=0 sclass=netlink_route_socket pid=12298 comm=syz-executor.2 [ 1649.218824] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=0 sclass=netlink_route_socket pid=12298 comm=syz-executor.2 [ 1649.228121] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=0 sclass=netlink_route_socket pid=12309 comm=syz-executor.2 [ 1649.232143] EXT4-fs (loop6): unsupported inode size: 0 [ 1649.232745] EXT4-fs (loop6): blocksize: 2048 12:28:39 executing program 5: r0 = syz_io_uring_setup(0x4d4f, &(0x7f0000000080), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=0x0, &(0x7f0000000140)=0x0) syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_POLL_ADD={0x6, 0x0, 0x0, @fd=r0, 0x0, 0x0, 0x0, {0x194}}, 0x0) r3 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0) perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_io_uring_submit(r3, r2, &(0x7f0000000100)=@IORING_OP_SPLICE, 0x4) io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0) execveat(0xffffffffffffffff, &(0x7f00000002c0)='./file0\x00', 0x0, 0x0, 0x48) 12:28:39 executing program 4: syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000040)='./file0\x00', 0x40000, 0x3, &(0x7f0000000200)=[{&(0x7f0000010000)="2000000080000000060000006a0000000f000000000000000100000001000000004000000040000020000000e0f4655fe0f4655f0100ffff53ef010001000000dff4655f000000000000000001000000000000000b00000000010000280200000284", 0x62, 0x400}, {&(0x7f0000010400)="020000000300000004000000", 0xc, 0x800}, {&(0x7f0000011600), 0x0, 0x2100}], 0x0, &(0x7f0000000080)=ANY=[]) syz_mount_image$ext4(&(0x7f0000000000)='ext2\x00', &(0x7f0000000040)='./file0/../file0\x00', 0x0, 0x0, 0x0, 0x104e034, &(0x7f00000001c0)={[{@data_err_abort}]}) [ 1649.257244] FAULT_INJECTION: forcing a failure. [ 1649.257244] name fail_page_alloc, interval 1, probability 0, space 0, times 0 [ 1649.259024] CPU: 1 PID: 12300 Comm: syz-executor.1 Not tainted 5.10.60 #1 [ 1649.260050] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS rel-1.14.0-0-g155821a1990b-prebuilt.qemu.org 04/01/2014 [ 1649.261684] Call Trace: [ 1649.262094] dump_stack+0x107/0x163 [ 1649.262646] should_fail.cold+0x5/0xa [ 1649.263236] __alloc_pages_nodemask+0x17f/0x670 [ 1649.263934] ? __lockdep_reset_lock+0x180/0x180 [ 1649.264615] ? __alloc_pages_slowpath.constprop.0+0x2090/0x2090 [ 1649.265552] ? fault_dirty_shared_page+0x3e0/0x3e0 [ 1649.266288] ? count_memcg_event_mm.part.0+0x110/0x2a0 [ 1649.267145] alloc_pages_current+0x187/0x280 [ 1649.267798] get_zeroed_page+0x14/0xa0 [ 1649.268407] __pud_alloc+0x33/0x270 [ 1649.268952] handle_mm_fault+0x19df/0x3570 [ 1649.269603] ? __pmd_alloc+0x5e0/0x5e0 [ 1649.270216] __get_user_pages+0x61d/0x1400 [ 1649.270884] ? follow_page_mask+0x1820/0x1820 [ 1649.271557] ? hlock_class+0x120/0x120 [ 1649.272158] __get_user_pages_remote+0x1d1/0x860 [ 1649.272887] ? find_held_lock+0x2c/0x110 [ 1649.273493] get_user_pages_remote+0x63/0x90 [ 1649.274174] get_arg_page+0xba/0x200 [ 1649.274867] ? acct_arg_size+0xe0/0xe0 [ 1649.275457] copy_string_kernel+0x1b0/0x440 [ 1649.276105] do_execveat_common.isra.0+0x405/0x670 [ 1649.276806] __x64_sys_execveat+0xe7/0x130 [ 1649.277429] do_syscall_64+0x33/0x40 [ 1649.277971] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 1649.278704] RIP: 0033:0x466609 [ 1649.279164] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1649.281807] RSP: 002b:00007f443d736188 EFLAGS: 00000246 ORIG_RAX: 0000000000000142 [ 1649.282905] RAX: ffffffffffffffda RBX: 000000000056bf80 RCX: 0000000000466609 [ 1649.283925] RDX: 0000000020000380 RSI: 00000000200002c0 RDI: ffffffffffffffff [ 1649.284945] RBP: 00007f443d7361d0 R08: 0000000000000000 R09: 0000000000000000 [ 1649.285964] R10: 0000000020000640 R11: 0000000000000246 R12: 0000000000000002 [ 1649.286983] R13: 00007ffeb6924e7f R14: 00007f443d736300 R15: 0000000000022000 [ 1649.295760] FAULT_INJECTION: forcing a failure. [ 1649.295760] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 1649.297163] CPU: 0 PID: 12318 Comm: syz-executor.7 Not tainted 5.10.60 #1 [ 1649.297959] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS rel-1.14.0-0-g155821a1990b-prebuilt.qemu.org 04/01/2014 [ 1649.299290] Call Trace: [ 1649.299603] dump_stack+0x107/0x163 [ 1649.300012] should_fail.cold+0x5/0xa [ 1649.300463] _copy_to_user+0x2e/0x180 12:28:39 executing program 2: r0 = syz_init_net_socket$802154_dgram(0x24, 0x2, 0x0) r1 = dup(r0) sendmsg$BATADV_CMD_GET_BLA_BACKBONE(r1, &(0x7f0000000540)={&(0x7f0000000100), 0xc, &(0x7f0000000500)={0x0}}, 0x0) ioctl$sock_SIOCINQ(r1, 0x541b, &(0x7f0000000000)) r2 = syz_init_net_socket$802154_dgram(0x24, 0x2, 0x0) r3 = dup(r2) r4 = dup(r3) sendmsg$TIPC_CMD_GET_BEARER_NAMES(r4, &(0x7f0000000180)={&(0x7f0000000080)={0x10, 0x0, 0x0, 0x80000000}, 0xc, &(0x7f0000000140)={&(0x7f00000000c0)={0x1c, 0x0, 0x400, 0x70bd29, 0x25dfdbff, {}, ["", "", "", "", ""]}, 0x1c}, 0x1, 0x0, 0x0, 0x8040}, 0x80800) bind$802154_dgram(r2, &(0x7f0000000040)={0x24, @long}, 0x14) [ 1649.300896] simple_read_from_buffer+0xcc/0x160 [ 1649.301555] proc_fail_nth_read+0x194/0x220 [ 1649.302061] ? proc_exe_link+0x1d0/0x1d0 [ 1649.302535] ? security_file_permission+0x178/0x550 [ 1649.303124] ? proc_exe_link+0x1d0/0x1d0 [ 1649.303592] vfs_read+0x226/0x580 [ 1649.304012] ksys_read+0x12d/0x250 [ 1649.304423] ? __ia32_sys_pwrite64+0x230/0x230 [ 1649.304956] ? lockdep_hardirqs_on_prepare+0x273/0x3e0 [ 1649.305564] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1649.306154] do_syscall_64+0x33/0x40 [ 1649.306581] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 1649.307125] RIP: 0033:0x41935c [ 1649.307503] Code: ec 28 48 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 f9 fc ff ff 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 31 c0 0f 05 <48> 3d 00 f0 ff ff 77 34 44 89 c7 48 89 44 24 08 e8 2f fd ff ff 48 [ 1649.309472] RSP: 002b:00007f2f6c54e170 EFLAGS: 00000246 ORIG_RAX: 0000000000000000 [ 1649.310347] RAX: ffffffffffffffda RBX: ffffffffffffffff RCX: 000000000041935c [ 1649.311173] RDX: 000000000000000f RSI: 00007f2f6c54e1e0 RDI: 0000000000000005 [ 1649.312236] RBP: 00007f2f6c54e1d0 R08: 0000000000000000 R09: 0000000020000000 [ 1649.313069] R10: 000000000104e034 R11: 0000000000000246 R12: 0000000000000002 [ 1649.313892] R13: 00007ffcf1a9245f R14: 00007f2f6c54e300 R15: 0000000000022000 [ 1649.323757] EXT4-fs (loop7): mounted filesystem without journal. Opts: ,errors=continue 12:28:39 executing program 3: r0 = syz_io_uring_setup(0x4d4f, &(0x7f0000000080), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200), &(0x7f0000000140)=0x0) r2 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0) perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_io_uring_submit(r2, r1, &(0x7f0000000100)=@IORING_OP_SPLICE, 0x4) io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0) execveat(0xffffffffffffffff, &(0x7f00000002c0)='./file0\x00', 0x0, 0x0, 0x2) 12:28:39 executing program 1 (fault-call:6 fault-nth:13): r0 = syz_io_uring_setup(0x4d4f, &(0x7f0000000080), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=0x0, &(0x7f0000000140)=0x0) syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_POLL_ADD={0x6, 0x0, 0x0, @fd=r0, 0x0, 0x0, 0x0, {0x194}}, 0x0) r3 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0) perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_io_uring_submit(r3, r2, &(0x7f0000000100)=@IORING_OP_SPLICE, 0x4) io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0) execveat(0xffffffffffffffff, &(0x7f00000002c0)='./file0\x00', &(0x7f0000000380), &(0x7f0000000640)=[0x0, 0x0, 0x0], 0x0) [ 1649.563899] FAULT_INJECTION: forcing a failure. [ 1649.563899] name fail_page_alloc, interval 1, probability 0, space 0, times 0 [ 1649.565542] CPU: 0 PID: 12334 Comm: syz-executor.1 Not tainted 5.10.60 #1 [ 1649.566390] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS rel-1.14.0-0-g155821a1990b-prebuilt.qemu.org 04/01/2014 [ 1649.567683] Call Trace: [ 1649.567980] dump_stack+0x107/0x163 [ 1649.568374] should_fail.cold+0x5/0xa [ 1649.568793] __alloc_pages_nodemask+0x17f/0x670 [ 1649.569304] ? __alloc_pages_slowpath.constprop.0+0x2090/0x2090 [ 1649.569964] ? lock_downgrade+0x6d0/0x6d0 [ 1649.570409] ? do_raw_spin_lock+0x129/0x270 [ 1649.570906] alloc_pages_current+0x187/0x280 [ 1649.571384] __pmd_alloc+0x3b/0x5e0 [ 1649.571786] handle_mm_fault+0x1a30/0x3570 [ 1649.572244] ? perf_trace_lock+0x2cd/0x470 [ 1649.572701] ? __pmd_alloc+0x5e0/0x5e0 [ 1649.573152] __get_user_pages+0x61d/0x1400 [ 1649.573623] ? follow_page_mask+0x1820/0x1820 [ 1649.574108] ? perf_trace_lock+0x2cd/0x470 [ 1649.574566] ? hlock_class+0x120/0x120 [ 1649.575003] __get_user_pages_remote+0x1d1/0x860 [ 1649.575542] ? find_held_lock+0x2c/0x110 [ 1649.576020] get_user_pages_remote+0x63/0x90 [ 1649.576502] get_arg_page+0xba/0x200 [ 1649.576934] ? acct_arg_size+0xe0/0xe0 [ 1649.577366] copy_string_kernel+0x1b0/0x440 [ 1649.577862] do_execveat_common.isra.0+0x405/0x670 [ 1649.578396] __x64_sys_execveat+0xe7/0x130 [ 1649.578891] do_syscall_64+0x33/0x40 [ 1649.579320] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 1649.579900] RIP: 0033:0x466609 [ 1649.580249] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1649.582341] RSP: 002b:00007f443d736188 EFLAGS: 00000246 ORIG_RAX: 0000000000000142 [ 1649.583161] RAX: ffffffffffffffda RBX: 000000000056bf80 RCX: 0000000000466609 [ 1649.583984] RDX: 0000000020000380 RSI: 00000000200002c0 RDI: ffffffffffffffff [ 1649.584803] RBP: 00007f443d7361d0 R08: 0000000000000000 R09: 0000000000000000 [ 1649.585629] R10: 0000000020000640 R11: 0000000000000246 R12: 0000000000000002 [ 1649.586455] R13: 00007ffeb6924e7f R14: 00007f443d736300 R15: 0000000000022000 [ 1649.611511] EXT4-fs error (device loop4): ext4_fill_super:4954: inode #2: comm syz-executor.4: iget: root inode unallocated [ 1649.613735] EXT4-fs (loop4): get root inode failed [ 1649.614406] EXT4-fs (loop4): mount failed 12:28:51 executing program 7: syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000040)='./file0\x00', 0x40000, 0x3, &(0x7f0000000200)=[{&(0x7f0000010000)="2000000080000000060000006a0000000f000000000000000100000001000000004000000040000020000000e0f4655fe0f4655f0100ffff53ef010001000000dff4655f000000000000000001000000000000000b0000000001", 0x5a, 0x400}, {&(0x7f0000010400)="020000000300000004", 0x9, 0x800}, {&(0x7f0000011600)="ed41000000080000dff4655fe0f4655fe0f4655f000000000000040004", 0x1d, 0x2100}], 0x0, &(0x7f0000000080)=ANY=[]) syz_mount_image$ext4(&(0x7f0000000000)='ext2\x00', &(0x7f0000000040)='./file0/../file0\x00', 0x0, 0x0, 0x0, 0x104e034, &(0x7f00000001c0)) 12:28:51 executing program 6: syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000040)='./file0\x00', 0x40000, 0x3, &(0x7f0000000200)=[{&(0x7f0000010000)="2000000080000000060000006a0000000f000000000000000100000001000000004000000040000020000000e0f4655fe0f4655f0100ffff53ef010001000000dff4655f000000000000000001000000000000000b00000000", 0x59, 0x400}, {&(0x7f0000010400)="020000000300000004", 0x9, 0x800}, {&(0x7f0000011600)="ed41000000080000dff4655fe0f4655fe0f4655f000000000000040004", 0x1d, 0x2100}], 0x0, &(0x7f0000000080)=ANY=[]) syz_mount_image$ext4(&(0x7f0000000000)='ext2\x00', &(0x7f0000000040)='./file0/../file0\x00', 0x0, 0x0, 0x0, 0x104e034, &(0x7f00000001c0)={[{@data_err_abort}]}) 12:28:51 executing program 3: r0 = syz_io_uring_setup(0x4d4f, &(0x7f0000000080), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200), &(0x7f0000000140)=0x0) r2 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0) perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_io_uring_submit(r2, r1, &(0x7f0000000100)=@IORING_OP_SPLICE, 0x4) io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0) execveat(0xffffffffffffffff, &(0x7f00000002c0)='./file0\x00', 0x0, 0x0, 0x3) 12:28:51 executing program 4: syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000040)='./file0\x00', 0x40000, 0x3, &(0x7f0000000200)=[{&(0x7f0000010000)="2000000080000000060000006a0000000f000000000000000100000001000000004000000040000020000000e0f4655fe0f4655f0100ffff53ef010001000000dff4655f000000000000000001000000000000000b00000000010000280200000284", 0x62, 0x400}, {&(0x7f0000010400)="020000000300000004000000", 0xc, 0x800}, {&(0x7f0000011600)="ed41000000080000dff4655fe0f465", 0xf, 0x2100}], 0x0, &(0x7f0000000080)=ANY=[]) syz_mount_image$ext4(&(0x7f0000000000)='ext2\x00', &(0x7f0000000040)='./file0/../file0\x00', 0x0, 0x0, 0x0, 0x104e034, &(0x7f00000001c0)={[{@data_err_abort}]}) 12:28:51 executing program 5: r0 = syz_io_uring_setup(0x4d4f, &(0x7f0000000080), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=0x0, &(0x7f0000000140)=0x0) syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_POLL_ADD={0x6, 0x0, 0x0, @fd=r0, 0x0, 0x0, 0x0, {0x194}}, 0x0) r3 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0) perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_io_uring_submit(r3, r2, &(0x7f0000000100)=@IORING_OP_SPLICE, 0x4) io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0) execveat(0xffffffffffffffff, &(0x7f00000002c0)='./file0\x00', 0x0, 0x0, 0x4c) 12:28:51 executing program 2: r0 = syz_init_net_socket$802154_dgram(0x24, 0x2, 0x0) r1 = dup(r0) sendmsg$BATADV_CMD_GET_BLA_BACKBONE(r1, &(0x7f0000000540)={&(0x7f0000000100), 0xc, &(0x7f0000000500)={0x0}}, 0x0) ioctl$sock_SIOCINQ(r1, 0x541b, &(0x7f0000000000)) 12:28:51 executing program 1 (fault-call:6 fault-nth:14): r0 = syz_io_uring_setup(0x4d4f, &(0x7f0000000080), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=0x0, &(0x7f0000000140)=0x0) syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_POLL_ADD={0x6, 0x0, 0x0, @fd=r0, 0x0, 0x0, 0x0, {0x194}}, 0x0) r3 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0) perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_io_uring_submit(r3, r2, &(0x7f0000000100)=@IORING_OP_SPLICE, 0x4) io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0) execveat(0xffffffffffffffff, &(0x7f00000002c0)='./file0\x00', &(0x7f0000000380), &(0x7f0000000640)=[0x0, 0x0, 0x0], 0x0) 12:28:51 executing program 0: r0 = syz_io_uring_setup(0x4d4f, &(0x7f0000000080), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=0x0, &(0x7f0000000140)=0x0) syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_POLL_ADD={0x6, 0x0, 0x0, @fd=r0, 0x0, 0x0, 0x0, {0x194}}, 0x0) r3 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0) perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_io_uring_submit(r3, r2, &(0x7f0000000100)=@IORING_OP_SPLICE, 0x4) io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0) execveat(0xffffffffffffffff, &(0x7f00000002c0)='./file0\x00', &(0x7f0000000380), 0x0, 0xe00) [ 1661.291595] EXT4-fs (loop6): unsupported inode size: 0 [ 1661.292294] EXT4-fs (loop7): mounted filesystem without journal. Opts: ,errors=continue [ 1661.292898] EXT4-fs (loop6): blocksize: 2048 [ 1661.308080] FAULT_INJECTION: forcing a failure. [ 1661.308080] name failslab, interval 1, probability 0, space 0, times 0 [ 1661.310864] CPU: 1 PID: 12371 Comm: syz-executor.1 Not tainted 5.10.60 #1 [ 1661.312524] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS rel-1.14.0-0-g155821a1990b-prebuilt.qemu.org 04/01/2014 [ 1661.313228] EXT4-fs (loop7): re-mounted. Opts: ,errors=continue [ 1661.315207] Call Trace: [ 1661.315235] dump_stack+0x107/0x163 [ 1661.315258] should_fail.cold+0x5/0xa [ 1661.315279] ? __pmd_alloc+0x98/0x5e0 [ 1661.315299] should_failslab+0x5/0x10 [ 1661.315317] kmem_cache_alloc+0x5b/0x350 [ 1661.315342] __pmd_alloc+0x98/0x5e0 12:28:51 executing program 2: r0 = syz_open_dev$tty1(0xc, 0x4, 0x4) newfstatat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', &(0x7f0000000080)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x0) fchown(r0, 0xffffffffffffffff, r1) r2 = syz_init_net_socket$802154_dgram(0x24, 0x2, 0x0) r3 = dup(r2) r4 = openat$tun(0xffffffffffffff9c, &(0x7f0000000040), 0x0, 0x0) r5 = openat$tun(0xffffffffffffff9c, &(0x7f0000000040), 0x0, 0x0) ioctl$TUNSETQUEUE(r5, 0x400454ca, &(0x7f00000000c0)={'ipvlan1\x00'}) ioctl$TUNSETQUEUE(r5, 0x400454d9, &(0x7f00000001c0)={'veth1_vlan\x00'}) ioctl$TUNSETQUEUE(r4, 0x400454ca, &(0x7f00000000c0)={'ipvlan1\x00'}) syncfs(r4) sendmsg$BATADV_CMD_GET_BLA_BACKBONE(r3, &(0x7f0000000540)={&(0x7f0000000100), 0xc, &(0x7f0000000500)={0x0}}, 0x0) ioctl$sock_SIOCINQ(r3, 0x541b, &(0x7f0000000000)) r6 = socket$packet(0x11, 0x3, 0x300) r7 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a) ioctl$sock_SIOCGIFINDEX(r7, 0x8933, &(0x7f0000000140)={'syz_tun\x00', 0x0}) setsockopt$packet_add_memb(r6, 0x107, 0x1, &(0x7f0000000040)={r8, 0x1, 0x6, @local}, 0x10) connect(r2, &(0x7f0000000140)=@xdp={0x2c, 0x0, r8, 0x10}, 0x80) [ 1661.315366] handle_mm_fault+0x1a30/0x3570 [ 1661.315394] ? __schedule+0x853/0x1e90 [ 1661.324076] ? __pmd_alloc+0x5e0/0x5e0 [ 1661.324994] __get_user_pages+0x61d/0x1400 [ 1661.325945] ? follow_page_mask+0x1820/0x1820 [ 1661.327021] ? hlock_class+0x120/0x120 [ 1661.328025] __get_user_pages_remote+0x1d1/0x860 [ 1661.329087] ? find_held_lock+0x2c/0x110 [ 1661.329988] get_user_pages_remote+0x63/0x90 [ 1661.331002] get_arg_page+0xba/0x200 [ 1661.331828] ? acct_arg_size+0xe0/0xe0 [ 1661.332706] copy_string_kernel+0x1b0/0x440 [ 1661.333675] do_execveat_common.isra.0+0x405/0x670 [ 1661.334770] __x64_sys_execveat+0xe7/0x130 [ 1661.335707] do_syscall_64+0x33/0x40 [ 1661.336546] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 1661.337687] RIP: 0033:0x466609 [ 1661.338380] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1661.342377] RSP: 002b:00007f443d736188 EFLAGS: 00000246 ORIG_RAX: 0000000000000142 [ 1661.344049] RAX: ffffffffffffffda RBX: 000000000056bf80 RCX: 0000000000466609 [ 1661.345617] RDX: 0000000020000380 RSI: 00000000200002c0 RDI: ffffffffffffffff [ 1661.347184] RBP: 00007f443d7361d0 R08: 0000000000000000 R09: 0000000000000000 [ 1661.348728] R10: 0000000020000640 R11: 0000000000000246 R12: 0000000000000002 [ 1661.350294] R13: 00007ffeb6924e7f R14: 00007f443d736300 R15: 0000000000022000 12:28:51 executing program 7: syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000040)='./file0\x00', 0x40000, 0x3, &(0x7f0000000200)=[{&(0x7f0000010000)="2000000080000000060000006a0000000f000000000000000100000001000000004000000040000020000000e0f4655fe0f4655f0100ffff53ef010001000000dff4655f000000000000000001000000000000000b0000000001", 0x5a, 0x400}, {&(0x7f0000010400)="020000000300000004", 0x9, 0x800}, {&(0x7f0000011600)="ed41000000080000dff4655fe0f4655fe0f4655f000000000000040004", 0x1d, 0x2100}], 0x0, &(0x7f0000000080)=ANY=[]) syz_mount_image$ext4(&(0x7f0000000000)='ext2\x00', &(0x7f0000000040)='./file0/../file0\x00', 0x2, 0x0, 0x0, 0x104e034, &(0x7f00000001c0)) [ 1661.362241] EXT4-fs error (device loop4): ext4_fill_super:4954: inode #2: comm syz-executor.4: iget: root inode unallocated [ 1661.372687] EXT4-fs (loop4): get root inode failed [ 1661.373874] EXT4-fs (loop4): mount failed [ 1661.501755] device syz_tun entered promiscuous mode [ 1661.522798] device syz_tun left promiscuous mode 12:28:51 executing program 3: r0 = syz_io_uring_setup(0x4d4f, &(0x7f0000000080), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200), &(0x7f0000000140)=0x0) r2 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0) perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_io_uring_submit(r2, r1, &(0x7f0000000100)=@IORING_OP_SPLICE, 0x4) io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0) execveat(0xffffffffffffffff, &(0x7f00000002c0)='./file0\x00', 0x0, 0x0, 0x4) 12:28:51 executing program 6: syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000040)='./file0\x00', 0x40000, 0x3, &(0x7f0000000200)=[{&(0x7f0000010000)="2000000080000000060000006a0000000f000000000000000100000001000000004000000040000020000000e0f4655fe0f4655f0100ffff53ef010001000000dff4655f000000000000000001000000000000000b0000000001", 0x5a}, {&(0x7f0000010400)="020000000300000004", 0x9, 0x800}, {&(0x7f0000011600)="ed41000000080000dff4655fe0f4655fe0f4655f000000000000040004", 0x1d, 0x2100}], 0x0, &(0x7f0000000080)=ANY=[]) syz_mount_image$ext4(&(0x7f0000000000)='ext2\x00', &(0x7f0000000040)='./file0/../file0\x00', 0x0, 0x0, 0x0, 0x104e034, &(0x7f00000001c0)={[{@data_err_abort}]}) 12:28:51 executing program 5: r0 = syz_io_uring_setup(0x4d4f, &(0x7f0000000080), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=0x0, &(0x7f0000000140)=0x0) syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_POLL_ADD={0x6, 0x0, 0x0, @fd=r0, 0x0, 0x0, 0x0, {0x194}}, 0x0) r3 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0) perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_io_uring_submit(r3, r2, &(0x7f0000000100)=@IORING_OP_SPLICE, 0x4) io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0) execveat(0xffffffffffffffff, &(0x7f00000002c0)='./file0\x00', 0x0, 0x0, 0x68) 12:28:51 executing program 4: syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000040)='./file0\x00', 0x40000, 0x3, &(0x7f0000000200)=[{&(0x7f0000010000)="2000000080000000060000006a0000000f000000000000000100000001000000004000000040000020000000e0f4655fe0f4655f0100ffff53ef010001000000dff4655f000000000000000001000000000000000b00000000010000280200000284", 0x62, 0x400}, {&(0x7f0000010400)="020000000300000004000000", 0xc, 0x800}, {&(0x7f0000011600)="ed41000000080000dff4655fe0f465", 0xf, 0x2100}], 0x0, &(0x7f0000000080)=ANY=[]) syz_mount_image$ext4(&(0x7f0000000000)='ext2\x00', &(0x7f0000000040)='./file0/../file0\x00', 0x0, 0x0, 0x0, 0x104e034, &(0x7f00000001c0)={[{@data_err_abort}]}) [ 1661.587857] device syz_tun entered promiscuous mode 12:28:51 executing program 0: r0 = syz_io_uring_setup(0x4d4f, &(0x7f0000000080), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=0x0, &(0x7f0000000140)=0x0) syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_POLL_ADD={0x6, 0x0, 0x0, @fd=r0, 0x0, 0x0, 0x0, {0x194}}, 0x0) r3 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0) perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_io_uring_submit(r3, r2, &(0x7f0000000100)=@IORING_OP_SPLICE, 0x4) io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0) execveat(0xffffffffffffffff, &(0x7f00000002c0)='./file0\x00', &(0x7f0000000380), 0x0, 0x1002) [ 1661.589983] EXT4-fs (loop7): mounted filesystem without journal. Opts: ,errors=continue [ 1661.593630] device syz_tun left promiscuous mode 12:28:51 executing program 2: r0 = syz_init_net_socket$802154_dgram(0x24, 0x2, 0x0) r1 = dup(r0) sendmsg$BATADV_CMD_GET_BLA_BACKBONE(r1, &(0x7f0000000540)={&(0x7f0000000100), 0xc, &(0x7f0000000500)={0x0}}, 0x0) open_tree(0xffffffffffffffff, &(0x7f00000000c0)='./file0\x00', 0x0) socket$netlink(0x10, 0x3, 0x0) syz_mount_image$tmpfs(0x0, &(0x7f00000003c0)='./file1\x00', 0x0, 0x1, &(0x7f00000019c0)=[{&(0x7f0000000400)='}', 0x1}], 0x0, 0x0) r2 = socket$unix(0x1, 0x0, 0x0) getsockname$unix(r2, 0x0, 0x0) lstat(&(0x7f0000000200)='./file1\x00', &(0x7f0000000240)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0}) syz_mount_image$tmpfs(&(0x7f0000000080), &(0x7f0000000140)='./file0\x00', 0x1, 0x1, &(0x7f00000001c0)=[{&(0x7f0000000180)="34926a9c13f6485699ec55b99f83e5114dfeb36e965f0348d0bd299a8d", 0x1d, 0xff}], 0x41800, &(0x7f00000002c0)={[{@huge_always}, {@mode={'mode', 0x3d, 0x1}}, {@gid={'gid', 0x3d, r3}}, {@gid={'gid', 0x3d, 0xee00}}, {@huge_advise}, {@huge_within_size}, {@gid={'gid', 0x3d, 0xee01}}, {@nr_inodes={'nr_inodes', 0x3d, [0x56, 0x6b, 0x37, 0x6d]}}], [{@euid_gt={'euid>', 0xee00}}, {@defcontext={'defcontext', 0x3d, 'sysadm_u'}}, {@defcontext={'defcontext', 0x3d, 'sysadm_u'}}, {@euid_lt}]}) ioctl$sock_SIOCINQ(r1, 0x541b, &(0x7f0000000000)) setsockopt$WPAN_SECURITY(r1, 0x0, 0x1, &(0x7f0000000040)=0x2, 0x4) 12:28:51 executing program 7: syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000040)='./file0\x00', 0x40000, 0x3, &(0x7f0000000200)=[{&(0x7f0000010000)="2000000080000000060000006a0000000f000000000000000100000001000000004000000040000020000000e0f4655fe0f4655f0100ffff53ef010001000000dff4655f000000000000000001000000000000000b0000000001", 0x5a, 0x400}, {&(0x7f0000010400)="020000000300000004", 0x9, 0x800}, {&(0x7f0000011600)="ed41000000080000dff4655fe0f4655fe0f4655f000000000000040004", 0x1d, 0x2100}], 0x0, &(0x7f0000000080)=ANY=[]) syz_mount_image$ext4(&(0x7f0000000000)='ext2\x00', &(0x7f0000000040)='./file0/../file0\x00', 0x3, 0x0, 0x0, 0x104e034, &(0x7f00000001c0)) 12:28:51 executing program 1 (fault-call:6 fault-nth:15): r0 = syz_io_uring_setup(0x4d4f, &(0x7f0000000080), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=0x0, &(0x7f0000000140)=0x0) syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_POLL_ADD={0x6, 0x0, 0x0, @fd=r0, 0x0, 0x0, 0x0, {0x194}}, 0x0) r3 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0) perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_io_uring_submit(r3, r2, &(0x7f0000000100)=@IORING_OP_SPLICE, 0x4) io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0) execveat(0xffffffffffffffff, &(0x7f00000002c0)='./file0\x00', &(0x7f0000000380), &(0x7f0000000640)=[0x0, 0x0, 0x0], 0x0) [ 1661.712654] EXT4-fs (loop6): VFS: Can't find ext4 filesystem [ 1661.780036] EXT4-fs error (device loop4): ext4_fill_super:4954: inode #2: comm syz-executor.4: iget: root inode unallocated [ 1661.801172] EXT4-fs (loop4): get root inode failed [ 1661.802317] EXT4-fs (loop4): mount failed [ 1661.809864] EXT4-fs (loop7): mounted filesystem without journal. Opts: ,errors=continue [ 1661.822734] EXT4-fs (loop7): re-mounted. Opts: ,errors=continue [ 1661.903884] FAULT_INJECTION: forcing a failure. [ 1661.903884] name failslab, interval 1, probability 0, space 0, times 0 [ 1661.906403] CPU: 1 PID: 12453 Comm: syz-executor.1 Not tainted 5.10.60 #1 [ 1661.907996] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS rel-1.14.0-0-g155821a1990b-prebuilt.qemu.org 04/01/2014 [ 1661.910498] Call Trace: [ 1661.911031] dump_stack+0x107/0x163 [ 1661.911775] should_fail.cold+0x5/0xa [ 1661.912627] ? create_object.isra.0+0x3a/0xa10 [ 1661.913557] should_failslab+0x5/0x10 [ 1661.914478] kmem_cache_alloc+0x5b/0x350 [ 1661.915529] create_object.isra.0+0x3a/0xa10 [ 1661.916547] ? __kasan_kmalloc.constprop.0+0xc2/0xd0 [ 1661.917758] kmem_cache_alloc+0x15b/0x350 [ 1661.918683] __pmd_alloc+0x98/0x5e0 [ 1661.919484] handle_mm_fault+0x1a30/0x3570 [ 1661.920204] ? __pmd_alloc+0x5e0/0x5e0 [ 1661.920870] __get_user_pages+0x61d/0x1400 [ 1661.921795] ? follow_page_mask+0x1820/0x1820 [ 1661.922678] ? hlock_class+0x120/0x120 [ 1661.923470] __get_user_pages_remote+0x1d1/0x860 [ 1661.924493] ? find_held_lock+0x2c/0x110 [ 1661.925170] get_user_pages_remote+0x63/0x90 [ 1661.925903] get_arg_page+0xba/0x200 [ 1661.926555] ? acct_arg_size+0xe0/0xe0 [ 1661.927246] copy_string_kernel+0x1b0/0x440 [ 1661.927994] do_execveat_common.isra.0+0x405/0x670 [ 1661.928833] __x64_sys_execveat+0xe7/0x130 [ 1661.929564] do_syscall_64+0x33/0x40 [ 1661.930212] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 1661.931047] RIP: 0033:0x466609 [ 1661.931718] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1661.935412] RSP: 002b:00007f443d736188 EFLAGS: 00000246 ORIG_RAX: 0000000000000142 [ 1661.936921] RAX: ffffffffffffffda RBX: 000000000056bf80 RCX: 0000000000466609 [ 1661.938251] RDX: 0000000020000380 RSI: 00000000200002c0 RDI: ffffffffffffffff [ 1661.939453] RBP: 00007f443d7361d0 R08: 0000000000000000 R09: 0000000000000000 [ 1661.940646] R10: 0000000020000640 R11: 0000000000000246 R12: 0000000000000002 [ 1661.941838] R13: 00007ffeb6924e7f R14: 00007f443d736300 R15: 0000000000022000 12:29:05 executing program 1 (fault-call:6 fault-nth:16): r0 = syz_io_uring_setup(0x4d4f, &(0x7f0000000080), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=0x0, &(0x7f0000000140)=0x0) syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_POLL_ADD={0x6, 0x0, 0x0, @fd=r0, 0x0, 0x0, 0x0, {0x194}}, 0x0) r3 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0) perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_io_uring_submit(r3, r2, &(0x7f0000000100)=@IORING_OP_SPLICE, 0x4) io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0) execveat(0xffffffffffffffff, &(0x7f00000002c0)='./file0\x00', &(0x7f0000000380), &(0x7f0000000640)=[0x0, 0x0, 0x0], 0x0) 12:29:05 executing program 2: r0 = syz_init_net_socket$802154_dgram(0x24, 0x2, 0x0) r1 = dup(r0) sendmsg$BATADV_CMD_GET_BLA_BACKBONE(r1, &(0x7f0000000540)={&(0x7f0000000100), 0xc, &(0x7f0000000500)={0x0}}, 0x0) r2 = syz_init_net_socket$802154_dgram(0x24, 0x2, 0x0) ioctl$RTC_ALM_READ(r1, 0x80247008, &(0x7f0000000080)) dup(r2) bind$802154_dgram(r2, &(0x7f0000000040)={0x24, @none={0x0, 0x1}}, 0x14) ioctl$sock_SIOCINQ(r1, 0x541b, &(0x7f0000000000)) 12:29:05 executing program 3: r0 = syz_io_uring_setup(0x4d4f, &(0x7f0000000080), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200), &(0x7f0000000140)=0x0) r2 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0) perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_io_uring_submit(r2, r1, &(0x7f0000000100)=@IORING_OP_SPLICE, 0x4) io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0) execveat(0xffffffffffffffff, &(0x7f00000002c0)='./file0\x00', 0x0, 0x0, 0x5) 12:29:05 executing program 5: r0 = syz_io_uring_setup(0x4d4f, &(0x7f0000000080), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=0x0, &(0x7f0000000140)=0x0) syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_POLL_ADD={0x6, 0x0, 0x0, @fd=r0, 0x0, 0x0, 0x0, {0x194}}, 0x0) r3 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0) perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_io_uring_submit(r3, r2, &(0x7f0000000100)=@IORING_OP_SPLICE, 0x4) io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0) execveat(0xffffffffffffffff, &(0x7f00000002c0)='./file0\x00', 0x0, 0x0, 0x6c) 12:29:05 executing program 0: r0 = syz_io_uring_setup(0x4d4f, &(0x7f0000000080), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=0x0, &(0x7f0000000140)=0x0) syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_POLL_ADD={0x6, 0x0, 0x0, @fd=r0, 0x0, 0x0, 0x0, {0x194}}, 0x0) r3 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0) perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_io_uring_submit(r3, r2, &(0x7f0000000100)=@IORING_OP_SPLICE, 0x4) io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0) execveat(0xffffffffffffffff, &(0x7f00000002c0)='./file0\x00', &(0x7f0000000380), 0x0, 0x1003) 12:29:05 executing program 7: syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000040)='./file0\x00', 0x40000, 0x3, &(0x7f0000000200)=[{&(0x7f0000010000)="2000000080000000060000006a0000000f000000000000000100000001000000004000000040000020000000e0f4655fe0f4655f0100ffff53ef010001000000dff4655f000000000000000001000000000000000b0000000001", 0x5a, 0x400}, {&(0x7f0000010400)="020000000300000004", 0x9, 0x800}, {&(0x7f0000011600)="ed41000000080000dff4655fe0f4655fe0f4655f000000000000040004", 0x1d, 0x2100}], 0x0, &(0x7f0000000080)=ANY=[]) syz_mount_image$ext4(&(0x7f0000000000)='ext2\x00', &(0x7f0000000040)='./file0/../file0\x00', 0x4, 0x0, 0x0, 0x104e034, &(0x7f00000001c0)) 12:29:05 executing program 6: syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000040)='./file0\x00', 0x40000, 0x3, &(0x7f0000000200)=[{&(0x7f0000010000)="2000000080000000060000006a0000000f000000000000000100000001000000004000000040000020000000e0f4655fe0f4655f0100ffff53ef010001000000dff4655f000000000000000001000000000000000b0000000001", 0x5a}, {&(0x7f0000010400)="020000000300000004", 0x9, 0x800}, {&(0x7f0000011600)="ed41000000080000dff4655fe0f4655fe0f4655f000000000000040004", 0x1d, 0x2100}], 0x0, &(0x7f0000000080)=ANY=[]) syz_mount_image$ext4(&(0x7f0000000000)='ext2\x00', &(0x7f0000000040)='./file0/../file0\x00', 0x0, 0x0, 0x0, 0x104e034, &(0x7f00000001c0)={[{@data_err_abort}]}) 12:29:05 executing program 4: syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000040)='./file0\x00', 0x40000, 0x3, &(0x7f0000000200)=[{&(0x7f0000010000)="2000000080000000060000006a0000000f000000000000000100000001000000004000000040000020000000e0f4655fe0f4655f0100ffff53ef010001000000dff4655f000000000000000001000000000000000b00000000010000280200000284", 0x62, 0x400}, {&(0x7f0000010400)="020000000300000004000000", 0xc, 0x800}, {&(0x7f0000011600)="ed41000000080000dff4655fe0f465", 0xf, 0x2100}], 0x0, &(0x7f0000000080)=ANY=[]) syz_mount_image$ext4(&(0x7f0000000000)='ext2\x00', &(0x7f0000000040)='./file0/../file0\x00', 0x0, 0x0, 0x0, 0x104e034, &(0x7f00000001c0)={[{@data_err_abort}]}) [ 1675.213412] Unsupported ieee802154 address type: 0 [ 1675.223359] Unsupported ieee802154 address type: 0 [ 1675.244209] FAULT_INJECTION: forcing a failure. [ 1675.244209] name fail_page_alloc, interval 1, probability 0, space 0, times 0 [ 1675.246303] CPU: 0 PID: 12478 Comm: syz-executor.1 Not tainted 5.10.60 #1 [ 1675.247402] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS rel-1.14.0-0-g155821a1990b-prebuilt.qemu.org 04/01/2014 [ 1675.249260] Call Trace: [ 1675.249692] dump_stack+0x107/0x163 [ 1675.250307] should_fail.cold+0x5/0xa [ 1675.250979] __alloc_pages_nodemask+0x17f/0x670 [ 1675.251759] ? __alloc_pages_slowpath.constprop.0+0x2090/0x2090 [ 1675.252759] ? __pmd_alloc+0x2e6/0x5e0 [ 1675.253409] ? lock_downgrade+0x6d0/0x6d0 [ 1675.254138] ? do_raw_spin_lock+0x129/0x270 [ 1675.254863] alloc_pages_current+0x187/0x280 [ 1675.255579] pte_alloc_one+0x16/0x190 [ 1675.256208] __pte_alloc+0x1d/0x320 [ 1675.256796] handle_mm_fault+0x290c/0x3570 [ 1675.257517] ? __pmd_alloc+0x5e0/0x5e0 [ 1675.258204] __get_user_pages+0x61d/0x1400 [ 1675.259410] ? follow_page_mask+0x1820/0x1820 [ 1675.260517] ? perf_trace_lock+0x2cd/0x470 [ 1675.261545] ? hlock_class+0x120/0x120 [ 1675.262509] __get_user_pages_remote+0x1d1/0x860 [ 1675.263682] ? find_held_lock+0x2c/0x110 [ 1675.264676] get_user_pages_remote+0x63/0x90 [ 1675.265754] get_arg_page+0xba/0x200 [ 1675.266660] ? acct_arg_size+0xe0/0xe0 [ 1675.267665] copy_string_kernel+0x1b0/0x440 [ 1675.268617] do_execveat_common.isra.0+0x405/0x670 [ 1675.269732] __x64_sys_execveat+0xe7/0x130 [ 1675.270647] do_syscall_64+0x33/0x40 [ 1675.271458] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 1675.272563] RIP: 0033:0x466609 [ 1675.273258] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1675.277169] RSP: 002b:00007f443d736188 EFLAGS: 00000246 ORIG_RAX: 0000000000000142 [ 1675.278780] RAX: ffffffffffffffda RBX: 000000000056bf80 RCX: 0000000000466609 [ 1675.280304] RDX: 0000000020000380 RSI: 00000000200002c0 RDI: ffffffffffffffff [ 1675.281809] RBP: 00007f443d7361d0 R08: 0000000000000000 R09: 0000000000000000 [ 1675.283341] R10: 0000000020000640 R11: 0000000000000246 R12: 0000000000000002 [ 1675.284866] R13: 00007ffeb6924e7f R14: 00007f443d736300 R15: 0000000000022000 12:29:05 executing program 5: r0 = syz_io_uring_setup(0x4d4f, &(0x7f0000000080), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=0x0, &(0x7f0000000140)=0x0) syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_POLL_ADD={0x6, 0x0, 0x0, @fd=r0, 0x0, 0x0, 0x0, {0x194}}, 0x0) r3 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0) perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_io_uring_submit(r3, r2, &(0x7f0000000100)=@IORING_OP_SPLICE, 0x4) io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0) execveat(0xffffffffffffffff, &(0x7f00000002c0)='./file0\x00', 0x0, 0x0, 0x74) 12:29:05 executing program 2: r0 = syz_init_net_socket$802154_dgram(0x24, 0x2, 0x0) r1 = dup(r0) sendmsg$BATADV_CMD_GET_BLA_BACKBONE(r1, &(0x7f0000000540)={&(0x7f0000000100), 0xc, &(0x7f0000000500)={0x0}}, 0x0) preadv(r1, &(0x7f0000000040), 0x0, 0x12d, 0x8) ioctl$sock_SIOCINQ(r1, 0x541b, &(0x7f0000000000)) listen(0xffffffffffffffff, 0x8) [ 1675.287970] audit: type=1400 audit(1630153745.533:48): avc: denied { read } for pid=12462 comm="syz-executor.3" scontext=system_u:system_r:kernel_t:s0 tcontext=system_u:system_r:kernel_t:s0 tclass=perf_event permissive=1 [ 1675.325426] EXT4-fs (loop6): VFS: Can't find ext4 filesystem [ 1675.328637] EXT4-fs error (device loop4): ext4_fill_super:4954: inode #2: comm syz-executor.4: iget: root inode unallocated [ 1675.339841] EXT4-fs (loop4): get root inode failed [ 1675.341222] EXT4-fs (loop4): mount failed [ 1675.354919] EXT4-fs (loop7): mounted filesystem without journal. Opts: ,errors=continue 12:29:05 executing program 7: syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000040)='./file0\x00', 0x40000, 0x3, &(0x7f0000000200)=[{&(0x7f0000010000)="2000000080000000060000006a0000000f000000000000000100000001000000004000000040000020000000e0f4655fe0f4655f0100ffff53ef010001000000dff4655f000000000000000001000000000000000b0000000001", 0x5a, 0x400}, {&(0x7f0000010400)="020000000300000004", 0x9, 0x800}, {&(0x7f0000011600)="ed41000000080000dff4655fe0f4655fe0f4655f000000000000040004", 0x1d, 0x2100}], 0x0, &(0x7f0000000080)=ANY=[]) syz_mount_image$ext4(&(0x7f0000000000)='ext2\x00', &(0x7f0000000040)='./file0/../file0\x00', 0x5, 0x0, 0x0, 0x104e034, &(0x7f00000001c0)) 12:29:05 executing program 3: r0 = syz_io_uring_setup(0x4d4f, &(0x7f0000000080), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200), &(0x7f0000000140)=0x0) r2 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0) perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_io_uring_submit(r2, r1, &(0x7f0000000100)=@IORING_OP_SPLICE, 0x4) io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0) execveat(0xffffffffffffffff, &(0x7f00000002c0)='./file0\x00', 0x0, 0x0, 0x6) 12:29:05 executing program 6: syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000040)='./file0\x00', 0x40000, 0x3, &(0x7f0000000200)=[{&(0x7f0000010000)="2000000080000000060000006a0000000f000000000000000100000001000000004000000040000020000000e0f4655fe0f4655f0100ffff53ef010001000000dff4655f000000000000000001000000000000000b0000000001", 0x5a}, {&(0x7f0000010400)="020000000300000004", 0x9, 0x800}, {&(0x7f0000011600)="ed41000000080000dff4655fe0f4655fe0f4655f000000000000040004", 0x1d, 0x2100}], 0x0, &(0x7f0000000080)=ANY=[]) syz_mount_image$ext4(&(0x7f0000000000)='ext2\x00', &(0x7f0000000040)='./file0/../file0\x00', 0x0, 0x0, 0x0, 0x104e034, &(0x7f00000001c0)={[{@data_err_abort}]}) 12:29:05 executing program 4: syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000040)='./file0\x00', 0x40000, 0x3, &(0x7f0000000200)=[{&(0x7f0000010000)="2000000080000000060000006a0000000f000000000000000100000001000000004000000040000020000000e0f4655fe0f4655f0100ffff53ef010001000000dff4655f000000000000000001000000000000000b00000000010000280200000284", 0x62, 0x400}, {&(0x7f0000010400)="020000000300000004000000", 0xc, 0x800}, {&(0x7f0000011600)="ed41000000080000dff4655fe0f4655fe0f4655f0000", 0x16, 0x2100}], 0x0, &(0x7f0000000080)=ANY=[]) syz_mount_image$ext4(&(0x7f0000000000)='ext2\x00', &(0x7f0000000040)='./file0/../file0\x00', 0x0, 0x0, 0x0, 0x104e034, &(0x7f00000001c0)={[{@data_err_abort}]}) 12:29:05 executing program 1 (fault-call:6 fault-nth:17): r0 = syz_io_uring_setup(0x4d4f, &(0x7f0000000080), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=0x0, &(0x7f0000000140)=0x0) syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_POLL_ADD={0x6, 0x0, 0x0, @fd=r0, 0x0, 0x0, 0x0, {0x194}}, 0x0) r3 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0) perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_io_uring_submit(r3, r2, &(0x7f0000000100)=@IORING_OP_SPLICE, 0x4) io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0) execveat(0xffffffffffffffff, &(0x7f00000002c0)='./file0\x00', &(0x7f0000000380), &(0x7f0000000640)=[0x0, 0x0, 0x0], 0x0) 12:29:05 executing program 0: r0 = syz_io_uring_setup(0x4d4f, &(0x7f0000000080), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=0x0, &(0x7f0000000140)=0x0) syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_POLL_ADD={0x6, 0x0, 0x0, @fd=r0, 0x0, 0x0, 0x0, {0x194}}, 0x0) r3 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0) perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_io_uring_submit(r3, r2, &(0x7f0000000100)=@IORING_OP_SPLICE, 0x4) io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0) execveat(0xffffffffffffffff, &(0x7f00000002c0)='./file0\x00', &(0x7f0000000380), 0x0, 0x1004) [ 1675.741131] EXT4-fs error (device loop4): ext4_fill_super:4954: inode #2: comm syz-executor.4: iget: root inode unallocated [ 1675.742724] EXT4-fs (loop4): get root inode failed [ 1675.743410] EXT4-fs (loop4): mount failed [ 1675.750811] FAULT_INJECTION: forcing a failure. [ 1675.750811] name failslab, interval 1, probability 0, space 0, times 0 [ 1675.753052] CPU: 0 PID: 12539 Comm: syz-executor.1 Not tainted 5.10.60 #1 [ 1675.754367] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS rel-1.14.0-0-g155821a1990b-prebuilt.qemu.org 04/01/2014 [ 1675.756498] Call Trace: [ 1675.757000] dump_stack+0x107/0x163 [ 1675.757692] should_fail.cold+0x5/0xa [ 1675.758408] ? ptlock_alloc+0x1d/0x70 [ 1675.759134] should_failslab+0x5/0x10 [ 1675.759841] kmem_cache_alloc+0x5b/0x350 [ 1675.760611] ptlock_alloc+0x1d/0x70 [ 1675.761299] pte_alloc_one+0x68/0x190 [ 1675.762011] __pte_alloc+0x1d/0x320 [ 1675.762701] handle_mm_fault+0x290c/0x3570 [ 1675.763520] ? __pmd_alloc+0x5e0/0x5e0 [ 1675.764295] __get_user_pages+0x61d/0x1400 [ 1675.765106] ? follow_page_mask+0x1820/0x1820 [ 1675.765955] ? perf_trace_lock+0x2cd/0x470 [ 1675.766747] ? hlock_class+0x120/0x120 [ 1675.767517] __get_user_pages_remote+0x1d1/0x860 [ 1675.768409] ? find_held_lock+0x2c/0x110 [ 1675.769196] get_user_pages_remote+0x63/0x90 [ 1675.770030] get_arg_page+0xba/0x200 [ 1675.770730] ? acct_arg_size+0xe0/0xe0 [ 1675.771489] copy_string_kernel+0x1b0/0x440 [ 1675.772313] do_execveat_common.isra.0+0x405/0x670 [ 1675.773247] __x64_sys_execveat+0xe7/0x130 [ 1675.774047] do_syscall_64+0x33/0x40 [ 1675.774741] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 1675.775718] RIP: 0033:0x466609 [ 1675.776326] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1675.779735] RSP: 002b:00007f443d736188 EFLAGS: 00000246 ORIG_RAX: 0000000000000142 [ 1675.781154] RAX: ffffffffffffffda RBX: 000000000056bf80 RCX: 0000000000466609 [ 1675.782480] RDX: 0000000020000380 RSI: 00000000200002c0 RDI: ffffffffffffffff [ 1675.783818] RBP: 00007f443d7361d0 R08: 0000000000000000 R09: 0000000000000000 [ 1675.785166] R10: 0000000020000640 R11: 0000000000000246 R12: 0000000000000002 [ 1675.786490] R13: 00007ffeb6924e7f R14: 00007f443d736300 R15: 0000000000022000 [ 1675.827660] EXT4-fs (loop6): VFS: Can't find ext4 filesystem [ 1675.910362] EXT4-fs (loop7): mounted filesystem without journal. Opts: ,errors=continue 12:29:19 executing program 7: syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000040)='./file0\x00', 0x40000, 0x3, &(0x7f0000000200)=[{&(0x7f0000010000)="2000000080000000060000006a0000000f000000000000000100000001000000004000000040000020000000e0f4655fe0f4655f0100ffff53ef010001000000dff4655f000000000000000001000000000000000b0000000001", 0x5a, 0x400}, {&(0x7f0000010400)="020000000300000004", 0x9, 0x800}, {&(0x7f0000011600)="ed41000000080000dff4655fe0f4655fe0f4655f000000000000040004", 0x1d, 0x2100}], 0x0, &(0x7f0000000080)=ANY=[]) syz_mount_image$ext4(&(0x7f0000000000)='ext2\x00', &(0x7f0000000040)='./file0/../file0\x00', 0x6, 0x0, 0x0, 0x104e034, &(0x7f00000001c0)) 12:29:19 executing program 5: r0 = syz_io_uring_setup(0x4d4f, &(0x7f0000000080), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=0x0, &(0x7f0000000140)=0x0) syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_POLL_ADD={0x6, 0x0, 0x0, @fd=r0, 0x0, 0x0, 0x0, {0x194}}, 0x0) r3 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0) perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_io_uring_submit(r3, r2, &(0x7f0000000100)=@IORING_OP_SPLICE, 0x4) io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0) execveat(0xffffffffffffffff, &(0x7f00000002c0)='./file0\x00', 0x0, 0x0, 0x7a) 12:29:19 executing program 6: syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000040)='./file0\x00', 0x40000, 0x3, &(0x7f0000000200)=[{&(0x7f0000010000)="2000000080000000060000006a0000000f000000000000000100000001000000004000000040000020000000e0f4655fe0f4655f0100ffff53ef010001000000dff4655f000000000000000001000000000000000b0000000001", 0x5a, 0x400}, {&(0x7f0000010400)="020000000300000004", 0x9, 0x800}, {&(0x7f0000011600)="ed41000000080000dff4655fe0f4655fe0f4655f000000000000040004", 0x1d, 0x2100}], 0x0, 0x0) syz_mount_image$ext4(&(0x7f0000000000)='ext2\x00', &(0x7f0000000040)='./file0/../file0\x00', 0x0, 0x0, 0x0, 0x104e034, &(0x7f00000001c0)={[{@data_err_abort}]}) 12:29:19 executing program 3: r0 = syz_io_uring_setup(0x4d4f, &(0x7f0000000080), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200), &(0x7f0000000140)=0x0) r2 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0) perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_io_uring_submit(r2, r1, &(0x7f0000000100)=@IORING_OP_SPLICE, 0x4) io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0) execveat(0xffffffffffffffff, &(0x7f00000002c0)='./file0\x00', 0x0, 0x0, 0x7) 12:29:19 executing program 1 (fault-call:6 fault-nth:18): r0 = syz_io_uring_setup(0x4d4f, &(0x7f0000000080), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=0x0, &(0x7f0000000140)=0x0) syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_POLL_ADD={0x6, 0x0, 0x0, @fd=r0, 0x0, 0x0, 0x0, {0x194}}, 0x0) r3 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0) perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_io_uring_submit(r3, r2, &(0x7f0000000100)=@IORING_OP_SPLICE, 0x4) io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0) execveat(0xffffffffffffffff, &(0x7f00000002c0)='./file0\x00', &(0x7f0000000380), &(0x7f0000000640)=[0x0, 0x0, 0x0], 0x0) 12:29:19 executing program 4: syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000040)='./file0\x00', 0x40000, 0x3, &(0x7f0000000200)=[{&(0x7f0000010000)="2000000080000000060000006a0000000f000000000000000100000001000000004000000040000020000000e0f4655fe0f4655f0100ffff53ef010001000000dff4655f000000000000000001000000000000000b00000000010000280200000284", 0x62, 0x400}, {&(0x7f0000010400)="020000000300000004000000", 0xc, 0x800}, {&(0x7f0000011600)="ed41000000080000dff4655fe0f4655fe0f4655f0000", 0x16, 0x2100}], 0x0, &(0x7f0000000080)=ANY=[]) syz_mount_image$ext4(&(0x7f0000000000)='ext2\x00', &(0x7f0000000040)='./file0/../file0\x00', 0x0, 0x0, 0x0, 0x104e034, &(0x7f00000001c0)={[{@data_err_abort}]}) 12:29:19 executing program 0: r0 = syz_io_uring_setup(0x4d4f, &(0x7f0000000080), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=0x0, &(0x7f0000000140)=0x0) syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_POLL_ADD={0x6, 0x0, 0x0, @fd=r0, 0x0, 0x0, 0x0, {0x194}}, 0x0) r3 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0) perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_io_uring_submit(r3, r2, &(0x7f0000000100)=@IORING_OP_SPLICE, 0x4) io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0) execveat(0xffffffffffffffff, &(0x7f00000002c0)='./file0\x00', &(0x7f0000000380), 0x0, 0x1005) 12:29:19 executing program 2: getrandom(&(0x7f00000000c0)=""/55, 0x37, 0x4) r0 = syz_init_net_socket$802154_dgram(0x24, 0x2, 0x0) r1 = dup(r0) sendmsg$BATADV_CMD_GET_BLA_BACKBONE(r1, &(0x7f0000000540)={&(0x7f0000000100), 0xc, &(0x7f0000000500)={0x0}}, 0x0) r2 = syz_init_net_socket$802154_dgram(0x24, 0x2, 0x0) r3 = dup(r2) ioctl$sock_SIOCINQ(r3, 0x541b, &(0x7f0000000000)) getrandom(&(0x7f0000000240)=""/45, 0x2d, 0x0) bind$802154_dgram(r3, &(0x7f00000001c0)={0x24, @short={0x2, 0x2}}, 0x14) r4 = syz_init_net_socket$802154_dgram(0x24, 0x2, 0x0) r5 = dup(r4) ioctl$sock_SIOCINQ(r5, 0x541b, &(0x7f0000000000)) r6 = syz_init_net_socket$802154_dgram(0x24, 0x2, 0x0) r7 = dup(r6) ioctl$sock_SIOCINQ(r7, 0x541b, &(0x7f0000000000)) ioctl$BTRFS_IOC_GET_SUBVOL_ROOTREF(0xffffffffffffffff, 0xd000943d, &(0x7f000005db40)={0x80, [], 0x0, "7fab474bc3a585"}) sendmsg$GTP_CMD_DELPDP(r3, &(0x7f0000000340)={&(0x7f0000000280)={0x10, 0x0, 0x0, 0x4000}, 0xc, &(0x7f0000000300)={&(0x7f00000002c0)={0x34, 0x0, 0x400, 0x70bd2a, 0x25dfdbfd, {}, [@GTPA_I_TEI={0x8, 0x8, 0x1}, @GTPA_O_TEI={0x8, 0x9, 0x3}, @GTPA_NET_NS_FD={0x8, 0x7, r5}, @GTPA_NET_NS_FD={0x8, 0x7, r7}]}, 0x34}, 0x1, 0x0, 0x0, 0x20000000}, 0x4800) ioctl$sock_SIOCINQ(r1, 0x541b, &(0x7f0000000000)) r8 = syz_open_dev$vcsn(&(0x7f0000000040), 0x1000, 0x10000) sendmsg$NL80211_CMD_FRAME_WAIT_CANCEL(r8, &(0x7f0000000180)={&(0x7f0000000080)={0x10, 0x0, 0x0, 0x8000000}, 0xc, &(0x7f0000000140)={&(0x7f0000000200)=ANY=[@ANYBLOB=',\x009\x00\x00', @ANYRES16=0x0, @ANYBLOB="00012abd7000fddbdf25430000000c00580011000000000000000c0058001800000000000000"], 0x2c}, 0x1, 0x0, 0x0, 0x4000000}, 0x40040000) [ 1689.477607] FAULT_INJECTION: forcing a failure. [ 1689.477607] name failslab, interval 1, probability 0, space 0, times 0 [ 1689.480536] CPU: 1 PID: 12572 Comm: syz-executor.1 Not tainted 5.10.60 #1 [ 1689.482067] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS rel-1.14.0-0-g155821a1990b-prebuilt.qemu.org 04/01/2014 [ 1689.485162] Call Trace: [ 1689.485904] dump_stack+0x107/0x163 [ 1689.486918] should_fail.cold+0x5/0xa [ 1689.487968] ? create_object.isra.0+0x3a/0xa10 [ 1689.489088] should_failslab+0x5/0x10 [ 1689.489961] kmem_cache_alloc+0x5b/0x350 [ 1689.490880] ? __alloc_pages_slowpath.constprop.0+0x2090/0x2090 [ 1689.492322] create_object.isra.0+0x3a/0xa10 [ 1689.493319] ? __kasan_kmalloc.constprop.0+0xc2/0xd0 [ 1689.494480] kmem_cache_alloc+0x15b/0x350 [ 1689.495447] ptlock_alloc+0x1d/0x70 [ 1689.496292] pte_alloc_one+0x68/0x190 [ 1689.497173] __pte_alloc+0x1d/0x320 [ 1689.497989] handle_mm_fault+0x290c/0x3570 [ 1689.498958] ? __pmd_alloc+0x5e0/0x5e0 [ 1689.499901] __get_user_pages+0x61d/0x1400 [ 1689.500895] ? follow_page_mask+0x1820/0x1820 [ 1689.501911] ? hlock_class+0x120/0x120 [ 1689.502779] __get_user_pages_remote+0x1d1/0x860 [ 1689.503900] ? find_held_lock+0x2c/0x110 [ 1689.504923] get_user_pages_remote+0x63/0x90 [ 1689.506011] get_arg_page+0xba/0x200 [ 1689.506939] ? acct_arg_size+0xe0/0xe0 [ 1689.507943] copy_string_kernel+0x1b0/0x440 [ 1689.509034] do_execveat_common.isra.0+0x405/0x670 [ 1689.510274] __x64_sys_execveat+0xe7/0x130 [ 1689.511331] do_syscall_64+0x33/0x40 [ 1689.512310] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 1689.513633] RIP: 0033:0x466609 [ 1689.514468] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1689.518799] RSP: 002b:00007f443d736188 EFLAGS: 00000246 ORIG_RAX: 0000000000000142 [ 1689.520601] RAX: ffffffffffffffda RBX: 000000000056bf80 RCX: 0000000000466609 [ 1689.522253] RDX: 0000000020000380 RSI: 00000000200002c0 RDI: ffffffffffffffff [ 1689.523916] RBP: 00007f443d7361d0 R08: 0000000000000000 R09: 0000000000000000 [ 1689.525568] R10: 0000000020000640 R11: 0000000000000246 R12: 0000000000000002 [ 1689.527281] R13: 00007ffeb6924e7f R14: 00007f443d736300 R15: 0000000000022000 12:29:19 executing program 2: r0 = syz_init_net_socket$802154_dgram(0x24, 0x2, 0x0) r1 = dup(r0) sendmsg$BATADV_CMD_GET_BLA_BACKBONE(r1, &(0x7f0000000540)={&(0x7f0000000100), 0xc, &(0x7f0000000040)={0x0}, 0x1, 0x0, 0x0, 0xc0}, 0x0) ioctl$sock_SIOCINQ(r1, 0x541b, &(0x7f0000000000)) [ 1689.576105] EXT4-fs (loop7): mounted filesystem without journal. Opts: ,errors=continue [ 1689.593523] EXT4-fs error (device loop4): ext4_fill_super:4954: inode #2: comm syz-executor.4: iget: root inode unallocated [ 1689.596935] EXT4-fs (loop4): get root inode failed 12:29:19 executing program 0: r0 = syz_io_uring_setup(0x4d4f, &(0x7f0000000080), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=0x0, &(0x7f0000000140)=0x0) syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_POLL_ADD={0x6, 0x0, 0x0, @fd=r0, 0x0, 0x0, 0x0, {0x194}}, 0x0) r3 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0) perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_io_uring_submit(r3, r2, &(0x7f0000000100)=@IORING_OP_SPLICE, 0x4) io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0) execveat(0xffffffffffffffff, &(0x7f00000002c0)='./file0\x00', &(0x7f0000000380), 0x0, 0x1006) [ 1689.598118] EXT4-fs (loop4): mount failed 12:29:19 executing program 5: r0 = syz_io_uring_setup(0x4d4f, &(0x7f0000000080), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=0x0, &(0x7f0000000140)=0x0) syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_POLL_ADD={0x6, 0x0, 0x0, @fd=r0, 0x0, 0x0, 0x0, {0x194}}, 0x0) r3 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0) perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_io_uring_submit(r3, r2, &(0x7f0000000100)=@IORING_OP_SPLICE, 0x4) io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0) execveat(0xffffffffffffffff, &(0x7f00000002c0)='./file0\x00', 0x0, 0x0, 0x300) 12:29:19 executing program 7: syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000040)='./file0\x00', 0x40000, 0x3, &(0x7f0000000200)=[{&(0x7f0000010000)="2000000080000000060000006a0000000f000000000000000100000001000000004000000040000020000000e0f4655fe0f4655f0100ffff53ef010001000000dff4655f000000000000000001000000000000000b0000000001", 0x5a, 0x400}, {&(0x7f0000010400)="020000000300000004", 0x9, 0x800}, {&(0x7f0000011600)="ed41000000080000dff4655fe0f4655fe0f4655f000000000000040004", 0x1d, 0x2100}], 0x0, &(0x7f0000000080)=ANY=[]) syz_mount_image$ext4(&(0x7f0000000000)='ext2\x00', &(0x7f0000000040)='./file0/../file0\x00', 0x7, 0x0, 0x0, 0x104e034, &(0x7f00000001c0)) 12:29:19 executing program 6: syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000040)='./file0\x00', 0x40000, 0x3, &(0x7f0000000200)=[{&(0x7f0000010000)="2000000080000000060000006a0000000f000000000000000100000001000000004000000040000020000000e0f4655fe0f4655f0100ffff53ef010001000000dff4655f000000000000000001000000000000000b0000000001", 0x5a, 0x400}, {&(0x7f0000010400)="020000000300000004", 0x9, 0x800}, {&(0x7f0000011600)="ed41000000080000dff4655fe0f4655fe0f4655f000000000000040004", 0x1d, 0x2100}], 0x0, 0x0) syz_mount_image$ext4(&(0x7f0000000000)='ext2\x00', &(0x7f0000000040)='./file0/../file0\x00', 0x0, 0x0, 0x0, 0x104e034, &(0x7f00000001c0)={[{@data_err_abort}]}) 12:29:20 executing program 3: r0 = syz_io_uring_setup(0x4d4f, &(0x7f0000000080), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200), &(0x7f0000000140)=0x0) r2 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0) perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_io_uring_submit(r2, r1, &(0x7f0000000100)=@IORING_OP_SPLICE, 0x4) io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0) execveat(0xffffffffffffffff, &(0x7f00000002c0)='./file0\x00', 0x0, 0x0, 0xc) [ 1689.941443] EXT4-fs (loop7): mounted filesystem without journal. Opts: ,errors=continue [ 1689.950655] EXT4-fs (loop7): re-mounted. Opts: ,errors=continue 12:29:32 executing program 3: r0 = syz_io_uring_setup(0x4d4f, &(0x7f0000000080), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200), &(0x7f0000000140)=0x0) r2 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0) perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_io_uring_submit(r2, r1, &(0x7f0000000100)=@IORING_OP_SPLICE, 0x4) io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0) execveat(0xffffffffffffffff, &(0x7f00000002c0)='./file0\x00', 0x0, 0x0, 0x10) 12:29:32 executing program 0: r0 = syz_io_uring_setup(0x4d4f, &(0x7f0000000080), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=0x0, &(0x7f0000000140)=0x0) syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_POLL_ADD={0x6, 0x0, 0x0, @fd=r0, 0x0, 0x0, 0x0, {0x194}}, 0x0) r3 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0) perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_io_uring_submit(r3, r2, &(0x7f0000000100)=@IORING_OP_SPLICE, 0x4) io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0) execveat(0xffffffffffffffff, &(0x7f00000002c0)='./file0\x00', &(0x7f0000000380), 0x0, 0x1007) 12:29:32 executing program 5: r0 = syz_io_uring_setup(0x4d4f, &(0x7f0000000080), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=0x0, &(0x7f0000000140)=0x0) syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_POLL_ADD={0x6, 0x0, 0x0, @fd=r0, 0x0, 0x0, 0x0, {0x194}}, 0x0) r3 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0) perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_io_uring_submit(r3, r2, &(0x7f0000000100)=@IORING_OP_SPLICE, 0x4) io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0) execveat(0xffffffffffffffff, &(0x7f00000002c0)='./file0\x00', 0x0, 0x0, 0x500) 12:29:32 executing program 4: syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000040)='./file0\x00', 0x40000, 0x3, &(0x7f0000000200)=[{&(0x7f0000010000)="2000000080000000060000006a0000000f000000000000000100000001000000004000000040000020000000e0f4655fe0f4655f0100ffff53ef010001000000dff4655f000000000000000001000000000000000b00000000010000280200000284", 0x62, 0x400}, {&(0x7f0000010400)="020000000300000004000000", 0xc, 0x800}, {&(0x7f0000011600)="ed41000000080000dff4655fe0f4655fe0f4655f0000", 0x16, 0x2100}], 0x0, &(0x7f0000000080)=ANY=[]) syz_mount_image$ext4(&(0x7f0000000000)='ext2\x00', &(0x7f0000000040)='./file0/../file0\x00', 0x0, 0x0, 0x0, 0x104e034, &(0x7f00000001c0)={[{@data_err_abort}]}) 12:29:32 executing program 1 (fault-call:6 fault-nth:19): r0 = syz_io_uring_setup(0x4d4f, &(0x7f0000000080), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=0x0, &(0x7f0000000140)=0x0) syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_POLL_ADD={0x6, 0x0, 0x0, @fd=r0, 0x0, 0x0, 0x0, {0x194}}, 0x0) r3 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0) perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_io_uring_submit(r3, r2, &(0x7f0000000100)=@IORING_OP_SPLICE, 0x4) io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0) execveat(0xffffffffffffffff, &(0x7f00000002c0)='./file0\x00', &(0x7f0000000380), &(0x7f0000000640)=[0x0, 0x0, 0x0], 0x0) 12:29:32 executing program 6: syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000040)='./file0\x00', 0x40000, 0x3, &(0x7f0000000200)=[{&(0x7f0000010000)="2000000080000000060000006a0000000f000000000000000100000001000000004000000040000020000000e0f4655fe0f4655f0100ffff53ef010001000000dff4655f000000000000000001000000000000000b0000000001", 0x5a, 0x400}, {&(0x7f0000010400)="020000000300000004", 0x9, 0x800}, {&(0x7f0000011600)="ed41000000080000dff4655fe0f4655fe0f4655f000000000000040004", 0x1d, 0x2100}], 0x0, 0x0) syz_mount_image$ext4(&(0x7f0000000000)='ext2\x00', &(0x7f0000000040)='./file0/../file0\x00', 0x0, 0x0, 0x0, 0x104e034, &(0x7f00000001c0)={[{@data_err_abort}]}) 12:29:32 executing program 7: syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000040)='./file0\x00', 0x40000, 0x3, &(0x7f0000000200)=[{&(0x7f0000010000)="2000000080000000060000006a0000000f000000000000000100000001000000004000000040000020000000e0f4655fe0f4655f0100ffff53ef010001000000dff4655f000000000000000001000000000000000b0000000001", 0x5a, 0x400}, {&(0x7f0000010400)="020000000300000004", 0x9, 0x800}, {&(0x7f0000011600)="ed41000000080000dff4655fe0f4655fe0f4655f000000000000040004", 0x1d, 0x2100}], 0x0, &(0x7f0000000080)=ANY=[]) syz_mount_image$ext4(&(0x7f0000000000)='ext2\x00', &(0x7f0000000040)='./file0/../file0\x00', 0x8, 0x0, 0x0, 0x104e034, &(0x7f00000001c0)) [ 1701.896388] FAULT_INJECTION: forcing a failure. [ 1701.896388] name failslab, interval 1, probability 0, space 0, times 0 [ 1701.899036] CPU: 0 PID: 12656 Comm: syz-executor.1 Not tainted 5.10.60 #1 [ 1701.900532] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS rel-1.14.0-0-g155821a1990b-prebuilt.qemu.org 04/01/2014 [ 1701.903001] Call Trace: [ 1701.903588] dump_stack+0x107/0x163 [ 1701.904394] should_fail.cold+0x5/0xa [ 1701.905233] ? __anon_vma_prepare+0x62/0x4f0 [ 1701.906202] should_failslab+0x5/0x10 [ 1701.907035] kmem_cache_alloc+0x5b/0x350 [ 1701.907962] __anon_vma_prepare+0x62/0x4f0 [ 1701.908886] ? __pte_alloc+0x194/0x320 [ 1701.909746] handle_mm_fault+0x2be1/0x3570 [ 1701.910697] ? __pmd_alloc+0x5e0/0x5e0 [ 1701.911621] __get_user_pages+0x61d/0x1400 [ 1701.912573] ? follow_page_mask+0x1820/0x1820 [ 1701.913570] ? perf_trace_lock+0x2cd/0x470 [ 1701.914501] ? hlock_class+0x120/0x120 [ 1701.915376] __get_user_pages_remote+0x1d1/0x860 [ 1701.916440] ? find_held_lock+0x2c/0x110 [ 1701.917341] get_user_pages_remote+0x63/0x90 [ 1701.918314] get_arg_page+0xba/0x200 [ 1701.919131] ? acct_arg_size+0xe0/0xe0 [ 1701.920022] copy_string_kernel+0x1b0/0x440 [ 1701.920995] do_execveat_common.isra.0+0x405/0x670 [ 1701.922084] __x64_sys_execveat+0xe7/0x130 [ 1701.923021] do_syscall_64+0x33/0x40 [ 1701.923858] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 1701.924975] RIP: 0033:0x466609 [ 1701.925680] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1701.929693] RSP: 002b:00007f443d736188 EFLAGS: 00000246 ORIG_RAX: 0000000000000142 [ 1701.931363] RAX: ffffffffffffffda RBX: 000000000056bf80 RCX: 0000000000466609 [ 1701.932933] RDX: 0000000020000380 RSI: 00000000200002c0 RDI: ffffffffffffffff [ 1701.934496] RBP: 00007f443d7361d0 R08: 0000000000000000 R09: 0000000000000000 [ 1701.936064] R10: 0000000020000640 R11: 0000000000000246 R12: 0000000000000002 [ 1701.937624] R13: 00007ffeb6924e7f R14: 00007f443d736300 R15: 0000000000022000 [ 1701.940411] EXT4-fs error (device loop4): ext4_fill_super:4954: inode #2: comm syz-executor.4: iget: root inode unallocated [ 1701.943405] EXT4-fs (loop4): get root inode failed [ 1701.944795] EXT4-fs (loop4): mount failed 12:29:32 executing program 4: syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000040)='./file0\x00', 0x40000, 0x3, &(0x7f0000000200)=[{&(0x7f0000010000)="2000000080000000060000006a0000000f000000000000000100000001000000004000000040000020000000e0f4655fe0f4655f0100ffff53ef010001000000dff4655f000000000000000001000000000000000b00000000010000280200000284", 0x62, 0x400}, {&(0x7f0000010400)="020000000300000004000000", 0xc, 0x800}, {&(0x7f0000011600)="ed41000000080000dff4655fe0f4655fe0f4655f000000000000", 0x1a, 0x2100}], 0x0, &(0x7f0000000080)=ANY=[]) syz_mount_image$ext4(&(0x7f0000000000)='ext2\x00', &(0x7f0000000040)='./file0/../file0\x00', 0x0, 0x0, 0x0, 0x104e034, &(0x7f00000001c0)={[{@data_err_abort}]}) [ 1701.994571] EXT4-fs (loop7): mounted filesystem without journal. Opts: ,errors=continue 12:29:32 executing program 2: r0 = syz_init_net_socket$802154_dgram(0x24, 0x2, 0x0) r1 = dup(r0) sendmsg$BATADV_CMD_GET_BLA_BACKBONE(r1, &(0x7f0000000540)={&(0x7f0000000100), 0xc, &(0x7f0000000500)={0x0}}, 0x0) ioctl$sock_SIOCINQ(r1, 0x541b, &(0x7f0000000000)) r2 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) r3 = syz_genetlink_get_family_id$nl802154(&(0x7f0000000080), 0xffffffffffffffff) r4 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) r5 = syz_genetlink_get_family_id$nl802154(&(0x7f0000000000), 0xffffffffffffffff) ioctl$sock_SIOCGIFINDEX_802154(r4, 0x8933, &(0x7f00000000c0)={'wpan0\x00', 0x0}) sendmsg$NL802154_CMD_GET_WPAN_PHY(r4, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000100)={0x1c, r5, 0xd8499488957a772f, 0x0, 0x0, {}, [@NL802154_ATTR_IFINDEX={0x8, 0x3, r6}]}, 0x1c}}, 0x0) r7 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) r8 = syz_genetlink_get_family_id$nl802154(&(0x7f0000000000), 0xffffffffffffffff) ioctl$sock_SIOCGIFINDEX_802154(r7, 0x8933, &(0x7f00000000c0)={'wpan0\x00', 0x0}) sendmsg$NL802154_CMD_GET_WPAN_PHY(r7, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000100)={0x1c, r8, 0xd8499488957a772f, 0x0, 0x0, {}, [@NL802154_ATTR_IFINDEX={0x8, 0x3, r9}]}, 0x1c}}, 0x0) sendmsg$NL802154_CMD_GET_INTERFACE(r2, &(0x7f00000001c0)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x900}, 0xc, &(0x7f00000000c0)={&(0x7f0000000140)={0x60, r3, 0x2, 0x70bd2b, 0x25dfdbff, {}, [@NL802154_ATTR_WPAN_DEV={0xc, 0x6, 0x2}, @NL802154_ATTR_IFINDEX={0x8}, @NL802154_ATTR_IFINDEX={0x8, 0x3, r6}, @NL802154_ATTR_IFINDEX={0x8}, @NL802154_ATTR_IFINDEX={0x8, 0x3, r9}, @NL802154_ATTR_IFINDEX={0x8}, @NL802154_ATTR_WPAN_DEV={0xc, 0x6, 0x3}, @NL802154_ATTR_WPAN_DEV={0xc, 0x6, 0x3}]}, 0x60}, 0x1, 0x0, 0x0, 0x1}, 0x10) 12:29:32 executing program 0: r0 = syz_io_uring_setup(0x4d4f, &(0x7f0000000080), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=0x0, &(0x7f0000000140)=0x0) syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_POLL_ADD={0x6, 0x0, 0x0, @fd=r0, 0x0, 0x0, 0x0, {0x194}}, 0x0) r3 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0) perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_io_uring_submit(r3, r2, &(0x7f0000000100)=@IORING_OP_SPLICE, 0x4) io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0) execveat(0xffffffffffffffff, &(0x7f00000002c0)='./file0\x00', &(0x7f0000000380), 0x0, 0x1048) 12:29:32 executing program 5: r0 = syz_io_uring_setup(0x4d4f, &(0x7f0000000080), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=0x0, &(0x7f0000000140)=0x0) syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_POLL_ADD={0x6, 0x0, 0x0, @fd=r0, 0x0, 0x0, 0x0, {0x194}}, 0x0) r3 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0) perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_io_uring_submit(r3, r2, &(0x7f0000000100)=@IORING_OP_SPLICE, 0x4) io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0) execveat(0xffffffffffffffff, &(0x7f00000002c0)='./file0\x00', 0x0, 0x0, 0x600) 12:29:32 executing program 6: syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000040)='./file0\x00', 0x40000, 0x3, &(0x7f0000000200)=[{&(0x7f0000010000)="2000000080000000060000006a0000000f000000000000000100000001000000004000000040000020000000e0f4655fe0f4655f0100ffff53ef010001000000dff4655f000000000000000001000000000000000b0000000001", 0x5a, 0x400}, {&(0x7f0000010400)="020000000300000004", 0x9, 0x800}, {&(0x7f0000011600)="ed41000000080000dff4655fe0f4655fe0f4655f000000000000040004", 0x1d, 0x2100}], 0x0, &(0x7f0000000080)=ANY=[]) syz_mount_image$ext4(0x0, &(0x7f0000000040)='./file0/../file0\x00', 0x0, 0x0, 0x0, 0x104e034, &(0x7f00000001c0)={[{@data_err_abort}]}) 12:29:32 executing program 3: r0 = syz_io_uring_setup(0x4d4f, &(0x7f0000000080), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200), &(0x7f0000000140)=0x0) r2 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0) perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_io_uring_submit(r2, r1, &(0x7f0000000100)=@IORING_OP_SPLICE, 0x4) io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0) execveat(0xffffffffffffffff, &(0x7f00000002c0)='./file0\x00', 0x0, 0x0, 0x12) 12:29:32 executing program 1 (fault-call:6 fault-nth:20): r0 = syz_io_uring_setup(0x4d4f, &(0x7f0000000080), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=0x0, &(0x7f0000000140)=0x0) syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_POLL_ADD={0x6, 0x0, 0x0, @fd=r0, 0x0, 0x0, 0x0, {0x194}}, 0x0) r3 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0) perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_io_uring_submit(r3, r2, &(0x7f0000000100)=@IORING_OP_SPLICE, 0x4) io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0) execveat(0xffffffffffffffff, &(0x7f00000002c0)='./file0\x00', &(0x7f0000000380), &(0x7f0000000640)=[0x0, 0x0, 0x0], 0x0) 12:29:32 executing program 7: syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000040)='./file0\x00', 0x40000, 0x3, &(0x7f0000000200)=[{&(0x7f0000010000)="2000000080000000060000006a0000000f000000000000000100000001000000004000000040000020000000e0f4655fe0f4655f0100ffff53ef010001000000dff4655f000000000000000001000000000000000b0000000001", 0x5a, 0x400}, {&(0x7f0000010400)="020000000300000004", 0x9, 0x800}, {&(0x7f0000011600)="ed41000000080000dff4655fe0f4655fe0f4655f000000000000040004", 0x1d, 0x2100}], 0x0, &(0x7f0000000080)=ANY=[]) syz_mount_image$ext4(&(0x7f0000000000)='ext2\x00', &(0x7f0000000040)='./file0/../file0\x00', 0x9, 0x0, 0x0, 0x104e034, &(0x7f00000001c0)) 12:29:32 executing program 2: r0 = syz_init_net_socket$802154_dgram(0x24, 0x2, 0x0) r1 = dup(r0) sendmsg$BATADV_CMD_GET_BLA_BACKBONE(r1, &(0x7f0000000540)={&(0x7f0000000100), 0xc, &(0x7f0000000500)={0x0}}, 0x0) ioctl$sock_SIOCINQ(r1, 0x541b, &(0x7f0000000000)) recvmmsg(r0, &(0x7f00000001c0)=[{{0x0, 0x0, &(0x7f0000000180), 0x0, &(0x7f0000000280)=""/211, 0xd3}, 0x8000}], 0x1, 0x10000, &(0x7f0000000200)) r2 = socket$netlink(0x10, 0x3, 0x0) sendmsg$nl_generic(r2, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000240)={&(0x7f0000000080)=ANY=[@ANYBLOB="280000002c00010d000000000000e4ffffffffffffffffff"], 0x28}}, 0x0) sendmsg$NL80211_CMD_GET_REG(r2, &(0x7f0000000140)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x200000}, 0xc, &(0x7f00000000c0)={&(0x7f0000000080)={0x18, 0x0, 0x200, 0x70bd2a, 0x25dfdbfe, {}, [@NL80211_ATTR_SOCKET_OWNER={0x4}]}, 0x18}, 0x1, 0x0, 0x0, 0x1}, 0x0) [ 1702.327698] EXT4-fs (loop6): mounted filesystem without journal. Opts: ,errors=continue [ 1702.348764] FAULT_INJECTION: forcing a failure. [ 1702.348764] name failslab, interval 1, probability 0, space 0, times 0 [ 1702.351176] CPU: 1 PID: 12713 Comm: syz-executor.1 Not tainted 5.10.60 #1 [ 1702.352670] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS rel-1.14.0-0-g155821a1990b-prebuilt.qemu.org 04/01/2014 [ 1702.355093] Call Trace: [ 1702.355679] dump_stack+0x107/0x163 [ 1702.356460] should_fail.cold+0x5/0xa [ 1702.357281] ? create_object.isra.0+0x3a/0xa10 [ 1702.358243] should_failslab+0x5/0x10 [ 1702.359061] kmem_cache_alloc+0x5b/0x350 [ 1702.359930] create_object.isra.0+0x3a/0xa10 [ 1702.360876] ? __kasan_kmalloc.constprop.0+0xc2/0xd0 [ 1702.361966] kmem_cache_alloc+0x15b/0x350 [ 1702.362847] __anon_vma_prepare+0x62/0x4f0 [ 1702.363766] ? __pte_alloc+0x194/0x320 [ 1702.364601] handle_mm_fault+0x2be1/0x3570 [ 1702.365511] ? __pmd_alloc+0x5e0/0x5e0 [ 1702.366361] __get_user_pages+0x61d/0x1400 [ 1702.367288] ? follow_page_mask+0x1820/0x1820 [ 1702.368252] ? hlock_class+0x120/0x120 [ 1702.369098] __get_user_pages_remote+0x1d1/0x860 [ 1702.370121] ? find_held_lock+0x2c/0x110 [ 1702.370994] get_user_pages_remote+0x63/0x90 [ 1702.371959] get_arg_page+0xba/0x200 [ 1702.372755] ? acct_arg_size+0xe0/0xe0 [ 1702.373605] copy_string_kernel+0x1b0/0x440 [ 1702.374547] do_execveat_common.isra.0+0x405/0x670 [ 1702.375622] __x64_sys_execveat+0xe7/0x130 [ 1702.376539] do_syscall_64+0x33/0x40 [ 1702.377343] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 1702.378447] RIP: 0033:0x466609 [ 1702.379142] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1702.383117] RSP: 002b:00007f443d736188 EFLAGS: 00000246 ORIG_RAX: 0000000000000142 [ 1702.384775] RAX: ffffffffffffffda RBX: 000000000056bf80 RCX: 0000000000466609 [ 1702.386314] RDX: 0000000020000380 RSI: 00000000200002c0 RDI: ffffffffffffffff [ 1702.387856] RBP: 00007f443d7361d0 R08: 0000000000000000 R09: 0000000000000000 [ 1702.389390] R10: 0000000020000640 R11: 0000000000000246 R12: 0000000000000002 [ 1702.390925] R13: 00007ffeb6924e7f R14: 00007f443d736300 R15: 0000000000022000 [ 1702.445299] EXT4-fs (loop7): mounted filesystem without journal. Opts: ,errors=continue [ 1702.448432] EXT4-fs error (device loop4): ext4_fill_super:4954: inode #2: comm syz-executor.4: iget: root inode unallocated [ 1702.457927] EXT4-fs (loop4): get root inode failed [ 1702.459069] EXT4-fs (loop4): mount failed [ 1702.530674] netlink: 4 bytes leftover after parsing attributes in process `syz-executor.2'. [ 1702.545919] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=0 sclass=netlink_route_socket pid=12734 comm=syz-executor.2 [ 1702.566454] netlink: 4 bytes leftover after parsing attributes in process `syz-executor.2'. 12:29:45 executing program 2: r0 = syz_init_net_socket$802154_dgram(0x24, 0x2, 0x0) r1 = dup(r0) sendmsg$BATADV_CMD_GET_BLA_BACKBONE(r1, &(0x7f0000000540)={&(0x7f0000000100), 0xc, &(0x7f0000000500)={0x0}}, 0x0) r2 = openat$vcs(0xffffffffffffff9c, &(0x7f0000000000), 0x10000, 0x0) sendmsg$IPVS_CMD_GET_INFO(r2, &(0x7f00000001c0)={&(0x7f0000000080)={0x10, 0x0, 0x0, 0x800}, 0xc, &(0x7f00000000c0)={&(0x7f0000000140)={0x74, 0x0, 0x400, 0x70bd2d, 0x25dfdbff, {}, [@IPVS_CMD_ATTR_TIMEOUT_UDP={0x8}, @IPVS_CMD_ATTR_DEST={0x28, 0x2, 0x0, 0x1, [@IPVS_DEST_ATTR_WEIGHT={0x8, 0x4, 0xa45b}, @IPVS_DEST_ATTR_L_THRESH={0x8, 0x6, 0x84}, @IPVS_DEST_ATTR_ADDR={0x14, 0x1, @ipv4=@multicast1}]}, @IPVS_CMD_ATTR_TIMEOUT_TCP={0x8, 0x4, 0xe9}, @IPVS_CMD_ATTR_DAEMON={0x28, 0x3, 0x0, 0x1, [@IPVS_DAEMON_ATTR_MCAST_GROUP6={0x14, 0x6, @local}, @IPVS_DAEMON_ATTR_MCAST_PORT={0x6, 0x7, 0x4e24}, @IPVS_DAEMON_ATTR_MCAST_TTL={0x5, 0x8, 0x4}]}]}, 0x74}, 0x1, 0x0, 0x0, 0x804}, 0x4080) ioctl$sock_SIOCINQ(r1, 0x541b, &(0x7f0000000040)) 12:29:45 executing program 0: r0 = syz_io_uring_setup(0x4d4f, &(0x7f0000000080), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=0x0, &(0x7f0000000140)=0x0) syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_POLL_ADD={0x6, 0x0, 0x0, @fd=r0, 0x0, 0x0, 0x0, {0x194}}, 0x0) r3 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0) perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_io_uring_submit(r3, r2, &(0x7f0000000100)=@IORING_OP_SPLICE, 0x4) io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0) execveat(0xffffffffffffffff, &(0x7f00000002c0)='./file0\x00', &(0x7f0000000380), 0x0, 0x104c) 12:29:45 executing program 5: r0 = syz_io_uring_setup(0x4d4f, &(0x7f0000000080), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=0x0, &(0x7f0000000140)=0x0) syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_POLL_ADD={0x6, 0x0, 0x0, @fd=r0, 0x0, 0x0, 0x0, {0x194}}, 0x0) r3 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0) perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_io_uring_submit(r3, r2, &(0x7f0000000100)=@IORING_OP_SPLICE, 0x4) io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0) execveat(0xffffffffffffffff, &(0x7f00000002c0)='./file0\x00', 0x0, 0x0, 0x700) 12:29:45 executing program 4: syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000040)='./file0\x00', 0x40000, 0x3, &(0x7f0000000200)=[{&(0x7f0000010000)="2000000080000000060000006a0000000f000000000000000100000001000000004000000040000020000000e0f4655fe0f4655f0100ffff53ef010001000000dff4655f000000000000000001000000000000000b00000000010000280200000284", 0x62, 0x400}, {&(0x7f0000010400)="020000000300000004000000", 0xc, 0x800}, {&(0x7f0000011600)="ed41000000080000dff4655fe0f4655fe0f4655f000000000000", 0x1a, 0x2100}], 0x0, &(0x7f0000000080)=ANY=[]) syz_mount_image$ext4(&(0x7f0000000000)='ext2\x00', &(0x7f0000000040)='./file0/../file0\x00', 0x0, 0x0, 0x0, 0x104e034, &(0x7f00000001c0)={[{@data_err_abort}]}) 12:29:45 executing program 1 (fault-call:6 fault-nth:21): r0 = syz_io_uring_setup(0x4d4f, &(0x7f0000000080), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=0x0, &(0x7f0000000140)=0x0) syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_POLL_ADD={0x6, 0x0, 0x0, @fd=r0, 0x0, 0x0, 0x0, {0x194}}, 0x0) r3 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0) perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_io_uring_submit(r3, r2, &(0x7f0000000100)=@IORING_OP_SPLICE, 0x4) io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0) execveat(0xffffffffffffffff, &(0x7f00000002c0)='./file0\x00', &(0x7f0000000380), &(0x7f0000000640)=[0x0, 0x0, 0x0], 0x0) 12:29:45 executing program 3: r0 = syz_io_uring_setup(0x4d4f, &(0x7f0000000080), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200), &(0x7f0000000140)=0x0) r2 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0) perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_io_uring_submit(r2, r1, &(0x7f0000000100)=@IORING_OP_SPLICE, 0x4) io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0) execveat(0xffffffffffffffff, &(0x7f00000002c0)='./file0\x00', 0x0, 0x0, 0x18) 12:29:45 executing program 7: syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000040)='./file0\x00', 0x40000, 0x3, &(0x7f0000000200)=[{&(0x7f0000010000)="2000000080000000060000006a0000000f000000000000000100000001000000004000000040000020000000e0f4655fe0f4655f0100ffff53ef010001000000dff4655f000000000000000001000000000000000b0000000001", 0x5a, 0x400}, {&(0x7f0000010400)="020000000300000004", 0x9, 0x800}, {&(0x7f0000011600)="ed41000000080000dff4655fe0f4655fe0f4655f000000000000040004", 0x1d, 0x2100}], 0x0, &(0x7f0000000080)=ANY=[]) syz_mount_image$ext4(&(0x7f0000000000)='ext2\x00', &(0x7f0000000040)='./file0/../file0\x00', 0xa, 0x0, 0x0, 0x104e034, &(0x7f00000001c0)) 12:29:45 executing program 6: syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000040)='./file0\x00', 0x40000, 0x3, &(0x7f0000000200)=[{&(0x7f0000010000)="2000000080000000060000006a0000000f000000000000000100000001000000004000000040000020000000e0f4655fe0f4655f0100ffff53ef010001000000dff4655f000000000000000001000000000000000b0000000001", 0x5a, 0x400}, {&(0x7f0000010400)="020000000300000004", 0x9, 0x800}, {&(0x7f0000011600)="ed41000000080000dff4655fe0f4655fe0f4655f000000000000040004", 0x1d, 0x2100}], 0x0, &(0x7f0000000080)=ANY=[]) syz_mount_image$ext4(0x0, &(0x7f0000000040)='./file0/../file0\x00', 0x0, 0x0, 0x0, 0x104e034, &(0x7f00000001c0)={[{@data_err_abort}]}) [ 1715.776909] EXT4-fs error (device loop4): ext4_fill_super:4954: inode #2: comm syz-executor.4: iget: root inode unallocated [ 1715.791439] EXT4-fs (loop4): get root inode failed [ 1715.792616] EXT4-fs (loop4): mount failed [ 1715.816531] FAULT_INJECTION: forcing a failure. [ 1715.816531] name failslab, interval 1, probability 0, space 0, times 0 [ 1715.819059] CPU: 1 PID: 12763 Comm: syz-executor.1 Not tainted 5.10.60 #1 [ 1715.820553] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS rel-1.14.0-0-g155821a1990b-prebuilt.qemu.org 04/01/2014 [ 1715.822912] Call Trace: [ 1715.823488] dump_stack+0x107/0x163 [ 1715.824300] should_fail.cold+0x5/0xa [ 1715.825100] ? __anon_vma_prepare+0x281/0x4f0 [ 1715.826037] should_failslab+0x5/0x10 [ 1715.826872] kmem_cache_alloc+0x5b/0x350 [ 1715.827768] __anon_vma_prepare+0x281/0x4f0 [ 1715.828779] ? __pte_alloc+0x194/0x320 [ 1715.829624] handle_mm_fault+0x2be1/0x3570 [ 1715.830533] ? __pmd_alloc+0x5e0/0x5e0 [ 1715.831565] __get_user_pages+0x61d/0x1400 [ 1715.832596] ? follow_page_mask+0x1820/0x1820 [ 1715.833629] ? hlock_class+0x120/0x120 [ 1715.834584] __get_user_pages_remote+0x1d1/0x860 [ 1715.835662] ? find_held_lock+0x2c/0x110 [ 1715.836562] get_user_pages_remote+0x63/0x90 [ 1715.837622] get_arg_page+0xba/0x200 [ 1715.838460] ? acct_arg_size+0xe0/0xe0 [ 1715.839344] copy_string_kernel+0x1b0/0x440 [ 1715.840452] do_execveat_common.isra.0+0x405/0x670 [ 1715.841537] __x64_sys_execveat+0xe7/0x130 [ 1715.842499] do_syscall_64+0x33/0x40 [ 1715.843291] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 1715.844497] RIP: 0033:0x466609 [ 1715.845195] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1715.849050] RSP: 002b:00007f443d736188 EFLAGS: 00000246 ORIG_RAX: 0000000000000142 [ 1715.850643] RAX: ffffffffffffffda RBX: 000000000056bf80 RCX: 0000000000466609 [ 1715.852139] RDX: 0000000020000380 RSI: 00000000200002c0 RDI: ffffffffffffffff [ 1715.853622] RBP: 00007f443d7361d0 R08: 0000000000000000 R09: 0000000000000000 [ 1715.855107] R10: 0000000020000640 R11: 0000000000000246 R12: 0000000000000002 [ 1715.856635] R13: 00007ffeb6924e7f R14: 00007f443d736300 R15: 0000000000022000 12:29:46 executing program 2: r0 = syz_init_net_socket$802154_dgram(0x24, 0x2, 0x0) r1 = dup(r0) socket$inet6_icmp_raw(0xa, 0x3, 0x3a) sendmsg$BATADV_CMD_GET_BLA_BACKBONE(r1, &(0x7f0000000540)={&(0x7f0000000100), 0xc, &(0x7f0000000500)={0x0}}, 0x0) ioctl$sock_SIOCINQ(r1, 0x541b, &(0x7f0000000000)) 12:29:46 executing program 0: r0 = syz_io_uring_setup(0x4d4f, &(0x7f0000000080), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=0x0, &(0x7f0000000140)=0x0) syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_POLL_ADD={0x6, 0x0, 0x0, @fd=r0, 0x0, 0x0, 0x0, {0x194}}, 0x0) r3 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0) perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_io_uring_submit(r3, r2, &(0x7f0000000100)=@IORING_OP_SPLICE, 0x4) io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0) execveat(0xffffffffffffffff, &(0x7f00000002c0)='./file0\x00', &(0x7f0000000380), 0x0, 0x1068) [ 1715.913418] EXT4-fs (loop7): mounted filesystem without journal. Opts: ,errors=continue [ 1715.917684] EXT4-fs (loop6): mounted filesystem without journal. Opts: ,errors=continue 12:29:46 executing program 3: r0 = syz_io_uring_setup(0x4d4f, &(0x7f0000000080), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200), &(0x7f0000000140)=0x0) r2 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0) perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_io_uring_submit(r2, r1, &(0x7f0000000100)=@IORING_OP_SPLICE, 0x4) io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0) execveat(0xffffffffffffffff, &(0x7f00000002c0)='./file0\x00', 0x0, 0x0, 0x1e) 12:29:46 executing program 6: syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000040)='./file0\x00', 0x40000, 0x3, &(0x7f0000000200)=[{&(0x7f0000010000)="2000000080000000060000006a0000000f000000000000000100000001000000004000000040000020000000e0f4655fe0f4655f0100ffff53ef010001000000dff4655f000000000000000001000000000000000b0000000001", 0x5a, 0x400}, {&(0x7f0000010400)="020000000300000004", 0x9, 0x800}, {&(0x7f0000011600)="ed41000000080000dff4655fe0f4655fe0f4655f000000000000040004", 0x1d, 0x2100}], 0x0, &(0x7f0000000080)=ANY=[]) syz_mount_image$ext4(0x0, &(0x7f0000000040)='./file0/../file0\x00', 0x0, 0x0, 0x0, 0x104e034, &(0x7f00000001c0)={[{@data_err_abort}]}) 12:29:46 executing program 7: syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000040)='./file0\x00', 0x40000, 0x3, &(0x7f0000000200)=[{&(0x7f0000010000)="2000000080000000060000006a0000000f000000000000000100000001000000004000000040000020000000e0f4655fe0f4655f0100ffff53ef010001000000dff4655f000000000000000001000000000000000b0000000001", 0x5a, 0x400}, {&(0x7f0000010400)="020000000300000004", 0x9, 0x800}, {&(0x7f0000011600)="ed41000000080000dff4655fe0f4655fe0f4655f000000000000040004", 0x1d, 0x2100}], 0x0, &(0x7f0000000080)=ANY=[]) syz_mount_image$ext4(&(0x7f0000000000)='ext2\x00', &(0x7f0000000040)='./file0/../file0\x00', 0xb, 0x0, 0x0, 0x104e034, &(0x7f00000001c0)) 12:29:46 executing program 4: syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000040)='./file0\x00', 0x40000, 0x3, &(0x7f0000000200)=[{&(0x7f0000010000)="2000000080000000060000006a0000000f000000000000000100000001000000004000000040000020000000e0f4655fe0f4655f0100ffff53ef010001000000dff4655f000000000000000001000000000000000b00000000010000280200000284", 0x62, 0x400}, {&(0x7f0000010400)="020000000300000004000000", 0xc, 0x800}, {&(0x7f0000011600)="ed41000000080000dff4655fe0f4655fe0f4655f000000000000", 0x1a, 0x2100}], 0x0, &(0x7f0000000080)=ANY=[]) syz_mount_image$ext4(&(0x7f0000000000)='ext2\x00', &(0x7f0000000040)='./file0/../file0\x00', 0x0, 0x0, 0x0, 0x104e034, &(0x7f00000001c0)={[{@data_err_abort}]}) 12:29:46 executing program 5: r0 = syz_io_uring_setup(0x4d4f, &(0x7f0000000080), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=0x0, &(0x7f0000000140)=0x0) syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_POLL_ADD={0x6, 0x0, 0x0, @fd=r0, 0x0, 0x0, 0x0, {0x194}}, 0x0) r3 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0) perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_io_uring_submit(r3, r2, &(0x7f0000000100)=@IORING_OP_SPLICE, 0x4) io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0) execveat(0xffffffffffffffff, &(0x7f00000002c0)='./file0\x00', 0x0, 0x0, 0xc00) 12:29:46 executing program 2: r0 = syz_init_net_socket$802154_dgram(0x24, 0x2, 0x0) r1 = dup(r0) sendmsg$unix(0xffffffffffffffff, &(0x7f00000006c0)={&(0x7f0000000140)=@file={0x1, './file0\x00'}, 0x6e, &(0x7f0000000480)=[{&(0x7f00000001c0)="6ed6922b75988e49b7517d2a7058a78a1abb40352be1c713f1f93be3e76ca9bd3a35bf8c22c4a981b656d0f8ff3d02bc34a9f44d021e6add4c4db455d629c7e22a57764affea3af5742fb7edea77c78135fe33628d2136c241df4eca174e7f83b9ec7d9c58ca7672ac90cec587d58e770129c9a02650c246f81295e2ebae63b033638b346acd6f307b4b861c2ac0e5c2a36282e398675683deb80f14d9c56c27d85c47ab8aaea046e7d119a0f73ec532d0610bcd9823e538981bc8955790c42ddeb1dde308ef61abceac9f29f251a8cfaa7b193b7263f8b30b3f78f5f17ee68a8aacf22e4ddd", 0xe6}, {&(0x7f00000002c0)="a5c893f5cae6a5bd8d0fff6451b2ab16281f99b5faa5a5b59992f23f897f7c05f2acddd96a9f970d66201a52cafe9a9c499b66eb9bf792470d82223704c0992132b8ae6941fee1bcce35b8bf6a7b8f6bbe5bbc4e76db2624cd95b68b66ed80490351de357b8194b99d7bc8319f0f839320ee726eb1a38ce06f864886f02e0e013bf2c4effb15f50a779f3f3666ce64c9fd485bfaadcefcac80179cf7cef8b4fe4854dcfef6f8bbeb336e2d59601d4d531c5ed2d9", 0xb4}, {&(0x7f0000000380)="c9b821f660c67ccd3adc29866691b8f7658c94dda1c5e9304daa12751b3cd483f5dbcca29b92511b0f58a100165f6ecb7126675f042ba62fa48fdaa8332b64442c47a68e19bd5b076edfb9e7bc4495ae1c7be9faf9f4edda1609510295de6770d893207907a2e8882ff36d9d36cdb1e1a7261f68b40e148e6f8a1f", 0x7b}, {&(0x7f0000000400)="46ed062bcd4ca7d6da0bde5352f78174a4c5be88ef7395ef68d8abf76e8fd555c947d60689b36629ae833cac0ec64ece3550eb14c0100a926c00a631a78d520162ef6b4cc9f060bfe8c7d5104b5fcb163cbe4820a4b12a4d0320083d1fd93098b9502ac904c204dfe884", 0x6a}, {&(0x7f0000000580)="4799fc6a02a6a0ce1aba61ab4402b39d2b06c5d82212627e6e179355917c0a09484aa0510f7afd1aae179688beac89a640d5e61571e3e328eca8183796c11c70994ba9b3d5adbe7cf2f35dd94a2ea43b8cae7910a12ffc5bd22d735b217a2aab046818ee08a7ae2b3ef56f403abf7df392ac286c6d0b632774a8993ad4ac2faa48415b1138d1e460b99decda80a4f789c42efbfb90938509275715b9e23a0eb312300339f0681f6640b0a08ae64a5648447567fe2e72b0b63d50c7e41d7e738b635abbfb86d5e606ee0418d5c4ab5b45c4c1f374eae97e06ff99890e71f3530f81f8f1986f558b661bbb5f5a8410717737fbc2a983", 0xf5}], 0x5, &(0x7f0000000680), 0x0, 0x20000000}, 0x10) sendmsg$BATADV_CMD_GET_BLA_BACKBONE(r1, &(0x7f0000000540)={&(0x7f0000000100), 0xc, &(0x7f0000000500)={0x0}}, 0x0) bind$802154_dgram(r0, &(0x7f0000000080)={0x24, @long={0x3, 0x2, {0xaaaaaaaaaaaa0302}}}, 0x14) connect$802154_dgram(r0, &(0x7f00000000c0)={0x24, @long}, 0x14) openat(r1, &(0x7f0000000040)='./file0\x00', 0xf805c1, 0x110) r2 = creat(&(0x7f0000000680)='./file0\x00', 0x166) sendmsg$NFT_MSG_GETFLOWTABLE(r2, &(0x7f0000000840)={&(0x7f0000000700)={0x10, 0x0, 0x0, 0x200}, 0xc, &(0x7f0000000800)={&(0x7f0000000740)={0x9c, 0x17, 0xa, 0x301, 0x0, 0x0, {0x5, 0x0, 0x7}, [@NFTA_FLOWTABLE_TABLE={0x9, 0x1, 'syz0\x00'}, @NFTA_FLOWTABLE_NAME={0x9, 0x2, 'syz1\x00'}, @NFTA_FLOWTABLE_HANDLE={0xc, 0x5, 0x1, 0x0, 0x5}, @NFTA_FLOWTABLE_TABLE={0x9, 0x1, 'syz1\x00'}, @NFTA_FLOWTABLE_HOOK={0x38, 0x3, 0x0, 0x1, [@NFTA_FLOWTABLE_HOOK_PRIORITY={0x8, 0x2, 0x1, 0x0, 0xffffff8b}, @NFTA_FLOWTABLE_HOOK_DEVS={0x2c, 0x3, 0x0, 0x1, [{0x14, 0x1, 'veth0_to_bond\x00'}, {0x14, 0x1, 'veth1_to_batadv\x00'}]}]}, @NFTA_FLOWTABLE_HOOK={0x14, 0x3, 0x0, 0x1, [@NFTA_FLOWTABLE_HOOK_NUM={0x8}, @NFTA_FLOWTABLE_HOOK_PRIORITY={0x8, 0x2, 0x1, 0x0, 0x2}]}, @NFTA_FLOWTABLE_NAME={0x9, 0x2, 'syz2\x00'}]}, 0x9c}, 0x1, 0x0, 0x0, 0x40000}, 0x18000) ioctl$sock_SIOCINQ(r1, 0x541b, &(0x7f0000000000)) 12:29:46 executing program 0: r0 = syz_io_uring_setup(0x4d4f, &(0x7f0000000080), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=0x0, &(0x7f0000000140)=0x0) syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_POLL_ADD={0x6, 0x0, 0x0, @fd=r0, 0x0, 0x0, 0x0, {0x194}}, 0x0) r3 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0) perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_io_uring_submit(r3, r2, &(0x7f0000000100)=@IORING_OP_SPLICE, 0x4) io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0) execveat(0xffffffffffffffff, &(0x7f00000002c0)='./file0\x00', &(0x7f0000000380), 0x0, 0x106c) [ 1716.208835] EXT4-fs (loop4): couldn't mount as ext2 due to feature incompatibilities 12:29:46 executing program 1 (fault-call:6 fault-nth:22): r0 = syz_io_uring_setup(0x4d4f, &(0x7f0000000080), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=0x0, &(0x7f0000000140)=0x0) syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_POLL_ADD={0x6, 0x0, 0x0, @fd=r0, 0x0, 0x0, 0x0, {0x194}}, 0x0) r3 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0) perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_io_uring_submit(r3, r2, &(0x7f0000000100)=@IORING_OP_SPLICE, 0x4) io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0) execveat(0xffffffffffffffff, &(0x7f00000002c0)='./file0\x00', &(0x7f0000000380), &(0x7f0000000640)=[0x0, 0x0, 0x0], 0x0) 12:29:46 executing program 4: syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000040)='./file0\x00', 0x40000, 0x3, &(0x7f0000000200)=[{&(0x7f0000010000)="2000000080000000060000006a0000000f000000000000000100000001000000004000000040000020000000e0f4655fe0f4655f0100ffff53ef010001000000dff4655f000000000000000001000000000000000b00000000010000280200000284", 0x62, 0x400}, {&(0x7f0000010400)="020000000300000004000000", 0xc, 0x800}, {&(0x7f0000011600)="ed41000000080000dff4655fe0f4655fe0f4655f0000000000000400", 0x1c, 0x2100}], 0x0, &(0x7f0000000080)=ANY=[]) syz_mount_image$ext4(&(0x7f0000000000)='ext2\x00', &(0x7f0000000040)='./file0/../file0\x00', 0x0, 0x0, 0x0, 0x104e034, &(0x7f00000001c0)={[{@data_err_abort}]}) [ 1716.293217] EXT4-fs (loop6): mounted filesystem without journal. Opts: ,errors=continue [ 1716.302068] EXT4-fs (loop7): mounted filesystem without journal. Opts: ,errors=continue [ 1716.305765] EXT4-fs (loop7): re-mounted. Opts: ,errors=continue [ 1716.369923] FAULT_INJECTION: forcing a failure. [ 1716.369923] name failslab, interval 1, probability 0, space 0, times 0 [ 1716.371263] CPU: 1 PID: 12843 Comm: syz-executor.1 Not tainted 5.10.60 #1 [ 1716.372058] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS rel-1.14.0-0-g155821a1990b-prebuilt.qemu.org 04/01/2014 [ 1716.373321] Call Trace: [ 1716.373622] dump_stack+0x107/0x163 [ 1716.374030] should_fail.cold+0x5/0xa [ 1716.374467] ? create_object.isra.0+0x3a/0xa10 [ 1716.374989] should_failslab+0x5/0x10 [ 1716.375423] kmem_cache_alloc+0x5b/0x350 [ 1716.375896] create_object.isra.0+0x3a/0xa10 [ 1716.376393] ? __kasan_kmalloc.constprop.0+0xc2/0xd0 [ 1716.376967] kmem_cache_alloc+0x15b/0x350 [ 1716.377448] __anon_vma_prepare+0x281/0x4f0 [ 1716.377931] ? __pte_alloc+0x194/0x320 [ 1716.378374] handle_mm_fault+0x2be1/0x3570 [ 1716.378851] ? __pmd_alloc+0x5e0/0x5e0 [ 1716.379307] __get_user_pages+0x61d/0x1400 [ 1716.379802] ? follow_page_mask+0x1820/0x1820 [ 1716.380322] ? hlock_class+0x120/0x120 [ 1716.380759] __get_user_pages_remote+0x1d1/0x860 [ 1716.381302] ? find_held_lock+0x2c/0x110 [ 1716.381754] get_user_pages_remote+0x63/0x90 [ 1716.382263] get_arg_page+0xba/0x200 [ 1716.382678] ? acct_arg_size+0xe0/0xe0 [ 1716.383124] copy_string_kernel+0x1b0/0x440 [ 1716.383619] do_execveat_common.isra.0+0x405/0x670 [ 1716.384207] __x64_sys_execveat+0xe7/0x130 [ 1716.384697] do_syscall_64+0x33/0x40 [ 1716.385132] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 1716.385717] RIP: 0033:0x466609 [ 1716.386089] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1716.388221] RSP: 002b:00007f443d736188 EFLAGS: 00000246 ORIG_RAX: 0000000000000142 [ 1716.389099] RAX: ffffffffffffffda RBX: 000000000056bf80 RCX: 0000000000466609 [ 1716.389920] RDX: 0000000020000380 RSI: 00000000200002c0 RDI: ffffffffffffffff [ 1716.390752] RBP: 00007f443d7361d0 R08: 0000000000000000 R09: 0000000000000000 [ 1716.391577] R10: 0000000020000640 R11: 0000000000000246 R12: 0000000000000002 [ 1716.392413] R13: 00007ffeb6924e7f R14: 00007f443d736300 R15: 0000000000022000 [ 1716.432523] EXT4-fs (loop4): corrupt root inode, run e2fsck [ 1716.433573] EXT4-fs (loop4): mount failed 12:30:00 executing program 4: syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000040)='./file0\x00', 0x40000, 0x3, &(0x7f0000000200)=[{&(0x7f0000010000)="2000000080000000060000006a0000000f000000000000000100000001000000004000000040000020000000e0f4655fe0f4655f0100ffff53ef010001000000dff4655f000000000000000001000000000000000b00000000010000280200000284", 0x62, 0x400}, {&(0x7f0000010400)="020000000300000004000000", 0xc, 0x800}, {&(0x7f0000011600)="ed41000000080000dff4655fe0f4655fe0f4655f0000000000000400", 0x1c, 0x2100}], 0x0, &(0x7f0000000080)=ANY=[]) syz_mount_image$ext4(&(0x7f0000000000)='ext2\x00', &(0x7f0000000040)='./file0/../file0\x00', 0x0, 0x0, 0x0, 0x104e034, &(0x7f00000001c0)={[{@data_err_abort}]}) 12:30:00 executing program 1 (fault-call:6 fault-nth:23): r0 = syz_io_uring_setup(0x4d4f, &(0x7f0000000080), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=0x0, &(0x7f0000000140)=0x0) syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_POLL_ADD={0x6, 0x0, 0x0, @fd=r0, 0x0, 0x0, 0x0, {0x194}}, 0x0) r3 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0) perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_io_uring_submit(r3, r2, &(0x7f0000000100)=@IORING_OP_SPLICE, 0x4) io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0) execveat(0xffffffffffffffff, &(0x7f00000002c0)='./file0\x00', &(0x7f0000000380), &(0x7f0000000640)=[0x0, 0x0, 0x0], 0x0) 12:30:00 executing program 3: r0 = syz_io_uring_setup(0x4d4f, &(0x7f0000000080), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200), &(0x7f0000000140)=0x0) r2 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0) perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_io_uring_submit(r2, r1, &(0x7f0000000100)=@IORING_OP_SPLICE, 0x4) io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0) execveat(0xffffffffffffffff, &(0x7f00000002c0)='./file0\x00', 0x0, 0x0, 0x24) 12:30:00 executing program 6: syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000040)='./file0\x00', 0x40000, 0x3, &(0x7f0000000200)=[{&(0x7f0000010000)="2000000080000000060000006a0000000f000000000000000100000001000000004000000040000020000000e0f4655fe0f4655f0100ffff53ef010001000000dff4655f000000000000000001000000000000000b0000000001", 0x5a, 0x400}, {&(0x7f0000010400)="020000000300000004", 0x9, 0x800}, {&(0x7f0000011600)="ed41000000080000dff4655fe0f4655fe0f4655f000000000000040004", 0x1d, 0x2100}], 0x0, &(0x7f0000000080)=ANY=[]) syz_mount_image$ext4(&(0x7f0000000000)='ext2\x00', 0x0, 0x0, 0x0, 0x0, 0x104e034, &(0x7f00000001c0)={[{@data_err_abort}]}) 12:30:00 executing program 2: r0 = syz_init_net_socket$802154_dgram(0x24, 0x2, 0x0) r1 = accept(r0, &(0x7f0000000080)=@pppol2tp={0x18, 0x1, {0x0, 0xffffffffffffffff, {0x2, 0x0, @local}}}, &(0x7f0000000100)=0x80) connect$802154_dgram(r1, &(0x7f0000000140)={0x24, @short={0x2, 0xffff, 0xaaa0}}, 0x14) r2 = dup(r0) sendmsg$BATADV_CMD_GET_BLA_BACKBONE(r2, &(0x7f0000000540)={&(0x7f0000000040), 0xc, &(0x7f0000000500)={0x0}}, 0x0) ioctl$sock_SIOCINQ(r2, 0x541b, &(0x7f0000000000)) 12:30:00 executing program 7: syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000040)='./file0\x00', 0x40000, 0x3, &(0x7f0000000200)=[{&(0x7f0000010000)="2000000080000000060000006a0000000f000000000000000100000001000000004000000040000020000000e0f4655fe0f4655f0100ffff53ef010001000000dff4655f000000000000000001000000000000000b0000000001", 0x5a, 0x400}, {&(0x7f0000010400)="020000000300000004", 0x9, 0x800}, {&(0x7f0000011600)="ed41000000080000dff4655fe0f4655fe0f4655f000000000000040004", 0x1d, 0x2100}], 0x0, &(0x7f0000000080)=ANY=[]) syz_mount_image$ext4(&(0x7f0000000000)='ext2\x00', &(0x7f0000000040)='./file0/../file0\x00', 0x18, 0x0, 0x0, 0x104e034, &(0x7f00000001c0)) 12:30:00 executing program 5: r0 = syz_io_uring_setup(0x4d4f, &(0x7f0000000080), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=0x0, &(0x7f0000000140)=0x0) syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_POLL_ADD={0x6, 0x0, 0x0, @fd=r0, 0x0, 0x0, 0x0, {0x194}}, 0x0) r3 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0) perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_io_uring_submit(r3, r2, &(0x7f0000000100)=@IORING_OP_SPLICE, 0x4) io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0) execveat(0xffffffffffffffff, &(0x7f00000002c0)='./file0\x00', 0x0, 0x0, 0x1200) 12:30:00 executing program 0: r0 = syz_io_uring_setup(0x4d4f, &(0x7f0000000080), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=0x0, &(0x7f0000000140)=0x0) syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_POLL_ADD={0x6, 0x0, 0x0, @fd=r0, 0x0, 0x0, 0x0, {0x194}}, 0x0) r3 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0) perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_io_uring_submit(r3, r2, &(0x7f0000000100)=@IORING_OP_SPLICE, 0x4) io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0) execveat(0xffffffffffffffff, &(0x7f00000002c0)='./file0\x00', &(0x7f0000000380), 0x0, 0x1074) [ 1730.438499] EXT4-fs (loop6): mounted filesystem without journal. Opts: ,errors=continue [ 1730.448634] FAULT_INJECTION: forcing a failure. [ 1730.448634] name failslab, interval 1, probability 0, space 0, times 0 [ 1730.451928] CPU: 1 PID: 12864 Comm: syz-executor.1 Not tainted 5.10.60 #1 [ 1730.453787] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS rel-1.14.0-0-g155821a1990b-prebuilt.qemu.org 04/01/2014 [ 1730.456923] Call Trace: [ 1730.457675] dump_stack+0x107/0x163 [ 1730.458628] should_fail.cold+0x5/0xa [ 1730.459488] ? create_object.isra.0+0x3a/0xa10 [ 1730.460536] should_failslab+0x5/0x10 [ 1730.461400] kmem_cache_alloc+0x5b/0x350 [ 1730.462433] create_object.isra.0+0x3a/0xa10 [ 1730.463651] ? __kasan_kmalloc.constprop.0+0xc2/0xd0 [ 1730.465105] kmem_cache_alloc+0x15b/0x350 [ 1730.466277] __anon_vma_prepare+0x281/0x4f0 [ 1730.467458] ? __pte_alloc+0x194/0x320 [ 1730.468608] handle_mm_fault+0x2be1/0x3570 [ 1730.469844] ? __pmd_alloc+0x5e0/0x5e0 [ 1730.471016] __get_user_pages+0x61d/0x1400 [ 1730.472277] ? follow_page_mask+0x1820/0x1820 [ 1730.473597] ? hlock_class+0x120/0x120 [ 1730.474726] __get_user_pages_remote+0x1d1/0x860 [ 1730.476137] ? find_held_lock+0x2c/0x110 [ 1730.477351] get_user_pages_remote+0x63/0x90 [ 1730.478626] get_arg_page+0xba/0x200 [ 1730.479714] ? acct_arg_size+0xe0/0xe0 [ 1730.480880] copy_string_kernel+0x1b0/0x440 [ 1730.482142] do_execveat_common.isra.0+0x405/0x670 [ 1730.483570] __x64_sys_execveat+0xe7/0x130 [ 1730.484831] do_syscall_64+0x33/0x40 [ 1730.485914] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 1730.487377] RIP: 0033:0x466609 [ 1730.488324] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1730.493646] RSP: 002b:00007f443d736188 EFLAGS: 00000246 ORIG_RAX: 0000000000000142 [ 1730.495914] RAX: ffffffffffffffda RBX: 000000000056bf80 RCX: 0000000000466609 [ 1730.497990] RDX: 0000000020000380 RSI: 00000000200002c0 RDI: ffffffffffffffff [ 1730.500063] RBP: 00007f443d7361d0 R08: 0000000000000000 R09: 0000000000000000 [ 1730.502152] R10: 0000000020000640 R11: 0000000000000246 R12: 0000000000000002 [ 1730.504262] R13: 00007ffeb6924e7f R14: 00007f443d736300 R15: 0000000000022000 [ 1730.576924] EXT4-fs (loop4): couldn't mount as ext2 due to feature incompatibilities [ 1730.585652] EXT4-fs (loop7): mounting ext2 file system using the ext4 subsystem [ 1730.633635] EXT4-fs (loop7): mounted filesystem without journal. Opts: ,errors=continue 12:30:00 executing program 4: syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000040)='./file0\x00', 0x40000, 0x3, &(0x7f0000000200)=[{&(0x7f0000010000)="2000000080000000060000006a0000000f000000000000000100000001000000004000000040000020000000e0f4655fe0f4655f0100ffff53ef010001000000dff4655f000000000000000001000000000000000b00000000010000280200000284", 0x62, 0x400}, {&(0x7f0000010400)="020000000300000004000000", 0xc, 0x800}, {&(0x7f0000011600)="ed41000000080000dff4655fe0f4655fe0f4655f0000000000000400", 0x1c, 0x2100}], 0x0, &(0x7f0000000080)=ANY=[]) syz_mount_image$ext4(&(0x7f0000000000)='ext2\x00', &(0x7f0000000040)='./file0/../file0\x00', 0x0, 0x0, 0x0, 0x104e034, &(0x7f00000001c0)={[{@data_err_abort}]}) [ 1730.834542] EXT4-fs (loop4): corrupt root inode, run e2fsck [ 1730.835948] EXT4-fs (loop4): mount failed [ 1742.723240] kmemleak: 1 new suspected memory leaks (see /sys/kernel/debug/kmemleak) 12:30:19 executing program 0: r0 = syz_io_uring_setup(0x4d4f, &(0x7f0000000080), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=0x0, &(0x7f0000000140)=0x0) syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_POLL_ADD={0x6, 0x0, 0x0, @fd=r0, 0x0, 0x0, 0x0, {0x194}}, 0x0) r3 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0) perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_io_uring_submit(r3, r2, &(0x7f0000000100)=@IORING_OP_SPLICE, 0x4) io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0) execveat(0xffffffffffffffff, &(0x7f00000002c0)='./file0\x00', &(0x7f0000000380), 0x0, 0x107a) 12:30:19 executing program 4: syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000040)='./file0\x00', 0x40000, 0x3, &(0x7f0000000200)=[{&(0x7f0000010000)="2000000080000000060000006a0000000f000000000000000100000001000000004000000040000020000000e0f4655fe0f4655f0100ffff53ef010001000000dff4655f000000000000000001000000000000000b00000000010000280200000284", 0x62, 0x400}, {&(0x7f0000010400)="020000000300000004000000", 0xc, 0x800}, {&(0x7f0000011600)="ed41000000080000dff4655fe0f4655fe0f4655f000000000000040004", 0x1d}], 0x0, &(0x7f0000000080)=ANY=[]) syz_mount_image$ext4(&(0x7f0000000000)='ext2\x00', &(0x7f0000000040)='./file0/../file0\x00', 0x0, 0x0, 0x0, 0x104e034, &(0x7f00000001c0)={[{@data_err_abort}]}) 12:30:19 executing program 1 (fault-call:6 fault-nth:24): r0 = syz_io_uring_setup(0x4d4f, &(0x7f0000000080), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=0x0, &(0x7f0000000140)=0x0) syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_POLL_ADD={0x6, 0x0, 0x0, @fd=r0, 0x0, 0x0, 0x0, {0x194}}, 0x0) r3 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0) perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_io_uring_submit(r3, r2, &(0x7f0000000100)=@IORING_OP_SPLICE, 0x4) io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0) execveat(0xffffffffffffffff, &(0x7f00000002c0)='./file0\x00', &(0x7f0000000380), &(0x7f0000000640)=[0x0, 0x0, 0x0], 0x0) 12:30:19 executing program 5: r0 = syz_io_uring_setup(0x4d4f, &(0x7f0000000080), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=0x0, &(0x7f0000000140)=0x0) syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_POLL_ADD={0x6, 0x0, 0x0, @fd=r0, 0x0, 0x0, 0x0, {0x194}}, 0x0) r3 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0) perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_io_uring_submit(r3, r2, &(0x7f0000000100)=@IORING_OP_SPLICE, 0x4) io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0) execveat(0xffffffffffffffff, &(0x7f00000002c0)='./file0\x00', 0x0, 0x0, 0x1800) 12:30:19 executing program 3: r0 = syz_io_uring_setup(0x4d4f, &(0x7f0000000080), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200), &(0x7f0000000140)=0x0) r2 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0) perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_io_uring_submit(r2, r1, &(0x7f0000000100)=@IORING_OP_SPLICE, 0x4) io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0) execveat(0xffffffffffffffff, &(0x7f00000002c0)='./file0\x00', 0x0, 0x0, 0x2a) 12:30:19 executing program 7: syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000040)='./file0\x00', 0x40000, 0x3, &(0x7f0000000200)=[{&(0x7f0000010000)="2000000080000000060000006a0000000f000000000000000100000001000000004000000040000020000000e0f4655fe0f4655f0100ffff53ef010001000000dff4655f000000000000000001000000000000000b0000000001", 0x5a, 0x400}, {&(0x7f0000010400)="020000000300000004", 0x9, 0x800}, {&(0x7f0000011600)="ed41000000080000dff4655fe0f4655fe0f4655f000000000000040004", 0x1d, 0x2100}], 0x0, &(0x7f0000000080)=ANY=[]) syz_mount_image$ext4(&(0x7f0000000000)='ext2\x00', &(0x7f0000000040)='./file0/../file0\x00', 0x2e, 0x0, 0x0, 0x104e034, &(0x7f00000001c0)) 12:30:19 executing program 6: syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000040)='./file0\x00', 0x40000, 0x3, &(0x7f0000000200)=[{&(0x7f0000010000)="2000000080000000060000006a0000000f000000000000000100000001000000004000000040000020000000e0f4655fe0f4655f0100ffff53ef010001000000dff4655f000000000000000001000000000000000b0000000001", 0x5a, 0x400}, {&(0x7f0000010400)="020000000300000004", 0x9, 0x800}, {&(0x7f0000011600)="ed41000000080000dff4655fe0f4655fe0f4655f000000000000040004", 0x1d, 0x2100}], 0x0, &(0x7f0000000080)=ANY=[]) syz_mount_image$ext4(&(0x7f0000000000)='ext2\x00', 0x0, 0x0, 0x0, 0x0, 0x104e034, &(0x7f00000001c0)={[{@data_err_abort}]}) 12:30:19 executing program 2: r0 = syz_init_net_socket$802154_dgram(0x24, 0x2, 0x0) r1 = dup(r0) sendmsg$BATADV_CMD_GET_BLA_BACKBONE(r1, &(0x7f0000000540)={&(0x7f0000000100)={0x10, 0x0, 0x0, 0x7090}, 0xc, &(0x7f0000000500)={0x0}, 0x1, 0x0, 0x0, 0x4004845}, 0x40890) ioctl$sock_SIOCINQ(r1, 0x541b, &(0x7f0000000000)) r2 = socket$inet6(0xa, 0x3, 0x7) ioctl$sock_SIOCADDDLCI(r2, 0x8980, &(0x7f0000000040)={'veth1_to_hsr\x00', 0x3}) [ 1749.231405] FAULT_INJECTION: forcing a failure. [ 1749.231405] name failslab, interval 1, probability 0, space 0, times 0 [ 1749.232667] CPU: 1 PID: 12929 Comm: syz-executor.1 Not tainted 5.10.60 #1 [ 1749.233441] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS rel-1.14.0-0-g155821a1990b-prebuilt.qemu.org 04/01/2014 [ 1749.234700] Call Trace: [ 1749.234996] dump_stack+0x107/0x163 [ 1749.235403] should_fail.cold+0x5/0xa [ 1749.235817] ? dup_fd+0x89/0xc50 [ 1749.236207] should_failslab+0x5/0x10 [ 1749.236614] kmem_cache_alloc+0x5b/0x350 [ 1749.237053] ? io_wake_function+0x2e0/0x2e0 [ 1749.237526] dup_fd+0x89/0xc50 [ 1749.237875] ? __io_uring_task_cancel+0x1d1/0x250 [ 1749.238408] unshare_files+0x16c/0x260 [ 1749.238826] ? __ia32_sys_unshare+0x40/0x40 [ 1749.239296] ? rcu_read_lock_sched_held+0x3a/0x70 [ 1749.239823] ? trace_rss_stat+0x174/0x210 [ 1749.240288] bprm_execve+0x123/0x1b00 [ 1749.240699] ? get_arg_page+0x153/0x200 [ 1749.241131] ? acct_arg_size+0xe0/0xe0 [ 1749.241549] ? open_exec+0x70/0x70 [ 1749.242034] ? memcpy+0x39/0x60 [ 1749.242447] ? copy_strings.isra.0+0x492/0x690 [ 1749.242975] ? copy_string_kernel+0x3ad/0x440 [ 1749.243472] do_execveat_common.isra.0+0x524/0x670 [ 1749.244038] __x64_sys_execveat+0xe7/0x130 [ 1749.244515] do_syscall_64+0x33/0x40 [ 1749.244937] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 1749.245503] RIP: 0033:0x466609 [ 1749.245853] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1749.247903] RSP: 002b:00007f443d736188 EFLAGS: 00000246 ORIG_RAX: 0000000000000142 [ 1749.248772] RAX: ffffffffffffffda RBX: 000000000056bf80 RCX: 0000000000466609 [ 1749.249574] RDX: 0000000020000380 RSI: 00000000200002c0 RDI: ffffffffffffffff [ 1749.250426] RBP: 00007f443d7361d0 R08: 0000000000000000 R09: 0000000000000000 [ 1749.251250] R10: 0000000020000640 R11: 0000000000000246 R12: 0000000000000002 [ 1749.252049] R13: 00007ffeb6924e7f R14: 00007f443d736300 R15: 0000000000022000 [ 1749.281797] EXT4-fs error (device loop4): ext4_fill_super:4954: inode #2: comm syz-executor.4: iget: root inode unallocated [ 1749.283270] EXT4-fs (loop4): get root inode failed [ 1749.283819] EXT4-fs (loop4): mount failed [ 1749.310845] EXT4-fs (loop7): mounted filesystem without journal. Opts: ,errors=continue [ 1749.311687] EXT4-fs (loop6): mounted filesystem without journal. Opts: ,errors=continue 12:30:19 executing program 1 (fault-call:6 fault-nth:25): r0 = syz_io_uring_setup(0x4d4f, &(0x7f0000000080), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=0x0, &(0x7f0000000140)=0x0) syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_POLL_ADD={0x6, 0x0, 0x0, @fd=r0, 0x0, 0x0, 0x0, {0x194}}, 0x0) r3 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0) perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_io_uring_submit(r3, r2, &(0x7f0000000100)=@IORING_OP_SPLICE, 0x4) io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0) execveat(0xffffffffffffffff, &(0x7f00000002c0)='./file0\x00', &(0x7f0000000380), &(0x7f0000000640)=[0x0, 0x0, 0x0], 0x0) 12:30:19 executing program 5: r0 = syz_io_uring_setup(0x4d4f, &(0x7f0000000080), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=0x0, &(0x7f0000000140)=0x0) syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_POLL_ADD={0x6, 0x0, 0x0, @fd=r0, 0x0, 0x0, 0x0, {0x194}}, 0x0) r3 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0) perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_io_uring_submit(r3, r2, &(0x7f0000000100)=@IORING_OP_SPLICE, 0x4) io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0) execveat(0xffffffffffffffff, &(0x7f00000002c0)='./file0\x00', 0x0, 0x0, 0x1e00) 12:30:19 executing program 3: r0 = syz_io_uring_setup(0x4d4f, &(0x7f0000000080), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200), &(0x7f0000000140)=0x0) r2 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0) perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_io_uring_submit(r2, r1, &(0x7f0000000100)=@IORING_OP_SPLICE, 0x4) io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0) execveat(0xffffffffffffffff, &(0x7f00000002c0)='./file0\x00', 0x0, 0x0, 0x30) [ 1749.353082] EXT4-fs (loop7): re-mounted. Opts: ,errors=continue 12:30:19 executing program 0: r0 = syz_io_uring_setup(0x4d4f, &(0x7f0000000080), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=0x0, &(0x7f0000000140)=0x0) syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_POLL_ADD={0x6, 0x0, 0x0, @fd=r0, 0x0, 0x0, 0x0, {0x194}}, 0x0) r3 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0) perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_io_uring_submit(r3, r2, &(0x7f0000000100)=@IORING_OP_SPLICE, 0x4) io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0) execveat(0xffffffffffffffff, &(0x7f00000002c0)='./file0\x00', &(0x7f0000000380), 0x0, 0x1100) [ 1749.371763] EXT4-fs (loop7): re-mounted. Opts: ,errors=continue 12:30:19 executing program 7: syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000040)='./file0\x00', 0x40000, 0x3, &(0x7f0000000200)=[{&(0x7f0000010000)="2000000080000000060000006a0000000f000000000000000100000001000000004000000040000020000000e0f4655fe0f4655f0100ffff53ef010001000000dff4655f000000000000000001000000000000000b0000000001", 0x5a, 0x400}, {&(0x7f0000010400)="020000000300000004", 0x9, 0x800}, {&(0x7f0000011600)="ed41000000080000dff4655fe0f4655fe0f4655f000000000000040004", 0x1d, 0x2100}], 0x0, &(0x7f0000000080)=ANY=[]) syz_mount_image$ext4(&(0x7f0000000000)='ext2\x00', &(0x7f0000000040)='./file0/../file0\x00', 0x1fc, 0x0, 0x0, 0x104e034, &(0x7f00000001c0)) 12:30:19 executing program 2: r0 = syz_init_net_socket$802154_dgram(0x24, 0x2, 0x0) r1 = dup(r0) sendmsg$BATADV_CMD_GET_BLA_BACKBONE(r1, &(0x7f0000000540)={&(0x7f0000000100), 0xc, &(0x7f0000000500)={0x0}}, 0x0) ioctl$BTRFS_IOC_TREE_SEARCH_V2(r1, 0xc0709411, &(0x7f0000000040)={{0x0, 0x1, 0x3fa, 0x6, 0x1, 0x0, 0x7c, 0x0, 0x1, 0x9, 0xffffffff, 0x7ff, 0x7ff, 0x7fff, 0x9}, 0x20, [0x0, 0x0, 0x0, 0x0]}) ioctl$BTRFS_IOC_TREE_SEARCH_V2(r0, 0xc0709411, &(0x7f0000000140)={{r2, 0x5f6, 0x5, 0x7, 0x80, 0x27, 0x28, 0x688c7ed4, 0x1, 0x3, 0x1, 0x8, 0xfff, 0x60, 0xb79}, 0x40, [0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0]}) ioctl$sock_SIOCINQ(r1, 0x541b, &(0x7f0000000000)) 12:30:19 executing program 6: syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000040)='./file0\x00', 0x40000, 0x3, &(0x7f0000000200)=[{&(0x7f0000010000)="2000000080000000060000006a0000000f000000000000000100000001000000004000000040000020000000e0f4655fe0f4655f0100ffff53ef010001000000dff4655f000000000000000001000000000000000b0000000001", 0x5a, 0x400}, {&(0x7f0000010400)="020000000300000004", 0x9, 0x800}, {&(0x7f0000011600)="ed41000000080000dff4655fe0f4655fe0f4655f000000000000040004", 0x1d, 0x2100}], 0x0, &(0x7f0000000080)=ANY=[]) syz_mount_image$ext4(&(0x7f0000000000)='ext2\x00', 0x0, 0x0, 0x0, 0x0, 0x104e034, &(0x7f00000001c0)={[{@data_err_abort}]}) 12:30:19 executing program 4: syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000040)='./file0\x00', 0x40000, 0x3, &(0x7f0000000200)=[{&(0x7f0000010000)="2000000080000000060000006a0000000f000000000000000100000001000000004000000040000020000000e0f4655fe0f4655f0100ffff53ef010001000000dff4655f000000000000000001000000000000000b00000000010000280200000284", 0x62, 0x400}, {&(0x7f0000010400)="020000000300000004000000", 0xc, 0x800}, {&(0x7f0000011600)="ed41000000080000dff4655fe0f4655fe0f4655f000000000000040004", 0x1d}], 0x0, &(0x7f0000000080)=ANY=[]) syz_mount_image$ext4(&(0x7f0000000000)='ext2\x00', &(0x7f0000000040)='./file0/../file0\x00', 0x0, 0x0, 0x0, 0x104e034, &(0x7f00000001c0)={[{@data_err_abort}]}) [ 1749.566805] FAULT_INJECTION: forcing a failure. [ 1749.566805] name failslab, interval 1, probability 0, space 0, times 0 [ 1749.568245] CPU: 1 PID: 12967 Comm: syz-executor.1 Not tainted 5.10.60 #1 [ 1749.569020] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS rel-1.14.0-0-g155821a1990b-prebuilt.qemu.org 04/01/2014 [ 1749.570302] Call Trace: [ 1749.570603] dump_stack+0x107/0x163 [ 1749.571014] should_fail.cold+0x5/0xa [ 1749.571448] ? create_object.isra.0+0x3a/0xa10 [ 1749.572058] should_failslab+0x5/0x10 [ 1749.572551] kmem_cache_alloc+0x5b/0x350 [ 1749.573100] create_object.isra.0+0x3a/0xa10 [ 1749.573590] ? __kasan_kmalloc.constprop.0+0xc2/0xd0 [ 1749.574148] kmem_cache_alloc+0x15b/0x350 [ 1749.574692] dup_fd+0x89/0xc50 [ 1749.575108] ? __io_uring_task_cancel+0x1d1/0x250 [ 1749.575727] unshare_files+0x16c/0x260 [ 1749.576175] ? __ia32_sys_unshare+0x40/0x40 [ 1749.576666] ? rcu_read_lock_sched_held+0x3a/0x70 [ 1749.577276] ? trace_rss_stat+0x174/0x210 [ 1749.577778] bprm_execve+0x123/0x1b00 [ 1749.578255] ? get_arg_page+0x153/0x200 [ 1749.578716] ? acct_arg_size+0xe0/0xe0 [ 1749.579146] ? open_exec+0x70/0x70 [ 1749.579532] ? memcpy+0x39/0x60 [ 1749.579888] ? copy_strings.isra.0+0x492/0x690 [ 1749.580393] ? copy_string_kernel+0x3ad/0x440 [ 1749.580879] do_execveat_common.isra.0+0x524/0x670 [ 1749.581433] __x64_sys_execveat+0xe7/0x130 [ 1749.581894] do_syscall_64+0x33/0x40 [ 1749.582313] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 1749.582866] RIP: 0033:0x466609 [ 1749.583224] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1749.585369] RSP: 002b:00007f443d736188 EFLAGS: 00000246 ORIG_RAX: 0000000000000142 [ 1749.586397] RAX: ffffffffffffffda RBX: 000000000056bf80 RCX: 0000000000466609 [ 1749.587198] RDX: 0000000020000380 RSI: 00000000200002c0 RDI: ffffffffffffffff [ 1749.587998] RBP: 00007f443d7361d0 R08: 0000000000000000 R09: 0000000000000000 [ 1749.588811] R10: 0000000020000640 R11: 0000000000000246 R12: 0000000000000002 [ 1749.589616] R13: 00007ffeb6924e7f R14: 00007f443d736300 R15: 0000000000022000 [ 1749.669430] EXT4-fs error (device loop4): ext4_fill_super:4954: inode #2: comm syz-executor.4: iget: root inode unallocated [ 1749.672483] EXT4-fs (loop4): get root inode failed [ 1749.673081] EXT4-fs (loop4): mount failed 12:30:19 executing program 3: r0 = syz_io_uring_setup(0x4d4f, &(0x7f0000000080), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200), &(0x7f0000000140)=0x0) r2 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0) perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_io_uring_submit(r2, r1, &(0x7f0000000100)=@IORING_OP_SPLICE, 0x4) io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0) execveat(0xffffffffffffffff, &(0x7f00000002c0)='./file0\x00', 0x0, 0x0, 0x36) 12:30:19 executing program 2: syz_init_net_socket$802154_dgram(0x24, 0x2, 0x0) socketpair$nbd(0x1, 0x1, 0x0, &(0x7f0000000040)) r0 = openat$tun(0xffffffffffffff9c, &(0x7f0000000040), 0x0, 0x0) ioctl$TUNSETQUEUE(r0, 0x400454ca, &(0x7f00000000c0)={'ipvlan1\x00'}) r1 = dup(r0) sendmsg$BATADV_CMD_GET_BLA_BACKBONE(r1, &(0x7f0000000540)={&(0x7f0000000100), 0xc, &(0x7f0000000500)={0x0}}, 0x0) ioctl$sock_SIOCINQ(r1, 0x541b, &(0x7f0000000000)) 12:30:19 executing program 5: r0 = syz_io_uring_setup(0x4d4f, &(0x7f0000000080), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=0x0, &(0x7f0000000140)=0x0) syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_POLL_ADD={0x6, 0x0, 0x0, @fd=r0, 0x0, 0x0, 0x0, {0x194}}, 0x0) r3 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0) perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_io_uring_submit(r3, r2, &(0x7f0000000100)=@IORING_OP_SPLICE, 0x4) io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0) execveat(0xffffffffffffffff, &(0x7f00000002c0)='./file0\x00', 0x0, 0x0, 0x2000) [ 1749.691221] EXT4-fs (loop7): mounted filesystem without journal. Opts: ,errors=continue 12:30:19 executing program 1 (fault-call:6 fault-nth:26): r0 = syz_io_uring_setup(0x4d4f, &(0x7f0000000080), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=0x0, &(0x7f0000000140)=0x0) syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_POLL_ADD={0x6, 0x0, 0x0, @fd=r0, 0x0, 0x0, 0x0, {0x194}}, 0x0) r3 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0) perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_io_uring_submit(r3, r2, &(0x7f0000000100)=@IORING_OP_SPLICE, 0x4) io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0) execveat(0xffffffffffffffff, &(0x7f00000002c0)='./file0\x00', &(0x7f0000000380), &(0x7f0000000640)=[0x0, 0x0, 0x0], 0x0) [ 1749.704651] EXT4-fs (loop7): re-mounted. Opts: ,errors=continue [ 1749.713359] EXT4-fs (loop7): re-mounted. Opts: ,errors=continue [ 1749.729251] EXT4-fs (loop6): mounted filesystem without journal. Opts: ,errors=continue 12:30:19 executing program 7: syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000040)='./file0\x00', 0x40000, 0x3, &(0x7f0000000200)=[{&(0x7f0000010000)="2000000080000000060000006a0000000f000000000000000100000001000000004000000040000020000000e0f4655fe0f4655f0100ffff53ef010001000000dff4655f000000000000000001000000000000000b0000000001", 0x5a, 0x400}, {&(0x7f0000010400)="020000000300000004", 0x9, 0x800}, {&(0x7f0000011600)="ed41000000080000dff4655fe0f4655fe0f4655f000000000000040004", 0x1d, 0x2100}], 0x0, &(0x7f0000000080)=ANY=[]) syz_mount_image$ext4(&(0x7f0000000000)='ext2\x00', &(0x7f0000000040)='./file0/../file0\x00', 0x300, 0x0, 0x0, 0x104e034, &(0x7f00000001c0)) 12:30:20 executing program 4: syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000040)='./file0\x00', 0x40000, 0x3, &(0x7f0000000200)=[{&(0x7f0000010000)="2000000080000000060000006a0000000f000000000000000100000001000000004000000040000020000000e0f4655fe0f4655f0100ffff53ef010001000000dff4655f000000000000000001000000000000000b00000000010000280200000284", 0x62, 0x400}, {&(0x7f0000010400)="020000000300000004000000", 0xc, 0x800}, {&(0x7f0000011600)="ed41000000080000dff4655fe0f4655fe0f4655f000000000000040004", 0x1d}], 0x0, &(0x7f0000000080)=ANY=[]) syz_mount_image$ext4(&(0x7f0000000000)='ext2\x00', &(0x7f0000000040)='./file0/../file0\x00', 0x0, 0x0, 0x0, 0x104e034, &(0x7f00000001c0)={[{@data_err_abort}]}) [ 1749.872822] FAULT_INJECTION: forcing a failure. [ 1749.872822] name failslab, interval 1, probability 0, space 0, times 0 [ 1749.874252] CPU: 1 PID: 13009 Comm: syz-executor.1 Not tainted 5.10.60 #1 [ 1749.875186] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS rel-1.14.0-0-g155821a1990b-prebuilt.qemu.org 04/01/2014 [ 1749.876462] Call Trace: [ 1749.876752] dump_stack+0x107/0x163 [ 1749.877191] should_fail.cold+0x5/0xa [ 1749.877604] ? alloc_fdtable+0x7e/0x280 [ 1749.878092] should_failslab+0x5/0x10 [ 1749.878507] kmem_cache_alloc_trace+0x55/0x350 [ 1749.879031] ? rwlock_bug.part.0+0x90/0x90 [ 1749.879508] alloc_fdtable+0x7e/0x280 [ 1749.879933] dup_fd+0x71a/0xc50 [ 1749.880320] unshare_files+0x16c/0x260 [ 1749.880748] ? __ia32_sys_unshare+0x40/0x40 [ 1749.881251] ? rcu_read_lock_sched_held+0x3a/0x70 [ 1749.881761] ? trace_rss_stat+0x174/0x210 [ 1749.882255] bprm_execve+0x123/0x1b00 [ 1749.882667] ? get_arg_page+0x153/0x200 [ 1749.883110] ? acct_arg_size+0xe0/0xe0 [ 1749.883526] ? open_exec+0x70/0x70 [ 1749.883907] ? memcpy+0x39/0x60 [ 1749.884291] ? copy_strings.isra.0+0x492/0x690 [ 1749.884777] ? copy_string_kernel+0x3ad/0x440 [ 1749.885273] do_execveat_common.isra.0+0x524/0x670 [ 1749.885808] __x64_sys_execveat+0xe7/0x130 [ 1749.886282] do_syscall_64+0x33/0x40 [ 1749.886681] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 1749.887240] RIP: 0033:0x466609 [ 1749.887598] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1749.889612] RSP: 002b:00007f443d736188 EFLAGS: 00000246 ORIG_RAX: 0000000000000142 [ 1749.890438] RAX: ffffffffffffffda RBX: 000000000056bf80 RCX: 0000000000466609 [ 1749.891338] RDX: 0000000020000380 RSI: 00000000200002c0 RDI: ffffffffffffffff [ 1749.892111] RBP: 00007f443d7361d0 R08: 0000000000000000 R09: 0000000000000000 [ 1749.893065] R10: 0000000020000640 R11: 0000000000000246 R12: 0000000000000002 [ 1749.893849] R13: 00007ffeb6924e7f R14: 00007f443d736300 R15: 0000000000022000 [ 1750.004666] EXT4-fs error (device loop4): ext4_fill_super:4954: inode #2: comm syz-executor.4: iget: root inode unallocated [ 1750.013765] EXT4-fs (loop7): mounted filesystem without journal. Opts: ,errors=continue [ 1750.019050] EXT4-fs (loop4): get root inode failed [ 1750.020273] EXT4-fs (loop4): mount failed [ 1750.036855] EXT4-fs (loop7): re-mounted. Opts: ,errors=continue [ 1761.244004] kmemleak: 1 new suspected memory leaks (see /sys/kernel/debug/kmemleak) 12:30:39 executing program 2: r0 = syz_init_net_socket$802154_dgram(0x24, 0x2, 0x0) r1 = dup(r0) sendmsg$BATADV_CMD_GET_BLA_BACKBONE(r1, &(0x7f0000000540)={&(0x7f0000000100), 0xc, &(0x7f0000000500)={0x0}, 0x1, 0x0, 0x0, 0x4000000}, 0x0) syz_genetlink_get_family_id$nl80211(&(0x7f0000000040), r1) ioctl$sock_SIOCINQ(r0, 0x541b, &(0x7f0000000000)) 12:30:39 executing program 6: syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000040)='./file0\x00', 0x40000, 0x3, &(0x7f0000000200)=[{&(0x7f0000010000)="2000000080000000060000006a0000000f000000000000000100000001000000004000000040000020000000e0f4655fe0f4655f0100ffff53ef010001000000dff4655f000000000000000001000000000000000b0000000001", 0x5a, 0x400}, {&(0x7f0000010400)="020000000300000004", 0x9, 0x800}, {&(0x7f0000011600)="ed41000000080000dff4655fe0f4655fe0f4655f000000000000040004", 0x1d, 0x2100}], 0x0, &(0x7f0000000080)=ANY=[]) syz_mount_image$ext4(&(0x7f0000000000)='ext2\x00', &(0x7f0000000040)='./file0/../file0\x00', 0x0, 0x0, 0x0, 0x0, &(0x7f00000001c0)={[{@data_err_abort}]}) 12:30:39 executing program 4: syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000040)='./file0\x00', 0x40000, 0x2, &(0x7f0000000200)=[{&(0x7f0000010000)="2000000080000000060000006a0000000f000000000000000100000001000000004000000040000020000000e0f4655fe0f4655f0100ffff53ef010001000000dff4655f000000000000000001000000000000000b00000000010000280200000284", 0x62, 0x400}, {&(0x7f0000011600)="ed41000000080000dff4655fe0f4655fe0f4655f000000000000040004", 0x1d, 0x2100}], 0x0, &(0x7f0000000080)=ANY=[]) syz_mount_image$ext4(&(0x7f0000000000)='ext2\x00', &(0x7f0000000040)='./file0/../file0\x00', 0x0, 0x0, 0x0, 0x104e034, &(0x7f00000001c0)={[{@data_err_abort}]}) 12:30:39 executing program 7: syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000040)='./file0\x00', 0x40000, 0x3, &(0x7f0000000200)=[{&(0x7f0000010000)="2000000080000000060000006a0000000f000000000000000100000001000000004000000040000020000000e0f4655fe0f4655f0100ffff53ef010001000000dff4655f000000000000000001000000000000000b0000000001", 0x5a, 0x400}, {&(0x7f0000010400)="020000000300000004", 0x9, 0x800}, {&(0x7f0000011600)="ed41000000080000dff4655fe0f4655fe0f4655f000000000000040004", 0x1d, 0x2100}], 0x0, &(0x7f0000000080)=ANY=[]) syz_mount_image$ext4(&(0x7f0000000000)='ext2\x00', &(0x7f0000000040)='./file0/../file0\x00', 0x500, 0x0, 0x0, 0x104e034, &(0x7f00000001c0)) 12:30:39 executing program 5: r0 = syz_io_uring_setup(0x4d4f, &(0x7f0000000080), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=0x0, &(0x7f0000000140)=0x0) syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_POLL_ADD={0x6, 0x0, 0x0, @fd=r0, 0x0, 0x0, 0x0, {0x194}}, 0x0) r3 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0) perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_io_uring_submit(r3, r2, &(0x7f0000000100)=@IORING_OP_SPLICE, 0x4) io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0) execveat(0xffffffffffffffff, &(0x7f00000002c0)='./file0\x00', 0x0, 0x0, 0x2400) 12:30:39 executing program 3: r0 = syz_io_uring_setup(0x4d4f, &(0x7f0000000080), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200), &(0x7f0000000140)=0x0) r2 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0) perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_io_uring_submit(r2, r1, &(0x7f0000000100)=@IORING_OP_SPLICE, 0x4) io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0) execveat(0xffffffffffffffff, &(0x7f00000002c0)='./file0\x00', 0x0, 0x0, 0x3c) 12:30:39 executing program 1 (fault-call:6 fault-nth:27): r0 = syz_io_uring_setup(0x4d4f, &(0x7f0000000080), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=0x0, &(0x7f0000000140)=0x0) syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_POLL_ADD={0x6, 0x0, 0x0, @fd=r0, 0x0, 0x0, 0x0, {0x194}}, 0x0) r3 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0) perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_io_uring_submit(r3, r2, &(0x7f0000000100)=@IORING_OP_SPLICE, 0x4) io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0) execveat(0xffffffffffffffff, &(0x7f00000002c0)='./file0\x00', &(0x7f0000000380), &(0x7f0000000640)=[0x0, 0x0, 0x0], 0x0) 12:30:39 executing program 0: r0 = syz_io_uring_setup(0x4d4f, &(0x7f0000000080), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=0x0, &(0x7f0000000140)=0x0) syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_POLL_ADD={0x6, 0x0, 0x0, @fd=r0, 0x0, 0x0, 0x0, {0x194}}, 0x0) r3 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0) perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_io_uring_submit(r3, r2, &(0x7f0000000100)=@IORING_OP_SPLICE, 0x4) io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0) execveat(0xffffffffffffffff, &(0x7f00000002c0)='./file0\x00', &(0x7f0000000380), 0x0, 0x1200) [ 1769.264587] FAULT_INJECTION: forcing a failure. [ 1769.264587] name failslab, interval 1, probability 0, space 0, times 0 [ 1769.266906] CPU: 1 PID: 13056 Comm: syz-executor.1 Not tainted 5.10.60 #1 [ 1769.267319] EXT4-fs (loop4): ext4_check_descriptors: Block bitmap for group 0 overlaps superblock [ 1769.268201] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS rel-1.14.0-0-g155821a1990b-prebuilt.qemu.org 04/01/2014 [ 1769.268208] Call Trace: [ 1769.268232] dump_stack+0x107/0x163 [ 1769.268254] should_fail.cold+0x5/0xa [ 1769.269597] EXT4-fs (loop4): group descriptors corrupted! [ 1769.271805] ? create_object.isra.0+0x3a/0xa10 [ 1769.271828] should_failslab+0x5/0x10 [ 1769.271848] kmem_cache_alloc+0x5b/0x350 [ 1769.277340] create_object.isra.0+0x3a/0xa10 [ 1769.278292] ? __kasan_kmalloc.constprop.0+0xc2/0xd0 [ 1769.279412] kmem_cache_alloc_trace+0x153/0x350 [ 1769.280484] ? rwlock_bug.part.0+0x90/0x90 [ 1769.281443] alloc_fdtable+0x7e/0x280 [ 1769.282302] dup_fd+0x71a/0xc50 [ 1769.283086] unshare_files+0x16c/0x260 [ 1769.283837] ? __ia32_sys_unshare+0x40/0x40 [ 1769.284675] ? rcu_read_lock_sched_held+0x3a/0x70 [ 1769.285603] ? trace_rss_stat+0x174/0x210 [ 1769.286419] bprm_execve+0x123/0x1b00 [ 1769.287161] ? get_arg_page+0x153/0x200 [ 1769.287928] ? acct_arg_size+0xe0/0xe0 [ 1769.288683] ? open_exec+0x70/0x70 [ 1769.289370] ? memcpy+0x39/0x60 [ 1769.290016] ? copy_strings.isra.0+0x492/0x690 [ 1769.290904] ? copy_string_kernel+0x3ad/0x440 [ 1769.291762] do_execveat_common.isra.0+0x524/0x670 [ 1769.292736] __x64_sys_execveat+0xe7/0x130 [ 1769.293556] do_syscall_64+0x33/0x40 [ 1769.294279] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 1769.295282] RIP: 0033:0x466609 [ 1769.295912] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1769.299531] RSP: 002b:00007f443d736188 EFLAGS: 00000246 ORIG_RAX: 0000000000000142 [ 1769.301042] RAX: ffffffffffffffda RBX: 000000000056bf80 RCX: 0000000000466609 [ 1769.302434] RDX: 0000000020000380 RSI: 00000000200002c0 RDI: ffffffffffffffff [ 1769.303850] RBP: 00007f443d7361d0 R08: 0000000000000000 R09: 0000000000000000 [ 1769.305232] R10: 0000000020000640 R11: 0000000000000246 R12: 0000000000000002 [ 1769.306600] R13: 00007ffeb6924e7f R14: 00007f443d736300 R15: 0000000000022000 [ 1769.318132] EXT4-fs (loop7): mounted filesystem without journal. Opts: ,errors=continue [ 1769.318203] EXT4-fs (loop6): mounted filesystem without journal. Opts: ,errors=continue [ 1769.343986] EXT4-fs (loop7): re-mounted. Opts: ,errors=continue 12:30:39 executing program 7: syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000040)='./file0\x00', 0x40000, 0x3, &(0x7f0000000200)=[{&(0x7f0000010000)="2000000080000000060000006a0000000f000000000000000100000001000000004000000040000020000000e0f4655fe0f4655f0100ffff53ef010001000000dff4655f000000000000000001000000000000000b0000000001", 0x5a, 0x400}, {&(0x7f0000010400)="020000000300000004", 0x9, 0x800}, {&(0x7f0000011600)="ed41000000080000dff4655fe0f4655fe0f4655f000000000000040004", 0x1d, 0x2100}], 0x0, &(0x7f0000000080)=ANY=[]) syz_mount_image$ext4(&(0x7f0000000000)='ext2\x00', &(0x7f0000000040)='./file0/../file0\x00', 0x600, 0x0, 0x0, 0x104e034, &(0x7f00000001c0)) 12:30:39 executing program 4: syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000040)='./file0\x00', 0x40000, 0x2, &(0x7f0000000200)=[{&(0x7f0000010000)="2000000080000000060000006a0000000f000000000000000100000001000000004000000040000020000000e0f4655fe0f4655f0100ffff53ef010001000000dff4655f000000000000000001000000000000000b00000000010000280200000284", 0x62, 0x400}, {&(0x7f0000011600)="ed41000000080000dff4655fe0f4655fe0f4655f000000000000040004", 0x1d, 0x2100}], 0x0, &(0x7f0000000080)=ANY=[]) syz_mount_image$ext4(&(0x7f0000000000)='ext2\x00', &(0x7f0000000040)='./file0/../file0\x00', 0x0, 0x0, 0x0, 0x104e034, &(0x7f00000001c0)={[{@data_err_abort}]}) 12:30:39 executing program 3: r0 = syz_io_uring_setup(0x4d4f, &(0x7f0000000080), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200), &(0x7f0000000140)=0x0) r2 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0) perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_io_uring_submit(r2, r1, &(0x7f0000000100)=@IORING_OP_SPLICE, 0x4) io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0) execveat(0xffffffffffffffff, &(0x7f00000002c0)='./file0\x00', 0x0, 0x0, 0x48) 12:30:39 executing program 1 (fault-call:6 fault-nth:28): r0 = syz_io_uring_setup(0x4d4f, &(0x7f0000000080), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=0x0, &(0x7f0000000140)=0x0) syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_POLL_ADD={0x6, 0x0, 0x0, @fd=r0, 0x0, 0x0, 0x0, {0x194}}, 0x0) r3 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0) perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_io_uring_submit(r3, r2, &(0x7f0000000100)=@IORING_OP_SPLICE, 0x4) io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0) execveat(0xffffffffffffffff, &(0x7f00000002c0)='./file0\x00', &(0x7f0000000380), &(0x7f0000000640)=[0x0, 0x0, 0x0], 0x0) 12:30:39 executing program 5: r0 = syz_io_uring_setup(0x4d4f, &(0x7f0000000080), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=0x0, &(0x7f0000000140)=0x0) syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_POLL_ADD={0x6, 0x0, 0x0, @fd=r0, 0x0, 0x0, 0x0, {0x194}}, 0x0) r3 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0) perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_io_uring_submit(r3, r2, &(0x7f0000000100)=@IORING_OP_SPLICE, 0x4) io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0) execveat(0xffffffffffffffff, &(0x7f00000002c0)='./file0\x00', 0x0, 0x0, 0x2a00) 12:30:39 executing program 6: syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000040)='./file0\x00', 0x40000, 0x3, &(0x7f0000000200)=[{&(0x7f0000010000)="2000000080000000060000006a0000000f000000000000000100000001000000004000000040000020000000e0f4655fe0f4655f0100ffff53ef010001000000dff4655f000000000000000001000000000000000b0000000001", 0x5a, 0x400}, {&(0x7f0000010400)="020000000300000004", 0x9, 0x800}, {&(0x7f0000011600)="ed41000000080000dff4655fe0f4655fe0f4655f000000000000040004", 0x1d, 0x2100}], 0x0, &(0x7f0000000080)=ANY=[]) syz_mount_image$ext4(&(0x7f0000000000)='ext2\x00', &(0x7f0000000040)='./file0/../file0\x00', 0x0, 0x0, 0x0, 0x0, &(0x7f00000001c0)={[{@data_err_abort}]}) 12:30:39 executing program 0: r0 = syz_io_uring_setup(0x4d4f, &(0x7f0000000080), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=0x0, &(0x7f0000000140)=0x0) syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_POLL_ADD={0x6, 0x0, 0x0, @fd=r0, 0x0, 0x0, 0x0, {0x194}}, 0x0) r3 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0) perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_io_uring_submit(r3, r2, &(0x7f0000000100)=@IORING_OP_SPLICE, 0x4) io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0) execveat(0xffffffffffffffff, &(0x7f00000002c0)='./file0\x00', &(0x7f0000000380), 0x0, 0x2f00) 12:30:39 executing program 2: r0 = syz_init_net_socket$802154_dgram(0x24, 0x2, 0x0) r1 = dup(r0) sendmsg$BATADV_CMD_GET_BLA_BACKBONE(r1, &(0x7f0000000540)={&(0x7f0000000100), 0xc, &(0x7f0000000500)={0x0}}, 0x0) ioctl$sock_SIOCINQ(r1, 0x541b, &(0x7f0000000000)) connect$802154_dgram(r1, &(0x7f0000000040)={0x24, @short={0x2, 0x2, 0xaaa3}}, 0x14) r2 = socket$netlink(0x10, 0x3, 0x0) sendmsg$nl_generic(r2, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000240)={&(0x7f0000000080)=ANY=[@ANYBLOB="280000002c00010d000000000000e4ffffffffffffffffff"], 0x28}}, 0x0) r3 = socket$packet(0x11, 0x3, 0x300) r4 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a) ioctl$sock_SIOCGIFINDEX(r4, 0x8933, &(0x7f0000000140)={'syz_tun\x00', 0x0}) setsockopt$packet_add_memb(r3, 0x107, 0x1, &(0x7f0000000040)={r5, 0x1, 0x6, @local}, 0x10) sendmsg$nl_xfrm(r2, &(0x7f0000000240)={&(0x7f0000000080)={0x10, 0x0, 0x0, 0x4000}, 0xc, &(0x7f00000000c0)={&(0x7f0000000140)=@flushsa={0xf8, 0x1c, 0x400, 0x70bd29, 0x25dfdbff, {0x3c}, [@policy={0xac, 0x7, {{@in6=@rand_addr=' \x01\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x02', @in6=@local, 0x4e23, 0x6, 0x4e24, 0x7f, 0x2, 0x20, 0xa0, 0x2b, r5, 0xee00}, {0x4, 0x2, 0x131, 0x2c8, 0x5, 0x7fffffff, 0x9, 0xffffffffffffaba8}, {0x2, 0x640c, 0x1, 0x9}, 0x9, 0x6e6bb1, 0x0, 0x0, 0x1}}, @user_kmaddress={0x2c, 0x13, {@in=@multicast1, @in=@multicast1, 0x0, 0xa}}, @mark={0xc, 0x15, {0x35075c, 0x5}}]}, 0xf8}, 0x1, 0x0, 0x0, 0x40804}, 0x80) [ 1769.595124] EXT4-fs (loop4): ext4_check_descriptors: Block bitmap for group 0 overlaps superblock [ 1769.597359] EXT4-fs (loop4): group descriptors corrupted! 12:30:39 executing program 3: r0 = syz_io_uring_setup(0x4d4f, &(0x7f0000000080), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200), &(0x7f0000000140)=0x0) r2 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0) perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_io_uring_submit(r2, r1, &(0x7f0000000100)=@IORING_OP_SPLICE, 0x4) io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0) execveat(0xffffffffffffffff, &(0x7f00000002c0)='./file0\x00', 0x0, 0x0, 0x4c) [ 1769.644881] FAULT_INJECTION: forcing a failure. [ 1769.644881] name failslab, interval 1, probability 0, space 0, times 0 [ 1769.646861] CPU: 1 PID: 13112 Comm: syz-executor.1 Not tainted 5.10.60 #1 [ 1769.648023] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS rel-1.14.0-0-g155821a1990b-prebuilt.qemu.org 04/01/2014 [ 1769.649930] Call Trace: [ 1769.650375] dump_stack+0x107/0x163 [ 1769.650993] should_fail.cold+0x5/0xa [ 1769.651631] ? kvmalloc_node+0x61/0xf0 [ 1769.652290] should_failslab+0x5/0x10 [ 1769.652963] __kmalloc_node+0x76/0x4a0 [ 1769.653622] kvmalloc_node+0x61/0xf0 [ 1769.654250] alloc_fdtable+0xcd/0x280 [ 1769.654885] dup_fd+0x71a/0xc50 [ 1769.655449] unshare_files+0x16c/0x260 [ 1769.656107] ? __ia32_sys_unshare+0x40/0x40 [ 1769.656876] ? rcu_read_lock_sched_held+0x3a/0x70 [ 1769.657800] ? trace_rss_stat+0x174/0x210 [ 1769.658701] bprm_execve+0x123/0x1b00 [ 1769.659511] ? get_arg_page+0x153/0x200 [ 1769.660353] ? acct_arg_size+0xe0/0xe0 [ 1769.661193] ? open_exec+0x70/0x70 [ 1769.661917] ? memcpy+0x39/0x60 [ 1769.662466] ? copy_strings.isra.0+0x492/0x690 [ 1769.663356] ? copy_string_kernel+0x3ad/0x440 [ 1769.664138] do_execveat_common.isra.0+0x524/0x670 [ 1769.664993] __x64_sys_execveat+0xe7/0x130 [ 1769.665691] do_syscall_64+0x33/0x40 [ 1769.666239] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 1769.666967] RIP: 0033:0x466609 [ 1769.667402] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1769.669860] RSP: 002b:00007f443d715188 EFLAGS: 00000246 ORIG_RAX: 0000000000000142 [ 1769.670928] RAX: ffffffffffffffda RBX: 000000000056c038 RCX: 0000000000466609 [ 1769.671912] RDX: 0000000020000380 RSI: 00000000200002c0 RDI: ffffffffffffffff [ 1769.672910] RBP: 00007f443d7151d0 R08: 0000000000000000 R09: 0000000000000000 [ 1769.673884] R10: 0000000020000640 R11: 0000000000000246 R12: 0000000000000002 [ 1769.674865] R13: 00007ffeb6924e7f R14: 00007f443d715300 R15: 0000000000022000 [ 1769.699176] EXT4-fs (loop7): mounted filesystem without journal. Opts: ,errors=continue [ 1769.713768] EXT4-fs (loop7): re-mounted. Opts: ,errors=continue 12:30:39 executing program 4: syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000040)='./file0\x00', 0x40000, 0x2, &(0x7f0000000200)=[{&(0x7f0000010000)="2000000080000000060000006a0000000f000000000000000100000001000000004000000040000020000000e0f4655fe0f4655f0100ffff53ef010001000000dff4655f000000000000000001000000000000000b00000000010000280200000284", 0x62, 0x400}, {&(0x7f0000011600)="ed41000000080000dff4655fe0f4655fe0f4655f000000000000040004", 0x1d, 0x2100}], 0x0, &(0x7f0000000080)=ANY=[]) syz_mount_image$ext4(&(0x7f0000000000)='ext2\x00', &(0x7f0000000040)='./file0/../file0\x00', 0x0, 0x0, 0x0, 0x104e034, &(0x7f00000001c0)={[{@data_err_abort}]}) [ 1769.782222] netlink: 4 bytes leftover after parsing attributes in process `syz-executor.2'. [ 1769.782739] EXT4-fs (loop6): mounted filesystem without journal. Opts: ,errors=continue 12:30:40 executing program 5: r0 = syz_io_uring_setup(0x4d4f, &(0x7f0000000080), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=0x0, &(0x7f0000000140)=0x0) syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_POLL_ADD={0x6, 0x0, 0x0, @fd=r0, 0x0, 0x0, 0x0, {0x194}}, 0x0) r3 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0) perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_io_uring_submit(r3, r2, &(0x7f0000000100)=@IORING_OP_SPLICE, 0x4) io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0) execveat(0xffffffffffffffff, &(0x7f00000002c0)='./file0\x00', 0x0, 0x0, 0x3000) [ 1769.817146] device syz_tun entered promiscuous mode [ 1769.825527] device syz_tun left promiscuous mode [ 1769.868675] netlink: 4 bytes leftover after parsing attributes in process `syz-executor.2'. [ 1769.883425] device syz_tun entered promiscuous mode [ 1769.887675] device syz_tun left promiscuous mode [ 1769.913453] EXT4-fs (loop4): ext4_check_descriptors: Block bitmap for group 0 overlaps superblock [ 1769.915549] EXT4-fs (loop4): group descriptors corrupted! 12:30:52 executing program 5: r0 = syz_io_uring_setup(0x4d4f, &(0x7f0000000080), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=0x0, &(0x7f0000000140)=0x0) syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_POLL_ADD={0x6, 0x0, 0x0, @fd=r0, 0x0, 0x0, 0x0, {0x194}}, 0x0) r3 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0) perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_io_uring_submit(r3, r2, &(0x7f0000000100)=@IORING_OP_SPLICE, 0x4) io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0) execveat(0xffffffffffffffff, &(0x7f00000002c0)='./file0\x00', 0x0, 0x0, 0x3600) 12:30:52 executing program 7: syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000040)='./file0\x00', 0x40000, 0x3, &(0x7f0000000200)=[{&(0x7f0000010000)="2000000080000000060000006a0000000f000000000000000100000001000000004000000040000020000000e0f4655fe0f4655f0100ffff53ef010001000000dff4655f000000000000000001000000000000000b0000000001", 0x5a, 0x400}, {&(0x7f0000010400)="020000000300000004", 0x9, 0x800}, {&(0x7f0000011600)="ed41000000080000dff4655fe0f4655fe0f4655f000000000000040004", 0x1d, 0x2100}], 0x0, &(0x7f0000000080)=ANY=[]) syz_mount_image$ext4(&(0x7f0000000000)='ext2\x00', &(0x7f0000000040)='./file0/../file0\x00', 0x700, 0x0, 0x0, 0x104e034, &(0x7f00000001c0)) 12:30:52 executing program 4: syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000040)='./file0\x00', 0x40000, 0x3, &(0x7f0000000200)=[{&(0x7f0000010000)="2000000080000000060000006a0000000f000000000000000100000001000000004000000040000020000000e0f4655fe0f4655f0100ffff53ef010001000000dff4655f000000000000000001000000000000000b00000000010000280200000284", 0x62, 0x400}, {0x0, 0x0, 0x800}, {&(0x7f0000011600)="ed41000000080000dff4655fe0f4655fe0f4655f000000000000040004", 0x1d, 0x2100}], 0x0, &(0x7f0000000080)=ANY=[]) syz_mount_image$ext4(&(0x7f0000000000)='ext2\x00', &(0x7f0000000040)='./file0/../file0\x00', 0x0, 0x0, 0x0, 0x104e034, &(0x7f00000001c0)={[{@data_err_abort}]}) 12:30:52 executing program 1 (fault-call:6 fault-nth:29): r0 = syz_io_uring_setup(0x4d4f, &(0x7f0000000080), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=0x0, &(0x7f0000000140)=0x0) syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_POLL_ADD={0x6, 0x0, 0x0, @fd=r0, 0x0, 0x0, 0x0, {0x194}}, 0x0) r3 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0) perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_io_uring_submit(r3, r2, &(0x7f0000000100)=@IORING_OP_SPLICE, 0x4) io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0) execveat(0xffffffffffffffff, &(0x7f00000002c0)='./file0\x00', &(0x7f0000000380), &(0x7f0000000640)=[0x0, 0x0, 0x0], 0x0) 12:30:52 executing program 0: r0 = syz_io_uring_setup(0x4d4f, &(0x7f0000000080), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=0x0, &(0x7f0000000140)=0x0) syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_POLL_ADD={0x6, 0x0, 0x0, @fd=r0, 0x0, 0x0, 0x0, {0x194}}, 0x0) r3 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0) perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_io_uring_submit(r3, r2, &(0x7f0000000100)=@IORING_OP_SPLICE, 0x4) io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0) execveat(0xffffffffffffffff, &(0x7f00000002c0)='./file0\x00', &(0x7f0000000380), 0x0, 0x4000) 12:30:52 executing program 6: syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000040)='./file0\x00', 0x40000, 0x3, &(0x7f0000000200)=[{&(0x7f0000010000)="2000000080000000060000006a0000000f000000000000000100000001000000004000000040000020000000e0f4655fe0f4655f0100ffff53ef010001000000dff4655f000000000000000001000000000000000b0000000001", 0x5a, 0x400}, {&(0x7f0000010400)="020000000300000004", 0x9, 0x800}, {&(0x7f0000011600)="ed41000000080000dff4655fe0f4655fe0f4655f000000000000040004", 0x1d, 0x2100}], 0x0, &(0x7f0000000080)=ANY=[]) syz_mount_image$ext4(&(0x7f0000000000)='ext2\x00', &(0x7f0000000040)='./file0/../file0\x00', 0x0, 0x0, 0x0, 0x0, &(0x7f00000001c0)={[{@data_err_abort}]}) 12:30:52 executing program 3: r0 = syz_io_uring_setup(0x4d4f, &(0x7f0000000080), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200), &(0x7f0000000140)=0x0) r2 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0) perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_io_uring_submit(r2, r1, &(0x7f0000000100)=@IORING_OP_SPLICE, 0x4) io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0) execveat(0xffffffffffffffff, &(0x7f00000002c0)='./file0\x00', 0x0, 0x0, 0x68) 12:30:52 executing program 2: r0 = dup(0xffffffffffffffff) r1 = fcntl$dupfd(r0, 0x406, r0) bind$802154_dgram(r1, &(0x7f0000000040)={0x24, @none={0x0, 0x1}}, 0x14) sendmsg$BATADV_CMD_GET_BLA_BACKBONE(r0, &(0x7f0000000540)={&(0x7f0000000100), 0xc, &(0x7f0000000500)={0x0}}, 0x0) ioctl$sock_SIOCINQ(r0, 0x541b, &(0x7f0000000000)) r2 = socket$netlink(0x10, 0x3, 0x4) sendmsg$nl_generic(r2, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000240)={&(0x7f0000000080)=ANY=[@ANYBLOB="280000002c00010d000000000000e4ffffffffffffffffff"], 0x28}}, 0x0) r3 = syz_genetlink_get_family_id$batadv(&(0x7f0000000800), 0xffffffffffffffff) sendmsg$BATADV_CMD_GET_NEIGHBORS(0xffffffffffffffff, &(0x7f00000008c0)={&(0x7f00000007c0)={0x10, 0x0, 0x0, 0x20}, 0xc, &(0x7f0000000880)={&(0x7f0000000840)={0x2c, r3, 0x2, 0x70bd27, 0x0, {}, [@BATADV_ATTR_TPMETER_TEST_TIME={0x8, 0xb, 0x4}, @BATADV_ATTR_DISTRIBUTED_ARP_TABLE_ENABLED={0x5}, @BATADV_ATTR_MESH_IFINDEX={0x8}]}, 0x2c}}, 0x800) sendmsg$BATADV_CMD_GET_HARDIF(r2, &(0x7f0000000180)={&(0x7f0000000080)={0x10, 0x0, 0x0, 0x50841}, 0xc, &(0x7f0000000140)={&(0x7f00000000c0)={0x2c, r3, 0x100, 0x70bd2c, 0x25dfdbff, {}, [@BATADV_ATTR_NETWORK_CODING_ENABLED={0x5, 0x38, 0x1}, @BATADV_ATTR_NETWORK_CODING_ENABLED={0x5, 0x38, 0x1}, @BATADV_ATTR_THROUGHPUT_OVERRIDE={0x8, 0x3b, 0x8}]}, 0x2c}, 0x1, 0x0, 0x0, 0x4008000}, 0x20000044) [ 1782.060957] SELinux: unrecognized netlink message: protocol=4 nlmsg_type=44 sclass=netlink_tcpdiag_socket pid=13175 comm=syz-executor.2 [ 1782.072207] FAULT_INJECTION: forcing a failure. [ 1782.072207] name failslab, interval 1, probability 0, space 0, times 0 [ 1782.073528] CPU: 0 PID: 13171 Comm: syz-executor.1 Not tainted 5.10.60 #1 [ 1782.074316] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS rel-1.14.0-0-g155821a1990b-prebuilt.qemu.org 04/01/2014 [ 1782.075574] Call Trace: [ 1782.075866] dump_stack+0x107/0x163 [ 1782.076267] should_fail.cold+0x5/0xa [ 1782.076691] ? create_object.isra.0+0x3a/0xa10 [ 1782.077335] should_failslab+0x5/0x10 [ 1782.077741] kmem_cache_alloc+0x5b/0x350 [ 1782.078192] create_object.isra.0+0x3a/0xa10 [ 1782.078671] ? __kasan_kmalloc.constprop.0+0xc2/0xd0 [ 1782.079227] __kmalloc_node+0x1b0/0x4a0 [ 1782.079679] kvmalloc_node+0x61/0xf0 [ 1782.080088] alloc_fdtable+0xcd/0x280 [ 1782.080511] dup_fd+0x71a/0xc50 [ 1782.080900] unshare_files+0x16c/0x260 [ 1782.081321] ? __ia32_sys_unshare+0x40/0x40 [ 1782.081791] ? rcu_read_lock_sched_held+0x3a/0x70 [ 1782.082315] ? trace_rss_stat+0x174/0x210 [ 1782.082776] bprm_execve+0x123/0x1b00 [ 1782.083192] ? get_arg_page+0x153/0x200 [ 1782.083626] ? acct_arg_size+0xe0/0xe0 [ 1782.084056] ? open_exec+0x70/0x70 [ 1782.084441] ? memcpy+0x39/0x60 [ 1782.084820] ? copy_strings.isra.0+0x492/0x690 [ 1782.085332] ? copy_string_kernel+0x3ad/0x440 [ 1782.085837] do_execveat_common.isra.0+0x524/0x670 [ 1782.086378] __x64_sys_execveat+0xe7/0x130 [ 1782.086860] do_syscall_64+0x33/0x40 [ 1782.087262] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 1782.087835] RIP: 0033:0x466609 [ 1782.088184] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1782.090226] RSP: 002b:00007f443d736188 EFLAGS: 00000246 ORIG_RAX: 0000000000000142 [ 1782.091052] RAX: ffffffffffffffda RBX: 000000000056bf80 RCX: 0000000000466609 [ 1782.091893] RDX: 0000000020000380 RSI: 00000000200002c0 RDI: ffffffffffffffff [ 1782.092659] RBP: 00007f443d7361d0 R08: 0000000000000000 R09: 0000000000000000 [ 1782.093431] R10: 0000000020000640 R11: 0000000000000246 R12: 0000000000000002 [ 1782.094198] R13: 00007ffeb6924e7f R14: 00007f443d736300 R15: 0000000000022000 [ 1782.115299] SELinux: unrecognized netlink message: protocol=4 nlmsg_type=0 sclass=netlink_tcpdiag_socket pid=13175 comm=syz-executor.2 12:30:52 executing program 1 (fault-call:6 fault-nth:30): r0 = syz_io_uring_setup(0x4d4f, &(0x7f0000000080), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=0x0, &(0x7f0000000140)=0x0) syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_POLL_ADD={0x6, 0x0, 0x0, @fd=r0, 0x0, 0x0, 0x0, {0x194}}, 0x0) r3 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0) perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_io_uring_submit(r3, r2, &(0x7f0000000100)=@IORING_OP_SPLICE, 0x4) io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0) execveat(0xffffffffffffffff, &(0x7f00000002c0)='./file0\x00', &(0x7f0000000380), &(0x7f0000000640)=[0x0, 0x0, 0x0], 0x0) [ 1782.144342] EXT4-fs (loop6): mounted filesystem without journal. Opts: ,errors=continue [ 1782.146948] EXT4-fs (loop4): ext4_check_descriptors: Block bitmap for group 0 overlaps superblock [ 1782.148173] EXT4-fs (loop4): group descriptors corrupted! 12:30:52 executing program 2: r0 = syz_init_net_socket$802154_dgram(0x24, 0x2, 0x0) r1 = openat$tun(0xffffffffffffff9c, &(0x7f0000000040), 0x41002, 0x0) ioctl$TUNSETQUEUE(r1, 0x400454ca, &(0x7f00000000c0)={'ipvlan1\x00'}) pwritev2(r1, &(0x7f0000002580)=[{&(0x7f0000000040)="6b38c7dc413104506d1f58a4337acaa8039bbd12517a10fbc105de59cc369e7dfa3692ea587ced8e1fc00ebd6332126ad3a5f263bb24a6531bac5368327b083f256c0bf1455e374f773fd438057036290d313c62a6f7a7ccd643867cb101262ffb0423c4fd649408bfb6df9e39bcabc1dcd757a233d25fa690903d586a928c01925c6c712ec212272f3ced44b88dc9", 0x8f}, {&(0x7f0000000140)="383658b219945ec947355153c490329489c9d61c08d6fdfc0df656ccf6647b92fa0c4116ed2143f66d", 0x29}, {&(0x7f0000000180)="6c869ac073c607030a2e4084c89ab33b62f0ace88fbe7b24ea40173d15ecc48a9a9dde8cd19679a858aa205871ff5038582a878599345c9fe5a61efe90d1785084ecc202c89f466ee59d0f5274c35df859a1c9d78cafac3453622d9c9e1770b748d1d16af1f0bbcf3b762ed916788bab6be7e4ca822668f6b5e67a7dfc2ebfc4a56eeb511bf406bb884c6a3d73ecc76fd6e6bbdf7a036f1fd9feb2c8ea94ce7887bda8a82c191fabfc0a6de422e7a7012085150e671254988f875f45b4e3b9181dd4ed2e1e1742869f", 0xc9}, {&(0x7f0000000280)="cb0b6569f43495ce99667c0103368250c00378dfe4b55515751847142c5afb6fefac19bc815d9f636b5000e52ad02f8b93dcfa4a47b9368314303bb7535199f77e06b61693b3b9f5ec1749e8c7a75e8a2cb86fffd86039190cf5e5dafa0bc0ba3d8c3482e89bad06cc3159cca66e8c3aeba9c7b2040405de2337e0cd313d7766ebccf4597a3dd407b858346dab388510341632ac3c46cb46b885033647712516b16449f936b9cee59d9201e6e531f0d8895bda328af90d132fe3c674ef9aee2ef55d503c8527fd892f1dded802a248a8212432c5fe421f", 0xd7}, {&(0x7f0000000580)="35746f471e0b6c1e0e99208a5865bb7e9330a7be0f4b3dee1e467f1abba7f9bf8e4126ae486d031816cc82f179df92da3be8dabba04a40fe876da91aa0a1bfdec4b3507a765788c573af08f2e691771c0feee0029d82eba1ad3fec7c61c32869b594eeea870e29cd98a60c23908e2547039a5de3e2d650e8994217251025661ada5b10f7e44bcee44539edfb89715064a7fe6e59d507ef8fe0f9121a3036cfa34d61a3a36b99304176bd17809700ea644eceee7534e5b31b9561df15fe47cec05b3e9cebbc4eabe851959ce82f5a0534aaee765eae3a0276efe49615459f7b173b5991058a61d8d994335d127ea7478b82ab1b0d987eff6dadd5294829c528768cc37612f4bd6b7f1c8b67c819ab3268f089d69ce3bc23ddd5576bf1f44a56774dcfa6d59725c4c8998a2d64e53ece62b64328a12b449cc2dcbc3a6e4395d49995c33445f81336086e5d5465f91ba52ffd9db2034261eb573dfb6cb09b12ab97c80cf84ee6c06a93a3cec5018bc8d57d02441c4d2f3cf2e3e5b67bf952afa568cea38e55bbaee1b6528d77adf3a98be31bdd929247a44f47c32aee4310ff8a9779d4596ac8c5b4084b6156b27e9b87d0897832d32ffe762b8cbe764e04ab31261ba220886cb2ec6a312814980bea5f17a822e6fa75e8061be72af5d6023c50ea0fa4fa3619ecc737f9d780441c12d1d4e4e1c81e40750b9f8c993863f1a1de2858b4e89273844bf4c62812fd50e11d5ce337fcfb2329d39e2b59d2320fd231369f38fbfcb295206cd60c103ad792dc575e330196ae20819ffb24833b77142194d7a5de16cf20a2edfe62e338f772b3b27198667ced1a3869cd6da073e8b5d7daa46ce4d00eaf7ffaf15e85c51657903fc76fca089a24ae89d922e980a9848864bf28f364bb325509af68a8f4d9e589e150a85e2e9ffcad6824fca8174eb3874f966c5708e9d069c2f7cb1dd5d5881c998559d7f7ecb466624838deb776a6053c657762b9e158cb0ed298e107dc2af334c07986025ebd9b85ad494d25be72053973b819ca4644cc4b55d5257e4852a1f8e97dfed03d097ba8300bf2b07becb51f36878433b770b7815da319cf63db062df747291d7827a0e055a63d11451ea1799b7f22b849ce112534c842028d1407db251597a937b50c10516d2155da53aa17b0ef388bf886fa15d2593702e2bfa0a33ff2b37795cf8e4fc228aa0cfd20e84076e7aa5b39599954f53436ba1e1b1dc7647a09c88d318c54525d507a0f6ccede0e6d44612e5eed48130787cebf77e63fa7e7ca1fa958f532c5ead6eb8aad7e1fa584ed5742d6041bc67861a132f4e285ed486f9a6ad528a7bd637cb8e7801fe4a67ea7bdb7574709300d3969804b23078181c492f6d43cb1c44d9134b68292c1d84ece41b04073ee1324f740ce49552117054b616f958c90754418367ed2e91acc43e8c695f212c70a87be704c02bc3e97685ab4322d9c433fd3f21d7b940122cf17cf96cf6491d2096a3e48fca436499c827998a14feaf94f299f443fddff167f204cb095feec05e7d1b23d68ab288ef8780d7801032687af0abc28a4c1e8f858288527fbe1c35577d525faee1b7dcc7772e2ce840df8c5aec867458c4f51bdff5f77bc5eae9e63606297270decc42d111004f382affde86d9742ffe3e00cbde586fe9a3f4b45f494a822ce5d3d60f0b70b01da717a3fd18967ec4a560acf86f1d2197d49e9cf19064329921078bfe753708742e266e0202c198ee2ee09b0e23074e680c44bddec1a6d426b1a4064e26a377d6e3e5da997eabb3c46f35699ec8d6f0e3431d958835b9219eebe9a6c6f73a43bd57afc545bffe83f3417513f22b5fa223c0dfd3c6edb21dace486ec9c29c55192d536be93e1b578ffdbb01dea902b64cbfdc6e9a3fcf75a8e796e0d6e9947ef08aba11a71d11d9812d291dcb5e157dacc5e9b884832bc8da1f04abeedf408146fd4e9bc219fbb5e66a198f95184b9a2b2c9c96322c8ef0cbf45a942a77d39609ae716abeefd182b8717bb704741c4a9cfc797dc5d041a49924be83844cb098fd946ace9a071c3fb520ee467ed6d862663b340bcf3506bf210b6574d23301fb9ba6aed63e217656be39ffde56ce5498d1b5a0cfaff327b4e84d5ad44858cafb9390d8b97da2d6f058cc1898600967578ebf44427970104c5c6f3ad6db8734fc09780a5a8016e7d74b016fde7f12ee1b61f22cc20584683852bf803a59c1a37a8c181149af01bc6d569150da30a2116b97c96ec759fc6313985e461022f6af4d17bc5568fe1083e8ab26b980faa32c7c44867cccd8b1a4d04ace30e65c62c77031def386fbc4561de656b405cdbdf60f181661e06dcb833afde20f4fd9319bc532cc7b878f82552d340ad259aaaa971f479fad5e70a5c183c0201ca345fced2ac29dffa00474dbfecd3ee5a67cdc7535c0f9752d2312dc413aa33b6c12f548bb30eb492cd17dfe6e05ae5bb731d29379b7f9544c3a9f840d7ecc26c30b68df588b54659eb71d8a6ab3cc2e67922ddec996d3dc1eae124bf8bfb60a788918156932ff3a841402d7fc96b379095dcd594d7a5362d9738759106a5b792ec5d282765d43590ce3329ef71b40c9301d8a358afb5064ee36c96efed970d1b4bd9ad98ed9d527175e44b89f598cb4e0fcaf65bd824995adeb5aa39dd66ac125f06e476751bf82d027d79ae30561207008125ce9ad3fdc30f5d7e531eb2ec57ec869120f3d6c814b1f89221237b9e4eef8dce7e8840f3b16c65ff7fd14cbeaa8423f2988a901b0547c817f43b1ea3ee7025b7a99efac5684232f3db51dd1e9d485bc5ebb330f9537461fc7c3ac5333d1855e9074e7cd817b58606ec9625f42862e04699c272963123c0b213d7ef9832a3828b27b5505d12a6ef9c2248e7250b2b342c6dc5d00a27626ca510118aefd884f617a7ca5670b09b91bc2f907fc274b3d5fc9f4f42929a0fbeadd184a693ad0fd1a6b542bfe1309000be6874576151188e886c91ad40ae2910cbac7cbf10931be25f2674e1e17a0876e90140e9462906731ac6e358ca316c3d232ee9e45484037df89a95a7e8287559010eda3859c7a31ac8ce902be898b31b1453cc23c09f520dad5aad9ab33db48829cba707ec906e4a729ffa4da773a274a47a324ce4ce54c6fbb6e0e25ce88062051ca11e1d09a4ac9ccac77e3325248794c230cd2d6b7917ccc77d295ef0202ca5ac5a6bca20d022023c341635411fdad8ea3d335b9ed31c624b03bd588d4b8fd8fe15d9b9dc9272552751954a5d69e49f78f627419cd8f297886d6d22ec589030c8ba4541a107e971cab68ee93dc87b789c8a762b4591dd1d881ed4876643f80f85be4702c4638dc73f7a9909ccb278a759a5373dda83f67b11c9df7f2b9f4dd05797dd66a9249d48e256789a22ca35f6b27c7889dc05ec07f26c19866179d1de39c4a17740e13ba55e6edb48b65baf4882b2e6cb6ba046736883a66adbf55a0af1eac94f0c690fa69ae7f00c3921f0022f646255ec5b64965ac4839876395cae81d0de6f33c5393d70d2e90f6f55fa104562b3151d9aca7b379eb5413272a2eab3852d1519f21a48b09e353e00f8c25dc917e8aaa9be9e908a8d27c791b71f4aba26fbeddfb2c5a4ecdb2eb2a0455384140cb9b839f25a1bf42226fd8c805dcff15604c489f89ede5ab956b0a74e550c6b8dfd8269f6e0f0b0378ea69eb3cf681eb28eae8e35d866dffaa515bb26f60bd7754689a646eeb58c8fd7abb0bc4e9af040ca32691eb05440e1c3f6e198346de1e287b5fb9f3c451348c73925c4766587224efd3db1f27b5734feb3862017a352e0685e772297e0f80e400be8b71a17bcda2437e3fa28b30515c44483fcb0f677b10b5c6afec8361b7cc97a14b00af15308aa9b6c5f763b89b38ec4f4a36c7b9866356272b1bdc3c328bb0184c866f8ea7dcc8ab83853990b53874df45d96f6a6e745bc77179f64e65b5172f299228e04d0f47908f4313e9ac824ab7a166b897d071bba3296be8c85df380743025a70252229c36ce69f24e372555c2214252ff0be83703da1b5665b741856e0c3e3f156c7581e528bf91d34c66cdfc6799ca995420e1d81aaa8137a9d5322514b0fe421a12f232c18ac160711da2505955bc7812792570b5ba638c1ae14a05f71c8fd28373428bde510f6fb9221f4f1a14d02e00d5d848f1acf7a8a3bcc54f78e2f9d61a9e33cb204e9c76b81181cbe516e63bce407febbea754a7ce494ffe3c1cd089e5517b4810847aa8c9406fc345aa6cd7dcb928691486768a7a339f03ed681a64049ed7653ae570c329e71616d2400e9bbc149382b0eabcc2ca1be53334e5898d16036522576be2a4ce6678a94e29b41f27736e0d47d9a8bf31e509ae4c6b4ed6a5b665f8f6bd43f5f6edea75d3d129fe2e847475e3751c6c398b397dec4fee8b52dd39d6247fa75f480b2295fa321bd194f6201dce12c73aa6c9e0e96d5c456d0813fedd0474f84fe995ff377b4cf13e0eb6969157634a0483e1f56b563654d2d95ec2c4faa39f0f2185ebbfea47e248b15c99e1faed5d13e8a48c0b8c1095bc56ebbebca6781af753f51878bfd9a0702b8239983a0ba6657332cc8c90cfc5eb47726611d6c3eb63c40db7688183fbeeb260b1353bd4d5af353cd3cb0bab02defbcb8c03893b3be9da666b0104679e486a8985498eb9f4f1a82aa5a28773bbdb3d0093d2243b1a0e1f0f6424ff444d049eccc9150edbcd9a716508c3aafe3fe5a9d1293304aa9143f81e3554e41325d539fbdd9013d3f97581a60636fc4360d1dbf62ff7fa1d06d1a4ae6b7e565bb95c00ada4ab501ace0c145f3a4b27231269e1dc87af60e2fb74bcf080824f25f315dfc4b62848ed3c55436a092f5c234e4461aaed64fa4ab1812ad8a317aea93560ba10619cdf50085750a7f3f8fe2a5d4fbe3241c1a18bc0aa7ab5a0f3a457aaeadd38c3d86628afc4cd861b2c29be1bbb831db5fb22fc6c1882168326e14c47d7646de31ccc3a5005440f13ae8511557f62f4ec8f864b448fd1558ceee0dbda03b4d4147eb081e4dfa69fb6e4e4fe3db8e69e54a6982a2fad0229f58bb86eaf8a1cbdec517a79e3e8576f0da141d0ce32561914da99898497dbe1294d6d16d51b9ed23b3eb97a340c76982123bcfe782973116018768496235d98bdd9770ade1ce66e78e0e1b7dfd1ed8ae29f63dfe9d06066d0fc1632bf9c738c098975dc423adc4fe9ce8908a22d5ac59ecced9efb98cc44bcade58be333432ddfdd0185227cc8d520d0d917b6eb0d635590669d34873ef3e7861c86b05162723cee2b1afbf146de5010d469c666745b9f0d4fe9c5b3fddc15c84d5f77995accbd96781bfd2a7119ae0d5e6c00effa7881da5c361e21362731ddbf6c4a718b30cffdf6675a06dbfbd6e67ce45f2c335d6019ff759831ee7391baf7ca7937d4be1875bd846f683b20368fb23f90a2e0ceb6855a7e59f6fd82cec21565dca8f60ed88f243dbf8093074e50af6f38b9d3aead34f870f5d1e72bd5c479f5640e72e299268a5a46e3b2f95beed16b763e4d033a444c32e51b1d79419d1bfcc5fee151aee1e4b0e4879c2a7bdfd7e4cd31027b50b387b4c1ec0b0682ee791b4b9b4b901a83e013733594aad4d081df0164d94963dc206157fd72f8cc1aede0e85a9a78e2abeb20fa3535e29e37a0ea93c4b09cbe64123e84dccdcd8eb0f3cfdd8257f4ddee3343ffa477b4045eb589b5ba0364fc19bac65f5ed45f7da95710ee2ac89d8f30839197d93197c4112ec8c3", 0x1000}, {&(0x7f0000000380)="29ce2853b718391dbc77723d8fd9e2d3510570a9607669b24cf7e2a78e46bdefea4133d83ff286f01b588b1f5812b863f597d2a256be64e09e9afd656a21b709bc5da179bc21757f96d59cf3fe0a0f609d8d10d373a9a5fbaa85465ed40aae28c67e25c8122d81079ff41900187968438ef3b3fcbd01d809cbbb16ffe51c6d", 0x7f}, {&(0x7f0000001580)="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", 0x1000}, {&(0x7f0000000400)="bc44e9368a53e5ee397502aed8d5067a0d936e9eedbb5038bed3a276b9f677e0cdc8256e0bfede6044674a4ef37b83156db643e87a397a4bfc71cc1ccef807a0f4dac25f325b8cd8c89ca0736e3d958a363fbefc88d241134347e811fc056d0d4d4a8f53d619b80d82b7ec3185edb74dd55e2b6a42321417f68380ac7fc73b2e65386e9ae476f88ae22a617e2335367995833c7b51e7743c", 0x98}], 0x8, 0x101, 0x9d9d, 0xa) r2 = dup(r0) sendmsg$BATADV_CMD_GET_BLA_BACKBONE(r2, &(0x7f0000000540)={&(0x7f0000000100), 0xc, &(0x7f0000000500)={0x0}}, 0x0) setsockopt$inet6_int(r2, 0x29, 0x12, 0xffffffffffffffff, 0x0) ioctl$sock_SIOCINQ(r2, 0x541b, &(0x7f0000000000)) [ 1782.170387] EXT4-fs (loop7): mounting ext2 file system using the ext4 subsystem [ 1782.188826] EXT4-fs (loop7): mounted filesystem without journal. Opts: ,errors=continue [ 1782.288469] FAULT_INJECTION: forcing a failure. [ 1782.288469] name failslab, interval 1, probability 0, space 0, times 0 [ 1782.289825] CPU: 0 PID: 13209 Comm: syz-executor.1 Not tainted 5.10.60 #1 [ 1782.290665] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS rel-1.14.0-0-g155821a1990b-prebuilt.qemu.org 04/01/2014 [ 1782.291892] Call Trace: [ 1782.292203] dump_stack+0x107/0x163 [ 1782.292629] should_fail.cold+0x5/0xa [ 1782.293081] ? kvmalloc_node+0x61/0xf0 [ 1782.293508] should_failslab+0x5/0x10 [ 1782.293931] __kmalloc_node+0x76/0x4a0 [ 1782.294354] ? __kasan_kmalloc.constprop.0+0xc2/0xd0 [ 1782.294916] kvmalloc_node+0x61/0xf0 [ 1782.295319] alloc_fdtable+0x138/0x280 [ 1782.295753] dup_fd+0x71a/0xc50 [ 1782.296123] unshare_files+0x16c/0x260 [ 1782.296551] ? __ia32_sys_unshare+0x40/0x40 [ 1782.297030] ? rcu_read_lock_sched_held+0x3a/0x70 [ 1782.297547] ? trace_rss_stat+0x174/0x210 [ 1782.298003] bprm_execve+0x123/0x1b00 [ 1782.298409] ? get_arg_page+0x153/0x200 [ 1782.298840] ? acct_arg_size+0xe0/0xe0 [ 1782.299272] ? open_exec+0x70/0x70 [ 1782.299667] ? memcpy+0x39/0x60 [ 1782.300032] ? copy_strings.isra.0+0x492/0x690 [ 1782.300529] ? copy_string_kernel+0x3ad/0x440 [ 1782.301033] do_execveat_common.isra.0+0x524/0x670 [ 1782.301574] __x64_sys_execveat+0xe7/0x130 [ 1782.302047] do_syscall_64+0x33/0x40 [ 1782.302449] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 1782.303019] RIP: 0033:0x466609 [ 1782.303390] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1782.305403] RSP: 002b:00007f443d736188 EFLAGS: 00000246 ORIG_RAX: 0000000000000142 [ 1782.306210] RAX: ffffffffffffffda RBX: 000000000056bf80 RCX: 0000000000466609 [ 1782.306961] RDX: 0000000020000380 RSI: 00000000200002c0 RDI: ffffffffffffffff [ 1782.307713] RBP: 00007f443d7361d0 R08: 0000000000000000 R09: 0000000000000000 [ 1782.308476] R10: 0000000020000640 R11: 0000000000000246 R12: 0000000000000002 [ 1782.309233] R13: 00007ffeb6924e7f R14: 00007f443d736300 R15: 0000000000022000 12:31:05 executing program 2: r0 = syz_init_net_socket$802154_dgram(0x24, 0x2, 0x0) r1 = dup(r0) sendmsg$BATADV_CMD_GET_BLA_BACKBONE(r1, &(0x7f0000000540)={&(0x7f0000000100)={0x10, 0x0, 0x0, 0x80000}, 0xc, &(0x7f0000000500)={0x0}}, 0x0) ioctl$sock_SIOCINQ(r1, 0x541b, &(0x7f0000000000)) 12:31:05 executing program 1 (fault-call:6 fault-nth:31): r0 = syz_io_uring_setup(0x4d4f, &(0x7f0000000080), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=0x0, &(0x7f0000000140)=0x0) syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_POLL_ADD={0x6, 0x0, 0x0, @fd=r0, 0x0, 0x0, 0x0, {0x194}}, 0x0) r3 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0) perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_io_uring_submit(r3, r2, &(0x7f0000000100)=@IORING_OP_SPLICE, 0x4) io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0) execveat(0xffffffffffffffff, &(0x7f00000002c0)='./file0\x00', &(0x7f0000000380), &(0x7f0000000640)=[0x0, 0x0, 0x0], 0x0) 12:31:05 executing program 6: syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000040)='./file0\x00', 0x40000, 0x3, &(0x7f0000000200)=[{&(0x7f0000010000)="2000000080000000060000006a0000000f000000000000000100000001000000004000000040000020000000e0f4655fe0f4655f0100ffff53ef010001000000dff4655f000000000000000001000000000000000b0000000001", 0x5a, 0x400}, {&(0x7f0000010400)="020000000300000004", 0x9, 0x800}, {&(0x7f0000011600)="ed41000000080000dff4655fe0f4655fe0f4655f000000000000040004", 0x1d, 0x2100}], 0x0, &(0x7f0000000080)=ANY=[]) syz_mount_image$ext4(&(0x7f0000000000)='ext2\x00', &(0x7f0000000040)='./file0/../file0\x00', 0x0, 0x0, 0x0, 0x104e034, 0x0) 12:31:05 executing program 4: syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000040)='./file0\x00', 0x40000, 0x3, &(0x7f0000000200)=[{&(0x7f0000010000)="2000000080000000060000006a0000000f000000000000000100000001000000004000000040000020000000e0f4655fe0f4655f0100ffff53ef010001000000dff4655f000000000000000001000000000000000b00000000010000280200000284", 0x62, 0x400}, {0x0, 0x0, 0x800}, {&(0x7f0000011600)="ed41000000080000dff4655fe0f4655fe0f4655f000000000000040004", 0x1d, 0x2100}], 0x0, &(0x7f0000000080)=ANY=[]) syz_mount_image$ext4(&(0x7f0000000000)='ext2\x00', &(0x7f0000000040)='./file0/../file0\x00', 0x0, 0x0, 0x0, 0x104e034, &(0x7f00000001c0)={[{@data_err_abort}]}) 12:31:05 executing program 3: r0 = syz_io_uring_setup(0x4d4f, &(0x7f0000000080), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200), &(0x7f0000000140)=0x0) r2 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0) perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_io_uring_submit(r2, r1, &(0x7f0000000100)=@IORING_OP_SPLICE, 0x4) io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0) execveat(0xffffffffffffffff, &(0x7f00000002c0)='./file0\x00', 0x0, 0x0, 0x6c) 12:31:05 executing program 5: r0 = syz_io_uring_setup(0x4d4f, &(0x7f0000000080), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=0x0, &(0x7f0000000140)=0x0) syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_POLL_ADD={0x6, 0x0, 0x0, @fd=r0, 0x0, 0x0, 0x0, {0x194}}, 0x0) r3 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0) perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_io_uring_submit(r3, r2, &(0x7f0000000100)=@IORING_OP_SPLICE, 0x4) io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0) execveat(0xffffffffffffffff, &(0x7f00000002c0)='./file0\x00', 0x0, 0x0, 0x3c00) 12:31:05 executing program 7: syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000040)='./file0\x00', 0x40000, 0x3, &(0x7f0000000200)=[{&(0x7f0000010000)="2000000080000000060000006a0000000f000000000000000100000001000000004000000040000020000000e0f4655fe0f4655f0100ffff53ef010001000000dff4655f000000000000000001000000000000000b0000000001", 0x5a, 0x400}, {&(0x7f0000010400)="020000000300000004", 0x9, 0x800}, {&(0x7f0000011600)="ed41000000080000dff4655fe0f4655fe0f4655f000000000000040004", 0x1d, 0x2100}], 0x0, &(0x7f0000000080)=ANY=[]) syz_mount_image$ext4(&(0x7f0000000000)='ext2\x00', &(0x7f0000000040)='./file0/../file0\x00', 0x900, 0x0, 0x0, 0x104e034, &(0x7f00000001c0)) 12:31:05 executing program 0: r0 = syz_io_uring_setup(0x4d4f, &(0x7f0000000080), &(0x7f00000a0000)=nil, &(0x7f0000ffe000/0x2000)=nil, &(0x7f0000000200)=0x0, &(0x7f0000000140)=0x0) syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_POLL_ADD={0x6, 0x0, 0x0, @fd=r0, 0x0, 0x0, 0x0, {0x194}}, 0x0) mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0) perf_event_open(&(0x7f0000000040)={0x0, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0, 0xa}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_io_uring_setup(0x1432, &(0x7f0000000080)={0x0, 0x1921, 0x1}, &(0x7f0000ffa000/0x4000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000000)=0x0, &(0x7f0000000380)=0x0) syz_io_uring_submit(r3, r4, &(0x7f00000002c0)=@IORING_OP_READ=@use_registered_buffer={0x16, 0x0, 0x0, @fd_index, 0x0, 0x0, 0x0, 0x4, 0x0, {0x4}}, 0x0) syz_io_uring_submit(r3, r2, &(0x7f0000000100)=@IORING_OP_SPLICE={0x1e, 0x1, 0x0, @fd, 0x0, {}, 0x0, 0x0, 0x1}, 0x4) io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0) execveat(0xffffffffffffffff, &(0x7f00000002c0)='./file0\x00', &(0x7f0000000380), 0x0, 0x1000) r5 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffd000/0x3000)=nil, 0x3000, 0x2000000, 0x110, 0xffffffffffffffff, 0x0) r6 = syz_open_dev$loop(&(0x7f00000001c0), 0x7fffffff, 0x40c802) r7 = syz_io_uring_setup(0x1, &(0x7f0000000400)={0x0, 0xc495, 0x20}, &(0x7f0000ffd000/0x2000)=nil, &(0x7f0000ffc000/0x2000)=nil, &(0x7f00000003c0)=0x0, &(0x7f0000000280)=0x0) ioctl$sock_inet6_SIOCDELRT(0xffffffffffffffff, 0x890c, &(0x7f0000000300)={@mcast1, @local, @ipv4={'\x00', '\xff\xff', @empty}, 0x8000, 0x8, 0x7, 0x0, 0x6, 0x8}) r10 = io_uring_register$IORING_REGISTER_PERSONALITY(r7, 0x9, 0x0, 0x0) syz_io_uring_submit(r8, r9, &(0x7f0000000000)=@IORING_OP_FSYNC={0x3, 0x0, 0x0, @fd, 0x0, 0x0, 0x0, 0x0, 0x0, {0x0, r10}}, 0x0) syz_io_uring_submit(r5, r2, &(0x7f0000000240)=@IORING_OP_EPOLL_CTL=@del={0x1d, 0x3, 0x0, 0xffffffffffffffff, 0x0, r6, 0x2, 0x0, 0x1, {0x0, r10}}, 0x80000000) r11 = mmap$IORING_OFF_SQ_RING(&(0x7f0000fff000/0x1000)=nil, 0x1000, 0x3000000, 0x20010, r0, 0x0) r12 = openat$tun(0xffffffffffffff9c, &(0x7f0000000040), 0x0, 0x0) ioctl$TUNSETQUEUE(r12, 0x400454ca, &(0x7f00000000c0)={'ipvlan1\x00'}) syz_io_uring_submit(r11, 0x0, &(0x7f0000000180)=@IORING_OP_EPOLL_CTL=@del={0x1d, 0x1, 0x0, 0xffffffffffffffff, 0x0, r12}, 0xfffffffe) [ 1795.228893] EXT4-fs (loop4): ext4_check_descriptors: Block bitmap for group 0 overlaps superblock [ 1795.230001] EXT4-fs (loop4): group descriptors corrupted! [ 1795.253429] FAULT_INJECTION: forcing a failure. [ 1795.253429] name failslab, interval 1, probability 0, space 0, times 0 [ 1795.256548] CPU: 1 PID: 13230 Comm: syz-executor.1 Not tainted 5.10.60 #1 [ 1795.258269] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS rel-1.14.0-0-g155821a1990b-prebuilt.qemu.org 04/01/2014 [ 1795.261136] Call Trace: [ 1795.261824] dump_stack+0x107/0x163 [ 1795.262756] should_fail.cold+0x5/0xa [ 1795.263734] ? create_object.isra.0+0x3a/0xa10 [ 1795.264883] should_failslab+0x5/0x10 [ 1795.265849] kmem_cache_alloc+0x5b/0x350 [ 1795.266876] create_object.isra.0+0x3a/0xa10 [ 1795.267982] ? __kasan_kmalloc.constprop.0+0xc2/0xd0 [ 1795.269327] __kmalloc_node+0x1b0/0x4a0 [ 1795.270344] kvmalloc_node+0x61/0xf0 [ 1795.271262] alloc_fdtable+0x138/0x280 [ 1795.272263] dup_fd+0x71a/0xc50 [ 1795.273111] unshare_files+0x16c/0x260 [ 1795.274112] ? __ia32_sys_unshare+0x40/0x40 [ 1795.275237] ? rcu_read_lock_sched_held+0x3a/0x70 [ 1795.276526] ? trace_rss_stat+0x174/0x210 [ 1795.277611] bprm_execve+0x123/0x1b00 [ 1795.278567] ? get_arg_page+0x153/0x200 [ 1795.279573] ? acct_arg_size+0xe0/0xe0 [ 1795.280557] ? open_exec+0x70/0x70 [ 1795.281485] ? memcpy+0x39/0x60 [ 1795.282314] ? copy_strings.isra.0+0x492/0x690 [ 1795.283438] ? copy_string_kernel+0x3ad/0x440 [ 1795.284482] do_execveat_common.isra.0+0x524/0x670 [ 1795.285669] __x64_sys_execveat+0xe7/0x130 [ 1795.286715] do_syscall_64+0x33/0x40 [ 1795.287666] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 1795.288932] RIP: 0033:0x466609 [ 1795.289785] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1795.295039] RSP: 002b:00007f443d736188 EFLAGS: 00000246 ORIG_RAX: 0000000000000142 [ 1795.297202] RAX: ffffffffffffffda RBX: 000000000056bf80 RCX: 0000000000466609 [ 1795.299214] RDX: 0000000020000380 RSI: 00000000200002c0 RDI: ffffffffffffffff [ 1795.301226] RBP: 00007f443d7361d0 R08: 0000000000000000 R09: 0000000000000000 [ 1795.303063] R10: 0000000020000640 R11: 0000000000000246 R12: 0000000000000002 [ 1795.304622] R13: 00007ffeb6924e7f R14: 00007f443d736300 R15: 0000000000022000 12:31:05 executing program 4: syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000040)='./file0\x00', 0x40000, 0x3, &(0x7f0000000200)=[{&(0x7f0000010000)="2000000080000000060000006a0000000f000000000000000100000001000000004000000040000020000000e0f4655fe0f4655f0100ffff53ef010001000000dff4655f000000000000000001000000000000000b00000000010000280200000284", 0x62, 0x400}, {0x0, 0x0, 0x800}, {&(0x7f0000011600)="ed41000000080000dff4655fe0f4655fe0f4655f000000000000040004", 0x1d, 0x2100}], 0x0, &(0x7f0000000080)=ANY=[]) syz_mount_image$ext4(&(0x7f0000000000)='ext2\x00', &(0x7f0000000040)='./file0/../file0\x00', 0x0, 0x0, 0x0, 0x104e034, &(0x7f00000001c0)={[{@data_err_abort}]}) [ 1795.339406] EXT4-fs (loop7): mounted filesystem without journal. Opts: ,errors=continue [ 1795.350912] EXT4-fs (loop6): mounted filesystem without journal. Opts: ,errors=continue 12:31:05 executing program 3: r0 = syz_io_uring_setup(0x4d4f, &(0x7f0000000080), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200), &(0x7f0000000140)=0x0) r2 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0) perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_io_uring_submit(r2, r1, &(0x7f0000000100)=@IORING_OP_SPLICE, 0x4) io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0) execveat(0xffffffffffffffff, &(0x7f00000002c0)='./file0\x00', 0x0, 0x0, 0x74) 12:31:05 executing program 2: r0 = syz_init_net_socket$802154_dgram(0x24, 0x2, 0x0) r1 = creat(&(0x7f0000000040)='./file0\x00', 0x1) connect$802154_dgram(r1, &(0x7f0000000080)={0x24, @long={0x3, 0xffff, {0xaaaaaaaaaaaa0102}}}, 0x14) r2 = dup(r0) sendmsg$BATADV_CMD_GET_BLA_BACKBONE(r2, &(0x7f0000000540)={&(0x7f0000000100), 0xc, &(0x7f0000000500)={0x0}}, 0x0) ioctl$sock_SIOCINQ(r2, 0x541b, &(0x7f0000000000)) 12:31:05 executing program 7: syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000040)='./file0\x00', 0x40000, 0x3, &(0x7f0000000200)=[{&(0x7f0000010000)="2000000080000000060000006a0000000f000000000000000100000001000000004000000040000020000000e0f4655fe0f4655f0100ffff53ef010001000000dff4655f000000000000000001000000000000000b0000000001", 0x5a, 0x400}, {&(0x7f0000010400)="020000000300000004", 0x9, 0x800}, {&(0x7f0000011600)="ed41000000080000dff4655fe0f4655fe0f4655f000000000000040004", 0x1d, 0x2100}], 0x0, &(0x7f0000000080)=ANY=[]) syz_mount_image$ext4(&(0x7f0000000000)='ext2\x00', &(0x7f0000000040)='./file0/../file0\x00', 0xa00, 0x0, 0x0, 0x104e034, &(0x7f00000001c0)) 12:31:05 executing program 0: r0 = syz_io_uring_setup(0x4d4f, &(0x7f0000000080), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=0x0, &(0x7f0000000140)=0x0) syz_io_uring_setup(0x3709, &(0x7f0000000240)={0x0, 0xbdf5, 0x18, 0x3, 0xcb, 0x0, r0}, &(0x7f0000ff9000/0x4000)=nil, &(0x7f0000ff3000/0xb000)=nil, &(0x7f0000000300)=0x0, &(0x7f0000000340)) syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_POLL_ADD={0x6, 0x0, 0x0, @fd=r0, 0x0, 0x0, 0x0, {0x194}}, 0x0) r4 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0) r5 = perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_io_uring_submit(r4, r2, &(0x7f0000000100)=@IORING_OP_SPLICE, 0x4) io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0) syz_io_uring_submit(r3, r2, &(0x7f0000000380)=@IORING_OP_FADVISE={0x18, 0x3, 0x0, @fd=r0, 0x9, 0x0, 0xfffff7c8, 0x5}, 0xa8f6) fsetxattr$trusted_overlay_opaque(r5, &(0x7f0000000180), &(0x7f00000001c0), 0x2, 0x2) execveat(0xffffffffffffffff, &(0x7f00000002c0)='./file0\x00', &(0x7f0000000380), 0x0, 0x1000) 12:31:05 executing program 6: syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000040)='./file0\x00', 0x40000, 0x3, &(0x7f0000000200)=[{&(0x7f0000010000)="2000000080000000060000006a0000000f000000000000000100000001000000004000000040000020000000e0f4655fe0f4655f0100ffff53ef010001000000dff4655f000000000000000001000000000000000b0000000001", 0x5a, 0x400}, {&(0x7f0000010400)="020000000300000004", 0x9, 0x800}, {&(0x7f0000011600)="ed41000000080000dff4655fe0f4655fe0f4655f000000000000040004", 0x1d, 0x2100}], 0x0, &(0x7f0000000080)=ANY=[]) syz_mount_image$ext4(&(0x7f0000000000)='ext2\x00', &(0x7f0000000040)='./file0/../file0\x00', 0x0, 0x0, 0x0, 0x104e034, 0x0) 12:31:05 executing program 5: r0 = syz_io_uring_setup(0x4d4f, &(0x7f0000000080), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=0x0, &(0x7f0000000140)=0x0) syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_POLL_ADD={0x6, 0x0, 0x0, @fd=r0, 0x0, 0x0, 0x0, {0x194}}, 0x0) r3 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0) perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_io_uring_submit(r3, r2, &(0x7f0000000100)=@IORING_OP_SPLICE, 0x4) io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0) execveat(0xffffffffffffffff, &(0x7f00000002c0)='./file0\x00', 0x0, 0x0, 0x3f00) 12:31:05 executing program 1 (fault-call:6 fault-nth:32): r0 = syz_io_uring_setup(0x4d4f, &(0x7f0000000080), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=0x0, &(0x7f0000000140)=0x0) syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_POLL_ADD={0x6, 0x0, 0x0, @fd=r0, 0x0, 0x0, 0x0, {0x194}}, 0x0) r3 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0) perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_io_uring_submit(r3, r2, &(0x7f0000000100)=@IORING_OP_SPLICE, 0x4) io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0) execveat(0xffffffffffffffff, &(0x7f00000002c0)='./file0\x00', &(0x7f0000000380), &(0x7f0000000640)=[0x0, 0x0, 0x0], 0x0) [ 1795.529300] EXT4-fs (loop4): ext4_check_descriptors: Block bitmap for group 0 overlaps superblock [ 1795.530370] EXT4-fs (loop4): group descriptors corrupted! 12:31:05 executing program 4: syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000040)='./file0\x00', 0x40000, 0x3, &(0x7f0000000200)=[{&(0x7f0000010000)="2000000080000000060000006a0000000f000000000000000100000001000000004000000040000020000000e0f4655fe0f4655f0100ffff53ef010001000000dff4655f000000000000000001000000000000000b00000000010000280200000284", 0x62, 0x400}, {&(0x7f0000010400), 0x0, 0x800}, {&(0x7f0000011600)="ed41000000080000dff4655fe0f4655fe0f4655f000000000000040004", 0x1d, 0x2100}], 0x0, &(0x7f0000000080)=ANY=[]) syz_mount_image$ext4(&(0x7f0000000000)='ext2\x00', &(0x7f0000000040)='./file0/../file0\x00', 0x0, 0x0, 0x0, 0x104e034, &(0x7f00000001c0)={[{@data_err_abort}]}) 12:31:05 executing program 3: r0 = syz_io_uring_setup(0x4d4f, &(0x7f0000000080), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200), &(0x7f0000000140)=0x0) r2 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0) perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_io_uring_submit(r2, r1, &(0x7f0000000100)=@IORING_OP_SPLICE, 0x4) io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0) execveat(0xffffffffffffffff, &(0x7f00000002c0)='./file0\x00', 0x0, 0x0, 0x7a) 12:31:05 executing program 2: socket$packet(0x11, 0x2, 0x300) r0 = syz_init_net_socket$802154_dgram(0x24, 0x2, 0x0) syz_mount_image$tmpfs(&(0x7f0000000040), &(0x7f0000000080)='./file0\x00', 0x6, 0x2, &(0x7f00000002c0)=[{&(0x7f00000000c0)="cdd372a5401aa92894ad1729f4150af88b260f800bd23cd4010f3664fee5c83de3d5cb65a8b393ce10f24cbc6fd89771177921aef764eeaaa9f9193d9c6fbfa82980394580f6d75f5d4036c76ab0295745bed4ac773ce834abae94e2fcca744b8b7b610713d4594687fb5b7d38e8791eed2328d095feb3be417dd07cf955da938b5a72ed6a08de25df0f0cda9c3d9baa3b5d877d8b0abe0081e8d9b36e01e5b4d8105df6edcf687ea850dda1d7aae8359531079754859f52513d272274a2187b20", 0xc1, 0x97}, {&(0x7f00000001c0)="dd8b4cc310f2b62bd04bde290dd0d30f635e6f5b80918cb2511ef2016bdb152928b146ee5f7474e4fb48b7132aaa405750c7e10473ffc3f071085b1472e7a10b9b9d3bd4d2241a58c3d0ce8d1c7d2cbb21cc2b6fc97490486af8b7952622c33b853812d6bbceb8f0693a04966ee307cec5ef3229cf0e52e442461c0362cd0bee60638c90ea43bd97377c2dfa2f52aa5ab202e339a830f83998970ba997740d744b34566b070ad6c1ba20039ca69a59ca43448e35eee72c3a6db8246c176bcbc334bcad7e4392e061b99d57ac3bf33cd5928d861b05d6d8", 0xd7, 0x5f0b519}], 0x1800080, &(0x7f0000000400)=ANY=[@ANYBLOB='uid=', @ANYRESHEX=0xee00, @ANYBLOB=',huge=always,huge=never,uid=', @ANYRESHEX=0xee00, @ANYBLOB=',huge=within_size,smackfstransmute=g,dont_hash,euid<', @ANYRESDEC, @ANYBLOB=',uid<', @ANYRESDEC=0xee00, @ANYBLOB="bc1dc22e2d4ebceed42d4b72d50662254335bca7d5ac5249dba19e0e2bdcbddc08fc04e79febed7dcc502e0fc83f2c4468e821104f1c443361dc3a55fb593c9c5472cd9d8341e458cf"]) r1 = openat$tun(0xffffffffffffff9c, &(0x7f0000000040), 0x0, 0x0) fchmod(0xffffffffffffffff, 0x62) ioctl$TUNSETQUEUE(r1, 0x400454ca, &(0x7f00000000c0)={'ipvlan1\x00'}) r2 = dup(r0) ioctl$sock_SIOCINQ(r2, 0x541b, &(0x7f0000000000)) [ 1795.700933] EXT4-fs (loop7): mounted filesystem without journal. Opts: ,errors=continue [ 1795.710905] EXT4-fs (loop4): ext4_check_descriptors: Block bitmap for group 0 overlaps superblock [ 1795.712055] EXT4-fs (loop4): group descriptors corrupted! [ 1795.717673] EXT4-fs (loop7): re-mounted. Opts: ,errors=continue [ 1795.740886] FAULT_INJECTION: forcing a failure. [ 1795.740886] name failslab, interval 1, probability 0, space 0, times 0 [ 1795.743604] CPU: 1 PID: 13300 Comm: syz-executor.1 Not tainted 5.10.60 #1 [ 1795.745140] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS rel-1.14.0-0-g155821a1990b-prebuilt.qemu.org 04/01/2014 [ 1795.747924] Call Trace: [ 1795.748520] dump_stack+0x107/0x163 [ 1795.749514] should_fail.cold+0x5/0xa [ 1795.750473] ? prepare_creds+0x29/0x670 [ 1795.751432] should_failslab+0x5/0x10 [ 1795.752312] kmem_cache_alloc+0x5b/0x350 [ 1795.753242] prepare_creds+0x29/0x670 [ 1795.754086] prepare_exec_creds+0xd/0x250 [ 1795.755005] bprm_execve+0x1e3/0x1b00 [ 1795.755964] ? get_arg_page+0x153/0x200 [ 1795.756838] ? acct_arg_size+0xe0/0xe0 [ 1795.757786] ? open_exec+0x70/0x70 [ 1795.758692] ? memcpy+0x39/0x60 [ 1795.759412] ? copy_strings.isra.0+0x492/0x690 [ 1795.760404] ? copy_string_kernel+0x3ad/0x440 [ 1795.761411] do_execveat_common.isra.0+0x524/0x670 [ 1795.762491] __x64_sys_execveat+0xe7/0x130 [ 1795.763422] do_syscall_64+0x33/0x40 [ 1795.764227] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 1795.765355] RIP: 0033:0x466609 [ 1795.766075] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1795.770110] RSP: 002b:00007f443d736188 EFLAGS: 00000246 ORIG_RAX: 0000000000000142 [ 1795.771782] RAX: ffffffffffffffda RBX: 000000000056bf80 RCX: 0000000000466609 [ 1795.773358] RDX: 0000000020000380 RSI: 00000000200002c0 RDI: ffffffffffffffff [ 1795.775015] RBP: 00007f443d7361d0 R08: 0000000000000000 R09: 0000000000000000 [ 1795.776674] R10: 0000000020000640 R11: 0000000000000246 R12: 0000000000000002 [ 1795.778256] R13: 00007ffeb6924e7f R14: 00007f443d736300 R15: 0000000000022000 [ 1795.834264] EXT4-fs (loop6): mounted filesystem without journal. Opts: ,errors=continue 12:31:18 executing program 3: r0 = syz_io_uring_setup(0x4d4f, &(0x7f0000000080), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200), &(0x7f0000000140)=0x0) r2 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0) perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_io_uring_submit(r2, r1, &(0x7f0000000100)=@IORING_OP_SPLICE, 0x4) io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0) execveat(0xffffffffffffffff, &(0x7f00000002c0)='./file0\x00', 0x0, 0x0, 0x300) 12:31:18 executing program 0: r0 = syz_io_uring_setup(0x4d4f, &(0x7f0000000080)={0x0, 0x2, 0x8, 0xfffffffe}, &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=0x0, &(0x7f0000000140)=0x0) syz_io_uring_setup(0x2664, &(0x7f00000004c0)={0x0, 0x4ff4, 0x2, 0x1, 0x21c, 0x0, r0}, &(0x7f0000ffe000/0x1000)=nil, &(0x7f0000ffb000/0x4000)=nil, &(0x7f0000000100), &(0x7f00000001c0)=0x0) syz_io_uring_submit(r1, r3, &(0x7f0000000240)=@IORING_OP_NOP={0x0, 0x1}, 0x0) syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_POLL_ADD={0x6, 0x0, 0x0, @fd=r0, 0x0, 0x0, 0x0, {0x194}}, 0x0) dup(0xffffffffffffffff) r4 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0) perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_io_uring_submit(r4, r2, &(0x7f0000000180)=@IORING_OP_SPLICE, 0x7) io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0) execveat(0xffffffffffffffff, &(0x7f00000002c0)='./file0\x00', &(0x7f0000000280)=[&(0x7f0000000400)='\xafs\x99\x13\xefV\xdbZ\x7f\v\xd7C\x8a\xfd\xc1\xec\x86\xedF\xf0\x7f\xda\t\xb8\xde\x00\x04\n\x0e#2\x1eJ\x19\xb6\xae\xde\x0f@4\xe9T\xb01+x\r\x9e\xfc%=\xd8\'\xbe\xe7\xf2_\xce\xc4\x9b\xbf\xf7\xae\x96\xce\xb8\x1d\'\'\xb0\xe0\xb2\x02\xe0\x84\xe34+E\xfd\xce\x8d\x82&^\x87!h\x88\xf7\xb2\\\x1d8\x87\x92\x8dU\x06o\x15\xc6\xc4a\xa6\x9c:2\xde@\xa0\x89fC\xfd\xc2J\x1b\xef3\xfa\xe0\xf4\x15\x96:\x80\xf1\xf0f\xee-\x88\xf7\xceP\'y\x13', &(0x7f0000000300)='@--P^^!(#+{\x10\xca0\xbcS\xac A\f;c\xc3L\xe6\xefG\xd0\aC\xcf\xd5^G\x1a\xd3\xe2\xee\x9e\xb4\x1fe\xb6\x16tN%RT9\xa1\x8b', &(0x7f0000000340)='\x02\x7f\x9b.x\xf8X|\xa5\x0e\x19\xb9\'&0\x19vb\x8e\xa3b\x05\x8cLN\x11\xb6\x95}\xae\x17\xac\xb7\xfb\x8b\xa4\xa0\xf50x0, &(0x7f0000000140)=0x0) syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_POLL_ADD={0x6, 0x0, 0x0, @fd=r0, 0x0, 0x0, 0x0, {0x194}}, 0x0) r3 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0) perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_io_uring_submit(r3, r2, &(0x7f0000000100)=@IORING_OP_SPLICE, 0x4) io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0) execveat(0xffffffffffffffff, &(0x7f00000002c0)='./file0\x00', &(0x7f0000000380), &(0x7f0000000640)=[0x0, 0x0, 0x0], 0x0) 12:31:18 executing program 7: syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000040)='./file0\x00', 0x40000, 0x3, &(0x7f0000000200)=[{&(0x7f0000010000)="2000000080000000060000006a0000000f000000000000000100000001000000004000000040000020000000e0f4655fe0f4655f0100ffff53ef010001000000dff4655f000000000000000001000000000000000b0000000001", 0x5a, 0x400}, {&(0x7f0000010400)="020000000300000004", 0x9, 0x800}, {&(0x7f0000011600)="ed41000000080000dff4655fe0f4655fe0f4655f000000000000040004", 0x1d, 0x2100}], 0x0, &(0x7f0000000080)=ANY=[]) syz_mount_image$ext4(&(0x7f0000000000)='ext2\x00', &(0x7f0000000040)='./file0/../file0\x00', 0xb00, 0x0, 0x0, 0x104e034, &(0x7f00000001c0)) 12:31:18 executing program 5: r0 = syz_io_uring_setup(0x4d4f, &(0x7f0000000080), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=0x0, &(0x7f0000000140)=0x0) syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_POLL_ADD={0x6, 0x0, 0x0, @fd=r0, 0x0, 0x0, 0x0, {0x194}}, 0x0) r3 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0) perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_io_uring_submit(r3, r2, &(0x7f0000000100)=@IORING_OP_SPLICE, 0x4) io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0) execveat(0xffffffffffffffff, &(0x7f00000002c0)='./file0\x00', 0x0, 0x0, 0x4000) 12:31:18 executing program 4: syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000040)='./file0\x00', 0x40000, 0x3, &(0x7f0000000200)=[{&(0x7f0000010000)="2000000080000000060000006a0000000f000000000000000100000001000000004000000040000020000000e0f4655fe0f4655f0100ffff53ef010001000000dff4655f000000000000000001000000000000000b00000000010000280200000284", 0x62, 0x400}, {&(0x7f0000010400), 0x0, 0x800}, {&(0x7f0000011600)="ed41000000080000dff4655fe0f4655fe0f4655f000000000000040004", 0x1d, 0x2100}], 0x0, &(0x7f0000000080)=ANY=[]) syz_mount_image$ext4(&(0x7f0000000000)='ext2\x00', &(0x7f0000000040)='./file0/../file0\x00', 0x0, 0x0, 0x0, 0x104e034, &(0x7f00000001c0)={[{@data_err_abort}]}) 12:31:18 executing program 6: syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000040)='./file0\x00', 0x40000, 0x3, &(0x7f0000000200)=[{&(0x7f0000010000)="2000000080000000060000006a0000000f000000000000000100000001000000004000000040000020000000e0f4655fe0f4655f0100ffff53ef010001000000dff4655f000000000000000001000000000000000b0000000001", 0x5a, 0x400}, {&(0x7f0000010400)="020000000300000004", 0x9, 0x800}, {&(0x7f0000011600)="ed41000000080000dff4655fe0f4655fe0f4655f000000000000040004", 0x1d, 0x2100}], 0x0, &(0x7f0000000080)=ANY=[]) syz_mount_image$ext4(&(0x7f0000000000)='ext2\x00', &(0x7f0000000040)='./file0/../file0\x00', 0x0, 0x0, 0x0, 0x104e034, 0x0) 12:31:18 executing program 2: r0 = syz_init_net_socket$802154_dgram(0x24, 0x2, 0x0) r1 = io_uring_setup(0x5dd5, &(0x7f00000000c0)) r2 = syz_init_net_socket$802154_dgram(0x24, 0x2, 0x0) r3 = dup(r2) r4 = socket$inet6_udp(0xa, 0x2, 0x0) setsockopt$inet6_MRT6_ADD_MFC_PROXY(r4, 0x29, 0xd2, 0x0, 0x0) sendmmsg$sock(r4, &(0x7f0000002740)=[{{&(0x7f00000002c0)=@alg={0x26, 'aead\x00', 0x0, 0x0, 'ccm_base(cbc-cast6-avx,sha384-avx2)\x00'}, 0x80, &(0x7f0000000840)=[{&(0x7f0000000340)="c7b6c67f6c2963c9316e2bc72a91c8b30d1bf9c175bffb13c1f73013f2ffba36a46974695e1c3577972f8ce53fd72e2c6cde2f16e0529ad91dabe44cc89370fab6d128923ef73a34f24fa722ef81c142dd65c26ea2aec04e2a42de09eb688941e59f21fc2b0be4eb6fc6969927e123f45f7647dc2dad27f583b35ba9daf0196423ea4a31bf1b2a75b65c31709d813810340b316d61261f3d9ac76eb54f733e6d2ee21e", 0xa3}, {&(0x7f0000000400)="2333ec297b322259e29144f69bf08398f5eeaf4472fa252abe912d7b254d43b688deea2bffd76aa93c06cddb52db8bec5e371aec8138f50c91c05c338e5418daf372a62fece1d20e8660e090525a9da8d3a99742ac122dd927fdebc75fa80deb644115e4f995edf8fa0ac9463e6445c3820d4dc725ce3d4776b7219bd89d8f7c286db7fe700fa4aface47aa3b308ab57564e8ec64bfe7d02d9a61fcc00becee1dfa85e65034248979b13274cbc9ee14ec1093a9b9e0b74a3163c5c0ef727c23b46f822a2a0d53805ef1b71891da9e21f2261888ca56538392bee5563501e44a6d7ac27ac4a33d896cfcd6e3098", 0xed}, {&(0x7f0000000580)="f3702dac08e6f618d8b8e8aa6d4378e91a9a1695edf8a13392ed3c15b87d5622266e4c9876ac37d7e23bc6bc1c25cef6a10129e1c4e80f3d0e38cbd48ca902ed87d0bf1cdb7ef373cb25ca686f6dda2470a62eece3d320da14f9f77601efa22ed1f73e1ed301c47e148729c2767854e8f8d3414a0db2c23cb30418aab46c47a50e3cb4674ffd5cd2f3fc241a2978121d5de4af8a3274e4b4806dbe2a32e7898f00e86cb35a61145e109316dae10e1755ced14fe547c4dc79488386e6be2ddcbcda15f1187d2227eb3b63caedcc28c74518f3776662c99c3d57245856d06ce6bd4e08ef52b592d5f33b9484e5f27cc51797b9911571e53d", 0xf7}, {&(0x7f0000000680)="cc847a3170df7ff5570bf813c74990869f96c2d7824c2ce5bfd4cef768b75ab51eaa180ff2393844dcf59fd9612b75788d5d12e3883b0d9534e3329d8d5bcb41b20d984ad3f6eb25b5858a9ed828a2322316064cc52c633e2cf18d79ff2b84ff31fbd5d194fa610b6e9ca132465e4742dc16869cddc662bd20ba50f65aa70f587ec4b3f9104ad6a717b34433dd81cde1803df8f723cf83f9", 0x98}, {&(0x7f0000000740)="baa798d8c0d777f6b564715577d031c327807575dca14c7f4bc17c01a61758952d709bbef12368357fb6eaff6614fbf8749d0476344be68fcc1841feeff9ea", 0x3f}, {&(0x7f0000000780)="22f504a9085211ec4a5266bb9c34a01113f479bf31f45fe90f2b05", 0x1b}, {&(0x7f00000007c0)="5a4181d7b53737ee9ed31c662680dd14eee7160c8564cd4349125088de5b5b4e41aa635cb8d25b34a426445567805ee0439b7ef4b7c415d1db4a38325ae77dcad8de5046e601aa06f503aa9c9621d9486ad7b94921a5032cddf0aba212d1ffb963", 0x61}], 0x7, &(0x7f00000008c0)=[@mark={{0x14, 0x1, 0x24, 0x1}}, @txtime={{0x18, 0x1, 0x3d, 0x668c}}, @timestamping={{0x14, 0x1, 0x25, 0xfffffffa}}], 0x48}}, {{&(0x7f0000000940)=@sco, 0x80, &(0x7f0000001d40)=[{&(0x7f00000009c0)="d84c84579493dcbe0434af56966688cd3ce3d6159bea82efb14c0089dc9c5371ebb999b60de7fbe4aaa043164332322d72bda32947e5d0dad5178363b404e302946f6d52a23c217a937340c5eb5a5aab8422e8b39ae18a67afbd40b022aebab151088fdfff52", 0x66}, {&(0x7f0000000a40)="7db35749e80a3d0e1e1a1ed380652e492f02f1ed1118549281b3a4f2187deee9f897b961c276b9", 0x27}, {&(0x7f0000000a80)="90184505f4a1eeb60bc7a1f0682f9a926c23fb1f05ec6579f6d87d752ce5c727a69e83fce93e37cdcde3287d80f3a24d0e9581b899994021ad9d0f9fcb1ae4caccf426cc0c9b642eac93be86d13d5116a620359cbd70a0fa1dca1380acc62e95a725932365709e5d65b82d403bec8d0216c2ae3087f4f3716d4035f66edb50d9e26a781b17cc9968928934f3e3997e96e4ade5bd78dad70285147b747c131ddcb0bc59ad2747e9cd35a3bd325eb172ee9efe1979ca3be0862005e64b4249d64b83d93f1ae8dc5193fa15e2b401bbdda1ac6794f1d53e56d5f4f4558b3b7f3289ccd8f775a6f421e667960390a3", 0xed}, {&(0x7f0000000b80)="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", 0x1000}, {&(0x7f0000001b80)="f96997c3f7a27aab1647d0f6abb7680ff48b93a8ec62ecb38260576b252d86518d83e71f085b321955959726f2cb7ea7a1940ab4d78799890879b40621f93a7637251f7555543e7ecc1534f3a872f03243150d977a1d1f312bf447ccb85ab9f90e6c8c0238e0c2534810a5e72e7f775fa0ae467c2459fa9c67e0bd090b5ef98084aa6d6dbfa27e2916b69ec455f0990cd523b4d37ad6aa6938cb8e7ead6c7d9f8aec37cab5eccc3ab528453d8c782d6e0b897c234c9e4687aaf45b679ee0738696cd9f9231548174e3f418fea2eeee7800e8f716be480aa5144de1801397327f92a28fd9792e052c1f85910487ab", 0xee}, {&(0x7f0000001c80)="0eaeb3aeae5acc695598358f9088dc938ff4cb28a77a132dfe6c8aa951632b47ac37b5896a37ba1688361d22819c59", 0x2f}, {&(0x7f0000001cc0)}, {&(0x7f0000001d00)="f76461c747a55ded782bb5c565b679334e8722cc8477ea4e40f5e715a0775a7562259400ea1d3ffa58a24bff440f", 0x2e}], 0x8, &(0x7f0000001dc0)=[@mark={{0x14, 0x1, 0x24, 0x10000}}, @timestamping={{0x14, 0x1, 0x25, 0x800}}, @mark={{0x14, 0x1, 0x24, 0x9}}, @timestamping={{0x14, 0x1, 0x25, 0x5}}], 0x60}}, {{0x0, 0x0, &(0x7f0000001f00)=[{&(0x7f0000001e40)="f0bd856d6d8452f8ac86bc6e1e6eef311ea5d47bfcdf717d5f34d0c566ef6fdcefe827b2760aba678e0107b0c5e6e4d569851bd8bf1ab4f0283b0954b2546627576f0391675d4dacde02d3561e5158d844812d85c37423865a75216e854e3030ae2e7d9ffdc44e3d7990e36176f960bfaf662ecb9900b9ead8d5c1a23b6ba69ecd12fa21a7bf48f704cd5da77dc04a5373997f5191cb3024ca0c157ff815ba63d25a4b4d31", 0xa5}], 0x1}}, {{&(0x7f0000001f40)=@un=@file={0x1, './file0\x00'}, 0x80, &(0x7f0000002600)=[{&(0x7f0000001fc0)="c0f1971fde5d7522dd9521ac80112567652bb9a0d5ab13cfd7b4bcb8f8", 0x1d}, {&(0x7f0000002000)="c0b18ce55af6a47d756d3f705f9c2b045c1f02e8510be2c23bb269c13b496728e751e79d74bc6dc4b40e17561a7b23", 0x2f}, {&(0x7f0000002040)="53677cde719ac1cfd809131a0594761e7654275079d24577cba8ae4e2f03016ab8d56cf5e4db45c41a6db53de76ab22c57c0441dbd5d6102f49bb110208bd20faa224a75e1b48c46e9abb814364e8ccd243da3819c9a76b1d2e1e90d42cd80827fdaf9cbdcf30dd2aed744333ec2193ed7866507154a73376a189efa5a18ae26687760adda0620936b07c72366e54cc02572d8e624a00ce89afb4473adf969119750a2e21f8a470ee4463d3f652f806d431cae2965c82fa72137d24f8aff30582416b281ed4f", 0xc6}, {&(0x7f0000002140)="4ecc05a329ee10da5bd0e35ac67e850f89214ef934bf503a6878e9eb6fa61de7529d5d08b5adae822d2ffd43974ca5e924d8c380844a68ee40da1bc3d192e2057cb7e2c3c9df873f7e1c42442814f41d602cdf9f7d7ec55f6c3b3df0f02dbbd9f03cae394d43fbc25b216b39f4cb5ce91d04e67981e840ac889a60e5698804991067c785b858e8fe05abc42e55597c036e18269889473853e0acc1", 0x9b}, {&(0x7f0000002200)="9457a75ce6ecb44bdfb7509f60bb4ccffdbbd68abb3df829a740df362bedf91fddbc86f15e140f08d66171cc1201402d78026e982e81b4922ac3f8c9f6387c79516ac88007e8d080c386b9bf28304fbaf53d62e63b03b46cf9fd267d2522c587df0d50036c4f44ea082de5b9edec93ed691e967074c4eb21f3dd38034da3a41af21e8edbb31929598a5d4fe871ffa5d3787733a0ce3b870a525cc39be06ea1afde64eacd57e04176e188cc9d503ea167b48f868edc4929f49928142a30121bdcd1ac16c02b0f5f2e0baab962", 0xcc}, {&(0x7f0000002300)="5d6d2b398c67b2966d45e31466032e75a6351e24676b0e60d3cfdd204408249a77a05ab38c8a491f7fac4f7ae41d5eef24328616881eba0fa7be8c7b3025943503973c05f68ceaed1f03b52345843c0110ea6b70137125f025816884fcf3884ffb14786d97", 0x65}, {&(0x7f0000002380)="1eb2f8abe6adc68d861623bb83cf7d0d81b668667a6691af2e4b3353d5c3d56952009e7f849b1b3e2269cc829624fd1df24380632d936f95fcf2f7ac4a5e84fd6a52808d9293f30c265971e6b9d65910ac4665b61f27eeb08db5ed620288ac833af0da003207fb46b4b8bfb57206febbf44d6e0bed00a89e49d1163639575711999af83a4e8b9fdbad02035b8b32063839cff5f8f785f691a0ec5ace64ba5fceb0687323a34d4f618245bfc997951c6044ef721311aa9b7a1b8f59f6e8e8ef59c8c110b83c07dab67d7d1c1195505428a7be2a6cbd284572e44192b3f6289b39d4062ac8b92115", 0xe7}, {&(0x7f0000002480)="8879b42fd92de9e25ed68f7e78075df9086f578df20e30d10903e4e25d11539524df341cca42cf1cb8a46f1503200a8a853ce11b59c445d59614286af25d4385f38f3ac277204809503de040e7eb3cdd3f563dd31c27c53323b68f1b8c8e72b979e90a5e6d8cd4cbc44c9f93d4218529c70a153a8aec3b703f2ead58a46702f77d6e6aea592c47c0a99a286357b63bf11aa5f176ba6bb5f274ec300fc6307d562119a2889b4219c77fb2283a1f8d45cb9873cf501d282b1707f8469b291184be7a36817ee3b8580db75b94a2f223dafa786098d21c26b2a0b30df47f4c", 0xdd}, {&(0x7f0000002580)="7a274dc829663b518ead087ba8416b0c03abeedf7948c2d0d3559ccf432243905753de0587c9457fc08da87487732f1d1614e067c64672ccf6c5dabdf41e3c7b1d6fdb65edc6de0ef24d0b097cd4b1ad48b16a7d3c4aee1e979cc2ce05275291a10e5a9c2a0182d250c739bca0f5f5808bea1b24b09724fe2d95c11c42f8d6", 0x7f}], 0x9, &(0x7f00000026c0)=[@mark={{0x14, 0x1, 0x24, 0x400}}, @timestamping={{0x14, 0x1, 0x25, 0x2}}, @mark={{0x14, 0x1, 0x24, 0x3}}, @mark={{0x14, 0x1, 0x24, 0x8001}}], 0x60}}], 0x4, 0x4000000) ioctl$sock_SIOCINQ(r3, 0x541b, &(0x7f0000000000)) syz_io_uring_setup(0x6a97, &(0x7f00000001c0)={0x0, 0xfbf5, 0x20, 0x2, 0x17e, 0x0, r3}, &(0x7f0000ffa000/0x4000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000240), &(0x7f0000000280)) r5 = openat$vcsa(0xffffffffffffff9c, &(0x7f0000000140), 0x0, 0x0) io_uring_register$IORING_REGISTER_EVENTFD_ASYNC(r1, 0x7, &(0x7f0000000180)=r5, 0x1) r6 = dup(r0) sendmsg$BATADV_CMD_GET_BLA_BACKBONE(r6, &(0x7f0000000540)={&(0x7f0000000100), 0xc, &(0x7f0000000500)={0x0}}, 0x0) ioctl$sock_SIOCINQ(r6, 0x541b, &(0x7f0000000000)) r7 = openat2(0xffffffffffffffff, &(0x7f0000000040)='./file0\x00', &(0x7f0000000080)={0x500, 0x0, 0x4}, 0x18) ioctl$MON_IOCT_RING_SIZE(r7, 0x9204, 0xc4ee9) [ 1807.849226] EXT4-fs (loop6): mounted filesystem without journal. Opts: ,errors=continue [ 1807.853297] EXT4-fs (loop7): mounted filesystem without journal. Opts: ,errors=continue [ 1807.875195] EXT4-fs (loop4): ext4_check_descriptors: Block bitmap for group 0 overlaps superblock [ 1807.876653] EXT4-fs (loop4): group descriptors corrupted! [ 1807.882486] EXT4-fs (loop7): re-mounted. Opts: ,errors=continue [ 1807.898830] FAULT_INJECTION: forcing a failure. [ 1807.898830] name failslab, interval 1, probability 0, space 0, times 0 [ 1807.900497] CPU: 1 PID: 13354 Comm: syz-executor.1 Not tainted 5.10.60 #1 [ 1807.901513] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS rel-1.14.0-0-g155821a1990b-prebuilt.qemu.org 04/01/2014 [ 1807.903148] Call Trace: [ 1807.903538] dump_stack+0x107/0x163 [ 1807.904074] should_fail.cold+0x5/0xa [ 1807.904630] ? create_object.isra.0+0x3a/0xa10 [ 1807.905315] should_failslab+0x5/0x10 [ 1807.905877] kmem_cache_alloc+0x5b/0x350 [ 1807.906474] create_object.isra.0+0x3a/0xa10 [ 1807.907116] ? __kasan_kmalloc.constprop.0+0xc2/0xd0 [ 1807.907850] kmem_cache_alloc+0x15b/0x350 [ 1807.908466] prepare_creds+0x29/0x670 [ 1807.909029] prepare_exec_creds+0xd/0x250 [ 1807.909650] bprm_execve+0x1e3/0x1b00 [ 1807.910206] ? get_arg_page+0x153/0x200 [ 1807.910792] ? acct_arg_size+0xe0/0xe0 [ 1807.911363] ? open_exec+0x70/0x70 [ 1807.911885] ? memcpy+0x39/0x60 [ 1807.912365] ? copy_strings.isra.0+0x492/0x690 [ 1807.913047] ? copy_string_kernel+0x3ad/0x440 [ 1807.913718] do_execveat_common.isra.0+0x524/0x670 [ 1807.914445] __x64_sys_execveat+0xe7/0x130 [ 1807.915068] do_syscall_64+0x33/0x40 [ 1807.915607] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 1807.916354] RIP: 0033:0x466609 [ 1807.916834] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1807.919483] RSP: 002b:00007f443d736188 EFLAGS: 00000246 ORIG_RAX: 0000000000000142 [ 1807.920591] RAX: ffffffffffffffda RBX: 000000000056bf80 RCX: 0000000000466609 [ 1807.921634] RDX: 0000000020000380 RSI: 00000000200002c0 RDI: ffffffffffffffff [ 1807.922674] RBP: 00007f443d7361d0 R08: 0000000000000000 R09: 0000000000000000 [ 1807.923692] R10: 0000000020000640 R11: 0000000000000246 R12: 0000000000000002 [ 1807.924723] R13: 00007ffeb6924e7f R14: 00007f443d736300 R15: 0000000000022000 12:31:18 executing program 6: syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000040)='./file0\x00', 0x40000, 0x3, &(0x7f0000000200)=[{&(0x7f0000010000)="2000000080000000060000006a0000000f000000000000000100000001000000004000000040000020000000e0f4655fe0f4655f0100ffff53ef010001000000dff4655f000000000000000001000000000000000b0000000001", 0x5a, 0x400}, {&(0x7f0000010400)="020000000300000004", 0x9, 0x800}, {&(0x7f0000011600)="ed41000000080000dff4655fe0f4655fe0f4655f000000000000040004", 0x1d, 0x2100}], 0x0, &(0x7f0000000080)=ANY=[]) syz_mount_image$ext4(&(0x7f0000000000)='ext2\x00', &(0x7f0000000040)='./file0/../file0\x00', 0x0, 0x0, 0x0, 0x104e034, &(0x7f00000001c0)) 12:31:18 executing program 7: syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000040)='./file0\x00', 0x40000, 0x3, &(0x7f0000000200)=[{&(0x7f0000010000)="2000000080000000060000006a0000000f000000000000000100000001000000004000000040000020000000e0f4655fe0f4655f0100ffff53ef010001000000dff4655f000000000000000001000000000000000b0000000001", 0x5a, 0x400}, {&(0x7f0000010400)="020000000300000004", 0x9, 0x800}, {&(0x7f0000011600)="ed41000000080000dff4655fe0f4655fe0f4655f000000000000040004", 0x1d, 0x2100}], 0x0, &(0x7f0000000080)=ANY=[]) syz_mount_image$ext4(&(0x7f0000000000)='ext2\x00', &(0x7f0000000040)='./file0/../file0\x00', 0x1800, 0x0, 0x0, 0x104e034, &(0x7f00000001c0)) 12:31:18 executing program 0: r0 = syz_io_uring_setup(0x4d4f, &(0x7f0000000080), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=0x0, &(0x7f0000000140)=0x0) syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_POLL_ADD={0x6, 0x0, 0x0, @fd=r0, 0x0, 0x0, 0x0, {0x194}}, 0x0) r3 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0) r4 = syz_open_dev$mouse(&(0x7f00000001c0), 0x5, 0x0) perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x0, 0x0, 0x4, 0x5}, 0x0, 0x0, r4, 0x0) syz_io_uring_submit(r3, r2, &(0x7f0000000100)=@IORING_OP_SPLICE, 0x4) io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0) ioctl$sock_SIOCGIFINDEX(0xffffffffffffffff, 0x8933, &(0x7f0000000180)={'macsec0\x00'}) mmap$IORING_OFF_SQES(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x1000004, 0x10, r0, 0x10000000) execveat(0xffffffffffffffff, &(0x7f00000002c0)='./file0\x00', &(0x7f0000000380), 0x0, 0x1000) 12:31:18 executing program 5: r0 = syz_io_uring_setup(0x4d4f, &(0x7f0000000080), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=0x0, &(0x7f0000000140)=0x0) syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_POLL_ADD={0x6, 0x0, 0x0, @fd=r0, 0x0, 0x0, 0x0, {0x194}}, 0x0) r3 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0) perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_io_uring_submit(r3, r2, &(0x7f0000000100)=@IORING_OP_SPLICE, 0x4) io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0) execveat(0xffffffffffffffff, &(0x7f00000002c0)='./file0\x00', 0x0, 0x0, 0x4800) 12:31:18 executing program 1 (fault-call:6 fault-nth:34): r0 = syz_io_uring_setup(0x4d4f, &(0x7f0000000080), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=0x0, &(0x7f0000000140)=0x0) syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_POLL_ADD={0x6, 0x0, 0x0, @fd=r0, 0x0, 0x0, 0x0, {0x194}}, 0x0) r3 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0) perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_io_uring_submit(r3, r2, &(0x7f0000000100)=@IORING_OP_SPLICE, 0x4) io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0) execveat(0xffffffffffffffff, &(0x7f00000002c0)='./file0\x00', &(0x7f0000000380), &(0x7f0000000640)=[0x0, 0x0, 0x0], 0x0) 12:31:18 executing program 4: syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000040)='./file0\x00', 0x40000, 0x3, &(0x7f0000000200)=[{&(0x7f0000010000)="2000000080000000060000006a0000000f000000000000000100000001000000004000000040000020000000e0f4655fe0f4655f0100ffff53ef010001000000dff4655f000000000000000001000000000000000b00000000010000280200000284", 0x62, 0x400}, {&(0x7f0000010400), 0x0, 0x800}, {&(0x7f0000011600)="ed41000000080000dff4655fe0f4655fe0f4655f000000000000040004", 0x1d, 0x2100}], 0x0, &(0x7f0000000080)=ANY=[]) syz_mount_image$ext4(&(0x7f0000000000)='ext2\x00', &(0x7f0000000040)='./file0/../file0\x00', 0x0, 0x0, 0x0, 0x104e034, &(0x7f00000001c0)={[{@data_err_abort}]}) 12:31:18 executing program 2: r0 = syz_init_net_socket$802154_dgram(0x24, 0x2, 0x0) getpeername(r0, &(0x7f0000000140)=@l2tp6={0xa, 0x0, 0x0, @initdev}, &(0x7f0000000080)=0x80) r1 = openat$tun(0xffffffffffffff9c, &(0x7f0000000040), 0x0, 0x0) ioctl$TUNSETQUEUE(r1, 0x400454ca, &(0x7f00000000c0)={'ipvlan1\x00'}) r2 = dup(r1) setsockopt$WPAN_WANTACK(0xffffffffffffffff, 0x0, 0x0, &(0x7f0000000000), 0x4) sendmsg$BATADV_CMD_GET_BLA_BACKBONE(r2, &(0x7f0000000540)={&(0x7f0000000100), 0xc, &(0x7f0000000500)={0x0}}, 0x0) 12:31:18 executing program 3: r0 = syz_io_uring_setup(0x4d4f, &(0x7f0000000080), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200), &(0x7f0000000140)=0x0) r2 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0) perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_io_uring_submit(r2, r1, &(0x7f0000000100)=@IORING_OP_SPLICE, 0x4) io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0) execveat(0xffffffffffffffff, &(0x7f00000002c0)='./file0\x00', 0x0, 0x0, 0x500) [ 1808.236046] FAULT_INJECTION: forcing a failure. [ 1808.236046] name failslab, interval 1, probability 0, space 0, times 0 [ 1808.238227] CPU: 1 PID: 13401 Comm: syz-executor.1 Not tainted 5.10.60 #1 [ 1808.239595] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS rel-1.14.0-0-g155821a1990b-prebuilt.qemu.org 04/01/2014 [ 1808.241807] Call Trace: [ 1808.242318] dump_stack+0x107/0x163 [ 1808.243037] should_fail.cold+0x5/0xa [ 1808.243774] ? security_prepare_creds+0x10a/0x180 [ 1808.244592] should_failslab+0x5/0x10 [ 1808.245152] __kmalloc+0x72/0x3e0 [ 1808.245711] security_prepare_creds+0x10a/0x180 [ 1808.246601] prepare_creds+0x45c/0x670 [ 1808.247351] prepare_exec_creds+0xd/0x250 [ 1808.248137] bprm_execve+0x1e3/0x1b00 [ 1808.248816] ? get_arg_page+0x153/0x200 [ 1808.249417] ? acct_arg_size+0xe0/0xe0 [ 1808.250028] ? open_exec+0x70/0x70 [ 1808.250725] ? memcpy+0x39/0x60 [ 1808.251182] ? copy_strings.isra.0+0x492/0x690 [ 1808.252082] ? copy_string_kernel+0x3ad/0x440 [ 1808.252993] do_execveat_common.isra.0+0x524/0x670 [ 1808.254026] __x64_sys_execveat+0xe7/0x130 [ 1808.254749] do_syscall_64+0x33/0x40 [ 1808.255282] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 1808.256261] RIP: 0033:0x466609 [ 1808.256873] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1808.258721] EXT4-fs (loop7): mounted filesystem without journal. Opts: ,errors=continue [ 1808.259419] RSP: 002b:00007f443d736188 EFLAGS: 00000246 ORIG_RAX: 0000000000000142 [ 1808.259436] RAX: ffffffffffffffda RBX: 000000000056bf80 RCX: 0000000000466609 [ 1808.259452] RDX: 0000000020000380 RSI: 00000000200002c0 RDI: ffffffffffffffff [ 1808.264135] RBP: 00007f443d7361d0 R08: 0000000000000000 R09: 0000000000000000 [ 1808.265454] R10: 0000000020000640 R11: 0000000000000246 R12: 0000000000000002 [ 1808.266969] R13: 00007ffeb6924e7f R14: 00007f443d736300 R15: 0000000000022000 [ 1808.280566] EXT4-fs (loop6): mounted filesystem without journal. Opts: ,errors=continue [ 1808.294874] EXT4-fs (loop6): re-mounted. Opts: ,errors=continue [ 1808.298344] EXT4-fs (loop7): re-mounted. Opts: ,errors=continue 12:31:18 executing program 0: r0 = syz_io_uring_setup(0x4d4f, &(0x7f0000000080), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=0x0, &(0x7f0000000140)=0x0) syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_POLL_ADD={0x6, 0x0, 0x0, @fd=r0, 0x0, 0x0, 0x0, {0x194}}, 0x0) r3 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0) perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x4000000000000, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x0, 0x0, 0x9, 0x9}, 0x0, 0xb, 0xffffffffffffffff, 0x0) syz_io_uring_submit(r3, r2, &(0x7f0000000100)=@IORING_OP_SPLICE, 0x4) io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0) execveat(0xffffffffffffffff, &(0x7f00000002c0)='./file0\x00', &(0x7f0000000380), 0x0, 0x1000) 12:31:18 executing program 7: syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000040)='./file0\x00', 0x40000, 0x3, &(0x7f0000000200)=[{&(0x7f0000010000)="2000000080000000060000006a0000000f000000000000000100000001000000004000000040000020000000e0f4655fe0f4655f0100ffff53ef010001000000dff4655f000000000000000001000000000000000b0000000001", 0x5a, 0x400}, {&(0x7f0000010400)="020000000300000004", 0x9, 0x800}, {&(0x7f0000011600)="ed41000000080000dff4655fe0f4655fe0f4655f000000000000040004", 0x1d, 0x2100}], 0x0, &(0x7f0000000080)=ANY=[]) syz_mount_image$ext4(&(0x7f0000000000)='ext2\x00', &(0x7f0000000040)='./file0/../file0\x00', 0x2e00, 0x0, 0x0, 0x104e034, &(0x7f00000001c0)) [ 1808.363861] EXT4-fs (loop4): ext4_check_descriptors: Block bitmap for group 0 overlaps superblock [ 1808.364914] EXT4-fs (loop4): group descriptors corrupted! [ 1808.492271] EXT4-fs (loop7): mounted filesystem without journal. Opts: ,errors=continue [ 1808.496654] EXT4-fs (loop7): re-mounted. Opts: ,errors=continue 12:31:30 executing program 2: r0 = syz_init_net_socket$802154_dgram(0x24, 0x2, 0x0) bind$802154_dgram(0xffffffffffffffff, &(0x7f0000000040)={0x24, @long={0x3, 0x3, {0xffffffffffff0083}}}, 0x14) r1 = dup(r0) sendmsg$BATADV_CMD_GET_BLA_BACKBONE(r1, &(0x7f0000000540)={&(0x7f0000000100), 0xc, &(0x7f0000000500)={0x0}}, 0x0) r2 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000000), 0xffffffffffffffff) r3 = socket$nl_generic(0x10, 0x3, 0x10) r4 = openat$vcs(0xffffffffffffff9c, &(0x7f0000000200), 0x608800, 0x0) recvfrom(r4, &(0x7f0000000240)=""/242, 0xf2, 0x10100, 0x0, 0x0) ioctl$sock_SIOCGIFINDEX_80211(r3, 0x8933, &(0x7f0000000040)={'wlan1\x00', 0x0}) sendmsg$NL80211_CMD_SET_WIPHY_NETNS(r3, &(0x7f00000009c0)={0x0, 0x0, &(0x7f0000000980)={&(0x7f00000000c0)={0x28, r2, 0x1, 0x0, 0x0, {{}, {@void, @val={0x8, 0x3, r5}, @val={0xc}}}}, 0x28}}, 0x0) ioctl$sock_SIOCGIFINDEX_80211(0xffffffffffffffff, 0x8933, &(0x7f00000000c0)={'wlan1\x00', 0x0}) sendmsg$NL80211_CMD_GET_SCAN(r1, &(0x7f00000001c0)={&(0x7f0000000080)={0x10, 0x0, 0x0, 0x2000000}, 0xc, &(0x7f0000000180)={&(0x7f0000000140)={0x1c, r2, 0x10, 0x70bd26, 0x25dfdbfb, {{}, {@val={0x8, 0x3, r6}, @void}}, ["", "", "", "", ""]}, 0x1c}, 0x1, 0x0, 0x0, 0x40}, 0x5) ioctl$sock_SIOCINQ(r1, 0x541b, &(0x7f0000000000)) 12:31:30 executing program 7: syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000040)='./file0\x00', 0x40000, 0x3, &(0x7f0000000200)=[{&(0x7f0000010000)="2000000080000000060000006a0000000f000000000000000100000001000000004000000040000020000000e0f4655fe0f4655f0100ffff53ef010001000000dff4655f000000000000000001000000000000000b0000000001", 0x5a, 0x400}, {&(0x7f0000010400)="020000000300000004", 0x9, 0x800}, {&(0x7f0000011600)="ed41000000080000dff4655fe0f4655fe0f4655f000000000000040004", 0x1d, 0x2100}], 0x0, &(0x7f0000000080)=ANY=[]) syz_mount_image$ext4(&(0x7f0000000000)='ext2\x00', &(0x7f0000000040)='./file0/../file0\x00', 0x3f00, 0x0, 0x0, 0x104e034, &(0x7f00000001c0)) 12:31:30 executing program 0: r0 = syz_io_uring_setup(0x4d4f, &(0x7f0000000080), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=0x0, &(0x7f0000000140)=0x0) syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_POLL_ADD={0x6, 0x0, 0x0, @fd=r0, 0x0, 0x0, 0x0, {0x194}}, 0x0) r3 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0) perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_io_uring_submit(r3, r2, &(0x7f0000000100)=@IORING_OP_SPLICE={0x1e, 0x0, 0x0, @fd, 0x0, {}, 0xa648}, 0x4) io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0) syz_io_uring_setup(0x1432, &(0x7f0000000080)={0x0, 0x0, 0x1}, &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000000)=0x0, &(0x7f0000000140)=0x0) syz_io_uring_submit(r4, r5, &(0x7f00000002c0)=@IORING_OP_READ=@use_registered_buffer={0x16, 0x0, 0x0, @fd_index}, 0x0) syz_io_uring_submit(r1, r5, &(0x7f0000000180)=@IORING_OP_FSYNC={0x3, 0x7, 0x0, @fd_index=0x3}, 0x38499000) execveat(0xffffffffffffffff, &(0x7f00000002c0)='./file0\x00', &(0x7f0000000380), 0x0, 0x1000) 12:31:30 executing program 3: r0 = syz_io_uring_setup(0x4d4f, &(0x7f0000000080), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200), &(0x7f0000000140)=0x0) r2 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0) perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_io_uring_submit(r2, r1, &(0x7f0000000100)=@IORING_OP_SPLICE, 0x4) io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0) execveat(0xffffffffffffffff, &(0x7f00000002c0)='./file0\x00', 0x0, 0x0, 0x600) 12:31:30 executing program 4: syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000040)='./file0\x00', 0x40000, 0x3, &(0x7f0000000200)=[{&(0x7f0000010000)="2000000080000000060000006a0000000f000000000000000100000001000000004000000040000020000000e0f4655fe0f4655f0100ffff53ef010001000000dff4655f000000000000000001000000000000000b00000000010000280200000284", 0x62, 0x400}, {&(0x7f0000010400)="020000000300", 0x6, 0x800}, {&(0x7f0000011600)="ed41000000080000dff4655fe0f4655fe0f4655f000000000000040004", 0x1d, 0x2100}], 0x0, &(0x7f0000000080)=ANY=[]) syz_mount_image$ext4(&(0x7f0000000000)='ext2\x00', &(0x7f0000000040)='./file0/../file0\x00', 0x0, 0x0, 0x0, 0x104e034, &(0x7f00000001c0)={[{@data_err_abort}]}) 12:31:30 executing program 1 (fault-call:6 fault-nth:35): r0 = syz_io_uring_setup(0x4d4f, &(0x7f0000000080), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=0x0, &(0x7f0000000140)=0x0) syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_POLL_ADD={0x6, 0x0, 0x0, @fd=r0, 0x0, 0x0, 0x0, {0x194}}, 0x0) r3 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0) perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_io_uring_submit(r3, r2, &(0x7f0000000100)=@IORING_OP_SPLICE, 0x4) io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0) execveat(0xffffffffffffffff, &(0x7f00000002c0)='./file0\x00', &(0x7f0000000380), &(0x7f0000000640)=[0x0, 0x0, 0x0], 0x0) 12:31:30 executing program 5: r0 = syz_io_uring_setup(0x4d4f, &(0x7f0000000080), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=0x0, &(0x7f0000000140)=0x0) syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_POLL_ADD={0x6, 0x0, 0x0, @fd=r0, 0x0, 0x0, 0x0, {0x194}}, 0x0) r3 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0) perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_io_uring_submit(r3, r2, &(0x7f0000000100)=@IORING_OP_SPLICE, 0x4) io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0) execveat(0xffffffffffffffff, &(0x7f00000002c0)='./file0\x00', 0x0, 0x0, 0x4c00) 12:31:30 executing program 6: r0 = syz_io_uring_setup(0x4d4f, &(0x7f0000000080), &(0x7f00000a0000)=nil, &(0x7f0000ffe000/0x2000)=nil, &(0x7f0000000200)=0x0, &(0x7f0000000140)=0x0) syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_POLL_ADD={0x6, 0x0, 0x0, @fd=r0, 0x0, 0x0, 0x0, {0x194}}, 0x0) mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0) perf_event_open(&(0x7f0000000040)={0x0, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0, 0xa}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_io_uring_setup(0x1432, &(0x7f0000000080)={0x0, 0x1921, 0x1}, &(0x7f0000ffa000/0x4000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000000)=0x0, &(0x7f0000000380)=0x0) syz_io_uring_submit(r3, r4, &(0x7f00000002c0)=@IORING_OP_READ=@use_registered_buffer={0x16, 0x0, 0x0, @fd_index, 0x0, 0x0, 0x0, 0x4, 0x0, {0x4}}, 0x0) syz_io_uring_submit(r3, r2, &(0x7f0000000100)=@IORING_OP_SPLICE={0x1e, 0x1, 0x0, @fd, 0x0, {}, 0x0, 0x0, 0x1}, 0x4) io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0) execveat(0xffffffffffffffff, &(0x7f00000002c0)='./file0\x00', &(0x7f0000000380), 0x0, 0x1000) r5 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffd000/0x3000)=nil, 0x3000, 0x2000000, 0x110, 0xffffffffffffffff, 0x0) r6 = syz_open_dev$loop(&(0x7f00000001c0), 0x7fffffff, 0x40c802) r7 = syz_io_uring_setup(0x1, &(0x7f0000000400)={0x0, 0xc495, 0x20}, &(0x7f0000ffd000/0x2000)=nil, &(0x7f0000ffc000/0x2000)=nil, &(0x7f00000003c0)=0x0, &(0x7f0000000280)=0x0) ioctl$sock_inet6_SIOCDELRT(0xffffffffffffffff, 0x890c, &(0x7f0000000300)={@mcast1, @local, @ipv4={'\x00', '\xff\xff', @empty}, 0x8000, 0x8, 0x7, 0x0, 0x6, 0x8}) r10 = io_uring_register$IORING_REGISTER_PERSONALITY(r7, 0x9, 0x0, 0x0) syz_io_uring_submit(r8, r9, &(0x7f0000000000)=@IORING_OP_FSYNC={0x3, 0x0, 0x0, @fd, 0x0, 0x0, 0x0, 0x0, 0x0, {0x0, r10}}, 0x0) syz_io_uring_submit(r5, r2, &(0x7f0000000240)=@IORING_OP_EPOLL_CTL=@del={0x1d, 0x3, 0x0, 0xffffffffffffffff, 0x0, r6, 0x2, 0x0, 0x1, {0x0, r10}}, 0x80000000) r11 = mmap$IORING_OFF_SQ_RING(&(0x7f0000fff000/0x1000)=nil, 0x1000, 0x3000000, 0x20010, r0, 0x0) r12 = openat$tun(0xffffffffffffff9c, &(0x7f0000000040), 0x0, 0x0) ioctl$TUNSETQUEUE(r12, 0x400454ca, &(0x7f00000000c0)={'ipvlan1\x00'}) syz_io_uring_submit(r11, 0x0, &(0x7f0000000180)=@IORING_OP_EPOLL_CTL=@del={0x1d, 0x1, 0x0, 0xffffffffffffffff, 0x0, r12}, 0xfffffffe) [ 1820.497265] EXT4-fs (loop4): ext4_check_descriptors: Inode table for group 0 overlaps superblock [ 1820.499265] EXT4-fs (loop4): group descriptors corrupted! [ 1820.541958] EXT4-fs (loop7): mounted filesystem without journal. Opts: ,errors=continue [ 1820.546765] EXT4-fs (loop7): re-mounted. Opts: ,errors=continue [ 1820.557960] FAULT_INJECTION: forcing a failure. [ 1820.557960] name failslab, interval 1, probability 0, space 0, times 0 [ 1820.559313] CPU: 1 PID: 13485 Comm: syz-executor.1 Not tainted 5.10.60 #1 [ 1820.560112] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS rel-1.14.0-0-g155821a1990b-prebuilt.qemu.org 04/01/2014 [ 1820.561480] Call Trace: [ 1820.561789] dump_stack+0x107/0x163 [ 1820.562242] should_fail.cold+0x5/0xa [ 1820.562690] ? create_object.isra.0+0x3a/0xa10 [ 1820.563262] should_failslab+0x5/0x10 [ 1820.563710] kmem_cache_alloc+0x5b/0x350 [ 1820.564217] create_object.isra.0+0x3a/0xa10 [ 1820.564718] ? __kasan_kmalloc.constprop.0+0xc2/0xd0 [ 1820.565345] __kmalloc+0x170/0x3e0 [ 1820.565766] security_prepare_creds+0x10a/0x180 [ 1820.566317] prepare_creds+0x45c/0x670 [ 1820.566758] prepare_exec_creds+0xd/0x250 [ 1820.567242] bprm_execve+0x1e3/0x1b00 [ 1820.567673] ? get_arg_page+0x153/0x200 [ 1820.568123] ? acct_arg_size+0xe0/0xe0 [ 1820.568579] ? open_exec+0x70/0x70 [ 1820.568984] ? memcpy+0x39/0x60 [ 1820.569411] ? copy_strings.isra.0+0x492/0x690 [ 1820.569918] ? copy_string_kernel+0x3ad/0x440 [ 1820.570440] do_execveat_common.isra.0+0x524/0x670 [ 1820.570993] __x64_sys_execveat+0xe7/0x130 [ 1820.571489] do_syscall_64+0x33/0x40 [ 1820.571911] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 1820.572502] RIP: 0033:0x466609 [ 1820.572870] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1820.574932] RSP: 002b:00007f443d715188 EFLAGS: 00000246 ORIG_RAX: 0000000000000142 [ 1820.575783] RAX: ffffffffffffffda RBX: 000000000056c038 RCX: 0000000000466609 [ 1820.576616] RDX: 0000000020000380 RSI: 00000000200002c0 RDI: ffffffffffffffff [ 1820.577439] RBP: 00007f443d7151d0 R08: 0000000000000000 R09: 0000000000000000 [ 1820.578257] R10: 0000000020000640 R11: 0000000000000246 R12: 0000000000000002 [ 1820.579037] R13: 00007ffeb6924e7f R14: 00007f443d715300 R15: 0000000000022000 12:31:42 executing program 6: syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000040)='./file0\x00', 0x40000, 0x3, &(0x7f0000000200)=[{&(0x7f0000010000)="2000000080000000060000006a0000000f000000000000000100000001000000004000000040000020000000e0f4655fe0f4655f0100ffff53ef010001000000dff4655f000000000000000001000000000000000b0000000001", 0x5a, 0x400}, {&(0x7f0000010400)="020000000300000004", 0x9, 0x800}, {&(0x7f0000011600)="ed41000000080000dff4655fe0f4655fe0f4655f000000000000040004", 0x1d, 0x2100}], 0x0, &(0x7f0000000080)=ANY=[]) syz_mount_image$ext4(&(0x7f0000000000)='ext2\x00', &(0x7f0000000040)='./file0/../file0\x00', 0x2e, 0x0, 0x0, 0x104e034, &(0x7f00000001c0)) 12:31:42 executing program 5: r0 = syz_io_uring_setup(0x4d4f, &(0x7f0000000080), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=0x0, &(0x7f0000000140)=0x0) syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_POLL_ADD={0x6, 0x0, 0x0, @fd=r0, 0x0, 0x0, 0x0, {0x194}}, 0x0) r3 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0) perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_io_uring_submit(r3, r2, &(0x7f0000000100)=@IORING_OP_SPLICE, 0x4) io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0) execveat(0xffffffffffffffff, &(0x7f00000002c0)='./file0\x00', 0x0, 0x0, 0x6800) 12:31:42 executing program 2: r0 = syz_init_net_socket$802154_dgram(0x24, 0x2, 0x0) r1 = dup(r0) ioctl$sock_ipv6_tunnel_SIOCADD6RD(0xffffffffffffffff, 0x89f9, &(0x7f0000000140)={'syztnl2\x00', &(0x7f0000000080)={'syztnl0\x00', 0x0, 0x4, 0x26, 0x0, 0x401, 0x8, @empty, @rand_addr=' \x01\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x01', 0x7, 0x1, 0x400, 0x2}}) sendmsg$BATADV_CMD_GET_BLA_BACKBONE(r1, &(0x7f0000000540)={&(0x7f0000000100), 0x68, &(0x7f0000000500)={0x0}}, 0x0) ioctl$sock_SIOCINQ(r1, 0x541b, &(0x7f0000000000)) r2 = socket$inet6_udp(0xa, 0x2, 0x0) setsockopt$inet6_MRT6_ADD_MFC_PROXY(r2, 0x29, 0xd2, 0x0, 0x0) setsockopt$sock_linger(r2, 0x1, 0xd, &(0x7f0000000040)={0x0, 0xffffff00}, 0x8) 12:31:42 executing program 0: r0 = syz_io_uring_setup(0x4d4f, &(0x7f0000000080), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=0x0, &(0x7f0000000140)=0x0) syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_POLL_ADD={0x6, 0x0, 0x0, @fd=r0, 0x0, 0x0, 0x0, {0x194}}, 0x0) r3 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0) perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r4 = mmap$IORING_OFF_CQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x1000008, 0x11, r0, 0x8000000) syz_io_uring_setup(0x1432, &(0x7f0000000080)={0x0, 0x0, 0x1}, &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000000)=0x0, &(0x7f0000000140)=0x0) syz_io_uring_submit(r5, r6, &(0x7f00000002c0)=@IORING_OP_READ=@use_registered_buffer={0x16, 0x0, 0x0, @fd_index}, 0x0) r7 = io_uring_register$IORING_REGISTER_PERSONALITY(r0, 0x9, 0x0, 0x0) syz_io_uring_submit(r4, r6, &(0x7f00000001c0)=@IORING_OP_TIMEOUT={0xb, 0x0, 0x0, 0x0, 0x4, &(0x7f0000000180), 0x1, 0xa7f32afbd84e6b4a, 0x1, {0x0, r7}}, 0x800) syz_io_uring_submit(r3, r2, &(0x7f0000000100)=@IORING_OP_SPLICE, 0x4) execveat(0xffffffffffffffff, &(0x7f00000002c0)='./file0\x00', &(0x7f0000000380), 0x0, 0x1000) 12:31:42 executing program 7: syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000040)='./file0\x00', 0x40000, 0x3, &(0x7f0000000200)=[{&(0x7f0000010000)="2000000080000000060000006a0000000f000000000000000100000001000000004000000040000020000000e0f4655fe0f4655f0100ffff53ef010001000000dff4655f000000000000000001000000000000000b0000000001", 0x5a, 0x400}, {&(0x7f0000010400)="020000000300000004", 0x9, 0x800}, {&(0x7f0000011600)="ed41000000080000dff4655fe0f4655fe0f4655f000000000000040004", 0x1d, 0x2100}], 0x0, &(0x7f0000000080)=ANY=[]) syz_mount_image$ext4(&(0x7f0000000000)='ext2\x00', &(0x7f0000000040)='./file0/../file0\x00', 0x4000, 0x0, 0x0, 0x104e034, &(0x7f00000001c0)) 12:31:42 executing program 3: r0 = syz_io_uring_setup(0x4d4f, &(0x7f0000000080), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200), &(0x7f0000000140)=0x0) r2 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0) perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_io_uring_submit(r2, r1, &(0x7f0000000100)=@IORING_OP_SPLICE, 0x4) io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0) execveat(0xffffffffffffffff, &(0x7f00000002c0)='./file0\x00', 0x0, 0x0, 0x700) 12:31:42 executing program 1 (fault-call:6 fault-nth:36): r0 = syz_io_uring_setup(0x4d4f, &(0x7f0000000080), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=0x0, &(0x7f0000000140)=0x0) syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_POLL_ADD={0x6, 0x0, 0x0, @fd=r0, 0x0, 0x0, 0x0, {0x194}}, 0x0) r3 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0) perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_io_uring_submit(r3, r2, &(0x7f0000000100)=@IORING_OP_SPLICE, 0x4) io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0) execveat(0xffffffffffffffff, &(0x7f00000002c0)='./file0\x00', &(0x7f0000000380), &(0x7f0000000640)=[0x0, 0x0, 0x0], 0x0) 12:31:42 executing program 4: syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000040)='./file0\x00', 0x40000, 0x3, &(0x7f0000000200)=[{&(0x7f0000010000)="2000000080000000060000006a0000000f000000000000000100000001000000004000000040000020000000e0f4655fe0f4655f0100ffff53ef010001000000dff4655f000000000000000001000000000000000b00000000010000280200000284", 0x62, 0x400}, {&(0x7f0000010400)="020000000300", 0x6, 0x800}, {&(0x7f0000011600)="ed41000000080000dff4655fe0f4655fe0f4655f000000000000040004", 0x1d, 0x2100}], 0x0, &(0x7f0000000080)=ANY=[]) syz_mount_image$ext4(&(0x7f0000000000)='ext2\x00', &(0x7f0000000040)='./file0/../file0\x00', 0x0, 0x0, 0x0, 0x104e034, &(0x7f00000001c0)={[{@data_err_abort}]}) 12:31:42 executing program 5: r0 = syz_io_uring_setup(0x4d4f, &(0x7f0000000080), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=0x0, &(0x7f0000000140)=0x0) syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_POLL_ADD={0x6, 0x0, 0x0, @fd=r0, 0x0, 0x0, 0x0, {0x194}}, 0x0) r3 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0) perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_io_uring_submit(r3, r2, &(0x7f0000000100)=@IORING_OP_SPLICE, 0x4) io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0) execveat(0xffffffffffffffff, &(0x7f00000002c0)='./file0\x00', 0x0, 0x0, 0x6c00) [ 1832.395337] EXT4-fs (loop6): mounted filesystem without journal. Opts: ,errors=continue [ 1832.404827] FAULT_INJECTION: forcing a failure. [ 1832.404827] name failslab, interval 1, probability 0, space 0, times 0 [ 1832.406156] CPU: 1 PID: 13525 Comm: syz-executor.1 Not tainted 5.10.60 #1 [ 1832.406840] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS rel-1.14.0-0-g155821a1990b-prebuilt.qemu.org 04/01/2014 [ 1832.408080] Call Trace: [ 1832.408369] dump_stack+0x107/0x163 [ 1832.408766] should_fail.cold+0x5/0xa [ 1832.409191] ? __alloc_file+0x21/0x310 [ 1832.409588] should_failslab+0x5/0x10 [ 1832.409999] kmem_cache_alloc+0x5b/0x350 [ 1832.410405] ? mark_lock+0x108/0x3020 [ 1832.410830] __alloc_file+0x21/0x310 [ 1832.411208] alloc_empty_file+0x6a/0x160 [ 1832.411648] path_openat+0xdf/0x2690 [ 1832.412033] ? stack_trace_consume_entry+0x160/0x160 [ 1832.412594] ? path_lookupat+0x780/0x780 [ 1832.413007] ? __lock_acquire+0x1616/0x5b60 [ 1832.413486] do_filp_open+0x192/0x3e0 [ 1832.413881] ? may_open_dev+0xf0/0xf0 [ 1832.414312] ? perf_trace_lock+0xb6/0x470 [ 1832.414969] ? perf_trace_lock+0xb6/0x470 [ 1832.415517] ? __lockdep_reset_lock+0x180/0x180 [ 1832.416172] ? find_held_lock+0x2c/0x110 [ 1832.416704] do_open_execat+0x10c/0x690 [ 1832.417235] ? __ia32_sys_uselib+0x40/0x40 [ 1832.417829] ? do_raw_spin_lock+0x129/0x270 [ 1832.418402] ? rwlock_bug.part.0+0x90/0x90 [ 1832.419050] bprm_execve+0x5b2/0x1b00 [ 1832.419500] ? get_arg_page+0x153/0x200 [ 1832.419996] ? open_exec+0x70/0x70 [ 1832.420462] ? memcpy+0x39/0x60 [ 1832.420860] ? copy_strings.isra.0+0x492/0x690 [ 1832.421466] ? copy_string_kernel+0x3ad/0x440 [ 1832.422127] do_execveat_common.isra.0+0x524/0x670 [ 1832.422840] __x64_sys_execveat+0xe7/0x130 [ 1832.423461] do_syscall_64+0x33/0x40 [ 1832.423999] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 1832.424732] RIP: 0033:0x466609 [ 1832.425192] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1832.427906] RSP: 002b:00007f443d736188 EFLAGS: 00000246 ORIG_RAX: 0000000000000142 [ 1832.429002] RAX: ffffffffffffffda RBX: 000000000056bf80 RCX: 0000000000466609 [ 1832.430097] RDX: 0000000020000380 RSI: 00000000200002c0 RDI: ffffffffffffffff [ 1832.431185] RBP: 00007f443d7361d0 R08: 0000000000000000 R09: 0000000000000000 [ 1832.432246] R10: 0000000020000640 R11: 0000000000000246 R12: 0000000000000002 [ 1832.433304] R13: 00007ffeb6924e7f R14: 00007f443d736300 R15: 0000000000022000 [ 1832.457500] EXT4-fs (loop6): re-mounted. Opts: ,errors=continue [ 1832.462067] EXT4-fs (loop4): ext4_check_descriptors: Inode table for group 0 overlaps superblock [ 1832.463439] EXT4-fs (loop4): group descriptors corrupted! 12:31:42 executing program 2: r0 = syz_init_net_socket$802154_dgram(0x24, 0x2, 0x0) setsockopt$WPAN_SECURITY_LEVEL(r0, 0x0, 0x2, &(0x7f0000000040)=0x5, 0x4) r1 = dup(r0) sendmsg$BATADV_CMD_GET_BLA_BACKBONE(r1, &(0x7f0000000540)={&(0x7f0000000100), 0xc, &(0x7f0000000500)={0x0}}, 0x0) r2 = fsmount(r1, 0x1, 0x80) connect$802154_dgram(r2, &(0x7f0000000080)={0x24, @long={0x3, 0x1, {0xaaaaaaaaaaaa0102}}}, 0x14) ioctl$sock_SIOCINQ(r1, 0x541b, &(0x7f0000000000)) [ 1832.532319] EXT4-fs (loop7): mounted filesystem without journal. Opts: ,errors=continue 12:31:42 executing program 0: r0 = syz_io_uring_setup(0x4d4f, &(0x7f0000000080), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=0x0, &(0x7f0000000140)=0x0) syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_POLL_ADD={0x6, 0x0, 0x0, @fd=r0, 0x0, 0x0, 0x0, {0x194}}, 0x0) r3 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0) perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_io_uring_submit(r3, r2, &(0x7f0000000100)=@IORING_OP_SPLICE, 0x4) io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0) io_uring_enter(r0, 0x19e7, 0x488d, 0x2, &(0x7f00000001c0), 0x8) execveat(0xffffffffffffffff, &(0x7f00000002c0)='./file0\x00', &(0x7f0000000380), 0x0, 0x1000) r4 = openat$tun(0xffffffffffffff9c, &(0x7f0000000040), 0x0, 0x0) ioctl$TUNSETQUEUE(r4, 0x400454ca, &(0x7f00000000c0)={'ipvlan1\x00'}) r5 = dup2(r0, r4) r6 = perf_event_open(&(0x7f0000000240)={0x4, 0x80, 0x7, 0xeb, 0x3, 0x1, 0x0, 0xe033, 0x880, 0x6, 0x1, 0x1, 0x0, 0x0, 0x1, 0x1, 0x1, 0x1, 0x0, 0x1, 0x0, 0x0, 0x0, 0x1, 0x1, 0x1, 0x1, 0x0, 0x1, 0x1, 0x0, 0x0, 0x0, 0x1, 0x1, 0x1, 0x1, 0x0, 0x0, 0x1, 0x0, 0x0, 0x1, 0x1, 0x1, 0x1, 0x1, 0x0, 0x7fffffff, 0x4, @perf_config_ext={0x2, 0x7be649f6}, 0x1, 0x4, 0x4, 0x1, 0x4, 0x3f, 0x3, 0x0, 0x5}, 0x0, 0xf, r5, 0xa) ioctl$TUNDETACHFILTER(r4, 0x401054d6, 0x0) ioctl$BTRFS_IOC_QUOTA_CTL(r4, 0xc0109428, &(0x7f0000000180)={0x3, 0x5e4}) dup3(0xffffffffffffffff, r6, 0x0) execveat(r5, &(0x7f0000000300)='./file0\x00', &(0x7f0000000500)=[&(0x7f0000000340)='\x00', &(0x7f0000000380)='![|O@%)*:/$&/-/\x00', &(0x7f00000003c0)='\x00', &(0x7f0000000400)='\x00', &(0x7f0000000440)='\x00', &(0x7f0000000480)='ipvlan1\x00', &(0x7f00000004c0)='\x00'], &(0x7f0000000580)=[&(0x7f0000000540)='\x00'], 0x1000) 12:31:42 executing program 6: r0 = syz_io_uring_setup(0x4d4f, &(0x7f0000000080), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=0x0, &(0x7f0000000140)=0x0) syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_POLL_ADD={0x6, 0x0, 0x0, @fd=r0, 0x0, 0x0, 0x0, {0x194}}, 0x0) r3 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0) perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_io_uring_submit(r3, r2, &(0x7f0000000100)=@IORING_OP_SPLICE, 0x4) io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0) execveat(0xffffffffffffffff, &(0x7f00000002c0)='./file0\x00', 0x0, 0x0, 0x4c00) 12:31:42 executing program 4: syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000040)='./file0\x00', 0x40000, 0x3, &(0x7f0000000200)=[{&(0x7f0000010000)="2000000080000000060000006a0000000f000000000000000100000001000000004000000040000020000000e0f4655fe0f4655f0100ffff53ef010001000000dff4655f000000000000000001000000000000000b00000000010000280200000284", 0x62, 0x400}, {&(0x7f0000010400)="020000000300", 0x6, 0x800}, {&(0x7f0000011600)="ed41000000080000dff4655fe0f4655fe0f4655f000000000000040004", 0x1d, 0x2100}], 0x0, &(0x7f0000000080)=ANY=[]) syz_mount_image$ext4(&(0x7f0000000000)='ext2\x00', &(0x7f0000000040)='./file0/../file0\x00', 0x0, 0x0, 0x0, 0x104e034, &(0x7f00000001c0)={[{@data_err_abort}]}) 12:31:42 executing program 3: r0 = syz_io_uring_setup(0x4d4f, &(0x7f0000000080), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200), &(0x7f0000000140)=0x0) r2 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0) perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_io_uring_submit(r2, r1, &(0x7f0000000100)=@IORING_OP_SPLICE, 0x4) io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0) execveat(0xffffffffffffffff, &(0x7f00000002c0)='./file0\x00', 0x0, 0x0, 0xc00) 12:31:42 executing program 7: syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000040)='./file0\x00', 0x40000, 0x3, &(0x7f0000000200)=[{&(0x7f0000010000)="2000000080000000060000006a0000000f000000000000000100000001000000004000000040000020000000e0f4655fe0f4655f0100ffff53ef010001000000dff4655f000000000000000001000000000000000b0000000001", 0x5a, 0x400}, {&(0x7f0000010400)="020000000300000004", 0x9, 0x800}, {&(0x7f0000011600)="ed41000000080000dff4655fe0f4655fe0f4655f000000000000040004", 0x1d, 0x2100}], 0x0, &(0x7f0000000080)=ANY=[]) syz_mount_image$ext4(&(0x7f0000000000)='ext2\x00', &(0x7f0000000040)='./file0/../file0\x00', 0xfc01, 0x0, 0x0, 0x104e034, &(0x7f00000001c0)) 12:31:42 executing program 5: r0 = syz_io_uring_setup(0x4d4f, &(0x7f0000000080), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=0x0, &(0x7f0000000140)=0x0) syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_POLL_ADD={0x6, 0x0, 0x0, @fd=r0, 0x0, 0x0, 0x0, {0x194}}, 0x0) r3 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0) perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_io_uring_submit(r3, r2, &(0x7f0000000100)=@IORING_OP_SPLICE, 0x4) io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0) execveat(0xffffffffffffffff, &(0x7f00000002c0)='./file0\x00', 0x0, 0x0, 0x7400) 12:31:42 executing program 1 (fault-call:6 fault-nth:37): r0 = syz_io_uring_setup(0x4d4f, &(0x7f0000000080), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=0x0, &(0x7f0000000140)=0x0) syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_POLL_ADD={0x6, 0x0, 0x0, @fd=r0, 0x0, 0x0, 0x0, {0x194}}, 0x0) r3 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0) perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_io_uring_submit(r3, r2, &(0x7f0000000100)=@IORING_OP_SPLICE, 0x4) io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0) execveat(0xffffffffffffffff, &(0x7f00000002c0)='./file0\x00', &(0x7f0000000380), &(0x7f0000000640)=[0x0, 0x0, 0x0], 0x0) 12:31:42 executing program 2: r0 = syz_init_net_socket$802154_dgram(0x24, 0x2, 0x0) r1 = dup(r0) sendmsg$BATADV_CMD_GET_BLA_BACKBONE(r1, &(0x7f0000000540)={&(0x7f0000000100), 0xc, &(0x7f0000000500)={0x0}}, 0x0) r2 = socket$inet6_udp(0xa, 0x2, 0x0) setsockopt$inet6_MRT6_ADD_MFC_PROXY(r2, 0x29, 0xd2, 0x0, 0x0) r3 = socket$inet6_udp(0xa, 0x2, 0x0) setsockopt$inet6_MRT6_ADD_MFC_PROXY(r3, 0x29, 0xd2, 0x0, 0x0) ioctl$sock_SIOCINQ(r3, 0x541b, &(0x7f0000000000)) 12:31:43 executing program 6: r0 = syz_init_net_socket$802154_dgram(0x24, 0x2, 0x0) r1 = dup(r0) sendmsg$BATADV_CMD_GET_BLA_BACKBONE(r1, &(0x7f0000000540)={&(0x7f0000000100), 0xc, &(0x7f0000000500)={0x0}}, 0x0) ioctl$sock_SIOCINQ(r1, 0x541b, &(0x7f0000000000)) recvmmsg(r0, &(0x7f00000001c0)=[{{0x0, 0x0, &(0x7f0000000180), 0x0, &(0x7f0000000280)=""/211, 0xd3}, 0x8000}], 0x1, 0x10000, &(0x7f0000000200)) r2 = socket$netlink(0x10, 0x3, 0x0) sendmsg$nl_generic(r2, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000240)={&(0x7f0000000080)=ANY=[@ANYBLOB="280000002c00010d000000000000e4ffffffffffffffffff"], 0x28}}, 0x0) sendmsg$NL80211_CMD_GET_REG(r2, &(0x7f0000000140)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x200000}, 0xc, &(0x7f00000000c0)={&(0x7f0000000080)={0x18, 0x0, 0x200, 0x70bd2a, 0x25dfdbfe, {}, [@NL80211_ATTR_SOCKET_OWNER={0x4}]}, 0x18}, 0x1, 0x0, 0x0, 0x1}, 0x0) [ 1832.772232] EXT4-fs (loop4): ext4_check_descriptors: Inode table for group 0 overlaps superblock [ 1832.773350] EXT4-fs (loop4): group descriptors corrupted! [ 1832.808350] FAULT_INJECTION: forcing a failure. [ 1832.808350] name failslab, interval 1, probability 0, space 0, times 0 [ 1832.809808] CPU: 1 PID: 13595 Comm: syz-executor.1 Not tainted 5.10.60 #1 [ 1832.810786] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS rel-1.14.0-0-g155821a1990b-prebuilt.qemu.org 04/01/2014 [ 1832.812273] Call Trace: [ 1832.812564] dump_stack+0x107/0x163 [ 1832.812957] should_fail.cold+0x5/0xa [ 1832.813384] ? create_object.isra.0+0x3a/0xa10 [ 1832.813923] should_failslab+0x5/0x10 [ 1832.814344] kmem_cache_alloc+0x5b/0x350 [ 1832.814811] create_object.isra.0+0x3a/0xa10 [ 1832.815341] ? __kasan_kmalloc.constprop.0+0xc2/0xd0 [ 1832.815912] kmem_cache_alloc+0x15b/0x350 [ 1832.816371] __alloc_file+0x21/0x310 [ 1832.816784] alloc_empty_file+0x6a/0x160 [ 1832.817237] path_openat+0xdf/0x2690 [ 1832.817685] ? stack_trace_consume_entry+0x160/0x160 [ 1832.818262] ? path_lookupat+0x780/0x780 [ 1832.818728] ? __lock_acquire+0x1616/0x5b60 [ 1832.819222] do_filp_open+0x192/0x3e0 [ 1832.819650] ? may_open_dev+0xf0/0xf0 [ 1832.820087] ? perf_trace_lock+0xb6/0x470 [ 1832.820558] ? perf_trace_lock+0xb6/0x470 [ 1832.821024] ? __lockdep_reset_lock+0x180/0x180 [ 1832.821647] ? find_held_lock+0x2c/0x110 [ 1832.822215] do_open_execat+0x10c/0x690 [ 1832.822861] ? __ia32_sys_uselib+0x40/0x40 [ 1832.823341] ? do_raw_spin_lock+0x129/0x270 [ 1832.823952] ? rwlock_bug.part.0+0x90/0x90 [ 1832.824615] bprm_execve+0x5b2/0x1b00 [ 1832.825047] ? get_arg_page+0x153/0x200 [ 1832.825498] ? open_exec+0x70/0x70 [ 1832.825965] ? memcpy+0x39/0x60 [ 1832.826375] ? copy_strings.isra.0+0x492/0x690 [ 1832.826952] ? copy_string_kernel+0x3ad/0x440 [ 1832.827626] do_execveat_common.isra.0+0x524/0x670 [ 1832.828141] __x64_sys_execveat+0xe7/0x130 [ 1832.828578] do_syscall_64+0x33/0x40 [ 1832.828998] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 1832.829546] RIP: 0033:0x466609 [ 1832.829904] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1832.832292] RSP: 002b:00007f443d736188 EFLAGS: 00000246 ORIG_RAX: 0000000000000142 [ 1832.833144] RAX: ffffffffffffffda RBX: 000000000056bf80 RCX: 0000000000466609 [ 1832.833940] RDX: 0000000020000380 RSI: 00000000200002c0 RDI: ffffffffffffffff [ 1832.834851] RBP: 00007f443d7361d0 R08: 0000000000000000 R09: 0000000000000000 [ 1832.835879] R10: 0000000020000640 R11: 0000000000000246 R12: 0000000000000002 [ 1832.836679] R13: 00007ffeb6924e7f R14: 00007f443d736300 R15: 0000000000022000 12:31:43 executing program 3: r0 = syz_io_uring_setup(0x4d4f, &(0x7f0000000080), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200), &(0x7f0000000140)=0x0) r2 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0) perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_io_uring_submit(r2, r1, &(0x7f0000000100)=@IORING_OP_SPLICE, 0x4) io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0) execveat(0xffffffffffffffff, &(0x7f00000002c0)='./file0\x00', 0x0, 0x0, 0x1200) 12:31:43 executing program 1 (fault-call:6 fault-nth:38): r0 = syz_io_uring_setup(0x4d4f, &(0x7f0000000080), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=0x0, &(0x7f0000000140)=0x0) syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_POLL_ADD={0x6, 0x0, 0x0, @fd=r0, 0x0, 0x0, 0x0, {0x194}}, 0x0) r3 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0) perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_io_uring_submit(r3, r2, &(0x7f0000000100)=@IORING_OP_SPLICE, 0x4) io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0) execveat(0xffffffffffffffff, &(0x7f00000002c0)='./file0\x00', &(0x7f0000000380), &(0x7f0000000640)=[0x0, 0x0, 0x0], 0x0) 12:31:43 executing program 4: syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000040)='./file0\x00', 0x40000, 0x3, &(0x7f0000000200)=[{&(0x7f0000010000)="2000000080000000060000006a0000000f000000000000000100000001000000004000000040000020000000e0f4655fe0f4655f0100ffff53ef010001000000dff4655f000000000000000001000000000000000b00000000010000280200000284", 0x62, 0x400}, {&(0x7f0000010400)="020000000300000004", 0x9, 0x800}, {&(0x7f0000011600)="ed41000000080000dff4655fe0f4655fe0f4655f000000000000040004", 0x1d, 0x2100}], 0x0, &(0x7f0000000080)=ANY=[]) syz_mount_image$ext4(&(0x7f0000000000)='ext2\x00', &(0x7f0000000040)='./file0/../file0\x00', 0x0, 0x0, 0x0, 0x104e034, &(0x7f00000001c0)={[{@data_err_abort}]}) [ 1832.899212] EXT4-fs (loop7): mounted filesystem without journal. Opts: ,errors=continue 12:31:43 executing program 5: r0 = syz_io_uring_setup(0x4d4f, &(0x7f0000000080), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=0x0, &(0x7f0000000140)=0x0) syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_POLL_ADD={0x6, 0x0, 0x0, @fd=r0, 0x0, 0x0, 0x0, {0x194}}, 0x0) r3 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0) perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_io_uring_submit(r3, r2, &(0x7f0000000100)=@IORING_OP_SPLICE, 0x4) io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0) execveat(0xffffffffffffffff, &(0x7f00000002c0)='./file0\x00', 0x0, 0x0, 0x7a00) 12:31:43 executing program 2: syz_init_net_socket$802154_dgram(0x24, 0x2, 0x0) sendmsg$BATADV_CMD_GET_BLA_BACKBONE(0xffffffffffffffff, &(0x7f0000000540)={&(0x7f0000000040), 0xc, &(0x7f0000000500)={0x0}}, 0x80) r0 = syz_init_net_socket$802154_dgram(0x24, 0x2, 0x0) dup(r0) setsockopt$WPAN_SECURITY(r0, 0x0, 0x1, &(0x7f0000000080)=0x3, 0x4) ioctl$sock_SIOCINQ(0xffffffffffffffff, 0x541b, &(0x7f0000000000)) [ 1832.972232] FAULT_INJECTION: forcing a failure. [ 1832.972232] name failslab, interval 1, probability 0, space 0, times 0 [ 1832.973544] CPU: 0 PID: 13627 Comm: syz-executor.1 Not tainted 5.10.60 #1 [ 1832.974303] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS rel-1.14.0-0-g155821a1990b-prebuilt.qemu.org 04/01/2014 [ 1832.975550] Call Trace: [ 1832.975847] dump_stack+0x107/0x163 [ 1832.976262] should_fail.cold+0x5/0xa [ 1832.976685] ? security_file_alloc+0x34/0x170 [ 1832.977171] should_failslab+0x5/0x10 [ 1832.977587] kmem_cache_alloc+0x5b/0x350 [ 1832.978035] security_file_alloc+0x34/0x170 [ 1832.978504] __alloc_file+0xb6/0x310 [ 1832.978914] alloc_empty_file+0x6a/0x160 [ 1832.979354] path_openat+0xdf/0x2690 [ 1832.979771] ? stack_trace_consume_entry+0x160/0x160 [ 1832.980327] ? path_lookupat+0x780/0x780 [ 1832.980771] ? perf_trace_run_bpf_submit+0xf5/0x190 [ 1832.981310] ? __lock_acquire+0x1616/0x5b60 [ 1832.981807] do_filp_open+0x192/0x3e0 [ 1832.982226] ? may_open_dev+0xf0/0xf0 [ 1832.982630] ? perf_trace_run_bpf_submit+0xf5/0x190 [ 1832.983178] ? perf_trace_lock+0x2cd/0x470 [ 1832.983649] ? __lockdep_reset_lock+0x180/0x180 [ 1832.984164] ? find_held_lock+0x2c/0x110 [ 1832.984608] do_open_execat+0x10c/0x690 [ 1832.985045] ? __ia32_sys_uselib+0x40/0x40 [ 1832.985603] ? do_raw_spin_lock+0x129/0x270 [ 1832.986073] ? rwlock_bug.part.0+0x90/0x90 [ 1832.986545] bprm_execve+0x5b2/0x1b00 [ 1832.986987] ? get_arg_page+0x153/0x200 [ 1832.987527] ? open_exec+0x70/0x70 [ 1832.987917] ? memcpy+0x39/0x60 [ 1832.988312] ? copy_strings.isra.0+0x492/0x690 [ 1832.988904] ? copy_string_kernel+0x3ad/0x440 [ 1832.989407] do_execveat_common.isra.0+0x524/0x670 [ 1832.990100] __x64_sys_execveat+0xe7/0x130 [ 1832.990566] do_syscall_64+0x33/0x40 [ 1832.990966] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 1832.991522] RIP: 0033:0x466609 [ 1832.991874] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1832.993980] RSP: 002b:00007f443d715188 EFLAGS: 00000246 ORIG_RAX: 0000000000000142 [ 1832.994808] RAX: ffffffffffffffda RBX: 000000000056c038 RCX: 0000000000466609 [ 1832.995697] RDX: 0000000020000380 RSI: 00000000200002c0 RDI: ffffffffffffffff [ 1832.996601] RBP: 00007f443d7151d0 R08: 0000000000000000 R09: 0000000000000000 [ 1832.997376] R10: 0000000020000640 R11: 0000000000000246 R12: 0000000000000002 [ 1832.998283] R13: 00007ffeb6924e7f R14: 00007f443d715300 R15: 0000000000022000 [ 1833.007072] netlink: 4 bytes leftover after parsing attributes in process `syz-executor.6'. [ 1833.011251] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=0 sclass=netlink_route_socket pid=13617 comm=syz-executor.6 [ 1833.040678] EXT4-fs (loop4): mounted filesystem without journal. Opts: ,errors=continue [ 1833.060381] EXT4-fs (loop4): re-mounted. Opts: data_err=abort,,errors=continue 12:31:55 executing program 6: r0 = syz_init_net_socket$802154_dgram(0x24, 0x2, 0x0) r1 = dup(r0) sendmsg$BATADV_CMD_GET_BLA_BACKBONE(r1, &(0x7f0000000540)={&(0x7f0000000100), 0xc, &(0x7f0000000500)={0x0}}, 0x0) ioctl$sock_SIOCINQ(r1, 0x541b, &(0x7f0000000000)) recvmmsg(r0, &(0x7f00000001c0)=[{{0x0, 0x0, &(0x7f0000000180), 0x0, &(0x7f0000000280)=""/211, 0xd3}, 0x8000}], 0x1, 0x10000, &(0x7f0000000200)) r2 = socket$netlink(0x10, 0x3, 0x0) sendmsg$nl_generic(r2, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000240)={&(0x7f0000000080)=ANY=[@ANYBLOB="280000002c00010d000000000000e4ffffffffffffffffff"], 0x28}}, 0x0) sendmsg$NL80211_CMD_GET_REG(r2, &(0x7f0000000140)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x200000}, 0xc, &(0x7f00000000c0)={&(0x7f0000000080)={0x18, 0x0, 0x200, 0x70bd2a, 0x25dfdbfe, {}, [@NL80211_ATTR_SOCKET_OWNER={0x4}]}, 0x18}, 0x1, 0x0, 0x0, 0x1}, 0x0) 12:31:55 executing program 2: r0 = syz_init_net_socket$802154_dgram(0x24, 0x2, 0x0) r1 = dup(r0) r2 = openat$tun(0xffffffffffffff9c, &(0x7f0000000040), 0x0, 0x0) ioctl$TUNSETQUEUE(r2, 0x400454ca, &(0x7f00000000c0)={'ipvlan1\x00'}) ioctl$BTRFS_IOC_SCRUB(r2, 0xc400941b, &(0x7f0000000580)={0x0, 0x39a, 0x1ed}) sendmsg$BATADV_CMD_GET_BLA_BACKBONE(r1, &(0x7f0000000540)={&(0x7f0000000100), 0xc, &(0x7f0000000500)={0x0}}, 0x0) ioctl$sock_SIOCINQ(r1, 0x541b, &(0x7f0000000000)) 12:31:55 executing program 7: syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000040)='./file0\x00', 0x40000, 0x3, &(0x7f0000000200)=[{&(0x7f0000010000)="2000000080000000060000006a0000000f000000000000000100000001000000004000000040000020000000e0f4655fe0f4655f0100ffff53ef010001000000dff4655f000000000000000001000000000000000b0000000001", 0x5a, 0x400}, {&(0x7f0000010400)="020000000300000004", 0x9, 0x800}, {&(0x7f0000011600)="ed41000000080000dff4655fe0f4655fe0f4655f000000000000040004", 0x1d, 0x2100}], 0x0, &(0x7f0000000080)=ANY=[]) syz_mount_image$ext4(&(0x7f0000000000)='ext2\x00', &(0x7f0000000040)='./file0/../file0\x00', 0x20000, 0x0, 0x0, 0x104e034, &(0x7f00000001c0)) 12:31:55 executing program 3: r0 = syz_io_uring_setup(0x4d4f, &(0x7f0000000080), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200), &(0x7f0000000140)=0x0) r2 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0) perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_io_uring_submit(r2, r1, &(0x7f0000000100)=@IORING_OP_SPLICE, 0x4) io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0) execveat(0xffffffffffffffff, &(0x7f00000002c0)='./file0\x00', 0x0, 0x0, 0x1800) 12:31:55 executing program 0: r0 = syz_io_uring_setup(0x4d4f, &(0x7f0000000080), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=0x0, &(0x7f0000000140)=0x0) syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_POLL_ADD={0x6, 0x0, 0x0, @fd=r0, 0x0, 0x0, 0x0, {0x194}}, 0x0) r3 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0) perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_io_uring_submit(r3, r2, &(0x7f0000000100)=@IORING_OP_SPLICE, 0x4) io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0) execveat(0xffffffffffffffff, &(0x7f00000002c0)='./file0\x00', &(0x7f0000000380), 0x0, 0x1000) r4 = openat$dir(0xffffffffffffff9c, &(0x7f0000000180)='./file0\x00', 0x10000, 0x10) r5 = openat$hwrng(0xffffffffffffff9c, &(0x7f00000001c0), 0x10900, 0x0) execveat(0xffffffffffffffff, &(0x7f0000001380)='./file1\x00', &(0x7f0000001480)=[&(0x7f00000013c0)='\x00', &(0x7f0000001400)='\x00', &(0x7f0000001440)='\x00'], &(0x7f00000015c0)=[&(0x7f00000014c0)='\'\'@+[\x00', &(0x7f0000001500)='/dev/hwrng\x00', &(0x7f0000001540)='\xe6^+\x00', &(0x7f0000001580)='/dev/hwrng\x00'], 0x1000) stat(&(0x7f0000001cc0)='.\x00', &(0x7f0000001c00)={0x0, 0x0, 0x0, 0x0, 0x0}) r7 = syz_init_net_socket$802154_dgram(0x24, 0x2, 0x0) r8 = dup(r7) ioctl$sock_SIOCINQ(r8, 0x541b, &(0x7f0000000000)) perf_event_open(&(0x7f0000001300)={0x1, 0x80, 0x80, 0x7, 0xa, 0x80, 0x0, 0x4, 0x9620, 0xc, 0x1, 0x1, 0x1, 0x1, 0x1, 0x1, 0x0, 0x1, 0x1, 0x1, 0x1, 0x0, 0x0, 0x0, 0x1, 0x0, 0x1, 0x1, 0x0, 0x0, 0x1, 0x1, 0x1, 0x1, 0x1, 0x1, 0x1, 0x1, 0x0, 0x1, 0x1, 0x1, 0x1, 0x0, 0x0, 0x0, 0x1, 0x0, 0x2, 0x4, @perf_bp={&(0x7f0000000280), 0x1}, 0x100, 0x701, 0x7, 0x8, 0x2, 0x1, 0x1, 0x0, 0x9b5, 0x0, 0x7a}, 0x0, 0xa, r8, 0x1) setresuid(0xffffffffffffffff, r6, 0x0) r9 = getegid() setresgid(0x0, 0xffffffffffffffff, r9) fchownat(r5, &(0x7f0000000240)='./file0\x00', r6, r9, 0x100) ioctl$BTRFS_IOC_SNAP_CREATE(r4, 0x50009401, &(0x7f0000000300)={{}, "bde406002d46dbfb66bc32e6a08200902cca88b1122837cef33b8502ddfe13101bdcb9ad03a4b84d65ce6b5c101641f90204d4435bcd15546c4b7cc1b8330df490c9bd114155cdf366c5af9dda0e0c81ffb5c63bc40a237a01af1367f25512767e5c2bca691e5d3656c9eaaa64d5806a039910b3f381143f58e63f178e38f657ac6997b527edd963de67757bf204e2fa3d43fbab33b6df41da40036d7f3cbe4b39780735ab99405c3e94f0731a5d87b8e9b8e40b7db9c0cb8067b83a1ee847aef3f689b884654f11cf8f156020299d201fab7df4cce1ad120ca837bffc1510562d552857b21701b14127cba5d10e7a15197ccddf1e31d9e1303e77e85f817b2a26d04cc78cb7dad5166b58884e715e39b9447d53f0a484bfb0e1ca5efc680a190130810f541db32a4f1164a29bf73ba6e22846bb5b1ee5120c890a969317e6e18a6d390b2b37664463f3297544d610ccd69b73298029a4c0291fb8fc55285563dc09a74600ef1bca1479492a1be51eb2f043355fa7cdfffbff6c8512cd9d56992c82bc35015ae36c26cdacf83ace918f1424fff647bb82f21eb226ff1fd3e67fa750d58ffa0d3eb417179b841abefeeaca88db97cc3f704b6a588b6f0f26fec91b35cf0756016361483fec9ba0227c07826aec47d217f0f89ed5ba2741740d37f7ef1c63e613866e3dec6928fbcbcc8dbec7a5249faae34c63afc22430271be00ad194866c4cdc916b7ad65735fba6dafc14a139d706b5489855f75b4fd9bbbaddbbbfc496b58e386f31a42e9e9f2375ba85c875bd6ac413446b33cd443328a83fbb02be15c35c8fbab6a8d4a0279f4931fac17f4c44923f0de4a3c36c3173cdb1dc9ca0705c250a7d5b06597e55b9822d65baba6f38be0e059a7b27282ff63a8eaaf13903601a64ca6bc896290e97599d00c5170216af50b7a38f652c48c22259d135414b14aee9b8ce4f010d2b55e6346d8c9a991e883f632b7f8eda2c357d46f55345b52a75c6155403f0448f9102632ce8c3886b41bb4787577ad4967928701a201435ab7bcf5f1351ad2c236f4a7bf29b4f19c55461af4059e965ba170505c5fc51bddf0621e15422dd82b7e00599efdc123f2c175df924b5f53f7caa9ad085cc259f271884d8adb61884ecfadb655aaf8ca643c79ae1a6f0a144aff650cbe2dd7b8cbf1c063b0f1005dcbf4941240d9a20efeea48dcd319f07551c51c5197ec24d36271aa8aa656cf134ca6a2d122f308d45f51cd6ec47b902c1896ebab2ae740fd823620d206a3d171e63d5d863d5654d58e97226edd4015cad0ff021c7d70cf14f695a1244e118d33c3c1499bdcdfbb66bf0d5d80871caa429638e31efdcb48d89b4e89cb9ad559a73f9de26c07c55fb12b42575329a67d08d9b29bd841f62e91e6cd76789f480914965268d4c701067cfb89d99818512708113a2169b5182965d587a6c794ac573a863a4e18ee15dc9902d2b707a6cc331048081fc3a69f63313a28d609ce5bf5617bc832c04bdcd9e3d901fb65a92d5f88c9224f1cb81be969f2db105864acfec6d103db41870067c25700c80b5fd34402df79f5413b993076ccc7f0f08a489d403fcf64dd9bab79953ec70b2fea2c0bccaf08447e8d2f3c642d32d8b07917658a2e5ff29407b2432799c36a6795437814b470c159365937b10b4782ddd95a8a2834c59221b89565936e1a868f6e7a48404b00ac6755a6e6b1290fb53330eca49fae2e5bc97aa9723c647c3ed3735d47dc969336dd0b2b6585b2d19f0e0fb3090df24f5c7be4a376400cdbc8e0a185aacd90c88805f82b15c7c7da15668d187209cd6f9d78428eb1bb4e598de97f8d8a0a0dde0ebd7e22612f406f440c57d5d08c19582e429232d7f9e545ed5e7f36093ed91e4f44625d10349b85f7ec9ab40011bfbdda0e367d1d85bf48e6046e03434a68416427a15c1c45c2c91edd4d8dab6f70dfc3943f0cbd333842a7934bd99c851ad96c7d3a6e057c06b714860b5ba45a9c5cbe9a2985e99090a6e0e31f832ba089836ca0c1df6b1f196a271b689591340948930222e868369b441465f7c9dfebed41272a0ddd68d80508a53cd63d8d94f6fdd1cf5a6e7b3602e67e89aed108cd3699d986b0bb96f472855e357744cf3e09f42974236ff0e41ce5406c4e257dea0cf46bd9eca3c86cd5be0007022eb96e9eda5464d5a381c4d5256a9c73276b0832a08e8b438b674d09d82518bec924c997f04a1682cdd39c71a7b27da2c4deaa4ea5306038b0c4ceb75bbe7c96885a9f9131e3164578da1bbe752e104dc1bc114be1279f166fd2f30d66007ab0b53dc984b66a423d7df52f2879d0b5a970ade36790a36a23a24de76c1e4c65ef414b185d5da9b84a1441de7df21cbdb35ad47d7cdb6966b602efdc6bb0ff45900e59fcb454d4e3b139a1c21fe16586febc9860be0e89deab635f250e9c44aeae851a0fab522eb2d57772a7af00389f58e1fa3c9d3b7c5efe86c2a878dba6f791146b371d293de138f3d330b7dcfce378ff6973becb5d6fcd6b10fc2bafb319c6d85da2bf9f16246f523726876c3d6e815a7f046f3b31aa0bcc54bad48a589b8927c719369e79f924b5c7cbc948aba865f695cb6cdecd5531f853867e10a5c220bbd2c0f99b211513aef0d1aa804c5ff24155eb581947db416b40a1f5c3ebab38bfcb7970d9696a1dc82b215c8b4f70084acf4ba78373e864aead358e6c76288b7a0cc74b95d3359d0b9c232d496ccbabf8701426ac921c056a48ed6475eeb761b37c943b56d9afd3d398af1551c55d58d358b24e188c763fdd7f648b3ebea314aa1c194071a2c8db58969777a62f80784b1a24e907cf5910daf3796eb39643eb0d3c86895bd5a5e4d827634f59ceb67accc4f4ba79d9ffb09412fc9aeef865791a3372cc41dd704835a1bc304005aae3a6b44af3d6c92401c83a4c3f2c99139c0eff6602410a9c1886f257a14304077c91e4fda300152aa4cbaa3a41177e22fd3534afcf9642f0c522dc706bbe7cf3f7ae95efc565650db8dc1bd69faa975e8ebbafe4c5ac7e2d7ec32015c750606ed293c80e29ff64ace5751524f98193fe393d14573be1aa06b6384b2edd40da28fd6a244b7c7c061be661ca538eebc60353f698115619b2e794ef76076282963c792dc4c88552e5f00fb6d6960515dc861296acdd78a86ac9f424fc97de5be46823b29d83a9e3ebd67b294ff2a5c41c1ec1c363677292c0197d62b9617b8b71499ecf8ab961e2c29bb8c4a493244eaf6ec4c4c979498f6d8b29625622de0075f712117ae171562078e3a75aa05884eea43ffda66f9d12999eab747fe95c77cbf1f5963b9ca17e9ff922eb2f7b33483a951be7c8f226d0f14e1e87fc62074e0af72256a8e36b1cf6106bd62f08102ed843cc5551558eeb89d46ff0029342cd0918a90dc01f20075689e9d38df4902ffbe986a9ad0e9ca3f89962ad40ee6da52a09f4cef871360936dbff09ceb93f73130ae4d03b2de69d8119cae74364e3db4bc844a9e1e03aadf4f442d5817bcb4e3dcefc44a745a1eeccf3c82ae823115495d4d0d1d24460fc80df68a16a8b0454847fd22089d9198d1988d2174c6d4c128fc80741d79a0414bed573b6501de76a32e2fd1b63b6004b92a66f4173c9f4e99bf8422d870781c605ad6898c6e1619cb38a912e2abb63141f0bd17a3ed246880566ff4a228f776c7bba799efddeace2bba70f321cc4e8871484d14a4e7ec5020eb561e0dc737bf0d0a1e2217497510fa3840155c97535489d3e460d926f5815c9bbea8090452c480f8bacaa4c31cfebd0a5279873c2503a937f00ec2b2f47a437687b6b97500ea1ce9d551cd78205ebd8173f396eb8178909fc0ecb8a2a67bc771ab97abff0834bab49e5d6bdd30f8b29ca73f48ea79ca8cb63c772fb58cc3bbd0052b442d145069bb278ed5fe1a4b542cf01e5391e260af33717b3d037dbde8d81ea067bf6452fa8fffa9c7adb590215d3be9f632da3c70c43b4f9cdc2a07d96bc00c1d3e918e63b925d45d778efc17fae8eeefb0faffc9ff9d26530a54d55f4e74d2eb1d4af5efa9a25116cd4966296d72a52b1a5223785f92d3300696a1e2c5a7689fb8eb7ab12cd4975ed72bd7460c38a2b5a2602d97bfa1448545297c6f6b5958c474acb65c170e5a0bdfae436ca09b990e03d67c5e6ab001c8398b98bddd63b63251540f033b65a30576e6782495350346dce30ffffed25518eeec000e2fa7de82cd9d50da965d22dd39a49300043600ad03edc1d200b49f87a00a01893d2c84413aeaef332b54755779b78b81533ba0fb2ef753d900e6fb9cbcd86decf479e0a667f176cd6f240d66d0fbaeee9625225345293d63963e74e015eb694ca6a8da08f9dcb98cb5f2946658910de3c82f0b81775c7e5e9f3cd4568f8cd75a6408061236c0c30cbf8ab3ce03509c1c5d717c707db61b8e7cca1718ea8f7262aae2901fcc5c9d10d09af7d50e7d39cf12965da3ffbca4a41821ebd4fd26c496ca2e11122ebfc0886d492db29b5ef4b5197e3c047ba6eea6192eb14730472f9adc943ec2067a9e3706039fdfb208b7532dd1858281dac6575050098af2c607647ab343cb7e9bf01a1d21e99e8dffe7394f440475d5222624bff73748d2bb012fbfac3f0500c86eba8cca5863a39ec80cdcb7b3c0663e9426233a16274cf3fa02090af515fc18133daf51b474bc1b95ef5fe80fcc27df82158e5bdcaf0d4cc2209a2ed1215b7ae3f202f4aa51110d9e05f4e6f0c482c46970c92d2149f31b4cdee9f4733895c7c639862e11d271dbe1034a825c97f59670f77d3bc7b74bc139743bfdd83cd5cfb0ab8d2691c5cd7bb0d09e93d8c2f908cc614c1f36d3ff1556a5901fb39b358e205ecaec7e6362fa3dbf7fb91ec20d2d88c025949d380670bd4229ec6a5a4e709597486a457f9196709d0d82bf581429f2fdc9d933a67553eb7cfa96703e6efb8cf32ce8afe1b5ca0d139c1c68e52bac32b0bc61a62ec70a6f5292a70979228b7e3d32190216f61628a1cb58bb43db7c26d86a8d9392ee3c5ba57092ea05157641cf8bc6408d0ec4188f370c51d1f90c18120f046aa261bd29c4963e6add6977b91873b0391654a14cc7569adbd50f1d4ce4a6a17c4a5c1297db3278272baf71f795c43e849a017e9d9f1989efa130e8a1c61f82cacdaadfc7d67c2b28c3886b64df1c8aa198b2fab0cf9a5d501e65123247e90206a7b036c75678789cd19fb3958154e0868f640df91fd49ba02bf8b3edc09a9e430ef03954a1c885cb5482d039484ad862a088a38d1ab4a65ce7106afe126260822f0e03f81a7f9da18bb4b13ac298c1ae4223af22fe13583a70fa12a0a51417bcad077a61d842ae2e97a4ec34a0fae914428dbcbf88d1cfab841f1132986ce361325d26b00436091ac1bd7ab32cdb096d459aa58f8977f6146bdfdbce912095503354152892427bd8cf6cea273633f8a2f7a248f678099bb43fff8f9c7910aaf80bd256d10b73969fdb9d7dd7d8afff0420e8241f7393e6398e6943981acfdb66d08efb81a6aa0f9fecba44255117d3f687e840ce26be8cf750a30b81f23bf83aafe4751a4afe6b7fac984905353b935317b44e3cbc3d683d1e9509245eae752979abb0ebe21348d435f3beec73eeab70b4e9d23c9f24241cc1ebf2c8b7831290ae61c217c9188ce331b6c0158c38f42550abbed396ae57609b94811387e2cf95ae577954b21dc7f36fff1b716b91937b1ea7443ae09161703cc42dad5a3597221bb34affe975"}) 12:31:55 executing program 1 (fault-call:6 fault-nth:39): r0 = syz_io_uring_setup(0x4d4f, &(0x7f0000000080), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=0x0, &(0x7f0000000140)=0x0) syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_POLL_ADD={0x6, 0x0, 0x0, @fd=r0, 0x0, 0x0, 0x0, {0x194}}, 0x0) r3 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0) perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_io_uring_submit(r3, r2, &(0x7f0000000100)=@IORING_OP_SPLICE, 0x4) io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0) execveat(0xffffffffffffffff, &(0x7f00000002c0)='./file0\x00', &(0x7f0000000380), &(0x7f0000000640)=[0x0, 0x0, 0x0], 0x0) 12:31:55 executing program 5: r0 = syz_io_uring_setup(0x4d4f, &(0x7f0000000080), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=0x0, &(0x7f0000000140)=0x0) syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_POLL_ADD={0x6, 0x0, 0x0, @fd=r0, 0x0, 0x0, 0x0, {0x194}}, 0x0) r3 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0) perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_io_uring_submit(r3, r2, &(0x7f0000000100)=@IORING_OP_SPLICE, 0x4) io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0) execveat(0xffffffffffffffff, &(0x7f00000002c0)='./file0\x00', 0x0, 0x0, 0x40000) 12:31:55 executing program 4: syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000040)='./file0\x00', 0x40000, 0x3, &(0x7f0000000200)=[{&(0x7f0000010000)="2000000080000000060000006a0000000f000000000000000100000001000000004000000040000020000000e0f4655fe0f4655f0100ffff53ef010001000000dff4655f000000000000000001000000000000000b00000000010000280200000284", 0x62, 0x400}, {&(0x7f0000010400)="020000000300", 0x6, 0x800}, {&(0x7f0000011600)="ed41000000080000dff4655fe0f4655fe0f4655f000000000000040004", 0x1d, 0x2100}], 0x0, &(0x7f0000000080)=ANY=[]) syz_mount_image$ext4(&(0x7f0000000000)='ext2\x00', &(0x7f0000000040)='./file0/../file0\x00', 0x0, 0x0, 0x0, 0x104e034, &(0x7f00000001c0)={[{@data_err_abort}]}) [ 1845.375646] EXT4-fs (loop4): ext4_check_descriptors: Inode table for group 0 overlaps superblock [ 1845.377129] EXT4-fs (loop4): group descriptors corrupted! [ 1845.398765] netlink: 4 bytes leftover after parsing attributes in process `syz-executor.6'. [ 1845.402684] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=0 sclass=netlink_route_socket pid=13658 comm=syz-executor.6 [ 1845.420895] FAULT_INJECTION: forcing a failure. [ 1845.420895] name failslab, interval 1, probability 0, space 0, times 0 [ 1845.422227] CPU: 1 PID: 13662 Comm: syz-executor.1 Not tainted 5.10.60 #1 [ 1845.423014] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS rel-1.14.0-0-g155821a1990b-prebuilt.qemu.org 04/01/2014 [ 1845.424320] Call Trace: [ 1845.424630] dump_stack+0x107/0x163 [ 1845.425061] should_fail.cold+0x5/0xa [ 1845.425507] ? create_object.isra.0+0x3a/0xa10 [ 1845.426061] should_failslab+0x5/0x10 [ 1845.426496] kmem_cache_alloc+0x5b/0x350 [ 1845.426952] ? percpu_ref_put_many.constprop.0+0x4e/0x100 [ 1845.427590] create_object.isra.0+0x3a/0xa10 [ 1845.428099] ? __kasan_kmalloc.constprop.0+0xc2/0xd0 [ 1845.428674] kmem_cache_alloc+0x15b/0x350 [ 1845.429156] security_file_alloc+0x34/0x170 [ 1845.429663] __alloc_file+0xb6/0x310 [ 1845.430100] alloc_empty_file+0x6a/0x160 [ 1845.430566] path_openat+0xdf/0x2690 [ 1845.430998] ? stack_trace_consume_entry+0x160/0x160 [ 1845.431576] ? path_lookupat+0x780/0x780 [ 1845.432054] ? __lock_acquire+0x1616/0x5b60 [ 1845.432553] do_filp_open+0x192/0x3e0 [ 1845.433002] ? may_open_dev+0xf0/0xf0 [ 1845.433448] ? perf_trace_lock+0xb6/0x470 [ 1845.433952] ? perf_trace_lock+0xb6/0x470 [ 1845.434436] ? __lockdep_reset_lock+0x180/0x180 [ 1845.434980] ? find_held_lock+0x2c/0x110 [ 1845.435444] do_open_execat+0x10c/0x690 [ 1845.435901] ? __ia32_sys_uselib+0x40/0x40 [ 1845.436389] ? do_raw_spin_lock+0x129/0x270 [ 1845.436880] ? rwlock_bug.part.0+0x90/0x90 [ 1845.437368] bprm_execve+0x5b2/0x1b00 [ 1845.437817] ? get_arg_page+0x153/0x200 [ 1845.438287] ? open_exec+0x70/0x70 [ 1845.438696] ? memcpy+0x39/0x60 [ 1845.439081] ? copy_strings.isra.0+0x492/0x690 [ 1845.439620] ? copy_string_kernel+0x3ad/0x440 [ 1845.440137] do_execveat_common.isra.0+0x524/0x670 [ 1845.440707] __x64_sys_execveat+0xe7/0x130 [ 1845.441200] do_syscall_64+0x33/0x40 [ 1845.441631] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 1845.442248] RIP: 0033:0x466609 [ 1845.442619] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1845.444739] RSP: 002b:00007f443d736188 EFLAGS: 00000246 ORIG_RAX: 0000000000000142 [ 1845.445614] RAX: ffffffffffffffda RBX: 000000000056bf80 RCX: 0000000000466609 [ 1845.446437] RDX: 0000000020000380 RSI: 00000000200002c0 RDI: ffffffffffffffff [ 1845.447260] RBP: 00007f443d7361d0 R08: 0000000000000000 R09: 0000000000000000 [ 1845.448097] R10: 0000000020000640 R11: 0000000000000246 R12: 0000000000000002 [ 1845.448921] R13: 00007ffeb6924e7f R14: 00007f443d736300 R15: 0000000000022000 12:31:55 executing program 4: syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000040)='./file0\x00', 0x40000, 0x3, &(0x7f0000000200)=[{&(0x7f0000010000)="2000000080000000060000006a0000000f000000000000000100000001000000004000000040000020000000e0f4655fe0f4655f0100ffff53ef010001000000dff4655f000000000000000001000000000000000b00000000010000280200000284", 0x62, 0x400}, {&(0x7f0000010400)="020000000300", 0x6, 0x800}, {&(0x7f0000011600)="ed41000000080000dff4655fe0f4655fe0f4655f000000000000040004", 0x1d, 0x2100}], 0x0, &(0x7f0000000080)=ANY=[]) syz_mount_image$ext4(&(0x7f0000000000)='ext2\x00', &(0x7f0000000040)='./file0/../file0\x00', 0x0, 0x0, 0x0, 0x104e034, &(0x7f00000001c0)={[{@data_err_abort}]}) 12:31:55 executing program 3: r0 = syz_io_uring_setup(0x4d4f, &(0x7f0000000080), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200), &(0x7f0000000140)=0x0) r2 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0) perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_io_uring_submit(r2, r1, &(0x7f0000000100)=@IORING_OP_SPLICE, 0x4) io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0) execveat(0xffffffffffffffff, &(0x7f00000002c0)='./file0\x00', 0x0, 0x0, 0x1e00) [ 1845.513760] EXT4-fs (loop7): mounted filesystem without journal. Opts: ,errors=continue [ 1845.534501] EXT4-fs (loop7): re-mounted. Opts: ,errors=continue 12:31:55 executing program 6: r0 = syz_init_net_socket$802154_dgram(0x24, 0x2, 0x0) r1 = dup(r0) sendmsg$BATADV_CMD_GET_BLA_BACKBONE(r1, &(0x7f0000000540)={&(0x7f0000000100), 0xc, &(0x7f0000000500)={0x0}}, 0x0) ioctl$sock_SIOCINQ(r1, 0x541b, &(0x7f0000000000)) recvmmsg(r0, &(0x7f00000001c0)=[{{0x0, 0x0, &(0x7f0000000180), 0x0, &(0x7f0000000280)=""/211, 0xd3}, 0x8000}], 0x1, 0x10000, &(0x7f0000000200)) r2 = socket$netlink(0x10, 0x3, 0x0) sendmsg$nl_generic(r2, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000240)={&(0x7f0000000080)=ANY=[@ANYBLOB="280000002c00010d000000000000e4ffffffffffffffffff"], 0x28}}, 0x0) sendmsg$NL80211_CMD_GET_REG(r2, &(0x7f0000000140)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x200000}, 0xc, &(0x7f00000000c0)={&(0x7f0000000080)={0x18, 0x0, 0x200, 0x70bd2a, 0x25dfdbfe, {}, [@NL80211_ATTR_SOCKET_OWNER={0x4}]}, 0x18}, 0x1, 0x0, 0x0, 0x1}, 0x0) [ 1845.677635] EXT4-fs (loop4): ext4_check_descriptors: Inode table for group 0 overlaps superblock [ 1845.678715] EXT4-fs (loop4): group descriptors corrupted! [ 1845.752152] netlink: 4 bytes leftover after parsing attributes in process `syz-executor.6'. [ 1845.755034] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=0 sclass=netlink_route_socket pid=13703 comm=syz-executor.6 12:32:07 executing program 6: r0 = syz_init_net_socket$802154_dgram(0x24, 0x2, 0x0) r1 = dup(r0) sendmsg$BATADV_CMD_GET_BLA_BACKBONE(r1, &(0x7f0000000540)={&(0x7f0000000100), 0xc, &(0x7f0000000500)={0x0}}, 0x0) ioctl$sock_SIOCINQ(r1, 0x541b, &(0x7f0000000000)) recvmmsg(r0, &(0x7f00000001c0)=[{{0x0, 0x0, &(0x7f0000000180), 0x0, &(0x7f0000000280)=""/211, 0xd3}, 0x8000}], 0x1, 0x10000, &(0x7f0000000200)) r2 = socket$netlink(0x10, 0x3, 0x0) sendmsg$nl_generic(r2, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000240)={&(0x7f0000000080)=ANY=[@ANYBLOB="280000002c00010d000000000000e4ffffffffffffffffff"], 0x28}}, 0x0) sendmsg$NL80211_CMD_GET_REG(r2, &(0x7f0000000140)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x200000}, 0xc, &(0x7f00000000c0)={&(0x7f0000000080)={0x18, 0x0, 0x200, 0x70bd2a, 0x25dfdbfe, {}, [@NL80211_ATTR_SOCKET_OWNER={0x4}]}, 0x18}, 0x1, 0x0, 0x0, 0x1}, 0x0) 12:32:07 executing program 5: r0 = syz_io_uring_setup(0x4d4f, &(0x7f0000000080), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=0x0, &(0x7f0000000140)=0x0) syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_POLL_ADD={0x6, 0x0, 0x0, @fd=r0, 0x0, 0x0, 0x0, {0x194}}, 0x0) r3 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0) perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_io_uring_submit(r3, r2, &(0x7f0000000100)=@IORING_OP_SPLICE, 0x4) io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0) execveat(0xffffffffffffffff, &(0x7f00000002c0)='./file0\x00', 0x0, 0x0, 0x100000) 12:32:07 executing program 7: syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000040)='./file0\x00', 0x40000, 0x3, &(0x7f0000000200)=[{&(0x7f0000010000)="2000000080000000060000006a0000000f000000000000000100000001000000004000000040000020000000e0f4655fe0f4655f0100ffff53ef010001000000dff4655f000000000000000001000000000000000b0000000001", 0x5a, 0x400}, {&(0x7f0000010400)="020000000300000004", 0x9, 0x800}, {&(0x7f0000011600)="ed41000000080000dff4655fe0f4655fe0f4655f000000000000040004", 0x1d, 0x2100}], 0x0, &(0x7f0000000080)=ANY=[]) syz_mount_image$ext4(&(0x7f0000000000)='ext2\x00', &(0x7f0000000040)='./file0/../file0\x00', 0x40000, 0x0, 0x0, 0x104e034, &(0x7f00000001c0)) 12:32:07 executing program 0: r0 = syz_io_uring_setup(0x4d4f, &(0x7f0000000080), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=0x0, &(0x7f0000000140)=0x0) r3 = openat$tun(0xffffffffffffff9c, &(0x7f0000000040), 0x0, 0x0) ioctl$TUNSETQUEUE(r3, 0x400454ca, &(0x7f00000000c0)={'ipvlan1\x00'}) syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_POLL_ADD={0x6, 0x3, 0x0, @fd_index=0x5, 0x0, 0x0, 0x0, {0x9c}, 0x1}, 0x0) r4 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0) perf_event_open(&(0x7f0000000180)={0x2, 0x80, 0x6f, 0x0, 0x0, 0xfe, 0x0, 0x0, 0x802e0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x108, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffe, 0x0, 0x0, 0x0, 0x2}, 0x0, 0xa, 0xffffffffffffffff, 0x0) syz_io_uring_submit(r4, r2, &(0x7f0000000100)=@IORING_OP_SPLICE, 0x4) io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0) execveat(0xffffffffffffffff, &(0x7f00000002c0)='./file0\x00', &(0x7f0000000380), 0x0, 0x1000) fchmodat(0xffffffffffffff9c, &(0x7f0000000240)='./file0\x00', 0x31) 12:32:07 executing program 3: r0 = syz_io_uring_setup(0x4d4f, &(0x7f0000000080), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200), &(0x7f0000000140)=0x0) r2 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0) perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_io_uring_submit(r2, r1, &(0x7f0000000100)=@IORING_OP_SPLICE, 0x4) io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0) execveat(0xffffffffffffffff, &(0x7f00000002c0)='./file0\x00', 0x0, 0x0, 0x2000) 12:32:07 executing program 1 (fault-call:6 fault-nth:40): r0 = syz_io_uring_setup(0x4d4f, &(0x7f0000000080), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=0x0, &(0x7f0000000140)=0x0) syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_POLL_ADD={0x6, 0x0, 0x0, @fd=r0, 0x0, 0x0, 0x0, {0x194}}, 0x0) r3 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0) perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_io_uring_submit(r3, r2, &(0x7f0000000100)=@IORING_OP_SPLICE, 0x4) io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0) execveat(0xffffffffffffffff, &(0x7f00000002c0)='./file0\x00', &(0x7f0000000380), &(0x7f0000000640)=[0x0, 0x0, 0x0], 0x0) 12:32:07 executing program 4: syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000040)='./file0\x00', 0x40000, 0x3, &(0x7f0000000200)=[{&(0x7f0000010000)="2000000080000000060000006a0000000f000000000000000100000001000000004000000040000020000000e0f4655fe0f4655f0100ffff53ef010001000000dff4655f000000000000000001000000000000000b00000000010000280200000284", 0x62, 0x400}, {&(0x7f0000010400)="020000000300", 0x6, 0x800}, {&(0x7f0000011600)="ed41000000080000dff4655fe0f4655fe0f4655f000000000000040004", 0x1d, 0x2100}], 0x0, &(0x7f0000000080)=ANY=[]) syz_mount_image$ext4(&(0x7f0000000000)='ext2\x00', &(0x7f0000000040)='./file0/../file0\x00', 0x0, 0x0, 0x0, 0x104e034, &(0x7f00000001c0)={[{@data_err_abort}]}) 12:32:07 executing program 2: accept4$inet6(0xffffffffffffffff, &(0x7f0000000040)={0xa, 0x0, 0x0, @empty}, &(0x7f0000000080)=0x1c, 0x0) r0 = syz_init_net_socket$802154_dgram(0x24, 0x2, 0x0) r1 = dup(r0) sendmsg$BATADV_CMD_GET_BLA_BACKBONE(r1, &(0x7f0000000540)={&(0x7f0000000100), 0xc, &(0x7f0000000500)={0x0}}, 0x0) ioctl$F2FS_IOC_SET_PIN_FILE(r0, 0x4004f50d, &(0x7f00000000c0)=0x1) ioctl$sock_SIOCINQ(r1, 0x541b, &(0x7f0000000000)) sendmsg$TIPC_NL_SOCK_GET(r1, &(0x7f0000000280)={&(0x7f0000000140)={0x10, 0x0, 0x0, 0x2000000}, 0xc, &(0x7f0000000240)={&(0x7f00000002c0)={0xb8, 0x0, 0x1, 0x70bd2a, 0x25dfdbfd, {}, [@TIPC_NLA_NODE={0x58, 0x6, 0x0, 0x1, [@TIPC_NLA_NODE_KEY={0x27, 0x4, {'gcm(aes)\x00', 0x21, "e329f4517106ff2a647f9408ff058bcbc45d4b9593e60b816be2487eeb06f527dc"}}, @TIPC_NLA_NODE_ADDR={0x8, 0x1, 0x813}]}, @TIPC_NLA_NODE={0x40, 0x6, 0x0, 0x1, [@TIPC_NLA_NODE_UP={0x4}, @TIPC_NLA_NODE_UP={0x4}, @TIPC_NLA_NODE_ID={0x34, 0x3, "97b6d41c5bae4a26c81448f9ec6fbb28e5a60ddaf4593ddd1b476a2f5857238c4c54b4405d084073ccff77dcf9eab84d"}]}, @TIPC_NLA_MEDIA={0xc, 0x5, 0x0, 0x1, [@TIPC_NLA_MEDIA_PROP={0x0, 0x2, 0x0, 0x1, [@TIPC_NLA_PROP_TOL={0x0, 0x2, 0xffffffff}, @TIPC_NLA_PROP_TOL={0x0, 0x2, 0x2}, @TIPC_NLA_PROP_MTU={0x0, 0x4, 0x3f}, @TIPC_NLA_PROP_TOL={0x0, 0x2, 0xfffff000}, @TIPC_NLA_PROP_TOL={0x0, 0x2, 0x8}, @TIPC_NLA_PROP_PRIO={0x0, 0x1, 0x1f}, @TIPC_NLA_PROP_TOL={0x0, 0x2, 0x7}, @TIPC_NLA_PROP_TOL={0x0, 0x2, 0x2}, @TIPC_NLA_PROP_PRIO={0x0, 0x1, 0x6}]}]}]}, 0xb8}, 0x1, 0x0, 0x0, 0x42002}, 0x8080) [ 1856.852084] netlink: 4 bytes leftover after parsing attributes in process `syz-executor.6'. [ 1856.859912] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=0 sclass=netlink_route_socket pid=13721 comm=syz-executor.6 [ 1856.864216] FAULT_INJECTION: forcing a failure. [ 1856.864216] name fail_page_alloc, interval 1, probability 0, space 0, times 0 [ 1856.865941] CPU: 1 PID: 13722 Comm: syz-executor.1 Not tainted 5.10.60 #1 [ 1856.866972] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS rel-1.14.0-0-g155821a1990b-prebuilt.qemu.org 04/01/2014 [ 1856.868679] Call Trace: [ 1856.869076] dump_stack+0x107/0x163 [ 1856.869622] should_fail.cold+0x5/0xa [ 1856.870231] __alloc_pages_nodemask+0x17f/0x670 [ 1856.870929] ? __alloc_pages_slowpath.constprop.0+0x2090/0x2090 [ 1856.871839] ? trace_hardirqs_on+0x5b/0x180 [ 1856.872492] ? kmem_cache_free+0x99/0x2f0 [ 1856.873131] alloc_pages_current+0x187/0x280 [ 1856.873795] __get_free_pages+0xc/0xa0 [ 1856.874386] tlb_remove_table+0x3ca/0xcb0 [ 1856.875012] ___pte_free_tlb+0x86/0xb0 [ 1856.875550] free_pgd_range+0x736/0x1390 [ 1856.876194] free_pgtables+0x22a/0x2f0 [ 1856.876793] exit_mmap+0x28e/0x4e0 [ 1856.877330] ? do_munmap+0x40/0x40 [ 1856.877885] mmput+0xca/0x340 [ 1856.878385] free_bprm+0x65/0x2e0 [ 1856.878907] do_execveat_common.isra.0+0x534/0x670 [ 1856.879651] __x64_sys_execveat+0xe7/0x130 [ 1856.880286] do_syscall_64+0x33/0x40 [ 1856.880843] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 1856.881531] RIP: 0033:0x466609 [ 1856.882013] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1856.884772] RSP: 002b:00007f443d736188 EFLAGS: 00000246 ORIG_RAX: 0000000000000142 [ 1856.885915] RAX: ffffffffffffffda RBX: 000000000056bf80 RCX: 0000000000466609 [ 1856.887000] RDX: 0000000020000380 RSI: 00000000200002c0 RDI: ffffffffffffffff [ 1856.888058] RBP: 00007f443d7361d0 R08: 0000000000000000 R09: 0000000000000000 [ 1856.889114] R10: 0000000020000640 R11: 0000000000000246 R12: 0000000000000002 [ 1856.890195] R13: 00007ffeb6924e7f R14: 00007f443d736300 R15: 0000000000022000 12:32:07 executing program 6: r0 = syz_init_net_socket$802154_dgram(0x24, 0x2, 0x0) r1 = dup(r0) sendmsg$BATADV_CMD_GET_BLA_BACKBONE(r1, &(0x7f0000000540)={&(0x7f0000000100), 0xc, &(0x7f0000000500)={0x0}}, 0x0) ioctl$sock_SIOCINQ(r1, 0x541b, &(0x7f0000000000)) recvmmsg(r0, &(0x7f00000001c0)=[{{0x0, 0x0, &(0x7f0000000180), 0x0, &(0x7f0000000280)=""/211, 0xd3}, 0x8000}], 0x1, 0x10000, &(0x7f0000000200)) r2 = socket$netlink(0x10, 0x3, 0x0) sendmsg$nl_generic(r2, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000240)={&(0x7f0000000080)=ANY=[@ANYBLOB="280000002c00010d000000000000e4ffffffffffffffffff"], 0x28}}, 0x0) 12:32:07 executing program 2: r0 = syz_init_net_socket$802154_dgram(0x24, 0x2, 0x0) r1 = dup(r0) r2 = syz_init_net_socket$802154_dgram(0x24, 0x2, 0x0) dup(r2) setsockopt$WPAN_SECURITY_LEVEL(r2, 0x0, 0x2, &(0x7f0000000080)=0xffffffffffffffff, 0x4) sendmsg$BATADV_CMD_GET_BLA_BACKBONE(r1, &(0x7f0000000540)={&(0x7f0000000100), 0xc, &(0x7f0000000500)={0x0}}, 0x0) ioctl$sock_SIOCINQ(r0, 0x541b, &(0x7f0000000000)) bind$802154_dgram(r1, &(0x7f0000000040)={0x24, @none={0x0, 0xffff}}, 0x14) [ 1856.960571] EXT4-fs (loop4): ext4_check_descriptors: Inode table for group 0 overlaps superblock [ 1856.962090] EXT4-fs (loop4): group descriptors corrupted! [ 1856.977507] EXT4-fs (loop7): mounted filesystem without journal. Opts: ,errors=continue [ 1856.999316] EXT4-fs (loop7): re-mounted. Opts: ,errors=continue 12:32:07 executing program 3: r0 = syz_io_uring_setup(0x4d4f, &(0x7f0000000080), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200), &(0x7f0000000140)=0x0) r2 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0) perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_io_uring_submit(r2, r1, &(0x7f0000000100)=@IORING_OP_SPLICE, 0x4) io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0) execveat(0xffffffffffffffff, &(0x7f00000002c0)='./file0\x00', 0x0, 0x0, 0x2400) 12:32:07 executing program 5: r0 = syz_io_uring_setup(0x4d4f, &(0x7f0000000080), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=0x0, &(0x7f0000000140)=0x0) syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_POLL_ADD={0x6, 0x0, 0x0, @fd=r0, 0x0, 0x0, 0x0, {0x194}}, 0x0) r3 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0) perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_io_uring_submit(r3, r2, &(0x7f0000000100)=@IORING_OP_SPLICE, 0x4) io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0) execveat(0xffffffffffffffff, &(0x7f00000002c0)='./file0\x00', 0x0, 0x0, 0x200000) [ 1857.045458] EXT4-fs (loop7): re-mounted. Opts: ,errors=continue 12:32:07 executing program 1 (fault-call:6 fault-nth:41): r0 = syz_io_uring_setup(0x4d4f, &(0x7f0000000080), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=0x0, &(0x7f0000000140)=0x0) syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_POLL_ADD={0x6, 0x0, 0x0, @fd=r0, 0x0, 0x0, 0x0, {0x194}}, 0x0) r3 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0) perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_io_uring_submit(r3, r2, &(0x7f0000000100)=@IORING_OP_SPLICE, 0x4) io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0) execveat(0xffffffffffffffff, &(0x7f00000002c0)='./file0\x00', &(0x7f0000000380), &(0x7f0000000640)=[0x0, 0x0, 0x0], 0x0) 12:32:07 executing program 7: syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000040)='./file0\x00', 0x40000, 0x3, &(0x7f0000000200)=[{&(0x7f0000010000)="2000000080000000060000006a0000000f000000000000000100000001000000004000000040000020000000e0f4655fe0f4655f0100ffff53ef010001000000dff4655f000000000000000001000000000000000b0000000001", 0x5a, 0x400}, {&(0x7f0000010400)="020000000300000004", 0x9, 0x800}, {&(0x7f0000011600)="ed41000000080000dff4655fe0f4655fe0f4655f000000000000040004", 0x1d, 0x2100}], 0x0, &(0x7f0000000080)=ANY=[]) syz_mount_image$ext4(&(0x7f0000000000)='ext2\x00', &(0x7f0000000040)='./file0/../file0\x00', 0x80000, 0x0, 0x0, 0x104e034, &(0x7f00000001c0)) 12:32:07 executing program 0: r0 = syz_io_uring_setup(0x4d4f, &(0x7f0000000080), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=0x0, &(0x7f0000000140)=0x0) syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_POLL_ADD={0x6, 0x0, 0x0, @fd=r0, 0x0, 0x0, 0x0, {0x194}}, 0x0) r3 = syz_init_net_socket$802154_dgram(0x24, 0x2, 0x0) r4 = dup(r3) ioctl$sock_SIOCINQ(r4, 0x541b, &(0x7f0000000000)) r5 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x1000000, 0x10, r4, 0x0) perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4016, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_io_uring_submit(r5, r2, &(0x7f0000000100)=@IORING_OP_SPLICE, 0x4) io_uring_enter(r0, 0x58ab, 0x0, 0x1, 0x0, 0x0) syz_io_uring_setup(0x5d4a, &(0x7f0000000180)={0x0, 0xe9ac, 0x8, 0x3, 0x2b8, 0x0, r0}, &(0x7f0000ffb000/0x3000)=nil, &(0x7f0000ffb000/0x1000)=nil, &(0x7f0000000240), &(0x7f0000000280)=0x0) syz_io_uring_submit(r5, r6, &(0x7f0000000300)=@IORING_OP_POLL_ADD={0x6, 0x1, 0x0, @fd_index=0x3, 0x0, 0x0, 0x0, {0x2082}, 0x1}, 0x8) execveat(0xffffffffffffffff, &(0x7f00000002c0)='./file0\x00', &(0x7f0000000380), 0x0, 0x1000) 12:32:07 executing program 4: syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000040)='./file0\x00', 0x40000, 0x3, &(0x7f0000000200)=[{&(0x7f0000010000)="2000000080000000060000006a0000000f000000000000000100000001000000004000000040000020000000e0f4655fe0f4655f0100ffff53ef010001000000dff4655f000000000000000001000000000000000b00000000010000280200000284", 0x62, 0x400}, {&(0x7f0000010400)="0200000003000000", 0x8, 0x800}, {&(0x7f0000011600)="ed41000000080000dff4655fe0f4655fe0f4655f000000000000040004", 0x1d, 0x2100}], 0x0, &(0x7f0000000080)=ANY=[]) syz_mount_image$ext4(&(0x7f0000000000)='ext2\x00', &(0x7f0000000040)='./file0/../file0\x00', 0x0, 0x0, 0x0, 0x104e034, &(0x7f00000001c0)={[{@data_err_abort}]}) [ 1857.108979] netlink: 4 bytes leftover after parsing attributes in process `syz-executor.6'. [ 1857.114555] Unsupported ieee802154 address type: 0 12:32:07 executing program 6: r0 = syz_init_net_socket$802154_dgram(0x24, 0x2, 0x0) r1 = dup(r0) sendmsg$BATADV_CMD_GET_BLA_BACKBONE(r1, &(0x7f0000000540)={&(0x7f0000000100), 0xc, &(0x7f0000000500)={0x0}}, 0x0) ioctl$sock_SIOCINQ(r1, 0x541b, &(0x7f0000000000)) recvmmsg(r0, &(0x7f00000001c0)=[{{0x0, 0x0, &(0x7f0000000180), 0x0, &(0x7f0000000280)=""/211, 0xd3}, 0x8000}], 0x1, 0x10000, &(0x7f0000000200)) socket$netlink(0x10, 0x3, 0x0) 12:32:07 executing program 2: r0 = syz_init_net_socket$802154_dgram(0x24, 0x2, 0x0) r1 = dup(r0) sendmsg$BATADV_CMD_GET_BLA_BACKBONE(r1, &(0x7f0000000540)={&(0x7f0000000100), 0xc, &(0x7f0000000500)={0x0}}, 0x40) write$binfmt_script(r1, &(0x7f0000000040)={'#! ', './file0', [{0x20, '#\x00'}, {0x20, '[&'}, {}], 0xa, "b2afe866cdfb40857ec5d8433887584901ea0b1e130b4ebac28e40fa75d824f35ce27cb7012e7d69d7b2cc8bc8621371f01de4db8acfef2be5d018f5e48ddc9461b61c3461446bf2e6"}, 0x5b) ioctl$sock_SIOCINQ(r1, 0x541b, &(0x7f0000000000)) [ 1857.241581] EXT4-fs (loop4): ext4_check_descriptors: Inode table for group 0 overlaps superblock [ 1857.242720] EXT4-fs (loop4): group descriptors corrupted! [ 1857.253671] FAULT_INJECTION: forcing a failure. [ 1857.253671] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 1857.256431] CPU: 0 PID: 13773 Comm: syz-executor.1 Not tainted 5.10.60 #1 [ 1857.258015] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS rel-1.14.0-0-g155821a1990b-prebuilt.qemu.org 04/01/2014 [ 1857.260539] Call Trace: [ 1857.261117] dump_stack+0x107/0x163 [ 1857.261998] should_fail.cold+0x5/0xa [ 1857.262889] _copy_to_user+0x2e/0x180 [ 1857.263778] simple_read_from_buffer+0xcc/0x160 [ 1857.264888] proc_fail_nth_read+0x194/0x220 [ 1857.265928] ? proc_exe_link+0x1d0/0x1d0 [ 1857.266858] ? security_file_permission+0x178/0x550 [ 1857.268074] ? proc_exe_link+0x1d0/0x1d0 [ 1857.269004] vfs_read+0x226/0x580 [ 1857.269861] ksys_read+0x12d/0x250 [ 1857.270706] ? __ia32_sys_pwrite64+0x230/0x230 [ 1857.271771] ? lockdep_hardirqs_on_prepare+0x273/0x3e0 [ 1857.272985] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1857.274227] do_syscall_64+0x33/0x40 [ 1857.275111] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 1857.276301] RIP: 0033:0x41935c [ 1857.277056] Code: ec 28 48 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 f9 fc ff ff 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 31 c0 0f 05 <48> 3d 00 f0 ff ff 77 34 44 89 c7 48 89 44 24 08 e8 2f fd ff ff 48 [ 1857.281261] RSP: 002b:00007f443d736170 EFLAGS: 00000246 ORIG_RAX: 0000000000000000 [ 1857.283059] RAX: ffffffffffffffda RBX: ffffffffffffffff RCX: 000000000041935c [ 1857.284671] RDX: 000000000000000f RSI: 00007f443d7361e0 RDI: 0000000000000005 [ 1857.286328] RBP: 00007f443d7361d0 R08: 0000000000000000 R09: 0000000000000000 [ 1857.287874] R10: 0000000020000640 R11: 0000000000000246 R12: 0000000000000002 [ 1857.289439] R13: 00007ffeb6924e7f R14: 00007f443d736300 R15: 0000000000022000 [ 1857.294909] EXT4-fs (loop7): mounted filesystem without journal. Opts: ,errors=continue [ 1857.318073] EXT4-fs (loop7): re-mounted. Opts: ,errors=continue 12:32:07 executing program 4: syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000040)='./file0\x00', 0x40000, 0x3, &(0x7f0000000200)=[{&(0x7f0000010000)="2000000080000000060000006a0000000f000000000000000100000001000000004000000040000020000000e0f4655fe0f4655f0100ffff53ef010001000000dff4655f000000000000000001000000000000000b00000000010000280200000284", 0x62, 0x400}, {&(0x7f0000010400)="0200000003000000", 0x8, 0x800}, {&(0x7f0000011600)="ed41000000080000dff4655fe0f4655fe0f4655f000000000000040004", 0x1d, 0x2100}], 0x0, &(0x7f0000000080)=ANY=[]) syz_mount_image$ext4(&(0x7f0000000000)='ext2\x00', &(0x7f0000000040)='./file0/../file0\x00', 0x0, 0x0, 0x0, 0x104e034, &(0x7f00000001c0)={[{@data_err_abort}]}) 12:32:07 executing program 7: syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000040)='./file0\x00', 0x40000, 0x3, &(0x7f0000000200)=[{&(0x7f0000010000)="2000000080000000060000006a0000000f000000000000000100000001000000004000000040000020000000e0f4655fe0f4655f0100ffff53ef010001000000dff4655f000000000000000001000000000000000b0000000001", 0x5a, 0x400}, {&(0x7f0000010400)="020000000300000004", 0x9, 0x800}, {&(0x7f0000011600)="ed41000000080000dff4655fe0f4655fe0f4655f000000000000040004", 0x1d, 0x2100}], 0x0, &(0x7f0000000080)=ANY=[]) syz_mount_image$ext4(&(0x7f0000000000)='ext2\x00', &(0x7f0000000040)='./file0/../file0\x00', 0x1000000, 0x0, 0x0, 0x104e034, &(0x7f00000001c0)) 12:32:07 executing program 3: r0 = syz_io_uring_setup(0x4d4f, &(0x7f0000000080), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200), &(0x7f0000000140)=0x0) r2 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0) perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_io_uring_submit(r2, r1, &(0x7f0000000100)=@IORING_OP_SPLICE, 0x4) io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0) execveat(0xffffffffffffffff, &(0x7f00000002c0)='./file0\x00', 0x0, 0x0, 0x2a00) [ 1857.489843] EXT4-fs (loop4): ext4_check_descriptors: Inode table for group 0 overlaps superblock [ 1857.493056] EXT4-fs (loop4): group descriptors corrupted! [ 1857.574664] EXT4-fs (loop7): mounted filesystem without journal. Opts: ,errors=continue [ 1857.594872] EXT4-fs (loop7): re-mounted. Opts: ,errors=continue 12:32:19 executing program 7: syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000040)='./file0\x00', 0x40000, 0x3, &(0x7f0000000200)=[{&(0x7f0000010000)="2000000080000000060000006a0000000f000000000000000100000001000000004000000040000020000000e0f4655fe0f4655f0100ffff53ef010001000000dff4655f000000000000000001000000000000000b0000000001", 0x5a, 0x400}, {&(0x7f0000010400)="020000000300000004", 0x9, 0x800}, {&(0x7f0000011600)="ed41000000080000dff4655fe0f4655fe0f4655f000000000000040004", 0x1d, 0x2100}], 0x0, &(0x7f0000000080)=ANY=[]) syz_mount_image$ext4(&(0x7f0000000000)='ext2\x00', &(0x7f0000000040)='./file0/../file0\x00', 0x2000000, 0x0, 0x0, 0x104e034, &(0x7f00000001c0)) 12:32:19 executing program 3: r0 = syz_io_uring_setup(0x4d4f, &(0x7f0000000080), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200), &(0x7f0000000140)=0x0) r2 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0) perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_io_uring_submit(r2, r1, &(0x7f0000000100)=@IORING_OP_SPLICE, 0x4) io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0) execveat(0xffffffffffffffff, &(0x7f00000002c0)='./file0\x00', 0x0, 0x0, 0x3000) 12:32:19 executing program 5: r0 = syz_io_uring_setup(0x4d4f, &(0x7f0000000080), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=0x0, &(0x7f0000000140)=0x0) syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_POLL_ADD={0x6, 0x0, 0x0, @fd=r0, 0x0, 0x0, 0x0, {0x194}}, 0x0) r3 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0) perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_io_uring_submit(r3, r2, &(0x7f0000000100)=@IORING_OP_SPLICE, 0x4) io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0) execveat(0xffffffffffffffff, &(0x7f00000002c0)='./file0\x00', 0x0, 0x0, 0x400000) 12:32:19 executing program 1: r0 = syz_io_uring_setup(0x4d4f, &(0x7f0000000080), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=0x0, &(0x7f0000000140)=0x0) syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_POLL_ADD={0x6, 0x0, 0x0, @fd=r0, 0x0, 0x0, 0x0, {0x194}}, 0x0) r3 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0) perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_io_uring_submit(r3, r2, &(0x7f0000000100)=@IORING_OP_SPLICE, 0x4) io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0) execveat(0xffffffffffffffff, &(0x7f00000002c0)='./file0\x00', &(0x7f0000000380), &(0x7f0000000640)=[0x0, 0x0, 0x0], 0x0) 12:32:19 executing program 6: r0 = syz_init_net_socket$802154_dgram(0x24, 0x2, 0x0) r1 = dup(r0) sendmsg$BATADV_CMD_GET_BLA_BACKBONE(r1, &(0x7f0000000540)={&(0x7f0000000100), 0xc, &(0x7f0000000500)={0x0}}, 0x0) ioctl$sock_SIOCINQ(r1, 0x541b, &(0x7f0000000000)) recvmmsg(r0, &(0x7f00000001c0)=[{{0x0, 0x0, &(0x7f0000000180), 0x0, &(0x7f0000000280)=""/211, 0xd3}, 0x8000}], 0x1, 0x10000, &(0x7f0000000200)) 12:32:19 executing program 2: r0 = syz_init_net_socket$802154_dgram(0x24, 0x2, 0x0) r1 = dup(r0) r2 = socket$inet6_udp(0xa, 0x2, 0x0) setsockopt$inet6_MRT6_ADD_MFC_PROXY(r2, 0x29, 0xd2, 0x0, 0x0) sendmmsg$sock(r2, &(0x7f0000000040), 0x0, 0x80) sendmsg$BATADV_CMD_GET_BLA_BACKBONE(r1, &(0x7f0000000540)={&(0x7f0000000100), 0xc, &(0x7f0000000500)={0x0}}, 0x0) r3 = openat$tun(0xffffffffffffff9c, &(0x7f0000000040), 0x0, 0x0) ioctl$TUNSETQUEUE(r3, 0x400454ca, &(0x7f00000000c0)={'ipvlan1\x00'}) fcntl$dupfd(r3, 0x406, r0) ioctl$sock_SIOCINQ(r1, 0x541b, &(0x7f0000000000)) 12:32:19 executing program 0: r0 = syz_io_uring_setup(0x4d4f, &(0x7f0000000080), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=0x0, &(0x7f0000000140)=0x0) syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_POLL_ADD={0x6, 0x0, 0x0, @fd=r0, 0x0, 0x0, 0x0, {0x194}}, 0x0) r3 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0) perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_io_uring_submit(r3, r2, &(0x7f0000000100)=@IORING_OP_SPLICE, 0x4) io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0) execveat(0xffffffffffffffff, &(0x7f00000002c0)='./file0\x00', &(0x7f0000000380), 0x0, 0x1000) lstat(&(0x7f0000000240)='./file0\x00', &(0x7f0000000300)={0x0, 0x0, 0x0, 0x0, 0x0}) getsockopt$inet6_IPV6_XFRM_POLICY(0xffffffffffffffff, 0x29, 0x23, &(0x7f0000000380)={{{@in=@remote, @in=@private, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}}, {{@in6=@loopback}, 0x0, @in=@broadcast}}, &(0x7f0000000280)=0xe8) r6 = getegid() setresgid(0x0, 0xffffffffffffffff, r6) r7 = getegid() setxattr$system_posix_acl(&(0x7f0000000180)='./file0\x00', &(0x7f00000001c0)='system.posix_acl_access\x00', &(0x7f0000000480)={{}, {}, [{0x2, 0x4, 0xee01}, {0x2, 0x4, r4}, {0x2, 0x3, r5}], {}, [{0x8, 0x2, 0xee01}, {0x8, 0x2, 0xffffffffffffffff}, {0x8, 0x5, 0xffffffffffffffff}, {0x8, 0x0, r6}, {0x8, 0x3, 0xee00}, {0x8, 0x2, r7}, {0x8, 0x4, 0xee01}, {0x8, 0x5, 0xffffffffffffffff}, {0x8, 0x2, 0xee01}], {0x10, 0x5}, {0x20, 0x2}}, 0x84, 0x2) 12:32:19 executing program 4: syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000040)='./file0\x00', 0x40000, 0x3, &(0x7f0000000200)=[{&(0x7f0000010000)="2000000080000000060000006a0000000f000000000000000100000001000000004000000040000020000000e0f4655fe0f4655f0100ffff53ef010001000000dff4655f000000000000000001000000000000000b00000000010000280200000284", 0x62, 0x400}, {&(0x7f0000010400)="0200000003000000", 0x8, 0x800}, {&(0x7f0000011600)="ed41000000080000dff4655fe0f4655fe0f4655f000000000000040004", 0x1d, 0x2100}], 0x0, &(0x7f0000000080)=ANY=[]) syz_mount_image$ext4(&(0x7f0000000000)='ext2\x00', &(0x7f0000000040)='./file0/../file0\x00', 0x0, 0x0, 0x0, 0x104e034, &(0x7f00000001c0)={[{@data_err_abort}]}) [ 1869.332225] EXT4-fs (loop4): ext4_check_descriptors: Inode table for group 0 overlaps superblock [ 1869.333379] EXT4-fs (loop4): group descriptors corrupted! [ 1869.345648] EXT4-fs (loop7): mounted filesystem without journal. Opts: ,errors=continue [ 1869.351145] EXT4-fs (loop7): re-mounted. Opts: ,errors=continue 12:32:19 executing program 3: r0 = syz_io_uring_setup(0x4d4f, &(0x7f0000000080), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200), &(0x7f0000000140)=0x0) r2 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0) perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_io_uring_submit(r2, r1, &(0x7f0000000100)=@IORING_OP_SPLICE, 0x4) io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0) execveat(0xffffffffffffffff, &(0x7f00000002c0)='./file0\x00', 0x0, 0x0, 0x3600) 12:32:19 executing program 6: r0 = syz_init_net_socket$802154_dgram(0x24, 0x2, 0x0) r1 = dup(r0) sendmsg$BATADV_CMD_GET_BLA_BACKBONE(r1, &(0x7f0000000540)={&(0x7f0000000100), 0xc, &(0x7f0000000500)={0x0}}, 0x0) recvmmsg(r0, &(0x7f00000001c0)=[{{0x0, 0x0, &(0x7f0000000180), 0x0, &(0x7f0000000280)=""/211, 0xd3}, 0x8000}], 0x1, 0x10000, &(0x7f0000000200)) 12:32:19 executing program 5: r0 = syz_io_uring_setup(0x4d4f, &(0x7f0000000080), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=0x0, &(0x7f0000000140)=0x0) syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_POLL_ADD={0x6, 0x0, 0x0, @fd=r0, 0x0, 0x0, 0x0, {0x194}}, 0x0) r3 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0) perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_io_uring_submit(r3, r2, &(0x7f0000000100)=@IORING_OP_SPLICE, 0x4) io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0) execveat(0xffffffffffffffff, &(0x7f00000002c0)='./file0\x00', 0x0, 0x0, 0x1000000) 12:32:19 executing program 1: r0 = syz_io_uring_setup(0x4d4f, &(0x7f0000000080), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=0x0, &(0x7f0000000140)=0x0) syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_POLL_ADD={0x6, 0x0, 0x0, @fd=r0, 0x0, 0x0, 0x0, {0x194}}, 0x0) r3 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0) perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_io_uring_submit(r3, r2, &(0x7f0000000100)=@IORING_OP_SPLICE, 0x4) io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0) execveat(0xffffffffffffffff, &(0x7f00000002c0)='./file0\x00', &(0x7f0000000380), &(0x7f0000000640)=[0x0, 0x0, 0x0], 0x2) 12:32:19 executing program 2: r0 = socket$netlink(0x10, 0x3, 0x0) sendmsg$nl_generic(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000240)={&(0x7f0000000080)=ANY=[@ANYBLOB="280000002c00010d000000000000e4ffffffffffffffffff"], 0x28}}, 0x0) sendmsg$NFQNL_MSG_CONFIG(r0, &(0x7f0000000140)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x80000000}, 0xc, &(0x7f00000000c0)={&(0x7f0000000080)={0x40, 0x2, 0x3, 0x101, 0x0, 0x0, {0x7, 0x0, 0x6}, [@NFQA_CFG_FLAGS={0x8, 0x5, 0x1, 0x0, 0x14}, @NFQA_CFG_PARAMS={0x9, 0x2, {0x1, 0x2}}, @NFQA_CFG_MASK={0x8, 0x4, 0x1, 0x0, 0xc}, @NFQA_CFG_MASK={0x8, 0x4, 0x1, 0x0, 0x2}, @NFQA_CFG_FLAGS={0x8, 0x5, 0x1, 0x0, 0x21}]}, 0x40}, 0x1, 0x0, 0x0, 0x4000}, 0x40) r1 = syz_init_net_socket$802154_dgram(0x24, 0x2, 0x0) r2 = dup(r1) sendmsg$BATADV_CMD_GET_BLA_BACKBONE(r2, &(0x7f0000000540)={&(0x7f0000000100), 0xc, &(0x7f0000000500)={0x0}}, 0x0) r3 = socket$netlink(0x10, 0x3, 0x0) sendmsg$nl_generic(r3, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000240)={&(0x7f0000000080)=ANY=[@ANYBLOB="280000002c00010d000000000000e4ffffffffffffffffff"], 0x28}}, 0x0) r4 = socket$nl_generic(0x10, 0x3, 0x10) r5 = syz_genetlink_get_family_id$ethtool(&(0x7f0000000080), 0xffffffffffffffff) r6 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a) ioctl$sock_SIOCGIFINDEX(r6, 0x8933, &(0x7f0000000080)={'lo\x00', 0x0}) sendmsg$ETHTOOL_MSG_LINKINFO_SET(r4, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000240)={&(0x7f0000000180)={0x34, r5, 0x1, 0x0, 0x0, {}, [@ETHTOOL_A_LINKINFO_HEADER={0x20, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'bridge_slave_0\x00'}, @ETHTOOL_A_HEADER_DEV_INDEX={0x8, 0x1, r7}]}]}, 0x34}}, 0x0) ioctl$sock_ipv6_tunnel_SIOCCHGTUNNEL(r2, 0x89f3, &(0x7f0000000280)={'syztnl0\x00', &(0x7f00000001c0)={'syztnl1\x00', 0x0, 0x29, 0x7, 0x4, 0x8, 0x45, @loopback, @mcast1, 0x7f60, 0x20, 0x6, 0x5}}) sendmsg$ETHTOOL_MSG_LINKMODES_GET(r3, &(0x7f0000000340)={&(0x7f0000000180)={0x10, 0x0, 0x0, 0x80000000}, 0xc, &(0x7f0000000300)={&(0x7f00000002c0)={0x40, r5, 0x100, 0x70bd25, 0x25dfdbff, {}, [@HEADER={0x20, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_DEV_INDEX={0x8, 0x1, r8}, @ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'veth1_to_bond\x00'}]}, @HEADER={0xc, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_DEV_INDEX={0x8}]}]}, 0x40}, 0x1, 0x0, 0x0, 0x10}, 0x4081) ioctl$sock_SIOCINQ(r2, 0x541b, &(0x7f0000000000)) 12:32:19 executing program 7: syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000040)='./file0\x00', 0x40000, 0x3, &(0x7f0000000200)=[{&(0x7f0000010000)="2000000080000000060000006a0000000f000000000000000100000001000000004000000040000020000000e0f4655fe0f4655f0100ffff53ef010001000000dff4655f000000000000000001000000000000000b0000000001", 0x5a, 0x400}, {&(0x7f0000010400)="020000000300000004", 0x9, 0x800}, {&(0x7f0000011600)="ed41000000080000dff4655fe0f4655fe0f4655f000000000000040004", 0x1d, 0x2100}], 0x0, &(0x7f0000000080)=ANY=[]) syz_mount_image$ext4(&(0x7f0000000000)='ext2\x00', &(0x7f0000000040)='./file0/../file0\x00', 0x3000000, 0x0, 0x0, 0x104e034, &(0x7f00000001c0)) 12:32:19 executing program 4: syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000040)='./file0\x00', 0x40000, 0x3, &(0x7f0000000200)=[{&(0x7f0000010000)="2000000080000000060000006a0000000f000000000000000100000001000000004000000040000020000000e0f4655fe0f4655f0100ffff53ef010001000000dff4655f000000000000000001000000000000000b00000000010000280200000284", 0x62, 0x400}, {&(0x7f0000010400)="020000000300000004", 0x9}, {&(0x7f0000011600)="ed41000000080000dff4655fe0f4655fe0f4655f000000000000040004", 0x1d, 0x2100}], 0x0, &(0x7f0000000080)=ANY=[]) syz_mount_image$ext4(&(0x7f0000000000)='ext2\x00', &(0x7f0000000040)='./file0/../file0\x00', 0x0, 0x0, 0x0, 0x104e034, &(0x7f00000001c0)={[{@data_err_abort}]}) 12:32:19 executing program 3: r0 = syz_io_uring_setup(0x4d4f, &(0x7f0000000080), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200), &(0x7f0000000140)=0x0) r2 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0) perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_io_uring_submit(r2, r1, &(0x7f0000000100)=@IORING_OP_SPLICE, 0x4) io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0) execveat(0xffffffffffffffff, &(0x7f00000002c0)='./file0\x00', 0x0, 0x0, 0x3c00) [ 1869.532097] netlink: 4 bytes leftover after parsing attributes in process `syz-executor.2'. [ 1869.535699] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=770 sclass=netlink_route_socket pid=13882 comm=syz-executor.2 [ 1869.573891] netlink: 4 bytes leftover after parsing attributes in process `syz-executor.2'. [ 1869.593353] EXT4-fs (loop4): ext4_check_descriptors: Block bitmap for group 0 overlaps superblock [ 1869.594597] EXT4-fs (loop4): group descriptors corrupted! [ 1869.619590] EXT4-fs (loop7): mounted filesystem without journal. Opts: ,errors=continue [ 1869.626424] EXT4-fs (loop7): re-mounted. Opts: ,errors=continue [ 1869.631796] EXT4-fs (loop7): re-mounted. Opts: ,errors=continue [ 1869.661940] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=770 sclass=netlink_route_socket pid=13902 comm=syz-executor.2 12:32:32 executing program 3: r0 = syz_io_uring_setup(0x4d4f, &(0x7f0000000080), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200), &(0x7f0000000140)=0x0) r2 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0) perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_io_uring_submit(r2, r1, &(0x7f0000000100)=@IORING_OP_SPLICE, 0x4) io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0) execveat(0xffffffffffffffff, &(0x7f00000002c0)='./file0\x00', 0x0, 0x0, 0x3f00) 12:32:32 executing program 2: r0 = syz_init_net_socket$802154_dgram(0x24, 0x2, 0x0) r1 = dup(r0) sendmsg$BATADV_CMD_GET_BLA_BACKBONE(r1, &(0x7f0000000540)={&(0x7f0000000100), 0xc, &(0x7f0000000500)={0x0}}, 0x0) ioctl$sock_SIOCINQ(r0, 0x541b, &(0x7f0000000000)) 12:32:32 executing program 0: r0 = syz_io_uring_setup(0x4d4f, &(0x7f0000000080), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=0x0, &(0x7f0000000140)=0x0) syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_POLL_ADD={0x6, 0x0, 0x0, @fd=r0, 0x0, 0x0, 0x0, {0x194}}, 0x0) r3 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0) sendto(0xffffffffffffffff, &(0x7f0000000300)="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", 0x1000, 0x10, &(0x7f0000000180)=@nfc_llcp={0x27, 0x0, 0x1, 0x7, 0xff, 0x6, "197d9a9f6f0895cf7318d61a0dacdee0075623c3198de8ef9e0ed1e956f1553ab75c5202083809b896b0f14d4dd956f6668f37885d227040970771f8fc89ed", 0x31}, 0x80) perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_io_uring_submit(r3, r2, &(0x7f0000000100)=@IORING_OP_SPLICE, 0x4) io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0) execveat(0xffffffffffffffff, &(0x7f00000002c0)='./file0\x00', &(0x7f0000000380), 0x0, 0x1000) 12:32:32 executing program 5: r0 = syz_io_uring_setup(0x4d4f, &(0x7f0000000080), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=0x0, &(0x7f0000000140)=0x0) syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_POLL_ADD={0x6, 0x0, 0x0, @fd=r0, 0x0, 0x0, 0x0, {0x194}}, 0x0) r3 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0) perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_io_uring_submit(r3, r2, &(0x7f0000000100)=@IORING_OP_SPLICE, 0x4) io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0) execveat(0xffffffffffffffff, &(0x7f00000002c0)='./file0\x00', 0x0, 0x0, 0x2000000) 12:32:32 executing program 1: r0 = syz_io_uring_setup(0x4d4f, &(0x7f0000000080), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=0x0, &(0x7f0000000140)=0x0) syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_POLL_ADD={0x6, 0x0, 0x0, @fd=r0, 0x0, 0x0, 0x0, {0x194}}, 0x0) r3 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0) perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_io_uring_submit(r3, r2, &(0x7f0000000100)=@IORING_OP_SPLICE, 0x4) io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0) execveat(0xffffffffffffffff, &(0x7f00000002c0)='./file0\x00', &(0x7f0000000380), &(0x7f0000000640)=[0x0, 0x0, 0x0], 0x3) 12:32:32 executing program 6: r0 = syz_init_net_socket$802154_dgram(0x24, 0x2, 0x0) dup(r0) recvmmsg(r0, &(0x7f00000001c0)=[{{0x0, 0x0, &(0x7f0000000180), 0x0, &(0x7f0000000280)=""/211, 0xd3}, 0x8000}], 0x1, 0x10000, &(0x7f0000000200)) 12:32:32 executing program 4: syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000040)='./file0\x00', 0x40000, 0x3, &(0x7f0000000200)=[{&(0x7f0000010000)="2000000080000000060000006a0000000f000000000000000100000001000000004000000040000020000000e0f4655fe0f4655f0100ffff53ef010001000000dff4655f000000000000000001000000000000000b00000000010000280200000284", 0x62, 0x400}, {&(0x7f0000010400)="020000000300000004", 0x9}, {&(0x7f0000011600)="ed41000000080000dff4655fe0f4655fe0f4655f000000000000040004", 0x1d, 0x2100}], 0x0, &(0x7f0000000080)=ANY=[]) syz_mount_image$ext4(&(0x7f0000000000)='ext2\x00', &(0x7f0000000040)='./file0/../file0\x00', 0x0, 0x0, 0x0, 0x104e034, &(0x7f00000001c0)={[{@data_err_abort}]}) 12:32:32 executing program 7: syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000040)='./file0\x00', 0x40000, 0x3, &(0x7f0000000200)=[{&(0x7f0000010000)="2000000080000000060000006a0000000f000000000000000100000001000000004000000040000020000000e0f4655fe0f4655f0100ffff53ef010001000000dff4655f000000000000000001000000000000000b0000000001", 0x5a, 0x400}, {&(0x7f0000010400)="020000000300000004", 0x9, 0x800}, {&(0x7f0000011600)="ed41000000080000dff4655fe0f4655fe0f4655f000000000000040004", 0x1d, 0x2100}], 0x0, &(0x7f0000000080)=ANY=[]) syz_mount_image$ext4(&(0x7f0000000000)='ext2\x00', &(0x7f0000000040)='./file0/../file0\x00', 0x4000000, 0x0, 0x0, 0x104e034, &(0x7f00000001c0)) 12:32:32 executing program 3: r0 = syz_io_uring_setup(0x4d4f, &(0x7f0000000080), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200), &(0x7f0000000140)=0x0) r2 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0) perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_io_uring_submit(r2, r1, &(0x7f0000000100)=@IORING_OP_SPLICE, 0x4) io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0) execveat(0xffffffffffffffff, &(0x7f00000002c0)='./file0\x00', 0x0, 0x0, 0x4000) [ 1882.630208] EXT4-fs (loop4): ext4_check_descriptors: Block bitmap for group 0 overlaps superblock [ 1882.632864] EXT4-fs (loop4): group descriptors corrupted! [ 1882.673936] EXT4-fs (loop7): mounted filesystem without journal. Opts: ,errors=continue 12:32:32 executing program 6: r0 = syz_init_net_socket$802154_dgram(0x24, 0x2, 0x0) recvmmsg(r0, &(0x7f00000001c0)=[{{0x0, 0x0, &(0x7f0000000180), 0x0, &(0x7f0000000280)=""/211, 0xd3}, 0x8000}], 0x1, 0x10000, &(0x7f0000000200)) [ 1882.690929] EXT4-fs (loop7): re-mounted. Opts: ,errors=continue 12:32:32 executing program 2: r0 = syz_init_net_socket$802154_dgram(0x24, 0x2, 0x0) r1 = openat$tun(0xffffffffffffff9c, &(0x7f0000000040), 0x0, 0x0) ioctl$TUNSETQUEUE(r1, 0x400454ca, &(0x7f00000000c0)={'ipvlan1\x00'}) r2 = dup(r0) sendmsg$BATADV_CMD_GET_BLA_BACKBONE(r2, &(0x7f0000000540)={&(0x7f0000000100)={0x10, 0x0, 0x0, 0x4}, 0xc, &(0x7f0000000500)={0x0}}, 0x0) fcntl$dupfd(r2, 0x406, r0) ioctl$sock_SIOCINQ(r2, 0x541b, &(0x7f0000000000)) 12:32:45 executing program 4: syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000040)='./file0\x00', 0x40000, 0x3, &(0x7f0000000200)=[{&(0x7f0000010000)="2000000080000000060000006a0000000f000000000000000100000001000000004000000040000020000000e0f4655fe0f4655f0100ffff53ef010001000000dff4655f000000000000000001000000000000000b00000000010000280200000284", 0x62, 0x400}, {&(0x7f0000010400)="020000000300000004", 0x9}, {&(0x7f0000011600)="ed41000000080000dff4655fe0f4655fe0f4655f000000000000040004", 0x1d, 0x2100}], 0x0, &(0x7f0000000080)=ANY=[]) syz_mount_image$ext4(&(0x7f0000000000)='ext2\x00', &(0x7f0000000040)='./file0/../file0\x00', 0x0, 0x0, 0x0, 0x104e034, &(0x7f00000001c0)={[{@data_err_abort}]}) 12:32:45 executing program 3: r0 = syz_io_uring_setup(0x4d4f, &(0x7f0000000080), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200), &(0x7f0000000140)=0x0) r2 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0) perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_io_uring_submit(r2, r1, &(0x7f0000000100)=@IORING_OP_SPLICE, 0x4) io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0) execveat(0xffffffffffffffff, &(0x7f00000002c0)='./file0\x00', 0x0, 0x0, 0x4800) 12:32:45 executing program 2: r0 = syz_init_net_socket$802154_dgram(0x24, 0x2, 0x0) r1 = dup(r0) r2 = syz_init_net_socket$802154_dgram(0x24, 0x2, 0x0) r3 = dup(r2) ioctl$sock_SIOCINQ(r3, 0x541b, &(0x7f0000000000)) setns(r3, 0x2000000) r4 = dup3(0xffffffffffffffff, r1, 0x80000) getsockname(r4, &(0x7f0000000180)=@ieee802154={0x24, @short}, &(0x7f0000000200)=0x80) sendmsg$BATADV_CMD_GET_BLA_BACKBONE(r1, &(0x7f0000000540)={&(0x7f0000000100), 0xc, &(0x7f0000000500)={0x0}}, 0x0) r5 = dup(r0) sendmsg$SMC_PNETID_ADD(r5, &(0x7f0000000140)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x40000}, 0xc, &(0x7f00000000c0)={&(0x7f0000000080)=ANY=[@ANYBLOB='$\x00\x00\x00', @ANYRES16=0x0, @ANYBLOB="000325bd7000fddbdf250200000005000400010000000500e8ff01000000"], 0x24}, 0x1, 0x0, 0x0, 0x440d2}, 0x4000) ioctl$sock_SIOCINQ(r1, 0x541b, &(0x7f0000000000)) 12:32:45 executing program 6: recvmmsg(0xffffffffffffffff, &(0x7f00000001c0)=[{{0x0, 0x0, &(0x7f0000000180), 0x0, &(0x7f0000000280)=""/211, 0xd3}, 0x8000}], 0x1, 0x10000, &(0x7f0000000200)) 12:32:45 executing program 7: syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000040)='./file0\x00', 0x40000, 0x3, &(0x7f0000000200)=[{&(0x7f0000010000)="2000000080000000060000006a0000000f000000000000000100000001000000004000000040000020000000e0f4655fe0f4655f0100ffff53ef010001000000dff4655f000000000000000001000000000000000b0000000001", 0x5a, 0x400}, {&(0x7f0000010400)="020000000300000004", 0x9, 0x800}, {&(0x7f0000011600)="ed41000000080000dff4655fe0f4655fe0f4655f000000000000040004", 0x1d, 0x2100}], 0x0, &(0x7f0000000080)=ANY=[]) syz_mount_image$ext4(&(0x7f0000000000)='ext2\x00', &(0x7f0000000040)='./file0/../file0\x00', 0x5000000, 0x0, 0x0, 0x104e034, &(0x7f00000001c0)) 12:32:45 executing program 0: r0 = syz_io_uring_setup(0x3277, &(0x7f0000000080), &(0x7f0000ffb000/0x2000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=0x0, &(0x7f0000000140)=0x0) r3 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000380)='/proc/locks\x00', 0x0, 0x0) r4 = syz_io_uring_setup(0x1, &(0x7f0000000080), &(0x7f0000ffd000/0x2000)=nil, &(0x7f0000ffc000/0x2000)=nil, &(0x7f0000000100)=0x0, &(0x7f0000000140)=0x0) r7 = io_uring_register$IORING_REGISTER_PERSONALITY(r4, 0x9, 0x0, 0x0) syz_io_uring_submit(r5, r6, &(0x7f0000000000)=@IORING_OP_FSYNC={0x3, 0x0, 0x0, @fd, 0x0, 0x0, 0x0, 0x0, 0x0, {0x0, r7}}, 0x0) setsockopt$inet6_MRT6_ADD_MFC_PROXY(0xffffffffffffffff, 0x29, 0xd2, 0x0, 0x0) ioctl$sock_ifreq(0xffffffffffffffff, 0x89a2, &(0x7f00000003c0)={'ip6gre0\x00', @ifru_flags}) syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_RECV=@use_registered_buffer={0x1b, 0x3, 0x0, r3, 0x0, 0x0, 0x0, 0x2002, 0x1, {0x3, r7}}, 0x0) r8 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0) perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0xfe, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, @perf_config_ext={0x10000, 0x100000000}, 0x2884, 0xed, 0x3}, 0xffffffffffffffff, 0xfffffffffffffffd, 0xffffffffffffffff, 0x0) syz_io_uring_submit(r8, r2, &(0x7f0000000100)=@IORING_OP_SPLICE, 0x4) ftruncate(0xffffffffffffffff, 0x3) syz_io_uring_setup(0x6336, &(0x7f0000000180)={0x0, 0x11bf, 0x20, 0x3, 0x294, 0x0, r0}, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000fff000/0x1000)=nil, &(0x7f0000000240), &(0x7f0000000280)) syz_io_uring_setup(0x1432, &(0x7f0000000080)={0x0, 0x0, 0x1}, &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000000)=0x0, &(0x7f0000000140)=0x0) syz_io_uring_submit(r9, 0x0, &(0x7f00000002c0)=@IORING_OP_RECV=@use_registered_buffer={0x1b, 0x5, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x101, 0x1, {0x1, r7}}, 0xffffffff) io_uring_register$IORING_REGISTER_PERSONALITY(r0, 0x9, 0x0, 0x0) syz_io_uring_submit(r8, r10, &(0x7f0000000340)=@IORING_OP_LINK_TIMEOUT={0xf, 0x4, 0x0, 0x0, 0x0, &(0x7f0000000300)={0x0, 0x989680}, 0x1, 0x0, 0x1}, 0x8b) io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0) mmap$perf(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x6, 0x10, r3, 0x3) execveat(0xffffffffffffffff, &(0x7f00000002c0)='./file1\x00', &(0x7f0000000380), 0x0, 0x1000) 12:32:45 executing program 1: r0 = syz_io_uring_setup(0x4d4f, &(0x7f0000000080), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=0x0, &(0x7f0000000140)=0x0) syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_POLL_ADD={0x6, 0x0, 0x0, @fd=r0, 0x0, 0x0, 0x0, {0x194}}, 0x0) r3 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0) perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_io_uring_submit(r3, r2, &(0x7f0000000100)=@IORING_OP_SPLICE, 0x4) io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0) execveat(0xffffffffffffffff, &(0x7f00000002c0)='./file0\x00', &(0x7f0000000380), &(0x7f0000000640)=[0x0, 0x0, 0x0], 0x4) 12:32:45 executing program 5: r0 = syz_io_uring_setup(0x4d4f, &(0x7f0000000080), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=0x0, &(0x7f0000000140)=0x0) syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_POLL_ADD={0x6, 0x0, 0x0, @fd=r0, 0x0, 0x0, 0x0, {0x194}}, 0x0) r3 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0) perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_io_uring_submit(r3, r2, &(0x7f0000000100)=@IORING_OP_SPLICE, 0x4) io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0) execveat(0xffffffffffffffff, &(0x7f00000002c0)='./file0\x00', 0x0, 0x0, 0x3000000) 12:32:45 executing program 6: recvmmsg(0xffffffffffffffff, &(0x7f00000001c0)=[{{0x0, 0x0, &(0x7f0000000180), 0x0, &(0x7f0000000280)=""/211, 0xd3}, 0x8000}], 0x1, 0x10000, &(0x7f0000000200)) [ 1894.944891] EXT4-fs (loop7): mounted filesystem without journal. Opts: ,errors=continue [ 1894.947582] EXT4-fs (loop7): re-mounted. Opts: ,errors=continue 12:32:45 executing program 1: r0 = syz_io_uring_setup(0x4d4f, &(0x7f0000000080), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=0x0, &(0x7f0000000140)=0x0) syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_POLL_ADD={0x6, 0x0, 0x0, @fd=r0, 0x0, 0x0, 0x0, {0x194}}, 0x0) r3 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0) perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_io_uring_submit(r3, r2, &(0x7f0000000100)=@IORING_OP_SPLICE, 0x4) io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0) execveat(0xffffffffffffffff, &(0x7f00000002c0)='./file0\x00', &(0x7f0000000380), &(0x7f0000000640)=[0x0, 0x0, 0x0], 0x5) 12:32:45 executing program 7: syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000040)='./file0\x00', 0x40000, 0x3, &(0x7f0000000200)=[{&(0x7f0000010000)="2000000080000000060000006a0000000f000000000000000100000001000000004000000040000020000000e0f4655fe0f4655f0100ffff53ef010001000000dff4655f000000000000000001000000000000000b0000000001", 0x5a, 0x400}, {&(0x7f0000010400)="020000000300000004", 0x9, 0x800}, {&(0x7f0000011600)="ed41000000080000dff4655fe0f4655fe0f4655f000000000000040004", 0x1d, 0x2100}], 0x0, &(0x7f0000000080)=ANY=[]) syz_mount_image$ext4(&(0x7f0000000000)='ext2\x00', &(0x7f0000000040)='./file0/../file0\x00', 0x6000000, 0x0, 0x0, 0x104e034, &(0x7f00000001c0)) [ 1894.989341] EXT4-fs (loop4): ext4_check_descriptors: Block bitmap for group 0 overlaps superblock [ 1894.990482] EXT4-fs (loop4): group descriptors corrupted! 12:32:45 executing program 2: r0 = syz_init_net_socket$802154_dgram(0x24, 0x2, 0x0) r1 = dup(r0) sendmsg$BATADV_CMD_GET_BLA_BACKBONE(r1, &(0x7f0000000540)={&(0x7f0000000100), 0xc, &(0x7f0000000500)={0x0}}, 0x0) accept4$bt_l2cap(r1, &(0x7f0000000040), &(0x7f0000000080)=0xe, 0x80800) pipe(&(0x7f00000000c0)={0xffffffffffffffff}) ioctl$sock_SIOCINQ(r2, 0x541b, &(0x7f0000000000)) sendmsg$IPVS_CMD_FLUSH(r2, &(0x7f00000002c0)={&(0x7f0000000140)={0x10, 0x0, 0x0, 0x80000}, 0xc, &(0x7f0000000280)={&(0x7f0000000180)={0xe8, 0x0, 0x100, 0x70bd2b, 0x25dfdbfe, {}, [@IPVS_CMD_ATTR_DAEMON={0xc, 0x3, 0x0, 0x1, [@IPVS_DAEMON_ATTR_SYNC_MAXLEN={0x6, 0x4, 0xdc8}]}, @IPVS_CMD_ATTR_TIMEOUT_TCP={0x8, 0x4, 0xf450}, @IPVS_CMD_ATTR_DAEMON={0xc, 0x3, 0x0, 0x1, [@IPVS_DAEMON_ATTR_SYNC_MAXLEN={0x6, 0x4, 0x101}]}, @IPVS_CMD_ATTR_DEST={0x4}, @IPVS_CMD_ATTR_DEST={0x6c, 0x2, 0x0, 0x1, [@IPVS_DEST_ATTR_TUN_PORT={0x6, 0xe, 0x4e21}, @IPVS_DEST_ATTR_ADDR_FAMILY={0x6, 0xb, 0xa}, @IPVS_DEST_ATTR_U_THRESH={0x8, 0x5, 0x6}, @IPVS_DEST_ATTR_ADDR_FAMILY={0x6, 0xb, 0xa}, @IPVS_DEST_ATTR_TUN_FLAGS={0x6, 0xf, 0x1ff}, @IPVS_DEST_ATTR_FWD_METHOD={0x8, 0x3, 0x1}, @IPVS_DEST_ATTR_TUN_FLAGS={0x6, 0xf, 0x1ff}, @IPVS_DEST_ATTR_ADDR={0x14, 0x1, @ipv4=@local}, @IPVS_DEST_ATTR_ADDR={0x14, 0x1, @ipv6=@rand_addr=' \x01\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x01'}, @IPVS_DEST_ATTR_INACT_CONNS={0x8, 0x8, 0x5093}]}, @IPVS_CMD_ATTR_SERVICE={0x18, 0x1, 0x0, 0x1, [@IPVS_SVC_ATTR_PROTOCOL={0x6, 0x2, 0x33}, @IPVS_SVC_ATTR_SCHED_NAME={0xa, 0x6, 'lblcr\x00'}]}, @IPVS_CMD_ATTR_SERVICE={0x1c, 0x1, 0x0, 0x1, [@IPVS_SVC_ATTR_PORT={0x6, 0x4, 0x4e20}, @IPVS_SVC_ATTR_TIMEOUT={0x8, 0x8, 0x10001}, @IPVS_SVC_ATTR_SCHED_NAME={0x7, 0x6, 'rr\x00'}]}, @IPVS_CMD_ATTR_TIMEOUT_TCP={0x8}, @IPVS_CMD_ATTR_TIMEOUT_TCP_FIN={0x8, 0x5, 0x2}]}, 0xe8}, 0x1, 0x0, 0x0, 0x2004c009}, 0x44) 12:32:45 executing program 3: r0 = syz_io_uring_setup(0x4d4f, &(0x7f0000000080), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200), &(0x7f0000000140)=0x0) r2 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0) perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_io_uring_submit(r2, r1, &(0x7f0000000100)=@IORING_OP_SPLICE, 0x4) io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0) execveat(0xffffffffffffffff, &(0x7f00000002c0)='./file0\x00', 0x0, 0x0, 0x4c00) 12:32:45 executing program 5: r0 = syz_io_uring_setup(0x4d4f, &(0x7f0000000080), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=0x0, &(0x7f0000000140)=0x0) syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_POLL_ADD={0x6, 0x0, 0x0, @fd=r0, 0x0, 0x0, 0x0, {0x194}}, 0x0) r3 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0) perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_io_uring_submit(r3, r2, &(0x7f0000000100)=@IORING_OP_SPLICE, 0x4) io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0) execveat(0xffffffffffffffff, &(0x7f00000002c0)='./file0\x00', 0x0, 0x0, 0x4000000) 12:32:45 executing program 6: recvmmsg(0xffffffffffffffff, &(0x7f00000001c0)=[{{0x0, 0x0, &(0x7f0000000180), 0x0, &(0x7f0000000280)=""/211, 0xd3}, 0x8000}], 0x1, 0x10000, &(0x7f0000000200)) 12:32:45 executing program 4: syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000040)='./file0\x00', 0x40000, 0x2, &(0x7f0000000200)=[{&(0x7f0000010400)="020000000300000004", 0x9, 0x800}, {&(0x7f0000011600)="ed41000000080000dff4655fe0f4655fe0f4655f000000000000040004", 0x1d, 0x2100}], 0x0, &(0x7f0000000080)=ANY=[]) syz_mount_image$ext4(&(0x7f0000000000)='ext2\x00', &(0x7f0000000040)='./file0/../file0\x00', 0x0, 0x0, 0x0, 0x104e034, &(0x7f00000001c0)={[{@data_err_abort}]}) 12:32:45 executing program 7: syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000040)='./file0\x00', 0x40000, 0x3, &(0x7f0000000200)=[{&(0x7f0000010000)="2000000080000000060000006a0000000f000000000000000100000001000000004000000040000020000000e0f4655fe0f4655f0100ffff53ef010001000000dff4655f000000000000000001000000000000000b0000000001", 0x5a, 0x400}, {&(0x7f0000010400)="020000000300000004", 0x9, 0x800}, {&(0x7f0000011600)="ed41000000080000dff4655fe0f4655fe0f4655f000000000000040004", 0x1d, 0x2100}], 0x0, &(0x7f0000000080)=ANY=[]) syz_mount_image$ext4(&(0x7f0000000000)='ext2\x00', &(0x7f0000000040)='./file0/../file0\x00', 0x7000000, 0x0, 0x0, 0x104e034, &(0x7f00000001c0)) [ 1895.223403] EXT4-fs (loop4): VFS: Can't find ext4 filesystem [ 1895.283233] EXT4-fs (loop7): mounted filesystem without journal. Opts: ,errors=continue [ 1895.295723] EXT4-fs (loop7): re-mounted. Opts: ,errors=continue 12:32:56 executing program 0: r0 = syz_io_uring_setup(0x4d4f, &(0x7f0000000080), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=0x0, &(0x7f0000000140)=0x0) syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_POLL_ADD={0x6, 0x0, 0x0, @fd=r0, 0x0, 0x0, 0x0, {0x194}}, 0x0) r3 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0) perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_io_uring_submit(r3, r2, &(0x7f0000000100)=@IORING_OP_SPLICE, 0x4) io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0) fsetxattr$trusted_overlay_redirect(r0, &(0x7f0000000180), &(0x7f00000001c0)='./file0\x00', 0x8, 0x1) execveat(0xffffffffffffffff, &(0x7f00000002c0)='./file0\x00', &(0x7f0000000380), 0x0, 0x1000) 12:32:56 executing program 7: syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000040)='./file0\x00', 0x40000, 0x3, &(0x7f0000000200)=[{&(0x7f0000010000)="2000000080000000060000006a0000000f000000000000000100000001000000004000000040000020000000e0f4655fe0f4655f0100ffff53ef010001000000dff4655f000000000000000001000000000000000b0000000001", 0x5a, 0x400}, {&(0x7f0000010400)="020000000300000004", 0x9, 0x800}, {&(0x7f0000011600)="ed41000000080000dff4655fe0f4655fe0f4655f000000000000040004", 0x1d, 0x2100}], 0x0, &(0x7f0000000080)=ANY=[]) syz_mount_image$ext4(&(0x7f0000000000)='ext2\x00', &(0x7f0000000040)='./file0/../file0\x00', 0x8000000, 0x0, 0x0, 0x104e034, &(0x7f00000001c0)) 12:32:56 executing program 5: r0 = syz_io_uring_setup(0x4d4f, &(0x7f0000000080), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=0x0, &(0x7f0000000140)=0x0) syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_POLL_ADD={0x6, 0x0, 0x0, @fd=r0, 0x0, 0x0, 0x0, {0x194}}, 0x0) r3 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0) perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_io_uring_submit(r3, r2, &(0x7f0000000100)=@IORING_OP_SPLICE, 0x4) io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0) execveat(0xffffffffffffffff, &(0x7f00000002c0)='./file0\x00', 0x0, 0x0, 0x5000000) 12:32:56 executing program 3: r0 = syz_io_uring_setup(0x4d4f, &(0x7f0000000080), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200), &(0x7f0000000140)=0x0) r2 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0) perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_io_uring_submit(r2, r1, &(0x7f0000000100)=@IORING_OP_SPLICE, 0x4) io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0) execveat(0xffffffffffffffff, &(0x7f00000002c0)='./file0\x00', 0x0, 0x0, 0x6800) 12:32:56 executing program 6: syz_init_net_socket$802154_dgram(0x24, 0x2, 0x0) recvmmsg(0xffffffffffffffff, &(0x7f00000001c0)=[{{0x0, 0x0, &(0x7f0000000180), 0x0, &(0x7f0000000280)=""/211, 0xd3}, 0x8000}], 0x1, 0x10000, &(0x7f0000000200)) 12:32:56 executing program 4: syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000040)='./file0\x00', 0x40000, 0x2, &(0x7f0000000200)=[{&(0x7f0000010400)="020000000300000004", 0x9, 0x800}, {&(0x7f0000011600)="ed41000000080000dff4655fe0f4655fe0f4655f000000000000040004", 0x1d, 0x2100}], 0x0, &(0x7f0000000080)=ANY=[]) syz_mount_image$ext4(&(0x7f0000000000)='ext2\x00', &(0x7f0000000040)='./file0/../file0\x00', 0x0, 0x0, 0x0, 0x104e034, &(0x7f00000001c0)={[{@data_err_abort}]}) 12:32:56 executing program 1: r0 = syz_io_uring_setup(0x4d4f, &(0x7f0000000080), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=0x0, &(0x7f0000000140)=0x0) syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_POLL_ADD={0x6, 0x0, 0x0, @fd=r0, 0x0, 0x0, 0x0, {0x194}}, 0x0) r3 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0) perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_io_uring_submit(r3, r2, &(0x7f0000000100)=@IORING_OP_SPLICE, 0x4) io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0) execveat(0xffffffffffffffff, &(0x7f00000002c0)='./file0\x00', &(0x7f0000000380), &(0x7f0000000640)=[0x0, 0x0, 0x0], 0x6) [ 1906.596911] EXT4-fs (loop4): VFS: Can't find ext4 filesystem 12:32:56 executing program 4: syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000040)='./file0\x00', 0x40000, 0x2, &(0x7f0000000200)=[{&(0x7f0000010400)="020000000300000004", 0x9, 0x800}, {&(0x7f0000011600)="ed41000000080000dff4655fe0f4655fe0f4655f000000000000040004", 0x1d, 0x2100}], 0x0, &(0x7f0000000080)=ANY=[]) syz_mount_image$ext4(&(0x7f0000000000)='ext2\x00', &(0x7f0000000040)='./file0/../file0\x00', 0x0, 0x0, 0x0, 0x104e034, &(0x7f00000001c0)={[{@data_err_abort}]}) 12:32:56 executing program 6: syz_init_net_socket$802154_dgram(0x24, 0x2, 0x0) recvmmsg(0xffffffffffffffff, &(0x7f00000001c0)=[{{0x0, 0x0, &(0x7f0000000180), 0x0, &(0x7f0000000280)=""/211, 0xd3}, 0x8000}], 0x1, 0x10000, &(0x7f0000000200)) [ 1906.730604] EXT4-fs (loop7): mounted filesystem without journal. Opts: ,errors=continue 12:32:57 executing program 1: r0 = syz_io_uring_setup(0x4d4f, &(0x7f0000000080), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=0x0, &(0x7f0000000140)=0x0) syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_POLL_ADD={0x6, 0x0, 0x0, @fd=r0, 0x0, 0x0, 0x0, {0x194}}, 0x0) r3 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0) perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_io_uring_submit(r3, r2, &(0x7f0000000100)=@IORING_OP_SPLICE, 0x4) io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0) execveat(0xffffffffffffffff, &(0x7f00000002c0)='./file0\x00', &(0x7f0000000380), &(0x7f0000000640)=[0x0, 0x0, 0x0], 0x7) 12:32:57 executing program 7: syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000040)='./file0\x00', 0x40000, 0x3, &(0x7f0000000200)=[{&(0x7f0000010000)="2000000080000000060000006a0000000f000000000000000100000001000000004000000040000020000000e0f4655fe0f4655f0100ffff53ef010001000000dff4655f000000000000000001000000000000000b0000000001", 0x5a, 0x400}, {&(0x7f0000010400)="020000000300000004", 0x9, 0x800}, {&(0x7f0000011600)="ed41000000080000dff4655fe0f4655fe0f4655f000000000000040004", 0x1d, 0x2100}], 0x0, &(0x7f0000000080)=ANY=[]) syz_mount_image$ext4(&(0x7f0000000000)='ext2\x00', &(0x7f0000000040)='./file0/../file0\x00', 0x9000000, 0x0, 0x0, 0x104e034, &(0x7f00000001c0)) 12:32:57 executing program 5: r0 = syz_io_uring_setup(0x4d4f, &(0x7f0000000080), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=0x0, &(0x7f0000000140)=0x0) syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_POLL_ADD={0x6, 0x0, 0x0, @fd=r0, 0x0, 0x0, 0x0, {0x194}}, 0x0) r3 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0) perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_io_uring_submit(r3, r2, &(0x7f0000000100)=@IORING_OP_SPLICE, 0x4) io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0) execveat(0xffffffffffffffff, &(0x7f00000002c0)='./file0\x00', 0x0, 0x0, 0x6000000) 12:32:57 executing program 3: r0 = syz_io_uring_setup(0x4d4f, &(0x7f0000000080), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200), &(0x7f0000000140)=0x0) r2 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0) perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_io_uring_submit(r2, r1, &(0x7f0000000100)=@IORING_OP_SPLICE, 0x4) io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0) execveat(0xffffffffffffffff, &(0x7f00000002c0)='./file0\x00', 0x0, 0x0, 0x6c00) 12:32:57 executing program 0: r0 = syz_io_uring_setup(0x4d4f, &(0x7f0000000080), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=0x0, &(0x7f0000000140)=0x0) syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_POLL_ADD={0x6, 0x0, 0x0, @fd=r0, 0x0, 0x0, 0x0, {0x194}}, 0x0) r3 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0) r4 = fork() perf_event_open(&(0x7f00000000c0)={0x2, 0x80, 0x6, 0x0, 0x3, 0xfe, 0x0, 0x0, 0x210, 0x4, 0x1, 0x1, 0x1, 0x0, 0x0, 0x0, 0x1, 0x0, 0x1, 0x1, 0x0, 0x1, 0x0, 0x0, 0x1, 0x1, 0x1, 0x1, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x0, 0x1, 0x0, 0x484a, 0x2, @perf_bp={&(0x7f0000000000), 0x7}, 0xfb2e1345ce2bca28, 0x8000, 0x0, 0x6, 0x4, 0x9, 0x100, 0x0, 0x0, 0x0, 0x300}, r4, 0x0, 0xffffffffffffffff, 0x9) r5 = syz_init_net_socket$802154_dgram(0x24, 0x2, 0x0) r6 = dup(r5) ioctl$sock_SIOCINQ(r6, 0x541b, &(0x7f0000000000)) kcmp$KCMP_EPOLL_TFD(r4, 0x0, 0x7, r0, &(0x7f00000001c0)={r6, r0, 0x8}) perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r7 = io_uring_register$IORING_REGISTER_PERSONALITY(r0, 0x9, 0x0, 0x0) syz_io_uring_submit(0x0, r2, &(0x7f0000000180)=@IORING_OP_POLL_REMOVE={0x7, 0x3, 0x0, 0x0, 0x0, 0x12345, 0x0, 0x0, 0x1, {0x0, r7}}, 0x1000) syz_io_uring_submit(r3, r2, &(0x7f0000000100)=@IORING_OP_SPLICE, 0x4) io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0) execveat(0xffffffffffffffff, &(0x7f00000002c0)='./file0\x00', &(0x7f0000000380), 0x0, 0x1000) [ 1906.843334] EXT4-fs (loop4): VFS: Can't find ext4 filesystem 12:32:57 executing program 4: syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000040)='./file0\x00', 0x40000, 0x3, &(0x7f0000000200)=[{0x0, 0x0, 0x400}, {&(0x7f0000010400)="020000000300000004", 0x9, 0x800}, {&(0x7f0000011600)="ed41000000080000dff4655fe0f4655fe0f4655f000000000000040004", 0x1d, 0x2100}], 0x0, &(0x7f0000000080)=ANY=[]) syz_mount_image$ext4(&(0x7f0000000000)='ext2\x00', &(0x7f0000000040)='./file0/../file0\x00', 0x0, 0x0, 0x0, 0x104e034, &(0x7f00000001c0)={[{@data_err_abort}]}) 12:32:57 executing program 6: syz_init_net_socket$802154_dgram(0x24, 0x2, 0x0) recvmmsg(0xffffffffffffffff, &(0x7f00000001c0)=[{{0x0, 0x0, &(0x7f0000000180), 0x0, &(0x7f0000000280)=""/211, 0xd3}, 0x8000}], 0x1, 0x10000, &(0x7f0000000200)) 12:32:57 executing program 2: r0 = socket$netlink(0x10, 0x3, 0x0) sendmsg$nl_generic(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000240)={&(0x7f0000000280)=ANY=[@ANYBLOB="2800ffffffffffffff7c7a7f5cceecbbb3e591f9c7b34ba989d3608f81b540d830d53aaec85a061d8dba1ed5251cd57f66a9403f2e875155e4e0d8ac310a93c3b6e82793c565cb3c0544378133a30c69ae201d92ce3c30923c9f80b8b7a76f0590115730b2a9aeaff681d5e757fc724b4fc7"], 0x28}}, 0x0) r1 = syz_genetlink_get_family_id$devlink(&(0x7f0000000380), 0xffffffffffffffff) sendmsg$DEVLINK_CMD_TRAP_POLICER_GET(0xffffffffffffffff, &(0x7f0000000440)={&(0x7f0000000340)={0x10, 0x0, 0x0, 0x20000000}, 0xc, &(0x7f0000000400)={&(0x7f00000003c0)={0x3c, r1, 0x403, 0x70bd25, 0x25dfdbff, {}, [{@nsim={{0xe}, {0xf, 0x2, {'netdevsim', 0x0}}}, {0x8, 0x8e, 0x3}}]}, 0x3c}, 0x1, 0x0, 0x0, 0x41}, 0x40000c5) setsockopt$netlink_NETLINK_BROADCAST_ERROR(r0, 0x10e, 0x4, &(0x7f00000000c0)=0x1, 0x4) sendmsg$DEVLINK_CMD_TRAP_POLICER_GET(r0, &(0x7f0000000080)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x100}, 0xc, &(0x7f0000000040)={&(0x7f0000000140)={0x11c, r1, 0x8, 0x70bd2c, 0x25dfdbff, {}, [{@pci={{0x8}, {0x11}}, {0x8}}, {@nsim={{0xe}, {0xf, 0x2, {'netdevsim', 0x0}}}, {0x8}}, {@nsim={{0xe}, {0xf, 0x2, {'netdevsim', 0x0}}}, {0x8}}, {@nsim={{0xe}, {0xf, 0x2, {'netdevsim', 0x0}}}, {0x8, 0x8e, 0x1}}, {@pci={{0x8}, {0x11}}, {0x8}}, {@pci={{0x8}, {0x11}}, {0x8, 0x8e, 0x3}}, {@pci={{0x8}, {0x11}}, {0x8}}]}, 0x11c}, 0x1, 0x0, 0x0, 0x4004}, 0x10) r2 = syz_init_net_socket$802154_dgram(0x24, 0x2, 0x0) r3 = dup(r2) sendmsg$BATADV_CMD_GET_BLA_BACKBONE(r3, &(0x7f0000000540)={&(0x7f0000000100), 0xc, &(0x7f0000000500)={0x0}}, 0x0) [ 1906.931630] EXT4-fs (loop7): mounted filesystem without journal. Opts: ,errors=continue [ 1906.941496] EXT4-fs (loop7): re-mounted. Opts: ,errors=continue [ 1907.019743] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=0 sclass=netlink_route_socket pid=14158 comm=syz-executor.2 [ 1907.024320] EXT4-fs (loop4): VFS: Can't find ext4 filesystem [ 1907.071848] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=0 sclass=netlink_route_socket pid=14143 comm=syz-executor.2 12:33:11 executing program 1: r0 = syz_io_uring_setup(0x4d4f, &(0x7f0000000080), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=0x0, &(0x7f0000000140)=0x0) syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_POLL_ADD={0x6, 0x0, 0x0, @fd=r0, 0x0, 0x0, 0x0, {0x194}}, 0x0) r3 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0) perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_io_uring_submit(r3, r2, &(0x7f0000000100)=@IORING_OP_SPLICE, 0x4) io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0) execveat(0xffffffffffffffff, &(0x7f00000002c0)='./file0\x00', &(0x7f0000000380), &(0x7f0000000640)=[0x0, 0x0, 0x0], 0xc) 12:33:11 executing program 7: syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000040)='./file0\x00', 0x40000, 0x3, &(0x7f0000000200)=[{&(0x7f0000010000)="2000000080000000060000006a0000000f000000000000000100000001000000004000000040000020000000e0f4655fe0f4655f0100ffff53ef010001000000dff4655f000000000000000001000000000000000b0000000001", 0x5a, 0x400}, {&(0x7f0000010400)="020000000300000004", 0x9, 0x800}, {&(0x7f0000011600)="ed41000000080000dff4655fe0f4655fe0f4655f000000000000040004", 0x1d, 0x2100}], 0x0, &(0x7f0000000080)=ANY=[]) syz_mount_image$ext4(&(0x7f0000000000)='ext2\x00', &(0x7f0000000040)='./file0/../file0\x00', 0xa000000, 0x0, 0x0, 0x104e034, &(0x7f00000001c0)) 12:33:11 executing program 2: r0 = syz_init_net_socket$802154_dgram(0x24, 0x2, 0x0) r1 = dup(r0) sendmsg$BATADV_CMD_GET_BLA_BACKBONE(r1, &(0x7f0000000540)={&(0x7f0000000100), 0xc, &(0x7f0000000500)={0x0}}, 0x4008890) ioctl$sock_SIOCINQ(r1, 0x541b, &(0x7f0000000000)) 12:33:11 executing program 0: r0 = syz_init_net_socket$802154_dgram(0x24, 0x2, 0x0) r1 = dup(r0) ioctl$sock_SIOCINQ(r1, 0x541b, &(0x7f0000000000)) ioctl$TCSETSF(r1, 0x5404, &(0x7f0000000180)={0x6834, 0x672, 0xfffffffd, 0x1314, 0x8, "f491bb76f964bb9bbd9d3dda38b8129d90015d"}) r2 = syz_io_uring_setup(0x4d4f, &(0x7f0000000080), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=0x0, &(0x7f0000000140)=0x0) syz_io_uring_submit(r3, r4, &(0x7f0000000000)=@IORING_OP_POLL_ADD={0x6, 0x0, 0x0, @fd=r2, 0x0, 0x0, 0x0, {0x194}}, 0x0) r5 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r2, 0x0) perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_io_uring_submit(r5, r4, &(0x7f0000000100)=@IORING_OP_SPLICE, 0x4) io_uring_enter(r2, 0x58ab, 0x0, 0x0, 0x0, 0x0) execveat(0xffffffffffffffff, &(0x7f00000002c0)='./file0\x00', &(0x7f0000000380), 0x0, 0x1000) 12:33:11 executing program 3: r0 = syz_io_uring_setup(0x4d4f, &(0x7f0000000080), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200), &(0x7f0000000140)=0x0) r2 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0) perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_io_uring_submit(r2, r1, &(0x7f0000000100)=@IORING_OP_SPLICE, 0x4) io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0) execveat(0xffffffffffffffff, &(0x7f00000002c0)='./file0\x00', 0x0, 0x0, 0x7400) 12:33:11 executing program 6: r0 = syz_init_net_socket$802154_dgram(0x24, 0x2, 0x0) recvmmsg(r0, 0x0, 0x0, 0x10000, &(0x7f0000000200)) 12:33:11 executing program 4: syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000040)='./file0\x00', 0x40000, 0x3, &(0x7f0000000200)=[{0x0, 0x0, 0x400}, {&(0x7f0000010400)="020000000300000004", 0x9, 0x800}, {&(0x7f0000011600)="ed41000000080000dff4655fe0f4655fe0f4655f000000000000040004", 0x1d, 0x2100}], 0x0, &(0x7f0000000080)=ANY=[]) syz_mount_image$ext4(&(0x7f0000000000)='ext2\x00', &(0x7f0000000040)='./file0/../file0\x00', 0x0, 0x0, 0x0, 0x104e034, &(0x7f00000001c0)={[{@data_err_abort}]}) 12:33:11 executing program 5: r0 = syz_io_uring_setup(0x4d4f, &(0x7f0000000080), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=0x0, &(0x7f0000000140)=0x0) syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_POLL_ADD={0x6, 0x0, 0x0, @fd=r0, 0x0, 0x0, 0x0, {0x194}}, 0x0) r3 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0) perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_io_uring_submit(r3, r2, &(0x7f0000000100)=@IORING_OP_SPLICE, 0x4) io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0) execveat(0xffffffffffffffff, &(0x7f00000002c0)='./file0\x00', 0x0, 0x0, 0x7000000) 12:33:11 executing program 6: r0 = syz_init_net_socket$802154_dgram(0x24, 0x2, 0x0) recvmmsg(r0, 0x0, 0x0, 0x10000, &(0x7f0000000200)) [ 1921.358708] EXT4-fs (loop4): VFS: Can't find ext4 filesystem [ 1921.395748] EXT4-fs (loop7): mounted filesystem without journal. Opts: ,errors=continue [ 1921.400892] EXT4-fs (loop7): re-mounted. Opts: ,errors=continue 12:33:11 executing program 3: r0 = syz_io_uring_setup(0x4d4f, &(0x7f0000000080), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200), &(0x7f0000000140)=0x0) r2 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0) perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_io_uring_submit(r2, r1, &(0x7f0000000100)=@IORING_OP_SPLICE, 0x4) io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0) execveat(0xffffffffffffffff, &(0x7f00000002c0)='./file0\x00', 0x0, 0x0, 0x7a00) 12:33:11 executing program 7: syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000040)='./file0\x00', 0x40000, 0x3, &(0x7f0000000200)=[{&(0x7f0000010000)="2000000080000000060000006a0000000f000000000000000100000001000000004000000040000020000000e0f4655fe0f4655f0100ffff53ef010001000000dff4655f000000000000000001000000000000000b0000000001", 0x5a, 0x400}, {&(0x7f0000010400)="020000000300000004", 0x9, 0x800}, {&(0x7f0000011600)="ed41000000080000dff4655fe0f4655fe0f4655f000000000000040004", 0x1d, 0x2100}], 0x0, &(0x7f0000000080)=ANY=[]) syz_mount_image$ext4(&(0x7f0000000000)='ext2\x00', &(0x7f0000000040)='./file0/../file0\x00', 0xb000000, 0x0, 0x0, 0x104e034, &(0x7f00000001c0)) 12:33:11 executing program 4: syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000040)='./file0\x00', 0x40000, 0x3, &(0x7f0000000200)=[{0x0, 0x0, 0x400}, {&(0x7f0000010400)="020000000300000004", 0x9, 0x800}, {&(0x7f0000011600)="ed41000000080000dff4655fe0f4655fe0f4655f000000000000040004", 0x1d, 0x2100}], 0x0, &(0x7f0000000080)=ANY=[]) syz_mount_image$ext4(&(0x7f0000000000)='ext2\x00', &(0x7f0000000040)='./file0/../file0\x00', 0x0, 0x0, 0x0, 0x104e034, &(0x7f00000001c0)={[{@data_err_abort}]}) 12:33:11 executing program 0: r0 = syz_io_uring_setup(0x4d4f, &(0x7f0000000080), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=0x0, &(0x7f0000000140)=0x0) syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_POLL_ADD={0x6, 0x0, 0x0, @fd=r0, 0x0, 0x0, 0x0, {0x194}}, 0x0) r3 = syz_init_net_socket$802154_dgram(0x24, 0x2, 0x0) r4 = dup(r3) ioctl$sock_SIOCINQ(r4, 0x541b, &(0x7f0000000000)) r5 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ff3000/0xd000)=nil, 0xd000, 0x300000d, 0x4000013, r4, 0x0) perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_io_uring_submit(r5, r2, &(0x7f0000000100)=@IORING_OP_SPLICE, 0x4) io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0) execveat(0xffffffffffffffff, &(0x7f00000002c0)='./file0\x00', &(0x7f0000000380), 0x0, 0x1000) 12:33:11 executing program 5: r0 = syz_io_uring_setup(0x4d4f, &(0x7f0000000080), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=0x0, &(0x7f0000000140)=0x0) syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_POLL_ADD={0x6, 0x0, 0x0, @fd=r0, 0x0, 0x0, 0x0, {0x194}}, 0x0) r3 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0) perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_io_uring_submit(r3, r2, &(0x7f0000000100)=@IORING_OP_SPLICE, 0x4) io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0) execveat(0xffffffffffffffff, &(0x7f00000002c0)='./file0\x00', 0x0, 0x0, 0xc000000) 12:33:11 executing program 6: r0 = syz_init_net_socket$802154_dgram(0x24, 0x2, 0x0) recvmmsg(r0, 0x0, 0x0, 0x10000, &(0x7f0000000200)) 12:33:11 executing program 1: r0 = syz_io_uring_setup(0x4d4f, &(0x7f0000000080), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=0x0, &(0x7f0000000140)=0x0) syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_POLL_ADD={0x6, 0x0, 0x0, @fd=r0, 0x0, 0x0, 0x0, {0x194}}, 0x0) r3 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0) perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_io_uring_submit(r3, r2, &(0x7f0000000100)=@IORING_OP_SPLICE, 0x4) io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0) execveat(0xffffffffffffffff, &(0x7f00000002c0)='./file0\x00', &(0x7f0000000380), &(0x7f0000000640)=[0x0, 0x0, 0x0], 0x10) [ 1921.722347] EXT4-fs (loop4): VFS: Can't find ext4 filesystem 12:33:12 executing program 6: r0 = syz_init_net_socket$802154_dgram(0x24, 0x2, 0x0) recvmmsg(r0, &(0x7f00000001c0), 0x0, 0x10000, &(0x7f0000000200)) [ 1921.810141] EXT4-fs (loop7): mounted filesystem without journal. Opts: ,errors=continue 12:33:26 executing program 1: r0 = syz_io_uring_setup(0x4d4f, &(0x7f0000000080), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=0x0, &(0x7f0000000140)=0x0) syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_POLL_ADD={0x6, 0x0, 0x0, @fd=r0, 0x0, 0x0, 0x0, {0x194}}, 0x0) r3 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0) perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_io_uring_submit(r3, r2, &(0x7f0000000100)=@IORING_OP_SPLICE, 0x4) io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0) execveat(0xffffffffffffffff, &(0x7f00000002c0)='./file0\x00', &(0x7f0000000380), &(0x7f0000000640)=[0x0, 0x0, 0x0], 0x12) 12:33:26 executing program 3: r0 = syz_io_uring_setup(0x4d4f, &(0x7f0000000080), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200), &(0x7f0000000140)=0x0) r2 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0) perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_io_uring_submit(r2, r1, &(0x7f0000000100)=@IORING_OP_SPLICE, 0x4) io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0) execveat(0xffffffffffffffff, &(0x7f00000002c0)='./file0\x00', 0x0, 0x0, 0x40000) 12:33:26 executing program 6: r0 = syz_init_net_socket$802154_dgram(0x24, 0x2, 0x0) recvmmsg(r0, &(0x7f00000001c0), 0x0, 0x10000, &(0x7f0000000200)) 12:33:26 executing program 4: syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000040)='./file0\x00', 0x40000, 0x3, &(0x7f0000000200)=[{&(0x7f0000010000), 0x0, 0x400}, {&(0x7f0000010400)="020000000300000004", 0x9, 0x800}, {&(0x7f0000011600)="ed41000000080000dff4655fe0f4655fe0f4655f000000000000040004", 0x1d, 0x2100}], 0x0, &(0x7f0000000080)=ANY=[]) syz_mount_image$ext4(&(0x7f0000000000)='ext2\x00', &(0x7f0000000040)='./file0/../file0\x00', 0x0, 0x0, 0x0, 0x104e034, &(0x7f00000001c0)={[{@data_err_abort}]}) 12:33:26 executing program 0: r0 = syz_io_uring_setup(0x4d4f, &(0x7f0000000080), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=0x0, &(0x7f0000000140)=0x0) syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_POLL_ADD={0x6, 0x0, 0x0, @fd=r0, 0x0, 0x0, 0x0, {0x194}}, 0x0) r3 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0) r4 = perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x0, 0x0, 0x0, 0x5}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_io_uring_submit(r3, r2, &(0x7f0000000100)=@IORING_OP_SPLICE, 0x4) io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0) execveat(0xffffffffffffffff, &(0x7f00000002c0)='./file0\x00', &(0x7f0000000380), 0x0, 0x1000) r5 = fork() perf_event_open(&(0x7f00000000c0)={0x2, 0x80, 0x6, 0x0, 0x3, 0xfe, 0x0, 0x0, 0x210, 0x4, 0x1, 0x1, 0x1, 0x0, 0x0, 0x0, 0x1, 0x0, 0x1, 0x1, 0x0, 0x1, 0x0, 0x0, 0x1, 0x1, 0x1, 0x1, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x0, 0x1, 0x0, 0x484a, 0x2, @perf_bp={&(0x7f0000000000), 0x7}, 0xfb2e1345ce2bca28, 0x8000, 0x0, 0x6, 0x4, 0x9, 0x100, 0x0, 0x0, 0x0, 0x300}, r5, 0x0, 0xffffffffffffffff, 0x9) perf_event_open(&(0x7f0000000240)={0x4, 0x80, 0xc1, 0x99, 0x59, 0xd4, 0x0, 0x6, 0x2102, 0x4, 0x0, 0x0, 0x1, 0x1, 0x0, 0x0, 0x1, 0x1, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x1, 0x3, 0x1, 0x1, 0x0, 0x0, 0x1, 0x1, 0x1, 0x0, 0x0, 0x1, 0x1, 0x1, 0x0, 0x1, 0x1, 0x0, 0x1, 0x1, 0x1, 0x1, 0x0, 0x0, 0xf9, 0x2, @perf_bp={&(0x7f0000000180), 0x9}, 0x10000, 0x9e, 0x0, 0x3, 0xffffffffffff0001, 0x1ff, 0x4, 0x0, 0x2, 0x0, 0xf8c}, r5, 0xa, r4, 0x9) 12:33:26 executing program 7: syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000040)='./file0\x00', 0x40000, 0x3, &(0x7f0000000200)=[{&(0x7f0000010000)="2000000080000000060000006a0000000f000000000000000100000001000000004000000040000020000000e0f4655fe0f4655f0100ffff53ef010001000000dff4655f000000000000000001000000000000000b0000000001", 0x5a, 0x400}, {&(0x7f0000010400)="020000000300000004", 0x9, 0x800}, {&(0x7f0000011600)="ed41000000080000dff4655fe0f4655fe0f4655f000000000000040004", 0x1d, 0x2100}], 0x0, &(0x7f0000000080)=ANY=[]) syz_mount_image$ext4(&(0x7f0000000000)='ext2\x00', &(0x7f0000000040)='./file0/../file0\x00', 0x18000000, 0x0, 0x0, 0x104e034, &(0x7f00000001c0)) 12:33:26 executing program 5: r0 = syz_io_uring_setup(0x4d4f, &(0x7f0000000080), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=0x0, &(0x7f0000000140)=0x0) syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_POLL_ADD={0x6, 0x0, 0x0, @fd=r0, 0x0, 0x0, 0x0, {0x194}}, 0x0) r3 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0) perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_io_uring_submit(r3, r2, &(0x7f0000000100)=@IORING_OP_SPLICE, 0x4) io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0) execveat(0xffffffffffffffff, &(0x7f00000002c0)='./file0\x00', 0x0, 0x0, 0x12000000) 12:33:26 executing program 2: r0 = syz_init_net_socket$802154_dgram(0x24, 0x2, 0x0) r1 = dup2(r0, r0) getsockopt$WPAN_SECURITY(r1, 0x0, 0x1, &(0x7f0000000040), &(0x7f0000000080)=0x4) r2 = ioctl$TIOCGPTPEER(r1, 0x5441, 0x3) dup(r2) r3 = dup(r0) sendmsg$BATADV_CMD_GET_BLA_BACKBONE(r3, &(0x7f0000000540)={&(0x7f0000000100), 0xc, &(0x7f0000000500)={0x0}}, 0x0) ioctl$sock_SIOCINQ(r3, 0x541b, &(0x7f0000000000)) r4 = openat$tun(0xffffffffffffff9c, &(0x7f0000000040), 0x0, 0x0) ioctl$TUNSETQUEUE(r4, 0x400454ca, &(0x7f00000000c0)={'ipvlan1\x00'}) ioctl$BTRFS_IOC_GET_SUBVOL_INFO(0xffffffffffffffff, 0x81f8943c, &(0x7f0000000140)={0x0, ""/256, 0x0, 0x0, 0x0, 0x0, ""/16, ""/16, ""/16, 0x0}) ioctl$BTRFS_IOC_SNAP_DESTROY_V2(r0, 0x5000943f, &(0x7f0000000580)={{r4}, r5, 0x2, @unused=[0x4, 0xbaf5, 0x10001, 0x2], @subvolid=0x8}) [ 1936.055358] EXT4-fs (loop4): VFS: Can't find ext4 filesystem 12:33:26 executing program 6: r0 = syz_init_net_socket$802154_dgram(0x24, 0x2, 0x0) recvmmsg(r0, &(0x7f00000001c0), 0x0, 0x10000, &(0x7f0000000200)) 12:33:26 executing program 3: r0 = syz_io_uring_setup(0x4d4f, &(0x7f0000000080), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200), &(0x7f0000000140)=0x0) r2 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0) perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_io_uring_submit(r2, r1, &(0x7f0000000100)=@IORING_OP_SPLICE, 0x4) io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0) execveat(0xffffffffffffffff, &(0x7f00000002c0)='./file0\x00', 0x0, 0x0, 0x100000) [ 1936.126161] EXT4-fs (loop7): mounted filesystem without journal. Opts: ,errors=continue [ 1936.131615] EXT4-fs (loop7): re-mounted. Opts: ,errors=continue 12:33:26 executing program 7: syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000040)='./file0\x00', 0x40000, 0x3, &(0x7f0000000200)=[{&(0x7f0000010000)="2000000080000000060000006a0000000f000000000000000100000001000000004000000040000020000000e0f4655fe0f4655f0100ffff53ef010001000000dff4655f000000000000000001000000000000000b0000000001", 0x5a, 0x400}, {&(0x7f0000010400)="020000000300000004", 0x9, 0x800}, {&(0x7f0000011600)="ed41000000080000dff4655fe0f4655fe0f4655f000000000000040004", 0x1d, 0x2100}], 0x0, &(0x7f0000000080)=ANY=[]) syz_mount_image$ext4(&(0x7f0000000000)='ext2\x00', &(0x7f0000000040)='./file0/../file0\x00', 0x2e000000, 0x0, 0x0, 0x104e034, &(0x7f00000001c0)) 12:33:26 executing program 2: r0 = syz_init_net_socket$802154_dgram(0x24, 0x2, 0x0) r1 = dup(r0) sendmsg$BATADV_CMD_GET_BLA_BACKBONE(r1, &(0x7f0000000540)={&(0x7f0000000100), 0xc, &(0x7f0000000500)={0x0, 0xffffffffffffffbc}}, 0x0) sendmmsg$sock(r1, &(0x7f0000006540)=[{{&(0x7f0000000080)=@ax25={{0x3, @null, 0x8}, [@netrom={0xbb, 0xbb, 0xbb, 0xbb, 0xbb, 0x0, 0x0}, @null, @default, @bcast, @netrom={0xbb, 0xbb, 0xbb, 0xbb, 0xbb, 0x0, 0x0}, @rose={0xbb, 0xbb, 0xbb, 0x1, 0x0}, @netrom={0xbb, 0xbb, 0xbb, 0xbb, 0xbb, 0x0, 0x0}, @default]}, 0x80, &(0x7f0000000340)=[{&(0x7f0000000140)="63567ed4507f31df17071693c30578b5d24282c6284ed719538c54a495f87865ec3b79b65eaf6b7118f4254d836be6aed17d36d15fa67db6c8a2b50b2330dd28882c6bb3a7f5e87645326089d36088e64781edef1878d848d6c7524b330bee969ad62890a3d44be6b45d8890414e24ff074d075fe898e53704f5233c13e4fea428749d67e4cefd95bd587e3a6324372ab23fdd398b015c0ab0d0b3f4c6f4afa469add0151f3a23d69f4b0364c84103efa2d22775903f0979e1596c0f9e90a3a1d5519303", 0xc4}, {&(0x7f0000000240)="2fc77008773ac8f3afcc2724abc58b63fe7275e6c8e197ef67090194c644e479e05992263e071842cc859c8f4af13440e53a6533", 0x34}, {&(0x7f0000000280)="1f6ab441286e5acb305620fa261e19338afddfeced4d094a22003dd06d7fc3aae915440719183f98c9a273df4ddcf9808d0790066049a2e77b6b5930c13eb04f1f", 0x41}, {&(0x7f0000000300)="5b0668dc81f27e2d0070e667dbb54d553842f12d02bf8bef5aec0d6bdf93e32bdf9ef3829a78bc9c1b997daaea766da4db7e40800171b3358f460843", 0x3c}], 0x4, &(0x7f0000000380)=[@txtime={{0x18, 0x1, 0x3d, 0x2}}, @timestamping={{0x14, 0x1, 0x25, 0x4}}, @txtime={{0x18, 0x1, 0x3d, 0x10001}}], 0x48}}, {{0x0, 0x0, &(0x7f0000000780)=[{&(0x7f0000000400)="97fb260ea703ae99c3ee60e709901ebbc5d3fcd343cb909745f9de33d07ab066a824c8a5f4", 0x25}, {&(0x7f0000000440)="b49d55afac73e1a43816f99c40bea1ce4756462aca5d483e6da60fe0e52e82ca188b88f8dbb6d2267caa7feb9b2708f050fd719785af9336e789c408539a2f5375d36cdcff14a52b408ab48e047965139786fecaca6a3574d7b8b5bf99ad331ee47f3557b96c0c1f643241703849d74606272ebd87e20d1380395ef00054bbe951deb5b1faae76c5507a8b439d82c02c44e17d0552220a1b", 0x98}, {&(0x7f0000000580)="143bd52b3e0bcb2a88c2220c19c7a2821df28520b1d665f208ecca9bee041140b191f510d6b1e65a3a2dabf21966d88313b1eff1d60206392827e9d65026ccefa4bdfb35d309ba975ce52fd3c257f884fa6f30eaf61ab1de7960e2d9f583171e2fde31612b6d6d8982081c6164c330b509f4183d31e5bcfd3e4891abe6995c530d803f63c943e5be2af9c8f20696ece072051d593409f6c514f937c182f6", 0x9e}, {&(0x7f0000000640)="e04bcc719e211390d1a9863382eaee8d49568ad2269d49fd1b098e8784ac9a521ea81b3a652a899812fe99fde4df2ff0888c5cff45092afae31c6a7f944afb230727b0e0489a", 0x46}, {&(0x7f00000006c0)="01c366a5a777650843204086e028a6e63b93b02b847ccc85bdec746e6d50d8d182782a15a763b847c5d20b2af81934d3e4224ae9342146c8dc9b65b9ef7e32a0b56c0fce51ee3a321ffca0dd1130fd21a9164c4a28173462d1d8da135e0da104a9dc557e273dd50b99b0822941fc888ae7ef5fb1b2e591654fc3ce22fa4fd1fbfa5a96929fb09cdac9a8cecf48ecc903098e159a5376be4df99e0d98ae3d695ecf", 0xa1}], 0x5, &(0x7f0000000800)=[@timestamping={{0x14, 0x1, 0x25, 0xcaaa}}, @timestamping={{0x14, 0x1, 0x25, 0x10000}}, @mark={{0x14, 0x1, 0x24, 0x1000}}, @timestamping={{0x14, 0x1, 0x25, 0x8}}, @txtime={{0x18, 0x1, 0x3d, 0x10000}}, @mark={{0x14, 0x1, 0x24, 0x401}}], 0x90}}, {{0x0, 0x0, &(0x7f0000002b80)=[{&(0x7f00000008c0)="4a90e3cb73ee3e6f7b4df671fdadc69e7e48da10bf766291ab5554f55b3c07a3f3c0151f0a56758bce0106b1b543e6291436974a101801deb93273223537aaf069afcbff37969614f3bd28bb8c66d33bdf128145ead083fb", 0x58}, {&(0x7f0000000940)="4207f74fe2cb66fd657be4b78a6050d2a0df03877c2aa5598f9f", 0x1a}, {&(0x7f0000000980)="e8ac0514aec9ed492c41ee8eed084d7f92c22bab986e67c7d56bb4b623fd1cbc91645fc30ec45d9a1c3b78aa37d7bc4e53cabfaa9701b60133cfd71786009a3314023b9c97e95ea7d3504291ea9f59b529831975f623f4ee1d6628ad3ed0a114d1d66552351f3d8fbabea76c4f9f256b4354ba345a38448286b769b861aad1cd01e33eb17e0e769e7423e21472", 0x8d}, {&(0x7f0000000a40)="f5ff5d006de6d35f0e5485fc08a4d4fa6cb995871ce44722f18bc91a7389b94850d64e1ce861d3f38466c533783e606b50e3fb3d72383916c85a16e21782b622f249041ca869b995dff7f8228a0abd335ef0d9314913ea80d5323029602536ae85064a19dc04db2e12bcee89c27b2ac0b55a34ef0a5f97d2784dad813f80", 0x7e}, {&(0x7f0000000ac0)="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", 0x1000}, {&(0x7f0000001ac0)="4afe7d2caa929f2d650f43bd32574b2c5ec1f012961a91fec7ddb69e913f095a2e03fc4198c890dba6be24d75fdfdd1eaba0c929471edf807d67ebb6cc4690cdff7ad813ca012f7b5b21337db26f813113e011835271f198ef50e9d3e989f55b0e29c697dca67cf130317e900880f25afa2ab2aa23dd9e54981c7a1205e460cda6d8e04fac936cc936a875431d7937d29ecbe2968aa9c1ffae4a942a86c57bcebab9dbcc718a2af415f8ba4373289ea2826a", 0xb2}, {&(0x7f0000001b80)="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", 0x1000}], 0x7}}, {{&(0x7f0000002c00)=@rc={0x1f, @fixed={'\xaa\xaa\xaa\xaa\xaa', 0x12}, 0xf9}, 0x80, &(0x7f0000003280)=[{&(0x7f0000002c80)="62a218548f6110b22e3711b17e2518902e4e00036de27a4e4e4787ec80f7335879ac814200a675fe4d5def62131d1ed0e07f223a3e14bffed0c4ed81c2b4bbfd077b85d380d006e6a958335d4bf89a118a82deafefe44cb610edcb226e92908b881ffe5bc2c051205440eb2e8c5e83bb45f3a8b5eb91af26a9fcbb0d4fcd3bd665c3a40f7fb1a11ec762f49020a029978fa6e9a16e7b60671157e59d75460038d0de398fd8d5c8b3a2aef26e103c78caf3ab625d5a09e08732600e398fb2bba9785565caa5f2", 0xc6}, {&(0x7f0000002d80)="c35bdb4a162895d047718b41a2bfcc232d0fcaf5c92ef864e9f1fee7201037df3ea75af6e6134ce0a9033dbd93f093f3d0901087848bb8b726dfe71254e49fa6b37f9f4ddbfd0635f1f047a23b9963cb236f82de9c8324645d6ef1665a805f085c4aa89a217096b5b918fda36ee0a278b99d1e187183ee6eb0e7d9ad2f96888ce2f881e8ed892fe0e1fddf94c7ef744d", 0x90}, {&(0x7f0000002e40)="3eb4e8c3a8a61bff7e248a63d90eac0d18cec7577c7c96841a343e08cb25ab2e70fc757b3006ef2099e891b6276102e38cae9f", 0x33}, {&(0x7f0000002e80)="e2cc5cb10800a9b31e3e257b41644077fd2f240b4d3df624074000b526af6701c5622de79962d9369def1b00948e785b19d87f2324cb1a1e88bc27e6a69350cadc6faa4c6d66584e20", 0x49}, {&(0x7f0000002f00)="7e8b4a7b8068b0b42d59e77f823b90d847e7c1c46f59210eab696d05c852364ee821a689325ff3a53a71fe925e96179b0a4643fc652ff85265c0678b4c4f745704262595285b3212998ac25aeec853f0aaffb76db2630f2ca138ad57e61a946cc7d4068b6523c06e506c492088026b0067f5192d56c3e64ea9692f2485eee000b3ebd2f9368c41a57a1dac5ec7a158", 0x8f}, {&(0x7f0000002fc0)}, {&(0x7f0000003000)="88e2f873d8ab61fa2d044c274104fdbe972b90338c65ba87be4c8ecd56fa52402e3459e6627b15e3c59848aba660301c639d6397b159dc116937bf8dcbe71f27ec1470c25e2bc24676d29141afcf655d87227f08eea2c464294d9ebbda812010056a2e4acdc8d62bd88962bc0c56f4d95c204b6b34c84cde401820270d31331defe3101b3eb1cd1cf881911017c5fb54472eeac24d186074d88fae19dbcc09e68c68d32d6dd10ccced48", 0xaa}, {&(0x7f00000030c0)="9ca8c70a227796f583c26796669cecd46e97216afef1dfbcb8d124e39182e90ee8a86c9a831f64817654b2dd01a8b8a87d09c923b7b002433cd9301086f7b81e1bf9146917caee501dafc4d2c9dd07e9dcc241d8c8da0846411be0a53ddb7ba974809a10e262577b35f509944e75e2dcfa1cfb61050b33ab4502d8a030cf7d3b07e12b", 0x83}, {&(0x7f0000003180)="e273457396cbb221778c885d10b12b8cd8e5c77b0f4f1d1f833572021ea5119ed49b6cd8d05f449ae8bd2b65ea77bc6187d4134ef3d426c319ebe07141aaedfce5722ecabab7862847675539c1360d284c14e7e78b04bc598568852e6341fa314e1263b80e1daea84178198b5d812fc84c9c83b54f8fd8233d9236e6e266b08c9f488b5ac8f3d4ef66964d781871578fddee44a43a5d26e4283750eeffd11e2b4bc73b3b0cb5bbd86aabd257028ea92e89d2863fa7e82ce9c95f31b069bcc9f12100d69a7048ac903dfc", 0xca}], 0x9, &(0x7f0000003340)=[@timestamping={{0x14}}], 0x18}}, {{&(0x7f0000003380)=@sco, 0x80, &(0x7f0000003500)=[{&(0x7f0000003400)="1e73eb6165", 0x5}, {&(0x7f0000003440)="e33496e7da321627e3a93d849b05d31c109e011649e968603fbbd055777dcbce0544a197c496695da5123c08341298", 0x2f}, {&(0x7f0000003480)="cb660c4a86beea5256a5aa84438e1c67a6623695df1c8b019d84777ffc6706d4ab6bdbecbbe9fd1508efeeec8e9b0d3f63f31a143e209f7503d45e60871190530032cfa898729c5e9aa5daa5f1f851c2c449256c87ac1b77b2bd8f79d5a92ee0aeef5710dd7612800138b7ef61e8df9d2d94fdbeb246ec", 0x77}], 0x3}}, {{&(0x7f0000003540)=@pppol2tpin6={0x18, 0x1, {0x0, r1, 0x3, 0x3, 0x3, 0x3, {0xa, 0x4e20, 0x5c86ea84, @dev={0xfe, 0x80, '\x00', 0x37}, 0x7}}}, 0x80, &(0x7f0000005b40)=[{&(0x7f00000035c0)="0da288b81bf213d9a4e28b4b8452730e18430065d516a271c4a06f1c65ca1e1e9bc51374b780f5c3db82c166c9a105125a85f91147babec7f33183f76bd299b357fcdf8b3b5ab6e0907dc7bddc2a5851c15d9d2b54d24fe90dc797b32c5eececa024345a43210caa157a2d6e64f500ac7506fc54498e48d509b64b02213c9b33ef673c3d0ee02f21f6690efe40e648a3d41edd427478bf5706a924c8eb728aa22001486ee2487f986fa6522c158658fc52a508737b97ac8276c8eecfe2880cca3d54bc0560477fdd30f3f1da487b6d8932d96fb97a9ef851f64c5de16109d7ab8dc727a1ac03b67789ceafd8152f4dcdb5a375", 0xf3}, {&(0x7f00000036c0)="4409ba04a8cff9c507ff57818af05ad4d8fb7d4a7fee5f2f3fea4dd6955ca882886152bc54e2da6241b7b252a12649fe4ef360c4718e47b1925959a87acf4d212cc81bdd106a9453748c51016e26fb1119ef785cee4de88dd36f4ec7458b1c7956d260b98b833a678035bac096c7f95800cdee2b3b821592288c1c8458cb411e5323d2f8246bf2", 0x87}, {&(0x7f0000003780)}, {&(0x7f00000037c0)="fd6a9378b03548721b5899b96702f5abded5d277987f9b7c4b0674f8e16e3695a8a981c24515f1fb7a6d95f7cd303d68eed119dd5fb5faa7efb18c0655635879b4de5684686c73def6bfd0759a664a9320f87b5bbdfed069f4afa7dcf59bc22c6feb494691c493aaf7863bafc8a4de89ebebd26f3d24a4456196a5a92277e48424d18e97227fcd85a907b0b469e8361eb88458938b42699714e9b9965ea28028ebeda43f12", 0xa5}, {&(0x7f0000003880)="11a59e087cda97a41e743c58b9603ea853c9b2ae27b18d36c19c3d51d3efba0e89d610f4a6876838056cc1a78208b62e7e444781e012d67f607d3053fbb4ec050fd5ad759878ba256bde9ccac46e5e47a04d33b0c45230f80f4b37e22fa5935fed0df8115458c297ecb7285b6be2b93fdeedf14c1064e180e7388bb20716465858765fc5ba3e0b62ea7bf86bcf0daca428d9598297f16597ac10dec3f3d9e3690be4b1397c5c5fadc342272c8d1fb77500335a046502a388a200279c52270dceaadaf74ab0147805a1e7aaa14d3ae85b966a10decfc9ec4d6b346a6adfe376d15be8eea1fcc78057ffbb7e100eeb6e9d6832137bf2", 0xf5}, {&(0x7f0000003980)="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", 0x1000}, {&(0x7f0000004980)="457df21b126b7f7fd5c322c36ad64c2c48d0babe964b6bab378902fd6c785a57ff574b1deb609dbb2743947b6fe9625f4fbae8efc126df283938c0089ce500e81207e5f879ef43f8b13b1be188f6dbb613bcc3aad205047eafac54e78b1f71109a7d47f11e9bacd6bd890906eb0bd1636eb466fc38a6fc3db7fc8e3ef10927a5dae20c692e104943713a3d2b93398aea439c177ae9866690", 0x98}, {&(0x7f0000004a40)="502bbb5134048c71e195693248cb0dc6e3bf93440e63ff510310", 0x1a}, {&(0x7f0000004a80)="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", 0x1000}, {&(0x7f0000005a80)="d1dc1f11dad76a742e71665ce37a8500e37f3b338fca0b8d2e31627fbf5cb2799cbdb0076c78e0a60b0535ce5a50511394b54cb151efbf863183f1271440d471e4f5433a8111d02813b35482cbbdc515be23254d5deaee6aace5d4e94be4ee795da319d955abb60cacc5de395ae8e151b1d30aad0aeefd1cf1a02846dec2aff6a64b8a5c39553f0196bb9ab44cadda840248beada3fa", 0x96}], 0xa, &(0x7f0000005c00)=[@timestamping={{0x14, 0x1, 0x25, 0xfffffffa}}, @mark={{0x14, 0x1, 0x24, 0x2}}, @txtime={{0x18, 0x1, 0x3d, 0x5}}], 0x48}}, {{0x0, 0x0, &(0x7f0000005e40)=[{&(0x7f0000005c80)="1807e54c1d1fd1dcafe097cc1acfe97de10fc6c19f5ac024822984461e7b2a3973f3d76a248213f84bdeac590c631fc47891bb4ac811f0daac94716c07d561b694109776ca73f90f4b2947cf4e3517233051034d8eb1a2f75312bd3706ae86450fcca8b0b16b16244be83046468a3cc0663b9583fdc7b0338cd86938b84f72fb83a9de663cd9517b84", 0x89}, {&(0x7f0000005d40)="c2b577eeba859aa22899e6b76f63ad289b2167e168179f81b534759653fa67cdc64915ee0dc36d96b9eab0f6f2617aa9cd83174b589243f8f7f0b7ae23275cccd1371fd5eb956d135d6c1c992d75c175291cea832d7594bffef1dd7bc5f3576da977d1c7c1f5295e19616e43df141f67e1cbe5a641ef7fa044fb16c03970b81bfa3d1220648519de", 0x88}, {&(0x7f0000005e00)="efdbf90e84d67e9196c4212455cd27d16c", 0x11}], 0x3, &(0x7f0000005e80)=[@timestamping={{0x14, 0x1, 0x25, 0xdf}}, @timestamping={{0x14, 0x1, 0x25, 0x1}}, @timestamping={{0x14, 0x1, 0x25, 0x2}}, @timestamping={{0x14, 0x1, 0x25, 0x81}}, @mark={{0x14, 0x1, 0x24, 0x5}}, @timestamping={{0x14, 0x1, 0x25, 0x7}}, @timestamping={{0x14, 0x1, 0x25, 0xe901}}, @mark={{0x14}}, @timestamping={{0x14, 0x1, 0x25, 0x1ff}}, @txtime={{0x18, 0x1, 0x3d, 0x7b6cf267}}], 0xf0}}, {{&(0x7f0000005f80)=@alg={0x26, 'aead\x00', 0x0, 0x0, 'aegis256-aesni\x00'}, 0x80, &(0x7f0000006480)=[{&(0x7f0000006000)="357a22faad87e678078949bdc32cf989822b629055190cd774730f2093abcda2fa0ccb55e8fa266db39f27d5f0efea1ee86c9118d52bb179e1feb24437b15c8d9ee9c4c561c4b041ce16d18cffa02683f63d2524c4fa692a3590e816434a6470d15db9285d2b272188326aa1e11f644d2ba3cbb067e88a69f05b6722b8ce4110c2058f7947da38663de686e51a76bc0350d9efc4e809b3c5ba5e04e40858f5efb1226dfe4ef275e31f63d13790c6e807652ee17b215563982e87", 0xba}, {&(0x7f00000060c0)="818f2367d30238cf498d6c1870d4cb5910f12b1a76adbf3f7f590ca0d0a3c02bad5a879e5fbaa0546723201dd4f8a02d28b3324532a1aa5b6863c9b4e0a24d404a8410790fe860da0eaeb1a8b75f0ebf2c677fb38158cf53b9eb063d801a04078c3de9642fbfd4fd5cee6d8e0984a7975d1fc6b146351225362f3e91e4f02a227ea18d153c7f4f50dcda37bef1cb5bf4e91d72b1ead2f50ba74fed0135526610fc68d6b683158e5c7c49dc25", 0xac}, {&(0x7f0000006180)="7d7f23b6eb5560bcb11fe19f1043b8044309b94a059b0679d8020af24b587307a46e03b6a615fff6460e234e544baaf37cd3616cfa423a6a6eb68cca1113f147dc0048ad9dd44acacb1f2995b90af83f4aee3205a192a3a2f14a714e1c5bfdd1cfaa726c9f2dc65aa578c15e34d965fd2a7372606efa8bcd26204a3fb3e1c0226170a87048d7cf72bc4fa43640815a127e4690c522202bb02f32e7f45f7902c7a20e72557df7447ea1994b9a832b53c25cf0882aabd66ba9a3471fc1698d0b7e8aeb6355367453", 0xc7}, {&(0x7f0000006280)="f1aa5e48ea8f3bf8c6a287c4d583a6056d2ed017639b5473d42e4df1d06e82d74a1ea4f546d240", 0x27}, {&(0x7f00000062c0)="ecd3e47f7df21f57764bf215920985ea0119146aa76953be5035dace724a221ec2b7ab48b6d88d943e3719a8f32e28a2b697b4dca48a7bebf0fd9daab800fba1a06bdb61baf74ff26526d8a994a25757a91f", 0x52}, {&(0x7f0000006340)="d8e0c25bfa2934914171190b57fda7f5f240b2c723acda5fae3b5ea86c420b8a7bb462aa837eb6a010bb34712ea60e34dedffe45babf8074e676c2395ebe74d6dae6049eb8c6c97a575f5a93b6d61d653132c39a11b8ead8674df5f3039c4d0693cb157c", 0x64}, {&(0x7f00000063c0)="483132d9287f2f14c72e06640b58f6add34e1ca3a15896aa28fd54bf920c4e372be57301b4f014a724af480e7e57e818b7ef2b0bd5296f31eb09ce220f7364a4e5d8844d3e3551aa7d3088f3d6040306fea8e056d445a3373868f95dd79050faa2d0f3ea1ac1ed11c796d6e2c7d4dd712c9210d365f8cad07fe6161e792f623c2694bc3edf35e604b87fc13addbb599194d573ac8b7360e60809e45127b78de8a5fc780edbbeadc37aadb4067b96", 0xae}], 0x7, &(0x7f0000006500)=[@txtime={{0x18}}], 0x18}}], 0x8, 0x404c8d0) r2 = syz_open_dev$vcsa(&(0x7f0000000000), 0x3, 0xb0302) ioctl$sock_SIOCINQ(r2, 0x541b, &(0x7f0000000040)) ioctl$SNAPSHOT_UNFREEZE(r1, 0x3302) 12:33:26 executing program 1: r0 = syz_io_uring_setup(0x4d4f, &(0x7f0000000080), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=0x0, &(0x7f0000000140)=0x0) syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_POLL_ADD={0x6, 0x0, 0x0, @fd=r0, 0x0, 0x0, 0x0, {0x194}}, 0x0) r3 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0) perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_io_uring_submit(r3, r2, &(0x7f0000000100)=@IORING_OP_SPLICE, 0x4) io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0) execveat(0xffffffffffffffff, &(0x7f00000002c0)='./file0\x00', &(0x7f0000000380), &(0x7f0000000640)=[0x0, 0x0, 0x0], 0x18) 12:33:26 executing program 4: syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000040)='./file0\x00', 0x40000, 0x3, &(0x7f0000000200)=[{&(0x7f0000010000), 0x0, 0x400}, {&(0x7f0000010400)="020000000300000004", 0x9, 0x800}, {&(0x7f0000011600)="ed41000000080000dff4655fe0f4655fe0f4655f000000000000040004", 0x1d, 0x2100}], 0x0, &(0x7f0000000080)=ANY=[]) syz_mount_image$ext4(&(0x7f0000000000)='ext2\x00', &(0x7f0000000040)='./file0/../file0\x00', 0x0, 0x0, 0x0, 0x104e034, &(0x7f00000001c0)={[{@data_err_abort}]}) 12:33:26 executing program 5: r0 = syz_io_uring_setup(0x4d4f, &(0x7f0000000080), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=0x0, &(0x7f0000000140)=0x0) syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_POLL_ADD={0x6, 0x0, 0x0, @fd=r0, 0x0, 0x0, 0x0, {0x194}}, 0x0) r3 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0) perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_io_uring_submit(r3, r2, &(0x7f0000000100)=@IORING_OP_SPLICE, 0x4) io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0) execveat(0xffffffffffffffff, &(0x7f00000002c0)='./file0\x00', 0x0, 0x0, 0x18000000) [ 1936.523968] EXT4-fs (loop7): mounted filesystem without journal. Opts: ,errors=continue [ 1936.527825] EXT4-fs (loop4): VFS: Can't find ext4 filesystem [ 1936.533549] EXT4-fs (loop7): re-mounted. Opts: ,errors=continue [ 2095.389270] INFO: task syz-executor.0:14270 blocked for more than 143 seconds. [ 2095.391367] Not tainted 5.10.60 #1 [ 2095.392436] "echo 0 > /proc/sys/kernel/hung_task_timeout_secs" disables this message. [ 2095.395278] task:syz-executor.0 state:D stack:27792 pid:14270 ppid: 4509 flags:0x00004004 [ 2095.396754] Call Trace: [ 2095.397230] __schedule+0x84b/0x1e90 [ 2095.397910] ? io_schedule_timeout+0x150/0x150 [ 2095.398722] ? do_raw_spin_lock+0x129/0x270 [ 2095.399563] ? rwlock_bug.part.0+0x90/0x90 [ 2095.400323] schedule+0xcb/0x270 [ 2095.400818] io_uring_cancel_task_requests+0xbbf/0x1260 [ 2095.401780] ? io_ring_exit_work+0x920/0x920 [ 2095.402451] ? __lockdep_reset_lock+0x180/0x180 [ 2095.403127] ? wait_woken+0x250/0x250 [ 2095.403668] ? find_held_lock+0x2c/0x110 [ 2095.404283] io_uring_flush+0x377/0x590 [ 2095.405087] ? io_uring_cancel_task_requests+0x1260/0x1260 [ 2095.406033] filp_close+0xb7/0x170 [ 2095.406693] put_files_struct+0x1d0/0x350 [ 2095.407423] exit_files+0x7e/0xa0 [ 2095.407919] copy_process+0x4593/0x64e0 [ 2095.408706] ? __cleanup_sighand+0xb0/0xb0 [ 2095.409365] ? __do_sys_io_uring_enter+0xbd8/0x1e90 [ 2095.410229] ? futex_exit_release+0x220/0x220 [ 2095.410968] kernel_clone+0xe7/0xa20 [ 2095.411688] ? copy_init_mm+0x20/0x20 [ 2095.412373] ? fput_many+0x2f/0x1a0 [ 2095.412891] ? __do_sys_io_uring_enter+0x1bb/0x1e90 [ 2095.413799] __do_sys_fork+0x8a/0xc0 [ 2095.414325] ? kernel_clone+0xa20/0xa20 [ 2095.415045] ? copy_kernel_to_fpregs+0xa7/0xf0 [ 2095.415778] ? lockdep_hardirqs_on_prepare+0x273/0x3e0 [ 2095.416647] ? syscall_enter_from_user_mode+0x1d/0x50 [ 2095.417504] ? trace_hardirqs_on+0x5b/0x180 [ 2095.418183] ? syscall_enter_from_user_mode+0x1d/0x50 [ 2095.418941] do_syscall_64+0x33/0x40 [ 2095.419458] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 2095.420313] RIP: 0033:0x466609 [ 2095.420856] RSP: 002b:00007f4e87c42188 EFLAGS: 00000246 ORIG_RAX: 0000000000000039 [ 2095.422058] RAX: ffffffffffffffda RBX: 000000000056bf80 RCX: 0000000000466609 [ 2095.423106] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000 [ 2095.424291] RBP: 00000000004bfcb9 R08: 0000000000000000 R09: 0000000000000000 [ 2095.425497] R10: 0000000000000000 R11: 0000000000000246 R12: 000000000056bf80 [ 2095.426665] R13: 00007ffc014a64bf R14: 00007f4e87c42300 R15: 0000000000022000 [ 2095.427919] [ 2095.427919] Showing all locks held in the system: [ 2095.428895] 1 lock held by khungtaskd/22: [ 2095.429456] #0: ffffffff84df66e0 (rcu_read_lock){....}-{1:2}, at: debug_show_all_locks+0x53/0x269 [ 2095.430743] 1 lock held by in:imklog/179: [ 2095.431426] #0: ffff88800ee53270 (&f->f_pos_lock){+.+.}-{3:3}, at: __fdget_pos+0xe9/0x100 [ 2095.432691] 2 locks held by rs:main Q:Reg/180: [ 2095.433449] #0: ffff88800917f4f0 (&f->f_pos_lock){+.+.}-{3:3}, at: __fdget_pos+0xe9/0x100 [ 2095.434791] #1: ffff88800f934438 (sb_writers#3){.+.+}-{0:0}, at: ksys_write+0x12d/0x250 [ 2095.436190] [ 2095.436524] ============================================= [ 2095.436524] VM DIAGNOSIS: 12:36:05 Registers: info registers vcpu 0 RAX=dffffc0000000060 RBX=00000000000003fd RCX=0000000000000000 RDX=00000000000003fd RSI=ffffffff8226b19c RDI=ffffffff876c5000 RBP=ffffffff876c4fc0 RSP=ffff888008e17a28 R8 =0000000000000001 R9 =0000000000000003 R10=000000000000000a R11=0000000000000001 R12=0000000000000020 R13=fffffbfff0ed8a4b R14=fffffbfff0ed8a02 R15=dffffc0000000000 RIP=ffffffff8226b1f0 RFL=00000002 [-------] CPL=0 II=0 A20=1 SMM=0 HLT=0 ES =0000 0000000000000000 00000000 00000000 CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA] SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS [-WA] DS =0000 0000000000000000 00000000 00000000 FS =0000 0000000000000000 00000000 00000000 GS =0000 ffff88806ce00000 00000000 00000000 LDT=0000 fffffe0000000000 00000000 00000000 TR =0040 fffffe0000003000 00004087 00008b00 DPL=0 TSS64-busy GDT= fffffe0000001000 0000007f IDT= fffffe0000000000 00000fff CR0=80050033 CR2=00007f7d6ccac010 CR3=000000000f06a000 CR4=00350ef0 DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 DR6=00000000ffff0ff0 DR7=0000000000000400 EFER=0000000000000d01 FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001fa0 FPR0=0000000000000000 0000 FPR1=0000000000000000 0000 FPR2=0000000000000000 0000 FPR3=0000000000000000 0000 FPR4=0000000000000000 0000 FPR5=0000000000000000 0000 FPR6=0000000000000000 0000 FPR7=0000000000000000 0000 XMM00=00000000000000000000000000000000 XMM01=00000000000000000000000000000000 XMM02=0000000000000000418c414200000000 XMM03=0000ff00000000000000000000000000 XMM04=732f6c61636f6c2f7273752f3d485441 XMM05=622f6c61636f6c2f7273752f3a6e6962 XMM06=73752f3a6e6962732f7273752f3a6e69 XMM07=6e69622f3a6e6962732f3a6e69622f72 XMM08=00000000000000000000000000000000 XMM09=00000000000000000000000000000000 XMM10=00000000000000000000000000000000 XMM11=00000000000000000000000000000000 XMM12=00000000000000000000000000000000 XMM13=00000000000000000000000000000000 XMM14=00000000000000000000000000000000 XMM15=00000000000000000000000000000000 info registers vcpu 1 RAX=ffffffff85845b2e RBX=ffffffff85547648 RCX=dffffc0000000000 RDX=fffffffffc47cdd3 RSI=0000000000000000 RDI=ffffffff8554763c RBP=ffffffff8554763c RSP=ffff888017f9f318 R8 =ffffffff85845b2e R9 =ffff888017f9f8a8 R10=0000000000009c44 R11=0000000000030040 R12=ffffffff85547658 R13=ffffffff819c4459 R14=ffffffff8554763c R15=ffffffff8554763c RIP=ffffffff811044f6 RFL=00000246 [---Z-P-] CPL=0 II=0 A20=1 SMM=0 HLT=0 ES =0000 0000000000000000 00000000 00000000 CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA] SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS [-WA] DS =0000 0000000000000000 00000000 00000000 FS =0000 00007f3c41fb0700 00000000 00000000 GS =0000 ffff88806cf00000 00000000 00000000 LDT=0000 fffffe0000000000 00000000 00000000 TR =0040 fffffe000003e000 00004087 00008b00 DPL=0 TSS64-busy GDT= fffffe000003c000 0000007f IDT= fffffe0000000000 00000fff CR0=80050033 CR2=00007f7d6ccac010 CR3=000000000c8b2000 CR4=00350ee0 DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 DR6=00000000ffff0ff0 DR7=0000000000000400 EFER=0000000000000d01 FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80 FPR0=0000000000000000 0000 FPR1=0000000000000000 0000 FPR2=0000000000000000 0000 FPR3=0000000000000000 0000 FPR4=0000000000000000 0000 FPR5=0000000000000000 0000 FPR6=0000000000000000 0000 FPR7=0000000000000000 0000 XMM00=2035303a36333a323120383220677541 XMM01=5d3633343239332e35393032205b203a XMM02=656c62617369642022736365735f7475 XMM03=6c656e72656b2f7379732f636f72702f XMM04=6d6d6f632033343134313d6469702074 XMM05=74656e3d7373616c637320303d657079 XMM06=7270203a6567617373656d206b6e696c XMM07=203a78756e694c4553205d3834383137 XMM08=6576655f667265703d7373616c637420 XMM09=00000000000000000000000000000000 XMM10=00000000000000000000000000000000 XMM11=00000000000000000000000000000000 XMM12=00000000000000000000000000000000 XMM13=00000000000000000000000000000000 XMM14=00000000000000000000000000000000 XMM15=00000000000000000000000000000000