55b25a87bc53e9f5a55941cdd6f4d3c693d830b5604bf959c181e738c27502ae4a393f2cfce210ffcdca7c7fc20d99db59701380ea5d7a089241ea280cbf2b876e782cd35edbe75a8d46d4fc949165a5112b872de9f940de8484442c261010b040f96be9d5a76ad22de1c148a0d1bf9d01b2fbcb6ce71af6090b48cf99f916687d92f8d779f48ded857710352aa1d5650e9a1911587d8e8eb083b7c164b86f0af0c5f066d7d0db0bbc3311cad8d12aef642ceff35890c618c3d4b9dc1fa0ed6b16457d3b7af55e3d3a8d2b95b582198409e601bfce07f2b50294c629c9ab860eac1b1129ef00568063ad3f24d8935c7c5ccc9416e445725569691c7f81d23c48b401b0a790ab18fe4e8f66dd1f831c37f57cc8b80506d288939744d686a8383b8601e6957de6fb764b9f1818ee370da9fb7c5538218fdff6cfa3220db971df6873d872a0bee2918bd10363c723f1506356b0704670a0fd8e4f929aa8d9a24d3cec2d0e571fd2a91e0d26106f458d1accacf697ae9ba568fa785d36b8e58f0a6cb00e537acbd2fa93718facf0ca499004a869b04a11d2c4dd6b9413c871a3791009a8c9421f7c880b05f5915f2ac2392a58ee0d814965fac3fa0a065f709b4af5fba36fff6acc64decc6ed441fb130f1acb4128a8395bebc197d65601159340077f132884371910b77e27c8e7d0c8dd1eff3d4de56e380dbdd44b718781febf12701e1dc55df6a0a5608351fc39d376661afd34b6bb81d42eda4b3cb1512b965dfd124b1e0309b26e5e816f9a6510397d9fd8613c635a1bbebcf9b1bce2b5a5645d2b1e91d18126b689a888d11a3366e41ce362676269de737763a3f294a4b9a616b0382d9a5995a3e89060719cad68e0151ce26fa2182b6aa0f55fd2e5473c6405eb229390aba535c5f4ddf9c57f6b64ddc48e3ed745db8dd55bb7b9b0f5d1ff7cd43d0f26f92c51234090a75ad7498a3c91d6b23c605a0c8f4921b7703a727a23c4d7e329b33728a4bb52a6312f384ca8f66edbe684c36de9143e6e3a117c8dadc319a19cc6497138a80c80a2ebf84ea298248101c6a8c03b35e82d9f40d2cde4f0a324b64944c9f1e6164958abee233e5f117555230f64791a5f719d263f8cac9838afac1abe0fbc06e1f2346ab09f44fed21a26f5bfb40224aa3945eb1fe699b102503cb9da7e6cfc1d8a4f3e310131f24103d643d78f1fa62809a4577c1be5cd8af3137a682c02dd40c276b1dbae22df693d336ce2283b2d67e619d5e8efe2fcb260559e8f770ab90e4d0af2f137e15b23432270a174d9e802966ba5e8de3c4f654d2169d1ac903823dbaa015927b0ec1badaf24887ce4bee86a4aa71435b74be8f584e57e6833a0b966448a071e71bb72738891aeaf85db7438353c9ce95bfc7039aee11834fc960509b8cb1624f75d0e2a7361a4b5054c717e241bfc02f76bdb44fe89d2adb6cc9413efd96a2abbf171ed8ab00c3ed4f74687e4a2a1e9c6ae5f7c41b901dcd34e5b5b84ad410acdd441710b98db56e61207f78674722fb36d830a3436ad3edccb0c7b01230a1e23e69670894977afcadd839e890f51a21f4eb79efa77e9381371a261dd1abd96181a834674e7a942783f8f92ee0c0fd9c16dfd6d47e6db41aaaac7ccf6535288c8433915ba705c4b70bb75f002af564e6200ecf4c549262a1d61ba1dc9d18905c19fb6c7b6ffdc490f332bb88064a76fd8e819b60744c7700c442f8518b3882a529aba8b0eb0501f5e92739eae80ef0c0a934e031e2ec774a462d53ab8a1a079adea3b487f896eed8fb44fb6fe8aca92f9356c3424a0b2c7f596f4cb556da63893ce1e17a4589662f7d884044e61548eee93d49aa1c1d8b1f9279e77b71def4ae0358a46000427ebf111bd956d013aefcee676dd38540914fef293a9e37fc314c8d8ee84d0dcf7e973c5f8acbcd3f1ee0fc70b4dbacd136895e026db4a77338f0231c40cc20adc635273e240881ca7692f50c92f6033f765495a32c3fd9eab53d893882363079bde6555e40db81639eb39ca9475ce94efc8478e45c52f34b18840a403c3389cd946d0456b5e7445ec6fd24c93c9421f2cde2750f6a1695b13c94e42264d22ea6c029d742a495a00a26a2704fa0f299d275ad86cdf7d909fb8d1682ed77173bfa2a05ca6f940dfa07fddc913375db15135fe26b28ffab758b27a7f15e21c58ac1c9786dd013e726aa25e847bc3a3fc23c0ca02b03fc98f5580c54961065d2b4f715e8d6d60d4b353064a47516f382819392481f71b76618325314cdc11ea3edc090f606f70b7c5df81bb80a31cec0ea28aadb508d8e78526feade080b495fdc70be760dc680b7dec61fa3d62ad06c6c3e6afb1adcf67edca27743d70c2d5c73c89dd775052b8386fce5ec05b9ebc5a104577a972d0e531c3345cd1d03a1dbf4544b9a5cb2dced580d6d0d6f843fe3b21d4ecb773a7487931dc058a559307b1eb62a41db6e2e4ad7835d5374baf6d34fe2b16ad6540219cac896aae6019b57f85e998154d5de22de7ee1ad155239dbb99e9bf0116c3c21269a5417d80dbee5c8d9a4532516a0f5f5ec78a6398cbea60201c29dbb66219f1fb94f4f83e06d2534c421f5c754fed497f628b599864248bf2c415c162a7187554cdb4348399efc19607c9d8d1ad1a002c151f66b911358af1a4fea6543ac6246c1815899fbac045a50482853a0d2749d9b4ed40b51a5557d679050ffe531f286c37412fc7a8ae0beeaed8c16f433c6827b9f55bb34efa29d15187d00afa3537fc849636afe06e9851fab93da21e8db922b24323dd1ef4ebd3aeda9acca678460810d8029b040508188526609ab32f65209a0b565485f43aa951abff4f7adf8258cc0e69bf6f1275cfdc916c9172f937d698c33442d5e84a6e4d31265b138d16de6f2fbed5195b3a94dfba056c753708ffd8788e104a1d0d886cc19628f2d46b722715cd89e6eed5cd23ba9d0600bc1a9465bbf8f34e30707aa71a8c3cf2df8d0250cbb9310ad7e42e9220bbbaa387b9f43197c76be04a40f7952e7c68cc6472b2a6953549d56ae1a6882adca793ad30c6ca9c914d42b7e4066f0632c4039d7cc99ffe4e471346a5c83506736fd207722eb77f939f00d0c8441230cfdce5a4bf8e5906d26c9d8cd732e1b1f741c1c014b9b8053a529cee1122ffafc21689a3b3b8cf92c4d8721cbbf6bb0fb602d82465a7024e3bb0a1cbc9eec737d42f02a0f98c95d87c18294d30c386c8fb5108b34f50b78c69077bca23bb4786033d77a4bc6c3269936f60952d8e28f3fc542ae80eecae462701d3557d0f81972dacb5ee69e40463ce2117fc096f2d8a78780d9f4da1475f617cf71aed00e4d01fde289d69a3ff131b12a8cdb55912bc68e91e1fc77c1c2120dccec571ceed94377f7db5f05f36af17a2593dd8db3dc880e7782bc2393d092e0034368afed064e03ec185a8c5bbc3da982095032625cb7b82b24d1cdf55f896b26c9e3869ddf6691b88485b40e2eb022c8ec167cf0deb027cf6e5d0d5aec0bfe3a2287e7b3187063207e6", 0x1000, 0x4}, {&(0x7f00000001c0)="e19315a584ead03dd37d68a51048df2dcaf234", 0x13, 0x2}, {&(0x7f0000000200)="9de93216e35eacb978c789a6176b6bc8b381f08cca13521f814b57d3f6863fafd3e7ed3c4a76141b1d74842921ca31c66eb05647b2644b68dc68c2c0a2cc70f01ec5b1e12c07dc6d0236e131e1db1a0e04f05ab7531651a55a1a2cd9f2588ff819afb01ed08f6ce9c992506292d7607301663356f1faf23c038b39187b7734fd37abdbf73a3808595088f301adb685b4c9", 0x91, 0x7}, {&(0x7f00000002c0)="449cd3f072bbe49eea4e0a9314ef0903aeb86d6ae1fbdb190e81b4b628c89010ab41b1086e623f4f6caa0e29a08a50cdcb8a99b10da2423d8dd7aa57e377ceb9fdfe8953cfe06998776ae309954e84cf06a50d2f9adf38acf6c95f8fe6acf7e7031cd849ed6dba9d1d67f4585b25d392283b6f3ae111942f481c7cd116b426f0cca996668bbc2bf921b9545d2a56eb850033429895b69bf867d82140d83987371bcd379ab3c57eea9501752ebace1f4123eb1ec598c63218f36d006183f8d0ca35390a1133", 0xc5, 0x2}, {&(0x7f00000003c0)="e0a147152c23167de2a6a7e0afa619b79a9ab3273150968dda3693cda66bfaa3b686288165f6888d42638521ac7ed3ddcb8fb518dbe7b69fb69b1f69b82ca5e6d75ec9d6f3ce154cfd120885e549af878a2fdc0ae87ed84b937e657e18229cc65ff67dea2268a99b278e29bc6b8ecbeaf866fb", 0x73, 0xfffffffffffffb4c}, {&(0x7f0000000440)}], 0x0, &(0x7f0000000580)={[{@gid}], [{@audit}]}) 23:36:33 executing program 4: perf_event_open(&(0x7f0000001d80)={0x2, 0x80, 0x69, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = socket$inet6_udp(0xa, 0x2, 0x0) dup(0xffffffffffffffff) fstat(0xffffffffffffffff, 0x0) connect$inet6(r0, &(0x7f0000000600)={0xa, 0x0, 0x0, @dev, 0x2}, 0x1c) sendmmsg$inet6(0xffffffffffffffff, &(0x7f0000000080)=[{{0x0, 0x0, &(0x7f00000004c0)=[{&(0x7f00000001c0)="4bc702854e3954b59347985ccc868289d3fe483d2c0900a2a1d12e33a66529e1f276fef452632dfa3c004ce3be84a5f66c29cd4ec39ae5206562fbc9ea3c0dbbebc22e628e147b0e9631f19b0ce0a48e0e675b2da3442226b898f1ddf8eabf133ab4a9cb0999c2ee1d3bd36d089b0d8e97ea00d4c5f6ad14dce058d595aacba2d587ff5eacd81b71a73f53ed276d1f3b3384bb2bfba4e0f37302e690df9e7024378ac754ac0576f996f3ee53d1034c7720767ddf2625817532f7ae89103367b73a36152b84c38bc227ba9e9ff48bcfe027585cf14bff37a888", 0xff41}], 0x1}}], 0x1, 0x0) [ 1023.714345] FAT-fs (loop2): bogus number of FAT sectors [ 1023.715789] FAT-fs (loop2): Can't find a valid FAT filesystem [ 1023.759220] tmpfs: Unknown parameter 'audit' 23:36:49 executing program 7: perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) syz_open_procfs(0x0, &(0x7f0000000340)='limits\x00') r0 = socket$inet6_udplite(0xa, 0x2, 0x88) syz_io_uring_submit(0x0, 0x0, &(0x7f0000000000)=@IORING_OP_RECVMSG={0xa, 0x0, 0x0, r0, 0x0, &(0x7f0000000440)={0x0, 0x0, 0x0}, 0x0, 0x40000203}, 0x0) mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, 0xffffffffffffffff, 0x0) r1 = mmap$IORING_OFF_CQ_RING(&(0x7f0000ffe000/0x2000)=nil, 0x2000, 0xf, 0x13, 0xffffffffffffffff, 0x8000000) syz_io_uring_submit(r1, 0x0, &(0x7f00000002c0)=@IORING_OP_READ=@pass_buffer={0x16, 0x4, 0x0, @fd, 0x0, 0x0}, 0x80000001) r2 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1) dup2(r2, r0) io_uring_enter(0xffffffffffffffff, 0x58ab, 0x0, 0x0, 0x0, 0x0) 23:36:49 executing program 3: perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) syz_open_procfs(0x0, &(0x7f0000000340)='limits\x00') r0 = socket$inet6_udplite(0xa, 0x2, 0x88) syz_io_uring_submit(0x0, 0x0, &(0x7f0000000000)=@IORING_OP_RECVMSG={0xa, 0x0, 0x0, r0, 0x0, &(0x7f0000000440)={0x0, 0x0, 0x0}, 0x0, 0x40000203}, 0x0) mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, 0xffffffffffffffff, 0x0) r1 = mmap$IORING_OFF_CQ_RING(&(0x7f0000ffe000/0x2000)=nil, 0x2000, 0xf, 0x13, 0xffffffffffffffff, 0x8000000) syz_io_uring_submit(r1, 0x0, &(0x7f00000002c0)=@IORING_OP_READ=@pass_buffer={0x16, 0x4, 0x0, @fd, 0x0, 0x0}, 0x80000001) r2 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1) dup2(r2, r0) io_uring_enter(0xffffffffffffffff, 0x58ab, 0x0, 0x0, 0x0, 0x0) 23:36:49 executing program 4: perf_event_open(&(0x7f0000001d80)={0x2, 0x80, 0x69, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = socket$inet6_udp(0xa, 0x2, 0x0) dup(0xffffffffffffffff) fstat(0xffffffffffffffff, 0x0) connect$inet6(r0, &(0x7f0000000600)={0xa, 0x0, 0x0, @dev, 0x2}, 0x1c) sendmmsg$inet6(r0, 0x0, 0x0, 0x0) 23:36:49 executing program 5: r0 = syz_io_uring_complete(0x0) r1 = syz_mount_image$tmpfs(&(0x7f0000000000), &(0x7f0000000080)='./file0\x00', 0x0, 0x0, 0x0, 0x0, &(0x7f0000000600)=ANY=[]) mknodat$loop(r1, &(0x7f0000000300)='./file0\x00', 0x1000, 0x0) openat(r1, &(0x7f0000000140)='./file0\x00', 0x2, 0x0) openat(r1, &(0x7f0000000000)='./file0\x00', 0x0, 0x0) ioctl$LOOP_CHANGE_FD(r0, 0x4c06, r1) perf_event_open(&(0x7f0000001d80)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r2 = gettid() recvmmsg$unix(0xffffffffffffffff, &(0x7f0000001c80)=[{{&(0x7f0000000000)=@abs, 0x6e, &(0x7f00000004c0)=[{&(0x7f0000000080)=""/138, 0x8a}, {&(0x7f0000000140)}, {&(0x7f0000000180)=""/196, 0xc4}, {&(0x7f0000000280)=""/61, 0x3d}, {&(0x7f00000002c0)=""/165, 0xa5}, {&(0x7f0000000380)=""/41, 0x29}, {&(0x7f00000003c0)=""/18, 0x12}, {&(0x7f0000000400)=""/168, 0xa8}], 0x8, &(0x7f0000000540)=[@rights={{0x30, 0x1, 0x1, [0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff]}}, @cred={{0x1c}}, @cred={{0x1c}}, @rights={{0x10}}, @cred={{0x1c}}, @rights={{0x20, 0x1, 0x1, [0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff]}}], 0xc0}}, {{&(0x7f0000000680)=@abs, 0x6e, &(0x7f0000001800)=[{&(0x7f0000000700)=""/102, 0x66}, {&(0x7f0000000780)=""/4096, 0x1000}, {&(0x7f0000001780)=""/123, 0x7b}], 0x3, &(0x7f0000001840)=[@cred={{0x1c}}], 0x20}}, {{&(0x7f0000001880), 0x6e, &(0x7f0000001c40)=[{&(0x7f0000001900)=""/160, 0xa0}, {&(0x7f00000019c0)=""/216, 0xd8}, {&(0x7f0000001ac0)=""/231, 0xe7}, {&(0x7f0000001bc0)=""/74, 0x4a}], 0x4}}], 0x3, 0x0, 0x0) write$binfmt_elf64(r3, &(0x7f0000001e00)={{0x7f, 0x45, 0x4c, 0x46, 0x1, 0x9, 0x40, 0x1, 0x1000, 0x3, 0x3, 0xea25, 0xc, 0x40, 0x254, 0x4, 0x1c9d, 0x38, 0x1, 0x9, 0x0, 0x401}, [{0x4, 0x9, 0x1213, 0x0, 0x9, 0x0, 0x9, 0x4}], "8c60674786052301c04ca7ae616fcfb3775d7838fc510c17e69346c9b6f12cb0998ef0df14add347cf873a0cd66748cb39977f1c70cdbf408c5b5fbed707bc3b8af643013f9e3115c72ac809cfb22d0466fbacbd8b021f2e9119f5", ['\x00', '\x00', '\x00']}, 0x3d3) rt_sigqueueinfo(r2, 0x0, &(0x7f0000000600)) 23:36:49 executing program 0: r0 = add_key$keyring(&(0x7f0000000040), 0x0, 0x0, 0x0, 0xfffffffffffffffd) keyctl$KEYCTL_RESTRICT_KEYRING(0xf, r0, 0x0, 0x0) connect$inet(0xffffffffffffffff, &(0x7f0000000140)={0x2, 0x0, @dev}, 0x10) r1 = syz_open_dev$sg(&(0x7f0000000040), 0x0, 0x0) ioctl$BLKTRACETEARDOWN(r1, 0x1276, 0x0) ioctl$BLKTRACESETUP(r1, 0xc0481273, &(0x7f0000000140)={'\x00', 0x0, 0x4, 0x8, 0x76, 0x9}) 23:36:49 executing program 6: r0 = syz_open_dev$tty20(0xc, 0x4, 0x1) ioctl$VT_RESIZEX(r0, 0x560a, &(0x7f0000000000)={0x0, 0x0, 0xff7f, 0x0, 0x1d}) 23:36:49 executing program 1: perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = syz_io_uring_setup(0x3a75, &(0x7f0000000080), &(0x7f0000ffb000/0x3000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=0x0, &(0x7f0000000100)=0x0) r3 = socket$inet6_udplite(0xa, 0x2, 0x88) syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_RECVMSG={0xa, 0x0, 0x0, 0xffffffffffffffff, 0x0, &(0x7f0000000440)={0x0, 0x0, 0x0}, 0x0, 0x40000203}, 0x0) mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0) r4 = mmap$IORING_OFF_CQ_RING(&(0x7f0000ffe000/0x2000)=nil, 0x2000, 0xf, 0x13, r0, 0x8000000) syz_io_uring_submit(r4, r2, &(0x7f00000002c0)=@IORING_OP_READ=@pass_buffer={0x16, 0x4, 0x0, @fd, 0x0, 0x0}, 0x80000001) r5 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1) dup2(r5, r3) io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0) 23:36:49 executing program 2: perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r0 = syz_mount_image$vfat(&(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x0, 0x2, &(0x7f0000000180)=[{&(0x7f0000000140)="eb3c906d6b66732e66617400020801000470008400f8", 0x16}, {0x0, 0x0, 0x1000a00}], 0x0, &(0x7f0000000240)=ANY=[]) openat2(r0, &(0x7f0000000100)='./file0\x00', &(0x7f00000001c0)={0x40040}, 0x18) [ 1039.499769] FAT-fs (loop2): bogus number of FAT sectors [ 1039.501114] FAT-fs (loop2): Can't find a valid FAT filesystem 23:36:49 executing program 6: r0 = syz_open_dev$tty20(0xc, 0x4, 0x1) ioctl$VT_RESIZEX(r0, 0x560a, &(0x7f0000000000)={0x0, 0x0, 0x0, 0x0, 0x1d}) 23:36:49 executing program 7: perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_mount_image$vfat(&(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x0, 0x2, &(0x7f0000000180)=[{&(0x7f0000000140)="eb3c906d6b66732e66617400020801000470008400f801", 0x17}, {0x0, 0x0, 0x1000a00}], 0x0, &(0x7f0000000240)=ANY=[]) (fail_nth: 1) 23:36:49 executing program 1: perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = syz_io_uring_setup(0x3a75, &(0x7f0000000080), &(0x7f0000ffb000/0x3000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=0x0, &(0x7f0000000100)=0x0) r3 = socket$inet6_udplite(0xa, 0x2, 0x88) syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_RECVMSG={0xa, 0x0, 0x0, 0xffffffffffffffff, 0x0, &(0x7f0000000440)={0x0, 0x0, 0x0}, 0x0, 0x40000203}, 0x0) mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0) r4 = mmap$IORING_OFF_CQ_RING(&(0x7f0000ffe000/0x2000)=nil, 0x2000, 0xf, 0x13, r0, 0x8000000) syz_io_uring_submit(r4, r2, &(0x7f00000002c0)=@IORING_OP_READ=@pass_buffer={0x16, 0x4, 0x0, @fd, 0x0, 0x0}, 0x80000001) r5 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1) dup2(r5, r3) io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0) 23:36:49 executing program 4: perf_event_open(&(0x7f0000001d80)={0x2, 0x80, 0x69, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = socket$inet6_udp(0xa, 0x2, 0x0) dup(0xffffffffffffffff) fstat(0xffffffffffffffff, 0x0) connect$inet6(r0, &(0x7f0000000600)={0xa, 0x0, 0x0, @dev, 0x2}, 0x1c) sendmmsg$inet6(r0, 0x0, 0x0, 0x0) 23:36:49 executing program 3: r0 = syz_open_dev$tty1(0xc, 0x4, 0x1) writev(r0, &(0x7f0000000080)=[{&(0x7f0000001380)="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", 0x1ea}], 0x1) (fail_nth: 1) 23:36:49 executing program 0: add_key$keyring(&(0x7f0000000040), &(0x7f00000002c0)={'syz', 0x3}, 0x0, 0x0, 0xfffffffffffffffd) keyctl$KEYCTL_RESTRICT_KEYRING(0xf, 0x0, 0x0, 0x0) connect$inet(0xffffffffffffffff, &(0x7f0000000140)={0x2, 0x0, @dev}, 0x10) r0 = syz_open_dev$sg(&(0x7f0000000040), 0x0, 0x0) ioctl$BLKTRACETEARDOWN(r0, 0x1276, 0x0) ioctl$BLKTRACESETUP(r0, 0xc0481273, &(0x7f0000000140)={'\x00', 0x0, 0x4, 0x8, 0x76, 0x9}) [ 1039.607080] FAULT_INJECTION: forcing a failure. [ 1039.607080] name failslab, interval 1, probability 0, space 0, times 1 [ 1039.609584] CPU: 0 PID: 7355 Comm: syz-executor.7 Not tainted 5.10.194 #1 [ 1039.610988] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1039.612675] Call Trace: [ 1039.613250] dump_stack+0x107/0x167 [ 1039.614008] should_fail.cold+0x5/0xa 23:36:49 executing program 2: perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r0 = syz_mount_image$vfat(&(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x0, 0x2, &(0x7f0000000180)=[{&(0x7f0000000140)="eb3c906d6b66732e66617400020801000470008400f801", 0x17}, {0x0, 0x0, 0x1000a00}], 0x0, 0x0) openat2(r0, &(0x7f0000000100)='./file0\x00', &(0x7f00000001c0)={0x40040}, 0x18) [ 1039.614799] ? __do_sys_memfd_create+0xfb/0x450 [ 1039.615835] should_failslab+0x5/0x20 [ 1039.616637] __kmalloc+0x72/0x390 [ 1039.617381] __do_sys_memfd_create+0xfb/0x450 [ 1039.618316] ? ksys_write+0x1a9/0x260 [ 1039.619118] ? memfd_file_seals_ptr+0x170/0x170 [ 1039.620094] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1039.621206] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1039.622292] do_syscall_64+0x33/0x40 [ 1039.623081] entry_SYSCALL_64_after_hwframe+0x62/0xc7 [ 1039.624143] RIP: 0033:0x7f4966db8b19 [ 1039.624919] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1039.628612] FAULT_INJECTION: forcing a failure. [ 1039.628612] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 1039.628704] RSP: 002b:00007f496432df48 EFLAGS: 00000246 ORIG_RAX: 000000000000013f [ 1039.632543] RAX: ffffffffffffffda RBX: 0000000020000180 RCX: 00007f4966db8b19 [ 1039.634007] RDX: 0000000002001400 RSI: 0000000000000000 RDI: 00007f4966e120fb [ 1039.635472] RBP: 0000000000000002 R08: 0000000001000a00 R09: ffffffffffffffff [ 1039.636936] R10: 0000000000000002 R11: 0000000000000246 R12: 0000000008100000 [ 1039.638395] R13: 00000000200000c0 R14: 0000000002001400 R15: 0000000020000240 [ 1039.639903] CPU: 1 PID: 7357 Comm: syz-executor.3 Not tainted 5.10.194 #1 [ 1039.641336] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1039.642991] Call Trace: [ 1039.643524] dump_stack+0x107/0x167 [ 1039.644256] should_fail.cold+0x5/0xa [ 1039.645043] _copy_from_user+0x2e/0x1b0 [ 1039.645846] iovec_from_user+0x141/0x400 [ 1039.646665] __import_iovec+0x67/0x590 [ 1039.647444] ? perf_trace_lock+0xac/0x490 [ 1039.648276] ? __lockdep_reset_lock+0x180/0x180 [ 1039.649234] import_iovec+0x83/0xb0 [ 1039.649970] vfs_writev+0xc1/0x620 [ 1039.650695] ? vfs_iter_write+0xa0/0xa0 [ 1039.651488] ? __fget_files+0x26d/0x4c0 [ 1039.652299] ? lock_downgrade+0x6d0/0x6d0 [ 1039.653141] ? find_held_lock+0x2c/0x110 [ 1039.653977] ? __fget_files+0x296/0x4c0 [ 1039.654784] ? __fget_light+0xea/0x290 [ 1039.655568] do_writev+0x139/0x300 [ 1039.656280] ? vfs_writev+0x620/0x620 [ 1039.657074] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1039.658129] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1039.658153] do_syscall_64+0x33/0x40 [ 1039.658174] entry_SYSCALL_64_after_hwframe+0x62/0xc7 [ 1039.658186] RIP: 0033:0x7f335ed33b19 [ 1039.658204] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1039.658213] RSP: 002b:00007f335c2a9188 EFLAGS: 00000246 ORIG_RAX: 0000000000000014 [ 1039.658232] RAX: ffffffffffffffda RBX: 00007f335ee46f60 RCX: 00007f335ed33b19 [ 1039.658243] RDX: 0000000000000001 RSI: 0000000020000080 RDI: 0000000000000003 [ 1039.658253] RBP: 00007f335c2a91d0 R08: 0000000000000000 R09: 0000000000000000 [ 1039.658263] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 23:36:49 executing program 5: perf_event_open(&(0x7f0000001d80)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = gettid() rt_sigqueueinfo(r0, 0x0, &(0x7f0000000600)) r1 = syz_mount_image$tmpfs(&(0x7f0000000000), &(0x7f0000000080)='./file0\x00', 0x0, 0x0, 0x0, 0x0, &(0x7f0000000600)=ANY=[]) mknodat$loop(r1, &(0x7f0000000040)='./file0\x00', 0x1000, 0x0) r2 = openat(r1, &(0x7f0000000140)='./file0\x00', 0x2, 0x0) openat(r1, &(0x7f0000000000)='./file0\x00', 0x0, 0x0) r3 = syz_mount_image$tmpfs(&(0x7f0000000000), &(0x7f0000000080)='./file0\x00', 0x0, 0x0, 0x0, 0x0, &(0x7f0000000600)=ANY=[]) mknodat$loop(r3, &(0x7f0000000300)='./file0\x00', 0x1000, 0x0) openat(r3, &(0x7f0000000140)='./file0\x00', 0x2, 0x0) openat(r3, &(0x7f0000000000)='./file0\x00', 0x0, 0x0) r4 = syz_mount_image$tmpfs(&(0x7f0000000000), &(0x7f0000000080)='./file0\x00', 0x0, 0x0, 0x0, 0x0, &(0x7f0000000680)=ANY=[@ANYRES16=r2, @ANYBLOB="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", @ANYRESDEC=r3]) perf_event_open(&(0x7f00000000c0)={0x0, 0x80, 0xc0, 0x8, 0x3, 0x80, 0x0, 0x8, 0x5110, 0x6, 0x0, 0x1, 0x0, 0x0, 0x1, 0x0, 0x0, 0x1, 0x1, 0x1, 0x0, 0x1, 0x0, 0x0, 0x0, 0x3, 0x1, 0x0, 0x0, 0x1, 0x1, 0x0, 0x0, 0x1, 0x1, 0x0, 0x0, 0x1, 0x1, 0x1, 0x1, 0x0, 0x1, 0x1, 0x0, 0x0, 0x1, 0x0, 0x7a, 0x4, @perf_config_ext={0x2, 0x1f}, 0x1000, 0x6, 0x7, 0x6, 0x1, 0x82, 0x581d, 0x0, 0xbd, 0x0, 0x40}, r0, 0x2, 0xffffffffffffffff, 0x0) r5 = openat$hpet(0xffffffffffffff9c, &(0x7f00000001c0), 0x400, 0x0) read$eventfd(r5, 0x0, 0x0) setsockopt$sock_int(r5, 0x1, 0x6, &(0x7f0000000180)=0x7, 0x4) mknodat$loop(r4, &(0x7f0000000300)='./file0\x00', 0x1000, 0x0) openat(r4, &(0x7f0000000140)='./file0\x00', 0x2, 0x0) openat(r4, &(0x7f0000000000)='./file0\x00', 0x0, 0x0) sendfile(r1, r4, &(0x7f0000000000)=0x6, 0x9) [ 1039.658274] R13: 00007ffde5ce04cf R14: 00007f335c2a9300 R15: 0000000000022000 23:36:49 executing program 4: perf_event_open(&(0x7f0000001d80)={0x2, 0x80, 0x69, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = socket$inet6_udp(0xa, 0x2, 0x0) dup(0xffffffffffffffff) fstat(0xffffffffffffffff, 0x0) connect$inet6(r0, &(0x7f0000000600)={0xa, 0x0, 0x0, @dev, 0x2}, 0x1c) sendmmsg$inet6(r0, 0x0, 0x0, 0x0) 23:36:49 executing program 3: r0 = syz_open_dev$tty1(0xc, 0x4, 0x1) writev(r0, &(0x7f0000000080)=[{&(0x7f0000001380)="3ead823d27b1f38d16b83fca92a1f8f4a79624a264eb3d23f624cb63a9a475c4336e3015462fa8b76b1c5fb9b159eaa406698e2f3dcd71c5ba4e666731496d8ddd1bbaae50714c9ccdc53444b41f6df995ce4a1e6b9807bce8fa3e046360e5d1b228a3367e2315a985fcf8542b6a2e58eff19d99aa1de724345dd5786c63d31c197c760ac73dc10c91fcf49125d4dd5e1d4c952eeabf70f80b092c914e00cd0e75bdea96065d75447e5e2917619f3d3e2662b99fac83e65ca6fb6fc547ce903e960595bafc4990dfa6263d2dd2268b3f6f3df3b1603e198bc4011a4b1c43c686ff811d9a346aabe8c9f33c2c5e0ab15e288917c0de80a9d49e72e1efc8db344b3a715702fd03a0e9e2387cc5032967d44d8b3b68383f6c89c842ec2eadc06d1e5133067d6b3f11647561748b7d4185cab428d5fbf98ea4100f2276af2fec68da7e57d65c185e261b6790c65ebb5f98cb027d065d424a65705b15be6eda2b4ba4f6a337f711fc7088d216cb59a744bc5a0d0f059b11d6d7c0784065277076525027223b82fdcc899b2de92a710082edf89a57c0bf416899d2f8ad2cad43e5018b52025096784ecd82a29c00a8bf5ffa6e3b75fe641acf39885c084ae7e546f04224aeb23f61d99fc464a533fc6b87790e335057b54dbff233ced4a7ef90884dc7d90d678cc080024b9b4a", 0x1ea}], 0x1) (fail_nth: 2) [ 1039.809759] tmpfs: Unknown parameter '' [ 1039.834306] FAULT_INJECTION: forcing a failure. [ 1039.834306] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 1039.837093] CPU: 0 PID: 7374 Comm: syz-executor.3 Not tainted 5.10.194 #1 [ 1039.838492] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1039.840186] Call Trace: [ 1039.840739] dump_stack+0x107/0x167 [ 1039.841498] should_fail.cold+0x5/0xa [ 1039.842288] _copy_from_iter+0x202/0xe80 [ 1039.843130] ? __check_object_size+0x319/0x440 [ 1039.844073] file_tty_write.constprop.0+0x4d5/0x910 [ 1039.845120] ? n_tty_receive_char_lnext+0x6f0/0x6f0 [ 1039.846147] do_iter_readv_writev+0x476/0x750 [ 1039.847063] ? new_sync_write+0x660/0x660 [ 1039.847901] ? selinux_file_permission+0x92/0x520 [ 1039.848905] do_iter_write+0x191/0x670 [ 1039.849734] ? import_iovec+0x83/0xb0 [ 1039.850517] vfs_writev+0x1ae/0x620 [ 1039.851259] ? vfs_iter_write+0xa0/0xa0 [ 1039.852064] ? __fget_files+0x26d/0x4c0 [ 1039.852875] ? lock_downgrade+0x6d0/0x6d0 [ 1039.853732] ? find_held_lock+0x2c/0x110 [ 1039.854571] ? __fget_files+0x296/0x4c0 [ 1039.855391] ? __fget_light+0xea/0x290 [ 1039.856187] do_writev+0x139/0x300 [ 1039.856910] ? vfs_writev+0x620/0x620 [ 1039.857696] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1039.858764] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1039.859815] do_syscall_64+0x33/0x40 [ 1039.860574] entry_SYSCALL_64_after_hwframe+0x62/0xc7 [ 1039.861617] RIP: 0033:0x7f335ed33b19 [ 1039.862374] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1039.866118] RSP: 002b:00007f335c2a9188 EFLAGS: 00000246 ORIG_RAX: 0000000000000014 [ 1039.867668] RAX: ffffffffffffffda RBX: 00007f335ee46f60 RCX: 00007f335ed33b19 [ 1039.869121] RDX: 0000000000000001 RSI: 0000000020000080 RDI: 0000000000000003 [ 1039.870565] RBP: 00007f335c2a91d0 R08: 0000000000000000 R09: 0000000000000000 [ 1039.872007] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 1039.873459] R13: 00007ffde5ce04cf R14: 00007f335c2a9300 R15: 0000000000022000 [ 1039.907052] tmpfs: Unknown parameter '' 23:37:04 executing program 3: r0 = syz_open_dev$tty1(0xc, 0x4, 0x1) writev(r0, &(0x7f0000000080)=[{&(0x7f0000001380)="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", 0x1ea}], 0x1) (fail_nth: 3) 23:37:04 executing program 1: perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = syz_io_uring_setup(0x3a75, &(0x7f0000000080), &(0x7f0000ffb000/0x3000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=0x0, &(0x7f0000000100)=0x0) r3 = socket$inet6_udplite(0xa, 0x2, 0x88) syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_RECVMSG={0xa, 0x0, 0x0, 0xffffffffffffffff, 0x0, &(0x7f0000000440)={0x0, 0x0, 0x0}, 0x0, 0x40000203}, 0x0) mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0) r4 = mmap$IORING_OFF_CQ_RING(&(0x7f0000ffe000/0x2000)=nil, 0x2000, 0xf, 0x13, r0, 0x8000000) syz_io_uring_submit(r4, r2, &(0x7f00000002c0)=@IORING_OP_READ=@pass_buffer={0x16, 0x4, 0x0, @fd, 0x0, 0x0}, 0x80000001) r5 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1) dup2(r5, r3) io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0) 23:37:04 executing program 5: perf_event_open(&(0x7f0000001d80)={0x2, 0x80, 0x73, 0x0, 0x0, 0x0, 0x0, 0x40000, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x0, 0xffffffffffff65a0}, 0x0, 0x2, 0xffffffffffffffff, 0xe) r0 = gettid() rt_sigqueueinfo(r0, 0x0, &(0x7f0000000600)={0x0, 0x0, 0x800000}) 23:37:04 executing program 0: add_key$keyring(&(0x7f0000000040), &(0x7f00000002c0)={'syz', 0x3}, 0x0, 0x0, 0xfffffffffffffffd) keyctl$KEYCTL_RESTRICT_KEYRING(0xf, 0x0, 0x0, 0x0) connect$inet(0xffffffffffffffff, &(0x7f0000000140)={0x2, 0x0, @dev}, 0x10) r0 = syz_open_dev$sg(&(0x7f0000000040), 0x0, 0x0) ioctl$BLKTRACETEARDOWN(r0, 0x1276, 0x0) ioctl$BLKTRACESETUP(r0, 0xc0481273, &(0x7f0000000140)={'\x00', 0x0, 0x4, 0x8, 0x76, 0x9}) 23:37:04 executing program 2: perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r0 = syz_mount_image$vfat(&(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x0, 0x2, &(0x7f0000000180)=[{&(0x7f0000000140)="eb3c906d6b66732e66617400020801000470008400f801", 0x17}, {0x0, 0x0, 0x1000a00}], 0x0, 0x0) openat2(r0, &(0x7f0000000100)='./file0\x00', &(0x7f00000001c0)={0x40040}, 0x18) 23:37:04 executing program 6: r0 = syz_open_dev$tty20(0xc, 0x4, 0x1) ioctl$VT_RESIZEX(r0, 0x560a, &(0x7f0000000000)={0x0, 0x0, 0x0, 0x454, 0x1d}) 23:37:04 executing program 7: perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_mount_image$vfat(&(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x0, 0x2, &(0x7f0000000180)=[{&(0x7f0000000140)="eb3c906d6b66732e66617400020801000470008400f801", 0x17}, {0x0, 0x0, 0x1000a00}], 0x0, &(0x7f0000000240)=ANY=[]) (fail_nth: 2) 23:37:04 executing program 4: perf_event_open(&(0x7f0000001d80)={0x2, 0x80, 0x69, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = socket$inet6_udp(0xa, 0x2, 0x0) dup(0xffffffffffffffff) fstat(0xffffffffffffffff, 0x0) connect$inet6(r0, &(0x7f0000000600)={0xa, 0x0, 0x0, @dev, 0x2}, 0x1c) sendmmsg$inet6(r0, &(0x7f0000000080), 0x0, 0x0) 23:37:04 executing program 6: r0 = syz_open_dev$tty20(0xc, 0x4, 0x1) ioctl$VT_RESIZEX(r0, 0x560a, &(0x7f0000000000)={0x0, 0x0, 0x0, 0x2000, 0x1d}) 23:37:04 executing program 4: perf_event_open(&(0x7f0000001d80)={0x2, 0x80, 0x69, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = socket$inet6_udp(0xa, 0x2, 0x0) dup(0xffffffffffffffff) fstat(0xffffffffffffffff, 0x0) connect$inet6(r0, &(0x7f0000000600)={0xa, 0x0, 0x0, @dev, 0x2}, 0x1c) sendmmsg$inet6(r0, &(0x7f0000000080), 0x0, 0x0) 23:37:04 executing program 2: perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r0 = syz_mount_image$vfat(&(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x0, 0x2, &(0x7f0000000180)=[{&(0x7f0000000140)="eb3c906d6b66732e66617400020801000470008400f801", 0x17}, {0x0, 0x0, 0x1000a00}], 0x0, 0x0) openat2(r0, &(0x7f0000000100)='./file0\x00', &(0x7f00000001c0)={0x40040}, 0x18) 23:37:04 executing program 5: perf_event_open(&(0x7f0000001d80)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = gettid() r1 = gettid() rt_sigqueueinfo(r1, 0x0, &(0x7f0000000600)={0x2f, 0x0, 0x82}) rt_tgsigqueueinfo(r0, r1, 0x26, &(0x7f0000000000)={0x25, 0xfff, 0x8a27}) rt_sigqueueinfo(r0, 0x0, &(0x7f0000000600)) 23:37:04 executing program 7: perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_mount_image$vfat(&(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x0, 0x2, &(0x7f0000000180)=[{&(0x7f0000000140)="eb3c906d6b66732e66617400020801000470008400f801", 0x17}, {0x0, 0x0, 0x1000a00}], 0x0, &(0x7f0000000240)=ANY=[]) (fail_nth: 3) 23:37:04 executing program 1: perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = syz_io_uring_setup(0x3a75, &(0x7f0000000080), &(0x7f0000ffb000/0x3000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=0x0, &(0x7f0000000100)=0x0) r3 = socket$inet6_udplite(0xa, 0x2, 0x88) syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_RECVMSG={0xa, 0x0, 0x0, r3, 0x0, 0x0, 0x0, 0x40000203}, 0x0) mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0) r4 = mmap$IORING_OFF_CQ_RING(&(0x7f0000ffe000/0x2000)=nil, 0x2000, 0xf, 0x13, r0, 0x8000000) syz_io_uring_submit(r4, r2, &(0x7f00000002c0)=@IORING_OP_READ=@pass_buffer={0x16, 0x4, 0x0, @fd, 0x0, 0x0}, 0x80000001) r5 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1) dup2(r5, r3) io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0) 23:37:04 executing program 0: add_key$keyring(&(0x7f0000000040), &(0x7f00000002c0)={'syz', 0x3}, 0x0, 0x0, 0xfffffffffffffffd) keyctl$KEYCTL_RESTRICT_KEYRING(0xf, 0x0, 0x0, 0x0) connect$inet(0xffffffffffffffff, &(0x7f0000000140)={0x2, 0x0, @dev}, 0x10) r0 = syz_open_dev$sg(&(0x7f0000000040), 0x0, 0x0) ioctl$BLKTRACETEARDOWN(r0, 0x1276, 0x0) ioctl$BLKTRACESETUP(r0, 0xc0481273, &(0x7f0000000140)={'\x00', 0x0, 0x4, 0x8, 0x76, 0x9}) [ 1054.439016] FAULT_INJECTION: forcing a failure. [ 1054.439016] name failslab, interval 1, probability 0, space 0, times 0 [ 1054.439040] CPU: 0 PID: 7402 Comm: syz-executor.7 Not tainted 5.10.194 #1 [ 1054.439052] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1054.439060] Call Trace: [ 1054.439090] dump_stack+0x107/0x167 [ 1054.439122] should_fail.cold+0x5/0xa [ 1054.439148] ? create_object.isra.0+0x3a/0xa20 [ 1054.439175] should_failslab+0x5/0x20 [ 1054.439196] kmem_cache_alloc+0x5b/0x310 [ 1054.439233] create_object.isra.0+0x3a/0xa20 [ 1054.439260] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 23:37:04 executing program 4: perf_event_open(&(0x7f0000001d80)={0x2, 0x80, 0x69, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = socket$inet6_udp(0xa, 0x2, 0x0) dup(0xffffffffffffffff) fstat(0xffffffffffffffff, 0x0) connect$inet6(r0, &(0x7f0000000600)={0xa, 0x0, 0x0, @dev, 0x2}, 0x1c) sendmmsg$inet6(r0, &(0x7f0000000080), 0x0, 0x0) [ 1054.439293] __kmalloc+0x16e/0x390 [ 1054.439330] __do_sys_memfd_create+0xfb/0x450 [ 1054.439352] ? ksys_write+0x1a9/0x260 [ 1054.439374] ? memfd_file_seals_ptr+0x170/0x170 [ 1054.439407] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1054.439428] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1054.439463] do_syscall_64+0x33/0x40 [ 1054.439487] entry_SYSCALL_64_after_hwframe+0x62/0xc7 [ 1054.439502] RIP: 0033:0x7f4966db8b19 [ 1054.439522] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1054.439535] RSP: 002b:00007f496432df48 EFLAGS: 00000246 ORIG_RAX: 000000000000013f [ 1054.439560] RAX: ffffffffffffffda RBX: 0000000020000180 RCX: 00007f4966db8b19 [ 1054.439573] RDX: 0000000002001400 RSI: 0000000000000000 RDI: 00007f4966e120fb [ 1054.439586] RBP: 0000000000000002 R08: 0000000001000a00 R09: ffffffffffffffff [ 1054.439599] R10: 0000000000000002 R11: 0000000000000246 R12: 0000000008100000 [ 1054.439612] R13: 00000000200000c0 R14: 0000000002001400 R15: 0000000020000240 [ 1054.651079] FAULT_INJECTION: forcing a failure. [ 1054.651079] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 1054.652433] CPU: 1 PID: 7393 Comm: syz-executor.3 Not tainted 5.10.194 #1 [ 1054.652759] FAULT_INJECTION: forcing a failure. [ 1054.652759] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 1054.653192] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1054.653196] Call Trace: [ 1054.653216] dump_stack+0x107/0x167 [ 1054.653237] should_fail.cold+0x5/0xa [ 1054.657720] _copy_to_user+0x2e/0x180 [ 1054.658132] simple_read_from_buffer+0xcc/0x160 [ 1054.658636] proc_fail_nth_read+0x198/0x230 [ 1054.659096] ? proc_sessionid_read+0x230/0x230 [ 1054.659584] ? security_file_permission+0x24e/0x570 [ 1054.660115] ? perf_trace_initcall_start+0x101/0x380 [ 1054.660660] ? proc_sessionid_read+0x230/0x230 [ 1054.661152] vfs_read+0x228/0x580 [ 1054.661530] ksys_read+0x12d/0x260 [ 1054.661915] ? vfs_write+0xa70/0xa70 [ 1054.662326] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1054.662899] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1054.663470] do_syscall_64+0x33/0x40 [ 1054.663875] entry_SYSCALL_64_after_hwframe+0x62/0xc7 [ 1054.664439] RIP: 0033:0x7f335ece669c [ 1054.664843] Code: ec 28 48 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 f9 fc ff ff 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 31 c0 0f 05 <48> 3d 00 f0 ff ff 77 34 44 89 c7 48 89 44 24 08 e8 2f fd ff ff 48 [ 1054.666805] RSP: 002b:00007f335c2a9170 EFLAGS: 00000246 ORIG_RAX: 0000000000000000 [ 1054.667648] RAX: ffffffffffffffda RBX: 00000000000001ea RCX: 00007f335ece669c [ 1054.668426] RDX: 000000000000000f RSI: 00007f335c2a91e0 RDI: 0000000000000004 [ 1054.669214] RBP: 00007f335c2a91d0 R08: 0000000000000000 R09: 0000000000000000 [ 1054.669985] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 1054.670756] R13: 00007ffde5ce04cf R14: 00007f335c2a9300 R15: 0000000000022000 [ 1054.671544] CPU: 0 PID: 7427 Comm: syz-executor.7 Not tainted 5.10.194 #1 [ 1054.673057] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1054.674898] Call Trace: [ 1054.675487] dump_stack+0x107/0x167 [ 1054.676302] should_fail.cold+0x5/0xa [ 1054.677163] _copy_from_user+0x2e/0x1b0 [ 1054.678056] __do_sys_memfd_create+0x16d/0x450 [ 1054.679067] ? memfd_file_seals_ptr+0x170/0x170 [ 1054.680099] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1054.681259] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1054.682401] do_syscall_64+0x33/0x40 [ 1054.683228] entry_SYSCALL_64_after_hwframe+0x62/0xc7 [ 1054.684349] RIP: 0033:0x7f4966db8b19 [ 1054.685181] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1054.689194] RSP: 002b:00007f496432df48 EFLAGS: 00000246 ORIG_RAX: 000000000000013f [ 1054.690862] RAX: ffffffffffffffda RBX: 0000000020000180 RCX: 00007f4966db8b19 [ 1054.692420] RDX: 0000000002001400 RSI: 0000000000000000 RDI: 00007f4966e120fb [ 1054.693986] RBP: 0000000000000002 R08: 0000000001000a00 R09: ffffffffffffffff [ 1054.695546] R10: 0000000000000002 R11: 0000000000000246 R12: 0000000008100000 [ 1054.697137] R13: 00000000200000c0 R14: 0000000002001400 R15: 0000000020000240 [ 1068.375119] FAULT_INJECTION: forcing a failure. 23:37:18 executing program 4: perf_event_open(&(0x7f0000001d80)={0x2, 0x80, 0x69, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = socket$inet6_udp(0xa, 0x2, 0x0) dup(0xffffffffffffffff) fstat(0xffffffffffffffff, 0x0) connect$inet6(r0, &(0x7f0000000600)={0xa, 0x0, 0x0, @dev, 0x2}, 0x1c) sendmmsg$inet6(r0, &(0x7f0000000080)=[{{0x0, 0x0, 0x0}}], 0x1, 0x0) 23:37:18 executing program 5: perf_event_open(&(0x7f0000001d80)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = gettid() rt_sigqueueinfo(r0, 0x0, &(0x7f0000000600)) rt_sigtimedwait(&(0x7f0000000000)={[0x80000001]}, &(0x7f0000000040), &(0x7f00000000c0), 0x8) 23:37:18 executing program 7: perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_mount_image$vfat(&(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x0, 0x2, &(0x7f0000000180)=[{&(0x7f0000000140)="eb3c906d6b66732e66617400020801000470008400f801", 0x17}, {0x0, 0x0, 0x1000a00}], 0x0, &(0x7f0000000240)=ANY=[]) (fail_nth: 4) 23:37:18 executing program 2: perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) syz_mount_image$vfat(&(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x0, 0x2, &(0x7f0000000180)=[{&(0x7f0000000140)="eb3c906d6b66732e66617400020801000470008400f801", 0x17}, {0x0, 0x0, 0x1000a00}], 0x0, &(0x7f0000000240)=ANY=[]) openat2(0xffffffffffffffff, &(0x7f0000000100)='./file0\x00', &(0x7f00000001c0)={0x40040}, 0x18) 23:37:18 executing program 0: r0 = add_key$keyring(&(0x7f0000000040), &(0x7f00000002c0)={'syz', 0x3}, 0x0, 0x0, 0xfffffffffffffffd) keyctl$KEYCTL_RESTRICT_KEYRING(0xf, r0, 0x0, 0x0) connect$inet(0xffffffffffffffff, 0x0, 0x0) r1 = syz_open_dev$sg(&(0x7f0000000040), 0x0, 0x0) ioctl$BLKTRACETEARDOWN(r1, 0x1276, 0x0) ioctl$BLKTRACESETUP(r1, 0xc0481273, &(0x7f0000000140)={'\x00', 0x0, 0x4, 0x8, 0x76, 0x9}) 23:37:18 executing program 1: perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = syz_io_uring_setup(0x3a75, &(0x7f0000000080), &(0x7f0000ffb000/0x3000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=0x0, &(0x7f0000000100)=0x0) r3 = socket$inet6_udplite(0xa, 0x2, 0x88) syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_RECVMSG={0xa, 0x0, 0x0, r3, 0x0, 0x0, 0x0, 0x40000203}, 0x0) mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0) r4 = mmap$IORING_OFF_CQ_RING(&(0x7f0000ffe000/0x2000)=nil, 0x2000, 0xf, 0x13, r0, 0x8000000) syz_io_uring_submit(r4, r2, &(0x7f00000002c0)=@IORING_OP_READ=@pass_buffer={0x16, 0x4, 0x0, @fd, 0x0, 0x0}, 0x80000001) r5 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1) dup2(r5, r3) io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0) 23:37:18 executing program 3: r0 = syz_open_dev$tty1(0xc, 0x4, 0x1) writev(r0, &(0x7f0000000080)=[{&(0x7f0000001380)="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", 0x1ea}], 0x1) 23:37:18 executing program 6: r0 = syz_open_dev$tty20(0xc, 0x4, 0x1) ioctl$VT_RESIZEX(r0, 0x560a, &(0x7f0000000000)={0x0, 0x0, 0x0, 0x5404, 0x1d}) [ 1068.375119] name failslab, interval 1, probability 0, space 0, times 0 [ 1068.377992] CPU: 1 PID: 7438 Comm: syz-executor.7 Not tainted 5.10.194 #1 [ 1068.378006] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1068.378013] Call Trace: [ 1068.378045] dump_stack+0x107/0x167 [ 1068.378074] should_fail.cold+0x5/0xa [ 1068.378100] ? shmem_alloc_inode+0x18/0x40 [ 1068.378125] should_failslab+0x5/0x20 [ 1068.378146] kmem_cache_alloc+0x5b/0x310 [ 1068.378173] ? shmem_destroy_inode+0x70/0x70 [ 1068.378196] shmem_alloc_inode+0x18/0x40 [ 1068.378217] ? shmem_destroy_inode+0x70/0x70 [ 1068.378234] alloc_inode+0x63/0x240 [ 1068.378254] new_inode+0x23/0x250 [ 1068.378287] shmem_get_inode+0x15e/0xbc0 [ 1068.378322] __shmem_file_setup+0xb8/0x320 23:37:18 executing program 4: perf_event_open(&(0x7f0000001d80)={0x2, 0x80, 0x69, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = socket$inet6_udp(0xa, 0x2, 0x0) dup(0xffffffffffffffff) fstat(0xffffffffffffffff, 0x0) connect$inet6(r0, &(0x7f0000000600)={0xa, 0x0, 0x0, @dev, 0x2}, 0x1c) sendmmsg$inet6(r0, &(0x7f0000000080)=[{{0x0, 0x0, 0x0}}], 0x1, 0x0) [ 1068.378345] ? _copy_from_user+0xfb/0x1b0 [ 1068.378371] __do_sys_memfd_create+0x275/0x450 [ 1068.378395] ? memfd_file_seals_ptr+0x170/0x170 [ 1068.378425] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1068.378446] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1068.378475] do_syscall_64+0x33/0x40 [ 1068.378500] entry_SYSCALL_64_after_hwframe+0x62/0xc7 [ 1068.378515] RIP: 0033:0x7f4966db8b19 [ 1068.378538] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1068.378550] RSP: 002b:00007f496432df48 EFLAGS: 00000246 ORIG_RAX: 000000000000013f [ 1068.378575] RAX: ffffffffffffffda RBX: 0000000020000180 RCX: 00007f4966db8b19 [ 1068.378588] RDX: 0000000002001400 RSI: 0000000000000000 RDI: 00007f4966e120fb [ 1068.378601] RBP: 0000000000000002 R08: 0000000001000a00 R09: ffffffffffffffff [ 1068.378614] R10: 0000000000000002 R11: 0000000000000246 R12: 0000000008100000 [ 1068.378627] R13: 00000000200000c0 R14: 0000000002001400 R15: 0000000020000240 23:37:18 executing program 5: r0 = perf_event_open(&(0x7f0000001d80)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) perf_event_open(&(0x7f0000000040)={0x5, 0x80, 0x54, 0x80, 0x9, 0xe4, 0x0, 0x1, 0x8102, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x0, 0x1, 0x1, 0x1, 0x0, 0x0, 0x1, 0x1, 0x1, 0x0, 0x0, 0x1, 0x0, 0x1, 0x1, 0x1, 0x0, 0x0, 0x1, 0x0, 0x1, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, @perf_bp={&(0x7f0000000000), 0x5}, 0x10000, 0x101, 0x0, 0x3, 0x7, 0xfffffff8, 0x120, 0x0, 0xc7, 0x0, 0x3}, 0x0, 0x6, r0, 0x9) r1 = gettid() ioctl$TIOCGPGRP(0xffffffffffffffff, 0x540f, &(0x7f0000000180)=0x0) perf_event_open(&(0x7f0000000100)={0x1, 0x80, 0xff, 0x0, 0x8, 0x9, 0x0, 0x0, 0x80024, 0xa, 0x1, 0x0, 0x1, 0x0, 0x1, 0x1, 0x1, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x2, 0x1, 0x0, 0x1, 0x1, 0x1, 0x1, 0x1, 0x1, 0x0, 0x1, 0x1, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x1, 0x0, 0x1, 0x1, 0x0, 0x0, 0x4, @perf_bp={&(0x7f00000000c0), 0x4}, 0x102, 0x57, 0x8, 0x4, 0x3, 0x6a0, 0x5, 0x0, 0x8, 0x0, 0x10001}, r2, 0x2, r0, 0xa) rt_sigqueueinfo(r1, 0x0, &(0x7f0000000600)) 23:37:18 executing program 7: perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_mount_image$vfat(&(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x0, 0x2, &(0x7f0000000180)=[{&(0x7f0000000140)="eb3c906d6b66732e66617400020801000470008400f801", 0x17}, {0x0, 0x0, 0x1000a00}], 0x0, &(0x7f0000000240)=ANY=[]) (fail_nth: 5) [ 1068.524261] FAULT_INJECTION: forcing a failure. [ 1068.524261] name failslab, interval 1, probability 0, space 0, times 0 [ 1068.525676] CPU: 0 PID: 7460 Comm: syz-executor.7 Not tainted 5.10.194 #1 [ 1068.526425] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1068.527331] Call Trace: [ 1068.527635] dump_stack+0x107/0x167 [ 1068.528042] should_fail.cold+0x5/0xa [ 1068.528466] ? create_object.isra.0+0x3a/0xa20 [ 1068.528978] should_failslab+0x5/0x20 [ 1068.529416] kmem_cache_alloc+0x5b/0x310 [ 1068.529868] create_object.isra.0+0x3a/0xa20 [ 1068.530356] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 1068.530929] kmem_cache_alloc+0x159/0x310 [ 1068.531395] ? shmem_destroy_inode+0x70/0x70 [ 1068.531880] shmem_alloc_inode+0x18/0x40 [ 1068.532330] ? shmem_destroy_inode+0x70/0x70 [ 1068.532816] alloc_inode+0x63/0x240 [ 1068.533224] new_inode+0x23/0x250 [ 1068.533626] shmem_get_inode+0x15e/0xbc0 [ 1068.534079] __shmem_file_setup+0xb8/0x320 [ 1068.534550] ? _copy_from_user+0xfb/0x1b0 [ 1068.535008] __do_sys_memfd_create+0x275/0x450 [ 1068.535516] ? memfd_file_seals_ptr+0x170/0x170 [ 1068.536039] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1068.536614] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1068.537181] do_syscall_64+0x33/0x40 [ 1068.537609] entry_SYSCALL_64_after_hwframe+0x62/0xc7 [ 1068.538170] RIP: 0033:0x7f4966db8b19 [ 1068.538577] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1068.540599] RSP: 002b:00007f496432df48 EFLAGS: 00000246 ORIG_RAX: 000000000000013f [ 1068.541443] RAX: ffffffffffffffda RBX: 0000000020000180 RCX: 00007f4966db8b19 [ 1068.542223] RDX: 0000000002001400 RSI: 0000000000000000 RDI: 00007f4966e120fb [ 1068.543006] RBP: 0000000000000002 R08: 0000000001000a00 R09: ffffffffffffffff [ 1068.543780] R10: 0000000000000002 R11: 0000000000000246 R12: 0000000008100000 [ 1068.544556] R13: 00000000200000c0 R14: 0000000002001400 R15: 0000000020000240 23:37:18 executing program 5: r0 = syz_open_dev$ptys(0xc, 0x3, 0x0) fadvise64(r0, 0x2, 0xfffffffffffffffb, 0x4) ioctl$CDROMREADMODE1(0xffffffffffffffff, 0x530d, &(0x7f0000000680)={0x1, 0x8, 0x75, 0xbc, 0xf4, 0xb}) r1 = gettid() rt_sigqueueinfo(r1, 0x0, &(0x7f0000000600)) 23:37:18 executing program 3: r0 = syz_open_dev$tty1(0xc, 0x4, 0x1) writev(r0, &(0x7f0000000080)=[{&(0x7f0000001380)="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", 0x1ea}], 0x1) 23:37:18 executing program 6: r0 = syz_open_dev$tty20(0xc, 0x4, 0x1) ioctl$VT_RESIZEX(r0, 0x560a, &(0x7f0000000000)={0x0, 0x0, 0x0, 0xff7f, 0x1d}) 23:37:18 executing program 4: perf_event_open(&(0x7f0000001d80)={0x2, 0x80, 0x69, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = socket$inet6_udp(0xa, 0x2, 0x0) dup(0xffffffffffffffff) fstat(0xffffffffffffffff, 0x0) connect$inet6(r0, &(0x7f0000000600)={0xa, 0x0, 0x0, @dev, 0x2}, 0x1c) sendmmsg$inet6(r0, &(0x7f0000000080)=[{{0x0, 0x0, 0x0}}], 0x1, 0x0) 23:37:18 executing program 0: r0 = add_key$keyring(&(0x7f0000000040), &(0x7f00000002c0)={'syz', 0x3}, 0x0, 0x0, 0xfffffffffffffffd) keyctl$KEYCTL_RESTRICT_KEYRING(0xf, r0, 0x0, 0x0) connect$inet(0xffffffffffffffff, 0x0, 0x0) r1 = syz_open_dev$sg(&(0x7f0000000040), 0x0, 0x0) ioctl$BLKTRACETEARDOWN(r1, 0x1276, 0x0) ioctl$BLKTRACESETUP(r1, 0xc0481273, &(0x7f0000000140)={'\x00', 0x0, 0x4, 0x8, 0x76, 0x9}) 23:37:18 executing program 2: perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) syz_mount_image$vfat(&(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x0, 0x2, &(0x7f0000000180)=[{&(0x7f0000000140)="eb3c906d6b66732e66617400020801000470008400f801", 0x17}, {0x0, 0x0, 0x1000a00}], 0x0, &(0x7f0000000240)=ANY=[]) openat2(0xffffffffffffffff, &(0x7f0000000100)='./file0\x00', &(0x7f00000001c0)={0x40040}, 0x18) 23:37:18 executing program 1: perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = syz_io_uring_setup(0x3a75, &(0x7f0000000080), &(0x7f0000ffb000/0x3000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=0x0, &(0x7f0000000100)=0x0) r3 = socket$inet6_udplite(0xa, 0x2, 0x88) syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_RECVMSG={0xa, 0x0, 0x0, r3, 0x0, 0x0, 0x0, 0x40000203}, 0x0) mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0) r4 = mmap$IORING_OFF_CQ_RING(&(0x7f0000ffe000/0x2000)=nil, 0x2000, 0xf, 0x13, r0, 0x8000000) syz_io_uring_submit(r4, r2, &(0x7f00000002c0)=@IORING_OP_READ=@pass_buffer={0x16, 0x4, 0x0, @fd, 0x0, 0x0}, 0x80000001) r5 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1) dup2(r5, r3) io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0) 23:37:18 executing program 3: r0 = syz_open_dev$tty1(0xc, 0x4, 0x1) writev(r0, &(0x7f0000000080)=[{&(0x7f0000001380)="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", 0x1ea}], 0x1) 23:37:32 executing program 6: r0 = syz_open_dev$tty20(0xc, 0x4, 0x1) ioctl$VT_RESIZEX(r0, 0x560a, &(0x7f0000000000)={0x0, 0x0, 0x0, 0x0, 0x1d}) 23:37:32 executing program 1: perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = syz_io_uring_setup(0x3a75, &(0x7f0000000080), &(0x7f0000ffb000/0x3000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=0x0, &(0x7f0000000100)=0x0) r3 = socket$inet6_udplite(0xa, 0x2, 0x88) syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_RECVMSG={0xa, 0x0, 0x0, r3, 0x0, &(0x7f0000000440)={0x0, 0x0, 0x0}}, 0x0) mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0) r4 = mmap$IORING_OFF_CQ_RING(&(0x7f0000ffe000/0x2000)=nil, 0x2000, 0xf, 0x13, r0, 0x8000000) syz_io_uring_submit(r4, r2, &(0x7f00000002c0)=@IORING_OP_READ=@pass_buffer={0x16, 0x4, 0x0, @fd, 0x0, 0x0}, 0x80000001) r5 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1) dup2(r5, r3) io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0) 23:37:32 executing program 7: perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_mount_image$vfat(&(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x0, 0x2, &(0x7f0000000180)=[{&(0x7f0000000140)="eb3c906d6b66732e66617400020801000470008400f801", 0x17}, {0x0, 0x0, 0x1000a00}], 0x0, &(0x7f0000000240)=ANY=[]) (fail_nth: 6) 23:37:32 executing program 0: r0 = add_key$keyring(&(0x7f0000000040), &(0x7f00000002c0)={'syz', 0x3}, 0x0, 0x0, 0xfffffffffffffffd) keyctl$KEYCTL_RESTRICT_KEYRING(0xf, r0, 0x0, 0x0) connect$inet(0xffffffffffffffff, 0x0, 0x0) r1 = syz_open_dev$sg(&(0x7f0000000040), 0x0, 0x0) ioctl$BLKTRACETEARDOWN(r1, 0x1276, 0x0) ioctl$BLKTRACESETUP(r1, 0xc0481273, &(0x7f0000000140)={'\x00', 0x0, 0x4, 0x8, 0x76, 0x9}) 23:37:32 executing program 3: r0 = syz_open_dev$tty1(0xc, 0x4, 0x1) writev(r0, &(0x7f0000000080)=[{&(0x7f0000001380)="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", 0x1ea}], 0x1) 23:37:32 executing program 2: perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) syz_mount_image$vfat(&(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x0, 0x2, &(0x7f0000000180)=[{&(0x7f0000000140)="eb3c906d6b66732e66617400020801000470008400f801", 0x17}, {0x0, 0x0, 0x1000a00}], 0x0, &(0x7f0000000240)=ANY=[]) openat2(0xffffffffffffffff, &(0x7f0000000100)='./file0\x00', &(0x7f00000001c0)={0x40040}, 0x18) 23:37:32 executing program 4: perf_event_open(&(0x7f0000001d80)={0x2, 0x80, 0x69, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = socket$inet6_udp(0xa, 0x2, 0x0) dup(0xffffffffffffffff) fstat(0xffffffffffffffff, 0x0) connect$inet6(r0, &(0x7f0000000600)={0xa, 0x0, 0x0, @dev, 0x2}, 0x1c) sendmmsg$inet6(r0, &(0x7f0000000080)=[{{0x0, 0x0, &(0x7f00000004c0)}}], 0x1, 0x0) 23:37:32 executing program 5: perf_event_open(&(0x7f0000001d80)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = gettid() rt_sigqueueinfo(r0, 0x0, &(0x7f0000000600)) r1 = gettid() rt_sigqueueinfo(r1, 0x0, &(0x7f0000000600)={0x2f, 0x0, 0x82}) r2 = openat$hpet(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0) read$eventfd(r2, 0x0, 0x0) perf_event_open(&(0x7f0000000000)={0x5, 0x80, 0xfa, 0x1, 0x8, 0x8, 0x0, 0x0, 0x234, 0xe, 0x1, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x1, 0x0, 0x0, 0x1, 0x0, 0x0, 0x1, 0x1, 0x1, 0x0, 0x1, 0x0, 0x0, 0x1, 0x0, 0x0, 0x1, 0x1, 0x1, 0x0, 0x1, 0x1, 0x0, 0x0, 0x0, 0x1, 0x1, 0x1, 0x1, 0x0, 0x0, 0x28c, 0x6, @perf_config_ext={0x3f3, 0x100}, 0x20, 0xdecc, 0x10000, 0x1, 0x8000, 0x9, 0xbb6c, 0x0, 0x7, 0x0, 0xc56e}, r1, 0xe, r2, 0x9) [ 1082.102565] FAULT_INJECTION: forcing a failure. [ 1082.102565] name failslab, interval 1, probability 0, space 0, times 0 [ 1082.102589] CPU: 0 PID: 7501 Comm: syz-executor.7 Not tainted 5.10.194 #1 [ 1082.102601] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1082.102609] Call Trace: [ 1082.102640] dump_stack+0x107/0x167 [ 1082.102672] should_fail.cold+0x5/0xa [ 1082.102701] ? security_inode_alloc+0x34/0x160 [ 1082.102729] should_failslab+0x5/0x20 [ 1082.102749] kmem_cache_alloc+0x5b/0x310 [ 1082.102794] security_inode_alloc+0x34/0x160 [ 1082.102826] inode_init_always+0xa4e/0xd10 [ 1082.114086] ? shmem_destroy_inode+0x70/0x70 [ 1082.114114] alloc_inode+0x84/0x240 [ 1082.114136] new_inode+0x23/0x250 [ 1082.114168] shmem_get_inode+0x15e/0xbc0 [ 1082.117058] __shmem_file_setup+0xb8/0x320 [ 1082.117081] ? _copy_from_user+0xfb/0x1b0 [ 1082.117112] __do_sys_memfd_create+0x275/0x450 [ 1082.119452] ? memfd_file_seals_ptr+0x170/0x170 [ 1082.119486] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1082.119509] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1082.122284] do_syscall_64+0x33/0x40 [ 1082.122308] entry_SYSCALL_64_after_hwframe+0x62/0xc7 [ 1082.122323] RIP: 0033:0x7f4966db8b19 [ 1082.122345] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1082.122357] RSP: 002b:00007f496432df48 EFLAGS: 00000246 ORIG_RAX: 000000000000013f [ 1082.122382] RAX: ffffffffffffffda RBX: 0000000020000180 RCX: 00007f4966db8b19 [ 1082.122395] RDX: 0000000002001400 RSI: 0000000000000000 RDI: 00007f4966e120fb [ 1082.122408] RBP: 0000000000000002 R08: 0000000001000a00 R09: ffffffffffffffff [ 1082.122421] R10: 0000000000000002 R11: 0000000000000246 R12: 0000000008100000 [ 1082.122434] R13: 00000000200000c0 R14: 0000000002001400 R15: 0000000020000240 23:37:32 executing program 4: perf_event_open(&(0x7f0000001d80)={0x2, 0x80, 0x69, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = socket$inet6_udp(0xa, 0x2, 0x0) dup(0xffffffffffffffff) fstat(0xffffffffffffffff, 0x0) connect$inet6(r0, &(0x7f0000000600)={0xa, 0x0, 0x0, @dev, 0x2}, 0x1c) sendmmsg$inet6(r0, &(0x7f0000000080)=[{{0x0, 0x0, &(0x7f00000004c0)}}], 0x1, 0x0) 23:37:32 executing program 5: perf_event_open(&(0x7f0000001d80)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = gettid() getsockopt$sock_cred(0xffffffffffffffff, 0x1, 0x11, &(0x7f0000000000)={0x0}, &(0x7f0000000040)=0xc) syz_open_procfs(r1, &(0x7f0000000080)='net/ip6_mr_vif\x00') r2 = openat$hpet(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0) read$eventfd(r2, 0x0, 0x0) syz_genetlink_get_family_id$ethtool(&(0x7f00000000c0), r2) rt_sigqueueinfo(r0, 0x0, &(0x7f0000000600)) 23:37:32 executing program 2: perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r0 = syz_mount_image$vfat(&(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x0, 0x2, &(0x7f0000000180)=[{&(0x7f0000000140)="eb3c906d6b66732e66617400020801000470008400f801", 0x17}, {0x0, 0x0, 0x1000a00}], 0x0, &(0x7f0000000240)=ANY=[]) openat2(r0, 0x0, &(0x7f00000001c0)={0x40040}, 0x18) 23:37:32 executing program 7: perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_mount_image$vfat(&(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x0, 0x2, &(0x7f0000000180)=[{&(0x7f0000000140)="eb3c906d6b66732e66617400020801000470008400f801", 0x17}, {0x0, 0x0, 0x1000a00}], 0x0, &(0x7f0000000240)=ANY=[]) (fail_nth: 7) 23:37:32 executing program 0: r0 = add_key$keyring(&(0x7f0000000040), &(0x7f00000002c0)={'syz', 0x3}, 0x0, 0x0, 0xfffffffffffffffd) keyctl$KEYCTL_RESTRICT_KEYRING(0xf, r0, 0x0, 0x0) connect$inet(0xffffffffffffffff, &(0x7f0000000140)={0x2, 0x0, @dev}, 0x10) r1 = syz_open_dev$sg(0x0, 0x0, 0x0) ioctl$BLKTRACETEARDOWN(r1, 0x1276, 0x0) ioctl$BLKTRACESETUP(r1, 0xc0481273, &(0x7f0000000140)={'\x00', 0x0, 0x4, 0x8, 0x76, 0x9}) 23:37:32 executing program 6: r0 = syz_open_dev$tty20(0xc, 0x4, 0x1) ioctl$VT_RESIZEX(r0, 0x560a, &(0x7f0000000000)={0x0, 0x0, 0x0, 0x0, 0x1d, 0x454}) 23:37:32 executing program 3: r0 = syz_open_dev$tty1(0xc, 0x4, 0x1) writev(r0, &(0x7f0000000080)=[{&(0x7f0000001380)="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", 0x1ea}], 0x1) 23:37:32 executing program 0: r0 = add_key$keyring(&(0x7f0000000040), &(0x7f00000002c0)={'syz', 0x3}, 0x0, 0x0, 0xfffffffffffffffd) keyctl$KEYCTL_RESTRICT_KEYRING(0xf, r0, 0x0, 0x0) connect$inet(0xffffffffffffffff, &(0x7f0000000140)={0x2, 0x0, @dev}, 0x10) r1 = syz_open_dev$sg(0x0, 0x0, 0x0) ioctl$BLKTRACETEARDOWN(r1, 0x1276, 0x0) ioctl$BLKTRACESETUP(r1, 0xc0481273, &(0x7f0000000140)={'\x00', 0x0, 0x4, 0x8, 0x76, 0x9}) [ 1082.313860] FAULT_INJECTION: forcing a failure. [ 1082.313860] name failslab, interval 1, probability 0, space 0, times 0 [ 1082.315123] CPU: 1 PID: 7523 Comm: syz-executor.7 Not tainted 5.10.194 #1 [ 1082.315853] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1082.316723] Call Trace: [ 1082.317012] dump_stack+0x107/0x167 [ 1082.317403] should_fail.cold+0x5/0xa [ 1082.317824] ? create_object.isra.0+0x3a/0xa20 [ 1082.318311] should_failslab+0x5/0x20 [ 1082.318725] kmem_cache_alloc+0x5b/0x310 [ 1082.319164] create_object.isra.0+0x3a/0xa20 [ 1082.319628] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 1082.320168] kmem_cache_alloc+0x159/0x310 [ 1082.320615] security_inode_alloc+0x34/0x160 [ 1082.321092] inode_init_always+0xa4e/0xd10 [ 1082.321552] ? shmem_destroy_inode+0x70/0x70 [ 1082.322019] alloc_inode+0x84/0x240 [ 1082.322400] new_inode+0x23/0x250 [ 1082.322769] shmem_get_inode+0x15e/0xbc0 [ 1082.323204] __shmem_file_setup+0xb8/0x320 [ 1082.323655] ? _copy_from_user+0xfb/0x1b0 [ 1082.324093] __do_sys_memfd_create+0x275/0x450 [ 1082.324576] ? memfd_file_seals_ptr+0x170/0x170 [ 1082.325076] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1082.325637] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1082.326181] do_syscall_64+0x33/0x40 [ 1082.326581] entry_SYSCALL_64_after_hwframe+0x62/0xc7 [ 1082.327134] RIP: 0033:0x7f4966db8b19 [ 1082.327535] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1082.329513] RSP: 002b:00007f496432df48 EFLAGS: 00000246 ORIG_RAX: 000000000000013f [ 1082.330328] RAX: ffffffffffffffda RBX: 0000000020000180 RCX: 00007f4966db8b19 [ 1082.331090] RDX: 0000000002001400 RSI: 0000000000000000 RDI: 00007f4966e120fb [ 1082.331846] RBP: 0000000000000002 R08: 0000000001000a00 R09: ffffffffffffffff [ 1082.332609] R10: 0000000000000002 R11: 0000000000000246 R12: 0000000008100000 [ 1082.333362] R13: 00000000200000c0 R14: 0000000002001400 R15: 0000000020000240 23:37:32 executing program 6: r0 = syz_open_dev$tty20(0xc, 0x4, 0x1) ioctl$VT_RESIZEX(r0, 0x560a, &(0x7f0000000000)={0x0, 0x0, 0x0, 0x0, 0x1d, 0x2000}) 23:37:48 executing program 4: perf_event_open(&(0x7f0000001d80)={0x2, 0x80, 0x69, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = socket$inet6_udp(0xa, 0x2, 0x0) dup(0xffffffffffffffff) fstat(0xffffffffffffffff, 0x0) connect$inet6(r0, &(0x7f0000000600)={0xa, 0x0, 0x0, @dev, 0x2}, 0x1c) sendmmsg$inet6(r0, &(0x7f0000000080)=[{{0x0, 0x0, &(0x7f00000004c0)}}], 0x1, 0x0) 23:37:48 executing program 2: perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r0 = syz_mount_image$vfat(&(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x0, 0x2, &(0x7f0000000180)=[{&(0x7f0000000140)="eb3c906d6b66732e66617400020801000470008400f801", 0x17}, {0x0, 0x0, 0x1000a00}], 0x0, &(0x7f0000000240)=ANY=[]) openat2(r0, 0x0, &(0x7f00000001c0)={0x40040}, 0x18) 23:37:48 executing program 0: r0 = add_key$keyring(&(0x7f0000000040), &(0x7f00000002c0)={'syz', 0x3}, 0x0, 0x0, 0xfffffffffffffffd) keyctl$KEYCTL_RESTRICT_KEYRING(0xf, r0, 0x0, 0x0) connect$inet(0xffffffffffffffff, &(0x7f0000000140)={0x2, 0x0, @dev}, 0x10) r1 = syz_open_dev$sg(0x0, 0x0, 0x0) ioctl$BLKTRACETEARDOWN(r1, 0x1276, 0x0) ioctl$BLKTRACESETUP(r1, 0xc0481273, &(0x7f0000000140)={'\x00', 0x0, 0x4, 0x8, 0x76, 0x9}) 23:37:48 executing program 6: r0 = syz_open_dev$tty20(0xc, 0x4, 0x1) ioctl$VT_RESIZEX(r0, 0x560a, &(0x7f0000000000)={0x0, 0x0, 0x0, 0x0, 0x1d, 0x5404}) 23:37:48 executing program 3: r0 = syz_open_dev$tty1(0xc, 0x4, 0x1) writev(r0, &(0x7f0000000080)=[{&(0x7f0000001380)="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", 0x1ea}], 0x1) 23:37:48 executing program 5: perf_event_open(&(0x7f0000001d80)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = gettid() rt_sigqueueinfo(r0, 0x0, &(0x7f0000000600)) r1 = syz_mount_image$tmpfs(&(0x7f0000000000), &(0x7f0000000080)='./file0\x00', 0x0, 0x0, 0x0, 0x0, &(0x7f0000000600)=ANY=[]) mknodat$loop(r1, &(0x7f0000000300)='./file0\x00', 0x1000, 0x0) r2 = openat(r1, &(0x7f0000000140)='./file0\x00', 0x2, 0x0) openat(r1, &(0x7f0000000000)='./file0\x00', 0x0, 0x0) r3 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000440), 0x341043, 0x0) ioctl$FS_IOC_GET_ENCRYPTION_POLICY_EX(r3, 0xc0096616, &(0x7f0000000480)={0x2, [0x0, 0x0]}) ioctl$BTRFS_IOC_GET_DEV_STATS(r1, 0xc4089434, &(0x7f0000000000)={0x0, 0x7fff, 0x1, [0xb9, 0x5, 0x5, 0x5, 0x3f], [0x8, 0x3, 0x7ff, 0x5, 0x8829, 0x10000, 0x3, 0x6, 0x1, 0xd, 0x3, 0x0, 0x10000, 0x3, 0x40, 0x1f, 0x2, 0xf05, 0x5, 0xd40, 0x9, 0x9, 0x4000000000, 0x7, 0x0, 0x7, 0xe0, 0x5, 0x6, 0x38, 0xb3, 0x4, 0x2015, 0x8001, 0x3f, 0xa9, 0x6bf, 0x1a218d45, 0x80, 0x1, 0x8, 0x8, 0x3f, 0x3ff, 0x8df3, 0x7f, 0xfffffffffffffc00, 0x8, 0x5, 0xfffffffffffffffa, 0xffffffff00000001, 0x1b, 0x7f, 0x8, 0x2, 0x5, 0x20, 0x93, 0x1, 0x3, 0x9, 0xffffffff, 0x34, 0x2, 0x7, 0x2, 0x9, 0x9, 0x0, 0x4, 0x2, 0x4, 0xfffffffffffffff8, 0x7, 0x5, 0xffff, 0xc9cb, 0x6, 0x8eb, 0x10000, 0x5, 0xe13, 0xffffffffffffffe1, 0x3f, 0x7ff, 0xfff, 0x8, 0x77d, 0x9, 0x0, 0x2, 0xa88, 0xc3, 0xfffffffffffffffb, 0x4, 0x1000, 0x80, 0x8001, 0x9e7, 0x8, 0x3ff, 0x4, 0x1, 0x80000000, 0x200, 0x101, 0xfffffffffffffffc, 0xaa, 0x9, 0x100000000, 0x4, 0x0, 0x3, 0x0, 0x4, 0x9, 0x6, 0x854, 0x0, 0x1, 0x6]}) open_tree(0xffffffffffffffff, &(0x7f0000006840)='./file0\x00', 0x900) recvmmsg$unix(r2, &(0x7f00000066c0)=[{{&(0x7f00000004c0)=@abs, 0x6e, &(0x7f0000001980)=[{&(0x7f0000000680)=""/4096, 0x1000}, {&(0x7f0000001680)=""/197, 0xc5}, {&(0x7f0000000540)=""/115, 0x73}, {&(0x7f0000001e00)=""/4096, 0x1000}, {&(0x7f0000001780)=""/91, 0x5b}, {&(0x7f0000001800)=""/254, 0xfe}, {&(0x7f0000001900)=""/99, 0x63}], 0x7, &(0x7f00000005c0)=[@rights={{0x24, 0x1, 0x1, [0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff]}}], 0x28}}, {{&(0x7f0000001a00)=@abs, 0x6e, &(0x7f0000004040)=[{&(0x7f0000001a80)=""/195, 0xc3}, {&(0x7f0000001b80)=""/233, 0xe9}, {&(0x7f0000002e00)=""/4096, 0x1000}, {&(0x7f0000001c80)=""/110, 0x6e}, {&(0x7f0000001d00)=""/114, 0x72}, {&(0x7f0000003e00)=""/181, 0xb5}, {&(0x7f0000003ec0)=""/245, 0xf5}, {&(0x7f0000003fc0)=""/100, 0x64}], 0x8, &(0x7f00000040c0)=[@rights={{0x14, 0x1, 0x1, [0xffffffffffffffff]}}], 0x18}}, {{&(0x7f0000004100)=@abs, 0x6e, &(0x7f00000065c0)=[{&(0x7f0000004180)=""/66, 0x42}, {&(0x7f0000004200)=""/4096, 0x1000}, {&(0x7f0000005200)=""/198, 0xc6}, {&(0x7f0000005300)=""/4096, 0x1000}, {&(0x7f0000006300)=""/80, 0x50}, {&(0x7f0000006380)=""/146, 0x92}, {&(0x7f0000006440)=""/129, 0x81}, {&(0x7f0000006500)}, {&(0x7f0000006540)=""/91, 0x5b}], 0x9, &(0x7f0000006680)=[@cred={{0x1c}}, @cred={{0x1c}}], 0x40}}], 0x3, 0x20, &(0x7f0000006780)={0x77359400}) fchownat(r4, &(0x7f00000067c0)='./file1\x00', 0xffffffffffffffff, 0x0, 0x100) capset(&(0x7f0000006500)={0x20071026, r0}, &(0x7f0000006800)={0x7fffffff, 0x3ff, 0xffffffe0, 0xf2c, 0x80000001, 0x7}) 23:37:48 executing program 1: perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = syz_io_uring_setup(0x3a75, &(0x7f0000000080), &(0x7f0000ffb000/0x3000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=0x0, &(0x7f0000000100)=0x0) r3 = socket$inet6_udplite(0xa, 0x2, 0x88) syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_RECVMSG={0xa, 0x0, 0x0, r3, 0x0, &(0x7f0000000440)={0x0, 0x0, 0x0}}, 0x0) mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0) r4 = mmap$IORING_OFF_CQ_RING(&(0x7f0000ffe000/0x2000)=nil, 0x2000, 0xf, 0x13, r0, 0x8000000) syz_io_uring_submit(r4, r2, &(0x7f00000002c0)=@IORING_OP_READ=@pass_buffer={0x16, 0x4, 0x0, @fd, 0x0, 0x0}, 0x80000001) r5 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1) dup2(r5, r3) io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0) 23:37:48 executing program 7: perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_mount_image$vfat(&(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x0, 0x2, &(0x7f0000000180)=[{&(0x7f0000000140)="eb3c906d6b66732e66617400020801000470008400f801", 0x17}, {0x0, 0x0, 0x1000a00}], 0x0, &(0x7f0000000240)=ANY=[]) (fail_nth: 8) [ 1098.798110] capability: warning: `syz-executor.5' uses deprecated v2 capabilities in a way that may be insecure 23:37:48 executing program 0: r0 = add_key$keyring(&(0x7f0000000040), &(0x7f00000002c0)={'syz', 0x3}, 0x0, 0x0, 0xfffffffffffffffd) keyctl$KEYCTL_RESTRICT_KEYRING(0xf, r0, 0x0, 0x0) connect$inet(0xffffffffffffffff, &(0x7f0000000140)={0x2, 0x0, @dev}, 0x10) r1 = syz_open_dev$sg(&(0x7f0000000040), 0x0, 0x0) ioctl$BLKTRACETEARDOWN(0xffffffffffffffff, 0x1276, 0x0) ioctl$BLKTRACESETUP(r1, 0xc0481273, &(0x7f0000000140)={'\x00', 0x0, 0x4, 0x8, 0x76, 0x9}) [ 1098.835640] FAULT_INJECTION: forcing a failure. [ 1098.835640] name failslab, interval 1, probability 0, space 0, times 0 [ 1098.837888] CPU: 1 PID: 7551 Comm: syz-executor.7 Not tainted 5.10.194 #1 [ 1098.839201] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1098.840819] Call Trace: [ 1098.840849] dump_stack+0x107/0x167 [ 1098.840871] should_fail.cold+0x5/0xa [ 1098.840892] ? __d_alloc+0x2a/0x990 [ 1098.840913] should_failslab+0x5/0x20 [ 1098.840932] kmem_cache_alloc+0x5b/0x310 [ 1098.840947] ? trace_hardirqs_on+0x5b/0x180 [ 1098.840969] __d_alloc+0x2a/0x990 [ 1098.840995] d_alloc_pseudo+0x19/0x70 [ 1098.841015] alloc_file_pseudo+0xce/0x250 [ 1098.841035] ? alloc_file+0x5a0/0x5a0 [ 1098.841058] ? shmem_get_inode+0x55c/0xbc0 [ 1098.841085] __shmem_file_setup+0x144/0x320 [ 1098.841105] ? _copy_from_user+0xfb/0x1b0 [ 1098.841126] __do_sys_memfd_create+0x275/0x450 [ 1098.841144] ? memfd_file_seals_ptr+0x170/0x170 [ 1098.841170] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1098.841187] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1098.841210] do_syscall_64+0x33/0x40 [ 1098.841230] entry_SYSCALL_64_after_hwframe+0x62/0xc7 [ 1098.841252] RIP: 0033:0x7f4966db8b19 [ 1098.857499] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 23:37:49 executing program 4: perf_event_open(&(0x7f0000001d80)={0x2, 0x80, 0x69, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = socket$inet6_udp(0xa, 0x2, 0x0) dup(0xffffffffffffffff) fstat(0xffffffffffffffff, 0x0) connect$inet6(r0, &(0x7f0000000600)={0xa, 0x0, 0x0, @dev, 0x2}, 0x1c) sendmmsg$inet6(r0, &(0x7f0000000080)=[{{0x0, 0x0, &(0x7f00000004c0)=[{0x0}], 0x1}}], 0x1, 0x0) [ 1098.857509] RSP: 002b:00007f496432df48 EFLAGS: 00000246 ORIG_RAX: 000000000000013f [ 1098.857529] RAX: ffffffffffffffda RBX: 0000000020000180 RCX: 00007f4966db8b19 [ 1098.857539] RDX: 0000000002001400 RSI: 0000000000000000 RDI: 00007f4966e120fb [ 1098.857550] RBP: 0000000000000002 R08: 0000000001000a00 R09: ffffffffffffffff [ 1098.857559] R10: 0000000000000002 R11: 0000000000000246 R12: 0000000008100000 23:37:49 executing program 6: r0 = syz_open_dev$tty20(0xc, 0x4, 0x1) ioctl$VT_RESIZEX(r0, 0x560a, &(0x7f0000000000)={0x0, 0x0, 0x0, 0x0, 0x1d, 0xff7f}) [ 1098.857569] R13: 00000000200000c0 R14: 0000000002001400 R15: 0000000020000240 [ 1098.910759] blktrace: Concurrent blktraces are not allowed on sg0 23:37:49 executing program 5: perf_event_open(&(0x7f0000001d80)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0xc6, 0xb, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1000000, 0x1, @perf_config_ext={0x0, 0x4}, 0x400, 0x0, 0x80000001, 0x8, 0xfffffffffffffffc, 0x0, 0x3ff}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = gettid() rt_sigqueueinfo(r0, 0x0, &(0x7f0000000600)) r1 = fork() ptrace$getsig(0x4202, r1, 0x3ff, &(0x7f0000000080)) 23:37:49 executing program 3: r0 = syz_open_dev$tty1(0xc, 0x4, 0x1) writev(r0, &(0x7f0000000080)=[{&(0x7f0000001380)="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", 0x1ea}], 0x1) 23:38:05 executing program 7: perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_mount_image$vfat(&(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x0, 0x2, &(0x7f0000000180)=[{&(0x7f0000000140)="eb3c906d6b66732e66617400020801000470008400f801", 0x17}, {0x0, 0x0, 0x1000a00}], 0x0, &(0x7f0000000240)=ANY=[]) (fail_nth: 9) 23:38:05 executing program 1: perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = syz_io_uring_setup(0x3a75, &(0x7f0000000080), &(0x7f0000ffb000/0x3000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=0x0, &(0x7f0000000100)=0x0) r3 = socket$inet6_udplite(0xa, 0x2, 0x88) syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_RECVMSG={0xa, 0x0, 0x0, r3, 0x0, &(0x7f0000000440)={0x0, 0x0, 0x0}}, 0x0) mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0) r4 = mmap$IORING_OFF_CQ_RING(&(0x7f0000ffe000/0x2000)=nil, 0x2000, 0xf, 0x13, r0, 0x8000000) syz_io_uring_submit(r4, r2, &(0x7f00000002c0)=@IORING_OP_READ=@pass_buffer={0x16, 0x4, 0x0, @fd, 0x0, 0x0}, 0x80000001) r5 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1) dup2(r5, r3) io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0) 23:38:05 executing program 2: perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r0 = syz_mount_image$vfat(&(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x0, 0x2, &(0x7f0000000180)=[{&(0x7f0000000140)="eb3c906d6b66732e66617400020801000470008400f801", 0x17}, {0x0, 0x0, 0x1000a00}], 0x0, &(0x7f0000000240)=ANY=[]) openat2(r0, 0x0, &(0x7f00000001c0)={0x40040}, 0x18) 23:38:05 executing program 3: r0 = syz_open_dev$tty1(0xc, 0x4, 0x1) writev(r0, &(0x7f0000000080)=[{&(0x7f0000001380)="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", 0x1ea}], 0x1) 23:38:05 executing program 4: perf_event_open(&(0x7f0000001d80)={0x2, 0x80, 0x69, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = socket$inet6_udp(0xa, 0x2, 0x0) dup(0xffffffffffffffff) fstat(0xffffffffffffffff, 0x0) connect$inet6(r0, &(0x7f0000000600)={0xa, 0x0, 0x0, @dev, 0x2}, 0x1c) sendmmsg$inet6(r0, &(0x7f0000000080)=[{{0x0, 0x0, &(0x7f00000004c0)=[{0x0}], 0x1}}], 0x1, 0x0) 23:38:05 executing program 5: r0 = perf_event_open(&(0x7f0000001d80)={0x5, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x40, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x7}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r1 = gettid() rt_sigqueueinfo(r1, 0x0, &(0x7f0000000600)) rt_sigqueueinfo(r1, 0x23, &(0x7f0000000000)={0x1d, 0x565d, 0x32d9}) ioctl$AUTOFS_DEV_IOCTL_VERSION(0xffffffffffffffff, 0xc0189371, &(0x7f0000000080)={{0x1, 0x1, 0x18, r0}, './file0\x00'}) getsockopt$inet6_buf(r2, 0x29, 0xca, &(0x7f00000000c0)=""/130, &(0x7f0000000180)=0x82) 23:38:05 executing program 6: r0 = syz_open_dev$tty20(0xc, 0x4, 0x1) ioctl$VT_RESIZEX(r0, 0x560a, &(0x7f0000000040)={0x0, 0x0, 0x0, 0x0, 0x3ff, 0x80}) ioctl$TIOCSCTTY(r0, 0x540e, 0x4) mmap$IORING_OFF_CQ_RING(&(0x7f0000ffa000/0x4000)=nil, 0x4000, 0x0, 0x10, 0xffffffffffffffff, 0x8000000) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0xfff}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x2) r1 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000000)='/proc/keys\x00', 0x0, 0x0) preadv(r1, &(0x7f0000001580)=[{&(0x7f00000015c0)=""/4106, 0x100a}], 0x1, 0x2, 0x0) open_tree(0xffffffffffffffff, &(0x7f0000000340)='./file0\x00', 0x80801) openat(0xffffffffffffffff, &(0x7f0000000100)='./file0\x00', 0x0, 0x80) syz_io_uring_submit(0x0, 0x0, &(0x7f00000001c0)=@IORING_OP_CLOSE={0x13, 0x2}, 0x0) clock_gettime(0x0, &(0x7f0000000200)) mmap(&(0x7f0000ffc000/0x1000)=nil, 0x1000, 0x0, 0x1e1a47f4a1764c1a, 0xffffffffffffffff, 0x4e230000) sendmsg$IPCTNL_MSG_TIMEOUT_GET(0xffffffffffffffff, 0x0, 0x0) ioctl$KDFONTOP_SET_DEF(0xffffffffffffffff, 0x4b72, &(0x7f0000000240)={0x2, 0x0, 0x12, 0x16, 0x0, &(0x7f0000000440)="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"}) r2 = openat$hpet(0xffffffffffffff9c, &(0x7f0000000140), 0x630380, 0x0) read$eventfd(r2, 0x0, 0x0) ioctl$PIO_FONTRESET(r2, 0x4b6d, 0x0) ioctl$TIOCSCTTY(r2, 0x540e, 0x400) ioctl$AUTOFS_DEV_IOCTL_VERSION(0xffffffffffffffff, 0xc0189371, &(0x7f00000000c0)=ANY=[@ANYBLOB="5c990f87b4b32e6643385f5af002bd6a62ed0900000000000000ec53d4b3df7e72cb2bd18d2c6671f0f1e048c48826e00266e0836c5c9a3fce029d6d0dd1d9107360514e41f0924d0f1e4f2929f90f8ce381076aca3c8f23b6d28bde009e618f4d96f2", @ANYRES32=r0, @ANYBLOB="00000000000000002e2f66696c65b000"]) ioctl$GIO_SCRNMAP(r3, 0x4b40, &(0x7f0000000080)=""/6) 23:38:05 executing program 0: r0 = add_key$keyring(&(0x7f0000000040), &(0x7f00000002c0)={'syz', 0x3}, 0x0, 0x0, 0xfffffffffffffffd) keyctl$KEYCTL_RESTRICT_KEYRING(0xf, r0, 0x0, 0x0) connect$inet(0xffffffffffffffff, &(0x7f0000000140)={0x2, 0x0, @dev}, 0x10) r1 = syz_open_dev$sg(&(0x7f0000000040), 0x0, 0x0) ioctl$BLKTRACETEARDOWN(0xffffffffffffffff, 0x1276, 0x0) ioctl$BLKTRACESETUP(r1, 0xc0481273, &(0x7f0000000140)={'\x00', 0x0, 0x4, 0x8, 0x76, 0x9}) 23:38:05 executing program 0: r0 = add_key$keyring(&(0x7f0000000040), &(0x7f00000002c0)={'syz', 0x3}, 0x0, 0x0, 0xfffffffffffffffd) keyctl$KEYCTL_RESTRICT_KEYRING(0xf, r0, 0x0, 0x0) connect$inet(0xffffffffffffffff, &(0x7f0000000140)={0x2, 0x0, @dev}, 0x10) r1 = syz_open_dev$sg(&(0x7f0000000040), 0x0, 0x0) ioctl$BLKTRACETEARDOWN(0xffffffffffffffff, 0x1276, 0x0) ioctl$BLKTRACESETUP(r1, 0xc0481273, &(0x7f0000000140)={'\x00', 0x0, 0x4, 0x8, 0x76, 0x9}) 23:38:05 executing program 5: perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = syz_io_uring_setup(0x3a75, &(0x7f0000000080), &(0x7f0000ffb000/0x3000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=0x0, &(0x7f0000000100)=0x0) r3 = socket$inet6_udplite(0xa, 0x2, 0x88) syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_RECVMSG={0xa, 0x0, 0x0, r3, 0x0, &(0x7f0000000440)={0x0, 0x0, 0x0}}, 0x0) mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0) r4 = mmap$IORING_OFF_CQ_RING(&(0x7f0000ffe000/0x2000)=nil, 0x2000, 0xf, 0x13, r0, 0x8000000) syz_io_uring_submit(r4, r2, &(0x7f00000002c0)=@IORING_OP_READ=@pass_buffer={0x16, 0x4, 0x0, @fd, 0x0, 0x0}, 0x80000001) r5 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1) dup2(r5, r3) io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0) [ 1115.338734] blktrace: Concurrent blktraces are not allowed on sg0 23:38:05 executing program 4: perf_event_open(&(0x7f0000001d80)={0x2, 0x80, 0x69, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = socket$inet6_udp(0xa, 0x2, 0x0) dup(0xffffffffffffffff) fstat(0xffffffffffffffff, 0x0) connect$inet6(r0, &(0x7f0000000600)={0xa, 0x0, 0x0, @dev, 0x2}, 0x1c) sendmmsg$inet6(r0, &(0x7f0000000080)=[{{0x0, 0x0, &(0x7f00000004c0)=[{0x0}], 0x1}}], 0x1, 0x0) [ 1115.346179] FAULT_INJECTION: forcing a failure. [ 1115.346179] name failslab, interval 1, probability 0, space 0, times 0 [ 1115.346203] CPU: 0 PID: 7590 Comm: syz-executor.7 Not tainted 5.10.194 #1 [ 1115.346216] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1115.346224] Call Trace: [ 1115.346263] dump_stack+0x107/0x167 [ 1115.346296] should_fail.cold+0x5/0xa [ 1115.346323] ? create_object.isra.0+0x3a/0xa20 [ 1115.346352] should_failslab+0x5/0x20 [ 1115.346373] kmem_cache_alloc+0x5b/0x310 [ 1115.346411] create_object.isra.0+0x3a/0xa20 [ 1115.346434] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 1115.346469] kmem_cache_alloc+0x159/0x310 [ 1115.346488] ? trace_hardirqs_on+0x5b/0x180 [ 1115.346525] __d_alloc+0x2a/0x990 [ 1115.346566] d_alloc_pseudo+0x19/0x70 [ 1115.346592] alloc_file_pseudo+0xce/0x250 [ 1115.346620] ? alloc_file+0x5a0/0x5a0 [ 1115.346656] ? shmem_get_inode+0x55c/0xbc0 [ 1115.346701] __shmem_file_setup+0x144/0x320 [ 1115.346724] ? _copy_from_user+0xfb/0x1b0 [ 1115.346756] __do_sys_memfd_create+0x275/0x450 [ 1115.346783] ? memfd_file_seals_ptr+0x170/0x170 [ 1115.346817] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1115.346840] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1115.346876] do_syscall_64+0x33/0x40 [ 1115.346901] entry_SYSCALL_64_after_hwframe+0x62/0xc7 [ 1115.346917] RIP: 0033:0x7f4966db8b19 [ 1115.346939] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 23:38:05 executing program 0: r0 = add_key$keyring(&(0x7f0000000040), &(0x7f00000002c0)={'syz', 0x3}, 0x0, 0x0, 0xfffffffffffffffd) keyctl$KEYCTL_RESTRICT_KEYRING(0xf, r0, 0x0, 0x0) connect$inet(0xffffffffffffffff, &(0x7f0000000140)={0x2, 0x0, @dev}, 0x10) r1 = syz_open_dev$sg(&(0x7f0000000040), 0x0, 0x0) ioctl$BLKTRACETEARDOWN(r1, 0x1276, 0x0) ioctl$BLKTRACESETUP(0xffffffffffffffff, 0xc0481273, &(0x7f0000000140)={'\x00', 0x0, 0x4, 0x8, 0x76, 0x9}) [ 1115.346952] RSP: 002b:00007f496432df48 EFLAGS: 00000246 ORIG_RAX: 000000000000013f 23:38:05 executing program 7: perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_mount_image$vfat(&(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x0, 0x2, &(0x7f0000000180)=[{&(0x7f0000000140)="eb3c906d6b66732e66617400020801000470008400f801", 0x17}, {0x0, 0x0, 0x1000a00}], 0x0, &(0x7f0000000240)=ANY=[]) (fail_nth: 10) [ 1115.346978] RAX: ffffffffffffffda RBX: 0000000020000180 RCX: 00007f4966db8b19 [ 1115.346992] RDX: 0000000002001400 RSI: 0000000000000000 RDI: 00007f4966e120fb 23:38:05 executing program 2: perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r0 = syz_mount_image$vfat(&(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x0, 0x2, &(0x7f0000000180)=[{&(0x7f0000000140)="eb3c906d6b66732e66617400020801000470008400f801", 0x17}, {0x0, 0x0, 0x1000a00}], 0x0, &(0x7f0000000240)=ANY=[]) openat2(r0, &(0x7f0000000100)='./file0\x00', 0x0, 0x0) [ 1115.347005] RBP: 0000000000000002 R08: 0000000001000a00 R09: ffffffffffffffff [ 1115.347018] R10: 0000000000000002 R11: 0000000000000246 R12: 0000000008100000 [ 1115.347032] R13: 00000000200000c0 R14: 0000000002001400 R15: 0000000020000240 [ 1115.411328] blktrace: Concurrent blktraces are not allowed on sg0 [ 1115.570619] FAULT_INJECTION: forcing a failure. [ 1115.570619] name failslab, interval 1, probability 0, space 0, times 0 [ 1115.570646] CPU: 0 PID: 7602 Comm: syz-executor.7 Not tainted 5.10.194 #1 [ 1115.570659] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1115.570668] Call Trace: [ 1115.570702] dump_stack+0x107/0x167 [ 1115.570736] should_fail.cold+0x5/0xa [ 1115.570760] ? __alloc_file+0x21/0x320 [ 1115.570786] ? __alloc_file+0x21/0x320 [ 1115.570816] should_failslab+0x5/0x20 [ 1115.570838] kmem_cache_alloc+0x5b/0x310 [ 1115.570880] __alloc_file+0x21/0x320 [ 1115.570912] alloc_empty_file+0x6d/0x170 [ 1115.570945] alloc_file+0x5e/0x5a0 [ 1115.570985] alloc_file_pseudo+0x16a/0x250 [ 1115.571013] ? alloc_file+0x5a0/0x5a0 [ 1115.571051] ? shmem_get_inode+0x55c/0xbc0 [ 1115.571098] __shmem_file_setup+0x144/0x320 [ 1115.571123] ? _copy_from_user+0xfb/0x1b0 [ 1115.571156] __do_sys_memfd_create+0x275/0x450 [ 1115.571185] ? memfd_file_seals_ptr+0x170/0x170 [ 1115.571221] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1115.571244] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1115.571289] do_syscall_64+0x33/0x40 [ 1115.571316] entry_SYSCALL_64_after_hwframe+0x62/0xc7 [ 1115.571332] RIP: 0033:0x7f4966db8b19 [ 1115.571355] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1115.571369] RSP: 002b:00007f496432df48 EFLAGS: 00000246 ORIG_RAX: 000000000000013f [ 1115.571396] RAX: ffffffffffffffda RBX: 0000000020000180 RCX: 00007f4966db8b19 [ 1115.571411] RDX: 0000000002001400 RSI: 0000000000000000 RDI: 00007f4966e120fb [ 1115.571425] RBP: 0000000000000002 R08: 0000000001000a00 R09: ffffffffffffffff [ 1115.571439] R10: 0000000000000002 R11: 0000000000000246 R12: 0000000008100000 [ 1115.571453] R13: 00000000200000c0 R14: 0000000002001400 R15: 0000000020000240 23:38:20 executing program 1: perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = syz_io_uring_setup(0x3a75, &(0x7f0000000080), &(0x7f0000ffb000/0x3000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=0x0, &(0x7f0000000100)=0x0) r3 = socket$inet6_udplite(0xa, 0x2, 0x88) syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_RECVMSG={0xa, 0x0, 0x0, r3, 0x0, &(0x7f0000000440)={0x0, 0x0, 0x0}, 0x0, 0x40000203}, 0x0) mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x0, 0x13, r0, 0x0) r4 = mmap$IORING_OFF_CQ_RING(&(0x7f0000ffe000/0x2000)=nil, 0x2000, 0xf, 0x13, r0, 0x8000000) syz_io_uring_submit(r4, r2, &(0x7f00000002c0)=@IORING_OP_READ=@pass_buffer={0x16, 0x4, 0x0, @fd, 0x0, 0x0}, 0x80000001) r5 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1) dup2(r5, r3) io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0) 23:38:20 executing program 4: perf_event_open(&(0x7f0000001d80)={0x2, 0x80, 0x69, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = socket$inet6_udp(0xa, 0x2, 0x0) dup(0xffffffffffffffff) fstat(0xffffffffffffffff, 0x0) connect$inet6(r0, &(0x7f0000000600)={0xa, 0x0, 0x0, @dev, 0x2}, 0x1c) sendmmsg$inet6(r0, &(0x7f0000000080)=[{{0x0, 0x0, &(0x7f00000004c0)=[{&(0x7f00000001c0)}], 0x1}}], 0x1, 0x0) 23:38:20 executing program 3: r0 = syz_open_dev$tty1(0xc, 0x4, 0x1) writev(r0, &(0x7f0000000080)=[{&(0x7f0000001380)="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", 0x1ea}], 0x1) 23:38:20 executing program 0: r0 = add_key$keyring(&(0x7f0000000040), &(0x7f00000002c0)={'syz', 0x3}, 0x0, 0x0, 0xfffffffffffffffd) keyctl$KEYCTL_RESTRICT_KEYRING(0xf, r0, 0x0, 0x0) connect$inet(0xffffffffffffffff, &(0x7f0000000140)={0x2, 0x0, @dev}, 0x10) r1 = syz_open_dev$sg(&(0x7f0000000040), 0x0, 0x0) ioctl$BLKTRACETEARDOWN(r1, 0x1276, 0x0) ioctl$BLKTRACESETUP(0xffffffffffffffff, 0xc0481273, &(0x7f0000000140)={'\x00', 0x0, 0x4, 0x8, 0x76, 0x9}) 23:38:20 executing program 7: perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_mount_image$vfat(&(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x0, 0x2, &(0x7f0000000180)=[{&(0x7f0000000140)="eb3c906d6b66732e66617400020801000470008400f801", 0x17}, {0x0, 0x0, 0x1000a00}], 0x0, &(0x7f0000000240)=ANY=[]) (fail_nth: 11) 23:38:20 executing program 2: perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r0 = syz_mount_image$vfat(&(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x0, 0x2, &(0x7f0000000180)=[{&(0x7f0000000140)="eb3c906d6b66732e66617400020801000470008400f801", 0x17}, {0x0, 0x0, 0x1000a00}], 0x0, &(0x7f0000000240)=ANY=[]) openat2(r0, &(0x7f0000000100)='./file0\x00', 0x0, 0x0) 23:38:20 executing program 5: ioctl$TIOCGPGRP(0xffffffffffffffff, 0x540f, &(0x7f0000000040)) r0 = openat$tun(0xffffffffffffff9c, &(0x7f00000001c0), 0x0, 0x0) ioctl$TUNSETGROUP(r0, 0x400454ce, 0xee00) ioctl$BTRFS_IOC_SYNC(0xffffffffffffffff, 0x9408, 0x0) perf_event_open(&(0x7f0000000080)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0xffffffffffffff01, 0xfffffffffffff000}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffff}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) ioctl$TIOCGSERIAL(0xffffffffffffffff, 0x541e, &(0x7f0000000300)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, &(0x7f0000000240)=""/40}) r1 = socket$inet6_udp(0xa, 0x2, 0x0) setsockopt$inet6_udp_int(r1, 0x11, 0x67, &(0x7f0000000140)=0x9, 0x4) connect$inet6(r1, &(0x7f0000000100)={0xa, 0xfffe, 0x0, @initdev={0xfe, 0x88, '\x00', 0x0, 0x0}, 0x2}, 0x1c) r2 = openat$hpet(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0) read$eventfd(r2, 0x0, 0x0) sendmsg$NFQNL_MSG_VERDICT_BATCH(r2, &(0x7f0000000400)={&(0x7f0000000180)={0x10, 0x0, 0x0, 0x8000000}, 0xc, &(0x7f0000000200)={&(0x7f0000000380)=ANY=[@ANYBLOB="680000000303010300000000000000000c0000060c000200fffffffd000000070800034000000200fffffffc0000068d080003400000000208000340000000060c000200ffffffff00000c77080003400000000008000340000000000800034000000008"], 0x68}, 0x1, 0x0, 0x0, 0x20000000}, 0x10) sendmsg$inet(r1, &(0x7f00000000c0)={&(0x7f0000000000)={0x2, 0x4e21, @local}, 0x10, 0x0}, 0x404c008) r3 = fcntl$dupfd(r1, 0x0, r1) sendmsg$inet6(r3, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000280)=[{&(0x7f0000000bc0)='+', 0x1fc0}], 0x1}, 0x0) 23:38:20 executing program 6: r0 = syz_open_dev$tty20(0xc, 0x4, 0x1) ioctl$VT_RESIZEX(r0, 0x560a, &(0x7f0000000000)={0x0, 0x0, 0x0, 0x0, 0x1d, 0x4}) [ 1130.436126] FAULT_INJECTION: forcing a failure. [ 1130.436126] name failslab, interval 1, probability 0, space 0, times 0 [ 1130.438683] CPU: 0 PID: 7627 Comm: syz-executor.7 Not tainted 5.10.194 #1 [ 1130.440302] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1130.442290] Call Trace: [ 1130.442329] dump_stack+0x107/0x167 23:38:20 executing program 6: r0 = syz_open_dev$tty20(0xc, 0x4, 0x1) ioctl$VT_RESIZEX(r0, 0x560a, &(0x7f0000000000)={0x0, 0x0, 0x0, 0x0, 0x1d}) ioctl$AUTOFS_IOC_FAIL(r0, 0x9361, 0x2) 23:38:20 executing program 1: perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = syz_io_uring_setup(0x3a75, &(0x7f0000000080), &(0x7f0000ffb000/0x3000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=0x0, &(0x7f0000000100)=0x0) r3 = socket$inet6_udplite(0xa, 0x2, 0x88) syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_RECVMSG={0xa, 0x0, 0x0, r3, 0x0, &(0x7f0000000440)={0x0, 0x0, 0x0}, 0x0, 0x40000203}, 0x0) mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x0, 0x13, r0, 0x0) r4 = mmap$IORING_OFF_CQ_RING(&(0x7f0000ffe000/0x2000)=nil, 0x2000, 0xf, 0x13, r0, 0x8000000) syz_io_uring_submit(r4, r2, &(0x7f00000002c0)=@IORING_OP_READ=@pass_buffer={0x16, 0x4, 0x0, @fd, 0x0, 0x0}, 0x80000001) r5 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1) dup2(r5, r3) io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0) [ 1130.442364] should_fail.cold+0x5/0xa [ 1130.442395] ? create_object.isra.0+0x3a/0xa20 [ 1130.442425] should_failslab+0x5/0x20 [ 1130.442448] kmem_cache_alloc+0x5b/0x310 [ 1130.442489] create_object.isra.0+0x3a/0xa20 [ 1130.442513] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 1130.442551] kmem_cache_alloc+0x159/0x310 [ 1130.442595] __alloc_file+0x21/0x320 [ 1130.442627] alloc_empty_file+0x6d/0x170 [ 1130.442660] alloc_file+0x5e/0x5a0 [ 1130.442700] alloc_file_pseudo+0x16a/0x250 [ 1130.442729] ? alloc_file+0x5a0/0x5a0 [ 1130.442767] ? shmem_get_inode+0x55c/0xbc0 [ 1130.442814] __shmem_file_setup+0x144/0x320 [ 1130.442839] ? _copy_from_user+0xfb/0x1b0 [ 1130.442873] __do_sys_memfd_create+0x275/0x450 [ 1130.442902] ? memfd_file_seals_ptr+0x170/0x170 [ 1130.442944] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1130.442977] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1130.443024] do_syscall_64+0x33/0x40 [ 1130.443052] entry_SYSCALL_64_after_hwframe+0x62/0xc7 [ 1130.443069] RIP: 0033:0x7f4966db8b19 [ 1130.443092] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 23:38:20 executing program 1: perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = syz_io_uring_setup(0x3a75, &(0x7f0000000080), &(0x7f0000ffb000/0x3000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=0x0, &(0x7f0000000100)=0x0) r3 = socket$inet6_udplite(0xa, 0x2, 0x88) syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_RECVMSG={0xa, 0x0, 0x0, r3, 0x0, &(0x7f0000000440)={0x0, 0x0, 0x0}, 0x0, 0x40000203}, 0x0) mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x0, 0x13, r0, 0x0) r4 = mmap$IORING_OFF_CQ_RING(&(0x7f0000ffe000/0x2000)=nil, 0x2000, 0xf, 0x13, r0, 0x8000000) syz_io_uring_submit(r4, r2, &(0x7f00000002c0)=@IORING_OP_READ=@pass_buffer={0x16, 0x4, 0x0, @fd, 0x0, 0x0}, 0x80000001) r5 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1) dup2(r5, r3) io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0) 23:38:20 executing program 4: perf_event_open(&(0x7f0000001d80)={0x2, 0x80, 0x69, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = socket$inet6_udp(0xa, 0x2, 0x0) dup(0xffffffffffffffff) fstat(0xffffffffffffffff, 0x0) connect$inet6(r0, &(0x7f0000000600)={0xa, 0x0, 0x0, @dev, 0x2}, 0x1c) sendmmsg$inet6(r0, &(0x7f0000000080)=[{{0x0, 0x0, &(0x7f00000004c0)=[{&(0x7f00000001c0)}], 0x1}}], 0x1, 0x0) [ 1130.443105] RSP: 002b:00007f496432df48 EFLAGS: 00000246 ORIG_RAX: 000000000000013f [ 1130.443133] RAX: ffffffffffffffda RBX: 0000000020000180 RCX: 00007f4966db8b19 [ 1130.443147] RDX: 0000000002001400 RSI: 0000000000000000 RDI: 00007f4966e120fb [ 1130.443161] RBP: 0000000000000002 R08: 0000000001000a00 R09: ffffffffffffffff 23:38:20 executing program 0: r0 = add_key$keyring(&(0x7f0000000040), &(0x7f00000002c0)={'syz', 0x3}, 0x0, 0x0, 0xfffffffffffffffd) keyctl$KEYCTL_RESTRICT_KEYRING(0xf, r0, 0x0, 0x0) connect$inet(0xffffffffffffffff, &(0x7f0000000140)={0x2, 0x0, @dev}, 0x10) r1 = syz_open_dev$sg(&(0x7f0000000040), 0x0, 0x0) ioctl$BLKTRACETEARDOWN(r1, 0x1276, 0x0) ioctl$BLKTRACESETUP(0xffffffffffffffff, 0xc0481273, &(0x7f0000000140)={'\x00', 0x0, 0x4, 0x8, 0x76, 0x9}) [ 1130.443176] R10: 0000000000000002 R11: 0000000000000246 R12: 0000000008100000 [ 1130.443190] R13: 00000000200000c0 R14: 0000000002001400 R15: 0000000020000240 23:38:35 executing program 2: perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r0 = syz_mount_image$vfat(&(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x0, 0x2, &(0x7f0000000180)=[{&(0x7f0000000140)="eb3c906d6b66732e66617400020801000470008400f801", 0x17}, {0x0, 0x0, 0x1000a00}], 0x0, &(0x7f0000000240)=ANY=[]) openat2(r0, &(0x7f0000000100)='./file0\x00', 0x0, 0x0) 23:38:35 executing program 0: r0 = add_key$keyring(&(0x7f0000000040), &(0x7f00000002c0)={'syz', 0x3}, 0x0, 0x0, 0xfffffffffffffffd) keyctl$KEYCTL_RESTRICT_KEYRING(0xf, r0, 0x0, 0x0) connect$inet(0xffffffffffffffff, &(0x7f0000000140)={0x2, 0x0, @dev}, 0x10) r1 = syz_open_dev$sg(&(0x7f0000000040), 0x0, 0x0) ioctl$BLKTRACETEARDOWN(r1, 0x1276, 0x0) ioctl$BLKTRACESETUP(r1, 0xc0481273, 0x0) 23:38:35 executing program 1: perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = syz_io_uring_setup(0x3a75, &(0x7f0000000080), &(0x7f0000ffb000/0x3000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=0x0, &(0x7f0000000100)=0x0) r3 = socket$inet6_udplite(0xa, 0x2, 0x88) syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_RECVMSG={0xa, 0x0, 0x0, r3, 0x0, &(0x7f0000000440)={0x0, 0x0, 0x0}, 0x0, 0x40000203}, 0x0) mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x10, r0, 0x0) r4 = mmap$IORING_OFF_CQ_RING(&(0x7f0000ffe000/0x2000)=nil, 0x2000, 0xf, 0x13, r0, 0x8000000) syz_io_uring_submit(r4, r2, &(0x7f00000002c0)=@IORING_OP_READ=@pass_buffer={0x16, 0x4, 0x0, @fd, 0x0, 0x0}, 0x80000001) r5 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1) dup2(r5, r3) io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0) 23:38:35 executing program 3: r0 = syz_open_dev$tty1(0xc, 0x4, 0x1) writev(r0, &(0x7f0000000080)=[{&(0x7f0000001380)="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", 0x1ea}], 0x1) 23:38:35 executing program 6: r0 = syz_open_dev$tty20(0xc, 0x4, 0x1) ioctl$TIOCGSID(r0, 0x5429, &(0x7f0000000040)) ioctl$AUTOFS_DEV_IOCTL_CATATONIC(0xffffffffffffffff, 0xc0189379, &(0x7f0000000100)={{0x1, 0x1, 0x18, r0}, './file0\x00'}) r2 = openat(r1, &(0x7f0000000140)='./file0\x00', 0x101000, 0x0) r3 = syz_open_dev$vcsn(&(0x7f0000000200), 0x4, 0x24c02) ioctl$TIOCGSID(r3, 0x5429, &(0x7f0000000240)) ioctl$VT_RESIZEX(r0, 0x560a, &(0x7f0000000000)={0x0, 0x0, 0x0, 0x0, 0x1d}) r4 = syz_open_dev$vcsn(&(0x7f0000000080), 0x0, 0x88100) ioctl$TIOCGSID(r4, 0x5429, &(0x7f00000000c0)) r5 = openat$hpet(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0) read$eventfd(r5, 0x0, 0x0) ioctl$TIOCL_SETSEL(r2, 0x541c, &(0x7f00000001c0)={0x2, {0x2, 0x53, 0x4, 0x7, 0x8, 0x3}}) ioctl$KIOCSOUND(r5, 0x4b2f, 0x1) ioctl$KDSKBENT(r4, 0x4b47, &(0x7f0000000180)={0x7, 0x3f, 0x5}) 23:38:35 executing program 7: perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_mount_image$vfat(&(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x0, 0x2, &(0x7f0000000180)=[{&(0x7f0000000140)="eb3c906d6b66732e66617400020801000470008400f801", 0x17}, {0x0, 0x0, 0x1000a00}], 0x0, &(0x7f0000000240)=ANY=[]) (fail_nth: 12) 23:38:35 executing program 4: perf_event_open(&(0x7f0000001d80)={0x2, 0x80, 0x69, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = socket$inet6_udp(0xa, 0x2, 0x0) dup(0xffffffffffffffff) fstat(0xffffffffffffffff, 0x0) connect$inet6(r0, &(0x7f0000000600)={0xa, 0x0, 0x0, @dev, 0x2}, 0x1c) sendmmsg$inet6(r0, &(0x7f0000000080)=[{{0x0, 0x0, &(0x7f00000004c0)=[{&(0x7f00000001c0)}], 0x1}}], 0x1, 0x0) 23:38:35 executing program 5: r0 = syz_open_dev$tty20(0xc, 0x4, 0x1) ioctl$VT_RESIZEX(r0, 0x560a, &(0x7f0000000000)={0x0, 0x0, 0x0, 0x0, 0x1d, 0x4}) [ 1145.507777] FAULT_INJECTION: forcing a failure. [ 1145.507777] name failslab, interval 1, probability 0, space 0, times 0 [ 1145.507800] CPU: 1 PID: 7663 Comm: syz-executor.7 Not tainted 5.10.194 #1 [ 1145.507809] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1145.507815] Call Trace: [ 1145.507841] dump_stack+0x107/0x167 [ 1145.507864] should_fail.cold+0x5/0xa [ 1145.507887] ? security_file_alloc+0x34/0x170 [ 1145.507909] should_failslab+0x5/0x20 [ 1145.507926] kmem_cache_alloc+0x5b/0x310 [ 1145.507952] security_file_alloc+0x34/0x170 [ 1145.507975] __alloc_file+0xb6/0x320 [ 1145.507996] alloc_empty_file+0x6d/0x170 [ 1145.508018] alloc_file+0x5e/0x5a0 [ 1145.508043] alloc_file_pseudo+0x16a/0x250 [ 1145.508062] ? alloc_file+0x5a0/0x5a0 [ 1145.508086] ? shmem_get_inode+0x55c/0xbc0 [ 1145.508114] __shmem_file_setup+0x144/0x320 23:38:35 executing program 0: r0 = add_key$keyring(&(0x7f0000000040), &(0x7f00000002c0)={'syz', 0x3}, 0x0, 0x0, 0xfffffffffffffffd) keyctl$KEYCTL_RESTRICT_KEYRING(0xf, r0, 0x0, 0x0) connect$inet(0xffffffffffffffff, &(0x7f0000000140)={0x2, 0x0, @dev}, 0x10) r1 = syz_open_dev$sg(&(0x7f0000000040), 0x0, 0x0) ioctl$BLKTRACETEARDOWN(r1, 0x1276, 0x0) ioctl$BLKTRACESETUP(r1, 0xc0481273, 0x0) 23:38:35 executing program 7: perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_mount_image$vfat(&(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x0, 0x2, &(0x7f0000000180)=[{&(0x7f0000000140)="eb3c906d6b66732e66617400020801000470008400f801", 0x17}, {0x0, 0x0, 0x1000a00}], 0x0, &(0x7f0000000240)=ANY=[]) (fail_nth: 13) [ 1145.508131] ? _copy_from_user+0xfb/0x1b0 [ 1145.508152] __do_sys_memfd_create+0x275/0x450 [ 1145.508171] ? memfd_file_seals_ptr+0x170/0x170 [ 1145.508196] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1145.508214] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1145.508238] do_syscall_64+0x33/0x40 [ 1145.508265] entry_SYSCALL_64_after_hwframe+0x62/0xc7 23:38:35 executing program 2: perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r0 = syz_mount_image$vfat(&(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x0, 0x2, &(0x7f0000000180)=[{&(0x7f0000000140)="eb3c906d6b66732e66617400020801000470008400f801", 0x17}, {0x0, 0x0, 0x1000a00}], 0x0, &(0x7f0000000240)=ANY=[]) openat2(r0, &(0x7f0000000100)='./file0\x00', &(0x7f00000001c0), 0x18) 23:38:35 executing program 4: perf_event_open(&(0x7f0000001d80)={0x2, 0x80, 0x69, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = socket$inet6_udp(0xa, 0x2, 0x0) dup(0xffffffffffffffff) fstat(0xffffffffffffffff, 0x0) connect$inet6(r0, &(0x7f0000000600)={0xa, 0x0, 0x0, @dev, 0x2}, 0x1c) sendmmsg$inet6(r0, &(0x7f0000000080)=[{{0x0, 0x0, &(0x7f00000004c0)=[{&(0x7f00000001c0)="4bc702854e3954b59347985ccc868289d3fe483d2c0900a2a1d12e33a66529e1f276fef452632dfa3c004ce3be84a5f66c29cd4ec39ae5206562fbc9ea3c0dbbebc22e628e147b0e9631f19b0ce0a48e0e675b2da3442226b898f1ddf8eabf133ab4a9cb0999c2ee1d3bd36d08", 0x6d}], 0x1}}], 0x1, 0x0) [ 1145.508277] RIP: 0033:0x7f4966db8b19 [ 1145.508295] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 23:38:35 executing program 0: r0 = add_key$keyring(&(0x7f0000000040), &(0x7f00000002c0)={'syz', 0x3}, 0x0, 0x0, 0xfffffffffffffffd) keyctl$KEYCTL_RESTRICT_KEYRING(0xf, r0, 0x0, 0x0) connect$inet(0xffffffffffffffff, &(0x7f0000000140)={0x2, 0x0, @dev}, 0x10) r1 = syz_open_dev$sg(&(0x7f0000000040), 0x0, 0x0) ioctl$BLKTRACETEARDOWN(r1, 0x1276, 0x0) ioctl$BLKTRACESETUP(r1, 0xc0481273, 0x0) [ 1145.508305] RSP: 002b:00007f496432df48 EFLAGS: 00000246 ORIG_RAX: 000000000000013f [ 1145.508326] RAX: ffffffffffffffda RBX: 0000000020000180 RCX: 00007f4966db8b19 [ 1145.508336] RDX: 0000000002001400 RSI: 0000000000000000 RDI: 00007f4966e120fb [ 1145.508347] RBP: 0000000000000002 R08: 0000000001000a00 R09: ffffffffffffffff [ 1145.508357] R10: 0000000000000002 R11: 0000000000000246 R12: 0000000008100000 [ 1145.508368] R13: 00000000200000c0 R14: 0000000002001400 R15: 0000000020000240 [ 1145.699654] FAULT_INJECTION: forcing a failure. [ 1145.699654] name failslab, interval 1, probability 0, space 0, times 0 23:38:35 executing program 1: perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = syz_io_uring_setup(0x3a75, &(0x7f0000000080), &(0x7f0000ffb000/0x3000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=0x0, &(0x7f0000000100)=0x0) r3 = socket$inet6_udplite(0xa, 0x2, 0x88) syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_RECVMSG={0xa, 0x0, 0x0, r3, 0x0, &(0x7f0000000440)={0x0, 0x0, 0x0}, 0x0, 0x40000203}, 0x0) mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x10, r0, 0x0) r4 = mmap$IORING_OFF_CQ_RING(&(0x7f0000ffe000/0x2000)=nil, 0x2000, 0xf, 0x13, r0, 0x8000000) syz_io_uring_submit(r4, r2, &(0x7f00000002c0)=@IORING_OP_READ=@pass_buffer={0x16, 0x4, 0x0, @fd, 0x0, 0x0}, 0x80000001) r5 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1) dup2(r5, r3) io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0) [ 1145.699679] CPU: 0 PID: 7677 Comm: syz-executor.7 Not tainted 5.10.194 #1 23:38:35 executing program 2: perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r0 = syz_mount_image$vfat(&(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x0, 0x2, &(0x7f0000000180)=[{&(0x7f0000000140)="eb3c906d6b66732e66617400020801000470008400f801", 0x17}, {0x0, 0x0, 0x1000a00}], 0x0, &(0x7f0000000240)=ANY=[]) openat2(r0, &(0x7f0000000100)='./file0\x00', &(0x7f00000001c0), 0x18) [ 1145.699691] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1145.699698] Call Trace: [ 1145.699729] dump_stack+0x107/0x167 [ 1145.699758] should_fail.cold+0x5/0xa [ 1145.699785] ? create_object.isra.0+0x3a/0xa20 [ 1145.699811] should_failslab+0x5/0x20 [ 1145.699831] kmem_cache_alloc+0x5b/0x310 23:38:35 executing program 4: perf_event_open(&(0x7f0000001d80)={0x2, 0x80, 0x69, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = socket$inet6_udp(0xa, 0x2, 0x0) dup(0xffffffffffffffff) fstat(0xffffffffffffffff, 0x0) connect$inet6(r0, &(0x7f0000000600)={0xa, 0x0, 0x0, @dev, 0x2}, 0x1c) sendmmsg$inet6(r0, &(0x7f0000000080)=[{{0x0, 0x0, &(0x7f00000004c0)=[{&(0x7f00000001c0)="4bc702854e3954b59347985ccc868289d3fe483d2c0900a2a1d12e33a66529e1f276fef452632dfa3c004ce3be84a5f66c29cd4ec39ae5206562fbc9ea3c0dbbebc22e628e147b0e9631f19b0ce0a48e0e675b2da3442226b898f1ddf8eabf133ab4a9cb0999c2ee1d3bd36d08", 0x6d}], 0x1}}], 0x1, 0x0) [ 1145.699854] ? percpu_ref_put_many.constprop.0+0x4e/0x110 [ 1145.699884] create_object.isra.0+0x3a/0xa20 [ 1145.699904] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 1145.699936] kmem_cache_alloc+0x159/0x310 [ 1145.699975] security_file_alloc+0x34/0x170 [ 1145.700004] __alloc_file+0xb6/0x320 [ 1145.700030] alloc_empty_file+0x6d/0x170 [ 1145.700059] alloc_file+0x5e/0x5a0 [ 1145.700092] alloc_file_pseudo+0x16a/0x250 [ 1145.700116] ? alloc_file+0x5a0/0x5a0 [ 1145.700149] ? shmem_get_inode+0x55c/0xbc0 [ 1145.700195] __shmem_file_setup+0x144/0x320 [ 1145.700216] ? _copy_from_user+0xfb/0x1b0 [ 1145.700245] __do_sys_memfd_create+0x275/0x450 23:38:35 executing program 7: perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_mount_image$vfat(&(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x0, 0x2, &(0x7f0000000180)=[{&(0x7f0000000140)="eb3c906d6b66732e66617400020801000470008400f801", 0x17}, {0x0, 0x0, 0x1000a00}], 0x0, &(0x7f0000000240)=ANY=[]) (fail_nth: 14) [ 1145.700269] ? memfd_file_seals_ptr+0x170/0x170 [ 1145.700301] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1145.700321] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1145.700354] do_syscall_64+0x33/0x40 [ 1145.700377] entry_SYSCALL_64_after_hwframe+0x62/0xc7 [ 1145.700391] RIP: 0033:0x7f4966db8b19 [ 1145.700410] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 23:38:36 executing program 0: r0 = add_key$keyring(&(0x7f0000000040), &(0x7f00000002c0)={'syz', 0x3}, 0x0, 0x0, 0xfffffffffffffffd) keyctl$KEYCTL_RESTRICT_KEYRING(0xf, r0, 0x0, 0x0) connect$inet(0xffffffffffffffff, &(0x7f0000000140)={0x2, 0x0, @dev}, 0x10) r1 = syz_open_dev$sg(&(0x7f0000000040), 0x0, 0x0) ioctl$BLKTRACETEARDOWN(r1, 0x1276, 0x0) ioctl$BLKTRACESETUP(r1, 0xc0481273, &(0x7f0000000140)={'\x00', 0x0, 0x0, 0x8, 0x76, 0x9}) [ 1145.700421] RSP: 002b:00007f496432df48 EFLAGS: 00000246 ORIG_RAX: 000000000000013f 23:38:36 executing program 2: perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r0 = syz_mount_image$vfat(&(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x0, 0x2, &(0x7f0000000180)=[{&(0x7f0000000140)="eb3c906d6b66732e66617400020801000470008400f801", 0x17}, {0x0, 0x0, 0x1000a00}], 0x0, &(0x7f0000000240)=ANY=[]) openat2(r0, &(0x7f0000000100)='./file0\x00', &(0x7f00000001c0), 0x18) [ 1145.700445] RAX: ffffffffffffffda RBX: 0000000020000180 RCX: 00007f4966db8b19 [ 1145.700457] RDX: 0000000002001400 RSI: 0000000000000000 RDI: 00007f4966e120fb [ 1145.700470] RBP: 0000000000000002 R08: 0000000001000a00 R09: ffffffffffffffff [ 1145.700482] R10: 0000000000000002 R11: 0000000000000246 R12: 0000000008100000 [ 1145.700494] R13: 00000000200000c0 R14: 0000000002001400 R15: 0000000020000240 [ 1145.908637] FAULT_INJECTION: forcing a failure. [ 1145.908637] name fail_page_alloc, interval 1, probability 0, space 0, times 1 [ 1145.908730] CPU: 1 PID: 7692 Comm: syz-executor.7 Not tainted 5.10.194 #1 [ 1145.908740] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1145.908746] Call Trace: [ 1145.908774] dump_stack+0x107/0x167 [ 1145.908798] should_fail.cold+0x5/0xa [ 1145.908826] __alloc_pages_nodemask+0x182/0x600 [ 1145.908854] ? __alloc_pages_slowpath.constprop.0+0x2130/0x2130 [ 1145.908877] ? lock_downgrade+0x6d0/0x6d0 [ 1145.908900] ? lock_acquire+0x197/0x470 [ 1145.908946] alloc_pages_vma+0xbb/0x410 [ 1145.908974] shmem_alloc_page+0x10f/0x1e0 [ 1145.908994] ? shmem_init_inode+0x20/0x20 [ 1145.909046] ? percpu_counter_add_batch+0x8b/0x140 [ 1145.909076] ? __vm_enough_memory+0x184/0x360 [ 1145.909103] shmem_getpage_gfp.constprop.0+0x512/0x1920 [ 1145.909148] ? shmem_unuse_inode+0xf60/0xf60 [ 1145.909171] ? ktime_get_coarse_real_ts64+0x15a/0x190 [ 1145.909188] ? iov_iter_fault_in_readable+0x9a/0x410 [ 1145.909217] shmem_write_begin+0xf7/0x1d0 [ 1145.909243] generic_perform_write+0x20a/0x4f0 [ 1145.909283] ? page_cache_next_miss+0x310/0x310 [ 1145.909303] ? evict_inodes+0x420/0x420 [ 1145.909327] ? generic_write_checks+0x2ad/0x390 [ 1145.909357] __generic_file_write_iter+0x39d/0x5d0 [ 1145.909387] generic_file_write_iter+0xdb/0x230 [ 1145.909406] ? iov_iter_init+0x3c/0x130 [ 1145.909434] new_sync_write+0x42c/0x660 [ 1145.909458] ? new_sync_read+0x6f0/0x6f0 [ 1145.909484] ? __x64_sys_pwrite64+0x201/0x260 [ 1145.909513] ? lock_release+0x680/0x680 [ 1145.909532] ? selinux_file_permission+0x92/0x520 [ 1145.909578] vfs_write+0x747/0xa70 [ 1145.909611] __x64_sys_pwrite64+0x201/0x260 [ 1145.909635] ? ksys_pwrite64+0x1b0/0x1b0 [ 1145.909663] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1145.909682] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1145.909709] do_syscall_64+0x33/0x40 [ 1145.909731] entry_SYSCALL_64_after_hwframe+0x62/0xc7 [ 1145.909744] RIP: 0033:0x7f4966d6bab7 [ 1145.909765] Code: 08 89 3c 24 48 89 4c 24 18 e8 e5 f8 ff ff 4c 8b 54 24 18 48 8b 54 24 10 41 89 c0 48 8b 74 24 08 8b 3c 24 b8 12 00 00 00 0f 05 <48> 3d 00 f0 ff ff 77 31 44 89 c7 48 89 04 24 e8 15 f9 ff ff 48 8b [ 1145.909776] RSP: 002b:00007f496432df20 EFLAGS: 00000293 ORIG_RAX: 0000000000000012 [ 1145.909799] RAX: ffffffffffffffda RBX: 00007f4966e02970 RCX: 00007f4966d6bab7 [ 1145.909812] RDX: 0000000000000017 RSI: 0000000020000140 RDI: 0000000000000005 [ 1145.909825] RBP: 0000000000000002 R08: 0000000000000000 R09: ffffffffffffffff [ 1145.909837] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000005 [ 1145.909848] R13: 0000000000000005 R14: 0000000020000180 R15: 0000000000000000 [ 1145.939430] FAT-fs (loop7): bogus number of reserved sectors [ 1145.939445] FAT-fs (loop7): Can't find a valid FAT filesystem 23:38:51 executing program 5: r0 = syz_open_dev$tty20(0xc, 0x4, 0x1) ioctl$VT_RESIZEX(r0, 0x560a, &(0x7f0000000000)={0x0, 0x0, 0x0, 0x0, 0x1d, 0x4}) 23:38:51 executing program 4: perf_event_open(&(0x7f0000001d80)={0x2, 0x80, 0x69, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = socket$inet6_udp(0xa, 0x2, 0x0) dup(0xffffffffffffffff) fstat(0xffffffffffffffff, 0x0) connect$inet6(r0, &(0x7f0000000600)={0xa, 0x0, 0x0, @dev, 0x2}, 0x1c) sendmmsg$inet6(r0, &(0x7f0000000080)=[{{0x0, 0x0, &(0x7f00000004c0)=[{&(0x7f00000001c0)="4bc702854e3954b59347985ccc868289d3fe483d2c0900a2a1d12e33a66529e1f276fef452632dfa3c004ce3be84a5f66c29cd4ec39ae5206562fbc9ea3c0dbbebc22e628e147b0e9631f19b0ce0a48e0e675b2da3442226b898f1ddf8eabf133ab4a9cb0999c2ee1d3bd36d08", 0x6d}], 0x1}}], 0x1, 0x0) 23:38:51 executing program 6: syz_open_dev$tty20(0xc, 0x4, 0x1) ioctl$AUTOFS_DEV_IOCTL_TIMEOUT(0xffffffffffffffff, 0xc018937a, &(0x7f0000000040)={{0x1, 0x1, 0x18, 0xffffffffffffffff, {0x2}}, './file0\x00'}) ioctl$VT_RESIZEX(r0, 0x560a, &(0x7f0000000000)={0x0, 0x0, 0x0, 0x0, 0x1d}) 23:38:51 executing program 1: perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = syz_io_uring_setup(0x3a75, &(0x7f0000000080), &(0x7f0000ffb000/0x3000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=0x0, &(0x7f0000000100)=0x0) r3 = socket$inet6_udplite(0xa, 0x2, 0x88) syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_RECVMSG={0xa, 0x0, 0x0, r3, 0x0, &(0x7f0000000440)={0x0, 0x0, 0x0}, 0x0, 0x40000203}, 0x0) mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x10, r0, 0x0) r4 = mmap$IORING_OFF_CQ_RING(&(0x7f0000ffe000/0x2000)=nil, 0x2000, 0xf, 0x13, r0, 0x8000000) syz_io_uring_submit(r4, r2, &(0x7f00000002c0)=@IORING_OP_READ=@pass_buffer={0x16, 0x4, 0x0, @fd, 0x0, 0x0}, 0x80000001) r5 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1) dup2(r5, r3) io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0) 23:38:51 executing program 0: r0 = add_key$keyring(&(0x7f0000000040), &(0x7f00000002c0)={'syz', 0x3}, 0x0, 0x0, 0xfffffffffffffffd) keyctl$KEYCTL_RESTRICT_KEYRING(0xf, r0, 0x0, 0x0) connect$inet(0xffffffffffffffff, &(0x7f0000000140)={0x2, 0x0, @dev}, 0x10) r1 = syz_open_dev$sg(&(0x7f0000000040), 0x0, 0x0) ioctl$BLKTRACETEARDOWN(r1, 0x1276, 0x0) ioctl$BLKTRACESETUP(r1, 0xc0481273, &(0x7f0000000140)={'\x00', 0x0, 0x0, 0x8, 0x76, 0x9}) 23:38:51 executing program 7: perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_mount_image$vfat(&(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x0, 0x2, &(0x7f0000000180)=[{&(0x7f0000000140)="eb3c906d6b66732e66617400020801000470008400f801", 0x17}, {0x0, 0x0, 0x1000a00}], 0x0, &(0x7f0000000240)=ANY=[]) (fail_nth: 15) 23:38:51 executing program 2: r0 = syz_open_dev$tty1(0xc, 0x4, 0x1) writev(r0, &(0x7f0000000080)=[{&(0x7f0000001380)="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", 0x1ea}], 0x1) 23:38:51 executing program 3: r0 = syz_open_dev$tty1(0xc, 0x4, 0x1) writev(r0, &(0x7f0000000080)=[{&(0x7f0000001380)="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", 0x1ea}], 0x1) [ 1161.596794] FAULT_INJECTION: forcing a failure. [ 1161.596794] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 1161.596816] CPU: 1 PID: 7721 Comm: syz-executor.7 Not tainted 5.10.194 #1 [ 1161.596826] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1161.596832] Call Trace: [ 1161.596861] dump_stack+0x107/0x167 [ 1161.596885] should_fail.cold+0x5/0xa [ 1161.596912] iov_iter_copy_from_user_atomic+0x49b/0xdb0 [ 1161.596940] ? shmem_write_begin+0xf7/0x1d0 [ 1161.596957] ? shmem_write_begin+0x100/0x1d0 [ 1161.596981] generic_perform_write+0x279/0x4f0 [ 1161.597011] ? page_cache_next_miss+0x310/0x310 [ 1161.597030] ? evict_inodes+0x420/0x420 [ 1161.597054] ? generic_write_checks+0x2ad/0x390 [ 1161.597081] __generic_file_write_iter+0x39d/0x5d0 [ 1161.597107] generic_file_write_iter+0xdb/0x230 [ 1161.597125] ? iov_iter_init+0x3c/0x130 [ 1161.597148] new_sync_write+0x42c/0x660 [ 1161.597169] ? new_sync_read+0x6f0/0x6f0 [ 1161.597190] ? __x64_sys_pwrite64+0x201/0x260 [ 1161.597215] ? lock_release+0x680/0x680 [ 1161.597233] ? selinux_file_permission+0x92/0x520 [ 1161.597280] vfs_write+0x747/0xa70 [ 1161.597308] __x64_sys_pwrite64+0x201/0x260 [ 1161.597328] ? ksys_pwrite64+0x1b0/0x1b0 [ 1161.597359] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1161.622980] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1161.623008] do_syscall_64+0x33/0x40 [ 1161.623029] entry_SYSCALL_64_after_hwframe+0x62/0xc7 [ 1161.623042] RIP: 0033:0x7f4966d6bab7 [ 1161.623061] Code: 08 89 3c 24 48 89 4c 24 18 e8 e5 f8 ff ff 4c 8b 54 24 18 48 8b 54 24 10 41 89 c0 48 8b 74 24 08 8b 3c 24 b8 12 00 00 00 0f 05 <48> 3d 00 f0 ff ff 77 31 44 89 c7 48 89 04 24 e8 15 f9 ff ff 48 8b [ 1161.623072] RSP: 002b:00007f496432df20 EFLAGS: 00000293 ORIG_RAX: 0000000000000012 [ 1161.632154] RAX: ffffffffffffffda RBX: 00007f4966e02970 RCX: 00007f4966d6bab7 [ 1161.632165] RDX: 0000000000000017 RSI: 0000000020000140 RDI: 0000000000000005 23:38:51 executing program 5: perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r0 = syz_mount_image$vfat(&(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x0, 0x2, &(0x7f0000000180)=[{&(0x7f0000000140)="eb3c906d6b66732e66617400020801000470008400f801", 0x17}, {0x0, 0x0, 0x1000a00}], 0x0, &(0x7f0000000240)=ANY=[]) openat2(r0, &(0x7f0000000100)='./file0\x00', &(0x7f00000001c0)={0x40040}, 0x18) (fail_nth: 1) [ 1161.632179] RBP: 0000000000000002 R08: 0000000000000000 R09: ffffffffffffffff [ 1161.632189] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000005 [ 1161.632200] R13: 0000000000000005 R14: 0000000020000180 R15: 0000000000000000 23:38:51 executing program 0: r0 = add_key$keyring(&(0x7f0000000040), &(0x7f00000002c0)={'syz', 0x3}, 0x0, 0x0, 0xfffffffffffffffd) keyctl$KEYCTL_RESTRICT_KEYRING(0xf, r0, 0x0, 0x0) connect$inet(0xffffffffffffffff, &(0x7f0000000140)={0x2, 0x0, @dev}, 0x10) r1 = syz_open_dev$sg(&(0x7f0000000040), 0x0, 0x0) ioctl$BLKTRACETEARDOWN(r1, 0x1276, 0x0) ioctl$BLKTRACESETUP(r1, 0xc0481273, &(0x7f0000000140)={'\x00', 0x0, 0x0, 0x8, 0x76, 0x9}) 23:38:51 executing program 6: r0 = syz_open_dev$tty20(0xc, 0x4, 0x1) ioctl$AUTOFS_DEV_IOCTL_CLOSEMOUNT(0xffffffffffffffff, 0xc0189375, &(0x7f0000000080)={{0x1, 0x1, 0x18, r0}, './file0\x00'}) ioctl$KDSKBSENT(r1, 0x4b49, &(0x7f00000000c0)={0x3f, "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"}) ioctl$VT_RESIZEX(r0, 0x560a, &(0x7f0000000000)={0x0, 0x0, 0x0, 0x0, 0x1d}) r2 = fsmount(r1, 0x1, 0x0) r3 = syz_open_pts(r0, 0x4000) ioctl$TIOCL_SELLOADLUT(r2, 0x541c, &(0x7f0000000040)={0x5, 0x1f, 0x8001, 0x0, 0x72}) r4 = syz_mount_image$tmpfs(&(0x7f0000000000), &(0x7f0000000080)='./file0\x00', 0xfffffffffffffffd, 0x0, 0x0, 0x400, &(0x7f0000000380)=ANY=[@ANYRESOCT=r3]) mknodat$loop(r4, &(0x7f0000000300)='./file0\x00', 0x1000, 0x0) openat(r4, &(0x7f0000000140)='./file0\x00', 0x2, 0x0) openat(r4, &(0x7f0000000000)='./file0\x00', 0x0, 0x0) linkat(r4, &(0x7f0000000300)='./file0\x00', r2, &(0x7f0000000340)='./file0\x00', 0x400) 23:38:51 executing program 1: perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = syz_io_uring_setup(0x3a75, &(0x7f0000000080), &(0x7f0000ffb000/0x3000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=0x0, &(0x7f0000000100)=0x0) r3 = socket$inet6_udplite(0xa, 0x2, 0x88) syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_RECVMSG={0xa, 0x0, 0x0, r3, 0x0, &(0x7f0000000440)={0x0, 0x0, 0x0}, 0x0, 0x40000203}, 0x0) mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, 0xffffffffffffffff, 0x0) r4 = mmap$IORING_OFF_CQ_RING(&(0x7f0000ffe000/0x2000)=nil, 0x2000, 0xf, 0x13, r0, 0x8000000) syz_io_uring_submit(r4, r2, &(0x7f00000002c0)=@IORING_OP_READ=@pass_buffer={0x16, 0x4, 0x0, @fd, 0x0, 0x0}, 0x80000001) r5 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1) dup2(r5, r3) io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0) 23:38:51 executing program 4: perf_event_open(&(0x7f0000001d80)={0x2, 0x80, 0x69, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = socket$inet6_udp(0xa, 0x2, 0x0) dup(0xffffffffffffffff) fstat(0xffffffffffffffff, 0x0) connect$inet6(r0, &(0x7f0000000600)={0xa, 0x0, 0x0, @dev, 0x2}, 0x1c) sendmmsg$inet6(r0, &(0x7f0000000080)=[{{0x0, 0x0, &(0x7f00000004c0)=[{&(0x7f00000001c0)="4bc702854e3954b59347985ccc868289d3fe483d2c0900a2a1d12e33a66529e1f276fef452632dfa3c004ce3be84a5f66c29cd4ec39ae5206562fbc9ea3c0dbbebc22e628e147b0e9631f19b0ce0a48e0e675b2da3442226b898f1ddf8eabf133ab4a9cb0999c2ee1d3bd36d089b0d8e97ea00d4c5f6ad14dce058d595aacba2d587ff5eacd81b71a73f53ed276d1f3b3384bb2bfba4e0f37302e690df9e7024378ac7", 0xa3}], 0x1}}], 0x1, 0x0) 23:38:51 executing program 3: r0 = syz_open_dev$tty1(0xc, 0x4, 0x1) writev(r0, &(0x7f0000000080)=[{&(0x7f0000001380)="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", 0x1ea}], 0x1) 23:38:51 executing program 2: r0 = socket$netlink(0x10, 0x3, 0x0) setsockopt$netlink_NETLINK_BROADCAST_ERROR(r0, 0x10e, 0xc, &(0x7f0000000100)=0x3f, 0x4) sendmsg$nl_generic(r0, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000180)=ANY=[@ANYBLOB="180000001600210c0000bbe842a400000a0000009f000000"], 0x18}}, 0x0) sendmsg$TIPC_NL_LINK_GET(r0, &(0x7f0000000080)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x8000000}, 0xc, &(0x7f0000000040)={&(0x7f0000000340)={0x208, 0x0, 0xd00, 0x70bd29, 0x25dfdbfd, {}, [@TIPC_NLA_NET={0x2c, 0x7, 0x0, 0x1, [@TIPC_NLA_NET_ID={0x8, 0x1, 0x53}, @TIPC_NLA_NET_NODEID_W1={0xc, 0x4, 0x3ff}, @TIPC_NLA_NET_ADDR={0x8, 0x2, 0x2}, @TIPC_NLA_NET_NODEID_W1={0xc, 0x4, 0x101}]}, @TIPC_NLA_MEDIA={0x84, 0x5, 0x0, 0x1, [@TIPC_NLA_MEDIA_NAME={0x8, 0x1, 'udp\x00'}, @TIPC_NLA_MEDIA_PROP={0x24, 0x2, 0x0, 0x1, [@TIPC_NLA_PROP_PRIO={0x8, 0x1, 0x1b}, @TIPC_NLA_PROP_MTU={0x8, 0x4, 0x3}, @TIPC_NLA_PROP_WIN={0x8, 0x3, 0xff}, @TIPC_NLA_PROP_PRIO={0x8, 0x1, 0x20}]}, @TIPC_NLA_MEDIA_PROP={0x54, 0x2, 0x0, 0x1, [@TIPC_NLA_PROP_PRIO={0x8, 0x1, 0x1}, @TIPC_NLA_PROP_MTU={0x8, 0x4, 0x9}, @TIPC_NLA_PROP_MTU={0x8, 0x4, 0x401}, @TIPC_NLA_PROP_MTU={0x8, 0x4, 0x3f}, @TIPC_NLA_PROP_TOL={0x8, 0x2, 0x5}, @TIPC_NLA_PROP_MTU={0x8, 0x4, 0x2}, @TIPC_NLA_PROP_PRIO={0x8, 0x1, 0x20}, @TIPC_NLA_PROP_PRIO={0x8, 0x1, 0x9}, @TIPC_NLA_PROP_TOL={0x8, 0x2, 0x6}, @TIPC_NLA_PROP_MTU={0x8, 0x4, 0x8000}]}]}, @TIPC_NLA_NET={0xc, 0x7, 0x0, 0x1, [@TIPC_NLA_NET_ADDR={0x8, 0x2, 0x20}]}, @TIPC_NLA_MON={0x4}, @TIPC_NLA_MON={0x2c, 0x9, 0x0, 0x1, [@TIPC_NLA_MON_REF={0x8, 0x2, 0x6}, @TIPC_NLA_MON_REF={0x8, 0x2, 0xf3a}, @TIPC_NLA_MON_ACTIVATION_THRESHOLD={0x8, 0x1, 0x1}, @TIPC_NLA_MON_ACTIVATION_THRESHOLD={0x8, 0x1, 0xff}, @TIPC_NLA_MON_REF={0x8, 0x2, 0xfda}]}, @TIPC_NLA_NODE={0xa4, 0x6, 0x0, 0x1, [@TIPC_NLA_NODE_ADDR={0x8, 0x1, 0x6}, @TIPC_NLA_NODE_KEY={0x43, 0x4, {'gcm(aes)\x00', 0x1b, "239b38a5ffa77385793741ec918b3d56fcf1a351565c9d0e058b4c"}}, @TIPC_NLA_NODE_UP={0x4}, @TIPC_NLA_NODE_KEY={0x48, 0x4, {'gcm(aes)\x00', 0x20, "cac29d3bec19182e164457ea0314b1f71e998bd26a6eee7b45d9684de9a96e18"}}, @TIPC_NLA_NODE_ADDR={0x8, 0x1, 0x9}]}, @TIPC_NLA_SOCK={0x1c, 0x2, 0x0, 0x1, [@TIPC_NLA_SOCK_ADDR={0x8, 0x1, 0x80000001}, @TIPC_NLA_SOCK_ADDR={0x8, 0x1, 0x1000}, @TIPC_NLA_SOCK_REF={0x8, 0x2, 0x8}]}, @TIPC_NLA_NET={0x34, 0x7, 0x0, 0x1, [@TIPC_NLA_NET_ADDR={0x8, 0x2, 0x6}, @TIPC_NLA_NET_ID={0x8, 0x1, 0xbcb}, @TIPC_NLA_NET_ID={0x8, 0x1, 0x2}, @TIPC_NLA_NET_NODEID_W1={0xc, 0x4, 0x400}, @TIPC_NLA_NET_NODEID_W1={0xc, 0x4, 0xfa8}]}, @TIPC_NLA_BEARER={0x14, 0x1, 0x0, 0x1, [@TIPC_NLA_BEARER_NAME={0xd, 0x1, @l2={'ib', 0x3a, 'vlan0\x00'}}]}]}, 0x208}, 0x1, 0x0, 0x0, 0x4000}, 0x0) [ 1161.802793] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=0 sclass=netlink_route_socket pid=7736 comm=syz-executor.2 [ 1161.806009] tmpfs: Unknown parameter '01777777777777777777777' [ 1161.823171] FAULT_INJECTION: forcing a failure. [ 1161.823171] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 1161.825738] CPU: 1 PID: 7728 Comm: syz-executor.5 Not tainted 5.10.194 #1 [ 1161.827227] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1161.829007] Call Trace: [ 1161.829602] dump_stack+0x107/0x167 [ 1161.830398] should_fail.cold+0x5/0xa [ 1161.831247] _copy_from_user+0x2e/0x1b0 [ 1161.832128] __x64_sys_openat2+0x138/0x280 [ 1161.833045] ? __ia32_sys_openat+0x1f0/0x1f0 [ 1161.834001] ? ksys_write+0x1a9/0x260 [ 1161.834856] ? __ia32_sys_read+0xb0/0xb0 [ 1161.835753] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1161.836866] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1161.837999] do_syscall_64+0x33/0x40 [ 1161.838817] entry_SYSCALL_64_after_hwframe+0x62/0xc7 [ 1161.839924] RIP: 0033:0x7f42482aab19 [ 1161.840715] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1161.844525] RSP: 002b:00007f4245820188 EFLAGS: 00000246 ORIG_RAX: 00000000000001b5 [ 1161.846060] RAX: ffffffffffffffda RBX: 00007f42483bdf60 RCX: 00007f42482aab19 [ 1161.847517] RDX: 00000000200001c0 RSI: 0000000020000100 RDI: 0000000000000006 [ 1161.848951] RBP: 00007f42458201d0 R08: 0000000000000000 R09: 0000000000000000 [ 1161.850394] R10: 0000000000000018 R11: 0000000000000246 R12: 0000000000000001 [ 1161.851848] R13: 00007fff668bfa7f R14: 00007f4245820300 R15: 0000000000022000 [ 1161.870197] tmpfs: Unknown parameter '01777777777777777777777' 23:38:51 executing program 2: r0 = perf_event_open(&(0x7f0000001d80)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f0000000080), 0x2}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) ioctl$F2FS_IOC_RESERVE_COMPRESS_BLOCKS(0xffffffffffffffff, 0x8008f513, &(0x7f00000000c0)) socket$packet(0x11, 0x0, 0x300) r1 = creat(&(0x7f0000000040)='./file1\x00', 0x108) fallocate(r1, 0x0, 0x0, 0x8800000) r2 = syz_mount_image$tmpfs(&(0x7f0000000000), &(0x7f0000000080)='./file0\x00', 0x0, 0x0, 0x0, 0x0, &(0x7f0000000600)=ANY=[]) mknodat$loop(r2, &(0x7f0000000300)='./file0\x00', 0x1000, 0x0) ioctl$int_in(r0, 0x5421, &(0x7f0000000180)=0x1) openat(r2, &(0x7f0000000140)='./file0\x00', 0x2, 0x0) openat(r2, &(0x7f0000000000)='./file0\x00', 0x0, 0x0) r3 = syz_mount_image$tmpfs(&(0x7f0000000000), &(0x7f0000000080)='./file0\x00', 0x0, 0x0, 0x0, 0x0, &(0x7f0000000600)=ANY=[]) mknodat$loop(r3, &(0x7f0000000300)='./file0\x00', 0x1000, 0x0) openat(r3, &(0x7f0000000140)='./file0\x00', 0x2, 0x0) openat(r3, &(0x7f0000000000)='./file0\x00', 0x0, 0x0) dup2(r2, r3) r4 = dup3(r0, r1, 0x0) r5 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000100), 0x482000, 0x0) ioctl$TIOCL_GETMOUSEREPORTING(r5, 0x541c, &(0x7f0000000140)) ioctl$FS_IOC_RESVSP(r4, 0x40305828, &(0x7f0000000000)={0x0, 0x0, 0x0, 0x9}) ioctl$TIOCL_SETSEL(0xffffffffffffffff, 0x541c, &(0x7f0000000240)={0x2, {0x4}}) 23:38:52 executing program 0: r0 = add_key$keyring(&(0x7f0000000040), &(0x7f00000002c0)={'syz', 0x3}, 0x0, 0x0, 0xfffffffffffffffd) keyctl$KEYCTL_RESTRICT_KEYRING(0xf, r0, 0x0, 0x0) connect$inet(0xffffffffffffffff, &(0x7f0000000140)={0x2, 0x0, @dev}, 0x10) r1 = syz_open_dev$sg(&(0x7f0000000040), 0x0, 0x0) ioctl$BLKTRACETEARDOWN(r1, 0x1276, 0x0) ioctl$BLKTRACESETUP(r1, 0xc0481273, &(0x7f0000000140)={'\x00', 0x0, 0x4, 0x0, 0x76, 0x9}) 23:38:52 executing program 1: perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = syz_io_uring_setup(0x3a75, &(0x7f0000000080), &(0x7f0000ffb000/0x3000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=0x0, &(0x7f0000000100)=0x0) r3 = socket$inet6_udplite(0xa, 0x2, 0x88) syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_RECVMSG={0xa, 0x0, 0x0, r3, 0x0, &(0x7f0000000440)={0x0, 0x0, 0x0}, 0x0, 0x40000203}, 0x0) mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, 0xffffffffffffffff, 0x0) r4 = mmap$IORING_OFF_CQ_RING(&(0x7f0000ffe000/0x2000)=nil, 0x2000, 0xf, 0x13, r0, 0x8000000) syz_io_uring_submit(r4, r2, &(0x7f00000002c0)=@IORING_OP_READ=@pass_buffer={0x16, 0x4, 0x0, @fd, 0x0, 0x0}, 0x80000001) r5 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1) dup2(r5, r3) io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0) 23:39:06 executing program 2: r0 = openat(0xffffffffffffff9c, &(0x7f00000000c0)='./file0\x00', 0x46e2, 0x0) openat(0xffffffffffffff9c, &(0x7f0000000000)='./file0\x00', 0x0, 0x0) perf_event_open(&(0x7f0000001d80)={0x7, 0x80, 0x0, 0x0, 0x0, 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f0000000000), 0xe}, 0x0, 0xfffffffffffffffc, 0xffffffff}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r1 = creat(&(0x7f0000000080)='./file0\x00', 0x0) pwrite64(r1, &(0x7f00000013c0)="cc", 0x1, 0x0) mmap$IORING_OFF_SQ_RING(&(0x7f0000ffb000/0x3000)=nil, 0x3000, 0x0, 0x4022812, r0, 0x0) 23:39:06 executing program 4: perf_event_open(&(0x7f0000001d80)={0x2, 0x80, 0x69, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = socket$inet6_udp(0xa, 0x2, 0x0) dup(0xffffffffffffffff) fstat(0xffffffffffffffff, 0x0) connect$inet6(r0, &(0x7f0000000600)={0xa, 0x0, 0x0, @dev, 0x2}, 0x1c) sendmmsg$inet6(r0, &(0x7f0000000080)=[{{0x0, 0x0, &(0x7f00000004c0)=[{&(0x7f00000001c0)="4bc702854e3954b59347985ccc868289d3fe483d2c0900a2a1d12e33a66529e1f276fef452632dfa3c004ce3be84a5f66c29cd4ec39ae5206562fbc9ea3c0dbbebc22e628e147b0e9631f19b0ce0a48e0e675b2da3442226b898f1ddf8eabf133ab4a9cb0999c2ee1d3bd36d089b0d8e97ea00d4c5f6ad14dce058d595aacba2d587ff5eacd81b71a73f53ed276d1f3b3384bb2bfba4e0f37302e690df9e7024378ac7", 0xa3}], 0x1}}], 0x1, 0x0) 23:39:06 executing program 1: perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = syz_io_uring_setup(0x3a75, &(0x7f0000000080), &(0x7f0000ffb000/0x3000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=0x0, &(0x7f0000000100)=0x0) r3 = socket$inet6_udplite(0xa, 0x2, 0x88) syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_RECVMSG={0xa, 0x0, 0x0, r3, 0x0, &(0x7f0000000440)={0x0, 0x0, 0x0}, 0x0, 0x40000203}, 0x0) mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, 0xffffffffffffffff, 0x0) r4 = mmap$IORING_OFF_CQ_RING(&(0x7f0000ffe000/0x2000)=nil, 0x2000, 0xf, 0x13, r0, 0x8000000) syz_io_uring_submit(r4, r2, &(0x7f00000002c0)=@IORING_OP_READ=@pass_buffer={0x16, 0x4, 0x0, @fd, 0x0, 0x0}, 0x80000001) r5 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1) dup2(r5, r3) io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0) 23:39:06 executing program 3: r0 = syz_open_dev$tty1(0xc, 0x4, 0x1) writev(r0, &(0x7f0000000080)=[{&(0x7f0000001380)="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", 0x1ea}], 0x1) 23:39:06 executing program 7: perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_mount_image$vfat(&(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x0, 0x2, &(0x7f0000000180)=[{&(0x7f0000000140)="eb3c906d6b66732e66617400020801000470008400f801", 0x17}, {0x0, 0x0, 0x1000a00}], 0x0, &(0x7f0000000240)=ANY=[]) (fail_nth: 16) 23:39:06 executing program 6: ioctl$TIOCSSOFTCAR(0xffffffffffffffff, 0x541a, &(0x7f0000000040)=0xe6) r0 = syz_open_dev$tty20(0xc, 0x4, 0x1) ioctl$VT_RESIZEX(r0, 0x560a, &(0x7f0000000000)={0x0, 0x0, 0x0, 0x0, 0x1d}) 23:39:06 executing program 0: r0 = add_key$keyring(&(0x7f0000000040), &(0x7f00000002c0)={'syz', 0x3}, 0x0, 0x0, 0xfffffffffffffffd) keyctl$KEYCTL_RESTRICT_KEYRING(0xf, r0, 0x0, 0x0) connect$inet(0xffffffffffffffff, &(0x7f0000000140)={0x2, 0x0, @dev}, 0x10) r1 = syz_open_dev$sg(&(0x7f0000000040), 0x0, 0x0) ioctl$BLKTRACETEARDOWN(r1, 0x1276, 0x0) ioctl$BLKTRACESETUP(r1, 0xc0481273, &(0x7f0000000140)={'\x00', 0x0, 0x4, 0x0, 0x76, 0x9}) 23:39:06 executing program 5: perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r0 = syz_mount_image$vfat(&(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x0, 0x2, &(0x7f0000000180)=[{&(0x7f0000000140)="eb3c906d6b66732e66617400020801000470008400f801", 0x17}, {0x0, 0x0, 0x1000a00}], 0x0, &(0x7f0000000240)=ANY=[]) openat2(r0, &(0x7f0000000100)='./file0\x00', &(0x7f00000001c0)={0x40040}, 0x18) (fail_nth: 2) [ 1176.476382] FAULT_INJECTION: forcing a failure. [ 1176.476382] name failslab, interval 1, probability 0, space 0, times 0 [ 1176.476427] CPU: 0 PID: 7773 Comm: syz-executor.7 Not tainted 5.10.194 #1 [ 1176.476435] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1176.476440] Call Trace: [ 1176.476461] dump_stack+0x107/0x167 [ 1176.476481] should_fail.cold+0x5/0xa [ 1176.476499] ? getname_flags.part.0+0x50/0x4f0 23:39:06 executing program 2: r0 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000040)='/proc/crypto\x00', 0x0, 0x0) statx(r0, &(0x7f0000000180)='./file1\x00', 0x800, 0x600, &(0x7f00000004c0)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0}) lstat(&(0x7f00000002c0)='./file1\x00', 0x0) r3 = syz_open_dev$vcsn(0x0, 0x4, 0x0) ioctl$SNDRV_TIMER_IOCTL_CONTINUE(0xffffffffffffffff, 0x54a2) fchownat(0xffffffffffffff9c, &(0x7f00000003c0)='./file1\x00', r1, r2, 0x1000) r4 = socket$inet_udplite(0x2, 0x2, 0x88) openat$vcsu(0xffffffffffffff9c, &(0x7f0000000400), 0x303242, 0x0) r5 = syz_open_dev$vcsa(&(0x7f0000000040), 0x5, 0x4001c0) r6 = socket$inet_icmp_raw(0x2, 0x3, 0x1) getsockopt$inet_IP_XFRM_POLICY(r6, 0x0, 0x11, &(0x7f00000005c0)={{{@in, @in6=@mcast2}}, {{@in=@multicast1}, 0x0, @in6=@loopback}}, 0x0) ioctl$ifreq_SIOCGIFINDEX_vcan(r3, 0x8933, &(0x7f0000000380)={'vxcan1\x00'}) mmap$IORING_OFF_CQ_RING(&(0x7f0000ffc000/0x1000)=nil, 0x1000, 0x3000000, 0x40010, r5, 0x8000000) mmap(&(0x7f0000ffa000/0x3000)=nil, 0x3000, 0x2, 0x10010, r4, 0xdac1a000) r7 = openat$cdrom(0xffffffffffffff9c, &(0x7f0000002480), 0x800, 0x0) ioctl$CDROMREADAUDIO(0xffffffffffffffff, 0x530e, &(0x7f0000000ac0)={@msf, 0x1, 0x1, &(0x7f0000000a80)=""/1}) dup3(0xffffffffffffffff, r7, 0x0) r8 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$nl_generic(r8, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000480)={&(0x7f0000000080)={0x1c, 0x1d, 0xc21, 0x0, 0x0, {0x4, 0x0, 0x2}, [@typed={0x8, 0xc, 0x0, 0x0, @u32}]}, 0x1c}}, 0x0) openat$incfs(0xffffffffffffffff, &(0x7f0000000100)='.pending_reads\x00', 0x0, 0x40) 23:39:06 executing program 7: perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_mount_image$vfat(&(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x0, 0x2, &(0x7f0000000180)=[{&(0x7f0000000140)="eb3c906d6b66732e66617400020801000470008400f801", 0x17}, {0x0, 0x0, 0x1000a00}], 0x0, &(0x7f0000000240)=ANY=[]) (fail_nth: 17) 23:39:06 executing program 4: perf_event_open(&(0x7f0000001d80)={0x2, 0x80, 0x69, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = socket$inet6_udp(0xa, 0x2, 0x0) dup(0xffffffffffffffff) fstat(0xffffffffffffffff, 0x0) connect$inet6(r0, &(0x7f0000000600)={0xa, 0x0, 0x0, @dev, 0x2}, 0x1c) sendmmsg$inet6(r0, &(0x7f0000000080)=[{{0x0, 0x0, &(0x7f00000004c0)=[{&(0x7f00000001c0)="4bc702854e3954b59347985ccc868289d3fe483d2c0900a2a1d12e33a66529e1f276fef452632dfa3c004ce3be84a5f66c29cd4ec39ae5206562fbc9ea3c0dbbebc22e628e147b0e9631f19b0ce0a48e0e675b2da3442226b898f1ddf8eabf133ab4a9cb0999c2ee1d3bd36d089b0d8e97ea00d4c5f6ad14dce058d595aacba2d587ff5eacd81b71a73f53ed276d1f3b3384bb2bfba4e0f37302e690df9e7024378ac7", 0xa3}], 0x1}}], 0x1, 0x0) 23:39:06 executing program 1: perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = syz_io_uring_setup(0x3a75, &(0x7f0000000080), &(0x7f0000ffb000/0x3000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=0x0, &(0x7f0000000100)=0x0) r3 = socket$inet6_udplite(0xa, 0x2, 0x88) syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_RECVMSG={0xa, 0x0, 0x0, r3, 0x0, &(0x7f0000000440)={0x0, 0x0, 0x0}, 0x0, 0x40000203}, 0x0) mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0) r4 = mmap$IORING_OFF_CQ_RING(&(0x7f0000ffe000/0x2000)=nil, 0x2000, 0x0, 0x13, r0, 0x8000000) syz_io_uring_submit(r4, r2, &(0x7f00000002c0)=@IORING_OP_READ=@pass_buffer={0x16, 0x4, 0x0, @fd, 0x0, 0x0}, 0x80000001) r5 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1) dup2(r5, r3) io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0) [ 1176.476516] should_failslab+0x5/0x20 [ 1176.476530] kmem_cache_alloc+0x5b/0x310 [ 1176.476553] getname_flags.part.0+0x50/0x4f0 [ 1176.476573] getname+0x8e/0xd0 [ 1176.476589] do_sys_openat2+0xf9/0x420 [ 1176.476606] ? build_open_flags+0x6f0/0x6f0 [ 1176.476635] ? rcu_read_lock_any_held+0x75/0xa0 [ 1176.476655] __x64_sys_openat+0x13f/0x1f0 [ 1176.476669] ? __ia32_sys_open+0x1c0/0x1c0 [ 1176.476696] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1176.476710] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1176.476732] do_syscall_64+0x33/0x40 [ 1176.476748] entry_SYSCALL_64_after_hwframe+0x62/0xc7 [ 1176.476757] RIP: 0033:0x7f4966d6ba04 [ 1176.476770] Code: 84 00 00 00 00 00 44 89 54 24 0c e8 96 f9 ff ff 44 8b 54 24 0c 44 89 e2 48 89 ee 41 89 c0 bf 9c ff ff ff b8 01 01 00 00 0f 05 <48> 3d 00 f0 ff ff 77 34 44 89 c7 89 44 24 0c e8 c8 f9 ff ff 8b 44 [ 1176.476777] RSP: 002b:00007f496432ded0 EFLAGS: 00000293 ORIG_RAX: 0000000000000101 [ 1176.476793] RAX: ffffffffffffffda RBX: 00007f4966e02970 RCX: 00007f4966d6ba04 [ 1176.476801] RDX: 0000000000000002 RSI: 00007f496432e000 RDI: 00000000ffffff9c [ 1176.476810] RBP: 00007f496432e000 R08: 0000000000000000 R09: ffffffffffffffff [ 1176.476817] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000002 [ 1176.476825] R13: 0000000000000005 R14: 00000000200001b0 R15: 0000000000000002 [ 1176.558388] FAULT_INJECTION: forcing a failure. [ 1176.558388] name failslab, interval 1, probability 0, space 0, times 0 [ 1176.558414] CPU: 1 PID: 7775 Comm: syz-executor.5 Not tainted 5.10.194 #1 [ 1176.558427] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1176.558435] Call Trace: [ 1176.558468] dump_stack+0x107/0x167 [ 1176.558501] should_fail.cold+0x5/0xa [ 1176.558529] ? getname_flags.part.0+0x50/0x4f0 [ 1176.558557] should_failslab+0x5/0x20 [ 1176.558579] kmem_cache_alloc+0x5b/0x310 [ 1176.558648] getname_flags.part.0+0x50/0x4f0 [ 1176.558682] getname+0x8e/0xd0 [ 1176.558709] do_sys_openat2+0xf9/0x420 [ 1176.558737] ? build_open_flags+0x6f0/0x6f0 [ 1176.558799] __x64_sys_openat2+0x183/0x280 [ 1176.558823] ? __ia32_sys_openat+0x1f0/0x1f0 [ 1176.558843] ? ksys_write+0x1a9/0x260 [ 1176.558884] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1176.558907] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1176.558943] do_syscall_64+0x33/0x40 [ 1176.558969] entry_SYSCALL_64_after_hwframe+0x62/0xc7 [ 1176.558985] RIP: 0033:0x7f42482aab19 [ 1176.559006] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1176.559019] RSP: 002b:00007f4245820188 EFLAGS: 00000246 ORIG_RAX: 00000000000001b5 [ 1176.559046] RAX: ffffffffffffffda RBX: 00007f42483bdf60 RCX: 00007f42482aab19 [ 1176.559059] RDX: 00000000200001c0 RSI: 0000000020000100 RDI: 0000000000000006 [ 1176.559078] RBP: 00007f42458201d0 R08: 0000000000000000 R09: 0000000000000000 [ 1176.559091] R10: 0000000000000018 R11: 0000000000000246 R12: 0000000000000001 [ 1176.559105] R13: 00007fff668bfa7f R14: 00007f4245820300 R15: 0000000000022000 [ 1176.560238] FAULT_INJECTION: forcing a failure. [ 1176.560238] name failslab, interval 1, probability 0, space 0, times 0 [ 1176.560251] CPU: 0 PID: 7780 Comm: syz-executor.7 Not tainted 5.10.194 #1 [ 1176.560261] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1176.560265] Call Trace: [ 1176.560281] dump_stack+0x107/0x167 [ 1176.560299] should_fail.cold+0x5/0xa [ 1176.560314] ? create_object.isra.0+0x3a/0xa20 [ 1176.560330] should_failslab+0x5/0x20 [ 1176.560341] kmem_cache_alloc+0x5b/0x310 [ 1176.560363] create_object.isra.0+0x3a/0xa20 [ 1176.560376] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 1176.560397] kmem_cache_alloc+0x159/0x310 [ 1176.560419] getname_flags.part.0+0x50/0x4f0 [ 1176.560438] getname+0x8e/0xd0 [ 1176.560453] do_sys_openat2+0xf9/0x420 [ 1176.560469] ? build_open_flags+0x6f0/0x6f0 [ 1176.560496] ? rcu_read_lock_any_held+0x75/0xa0 [ 1176.560516] __x64_sys_openat+0x13f/0x1f0 [ 1176.560530] ? __ia32_sys_open+0x1c0/0x1c0 [ 1176.560554] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1176.560574] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1176.609637] do_syscall_64+0x33/0x40 [ 1176.609652] entry_SYSCALL_64_after_hwframe+0x62/0xc7 [ 1176.609661] RIP: 0033:0x7f4966d6ba04 [ 1176.609673] Code: 84 00 00 00 00 00 44 89 54 24 0c e8 96 f9 ff ff 44 8b 54 24 0c 44 89 e2 48 89 ee 41 89 c0 bf 9c ff ff ff b8 01 01 00 00 0f 05 <48> 3d 00 f0 ff ff 77 34 44 89 c7 89 44 24 0c e8 c8 f9 ff ff 8b 44 [ 1176.609680] RSP: 002b:00007f496432ded0 EFLAGS: 00000293 ORIG_RAX: 0000000000000101 [ 1176.609704] RAX: ffffffffffffffda RBX: 00007f4966e02970 RCX: 00007f4966d6ba04 23:39:06 executing program 0: r0 = add_key$keyring(&(0x7f0000000040), &(0x7f00000002c0)={'syz', 0x3}, 0x0, 0x0, 0xfffffffffffffffd) keyctl$KEYCTL_RESTRICT_KEYRING(0xf, r0, 0x0, 0x0) connect$inet(0xffffffffffffffff, &(0x7f0000000140)={0x2, 0x0, @dev}, 0x10) r1 = syz_open_dev$sg(&(0x7f0000000040), 0x0, 0x0) ioctl$BLKTRACETEARDOWN(r1, 0x1276, 0x0) ioctl$BLKTRACESETUP(r1, 0xc0481273, &(0x7f0000000140)={'\x00', 0x0, 0x4, 0x0, 0x76, 0x9}) [ 1176.615946] RDX: 0000000000000002 RSI: 00007f496432e000 RDI: 00000000ffffff9c [ 1176.615954] RBP: 00007f496432e000 R08: 0000000000000000 R09: ffffffffffffffff [ 1176.615961] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000002 [ 1176.615969] R13: 0000000000000005 R14: 00000000200001b0 R15: 0000000000000002 23:39:06 executing program 7: perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_mount_image$vfat(&(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x0, 0x2, &(0x7f0000000180)=[{&(0x7f0000000140)="eb3c906d6b66732e66617400020801000470008400f801", 0x17}, {0x0, 0x0, 0x1000a00}], 0x0, &(0x7f0000000240)=ANY=[]) (fail_nth: 18) 23:39:06 executing program 5: perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r0 = syz_mount_image$vfat(&(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x0, 0x2, &(0x7f0000000180)=[{&(0x7f0000000140)="eb3c906d6b66732e66617400020801000470008400f801", 0x17}, {0x0, 0x0, 0x1000a00}], 0x0, &(0x7f0000000240)=ANY=[]) openat2(r0, &(0x7f0000000100)='./file0\x00', &(0x7f00000001c0)={0x40040}, 0x18) (fail_nth: 3) [ 1176.724197] FAULT_INJECTION: forcing a failure. [ 1176.724197] name failslab, interval 1, probability 0, space 0, times 0 [ 1176.725597] CPU: 0 PID: 7793 Comm: syz-executor.5 Not tainted 5.10.194 #1 [ 1176.726409] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1176.727414] Call Trace: [ 1176.727744] dump_stack+0x107/0x167 [ 1176.728189] should_fail.cold+0x5/0xa [ 1176.728648] ? create_object.isra.0+0x3a/0xa20 [ 1176.729193] should_failslab+0x5/0x20 [ 1176.729655] kmem_cache_alloc+0x5b/0x310 [ 1176.730149] create_object.isra.0+0x3a/0xa20 [ 1176.730684] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 1176.731305] kmem_cache_alloc+0x159/0x310 [ 1176.731810] getname_flags.part.0+0x50/0x4f0 [ 1176.732338] getname+0x8e/0xd0 [ 1176.732734] do_sys_openat2+0xf9/0x420 [ 1176.733209] ? build_open_flags+0x6f0/0x6f0 [ 1176.733754] __x64_sys_openat2+0x183/0x280 [ 1176.734260] ? __ia32_sys_openat+0x1f0/0x1f0 [ 1176.734814] ? ksys_write+0x1a9/0x260 [ 1176.735278] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1176.735948] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1176.736561] do_syscall_64+0x33/0x40 [ 1176.737032] entry_SYSCALL_64_after_hwframe+0x62/0xc7 [ 1176.737638] RIP: 0033:0x7f42482aab19 [ 1176.738104] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1176.740279] RSP: 002b:00007f4245820188 EFLAGS: 00000246 ORIG_RAX: 00000000000001b5 [ 1176.741228] RAX: ffffffffffffffda RBX: 00007f42483bdf60 RCX: 00007f42482aab19 [ 1176.742105] RDX: 00000000200001c0 RSI: 0000000020000100 RDI: ffffffffffffffff [ 1176.742992] RBP: 00007f42458201d0 R08: 0000000000000000 R09: 0000000000000000 [ 1176.743886] R10: 0000000000000018 R11: 0000000000000246 R12: 0000000000000001 [ 1176.744782] R13: 00007fff668bfa7f R14: 00007f4245820300 R15: 0000000000022000 [ 1176.756777] FAULT_INJECTION: forcing a failure. [ 1176.756777] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 1176.758304] CPU: 0 PID: 7795 Comm: syz-executor.7 Not tainted 5.10.194 #1 [ 1176.759118] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1176.760090] Call Trace: [ 1176.760406] dump_stack+0x107/0x167 [ 1176.760855] should_fail.cold+0x5/0xa [ 1176.761320] strncpy_from_user+0x34/0x470 [ 1176.761817] getname_flags.part.0+0x95/0x4f0 [ 1176.762342] getname+0x8e/0xd0 [ 1176.762737] do_sys_openat2+0xf9/0x420 [ 1176.763193] ? build_open_flags+0x6f0/0x6f0 [ 1176.763719] ? rcu_read_lock_any_held+0x75/0xa0 [ 1176.764271] __x64_sys_openat+0x13f/0x1f0 [ 1176.764756] ? __ia32_sys_open+0x1c0/0x1c0 [ 1176.765261] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1176.765887] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1176.766535] do_syscall_64+0x33/0x40 [ 1176.767013] entry_SYSCALL_64_after_hwframe+0x62/0xc7 [ 1176.767640] RIP: 0033:0x7f4966d6ba04 [ 1176.768093] Code: 84 00 00 00 00 00 44 89 54 24 0c e8 96 f9 ff ff 44 8b 54 24 0c 44 89 e2 48 89 ee 41 89 c0 bf 9c ff ff ff b8 01 01 00 00 0f 05 <48> 3d 00 f0 ff ff 77 34 44 89 c7 89 44 24 0c e8 c8 f9 ff ff 8b 44 [ 1176.770353] RSP: 002b:00007f496432ded0 EFLAGS: 00000293 ORIG_RAX: 0000000000000101 [ 1176.771282] RAX: ffffffffffffffda RBX: 00007f4966e02970 RCX: 00007f4966d6ba04 [ 1176.772154] RDX: 0000000000000002 RSI: 00007f496432e000 RDI: 00000000ffffff9c [ 1176.773022] RBP: 00007f496432e000 R08: 0000000000000000 R09: ffffffffffffffff [ 1176.773906] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000002 [ 1176.774784] R13: 0000000000000005 R14: 00000000200001b0 R15: 0000000000000002 23:39:21 executing program 2: ioctl$TCSETSF2(0xffffffffffffffff, 0x402c542d, &(0x7f0000000000)={0x0, 0x0, 0x0, 0x0, 0x5, "77004a6efdff00"}) r0 = syz_mount_image$tmpfs(&(0x7f0000000000), &(0x7f0000000080)='./file0\x00', 0x0, 0x0, 0x0, 0x0, &(0x7f0000000600)=ANY=[]) mknodat$loop(r0, &(0x7f0000000300)='./file0\x00', 0x1000, 0x0) openat(r0, &(0x7f0000000140)='./file0\x00', 0x2, 0x0) openat(r0, &(0x7f0000000000)='./file0\x00', 0x0, 0x0) r1 = syz_mount_image$tmpfs(&(0x7f0000000000), &(0x7f0000000080)='./file0\x00', 0x0, 0x0, 0x0, 0x0, &(0x7f0000000600)=ANY=[]) mknodat$loop(r1, &(0x7f0000000300)='./file0\x00', 0x1000, 0x0) openat(r1, &(0x7f0000000140)='./file0\x00', 0x2, 0x0) openat(r1, &(0x7f0000000000)='./file0\x00', 0x0, 0x0) dup3(r0, r1, 0x0) r2 = openat$tun(0xffffffffffffff9c, &(0x7f0000000700), 0x0, 0x0) ioctl$TUNSETQUEUE(r2, 0x400454ca, &(0x7f0000000000)={'veth0_vlan\x00'}) ioctl$TUNSETOFFLOAD(r2, 0x400454cb, 0x7ffffffff000) 23:39:21 executing program 4: perf_event_open(&(0x7f0000001d80)={0x2, 0x80, 0x69, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = socket$inet6_udp(0xa, 0x2, 0x0) dup(0xffffffffffffffff) fstat(0xffffffffffffffff, 0x0) connect$inet6(r0, &(0x7f0000000600)={0xa, 0x0, 0x0, @dev, 0x2}, 0x1c) sendmmsg$inet6(r0, &(0x7f0000000080)=[{{0x0, 0x0, &(0x7f00000004c0)=[{&(0x7f00000001c0)="4bc702854e3954b59347985ccc868289d3fe483d2c0900a2a1d12e33a66529e1f276fef452632dfa3c004ce3be84a5f66c29cd4ec39ae5206562fbc9ea3c0dbbebc22e628e147b0e9631f19b0ce0a48e0e675b2da3442226b898f1ddf8eabf133ab4a9cb0999c2ee1d3bd36d089b0d8e97ea00d4c5f6ad14dce058d595aacba2d587ff5eacd81b71a73f53ed276d1f3b3384bb2bfba4e0f37302e690df9e7024378ac754ac0576f996f3ee53d1034c7720767ddf2625817532f7ae891033", 0xbe}], 0x1}}], 0x1, 0x0) 23:39:21 executing program 7: perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_mount_image$vfat(&(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x0, 0x2, &(0x7f0000000180)=[{&(0x7f0000000140)="eb3c906d6b66732e66617400020801000470008400f801", 0x17}, {0x0, 0x0, 0x1000a00}], 0x0, &(0x7f0000000240)=ANY=[]) (fail_nth: 19) 23:39:21 executing program 3: r0 = syz_open_dev$tty1(0xc, 0x4, 0x1) writev(r0, &(0x7f0000000080)=[{&(0x7f0000001380)="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", 0x1ea}], 0x1) [ 1191.420232] FAULT_INJECTION: forcing a failure. [ 1191.420232] name failslab, interval 1, probability 0, space 0, times 0 23:39:21 executing program 1: perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = syz_io_uring_setup(0x3a75, &(0x7f0000000080), &(0x7f0000ffb000/0x3000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=0x0, &(0x7f0000000100)=0x0) r3 = socket$inet6_udplite(0xa, 0x2, 0x88) syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_RECVMSG={0xa, 0x0, 0x0, r3, 0x0, &(0x7f0000000440)={0x0, 0x0, 0x0}, 0x0, 0x40000203}, 0x0) mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0) r4 = mmap$IORING_OFF_CQ_RING(&(0x7f0000ffe000/0x2000)=nil, 0x2000, 0x0, 0x13, r0, 0x8000000) syz_io_uring_submit(r4, r2, &(0x7f00000002c0)=@IORING_OP_READ=@pass_buffer={0x16, 0x4, 0x0, @fd, 0x0, 0x0}, 0x80000001) r5 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1) dup2(r5, r3) io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0) [ 1191.422665] CPU: 1 PID: 7807 Comm: syz-executor.7 Not tainted 5.10.194 #1 [ 1191.424126] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1191.425810] Call Trace: [ 1191.426357] dump_stack+0x107/0x167 [ 1191.427113] should_fail.cold+0x5/0xa [ 1191.427895] ? __alloc_file+0x21/0x320 [ 1191.428697] should_failslab+0x5/0x20 [ 1191.429461] kmem_cache_alloc+0x5b/0x310 [ 1191.430291] __alloc_file+0x21/0x320 [ 1191.431059] alloc_empty_file+0x6d/0x170 [ 1191.431882] path_openat+0xe3/0x26f0 [ 1191.432639] ? path_lookupat+0x860/0x860 [ 1191.433462] ? perf_trace_lock+0xac/0x490 23:39:21 executing program 6: r0 = syz_open_dev$tty20(0xc, 0x4, 0x1) ioctl$VT_RESIZEX(r0, 0x560a, &(0x7f0000000000)={0x1, 0x3, 0x0, 0x1000, 0x8001}) r1 = openat$hpet(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0) read$eventfd(r1, 0x0, 0x0) ioctl$TIOCL_UNBLANKSCREEN(r1, 0x541c, &(0x7f0000000040)) 23:39:21 executing program 0: r0 = add_key$keyring(&(0x7f0000000040), &(0x7f00000002c0)={'syz', 0x3}, 0x0, 0x0, 0xfffffffffffffffd) keyctl$KEYCTL_RESTRICT_KEYRING(0xf, r0, 0x0, 0x0) connect$inet(0xffffffffffffffff, &(0x7f0000000140)={0x2, 0x0, @dev}, 0x10) r1 = syz_open_dev$sg(&(0x7f0000000040), 0x0, 0x0) ioctl$BLKTRACETEARDOWN(r1, 0x1276, 0x0) ioctl$BLKTRACESETUP(r1, 0xc0481273, &(0x7f0000000140)={'\x00', 0x0, 0x4, 0x8, 0x0, 0x9}) 23:39:21 executing program 5: perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r0 = syz_mount_image$vfat(&(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x0, 0x2, &(0x7f0000000180)=[{&(0x7f0000000140)="eb3c906d6b66732e66617400020801000470008400f801", 0x17}, {0x0, 0x0, 0x1000a00}], 0x0, &(0x7f0000000240)=ANY=[]) openat2(r0, &(0x7f0000000100)='./file0\x00', &(0x7f00000001c0)={0x40040}, 0x18) (fail_nth: 4) [ 1191.434293] ? lock_acquire+0x197/0x470 [ 1191.435190] ? __lockdep_reset_lock+0x180/0x180 [ 1191.436129] do_filp_open+0x190/0x3e0 [ 1191.436893] ? may_open_dev+0xf0/0xf0 [ 1191.437660] ? __alloc_fd+0x2b8/0x630 [ 1191.438430] ? lock_downgrade+0x6d0/0x6d0 [ 1191.439272] ? do_raw_spin_lock+0x121/0x260 [ 1191.440138] ? rwlock_bug.part.0+0x90/0x90 [ 1191.440998] ? _raw_spin_unlock+0x1a/0x30 [ 1191.441826] ? __alloc_fd+0x2b8/0x630 [ 1191.442601] do_sys_openat2+0x171/0x420 [ 1191.443418] ? build_open_flags+0x6f0/0x6f0 [ 1191.444294] ? rcu_read_lock_any_held+0x75/0xa0 [ 1191.445230] __x64_sys_openat+0x13f/0x1f0 [ 1191.446059] ? __ia32_sys_open+0x1c0/0x1c0 [ 1191.446219] FAULT_INJECTION: forcing a failure. [ 1191.446219] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 1191.446924] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1191.446943] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1191.450348] do_syscall_64+0x33/0x40 [ 1191.451102] entry_SYSCALL_64_after_hwframe+0x62/0xc7 [ 1191.452135] RIP: 0033:0x7f4966d6ba04 [ 1191.452877] Code: 84 00 00 00 00 00 44 89 54 24 0c e8 96 f9 ff ff 44 8b 54 24 0c 44 89 e2 48 89 ee 41 89 c0 bf 9c ff ff ff b8 01 01 00 00 0f 05 <48> 3d 00 f0 ff ff 77 34 44 89 c7 89 44 24 0c e8 c8 f9 ff ff 8b 44 [ 1191.456554] RSP: 002b:00007f496432ded0 EFLAGS: 00000293 ORIG_RAX: 0000000000000101 [ 1191.458067] RAX: ffffffffffffffda RBX: 00007f4966e02970 RCX: 00007f4966d6ba04 [ 1191.459491] RDX: 0000000000000002 RSI: 00007f496432e000 RDI: 00000000ffffff9c [ 1191.460910] RBP: 00007f496432e000 R08: 0000000000000000 R09: ffffffffffffffff [ 1191.462325] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000002 [ 1191.463749] R13: 0000000000000005 R14: 00000000200001b0 R15: 0000000000000002 [ 1191.465192] CPU: 0 PID: 7813 Comm: syz-executor.5 Not tainted 5.10.194 #1 [ 1191.466017] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1191.467022] Call Trace: [ 1191.467342] dump_stack+0x107/0x167 [ 1191.467792] should_fail.cold+0x5/0xa [ 1191.468263] strncpy_from_user+0x34/0x470 [ 1191.468762] getname_flags.part.0+0x95/0x4f0 [ 1191.469290] getname+0x8e/0xd0 [ 1191.469679] do_sys_openat2+0xf9/0x420 [ 1191.470142] ? __switch_to+0x572/0xf70 [ 1191.470609] ? build_open_flags+0x6f0/0x6f0 [ 1191.471140] __x64_sys_openat2+0x183/0x280 [ 1191.471647] ? __ia32_sys_openat+0x1f0/0x1f0 [ 1191.472150] ? ksys_write+0x1a9/0x260 [ 1191.472614] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1191.473235] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1191.473861] do_syscall_64+0x33/0x40 [ 1191.474310] entry_SYSCALL_64_after_hwframe+0x62/0xc7 [ 1191.474317] RIP: 0033:0x7f42482aab19 [ 1191.474327] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1191.474334] RSP: 002b:00007f4245820188 EFLAGS: 00000246 ORIG_RAX: 00000000000001b5 23:39:21 executing program 5: perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r0 = syz_mount_image$vfat(&(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x0, 0x2, &(0x7f0000000180)=[{&(0x7f0000000140)="eb3c906d6b66732e66617400020801000470008400f801", 0x17}, {0x0, 0x0, 0x1000a00}], 0x0, &(0x7f0000000240)=ANY=[]) openat2(r0, &(0x7f0000000100)='./file0\x00', &(0x7f00000001c0)={0x40040}, 0x18) (fail_nth: 5) [ 1191.474346] RAX: ffffffffffffffda RBX: 00007f42483bdf60 RCX: 00007f42482aab19 [ 1191.474353] RDX: 00000000200001c0 RSI: 0000000020000100 RDI: 0000000000000006 [ 1191.474359] RBP: 00007f42458201d0 R08: 0000000000000000 R09: 0000000000000000 [ 1191.474365] R10: 0000000000000018 R11: 0000000000000246 R12: 0000000000000001 [ 1191.474372] R13: 00007fff668bfa7f R14: 00007f4245820300 R15: 0000000000022000 23:39:21 executing program 7: perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_mount_image$vfat(&(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x0, 0x2, &(0x7f0000000180)=[{&(0x7f0000000140)="eb3c906d6b66732e66617400020801000470008400f801", 0x17}, {0x0, 0x0, 0x1000a00}], 0x0, &(0x7f0000000240)=ANY=[]) (fail_nth: 20) 23:39:21 executing program 1: perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = syz_io_uring_setup(0x3a75, &(0x7f0000000080), &(0x7f0000ffb000/0x3000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=0x0, &(0x7f0000000100)=0x0) r3 = socket$inet6_udplite(0xa, 0x2, 0x88) syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_RECVMSG={0xa, 0x0, 0x0, r3, 0x0, &(0x7f0000000440)={0x0, 0x0, 0x0}, 0x0, 0x40000203}, 0x0) mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0) r4 = mmap$IORING_OFF_CQ_RING(&(0x7f0000ffe000/0x2000)=nil, 0x2000, 0x0, 0x13, r0, 0x8000000) syz_io_uring_submit(r4, r2, &(0x7f00000002c0)=@IORING_OP_READ=@pass_buffer={0x16, 0x4, 0x0, @fd, 0x0, 0x0}, 0x80000001) r5 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1) dup2(r5, r3) io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0) 23:39:21 executing program 0: r0 = add_key$keyring(&(0x7f0000000040), &(0x7f00000002c0)={'syz', 0x3}, 0x0, 0x0, 0xfffffffffffffffd) keyctl$KEYCTL_RESTRICT_KEYRING(0xf, r0, 0x0, 0x0) connect$inet(0xffffffffffffffff, &(0x7f0000000140)={0x2, 0x0, @dev}, 0x10) r1 = syz_open_dev$sg(&(0x7f0000000040), 0x0, 0x0) ioctl$BLKTRACETEARDOWN(r1, 0x1276, 0x0) ioctl$BLKTRACESETUP(r1, 0xc0481273, &(0x7f0000000140)={'\x00', 0x0, 0x4, 0x8, 0x0, 0x9}) 23:39:21 executing program 4: perf_event_open(&(0x7f0000001d80)={0x2, 0x80, 0x69, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = socket$inet6_udp(0xa, 0x2, 0x0) dup(0xffffffffffffffff) fstat(0xffffffffffffffff, 0x0) connect$inet6(r0, &(0x7f0000000600)={0xa, 0x0, 0x0, @dev, 0x2}, 0x1c) sendmmsg$inet6(r0, &(0x7f0000000080)=[{{0x0, 0x0, &(0x7f00000004c0)=[{&(0x7f00000001c0)="4bc702854e3954b59347985ccc868289d3fe483d2c0900a2a1d12e33a66529e1f276fef452632dfa3c004ce3be84a5f66c29cd4ec39ae5206562fbc9ea3c0dbbebc22e628e147b0e9631f19b0ce0a48e0e675b2da3442226b898f1ddf8eabf133ab4a9cb0999c2ee1d3bd36d089b0d8e97ea00d4c5f6ad14dce058d595aacba2d587ff5eacd81b71a73f53ed276d1f3b3384bb2bfba4e0f37302e690df9e7024378ac754ac0576f996f3ee53d1034c7720767ddf2625817532f7ae891033", 0xbe}], 0x1}}], 0x1, 0x0) [ 1191.608234] FAULT_INJECTION: forcing a failure. [ 1191.608234] name failslab, interval 1, probability 0, space 0, times 0 [ 1191.610900] CPU: 1 PID: 7824 Comm: syz-executor.5 Not tainted 5.10.194 #1 [ 1191.612393] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1191.614193] Call Trace: [ 1191.614783] dump_stack+0x107/0x167 [ 1191.615620] should_fail.cold+0x5/0xa [ 1191.616464] ? __alloc_file+0x21/0x320 [ 1191.617336] should_failslab+0x5/0x20 [ 1191.618166] kmem_cache_alloc+0x5b/0x310 [ 1191.619075] __alloc_file+0x21/0x320 [ 1191.619897] alloc_empty_file+0x6d/0x170 [ 1191.620784] path_openat+0xe3/0x26f0 [ 1191.621601] ? perf_trace_run_bpf_submit+0xf5/0x190 [ 1191.622685] ? perf_trace_run_bpf_submit+0xf5/0x190 [ 1191.623601] FAULT_INJECTION: forcing a failure. [ 1191.623601] name failslab, interval 1, probability 0, space 0, times 0 [ 1191.623792] ? path_lookupat+0x860/0x860 [ 1191.625843] ? perf_trace_lock+0x2bd/0x490 [ 1191.626758] ? lock_acquire+0x197/0x470 [ 1191.627655] ? __lockdep_reset_lock+0x180/0x180 [ 1191.628678] do_filp_open+0x190/0x3e0 [ 1191.629505] ? may_open_dev+0xf0/0xf0 [ 1191.630344] ? __alloc_fd+0x2b8/0x630 [ 1191.631179] ? lock_downgrade+0x6d0/0x6d0 [ 1191.632085] ? do_raw_spin_lock+0x121/0x260 [ 1191.633025] ? rwlock_bug.part.0+0x90/0x90 [ 1191.633966] ? _raw_spin_unlock+0x1a/0x30 [ 1191.634885] ? __alloc_fd+0x2b8/0x630 [ 1191.635737] do_sys_openat2+0x171/0x420 [ 1191.636605] ? build_open_flags+0x6f0/0x6f0 [ 1191.637577] __x64_sys_openat2+0x183/0x280 [ 1191.638493] ? __ia32_sys_openat+0x1f0/0x1f0 [ 1191.639449] ? ksys_write+0x1a9/0x260 [ 1191.640292] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1191.641422] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1191.642548] do_syscall_64+0x33/0x40 [ 1191.643393] entry_SYSCALL_64_after_hwframe+0x62/0xc7 [ 1191.644509] RIP: 0033:0x7f42482aab19 [ 1191.645319] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1191.649296] RSP: 002b:00007f4245820188 EFLAGS: 00000246 ORIG_RAX: 00000000000001b5 [ 1191.650953] RAX: ffffffffffffffda RBX: 00007f42483bdf60 RCX: 00007f42482aab19 [ 1191.652491] RDX: 00000000200001c0 RSI: 0000000020000100 RDI: 0000000000000006 [ 1191.654021] RBP: 00007f42458201d0 R08: 0000000000000000 R09: 0000000000000000 [ 1191.655576] R10: 0000000000000018 R11: 0000000000000246 R12: 0000000000000001 [ 1191.657108] R13: 00007fff668bfa7f R14: 00007f4245820300 R15: 0000000000022000 [ 1191.658690] CPU: 0 PID: 7828 Comm: syz-executor.7 Not tainted 5.10.194 #1 [ 1191.659525] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1191.660586] Call Trace: [ 1191.660903] dump_stack+0x107/0x167 [ 1191.661328] should_fail.cold+0x5/0xa [ 1191.661769] ? create_object.isra.0+0x3a/0xa20 [ 1191.662304] should_failslab+0x5/0x20 [ 1191.662749] kmem_cache_alloc+0x5b/0x310 [ 1191.663243] create_object.isra.0+0x3a/0xa20 [ 1191.663751] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 1191.664346] kmem_cache_alloc+0x159/0x310 [ 1191.664838] __alloc_file+0x21/0x320 [ 1191.665276] alloc_empty_file+0x6d/0x170 [ 1191.665739] path_openat+0xe3/0x26f0 [ 1191.666172] ? perf_trace_run_bpf_submit+0xf5/0x190 [ 1191.666752] ? perf_trace_run_bpf_submit+0xf5/0x190 [ 1191.667340] ? path_lookupat+0x860/0x860 [ 1191.667808] ? perf_trace_lock+0x2bd/0x490 [ 1191.668300] ? lock_acquire+0x197/0x470 [ 1191.668761] ? __lockdep_reset_lock+0x180/0x180 [ 1191.669314] do_filp_open+0x190/0x3e0 [ 1191.669760] ? may_open_dev+0xf0/0xf0 [ 1191.670217] ? __alloc_fd+0x2b8/0x630 [ 1191.670669] ? lock_downgrade+0x6d0/0x6d0 [ 1191.671161] ? do_raw_spin_lock+0x121/0x260 [ 1191.671667] ? rwlock_bug.part.0+0x90/0x90 [ 1191.672173] ? _raw_spin_unlock+0x1a/0x30 [ 1191.672663] ? __alloc_fd+0x2b8/0x630 [ 1191.673121] do_sys_openat2+0x171/0x420 [ 1191.673589] ? build_open_flags+0x6f0/0x6f0 [ 1191.674112] ? rcu_read_lock_any_held+0x75/0xa0 [ 1191.674661] __x64_sys_openat+0x13f/0x1f0 [ 1191.675147] ? __ia32_sys_open+0x1c0/0x1c0 [ 1191.675647] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1191.676275] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1191.676882] do_syscall_64+0x33/0x40 [ 1191.677310] entry_SYSCALL_64_after_hwframe+0x62/0xc7 [ 1191.677905] RIP: 0033:0x7f4966d6ba04 [ 1191.678340] Code: 84 00 00 00 00 00 44 89 54 24 0c e8 96 f9 ff ff 44 8b 54 24 0c 44 89 e2 48 89 ee 41 89 c0 bf 9c ff ff ff b8 01 01 00 00 0f 05 <48> 3d 00 f0 ff ff 77 34 44 89 c7 89 44 24 0c e8 c8 f9 ff ff 8b 44 [ 1191.680487] RSP: 002b:00007f496432ded0 EFLAGS: 00000293 ORIG_RAX: 0000000000000101 [ 1191.681370] RAX: ffffffffffffffda RBX: 00007f4966e02970 RCX: 00007f4966d6ba04 [ 1191.682198] RDX: 0000000000000002 RSI: 00007f496432e000 RDI: 00000000ffffff9c [ 1191.683039] RBP: 00007f496432e000 R08: 0000000000000000 R09: ffffffffffffffff [ 1191.683871] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000002 [ 1191.684701] R13: 0000000000000005 R14: 00000000200001b0 R15: 0000000000000002 23:39:21 executing program 6: r0 = syz_open_dev$tty20(0xc, 0x4, 0x1) ioctl$KDSETLED(r0, 0x4b32, 0x1) ioctl$EXT4_IOC_GROUP_ADD(r0, 0x40286608, &(0x7f0000000040)={0x5c070d2f, 0x80000001, 0x80, 0x81, 0x3, 0x7}) ioctl$VT_RESIZEX(r0, 0x560a, &(0x7f0000000000)={0x0, 0x0, 0x0, 0x0, 0x1d}) 23:39:21 executing program 5: perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r0 = syz_mount_image$vfat(&(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x0, 0x2, &(0x7f0000000180)=[{&(0x7f0000000140)="eb3c906d6b66732e66617400020801000470008400f801", 0x17}, {0x0, 0x0, 0x1000a00}], 0x0, &(0x7f0000000240)=ANY=[]) openat2(r0, &(0x7f0000000100)='./file0\x00', &(0x7f00000001c0)={0x40040}, 0x18) (fail_nth: 6) 23:39:21 executing program 3: r0 = syz_open_dev$tty1(0xc, 0x4, 0x1) writev(r0, &(0x7f0000000080)=[{&(0x7f0000001380)="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", 0x1ea}], 0x1) [ 1191.743041] FAULT_INJECTION: forcing a failure. [ 1191.743041] name failslab, interval 1, probability 0, space 0, times 0 [ 1191.744419] CPU: 0 PID: 7839 Comm: syz-executor.5 Not tainted 5.10.194 #1 [ 1191.745171] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1191.746095] Call Trace: [ 1191.746401] dump_stack+0x107/0x167 [ 1191.746813] should_fail.cold+0x5/0xa [ 1191.747240] ? create_object.isra.0+0x3a/0xa20 [ 1191.747745] should_failslab+0x5/0x20 [ 1191.748165] kmem_cache_alloc+0x5b/0x310 [ 1191.748616] create_object.isra.0+0x3a/0xa20 [ 1191.749122] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 1191.749676] kmem_cache_alloc+0x159/0x310 [ 1191.750148] __alloc_file+0x21/0x320 [ 1191.750557] alloc_empty_file+0x6d/0x170 [ 1191.751038] path_openat+0xe3/0x26f0 [ 1191.751448] ? perf_trace_run_bpf_submit+0xf5/0x190 [ 1191.752006] ? perf_trace_run_bpf_submit+0xf5/0x190 [ 1191.752553] ? path_lookupat+0x860/0x860 [ 1191.753000] ? perf_trace_lock+0x2bd/0x490 [ 1191.753502] ? lock_acquire+0x197/0x470 [ 1191.753971] ? __lockdep_reset_lock+0x180/0x180 [ 1191.754523] do_filp_open+0x190/0x3e0 [ 1191.754965] ? may_open_dev+0xf0/0xf0 [ 1191.755404] ? __alloc_fd+0x2b8/0x630 [ 1191.755839] ? lock_downgrade+0x6d0/0x6d0 [ 1191.756311] ? do_raw_spin_lock+0x121/0x260 [ 1191.756805] ? rwlock_bug.part.0+0x90/0x90 [ 1191.757298] ? _raw_spin_unlock+0x1a/0x30 [ 1191.757774] ? __alloc_fd+0x2b8/0x630 [ 1191.758220] do_sys_openat2+0x171/0x420 [ 1191.758678] ? build_open_flags+0x6f0/0x6f0 [ 1191.759192] __x64_sys_openat2+0x183/0x280 [ 1191.759676] ? __ia32_sys_openat+0x1f0/0x1f0 [ 1191.760173] ? ksys_write+0x1a9/0x260 [ 1191.760612] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1191.761205] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1191.761799] do_syscall_64+0x33/0x40 [ 1191.762230] entry_SYSCALL_64_after_hwframe+0x62/0xc7 [ 1191.762823] RIP: 0033:0x7f42482aab19 [ 1191.763249] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1191.765337] RSP: 002b:00007f4245820188 EFLAGS: 00000246 ORIG_RAX: 00000000000001b5 [ 1191.766200] RAX: ffffffffffffffda RBX: 00007f42483bdf60 RCX: 00007f42482aab19 [ 1191.767010] RDX: 00000000200001c0 RSI: 0000000020000100 RDI: ffffffffffffffff [ 1191.767816] RBP: 00007f42458201d0 R08: 0000000000000000 R09: 0000000000000000 [ 1191.768627] R10: 0000000000000018 R11: 0000000000000246 R12: 0000000000000001 [ 1191.769435] R13: 00007fff668bfa7f R14: 00007f4245820300 R15: 0000000000022000 23:39:21 executing program 2: r0 = add_key$keyring(&(0x7f0000000040), &(0x7f00000002c0)={'syz', 0x3}, 0x0, 0x0, 0xfffffffffffffffd) keyctl$KEYCTL_RESTRICT_KEYRING(0xf, r0, 0x0, 0x0) connect$inet(0xffffffffffffffff, &(0x7f0000000140)={0x2, 0x0, @dev}, 0x10) r1 = syz_open_dev$sg(&(0x7f0000000040), 0x0, 0x0) ioctl$BLKTRACETEARDOWN(r1, 0x1276, 0x0) ioctl$BLKTRACESETUP(r1, 0xc0481273, &(0x7f0000000140)={'\x00', 0x0, 0x4, 0x8, 0x0, 0x9}) 23:39:21 executing program 1: perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = syz_io_uring_setup(0x3a75, &(0x7f0000000080), &(0x7f0000ffb000/0x3000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=0x0, &(0x7f0000000100)=0x0) r3 = socket$inet6_udplite(0xa, 0x2, 0x88) syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_RECVMSG={0xa, 0x0, 0x0, r3, 0x0, &(0x7f0000000440)={0x0, 0x0, 0x0}, 0x0, 0x40000203}, 0x0) mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0) r4 = mmap$IORING_OFF_CQ_RING(&(0x7f0000ffe000/0x2000)=nil, 0x2000, 0xf, 0x10, r0, 0x8000000) syz_io_uring_submit(r4, r2, &(0x7f00000002c0)=@IORING_OP_READ=@pass_buffer={0x16, 0x4, 0x0, @fd, 0x0, 0x0}, 0x80000001) r5 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1) dup2(r5, r3) io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0) 23:39:34 executing program 2: perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) mount(0x0, 0x0, 0x0, 0x300b4e2, 0x0) r0 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a) ioctl$sock_SIOCGIFINDEX(r0, 0x8914, &(0x7f0000000140)={'lo\x00'}) r1 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a) r2 = socket$inet6_udplite(0xa, 0x2, 0x88) ioctl$sock_inet_SIOCGIFPFLAGS(0xffffffffffffffff, 0x8935, &(0x7f00000002c0)={'vcan0\x00'}) r3 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a) ioctl$sock_SIOCGIFINDEX(r3, 0x8933, &(0x7f0000000140)={'lo\x00', 0x0}) sendmsg$TIPC_CMD_SHOW_PORTS(0xffffffffffffffff, &(0x7f0000000240)={&(0x7f00000000c0)={0x10, 0x0, 0x0, 0x4000000}, 0xc, &(0x7f00000001c0)={&(0x7f0000000100)={0x1c, 0x0, 0x2, 0x70bd29, 0x25dfdbfe, {}, ["", "", "", ""]}, 0x1c}}, 0x14) ioctl$sock_inet6_SIOCSIFADDR(r2, 0x8916, &(0x7f0000000180)={@loopback, 0x0, r4}) socket$inet6_icmp_raw(0xa, 0x3, 0x3a) perf_event_open(&(0x7f0000000400)={0x3, 0x80, 0xe6, 0x4, 0x40, 0x4, 0x0, 0xffffffff00000001, 0x44000, 0x1, 0x1, 0x1, 0x1, 0x1, 0x0, 0x1, 0x0, 0x1, 0x1, 0x1, 0x0, 0x1, 0x0, 0x0, 0x1, 0x2, 0x0, 0x0, 0x0, 0x1, 0x0, 0x1, 0x0, 0x1, 0x1, 0x1, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8, 0x4, @perf_config_ext={0xffffffffffffcba0, 0xff}, 0x18000, 0xad9, 0x833, 0x0, 0x9, 0x7, 0x400, 0x0, 0x7, 0x0, 0x4cd7}, 0xffffffffffffffff, 0x3, 0xffffffffffffffff, 0x2) ioctl$sock_inet_SIOCGIFPFLAGS(0xffffffffffffffff, 0x8935, &(0x7f0000000000)={'wlan0\x00'}) ioctl$sock_SIOCGIFINDEX(r1, 0x8914, &(0x7f0000000140)={'lo\x00'}) r5 = socket$nl_generic(0x10, 0x3, 0x10) r6 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000280), 0xffffffffffffffff) sendmsg$NL80211_CMD_GET_COALESCE(0xffffffffffffffff, &(0x7f0000000340)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000380)=ANY=[@ANYBLOB="1b91ec2b", @ANYRES16=r6, @ANYRES16, @ANYRES32=0x0, @ANYBLOB="59c32ba04be657050000007631301e7790b65d0168a2cc4f67f002ed480470cc197670435746e994146ab2e75f43999d52412f725f4de1ebd72d59b5f91f03e0a2f111"], 0x1c}}, 0x4000010) ioctl$sock_SIOCSPGRP(r5, 0x8902, &(0x7f0000000080)) 23:39:34 executing program 0: r0 = add_key$keyring(&(0x7f0000000040), &(0x7f00000002c0)={'syz', 0x3}, 0x0, 0x0, 0xfffffffffffffffd) keyctl$KEYCTL_RESTRICT_KEYRING(0xf, r0, 0x0, 0x0) connect$inet(0xffffffffffffffff, &(0x7f0000000140)={0x2, 0x0, @dev}, 0x10) r1 = syz_open_dev$sg(&(0x7f0000000040), 0x0, 0x0) ioctl$BLKTRACETEARDOWN(r1, 0x1276, 0x0) ioctl$BLKTRACESETUP(r1, 0xc0481273, &(0x7f0000000140)={'\x00', 0x0, 0x4, 0x8, 0x0, 0x9}) 23:39:34 executing program 1: perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = syz_io_uring_setup(0x3a75, &(0x7f0000000080), &(0x7f0000ffb000/0x3000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=0x0, &(0x7f0000000100)=0x0) r3 = socket$inet6_udplite(0xa, 0x2, 0x88) syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_RECVMSG={0xa, 0x0, 0x0, r3, 0x0, &(0x7f0000000440)={0x0, 0x0, 0x0}, 0x0, 0x40000203}, 0x0) mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0) r4 = mmap$IORING_OFF_CQ_RING(&(0x7f0000ffe000/0x2000)=nil, 0x2000, 0xf, 0x10, r0, 0x8000000) syz_io_uring_submit(r4, r2, &(0x7f00000002c0)=@IORING_OP_READ=@pass_buffer={0x16, 0x4, 0x0, @fd, 0x0, 0x0}, 0x80000001) r5 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1) dup2(r5, r3) io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0) 23:39:34 executing program 4: perf_event_open(&(0x7f0000001d80)={0x2, 0x80, 0x69, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = socket$inet6_udp(0xa, 0x2, 0x0) dup(0xffffffffffffffff) fstat(0xffffffffffffffff, 0x0) connect$inet6(r0, &(0x7f0000000600)={0xa, 0x0, 0x0, @dev, 0x2}, 0x1c) sendmmsg$inet6(r0, &(0x7f0000000080)=[{{0x0, 0x0, &(0x7f00000004c0)=[{&(0x7f00000001c0)="4bc702854e3954b59347985ccc868289d3fe483d2c0900a2a1d12e33a66529e1f276fef452632dfa3c004ce3be84a5f66c29cd4ec39ae5206562fbc9ea3c0dbbebc22e628e147b0e9631f19b0ce0a48e0e675b2da3442226b898f1ddf8eabf133ab4a9cb0999c2ee1d3bd36d089b0d8e97ea00d4c5f6ad14dce058d595aacba2d587ff5eacd81b71a73f53ed276d1f3b3384bb2bfba4e0f37302e690df9e7024378ac754ac0576f996f3ee53d1034c7720767ddf2625817532f7ae891033", 0xbe}], 0x1}}], 0x1, 0x0) 23:39:34 executing program 6: r0 = syz_open_dev$tty20(0xc, 0x4, 0x1) vmsplice(r0, &(0x7f00000011c0)=[{&(0x7f0000000040)="656266fc35169660af26e3dcf28bb702a9a73120ace252ea8b49704d12f5b7f64b8f1a5b90ff2d8e2b93663adaec6f85", 0x30}, {&(0x7f0000000080)="09b042f22b0e2aec02a0251c7813223f5695ed1a04e1be370a7990b6e159439b96978cfea34530fc930e4151becff56bfd2efc319bb25185c182145aee5417b45c9d38a625642b45398f2b4d0e465d6741b5b606ecfecab09f8d39e24199a13a13b017672c533953e156df43adc936bf55399dae3b92b8671c63423c", 0x7c}, {&(0x7f0000000100)="f74a9a0aa048ac4b13794bbc0a6fe7db1cab0f32e2f34a578d1fb51066d6e0f2ebdfdf28e48130790255c00af1e7cd7db0c8b88626015a9024184aa51f832dd4451b562d271b24eefa614b04d0d4e6bbf338ef6ac1ec69fbceea5e221bac02f42691c6cc6c1fc27c0b247b", 0x6b}, {&(0x7f0000000180)="ee0fcf865662e42e1ebebc6c397af4b6dc3f1f67ecf4753153019808fc73c7ffc69df7bf438d3d2a0ebeb58994710466296db8359ee356fdab74780a381f52a5e27a26be06906e72855467a0c4b93e8fabcc1a2ebf4cdfa65a560202bcd4c4ed1ee19a8867b24b4ac86a801c4789dd9e586ebcae4c0861901bd0019c3465dd3974a2efef02c26db1fd26492d84f17cbe0e99ef7a2009ce86c10fbd7aa28bd9dca2902200a73359488b0423891c693238157360f60364ba511b92e8e795f9ce8fe832af4ca38c9e6678b8f35441e4ff299a0256d029dd52f4f7c6aef1305beac3c506ba72e830ab19b8f433997c3f74b9383db4e5ad709b8eae3b320ed7232a97d3bcf009c588fd621582dc0bf0348bcdb9450a8f24e2b40cbf0a31fadeab283f064110ac2863492fda62ae42be18446bc2d5e6c4401a4b3b344db375f7daa26ac9906aed4b354306248f516a96ef22fc4c149bd3a0597bf9bbf5a179957bb0891fc527ab2eecdb0a3ac190dcef2b5a45ae9beb4bcb5add5a75b56c21416401f1c098c4529c660c434f53db7a2cea46367c0f39877b0065b3e1faba586fd5af4bb37a971d7752a580d847d03f8efc7a2ef456edc0394e59bd74d13db2b4697879957db515ac0951b91ccb317621773b673023465f640bb8f29fcb9a49348492c95f5958906ed719e5ac5fe212346c77592ebc50557d88785765cb6e7f5686ae5c9455e9c4188f63e6e53b5be81f3efa0b8abf9ccf31a90a2ddb18d89c15e21c594b690ec3164ae40e9de3227ca0fd2f55134b5c66da507e6e1ed4c3fa478fec2b26b50dd52e0107b436033812971286a55eef2130bab855068230b3cc3832aa110c1c9af13684889ab87862dbf38a328cc93e2d149fa31e2f0cd2ca8c50b62b21e3a55b2fd90984ec182a3f019246cb2a5e79cd6336f364b7b7c85d139a7f8f29b1a3cd3f18e972ea07489a7f11ad655a18cda9566a56f900d6da4a8c1453ea99108fdf557284992128f4ed853b9108d0e7522c021d0d9a6c891e6865dbfeb1af0920124821d1bdb619e9f91f3ab042a1624fd4789a3c5edbf469d9859e0e491aea51bdf889d7d1035c88548ae889bec4d0f44bec28d2e17e79cd22f0e1edcee23d390b405cd00f82e6ce6c1980150bb75ca23a37a1683edcd54cd553d78ac1f45ccebe4596856a3662516e3f39bb482469db9bbb45ca8fb5ef69121035c2aa5a614ff9e7b9b81a6a895e3ba401c400635616abbed3ea9147a4e97241871bca39cdd9eb5677e9d3f891bb1489a59521edf6c96a9b492544b939cca036db35b094bbc867199979f989460933f303bc7cdc3d4c766d9993e32ee0a9c22ffbc13784204078d742456133c266b739b86e999834fbdaaaaf50de0ed795162ee93c83c969aca4c8682a51eabf6498955022342dbe43a78d4887849eb0d34168f5eafcf51bfa6d4bcb3fbd3623c5a86782183c3d71d711f747e29445d49a3a08f460025341850af7f6798bfe4aaa4343681c55ff0684986f4b14c3af4e8118a19e13de6b11b532a90fba4eeb3bb75f09c04fe4efb1ad233cce0eddcf02d1d1c4c6e817dc7a529fb34ba8b075f04a52314e30cd3419fe1f2b90c4e6f68361fb51861d1d4bcd65dac209b8f82f2bc765133fb671dd842a40c5a6f657f1cd55b55c1991c047a2049e989d50da7bbc72de384962da0e84ddf921d1ee7f7cb9fad56b26aecd88f9d83dacf2212e9ca64284b5ba2d4e00c34d55187b61746e058cf307efe38f7c3e8f2ab4b3343cf7391696a974b567e142360fdabccde208b21d783215df4be5d18c82bf77bb728ce74a5253155a4414c3c551d7a1c44093106d52bdbb6cb14dcd502c847ce003bc3ac11f769afc31eaa56d87280591e6151cb2101f421acc5e1f18ccba4108cadc9847a05351e0b441bae52dcce66d964254143dfd170969cf406fa5ac13a0123a57575cb94e84ace7d1c53fc7852d272942133b331f1c120b6d253e7bfba047cdc5f07b7c6691d479ed089d7b2a4894cd7b001a3d9e00aacdac4370d74b102dba433b95ee1861b629223dbfe4622c06c9e5cf8214fbf3bc3c5e7dc4b3d9eb5909dbf59ed62f2611249fa59711968468d28519840bd184661bdaaea3cc024e5906291a16989d10d08545a82b74d9f8ed76c4d94d71de254922aaa950a854b5572911e5117cef91bc893247f91c535bea5236a97a4e154cde64553c9c931d02f702fac7a60a2b5405e648a7fadcd45befdb5150f009b31dc59b964a36f052567ba67ab448604177488aa1c7a61541c5a77bafdaaf953d4ed6d03b2730f90ca3a3b908fd7cbf165347daa65266ed8ea7e5e6d4925f501a50d8ee6ddbbc3641112b72d48657a450741c188f0694898fbe4f954edd91198f44fde52e20b1ac367833cf85db09db8d83f05b7acf7f3fe528e02f8b14005bd6303e307cc2f00b8d13a2f6143700d045c927d63a7da85477bfe2dc6bd64624f44d72df897967a0ca8fb3939aeb2cc3c14362eb461a734ac35940265bde762f2a5d58738ae441c8c5b373aae8a31296d4b834ceffa4cb2196d4321123e750372abc1ab56270f4ec3d81f79195ba5f347b634ca1b2aa5517f59270fc8fedcf96edbad14476735cae10115328f2e7f965be1aff08d1a525f2be345f2ec3f3e75d408d5d191624861ed1b4528fc5022dc4f082639a958cffd1bd4c36b4275aba382cc8a0142ad3d6e2ce92641fa8f409fa4d4c3a7d5cf403c2c727274725e4a599be1cd23b315cc0d5925a9be7dcef31e3fa4485b8ca5cec9719ccbb88e4c2d920e4f75230ca207c92dff8633886e7ce4ee0831810f6bc897638b53de40a506b1fed57d495fb78f8a4f4bf8da7cce653acb6c8c660e726f491e95e5d2f94b529cbc36c100e2eb6f1be5bf0138462f1cd8e90e0877bb04ac9a4f5cb7d59796ab80d8991f5924cc357a50df0dd0e06c2be805e3ce1b95af9828a70a6547dab19c631b9e27e264f557757664e989916a5866ca7be4017eca1e735a6fd8817023f59d88a083ca9b2224e79a8155e7113d46fd6effc168f601041da79bb0688393f504310cee7b8d632201dd4b44e317ccd64e68c32afe9bc25afab3dbd6eb57099febc1813e7d1c892e5561843cda2fc6d45e61007a77402d872029b3ad54ac28c856f31d014c1e0fa55f83abd86c3866082ef742cd1f982310d0b39c4df37cae638e99fb87185ebb2f3ca876327126b62f5bb930970649b900287634454dc855e00e2f1b3adf58098d32a0a1c2ee20b9d90b74eb3c88bdeadf5d7e73b209e99634ca3becf11043da15556b897c29290793bfdd6b1682f0ff418cf65efcc48e54de7b2cdd01b6a32c19a4c1a243aef69d8dc88741bcec541c2a03ab0a775f4788dd4b0caff31cafc2e6aace91aa871ba14d52e91bed73c4e7d43e54dda268258640c9a9309b178ff54fc7e5c704d9c439874cca65d6f99622b4915af44b1dd1f4c6352a05e76255c19d3c0bc90e6609d6affbdd7171bb976ed84a38b78719195e4cb85736e20bd9989f643b6eec99a4def5175f1946aaa4edfcc13457172ad1e4198aeb81541fccc5913db9e9de4872cd4e18535da36cd7aef75baf2afab4df610fcb4d76645a2c15c6695e2fe2c31cbb641fa26776c78526d30edf7c6a413a5e4be75aea0e493ac5b40d5cf4a73a78668b12c27d6df07c1c7178d0cf57ccce2fb992955ab4663a707990d8ef297992f38fa9d7a94310391275383ab7754cea492a3a0f48529fc7c3281fb2bc32bd8e5451b6591527be215c5d25f78667321db73225fbf865123ffa52250d52be92d4417e46ad674c20b7281df6d25b0edf8b50aca2daf2583bfefda83af6448dec883a5b90a10e17563c7444e79be45a7e8a0f74289c614c1cddbc5662cb8e9e9856605bbba818afd81ceda636fffbd7703da9e326144d94d41dc6efca0c793a2ee7b822725e167fffe227c0451990d5355212b90f9981cabfe605f458efebf51a8ba3cf70dbb7fdb487a335f02cfb749eebe512572ca3b384c73a8666baa7d8a2b7328d433a17f9967c4ba66799aaf823e8dbe5150e4985bcbbab4919ff13307e72fd7b62d32c610e2f4aa8ffc51e3ce1cf82f1beb51288ab19c64525d9fda5a5f6c3549f154bc1108aa710a68364b62c53b32e9da34a357b8836a1c8af63af8039b1770f81127b560181875873fa274ce7a2bc9b23af2dff5cd0ccdf9915fa057d092923e487deac5828f153357da3c56555756840a42ac719132f0389366b662fd7625d4489d500f4b1eabb407df6b42ea729f4ec33203fcd6ca59bfe04c59ba9b4e6ad9bfb472b06d2584ace47971c23bded5c883578d5c17f53dc1e17f6ef1bf20e86811b4d622ebe402d0067051e68d85c26b7bdb3d75d1707715f0995296de0fc7170735e5862b3fbcabdc1d2aa86c0cd68c49e37c66c0d79605177e36af126f44862a1b66d6ba2f6f844e9d80fef72b8b8e937868d13f5a3f71fb7d159ad339294162bda1dd1fcc51492344edff442aaaf791394fbd63ea47dab2aaf2e92dec5e10b114ab187f9bf8287f7307dbff3440c5a3588b5d67b125047ad73ca30774c944466bf5701d208f7971e62e44e9733387c4727a66f8038a40f782b2229b71bce8d68524c1366391699e078792d61fd6e55a99c150b56e6f81dff10cb05acfdd76c2863e757eb5387e70ce440ec5667c19fe4373628af0d5e9f4c341f467f4e9e5a9f9ba54a0666ffb0689680ee902aaaf7cd382b1e75211bbb9f0f6b7ec484043f5785c0b4f35e076d3679c2c3410710bf05476c1f528df833e7f0ca52b9332b7f348e29ee3c4292f126bd458daa369dda3d519c635ffbe6d43a0453b3bef38470e6fc1e2059e5c0e28446bd3ebf9acf47c9b0914858538fcc6ad6f6127185e4c772ba11477ca64e18934e880a77e3d43a80ddf65cd113ae95b875a36b3b661738bb43a7f07f7ae76e748f334d222601b6dd01d91d46f7d2f53cb459a7a33648844d57a25d8026bc18c5a47ee54844cf18b2e3ea72c52ed88a3970a23aa4617e70c10fad9682bf6af2453bf87db23811868a17c0b824cafc9de102515a158a5c497e808f5f19f232cc33119974cbe78f427566a4b86919e0361bcec65840ed6f24ccce3ced09307199b2533e02a8b960376f97533d6a9f5c0c32c22387b9fea30bf6305e3e77ad4c4fdb0414784005bb60f80a4f99420860aaf815d9478c20b7a9179f705ab38cfc5de9587d2c1fd5ab3224be493527cb44da87bdb49e2b210b4296222355441301419f156db6dfea4a730f49162ec0dcf7c5fc0e3fbf0eb05685f0fe399953c958986dc8652613f45f5ecf48579d94668aaf3fde2c76dfc64c2d90ead3c5e25b9a17340cb89c5242bf6c19493dd101fdd1e6b7f4375dbb394fd063647be42247b6dfbaa730a57ea0cbb3f976e618b8d2f708660f7c6fba568c8845d12992b11c520b00c550f88d4df6937114f00f97ce01baf7654b50909a64f7a4b18a1af18fa3d0ae94fc2845bf3318c0d1c993c3f14e70aa7d58daf0701598ab56ff3e90e27658f073be79ef7b9e87333c58fd4bc64c8873fa4a93b6ee605afc9d54460041b8c94178f46962271874e142adf58bcf489b5d44c731a0140502b7f5733c833f387b544a7105a54be0109a023175d34c56f942696816fa0b698ef12937426153de2e83418be9f59c9a83e78d5189953aad92acc17c14199865364add68a18365591ef5fd0cdc01af0e15de22333c296227f4fe3a1f3a22371a32162a80aa77500665254ffebf419f73d0ae59c14", 0x1000}, {&(0x7f0000001180)="d6f556e126c0b95e986f7a177658", 0xe}], 0x5, 0x1) r1 = syz_open_dev$tty20(0xc, 0x4, 0x0) ioctl$VT_RESIZEX(r1, 0x560a, &(0x7f0000000000)={0x0, 0x0, 0xfffd, 0x0, 0x5}) 23:39:34 executing program 3: r0 = syz_open_dev$tty1(0xc, 0x4, 0x1) writev(r0, &(0x7f0000000080)=[{&(0x7f0000001380)="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", 0x1ea}], 0x1) 23:39:34 executing program 7: perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_mount_image$vfat(&(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x0, 0x2, &(0x7f0000000180)=[{&(0x7f0000000140)="eb3c906d6b66732e66617400020801000470008400f801", 0x17}, {0x0, 0x0, 0x1000a00}], 0x0, &(0x7f0000000240)=ANY=[]) (fail_nth: 21) 23:39:34 executing program 5: perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r0 = syz_mount_image$vfat(&(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x0, 0x2, &(0x7f0000000180)=[{&(0x7f0000000140)="eb3c906d6b66732e66617400020801000470008400f801", 0x17}, {0x0, 0x0, 0x1000a00}], 0x0, &(0x7f0000000240)=ANY=[]) openat2(r0, &(0x7f0000000100)='./file0\x00', &(0x7f00000001c0)={0x40040}, 0x18) (fail_nth: 7) [ 1204.708921] FAULT_INJECTION: forcing a failure. [ 1204.708921] name failslab, interval 1, probability 0, space 0, times 0 23:39:34 executing program 4: perf_event_open(&(0x7f0000001d80)={0x2, 0x80, 0x69, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = socket$inet6_udp(0xa, 0x2, 0x0) dup(0xffffffffffffffff) fstat(0xffffffffffffffff, 0x0) connect$inet6(r0, &(0x7f0000000600)={0xa, 0x0, 0x0, @dev, 0x2}, 0x1c) sendmmsg$inet6(r0, &(0x7f0000000080)=[{{0x0, 0x0, &(0x7f00000004c0)=[{&(0x7f00000001c0)="4bc702854e3954b59347985ccc868289d3fe483d2c0900a2a1d12e33a66529e1f276fef452632dfa3c004ce3be84a5f66c29cd4ec39ae5206562fbc9ea3c0dbbebc22e628e147b0e9631f19b0ce0a48e0e675b2da3442226b898f1ddf8eabf133ab4a9cb0999c2ee1d3bd36d089b0d8e97ea00d4c5f6ad14dce058d595aacba2d587ff5eacd81b71a73f53ed276d1f3b3384bb2bfba4e0f37302e690df9e7024378ac754ac0576f996f3ee53d1034c7720767ddf2625817532f7ae89103367b73a36152b84c38bc227ba9e9f", 0xcc}], 0x1}}], 0x1, 0x0) [ 1204.708944] CPU: 0 PID: 7867 Comm: syz-executor.7 Not tainted 5.10.194 #1 [ 1204.708955] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1204.708962] Call Trace: [ 1204.708991] dump_stack+0x107/0x167 [ 1204.709020] should_fail.cold+0x5/0xa [ 1204.709048] ? security_file_alloc+0x34/0x170 23:39:34 executing program 6: pkey_alloc(0x0, 0x2) pkey_mprotect(&(0x7f0000ff9000/0x4000)=nil, 0x4000, 0x9, 0xffffffffffffffff) r0 = syz_open_dev$tty20(0xc, 0x4, 0x1) ioctl$TCSETSW(r0, 0x5403, &(0x7f0000000040)={0x2e23, 0x6707, 0x8, 0x2, 0x4, "6818886eb19fd9be9c4da89e48402907cc84fd"}) syz_open_dev$tty20(0xc, 0x4, 0x1) ioctl$VT_RESIZEX(r0, 0x560a, &(0x7f0000000000)={0x0, 0x0, 0x3, 0x8, 0x1d, 0x3}) 23:39:34 executing program 0: r0 = add_key$keyring(&(0x7f0000000040), &(0x7f00000002c0)={'syz', 0x3}, 0x0, 0x0, 0xfffffffffffffffd) keyctl$KEYCTL_RESTRICT_KEYRING(0xf, r0, 0x0, 0x0) connect$inet(0xffffffffffffffff, &(0x7f0000000140)={0x2, 0x0, @dev}, 0x10) r1 = syz_open_dev$sg(&(0x7f0000000040), 0x0, 0x0) ioctl$BLKTRACETEARDOWN(r1, 0x1276, 0x0) ioctl$BLKTRACESETUP(r1, 0xc0481273, &(0x7f0000000140)={'\x00', 0x0, 0x4, 0x8, 0x76}) [ 1204.709074] should_failslab+0x5/0x20 [ 1204.709093] kmem_cache_alloc+0x5b/0x310 [ 1204.709130] security_file_alloc+0x34/0x170 [ 1204.709159] __alloc_file+0xb6/0x320 [ 1204.709186] alloc_empty_file+0x6d/0x170 [ 1204.709211] path_openat+0xe3/0x26f0 23:39:34 executing program 7: perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_mount_image$vfat(&(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x0, 0x2, &(0x7f0000000180)=[{&(0x7f0000000140)="eb3c906d6b66732e66617400020801000470008400f801", 0x17}, {0x0, 0x0, 0x1000a00}], 0x0, &(0x7f0000000240)=ANY=[]) (fail_nth: 22) [ 1204.709231] ? perf_trace_run_bpf_submit+0xf5/0x190 [ 1204.709263] ? perf_trace_run_bpf_submit+0xf5/0x190 [ 1204.709294] ? path_lookupat+0x860/0x860 [ 1204.709315] ? perf_trace_lock+0x2bd/0x490 [ 1204.709339] ? lock_acquire+0x197/0x470 [ 1204.709369] ? __lockdep_reset_lock+0x180/0x180 [ 1204.709407] do_filp_open+0x190/0x3e0 [ 1204.709426] ? may_open_dev+0xf0/0xf0 [ 1204.709458] ? __alloc_fd+0x2b8/0x630 [ 1204.709479] ? lock_downgrade+0x6d0/0x6d0 [ 1204.709503] ? do_raw_spin_lock+0x121/0x260 23:39:35 executing program 5: perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r0 = syz_mount_image$vfat(&(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x0, 0x2, &(0x7f0000000180)=[{&(0x7f0000000140)="eb3c906d6b66732e66617400020801000470008400f801", 0x17}, {0x0, 0x0, 0x1000a00}], 0x0, &(0x7f0000000240)=ANY=[]) openat2(r0, &(0x7f0000000100)='./file0\x00', &(0x7f00000001c0)={0x40040}, 0x18) (fail_nth: 8) [ 1204.709528] ? rwlock_bug.part.0+0x90/0x90 [ 1204.709571] ? _raw_spin_unlock+0x1a/0x30 [ 1204.709589] ? __alloc_fd+0x2b8/0x630 23:39:35 executing program 4: perf_event_open(&(0x7f0000001d80)={0x2, 0x80, 0x69, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = socket$inet6_udp(0xa, 0x2, 0x0) dup(0xffffffffffffffff) fstat(0xffffffffffffffff, 0x0) connect$inet6(r0, &(0x7f0000000600)={0xa, 0x0, 0x0, @dev, 0x2}, 0x1c) sendmmsg$inet6(r0, &(0x7f0000000080)=[{{0x0, 0x0, &(0x7f00000004c0)=[{&(0x7f00000001c0)="4bc702854e3954b59347985ccc868289d3fe483d2c0900a2a1d12e33a66529e1f276fef452632dfa3c004ce3be84a5f66c29cd4ec39ae5206562fbc9ea3c0dbbebc22e628e147b0e9631f19b0ce0a48e0e675b2da3442226b898f1ddf8eabf133ab4a9cb0999c2ee1d3bd36d089b0d8e97ea00d4c5f6ad14dce058d595aacba2d587ff5eacd81b71a73f53ed276d1f3b3384bb2bfba4e0f37302e690df9e7024378ac754ac0576f996f3ee53d1034c7720767ddf2625817532f7ae89103367b73a36152b84c38bc227ba9e9f", 0xcc}], 0x1}}], 0x1, 0x0) [ 1204.709633] do_sys_openat2+0x171/0x420 [ 1204.709659] ? build_open_flags+0x6f0/0x6f0 [ 1204.709699] ? rcu_read_lock_any_held+0x75/0xa0 [ 1204.709730] __x64_sys_openat+0x13f/0x1f0 [ 1204.709751] ? __ia32_sys_open+0x1c0/0x1c0 [ 1204.709789] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1204.709808] ? syscall_enter_from_user_mode+0x1d/0x50 23:39:35 executing program 0: r0 = add_key$keyring(&(0x7f0000000040), &(0x7f00000002c0)={'syz', 0x3}, 0x0, 0x0, 0xfffffffffffffffd) keyctl$KEYCTL_RESTRICT_KEYRING(0xf, r0, 0x0, 0x0) connect$inet(0xffffffffffffffff, &(0x7f0000000140)={0x2, 0x0, @dev}, 0x10) r1 = syz_open_dev$sg(&(0x7f0000000040), 0x0, 0x0) ioctl$BLKTRACETEARDOWN(r1, 0x1276, 0x0) ioctl$BLKTRACESETUP(r1, 0xc0481273, &(0x7f0000000140)={'\x00', 0x0, 0x4, 0x8, 0x76}) 23:39:35 executing program 1: perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = syz_io_uring_setup(0x3a75, &(0x7f0000000080), &(0x7f0000ffb000/0x3000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=0x0, &(0x7f0000000100)=0x0) r3 = socket$inet6_udplite(0xa, 0x2, 0x88) syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_RECVMSG={0xa, 0x0, 0x0, r3, 0x0, &(0x7f0000000440)={0x0, 0x0, 0x0}, 0x0, 0x40000203}, 0x0) mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0) r4 = mmap$IORING_OFF_CQ_RING(&(0x7f0000ffe000/0x2000)=nil, 0x2000, 0xf, 0x10, r0, 0x8000000) syz_io_uring_submit(r4, r2, &(0x7f00000002c0)=@IORING_OP_READ=@pass_buffer={0x16, 0x4, 0x0, @fd, 0x0, 0x0}, 0x80000001) r5 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1) dup2(r5, r3) io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0) [ 1204.709840] do_syscall_64+0x33/0x40 [ 1204.709863] entry_SYSCALL_64_after_hwframe+0x62/0xc7 [ 1204.709877] RIP: 0033:0x7f4966d6ba04 [ 1204.709896] Code: 84 00 00 00 00 00 44 89 54 24 0c e8 96 f9 ff ff 44 8b 54 24 0c 44 89 e2 48 89 ee 41 89 c0 bf 9c ff ff ff b8 01 01 00 00 0f 05 <48> 3d 00 f0 ff ff 77 34 44 89 c7 89 44 24 0c e8 c8 f9 ff ff 8b 44 23:39:35 executing program 2: perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) mount(0x0, 0x0, 0x0, 0x300b4e2, 0x0) r0 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a) ioctl$sock_SIOCGIFINDEX(r0, 0x8914, &(0x7f0000000140)={'lo\x00'}) r1 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a) r2 = socket$inet6_udplite(0xa, 0x2, 0x88) ioctl$sock_inet_SIOCGIFPFLAGS(0xffffffffffffffff, 0x8935, &(0x7f00000002c0)={'vcan0\x00'}) r3 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a) ioctl$sock_SIOCGIFINDEX(r3, 0x8933, &(0x7f0000000140)={'lo\x00', 0x0}) sendmsg$TIPC_CMD_SHOW_PORTS(0xffffffffffffffff, &(0x7f0000000240)={&(0x7f00000000c0)={0x10, 0x0, 0x0, 0x4000000}, 0xc, &(0x7f00000001c0)={&(0x7f0000000100)={0x1c, 0x0, 0x2, 0x70bd29, 0x25dfdbfe, {}, ["", "", "", ""]}, 0x1c}}, 0x14) ioctl$sock_inet6_SIOCSIFADDR(r2, 0x8916, &(0x7f0000000180)={@loopback, 0x0, r4}) socket$inet6_icmp_raw(0xa, 0x3, 0x3a) perf_event_open(&(0x7f0000000400)={0x3, 0x80, 0xe6, 0x4, 0x40, 0x4, 0x0, 0xffffffff00000001, 0x44000, 0x1, 0x1, 0x1, 0x1, 0x1, 0x0, 0x1, 0x0, 0x1, 0x1, 0x1, 0x0, 0x1, 0x0, 0x0, 0x1, 0x2, 0x0, 0x0, 0x0, 0x1, 0x0, 0x1, 0x0, 0x1, 0x1, 0x1, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8, 0x4, @perf_config_ext={0xffffffffffffcba0, 0xff}, 0x18000, 0xad9, 0x833, 0x0, 0x9, 0x7, 0x400, 0x0, 0x7, 0x0, 0x4cd7}, 0xffffffffffffffff, 0x3, 0xffffffffffffffff, 0x2) ioctl$sock_inet_SIOCGIFPFLAGS(0xffffffffffffffff, 0x8935, &(0x7f0000000000)={'wlan0\x00'}) ioctl$sock_SIOCGIFINDEX(r1, 0x8914, &(0x7f0000000140)={'lo\x00'}) r5 = socket$nl_generic(0x10, 0x3, 0x10) r6 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000280), 0xffffffffffffffff) sendmsg$NL80211_CMD_GET_COALESCE(0xffffffffffffffff, &(0x7f0000000340)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000380)=ANY=[@ANYBLOB="1b91ec2b", @ANYRES16=r6, @ANYRES16, @ANYRES32=0x0, @ANYBLOB="59c32ba04be657050000007631301e7790b65d0168a2cc4f67f002ed480470cc197670435746e994146ab2e75f43999d52412f725f4de1ebd72d59b5f91f03e0a2f111"], 0x1c}}, 0x4000010) ioctl$sock_SIOCSPGRP(r5, 0x8902, &(0x7f0000000080)) [ 1204.709907] RSP: 002b:00007f496432ded0 EFLAGS: 00000293 ORIG_RAX: 0000000000000101 23:39:35 executing program 7: perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_mount_image$vfat(&(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x0, 0x2, &(0x7f0000000180)=[{&(0x7f0000000140)="eb3c906d6b66732e66617400020801000470008400f801", 0x17}, {0x0, 0x0, 0x1000a00}], 0x0, &(0x7f0000000240)=ANY=[]) (fail_nth: 23) [ 1204.709931] RAX: ffffffffffffffda RBX: 00007f4966e02970 RCX: 00007f4966d6ba04 [ 1204.709943] RDX: 0000000000000002 RSI: 00007f496432e000 RDI: 00000000ffffff9c [ 1204.709955] RBP: 00007f496432e000 R08: 0000000000000000 R09: ffffffffffffffff [ 1204.709967] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000002 [ 1204.709978] R13: 0000000000000005 R14: 00000000200001b0 R15: 0000000000000002 [ 1204.760055] FAULT_INJECTION: forcing a failure. [ 1204.760055] name failslab, interval 1, probability 0, space 0, times 0 [ 1204.760076] CPU: 0 PID: 7868 Comm: syz-executor.5 Not tainted 5.10.194 #1 [ 1204.760089] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 23:39:35 executing program 4: perf_event_open(&(0x7f0000001d80)={0x2, 0x80, 0x69, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = socket$inet6_udp(0xa, 0x2, 0x0) dup(0xffffffffffffffff) fstat(0xffffffffffffffff, 0x0) connect$inet6(r0, &(0x7f0000000600)={0xa, 0x0, 0x0, @dev, 0x2}, 0x1c) sendmmsg$inet6(r0, &(0x7f0000000080)=[{{0x0, 0x0, &(0x7f00000004c0)=[{&(0x7f00000001c0)="4bc702854e3954b59347985ccc868289d3fe483d2c0900a2a1d12e33a66529e1f276fef452632dfa3c004ce3be84a5f66c29cd4ec39ae5206562fbc9ea3c0dbbebc22e628e147b0e9631f19b0ce0a48e0e675b2da3442226b898f1ddf8eabf133ab4a9cb0999c2ee1d3bd36d089b0d8e97ea00d4c5f6ad14dce058d595aacba2d587ff5eacd81b71a73f53ed276d1f3b3384bb2bfba4e0f37302e690df9e7024378ac754ac0576f996f3ee53d1034c7720767ddf2625817532f7ae89103367b73a36152b84c38bc227ba9e9f", 0xcc}], 0x1}}], 0x1, 0x0) [ 1204.760096] Call Trace: [ 1204.760125] dump_stack+0x107/0x167 [ 1204.760155] should_fail.cold+0x5/0xa [ 1204.760185] ? security_file_alloc+0x34/0x170 23:39:35 executing program 1: perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = syz_io_uring_setup(0x3a75, &(0x7f0000000080), &(0x7f0000ffb000/0x3000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=0x0, &(0x7f0000000100)=0x0) r3 = socket$inet6_udplite(0xa, 0x2, 0x88) syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_RECVMSG={0xa, 0x0, 0x0, r3, 0x0, &(0x7f0000000440)={0x0, 0x0, 0x0}, 0x0, 0x40000203}, 0x0) mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0) r4 = mmap$IORING_OFF_CQ_RING(&(0x7f0000ffe000/0x2000)=nil, 0x2000, 0xf, 0x13, 0xffffffffffffffff, 0x8000000) syz_io_uring_submit(r4, r2, &(0x7f00000002c0)=@IORING_OP_READ=@pass_buffer={0x16, 0x4, 0x0, @fd, 0x0, 0x0}, 0x80000001) r5 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1) dup2(r5, r3) io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0) [ 1204.760211] should_failslab+0x5/0x20 [ 1204.760230] kmem_cache_alloc+0x5b/0x310 [ 1204.760273] security_file_alloc+0x34/0x170 [ 1204.760303] __alloc_file+0xb6/0x320 [ 1204.760330] alloc_empty_file+0x6d/0x170 [ 1204.760355] path_openat+0xe3/0x26f0 [ 1204.760375] ? perf_trace_run_bpf_submit+0xf5/0x190 [ 1204.760399] ? perf_trace_run_bpf_submit+0xf5/0x190 [ 1204.760430] ? path_lookupat+0x860/0x860 [ 1204.760451] ? perf_trace_lock+0x2bd/0x490 23:39:35 executing program 5: perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r0 = syz_mount_image$vfat(&(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x0, 0x2, &(0x7f0000000180)=[{&(0x7f0000000140)="eb3c906d6b66732e66617400020801000470008400f801", 0x17}, {0x0, 0x0, 0x1000a00}], 0x0, &(0x7f0000000240)=ANY=[]) openat2(r0, &(0x7f0000000100)='./file0\x00', &(0x7f00000001c0)={0x40040}, 0x18) (fail_nth: 9) [ 1204.760475] ? lock_acquire+0x197/0x470 [ 1204.760505] ? __lockdep_reset_lock+0x180/0x180 [ 1204.760545] do_filp_open+0x190/0x3e0 [ 1204.760564] ? may_open_dev+0xf0/0xf0 [ 1204.760595] ? __alloc_fd+0x2b8/0x630 [ 1204.760617] ? lock_downgrade+0x6d0/0x6d0 [ 1204.760640] ? do_raw_spin_lock+0x121/0x260 [ 1204.760665] ? rwlock_bug.part.0+0x90/0x90 [ 1204.760709] ? _raw_spin_unlock+0x1a/0x30 [ 1204.760727] ? __alloc_fd+0x2b8/0x630 [ 1204.760772] do_sys_openat2+0x171/0x420 [ 1204.760797] ? build_open_flags+0x6f0/0x6f0 [ 1204.760852] __x64_sys_openat2+0x183/0x280 [ 1204.760874] ? __ia32_sys_openat+0x1f0/0x1f0 [ 1204.760892] ? ksys_write+0x1a9/0x260 [ 1204.760927] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1204.760946] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1204.760979] do_syscall_64+0x33/0x40 [ 1204.761002] entry_SYSCALL_64_after_hwframe+0x62/0xc7 [ 1204.761015] RIP: 0033:0x7f42482aab19 [ 1204.761035] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1204.761046] RSP: 002b:00007f4245820188 EFLAGS: 00000246 ORIG_RAX: 00000000000001b5 [ 1204.761070] RAX: ffffffffffffffda RBX: 00007f42483bdf60 RCX: 00007f42482aab19 [ 1204.761082] RDX: 00000000200001c0 RSI: 0000000020000100 RDI: 0000000000000006 [ 1204.761094] RBP: 00007f42458201d0 R08: 0000000000000000 R09: 0000000000000000 [ 1204.761105] R10: 0000000000000018 R11: 0000000000000246 R12: 0000000000000001 [ 1204.761117] R13: 00007fff668bfa7f R14: 00007f4245820300 R15: 0000000000022000 [ 1204.909407] FAULT_INJECTION: forcing a failure. [ 1204.909407] name failslab, interval 1, probability 0, space 0, times 0 [ 1204.909428] CPU: 1 PID: 7886 Comm: syz-executor.7 Not tainted 5.10.194 #1 [ 1204.909438] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1204.909443] Call Trace: [ 1204.909471] dump_stack+0x107/0x167 [ 1204.909495] should_fail.cold+0x5/0xa [ 1204.909516] ? create_object.isra.0+0x3a/0xa20 [ 1204.909538] should_failslab+0x5/0x20 [ 1204.909556] kmem_cache_alloc+0x5b/0x310 [ 1204.909576] ? percpu_ref_put_many.constprop.0+0x4e/0x110 [ 1204.909597] create_object.isra.0+0x3a/0xa20 [ 1204.909616] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 1204.909639] kmem_cache_alloc+0x159/0x310 [ 1204.909668] security_file_alloc+0x34/0x170 [ 1204.909691] __alloc_file+0xb6/0x320 [ 1204.909712] alloc_empty_file+0x6d/0x170 [ 1204.909731] path_openat+0xe3/0x26f0 [ 1204.909760] ? path_lookupat+0x860/0x860 [ 1204.909781] ? perf_trace_lock+0xac/0x490 [ 1204.909798] ? lock_acquire+0x197/0x470 [ 1204.909821] ? __lockdep_reset_lock+0x180/0x180 [ 1204.909850] do_filp_open+0x190/0x3e0 [ 1204.909866] ? may_open_dev+0xf0/0xf0 [ 1204.909888] ? __alloc_fd+0x2b8/0x630 [ 1204.909906] ? lock_downgrade+0x6d0/0x6d0 [ 1204.909926] ? do_raw_spin_lock+0x121/0x260 [ 1204.909947] ? rwlock_bug.part.0+0x90/0x90 [ 1204.909976] ? _raw_spin_unlock+0x1a/0x30 [ 1204.909992] ? __alloc_fd+0x2b8/0x630 [ 1204.910021] do_sys_openat2+0x171/0x420 [ 1204.910041] ? build_open_flags+0x6f0/0x6f0 [ 1204.910070] ? rcu_read_lock_any_held+0x75/0xa0 [ 1204.910092] __x64_sys_openat+0x13f/0x1f0 [ 1204.910110] ? __ia32_sys_open+0x1c0/0x1c0 [ 1204.910137] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1204.910153] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1204.910177] do_syscall_64+0x33/0x40 [ 1204.910197] entry_SYSCALL_64_after_hwframe+0x62/0xc7 [ 1204.910209] RIP: 0033:0x7f4966d6ba04 [ 1204.910227] Code: 84 00 00 00 00 00 44 89 54 24 0c e8 96 f9 ff ff 44 8b 54 24 0c 44 89 e2 48 89 ee 41 89 c0 bf 9c ff ff ff b8 01 01 00 00 0f 05 <48> 3d 00 f0 ff ff 77 34 44 89 c7 89 44 24 0c e8 c8 f9 ff ff 8b 44 [ 1204.910237] RSP: 002b:00007f496432ded0 EFLAGS: 00000293 ORIG_RAX: 0000000000000101 [ 1204.910257] RAX: ffffffffffffffda RBX: 00007f4966e02970 RCX: 00007f4966d6ba04 [ 1204.910268] RDX: 0000000000000002 RSI: 00007f496432e000 RDI: 00000000ffffff9c [ 1204.910278] RBP: 00007f496432e000 R08: 0000000000000000 R09: ffffffffffffffff [ 1204.910288] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000002 [ 1204.910302] R13: 0000000000000005 R14: 00000000200001b0 R15: 0000000000000002 [ 1205.074663] FAULT_INJECTION: forcing a failure. [ 1205.074663] name failslab, interval 1, probability 0, space 0, times 0 [ 1205.074685] CPU: 1 PID: 7895 Comm: syz-executor.5 Not tainted 5.10.194 #1 [ 1205.074697] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1205.074704] Call Trace: [ 1205.074733] dump_stack+0x107/0x167 [ 1205.074763] should_fail.cold+0x5/0xa [ 1205.074791] ? create_object.isra.0+0x3a/0xa20 [ 1205.074823] should_failslab+0x5/0x20 [ 1205.074849] kmem_cache_alloc+0x5b/0x310 [ 1205.074871] ? percpu_ref_put_many.constprop.0+0x4e/0x110 [ 1205.074901] create_object.isra.0+0x3a/0xa20 [ 1205.074921] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 1205.074978] kmem_cache_alloc+0x159/0x310 [ 1205.075019] security_file_alloc+0x34/0x170 [ 1205.075048] __alloc_file+0xb6/0x320 [ 1205.075075] alloc_empty_file+0x6d/0x170 [ 1205.075101] path_openat+0xe3/0x26f0 [ 1205.075121] ? perf_trace_run_bpf_submit+0xf5/0x190 [ 1205.075145] ? perf_trace_run_bpf_submit+0xf5/0x190 [ 1205.075176] ? path_lookupat+0x860/0x860 [ 1205.075199] ? perf_trace_lock+0x2bd/0x490 [ 1205.075225] ? lock_acquire+0x197/0x470 [ 1205.075255] ? __lockdep_reset_lock+0x180/0x180 [ 1205.075290] do_filp_open+0x190/0x3e0 [ 1205.075314] ? may_open_dev+0xf0/0xf0 [ 1205.075345] ? __alloc_fd+0x2b8/0x630 [ 1205.075367] ? lock_downgrade+0x6d0/0x6d0 [ 1205.075390] ? do_raw_spin_lock+0x121/0x260 [ 1205.075415] ? rwlock_bug.part.0+0x90/0x90 [ 1205.075459] ? _raw_spin_unlock+0x1a/0x30 [ 1205.075477] ? __alloc_fd+0x2b8/0x630 [ 1205.075522] do_sys_openat2+0x171/0x420 [ 1205.075548] ? build_open_flags+0x6f0/0x6f0 [ 1205.075603] __x64_sys_openat2+0x183/0x280 [ 1205.075625] ? __ia32_sys_openat+0x1f0/0x1f0 [ 1205.075642] ? ksys_write+0x1a9/0x260 [ 1205.075678] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1205.075697] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1205.075730] do_syscall_64+0x33/0x40 [ 1205.075753] entry_SYSCALL_64_after_hwframe+0x62/0xc7 [ 1205.075766] RIP: 0033:0x7f42482aab19 [ 1205.075786] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1205.075798] RSP: 002b:00007f4245820188 EFLAGS: 00000246 ORIG_RAX: 00000000000001b5 [ 1205.075822] RAX: ffffffffffffffda RBX: 00007f42483bdf60 RCX: 00007f42482aab19 [ 1205.075834] RDX: 00000000200001c0 RSI: 0000000020000100 RDI: 0000000000000006 [ 1205.075853] RBP: 00007f42458201d0 R08: 0000000000000000 R09: 0000000000000000 [ 1205.075865] R10: 0000000000000018 R11: 0000000000000246 R12: 0000000000000001 [ 1205.075878] R13: 00007fff668bfa7f R14: 00007f4245820300 R15: 0000000000022000 [ 1205.110927] FAULT_INJECTION: forcing a failure. [ 1205.110927] name failslab, interval 1, probability 0, space 0, times 0 [ 1205.111046] CPU: 1 PID: 7900 Comm: syz-executor.7 Not tainted 5.10.194 #1 [ 1205.111056] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1205.111062] Call Trace: [ 1205.111086] dump_stack+0x107/0x167 [ 1205.111110] should_fail.cold+0x5/0xa [ 1205.111134] ? __kthread_create_on_node+0xd1/0x400 [ 1205.111155] should_failslab+0x5/0x20 [ 1205.111173] kmem_cache_alloc_trace+0x55/0x320 [ 1205.111196] ? loop_info64_to_compat+0x5f0/0x5f0 [ 1205.111216] __kthread_create_on_node+0xd1/0x400 [ 1205.111237] ? __kthread_parkme+0x1d0/0x1d0 [ 1205.111274] ? __mutex_lock+0x4fe/0x10b0 [ 1205.111294] ? loop_configure+0xcb5/0x1480 [ 1205.111315] ? do_raw_spin_unlock+0x4f/0x220 [ 1205.111334] ? loop_info64_to_compat+0x5f0/0x5f0 [ 1205.111355] kthread_create_on_node+0xbb/0x100 [ 1205.111375] ? __kthread_create_on_node+0x400/0x400 [ 1205.111398] ? lockdep_init_map_type+0x2c7/0x780 [ 1205.111420] ? lockdep_init_map_type+0x2c7/0x780 [ 1205.111450] loop_configure+0x3e3/0x1480 [ 1205.111481] lo_ioctl+0xa72/0x1760 [ 1205.111501] ? avc_has_extended_perms+0x7f1/0xf40 [ 1205.111523] ? loop_set_status_old+0x250/0x250 [ 1205.111545] ? avc_ss_reset+0x180/0x180 [ 1205.111566] ? lock_acquire+0x197/0x470 [ 1205.111582] ? find_held_lock+0x2c/0x110 [ 1205.111611] ? __lock_acquire+0xbb1/0x5b00 [ 1205.111681] ? selinux_bprm_creds_for_exec+0xb60/0xb60 [ 1205.111700] ? generic_block_fiemap+0x60/0x60 [ 1205.111729] ? loop_set_status_old+0x250/0x250 [ 1205.111744] blkdev_ioctl+0x291/0x710 [ 1205.111763] ? blkdev_common_ioctl+0x1870/0x1870 [ 1205.111785] ? selinux_file_ioctl+0xb6/0x270 [ 1205.111808] block_ioctl+0xf9/0x140 [ 1205.111823] ? blkdev_read_iter+0x1c0/0x1c0 [ 1205.111843] __x64_sys_ioctl+0x19a/0x210 [ 1205.111866] do_syscall_64+0x33/0x40 [ 1205.111897] entry_SYSCALL_64_after_hwframe+0x62/0xc7 [ 1205.111909] RIP: 0033:0x7f4966db88d7 [ 1205.111927] Code: 3c 1c 48 f7 d8 49 39 c4 72 b8 e8 a4 54 02 00 85 c0 78 bd 48 83 c4 08 4c 89 e0 5b 41 5c c3 0f 1f 44 00 00 b8 10 00 00 00 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1205.111937] RSP: 002b:00007f496432df48 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 1205.111957] RAX: ffffffffffffffda RBX: 00007f4966e02970 RCX: 00007f4966db88d7 [ 1205.111967] RDX: 0000000000000005 RSI: 0000000000004c00 RDI: 0000000000000006 [ 1205.111978] RBP: 0000000000000006 R08: 0000000000000000 R09: ffffffffffffffff [ 1205.111988] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000005 [ 1205.111998] R13: 0000000000000005 R14: 00000000200001b0 R15: 0000000000000002 [ 1205.324137] FAULT_INJECTION: forcing a failure. [ 1205.324137] name failslab, interval 1, probability 0, space 0, times 0 [ 1205.324162] CPU: 1 PID: 7908 Comm: syz-executor.5 Not tainted 5.10.194 #1 [ 1205.324175] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1205.324184] Call Trace: [ 1205.324216] dump_stack+0x107/0x167 [ 1205.324250] should_fail.cold+0x5/0xa [ 1205.324285] ? create_object.isra.0+0x3a/0xa20 [ 1205.324318] should_failslab+0x5/0x20 [ 1205.324340] kmem_cache_alloc+0x5b/0x310 [ 1205.324365] ? percpu_ref_put_many.constprop.0+0x4e/0x110 [ 1205.324400] create_object.isra.0+0x3a/0xa20 [ 1205.324423] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 1205.324460] kmem_cache_alloc+0x159/0x310 [ 1205.324504] security_file_alloc+0x34/0x170 [ 1205.324537] __alloc_file+0xb6/0x320 [ 1205.324571] alloc_empty_file+0x6d/0x170 [ 1205.324601] path_openat+0xe3/0x26f0 [ 1205.324624] ? perf_trace_run_bpf_submit+0xf5/0x190 [ 1205.324652] ? perf_trace_run_bpf_submit+0xf5/0x190 [ 1205.324688] ? path_lookupat+0x860/0x860 [ 1205.324712] ? perf_trace_lock+0x2bd/0x490 [ 1205.324739] ? lock_acquire+0x197/0x470 [ 1205.324773] ? __lockdep_reset_lock+0x180/0x180 [ 1205.324814] do_filp_open+0x190/0x3e0 [ 1205.324836] ? may_open_dev+0xf0/0xf0 [ 1205.324872] ? __alloc_fd+0x2b8/0x630 [ 1205.324896] ? lock_downgrade+0x6d0/0x6d0 [ 1205.324923] ? do_raw_spin_lock+0x121/0x260 [ 1205.324952] ? rwlock_bug.part.0+0x90/0x90 [ 1205.325002] ? _raw_spin_unlock+0x1a/0x30 [ 1205.325023] ? __alloc_fd+0x2b8/0x630 [ 1205.325074] do_sys_openat2+0x171/0x420 [ 1205.325103] ? build_open_flags+0x6f0/0x6f0 [ 1205.325166] __x64_sys_openat2+0x183/0x280 [ 1205.325191] ? __ia32_sys_openat+0x1f0/0x1f0 [ 1205.325211] ? ksys_write+0x1a9/0x260 [ 1205.325252] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1205.325274] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1205.325311] do_syscall_64+0x33/0x40 [ 1205.325337] entry_SYSCALL_64_after_hwframe+0x62/0xc7 [ 1205.325353] RIP: 0033:0x7f42482aab19 [ 1205.325375] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1205.325389] RSP: 002b:00007f4245820188 EFLAGS: 00000246 ORIG_RAX: 00000000000001b5 [ 1205.325416] RAX: ffffffffffffffda RBX: 00007f42483bdf60 RCX: 00007f42482aab19 [ 1205.325430] RDX: 00000000200001c0 RSI: 0000000020000100 RDI: 0000000000000006 [ 1205.325444] RBP: 00007f42458201d0 R08: 0000000000000000 R09: 0000000000000000 [ 1205.325457] R10: 0000000000000018 R11: 0000000000000246 R12: 0000000000000001 [ 1205.325472] R13: 00007fff668bfa7f R14: 00007f4245820300 R15: 0000000000022000 23:39:35 executing program 1: perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = syz_io_uring_setup(0x3a75, &(0x7f0000000080), &(0x7f0000ffb000/0x3000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=0x0, &(0x7f0000000100)=0x0) r3 = socket$inet6_udplite(0xa, 0x2, 0x88) syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_RECVMSG={0xa, 0x0, 0x0, r3, 0x0, &(0x7f0000000440)={0x0, 0x0, 0x0}, 0x0, 0x40000203}, 0x0) mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0) r4 = mmap$IORING_OFF_CQ_RING(&(0x7f0000ffe000/0x2000)=nil, 0x2000, 0xf, 0x13, 0xffffffffffffffff, 0x8000000) syz_io_uring_submit(r4, r2, &(0x7f00000002c0)=@IORING_OP_READ=@pass_buffer={0x16, 0x4, 0x0, @fd, 0x0, 0x0}, 0x80000001) r5 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1) dup2(r5, r3) io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0) 23:39:35 executing program 3: r0 = syz_open_dev$tty1(0xc, 0x4, 0x1) writev(r0, &(0x7f0000000080)=[{&(0x7f0000001380)="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", 0x1ea}], 0x1) 23:39:35 executing program 7: perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_mount_image$vfat(&(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x0, 0x2, &(0x7f0000000180)=[{&(0x7f0000000140)="eb3c906d6b66732e66617400020801000470008400f801", 0x17}, {0x0, 0x0, 0x1000a00}], 0x0, &(0x7f0000000240)=ANY=[]) (fail_nth: 24) 23:39:35 executing program 2: perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = syz_io_uring_setup(0x3a75, &(0x7f0000000080), &(0x7f0000ffb000/0x3000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=0x0, &(0x7f0000000100)=0x0) r3 = socket$inet6_udplite(0xa, 0x2, 0x88) syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_RECVMSG={0xa, 0x0, 0x0, r3, 0x0, &(0x7f0000000440)={0x0, 0x0, 0x0}, 0x0, 0x40000203}, 0x0) mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0) r4 = mmap$IORING_OFF_CQ_RING(&(0x7f0000ffe000/0x2000)=nil, 0x2000, 0xf, 0x10, r0, 0x8000000) syz_io_uring_submit(r4, r2, &(0x7f00000002c0)=@IORING_OP_READ=@pass_buffer={0x16, 0x4, 0x0, @fd, 0x0, 0x0}, 0x80000001) r5 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1) dup2(r5, r3) io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0) [ 1205.592938] FAULT_INJECTION: forcing a failure. [ 1205.592938] name failslab, interval 1, probability 0, space 0, times 0 [ 1205.595553] CPU: 1 PID: 7916 Comm: syz-executor.7 Not tainted 5.10.194 #1 [ 1205.596987] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1205.598706] Call Trace: [ 1205.599288] dump_stack+0x107/0x167 [ 1205.600046] should_fail.cold+0x5/0xa [ 1205.600848] ? create_object.isra.0+0x3a/0xa20 [ 1205.601860] should_failslab+0x5/0x20 [ 1205.601878] kmem_cache_alloc+0x5b/0x310 [ 1205.601904] create_object.isra.0+0x3a/0xa20 [ 1205.601923] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 1205.601949] kmem_cache_alloc_trace+0x151/0x320 [ 1205.601973] ? loop_info64_to_compat+0x5f0/0x5f0 [ 1205.601995] __kthread_create_on_node+0xd1/0x400 [ 1205.602017] ? __kthread_parkme+0x1d0/0x1d0 [ 1205.602050] ? __mutex_lock+0x4fe/0x10b0 [ 1205.602070] ? loop_configure+0xcb5/0x1480 [ 1205.602092] ? do_raw_spin_unlock+0x4f/0x220 [ 1205.602112] ? loop_info64_to_compat+0x5f0/0x5f0 [ 1205.602133] kthread_create_on_node+0xbb/0x100 [ 1205.602154] ? __kthread_create_on_node+0x400/0x400 [ 1205.602178] ? lockdep_init_map_type+0x2c7/0x780 [ 1205.602200] ? lockdep_init_map_type+0x2c7/0x780 [ 1205.602231] loop_configure+0x3e3/0x1480 [ 1205.602263] lo_ioctl+0xa72/0x1760 [ 1205.602284] ? avc_has_extended_perms+0x7f1/0xf40 [ 1205.602307] ? loop_set_status_old+0x250/0x250 [ 1205.602329] ? avc_ss_reset+0x180/0x180 [ 1205.602350] ? lock_acquire+0x197/0x470 [ 1205.602367] ? find_held_lock+0x2c/0x110 [ 1205.602397] ? __lock_acquire+0xbb1/0x5b00 [ 1205.602470] ? selinux_bprm_creds_for_exec+0xb60/0xb60 [ 1205.602489] ? generic_block_fiemap+0x60/0x60 [ 1205.602518] ? loop_set_status_old+0x250/0x250 [ 1205.602534] blkdev_ioctl+0x291/0x710 [ 1205.602553] ? blkdev_common_ioctl+0x1870/0x1870 [ 1205.602576] ? selinux_file_ioctl+0xb6/0x270 [ 1205.602600] block_ioctl+0xf9/0x140 [ 1205.602616] ? blkdev_read_iter+0x1c0/0x1c0 [ 1205.602636] __x64_sys_ioctl+0x19a/0x210 [ 1205.602660] do_syscall_64+0x33/0x40 [ 1205.602681] entry_SYSCALL_64_after_hwframe+0x62/0xc7 [ 1205.602694] RIP: 0033:0x7f4966db88d7 [ 1205.602712] Code: 3c 1c 48 f7 d8 49 39 c4 72 b8 e8 a4 54 02 00 85 c0 78 bd 48 83 c4 08 4c 89 e0 5b 41 5c c3 0f 1f 44 00 00 b8 10 00 00 00 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1205.602722] RSP: 002b:00007f496432df48 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 1205.602743] RAX: ffffffffffffffda RBX: 00007f4966e02970 RCX: 00007f4966db88d7 [ 1205.602754] RDX: 0000000000000005 RSI: 0000000000004c00 RDI: 0000000000000006 [ 1205.602765] RBP: 0000000000000006 R08: 0000000000000000 R09: ffffffffffffffff [ 1205.602775] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000005 [ 1205.602786] R13: 0000000000000005 R14: 00000000200001b0 R15: 0000000000000002 23:39:48 executing program 3: r0 = syz_open_dev$tty1(0xc, 0x4, 0x1) writev(r0, &(0x7f0000000080)=[{&(0x7f0000001380)="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", 0x1ea}], 0x1) 23:39:48 executing program 6: r0 = syz_open_dev$tty20(0xc, 0x4, 0x1) ioctl$VT_RESIZEX(r0, 0x560a, &(0x7f0000000000)={0x10, 0x1, 0x5, 0x0, 0x5, 0x2}) 23:39:48 executing program 7: perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_mount_image$vfat(&(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x0, 0x2, &(0x7f0000000180)=[{&(0x7f0000000140)="eb3c906d6b66732e66617400020801000470008400f801", 0x17}, {0x0, 0x0, 0x1000a00}], 0x0, &(0x7f0000000240)=ANY=[]) (fail_nth: 25) 23:39:48 executing program 5: perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r0 = syz_mount_image$vfat(&(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x0, 0x2, &(0x7f0000000180)=[{&(0x7f0000000140)="eb3c906d6b66732e66617400020801000470008400f801", 0x17}, {0x0, 0x0, 0x1000a00}], 0x0, &(0x7f0000000240)=ANY=[]) openat2(r0, &(0x7f0000000100)='./file0\x00', &(0x7f00000001c0)={0x40040}, 0x18) (fail_nth: 10) 23:39:48 executing program 4: perf_event_open(&(0x7f0000001d80)={0x2, 0x80, 0x69, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = socket$inet6_udp(0xa, 0x2, 0x0) dup(0xffffffffffffffff) fstat(0xffffffffffffffff, 0x0) connect$inet6(r0, &(0x7f0000000600)={0xa, 0x0, 0x0, @dev, 0x2}, 0x1c) sendmmsg$inet6(r0, &(0x7f0000000080)=[{{0x0, 0x0, &(0x7f00000004c0)=[{&(0x7f00000001c0)="4bc702854e3954b59347985ccc868289d3fe483d2c0900a2a1d12e33a66529e1f276fef452632dfa3c004ce3be84a5f66c29cd4ec39ae5206562fbc9ea3c0dbbebc22e628e147b0e9631f19b0ce0a48e0e675b2da3442226b898f1ddf8eabf133ab4a9cb0999c2ee1d3bd36d089b0d8e97ea00d4c5f6ad14dce058d595aacba2d587ff5eacd81b71a73f53ed276d1f3b3384bb2bfba4e0f37302e690df9e7024378ac754ac0576f996f3ee53d1034c7720767ddf2625817532f7ae89103367b73a36152b84c38bc227ba9e9ff48bcfe027585c", 0xd3}], 0x1}}], 0x1, 0x0) 23:39:48 executing program 2: r0 = add_key$keyring(&(0x7f0000000040), &(0x7f00000002c0)={'syz', 0x3}, 0x0, 0x0, 0xfffffffffffffffd) keyctl$KEYCTL_RESTRICT_KEYRING(0xf, r0, 0x0, 0x0) connect$inet(0xffffffffffffffff, &(0x7f0000000140)={0x2, 0x0, @dev}, 0x10) r1 = syz_open_dev$sg(&(0x7f0000000040), 0x0, 0x0) ioctl$BLKTRACETEARDOWN(r1, 0x1276, 0x0) ioctl$BLKTRACESETUP(r1, 0xc0481273, &(0x7f0000000140)={'\x00', 0x0, 0x4, 0x8, 0x76}) (fail_nth: 1) 23:39:48 executing program 0: perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = syz_io_uring_setup(0x3a75, &(0x7f0000000080), &(0x7f0000ffb000/0x3000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=0x0, &(0x7f0000000100)=0x0) r3 = socket$inet6_udplite(0xa, 0x2, 0x88) syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_RECVMSG={0xa, 0x0, 0x0, r3, 0x0, &(0x7f0000000440)={0x0, 0x0, 0x0}, 0x0, 0x40000203}, 0x0) mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0) r4 = mmap$IORING_OFF_CQ_RING(&(0x7f0000ffe000/0x2000)=nil, 0x2000, 0xf, 0x13, 0xffffffffffffffff, 0x8000000) syz_io_uring_submit(r4, r2, &(0x7f00000002c0)=@IORING_OP_READ=@pass_buffer={0x16, 0x4, 0x0, @fd, 0x0, 0x0}, 0x80000001) r5 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1) dup2(r5, r3) io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0) 23:39:48 executing program 1: perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = syz_io_uring_setup(0x3a75, &(0x7f0000000080), &(0x7f0000ffb000/0x3000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=0x0, &(0x7f0000000100)=0x0) r3 = socket$inet6_udplite(0xa, 0x2, 0x88) syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_RECVMSG={0xa, 0x0, 0x0, r3, 0x0, &(0x7f0000000440)={0x0, 0x0, 0x0}, 0x0, 0x40000203}, 0x0) mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0) r4 = mmap$IORING_OFF_CQ_RING(&(0x7f0000ffe000/0x2000)=nil, 0x2000, 0xf, 0x13, 0xffffffffffffffff, 0x8000000) syz_io_uring_submit(r4, r2, &(0x7f00000002c0)=@IORING_OP_READ=@pass_buffer={0x16, 0x4, 0x0, @fd, 0x0, 0x0}, 0x80000001) r5 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1) dup2(r5, r3) io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0) [ 1218.854504] FAULT_INJECTION: forcing a failure. [ 1218.854504] name failslab, interval 1, probability 0, space 0, times 0 [ 1218.856932] CPU: 0 PID: 7940 Comm: syz-executor.7 Not tainted 5.10.194 #1 [ 1218.858346] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1218.860073] Call Trace: [ 1218.860635] dump_stack+0x107/0x167 [ 1218.861401] should_fail.cold+0x5/0xa [ 1218.862203] ? __kernfs_new_node+0xd4/0x860 [ 1218.863102] should_failslab+0x5/0x20 [ 1218.863899] kmem_cache_alloc+0x5b/0x310 [ 1218.864755] __kernfs_new_node+0xd4/0x860 [ 1218.865621] ? lock_chain_count+0x20/0x20 [ 1218.866480] ? kernfs_dop_revalidate+0x3a0/0x3a0 [ 1218.867477] ? __lockdep_reset_lock+0x180/0x180 [ 1218.868437] ? __lockdep_reset_lock+0x180/0x180 [ 1218.869397] ? task_rq_lock+0xab/0x270 [ 1218.870216] ? lock_release+0x680/0x680 [ 1218.871038] ? find_held_lock+0x2c/0x110 [ 1218.871898] ? set_user_nice.part.0+0x2fd/0x760 [ 1218.872876] kernfs_create_dir_ns+0x9c/0x230 [ 1218.873800] internal_create_group+0x793/0xb30 [ 1218.874755] ? set_user_nice.part.0+0x2fd/0x760 [ 1218.875726] ? sysfs_remove_group+0x170/0x170 [ 1218.876658] ? lockdep_init_map_type+0x2c7/0x780 [ 1218.877647] ? blk_queue_flag_set+0x22/0x30 [ 1218.878540] ? __loop_update_dio+0x2d2/0x690 [ 1218.879478] loop_configure+0x954/0x1480 [ 1218.880359] lo_ioctl+0xa72/0x1760 [ 1218.881102] ? avc_has_extended_perms+0x7f1/0xf40 [ 1218.882104] ? loop_set_status_old+0x250/0x250 [ 1218.883063] ? avc_ss_reset+0x180/0x180 [ 1218.883898] ? lock_acquire+0x197/0x470 [ 1218.884721] ? find_held_lock+0x2c/0x110 [ 1218.885593] ? perf_trace_run_bpf_submit+0xf5/0x190 [ 1218.886620] ? perf_trace_run_bpf_submit+0xf5/0x190 [ 1218.887743] ? selinux_bprm_creds_for_exec+0xb60/0xb60 [ 1218.888832] ? generic_block_fiemap+0x60/0x60 [ 1218.889778] ? loop_set_status_old+0x250/0x250 [ 1218.890712] blkdev_ioctl+0x291/0x710 [ 1218.891523] ? blkdev_common_ioctl+0x1870/0x1870 [ 1218.892510] ? selinux_file_ioctl+0xb6/0x270 [ 1218.893427] block_ioctl+0xf9/0x140 [ 1218.894176] ? blkdev_read_iter+0x1c0/0x1c0 [ 1218.895070] __x64_sys_ioctl+0x19a/0x210 [ 1218.895934] do_syscall_64+0x33/0x40 [ 1218.896704] entry_SYSCALL_64_after_hwframe+0x62/0xc7 [ 1218.897760] RIP: 0033:0x7f4966db88d7 [ 1218.898529] Code: 3c 1c 48 f7 d8 49 39 c4 72 b8 e8 a4 54 02 00 85 c0 78 bd 48 83 c4 08 4c 89 e0 5b 41 5c c3 0f 1f 44 00 00 b8 10 00 00 00 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1218.902301] RSP: 002b:00007f496432df48 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 1218.903875] RAX: ffffffffffffffda RBX: 00007f4966e02970 RCX: 00007f4966db88d7 [ 1218.905340] RDX: 0000000000000005 RSI: 0000000000004c00 RDI: 0000000000000006 [ 1218.906803] RBP: 0000000000000006 R08: 0000000000000000 R09: ffffffffffffffff [ 1218.908268] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000005 [ 1218.909725] R13: 0000000000000005 R14: 00000000200001b0 R15: 0000000000000002 23:39:49 executing program 4: perf_event_open(&(0x7f0000001d80)={0x2, 0x80, 0x69, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = socket$inet6_udp(0xa, 0x2, 0x0) dup(0xffffffffffffffff) fstat(0xffffffffffffffff, 0x0) connect$inet6(r0, &(0x7f0000000600)={0xa, 0x0, 0x0, @dev, 0x2}, 0x1c) sendmmsg$inet6(r0, &(0x7f0000000080)=[{{0x0, 0x0, &(0x7f00000004c0)=[{&(0x7f00000001c0)="4bc702854e3954b59347985ccc868289d3fe483d2c0900a2a1d12e33a66529e1f276fef452632dfa3c004ce3be84a5f66c29cd4ec39ae5206562fbc9ea3c0dbbebc22e628e147b0e9631f19b0ce0a48e0e675b2da3442226b898f1ddf8eabf133ab4a9cb0999c2ee1d3bd36d089b0d8e97ea00d4c5f6ad14dce058d595aacba2d587ff5eacd81b71a73f53ed276d1f3b3384bb2bfba4e0f37302e690df9e7024378ac754ac0576f996f3ee53d1034c7720767ddf2625817532f7ae89103367b73a36152b84c38bc227ba9e9ff48bcfe027585c", 0xd3}], 0x1}}], 0x1, 0x0) [ 1218.936509] FAULT_INJECTION: forcing a failure. [ 1218.936509] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 1218.939015] CPU: 0 PID: 7945 Comm: syz-executor.2 Not tainted 5.10.194 #1 [ 1218.940459] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1218.942202] Call Trace: [ 1218.942765] dump_stack+0x107/0x167 [ 1218.943554] should_fail.cold+0x5/0xa [ 1218.944367] _copy_from_user+0x2e/0x1b0 [ 1218.945208] __blk_trace_setup+0x96/0x180 [ 1218.946081] ? do_blk_trace_setup+0xc10/0xc10 [ 1218.947033] ? perf_trace_lock+0xac/0x490 [ 1218.947923] blk_trace_setup+0x43/0x60 [ 1218.948747] sg_ioctl_common+0x634/0x2570 [ 1218.949624] ? __sanitizer_cov_trace_switch+0x45/0x80 [ 1218.950737] ? do_vfs_ioctl+0x283/0x10d0 [ 1218.951598] ? sg_write+0x120/0x120 [ 1218.952363] ? generic_block_fiemap+0x60/0x60 [ 1218.953312] ? __mutex_unlock_slowpath+0xe1/0x600 [ 1218.954348] ? selinux_file_ioctl+0xb6/0x270 [ 1218.955290] ? sg_compat_ioctl+0x120/0x120 [ 1218.956177] sg_ioctl+0x8f/0x120 [ 1218.956894] __x64_sys_ioctl+0x19a/0x210 [ 1218.957751] do_syscall_64+0x33/0x40 [ 1218.958536] entry_SYSCALL_64_after_hwframe+0x62/0xc7 [ 1218.959613] RIP: 0033:0x7f661a573b19 [ 1218.960396] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1218.964217] RSP: 002b:00007f6617ac8188 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 1218.965779] RAX: ffffffffffffffda RBX: 00007f661a687020 RCX: 00007f661a573b19 [ 1218.967263] RDX: 0000000020000140 RSI: 00000000c0481273 RDI: 0000000000000003 [ 1218.968731] RBP: 00007f6617ac81d0 R08: 0000000000000000 R09: 0000000000000000 [ 1218.970196] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 1218.971698] R13: 00007ffd527cbf9f R14: 00007f6617ac8300 R15: 0000000000022000 [ 1218.974427] FAULT_INJECTION: forcing a failure. [ 1218.974427] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 1218.977538] CPU: 0 PID: 7947 Comm: syz-executor.5 Not tainted 5.10.194 #1 [ 1218.978999] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1218.980728] Call Trace: [ 1218.981271] dump_stack+0x107/0x167 [ 1218.982021] should_fail.cold+0x5/0xa [ 1218.982812] _copy_from_user+0x2e/0x1b0 [ 1218.983664] kstrtouint_from_user+0xbd/0x220 [ 1218.984565] ? kstrtou8_from_user+0x210/0x210 [ 1218.985490] ? lock_acquire+0x197/0x470 [ 1218.986306] ? ksys_write+0x12d/0x260 [ 1218.987106] proc_fail_nth_write+0x78/0x220 [ 1218.988032] ? proc_task_getattr+0x1f0/0x1f0 [ 1218.988956] ? __fget_files+0x296/0x4c0 [ 1218.989807] ? proc_task_getattr+0x1f0/0x1f0 [ 1218.990725] vfs_write+0x29a/0xa70 [ 1218.991485] ksys_write+0x12d/0x260 [ 1218.992244] ? __ia32_sys_read+0xb0/0xb0 [ 1218.993103] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1218.994196] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1218.995319] do_syscall_64+0x33/0x40 [ 1218.996098] entry_SYSCALL_64_after_hwframe+0x62/0xc7 [ 1218.997132] RIP: 0033:0x7f424825d5ff [ 1218.997914] Code: 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 99 fd ff ff 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 b8 01 00 00 00 0f 05 <48> 3d 00 f0 ff ff 77 31 44 89 c7 48 89 44 24 08 e8 cc fd ff ff 48 [ 1219.001768] RSP: 002b:00007f42457ff170 EFLAGS: 00000293 ORIG_RAX: 0000000000000001 [ 1219.003368] RAX: ffffffffffffffda RBX: 0000000000000000 RCX: 00007f424825d5ff [ 1219.004867] RDX: 0000000000000001 RSI: 00007f42457ff1e0 RDI: 0000000000000006 [ 1219.006356] RBP: 00007f42457ff1d0 R08: 0000000000000000 R09: 0000000000000000 [ 1219.007858] R10: 0000000000000018 R11: 0000000000000293 R12: 0000000000000002 [ 1219.009353] R13: 00007fff668bfa7f R14: 00007f42457ff300 R15: 0000000000022000 23:40:03 executing program 3: r0 = syz_open_dev$tty1(0xc, 0x4, 0x1) writev(r0, &(0x7f0000000080)=[{&(0x7f0000001380)="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", 0x1ea}], 0x1) 23:40:03 executing program 4: perf_event_open(&(0x7f0000001d80)={0x2, 0x80, 0x69, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = socket$inet6_udp(0xa, 0x2, 0x0) dup(0xffffffffffffffff) fstat(0xffffffffffffffff, 0x0) connect$inet6(r0, &(0x7f0000000600)={0xa, 0x0, 0x0, @dev, 0x2}, 0x1c) sendmmsg$inet6(r0, &(0x7f0000000080)=[{{0x0, 0x0, &(0x7f00000004c0)=[{&(0x7f00000001c0)="4bc702854e3954b59347985ccc868289d3fe483d2c0900a2a1d12e33a66529e1f276fef452632dfa3c004ce3be84a5f66c29cd4ec39ae5206562fbc9ea3c0dbbebc22e628e147b0e9631f19b0ce0a48e0e675b2da3442226b898f1ddf8eabf133ab4a9cb0999c2ee1d3bd36d089b0d8e97ea00d4c5f6ad14dce058d595aacba2d587ff5eacd81b71a73f53ed276d1f3b3384bb2bfba4e0f37302e690df9e7024378ac754ac0576f996f3ee53d1034c7720767ddf2625817532f7ae89103367b73a36152b84c38bc227ba9e9ff48bcfe027585c", 0xd3}], 0x1}}], 0x1, 0x0) 23:40:03 executing program 7: perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_mount_image$vfat(&(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x0, 0x2, &(0x7f0000000180)=[{&(0x7f0000000140)="eb3c906d6b66732e66617400020801000470008400f801", 0x17}, {0x0, 0x0, 0x1000a00}], 0x0, &(0x7f0000000240)=ANY=[]) (fail_nth: 26) 23:40:03 executing program 1: perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = syz_io_uring_setup(0x3a75, &(0x7f0000000080), &(0x7f0000ffb000/0x3000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=0x0, &(0x7f0000000100)=0x0) r3 = socket$inet6_udplite(0xa, 0x2, 0x88) syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_RECVMSG={0xa, 0x0, 0x0, r3, 0x0, &(0x7f0000000440)={0x0, 0x0, 0x0}, 0x0, 0x40000203}, 0x0) mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0) mmap$IORING_OFF_CQ_RING(&(0x7f0000ffe000/0x2000)=nil, 0x2000, 0xf, 0x13, r0, 0x8000000) syz_io_uring_submit(0x0, r2, &(0x7f00000002c0)=@IORING_OP_READ=@pass_buffer={0x16, 0x4, 0x0, @fd, 0x0, 0x0}, 0x80000001) r4 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1) dup2(r4, r3) io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0) 23:40:03 executing program 6: syz_open_dev$tty20(0xc, 0x4, 0x0) r0 = openat$hpet(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0) read$eventfd(r0, 0x0, 0x0) r1 = syz_open_dev$ttys(0xc, 0x2, 0x0) ioctl$VT_RESIZEX(r1, 0x560a, &(0x7f0000000000)={0x0, 0x0, 0x0, 0x1, 0x1d}) 23:40:03 executing program 0: perf_event_open(0x0, 0xffffffffffffffff, 0x0, 0xffffffffffffffff, 0x0) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r0 = syz_io_uring_setup(0x3ac4, &(0x7f00000002c0)={0x0, 0x0, 0x1}, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200), &(0x7f00000001c0)=0x0) r2 = openat$full(0xffffffffffffff9c, &(0x7f0000000040), 0x0, 0x0) syz_io_uring_setup(0x3a75, &(0x7f0000000880)={0x0, 0x0, 0x0, 0x0, 0x2f7}, &(0x7f0000ffb000/0x3000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=0x0, &(0x7f0000000100)) socket$inet6_udplite(0xa, 0x2, 0x88) syz_io_uring_setup(0x3a76, &(0x7f0000000800)={0x0, 0x0, 0x20, 0x6, 0x130}, &(0x7f0000ffb000/0x3000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=0x0, &(0x7f00000007c0)=0x0) r6 = socket$inet6_udplite(0xa, 0x2, 0x88) syz_io_uring_submit(r4, r5, &(0x7f0000000000)=@IORING_OP_RECVMSG={0xa, 0x0, 0x0, r6, 0x0, &(0x7f0000000440)={0x0, 0x0, 0x0}}, 0x0) syz_io_uring_submit(r3, r1, &(0x7f0000000700)=@IORING_OP_READV=@use_registered_buffer={0x1, 0x0, 0x0, @fd=r2, 0x0, 0x0, 0x0, 0xc}, 0xfff) close(r2) setsockopt$inet6_IPV6_PKTINFO(0xffffffffffffffff, 0x29, 0x32, &(0x7f0000000ac0)={@rand_addr=' \x01\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x02'}, 0x14) clone3(&(0x7f00000004c0)={0x254205100, &(0x7f0000000080)=0xffffffffffffffff, &(0x7f00000000c0), &(0x7f0000000140), {0x33}, &(0x7f0000000340)=""/153, 0x99, &(0x7f0000000400)=""/143, &(0x7f0000000240)=[0x0, 0x0], 0x2, {r2}}, 0x58) readv(r7, &(0x7f0000000280)=[{&(0x7f0000000540)=""/130, 0x82}, {&(0x7f0000000600)=""/246, 0xf6}], 0x2) syz_io_uring_submit(0x0, 0x0, &(0x7f0000000740)=@IORING_OP_FSYNC={0x3, 0x0, 0x0, @fd_index=0x5, 0x0, 0x0, 0x0, 0x1, 0x1}, 0xffff) r8 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0) openat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x46e2, 0x0) syz_io_uring_submit(r8, r1, &(0x7f0000000780)=@IORING_OP_ACCEPT={0xd, 0x3, 0x0, 0xffffffffffffffff, 0x0}, 0x8001) syz_genetlink_get_family_id$nl80211(&(0x7f0000000180), 0xffffffffffffffff) io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0) 23:40:03 executing program 2: r0 = add_key$keyring(&(0x7f0000000040), &(0x7f00000002c0)={'syz', 0x3}, 0x0, 0x0, 0xfffffffffffffffd) keyctl$KEYCTL_RESTRICT_KEYRING(0xf, r0, 0x0, 0x0) connect$inet(0xffffffffffffffff, &(0x7f0000000140)={0x2, 0x0, @dev}, 0x10) r1 = syz_open_dev$sg(&(0x7f0000000040), 0x0, 0x0) ioctl$BLKTRACETEARDOWN(r1, 0x1276, 0x0) ioctl$BLKTRACESETUP(r1, 0xc0481273, &(0x7f0000000140)={'\x00', 0x0, 0x4, 0x8, 0x76}) (fail_nth: 2) 23:40:03 executing program 5: perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r0 = syz_mount_image$vfat(&(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x0, 0x2, &(0x7f0000000180)=[{&(0x7f0000000140)="eb3c906d6b66732e66617400020801000470008400f801", 0x17}, {0x0, 0x0, 0x1000a00}], 0x0, &(0x7f0000000240)=ANY=[]) openat2(r0, &(0x7f0000000100)='./file0\x00', &(0x7f00000001c0)={0x40040}, 0x18) [ 1233.330922] FAULT_INJECTION: forcing a failure. [ 1233.330922] name failslab, interval 1, probability 0, space 0, times 0 [ 1233.333237] CPU: 1 PID: 7962 Comm: syz-executor.7 Not tainted 5.10.194 #1 [ 1233.334587] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1233.336281] Call Trace: [ 1233.336827] dump_stack+0x107/0x167 [ 1233.337573] should_fail.cold+0x5/0xa [ 1233.338353] ? create_object.isra.0+0x3a/0xa20 [ 1233.339277] should_failslab+0x5/0x20 [ 1233.340052] kmem_cache_alloc+0x5b/0x310 [ 1233.340874] create_object.isra.0+0x3a/0xa20 [ 1233.341758] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 1233.342783] kmem_cache_alloc+0x159/0x310 [ 1233.343636] ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0 [ 1233.344697] __kernfs_new_node+0xd4/0x860 [ 1233.345525] ? perf_trace_lock+0xac/0x490 [ 1233.346358] ? perf_trace_lock+0xac/0x490 [ 1233.347195] ? lock_chain_count+0x20/0x20 [ 1233.348039] ? kernfs_dop_revalidate+0x3a0/0x3a0 [ 1233.348987] ? __lockdep_reset_lock+0x180/0x180 [ 1233.349923] ? __lockdep_reset_lock+0x180/0x180 [ 1233.350860] ? update_load_avg+0x162/0x1870 [ 1233.351739] ? find_held_lock+0x2c/0x110 [ 1233.352562] ? set_user_nice.part.0+0x2fd/0x760 [ 1233.353501] kernfs_create_dir_ns+0x9c/0x230 [ 1233.354388] internal_create_group+0x793/0xb30 [ 1233.355127] FAULT_INJECTION: forcing a failure. [ 1233.355127] name failslab, interval 1, probability 0, space 0, times 0 [ 1233.355315] ? set_user_nice.part.0+0x2fd/0x760 [ 1233.355333] ? sysfs_remove_group+0x170/0x170 [ 1233.355359] ? lockdep_init_map_type+0x2c7/0x780 [ 1233.360404] ? blk_queue_flag_set+0x22/0x30 [ 1233.361266] ? __loop_update_dio+0x2d2/0x690 [ 1233.362149] loop_configure+0x954/0x1480 [ 1233.362991] lo_ioctl+0xa72/0x1760 [ 1233.363719] ? avc_has_extended_perms+0x7f1/0xf40 [ 1233.364683] ? loop_set_status_old+0x250/0x250 [ 1233.365633] ? avc_ss_reset+0x180/0x180 [ 1233.366431] ? lock_acquire+0x197/0x470 [ 1233.367230] ? find_held_lock+0x2c/0x110 [ 1233.368068] ? __lock_acquire+0xbb1/0x5b00 [ 1233.368960] ? selinux_bprm_creds_for_exec+0xb60/0xb60 [ 1233.370005] ? generic_block_fiemap+0x60/0x60 [ 1233.370909] ? loop_set_status_old+0x250/0x250 [ 1233.371819] blkdev_ioctl+0x291/0x710 [ 1233.372578] ? blkdev_common_ioctl+0x1870/0x1870 [ 1233.373520] ? selinux_file_ioctl+0xb6/0x270 [ 1233.374398] block_ioctl+0xf9/0x140 [ 1233.375131] ? blkdev_read_iter+0x1c0/0x1c0 [ 1233.375997] __x64_sys_ioctl+0x19a/0x210 [ 1233.376815] do_syscall_64+0x33/0x40 [ 1233.377558] entry_SYSCALL_64_after_hwframe+0x62/0xc7 [ 1233.378570] RIP: 0033:0x7f4966db88d7 [ 1233.379333] Code: 3c 1c 48 f7 d8 49 39 c4 72 b8 e8 a4 54 02 00 85 c0 78 bd 48 83 c4 08 4c 89 e0 5b 41 5c c3 0f 1f 44 00 00 b8 10 00 00 00 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1233.382960] RSP: 002b:00007f496432df48 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 1233.384482] RAX: ffffffffffffffda RBX: 00007f4966e02970 RCX: 00007f4966db88d7 [ 1233.385889] RDX: 0000000000000005 RSI: 0000000000004c00 RDI: 0000000000000006 [ 1233.387306] RBP: 0000000000000006 R08: 0000000000000000 R09: ffffffffffffffff [ 1233.388718] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000005 [ 1233.390122] R13: 0000000000000005 R14: 00000000200001b0 R15: 0000000000000002 [ 1233.391577] CPU: 0 PID: 7964 Comm: syz-executor.2 Not tainted 5.10.194 #1 [ 1233.393476] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1233.395500] Call Trace: [ 1233.396144] dump_stack+0x107/0x167 [ 1233.396916] should_fail.cold+0x5/0xa [ 1233.397685] ? do_blk_trace_setup+0x1e3/0xc10 [ 1233.398594] should_failslab+0x5/0x20 [ 1233.399372] kmem_cache_alloc_trace+0x55/0x320 [ 1233.400413] do_blk_trace_setup+0x1e3/0xc10 [ 1233.401397] ? _copy_from_user+0xfb/0x1b0 [ 1233.402340] __blk_trace_setup+0xca/0x180 [ 1233.403278] ? do_blk_trace_setup+0xc10/0xc10 [ 1233.404324] ? perf_trace_lock+0xac/0x490 [ 1233.405268] blk_trace_setup+0x43/0x60 [ 1233.406150] sg_ioctl_common+0x634/0x2570 [ 1233.407095] ? __sanitizer_cov_trace_switch+0x45/0x80 [ 1233.408269] ? do_vfs_ioctl+0x283/0x10d0 [ 1233.409184] ? sg_write+0x120/0x120 [ 1233.410008] ? generic_block_fiemap+0x60/0x60 [ 1233.411023] ? __mutex_unlock_slowpath+0xe1/0x600 [ 1233.412070] ? selinux_file_ioctl+0xb6/0x270 [ 1233.412950] ? sg_compat_ioctl+0x120/0x120 [ 1233.413805] sg_ioctl+0x8f/0x120 [ 1233.414490] __x64_sys_ioctl+0x19a/0x210 [ 1233.415329] do_syscall_64+0x33/0x40 [ 1233.416080] entry_SYSCALL_64_after_hwframe+0x62/0xc7 [ 1233.417111] RIP: 0033:0x7f661a573b19 [ 1233.417866] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1233.421576] RSP: 002b:00007f6617ae9188 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 1233.423145] RAX: ffffffffffffffda RBX: 00007f661a686f60 RCX: 00007f661a573b19 [ 1233.424626] RDX: 0000000020000140 RSI: 00000000c0481273 RDI: 0000000000000003 [ 1233.426086] RBP: 00007f6617ae91d0 R08: 0000000000000000 R09: 0000000000000000 [ 1233.427555] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 1233.429042] R13: 00007ffd527cbf9f R14: 00007f6617ae9300 R15: 0000000000022000 23:40:03 executing program 7: perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_mount_image$vfat(&(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x0, 0x2, &(0x7f0000000180)=[{&(0x7f0000000140)="eb3c906d6b66732e66617400020801000470008400f801", 0x17}, {0x0, 0x0, 0x1000a00}], 0x0, &(0x7f0000000240)=ANY=[]) (fail_nth: 27) 23:40:03 executing program 2: r0 = add_key$keyring(&(0x7f0000000040), &(0x7f00000002c0)={'syz', 0x3}, 0x0, 0x0, 0xfffffffffffffffd) keyctl$KEYCTL_RESTRICT_KEYRING(0xf, r0, 0x0, 0x0) connect$inet(0xffffffffffffffff, &(0x7f0000000140)={0x2, 0x0, @dev}, 0x10) r1 = syz_open_dev$sg(&(0x7f0000000040), 0x0, 0x0) ioctl$BLKTRACETEARDOWN(r1, 0x1276, 0x0) ioctl$BLKTRACESETUP(r1, 0xc0481273, &(0x7f0000000140)={'\x00', 0x0, 0x4, 0x8, 0x76}) (fail_nth: 3) 23:40:03 executing program 6: r0 = openat$hpet(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0) read$eventfd(r0, 0x0, 0x0) r1 = syz_mount_image$tmpfs(&(0x7f0000000000), &(0x7f0000000080)='./file0\x00', 0x0, 0x0, 0x0, 0x0, &(0x7f0000000600)=ANY=[]) mknodat$loop(r1, &(0x7f0000000300)='./file0\x00', 0x1000, 0x0) openat(r1, &(0x7f0000000140)='./file0\x00', 0x2, 0x0) openat(r1, &(0x7f0000000000)='./file0\x00', 0x0, 0x0) ioctl$AUTOFS_DEV_IOCTL_ISMOUNTPOINT(r0, 0xc018937e, &(0x7f0000000040)={{0x1, 0x1, 0x18, r1, @in_args={0x4}}, './file0\x00'}) r2 = syz_open_dev$tty20(0xc, 0x4, 0x1) ioctl$VT_RESIZEX(r2, 0x560a, &(0x7f0000000000)={0x0, 0x0, 0x0, 0x0, 0x1d}) [ 1233.550843] FAULT_INJECTION: forcing a failure. [ 1233.550843] name failslab, interval 1, probability 0, space 0, times 0 [ 1233.553337] CPU: 1 PID: 7979 Comm: syz-executor.2 Not tainted 5.10.194 #1 [ 1233.554803] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1233.556597] Call Trace: [ 1233.557173] dump_stack+0x107/0x167 [ 1233.557970] should_fail.cold+0x5/0xa [ 1233.558795] ? create_object.isra.0+0x3a/0xa20 [ 1233.559793] should_failslab+0x5/0x20 [ 1233.560616] kmem_cache_alloc+0x5b/0x310 [ 1233.561498] create_object.isra.0+0x3a/0xa20 [ 1233.562446] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 1233.563546] kmem_cache_alloc_trace+0x151/0x320 [ 1233.564545] do_blk_trace_setup+0x1e3/0xc10 [ 1233.565480] ? _copy_from_user+0xfb/0x1b0 [ 1233.566378] __blk_trace_setup+0xca/0x180 [ 1233.567275] ? do_blk_trace_setup+0xc10/0xc10 [ 1233.568277] ? perf_trace_lock+0xac/0x490 [ 1233.569187] blk_trace_setup+0x43/0x60 [ 1233.570028] sg_ioctl_common+0x634/0x2570 [ 1233.570923] ? __sanitizer_cov_trace_switch+0x45/0x80 [ 1233.572040] ? do_vfs_ioctl+0x283/0x10d0 [ 1233.572914] ? sg_write+0x120/0x120 [ 1233.573703] ? generic_block_fiemap+0x60/0x60 [ 1233.574676] ? __mutex_unlock_slowpath+0xe1/0x600 [ 1233.575746] ? selinux_file_ioctl+0xb6/0x270 [ 1233.576694] ? sg_compat_ioctl+0x120/0x120 [ 1233.577608] sg_ioctl+0x8f/0x120 [ 1233.578343] __x64_sys_ioctl+0x19a/0x210 [ 1233.579229] do_syscall_64+0x33/0x40 [ 1233.580076] entry_SYSCALL_64_after_hwframe+0x62/0xc7 [ 1233.581188] RIP: 0033:0x7f661a573b19 [ 1233.581993] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1233.585945] RSP: 002b:00007f6617ae9188 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 1233.587617] RAX: ffffffffffffffda RBX: 00007f661a686f60 RCX: 00007f661a573b19 [ 1233.589151] RDX: 0000000020000140 RSI: 00000000c0481273 RDI: 0000000000000003 [ 1233.590680] RBP: 00007f6617ae91d0 R08: 0000000000000000 R09: 0000000000000000 [ 1233.592222] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 1233.593751] R13: 00007ffd527cbf9f R14: 00007f6617ae9300 R15: 0000000000022000 [ 1233.603722] FAULT_INJECTION: forcing a failure. [ 1233.603722] name failslab, interval 1, probability 0, space 0, times 0 [ 1233.606207] CPU: 1 PID: 7977 Comm: syz-executor.7 Not tainted 5.10.194 #1 [ 1233.607688] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1233.609489] Call Trace: [ 1233.610061] dump_stack+0x107/0x167 [ 1233.610847] should_fail.cold+0x5/0xa [ 1233.611675] ? __kernfs_new_node+0xd4/0x860 [ 1233.612595] should_failslab+0x5/0x20 [ 1233.613411] kmem_cache_alloc+0x5b/0x310 [ 1233.614296] __kernfs_new_node+0xd4/0x860 [ 1233.615212] ? kernfs_dop_revalidate+0x3a0/0x3a0 [ 1233.616247] ? lock_downgrade+0x6d0/0x6d0 [ 1233.617144] ? mutex_lock_io_nested+0xf30/0xf30 [ 1233.618143] ? __kernfs_new_node+0x549/0x860 [ 1233.619094] ? __mutex_unlock_slowpath+0xe1/0x600 [ 1233.620135] ? __lockdep_reset_lock+0x180/0x180 [ 1233.621136] kernfs_new_node+0x93/0x120 [ 1233.621997] __kernfs_create_file+0x51/0x350 [ 1233.622942] sysfs_add_file_mode_ns+0x221/0x560 [ 1233.623964] internal_create_group+0x324/0xb30 [ 1233.624961] ? sysfs_remove_group+0x170/0x170 [ 1233.625912] ? lockdep_init_map_type+0x2c7/0x780 [ 1233.626934] ? blk_queue_flag_set+0x22/0x30 [ 1233.627868] ? __loop_update_dio+0x2d2/0x690 [ 1233.628817] loop_configure+0x954/0x1480 [ 1233.629695] lo_ioctl+0xa72/0x1760 [ 1233.630463] ? avc_has_extended_perms+0x7f1/0xf40 [ 1233.631512] ? loop_set_status_old+0x250/0x250 [ 1233.632500] ? avc_ss_reset+0x180/0x180 [ 1233.633359] ? lock_acquire+0x197/0x470 [ 1233.634211] ? find_held_lock+0x2c/0x110 [ 1233.635095] ? __lock_acquire+0xbb1/0x5b00 [ 1233.636069] ? selinux_bprm_creds_for_exec+0xb60/0xb60 [ 1233.637192] ? generic_block_fiemap+0x60/0x60 [ 1233.638168] ? loop_set_status_old+0x250/0x250 [ 1233.639154] blkdev_ioctl+0x291/0x710 [ 1233.639988] ? blkdev_common_ioctl+0x1870/0x1870 [ 1233.641008] ? selinux_file_ioctl+0xb6/0x270 [ 1233.641971] block_ioctl+0xf9/0x140 [ 1233.642747] ? blkdev_read_iter+0x1c0/0x1c0 [ 1233.643684] __x64_sys_ioctl+0x19a/0x210 [ 1233.644559] do_syscall_64+0x33/0x40 [ 1233.645365] entry_SYSCALL_64_after_hwframe+0x62/0xc7 [ 1233.646457] RIP: 0033:0x7f4966db88d7 [ 1233.647252] Code: 3c 1c 48 f7 d8 49 39 c4 72 b8 e8 a4 54 02 00 85 c0 78 bd 48 83 c4 08 4c 89 e0 5b 41 5c c3 0f 1f 44 00 00 b8 10 00 00 00 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1233.651194] RSP: 002b:00007f496432df48 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 1233.652846] RAX: ffffffffffffffda RBX: 00007f4966e02970 RCX: 00007f4966db88d7 [ 1233.654375] RDX: 0000000000000005 RSI: 0000000000004c00 RDI: 0000000000000006 [ 1233.655912] RBP: 0000000000000006 R08: 0000000000000000 R09: ffffffffffffffff [ 1233.657441] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000005 [ 1233.658981] R13: 0000000000000005 R14: 00000000200001b0 R15: 0000000000000002 23:40:03 executing program 3: r0 = syz_open_dev$tty1(0xc, 0x4, 0x1) writev(r0, &(0x7f0000000080)=[{&(0x7f0000001380)="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", 0x1ea}], 0x1) 23:40:03 executing program 4: perf_event_open(&(0x7f0000001d80)={0x2, 0x80, 0x69, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = socket$inet6_udp(0xa, 0x2, 0x0) dup(0xffffffffffffffff) fstat(0xffffffffffffffff, 0x0) connect$inet6(r0, &(0x7f0000000600)={0xa, 0x0, 0x0, @dev, 0x2}, 0x1c) sendmmsg$inet6(r0, &(0x7f0000000080)=[{{0x0, 0x0, &(0x7f00000004c0)=[{&(0x7f00000001c0)="4bc702854e3954b59347985ccc868289d3fe483d2c0900a2a1d12e33a66529e1f276fef452632dfa3c004ce3be84a5f66c29cd4ec39ae5206562fbc9ea3c0dbbebc22e628e147b0e9631f19b0ce0a48e0e675b2da3442226b898f1ddf8eabf133ab4a9cb0999c2ee1d3bd36d089b0d8e97ea00d4c5f6ad14dce058d595aacba2d587ff5eacd81b71a73f53ed276d1f3b3384bb2bfba4e0f37302e690df9e7024378ac754ac0576f996f3ee53d1034c7720767ddf2625817532f7ae89103367b73a36152b84c38bc227ba9e9ff48bcfe027585cf14bff", 0xd6}], 0x1}}], 0x1, 0x0) 23:40:03 executing program 1: perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = syz_io_uring_setup(0x3a75, &(0x7f0000000080), &(0x7f0000ffb000/0x3000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=0x0, &(0x7f0000000100)=0x0) r3 = socket$inet6_udplite(0xa, 0x2, 0x88) syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_RECVMSG={0xa, 0x0, 0x0, r3, 0x0, &(0x7f0000000440)={0x0, 0x0, 0x0}, 0x0, 0x40000203}, 0x0) mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0) mmap$IORING_OFF_CQ_RING(&(0x7f0000ffe000/0x2000)=nil, 0x2000, 0xf, 0x13, r0, 0x8000000) syz_io_uring_submit(0x0, r2, &(0x7f00000002c0)=@IORING_OP_READ=@pass_buffer={0x16, 0x4, 0x0, @fd, 0x0, 0x0}, 0x80000001) r4 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1) dup2(r4, r3) io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0) 23:40:03 executing program 7: perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_mount_image$vfat(&(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x0, 0x2, &(0x7f0000000180)=[{&(0x7f0000000140)="eb3c906d6b66732e66617400020801000470008400f801", 0x17}, {0x0, 0x0, 0x1000a00}], 0x0, &(0x7f0000000240)=ANY=[]) (fail_nth: 28) [ 1233.845614] FAULT_INJECTION: forcing a failure. [ 1233.845614] name failslab, interval 1, probability 0, space 0, times 0 [ 1233.848274] CPU: 0 PID: 7993 Comm: syz-executor.7 Not tainted 5.10.194 #1 [ 1233.849685] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1233.851410] Call Trace: [ 1233.851979] dump_stack+0x107/0x167 [ 1233.852752] should_fail.cold+0x5/0xa [ 1233.853560] ? __kernfs_new_node+0xd4/0x860 [ 1233.854463] should_failslab+0x5/0x20 [ 1233.855258] kmem_cache_alloc+0x5b/0x310 [ 1233.856147] __kernfs_new_node+0xd4/0x860 [ 1233.857029] ? kernfs_dop_revalidate+0x3a0/0x3a0 [ 1233.858017] ? lock_downgrade+0x6d0/0x6d0 [ 1233.858904] ? mutex_lock_io_nested+0xf30/0xf30 [ 1233.859892] ? __kernfs_new_node+0x549/0x860 [ 1233.860840] ? __mutex_unlock_slowpath+0xe1/0x600 [ 1233.861859] ? __lockdep_reset_lock+0x180/0x180 [ 1233.862857] kernfs_new_node+0x93/0x120 [ 1233.863731] __kernfs_create_file+0x51/0x350 [ 1233.864670] sysfs_add_file_mode_ns+0x221/0x560 [ 1233.865687] internal_create_group+0x324/0xb30 [ 1233.866671] ? sysfs_remove_group+0x170/0x170 [ 1233.867620] ? lockdep_init_map_type+0x2c7/0x780 [ 1233.868615] ? blk_queue_flag_set+0x22/0x30 [ 1233.869505] ? __loop_update_dio+0x2d2/0x690 [ 1233.870429] loop_configure+0x954/0x1480 [ 1233.871313] lo_ioctl+0xa72/0x1760 [ 1233.872067] ? avc_has_extended_perms+0x7f1/0xf40 [ 1233.873106] ? loop_set_status_old+0x250/0x250 [ 1233.874221] ? avc_ss_reset+0x180/0x180 [ 1233.875055] ? lock_acquire+0x197/0x470 [ 1233.876035] ? find_held_lock+0x2c/0x110 [ 1233.876903] ? perf_trace_run_bpf_submit+0xf5/0x190 [ 1233.877927] ? perf_trace_run_bpf_submit+0xf5/0x190 [ 1233.879223] ? selinux_bprm_creds_for_exec+0xb60/0xb60 [ 1233.880313] ? generic_block_fiemap+0x60/0x60 [ 1233.881420] ? loop_set_status_old+0x250/0x250 [ 1233.882359] blkdev_ioctl+0x291/0x710 [ 1233.883289] ? blkdev_common_ioctl+0x1870/0x1870 [ 1233.884302] ? selinux_file_ioctl+0xb6/0x270 [ 1233.885219] block_ioctl+0xf9/0x140 [ 1233.885973] ? blkdev_read_iter+0x1c0/0x1c0 [ 1233.886886] __x64_sys_ioctl+0x19a/0x210 [ 1233.887757] do_syscall_64+0x33/0x40 [ 1233.888541] entry_SYSCALL_64_after_hwframe+0x62/0xc7 [ 1233.889603] RIP: 0033:0x7f4966db88d7 [ 1233.890383] Code: 3c 1c 48 f7 d8 49 39 c4 72 b8 e8 a4 54 02 00 85 c0 78 bd 48 83 c4 08 4c 89 e0 5b 41 5c c3 0f 1f 44 00 00 b8 10 00 00 00 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1233.894174] RSP: 002b:00007f496432df48 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 1233.895766] RAX: ffffffffffffffda RBX: 00007f4966e02970 RCX: 00007f4966db88d7 [ 1233.897243] RDX: 0000000000000005 RSI: 0000000000004c00 RDI: 0000000000000006 [ 1233.898733] RBP: 0000000000000006 R08: 0000000000000000 R09: ffffffffffffffff [ 1233.900201] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000005 [ 1233.901677] R13: 0000000000000005 R14: 00000000200001b0 R15: 0000000000000002 23:40:19 executing program 5: perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r0 = syz_mount_image$vfat(&(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x0, 0x2, &(0x7f0000000180)=[{&(0x7f0000000140)="eb3c906d6b66732e66617400020801000470008400f801", 0x17}, {0x0, 0x0, 0x1000a00}], 0x0, &(0x7f0000000240)=ANY=[]) openat2(r0, &(0x7f0000000100)='./file0\x00', &(0x7f00000001c0)={0x40060}, 0x18) 23:40:19 executing program 7: perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_mount_image$vfat(&(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x0, 0x2, &(0x7f0000000180)=[{&(0x7f0000000140)="eb3c906d6b66732e66617400020801000470008400f801", 0x17}, {0x0, 0x0, 0x1000a00}], 0x0, &(0x7f0000000240)=ANY=[]) (fail_nth: 29) 23:40:19 executing program 0: r0 = syz_open_dev$tty20(0xc, 0x4, 0x1) ioctl$VT_RESIZEX(r0, 0x560a, &(0x7f0000000000)={0x10, 0x1, 0x5, 0x0, 0x5, 0x2}) 23:40:19 executing program 2: r0 = add_key$keyring(&(0x7f0000000040), &(0x7f00000002c0)={'syz', 0x3}, 0x0, 0x0, 0xfffffffffffffffd) keyctl$KEYCTL_RESTRICT_KEYRING(0xf, r0, 0x0, 0x0) connect$inet(0xffffffffffffffff, &(0x7f0000000140)={0x2, 0x0, @dev}, 0x10) r1 = syz_open_dev$sg(&(0x7f0000000040), 0x0, 0x0) ioctl$BLKTRACETEARDOWN(r1, 0x1276, 0x0) ioctl$BLKTRACESETUP(r1, 0xc0481273, &(0x7f0000000140)={'\x00', 0x0, 0x4, 0x8, 0x76}) (fail_nth: 4) 23:40:19 executing program 6: getsockopt$SO_TIMESTAMPING(0xffffffffffffffff, 0x1, 0x25, &(0x7f00000001c0), &(0x7f0000000200)=0x4) r0 = syz_open_dev$tty20(0xc, 0x4, 0x1) ioctl$VT_RESIZEX(r0, 0x560a, &(0x7f0000000000)={0x0, 0x0, 0x0, 0x0, 0x1d}) r1 = syz_mount_image$tmpfs(&(0x7f0000000000), &(0x7f0000000080)='./file0\x00', 0x0, 0x0, 0x0, 0x0, &(0x7f0000000600)=ANY=[]) mknodat$loop(r1, &(0x7f0000000300)='./file0\x00', 0x1000, 0x0) openat(r1, &(0x7f0000000140)='./file0\x00', 0x2, 0x0) openat(r1, &(0x7f0000000000)='./file0\x00', 0x0, 0x0) r2 = openat$vcs(0xffffffffffffff9c, &(0x7f00000000c0), 0x4000, 0x0) copy_file_range(r2, &(0x7f0000000100)=0x3, 0xffffffffffffffff, &(0x7f0000000180)=0x7, 0x4, 0x0) ioctl$FS_IOC_SETFLAGS(r1, 0x40086602, &(0x7f0000000040)=0x100) 23:40:19 executing program 3: r0 = syz_open_dev$tty1(0xc, 0x4, 0x1) writev(r0, &(0x7f0000000080)=[{&(0x7f0000001380)="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", 0x1ea}], 0x1) 23:40:19 executing program 4: perf_event_open(&(0x7f0000001d80)={0x2, 0x80, 0x69, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = socket$inet6_udp(0xa, 0x2, 0x0) dup(0xffffffffffffffff) fstat(0xffffffffffffffff, 0x0) connect$inet6(r0, &(0x7f0000000600)={0xa, 0x0, 0x0, @dev, 0x2}, 0x1c) sendmmsg$inet6(r0, &(0x7f0000000080)=[{{0x0, 0x0, &(0x7f00000004c0)=[{&(0x7f00000001c0)="4bc702854e3954b59347985ccc868289d3fe483d2c0900a2a1d12e33a66529e1f276fef452632dfa3c004ce3be84a5f66c29cd4ec39ae5206562fbc9ea3c0dbbebc22e628e147b0e9631f19b0ce0a48e0e675b2da3442226b898f1ddf8eabf133ab4a9cb0999c2ee1d3bd36d089b0d8e97ea00d4c5f6ad14dce058d595aacba2d587ff5eacd81b71a73f53ed276d1f3b3384bb2bfba4e0f37302e690df9e7024378ac754ac0576f996f3ee53d1034c7720767ddf2625817532f7ae89103367b73a36152b84c38bc227ba9e9ff48bcfe027585cf14bff", 0xd6}], 0x1}}], 0x1, 0x0) 23:40:19 executing program 1: perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = syz_io_uring_setup(0x3a75, &(0x7f0000000080), &(0x7f0000ffb000/0x3000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=0x0, &(0x7f0000000100)=0x0) r3 = socket$inet6_udplite(0xa, 0x2, 0x88) syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_RECVMSG={0xa, 0x0, 0x0, r3, 0x0, &(0x7f0000000440)={0x0, 0x0, 0x0}, 0x0, 0x40000203}, 0x0) mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0) mmap$IORING_OFF_CQ_RING(&(0x7f0000ffe000/0x2000)=nil, 0x2000, 0xf, 0x13, r0, 0x8000000) syz_io_uring_submit(0x0, r2, &(0x7f00000002c0)=@IORING_OP_READ=@pass_buffer={0x16, 0x4, 0x0, @fd, 0x0, 0x0}, 0x80000001) r4 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1) dup2(r4, r3) io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0) [ 1249.291402] FAULT_INJECTION: forcing a failure. [ 1249.291402] name failslab, interval 1, probability 0, space 0, times 0 [ 1249.291425] CPU: 0 PID: 8014 Comm: syz-executor.7 Not tainted 5.10.194 #1 [ 1249.291436] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1249.291444] Call Trace: [ 1249.291473] dump_stack+0x107/0x167 [ 1249.291529] should_fail.cold+0x5/0xa [ 1249.291557] ? __kernfs_new_node+0xd4/0x860 [ 1249.291583] should_failslab+0x5/0x20 [ 1249.291603] kmem_cache_alloc+0x5b/0x310 [ 1249.291640] __kernfs_new_node+0xd4/0x860 [ 1249.291674] ? kernfs_dop_revalidate+0x3a0/0x3a0 [ 1249.291708] ? __mutex_unlock_slowpath+0xe1/0x600 [ 1249.291738] ? wait_for_completion_io+0x270/0x270 [ 1249.291767] ? kernfs_next_descendant_post+0x1a7/0x2a0 [ 1249.291808] kernfs_new_node+0x93/0x120 [ 1249.291844] __kernfs_create_file+0x51/0x350 [ 1249.291875] sysfs_add_file_mode_ns+0x221/0x560 [ 1249.291919] internal_create_group+0x324/0xb30 [ 1249.291958] ? sysfs_remove_group+0x170/0x170 [ 1249.291987] ? lockdep_init_map_type+0x2c7/0x780 [ 1249.292020] ? blk_queue_flag_set+0x22/0x30 [ 1249.313736] ? __loop_update_dio+0x2d2/0x690 [ 1249.313769] loop_configure+0x954/0x1480 [ 1249.313819] lo_ioctl+0xa72/0x1760 [ 1249.313845] ? avc_has_extended_perms+0x7f1/0xf40 [ 1249.313875] ? loop_set_status_old+0x250/0x250 [ 1249.313906] ? avc_ss_reset+0x180/0x180 [ 1249.313973] ? perf_trace_run_bpf_submit+0xf5/0x190 [ 1249.313994] ? perf_trace_run_bpf_submit+0xf5/0x190 [ 1249.314104] ? selinux_bprm_creds_for_exec+0xb60/0xb60 [ 1249.314126] ? generic_block_fiemap+0x60/0x60 [ 1249.314144] ? vvar_fault+0x4b0/0x740 [ 1249.314160] ? __switch_to_asm+0x34/0x60 [ 1249.314199] ? loop_set_status_old+0x250/0x250 [ 1249.314215] blkdev_ioctl+0x291/0x710 [ 1249.314239] ? blkdev_common_ioctl+0x1870/0x1870 [ 1249.314270] ? selinux_file_ioctl+0xb6/0x270 [ 1249.314303] block_ioctl+0xf9/0x140 [ 1249.314320] ? blkdev_read_iter+0x1c0/0x1c0 [ 1249.314346] __x64_sys_ioctl+0x19a/0x210 [ 1249.314378] do_syscall_64+0x33/0x40 [ 1249.314402] entry_SYSCALL_64_after_hwframe+0x62/0xc7 [ 1249.314416] RIP: 0033:0x7f4966db88d7 [ 1249.314436] Code: 3c 1c 48 f7 d8 49 39 c4 72 b8 e8 a4 54 02 00 85 c0 78 bd 48 83 c4 08 4c 89 e0 5b 41 5c c3 0f 1f 44 00 00 b8 10 00 00 00 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1249.314448] RSP: 002b:00007f496432df48 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 1249.314472] RAX: ffffffffffffffda RBX: 00007f4966e02970 RCX: 00007f4966db88d7 [ 1249.314484] RDX: 0000000000000005 RSI: 0000000000004c00 RDI: 0000000000000006 [ 1249.314496] RBP: 0000000000000006 R08: 0000000000000000 R09: ffffffffffffffff [ 1249.314508] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000005 [ 1249.314520] R13: 0000000000000005 R14: 00000000200001b0 R15: 0000000000000002 [ 1249.319089] FAULT_INJECTION: forcing a failure. [ 1249.319089] name failslab, interval 1, probability 0, space 0, times 0 23:40:19 executing program 1: perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = syz_io_uring_setup(0x3a75, &(0x7f0000000080), &(0x7f0000ffb000/0x3000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=0x0, &(0x7f0000000100)=0x0) r3 = socket$inet6_udplite(0xa, 0x2, 0x88) syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_RECVMSG={0xa, 0x0, 0x0, r3, 0x0, &(0x7f0000000440)={0x0, 0x0, 0x0}, 0x0, 0x40000203}, 0x0) mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0) r4 = mmap$IORING_OFF_CQ_RING(&(0x7f0000ffe000/0x2000)=nil, 0x2000, 0xf, 0x13, r0, 0x8000000) syz_io_uring_submit(r4, 0x0, &(0x7f00000002c0)=@IORING_OP_READ=@pass_buffer={0x16, 0x4, 0x0, @fd, 0x0, 0x0}, 0x80000001) r5 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1) dup2(r5, r3) io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0) [ 1249.351140] CPU: 1 PID: 8022 Comm: syz-executor.2 Not tainted 5.10.194 #1 [ 1249.351150] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 23:40:19 executing program 7: perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_mount_image$vfat(&(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x0, 0x2, &(0x7f0000000180)=[{&(0x7f0000000140)="eb3c906d6b66732e66617400020801000470008400f801", 0x17}, {0x0, 0x0, 0x1000a00}], 0x0, &(0x7f0000000240)=ANY=[]) (fail_nth: 30) [ 1249.351156] Call Trace: [ 1249.351184] dump_stack+0x107/0x167 [ 1249.351208] should_fail.cold+0x5/0xa 23:40:19 executing program 4: perf_event_open(&(0x7f0000001d80)={0x2, 0x80, 0x69, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = socket$inet6_udp(0xa, 0x2, 0x0) dup(0xffffffffffffffff) fstat(0xffffffffffffffff, 0x0) connect$inet6(r0, &(0x7f0000000600)={0xa, 0x0, 0x0, @dev, 0x2}, 0x1c) sendmmsg$inet6(r0, &(0x7f0000000080)=[{{0x0, 0x0, &(0x7f00000004c0)=[{&(0x7f00000001c0)="4bc702854e3954b59347985ccc868289d3fe483d2c0900a2a1d12e33a66529e1f276fef452632dfa3c004ce3be84a5f66c29cd4ec39ae5206562fbc9ea3c0dbbebc22e628e147b0e9631f19b0ce0a48e0e675b2da3442226b898f1ddf8eabf133ab4a9cb0999c2ee1d3bd36d089b0d8e97ea00d4c5f6ad14dce058d595aacba2d587ff5eacd81b71a73f53ed276d1f3b3384bb2bfba4e0f37302e690df9e7024378ac754ac0576f996f3ee53d1034c7720767ddf2625817532f7ae89103367b73a36152b84c38bc227ba9e9ff48bcfe027585cf14bff", 0xd6}], 0x1}}], 0x1, 0x0) [ 1249.351230] ? create_object.isra.0+0x3a/0xa20 [ 1249.351252] should_failslab+0x5/0x20 [ 1249.351275] kmem_cache_alloc+0x5b/0x310 [ 1249.351299] create_object.isra.0+0x3a/0xa20 [ 1249.351325] kmemleak_alloc_percpu+0xa0/0x100 [ 1249.351348] pcpu_alloc+0x4e2/0x1240 [ 1249.351387] do_blk_trace_setup+0x203/0xc10 [ 1249.351407] ? _copy_from_user+0xfb/0x1b0 [ 1249.351428] __blk_trace_setup+0xca/0x180 [ 1249.351446] ? do_blk_trace_setup+0xc10/0xc10 23:40:19 executing program 4: perf_event_open(&(0x7f0000001d80)={0x2, 0x80, 0x69, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = socket$inet6_udp(0xa, 0x2, 0x0) dup(0xffffffffffffffff) fstat(0xffffffffffffffff, 0x0) connect$inet6(r0, &(0x7f0000000600)={0xa, 0x0, 0x0, @dev, 0x2}, 0x1c) sendmmsg$inet6(r0, &(0x7f0000000080)=[{{0x0, 0x0, &(0x7f00000004c0)=[{&(0x7f00000001c0)="4bc702854e3954b59347985ccc868289d3fe483d2c0900a2a1d12e33a66529e1f276fef452632dfa3c004ce3be84a5f66c29cd4ec39ae5206562fbc9ea3c0dbbebc22e628e147b0e9631f19b0ce0a48e0e675b2da3442226b898f1ddf8eabf133ab4a9cb0999c2ee1d3bd36d089b0d8e97ea00d4c5f6ad14dce058d595aacba2d587ff5eacd81b71a73f53ed276d1f3b3384bb2bfba4e0f37302e690df9e7024378ac754ac0576f996f3ee53d1034c7720767ddf2625817532f7ae89103367b73a36152b84c38bc227ba9e9ff48bcfe027585cf14bff37a8", 0xd8}], 0x1}}], 0x1, 0x0) [ 1249.351477] ? perf_trace_lock+0xac/0x490 [ 1249.351514] blk_trace_setup+0x43/0x60 [ 1249.351537] sg_ioctl_common+0x634/0x2570 [ 1249.351559] ? __sanitizer_cov_trace_switch+0x45/0x80 [ 1249.351578] ? do_vfs_ioctl+0x283/0x10d0 [ 1249.351594] ? sg_write+0x120/0x120 [ 1249.351611] ? generic_block_fiemap+0x60/0x60 [ 1249.351632] ? __mutex_unlock_slowpath+0xe1/0x600 [ 1249.351669] ? selinux_file_ioctl+0xb6/0x270 23:40:19 executing program 4: perf_event_open(&(0x7f0000001d80)={0x2, 0x80, 0x69, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = socket$inet6_udp(0xa, 0x2, 0x0) dup(0xffffffffffffffff) fstat(0xffffffffffffffff, 0x0) connect$inet6(r0, &(0x7f0000000600)={0xa, 0x0, 0x0, @dev, 0x2}, 0x1c) sendmmsg$inet6(r0, &(0x7f0000000080)=[{{0x0, 0x0, &(0x7f00000004c0)=[{&(0x7f00000001c0)="4bc702854e3954b59347985ccc868289d3fe483d2c0900a2a1d12e33a66529e1f276fef452632dfa3c004ce3be84a5f66c29cd4ec39ae5206562fbc9ea3c0dbbebc22e628e147b0e9631f19b0ce0a48e0e675b2da3442226b898f1ddf8eabf133ab4a9cb0999c2ee1d3bd36d089b0d8e97ea00d4c5f6ad14dce058d595aacba2d587ff5eacd81b71a73f53ed276d1f3b3384bb2bfba4e0f37302e690df9e7024378ac754ac0576f996f3ee53d1034c7720767ddf2625817532f7ae89103367b73a36152b84c38bc227ba9e9ff48bcfe027585cf14bff37a8", 0xd8}], 0x1}}], 0x1, 0x0) [ 1249.351684] ? sg_compat_ioctl+0x120/0x120 23:40:19 executing program 2: r0 = add_key$keyring(&(0x7f0000000040), &(0x7f00000002c0)={'syz', 0x3}, 0x0, 0x0, 0xfffffffffffffffd) keyctl$KEYCTL_RESTRICT_KEYRING(0xf, r0, 0x0, 0x0) connect$inet(0xffffffffffffffff, &(0x7f0000000140)={0x2, 0x0, @dev}, 0x10) r1 = syz_open_dev$sg(&(0x7f0000000040), 0x0, 0x0) ioctl$BLKTRACETEARDOWN(r1, 0x1276, 0x0) ioctl$BLKTRACESETUP(r1, 0xc0481273, &(0x7f0000000140)={'\x00', 0x0, 0x4, 0x8, 0x76}) (fail_nth: 5) 23:40:19 executing program 5: perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r0 = syz_mount_image$vfat(&(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x0, 0x2, &(0x7f0000000180)=[{&(0x7f0000000140)="eb3c906d6b66732e66617400020801000470008400f801", 0x17}, {0x0, 0x0, 0x1000a00}], 0x0, &(0x7f0000000240)=ANY=[]) openat2(r0, &(0x7f0000000100)='./file0\x00', &(0x7f00000001c0)={0x40040, 0x2}, 0x18) [ 1249.351703] sg_ioctl+0x8f/0x120 [ 1249.351724] __x64_sys_ioctl+0x19a/0x210 [ 1249.351748] do_syscall_64+0x33/0x40 [ 1249.351768] entry_SYSCALL_64_after_hwframe+0x62/0xc7 [ 1249.351781] RIP: 0033:0x7f661a573b19 [ 1249.351799] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 23:40:19 executing program 7: perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_mount_image$vfat(&(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x0, 0x2, &(0x7f0000000180)=[{&(0x7f0000000140)="eb3c906d6b66732e66617400020801000470008400f801", 0x17}, {0x0, 0x0, 0x1000a00}], 0x0, &(0x7f0000000240)=ANY=[]) (fail_nth: 31) [ 1249.351809] RSP: 002b:00007f6617ac8188 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 1249.351829] RAX: ffffffffffffffda RBX: 00007f661a687020 RCX: 00007f661a573b19 [ 1249.351840] RDX: 0000000020000140 RSI: 00000000c0481273 RDI: 0000000000000003 [ 1249.351850] RBP: 00007f6617ac81d0 R08: 0000000000000000 R09: 0000000000000000 [ 1249.351860] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 1249.351871] R13: 00007ffd527cbf9f R14: 00007f6617ac8300 R15: 0000000000022000 [ 1249.480059] FAULT_INJECTION: forcing a failure. [ 1249.480059] name failslab, interval 1, probability 0, space 0, times 0 [ 1249.480083] CPU: 1 PID: 8033 Comm: syz-executor.7 Not tainted 5.10.194 #1 [ 1249.480093] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1249.480098] Call Trace: [ 1249.480127] dump_stack+0x107/0x167 [ 1249.480150] should_fail.cold+0x5/0xa [ 1249.480172] ? create_object.isra.0+0x3a/0xa20 [ 1249.480194] should_failslab+0x5/0x20 [ 1249.480212] kmem_cache_alloc+0x5b/0x310 [ 1249.480236] create_object.isra.0+0x3a/0xa20 [ 1249.480264] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 1249.480292] kmem_cache_alloc+0x159/0x310 [ 1249.480320] __kernfs_new_node+0xd4/0x860 [ 1249.480345] ? kernfs_dop_revalidate+0x3a0/0x3a0 [ 1249.480371] ? __mutex_unlock_slowpath+0xe1/0x600 [ 1249.480394] ? wait_for_completion_io+0x270/0x270 [ 1249.480417] ? kernfs_next_descendant_post+0x1a7/0x2a0 [ 1249.480445] kernfs_new_node+0x93/0x120 [ 1249.480472] __kernfs_create_file+0x51/0x350 [ 1249.480495] sysfs_add_file_mode_ns+0x221/0x560 [ 1249.480524] internal_create_group+0x324/0xb30 [ 1249.480551] ? sysfs_remove_group+0x170/0x170 [ 1249.480574] ? lockdep_init_map_type+0x2c7/0x780 [ 1249.480598] ? blk_queue_flag_set+0x22/0x30 [ 1249.480614] ? __loop_update_dio+0x2d2/0x690 [ 1249.480637] loop_configure+0x954/0x1480 [ 1249.480668] lo_ioctl+0xa72/0x1760 [ 1249.480689] ? avc_has_extended_perms+0x7f1/0xf40 [ 1249.480711] ? loop_set_status_old+0x250/0x250 [ 1249.480733] ? avc_ss_reset+0x180/0x180 [ 1249.480753] ? lock_acquire+0x197/0x470 [ 1249.480770] ? find_held_lock+0x2c/0x110 [ 1249.480799] ? __lock_acquire+0xbb1/0x5b00 [ 1249.480875] ? selinux_bprm_creds_for_exec+0xb60/0xb60 [ 1249.480894] ? generic_block_fiemap+0x60/0x60 [ 1249.480922] ? loop_set_status_old+0x250/0x250 [ 1249.480937] blkdev_ioctl+0x291/0x710 [ 1249.480956] ? blkdev_common_ioctl+0x1870/0x1870 [ 1249.480978] ? selinux_file_ioctl+0xb6/0x270 [ 1249.481002] block_ioctl+0xf9/0x140 [ 1249.481017] ? blkdev_read_iter+0x1c0/0x1c0 [ 1249.481037] __x64_sys_ioctl+0x19a/0x210 [ 1249.481060] do_syscall_64+0x33/0x40 [ 1249.481081] entry_SYSCALL_64_after_hwframe+0x62/0xc7 [ 1249.481093] RIP: 0033:0x7f4966db88d7 [ 1249.481112] Code: 3c 1c 48 f7 d8 49 39 c4 72 b8 e8 a4 54 02 00 85 c0 78 bd 48 83 c4 08 4c 89 e0 5b 41 5c c3 0f 1f 44 00 00 b8 10 00 00 00 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1249.481122] RSP: 002b:00007f496432df48 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 1249.481142] RAX: ffffffffffffffda RBX: 00007f4966e02970 RCX: 00007f4966db88d7 [ 1249.481153] RDX: 0000000000000005 RSI: 0000000000004c00 RDI: 0000000000000006 [ 1249.481163] RBP: 0000000000000006 R08: 0000000000000000 R09: ffffffffffffffff [ 1249.481174] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000005 [ 1249.481184] R13: 0000000000000005 R14: 00000000200001b0 R15: 0000000000000002 [ 1249.601577] FAULT_INJECTION: forcing a failure. [ 1249.601577] name failslab, interval 1, probability 0, space 0, times 0 [ 1249.601637] CPU: 1 PID: 8040 Comm: syz-executor.2 Not tainted 5.10.194 #1 [ 1249.601647] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1249.601653] Call Trace: [ 1249.601679] dump_stack+0x107/0x167 [ 1249.601703] should_fail.cold+0x5/0xa [ 1249.601724] ? create_object.isra.0+0x3a/0xa20 [ 1249.601745] should_failslab+0x5/0x20 [ 1249.601764] kmem_cache_alloc+0x5b/0x310 [ 1249.601783] ? mark_held_locks+0x9e/0xe0 [ 1249.601805] create_object.isra.0+0x3a/0xa20 [ 1249.601831] kmemleak_alloc_percpu+0xa0/0x100 [ 1249.601855] pcpu_alloc+0x4e2/0x1240 [ 1249.601892] do_blk_trace_setup+0x203/0xc10 [ 1249.601913] ? _copy_from_user+0xfb/0x1b0 [ 1249.601934] __blk_trace_setup+0xca/0x180 [ 1249.601952] ? do_blk_trace_setup+0xc10/0xc10 [ 1249.601986] ? perf_trace_lock+0xac/0x490 [ 1249.602014] blk_trace_setup+0x43/0x60 [ 1249.602037] sg_ioctl_common+0x634/0x2570 [ 1249.602058] ? __sanitizer_cov_trace_switch+0x45/0x80 [ 1249.602078] ? do_vfs_ioctl+0x283/0x10d0 [ 1249.602093] ? sg_write+0x120/0x120 [ 1249.602110] ? generic_block_fiemap+0x60/0x60 [ 1249.602129] ? trace_event_raw_event_initcall_level+0x203/0x240 [ 1249.602144] ? __switch_to_asm+0x34/0x60 [ 1249.602169] ? __schedule+0x82c/0x1ea0 [ 1249.602202] ? selinux_file_ioctl+0xb6/0x270 [ 1249.602217] ? sg_compat_ioctl+0x120/0x120 [ 1249.602236] sg_ioctl+0x8f/0x120 [ 1249.602257] __x64_sys_ioctl+0x19a/0x210 [ 1249.602281] do_syscall_64+0x33/0x40 [ 1249.602302] entry_SYSCALL_64_after_hwframe+0x62/0xc7 [ 1249.602314] RIP: 0033:0x7f661a573b19 [ 1249.602332] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1249.602342] RSP: 002b:00007f6617ae9188 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 1249.602363] RAX: ffffffffffffffda RBX: 00007f661a686f60 RCX: 00007f661a573b19 [ 1249.602374] RDX: 0000000020000140 RSI: 00000000c0481273 RDI: 0000000000000003 [ 1249.602384] RBP: 00007f6617ae91d0 R08: 0000000000000000 R09: 0000000000000000 [ 1249.602394] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 1249.602405] R13: 00007ffd527cbf9f R14: 00007f6617ae9300 R15: 0000000000022000 [ 1249.621599] FAULT_INJECTION: forcing a failure. [ 1249.621599] name failslab, interval 1, probability 0, space 0, times 0 [ 1249.621623] CPU: 0 PID: 8045 Comm: syz-executor.7 Not tainted 5.10.194 #1 [ 1249.621635] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1249.621643] Call Trace: [ 1249.621674] dump_stack+0x107/0x167 [ 1249.621705] should_fail.cold+0x5/0xa [ 1249.621734] ? __kernfs_new_node+0xd4/0x860 [ 1249.621761] should_failslab+0x5/0x20 [ 1249.621781] kmem_cache_alloc+0x5b/0x310 [ 1249.621819] __kernfs_new_node+0xd4/0x860 [ 1249.621853] ? kernfs_dop_revalidate+0x3a0/0x3a0 [ 1249.621888] ? __mutex_unlock_slowpath+0xe1/0x600 [ 1249.621919] ? wait_for_completion_io+0x270/0x270 [ 1249.621947] ? kernfs_next_descendant_post+0x1a7/0x2a0 [ 1249.621989] kernfs_new_node+0x93/0x120 [ 1249.622026] __kernfs_create_file+0x51/0x350 [ 1249.622057] sysfs_add_file_mode_ns+0x221/0x560 [ 1249.622101] internal_create_group+0x324/0xb30 [ 1249.622141] ? sysfs_remove_group+0x170/0x170 [ 1249.622177] ? lockdep_init_map_type+0x2c7/0x780 [ 1249.622208] ? blk_queue_flag_set+0x22/0x30 [ 1249.622227] ? __loop_update_dio+0x2d2/0x690 [ 1249.622258] loop_configure+0x954/0x1480 [ 1249.622307] lo_ioctl+0xa72/0x1760 [ 1249.622333] ? avc_has_extended_perms+0x7f1/0xf40 [ 1249.622363] ? loop_set_status_old+0x250/0x250 [ 1249.622394] ? avc_ss_reset+0x180/0x180 [ 1249.622421] ? lock_acquire+0x197/0x470 [ 1249.622440] ? find_held_lock+0x2c/0x110 [ 1249.622491] ? perf_trace_run_bpf_submit+0xf5/0x190 [ 1249.622512] ? perf_trace_run_bpf_submit+0xf5/0x190 [ 1249.622621] ? selinux_bprm_creds_for_exec+0xb60/0xb60 [ 1249.622644] ? generic_block_fiemap+0x60/0x60 [ 1249.622686] ? loop_set_status_old+0x250/0x250 [ 1249.622703] blkdev_ioctl+0x291/0x710 [ 1249.622726] ? blkdev_common_ioctl+0x1870/0x1870 [ 1249.622757] ? selinux_file_ioctl+0xb6/0x270 [ 1249.622790] block_ioctl+0xf9/0x140 [ 1249.622807] ? blkdev_read_iter+0x1c0/0x1c0 [ 1249.622833] __x64_sys_ioctl+0x19a/0x210 [ 1249.622865] do_syscall_64+0x33/0x40 [ 1249.622888] entry_SYSCALL_64_after_hwframe+0x62/0xc7 [ 1249.622902] RIP: 0033:0x7f4966db88d7 [ 1249.622922] Code: 3c 1c 48 f7 d8 49 39 c4 72 b8 e8 a4 54 02 00 85 c0 78 bd 48 83 c4 08 4c 89 e0 5b 41 5c c3 0f 1f 44 00 00 b8 10 00 00 00 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1249.622934] RSP: 002b:00007f496432df48 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 1249.622958] RAX: ffffffffffffffda RBX: 00007f4966e02970 RCX: 00007f4966db88d7 [ 1249.622970] RDX: 0000000000000005 RSI: 0000000000004c00 RDI: 0000000000000006 [ 1249.622983] RBP: 0000000000000006 R08: 0000000000000000 R09: ffffffffffffffff [ 1249.622995] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000005 [ 1249.623007] R13: 0000000000000005 R14: 00000000200001b0 R15: 0000000000000002 23:40:34 executing program 7: perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_mount_image$vfat(&(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x0, 0x2, &(0x7f0000000180)=[{&(0x7f0000000140)="eb3c906d6b66732e66617400020801000470008400f801", 0x17}, {0x0, 0x0, 0x1000a00}], 0x0, &(0x7f0000000240)=ANY=[]) (fail_nth: 32) 23:40:34 executing program 6: r0 = openat$hpet(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0) read$eventfd(r0, 0x0, 0x0) ioctl$AUTOFS_DEV_IOCTL_ISMOUNTPOINT(r0, 0xc018937e, &(0x7f00000000c0)={{0x1, 0x1, 0x18, r0, @in_args={0x2}}, './file0\x00'}) ioctl$AUTOFS_DEV_IOCTL_TIMEOUT(r1, 0xc018937a, &(0x7f0000000100)={{0x1, 0x1, 0x18, r0, {0x6}}, './file0\x00'}) epoll_ctl$EPOLL_CTL_ADD(r0, 0x1, 0xffffffffffffffff, &(0x7f0000000080)={0x1}) bind$bt_hci(0xffffffffffffffff, &(0x7f0000000040)={0x1f, 0x2, 0x4}, 0x6) r2 = syz_open_dev$tty20(0xc, 0x4, 0x0) ioctl$VT_RESIZEX(r2, 0x560a, &(0x7f0000000000)={0xfffe, 0x0, 0x10, 0x15d, 0x1d, 0xfffd}) 23:40:34 executing program 1: perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = syz_io_uring_setup(0x3a75, &(0x7f0000000080), &(0x7f0000ffb000/0x3000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=0x0, &(0x7f0000000100)=0x0) r3 = socket$inet6_udplite(0xa, 0x2, 0x88) syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_RECVMSG={0xa, 0x0, 0x0, r3, 0x0, &(0x7f0000000440)={0x0, 0x0, 0x0}, 0x0, 0x40000203}, 0x0) mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0) r4 = mmap$IORING_OFF_CQ_RING(&(0x7f0000ffe000/0x2000)=nil, 0x2000, 0xf, 0x13, r0, 0x8000000) syz_io_uring_submit(r4, 0x0, &(0x7f00000002c0)=@IORING_OP_READ=@pass_buffer={0x16, 0x4, 0x0, @fd, 0x0, 0x0}, 0x80000001) r5 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1) dup2(r5, r3) io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0) 23:40:34 executing program 3: r0 = syz_open_dev$tty1(0xc, 0x4, 0x1) writev(r0, &(0x7f0000000080)=[{&(0x7f0000001380)="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", 0x1ea}], 0x1) 23:40:34 executing program 2: r0 = add_key$keyring(&(0x7f0000000040), &(0x7f00000002c0)={'syz', 0x3}, 0x0, 0x0, 0xfffffffffffffffd) keyctl$KEYCTL_RESTRICT_KEYRING(0xf, r0, 0x0, 0x0) connect$inet(0xffffffffffffffff, &(0x7f0000000140)={0x2, 0x0, @dev}, 0x10) r1 = syz_open_dev$sg(&(0x7f0000000040), 0x0, 0x0) ioctl$BLKTRACETEARDOWN(r1, 0x1276, 0x0) ioctl$BLKTRACESETUP(r1, 0xc0481273, &(0x7f0000000140)={'\x00', 0x0, 0x4, 0x8, 0x76}) (fail_nth: 6) 23:40:34 executing program 5: perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r0 = syz_mount_image$vfat(&(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x0, 0x2, &(0x7f0000000180)=[{&(0x7f0000000140)="eb3c906d6b66732e66617400020801000470008400f801", 0x17}, {0x0, 0x0, 0x1000a00}], 0x0, &(0x7f0000000240)=ANY=[]) openat2(r0, &(0x7f0000000100)='./file0\x00', &(0x7f00000001c0)={0x40040, 0x3}, 0x18) 23:40:34 executing program 0: r0 = syz_open_dev$tty20(0xc, 0x4, 0x1) ioctl$VT_RESIZEX(r0, 0x560a, &(0x7f0000000000)={0x10, 0x1, 0x5, 0x0, 0x5, 0x2}) 23:40:34 executing program 4: perf_event_open(&(0x7f0000001d80)={0x2, 0x80, 0x69, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = socket$inet6_udp(0xa, 0x2, 0x0) dup(0xffffffffffffffff) fstat(0xffffffffffffffff, 0x0) connect$inet6(r0, &(0x7f0000000600)={0xa, 0x0, 0x0, @dev, 0x2}, 0x1c) sendmmsg$inet6(r0, &(0x7f0000000080)=[{{0x0, 0x0, &(0x7f00000004c0)=[{&(0x7f00000001c0)="4bc702854e3954b59347985ccc868289d3fe483d2c0900a2a1d12e33a66529e1f276fef452632dfa3c004ce3be84a5f66c29cd4ec39ae5206562fbc9ea3c0dbbebc22e628e147b0e9631f19b0ce0a48e0e675b2da3442226b898f1ddf8eabf133ab4a9cb0999c2ee1d3bd36d089b0d8e97ea00d4c5f6ad14dce058d595aacba2d587ff5eacd81b71a73f53ed276d1f3b3384bb2bfba4e0f37302e690df9e7024378ac754ac0576f996f3ee53d1034c7720767ddf2625817532f7ae89103367b73a36152b84c38bc227ba9e9ff48bcfe027585cf14bff37a8", 0xd8}], 0x1}}], 0x1, 0x0) [ 1264.222644] FAULT_INJECTION: forcing a failure. [ 1264.222644] name failslab, interval 1, probability 0, space 0, times 0 [ 1264.225159] CPU: 0 PID: 8055 Comm: syz-executor.7 Not tainted 5.10.194 #1 [ 1264.225172] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1264.225179] Call Trace: [ 1264.225210] dump_stack+0x107/0x167 [ 1264.225240] should_fail.cold+0x5/0xa [ 1264.225271] ? create_object.isra.0+0x3a/0xa20 23:40:34 executing program 0: r0 = syz_open_dev$tty20(0xc, 0x4, 0x1) ioctl$VT_RESIZEX(r0, 0x560a, &(0x7f0000000000)={0x10, 0x1, 0x5, 0x0, 0x5, 0x2}) [ 1264.225297] should_failslab+0x5/0x20 [ 1264.225317] kmem_cache_alloc+0x5b/0x310 [ 1264.225353] create_object.isra.0+0x3a/0xa20 [ 1264.225373] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 23:40:34 executing program 4: perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = syz_io_uring_setup(0x3a75, &(0x7f0000000080), &(0x7f0000ffb000/0x3000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=0x0, &(0x7f0000000100)=0x0) r3 = socket$inet6_udplite(0xa, 0x2, 0x88) syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_RECVMSG={0xa, 0x0, 0x0, r3, 0x0, &(0x7f0000000440)={0x0, 0x0, 0x0}, 0x0, 0x40000203}, 0x0) mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0) r4 = mmap$IORING_OFF_CQ_RING(&(0x7f0000ffe000/0x2000)=nil, 0x2000, 0xf, 0x13, r0, 0x8000000) syz_io_uring_submit(r4, 0x0, &(0x7f00000002c0)=@IORING_OP_READ=@pass_buffer={0x16, 0x4, 0x0, @fd, 0x0, 0x0}, 0x80000001) r5 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1) dup2(r5, r3) io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0) [ 1264.225406] kmem_cache_alloc+0x159/0x310 [ 1264.225446] __kernfs_new_node+0xd4/0x860 [ 1264.225480] ? kernfs_dop_revalidate+0x3a0/0x3a0 [ 1264.225514] ? __mutex_unlock_slowpath+0xe1/0x600 [ 1264.225545] ? wait_for_completion_io+0x270/0x270 [ 1264.225574] ? kernfs_next_descendant_post+0x1a7/0x2a0 [ 1264.225616] kernfs_new_node+0x93/0x120 [ 1264.225653] __kernfs_create_file+0x51/0x350 [ 1264.225685] sysfs_add_file_mode_ns+0x221/0x560 [ 1264.225729] internal_create_group+0x324/0xb30 [ 1264.225769] ? sysfs_remove_group+0x170/0x170 23:40:34 executing program 5: perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r0 = syz_mount_image$vfat(&(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x0, 0x2, &(0x7f0000000180)=[{&(0x7f0000000140)="eb3c906d6b66732e66617400020801000470008400f801", 0x17}, {0x0, 0x0, 0x1000a00}], 0x0, &(0x7f0000000240)=ANY=[]) openat2(r0, &(0x7f0000000100)='./file0\x00', &(0x7f00000001c0)={0x40040, 0x4}, 0x18) [ 1264.225798] ? lockdep_init_map_type+0x2c7/0x780 23:40:34 executing program 2: r0 = add_key$keyring(&(0x7f0000000040), &(0x7f00000002c0)={'syz', 0x3}, 0x0, 0x0, 0xfffffffffffffffd) keyctl$KEYCTL_RESTRICT_KEYRING(0xf, r0, 0x0, 0x0) connect$inet(0xffffffffffffffff, &(0x7f0000000140)={0x2, 0x0, @dev}, 0x10) r1 = syz_open_dev$sg(&(0x7f0000000040), 0x0, 0x0) ioctl$BLKTRACETEARDOWN(r1, 0x1276, 0x0) ioctl$BLKTRACESETUP(r1, 0xc0481273, &(0x7f0000000140)={'\x00', 0x0, 0x4, 0x8, 0x76}) (fail_nth: 7) [ 1264.225829] ? blk_queue_flag_set+0x22/0x30 [ 1264.225847] ? __loop_update_dio+0x2d2/0x690 [ 1264.225878] loop_configure+0x954/0x1480 23:40:34 executing program 7: perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_mount_image$vfat(&(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x0, 0x2, &(0x7f0000000180)=[{&(0x7f0000000140)="eb3c906d6b66732e66617400020801000470008400f801", 0x17}, {0x0, 0x0, 0x1000a00}], 0x0, &(0x7f0000000240)=ANY=[]) (fail_nth: 33) 23:40:34 executing program 4: perf_event_open(&(0x7f0000001d80)={0x2, 0x80, 0x69, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = socket$inet6_udp(0xa, 0x2, 0x0) dup(0xffffffffffffffff) fstat(0xffffffffffffffff, 0x0) connect$inet6(r0, &(0x7f0000000600)={0xa, 0x0, 0x0, @dev, 0x2}, 0x1c) sendmmsg$inet6(r0, &(0x7f0000000080)=[{{0x0, 0x0, &(0x7f00000004c0)=[{&(0x7f00000001c0)="4bc702854e3954b59347985ccc868289d3fe483d2c0900a2a1d12e33a66529e1f276fef452632dfa3c004ce3be84a5f66c29cd4ec39ae5206562fbc9ea3c0dbbebc22e628e147b0e9631f19b0ce0a48e0e675b2da3442226b898f1ddf8eabf133ab4a9cb0999c2ee1d3bd36d089b0d8e97ea00d4c5f6ad14dce058d595aacba2d587ff5eacd81b71a73f53ed276d1f3b3384bb2bfba4e0f37302e690df9e7024378ac754ac0576f996f3ee53d1034c7720767ddf2625817532f7ae89103367b73a36152b84c38bc227ba9e9ff48bcfe027585cf14bff", 0xd6}], 0x1}}], 0x1, 0x0) [ 1264.225928] lo_ioctl+0xa72/0x1760 [ 1264.225954] ? avc_has_extended_perms+0x7f1/0xf40 [ 1264.225984] ? loop_set_status_old+0x250/0x250 [ 1264.226015] ? avc_ss_reset+0x180/0x180 [ 1264.226041] ? lock_acquire+0x197/0x470 23:40:34 executing program 1: perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = syz_io_uring_setup(0x3a75, &(0x7f0000000080), &(0x7f0000ffb000/0x3000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=0x0, &(0x7f0000000100)=0x0) r3 = socket$inet6_udplite(0xa, 0x2, 0x88) syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_RECVMSG={0xa, 0x0, 0x0, r3, 0x0, &(0x7f0000000440)={0x0, 0x0, 0x0}, 0x0, 0x40000203}, 0x0) mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0) r4 = mmap$IORING_OFF_CQ_RING(&(0x7f0000ffe000/0x2000)=nil, 0x2000, 0xf, 0x13, r0, 0x8000000) syz_io_uring_submit(r4, 0x0, &(0x7f00000002c0)=@IORING_OP_READ=@pass_buffer={0x16, 0x4, 0x0, @fd, 0x0, 0x0}, 0x80000001) r5 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1) dup2(r5, r3) io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0) [ 1264.226060] ? find_held_lock+0x2c/0x110 [ 1264.226112] ? perf_trace_run_bpf_submit+0xf5/0x190 [ 1264.226133] ? perf_trace_run_bpf_submit+0xf5/0x190 [ 1264.226243] ? selinux_bprm_creds_for_exec+0xb60/0xb60 [ 1264.226265] ? generic_block_fiemap+0x60/0x60 [ 1264.226308] ? loop_set_status_old+0x250/0x250 [ 1264.226324] blkdev_ioctl+0x291/0x710 [ 1264.226348] ? blkdev_common_ioctl+0x1870/0x1870 [ 1264.226379] ? selinux_file_ioctl+0xb6/0x270 [ 1264.226411] block_ioctl+0xf9/0x140 [ 1264.226428] ? blkdev_read_iter+0x1c0/0x1c0 [ 1264.226454] __x64_sys_ioctl+0x19a/0x210 [ 1264.226486] do_syscall_64+0x33/0x40 [ 1264.226509] entry_SYSCALL_64_after_hwframe+0x62/0xc7 [ 1264.226523] RIP: 0033:0x7f4966db88d7 [ 1264.226543] Code: 3c 1c 48 f7 d8 49 39 c4 72 b8 e8 a4 54 02 00 85 c0 78 bd 48 83 c4 08 4c 89 e0 5b 41 5c c3 0f 1f 44 00 00 b8 10 00 00 00 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1264.226555] RSP: 002b:00007f496432df48 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 1264.226579] RAX: ffffffffffffffda RBX: 00007f4966e02970 RCX: 00007f4966db88d7 [ 1264.226591] RDX: 0000000000000005 RSI: 0000000000004c00 RDI: 0000000000000006 [ 1264.226603] RBP: 0000000000000006 R08: 0000000000000000 R09: ffffffffffffffff [ 1264.226615] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000005 [ 1264.226627] R13: 0000000000000005 R14: 00000000200001b0 R15: 0000000000000002 [ 1264.258719] FAULT_INJECTION: forcing a failure. [ 1264.258719] name failslab, interval 1, probability 0, space 0, times 0 [ 1264.258738] CPU: 0 PID: 8069 Comm: syz-executor.2 Not tainted 5.10.194 #1 [ 1264.258748] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1264.258753] Call Trace: [ 1264.258778] dump_stack+0x107/0x167 23:40:34 executing program 4: perf_event_open(&(0x7f0000001d80)={0x2, 0x80, 0x69, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = socket$inet6_udp(0xa, 0x2, 0x0) dup(0xffffffffffffffff) fstat(0xffffffffffffffff, 0x0) connect$inet6(r0, &(0x7f0000000600)={0xa, 0x0, 0x0, @dev, 0x2}, 0x1c) sendmmsg$inet6(r0, &(0x7f0000000080)=[{{0x0, 0x0, &(0x7f00000004c0)=[{&(0x7f00000001c0)="4bc702854e3954b59347985ccc868289d3fe483d2c0900a2a1d12e33a66529e1f276fef452632dfa3c004ce3be84a5f66c29cd4ec39ae5206562fbc9ea3c0dbbebc22e628e147b0e9631f19b0ce0a48e0e675b2da3442226b898f1ddf8eabf133ab4a9cb0999c2ee1d3bd36d089b0d8e97ea00d4c5f6ad14dce058d595aacba2d587ff5eacd81b71a73f53ed276d1f3b3384bb2bfba4e0f37302e690df9e7024378ac754ac0576f996f3ee53d1034c7720767ddf2625817532f7ae89103367b73a36152b84c38bc227ba9e9ff48bcfe027585cf14bff37a888", 0xff41}], 0x1}}], 0x1, 0x0) (fail_nth: 1) [ 1264.258801] should_fail.cold+0x5/0xa [ 1264.258821] ? create_object.isra.0+0x3a/0xa20 [ 1264.258848] should_failslab+0x5/0x20 [ 1264.258865] kmem_cache_alloc+0x5b/0x310 [ 1264.258890] create_object.isra.0+0x3a/0xa20 [ 1264.258915] kmemleak_alloc_percpu+0xa0/0x100 [ 1264.258938] pcpu_alloc+0x4e2/0x1240 [ 1264.258975] do_blk_trace_setup+0x243/0xc10 [ 1264.258996] ? _copy_from_user+0xfb/0x1b0 [ 1264.259016] __blk_trace_setup+0xca/0x180 [ 1264.259034] ? do_blk_trace_setup+0xc10/0xc10 [ 1264.259064] ? perf_trace_lock+0xac/0x490 [ 1264.259092] blk_trace_setup+0x43/0x60 [ 1264.259115] sg_ioctl_common+0x634/0x2570 [ 1264.259137] ? __sanitizer_cov_trace_switch+0x45/0x80 [ 1264.259156] ? do_vfs_ioctl+0x283/0x10d0 [ 1264.259171] ? sg_write+0x120/0x120 [ 1264.259188] ? generic_block_fiemap+0x60/0x60 [ 1264.259209] ? __mutex_unlock_slowpath+0xe1/0x600 [ 1264.259246] ? selinux_file_ioctl+0xb6/0x270 [ 1264.259261] ? sg_compat_ioctl+0x120/0x120 [ 1264.259279] sg_ioctl+0x8f/0x120 [ 1264.259300] __x64_sys_ioctl+0x19a/0x210 [ 1264.259324] do_syscall_64+0x33/0x40 [ 1264.259345] entry_SYSCALL_64_after_hwframe+0x62/0xc7 [ 1264.259356] RIP: 0033:0x7f661a573b19 [ 1264.259375] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1264.259384] RSP: 002b:00007f6617ae9188 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 1264.259405] RAX: ffffffffffffffda RBX: 00007f661a686f60 RCX: 00007f661a573b19 [ 1264.259415] RDX: 0000000020000140 RSI: 00000000c0481273 RDI: 0000000000000003 [ 1264.259425] RBP: 00007f6617ae91d0 R08: 0000000000000000 R09: 0000000000000000 [ 1264.259436] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 1264.259446] R13: 00007ffd527cbf9f R14: 00007f6617ae9300 R15: 0000000000022000 [ 1264.511751] FAULT_INJECTION: forcing a failure. [ 1264.511751] name failslab, interval 1, probability 0, space 0, times 0 23:40:34 executing program 2: r0 = add_key$keyring(&(0x7f0000000040), &(0x7f00000002c0)={'syz', 0x3}, 0x0, 0x0, 0xfffffffffffffffd) keyctl$KEYCTL_RESTRICT_KEYRING(0xf, r0, 0x0, 0x0) connect$inet(0xffffffffffffffff, &(0x7f0000000140)={0x2, 0x0, @dev}, 0x10) r1 = syz_open_dev$sg(&(0x7f0000000040), 0x0, 0x0) ioctl$BLKTRACETEARDOWN(r1, 0x1276, 0x0) ioctl$BLKTRACESETUP(r1, 0xc0481273, &(0x7f0000000140)={'\x00', 0x0, 0x4, 0x8, 0x76}) (fail_nth: 8) [ 1264.511772] CPU: 1 PID: 8083 Comm: syz-executor.2 Not tainted 5.10.194 #1 [ 1264.511782] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1264.511788] Call Trace: [ 1264.511813] dump_stack+0x107/0x167 [ 1264.511836] should_fail.cold+0x5/0xa [ 1264.511857] ? create_object.isra.0+0x3a/0xa20 [ 1264.511878] should_failslab+0x5/0x20 [ 1264.511896] kmem_cache_alloc+0x5b/0x310 [ 1264.511915] ? mark_held_locks+0x9e/0xe0 [ 1264.511937] create_object.isra.0+0x3a/0xa20 [ 1264.511962] kmemleak_alloc_percpu+0xa0/0x100 [ 1264.511986] pcpu_alloc+0x4e2/0x1240 [ 1264.512023] do_blk_trace_setup+0x243/0xc10 [ 1264.512044] ? _copy_from_user+0xfb/0x1b0 [ 1264.512064] __blk_trace_setup+0xca/0x180 [ 1264.512082] ? do_blk_trace_setup+0xc10/0xc10 [ 1264.512112] ? perf_trace_lock+0xac/0x490 [ 1264.512140] blk_trace_setup+0x43/0x60 [ 1264.512167] sg_ioctl_common+0x634/0x2570 [ 1264.512190] ? __sanitizer_cov_trace_switch+0x45/0x80 [ 1264.512209] ? do_vfs_ioctl+0x283/0x10d0 [ 1264.512225] ? sg_write+0x120/0x120 [ 1264.512242] ? generic_block_fiemap+0x60/0x60 [ 1264.512262] ? __mutex_unlock_slowpath+0xe1/0x600 [ 1264.512299] ? selinux_file_ioctl+0xb6/0x270 [ 1264.512315] ? sg_compat_ioctl+0x120/0x120 [ 1264.512334] sg_ioctl+0x8f/0x120 [ 1264.512355] __x64_sys_ioctl+0x19a/0x210 [ 1264.512378] do_syscall_64+0x33/0x40 [ 1264.512399] entry_SYSCALL_64_after_hwframe+0x62/0xc7 [ 1264.512411] RIP: 0033:0x7f661a573b19 [ 1264.512429] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1264.512439] RSP: 002b:00007f6617ae9188 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 1264.512460] RAX: ffffffffffffffda RBX: 00007f661a686f60 RCX: 00007f661a573b19 [ 1264.512471] RDX: 0000000020000140 RSI: 00000000c0481273 RDI: 0000000000000003 [ 1264.512481] RBP: 00007f6617ae91d0 R08: 0000000000000000 R09: 0000000000000000 [ 1264.512491] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 1264.512502] R13: 00007ffd527cbf9f R14: 00007f6617ae9300 R15: 0000000000022000 [ 1264.546644] FAULT_INJECTION: forcing a failure. [ 1264.546644] name failslab, interval 1, probability 0, space 0, times 0 [ 1264.546666] CPU: 0 PID: 8091 Comm: syz-executor.7 Not tainted 5.10.194 #1 [ 1264.546678] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1264.546684] Call Trace: [ 1264.546713] dump_stack+0x107/0x167 [ 1264.546743] should_fail.cold+0x5/0xa [ 1264.546771] ? __kernfs_new_node+0xd4/0x860 [ 1264.546797] should_failslab+0x5/0x20 [ 1264.546815] kmem_cache_alloc+0x5b/0x310 [ 1264.546853] __kernfs_new_node+0xd4/0x860 [ 1264.546887] ? kernfs_dop_revalidate+0x3a0/0x3a0 [ 1264.546920] ? __mutex_unlock_slowpath+0xe1/0x600 [ 1264.546951] ? wait_for_completion_io+0x270/0x270 [ 1264.546979] ? kernfs_next_descendant_post+0x1a7/0x2a0 [ 1264.547021] kernfs_new_node+0x93/0x120 [ 1264.547057] __kernfs_create_file+0x51/0x350 [ 1264.547089] sysfs_add_file_mode_ns+0x221/0x560 [ 1264.547132] internal_create_group+0x324/0xb30 [ 1264.547172] ? sysfs_remove_group+0x170/0x170 [ 1264.547200] ? lockdep_init_map_type+0x2c7/0x780 [ 1264.547230] ? blk_queue_flag_set+0x22/0x30 [ 1264.547248] ? __loop_update_dio+0x2d2/0x690 [ 1264.547286] loop_configure+0x954/0x1480 [ 1264.547339] lo_ioctl+0xa72/0x1760 [ 1264.547364] ? avc_has_extended_perms+0x7f1/0xf40 [ 1264.547393] ? loop_set_status_old+0x250/0x250 [ 1264.547424] ? avc_ss_reset+0x180/0x180 [ 1264.547450] ? lock_acquire+0x197/0x470 [ 1264.547469] ? find_held_lock+0x2c/0x110 [ 1264.547520] ? perf_trace_run_bpf_submit+0xf5/0x190 [ 1264.547541] ? perf_trace_run_bpf_submit+0xf5/0x190 [ 1264.547647] ? selinux_bprm_creds_for_exec+0xb60/0xb60 [ 1264.547669] ? generic_block_fiemap+0x60/0x60 [ 1264.547722] ? loop_set_status_old+0x250/0x250 [ 1264.547739] blkdev_ioctl+0x291/0x710 [ 1264.547762] ? blkdev_common_ioctl+0x1870/0x1870 [ 1264.547793] ? selinux_file_ioctl+0xb6/0x270 [ 1264.547824] block_ioctl+0xf9/0x140 [ 1264.547842] ? blkdev_read_iter+0x1c0/0x1c0 [ 1264.547867] __x64_sys_ioctl+0x19a/0x210 [ 1264.547898] do_syscall_64+0x33/0x40 [ 1264.547922] entry_SYSCALL_64_after_hwframe+0x62/0xc7 [ 1264.547935] RIP: 0033:0x7f4966db88d7 [ 1264.547955] Code: 3c 1c 48 f7 d8 49 39 c4 72 b8 e8 a4 54 02 00 85 c0 78 bd 48 83 c4 08 4c 89 e0 5b 41 5c c3 0f 1f 44 00 00 b8 10 00 00 00 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1264.547967] RSP: 002b:00007f496432df48 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 1264.547991] RAX: ffffffffffffffda RBX: 00007f4966e02970 RCX: 00007f4966db88d7 [ 1264.548003] RDX: 0000000000000005 RSI: 0000000000004c00 RDI: 0000000000000006 [ 1264.548014] RBP: 0000000000000006 R08: 0000000000000000 R09: ffffffffffffffff [ 1264.548026] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000005 [ 1264.548038] R13: 0000000000000005 R14: 00000000200001b0 R15: 0000000000000002 [ 1264.702555] FAULT_INJECTION: forcing a failure. [ 1264.702555] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 1264.731304] CPU: 1 PID: 8095 Comm: syz-executor.4 Not tainted 5.10.194 #1 [ 1264.731315] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1264.731320] Call Trace: [ 1264.731348] dump_stack+0x107/0x167 [ 1264.731380] should_fail.cold+0x5/0xa [ 1264.736443] _copy_from_user+0x2e/0x1b0 [ 1264.736475] __copy_msghdr_from_user+0x91/0x4b0 [ 1264.738212] ? __ia32_sys_shutdown+0x80/0x80 [ 1264.738240] ? __lock_acquire+0xbb1/0x5b00 [ 1264.738269] sendmsg_copy_msghdr+0xa1/0x160 [ 1264.740892] ? do_recvmmsg+0x6d0/0x6d0 [ 1264.741678] ? perf_trace_lock+0xac/0x490 [ 1264.742523] ? __lockdep_reset_lock+0x180/0x180 [ 1264.742546] ? perf_trace_lock+0xac/0x490 [ 1264.744340] ? __lock_acquire+0x1657/0x5b00 [ 1264.744362] ___sys_sendmsg+0xc6/0x170 [ 1264.744383] ? sendmsg_copy_msghdr+0x160/0x160 [ 1264.744404] ? __fget_files+0x26d/0x4c0 [ 1264.744422] ? lock_downgrade+0x6d0/0x6d0 [ 1264.744448] ? lock_downgrade+0x6d0/0x6d0 [ 1264.744471] ? __fget_files+0x296/0x4c0 [ 1264.744499] ? __fget_light+0xea/0x290 [ 1264.744526] __sys_sendmmsg+0x195/0x470 [ 1264.744550] ? __ia32_sys_sendmsg+0xb0/0xb0 [ 1264.744568] ? lock_downgrade+0x6d0/0x6d0 [ 1264.744594] ? ksys_write+0x12d/0x260 [ 1264.744621] ? __mutex_unlock_slowpath+0xe1/0x600 [ 1264.744643] ? wait_for_completion_io+0x270/0x270 [ 1264.744664] ? rcu_read_lock_any_held+0x75/0xa0 [ 1264.744680] ? vfs_write+0x354/0xa70 [ 1264.744702] ? fput_many+0x2f/0x1a0 [ 1264.744721] ? ksys_write+0x1a9/0x260 [ 1264.744739] ? __ia32_sys_read+0xb0/0xb0 [ 1264.744765] __x64_sys_sendmmsg+0x99/0x100 [ 1264.744781] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1264.744800] do_syscall_64+0x33/0x40 [ 1264.744821] entry_SYSCALL_64_after_hwframe+0x62/0xc7 [ 1264.744833] RIP: 0033:0x7fc0896e2b19 [ 1264.744851] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1264.744861] RSP: 002b:00007fc086c58188 EFLAGS: 00000246 ORIG_RAX: 0000000000000133 [ 1264.744881] RAX: ffffffffffffffda RBX: 00007fc0897f5f60 RCX: 00007fc0896e2b19 [ 1264.744891] RDX: 0000000000000001 RSI: 0000000020000080 RDI: 0000000000000004 [ 1264.744902] RBP: 00007fc086c581d0 R08: 0000000000000000 R09: 0000000000000000 [ 1264.744912] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 1264.744923] R13: 00007ffc7a2d78bf R14: 00007fc086c58300 R15: 0000000000022000 [ 1264.766845] FAULT_INJECTION: forcing a failure. [ 1264.766845] name failslab, interval 1, probability 0, space 0, times 0 [ 1264.766967] CPU: 0 PID: 8097 Comm: syz-executor.2 Not tainted 5.10.194 #1 [ 1264.766979] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1264.766986] Call Trace: [ 1264.767018] dump_stack+0x107/0x167 [ 1264.767047] should_fail.cold+0x5/0xa [ 1264.767081] ? __d_alloc+0x2a/0x990 [ 1264.767106] should_failslab+0x5/0x20 [ 1264.767127] kmem_cache_alloc+0x5b/0x310 [ 1264.767158] __d_alloc+0x2a/0x990 [ 1264.767191] d_alloc_parallel+0x111/0x1bc0 [ 1264.767233] ? __lock_acquire+0x1657/0x5b00 [ 1264.767262] ? perf_trace_lock+0xac/0x490 [ 1264.767291] ? __d_lookup_rcu+0x6d0/0x6d0 [ 1264.767312] ? __lockdep_reset_lock+0x180/0x180 [ 1264.767340] ? lockdep_init_map_type+0x2c7/0x780 [ 1264.767366] ? lockdep_init_map_type+0x2c7/0x780 [ 1264.767407] __lookup_slow+0x193/0x490 [ 1264.767434] ? lookup_open.isra.0+0x1270/0x1270 [ 1264.767472] ? __d_lookup+0x3bf/0x760 [ 1264.767512] ? d_lookup+0xcc/0x130 [ 1264.767544] lookup_one_len+0x167/0x1a0 [ 1264.767568] ? __lookup_slow+0x490/0x490 [ 1264.767590] ? down_write_killable+0x180/0x180 [ 1264.767622] ? do_raw_spin_unlock+0x4f/0x220 [ 1264.767643] ? mntput+0xc/0x90 [ 1264.767675] start_creating.part.0+0x10a/0x230 [ 1264.768014] debugfs_create_dir+0x8d/0x4a0 [ 1264.768039] do_blk_trace_setup+0x833/0xc10 [ 1264.768064] ? _copy_from_user+0xfb/0x1b0 [ 1264.768089] __blk_trace_setup+0xca/0x180 [ 1264.768111] ? do_blk_trace_setup+0xc10/0xc10 [ 1264.768147] ? perf_trace_lock+0xac/0x490 [ 1264.768182] blk_trace_setup+0x43/0x60 [ 1264.768210] sg_ioctl_common+0x634/0x2570 [ 1264.768236] ? __sanitizer_cov_trace_switch+0x45/0x80 [ 1264.768258] ? do_vfs_ioctl+0x283/0x10d0 [ 1264.768277] ? sg_write+0x120/0x120 [ 1264.768297] ? generic_block_fiemap+0x60/0x60 [ 1264.768322] ? __mutex_unlock_slowpath+0xe1/0x600 [ 1264.768368] ? selinux_file_ioctl+0xb6/0x270 [ 1264.768386] ? sg_compat_ioctl+0x120/0x120 [ 1264.768409] sg_ioctl+0x8f/0x120 [ 1264.768434] __x64_sys_ioctl+0x19a/0x210 [ 1264.768463] do_syscall_64+0x33/0x40 [ 1264.768488] entry_SYSCALL_64_after_hwframe+0x62/0xc7 [ 1264.768503] RIP: 0033:0x7f661a573b19 [ 1264.768526] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1264.768548] RSP: 002b:00007f6617ae9188 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 1264.768573] RAX: ffffffffffffffda RBX: 00007f661a686f60 RCX: 00007f661a573b19 [ 1264.768586] RDX: 0000000020000140 RSI: 00000000c0481273 RDI: 0000000000000003 [ 1264.768598] RBP: 00007f6617ae91d0 R08: 0000000000000000 R09: 0000000000000000 [ 1264.768610] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 1264.768623] R13: 00007ffd527cbf9f R14: 00007f6617ae9300 R15: 0000000000022000 [ 1264.768797] blktrace: debugfs_dir not present for sg0 so skipping [ 1278.440042] FAULT_INJECTION: forcing a failure. [ 1278.440042] name failslab, interval 1, probability 0, space 0, times 0 [ 1278.442654] CPU: 1 PID: 8110 Comm: syz-executor.2 Not tainted 5.10.194 #1 [ 1278.444037] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1278.445730] Call Trace: [ 1278.446274] dump_stack+0x107/0x167 [ 1278.447007] should_fail.cold+0x5/0xa [ 1278.447785] ? create_object.isra.0+0x3a/0xa20 [ 1278.448746] should_failslab+0x5/0x20 [ 1278.449526] kmem_cache_alloc+0x5b/0x310 [ 1278.450356] create_object.isra.0+0x3a/0xa20 [ 1278.451231] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 1278.452256] kmem_cache_alloc+0x159/0x310 [ 1278.453094] __d_alloc+0x2a/0x990 [ 1278.453799] d_alloc_parallel+0x111/0x1bc0 [ 1278.454666] ? __lock_acquire+0x1657/0x5b00 [ 1278.455524] ? perf_trace_lock+0xac/0x490 [ 1278.456379] ? __d_lookup_rcu+0x6d0/0x6d0 [ 1278.457202] ? __lockdep_reset_lock+0x180/0x180 [ 1278.458139] ? lockdep_init_map_type+0x2c7/0x780 [ 1278.459087] ? lockdep_init_map_type+0x2c7/0x780 [ 1278.460063] __lookup_slow+0x193/0x490 [ 1278.460846] ? lookup_open.isra.0+0x1270/0x1270 [ 1278.461786] ? __d_lookup+0x3bf/0x760 [ 1278.462561] ? d_lookup+0xcc/0x130 [ 1278.463279] lookup_one_len+0x167/0x1a0 [ 1278.464088] ? __lookup_slow+0x490/0x490 [ 1278.464897] ? down_write_killable+0x180/0x180 [ 1278.465812] ? do_raw_spin_unlock+0x4f/0x220 [ 1278.466687] ? mntput+0xc/0x90 [ 1278.467339] start_creating.part.0+0x10a/0x230 [ 1278.468282] debugfs_create_dir+0x8d/0x4a0 [ 1278.469137] do_blk_trace_setup+0x833/0xc10 [ 1278.470006] ? _copy_from_user+0xfb/0x1b0 [ 1278.470842] __blk_trace_setup+0xca/0x180 [ 1278.471673] ? do_blk_trace_setup+0xc10/0xc10 [ 1278.472592] ? perf_trace_lock+0xac/0x490 [ 1278.473428] blk_trace_setup+0x43/0x60 [ 1278.474211] sg_ioctl_common+0x634/0x2570 [ 1278.475042] ? __sanitizer_cov_trace_switch+0x45/0x80 [ 1278.476093] ? do_vfs_ioctl+0x283/0x10d0 [ 1278.476907] ? sg_write+0x120/0x120 [ 1278.477650] ? generic_block_fiemap+0x60/0x60 [ 1278.478567] ? __mutex_unlock_slowpath+0xe1/0x600 [ 1278.479563] ? selinux_file_ioctl+0xb6/0x270 [ 1278.480462] ? sg_compat_ioctl+0x120/0x120 [ 1278.481314] sg_ioctl+0x8f/0x120 [ 1278.482001] __x64_sys_ioctl+0x19a/0x210 [ 1278.482829] do_syscall_64+0x33/0x40 [ 1278.483597] entry_SYSCALL_64_after_hwframe+0x62/0xc7 [ 1278.484653] RIP: 0033:0x7f661a573b19 [ 1278.485405] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1278.489172] RSP: 002b:00007f6617ae9188 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 1278.490694] RAX: ffffffffffffffda RBX: 00007f661a686f60 RCX: 00007f661a573b19 [ 1278.492124] RDX: 0000000020000140 RSI: 00000000c0481273 RDI: 0000000000000003 [ 1278.493542] RBP: 00007f6617ae91d0 R08: 0000000000000000 R09: 0000000000000000 [ 1278.494961] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 1278.496401] R13: 00007ffd527cbf9f R14: 00007f6617ae9300 R15: 0000000000022000 23:40:48 executing program 3: r0 = syz_open_dev$tty1(0xc, 0x4, 0x1) writev(r0, &(0x7f0000000080)=[{&(0x7f0000001380)="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", 0x1ea}], 0x1) 23:40:48 executing program 0: r0 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x42, 0x1ff) close(r0) r1 = openat$hpet(0xffffffffffffff9c, &(0x7f0000000080), 0x202c1, 0x0) r2 = openat(r1, &(0x7f0000000200)='./file0\x00', 0x2, 0x0) write(r2, &(0x7f0000000240)="01", 0x1) close(r2) socketpair$unix(0x1, 0x1, 0x0, 0x0) r3 = openat$null(0xffffffffffffff9c, &(0x7f0000000040), 0x902, 0x0) close(r3) r4 = syz_open_dev$tty1(0xc, 0x4, 0x2) utimensat(0xffffffffffffffff, 0x0, &(0x7f0000000180)={{0x0, 0xea60}, {0x0, 0xea60}}, 0x100) execveat(0xffffffffffffff9c, &(0x7f0000000480)='./file1\x00', 0x0, 0x0, 0x0) r5 = syz_open_dev$vcsn(&(0x7f0000000000), 0x5, 0x400040) sendfile(r5, r4, 0x0, 0x0) ioctl$KDSETMODE(r4, 0x4b3a, 0x0) 23:40:48 executing program 5: perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r0 = syz_mount_image$vfat(&(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x0, 0x2, &(0x7f0000000180)=[{&(0x7f0000000140)="eb3c906d6b66732e66617400020801000470008400f801", 0x17}, {0x0, 0x0, 0x1000a00}], 0x0, &(0x7f0000000240)=ANY=[]) openat2(r0, &(0x7f0000000100)='./file0\x00', &(0x7f00000001c0)={0x40040, 0x5}, 0x18) 23:40:48 executing program 1: perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = syz_io_uring_setup(0x3a75, &(0x7f0000000080), &(0x7f0000ffb000/0x3000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=0x0, &(0x7f0000000100)=0x0) r3 = socket$inet6_udplite(0xa, 0x2, 0x88) syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_RECVMSG={0xa, 0x0, 0x0, r3, 0x0, &(0x7f0000000440)={0x0, 0x0, 0x0}, 0x0, 0x40000203}, 0x0) mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0) r4 = mmap$IORING_OFF_CQ_RING(&(0x7f0000ffe000/0x2000)=nil, 0x2000, 0xf, 0x13, r0, 0x8000000) syz_io_uring_submit(r4, r2, 0x0, 0x80000001) r5 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1) dup2(r5, r3) io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0) 23:40:48 executing program 7: perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_mount_image$vfat(&(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x0, 0x2, &(0x7f0000000180)=[{&(0x7f0000000140)="eb3c906d6b66732e66617400020801000470008400f801", 0x17}, {0x0, 0x0, 0x1000a00}], 0x0, &(0x7f0000000240)=ANY=[]) (fail_nth: 34) 23:40:48 executing program 2: r0 = add_key$keyring(&(0x7f0000000040), &(0x7f00000002c0)={'syz', 0x3}, 0x0, 0x0, 0xfffffffffffffffd) keyctl$KEYCTL_RESTRICT_KEYRING(0xf, r0, 0x0, 0x0) connect$inet(0xffffffffffffffff, &(0x7f0000000140)={0x2, 0x0, @dev}, 0x10) r1 = syz_open_dev$sg(&(0x7f0000000040), 0x0, 0x0) ioctl$BLKTRACETEARDOWN(r1, 0x1276, 0x0) ioctl$BLKTRACESETUP(r1, 0xc0481273, &(0x7f0000000140)={'\x00', 0x0, 0x4, 0x8, 0x76}) (fail_nth: 9) 23:40:48 executing program 4: perf_event_open(&(0x7f0000001d80)={0x2, 0x80, 0x69, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = socket$inet6_udp(0xa, 0x2, 0x0) dup(0xffffffffffffffff) fstat(0xffffffffffffffff, 0x0) connect$inet6(r0, &(0x7f0000000600)={0xa, 0x0, 0x0, @dev, 0x2}, 0x1c) sendmmsg$inet6(r0, &(0x7f0000000080)=[{{0x0, 0x0, &(0x7f00000004c0)=[{&(0x7f00000001c0)="4bc702854e3954b59347985ccc868289d3fe483d2c0900a2a1d12e33a66529e1f276fef452632dfa3c004ce3be84a5f66c29cd4ec39ae5206562fbc9ea3c0dbbebc22e628e147b0e9631f19b0ce0a48e0e675b2da3442226b898f1ddf8eabf133ab4a9cb0999c2ee1d3bd36d089b0d8e97ea00d4c5f6ad14dce058d595aacba2d587ff5eacd81b71a73f53ed276d1f3b3384bb2bfba4e0f37302e690df9e7024378ac754ac0576f996f3ee53d1034c7720767ddf2625817532f7ae89103367b73a36152b84c38bc227ba9e9ff48bcfe027585cf14bff37a888", 0xff41}], 0x1}}], 0x1, 0x0) (fail_nth: 2) 23:40:48 executing program 6: r0 = syz_open_dev$tty20(0xc, 0x4, 0x1) ioctl$TIOCSPTLCK(0xffffffffffffffff, 0x40045431, &(0x7f0000000040)=0x1) ioctl$VT_RESIZEX(r0, 0x560a, &(0x7f0000000000)={0xfffc, 0x0, 0x0, 0x0, 0x1d}) [ 1278.588846] FAULT_INJECTION: forcing a failure. [ 1278.588846] name failslab, interval 1, probability 0, space 0, times 0 [ 1278.591315] CPU: 0 PID: 8127 Comm: syz-executor.7 Not tainted 5.10.194 #1 [ 1278.592739] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1278.594473] Call Trace: [ 1278.595030] dump_stack+0x107/0x167 [ 1278.595800] should_fail.cold+0x5/0xa [ 1278.596609] ? create_object.isra.0+0x3a/0xa20 [ 1278.597566] should_failslab+0x5/0x20 [ 1278.598351] kmem_cache_alloc+0x5b/0x310 [ 1278.599191] create_object.isra.0+0x3a/0xa20 [ 1278.600098] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 1278.601135] kmem_cache_alloc+0x159/0x310 [ 1278.602008] __kernfs_new_node+0xd4/0x860 [ 1278.602857] ? kernfs_dop_revalidate+0x3a0/0x3a0 [ 1278.603834] ? __mutex_unlock_slowpath+0xe1/0x600 [ 1278.604835] ? wait_for_completion_io+0x270/0x270 [ 1278.605832] ? kernfs_next_descendant_post+0x1a7/0x2a0 [ 1278.606914] kernfs_new_node+0x93/0x120 [ 1278.607740] __kernfs_create_file+0x51/0x350 [ 1278.608649] sysfs_add_file_mode_ns+0x221/0x560 [ 1278.609614] internal_create_group+0x324/0xb30 [ 1278.610550] ? sysfs_remove_group+0x170/0x170 [ 1278.611469] ? lockdep_init_map_type+0x2c7/0x780 [ 1278.612453] ? blk_queue_flag_set+0x22/0x30 [ 1278.613333] ? __loop_update_dio+0x2d2/0x690 [ 1278.614233] loop_configure+0x954/0x1480 [ 1278.615076] lo_ioctl+0xa72/0x1760 [ 1278.615806] ? avc_has_extended_perms+0x7f1/0xf40 [ 1278.616801] ? loop_set_status_old+0x250/0x250 [ 1278.617736] ? avc_ss_reset+0x180/0x180 [ 1278.618552] ? lock_acquire+0x197/0x470 [ 1278.619359] ? find_held_lock+0x2c/0x110 [ 1278.620229] ? __lock_acquire+0xbb1/0x5b00 [ 1278.621143] ? selinux_bprm_creds_for_exec+0xb60/0xb60 [ 1278.622219] ? generic_block_fiemap+0x60/0x60 [ 1278.623146] ? loop_set_status_old+0x250/0x250 [ 1278.624097] blkdev_ioctl+0x291/0x710 [ 1278.624871] ? blkdev_common_ioctl+0x1870/0x1870 [ 1278.625838] ? selinux_file_ioctl+0xb6/0x270 [ 1278.626733] block_ioctl+0xf9/0x140 [ 1278.627471] ? blkdev_read_iter+0x1c0/0x1c0 [ 1278.628356] __x64_sys_ioctl+0x19a/0x210 [ 1278.629197] do_syscall_64+0x33/0x40 [ 1278.629958] entry_SYSCALL_64_after_hwframe+0x62/0xc7 [ 1278.631001] RIP: 0033:0x7f4966db88d7 [ 1278.631765] Code: 3c 1c 48 f7 d8 49 39 c4 72 b8 e8 a4 54 02 00 85 c0 78 bd 48 83 c4 08 4c 89 e0 5b 41 5c c3 0f 1f 44 00 00 b8 10 00 00 00 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1278.635531] RSP: 002b:00007f496430cf48 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 1278.637082] RAX: ffffffffffffffda RBX: 00007f4966e02970 RCX: 00007f4966db88d7 [ 1278.638528] RDX: 0000000000000005 RSI: 0000000000004c00 RDI: 0000000000000006 [ 1278.639984] RBP: 0000000000000006 R08: 0000000000000000 R09: ffffffffffffffff [ 1278.641437] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000005 [ 1278.642894] R13: 0000000000000005 R14: 00000000200001b0 R15: 0000000000000002 [ 1278.655417] FAULT_INJECTION: forcing a failure. [ 1278.655417] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 1278.657814] CPU: 1 PID: 8132 Comm: syz-executor.4 Not tainted 5.10.194 #1 [ 1278.659186] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1278.660859] Call Trace: [ 1278.661391] dump_stack+0x107/0x167 [ 1278.662122] should_fail.cold+0x5/0xa [ 1278.662893] _copy_from_user+0x2e/0x1b0 [ 1278.663689] iovec_from_user+0x141/0x400 [ 1278.664517] __import_iovec+0x67/0x590 [ 1278.665330] ? __ia32_sys_shutdown+0x80/0x80 [ 1278.666231] import_iovec+0x83/0xb0 [ 1278.666968] sendmsg_copy_msghdr+0x131/0x160 [ 1278.667852] ? do_recvmmsg+0x6d0/0x6d0 [ 1278.668681] ? perf_trace_lock+0xac/0x490 [ 1278.669540] ? __lockdep_reset_lock+0x180/0x180 [ 1278.670481] ? perf_trace_lock+0xac/0x490 [ 1278.671322] ? __lock_acquire+0x1657/0x5b00 [ 1278.672200] ___sys_sendmsg+0xc6/0x170 [ 1278.672985] ? sendmsg_copy_msghdr+0x160/0x160 [ 1278.673903] ? __fget_files+0x26d/0x4c0 [ 1278.674703] ? lock_downgrade+0x6d0/0x6d0 [ 1278.675536] ? lock_downgrade+0x6d0/0x6d0 [ 1278.676385] ? __fget_files+0x296/0x4c0 [ 1278.677188] ? __fget_light+0xea/0x290 [ 1278.677973] __sys_sendmmsg+0x195/0x470 [ 1278.678772] ? __ia32_sys_sendmsg+0xb0/0xb0 [ 1278.679632] ? lock_downgrade+0x6d0/0x6d0 [ 1278.680485] ? ksys_write+0x12d/0x260 [ 1278.681259] ? __mutex_unlock_slowpath+0xe1/0x600 [ 1278.682224] ? wait_for_completion_io+0x270/0x270 [ 1278.683194] ? rcu_read_lock_any_held+0x75/0xa0 [ 1278.684131] ? vfs_write+0x354/0xa70 [ 1278.684886] ? fput_many+0x2f/0x1a0 [ 1278.685624] ? ksys_write+0x1a9/0x260 [ 1278.686390] ? __ia32_sys_read+0xb0/0xb0 [ 1278.687201] __x64_sys_sendmmsg+0x99/0x100 [ 1278.688061] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1278.689091] do_syscall_64+0x33/0x40 [ 1278.689844] entry_SYSCALL_64_after_hwframe+0x62/0xc7 [ 1278.690877] RIP: 0033:0x7fc0896e2b19 [ 1278.691625] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1278.695303] RSP: 002b:00007fc086c37188 EFLAGS: 00000246 ORIG_RAX: 0000000000000133 [ 1278.696840] RAX: ffffffffffffffda RBX: 00007fc0897f6020 RCX: 00007fc0896e2b19 [ 1278.698265] RDX: 0000000000000001 RSI: 0000000020000080 RDI: 0000000000000004 [ 1278.699688] RBP: 00007fc086c371d0 R08: 0000000000000000 R09: 0000000000000000 [ 1278.701118] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 1278.702540] R13: 00007ffc7a2d78bf R14: 00007fc086c37300 R15: 0000000000022000 23:41:04 executing program 4: perf_event_open(&(0x7f0000001d80)={0x2, 0x80, 0x69, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = socket$inet6_udp(0xa, 0x2, 0x0) dup(0xffffffffffffffff) fstat(0xffffffffffffffff, 0x0) connect$inet6(r0, &(0x7f0000000600)={0xa, 0x0, 0x0, @dev, 0x2}, 0x1c) sendmmsg$inet6(r0, &(0x7f0000000080)=[{{0x0, 0x0, &(0x7f00000004c0)=[{&(0x7f00000001c0)="4bc702854e3954b59347985ccc868289d3fe483d2c0900a2a1d12e33a66529e1f276fef452632dfa3c004ce3be84a5f66c29cd4ec39ae5206562fbc9ea3c0dbbebc22e628e147b0e9631f19b0ce0a48e0e675b2da3442226b898f1ddf8eabf133ab4a9cb0999c2ee1d3bd36d089b0d8e97ea00d4c5f6ad14dce058d595aacba2d587ff5eacd81b71a73f53ed276d1f3b3384bb2bfba4e0f37302e690df9e7024378ac754ac0576f996f3ee53d1034c7720767ddf2625817532f7ae89103367b73a36152b84c38bc227ba9e9ff48bcfe027585cf14bff37a888", 0xff41}], 0x1}}], 0x1, 0x0) (fail_nth: 3) 23:41:04 executing program 6: r0 = syz_open_dev$tty20(0xc, 0x4, 0x1) ioctl$TIOCSTI(r0, 0x5412, &(0x7f0000000000)) r1 = openat$hpet(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0) r2 = openat$hpet(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0) read$eventfd(r2, 0x0, 0x0) ioctl$GIO_UNISCRNMAP(r2, 0x4b69, &(0x7f00000000c0)=""/248) read$eventfd(r1, 0x0, 0x0) ioctl$VT_RESIZEX(r1, 0x560a, &(0x7f0000000040)={0x21, 0x5, 0x4, 0x6261, 0x62c3, 0x3fd}) 23:41:04 executing program 7: perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_mount_image$vfat(&(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x0, 0x2, &(0x7f0000000180)=[{&(0x7f0000000140)="eb3c906d6b66732e66617400020801000470008400f801", 0x17}, {0x0, 0x0, 0x1000a00}], 0x0, &(0x7f0000000240)=ANY=[]) (fail_nth: 35) 23:41:04 executing program 1: perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = syz_io_uring_setup(0x3a75, &(0x7f0000000080), &(0x7f0000ffb000/0x3000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=0x0, &(0x7f0000000100)=0x0) r3 = socket$inet6_udplite(0xa, 0x2, 0x88) syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_RECVMSG={0xa, 0x0, 0x0, r3, 0x0, &(0x7f0000000440)={0x0, 0x0, 0x0}, 0x0, 0x40000203}, 0x0) mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0) r4 = mmap$IORING_OFF_CQ_RING(&(0x7f0000ffe000/0x2000)=nil, 0x2000, 0xf, 0x13, r0, 0x8000000) syz_io_uring_submit(r4, r2, 0x0, 0x80000001) r5 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1) dup2(r5, r3) io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0) 23:41:04 executing program 3: r0 = syz_open_dev$tty1(0xc, 0x4, 0x1) writev(r0, &(0x7f0000000080)=[{&(0x7f0000001380)="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", 0x1ea}], 0x1) 23:41:04 executing program 0: seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, 0x0) socketpair$nbd(0x1, 0x1, 0x0, &(0x7f0000001680)) r0 = socket$inet6_udp(0xa, 0x2, 0x0) connect$inet6(r0, &(0x7f0000000600)={0xa, 0x0, 0x0, @dev, 0x1}, 0x1c) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x10049, 0x6, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, @perf_bp={&(0x7f0000000100), 0x2}, 0x430}, 0x0, 0xffdfffffffffffff, 0xffffffffffffffff, 0x0) sendmmsg$inet6(r0, &(0x7f0000004d00)=[{{0x0, 0x0, &(0x7f00000004c0)=[{&(0x7f0000000080)='K', 0x1}], 0x1}}], 0x400000000000095, 0x0) fsconfig$FSCONFIG_SET_PATH_EMPTY(0xffffffffffffffff, 0x4, &(0x7f0000000140)='\x00', 0x0, 0xffffffffffffffff) getsockopt$inet6_buf(0xffffffffffffffff, 0x29, 0x9b, &(0x7f00000001c0)=""/31, &(0x7f0000000240)=0x1f) ioprio_get$pid(0x3, 0x0) sendmmsg$inet(0xffffffffffffffff, &(0x7f0000002040), 0x0, 0x0) r1 = syz_mount_image$tmpfs(&(0x7f0000000000), &(0x7f0000000080)='./file0\x00', 0x0, 0x0, 0x0, 0x0, &(0x7f0000000600)=ANY=[]) mknodat$loop(r1, &(0x7f0000000300)='./file0\x00', 0x1000, 0x0) openat(r1, &(0x7f0000000140)='./file0\x00', 0x2, 0x0) openat(r1, &(0x7f0000000000)='./file0\x00', 0x0, 0x0) r2 = openat$urandom(0xffffffffffffff9c, &(0x7f0000000040), 0xc00, 0x0) kcmp(0x0, 0x0, 0x6, r2, r1) getsockopt$inet6_buf(0xffffffffffffffff, 0x29, 0x45, &(0x7f0000000640)=""/4096, &(0x7f0000000180)=0x1000) ftruncate(0xffffffffffffffff, 0x4) syz_io_uring_setup(0x4, &(0x7f0000000080)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, &(0x7f0000ffc000/0x4000)=nil, &(0x7f00000b0000)=nil, &(0x7f0000000000), &(0x7f0000000140)) openat(0xffffffffffffffff, &(0x7f0000000200)='\x00', 0x410100, 0x3) 23:41:04 executing program 2: r0 = add_key$keyring(&(0x7f0000000040), &(0x7f00000002c0)={'syz', 0x3}, 0x0, 0x0, 0xfffffffffffffffd) keyctl$KEYCTL_RESTRICT_KEYRING(0xf, r0, 0x0, 0x0) connect$inet(0xffffffffffffffff, &(0x7f0000000140)={0x2, 0x0, @dev}, 0x10) r1 = syz_open_dev$sg(&(0x7f0000000040), 0x0, 0x0) ioctl$BLKTRACETEARDOWN(r1, 0x1276, 0x0) ioctl$BLKTRACESETUP(r1, 0xc0481273, &(0x7f0000000140)={'\x00', 0x0, 0x4, 0x8, 0x76}) (fail_nth: 10) 23:41:04 executing program 5: perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r0 = syz_mount_image$vfat(&(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x0, 0x2, &(0x7f0000000180)=[{&(0x7f0000000140)="eb3c906d6b66732e66617400020801000470008400f801", 0x17}, {0x0, 0x0, 0x1000a00}], 0x0, &(0x7f0000000240)=ANY=[]) openat2(r0, &(0x7f0000000100)='./file0\x00', &(0x7f00000001c0)={0x40040, 0x6}, 0x18) [ 1294.719252] tmpfs: Unknown parameter ' [ 1294.719252] ' [ 1294.729563] FAULT_INJECTION: forcing a failure. [ 1294.729563] name failslab, interval 1, probability 0, space 0, times 0 [ 1294.731024] CPU: 1 PID: 8153 Comm: syz-executor.7 Not tainted 5.10.194 #1 [ 1294.731846] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1294.732853] Call Trace: [ 1294.732873] dump_stack+0x107/0x167 [ 1294.732889] should_fail.cold+0x5/0xa [ 1294.732905] ? __kernfs_new_node+0xd4/0x860 [ 1294.732929] should_failslab+0x5/0x20 [ 1294.735497] kmem_cache_alloc+0x5b/0x310 [ 1294.735993] __kernfs_new_node+0xd4/0x860 [ 1294.736532] ? kernfs_dop_revalidate+0x3a0/0x3a0 [ 1294.737121] ? __mutex_unlock_slowpath+0xe1/0x600 [ 1294.737711] ? wait_for_completion_io+0x270/0x270 [ 1294.738292] ? kernfs_next_descendant_post+0x1a7/0x2a0 [ 1294.738935] kernfs_new_node+0x93/0x120 [ 1294.739419] __kernfs_create_file+0x51/0x350 [ 1294.739968] sysfs_add_file_mode_ns+0x221/0x560 [ 1294.740549] internal_create_group+0x324/0xb30 [ 1294.741114] ? sysfs_remove_group+0x170/0x170 [ 1294.741666] ? lockdep_init_map_type+0x2c7/0x780 [ 1294.742242] ? blk_queue_flag_set+0x22/0x30 [ 1294.742765] ? __loop_update_dio+0x2d2/0x690 [ 1294.743304] loop_configure+0x954/0x1480 [ 1294.743811] lo_ioctl+0xa72/0x1760 [ 1294.744263] ? avc_has_extended_perms+0x7f1/0xf40 [ 1294.744855] ? loop_set_status_old+0x250/0x250 [ 1294.745408] ? avc_ss_reset+0x180/0x180 [ 1294.745895] ? lock_acquire+0x197/0x470 [ 1294.746376] ? find_held_lock+0x2c/0x110 [ 1294.746885] ? __lock_acquire+0xbb1/0x5b00 [ 1294.747425] ? selinux_bprm_creds_for_exec+0xb60/0xb60 [ 1294.748066] ? generic_block_fiemap+0x60/0x60 [ 1294.748636] ? loop_set_status_old+0x250/0x250 [ 1294.749189] blkdev_ioctl+0x291/0x710 [ 1294.749659] ? blkdev_common_ioctl+0x1870/0x1870 [ 1294.750236] ? selinux_file_ioctl+0xb6/0x270 [ 1294.750790] block_ioctl+0xf9/0x140 [ 1294.751226] ? blkdev_read_iter+0x1c0/0x1c0 [ 1294.751766] __x64_sys_ioctl+0x19a/0x210 [ 1294.752273] do_syscall_64+0x33/0x40 [ 1294.752717] entry_SYSCALL_64_after_hwframe+0x62/0xc7 [ 1294.753338] RIP: 0033:0x7f4966db88d7 [ 1294.753801] Code: 3c 1c 48 f7 d8 49 39 c4 72 b8 e8 a4 54 02 00 85 c0 78 bd 48 83 c4 08 4c 89 e0 5b 41 5c c3 0f 1f 44 00 00 b8 10 00 00 00 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1294.756016] RSP: 002b:00007f496432df48 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 1294.756952] RAX: ffffffffffffffda RBX: 00007f4966e02970 RCX: 00007f4966db88d7 [ 1294.757820] RDX: 0000000000000005 RSI: 0000000000004c00 RDI: 0000000000000006 [ 1294.758684] RBP: 0000000000000006 R08: 0000000000000000 R09: ffffffffffffffff [ 1294.759547] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000005 [ 1294.760431] R13: 0000000000000005 R14: 00000000200001b0 R15: 0000000000000002 [ 1294.798625] FAULT_INJECTION: forcing a failure. [ 1294.798625] name failslab, interval 1, probability 0, space 0, times 0 [ 1294.799995] CPU: 1 PID: 8157 Comm: syz-executor.4 Not tainted 5.10.194 #1 [ 1294.800822] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1294.801804] Call Trace: [ 1294.802126] dump_stack+0x107/0x167 [ 1294.802567] should_fail.cold+0x5/0xa [ 1294.803014] ? __alloc_skb+0x6d/0x5b0 [ 1294.803466] should_failslab+0x5/0x20 [ 1294.803923] kmem_cache_alloc_node+0x55/0x330 [ 1294.804473] __alloc_skb+0x6d/0x5b0 [ 1294.804909] alloc_skb_with_frags+0x92/0x570 [ 1294.805433] ? lock_acquire+0x197/0x470 [ 1294.805908] ? find_held_lock+0x2c/0x110 [ 1294.806393] sock_alloc_send_pskb+0x7af/0x930 [ 1294.806934] ? sk_alloc+0x350/0x350 [ 1294.807375] ? perf_trace_lock+0xac/0x490 [ 1294.807862] ? lock_chain_count+0x20/0x20 [ 1294.808372] __ip6_append_data.isra.0+0x1c12/0x3a70 [ 1294.808968] ? ip6_mtu+0x1bb/0x3d0 [ 1294.809384] ? lock_downgrade+0x6d0/0x6d0 [ 1294.809876] ? ip_frag_init+0x350/0x350 [ 1294.810356] ? ip6_finish_output2+0x1fe0/0x1fe0 [ 1294.810908] ? ip6_mtu+0x1e9/0x3d0 [ 1294.811343] ? ip6_setup_cork+0xfb7/0x1740 [ 1294.811849] ip6_make_skb+0x2de/0x4e0 [ 1294.812311] ? ip_frag_init+0x350/0x350 [ 1294.812778] ? ip_frag_init+0x350/0x350 [ 1294.813251] ? ip6_push_pending_frames+0xf0/0xf0 [ 1294.813819] ? ip6_dst_hoplimit+0x199/0x440 [ 1294.814323] ? lock_downgrade+0x6d0/0x6d0 [ 1294.814828] udpv6_sendmsg+0x20d0/0x2af0 [ 1294.815318] ? ip_frag_init+0x350/0x350 [ 1294.815785] ? udp_v6_push_pending_frames+0x360/0x360 [ 1294.816401] ? lock_acquire+0x197/0x470 [ 1294.816870] ? find_held_lock+0x2c/0x110 [ 1294.817349] ? __might_fault+0xd3/0x180 [ 1294.817828] ? sock_has_perm+0x1ea/0x280 [ 1294.818321] ? __import_iovec+0x458/0x590 [ 1294.818805] ? udp_v6_push_pending_frames+0x360/0x360 [ 1294.819409] inet6_sendmsg+0x105/0x140 [ 1294.819864] ? inet6_compat_ioctl+0x320/0x320 [ 1294.820394] sock_sendmsg+0xf2/0x190 [ 1294.820833] ____sys_sendmsg+0x334/0x870 [ 1294.821308] ? kernel_sendmsg+0x50/0x50 [ 1294.821777] ? do_recvmmsg+0x6d0/0x6d0 [ 1294.822225] ? perf_trace_lock+0xac/0x490 [ 1294.822727] ? __lockdep_reset_lock+0x180/0x180 [ 1294.823263] ? perf_trace_lock+0xac/0x490 [ 1294.823756] ? __lock_acquire+0x1657/0x5b00 [ 1294.824295] ___sys_sendmsg+0xf3/0x170 [ 1294.824749] ? sendmsg_copy_msghdr+0x160/0x160 [ 1294.825308] ? lock_downgrade+0x6d0/0x6d0 [ 1294.825803] ? lock_downgrade+0x6d0/0x6d0 [ 1294.826310] ? __fget_files+0x296/0x4c0 [ 1294.826780] ? __fget_light+0xea/0x290 [ 1294.827257] __sys_sendmmsg+0x195/0x470 [ 1294.827723] ? __ia32_sys_sendmsg+0xb0/0xb0 [ 1294.828258] ? lock_downgrade+0x6d0/0x6d0 [ 1294.828752] ? __mutex_unlock_slowpath+0xe1/0x600 [ 1294.829347] ? wait_for_completion_io+0x270/0x270 [ 1294.829904] ? rcu_read_lock_any_held+0x75/0xa0 [ 1294.830469] ? vfs_write+0x354/0xa70 [ 1294.830904] ? fput_many+0x2f/0x1a0 [ 1294.831343] ? ksys_write+0x1a9/0x260 [ 1294.831782] ? __ia32_sys_read+0xb0/0xb0 [ 1294.832293] __x64_sys_sendmmsg+0x99/0x100 [ 1294.832783] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1294.833410] do_syscall_64+0x33/0x40 [ 1294.833851] entry_SYSCALL_64_after_hwframe+0x62/0xc7 [ 1294.834468] RIP: 0033:0x7fc0896e2b19 [ 1294.834909] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1294.837131] RSP: 002b:00007fc086c58188 EFLAGS: 00000246 ORIG_RAX: 0000000000000133 [ 1294.838009] RAX: ffffffffffffffda RBX: 00007fc0897f5f60 RCX: 00007fc0896e2b19 [ 1294.838875] RDX: 0000000000000001 RSI: 0000000020000080 RDI: 0000000000000004 [ 1294.839742] RBP: 00007fc086c581d0 R08: 0000000000000000 R09: 0000000000000000 [ 1294.840613] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 1294.841474] R13: 00007ffc7a2d78bf R14: 00007fc086c58300 R15: 0000000000022000 23:41:04 executing program 7: perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_mount_image$vfat(&(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x0, 0x2, &(0x7f0000000180)=[{&(0x7f0000000140)="eb3c906d6b66732e66617400020801000470008400f801", 0x17}, {0x0, 0x0, 0x1000a00}], 0x0, &(0x7f0000000240)=ANY=[]) (fail_nth: 36) 23:41:05 executing program 1: perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = syz_io_uring_setup(0x3a75, &(0x7f0000000080), &(0x7f0000ffb000/0x3000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=0x0, &(0x7f0000000100)=0x0) r3 = socket$inet6_udplite(0xa, 0x2, 0x88) syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_RECVMSG={0xa, 0x0, 0x0, r3, 0x0, &(0x7f0000000440)={0x0, 0x0, 0x0}, 0x0, 0x40000203}, 0x0) mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0) r4 = mmap$IORING_OFF_CQ_RING(&(0x7f0000ffe000/0x2000)=nil, 0x2000, 0xf, 0x13, r0, 0x8000000) syz_io_uring_submit(r4, r2, 0x0, 0x80000001) r5 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1) dup2(r5, r3) io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0) 23:41:05 executing program 3: r0 = syz_open_dev$tty1(0xc, 0x4, 0x1) writev(r0, &(0x7f0000000080)=[{&(0x7f0000001380)="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", 0x1ea}], 0x1) [ 1294.901495] FAULT_INJECTION: forcing a failure. [ 1294.901495] name failslab, interval 1, probability 0, space 0, times 0 [ 1294.902827] CPU: 1 PID: 8160 Comm: syz-executor.2 Not tainted 5.10.194 #1 [ 1294.903614] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1294.904563] Call Trace: [ 1294.904869] dump_stack+0x107/0x167 [ 1294.905284] should_fail.cold+0x5/0xa [ 1294.905727] ? alloc_inode+0x171/0x240 [ 1294.906180] should_failslab+0x5/0x20 [ 1294.906612] kmem_cache_alloc+0x5b/0x310 [ 1294.907089] ? __lookup_slow+0x490/0x490 [ 1294.907558] alloc_inode+0x171/0x240 [ 1294.907976] new_inode+0x23/0x250 [ 1294.908384] debugfs_get_inode+0x1a/0x130 [ 1294.908867] debugfs_create_dir+0x100/0x4a0 [ 1294.909367] do_blk_trace_setup+0x833/0xc10 [ 1294.909869] ? _copy_from_user+0xfb/0x1b0 [ 1294.910339] __blk_trace_setup+0xca/0x180 [ 1294.910828] ? do_blk_trace_setup+0xc10/0xc10 [ 1294.911350] ? perf_trace_lock+0xac/0x490 [ 1294.911826] blk_trace_setup+0x43/0x60 [ 1294.912280] sg_ioctl_common+0x634/0x2570 [ 1294.912763] ? __sanitizer_cov_trace_switch+0x45/0x80 [ 1294.913369] ? do_vfs_ioctl+0x283/0x10d0 [ 1294.913844] ? sg_write+0x120/0x120 [ 1294.914251] ? generic_block_fiemap+0x60/0x60 [ 1294.914775] ? __mutex_unlock_slowpath+0xe1/0x600 [ 1294.915327] ? selinux_file_ioctl+0xb6/0x270 [ 1294.915833] ? sg_compat_ioctl+0x120/0x120 [ 1294.916337] sg_ioctl+0x8f/0x120 [ 1294.916730] __x64_sys_ioctl+0x19a/0x210 [ 1294.917204] do_syscall_64+0x33/0x40 [ 1294.917635] entry_SYSCALL_64_after_hwframe+0x62/0xc7 [ 1294.918225] RIP: 0033:0x7f661a573b19 [ 1294.918644] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1294.920765] RSP: 002b:00007f6617ac8188 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 1294.921642] RAX: ffffffffffffffda RBX: 00007f661a687020 RCX: 00007f661a573b19 [ 1294.922462] RDX: 0000000020000140 RSI: 00000000c0481273 RDI: 0000000000000003 [ 1294.923281] RBP: 00007f6617ac81d0 R08: 0000000000000000 R09: 0000000000000000 [ 1294.924117] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 1294.924942] R13: 00007ffd527cbf9f R14: 00007f6617ac8300 R15: 0000000000022000 [ 1294.925817] debugfs: out of free dentries, can not create directory 'sg0' 23:41:05 executing program 5: perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r0 = syz_mount_image$vfat(&(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x0, 0x2, &(0x7f0000000180)=[{&(0x7f0000000140)="eb3c906d6b66732e66617400020801000470008400f801", 0x17}, {0x0, 0x0, 0x1000a00}], 0x0, &(0x7f0000000240)=ANY=[]) openat2(r0, &(0x7f0000000100)='./file0\x00', &(0x7f00000001c0)={0x40040, 0x7}, 0x18) [ 1294.933138] tmpfs: Unknown parameter ' [ 1294.933138] ' [ 1294.960075] FAULT_INJECTION: forcing a failure. [ 1294.960075] name failslab, interval 1, probability 0, space 0, times 0 [ 1294.961491] CPU: 1 PID: 8168 Comm: syz-executor.7 Not tainted 5.10.194 #1 [ 1294.962256] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1294.963189] Call Trace: [ 1294.963490] dump_stack+0x107/0x167 [ 1294.963898] should_fail.cold+0x5/0xa [ 1294.964334] ? create_object.isra.0+0x3a/0xa20 [ 1294.964851] should_failslab+0x5/0x20 [ 1294.965281] kmem_cache_alloc+0x5b/0x310 [ 1294.965751] create_object.isra.0+0x3a/0xa20 [ 1294.966250] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 1294.966826] kmem_cache_alloc+0x159/0x310 [ 1294.967305] __kernfs_new_node+0xd4/0x860 [ 1294.967779] ? kernfs_dop_revalidate+0x3a0/0x3a0 [ 1294.968346] ? __mutex_unlock_slowpath+0xe1/0x600 [ 1294.968903] ? wait_for_completion_io+0x270/0x270 [ 1294.969436] ? kernfs_next_descendant_post+0x1a7/0x2a0 [ 1294.970046] kernfs_new_node+0x93/0x120 [ 1294.970523] __kernfs_create_file+0x51/0x350 [ 1294.971031] sysfs_add_file_mode_ns+0x221/0x560 [ 1294.971556] internal_create_group+0x324/0xb30 [ 1294.972075] ? sysfs_remove_group+0x170/0x170 [ 1294.972588] ? lockdep_init_map_type+0x2c7/0x780 [ 1294.973122] ? blk_queue_flag_set+0x22/0x30 [ 1294.973600] ? __loop_update_dio+0x2d2/0x690 [ 1294.974101] loop_configure+0x954/0x1480 [ 1294.974572] lo_ioctl+0xa72/0x1760 [ 1294.974987] ? avc_has_extended_perms+0x7f1/0xf40 [ 1294.975535] ? loop_set_status_old+0x250/0x250 [ 1294.976053] ? avc_ss_reset+0x180/0x180 [ 1294.976513] ? lock_acquire+0x197/0x470 [ 1294.976957] ? find_held_lock+0x2c/0x110 [ 1294.977422] ? __lock_acquire+0xbb1/0x5b00 [ 1294.977921] ? selinux_bprm_creds_for_exec+0xb60/0xb60 [ 1294.978493] ? generic_block_fiemap+0x60/0x60 [ 1294.978998] ? loop_set_status_old+0x250/0x250 [ 1294.979516] blkdev_ioctl+0x291/0x710 [ 1294.979944] ? blkdev_common_ioctl+0x1870/0x1870 [ 1294.980479] ? selinux_file_ioctl+0xb6/0x270 [ 1294.980973] block_ioctl+0xf9/0x140 [ 1294.981374] ? blkdev_read_iter+0x1c0/0x1c0 [ 1294.981872] __x64_sys_ioctl+0x19a/0x210 [ 1294.982338] do_syscall_64+0x33/0x40 [ 1294.982759] entry_SYSCALL_64_after_hwframe+0x62/0xc7 [ 1294.983326] RIP: 0033:0x7f4966db88d7 [ 1294.983742] Code: 3c 1c 48 f7 d8 49 39 c4 72 b8 e8 a4 54 02 00 85 c0 78 bd 48 83 c4 08 4c 89 e0 5b 41 5c c3 0f 1f 44 00 00 b8 10 00 00 00 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1294.985788] RSP: 002b:00007f496432df48 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 1294.986631] RAX: ffffffffffffffda RBX: 00007f4966e02970 RCX: 00007f4966db88d7 [ 1294.987418] RDX: 0000000000000005 RSI: 0000000000004c00 RDI: 0000000000000006 [ 1294.988221] RBP: 0000000000000006 R08: 0000000000000000 R09: ffffffffffffffff [ 1294.989003] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000005 [ 1294.989799] R13: 0000000000000005 R14: 00000000200001b0 R15: 0000000000000002 [ 1294.993764] blktrace: debugfs_dir not present for sg0 so skipping 23:41:05 executing program 6: r0 = syz_open_dev$tty20(0xc, 0x4, 0x1) ioctl$VT_RESIZEX(r0, 0x560a, &(0x7f0000000000)={0x0, 0x0, 0x0, 0x0, 0x1d}) r1 = openat$hpet(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0) read$eventfd(r1, 0x0, 0x0) ioctl$TCSETSW2(r1, 0x402c542c, &(0x7f0000000040)={0x5, 0x20, 0xfffffffe, 0x800, 0x3, "35700f5a90a0649f7695d59dbbe82121ede24a", 0x7fff, 0x4}) 23:41:05 executing program 2: r0 = add_key$keyring(&(0x7f0000000040), &(0x7f00000002c0)={'syz', 0x3}, 0x0, 0x0, 0xfffffffffffffffd) keyctl$KEYCTL_RESTRICT_KEYRING(0xf, r0, 0x0, 0x0) connect$inet(0xffffffffffffffff, &(0x7f0000000140)={0x2, 0x0, @dev}, 0x10) r1 = syz_open_dev$sg(&(0x7f0000000040), 0x0, 0x0) ioctl$BLKTRACETEARDOWN(r1, 0x1276, 0x0) ioctl$BLKTRACESETUP(r1, 0xc0481273, &(0x7f0000000140)={'\x00', 0x0, 0x4, 0x8, 0x76}) (fail_nth: 11) 23:41:05 executing program 3: r0 = syz_open_dev$tty1(0xc, 0x4, 0x1) writev(r0, &(0x7f0000000080)=[{&(0x7f0000001380)="3ead823d27b19b8d16b83fca92a1f8f4a79624a264eb3d23f624cb63a9a475c4336e3015462fa8b76b1c5fb9b159eaa406698e2f3dcd71c5ba4e666731496d8ddd1bbaae50714c9ccdc53444b41f6df995ce4a1e6b9807bce8fa3e046360e5d1b228a3367e2315a985fcf8542b6a2e58eff19d99aa1de724345dd5786c63d31c197c760ac73dc10c91fcf49125d4dd5e1d4c952eeabf70f80b092c914e00cd0e75bdea96065d75447e5e2917619f3d3e2662b99fac83e65ca6fb6fc547ce903e960595bafc4990dfa6263d2dd2268b3f6f3df3b1603e198bc4011a4b1c43c686ff811d9a346aabe8c9f33c2c5e0ab15e288917c0de80a9d49e72e1efc8db344b3a715702fd03a0e9e2387cc5032967d44d8b3b68383f6c89c842ec2eadc06d1e5133067d6b3f11647561748b7d4185cab428d5fbf98ea4100f2276af2fec68da7e57d65c185e261b6790c65ebb5f98cb027d065d424a65705b15be6eda2b4ba4f6a337f711fc7088d216cb59a744bc5a0d0f059b11d6d7c0784065277076525027223b82fdcc899b2de92a710082edf89a57c0bf416899d2f8ad2cad43e5018b52025096784ecd82a29c00a8bf5ffa6e3b75fe641acf39885c084ae7e546f04224aeb23f61d99fc464a533fc6b87790e335057b54dbff233ced4a7ef90884dc7d90d678cc080024b9b4a", 0x1ea}], 0x1) 23:41:05 executing program 0: openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0) r0 = syz_mount_image$tmpfs(&(0x7f0000000000), &(0x7f0000000080)='./file0\x00', 0x0, 0x0, 0x0, 0x0, &(0x7f0000000600)=ANY=[]) mknodat$loop(r0, &(0x7f0000000300)='./file0\x00', 0x1000, 0x0) openat(r0, &(0x7f0000000140)='./file0\x00', 0x2, 0x0) openat(r0, &(0x7f0000000000)='./file0\x00', 0x0, 0x0) ioctl$AUTOFS_IOC_EXPIRE(r0, 0x810c9365, &(0x7f00000000c0)={{0x1, 0x8}, 0x100, '.\x00'}) perf_event_open(&(0x7f0000000040)={0x7, 0x80, 0x0, 0x0, 0x0, 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x800}, 0xffffffffffffffff, 0x0, 0xffffffffffffffff, 0x0) [ 1295.166822] FAULT_INJECTION: forcing a failure. [ 1295.166822] name failslab, interval 1, probability 0, space 0, times 0 23:41:05 executing program 4: perf_event_open(&(0x7f0000001d80)={0x2, 0x80, 0x69, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = socket$inet6_udp(0xa, 0x2, 0x0) dup(0xffffffffffffffff) fstat(0xffffffffffffffff, 0x0) connect$inet6(r0, &(0x7f0000000600)={0xa, 0x0, 0x0, @dev, 0x2}, 0x1c) sendmmsg$inet6(r0, &(0x7f0000000080)=[{{0x0, 0x0, &(0x7f00000004c0)=[{&(0x7f00000001c0)="4bc702854e3954b59347985ccc868289d3fe483d2c0900a2a1d12e33a66529e1f276fef452632dfa3c004ce3be84a5f66c29cd4ec39ae5206562fbc9ea3c0dbbebc22e628e147b0e9631f19b0ce0a48e0e675b2da3442226b898f1ddf8eabf133ab4a9cb0999c2ee1d3bd36d089b0d8e97ea00d4c5f6ad14dce058d595aacba2d587ff5eacd81b71a73f53ed276d1f3b3384bb2bfba4e0f37302e690df9e7024378ac754ac0576f996f3ee53d1034c7720767ddf2625817532f7ae89103367b73a36152b84c38bc227ba9e9ff48bcfe027585cf14bff37a888", 0xff41}], 0x1}}], 0x1, 0x0) (fail_nth: 4) 23:41:05 executing program 7: perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_mount_image$vfat(&(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x0, 0x2, &(0x7f0000000180)=[{&(0x7f0000000140)="eb3c906d6b66732e66617400020801000470008400f801", 0x17}, {0x0, 0x0, 0x1000a00}], 0x0, &(0x7f0000000240)=ANY=[]) (fail_nth: 37) 23:41:05 executing program 1: perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = syz_io_uring_setup(0x3a75, &(0x7f0000000080), &(0x7f0000ffb000/0x3000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=0x0, &(0x7f0000000100)=0x0) r3 = socket$inet6_udplite(0xa, 0x2, 0x88) syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_RECVMSG={0xa, 0x0, 0x0, r3, 0x0, &(0x7f0000000440)={0x0, 0x0, 0x0}, 0x0, 0x40000203}, 0x0) mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0) r4 = mmap$IORING_OFF_CQ_RING(&(0x7f0000ffe000/0x2000)=nil, 0x2000, 0xf, 0x13, r0, 0x8000000) syz_io_uring_submit(r4, r2, &(0x7f00000002c0)=@IORING_OP_READ=@pass_buffer={0x16, 0x0, 0x0, @fd, 0x0, 0x0}, 0x80000001) r5 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1) dup2(r5, r3) io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0) [ 1295.166845] CPU: 0 PID: 8179 Comm: syz-executor.2 Not tainted 5.10.194 #1 23:41:05 executing program 5: perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r0 = syz_mount_image$vfat(&(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x0, 0x2, &(0x7f0000000180)=[{&(0x7f0000000140)="eb3c906d6b66732e66617400020801000470008400f801", 0x17}, {0x0, 0x0, 0x1000a00}], 0x0, &(0x7f0000000240)=ANY=[]) openat2(r0, &(0x7f0000000100)='./file0\x00', &(0x7f00000001c0)={0x40040, 0x8}, 0x18) [ 1295.166856] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1295.166862] Call Trace: [ 1295.166892] dump_stack+0x107/0x167 [ 1295.166918] should_fail.cold+0x5/0xa [ 1295.166941] ? create_object.isra.0+0x3a/0xa20 [ 1295.166964] should_failslab+0x5/0x20 [ 1295.166984] kmem_cache_alloc+0x5b/0x310 [ 1295.167011] create_object.isra.0+0x3a/0xa20 [ 1295.167032] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 1295.167058] kmem_cache_alloc+0x159/0x310 [ 1295.167084] alloc_inode+0x171/0x240 23:41:05 executing program 7: perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_mount_image$vfat(&(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x0, 0x2, &(0x7f0000000180)=[{&(0x7f0000000140)="eb3c906d6b66732e66617400020801000470008400f801", 0x17}, {0x0, 0x0, 0x1000a00}], 0x0, &(0x7f0000000240)=ANY=[]) (fail_nth: 38) [ 1295.167102] new_inode+0x23/0x250 [ 1295.167128] debugfs_get_inode+0x1a/0x130 [ 1295.167148] debugfs_create_dir+0x100/0x4a0 [ 1295.167171] do_blk_trace_setup+0x833/0xc10 [ 1295.167193] ? _copy_from_user+0xfb/0x1b0 23:41:05 executing program 2: r0 = add_key$keyring(&(0x7f0000000040), &(0x7f00000002c0)={'syz', 0x3}, 0x0, 0x0, 0xfffffffffffffffd) keyctl$KEYCTL_RESTRICT_KEYRING(0xf, r0, 0x0, 0x0) connect$inet(0xffffffffffffffff, &(0x7f0000000140)={0x2, 0x0, @dev}, 0x10) r1 = syz_open_dev$sg(&(0x7f0000000040), 0x0, 0x0) ioctl$BLKTRACETEARDOWN(r1, 0x1276, 0x0) ioctl$BLKTRACESETUP(r1, 0xc0481273, &(0x7f0000000140)={'\x00', 0x0, 0x4, 0x8, 0x76}) (fail_nth: 12) [ 1295.167216] __blk_trace_setup+0xca/0x180 [ 1295.167236] ? do_blk_trace_setup+0xc10/0xc10 23:41:05 executing program 7: perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_mount_image$vfat(&(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x0, 0x2, &(0x7f0000000180)=[{&(0x7f0000000140)="eb3c906d6b66732e66617400020801000470008400f801", 0x17}, {0x0, 0x0, 0x1000a00}], 0x0, &(0x7f0000000240)=ANY=[]) (fail_nth: 39) [ 1295.167277] ? perf_trace_lock+0xac/0x490 [ 1295.167308] blk_trace_setup+0x43/0x60 [ 1295.167333] sg_ioctl_common+0x634/0x2570 [ 1295.167357] ? __sanitizer_cov_trace_switch+0x45/0x80 [ 1295.167378] ? do_vfs_ioctl+0x283/0x10d0 [ 1295.167395] ? sg_write+0x120/0x120 [ 1295.167413] ? generic_block_fiemap+0x60/0x60 [ 1295.167437] ? __mutex_unlock_slowpath+0xe1/0x600 [ 1295.167477] ? selinux_file_ioctl+0xb6/0x270 [ 1295.167495] ? sg_compat_ioctl+0x120/0x120 [ 1295.167515] sg_ioctl+0x8f/0x120 [ 1295.167538] __x64_sys_ioctl+0x19a/0x210 [ 1295.167564] do_syscall_64+0x33/0x40 [ 1295.167586] entry_SYSCALL_64_after_hwframe+0x62/0xc7 [ 1295.167599] RIP: 0033:0x7f661a573b19 [ 1295.167619] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1295.167630] RSP: 002b:00007f6617ae9188 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 1295.167652] RAX: ffffffffffffffda RBX: 00007f661a686f60 RCX: 00007f661a573b19 [ 1295.167664] RDX: 0000000020000140 RSI: 00000000c0481273 RDI: 0000000000000003 [ 1295.167675] RBP: 00007f6617ae91d0 R08: 0000000000000000 R09: 0000000000000000 [ 1295.167687] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 1295.167699] R13: 00007ffd527cbf9f R14: 00007f6617ae9300 R15: 0000000000022000 [ 1295.221017] FAULT_INJECTION: forcing a failure. [ 1295.221017] name failslab, interval 1, probability 0, space 0, times 0 [ 1295.221031] CPU: 1 PID: 8189 Comm: syz-executor.7 Not tainted 5.10.194 #1 [ 1295.221037] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1295.221041] Call Trace: [ 1295.221059] dump_stack+0x107/0x167 [ 1295.221072] should_fail.cold+0x5/0xa [ 1295.221087] ? __kernfs_new_node+0xd4/0x860 [ 1295.221099] should_failslab+0x5/0x20 [ 1295.221110] kmem_cache_alloc+0x5b/0x310 [ 1295.221124] __kernfs_new_node+0xd4/0x860 [ 1295.221138] ? kernfs_dop_revalidate+0x3a0/0x3a0 [ 1295.221152] ? __mutex_unlock_slowpath+0xe1/0x600 [ 1295.221164] ? wait_for_completion_io+0x270/0x270 [ 1295.221177] ? kernfs_next_descendant_post+0x1a7/0x2a0 [ 1295.221192] kernfs_new_node+0x93/0x120 [ 1295.221207] __kernfs_create_file+0x51/0x350 [ 1295.221219] sysfs_add_file_mode_ns+0x221/0x560 [ 1295.221235] internal_create_group+0x324/0xb30 [ 1295.221249] ? sysfs_remove_group+0x170/0x170 [ 1295.221267] ? lockdep_init_map_type+0x2c7/0x780 [ 1295.221280] ? blk_queue_flag_set+0x22/0x30 [ 1295.221290] ? __loop_update_dio+0x2d2/0x690 [ 1295.221302] loop_configure+0x954/0x1480 [ 1295.221319] lo_ioctl+0xa72/0x1760 [ 1295.221331] ? avc_has_extended_perms+0x7f1/0xf40 [ 1295.221343] ? loop_set_status_old+0x250/0x250 [ 1295.221355] ? avc_ss_reset+0x180/0x180 [ 1295.221375] ? __lock_acquire+0xbb1/0x5b00 [ 1295.221413] ? selinux_bprm_creds_for_exec+0xb60/0xb60 [ 1295.221424] ? generic_block_fiemap+0x60/0x60 [ 1295.221433] ? vvar_fault+0x4b0/0x740 [ 1295.221441] ? __switch_to_asm+0x34/0x60 [ 1295.221455] ? loop_set_status_old+0x250/0x250 [ 1295.221464] blkdev_ioctl+0x291/0x710 [ 1295.221474] ? blkdev_common_ioctl+0x1870/0x1870 [ 1295.221486] ? selinux_file_ioctl+0xb6/0x270 [ 1295.221499] block_ioctl+0xf9/0x140 [ 1295.221507] ? blkdev_read_iter+0x1c0/0x1c0 [ 1295.221517] __x64_sys_ioctl+0x19a/0x210 [ 1295.221531] do_syscall_64+0x33/0x40 [ 1295.221542] entry_SYSCALL_64_after_hwframe+0x62/0xc7 [ 1295.221549] RIP: 0033:0x7f4966db88d7 [ 1295.221559] Code: 3c 1c 48 f7 d8 49 39 c4 72 b8 e8 a4 54 02 00 85 c0 78 bd 48 83 c4 08 4c 89 e0 5b 41 5c c3 0f 1f 44 00 00 b8 10 00 00 00 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1295.221565] RSP: 002b:00007f496432df48 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 1295.221577] RAX: ffffffffffffffda RBX: 00007f4966e02970 RCX: 00007f4966db88d7 [ 1295.221582] RDX: 0000000000000005 RSI: 0000000000004c00 RDI: 0000000000000006 [ 1295.221588] RBP: 0000000000000006 R08: 0000000000000000 R09: ffffffffffffffff [ 1295.221594] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000005 [ 1295.221599] R13: 0000000000000005 R14: 00000000200001b0 R15: 0000000000000002 [ 1295.237804] FAULT_INJECTION: forcing a failure. [ 1295.237804] name failslab, interval 1, probability 0, space 0, times 0 [ 1295.237828] CPU: 0 PID: 8193 Comm: syz-executor.4 Not tainted 5.10.194 #1 [ 1295.237840] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1295.237846] Call Trace: [ 1295.237875] dump_stack+0x107/0x167 [ 1295.237899] should_fail.cold+0x5/0xa [ 1295.237922] ? create_object.isra.0+0x3a/0xa20 [ 1295.237944] should_failslab+0x5/0x20 [ 1295.237964] kmem_cache_alloc+0x5b/0x310 [ 1295.237989] create_object.isra.0+0x3a/0xa20 [ 1295.238010] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 1295.238035] kmem_cache_alloc_node+0x169/0x330 [ 1295.238062] __alloc_skb+0x6d/0x5b0 [ 1295.238087] alloc_skb_with_frags+0x92/0x570 [ 1295.238112] ? lock_acquire+0x197/0x470 [ 1295.238130] ? find_held_lock+0x2c/0x110 [ 1295.238157] sock_alloc_send_pskb+0x7af/0x930 [ 1295.238192] ? sk_alloc+0x350/0x350 [ 1295.238218] ? perf_trace_lock+0xac/0x490 [ 1295.238238] ? lock_chain_count+0x20/0x20 [ 1295.238278] __ip6_append_data.isra.0+0x1c12/0x3a70 [ 1295.238311] ? ip6_mtu+0x1bb/0x3d0 [ 1295.238331] ? lock_downgrade+0x6d0/0x6d0 [ 1295.238347] ? ip_frag_init+0x350/0x350 [ 1295.238380] ? ip6_finish_output2+0x1fe0/0x1fe0 [ 1295.238400] ? ip6_mtu+0x1e9/0x3d0 [ 1295.238420] ? ip6_setup_cork+0xfb7/0x1740 [ 1295.238446] ip6_make_skb+0x2de/0x4e0 [ 1295.238461] ? ip_frag_init+0x350/0x350 [ 1295.238485] ? ip_frag_init+0x350/0x350 [ 1295.238509] ? ip6_push_pending_frames+0xf0/0xf0 [ 1295.238535] ? ip6_dst_hoplimit+0x199/0x440 [ 1295.238555] ? lock_downgrade+0x6d0/0x6d0 [ 1295.238592] udpv6_sendmsg+0x20d0/0x2af0 [ 1295.238616] ? ip_frag_init+0x350/0x350 [ 1295.238646] ? udp_v6_push_pending_frames+0x360/0x360 [ 1295.238683] ? lock_acquire+0x197/0x470 [ 1295.238700] ? find_held_lock+0x2c/0x110 [ 1295.238725] ? __might_fault+0xd3/0x180 [ 1295.238761] ? sock_has_perm+0x1ea/0x280 [ 1295.238806] ? __import_iovec+0x458/0x590 [ 1295.238825] ? udp_v6_push_pending_frames+0x360/0x360 [ 1295.238848] inet6_sendmsg+0x105/0x140 [ 1295.238868] ? inet6_compat_ioctl+0x320/0x320 [ 1295.238884] sock_sendmsg+0xf2/0x190 [ 1295.238904] ____sys_sendmsg+0x334/0x870 [ 1295.238926] ? kernel_sendmsg+0x50/0x50 [ 1295.238942] ? do_recvmmsg+0x6d0/0x6d0 [ 1295.238961] ? perf_trace_lock+0xac/0x490 [ 1295.238987] ? __lockdep_reset_lock+0x180/0x180 [ 1295.239005] ? perf_trace_lock+0xac/0x490 [ 1295.239022] ? __lock_acquire+0x1657/0x5b00 [ 1295.239046] ___sys_sendmsg+0xf3/0x170 [ 1295.239067] ? sendmsg_copy_msghdr+0x160/0x160 [ 1295.239093] ? lock_downgrade+0x6d0/0x6d0 [ 1295.239121] ? lock_downgrade+0x6d0/0x6d0 [ 1295.239147] ? __fget_files+0x296/0x4c0 [ 1295.239177] ? __fget_light+0xea/0x290 [ 1295.239205] __sys_sendmmsg+0x195/0x470 [ 1295.239231] ? __ia32_sys_sendmsg+0xb0/0xb0 [ 1295.239250] ? lock_downgrade+0x6d0/0x6d0 [ 1295.239289] ? __mutex_unlock_slowpath+0xe1/0x600 [ 1295.239313] ? wait_for_completion_io+0x270/0x270 [ 1295.239337] ? rcu_read_lock_any_held+0x75/0xa0 [ 1295.239354] ? vfs_write+0x354/0xa70 [ 1295.239377] ? fput_many+0x2f/0x1a0 [ 1295.239397] ? ksys_write+0x1a9/0x260 [ 1295.239417] ? __ia32_sys_read+0xb0/0xb0 [ 1295.239445] __x64_sys_sendmmsg+0x99/0x100 [ 1295.239463] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1295.239483] do_syscall_64+0x33/0x40 [ 1295.239505] entry_SYSCALL_64_after_hwframe+0x62/0xc7 [ 1295.239518] RIP: 0033:0x7fc0896e2b19 [ 1295.239538] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1295.239548] RSP: 002b:00007fc086c58188 EFLAGS: 00000246 ORIG_RAX: 0000000000000133 [ 1295.239570] RAX: ffffffffffffffda RBX: 00007fc0897f5f60 RCX: 00007fc0896e2b19 [ 1295.239582] RDX: 0000000000000001 RSI: 0000000020000080 RDI: 0000000000000004 [ 1295.239593] RBP: 00007fc086c581d0 R08: 0000000000000000 R09: 0000000000000000 [ 1295.239604] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 1295.239615] R13: 00007ffc7a2d78bf R14: 00007fc086c58300 R15: 0000000000022000 [ 1295.287479] FAULT_INJECTION: forcing a failure. [ 1295.287479] name failslab, interval 1, probability 0, space 0, times 0 [ 1295.287490] CPU: 1 PID: 8197 Comm: syz-executor.7 Not tainted 5.10.194 #1 [ 1295.287496] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1295.287499] Call Trace: [ 1295.287514] dump_stack+0x107/0x167 [ 1295.287526] should_fail.cold+0x5/0xa [ 1295.287537] ? create_object.isra.0+0x3a/0xa20 [ 1295.287549] should_failslab+0x5/0x20 [ 1295.287559] kmem_cache_alloc+0x5b/0x310 [ 1295.287575] create_object.isra.0+0x3a/0xa20 [ 1295.287586] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 1295.287598] kmem_cache_alloc+0x159/0x310 [ 1295.287614] __kernfs_new_node+0xd4/0x860 [ 1295.287627] ? kernfs_dop_revalidate+0x3a0/0x3a0 [ 1295.287641] ? __mutex_unlock_slowpath+0xe1/0x600 [ 1295.287654] ? wait_for_completion_io+0x270/0x270 [ 1295.287666] ? kernfs_next_descendant_post+0x1a7/0x2a0 [ 1295.287681] kernfs_new_node+0x93/0x120 [ 1295.287696] __kernfs_create_file+0x51/0x350 [ 1295.287708] sysfs_add_file_mode_ns+0x221/0x560 [ 1295.287723] internal_create_group+0x324/0xb30 [ 1295.287738] ? sysfs_remove_group+0x170/0x170 [ 1295.287751] ? lockdep_init_map_type+0x2c7/0x780 [ 1295.287763] ? blk_queue_flag_set+0x22/0x30 [ 1295.287772] ? __loop_update_dio+0x2d2/0x690 [ 1295.287784] loop_configure+0x954/0x1480 [ 1295.287801] lo_ioctl+0xa72/0x1760 [ 1295.287812] ? avc_has_extended_perms+0x7f1/0xf40 [ 1295.287823] ? loop_set_status_old+0x250/0x250 [ 1295.287835] ? avc_ss_reset+0x180/0x180 [ 1295.287846] ? lock_acquire+0x197/0x470 [ 1295.287855] ? find_held_lock+0x2c/0x110 [ 1295.287871] ? __lock_acquire+0xbb1/0x5b00 [ 1295.287909] ? selinux_bprm_creds_for_exec+0xb60/0xb60 [ 1295.287918] ? generic_block_fiemap+0x60/0x60 [ 1295.287934] ? loop_set_status_old+0x250/0x250 [ 1295.287942] blkdev_ioctl+0x291/0x710 [ 1295.287951] ? blkdev_common_ioctl+0x1870/0x1870 [ 1295.287963] ? selinux_file_ioctl+0xb6/0x270 [ 1295.287976] block_ioctl+0xf9/0x140 [ 1295.287984] ? blkdev_read_iter+0x1c0/0x1c0 [ 1295.287995] __x64_sys_ioctl+0x19a/0x210 [ 1295.288008] do_syscall_64+0x33/0x40 [ 1295.288019] entry_SYSCALL_64_after_hwframe+0x62/0xc7 [ 1295.288026] RIP: 0033:0x7f4966db88d7 [ 1295.288036] Code: 3c 1c 48 f7 d8 49 39 c4 72 b8 e8 a4 54 02 00 85 c0 78 bd 48 83 c4 08 4c 89 e0 5b 41 5c c3 0f 1f 44 00 00 b8 10 00 00 00 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1295.288041] RSP: 002b:00007f496432df48 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 1295.288052] RAX: ffffffffffffffda RBX: 00007f4966e02970 RCX: 00007f4966db88d7 [ 1295.288058] RDX: 0000000000000005 RSI: 0000000000004c00 RDI: 0000000000000006 [ 1295.288078] RBP: 0000000000000006 R08: 0000000000000000 R09: ffffffffffffffff [ 1295.288084] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000005 [ 1295.288090] R13: 0000000000000005 R14: 00000000200001b0 R15: 0000000000000002 [ 1295.354546] FAULT_INJECTION: forcing a failure. [ 1295.354546] name failslab, interval 1, probability 0, space 0, times 0 [ 1295.354557] CPU: 1 PID: 8204 Comm: syz-executor.7 Not tainted 5.10.194 #1 [ 1295.354563] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1295.354566] Call Trace: [ 1295.354582] dump_stack+0x107/0x167 [ 1295.354595] should_fail.cold+0x5/0xa [ 1295.354606] ? kobject_uevent_env+0x22b/0xf90 [ 1295.354618] ? dev_uevent_filter+0xd0/0xd0 [ 1295.354628] should_failslab+0x5/0x20 [ 1295.354638] kmem_cache_alloc_trace+0x55/0x320 [ 1295.354647] ? loop_configure+0xad2/0x1480 [ 1295.354659] ? dev_uevent_filter+0xd0/0xd0 [ 1295.354667] kobject_uevent_env+0x22b/0xf90 [ 1295.354684] loop_configure+0x116c/0x1480 [ 1295.354701] lo_ioctl+0xa72/0x1760 [ 1295.354712] ? avc_has_extended_perms+0x7f1/0xf40 [ 1295.354724] ? loop_set_status_old+0x250/0x250 [ 1295.354739] ? avc_ss_reset+0x180/0x180 [ 1295.354751] ? lock_acquire+0x197/0x470 [ 1295.354760] ? find_held_lock+0x2c/0x110 [ 1295.354775] ? __lock_acquire+0xbb1/0x5b00 [ 1295.354813] ? selinux_bprm_creds_for_exec+0xb60/0xb60 [ 1295.354823] ? generic_block_fiemap+0x60/0x60 [ 1295.354838] ? loop_set_status_old+0x250/0x250 [ 1295.354846] blkdev_ioctl+0x291/0x710 [ 1295.354856] ? blkdev_common_ioctl+0x1870/0x1870 [ 1295.354868] ? selinux_file_ioctl+0xb6/0x270 [ 1295.354880] block_ioctl+0xf9/0x140 [ 1295.354888] ? blkdev_read_iter+0x1c0/0x1c0 [ 1295.354899] __x64_sys_ioctl+0x19a/0x210 [ 1295.354913] do_syscall_64+0x33/0x40 [ 1295.354924] entry_SYSCALL_64_after_hwframe+0x62/0xc7 [ 1295.354931] RIP: 0033:0x7f4966db88d7 [ 1295.354941] Code: 3c 1c 48 f7 d8 49 39 c4 72 b8 e8 a4 54 02 00 85 c0 78 bd 48 83 c4 08 4c 89 e0 5b 41 5c c3 0f 1f 44 00 00 b8 10 00 00 00 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1295.354946] RSP: 002b:00007f496432df48 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 1295.354957] RAX: ffffffffffffffda RBX: 00007f4966e02970 RCX: 00007f4966db88d7 [ 1295.354963] RDX: 0000000000000005 RSI: 0000000000004c00 RDI: 0000000000000006 [ 1295.354969] RBP: 0000000000000006 R08: 0000000000000000 R09: ffffffffffffffff [ 1295.354974] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000005 [ 1295.354980] R13: 0000000000000005 R14: 00000000200001b0 R15: 0000000000000002 [ 1295.375593] FAULT_INJECTION: forcing a failure. [ 1295.375593] name failslab, interval 1, probability 0, space 0, times 0 [ 1295.375615] CPU: 0 PID: 8202 Comm: syz-executor.2 Not tainted 5.10.194 #1 [ 1295.375626] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1295.375632] Call Trace: [ 1295.375660] dump_stack+0x107/0x167 [ 1295.375685] should_fail.cold+0x5/0xa [ 1295.375711] ? security_inode_alloc+0x34/0x160 [ 1295.375736] should_failslab+0x5/0x20 [ 1295.375755] kmem_cache_alloc+0x5b/0x310 [ 1295.375787] security_inode_alloc+0x34/0x160 [ 1295.375814] inode_init_always+0xa4e/0xd10 [ 1295.375836] alloc_inode+0x84/0x240 [ 1295.375854] new_inode+0x23/0x250 [ 1295.375879] debugfs_get_inode+0x1a/0x130 [ 1295.375899] debugfs_create_dir+0x100/0x4a0 [ 1295.375923] do_blk_trace_setup+0x833/0xc10 [ 1295.375945] ? _copy_from_user+0xfb/0x1b0 [ 1295.375968] __blk_trace_setup+0xca/0x180 [ 1295.375988] ? do_blk_trace_setup+0xc10/0xc10 [ 1295.376023] ? perf_trace_lock+0xac/0x490 [ 1295.376054] blk_trace_setup+0x43/0x60 [ 1295.376106] sg_ioctl_common+0x634/0x2570 [ 1295.376130] ? __sanitizer_cov_trace_switch+0x45/0x80 [ 1295.376150] ? do_vfs_ioctl+0x283/0x10d0 [ 1295.376169] ? sg_write+0x120/0x120 [ 1295.376187] ? generic_block_fiemap+0x60/0x60 [ 1295.376212] ? __mutex_unlock_slowpath+0xe1/0x600 [ 1295.376252] ? selinux_file_ioctl+0xb6/0x270 [ 1295.376274] ? sg_compat_ioctl+0x120/0x120 [ 1295.376295] sg_ioctl+0x8f/0x120 [ 1295.376317] __x64_sys_ioctl+0x19a/0x210 [ 1295.376343] do_syscall_64+0x33/0x40 [ 1295.376366] entry_SYSCALL_64_after_hwframe+0x62/0xc7 [ 1295.376379] RIP: 0033:0x7f661a573b19 [ 1295.376399] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1295.376410] RSP: 002b:00007f6617ae9188 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 1295.376432] RAX: ffffffffffffffda RBX: 00007f661a686f60 RCX: 00007f661a573b19 [ 1295.376444] RDX: 0000000020000140 RSI: 00000000c0481273 RDI: 0000000000000003 [ 1295.376455] RBP: 00007f6617ae91d0 R08: 0000000000000000 R09: 0000000000000000 [ 1295.376466] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 1295.376478] R13: 00007ffd527cbf9f R14: 00007f6617ae9300 R15: 0000000000022000 [ 1295.376707] debugfs: out of free dentries, can not create directory 'sg0' [ 1295.376739] blktrace: debugfs_dir not present for sg0 so skipping 23:41:19 executing program 6: r0 = syz_open_dev$tty20(0xc, 0x4, 0x1) ioctl$VT_RESIZEX(r0, 0x560a, &(0x7f0000000000)={0x0, 0x0, 0x0, 0x0, 0x1d}) r1 = openat$ptp0(0xffffffffffffff9c, &(0x7f0000000180), 0x90002, 0x0) ioctl$INCFS_IOC_CREATE_FILE(r1, 0xc058671e, &(0x7f00000004c0)={{'\x00', 0x1}, {0xfffffffffffeffff}, 0x4, 0x0, 0x0, &(0x7f00000001c0)='./file0\x00', &(0x7f0000000200)='./file0\x00', &(0x7f0000000240)="d31f48b800e33a9333938c053a8b31cf0837255502a270346858606f1c782233f88a7e1cc555753076e7884c4dde0ca63ae9f518c139f16d24cbd2c71dfe2df196cfb9a78211637459d917273480e533a907a440c5527043568353c4344e4b8be34785fc072cf88e8857d96fc3d211e642a4cf2e9087c1629ce5c7f7911a89f829768e714956eadfb6e68c193c0b33645f1ade383899114572c37a61b1f834bb9c5171b9d209afb900a7e35aa81ad25c7af47ad0435ed54dc2cd216b596e72fef73fae735301b134ef26298113a56b16a05dd185a76b90590313c86976f60e6fedd159874bb8e9551829bf684c9a3795ec3c9890698650e745ecfb558f3ed4e5ef70da7282e98f42ec06f549849e4beffdc35bd2c9530be1e969a2d0fd9f1ab68af48358d36df588779d834bec802ead53750ae0bc526871f5", 0x139, 0x0, &(0x7f0000000380)={0x2, 0x89, {0x1, 0xc, 0x69, "eec08146db3e835af154f9cc74fcf8d06a672ab94a47958a439c0f36260dfd5dd45a633f7a12b24ee8eab27b04d0bf0d12505f11d374def8b1296b7528cac774ecf7011e4caa726613eca2ce213f479556dea188a876479003129068967ed2037ac028a0e03a188484", 0x13, "99da63270d3ff06a0d997b7a0539b85a01918c"}, 0x9f, "004a0a9f726a725f95e17462b543cfa4c8b0d3ce85be5696a086c73681a8fe5c20cf9b06f6b7c620fa67b33eff4b93ca570ef3476995f230d33ccfd1b598595d1fb5974351bfa6b3114c4fc2718949eea1d5d955b6ae83270966387544be13c99913ad3159f002281c4969d9a9baf778fdc274f8f20d459c3ec3c7e3fb2ebe9d9a3da2d1866901a903c843c7154fc02a7b66bd78fa41b3b0c0f4c96f7b69c4"}, 0x134}) preadv(r0, &(0x7f0000000140)=[{&(0x7f0000000040)=""/230, 0xe6}], 0x1, 0x0, 0x10000) 23:41:19 executing program 0: perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r0 = syz_mount_image$vfat(&(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x0, 0x2, &(0x7f0000000180)=[{&(0x7f0000000140)="eb3c906d6b66732e66617400020801000470008400f801", 0x17}, {0x0, 0x0, 0x1000a00}], 0x0, &(0x7f0000000240)=ANY=[]) openat2(r0, &(0x7f0000000100)='./file0\x00', &(0x7f00000001c0)={0x40040, 0x8}, 0x18) 23:41:19 executing program 3: r0 = syz_open_dev$tty1(0xc, 0x4, 0x1) writev(r0, &(0x7f0000000080)=[{&(0x7f0000001380)="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", 0x1ea}], 0x1) 23:41:19 executing program 4: perf_event_open(&(0x7f0000001d80)={0x2, 0x80, 0x69, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = socket$inet6_udp(0xa, 0x2, 0x0) dup(0xffffffffffffffff) fstat(0xffffffffffffffff, 0x0) connect$inet6(r0, &(0x7f0000000600)={0xa, 0x0, 0x0, @dev, 0x2}, 0x1c) sendmmsg$inet6(r0, &(0x7f0000000080)=[{{0x0, 0x0, &(0x7f00000004c0)=[{&(0x7f00000001c0)="4bc702854e3954b59347985ccc868289d3fe483d2c0900a2a1d12e33a66529e1f276fef452632dfa3c004ce3be84a5f66c29cd4ec39ae5206562fbc9ea3c0dbbebc22e628e147b0e9631f19b0ce0a48e0e675b2da3442226b898f1ddf8eabf133ab4a9cb0999c2ee1d3bd36d089b0d8e97ea00d4c5f6ad14dce058d595aacba2d587ff5eacd81b71a73f53ed276d1f3b3384bb2bfba4e0f37302e690df9e7024378ac754ac0576f996f3ee53d1034c7720767ddf2625817532f7ae89103367b73a36152b84c38bc227ba9e9ff48bcfe027585cf14bff37a888", 0xff41}], 0x1}}], 0x1, 0x0) (fail_nth: 5) [ 1309.552723] FAULT_INJECTION: forcing a failure. [ 1309.552723] name failslab, interval 1, probability 0, space 0, times 0 [ 1309.552746] CPU: 0 PID: 8224 Comm: syz-executor.2 Not tainted 5.10.194 #1 [ 1309.552756] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1309.552762] Call Trace: [ 1309.552790] dump_stack+0x107/0x167 [ 1309.552814] should_fail.cold+0x5/0xa [ 1309.552836] ? create_object.isra.0+0x3a/0xa20 [ 1309.552858] should_failslab+0x5/0x20 [ 1309.552877] kmem_cache_alloc+0x5b/0x310 [ 1309.552902] create_object.isra.0+0x3a/0xa20 [ 1309.552921] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 1309.552946] kmem_cache_alloc+0x159/0x310 [ 1309.552976] security_inode_alloc+0x34/0x160 [ 1309.553001] inode_init_always+0xa4e/0xd10 [ 1309.553021] alloc_inode+0x84/0x240 [ 1309.553038] new_inode+0x23/0x250 [ 1309.553060] debugfs_get_inode+0x1a/0x130 [ 1309.553079] debugfs_create_dir+0x100/0x4a0 [ 1309.553101] do_blk_trace_setup+0x833/0xc10 [ 1309.553122] ? _copy_from_user+0xfb/0x1b0 23:41:19 executing program 5: perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r0 = syz_mount_image$vfat(&(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x0, 0x2, &(0x7f0000000180)=[{&(0x7f0000000140)="eb3c906d6b66732e66617400020801000470008400f801", 0x17}, {0x0, 0x0, 0x1000a00}], 0x0, &(0x7f0000000240)=ANY=[]) openat2(r0, &(0x7f0000000100)='./file0\x00', &(0x7f00000001c0)={0x40040, 0xf}, 0x18) 23:41:19 executing program 2: r0 = add_key$keyring(&(0x7f0000000040), &(0x7f00000002c0)={'syz', 0x3}, 0x0, 0x0, 0xfffffffffffffffd) keyctl$KEYCTL_RESTRICT_KEYRING(0xf, r0, 0x0, 0x0) connect$inet(0xffffffffffffffff, &(0x7f0000000140)={0x2, 0x0, @dev}, 0x10) r1 = syz_open_dev$sg(&(0x7f0000000040), 0x0, 0x0) ioctl$BLKTRACETEARDOWN(r1, 0x1276, 0x0) ioctl$BLKTRACESETUP(r1, 0xc0481273, &(0x7f0000000140)={'\x00', 0x0, 0x4, 0x8, 0x76}) (fail_nth: 13) 23:41:19 executing program 1: perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = syz_io_uring_setup(0x3a75, &(0x7f0000000080), &(0x7f0000ffb000/0x3000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=0x0, &(0x7f0000000100)=0x0) r3 = socket$inet6_udplite(0xa, 0x2, 0x88) syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_RECVMSG={0xa, 0x0, 0x0, r3, 0x0, &(0x7f0000000440)={0x0, 0x0, 0x0}, 0x0, 0x40000203}, 0x0) mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0) r4 = mmap$IORING_OFF_CQ_RING(&(0x7f0000ffe000/0x2000)=nil, 0x2000, 0xf, 0x13, r0, 0x8000000) syz_io_uring_submit(r4, r2, &(0x7f00000002c0)=@IORING_OP_READ=@pass_buffer={0x16, 0x0, 0x0, @fd, 0x0, 0x0}, 0x80000001) r5 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1) dup2(r5, r3) io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0) 23:41:19 executing program 7: perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_mount_image$vfat(&(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x0, 0x2, &(0x7f0000000180)=[{&(0x7f0000000140)="eb3c906d6b66732e66617400020801000470008400f801", 0x17}, {0x0, 0x0, 0x1000a00}], 0x0, &(0x7f0000000240)=ANY=[]) (fail_nth: 40) 23:41:19 executing program 0: perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r0 = syz_mount_image$vfat(&(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x0, 0x2, &(0x7f0000000180)=[{&(0x7f0000000140)="eb3c906d6b66732e66617400020801000470008400f801", 0x17}, {0x0, 0x0, 0x1000a00}], 0x0, &(0x7f0000000240)=ANY=[]) openat2(r0, &(0x7f0000000100)='./file0\x00', &(0x7f00000001c0)={0x40040, 0x8}, 0x18) [ 1309.553143] __blk_trace_setup+0xca/0x180 [ 1309.553161] ? do_blk_trace_setup+0xc10/0xc10 [ 1309.553192] ? perf_trace_lock+0xac/0x490 [ 1309.553221] blk_trace_setup+0x43/0x60 [ 1309.553244] sg_ioctl_common+0x634/0x2570 [ 1309.553273] ? __sanitizer_cov_trace_switch+0x45/0x80 [ 1309.553292] ? do_vfs_ioctl+0x283/0x10d0 [ 1309.553308] ? sg_write+0x120/0x120 [ 1309.553325] ? generic_block_fiemap+0x60/0x60 [ 1309.553348] ? __mutex_unlock_slowpath+0xe1/0x600 [ 1309.553386] ? selinux_file_ioctl+0xb6/0x270 [ 1309.553401] ? sg_compat_ioctl+0x120/0x120 [ 1309.553420] sg_ioctl+0x8f/0x120 [ 1309.553442] __x64_sys_ioctl+0x19a/0x210 [ 1309.553466] do_syscall_64+0x33/0x40 [ 1309.553487] entry_SYSCALL_64_after_hwframe+0x62/0xc7 [ 1309.553499] RIP: 0033:0x7f661a573b19 [ 1309.553517] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1309.553527] RSP: 002b:00007f6617ae9188 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 1309.553548] RAX: ffffffffffffffda RBX: 00007f661a686f60 RCX: 00007f661a573b19 [ 1309.553559] RDX: 0000000020000140 RSI: 00000000c0481273 RDI: 0000000000000003 [ 1309.553569] RBP: 00007f6617ae91d0 R08: 0000000000000000 R09: 0000000000000000 [ 1309.553580] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 1309.553591] R13: 00007ffd527cbf9f R14: 00007f6617ae9300 R15: 0000000000022000 [ 1309.555856] FAULT_INJECTION: forcing a failure. [ 1309.555856] name failslab, interval 1, probability 0, space 0, times 0 [ 1309.555874] CPU: 0 PID: 8220 Comm: syz-executor.4 Not tainted 5.10.194 #1 [ 1309.555884] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1309.555889] Call Trace: [ 1309.555909] dump_stack+0x107/0x167 [ 1309.555932] should_fail.cold+0x5/0xa [ 1309.555955] should_failslab+0x5/0x20 [ 1309.555973] __kmalloc_node_track_caller+0x74/0x3b0 [ 1309.555992] ? alloc_skb_with_frags+0x92/0x570 [ 1309.556014] __alloc_skb+0xb1/0x5b0 [ 1309.556038] alloc_skb_with_frags+0x92/0x570 [ 1309.556058] ? lock_acquire+0x197/0x470 [ 1309.556074] ? find_held_lock+0x2c/0x110 [ 1309.556100] sock_alloc_send_pskb+0x7af/0x930 [ 1309.556136] ? sk_alloc+0x350/0x350 [ 1309.556160] ? perf_trace_lock+0xac/0x490 [ 1309.556180] ? lock_chain_count+0x20/0x20 [ 1309.556210] __ip6_append_data.isra.0+0x1c12/0x3a70 [ 1309.556253] ? ip6_mtu+0x1bb/0x3d0 [ 1309.556275] ? lock_downgrade+0x6d0/0x6d0 [ 1309.556291] ? ip_frag_init+0x350/0x350 [ 1309.556321] ? ip6_finish_output2+0x1fe0/0x1fe0 [ 1309.556339] ? ip6_mtu+0x1e9/0x3d0 [ 1309.556358] ? ip6_setup_cork+0xfb7/0x1740 [ 1309.556382] ip6_make_skb+0x2de/0x4e0 [ 1309.556397] ? ip_frag_init+0x350/0x350 [ 1309.556419] ? ip_frag_init+0x350/0x350 [ 1309.556441] ? ip6_push_pending_frames+0xf0/0xf0 [ 1309.556465] ? ip6_dst_hoplimit+0x199/0x440 [ 1309.556483] ? lock_downgrade+0x6d0/0x6d0 [ 1309.556518] udpv6_sendmsg+0x20d0/0x2af0 [ 1309.556540] ? ip_frag_init+0x350/0x350 [ 1309.556568] ? udp_v6_push_pending_frames+0x360/0x360 23:41:19 executing program 1: perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = syz_io_uring_setup(0x3a75, &(0x7f0000000080), &(0x7f0000ffb000/0x3000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=0x0, &(0x7f0000000100)=0x0) r3 = socket$inet6_udplite(0xa, 0x2, 0x88) syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_RECVMSG={0xa, 0x0, 0x0, r3, 0x0, &(0x7f0000000440)={0x0, 0x0, 0x0}, 0x0, 0x40000203}, 0x0) mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0) r4 = mmap$IORING_OFF_CQ_RING(&(0x7f0000ffe000/0x2000)=nil, 0x2000, 0xf, 0x13, r0, 0x8000000) syz_io_uring_submit(r4, r2, &(0x7f00000002c0)=@IORING_OP_READ=@pass_buffer={0x16, 0x0, 0x0, @fd, 0x0, 0x0}, 0x80000001) r5 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1) dup2(r5, r3) io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0) [ 1309.556603] ? lock_acquire+0x197/0x470 [ 1309.556619] ? find_held_lock+0x2c/0x110 [ 1309.556642] ? __might_fault+0xd3/0x180 [ 1309.556674] ? sock_has_perm+0x1ea/0x280 [ 1309.556715] ? __import_iovec+0x458/0x590 [ 1309.556733] ? udp_v6_push_pending_frames+0x360/0x360 [ 1309.556755] inet6_sendmsg+0x105/0x140 [ 1309.556773] ? inet6_compat_ioctl+0x320/0x320 [ 1309.556788] sock_sendmsg+0xf2/0x190 [ 1309.556806] ____sys_sendmsg+0x334/0x870 [ 1309.556827] ? kernel_sendmsg+0x50/0x50 [ 1309.556841] ? do_recvmmsg+0x6d0/0x6d0 [ 1309.556859] ? perf_trace_lock+0xac/0x490 [ 1309.556883] ? __lockdep_reset_lock+0x180/0x180 [ 1309.556900] ? perf_trace_lock+0xac/0x490 [ 1309.556916] ? __lock_acquire+0x1657/0x5b00 [ 1309.556938] ___sys_sendmsg+0xf3/0x170 [ 1309.556958] ? sendmsg_copy_msghdr+0x160/0x160 [ 1309.556982] ? lock_downgrade+0x6d0/0x6d0 [ 1309.557008] ? lock_downgrade+0x6d0/0x6d0 [ 1309.557031] ? __fget_files+0x296/0x4c0 [ 1309.557060] ? __fget_light+0xea/0x290 [ 1309.557086] __sys_sendmmsg+0x195/0x470 [ 1309.557109] ? __ia32_sys_sendmsg+0xb0/0xb0 [ 1309.557127] ? lock_downgrade+0x6d0/0x6d0 [ 1309.557162] ? __mutex_unlock_slowpath+0xe1/0x600 [ 1309.557184] ? wait_for_completion_io+0x270/0x270 [ 1309.557206] ? rcu_read_lock_any_held+0x75/0xa0 [ 1309.557222] ? vfs_write+0x354/0xa70 [ 1309.557243] ? fput_many+0x2f/0x1a0 [ 1309.557262] ? ksys_write+0x1a9/0x260 [ 1309.557281] ? __ia32_sys_read+0xb0/0xb0 [ 1309.557306] __x64_sys_sendmmsg+0x99/0x100 [ 1309.557323] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1309.557341] do_syscall_64+0x33/0x40 [ 1309.557361] entry_SYSCALL_64_after_hwframe+0x62/0xc7 [ 1309.557373] RIP: 0033:0x7fc0896e2b19 [ 1309.557390] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1309.557400] RSP: 002b:00007fc086c58188 EFLAGS: 00000246 ORIG_RAX: 0000000000000133 [ 1309.557419] RAX: ffffffffffffffda RBX: 00007fc0897f5f60 RCX: 00007fc0896e2b19 [ 1309.557429] RDX: 0000000000000001 RSI: 0000000020000080 RDI: 0000000000000004 [ 1309.557439] RBP: 00007fc086c581d0 R08: 0000000000000000 R09: 0000000000000000 [ 1309.557449] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 1309.557460] R13: 00007ffc7a2d78bf R14: 00007fc086c58300 R15: 0000000000022000 [ 1309.577022] FAULT_INJECTION: forcing a failure. [ 1309.577022] name failslab, interval 1, probability 0, space 0, times 0 [ 1309.683355] CPU: 0 PID: 8226 Comm: syz-executor.7 Not tainted 5.10.194 #1 [ 1309.683368] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1309.683376] Call Trace: [ 1309.683412] dump_stack+0x107/0x167 [ 1309.683443] should_fail.cold+0x5/0xa [ 1309.683469] ? create_object.isra.0+0x3a/0xa20 [ 1309.683497] should_failslab+0x5/0x20 [ 1309.689898] kmem_cache_alloc+0x5b/0x310 [ 1309.689935] create_object.isra.0+0x3a/0xa20 [ 1309.689956] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 1309.689990] kmem_cache_alloc_trace+0x151/0x320 [ 1309.690026] ? dev_uevent_filter+0xd0/0xd0 [ 1309.690046] kobject_uevent_env+0x22b/0xf90 [ 1309.690099] loop_configure+0x116c/0x1480 [ 1309.690149] lo_ioctl+0xa72/0x1760 [ 1309.690175] ? avc_has_extended_perms+0x7f1/0xf40 [ 1309.690205] ? loop_set_status_old+0x250/0x250 [ 1309.690237] ? avc_ss_reset+0x180/0x180 [ 1309.690265] ? lock_acquire+0x197/0x470 [ 1309.690284] ? find_held_lock+0x2c/0x110 [ 1309.690336] ? perf_trace_run_bpf_submit+0xf5/0x190 23:41:19 executing program 4: perf_event_open(&(0x7f0000001d80)={0x2, 0x80, 0x69, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = socket$inet6_udp(0xa, 0x2, 0x0) dup(0xffffffffffffffff) fstat(0xffffffffffffffff, 0x0) connect$inet6(r0, &(0x7f0000000600)={0xa, 0x0, 0x0, @dev, 0x2}, 0x1c) sendmmsg$inet6(r0, &(0x7f0000000080)=[{{0x0, 0x0, &(0x7f00000004c0)=[{&(0x7f00000001c0)="4bc702854e3954b59347985ccc868289d3fe483d2c0900a2a1d12e33a66529e1f276fef452632dfa3c004ce3be84a5f66c29cd4ec39ae5206562fbc9ea3c0dbbebc22e628e147b0e9631f19b0ce0a48e0e675b2da3442226b898f1ddf8eabf133ab4a9cb0999c2ee1d3bd36d089b0d8e97ea00d4c5f6ad14dce058d595aacba2d587ff5eacd81b71a73f53ed276d1f3b3384bb2bfba4e0f37302e690df9e7024378ac754ac0576f996f3ee53d1034c7720767ddf2625817532f7ae89103367b73a36152b84c38bc227ba9e9ff48bcfe027585cf14bff37a888", 0xff41}], 0x1}}], 0x1, 0x0) (fail_nth: 6) [ 1309.690357] ? perf_trace_run_bpf_submit+0xf5/0x190 [ 1309.690467] ? selinux_bprm_creds_for_exec+0xb60/0xb60 [ 1309.690490] ? generic_block_fiemap+0x60/0x60 [ 1309.690532] ? loop_set_status_old+0x250/0x250 23:41:19 executing program 7: perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_mount_image$vfat(&(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x0, 0x2, &(0x7f0000000180)=[{&(0x7f0000000140)="eb3c906d6b66732e66617400020801000470008400f801", 0x17}, {0x0, 0x0, 0x1000a00}], 0x0, &(0x7f0000000240)=ANY=[]) (fail_nth: 41) [ 1309.690549] blkdev_ioctl+0x291/0x710 [ 1309.690573] ? blkdev_common_ioctl+0x1870/0x1870 [ 1309.690604] ? selinux_file_ioctl+0xb6/0x270 [ 1309.690637] block_ioctl+0xf9/0x140 [ 1309.690655] ? blkdev_read_iter+0x1c0/0x1c0 [ 1309.690680] __x64_sys_ioctl+0x19a/0x210 23:41:19 executing program 5: perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r0 = syz_mount_image$vfat(&(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x0, 0x2, &(0x7f0000000180)=[{&(0x7f0000000140)="eb3c906d6b66732e66617400020801000470008400f801", 0x17}, {0x0, 0x0, 0x1000a00}], 0x0, &(0x7f0000000240)=ANY=[]) openat2(r0, &(0x7f0000000100)='./file0\x00', &(0x7f00000001c0)={0x40040, 0x18}, 0x18) [ 1309.690713] do_syscall_64+0x33/0x40 [ 1309.690737] entry_SYSCALL_64_after_hwframe+0x62/0xc7 [ 1309.690752] RIP: 0033:0x7f4966db88d7 [ 1309.690774] Code: 3c 1c 48 f7 d8 49 39 c4 72 b8 e8 a4 54 02 00 85 c0 78 bd 48 83 c4 08 4c 89 e0 5b 41 5c c3 0f 1f 44 00 00 b8 10 00 00 00 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1309.690786] RSP: 002b:00007f496432df48 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 1309.690810] RAX: ffffffffffffffda RBX: 00007f4966e02970 RCX: 00007f4966db88d7 [ 1309.690822] RDX: 0000000000000005 RSI: 0000000000004c00 RDI: 0000000000000006 [ 1309.690834] RBP: 0000000000000006 R08: 0000000000000000 R09: ffffffffffffffff [ 1309.690846] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000005 [ 1309.690858] R13: 0000000000000005 R14: 00000000200001b0 R15: 0000000000000002 [ 1309.787896] FAULT_INJECTION: forcing a failure. [ 1309.787896] name failslab, interval 1, probability 0, space 0, times 0 [ 1309.787918] CPU: 0 PID: 8240 Comm: syz-executor.4 Not tainted 5.10.194 #1 [ 1309.787928] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1309.787934] Call Trace: [ 1309.787960] dump_stack+0x107/0x167 [ 1309.787983] should_fail.cold+0x5/0xa [ 1309.788003] ? create_object.isra.0+0x3a/0xa20 [ 1309.788025] should_failslab+0x5/0x20 [ 1309.788043] kmem_cache_alloc+0x5b/0x310 [ 1309.788066] create_object.isra.0+0x3a/0xa20 [ 1309.788085] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 1309.788109] __kmalloc_node_track_caller+0x1a6/0x3b0 [ 1309.788127] ? alloc_skb_with_frags+0x92/0x570 [ 1309.788150] __alloc_skb+0xb1/0x5b0 [ 1309.788173] alloc_skb_with_frags+0x92/0x570 [ 1309.788195] ? lock_acquire+0x197/0x470 [ 1309.788211] ? find_held_lock+0x2c/0x110 [ 1309.788236] sock_alloc_send_pskb+0x7af/0x930 [ 1309.788303] ? sk_alloc+0x350/0x350 [ 1309.788326] ? perf_trace_lock+0xac/0x490 [ 1309.788345] ? lock_chain_count+0x20/0x20 [ 1309.788374] __ip6_append_data.isra.0+0x1c12/0x3a70 [ 1309.788405] ? ip6_mtu+0x1bb/0x3d0 [ 1309.788423] ? lock_downgrade+0x6d0/0x6d0 [ 1309.788438] ? ip_frag_init+0x350/0x350 [ 1309.788469] ? ip6_finish_output2+0x1fe0/0x1fe0 [ 1309.788487] ? ip6_mtu+0x1e9/0x3d0 [ 1309.788506] ? ip6_setup_cork+0xfb7/0x1740 [ 1309.788529] ip6_make_skb+0x2de/0x4e0 [ 1309.788544] ? ip_frag_init+0x350/0x350 [ 1309.788566] ? ip_frag_init+0x350/0x350 [ 1309.788588] ? ip6_push_pending_frames+0xf0/0xf0 [ 1309.788612] ? ip6_dst_hoplimit+0x199/0x440 [ 1309.788630] ? lock_downgrade+0x6d0/0x6d0 [ 1309.788664] udpv6_sendmsg+0x20d0/0x2af0 [ 1309.788686] ? ip_frag_init+0x350/0x350 [ 1309.788714] ? udp_v6_push_pending_frames+0x360/0x360 [ 1309.788749] ? lock_acquire+0x197/0x470 [ 1309.788765] ? find_held_lock+0x2c/0x110 [ 1309.788788] ? __might_fault+0xd3/0x180 [ 1309.788822] ? sock_has_perm+0x1ea/0x280 [ 1309.788864] ? __import_iovec+0x458/0x590 [ 1309.788882] ? udp_v6_push_pending_frames+0x360/0x360 [ 1309.788903] inet6_sendmsg+0x105/0x140 [ 1309.788921] ? inet6_compat_ioctl+0x320/0x320 [ 1309.788937] sock_sendmsg+0xf2/0x190 [ 1309.788955] ____sys_sendmsg+0x334/0x870 [ 1309.788975] ? kernel_sendmsg+0x50/0x50 [ 1309.788990] ? do_recvmmsg+0x6d0/0x6d0 [ 1309.789008] ? perf_trace_lock+0xac/0x490 [ 1309.789032] ? __lockdep_reset_lock+0x180/0x180 [ 1309.789048] ? perf_trace_lock+0xac/0x490 [ 1309.789064] ? __lock_acquire+0x1657/0x5b00 [ 1309.789086] ___sys_sendmsg+0xf3/0x170 [ 1309.789106] ? sendmsg_copy_msghdr+0x160/0x160 [ 1309.789130] ? lock_downgrade+0x6d0/0x6d0 [ 1309.789156] ? lock_downgrade+0x6d0/0x6d0 [ 1309.789180] ? __fget_files+0x296/0x4c0 [ 1309.789208] ? __fget_light+0xea/0x290 [ 1309.789234] __sys_sendmmsg+0x195/0x470 [ 1309.789258] ? __ia32_sys_sendmsg+0xb0/0xb0 [ 1309.789276] ? lock_downgrade+0x6d0/0x6d0 [ 1309.789312] ? __mutex_unlock_slowpath+0xe1/0x600 [ 1309.789334] ? wait_for_completion_io+0x270/0x270 [ 1309.789355] ? rcu_read_lock_any_held+0x75/0xa0 [ 1309.789371] ? vfs_write+0x354/0xa70 [ 1309.789393] ? fput_many+0x2f/0x1a0 [ 1309.789412] ? ksys_write+0x1a9/0x260 [ 1309.789430] ? __ia32_sys_read+0xb0/0xb0 [ 1309.789456] __x64_sys_sendmmsg+0x99/0x100 [ 1309.789472] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1309.789491] do_syscall_64+0x33/0x40 [ 1309.789512] entry_SYSCALL_64_after_hwframe+0x62/0xc7 [ 1309.789524] RIP: 0033:0x7fc0896e2b19 [ 1309.789542] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1309.789551] RSP: 002b:00007fc086c58188 EFLAGS: 00000246 ORIG_RAX: 0000000000000133 [ 1309.789572] RAX: ffffffffffffffda RBX: 00007fc0897f5f60 RCX: 00007fc0896e2b19 [ 1309.789582] RDX: 0000000000000001 RSI: 0000000020000080 RDI: 0000000000000004 [ 1309.789592] RBP: 00007fc086c581d0 R08: 0000000000000000 R09: 0000000000000000 [ 1309.789602] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 1309.789613] R13: 00007ffc7a2d78bf R14: 00007fc086c58300 R15: 0000000000022000 [ 1309.843764] FAULT_INJECTION: forcing a failure. [ 1309.843764] name failslab, interval 1, probability 0, space 0, times 0 [ 1309.843823] CPU: 0 PID: 8246 Comm: syz-executor.7 Not tainted 5.10.194 #1 [ 1309.843835] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1309.843842] Call Trace: [ 1309.843870] dump_stack+0x107/0x167 [ 1309.843900] should_fail.cold+0x5/0xa [ 1309.843926] ? kobject_uevent_env+0x22b/0xf90 [ 1309.843949] ? dev_uevent_filter+0xd0/0xd0 [ 1309.843968] should_failslab+0x5/0x20 [ 1309.843988] kmem_cache_alloc_trace+0x55/0x320 [ 1309.844008] ? loop_configure+0xad2/0x1480 [ 1309.844037] ? dev_uevent_filter+0xd0/0xd0 [ 1309.844055] kobject_uevent_env+0x22b/0xf90 [ 1309.844106] loop_configure+0x116c/0x1480 [ 1309.844156] lo_ioctl+0xa72/0x1760 [ 1309.844182] ? avc_has_extended_perms+0x7f1/0xf40 [ 1309.844212] ? loop_set_status_old+0x250/0x250 [ 1309.844254] ? avc_ss_reset+0x180/0x180 [ 1309.844285] ? lock_acquire+0x197/0x470 [ 1309.844305] ? find_held_lock+0x2c/0x110 [ 1309.844358] ? perf_trace_run_bpf_submit+0xf5/0x190 [ 1309.844380] ? perf_trace_run_bpf_submit+0xf5/0x190 [ 1309.844490] ? selinux_bprm_creds_for_exec+0xb60/0xb60 [ 1309.844513] ? generic_block_fiemap+0x60/0x60 [ 1309.844559] ? loop_set_status_old+0x250/0x250 [ 1309.844576] blkdev_ioctl+0x291/0x710 [ 1309.844599] ? blkdev_common_ioctl+0x1870/0x1870 [ 1309.844630] ? selinux_file_ioctl+0xb6/0x270 [ 1309.844662] block_ioctl+0xf9/0x140 [ 1309.844679] ? blkdev_read_iter+0x1c0/0x1c0 [ 1309.844706] __x64_sys_ioctl+0x19a/0x210 [ 1309.844738] do_syscall_64+0x33/0x40 [ 1309.844762] entry_SYSCALL_64_after_hwframe+0x62/0xc7 [ 1309.844776] RIP: 0033:0x7f4966db88d7 [ 1309.844796] Code: 3c 1c 48 f7 d8 49 39 c4 72 b8 e8 a4 54 02 00 85 c0 78 bd 48 83 c4 08 4c 89 e0 5b 41 5c c3 0f 1f 44 00 00 b8 10 00 00 00 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1309.844807] RSP: 002b:00007f496432df48 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 1309.844831] RAX: ffffffffffffffda RBX: 00007f4966e02970 RCX: 00007f4966db88d7 [ 1309.844844] RDX: 0000000000000005 RSI: 0000000000004c00 RDI: 0000000000000006 [ 1309.844856] RBP: 0000000000000006 R08: 0000000000000000 R09: ffffffffffffffff [ 1309.844868] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000005 [ 1309.844881] R13: 0000000000000005 R14: 00000000200001b0 R15: 0000000000000002 23:41:38 executing program 3: r0 = syz_open_dev$tty1(0xc, 0x4, 0x1) writev(r0, &(0x7f0000000080)=[{&(0x7f0000001380)="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", 0x1ea}], 0x1) 23:41:38 executing program 4: perf_event_open(&(0x7f0000001d80)={0x2, 0x80, 0x69, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = socket$inet6_udp(0xa, 0x2, 0x0) dup(0xffffffffffffffff) fstat(0xffffffffffffffff, 0x0) connect$inet6(r0, &(0x7f0000000600)={0xa, 0x0, 0x0, @dev, 0x2}, 0x1c) sendmmsg$inet6(r0, &(0x7f0000000080)=[{{0x0, 0x0, &(0x7f00000004c0)=[{&(0x7f00000001c0)="4bc702854e3954b59347985ccc868289d3fe483d2c0900a2a1d12e33a66529e1f276fef452632dfa3c004ce3be84a5f66c29cd4ec39ae5206562fbc9ea3c0dbbebc22e628e147b0e9631f19b0ce0a48e0e675b2da3442226b898f1ddf8eabf133ab4a9cb0999c2ee1d3bd36d089b0d8e97ea00d4c5f6ad14dce058d595aacba2d587ff5eacd81b71a73f53ed276d1f3b3384bb2bfba4e0f37302e690df9e7024378ac754ac0576f996f3ee53d1034c7720767ddf2625817532f7ae89103367b73a36152b84c38bc227ba9e9ff48bcfe027585cf14bff37a888", 0xff41}], 0x1}}], 0x1, 0x0) (fail_nth: 7) 23:41:38 executing program 6: r0 = syz_open_dev$tty20(0xc, 0x4, 0x1) ioctl$VT_RESIZEX(r0, 0x560a, &(0x7f0000000000)={0x3, 0x0, 0x98, 0x0, 0x20}) r1 = openat$ttyS3(0xffffffffffffff9c, &(0x7f0000000040), 0x800, 0x0) ioctl$AUTOFS_DEV_IOCTL_ISMOUNTPOINT(0xffffffffffffffff, 0xc018937e, &(0x7f0000000080)={{0x1, 0x1, 0x18, r1, @out_args}, './file0\x00'}) 23:41:38 executing program 1: perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = syz_io_uring_setup(0x3a75, &(0x7f0000000080), &(0x7f0000ffb000/0x3000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=0x0, &(0x7f0000000100)=0x0) r3 = socket$inet6_udplite(0xa, 0x2, 0x88) syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_RECVMSG={0xa, 0x0, 0x0, r3, 0x0, &(0x7f0000000440)={0x0, 0x0, 0x0}, 0x0, 0x40000203}, 0x0) mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0) r4 = mmap$IORING_OFF_CQ_RING(&(0x7f0000ffe000/0x2000)=nil, 0x2000, 0xf, 0x13, r0, 0x8000000) syz_io_uring_submit(r4, r2, &(0x7f00000002c0)=@IORING_OP_READ=@pass_buffer={0x16, 0x4, 0x0, @fd, 0x0, 0x0}, 0x0) r5 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1) dup2(r5, r3) io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0) 23:41:38 executing program 2: r0 = add_key$keyring(&(0x7f0000000040), &(0x7f00000002c0)={'syz', 0x3}, 0x0, 0x0, 0xfffffffffffffffd) keyctl$KEYCTL_RESTRICT_KEYRING(0xf, r0, 0x0, 0x0) connect$inet(0xffffffffffffffff, &(0x7f0000000140)={0x2, 0x0, @dev}, 0x10) r1 = syz_open_dev$sg(&(0x7f0000000040), 0x0, 0x0) ioctl$BLKTRACETEARDOWN(r1, 0x1276, 0x0) ioctl$BLKTRACESETUP(r1, 0xc0481273, &(0x7f0000000140)={'\x00', 0x0, 0x4, 0x8, 0x76}) (fail_nth: 14) 23:41:38 executing program 7: perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_mount_image$vfat(&(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x0, 0x2, &(0x7f0000000180)=[{&(0x7f0000000140)="eb3c906d6b66732e66617400020801000470008400f801", 0x17}, {0x0, 0x0, 0x1000a00}], 0x0, &(0x7f0000000240)=ANY=[]) (fail_nth: 42) 23:41:38 executing program 5: perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r0 = syz_mount_image$vfat(&(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x0, 0x2, &(0x7f0000000180)=[{&(0x7f0000000140)="eb3c906d6b66732e66617400020801000470008400f801", 0x17}, {0x0, 0x0, 0x1000a00}], 0x0, &(0x7f0000000240)=ANY=[]) openat2(r0, &(0x7f0000000100)='./file0\x00', &(0x7f00000001c0)={0x40040, 0xf0}, 0x18) 23:41:38 executing program 0: perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r0 = syz_mount_image$vfat(&(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x0, 0x2, &(0x7f0000000180)=[{&(0x7f0000000140)="eb3c906d6b66732e66617400020801000470008400f801", 0x17}, {0x0, 0x0, 0x1000a00}], 0x0, &(0x7f0000000240)=ANY=[]) openat2(r0, &(0x7f0000000100)='./file0\x00', &(0x7f00000001c0)={0x40040, 0x8}, 0x18) [ 1328.465920] FAULT_INJECTION: forcing a failure. [ 1328.465920] name failslab, interval 1, probability 0, space 0, times 0 [ 1328.468321] CPU: 1 PID: 8258 Comm: syz-executor.4 Not tainted 5.10.194 #1 [ 1328.469708] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1328.471365] Call Trace: 23:41:38 executing program 6: r0 = syz_open_dev$tty20(0xc, 0x4, 0x1) ioctl$VT_RESIZEX(r0, 0x560a, &(0x7f0000000000)={0x0, 0x0, 0x0, 0x0, 0x1d}) r1 = syz_open_dev$hidraw(&(0x7f0000000040), 0x4, 0x1a7580) dup2(r1, r0) [ 1328.471906] dump_stack+0x107/0x167 [ 1328.472747] should_fail.cold+0x5/0xa [ 1328.473514] ? __alloc_skb+0x6d/0x5b0 [ 1328.474278] should_failslab+0x5/0x20 [ 1328.475039] kmem_cache_alloc_node+0x55/0x330 [ 1328.475970] __alloc_skb+0x6d/0x5b0 [ 1328.476741] __ip6_append_data.isra.0+0x2ce8/0x3a70 [ 1328.477769] ? ip6_mtu+0x1bb/0x3d0 [ 1328.478502] ? ip_frag_init+0x350/0x350 [ 1328.479336] ? ip6_finish_output2+0x1fe0/0x1fe0 [ 1328.480285] ? ip6_mtu+0x1e9/0x3d0 [ 1328.481035] ? ip6_setup_cork+0xfb7/0x1740 [ 1328.481904] ip6_make_skb+0x2de/0x4e0 [ 1328.482674] ? ip_frag_init+0x350/0x350 [ 1328.483483] ? ip_frag_init+0x350/0x350 [ 1328.484297] ? ip6_push_pending_frames+0xf0/0xf0 [ 1328.485274] ? ip6_dst_hoplimit+0x199/0x440 [ 1328.486158] ? lock_downgrade+0x6d0/0x6d0 [ 1328.487006] udpv6_sendmsg+0x20d0/0x2af0 [ 1328.487829] ? ip_frag_init+0x350/0x350 [ 1328.488670] ? udp_v6_push_pending_frames+0x360/0x360 [ 1328.489719] ? lock_acquire+0x197/0x470 23:41:38 executing program 1: perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = syz_io_uring_setup(0x3a75, &(0x7f0000000080), &(0x7f0000ffb000/0x3000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=0x0, &(0x7f0000000100)=0x0) r3 = socket$inet6_udplite(0xa, 0x2, 0x88) syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_RECVMSG={0xa, 0x0, 0x0, r3, 0x0, &(0x7f0000000440)={0x0, 0x0, 0x0}, 0x0, 0x40000203}, 0x0) mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0) r4 = mmap$IORING_OFF_CQ_RING(&(0x7f0000ffe000/0x2000)=nil, 0x2000, 0xf, 0x13, r0, 0x8000000) syz_io_uring_submit(r4, r2, &(0x7f00000002c0)=@IORING_OP_READ=@pass_buffer={0x16, 0x4, 0x0, @fd, 0x0, 0x0}, 0x0) r5 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1) dup2(r5, r3) io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0) [ 1328.490510] ? find_held_lock+0x2c/0x110 [ 1328.491457] ? __might_fault+0xd3/0x180 [ 1328.492275] ? sock_has_perm+0x1ea/0x280 [ 1328.493123] ? __import_iovec+0x458/0x590 [ 1328.493957] ? udp_v6_push_pending_frames+0x360/0x360 [ 1328.495011] inet6_sendmsg+0x105/0x140 [ 1328.495031] ? inet6_compat_ioctl+0x320/0x320 [ 1328.495046] sock_sendmsg+0xf2/0x190 [ 1328.495065] ____sys_sendmsg+0x334/0x870 [ 1328.495085] ? kernel_sendmsg+0x50/0x50 [ 1328.495100] ? do_recvmmsg+0x6d0/0x6d0 [ 1328.495117] ? perf_trace_lock+0xac/0x490 [ 1328.495141] ? __lockdep_reset_lock+0x180/0x180 [ 1328.495158] ? perf_trace_lock+0xac/0x490 [ 1328.495173] FAULT_INJECTION: forcing a failure. [ 1328.495173] name failslab, interval 1, probability 0, space 0, times 0 [ 1328.495189] ? __lock_acquire+0x1657/0x5b00 [ 1328.495211] ___sys_sendmsg+0xf3/0x170 [ 1328.495231] ? sendmsg_copy_msghdr+0x160/0x160 [ 1328.495255] ? lock_downgrade+0x6d0/0x6d0 [ 1328.495281] ? lock_downgrade+0x6d0/0x6d0 [ 1328.495306] ? __fget_files+0x296/0x4c0 [ 1328.495335] ? __fget_light+0xea/0x290 [ 1328.495361] __sys_sendmmsg+0x195/0x470 [ 1328.495385] ? __ia32_sys_sendmsg+0xb0/0xb0 [ 1328.495403] ? lock_downgrade+0x6d0/0x6d0 [ 1328.495440] ? __mutex_unlock_slowpath+0xe1/0x600 23:41:38 executing program 2: r0 = add_key$keyring(&(0x7f0000000040), &(0x7f00000002c0)={'syz', 0x3}, 0x0, 0x0, 0xfffffffffffffffd) keyctl$KEYCTL_RESTRICT_KEYRING(0xf, r0, 0x0, 0x0) connect$inet(0xffffffffffffffff, &(0x7f0000000140)={0x2, 0x0, @dev}, 0x10) r1 = syz_open_dev$sg(&(0x7f0000000040), 0x0, 0x0) ioctl$BLKTRACETEARDOWN(r1, 0x1276, 0x0) ioctl$BLKTRACESETUP(r1, 0xc0481273, &(0x7f0000000140)={'\x00', 0x0, 0x4, 0x8, 0x76}) (fail_nth: 15) 23:41:38 executing program 4: perf_event_open(&(0x7f0000001d80)={0x2, 0x80, 0x69, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = socket$inet6_udp(0xa, 0x2, 0x0) dup(0xffffffffffffffff) fstat(0xffffffffffffffff, 0x0) connect$inet6(r0, &(0x7f0000000600)={0xa, 0x0, 0x0, @dev, 0x2}, 0x1c) sendmmsg$inet6(r0, &(0x7f0000000080)=[{{0x0, 0x0, &(0x7f00000004c0)=[{&(0x7f00000001c0)="4bc702854e3954b59347985ccc868289d3fe483d2c0900a2a1d12e33a66529e1f276fef452632dfa3c004ce3be84a5f66c29cd4ec39ae5206562fbc9ea3c0dbbebc22e628e147b0e9631f19b0ce0a48e0e675b2da3442226b898f1ddf8eabf133ab4a9cb0999c2ee1d3bd36d089b0d8e97ea00d4c5f6ad14dce058d595aacba2d587ff5eacd81b71a73f53ed276d1f3b3384bb2bfba4e0f37302e690df9e7024378ac754ac0576f996f3ee53d1034c7720767ddf2625817532f7ae89103367b73a36152b84c38bc227ba9e9ff48bcfe027585cf14bff37a888", 0xff41}], 0x1}}], 0x1, 0x0) (fail_nth: 8) [ 1328.495462] ? wait_for_completion_io+0x270/0x270 [ 1328.495484] ? rcu_read_lock_any_held+0x75/0xa0 23:41:38 executing program 0: perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) openat2(0xffffffffffffffff, &(0x7f0000000100)='./file0\x00', &(0x7f00000001c0)={0x40040, 0x8}, 0x18) [ 1328.495501] ? vfs_write+0x354/0xa70 [ 1328.495522] ? fput_many+0x2f/0x1a0 [ 1328.495542] ? ksys_write+0x1a9/0x260 [ 1328.495560] ? __ia32_sys_read+0xb0/0xb0 [ 1328.495586] __x64_sys_sendmmsg+0x99/0x100 [ 1328.495603] ? syscall_enter_from_user_mode+0x1d/0x50 23:41:38 executing program 7: perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_mount_image$vfat(&(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x0, 0x2, &(0x7f0000000180)=[{&(0x7f0000000140)="eb3c906d6b66732e66617400020801000470008400f801", 0x17}, {0x0, 0x0, 0x1000a00}], 0x0, &(0x7f0000000240)=ANY=[]) (fail_nth: 43) [ 1328.495621] do_syscall_64+0x33/0x40 23:41:38 executing program 5: perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r0 = syz_mount_image$vfat(&(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x0, 0x2, &(0x7f0000000180)=[{&(0x7f0000000140)="eb3c906d6b66732e66617400020801000470008400f801", 0x17}, {0x0, 0x0, 0x1000a00}], 0x0, &(0x7f0000000240)=ANY=[]) openat2(r0, &(0x7f0000000100)='./file0\x00', &(0x7f00000001c0)={0x40040, 0x239}, 0x18) [ 1328.495642] entry_SYSCALL_64_after_hwframe+0x62/0xc7 [ 1328.495654] RIP: 0033:0x7fc0896e2b19 [ 1328.495674] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 23:41:38 executing program 0: perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) openat2(0xffffffffffffffff, &(0x7f0000000100)='./file0\x00', &(0x7f00000001c0)={0x40040, 0x8}, 0x18) [ 1328.495684] RSP: 002b:00007fc086c58188 EFLAGS: 00000246 ORIG_RAX: 0000000000000133 [ 1328.495705] RAX: ffffffffffffffda RBX: 00007fc0897f5f60 RCX: 00007fc0896e2b19 [ 1328.495716] RDX: 0000000000000001 RSI: 0000000020000080 RDI: 0000000000000004 [ 1328.495727] RBP: 00007fc086c581d0 R08: 0000000000000000 R09: 0000000000000000 [ 1328.495737] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 1328.495748] R13: 00007ffc7a2d78bf R14: 00007fc086c58300 R15: 0000000000022000 [ 1328.495784] CPU: 0 PID: 8266 Comm: syz-executor.7 Not tainted 5.10.194 #1 [ 1328.495793] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1328.495799] Call Trace: [ 1328.495823] dump_stack+0x107/0x167 [ 1328.495842] should_fail.cold+0x5/0xa [ 1328.495860] ? create_object.isra.0+0x3a/0xa20 [ 1328.495877] should_failslab+0x5/0x20 [ 1328.495891] kmem_cache_alloc+0x5b/0x310 [ 1328.495912] create_object.isra.0+0x3a/0xa20 [ 1328.495925] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 1328.495945] kmem_cache_alloc_trace+0x151/0x320 [ 1328.495967] ? dev_uevent_filter+0xd0/0xd0 [ 1328.495980] kobject_uevent_env+0x22b/0xf90 [ 1328.496011] loop_configure+0x116c/0x1480 [ 1328.496044] lo_ioctl+0xa72/0x1760 [ 1328.496061] ? avc_has_extended_perms+0x7f1/0xf40 [ 1328.496079] ? loop_set_status_old+0x250/0x250 [ 1328.496097] ? avc_ss_reset+0x180/0x180 [ 1328.496115] ? lock_acquire+0x197/0x470 [ 1328.496127] ? find_held_lock+0x2c/0x110 [ 1328.496152] ? __lock_acquire+0xbb1/0x5b00 [ 1328.496222] ? selinux_bprm_creds_for_exec+0xb60/0xb60 [ 1328.496236] ? generic_block_fiemap+0x60/0x60 [ 1328.496262] ? loop_set_status_old+0x250/0x250 [ 1328.496274] blkdev_ioctl+0x291/0x710 [ 1328.496287] ? blkdev_common_ioctl+0x1870/0x1870 [ 1328.496305] ? selinux_file_ioctl+0xb6/0x270 [ 1328.496324] block_ioctl+0xf9/0x140 [ 1328.496336] ? blkdev_read_iter+0x1c0/0x1c0 [ 1328.496353] __x64_sys_ioctl+0x19a/0x210 [ 1328.496375] do_syscall_64+0x33/0x40 [ 1328.496389] entry_SYSCALL_64_after_hwframe+0x62/0xc7 [ 1328.496398] RIP: 0033:0x7f4966db88d7 [ 1328.496429] Code: 3c 1c 48 f7 d8 49 39 c4 72 b8 e8 a4 54 02 00 85 c0 78 bd 48 83 c4 08 4c 89 e0 5b 41 5c c3 0f 1f 44 00 00 b8 10 00 00 00 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1328.496436] RSP: 002b:00007f496432df48 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 1328.496451] RAX: ffffffffffffffda RBX: 00007f4966e02970 RCX: 00007f4966db88d7 [ 1328.496458] RDX: 0000000000000005 RSI: 0000000000004c00 RDI: 0000000000000006 [ 1328.496465] RBP: 0000000000000006 R08: 0000000000000000 R09: ffffffffffffffff [ 1328.496479] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000005 [ 1328.496487] R13: 0000000000000005 R14: 00000000200001b0 R15: 0000000000000002 [ 1328.521662] FAULT_INJECTION: forcing a failure. [ 1328.521662] name fail_page_alloc, interval 1, probability 0, space 0, times 0 [ 1328.521690] CPU: 1 PID: 8273 Comm: syz-executor.2 Not tainted 5.10.194 #1 [ 1328.521705] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1328.521713] Call Trace: [ 1328.521742] dump_stack+0x107/0x167 [ 1328.521774] should_fail.cold+0x5/0xa [ 1328.521807] __alloc_pages_nodemask+0x182/0x600 [ 1328.521832] ? lock_acquire+0x197/0x470 [ 1328.521858] ? lockref_get+0x11/0x50 [ 1328.521887] ? __alloc_pages_slowpath.constprop.0+0x2130/0x2130 [ 1328.521926] ? lock_downgrade+0x6d0/0x6d0 [ 1328.521952] ? do_raw_spin_lock+0x121/0x260 [ 1328.521982] ? rwlock_bug.part.0+0x90/0x90 [ 1328.522016] alloc_pages_current+0x187/0x280 [ 1328.522050] __get_free_pages+0xc/0xa0 [ 1328.522074] inode_doinit_with_dentry+0x8f1/0x1240 [ 1328.522107] ? hrtimer_try_to_cancel.part.0+0x268/0x3b0 [ 1328.522131] ? hrtimer_init_sleeper+0x1a0/0x1f0 [ 1328.522157] ? selinux_file_lock+0x280/0x280 [ 1328.522181] ? current_time+0x1e6/0x2c0 [ 1328.522207] ? igrab+0xc0/0xc0 [ 1328.522239] selinux_d_instantiate+0x23/0x30 [ 1328.522273] security_d_instantiate+0x56/0xe0 [ 1328.522304] d_instantiate+0x5a/0x90 [ 1328.522330] debugfs_create_dir+0x1a7/0x4a0 [ 1328.522361] do_blk_trace_setup+0x833/0xc10 [ 1328.522389] ? _copy_from_user+0xfb/0x1b0 [ 1328.522420] __blk_trace_setup+0xca/0x180 [ 1328.522447] ? do_blk_trace_setup+0xc10/0xc10 [ 1328.522490] ? perf_trace_lock+0xac/0x490 [ 1328.522532] blk_trace_setup+0x43/0x60 [ 1328.522564] sg_ioctl_common+0x634/0x2570 [ 1328.522595] ? __sanitizer_cov_trace_switch+0x45/0x80 [ 1328.522622] ? do_vfs_ioctl+0x283/0x10d0 [ 1328.522646] ? sg_write+0x120/0x120 [ 1328.522671] ? generic_block_fiemap+0x60/0x60 [ 1328.522701] ? __mutex_unlock_slowpath+0xe1/0x600 [ 1328.522753] ? selinux_file_ioctl+0xb6/0x270 [ 1328.522777] ? sg_compat_ioctl+0x120/0x120 [ 1328.522805] sg_ioctl+0x8f/0x120 [ 1328.522835] __x64_sys_ioctl+0x19a/0x210 [ 1328.522870] do_syscall_64+0x33/0x40 [ 1328.522901] entry_SYSCALL_64_after_hwframe+0x62/0xc7 [ 1328.522918] RIP: 0033:0x7f661a573b19 [ 1328.522941] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1328.522951] RSP: 002b:00007f6617ae9188 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 1328.522972] RAX: ffffffffffffffda RBX: 00007f661a686f60 RCX: 00007f661a573b19 [ 1328.522983] RDX: 0000000020000140 RSI: 00000000c0481273 RDI: 0000000000000003 [ 1328.522994] RBP: 00007f6617ae91d0 R08: 0000000000000000 R09: 0000000000000000 [ 1328.523004] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 1328.523015] R13: 00007ffd527cbf9f R14: 00007f6617ae9300 R15: 0000000000022000 [ 1328.641598] FAULT_INJECTION: forcing a failure. [ 1328.641598] name failslab, interval 1, probability 0, space 0, times 0 [ 1328.641612] CPU: 0 PID: 8289 Comm: syz-executor.4 Not tainted 5.10.194 #1 [ 1328.641619] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1328.641623] Call Trace: [ 1328.641643] dump_stack+0x107/0x167 [ 1328.641657] should_fail.cold+0x5/0xa [ 1328.641671] ? create_object.isra.0+0x3a/0xa20 [ 1328.641684] should_failslab+0x5/0x20 [ 1328.641695] kmem_cache_alloc+0x5b/0x310 [ 1328.641708] create_object.isra.0+0x3a/0xa20 [ 1328.641718] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 1328.641731] kmem_cache_alloc_node+0x169/0x330 [ 1328.641746] __alloc_skb+0x6d/0x5b0 [ 1328.641763] __ip6_append_data.isra.0+0x2ce8/0x3a70 [ 1328.641780] ? ip6_mtu+0x1bb/0x3d0 [ 1328.641791] ? ip_frag_init+0x350/0x350 [ 1328.641807] ? ip6_finish_output2+0x1fe0/0x1fe0 [ 1328.641817] ? ip6_mtu+0x1e9/0x3d0 [ 1328.641828] ? ip6_setup_cork+0xfb7/0x1740 [ 1328.641841] ip6_make_skb+0x2de/0x4e0 [ 1328.641853] ? ip_frag_init+0x350/0x350 [ 1328.641865] ? ip_frag_init+0x350/0x350 [ 1328.641877] ? ip6_push_pending_frames+0xf0/0xf0 [ 1328.641891] ? ip6_dst_hoplimit+0x199/0x440 [ 1328.641905] ? lock_downgrade+0x6d0/0x6d0 [ 1328.641924] udpv6_sendmsg+0x20d0/0x2af0 [ 1328.641937] ? ip_frag_init+0x350/0x350 [ 1328.641952] ? udp_v6_push_pending_frames+0x360/0x360 [ 1328.641970] ? lock_acquire+0x197/0x470 [ 1328.641980] ? find_held_lock+0x2c/0x110 [ 1328.641993] ? __might_fault+0xd3/0x180 [ 1328.642013] ? sock_has_perm+0x1ea/0x280 [ 1328.642036] ? __import_iovec+0x458/0x590 [ 1328.642046] ? udp_v6_push_pending_frames+0x360/0x360 [ 1328.642057] inet6_sendmsg+0x105/0x140 [ 1328.642067] ? inet6_compat_ioctl+0x320/0x320 [ 1328.642076] sock_sendmsg+0xf2/0x190 [ 1328.642086] ____sys_sendmsg+0x334/0x870 [ 1328.642097] ? kernel_sendmsg+0x50/0x50 [ 1328.642106] ? do_recvmmsg+0x6d0/0x6d0 [ 1328.642115] ? perf_trace_lock+0xac/0x490 [ 1328.642128] ? __lockdep_reset_lock+0x180/0x180 [ 1328.642137] ? perf_trace_lock+0xac/0x490 [ 1328.642146] ? __lock_acquire+0x1657/0x5b00 [ 1328.642158] ___sys_sendmsg+0xf3/0x170 [ 1328.642169] ? sendmsg_copy_msghdr+0x160/0x160 [ 1328.642182] ? lock_downgrade+0x6d0/0x6d0 [ 1328.642196] ? lock_downgrade+0x6d0/0x6d0 [ 1328.642210] ? __fget_files+0x296/0x4c0 [ 1328.642225] ? __fget_light+0xea/0x290 [ 1328.642239] __sys_sendmmsg+0x195/0x470 [ 1328.642252] ? __ia32_sys_sendmsg+0xb0/0xb0 [ 1328.642262] ? lock_downgrade+0x6d0/0x6d0 [ 1328.642283] ? __mutex_unlock_slowpath+0xe1/0x600 [ 1328.642295] ? wait_for_completion_io+0x270/0x270 [ 1328.642307] ? rcu_read_lock_any_held+0x75/0xa0 [ 1328.642316] ? vfs_write+0x354/0xa70 [ 1328.642328] ? fput_many+0x2f/0x1a0 [ 1328.642338] ? ksys_write+0x1a9/0x260 [ 1328.642348] ? __ia32_sys_read+0xb0/0xb0 [ 1328.642362] __x64_sys_sendmmsg+0x99/0x100 [ 1328.642371] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1328.642383] do_syscall_64+0x33/0x40 [ 1328.642394] entry_SYSCALL_64_after_hwframe+0x62/0xc7 [ 1328.642401] RIP: 0033:0x7fc0896e2b19 [ 1328.642412] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1328.642417] RSP: 002b:00007fc086c58188 EFLAGS: 00000246 ORIG_RAX: 0000000000000133 [ 1328.642429] RAX: ffffffffffffffda RBX: 00007fc0897f5f60 RCX: 00007fc0896e2b19 [ 1328.642435] RDX: 0000000000000001 RSI: 0000000020000080 RDI: 0000000000000004 [ 1328.642441] RBP: 00007fc086c581d0 R08: 0000000000000000 R09: 0000000000000000 [ 1328.642447] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 1328.642453] R13: 00007ffc7a2d78bf R14: 00007fc086c58300 R15: 0000000000022000 [ 1328.673862] FAULT_INJECTION: forcing a failure. [ 1328.673862] name failslab, interval 1, probability 0, space 0, times 0 [ 1328.774810] CPU: 0 PID: 8285 Comm: syz-executor.2 Not tainted 5.10.194 #1 [ 1328.774816] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1328.774819] Call Trace: [ 1328.774835] dump_stack+0x107/0x167 [ 1328.774848] should_fail.cold+0x5/0xa [ 1328.774861] ? __d_alloc+0x2a/0x990 [ 1328.774873] should_failslab+0x5/0x20 [ 1328.774883] kmem_cache_alloc+0x5b/0x310 [ 1328.774897] __d_alloc+0x2a/0x990 [ 1328.774913] d_alloc_parallel+0x111/0x1bc0 [ 1328.774931] ? __lock_acquire+0x1657/0x5b00 [ 1328.774942] ? perf_trace_lock+0xac/0x490 [ 1328.774955] ? __d_lookup_rcu+0x6d0/0x6d0 [ 1328.774965] ? __lockdep_reset_lock+0x180/0x180 [ 1328.774978] ? lockdep_init_map_type+0x2c7/0x780 [ 1328.774990] ? lockdep_init_map_type+0x2c7/0x780 [ 1328.775009] __lookup_slow+0x193/0x490 [ 1328.775021] ? lookup_open.isra.0+0x1270/0x1270 [ 1328.775038] ? __d_lookup+0x3bf/0x760 [ 1328.775057] ? d_lookup+0xcc/0x130 [ 1328.775072] lookup_one_len+0x167/0x1a0 [ 1328.775082] ? __lookup_slow+0x490/0x490 [ 1328.775092] ? down_write_killable+0x180/0x180 [ 1328.775104] ? do_raw_spin_unlock+0x4f/0x220 [ 1328.775114] ? mntput+0xc/0x90 [ 1328.775130] start_creating.part.0+0x10a/0x230 [ 1328.775143] __debugfs_create_file+0xdb/0x530 [ 1328.775158] do_blk_trace_setup+0x3fb/0xc10 [ 1328.775172] ? _copy_from_user+0xfb/0x1b0 [ 1328.775184] __blk_trace_setup+0xca/0x180 [ 1328.775194] ? do_blk_trace_setup+0xc10/0xc10 [ 1328.775210] ? perf_trace_lock+0xac/0x490 [ 1328.775226] blk_trace_setup+0x43/0x60 [ 1328.775240] sg_ioctl_common+0x634/0x2570 [ 1328.775252] ? __sanitizer_cov_trace_switch+0x45/0x80 [ 1328.775267] ? do_vfs_ioctl+0x283/0x10d0 [ 1328.775275] ? sg_write+0x120/0x120 [ 1328.775285] ? generic_block_fiemap+0x60/0x60 [ 1328.775296] ? __mutex_unlock_slowpath+0xe1/0x600 [ 1328.775317] ? selinux_file_ioctl+0xb6/0x270 [ 1328.775325] ? sg_compat_ioctl+0x120/0x120 [ 1328.775336] sg_ioctl+0x8f/0x120 [ 1328.775348] __x64_sys_ioctl+0x19a/0x210 [ 1328.775361] do_syscall_64+0x33/0x40 [ 1328.775373] entry_SYSCALL_64_after_hwframe+0x62/0xc7 [ 1328.775382] RIP: 0033:0x7f661a573b19 [ 1328.775393] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1328.775399] RSP: 002b:00007f6617ae9188 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 1328.775410] RAX: ffffffffffffffda RBX: 00007f661a686f60 RCX: 00007f661a573b19 [ 1328.775416] RDX: 0000000020000140 RSI: 00000000c0481273 RDI: 0000000000000003 [ 1328.775423] RBP: 00007f6617ae91d0 R08: 0000000000000000 R09: 0000000000000000 [ 1328.775428] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 1328.775435] R13: 00007ffd527cbf9f R14: 00007f6617ae9300 R15: 0000000000022000 [ 1328.784669] FAULT_INJECTION: forcing a failure. [ 1328.784669] name failslab, interval 1, probability 0, space 0, times 0 [ 1328.784779] CPU: 1 PID: 8293 Comm: syz-executor.7 Not tainted 5.10.194 #1 [ 1328.784790] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1328.784796] Call Trace: [ 1328.784824] dump_stack+0x107/0x167 [ 1328.784848] should_fail.cold+0x5/0xa [ 1328.784868] ? __alloc_skb+0x6d/0x5b0 [ 1328.784891] should_failslab+0x5/0x20 [ 1328.784910] kmem_cache_alloc_node+0x55/0x330 [ 1328.784940] __alloc_skb+0x6d/0x5b0 [ 1328.784966] alloc_uevent_skb+0x7b/0x210 [ 1328.784989] kobject_uevent_env+0x99a/0xf90 [ 1328.785024] loop_configure+0x116c/0x1480 [ 1328.785057] lo_ioctl+0xa72/0x1760 [ 1328.785079] ? avc_has_extended_perms+0x7f1/0xf40 [ 1328.785102] ? loop_set_status_old+0x250/0x250 [ 1328.785124] ? avc_ss_reset+0x180/0x180 [ 1328.785147] ? lock_acquire+0x197/0x470 [ 1328.785164] ? find_held_lock+0x2c/0x110 [ 1328.785194] ? __lock_acquire+0xbb1/0x5b00 [ 1328.785266] ? selinux_bprm_creds_for_exec+0xb60/0xb60 [ 1328.785286] ? generic_block_fiemap+0x60/0x60 [ 1328.785316] ? loop_set_status_old+0x250/0x250 [ 1328.785331] blkdev_ioctl+0x291/0x710 [ 1328.785350] ? blkdev_common_ioctl+0x1870/0x1870 [ 1328.785373] ? selinux_file_ioctl+0xb6/0x270 [ 1328.785397] block_ioctl+0xf9/0x140 [ 1328.785413] ? blkdev_read_iter+0x1c0/0x1c0 [ 1328.785433] __x64_sys_ioctl+0x19a/0x210 [ 1328.785458] do_syscall_64+0x33/0x40 [ 1328.785479] entry_SYSCALL_64_after_hwframe+0x62/0xc7 [ 1328.785491] RIP: 0033:0x7f4966db88d7 [ 1328.785511] Code: 3c 1c 48 f7 d8 49 39 c4 72 b8 e8 a4 54 02 00 85 c0 78 bd 48 83 c4 08 4c 89 e0 5b 41 5c c3 0f 1f 44 00 00 b8 10 00 00 00 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1328.785522] RSP: 002b:00007f496432df48 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 1328.785543] RAX: ffffffffffffffda RBX: 00007f4966e02970 RCX: 00007f4966db88d7 [ 1328.785554] RDX: 0000000000000005 RSI: 0000000000004c00 RDI: 0000000000000006 [ 1328.785565] RBP: 0000000000000006 R08: 0000000000000000 R09: ffffffffffffffff [ 1328.785576] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000005 [ 1328.785587] R13: 0000000000000005 R14: 00000000200001b0 R15: 0000000000000002 23:41:56 executing program 4: perf_event_open(&(0x7f0000001d80)={0x2, 0x80, 0x69, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = socket$inet6_udp(0xa, 0x2, 0x0) dup(0xffffffffffffffff) fstat(0xffffffffffffffff, 0x0) connect$inet6(r0, &(0x7f0000000600)={0xa, 0x0, 0x0, @dev, 0x2}, 0x1c) sendmmsg$inet6(r0, &(0x7f0000000080)=[{{0x0, 0x0, &(0x7f00000004c0)=[{&(0x7f00000001c0)="4bc702854e3954b59347985ccc868289d3fe483d2c0900a2a1d12e33a66529e1f276fef452632dfa3c004ce3be84a5f66c29cd4ec39ae5206562fbc9ea3c0dbbebc22e628e147b0e9631f19b0ce0a48e0e675b2da3442226b898f1ddf8eabf133ab4a9cb0999c2ee1d3bd36d089b0d8e97ea00d4c5f6ad14dce058d595aacba2d587ff5eacd81b71a73f53ed276d1f3b3384bb2bfba4e0f37302e690df9e7024378ac754ac0576f996f3ee53d1034c7720767ddf2625817532f7ae89103367b73a36152b84c38bc227ba9e9ff48bcfe027585cf14bff37a888", 0xff41}], 0x1}}], 0x1, 0x0) (fail_nth: 9) 23:41:56 executing program 3: r0 = syz_open_dev$tty1(0xc, 0x4, 0x1) writev(r0, &(0x7f0000000080)=[{&(0x7f0000001380)="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", 0x1ea}], 0x1) 23:41:56 executing program 6: syz_open_dev$tty20(0xc, 0x4, 0x1) r0 = openat$hpet(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0) read$eventfd(r0, 0x0, 0x0) ioctl$VT_RESIZEX(r0, 0x560a, &(0x7f0000000000)={0x0, 0x0, 0x0, 0x0, 0x1d}) 23:41:56 executing program 1: perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = syz_io_uring_setup(0x3a75, &(0x7f0000000080), &(0x7f0000ffb000/0x3000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=0x0, &(0x7f0000000100)=0x0) r3 = socket$inet6_udplite(0xa, 0x2, 0x88) syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_RECVMSG={0xa, 0x0, 0x0, r3, 0x0, &(0x7f0000000440)={0x0, 0x0, 0x0}, 0x0, 0x40000203}, 0x0) mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0) r4 = mmap$IORING_OFF_CQ_RING(&(0x7f0000ffe000/0x2000)=nil, 0x2000, 0xf, 0x13, r0, 0x8000000) syz_io_uring_submit(r4, r2, &(0x7f00000002c0)=@IORING_OP_READ=@pass_buffer={0x16, 0x4, 0x0, @fd, 0x0, 0x0}, 0x0) r5 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1) dup2(r5, r3) io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0) 23:41:56 executing program 7: perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_mount_image$vfat(&(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x0, 0x2, &(0x7f0000000180)=[{&(0x7f0000000140)="eb3c906d6b66732e66617400020801000470008400f801", 0x17}, {0x0, 0x0, 0x1000a00}], 0x0, &(0x7f0000000240)=ANY=[]) (fail_nth: 44) 23:41:56 executing program 0: perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) openat2(0xffffffffffffffff, &(0x7f0000000100)='./file0\x00', &(0x7f00000001c0)={0x40040, 0x8}, 0x18) 23:41:56 executing program 5: perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r0 = syz_mount_image$vfat(&(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x0, 0x2, &(0x7f0000000180)=[{&(0x7f0000000140)="eb3c906d6b66732e66617400020801000470008400f801", 0x17}, {0x0, 0x0, 0x1000a00}], 0x0, &(0x7f0000000240)=ANY=[]) openat2(r0, &(0x7f0000000100)='./file0\x00', &(0x7f00000001c0)={0x40040, 0x300}, 0x18) 23:41:56 executing program 2: r0 = add_key$keyring(&(0x7f0000000040), &(0x7f00000002c0)={'syz', 0x3}, 0x0, 0x0, 0xfffffffffffffffd) keyctl$KEYCTL_RESTRICT_KEYRING(0xf, r0, 0x0, 0x0) connect$inet(0xffffffffffffffff, &(0x7f0000000140)={0x2, 0x0, @dev}, 0x10) r1 = syz_open_dev$sg(&(0x7f0000000040), 0x0, 0x0) ioctl$BLKTRACETEARDOWN(r1, 0x1276, 0x0) ioctl$BLKTRACESETUP(r1, 0xc0481273, &(0x7f0000000140)={'\x00', 0x0, 0x4, 0x8, 0x76}) (fail_nth: 16) [ 1346.287669] FAULT_INJECTION: forcing a failure. [ 1346.287669] name failslab, interval 1, probability 0, space 0, times 0 [ 1346.289933] CPU: 1 PID: 8311 Comm: syz-executor.7 Not tainted 5.10.194 #1 [ 1346.291278] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1346.292935] Call Trace: [ 1346.293462] dump_stack+0x107/0x167 [ 1346.294175] should_fail.cold+0x5/0xa [ 1346.294892] ? create_object.isra.0+0x3a/0xa20 [ 1346.295748] should_failslab+0x5/0x20 [ 1346.296466] kmem_cache_alloc+0x5b/0x310 [ 1346.297243] ? kmem_cache_alloc_trace+0x151/0x320 [ 1346.298224] create_object.isra.0+0x3a/0xa20 [ 1346.299091] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 1346.300044] __kmalloc+0x16e/0x390 [ 1346.300752] ? trace_hardirqs_on+0x5b/0x180 [ 1346.301571] kobject_get_path+0xc4/0x1d0 [ 1346.302364] kobject_uevent_env+0x251/0xf90 [ 1346.303179] loop_configure+0x116c/0x1480 [ 1346.304019] lo_ioctl+0xa72/0x1760 [ 1346.304721] ? avc_has_extended_perms+0x7f1/0xf40 [ 1346.304744] ? loop_set_status_old+0x250/0x250 [ 1346.304766] ? avc_ss_reset+0x180/0x180 [ 1346.304787] ? lock_acquire+0x197/0x470 [ 1346.304803] ? find_held_lock+0x2c/0x110 [ 1346.304832] ? __lock_acquire+0xbb1/0x5b00 [ 1346.304900] ? selinux_bprm_creds_for_exec+0xb60/0xb60 [ 1346.304918] ? generic_block_fiemap+0x60/0x60 [ 1346.304946] ? loop_set_status_old+0x250/0x250 [ 1346.304961] blkdev_ioctl+0x291/0x710 23:41:56 executing program 7: perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_mount_image$vfat(&(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x0, 0x2, &(0x7f0000000180)=[{&(0x7f0000000140)="eb3c906d6b66732e66617400020801000470008400f801", 0x17}, {0x0, 0x0, 0x1000a00}], 0x0, &(0x7f0000000240)=ANY=[]) (fail_nth: 45) [ 1346.304979] ? blkdev_common_ioctl+0x1870/0x1870 [ 1346.305000] ? selinux_file_ioctl+0xb6/0x270 [ 1346.305022] block_ioctl+0xf9/0x140 [ 1346.305037] ? blkdev_read_iter+0x1c0/0x1c0 [ 1346.305056] __x64_sys_ioctl+0x19a/0x210 [ 1346.305079] do_syscall_64+0x33/0x40 [ 1346.305100] entry_SYSCALL_64_after_hwframe+0x62/0xc7 [ 1346.305112] RIP: 0033:0x7f4966db88d7 23:41:56 executing program 4: perf_event_open(&(0x7f0000001d80)={0x2, 0x80, 0x69, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = socket$inet6_udp(0xa, 0x2, 0x0) dup(0xffffffffffffffff) fstat(0xffffffffffffffff, 0x0) connect$inet6(r0, &(0x7f0000000600)={0xa, 0x0, 0x0, @dev, 0x2}, 0x1c) sendmmsg$inet6(r0, &(0x7f0000000080)=[{{0x0, 0x0, &(0x7f00000004c0)=[{&(0x7f00000001c0)="4bc702854e3954b59347985ccc868289d3fe483d2c0900a2a1d12e33a66529e1f276fef452632dfa3c004ce3be84a5f66c29cd4ec39ae5206562fbc9ea3c0dbbebc22e628e147b0e9631f19b0ce0a48e0e675b2da3442226b898f1ddf8eabf133ab4a9cb0999c2ee1d3bd36d089b0d8e97ea00d4c5f6ad14dce058d595aacba2d587ff5eacd81b71a73f53ed276d1f3b3384bb2bfba4e0f37302e690df9e7024378ac754ac0576f996f3ee53d1034c7720767ddf2625817532f7ae89103367b73a36152b84c38bc227ba9e9ff48bcfe027585cf14bff37a888", 0xff41}], 0x1}}], 0x1, 0x0) (fail_nth: 10) [ 1346.305131] Code: 3c 1c 48 f7 d8 49 39 c4 72 b8 e8 a4 54 02 00 85 c0 78 bd 48 83 c4 08 4c 89 e0 5b 41 5c c3 0f 1f 44 00 00 b8 10 00 00 00 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 23:41:56 executing program 1: perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = syz_io_uring_setup(0x3a75, &(0x7f0000000080), &(0x7f0000ffb000/0x3000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=0x0, &(0x7f0000000100)=0x0) r3 = socket$inet6_udplite(0xa, 0x2, 0x88) syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_RECVMSG={0xa, 0x0, 0x0, r3, 0x0, &(0x7f0000000440)={0x0, 0x0, 0x0}, 0x0, 0x40000203}, 0x0) mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0) r4 = mmap$IORING_OFF_CQ_RING(&(0x7f0000ffe000/0x2000)=nil, 0x2000, 0xf, 0x13, r0, 0x8000000) syz_io_uring_submit(r4, r2, &(0x7f00000002c0)=@IORING_OP_READ=@pass_buffer={0x16, 0x4, 0x0, @fd, 0x0, 0x0}, 0x80000001) syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1) dup2(0xffffffffffffffff, r3) io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0) 23:41:56 executing program 0: r0 = syz_mount_image$vfat(&(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x0, 0x2, &(0x7f0000000180)=[{&(0x7f0000000140)="eb3c906d6b66732e66617400020801000470008400f801", 0x17}, {0x0, 0x0, 0x1000a00}], 0x0, &(0x7f0000000240)=ANY=[]) openat2(r0, &(0x7f0000000100)='./file0\x00', &(0x7f00000001c0)={0x40040, 0x8}, 0x18) [ 1346.305142] RSP: 002b:00007f496432df48 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 1346.305162] RAX: ffffffffffffffda RBX: 00007f4966e02970 RCX: 00007f4966db88d7 [ 1346.305172] RDX: 0000000000000005 RSI: 0000000000004c00 RDI: 0000000000000006 [ 1346.305183] RBP: 0000000000000006 R08: 0000000000000000 R09: ffffffffffffffff [ 1346.305193] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000005 [ 1346.305203] R13: 0000000000000005 R14: 00000000200001b0 R15: 0000000000000002 [ 1346.341399] FAULT_INJECTION: forcing a failure. [ 1346.341399] name failslab, interval 1, probability 0, space 0, times 0 [ 1346.341425] CPU: 0 PID: 8322 Comm: syz-executor.4 Not tainted 5.10.194 #1 [ 1346.341436] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1346.341442] Call Trace: [ 1346.341469] dump_stack+0x107/0x167 [ 1346.341492] should_fail.cold+0x5/0xa [ 1346.341521] should_failslab+0x5/0x20 [ 1346.341545] __kmalloc_node_track_caller+0x74/0x3b0 [ 1346.341568] ? __ip6_append_data.isra.0+0x2ce8/0x3a70 [ 1346.341595] __alloc_skb+0xb1/0x5b0 [ 1346.341624] __ip6_append_data.isra.0+0x2ce8/0x3a70 [ 1346.341657] ? ip6_mtu+0x1bb/0x3d0 [ 1346.341678] ? ip_frag_init+0x350/0x350 [ 1346.341712] ? ip6_finish_output2+0x1fe0/0x1fe0 [ 1346.341732] ? ip6_mtu+0x1e9/0x3d0 [ 1346.341754] ? ip6_setup_cork+0xfb7/0x1740 [ 1346.341780] ip6_make_skb+0x2de/0x4e0 [ 1346.341796] ? ip_frag_init+0x350/0x350 [ 1346.341821] ? ip_frag_init+0x350/0x350 [ 1346.341846] ? ip6_push_pending_frames+0xf0/0xf0 [ 1346.341872] ? ip6_dst_hoplimit+0x199/0x440 [ 1346.341895] ? lock_downgrade+0x6d0/0x6d0 [ 1346.341933] udpv6_sendmsg+0x20d0/0x2af0 [ 1346.341958] ? ip_frag_init+0x350/0x350 [ 1346.341989] ? udp_v6_push_pending_frames+0x360/0x360 [ 1346.342028] ? lock_acquire+0x197/0x470 [ 1346.342046] ? find_held_lock+0x2c/0x110 [ 1346.342078] ? __might_fault+0xd3/0x180 [ 1346.342114] ? sock_has_perm+0x1ea/0x280 [ 1346.342160] ? __import_iovec+0x458/0x590 [ 1346.342181] ? udp_v6_push_pending_frames+0x360/0x360 [ 1346.342204] inet6_sendmsg+0x105/0x140 [ 1346.342224] ? inet6_compat_ioctl+0x320/0x320 [ 1346.342242] sock_sendmsg+0xf2/0x190 [ 1346.342262] ____sys_sendmsg+0x334/0x870 [ 1346.342284] ? kernel_sendmsg+0x50/0x50 [ 1346.342301] ? do_recvmmsg+0x6d0/0x6d0 [ 1346.342321] ? perf_trace_lock+0xac/0x490 [ 1346.342348] ? __lockdep_reset_lock+0x180/0x180 [ 1346.342366] ? perf_trace_lock+0xac/0x490 [ 1346.342385] ? __lock_acquire+0x1657/0x5b00 [ 1346.342409] ___sys_sendmsg+0xf3/0x170 [ 1346.342431] ? sendmsg_copy_msghdr+0x160/0x160 [ 1346.342457] ? lock_downgrade+0x6d0/0x6d0 [ 1346.342489] ? lock_downgrade+0x6d0/0x6d0 [ 1346.342519] ? __fget_files+0x296/0x4c0 [ 1346.342550] ? __fget_light+0xea/0x290 [ 1346.342580] __sys_sendmmsg+0x195/0x470 [ 1346.342606] ? __ia32_sys_sendmsg+0xb0/0xb0 [ 1346.342627] ? lock_downgrade+0x6d0/0x6d0 [ 1346.342667] ? __mutex_unlock_slowpath+0xe1/0x600 [ 1346.342692] ? wait_for_completion_io+0x270/0x270 [ 1346.342716] ? rcu_read_lock_any_held+0x75/0xa0 [ 1346.342734] ? vfs_write+0x354/0xa70 [ 1346.342759] ? fput_many+0x2f/0x1a0 [ 1346.342780] ? ksys_write+0x1a9/0x260 [ 1346.342800] ? __ia32_sys_read+0xb0/0xb0 [ 1346.342829] __x64_sys_sendmmsg+0x99/0x100 [ 1346.342848] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1346.342869] do_syscall_64+0x33/0x40 [ 1346.342892] entry_SYSCALL_64_after_hwframe+0x62/0xc7 [ 1346.342906] RIP: 0033:0x7fc0896e2b19 [ 1346.342927] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1346.342938] RSP: 002b:00007fc086c58188 EFLAGS: 00000246 ORIG_RAX: 0000000000000133 [ 1346.342961] RAX: ffffffffffffffda RBX: 00007fc0897f5f60 RCX: 00007fc0896e2b19 [ 1346.342973] RDX: 0000000000000001 RSI: 0000000020000080 RDI: 0000000000000004 [ 1346.342985] RBP: 00007fc086c581d0 R08: 0000000000000000 R09: 0000000000000000 [ 1346.342997] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 1346.343009] R13: 00007ffc7a2d78bf R14: 00007fc086c58300 R15: 0000000000022000 [ 1346.368119] FAULT_INJECTION: forcing a failure. [ 1346.368119] name failslab, interval 1, probability 0, space 0, times 0 [ 1346.368148] CPU: 1 PID: 8317 Comm: syz-executor.2 Not tainted 5.10.194 #1 [ 1346.368162] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1346.368171] Call Trace: [ 1346.368209] dump_stack+0x107/0x167 [ 1346.368240] should_fail.cold+0x5/0xa [ 1346.368270] ? create_object.isra.0+0x3a/0xa20 [ 1346.368298] should_failslab+0x5/0x20 [ 1346.368323] kmem_cache_alloc+0x5b/0x310 [ 1346.368358] create_object.isra.0+0x3a/0xa20 [ 1346.368383] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 1346.368416] kmem_cache_alloc+0x159/0x310 [ 1346.368452] __d_alloc+0x2a/0x990 [ 1346.368490] d_alloc_parallel+0x111/0x1bc0 [ 1346.368535] ? __lock_acquire+0x1657/0x5b00 [ 1346.368561] ? perf_trace_lock+0xac/0x490 [ 1346.368594] ? __d_lookup_rcu+0x6d0/0x6d0 [ 1346.368619] ? __lockdep_reset_lock+0x180/0x180 [ 1346.368649] ? lockdep_init_map_type+0x2c7/0x780 [ 1346.368679] ? lockdep_init_map_type+0x2c7/0x780 [ 1346.368751] __lookup_slow+0x193/0x490 [ 1346.368781] ? lookup_open.isra.0+0x1270/0x1270 [ 1346.368823] ? __d_lookup+0x3bf/0x760 [ 1346.368867] ? d_lookup+0xcc/0x130 [ 1346.368904] lookup_one_len+0x167/0x1a0 [ 1346.368931] ? __lookup_slow+0x490/0x490 [ 1346.368956] ? down_write_killable+0x180/0x180 [ 1346.368984] ? do_raw_spin_unlock+0x4f/0x220 [ 1346.369007] ? mntput+0xc/0x90 [ 1346.369044] start_creating.part.0+0x10a/0x230 [ 1346.369074] __debugfs_create_file+0xdb/0x530 [ 1346.369109] do_blk_trace_setup+0x3fb/0xc10 [ 1346.369137] ? _copy_from_user+0xfb/0x1b0 [ 1346.369166] __blk_trace_setup+0xca/0x180 [ 1346.369191] ? do_blk_trace_setup+0xc10/0xc10 [ 1346.369232] ? perf_trace_lock+0xac/0x490 [ 1346.369272] blk_trace_setup+0x43/0x60 [ 1346.369303] sg_ioctl_common+0x634/0x2570 [ 1346.369334] ? __sanitizer_cov_trace_switch+0x45/0x80 [ 1346.369359] ? do_vfs_ioctl+0x283/0x10d0 [ 1346.369382] ? sg_write+0x120/0x120 [ 1346.369406] ? generic_block_fiemap+0x60/0x60 [ 1346.369435] ? __mutex_unlock_slowpath+0xe1/0x600 [ 1346.369484] ? selinux_file_ioctl+0xb6/0x270 [ 1346.369506] ? sg_compat_ioctl+0x120/0x120 [ 1346.369532] sg_ioctl+0x8f/0x120 [ 1346.369562] __x64_sys_ioctl+0x19a/0x210 [ 1346.369594] do_syscall_64+0x33/0x40 [ 1346.369622] entry_SYSCALL_64_after_hwframe+0x62/0xc7 [ 1346.369639] RIP: 0033:0x7f661a573b19 [ 1346.369668] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1346.369682] RSP: 002b:00007f6617ae9188 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 1346.369710] RAX: ffffffffffffffda RBX: 00007f661a686f60 RCX: 00007f661a573b19 [ 1346.369726] RDX: 0000000020000140 RSI: 00000000c0481273 RDI: 0000000000000003 [ 1346.369742] RBP: 00007f6617ae91d0 R08: 0000000000000000 R09: 0000000000000000 [ 1346.369757] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 1346.369774] R13: 00007ffd527cbf9f R14: 00007f6617ae9300 R15: 0000000000022000 [ 1346.451566] FAULT_INJECTION: forcing a failure. [ 1346.451566] name failslab, interval 1, probability 0, space 0, times 0 [ 1346.451589] CPU: 0 PID: 8329 Comm: syz-executor.4 Not tainted 5.10.194 #1 [ 1346.451599] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1346.451605] Call Trace: [ 1346.451632] dump_stack+0x107/0x167 [ 1346.451655] should_fail.cold+0x5/0xa [ 1346.451676] ? create_object.isra.0+0x3a/0xa20 [ 1346.451698] should_failslab+0x5/0x20 [ 1346.451716] kmem_cache_alloc+0x5b/0x310 [ 1346.451740] create_object.isra.0+0x3a/0xa20 [ 1346.451769] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 1346.451793] __kmalloc_node_track_caller+0x1a6/0x3b0 [ 1346.451814] ? __ip6_append_data.isra.0+0x2ce8/0x3a70 [ 1346.451838] __alloc_skb+0xb1/0x5b0 [ 1346.451864] __ip6_append_data.isra.0+0x2ce8/0x3a70 [ 1346.451896] ? ip6_mtu+0x1bb/0x3d0 [ 1346.451914] ? ip_frag_init+0x350/0x350 [ 1346.451946] ? ip6_finish_output2+0x1fe0/0x1fe0 [ 1346.451964] ? ip6_mtu+0x1e9/0x3d0 [ 1346.451983] ? ip6_setup_cork+0xfb7/0x1740 [ 1346.452007] ip6_make_skb+0x2de/0x4e0 [ 1346.452022] ? ip_frag_init+0x350/0x350 [ 1346.452044] ? ip_frag_init+0x350/0x350 [ 1346.452067] ? ip6_push_pending_frames+0xf0/0xf0 [ 1346.452093] ? ip6_dst_hoplimit+0x199/0x440 [ 1346.452113] ? lock_downgrade+0x6d0/0x6d0 [ 1346.452147] udpv6_sendmsg+0x20d0/0x2af0 [ 1346.452170] ? ip_frag_init+0x350/0x350 [ 1346.452198] ? udp_v6_push_pending_frames+0x360/0x360 [ 1346.452233] ? lock_acquire+0x197/0x470 [ 1346.452249] ? find_held_lock+0x2c/0x110 [ 1346.452280] ? __might_fault+0xd3/0x180 [ 1346.452313] ? sock_has_perm+0x1ea/0x280 [ 1346.452356] ? __import_iovec+0x458/0x590 [ 1346.460710] FAULT_INJECTION: forcing a failure. [ 1346.460710] name failslab, interval 1, probability 0, space 0, times 0 [ 1346.461711] ? udp_v6_push_pending_frames+0x360/0x360 [ 1346.461733] inet6_sendmsg+0x105/0x140 [ 1346.461757] ? inet6_compat_ioctl+0x320/0x320 [ 1346.461774] sock_sendmsg+0xf2/0x190 [ 1346.461798] ____sys_sendmsg+0x334/0x870 [ 1346.461821] ? kernel_sendmsg+0x50/0x50 [ 1346.623681] ? do_recvmmsg+0x6d0/0x6d0 [ 1346.624492] ? perf_trace_lock+0xac/0x490 [ 1346.625379] ? __lockdep_reset_lock+0x180/0x180 [ 1346.626343] ? perf_trace_lock+0xac/0x490 [ 1346.627194] ? __lock_acquire+0x1657/0x5b00 [ 1346.628094] ___sys_sendmsg+0xf3/0x170 [ 1346.628908] ? sendmsg_copy_msghdr+0x160/0x160 [ 1346.629862] ? lock_downgrade+0x6d0/0x6d0 [ 1346.630730] ? lock_downgrade+0x6d0/0x6d0 [ 1346.631599] ? __fget_files+0x296/0x4c0 [ 1346.632435] ? __fget_light+0xea/0x290 [ 1346.633274] __sys_sendmmsg+0x195/0x470 [ 1346.634104] ? __ia32_sys_sendmsg+0xb0/0xb0 [ 1346.635004] ? lock_downgrade+0x6d0/0x6d0 [ 1346.635882] ? __mutex_unlock_slowpath+0xe1/0x600 [ 1346.636897] ? wait_for_completion_io+0x270/0x270 [ 1346.637900] ? rcu_read_lock_any_held+0x75/0xa0 [ 1346.638863] ? vfs_write+0x354/0xa70 [ 1346.639637] ? fput_many+0x2f/0x1a0 [ 1346.640398] ? ksys_write+0x1a9/0x260 [ 1346.641209] ? __ia32_sys_read+0xb0/0xb0 [ 1346.642059] __x64_sys_sendmmsg+0x99/0x100 [ 1346.642932] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1346.644002] do_syscall_64+0x33/0x40 [ 1346.644783] entry_SYSCALL_64_after_hwframe+0x62/0xc7 [ 1346.645848] RIP: 0033:0x7fc0896e2b19 [ 1346.646622] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1346.650440] RSP: 002b:00007fc086c58188 EFLAGS: 00000246 ORIG_RAX: 0000000000000133 [ 1346.652014] RAX: ffffffffffffffda RBX: 00007fc0897f5f60 RCX: 00007fc0896e2b19 [ 1346.653515] RDX: 0000000000000001 RSI: 0000000020000080 RDI: 0000000000000004 [ 1346.655115] RBP: 00007fc086c581d0 R08: 0000000000000000 R09: 0000000000000000 [ 1346.656595] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 1346.658115] R13: 00007ffc7a2d78bf R14: 00007fc086c58300 R15: 0000000000022000 [ 1346.659639] CPU: 1 PID: 8332 Comm: syz-executor.7 Not tainted 5.10.194 #1 [ 1346.660796] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1346.662203] Call Trace: [ 1346.662622] dump_stack+0x107/0x167 [ 1346.663225] should_fail.cold+0x5/0xa [ 1346.663821] should_failslab+0x5/0x20 [ 1346.664398] __kmalloc_node_track_caller+0x74/0x3b0 [ 1346.665152] ? alloc_uevent_skb+0x7b/0x210 [ 1346.665797] __alloc_skb+0xb1/0x5b0 [ 1346.666352] alloc_uevent_skb+0x7b/0x210 [ 1346.666972] kobject_uevent_env+0x99a/0xf90 [ 1346.667645] loop_configure+0x116c/0x1480 [ 1346.668290] lo_ioctl+0xa72/0x1760 [ 1346.668843] ? avc_has_extended_perms+0x7f1/0xf40 [ 1346.669584] ? loop_set_status_old+0x250/0x250 [ 1346.670273] ? avc_ss_reset+0x180/0x180 [ 1346.670877] ? lock_acquire+0x197/0x470 [ 1346.671489] ? find_held_lock+0x2c/0x110 [ 1346.672126] ? __lock_acquire+0xbb1/0x5b00 [ 1346.672844] ? selinux_bprm_creds_for_exec+0xb60/0xb60 [ 1346.673658] ? generic_block_fiemap+0x60/0x60 [ 1346.674409] ? loop_set_status_old+0x250/0x250 [ 1346.675106] blkdev_ioctl+0x291/0x710 [ 1346.675739] ? blkdev_common_ioctl+0x1870/0x1870 [ 1346.676467] ? selinux_file_ioctl+0xb6/0x270 [ 1346.677191] block_ioctl+0xf9/0x140 [ 1346.677741] ? blkdev_read_iter+0x1c0/0x1c0 [ 1346.678428] __x64_sys_ioctl+0x19a/0x210 [ 1346.679048] do_syscall_64+0x33/0x40 [ 1346.679620] entry_SYSCALL_64_after_hwframe+0x62/0xc7 [ 1346.680395] RIP: 0033:0x7f4966db88d7 [ 1346.680978] Code: 3c 1c 48 f7 d8 49 39 c4 72 b8 e8 a4 54 02 00 85 c0 78 bd 48 83 c4 08 4c 89 e0 5b 41 5c c3 0f 1f 44 00 00 b8 10 00 00 00 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1346.683760] RSP: 002b:00007f496432df48 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 1346.684921] RAX: ffffffffffffffda RBX: 00007f4966e02970 RCX: 00007f4966db88d7 [ 1346.685982] RDX: 0000000000000005 RSI: 0000000000004c00 RDI: 0000000000000006 [ 1346.687045] RBP: 0000000000000006 R08: 0000000000000000 R09: ffffffffffffffff [ 1346.688158] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000005 [ 1346.689227] R13: 0000000000000005 R14: 00000000200001b0 R15: 0000000000000002 23:41:56 executing program 5: perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r0 = syz_mount_image$vfat(&(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x0, 0x2, &(0x7f0000000180)=[{&(0x7f0000000140)="eb3c906d6b66732e66617400020801000470008400f801", 0x17}, {0x0, 0x0, 0x1000a00}], 0x0, &(0x7f0000000240)=ANY=[]) openat2(r0, &(0x7f0000000100)='./file0\x00', &(0x7f00000001c0)={0x40040, 0x408}, 0x18) 23:41:56 executing program 2: r0 = add_key$keyring(&(0x7f0000000040), &(0x7f00000002c0)={'syz', 0x3}, 0x0, 0x0, 0xfffffffffffffffd) keyctl$KEYCTL_RESTRICT_KEYRING(0xf, r0, 0x0, 0x0) connect$inet(0xffffffffffffffff, &(0x7f0000000140)={0x2, 0x0, @dev}, 0x10) r1 = syz_open_dev$sg(&(0x7f0000000040), 0x0, 0x0) ioctl$BLKTRACETEARDOWN(r1, 0x1276, 0x0) ioctl$BLKTRACESETUP(r1, 0xc0481273, &(0x7f0000000140)={'\x00', 0x0, 0x4, 0x8, 0x76}) (fail_nth: 17) 23:41:56 executing program 6: ioctl$VT_RESIZEX(0xffffffffffffffff, 0x560a, &(0x7f0000000000)={0x0, 0x0, 0x0, 0x0, 0x1d}) r0 = dup3(0xffffffffffffffff, 0xffffffffffffffff, 0x80000) ioctl$TIOCSIG(r0, 0x40045436, 0x2c) 23:41:56 executing program 3: r0 = syz_open_dev$tty1(0xc, 0x4, 0x1) writev(r0, &(0x7f0000000080)=[{&(0x7f0000001380)="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", 0x1ea}], 0x1) [ 1346.775538] FAULT_INJECTION: forcing a failure. [ 1346.775538] name failslab, interval 1, probability 0, space 0, times 0 [ 1346.777478] CPU: 1 PID: 8343 Comm: syz-executor.2 Not tainted 5.10.194 #1 [ 1346.778498] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1346.779921] Call Trace: [ 1346.780335] dump_stack+0x107/0x167 [ 1346.780983] should_fail.cold+0x5/0xa [ 1346.781561] ? alloc_inode+0x171/0x240 [ 1346.782235] should_failslab+0x5/0x20 [ 1346.782815] kmem_cache_alloc+0x5b/0x310 [ 1346.783521] ? __lookup_slow+0x490/0x490 [ 1346.784138] alloc_inode+0x171/0x240 [ 1346.784780] new_inode+0x23/0x250 [ 1346.785311] debugfs_get_inode+0x1a/0x130 [ 1346.786026] __debugfs_create_file+0x14e/0x530 [ 1346.786715] do_blk_trace_setup+0x3fb/0xc10 [ 1346.787456] ? _copy_from_user+0xfb/0x1b0 [ 1346.788072] __blk_trace_setup+0xca/0x180 [ 1346.788800] ? do_blk_trace_setup+0xc10/0xc10 [ 1346.789482] ? perf_trace_lock+0xac/0x490 [ 1346.790206] blk_trace_setup+0x43/0x60 [ 1346.790830] sg_ioctl_common+0x634/0x2570 [ 1346.791545] ? __sanitizer_cov_trace_switch+0x45/0x80 [ 1346.792294] ? do_vfs_ioctl+0x283/0x10d0 [ 1346.792997] ? sg_write+0x120/0x120 [ 1346.793545] ? generic_block_fiemap+0x60/0x60 [ 1346.794310] ? __mutex_unlock_slowpath+0xe1/0x600 [ 1346.795061] ? selinux_file_ioctl+0xb6/0x270 [ 1346.795816] ? sg_compat_ioctl+0x120/0x120 [ 1346.796432] sg_ioctl+0x8f/0x120 [ 1346.797034] __x64_sys_ioctl+0x19a/0x210 [ 1346.797635] do_syscall_64+0x33/0x40 [ 1346.798273] entry_SYSCALL_64_after_hwframe+0x62/0xc7 [ 1346.799029] RIP: 0033:0x7f661a573b19 [ 1346.799683] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1346.802318] RSP: 002b:00007f6617ae9188 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 1346.803600] RAX: ffffffffffffffda RBX: 00007f661a686f60 RCX: 00007f661a573b19 [ 1346.804644] RDX: 0000000020000140 RSI: 00000000c0481273 RDI: 0000000000000003 [ 1346.805857] RBP: 00007f6617ae91d0 R08: 0000000000000000 R09: 0000000000000000 [ 1346.807022] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 1346.808011] R13: 00007ffd527cbf9f R14: 00007f6617ae9300 R15: 0000000000022000 [ 1346.809312] debugfs: out of free dentries, can not create file 'dropped' 23:41:56 executing program 6: r0 = syz_open_dev$tty20(0xc, 0x4, 0x1) ioctl$VT_RESIZEX(r0, 0x560a, &(0x7f0000000000)={0x0, 0x0, 0x0, 0x0, 0x1d}) r1 = syz_open_dev$ptys(0xc, 0x3, 0x0) flock(r1, 0xc) ioctl$TIOCL_SETSEL(r0, 0x541c, &(0x7f0000000080)={0x2, {0x2, 0x101, 0x7, 0x5}}) r2 = openat$sr(0xffffffffffffff9c, &(0x7f0000000040), 0x80000, 0x0) r3 = openat2(r2, &(0x7f00000000c0)='./file0\x00', &(0x7f0000000100)={0x20001, 0x4, 0x1}, 0x18) ioctl$SG_IO(r3, 0x2285, &(0x7f0000001280)={0x0, 0xfffffffffffffffc, 0xa4, 0x5, @buffer={0x0, 0x15, &(0x7f0000000140)=""/21}, &(0x7f0000000180)="710d86de61f2c77ced8986bb932f0884e59a07fab9a770ce96fd4c368419d2d154973a5e7ad851fc575efa805f7be556549b37cabeee40c22369ee08b75a7f54355e95ab6612ca7a48bff8a4786cd607f9c0808ec05cda08c4ea2b3b17444c12346af604eafcb691100ea3d0125c580868c09f65c96e43f5857d85792dfe170d74eaa89af25987f90161aca8eb6e423d16411dafed4a9bcd2ab021651bd565b6346efc33", &(0x7f0000000240)=""/4096, 0xffffffff, 0x10001, 0x3, &(0x7f0000001240)}) r4 = openat$hpet(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0) r5 = openat2(r3, &(0x7f0000001300)='./file0\x00', &(0x7f0000001340)={0x20000, 0x4, 0xa}, 0x18) copy_file_range(r5, &(0x7f0000001380)=0xffff, r2, 0x0, 0x0, 0x0) read$eventfd(r4, 0x0, 0x0) ioctl$TIOCGPTPEER(r4, 0x5441, 0x0) 23:41:57 executing program 2: r0 = add_key$keyring(&(0x7f0000000040), &(0x7f00000002c0)={'syz', 0x3}, 0x0, 0x0, 0xfffffffffffffffd) keyctl$KEYCTL_RESTRICT_KEYRING(0xf, r0, 0x0, 0x0) connect$inet(0xffffffffffffffff, &(0x7f0000000140)={0x2, 0x0, @dev}, 0x10) r1 = syz_open_dev$sg(&(0x7f0000000040), 0x0, 0x0) ioctl$BLKTRACETEARDOWN(r1, 0x1276, 0x0) ioctl$BLKTRACESETUP(r1, 0xc0481273, &(0x7f0000000140)={'\x00', 0x0, 0x4, 0x8, 0x76}) (fail_nth: 18) [ 1346.941770] FAULT_INJECTION: forcing a failure. [ 1346.941770] name failslab, interval 1, probability 0, space 0, times 0 [ 1346.944246] CPU: 0 PID: 8353 Comm: syz-executor.2 Not tainted 5.10.194 #1 [ 1346.945654] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1346.947365] Call Trace: [ 1346.947921] dump_stack+0x107/0x167 [ 1346.948689] should_fail.cold+0x5/0xa [ 1346.949497] ? create_object.isra.0+0x3a/0xa20 [ 1346.950447] should_failslab+0x5/0x20 [ 1346.951235] kmem_cache_alloc+0x5b/0x310 [ 1346.952080] create_object.isra.0+0x3a/0xa20 [ 1346.952998] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 1346.954039] kmem_cache_alloc+0x159/0x310 [ 1346.954894] alloc_inode+0x171/0x240 [ 1346.955653] new_inode+0x23/0x250 [ 1346.956368] debugfs_get_inode+0x1a/0x130 [ 1346.957217] __debugfs_create_file+0x14e/0x530 [ 1346.958153] do_blk_trace_setup+0x3fb/0xc10 [ 1346.959031] ? _copy_from_user+0xfb/0x1b0 [ 1346.959874] __blk_trace_setup+0xca/0x180 [ 1346.960748] ? do_blk_trace_setup+0xc10/0xc10 [ 1346.961677] ? perf_trace_lock+0xac/0x490 [ 1346.962561] blk_trace_setup+0x43/0x60 [ 1346.963361] sg_ioctl_common+0x634/0x2570 [ 1346.964205] ? __sanitizer_cov_trace_switch+0x45/0x80 [ 1346.965281] ? do_vfs_ioctl+0x283/0x10d0 [ 1346.966107] ? sg_write+0x120/0x120 [ 1346.966844] ? generic_block_fiemap+0x60/0x60 [ 1346.967759] ? __mutex_unlock_slowpath+0xe1/0x600 [ 1346.968764] ? selinux_file_ioctl+0xb6/0x270 [ 1346.969657] ? sg_compat_ioctl+0x120/0x120 [ 1346.970516] sg_ioctl+0x8f/0x120 [ 1346.971215] __x64_sys_ioctl+0x19a/0x210 [ 1346.972045] do_syscall_64+0x33/0x40 [ 1346.972838] entry_SYSCALL_64_after_hwframe+0x62/0xc7 [ 1346.973883] RIP: 0033:0x7f661a573b19 [ 1346.974647] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1346.978426] RSP: 002b:00007f6617ae9188 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 1346.979975] RAX: ffffffffffffffda RBX: 00007f661a686f60 RCX: 00007f661a573b19 [ 1346.981440] RDX: 0000000020000140 RSI: 00000000c0481273 RDI: 0000000000000003 [ 1346.982889] RBP: 00007f6617ae91d0 R08: 0000000000000000 R09: 0000000000000000 [ 1346.984345] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 1346.985810] R13: 00007ffd527cbf9f R14: 00007f6617ae9300 R15: 0000000000022000 23:42:09 executing program 2: r0 = add_key$keyring(&(0x7f0000000040), &(0x7f00000002c0)={'syz', 0x3}, 0x0, 0x0, 0xfffffffffffffffd) keyctl$KEYCTL_RESTRICT_KEYRING(0xf, r0, 0x0, 0x0) connect$inet(0xffffffffffffffff, &(0x7f0000000140)={0x2, 0x0, @dev}, 0x10) r1 = syz_open_dev$sg(&(0x7f0000000040), 0x0, 0x0) ioctl$BLKTRACETEARDOWN(r1, 0x1276, 0x0) ioctl$BLKTRACESETUP(r1, 0xc0481273, &(0x7f0000000140)={'\x00', 0x0, 0x4, 0x8, 0x76}) (fail_nth: 19) 23:42:09 executing program 1: perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = syz_io_uring_setup(0x3a75, &(0x7f0000000080), &(0x7f0000ffb000/0x3000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=0x0, &(0x7f0000000100)=0x0) r3 = socket$inet6_udplite(0xa, 0x2, 0x88) syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_RECVMSG={0xa, 0x0, 0x0, r3, 0x0, &(0x7f0000000440)={0x0, 0x0, 0x0}, 0x0, 0x40000203}, 0x0) mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0) r4 = mmap$IORING_OFF_CQ_RING(&(0x7f0000ffe000/0x2000)=nil, 0x2000, 0xf, 0x13, r0, 0x8000000) syz_io_uring_submit(r4, r2, &(0x7f00000002c0)=@IORING_OP_READ=@pass_buffer={0x16, 0x4, 0x0, @fd, 0x0, 0x0}, 0x80000001) syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1) dup2(0xffffffffffffffff, r3) io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0) 23:42:09 executing program 6: ioctl$VT_RESIZEX(0xffffffffffffffff, 0x560a, &(0x7f0000000000)={0x0, 0x0, 0x4, 0x0, 0x1d}) read$eventfd(0xffffffffffffffff, 0x0, 0x0) ioctl$KDFONTOP_COPY(0xffffffffffffffff, 0x4b72, &(0x7f0000000500)={0x3, 0x0, 0xb, 0x40000007, 0x65, &(0x7f0000000100)}) r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000040), 0x9c300, 0x0) r1 = openat$pidfd(0xffffffffffffff9c, &(0x7f0000000540), 0x208000, 0x0) ioctl$F2FS_IOC_GARBAGE_COLLECT(r1, 0x4004f506, &(0x7f0000000580)=0x1) ioctl$AUTOFS_DEV_IOCTL_PROTOVER(0xffffffffffffffff, 0xc0189372, &(0x7f0000000080)=ANY=[@ANYRES32=r0, @ANYRES32=r0, @ANYRESDEC=r0]) ioctl$TCSETSF(r2, 0x5404, &(0x7f00000000c0)={0xdb, 0x80000000, 0x80000000, 0xfffffff9, 0x11, "9a6ff98a3102e828e2ee023a3085a48dbd866f"}) ioctl$KDSETLED(r0, 0x4b32, 0x80000000) r3 = dup2(0xffffffffffffffff, r0) fsetxattr$security_capability(r3, &(0x7f00000005c0), &(0x7f0000000600)=@v1={0x1000000, [{0x9, 0x2}]}, 0xc, 0x1) openat$ptmx(0xffffffffffffff9c, &(0x7f0000000640), 0x252600, 0x0) syz_open_pts(r0, 0x20000) 23:42:09 executing program 7: perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_mount_image$vfat(&(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x0, 0x2, &(0x7f0000000180)=[{&(0x7f0000000140)="eb3c906d6b66732e66617400020801000470008400f801", 0x17}, {0x0, 0x0, 0x1000a00}], 0x0, &(0x7f0000000240)=ANY=[]) (fail_nth: 46) 23:42:09 executing program 3: r0 = syz_open_dev$tty1(0xc, 0x4, 0x1) writev(r0, &(0x7f0000000080)=[{&(0x7f0000001380)="3ead823d27b1f38d08b83fca92a1f8f4a79624a264eb3d23f624cb63a9a475c4336e3015462fa8b76b1c5fb9b159eaa406698e2f3dcd71c5ba4e666731496d8ddd1bbaae50714c9ccdc53444b41f6df995ce4a1e6b9807bce8fa3e046360e5d1b228a3367e2315a985fcf8542b6a2e58eff19d99aa1de724345dd5786c63d31c197c760ac73dc10c91fcf49125d4dd5e1d4c952eeabf70f80b092c914e00cd0e75bdea96065d75447e5e2917619f3d3e2662b99fac83e65ca6fb6fc547ce903e960595bafc4990dfa6263d2dd2268b3f6f3df3b1603e198bc4011a4b1c43c686ff811d9a346aabe8c9f33c2c5e0ab15e288917c0de80a9d49e72e1efc8db344b3a715702fd03a0e9e2387cc5032967d44d8b3b68383f6c89c842ec2eadc06d1e5133067d6b3f11647561748b7d4185cab428d5fbf98ea4100f2276af2fec68da7e57d65c185e261b6790c65ebb5f98cb027d065d424a65705b15be6eda2b4ba4f6a337f711fc7088d216cb59a744bc5a0d0f059b11d6d7c0784065277076525027223b82fdcc899b2de92a710082edf89a57c0bf416899d2f8ad2cad43e5018b52025096784ecd82a29c00a8bf5ffa6e3b75fe641acf39885c084ae7e546f04224aeb23f61d99fc464a533fc6b87790e335057b54dbff233ced4a7ef90884dc7d90d678cc080024b9b4a", 0x1ea}], 0x1) 23:42:09 executing program 5: perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r0 = syz_mount_image$vfat(&(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x0, 0x2, &(0x7f0000000180)=[{&(0x7f0000000140)="eb3c906d6b66732e66617400020801000470008400f801", 0x17}, {0x0, 0x0, 0x1000a00}], 0x0, &(0x7f0000000240)=ANY=[]) openat2(r0, &(0x7f0000000100)='./file0\x00', &(0x7f00000001c0)={0x40040, 0x480}, 0x18) 23:42:09 executing program 4: perf_event_open(&(0x7f0000001d80)={0x2, 0x80, 0x69, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = socket$inet6_udp(0xa, 0x2, 0x0) dup(0xffffffffffffffff) fstat(0xffffffffffffffff, 0x0) connect$inet6(r0, &(0x7f0000000600)={0xa, 0x0, 0x0, @dev, 0x2}, 0x1c) sendmmsg$inet6(r0, &(0x7f0000000080)=[{{0x0, 0x0, &(0x7f00000004c0)=[{&(0x7f00000001c0)="4bc702854e3954b59347985ccc868289d3fe483d2c0900a2a1d12e33a66529e1f276fef452632dfa3c004ce3be84a5f66c29cd4ec39ae5206562fbc9ea3c0dbbebc22e628e147b0e9631f19b0ce0a48e0e675b2da3442226b898f1ddf8eabf133ab4a9cb0999c2ee1d3bd36d089b0d8e97ea00d4c5f6ad14dce058d595aacba2d587ff5eacd81b71a73f53ed276d1f3b3384bb2bfba4e0f37302e690df9e7024378ac754ac0576f996f3ee53d1034c7720767ddf2625817532f7ae89103367b73a36152b84c38bc227ba9e9ff48bcfe027585cf14bff37a888", 0xff41}], 0x1}}], 0x1, 0x0) (fail_nth: 11) 23:42:09 executing program 0: r0 = syz_mount_image$vfat(&(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x0, 0x2, &(0x7f0000000180)=[{&(0x7f0000000140)="eb3c906d6b66732e66617400020801000470008400f801", 0x17}, {0x0, 0x0, 0x1000a00}], 0x0, &(0x7f0000000240)=ANY=[]) openat2(r0, &(0x7f0000000100)='./file0\x00', &(0x7f00000001c0)={0x40040, 0x8}, 0x18) [ 1359.765876] FAULT_INJECTION: forcing a failure. [ 1359.765876] name failslab, interval 1, probability 0, space 0, times 0 [ 1359.768192] CPU: 1 PID: 8375 Comm: syz-executor.7 Not tainted 5.10.194 #1 [ 1359.769550] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1359.771188] Call Trace: [ 1359.771732] dump_stack+0x107/0x167 [ 1359.772476] should_fail.cold+0x5/0xa [ 1359.773255] ? create_object.isra.0+0x3a/0xa20 [ 1359.774163] should_failslab+0x5/0x20 [ 1359.774951] kmem_cache_alloc+0x5b/0x310 [ 1359.775785] create_object.isra.0+0x3a/0xa20 [ 1359.776691] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 1359.777752] kmem_cache_alloc_node+0x169/0x330 [ 1359.778696] __alloc_skb+0x6d/0x5b0 [ 1359.779441] alloc_uevent_skb+0x7b/0x210 [ 1359.780265] kobject_uevent_env+0x99a/0xf90 [ 1359.781166] loop_configure+0x116c/0x1480 [ 1359.782014] lo_ioctl+0xa72/0x1760 [ 1359.782737] ? avc_has_extended_perms+0x7f1/0xf40 [ 1359.783709] ? loop_set_status_old+0x250/0x250 [ 1359.784631] ? avc_ss_reset+0x180/0x180 [ 1359.785461] ? lock_acquire+0x197/0x470 [ 1359.786265] ? find_held_lock+0x2c/0x110 [ 1359.787099] ? __lock_acquire+0xbb1/0x5b00 [ 1359.788005] ? selinux_bprm_creds_for_exec+0xb60/0xb60 [ 1359.789068] ? generic_block_fiemap+0x60/0x60 [ 1359.789996] ? loop_set_status_old+0x250/0x250 [ 1359.790905] blkdev_ioctl+0x291/0x710 [ 1359.791678] ? blkdev_common_ioctl+0x1870/0x1870 [ 1359.792642] ? selinux_file_ioctl+0xb6/0x270 [ 1359.793552] block_ioctl+0xf9/0x140 [ 1359.794294] ? blkdev_read_iter+0x1c0/0x1c0 [ 1359.795160] __x64_sys_ioctl+0x19a/0x210 [ 1359.795986] do_syscall_64+0x33/0x40 [ 1359.796740] entry_SYSCALL_64_after_hwframe+0x62/0xc7 [ 1359.797772] RIP: 0033:0x7f4966db88d7 [ 1359.798522] Code: 3c 1c 48 f7 d8 49 39 c4 72 b8 e8 a4 54 02 00 85 c0 78 bd 48 83 c4 08 4c 89 e0 5b 41 5c c3 0f 1f 44 00 00 b8 10 00 00 00 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1359.802235] RSP: 002b:00007f496432df48 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 1359.803765] RAX: ffffffffffffffda RBX: 00007f4966e02970 RCX: 00007f4966db88d7 [ 1359.805229] RDX: 0000000000000005 RSI: 0000000000004c00 RDI: 0000000000000006 [ 1359.806667] RBP: 0000000000000006 R08: 0000000000000000 R09: ffffffffffffffff [ 1359.808109] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000005 [ 1359.809561] R13: 0000000000000005 R14: 00000000200001b0 R15: 0000000000000002 23:42:09 executing program 6: r0 = syz_open_dev$tty20(0xc, 0x4, 0x1) ioctl$VT_RESIZEX(r0, 0x560a, &(0x7f0000000000)={0xa, 0x0, 0x0, 0x0, 0x1d, 0xc00}) ioctl$PIO_UNIMAP(r0, 0x4b67, &(0x7f0000000080)={0x3, &(0x7f0000000040)=[{0x1ff, 0x1}, {0x7ff, 0x7}, {0x2, 0xdaf3}]}) 23:42:10 executing program 3: r0 = syz_open_dev$tty1(0xc, 0x4, 0x1) writev(r0, &(0x7f0000000080)=[{&(0x7f0000001380)="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", 0x1ea}], 0x1) 23:42:10 executing program 0: r0 = syz_mount_image$vfat(&(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x0, 0x2, &(0x7f0000000180)=[{&(0x7f0000000140)="eb3c906d6b66732e66617400020801000470008400f801", 0x17}, {0x0, 0x0, 0x1000a00}], 0x0, &(0x7f0000000240)=ANY=[]) openat2(r0, &(0x7f0000000100)='./file0\x00', &(0x7f00000001c0)={0x40040, 0x8}, 0x18) 23:42:10 executing program 6: r0 = syz_open_dev$tty20(0xc, 0x4, 0x1) ioctl$TIOCL_SETVESABLANK(r0, 0x541c, &(0x7f0000000040)) ioctl$AUTOFS_DEV_IOCTL_PROTOSUBVER(0xffffffffffffffff, 0xc0189373, &(0x7f0000000080)={{0x1, 0x1, 0x18, r0, {0x5ae}}, './file0\x00'}) ioctl$TCSETSW2(r1, 0x402c542c, &(0x7f00000000c0)={0x77065242, 0xb365, 0x1ed3, 0x6, 0x81, "f9a92a0738a04863397b1c9ea29fc2af6051c1", 0x1}) ioctl$VT_RESIZEX(r0, 0x560a, &(0x7f0000000000)={0x1, 0x0, 0x0, 0x0, 0x1d}) [ 1360.005824] FAULT_INJECTION: forcing a failure. [ 1360.005824] name failslab, interval 1, probability 0, space 0, times 0 [ 1360.008176] CPU: 1 PID: 8382 Comm: syz-executor.2 Not tainted 5.10.194 #1 [ 1360.009596] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1360.011286] Call Trace: [ 1360.011835] dump_stack+0x107/0x167 [ 1360.012578] should_fail.cold+0x5/0xa [ 1360.013364] ? security_inode_alloc+0x34/0x160 [ 1360.014299] should_failslab+0x5/0x20 [ 1360.015071] kmem_cache_alloc+0x5b/0x310 [ 1360.015905] security_inode_alloc+0x34/0x160 [ 1360.016808] inode_init_always+0xa4e/0xd10 [ 1360.017677] alloc_inode+0x84/0x240 [ 1360.018414] new_inode+0x23/0x250 [ 1360.019119] debugfs_get_inode+0x1a/0x130 [ 1360.019962] __debugfs_create_file+0x14e/0x530 [ 1360.020911] do_blk_trace_setup+0x3fb/0xc10 [ 1360.021803] ? _copy_from_user+0xfb/0x1b0 [ 1360.022654] __blk_trace_setup+0xca/0x180 [ 1360.023497] ? do_blk_trace_setup+0xc10/0xc10 [ 1360.024414] ? perf_trace_lock+0xac/0x490 [ 1360.025272] blk_trace_setup+0x43/0x60 [ 1360.026073] sg_ioctl_common+0x634/0x2570 [ 1360.026917] ? __sanitizer_cov_trace_switch+0x45/0x80 [ 1360.027963] ? do_vfs_ioctl+0x283/0x10d0 [ 1360.028787] ? sg_write+0x120/0x120 [ 1360.029532] ? generic_block_fiemap+0x60/0x60 [ 1360.030450] ? __mutex_unlock_slowpath+0xe1/0x600 [ 1360.031443] ? selinux_file_ioctl+0xb6/0x270 [ 1360.032328] ? sg_compat_ioctl+0x120/0x120 [ 1360.033199] sg_ioctl+0x8f/0x120 [ 1360.033889] __x64_sys_ioctl+0x19a/0x210 [ 1360.034720] do_syscall_64+0x33/0x40 [ 1360.035480] entry_SYSCALL_64_after_hwframe+0x62/0xc7 [ 1360.036511] RIP: 0033:0x7f661a573b19 [ 1360.037275] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1360.040995] RSP: 002b:00007f6617ac8188 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 1360.042535] RAX: ffffffffffffffda RBX: 00007f661a687020 RCX: 00007f661a573b19 [ 1360.043974] RDX: 0000000020000140 RSI: 00000000c0481273 RDI: 0000000000000003 [ 1360.045418] RBP: 00007f6617ac81d0 R08: 0000000000000000 R09: 0000000000000000 [ 1360.046857] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 1360.048302] R13: 00007ffd527cbf9f R14: 00007f6617ac8300 R15: 0000000000022000 [ 1360.049874] debugfs: out of free dentries, can not create file 'dropped' 23:42:10 executing program 0: perf_event_open(0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r0 = syz_mount_image$vfat(&(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x0, 0x2, &(0x7f0000000180)=[{&(0x7f0000000140)="eb3c906d6b66732e66617400020801000470008400f801", 0x17}, {0x0, 0x0, 0x1000a00}], 0x0, &(0x7f0000000240)=ANY=[]) openat2(r0, &(0x7f0000000100)='./file0\x00', &(0x7f00000001c0)={0x40040, 0x8}, 0x18) 23:42:10 executing program 7: perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_mount_image$vfat(&(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x0, 0x2, &(0x7f0000000180)=[{&(0x7f0000000140)="eb3c906d6b66732e66617400020801000470008400f801", 0x17}, {0x0, 0x0, 0x1000a00}], 0x0, &(0x7f0000000240)=ANY=[]) (fail_nth: 47) 23:42:10 executing program 5: perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r0 = syz_mount_image$vfat(&(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x0, 0x2, &(0x7f0000000180)=[{&(0x7f0000000140)="eb3c906d6b66732e66617400020801000470008400f801", 0x17}, {0x0, 0x0, 0x1000a00}], 0x0, &(0x7f0000000240)=ANY=[]) openat2(r0, &(0x7f0000000100)='./file0\x00', &(0x7f00000001c0)={0x40040, 0x500}, 0x18) 23:42:10 executing program 2: r0 = add_key$keyring(&(0x7f0000000040), &(0x7f00000002c0)={'syz', 0x3}, 0x0, 0x0, 0xfffffffffffffffd) keyctl$KEYCTL_RESTRICT_KEYRING(0xf, r0, 0x0, 0x0) connect$inet(0xffffffffffffffff, &(0x7f0000000140)={0x2, 0x0, @dev}, 0x10) r1 = syz_open_dev$sg(&(0x7f0000000040), 0x0, 0x0) ioctl$BLKTRACETEARDOWN(r1, 0x1276, 0x0) ioctl$BLKTRACESETUP(r1, 0xc0481273, &(0x7f0000000140)={'\x00', 0x0, 0x4, 0x8, 0x76}) (fail_nth: 20) 23:42:10 executing program 1: perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = syz_io_uring_setup(0x3a75, &(0x7f0000000080), &(0x7f0000ffb000/0x3000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=0x0, &(0x7f0000000100)=0x0) r3 = socket$inet6_udplite(0xa, 0x2, 0x88) syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_RECVMSG={0xa, 0x0, 0x0, r3, 0x0, &(0x7f0000000440)={0x0, 0x0, 0x0}, 0x0, 0x40000203}, 0x0) mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0) r4 = mmap$IORING_OFF_CQ_RING(&(0x7f0000ffe000/0x2000)=nil, 0x2000, 0xf, 0x13, r0, 0x8000000) syz_io_uring_submit(r4, r2, &(0x7f00000002c0)=@IORING_OP_READ=@pass_buffer={0x16, 0x4, 0x0, @fd, 0x0, 0x0}, 0x80000001) syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1) dup2(0xffffffffffffffff, r3) io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0) [ 1360.179529] FAULT_INJECTION: forcing a failure. [ 1360.179529] name failslab, interval 1, probability 0, space 0, times 0 [ 1360.182098] CPU: 0 PID: 8410 Comm: syz-executor.7 Not tainted 5.10.194 #1 [ 1360.183517] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1360.185271] Call Trace: [ 1360.185843] dump_stack+0x107/0x167 [ 1360.186618] should_fail.cold+0x5/0xa [ 1360.187409] ? skb_clone+0x14f/0x3d0 [ 1360.188207] should_failslab+0x5/0x20 [ 1360.189009] kmem_cache_alloc+0x5b/0x310 [ 1360.189874] skb_clone+0x14f/0x3d0 [ 1360.190623] netlink_broadcast_filtered+0xa08/0xdc0 [ 1360.191704] netlink_broadcast+0x35/0x50 [ 1360.192566] kobject_uevent_env+0x93d/0xf90 [ 1360.193547] loop_configure+0x116c/0x1480 [ 1360.194444] lo_ioctl+0xa72/0x1760 [ 1360.195192] ? avc_has_extended_perms+0x7f1/0xf40 [ 1360.196206] ? loop_set_status_old+0x250/0x250 [ 1360.197177] ? avc_ss_reset+0x180/0x180 [ 1360.198017] ? lock_acquire+0x197/0x470 [ 1360.198846] ? find_held_lock+0x2c/0x110 [ 1360.199724] ? perf_trace_run_bpf_submit+0xf5/0x190 [ 1360.200756] ? perf_trace_run_bpf_submit+0xf5/0x190 [ 1360.201890] ? selinux_bprm_creds_for_exec+0xb60/0xb60 [ 1360.202988] ? generic_block_fiemap+0x60/0x60 [ 1360.203942] ? loop_set_status_old+0x250/0x250 [ 1360.204907] blkdev_ioctl+0x291/0x710 [ 1360.205699] ? blkdev_common_ioctl+0x1870/0x1870 [ 1360.206693] ? selinux_file_ioctl+0xb6/0x270 [ 1360.207628] block_ioctl+0xf9/0x140 [ 1360.208388] ? blkdev_read_iter+0x1c0/0x1c0 [ 1360.209294] __x64_sys_ioctl+0x19a/0x210 [ 1360.210155] do_syscall_64+0x33/0x40 [ 1360.210936] entry_SYSCALL_64_after_hwframe+0x62/0xc7 [ 1360.211995] RIP: 0033:0x7f4966db88d7 [ 1360.212769] Code: 3c 1c 48 f7 d8 49 39 c4 72 b8 e8 a4 54 02 00 85 c0 78 bd 48 83 c4 08 4c 89 e0 5b 41 5c c3 0f 1f 44 00 00 b8 10 00 00 00 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1360.216560] RSP: 002b:00007f496432df48 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 1360.218147] RAX: ffffffffffffffda RBX: 00007f4966e02970 RCX: 00007f4966db88d7 [ 1360.219619] RDX: 0000000000000005 RSI: 0000000000004c00 RDI: 0000000000000006 [ 1360.221095] RBP: 0000000000000006 R08: 0000000000000000 R09: ffffffffffffffff [ 1360.222568] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000005 [ 1360.224039] R13: 0000000000000005 R14: 00000000200001b0 R15: 0000000000000002 [ 1360.252038] FAULT_INJECTION: forcing a failure. [ 1360.252038] name failslab, interval 1, probability 0, space 0, times 0 [ 1360.254418] CPU: 0 PID: 8414 Comm: syz-executor.2 Not tainted 5.10.194 #1 [ 1360.255829] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1360.257557] Call Trace: [ 1360.258110] dump_stack+0x107/0x167 [ 1360.258882] should_fail.cold+0x5/0xa [ 1360.259679] ? create_object.isra.0+0x3a/0xa20 [ 1360.260641] should_failslab+0x5/0x20 [ 1360.261433] kmem_cache_alloc+0x5b/0x310 [ 1360.262287] create_object.isra.0+0x3a/0xa20 [ 1360.263197] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 1360.264257] kmem_cache_alloc+0x159/0x310 [ 1360.265149] security_inode_alloc+0x34/0x160 [ 1360.266071] inode_init_always+0xa4e/0xd10 [ 1360.266945] alloc_inode+0x84/0x240 [ 1360.267695] new_inode+0x23/0x250 [ 1360.268416] debugfs_get_inode+0x1a/0x130 [ 1360.269283] __debugfs_create_file+0x14e/0x530 [ 1360.270235] do_blk_trace_setup+0x3fb/0xc10 [ 1360.271126] ? _copy_from_user+0xfb/0x1b0 [ 1360.271985] __blk_trace_setup+0xca/0x180 [ 1360.272842] ? do_blk_trace_setup+0xc10/0xc10 [ 1360.273787] ? perf_trace_lock+0xac/0x490 [ 1360.274657] blk_trace_setup+0x43/0x60 [ 1360.275466] sg_ioctl_common+0x634/0x2570 [ 1360.276331] ? __sanitizer_cov_trace_switch+0x45/0x80 [ 1360.277411] ? do_vfs_ioctl+0x283/0x10d0 [ 1360.278249] ? sg_write+0x120/0x120 [ 1360.279000] ? generic_block_fiemap+0x60/0x60 [ 1360.279927] ? __mutex_unlock_slowpath+0xe1/0x600 [ 1360.280951] ? selinux_file_ioctl+0xb6/0x270 [ 1360.281855] ? sg_compat_ioctl+0x120/0x120 [ 1360.282726] sg_ioctl+0x8f/0x120 [ 1360.283434] __x64_sys_ioctl+0x19a/0x210 [ 1360.284278] do_syscall_64+0x33/0x40 [ 1360.285075] entry_SYSCALL_64_after_hwframe+0x62/0xc7 [ 1360.286135] RIP: 0033:0x7f661a573b19 [ 1360.286908] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1360.290700] RSP: 002b:00007f6617ac8188 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 1360.292266] RAX: ffffffffffffffda RBX: 00007f661a687020 RCX: 00007f661a573b19 [ 1360.293744] RDX: 0000000020000140 RSI: 00000000c0481273 RDI: 0000000000000003 [ 1360.295214] RBP: 00007f6617ac81d0 R08: 0000000000000000 R09: 0000000000000000 [ 1360.296696] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 1360.298205] R13: 00007ffd527cbf9f R14: 00007f6617ac8300 R15: 0000000000022000 23:42:28 executing program 3: r0 = syz_open_dev$tty1(0xc, 0x4, 0x1) writev(r0, &(0x7f0000000080)=[{&(0x7f0000001380)="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", 0x1ea}], 0x1) 23:42:28 executing program 1: perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = syz_io_uring_setup(0x3a75, &(0x7f0000000080), &(0x7f0000ffb000/0x3000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=0x0, &(0x7f0000000100)=0x0) r3 = socket$inet6_udplite(0xa, 0x2, 0x88) syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_RECVMSG={0xa, 0x0, 0x0, r3, 0x0, &(0x7f0000000440)={0x0, 0x0, 0x0}, 0x0, 0x40000203}, 0x0) mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0) r4 = mmap$IORING_OFF_CQ_RING(&(0x7f0000ffe000/0x2000)=nil, 0x2000, 0xf, 0x13, r0, 0x8000000) syz_io_uring_submit(r4, r2, &(0x7f00000002c0)=@IORING_OP_READ=@pass_buffer={0x16, 0x4, 0x0, @fd, 0x0, 0x0}, 0x80000001) r5 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1) dup2(r5, 0xffffffffffffffff) io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0) 23:42:28 executing program 2: r0 = add_key$keyring(&(0x7f0000000040), &(0x7f00000002c0)={'syz', 0x3}, 0x0, 0x0, 0xfffffffffffffffd) keyctl$KEYCTL_RESTRICT_KEYRING(0xf, r0, 0x0, 0x0) connect$inet(0xffffffffffffffff, &(0x7f0000000140)={0x2, 0x0, @dev}, 0x10) r1 = syz_open_dev$sg(&(0x7f0000000040), 0x0, 0x0) ioctl$BLKTRACETEARDOWN(r1, 0x1276, 0x0) ioctl$BLKTRACESETUP(r1, 0xc0481273, &(0x7f0000000140)={'\x00', 0x0, 0x4, 0x8, 0x76}) (fail_nth: 21) 23:42:28 executing program 6: r0 = syz_open_dev$tty20(0xc, 0x4, 0x0) write$binfmt_elf64(r0, &(0x7f0000000080)={{0x7f, 0x45, 0x4c, 0x46, 0x3, 0x7c, 0x0, 0x1, 0xe6, 0x2, 0x3e, 0x1, 0x234, 0x40, 0x112, 0x9, 0x1, 0x38, 0x2, 0x7, 0x7, 0x8}, [{0x70000000, 0x0, 0x7fffffff, 0x0, 0xf7, 0x800, 0x9}], "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", ['\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00']}, 0x1778) ioctl$VT_RESIZEX(r0, 0x560a, &(0x7f0000000040)={0x6, 0x3, 0x5, 0xfffe, 0x1d, 0x1}) 23:42:28 executing program 4: perf_event_open(&(0x7f0000001d80)={0x2, 0x80, 0x69, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = socket$inet6_udp(0xa, 0x2, 0x0) dup(0xffffffffffffffff) fstat(0xffffffffffffffff, 0x0) connect$inet6(r0, &(0x7f0000000600)={0xa, 0x0, 0x0, @dev, 0x2}, 0x1c) sendmmsg$inet6(r0, &(0x7f0000000080)=[{{0x0, 0x0, &(0x7f00000004c0)=[{&(0x7f00000001c0)="4bc702854e3954b59347985ccc868289d3fe483d2c0900a2a1d12e33a66529e1f276fef452632dfa3c004ce3be84a5f66c29cd4ec39ae5206562fbc9ea3c0dbbebc22e628e147b0e9631f19b0ce0a48e0e675b2da3442226b898f1ddf8eabf133ab4a9cb0999c2ee1d3bd36d089b0d8e97ea00d4c5f6ad14dce058d595aacba2d587ff5eacd81b71a73f53ed276d1f3b3384bb2bfba4e0f37302e690df9e7024378ac754ac0576f996f3ee53d1034c7720767ddf2625817532f7ae89103367b73a36152b84c38bc227ba9e9ff48bcfe027585cf14bff37a888", 0xff41}], 0x1}}], 0x1, 0x0) 23:42:28 executing program 0: perf_event_open(0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r0 = syz_mount_image$vfat(&(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x0, 0x2, &(0x7f0000000180)=[{&(0x7f0000000140)="eb3c906d6b66732e66617400020801000470008400f801", 0x17}, {0x0, 0x0, 0x1000a00}], 0x0, &(0x7f0000000240)=ANY=[]) openat2(r0, &(0x7f0000000100)='./file0\x00', &(0x7f00000001c0)={0x40040, 0x8}, 0x18) 23:42:28 executing program 5: perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r0 = syz_mount_image$vfat(&(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x0, 0x2, &(0x7f0000000180)=[{&(0x7f0000000140)="eb3c906d6b66732e66617400020801000470008400f801", 0x17}, {0x0, 0x0, 0x1000a00}], 0x0, &(0x7f0000000240)=ANY=[]) openat2(r0, &(0x7f0000000100)='./file0\x00', &(0x7f00000001c0)={0x40040, 0x600}, 0x18) 23:42:28 executing program 7: perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_mount_image$vfat(&(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x0, 0x2, &(0x7f0000000180)=[{&(0x7f0000000140)="eb3c906d6b66732e66617400020801000470008400f801", 0x17}, {0x0, 0x0, 0x1000a00}], 0x0, &(0x7f0000000240)=ANY=[]) (fail_nth: 48) [ 1378.032376] FAULT_INJECTION: forcing a failure. [ 1378.032376] name fail_page_alloc, interval 1, probability 0, space 0, times 0 [ 1378.032395] CPU: 0 PID: 8424 Comm: syz-executor.2 Not tainted 5.10.194 #1 [ 1378.032405] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1378.032411] Call Trace: [ 1378.032437] dump_stack+0x107/0x167 [ 1378.032458] should_fail.cold+0x5/0xa [ 1378.032481] __alloc_pages_nodemask+0x182/0x600 [ 1378.032501] ? lock_acquire+0x197/0x470 [ 1378.032517] ? lockref_get+0x11/0x50 [ 1378.032534] ? __alloc_pages_slowpath.constprop.0+0x2130/0x2130 23:42:28 executing program 5: perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r0 = syz_mount_image$vfat(&(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x0, 0x2, &(0x7f0000000180)=[{&(0x7f0000000140)="eb3c906d6b66732e66617400020801000470008400f801", 0x17}, {0x0, 0x0, 0x1000a00}], 0x0, &(0x7f0000000240)=ANY=[]) openat2(r0, &(0x7f0000000100)='./file0\x00', &(0x7f00000001c0)={0x40040, 0x700}, 0x18) 23:42:28 executing program 0: perf_event_open(0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r0 = syz_mount_image$vfat(&(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x0, 0x2, &(0x7f0000000180)=[{&(0x7f0000000140)="eb3c906d6b66732e66617400020801000470008400f801", 0x17}, {0x0, 0x0, 0x1000a00}], 0x0, &(0x7f0000000240)=ANY=[]) openat2(r0, &(0x7f0000000100)='./file0\x00', &(0x7f00000001c0)={0x40040, 0x8}, 0x18) [ 1378.032559] ? lock_downgrade+0x6d0/0x6d0 [ 1378.032576] ? do_raw_spin_lock+0x121/0x260 [ 1378.032595] ? rwlock_bug.part.0+0x90/0x90 [ 1378.032616] alloc_pages_current+0x187/0x280 [ 1378.032639] __get_free_pages+0xc/0xa0 [ 1378.032655] inode_doinit_with_dentry+0x8f1/0x1240 [ 1378.032677] ? hrtimer_try_to_cancel.part.0+0x267/0x3b0 23:42:28 executing program 7: perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_mount_image$vfat(&(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x0, 0x2, &(0x7f0000000180)=[{&(0x7f0000000140)="eb3c906d6b66732e66617400020801000470008400f801", 0x17}, {0x0, 0x0, 0x1000a00}], 0x0, &(0x7f0000000240)=ANY=[]) (fail_nth: 49) [ 1378.032691] ? hrtimer_init_sleeper+0x1a0/0x1f0 23:42:28 executing program 2: r0 = add_key$keyring(&(0x7f0000000040), &(0x7f00000002c0)={'syz', 0x3}, 0x0, 0x0, 0xfffffffffffffffd) keyctl$KEYCTL_RESTRICT_KEYRING(0xf, r0, 0x0, 0x0) connect$inet(0xffffffffffffffff, &(0x7f0000000140)={0x2, 0x0, @dev}, 0x10) r1 = syz_open_dev$sg(&(0x7f0000000040), 0x0, 0x0) ioctl$BLKTRACETEARDOWN(r1, 0x1276, 0x0) ioctl$BLKTRACESETUP(r1, 0xc0481273, &(0x7f0000000140)={'\x00', 0x0, 0x4, 0x8, 0x76}) (fail_nth: 22) [ 1378.032707] ? selinux_file_lock+0x280/0x280 [ 1378.032723] ? current_time+0x1e6/0x2c0 [ 1378.032738] ? igrab+0xc0/0xc0 23:42:28 executing program 4: perf_event_open(&(0x7f0000001d80)={0x2, 0x80, 0x69, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = socket$inet6_udp(0xa, 0x2, 0x0) dup(0xffffffffffffffff) fstat(0xffffffffffffffff, 0x0) connect$inet6(r0, &(0x7f0000000600)={0xa, 0x0, 0x0, @dev, 0x2}, 0x1c) sendmmsg$inet6(r0, &(0x7f0000000080)=[{{0x0, 0x0, &(0x7f00000004c0)=[{&(0x7f00000001c0)="4bc702854e3954b59347985ccc868289d3fe483d2c0900a2a1d12e33a66529e1f276fef452632dfa3c004ce3be84a5f66c29cd4ec39ae5206562fbc9ea3c0dbbebc22e628e147b0e9631f19b0ce0a48e0e675b2da3442226b898f1ddf8eabf133ab4a9cb0999c2ee1d3bd36d089b0d8e97ea00d4c5f6ad14dce058d595aacba2d587ff5eacd81b71a73f53ed276d1f3b3384bb2bfba4e0f37302e690df9e7024378ac754ac0576f996f3ee53d1034c7720767ddf2625817532f7ae89103367b73a36152b84c38bc227ba9e9ff48bcfe027585cf14bff37a888", 0xff41}], 0x1}}], 0x1, 0x0) [ 1378.032758] selinux_d_instantiate+0x23/0x30 [ 1378.032777] security_d_instantiate+0x56/0xe0 [ 1378.032797] d_instantiate+0x5a/0x90 [ 1378.032815] __debugfs_create_file+0x246/0x530 [ 1378.032839] do_blk_trace_setup+0x3fb/0xc10 [ 1378.032857] ? _copy_from_user+0xfb/0x1b0 [ 1378.032876] __blk_trace_setup+0xca/0x180 [ 1378.032892] ? do_blk_trace_setup+0xc10/0xc10 [ 1378.032920] ? perf_trace_lock+0xac/0x490 [ 1378.032945] blk_trace_setup+0x43/0x60 [ 1378.032966] sg_ioctl_common+0x634/0x2570 [ 1378.032988] ? __sanitizer_cov_trace_switch+0x45/0x80 [ 1378.033004] ? do_vfs_ioctl+0x283/0x10d0 [ 1378.033019] ? sg_write+0x120/0x120 [ 1378.033034] ? generic_block_fiemap+0x60/0x60 [ 1378.033054] ? __mutex_unlock_slowpath+0xe1/0x600 [ 1378.033098] ? selinux_file_ioctl+0xb6/0x270 [ 1378.033112] ? sg_compat_ioctl+0x120/0x120 [ 1378.033129] sg_ioctl+0x8f/0x120 [ 1378.033148] __x64_sys_ioctl+0x19a/0x210 [ 1378.033169] do_syscall_64+0x33/0x40 [ 1378.033188] entry_SYSCALL_64_after_hwframe+0x62/0xc7 [ 1378.033199] RIP: 0033:0x7f661a573b19 [ 1378.033216] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1378.033225] RSP: 002b:00007f6617ae9188 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 1378.033246] RAX: ffffffffffffffda RBX: 00007f661a686f60 RCX: 00007f661a573b19 [ 1378.033260] RDX: 0000000020000140 RSI: 00000000c0481273 RDI: 0000000000000003 [ 1378.033270] RBP: 00007f6617ae91d0 R08: 0000000000000000 R09: 0000000000000000 [ 1378.033279] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 1378.033289] R13: 00007ffd527cbf9f R14: 00007f6617ae9300 R15: 0000000000022000 [ 1378.060769] FAULT_INJECTION: forcing a failure. [ 1378.060769] name failslab, interval 1, probability 0, space 0, times 0 [ 1378.060788] CPU: 0 PID: 8432 Comm: syz-executor.7 Not tainted 5.10.194 #1 [ 1378.060798] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1378.060805] Call Trace: [ 1378.060829] dump_stack+0x107/0x167 [ 1378.060855] should_fail.cold+0x5/0xa [ 1378.060877] ? create_object.isra.0+0x3a/0xa20 [ 1378.060900] should_failslab+0x5/0x20 [ 1378.060918] kmem_cache_alloc+0x5b/0x310 [ 1378.060934] ? find_held_lock+0x2c/0x110 [ 1378.060963] create_object.isra.0+0x3a/0xa20 [ 1378.060982] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 1378.061010] kmem_cache_alloc+0x159/0x310 [ 1378.061043] skb_clone+0x14f/0x3d0 [ 1378.061074] netlink_broadcast_filtered+0xa08/0xdc0 [ 1378.061155] netlink_broadcast+0x35/0x50 [ 1378.061183] kobject_uevent_env+0x93d/0xf90 [ 1378.061230] loop_configure+0x116c/0x1480 [ 1378.061277] lo_ioctl+0xa72/0x1760 [ 1378.061300] ? avc_has_extended_perms+0x7f1/0xf40 [ 1378.061326] ? loop_set_status_old+0x250/0x250 [ 1378.061353] ? avc_ss_reset+0x180/0x180 [ 1378.061377] ? lock_acquire+0x197/0x470 [ 1378.061393] ? find_held_lock+0x2c/0x110 [ 1378.061439] ? perf_trace_run_bpf_submit+0xf5/0x190 [ 1378.061457] ? perf_trace_run_bpf_submit+0xf5/0x190 [ 1378.061552] ? selinux_bprm_creds_for_exec+0xb60/0xb60 [ 1378.061572] ? generic_block_fiemap+0x60/0x60 [ 1378.061609] ? loop_set_status_old+0x250/0x250 [ 1378.061624] blkdev_ioctl+0x291/0x710 [ 1378.061644] ? blkdev_common_ioctl+0x1870/0x1870 [ 1378.061671] ? selinux_file_ioctl+0xb6/0x270 [ 1378.061700] block_ioctl+0xf9/0x140 [ 1378.061715] ? blkdev_read_iter+0x1c0/0x1c0 [ 1378.061737] __x64_sys_ioctl+0x19a/0x210 [ 1378.061765] do_syscall_64+0x33/0x40 [ 1378.061785] entry_SYSCALL_64_after_hwframe+0x62/0xc7 [ 1378.061797] RIP: 0033:0x7f4966db88d7 [ 1378.061814] Code: 3c 1c 48 f7 d8 49 39 c4 72 b8 e8 a4 54 02 00 85 c0 78 bd 48 83 c4 08 4c 89 e0 5b 41 5c c3 0f 1f 44 00 00 b8 10 00 00 00 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1378.061825] RSP: 002b:00007f496432df48 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 1378.061846] RAX: ffffffffffffffda RBX: 00007f4966e02970 RCX: 00007f4966db88d7 [ 1378.061857] RDX: 0000000000000005 RSI: 0000000000004c00 RDI: 0000000000000006 [ 1378.061868] RBP: 0000000000000006 R08: 0000000000000000 R09: ffffffffffffffff [ 1378.061878] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000005 [ 1378.061889] R13: 0000000000000005 R14: 00000000200001b0 R15: 0000000000000002 [ 1378.289428] FAULT_INJECTION: forcing a failure. [ 1378.289428] name failslab, interval 1, probability 0, space 0, times 0 [ 1378.289451] CPU: 1 PID: 8452 Comm: syz-executor.2 Not tainted 5.10.194 #1 [ 1378.289463] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1378.289469] Call Trace: [ 1378.289499] dump_stack+0x107/0x167 [ 1378.289526] should_fail.cold+0x5/0xa [ 1378.289551] ? __d_alloc+0x2a/0x990 [ 1378.289576] should_failslab+0x5/0x20 [ 1378.289596] kmem_cache_alloc+0x5b/0x310 [ 1378.289626] __d_alloc+0x2a/0x990 [ 1378.289658] d_alloc_parallel+0x111/0x1bc0 [ 1378.289696] ? __lock_acquire+0x1657/0x5b00 [ 1378.289720] ? perf_trace_lock+0xac/0x490 [ 1378.289750] ? __d_lookup_rcu+0x6d0/0x6d0 [ 1378.289770] ? __lockdep_reset_lock+0x180/0x180 [ 1378.289796] ? lockdep_init_map_type+0x2c7/0x780 [ 1378.289822] ? lockdep_init_map_type+0x2c7/0x780 [ 1378.289860] __lookup_slow+0x193/0x490 [ 1378.289886] ? lookup_open.isra.0+0x1270/0x1270 [ 1378.289922] ? __d_lookup+0x3bf/0x760 [ 1378.289960] ? d_lookup+0xcc/0x130 [ 1378.289991] lookup_one_len+0x167/0x1a0 [ 1378.290014] ? __lookup_slow+0x490/0x490 [ 1378.290035] ? down_write_killable+0x180/0x180 [ 1378.290058] ? do_raw_spin_unlock+0x4f/0x220 [ 1378.290078] ? mntput+0xc/0x90 [ 1378.290109] start_creating.part.0+0x10a/0x230 [ 1378.290135] __debugfs_create_file+0xdb/0x530 [ 1378.290164] do_blk_trace_setup+0x43c/0xc10 [ 1378.290193] ? _copy_from_user+0xfb/0x1b0 [ 1378.290217] __blk_trace_setup+0xca/0x180 [ 1378.290238] ? do_blk_trace_setup+0xc10/0xc10 [ 1378.290272] ? perf_trace_lock+0xac/0x490 [ 1378.290304] blk_trace_setup+0x43/0x60 [ 1378.290331] sg_ioctl_common+0x634/0x2570 [ 1378.290356] ? __sanitizer_cov_trace_switch+0x45/0x80 [ 1378.290377] ? do_vfs_ioctl+0x283/0x10d0 [ 1378.290395] ? sg_write+0x120/0x120 [ 1378.290414] ? generic_block_fiemap+0x60/0x60 [ 1378.290438] ? __mutex_unlock_slowpath+0xe1/0x600 [ 1378.290481] ? selinux_file_ioctl+0xb6/0x270 [ 1378.290499] ? sg_compat_ioctl+0x120/0x120 [ 1378.290521] sg_ioctl+0x8f/0x120 [ 1378.290545] __x64_sys_ioctl+0x19a/0x210 [ 1378.290572] do_syscall_64+0x33/0x40 [ 1378.290596] entry_SYSCALL_64_after_hwframe+0x62/0xc7 [ 1378.290610] RIP: 0033:0x7f661a573b19 [ 1378.290631] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1378.290643] RSP: 002b:00007f6617ae9188 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 1378.290667] RAX: ffffffffffffffda RBX: 00007f661a686f60 RCX: 00007f661a573b19 [ 1378.290680] RDX: 0000000020000140 RSI: 00000000c0481273 RDI: 0000000000000003 [ 1378.290693] RBP: 00007f6617ae91d0 R08: 0000000000000000 R09: 0000000000000000 [ 1378.290705] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 1378.290718] R13: 00007ffd527cbf9f R14: 00007f6617ae9300 R15: 0000000000022000 23:42:43 executing program 3: r0 = syz_open_dev$tty1(0xc, 0x4, 0x1) writev(r0, &(0x7f0000000080)=[{&(0x7f0000001380)="3ead823d27b1f38d0cb83fca92a1f8f4a79624a264eb3d23f624cb63a9a475c4336e3015462fa8b76b1c5fb9b159eaa406698e2f3dcd71c5ba4e666731496d8ddd1bbaae50714c9ccdc53444b41f6df995ce4a1e6b9807bce8fa3e046360e5d1b228a3367e2315a985fcf8542b6a2e58eff19d99aa1de724345dd5786c63d31c197c760ac73dc10c91fcf49125d4dd5e1d4c952eeabf70f80b092c914e00cd0e75bdea96065d75447e5e2917619f3d3e2662b99fac83e65ca6fb6fc547ce903e960595bafc4990dfa6263d2dd2268b3f6f3df3b1603e198bc4011a4b1c43c686ff811d9a346aabe8c9f33c2c5e0ab15e288917c0de80a9d49e72e1efc8db344b3a715702fd03a0e9e2387cc5032967d44d8b3b68383f6c89c842ec2eadc06d1e5133067d6b3f11647561748b7d4185cab428d5fbf98ea4100f2276af2fec68da7e57d65c185e261b6790c65ebb5f98cb027d065d424a65705b15be6eda2b4ba4f6a337f711fc7088d216cb59a744bc5a0d0f059b11d6d7c0784065277076525027223b82fdcc899b2de92a710082edf89a57c0bf416899d2f8ad2cad43e5018b52025096784ecd82a29c00a8bf5ffa6e3b75fe641acf39885c084ae7e546f04224aeb23f61d99fc464a533fc6b87790e335057b54dbff233ced4a7ef90884dc7d90d678cc080024b9b4a", 0x1ea}], 0x1) 23:42:43 executing program 5: perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r0 = syz_mount_image$vfat(&(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x0, 0x2, &(0x7f0000000180)=[{&(0x7f0000000140)="eb3c906d6b66732e66617400020801000470008400f801", 0x17}, {0x0, 0x0, 0x1000a00}], 0x0, &(0x7f0000000240)=ANY=[]) openat2(r0, &(0x7f0000000100)='./file0\x00', &(0x7f00000001c0)={0x40040, 0x804}, 0x18) 23:42:43 executing program 6: r0 = syz_open_dev$tty20(0xc, 0x4, 0x1) ioctl$VT_RESIZEX(r0, 0x560a, &(0x7f0000000000)={0x1, 0x0, 0x0, 0x0, 0x1d}) r1 = openat$hpet(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0) read$eventfd(r1, 0x0, 0x0) ioctl$TCXONC(r1, 0x540a, 0x0) 23:42:43 executing program 2: r0 = add_key$keyring(&(0x7f0000000040), &(0x7f00000002c0)={'syz', 0x3}, 0x0, 0x0, 0xfffffffffffffffd) keyctl$KEYCTL_RESTRICT_KEYRING(0xf, r0, 0x0, 0x0) connect$inet(0xffffffffffffffff, &(0x7f0000000140)={0x2, 0x0, @dev}, 0x10) r1 = syz_open_dev$sg(&(0x7f0000000040), 0x0, 0x0) ioctl$BLKTRACETEARDOWN(r1, 0x1276, 0x0) ioctl$BLKTRACESETUP(r1, 0xc0481273, &(0x7f0000000140)={'\x00', 0x0, 0x4, 0x8, 0x76}) (fail_nth: 23) 23:42:43 executing program 0: perf_event_open(&(0x7f0000000040)={0x0, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r0 = syz_mount_image$vfat(&(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x0, 0x2, &(0x7f0000000180)=[{&(0x7f0000000140)="eb3c906d6b66732e66617400020801000470008400f801", 0x17}, {0x0, 0x0, 0x1000a00}], 0x0, &(0x7f0000000240)=ANY=[]) openat2(r0, &(0x7f0000000100)='./file0\x00', &(0x7f00000001c0)={0x40040, 0x8}, 0x18) 23:42:43 executing program 7: perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_mount_image$vfat(&(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x0, 0x2, &(0x7f0000000180)=[{&(0x7f0000000140)="eb3c906d6b66732e66617400020801000470008400f801", 0x17}, {0x0, 0x0, 0x1000a00}], 0x0, &(0x7f0000000240)=ANY=[]) 23:42:43 executing program 4: perf_event_open(&(0x7f0000001d80)={0x2, 0x80, 0x69, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = socket$inet6_udp(0xa, 0x2, 0x0) dup(0xffffffffffffffff) fstat(0xffffffffffffffff, 0x0) connect$inet6(r0, &(0x7f0000000600)={0xa, 0x0, 0x0, @dev, 0x2}, 0x1c) sendmmsg$inet6(r0, &(0x7f0000000080)=[{{0x0, 0x2, &(0x7f00000004c0)=[{&(0x7f00000001c0)="4bc702854e3954b59347985ccc868289d3fe483d2c0900a2a1d12e33a66529e1f276fef452632dfa3c004ce3be84a5f66c29cd4ec39ae5206562fbc9ea3c0dbbebc22e628e147b0e9631f19b0ce0a48e0e675b2da3442226b898f1ddf8eabf133ab4a9cb0999c2ee1d3bd36d089b0d8e97ea00d4c5f6ad14dce058d595aacba2d587ff5eacd81b71a73f53ed276d1f3b3384bb2bfba4e0f37302e690df9e7024378ac754ac0576f996f3ee53d1034c7720767ddf2625817532f7ae89103367b73a36152b84c38bc227ba9e9ff48bcfe027585cf14bff37a888", 0xff41}], 0x1}}], 0x1, 0x0) 23:42:43 executing program 1: perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = syz_io_uring_setup(0x3a75, &(0x7f0000000080), &(0x7f0000ffb000/0x3000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=0x0, &(0x7f0000000100)=0x0) r3 = socket$inet6_udplite(0xa, 0x2, 0x88) syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_RECVMSG={0xa, 0x0, 0x0, r3, 0x0, &(0x7f0000000440)={0x0, 0x0, 0x0}, 0x0, 0x40000203}, 0x0) mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0) r4 = mmap$IORING_OFF_CQ_RING(&(0x7f0000ffe000/0x2000)=nil, 0x2000, 0xf, 0x13, r0, 0x8000000) syz_io_uring_submit(r4, r2, &(0x7f00000002c0)=@IORING_OP_READ=@pass_buffer={0x16, 0x4, 0x0, @fd, 0x0, 0x0}, 0x80000001) r5 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1) dup2(r5, 0xffffffffffffffff) io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0) [ 1392.933931] FAULT_INJECTION: forcing a failure. [ 1392.933931] name failslab, interval 1, probability 0, space 0, times 0 [ 1392.936274] CPU: 1 PID: 8466 Comm: syz-executor.2 Not tainted 5.10.194 #1 [ 1392.937714] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1392.939382] Call Trace: [ 1392.939922] dump_stack+0x107/0x167 [ 1392.940664] should_fail.cold+0x5/0xa [ 1392.941458] ? create_object.isra.0+0x3a/0xa20 [ 1392.942394] should_failslab+0x5/0x20 [ 1392.943168] kmem_cache_alloc+0x5b/0x310 [ 1392.944025] create_object.isra.0+0x3a/0xa20 [ 1392.944934] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 1392.945973] kmem_cache_alloc+0x159/0x310 [ 1392.946820] __d_alloc+0x2a/0x990 [ 1392.947537] d_alloc_parallel+0x111/0x1bc0 [ 1392.948413] ? __lock_acquire+0x1657/0x5b00 [ 1392.949307] ? perf_trace_lock+0xac/0x490 [ 1392.950157] ? __d_lookup_rcu+0x6d0/0x6d0 [ 1392.951010] ? __lockdep_reset_lock+0x180/0x180 [ 1392.951965] ? lockdep_init_map_type+0x2c7/0x780 [ 1392.952932] ? lockdep_init_map_type+0x2c7/0x780 [ 1392.953916] __lookup_slow+0x193/0x490 [ 1392.954713] ? lookup_open.isra.0+0x1270/0x1270 [ 1392.955678] ? __d_lookup+0x3bf/0x760 [ 1392.956466] ? d_lookup+0xcc/0x130 [ 1392.957197] lookup_one_len+0x167/0x1a0 [ 1392.958023] ? __lookup_slow+0x490/0x490 [ 1392.958851] ? down_write_killable+0x180/0x180 [ 1392.959799] ? do_raw_spin_unlock+0x4f/0x220 [ 1392.960701] ? mntput+0xc/0x90 [ 1392.961376] start_creating.part.0+0x10a/0x230 [ 1392.962316] __debugfs_create_file+0xdb/0x530 [ 1392.963238] do_blk_trace_setup+0x43c/0xc10 [ 1392.964124] ? _copy_from_user+0xfb/0x1b0 [ 1392.964976] __blk_trace_setup+0xca/0x180 [ 1392.965841] ? do_blk_trace_setup+0xc10/0xc10 [ 1392.966771] ? perf_trace_lock+0xac/0x490 [ 1392.967630] blk_trace_setup+0x43/0x60 [ 1392.968432] sg_ioctl_common+0x634/0x2570 [ 1392.969305] ? __sanitizer_cov_trace_switch+0x45/0x80 [ 1392.970368] ? do_vfs_ioctl+0x283/0x10d0 [ 1392.971190] ? sg_write+0x120/0x120 [ 1392.971927] ? generic_block_fiemap+0x60/0x60 [ 1392.972843] ? __mutex_unlock_slowpath+0xe1/0x600 [ 1392.973846] ? selinux_file_ioctl+0xb6/0x270 [ 1392.974736] ? sg_compat_ioctl+0x120/0x120 [ 1392.975593] sg_ioctl+0x8f/0x120 [ 1392.976280] __x64_sys_ioctl+0x19a/0x210 [ 1392.977106] do_syscall_64+0x33/0x40 [ 1392.977889] entry_SYSCALL_64_after_hwframe+0x62/0xc7 [ 1392.978945] RIP: 0033:0x7f661a573b19 [ 1392.979712] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1392.983348] RSP: 002b:00007f6617ae9188 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 1392.984894] RAX: ffffffffffffffda RBX: 00007f661a686f60 RCX: 00007f661a573b19 [ 1392.986327] RDX: 0000000020000140 RSI: 00000000c0481273 RDI: 0000000000000003 [ 1392.987719] RBP: 00007f6617ae91d0 R08: 0000000000000000 R09: 0000000000000000 [ 1392.989116] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 1392.990519] R13: 00007ffd527cbf9f R14: 00007f6617ae9300 R15: 0000000000022000 23:42:43 executing program 6: r0 = syz_open_dev$tty20(0xc, 0x4, 0x1) ioctl$VT_RESIZEX(r0, 0x560a, &(0x7f0000000000)={0x0, 0x2, 0x0, 0x0, 0x1d}) r1 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000080), 0x80, 0x0) ioctl$TCSETSW(r1, 0x5403, &(0x7f00000000c0)={0x5, 0xfff, 0x1200, 0x5, 0x1a, "f209446fcb27da6224401d5427a0c97810b88e"}) ioctl$TCSETSW(r0, 0x5403, &(0x7f0000000040)={0x100, 0x8, 0x3, 0x1, 0x15, "76e1ac4e6433fd543972ced95a3e014b6a8afe"}) 23:42:43 executing program 0: perf_event_open(&(0x7f0000000040)={0x0, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r0 = syz_mount_image$vfat(&(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x0, 0x2, &(0x7f0000000180)=[{&(0x7f0000000140)="eb3c906d6b66732e66617400020801000470008400f801", 0x17}, {0x0, 0x0, 0x1000a00}], 0x0, &(0x7f0000000240)=ANY=[]) openat2(r0, &(0x7f0000000100)='./file0\x00', &(0x7f00000001c0)={0x40040, 0x8}, 0x18) 23:42:43 executing program 5: perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r0 = syz_mount_image$vfat(&(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x0, 0x2, &(0x7f0000000180)=[{&(0x7f0000000140)="eb3c906d6b66732e66617400020801000470008400f801", 0x17}, {0x0, 0x0, 0x1000a00}], 0x0, &(0x7f0000000240)=ANY=[]) openat2(r0, &(0x7f0000000100)='./file0\x00', &(0x7f00000001c0)={0x40040, 0xf00}, 0x18) 23:42:43 executing program 3: r0 = syz_open_dev$tty1(0xc, 0x4, 0x1) writev(r0, &(0x7f0000000080)=[{&(0x7f0000001380)="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", 0x1ea}], 0x1) 23:42:43 executing program 4: perf_event_open(&(0x7f0000001d80)={0x2, 0x80, 0x69, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = socket$inet6_udp(0xa, 0x2, 0x0) dup(0xffffffffffffffff) fstat(0xffffffffffffffff, 0x0) connect$inet6(r0, &(0x7f0000000600)={0xa, 0x0, 0x0, @dev, 0x2}, 0x1c) sendmmsg$inet6(r0, &(0x7f0000000080)=[{{0x0, 0x3, &(0x7f00000004c0)=[{&(0x7f00000001c0)="4bc702854e3954b59347985ccc868289d3fe483d2c0900a2a1d12e33a66529e1f276fef452632dfa3c004ce3be84a5f66c29cd4ec39ae5206562fbc9ea3c0dbbebc22e628e147b0e9631f19b0ce0a48e0e675b2da3442226b898f1ddf8eabf133ab4a9cb0999c2ee1d3bd36d089b0d8e97ea00d4c5f6ad14dce058d595aacba2d587ff5eacd81b71a73f53ed276d1f3b3384bb2bfba4e0f37302e690df9e7024378ac754ac0576f996f3ee53d1034c7720767ddf2625817532f7ae89103367b73a36152b84c38bc227ba9e9ff48bcfe027585cf14bff37a888", 0xff41}], 0x1}}], 0x1, 0x0) 23:42:43 executing program 7: perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_mount_image$vfat(&(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x2, 0x2, &(0x7f0000000180)=[{&(0x7f0000000140)="eb3c906d6b66732e66617400020801000470008400f801", 0x17}, {0x0, 0x0, 0x1000a00}], 0x0, &(0x7f0000000240)=ANY=[]) 23:42:43 executing program 3: r0 = syz_open_dev$tty1(0xc, 0x4, 0x1) writev(r0, &(0x7f0000000080)=[{&(0x7f0000001380)="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", 0x1ea}], 0x1) 23:42:43 executing program 6: r0 = syz_open_dev$tty20(0xc, 0x4, 0x1) ioctl$VT_RESIZEX(r0, 0x560a, &(0x7f0000000000)={0x0, 0x0, 0x0, 0x6, 0x8f, 0x4}) 23:42:43 executing program 5: perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r0 = syz_mount_image$vfat(&(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x0, 0x2, &(0x7f0000000180)=[{&(0x7f0000000140)="eb3c906d6b66732e66617400020801000470008400f801", 0x17}, {0x0, 0x0, 0x1000a00}], 0x0, &(0x7f0000000240)=ANY=[]) openat2(r0, &(0x7f0000000100)='./file0\x00', &(0x7f00000001c0)={0x40040, 0x1800}, 0x18) 23:42:57 executing program 4: perf_event_open(&(0x7f0000001d80)={0x2, 0x80, 0x69, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = socket$inet6_udp(0xa, 0x2, 0x0) dup(0xffffffffffffffff) fstat(0xffffffffffffffff, 0x0) connect$inet6(r0, &(0x7f0000000600)={0xa, 0x0, 0x0, @dev, 0x2}, 0x1c) sendmmsg$inet6(r0, &(0x7f0000000080)=[{{0x0, 0x4, &(0x7f00000004c0)=[{&(0x7f00000001c0)="4bc702854e3954b59347985ccc868289d3fe483d2c0900a2a1d12e33a66529e1f276fef452632dfa3c004ce3be84a5f66c29cd4ec39ae5206562fbc9ea3c0dbbebc22e628e147b0e9631f19b0ce0a48e0e675b2da3442226b898f1ddf8eabf133ab4a9cb0999c2ee1d3bd36d089b0d8e97ea00d4c5f6ad14dce058d595aacba2d587ff5eacd81b71a73f53ed276d1f3b3384bb2bfba4e0f37302e690df9e7024378ac754ac0576f996f3ee53d1034c7720767ddf2625817532f7ae89103367b73a36152b84c38bc227ba9e9ff48bcfe027585cf14bff37a888", 0xff41}], 0x1}}], 0x1, 0x0) 23:42:57 executing program 2: r0 = add_key$keyring(&(0x7f0000000040), &(0x7f00000002c0)={'syz', 0x3}, 0x0, 0x0, 0xfffffffffffffffd) keyctl$KEYCTL_RESTRICT_KEYRING(0xf, r0, 0x0, 0x0) connect$inet(0xffffffffffffffff, &(0x7f0000000140)={0x2, 0x0, @dev}, 0x10) r1 = syz_open_dev$sg(&(0x7f0000000040), 0x0, 0x0) ioctl$BLKTRACETEARDOWN(r1, 0x1276, 0x0) ioctl$BLKTRACESETUP(r1, 0xc0481273, &(0x7f0000000140)={'\x00', 0x0, 0x4, 0x8, 0x76}) (fail_nth: 24) 23:42:57 executing program 1: perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = syz_io_uring_setup(0x3a75, &(0x7f0000000080), &(0x7f0000ffb000/0x3000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=0x0, &(0x7f0000000100)=0x0) r3 = socket$inet6_udplite(0xa, 0x2, 0x88) syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_RECVMSG={0xa, 0x0, 0x0, r3, 0x0, &(0x7f0000000440)={0x0, 0x0, 0x0}, 0x0, 0x40000203}, 0x0) mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0) r4 = mmap$IORING_OFF_CQ_RING(&(0x7f0000ffe000/0x2000)=nil, 0x2000, 0xf, 0x13, r0, 0x8000000) syz_io_uring_submit(r4, r2, &(0x7f00000002c0)=@IORING_OP_READ=@pass_buffer={0x16, 0x4, 0x0, @fd, 0x0, 0x0}, 0x80000001) r5 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1) dup2(r5, 0xffffffffffffffff) io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0) 23:42:57 executing program 5: perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r0 = syz_mount_image$vfat(&(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x0, 0x2, &(0x7f0000000180)=[{&(0x7f0000000140)="eb3c906d6b66732e66617400020801000470008400f801", 0x17}, {0x0, 0x0, 0x1000a00}], 0x0, &(0x7f0000000240)=ANY=[]) openat2(r0, &(0x7f0000000100)='./file0\x00', &(0x7f00000001c0)={0x40040, 0x3902}, 0x18) 23:42:57 executing program 0: perf_event_open(&(0x7f0000000040)={0x0, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r0 = syz_mount_image$vfat(&(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x0, 0x2, &(0x7f0000000180)=[{&(0x7f0000000140)="eb3c906d6b66732e66617400020801000470008400f801", 0x17}, {0x0, 0x0, 0x1000a00}], 0x0, &(0x7f0000000240)=ANY=[]) openat2(r0, &(0x7f0000000100)='./file0\x00', &(0x7f00000001c0)={0x40040, 0x8}, 0x18) 23:42:57 executing program 7: perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_mount_image$vfat(&(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x3, 0x2, &(0x7f0000000180)=[{&(0x7f0000000140)="eb3c906d6b66732e66617400020801000470008400f801", 0x17}, {0x0, 0x0, 0x1000a00}], 0x0, &(0x7f0000000240)=ANY=[]) 23:42:57 executing program 6: r0 = syz_open_dev$tty20(0xc, 0x4, 0x0) r1 = openat$hpet(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0) read$eventfd(r1, 0x0, 0x0) ioctl$TIOCSTI(r1, 0x5412, &(0x7f0000000040)=0x6) ioctl$AUTOFS_DEV_IOCTL_EXPIRE(r1, 0xc018937c, &(0x7f00000001c0)={{0x1, 0x1, 0x18, r0}, './file0\x00'}) ioctl$TCSETAW(r2, 0x5407, &(0x7f0000000200)={0x2, 0x280, 0x6, 0x9, 0x13, "33a7d452a676a135"}) r3 = syz_open_dev$ttys(0xc, 0x2, 0x0) ioctl$VT_RESIZEX(r3, 0x560a, &(0x7f0000000000)={0x8, 0x0, 0x0, 0x5, 0x1d, 0xfffe}) ioctl$PIO_CMAP(r1, 0x4b71, &(0x7f00000000c0)={0x7, 0xfffffffffffffffb, 0x8, 0x87, 0x1, 0x80}) ioctl$TIOCGSID(r0, 0x5429, &(0x7f0000000180)=0x0) perf_event_open(&(0x7f0000000100)={0x4, 0x80, 0x0, 0xbd, 0x6, 0x40, 0x0, 0x1, 0x80001, 0x12, 0x0, 0x0, 0x1, 0x0, 0x0, 0x1, 0x0, 0x0, 0x1, 0x0, 0x1, 0x0, 0x1, 0x1, 0x0, 0x2, 0x1, 0x0, 0x1, 0x1, 0x1, 0x1, 0x0, 0x1, 0x1, 0x1, 0x0, 0x1, 0x0, 0x1, 0x0, 0x1, 0x1, 0x1, 0x0, 0x1, 0x1, 0x0, 0x7, 0x0, @perf_config_ext={0x4, 0x7f}, 0x10080, 0x3, 0x10000, 0x7, 0x1ff, 0x3, 0x1, 0x0, 0x2, 0x0, 0x3b}, r4, 0x10, r1, 0x8) 23:42:57 executing program 3: r0 = syz_open_dev$tty1(0xc, 0x4, 0x1) writev(r0, &(0x7f0000000080)=[{&(0x7f0000001380)="3ead823d27b1f38d0fb83fca92a1f8f4a79624a264eb3d23f624cb63a9a475c4336e3015462fa8b76b1c5fb9b159eaa406698e2f3dcd71c5ba4e666731496d8ddd1bbaae50714c9ccdc53444b41f6df995ce4a1e6b9807bce8fa3e046360e5d1b228a3367e2315a985fcf8542b6a2e58eff19d99aa1de724345dd5786c63d31c197c760ac73dc10c91fcf49125d4dd5e1d4c952eeabf70f80b092c914e00cd0e75bdea96065d75447e5e2917619f3d3e2662b99fac83e65ca6fb6fc547ce903e960595bafc4990dfa6263d2dd2268b3f6f3df3b1603e198bc4011a4b1c43c686ff811d9a346aabe8c9f33c2c5e0ab15e288917c0de80a9d49e72e1efc8db344b3a715702fd03a0e9e2387cc5032967d44d8b3b68383f6c89c842ec2eadc06d1e5133067d6b3f11647561748b7d4185cab428d5fbf98ea4100f2276af2fec68da7e57d65c185e261b6790c65ebb5f98cb027d065d424a65705b15be6eda2b4ba4f6a337f711fc7088d216cb59a744bc5a0d0f059b11d6d7c0784065277076525027223b82fdcc899b2de92a710082edf89a57c0bf416899d2f8ad2cad43e5018b52025096784ecd82a29c00a8bf5ffa6e3b75fe641acf39885c084ae7e546f04224aeb23f61d99fc464a533fc6b87790e335057b54dbff233ced4a7ef90884dc7d90d678cc080024b9b4a", 0x1ea}], 0x1) [ 1407.656622] FAULT_INJECTION: forcing a failure. [ 1407.656622] name failslab, interval 1, probability 0, space 0, times 0 [ 1407.656638] CPU: 1 PID: 8528 Comm: syz-executor.2 Not tainted 5.10.194 #1 23:42:57 executing program 6: r0 = pidfd_getfd(0xffffffffffffffff, 0xffffffffffffffff, 0x0) r1 = socket$nl_generic(0x10, 0x3, 0x10) r2 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000040), 0xffffffffffffffff) sendmsg$NL80211_CMD_REQ_SET_REG(r1, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000080)={0x1c, r2, 0x1, 0x0, 0x0, {}, [@NL80211_ATTR_REG_ALPHA2={0x6, 0x21, 'a\x00'}]}, 0x1c}}, 0x0) ioctl$sock_SIOCGIFINDEX_80211(0xffffffffffffffff, 0x8933, &(0x7f00000000c0)={'wlan0\x00', 0x0}) sendmsg$NL80211_CMD_JOIN_OCB(r0, &(0x7f00000001c0)={&(0x7f0000000080)={0x10, 0x0, 0x0, 0x40000000}, 0xc, &(0x7f0000000180)={&(0x7f0000000100)={0x4c, r2, 0x706, 0x70bd27, 0x25dfdbfc, {{}, {@val={0x8, 0x3, r3}, @void}}, [@NL80211_ATTR_WIPHY_CHANNEL_TYPE={0x8, 0x27, 0x3}, @NL80211_ATTR_WIPHY_CHANNEL_TYPE={0x8, 0x27, 0x3}, @NL80211_ATTR_WIPHY_FREQ_OFFSET={0x8, 0x122, 0x358}, @NL80211_ATTR_WIPHY_FREQ_OFFSET={0x8, 0x122, 0x159}, @NL80211_ATTR_CHANNEL_WIDTH={0x8, 0x9f, 0x6}, @NL80211_ATTR_CENTER_FREQ1={0x8}]}, 0x4c}, 0x1, 0x0, 0x0, 0x1}, 0x60000010) r4 = syz_open_dev$tty20(0xc, 0x4, 0x1) ioctl$TCGETS2(r4, 0x802c542a, &(0x7f0000000040)) ioctl$VT_RESIZEX(r4, 0x560a, &(0x7f0000000000)={0x0, 0x0, 0x0, 0x0, 0x1d}) [ 1407.656645] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1407.656649] Call Trace: [ 1407.656671] dump_stack+0x107/0x167 [ 1407.656687] should_fail.cold+0x5/0xa [ 1407.656701] ? alloc_inode+0x171/0x240 23:42:57 executing program 4: perf_event_open(&(0x7f0000001d80)={0x2, 0x80, 0x69, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = socket$inet6_udp(0xa, 0x2, 0x0) dup(0xffffffffffffffff) fstat(0xffffffffffffffff, 0x0) connect$inet6(r0, &(0x7f0000000600)={0xa, 0x0, 0x0, @dev, 0x2}, 0x1c) sendmmsg$inet6(r0, &(0x7f0000000080)=[{{0x0, 0x8, &(0x7f00000004c0)=[{&(0x7f00000001c0)="4bc702854e3954b59347985ccc868289d3fe483d2c0900a2a1d12e33a66529e1f276fef452632dfa3c004ce3be84a5f66c29cd4ec39ae5206562fbc9ea3c0dbbebc22e628e147b0e9631f19b0ce0a48e0e675b2da3442226b898f1ddf8eabf133ab4a9cb0999c2ee1d3bd36d089b0d8e97ea00d4c5f6ad14dce058d595aacba2d587ff5eacd81b71a73f53ed276d1f3b3384bb2bfba4e0f37302e690df9e7024378ac754ac0576f996f3ee53d1034c7720767ddf2625817532f7ae89103367b73a36152b84c38bc227ba9e9ff48bcfe027585cf14bff37a888", 0xff41}], 0x1}}], 0x1, 0x0) [ 1407.656716] should_failslab+0x5/0x20 [ 1407.656728] kmem_cache_alloc+0x5b/0x310 [ 1407.656742] ? __lookup_slow+0x490/0x490 23:42:57 executing program 2: r0 = add_key$keyring(&(0x7f0000000040), &(0x7f00000002c0)={'syz', 0x3}, 0x0, 0x0, 0xfffffffffffffffd) keyctl$KEYCTL_RESTRICT_KEYRING(0xf, r0, 0x0, 0x0) connect$inet(0xffffffffffffffff, &(0x7f0000000140)={0x2, 0x0, @dev}, 0x10) r1 = syz_open_dev$sg(&(0x7f0000000040), 0x0, 0x0) ioctl$BLKTRACETEARDOWN(r1, 0x1276, 0x0) ioctl$BLKTRACESETUP(r1, 0xc0481273, &(0x7f0000000140)={'\x00', 0x0, 0x4, 0x8, 0x76}) (fail_nth: 25) 23:42:57 executing program 0: perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r0 = syz_mount_image$vfat(&(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x0, 0x2, &(0x7f0000000180)=[{&(0x7f0000000140)="eb3c906d6b66732e66617400020801000470008400f801", 0x17}, {0x0, 0x0, 0x1000a00}], 0x0, &(0x7f0000000240)=ANY=[]) openat2(r0, &(0x7f0000000100)='./file0\x00', &(0x7f00000001c0)={0x40040, 0x8}, 0x18) [ 1407.656755] alloc_inode+0x171/0x240 [ 1407.656766] new_inode+0x23/0x250 23:42:57 executing program 7: perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_mount_image$vfat(&(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x4, 0x2, &(0x7f0000000180)=[{&(0x7f0000000140)="eb3c906d6b66732e66617400020801000470008400f801", 0x17}, {0x0, 0x0, 0x1000a00}], 0x0, &(0x7f0000000240)=ANY=[]) [ 1407.656783] debugfs_get_inode+0x1a/0x130 [ 1407.656795] __debugfs_create_file+0x14e/0x530 [ 1407.656813] do_blk_trace_setup+0x43c/0xc10 [ 1407.656827] ? _copy_from_user+0xfb/0x1b0 [ 1407.656840] __blk_trace_setup+0xca/0x180 23:42:57 executing program 5: perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r0 = syz_mount_image$vfat(&(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x0, 0x2, &(0x7f0000000180)=[{&(0x7f0000000140)="eb3c906d6b66732e66617400020801000470008400f801", 0x17}, {0x0, 0x0, 0x1000a00}], 0x0, &(0x7f0000000240)=ANY=[]) openat2(r0, &(0x7f0000000100)='./file0\x00', &(0x7f00000001c0)={0x40040, 0x3f00}, 0x18) [ 1407.656852] ? do_blk_trace_setup+0xc10/0xc10 [ 1407.656861] ? trace_hardirqs_on+0x5b/0x180 [ 1407.656889] blk_trace_setup+0x43/0x60 [ 1407.656905] sg_ioctl_common+0x634/0x2570 [ 1407.656920] ? __sanitizer_cov_trace_switch+0x45/0x80 [ 1407.656933] ? do_vfs_ioctl+0x283/0x10d0 [ 1407.656943] ? sg_write+0x120/0x120 [ 1407.656954] ? generic_block_fiemap+0x60/0x60 [ 1407.656969] ? __mutex_unlock_slowpath+0xe1/0x600 [ 1407.656994] ? selinux_file_ioctl+0xb6/0x270 [ 1407.657004] ? sg_compat_ioctl+0x120/0x120 [ 1407.657017] sg_ioctl+0x8f/0x120 [ 1407.657030] __x64_sys_ioctl+0x19a/0x210 [ 1407.657046] do_syscall_64+0x33/0x40 [ 1407.657060] entry_SYSCALL_64_after_hwframe+0x62/0xc7 [ 1407.657069] RIP: 0033:0x7f661a573b19 [ 1407.657082] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1407.657089] RSP: 002b:00007f6617ae9188 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 1407.657103] RAX: ffffffffffffffda RBX: 00007f661a686f60 RCX: 00007f661a573b19 [ 1407.657110] RDX: 0000000020000140 RSI: 00000000c0481273 RDI: 0000000000000003 [ 1407.657118] RBP: 00007f6617ae91d0 R08: 0000000000000000 R09: 0000000000000000 [ 1407.657125] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 1407.657132] R13: 00007ffd527cbf9f R14: 00007f6617ae9300 R15: 0000000000022000 [ 1407.657153] debugfs: out of free dentries, can not create file 'msg' [ 1407.839994] FAULT_INJECTION: forcing a failure. [ 1407.839994] name failslab, interval 1, probability 0, space 0, times 0 [ 1407.840014] CPU: 1 PID: 8544 Comm: syz-executor.2 Not tainted 5.10.194 #1 [ 1407.840021] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1407.840025] Call Trace: [ 1407.840045] dump_stack+0x107/0x167 [ 1407.840060] should_fail.cold+0x5/0xa [ 1407.840081] ? create_object.isra.0+0x3a/0xa20 [ 1407.861331] should_failslab+0x5/0x20 [ 1407.861343] kmem_cache_alloc+0x5b/0x310 [ 1407.861358] create_object.isra.0+0x3a/0xa20 [ 1407.861369] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 1407.861384] kmem_cache_alloc+0x159/0x310 [ 1407.861399] alloc_inode+0x171/0x240 [ 1407.861409] new_inode+0x23/0x250 [ 1407.861424] debugfs_get_inode+0x1a/0x130 [ 1407.861435] __debugfs_create_file+0x14e/0x530 [ 1407.861466] do_blk_trace_setup+0x43c/0xc10 [ 1407.861479] ? _copy_from_user+0xfb/0x1b0 [ 1407.861492] __blk_trace_setup+0xca/0x180 [ 1407.861502] ? do_blk_trace_setup+0xc10/0xc10 [ 1407.861522] ? perf_trace_lock+0xac/0x490 [ 1407.861539] blk_trace_setup+0x43/0x60 [ 1407.861554] sg_ioctl_common+0x634/0x2570 [ 1407.861567] ? __sanitizer_cov_trace_switch+0x45/0x80 [ 1407.861579] ? do_vfs_ioctl+0x283/0x10d0 [ 1407.861589] ? sg_write+0x120/0x120 [ 1407.861599] ? generic_block_fiemap+0x60/0x60 [ 1407.861613] ? __mutex_unlock_slowpath+0xe1/0x600 [ 1407.861636] ? selinux_file_ioctl+0xb6/0x270 [ 1407.861646] ? sg_compat_ioctl+0x120/0x120 [ 1407.861657] sg_ioctl+0x8f/0x120 [ 1407.861669] __x64_sys_ioctl+0x19a/0x210 [ 1407.861684] do_syscall_64+0x33/0x40 [ 1407.861697] entry_SYSCALL_64_after_hwframe+0x62/0xc7 23:42:58 executing program 0: perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r0 = syz_mount_image$vfat(&(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x0, 0x2, &(0x7f0000000180)=[{&(0x7f0000000140)="eb3c906d6b66732e66617400020801000470008400f801", 0x17}, {0x0, 0x0, 0x1000a00}], 0x0, &(0x7f0000000240)=ANY=[]) openat2(r0, &(0x7f0000000100)='./file0\x00', &(0x7f00000001c0)={0x40040, 0x8}, 0x18) [ 1407.861705] RIP: 0033:0x7f661a573b19 [ 1407.861717] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1407.861723] RSP: 002b:00007f6617ae9188 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 1407.861737] RAX: ffffffffffffffda RBX: 00007f661a686f60 RCX: 00007f661a573b19 [ 1407.861744] RDX: 0000000020000140 RSI: 00000000c0481273 RDI: 0000000000000003 [ 1407.861750] RBP: 00007f6617ae91d0 R08: 0000000000000000 R09: 0000000000000000 [ 1407.861757] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 1407.861764] R13: 00007ffd527cbf9f R14: 00007f6617ae9300 R15: 0000000000022000 23:42:58 executing program 0: perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r0 = syz_mount_image$vfat(&(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x0, 0x2, &(0x7f0000000180)=[{&(0x7f0000000140)="eb3c906d6b66732e66617400020801000470008400f801", 0x17}, {0x0, 0x0, 0x1000a00}], 0x0, &(0x7f0000000240)=ANY=[]) openat2(r0, &(0x7f0000000100)='./file0\x00', &(0x7f00000001c0)={0x40040, 0x8}, 0x18) 23:42:58 executing program 7: perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_mount_image$vfat(&(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x5, 0x2, &(0x7f0000000180)=[{&(0x7f0000000140)="eb3c906d6b66732e66617400020801000470008400f801", 0x17}, {0x0, 0x0, 0x1000a00}], 0x0, &(0x7f0000000240)=ANY=[]) 23:42:58 executing program 7: perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_mount_image$vfat(&(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x6, 0x2, &(0x7f0000000180)=[{&(0x7f0000000140)="eb3c906d6b66732e66617400020801000470008400f801", 0x17}, {0x0, 0x0, 0x1000a00}], 0x0, &(0x7f0000000240)=ANY=[]) 23:43:10 executing program 2: r0 = add_key$keyring(&(0x7f0000000040), &(0x7f00000002c0)={'syz', 0x3}, 0x0, 0x0, 0xfffffffffffffffd) keyctl$KEYCTL_RESTRICT_KEYRING(0xf, r0, 0x0, 0x0) connect$inet(0xffffffffffffffff, &(0x7f0000000140)={0x2, 0x0, @dev}, 0x10) r1 = syz_open_dev$sg(&(0x7f0000000040), 0x0, 0x0) ioctl$BLKTRACETEARDOWN(r1, 0x1276, 0x0) ioctl$BLKTRACESETUP(r1, 0xc0481273, &(0x7f0000000140)={'\x00', 0x0, 0x4, 0x8, 0x76}) (fail_nth: 26) 23:43:10 executing program 1: perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = syz_io_uring_setup(0x3a75, &(0x7f0000000080), &(0x7f0000ffb000/0x3000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=0x0, &(0x7f0000000100)=0x0) r3 = socket$inet6_udplite(0xa, 0x2, 0x88) syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_RECVMSG={0xa, 0x0, 0x0, r3, 0x0, &(0x7f0000000440)={0x0, 0x0, 0x0}, 0x0, 0x40000203}, 0x0) mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0) r4 = mmap$IORING_OFF_CQ_RING(&(0x7f0000ffe000/0x2000)=nil, 0x2000, 0xf, 0x13, r0, 0x8000000) syz_io_uring_submit(r4, r2, &(0x7f00000002c0)=@IORING_OP_READ=@pass_buffer={0x16, 0x4, 0x0, @fd, 0x0, 0x0}, 0x80000001) r5 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1) dup2(r5, r3) io_uring_enter(0xffffffffffffffff, 0x58ab, 0x0, 0x0, 0x0, 0x0) 23:43:10 executing program 7: perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_mount_image$vfat(&(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x7, 0x2, &(0x7f0000000180)=[{&(0x7f0000000140)="eb3c906d6b66732e66617400020801000470008400f801", 0x17}, {0x0, 0x0, 0x1000a00}], 0x0, &(0x7f0000000240)=ANY=[]) 23:43:10 executing program 5: perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r0 = syz_mount_image$vfat(&(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x0, 0x2, &(0x7f0000000180)=[{&(0x7f0000000140)="eb3c906d6b66732e66617400020801000470008400f801", 0x17}, {0x0, 0x0, 0x1000a00}], 0x0, &(0x7f0000000240)=ANY=[]) openat2(r0, &(0x7f0000000100)='./file0\x00', &(0x7f00000001c0)={0x40040, 0x8004}, 0x18) 23:43:10 executing program 6: r0 = syz_open_dev$tty20(0xc, 0x4, 0x1) ioctl$VT_RESIZEX(r0, 0x560a, &(0x7f0000000000)={0x0, 0x0, 0x0, 0x0, 0x1d}) ioctl$TIOCNXCL(r0, 0x540d) 23:43:10 executing program 4: perf_event_open(&(0x7f0000001d80)={0x2, 0x80, 0x69, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = socket$inet6_udp(0xa, 0x2, 0x0) dup(0xffffffffffffffff) fstat(0xffffffffffffffff, 0x0) connect$inet6(r0, &(0x7f0000000600)={0xa, 0x0, 0x0, @dev, 0x2}, 0x1c) sendmmsg$inet6(r0, &(0x7f0000000080)=[{{0x0, 0xe, &(0x7f00000004c0)=[{&(0x7f00000001c0)="4bc702854e3954b59347985ccc868289d3fe483d2c0900a2a1d12e33a66529e1f276fef452632dfa3c004ce3be84a5f66c29cd4ec39ae5206562fbc9ea3c0dbbebc22e628e147b0e9631f19b0ce0a48e0e675b2da3442226b898f1ddf8eabf133ab4a9cb0999c2ee1d3bd36d089b0d8e97ea00d4c5f6ad14dce058d595aacba2d587ff5eacd81b71a73f53ed276d1f3b3384bb2bfba4e0f37302e690df9e7024378ac754ac0576f996f3ee53d1034c7720767ddf2625817532f7ae89103367b73a36152b84c38bc227ba9e9ff48bcfe027585cf14bff37a888", 0xff41}], 0x1}}], 0x1, 0x0) 23:43:10 executing program 0: perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = syz_mount_image$vfat(&(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x0, 0x2, &(0x7f0000000180)=[{&(0x7f0000000140)="eb3c906d6b66732e66617400020801000470008400f801", 0x17}, {0x0, 0x0, 0x1000a00}], 0x0, &(0x7f0000000240)=ANY=[]) openat2(r0, &(0x7f0000000100)='./file0\x00', &(0x7f00000001c0)={0x40040, 0x8}, 0x18) 23:43:10 executing program 3: r0 = syz_open_dev$tty1(0xc, 0x4, 0x1) writev(r0, &(0x7f0000000080)=[{&(0x7f0000001380)="3ead823d27b1f38d18b83fca92a1f8f4a79624a264eb3d23f624cb63a9a475c4336e3015462fa8b76b1c5fb9b159eaa406698e2f3dcd71c5ba4e666731496d8ddd1bbaae50714c9ccdc53444b41f6df995ce4a1e6b9807bce8fa3e046360e5d1b228a3367e2315a985fcf8542b6a2e58eff19d99aa1de724345dd5786c63d31c197c760ac73dc10c91fcf49125d4dd5e1d4c952eeabf70f80b092c914e00cd0e75bdea96065d75447e5e2917619f3d3e2662b99fac83e65ca6fb6fc547ce903e960595bafc4990dfa6263d2dd2268b3f6f3df3b1603e198bc4011a4b1c43c686ff811d9a346aabe8c9f33c2c5e0ab15e288917c0de80a9d49e72e1efc8db344b3a715702fd03a0e9e2387cc5032967d44d8b3b68383f6c89c842ec2eadc06d1e5133067d6b3f11647561748b7d4185cab428d5fbf98ea4100f2276af2fec68da7e57d65c185e261b6790c65ebb5f98cb027d065d424a65705b15be6eda2b4ba4f6a337f711fc7088d216cb59a744bc5a0d0f059b11d6d7c0784065277076525027223b82fdcc899b2de92a710082edf89a57c0bf416899d2f8ad2cad43e5018b52025096784ecd82a29c00a8bf5ffa6e3b75fe641acf39885c084ae7e546f04224aeb23f61d99fc464a533fc6b87790e335057b54dbff233ced4a7ef90884dc7d90d678cc080024b9b4a", 0x1ea}], 0x1) [ 1420.739149] FAULT_INJECTION: forcing a failure. [ 1420.739149] name failslab, interval 1, probability 0, space 0, times 0 [ 1420.740499] CPU: 0 PID: 8572 Comm: syz-executor.2 Not tainted 5.10.194 #1 [ 1420.741289] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1420.742263] Call Trace: [ 1420.742577] dump_stack+0x107/0x167 [ 1420.742994] should_fail.cold+0x5/0xa [ 1420.743434] ? security_inode_alloc+0x34/0x160 [ 1420.743968] should_failslab+0x5/0x20 [ 1420.744403] kmem_cache_alloc+0x5b/0x310 [ 1420.744882] security_inode_alloc+0x34/0x160 [ 1420.745388] inode_init_always+0xa4e/0xd10 [ 1420.745876] alloc_inode+0x84/0x240 [ 1420.746293] new_inode+0x23/0x250 [ 1420.746704] debugfs_get_inode+0x1a/0x130 [ 1420.747184] __debugfs_create_file+0x14e/0x530 [ 1420.747717] do_blk_trace_setup+0x43c/0xc10 [ 1420.748215] ? _copy_from_user+0xfb/0x1b0 [ 1420.748696] __blk_trace_setup+0xca/0x180 [ 1420.749178] ? do_blk_trace_setup+0xc10/0xc10 [ 1420.749713] ? perf_trace_lock+0xac/0x490 [ 1420.750189] blk_trace_setup+0x43/0x60 [ 1420.750638] sg_ioctl_common+0x634/0x2570 [ 1420.751109] ? __sanitizer_cov_trace_switch+0x45/0x80 [ 1420.751699] ? do_vfs_ioctl+0x283/0x10d0 [ 1420.752167] ? sg_write+0x120/0x120 [ 1420.752596] ? generic_block_fiemap+0x60/0x60 [ 1420.753129] ? __mutex_unlock_slowpath+0xe1/0x600 [ 1420.753715] ? selinux_file_ioctl+0xb6/0x270 [ 1420.754232] ? sg_compat_ioctl+0x120/0x120 [ 1420.754733] sg_ioctl+0x8f/0x120 [ 1420.755140] __x64_sys_ioctl+0x19a/0x210 [ 1420.755627] do_syscall_64+0x33/0x40 [ 1420.756084] entry_SYSCALL_64_after_hwframe+0x62/0xc7 [ 1420.756685] RIP: 0033:0x7f661a573b19 [ 1420.757114] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1420.759230] RSP: 002b:00007f6617ae9188 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 1420.760111] RAX: ffffffffffffffda RBX: 00007f661a686f60 RCX: 00007f661a573b19 [ 1420.760950] RDX: 0000000020000140 RSI: 00000000c0481273 RDI: 0000000000000003 [ 1420.761759] RBP: 00007f6617ae91d0 R08: 0000000000000000 R09: 0000000000000000 [ 1420.762608] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 1420.763454] R13: 00007ffd527cbf9f R14: 00007f6617ae9300 R15: 0000000000022000 [ 1420.764356] debugfs: out of free dentries, can not create file 'msg' 23:43:10 executing program 6: ioctl$VT_RESIZEX(0xffffffffffffffff, 0x560a, &(0x7f0000000000)={0x0, 0x0, 0x0, 0x0, 0x1d}) 23:43:10 executing program 5: perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r0 = syz_mount_image$vfat(&(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x0, 0x2, &(0x7f0000000180)=[{&(0x7f0000000140)="eb3c906d6b66732e66617400020801000470008400f801", 0x17}, {0x0, 0x0, 0x1000a00}], 0x0, &(0x7f0000000240)=ANY=[]) openat2(r0, &(0x7f0000000100)='./file0\x00', &(0x7f00000001c0)={0x40040, 0xf000}, 0x18) 23:43:10 executing program 1: perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = syz_io_uring_setup(0x3a75, &(0x7f0000000080), &(0x7f0000ffb000/0x3000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=0x0, &(0x7f0000000100)=0x0) r3 = socket$inet6_udplite(0xa, 0x2, 0x88) syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_RECVMSG={0xa, 0x0, 0x0, r3, 0x0, &(0x7f0000000440)={0x0, 0x0, 0x0}, 0x0, 0x40000203}, 0x0) mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0) r4 = mmap$IORING_OFF_CQ_RING(&(0x7f0000ffe000/0x2000)=nil, 0x2000, 0xf, 0x13, r0, 0x8000000) syz_io_uring_submit(r4, r2, &(0x7f00000002c0)=@IORING_OP_READ=@pass_buffer={0x16, 0x4, 0x0, @fd, 0x0, 0x0}, 0x80000001) r5 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1) dup2(r5, r3) io_uring_enter(0xffffffffffffffff, 0x58ab, 0x0, 0x0, 0x0, 0x0) 23:43:10 executing program 7: perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_mount_image$vfat(&(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x8, 0x2, &(0x7f0000000180)=[{&(0x7f0000000140)="eb3c906d6b66732e66617400020801000470008400f801", 0x17}, {0x0, 0x0, 0x1000a00}], 0x0, &(0x7f0000000240)=ANY=[]) 23:43:10 executing program 4: perf_event_open(&(0x7f0000001d80)={0x2, 0x80, 0x69, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = socket$inet6_udp(0xa, 0x2, 0x0) dup(0xffffffffffffffff) fstat(0xffffffffffffffff, 0x0) connect$inet6(r0, &(0x7f0000000600)={0xa, 0x0, 0x0, @dev, 0x2}, 0x1c) sendmmsg$inet6(r0, &(0x7f0000000080)=[{{0x0, 0x11, &(0x7f00000004c0)=[{&(0x7f00000001c0)="4bc702854e3954b59347985ccc868289d3fe483d2c0900a2a1d12e33a66529e1f276fef452632dfa3c004ce3be84a5f66c29cd4ec39ae5206562fbc9ea3c0dbbebc22e628e147b0e9631f19b0ce0a48e0e675b2da3442226b898f1ddf8eabf133ab4a9cb0999c2ee1d3bd36d089b0d8e97ea00d4c5f6ad14dce058d595aacba2d587ff5eacd81b71a73f53ed276d1f3b3384bb2bfba4e0f37302e690df9e7024378ac754ac0576f996f3ee53d1034c7720767ddf2625817532f7ae89103367b73a36152b84c38bc227ba9e9ff48bcfe027585cf14bff37a888", 0xff41}], 0x1}}], 0x1, 0x0) 23:43:10 executing program 3: r0 = syz_open_dev$tty1(0xc, 0x4, 0x1) writev(r0, &(0x7f0000000080)=[{&(0x7f0000001380)="3ead823d27b1f38d1ab83fca92a1f8f4a79624a264eb3d23f624cb63a9a475c4336e3015462fa8b76b1c5fb9b159eaa406698e2f3dcd71c5ba4e666731496d8ddd1bbaae50714c9ccdc53444b41f6df995ce4a1e6b9807bce8fa3e046360e5d1b228a3367e2315a985fcf8542b6a2e58eff19d99aa1de724345dd5786c63d31c197c760ac73dc10c91fcf49125d4dd5e1d4c952eeabf70f80b092c914e00cd0e75bdea96065d75447e5e2917619f3d3e2662b99fac83e65ca6fb6fc547ce903e960595bafc4990dfa6263d2dd2268b3f6f3df3b1603e198bc4011a4b1c43c686ff811d9a346aabe8c9f33c2c5e0ab15e288917c0de80a9d49e72e1efc8db344b3a715702fd03a0e9e2387cc5032967d44d8b3b68383f6c89c842ec2eadc06d1e5133067d6b3f11647561748b7d4185cab428d5fbf98ea4100f2276af2fec68da7e57d65c185e261b6790c65ebb5f98cb027d065d424a65705b15be6eda2b4ba4f6a337f711fc7088d216cb59a744bc5a0d0f059b11d6d7c0784065277076525027223b82fdcc899b2de92a710082edf89a57c0bf416899d2f8ad2cad43e5018b52025096784ecd82a29c00a8bf5ffa6e3b75fe641acf39885c084ae7e546f04224aeb23f61d99fc464a533fc6b87790e335057b54dbff233ced4a7ef90884dc7d90d678cc080024b9b4a", 0x1ea}], 0x1) 23:43:11 executing program 0: perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = syz_mount_image$vfat(0x0, &(0x7f00000000c0)='./file0\x00', 0x0, 0x2, &(0x7f0000000180)=[{&(0x7f0000000140)="eb3c906d6b66732e66617400020801000470008400f801", 0x17}, {0x0, 0x0, 0x1000a00}], 0x0, &(0x7f0000000240)=ANY=[]) openat2(r0, &(0x7f0000000100)='./file0\x00', &(0x7f00000001c0)={0x40040, 0x8}, 0x18) 23:43:26 executing program 6: write$binfmt_elf64(0xffffffffffffffff, &(0x7f0000000040)={{0x7f, 0x45, 0x4c, 0x46, 0x2, 0x3b, 0x81, 0x1, 0xfffffffffffffff9, 0x3, 0x6, 0x0, 0x79, 0x40, 0x1a1, 0xfffffffe, 0x1, 0x38, 0x2, 0xdf88, 0x5fa, 0x1}, [{0x5, 0x0, 0x6, 0x40, 0x0, 0x9, 0x6, 0x4}, {0x1, 0x7fffffff, 0x6, 0x1ff, 0xa9a, 0x7ff, 0x8, 0x40800000000}], "796559176b394e2851aecb0cbd9427979fce4509b09b6712bf4848038acec046bba4e4ce261f345d3572535bdeb6a29b", ['\x00', '\x00', '\x00', '\x00']}, 0x4e0) r0 = syz_open_dev$tty20(0xc, 0x4, 0x1) ioctl$VT_RESIZEX(r0, 0x560a, &(0x7f0000000000)={0x0, 0x0, 0x0, 0x0, 0x1d}) 23:43:26 executing program 0: perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = syz_mount_image$vfat(0x0, &(0x7f00000000c0)='./file0\x00', 0x0, 0x2, &(0x7f0000000180)=[{&(0x7f0000000140)="eb3c906d6b66732e66617400020801000470008400f801", 0x17}, {0x0, 0x0, 0x1000a00}], 0x0, &(0x7f0000000240)=ANY=[]) openat2(r0, &(0x7f0000000100)='./file0\x00', &(0x7f00000001c0)={0x40040, 0x8}, 0x18) 23:43:26 executing program 5: perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r0 = syz_mount_image$vfat(&(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x0, 0x2, &(0x7f0000000180)=[{&(0x7f0000000140)="eb3c906d6b66732e66617400020801000470008400f801", 0x17}, {0x0, 0x0, 0x1000a00}], 0x0, &(0x7f0000000240)=ANY=[]) openat2(r0, &(0x7f0000000100)='./file0\x00', &(0x7f00000001c0)={0x40040, 0x80000}, 0x18) 23:43:26 executing program 1: perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = syz_io_uring_setup(0x3a75, &(0x7f0000000080), &(0x7f0000ffb000/0x3000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=0x0, &(0x7f0000000100)=0x0) r3 = socket$inet6_udplite(0xa, 0x2, 0x88) syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_RECVMSG={0xa, 0x0, 0x0, r3, 0x0, &(0x7f0000000440)={0x0, 0x0, 0x0}, 0x0, 0x40000203}, 0x0) mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0) r4 = mmap$IORING_OFF_CQ_RING(&(0x7f0000ffe000/0x2000)=nil, 0x2000, 0xf, 0x13, r0, 0x8000000) syz_io_uring_submit(r4, r2, &(0x7f00000002c0)=@IORING_OP_READ=@pass_buffer={0x16, 0x4, 0x0, @fd, 0x0, 0x0}, 0x80000001) r5 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1) dup2(r5, r3) io_uring_enter(0xffffffffffffffff, 0x58ab, 0x0, 0x0, 0x0, 0x0) 23:43:26 executing program 3: r0 = syz_open_dev$tty1(0xc, 0x4, 0x1) writev(r0, &(0x7f0000000080)=[{&(0x7f0000001380)="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", 0x1ea}], 0x1) 23:43:26 executing program 2: r0 = add_key$keyring(&(0x7f0000000040), &(0x7f00000002c0)={'syz', 0x3}, 0x0, 0x0, 0xfffffffffffffffd) keyctl$KEYCTL_RESTRICT_KEYRING(0xf, r0, 0x0, 0x0) connect$inet(0xffffffffffffffff, &(0x7f0000000140)={0x2, 0x0, @dev}, 0x10) r1 = syz_open_dev$sg(&(0x7f0000000040), 0x0, 0x0) ioctl$BLKTRACETEARDOWN(r1, 0x1276, 0x0) ioctl$BLKTRACESETUP(r1, 0xc0481273, &(0x7f0000000140)={'\x00', 0x0, 0x4, 0x8, 0x76}) (fail_nth: 27) 23:43:26 executing program 4: perf_event_open(&(0x7f0000001d80)={0x2, 0x80, 0x69, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = socket$inet6_udp(0xa, 0x2, 0x0) dup(0xffffffffffffffff) fstat(0xffffffffffffffff, 0x0) connect$inet6(r0, &(0x7f0000000600)={0xa, 0x0, 0x0, @dev, 0x2}, 0x1c) sendmmsg$inet6(r0, &(0x7f0000000080)=[{{0x0, 0x60, &(0x7f00000004c0)=[{&(0x7f00000001c0)="4bc702854e3954b59347985ccc868289d3fe483d2c0900a2a1d12e33a66529e1f276fef452632dfa3c004ce3be84a5f66c29cd4ec39ae5206562fbc9ea3c0dbbebc22e628e147b0e9631f19b0ce0a48e0e675b2da3442226b898f1ddf8eabf133ab4a9cb0999c2ee1d3bd36d089b0d8e97ea00d4c5f6ad14dce058d595aacba2d587ff5eacd81b71a73f53ed276d1f3b3384bb2bfba4e0f37302e690df9e7024378ac754ac0576f996f3ee53d1034c7720767ddf2625817532f7ae89103367b73a36152b84c38bc227ba9e9ff48bcfe027585cf14bff37a888", 0xff41}], 0x1}}], 0x1, 0x0) 23:43:26 executing program 7: perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_mount_image$vfat(&(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x9, 0x2, &(0x7f0000000180)=[{&(0x7f0000000140)="eb3c906d6b66732e66617400020801000470008400f801", 0x17}, {0x0, 0x0, 0x1000a00}], 0x0, &(0x7f0000000240)=ANY=[]) [ 1436.224143] FAULT_INJECTION: forcing a failure. [ 1436.224143] name failslab, interval 1, probability 0, space 0, times 0 [ 1436.226549] CPU: 1 PID: 8632 Comm: syz-executor.2 Not tainted 5.10.194 #1 [ 1436.227927] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1436.229595] Call Trace: [ 1436.230147] dump_stack+0x107/0x167 [ 1436.230893] should_fail.cold+0x5/0xa [ 1436.231664] ? create_object.isra.0+0x3a/0xa20 [ 1436.232593] should_failslab+0x5/0x20 [ 1436.233362] kmem_cache_alloc+0x5b/0x310 [ 1436.234209] create_object.isra.0+0x3a/0xa20 [ 1436.235098] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 1436.236123] kmem_cache_alloc+0x159/0x310 [ 1436.236969] security_inode_alloc+0x34/0x160 [ 1436.237869] inode_init_always+0xa4e/0xd10 [ 1436.238723] alloc_inode+0x84/0x240 [ 1436.239456] new_inode+0x23/0x250 [ 1436.240160] debugfs_get_inode+0x1a/0x130 [ 1436.240992] __debugfs_create_file+0x14e/0x530 [ 1436.241929] do_blk_trace_setup+0x43c/0xc10 [ 1436.242801] ? _copy_from_user+0xfb/0x1b0 [ 1436.243635] __blk_trace_setup+0xca/0x180 [ 1436.244470] ? do_blk_trace_setup+0xc10/0xc10 [ 1436.245391] ? perf_trace_lock+0xac/0x490 [ 1436.246251] blk_trace_setup+0x43/0x60 [ 1436.247045] sg_ioctl_common+0x634/0x2570 [ 1436.247885] ? __sanitizer_cov_trace_switch+0x45/0x80 [ 1436.248927] ? do_vfs_ioctl+0x283/0x10d0 [ 1436.249746] ? sg_write+0x120/0x120 [ 1436.250488] ? generic_block_fiemap+0x60/0x60 [ 1436.251397] ? __mutex_unlock_slowpath+0xe1/0x600 [ 1436.252390] ? selinux_file_ioctl+0xb6/0x270 [ 1436.253274] ? sg_compat_ioctl+0x120/0x120 [ 1436.254136] sg_ioctl+0x8f/0x120 [ 1436.254825] __x64_sys_ioctl+0x19a/0x210 [ 1436.255648] do_syscall_64+0x33/0x40 [ 1436.256401] entry_SYSCALL_64_after_hwframe+0x62/0xc7 [ 1436.257434] RIP: 0033:0x7f661a573b19 [ 1436.258206] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1436.261909] RSP: 002b:00007f6617ae9188 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 1436.263443] RAX: ffffffffffffffda RBX: 00007f661a686f60 RCX: 00007f661a573b19 [ 1436.264850] RDX: 0000000020000140 RSI: 00000000c0481273 RDI: 0000000000000003 [ 1436.266249] RBP: 00007f6617ae91d0 R08: 0000000000000000 R09: 0000000000000000 [ 1436.267664] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 1436.269081] R13: 00007ffd527cbf9f R14: 00007f6617ae9300 R15: 0000000000022000 23:43:26 executing program 0: perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = syz_mount_image$vfat(0x0, &(0x7f00000000c0)='./file0\x00', 0x0, 0x2, &(0x7f0000000180)=[{&(0x7f0000000140)="eb3c906d6b66732e66617400020801000470008400f801", 0x17}, {0x0, 0x0, 0x1000a00}], 0x0, &(0x7f0000000240)=ANY=[]) openat2(r0, &(0x7f0000000100)='./file0\x00', &(0x7f00000001c0)={0x40040, 0x8}, 0x18) 23:43:26 executing program 3: r0 = syz_open_dev$tty1(0xc, 0x4, 0x1) writev(r0, &(0x7f0000000080)=[{&(0x7f0000001380)="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", 0x1ea}], 0x1) 23:43:26 executing program 6: r0 = syz_open_dev$tty20(0xc, 0x4, 0x1) ioctl$AUTOFS_DEV_IOCTL_TIMEOUT(0xffffffffffffffff, 0xc018937a, &(0x7f0000000040)={{0x1, 0x1, 0x18, r0, {0x6}}, './file0\x00'}) ioctl$TCSETSW2(r1, 0x402c542c, &(0x7f0000000080)={0x10001, 0x7ff, 0xffffffff, 0x8, 0x5, "9e900761a68a5b0a00afb4e0c7d0bb342d1678", 0x81, 0x1000}) r2 = openat(0xffffffffffffffff, &(0x7f00000000c0)='./file0\x00', 0xc4080, 0x131) ioctl$VT_RESIZEX(r2, 0x560a, &(0x7f0000000000)={0x0, 0x0, 0x0, 0x0, 0x1d}) 23:43:26 executing program 7: perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_mount_image$vfat(&(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0xa, 0x2, &(0x7f0000000180)=[{&(0x7f0000000140)="eb3c906d6b66732e66617400020801000470008400f801", 0x17}, {0x0, 0x0, 0x1000a00}], 0x0, &(0x7f0000000240)=ANY=[]) 23:43:26 executing program 5: perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r0 = syz_mount_image$vfat(&(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x0, 0x2, &(0x7f0000000180)=[{&(0x7f0000000140)="eb3c906d6b66732e66617400020801000470008400f801", 0x17}, {0x0, 0x0, 0x1000a00}], 0x0, &(0x7f0000000240)=ANY=[]) openat2(r0, &(0x7f0000000100)='./file0\x00', &(0x7f00000001c0)={0x40040, 0xf0ffff}, 0x18) 23:43:26 executing program 1: perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = syz_io_uring_setup(0x3a75, &(0x7f0000000080), &(0x7f0000ffb000/0x3000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=0x0, &(0x7f0000000100)=0x0) r3 = socket$inet6_udplite(0xa, 0x2, 0x88) syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_RECVMSG={0xa, 0x0, 0x0, r3, 0x0, &(0x7f0000000440)={0x0, 0x0, 0x0}, 0x0, 0x40000203}, 0x0) mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0) r4 = mmap$IORING_OFF_CQ_RING(&(0x7f0000ffe000/0x2000)=nil, 0x2000, 0xf, 0x13, r0, 0x8000000) syz_io_uring_submit(r4, r2, &(0x7f00000002c0)=@IORING_OP_READ=@pass_buffer={0x16, 0x4, 0x0, @fd, 0x0, 0x0}, 0x80000001) r5 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1) dup2(r5, r3) io_uring_enter(r0, 0x0, 0x0, 0x0, 0x0, 0x0) 23:43:26 executing program 7: perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_mount_image$vfat(&(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0xb, 0x2, &(0x7f0000000180)=[{&(0x7f0000000140)="eb3c906d6b66732e66617400020801000470008400f801", 0x17}, {0x0, 0x0, 0x1000a00}], 0x0, &(0x7f0000000240)=ANY=[]) 23:43:26 executing program 6: ioctl$VT_RESIZEX(0xffffffffffffffff, 0x560a, &(0x7f0000000000)={0x0, 0x0, 0x0, 0x0, 0x1d}) 23:43:26 executing program 4: perf_event_open(&(0x7f0000001d80)={0x2, 0x80, 0x69, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = socket$inet6_udp(0xa, 0x2, 0x0) dup(0xffffffffffffffff) fstat(0xffffffffffffffff, 0x0) connect$inet6(r0, &(0x7f0000000600)={0xa, 0x0, 0x0, @dev, 0x2}, 0x1c) sendmmsg$inet6(r0, &(0x7f0000000080)=[{{0x0, 0x195, &(0x7f00000004c0)=[{&(0x7f00000001c0)="4bc702854e3954b59347985ccc868289d3fe483d2c0900a2a1d12e33a66529e1f276fef452632dfa3c004ce3be84a5f66c29cd4ec39ae5206562fbc9ea3c0dbbebc22e628e147b0e9631f19b0ce0a48e0e675b2da3442226b898f1ddf8eabf133ab4a9cb0999c2ee1d3bd36d089b0d8e97ea00d4c5f6ad14dce058d595aacba2d587ff5eacd81b71a73f53ed276d1f3b3384bb2bfba4e0f37302e690df9e7024378ac754ac0576f996f3ee53d1034c7720767ddf2625817532f7ae89103367b73a36152b84c38bc227ba9e9ff48bcfe027585cf14bff37a888", 0xff41}], 0x1}}], 0x1, 0x0) 23:43:41 executing program 2: r0 = add_key$keyring(&(0x7f0000000040), &(0x7f00000002c0)={'syz', 0x3}, 0x0, 0x0, 0xfffffffffffffffd) keyctl$KEYCTL_RESTRICT_KEYRING(0xf, r0, 0x0, 0x0) connect$inet(0xffffffffffffffff, &(0x7f0000000140)={0x2, 0x0, @dev}, 0x10) r1 = syz_open_dev$sg(&(0x7f0000000040), 0x0, 0x0) ioctl$BLKTRACETEARDOWN(r1, 0x1276, 0x0) ioctl$BLKTRACESETUP(r1, 0xc0481273, &(0x7f0000000140)={'\x00', 0x0, 0x4, 0x8, 0x76}) (fail_nth: 28) 23:43:41 executing program 7: perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_mount_image$vfat(&(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0xd, 0x2, &(0x7f0000000180)=[{&(0x7f0000000140)="eb3c906d6b66732e66617400020801000470008400f801", 0x17}, {0x0, 0x0, 0x1000a00}], 0x0, &(0x7f0000000240)=ANY=[]) 23:43:41 executing program 3: r0 = syz_open_dev$tty1(0xc, 0x4, 0x1) writev(r0, &(0x7f0000000080)=[{&(0x7f0000001380)="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", 0x1ea}], 0x1) 23:43:41 executing program 4: perf_event_open(&(0x7f0000001d80)={0x2, 0x80, 0x69, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = socket$inet6_udp(0xa, 0x2, 0x0) dup(0xffffffffffffffff) fstat(0xffffffffffffffff, 0x0) connect$inet6(r0, &(0x7f0000000600)={0xa, 0x0, 0x0, @dev, 0x2}, 0x1c) sendmmsg$inet6(r0, &(0x7f0000000080)=[{{0x0, 0x300, &(0x7f00000004c0)=[{&(0x7f00000001c0)="4bc702854e3954b59347985ccc868289d3fe483d2c0900a2a1d12e33a66529e1f276fef452632dfa3c004ce3be84a5f66c29cd4ec39ae5206562fbc9ea3c0dbbebc22e628e147b0e9631f19b0ce0a48e0e675b2da3442226b898f1ddf8eabf133ab4a9cb0999c2ee1d3bd36d089b0d8e97ea00d4c5f6ad14dce058d595aacba2d587ff5eacd81b71a73f53ed276d1f3b3384bb2bfba4e0f37302e690df9e7024378ac754ac0576f996f3ee53d1034c7720767ddf2625817532f7ae89103367b73a36152b84c38bc227ba9e9ff48bcfe027585cf14bff37a888", 0xff41}], 0x1}}], 0x1, 0x0) 23:43:41 executing program 5: perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r0 = syz_mount_image$vfat(&(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x0, 0x2, &(0x7f0000000180)=[{&(0x7f0000000140)="eb3c906d6b66732e66617400020801000470008400f801", 0x17}, {0x0, 0x0, 0x1000a00}], 0x0, &(0x7f0000000240)=ANY=[]) openat2(r0, &(0x7f0000000100)='./file0\x00', &(0x7f00000001c0)={0x40040, 0x1000000}, 0x18) 23:43:41 executing program 6: r0 = syz_open_dev$tty20(0xc, 0x4, 0x1) ioctl$VT_RESIZEX(r0, 0x560a, &(0x7f0000000000)={0x0, 0x0, 0x0, 0x0, 0x1d}) ioctl$TIOCSETD(r0, 0x5423, &(0x7f0000000040)=0x1) 23:43:41 executing program 1: perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = syz_io_uring_setup(0x3a75, &(0x7f0000000080), &(0x7f0000ffb000/0x3000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=0x0, &(0x7f0000000100)=0x0) r3 = socket$inet6_udplite(0xa, 0x2, 0x88) syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_RECVMSG={0xa, 0x0, 0x0, r3, 0x0, &(0x7f0000000440)={0x0, 0x0, 0x0}, 0x0, 0x40000203}, 0x0) mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0) r4 = mmap$IORING_OFF_CQ_RING(&(0x7f0000ffe000/0x2000)=nil, 0x2000, 0xf, 0x13, r0, 0x8000000) syz_io_uring_submit(r4, r2, &(0x7f00000002c0)=@IORING_OP_READ=@pass_buffer={0x16, 0x4, 0x0, @fd, 0x0, 0x0}, 0x80000001) r5 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1) dup2(r5, r3) io_uring_enter(r0, 0x0, 0x0, 0x0, 0x0, 0x0) 23:43:41 executing program 0: perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = syz_mount_image$vfat(&(0x7f0000000080), 0x0, 0x0, 0x2, &(0x7f0000000180)=[{&(0x7f0000000140)="eb3c906d6b66732e66617400020801000470008400f801", 0x17}, {0x0, 0x0, 0x1000a00}], 0x0, &(0x7f0000000240)=ANY=[]) openat2(r0, &(0x7f0000000100)='./file0\x00', &(0x7f00000001c0)={0x40040, 0x8}, 0x18) [ 1451.806238] FAULT_INJECTION: forcing a failure. [ 1451.806238] name fail_page_alloc, interval 1, probability 0, space 0, times 0 [ 1451.806266] CPU: 0 PID: 8673 Comm: syz-executor.2 Not tainted 5.10.194 #1 [ 1451.806276] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1451.806282] Call Trace: [ 1451.806309] dump_stack+0x107/0x167 [ 1451.806332] should_fail.cold+0x5/0xa [ 1451.806358] __alloc_pages_nodemask+0x182/0x600 [ 1451.806377] ? lock_acquire+0x197/0x470 [ 1451.806396] ? lockref_get+0x11/0x50 [ 1451.806414] ? __alloc_pages_slowpath.constprop.0+0x2130/0x2130 [ 1451.806442] ? lock_downgrade+0x6d0/0x6d0 [ 1451.806461] ? do_raw_spin_lock+0x121/0x260 [ 1451.806482] ? rwlock_bug.part.0+0x90/0x90 [ 1451.806505] alloc_pages_current+0x187/0x280 [ 1451.806530] __get_free_pages+0xc/0xa0 [ 1451.806548] inode_doinit_with_dentry+0x8f1/0x1240 [ 1451.806571] ? hrtimer_try_to_cancel.part.0+0x267/0x3b0 23:43:42 executing program 1: perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = syz_io_uring_setup(0x3a75, &(0x7f0000000080), &(0x7f0000ffb000/0x3000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=0x0, &(0x7f0000000100)=0x0) r3 = socket$inet6_udplite(0xa, 0x2, 0x88) syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_RECVMSG={0xa, 0x0, 0x0, r3, 0x0, &(0x7f0000000440)={0x0, 0x0, 0x0}, 0x0, 0x40000203}, 0x0) mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0) r4 = mmap$IORING_OFF_CQ_RING(&(0x7f0000ffe000/0x2000)=nil, 0x2000, 0xf, 0x13, r0, 0x8000000) syz_io_uring_submit(r4, r2, &(0x7f00000002c0)=@IORING_OP_READ=@pass_buffer={0x16, 0x4, 0x0, @fd, 0x0, 0x0}, 0x80000001) r5 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1) dup2(r5, r3) io_uring_enter(r0, 0x0, 0x0, 0x0, 0x0, 0x0) 23:43:42 executing program 0: perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = syz_mount_image$vfat(&(0x7f0000000080), 0x0, 0x0, 0x2, &(0x7f0000000180)=[{&(0x7f0000000140)="eb3c906d6b66732e66617400020801000470008400f801", 0x17}, {0x0, 0x0, 0x1000a00}], 0x0, &(0x7f0000000240)=ANY=[]) openat2(r0, &(0x7f0000000100)='./file0\x00', &(0x7f00000001c0)={0x40040, 0x8}, 0x18) 23:43:42 executing program 7: perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_mount_image$vfat(&(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0xe, 0x2, &(0x7f0000000180)=[{&(0x7f0000000140)="eb3c906d6b66732e66617400020801000470008400f801", 0x17}, {0x0, 0x0, 0x1000a00}], 0x0, &(0x7f0000000240)=ANY=[]) [ 1451.806587] ? hrtimer_init_sleeper+0x1a0/0x1f0 [ 1451.806606] ? selinux_file_lock+0x280/0x280 [ 1451.806623] ? current_time+0x1e6/0x2c0 23:43:42 executing program 2: r0 = add_key$keyring(&(0x7f0000000040), &(0x7f00000002c0)={'syz', 0x3}, 0x0, 0x0, 0xfffffffffffffffd) keyctl$KEYCTL_RESTRICT_KEYRING(0xf, r0, 0x0, 0x0) connect$inet(0xffffffffffffffff, &(0x7f0000000140)={0x2, 0x0, @dev}, 0x10) r1 = syz_open_dev$sg(&(0x7f0000000040), 0x0, 0x0) ioctl$BLKTRACETEARDOWN(r1, 0x1276, 0x0) ioctl$BLKTRACESETUP(r1, 0xc0481273, &(0x7f0000000140)={'\x00', 0x0, 0x4, 0x8, 0x76}) (fail_nth: 29) [ 1451.806640] ? igrab+0xc0/0xc0 [ 1451.806662] selinux_d_instantiate+0x23/0x30 [ 1451.806682] security_d_instantiate+0x56/0xe0 [ 1451.806703] d_instantiate+0x5a/0x90 [ 1451.806723] __debugfs_create_file+0x246/0x530 [ 1451.806749] do_blk_trace_setup+0x43c/0xc10 [ 1451.806769] ? _copy_from_user+0xfb/0x1b0 23:43:42 executing program 7: perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_mount_image$vfat(&(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0xf, 0x2, &(0x7f0000000180)=[{&(0x7f0000000140)="eb3c906d6b66732e66617400020801000470008400f801", 0x17}, {0x0, 0x0, 0x1000a00}], 0x0, &(0x7f0000000240)=ANY=[]) 23:43:42 executing program 4: perf_event_open(&(0x7f0000001d80)={0x2, 0x80, 0x69, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = socket$inet6_udp(0xa, 0x2, 0x0) dup(0xffffffffffffffff) fstat(0xffffffffffffffff, 0x0) connect$inet6(r0, &(0x7f0000000600)={0xa, 0x0, 0x0, @dev, 0x2}, 0x1c) sendmmsg$inet6(r0, &(0x7f0000000080)=[{{0x0, 0x391, &(0x7f00000004c0)=[{&(0x7f00000001c0)="4bc702854e3954b59347985ccc868289d3fe483d2c0900a2a1d12e33a66529e1f276fef452632dfa3c004ce3be84a5f66c29cd4ec39ae5206562fbc9ea3c0dbbebc22e628e147b0e9631f19b0ce0a48e0e675b2da3442226b898f1ddf8eabf133ab4a9cb0999c2ee1d3bd36d089b0d8e97ea00d4c5f6ad14dce058d595aacba2d587ff5eacd81b71a73f53ed276d1f3b3384bb2bfba4e0f37302e690df9e7024378ac754ac0576f996f3ee53d1034c7720767ddf2625817532f7ae89103367b73a36152b84c38bc227ba9e9ff48bcfe027585cf14bff37a888", 0xff41}], 0x1}}], 0x1, 0x0) [ 1451.806790] __blk_trace_setup+0xca/0x180 [ 1451.806809] ? do_blk_trace_setup+0xc10/0xc10 [ 1451.806840] ? perf_trace_lock+0xac/0x490 [ 1451.806868] blk_trace_setup+0x43/0x60 23:43:42 executing program 5: perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r0 = syz_mount_image$vfat(&(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x0, 0x2, &(0x7f0000000180)=[{&(0x7f0000000140)="eb3c906d6b66732e66617400020801000470008400f801", 0x17}, {0x0, 0x0, 0x1000a00}], 0x0, &(0x7f0000000240)=ANY=[]) openat2(r0, &(0x7f0000000100)='./file0\x00', &(0x7f00000001c0)={0x40040, 0x2000000}, 0x18) [ 1451.806891] sg_ioctl_common+0x634/0x2570 [ 1451.806912] ? __sanitizer_cov_trace_switch+0x45/0x80 [ 1451.806931] ? do_vfs_ioctl+0x283/0x10d0 [ 1451.806947] ? sg_write+0x120/0x120 [ 1451.806964] ? generic_block_fiemap+0x60/0x60 [ 1451.806986] ? __mutex_unlock_slowpath+0xe1/0x600 [ 1451.807023] ? selinux_file_ioctl+0xb6/0x270 [ 1451.807039] ? sg_compat_ioctl+0x120/0x120 [ 1451.807058] sg_ioctl+0x8f/0x120 [ 1451.807079] __x64_sys_ioctl+0x19a/0x210 [ 1451.807104] do_syscall_64+0x33/0x40 [ 1451.807124] entry_SYSCALL_64_after_hwframe+0x62/0xc7 [ 1451.807137] RIP: 0033:0x7f661a573b19 [ 1451.807156] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1451.807166] RSP: 002b:00007f6617ae9188 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 1451.807187] RAX: ffffffffffffffda RBX: 00007f661a686f60 RCX: 00007f661a573b19 [ 1451.807198] RDX: 0000000020000140 RSI: 00000000c0481273 RDI: 0000000000000003 [ 1451.807209] RBP: 00007f6617ae91d0 R08: 0000000000000000 R09: 0000000000000000 [ 1451.807220] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 1451.807231] R13: 00007ffd527cbf9f R14: 00007f6617ae9300 R15: 0000000000022000 [ 1452.064870] FAULT_INJECTION: forcing a failure. [ 1452.064870] name failslab, interval 1, probability 0, space 0, times 0 [ 1452.064892] CPU: 1 PID: 8704 Comm: syz-executor.2 Not tainted 5.10.194 #1 [ 1452.064902] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1452.064914] Call Trace: [ 1452.064941] dump_stack+0x107/0x167 [ 1452.064964] should_fail.cold+0x5/0xa [ 1452.064984] ? relay_open+0xb3/0xa10 [ 1452.065006] should_failslab+0x5/0x20 [ 1452.065025] kmem_cache_alloc_trace+0x55/0x320 [ 1452.065045] ? do_raw_spin_unlock+0x4f/0x220 [ 1452.065067] relay_open+0xb3/0xa10 [ 1452.065094] do_blk_trace_setup+0x4cf/0xc10 [ 1452.065115] ? _copy_from_user+0xfb/0x1b0 [ 1452.065135] __blk_trace_setup+0xca/0x180 [ 1452.065154] ? do_blk_trace_setup+0xc10/0xc10 [ 1452.065184] ? perf_trace_lock+0xac/0x490 [ 1452.065212] blk_trace_setup+0x43/0x60 [ 1452.065234] sg_ioctl_common+0x634/0x2570 [ 1452.065256] ? __sanitizer_cov_trace_switch+0x45/0x80 [ 1452.065275] ? do_vfs_ioctl+0x283/0x10d0 [ 1452.065291] ? sg_write+0x120/0x120 [ 1452.065308] ? generic_block_fiemap+0x60/0x60 [ 1452.065330] ? __mutex_unlock_slowpath+0xe1/0x600 [ 1452.065367] ? selinux_file_ioctl+0xb6/0x270 [ 1452.065383] ? sg_compat_ioctl+0x120/0x120 [ 1452.065402] sg_ioctl+0x8f/0x120 [ 1452.065423] __x64_sys_ioctl+0x19a/0x210 [ 1452.065447] do_syscall_64+0x33/0x40 [ 1452.065467] entry_SYSCALL_64_after_hwframe+0x62/0xc7 [ 1452.065480] RIP: 0033:0x7f661a573b19 [ 1452.065499] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1452.065509] RSP: 002b:00007f6617ae9188 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 1452.065531] RAX: ffffffffffffffda RBX: 00007f661a686f60 RCX: 00007f661a573b19 [ 1452.065542] RDX: 0000000020000140 RSI: 00000000c0481273 RDI: 0000000000000003 [ 1452.065553] RBP: 00007f6617ae91d0 R08: 0000000000000000 R09: 0000000000000000 [ 1452.065564] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 1452.065575] R13: 00007ffd527cbf9f R14: 00007f6617ae9300 R15: 0000000000022000 23:43:57 executing program 6: r0 = syz_open_dev$tty20(0xc, 0x4, 0x1) ioctl$TIOCSETD(r0, 0x5423, &(0x7f0000000040)=0x16) ioctl$VT_RESIZEX(r0, 0x560a, &(0x7f0000000000)={0x0, 0x0, 0x0, 0x0, 0x1d}) 23:43:57 executing program 3: r0 = syz_open_dev$tty1(0xc, 0x4, 0x1) writev(r0, &(0x7f0000000080)=[{&(0x7f0000001380)="3ead823d27b1f38d169b3fca92a1f8f4a79624a264eb3d23f624cb63a9a475c4336e3015462fa8b76b1c5fb9b159eaa406698e2f3dcd71c5ba4e666731496d8ddd1bbaae50714c9ccdc53444b41f6df995ce4a1e6b9807bce8fa3e046360e5d1b228a3367e2315a985fcf8542b6a2e58eff19d99aa1de724345dd5786c63d31c197c760ac73dc10c91fcf49125d4dd5e1d4c952eeabf70f80b092c914e00cd0e75bdea96065d75447e5e2917619f3d3e2662b99fac83e65ca6fb6fc547ce903e960595bafc4990dfa6263d2dd2268b3f6f3df3b1603e198bc4011a4b1c43c686ff811d9a346aabe8c9f33c2c5e0ab15e288917c0de80a9d49e72e1efc8db344b3a715702fd03a0e9e2387cc5032967d44d8b3b68383f6c89c842ec2eadc06d1e5133067d6b3f11647561748b7d4185cab428d5fbf98ea4100f2276af2fec68da7e57d65c185e261b6790c65ebb5f98cb027d065d424a65705b15be6eda2b4ba4f6a337f711fc7088d216cb59a744bc5a0d0f059b11d6d7c0784065277076525027223b82fdcc899b2de92a710082edf89a57c0bf416899d2f8ad2cad43e5018b52025096784ecd82a29c00a8bf5ffa6e3b75fe641acf39885c084ae7e546f04224aeb23f61d99fc464a533fc6b87790e335057b54dbff233ced4a7ef90884dc7d90d678cc080024b9b4a", 0x1ea}], 0x1) 23:43:57 executing program 2: r0 = add_key$keyring(&(0x7f0000000040), &(0x7f00000002c0)={'syz', 0x3}, 0x0, 0x0, 0xfffffffffffffffd) keyctl$KEYCTL_RESTRICT_KEYRING(0xf, r0, 0x0, 0x0) connect$inet(0xffffffffffffffff, &(0x7f0000000140)={0x2, 0x0, @dev}, 0x10) r1 = syz_open_dev$sg(&(0x7f0000000040), 0x0, 0x0) ioctl$BLKTRACETEARDOWN(r1, 0x1276, 0x0) ioctl$BLKTRACESETUP(r1, 0xc0481273, &(0x7f0000000140)={'\x00', 0x0, 0x4, 0x8, 0x76}) (fail_nth: 30) 23:43:57 executing program 0: perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = syz_mount_image$vfat(&(0x7f0000000080), 0x0, 0x0, 0x2, &(0x7f0000000180)=[{&(0x7f0000000140)="eb3c906d6b66732e66617400020801000470008400f801", 0x17}, {0x0, 0x0, 0x1000a00}], 0x0, &(0x7f0000000240)=ANY=[]) openat2(r0, &(0x7f0000000100)='./file0\x00', &(0x7f00000001c0)={0x40040, 0x8}, 0x18) 23:43:57 executing program 7: perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_mount_image$vfat(&(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x11, 0x2, &(0x7f0000000180)=[{&(0x7f0000000140)="eb3c906d6b66732e66617400020801000470008400f801", 0x17}, {0x0, 0x0, 0x1000a00}], 0x0, &(0x7f0000000240)=ANY=[]) 23:43:57 executing program 4: perf_event_open(&(0x7f0000001d80)={0x2, 0x80, 0x69, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = socket$inet6_udp(0xa, 0x2, 0x0) dup(0xffffffffffffffff) fstat(0xffffffffffffffff, 0x0) connect$inet6(r0, &(0x7f0000000600)={0xa, 0x0, 0x0, @dev, 0x2}, 0x1c) sendmmsg$inet6(r0, &(0x7f0000000080)=[{{0x0, 0x3c1, &(0x7f00000004c0)=[{&(0x7f00000001c0)="4bc702854e3954b59347985ccc868289d3fe483d2c0900a2a1d12e33a66529e1f276fef452632dfa3c004ce3be84a5f66c29cd4ec39ae5206562fbc9ea3c0dbbebc22e628e147b0e9631f19b0ce0a48e0e675b2da3442226b898f1ddf8eabf133ab4a9cb0999c2ee1d3bd36d089b0d8e97ea00d4c5f6ad14dce058d595aacba2d587ff5eacd81b71a73f53ed276d1f3b3384bb2bfba4e0f37302e690df9e7024378ac754ac0576f996f3ee53d1034c7720767ddf2625817532f7ae89103367b73a36152b84c38bc227ba9e9ff48bcfe027585cf14bff37a888", 0xff41}], 0x1}}], 0x1, 0x0) 23:43:57 executing program 5: perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r0 = syz_mount_image$vfat(&(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x0, 0x2, &(0x7f0000000180)=[{&(0x7f0000000140)="eb3c906d6b66732e66617400020801000470008400f801", 0x17}, {0x0, 0x0, 0x1000a00}], 0x0, &(0x7f0000000240)=ANY=[]) openat2(r0, &(0x7f0000000100)='./file0\x00', &(0x7f00000001c0)={0x40040, 0x3000000}, 0x18) [ 1467.435209] FAULT_INJECTION: forcing a failure. [ 1467.435209] name failslab, interval 1, probability 0, space 0, times 0 [ 1467.437743] CPU: 1 PID: 8733 Comm: syz-executor.2 Not tainted 5.10.194 #1 [ 1467.439215] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1467.441048] Call Trace: [ 1467.441080] dump_stack+0x107/0x167 [ 1467.441104] should_fail.cold+0x5/0xa [ 1467.441124] ? create_object.isra.0+0x3a/0xa20 [ 1467.441146] should_failslab+0x5/0x20 [ 1467.441163] kmem_cache_alloc+0x5b/0x310 [ 1467.441188] create_object.isra.0+0x3a/0xa20 [ 1467.441207] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 1467.441233] kmem_cache_alloc_trace+0x151/0x320 [ 1467.441258] relay_open+0xb3/0xa10 [ 1467.441286] do_blk_trace_setup+0x4cf/0xc10 [ 1467.441306] ? _copy_from_user+0xfb/0x1b0 [ 1467.441328] __blk_trace_setup+0xca/0x180 [ 1467.441346] ? do_blk_trace_setup+0xc10/0xc10 [ 1467.441377] ? perf_trace_lock+0xac/0x490 [ 1467.441405] blk_trace_setup+0x43/0x60 [ 1467.441428] sg_ioctl_common+0x634/0x2570 23:43:57 executing program 1: perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r0 = syz_mount_image$vfat(&(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x0, 0x2, &(0x7f0000000180)=[{&(0x7f0000000140)="eb3c906d6b66732e66617400020801000470008400f801", 0x17}, {0x0, 0x0, 0x1000a00}], 0x0, &(0x7f0000000240)=ANY=[]) openat2(r0, &(0x7f0000000100)='./file0\x00', &(0x7f00000001c0)={0x40040, 0x80000}, 0x18) [ 1467.441449] ? __sanitizer_cov_trace_switch+0x45/0x80 [ 1467.441468] ? do_vfs_ioctl+0x283/0x10d0 [ 1467.441484] ? sg_write+0x120/0x120 [ 1467.441501] ? generic_block_fiemap+0x60/0x60 [ 1467.441523] ? __mutex_unlock_slowpath+0xe1/0x600 [ 1467.441561] ? selinux_file_ioctl+0xb6/0x270 [ 1467.441577] ? sg_compat_ioctl+0x120/0x120 [ 1467.441596] sg_ioctl+0x8f/0x120 [ 1467.441617] __x64_sys_ioctl+0x19a/0x210 [ 1467.441641] do_syscall_64+0x33/0x40 [ 1467.441664] entry_SYSCALL_64_after_hwframe+0x62/0xc7 [ 1467.441676] RIP: 0033:0x7f661a573b19 [ 1467.441696] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1467.441706] RSP: 002b:00007f6617ae9188 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 1467.441727] RAX: ffffffffffffffda RBX: 00007f661a686f60 RCX: 00007f661a573b19 [ 1467.441738] RDX: 0000000020000140 RSI: 00000000c0481273 RDI: 0000000000000003 [ 1467.441749] RBP: 00007f6617ae91d0 R08: 0000000000000000 R09: 0000000000000000 [ 1467.441759] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 1467.441770] R13: 00007ffd527cbf9f R14: 00007f6617ae9300 R15: 0000000000022000 23:43:57 executing program 5: perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r0 = syz_mount_image$vfat(&(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x0, 0x2, &(0x7f0000000180)=[{&(0x7f0000000140)="eb3c906d6b66732e66617400020801000470008400f801", 0x17}, {0x0, 0x0, 0x1000a00}], 0x0, &(0x7f0000000240)=ANY=[]) openat2(r0, &(0x7f0000000100)='./file0\x00', &(0x7f00000001c0)={0x40040, 0x4000000}, 0x18) 23:43:57 executing program 0: perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = syz_mount_image$vfat(&(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x0, 0x0, 0x0, 0x0, &(0x7f0000000240)=ANY=[]) openat2(r0, &(0x7f0000000100)='./file0\x00', &(0x7f00000001c0)={0x40040, 0x8}, 0x18) 23:43:57 executing program 7: perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_mount_image$vfat(&(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x16, 0x2, &(0x7f0000000180)=[{&(0x7f0000000140)="eb3c906d6b66732e66617400020801000470008400f801", 0x17}, {0x0, 0x0, 0x1000a00}], 0x0, &(0x7f0000000240)=ANY=[]) 23:43:57 executing program 4: perf_event_open(&(0x7f0000001d80)={0x2, 0x80, 0x69, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = socket$inet6_udp(0xa, 0x2, 0x0) dup(0xffffffffffffffff) fstat(0xffffffffffffffff, 0x0) connect$inet6(r0, &(0x7f0000000600)={0xa, 0x0, 0x0, @dev, 0x2}, 0x1c) sendmmsg$inet6(r0, &(0x7f0000000080)=[{{0x0, 0x598, &(0x7f00000004c0)=[{&(0x7f00000001c0)="4bc702854e3954b59347985ccc868289d3fe483d2c0900a2a1d12e33a66529e1f276fef452632dfa3c004ce3be84a5f66c29cd4ec39ae5206562fbc9ea3c0dbbebc22e628e147b0e9631f19b0ce0a48e0e675b2da3442226b898f1ddf8eabf133ab4a9cb0999c2ee1d3bd36d089b0d8e97ea00d4c5f6ad14dce058d595aacba2d587ff5eacd81b71a73f53ed276d1f3b3384bb2bfba4e0f37302e690df9e7024378ac754ac0576f996f3ee53d1034c7720767ddf2625817532f7ae89103367b73a36152b84c38bc227ba9e9ff48bcfe027585cf14bff37a888", 0xff41}], 0x1}}], 0x1, 0x0) 23:43:57 executing program 3: r0 = syz_open_dev$tty1(0xc, 0x4, 0x1) writev(r0, &(0x7f0000000080)=[{&(0x7f0000001380)="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", 0x1ea}], 0x1) 23:43:57 executing program 2: r0 = add_key$keyring(&(0x7f0000000040), &(0x7f00000002c0)={'syz', 0x3}, 0x0, 0x0, 0xfffffffffffffffd) keyctl$KEYCTL_RESTRICT_KEYRING(0xf, r0, 0x0, 0x0) connect$inet(0xffffffffffffffff, &(0x7f0000000140)={0x2, 0x0, @dev}, 0x10) r1 = syz_open_dev$sg(&(0x7f0000000040), 0x0, 0x0) ioctl$BLKTRACETEARDOWN(r1, 0x1276, 0x0) ioctl$BLKTRACESETUP(r1, 0xc0481273, &(0x7f0000000140)={'\x00', 0x0, 0x4, 0x8, 0x76}) (fail_nth: 31) 23:43:57 executing program 6: r0 = syz_open_dev$tty20(0xc, 0x4, 0x0) ioctl$VT_RESIZEX(r0, 0x560a, &(0x7f0000000040)={0x0, 0x2fa6, 0x0, 0x0, 0x1d}) ioctl$KDDELIO(r0, 0x4b35, 0x3) r1 = openat$hpet(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0) ioctl$FS_IOC_GETFLAGS(r0, 0x80086601, &(0x7f0000000180)) read$eventfd(r1, 0x0, 0x0) ioctl$SECCOMP_IOCTL_NOTIF_RECV(0xffffffffffffffff, 0xc0502100, &(0x7f0000000080)={0x0}) r3 = syz_mount_image$tmpfs(&(0x7f0000000000), &(0x7f0000000080)='./file0\x00', 0x0, 0x0, 0x0, 0x0, &(0x7f0000000600)=ANY=[]) mknodat$loop(r3, &(0x7f0000000300)='./file0\x00', 0x1000, 0x0) openat(r3, &(0x7f0000000140)='./file0\x00', 0x2, 0x0) openat(r3, &(0x7f0000000000)='./file0\x00', 0x0, 0x0) ioctl$SECCOMP_IOCTL_NOTIF_ADDFD(r1, 0x40182103, &(0x7f0000000100)={r2, 0x2, r3, 0x7}) ioctl$F2FS_IOC_GARBAGE_COLLECT_RANGE(r0, 0x4018f50b, &(0x7f0000000000)={0x1, 0x9, 0x8}) [ 1467.718854] FAULT_INJECTION: forcing a failure. [ 1467.718854] name failslab, interval 1, probability 0, space 0, times 0 [ 1467.721185] CPU: 0 PID: 8758 Comm: syz-executor.2 Not tainted 5.10.194 #1 [ 1467.722575] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1467.724337] Call Trace: [ 1467.724884] dump_stack+0x107/0x167 [ 1467.725678] should_fail.cold+0x5/0xa [ 1467.726473] ? create_object.isra.0+0x3a/0xa20 [ 1467.727458] should_failslab+0x5/0x20 [ 1467.728294] kmem_cache_alloc+0x5b/0x310 [ 1467.729127] create_object.isra.0+0x3a/0xa20 [ 1467.730069] kmemleak_alloc_percpu+0xa0/0x100 [ 1467.730993] pcpu_alloc+0x4e2/0x1240 [ 1467.731771] relay_open+0xd8/0xa10 [ 1467.732540] do_blk_trace_setup+0x4cf/0xc10 [ 1467.733407] ? _copy_from_user+0xfb/0x1b0 [ 1467.734275] __blk_trace_setup+0xca/0x180 [ 1467.735121] ? do_blk_trace_setup+0xc10/0xc10 [ 1467.736046] ? perf_trace_lock+0xac/0x490 [ 1467.736904] blk_trace_setup+0x43/0x60 [ 1467.737706] sg_ioctl_common+0x634/0x2570 [ 1467.738570] ? __sanitizer_cov_trace_switch+0x45/0x80 [ 1467.739621] ? do_vfs_ioctl+0x283/0x10d0 [ 1467.740446] ? sg_write+0x120/0x120 [ 1467.741185] ? generic_block_fiemap+0x60/0x60 [ 1467.742100] ? __mutex_unlock_slowpath+0xe1/0x600 [ 1467.743128] ? selinux_file_ioctl+0xb6/0x270 [ 1467.744028] ? sg_compat_ioctl+0x120/0x120 [ 1467.744899] sg_ioctl+0x8f/0x120 [ 1467.745602] __x64_sys_ioctl+0x19a/0x210 [ 1467.746451] do_syscall_64+0x33/0x40 [ 1467.747214] entry_SYSCALL_64_after_hwframe+0x62/0xc7 [ 1467.748262] RIP: 0033:0x7f661a573b19 [ 1467.749030] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1467.752807] RSP: 002b:00007f6617ae9188 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 1467.754371] RAX: ffffffffffffffda RBX: 00007f661a686f60 RCX: 00007f661a573b19 [ 1467.755831] RDX: 0000000020000140 RSI: 00000000c0481273 RDI: 0000000000000003 [ 1467.757293] RBP: 00007f6617ae91d0 R08: 0000000000000000 R09: 0000000000000000 [ 1467.758770] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 1467.760228] R13: 00007ffd527cbf9f R14: 00007f6617ae9300 R15: 0000000000022000 23:43:57 executing program 1: perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = syz_io_uring_setup(0x3a75, &(0x7f0000000080), &(0x7f0000ffb000/0x3000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=0x0, &(0x7f0000000100)=0x0) r3 = socket$inet6_udplite(0xa, 0x2, 0x88) syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_RECVMSG={0xa, 0x0, 0x0, r3, 0x0, &(0x7f0000000440)={0x0, 0x0, 0x0}, 0x0, 0x40000203}, 0x0) mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0) r4 = mmap$IORING_OFF_CQ_RING(&(0x7f0000ffe000/0x2000)=nil, 0x2000, 0xf, 0x13, r0, 0x8000000) syz_io_uring_submit(r4, r2, &(0x7f00000002c0)=@IORING_OP_READ=@pass_buffer={0x16, 0x4, 0x0, @fd, 0x0, 0x0}, 0x80000001) syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1) dup2(0xffffffffffffffff, r3) io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0) 23:44:15 executing program 7: perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_mount_image$vfat(&(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x18, 0x2, &(0x7f0000000180)=[{&(0x7f0000000140)="eb3c906d6b66732e66617400020801000470008400f801", 0x17}, {0x0, 0x0, 0x1000a00}], 0x0, &(0x7f0000000240)=ANY=[]) 23:44:15 executing program 0: perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = syz_mount_image$vfat(&(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x0, 0x0, 0x0, 0x0, &(0x7f0000000240)=ANY=[]) openat2(r0, &(0x7f0000000100)='./file0\x00', &(0x7f00000001c0)={0x40040, 0x8}, 0x18) 23:44:15 executing program 1: perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = syz_io_uring_setup(0x3a75, &(0x7f0000000080), &(0x7f0000ffb000/0x3000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=0x0, &(0x7f0000000100)=0x0) r3 = socket$inet6_udplite(0xa, 0x2, 0x88) syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_RECVMSG={0xa, 0x0, 0x0, r3, 0x0, &(0x7f0000000440)={0x0, 0x0, 0x0}, 0x0, 0x40000203}, 0x0) mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0) r4 = mmap$IORING_OFF_CQ_RING(&(0x7f0000ffe000/0x2000)=nil, 0x2000, 0xf, 0x13, r0, 0x8000000) syz_io_uring_submit(r4, r2, &(0x7f00000002c0)=@IORING_OP_READ=@pass_buffer={0x16, 0x4, 0x0, @fd, 0x0, 0x0}, 0x80000001) syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1) dup2(0xffffffffffffffff, r3) io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0) 23:44:15 executing program 6: r0 = syz_open_dev$tty20(0xc, 0x4, 0x1) ioctl$VT_RESIZEX(r0, 0x560a, &(0x7f0000000000)={0x0, 0x0, 0x0, 0x0, 0x1d}) r1 = openat$hpet(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0) read$eventfd(r1, 0x0, 0x0) ioctl$TIOCGICOUNT(r1, 0x545d, 0x0) 23:44:15 executing program 5: perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r0 = syz_mount_image$vfat(&(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x0, 0x2, &(0x7f0000000180)=[{&(0x7f0000000140)="eb3c906d6b66732e66617400020801000470008400f801", 0x17}, {0x0, 0x0, 0x1000a00}], 0x0, &(0x7f0000000240)=ANY=[]) openat2(r0, &(0x7f0000000100)='./file0\x00', &(0x7f00000001c0)={0x40040, 0x5000000}, 0x18) 23:44:15 executing program 3: r0 = syz_open_dev$tty1(0xc, 0x4, 0x1) writev(r0, &(0x7f0000000080)=[{&(0x7f0000001380)="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", 0x1ea}], 0x1) 23:44:15 executing program 4: perf_event_open(&(0x7f0000001d80)={0x2, 0x80, 0x69, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = socket$inet6_udp(0xa, 0x2, 0x0) dup(0xffffffffffffffff) fstat(0xffffffffffffffff, 0x0) connect$inet6(r0, &(0x7f0000000600)={0xa, 0x0, 0x0, @dev, 0x2}, 0x1c) sendmmsg$inet6(r0, &(0x7f0000000080)=[{{0x0, 0x5c8, &(0x7f00000004c0)=[{&(0x7f00000001c0)="4bc702854e3954b59347985ccc868289d3fe483d2c0900a2a1d12e33a66529e1f276fef452632dfa3c004ce3be84a5f66c29cd4ec39ae5206562fbc9ea3c0dbbebc22e628e147b0e9631f19b0ce0a48e0e675b2da3442226b898f1ddf8eabf133ab4a9cb0999c2ee1d3bd36d089b0d8e97ea00d4c5f6ad14dce058d595aacba2d587ff5eacd81b71a73f53ed276d1f3b3384bb2bfba4e0f37302e690df9e7024378ac754ac0576f996f3ee53d1034c7720767ddf2625817532f7ae89103367b73a36152b84c38bc227ba9e9ff48bcfe027585cf14bff37a888", 0xff41}], 0x1}}], 0x1, 0x0) 23:44:15 executing program 2: r0 = add_key$keyring(&(0x7f0000000040), &(0x7f00000002c0)={'syz', 0x3}, 0x0, 0x0, 0xfffffffffffffffd) keyctl$KEYCTL_RESTRICT_KEYRING(0xf, r0, 0x0, 0x0) connect$inet(0xffffffffffffffff, &(0x7f0000000140)={0x2, 0x0, @dev}, 0x10) r1 = syz_open_dev$sg(&(0x7f0000000040), 0x0, 0x0) ioctl$BLKTRACETEARDOWN(r1, 0x1276, 0x0) ioctl$BLKTRACESETUP(r1, 0xc0481273, &(0x7f0000000140)={'\x00', 0x0, 0x4, 0x8, 0x76}) (fail_nth: 32) [ 1485.503617] FAULT_INJECTION: forcing a failure. [ 1485.503617] name failslab, interval 1, probability 0, space 0, times 0 [ 1485.505957] CPU: 1 PID: 8783 Comm: syz-executor.2 Not tainted 5.10.194 #1 [ 1485.507350] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1485.509024] Call Trace: [ 1485.509569] dump_stack+0x107/0x167 [ 1485.510325] should_fail.cold+0x5/0xa [ 1485.511112] ? create_object.isra.0+0x3a/0xa20 [ 1485.512058] should_failslab+0x5/0x20 [ 1485.512835] kmem_cache_alloc+0x5b/0x310 [ 1485.513670] ? mark_held_locks+0x9e/0xe0 [ 1485.514528] create_object.isra.0+0x3a/0xa20 [ 1485.515451] kmemleak_alloc_percpu+0xa0/0x100 [ 1485.516357] pcpu_alloc+0x4e2/0x1240 [ 1485.517129] relay_open+0xd8/0xa10 [ 1485.517865] do_blk_trace_setup+0x4cf/0xc10 [ 1485.518758] ? _copy_from_user+0xfb/0x1b0 [ 1485.519606] __blk_trace_setup+0xca/0x180 [ 1485.520446] ? do_blk_trace_setup+0xc10/0xc10 [ 1485.521370] ? perf_trace_lock+0xac/0x490 [ 1485.522219] blk_trace_setup+0x43/0x60 [ 1485.523020] sg_ioctl_common+0x634/0x2570 [ 1485.523867] ? __sanitizer_cov_trace_switch+0x45/0x80 [ 1485.524914] ? do_vfs_ioctl+0x283/0x10d0 [ 1485.525732] ? sg_write+0x120/0x120 [ 1485.526479] ? generic_block_fiemap+0x60/0x60 [ 1485.527392] ? __mutex_unlock_slowpath+0xe1/0x600 [ 1485.528381] ? selinux_file_ioctl+0xb6/0x270 [ 1485.529258] ? sg_compat_ioctl+0x120/0x120 [ 1485.530114] sg_ioctl+0x8f/0x120 [ 1485.530810] __x64_sys_ioctl+0x19a/0x210 [ 1485.531641] do_syscall_64+0x33/0x40 [ 1485.532404] entry_SYSCALL_64_after_hwframe+0x62/0xc7 [ 1485.533442] RIP: 0033:0x7f661a573b19 [ 1485.534199] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1485.537932] RSP: 002b:00007f6617ae9188 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 1485.539485] RAX: ffffffffffffffda RBX: 00007f661a686f60 RCX: 00007f661a573b19 [ 1485.540935] RDX: 0000000020000140 RSI: 00000000c0481273 RDI: 0000000000000003 [ 1485.542374] RBP: 00007f6617ae91d0 R08: 0000000000000000 R09: 0000000000000000 [ 1485.543826] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 23:44:15 executing program 6: r0 = syz_open_dev$tty20(0xc, 0x4, 0x1) ioctl$VT_RESIZEX(r0, 0x560a, &(0x7f0000000000)={0x0, 0x0, 0x0, 0x0, 0x1d}) r1 = openat$hpet(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0) read$eventfd(r1, 0x0, 0x0) ioctl$TIOCL_GETSHIFTSTATE(r1, 0x541c, &(0x7f0000000040)={0x6, 0x7f}) [ 1485.545279] R13: 00007ffd527cbf9f R14: 00007f6617ae9300 R15: 0000000000022000 23:44:15 executing program 3: r0 = syz_open_dev$tty1(0xc, 0x4, 0x1) writev(r0, &(0x7f0000000080)=[{&(0x7f0000001380)="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", 0x1ea}], 0x1) 23:44:15 executing program 7: perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_mount_image$vfat(&(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x2e, 0x2, &(0x7f0000000180)=[{&(0x7f0000000140)="eb3c906d6b66732e66617400020801000470008400f801", 0x17}, {0x0, 0x0, 0x1000a00}], 0x0, &(0x7f0000000240)=ANY=[]) 23:44:15 executing program 0: perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = syz_mount_image$vfat(&(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x0, 0x0, 0x0, 0x0, &(0x7f0000000240)=ANY=[]) openat2(r0, &(0x7f0000000100)='./file0\x00', &(0x7f00000001c0)={0x40040, 0x8}, 0x18) 23:44:29 executing program 3: r0 = syz_open_dev$tty1(0xc, 0x4, 0x1) writev(r0, &(0x7f0000000080)=[{&(0x7f0000001380)="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", 0x1ea}], 0x1) 23:44:29 executing program 1: perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r0 = syz_mount_image$vfat(&(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x0, 0x2, &(0x7f0000000180)=[{&(0x7f0000000140)="eb3c906d6b66732e66617400020801000470008400f801", 0x17}, {0x0, 0x0, 0x1000a00}], 0x0, &(0x7f0000000240)=ANY=[]) openat2(r0, &(0x7f0000000100)='./file0\x00', &(0x7f00000001c0)={0x40040, 0xf}, 0x18) 23:44:29 executing program 0: perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = syz_mount_image$vfat(&(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x0, 0x1, &(0x7f0000000180)=[{&(0x7f0000000140)="eb3c906d6b66732e66617400020801000470008400f801", 0x17}], 0x0, &(0x7f0000000240)=ANY=[]) openat2(r0, &(0x7f0000000100)='./file0\x00', &(0x7f00000001c0)={0x40040, 0x8}, 0x18) 23:44:29 executing program 5: perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r0 = syz_mount_image$vfat(&(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x0, 0x2, &(0x7f0000000180)=[{&(0x7f0000000140)="eb3c906d6b66732e66617400020801000470008400f801", 0x17}, {0x0, 0x0, 0x1000a00}], 0x0, &(0x7f0000000240)=ANY=[]) openat2(r0, &(0x7f0000000100)='./file0\x00', &(0x7f00000001c0)={0x40040, 0x6000000}, 0x18) 23:44:29 executing program 6: r0 = syz_open_dev$tty20(0xc, 0x4, 0x1) ioctl$VT_RESIZEX(r0, 0x560a, &(0x7f0000000000)={0x0, 0x0, 0x0, 0x800, 0x1d}) 23:44:29 executing program 2: r0 = add_key$keyring(&(0x7f0000000040), &(0x7f00000002c0)={'syz', 0x3}, 0x0, 0x0, 0xfffffffffffffffd) keyctl$KEYCTL_RESTRICT_KEYRING(0xf, r0, 0x0, 0x0) connect$inet(0xffffffffffffffff, &(0x7f0000000140)={0x2, 0x0, @dev}, 0x10) r1 = syz_open_dev$sg(&(0x7f0000000040), 0x0, 0x0) ioctl$BLKTRACETEARDOWN(r1, 0x1276, 0x0) ioctl$BLKTRACESETUP(r1, 0xc0481273, &(0x7f0000000140)={'\x00', 0x0, 0x4, 0x8, 0x76}) (fail_nth: 33) 23:44:29 executing program 4: perf_event_open(&(0x7f0000001d80)={0x2, 0x80, 0x69, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = socket$inet6_udp(0xa, 0x2, 0x0) dup(0xffffffffffffffff) fstat(0xffffffffffffffff, 0x0) connect$inet6(r0, &(0x7f0000000600)={0xa, 0x0, 0x0, @dev, 0x2}, 0x1c) sendmmsg$inet6(r0, &(0x7f0000000080)=[{{0x0, 0x929, &(0x7f00000004c0)=[{&(0x7f00000001c0)="4bc702854e3954b59347985ccc868289d3fe483d2c0900a2a1d12e33a66529e1f276fef452632dfa3c004ce3be84a5f66c29cd4ec39ae5206562fbc9ea3c0dbbebc22e628e147b0e9631f19b0ce0a48e0e675b2da3442226b898f1ddf8eabf133ab4a9cb0999c2ee1d3bd36d089b0d8e97ea00d4c5f6ad14dce058d595aacba2d587ff5eacd81b71a73f53ed276d1f3b3384bb2bfba4e0f37302e690df9e7024378ac754ac0576f996f3ee53d1034c7720767ddf2625817532f7ae89103367b73a36152b84c38bc227ba9e9ff48bcfe027585cf14bff37a888", 0xff41}], 0x1}}], 0x1, 0x0) 23:44:29 executing program 7: perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_mount_image$vfat(&(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x2f, 0x2, &(0x7f0000000180)=[{&(0x7f0000000140)="eb3c906d6b66732e66617400020801000470008400f801", 0x17}, {0x0, 0x0, 0x1000a00}], 0x0, &(0x7f0000000240)=ANY=[]) 23:44:29 executing program 6: r0 = syz_open_dev$tty20(0xc, 0x4, 0x1) r1 = syz_open_pts(r0, 0x40001) ioctl$TIOCGSOFTCAR(r1, 0x5419, &(0x7f0000000080)) ioctl$VT_SETMODE(r0, 0x5602, &(0x7f0000000040)={0x2, 0x90, 0x2, 0xf8a1, 0x7784}) ioctl$VT_RESIZEX(r0, 0x560a, &(0x7f0000000000)={0x0, 0x0, 0x0, 0x0, 0x1a}) [ 1499.154629] FAULT_INJECTION: forcing a failure. [ 1499.154629] name failslab, interval 1, probability 0, space 0, times 0 [ 1499.156171] CPU: 0 PID: 8828 Comm: syz-executor.2 Not tainted 5.10.194 #1 [ 1499.157096] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1499.158189] Call Trace: [ 1499.158546] dump_stack+0x107/0x167 [ 1499.159048] should_fail.cold+0x5/0xa [ 1499.159560] ? create_object.isra.0+0x3a/0xa20 [ 1499.160189] should_failslab+0x5/0x20 [ 1499.160702] kmem_cache_alloc+0x5b/0x310 [ 1499.161243] ? mark_held_locks+0x9e/0xe0 [ 1499.161791] create_object.isra.0+0x3a/0xa20 [ 1499.162378] kmemleak_alloc_percpu+0xa0/0x100 [ 1499.162985] pcpu_alloc+0x4e2/0x1240 [ 1499.163486] relay_open+0xd8/0xa10 [ 1499.163957] do_blk_trace_setup+0x4cf/0xc10 [ 1499.164511] ? _copy_from_user+0xfb/0x1b0 [ 1499.165057] __blk_trace_setup+0xca/0x180 [ 1499.165590] ? do_blk_trace_setup+0xc10/0xc10 [ 1499.166183] ? perf_trace_lock+0xac/0x490 [ 1499.166732] blk_trace_setup+0x43/0x60 [ 1499.167242] sg_ioctl_common+0x634/0x2570 [ 1499.167258] ? __sanitizer_cov_trace_switch+0x45/0x80 [ 1499.167271] ? do_vfs_ioctl+0x283/0x10d0 [ 1499.167281] ? sg_write+0x120/0x120 [ 1499.167292] ? generic_block_fiemap+0x60/0x60 [ 1499.167305] ? __mutex_unlock_slowpath+0xe1/0x600 [ 1499.167330] ? selinux_file_ioctl+0xb6/0x270 [ 1499.167340] ? sg_compat_ioctl+0x120/0x120 [ 1499.167352] sg_ioctl+0x8f/0x120 [ 1499.167365] __x64_sys_ioctl+0x19a/0x210 [ 1499.167381] do_syscall_64+0x33/0x40 [ 1499.167395] entry_SYSCALL_64_after_hwframe+0x62/0xc7 [ 1499.167403] RIP: 0033:0x7f661a573b19 [ 1499.167416] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1499.167423] RSP: 002b:00007f6617ae9188 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 1499.167437] RAX: ffffffffffffffda RBX: 00007f661a686f60 RCX: 00007f661a573b19 23:44:29 executing program 4: perf_event_open(&(0x7f0000001d80)={0x2, 0x80, 0x69, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = socket$inet6_udp(0xa, 0x2, 0x0) dup(0xffffffffffffffff) fstat(0xffffffffffffffff, 0x0) connect$inet6(r0, &(0x7f0000000600)={0xa, 0x0, 0x0, @dev, 0x2}, 0x1c) sendmmsg$inet6(r0, &(0x7f0000000080)=[{{0x0, 0x979, &(0x7f00000004c0)=[{&(0x7f00000001c0)="4bc702854e3954b59347985ccc868289d3fe483d2c0900a2a1d12e33a66529e1f276fef452632dfa3c004ce3be84a5f66c29cd4ec39ae5206562fbc9ea3c0dbbebc22e628e147b0e9631f19b0ce0a48e0e675b2da3442226b898f1ddf8eabf133ab4a9cb0999c2ee1d3bd36d089b0d8e97ea00d4c5f6ad14dce058d595aacba2d587ff5eacd81b71a73f53ed276d1f3b3384bb2bfba4e0f37302e690df9e7024378ac754ac0576f996f3ee53d1034c7720767ddf2625817532f7ae89103367b73a36152b84c38bc227ba9e9ff48bcfe027585cf14bff37a888", 0xff41}], 0x1}}], 0x1, 0x0) [ 1499.167444] RDX: 0000000020000140 RSI: 00000000c0481273 RDI: 0000000000000003 [ 1499.167451] RBP: 00007f6617ae91d0 R08: 0000000000000000 R09: 0000000000000000 [ 1499.167459] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 1499.167466] R13: 00007ffd527cbf9f R14: 00007f6617ae9300 R15: 0000000000022000 [ 1499.212028] FAT-fs (loop0): bogus number of reserved sectors 23:44:29 executing program 5: perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r0 = syz_mount_image$vfat(&(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x0, 0x2, &(0x7f0000000180)=[{&(0x7f0000000140)="eb3c906d6b66732e66617400020801000470008400f801", 0x17}, {0x0, 0x0, 0x1000a00}], 0x0, &(0x7f0000000240)=ANY=[]) openat2(r0, &(0x7f0000000100)='./file0\x00', &(0x7f00000001c0)={0x40040, 0x7000000}, 0x18) 23:44:29 executing program 2: r0 = add_key$keyring(&(0x7f0000000040), &(0x7f00000002c0)={'syz', 0x3}, 0x0, 0x0, 0xfffffffffffffffd) keyctl$KEYCTL_RESTRICT_KEYRING(0xf, r0, 0x0, 0x0) connect$inet(0xffffffffffffffff, &(0x7f0000000140)={0x2, 0x0, @dev}, 0x10) r1 = syz_open_dev$sg(&(0x7f0000000040), 0x0, 0x0) ioctl$BLKTRACETEARDOWN(r1, 0x1276, 0x0) ioctl$BLKTRACESETUP(r1, 0xc0481273, &(0x7f0000000140)={'\x00', 0x0, 0x4, 0x8, 0x76}) (fail_nth: 34) [ 1499.212087] FAT-fs (loop0): Can't find a valid FAT filesystem 23:44:29 executing program 7: perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_mount_image$vfat(&(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x48, 0x2, &(0x7f0000000180)=[{&(0x7f0000000140)="eb3c906d6b66732e66617400020801000470008400f801", 0x17}, {0x0, 0x0, 0x1000a00}], 0x0, &(0x7f0000000240)=ANY=[]) 23:44:29 executing program 1: perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r0 = syz_mount_image$vfat(&(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x0, 0x2, &(0x7f0000000180)=[{&(0x7f0000000140)="eb3c906d6b66732e66617400020801000470008400f801", 0x17}, {0x0, 0x0, 0x1000a00}], 0x0, &(0x7f0000000240)=ANY=[]) openat2(r0, &(0x7f0000000100)='./file0\x00', &(0x7f00000001c0)={0x40040, 0xf}, 0x18) 23:44:29 executing program 6: r0 = syz_open_dev$tty20(0xc, 0x4, 0x1) ioctl$VT_RESIZEX(r0, 0x560a, &(0x7f0000000000)={0x0, 0x0, 0x0, 0x0, 0x1d}) ioctl$KDGKBSENT(r0, 0x4b48, &(0x7f0000000040)={0x1, "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"}) ioctl$TIOCSTI(r0, 0x5412, &(0x7f0000000280)) [ 1499.467711] FAULT_INJECTION: forcing a failure. [ 1499.467711] name failslab, interval 1, probability 0, space 0, times 0 [ 1499.470546] CPU: 1 PID: 8863 Comm: syz-executor.2 Not tainted 5.10.194 #1 [ 1499.472065] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1499.473888] Call Trace: [ 1499.474485] dump_stack+0x107/0x167 [ 1499.475307] should_fail.cold+0x5/0xa [ 1499.476147] ? create_object.isra.0+0x3a/0xa20 [ 1499.477164] should_failslab+0x5/0x20 [ 1499.477999] kmem_cache_alloc+0x5b/0x310 [ 1499.478910] ? __mutex_lock+0x4fe/0x10b0 [ 1499.479808] create_object.isra.0+0x3a/0xa20 [ 1499.480767] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 1499.481877] kmem_cache_alloc_trace+0x151/0x320 [ 1499.482909] relay_open_buf.part.0+0x91/0xc00 [ 1499.483889] ? _find_next_bit.constprop.0+0x1a3/0x200 [ 1499.485020] relay_open+0x531/0xa10 [ 1499.485835] do_blk_trace_setup+0x4cf/0xc10 [ 1499.486802] ? _copy_from_user+0xfb/0x1b0 [ 1499.487727] __blk_trace_setup+0xca/0x180 [ 1499.488650] ? do_blk_trace_setup+0xc10/0xc10 [ 1499.489662] ? perf_trace_lock+0xac/0x490 [ 1499.490615] blk_trace_setup+0x43/0x60 [ 1499.491473] sg_ioctl_common+0x634/0x2570 [ 1499.492385] ? __sanitizer_cov_trace_switch+0x45/0x80 [ 1499.493516] ? do_vfs_ioctl+0x283/0x10d0 [ 1499.494407] ? sg_write+0x120/0x120 [ 1499.495210] ? generic_block_fiemap+0x60/0x60 [ 1499.496198] ? __mutex_unlock_slowpath+0xe1/0x600 [ 1499.497276] ? selinux_file_ioctl+0xb6/0x270 [ 1499.498239] ? sg_compat_ioctl+0x120/0x120 [ 1499.499175] sg_ioctl+0x8f/0x120 [ 1499.499926] __x64_sys_ioctl+0x19a/0x210 [ 1499.500824] do_syscall_64+0x33/0x40 [ 1499.501646] entry_SYSCALL_64_after_hwframe+0x62/0xc7 [ 1499.502802] RIP: 0033:0x7f661a573b19 [ 1499.503629] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1499.507625] RSP: 002b:00007f6617ae9188 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 1499.509308] RAX: ffffffffffffffda RBX: 00007f661a686f60 RCX: 00007f661a573b19 [ 1499.510908] RDX: 0000000020000140 RSI: 00000000c0481273 RDI: 0000000000000003 [ 1499.512463] RBP: 00007f6617ae91d0 R08: 0000000000000000 R09: 0000000000000000 [ 1499.514014] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 1499.515569] R13: 00007ffd527cbf9f R14: 00007f6617ae9300 R15: 0000000000022000 23:44:44 executing program 2: r0 = add_key$keyring(&(0x7f0000000040), &(0x7f00000002c0)={'syz', 0x3}, 0x0, 0x0, 0xfffffffffffffffd) keyctl$KEYCTL_RESTRICT_KEYRING(0xf, r0, 0x0, 0x0) connect$inet(0xffffffffffffffff, &(0x7f0000000140)={0x2, 0x0, @dev}, 0x10) r1 = syz_open_dev$sg(&(0x7f0000000040), 0x0, 0x0) ioctl$BLKTRACETEARDOWN(r1, 0x1276, 0x0) ioctl$BLKTRACESETUP(r1, 0xc0481273, &(0x7f0000000140)={'\x00', 0x0, 0x4, 0x8, 0x76}) (fail_nth: 35) 23:44:44 executing program 4: perf_event_open(&(0x7f0000001d80)={0x2, 0x80, 0x69, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = socket$inet6_udp(0xa, 0x2, 0x0) dup(0xffffffffffffffff) fstat(0xffffffffffffffff, 0x0) connect$inet6(r0, &(0x7f0000000600)={0xa, 0x0, 0x0, @dev, 0x2}, 0x1c) sendmmsg$inet6(r0, &(0x7f0000000080)=[{{0x0, 0xe00, &(0x7f00000004c0)=[{&(0x7f00000001c0)="4bc702854e3954b59347985ccc868289d3fe483d2c0900a2a1d12e33a66529e1f276fef452632dfa3c004ce3be84a5f66c29cd4ec39ae5206562fbc9ea3c0dbbebc22e628e147b0e9631f19b0ce0a48e0e675b2da3442226b898f1ddf8eabf133ab4a9cb0999c2ee1d3bd36d089b0d8e97ea00d4c5f6ad14dce058d595aacba2d587ff5eacd81b71a73f53ed276d1f3b3384bb2bfba4e0f37302e690df9e7024378ac754ac0576f996f3ee53d1034c7720767ddf2625817532f7ae89103367b73a36152b84c38bc227ba9e9ff48bcfe027585cf14bff37a888", 0xff41}], 0x1}}], 0x1, 0x0) 23:44:44 executing program 6: r0 = syz_open_dev$tty20(0xc, 0x4, 0x1) r1 = open_tree(0xffffffffffffffff, &(0x7f0000000040)='./file0\x00', 0x100) ioctl$TIOCSTI(r1, 0x5412, &(0x7f0000000080)=0x3) ioctl$VT_RESIZEX(r0, 0x560a, &(0x7f0000000000)={0x0, 0x0, 0x0, 0x0, 0x1d}) 23:44:44 executing program 0: perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = syz_mount_image$vfat(&(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x0, 0x1, &(0x7f0000000180)=[{&(0x7f0000000140)="eb3c906d6b66732e66617400020801000470008400f801", 0x17}], 0x0, &(0x7f0000000240)=ANY=[]) openat2(r0, &(0x7f0000000100)='./file0\x00', &(0x7f00000001c0)={0x40040, 0x8}, 0x18) 23:44:44 executing program 5: perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r0 = syz_mount_image$vfat(&(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x0, 0x2, &(0x7f0000000180)=[{&(0x7f0000000140)="eb3c906d6b66732e66617400020801000470008400f801", 0x17}, {0x0, 0x0, 0x1000a00}], 0x0, &(0x7f0000000240)=ANY=[]) openat2(r0, &(0x7f0000000100)='./file0\x00', &(0x7f00000001c0)={0x40040, 0x8040000}, 0x18) 23:44:44 executing program 3: r0 = syz_open_dev$tty1(0xc, 0x4, 0x1) writev(r0, &(0x7f0000000080)=[{&(0x7f0000001380)="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", 0x1ea}], 0x1) 23:44:44 executing program 7: perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_mount_image$vfat(&(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x4c, 0x2, &(0x7f0000000180)=[{&(0x7f0000000140)="eb3c906d6b66732e66617400020801000470008400f801", 0x17}, {0x0, 0x0, 0x1000a00}], 0x0, &(0x7f0000000240)=ANY=[]) 23:44:44 executing program 1: perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r0 = syz_mount_image$vfat(&(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x0, 0x2, &(0x7f0000000180)=[{&(0x7f0000000140)="eb3c906d6b66732e66617400020801000470008400f801", 0x17}, {0x0, 0x0, 0x1000a00}], 0x0, &(0x7f0000000240)=ANY=[]) openat2(r0, &(0x7f0000000100)='./file0\x00', &(0x7f00000001c0)={0x40040, 0xf}, 0x18) 23:44:45 executing program 6: r0 = syz_open_dev$tty20(0xc, 0x4, 0x1) ioctl$VT_RESIZEX(r0, 0x560a, &(0x7f0000000000)={0x0, 0x0, 0x0, 0x3, 0x1d}) r1 = openat$autofs(0xffffffffffffff9c, &(0x7f0000000080), 0x18c80, 0x0) newfstatat(0xffffffffffffff9c, &(0x7f0000000100)='./file0\x00', &(0x7f0000000140)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x4000) ioctl$AUTOFS_DEV_IOCTL_REQUESTER(r1, 0xc018937b, &(0x7f00000001c0)={{0x1, 0x1, 0x18, r0, {0xffffffffffffffff, r2}}, './file0\x00'}) ioctl$AUTOFS_DEV_IOCTL_CLOSEMOUNT(0xffffffffffffffff, 0xc0189375, &(0x7f0000000040)={{0x1, 0x1, 0x18, r0}, './file0\x00'}) ioctl$TIOCNOTTY(r3, 0x5422) [ 1514.882126] FAULT_INJECTION: forcing a failure. [ 1514.882126] name failslab, interval 1, probability 0, space 0, times 0 [ 1514.884493] CPU: 1 PID: 8876 Comm: syz-executor.2 Not tainted 5.10.194 #1 [ 1514.885875] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1514.887588] Call Trace: [ 1514.888141] dump_stack+0x107/0x167 [ 1514.888899] should_fail.cold+0x5/0xa [ 1514.889683] ? relay_open_buf.part.0+0xf9/0xc00 [ 1514.890640] should_failslab+0x5/0x20 [ 1514.891432] __kmalloc+0x72/0x390 [ 1514.892148] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 1514.893191] relay_open_buf.part.0+0xf9/0xc00 [ 1514.894106] ? _find_next_bit.constprop.0+0x1a3/0x200 [ 1514.895172] relay_open+0x531/0xa10 [ 1514.895915] do_blk_trace_setup+0x4cf/0xc10 [ 1514.896778] ? _copy_from_user+0xfb/0x1b0 [ 1514.897621] __blk_trace_setup+0xca/0x180 [ 1514.898451] ? do_blk_trace_setup+0xc10/0xc10 [ 1514.899384] ? perf_trace_lock+0xac/0x490 [ 1514.900227] blk_trace_setup+0x43/0x60 [ 1514.901011] sg_ioctl_common+0x634/0x2570 [ 1514.901850] ? __sanitizer_cov_trace_switch+0x45/0x80 [ 1514.902903] ? do_vfs_ioctl+0x283/0x10d0 [ 1514.903718] ? sg_write+0x120/0x120 [ 1514.904454] ? generic_block_fiemap+0x60/0x60 [ 1514.905369] ? __mutex_unlock_slowpath+0xe1/0x600 [ 1514.906356] ? selinux_file_ioctl+0xb6/0x270 [ 1514.907248] ? sg_compat_ioctl+0x120/0x120 [ 1514.908094] sg_ioctl+0x8f/0x120 [ 1514.908782] __x64_sys_ioctl+0x19a/0x210 [ 1514.909606] do_syscall_64+0x33/0x40 [ 1514.910354] entry_SYSCALL_64_after_hwframe+0x62/0xc7 [ 1514.911390] RIP: 0033:0x7f661a573b19 [ 1514.912137] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1514.915818] RSP: 002b:00007f6617ae9188 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 1514.917355] RAX: ffffffffffffffda RBX: 00007f661a686f60 RCX: 00007f661a573b19 [ 1514.918800] RDX: 0000000020000140 RSI: 00000000c0481273 RDI: 0000000000000003 [ 1514.920226] RBP: 00007f6617ae91d0 R08: 0000000000000000 R09: 0000000000000000 [ 1514.921647] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 1514.923077] R13: 00007ffd527cbf9f R14: 00007f6617ae9300 R15: 0000000000022000 [ 1514.943763] FAT-fs (loop0): bogus number of reserved sectors 23:44:45 executing program 3: r0 = syz_open_dev$tty1(0xc, 0x4, 0x1) writev(r0, &(0x7f0000000080)=[{&(0x7f0000001380)="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", 0x1ea}], 0x1) [ 1514.945088] FAT-fs (loop0): Can't find a valid FAT filesystem 23:44:45 executing program 1: perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) syz_mount_image$vfat(&(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x0, 0x2, &(0x7f0000000180)=[{&(0x7f0000000140)="eb3c906d6b66732e66617400020801000470008400f801", 0x17}, {0x0, 0x0, 0x1000a00}], 0x0, &(0x7f0000000240)=ANY=[]) 23:44:45 executing program 0: perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = syz_mount_image$vfat(&(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x0, 0x1, &(0x7f0000000180)=[{&(0x7f0000000140)="eb3c906d6b66732e66617400020801000470008400f801", 0x17}], 0x0, &(0x7f0000000240)=ANY=[]) openat2(r0, &(0x7f0000000100)='./file0\x00', &(0x7f00000001c0)={0x40040, 0x8}, 0x18) 23:44:45 executing program 7: perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_mount_image$vfat(&(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x68, 0x2, &(0x7f0000000180)=[{&(0x7f0000000140)="eb3c906d6b66732e66617400020801000470008400f801", 0x17}, {0x0, 0x0, 0x1000a00}], 0x0, &(0x7f0000000240)=ANY=[]) 23:44:45 executing program 2: r0 = add_key$keyring(&(0x7f0000000040), &(0x7f00000002c0)={'syz', 0x3}, 0x0, 0x0, 0xfffffffffffffffd) keyctl$KEYCTL_RESTRICT_KEYRING(0xf, r0, 0x0, 0x0) connect$inet(0xffffffffffffffff, &(0x7f0000000140)={0x2, 0x0, @dev}, 0x10) r1 = syz_open_dev$sg(&(0x7f0000000040), 0x0, 0x0) ioctl$BLKTRACETEARDOWN(r1, 0x1276, 0x0) ioctl$BLKTRACESETUP(r1, 0xc0481273, &(0x7f0000000140)={'\x00', 0x0, 0x4, 0x8, 0x76}) (fail_nth: 36) 23:44:45 executing program 5: perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r0 = syz_mount_image$vfat(&(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x0, 0x2, &(0x7f0000000180)=[{&(0x7f0000000140)="eb3c906d6b66732e66617400020801000470008400f801", 0x17}, {0x0, 0x0, 0x1000a00}], 0x0, &(0x7f0000000240)=ANY=[]) openat2(r0, &(0x7f0000000100)='./file0\x00', &(0x7f00000001c0)={0x40040, 0xf000000}, 0x18) 23:44:45 executing program 4: perf_event_open(&(0x7f0000001d80)={0x2, 0x80, 0x69, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = socket$inet6_udp(0xa, 0x2, 0x0) dup(0xffffffffffffffff) fstat(0xffffffffffffffff, 0x0) connect$inet6(r0, &(0x7f0000000600)={0xa, 0x0, 0x0, @dev, 0x2}, 0x1c) sendmmsg$inet6(r0, &(0x7f0000000080)=[{{0x0, 0xec1, &(0x7f00000004c0)=[{&(0x7f00000001c0)="4bc702854e3954b59347985ccc868289d3fe483d2c0900a2a1d12e33a66529e1f276fef452632dfa3c004ce3be84a5f66c29cd4ec39ae5206562fbc9ea3c0dbbebc22e628e147b0e9631f19b0ce0a48e0e675b2da3442226b898f1ddf8eabf133ab4a9cb0999c2ee1d3bd36d089b0d8e97ea00d4c5f6ad14dce058d595aacba2d587ff5eacd81b71a73f53ed276d1f3b3384bb2bfba4e0f37302e690df9e7024378ac754ac0576f996f3ee53d1034c7720767ddf2625817532f7ae89103367b73a36152b84c38bc227ba9e9ff48bcfe027585cf14bff37a888", 0xff41}], 0x1}}], 0x1, 0x0) 23:44:45 executing program 6: syz_io_uring_setup(0x3a75, &(0x7f0000000080), &(0x7f0000ffb000/0x3000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=0x0, &(0x7f0000000100)=0x0) r2 = socket$inet6_udplite(0xa, 0x2, 0x88) syz_io_uring_submit(r0, r1, &(0x7f0000000000)=@IORING_OP_RECVMSG={0xa, 0x0, 0x0, r2, 0x0, &(0x7f0000000440)={0x0, 0x0, 0x0}}, 0x0) syz_io_uring_submit(0x0, r1, &(0x7f00000000c0)=@IORING_OP_OPENAT2={0x1c, 0x1, 0x0, 0xffffffffffffffff, &(0x7f0000000040)={0x717900, 0x2, 0x1c}, &(0x7f0000000080)='./file0\x00', 0x18, 0x0, 0x12345}, 0x5) r3 = syz_open_dev$tty20(0xc, 0x4, 0x1) r4 = openat$hpet(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0) sendmsg$NFQNL_MSG_VERDICT(r4, &(0x7f0000000380)={&(0x7f0000000180)={0x10, 0x0, 0x0, 0x10}, 0xc, &(0x7f00000001c0)={&(0x7f0000000240)={0x124, 0x1, 0x3, 0x107, 0x0, 0x0, {0x0, 0x0, 0x3}, [@NFQA_VLAN={0x2c, 0x13, 0x0, 0x1, [@NFQA_VLAN_TCI={0x6, 0x2, 0x1, 0x0, 0x800}, @NFQA_VLAN_PROTO={0x6, 0x1, 0x1, 0x0, 0x88a8}, @NFQA_VLAN_TCI={0x6, 0x2, 0x1, 0x0, 0xaf00}, @NFQA_VLAN_PROTO={0x6, 0x1, 0x1, 0x0, 0x88a8}, @NFQA_VLAN_PROTO={0x6, 0x1, 0x1, 0x0, 0x88a8}]}, @NFQA_VERDICT_HDR={0xc, 0x2, {0xffffffffffffffff}}, @NFQA_PAYLOAD={0x3a, 0xa, "794fadbbe91653bc934012a0417e20446c94101b2407914d346041c4f0e085c4b230b8fca9b687606a4b6f403bf78743b0cf9eec5b51"}, @NFQA_PAYLOAD={0x9c, 0xa, "29423385734c837843b8b0ae3f8af7d4d8b7d86e21bae4c5ecf05e0523bc0c09a0b3465e93a2535a03109450b77fe5224236cefc2958828f04d5e1027da52f0919b9f126ae9bf52114c9c5f4a012bc0959f24d42fca4f68064d358c97ccd771501232abde8060671ed7c2dbec5621e62e35e5a3720ec60b2d80ce21f18cfff44176c0af15351de66e420fced5e94ba79846c6f2908fc7328"}]}, 0x124}}, 0x24048481) read$eventfd(r4, 0x0, 0x0) ioctl$TIOCPKT(r4, 0x5420, &(0x7f0000000140)=0x87) ioctl$VT_RESIZEX(r3, 0x560a, &(0x7f0000000000)={0x0, 0x0, 0x0, 0x0, 0x1d}) [ 1515.189387] FAT-fs (loop0): bogus number of reserved sectors [ 1515.191323] FAT-fs (loop0): Can't find a valid FAT filesystem 23:44:45 executing program 3: r0 = syz_open_dev$tty1(0xc, 0x4, 0x1) writev(r0, &(0x7f0000000080)=[{&(0x7f0000001380)="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", 0x1ea}], 0x1) [ 1515.257758] FAULT_INJECTION: forcing a failure. [ 1515.257758] name failslab, interval 1, probability 0, space 0, times 0 [ 1515.259882] CPU: 1 PID: 8918 Comm: syz-executor.2 Not tainted 5.10.194 #1 [ 1515.261126] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1515.262674] Call Trace: [ 1515.263187] dump_stack+0x107/0x167 [ 1515.263861] should_fail.cold+0x5/0xa [ 1515.264575] ? create_object.isra.0+0x3a/0xa20 [ 1515.265452] should_failslab+0x5/0x20 [ 1515.266171] kmem_cache_alloc+0x5b/0x310 [ 1515.266924] ? mark_held_locks+0x9e/0xe0 [ 1515.267659] create_object.isra.0+0x3a/0xa20 [ 1515.268444] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 1515.269372] __kmalloc+0x16e/0x390 [ 1515.270016] relay_open_buf.part.0+0xf9/0xc00 [ 1515.270841] ? _find_next_bit.constprop.0+0x1a3/0x200 [ 1515.271776] relay_open+0x531/0xa10 [ 1515.272461] do_blk_trace_setup+0x4cf/0xc10 [ 1515.273236] ? _copy_from_user+0xfb/0x1b0 [ 1515.274020] __blk_trace_setup+0xca/0x180 [ 1515.274761] ? do_blk_trace_setup+0xc10/0xc10 [ 1515.275603] ? perf_trace_lock+0xac/0x490 [ 1515.276351] blk_trace_setup+0x43/0x60 [ 1515.277046] sg_ioctl_common+0x634/0x2570 [ 1515.277785] ? __sanitizer_cov_trace_switch+0x45/0x80 [ 1515.278707] ? do_vfs_ioctl+0x283/0x10d0 [ 1515.279435] ? sg_write+0x120/0x120 [ 1515.280083] ? generic_block_fiemap+0x60/0x60 [ 1515.280880] ? __mutex_unlock_slowpath+0xe1/0x600 [ 1515.281748] ? selinux_file_ioctl+0xb6/0x270 [ 1515.282534] ? sg_compat_ioctl+0x120/0x120 [ 1515.283292] sg_ioctl+0x8f/0x120 [ 1515.283893] __x64_sys_ioctl+0x19a/0x210 [ 1515.284612] do_syscall_64+0x33/0x40 [ 1515.285278] entry_SYSCALL_64_after_hwframe+0x62/0xc7 [ 1515.286193] RIP: 0033:0x7f661a573b19 [ 1515.286853] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1515.290107] RSP: 002b:00007f6617ae9188 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 1515.291484] RAX: ffffffffffffffda RBX: 00007f661a686f60 RCX: 00007f661a573b19 [ 1515.292756] RDX: 0000000020000140 RSI: 00000000c0481273 RDI: 0000000000000003 [ 1515.294014] RBP: 00007f6617ae91d0 R08: 0000000000000000 R09: 0000000000000000 [ 1515.295282] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 1515.296529] R13: 00007ffd527cbf9f R14: 00007f6617ae9300 R15: 0000000000022000 23:44:45 executing program 4: perf_event_open(&(0x7f0000001d80)={0x2, 0x80, 0x69, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = socket$inet6_udp(0xa, 0x2, 0x0) dup(0xffffffffffffffff) fstat(0xffffffffffffffff, 0x0) connect$inet6(r0, &(0x7f0000000600)={0xa, 0x0, 0x0, @dev, 0x2}, 0x1c) sendmmsg$inet6(r0, &(0x7f0000000080)=[{{0x0, 0x1100, &(0x7f00000004c0)=[{&(0x7f00000001c0)="4bc702854e3954b59347985ccc868289d3fe483d2c0900a2a1d12e33a66529e1f276fef452632dfa3c004ce3be84a5f66c29cd4ec39ae5206562fbc9ea3c0dbbebc22e628e147b0e9631f19b0ce0a48e0e675b2da3442226b898f1ddf8eabf133ab4a9cb0999c2ee1d3bd36d089b0d8e97ea00d4c5f6ad14dce058d595aacba2d587ff5eacd81b71a73f53ed276d1f3b3384bb2bfba4e0f37302e690df9e7024378ac754ac0576f996f3ee53d1034c7720767ddf2625817532f7ae89103367b73a36152b84c38bc227ba9e9ff48bcfe027585cf14bff37a888", 0xff41}], 0x1}}], 0x1, 0x0) 23:44:45 executing program 1: perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) syz_mount_image$vfat(&(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x0, 0x2, &(0x7f0000000180)=[{&(0x7f0000000140)="eb3c906d6b66732e66617400020801000470008400f801", 0x17}, {0x0, 0x0, 0x1000a00}], 0x0, &(0x7f0000000240)=ANY=[]) 23:44:45 executing program 7: perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_mount_image$vfat(&(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x6c, 0x2, &(0x7f0000000180)=[{&(0x7f0000000140)="eb3c906d6b66732e66617400020801000470008400f801", 0x17}, {0x0, 0x0, 0x1000a00}], 0x0, &(0x7f0000000240)=ANY=[]) 23:44:59 executing program 5: perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r0 = syz_mount_image$vfat(&(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x0, 0x2, &(0x7f0000000180)=[{&(0x7f0000000140)="eb3c906d6b66732e66617400020801000470008400f801", 0x17}, {0x0, 0x0, 0x1000a00}], 0x0, &(0x7f0000000240)=ANY=[]) openat2(r0, &(0x7f0000000100)='./file0\x00', &(0x7f00000001c0)={0x40040, 0x18000000}, 0x18) 23:44:59 executing program 1: perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) syz_mount_image$vfat(&(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x0, 0x2, &(0x7f0000000180)=[{&(0x7f0000000140)="eb3c906d6b66732e66617400020801000470008400f801", 0x17}, {0x0, 0x0, 0x1000a00}], 0x0, &(0x7f0000000240)=ANY=[]) 23:44:59 executing program 3: r0 = syz_open_dev$tty1(0xc, 0x4, 0x1) writev(r0, &(0x7f0000000080)=[{&(0x7f0000001380)="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", 0x1ea}], 0x1) 23:44:59 executing program 2: r0 = add_key$keyring(&(0x7f0000000040), &(0x7f00000002c0)={'syz', 0x3}, 0x0, 0x0, 0xfffffffffffffffd) keyctl$KEYCTL_RESTRICT_KEYRING(0xf, r0, 0x0, 0x0) connect$inet(0xffffffffffffffff, &(0x7f0000000140)={0x2, 0x0, @dev}, 0x10) r1 = syz_open_dev$sg(&(0x7f0000000040), 0x0, 0x0) ioctl$BLKTRACETEARDOWN(r1, 0x1276, 0x0) ioctl$BLKTRACESETUP(r1, 0xc0481273, &(0x7f0000000140)={'\x00', 0x0, 0x4, 0x8, 0x76}) (fail_nth: 37) 23:44:59 executing program 0: perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = syz_mount_image$vfat(&(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x0, 0x2, &(0x7f0000000180)=[{&(0x7f0000000140)="eb3c906d6b66732e66617400020801000470008400f801", 0x17}, {0x0}], 0x0, &(0x7f0000000240)=ANY=[]) openat2(r0, &(0x7f0000000100)='./file0\x00', &(0x7f00000001c0)={0x40040, 0x8}, 0x18) 23:44:59 executing program 6: r0 = syz_open_dev$tty20(0xc, 0x4, 0x1) ioctl$KDGKBTYPE(0xffffffffffffffff, 0x4b33, &(0x7f0000000040)) ioctl$VT_RESIZEX(r0, 0x560a, &(0x7f0000000000)={0x0, 0x0, 0x0, 0x0, 0x1d}) 23:44:59 executing program 7: perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_mount_image$vfat(&(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x74, 0x2, &(0x7f0000000180)=[{&(0x7f0000000140)="eb3c906d6b66732e66617400020801000470008400f801", 0x17}, {0x0, 0x0, 0x1000a00}], 0x0, &(0x7f0000000240)=ANY=[]) 23:44:59 executing program 4: perf_event_open(&(0x7f0000001d80)={0x2, 0x80, 0x69, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = socket$inet6_udp(0xa, 0x2, 0x0) dup(0xffffffffffffffff) fstat(0xffffffffffffffff, 0x0) connect$inet6(r0, &(0x7f0000000600)={0xa, 0x0, 0x0, @dev, 0x2}, 0x1c) sendmmsg$inet6(r0, &(0x7f0000000080)=[{{0x0, 0x115d, &(0x7f00000004c0)=[{&(0x7f00000001c0)="4bc702854e3954b59347985ccc868289d3fe483d2c0900a2a1d12e33a66529e1f276fef452632dfa3c004ce3be84a5f66c29cd4ec39ae5206562fbc9ea3c0dbbebc22e628e147b0e9631f19b0ce0a48e0e675b2da3442226b898f1ddf8eabf133ab4a9cb0999c2ee1d3bd36d089b0d8e97ea00d4c5f6ad14dce058d595aacba2d587ff5eacd81b71a73f53ed276d1f3b3384bb2bfba4e0f37302e690df9e7024378ac754ac0576f996f3ee53d1034c7720767ddf2625817532f7ae89103367b73a36152b84c38bc227ba9e9ff48bcfe027585cf14bff37a888", 0xff41}], 0x1}}], 0x1, 0x0) [ 1529.103776] FAULT_INJECTION: forcing a failure. [ 1529.103776] name failslab, interval 1, probability 0, space 0, times 0 [ 1529.105981] CPU: 0 PID: 8943 Comm: syz-executor.2 Not tainted 5.10.194 #1 [ 1529.107255] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 23:44:59 executing program 3: r0 = syz_open_dev$tty1(0xc, 0x4, 0x1) writev(r0, &(0x7f0000000080)=[{&(0x7f0000001380)="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", 0x1ea}], 0x1) [ 1529.108809] Call Trace: [ 1529.109412] dump_stack+0x107/0x167 [ 1529.110083] should_fail.cold+0x5/0xa [ 1529.110778] ? relay_open_buf.part.0+0x472/0xc00 [ 1529.111648] should_failslab+0x5/0x20 [ 1529.112351] __kmalloc+0x72/0x390 [ 1529.112979] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 1529.113892] relay_open_buf.part.0+0x472/0xc00 [ 1529.114740] relay_open+0x531/0xa10 [ 1529.115413] do_blk_trace_setup+0x4cf/0xc10 [ 1529.116201] ? _copy_from_user+0xfb/0x1b0 [ 1529.116952] __blk_trace_setup+0xca/0x180 [ 1529.117702] ? do_blk_trace_setup+0xc10/0xc10 [ 1529.118523] ? perf_trace_lock+0xac/0x490 [ 1529.119292] blk_trace_setup+0x43/0x60 [ 1529.120004] sg_ioctl_common+0x634/0x2570 [ 1529.120748] ? __sanitizer_cov_trace_switch+0x45/0x80 [ 1529.121677] ? do_vfs_ioctl+0x283/0x10d0 [ 1529.122409] ? sg_write+0x120/0x120 [ 1529.123085] ? generic_block_fiemap+0x60/0x60 [ 1529.123885] ? __mutex_unlock_slowpath+0xe1/0x600 [ 1529.124759] ? selinux_file_ioctl+0xb6/0x270 [ 1529.125542] ? sg_compat_ioctl+0x120/0x120 [ 1529.126304] sg_ioctl+0x8f/0x120 [ 1529.126917] __x64_sys_ioctl+0x19a/0x210 [ 1529.127669] do_syscall_64+0x33/0x40 [ 1529.128348] entry_SYSCALL_64_after_hwframe+0x62/0xc7 [ 1529.129267] RIP: 0033:0x7f661a573b19 [ 1529.129942] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1529.133247] RSP: 002b:00007f6617ae9188 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 1529.134617] RAX: ffffffffffffffda RBX: 00007f661a686f60 RCX: 00007f661a573b19 [ 1529.135894] RDX: 0000000020000140 RSI: 00000000c0481273 RDI: 0000000000000003 [ 1529.137162] RBP: 00007f6617ae91d0 R08: 0000000000000000 R09: 0000000000000000 [ 1529.138429] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 1529.139709] R13: 00007ffd527cbf9f R14: 00007f6617ae9300 R15: 0000000000022000 23:44:59 executing program 5: perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r0 = syz_mount_image$vfat(&(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x0, 0x2, &(0x7f0000000180)=[{&(0x7f0000000140)="eb3c906d6b66732e66617400020801000470008400f801", 0x17}, {0x0, 0x0, 0x1000a00}], 0x0, &(0x7f0000000240)=ANY=[]) openat2(r0, &(0x7f0000000100)='./file0\x00', &(0x7f00000001c0)={0x40040, 0x39020000}, 0x18) [ 1529.169813] FAT-fs (loop0): bogus number of reserved sectors [ 1529.171237] FAT-fs (loop0): Can't find a valid FAT filesystem 23:44:59 executing program 1: syz_mount_image$vfat(&(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x0, 0x2, &(0x7f0000000180)=[{&(0x7f0000000140)="eb3c906d6b66732e66617400020801000470008400f801", 0x17}, {0x0, 0x0, 0x1000a00}], 0x0, &(0x7f0000000240)=ANY=[]) 23:44:59 executing program 2: r0 = add_key$keyring(&(0x7f0000000040), &(0x7f00000002c0)={'syz', 0x3}, 0x0, 0x0, 0xfffffffffffffffd) keyctl$KEYCTL_RESTRICT_KEYRING(0xf, r0, 0x0, 0x0) connect$inet(0xffffffffffffffff, &(0x7f0000000140)={0x2, 0x0, @dev}, 0x10) r1 = syz_open_dev$sg(&(0x7f0000000040), 0x0, 0x0) ioctl$BLKTRACETEARDOWN(r1, 0x1276, 0x0) ioctl$BLKTRACESETUP(r1, 0xc0481273, &(0x7f0000000140)={'\x00', 0x0, 0x4, 0x8, 0x76}) (fail_nth: 38) 23:44:59 executing program 3: r0 = syz_open_dev$tty1(0xc, 0x4, 0x1) writev(r0, &(0x7f0000000080)=[{&(0x7f0000001380)="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", 0x1ea}], 0x1) 23:44:59 executing program 4: perf_event_open(&(0x7f0000001d80)={0x2, 0x80, 0x69, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = socket$inet6_udp(0xa, 0x2, 0x0) dup(0xffffffffffffffff) fstat(0xffffffffffffffff, 0x0) connect$inet6(r0, &(0x7f0000000600)={0xa, 0x0, 0x0, @dev, 0x2}, 0x1c) sendmmsg$inet6(r0, &(0x7f0000000080)=[{{0x0, 0x1459, &(0x7f00000004c0)=[{&(0x7f00000001c0)="4bc702854e3954b59347985ccc868289d3fe483d2c0900a2a1d12e33a66529e1f276fef452632dfa3c004ce3be84a5f66c29cd4ec39ae5206562fbc9ea3c0dbbebc22e628e147b0e9631f19b0ce0a48e0e675b2da3442226b898f1ddf8eabf133ab4a9cb0999c2ee1d3bd36d089b0d8e97ea00d4c5f6ad14dce058d595aacba2d587ff5eacd81b71a73f53ed276d1f3b3384bb2bfba4e0f37302e690df9e7024378ac754ac0576f996f3ee53d1034c7720767ddf2625817532f7ae89103367b73a36152b84c38bc227ba9e9ff48bcfe027585cf14bff37a888", 0xff41}], 0x1}}], 0x1, 0x0) 23:44:59 executing program 7: perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_mount_image$vfat(&(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x78, 0x2, &(0x7f0000000180)=[{&(0x7f0000000140)="eb3c906d6b66732e66617400020801000470008400f801", 0x17}, {0x0, 0x0, 0x1000a00}], 0x0, &(0x7f0000000240)=ANY=[]) 23:44:59 executing program 0: perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = syz_mount_image$vfat(&(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x0, 0x2, &(0x7f0000000180)=[{&(0x7f0000000140)="eb3c906d6b66732e66617400020801000470008400f801", 0x17}, {0x0}], 0x0, &(0x7f0000000240)=ANY=[]) openat2(r0, &(0x7f0000000100)='./file0\x00', &(0x7f00000001c0)={0x40040, 0x8}, 0x18) [ 1529.339348] FAULT_INJECTION: forcing a failure. [ 1529.339348] name failslab, interval 1, probability 0, space 0, times 0 [ 1529.341171] CPU: 0 PID: 8974 Comm: syz-executor.2 Not tainted 5.10.194 #1 [ 1529.342246] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1529.343576] Call Trace: [ 1529.343997] dump_stack+0x107/0x167 [ 1529.344577] should_fail.cold+0x5/0xa [ 1529.345180] ? create_object.isra.0+0x3a/0xa20 [ 1529.345905] should_failslab+0x5/0x20 [ 1529.346560] kmem_cache_alloc+0x5b/0x310 [ 1529.347236] ? mark_held_locks+0x9e/0xe0 [ 1529.347912] create_object.isra.0+0x3a/0xa20 [ 1529.348605] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 1529.349418] __kmalloc+0x16e/0x390 [ 1529.349978] relay_open_buf.part.0+0x472/0xc00 [ 1529.350743] relay_open+0x531/0xa10 [ 1529.351362] do_blk_trace_setup+0x4cf/0xc10 [ 1529.352049] ? _copy_from_user+0xfb/0x1b0 [ 1529.352692] __blk_trace_setup+0xca/0x180 [ 1529.353350] ? do_blk_trace_setup+0xc10/0xc10 [ 1529.354049] ? perf_trace_lock+0xac/0x490 [ 1529.354741] blk_trace_setup+0x43/0x60 [ 1529.355361] sg_ioctl_common+0x634/0x2570 [ 1529.356022] ? __sanitizer_cov_trace_switch+0x45/0x80 [ 1529.356839] ? do_vfs_ioctl+0x283/0x10d0 [ 1529.357485] ? sg_write+0x120/0x120 [ 1529.358056] ? generic_block_fiemap+0x60/0x60 [ 1529.358776] ? __mutex_unlock_slowpath+0xe1/0x600 [ 1529.359545] ? selinux_file_ioctl+0xb6/0x270 [ 1529.360228] ? sg_compat_ioctl+0x120/0x120 [ 1529.360885] sg_ioctl+0x8f/0x120 [ 1529.361425] __x64_sys_ioctl+0x19a/0x210 [ 1529.362064] do_syscall_64+0x33/0x40 [ 1529.362654] entry_SYSCALL_64_after_hwframe+0x62/0xc7 [ 1529.363463] RIP: 0033:0x7f661a573b19 [ 1529.364047] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1529.366920] RSP: 002b:00007f6617ae9188 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 1529.368097] RAX: ffffffffffffffda RBX: 00007f661a686f60 RCX: 00007f661a573b19 [ 1529.369220] RDX: 0000000020000140 RSI: 00000000c0481273 RDI: 0000000000000003 [ 1529.370313] RBP: 00007f6617ae91d0 R08: 0000000000000000 R09: 0000000000000000 [ 1529.371468] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 1529.372593] R13: 00007ffd527cbf9f R14: 00007f6617ae9300 R15: 0000000000022000 [ 1529.414158] FAT-fs (loop0): bogus number of reserved sectors [ 1529.415640] FAT-fs (loop0): Can't find a valid FAT filesystem [ 1543.692956] FAT-fs (loop0): bogus number of reserved sectors [ 1543.693720] FAT-fs (loop0): Can't find a valid FAT filesystem 23:45:13 executing program 2: r0 = add_key$keyring(&(0x7f0000000040), &(0x7f00000002c0)={'syz', 0x3}, 0x0, 0x0, 0xfffffffffffffffd) keyctl$KEYCTL_RESTRICT_KEYRING(0xf, r0, 0x0, 0x0) connect$inet(0xffffffffffffffff, &(0x7f0000000140)={0x2, 0x0, @dev}, 0x10) r1 = syz_open_dev$sg(&(0x7f0000000040), 0x0, 0x0) ioctl$BLKTRACETEARDOWN(r1, 0x1276, 0x0) ioctl$BLKTRACESETUP(r1, 0xc0481273, &(0x7f0000000140)={'\x00', 0x0, 0x4, 0x8, 0x76}) (fail_nth: 39) 23:45:13 executing program 5: perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r0 = syz_mount_image$vfat(&(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x0, 0x2, &(0x7f0000000180)=[{&(0x7f0000000140)="eb3c906d6b66732e66617400020801000470008400f801", 0x17}, {0x0, 0x0, 0x1000a00}], 0x0, &(0x7f0000000240)=ANY=[]) openat2(r0, &(0x7f0000000100)='./file0\x00', &(0x7f00000001c0)={0x40040, 0x3f000000}, 0x18) 23:45:13 executing program 0: perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = syz_mount_image$vfat(&(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x0, 0x2, &(0x7f0000000180)=[{&(0x7f0000000140)="eb3c906d6b66732e66617400020801000470008400f801", 0x17}, {0x0}], 0x0, &(0x7f0000000240)=ANY=[]) openat2(r0, &(0x7f0000000100)='./file0\x00', &(0x7f00000001c0)={0x40040, 0x8}, 0x18) 23:45:13 executing program 3: r0 = syz_open_dev$tty1(0xc, 0x4, 0x1) writev(r0, &(0x7f0000000080)=[{&(0x7f0000001380)="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", 0x1ea}], 0x1) 23:45:13 executing program 1: syz_mount_image$vfat(&(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x0, 0x2, &(0x7f0000000180)=[{&(0x7f0000000140)="eb3c906d6b66732e66617400020801000470008400f801", 0x17}, {0x0, 0x0, 0x1000a00}], 0x0, &(0x7f0000000240)=ANY=[]) 23:45:13 executing program 6: r0 = openat$hpet(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0) read$eventfd(r0, 0x0, 0x0) sendmsg$TIPC_NL_NET_SET(r0, &(0x7f00000008c0)={&(0x7f00000006c0)={0x10, 0x0, 0x0, 0x8000000}, 0xc, &(0x7f0000000880)={&(0x7f0000000700)={0x130, 0x0, 0x8, 0x20, 0x25dfdbfb, {}, [@TIPC_NLA_NODE={0x14, 0x6, 0x0, 0x1, [@TIPC_NLA_NODE_ADDR={0x8, 0x1, 0xfff}, @TIPC_NLA_NODE_ADDR={0x8, 0x1, 0x80}]}, @TIPC_NLA_BEARER={0xdc, 0x1, 0x0, 0x1, [@TIPC_NLA_BEARER_UDP_OPTS={0x38, 0x4, {{0x14, 0x1, @in={0x2, 0x4e23, @multicast1}}, {0x20, 0x2, @in6={0xa, 0x4e20, 0xffffffff, @ipv4={'\x00', '\xff\xff', @empty}, 0x101}}}}, @TIPC_NLA_BEARER_NAME={0xf, 0x1, @l2={'ib', 0x3a, 'erspan0\x00'}}, @TIPC_NLA_BEARER_PROP={0x3c, 0x2, 0x0, 0x1, [@TIPC_NLA_PROP_MTU={0x8, 0x4, 0xa6c}, @TIPC_NLA_PROP_PRIO={0x8, 0x1, 0x4}, @TIPC_NLA_PROP_TOL={0x8}, @TIPC_NLA_PROP_WIN={0x8, 0x3, 0xffffffff}, @TIPC_NLA_PROP_TOL={0x8, 0x2, 0x1}, @TIPC_NLA_PROP_WIN={0x8, 0x3, 0x1}, @TIPC_NLA_PROP_TOL={0x8, 0x2, 0x1}]}, @TIPC_NLA_BEARER_DOMAIN={0x8}, @TIPC_NLA_BEARER_NAME={0x18, 0x1, @l2={'eth', 0x3a, 'veth1_to_batadv\x00'}}, @TIPC_NLA_BEARER_PROP={0x24, 0x2, 0x0, 0x1, [@TIPC_NLA_PROP_WIN={0x8, 0x3, 0x513fec3d}, @TIPC_NLA_PROP_MTU={0x8, 0x4, 0x1}, @TIPC_NLA_PROP_TOL={0x8, 0x2, 0x40}, @TIPC_NLA_PROP_TOL={0x8, 0x2, 0xff}]}, @TIPC_NLA_BEARER_NAME={0xf, 0x1, @l2={'ib', 0x3a, 'erspan0\x00'}}]}, @TIPC_NLA_PUBL={0x2c, 0x3, 0x0, 0x1, [@TIPC_NLA_PUBL_UPPER={0x8, 0x3, 0x6}, @TIPC_NLA_PUBL_TYPE={0x8, 0x1, 0x8}, @TIPC_NLA_PUBL_LOWER={0x8, 0x2, 0x1}, @TIPC_NLA_PUBL_UPPER={0x8, 0x3, 0x7}, @TIPC_NLA_PUBL_LOWER={0x8, 0x2, 0xf0a}]}]}, 0x130}, 0x1, 0x0, 0x0, 0x880}, 0x8054) r1 = openat$hpet(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0) r2 = syz_mount_image$tmpfs(&(0x7f0000000000), &(0x7f0000000080)='./file0\x00', 0x0, 0x0, 0x0, 0x0, &(0x7f0000000600)=ANY=[]) mknodat$loop(r2, &(0x7f0000000300)='./file0\x00', 0x1000, 0x0) mknodat$loop(0xffffffffffffffff, &(0x7f0000000300)='./file0\x00', 0x1000, 0x0) openat(0xffffffffffffffff, &(0x7f0000000140)='./file0\x00', 0x2, 0x0) openat(0xffffffffffffffff, &(0x7f0000000000)='./file0\x00', 0x0, 0x0) ioctl$EXT4_IOC_MOVE_EXT(0xffffffffffffffff, 0xc028660f, &(0x7f0000000840)={0x0, 0xffffffffffffffff, 0x0, 0x7, 0x0, 0x1}) ioctl$AUTOFS_DEV_IOCTL_EXPIRE(r1, 0xc018937c, &(0x7f0000000500)={{0x1, 0x1, 0x18, r1}, './file0/file0\x00'}) mknodat$loop(r3, &(0x7f0000000540)='./file0\x00', 0x4100, 0x0) openat(r2, &(0x7f00000005c0)='./file0/file0/file0\x00', 0x2e802, 0x0) statfs(&(0x7f0000000600)='./file0/file0/file0\x00', &(0x7f0000000640)=""/69) openat(r2, &(0x7f0000000580)='./file0\x00', 0x0, 0x100) fstatfs(r2, &(0x7f0000000480)=""/70) read$eventfd(r1, 0x0, 0x0) ioctl$KDFONTOP_COPY(r1, 0x4b72, &(0x7f0000000440)={0x3, 0x0, 0x19, 0x11, 0x15f, &(0x7f0000000040)}) r4 = syz_open_dev$tty20(0xc, 0x4, 0x1) ioctl$VT_RESIZEX(r4, 0x560a, &(0x7f0000000000)={0x0, 0x0, 0x0, 0x0, 0x1d}) 23:45:13 executing program 4: perf_event_open(&(0x7f0000001d80)={0x2, 0x80, 0x69, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = socket$inet6_udp(0xa, 0x2, 0x0) dup(0xffffffffffffffff) fstat(0xffffffffffffffff, 0x0) connect$inet6(r0, &(0x7f0000000600)={0xa, 0x0, 0x0, @dev, 0x2}, 0x1c) sendmmsg$inet6(r0, &(0x7f0000000080)=[{{0x0, 0x1941, &(0x7f00000004c0)=[{&(0x7f00000001c0)="4bc702854e3954b59347985ccc868289d3fe483d2c0900a2a1d12e33a66529e1f276fef452632dfa3c004ce3be84a5f66c29cd4ec39ae5206562fbc9ea3c0dbbebc22e628e147b0e9631f19b0ce0a48e0e675b2da3442226b898f1ddf8eabf133ab4a9cb0999c2ee1d3bd36d089b0d8e97ea00d4c5f6ad14dce058d595aacba2d587ff5eacd81b71a73f53ed276d1f3b3384bb2bfba4e0f37302e690df9e7024378ac754ac0576f996f3ee53d1034c7720767ddf2625817532f7ae89103367b73a36152b84c38bc227ba9e9ff48bcfe027585cf14bff37a888", 0xff41}], 0x1}}], 0x1, 0x0) 23:45:13 executing program 7: perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_mount_image$vfat(&(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x7a, 0x2, &(0x7f0000000180)=[{&(0x7f0000000140)="eb3c906d6b66732e66617400020801000470008400f801", 0x17}, {0x0, 0x0, 0x1000a00}], 0x0, &(0x7f0000000240)=ANY=[]) [ 1543.759707] FAULT_INJECTION: forcing a failure. [ 1543.759707] name fail_page_alloc, interval 1, probability 0, space 0, times 0 [ 1543.762461] CPU: 1 PID: 9010 Comm: syz-executor.2 Not tainted 5.10.194 #1 23:45:13 executing program 0: perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = syz_mount_image$vfat(&(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x0, 0x1, &(0x7f0000000180)=[{0x0, 0x0, 0x1000a00}], 0x0, &(0x7f0000000240)=ANY=[]) openat2(r0, &(0x7f0000000100)='./file0\x00', &(0x7f00000001c0)={0x40040, 0x8}, 0x18) [ 1543.764002] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1543.766009] Call Trace: [ 1543.766612] dump_stack+0x107/0x167 [ 1543.767450] should_fail.cold+0x5/0xa [ 1543.768307] __alloc_pages_nodemask+0x182/0x600 [ 1543.769345] ? __kmalloc+0x16e/0x390 [ 1543.770180] ? __alloc_pages_slowpath.constprop.0+0x2130/0x2130 [ 1543.771534] ? trace_hardirqs_on+0x5b/0x180 [ 1543.772503] alloc_pages_current+0x187/0x280 [ 1543.773487] relay_open_buf.part.0+0x2a5/0xc00 [ 1543.774520] relay_open+0x531/0xa10 [ 1543.775347] do_blk_trace_setup+0x4cf/0xc10 [ 1543.775529] FAT-fs (loop0): bogus number of reserved sectors [ 1543.776305] ? _copy_from_user+0xfb/0x1b0 [ 1543.777040] FAT-fs (loop0): Can't find a valid FAT filesystem [ 1543.777925] __blk_trace_setup+0xca/0x180 [ 1543.777946] ? do_blk_trace_setup+0xc10/0xc10 [ 1543.777982] ? perf_trace_lock+0xac/0x490 [ 1543.781443] blk_trace_setup+0x43/0x60 [ 1543.782311] sg_ioctl_common+0x634/0x2570 [ 1543.783238] ? __sanitizer_cov_trace_switch+0x45/0x80 [ 1543.784375] ? do_vfs_ioctl+0x283/0x10d0 [ 1543.785266] ? sg_write+0x120/0x120 [ 1543.786067] ? generic_block_fiemap+0x60/0x60 [ 1543.787056] ? __mutex_unlock_slowpath+0xe1/0x600 [ 1543.788154] ? selinux_file_ioctl+0xb6/0x270 [ 1543.789117] ? sg_compat_ioctl+0x120/0x120 [ 1543.790047] sg_ioctl+0x8f/0x120 [ 1543.790794] __x64_sys_ioctl+0x19a/0x210 [ 1543.791699] do_syscall_64+0x33/0x40 [ 1543.792521] entry_SYSCALL_64_after_hwframe+0x62/0xc7 [ 1543.793643] RIP: 0033:0x7f661a573b19 23:45:13 executing program 0: perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = syz_mount_image$vfat(&(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x0, 0x1, &(0x7f0000000180)=[{0x0, 0x0, 0x1000a00}], 0x0, &(0x7f0000000240)=ANY=[]) openat2(r0, &(0x7f0000000100)='./file0\x00', &(0x7f00000001c0)={0x40040, 0x8}, 0x18) [ 1543.794464] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1543.798593] RSP: 002b:00007f6617ae9188 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 1543.800263] RAX: ffffffffffffffda RBX: 00007f661a686f60 RCX: 00007f661a573b19 [ 1543.801815] RDX: 0000000020000140 RSI: 00000000c0481273 RDI: 0000000000000003 [ 1543.803375] RBP: 00007f6617ae91d0 R08: 0000000000000000 R09: 0000000000000000 [ 1543.804926] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 1543.806478] R13: 00007ffd527cbf9f R14: 00007f6617ae9300 R15: 0000000000022000 23:45:13 executing program 1: syz_mount_image$vfat(&(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x0, 0x2, &(0x7f0000000180)=[{&(0x7f0000000140)="eb3c906d6b66732e66617400020801000470008400f801", 0x17}, {0x0, 0x0, 0x1000a00}], 0x0, &(0x7f0000000240)=ANY=[]) 23:45:13 executing program 4: perf_event_open(&(0x7f0000001d80)={0x2, 0x80, 0x69, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = socket$inet6_udp(0xa, 0x2, 0x0) dup(0xffffffffffffffff) fstat(0xffffffffffffffff, 0x0) connect$inet6(r0, &(0x7f0000000600)={0xa, 0x0, 0x0, @dev, 0x2}, 0x1c) sendmmsg$inet6(r0, &(0x7f0000000080)=[{{0x0, 0x19f1, &(0x7f00000004c0)=[{&(0x7f00000001c0)="4bc702854e3954b59347985ccc868289d3fe483d2c0900a2a1d12e33a66529e1f276fef452632dfa3c004ce3be84a5f66c29cd4ec39ae5206562fbc9ea3c0dbbebc22e628e147b0e9631f19b0ce0a48e0e675b2da3442226b898f1ddf8eabf133ab4a9cb0999c2ee1d3bd36d089b0d8e97ea00d4c5f6ad14dce058d595aacba2d587ff5eacd81b71a73f53ed276d1f3b3384bb2bfba4e0f37302e690df9e7024378ac754ac0576f996f3ee53d1034c7720767ddf2625817532f7ae89103367b73a36152b84c38bc227ba9e9ff48bcfe027585cf14bff37a888", 0xff41}], 0x1}}], 0x1, 0x0) 23:45:14 executing program 3: r0 = syz_open_dev$tty1(0xc, 0x4, 0x1) writev(r0, &(0x7f0000000080)=[{&(0x7f0000001380)="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", 0x1ea}], 0x1) [ 1544.553917] tmpfs: Unknown parameter './file0/file0/file0' 23:45:28 executing program 7: perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_mount_image$vfat(&(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x2e2, 0x2, &(0x7f0000000180)=[{&(0x7f0000000140)="eb3c906d6b66732e66617400020801000470008400f801", 0x17}, {0x0, 0x0, 0x1000a00}], 0x0, &(0x7f0000000240)=ANY=[]) 23:45:28 executing program 0: perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = syz_mount_image$vfat(&(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x0, 0x1, &(0x7f0000000180)=[{0x0, 0x0, 0x1000a00}], 0x0, &(0x7f0000000240)=ANY=[]) openat2(r0, &(0x7f0000000100)='./file0\x00', &(0x7f00000001c0)={0x40040, 0x8}, 0x18) 23:45:28 executing program 6: r0 = syz_open_dev$tty20(0xc, 0x4, 0x1) ioctl$VT_RESIZEX(r0, 0x560a, &(0x7f0000000000)={0x0, 0x0, 0x4, 0x5, 0x1d}) 23:45:28 executing program 2: r0 = add_key$keyring(&(0x7f0000000040), &(0x7f00000002c0)={'syz', 0x3}, 0x0, 0x0, 0xfffffffffffffffd) keyctl$KEYCTL_RESTRICT_KEYRING(0xf, r0, 0x0, 0x0) connect$inet(0xffffffffffffffff, &(0x7f0000000140)={0x2, 0x0, @dev}, 0x10) r1 = syz_open_dev$sg(&(0x7f0000000040), 0x0, 0x0) ioctl$BLKTRACETEARDOWN(r1, 0x1276, 0x0) ioctl$BLKTRACESETUP(r1, 0xc0481273, &(0x7f0000000140)={'\x00', 0x0, 0x4, 0x8, 0x76}) (fail_nth: 40) 23:45:28 executing program 4: perf_event_open(&(0x7f0000001d80)={0x2, 0x80, 0x69, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = socket$inet6_udp(0xa, 0x2, 0x0) dup(0xffffffffffffffff) fstat(0xffffffffffffffff, 0x0) connect$inet6(r0, &(0x7f0000000600)={0xa, 0x0, 0x0, @dev, 0x2}, 0x1c) sendmmsg$inet6(r0, &(0x7f0000000080)=[{{0x0, 0x19f4, &(0x7f00000004c0)=[{&(0x7f00000001c0)="4bc702854e3954b59347985ccc868289d3fe483d2c0900a2a1d12e33a66529e1f276fef452632dfa3c004ce3be84a5f66c29cd4ec39ae5206562fbc9ea3c0dbbebc22e628e147b0e9631f19b0ce0a48e0e675b2da3442226b898f1ddf8eabf133ab4a9cb0999c2ee1d3bd36d089b0d8e97ea00d4c5f6ad14dce058d595aacba2d587ff5eacd81b71a73f53ed276d1f3b3384bb2bfba4e0f37302e690df9e7024378ac754ac0576f996f3ee53d1034c7720767ddf2625817532f7ae89103367b73a36152b84c38bc227ba9e9ff48bcfe027585cf14bff37a888", 0xff41}], 0x1}}], 0x1, 0x0) 23:45:28 executing program 3: r0 = syz_open_dev$tty1(0xc, 0x4, 0x1) writev(r0, &(0x7f0000000080)=[{&(0x7f0000001380)="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", 0x1ea}], 0x1) 23:45:28 executing program 1: perf_event_open(0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) syz_mount_image$vfat(&(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x0, 0x2, &(0x7f0000000180)=[{&(0x7f0000000140)="eb3c906d6b66732e66617400020801000470008400f801", 0x17}, {0x0, 0x0, 0x1000a00}], 0x0, &(0x7f0000000240)=ANY=[]) 23:45:28 executing program 5: perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r0 = syz_mount_image$vfat(&(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x0, 0x2, &(0x7f0000000180)=[{&(0x7f0000000140)="eb3c906d6b66732e66617400020801000470008400f801", 0x17}, {0x0, 0x0, 0x1000a00}], 0x0, &(0x7f0000000240)=ANY=[]) openat2(r0, &(0x7f0000000100)='./file0\x00', &(0x7f00000001c0)={0x40040, 0x80040000}, 0x18) 23:45:28 executing program 7: perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_mount_image$vfat(&(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x300, 0x2, &(0x7f0000000180)=[{&(0x7f0000000140)="eb3c906d6b66732e66617400020801000470008400f801", 0x17}, {0x0, 0x0, 0x1000a00}], 0x0, &(0x7f0000000240)=ANY=[]) [ 1558.031576] FAULT_INJECTION: forcing a failure. [ 1558.031576] name failslab, interval 1, probability 0, space 0, times 0 [ 1558.033934] CPU: 0 PID: 9056 Comm: syz-executor.2 Not tainted 5.10.194 #1 [ 1558.035334] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1558.037028] Call Trace: [ 1558.037575] dump_stack+0x107/0x167 [ 1558.038324] should_fail.cold+0x5/0xa [ 1558.039105] ? __get_vm_area_node+0xd4/0x340 [ 1558.040020] should_failslab+0x5/0x20 [ 1558.040814] kmem_cache_alloc_node_trace+0x59/0x340 [ 1558.041840] __get_vm_area_node+0xd4/0x340 [ 1558.042705] ? relay_open_buf.part.0+0x4cf/0xc00 [ 1558.043686] get_vm_area_caller+0x70/0xb0 [ 1558.044529] ? relay_open_buf.part.0+0x4cf/0xc00 [ 1558.045488] vmap+0xe9/0x2c0 [ 1558.046116] ? vunmap+0x70/0x70 [ 1558.046801] relay_open_buf.part.0+0x4cf/0xc00 [ 1558.047760] relay_open+0x531/0xa10 [ 1558.048504] do_blk_trace_setup+0x4cf/0xc10 [ 1558.049389] ? _copy_from_user+0xfb/0x1b0 [ 1558.050235] __blk_trace_setup+0xca/0x180 [ 1558.051076] ? do_blk_trace_setup+0xc10/0xc10 [ 1558.052016] ? perf_trace_lock+0xac/0x490 [ 1558.052875] blk_trace_setup+0x43/0x60 [ 1558.053674] sg_ioctl_common+0x634/0x2570 [ 1558.054523] ? __sanitizer_cov_trace_switch+0x45/0x80 [ 1558.055592] ? do_vfs_ioctl+0x283/0x10d0 [ 1558.056419] ? sg_write+0x120/0x120 [ 1558.057161] ? generic_block_fiemap+0x60/0x60 [ 1558.058081] ? __mutex_unlock_slowpath+0xe1/0x600 [ 1558.059086] ? selinux_file_ioctl+0xb6/0x270 [ 1558.059997] ? sg_compat_ioctl+0x120/0x120 [ 1558.060861] sg_ioctl+0x8f/0x120 [ 1558.061556] __x64_sys_ioctl+0x19a/0x210 [ 1558.062417] do_syscall_64+0x33/0x40 [ 1558.063183] entry_SYSCALL_64_after_hwframe+0x62/0xc7 [ 1558.064246] RIP: 0033:0x7f661a573b19 [ 1558.065009] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1558.068782] RSP: 002b:00007f6617ae9188 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 1558.070335] RAX: ffffffffffffffda RBX: 00007f661a686f60 RCX: 00007f661a573b19 [ 1558.071798] RDX: 0000000020000140 RSI: 00000000c0481273 RDI: 0000000000000003 [ 1558.073253] RBP: 00007f6617ae91d0 R08: 0000000000000000 R09: 0000000000000000 [ 1558.074707] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 1558.076175] R13: 00007ffd527cbf9f R14: 00007f6617ae9300 R15: 0000000000022000 [ 1558.111877] FAT-fs (loop0): bogus number of reserved sectors [ 1558.113166] FAT-fs (loop0): Can't find a valid FAT filesystem 23:45:28 executing program 6: r0 = syz_open_dev$tty20(0xc, 0x4, 0x1) ioctl$VT_RESIZEX(r0, 0x560a, &(0x7f0000000000)={0x0, 0x0, 0xffff, 0x0, 0x1d}) r1 = socket$nl_xfrm(0x10, 0x3, 0x6) ioctl$BTRFS_IOC_BALANCE_PROGRESS(r1, 0x84009422, &(0x7f0000000040)={0x0, 0x0, {0x0, @struct}, {0x0, @struct, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @struct}, {0x0, @usage, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @struct}}) ioctl$TIOCSETD(r0, 0x5423, &(0x7f0000000440)=0x10) 23:45:28 executing program 3: r0 = syz_open_dev$tty1(0xc, 0x4, 0x1) writev(r0, &(0x7f0000000080)=[{&(0x7f0000001380)="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", 0x1ea}], 0x1) 23:45:28 executing program 4: perf_event_open(&(0x7f0000001d80)={0x2, 0x80, 0x69, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = socket$inet6_udp(0xa, 0x2, 0x0) dup(0xffffffffffffffff) fstat(0xffffffffffffffff, 0x0) connect$inet6(r0, &(0x7f0000000600)={0xa, 0x0, 0x0, @dev, 0x2}, 0x1c) sendmmsg$inet6(r0, &(0x7f0000000080)=[{{0x0, 0x1f89, &(0x7f00000004c0)=[{&(0x7f00000001c0)="4bc702854e3954b59347985ccc868289d3fe483d2c0900a2a1d12e33a66529e1f276fef452632dfa3c004ce3be84a5f66c29cd4ec39ae5206562fbc9ea3c0dbbebc22e628e147b0e9631f19b0ce0a48e0e675b2da3442226b898f1ddf8eabf133ab4a9cb0999c2ee1d3bd36d089b0d8e97ea00d4c5f6ad14dce058d595aacba2d587ff5eacd81b71a73f53ed276d1f3b3384bb2bfba4e0f37302e690df9e7024378ac754ac0576f996f3ee53d1034c7720767ddf2625817532f7ae89103367b73a36152b84c38bc227ba9e9ff48bcfe027585cf14bff37a888", 0xff41}], 0x1}}], 0x1, 0x0) 23:45:28 executing program 0: perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = syz_mount_image$vfat(&(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x0, 0x2, &(0x7f0000000180)=[{0x0}, {0x0, 0x0, 0x1000a00}], 0x0, &(0x7f0000000240)=ANY=[]) openat2(r0, &(0x7f0000000100)='./file0\x00', &(0x7f00000001c0)={0x40040, 0x8}, 0x18) 23:45:28 executing program 5: perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r0 = syz_mount_image$vfat(&(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x0, 0x2, &(0x7f0000000180)=[{&(0x7f0000000140)="eb3c906d6b66732e66617400020801000470008400f801", 0x17}, {0x0, 0x0, 0x1000a00}], 0x0, &(0x7f0000000240)=ANY=[]) openat2(r0, &(0x7f0000000100)='./file0\x00', &(0x7f00000001c0)={0x40040, 0x8cffffff}, 0x18) 23:45:28 executing program 1: perf_event_open(0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) syz_mount_image$vfat(&(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x0, 0x2, &(0x7f0000000180)=[{&(0x7f0000000140)="eb3c906d6b66732e66617400020801000470008400f801", 0x17}, {0x0, 0x0, 0x1000a00}], 0x0, &(0x7f0000000240)=ANY=[]) 23:45:28 executing program 2: r0 = add_key$keyring(&(0x7f0000000040), &(0x7f00000002c0)={'syz', 0x3}, 0x0, 0x0, 0xfffffffffffffffd) keyctl$KEYCTL_RESTRICT_KEYRING(0xf, r0, 0x0, 0x0) connect$inet(0xffffffffffffffff, &(0x7f0000000140)={0x2, 0x0, @dev}, 0x10) r1 = syz_open_dev$sg(&(0x7f0000000040), 0x0, 0x0) ioctl$BLKTRACETEARDOWN(r1, 0x1276, 0x0) ioctl$BLKTRACESETUP(r1, 0xc0481273, &(0x7f0000000140)={'\x00', 0x0, 0x4, 0x8, 0x76}) (fail_nth: 41) 23:45:28 executing program 7: perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_mount_image$vfat(&(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x3ad, 0x2, &(0x7f0000000180)=[{&(0x7f0000000140)="eb3c906d6b66732e66617400020801000470008400f801", 0x17}, {0x0, 0x0, 0x1000a00}], 0x0, &(0x7f0000000240)=ANY=[]) 23:45:28 executing program 4: perf_event_open(&(0x7f0000001d80)={0x2, 0x80, 0x69, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = socket$inet6_udp(0xa, 0x2, 0x0) dup(0xffffffffffffffff) fstat(0xffffffffffffffff, 0x0) connect$inet6(r0, &(0x7f0000000600)={0xa, 0x0, 0x0, @dev, 0x2}, 0x1c) sendmmsg$inet6(r0, &(0x7f0000000080)=[{{0x0, 0x2125, &(0x7f00000004c0)=[{&(0x7f00000001c0)="4bc702854e3954b59347985ccc868289d3fe483d2c0900a2a1d12e33a66529e1f276fef452632dfa3c004ce3be84a5f66c29cd4ec39ae5206562fbc9ea3c0dbbebc22e628e147b0e9631f19b0ce0a48e0e675b2da3442226b898f1ddf8eabf133ab4a9cb0999c2ee1d3bd36d089b0d8e97ea00d4c5f6ad14dce058d595aacba2d587ff5eacd81b71a73f53ed276d1f3b3384bb2bfba4e0f37302e690df9e7024378ac754ac0576f996f3ee53d1034c7720767ddf2625817532f7ae89103367b73a36152b84c38bc227ba9e9ff48bcfe027585cf14bff37a888", 0xff41}], 0x1}}], 0x1, 0x0) 23:45:28 executing program 5: perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r0 = syz_mount_image$vfat(&(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x0, 0x2, &(0x7f0000000180)=[{&(0x7f0000000140)="eb3c906d6b66732e66617400020801000470008400f801", 0x17}, {0x0, 0x0, 0x1000a00}], 0x0, &(0x7f0000000240)=ANY=[]) openat2(r0, &(0x7f0000000100)='./file0\x00', &(0x7f00000001c0)={0x40040, 0xe5ffffff}, 0x18) 23:45:28 executing program 3: r0 = syz_open_dev$tty1(0xc, 0x4, 0x1) writev(r0, &(0x7f0000000080)=[{&(0x7f0000001380)="3ead823d27b1f38d16b83fca92a1fcf4a79624a264eb3d23f624cb63a9a475c4336e3015462fa8b76b1c5fb9b159eaa406698e2f3dcd71c5ba4e666731496d8ddd1bbaae50714c9ccdc53444b41f6df995ce4a1e6b9807bce8fa3e046360e5d1b228a3367e2315a985fcf8542b6a2e58eff19d99aa1de724345dd5786c63d31c197c760ac73dc10c91fcf49125d4dd5e1d4c952eeabf70f80b092c914e00cd0e75bdea96065d75447e5e2917619f3d3e2662b99fac83e65ca6fb6fc547ce903e960595bafc4990dfa6263d2dd2268b3f6f3df3b1603e198bc4011a4b1c43c686ff811d9a346aabe8c9f33c2c5e0ab15e288917c0de80a9d49e72e1efc8db344b3a715702fd03a0e9e2387cc5032967d44d8b3b68383f6c89c842ec2eadc06d1e5133067d6b3f11647561748b7d4185cab428d5fbf98ea4100f2276af2fec68da7e57d65c185e261b6790c65ebb5f98cb027d065d424a65705b15be6eda2b4ba4f6a337f711fc7088d216cb59a744bc5a0d0f059b11d6d7c0784065277076525027223b82fdcc899b2de92a710082edf89a57c0bf416899d2f8ad2cad43e5018b52025096784ecd82a29c00a8bf5ffa6e3b75fe641acf39885c084ae7e546f04224aeb23f61d99fc464a533fc6b87790e335057b54dbff233ced4a7ef90884dc7d90d678cc080024b9b4a", 0x1ea}], 0x1) [ 1558.383572] FAULT_INJECTION: forcing a failure. [ 1558.383572] name failslab, interval 1, probability 0, space 0, times 0 [ 1558.386056] CPU: 0 PID: 9088 Comm: syz-executor.2 Not tainted 5.10.194 #1 [ 1558.387468] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1558.389170] Call Trace: [ 1558.389722] dump_stack+0x107/0x167 [ 1558.390481] should_fail.cold+0x5/0xa [ 1558.391268] ? create_object.isra.0+0x3a/0xa20 [ 1558.392226] should_failslab+0x5/0x20 [ 1558.393010] kmem_cache_alloc+0x5b/0x310 [ 1558.393851] create_object.isra.0+0x3a/0xa20 [ 1558.394754] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 1558.395818] kmem_cache_alloc_node_trace+0x16d/0x340 [ 1558.396866] __get_vm_area_node+0xd4/0x340 [ 1558.397737] ? relay_open_buf.part.0+0x4cf/0xc00 [ 1558.398721] get_vm_area_caller+0x70/0xb0 [ 1558.399579] ? relay_open_buf.part.0+0x4cf/0xc00 [ 1558.400548] vmap+0xe9/0x2c0 [ 1558.401180] ? vunmap+0x70/0x70 [ 1558.401872] relay_open_buf.part.0+0x4cf/0xc00 [ 1558.402821] relay_open+0x531/0xa10 [ 1558.403611] do_blk_trace_setup+0x4cf/0xc10 [ 1558.404507] ? _copy_from_user+0xfb/0x1b0 [ 1558.405367] __blk_trace_setup+0xca/0x180 [ 1558.406219] ? do_blk_trace_setup+0xc10/0xc10 [ 1558.407154] ? perf_trace_lock+0xac/0x490 [ 1558.408023] blk_trace_setup+0x43/0x60 [ 1558.408826] sg_ioctl_common+0x634/0x2570 [ 1558.409685] ? __sanitizer_cov_trace_switch+0x45/0x80 [ 1558.410742] ? do_vfs_ioctl+0x283/0x10d0 [ 1558.411595] ? sg_write+0x120/0x120 [ 1558.412340] ? generic_block_fiemap+0x60/0x60 [ 1558.413264] ? __mutex_unlock_slowpath+0xe1/0x600 [ 1558.414271] ? selinux_file_ioctl+0xb6/0x270 [ 1558.415175] ? sg_compat_ioctl+0x120/0x120 [ 1558.416060] sg_ioctl+0x8f/0x120 [ 1558.416760] __x64_sys_ioctl+0x19a/0x210 [ 1558.417619] do_syscall_64+0x33/0x40 [ 1558.418401] entry_SYSCALL_64_after_hwframe+0x62/0xc7 [ 1558.419462] RIP: 0033:0x7f661a573b19 [ 1558.420225] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1558.424022] RSP: 002b:00007f6617ae9188 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 1558.425582] RAX: ffffffffffffffda RBX: 00007f661a686f60 RCX: 00007f661a573b19 [ 1558.427053] RDX: 0000000020000140 RSI: 00000000c0481273 RDI: 0000000000000003 [ 1558.428534] RBP: 00007f6617ae91d0 R08: 0000000000000000 R09: 0000000000000000 [ 1558.429993] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 1558.431461] R13: 00007ffd527cbf9f R14: 00007f6617ae9300 R15: 0000000000022000 23:45:43 executing program 4: perf_event_open(&(0x7f0000001d80)={0x2, 0x80, 0x69, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = socket$inet6_udp(0xa, 0x2, 0x0) dup(0xffffffffffffffff) fstat(0xffffffffffffffff, 0x0) connect$inet6(r0, &(0x7f0000000600)={0xa, 0x0, 0x0, @dev, 0x2}, 0x1c) sendmmsg$inet6(r0, &(0x7f0000000080)=[{{0x0, 0x21d8, &(0x7f00000004c0)=[{&(0x7f00000001c0)="4bc702854e3954b59347985ccc868289d3fe483d2c0900a2a1d12e33a66529e1f276fef452632dfa3c004ce3be84a5f66c29cd4ec39ae5206562fbc9ea3c0dbbebc22e628e147b0e9631f19b0ce0a48e0e675b2da3442226b898f1ddf8eabf133ab4a9cb0999c2ee1d3bd36d089b0d8e97ea00d4c5f6ad14dce058d595aacba2d587ff5eacd81b71a73f53ed276d1f3b3384bb2bfba4e0f37302e690df9e7024378ac754ac0576f996f3ee53d1034c7720767ddf2625817532f7ae89103367b73a36152b84c38bc227ba9e9ff48bcfe027585cf14bff37a888", 0xff41}], 0x1}}], 0x1, 0x0) 23:45:43 executing program 0: perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = syz_mount_image$vfat(&(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x0, 0x2, &(0x7f0000000180)=[{0x0}, {0x0, 0x0, 0x1000a00}], 0x0, &(0x7f0000000240)=ANY=[]) openat2(r0, &(0x7f0000000100)='./file0\x00', &(0x7f00000001c0)={0x40040, 0x8}, 0x18) 23:45:43 executing program 2: r0 = add_key$keyring(&(0x7f0000000040), &(0x7f00000002c0)={'syz', 0x3}, 0x0, 0x0, 0xfffffffffffffffd) keyctl$KEYCTL_RESTRICT_KEYRING(0xf, r0, 0x0, 0x0) connect$inet(0xffffffffffffffff, &(0x7f0000000140)={0x2, 0x0, @dev}, 0x10) r1 = syz_open_dev$sg(&(0x7f0000000040), 0x0, 0x0) ioctl$BLKTRACETEARDOWN(r1, 0x1276, 0x0) ioctl$BLKTRACESETUP(r1, 0xc0481273, &(0x7f0000000140)={'\x00', 0x0, 0x4, 0x8, 0x76}) (fail_nth: 42) 23:45:43 executing program 3: r0 = syz_open_dev$tty1(0xc, 0x4, 0x1) writev(r0, &(0x7f0000000080)=[{&(0x7f0000001380)="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", 0x1ea}], 0x1) 23:45:43 executing program 7: perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_mount_image$vfat(&(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x3f1, 0x2, &(0x7f0000000180)=[{&(0x7f0000000140)="eb3c906d6b66732e66617400020801000470008400f801", 0x17}, {0x0, 0x0, 0x1000a00}], 0x0, &(0x7f0000000240)=ANY=[]) 23:45:43 executing program 6: syz_open_dev$tty20(0xc, 0x4, 0x1) r0 = openat$hpet(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0) read$eventfd(r0, 0x0, 0x0) ioctl$VT_RESIZEX(r0, 0x560a, &(0x7f0000000000)={0x81, 0x5, 0x0, 0x0, 0x24}) 23:45:43 executing program 5: perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r0 = syz_mount_image$vfat(&(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x0, 0x2, &(0x7f0000000180)=[{&(0x7f0000000140)="eb3c906d6b66732e66617400020801000470008400f801", 0x17}, {0x0, 0x0, 0x1000a00}], 0x0, &(0x7f0000000240)=ANY=[]) openat2(r0, &(0x7f0000000100)='./file0\x00', &(0x7f00000001c0)={0x40040, 0xf6ffffff}, 0x18) 23:45:43 executing program 1: perf_event_open(0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) syz_mount_image$vfat(&(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x0, 0x2, &(0x7f0000000180)=[{&(0x7f0000000140)="eb3c906d6b66732e66617400020801000470008400f801", 0x17}, {0x0, 0x0, 0x1000a00}], 0x0, &(0x7f0000000240)=ANY=[]) [ 1573.164001] FAT-fs (loop0): bogus number of reserved sectors [ 1573.165368] FAT-fs (loop0): Can't find a valid FAT filesystem [ 1573.168910] FAULT_INJECTION: forcing a failure. [ 1573.168910] name failslab, interval 1, probability 0, space 0, times 0 [ 1573.171203] CPU: 1 PID: 9116 Comm: syz-executor.2 Not tainted 5.10.194 #1 [ 1573.172610] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1573.174268] Call Trace: [ 1573.174799] dump_stack+0x107/0x167 [ 1573.175539] should_fail.cold+0x5/0xa [ 1573.176304] ? alloc_vmap_area+0x148/0x1d10 [ 1573.177166] should_failslab+0x5/0x20 [ 1573.177949] kmem_cache_alloc_node+0x55/0x330 [ 1573.178860] alloc_vmap_area+0x148/0x1d10 [ 1573.179768] ? kmem_cache_alloc_node_trace+0x16d/0x340 [ 1573.180831] ? mark_held_locks+0x9e/0xe0 [ 1573.181679] ? purge_vmap_area_lazy+0xc0/0xc0 [ 1573.182587] ? kasan_unpoison_shadow+0x33/0x50 [ 1573.183540] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 1573.184653] __get_vm_area_node+0x127/0x340 [ 1573.185534] ? relay_open_buf.part.0+0x4cf/0xc00 [ 1573.186488] get_vm_area_caller+0x70/0xb0 [ 1573.187323] ? relay_open_buf.part.0+0x4cf/0xc00 [ 1573.188294] vmap+0xe9/0x2c0 [ 1573.188913] ? vunmap+0x70/0x70 [ 1573.189593] relay_open_buf.part.0+0x4cf/0xc00 [ 1573.190525] relay_open+0x531/0xa10 [ 1573.191268] do_blk_trace_setup+0x4cf/0xc10 [ 1573.192145] ? _copy_from_user+0xfb/0x1b0 [ 1573.192981] __blk_trace_setup+0xca/0x180 [ 1573.193818] ? do_blk_trace_setup+0xc10/0xc10 [ 1573.194732] ? perf_trace_lock+0xac/0x490 [ 1573.195582] blk_trace_setup+0x43/0x60 [ 1573.196369] sg_ioctl_common+0x634/0x2570 [ 1573.197205] ? __sanitizer_cov_trace_switch+0x45/0x80 [ 1573.198240] ? do_vfs_ioctl+0x283/0x10d0 [ 1573.199054] ? sg_write+0x120/0x120 [ 1573.199806] ? generic_block_fiemap+0x60/0x60 [ 1573.200711] ? __mutex_unlock_slowpath+0xe1/0x600 [ 1573.201726] ? selinux_file_ioctl+0xb6/0x270 [ 1573.202611] ? sg_compat_ioctl+0x120/0x120 [ 1573.203461] sg_ioctl+0x8f/0x120 [ 1573.204151] __x64_sys_ioctl+0x19a/0x210 [ 1573.204972] do_syscall_64+0x33/0x40 [ 1573.205727] entry_SYSCALL_64_after_hwframe+0x62/0xc7 [ 1573.206755] RIP: 0033:0x7f661a573b19 [ 1573.207519] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1573.211195] RSP: 002b:00007f6617ae9188 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 1573.212731] RAX: ffffffffffffffda RBX: 00007f661a686f60 RCX: 00007f661a573b19 [ 1573.214161] RDX: 0000000020000140 RSI: 00000000c0481273 RDI: 0000000000000003 [ 1573.215599] RBP: 00007f6617ae91d0 R08: 0000000000000000 R09: 0000000000000000 [ 1573.217025] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 1573.218458] R13: 00007ffd527cbf9f R14: 00007f6617ae9300 R15: 0000000000022000 23:45:43 executing program 3: r0 = syz_open_dev$tty1(0xc, 0x4, 0x1) writev(r0, &(0x7f0000000080)=[{&(0x7f0000001380)="3ead823d27b1f38d16b83fca92a1f8fca79624a264eb3d23f624cb63a9a475c4336e3015462fa8b76b1c5fb9b159eaa406698e2f3dcd71c5ba4e666731496d8ddd1bbaae50714c9ccdc53444b41f6df995ce4a1e6b9807bce8fa3e046360e5d1b228a3367e2315a985fcf8542b6a2e58eff19d99aa1de724345dd5786c63d31c197c760ac73dc10c91fcf49125d4dd5e1d4c952eeabf70f80b092c914e00cd0e75bdea96065d75447e5e2917619f3d3e2662b99fac83e65ca6fb6fc547ce903e960595bafc4990dfa6263d2dd2268b3f6f3df3b1603e198bc4011a4b1c43c686ff811d9a346aabe8c9f33c2c5e0ab15e288917c0de80a9d49e72e1efc8db344b3a715702fd03a0e9e2387cc5032967d44d8b3b68383f6c89c842ec2eadc06d1e5133067d6b3f11647561748b7d4185cab428d5fbf98ea4100f2276af2fec68da7e57d65c185e261b6790c65ebb5f98cb027d065d424a65705b15be6eda2b4ba4f6a337f711fc7088d216cb59a744bc5a0d0f059b11d6d7c0784065277076525027223b82fdcc899b2de92a710082edf89a57c0bf416899d2f8ad2cad43e5018b52025096784ecd82a29c00a8bf5ffa6e3b75fe641acf39885c084ae7e546f04224aeb23f61d99fc464a533fc6b87790e335057b54dbff233ced4a7ef90884dc7d90d678cc080024b9b4a", 0x1ea}], 0x1) 23:45:43 executing program 6: ioctl$AUTOFS_IOC_EXPIRE(0xffffffffffffffff, 0x810c9365, &(0x7f0000000040)={{0xfad0, 0x8000}, 0x100, './file0\x00'}) syz_open_dev$vcsa(&(0x7f0000000180), 0x847, 0x10000) r0 = syz_open_dev$tty20(0xc, 0x4, 0x0) ioctl$VT_RESIZEX(r0, 0x560a, &(0x7f0000000000)={0x0, 0x0, 0x0, 0x0, 0x1d}) 23:45:43 executing program 2: r0 = add_key$keyring(&(0x7f0000000040), &(0x7f00000002c0)={'syz', 0x3}, 0x0, 0x0, 0xfffffffffffffffd) keyctl$KEYCTL_RESTRICT_KEYRING(0xf, r0, 0x0, 0x0) connect$inet(0xffffffffffffffff, &(0x7f0000000140)={0x2, 0x0, @dev}, 0x10) r1 = syz_open_dev$sg(&(0x7f0000000040), 0x0, 0x0) ioctl$BLKTRACETEARDOWN(r1, 0x1276, 0x0) ioctl$BLKTRACESETUP(r1, 0xc0481273, &(0x7f0000000140)={'\x00', 0x0, 0x4, 0x8, 0x76}) (fail_nth: 43) 23:45:43 executing program 4: perf_event_open(&(0x7f0000001d80)={0x2, 0x80, 0x69, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = socket$inet6_udp(0xa, 0x2, 0x0) dup(0xffffffffffffffff) fstat(0xffffffffffffffff, 0x0) connect$inet6(r0, &(0x7f0000000600)={0xa, 0x0, 0x0, @dev, 0x2}, 0x1c) sendmmsg$inet6(r0, &(0x7f0000000080)=[{{0x0, 0x2521, &(0x7f00000004c0)=[{&(0x7f00000001c0)="4bc702854e3954b59347985ccc868289d3fe483d2c0900a2a1d12e33a66529e1f276fef452632dfa3c004ce3be84a5f66c29cd4ec39ae5206562fbc9ea3c0dbbebc22e628e147b0e9631f19b0ce0a48e0e675b2da3442226b898f1ddf8eabf133ab4a9cb0999c2ee1d3bd36d089b0d8e97ea00d4c5f6ad14dce058d595aacba2d587ff5eacd81b71a73f53ed276d1f3b3384bb2bfba4e0f37302e690df9e7024378ac754ac0576f996f3ee53d1034c7720767ddf2625817532f7ae89103367b73a36152b84c38bc227ba9e9ff48bcfe027585cf14bff37a888", 0xff41}], 0x1}}], 0x1, 0x0) 23:45:43 executing program 7: perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_mount_image$vfat(&(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x500, 0x2, &(0x7f0000000180)=[{&(0x7f0000000140)="eb3c906d6b66732e66617400020801000470008400f801", 0x17}, {0x0, 0x0, 0x1000a00}], 0x0, &(0x7f0000000240)=ANY=[]) 23:45:43 executing program 5: perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r0 = syz_mount_image$vfat(&(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x0, 0x2, &(0x7f0000000180)=[{&(0x7f0000000140)="eb3c906d6b66732e66617400020801000470008400f801", 0x17}, {0x0, 0x0, 0x1000a00}], 0x0, &(0x7f0000000240)=ANY=[]) openat2(r0, &(0x7f0000000100)='./file0\x00', &(0x7f00000001c0)={0x40040, 0xfeffffff}, 0x18) 23:45:43 executing program 1: perf_event_open(&(0x7f0000000040)={0x0, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) syz_mount_image$vfat(&(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x0, 0x2, &(0x7f0000000180)=[{&(0x7f0000000140)="eb3c906d6b66732e66617400020801000470008400f801", 0x17}, {0x0, 0x0, 0x1000a00}], 0x0, &(0x7f0000000240)=ANY=[]) [ 1573.388093] FAULT_INJECTION: forcing a failure. [ 1573.388093] name failslab, interval 1, probability 0, space 0, times 0 [ 1573.390507] CPU: 1 PID: 9135 Comm: syz-executor.2 Not tainted 5.10.194 #1 [ 1573.391917] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1573.393592] Call Trace: [ 1573.394132] dump_stack+0x107/0x167 [ 1573.394869] should_fail.cold+0x5/0xa [ 1573.395664] ? create_object.isra.0+0x3a/0xa20 [ 1573.396591] should_failslab+0x5/0x20 [ 1573.397357] kmem_cache_alloc+0x5b/0x310 [ 1573.398171] ? do_blk_trace_setup+0x4cf/0xc10 [ 1573.399074] ? __blk_trace_setup+0xca/0x180 [ 1573.399955] create_object.isra.0+0x3a/0xa20 [ 1573.400839] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 1573.401867] kmem_cache_alloc_node+0x169/0x330 [ 1573.402792] alloc_vmap_area+0x148/0x1d10 [ 1573.403635] ? kmem_cache_alloc_node_trace+0x16d/0x340 [ 1573.404880] ? mark_held_locks+0x9e/0xe0 [ 1573.405848] ? purge_vmap_area_lazy+0xc0/0xc0 [ 1573.406905] ? kasan_unpoison_shadow+0x33/0x50 [ 1573.408002] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 1573.409201] __get_vm_area_node+0x127/0x340 [ 1573.410245] ? relay_open_buf.part.0+0x4cf/0xc00 [ 1573.411364] get_vm_area_caller+0x70/0xb0 [ 1573.412351] ? relay_open_buf.part.0+0x4cf/0xc00 [ 1573.413465] vmap+0xe9/0x2c0 [ 1573.414182] ? vunmap+0x70/0x70 [ 1573.414980] relay_open_buf.part.0+0x4cf/0xc00 [ 1573.416088] relay_open+0x531/0xa10 [ 1573.416957] do_blk_trace_setup+0x4cf/0xc10 [ 1573.417973] ? _copy_from_user+0xfb/0x1b0 [ 1573.418952] __blk_trace_setup+0xca/0x180 [ 1573.419934] ? do_blk_trace_setup+0xc10/0xc10 [ 1573.421002] ? perf_trace_lock+0xac/0x490 [ 1573.421989] blk_trace_setup+0x43/0x60 [ 1573.422910] sg_ioctl_common+0x634/0x2570 [ 1573.423923] ? __sanitizer_cov_trace_switch+0x45/0x80 [ 1573.425137] ? do_vfs_ioctl+0x283/0x10d0 [ 1573.426090] ? sg_write+0x120/0x120 [ 1573.426946] ? generic_block_fiemap+0x60/0x60 [ 1573.428014] ? __mutex_unlock_slowpath+0xe1/0x600 [ 1573.429171] ? selinux_file_ioctl+0xb6/0x270 [ 1573.430203] ? sg_compat_ioctl+0x120/0x120 [ 1573.431199] sg_ioctl+0x8f/0x120 [ 1573.432009] __x64_sys_ioctl+0x19a/0x210 [ 1573.432971] do_syscall_64+0x33/0x40 [ 1573.433851] entry_SYSCALL_64_after_hwframe+0x62/0xc7 [ 1573.435056] RIP: 0033:0x7f661a573b19 [ 1573.435949] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1573.440269] RSP: 002b:00007f6617ae9188 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 1573.442054] RAX: ffffffffffffffda RBX: 00007f661a686f60 RCX: 00007f661a573b19 [ 1573.443744] RDX: 0000000020000140 RSI: 00000000c0481273 RDI: 0000000000000003 [ 1573.445417] RBP: 00007f6617ae91d0 R08: 0000000000000000 R09: 0000000000000000 [ 1573.447088] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 1573.448761] R13: 00007ffd527cbf9f R14: 00007f6617ae9300 R15: 0000000000022000 23:45:43 executing program 6: ioctl$SNDRV_TIMER_IOCTL_TREAD(0xffffffffffffffff, 0x40045402, &(0x7f0000000040)=0x1) r0 = syz_open_dev$tty20(0xc, 0x4, 0x1) ioctl$VT_RESIZEX(r0, 0x560a, &(0x7f0000000000)={0x0, 0x0, 0x0, 0x0, 0x1d}) fdatasync(r0) 23:45:59 executing program 3: r0 = syz_open_dev$tty1(0xc, 0x4, 0x1) writev(r0, &(0x7f0000000080)=[{&(0x7f0000001380)="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", 0x1ea}], 0x1) 23:45:59 executing program 1: perf_event_open(&(0x7f0000000040)={0x0, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) syz_mount_image$vfat(&(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x0, 0x2, &(0x7f0000000180)=[{&(0x7f0000000140)="eb3c906d6b66732e66617400020801000470008400f801", 0x17}, {0x0, 0x0, 0x1000a00}], 0x0, &(0x7f0000000240)=ANY=[]) 23:45:59 executing program 5: perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r0 = syz_mount_image$vfat(&(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x0, 0x2, &(0x7f0000000180)=[{&(0x7f0000000140)="eb3c906d6b66732e66617400020801000470008400f801", 0x17}, {0x0, 0x0, 0x1000a00}], 0x0, &(0x7f0000000240)=ANY=[]) openat2(r0, &(0x7f0000000100)='./file0\x00', &(0x7f00000001c0)={0x40040, 0xfffff000}, 0x18) 23:45:59 executing program 4: perf_event_open(&(0x7f0000001d80)={0x2, 0x80, 0x69, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = socket$inet6_udp(0xa, 0x2, 0x0) dup(0xffffffffffffffff) fstat(0xffffffffffffffff, 0x0) connect$inet6(r0, &(0x7f0000000600)={0xa, 0x0, 0x0, @dev, 0x2}, 0x1c) sendmmsg$inet6(r0, &(0x7f0000000080)=[{{0x0, 0x2909, &(0x7f00000004c0)=[{&(0x7f00000001c0)="4bc702854e3954b59347985ccc868289d3fe483d2c0900a2a1d12e33a66529e1f276fef452632dfa3c004ce3be84a5f66c29cd4ec39ae5206562fbc9ea3c0dbbebc22e628e147b0e9631f19b0ce0a48e0e675b2da3442226b898f1ddf8eabf133ab4a9cb0999c2ee1d3bd36d089b0d8e97ea00d4c5f6ad14dce058d595aacba2d587ff5eacd81b71a73f53ed276d1f3b3384bb2bfba4e0f37302e690df9e7024378ac754ac0576f996f3ee53d1034c7720767ddf2625817532f7ae89103367b73a36152b84c38bc227ba9e9ff48bcfe027585cf14bff37a888", 0xff41}], 0x1}}], 0x1, 0x0) 23:45:59 executing program 0: perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = syz_mount_image$vfat(&(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x0, 0x2, &(0x7f0000000180)=[{0x0}, {0x0, 0x0, 0x1000a00}], 0x0, &(0x7f0000000240)=ANY=[]) openat2(r0, &(0x7f0000000100)='./file0\x00', &(0x7f00000001c0)={0x40040, 0x8}, 0x18) 23:45:59 executing program 2: r0 = add_key$keyring(&(0x7f0000000040), &(0x7f00000002c0)={'syz', 0x3}, 0x0, 0x0, 0xfffffffffffffffd) keyctl$KEYCTL_RESTRICT_KEYRING(0xf, r0, 0x0, 0x0) connect$inet(0xffffffffffffffff, &(0x7f0000000140)={0x2, 0x0, @dev}, 0x10) r1 = syz_open_dev$sg(&(0x7f0000000040), 0x0, 0x0) ioctl$BLKTRACETEARDOWN(r1, 0x1276, 0x0) ioctl$BLKTRACESETUP(r1, 0xc0481273, &(0x7f0000000140)={'\x00', 0x0, 0x4, 0x8, 0x76}) (fail_nth: 44) 23:45:59 executing program 7: perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_mount_image$vfat(&(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x600, 0x2, &(0x7f0000000180)=[{&(0x7f0000000140)="eb3c906d6b66732e66617400020801000470008400f801", 0x17}, {0x0, 0x0, 0x1000a00}], 0x0, &(0x7f0000000240)=ANY=[]) 23:45:59 executing program 6: r0 = syz_open_dev$tty20(0xc, 0x4, 0x1) ioctl$VT_RESIZEX(r0, 0x560a, &(0x7f0000000000)={0x0, 0x0, 0x0, 0x0, 0x1d}) r1 = openat$hpet(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0) read$eventfd(r1, 0x0, 0x0) ioctl$TIOCGPKT(r1, 0x80045438, &(0x7f0000000040)) [ 1589.101272] FAULT_INJECTION: forcing a failure. [ 1589.101272] name failslab, interval 1, probability 0, space 0, times 0 [ 1589.104017] CPU: 0 PID: 9170 Comm: syz-executor.2 Not tainted 5.10.194 #1 [ 1589.105105] FAT-fs (loop0): bogus number of reserved sectors [ 1589.105573] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1589.105580] Call Trace: [ 1589.105618] dump_stack+0x107/0x167 [ 1589.106732] FAT-fs (loop0): Can't find a valid FAT filesystem [ 1589.108611] should_fail.cold+0x5/0xa [ 1589.108635] ? kmemleak_scan_area+0xa6/0x360 [ 1589.108660] should_failslab+0x5/0x20 [ 1589.113930] kmem_cache_alloc+0x5b/0x310 [ 1589.114864] kmemleak_scan_area+0xa6/0x360 [ 1589.115849] alloc_vmap_area+0x171/0x1d10 [ 1589.116793] ? kmem_cache_alloc_node_trace+0x16d/0x340 [ 1589.117983] ? mark_held_locks+0x9e/0xe0 [ 1589.118913] ? purge_vmap_area_lazy+0xc0/0xc0 [ 1589.119941] ? kasan_unpoison_shadow+0x33/0x50 [ 1589.120977] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 1589.122126] __get_vm_area_node+0x127/0x340 [ 1589.123103] ? relay_open_buf.part.0+0x4cf/0xc00 [ 1589.124190] get_vm_area_caller+0x70/0xb0 [ 1589.125129] ? relay_open_buf.part.0+0x4cf/0xc00 [ 1589.126183] vmap+0xe9/0x2c0 [ 1589.126872] ? vunmap+0x70/0x70 [ 1589.127625] relay_open_buf.part.0+0x4cf/0xc00 [ 1589.128677] relay_open+0x531/0xa10 [ 1589.129500] do_blk_trace_setup+0x4cf/0xc10 [ 1589.130474] ? _copy_from_user+0xfb/0x1b0 [ 1589.131409] __blk_trace_setup+0xca/0x180 [ 1589.132354] ? do_blk_trace_setup+0xc10/0xc10 [ 1589.133378] ? perf_trace_lock+0xac/0x490 [ 1589.134316] blk_trace_setup+0x43/0x60 [ 1589.135189] sg_ioctl_common+0x634/0x2570 [ 1589.136124] ? __sanitizer_cov_trace_switch+0x45/0x80 [ 1589.137270] ? do_vfs_ioctl+0x283/0x10d0 [ 1589.138165] ? sg_write+0x120/0x120 [ 1589.138966] ? generic_block_fiemap+0x60/0x60 [ 1589.139977] ? __mutex_unlock_slowpath+0xe1/0x600 [ 1589.141072] ? selinux_file_ioctl+0xb6/0x270 [ 1589.142051] ? sg_compat_ioctl+0x120/0x120 [ 1589.143000] sg_ioctl+0x8f/0x120 [ 1589.143764] __x64_sys_ioctl+0x19a/0x210 [ 1589.144674] do_syscall_64+0x33/0x40 [ 1589.145498] entry_SYSCALL_64_after_hwframe+0x62/0xc7 [ 1589.146628] RIP: 0033:0x7f661a573b19 [ 1589.147452] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1589.151511] RSP: 002b:00007f6617ae9188 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 1589.153194] RAX: ffffffffffffffda RBX: 00007f661a686f60 RCX: 00007f661a573b19 [ 1589.154758] RDX: 0000000020000140 RSI: 00000000c0481273 RDI: 0000000000000003 [ 1589.156332] RBP: 00007f6617ae91d0 R08: 0000000000000000 R09: 0000000000000000 [ 1589.157885] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 1589.159438] R13: 00007ffd527cbf9f R14: 00007f6617ae9300 R15: 0000000000022000 [ 1589.162115] kmemleak: Cannot allocate a scan area, scanning the full object 23:45:59 executing program 3: r0 = syz_open_dev$tty1(0xc, 0x4, 0x1) writev(r0, &(0x7f0000000080)=[{&(0x7f0000001380)="3ead823d27b1f38d16b83fca92a1f8f4fc9624a264eb3d23f624cb63a9a475c4336e3015462fa8b76b1c5fb9b159eaa406698e2f3dcd71c5ba4e666731496d8ddd1bbaae50714c9ccdc53444b41f6df995ce4a1e6b9807bce8fa3e046360e5d1b228a3367e2315a985fcf8542b6a2e58eff19d99aa1de724345dd5786c63d31c197c760ac73dc10c91fcf49125d4dd5e1d4c952eeabf70f80b092c914e00cd0e75bdea96065d75447e5e2917619f3d3e2662b99fac83e65ca6fb6fc547ce903e960595bafc4990dfa6263d2dd2268b3f6f3df3b1603e198bc4011a4b1c43c686ff811d9a346aabe8c9f33c2c5e0ab15e288917c0de80a9d49e72e1efc8db344b3a715702fd03a0e9e2387cc5032967d44d8b3b68383f6c89c842ec2eadc06d1e5133067d6b3f11647561748b7d4185cab428d5fbf98ea4100f2276af2fec68da7e57d65c185e261b6790c65ebb5f98cb027d065d424a65705b15be6eda2b4ba4f6a337f711fc7088d216cb59a744bc5a0d0f059b11d6d7c0784065277076525027223b82fdcc899b2de92a710082edf89a57c0bf416899d2f8ad2cad43e5018b52025096784ecd82a29c00a8bf5ffa6e3b75fe641acf39885c084ae7e546f04224aeb23f61d99fc464a533fc6b87790e335057b54dbff233ced4a7ef90884dc7d90d678cc080024b9b4a", 0x1ea}], 0x1) 23:45:59 executing program 6: r0 = syz_open_dev$tty20(0xc, 0x4, 0x1) ioctl$VT_RESIZEX(r0, 0x560a, &(0x7f0000000000)={0x0, 0x0, 0x0, 0x0, 0x1d, 0x1000}) 23:45:59 executing program 7: perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_mount_image$vfat(&(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x700, 0x2, &(0x7f0000000180)=[{&(0x7f0000000140)="eb3c906d6b66732e66617400020801000470008400f801", 0x17}, {0x0, 0x0, 0x1000a00}], 0x0, &(0x7f0000000240)=ANY=[]) 23:45:59 executing program 4: perf_event_open(&(0x7f0000001d80)={0x2, 0x80, 0x69, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = socket$inet6_udp(0xa, 0x2, 0x0) dup(0xffffffffffffffff) fstat(0xffffffffffffffff, 0x0) connect$inet6(r0, &(0x7f0000000600)={0xa, 0x0, 0x0, @dev, 0x2}, 0x1c) sendmmsg$inet6(r0, &(0x7f0000000080)=[{{0x0, 0x29bc, &(0x7f00000004c0)=[{&(0x7f00000001c0)="4bc702854e3954b59347985ccc868289d3fe483d2c0900a2a1d12e33a66529e1f276fef452632dfa3c004ce3be84a5f66c29cd4ec39ae5206562fbc9ea3c0dbbebc22e628e147b0e9631f19b0ce0a48e0e675b2da3442226b898f1ddf8eabf133ab4a9cb0999c2ee1d3bd36d089b0d8e97ea00d4c5f6ad14dce058d595aacba2d587ff5eacd81b71a73f53ed276d1f3b3384bb2bfba4e0f37302e690df9e7024378ac754ac0576f996f3ee53d1034c7720767ddf2625817532f7ae89103367b73a36152b84c38bc227ba9e9ff48bcfe027585cf14bff37a888", 0xff41}], 0x1}}], 0x1, 0x0) 23:45:59 executing program 5: perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r0 = syz_mount_image$vfat(&(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x0, 0x2, &(0x7f0000000180)=[{&(0x7f0000000140)="eb3c906d6b66732e66617400020801000470008400f801", 0x17}, {0x0, 0x0, 0x1000a00}], 0x0, &(0x7f0000000240)=ANY=[]) openat2(r0, &(0x7f0000000100)='./file0\x00', &(0x7f00000001c0)={0x40040, 0xffffff8c}, 0x18) 23:45:59 executing program 1: perf_event_open(&(0x7f0000000040)={0x0, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) syz_mount_image$vfat(&(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x0, 0x2, &(0x7f0000000180)=[{&(0x7f0000000140)="eb3c906d6b66732e66617400020801000470008400f801", 0x17}, {0x0, 0x0, 0x1000a00}], 0x0, &(0x7f0000000240)=ANY=[]) 23:45:59 executing program 7: perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_mount_image$vfat(&(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x900, 0x2, &(0x7f0000000180)=[{&(0x7f0000000140)="eb3c906d6b66732e66617400020801000470008400f801", 0x17}, {0x0, 0x0, 0x1000a00}], 0x0, &(0x7f0000000240)=ANY=[]) 23:45:59 executing program 0: perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = syz_mount_image$vfat(&(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x0, 0x2, &(0x7f0000000180)=[{&(0x7f0000000140)}, {0x0, 0x0, 0x1000a00}], 0x0, &(0x7f0000000240)=ANY=[]) openat2(r0, &(0x7f0000000100)='./file0\x00', &(0x7f00000001c0)={0x40040, 0x8}, 0x18) 23:45:59 executing program 2: r0 = add_key$keyring(&(0x7f0000000040), &(0x7f00000002c0)={'syz', 0x3}, 0x0, 0x0, 0xfffffffffffffffd) keyctl$KEYCTL_RESTRICT_KEYRING(0xf, r0, 0x0, 0x0) connect$inet(0xffffffffffffffff, &(0x7f0000000140)={0x2, 0x0, @dev}, 0x10) r1 = syz_open_dev$sg(&(0x7f0000000040), 0x0, 0x0) ioctl$BLKTRACETEARDOWN(r1, 0x1276, 0x0) ioctl$BLKTRACESETUP(r1, 0xc0481273, &(0x7f0000000140)={'\x00', 0x0, 0x4, 0x8, 0x76}) (fail_nth: 45) [ 1589.410595] FAT-fs (loop0): bogus number of reserved sectors [ 1589.411527] FAT-fs (loop0): Can't find a valid FAT filesystem [ 1589.485499] FAULT_INJECTION: forcing a failure. [ 1589.485499] name failslab, interval 1, probability 0, space 0, times 0 [ 1589.487099] CPU: 1 PID: 9205 Comm: syz-executor.2 Not tainted 5.10.194 #1 [ 1589.488059] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1589.489185] Call Trace: [ 1589.489561] dump_stack+0x107/0x167 [ 1589.490065] should_fail.cold+0x5/0xa [ 1589.490589] ? relay_create_buf_file+0x4d/0x180 [ 1589.491226] should_failslab+0x5/0x20 [ 1589.491748] kmem_cache_alloc_trace+0x55/0x320 [ 1589.492367] relay_create_buf_file+0x4d/0x180 [ 1589.492971] relay_open_buf.part.0+0x7de/0xc00 [ 1589.493601] relay_open+0x531/0xa10 [ 1589.494103] do_blk_trace_setup+0x4cf/0xc10 [ 1589.494690] ? _copy_from_user+0xfb/0x1b0 [ 1589.495268] __blk_trace_setup+0xca/0x180 [ 1589.495840] ? do_blk_trace_setup+0xc10/0xc10 [ 1589.496462] ? perf_trace_lock+0xac/0x490 [ 1589.497030] blk_trace_setup+0x43/0x60 [ 1589.497562] sg_ioctl_common+0x634/0x2570 [ 1589.498132] ? __sanitizer_cov_trace_switch+0x45/0x80 [ 1589.498834] ? do_vfs_ioctl+0x283/0x10d0 [ 1589.499379] ? sg_write+0x120/0x120 [ 1589.499895] ? generic_block_fiemap+0x60/0x60 [ 1589.500508] ? __mutex_unlock_slowpath+0xe1/0x600 [ 1589.501176] ? selinux_file_ioctl+0xb6/0x270 [ 1589.501768] ? sg_compat_ioctl+0x120/0x120 [ 1589.502342] sg_ioctl+0x8f/0x120 [ 1589.502812] __x64_sys_ioctl+0x19a/0x210 [ 1589.503377] do_syscall_64+0x33/0x40 [ 1589.503895] entry_SYSCALL_64_after_hwframe+0x62/0xc7 [ 1589.504587] RIP: 0033:0x7f661a573b19 [ 1589.505098] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1589.507578] RSP: 002b:00007f6617ae9188 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 1589.508622] RAX: ffffffffffffffda RBX: 00007f661a686f60 RCX: 00007f661a573b19 [ 1589.509605] RDX: 0000000020000140 RSI: 00000000c0481273 RDI: 0000000000000003 [ 1589.510574] RBP: 00007f6617ae91d0 R08: 0000000000000000 R09: 0000000000000000 [ 1589.511540] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 1589.512509] R13: 00007ffd527cbf9f R14: 00007f6617ae9300 R15: 0000000000022000 23:46:14 executing program 1: perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) syz_mount_image$vfat(&(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x0, 0x2, &(0x7f0000000180)=[{&(0x7f0000000140)="eb3c906d6b66732e66617400020801000470008400f801", 0x17}, {0x0, 0x0, 0x1000a00}], 0x0, &(0x7f0000000240)=ANY=[]) 23:46:14 executing program 7: perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_mount_image$vfat(&(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0xa00, 0x2, &(0x7f0000000180)=[{&(0x7f0000000140)="eb3c906d6b66732e66617400020801000470008400f801", 0x17}, {0x0, 0x0, 0x1000a00}], 0x0, &(0x7f0000000240)=ANY=[]) 23:46:14 executing program 4: perf_event_open(&(0x7f0000001d80)={0x2, 0x80, 0x69, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = socket$inet6_udp(0xa, 0x2, 0x0) dup(0xffffffffffffffff) fstat(0xffffffffffffffff, 0x0) connect$inet6(r0, &(0x7f0000000600)={0xa, 0x0, 0x0, @dev, 0x2}, 0x1c) sendmmsg$inet6(r0, &(0x7f0000000080)=[{{0x0, 0x2ab9, &(0x7f00000004c0)=[{&(0x7f00000001c0)="4bc702854e3954b59347985ccc868289d3fe483d2c0900a2a1d12e33a66529e1f276fef452632dfa3c004ce3be84a5f66c29cd4ec39ae5206562fbc9ea3c0dbbebc22e628e147b0e9631f19b0ce0a48e0e675b2da3442226b898f1ddf8eabf133ab4a9cb0999c2ee1d3bd36d089b0d8e97ea00d4c5f6ad14dce058d595aacba2d587ff5eacd81b71a73f53ed276d1f3b3384bb2bfba4e0f37302e690df9e7024378ac754ac0576f996f3ee53d1034c7720767ddf2625817532f7ae89103367b73a36152b84c38bc227ba9e9ff48bcfe027585cf14bff37a888", 0xff41}], 0x1}}], 0x1, 0x0) 23:46:14 executing program 0: perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = syz_mount_image$vfat(&(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x0, 0x2, &(0x7f0000000180)=[{&(0x7f0000000140)}, {0x0, 0x0, 0x1000a00}], 0x0, &(0x7f0000000240)=ANY=[]) openat2(r0, &(0x7f0000000100)='./file0\x00', &(0x7f00000001c0)={0x40040, 0x8}, 0x18) 23:46:14 executing program 5: perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r0 = syz_mount_image$vfat(&(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x0, 0x2, &(0x7f0000000180)=[{&(0x7f0000000140)="eb3c906d6b66732e66617400020801000470008400f801", 0x17}, {0x0, 0x0, 0x1000a00}], 0x0, &(0x7f0000000240)=ANY=[]) openat2(r0, &(0x7f0000000100)='./file0\x00', &(0x7f00000001c0)={0x40040, 0xffffffe5}, 0x18) 23:46:14 executing program 2: r0 = add_key$keyring(&(0x7f0000000040), &(0x7f00000002c0)={'syz', 0x3}, 0x0, 0x0, 0xfffffffffffffffd) keyctl$KEYCTL_RESTRICT_KEYRING(0xf, r0, 0x0, 0x0) connect$inet(0xffffffffffffffff, &(0x7f0000000140)={0x2, 0x0, @dev}, 0x10) r1 = syz_open_dev$sg(&(0x7f0000000040), 0x0, 0x0) ioctl$BLKTRACETEARDOWN(r1, 0x1276, 0x0) ioctl$BLKTRACESETUP(r1, 0xc0481273, &(0x7f0000000140)={'\x00', 0x0, 0x4, 0x8, 0x76}) (fail_nth: 46) 23:46:14 executing program 6: syz_open_dev$tty20(0xc, 0x4, 0x1) 23:46:14 executing program 3: r0 = syz_open_dev$tty1(0xc, 0x4, 0x1) writev(r0, &(0x7f0000000080)=[{&(0x7f0000001380)="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", 0x1ea}], 0x1) [ 1604.497278] FAULT_INJECTION: forcing a failure. [ 1604.497278] name failslab, interval 1, probability 0, space 0, times 0 [ 1604.499702] CPU: 0 PID: 9215 Comm: syz-executor.2 Not tainted 5.10.194 #1 [ 1604.501106] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1604.503278] Call Trace: [ 1604.503307] dump_stack+0x107/0x167 [ 1604.503330] should_fail.cold+0x5/0xa [ 1604.503351] ? create_object.isra.0+0x3a/0xa20 [ 1604.503372] should_failslab+0x5/0x20 [ 1604.503390] kmem_cache_alloc+0x5b/0x310 [ 1604.503415] create_object.isra.0+0x3a/0xa20 [ 1604.503434] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 1604.503459] kmem_cache_alloc_trace+0x151/0x320 [ 1604.503487] relay_create_buf_file+0x4d/0x180 [ 1604.503508] relay_open_buf.part.0+0x7de/0xc00 [ 1604.503541] relay_open+0x531/0xa10 [ 1604.503569] do_blk_trace_setup+0x4cf/0xc10 [ 1604.503591] ? _copy_from_user+0xfb/0x1b0 [ 1604.503611] __blk_trace_setup+0xca/0x180 [ 1604.503630] ? do_blk_trace_setup+0xc10/0xc10 [ 1604.503661] ? perf_trace_lock+0xac/0x490 [ 1604.503690] blk_trace_setup+0x43/0x60 [ 1604.503713] sg_ioctl_common+0x634/0x2570 [ 1604.503735] ? __sanitizer_cov_trace_switch+0x45/0x80 [ 1604.503754] ? do_vfs_ioctl+0x283/0x10d0 [ 1604.503770] ? sg_write+0x120/0x120 [ 1604.503787] ? generic_block_fiemap+0x60/0x60 [ 1604.503810] ? __mutex_unlock_slowpath+0xe1/0x600 [ 1604.503849] ? selinux_file_ioctl+0xb6/0x270 23:46:14 executing program 2: r0 = add_key$keyring(&(0x7f0000000040), &(0x7f00000002c0)={'syz', 0x3}, 0x0, 0x0, 0xfffffffffffffffd) keyctl$KEYCTL_RESTRICT_KEYRING(0xf, r0, 0x0, 0x0) connect$inet(0xffffffffffffffff, &(0x7f0000000140)={0x2, 0x0, @dev}, 0x10) r1 = syz_open_dev$sg(&(0x7f0000000040), 0x0, 0x0) ioctl$BLKTRACETEARDOWN(r1, 0x1276, 0x0) ioctl$BLKTRACESETUP(r1, 0xc0481273, &(0x7f0000000140)={'\x00', 0x0, 0x4, 0x8, 0x76}) (fail_nth: 47) [ 1604.503865] ? sg_compat_ioctl+0x120/0x120 [ 1604.503894] sg_ioctl+0x8f/0x120 [ 1604.503916] __x64_sys_ioctl+0x19a/0x210 [ 1604.503940] do_syscall_64+0x33/0x40 [ 1604.503961] entry_SYSCALL_64_after_hwframe+0x62/0xc7 23:46:14 executing program 4: perf_event_open(&(0x7f0000001d80)={0x2, 0x80, 0x69, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = socket$inet6_udp(0xa, 0x2, 0x0) dup(0xffffffffffffffff) fstat(0xffffffffffffffff, 0x0) connect$inet6(r0, &(0x7f0000000600)={0xa, 0x0, 0x0, @dev, 0x2}, 0x1c) sendmmsg$inet6(r0, &(0x7f0000000080)=[{{0x0, 0x3051, &(0x7f00000004c0)=[{&(0x7f00000001c0)="4bc702854e3954b59347985ccc868289d3fe483d2c0900a2a1d12e33a66529e1f276fef452632dfa3c004ce3be84a5f66c29cd4ec39ae5206562fbc9ea3c0dbbebc22e628e147b0e9631f19b0ce0a48e0e675b2da3442226b898f1ddf8eabf133ab4a9cb0999c2ee1d3bd36d089b0d8e97ea00d4c5f6ad14dce058d595aacba2d587ff5eacd81b71a73f53ed276d1f3b3384bb2bfba4e0f37302e690df9e7024378ac754ac0576f996f3ee53d1034c7720767ddf2625817532f7ae89103367b73a36152b84c38bc227ba9e9ff48bcfe027585cf14bff37a888", 0xff41}], 0x1}}], 0x1, 0x0) 23:46:14 executing program 1: perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) syz_mount_image$vfat(&(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x0, 0x2, &(0x7f0000000180)=[{&(0x7f0000000140)="eb3c906d6b66732e66617400020801000470008400f801", 0x17}, {0x0, 0x0, 0x1000a00}], 0x0, &(0x7f0000000240)=ANY=[]) [ 1604.503974] RIP: 0033:0x7f661a573b19 [ 1604.503994] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 23:46:14 executing program 0: perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = syz_mount_image$vfat(&(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x0, 0x2, &(0x7f0000000180)=[{&(0x7f0000000140)}, {0x0, 0x0, 0x1000a00}], 0x0, &(0x7f0000000240)=ANY=[]) openat2(r0, &(0x7f0000000100)='./file0\x00', &(0x7f00000001c0)={0x40040, 0x8}, 0x18) 23:46:14 executing program 7: perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_mount_image$vfat(&(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0xb00, 0x2, &(0x7f0000000180)=[{&(0x7f0000000140)="eb3c906d6b66732e66617400020801000470008400f801", 0x17}, {0x0, 0x0, 0x1000a00}], 0x0, &(0x7f0000000240)=ANY=[]) 23:46:14 executing program 5: perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r0 = syz_mount_image$vfat(&(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x0, 0x2, &(0x7f0000000180)=[{&(0x7f0000000140)="eb3c906d6b66732e66617400020801000470008400f801", 0x17}, {0x0, 0x0, 0x1000a00}], 0x0, &(0x7f0000000240)=ANY=[]) openat2(r0, &(0x7f0000000100)='./file0\x00', &(0x7f00000001c0)={0x40040, 0xfffffff6}, 0x18) [ 1604.504004] RSP: 002b:00007f6617ae9188 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 1604.504026] RAX: ffffffffffffffda RBX: 00007f661a686f60 RCX: 00007f661a573b19 [ 1604.504037] RDX: 0000000020000140 RSI: 00000000c0481273 RDI: 0000000000000003 [ 1604.504048] RBP: 00007f6617ae91d0 R08: 0000000000000000 R09: 0000000000000000 [ 1604.504058] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 1604.504069] R13: 00007ffd527cbf9f R14: 00007f6617ae9300 R15: 0000000000022000 23:46:14 executing program 2: r0 = add_key$keyring(&(0x7f0000000040), &(0x7f00000002c0)={'syz', 0x3}, 0x0, 0x0, 0xfffffffffffffffd) keyctl$KEYCTL_RESTRICT_KEYRING(0xf, r0, 0x0, 0x0) connect$inet(0xffffffffffffffff, &(0x7f0000000140)={0x2, 0x0, @dev}, 0x10) r1 = syz_open_dev$sg(&(0x7f0000000040), 0x0, 0x0) ioctl$BLKTRACETEARDOWN(r1, 0x1276, 0x0) ioctl$BLKTRACESETUP(r1, 0xc0481273, &(0x7f0000000140)={'\x00', 0x0, 0x4, 0x8, 0x76}) (fail_nth: 48) [ 1604.526613] FAT-fs (loop0): bogus number of reserved sectors 23:46:14 executing program 1: perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) syz_mount_image$vfat(&(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x0, 0x2, &(0x7f0000000180)=[{&(0x7f0000000140)="eb3c906d6b66732e66617400020801000470008400f801", 0x17}, {0x0, 0x0, 0x1000a00}], 0x0, &(0x7f0000000240)=ANY=[]) 23:46:14 executing program 5: perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r0 = syz_mount_image$vfat(&(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x0, 0x2, &(0x7f0000000180)=[{&(0x7f0000000140)="eb3c906d6b66732e66617400020801000470008400f801", 0x17}, {0x0, 0x0, 0x1000a00}], 0x0, &(0x7f0000000240)=ANY=[]) openat2(r0, &(0x7f0000000100)='./file0\x00', &(0x7f00000001c0)={0x40040, 0xfffffffe}, 0x18) [ 1604.526633] FAT-fs (loop0): Can't find a valid FAT filesystem [ 1604.739080] FAULT_INJECTION: forcing a failure. [ 1604.739080] name failslab, interval 1, probability 0, space 0, times 0 [ 1604.739218] CPU: 1 PID: 9245 Comm: syz-executor.2 Not tainted 5.10.194 #1 [ 1604.739228] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1604.739235] Call Trace: [ 1604.739265] dump_stack+0x107/0x167 [ 1604.739290] should_fail.cold+0x5/0xa [ 1604.739311] ? __d_alloc+0x2a/0x990 [ 1604.739333] should_failslab+0x5/0x20 23:46:15 executing program 4: perf_event_open(&(0x7f0000001d80)={0x2, 0x80, 0x69, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = socket$inet6_udp(0xa, 0x2, 0x0) dup(0xffffffffffffffff) fstat(0xffffffffffffffff, 0x0) connect$inet6(r0, &(0x7f0000000600)={0xa, 0x0, 0x0, @dev, 0x2}, 0x1c) sendmmsg$inet6(r0, &(0x7f0000000080)=[{{0x0, 0x31a0, &(0x7f00000004c0)=[{&(0x7f00000001c0)="4bc702854e3954b59347985ccc868289d3fe483d2c0900a2a1d12e33a66529e1f276fef452632dfa3c004ce3be84a5f66c29cd4ec39ae5206562fbc9ea3c0dbbebc22e628e147b0e9631f19b0ce0a48e0e675b2da3442226b898f1ddf8eabf133ab4a9cb0999c2ee1d3bd36d089b0d8e97ea00d4c5f6ad14dce058d595aacba2d587ff5eacd81b71a73f53ed276d1f3b3384bb2bfba4e0f37302e690df9e7024378ac754ac0576f996f3ee53d1034c7720767ddf2625817532f7ae89103367b73a36152b84c38bc227ba9e9ff48bcfe027585cf14bff37a888", 0xff41}], 0x1}}], 0x1, 0x0) 23:46:15 executing program 7: perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_mount_image$vfat(&(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0xd00, 0x2, &(0x7f0000000180)=[{&(0x7f0000000140)="eb3c906d6b66732e66617400020801000470008400f801", 0x17}, {0x0, 0x0, 0x1000a00}], 0x0, &(0x7f0000000240)=ANY=[]) [ 1604.739351] kmem_cache_alloc+0x5b/0x310 23:46:15 executing program 0: perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = syz_mount_image$vfat(&(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x0, 0x2, &(0x7f0000000180)=[{&(0x7f0000000140)="eb3c906d6b66732e66617400", 0xc}, {0x0, 0x0, 0x1000a00}], 0x0, &(0x7f0000000240)=ANY=[]) openat2(r0, &(0x7f0000000100)='./file0\x00', &(0x7f00000001c0)={0x40040, 0x8}, 0x18) [ 1604.739377] __d_alloc+0x2a/0x990 [ 1604.739406] d_alloc_parallel+0x111/0x1bc0 [ 1604.739439] ? __lock_acquire+0x1657/0x5b00 [ 1604.739458] ? perf_trace_lock+0xac/0x490 [ 1604.739483] ? __d_lookup_rcu+0x6d0/0x6d0 [ 1604.739501] ? __lockdep_reset_lock+0x180/0x180 23:46:15 executing program 2: r0 = add_key$keyring(&(0x7f0000000040), &(0x7f00000002c0)={'syz', 0x3}, 0x0, 0x0, 0xfffffffffffffffd) keyctl$KEYCTL_RESTRICT_KEYRING(0xf, r0, 0x0, 0x0) connect$inet(0xffffffffffffffff, &(0x7f0000000140)={0x2, 0x0, @dev}, 0x10) r1 = syz_open_dev$sg(&(0x7f0000000040), 0x0, 0x0) ioctl$BLKTRACETEARDOWN(r1, 0x1276, 0x0) ioctl$BLKTRACESETUP(r1, 0xc0481273, &(0x7f0000000140)={'\x00', 0x0, 0x4, 0x8, 0x76}) (fail_nth: 49) [ 1604.739525] ? lockdep_init_map_type+0x2c7/0x780 [ 1604.739547] ? lockdep_init_map_type+0x2c7/0x780 [ 1604.739582] __lookup_slow+0x193/0x490 [ 1604.739605] ? lookup_open.isra.0+0x1270/0x1270 [ 1604.739637] ? __d_lookup+0x3bf/0x760 [ 1604.739671] ? d_lookup+0xcc/0x130 [ 1604.739700] lookup_one_len+0x167/0x1a0 [ 1604.739720] ? __lookup_slow+0x490/0x490 [ 1604.739738] ? down_write_killable+0x180/0x180 [ 1604.739759] ? do_raw_spin_unlock+0x4f/0x220 [ 1604.739777] ? mntput+0xc/0x90 [ 1604.739804] start_creating.part.0+0x10a/0x230 [ 1604.739827] __debugfs_create_file+0xdb/0x530 [ 1604.739850] ? blk_trace_remove+0x40/0x40 [ 1604.739878] relay_create_buf_file+0xf6/0x180 [ 1604.739900] relay_open_buf.part.0+0x7de/0xc00 [ 1604.739933] relay_open+0x531/0xa10 [ 1604.739961] do_blk_trace_setup+0x4cf/0xc10 [ 1604.739982] ? _copy_from_user+0xfb/0x1b0 [ 1604.740003] __blk_trace_setup+0xca/0x180 [ 1604.740022] ? do_blk_trace_setup+0xc10/0xc10 [ 1604.740053] ? perf_trace_lock+0xac/0x490 [ 1604.740082] blk_trace_setup+0x43/0x60 [ 1604.740105] sg_ioctl_common+0x634/0x2570 [ 1604.740127] ? __sanitizer_cov_trace_switch+0x45/0x80 [ 1604.740145] ? do_vfs_ioctl+0x283/0x10d0 [ 1604.740161] ? sg_write+0x120/0x120 [ 1604.740179] ? generic_block_fiemap+0x60/0x60 [ 1604.740200] ? __mutex_unlock_slowpath+0xe1/0x600 [ 1604.740238] ? selinux_file_ioctl+0xb6/0x270 [ 1604.740254] ? sg_compat_ioctl+0x120/0x120 [ 1604.740274] sg_ioctl+0x8f/0x120 [ 1604.740295] __x64_sys_ioctl+0x19a/0x210 23:46:15 executing program 5: perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r0 = syz_mount_image$vfat(&(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x0, 0x2, &(0x7f0000000180)=[{&(0x7f0000000140)="eb3c906d6b66732e66617400020801000470008400f801", 0x17}, {0x0, 0x0, 0x1000a00}], 0x0, &(0x7f0000000240)=ANY=[]) openat2(r0, &(0x7f0000000100)='./file0\x00', &(0x7f00000001c0)={0x40040, 0x1000000000000}, 0x18) [ 1604.740319] do_syscall_64+0x33/0x40 [ 1604.740340] entry_SYSCALL_64_after_hwframe+0x62/0xc7 [ 1604.740353] RIP: 0033:0x7f661a573b19 [ 1604.740372] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1604.740382] RSP: 002b:00007f6617ac8188 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 1604.740403] RAX: ffffffffffffffda RBX: 00007f661a687020 RCX: 00007f661a573b19 [ 1604.740415] RDX: 0000000020000140 RSI: 00000000c0481273 RDI: 0000000000000003 [ 1604.740425] RBP: 00007f6617ac81d0 R08: 0000000000000000 R09: 0000000000000000 [ 1604.740436] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 1604.740448] R13: 00007ffd527cbf9f R14: 00007f6617ac8300 R15: 0000000000022000 [ 1604.760796] FAT-fs (loop0): bogus number of reserved sectors [ 1604.760811] FAT-fs (loop0): Can't find a valid FAT filesystem [ 1604.892376] FAULT_INJECTION: forcing a failure. [ 1604.892376] name failslab, interval 1, probability 0, space 0, times 0 [ 1604.892398] CPU: 0 PID: 9257 Comm: syz-executor.2 Not tainted 5.10.194 #1 [ 1604.892409] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1604.892415] Call Trace: [ 1604.892441] dump_stack+0x107/0x167 [ 1604.892465] should_fail.cold+0x5/0xa [ 1604.892486] ? create_object.isra.0+0x3a/0xa20 [ 1604.892508] should_failslab+0x5/0x20 [ 1604.892527] kmem_cache_alloc+0x5b/0x310 [ 1604.892552] create_object.isra.0+0x3a/0xa20 [ 1604.892572] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 1604.892596] kmem_cache_alloc+0x159/0x310 [ 1604.892623] __d_alloc+0x2a/0x990 [ 1604.892651] d_alloc_parallel+0x111/0x1bc0 [ 1604.892684] ? __lock_acquire+0x1657/0x5b00 [ 1604.892704] ? perf_trace_lock+0xac/0x490 [ 1604.892728] ? __d_lookup_rcu+0x6d0/0x6d0 [ 1604.892746] ? __lockdep_reset_lock+0x180/0x180 [ 1604.892770] ? lockdep_init_map_type+0x2c7/0x780 [ 1604.892792] ? lockdep_init_map_type+0x2c7/0x780 [ 1604.892826] __lookup_slow+0x193/0x490 [ 1604.892849] ? lookup_open.isra.0+0x1270/0x1270 [ 1604.892881] ? __d_lookup+0x3bf/0x760 [ 1604.892915] ? d_lookup+0xcc/0x130 [ 1604.892943] lookup_one_len+0x167/0x1a0 [ 1604.892963] ? __lookup_slow+0x490/0x490 [ 1604.892981] ? down_write_killable+0x180/0x180 [ 1604.893002] ? do_raw_spin_unlock+0x4f/0x220 [ 1604.893019] ? mntput+0xc/0x90 [ 1604.893047] start_creating.part.0+0x10a/0x230 [ 1604.893070] __debugfs_create_file+0xdb/0x530 [ 1604.893092] ? blk_trace_remove+0x40/0x40 [ 1604.893110] relay_create_buf_file+0xf6/0x180 [ 1604.893132] relay_open_buf.part.0+0x7de/0xc00 [ 1604.893166] relay_open+0x531/0xa10 [ 1604.893193] do_blk_trace_setup+0x4cf/0xc10 [ 1604.893214] ? _copy_from_user+0xfb/0x1b0 [ 1604.893236] __blk_trace_setup+0xca/0x180 [ 1604.893255] ? do_blk_trace_setup+0xc10/0xc10 [ 1604.893291] ? perf_trace_lock+0xac/0x490 [ 1604.893320] blk_trace_setup+0x43/0x60 [ 1604.893344] sg_ioctl_common+0x634/0x2570 [ 1604.893366] ? __sanitizer_cov_trace_switch+0x45/0x80 [ 1604.893385] ? do_vfs_ioctl+0x283/0x10d0 [ 1604.893401] ? sg_write+0x120/0x120 [ 1604.893419] ? generic_block_fiemap+0x60/0x60 [ 1604.893440] ? __mutex_unlock_slowpath+0xe1/0x600 [ 1604.893479] ? selinux_file_ioctl+0xb6/0x270 [ 1604.893495] ? sg_compat_ioctl+0x120/0x120 [ 1604.893515] sg_ioctl+0x8f/0x120 [ 1604.893537] __x64_sys_ioctl+0x19a/0x210 [ 1604.893561] do_syscall_64+0x33/0x40 [ 1604.893582] entry_SYSCALL_64_after_hwframe+0x62/0xc7 [ 1604.893594] RIP: 0033:0x7f661a573b19 [ 1604.893614] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1604.893624] RSP: 002b:00007f6617ae9188 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 1604.893646] RAX: ffffffffffffffda RBX: 00007f661a686f60 RCX: 00007f661a573b19 [ 1604.893656] RDX: 0000000020000140 RSI: 00000000c0481273 RDI: 0000000000000003 [ 1604.893667] RBP: 00007f6617ae91d0 R08: 0000000000000000 R09: 0000000000000000 [ 1604.893678] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 1604.893689] R13: 00007ffd527cbf9f R14: 00007f6617ae9300 R15: 0000000000022000 [ 1605.009873] FAT-fs (loop0): bogus number of reserved sectors [ 1605.073869] FAT-fs (loop0): Can't find a valid FAT filesystem [ 1605.119121] FAULT_INJECTION: forcing a failure. [ 1605.119121] name failslab, interval 1, probability 0, space 0, times 0 [ 1605.122415] CPU: 0 PID: 9272 Comm: syz-executor.2 Not tainted 5.10.194 #1 [ 1605.123829] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1605.125549] Call Trace: [ 1605.126102] dump_stack+0x107/0x167 [ 1605.126861] should_fail.cold+0x5/0xa [ 1605.127650] ? alloc_inode+0x171/0x240 [ 1605.128467] should_failslab+0x5/0x20 [ 1605.129246] kmem_cache_alloc+0x5b/0x310 [ 1605.130079] ? __lookup_slow+0x490/0x490 [ 1605.130912] alloc_inode+0x171/0x240 [ 1605.131669] new_inode+0x23/0x250 [ 1605.132393] debugfs_get_inode+0x1a/0x130 [ 1605.133239] __debugfs_create_file+0x14e/0x530 [ 1605.134181] ? blk_trace_remove+0x40/0x40 [ 1605.135033] relay_create_buf_file+0xf6/0x180 [ 1605.135969] relay_open_buf.part.0+0x7de/0xc00 [ 1605.136922] relay_open+0x531/0xa10 [ 1605.137682] do_blk_trace_setup+0x4cf/0xc10 [ 1605.138563] ? _copy_from_user+0xfb/0x1b0 [ 1605.139414] __blk_trace_setup+0xca/0x180 [ 1605.140275] ? do_blk_trace_setup+0xc10/0xc10 [ 1605.141206] ? perf_trace_lock+0xac/0x490 [ 1605.142068] blk_trace_setup+0x43/0x60 [ 1605.142888] sg_ioctl_common+0x634/0x2570 [ 1605.143742] ? __sanitizer_cov_trace_switch+0x45/0x80 [ 1605.144809] ? do_vfs_ioctl+0x283/0x10d0 [ 1605.145644] ? sg_write+0x120/0x120 [ 1605.146389] ? generic_block_fiemap+0x60/0x60 [ 1605.147306] ? __mutex_unlock_slowpath+0xe1/0x600 [ 1605.148317] ? selinux_file_ioctl+0xb6/0x270 [ 1605.149222] ? sg_compat_ioctl+0x120/0x120 [ 1605.150088] sg_ioctl+0x8f/0x120 [ 1605.150783] __x64_sys_ioctl+0x19a/0x210 [ 1605.151622] do_syscall_64+0x33/0x40 [ 1605.152393] entry_SYSCALL_64_after_hwframe+0x62/0xc7 [ 1605.153438] RIP: 0033:0x7f661a573b19 [ 1605.154206] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1605.157971] RSP: 002b:00007f6617ac8188 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 1605.159513] RAX: ffffffffffffffda RBX: 00007f661a687020 RCX: 00007f661a573b19 [ 1605.160979] RDX: 0000000020000140 RSI: 00000000c0481273 RDI: 0000000000000003 [ 1605.162425] RBP: 00007f6617ac81d0 R08: 0000000000000000 R09: 0000000000000000 [ 1605.163871] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 1605.165335] R13: 00007ffd527cbf9f R14: 00007f6617ac8300 R15: 0000000000022000 [ 1605.166866] debugfs: out of free dentries, can not create file 'trace0' 23:46:15 executing program 6: r0 = syz_open_dev$tty20(0xc, 0x4, 0x1) ioctl$VT_RESIZEX(r0, 0x560a, &(0x7f0000000000)={0x0, 0x0, 0x0, 0x0, 0x1d}) ioctl$TCSBRKP(r0, 0x5425, 0x4) 23:46:30 executing program 6: r0 = socket$nl_sock_diag(0x10, 0x3, 0x4) ioctl$BTRFS_IOC_SUBVOL_CREATE(0xffffffffffffffff, 0x5000940e, &(0x7f00000000c0)={{r0}, "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"}) sendmsg$SOCK_DIAG_BY_FAMILY(0xffffffffffffffff, &(0x7f0000002280)={&(0x7f00000010c0)={0x10, 0x0, 0x0, 0x80000000}, 0xc, &(0x7f0000002240)={&(0x7f0000001100)={0x1104, 0x14, 0x2, 0x70bd29, 0x25dfdbff, {0x900d1569a09bd282, 0x9d}, [@INET_DIAG_REQ_BYTECODE={0x1004, 0x1, "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"}, @INET_DIAG_REQ_BYTECODE={0x97, 0x1, "f5c23c478e78228547d77f16c61b836ca36495880f03d668a6ca8c8cfa4e3e409bc285e9c2d9aa126d7eb8234204a8339768705c510af298bec159ce99358f7ee7dedb0038e9f48e530633e6f8dc3e3cc7888701e582dedfd9e2eebeb15689e1a70c32387b6b93928e6d217a0e8a9a04de531d43ff60e6ab0d1302a710e872ce5a22cbc1d009a9d403d581793c9df336f2a909"}, @INET_DIAG_REQ_BYTECODE={0x54, 0x1, "43436f37b9c27480cb544ed97e7e3d2695f1dd812804c86ca0930e547b1090836889541e071a3a1b14ae870ffad4b47fe64561216254eff0c3e2e9322b1d8dfeaf73070a6404784963bfd43a3aeafc64"}]}, 0x1104}, 0x1, 0x0, 0x0, 0x480c0}, 0x4000) r1 = openat$hpet(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0) read$eventfd(r1, 0x0, 0x0) setsockopt$inet6_tcp_TCP_QUEUE_SEQ(r1, 0x6, 0x15, &(0x7f0000000040)=0x9, 0x4) r2 = syz_open_dev$tty20(0xc, 0x4, 0x1) ioctl$VT_RESIZEX(r2, 0x560a, &(0x7f0000000000)={0x0, 0x0, 0x0, 0x0, 0x1d}) 23:46:30 executing program 3: r0 = syz_open_dev$tty1(0xc, 0x4, 0x1) writev(r0, &(0x7f0000000080)=[{&(0x7f0000001380)="3ead823d27b1f38d16b83fca92a1f8f4a7fc24a264eb3d23f624cb63a9a475c4336e3015462fa8b76b1c5fb9b159eaa406698e2f3dcd71c5ba4e666731496d8ddd1bbaae50714c9ccdc53444b41f6df995ce4a1e6b9807bce8fa3e046360e5d1b228a3367e2315a985fcf8542b6a2e58eff19d99aa1de724345dd5786c63d31c197c760ac73dc10c91fcf49125d4dd5e1d4c952eeabf70f80b092c914e00cd0e75bdea96065d75447e5e2917619f3d3e2662b99fac83e65ca6fb6fc547ce903e960595bafc4990dfa6263d2dd2268b3f6f3df3b1603e198bc4011a4b1c43c686ff811d9a346aabe8c9f33c2c5e0ab15e288917c0de80a9d49e72e1efc8db344b3a715702fd03a0e9e2387cc5032967d44d8b3b68383f6c89c842ec2eadc06d1e5133067d6b3f11647561748b7d4185cab428d5fbf98ea4100f2276af2fec68da7e57d65c185e261b6790c65ebb5f98cb027d065d424a65705b15be6eda2b4ba4f6a337f711fc7088d216cb59a744bc5a0d0f059b11d6d7c0784065277076525027223b82fdcc899b2de92a710082edf89a57c0bf416899d2f8ad2cad43e5018b52025096784ecd82a29c00a8bf5ffa6e3b75fe641acf39885c084ae7e546f04224aeb23f61d99fc464a533fc6b87790e335057b54dbff233ced4a7ef90884dc7d90d678cc080024b9b4a", 0x1ea}], 0x1) 23:46:30 executing program 2: r0 = add_key$keyring(&(0x7f0000000040), &(0x7f00000002c0)={'syz', 0x3}, 0x0, 0x0, 0xfffffffffffffffd) keyctl$KEYCTL_RESTRICT_KEYRING(0xf, r0, 0x0, 0x0) connect$inet(0xffffffffffffffff, &(0x7f0000000140)={0x2, 0x0, @dev}, 0x10) r1 = syz_open_dev$sg(&(0x7f0000000040), 0x0, 0x0) ioctl$BLKTRACETEARDOWN(r1, 0x1276, 0x0) ioctl$BLKTRACESETUP(r1, 0xc0481273, &(0x7f0000000140)={'\x00', 0x0, 0x4, 0x8, 0x76}) (fail_nth: 50) 23:46:30 executing program 0: perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = syz_mount_image$vfat(&(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x0, 0x2, &(0x7f0000000180)=[{&(0x7f0000000140)="eb3c906d6b66732e66617400", 0xc}, {0x0, 0x0, 0x1000a00}], 0x0, &(0x7f0000000240)=ANY=[]) openat2(r0, &(0x7f0000000100)='./file0\x00', &(0x7f00000001c0)={0x40040, 0x8}, 0x18) 23:46:30 executing program 4: perf_event_open(&(0x7f0000001d80)={0x2, 0x80, 0x69, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = socket$inet6_udp(0xa, 0x2, 0x0) dup(0xffffffffffffffff) fstat(0xffffffffffffffff, 0x0) connect$inet6(r0, &(0x7f0000000600)={0xa, 0x0, 0x0, @dev, 0x2}, 0x1c) sendmmsg$inet6(r0, &(0x7f0000000080)=[{{0x0, 0x35e9, &(0x7f00000004c0)=[{&(0x7f00000001c0)="4bc702854e3954b59347985ccc868289d3fe483d2c0900a2a1d12e33a66529e1f276fef452632dfa3c004ce3be84a5f66c29cd4ec39ae5206562fbc9ea3c0dbbebc22e628e147b0e9631f19b0ce0a48e0e675b2da3442226b898f1ddf8eabf133ab4a9cb0999c2ee1d3bd36d089b0d8e97ea00d4c5f6ad14dce058d595aacba2d587ff5eacd81b71a73f53ed276d1f3b3384bb2bfba4e0f37302e690df9e7024378ac754ac0576f996f3ee53d1034c7720767ddf2625817532f7ae89103367b73a36152b84c38bc227ba9e9ff48bcfe027585cf14bff37a888", 0xff41}], 0x1}}], 0x1, 0x0) 23:46:30 executing program 5: perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r0 = syz_mount_image$vfat(&(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x0, 0x2, &(0x7f0000000180)=[{&(0x7f0000000140)="eb3c906d6b66732e66617400020801000470008400f801", 0x17}, {0x0, 0x0, 0x1000a00}], 0x0, &(0x7f0000000240)=ANY=[]) openat2(r0, &(0x7f0000000100)='./file0\x00', &(0x7f00000001c0)={0x40040, 0x8000000000000}, 0x18) [ 1620.764923] FAULT_INJECTION: forcing a failure. [ 1620.764923] name failslab, interval 1, probability 0, space 0, times 0 [ 1620.764937] CPU: 0 PID: 9292 Comm: syz-executor.2 Not tainted 5.10.194 #1 [ 1620.764943] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1620.764946] Call Trace: [ 1620.764965] dump_stack+0x107/0x167 [ 1620.764978] should_fail.cold+0x5/0xa [ 1620.764992] ? create_object.isra.0+0x3a/0xa20 [ 1620.765005] should_failslab+0x5/0x20 [ 1620.765016] kmem_cache_alloc+0x5b/0x310 [ 1620.765030] create_object.isra.0+0x3a/0xa20 [ 1620.765040] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 1620.765054] kmem_cache_alloc+0x159/0x310 [ 1620.765069] alloc_inode+0x171/0x240 [ 1620.765078] new_inode+0x23/0x250 [ 1620.765092] debugfs_get_inode+0x1a/0x130 [ 1620.765102] __debugfs_create_file+0x14e/0x530 [ 1620.765116] ? blk_trace_remove+0x40/0x40 [ 1620.765127] relay_create_buf_file+0xf6/0x180 [ 1620.765139] relay_open_buf.part.0+0x7de/0xc00 [ 1620.765157] relay_open+0x531/0xa10 [ 1620.765172] do_blk_trace_setup+0x4cf/0xc10 [ 1620.765184] ? _copy_from_user+0xfb/0x1b0 [ 1620.765196] __blk_trace_setup+0xca/0x180 [ 1620.765206] ? do_blk_trace_setup+0xc10/0xc10 23:46:30 executing program 1: perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_mount_image$vfat(&(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x0, 0x2, &(0x7f0000000180)=[{&(0x7f0000000140)="eb3c906d6b66732e66617400020801000470008400f801", 0x17}, {0x0, 0x0, 0x1000a00}], 0x0, &(0x7f0000000240)=ANY=[]) 23:46:30 executing program 7: perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_mount_image$vfat(&(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0xe00, 0x2, &(0x7f0000000180)=[{&(0x7f0000000140)="eb3c906d6b66732e66617400020801000470008400f801", 0x17}, {0x0, 0x0, 0x1000a00}], 0x0, &(0x7f0000000240)=ANY=[]) 23:46:30 executing program 2: r0 = add_key$keyring(&(0x7f0000000040), &(0x7f00000002c0)={'syz', 0x3}, 0x0, 0x0, 0xfffffffffffffffd) keyctl$KEYCTL_RESTRICT_KEYRING(0xf, r0, 0x0, 0x0) connect$inet(0xffffffffffffffff, &(0x7f0000000140)={0x2, 0x0, @dev}, 0x10) r1 = syz_open_dev$sg(&(0x7f0000000040), 0x0, 0x0) ioctl$BLKTRACETEARDOWN(r1, 0x1276, 0x0) ioctl$BLKTRACESETUP(r1, 0xc0481273, &(0x7f0000000140)={'\x00', 0x0, 0x4, 0x8, 0x76}) (fail_nth: 51) [ 1620.765224] ? perf_trace_lock+0xac/0x490 [ 1620.765240] blk_trace_setup+0x43/0x60 [ 1620.765257] sg_ioctl_common+0x634/0x2570 [ 1620.765269] ? __sanitizer_cov_trace_switch+0x45/0x80 [ 1620.765283] ? do_vfs_ioctl+0x283/0x10d0 [ 1620.765291] ? sg_write+0x120/0x120 [ 1620.765303] ? generic_block_fiemap+0x60/0x60 [ 1620.765316] ? __mutex_unlock_slowpath+0xe1/0x600 [ 1620.765338] ? selinux_file_ioctl+0xb6/0x270 [ 1620.765346] ? sg_compat_ioctl+0x120/0x120 [ 1620.765357] sg_ioctl+0x8f/0x120 [ 1620.765369] __x64_sys_ioctl+0x19a/0x210 [ 1620.765383] do_syscall_64+0x33/0x40 [ 1620.765394] entry_SYSCALL_64_after_hwframe+0x62/0xc7 [ 1620.765402] RIP: 0033:0x7f661a573b19 [ 1620.765413] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1620.765418] RSP: 002b:00007f6617ae9188 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 1620.765431] RAX: ffffffffffffffda RBX: 00007f661a686f60 RCX: 00007f661a573b19 [ 1620.765437] RDX: 0000000020000140 RSI: 00000000c0481273 RDI: 0000000000000003 23:46:31 executing program 7: perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_mount_image$vfat(&(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0xf00, 0x2, &(0x7f0000000180)=[{&(0x7f0000000140)="eb3c906d6b66732e66617400020801000470008400f801", 0x17}, {0x0, 0x0, 0x1000a00}], 0x0, &(0x7f0000000240)=ANY=[]) [ 1620.765444] RBP: 00007f6617ae91d0 R08: 0000000000000000 R09: 0000000000000000 [ 1620.765450] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 1620.765456] R13: 00007ffd527cbf9f R14: 00007f6617ae9300 R15: 0000000000022000 [ 1620.800529] FAT-fs (loop0): bogus number of reserved sectors [ 1620.800543] FAT-fs (loop0): Can't find a valid FAT filesystem 23:46:31 executing program 1: perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_mount_image$vfat(&(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x0, 0x2, &(0x7f0000000180)=[{&(0x7f0000000140)="eb3c906d6b66732e66617400020801000470008400f801", 0x17}, {0x0, 0x0, 0x1000a00}], 0x0, &(0x7f0000000240)=ANY=[]) [ 1620.903146] FAULT_INJECTION: forcing a failure. [ 1620.903146] name failslab, interval 1, probability 0, space 0, times 0 [ 1620.904500] CPU: 0 PID: 9314 Comm: syz-executor.2 Not tainted 5.10.194 #1 [ 1620.905232] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1620.906129] Call Trace: [ 1620.906428] dump_stack+0x107/0x167 [ 1620.906824] should_fail.cold+0x5/0xa [ 1620.907243] ? security_inode_alloc+0x34/0x160 [ 1620.907736] should_failslab+0x5/0x20 [ 1620.908163] kmem_cache_alloc+0x5b/0x310 [ 1620.908603] security_inode_alloc+0x34/0x160 [ 1620.909089] inode_init_always+0xa4e/0xd10 [ 1620.909549] alloc_inode+0x84/0x240 [ 1620.909938] new_inode+0x23/0x250 [ 1620.910320] debugfs_get_inode+0x1a/0x130 [ 1620.910769] __debugfs_create_file+0x14e/0x530 [ 1620.911262] ? blk_trace_remove+0x40/0x40 [ 1620.911711] relay_create_buf_file+0xf6/0x180 [ 1620.912200] relay_open_buf.part.0+0x7de/0xc00 [ 1620.912722] relay_open+0x531/0xa10 [ 1620.913135] do_blk_trace_setup+0x4cf/0xc10 [ 1620.913622] ? _copy_from_user+0xfb/0x1b0 [ 1620.914089] __blk_trace_setup+0xca/0x180 [ 1620.914560] ? do_blk_trace_setup+0xc10/0xc10 [ 1620.915073] ? perf_trace_lock+0xac/0x490 [ 1620.915547] blk_trace_setup+0x43/0x60 [ 1620.915985] sg_ioctl_common+0x634/0x2570 [ 1620.916460] ? __sanitizer_cov_trace_switch+0x45/0x80 [ 1620.917038] ? do_vfs_ioctl+0x283/0x10d0 [ 1620.917494] ? sg_write+0x120/0x120 [ 1620.917902] ? generic_block_fiemap+0x60/0x60 [ 1620.918410] ? __mutex_unlock_slowpath+0xe1/0x600 [ 1620.918965] ? selinux_file_ioctl+0xb6/0x270 [ 1620.919462] ? sg_compat_ioctl+0x120/0x120 [ 1620.919937] sg_ioctl+0x8f/0x120 [ 1620.920316] __x64_sys_ioctl+0x19a/0x210 [ 1620.920784] do_syscall_64+0x33/0x40 [ 1620.921207] entry_SYSCALL_64_after_hwframe+0x62/0xc7 [ 1620.921799] RIP: 0033:0x7f661a573b19 [ 1620.922225] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1620.924315] RSP: 002b:00007f6617ae9188 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 1620.925179] RAX: ffffffffffffffda RBX: 00007f661a686f60 RCX: 00007f661a573b19 [ 1620.925987] RDX: 0000000020000140 RSI: 00000000c0481273 RDI: 0000000000000003 [ 1620.926793] RBP: 00007f6617ae91d0 R08: 0000000000000000 R09: 0000000000000000 [ 1620.927595] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 1620.928412] R13: 00007ffd527cbf9f R14: 00007f6617ae9300 R15: 0000000000022000 [ 1620.929301] debugfs: out of free dentries, can not create file 'trace0' 23:46:31 executing program 0: perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = syz_mount_image$vfat(&(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x0, 0x2, &(0x7f0000000180)=[{&(0x7f0000000140)="eb3c906d6b66732e66617400", 0xc}, {0x0, 0x0, 0x1000a00}], 0x0, &(0x7f0000000240)=ANY=[]) openat2(r0, &(0x7f0000000100)='./file0\x00', &(0x7f00000001c0)={0x40040, 0x8}, 0x18) [ 1621.021609] FAT-fs (loop0): bogus number of reserved sectors [ 1621.023003] FAT-fs (loop0): Can't find a valid FAT filesystem 23:46:47 executing program 0: perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = syz_mount_image$vfat(&(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x0, 0x2, &(0x7f0000000180)=[{&(0x7f0000000140)="eb3c906d6b66732e66617400020801000470", 0x12}, {0x0, 0x0, 0x1000a00}], 0x0, &(0x7f0000000240)=ANY=[]) openat2(r0, &(0x7f0000000100)='./file0\x00', &(0x7f00000001c0)={0x40040, 0x8}, 0x18) 23:46:47 executing program 6: r0 = syz_open_dev$tty20(0xc, 0x4, 0x1) r1 = openat$hpet(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0) read$eventfd(r1, 0x0, 0x0) ioctl$VT_OPENQRY(r1, 0x5600, &(0x7f0000000080)) ioctl$TIOCGISO7816(0xffffffffffffffff, 0x80285442, &(0x7f00000000c0)) ioctl$VT_RESIZEX(r0, 0x560a, &(0x7f0000000000)={0x0, 0x0, 0x0, 0x0, 0x1d}) ioctl$TCXONC(r0, 0x540a, 0x2) ioctl$TIOCGSOFTCAR(r0, 0x5419, &(0x7f0000000040)) 23:46:47 executing program 1: perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_mount_image$vfat(&(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x0, 0x2, &(0x7f0000000180)=[{&(0x7f0000000140)="eb3c906d6b66732e66617400020801000470008400f801", 0x17}, {0x0, 0x0, 0x1000a00}], 0x0, &(0x7f0000000240)=ANY=[]) 23:46:47 executing program 2: r0 = add_key$keyring(&(0x7f0000000040), &(0x7f00000002c0)={'syz', 0x3}, 0x0, 0x0, 0xfffffffffffffffd) keyctl$KEYCTL_RESTRICT_KEYRING(0xf, r0, 0x0, 0x0) connect$inet(0xffffffffffffffff, &(0x7f0000000140)={0x2, 0x0, @dev}, 0x10) r1 = syz_open_dev$sg(&(0x7f0000000040), 0x0, 0x0) ioctl$BLKTRACETEARDOWN(r1, 0x1276, 0x0) ioctl$BLKTRACESETUP(r1, 0xc0481273, &(0x7f0000000140)={'\x00', 0x0, 0x4, 0x8, 0x76}) (fail_nth: 52) 23:46:47 executing program 5: perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r0 = syz_mount_image$vfat(&(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x0, 0x2, &(0x7f0000000180)=[{&(0x7f0000000140)="eb3c906d6b66732e66617400020801000470008400f801", 0x17}, {0x0, 0x0, 0x1000a00}], 0x0, &(0x7f0000000240)=ANY=[]) openat2(r0, &(0x7f0000000100)='./file0\x00', &(0x7f00000001c0)={0x40040, 0xf0ffffffffffff}, 0x18) 23:46:47 executing program 4: perf_event_open(&(0x7f0000001d80)={0x2, 0x80, 0x69, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = socket$inet6_udp(0xa, 0x2, 0x0) dup(0xffffffffffffffff) fstat(0xffffffffffffffff, 0x0) connect$inet6(r0, &(0x7f0000000600)={0xa, 0x0, 0x0, @dev, 0x2}, 0x1c) sendmmsg$inet6(r0, &(0x7f0000000080)=[{{0x0, 0x3984, &(0x7f00000004c0)=[{&(0x7f00000001c0)="4bc702854e3954b59347985ccc868289d3fe483d2c0900a2a1d12e33a66529e1f276fef452632dfa3c004ce3be84a5f66c29cd4ec39ae5206562fbc9ea3c0dbbebc22e628e147b0e9631f19b0ce0a48e0e675b2da3442226b898f1ddf8eabf133ab4a9cb0999c2ee1d3bd36d089b0d8e97ea00d4c5f6ad14dce058d595aacba2d587ff5eacd81b71a73f53ed276d1f3b3384bb2bfba4e0f37302e690df9e7024378ac754ac0576f996f3ee53d1034c7720767ddf2625817532f7ae89103367b73a36152b84c38bc227ba9e9ff48bcfe027585cf14bff37a888", 0xff41}], 0x1}}], 0x1, 0x0) 23:46:47 executing program 3: r0 = syz_open_dev$tty1(0xc, 0x4, 0x1) writev(r0, &(0x7f0000000080)=[{&(0x7f0000001380)="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", 0x1ea}], 0x1) 23:46:47 executing program 7: perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_mount_image$vfat(&(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x1020, 0x2, &(0x7f0000000180)=[{&(0x7f0000000140)="eb3c906d6b66732e66617400020801000470008400f801", 0x17}, {0x0, 0x0, 0x1000a00}], 0x0, &(0x7f0000000240)=ANY=[]) [ 1637.035711] FAULT_INJECTION: forcing a failure. [ 1637.035711] name failslab, interval 1, probability 0, space 0, times 0 [ 1637.035735] CPU: 1 PID: 9344 Comm: syz-executor.2 Not tainted 5.10.194 #1 [ 1637.035747] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1637.035754] Call Trace: [ 1637.035784] dump_stack+0x107/0x167 [ 1637.035811] should_fail.cold+0x5/0xa [ 1637.035835] ? create_object.isra.0+0x3a/0xa20 23:46:47 executing program 1: perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) syz_mount_image$vfat(0x0, &(0x7f00000000c0)='./file0\x00', 0x0, 0x2, &(0x7f0000000180)=[{&(0x7f0000000140)="eb3c906d6b66732e66617400020801000470008400f801", 0x17}, {0x0, 0x0, 0x1000a00}], 0x0, &(0x7f0000000240)=ANY=[]) 23:46:47 executing program 2: r0 = add_key$keyring(&(0x7f0000000040), &(0x7f00000002c0)={'syz', 0x3}, 0x0, 0x0, 0xfffffffffffffffd) keyctl$KEYCTL_RESTRICT_KEYRING(0xf, r0, 0x0, 0x0) connect$inet(0xffffffffffffffff, &(0x7f0000000140)={0x2, 0x0, @dev}, 0x10) r1 = syz_open_dev$sg(&(0x7f0000000040), 0x0, 0x0) ioctl$BLKTRACETEARDOWN(r1, 0x1276, 0x0) ioctl$BLKTRACESETUP(r1, 0xc0481273, &(0x7f0000000140)={'\x00', 0x0, 0x4, 0x8, 0x76}) (fail_nth: 53) [ 1637.035860] should_failslab+0x5/0x20 [ 1637.035880] kmem_cache_alloc+0x5b/0x310 [ 1637.035909] create_object.isra.0+0x3a/0xa20 23:46:47 executing program 7: perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_mount_image$vfat(&(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x1100, 0x2, &(0x7f0000000180)=[{&(0x7f0000000140)="eb3c906d6b66732e66617400020801000470008400f801", 0x17}, {0x0, 0x0, 0x1000a00}], 0x0, &(0x7f0000000240)=ANY=[]) [ 1637.035930] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 1637.035958] kmem_cache_alloc+0x159/0x310 [ 1637.035992] security_inode_alloc+0x34/0x160 [ 1637.036021] inode_init_always+0xa4e/0xd10 [ 1637.036044] alloc_inode+0x84/0x240 [ 1637.036063] new_inode+0x23/0x250 [ 1637.036089] debugfs_get_inode+0x1a/0x130 [ 1637.036111] __debugfs_create_file+0x14e/0x530 [ 1637.036136] ? blk_trace_remove+0x40/0x40 [ 1637.036157] relay_create_buf_file+0xf6/0x180 [ 1637.036181] relay_open_buf.part.0+0x7de/0xc00 [ 1637.036219] relay_open+0x531/0xa10 [ 1637.036250] do_blk_trace_setup+0x4cf/0xc10 [ 1637.036290] ? _copy_from_user+0xfb/0x1b0 [ 1637.036314] __blk_trace_setup+0xca/0x180 [ 1637.036340] ? do_blk_trace_setup+0xc10/0xc10 [ 1637.036376] ? perf_trace_lock+0xac/0x490 [ 1637.036408] blk_trace_setup+0x43/0x60 [ 1637.036435] sg_ioctl_common+0x634/0x2570 [ 1637.036460] ? __sanitizer_cov_trace_switch+0x45/0x80 [ 1637.036481] ? do_vfs_ioctl+0x283/0x10d0 [ 1637.036499] ? sg_write+0x120/0x120 [ 1637.036519] ? generic_block_fiemap+0x60/0x60 [ 1637.036544] ? __mutex_unlock_slowpath+0xe1/0x600 [ 1637.036587] ? selinux_file_ioctl+0xb6/0x270 [ 1637.036605] ? sg_compat_ioctl+0x120/0x120 [ 1637.036627] sg_ioctl+0x8f/0x120 [ 1637.036651] __x64_sys_ioctl+0x19a/0x210 [ 1637.036678] do_syscall_64+0x33/0x40 [ 1637.036702] entry_SYSCALL_64_after_hwframe+0x62/0xc7 [ 1637.036717] RIP: 0033:0x7f661a573b19 [ 1637.036739] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1637.036750] RSP: 002b:00007f6617ae9188 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 1637.036774] RAX: ffffffffffffffda RBX: 00007f661a686f60 RCX: 00007f661a573b19 [ 1637.036787] RDX: 0000000020000140 RSI: 00000000c0481273 RDI: 0000000000000003 [ 1637.036800] RBP: 00007f6617ae91d0 R08: 0000000000000000 R09: 0000000000000000 [ 1637.036811] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 1637.036823] R13: 00007ffd527cbf9f R14: 00007f6617ae9300 R15: 0000000000022000 [ 1637.054516] FAT-fs (loop0): invalid media value (0x00) [ 1637.054532] FAT-fs (loop0): Can't find a valid FAT filesystem [ 1637.221263] FAULT_INJECTION: forcing a failure. [ 1637.221263] name fail_page_alloc, interval 1, probability 0, space 0, times 0 [ 1637.255148] CPU: 0 PID: 9358 Comm: syz-executor.2 Not tainted 5.10.194 #1 [ 1637.255159] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1637.255165] Call Trace: [ 1637.255202] dump_stack+0x107/0x167 [ 1637.259671] should_fail.cold+0x5/0xa [ 1637.259703] __alloc_pages_nodemask+0x182/0x600 [ 1637.259730] ? lock_acquire+0x197/0x470 [ 1637.259750] ? lockref_get+0x11/0x50 [ 1637.259781] ? __alloc_pages_slowpath.constprop.0+0x2130/0x2130 [ 1637.264374] ? lock_downgrade+0x6d0/0x6d0 [ 1637.264395] ? do_raw_spin_lock+0x121/0x260 [ 1637.264427] ? rwlock_bug.part.0+0x90/0x90 [ 1637.267038] alloc_pages_current+0x187/0x280 [ 1637.267957] __get_free_pages+0xc/0xa0 [ 1637.268775] inode_doinit_with_dentry+0x8f1/0x1240 [ 1637.269799] ? hrtimer_try_to_cancel.part.0+0x267/0x3b0 [ 1637.270900] ? hrtimer_init_sleeper+0x1a0/0x1f0 [ 1637.271861] ? selinux_file_lock+0x280/0x280 [ 1637.272777] ? current_time+0x1e6/0x2c0 [ 1637.273598] ? igrab+0xc0/0xc0 [ 1637.274269] selinux_d_instantiate+0x23/0x30 [ 1637.275180] security_d_instantiate+0x56/0xe0 [ 1637.276111] d_instantiate+0x5a/0x90 [ 1637.276899] __debugfs_create_file+0x246/0x530 [ 1637.277844] ? blk_trace_remove+0x40/0x40 [ 1637.278701] relay_create_buf_file+0xf6/0x180 [ 1637.279631] relay_open_buf.part.0+0x7de/0xc00 [ 1637.280600] relay_open+0x531/0xa10 [ 1637.281364] do_blk_trace_setup+0x4cf/0xc10 [ 1637.282260] ? _copy_from_user+0xfb/0x1b0 [ 1637.283123] __blk_trace_setup+0xca/0x180 [ 1637.283981] ? do_blk_trace_setup+0xc10/0xc10 [ 1637.284925] ? perf_trace_lock+0xac/0x490 [ 1637.285792] blk_trace_setup+0x43/0x60 [ 1637.286603] sg_ioctl_common+0x634/0x2570 [ 1637.287465] ? __sanitizer_cov_trace_switch+0x45/0x80 [ 1637.288545] ? do_vfs_ioctl+0x283/0x10d0 [ 1637.289385] ? sg_write+0x120/0x120 [ 1637.290139] ? generic_block_fiemap+0x60/0x60 [ 1637.291072] ? __mutex_unlock_slowpath+0xe1/0x600 [ 1637.292089] ? selinux_file_ioctl+0xb6/0x270 [ 1637.293021] ? sg_compat_ioctl+0x120/0x120 [ 1637.293041] sg_ioctl+0x8f/0x120 [ 1637.293063] __x64_sys_ioctl+0x19a/0x210 [ 1637.293088] do_syscall_64+0x33/0x40 [ 1637.293109] entry_SYSCALL_64_after_hwframe+0x62/0xc7 [ 1637.293122] RIP: 0033:0x7f661a573b19 [ 1637.293142] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1637.293153] RSP: 002b:00007f6617ae9188 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 1637.293175] RAX: ffffffffffffffda RBX: 00007f661a686f60 RCX: 00007f661a573b19 [ 1637.293186] RDX: 0000000020000140 RSI: 00000000c0481273 RDI: 0000000000000003 [ 1637.293197] RBP: 00007f6617ae91d0 R08: 0000000000000000 R09: 0000000000000000 [ 1637.293208] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 1637.293219] R13: 00007ffd527cbf9f R14: 00007f6617ae9300 R15: 0000000000022000 23:47:02 executing program 6: r0 = syz_open_dev$tty20(0xc, 0x4, 0x1) ioctl$TIOCSTI(r0, 0x5412, &(0x7f0000000040)=0x80) ioctl$TCSETSW2(r0, 0x402c542c, &(0x7f0000000100)={0x0, 0xe32, 0x1a4e, 0x1, 0x3, "b30cb3fe90207cd9e7135ace64698aaf496592", 0x4f6d, 0x101}) ioctl$VT_RESIZEX(r0, 0x560a, &(0x7f0000000000)={0x0, 0x0, 0x0, 0x0, 0x1d}) r1 = openat$incfs(0xffffffffffffffff, &(0x7f0000000080)='.pending_reads\x00', 0x4000, 0x130) ioctl$TIOCSTI(r1, 0x5412, &(0x7f00000000c0)=0x9a) 23:47:02 executing program 5: perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r0 = syz_mount_image$vfat(&(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x0, 0x2, &(0x7f0000000180)=[{&(0x7f0000000140)="eb3c906d6b66732e66617400020801000470008400f801", 0x17}, {0x0, 0x0, 0x1000a00}], 0x0, &(0x7f0000000240)=ANY=[]) openat2(r0, &(0x7f0000000100)='./file0\x00', &(0x7f00000001c0)={0x40040, 0x100000000000000}, 0x18) 23:47:02 executing program 2: r0 = add_key$keyring(&(0x7f0000000040), &(0x7f00000002c0)={'syz', 0x3}, 0x0, 0x0, 0xfffffffffffffffd) keyctl$KEYCTL_RESTRICT_KEYRING(0xf, r0, 0x0, 0x0) connect$inet(0xffffffffffffffff, &(0x7f0000000140)={0x2, 0x0, @dev}, 0x10) r1 = syz_open_dev$sg(&(0x7f0000000040), 0x0, 0x0) ioctl$BLKTRACETEARDOWN(r1, 0x1276, 0x0) ioctl$BLKTRACESETUP(r1, 0xc0481273, &(0x7f0000000140)={'\x00', 0x0, 0x4, 0x8, 0x76}) (fail_nth: 54) 23:47:02 executing program 3: r0 = syz_open_dev$tty1(0xc, 0x4, 0x1) writev(r0, &(0x7f0000000080)=[{&(0x7f0000001380)="3ead823d27b1f38d16b83fca92a1f8f4a79609a264eb3d23f624cb63a9a475c4336e3015462fa8b76b1c5fb9b159eaa406698e2f3dcd71c5ba4e666731496d8ddd1bbaae50714c9ccdc53444b41f6df995ce4a1e6b9807bce8fa3e046360e5d1b228a3367e2315a985fcf8542b6a2e58eff19d99aa1de724345dd5786c63d31c197c760ac73dc10c91fcf49125d4dd5e1d4c952eeabf70f80b092c914e00cd0e75bdea96065d75447e5e2917619f3d3e2662b99fac83e65ca6fb6fc547ce903e960595bafc4990dfa6263d2dd2268b3f6f3df3b1603e198bc4011a4b1c43c686ff811d9a346aabe8c9f33c2c5e0ab15e288917c0de80a9d49e72e1efc8db344b3a715702fd03a0e9e2387cc5032967d44d8b3b68383f6c89c842ec2eadc06d1e5133067d6b3f11647561748b7d4185cab428d5fbf98ea4100f2276af2fec68da7e57d65c185e261b6790c65ebb5f98cb027d065d424a65705b15be6eda2b4ba4f6a337f711fc7088d216cb59a744bc5a0d0f059b11d6d7c0784065277076525027223b82fdcc899b2de92a710082edf89a57c0bf416899d2f8ad2cad43e5018b52025096784ecd82a29c00a8bf5ffa6e3b75fe641acf39885c084ae7e546f04224aeb23f61d99fc464a533fc6b87790e335057b54dbff233ced4a7ef90884dc7d90d678cc080024b9b4a", 0x1ea}], 0x1) 23:47:02 executing program 4: perf_event_open(&(0x7f0000001d80)={0x2, 0x80, 0x69, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = socket$inet6_udp(0xa, 0x2, 0x0) dup(0xffffffffffffffff) fstat(0xffffffffffffffff, 0x0) connect$inet6(r0, &(0x7f0000000600)={0xa, 0x0, 0x0, @dev, 0x2}, 0x1c) sendmmsg$inet6(r0, &(0x7f0000000080)=[{{0x0, 0x3b81, &(0x7f00000004c0)=[{&(0x7f00000001c0)="4bc702854e3954b59347985ccc868289d3fe483d2c0900a2a1d12e33a66529e1f276fef452632dfa3c004ce3be84a5f66c29cd4ec39ae5206562fbc9ea3c0dbbebc22e628e147b0e9631f19b0ce0a48e0e675b2da3442226b898f1ddf8eabf133ab4a9cb0999c2ee1d3bd36d089b0d8e97ea00d4c5f6ad14dce058d595aacba2d587ff5eacd81b71a73f53ed276d1f3b3384bb2bfba4e0f37302e690df9e7024378ac754ac0576f996f3ee53d1034c7720767ddf2625817532f7ae89103367b73a36152b84c38bc227ba9e9ff48bcfe027585cf14bff37a888", 0xff41}], 0x1}}], 0x1, 0x0) 23:47:02 executing program 7: perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_mount_image$vfat(&(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x1600, 0x2, &(0x7f0000000180)=[{&(0x7f0000000140)="eb3c906d6b66732e66617400020801000470008400f801", 0x17}, {0x0, 0x0, 0x1000a00}], 0x0, &(0x7f0000000240)=ANY=[]) 23:47:02 executing program 1: perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) syz_mount_image$vfat(0x0, &(0x7f00000000c0)='./file0\x00', 0x0, 0x2, &(0x7f0000000180)=[{&(0x7f0000000140)="eb3c906d6b66732e66617400020801000470008400f801", 0x17}, {0x0, 0x0, 0x1000a00}], 0x0, &(0x7f0000000240)=ANY=[]) 23:47:02 executing program 0: perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = syz_mount_image$vfat(&(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x0, 0x2, &(0x7f0000000180)=[{&(0x7f0000000140)="eb3c906d6b66732e66617400020801000470", 0x12}, {0x0, 0x0, 0x1000a00}], 0x0, &(0x7f0000000240)=ANY=[]) openat2(r0, &(0x7f0000000100)='./file0\x00', &(0x7f00000001c0)={0x40040, 0x8}, 0x18) 23:47:02 executing program 1: perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) syz_mount_image$vfat(0x0, &(0x7f00000000c0)='./file0\x00', 0x0, 0x2, &(0x7f0000000180)=[{&(0x7f0000000140)="eb3c906d6b66732e66617400020801000470008400f801", 0x17}, {0x0, 0x0, 0x1000a00}], 0x0, &(0x7f0000000240)=ANY=[]) 23:47:02 executing program 3: r0 = syz_open_dev$tty1(0xc, 0x4, 0x1) writev(r0, &(0x7f0000000080)=[{&(0x7f0000001380)="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", 0x1ea}], 0x1) [ 1652.222565] FAULT_INJECTION: forcing a failure. [ 1652.222565] name failslab, interval 1, probability 0, space 0, times 0 [ 1652.225072] CPU: 0 PID: 9382 Comm: syz-executor.2 Not tainted 5.10.194 #1 [ 1652.226470] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1652.228185] Call Trace: [ 1652.228772] dump_stack+0x107/0x167 [ 1652.229530] should_fail.cold+0x5/0xa [ 1652.230325] ? relay_open_buf.part.0+0x91/0xc00 [ 1652.231297] should_failslab+0x5/0x20 [ 1652.232083] kmem_cache_alloc_trace+0x55/0x320 [ 1652.233034] ? __relay_reset+0x318/0x450 [ 1652.233873] relay_open_buf.part.0+0x91/0xc00 [ 1652.234818] ? _find_next_bit.constprop.0+0x1a3/0x200 [ 1652.235884] relay_open+0x531/0xa10 [ 1652.236653] do_blk_trace_setup+0x4cf/0xc10 [ 1652.237551] ? _copy_from_user+0xfb/0x1b0 [ 1652.238415] __blk_trace_setup+0xca/0x180 [ 1652.239260] ? do_blk_trace_setup+0xc10/0xc10 [ 1652.240205] ? perf_trace_lock+0xac/0x490 [ 1652.241089] blk_trace_setup+0x43/0x60 [ 1652.241894] sg_ioctl_common+0x634/0x2570 [ 1652.242752] ? __sanitizer_cov_trace_switch+0x45/0x80 [ 1652.243818] ? do_vfs_ioctl+0x283/0x10d0 [ 1652.244660] ? sg_write+0x120/0x120 [ 1652.245409] ? generic_block_fiemap+0x60/0x60 [ 1652.246334] ? __mutex_unlock_slowpath+0xe1/0x600 [ 1652.247346] ? selinux_file_ioctl+0xb6/0x270 [ 1652.248254] ? sg_compat_ioctl+0x120/0x120 [ 1652.249136] sg_ioctl+0x8f/0x120 [ 1652.249843] __x64_sys_ioctl+0x19a/0x210 [ 1652.250690] do_syscall_64+0x33/0x40 [ 1652.251458] entry_SYSCALL_64_after_hwframe+0x62/0xc7 [ 1652.252531] RIP: 0033:0x7f661a573b19 [ 1652.253292] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1652.257093] RSP: 002b:00007f6617ae9188 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 1652.258666] RAX: ffffffffffffffda RBX: 00007f661a686f60 RCX: 00007f661a573b19 [ 1652.260131] RDX: 0000000020000140 RSI: 00000000c0481273 RDI: 0000000000000003 [ 1652.261596] RBP: 00007f6617ae91d0 R08: 0000000000000000 R09: 0000000000000000 [ 1652.263066] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 1652.264550] R13: 00007ffd527cbf9f R14: 00007f6617ae9300 R15: 0000000000022000 [ 1652.269475] FAT-fs (loop0): invalid media value (0x00) [ 1652.270685] FAT-fs (loop0): Can't find a valid FAT filesystem 23:47:02 executing program 1: perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) syz_mount_image$vfat(&(0x7f0000000080), 0x0, 0x0, 0x2, &(0x7f0000000180)=[{&(0x7f0000000140)="eb3c906d6b66732e66617400020801000470008400f801", 0x17}, {0x0, 0x0, 0x1000a00}], 0x0, &(0x7f0000000240)=ANY=[]) 23:47:02 executing program 7: perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_mount_image$vfat(&(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x1800, 0x2, &(0x7f0000000180)=[{&(0x7f0000000140)="eb3c906d6b66732e66617400020801000470008400f801", 0x17}, {0x0, 0x0, 0x1000a00}], 0x0, &(0x7f0000000240)=ANY=[]) 23:47:02 executing program 6: syz_open_dev$tty20(0xc, 0x4, 0x1) r0 = openat$hpet(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0) read$eventfd(r0, 0x0, 0x0) ioctl$VT_RESIZEX(r0, 0x560a, &(0x7f0000000000)={0x5, 0x0, 0x0, 0x401, 0x1d, 0xfffd}) 23:47:02 executing program 5: perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r0 = syz_mount_image$vfat(&(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x0, 0x2, &(0x7f0000000180)=[{&(0x7f0000000140)="eb3c906d6b66732e66617400020801000470008400f801", 0x17}, {0x0, 0x0, 0x1000a00}], 0x0, &(0x7f0000000240)=ANY=[]) openat2(r0, &(0x7f0000000100)='./file0\x00', &(0x7f00000001c0)={0x40040, 0x200000000000000}, 0x18) 23:47:02 executing program 2: r0 = add_key$keyring(&(0x7f0000000040), &(0x7f00000002c0)={'syz', 0x3}, 0x0, 0x0, 0xfffffffffffffffd) keyctl$KEYCTL_RESTRICT_KEYRING(0xf, r0, 0x0, 0x0) connect$inet(0xffffffffffffffff, &(0x7f0000000140)={0x2, 0x0, @dev}, 0x10) r1 = syz_open_dev$sg(&(0x7f0000000040), 0x0, 0x0) ioctl$BLKTRACETEARDOWN(r1, 0x1276, 0x0) ioctl$BLKTRACESETUP(r1, 0xc0481273, &(0x7f0000000140)={'\x00', 0x0, 0x4, 0x8, 0x76}) (fail_nth: 55) [ 1652.456975] FAULT_INJECTION: forcing a failure. [ 1652.456975] name failslab, interval 1, probability 0, space 0, times 0 [ 1652.459500] CPU: 0 PID: 9409 Comm: syz-executor.2 Not tainted 5.10.194 #1 [ 1652.460922] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1652.462662] Call Trace: [ 1652.463216] dump_stack+0x107/0x167 [ 1652.463977] should_fail.cold+0x5/0xa [ 1652.464777] ? create_object.isra.0+0x3a/0xa20 [ 1652.465728] should_failslab+0x5/0x20 [ 1652.466533] kmem_cache_alloc+0x5b/0x310 [ 1652.467387] create_object.isra.0+0x3a/0xa20 [ 1652.468299] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 1652.469373] kmem_cache_alloc_trace+0x151/0x320 [ 1652.470342] relay_open_buf.part.0+0x91/0xc00 [ 1652.471263] ? _find_next_bit.constprop.0+0x1a3/0x200 [ 1652.472338] relay_open+0x531/0xa10 [ 1652.473106] do_blk_trace_setup+0x4cf/0xc10 [ 1652.474000] ? _copy_from_user+0xfb/0x1b0 [ 1652.474860] __blk_trace_setup+0xca/0x180 [ 1652.475716] ? do_blk_trace_setup+0xc10/0xc10 [ 1652.476674] ? perf_trace_lock+0xac/0x490 [ 1652.477533] blk_trace_setup+0x43/0x60 [ 1652.478345] sg_ioctl_common+0x634/0x2570 [ 1652.479197] ? __sanitizer_cov_trace_switch+0x45/0x80 [ 1652.480261] ? do_vfs_ioctl+0x283/0x10d0 [ 1652.481119] ? sg_write+0x120/0x120 [ 1652.481874] ? generic_block_fiemap+0x60/0x60 [ 1652.482801] ? __mutex_unlock_slowpath+0xe1/0x600 [ 1652.483823] ? selinux_file_ioctl+0xb6/0x270 [ 1652.484725] ? sg_compat_ioctl+0x120/0x120 [ 1652.485597] sg_ioctl+0x8f/0x120 [ 1652.486296] __x64_sys_ioctl+0x19a/0x210 [ 1652.487144] do_syscall_64+0x33/0x40 [ 1652.487917] entry_SYSCALL_64_after_hwframe+0x62/0xc7 [ 1652.488979] RIP: 0033:0x7f661a573b19 [ 1652.489748] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1652.493514] RSP: 002b:00007f6617ae9188 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 1652.495109] RAX: ffffffffffffffda RBX: 00007f661a686f60 RCX: 00007f661a573b19 [ 1652.496602] RDX: 0000000020000140 RSI: 00000000c0481273 RDI: 0000000000000003 [ 1652.498304] RBP: 00007f6617ae91d0 R08: 0000000000000000 R09: 0000000000000000 [ 1652.500032] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 1652.501769] R13: 00007ffd527cbf9f R14: 00007f6617ae9300 R15: 0000000000022000 23:47:15 executing program 3: r0 = syz_open_dev$tty1(0xc, 0x4, 0x1) writev(r0, &(0x7f0000000080)=[{&(0x7f0000001380)="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", 0x1ea}], 0x1) 23:47:15 executing program 2: r0 = add_key$keyring(&(0x7f0000000040), &(0x7f00000002c0)={'syz', 0x3}, 0x0, 0x0, 0xfffffffffffffffd) keyctl$KEYCTL_RESTRICT_KEYRING(0xf, r0, 0x0, 0x0) connect$inet(0xffffffffffffffff, &(0x7f0000000140)={0x2, 0x0, @dev}, 0x10) r1 = syz_open_dev$sg(&(0x7f0000000040), 0x0, 0x0) ioctl$BLKTRACETEARDOWN(r1, 0x1276, 0x0) ioctl$BLKTRACESETUP(r1, 0xc0481273, &(0x7f0000000140)={'\x00', 0x0, 0x4, 0x8, 0x76}) (fail_nth: 56) 23:47:15 executing program 5: perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r0 = syz_mount_image$vfat(&(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x0, 0x2, &(0x7f0000000180)=[{&(0x7f0000000140)="eb3c906d6b66732e66617400020801000470008400f801", 0x17}, {0x0, 0x0, 0x1000a00}], 0x0, &(0x7f0000000240)=ANY=[]) openat2(r0, &(0x7f0000000100)='./file0\x00', &(0x7f00000001c0)={0x40040, 0x300000000000000}, 0x18) 23:47:15 executing program 6: r0 = syz_open_dev$tty20(0xc, 0x4, 0x1) ioctl$VT_RESIZEX(r0, 0x560a, &(0x7f0000000000)={0x0, 0x0, 0x0, 0x0, 0x1d}) openat2(0xffffffffffffffff, &(0x7f0000000040)='./file0\x00', &(0x7f0000000080)={0x400041, 0x100, 0x8}, 0x18) 23:47:15 executing program 0: perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = syz_mount_image$vfat(&(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x0, 0x2, &(0x7f0000000180)=[{&(0x7f0000000140)="eb3c906d6b66732e66617400020801000470", 0x12}, {0x0, 0x0, 0x1000a00}], 0x0, &(0x7f0000000240)=ANY=[]) openat2(r0, &(0x7f0000000100)='./file0\x00', &(0x7f00000001c0)={0x40040, 0x8}, 0x18) 23:47:15 executing program 4: perf_event_open(&(0x7f0000001d80)={0x2, 0x80, 0x69, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = socket$inet6_udp(0xa, 0x2, 0x0) dup(0xffffffffffffffff) fstat(0xffffffffffffffff, 0x0) connect$inet6(r0, &(0x7f0000000600)={0xa, 0x0, 0x0, @dev, 0x2}, 0x1c) sendmmsg$inet6(r0, &(0x7f0000000080)=[{{0x0, 0x4119, &(0x7f00000004c0)=[{&(0x7f00000001c0)="4bc702854e3954b59347985ccc868289d3fe483d2c0900a2a1d12e33a66529e1f276fef452632dfa3c004ce3be84a5f66c29cd4ec39ae5206562fbc9ea3c0dbbebc22e628e147b0e9631f19b0ce0a48e0e675b2da3442226b898f1ddf8eabf133ab4a9cb0999c2ee1d3bd36d089b0d8e97ea00d4c5f6ad14dce058d595aacba2d587ff5eacd81b71a73f53ed276d1f3b3384bb2bfba4e0f37302e690df9e7024378ac754ac0576f996f3ee53d1034c7720767ddf2625817532f7ae89103367b73a36152b84c38bc227ba9e9ff48bcfe027585cf14bff37a888", 0xff41}], 0x1}}], 0x1, 0x0) 23:47:15 executing program 1: perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) syz_mount_image$vfat(&(0x7f0000000080), 0x0, 0x0, 0x2, &(0x7f0000000180)=[{&(0x7f0000000140)="eb3c906d6b66732e66617400020801000470008400f801", 0x17}, {0x0, 0x0, 0x1000a00}], 0x0, &(0x7f0000000240)=ANY=[]) 23:47:15 executing program 7: perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_mount_image$vfat(&(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x2000, 0x2, &(0x7f0000000180)=[{&(0x7f0000000140)="eb3c906d6b66732e66617400020801000470008400f801", 0x17}, {0x0, 0x0, 0x1000a00}], 0x0, &(0x7f0000000240)=ANY=[]) 23:47:15 executing program 3: r0 = syz_open_dev$tty1(0xc, 0x4, 0x1) writev(r0, &(0x7f0000000080)=[{&(0x7f0000001380)="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", 0x1ea}], 0x1) [ 1665.385809] FAULT_INJECTION: forcing a failure. [ 1665.385809] name failslab, interval 1, probability 0, space 0, times 0 [ 1665.387103] CPU: 1 PID: 9424 Comm: syz-executor.2 Not tainted 5.10.194 #1 [ 1665.387843] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1665.388760] Call Trace: [ 1665.389067] dump_stack+0x107/0x167 [ 1665.389474] should_fail.cold+0x5/0xa [ 1665.389894] ? relay_open_buf.part.0+0xf9/0xc00 [ 1665.390406] should_failslab+0x5/0x20 [ 1665.390824] __kmalloc+0x72/0x390 [ 1665.391200] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 1665.391745] relay_open_buf.part.0+0xf9/0xc00 [ 1665.392240] ? _find_next_bit.constprop.0+0x1a3/0x200 [ 1665.392821] relay_open+0x531/0xa10 [ 1665.393227] do_blk_trace_setup+0x4cf/0xc10 [ 1665.393691] ? _copy_from_user+0xfb/0x1b0 [ 1665.394140] __blk_trace_setup+0xca/0x180 [ 1665.394589] ? do_blk_trace_setup+0xc10/0xc10 [ 1665.395083] ? perf_trace_lock+0xac/0x490 [ 1665.395539] blk_trace_setup+0x43/0x60 [ 1665.395969] sg_ioctl_common+0x634/0x2570 [ 1665.396428] ? __sanitizer_cov_trace_switch+0x45/0x80 [ 1665.397005] ? do_vfs_ioctl+0x283/0x10d0 [ 1665.397451] ? sg_write+0x120/0x120 [ 1665.397856] ? generic_block_fiemap+0x60/0x60 [ 1665.398358] ? __mutex_unlock_slowpath+0xe1/0x600 [ 1665.398901] ? selinux_file_ioctl+0xb6/0x270 [ 1665.399381] ? sg_compat_ioctl+0x120/0x120 [ 1665.399845] sg_ioctl+0x8f/0x120 [ 1665.400224] __x64_sys_ioctl+0x19a/0x210 [ 1665.400684] do_syscall_64+0x33/0x40 [ 1665.401095] entry_SYSCALL_64_after_hwframe+0x62/0xc7 [ 1665.401661] RIP: 0033:0x7f661a573b19 [ 1665.402075] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1665.404182] RSP: 002b:00007f6617ae9188 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 1665.405023] RAX: ffffffffffffffda RBX: 00007f661a686f60 RCX: 00007f661a573b19 [ 1665.405802] RDX: 0000000020000140 RSI: 00000000c0481273 RDI: 0000000000000003 [ 1665.406580] RBP: 00007f6617ae91d0 R08: 0000000000000000 R09: 0000000000000000 [ 1665.407369] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 1665.408152] R13: 00007ffd527cbf9f R14: 00007f6617ae9300 R15: 0000000000022000 23:47:15 executing program 6: r0 = syz_open_dev$tty20(0xc, 0x4, 0x1) ioctl$VT_RESIZEX(r0, 0x560a, &(0x7f0000000000)={0x0, 0x0, 0x0, 0x0, 0x1d}) syz_io_uring_setup(0x485f, &(0x7f00000012c0)={0x0, 0x7a4f, 0x1, 0x0, 0x270}, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000ffc000/0x2000)=nil, &(0x7f0000001340)=0x0, &(0x7f0000001380)) syz_io_uring_setup(0x5952, &(0x7f00000013c0)={0x0, 0x70e4, 0x2, 0x3, 0x3ad}, &(0x7f0000ffd000/0x1000)=nil, &(0x7f0000ffd000/0x2000)=nil, &(0x7f0000001440), &(0x7f0000001480)=0x0) r3 = io_uring_register$IORING_REGISTER_PERSONALITY(0xffffffffffffffff, 0x9, 0x0, 0x0) syz_io_uring_submit(r1, r2, &(0x7f0000001540)=@IORING_OP_OPENAT2={0x1c, 0x5, 0x0, r0, &(0x7f00000014c0)={0x28482, 0x40, 0x1}, &(0x7f0000001500)='./file0\x00', 0x18, 0x0, 0x12345, {0x0, r3}}, 0x1) r4 = openat2(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', &(0x7f0000000080)={0x24881, 0x40, 0x6}, 0x18) clone3(&(0x7f0000001240)={0x2080800, &(0x7f00000000c0)=0xffffffffffffffff, &(0x7f0000000100), &(0x7f0000000140), {0x33}, &(0x7f0000000180)=""/4096, 0x1000, &(0x7f0000001180)=""/99, &(0x7f0000001200)=[0xffffffffffffffff, 0x0, 0xffffffffffffffff, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0, 0xffffffffffffffff, 0x0, 0xffffffffffffffff], 0xa, {r4}}, 0x58) ioctl$F2FS_IOC_ABORT_VOLATILE_WRITE(r5, 0xf505, 0x0) r6 = syz_mount_image$tmpfs(&(0x7f0000000000), &(0x7f0000000080)='./file0\x00', 0x0, 0x0, 0x0, 0x0, &(0x7f0000000600)=ANY=[]) mknodat$loop(r6, &(0x7f0000000300)='./file0\x00', 0x1000, 0x0) openat(r6, &(0x7f0000000140)='./file0\x00', 0x2, 0x0) openat(r6, &(0x7f0000000000)='./file0\x00', 0x0, 0x0) fallocate(r6, 0x4, 0x4, 0xc0f6) 23:47:15 executing program 1: perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) syz_mount_image$vfat(&(0x7f0000000080), 0x0, 0x0, 0x2, &(0x7f0000000180)=[{&(0x7f0000000140)="eb3c906d6b66732e66617400020801000470008400f801", 0x17}, {0x0, 0x0, 0x1000a00}], 0x0, &(0x7f0000000240)=ANY=[]) [ 1665.432170] FAT-fs (loop0): invalid media value (0x00) [ 1665.433465] FAT-fs (loop0): Can't find a valid FAT filesystem 23:47:15 executing program 0: perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = syz_mount_image$vfat(&(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x0, 0x2, &(0x7f0000000180)=[{&(0x7f0000000140)="eb3c906d6b66732e66617400020801000470008400", 0x15}, {0x0, 0x0, 0x1000a00}], 0x0, &(0x7f0000000240)=ANY=[]) openat2(r0, &(0x7f0000000100)='./file0\x00', &(0x7f00000001c0)={0x40040, 0x8}, 0x18) 23:47:15 executing program 7: perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_mount_image$vfat(&(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x2010, 0x2, &(0x7f0000000180)=[{&(0x7f0000000140)="eb3c906d6b66732e66617400020801000470008400f801", 0x17}, {0x0, 0x0, 0x1000a00}], 0x0, &(0x7f0000000240)=ANY=[]) 23:47:15 executing program 4: perf_event_open(&(0x7f0000001d80)={0x2, 0x80, 0x69, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = socket$inet6_udp(0xa, 0x2, 0x0) dup(0xffffffffffffffff) fstat(0xffffffffffffffff, 0x0) connect$inet6(r0, &(0x7f0000000600)={0xa, 0x0, 0x0, @dev, 0x2}, 0x1c) sendmmsg$inet6(r0, &(0x7f0000000080)=[{{0x0, 0x4168, &(0x7f00000004c0)=[{&(0x7f00000001c0)="4bc702854e3954b59347985ccc868289d3fe483d2c0900a2a1d12e33a66529e1f276fef452632dfa3c004ce3be84a5f66c29cd4ec39ae5206562fbc9ea3c0dbbebc22e628e147b0e9631f19b0ce0a48e0e675b2da3442226b898f1ddf8eabf133ab4a9cb0999c2ee1d3bd36d089b0d8e97ea00d4c5f6ad14dce058d595aacba2d587ff5eacd81b71a73f53ed276d1f3b3384bb2bfba4e0f37302e690df9e7024378ac754ac0576f996f3ee53d1034c7720767ddf2625817532f7ae89103367b73a36152b84c38bc227ba9e9ff48bcfe027585cf14bff37a888", 0xff41}], 0x1}}], 0x1, 0x0) 23:47:15 executing program 5: perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r0 = syz_mount_image$vfat(&(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x0, 0x2, &(0x7f0000000180)=[{&(0x7f0000000140)="eb3c906d6b66732e66617400020801000470008400f801", 0x17}, {0x0, 0x0, 0x1000a00}], 0x0, &(0x7f0000000240)=ANY=[]) openat2(r0, &(0x7f0000000100)='./file0\x00', &(0x7f00000001c0)={0x40040, 0x400000000000000}, 0x18) [ 1665.542568] FAT-fs (loop0): invalid media value (0x00) [ 1665.543873] FAT-fs (loop0): Can't find a valid FAT filesystem 23:47:28 executing program 4: perf_event_open(&(0x7f0000001d80)={0x2, 0x80, 0x69, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = socket$inet6_udp(0xa, 0x2, 0x0) dup(0xffffffffffffffff) fstat(0xffffffffffffffff, 0x0) connect$inet6(r0, &(0x7f0000000600)={0xa, 0x0, 0x0, @dev, 0x2}, 0x1c) sendmmsg$inet6(r0, &(0x7f0000000080)=[{{0x0, 0x46b1, &(0x7f00000004c0)=[{&(0x7f00000001c0)="4bc702854e3954b59347985ccc868289d3fe483d2c0900a2a1d12e33a66529e1f276fef452632dfa3c004ce3be84a5f66c29cd4ec39ae5206562fbc9ea3c0dbbebc22e628e147b0e9631f19b0ce0a48e0e675b2da3442226b898f1ddf8eabf133ab4a9cb0999c2ee1d3bd36d089b0d8e97ea00d4c5f6ad14dce058d595aacba2d587ff5eacd81b71a73f53ed276d1f3b3384bb2bfba4e0f37302e690df9e7024378ac754ac0576f996f3ee53d1034c7720767ddf2625817532f7ae89103367b73a36152b84c38bc227ba9e9ff48bcfe027585cf14bff37a888", 0xff41}], 0x1}}], 0x1, 0x0) 23:47:28 executing program 1: perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) syz_mount_image$vfat(&(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x0, 0x0, 0x0, 0x0, &(0x7f0000000240)=ANY=[]) 23:47:28 executing program 7: perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_mount_image$vfat(&(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x2e00, 0x2, &(0x7f0000000180)=[{&(0x7f0000000140)="eb3c906d6b66732e66617400020801000470008400f801", 0x17}, {0x0, 0x0, 0x1000a00}], 0x0, &(0x7f0000000240)=ANY=[]) 23:47:28 executing program 6: r0 = syz_open_dev$tty20(0xc, 0x4, 0x1) r1 = openat$zero(0xffffffffffffff9c, &(0x7f0000000040), 0x2000, 0x0) ioctl$TIOCSTI(r1, 0x5412, &(0x7f0000000080)=0x8d) ioctl$VT_RESIZEX(r0, 0x560a, &(0x7f0000000000)={0x0, 0x0, 0x0, 0x0, 0x1d}) 23:47:28 executing program 3: r0 = syz_open_dev$tty1(0xc, 0x4, 0x1) writev(r0, &(0x7f0000000080)=[{&(0x7f0000001380)="3ead823d27b1f38d16b83fca92a1f8f4a796fca264eb3d23f624cb63a9a475c4336e3015462fa8b76b1c5fb9b159eaa406698e2f3dcd71c5ba4e666731496d8ddd1bbaae50714c9ccdc53444b41f6df995ce4a1e6b9807bce8fa3e046360e5d1b228a3367e2315a985fcf8542b6a2e58eff19d99aa1de724345dd5786c63d31c197c760ac73dc10c91fcf49125d4dd5e1d4c952eeabf70f80b092c914e00cd0e75bdea96065d75447e5e2917619f3d3e2662b99fac83e65ca6fb6fc547ce903e960595bafc4990dfa6263d2dd2268b3f6f3df3b1603e198bc4011a4b1c43c686ff811d9a346aabe8c9f33c2c5e0ab15e288917c0de80a9d49e72e1efc8db344b3a715702fd03a0e9e2387cc5032967d44d8b3b68383f6c89c842ec2eadc06d1e5133067d6b3f11647561748b7d4185cab428d5fbf98ea4100f2276af2fec68da7e57d65c185e261b6790c65ebb5f98cb027d065d424a65705b15be6eda2b4ba4f6a337f711fc7088d216cb59a744bc5a0d0f059b11d6d7c0784065277076525027223b82fdcc899b2de92a710082edf89a57c0bf416899d2f8ad2cad43e5018b52025096784ecd82a29c00a8bf5ffa6e3b75fe641acf39885c084ae7e546f04224aeb23f61d99fc464a533fc6b87790e335057b54dbff233ced4a7ef90884dc7d90d678cc080024b9b4a", 0x1ea}], 0x1) 23:47:28 executing program 2: r0 = add_key$keyring(&(0x7f0000000040), &(0x7f00000002c0)={'syz', 0x3}, 0x0, 0x0, 0xfffffffffffffffd) keyctl$KEYCTL_RESTRICT_KEYRING(0xf, r0, 0x0, 0x0) connect$inet(0xffffffffffffffff, &(0x7f0000000140)={0x2, 0x0, @dev}, 0x10) r1 = syz_open_dev$sg(&(0x7f0000000040), 0x0, 0x0) ioctl$BLKTRACETEARDOWN(r1, 0x1276, 0x0) ioctl$BLKTRACESETUP(r1, 0xc0481273, &(0x7f0000000140)={'\x00', 0x0, 0x4, 0x8, 0x76}) (fail_nth: 57) 23:47:28 executing program 5: perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r0 = syz_mount_image$vfat(&(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x0, 0x2, &(0x7f0000000180)=[{&(0x7f0000000140)="eb3c906d6b66732e66617400020801000470008400f801", 0x17}, {0x0, 0x0, 0x1000a00}], 0x0, &(0x7f0000000240)=ANY=[]) openat2(r0, &(0x7f0000000100)='./file0\x00', &(0x7f00000001c0)={0x40040, 0x500000000000000}, 0x18) 23:47:28 executing program 0: perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = syz_mount_image$vfat(&(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x0, 0x2, &(0x7f0000000180)=[{&(0x7f0000000140)="eb3c906d6b66732e66617400020801000470008400", 0x15}, {0x0, 0x0, 0x1000a00}], 0x0, &(0x7f0000000240)=ANY=[]) openat2(r0, &(0x7f0000000100)='./file0\x00', &(0x7f00000001c0)={0x40040, 0x8}, 0x18) 23:47:28 executing program 1: perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) syz_mount_image$vfat(&(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x0, 0x0, 0x0, 0x0, &(0x7f0000000240)=ANY=[]) 23:47:28 executing program 7: perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_mount_image$vfat(&(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x2f00, 0x2, &(0x7f0000000180)=[{&(0x7f0000000140)="eb3c906d6b66732e66617400020801000470008400f801", 0x17}, {0x0, 0x0, 0x1000a00}], 0x0, &(0x7f0000000240)=ANY=[]) [ 1677.962924] FAULT_INJECTION: forcing a failure. [ 1677.962924] name failslab, interval 1, probability 0, space 0, times 0 [ 1677.962939] CPU: 0 PID: 9493 Comm: syz-executor.2 Not tainted 5.10.194 #1 [ 1677.962945] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1677.962949] Call Trace: [ 1677.962969] dump_stack+0x107/0x167 23:47:28 executing program 1: perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) syz_mount_image$vfat(&(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x0, 0x0, 0x0, 0x0, &(0x7f0000000240)=ANY=[]) [ 1677.962984] should_fail.cold+0x5/0xa [ 1677.962998] ? create_object.isra.0+0x3a/0xa20 [ 1677.963012] should_failslab+0x5/0x20 23:47:28 executing program 2: r0 = add_key$keyring(&(0x7f0000000040), &(0x7f00000002c0)={'syz', 0x3}, 0x0, 0x0, 0xfffffffffffffffd) keyctl$KEYCTL_RESTRICT_KEYRING(0xf, r0, 0x0, 0x0) connect$inet(0xffffffffffffffff, &(0x7f0000000140)={0x2, 0x0, @dev}, 0x10) r1 = syz_open_dev$sg(&(0x7f0000000040), 0x0, 0x0) ioctl$BLKTRACETEARDOWN(r1, 0x1276, 0x0) ioctl$BLKTRACESETUP(r1, 0xc0481273, &(0x7f0000000140)={'\x00', 0x0, 0x4, 0x8, 0x76}) (fail_nth: 58) [ 1677.963023] kmem_cache_alloc+0x5b/0x310 [ 1677.963037] ? mark_held_locks+0x9e/0xe0 [ 1677.963050] create_object.isra.0+0x3a/0xa20 [ 1677.963062] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 1677.963075] __kmalloc+0x16e/0x390 [ 1677.963092] relay_open_buf.part.0+0xf9/0xc00 [ 1677.963106] ? _find_next_bit.constprop.0+0x1a3/0x200 [ 1677.963121] relay_open+0x531/0xa10 [ 1677.963138] do_blk_trace_setup+0x4cf/0xc10 [ 1677.963149] ? _copy_from_user+0xfb/0x1b0 [ 1677.963161] __blk_trace_setup+0xca/0x180 [ 1677.963171] ? do_blk_trace_setup+0xc10/0xc10 [ 1677.963189] ? perf_trace_lock+0xac/0x490 [ 1677.963205] blk_trace_setup+0x43/0x60 [ 1677.963219] sg_ioctl_common+0x634/0x2570 [ 1677.963232] ? __sanitizer_cov_trace_switch+0x45/0x80 [ 1677.963243] ? do_vfs_ioctl+0x283/0x10d0 [ 1677.963252] ? sg_write+0x120/0x120 [ 1677.963266] ? generic_block_fiemap+0x60/0x60 [ 1677.963280] ? __mutex_unlock_slowpath+0xe1/0x600 [ 1677.963302] ? selinux_file_ioctl+0xb6/0x270 [ 1677.963311] ? sg_compat_ioctl+0x120/0x120 [ 1677.963322] sg_ioctl+0x8f/0x120 [ 1677.963334] __x64_sys_ioctl+0x19a/0x210 [ 1677.963348] do_syscall_64+0x33/0x40 [ 1677.963360] entry_SYSCALL_64_after_hwframe+0x62/0xc7 [ 1677.963368] RIP: 0033:0x7f661a573b19 [ 1677.963379] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1677.963385] RSP: 002b:00007f6617ae9188 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 1677.963397] RAX: ffffffffffffffda RBX: 00007f661a686f60 RCX: 00007f661a573b19 [ 1677.963404] RDX: 0000000020000140 RSI: 00000000c0481273 RDI: 0000000000000003 [ 1677.963411] RBP: 00007f6617ae91d0 R08: 0000000000000000 R09: 0000000000000000 [ 1677.963417] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 23:47:28 executing program 7: perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_mount_image$vfat(&(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x3f00, 0x2, &(0x7f0000000180)=[{&(0x7f0000000140)="eb3c906d6b66732e66617400020801000470008400f801", 0x17}, {0x0, 0x0, 0x1000a00}], 0x0, &(0x7f0000000240)=ANY=[]) 23:47:28 executing program 4: perf_event_open(&(0x7f0000001d80)={0x2, 0x80, 0x69, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = socket$inet6_udp(0xa, 0x2, 0x0) dup(0xffffffffffffffff) fstat(0xffffffffffffffff, 0x0) connect$inet6(r0, &(0x7f0000000600)={0xa, 0x0, 0x0, @dev, 0x2}, 0x1c) sendmmsg$inet6(r0, &(0x7f0000000080)=[{{0x0, 0x494c, &(0x7f00000004c0)=[{&(0x7f00000001c0)="4bc702854e3954b59347985ccc868289d3fe483d2c0900a2a1d12e33a66529e1f276fef452632dfa3c004ce3be84a5f66c29cd4ec39ae5206562fbc9ea3c0dbbebc22e628e147b0e9631f19b0ce0a48e0e675b2da3442226b898f1ddf8eabf133ab4a9cb0999c2ee1d3bd36d089b0d8e97ea00d4c5f6ad14dce058d595aacba2d587ff5eacd81b71a73f53ed276d1f3b3384bb2bfba4e0f37302e690df9e7024378ac754ac0576f996f3ee53d1034c7720767ddf2625817532f7ae89103367b73a36152b84c38bc227ba9e9ff48bcfe027585cf14bff37a888", 0xff41}], 0x1}}], 0x1, 0x0) 23:47:28 executing program 0: perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = syz_mount_image$vfat(&(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x0, 0x2, &(0x7f0000000180)=[{&(0x7f0000000140)="eb3c906d6b66732e66617400020801000470008400", 0x15}, {0x0, 0x0, 0x1000a00}], 0x0, &(0x7f0000000240)=ANY=[]) openat2(r0, &(0x7f0000000100)='./file0\x00', &(0x7f00000001c0)={0x40040, 0x8}, 0x18) 23:47:28 executing program 6: r0 = syz_open_dev$tty20(0xc, 0x4, 0x1) ioctl$AUTOFS_DEV_IOCTL_PROTOSUBVER(0xffffffffffffffff, 0xc0189373, &(0x7f0000000000)=ANY=[@ANYBLOB="180000000100000418000000502887bb101cded36767ea2691b65b7c39f5a44c15833095eb8f2c2caf6793b2627c5a0a8f4f31c9dce4cca4dfbe356162df2c1e6014237a280a7467f67039867fffaf", @ANYRES32=r0, @ANYBLOB="05000000050000002e2f66696c653000"]) mmap(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x2000001, 0x20010, r0, 0x824ad000) pipe(&(0x7f00000000c0)={0xffffffffffffffff}) ioctl$VT_RESIZEX(r1, 0x560a, &(0x7f0000000080)={0x4, 0x0, 0x3, 0x800, 0x1d, 0x4}) [ 1677.963424] R13: 00007ffd527cbf9f R14: 00007f6617ae9300 R15: 0000000000022000 23:47:28 executing program 5: perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r0 = syz_mount_image$vfat(&(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x0, 0x2, &(0x7f0000000180)=[{&(0x7f0000000140)="eb3c906d6b66732e66617400020801000470008400f801", 0x17}, {0x0, 0x0, 0x1000a00}], 0x0, &(0x7f0000000240)=ANY=[]) openat2(r0, &(0x7f0000000100)='./file0\x00', &(0x7f00000001c0)={0x40040, 0x600000000000000}, 0x18) [ 1677.986927] FAT-fs (loop0): invalid media value (0x00) [ 1677.986941] FAT-fs (loop0): Can't find a valid FAT filesystem [ 1678.099954] FAULT_INJECTION: forcing a failure. [ 1678.099954] name failslab, interval 1, probability 0, space 0, times 0 [ 1678.099977] CPU: 1 PID: 9506 Comm: syz-executor.2 Not tainted 5.10.194 #1 [ 1678.099989] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1678.099995] Call Trace: 23:47:28 executing program 1: perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) syz_mount_image$vfat(&(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x0, 0x1, &(0x7f0000000180)=[{&(0x7f0000000140)="eb3c906d6b66732e66617400020801000470008400f801", 0x17}], 0x0, &(0x7f0000000240)=ANY=[]) [ 1678.100023] dump_stack+0x107/0x167 [ 1678.100049] should_fail.cold+0x5/0xa [ 1678.100073] ? relay_open_buf.part.0+0x472/0xc00 [ 1678.100097] should_failslab+0x5/0x20 [ 1678.100115] __kmalloc+0x72/0x390 [ 1678.100137] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 1678.100162] relay_open_buf.part.0+0x472/0xc00 [ 1678.100198] relay_open+0x531/0xa10 [ 1678.100228] do_blk_trace_setup+0x4cf/0xc10 [ 1678.100251] ? _copy_from_user+0xfb/0x1b0 [ 1678.100280] __blk_trace_setup+0xca/0x180 [ 1678.100300] ? do_blk_trace_setup+0xc10/0xc10 [ 1678.100334] ? perf_trace_lock+0xac/0x490 [ 1678.100365] blk_trace_setup+0x43/0x60 [ 1678.100389] sg_ioctl_common+0x634/0x2570 [ 1678.100413] ? __sanitizer_cov_trace_switch+0x45/0x80 [ 1678.100434] ? do_vfs_ioctl+0x283/0x10d0 [ 1678.100451] ? sg_write+0x120/0x120 [ 1678.100470] ? generic_block_fiemap+0x60/0x60 [ 1678.100494] ? __mutex_unlock_slowpath+0xe1/0x600 [ 1678.100535] ? selinux_file_ioctl+0xb6/0x270 [ 1678.100552] ? sg_compat_ioctl+0x120/0x120 [ 1678.100573] sg_ioctl+0x8f/0x120 [ 1678.100596] __x64_sys_ioctl+0x19a/0x210 [ 1678.100623] do_syscall_64+0x33/0x40 [ 1678.100645] entry_SYSCALL_64_after_hwframe+0x62/0xc7 [ 1678.100659] RIP: 0033:0x7f661a573b19 [ 1678.100680] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1678.100691] RSP: 002b:00007f6617ae9188 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 1678.100715] RAX: ffffffffffffffda RBX: 00007f661a686f60 RCX: 00007f661a573b19 [ 1678.100727] RDX: 0000000020000140 RSI: 00000000c0481273 RDI: 0000000000000003 [ 1678.100739] RBP: 00007f6617ae91d0 R08: 0000000000000000 R09: 0000000000000000 [ 1678.100752] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 1678.100764] R13: 00007ffd527cbf9f R14: 00007f6617ae9300 R15: 0000000000022000 [ 1678.172259] FAT-fs (loop0): invalid media value (0x00) [ 1678.172546] FAT-fs (loop0): Can't find a valid FAT filesystem [ 1678.202745] FAT-fs (loop1): bogus number of reserved sectors [ 1678.202754] FAT-fs (loop1): Can't find a valid FAT filesystem 23:47:41 executing program 3: r0 = syz_open_dev$tty1(0xc, 0x4, 0x1) writev(r0, &(0x7f0000000080)=[{&(0x7f0000001380)="3ead823d27b1f38d16b83fca92a1f8f4a796249b64eb3d23f624cb63a9a475c4336e3015462fa8b76b1c5fb9b159eaa406698e2f3dcd71c5ba4e666731496d8ddd1bbaae50714c9ccdc53444b41f6df995ce4a1e6b9807bce8fa3e046360e5d1b228a3367e2315a985fcf8542b6a2e58eff19d99aa1de724345dd5786c63d31c197c760ac73dc10c91fcf49125d4dd5e1d4c952eeabf70f80b092c914e00cd0e75bdea96065d75447e5e2917619f3d3e2662b99fac83e65ca6fb6fc547ce903e960595bafc4990dfa6263d2dd2268b3f6f3df3b1603e198bc4011a4b1c43c686ff811d9a346aabe8c9f33c2c5e0ab15e288917c0de80a9d49e72e1efc8db344b3a715702fd03a0e9e2387cc5032967d44d8b3b68383f6c89c842ec2eadc06d1e5133067d6b3f11647561748b7d4185cab428d5fbf98ea4100f2276af2fec68da7e57d65c185e261b6790c65ebb5f98cb027d065d424a65705b15be6eda2b4ba4f6a337f711fc7088d216cb59a744bc5a0d0f059b11d6d7c0784065277076525027223b82fdcc899b2de92a710082edf89a57c0bf416899d2f8ad2cad43e5018b52025096784ecd82a29c00a8bf5ffa6e3b75fe641acf39885c084ae7e546f04224aeb23f61d99fc464a533fc6b87790e335057b54dbff233ced4a7ef90884dc7d90d678cc080024b9b4a", 0x1ea}], 0x1) 23:47:41 executing program 5: perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r0 = syz_mount_image$vfat(&(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x0, 0x2, &(0x7f0000000180)=[{&(0x7f0000000140)="eb3c906d6b66732e66617400020801000470008400f801", 0x17}, {0x0, 0x0, 0x1000a00}], 0x0, &(0x7f0000000240)=ANY=[]) openat2(r0, &(0x7f0000000100)='./file0\x00', &(0x7f00000001c0)={0x40040, 0x700000000000000}, 0x18) 23:47:41 executing program 6: r0 = syz_open_dev$tty20(0xc, 0x4, 0x0) r1 = openat$hpet(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0) openat$bsg(0xffffffffffffff9c, &(0x7f00000000c0), 0x400500, 0x0) openat$zero(0xffffffffffffff9c, &(0x7f0000000100), 0x200000, 0x0) r2 = openat$hwrng(0xffffffffffffff9c, &(0x7f0000000140), 0x94000, 0x0) read$eventfd(r2, 0x0, 0x32) r3 = socket$nl_generic(0x10, 0x3, 0x10) ioctl$FS_IOC_RESVSP(r3, 0x40305828, &(0x7f0000000180)={0x0, 0x2, 0x9, 0x8281}) ioctl$TIOCGSOFTCAR(r1, 0x5419, &(0x7f0000000040)) ioctl$VT_RESIZEX(r0, 0x560a, &(0x7f0000000000)={0x0, 0x0, 0x0, 0x0, 0x1d}) 23:47:41 executing program 7: perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_mount_image$vfat(&(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x4000, 0x2, &(0x7f0000000180)=[{&(0x7f0000000140)="eb3c906d6b66732e66617400020801000470008400f801", 0x17}, {0x0, 0x0, 0x1000a00}], 0x0, &(0x7f0000000240)=ANY=[]) 23:47:41 executing program 4: perf_event_open(&(0x7f0000001d80)={0x2, 0x80, 0x69, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = socket$inet6_udp(0xa, 0x2, 0x0) dup(0xffffffffffffffff) fstat(0xffffffffffffffff, 0x0) connect$inet6(r0, &(0x7f0000000600)={0xa, 0x0, 0x0, @dev, 0x2}, 0x1c) sendmmsg$inet6(r0, &(0x7f0000000080)=[{{0x0, 0x4c49, &(0x7f00000004c0)=[{&(0x7f00000001c0)="4bc702854e3954b59347985ccc868289d3fe483d2c0900a2a1d12e33a66529e1f276fef452632dfa3c004ce3be84a5f66c29cd4ec39ae5206562fbc9ea3c0dbbebc22e628e147b0e9631f19b0ce0a48e0e675b2da3442226b898f1ddf8eabf133ab4a9cb0999c2ee1d3bd36d089b0d8e97ea00d4c5f6ad14dce058d595aacba2d587ff5eacd81b71a73f53ed276d1f3b3384bb2bfba4e0f37302e690df9e7024378ac754ac0576f996f3ee53d1034c7720767ddf2625817532f7ae89103367b73a36152b84c38bc227ba9e9ff48bcfe027585cf14bff37a888", 0xff41}], 0x1}}], 0x1, 0x0) 23:47:41 executing program 2: r0 = add_key$keyring(&(0x7f0000000040), &(0x7f00000002c0)={'syz', 0x3}, 0x0, 0x0, 0xfffffffffffffffd) keyctl$KEYCTL_RESTRICT_KEYRING(0xf, r0, 0x0, 0x0) connect$inet(0xffffffffffffffff, &(0x7f0000000140)={0x2, 0x0, @dev}, 0x10) r1 = syz_open_dev$sg(&(0x7f0000000040), 0x0, 0x0) ioctl$BLKTRACETEARDOWN(r1, 0x1276, 0x0) ioctl$BLKTRACESETUP(r1, 0xc0481273, &(0x7f0000000140)={'\x00', 0x0, 0x4, 0x8, 0x76}) (fail_nth: 59) 23:47:41 executing program 0: perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = syz_mount_image$vfat(&(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x0, 0x2, &(0x7f0000000180)=[{&(0x7f0000000140)="eb3c906d6b66732e66617400020801000470008400f8", 0x16}, {0x0, 0x0, 0x1000a00}], 0x0, &(0x7f0000000240)=ANY=[]) openat2(r0, &(0x7f0000000100)='./file0\x00', &(0x7f00000001c0)={0x40040, 0x8}, 0x18) 23:47:41 executing program 1: perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) syz_mount_image$vfat(&(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x0, 0x1, &(0x7f0000000180)=[{&(0x7f0000000140)="eb3c906d6b66732e66617400020801000470008400f801", 0x17}], 0x0, &(0x7f0000000240)=ANY=[]) [ 1691.774237] FAULT_INJECTION: forcing a failure. [ 1691.774237] name failslab, interval 1, probability 0, space 0, times 0 [ 1691.774252] CPU: 0 PID: 9547 Comm: syz-executor.2 Not tainted 5.10.194 #1 [ 1691.774262] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1691.774267] Call Trace: [ 1691.774288] dump_stack+0x107/0x167 [ 1691.774303] should_fail.cold+0x5/0xa 23:47:41 executing program 2: r0 = add_key$keyring(&(0x7f0000000040), &(0x7f00000002c0)={'syz', 0x3}, 0x0, 0x0, 0xfffffffffffffffd) keyctl$KEYCTL_RESTRICT_KEYRING(0xf, r0, 0x0, 0x0) connect$inet(0xffffffffffffffff, &(0x7f0000000140)={0x2, 0x0, @dev}, 0x10) r1 = syz_open_dev$sg(&(0x7f0000000040), 0x0, 0x0) ioctl$BLKTRACETEARDOWN(r1, 0x1276, 0x0) ioctl$BLKTRACESETUP(r1, 0xc0481273, &(0x7f0000000140)={'\x00', 0x0, 0x4, 0x8, 0x76}) (fail_nth: 60) [ 1691.774318] ? create_object.isra.0+0x3a/0xa20 [ 1691.774332] should_failslab+0x5/0x20 [ 1691.774344] kmem_cache_alloc+0x5b/0x310 [ 1691.774358] ? mark_held_locks+0x9e/0xe0 [ 1691.774372] create_object.isra.0+0x3a/0xa20 [ 1691.774384] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 1691.774399] __kmalloc+0x16e/0x390 [ 1691.774416] relay_open_buf.part.0+0x472/0xc00 [ 1691.774436] relay_open+0x531/0xa10 [ 1691.774455] do_blk_trace_setup+0x4cf/0xc10 [ 1691.774468] ? _copy_from_user+0xfb/0x1b0 [ 1691.774481] __blk_trace_setup+0xca/0x180 [ 1691.774492] ? do_blk_trace_setup+0xc10/0xc10 [ 1691.774511] ? perf_trace_lock+0xac/0x490 [ 1691.774529] blk_trace_setup+0x43/0x60 [ 1691.774544] sg_ioctl_common+0x634/0x2570 [ 1691.774557] ? __sanitizer_cov_trace_switch+0x45/0x80 [ 1691.774570] ? do_vfs_ioctl+0x283/0x10d0 [ 1691.774580] ? sg_write+0x120/0x120 [ 1691.774591] ? generic_block_fiemap+0x60/0x60 [ 1691.774605] ? __mutex_unlock_slowpath+0xe1/0x600 [ 1691.774629] ? selinux_file_ioctl+0xb6/0x270 [ 1691.774639] ? sg_compat_ioctl+0x120/0x120 23:47:41 executing program 1: perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) syz_mount_image$vfat(&(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x0, 0x1, &(0x7f0000000180)=[{&(0x7f0000000140)="eb3c906d6b66732e66617400020801000470008400f801", 0x17}], 0x0, &(0x7f0000000240)=ANY=[]) [ 1691.774651] sg_ioctl+0x8f/0x120 [ 1691.774664] __x64_sys_ioctl+0x19a/0x210 [ 1691.774679] do_syscall_64+0x33/0x40 [ 1691.774692] entry_SYSCALL_64_after_hwframe+0x62/0xc7 [ 1691.774700] RIP: 0033:0x7f661a573b19 [ 1691.774713] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1691.774719] RSP: 002b:00007f6617ae9188 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 1691.774733] RAX: ffffffffffffffda RBX: 00007f661a686f60 RCX: 00007f661a573b19 [ 1691.774739] RDX: 0000000020000140 RSI: 00000000c0481273 RDI: 0000000000000003 [ 1691.774746] RBP: 00007f6617ae91d0 R08: 0000000000000000 R09: 0000000000000000 [ 1691.774753] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 1691.774760] R13: 00007ffd527cbf9f R14: 00007f6617ae9300 R15: 0000000000022000 [ 1691.788777] FAT-fs (loop1): bogus number of reserved sectors [ 1691.788786] FAT-fs (loop1): Can't find a valid FAT filesystem [ 1691.822213] FAT-fs (loop0): bogus number of FAT sectors [ 1691.862878] FAT-fs (loop0): Can't find a valid FAT filesystem [ 1691.883035] FAULT_INJECTION: forcing a failure. [ 1691.883035] name fail_page_alloc, interval 1, probability 0, space 0, times 0 [ 1691.884442] CPU: 0 PID: 9556 Comm: syz-executor.2 Not tainted 5.10.194 #1 [ 1691.885244] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1691.886183] Call Trace: [ 1691.886495] dump_stack+0x107/0x167 [ 1691.886914] should_fail.cold+0x5/0xa [ 1691.887356] __alloc_pages_nodemask+0x182/0x600 [ 1691.887884] ? __kmalloc+0x16e/0x390 [ 1691.888316] ? __alloc_pages_slowpath.constprop.0+0x2130/0x2130 [ 1691.889019] ? trace_hardirqs_on+0x5b/0x180 [ 1691.889512] alloc_pages_current+0x187/0x280 [ 1691.890023] relay_open_buf.part.0+0x2a5/0xc00 [ 1691.890548] relay_open+0x531/0xa10 [ 1691.890969] do_blk_trace_setup+0x4cf/0xc10 [ 1691.891460] ? _copy_from_user+0xfb/0x1b0 [ 1691.891933] __blk_trace_setup+0xca/0x180 [ 1691.892406] ? do_blk_trace_setup+0xc10/0xc10 [ 1691.892929] ? perf_trace_lock+0xac/0x490 [ 1691.893416] blk_trace_setup+0x43/0x60 [ 1691.893863] sg_ioctl_common+0x634/0x2570 [ 1691.894351] ? __sanitizer_cov_trace_switch+0x45/0x80 [ 1691.894967] ? do_vfs_ioctl+0x283/0x10d0 [ 1691.895455] ? sg_write+0x120/0x120 [ 1691.895891] ? generic_block_fiemap+0x60/0x60 [ 1691.896430] ? __mutex_unlock_slowpath+0xe1/0x600 [ 1691.897025] ? selinux_file_ioctl+0xb6/0x270 [ 1691.897560] ? sg_compat_ioctl+0x120/0x120 [ 1691.898063] sg_ioctl+0x8f/0x120 [ 1691.898466] __x64_sys_ioctl+0x19a/0x210 [ 1691.898953] do_syscall_64+0x33/0x40 [ 1691.899394] entry_SYSCALL_64_after_hwframe+0x62/0xc7 [ 1691.899997] RIP: 0033:0x7f661a573b19 [ 1691.900438] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1691.902623] RSP: 002b:00007f6617ae9188 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 1691.903532] RAX: ffffffffffffffda RBX: 00007f661a686f60 RCX: 00007f661a573b19 [ 1691.904373] RDX: 0000000020000140 RSI: 00000000c0481273 RDI: 0000000000000003 [ 1691.905235] RBP: 00007f6617ae91d0 R08: 0000000000000000 R09: 0000000000000000 [ 1691.906086] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 1691.906941] R13: 00007ffd527cbf9f R14: 00007f6617ae9300 R15: 0000000000022000 [ 1691.925954] FAT-fs (loop1): bogus number of reserved sectors [ 1691.926796] FAT-fs (loop1): Can't find a valid FAT filesystem 23:47:42 executing program 6: r0 = syz_open_dev$tty20(0xc, 0x4, 0x1) ioctl$VT_RESIZEX(r0, 0x560a, &(0x7f0000000000)={0x0, 0x0, 0x0, 0x0, 0x1d}) r1 = openat2(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', &(0x7f0000000080)={0x50bf00}, 0x18) openat2(r1, &(0x7f00000000c0)='./file0\x00', &(0x7f0000000100)={0x100, 0x0, 0x2}, 0x18) 23:47:42 executing program 4: perf_event_open(&(0x7f0000001d80)={0x2, 0x80, 0x69, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = socket$inet6_udp(0xa, 0x2, 0x0) dup(0xffffffffffffffff) fstat(0xffffffffffffffff, 0x0) connect$inet6(r0, &(0x7f0000000600)={0xa, 0x0, 0x0, @dev, 0x2}, 0x1c) sendmmsg$inet6(r0, &(0x7f0000000080)=[{{0x0, 0x5130, &(0x7f00000004c0)=[{&(0x7f00000001c0)="4bc702854e3954b59347985ccc868289d3fe483d2c0900a2a1d12e33a66529e1f276fef452632dfa3c004ce3be84a5f66c29cd4ec39ae5206562fbc9ea3c0dbbebc22e628e147b0e9631f19b0ce0a48e0e675b2da3442226b898f1ddf8eabf133ab4a9cb0999c2ee1d3bd36d089b0d8e97ea00d4c5f6ad14dce058d595aacba2d587ff5eacd81b71a73f53ed276d1f3b3384bb2bfba4e0f37302e690df9e7024378ac754ac0576f996f3ee53d1034c7720767ddf2625817532f7ae89103367b73a36152b84c38bc227ba9e9ff48bcfe027585cf14bff37a888", 0xff41}], 0x1}}], 0x1, 0x0) 23:47:42 executing program 7: perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_mount_image$vfat(&(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x4800, 0x2, &(0x7f0000000180)=[{&(0x7f0000000140)="eb3c906d6b66732e66617400020801000470008400f801", 0x17}, {0x0, 0x0, 0x1000a00}], 0x0, &(0x7f0000000240)=ANY=[]) 23:47:42 executing program 3: r0 = syz_open_dev$tty1(0xc, 0x4, 0x1) writev(r0, &(0x7f0000000080)=[{&(0x7f0000001380)="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", 0x1ea}], 0x1) 23:47:42 executing program 5: perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r0 = syz_mount_image$vfat(&(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x0, 0x2, &(0x7f0000000180)=[{&(0x7f0000000140)="eb3c906d6b66732e66617400020801000470008400f801", 0x17}, {0x0, 0x0, 0x1000a00}], 0x0, &(0x7f0000000240)=ANY=[]) openat2(r0, &(0x7f0000000100)='./file0\x00', &(0x7f00000001c0)={0x40040, 0x804000000000000}, 0x18) 23:47:56 executing program 6: r0 = syz_open_dev$tty20(0xc, 0x4, 0x1) ioctl$VT_RESIZEX(r0, 0x560a, &(0x7f0000000000)={0x0, 0x0, 0x0, 0x0, 0x1d}) socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000040)={0xffffffffffffffff}) epoll_ctl$EPOLL_CTL_DEL(0xffffffffffffffff, 0x2, r1) 23:47:56 executing program 5: perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r0 = syz_mount_image$vfat(&(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x0, 0x2, &(0x7f0000000180)=[{&(0x7f0000000140)="eb3c906d6b66732e66617400020801000470008400f801", 0x17}, {0x0, 0x0, 0x1000a00}], 0x0, &(0x7f0000000240)=ANY=[]) openat2(r0, &(0x7f0000000100)='./file0\x00', &(0x7f00000001c0)={0x40040, 0xf00000000000000}, 0x18) 23:47:56 executing program 1: perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) syz_mount_image$vfat(&(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x0, 0x2, &(0x7f0000000180)=[{&(0x7f0000000140)="eb3c906d6b66732e66617400020801000470008400f801", 0x17}, {0x0}], 0x0, &(0x7f0000000240)=ANY=[]) 23:47:56 executing program 2: r0 = add_key$keyring(&(0x7f0000000040), &(0x7f00000002c0)={'syz', 0x3}, 0x0, 0x0, 0xfffffffffffffffd) keyctl$KEYCTL_RESTRICT_KEYRING(0xf, r0, 0x0, 0x0) connect$inet(0xffffffffffffffff, &(0x7f0000000140)={0x2, 0x0, @dev}, 0x10) r1 = syz_open_dev$sg(&(0x7f0000000040), 0x0, 0x0) ioctl$BLKTRACETEARDOWN(r1, 0x1276, 0x0) ioctl$BLKTRACESETUP(r1, 0xc0481273, &(0x7f0000000140)={'\x00', 0x0, 0x4, 0x8, 0x76}) (fail_nth: 61) 23:47:56 executing program 7: perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_mount_image$vfat(&(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x4c00, 0x2, &(0x7f0000000180)=[{&(0x7f0000000140)="eb3c906d6b66732e66617400020801000470008400f801", 0x17}, {0x0, 0x0, 0x1000a00}], 0x0, &(0x7f0000000240)=ANY=[]) 23:47:56 executing program 3: r0 = syz_open_dev$tty1(0xc, 0x4, 0x1) writev(r0, &(0x7f0000000080)=[{&(0x7f0000001380)="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", 0x1ea}], 0x1) 23:47:56 executing program 4: perf_event_open(&(0x7f0000001d80)={0x2, 0x80, 0x69, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = socket$inet6_udp(0xa, 0x2, 0x0) dup(0xffffffffffffffff) fstat(0xffffffffffffffff, 0x0) connect$inet6(r0, &(0x7f0000000600)={0xa, 0x0, 0x0, @dev, 0x2}, 0x1c) sendmmsg$inet6(r0, &(0x7f0000000080)=[{{0x0, 0x51e1, &(0x7f00000004c0)=[{&(0x7f00000001c0)="4bc702854e3954b59347985ccc868289d3fe483d2c0900a2a1d12e33a66529e1f276fef452632dfa3c004ce3be84a5f66c29cd4ec39ae5206562fbc9ea3c0dbbebc22e628e147b0e9631f19b0ce0a48e0e675b2da3442226b898f1ddf8eabf133ab4a9cb0999c2ee1d3bd36d089b0d8e97ea00d4c5f6ad14dce058d595aacba2d587ff5eacd81b71a73f53ed276d1f3b3384bb2bfba4e0f37302e690df9e7024378ac754ac0576f996f3ee53d1034c7720767ddf2625817532f7ae89103367b73a36152b84c38bc227ba9e9ff48bcfe027585cf14bff37a888", 0xff41}], 0x1}}], 0x1, 0x0) 23:47:56 executing program 0: perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = syz_mount_image$vfat(&(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x0, 0x2, &(0x7f0000000180)=[{&(0x7f0000000140)="eb3c906d6b66732e66617400020801000470008400f8", 0x16}, {0x0, 0x0, 0x1000a00}], 0x0, &(0x7f0000000240)=ANY=[]) openat2(r0, &(0x7f0000000100)='./file0\x00', &(0x7f00000001c0)={0x40040, 0x8}, 0x18) [ 1706.355703] FAULT_INJECTION: forcing a failure. [ 1706.355703] name failslab, interval 1, probability 0, space 0, times 0 [ 1706.357646] CPU: 0 PID: 9587 Comm: syz-executor.2 Not tainted 5.10.194 #1 [ 1706.358784] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1706.360184] Call Trace: [ 1706.360632] dump_stack+0x107/0x167 [ 1706.361251] should_fail.cold+0x5/0xa [ 1706.361890] ? __get_vm_area_node+0xd4/0x340 [ 1706.362629] should_failslab+0x5/0x20 [ 1706.363259] kmem_cache_alloc_node_trace+0x59/0x340 [ 1706.364105] __get_vm_area_node+0xd4/0x340 [ 1706.364791] ? relay_open_buf.part.0+0x4cf/0xc00 [ 1706.365570] get_vm_area_caller+0x70/0xb0 [ 1706.366246] ? relay_open_buf.part.0+0x4cf/0xc00 [ 1706.367016] vmap+0xe9/0x2c0 [ 1706.367509] ? vunmap+0x70/0x70 [ 1706.368051] relay_open_buf.part.0+0x4cf/0xc00 [ 1706.368815] relay_open+0x531/0xa10 [ 1706.369432] do_blk_trace_setup+0x4cf/0xc10 [ 1706.370137] ? _copy_from_user+0xfb/0x1b0 [ 1706.370816] __blk_trace_setup+0xca/0x180 [ 1706.371500] ? do_blk_trace_setup+0xc10/0xc10 [ 1706.372245] ? perf_trace_lock+0xac/0x490 [ 1706.372933] blk_trace_setup+0x43/0x60 [ 1706.373586] sg_ioctl_common+0x634/0x2570 [ 1706.374317] ? __sanitizer_cov_trace_switch+0x45/0x80 [ 1706.375248] ? do_vfs_ioctl+0x283/0x10d0 [ 1706.375962] ? sg_write+0x120/0x120 [ 1706.376609] ? generic_block_fiemap+0x60/0x60 [ 1706.377439] ? __mutex_unlock_slowpath+0xe1/0x600 [ 1706.378290] ? selinux_file_ioctl+0xb6/0x270 [ 1706.379073] ? sg_compat_ioctl+0x120/0x120 [ 1706.379828] sg_ioctl+0x8f/0x120 [ 1706.380428] __x64_sys_ioctl+0x19a/0x210 [ 1706.381166] do_syscall_64+0x33/0x40 [ 1706.381830] entry_SYSCALL_64_after_hwframe+0x62/0xc7 [ 1706.382754] RIP: 0033:0x7f661a573b19 [ 1706.383418] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1706.386649] RSP: 002b:00007f6617ae9188 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 1706.387971] RAX: ffffffffffffffda RBX: 00007f661a686f60 RCX: 00007f661a573b19 [ 1706.389117] RDX: 0000000020000140 RSI: 00000000c0481273 RDI: 0000000000000003 [ 1706.390370] RBP: 00007f6617ae91d0 R08: 0000000000000000 R09: 0000000000000000 [ 1706.391569] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 1706.392751] R13: 00007ffd527cbf9f R14: 00007f6617ae9300 R15: 0000000000022000 23:47:56 executing program 6: openat(0xffffffffffffff9c, &(0x7f0000000000)='./file0\x00', 0x2100, 0x28) syz_open_dev$tty20(0xc, 0x4, 0x1) [ 1706.420374] FAT-fs (loop1): bogus number of reserved sectors [ 1706.420386] FAT-fs (loop1): Can't find a valid FAT filesystem [ 1706.429092] FAT-fs (loop0): bogus number of FAT sectors [ 1706.429106] FAT-fs (loop0): Can't find a valid FAT filesystem 23:47:56 executing program 4: perf_event_open(&(0x7f0000001d80)={0x2, 0x80, 0x69, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = socket$inet6_udp(0xa, 0x2, 0x0) dup(0xffffffffffffffff) fstat(0xffffffffffffffff, 0x0) connect$inet6(r0, &(0x7f0000000600)={0xa, 0x0, 0x0, @dev, 0x2}, 0x1c) sendmmsg$inet6(r0, &(0x7f0000000080)=[{{0x0, 0x51e3, &(0x7f00000004c0)=[{&(0x7f00000001c0)="4bc702854e3954b59347985ccc868289d3fe483d2c0900a2a1d12e33a66529e1f276fef452632dfa3c004ce3be84a5f66c29cd4ec39ae5206562fbc9ea3c0dbbebc22e628e147b0e9631f19b0ce0a48e0e675b2da3442226b898f1ddf8eabf133ab4a9cb0999c2ee1d3bd36d089b0d8e97ea00d4c5f6ad14dce058d595aacba2d587ff5eacd81b71a73f53ed276d1f3b3384bb2bfba4e0f37302e690df9e7024378ac754ac0576f996f3ee53d1034c7720767ddf2625817532f7ae89103367b73a36152b84c38bc227ba9e9ff48bcfe027585cf14bff37a888", 0xff41}], 0x1}}], 0x1, 0x0) 23:47:56 executing program 5: perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r0 = syz_mount_image$vfat(&(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x0, 0x2, &(0x7f0000000180)=[{&(0x7f0000000140)="eb3c906d6b66732e66617400020801000470008400f801", 0x17}, {0x0, 0x0, 0x1000a00}], 0x0, &(0x7f0000000240)=ANY=[]) openat2(r0, &(0x7f0000000100)='./file0\x00', &(0x7f00000001c0)={0x40040, 0x1800000000000000}, 0x18) 23:47:56 executing program 0: perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = syz_mount_image$vfat(&(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x0, 0x2, &(0x7f0000000180)=[{&(0x7f0000000140)="eb3c906d6b66732e66617400020801000470008400f8", 0x16}, {0x0, 0x0, 0x1000a00}], 0x0, &(0x7f0000000240)=ANY=[]) openat2(r0, &(0x7f0000000100)='./file0\x00', &(0x7f00000001c0)={0x40040, 0x8}, 0x18) 23:47:56 executing program 2: r0 = add_key$keyring(&(0x7f0000000040), &(0x7f00000002c0)={'syz', 0x3}, 0x0, 0x0, 0xfffffffffffffffd) keyctl$KEYCTL_RESTRICT_KEYRING(0xf, r0, 0x0, 0x0) connect$inet(0xffffffffffffffff, &(0x7f0000000140)={0x2, 0x0, @dev}, 0x10) r1 = syz_open_dev$sg(&(0x7f0000000040), 0x0, 0x0) ioctl$BLKTRACETEARDOWN(r1, 0x1276, 0x0) ioctl$BLKTRACESETUP(r1, 0xc0481273, &(0x7f0000000140)={'\x00', 0x0, 0x4, 0x8, 0x76}) (fail_nth: 62) 23:47:56 executing program 7: perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_mount_image$vfat(&(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x6800, 0x2, &(0x7f0000000180)=[{&(0x7f0000000140)="eb3c906d6b66732e66617400020801000470008400f801", 0x17}, {0x0, 0x0, 0x1000a00}], 0x0, &(0x7f0000000240)=ANY=[]) 23:47:56 executing program 3: r0 = syz_open_dev$tty1(0xc, 0x4, 0x1) writev(r0, &(0x7f0000000080)=[{&(0x7f0000001380)="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", 0x1ea}], 0x1) [ 1706.626315] FAULT_INJECTION: forcing a failure. [ 1706.626315] name failslab, interval 1, probability 0, space 0, times 0 [ 1706.627942] CPU: 0 PID: 9615 Comm: syz-executor.2 Not tainted 5.10.194 #1 [ 1706.628946] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1706.630142] Call Trace: [ 1706.630525] dump_stack+0x107/0x167 [ 1706.631051] should_fail.cold+0x5/0xa [ 1706.631598] ? create_object.isra.0+0x3a/0xa20 [ 1706.632247] should_failslab+0x5/0x20 [ 1706.632794] kmem_cache_alloc+0x5b/0x310 23:47:56 executing program 1: perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) syz_mount_image$vfat(&(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x0, 0x2, &(0x7f0000000180)=[{&(0x7f0000000140)="eb3c906d6b66732e66617400020801000470008400f801", 0x17}, {0x0}], 0x0, &(0x7f0000000240)=ANY=[]) [ 1706.633379] create_object.isra.0+0x3a/0xa20 [ 1706.634076] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 1706.634799] kmem_cache_alloc_node_trace+0x16d/0x340 [ 1706.635528] __get_vm_area_node+0xd4/0x340 [ 1706.636135] ? relay_open_buf.part.0+0x4cf/0xc00 [ 1706.636812] get_vm_area_caller+0x70/0xb0 [ 1706.637402] ? relay_open_buf.part.0+0x4cf/0xc00 [ 1706.638081] vmap+0xe9/0x2c0 23:47:56 executing program 6: r0 = syz_open_dev$tty20(0xc, 0x4, 0x1) r1 = openat$hpet(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0) read$eventfd(r1, 0x0, 0x0) ioctl$KDFONTOP_COPY(r1, 0x4b72, &(0x7f0000000440)={0x3, 0x0, 0x12, 0x7, 0x16, &(0x7f0000000040)}) ioctl$VT_RESIZEX(r0, 0x560a, &(0x7f0000000000)={0x0, 0x0, 0x0, 0x0, 0x1d}) r2 = openat$vcsa(0xffffffffffffff9c, &(0x7f0000000480), 0x800, 0x0) r3 = syz_mount_image$tmpfs(&(0x7f0000000000), &(0x7f0000000080)='./file0\x00', 0x0, 0x0, 0x0, 0x0, &(0x7f0000000600)=ANY=[]) mknodat$loop(r3, &(0x7f0000000300)='./file0\x00', 0x1000, 0x0) openat(r3, &(0x7f0000000140)='./file0\x00', 0x2, 0x0) openat(r3, &(0x7f0000000000)='./file0\x00', 0x0, 0x0) dup2(r3, r0) r4 = openat$cgroup_netprio_ifpriomap(r2, &(0x7f00000004c0), 0x2, 0x0) r5 = syz_mount_image$tmpfs(&(0x7f0000000000), &(0x7f0000000080)='./file0\x00', 0x0, 0x0, 0x0, 0x0, &(0x7f0000000600)=ANY=[]) mknodat$loop(r5, &(0x7f0000000300)='./file0\x00', 0x6000, 0x0) openat(r5, &(0x7f0000000140)='./file0\x00', 0x129000, 0x0) openat(r5, &(0x7f0000000000)='./file0\x00', 0x0, 0x0) ioctl$FICLONE(r4, 0x40049409, r5) [ 1706.638511] ? vunmap+0x70/0x70 [ 1706.639035] relay_open_buf.part.0+0x4cf/0xc00 [ 1706.639702] relay_open+0x531/0xa10 [ 1706.640224] do_blk_trace_setup+0x4cf/0xc10 [ 1706.640838] ? _copy_from_user+0xfb/0x1b0 [ 1706.641431] __blk_trace_setup+0xca/0x180 [ 1706.642011] ? do_blk_trace_setup+0xc10/0xc10 [ 1706.642655] ? perf_trace_lock+0xac/0x490 [ 1706.643248] blk_trace_setup+0x43/0x60 [ 1706.643801] sg_ioctl_common+0x634/0x2570 [ 1706.644392] ? __sanitizer_cov_trace_switch+0x45/0x80 [ 1706.645123] ? do_vfs_ioctl+0x283/0x10d0 [ 1706.645718] ? sg_write+0x120/0x120 [ 1706.646248] ? generic_block_fiemap+0x60/0x60 [ 1706.646881] ? __mutex_unlock_slowpath+0xe1/0x600 [ 1706.647585] ? selinux_file_ioctl+0xb6/0x270 [ 1706.648210] ? sg_compat_ioctl+0x120/0x120 [ 1706.648801] sg_ioctl+0x8f/0x120 [ 1706.649291] __x64_sys_ioctl+0x19a/0x210 [ 1706.649864] do_syscall_64+0x33/0x40 [ 1706.650385] entry_SYSCALL_64_after_hwframe+0x62/0xc7 [ 1706.651106] RIP: 0033:0x7f661a573b19 [ 1706.651635] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1706.654232] RSP: 002b:00007f6617ae9188 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 1706.655304] RAX: ffffffffffffffda RBX: 00007f661a686f60 RCX: 00007f661a573b19 [ 1706.656315] RDX: 0000000020000140 RSI: 00000000c0481273 RDI: 0000000000000003 [ 1706.657323] RBP: 00007f6617ae91d0 R08: 0000000000000000 R09: 0000000000000000 [ 1706.658338] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 1706.659349] R13: 00007ffd527cbf9f R14: 00007f6617ae9300 R15: 0000000000022000 23:47:56 executing program 4: perf_event_open(&(0x7f0000001d80)={0x2, 0x80, 0x69, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = socket$inet6_udp(0xa, 0x2, 0x0) dup(0xffffffffffffffff) fstat(0xffffffffffffffff, 0x0) connect$inet6(r0, &(0x7f0000000600)={0xa, 0x0, 0x0, @dev, 0x2}, 0x1c) sendmmsg$inet6(r0, &(0x7f0000000080)=[{{0x0, 0x5779, &(0x7f00000004c0)=[{&(0x7f00000001c0)="4bc702854e3954b59347985ccc868289d3fe483d2c0900a2a1d12e33a66529e1f276fef452632dfa3c004ce3be84a5f66c29cd4ec39ae5206562fbc9ea3c0dbbebc22e628e147b0e9631f19b0ce0a48e0e675b2da3442226b898f1ddf8eabf133ab4a9cb0999c2ee1d3bd36d089b0d8e97ea00d4c5f6ad14dce058d595aacba2d587ff5eacd81b71a73f53ed276d1f3b3384bb2bfba4e0f37302e690df9e7024378ac754ac0576f996f3ee53d1034c7720767ddf2625817532f7ae89103367b73a36152b84c38bc227ba9e9ff48bcfe027585cf14bff37a888", 0xff41}], 0x1}}], 0x1, 0x0) [ 1706.695891] FAT-fs (loop0): bogus number of FAT sectors [ 1706.696763] FAT-fs (loop0): Can't find a valid FAT filesystem [ 1706.711224] FAT-fs (loop1): bogus number of reserved sectors [ 1706.712087] FAT-fs (loop1): Can't find a valid FAT filesystem 23:47:56 executing program 3: r0 = syz_open_dev$tty1(0xc, 0x4, 0x1) writev(r0, &(0x7f0000000080)=[{&(0x7f0000001380)="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", 0x1ea}], 0x1) 23:47:56 executing program 1: perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) syz_mount_image$vfat(&(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x0, 0x2, &(0x7f0000000180)=[{&(0x7f0000000140)="eb3c906d6b66732e66617400020801000470008400f801", 0x17}, {0x0}], 0x0, &(0x7f0000000240)=ANY=[]) 23:47:56 executing program 0: perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = syz_mount_image$vfat(&(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x0, 0x2, &(0x7f0000000180)=[{&(0x7f0000000140)="eb3c906d6b66732e66617400020801000470008400f801", 0x17}, {0x0, 0x0, 0x1000a00}], 0x0, 0x0) openat2(r0, &(0x7f0000000100)='./file0\x00', &(0x7f00000001c0)={0x40040, 0x8}, 0x18) [ 1706.873788] FAT-fs (loop1): bogus number of reserved sectors [ 1706.874902] FAT-fs (loop1): Can't find a valid FAT filesystem 23:48:11 executing program 3: r0 = syz_open_dev$tty1(0xc, 0x4, 0x1) writev(r0, &(0x7f0000000080)=[{&(0x7f0000001380)="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", 0x1ea}], 0x1) 23:48:11 executing program 5: perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r0 = syz_mount_image$vfat(&(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x0, 0x2, &(0x7f0000000180)=[{&(0x7f0000000140)="eb3c906d6b66732e66617400020801000470008400f801", 0x17}, {0x0, 0x0, 0x1000a00}], 0x0, &(0x7f0000000240)=ANY=[]) openat2(r0, &(0x7f0000000100)='./file0\x00', &(0x7f00000001c0)={0x40040, 0x3902000000000000}, 0x18) 23:48:11 executing program 6: r0 = syz_open_dev$tty20(0xc, 0x4, 0x1) r1 = openat$hpet(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0) read$eventfd(r1, 0x0, 0x0) r2 = syz_mount_image$tmpfs(&(0x7f0000000000), &(0x7f0000000080)='./file0\x00', 0x0, 0x0, 0x0, 0x0, &(0x7f0000000600)=ANY=[]) mknodat$loop(r2, &(0x7f0000000300)='./file0\x00', 0x1000, 0x0) openat(r2, &(0x7f0000000140)='./file0\x00', 0x2, 0x0) openat(r2, &(0x7f0000000000)='./file0\x00', 0x0, 0x0) ioctl$FS_IOC_RESVSP(r2, 0x40305828, &(0x7f0000000040)={0x0, 0x6, 0xffffffffffff0000, 0x7}) ioctl$KDDELIO(r1, 0x4b35, 0x5) ioctl$VT_RESIZEX(r0, 0x560a, &(0x7f0000000000)={0x0, 0x0, 0x0, 0x0, 0x1d}) 23:48:11 executing program 0: perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = syz_mount_image$vfat(&(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x0, 0x2, &(0x7f0000000180)=[{&(0x7f0000000140)="eb3c906d6b66732e66617400020801000470008400f801", 0x17}, {0x0, 0x0, 0x1000a00}], 0x0, 0x0) openat2(r0, &(0x7f0000000100)='./file0\x00', &(0x7f00000001c0)={0x40040, 0x8}, 0x18) 23:48:11 executing program 2: r0 = add_key$keyring(&(0x7f0000000040), &(0x7f00000002c0)={'syz', 0x3}, 0x0, 0x0, 0xfffffffffffffffd) keyctl$KEYCTL_RESTRICT_KEYRING(0xf, r0, 0x0, 0x0) connect$inet(0xffffffffffffffff, &(0x7f0000000140)={0x2, 0x0, @dev}, 0x10) r1 = syz_open_dev$sg(&(0x7f0000000040), 0x0, 0x0) ioctl$BLKTRACETEARDOWN(r1, 0x1276, 0x0) ioctl$BLKTRACESETUP(r1, 0xc0481273, &(0x7f0000000140)={'\x00', 0x0, 0x4, 0x8, 0x76}) (fail_nth: 63) 23:48:11 executing program 7: perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_mount_image$vfat(&(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x6c00, 0x2, &(0x7f0000000180)=[{&(0x7f0000000140)="eb3c906d6b66732e66617400020801000470008400f801", 0x17}, {0x0, 0x0, 0x1000a00}], 0x0, &(0x7f0000000240)=ANY=[]) 23:48:11 executing program 1: perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) syz_mount_image$vfat(&(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x0, 0x1, &(0x7f0000000180)=[{0x0, 0x0, 0x1000a00}], 0x0, &(0x7f0000000240)=ANY=[]) 23:48:11 executing program 4: perf_event_open(&(0x7f0000001d80)={0x2, 0x80, 0x69, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = socket$inet6_udp(0xa, 0x2, 0x0) dup(0xffffffffffffffff) fstat(0xffffffffffffffff, 0x0) connect$inet6(r0, &(0x7f0000000600)={0xa, 0x0, 0x0, @dev, 0x2}, 0x1c) sendmmsg$inet6(r0, &(0x7f0000000080)=[{{0x0, 0x5914, &(0x7f00000004c0)=[{&(0x7f00000001c0)="4bc702854e3954b59347985ccc868289d3fe483d2c0900a2a1d12e33a66529e1f276fef452632dfa3c004ce3be84a5f66c29cd4ec39ae5206562fbc9ea3c0dbbebc22e628e147b0e9631f19b0ce0a48e0e675b2da3442226b898f1ddf8eabf133ab4a9cb0999c2ee1d3bd36d089b0d8e97ea00d4c5f6ad14dce058d595aacba2d587ff5eacd81b71a73f53ed276d1f3b3384bb2bfba4e0f37302e690df9e7024378ac754ac0576f996f3ee53d1034c7720767ddf2625817532f7ae89103367b73a36152b84c38bc227ba9e9ff48bcfe027585cf14bff37a888", 0xff41}], 0x1}}], 0x1, 0x0) [ 1721.703003] FAT-fs (loop1): bogus number of reserved sectors [ 1721.703724] FAT-fs (loop1): Can't find a valid FAT filesystem 23:48:11 executing program 6: ioctl$FS_IOC_FIEMAP(0xffffffffffffffff, 0xc020660b, &(0x7f0000000040)={0x10000, 0x2, 0x0, 0x2, 0x4, [{0x2, 0x0, 0x7efa000000, '\x00', 0x2000}, {0x9, 0x38, 0x100000000, '\x00', 0x100}, {0x0, 0xb03, 0x1, '\x00', 0x480}, {0x7f, 0x10000, 0x6, '\x00', 0x1204}]}) r0 = syz_open_dev$tty20(0xc, 0x4, 0x1) ioctl$VT_RESIZEX(r0, 0x560a, &(0x7f0000000000)={0xa6b, 0x0, 0x0, 0x0, 0x1d}) 23:48:11 executing program 3: r0 = syz_open_dev$tty1(0xc, 0x4, 0x1) writev(r0, &(0x7f0000000080)=[{&(0x7f0000001380)="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", 0x1ea}], 0x1) [ 1721.753770] FAULT_INJECTION: forcing a failure. [ 1721.753770] name failslab, interval 1, probability 0, space 0, times 0 23:48:11 executing program 0: perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = syz_mount_image$vfat(&(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x0, 0x2, &(0x7f0000000180)=[{&(0x7f0000000140)="eb3c906d6b66732e66617400020801000470008400f801", 0x17}, {0x0, 0x0, 0x1000a00}], 0x0, 0x0) openat2(r0, &(0x7f0000000100)='./file0\x00', &(0x7f00000001c0)={0x40040, 0x8}, 0x18) [ 1721.756263] CPU: 1 PID: 9669 Comm: syz-executor.2 Not tainted 5.10.194 #1 [ 1721.757864] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1721.757871] Call Trace: [ 1721.757905] dump_stack+0x107/0x167 [ 1721.760141] should_fail.cold+0x5/0xa [ 1721.760166] ? alloc_vmap_area+0x148/0x1d10 [ 1721.760188] should_failslab+0x5/0x20 [ 1721.760209] kmem_cache_alloc_node+0x55/0x330 [ 1721.760238] alloc_vmap_area+0x148/0x1d10 [ 1721.760261] ? kmem_cache_alloc_node_trace+0x16d/0x340 [ 1721.765304] ? mark_held_locks+0x9e/0xe0 [ 1721.765345] ? purge_vmap_area_lazy+0xc0/0xc0 [ 1721.765370] ? kasan_unpoison_shadow+0x33/0x50 [ 1721.765392] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 1721.765419] __get_vm_area_node+0x127/0x340 [ 1721.765440] ? relay_open_buf.part.0+0x4cf/0xc00 [ 1721.765464] get_vm_area_caller+0x70/0xb0 [ 1721.765482] ? relay_open_buf.part.0+0x4cf/0xc00 [ 1721.765503] vmap+0xe9/0x2c0 [ 1721.765524] ? vunmap+0x70/0x70 [ 1721.765560] relay_open_buf.part.0+0x4cf/0xc00 [ 1721.765596] relay_open+0x531/0xa10 [ 1721.765627] do_blk_trace_setup+0x4cf/0xc10 [ 1721.765650] ? _copy_from_user+0xfb/0x1b0 [ 1721.765672] __blk_trace_setup+0xca/0x180 [ 1721.765692] ? do_blk_trace_setup+0xc10/0xc10 [ 1721.765725] ? perf_trace_lock+0xac/0x490 [ 1721.765755] blk_trace_setup+0x43/0x60 [ 1721.765781] sg_ioctl_common+0x634/0x2570 [ 1721.765803] ? __sanitizer_cov_trace_switch+0x45/0x80 [ 1721.765825] ? do_vfs_ioctl+0x283/0x10d0 [ 1721.765842] ? sg_write+0x120/0x120 [ 1721.765860] ? generic_block_fiemap+0x60/0x60 [ 1721.765884] ? __mutex_unlock_slowpath+0xe1/0x600 [ 1721.765925] ? selinux_file_ioctl+0xb6/0x270 23:48:11 executing program 1: perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) syz_mount_image$vfat(&(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x0, 0x1, &(0x7f0000000180)=[{0x0, 0x0, 0x1000a00}], 0x0, &(0x7f0000000240)=ANY=[]) [ 1721.765943] ? sg_compat_ioctl+0x120/0x120 [ 1721.765963] sg_ioctl+0x8f/0x120 [ 1721.765986] __x64_sys_ioctl+0x19a/0x210 23:48:11 executing program 2: r0 = add_key$keyring(&(0x7f0000000040), &(0x7f00000002c0)={'syz', 0x3}, 0x0, 0x0, 0xfffffffffffffffd) keyctl$KEYCTL_RESTRICT_KEYRING(0xf, r0, 0x0, 0x0) connect$inet(0xffffffffffffffff, &(0x7f0000000140)={0x2, 0x0, @dev}, 0x10) r1 = syz_open_dev$sg(&(0x7f0000000040), 0x0, 0x0) ioctl$BLKTRACETEARDOWN(r1, 0x1276, 0x0) ioctl$BLKTRACESETUP(r1, 0xc0481273, &(0x7f0000000140)={'\x00', 0x0, 0x4, 0x8, 0x76}) (fail_nth: 64) [ 1721.766012] do_syscall_64+0x33/0x40 [ 1721.766035] entry_SYSCALL_64_after_hwframe+0x62/0xc7 [ 1721.766048] RIP: 0033:0x7f661a573b19 [ 1721.766069] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1721.766081] RSP: 002b:00007f6617ae9188 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 1721.766103] RAX: ffffffffffffffda RBX: 00007f661a686f60 RCX: 00007f661a573b19 [ 1721.766116] RDX: 0000000020000140 RSI: 00000000c0481273 RDI: 0000000000000003 [ 1721.766128] RBP: 00007f6617ae91d0 R08: 0000000000000000 R09: 0000000000000000 [ 1721.766140] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 1721.766152] R13: 00007ffd527cbf9f R14: 00007f6617ae9300 R15: 0000000000022000 [ 1721.908206] FAULT_INJECTION: forcing a failure. [ 1721.908206] name failslab, interval 1, probability 0, space 0, times 0 [ 1721.911753] CPU: 0 PID: 9687 Comm: syz-executor.2 Not tainted 5.10.194 #1 [ 1721.912514] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1721.913459] Call Trace: [ 1721.913766] dump_stack+0x107/0x167 [ 1721.914176] should_fail.cold+0x5/0xa [ 1721.914606] ? create_object.isra.0+0x3a/0xa20 [ 1721.915112] should_failslab+0x5/0x20 [ 1721.915538] kmem_cache_alloc+0x5b/0x310 [ 1721.915989] ? do_blk_trace_setup+0x4cf/0xc10 [ 1721.916480] ? __blk_trace_setup+0xca/0x180 [ 1721.916953] create_object.isra.0+0x3a/0xa20 [ 1721.917448] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 1721.918006] kmem_cache_alloc_node+0x169/0x330 [ 1721.918529] alloc_vmap_area+0x148/0x1d10 [ 1721.918997] ? kmem_cache_alloc_node_trace+0x16d/0x340 [ 1721.919605] ? mark_held_locks+0x9e/0xe0 [ 1721.920074] ? purge_vmap_area_lazy+0xc0/0xc0 [ 1721.920579] ? kasan_unpoison_shadow+0x33/0x50 [ 1721.921095] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 1721.921669] __get_vm_area_node+0x127/0x340 [ 1721.922168] ? relay_open_buf.part.0+0x4cf/0xc00 [ 1721.922707] get_vm_area_caller+0x70/0xb0 [ 1721.923173] ? relay_open_buf.part.0+0x4cf/0xc00 [ 1721.923713] vmap+0xe9/0x2c0 [ 1721.924054] ? vunmap+0x70/0x70 [ 1721.924424] relay_open_buf.part.0+0x4cf/0xc00 [ 1721.924922] relay_open+0x531/0xa10 [ 1721.925335] do_blk_trace_setup+0x4cf/0xc10 [ 1721.925804] ? _copy_from_user+0xfb/0x1b0 [ 1721.926270] __blk_trace_setup+0xca/0x180 [ 1721.926722] ? do_blk_trace_setup+0xc10/0xc10 [ 1721.926934] FAT-fs (loop1): bogus number of reserved sectors [ 1721.927238] ? perf_trace_lock+0xac/0x490 [ 1721.928551] FAT-fs (loop1): Can't find a valid FAT filesystem [ 1721.928940] blk_trace_setup+0x43/0x60 [ 1721.930610] sg_ioctl_common+0x634/0x2570 [ 1721.931082] ? __sanitizer_cov_trace_switch+0x45/0x80 [ 1721.931641] ? do_vfs_ioctl+0x283/0x10d0 [ 1721.932080] ? sg_write+0x120/0x120 [ 1721.932471] ? generic_block_fiemap+0x60/0x60 [ 1721.932967] ? __mutex_unlock_slowpath+0xe1/0x600 [ 1721.933510] ? selinux_file_ioctl+0xb6/0x270 [ 1721.933995] ? sg_compat_ioctl+0x120/0x120 [ 1721.934451] sg_ioctl+0x8f/0x120 [ 1721.934820] __x64_sys_ioctl+0x19a/0x210 [ 1721.935278] do_syscall_64+0x33/0x40 [ 1721.935689] entry_SYSCALL_64_after_hwframe+0x62/0xc7 [ 1721.936242] RIP: 0033:0x7f661a573b19 [ 1721.936645] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1721.938648] RSP: 002b:00007f6617ae9188 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 1721.939485] RAX: ffffffffffffffda RBX: 00007f661a686f60 RCX: 00007f661a573b19 [ 1721.940261] RDX: 0000000020000140 RSI: 00000000c0481273 RDI: 0000000000000003 [ 1721.941047] RBP: 00007f6617ae91d0 R08: 0000000000000000 R09: 0000000000000000 [ 1721.941858] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 1721.942641] R13: 00007ffd527cbf9f R14: 00007f6617ae9300 R15: 0000000000022000 23:48:26 executing program 7: perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_mount_image$vfat(&(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x7400, 0x2, &(0x7f0000000180)=[{&(0x7f0000000140)="eb3c906d6b66732e66617400020801000470008400f801", 0x17}, {0x0, 0x0, 0x1000a00}], 0x0, &(0x7f0000000240)=ANY=[]) 23:48:26 executing program 6: r0 = syz_open_dev$tty20(0xc, 0x4, 0x1) ioctl$VT_RESIZEX(r0, 0x560a, &(0x7f0000000000)={0x0, 0x0, 0x0, 0x0, 0x1d}) 23:48:26 executing program 0: perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_mount_image$vfat(&(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x0, 0x2, &(0x7f0000000180)=[{&(0x7f0000000140)="eb3c906d6b66732e66617400020801000470008400f801", 0x17}, {0x0, 0x0, 0x1000a00}], 0x0, &(0x7f0000000240)=ANY=[]) openat2(0xffffffffffffffff, &(0x7f0000000100)='./file0\x00', &(0x7f00000001c0)={0x40040, 0x8}, 0x18) 23:48:26 executing program 4: perf_event_open(&(0x7f0000001d80)={0x2, 0x80, 0x69, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = socket$inet6_udp(0xa, 0x2, 0x0) dup(0xffffffffffffffff) fstat(0xffffffffffffffff, 0x0) connect$inet6(r0, &(0x7f0000000600)={0xa, 0x0, 0x0, @dev, 0x2}, 0x1c) sendmmsg$inet6(r0, &(0x7f0000000080)=[{{0x0, 0x59c7, &(0x7f00000004c0)=[{&(0x7f00000001c0)="4bc702854e3954b59347985ccc868289d3fe483d2c0900a2a1d12e33a66529e1f276fef452632dfa3c004ce3be84a5f66c29cd4ec39ae5206562fbc9ea3c0dbbebc22e628e147b0e9631f19b0ce0a48e0e675b2da3442226b898f1ddf8eabf133ab4a9cb0999c2ee1d3bd36d089b0d8e97ea00d4c5f6ad14dce058d595aacba2d587ff5eacd81b71a73f53ed276d1f3b3384bb2bfba4e0f37302e690df9e7024378ac754ac0576f996f3ee53d1034c7720767ddf2625817532f7ae89103367b73a36152b84c38bc227ba9e9ff48bcfe027585cf14bff37a888", 0xff41}], 0x1}}], 0x1, 0x0) 23:48:26 executing program 5: perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r0 = syz_mount_image$vfat(&(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x0, 0x2, &(0x7f0000000180)=[{&(0x7f0000000140)="eb3c906d6b66732e66617400020801000470008400f801", 0x17}, {0x0, 0x0, 0x1000a00}], 0x0, &(0x7f0000000240)=ANY=[]) openat2(r0, &(0x7f0000000100)='./file0\x00', &(0x7f00000001c0)={0x40040, 0x3f00000000000000}, 0x18) 23:48:26 executing program 1: perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) syz_mount_image$vfat(&(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x0, 0x1, &(0x7f0000000180)=[{0x0, 0x0, 0x1000a00}], 0x0, &(0x7f0000000240)=ANY=[]) 23:48:26 executing program 3: r0 = syz_open_dev$tty1(0xc, 0x4, 0x1) writev(r0, &(0x7f0000000080)=[{&(0x7f0000001380)="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", 0x1ea}], 0x1) 23:48:26 executing program 2: r0 = add_key$keyring(&(0x7f0000000040), &(0x7f00000002c0)={'syz', 0x3}, 0x0, 0x0, 0xfffffffffffffffd) keyctl$KEYCTL_RESTRICT_KEYRING(0xf, r0, 0x0, 0x0) connect$inet(0xffffffffffffffff, &(0x7f0000000140)={0x2, 0x0, @dev}, 0x10) r1 = syz_open_dev$sg(&(0x7f0000000040), 0x0, 0x0) ioctl$BLKTRACETEARDOWN(r1, 0x1276, 0x0) ioctl$BLKTRACESETUP(r1, 0xc0481273, &(0x7f0000000140)={'\x00', 0x0, 0x4, 0x8, 0x76}) (fail_nth: 65) [ 1735.922491] FAULT_INJECTION: forcing a failure. [ 1735.922491] name failslab, interval 1, probability 0, space 0, times 0 [ 1735.923845] CPU: 1 PID: 9706 Comm: syz-executor.2 Not tainted 5.10.194 #1 [ 1735.924666] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1735.925651] Call Trace: [ 1735.925973] dump_stack+0x107/0x167 [ 1735.926397] should_fail.cold+0x5/0xa [ 1735.926835] ? kmemleak_scan_area+0xa6/0x360 [ 1735.927340] should_failslab+0x5/0x20 [ 1735.927774] kmem_cache_alloc+0x5b/0x310 [ 1735.928239] kmemleak_scan_area+0xa6/0x360 [ 1735.928726] alloc_vmap_area+0x171/0x1d10 [ 1735.929185] ? kmem_cache_alloc_node_trace+0x16d/0x340 [ 1735.929816] ? mark_held_locks+0x9e/0xe0 [ 1735.930301] ? purge_vmap_area_lazy+0xc0/0xc0 [ 1735.930812] ? kasan_unpoison_shadow+0x33/0x50 [ 1735.930833] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 1735.932431] __get_vm_area_node+0x127/0x340 [ 1735.932925] ? relay_open_buf.part.0+0x4cf/0xc00 [ 1735.933468] get_vm_area_caller+0x70/0xb0 [ 1735.933960] ? relay_open_buf.part.0+0x4cf/0xc00 [ 1735.934496] vmap+0xe9/0x2c0 [ 1735.934842] ? vunmap+0x70/0x70 [ 1735.935223] relay_open_buf.part.0+0x4cf/0xc00 [ 1735.935749] relay_open+0x531/0xa10 [ 1735.936176] do_blk_trace_setup+0x4cf/0xc10 [ 1735.936669] ? _copy_from_user+0xfb/0x1b0 [ 1735.937139] __blk_trace_setup+0xca/0x180 [ 1735.937626] ? do_blk_trace_setup+0xc10/0xc10 [ 1735.937643] ? perf_trace_lock+0xac/0x490 [ 1735.937659] blk_trace_setup+0x43/0x60 [ 1735.937673] sg_ioctl_common+0x634/0x2570 23:48:26 executing program 0: perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_mount_image$vfat(&(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x0, 0x2, &(0x7f0000000180)=[{&(0x7f0000000140)="eb3c906d6b66732e66617400020801000470008400f801", 0x17}, {0x0, 0x0, 0x1000a00}], 0x0, &(0x7f0000000240)=ANY=[]) openat2(0xffffffffffffffff, &(0x7f0000000100)='./file0\x00', &(0x7f00000001c0)={0x40040, 0x8}, 0x18) [ 1735.937686] ? __sanitizer_cov_trace_switch+0x45/0x80 [ 1735.937698] ? do_vfs_ioctl+0x283/0x10d0 [ 1735.937707] ? sg_write+0x120/0x120 [ 1735.937717] ? generic_block_fiemap+0x60/0x60 [ 1735.937729] ? __mutex_unlock_slowpath+0xe1/0x600 [ 1735.937751] ? selinux_file_ioctl+0xb6/0x270 [ 1735.937760] ? sg_compat_ioctl+0x120/0x120 23:48:26 executing program 2: r0 = add_key$keyring(&(0x7f0000000040), &(0x7f00000002c0)={'syz', 0x3}, 0x0, 0x0, 0xfffffffffffffffd) keyctl$KEYCTL_RESTRICT_KEYRING(0xf, r0, 0x0, 0x0) connect$inet(0xffffffffffffffff, &(0x7f0000000140)={0x2, 0x0, @dev}, 0x10) r1 = syz_open_dev$sg(&(0x7f0000000040), 0x0, 0x0) ioctl$BLKTRACETEARDOWN(r1, 0x1276, 0x0) ioctl$BLKTRACESETUP(r1, 0xc0481273, &(0x7f0000000140)={'\x00', 0x0, 0x4, 0x8, 0x76}) (fail_nth: 66) [ 1735.937771] sg_ioctl+0x8f/0x120 [ 1735.937783] __x64_sys_ioctl+0x19a/0x210 [ 1735.937797] do_syscall_64+0x33/0x40 [ 1735.937810] entry_SYSCALL_64_after_hwframe+0x62/0xc7 [ 1735.937817] RIP: 0033:0x7f661a573b19 [ 1735.937829] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1735.937835] RSP: 002b:00007f6617ae9188 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 1735.937847] RAX: ffffffffffffffda RBX: 00007f661a686f60 RCX: 00007f661a573b19 [ 1735.937854] RDX: 0000000020000140 RSI: 00000000c0481273 RDI: 0000000000000003 [ 1735.937860] RBP: 00007f6617ae91d0 R08: 0000000000000000 R09: 0000000000000000 [ 1735.937866] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 1735.937873] R13: 00007ffd527cbf9f R14: 00007f6617ae9300 R15: 0000000000022000 [ 1735.944786] FAT-fs (loop1): bogus number of reserved sectors [ 1735.944802] FAT-fs (loop1): Can't find a valid FAT filesystem [ 1736.024339] FAULT_INJECTION: forcing a failure. [ 1736.024339] name failslab, interval 1, probability 0, space 0, times 0 [ 1736.034537] CPU: 1 PID: 9723 Comm: syz-executor.2 Not tainted 5.10.194 #1 [ 1736.034543] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1736.034546] Call Trace: [ 1736.034574] dump_stack+0x107/0x167 [ 1736.037697] should_fail.cold+0x5/0xa [ 1736.037710] ? relay_create_buf_file+0x4d/0x180 [ 1736.037723] should_failslab+0x5/0x20 [ 1736.037734] kmem_cache_alloc_trace+0x55/0x320 [ 1736.037748] relay_create_buf_file+0x4d/0x180 [ 1736.037759] relay_open_buf.part.0+0x7de/0xc00 [ 1736.037777] relay_open+0x531/0xa10 [ 1736.037793] do_blk_trace_setup+0x4cf/0xc10 [ 1736.037806] ? _copy_from_user+0xfb/0x1b0 [ 1736.037817] __blk_trace_setup+0xca/0x180 [ 1736.037827] ? do_blk_trace_setup+0xc10/0xc10 [ 1736.037845] ? perf_trace_lock+0xac/0x490 [ 1736.037861] blk_trace_setup+0x43/0x60 [ 1736.037874] sg_ioctl_common+0x634/0x2570 [ 1736.037887] ? __sanitizer_cov_trace_switch+0x45/0x80 [ 1736.037898] ? do_vfs_ioctl+0x283/0x10d0 [ 1736.037906] ? sg_write+0x120/0x120 [ 1736.037916] ? generic_block_fiemap+0x60/0x60 [ 1736.037929] ? __mutex_unlock_slowpath+0xe1/0x600 [ 1736.037950] ? selinux_file_ioctl+0xb6/0x270 [ 1736.037959] ? sg_compat_ioctl+0x120/0x120 [ 1736.037969] sg_ioctl+0x8f/0x120 [ 1736.037981] __x64_sys_ioctl+0x19a/0x210 [ 1736.037995] do_syscall_64+0x33/0x40 [ 1736.038007] entry_SYSCALL_64_after_hwframe+0x62/0xc7 [ 1736.038014] RIP: 0033:0x7f661a573b19 [ 1736.038025] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1736.038030] RSP: 002b:00007f6617ae9188 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 1736.038042] RAX: ffffffffffffffda RBX: 00007f661a686f60 RCX: 00007f661a573b19 [ 1736.038048] RDX: 0000000020000140 RSI: 00000000c0481273 RDI: 0000000000000003 [ 1736.038054] RBP: 00007f6617ae91d0 R08: 0000000000000000 R09: 0000000000000000 [ 1736.038060] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 1736.038067] R13: 00007ffd527cbf9f R14: 00007f6617ae9300 R15: 0000000000022000 23:48:38 executing program 6: r0 = syz_open_dev$tty20(0xc, 0x4, 0x1) ioctl$VT_RESIZEX(r0, 0x560a, &(0x7f0000000000)={0x3, 0x10, 0x0, 0x0, 0x7ff}) 23:48:38 executing program 0: perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_mount_image$vfat(&(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x0, 0x2, &(0x7f0000000180)=[{&(0x7f0000000140)="eb3c906d6b66732e66617400020801000470008400f801", 0x17}, {0x0, 0x0, 0x1000a00}], 0x0, &(0x7f0000000240)=ANY=[]) openat2(0xffffffffffffffff, &(0x7f0000000100)='./file0\x00', &(0x7f00000001c0)={0x40040, 0x8}, 0x18) 23:48:38 executing program 2: r0 = add_key$keyring(&(0x7f0000000040), &(0x7f00000002c0)={'syz', 0x3}, 0x0, 0x0, 0xfffffffffffffffd) keyctl$KEYCTL_RESTRICT_KEYRING(0xf, r0, 0x0, 0x0) connect$inet(0xffffffffffffffff, &(0x7f0000000140)={0x2, 0x0, @dev}, 0x10) r1 = syz_open_dev$sg(&(0x7f0000000040), 0x0, 0x0) ioctl$BLKTRACETEARDOWN(r1, 0x1276, 0x0) ioctl$BLKTRACESETUP(r1, 0xc0481273, &(0x7f0000000140)={'\x00', 0x0, 0x4, 0x8, 0x76}) (fail_nth: 67) 23:48:38 executing program 4: perf_event_open(&(0x7f0000001d80)={0x2, 0x80, 0x69, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = socket$inet6_udp(0xa, 0x2, 0x0) dup(0xffffffffffffffff) fstat(0xffffffffffffffff, 0x0) connect$inet6(r0, &(0x7f0000000600)={0xa, 0x0, 0x0, @dev, 0x2}, 0x1c) sendmmsg$inet6(r0, &(0x7f0000000080)=[{{0x0, 0x5d11, &(0x7f00000004c0)=[{&(0x7f00000001c0)="4bc702854e3954b59347985ccc868289d3fe483d2c0900a2a1d12e33a66529e1f276fef452632dfa3c004ce3be84a5f66c29cd4ec39ae5206562fbc9ea3c0dbbebc22e628e147b0e9631f19b0ce0a48e0e675b2da3442226b898f1ddf8eabf133ab4a9cb0999c2ee1d3bd36d089b0d8e97ea00d4c5f6ad14dce058d595aacba2d587ff5eacd81b71a73f53ed276d1f3b3384bb2bfba4e0f37302e690df9e7024378ac754ac0576f996f3ee53d1034c7720767ddf2625817532f7ae89103367b73a36152b84c38bc227ba9e9ff48bcfe027585cf14bff37a888", 0xff41}], 0x1}}], 0x1, 0x0) 23:48:38 executing program 1: perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) syz_mount_image$vfat(&(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x0, 0x2, &(0x7f0000000180)=[{0x0}, {0x0, 0x0, 0x1000a00}], 0x0, &(0x7f0000000240)=ANY=[]) 23:48:38 executing program 7: perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_mount_image$vfat(&(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x7800, 0x2, &(0x7f0000000180)=[{&(0x7f0000000140)="eb3c906d6b66732e66617400020801000470008400f801", 0x17}, {0x0, 0x0, 0x1000a00}], 0x0, &(0x7f0000000240)=ANY=[]) 23:48:38 executing program 3: r0 = syz_open_dev$tty1(0xc, 0x4, 0x1) writev(r0, &(0x7f0000000080)=[{&(0x7f0000001380)="3ead823d27b1f38d16b83fca92a1f8f4a79624a2649b3d23f624cb63a9a475c4336e3015462fa8b76b1c5fb9b159eaa406698e2f3dcd71c5ba4e666731496d8ddd1bbaae50714c9ccdc53444b41f6df995ce4a1e6b9807bce8fa3e046360e5d1b228a3367e2315a985fcf8542b6a2e58eff19d99aa1de724345dd5786c63d31c197c760ac73dc10c91fcf49125d4dd5e1d4c952eeabf70f80b092c914e00cd0e75bdea96065d75447e5e2917619f3d3e2662b99fac83e65ca6fb6fc547ce903e960595bafc4990dfa6263d2dd2268b3f6f3df3b1603e198bc4011a4b1c43c686ff811d9a346aabe8c9f33c2c5e0ab15e288917c0de80a9d49e72e1efc8db344b3a715702fd03a0e9e2387cc5032967d44d8b3b68383f6c89c842ec2eadc06d1e5133067d6b3f11647561748b7d4185cab428d5fbf98ea4100f2276af2fec68da7e57d65c185e261b6790c65ebb5f98cb027d065d424a65705b15be6eda2b4ba4f6a337f711fc7088d216cb59a744bc5a0d0f059b11d6d7c0784065277076525027223b82fdcc899b2de92a710082edf89a57c0bf416899d2f8ad2cad43e5018b52025096784ecd82a29c00a8bf5ffa6e3b75fe641acf39885c084ae7e546f04224aeb23f61d99fc464a533fc6b87790e335057b54dbff233ced4a7ef90884dc7d90d678cc080024b9b4a", 0x1ea}], 0x1) 23:48:38 executing program 5: perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r0 = syz_mount_image$vfat(&(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x0, 0x2, &(0x7f0000000180)=[{&(0x7f0000000140)="eb3c906d6b66732e66617400020801000470008400f801", 0x17}, {0x0, 0x0, 0x1000a00}], 0x0, &(0x7f0000000240)=ANY=[]) openat2(r0, &(0x7f0000000100)='./file0\x00', &(0x7f00000001c0)={0x40040, 0x8004000000000000}, 0x18) [ 1748.450946] FAULT_INJECTION: forcing a failure. [ 1748.450946] name failslab, interval 1, probability 0, space 0, times 0 [ 1748.453263] CPU: 1 PID: 9743 Comm: syz-executor.2 Not tainted 5.10.194 #1 [ 1748.454661] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1748.456326] Call Trace: [ 1748.456874] dump_stack+0x107/0x167 [ 1748.457625] should_fail.cold+0x5/0xa [ 1748.458401] ? create_object.isra.0+0x3a/0xa20 [ 1748.459321] should_failslab+0x5/0x20 [ 1748.460077] kmem_cache_alloc+0x5b/0x310 [ 1748.460893] create_object.isra.0+0x3a/0xa20 [ 1748.461789] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 1748.462816] kmem_cache_alloc_node_trace+0x16d/0x340 [ 1748.463848] __get_vm_area_node+0xd4/0x340 [ 1748.464702] ? relay_open_buf.part.0+0x4cf/0xc00 [ 1748.465678] get_vm_area_caller+0x70/0xb0 [ 1748.466521] ? relay_open_buf.part.0+0x4cf/0xc00 [ 1748.467476] vmap+0xe9/0x2c0 [ 1748.468094] ? vunmap+0x70/0x70 [ 1748.468777] relay_open_buf.part.0+0x4cf/0xc00 [ 1748.469736] relay_open+0x531/0xa10 [ 1748.470497] do_blk_trace_setup+0x4cf/0xc10 [ 1748.471375] ? _copy_from_user+0xfb/0x1b0 [ 1748.472210] __blk_trace_setup+0xca/0x180 [ 1748.473043] ? do_blk_trace_setup+0xc10/0xc10 [ 1748.473977] ? perf_trace_lock+0xac/0x490 [ 1748.474834] blk_trace_setup+0x43/0x60 [ 1748.475635] sg_ioctl_common+0x634/0x2570 [ 1748.476468] ? __sanitizer_cov_trace_switch+0x45/0x80 [ 1748.477513] ? do_vfs_ioctl+0x283/0x10d0 [ 1748.478341] ? sg_write+0x120/0x120 [ 1748.479087] ? generic_block_fiemap+0x60/0x60 [ 1748.480006] ? __mutex_unlock_slowpath+0xe1/0x600 [ 1748.481006] ? selinux_file_ioctl+0xb6/0x270 [ 1748.481905] ? sg_compat_ioctl+0x120/0x120 [ 1748.482765] sg_ioctl+0x8f/0x120 [ 1748.483458] __x64_sys_ioctl+0x19a/0x210 [ 1748.484282] do_syscall_64+0x33/0x40 [ 1748.485048] entry_SYSCALL_64_after_hwframe+0x62/0xc7 [ 1748.486082] RIP: 0033:0x7f661a573b19 [ 1748.486840] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1748.490576] RSP: 002b:00007f6617ae9188 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 1748.492123] RAX: ffffffffffffffda RBX: 00007f661a686f60 RCX: 00007f661a573b19 [ 1748.493570] RDX: 0000000020000140 RSI: 00000000c0481273 RDI: 0000000000000003 [ 1748.495022] RBP: 00007f6617ae91d0 R08: 0000000000000000 R09: 0000000000000000 [ 1748.496465] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 1748.497917] R13: 00007ffd527cbf9f R14: 00007f6617ae9300 R15: 0000000000022000 23:48:38 executing program 0: perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = syz_mount_image$vfat(&(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x0, 0x2, &(0x7f0000000180)=[{&(0x7f0000000140)="eb3c906d6b66732e66617400020801000470008400f801", 0x17}, {0x0, 0x0, 0x1000a00}], 0x0, &(0x7f0000000240)=ANY=[]) openat2(r0, 0x0, &(0x7f00000001c0)={0x40040, 0x8}, 0x18) [ 1748.561402] FAT-fs (loop1): bogus number of reserved sectors [ 1748.562770] FAT-fs (loop1): Can't find a valid FAT filesystem 23:48:38 executing program 3: r0 = syz_open_dev$tty1(0xc, 0x4, 0x1) writev(r0, &(0x7f0000000080)=[{&(0x7f0000001380)="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", 0x1ea}], 0x1) 23:48:38 executing program 7: perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_mount_image$vfat(&(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x7a00, 0x2, &(0x7f0000000180)=[{&(0x7f0000000140)="eb3c906d6b66732e66617400020801000470008400f801", 0x17}, {0x0, 0x0, 0x1000a00}], 0x0, &(0x7f0000000240)=ANY=[]) 23:48:38 executing program 6: r0 = syz_open_dev$tty20(0xc, 0x4, 0x1) syz_open_dev$tty20(0xc, 0x4, 0x1) ioctl$VT_RESIZEX(r0, 0x560a, &(0x7f0000000000)={0x0, 0x0, 0x0, 0x0, 0x1d}) ioctl$BTRFS_IOC_LOGICAL_INO(r0, 0xc0389424, &(0x7f0000000080)={0x9, 0x18, '\x00', 0x0, &(0x7f0000000040)=[0x0, 0x0, 0x0]}) flock(r0, 0x6) 23:48:38 executing program 2: r0 = add_key$keyring(&(0x7f0000000040), &(0x7f00000002c0)={'syz', 0x3}, 0x0, 0x0, 0xfffffffffffffffd) keyctl$KEYCTL_RESTRICT_KEYRING(0xf, r0, 0x0, 0x0) connect$inet(0xffffffffffffffff, &(0x7f0000000140)={0x2, 0x0, @dev}, 0x10) r1 = syz_open_dev$sg(&(0x7f0000000040), 0x0, 0x0) ioctl$BLKTRACETEARDOWN(r1, 0x1276, 0x0) ioctl$BLKTRACESETUP(r1, 0xc0481273, &(0x7f0000000140)={'\x00', 0x0, 0x4, 0x8, 0x76}) (fail_nth: 68) 23:48:38 executing program 5: perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r0 = syz_mount_image$vfat(&(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x0, 0x2, &(0x7f0000000180)=[{&(0x7f0000000140)="eb3c906d6b66732e66617400020801000470008400f801", 0x17}, {0x0, 0x0, 0x1000a00}], 0x0, &(0x7f0000000240)=ANY=[]) openat2(r0, &(0x7f0000000100)='./file0\x00', &(0x7f00000001c0)={0x40040, 0x8cffffff00000000}, 0x18) 23:48:38 executing program 1: perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) syz_mount_image$vfat(&(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x0, 0x2, &(0x7f0000000180)=[{0x0}, {0x0, 0x0, 0x1000a00}], 0x0, &(0x7f0000000240)=ANY=[]) 23:48:38 executing program 3: r0 = syz_open_dev$tty1(0xc, 0x4, 0x1) writev(r0, &(0x7f0000000080)=[{&(0x7f0000001380)="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", 0x1ea}], 0x1) [ 1748.718826] FAT-fs (loop1): bogus number of reserved sectors [ 1748.720160] FAT-fs (loop1): Can't find a valid FAT filesystem 23:48:38 executing program 4: perf_event_open(&(0x7f0000001d80)={0x2, 0x80, 0x69, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = socket$inet6_udp(0xa, 0x2, 0x0) dup(0xffffffffffffffff) fstat(0xffffffffffffffff, 0x0) connect$inet6(r0, &(0x7f0000000600)={0xa, 0x0, 0x0, @dev, 0x2}, 0x1c) sendmmsg$inet6(r0, &(0x7f0000000080)=[{{0x0, 0x6000, &(0x7f00000004c0)=[{&(0x7f00000001c0)="4bc702854e3954b59347985ccc868289d3fe483d2c0900a2a1d12e33a66529e1f276fef452632dfa3c004ce3be84a5f66c29cd4ec39ae5206562fbc9ea3c0dbbebc22e628e147b0e9631f19b0ce0a48e0e675b2da3442226b898f1ddf8eabf133ab4a9cb0999c2ee1d3bd36d089b0d8e97ea00d4c5f6ad14dce058d595aacba2d587ff5eacd81b71a73f53ed276d1f3b3384bb2bfba4e0f37302e690df9e7024378ac754ac0576f996f3ee53d1034c7720767ddf2625817532f7ae89103367b73a36152b84c38bc227ba9e9ff48bcfe027585cf14bff37a888", 0xff41}], 0x1}}], 0x1, 0x0) 23:48:38 executing program 0: perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = syz_mount_image$vfat(&(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x0, 0x2, &(0x7f0000000180)=[{&(0x7f0000000140)="eb3c906d6b66732e66617400020801000470008400f801", 0x17}, {0x0, 0x0, 0x1000a00}], 0x0, &(0x7f0000000240)=ANY=[]) openat2(r0, 0x0, &(0x7f00000001c0)={0x40040, 0x8}, 0x18) [ 1748.746597] FAULT_INJECTION: forcing a failure. [ 1748.746597] name failslab, interval 1, probability 0, space 0, times 0 [ 1748.746618] CPU: 0 PID: 9767 Comm: syz-executor.2 Not tainted 5.10.194 #1 [ 1748.746629] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1748.746635] Call Trace: 23:48:38 executing program 6: pread64(0xffffffffffffffff, &(0x7f0000000180)=""/259, 0x103, 0x9) r0 = syz_open_dev$tty20(0xc, 0x4, 0x1) ioctl$VT_RESIZEX(r0, 0x560a, &(0x7f0000000000)={0x0, 0x0, 0x1, 0x7fff, 0x21, 0x7fff}) ioctl$KDGKBDIACR(r0, 0x4b4a, &(0x7f0000000140)=""/43) 23:48:38 executing program 2: r0 = add_key$keyring(&(0x7f0000000040), &(0x7f00000002c0)={'syz', 0x3}, 0x0, 0x0, 0xfffffffffffffffd) keyctl$KEYCTL_RESTRICT_KEYRING(0xf, r0, 0x0, 0x0) connect$inet(0xffffffffffffffff, &(0x7f0000000140)={0x2, 0x0, @dev}, 0x10) r1 = syz_open_dev$sg(&(0x7f0000000040), 0x0, 0x0) ioctl$BLKTRACETEARDOWN(r1, 0x1276, 0x0) ioctl$BLKTRACESETUP(r1, 0xc0481273, &(0x7f0000000140)={'\x00', 0x0, 0x4, 0x8, 0x76}) (fail_nth: 69) [ 1748.746662] dump_stack+0x107/0x167 [ 1748.746686] should_fail.cold+0x5/0xa [ 1748.746708] ? __d_alloc+0x2a/0x990 [ 1748.746730] should_failslab+0x5/0x20 [ 1748.746748] kmem_cache_alloc+0x5b/0x310 [ 1748.746775] __d_alloc+0x2a/0x990 [ 1748.746803] d_alloc_parallel+0x111/0x1bc0 [ 1748.746838] ? __lock_acquire+0x1657/0x5b00 [ 1748.746857] ? perf_trace_lock+0xac/0x490 [ 1748.746882] ? __d_lookup_rcu+0x6d0/0x6d0 [ 1748.746899] ? __lockdep_reset_lock+0x180/0x180 [ 1748.746923] ? lockdep_init_map_type+0x2c7/0x780 [ 1748.746945] ? lockdep_init_map_type+0x2c7/0x780 [ 1748.746980] __lookup_slow+0x193/0x490 [ 1748.747003] ? lookup_open.isra.0+0x1270/0x1270 [ 1748.747035] ? __d_lookup+0x3bf/0x760 [ 1748.747070] ? d_lookup+0xcc/0x130 [ 1748.747097] lookup_one_len+0x167/0x1a0 [ 1748.747118] ? __lookup_slow+0x490/0x490 [ 1748.747135] ? down_write_killable+0x180/0x180 [ 1748.747156] ? do_raw_spin_unlock+0x4f/0x220 [ 1748.747174] ? mntput+0xc/0x90 [ 1748.747202] start_creating.part.0+0x10a/0x230 [ 1748.747225] __debugfs_create_file+0xdb/0x530 [ 1748.747248] ? blk_trace_remove+0x40/0x40 [ 1748.747274] relay_create_buf_file+0xf6/0x180 [ 1748.747296] relay_open_buf.part.0+0x7de/0xc00 [ 1748.747330] relay_open+0x531/0xa10 [ 1748.747358] do_blk_trace_setup+0x4cf/0xc10 [ 1748.747378] ? _copy_from_user+0xfb/0x1b0 [ 1748.747401] __blk_trace_setup+0xca/0x180 [ 1748.747419] ? do_blk_trace_setup+0xc10/0xc10 [ 1748.747450] ? perf_trace_lock+0xac/0x490 [ 1748.747480] blk_trace_setup+0x43/0x60 [ 1748.747504] sg_ioctl_common+0x634/0x2570 [ 1748.747526] ? __sanitizer_cov_trace_switch+0x45/0x80 [ 1748.747545] ? do_vfs_ioctl+0x283/0x10d0 [ 1748.747561] ? sg_write+0x120/0x120 [ 1748.747579] ? generic_block_fiemap+0x60/0x60 [ 1748.747601] ? __mutex_unlock_slowpath+0xe1/0x600 [ 1748.747640] ? selinux_file_ioctl+0xb6/0x270 [ 1748.747656] ? sg_compat_ioctl+0x120/0x120 [ 1748.747675] sg_ioctl+0x8f/0x120 [ 1748.747697] __x64_sys_ioctl+0x19a/0x210 [ 1748.747722] do_syscall_64+0x33/0x40 [ 1748.747743] entry_SYSCALL_64_after_hwframe+0x62/0xc7 [ 1748.747756] RIP: 0033:0x7f661a573b19 [ 1748.747776] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1748.747786] RSP: 002b:00007f6617ae9188 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 1748.747808] RAX: ffffffffffffffda RBX: 00007f661a686f60 RCX: 00007f661a573b19 [ 1748.747819] RDX: 0000000020000140 RSI: 00000000c0481273 RDI: 0000000000000003 [ 1748.747831] RBP: 00007f6617ae91d0 R08: 0000000000000000 R09: 0000000000000000 [ 1748.747842] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 1748.747853] R13: 00007ffd527cbf9f R14: 00007f6617ae9300 R15: 0000000000022000 [ 1748.910596] FAULT_INJECTION: forcing a failure. [ 1748.910596] name failslab, interval 1, probability 0, space 0, times 0 [ 1748.910618] CPU: 1 PID: 9783 Comm: syz-executor.2 Not tainted 5.10.194 #1 [ 1748.910629] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1748.910636] Call Trace: [ 1748.910665] dump_stack+0x107/0x167 [ 1748.910689] should_fail.cold+0x5/0xa [ 1748.910712] ? create_object.isra.0+0x3a/0xa20 [ 1748.910734] should_failslab+0x5/0x20 [ 1748.910753] kmem_cache_alloc+0x5b/0x310 [ 1748.910779] create_object.isra.0+0x3a/0xa20 [ 1748.910798] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 1748.910824] kmem_cache_alloc+0x159/0x310 [ 1748.910851] __d_alloc+0x2a/0x990 [ 1748.910880] d_alloc_parallel+0x111/0x1bc0 [ 1748.910915] ? __lock_acquire+0x1657/0x5b00 [ 1748.910935] ? perf_trace_lock+0xac/0x490 [ 1748.910959] ? __d_lookup_rcu+0x6d0/0x6d0 [ 1748.910978] ? __lockdep_reset_lock+0x180/0x180 [ 1748.911001] ? lockdep_init_map_type+0x2c7/0x780 [ 1748.911023] ? lockdep_init_map_type+0x2c7/0x780 [ 1748.911058] __lookup_slow+0x193/0x490 [ 1748.911082] ? lookup_open.isra.0+0x1270/0x1270 [ 1748.911114] ? __d_lookup+0x3bf/0x760 [ 1748.911148] ? d_lookup+0xcc/0x130 [ 1748.911176] lookup_one_len+0x167/0x1a0 [ 1748.911197] ? __lookup_slow+0x490/0x490 [ 1748.911215] ? down_write_killable+0x180/0x180 [ 1748.911236] ? do_raw_spin_unlock+0x4f/0x220 [ 1748.911254] ? mntput+0xc/0x90 [ 1748.911287] start_creating.part.0+0x10a/0x230 [ 1748.911311] __debugfs_create_file+0xdb/0x530 [ 1748.911334] ? blk_trace_remove+0x40/0x40 [ 1748.911353] relay_create_buf_file+0xf6/0x180 [ 1748.911379] relay_open_buf.part.0+0x7de/0xc00 [ 1748.988077] relay_open+0x531/0xa10 [ 1748.988111] do_blk_trace_setup+0x4cf/0xc10 [ 1748.989845] ? _copy_from_user+0xfb/0x1b0 [ 1748.989871] __blk_trace_setup+0xca/0x180 [ 1748.989894] ? do_blk_trace_setup+0xc10/0xc10 [ 1748.989931] ? perf_trace_lock+0xac/0x490 [ 1748.993693] blk_trace_setup+0x43/0x60 [ 1748.994624] sg_ioctl_common+0x634/0x2570 [ 1748.995606] ? __sanitizer_cov_trace_switch+0x45/0x80 [ 1748.996822] ? do_vfs_ioctl+0x283/0x10d0 [ 1748.997777] ? sg_write+0x120/0x120 [ 1748.998633] ? generic_block_fiemap+0x60/0x60 [ 1748.999684] ? __mutex_unlock_slowpath+0xe1/0x600 [ 1749.000838] ? selinux_file_ioctl+0xb6/0x270 [ 1749.001880] ? sg_compat_ioctl+0x120/0x120 [ 1749.002877] sg_ioctl+0x8f/0x120 [ 1749.003672] __x64_sys_ioctl+0x19a/0x210 [ 1749.004634] do_syscall_64+0x33/0x40 [ 1749.005509] entry_SYSCALL_64_after_hwframe+0x62/0xc7 [ 1749.006717] RIP: 0033:0x7f661a573b19 [ 1749.007590] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1749.011877] RSP: 002b:00007f6617ae9188 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 1749.013671] RAX: ffffffffffffffda RBX: 00007f661a686f60 RCX: 00007f661a573b19 [ 1749.015337] RDX: 0000000020000140 RSI: 00000000c0481273 RDI: 0000000000000003 [ 1749.017001] RBP: 00007f6617ae91d0 R08: 0000000000000000 R09: 0000000000000000 [ 1749.018670] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 1749.020322] R13: 00007ffd527cbf9f R14: 00007f6617ae9300 R15: 0000000000022000 23:48:53 executing program 1: perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) syz_mount_image$vfat(&(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x0, 0x2, &(0x7f0000000180)=[{0x0}, {0x0, 0x0, 0x1000a00}], 0x0, &(0x7f0000000240)=ANY=[]) 23:48:53 executing program 0: perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = syz_mount_image$vfat(&(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x0, 0x2, &(0x7f0000000180)=[{&(0x7f0000000140)="eb3c906d6b66732e66617400020801000470008400f801", 0x17}, {0x0, 0x0, 0x1000a00}], 0x0, &(0x7f0000000240)=ANY=[]) openat2(r0, 0x0, &(0x7f00000001c0)={0x40040, 0x8}, 0x18) 23:48:53 executing program 6: r0 = syz_open_dev$tty20(0xc, 0x4, 0x1) ioctl$VT_RESIZEX(r0, 0x560a, &(0x7f0000000000)={0x0, 0x4, 0x0, 0x0, 0x1d}) syz_open_dev$tty20(0xc, 0x4, 0x1) 23:48:53 executing program 3: r0 = syz_open_dev$tty1(0xc, 0x4, 0x1) writev(r0, &(0x7f0000000080)=[{&(0x7f0000001380)="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", 0x1ea}], 0x1) 23:48:53 executing program 5: perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r0 = syz_mount_image$vfat(&(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x0, 0x2, &(0x7f0000000180)=[{&(0x7f0000000140)="eb3c906d6b66732e66617400020801000470008400f801", 0x17}, {0x0, 0x0, 0x1000a00}], 0x0, &(0x7f0000000240)=ANY=[]) openat2(r0, &(0x7f0000000100)='./file0\x00', &(0x7f00000001c0)={0x40040, 0xe5ffffff00000000}, 0x18) 23:48:53 executing program 7: perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_mount_image$vfat(&(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0xad03, 0x2, &(0x7f0000000180)=[{&(0x7f0000000140)="eb3c906d6b66732e66617400020801000470008400f801", 0x17}, {0x0, 0x0, 0x1000a00}], 0x0, &(0x7f0000000240)=ANY=[]) 23:48:53 executing program 2: r0 = add_key$keyring(&(0x7f0000000040), &(0x7f00000002c0)={'syz', 0x3}, 0x0, 0x0, 0xfffffffffffffffd) keyctl$KEYCTL_RESTRICT_KEYRING(0xf, r0, 0x0, 0x0) connect$inet(0xffffffffffffffff, &(0x7f0000000140)={0x2, 0x0, @dev}, 0x10) r1 = syz_open_dev$sg(&(0x7f0000000040), 0x0, 0x0) ioctl$BLKTRACETEARDOWN(r1, 0x1276, 0x0) ioctl$BLKTRACESETUP(r1, 0xc0481273, &(0x7f0000000140)={'\x00', 0x0, 0x4, 0x8, 0x76}) (fail_nth: 70) 23:48:53 executing program 4: perf_event_open(&(0x7f0000001d80)={0x2, 0x80, 0x69, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = socket$inet6_udp(0xa, 0x2, 0x0) dup(0xffffffffffffffff) fstat(0xffffffffffffffff, 0x0) connect$inet6(r0, &(0x7f0000000600)={0xa, 0x0, 0x0, @dev, 0x2}, 0x1c) sendmmsg$inet6(r0, &(0x7f0000000080)=[{{0x0, 0x61ab, &(0x7f00000004c0)=[{&(0x7f00000001c0)="4bc702854e3954b59347985ccc868289d3fe483d2c0900a2a1d12e33a66529e1f276fef452632dfa3c004ce3be84a5f66c29cd4ec39ae5206562fbc9ea3c0dbbebc22e628e147b0e9631f19b0ce0a48e0e675b2da3442226b898f1ddf8eabf133ab4a9cb0999c2ee1d3bd36d089b0d8e97ea00d4c5f6ad14dce058d595aacba2d587ff5eacd81b71a73f53ed276d1f3b3384bb2bfba4e0f37302e690df9e7024378ac754ac0576f996f3ee53d1034c7720767ddf2625817532f7ae89103367b73a36152b84c38bc227ba9e9ff48bcfe027585cf14bff37a888", 0xff41}], 0x1}}], 0x1, 0x0) [ 1763.825768] FAULT_INJECTION: forcing a failure. [ 1763.825768] name failslab, interval 1, probability 0, space 0, times 0 [ 1763.825784] CPU: 1 PID: 9807 Comm: syz-executor.2 Not tainted 5.10.194 #1 [ 1763.825791] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1763.825796] Call Trace: [ 1763.825816] dump_stack+0x107/0x167 23:48:54 executing program 2: r0 = add_key$keyring(&(0x7f0000000040), &(0x7f00000002c0)={'syz', 0x3}, 0x0, 0x0, 0xfffffffffffffffd) keyctl$KEYCTL_RESTRICT_KEYRING(0xf, r0, 0x0, 0x0) connect$inet(0xffffffffffffffff, &(0x7f0000000140)={0x2, 0x0, @dev}, 0x10) r1 = syz_open_dev$sg(&(0x7f0000000040), 0x0, 0x0) ioctl$BLKTRACETEARDOWN(r1, 0x1276, 0x0) ioctl$BLKTRACESETUP(r1, 0xc0481273, &(0x7f0000000140)={'\x00', 0x0, 0x4, 0x8, 0x76}) (fail_nth: 71) [ 1763.825843] should_fail.cold+0x5/0xa [ 1763.825858] ? alloc_inode+0x171/0x240 [ 1763.825875] should_failslab+0x5/0x20 23:48:54 executing program 4: perf_event_open(&(0x7f0000001d80)={0x2, 0x80, 0x69, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = socket$inet6_udp(0xa, 0x2, 0x0) dup(0xffffffffffffffff) fstat(0xffffffffffffffff, 0x0) connect$inet6(r0, &(0x7f0000000600)={0xa, 0x0, 0x0, @dev, 0x2}, 0x1c) sendmmsg$inet6(r0, &(0x7f0000000080)=[{{0x0, 0x62a9, &(0x7f00000004c0)=[{&(0x7f00000001c0)="4bc702854e3954b59347985ccc868289d3fe483d2c0900a2a1d12e33a66529e1f276fef452632dfa3c004ce3be84a5f66c29cd4ec39ae5206562fbc9ea3c0dbbebc22e628e147b0e9631f19b0ce0a48e0e675b2da3442226b898f1ddf8eabf133ab4a9cb0999c2ee1d3bd36d089b0d8e97ea00d4c5f6ad14dce058d595aacba2d587ff5eacd81b71a73f53ed276d1f3b3384bb2bfba4e0f37302e690df9e7024378ac754ac0576f996f3ee53d1034c7720767ddf2625817532f7ae89103367b73a36152b84c38bc227ba9e9ff48bcfe027585cf14bff37a888", 0xff41}], 0x1}}], 0x1, 0x0) 23:48:54 executing program 7: perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_mount_image$vfat(&(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0xe202, 0x2, &(0x7f0000000180)=[{&(0x7f0000000140)="eb3c906d6b66732e66617400020801000470008400f801", 0x17}, {0x0, 0x0, 0x1000a00}], 0x0, &(0x7f0000000240)=ANY=[]) [ 1763.825889] kmem_cache_alloc+0x5b/0x310 [ 1763.825907] ? __lookup_slow+0x490/0x490 [ 1763.825923] alloc_inode+0x171/0x240 [ 1763.825936] new_inode+0x23/0x250 [ 1763.825953] debugfs_get_inode+0x1a/0x130 [ 1763.825968] __debugfs_create_file+0x14e/0x530 23:48:54 executing program 5: perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r0 = syz_mount_image$vfat(&(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x0, 0x2, &(0x7f0000000180)=[{&(0x7f0000000140)="eb3c906d6b66732e66617400020801000470008400f801", 0x17}, {0x0, 0x0, 0x1000a00}], 0x0, &(0x7f0000000240)=ANY=[]) openat2(r0, &(0x7f0000000100)='./file0\x00', &(0x7f00000001c0)={0x40040, 0xf6ffffff00000000}, 0x18) 23:48:54 executing program 0: perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = syz_mount_image$vfat(&(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x0, 0x2, &(0x7f0000000180)=[{&(0x7f0000000140)="eb3c906d6b66732e66617400020801000470008400f801", 0x17}, {0x0, 0x0, 0x1000a00}], 0x0, &(0x7f0000000240)=ANY=[]) openat2(r0, &(0x7f0000000100)='./file0\x00', 0x0, 0x0) [ 1763.825984] ? blk_trace_remove+0x40/0x40 [ 1763.825999] relay_create_buf_file+0xf6/0x180 [ 1763.826014] relay_open_buf.part.0+0x7de/0xc00 23:48:54 executing program 1: perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) syz_mount_image$vfat(&(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x0, 0x2, &(0x7f0000000180)=[{&(0x7f0000000140)}, {0x0, 0x0, 0x1000a00}], 0x0, &(0x7f0000000240)=ANY=[]) [ 1763.826039] relay_open+0x531/0xa10 [ 1763.826059] do_blk_trace_setup+0x4cf/0xc10 [ 1763.826075] ? _copy_from_user+0xfb/0x1b0 [ 1763.826090] __blk_trace_setup+0xca/0x180 [ 1763.826104] ? do_blk_trace_setup+0xc10/0xc10 23:48:54 executing program 5: perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r0 = syz_mount_image$vfat(&(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x0, 0x2, &(0x7f0000000180)=[{&(0x7f0000000140)="eb3c906d6b66732e66617400020801000470008400f801", 0x17}, {0x0, 0x0, 0x1000a00}], 0x0, &(0x7f0000000240)=ANY=[]) openat2(r0, &(0x7f0000000100)='./file0\x00', &(0x7f00000001c0)={0x40040, 0xfeffffff00000000}, 0x18) [ 1763.826128] ? perf_trace_lock+0xac/0x490 [ 1763.826149] blk_trace_setup+0x43/0x60 [ 1763.826167] sg_ioctl_common+0x634/0x2570 [ 1763.826183] ? __sanitizer_cov_trace_switch+0x45/0x80 23:48:54 executing program 2: r0 = add_key$keyring(&(0x7f0000000040), &(0x7f00000002c0)={'syz', 0x3}, 0x0, 0x0, 0xfffffffffffffffd) keyctl$KEYCTL_RESTRICT_KEYRING(0xf, r0, 0x0, 0x0) connect$inet(0xffffffffffffffff, &(0x7f0000000140)={0x2, 0x0, @dev}, 0x10) r1 = syz_open_dev$sg(&(0x7f0000000040), 0x0, 0x0) ioctl$BLKTRACETEARDOWN(r1, 0x1276, 0x0) ioctl$BLKTRACESETUP(r1, 0xc0481273, &(0x7f0000000140)={'\x00', 0x0, 0x4, 0x8, 0x76}) (fail_nth: 72) [ 1763.826197] ? do_vfs_ioctl+0x283/0x10d0 [ 1763.826209] ? sg_write+0x120/0x120 [ 1763.826222] ? generic_block_fiemap+0x60/0x60 [ 1763.826239] ? __mutex_unlock_slowpath+0xe1/0x600 [ 1763.826267] ? selinux_file_ioctl+0xb6/0x270 [ 1763.826279] ? sg_compat_ioctl+0x120/0x120 [ 1763.826293] sg_ioctl+0x8f/0x120 [ 1763.826309] __x64_sys_ioctl+0x19a/0x210 [ 1763.826327] do_syscall_64+0x33/0x40 [ 1763.826343] entry_SYSCALL_64_after_hwframe+0x62/0xc7 [ 1763.826352] RIP: 0033:0x7f661a573b19 [ 1763.826367] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1763.826374] RSP: 002b:00007f6617ae9188 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 1763.826390] RAX: ffffffffffffffda RBX: 00007f661a686f60 RCX: 00007f661a573b19 [ 1763.826398] RDX: 0000000020000140 RSI: 00000000c0481273 RDI: 0000000000000003 [ 1763.826406] RBP: 00007f6617ae91d0 R08: 0000000000000000 R09: 0000000000000000 [ 1763.826414] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 1763.826422] R13: 00007ffd527cbf9f R14: 00007f6617ae9300 R15: 0000000000022000 [ 1763.826501] debugfs: out of free dentries, can not create file 'trace1' [ 1763.877584] FAT-fs (loop1): bogus number of reserved sectors [ 1763.877595] FAT-fs (loop1): Can't find a valid FAT filesystem [ 1763.912652] FAULT_INJECTION: forcing a failure. [ 1763.912652] name failslab, interval 1, probability 0, space 0, times 0 [ 1763.912675] CPU: 0 PID: 9823 Comm: syz-executor.2 Not tainted 5.10.194 #1 [ 1763.912685] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1763.912691] Call Trace: [ 1763.912719] dump_stack+0x107/0x167 [ 1763.912744] should_fail.cold+0x5/0xa [ 1763.912767] ? create_object.isra.0+0x3a/0xa20 [ 1763.912790] should_failslab+0x5/0x20 [ 1763.912809] kmem_cache_alloc+0x5b/0x310 [ 1763.912836] create_object.isra.0+0x3a/0xa20 [ 1763.912856] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 1763.912883] kmem_cache_alloc+0x159/0x310 [ 1763.912909] alloc_inode+0x171/0x240 [ 1763.912927] new_inode+0x23/0x250 [ 1763.912952] debugfs_get_inode+0x1a/0x130 [ 1763.912973] __debugfs_create_file+0x14e/0x530 [ 1763.912997] ? blk_trace_remove+0x40/0x40 [ 1763.913017] relay_create_buf_file+0xf6/0x180 [ 1763.913040] relay_open_buf.part.0+0x7de/0xc00 [ 1763.913076] relay_open+0x531/0xa10 [ 1763.913105] do_blk_trace_setup+0x4cf/0xc10 [ 1763.913127] ? _copy_from_user+0xfb/0x1b0 [ 1763.913149] __blk_trace_setup+0xca/0x180 [ 1763.913169] ? do_blk_trace_setup+0xc10/0xc10 [ 1763.913202] ? perf_trace_lock+0xac/0x490 [ 1763.913232] blk_trace_setup+0x43/0x60 [ 1763.913263] sg_ioctl_common+0x634/0x2570 [ 1763.913286] ? __sanitizer_cov_trace_switch+0x45/0x80 [ 1763.913307] ? do_vfs_ioctl+0x283/0x10d0 [ 1763.913324] ? sg_write+0x120/0x120 [ 1763.913342] ? generic_block_fiemap+0x60/0x60 [ 1763.913365] ? __mutex_unlock_slowpath+0xe1/0x600 [ 1763.913406] ? selinux_file_ioctl+0xb6/0x270 [ 1763.913423] ? sg_compat_ioctl+0x120/0x120 [ 1763.913443] sg_ioctl+0x8f/0x120 [ 1763.913466] __x64_sys_ioctl+0x19a/0x210 [ 1763.913492] do_syscall_64+0x33/0x40 [ 1763.913513] entry_SYSCALL_64_after_hwframe+0x62/0xc7 [ 1763.913527] RIP: 0033:0x7f661a573b19 [ 1763.913546] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1763.913557] RSP: 002b:00007f6617ae9188 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 1763.913580] RAX: ffffffffffffffda RBX: 00007f661a686f60 RCX: 00007f661a573b19 [ 1763.913592] RDX: 0000000020000140 RSI: 00000000c0481273 RDI: 0000000000000003 [ 1763.913603] RBP: 00007f6617ae91d0 R08: 0000000000000000 R09: 0000000000000000 [ 1763.913615] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 1763.913627] R13: 00007ffd527cbf9f R14: 00007f6617ae9300 R15: 0000000000022000 [ 1764.093829] FAULT_INJECTION: forcing a failure. [ 1764.093829] name failslab, interval 1, probability 0, space 0, times 0 [ 1764.093860] CPU: 1 PID: 9837 Comm: syz-executor.2 Not tainted 5.10.194 #1 [ 1764.093873] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1764.093879] Call Trace: [ 1764.093909] dump_stack+0x107/0x167 [ 1764.093935] should_fail.cold+0x5/0xa [ 1764.093964] ? security_inode_alloc+0x34/0x160 [ 1764.093990] should_failslab+0x5/0x20 [ 1764.094012] kmem_cache_alloc+0x5b/0x310 [ 1764.094044] security_inode_alloc+0x34/0x160 [ 1764.094072] inode_init_always+0xa4e/0xd10 [ 1764.094096] alloc_inode+0x84/0x240 [ 1764.094116] new_inode+0x23/0x250 [ 1764.094143] debugfs_get_inode+0x1a/0x130 [ 1764.094166] __debugfs_create_file+0x14e/0x530 [ 1764.094192] ? blk_trace_remove+0x40/0x40 [ 1764.094215] relay_create_buf_file+0xf6/0x180 [ 1764.094242] relay_open_buf.part.0+0x7de/0xc00 [ 1764.094282] relay_open+0x531/0xa10 [ 1764.094313] do_blk_trace_setup+0x4cf/0xc10 [ 1764.094337] ? _copy_from_user+0xfb/0x1b0 [ 1764.094362] __blk_trace_setup+0xca/0x180 [ 1764.094384] ? do_blk_trace_setup+0xc10/0xc10 [ 1764.094419] ? perf_trace_lock+0xac/0x490 [ 1764.094452] blk_trace_setup+0x43/0x60 [ 1764.094480] sg_ioctl_common+0x634/0x2570 [ 1764.094506] ? __sanitizer_cov_trace_switch+0x45/0x80 [ 1764.094528] ? do_vfs_ioctl+0x283/0x10d0 [ 1764.094548] ? sg_write+0x120/0x120 [ 1764.094568] ? generic_block_fiemap+0x60/0x60 [ 1764.094595] ? __mutex_unlock_slowpath+0xe1/0x600 [ 1764.094638] ? selinux_file_ioctl+0xb6/0x270 [ 1764.094657] ? sg_compat_ioctl+0x120/0x120 [ 1764.094680] sg_ioctl+0x8f/0x120 [ 1764.094705] __x64_sys_ioctl+0x19a/0x210 [ 1764.094732] do_syscall_64+0x33/0x40 [ 1764.094757] entry_SYSCALL_64_after_hwframe+0x62/0xc7 [ 1764.094772] RIP: 0033:0x7f661a573b19 [ 1764.094795] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1764.094807] RSP: 002b:00007f6617ae9188 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 1764.094831] RAX: ffffffffffffffda RBX: 00007f661a686f60 RCX: 00007f661a573b19 [ 1764.094845] RDX: 0000000020000140 RSI: 00000000c0481273 RDI: 0000000000000003 [ 1764.094859] RBP: 00007f6617ae91d0 R08: 0000000000000000 R09: 0000000000000000 [ 1764.094873] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 1764.094887] R13: 00007ffd527cbf9f R14: 00007f6617ae9300 R15: 0000000000022000 [ 1764.094968] debugfs: out of free dentries, can not create file 'trace1' [ 1764.121998] FAT-fs (loop1): bogus number of reserved sectors [ 1764.122008] FAT-fs (loop1): Can't find a valid FAT filesystem 23:49:09 executing program 3: r0 = syz_open_dev$tty1(0xc, 0x4, 0x1) writev(r0, &(0x7f0000000080)=[{&(0x7f0000001380)="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", 0x1ea}], 0x1) 23:49:09 executing program 7: perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_mount_image$vfat(&(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0xedc0, 0x2, &(0x7f0000000180)=[{&(0x7f0000000140)="eb3c906d6b66732e66617400020801000470008400f801", 0x17}, {0x0, 0x0, 0x1000a00}], 0x0, &(0x7f0000000240)=ANY=[]) 23:49:09 executing program 6: semctl$SEM_INFO(0x0, 0x2, 0x13, &(0x7f00000000c0)=""/91) r0 = syz_open_dev$tty20(0xc, 0x4, 0x1) ioctl$VT_RESIZEX(r0, 0x560a, &(0x7f0000000000)={0x0, 0x0, 0x0, 0x0, 0x1d}) r1 = openat$hpet(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0) read$eventfd(r1, 0x0, 0x0) ioctl$KDENABIO(r1, 0x4b36) r2 = openat$hpet(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0) read$eventfd(r2, 0x0, 0x0) r3 = syz_mount_image$tmpfs(&(0x7f0000000000), &(0x7f0000000080)='./file0\x00', 0x0, 0x0, 0x0, 0x0, &(0x7f0000000600)=ANY=[]) mknodat$loop(r3, &(0x7f0000000300)='./file0\x00', 0x1000, 0x0) openat(r3, &(0x7f0000000140)='./file0\x00', 0x2, 0x0) r4 = openat$hpet(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0) read$eventfd(r4, 0x0, 0x0) ioctl$TCXONC(r4, 0x540a, 0x1) openat(r3, &(0x7f0000000000)='./file0\x00', 0x0, 0x0) ioctl$EXT4_IOC_MOVE_EXT(r0, 0xc028660f, &(0x7f0000000140)={0x0, r3, 0x1, 0x9, 0x2, 0xcac}) ioctl$TIOCSTI(r2, 0x5412, &(0x7f0000000040)=0x1) ioctl$TIOCCBRK(r0, 0x5428) 23:49:09 executing program 5: perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r0 = syz_mount_image$vfat(&(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x0, 0x2, &(0x7f0000000180)=[{&(0x7f0000000140)="eb3c906d6b66732e66617400020801000470008400f801", 0x17}, {0x0, 0x0, 0x1000a00}], 0x0, &(0x7f0000000240)=ANY=[]) openat2(r0, &(0x7f0000000100)='./file0\x00', &(0x7f00000001c0)={0x40040, 0xffffffff00000000}, 0x18) 23:49:09 executing program 4: perf_event_open(&(0x7f0000001d80)={0x2, 0x80, 0x69, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = socket$inet6_udp(0xa, 0x2, 0x0) dup(0xffffffffffffffff) fstat(0xffffffffffffffff, 0x0) connect$inet6(r0, &(0x7f0000000600)={0xa, 0x0, 0x0, @dev, 0x2}, 0x1c) sendmmsg$inet6(r0, &(0x7f0000000080)=[{{0x0, 0x6841, &(0x7f00000004c0)=[{&(0x7f00000001c0)="4bc702854e3954b59347985ccc868289d3fe483d2c0900a2a1d12e33a66529e1f276fef452632dfa3c004ce3be84a5f66c29cd4ec39ae5206562fbc9ea3c0dbbebc22e628e147b0e9631f19b0ce0a48e0e675b2da3442226b898f1ddf8eabf133ab4a9cb0999c2ee1d3bd36d089b0d8e97ea00d4c5f6ad14dce058d595aacba2d587ff5eacd81b71a73f53ed276d1f3b3384bb2bfba4e0f37302e690df9e7024378ac754ac0576f996f3ee53d1034c7720767ddf2625817532f7ae89103367b73a36152b84c38bc227ba9e9ff48bcfe027585cf14bff37a888", 0xff41}], 0x1}}], 0x1, 0x0) 23:49:09 executing program 2: r0 = add_key$keyring(&(0x7f0000000040), &(0x7f00000002c0)={'syz', 0x3}, 0x0, 0x0, 0xfffffffffffffffd) keyctl$KEYCTL_RESTRICT_KEYRING(0xf, r0, 0x0, 0x0) connect$inet(0xffffffffffffffff, &(0x7f0000000140)={0x2, 0x0, @dev}, 0x10) r1 = syz_open_dev$sg(&(0x7f0000000040), 0x0, 0x0) ioctl$BLKTRACETEARDOWN(r1, 0x1276, 0x0) ioctl$BLKTRACESETUP(r1, 0xc0481273, &(0x7f0000000140)={'\x00', 0x0, 0x4, 0x8, 0x76}) (fail_nth: 73) 23:49:09 executing program 1: perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) syz_mount_image$vfat(&(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x0, 0x2, &(0x7f0000000180)=[{&(0x7f0000000140)}, {0x0, 0x0, 0x1000a00}], 0x0, &(0x7f0000000240)=ANY=[]) 23:49:09 executing program 0: perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = syz_mount_image$vfat(&(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x0, 0x2, &(0x7f0000000180)=[{&(0x7f0000000140)="eb3c906d6b66732e66617400020801000470008400f801", 0x17}, {0x0, 0x0, 0x1000a00}], 0x0, &(0x7f0000000240)=ANY=[]) openat2(r0, &(0x7f0000000100)='./file0\x00', 0x0, 0x0) [ 1778.984152] FAULT_INJECTION: forcing a failure. [ 1778.984152] name failslab, interval 1, probability 0, space 0, times 0 [ 1778.985441] CPU: 0 PID: 9867 Comm: syz-executor.2 Not tainted 5.10.194 #1 [ 1778.986191] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1778.987112] Call Trace: [ 1778.987410] dump_stack+0x107/0x167 [ 1778.987804] should_fail.cold+0x5/0xa [ 1778.988225] ? create_object.isra.0+0x3a/0xa20 [ 1778.988729] should_failslab+0x5/0x20 [ 1778.989144] kmem_cache_alloc+0x5b/0x310 [ 1778.989601] create_object.isra.0+0x3a/0xa20 [ 1778.990088] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 1778.990647] kmem_cache_alloc+0x159/0x310 [ 1778.991106] alloc_inode+0x171/0x240 [ 1778.991509] new_inode+0x23/0x250 [ 1778.991889] debugfs_get_inode+0x1a/0x130 [ 1778.992343] __debugfs_create_file+0x14e/0x530 [ 1778.992837] ? blk_trace_remove+0x40/0x40 [ 1778.993294] relay_create_buf_file+0xf6/0x180 [ 1778.993793] relay_open_buf.part.0+0x7de/0xc00 [ 1778.994321] relay_open+0x531/0xa10 [ 1778.994732] do_blk_trace_setup+0x4cf/0xc10 [ 1778.995207] ? _copy_from_user+0xfb/0x1b0 [ 1778.995664] __blk_trace_setup+0xca/0x180 [ 1778.996119] ? do_blk_trace_setup+0xc10/0xc10 [ 1778.996621] ? perf_trace_lock+0xac/0x490 [ 1778.997085] blk_trace_setup+0x43/0x60 [ 1778.997509] sg_ioctl_common+0x634/0x2570 [ 1778.997969] ? __sanitizer_cov_trace_switch+0x45/0x80 [ 1778.998545] ? do_vfs_ioctl+0x283/0x10d0 [ 1778.998995] ? sg_write+0x120/0x120 [ 1778.999403] ? generic_block_fiemap+0x60/0x60 [ 1778.999900] ? __mutex_unlock_slowpath+0xe1/0x600 [ 1779.000444] ? selinux_file_ioctl+0xb6/0x270 [ 1779.000932] ? sg_compat_ioctl+0x120/0x120 [ 1779.001392] sg_ioctl+0x8f/0x120 [ 1779.001769] __x64_sys_ioctl+0x19a/0x210 [ 1779.002220] do_syscall_64+0x33/0x40 [ 1779.002629] entry_SYSCALL_64_after_hwframe+0x62/0xc7 [ 1779.003198] RIP: 0033:0x7f661a573b19 [ 1779.003610] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1779.005619] RSP: 002b:00007f6617ae9188 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 1779.006461] RAX: ffffffffffffffda RBX: 00007f661a686f60 RCX: 00007f661a573b19 [ 1779.007244] RDX: 0000000020000140 RSI: 00000000c0481273 RDI: 0000000000000003 [ 1779.008029] RBP: 00007f6617ae91d0 R08: 0000000000000000 R09: 0000000000000000 [ 1779.008818] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 1779.009602] R13: 00007ffd527cbf9f R14: 00007f6617ae9300 R15: 0000000000022000 [ 1779.023503] FAT-fs (loop1): bogus number of reserved sectors [ 1779.024192] FAT-fs (loop1): Can't find a valid FAT filesystem 23:49:09 executing program 3: r0 = syz_open_dev$tty1(0xc, 0x4, 0x1) writev(r0, &(0x7f0000000080)=[{&(0x7f0000001380)="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", 0x1ea}], 0x1) 23:49:09 executing program 1: perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) syz_mount_image$vfat(&(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x0, 0x2, &(0x7f0000000180)=[{&(0x7f0000000140)}, {0x0, 0x0, 0x1000a00}], 0x0, &(0x7f0000000240)=ANY=[]) 23:49:09 executing program 0: perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = syz_mount_image$vfat(&(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x0, 0x2, &(0x7f0000000180)=[{&(0x7f0000000140)="eb3c906d6b66732e66617400020801000470008400f801", 0x17}, {0x0, 0x0, 0x1000a00}], 0x0, &(0x7f0000000240)=ANY=[]) openat2(r0, &(0x7f0000000100)='./file0\x00', 0x0, 0x0) 23:49:09 executing program 7: perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_mount_image$vfat(&(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0xf103, 0x2, &(0x7f0000000180)=[{&(0x7f0000000140)="eb3c906d6b66732e66617400020801000470008400f801", 0x17}, {0x0, 0x0, 0x1000a00}], 0x0, &(0x7f0000000240)=ANY=[]) 23:49:09 executing program 5: perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r0 = syz_mount_image$vfat(&(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x0, 0x2, &(0x7f0000000180)=[{&(0x7f0000000140)="eb3c906d6b66732e66617400020801000470008400f801", 0x17}, {0x0, 0x0, 0x1000a00}], 0x0, &(0x7f0000000240)=ANY=[]) openat2(r0, &(0x7f0000000100)='./file0\x00', &(0x7f00000001c0)={0x40040, 0xfffffffffffff000}, 0x18) 23:49:09 executing program 4: perf_event_open(&(0x7f0000001d80)={0x2, 0x80, 0x69, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = socket$inet6_udp(0xa, 0x2, 0x0) dup(0xffffffffffffffff) fstat(0xffffffffffffffff, 0x0) connect$inet6(r0, &(0x7f0000000600)={0xa, 0x0, 0x0, @dev, 0x2}, 0x1c) sendmmsg$inet6(r0, &(0x7f0000000080)=[{{0x0, 0x698f, &(0x7f00000004c0)=[{&(0x7f00000001c0)="4bc702854e3954b59347985ccc868289d3fe483d2c0900a2a1d12e33a66529e1f276fef452632dfa3c004ce3be84a5f66c29cd4ec39ae5206562fbc9ea3c0dbbebc22e628e147b0e9631f19b0ce0a48e0e675b2da3442226b898f1ddf8eabf133ab4a9cb0999c2ee1d3bd36d089b0d8e97ea00d4c5f6ad14dce058d595aacba2d587ff5eacd81b71a73f53ed276d1f3b3384bb2bfba4e0f37302e690df9e7024378ac754ac0576f996f3ee53d1034c7720767ddf2625817532f7ae89103367b73a36152b84c38bc227ba9e9ff48bcfe027585cf14bff37a888", 0xff41}], 0x1}}], 0x1, 0x0) 23:49:09 executing program 6: r0 = syz_open_dev$tty20(0xc, 0x4, 0x1) r1 = openat$hpet(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0) r2 = openat$cgroup_ro(r1, &(0x7f00000000c0)='blkio.bfq.io_merged\x00', 0x0, 0x0) read$eventfd(r2, 0x0, 0x0) ioctl$TIOCSTI(r2, 0x5412, &(0x7f0000000100)=0x2) r3 = openat$hpet(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0) read$eventfd(r3, 0x0, 0x0) ioctl$FIONREAD(r3, 0x541b, &(0x7f0000000180)) ioctl$TIOCSPGRP(r1, 0x5410, &(0x7f0000000040)=0xffffffffffffffff) r4 = syz_open_dev$sg(&(0x7f0000000080), 0x4, 0x0) ioctl$SCSI_IOCTL_SEND_COMMAND(r4, 0x1, &(0x7f00000000c0)={0x7, 0x0, 0xffffff8a, "2988e13eddee8f"}) ioctl$TCSETA(r0, 0x5406, &(0x7f0000000140)={0x2, 0x1f, 0x8, 0x8, 0x19, "455d2d4da50d272f"}) ioctl$VT_RESIZEX(r0, 0x560a, &(0x7f0000000000)={0x6, 0x0, 0x0, 0x7, 0x1e, 0x401}) 23:49:09 executing program 3: r0 = syz_open_dev$tty1(0xc, 0x4, 0x1) writev(r0, &(0x7f0000000080)=[{&(0x7f0000001380)="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", 0x1ea}], 0x1) 23:49:09 executing program 2: r0 = add_key$keyring(&(0x7f0000000040), &(0x7f00000002c0)={'syz', 0x3}, 0x0, 0x0, 0xfffffffffffffffd) keyctl$KEYCTL_RESTRICT_KEYRING(0xf, r0, 0x0, 0x0) connect$inet(0xffffffffffffffff, &(0x7f0000000140)={0x2, 0x0, @dev}, 0x10) r1 = syz_open_dev$sg(&(0x7f0000000040), 0x0, 0x0) ioctl$BLKTRACETEARDOWN(r1, 0x1276, 0x0) ioctl$BLKTRACESETUP(r1, 0xc0481273, &(0x7f0000000140)={'\x00', 0x0, 0x4, 0x8, 0x76}) (fail_nth: 74) [ 1779.201740] FAT-fs (loop1): bogus number of reserved sectors [ 1779.203222] FAT-fs (loop1): Can't find a valid FAT filesystem 23:49:09 executing program 7: perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_mount_image$vfat(&(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0xff0f, 0x2, &(0x7f0000000180)=[{&(0x7f0000000140)="eb3c906d6b66732e66617400020801000470008400f801", 0x17}, {0x0, 0x0, 0x1000a00}], 0x0, &(0x7f0000000240)=ANY=[]) [ 1779.253747] FAULT_INJECTION: forcing a failure. [ 1779.253747] name fail_page_alloc, interval 1, probability 0, space 0, times 0 [ 1779.256377] CPU: 1 PID: 9898 Comm: syz-executor.2 Not tainted 5.10.194 #1 [ 1779.257843] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1779.259627] Call Trace: [ 1779.260201] dump_stack+0x107/0x167 [ 1779.260988] should_fail.cold+0x5/0xa [ 1779.261811] __alloc_pages_nodemask+0x182/0x600 [ 1779.262807] ? lock_acquire+0x197/0x470 [ 1779.263663] ? lockref_get+0x11/0x50 [ 1779.264464] ? __alloc_pages_slowpath.constprop.0+0x2130/0x2130 [ 1779.265759] ? lock_downgrade+0x6d0/0x6d0 [ 1779.266654] ? do_raw_spin_lock+0x121/0x260 [ 1779.267583] ? rwlock_bug.part.0+0x90/0x90 23:49:09 executing program 6: r0 = syz_open_dev$tty20(0xc, 0x4, 0x1) ioctl$VT_RESIZEX(r0, 0x560a, &(0x7f0000000000)={0x0, 0x0, 0x0, 0x633, 0x1d}) [ 1779.268506] alloc_pages_current+0x187/0x280 [ 1779.268533] __get_free_pages+0xc/0xa0 [ 1779.268553] inode_doinit_with_dentry+0x8f1/0x1240 [ 1779.268579] ? hrtimer_try_to_cancel.part.0+0x267/0x3b0 [ 1779.268597] ? hrtimer_init_sleeper+0x1a0/0x1f0 [ 1779.268618] ? selinux_file_lock+0x280/0x280 [ 1779.268636] ? current_time+0x1e6/0x2c0 [ 1779.268655] ? igrab+0xc0/0xc0 [ 1779.268680] selinux_d_instantiate+0x23/0x30 [ 1779.268703] security_d_instantiate+0x56/0xe0 [ 1779.268727] d_instantiate+0x5a/0x90 [ 1779.268749] __debugfs_create_file+0x246/0x530 [ 1779.268773] ? blk_trace_remove+0x40/0x40 [ 1779.268793] relay_create_buf_file+0xf6/0x180 [ 1779.268817] relay_open_buf.part.0+0x7de/0xc00 [ 1779.268854] relay_open+0x531/0xa10 [ 1779.268884] do_blk_trace_setup+0x4cf/0xc10 [ 1779.268906] ? _copy_from_user+0xfb/0x1b0 [ 1779.268930] __blk_trace_setup+0xca/0x180 [ 1779.268950] ? do_blk_trace_setup+0xc10/0xc10 [ 1779.268984] ? perf_trace_lock+0xac/0x490 [ 1779.269016] blk_trace_setup+0x43/0x60 [ 1779.269041] sg_ioctl_common+0x634/0x2570 [ 1779.269065] ? __sanitizer_cov_trace_switch+0x45/0x80 [ 1779.269086] ? do_vfs_ioctl+0x283/0x10d0 [ 1779.269104] ? sg_write+0x120/0x120 [ 1779.269123] ? generic_block_fiemap+0x60/0x60 [ 1779.269147] ? __mutex_unlock_slowpath+0xe1/0x600 [ 1779.269189] ? selinux_file_ioctl+0xb6/0x270 [ 1779.269206] ? sg_compat_ioctl+0x120/0x120 [ 1779.269227] sg_ioctl+0x8f/0x120 [ 1779.269251] __x64_sys_ioctl+0x19a/0x210 [ 1779.269277] do_syscall_64+0x33/0x40 [ 1779.269301] entry_SYSCALL_64_after_hwframe+0x62/0xc7 [ 1779.269314] RIP: 0033:0x7f661a573b19 [ 1779.269336] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1779.269347] RSP: 002b:00007f6617ae9188 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 1779.269370] RAX: ffffffffffffffda RBX: 00007f661a686f60 RCX: 00007f661a573b19 [ 1779.269383] RDX: 0000000020000140 RSI: 00000000c0481273 RDI: 0000000000000003 [ 1779.269395] RBP: 00007f6617ae91d0 R08: 0000000000000000 R09: 0000000000000000 [ 1779.269406] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 1779.269419] R13: 00007ffd527cbf9f R14: 00007f6617ae9300 R15: 0000000000022000 23:49:24 executing program 6: ioctl$VT_RESIZEX(0xffffffffffffffff, 0x560a, &(0x7f0000000000)={0x0, 0x0, 0x0, 0x0, 0x1d}) 23:49:24 executing program 3: r0 = syz_open_dev$tty1(0xc, 0x4, 0x1) writev(r0, &(0x7f0000000080)=[{&(0x7f0000001380)="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", 0x1ea}], 0x1) 23:49:24 executing program 0: perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = syz_mount_image$vfat(&(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x0, 0x2, &(0x7f0000000180)=[{&(0x7f0000000140)="eb3c906d6b66732e66617400020801000470008400f801", 0x17}, {0x0, 0x0, 0x1000a00}], 0x0, &(0x7f0000000240)=ANY=[]) openat2(r0, &(0x7f0000000100)='./file0\x00', &(0x7f00000001c0)={0x0, 0x8}, 0x18) 23:49:24 executing program 4: perf_event_open(&(0x7f0000001d80)={0x2, 0x80, 0x69, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = socket$inet6_udp(0xa, 0x2, 0x0) dup(0xffffffffffffffff) fstat(0xffffffffffffffff, 0x0) connect$inet6(r0, &(0x7f0000000600)={0xa, 0x0, 0x0, @dev, 0x2}, 0x1c) sendmmsg$inet6(r0, &(0x7f0000000080)=[{{0x0, 0x6dd9, &(0x7f00000004c0)=[{&(0x7f00000001c0)="4bc702854e3954b59347985ccc868289d3fe483d2c0900a2a1d12e33a66529e1f276fef452632dfa3c004ce3be84a5f66c29cd4ec39ae5206562fbc9ea3c0dbbebc22e628e147b0e9631f19b0ce0a48e0e675b2da3442226b898f1ddf8eabf133ab4a9cb0999c2ee1d3bd36d089b0d8e97ea00d4c5f6ad14dce058d595aacba2d587ff5eacd81b71a73f53ed276d1f3b3384bb2bfba4e0f37302e690df9e7024378ac754ac0576f996f3ee53d1034c7720767ddf2625817532f7ae89103367b73a36152b84c38bc227ba9e9ff48bcfe027585cf14bff37a888", 0xff41}], 0x1}}], 0x1, 0x0) 23:49:24 executing program 1: perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) syz_mount_image$vfat(&(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x0, 0x2, &(0x7f0000000180)=[{&(0x7f0000000140)="eb3c906d6b66732e66617400", 0xc}, {0x0, 0x0, 0x1000a00}], 0x0, &(0x7f0000000240)=ANY=[]) 23:49:24 executing program 2: r0 = add_key$keyring(&(0x7f0000000040), &(0x7f00000002c0)={'syz', 0x3}, 0x0, 0x0, 0xfffffffffffffffd) keyctl$KEYCTL_RESTRICT_KEYRING(0xf, r0, 0x0, 0x0) connect$inet(0xffffffffffffffff, &(0x7f0000000140)={0x2, 0x0, @dev}, 0x10) r1 = syz_open_dev$sg(&(0x7f0000000040), 0x0, 0x0) ioctl$BLKTRACETEARDOWN(r1, 0x1276, 0x0) ioctl$BLKTRACESETUP(r1, 0xc0481273, &(0x7f0000000140)={'\x00', 0x0, 0x4, 0x8, 0x76}) (fail_nth: 75) 23:49:24 executing program 5: perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r0 = syz_mount_image$vfat(&(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x0, 0x2, &(0x7f0000000180)=[{&(0x7f0000000140)="eb3c906d6b66732e66617400020801000470008400f801", 0x17}, {0x0, 0x0, 0x1000a00}], 0x0, &(0x7f0000000240)=ANY=[]) openat2(r0, &(0x7f0000000100)='./file0\x00', &(0x7f00000001c0)={0x40040, 0x0, 0x2}, 0x18) 23:49:24 executing program 7: perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_mount_image$vfat(&(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x10009, 0x2, &(0x7f0000000180)=[{&(0x7f0000000140)="eb3c906d6b66732e66617400020801000470008400f801", 0x17}, {0x0, 0x0, 0x1000a00}], 0x0, &(0x7f0000000240)=ANY=[]) 23:49:24 executing program 6: syz_io_uring_setup(0x3a75, &(0x7f0000000080), &(0x7f0000ffb000/0x3000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=0x0, &(0x7f0000000100)=0x0) r2 = socket$inet6_udplite(0xa, 0x2, 0x88) syz_io_uring_submit(r0, r1, &(0x7f0000000000)=@IORING_OP_RECVMSG={0xa, 0x0, 0x0, r2, 0x0, &(0x7f0000000440)={0x0, 0x0, 0x0}}, 0x0) syz_io_uring_setup(0x1464, &(0x7f0000003900)={0x0, 0xd84e, 0x2, 0x2, 0x1dc}, &(0x7f0000ffb000/0x3000)=nil, &(0x7f0000ffb000/0x2000)=nil, &(0x7f0000003980), &(0x7f00000039c0)=0x0) syz_io_uring_submit(r0, r3, &(0x7f0000003b40)=@IORING_OP_STATX={0x15, 0x0, 0x0, 0xffffffffffffffff, &(0x7f0000003a00), &(0x7f0000003b00)='./file0\x00', 0x20, 0x400}, 0x5) r4 = syz_open_dev$tty20(0xc, 0x4, 0x1) write$binfmt_elf64(r4, &(0x7f0000000040)={{0x7f, 0x45, 0x4c, 0x46, 0x1, 0x8, 0x2, 0xf, 0xfffffffffffffffc, 0x2, 0x3, 0x0, 0x12a, 0x40, 0x1c3, 0x0, 0x6, 0x38, 0x2, 0x0, 0x9, 0x6}, [{0x70000000, 0xfffffffa, 0x1, 0x7f, 0x9, 0x4, 0x400, 0x246}, {0x5, 0x95f, 0x1000, 0x101, 0x9bf, 0x2, 0x5, 0x20}], "be4330eecc453eba266fcd50186b4aa98bf78720dd554f62999f811e91cbac3af084c8027988689495d11df4cf1e25a42f22e511fa9fef2c6bc03e8e953fc33b4edb166096b77116582711ab0e5582a0ffbdac4e46bd778856be0e8073961f90af340de1f85b8a86015fd589cb3be50f2fa78b9fe1677fef24b284493a8b4d9b9f7ae318b1", ['\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00']}, 0xa35) recvmmsg$unix(0xffffffffffffffff, &(0x7f00000037c0)=[{{0x0, 0x0, &(0x7f0000000ac0)=[{&(0x7f0000000a80)=""/53, 0x35}], 0x1, &(0x7f0000000b00)=[@rights={{0x10}}], 0x10}}, {{0x0, 0x0, &(0x7f0000000e40)=[{&(0x7f0000000b40)=""/37, 0x25}, {&(0x7f0000000b80)=""/235, 0xeb}, {&(0x7f0000000c80)=""/204, 0xcc}, {&(0x7f0000000d80)=""/77, 0x4d}, {&(0x7f0000000e00)=""/62, 0x3e}], 0x5, &(0x7f0000000ec0)=[@rights={{0x1c, 0x1, 0x1, [0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff]}}, @cred={{0x1c}}], 0x40}}, {{&(0x7f0000000f00)=@abs, 0x6e, &(0x7f0000001000)=[{&(0x7f0000000f80)=""/70, 0x46}], 0x1, &(0x7f0000001040)=[@cred={{0x1c}}], 0x20}}, {{&(0x7f0000001080)=@abs, 0x6e, &(0x7f00000036c0)=[{&(0x7f0000001100)=""/216, 0xd8}, {&(0x7f0000001200)=""/235, 0xeb}, {&(0x7f0000001300)=""/4096, 0x1000}, {&(0x7f0000002300)=""/250, 0xfa}, {&(0x7f0000002400)=""/139, 0x8b}, {&(0x7f00000024c0)=""/120, 0x78}, {&(0x7f0000002540)=""/11, 0xb}, {&(0x7f0000002580)=""/156, 0x9c}, {&(0x7f0000002640)=""/69, 0x45}, {&(0x7f00000026c0)=""/4096, 0x1000}], 0xa, &(0x7f0000003780)=[@cred={{0x1c}}, @cred={{0x1c}}], 0x40}}], 0x4, 0x120, &(0x7f00000038c0)={0x77359400}) ioctl$VT_RESIZEX(r4, 0x560a, &(0x7f0000000000)={0x0, 0x0, 0x0, 0x0, 0x1d}) [ 1794.071250] FAULT_INJECTION: forcing a failure. [ 1794.071250] name failslab, interval 1, probability 0, space 0, times 0 [ 1794.074337] CPU: 1 PID: 9923 Comm: syz-executor.2 Not tainted 5.10.194 #1 [ 1794.075832] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1794.077625] Call Trace: [ 1794.078214] dump_stack+0x107/0x167 [ 1794.079002] should_fail.cold+0x5/0xa [ 1794.079605] FAT-fs (loop1): bogus number of reserved sectors [ 1794.079828] ? tracepoint_add_func+0x35b/0x1000 [ 1794.080618] FAT-fs (loop1): Can't find a valid FAT filesystem [ 1794.081546] should_failslab+0x5/0x20 [ 1794.081565] __kmalloc+0x72/0x390 [ 1794.081594] tracepoint_add_func+0x35b/0x1000 [ 1794.084807] ? blk_add_trace_rq_issue+0x50/0x50 [ 1794.085814] tracepoint_probe_register+0xa1/0xf0 [ 1794.086843] ? tracepoint_probe_register_prio+0xf0/0xf0 [ 1794.087990] ? blk_add_trace_rq_issue+0x50/0x50 [ 1794.088995] ? relay_open+0x69f/0xa10 [ 1794.089827] blk_register_tracepoints+0x1b/0x3e0 [ 1794.090867] do_blk_trace_setup+0x9db/0xc10 [ 1794.091840] ? _copy_from_user+0xfb/0x1b0 [ 1794.092738] __blk_trace_setup+0xca/0x180 [ 1794.093639] ? do_blk_trace_setup+0xc10/0xc10 [ 1794.094629] ? perf_trace_lock+0xac/0x490 [ 1794.095540] blk_trace_setup+0x43/0x60 [ 1794.096387] sg_ioctl_common+0x634/0x2570 [ 1794.097293] ? __sanitizer_cov_trace_switch+0x45/0x80 [ 1794.098414] ? do_vfs_ioctl+0x283/0x10d0 [ 1794.099290] ? sg_write+0x120/0x120 [ 1794.100072] ? generic_block_fiemap+0x60/0x60 [ 1794.101044] ? __mutex_unlock_slowpath+0xe1/0x600 [ 1794.102098] ? selinux_file_ioctl+0xb6/0x270 [ 1794.103058] ? sg_compat_ioctl+0x120/0x120 [ 1794.103971] sg_ioctl+0x8f/0x120 [ 1794.104707] __x64_sys_ioctl+0x19a/0x210 [ 1794.105583] do_syscall_64+0x33/0x40 [ 1794.106394] entry_SYSCALL_64_after_hwframe+0x62/0xc7 [ 1794.107488] RIP: 0033:0x7f661a573b19 [ 1794.108289] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1794.112232] RSP: 002b:00007f6617ae9188 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 1794.114240] RAX: ffffffffffffffda RBX: 00007f661a686f60 RCX: 00007f661a573b19 [ 1794.114256] RDX: 0000000020000140 RSI: 00000000c0481273 RDI: 0000000000000003 [ 1794.116695] RBP: 00007f6617ae91d0 R08: 0000000000000000 R09: 0000000000000000 [ 1794.116707] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 1794.116720] R13: 00007ffd527cbf9f R14: 00007f6617ae9300 R15: 0000000000022000 [ 1794.117002] ------------[ cut here ]------------ [ 1794.122311] WARNING: CPU: 1 PID: 9923 at kernel/trace/blktrace.c:1141 blk_register_tracepoints+0x309/0x3e0 [ 1794.124480] Modules linked in: [ 1794.125231] CPU: 1 PID: 9923 Comm: syz-executor.2 Not tainted 5.10.194 #1 [ 1794.126844] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1794.128764] RIP: 0010:blk_register_tracepoints+0x309/0x3e0 [ 1794.130071] Code: 48 c7 c7 40 b2 65 85 e8 75 c6 fb ff 31 ff 89 c3 89 c6 e8 0a 81 f9 ff 85 db 0f 85 c6 00 00 00 5b e9 ac 87 f9 ff e8 a7 87 f9 ff <0f> 0b e9 1e fd ff ff e8 9b 87 f9 ff 0f 0b e9 3f fd ff ff e8 8f 87 [ 1794.134250] RSP: 0018:ffff88804cb07bc8 EFLAGS: 00010212 [ 1794.135511] RAX: 000000000001c04a RBX: 00000000fffffff4 RCX: ffffc90001e22000 [ 1794.137113] RDX: 0000000000040000 RSI: ffffffff8146fa79 RDI: 0000000000000005 [ 1794.138761] RBP: ffff88800fc13900 R08: 0000000000000001 R09: ffff88801f1b9a63 [ 1794.140402] R10: 0000000000000000 R11: 0000000000000001 R12: 0000000000000000 [ 1794.142025] R13: 0000000000000000 R14: ffff88800fc13930 R15: 0000000000000076 23:49:24 executing program 0: perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = syz_mount_image$vfat(&(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x0, 0x2, &(0x7f0000000180)=[{&(0x7f0000000140)="eb3c906d6b66732e66617400020801000470008400f801", 0x17}, {0x0, 0x0, 0x1000a00}], 0x0, &(0x7f0000000240)=ANY=[]) openat2(r0, &(0x7f0000000100)='./file0\x00', &(0x7f00000001c0)={0x0, 0x8}, 0x18) 23:49:24 executing program 3: r0 = syz_open_dev$tty1(0xc, 0x4, 0x1) writev(r0, &(0x7f0000000080)=[{&(0x7f0000001380)="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", 0x1ea}], 0x1) [ 1794.143660] FS: 00007f6617ae9700(0000) GS:ffff88806cf00000(0000) knlGS:0000000000000000 [ 1794.149460] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 1794.149478] CR2: 00007fe929eecbf8 CR3: 0000000048696000 CR4: 0000000000350ee0 [ 1794.151985] Call Trace: [ 1794.152013] ? __warn+0xe2/0x1f0 [ 1794.153170] ? blk_register_tracepoints+0x309/0x3e0 [ 1794.153197] ? report_bug+0x1c1/0x210 [ 1794.154803] ? handle_bug+0x41/0x90 [ 1794.154824] ? exc_invalid_op+0x14/0x50 [ 1794.154849] ? asm_exc_invalid_op+0x12/0x20 [ 1794.159616] ? blk_register_tracepoints+0x309/0x3e0 [ 1794.161026] ? blk_register_tracepoints+0x309/0x3e0 [ 1794.161050] ? blk_register_tracepoints+0x309/0x3e0 [ 1794.161069] do_blk_trace_setup+0x9db/0xc10 [ 1794.161092] ? _copy_from_user+0xfb/0x1b0 [ 1794.161116] __blk_trace_setup+0xca/0x180 [ 1794.161137] ? do_blk_trace_setup+0xc10/0xc10 [ 1794.161172] ? perf_trace_lock+0xac/0x490 23:49:24 executing program 2: r0 = add_key$keyring(&(0x7f0000000040), &(0x7f00000002c0)={'syz', 0x3}, 0x0, 0x0, 0xfffffffffffffffd) keyctl$KEYCTL_RESTRICT_KEYRING(0xf, r0, 0x0, 0x0) connect$inet(0xffffffffffffffff, &(0x7f0000000140)={0x2, 0x0, @dev}, 0x10) r1 = syz_open_dev$sg(&(0x7f0000000040), 0x0, 0x0) ioctl$BLKTRACETEARDOWN(r1, 0x1276, 0x0) ioctl$BLKTRACESETUP(r1, 0xc0481273, &(0x7f0000000140)={'\x00', 0x0, 0x4, 0x8, 0x76}) (fail_nth: 76) [ 1794.161204] blk_trace_setup+0x43/0x60 [ 1794.161229] sg_ioctl_common+0x634/0x2570 [ 1794.161254] ? __sanitizer_cov_trace_switch+0x45/0x80 [ 1794.161315] ? do_vfs_ioctl+0x283/0x10d0 [ 1794.161334] ? sg_write+0x120/0x120 [ 1794.161354] ? generic_block_fiemap+0x60/0x60 [ 1794.161378] ? __mutex_unlock_slowpath+0xe1/0x600 [ 1794.161420] ? selinux_file_ioctl+0xb6/0x270 [ 1794.161438] ? sg_compat_ioctl+0x120/0x120 [ 1794.161460] sg_ioctl+0x8f/0x120 [ 1794.161484] __x64_sys_ioctl+0x19a/0x210 [ 1794.161511] do_syscall_64+0x33/0x40 [ 1794.161534] entry_SYSCALL_64_after_hwframe+0x62/0xc7 [ 1794.161549] RIP: 0033:0x7f661a573b19 [ 1794.161573] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1794.161585] RSP: 002b:00007f6617ae9188 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 1794.161610] RAX: ffffffffffffffda RBX: 00007f661a686f60 RCX: 00007f661a573b19 [ 1794.161623] RDX: 0000000020000140 RSI: 00000000c0481273 RDI: 0000000000000003 [ 1794.161636] RBP: 00007f6617ae91d0 R08: 0000000000000000 R09: 0000000000000000 [ 1794.161649] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 1794.161662] R13: 00007ffd527cbf9f R14: 00007f6617ae9300 R15: 0000000000022000 [ 1794.161697] irq event stamp: 3295 [ 1794.161722] hardirqs last enabled at (3301): [] vprintk_emit+0x486/0x4d0 [ 1794.161745] hardirqs last disabled at (3306): [] vprintk_emit+0x418/0x4d0 [ 1794.161766] softirqs last enabled at (3116): [] asm_call_irq_on_stack+0x12/0x20 [ 1794.161787] softirqs last disabled at (2967): [] asm_call_irq_on_stack+0x12/0x20 [ 1794.161796] ---[ end trace 1707b4ba21e763b6 ]--- [ 1794.273806] ------------[ cut here ]------------ [ 1794.273831] WARNING: CPU: 0 PID: 9942 at kernel/tracepoint.c:425 tracepoint_probe_unregister+0x776/0xd20 [ 1794.273835] Modules linked in: [ 1794.273853] CPU: 0 PID: 9942 Comm: syz-executor.2 Tainted: G W 5.10.194 #1 [ 1794.273860] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1794.273872] RIP: 0010:tracepoint_probe_unregister+0x776/0xd20 [ 1794.273885] Code: ff ff be c0 0c 00 00 48 c7 c7 ff ff ff ff 89 c2 e8 ff b4 19 00 48 89 44 24 10 e9 58 fa ff ff 41 bc fe ff ff ff e8 ea b8 fd ff <0f> 0b e9 7b fd ff ff e8 de b8 fd ff 48 89 de 48 c7 c7 00 f0 ff ff [ 1794.273900] RSP: 0018:ffff88800cdbfcb0 EFLAGS: 00010212 [ 1794.294740] RAX: 000000000000b598 RBX: 0000000000000000 RCX: ffffc90001e22000 [ 1794.294747] RDX: 0000000000040000 RSI: ffffffff8142c936 RDI: 0000000000000005 [ 1794.294754] RBP: ffff88800fc13900 R08: 0000000000000001 R09: ffffffff85039a87 [ 1794.294762] R10: 0000000000000000 R11: 0000000000000001 R12: 00000000fffffffe [ 1794.294769] R13: ffffffff81476320 R14: 0000000000008000 R15: 0000000000001276 [ 1794.294788] FS: 00007f6617ae9700(0000) GS:ffff88806ce00000(0000) knlGS:0000000000000000 [ 1794.300997] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 1794.301005] CR2: 0000555582103568 CR3: 000000004940e000 CR4: 0000000000350ef0 [ 1794.301012] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000 [ 1794.301019] DR3: 0000000000000000 DR6: 00000000ffff0ff0 DR7: 0000000000000600 [ 1794.301023] Call Trace: [ 1794.301039] ? __warn+0xe2/0x1f0 [ 1794.301052] ? tracepoint_probe_unregister+0x776/0xd20 [ 1794.301067] ? report_bug+0x1c1/0x210 [ 1794.301084] ? handle_bug+0x41/0x90 [ 1794.301095] ? exc_invalid_op+0x14/0x50 [ 1794.301108] ? asm_exc_invalid_op+0x12/0x20 [ 1794.301120] ? blk_add_trace_rq_issue+0x50/0x50 [ 1794.301137] ? tracepoint_probe_unregister+0x776/0xd20 [ 1794.301149] ? tracepoint_probe_unregister+0x776/0xd20 [ 1794.301164] ? kfree+0xd7/0x340 [ 1794.301180] blk_unregister_tracepoints+0x16a/0x180 [ 1794.301190] __blk_trace_remove+0x1b0/0x1e0 [ 1794.301200] blk_trace_remove+0x26/0x40 [ 1794.301213] sg_ioctl_common+0xc8e/0x2570 [ 1794.301228] ? __sanitizer_cov_trace_switch+0x45/0x80 [ 1794.301241] ? do_vfs_ioctl+0x283/0x10d0 [ 1794.301251] ? sg_write+0x120/0x120 [ 1794.301284] ? generic_block_fiemap+0x60/0x60 [ 1794.301301] ? _down_write_nest_lock+0x160/0x160 [ 1794.301321] ? selinux_file_ioctl+0xb6/0x270 [ 1794.301331] ? sg_compat_ioctl+0x120/0x120 [ 1794.301343] sg_ioctl+0x8f/0x120 [ 1794.301356] __x64_sys_ioctl+0x19a/0x210 [ 1794.301370] do_syscall_64+0x33/0x40 [ 1794.301383] entry_SYSCALL_64_after_hwframe+0x62/0xc7 [ 1794.301391] RIP: 0033:0x7f661a573b19 [ 1794.301403] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1794.301409] RSP: 002b:00007f6617ae9188 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 1794.301422] RAX: ffffffffffffffda RBX: 00007f661a686f60 RCX: 00007f661a573b19 [ 1794.301429] RDX: 0000000000000000 RSI: 0000000000001276 RDI: 0000000000000003 [ 1794.301436] RBP: 00007f661a5cdf6d R08: 0000000000000000 R09: 0000000000000000 [ 1794.301443] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 1794.301450] R13: 00007ffd527cbf9f R14: 00007f6617ae9300 R15: 0000000000022000 [ 1794.301469] irq event stamp: 1969 [ 1794.301484] hardirqs last enabled at (1975): [] vprintk_emit+0x486/0x4d0 [ 1794.301496] hardirqs last disabled at (1980): [] vprintk_emit+0x418/0x4d0 [ 1794.301508] softirqs last enabled at (1600): [] asm_call_irq_on_stack+0x12/0x20 [ 1794.301520] softirqs last disabled at (1595): [] asm_call_irq_on_stack+0x12/0x20 [ 1794.301525] ---[ end trace 1707b4ba21e763b7 ]--- [ 1794.367075] FAULT_INJECTION: forcing a failure. [ 1794.367075] name failslab, interval 1, probability 0, space 0, times 0 [ 1794.367088] CPU: 0 PID: 9944 Comm: syz-executor.2 Tainted: G W 5.10.194 #1 [ 1794.367095] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1794.367098] Call Trace: [ 1794.367114] dump_stack+0x107/0x167 [ 1794.367128] should_fail.cold+0x5/0xa [ 1794.367140] ? create_object.isra.0+0x3a/0xa20 [ 1794.367153] should_failslab+0x5/0x20 [ 1794.367164] kmem_cache_alloc+0x5b/0x310 [ 1794.367178] create_object.isra.0+0x3a/0xa20 [ 1794.367189] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 1794.367203] __kmalloc+0x16e/0x390 [ 1794.367218] tracepoint_add_func+0x35b/0x1000 [ 1794.367235] ? blk_add_trace_rq_issue+0x50/0x50 [ 1794.367245] tracepoint_probe_register+0xa1/0xf0 [ 1794.367261] ? tracepoint_probe_register_prio+0xf0/0xf0 [ 1794.367271] ? blk_add_trace_rq_issue+0x50/0x50 [ 1794.367282] ? relay_open+0x69f/0xa10 [ 1794.367296] blk_register_tracepoints+0x1b/0x3e0 [ 1794.367305] do_blk_trace_setup+0x9db/0xc10 [ 1794.367318] ? _copy_from_user+0xfb/0x1b0 [ 1794.367330] __blk_trace_setup+0xca/0x180 [ 1794.367340] ? do_blk_trace_setup+0xc10/0xc10 [ 1794.367358] ? perf_trace_lock+0xac/0x490 [ 1794.367374] blk_trace_setup+0x43/0x60 [ 1794.367387] sg_ioctl_common+0x634/0x2570 [ 1794.367400] ? __sanitizer_cov_trace_switch+0x45/0x80 [ 1794.367411] ? do_vfs_ioctl+0x283/0x10d0 [ 1794.367419] ? sg_write+0x120/0x120 [ 1794.367429] ? generic_block_fiemap+0x60/0x60 [ 1794.367442] ? __mutex_unlock_slowpath+0xe1/0x600 [ 1794.367464] ? selinux_file_ioctl+0xb6/0x270 [ 1794.367473] ? sg_compat_ioctl+0x120/0x120 [ 1794.367484] sg_ioctl+0x8f/0x120 [ 1794.367496] __x64_sys_ioctl+0x19a/0x210 [ 1794.367509] do_syscall_64+0x33/0x40 [ 1794.367521] entry_SYSCALL_64_after_hwframe+0x62/0xc7 [ 1794.367528] RIP: 0033:0x7f661a573b19 [ 1794.367539] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1794.367545] RSP: 002b:00007f6617ac8188 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 1794.367556] RAX: ffffffffffffffda RBX: 00007f661a687020 RCX: 00007f661a573b19 [ 1794.367562] RDX: 0000000020000140 RSI: 00000000c0481273 RDI: 0000000000000003 [ 1794.367569] RBP: 00007f6617ac81d0 R08: 0000000000000000 R09: 0000000000000000 [ 1794.367575] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 1794.367581] R13: 00007ffd527cbf9f R14: 00007f6617ac8300 R15: 0000000000022000 VM DIAGNOSIS: 23:49:24 Registers: info registers vcpu 0 RAX=fffffffffbf9b400 RBX=ffffffff8571d054 RCX=ffffffff816b84f8 RDX=0000000000000000 RSI=ffffffff85a0b4f8 RDI=ffffffff8571d034 RBP=ffffffff8571d034 RSP=ffff88800e3cf858 R8 =ffffffff85a0b4f8 R9 =ffffffff85a0b564 R10=0000000000032042 R11=1ffff11001c79f1c R12=ffffffff8571d078 R13=ffffffff8571d034 R14=ffffffff8571d034 R15=dffffc0000000000 RIP=ffffffff81106a53 RFL=00000246 [---Z-P-] CPL=0 II=0 A20=1 SMM=0 HLT=0 ES =0000 0000000000000000 00000000 00000000 CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA] SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS [-WA] DS =0000 0000000000000000 00000000 00000000 FS =0000 00007fc181d62900 00000000 00000000 GS =0000 ffff88806ce00000 00000000 00000000 LDT=0000 fffffe0000000000 00000000 00000000 TR =0040 fffffe0000003000 00004087 00008b00 DPL=0 TSS64-busy GDT= fffffe0000001000 0000007f IDT= fffffe0000000000 00000fff CR0=80050033 CR2=00007fc1811b4c60 CR3=000000000e642000 CR4=00350ef0 DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 DR6=00000000ffff0ff0 DR7=0000000000000600 EFER=0000000000000d01 FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80 FPR0=0000000000000000 0000 FPR1=0000000000000000 0000 FPR2=0000000000000000 0000 FPR3=0000000000000000 0000 FPR4=0000000000000000 0000 FPR5=0000000000000000 0000 FPR6=0000000000000000 0000 FPR7=0000000000000000 0000 XMM00=00000000000000000000000000000000 XMM01=0000000000ffff0000000000ffffffff XMM02=7463656a6e695f31313230385f7a7973 XMM03=00007fefc09dd7c800007fefc09dd7c0 XMM04=ffffffffffffffffffffffff00000000 XMM05=00000000000000000000000000000000 XMM06=0000000000000000000000524f525245 XMM07=00000000000000000000000000000000 XMM08=000000000000000000524f5252450040 XMM09=00000000000000000000000000000000 XMM10=00000000000000000000000000000000 XMM11=00000000000000000000000000000000 XMM12=00000000000000000000000000000000 XMM13=00000000000000000000000000000000 XMM14=00000000000000000000000000000000 XMM15=00000000000000000000000000000000 info registers vcpu 1 RAX=dffffc0000000060 RBX=00000000000003fd RCX=0000000000000000 RDX=00000000000003fd RSI=ffffffff822c717c RDI=ffffffff879e61a0 RBP=ffffffff879e6160 RSP=ffff88804cb07578 R8 =0000000000000001 R9 =0000000000000003 R10=000000000000000a R11=0000000000000001 R12=0000000000000020 R13=fffffbfff0f3cc80 R14=fffffbfff0f3cc36 R15=dffffc0000000000 RIP=ffffffff822c71d0 RFL=00000002 [-------] CPL=0 II=0 A20=1 SMM=0 HLT=0 ES =0000 0000000000000000 00000000 00000000 CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA] SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS [-WA] DS =0000 0000000000000000 00000000 00000000 FS =0000 00007f6617ae9700 00000000 00000000 GS =0000 ffff88806cf00000 00000000 00000000 LDT=0000 fffffe0000000000 00000000 00000000 TR =0040 fffffe000004a000 00004087 00008b00 DPL=0 TSS64-busy GDT= fffffe0000048000 0000007f IDT= fffffe0000000000 00000fff CR0=80050033 CR2=00007fe929eecbf8 CR3=0000000048696000 CR4=00350ee0 DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 DR6=00000000ffff0ff0 DR7=0000000000000400 EFER=0000000000000d01 FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80 FPR0=0000000000000000 0000 FPR1=0000000000000000 0000 FPR2=0000000000000000 0000 FPR3=0000000000000000 0000 FPR4=0000000000000000 0000 FPR5=0000000000000000 0000 FPR6=0000000000000000 0000 FPR7=0000000000000000 0000 XMM00=00000000000000000000000000000000 XMM01=00000000000000000000000000000000 XMM02=00000000000000000000000000000000 XMM03=00000000000000000000000000000000 XMM04=ffffffffffffffffffffffffffff0000 XMM05=00000000000000000000000000000000 XMM06=0000000000000000000000524f525245 XMM07=00000000000000000000000000000000 XMM08=000000000000000000524f5252450040 XMM09=00000000000000000000000000000000 XMM10=00000000000000000000000000000000 XMM11=00000000000000000000000000000000 XMM12=00000000000000000000000000000000 XMM13=00000000000000000000000000000000 XMM14=00000000000000000000000000000000 XMM15=00000000000000000000000000000000