0x1, 0x1, 0x1, 0x0, 0x1, 0x1, 0x0, 0x1, 0x0, 0x80000001, 0x0, @perf_config_ext={0x6, 0x8}, 0x20100, 0x3ff, 0x9, 0x2, 0x1, 0x6, 0x3, 0x0, 0x2, 0x0, 0x1}, r1, 0x10, 0xffffffffffffffff, 0xb) r2 = dup(r0) r3 = dup2(r0, r2) fstat(r3, &(0x7f0000000100)) r4 = open$dir(&(0x7f00000000c0)='./file0\x00', 0x82200, 0x2) openat(r4, &(0x7f0000000200)='./file0\x00', 0x200, 0x108) 19:55:15 executing program 5: r0 = add_key$fscrypt_v1(&(0x7f0000000000), &(0x7f0000000040)={'fscrypt:', @desc2}, &(0x7f0000000080)={0x0, "3009d8b381ccf223e6726c91fd6baf72d95a754f7b5245edf7f0dd0cd6f5125811da57f04ad2a629d3a19d34d0f1385c850818e588bc7302f98c4a9fac01336f", 0x2e}, 0x48, 0xfffffffffffffffa) keyctl$set_timeout(0xf, r0, 0x6) r1 = socket$netlink(0x10, 0x3, 0x0) r2 = fcntl$dupfd(r1, 0x0, r1) sendmsg$nl_generic(r2, &(0x7f0000000280)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000140)={0x28, 0x31, 0xc21, 0x0, 0x0, {}, [@typed={0x14, 0x1, 0x0, 0x0, @ipv6=@private2}]}, 0x28}}, 0x0) 19:55:15 executing program 6: syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000140)='./file0\x00', 0x40000, 0x4, &(0x7f0000000200)=[{&(0x7f0000010000)="20000000000100000c000000d40000000f000000010000000000000000000000002000000020000020000000d7f4655fd7f4655f0100ffff53ef010001000000d7f4655f000000000000000001000000000000000b0000000002", 0x5a, 0x400}, {&(0x7f0000010400)="030000000400000005000000d4000f", 0xf, 0x800}, {&(0x7f0000000500)="ffffffffff070000000000000000000000000000000000000000000000000080ffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffff", 0x402, 0xc00}, {&(0x7f0000010e00)="ed41000000040000d7f4655fd7f4655fd7f4655f000000000000040002", 0x1d, 0x1600}], 0x0, &(0x7f00000003c0)=ANY=[]) chdir(&(0x7f0000000040)='./file0\x00') openat(0xffffffffffffff9c, &(0x7f0000000080)='./file1\x00', 0x105142, 0x0) r0 = openat(0xffffffffffffff9c, &(0x7f0000000200)='./file1\x00', 0x2, 0x0) write(r0, &(0x7f0000000240)="01", 0x1) r1 = openat(0xffffffffffffff9c, &(0x7f00000000c0)='./file2\x00', 0x105142, 0x0) r2 = openat(0xffffffffffffff9c, &(0x7f0000001340)='./file1\x00', 0x0, 0x0) copy_file_range(r2, 0x0, r1, &(0x7f0000000280)=0x10000, 0xc3a, 0x0) (fail_nth: 8) openat$sr(0xffffffffffffff9c, 0x0, 0x0, 0x0) 19:55:15 executing program 0: r0 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x105142, 0xa0) r1 = openat(0xffffffffffffff9c, &(0x7f0000000080)='./file1\x00', 0x105142, 0x0) openat$sysfs(0xffffffffffffff9c, 0x0, 0x0, 0x0) ioctl$LOOP_CTL_REMOVE(0xffffffffffffffff, 0x4c81, 0x0) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x101}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) io_uring_enter(r1, 0x2671, 0x4a08, 0x2, 0x0, 0x0) pipe(&(0x7f00000000c0)) r2 = openat(0xffffffffffffffff, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0) sendfile(r1, r2, 0x0, 0x4) sendfile(r0, r2, 0x0, 0x10000000a) [ 3015.331007] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium 19:55:15 executing program 2: r0 = socket$inet_icmp_raw(0x2, 0x3, 0x1) r1 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a) ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000140)={'syz_tun\x00', 0x0}) perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) sendmmsg$inet(r0, &(0x7f0000002040)=[{{&(0x7f0000000380)={0x2, 0x0, @multicast1}, 0x10, &(0x7f0000001600)=[{&(0x7f00000003c0)="db9c", 0x2}], 0x1, &(0x7f0000001640)=ANY=[@ANYBLOB="14000000000000000000000007000000c4048f01000000001c0000000000000000000000080000", @ANYRES32=r2], 0x38}}], 0x1, 0x0) [ 3015.375200] EXT4-fs (loop7): mounted filesystem without journal. Opts: ,errors=continue [ 3015.377765] EXT4-fs (loop6): mounted filesystem without journal. Opts: ,errors=continue 19:55:15 executing program 5: io_submit(0x0, 0x2, &(0x7f0000001680)=[&(0x7f0000000240)={0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x40003}, &(0x7f0000000200)={0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0xfffffffffffffffd}]) r0 = syz_open_procfs(0xffffffffffffffff, &(0x7f0000000040)='numa_maps\x00') readv(r0, &(0x7f0000003700)=[{&(0x7f0000000200)=""/216, 0xd8}, {&(0x7f00000003c0)=""/121, 0x79}, {&(0x7f0000000380)=""/51, 0x33}, {&(0x7f00000014c0)=""/160, 0xa0}, {&(0x7f0000001640)=""/256, 0x100}, {0x0}, {&(0x7f00000015c0)=""/51, 0x33}, {&(0x7f00000001c0)=""/54, 0x36}], 0x8) readv(r0, &(0x7f0000001600)=[{&(0x7f00000004c0)=""/4096, 0x1000}], 0x1) r1 = accept4(r0, &(0x7f0000000140)=@ieee802154={0x24, @long}, &(0x7f00000000c0)=0x80, 0x0) getsockopt$inet_tcp_TCP_REPAIR_WINDOW(r1, 0x6, 0x1d, &(0x7f0000000300), &(0x7f0000000340)=0x14) fcntl$F_SET_FILE_RW_HINT(r0, 0x40e, &(0x7f0000000000)=0x1) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f0000000100), 0x2}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x218}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x1) r2 = syz_open_dev$sg(&(0x7f0000000080), 0x0, 0x0) r3 = fcntl$dupfd(r2, 0x0, r2) ioctl$SG_IO(r3, 0x2285, &(0x7f00000003c0)={0x53, 0xfffffffffffffffe, 0x6, 0x0, @buffer={0x300, 0xae, &(0x7f0000000580)=""/174}, &(0x7f0000000040)="4feb7dc9066b", 0x0, 0x0, 0x0, 0x0, 0x0}) lseek(r0, 0xfff, 0x0) getsockopt$inet6_mreq(r3, 0x29, 0x1c, &(0x7f00000019c0)={@ipv4={""/10, ""/2, @loopback}}, &(0x7f0000001a00)=0x14) r4 = dup3(0xffffffffffffffff, 0xffffffffffffffff, 0x0) recvmmsg$unix(r4, &(0x7f0000002400)=[{{&(0x7f00000018c0)=@abs, 0x6e, &(0x7f0000002500)=[{&(0x7f0000001940)=""/64, 0x40}, {&(0x7f0000001b00)=""/221, 0xdd}, {&(0x7f0000001c00)=""/195, 0xc3}, {&(0x7f0000001e00)=""/144, 0x90}, {&(0x7f0000002580)=""/174, 0xae}, {&(0x7f0000001f80)=""/97, 0x61}], 0x6, &(0x7f0000002000)=[@cred={{0x1c}}], 0x20}}, {{&(0x7f0000002040), 0x6e, &(0x7f0000001d00)=[{&(0x7f00000020c0)=""/208, 0xd0}, {&(0x7f00000021c0)=""/167, 0xa7}, {&(0x7f0000002280)=""/123, 0x7b}, {&(0x7f0000002300)}, {&(0x7f0000002640)=""/4096, 0x1000}, {&(0x7f0000001ec0)=""/133, 0x85}], 0x6, &(0x7f0000002380)=ANY=[@ANYBLOB="1c000000000000000100000002000000", @ANYRES32=0x0, @ANYRES32=0x0, @ANYRES32=0x0, @ANYBLOB="0000000034000000000000000100000001000000", @ANYRES32=0xffffffffffffffff, @ANYRES32, @ANYRES32, @ANYRES32, @ANYRES32=0xffffffffffffffff, @ANYRES32, @ANYRES32, @ANYRES32, @ANYRES32, @ANYBLOB="000000001c000000000000000100000002000000", @ANYRES32=0x0, @ANYRES32=0x0, @ANYRES32=0x0, @ANYBLOB='\x00\x00\x00\x00'], 0x78}}], 0x2, 0x10100, 0x0) ioctl$BLKTRACESETUP(r5, 0xc0481273, &(0x7f0000002480)={'\x00', 0x1, 0x3ff, 0x3, 0x8, 0x176}) recvmsg$unix(0xffffffffffffffff, &(0x7f0000001980)={&(0x7f0000000440)=@abs, 0x6e, &(0x7f0000001580)=[{&(0x7f0000001740)=""/245, 0xf5}, {&(0x7f0000001840)=""/96, 0x60}], 0x2, &(0x7f0000001a40)=ANY=[@ANYBLOB="1c530b00000000000100000002000000", @ANYRES32=0x0, @ANYRES32=0x0, @ANYRES32=0x0, @ANYBLOB="000000001c000000000000000100002000000000", @ANYRES32=0x0, @ANYRES32=0x0, @ANYRES32=0x0, @ANYBLOB="000000001c000000000000000100000002000000", @ANYRES32=0x0, @ANYRES32=0x0, @ANYRES32=0x0, @ANYBLOB="000000002c00000000000000010000000100000019aac23b2c5ea6ea14c2659fe9db6ffd39c45041fa9652a3f1b50420df61", @ANYRES32, @ANYRES32, @ANYRES32, @ANYRES32, @ANYRES32, @ANYRES32, @ANYRES32, @ANYBLOB='\x00\x00\x00\x00'], 0x90}, 0x40020020) syz_io_uring_submit(0x0, 0x0, &(0x7f0000000240)=@IORING_OP_READ=@pass_buffer={0x16, 0x0, 0x0, @fd_index=0x4, 0x0, &(0x7f0000000140)=""/204, 0xcc}, 0x0) r7 = io_uring_register$IORING_REGISTER_PERSONALITY(r6, 0x9, 0x0, 0x0) syz_io_uring_submit(0x0, 0x0, &(0x7f0000002300)=@IORING_OP_READV=@use_registered_buffer={0x1, 0x312799cbc9477bb2, 0x6000, @fd_index=0x5, 0x3, 0x0, 0x0, 0x2, 0x0, {0x1, r7}}, 0x100) [ 3015.409372] FAULT_INJECTION: forcing a failure. [ 3015.409372] name failslab, interval 1, probability 0, space 0, times 0 [ 3015.412453] CPU: 0 PID: 20918 Comm: syz-executor.6 Not tainted 5.10.207 #1 [ 3015.413949] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 3015.415743] Call Trace: [ 3015.416318] dump_stack+0x107/0x167 [ 3015.417151] should_fail.cold+0x5/0xa [ 3015.417974] ? __iomap_dio_rw+0x1ee/0x1110 [ 3015.418890] should_failslab+0x5/0x20 [ 3015.419722] kmem_cache_alloc_trace+0x55/0x320 [ 3015.420711] ? do_raw_spin_lock+0x121/0x260 [ 3015.421657] __iomap_dio_rw+0x1ee/0x1110 [ 3015.422563] ? __mark_inode_dirty+0x999/0xd40 [ 3015.423563] ? iomap_dio_bio_actor+0xef0/0xef0 [ 3015.424566] ? generic_update_time+0x21c/0x370 [ 3015.425568] ? ext4_orphan_add+0x253/0x9e0 [ 3015.426487] ? inode_dio_wait+0xbf/0x270 [ 3015.427398] ? ext4_empty_dir+0xae0/0xae0 [ 3015.428316] ? ext4_journal_check_start+0x1b3/0x2a0 [ 3015.429414] iomap_dio_rw+0x31/0x90 [ 3015.430219] ext4_file_write_iter+0xb26/0x18d0 [ 3015.431245] ? ext4_file_read_iter+0x4c0/0x4c0 [ 3015.432256] ? kasan_save_stack+0x32/0x40 [ 3015.433165] ? kasan_save_stack+0x1b/0x40 [ 3015.434074] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 3015.435183] ? iter_file_splice_write+0x16d/0xc30 [ 3015.436254] ? direct_splice_actor+0x10f/0x170 [ 3015.437283] ? splice_direct_to_actor+0x387/0x980 [ 3015.438332] ? do_splice_direct+0x1c4/0x290 [ 3015.439260] ? vfs_copy_file_range+0x4f8/0x1290 [ 3015.440283] ? __do_sys_copy_file_range+0x193/0x420 [ 3015.441369] do_iter_readv_writev+0x476/0x750 [ 3015.442356] ? new_sync_write+0x660/0x660 [ 3015.443245] ? selinux_file_permission+0x92/0x520 [ 3015.444341] do_iter_write+0x191/0x670 [ 3015.445181] ? trace_hardirqs_on+0x5b/0x180 [ 3015.446136] vfs_iter_write+0x70/0xa0 [ 3015.446968] iter_file_splice_write+0x762/0xc30 [ 3015.448033] ? generic_splice_sendpage+0x140/0x140 [ 3015.449111] ? avc_policy_seqno+0x9/0x70 [ 3015.449999] ? selinux_file_permission+0x92/0x520 [ 3015.451059] ? lockdep_init_map_type+0x2c7/0x780 [ 3015.452110] ? generic_splice_sendpage+0x140/0x140 [ 3015.453182] direct_splice_actor+0x10f/0x170 [ 3015.454148] splice_direct_to_actor+0x387/0x980 [ 3015.455169] ? pipe_to_sendpage+0x380/0x380 [ 3015.456127] ? do_splice_to+0x160/0x160 [ 3015.457000] ? security_file_permission+0x24e/0x570 [ 3015.458098] do_splice_direct+0x1c4/0x290 [ 3015.459014] ? splice_direct_to_actor+0x980/0x980 [ 3015.460079] ? selinux_file_permission+0x92/0x520 [ 3015.461145] ? security_file_permission+0x24e/0x570 [ 3015.462250] vfs_copy_file_range+0x4f8/0x1290 [ 3015.463248] ? generic_file_rw_checks+0x240/0x240 [ 3015.464344] __do_sys_copy_file_range+0x193/0x420 [ 3015.465405] ? vfs_copy_file_range+0x1290/0x1290 [ 3015.466440] ? ksys_write+0x1a9/0x260 [ 3015.467269] ? __ia32_sys_read+0xb0/0xb0 [ 3015.468180] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 3015.469326] ? syscall_enter_from_user_mode+0x1d/0x50 [ 3015.470465] do_syscall_64+0x33/0x40 [ 3015.471277] entry_SYSCALL_64_after_hwframe+0x62/0xc7 [ 3015.472407] RIP: 0033:0x7fec371d4b19 [ 3015.473221] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 3015.477275] RSP: 002b:00007fec3474a188 EFLAGS: 00000246 ORIG_RAX: 0000000000000146 [ 3015.478937] RAX: ffffffffffffffda RBX: 00007fec372e7f60 RCX: 00007fec371d4b19 [ 3015.480517] RDX: 0000000000000006 RSI: 0000000000000000 RDI: 0000000000000007 [ 3015.482069] RBP: 00007fec3474a1d0 R08: 0000000000000c3a R09: 0000000000000000 [ 3015.483635] R10: 0000000020000280 R11: 0000000000000246 R12: 0000000000000001 [ 3015.485200] R13: 00007ffec551fc1f R14: 00007fec3474a300 R15: 0000000000022000 [ 3015.545573] SELinux: duplicate or incompatible mount options 19:55:15 executing program 6: syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000140)='./file0\x00', 0x40000, 0x4, &(0x7f0000000200)=[{&(0x7f0000010000)="20000000000100000c000000d40000000f000000010000000000000000000000002000000020000020000000d7f4655fd7f4655f0100ffff53ef010001000000d7f4655f000000000000000001000000000000000b0000000002", 0x5a, 0x400}, {&(0x7f0000010400)="030000000400000005000000d4000f", 0xf, 0x800}, {&(0x7f0000000500)="ffffffffff070000000000000000000000000000000000000000000000000080ffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffff", 0x402, 0xc00}, {&(0x7f0000010e00)="ed41000000040000d7f4655fd7f4655fd7f4655f000000000000040002", 0x1d, 0x1600}], 0x0, &(0x7f00000003c0)=ANY=[]) chdir(&(0x7f0000000040)='./file0\x00') openat(0xffffffffffffff9c, &(0x7f0000000080)='./file1\x00', 0x105142, 0x0) r0 = openat(0xffffffffffffff9c, &(0x7f0000000200)='./file1\x00', 0x2, 0x0) write(r0, &(0x7f0000000240)="01", 0x1) r1 = openat(0xffffffffffffff9c, &(0x7f00000000c0)='./file2\x00', 0x105142, 0x0) r2 = openat(0xffffffffffffff9c, &(0x7f0000001340)='./file1\x00', 0x0, 0x0) copy_file_range(r2, 0x0, r1, &(0x7f0000000280)=0x10000, 0xc3a, 0x0) (fail_nth: 9) openat$sr(0xffffffffffffff9c, 0x0, 0x0, 0x0) [ 3015.690665] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium 19:55:15 executing program 1: ioctl$sock_inet_tcp_SIOCOUTQ(0xffffffffffffffff, 0x5411, &(0x7f0000000040)) r0 = socket$netlink(0x10, 0x3, 0x0) setsockopt$netlink_NETLINK_BROADCAST_ERROR(r0, 0x10e, 0xc, &(0x7f0000000000)=0x5, 0xff4d) ioctl$AUTOFS_DEV_IOCTL_SETPIPEFD(0xffffffffffffffff, 0xc0189378, &(0x7f00000000c0)={{0x1, 0x1, 0x18, r0, {r0}}, './file0\x00'}) sendmsg$nl_generic(r1, &(0x7f0000000840)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000140)={0x44, 0x1a, 0x69844ea0a6ddcd11, 0xfffffffe, 0x0, {0x18}, [@generic="24ed76db3f5f97558a89bb5620c897fc1e672415e1361ecc6c4432eb50e0a3145eda27753b1bb3f5c6a4b2a8fc", @generic="98"]}, 0x44}, 0x1, 0x0, 0x0, 0x20040800}, 0x0) 19:55:15 executing program 5: r0 = creat(0x0, 0x101) r1 = socket$netlink(0x10, 0x3, 0x0) openat$tcp_congestion(0xffffffffffffff9c, &(0x7f0000000000), 0x1, 0x0) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x248e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) ioctl$SECCOMP_IOCTL_NOTIF_RECV(r0, 0xc0502100, &(0x7f0000000100)={0x0}) r3 = openat$dir(0xffffffffffffff9c, &(0x7f0000000000)='.\x00', 0x0, 0x0) getdents64(r3, &(0x7f00000000c0)=""/149, 0x95) ioctl$AUTOFS_DEV_IOCTL_ASKUMOUNT(0xffffffffffffffff, 0xc018937d, &(0x7f0000000340)=ANY=[@ANYBLOB="001800001cf4d4447646b37bb9ab2b3b8d7d4ebbce54cdb6a46100008be3a0642cf5dc46855e3ace55d874c740080d8836cc2100ada6b9397961091969756aef14d6673fa1ff20091748b7a93ee050ba01fce417472c6e66abb26a8cf4a3d10c128e096410313c9d9adcdce087d7a4bac9d20f094728a0e7e3421d17d84cadda33dcd71483e2f4a2ecd2b9070a70221820a47488219ba25005cde7e5e06d00"/182, @ANYRESDEC=r2, @ANYRESHEX=r3]) ioctl$PERF_EVENT_IOC_REFRESH(0xffffffffffffffff, 0x2402, 0x6) dup3(0xffffffffffffffff, 0xffffffffffffffff, 0x80000) r4 = epoll_create(0x3) copy_file_range(r0, 0x0, 0xffffffffffffffff, 0x0, 0x9, 0x0) dup2(r4, 0xffffffffffffffff) socket$netlink(0x10, 0x3, 0x15) r5 = dup(r1) setsockopt$netlink_NETLINK_BROADCAST_ERROR(r5, 0x10e, 0x4, &(0x7f0000000080)=0xd132, 0x4) socket$netlink(0x10, 0x3, 0x0) unshare(0x48020200) 19:55:15 executing program 7: perf_event_open(&(0x7f0000001d80)={0x2, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) creat(&(0x7f00000000c0)='./file0\x00', 0x0) r0 = perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f00000001c0), 0x8}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r1 = socket$inet6_tcp(0xa, 0x1, 0x0) setsockopt$inet6_tcp_TCP_REPAIR(r1, 0x6, 0x13, &(0x7f0000000140)=0x1, 0x4) connect$inet6(r1, &(0x7f0000000040)={0xa, 0x0, 0x0, @loopback={0x0, 0x7}}, 0x1c) fallocate(r0, 0x3, 0x52, 0x6) sendmsg$NFNL_MSG_ACCT_DEL(0xffffffffffffffff, &(0x7f0000000300)={&(0x7f0000000200)={0x10, 0x0, 0x0, 0x2000}, 0xc, &(0x7f0000000280)={&(0x7f0000000500)=ANY=[@ANYBLOB="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"], 0x1c}}, 0x41) r2 = openat$null(0xffffffffffffff9c, &(0x7f0000000240), 0x1111c3, 0x0) setsockopt$inet6_tcp_TCP_REPAIR(r2, 0x6, 0x13, &(0x7f0000000000)=0x1, 0x4) r3 = openat$sr(0xffffffffffffff9c, &(0x7f00000002c0), 0x5f42, 0x0) mmap$IORING_OFF_SQ_RING(&(0x7f0000ffb000/0x3000)=nil, 0x3000, 0x300000d, 0x20010, 0xffffffffffffffff, 0x0) write$binfmt_elf64(0xffffffffffffffff, &(0x7f0000000180)=ANY=[@ANYRESHEX], 0x950) r4 = syz_open_dev$vcsa(&(0x7f0000000840), 0x401, 0x28180) ioctl$F2FS_IOC_GARBAGE_COLLECT(r4, 0x4004f506, &(0x7f0000000880)=0x1) perf_event_open(&(0x7f0000000100)={0x1, 0x80, 0x8, 0x7f, 0x9, 0x0, 0x0, 0x2947, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x1, 0x0, 0x1, 0x0, 0x0, 0x2, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x1, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x7, 0x0, @perf_config_ext={0xfffffffffffff046, 0x2}, 0x0, 0x7, 0xfc9, 0x2, 0x2, 0x7, 0x0, 0x0, 0x10001, 0x0, 0x5}, 0x0, 0xe, r0, 0xa) r5 = socket$inet6_tcp(0xa, 0x1, 0x0) close(r5) creat(&(0x7f0000000080)='./file0\x00', 0x0) mmap(&(0x7f0000ffb000/0x4000)=nil, 0x4000, 0x2000008, 0x10, r3, 0x43f1f000) [ 3015.892561] EXT4-fs (loop6): mounted filesystem without journal. Opts: ,errors=continue [ 3015.917438] FAULT_INJECTION: forcing a failure. [ 3015.917438] name failslab, interval 1, probability 0, space 0, times 0 [ 3015.918789] CPU: 1 PID: 21154 Comm: syz-executor.6 Not tainted 5.10.207 #1 [ 3015.919574] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 3015.920508] Call Trace: [ 3015.920812] dump_stack+0x107/0x167 [ 3015.921238] should_fail.cold+0x5/0xa [ 3015.921680] ? create_object.isra.0+0x3a/0xa20 [ 3015.922210] should_failslab+0x5/0x20 [ 3015.922649] kmem_cache_alloc+0x5b/0x310 [ 3015.923121] create_object.isra.0+0x3a/0xa20 [ 3015.923640] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 3015.924231] kmem_cache_alloc_trace+0x151/0x320 [ 3015.924778] __iomap_dio_rw+0x1ee/0x1110 [ 3015.925264] ? __mark_inode_dirty+0x999/0xd40 [ 3015.925792] ? iomap_dio_bio_actor+0xef0/0xef0 [ 3015.926318] ? generic_update_time+0x21c/0x370 [ 3015.926848] ? ext4_orphan_add+0x253/0x9e0 [ 3015.927373] ? inode_dio_wait+0xbf/0x270 [ 3015.927857] ? ext4_empty_dir+0xae0/0xae0 [ 3015.928353] ? ext4_journal_check_start+0x1b3/0x2a0 [ 3015.928937] iomap_dio_rw+0x31/0x90 [ 3015.929366] ext4_file_write_iter+0xb26/0x18d0 [ 3015.929922] ? ext4_file_read_iter+0x4c0/0x4c0 [ 3015.930460] ? kasan_save_stack+0x32/0x40 [ 3015.930945] ? kasan_save_stack+0x1b/0x40 [ 3015.931432] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 3015.932014] ? iter_file_splice_write+0x16d/0xc30 [ 3015.932578] ? direct_splice_actor+0x10f/0x170 [ 3015.933104] ? splice_direct_to_actor+0x387/0x980 [ 3015.933660] ? do_splice_direct+0x1c4/0x290 [ 3015.934165] ? vfs_copy_file_range+0x4f8/0x1290 [ 3015.934716] ? __do_sys_copy_file_range+0x193/0x420 [ 3015.935312] do_iter_readv_writev+0x476/0x750 [ 3015.935857] ? new_sync_write+0x660/0x660 [ 3015.936340] ? selinux_file_permission+0x92/0x520 [ 3015.936909] do_iter_write+0x191/0x670 [ 3015.937355] ? trace_hardirqs_on+0x5b/0x180 [ 3015.937841] vfs_iter_write+0x70/0xa0 [ 3015.938269] iter_file_splice_write+0x762/0xc30 [ 3015.938794] ? generic_splice_sendpage+0x140/0x140 [ 3015.939373] ? avc_policy_seqno+0x9/0x70 [ 3015.939847] ? selinux_file_permission+0x92/0x520 [ 3015.940391] ? lockdep_init_map_type+0x2c7/0x780 [ 3015.940924] ? generic_splice_sendpage+0x140/0x140 [ 3015.941485] direct_splice_actor+0x10f/0x170 [ 3015.941993] splice_direct_to_actor+0x387/0x980 [ 3015.942520] ? pipe_to_sendpage+0x380/0x380 [ 3015.943009] ? do_splice_to+0x160/0x160 [ 3015.943456] ? security_file_permission+0x24e/0x570 [ 3015.944029] do_splice_direct+0x1c4/0x290 [ 3015.944494] ? splice_direct_to_actor+0x980/0x980 [ 3015.945039] ? selinux_file_permission+0x92/0x520 [ 3015.945582] ? security_file_permission+0x24e/0x570 [ 3015.946128] vfs_copy_file_range+0x4f8/0x1290 [ 3015.946638] ? generic_file_rw_checks+0x240/0x240 [ 3015.947174] __do_sys_copy_file_range+0x193/0x420 [ 3015.947730] ? vfs_copy_file_range+0x1290/0x1290 [ 3015.948254] ? ksys_write+0x1a9/0x260 [ 3015.948676] ? __ia32_sys_read+0xb0/0xb0 [ 3015.949133] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 3015.949696] ? syscall_enter_from_user_mode+0x1d/0x50 [ 3015.950278] do_syscall_64+0x33/0x40 [ 3015.950676] entry_SYSCALL_64_after_hwframe+0x62/0xc7 [ 3015.951246] RIP: 0033:0x7fec371d4b19 [ 3015.951653] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 3015.953681] RSP: 002b:00007fec3474a188 EFLAGS: 00000246 ORIG_RAX: 0000000000000146 [ 3015.954478] RAX: ffffffffffffffda RBX: 00007fec372e7f60 RCX: 00007fec371d4b19 [ 3015.955265] RDX: 0000000000000006 RSI: 0000000000000000 RDI: 0000000000000007 [ 3015.956079] RBP: 00007fec3474a1d0 R08: 0000000000000c3a R09: 0000000000000000 [ 3015.956864] R10: 0000000020000280 R11: 0000000000000246 R12: 0000000000000001 [ 3015.957653] R13: 00007ffec551fc1f R14: 00007fec3474a300 R15: 0000000000022000 19:55:30 executing program 6: syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000140)='./file0\x00', 0x40000, 0x4, &(0x7f0000000200)=[{&(0x7f0000010000)="20000000000100000c000000d40000000f000000010000000000000000000000002000000020000020000000d7f4655fd7f4655f0100ffff53ef010001000000d7f4655f000000000000000001000000000000000b0000000002", 0x5a, 0x400}, {&(0x7f0000010400)="030000000400000005000000d4000f", 0xf, 0x800}, {&(0x7f0000000500)="ffffffffff070000000000000000000000000000000000000000000000000080ffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffff", 0x402, 0xc00}, {&(0x7f0000010e00)="ed41000000040000d7f4655fd7f4655fd7f4655f000000000000040002", 0x1d, 0x1600}], 0x0, &(0x7f00000003c0)=ANY=[]) chdir(&(0x7f0000000040)='./file0\x00') openat(0xffffffffffffff9c, &(0x7f0000000080)='./file1\x00', 0x105142, 0x0) r0 = openat(0xffffffffffffff9c, &(0x7f0000000200)='./file1\x00', 0x2, 0x0) write(r0, &(0x7f0000000240)="01", 0x1) r1 = openat(0xffffffffffffff9c, &(0x7f00000000c0)='./file2\x00', 0x105142, 0x0) r2 = openat(0xffffffffffffff9c, &(0x7f0000001340)='./file1\x00', 0x0, 0x0) copy_file_range(r2, 0x0, r1, &(0x7f0000000280)=0x10000, 0xc3a, 0x0) (fail_nth: 10) openat$sr(0xffffffffffffff9c, 0x0, 0x0, 0x0) [ 3030.653986] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium 19:55:30 executing program 5: r0 = socket$netlink(0x10, 0x3, 0x0) sendmsg$nl_generic(r0, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000300)={&(0x7f00000031c0)={0x28, 0x20, 0xc21, 0x70bd2c, 0x0, {0xf}, [@typed={0x8, 0x0, 0x0, 0x0, @uid}, @typed={0xc, 0x18, 0x0, 0x0, @u64=0x3}]}, 0x28}}, 0x0) 19:55:30 executing program 1: syz_mount_image$ext4(0x0, &(0x7f0000000200)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0) mount(0x0, &(0x7f00000004c0)='./file0\x00', &(0x7f0000000500)='ramfs\x00', 0x0, 0x0) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x0, 0x0, 0x0, 0x8}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) mount(0x0, &(0x7f0000000080)='./file0\x00', 0x0, 0x300b4e2, 0x0) r0 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a) ioctl$sock_SIOCGIFINDEX(r0, 0x8914, &(0x7f0000000140)={'lo\x00'}) r1 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a) r2 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a) ioctl$sock_SIOCGIFINDEX(r2, 0x8933, &(0x7f0000000140)={'lo\x00', 0x0}) ioctl$sock_inet6_SIOCSIFADDR(0xffffffffffffffff, 0x8916, &(0x7f0000000180)={@loopback, 0x0, r3}) socket$inet6_icmp_raw(0xa, 0x3, 0x3a) bind$inet6(0xffffffffffffffff, &(0x7f0000000040)={0xa, 0x4e24, 0x5, @private2, 0xfffffc01}, 0x1c) ioctl$sock_inet_SIOCGIFPFLAGS(0xffffffffffffffff, 0x8935, &(0x7f0000000000)={'wlan0\x00'}) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x0, 0x0, 0x1004}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) sendmsg(r1, &(0x7f0000000480)={&(0x7f00000000c0)=@xdp={0x2c, 0xc, 0x0, 0x4}, 0x80, &(0x7f0000000900)=[{&(0x7f0000000540)="6ea912b512b1178bac43bb40be6b569d9fc11dd06ea679646d53bb842d76192a0e6e4f26fe67febdb71f4b6f12e0ba4f6407ba8f1bf00b63ea8bd11b574e52669274112fa996ea8eaee2d6f8a4adae50cd9b314212c043972fb3653f66b668cff81fa95370a49eaef9bd8b902559c375c165271681d6fad27292bd29cd08037cd30c79e972ecb232f30651fb8d05e2f2fec128218c36e04f1bdce28a2ca18f82475eb37cd1d13e120eda6f1ebb90374d454a84532f975b5bfda1ed7c42c66c5cc4165c3a7afc266990156a3ef8f6d1b204d51e8a24a2f74177321f084c0c630221e10a43b24bebf77d96c52b5d541244df", 0xf1}, {&(0x7f0000000400)="f08f88b9087aeb5eb7b8d2b83e379346626942d8407d8ee856d97d7e5ca2f51447b26032ef8d5ad4c64fdcf92b92cf1c8cdaebfcbb032566aba3f39b20336ea087fd8436732f3765fc", 0x49}, {&(0x7f00000001c0)="13be282d9888aa7ee07e15b245cc1d92cf5b16ddb5c4d074ff4090c98b2fa3660fef4c2d21", 0x25}, {&(0x7f0000000640)="a2c33a1a58dc874ae6ce991bf4484c5dc4cbaa7ce80a433fef627471dead1aad37d3043767dc965cd8fbb3614e83d3e8946d33c281b7a107cc3564f9184d8fe0aca348914a8df49eb610ba09219367ee38fb666616a767315f9eb155a4c6c77ba207d468b7b689804173678f838a4bdd96972e37fce1c9bb110ddb12baccfe884b9707e308f5508a35eae4e17191d46658147e3d0c9e9062083e4370282fd3fa12976b12407ffc04bb533c636e969b13b5455c2487812801e6335c300dece5b157bdebaab31f04430d0ab73cae8f5d43dda90439c23e34fd77a53f74fe33b6f3ab5791686d7ea08a6b31e794ef5cfce159ce4516764cbe", 0xf7}, {&(0x7f0000000740)="10298fcd507cb8bb814f34e2cc42272cbfbbd49b2c7e4a5e476790710696b935f59882f206037d103bbc5da259a847aaf29061ea11043909ee5b86b94229d1e92a5cf8391181cb6a66d76f30076fa2fd7877ba5ce4bf9311e3af48b35decbd60632baebf4160acc48b8cc0da1d289686b5332c9e98390d5f30a171ba325d8cbb5dda7c35bc3ee3e892bb3ddfd4c77c3a2f68489a1b1a642e223485987898e8e966b5b3afa3e341c73339cd43ecd6ad8c917307838ad19bff14aed9acdcc01b178eb76095002c281f84551b59332cd704be80d3042d5ce476c538b717212625184e", 0xe1}, {&(0x7f0000000840)="86dbd9a2d5628dd58213b3c7ee300386ecbf6e96b648213f37dec1fe774afd31343d5ee7b69ceff4cb1a2f31f557dbf0ff400a138f479f10dcf8d5f7494c96bf97e8826fc4f30b840d27c928d57c9506287932b575380e81c86c6670d78a180c68f2834ebb3428a44c1184e7c7e021c8ad11c25c34f2071396165fef2a9a3fcb538782cd2b3c8bcffd43bb577b5873fa1d052c564073960319", 0x99}, {&(0x7f0000000240)="f793e1464cd00d1197977d", 0xb}, {&(0x7f00000002c0)="58401cab5d4f1e51ac16aa", 0xb}], 0x8}, 0x4000000) ioctl$sock_SIOCGIFINDEX(r1, 0x8914, &(0x7f0000000140)={'lo\x00'}) r4 = socket$nl_generic(0x10, 0x3, 0x10) r5 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000280), 0xffffffffffffffff) sendmsg$NL80211_CMD_GET_COALESCE(r4, &(0x7f0000000340)={0x0, 0x74, &(0x7f0000000300)={&(0x7f0000000380)=ANY=[@ANYBLOB="1c000000", @ANYRES16=r5, @ANYBLOB="010000000000000000007e00000008000300", @ANYRES32=0x0, @ANYBLOB="6d6e09ca044e459fc78ca27728297fa689f9108b9e5a3e210d9015b22211d6cc3f97cd895030adcb9295ade00853ef288e1fd6d3d8554bb81c3261e804728fab2b560d1dd834a6d24419de9149520b04223af6a5e190"], 0x1c}}, 0x0) ioctl$sock_SIOCSPGRP(r4, 0x8902, &(0x7f0000000080)) 19:55:30 executing program 2: r0 = socket$inet_icmp_raw(0x2, 0x3, 0x1) r1 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a) ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000140)={'syz_tun\x00', 0x0}) perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) sendmmsg$inet(r0, &(0x7f0000002040)=[{{&(0x7f0000000380)={0x2, 0x0, @multicast1}, 0x10, &(0x7f0000001600)=[{&(0x7f00000003c0)="db9c", 0xffe7}], 0x1, &(0x7f0000001640)=ANY=[@ANYBLOB="14000000000000000000000007000000c4048f01000000001c000000000000000000000008000000", @ANYRES32=r2], 0x38}}], 0x1, 0x0) (fail_nth: 1) 19:55:30 executing program 4: syz_80211_inject_frame(&(0x7f00000000c0)=@device_a={0x8, 0x2, 0x11, 0xf}, &(0x7f0000000440)=ANY=[], 0x2f) 19:55:30 executing program 7: r0 = openat(0xffffffffffffff9c, &(0x7f00000001c0)='./file1\x00', 0x105142, 0x0) r1 = openat(0xffffffffffffffff, &(0x7f0000000040)='./file0\x00', 0x202400, 0x10) ftruncate(r0, 0xffff) r2 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x105142, 0x0) getpeername(r1, &(0x7f0000001080), &(0x7f0000001100)=0x80) preadv(0xffffffffffffffff, &(0x7f0000000080)=[{0x0}], 0x1, 0x0, 0x0) fsmount(0xffffffffffffffff, 0x0, 0x88) dup2(0xffffffffffffffff, 0xffffffffffffffff) lseek(r2, 0x800, 0x4) pread64(0xffffffffffffffff, &(0x7f0000000040)=""/4126, 0x101e, 0xa4) open_tree(0xffffffffffffffff, &(0x7f0000000140)='./file1\x00', 0x41900) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x400}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r3 = openat(0xffffffffffffff9c, &(0x7f0000000080)='/proc/self/exe\x00', 0x0, 0x0) r4 = socket$inet6_tcp(0xa, 0x1, 0x0) setsockopt$inet6_tcp_int(r4, 0x6, 0xa, &(0x7f0000000180)=0x2, 0x4) bind$inet6(r4, &(0x7f00000000c0)={0xa, 0x4e20, 0x0, @loopback}, 0x1c) connect$inet6(r4, &(0x7f0000000000)={0xa, 0x4e20, 0x0, @loopback}, 0x1c) sendfile(r4, r3, 0x0, 0x9bbb) ioctl$AUTOFS_IOC_EXPIRE_MULTI(r4, 0x40049366, &(0x7f0000000000)=0x2) sendfile(r2, 0xffffffffffffffff, 0x0, 0x100000001) 19:55:30 executing program 0: r0 = syz_genetlink_get_family_id$nl80211(&(0x7f00000000c0), 0xffffffffffffffff) sendmsg$NL80211_CMD_REGISTER_FRAME(0xffffffffffffffff, &(0x7f00000004c0)={&(0x7f00000002c0)={0x10, 0x0, 0x0, 0x80000}, 0xc, &(0x7f0000000480)={&(0x7f0000000700)=ANY=[@ANYBLOB="00001b3e7640e5c7a0327d1311cb8a3f78c4fb567ce84bd446c29b998b28105f08870fa74fdb974caa74f4a361eba755cfc222f02ce2af014b22bb850c5eddbe6c487ccd7a2ec525011f3c47a4de6e3a7564f7514cd9dbb05cd191ac77", @ANYRES16=r0, @ANYBLOB="01002bbd7000fcdbdf253a00000008000300", @ANYRES32=0x0, @ANYBLOB="81005b00ba38ed850ea58de81c7def760f2cdba1eaa197522f5ac73896570842ce86fc8f2e06a9e50aa78b1617633db8f0f67025a28704bd05f1dc190e8c4be57c892a056ee01b09b8bb6106447aeaaefb1373f88a24c36c3e9d5be9bd7f74c7b22021f0575ed04bb0889016a2f2429bcb0cda4a8cdc90c4ff4fd8e755ac6f058200000065005b00eaf571b34d95ebcea0b75bf150014833ea201392ad088fc7bf782a8f116697bfc5be10efbc0cebac35594f9c89595c65e2a05009f0697d2b574f94943063a01e2f28bb95572c4390c12218b2754460f176f619c3875c081edd621f8c7aafbe1e000000000600650008000000"], 0x110}, 0x1, 0x0, 0x0, 0x810}, 0x40001) msgget$private(0x0, 0x8c) r1 = socket$inet6_udp(0xa, 0x2, 0x0) socket$nl_generic(0x10, 0x3, 0x10) r2 = syz_genetlink_get_family_id$nl80211(0x0, 0xffffffffffffffff) r3 = socket$nl_generic(0x10, 0x3, 0x10) syz_genetlink_get_family_id$ethtool(0x0, r3) syz_genetlink_get_family_id$nl80211(&(0x7f0000000280), 0xffffffffffffffff) sendmsg$NL80211_CMD_GET_COALESCE(r3, &(0x7f0000000340)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000580)={0x24, r2, 0x1, 0x0, 0x0, {{0x7e}, {@val={0x8, 0x1, 0x58}, @val={0x8}, @void}}}, 0x24}}, 0x0) connect$inet6(r1, &(0x7f0000000540)={0xa, 0x0, 0x0, @dev, 0x2}, 0x1c) connect$inet6(r1, &(0x7f0000000000)={0xa, 0x4e20, 0x0, @ipv4={'\x00', '\xff\xff', @local}}, 0x1c) r4 = socket$packet(0x11, 0x3, 0x300) setsockopt$packet_fanout(r4, 0x107, 0x12, &(0x7f0000000240)={0x0, 0x1}, 0x4) r5 = socket$inet_tcp(0x2, 0x1, 0x0) getsockopt$bt_hci(r5, 0x0, 0x2, &(0x7f0000000100)=""/215, &(0x7f0000000200)=0xd7) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x1004, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x44}, 0x9030, 0xd0}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) sendmmsg$inet6(r1, &(0x7f0000004d00), 0x2f, 0x0) recvfrom$inet6(0xffffffffffffffff, &(0x7f0000000380)=""/231, 0xe7, 0x2061, &(0x7f0000000040)={0xa, 0x4e23, 0x4, @loopback, 0x2}, 0x1c) sendmsg$NL80211_CMD_NEW_INTERFACE(0xffffffffffffffff, &(0x7f00000006c0)={&(0x7f0000000500)={0x10, 0x0, 0x0, 0x10000}, 0xc, &(0x7f0000000680)={&(0x7f00000005c0)={0x98, 0x0, 0x312, 0x70bd2d, 0x25dfdbfd, {{}, {@void, @val={0x8}, @val={0xc, 0x99, {0x3ff, 0x50}}}}, [@NL80211_ATTR_IFTYPE={0x8, 0x5, 0x2}, @NL80211_ATTR_IFNAME={0x14, 0x4, 'veth0_macvtap\x00'}, @mon_options=[@NL80211_ATTR_MU_MIMO_FOLLOW_MAC_ADDR={0xa, 0xe8, @device_b}, @NL80211_ATTR_MU_MIMO_GROUP_DATA={0x1c, 0xe7, "f56d4def1f1295400542e1610cfbba5c821e201e14e6b7eb"}, @NL80211_ATTR_MU_MIMO_GROUP_DATA={0x1c, 0xe7, "916caea99be5e1bac7fb23a0eb414a9315507f5dce729f46"}], @NL80211_ATTR_MESH_ID={0xa}, @NL80211_ATTR_SOCKET_OWNER={0x4}]}, 0x98}}, 0x22084011) [ 3030.700694] FAULT_INJECTION: forcing a failure. [ 3030.700694] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 3030.702426] CPU: 1 PID: 21179 Comm: syz-executor.2 Not tainted 5.10.207 #1 [ 3030.703353] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 3030.704425] Call Trace: [ 3030.704756] dump_stack+0x107/0x167 [ 3030.705219] should_fail.cold+0x5/0xa [ 3030.705720] _copy_from_user+0x2e/0x1b0 [ 3030.706242] __copy_msghdr_from_user+0x91/0x4b0 [ 3030.706843] ? __ia32_sys_shutdown+0x80/0x80 [ 3030.707427] ? __lock_acquire+0xbb1/0x5b00 [ 3030.707998] sendmsg_copy_msghdr+0xa1/0x160 [ 3030.708549] ? do_recvmmsg+0x6d0/0x6d0 [ 3030.709051] ? perf_trace_lock+0xac/0x490 [ 3030.709592] ? SOFTIRQ_verbose+0x10/0x10 [ 3030.710121] ? __lockdep_reset_lock+0x180/0x180 [ 3030.710720] ? perf_trace_lock+0xac/0x490 [ 3030.711261] ___sys_sendmsg+0xc6/0x170 [ 3030.711775] ? sendmsg_copy_msghdr+0x160/0x160 [ 3030.712372] ? __fget_files+0x26d/0x4c0 [ 3030.712898] ? lock_downgrade+0x6d0/0x6d0 [ 3030.713448] ? lock_downgrade+0x6d0/0x6d0 [ 3030.714006] ? __fget_files+0x296/0x4c0 [ 3030.714550] ? __fget_light+0xea/0x290 [ 3030.715064] __sys_sendmmsg+0x195/0x470 [ 3030.715603] ? __ia32_sys_sendmsg+0xb0/0xb0 [ 3030.716175] ? lock_downgrade+0x6d0/0x6d0 [ 3030.716728] ? ksys_write+0x12d/0x260 [ 3030.717233] ? __mutex_unlock_slowpath+0xe1/0x600 [ 3030.717864] ? wait_for_completion_io+0x270/0x270 [ 3030.718501] ? rcu_read_lock_any_held+0x75/0xa0 [ 3030.719108] ? vfs_write+0x354/0xa70 [ 3030.719612] ? fput_many+0x2f/0x1a0 [ 3030.720093] ? ksys_write+0x1a9/0x260 [ 3030.720589] ? __ia32_sys_read+0xb0/0xb0 [ 3030.721127] __x64_sys_sendmmsg+0x99/0x100 [ 3030.721687] do_syscall_64+0x33/0x40 [ 3030.722175] entry_SYSCALL_64_after_hwframe+0x62/0xc7 [ 3030.722843] RIP: 0033:0x7fac065c2b19 [ 3030.723329] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 3030.725781] RSP: 002b:00007fac03b38188 EFLAGS: 00000246 ORIG_RAX: 0000000000000133 [ 3030.726845] RAX: ffffffffffffffda RBX: 00007fac066d5f60 RCX: 00007fac065c2b19 [ 3030.727792] RDX: 0000000000000001 RSI: 0000000020002040 RDI: 0000000000000003 [ 3030.728684] RBP: 00007fac03b381d0 R08: 0000000000000000 R09: 0000000000000000 [ 3030.729622] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 3030.730529] R13: 00007ffe4d4b793f R14: 00007fac03b38300 R15: 0000000000022000 [ 3030.732597] EXT4-fs (loop6): mounted filesystem without journal. Opts: ,errors=continue [ 3030.749382] FAULT_INJECTION: forcing a failure. [ 3030.749382] name failslab, interval 1, probability 0, space 0, times 0 [ 3030.750872] CPU: 1 PID: 21167 Comm: syz-executor.6 Not tainted 5.10.207 #1 [ 3030.751799] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 3030.752869] Call Trace: [ 3030.753200] dump_stack+0x107/0x167 [ 3030.753684] should_fail.cold+0x5/0xa [ 3030.754178] ? __iomap_dio_rw+0x1ee/0x1110 [ 3030.754731] should_failslab+0x5/0x20 [ 3030.755225] kmem_cache_alloc_trace+0x55/0x320 [ 3030.755823] ? do_raw_spin_lock+0x121/0x260 [ 3030.756388] __iomap_dio_rw+0x1ee/0x1110 [ 3030.756932] ? __mark_inode_dirty+0x999/0xd40 [ 3030.757509] ? iomap_dio_bio_actor+0xef0/0xef0 [ 3030.758096] ? generic_update_time+0x21c/0x370 [ 3030.758659] ? ext4_orphan_add+0x253/0x9e0 [ 3030.759199] ? inode_dio_wait+0xbf/0x270 [ 3030.759746] ? ext4_empty_dir+0xae0/0xae0 [ 3030.760291] ? ext4_journal_check_start+0x1b3/0x2a0 [ 3030.760943] iomap_dio_rw+0x31/0x90 [ 3030.761415] ext4_file_write_iter+0xb26/0x18d0 [ 3030.762022] ? ext4_file_read_iter+0x4c0/0x4c0 [ 3030.762597] ? kasan_save_stack+0x32/0x40 [ 3030.763131] ? kasan_save_stack+0x1b/0x40 [ 3030.763667] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 3030.764337] ? iter_file_splice_write+0x16d/0xc30 [ 3030.764962] ? direct_splice_actor+0x10f/0x170 [ 3030.765540] ? splice_direct_to_actor+0x387/0x980 [ 3030.766166] ? do_splice_direct+0x1c4/0x290 [ 3030.766722] ? vfs_copy_file_range+0x4f8/0x1290 [ 3030.767337] ? __do_sys_copy_file_range+0x193/0x420 [ 3030.768003] do_iter_readv_writev+0x476/0x750 [ 3030.768589] ? new_sync_write+0x660/0x660 [ 3030.769118] ? selinux_file_permission+0x92/0x520 [ 3030.769801] do_iter_write+0x191/0x670 [ 3030.770302] ? trace_hardirqs_on+0x5b/0x180 [ 3030.770863] vfs_iter_write+0x70/0xa0 [ 3030.771352] iter_file_splice_write+0x762/0xc30 [ 3030.771953] ? generic_splice_sendpage+0x140/0x140 [ 3030.772581] ? avc_policy_seqno+0x9/0x70 [ 3030.773099] ? selinux_file_permission+0x92/0x520 [ 3030.773740] ? lockdep_init_map_type+0x2c7/0x780 [ 3030.774342] ? generic_splice_sendpage+0x140/0x140 [ 3030.774977] direct_splice_actor+0x10f/0x170 [ 3030.775559] splice_direct_to_actor+0x387/0x980 [ 3030.775775] netlink: 72 bytes leftover after parsing attributes in process `syz-executor.5'. [ 3030.776169] ? pipe_to_sendpage+0x380/0x380 [ 3030.778632] ? do_splice_to+0x160/0x160 [ 3030.779150] ? security_file_permission+0x24e/0x570 [ 3030.779821] do_splice_direct+0x1c4/0x290 [ 3030.780353] ? splice_direct_to_actor+0x980/0x980 [ 3030.780964] ? selinux_file_permission+0x92/0x520 [ 3030.781584] ? security_file_permission+0x24e/0x570 [ 3030.782235] vfs_copy_file_range+0x4f8/0x1290 [ 3030.782822] ? generic_file_rw_checks+0x240/0x240 [ 3030.783473] __do_sys_copy_file_range+0x193/0x420 [ 3030.784110] ? vfs_copy_file_range+0x1290/0x1290 [ 3030.784711] ? ksys_write+0x1a9/0x260 [ 3030.785207] ? __ia32_sys_read+0xb0/0xb0 [ 3030.785781] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 3030.786461] ? syscall_enter_from_user_mode+0x1d/0x50 [ 3030.787154] do_syscall_64+0x33/0x40 [ 3030.787637] entry_SYSCALL_64_after_hwframe+0x62/0xc7 [ 3030.788273] RIP: 0033:0x7fec371d4b19 [ 3030.788747] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 3030.791003] RSP: 002b:00007fec3474a188 EFLAGS: 00000246 ORIG_RAX: 0000000000000146 [ 3030.792028] RAX: ffffffffffffffda RBX: 00007fec372e7f60 RCX: 00007fec371d4b19 [ 3030.792884] RDX: 0000000000000006 RSI: 0000000000000000 RDI: 0000000000000007 [ 3030.793748] RBP: 00007fec3474a1d0 R08: 0000000000000c3a R09: 0000000000000000 [ 3030.794596] R10: 0000000020000280 R11: 0000000000000246 R12: 0000000000000002 [ 3030.795445] R13: 00007ffec551fc1f R14: 00007fec3474a300 R15: 0000000000022000 19:55:30 executing program 5: r0 = socket$nl_xfrm(0x10, 0x3, 0x6) sendmsg$nl_xfrm(r0, &(0x7f0000002e00)={0x0, 0x0, &(0x7f0000002dc0)={&(0x7f0000000000)=ANY=[@ANYBLOB="38010000100001000000000000000000fc020000000000000000000000000000fe8000000000000000000000000000aa0000000000000000000000000000000093f6", @ANYRES32=0x0, @ANYRES32=0xee01, @ANYBLOB="fe8800000000000000000000000000010000000032000000fc00000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000a0000000000000000000000480002006362632873657270656e742900"/240], 0x138}}, 0x0) [ 3030.852120] platform regulatory.0: Direct firmware load for regulatory.db failed with error -2 19:55:30 executing program 5: r0 = syz_open_dev$sg(&(0x7f0000000080), 0x0, 0x121400) ioctl$SCSI_IOCTL_SEND_COMMAND(r0, 0x1, &(0x7f0000000080)=ANY=[@ANYBLOB="410000000000000015fa0800418e00000000"]) ioctl$VFAT_IOCTL_READDIR_SHORT(r0, 0x82307202, &(0x7f0000000000)=[{0x0, 0x0, 0x100}, {0x0, 0x0, 0x100}]) r1 = socket$inet6_udp(0xa, 0x2, 0x0) connect$inet6(r1, &(0x7f0000000600)={0xa, 0x0, 0x0, @dev, 0x3}, 0x1c) setsockopt$inet6_opts(r1, 0x29, 0x3b, &(0x7f0000000640)=ANY=[], 0x30) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4, @perf_config_ext, 0x0, 0x1000000000000}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) sendmmsg$inet6(r1, &(0x7f0000004d00), 0x400000000000070, 0x0) 19:55:30 executing program 2: r0 = socket$inet_icmp_raw(0x2, 0x3, 0x1) r1 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a) ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000140)={'syz_tun\x00', 0x0}) perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) sendmmsg$inet(r0, &(0x7f0000002040)=[{{&(0x7f0000000380)={0x2, 0x0, @multicast1}, 0x10, &(0x7f0000001600)=[{&(0x7f00000003c0)="db9c", 0xffe7}], 0x1, &(0x7f0000001640)=ANY=[@ANYBLOB="14000000000000000000000007000000c4048f01000000001c000000000000000000000008000000", @ANYRES32=r2], 0x38}}], 0x1, 0x0) (fail_nth: 2) 19:55:30 executing program 7: rename(&(0x7f0000000040)='./file1\x00', &(0x7f0000000080)='./file1\x00') creat(&(0x7f0000000140)='./file2\x00', 0x50) mlock2(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x0) mmap$usbmon(&(0x7f0000fff000/0x1000)=nil, 0x1000, 0x1, 0xa3e4556d93466b3, 0xffffffffffffffff, 0x0) r0 = perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x0, 0xffffffffffffffff}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) mknod$loop(&(0x7f0000000400)='./file0\x00', 0x6000, 0x0) r1 = openat(0xffffffffffffff9c, &(0x7f0000000000)='./file0\x00', 0x0, 0x4) ioctl$LOOP_SET_STATUS(r1, 0x4c00, 0x0) chown(0x0, 0xee00, 0x0) ioctl$FS_IOC_GET_ENCRYPTION_POLICY_EX(r0, 0xc0096616, &(0x7f0000001740)=ANY=[@ANYBLOB="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"]) ioctl$SNDRV_TIMER_IOCTL_GINFO(0xffffffffffffffff, 0xc0f85403, 0x0) ioctl$LOOP_SET_STATUS(0xffffffffffffffff, 0x4c02, &(0x7f0000000180)={0x0, {}, 0x0, {}, 0x742, 0x14, 0x1e, 0x1, "65c20837f3d7d047c53723d0fecb97ca3e612c7c6596a26c857cb0ea1f082b35075247f3859f01a37e2c1675c47e6f9936a75f5f36c08b1836e14a2e0416bb1d", "0d6211a6ea2ca0909c8bd13ba06d1b657793c9465f43bef3537a32c88172ed4f", [0x69, 0x8]}) getpid() connect$inet6(r1, &(0x7f00000000c0)={0xa, 0x4e23, 0x0, @rand_addr=' \x01\x00', 0x6}, 0x1c) readv(0xffffffffffffffff, &(0x7f0000003700)=[{&(0x7f0000000200)=""/216, 0xd8}, {&(0x7f00000003c0)=""/121, 0x79}, {&(0x7f0000000380)=""/51, 0x33}, {&(0x7f00000014c0)=""/160, 0xa0}, {&(0x7f0000001640)=""/256, 0x100}, {0x0}, {&(0x7f00000015c0)=""/51, 0x33}, {&(0x7f00000001c0)=""/57, 0x39}], 0x8) readv(0xffffffffffffffff, &(0x7f0000001600)=[{&(0x7f00000004c0)=""/4096, 0x1000}], 0x1) acct(&(0x7f0000000300)='./file3\x00') openat(0xffffffffffffffff, &(0x7f0000000100)='./file3\x00', 0x7fec294954c21302, 0x0) faccessat2(0xffffffffffffffff, 0x0, 0x80, 0x0) [ 3030.982489] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium 19:55:30 executing program 6: syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000140)='./file0\x00', 0x40000, 0x4, &(0x7f0000000200)=[{&(0x7f0000010000)="20000000000100000c000000d40000000f000000010000000000000000000000002000000020000020000000d7f4655fd7f4655f0100ffff53ef010001000000d7f4655f000000000000000001000000000000000b0000000002", 0x5a, 0x400}, {&(0x7f0000010400)="030000000400000005000000d4000f", 0xf, 0x800}, {&(0x7f0000000500)="ffffffffff070000000000000000000000000000000000000000000000000080ffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffff", 0x402, 0xc00}, {&(0x7f0000010e00)="ed41000000040000d7f4655fd7f4655fd7f4655f000000000000040002", 0x1d, 0x1600}], 0x0, &(0x7f00000003c0)=ANY=[]) chdir(&(0x7f0000000040)='./file0\x00') openat(0xffffffffffffff9c, &(0x7f0000000080)='./file1\x00', 0x105142, 0x0) r0 = openat(0xffffffffffffff9c, &(0x7f0000000200)='./file1\x00', 0x2, 0x0) write(r0, &(0x7f0000000240)="01", 0x1) r1 = openat(0xffffffffffffff9c, &(0x7f00000000c0)='./file2\x00', 0x105142, 0x0) r2 = openat(0xffffffffffffff9c, &(0x7f0000001340)='./file1\x00', 0x0, 0x0) copy_file_range(r2, 0x0, r1, &(0x7f0000000280)=0x10000, 0xc3a, 0x0) (fail_nth: 11) openat$sr(0xffffffffffffff9c, 0x0, 0x0, 0x0) [ 3031.014967] platform regulatory.0: Direct firmware load for regulatory.db failed with error -2 [ 3031.062652] FAULT_INJECTION: forcing a failure. [ 3031.062652] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 3031.065383] CPU: 0 PID: 21378 Comm: syz-executor.2 Not tainted 5.10.207 #1 [ 3031.066880] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 3031.068702] Call Trace: [ 3031.069291] dump_stack+0x107/0x167 [ 3031.070092] should_fail.cold+0x5/0xa [ 3031.070962] _copy_from_user+0x2e/0x1b0 [ 3031.071844] move_addr_to_kernel.part.0+0x31/0x110 [ 3031.072904] __copy_msghdr_from_user+0x3e1/0x4b0 [ 3031.073954] ? __ia32_sys_shutdown+0x80/0x80 [ 3031.074939] ? perf_trace_run_bpf_submit+0xf5/0x190 [ 3031.076063] sendmsg_copy_msghdr+0xa1/0x160 [ 3031.077004] ? do_recvmmsg+0x6d0/0x6d0 [ 3031.077874] ? perf_trace_lock+0x2bd/0x490 [ 3031.078796] ? SOFTIRQ_verbose+0x10/0x10 [ 3031.079718] ? __lockdep_reset_lock+0x180/0x180 [ 3031.080746] ___sys_sendmsg+0xc6/0x170 [ 3031.081625] ? sendmsg_copy_msghdr+0x160/0x160 [ 3031.082631] ? __fget_files+0x26d/0x4c0 [ 3031.083522] ? lock_downgrade+0x6d0/0x6d0 [ 3031.084492] ? perf_trace_run_bpf_submit+0xf5/0x190 [ 3031.085610] ? __fget_files+0x296/0x4c0 [ 3031.086520] ? __fget_light+0xea/0x290 [ 3031.087407] __sys_sendmmsg+0x195/0x470 [ 3031.088315] ? __ia32_sys_sendmsg+0xb0/0xb0 [ 3031.089274] ? lock_downgrade+0x6d0/0x6d0 [ 3031.090213] ? ksys_write+0x12d/0x260 [ 3031.091073] ? __mutex_unlock_slowpath+0xe1/0x600 [ 3031.092159] ? wait_for_completion_io+0x270/0x270 [ 3031.093223] ? rcu_read_lock_any_held+0x75/0xa0 [ 3031.094252] ? vfs_write+0x354/0xa70 [ 3031.095094] ? fput_many+0x2f/0x1a0 [ 3031.095926] ? ksys_write+0x1a9/0x260 [ 3031.096775] ? __ia32_sys_read+0xb0/0xb0 [ 3031.097697] __x64_sys_sendmmsg+0x99/0x100 [ 3031.098650] do_syscall_64+0x33/0x40 [ 3031.099480] entry_SYSCALL_64_after_hwframe+0x62/0xc7 [ 3031.100611] RIP: 0033:0x7fac065c2b19 [ 3031.101426] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 3031.105373] RSP: 002b:00007fac03b38188 EFLAGS: 00000246 ORIG_RAX: 0000000000000133 [ 3031.107013] RAX: ffffffffffffffda RBX: 00007fac066d5f60 RCX: 00007fac065c2b19 [ 3031.108581] RDX: 0000000000000001 RSI: 0000000020002040 RDI: 0000000000000003 [ 3031.110119] RBP: 00007fac03b381d0 R08: 0000000000000000 R09: 0000000000000000 [ 3031.111699] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 3031.113267] R13: 00007ffe4d4b793f R14: 00007fac03b38300 R15: 0000000000022000 [ 3031.216851] EXT4-fs (loop6): mounted filesystem without journal. Opts: ,errors=continue [ 3031.221724] FAULT_INJECTION: forcing a failure. [ 3031.221724] name failslab, interval 1, probability 0, space 0, times 0 [ 3031.223205] CPU: 1 PID: 21416 Comm: syz-executor.6 Not tainted 5.10.207 #1 [ 3031.223933] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 3031.224854] Call Trace: [ 3031.225136] dump_stack+0x107/0x167 [ 3031.225550] should_fail.cold+0x5/0xa [ 3031.225994] ? create_object.isra.0+0x3a/0xa20 [ 3031.226503] should_failslab+0x5/0x20 [ 3031.226934] kmem_cache_alloc+0x5b/0x310 [ 3031.227386] create_object.isra.0+0x3a/0xa20 [ 3031.227883] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 3031.228421] kmem_cache_alloc+0x159/0x310 [ 3031.228866] ext4_mb_new_blocks+0x64d/0x45b0 [ 3031.229340] ? mark_lock+0xf5/0x2df0 [ 3031.229739] ? mark_lock+0xf5/0x2df0 [ 3031.230134] ? ext4_discard_preallocations+0xd80/0xd80 [ 3031.230688] ? lock_chain_count+0x20/0x20 [ 3031.231128] ? lock_chain_count+0x20/0x20 [ 3031.231585] ext4_new_meta_blocks+0x1e1/0x320 [ 3031.232060] ? ext4_should_retry_alloc+0x240/0x240 [ 3031.232582] ? ext4_get_branch+0x541/0x6d0 [ 3031.233033] ext4_ind_map_blocks+0x95d/0x2150 [ 3031.233517] ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0 [ 3031.234073] ? ext4_free_branches+0x680/0x680 [ 3031.234560] ? lock_acquire+0x197/0x470 [ 3031.234998] ? lock_release+0x680/0x680 [ 3031.235440] ? find_held_lock+0x2c/0x110 [ 3031.235898] ? down_write+0xe0/0x160 [ 3031.236311] ? down_write_killable+0x180/0x180 [ 3031.236824] ext4_map_blocks+0x9ed/0x1940 [ 3031.237297] ? __kernel_text_address+0x9/0x40 [ 3031.237796] ? ext4_issue_zeroout+0x1c0/0x1c0 [ 3031.238299] ? ext4_journal_check_start+0x1b3/0x2a0 [ 3031.238849] ? __ext4_journal_start_sb+0x1db/0x390 [ 3031.239390] ? ext4_meta_trans_blocks+0x25c/0x310 [ 3031.239936] ext4_iomap_begin+0x3ad/0x700 [ 3031.240407] ? ext4_iomap_begin_report+0x5a0/0x5a0 [ 3031.240943] ? kasan_save_stack+0x1b/0x40 [ 3031.241400] ? ext4_file_write_iter+0xb26/0x18d0 [ 3031.241931] ? truncate_exceptional_pvec_entries.part.0+0x510/0x510 [ 3031.242633] ? splice_direct_to_actor+0x387/0x980 [ 3031.243166] ? do_splice_direct+0x1c4/0x290 [ 3031.243657] ? vfs_copy_file_range+0x4f8/0x1290 [ 3031.244174] ? __do_sys_copy_file_range+0x193/0x420 [ 3031.244725] ? do_syscall_64+0x33/0x40 [ 3031.245156] ? entry_SYSCALL_64_after_hwframe+0x62/0xc7 [ 3031.245751] iomap_apply+0x164/0x810 [ 3031.246162] ? iomap_dio_rw+0x90/0x90 [ 3031.246584] ? trace_event_raw_event_iomap_apply+0x430/0x430 [ 3031.247240] ? mark_held_locks+0x9e/0xe0 [ 3031.247712] ? filemap_check_errors+0xa5/0x150 [ 3031.248224] __iomap_dio_rw+0x6cd/0x1110 [ 3031.248670] ? iomap_dio_rw+0x90/0x90 [ 3031.249104] ? iomap_dio_bio_actor+0xef0/0xef0 [ 3031.249606] ? ext4_orphan_add+0x253/0x9e0 [ 3031.250074] ? inode_dio_wait+0xbf/0x270 [ 3031.250541] ? ext4_empty_dir+0xae0/0xae0 [ 3031.251006] ? ext4_journal_check_start+0x1b3/0x2a0 [ 3031.251565] iomap_dio_rw+0x31/0x90 [ 3031.251977] ext4_file_write_iter+0xb26/0x18d0 [ 3031.252502] ? ext4_file_read_iter+0x4c0/0x4c0 [ 3031.253009] ? kasan_save_stack+0x32/0x40 [ 3031.253466] ? kasan_save_stack+0x1b/0x40 [ 3031.253929] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 3031.254494] ? iter_file_splice_write+0x16d/0xc30 [ 3031.255029] ? direct_splice_actor+0x10f/0x170 [ 3031.255550] ? splice_direct_to_actor+0x387/0x980 [ 3031.256087] ? do_splice_direct+0x1c4/0x290 [ 3031.256548] ? vfs_copy_file_range+0x4f8/0x1290 [ 3031.257065] ? __do_sys_copy_file_range+0x193/0x420 [ 3031.257629] do_iter_readv_writev+0x476/0x750 [ 3031.258114] ? new_sync_write+0x660/0x660 [ 3031.258567] ? selinux_file_permission+0x92/0x520 [ 3031.259101] do_iter_write+0x191/0x670 [ 3031.259544] ? trace_hardirqs_on+0x5b/0x180 [ 3031.260047] vfs_iter_write+0x70/0xa0 [ 3031.260461] iter_file_splice_write+0x762/0xc30 [ 3031.260994] ? generic_splice_sendpage+0x140/0x140 [ 3031.261541] ? avc_policy_seqno+0x9/0x70 [ 3031.261991] ? selinux_file_permission+0x92/0x520 [ 3031.262535] ? lockdep_init_map_type+0x2c7/0x780 [ 3031.263069] ? generic_splice_sendpage+0x140/0x140 [ 3031.263639] direct_splice_actor+0x10f/0x170 [ 3031.264128] splice_direct_to_actor+0x387/0x980 [ 3031.264642] ? pipe_to_sendpage+0x380/0x380 [ 3031.265123] ? do_splice_to+0x160/0x160 [ 3031.265562] ? security_file_permission+0x24e/0x570 [ 3031.266122] do_splice_direct+0x1c4/0x290 [ 3031.266579] ? splice_direct_to_actor+0x980/0x980 [ 3031.267110] ? selinux_file_permission+0x92/0x520 [ 3031.267659] ? security_file_permission+0x24e/0x570 [ 3031.268214] vfs_copy_file_range+0x4f8/0x1290 [ 3031.268719] ? generic_file_rw_checks+0x240/0x240 [ 3031.269276] __do_sys_copy_file_range+0x193/0x420 [ 3031.269817] ? vfs_copy_file_range+0x1290/0x1290 [ 3031.270327] ? ksys_write+0x1a9/0x260 [ 3031.270748] ? __ia32_sys_read+0xb0/0xb0 [ 3031.271199] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 3031.271801] ? syscall_enter_from_user_mode+0x1d/0x50 [ 3031.272381] do_syscall_64+0x33/0x40 [ 3031.272793] entry_SYSCALL_64_after_hwframe+0x62/0xc7 [ 3031.273352] RIP: 0033:0x7fec371d4b19 [ 3031.273761] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 3031.275767] RSP: 002b:00007fec3474a188 EFLAGS: 00000246 ORIG_RAX: 0000000000000146 [ 3031.276597] RAX: ffffffffffffffda RBX: 00007fec372e7f60 RCX: 00007fec371d4b19 [ 3031.277376] RDX: 0000000000000006 RSI: 0000000000000000 RDI: 0000000000000007 [ 3031.278166] RBP: 00007fec3474a1d0 R08: 0000000000000c3a R09: 0000000000000000 [ 3031.278941] R10: 0000000020000280 R11: 0000000000000246 R12: 0000000000000002 [ 3031.279736] R13: 00007ffec551fc1f R14: 00007fec3474a300 R15: 0000000000022000 19:55:45 executing program 6: syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000140)='./file0\x00', 0x40000, 0x4, &(0x7f0000000200)=[{&(0x7f0000010000)="20000000000100000c000000d40000000f000000010000000000000000000000002000000020000020000000d7f4655fd7f4655f0100ffff53ef010001000000d7f4655f000000000000000001000000000000000b0000000002", 0x5a, 0x400}, {&(0x7f0000010400)="030000000400000005000000d4000f", 0xf, 0x800}, {&(0x7f0000000500)="ffffffffff070000000000000000000000000000000000000000000000000080ffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffff", 0x402, 0xc00}, {&(0x7f0000010e00)="ed41000000040000d7f4655fd7f4655fd7f4655f000000000000040002", 0x1d, 0x1600}], 0x0, &(0x7f00000003c0)=ANY=[]) chdir(&(0x7f0000000040)='./file0\x00') openat(0xffffffffffffff9c, &(0x7f0000000080)='./file1\x00', 0x105142, 0x0) r0 = openat(0xffffffffffffff9c, &(0x7f0000000200)='./file1\x00', 0x2, 0x0) write(r0, &(0x7f0000000240)="01", 0x1) r1 = openat(0xffffffffffffff9c, &(0x7f00000000c0)='./file2\x00', 0x105142, 0x0) r2 = openat(0xffffffffffffff9c, &(0x7f0000001340)='./file1\x00', 0x0, 0x0) copy_file_range(r2, 0x0, r1, &(0x7f0000000280)=0x10000, 0xc3a, 0x0) (fail_nth: 12) openat$sr(0xffffffffffffff9c, 0x0, 0x0, 0x0) 19:55:45 executing program 2: r0 = socket$inet_icmp_raw(0x2, 0x3, 0x1) r1 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a) ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000140)={'syz_tun\x00', 0x0}) perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) sendmmsg$inet(r0, &(0x7f0000002040)=[{{&(0x7f0000000380)={0x2, 0x0, @multicast1}, 0x10, &(0x7f0000001600)=[{&(0x7f00000003c0)="db9c", 0xffe7}], 0x1, &(0x7f0000001640)=ANY=[@ANYBLOB="14000000000000000000000007000000c4048f01000000001c000000000000000000000008000000", @ANYRES32=r2], 0x38}}], 0x1, 0x0) (fail_nth: 3) 19:55:45 executing program 5: r0 = add_key$keyring(0x0, 0x0, 0x0, 0x0, 0xfffffffffffffffb) add_key$fscrypt_v1(0x0, 0x0, &(0x7f0000000440)={0x0, "9b55f610ffe7b9856842eb69443042b20caac33d7dda6ec6986b177fa13c2bd2c68577ea852c8bb47f31ee549b6a921e231ef07ee0f7fca620564faeeeafa440"}, 0x48, 0x0) getsockopt$inet_mreq(0xffffffffffffffff, 0x0, 0x24, &(0x7f00000004c0)={@multicast1, @broadcast}, &(0x7f0000000500)=0x8) r1 = add_key$keyring(&(0x7f0000000040), &(0x7f00000002c0)={'syz', 0x3}, 0x0, 0x0, 0xfffffffffffffffd) r2 = add_key$user(&(0x7f0000000a40), &(0x7f0000000a80)={'syz', 0x1}, &(0x7f0000000300)="a3", 0x1, 0xfffffffffffffffe) keyctl$KEYCTL_RESTRICT_KEYRING(0x1d, r1, &(0x7f0000000240)='asymmetric\x00', &(0x7f0000000000)=@keyring={'key_or_keyring:', r2, 0xa}) request_key(&(0x7f0000000240)='.request_key_auth\x00', &(0x7f0000000280)={'syz', 0x3}, &(0x7f0000000380)='dns_resolver\x00', r1) add_key$fscrypt_provisioning(&(0x7f0000000000), &(0x7f0000000140)={'syz', 0x3}, &(0x7f0000000580)=ANY=[@ANYBLOB="02000000000000000102030405060708090a0b0c0d0e0f101112131415161718191a1bc4451e1f202122232425262728292a2b32333435363723c8081953e7c5383b3a3b3c3d3e3f40000000000000"], 0x48, r0) add_key$keyring(&(0x7f0000000340), &(0x7f00000003c0)={'syz', 0x3}, 0x0, 0x0, 0x0) sendmmsg$inet(0xffffffffffffffff, &(0x7f00000004c0), 0x0, 0x800) getsockopt$IPT_SO_GET_REVISION_TARGET(0xffffffffffffffff, 0x0, 0x43, &(0x7f0000000400)={'IDLETIMER\x00'}, &(0x7f0000000600)=0xfffffffffffffd9d) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x2, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f0000000100)}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r3 = add_key$fscrypt_v1(&(0x7f0000000180), &(0x7f00000001c0)={'fscrypt:', @desc4}, &(0x7f0000000200)={0x0, "f038779de021f8c8c974dd89170cf2579d1fa459ba726003d07140eeb342b87ae631f7a548867a29f29fd1637ddac658a709b49b093393d0e1c7391515c7ab7c"}, 0x48, 0xfffffffffffffffe) keyctl$chown(0x4, r3, 0xee01, 0xee00) add_key$keyring(&(0x7f0000000340), &(0x7f00000003c0)={'syz', 0x3}, 0x0, 0x0, r3) add_key(&(0x7f0000000080)='trusted\x00', &(0x7f00000000c0)={'syz', 0x2}, &(0x7f0000000180)="3d00ff65a7d6ee2220a854f9", 0xc, r3) clone3(&(0x7f0000000ac0)={0x17412c500, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) 19:55:45 executing program 1: r0 = syz_io_uring_setup(0x2021, &(0x7f00000002c0)={0x0, 0x7fb6, 0x0, 0x3, 0x0, 0x0, 0x0}, &(0x7f0000ffe000/0x1000)=nil, &(0x7f0000ffd000/0x3000)=nil, &(0x7f0000000340), &(0x7f0000002580)) r1 = syz_io_uring_setup(0x2298, &(0x7f0000000200)={0x0, 0x0, 0x1}, &(0x7f0000ffe000/0x1000)=nil, &(0x7f0000ffe000/0x1000)=nil, &(0x7f00000001c0)=0x0, &(0x7f0000000280)) r3 = eventfd(0x0) io_uring_register$IORING_REGISTER_EVENTFD_ASYNC(r0, 0x7, &(0x7f0000000500)=r3, 0x1) dup2(r1, r3) io_uring_register$IORING_UNREGISTER_EVENTFD(r0, 0x5, 0x0, 0x0) r4 = dup3(0xffffffffffffffff, 0xffffffffffffffff, 0x0) linkat(r4, &(0x7f0000000100)='./file0\x00', 0xffffffffffffffff, &(0x7f0000000140)='./file0/file0\x00', 0x1000) perf_event_open(&(0x7f0000001d80)={0x2, 0x80, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r5 = socket$inet6_udplite(0xa, 0x2, 0x88) setsockopt$inet6_group_source_req(r5, 0x29, 0x2e, &(0x7f0000000040)={0x0, {{0xa, 0x0, 0x0, @mcast2}}, {{0xa, 0x0, 0x0, @private0}}}, 0x108) syz_io_uring_submit(0x0, 0x0, &(0x7f0000000040)=@IORING_OP_POLL_ADD={0x6, 0x5, 0x0, @fd, 0x0, 0x0, 0x0, {0xa084}}, 0x20) r6 = mmap$IORING_OFF_SQES(&(0x7f0000ffd000/0x3000)=nil, 0x3000, 0x3, 0x2010, 0xffffffffffffffff, 0x10000000) r7 = syz_open_dev$tty1(0xc, 0x4, 0x3) r8 = io_uring_register$IORING_REGISTER_PERSONALITY(0xffffffffffffffff, 0x9, 0x0, 0x0) syz_io_uring_submit(0x0, 0x0, &(0x7f0000000440)=@IORING_OP_FSYNC={0x3, 0x0, 0x0, @fd_index, 0x0, 0x0, 0x0, 0x0, 0x1, {0x0, r8}}, 0x0) syz_io_uring_submit(0x0, r6, &(0x7f0000000180)=@IORING_OP_WRITE_FIXED={0x5, 0x2, 0x0, @fd=r7, 0xff, 0x9, 0xfe, 0x1d, 0x1, {0x3, r8}}, 0xcc9e) syz_io_uring_submit(r2, 0x0, &(0x7f0000000000)=@IORING_OP_REMOVE_BUFFERS={0x1f, 0x6e2dfd16b779c005, 0x0, 0x101, 0x0, 0x0, 0x0, 0x0, 0x0, {0x2, r8}}, 0xffffffff) setsockopt$inet6_group_source_req(r5, 0x29, 0x2f, &(0x7f0000000040)={0x0, {{0xa, 0x0, 0x0, @mcast2}}, {{0xa, 0x0, 0x0, @private0, 0x5}}}, 0x108) mmap$IORING_OFF_SQ_RING(&(0x7f0000ffe000/0x2000)=nil, 0x2000, 0x2000001, 0x80010, r4, 0x0) 19:55:45 executing program 4: syz_80211_inject_frame(&(0x7f00000000c0)=@device_a={0x8, 0x2, 0x11, 0x11}, &(0x7f0000000440)=ANY=[], 0x2f) 19:55:45 executing program 7: rename(&(0x7f0000000040)='./file1\x00', &(0x7f0000000080)='./file1\x00') creat(&(0x7f0000000140)='./file2\x00', 0x50) mlock2(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x0) mmap$usbmon(&(0x7f0000fff000/0x1000)=nil, 0x1000, 0x1, 0xa3e4556d93466b3, 0xffffffffffffffff, 0x0) r0 = perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x0, 0xffffffffffffffff}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) mknod$loop(&(0x7f0000000400)='./file0\x00', 0x6000, 0x0) r1 = openat(0xffffffffffffff9c, &(0x7f0000000000)='./file0\x00', 0x0, 0x4) ioctl$LOOP_SET_STATUS(r1, 0x4c00, 0x0) chown(0x0, 0xee00, 0x0) ioctl$FS_IOC_GET_ENCRYPTION_POLICY_EX(r0, 0xc0096616, &(0x7f0000001740)=ANY=[@ANYBLOB="0309001000000000000000ed04431ffe9988c0661fd2a577b74cf8c13c7ff04266e723a45091714b17c77fa0831f177b51fc819559a2eceea3893d94020bfc32e6f150be1df02846c27c63f23e6e07f6cf2af9fbe8212768ba373069b0c94a3b5d19178e98ac005e175953aaa4154ecaab6b328af6750291727132834c2c6d0fdcd98ebbea66d3643e21ad47eb31a8104674b6ade1951fe0be674d68c571162af56e9e816edd59f1fd12ed42a8b25ded2de8c6658b5a84e008b5578351814faa9d2e8f434760fa183b51ea7f4adc1245ef339e9957880ec5632fe655bb29cdefc124572813e08e8ab2ccb2398c9b8e4c12dc1ad896b18bcc3bed7843abfbefb66401a2f759c3f3e67f9ce3e3df6882511bfd762dd1cddb0250957e79cc735284a874636d8dbfa7760aa6e4111602e52709879c6d9bf6bccdaeecef613bbcecaef887202f9e89b5e11830dad2b6f9d71b8a555a6ea28ebbcb6fd0cca141337e26d57f0e7835ffbd375904c860ea4c37812adb43b0e2b5242b52dc00000000000000000000000000dff5628cb7f7a9f32b4f966d2ecefb025b320f7d14d748384c35f47411a2538384dc26bae4c11df89e9417ef9ec3b9025701000000000000709efc459d91fc443dc1ed7dc5c67646ef8439711164c6b130c8804aa7aa3083de2cda07e05c792abd2aa60f1e8f11decfc65a1032f009e6739aff83860b62a89e4ca41a625a4af50ae3c496319586752555301a2be5d27183362cf6468873b52d06e7d1aa7c950d34795e9bd9429d8b78ff8c8551f5fb4ddeff64ea58fc00d322d05c678800000000c7070bd5d87ec2bfc1fd54d583038de2832fecee982fef58e29455318871efe1528b54bf62988a9f77794d09cd55d8b8b16e1b9280167c9460b4e0c17ce6604b08559a4dd5e7bc9af967619c135cd36875d2b3fdcb9f5684db20e986be05ce0665080a5b27b97009094bd317c09380537d433c49a0f680f9c06968b7a0b1a00781dd7f1ccb11d3d7b3593cdc25c538cb6927a5dca730d81e5a4d276f6313afc5240dc5b23bedb0f18f4fcf4724306afe218ac23bec29b38f6c6473501dc4139f30008d27d184e53e992a2c094f7e90c68b8839af7db313bbe77212e1a3e5ba3cf61a12d3df6f1254d65c89df6c24032edbc02106c2d0354127666448ac68a09a2477b98d54ce28091bb1394254e80d18d8b95deafd3d3a7569918514e9cc8c1764e52e06f4ad9fccdbe979f4eb58e012456eef6ce4510000aae74f84b6165ad47c96537fa2d1d6b6e73fe6c7594226dfc168f6a786908307a17dbfb42a848b13aac99f0fe22867951ad311d9da92add8a845dac587e77959a77f9abec28f99c7e54bddfd16a8c66dd51a8f5744bdaef42b57a15e9cf92c517802aeb22529e89d9d41cf7ec77ae9e598ec1531ee2c569888f8b220d29e3a607fa31de420c9d1f6479556cacf41d85efd3f7a20770b490c3596d8558b91b5941910c5"]) ioctl$SNDRV_TIMER_IOCTL_GINFO(0xffffffffffffffff, 0xc0f85403, 0x0) ioctl$LOOP_SET_STATUS(0xffffffffffffffff, 0x4c02, &(0x7f0000000180)={0x0, {}, 0x0, {}, 0x742, 0x14, 0x1e, 0x1, "65c20837f3d7d047c53723d0fecb97ca3e612c7c6596a26c857cb0ea1f082b35075247f3859f01a37e2c1675c47e6f9936a75f5f36c08b1836e14a2e0416bb1d", "0d6211a6ea2ca0909c8bd13ba06d1b657793c9465f43bef3537a32c88172ed4f", [0x69, 0x8]}) getpid() connect$inet6(r1, &(0x7f00000000c0)={0xa, 0x4e23, 0x0, @rand_addr=' \x01\x00', 0x6}, 0x1c) readv(0xffffffffffffffff, &(0x7f0000003700)=[{&(0x7f0000000200)=""/216, 0xd8}, {&(0x7f00000003c0)=""/121, 0x79}, {&(0x7f0000000380)=""/51, 0x33}, {&(0x7f00000014c0)=""/160, 0xa0}, {&(0x7f0000001640)=""/256, 0x100}, {0x0}, {&(0x7f00000015c0)=""/51, 0x33}, {&(0x7f00000001c0)=""/57, 0x39}], 0x8) readv(0xffffffffffffffff, &(0x7f0000001600)=[{&(0x7f00000004c0)=""/4096, 0x1000}], 0x1) acct(&(0x7f0000000300)='./file3\x00') openat(0xffffffffffffffff, &(0x7f0000000100)='./file3\x00', 0x7fec294954c21302, 0x0) faccessat2(0xffffffffffffffff, 0x0, 0x80, 0x0) 19:55:45 executing program 3: syz_io_uring_setup(0x4d52, &(0x7f00000003c0)={0x0, 0x0, 0x2}, &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, 0x0, 0x0) syz_io_uring_setup(0x2bd8, &(0x7f0000000740), &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000ffd000/0x2000)=nil, &(0x7f0000000100)=0x0, &(0x7f0000000000)=0x0) syz_io_uring_submit(r0, r1, &(0x7f0000000240)=@IORING_OP_READ=@pass_buffer={0x16, 0x0, 0x0, @fd_index=0x4, 0x0, &(0x7f0000000140)=""/204, 0xcc}, 0x0) syz_io_uring_setup(0x2bd8, &(0x7f0000000080), &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000ffd000/0x2000)=nil, &(0x7f0000000100)=0x0, &(0x7f0000000000)=0x0) syz_io_uring_submit(r2, r3, &(0x7f0000000240)=@IORING_OP_READ=@pass_buffer={0x16, 0x0, 0x0, @fd_index=0x4, 0x0, &(0x7f0000000140)=""/204, 0xcc}, 0x0) readv(0xffffffffffffffff, &(0x7f0000003700)=[{&(0x7f0000000200)=""/216, 0xd8}, {&(0x7f00000003c0)=""/121, 0x79}, {&(0x7f0000000380)=""/51, 0x33}, {&(0x7f00000014c0)=""/160, 0xa0}, {&(0x7f0000001640)=""/256, 0x100}, {0x0}, {&(0x7f00000015c0)=""/51, 0x33}, {&(0x7f00000001c0)=""/57, 0x39}], 0x8) readv(0xffffffffffffffff, &(0x7f0000001600)=[{&(0x7f00000004c0)=""/4096, 0x1000}], 0x1) sendmsg$GTP_CMD_DELPDP(0xffffffffffffffff, &(0x7f0000000880)={&(0x7f00000007c0)={0x10, 0x0, 0x0, 0x20000}, 0xc, &(0x7f0000000840)={&(0x7f0000000800)=ANY=[@ANYBLOB='$\x00\x00\x00', @ANYRES16=0x0, @ANYBLOB="040029bd7000eadbdf250100000006000600010000000800090002000000"], 0x24}, 0x1, 0x0, 0x0, 0x8080}, 0x20008041) syz_io_uring_submit(r2, r1, &(0x7f0000000680)=@IORING_OP_OPENAT2={0x1c, 0x0, 0x0, 0xffffffffffffff9c, &(0x7f0000000600)={0x0, 0x0, 0x13}, &(0x7f0000000640)='./file0\x00', 0x18, 0x0, 0x23456}, 0x9) r4 = syz_io_uring_setup(0x5ed6, &(0x7f0000000280)={0x0, 0x40d7, 0x4, 0x3, 0x34f}, &(0x7f0000ffe000/0x2000)=nil, &(0x7f0000ffd000/0x1000)=nil, &(0x7f0000000040)=0x0, &(0x7f0000000300)=0x0) r7 = epoll_create1(0x80000) syz_io_uring_submit(0x0, r6, &(0x7f0000000380)=@IORING_OP_WRITE_FIXED={0x5, 0x3, 0x4216a156905924fc, @fd=r4, 0x10000, 0x93de, 0xd842, 0x5}, 0x0) openat$ptmx(0xffffffffffffff9c, &(0x7f00000000c0), 0x20840, 0x0) syz_io_uring_submit(r5, 0x0, &(0x7f00000004c0)=@IORING_OP_RECV=@pass_buffer={0x1b, 0x1, 0x0, 0xffffffffffffffff, 0x0, &(0x7f0000000440)="87b5bcda9f28ae430025e0c34597534ed5ae7dcd9d267107e3d27e13a17ec9f7cd228c4186c9b7de2a709e10ce73105728b5a000f7998ee176e5ed7f77b76503e4aca7613ebe8dca507dfcfb5040fc1f8eaebf2dded91772", 0x58, 0x10160}, 0x1000) r8 = syz_io_uring_setup(0x2bd8, &(0x7f0000001800)={0x0, 0x0, 0x2}, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000ffd000/0x2000)=nil, &(0x7f0000000100)=0x0, &(0x7f0000000000)=0x0) syz_io_uring_submit(r9, r10, &(0x7f0000000240)=@IORING_OP_READ=@pass_buffer={0x16, 0x0, 0x6000, @fd_index=0x4, 0x0, &(0x7f0000000500)=""/203, 0xcb}, 0x3f) syz_io_uring_setup(0x2bd8, &(0x7f0000000080), &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000ffd000/0x2000)=nil, &(0x7f0000000100)=0x0, &(0x7f0000000000)) syz_io_uring_submit(r11, r1, &(0x7f0000000240)=@IORING_OP_READ=@pass_buffer={0x16, 0x1, 0x3, @fd_index=0x5, 0x8, &(0x7f0000001740)=""/145, 0x91}, 0x0) syz_io_uring_submit(r11, r3, &(0x7f0000000700)=@IORING_OP_EPOLL_CTL=@mod={0x1d, 0x0, 0x0, r7, &(0x7f00000006c0)={0x90002012}, r8, 0x3, 0x0, 0x1}, 0x8000) io_uring_enter(r8, 0x5c33, 0x0, 0x0, 0x0, 0x0) 19:55:45 executing program 0: openat(0xffffffffffffff9c, 0x0, 0x0, 0x0) setsockopt$inet_MCAST_JOIN_GROUP(0xffffffffffffffff, 0x0, 0x16, 0x0, 0x0) r0 = socket$inet6_udplite(0xa, 0x2, 0x88) setsockopt$inet6_mreq(r0, 0x29, 0x0, 0x0, 0x0) syz_io_uring_setup(0x457f, 0x0, &(0x7f0000ffe000/0x1000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000200), &(0x7f0000000080)) ioctl$AUTOFS_DEV_IOCTL_READY(0xffffffffffffffff, 0xc0189376, &(0x7f0000000480)=ANY=[@ANYBLOB]) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x4c20, 0x0, 0x400}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r1 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$nl_generic(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000480)={&(0x7f00000004c0)=ANY=[@ANYBLOB="284000001d00210c00000000000000000011808098eea7b0c7dba09475f251c743092f0000000000"], 0x28}}, 0x0) syz_io_uring_setup(0x4d4f, &(0x7f00000002c0), &(0x7f0000ffe000/0x1000)=nil, &(0x7f0000ffc000/0x1000)=nil, 0x0, 0x0) [ 3045.808908] FAULT_INJECTION: forcing a failure. [ 3045.808908] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 3045.810635] CPU: 0 PID: 21438 Comm: syz-executor.2 Not tainted 5.10.207 #1 [ 3045.811616] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 3045.812812] Call Trace: [ 3045.813197] dump_stack+0x107/0x167 [ 3045.813725] should_fail.cold+0x5/0xa [ 3045.814281] _copy_from_user+0x2e/0x1b0 [ 3045.814859] iovec_from_user+0x141/0x400 [ 3045.815437] ? move_addr_to_kernel.part.0+0xc8/0x110 [ 3045.816183] __import_iovec+0x67/0x590 [ 3045.816433] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium [ 3045.816727] ? __ia32_sys_shutdown+0x80/0x80 [ 3045.816760] import_iovec+0x83/0xb0 [ 3045.816788] sendmsg_copy_msghdr+0x131/0x160 [ 3045.820381] ? do_recvmmsg+0x6d0/0x6d0 [ 3045.820946] ? perf_trace_lock+0x2bd/0x490 [ 3045.821561] ? __lockdep_reset_lock+0x180/0x180 [ 3045.822245] ___sys_sendmsg+0xc6/0x170 [ 3045.822807] ? sendmsg_copy_msghdr+0x160/0x160 [ 3045.823497] ? __fget_files+0x26d/0x4c0 [ 3045.824085] ? lock_downgrade+0x6d0/0x6d0 [ 3045.824689] ? perf_trace_run_bpf_submit+0xf5/0x190 [ 3045.825411] ? __fget_files+0x296/0x4c0 [ 3045.826007] ? __fget_light+0xea/0x290 [ 3045.826576] __sys_sendmmsg+0x195/0x470 [ 3045.827152] ? __ia32_sys_sendmsg+0xb0/0xb0 [ 3045.827801] ? lock_downgrade+0x6d0/0x6d0 [ 3045.828431] ? ksys_write+0x12d/0x260 [ 3045.828981] ? __mutex_unlock_slowpath+0xe1/0x600 [ 3045.829661] ? wait_for_completion_io+0x270/0x270 [ 3045.830338] ? rcu_read_lock_any_held+0x75/0xa0 [ 3045.830987] ? vfs_write+0x354/0xa70 [ 3045.831525] ? fput_many+0x2f/0x1a0 [ 3045.832102] ? ksys_write+0x1a9/0x260 [ 3045.832643] ? __ia32_sys_read+0xb0/0xb0 [ 3045.833229] __x64_sys_sendmmsg+0x99/0x100 [ 3045.833840] do_syscall_64+0x33/0x40 [ 3045.834365] entry_SYSCALL_64_after_hwframe+0x62/0xc7 [ 3045.835088] RIP: 0033:0x7fac065c2b19 [ 3045.835613] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 3045.838222] RSP: 002b:00007fac03b38188 EFLAGS: 00000246 ORIG_RAX: 0000000000000133 [ 3045.839301] RAX: ffffffffffffffda RBX: 00007fac066d5f60 RCX: 00007fac065c2b19 [ 3045.840313] RDX: 0000000000000001 RSI: 0000000020002040 RDI: 0000000000000003 [ 3045.841321] RBP: 00007fac03b381d0 R08: 0000000000000000 R09: 0000000000000000 [ 3045.842326] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 3045.843332] R13: 00007ffe4d4b793f R14: 00007fac03b38300 R15: 0000000000022000 [ 3045.876999] EXT4-fs (loop6): mounted filesystem without journal. Opts: ,errors=continue 19:55:45 executing program 0: timer_create(0x0, &(0x7f00000001c0)={0x0, 0x16, 0x1, @thr={&(0x7f0000000040)="254925372ff00b971c5f4701dad33f5b0f68b067974e6f6c3affa01e692e1e418d25144e3c30e4ba2065c4184a8d6f3f514a1860ea87d8541ff199b0293958ebdf65e2e19260dea4184935618fcb7b0eb5677195ceeb99eb6b0164397ad9c6de384a914f2c18e98e6b079a1e94882298aa2e1bd98e0c6fc999b066a533f3c2c4a9917a0070cefc39e8368b51b9d8ebb3e7e2c5b9834bfed8aab63b60085d1de87a87fe709a44", &(0x7f0000000100)="b8536df0198c19d7eb020c5c90db20e6c62b98d51315cd0ee5f116070ca8f064579d225d9fbb08edf70cc9134de7d1aeab1666b8cc3c91db894cd5a82b6659df1516f1107c75e3d3a92a65ae48a1a5b21df1b7da7ee17ed91ac411c87e3f93a9f1371e83d34a1031decb4e33d09cbbfdc874eb5f2fa44cb8dfc0121bfdcc731cbd2ca2e36f13b91947ec614b2e4e2d877152"}}, &(0x7f0000000200)=0x0) timer_delete(r0) timer_create(0x5, &(0x7f0000001280)={0x0, 0x26, 0x2, @thr={&(0x7f0000000280)="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", &(0x7f0000000000)="ae6ea1f85d160bdb78163614a93d1fa483f9cbf8edd4cd3796933ffbba34c6b4b42737ea733d7d0270d1a2"}}, &(0x7f00000012c0)) syz_emit_ethernet(0x3a, &(0x7f0000000240)=ANY=[@ANYBLOB="aaaaaaaaaaaaaaaaaaaaaabb08004600002c0000000000329078ac1414000a0101008303000000000000", @ANYRES32=0x41424344, @ANYRES32=0x41424344, @ANYBLOB="00006a6dabe9420c45f4"], 0x0) [ 3045.903673] FAULT_INJECTION: forcing a failure. [ 3045.903673] name failslab, interval 1, probability 0, space 0, times 0 [ 3045.905285] CPU: 0 PID: 21440 Comm: syz-executor.6 Not tainted 5.10.207 #1 [ 3045.906250] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 3045.907396] Call Trace: [ 3045.907792] dump_stack+0x107/0x167 [ 3045.908310] should_fail.cold+0x5/0xa [ 3045.908854] ? ext4_mb_new_blocks+0x209f/0x45b0 [ 3045.909508] should_failslab+0x5/0x20 [ 3045.910053] kmem_cache_alloc+0x5b/0x310 [ 3045.910637] ext4_mb_new_blocks+0x209f/0x45b0 [ 3045.911294] ? mark_lock+0xf5/0x2df0 [ 3045.911857] ? mark_lock+0xf5/0x2df0 [ 3045.912383] ? ext4_discard_preallocations+0xd80/0xd80 [ 3045.913123] ? lock_chain_count+0x20/0x20 [ 3045.913714] ? lock_chain_count+0x20/0x20 [ 3045.914315] ext4_new_meta_blocks+0x1e1/0x320 [ 3045.914946] ? ext4_should_retry_alloc+0x240/0x240 [ 3045.915640] ? ext4_get_branch+0x541/0x6d0 [ 3045.916253] ext4_ind_map_blocks+0x95d/0x2150 [ 3045.916896] ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0 [ 3045.917635] ? ext4_free_branches+0x680/0x680 [ 3045.918282] ? lock_release+0x680/0x680 [ 3045.918853] ? find_held_lock+0x2c/0x110 [ 3045.919452] ? down_write+0xe0/0x160 [ 3045.920001] ? down_write_killable+0x180/0x180 [ 3045.920655] ext4_map_blocks+0x9ed/0x1940 [ 3045.921249] ? __kernel_text_address+0x9/0x40 [ 3045.921875] ? ext4_issue_zeroout+0x1c0/0x1c0 [ 3045.922514] ? ext4_journal_check_start+0x1b3/0x2a0 [ 3045.923213] ? __ext4_journal_start_sb+0x1db/0x390 [ 3045.923915] ? ext4_meta_trans_blocks+0x25c/0x310 [ 3045.924609] ext4_iomap_begin+0x3ad/0x700 [ 3045.925207] ? ext4_iomap_begin_report+0x5a0/0x5a0 [ 3045.925890] ? kasan_save_stack+0x1b/0x40 [ 3045.926466] ? ext4_file_write_iter+0xb26/0x18d0 [ 3045.927114] ? truncate_exceptional_pvec_entries.part.0+0x510/0x510 [ 3045.928011] ? splice_direct_to_actor+0x387/0x980 [ 3045.928665] ? do_splice_direct+0x1c4/0x290 [ 3045.929249] ? vfs_copy_file_range+0x4f8/0x1290 [ 3045.929883] ? __do_sys_copy_file_range+0x193/0x420 [ 3045.930566] ? do_syscall_64+0x33/0x40 [ 3045.931098] ? entry_SYSCALL_64_after_hwframe+0x62/0xc7 [ 3045.931843] iomap_apply+0x164/0x810 [ 3045.932354] ? iomap_dio_rw+0x90/0x90 [ 3045.932880] ? trace_event_raw_event_iomap_apply+0x430/0x430 [ 3045.933676] ? mark_held_locks+0x9e/0xe0 [ 3045.934246] ? filemap_check_errors+0xa5/0x150 [ 3045.934876] __iomap_dio_rw+0x6cd/0x1110 [ 3045.935428] ? iomap_dio_rw+0x90/0x90 [ 3045.935974] ? iomap_dio_bio_actor+0xef0/0xef0 [ 3045.936616] ? generic_update_time+0x21c/0x370 [ 3045.937243] ? ext4_orphan_add+0x253/0x9e0 [ 3045.937820] ? inode_dio_wait+0xbf/0x270 [ 3045.938378] ? ext4_empty_dir+0xae0/0xae0 [ 3045.938943] ? ext4_journal_check_start+0x1b3/0x2a0 [ 3045.939620] iomap_dio_rw+0x31/0x90 [ 3045.940133] ext4_file_write_iter+0xb26/0x18d0 [ 3045.940773] ? ext4_file_read_iter+0x4c0/0x4c0 [ 3045.941394] ? kasan_save_stack+0x32/0x40 [ 3045.941951] ? kasan_save_stack+0x1b/0x40 [ 3045.942513] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 3045.943198] ? iter_file_splice_write+0x16d/0xc30 [ 3045.943858] ? direct_splice_actor+0x10f/0x170 [ 3045.944462] ? splice_direct_to_actor+0x387/0x980 [ 3045.945103] ? do_splice_direct+0x1c4/0x290 [ 3045.945688] ? vfs_copy_file_range+0x4f8/0x1290 [ 3045.946312] ? __do_sys_copy_file_range+0x193/0x420 [ 3045.946989] do_iter_readv_writev+0x476/0x750 [ 3045.947619] ? new_sync_write+0x660/0x660 [ 3045.948187] ? selinux_file_permission+0x92/0x520 [ 3045.948858] do_iter_write+0x191/0x670 [ 3045.949381] ? trace_hardirqs_on+0x5b/0x180 [ 3045.949974] vfs_iter_write+0x70/0xa0 [ 3045.950487] iter_file_splice_write+0x762/0xc30 [ 3045.951135] ? generic_splice_sendpage+0x140/0x140 [ 3045.951814] ? avc_policy_seqno+0x9/0x70 [ 3045.952363] ? selinux_file_permission+0x92/0x520 [ 3045.953013] ? lockdep_init_map_type+0x2c7/0x780 [ 3045.953649] ? generic_splice_sendpage+0x140/0x140 [ 3045.954308] direct_splice_actor+0x10f/0x170 [ 3045.954906] splice_direct_to_actor+0x387/0x980 [ 3045.955543] ? pipe_to_sendpage+0x380/0x380 [ 3045.956131] ? do_splice_to+0x160/0x160 [ 3045.956665] ? security_file_permission+0x24e/0x570 [ 3045.957343] do_splice_direct+0x1c4/0x290 [ 3045.957897] ? splice_direct_to_actor+0x980/0x980 [ 3045.958543] ? selinux_file_permission+0x92/0x520 [ 3045.959194] ? security_file_permission+0x24e/0x570 [ 3045.959889] vfs_copy_file_range+0x4f8/0x1290 [ 3045.960496] ? generic_file_rw_checks+0x240/0x240 [ 3045.961180] __do_sys_copy_file_range+0x193/0x420 [ 3045.961827] ? vfs_copy_file_range+0x1290/0x1290 [ 3045.962464] ? ksys_write+0x1a9/0x260 [ 3045.962974] ? __ia32_sys_read+0xb0/0xb0 [ 3045.963528] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 3045.964241] ? syscall_enter_from_user_mode+0x1d/0x50 [ 3045.964944] do_syscall_64+0x33/0x40 [ 3045.965448] entry_SYSCALL_64_after_hwframe+0x62/0xc7 [ 3045.966130] RIP: 0033:0x7fec371d4b19 [ 3045.966623] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 3045.969095] RSP: 002b:00007fec3474a188 EFLAGS: 00000246 ORIG_RAX: 0000000000000146 [ 3045.970114] RAX: ffffffffffffffda RBX: 00007fec372e7f60 RCX: 00007fec371d4b19 [ 3045.971084] RDX: 0000000000000006 RSI: 0000000000000000 RDI: 0000000000000007 [ 3045.972052] RBP: 00007fec3474a1d0 R08: 0000000000000c3a R09: 0000000000000000 [ 3045.973002] R10: 0000000020000280 R11: 0000000000000246 R12: 0000000000000002 [ 3045.973959] R13: 00007ffec551fc1f R14: 00007fec3474a300 R15: 0000000000022000 19:55:45 executing program 2: r0 = socket$inet_icmp_raw(0x2, 0x3, 0x1) r1 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a) ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000140)={'syz_tun\x00', 0x0}) perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) sendmmsg$inet(r0, &(0x7f0000002040)=[{{&(0x7f0000000380)={0x2, 0x0, @multicast1}, 0x10, &(0x7f0000001600)=[{&(0x7f00000003c0)="db9c", 0xffe7}], 0x1, &(0x7f0000001640)=ANY=[@ANYBLOB="14000000000000000000000007000000c4048f01000000001c000000000000000000000008000000", @ANYRES32=r2], 0x38}}], 0x1, 0x0) (fail_nth: 4) 19:55:45 executing program 7: perf_event_open(&(0x7f0000001d80)={0x2, 0x80, 0x94, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r0 = syz_open_dev$tty1(0xc, 0x4, 0x4) write(r0, &(0x7f0000000000)="b2e2d219195dafd271bfd257c899b3ed83f6fe0e51fc7d697edacc7ac445621456aaa83c2407b9a43d58ac834117d1c02f997c951850cb3107fd703901055dc7a7a6ad2a2e4e6789", 0x48) r1 = fsopen(&(0x7f0000001300)='sysfs\x00', 0x0) fsopen(&(0x7f00000000c0)='tmpfs\x00', 0x1) fsconfig$FSCONFIG_CMD_CREATE(r1, 0x6, 0x0, 0x0, 0x0) fsmount(r1, 0x1, 0x8) ioctl$RTC_ALM_READ(0xffffffffffffffff, 0x80247008, &(0x7f0000000080)) fsmount(r1, 0x0, 0x0) r2 = syz_open_procfs(0xffffffffffffffff, &(0x7f0000000040)='numa_maps\x00') readv(r2, &(0x7f0000003700)=[{&(0x7f0000000200)=""/216, 0xd8}, {&(0x7f00000003c0)=""/121, 0x79}, {&(0x7f0000000380)=""/51, 0x33}, {&(0x7f00000014c0)=""/160, 0xa0}, {&(0x7f0000001640)=""/256, 0x100}, {0x0}, {&(0x7f00000015c0)=""/51, 0x33}, {&(0x7f00000001c0)=""/57, 0x39}], 0x8) readv(r2, &(0x7f0000001600)=[{&(0x7f00000004c0)=""/4096, 0x1000}], 0x1) ioctl$RTC_PIE_OFF(r2, 0x7006) [ 3046.051456] FAULT_INJECTION: forcing a failure. [ 3046.051456] name failslab, interval 1, probability 0, space 0, times 0 [ 3046.052991] CPU: 0 PID: 21600 Comm: syz-executor.2 Not tainted 5.10.207 #1 [ 3046.053868] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 3046.054933] Call Trace: [ 3046.055283] dump_stack+0x107/0x167 [ 3046.055763] should_fail.cold+0x5/0xa [ 3046.056271] ? sock_kmalloc+0xae/0x100 [ 3046.056777] should_failslab+0x5/0x20 [ 3046.057268] __kmalloc+0x72/0x390 [ 3046.057730] sock_kmalloc+0xae/0x100 [ 3046.058218] ____sys_sendmsg+0x665/0x870 [ 3046.058765] ? sock_write_iter+0x3d0/0x3d0 [ 3046.059329] ? do_recvmmsg+0x6d0/0x6d0 [ 3046.059848] ? perf_trace_lock+0x2bd/0x490 [ 3046.060416] ? __lockdep_reset_lock+0x180/0x180 [ 3046.061053] ___sys_sendmsg+0xf3/0x170 [ 3046.061570] ? sendmsg_copy_msghdr+0x160/0x160 [ 3046.062191] ? lock_downgrade+0x6d0/0x6d0 [ 3046.062739] ? perf_trace_run_bpf_submit+0xf5/0x190 [ 3046.063414] ? __fget_files+0x296/0x4c0 [ 3046.063964] ? __fget_light+0xea/0x290 [ 3046.064490] __sys_sendmmsg+0x195/0x470 [ 3046.065027] ? __ia32_sys_sendmsg+0xb0/0xb0 [ 3046.065590] ? lock_downgrade+0x6d0/0x6d0 [ 3046.066165] ? __mutex_unlock_slowpath+0xe1/0x600 [ 3046.066814] ? wait_for_completion_io+0x270/0x270 [ 3046.067453] ? rcu_read_lock_any_held+0x75/0xa0 [ 3046.068060] ? vfs_write+0x354/0xa70 [ 3046.068555] ? fput_many+0x2f/0x1a0 [ 3046.069036] ? ksys_write+0x1a9/0x260 [ 3046.069546] ? __ia32_sys_read+0xb0/0xb0 [ 3046.070091] __x64_sys_sendmmsg+0x99/0x100 [ 3046.070654] do_syscall_64+0x33/0x40 [ 3046.071148] entry_SYSCALL_64_after_hwframe+0x62/0xc7 [ 3046.071823] RIP: 0033:0x7fac065c2b19 [ 3046.072328] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 3046.074764] RSP: 002b:00007fac03b38188 EFLAGS: 00000246 ORIG_RAX: 0000000000000133 [ 3046.075781] RAX: ffffffffffffffda RBX: 00007fac066d5f60 RCX: 00007fac065c2b19 [ 3046.076721] RDX: 0000000000000001 RSI: 0000000020002040 RDI: 0000000000000003 [ 3046.077669] RBP: 00007fac03b381d0 R08: 0000000000000000 R09: 0000000000000000 [ 3046.078618] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 3046.079567] R13: 00007ffe4d4b793f R14: 00007fac03b38300 R15: 0000000000022000 19:55:46 executing program 6: syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000140)='./file0\x00', 0x40000, 0x4, &(0x7f0000000200)=[{&(0x7f0000010000)="20000000000100000c000000d40000000f000000010000000000000000000000002000000020000020000000d7f4655fd7f4655f0100ffff53ef010001000000d7f4655f000000000000000001000000000000000b0000000002", 0x5a, 0x400}, {&(0x7f0000010400)="030000000400000005000000d4000f", 0xf, 0x800}, {&(0x7f0000000500)="ffffffffff070000000000000000000000000000000000000000000000000080ffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffff", 0x402, 0xc00}, {&(0x7f0000010e00)="ed41000000040000d7f4655fd7f4655fd7f4655f000000000000040002", 0x1d, 0x1600}], 0x0, &(0x7f00000003c0)=ANY=[]) chdir(&(0x7f0000000040)='./file0\x00') openat(0xffffffffffffff9c, &(0x7f0000000080)='./file1\x00', 0x105142, 0x0) r0 = openat(0xffffffffffffff9c, &(0x7f0000000200)='./file1\x00', 0x2, 0x0) write(r0, &(0x7f0000000240)="01", 0x1) r1 = openat(0xffffffffffffff9c, &(0x7f00000000c0)='./file2\x00', 0x105142, 0x0) r2 = openat(0xffffffffffffff9c, &(0x7f0000001340)='./file1\x00', 0x0, 0x0) copy_file_range(r2, 0x0, r1, &(0x7f0000000280)=0x10000, 0xc3a, 0x0) (fail_nth: 13) openat$sr(0xffffffffffffff9c, 0x0, 0x0, 0x0) 19:55:46 executing program 1: r0 = syz_open_dev$usbmon(&(0x7f0000000200), 0x0, 0x0) ppoll(&(0x7f00000002c0)=[{r0}], 0x1, &(0x7f0000000300)={0x0, 0x3938700}, 0x0, 0x0) syz_open_dev$usbmon(&(0x7f0000000000), 0xffff, 0x4000) 19:55:46 executing program 0: perf_event_open(&(0x7f0000001d80)={0x2, 0x80, 0x70, 0x0, 0x0, 0xff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x639}, 0x1000, 0x0, 0x0, 0x6}, 0x0, 0x0, 0xffffffffffffffff, 0x0) openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x42, 0x0) pipe(&(0x7f0000000000)={0xffffffffffffffff, 0xffffffffffffffff}) mount$9p_fd(0x0, &(0x7f0000000040)='./file1\x00', &(0x7f00000000c0), 0x0, &(0x7f0000000280)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}, 0x2c, {[{@access_uid={'access', 0x3d, 0xffffffffffffffff}}]}}) 19:55:46 executing program 3: r0 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x42, 0x0) r1 = openat(0xffffffffffffff9c, &(0x7f0000000280)='./file0\x00', 0x0, 0x0) socket$nl_generic(0x10, 0x3, 0x10) ioctl$TIOCSETD(0xffffffffffffffff, 0x5423, 0x0) syz_mount_image$nfs4(0x0, &(0x7f0000005040)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0) perf_event_open(&(0x7f0000000180)={0x1, 0x80, 0x0, 0x2, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f0000000040), 0x8}, 0x0, 0x0, 0x0, 0x9}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) rmdir(&(0x7f0000000000)='./file0\x00') r2 = add_key$keyring(&(0x7f0000000100), &(0x7f0000000140)={'syz', 0x3}, 0x0, 0x0, 0xfffffffffffffffc) r3 = openat$zero(0xffffffffffffff9c, &(0x7f0000000080), 0x20000, 0x0) r4 = add_key$keyring(&(0x7f0000000040), &(0x7f0000000640)={'syz', 0x3}, 0x0, 0x0, 0x0) r5 = add_key$user(&(0x7f0000000a40), &(0x7f0000000a80)={'syz', 0x1}, &(0x7f0000000300)="a3", 0x1, 0xfffffffffffffffe) keyctl$KEYCTL_RESTRICT_KEYRING(0x1d, r4, &(0x7f0000000240)='asymmetric\x00', &(0x7f0000000000)=@keyring={'key_or_keyring:', r5, 0xa}) request_key(&(0x7f0000000240)='.request_key_auth\x00', &(0x7f0000000280)={'syz', 0x3}, &(0x7f0000000380)='dns_resolver\x00', r4) keyctl$KEYCTL_MOVE(0x1e, r2, r4, r2, 0x1) ioctl$KDSKBENT(r3, 0x4b47, &(0x7f00000000c0)={0x8, 0x8f, 0x400}) r6 = add_key$fscrypt_v1(&(0x7f0000000180), &(0x7f00000001c0)={'fscrypt:', @desc1}, &(0x7f0000000200)={0x0, "0070404651fd796ab47483a4c1be26133a48d389342f53cbb88cc2f96518c9ca6fb689bb56a2824f0f6fc853011e3c529931bbfdcfad732e9f6c146e67b6220c"}, 0x48, r2) openat(0xffffffffffffffff, &(0x7f0000004440)='./file0\x00', 0x101000, 0x10) keyctl$chown(0x4, r6, 0x0, 0x0) ppoll(&(0x7f0000000240)=[{r1, 0x2}, {r0, 0x8109}, {0xffffffffffffffff, 0x4}, {r0, 0x90}], 0x4, &(0x7f00000002c0), &(0x7f0000000440)={[0xb9]}, 0x8) ioctl$EXT4_IOC_GROUP_ADD(r0, 0x40286608, &(0x7f0000000040)={0x10}) [ 3046.133382] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium [ 3046.152206] EXT4-fs warning (device sda): verify_group_input:170: Bad blocks count 0 [ 3046.237013] 9p: Unknown uid 18446744073709551615 [ 3046.286523] EXT4-fs (loop6): mounted filesystem without journal. Opts: ,errors=continue [ 3046.305459] FAULT_INJECTION: forcing a failure. [ 3046.305459] name failslab, interval 1, probability 0, space 0, times 0 [ 3046.307849] CPU: 1 PID: 21669 Comm: syz-executor.6 Not tainted 5.10.207 #1 [ 3046.309252] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 3046.310983] Call Trace: [ 3046.311538] dump_stack+0x107/0x167 [ 3046.312307] should_fail.cold+0x5/0xa [ 3046.313099] ? create_object.isra.0+0x3a/0xa20 [ 3046.314035] should_failslab+0x5/0x20 [ 3046.314825] kmem_cache_alloc+0x5b/0x310 [ 3046.315671] create_object.isra.0+0x3a/0xa20 [ 3046.316578] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 3046.317624] kmem_cache_alloc+0x159/0x310 [ 3046.318483] ext4_mb_new_blocks+0x209f/0x45b0 [ 3046.319424] ? mark_lock+0xf5/0x2df0 [ 3046.320238] ? mark_lock+0xf5/0x2df0 [ 3046.321017] ? ext4_discard_preallocations+0xd80/0xd80 [ 3046.322105] ? lock_chain_count+0x20/0x20 [ 3046.322961] ? lock_chain_count+0x20/0x20 [ 3046.323837] ext4_new_meta_blocks+0x1e1/0x320 [ 3046.324755] ? ext4_should_retry_alloc+0x240/0x240 [ 3046.325765] ? ext4_get_branch+0x541/0x6d0 [ 3046.326653] ext4_ind_map_blocks+0x95d/0x2150 [ 3046.327586] ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0 [ 3046.328691] ? ext4_free_branches+0x680/0x680 [ 3046.329627] ? lock_release+0x680/0x680 [ 3046.330455] ? find_held_lock+0x2c/0x110 [ 3046.331313] ? down_write+0xe0/0x160 [ 3046.332092] ? down_write_killable+0x180/0x180 [ 3046.333042] ext4_map_blocks+0x9ed/0x1940 [ 3046.333913] ? __kernel_text_address+0x9/0x40 [ 3046.334840] ? ext4_issue_zeroout+0x1c0/0x1c0 [ 3046.335802] ? ext4_journal_check_start+0x1b3/0x2a0 [ 3046.336842] ? __ext4_journal_start_sb+0x1db/0x390 [ 3046.337853] ? ext4_meta_trans_blocks+0x25c/0x310 [ 3046.338851] ext4_iomap_begin+0x3ad/0x700 [ 3046.339724] ? ext4_iomap_begin_report+0x5a0/0x5a0 [ 3046.340729] ? kasan_save_stack+0x1b/0x40 [ 3046.341567] ? ext4_file_write_iter+0xb26/0x18d0 [ 3046.342518] ? truncate_exceptional_pvec_entries.part.0+0x510/0x510 [ 3046.343808] ? splice_direct_to_actor+0x387/0x980 [ 3046.344766] ? do_splice_direct+0x1c4/0x290 [ 3046.345630] ? vfs_copy_file_range+0x4f8/0x1290 [ 3046.346564] ? __do_sys_copy_file_range+0x193/0x420 [ 3046.347561] ? do_syscall_64+0x33/0x40 [ 3046.348350] ? entry_SYSCALL_64_after_hwframe+0x62/0xc7 [ 3046.349427] iomap_apply+0x164/0x810 [ 3046.350191] ? iomap_dio_rw+0x90/0x90 [ 3046.350976] ? trace_event_raw_event_iomap_apply+0x430/0x430 [ 3046.352166] ? mark_held_locks+0x9e/0xe0 [ 3046.353013] ? filemap_check_errors+0xa5/0x150 [ 3046.353951] __iomap_dio_rw+0x6cd/0x1110 [ 3046.354779] ? iomap_dio_rw+0x90/0x90 [ 3046.355585] ? iomap_dio_bio_actor+0xef0/0xef0 [ 3046.356526] ? generic_update_time+0x21c/0x370 [ 3046.357465] ? ext4_orphan_add+0x253/0x9e0 [ 3046.358320] ? inode_dio_wait+0xbf/0x270 [ 3046.359155] ? ext4_empty_dir+0xae0/0xae0 [ 3046.360013] ? ext4_journal_check_start+0x1b3/0x2a0 [ 3046.361044] iomap_dio_rw+0x31/0x90 [ 3046.361778] ext4_file_write_iter+0xb26/0x18d0 [ 3046.362721] ? ext4_file_read_iter+0x4c0/0x4c0 [ 3046.363633] ? kasan_save_stack+0x32/0x40 [ 3046.364484] ? kasan_save_stack+0x1b/0x40 [ 3046.365317] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 3046.366331] ? iter_file_splice_write+0x16d/0xc30 [ 3046.367292] ? direct_splice_actor+0x10f/0x170 [ 3046.368215] ? splice_direct_to_actor+0x387/0x980 [ 3046.369175] ? do_splice_direct+0x1c4/0x290 [ 3046.370043] ? vfs_copy_file_range+0x4f8/0x1290 [ 3046.370988] ? __do_sys_copy_file_range+0x193/0x420 [ 3046.372025] do_iter_readv_writev+0x476/0x750 [ 3046.372951] ? new_sync_write+0x660/0x660 [ 3046.373782] ? selinux_file_permission+0x92/0x520 [ 3046.374801] do_iter_write+0x191/0x670 [ 3046.375592] ? trace_hardirqs_on+0x5b/0x180 [ 3046.376498] vfs_iter_write+0x70/0xa0 [ 3046.377271] iter_file_splice_write+0x762/0xc30 [ 3046.378255] ? generic_splice_sendpage+0x140/0x140 [ 3046.379250] ? avc_policy_seqno+0x9/0x70 [ 3046.380095] ? selinux_file_permission+0x92/0x520 [ 3046.381076] ? lockdep_init_map_type+0x2c7/0x780 [ 3046.382052] ? generic_splice_sendpage+0x140/0x140 [ 3046.383050] direct_splice_actor+0x10f/0x170 [ 3046.383951] splice_direct_to_actor+0x387/0x980 [ 3046.384909] ? pipe_to_sendpage+0x380/0x380 [ 3046.385808] ? do_splice_to+0x160/0x160 [ 3046.386619] ? security_file_permission+0x24e/0x570 [ 3046.387638] do_splice_direct+0x1c4/0x290 [ 3046.388489] ? splice_direct_to_actor+0x980/0x980 [ 3046.389454] ? selinux_file_permission+0x92/0x520 [ 3046.390446] ? security_file_permission+0x24e/0x570 [ 3046.391480] vfs_copy_file_range+0x4f8/0x1290 [ 3046.392425] ? generic_file_rw_checks+0x240/0x240 [ 3046.393453] __do_sys_copy_file_range+0x193/0x420 [ 3046.394456] ? vfs_copy_file_range+0x1290/0x1290 [ 3046.395407] ? ksys_write+0x1a9/0x260 [ 3046.396192] ? __ia32_sys_read+0xb0/0xb0 [ 3046.397022] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 3046.398086] ? syscall_enter_from_user_mode+0x1d/0x50 [ 3046.399161] do_syscall_64+0x33/0x40 [ 3046.399937] entry_SYSCALL_64_after_hwframe+0x62/0xc7 [ 3046.400980] RIP: 0033:0x7fec371d4b19 [ 3046.401741] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 3046.405489] RSP: 002b:00007fec3474a188 EFLAGS: 00000246 ORIG_RAX: 0000000000000146 [ 3046.407053] RAX: ffffffffffffffda RBX: 00007fec372e7f60 RCX: 00007fec371d4b19 [ 3046.408511] RDX: 0000000000000006 RSI: 0000000000000000 RDI: 0000000000000007 [ 3046.409963] RBP: 00007fec3474a1d0 R08: 0000000000000c3a R09: 0000000000000000 [ 3046.411399] R10: 0000000020000280 R11: 0000000000000246 R12: 0000000000000002 [ 3046.412854] R13: 00007ffec551fc1f R14: 00007fec3474a300 R15: 0000000000022000 19:56:00 executing program 6: syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000140)='./file0\x00', 0x40000, 0x4, &(0x7f0000000200)=[{&(0x7f0000010000)="20000000000100000c000000d40000000f000000010000000000000000000000002000000020000020000000d7f4655fd7f4655f0100ffff53ef010001000000d7f4655f000000000000000001000000000000000b0000000002", 0x5a, 0x400}, {&(0x7f0000010400)="030000000400000005000000d4000f", 0xf, 0x800}, {&(0x7f0000000500)="ffffffffff070000000000000000000000000000000000000000000000000080ffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffff", 0x402, 0xc00}, {&(0x7f0000010e00)="ed41000000040000d7f4655fd7f4655fd7f4655f000000000000040002", 0x1d, 0x1600}], 0x0, &(0x7f00000003c0)=ANY=[]) chdir(&(0x7f0000000040)='./file0\x00') openat(0xffffffffffffff9c, &(0x7f0000000080)='./file1\x00', 0x105142, 0x0) r0 = openat(0xffffffffffffff9c, &(0x7f0000000200)='./file1\x00', 0x2, 0x0) write(r0, &(0x7f0000000240)="01", 0x1) r1 = openat(0xffffffffffffff9c, &(0x7f00000000c0)='./file2\x00', 0x105142, 0x0) r2 = openat(0xffffffffffffff9c, &(0x7f0000001340)='./file1\x00', 0x0, 0x0) copy_file_range(r2, 0x0, r1, &(0x7f0000000280)=0x10000, 0xc3a, 0x0) (fail_nth: 14) openat$sr(0xffffffffffffff9c, 0x0, 0x0, 0x0) 19:56:00 executing program 7: perf_event_open(&(0x7f0000000000)={0x2, 0x80, 0x70, 0x0, 0xfc, 0x0, 0x0, 0x0, 0x0, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) syz_emit_ethernet(0x4a, &(0x7f0000000280)={@local, @broadcast, @void, {@ipv6={0x86dd, @tcp={0x0, 0x6, "afb6a5", 0x14, 0x6, 0x0, @private1, @local, {[], {{0x0, 0x0, 0x41424344, 0x41424344, 0x0, 0x0, 0x5}}}}}}}, 0x0) 19:56:00 executing program 5: msgctl$IPC_RMID(0x0, 0x0) msgctl$IPC_INFO(0x0, 0x3, 0x0) msgctl$IPC_INFO(0x0, 0x3, 0x0) getpgrp(0x0) recvmmsg$unix(0xffffffffffffffff, &(0x7f0000001b00)=[{{0x0, 0x0, 0x0, 0x0, &(0x7f00000000c0)=[@rights={{0x2c, 0x1, 0x1, [0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff]}}], 0x30}}], 0x1, 0x0, &(0x7f0000001c40)={0x0, 0x989680}) msgrcv(0x0, 0x0, 0x0, 0x0, 0x2800) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x100, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x1cf, 0x2}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r0 = syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0x7, &(0x7f0000000200)=[{&(0x7f0000000180)="200000000002000019000000500100000f0000000000000000000000040000000000020000201cab2d20f4f170457d839b6e899e61000020000050cc876b49d3c303000000000000f4655fdef4655f0100ffff53ef010001000000ddf4655f000000000000000001000000000000000b0000008000", 0x75, 0x400}, {&(0x7f0000010100)="000000000000000000000000e58ca12e13a240e2b1a22f8d07e8e55f010040", 0x1f, 0x4e0}, {&(0x7f0000010200)="010000000000050040", 0x9, 0x560}, {&(0x7f0000010300)="030000000400000005", 0x9, 0x800}, {0x0, 0x0, 0x8000}, {&(0x7f0000010d00)="ed41000000040000ddf4655fdef4655fdef4655f000000000000040020", 0x1d, 0xffffffff}, {&(0x7f0000012000)="504d4d00504d4dff", 0x8, 0x10000}], 0x0, &(0x7f0000000340)=ANY=[]) renameat2(r0, 0x0, 0xffffffffffffffff, 0x0, 0x0) r1 = dup3(0xffffffffffffffff, 0xffffffffffffffff, 0x0) linkat(r1, &(0x7f0000000100)='./file0\x00', 0xffffffffffffffff, &(0x7f0000000140)='./file0/file0\x00', 0x1000) ioctl$AUTOFS_DEV_IOCTL_EXPIRE(0xffffffffffffffff, 0xc018937c, &(0x7f0000000040)=ANY=[@ANYBLOB="0199000001000000180000009eb787941bb1941ae833c1c8843e1d3a2cb7b9a6054848ef0f2d5d4df0f6c28900deeabe00f6cf95fe6fc62b1fc8e85009feb1ee06324189a91a7c4fcdfc65ce2e98a8c8c4", @ANYRES32=r1, @ANYBLOB='\a\x00\x00\x00\x00\x00\x00\x00./file0\x00']) r3 = getpgid(0x0) clone3(&(0x7f0000000580)={0x80040300, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, &(0x7f0000000540)=[r3], 0x1}, 0x58) msgsnd(0xffffffffffffffff, &(0x7f0000000340)={0x1, "f2ce6c650b84332620537a1e6d02137636df60f0d79d21264b7844a8155641cae9a0ce772749697172ae1fc339e124389d405d48952a0894304250b167db47d6e7ca137ada739cd3b214b1abc6ea3f2fd383c4f0eeb304fdb56ee4d228a90893572533d0e807e680eb4b6c1b3456e2ed9cce091f633ad641df2fff02420fbfcd2bedb51ae530e7532e9f08611399be956b65886280988df317f041c6"}, 0xa4, 0x0) getpgid(r3) ioctl$AUTOFS_DEV_IOCTL_FAIL(0xffffffffffffffff, 0xc0189377, &(0x7f00000002c0)=ANY=[@ANYBLOB="62958be60100000018000000", @ANYRES32=0xffffffffffffffff, @ANYBLOB='?\x00\x00\x00\a\x00\x00\x00./file0\x00']) clone3(&(0x7f0000000580)={0x80040300, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, &(0x7f0000000540)=[0x0], 0x1}, 0x58) rt_tgsigqueueinfo(0x0, 0x0, 0x38, &(0x7f0000000400)={0x3c, 0x3, 0x3f}) sendfile(r2, r4, &(0x7f0000000300)=0x10001, 0x9) 19:56:00 executing program 4: syz_80211_inject_frame(&(0x7f00000000c0)=@device_a={0x8, 0x2, 0x11, 0x12}, &(0x7f0000000440)=ANY=[], 0x2f) 19:56:00 executing program 2: r0 = socket$inet_icmp_raw(0x2, 0x3, 0x1) r1 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a) ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000140)={'syz_tun\x00', 0x0}) perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) sendmmsg$inet(r0, &(0x7f0000002040)=[{{&(0x7f0000000380)={0x2, 0x0, @multicast1}, 0x10, &(0x7f0000001600)=[{&(0x7f00000003c0)="db9c", 0xffe7}], 0x1, &(0x7f0000001640)=ANY=[@ANYBLOB="14000000000000000000000007000000c4048f01000000001c000000000000000000000008000000", @ANYRES32=r2], 0x38}}], 0x1, 0x0) (fail_nth: 5) 19:56:00 executing program 1: syz_emit_ethernet(0xc56, &(0x7f0000000d00)={@multicast, @multicast, @void, {@ipv6={0x86dd, @icmpv6={0x0, 0x6, "966b77", 0xc20, 0x3a, 0xff, @initdev={0xfe, 0x88, '\x00', 0x0, 0x0}, @mcast2, {[], @ndisc_ra={0x86, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, [{0x0, 0x1f, "955d69800fd4d91c935e5da9c34e8b085691cea01578fbbe4c03b8315d548389953a6cca9e61b99fa217c3fad4fdffe14e47b6b5c3b9c9ccc4659e6174c054481087f3c469393f99d2a76be44cd19575b8c88c3bd9da4b69628e4634f5083c2537f64cfb816278757f66254b2634a69361b321b3fff322e7c047fe281ce234b980b10b365cf67d53ebedb4f7d64f31e184b586f7c32c20c556ec2209d4c8da0e3116e2030d05265ffacb3194c99007d3381997061346c070ad40419ff6d087300bfcf1b974e812621d92d0cf35af3f76b41d63e3788d0a2ec0cfd6b66f9ef4f3957fa143fa366ca02d5a4602394921184383a1038b6697021f17"}, {0x0, 0xf, "311c1c5f30690bec8e727b3c866a73eb26f3ae5e2774b32ed67dffea2d4b08a36dab1da3177e671c1151de6c95ac83c4b86abbaddce466e4fb0fce1c126765d56317b4cc2550c30862b02c3c4ca7b3cb67b07f522f86ecfe9e3448e94f529a10bc80392b35e76a1604ffdad8874b8e945857e90042d6f045fbb994"}, {0x0, 0x15, "683ff6cba5a042d30ed204fc61fd79299beddf84b5dff27ae963f4fd32cc3fd9fe4ae8887852dba81747700671f81053be5764d6a30d71d014466c298a52843e80716b442b76d0390c96eaad8cd8fcc99c754dce884acecb6877861412a3477306185a175be590a99e9eb3154d016a0e17a491714d170ba0152d52e67966353caf7fd955eeb224e4c3c742d41ee97eb09d7504c68d77206fe21e7a263625b49ed385e541f744b6"}, {0x0, 0x1c, "29e70acf91761cb9196e139e3fdfe1c00205ba9571433c766ab1fa285a39f9a91e8dcf6954dfb2845c66ba88ba43dbd6a14929d1318f2709a27f5dfcdd0b38da5af0a28b214ea330a5b719bd30372c0bd524cfc5228761fb76925cbfb369a02457de445e1d03b0947265a8716f46c450a90d001c5f5618c44eb199e6ceb0c692a78408663923c2d4e2b569ee4b3c7942972f07a0b9d9c64f198cd7f55f6ca0d01db4375f34705f661337183734b2cce24659add4d2d1434bdc35bb7f604ed546f328fcfafedc6b37203c7ccba8737cf05c3381f01ab19697ac11d6d1a9f6e2ed4d9e4fd3b6"}, {0x0, 0xc, "2562be125b4ef57aa156e9edd9f095b240b1542a66addad202b7fe724b26048591ab58997ed9be66ab128bac885947c859a0792903d945895b98fdaad47889c9dcf30176f12550aaebc88548bd70ebd936c440ae4ec1c73cd82f5903da3778fd5de60b57"}, {0x0, 0x113, "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"}, {0x1, 0x1, "357230f8d42f"}]}}}}}}, 0x0) 19:56:00 executing program 0: openat(0xffffffffffffff9c, 0x0, 0x0, 0x20) r0 = creat(&(0x7f0000000040)='./file0\x00', 0x0) write$binfmt_elf64(r0, &(0x7f0000000300)=ANY=[@ANYRESOCT, @ANYRES32, @ANYRESDEC], 0xfdef) stat(&(0x7f0000000100)='./file0\x00', &(0x7f0000000200)) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x40, 0x4, @perf_config_ext, 0x0, 0x0, 0x0, 0x7}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) syz_mount_image$iso9660(&(0x7f0000000140), &(0x7f0000000180)='./file0\x00', 0x9, 0x2, &(0x7f00000001c0)=[{&(0x7f0000000340)="944d5c9935c6f1e34418b9765c09994a55b738ff3f8737b16963385dece2d1e2b2d3fd4e077b001d677340f57eed5b9273761c19d67348b9db2515968da93a0daedc832879ee441539f6c0c431d4570ba66f0f1811bafada7ed1118311f4c57304c846d98ac465d781ba1ba5ac382eebddafccb10c7528d9d319386bb05556bba71ae0283292a47d22a8df59dccaeced5c83ca890ec34709a36c0e966a27ca6a64e6a6e223d44497ca11311469bc33fbcbd5a3cf43bb5600de59989155a0cb", 0xbf, 0x1}, {&(0x7f0000000440)="ff77637c112fc9fbb93d333fcd81253063a2f9b64ef0309b39761f4793e6065e7a3ffbef9a78add120a4c2e0fc24239bebf12cd31feba8ebf8ce4ccc3c3f177acf642fa6c4d1a2aa63c5b8247191d648bd2cb167ca4c29e8b53be009f08b48529ff2d65cb4e0182eeccacd3e557db3911f37d2bd7522cbcad6f25b8f7e724002afea40bf2f1ef2b3cf3e120eae2e5c756e095b174af45b06aee0630c490b96bc8d367f8877432b1d294c0323280a0d1734a5e8b52ed3b09064071c", 0xbb, 0xc0}], 0x0, &(0x7f0000000500)={[{@sbsector={'sbsector', 0x3d, 0x1}}, {@unhide}, {@overriderock}, {@check_relaxed}], [{@obj_role={'obj_role', 0x3d, '\x00'}}, {@smackfsfloor={'smackfsfloor', 0x3d, '.}@%'}}, {@obj_type={'obj_type', 0x3d, '\x00'}}, {@mask={'mask', 0x3d, '^MAY_READ'}}, {@obj_user={'obj_user', 0x3d, '\x00'}}]}) fallocate(r0, 0x3, 0x3, 0x8000008000) syz_io_uring_setup(0x3a75, &(0x7f0000000080)={0x0, 0x12a8, 0x8, 0x1}, &(0x7f0000ffb000/0x3000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000040), &(0x7f0000000100)=0x0) syz_io_uring_submit(0x0, r1, &(0x7f00000002c0)=@IORING_OP_READ=@pass_buffer={0x16, 0x4, 0x0, @fd, 0x0, 0x0}, 0x0) r2 = creat(&(0x7f0000000000)='./file0\x00', 0x0) fallocate(r2, 0x0, 0x0, 0x8800000) syz_io_uring_submit(0x0, 0x0, &(0x7f0000000400)=@IORING_OP_CLOSE={0x13, 0x0, 0x0, r2}, 0x4000) 19:56:00 executing program 3: r0 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x42, 0x0) r1 = openat(0xffffffffffffff9c, &(0x7f0000000280)='./file0\x00', 0x0, 0x0) socket$nl_generic(0x10, 0x3, 0x10) ioctl$TIOCSETD(0xffffffffffffffff, 0x5423, 0x0) syz_mount_image$nfs4(0x0, &(0x7f0000005040)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0) perf_event_open(&(0x7f0000000180)={0x1, 0x80, 0x0, 0x2, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f0000000040), 0x8}, 0x0, 0x0, 0x0, 0x9}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) rmdir(&(0x7f0000000000)='./file0\x00') r2 = add_key$keyring(&(0x7f0000000100), &(0x7f0000000140)={'syz', 0x3}, 0x0, 0x0, 0xfffffffffffffffc) r3 = openat$zero(0xffffffffffffff9c, &(0x7f0000000080), 0x20000, 0x0) r4 = add_key$keyring(&(0x7f0000000040), &(0x7f0000000640)={'syz', 0x3}, 0x0, 0x0, 0x0) r5 = add_key$user(&(0x7f0000000a40), &(0x7f0000000a80)={'syz', 0x1}, &(0x7f0000000300)="a3", 0x1, 0xfffffffffffffffe) keyctl$KEYCTL_RESTRICT_KEYRING(0x1d, r4, &(0x7f0000000240)='asymmetric\x00', &(0x7f0000000000)=@keyring={'key_or_keyring:', r5, 0xa}) request_key(&(0x7f0000000240)='.request_key_auth\x00', &(0x7f0000000280)={'syz', 0x3}, &(0x7f0000000380)='dns_resolver\x00', r4) keyctl$KEYCTL_MOVE(0x1e, r2, r4, r2, 0x1) ioctl$KDSKBENT(r3, 0x4b47, &(0x7f00000000c0)={0x8, 0x8f, 0x400}) r6 = add_key$fscrypt_v1(&(0x7f0000000180), &(0x7f00000001c0)={'fscrypt:', @desc1}, &(0x7f0000000200)={0x0, "0070404651fd796ab47483a4c1be26133a48d389342f53cbb88cc2f96518c9ca6fb689bb56a2824f0f6fc853011e3c529931bbfdcfad732e9f6c146e67b6220c"}, 0x48, r2) openat(0xffffffffffffffff, &(0x7f0000004440)='./file0\x00', 0x101000, 0x10) keyctl$chown(0x4, r6, 0x0, 0x0) ppoll(&(0x7f0000000240)=[{r1, 0x2}, {r0, 0x8109}, {0xffffffffffffffff, 0x4}, {r0, 0x90}], 0x4, &(0x7f00000002c0), &(0x7f0000000440)={[0xb9]}, 0x8) ioctl$EXT4_IOC_GROUP_ADD(r0, 0x40286608, &(0x7f0000000040)={0x10}) [ 3061.033954] FAULT_INJECTION: forcing a failure. [ 3061.033954] name failslab, interval 1, probability 0, space 0, times 0 [ 3061.035545] CPU: 1 PID: 21695 Comm: syz-executor.2 Not tainted 5.10.207 #1 [ 3061.036454] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 3061.037570] Call Trace: [ 3061.037922] dump_stack+0x107/0x167 [ 3061.038418] should_fail.cold+0x5/0xa [ 3061.038922] ? create_object.isra.0+0x3a/0xa20 [ 3061.039546] should_failslab+0x5/0x20 [ 3061.040052] kmem_cache_alloc+0x5b/0x310 [ 3061.040609] create_object.isra.0+0x3a/0xa20 [ 3061.041191] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 3061.041872] __kmalloc+0x16e/0x390 [ 3061.042346] sock_kmalloc+0xae/0x100 [ 3061.042843] ____sys_sendmsg+0x665/0x870 [ 3061.043383] ? sock_write_iter+0x3d0/0x3d0 [ 3061.043970] ? do_recvmmsg+0x6d0/0x6d0 [ 3061.044488] ? perf_trace_lock+0xac/0x490 [ 3061.045054] ? __lockdep_reset_lock+0x180/0x180 [ 3061.045662] ? perf_trace_lock+0xac/0x490 [ 3061.046225] ___sys_sendmsg+0xf3/0x170 [ 3061.046756] ? sendmsg_copy_msghdr+0x160/0x160 [ 3061.047370] ? lock_downgrade+0x6d0/0x6d0 [ 3061.047936] ? lock_downgrade+0x6d0/0x6d0 [ 3061.048497] ? __fget_files+0x296/0x4c0 [ 3061.048877] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium [ 3061.049035] ? __fget_light+0xea/0x290 [ 3061.051498] __sys_sendmmsg+0x195/0x470 [ 3061.052048] ? __ia32_sys_sendmsg+0xb0/0xb0 [ 3061.052627] ? lock_downgrade+0x6d0/0x6d0 [ 3061.053221] ? __mutex_unlock_slowpath+0xe1/0x600 [ 3061.053886] ? wait_for_completion_io+0x270/0x270 [ 3061.054567] ? rcu_read_lock_any_held+0x75/0xa0 [ 3061.055200] ? vfs_write+0x354/0xa70 [ 3061.055714] ? fput_many+0x2f/0x1a0 [ 3061.056227] ? ksys_write+0x1a9/0x260 [ 3061.056744] ? __ia32_sys_read+0xb0/0xb0 [ 3061.057299] __x64_sys_sendmmsg+0x99/0x100 [ 3061.057870] do_syscall_64+0x33/0x40 [ 3061.058361] entry_SYSCALL_64_after_hwframe+0x62/0xc7 [ 3061.059046] RIP: 0033:0x7fac065c2b19 [ 3061.059560] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 3061.062058] RSP: 002b:00007fac03b38188 EFLAGS: 00000246 ORIG_RAX: 0000000000000133 [ 3061.063068] RAX: ffffffffffffffda RBX: 00007fac066d5f60 RCX: 00007fac065c2b19 [ 3061.064028] RDX: 0000000000000001 RSI: 0000000020002040 RDI: 0000000000000003 [ 3061.064995] RBP: 00007fac03b381d0 R08: 0000000000000000 R09: 0000000000000000 [ 3061.065924] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 3061.066883] R13: 00007ffe4d4b793f R14: 00007fac03b38300 R15: 0000000000022000 [ 3061.099371] EXT4-fs (loop6): mounted filesystem without journal. Opts: ,errors=continue [ 3061.101628] EXT4-fs warning (device sda): verify_group_input:170: Bad blocks count 0 [ 3061.129768] FAULT_INJECTION: forcing a failure. [ 3061.129768] name failslab, interval 1, probability 0, space 0, times 0 [ 3061.131193] CPU: 1 PID: 21696 Comm: syz-executor.6 Not tainted 5.10.207 #1 [ 3061.132074] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 3061.133104] Call Trace: [ 3061.133447] dump_stack+0x107/0x167 [ 3061.133907] should_fail.cold+0x5/0xa [ 3061.134384] ? ext4_mb_new_blocks+0x64d/0x45b0 [ 3061.134945] should_failslab+0x5/0x20 [ 3061.135417] kmem_cache_alloc+0x5b/0x310 [ 3061.135934] ext4_mb_new_blocks+0x64d/0x45b0 [ 3061.136493] ? ext4_new_meta_blocks+0x16e/0x320 [ 3061.137064] ? ext4_should_retry_alloc+0x240/0x240 [ 3061.137665] ? ext4_discard_preallocations+0xd80/0xd80 [ 3061.138307] ? ext4_get_branch+0x541/0x6d0 [ 3061.138832] ext4_ind_map_blocks+0x17de/0x2150 [ 3061.139408] ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0 [ 3061.140085] ? ext4_free_branches+0x680/0x680 [ 3061.140674] ? lock_release+0x680/0x680 [ 3061.141202] ? down_write+0xe0/0x160 [ 3061.141675] ? down_write_killable+0x180/0x180 [ 3061.142270] ext4_map_blocks+0x9ed/0x1940 [ 3061.142803] ? __kernel_text_address+0x9/0x40 [ 3061.143385] ? ext4_issue_zeroout+0x1c0/0x1c0 [ 3061.143976] ? ext4_journal_check_start+0x1b3/0x2a0 [ 3061.144620] ? __ext4_journal_start_sb+0x1db/0x390 [ 3061.145245] ? ext4_meta_trans_blocks+0x25c/0x310 [ 3061.145857] ext4_iomap_begin+0x3ad/0x700 [ 3061.146394] ? ext4_iomap_begin_report+0x5a0/0x5a0 [ 3061.147015] ? kasan_save_stack+0x1b/0x40 [ 3061.147542] ? ext4_file_write_iter+0xb26/0x18d0 [ 3061.148161] ? truncate_exceptional_pvec_entries.part.0+0x510/0x510 [ 3061.148966] ? splice_direct_to_actor+0x387/0x980 [ 3061.149574] ? do_splice_direct+0x1c4/0x290 [ 3061.150127] ? vfs_copy_file_range+0x4f8/0x1290 [ 3061.150734] ? __do_sys_copy_file_range+0x193/0x420 [ 3061.151366] ? do_syscall_64+0x33/0x40 [ 3061.151868] ? entry_SYSCALL_64_after_hwframe+0x62/0xc7 [ 3061.152580] iomap_apply+0x164/0x810 [ 3061.153063] ? iomap_dio_rw+0x90/0x90 [ 3061.153549] ? trace_event_raw_event_iomap_apply+0x430/0x430 [ 3061.154282] ? mark_held_locks+0x9e/0xe0 [ 3061.154805] ? filemap_check_errors+0xa5/0x150 [ 3061.155402] __iomap_dio_rw+0x6cd/0x1110 [ 3061.155932] ? iomap_dio_rw+0x90/0x90 [ 3061.156438] ? iomap_dio_bio_actor+0xef0/0xef0 [ 3061.157015] ? ext4_orphan_add+0x253/0x9e0 [ 3061.157536] ? inode_dio_wait+0xbf/0x270 [ 3061.158047] ? ext4_empty_dir+0xae0/0xae0 [ 3061.158582] ? ext4_journal_check_start+0x1b3/0x2a0 [ 3061.159229] iomap_dio_rw+0x31/0x90 [ 3061.159712] ext4_file_write_iter+0xb26/0x18d0 [ 3061.160321] ? ext4_file_read_iter+0x4c0/0x4c0 [ 3061.160892] ? kasan_save_stack+0x32/0x40 [ 3061.161402] ? kasan_save_stack+0x1b/0x40 [ 3061.161903] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 3061.162533] ? iter_file_splice_write+0x16d/0xc30 [ 3061.163127] ? direct_splice_actor+0x10f/0x170 [ 3061.163679] ? splice_direct_to_actor+0x387/0x980 [ 3061.164290] ? do_splice_direct+0x1c4/0x290 [ 3061.164829] ? vfs_copy_file_range+0x4f8/0x1290 [ 3061.165411] ? __do_sys_copy_file_range+0x193/0x420 [ 3061.166047] do_iter_readv_writev+0x476/0x750 [ 3061.166616] ? new_sync_write+0x660/0x660 [ 3061.167143] ? selinux_file_permission+0x92/0x520 [ 3061.167776] do_iter_write+0x191/0x670 [ 3061.168297] ? trace_hardirqs_on+0x5b/0x180 [ 3061.168849] vfs_iter_write+0x70/0xa0 [ 3061.169341] iter_file_splice_write+0x762/0xc30 [ 3061.169946] ? generic_splice_sendpage+0x140/0x140 [ 3061.170579] ? avc_policy_seqno+0x9/0x70 [ 3061.171111] ? selinux_file_permission+0x92/0x520 [ 3061.171720] ? lockdep_init_map_type+0x2c7/0x780 [ 3061.172328] ? generic_splice_sendpage+0x140/0x140 [ 3061.172961] direct_splice_actor+0x10f/0x170 [ 3061.173529] splice_direct_to_actor+0x387/0x980 [ 3061.174120] ? pipe_to_sendpage+0x380/0x380 [ 3061.174675] ? do_splice_to+0x160/0x160 [ 3061.175177] ? security_file_permission+0x24e/0x570 [ 3061.175820] do_splice_direct+0x1c4/0x290 [ 3061.176366] ? splice_direct_to_actor+0x980/0x980 [ 3061.176984] ? selinux_file_permission+0x92/0x520 [ 3061.177586] ? security_file_permission+0x24e/0x570 [ 3061.178226] vfs_copy_file_range+0x4f8/0x1290 [ 3061.178799] ? generic_file_rw_checks+0x240/0x240 [ 3061.179445] __do_sys_copy_file_range+0x193/0x420 [ 3061.180087] ? vfs_copy_file_range+0x1290/0x1290 [ 3061.180683] ? ksys_write+0x1a9/0x260 [ 3061.181169] ? __ia32_sys_read+0xb0/0xb0 [ 3061.181682] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 3061.182347] ? syscall_enter_from_user_mode+0x1d/0x50 [ 3061.183000] do_syscall_64+0x33/0x40 [ 3061.183476] entry_SYSCALL_64_after_hwframe+0x62/0xc7 [ 3061.184143] RIP: 0033:0x7fec371d4b19 [ 3061.184607] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 3061.186920] RSP: 002b:00007fec3474a188 EFLAGS: 00000246 ORIG_RAX: 0000000000000146 [ 3061.187671] EXT4-fs (loop5): VFS: Can't find ext4 filesystem [ 3061.187873] RAX: ffffffffffffffda RBX: 00007fec372e7f60 RCX: 00007fec371d4b19 [ 3061.190196] RDX: 0000000000000006 RSI: 0000000000000000 RDI: 0000000000000007 [ 3061.191096] RBP: 00007fec3474a1d0 R08: 0000000000000c3a R09: 0000000000000000 [ 3061.191989] R10: 0000000020000280 R11: 0000000000000246 R12: 0000000000000002 [ 3061.192894] R13: 00007ffec551fc1f R14: 00007fec3474a300 R15: 0000000000022000 19:56:01 executing program 7: syz_mount_image$ext4(0x0, &(0x7f0000000200)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0) mount(0x0, &(0x7f00000004c0)='./file0\x00', &(0x7f0000000500)='ramfs\x00', 0x0, 0x0) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x0, 0x0, 0x0, 0x8}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) mount(0x0, &(0x7f0000000080)='./file0\x00', 0x0, 0x300b4e2, 0x0) r0 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a) ioctl$sock_SIOCGIFINDEX(r0, 0x8914, &(0x7f0000000140)={'lo\x00'}) r1 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a) r2 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1) bind$bt_hci(r2, &(0x7f0000000000)={0x1f, 0xffffffffffffffff, 0x3}, 0x65) getsockopt$inet6_buf(0xffffffffffffffff, 0x29, 0x0, &(0x7f00000002c0)=""/68, &(0x7f0000000040)=0x44) write$bt_hci(r2, &(0x7f0000000040)=ANY=[], 0x6) r3 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a) ioctl$sock_SIOCGIFINDEX(r3, 0x8933, &(0x7f0000000140)={'lo\x00', 0x0}) ioctl$sock_inet6_SIOCSIFADDR(0xffffffffffffffff, 0x8916, &(0x7f0000000180)={@loopback, 0x0, r4}) socket$inet6_icmp_raw(0xa, 0x3, 0x3a) bind$inet6(0xffffffffffffffff, &(0x7f0000000040)={0xa, 0x4e24, 0x5, @private2, 0xfffffc01}, 0x1c) ioctl$sock_inet_SIOCGIFPFLAGS(0xffffffffffffffff, 0x8935, &(0x7f0000000000)={'wlan0\x00'}) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x0, 0x0, 0x1004}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) ioctl$sock_SIOCGIFINDEX(r1, 0x8914, &(0x7f0000000140)={'lo\x00'}) socket$nl_generic(0x10, 0x3, 0x10) 19:56:01 executing program 3: perf_event_open(&(0x7f0000000540)={0x1, 0x80, 0x3, 0x1, 0x0, 0x0, 0x0, 0x1, 0x10204, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4, @perf_config_ext, 0x10002, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1ff, 0x0, 0xfffffffc}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) sendmsg$nl_xfrm(0xffffffffffffffff, 0x0, 0x0) ioctl$AUTOFS_DEV_IOCTL_FAIL(0xffffffffffffffff, 0xc0189377, 0x0) r0 = openat(0xffffffffffffff9c, &(0x7f0000000000)='./file1\x00', 0x8aa42, 0xd8) fallocate(r0, 0x50, 0x0, 0x100fffffe) setxattr$trusted_overlay_redirect(&(0x7f0000000080)='./file1\x00', &(0x7f0000000100), &(0x7f0000000180)='./file1\x00', 0x8, 0x0) ioctl$EXT4_IOC_MOVE_EXT(r0, 0xc028660f, 0x0) utimensat(r0, 0x0, &(0x7f0000000200), 0x0) syz_open_dev$vcsn(0x0, 0xef03, 0x240000) bind$packet(0xffffffffffffffff, &(0x7f0000000300)={0x11, 0x10, 0x0, 0x1, 0x83, 0x6, @remote}, 0x14) openat(0xffffffffffffffff, 0x0, 0x80000, 0x11b) ioctl$BTRFS_IOC_QGROUP_CREATE(0xffffffffffffffff, 0x4010942a, 0x0) r1 = io_uring_register$IORING_REGISTER_PERSONALITY(0xffffffffffffffff, 0x9, 0x0, 0x0) mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, 0xffffffffffffffff, 0x0) r2 = syz_open_dev$tty1(0xc, 0x4, 0x1) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x1, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0xa57a, 0x2, 0x0, 0x4}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r3 = mmap$IORING_OFF_CQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x0, 0x4000010, 0xffffffffffffffff, 0x8000000) syz_io_uring_setup(0x762, &(0x7f0000000000)={0x0, 0xf65e, 0x2, 0x3, 0x1bd, 0x0, r0}, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f00000000c0), &(0x7f0000000500)=0x0) syz_io_uring_submit(r3, r4, &(0x7f00000004c0)=@IORING_OP_READV=@pass_iovec={0x1, 0x3, 0x6000, @fd_index=0xa, 0x1, &(0x7f0000000440)=[{&(0x7f0000000140)=""/209, 0xd1}, {&(0x7f0000000240)=""/58, 0x3a}, {&(0x7f0000000280)=""/12, 0xc}, {&(0x7f00000002c0)=""/234, 0xea}, {&(0x7f0000001e00)=""/4096, 0x1000}, {&(0x7f00000003c0)=""/70, 0x46}], 0x6, 0x19, 0x1, {0x0, r1}}, 0x80000000) writev(r2, &(0x7f0000000080)=[{&(0x7f0000001380)="3ead823d27b1f38d16b83fca92a1f8f4a79624a264eb3d23f624cb63a9a475c4336e3015462fa8b76b1c5fb9b159eaa406698e2f3dcd71c5ba4e666731496d8ddd1bbaae50714c9ccdc53444b41f6df995ce4a1e6b9807bce8fa3e046360e5d1b228a3367e2315a985fcf8542b6a2e58eff19d99aa1de724345dd5786c63d31c197c760ac73dc10c91fcf49125d4dd5e1d4c952eeabf70f80b092c914e00cd0e75bdea96065d75447e5e2917619f3d3e2662b99fac83e65ca6fb6fc547ce903e960595bafc4990dfa6263d2dd2268b3f6f3df3b1603e198bc4011a4b1c43c686ff811d9a346aabe8c9f33c2c5e0ab15e288917c0de80a9d49e72e1efc8db344b3a715702fd03a0e9e2387cc5032967d44d8b3b68383f6c89c842ec2eadc06d1e5133067d6b3f11647561748b7d4185cab428d5fbf98ea4100f2276af2fec68da7e57d65c185e261b6790c65ebb5f98cb027d065d424a65705b15be6eda2b4ba4f6a337f711fc7088d216cb59a744bc5a0d0f059b11d6d7c0784065277076525027223b82fdcc899b2de92a710082edf89a57c0bf416899d2f8ad2cad43e5018b52025096784ecd82a29c00a8bf5ffa6e3b75fe641acf39885c084ae7e546f04224aeb23f61d99fc464a533fc6b87790e335057b54dbff233ced4a7ef90884dc7d90d678cc080024b9b4a", 0x1ea}], 0x1) 19:56:01 executing program 1: r0 = syz_mount_image$vfat(0x0, &(0x7f0000001800)='./file1\x00', 0x0, 0x0, 0x0, 0x0, 0x0) perf_event_open(&(0x7f0000001d80)={0x2, 0x80, 0x94, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) llistxattr(&(0x7f00000000c0)='./file1\x00', 0x0, 0x0) r1 = fork() r2 = dup3(0xffffffffffffffff, 0xffffffffffffffff, 0x0) linkat(r2, &(0x7f0000000100)='./file0\x00', 0xffffffffffffffff, &(0x7f0000000140)='./file0/file0\x00', 0x1000) perf_event_open(&(0x7f00000001c0)={0x0, 0x80, 0x2, 0x40, 0x80, 0x7, 0x0, 0x9, 0x40010, 0x1, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x1, 0x0, 0x0, 0x3, 0x1, 0x1, 0x1, 0x1, 0x1, 0x1, 0x1, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x4, 0x4, @perf_bp={&(0x7f0000000040), 0x1}, 0x8088, 0x9, 0x800, 0x2, 0x3f0b, 0xffff, 0x7ff, 0x0, 0x9, 0x0, 0x8001}, r1, 0x0, r2, 0xa) readlinkat(r0, &(0x7f0000000000)='./file1\x00', &(0x7f0000000100)=""/130, 0x82) r3 = openat$hwrng(0xffffffffffffff9c, &(0x7f0000000080), 0x2000, 0x0) r4 = accept4$bt_l2cap(0xffffffffffffffff, &(0x7f0000000240)={0x1f, 0x0, @none}, &(0x7f0000000280)=0xe, 0x400) sendfile(r3, r4, &(0x7f00000002c0)=0x800, 0x1) [ 3061.285328] EXT4-fs (loop5): VFS: Can't find ext4 filesystem 19:56:01 executing program 2: r0 = socket$inet_icmp_raw(0x2, 0x3, 0x1) r1 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a) ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000140)={'syz_tun\x00', 0x0}) perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) sendmmsg$inet(r0, &(0x7f0000002040)=[{{&(0x7f0000000380)={0x2, 0x0, @multicast1}, 0x10, &(0x7f0000001600)=[{&(0x7f00000003c0)="db9c", 0xffe7}], 0x1, &(0x7f0000001640)=ANY=[@ANYBLOB="14000000000000000000000007000000c4048f01000000001c000000000000000000000008000000", @ANYRES32=r2], 0x38}}], 0x1, 0x0) (fail_nth: 6) 19:56:01 executing program 6: syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000140)='./file0\x00', 0x40000, 0x4, &(0x7f0000000200)=[{&(0x7f0000010000)="20000000000100000c000000d40000000f000000010000000000000000000000002000000020000020000000d7f4655fd7f4655f0100ffff53ef010001000000d7f4655f000000000000000001000000000000000b0000000002", 0x5a, 0x400}, {&(0x7f0000010400)="030000000400000005000000d4000f", 0xf, 0x800}, {&(0x7f0000000500)="ffffffffff070000000000000000000000000000000000000000000000000080ffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffff", 0x402, 0xc00}, {&(0x7f0000010e00)="ed41000000040000d7f4655fd7f4655fd7f4655f000000000000040002", 0x1d, 0x1600}], 0x0, &(0x7f00000003c0)=ANY=[]) chdir(&(0x7f0000000040)='./file0\x00') openat(0xffffffffffffff9c, &(0x7f0000000080)='./file1\x00', 0x105142, 0x0) r0 = openat(0xffffffffffffff9c, &(0x7f0000000200)='./file1\x00', 0x2, 0x0) write(r0, &(0x7f0000000240)="01", 0x1) r1 = openat(0xffffffffffffff9c, &(0x7f00000000c0)='./file2\x00', 0x105142, 0x0) r2 = openat(0xffffffffffffff9c, &(0x7f0000001340)='./file1\x00', 0x0, 0x0) copy_file_range(r2, 0x0, r1, &(0x7f0000000280)=0x10000, 0xc3a, 0x0) (fail_nth: 15) openat$sr(0xffffffffffffff9c, 0x0, 0x0, 0x0) [ 3061.371512] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium 19:56:01 executing program 0: syz_mount_image$vfat(&(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x0, 0x58, &(0x7f0000000180)=[{&(0x7f0000000140)="eb3c906d6b66732e66617400020801000470008400f801", 0x17}, {0x0, 0x0, 0x1001000a00}], 0x2800018, &(0x7f0000000240)=ANY=[]) chdir(&(0x7f0000000040)='./file0\x00') perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x200}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x8) mount$cgroup(0x0, 0x0, 0x0, 0x0, 0x0) r0 = openat(0xffffffffffffff9c, &(0x7f00000002c0)='./file1\x00', 0x105142, 0x0) chdir(&(0x7f0000000280)='./file1\x00') r1 = syz_mount_image$ext4(0x0, &(0x7f0000000100)='./mnt\x00', 0x0, 0x0, 0x0, 0x0, 0x0) syz_mount_image$nfs4(0x0, &(0x7f00000010c0)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0) mkdirat(0xffffffffffffff9c, &(0x7f00000004c0)='mnt/encrypted_dir\x00', 0x0) futimesat(0xffffffffffffffff, &(0x7f0000000000)='./mnt\x00', 0x0) rename(&(0x7f0000000180)='mnt/encrypted_dir\x00', &(0x7f00000001c0)='./file0\x00') openat(r1, &(0x7f0000000300)='./file2\x00', 0x80002, 0x0) accept$unix(0xffffffffffffffff, &(0x7f00000001c0)=@abs, &(0x7f0000000240)=0x6e) write$binfmt_elf64(0xffffffffffffffff, 0x0, 0x0) openat(0xffffffffffffff9c, 0x0, 0x1, 0x5b) r2 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0) ioctl$AUTOFS_DEV_IOCTL_TIMEOUT(0xffffffffffffffff, 0xc018937a, &(0x7f0000000800)=ANY=[@ANYBLOB="010000000100000018000000a5b4a299584a5d55724e27689881f04a5452ff4da0e2158e1f2395fb2006846d14d273773e116e25a92efd4a851e33583f2877662f66330e66eaf7c7f9d4bac345e748f64ec507ee", @ANYBLOB="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"]) sendfile(r0, r2, 0x0, 0x100000001) ioctl$AUTOFS_DEV_IOCTL_OPENMOUNT(r2, 0xc0189374, &(0x7f0000000100)={{0x1, 0x1, 0x18, r0, {0x9d96}}, './file0\x00'}) ioctl$BTRFS_IOC_SCRUB(r0, 0xc400941b, &(0x7f0000000400)={0x0, 0x1}) [ 3061.396892] FAULT_INJECTION: forcing a failure. [ 3061.396892] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 3061.396915] CPU: 0 PID: 21722 Comm: syz-executor.2 Not tainted 5.10.207 #1 19:56:01 executing program 5: r0 = perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x6, 0x0, 0x0, 0x61, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0xa425, 0x80000000}, 0x0, 0x0, 0x0, 0x0, 0xfffffffffffffff8, 0x40080000, 0xffff}, 0x0, 0xe, 0xffffffffffffffff, 0xa) r1 = request_key(&(0x7f00000003c0)='dns_resolver\x00', &(0x7f0000000400)={'syz', 0x2}, 0x0, 0x0) perf_event_open(&(0x7f0000000140)={0x5, 0x80, 0xf4, 0x2, 0x3f, 0xd8, 0x0, 0xe5, 0x80008, 0x5, 0x1, 0x0, 0x1, 0x1, 0x0, 0x1, 0x1, 0x0, 0x0, 0x1, 0x0, 0x1, 0x1, 0x0, 0x1, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x1, 0x0, 0x1, 0x1, 0x1, 0x1, 0x0, 0x1, 0x0, 0x0, 0x1, 0x1, 0x0, 0xfffffff8, 0x1, @perf_bp={&(0x7f0000000040)}, 0x90, 0x0, 0x20c6, 0x4, 0xb0, 0x5, 0x0, 0x0, 0x80000001, 0x0, 0xff}, 0xffffffffffffffff, 0xffffffffffffffff, r0, 0x8) keyctl$KEYCTL_RESTRICT_KEYRING(0x1d, r1, 0x0, &(0x7f00000001c0)) r2 = add_key$keyring(&(0x7f00000002c0), &(0x7f0000000300)={'syz', 0x0}, 0x0, 0x0, 0xfffffffffffffffd) add_key(&(0x7f00000000c0)='dns_resolver\x00', &(0x7f0000000100)={'syz', 0x2}, &(0x7f0000000340)="a407c3efc1edfab7037255db44a5dc824001767ee5522ccc6b4a4c358e2f414cae835269010f99ea715085731fa8ad0600", 0x31, r2) keyctl$search(0xa, r2, &(0x7f0000001880)='dns_resolver\x00', &(0x7f00000018c0)={'syz', 0x2}, 0x0) add_key$fscrypt_v1(&(0x7f0000000000), 0x0, &(0x7f0000000080)={0x0, "7b2ae7d01c609b6f86146327be27b3d8c6c55e07eddf85de610b47ae44bacfbd5fe31f17602667c501c406aac832e6f8c0998b868dbbb4ea02b67d2688cff84f", 0x23}, 0x48, r2) 19:56:01 executing program 4: syz_80211_inject_frame(&(0x7f00000000c0)=@device_a={0x8, 0x2, 0x11, 0x14}, &(0x7f0000000440)=ANY=[], 0x2f) [ 3061.396927] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 3061.396935] Call Trace: [ 3061.396962] dump_stack+0x107/0x167 [ 3061.396995] should_fail.cold+0x5/0xa [ 3061.397032] _copy_from_user+0x2e/0x1b0 [ 3061.397066] ____sys_sendmsg+0x6c6/0x870 [ 3061.397097] ? sock_write_iter+0x3d0/0x3d0 [ 3061.397114] ? do_recvmmsg+0x6d0/0x6d0 [ 3061.397134] ? perf_trace_lock+0x2bd/0x490 [ 3061.397180] ? __lockdep_reset_lock+0x180/0x180 [ 3061.397221] ___sys_sendmsg+0xf3/0x170 [ 3061.397249] ? sendmsg_copy_msghdr+0x160/0x160 [ 3061.397286] ? lock_downgrade+0x6d0/0x6d0 [ 3061.397321] ? perf_trace_run_bpf_submit+0xf5/0x190 [ 3061.397366] ? __fget_files+0x296/0x4c0 [ 3061.397416] ? __fget_light+0xea/0x290 [ 3061.397459] __sys_sendmmsg+0x195/0x470 [ 3061.397495] ? __ia32_sys_sendmsg+0xb0/0xb0 [ 3061.397519] ? lock_downgrade+0x6d0/0x6d0 [ 3061.397583] ? __mutex_unlock_slowpath+0xe1/0x600 [ 3061.397626] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 19:56:01 executing program 1: r0 = perf_event_open(&(0x7f0000001d80)={0x6, 0x80, 0x0, 0x0, 0x0, 0x0, 0x4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0, 0xffffffff81000600}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) perf_event_open(&(0x7f0000000000)={0x4, 0x80, 0xbd, 0x9, 0x1, 0xff, 0x0, 0x0, 0x4, 0x1, 0x1, 0x0, 0x0, 0x1, 0x1, 0x0, 0x1, 0x0, 0x1, 0x1, 0x1, 0x0, 0x1, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x1, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x1, 0x1, 0x0, 0x0, 0x1, 0x1, 0x0, 0x0, 0x4, 0x0, @perf_config_ext={0xe236, 0x100000001}, 0x0, 0x2, 0x3, 0x7, 0x3, 0x9, 0x96f, 0x0, 0x800}, 0x0, 0xa, r0, 0xa) r1 = socket$inet6_tcp(0xa, 0x1, 0x0) bind$inet6(r1, &(0x7f0000000880)={0xa, 0x4e21, 0x5, @mcast2, 0x2}, 0x1c) getsockopt$inet6_int(r1, 0x29, 0x4, 0x0, &(0x7f0000000080)) write$binfmt_elf32(r1, &(0x7f0000000080)={{0x7f, 0x45, 0x4c, 0x46, 0x1, 0xdf, 0x0, 0x8, 0x8, 0x2, 0x3, 0x8, 0xcd, 0x38, 0x91, 0xffffffff, 0x1, 0x20, 0x2, 0x101, 0x1000}, [{0x4, 0x6, 0x1, 0xffffff79, 0x7f, 0x200, 0x3, 0xf893}, {0x3, 0x8001, 0x3, 0x914, 0xfffffff7, 0x81, 0x5, 0x401}], "820fd7ae5e1bff3463c1b2736c10c03bf963463b48847473e825637001c94eb5d967a407b843b8505df237f2e5036b48488a24f891bf68810b76f1b073b43b50f7359a3b715a4e72f888acde674b9ea92066721696c61ed9906830d59e665c3cfc085c708f88880c86e29cc397ee1b237e738b546acf8532", ['\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00']}, 0x7f0) [ 3061.397648] ? asm_sysvec_apic_timer_interrupt+0x12/0x20 [ 3061.397665] ? trace_hardirqs_on+0x5b/0x180 [ 3061.397690] ? asm_sysvec_apic_timer_interrupt+0x12/0x20 [ 3061.397749] __x64_sys_sendmmsg+0x99/0x100 [ 3061.397784] do_syscall_64+0x33/0x40 [ 3061.397805] entry_SYSCALL_64_after_hwframe+0x62/0xc7 [ 3061.397824] RIP: 0033:0x7fac065c2b19 [ 3061.397846] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 3061.397858] RSP: 002b:00007fac03b38188 EFLAGS: 00000246 ORIG_RAX: 0000000000000133 [ 3061.397884] RAX: ffffffffffffffda RBX: 00007fac066d5f60 RCX: 00007fac065c2b19 [ 3061.397897] RDX: 0000000000000001 RSI: 0000000020002040 RDI: 0000000000000003 [ 3061.397910] RBP: 00007fac03b381d0 R08: 0000000000000000 R09: 0000000000000000 [ 3061.397922] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 3061.397935] R13: 00007ffe4d4b793f R14: 00007fac03b38300 R15: 0000000000022000 [ 3061.536769] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium [ 3061.559427] FAULT_INJECTION: forcing a failure. [ 3061.559427] name failslab, interval 1, probability 0, space 0, times 0 [ 3061.563432] CPU: 0 PID: 21741 Comm: syz-executor.6 Not tainted 5.10.207 #1 [ 3061.564958] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 3061.566756] Call Trace: [ 3061.567341] dump_stack+0x107/0x167 [ 3061.568163] should_fail.cold+0x5/0xa [ 3061.569003] ? __iomap_dio_rw+0x1ee/0x1110 [ 3061.569921] ? __iomap_dio_rw+0x1ee/0x1110 [ 3061.570842] should_failslab+0x5/0x20 [ 3061.571674] kmem_cache_alloc_trace+0x55/0x320 [ 3061.572711] __iomap_dio_rw+0x1ee/0x1110 [ 3061.573617] ? jbd2_journal_stop+0x188/0xdc0 [ 3061.574584] ? iomap_dio_bio_actor+0xef0/0xef0 [ 3061.575573] ? ext4_orphan_add+0x253/0x9e0 [ 3061.576531] ? jbd2_buffer_abort_trigger+0x80/0x80 [ 3061.577595] ? ext4_empty_dir+0xae0/0xae0 [ 3061.578541] ? jbd2__journal_start+0xf3/0x7e0 [ 3061.579520] iomap_dio_rw+0x31/0x90 [ 3061.580367] ext4_file_write_iter+0xb26/0x18d0 [ 3061.581378] ? ext4_file_read_iter+0x4c0/0x4c0 [ 3061.582398] ? kasan_save_stack+0x32/0x40 [ 3061.583286] ? kasan_save_stack+0x1b/0x40 [ 3061.584207] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 3061.585296] ? iter_file_splice_write+0x16d/0xc30 [ 3061.586322] ? direct_splice_actor+0x10f/0x170 [ 3061.587297] ? splice_direct_to_actor+0x387/0x980 [ 3061.588386] ? do_splice_direct+0x1c4/0x290 [ 3061.589310] ? vfs_copy_file_range+0x4f8/0x1290 [ 3061.590306] ? __do_sys_copy_file_range+0x193/0x420 [ 3061.591392] do_iter_readv_writev+0x476/0x750 [ 3061.592367] ? new_sync_write+0x660/0x660 [ 3061.593252] ? selinux_file_permission+0x92/0x520 [ 3061.594314] do_iter_write+0x191/0x670 [ 3061.595151] ? trace_hardirqs_on+0x5b/0x180 [ 3061.596115] vfs_iter_write+0x70/0xa0 [ 3061.596936] iter_file_splice_write+0x762/0xc30 [ 3061.597955] ? generic_splice_sendpage+0x140/0x140 [ 3061.599015] ? avc_policy_seqno+0x9/0x70 [ 3061.599889] ? selinux_file_permission+0x92/0x520 [ 3061.600963] ? lockdep_init_map_type+0x2c7/0x780 [ 3061.601990] ? generic_splice_sendpage+0x140/0x140 [ 3061.603058] direct_splice_actor+0x10f/0x170 [ 3061.604015] splice_direct_to_actor+0x387/0x980 [ 3061.605016] ? pipe_to_sendpage+0x380/0x380 [ 3061.605947] ? do_splice_to+0x160/0x160 [ 3061.606797] ? security_file_permission+0x24e/0x570 [ 3061.607879] do_splice_direct+0x1c4/0x290 [ 3061.608803] ? splice_direct_to_actor+0x980/0x980 [ 3061.609835] ? selinux_file_permission+0x92/0x520 [ 3061.610873] ? security_file_permission+0x24e/0x570 [ 3061.611967] vfs_copy_file_range+0x4f8/0x1290 [ 3061.612939] ? generic_file_rw_checks+0x240/0x240 [ 3061.614011] __do_sys_copy_file_range+0x193/0x420 [ 3061.615050] ? vfs_copy_file_range+0x1290/0x1290 [ 3061.616082] ? ksys_write+0x1a9/0x260 [ 3061.616899] ? __ia32_sys_read+0xb0/0xb0 [ 3061.617789] do_syscall_64+0x33/0x40 [ 3061.618586] entry_SYSCALL_64_after_hwframe+0x62/0xc7 [ 3061.619681] RIP: 0033:0x7fec371d4b19 [ 3061.620487] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 3061.624405] RSP: 002b:00007fec3474a188 EFLAGS: 00000246 ORIG_RAX: 0000000000000146 [ 3061.626032] RAX: ffffffffffffffda RBX: 00007fec372e7f60 RCX: 00007fec371d4b19 [ 3061.627556] RDX: 0000000000000005 RSI: 0000000000000000 RDI: 0000000000000006 [ 3061.629100] RBP: 00007fec3474a1d0 R08: 0000000000000c3a R09: 0000000000000000 [ 3061.630618] R10: 0000000020000280 R11: 0000000000000246 R12: 0000000000000002 [ 3061.632150] R13: 00007ffec551fc1f R14: 00007fec3474a300 R15: 0000000000022000 [ 3061.840930] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium 19:56:16 executing program 2: r0 = socket$inet_icmp_raw(0x2, 0x3, 0x1) r1 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a) ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000140)={'syz_tun\x00', 0x0}) perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) sendmmsg$inet(r0, &(0x7f0000002040)=[{{&(0x7f0000000380)={0x2, 0x0, @multicast1}, 0x10, &(0x7f0000001600)=[{&(0x7f00000003c0)="db9c", 0xffe7}], 0x1, &(0x7f0000001640)=ANY=[@ANYBLOB="14000000000000000000000007000000c4048f01000000001c000000000000000000000008000000", @ANYRES32=r2], 0x38}}], 0x1, 0x0) (fail_nth: 7) 19:56:16 executing program 4: syz_80211_inject_frame(&(0x7f00000000c0)=@device_a={0x8, 0x2, 0x11, 0x15}, &(0x7f0000000440)=ANY=[], 0x2f) 19:56:16 executing program 0: syz_mount_image$vfat(&(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x0, 0x58, &(0x7f0000000180)=[{&(0x7f0000000140)="eb3c906d6b66732e66617400020801000470008400f801", 0x17}, {0x0, 0x0, 0x1001000a00}], 0x2800018, &(0x7f0000000240)=ANY=[]) chdir(&(0x7f0000000040)='./file0\x00') perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x200}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x8) mount$cgroup(0x0, 0x0, 0x0, 0x0, 0x0) r0 = openat(0xffffffffffffff9c, &(0x7f00000002c0)='./file1\x00', 0x105142, 0x0) chdir(&(0x7f0000000280)='./file1\x00') r1 = syz_mount_image$ext4(0x0, &(0x7f0000000100)='./mnt\x00', 0x0, 0x0, 0x0, 0x0, 0x0) syz_mount_image$nfs4(0x0, &(0x7f00000010c0)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0) mkdirat(0xffffffffffffff9c, &(0x7f00000004c0)='mnt/encrypted_dir\x00', 0x0) futimesat(0xffffffffffffffff, &(0x7f0000000000)='./mnt\x00', 0x0) rename(&(0x7f0000000180)='mnt/encrypted_dir\x00', &(0x7f00000001c0)='./file0\x00') openat(r1, &(0x7f0000000300)='./file2\x00', 0x80002, 0x0) accept$unix(0xffffffffffffffff, &(0x7f00000001c0)=@abs, &(0x7f0000000240)=0x6e) write$binfmt_elf64(0xffffffffffffffff, 0x0, 0x0) openat(0xffffffffffffff9c, 0x0, 0x1, 0x5b) r2 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0) ioctl$AUTOFS_DEV_IOCTL_TIMEOUT(0xffffffffffffffff, 0xc018937a, &(0x7f0000000800)=ANY=[@ANYBLOB="010000000100000018000000a5b4a299584a5d55724e27689881f04a5452ff4da0e2158e1f2395fb2006846d14d273773e116e25a92efd4a851e33583f2877662f66330e66eaf7c7f9d4bac345e748f64ec507ee", @ANYBLOB="5469a3cad602be8804c697528169ffb557b204356e9b287aed9115ed15ff72a96d5013e700003a42aacf9a3e5fe677be010a9a68f8794108f9d89578157e096936fcc25e1b6002aa4e38f5f502e6be741d725dcd56cdee1a8bbf23bbe4ed1c36c532711f5ec1b12a296d36c4acb3247e1a67476fffe9ec522a46a170364c8bad0300000000000000d154d49243c164db2ad2ebe645842ba008ff81ffcf17ccb50db1c4370feafbbe89dc9f019e0cbd3e1a6201068b79e9e0a4e88207d0b76cbb97fe9127964b53d15f11b5dc9a247322370f2b862460e754b8776a399668b634adbfbc2f5505766f8cfb81d45dc0e2167a06e78122e82d858269710d52340dfbd8310ae78c4fd21c5f79d42d4905c248d0903ae00c98fd56de1556fb369feb2f9f0bd6f985556d99b79252ef1a874daf2fb36ad4b01f30b2c1e0ec7a0b89410367559ae80f6d42b6346e7b88447633f03146dba3d79f250e9294139151c1cc8ea73dc09f09e8be78ba6b1d14d09db6c992ee283a8b943dcae77a57c5c4fb8cf7d4a8587165ff3bab45e6bd3a7d81442203b93b5b87d9f26d"]) sendfile(r0, r2, 0x0, 0x100000001) ioctl$AUTOFS_DEV_IOCTL_OPENMOUNT(r2, 0xc0189374, &(0x7f0000000100)={{0x1, 0x1, 0x18, r0, {0x9d96}}, './file0\x00'}) ioctl$BTRFS_IOC_SCRUB(r0, 0xc400941b, &(0x7f0000000400)={0x0, 0x1}) 19:56:16 executing program 1: r0 = fsmount(0xffffffffffffffff, 0x0, 0x87) accept4(r0, &(0x7f0000000080)=@l2={0x1f, 0x0, @fixed}, &(0x7f0000000180)=0x80, 0x80800) accept4$unix(0xffffffffffffffff, 0xfffffffffffffffd, 0x0, 0x0) r1 = perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f0000000500)}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) syz_io_uring_submit(0x0, 0x0, 0x0, 0x0) r2 = syz_open_procfs(0xffffffffffffffff, &(0x7f0000000040)='net/icmp6\x00') ioctl$FS_IOC_GET_ENCRYPTION_POLICY_EX(r1, 0xc0096616, &(0x7f0000000000)={0x5, [0x0, 0x0, 0x0, 0x0, 0x0]}) preadv(r2, &(0x7f0000000400)=[{&(0x7f0000000200)=""/135, 0x87}], 0x1, 0x2, 0x0) pidfd_open(0x0, 0x0) r3 = dup3(0xffffffffffffffff, 0xffffffffffffffff, 0x0) linkat(r3, &(0x7f0000000100)='./file0\x00', 0xffffffffffffffff, &(0x7f0000000140)='./file0/file0\x00', 0x1000) ioctl$PERF_EVENT_IOC_DISABLE(r3, 0x2401, 0x461b8970) 19:56:16 executing program 7: r0 = openat$sysfs(0xffffffffffffff9c, &(0x7f00000000c0)='/sys/kernel/vmcoreinfo', 0x0, 0x0) preadv2(r0, &(0x7f0000001500)=[{&(0x7f0000001100)=""/214, 0xd6}], 0x1, 0x6, 0x0, 0x1) r1 = syz_io_uring_setup(0x6c6b, &(0x7f00000002c0)={0x0, 0x0, 0x0, 0x1, 0x200000, 0x0, r0}, &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f00000000c0)=0x0, &(0x7f0000000140)=0x0) syz_io_uring_submit(r2, r3, &(0x7f0000000040)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x9, 0x0, &(0x7f00000008c0)=[{&(0x7f0000000340)=""/142, 0x8e}], 0x1}, 0x0) pipe(&(0x7f00000014c0)={0xffffffffffffffff, 0xffffffffffffffff}) syz_io_uring_setup(0x4, &(0x7f0000000180), &(0x7f0000ff8000/0x8000)=nil, &(0x7f0000ffa000/0x4000)=nil, 0x0, 0x0) r6 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x105142, 0x0) getpeername(r4, &(0x7f0000000400)=@xdp={0x2c, 0x0, 0x0}, &(0x7f0000000000)=0x80) ioctl$sock_ipv6_tunnel_SIOCCHG6RD(0xffffffffffffffff, 0x89fb, &(0x7f0000000080)={'syztnl0\x00', &(0x7f0000000500)={'ip6tnl0\x00', r7, 0x2b, 0xff, 0x1, 0x5, 0x0, @empty, @rand_addr=' \x01\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x02', 0x20, 0x8000, 0x20}}) ioctl$EXT4_IOC_GROUP_EXTEND(r6, 0x40086607, &(0x7f00000004c0)) syz_io_uring_setup(0x66b, &(0x7f0000000580)={0x0, 0x0, 0x8, 0x3, 0xffffffff, 0x0, r6}, &(0x7f0000ffb000/0x2000)=nil, &(0x7f0000ff9000/0x4000)=nil, 0x0, &(0x7f0000000200)) clock_gettime(0x0, &(0x7f0000000840)={0x0, 0x0}) recvmmsg$unix(r5, &(0x7f0000000800)=[{{0x0, 0x0, &(0x7f0000000680)=[{&(0x7f0000000600)=""/7, 0x7}, {&(0x7f0000000640)=""/33, 0x21}], 0x2, &(0x7f00000006c0)=ANY=[@ANYBLOB="1c000000000000000100000002000000", @ANYRES32=0x0, @ANYRES32=0x0, @ANYRES32=0x0, @ANYBLOB="000000001c000000000000000100000002000000", @ANYRES32=0x0, @ANYRES32=0x0, @ANYRES32=0x0, @ANYBLOB="000000001c000000000000000100000002000000", @ANYRES32=0x0, @ANYRES32=0x0, @ANYRES32=0x0, @ANYBLOB="000000001c000000000000000100000001000000", @ANYRES32, @ANYRES32, @ANYRES32, @ANYBLOB="000000001c000000000000000100000002000000", @ANYRES32=0x0, @ANYRES32=0x0, @ANYRES32=0x0, @ANYBLOB="0000000020000000000000000100000001000000", @ANYRES32, @ANYRES32, @ANYRES32, @ANYRES32, @ANYBLOB="1c000000000000000100000001000000", @ANYRES32, @ANYRES32, @ANYRES32, @ANYBLOB="000000001c000000000000000100000001000000", @ANYRES32, @ANYRES32, @ANYRES32, @ANYBLOB="0000000014000000000000000100000001000000", @ANYRES32, @ANYBLOB="c70000191c000000000000000100000002000000", @ANYRES32=0x0, @ANYRES32=0x0, @ANYRES32=0x0, @ANYBLOB='\x00\x00\x00\x00'], 0x138}}], 0x1, 0xbafc3cb54f08ede, &(0x7f0000000880)={r8, r9+10000000}) stat(&(0x7f0000001cc0)='.\x00', &(0x7f0000001c00)={0x0, 0x0, 0x0, 0x0, 0x0}) setresuid(0xffffffffffffffff, r11, 0x0) mount$9p_unix(&(0x7f0000000240)='./file1\x00', &(0x7f0000000280)='./file1\x00', &(0x7f0000000480), 0x10000, &(0x7f0000000900)={'trans=unix,', {[{@version_9p2000}, {@debug={'debug', 0x3d, 0x254}}, {@dfltgid={'dfltgid', 0x3d, r10}}, {@uname={'uname', 0x3d, 'ip6tnl0\x00'}}, {@access_client}, {@access_client}], [{@seclabel}, {@obj_type={'obj_type', 0x3d, '\''}}, {@euid_eq={'euid', 0x3d, r11}}, {@fsuuid={'fsuuid', 0x3d, {[0x63, 0x37, 0x64, 0x35, 0x32, 0x61, 0x38, 0x30], 0x2d, [0x36, 0x65, 0x31, 0x30], 0x2d, [0x30, 0x38, 0x36, 0x62], 0x2d, [0x32, 0x39, 0x63, 0x33], 0x2d, [0x37, 0x61, 0x38, 0x66, 0x32, 0x36, 0x36, 0x30]}}}, {@dont_hash}, {@smackfsdef={'smackfsdef', 0x3d, 'syztnl0\x00'}}, {@audit}, {@defcontext={'defcontext', 0x3d, 'user_u'}}, {@hash}, {@smackfsfloor={'smackfsfloor', 0x3d, 'syztnl0\x00'}}]}}) r12 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r1, 0x0) openat$sysfs(0xffffffffffffff9c, &(0x7f00000000c0)='/sys/kernel/vmcoreinfo', 0x0, 0x0) syz_io_uring_submit(r12, r3, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x3, 0x0, 0xffffffffffffffff, 0x0}, 0x8001) io_uring_enter(r1, 0x58ab, 0x0, 0x0, 0x0, 0x0) 19:56:16 executing program 3: mlock2(&(0x7f0000ffd000/0x3000)=nil, 0x3000, 0x0) pkey_mprotect(&(0x7f0000ffb000/0x3000)=nil, 0x3000, 0x2000000, 0xffffffffffffffff) r0 = perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, @perf_config_ext={0x8}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) mbind(&(0x7f0000ffd000/0x3000)=nil, 0x3000, 0x4000, 0x0, 0x0, 0x3) getsockopt$inet6_tcp_TCP_ZEROCOPY_RECEIVE(0xffffffffffffffff, 0x6, 0x23, &(0x7f00000001c0)={&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x0, 0x0, 0x0, &(0x7f0000000140)=""/124, 0x7c, 0x1, &(0x7f0000000240)=""/99, 0x63}, &(0x7f00000002c0)=0x40) pkey_alloc(0x0, 0x0) r1 = pkey_alloc(0x0, 0x2) pkey_mprotect(&(0x7f0000ffe000/0x1000)=nil, 0x1000, 0x7, r1) pkey_mprotect(&(0x7f0000ffe000/0x2000)=nil, 0x2000, 0x0, 0xffffffffffffffff) ioctl$AUTOFS_DEV_IOCTL_PROTOSUBVER(0xffffffffffffffff, 0xc0189373, &(0x7f0000000100)=ANY=[@ANYBLOB="010000000100000018000000", @ANYRES32=r0, @ANYBLOB='e1\x00'/16]) mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x1000)=nil, 0x1000, 0xa, 0x11, 0xffffffffffffffff, 0x0) perf_event_open(0x0, 0x0, 0x4, r2, 0x0) r3 = openat(0xffffffffffffff9c, &(0x7f0000000080)='/proc/self/exe\x00', 0x0, 0x0) r4 = socket$inet6_tcp(0xa, 0x1, 0x0) kcmp(0xffffffffffffffff, 0x0, 0x6, r0, 0xffffffffffffffff) setsockopt$sock_int(r4, 0x1, 0x12, &(0x7f0000000200)=0x33e0, 0x4) setsockopt$inet6_tcp_int(r4, 0x6, 0x2, &(0x7f0000000040)=0x81, 0x4) bind$inet6(r4, &(0x7f00000000c0)={0xa, 0x4e20, 0x0, @loopback}, 0x1c) connect$inet6(r4, &(0x7f0000000000)={0xa, 0x4e20, 0x0, @loopback}, 0x1c) sendfile(r4, r3, 0x0, 0x9bbb) 19:56:16 executing program 5: syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x100000, 0x4, &(0x7f0000000200)=[{&(0x7f0000010000)="200000000002000019000000600100000f000000000000000100000005000000000004000040000020000000d4f4655fd4f4655f0100ffff53ef010001000000d3f4655f000000000000000001000000000000000b0000000001000008000000d24201001203", 0x66, 0x400}, {&(0x7f0000010100)="00000001000000000000000076a34e3f63e54dbc8955dd45888f6106010040", 0x1f, 0x4e0}, {&(0x7f0000010400)="02000000030000000400000016000f000300040000000000000000000f00c5d7", 0x20, 0x800}, {&(0x7f0000011600)="ed41000000080000d3f4655fd4f4655fd4f4655f000000000000040040", 0x1d, 0x2100}], 0x0, &(0x7f0000000340)=ANY=[@ANYBLOB="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"]) mount$9p_unix(&(0x7f00000001c0)='./file0\x00', &(0x7f0000000280)='./file0\x00', &(0x7f00000002c0), 0x0, &(0x7f0000000300)={'trans=unix,', {[{@cache_loose}, {@noextend}, {@posixacl}], [{@obj_user={'obj_user', 0x3d, '}!-{#%[:*%'}}]}}) mount(0x0, &(0x7f0000000080)='./file0\x00', 0x0, 0x2260020, 0x0) mount$bind(&(0x7f0000000040)='./file0\x00', &(0x7f00000000c0)='./file0\x00', &(0x7f0000000180), 0x2002080, 0x0) read(0xffffffffffffffff, 0x0, 0x0) 19:56:16 executing program 6: syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000140)='./file0\x00', 0x40000, 0x4, &(0x7f0000000200)=[{&(0x7f0000010000)="20000000000100000c000000d40000000f000000010000000000000000000000002000000020000020000000d7f4655fd7f4655f0100ffff53ef010001000000d7f4655f000000000000000001000000000000000b0000000002", 0x5a, 0x400}, {&(0x7f0000010400)="030000000400000005000000d4000f", 0xf, 0x800}, {&(0x7f0000000500)="ffffffffff070000000000000000000000000000000000000000000000000080ffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffff", 0x402, 0xc00}, {&(0x7f0000010e00)="ed41000000040000d7f4655fd7f4655fd7f4655f000000000000040002", 0x1d, 0x1600}], 0x0, &(0x7f00000003c0)=ANY=[]) chdir(&(0x7f0000000040)='./file0\x00') openat(0xffffffffffffff9c, &(0x7f0000000080)='./file1\x00', 0x105142, 0x0) r0 = openat(0xffffffffffffff9c, &(0x7f0000000200)='./file1\x00', 0x2, 0x0) write(r0, &(0x7f0000000240)="01", 0x1) r1 = openat(0xffffffffffffff9c, &(0x7f00000000c0)='./file2\x00', 0x105142, 0x0) r2 = openat(0xffffffffffffff9c, &(0x7f0000001340)='./file1\x00', 0x0, 0x0) copy_file_range(r2, 0x0, r1, &(0x7f0000000280)=0x10000, 0xc3a, 0x0) (fail_nth: 16) openat$sr(0xffffffffffffff9c, 0x0, 0x0, 0x0) [ 3076.179958] FAULT_INJECTION: forcing a failure. [ 3076.179958] name failslab, interval 1, probability 0, space 0, times 0 [ 3076.182970] CPU: 0 PID: 21859 Comm: syz-executor.2 Not tainted 5.10.207 #1 [ 3076.184785] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 3076.186931] Call Trace: [ 3076.187628] dump_stack+0x107/0x167 [ 3076.188626] should_fail.cold+0x5/0xa [ 3076.189532] ? ip_options_get+0xa5/0x430 [ 3076.190435] should_failslab+0x5/0x20 [ 3076.191272] __kmalloc+0x72/0x390 [ 3076.192036] ? perf_tp_event+0x5ce/0xc00 [ 3076.192957] ip_options_get+0xa5/0x430 [ 3076.193823] ? ip_options_undo+0x460/0x460 [ 3076.194766] ? arch_stack_walk+0x99/0xf0 [ 3076.195676] ? mark_lock+0xf5/0x2df0 [ 3076.196520] ip_cmsg_send+0x888/0xa50 [ 3076.197350] ? arch_stack_walk+0x99/0xf0 [ 3076.198285] raw_sendmsg+0xc0a/0x29d0 [ 3076.199144] ? dst_output+0x170/0x170 [ 3076.199973] ? perf_trace_run_bpf_submit+0xf5/0x190 [ 3076.201114] ? perf_trace_lock+0x2bd/0x490 [ 3076.202032] ? SOFTIRQ_verbose+0x10/0x10 [ 3076.202973] ? __lockdep_reset_lock+0x180/0x180 [ 3076.203988] ? lock_release+0x680/0x680 [ 3076.204887] ? sock_has_perm+0x1ea/0x280 [ 3076.205790] ? selinux_socket_post_create+0x7f0/0x7f0 [ 3076.206914] ? find_held_lock+0x2c/0x110 [ 3076.207838] ? trace_hardirqs_on+0x5b/0x180 [ 3076.208813] ? dst_output+0x170/0x170 [ 3076.209647] inet_sendmsg+0x11d/0x140 [ 3076.210482] ? inet_send_prepare+0x540/0x540 [ 3076.211449] __sock_sendmsg+0x13c/0x190 [ 3076.212335] ____sys_sendmsg+0x334/0x870 [ 3076.213235] ? sock_write_iter+0x3d0/0x3d0 [ 3076.214158] ? do_recvmmsg+0x6d0/0x6d0 [ 3076.215029] ? perf_trace_lock+0x2bd/0x490 [ 3076.215983] ? __lockdep_reset_lock+0x180/0x180 [ 3076.217031] ___sys_sendmsg+0xf3/0x170 [ 3076.217924] ? sendmsg_copy_msghdr+0x160/0x160 [ 3076.218945] ? lock_downgrade+0x6d0/0x6d0 [ 3076.219909] ? perf_trace_run_bpf_submit+0xf5/0x190 [ 3076.221044] ? __fget_files+0x296/0x4c0 [ 3076.221945] ? __fget_light+0xea/0x290 [ 3076.222816] __sys_sendmmsg+0x195/0x470 [ 3076.223705] ? __ia32_sys_sendmsg+0xb0/0xb0 [ 3076.224662] ? lock_downgrade+0x6d0/0x6d0 [ 3076.225613] ? __mutex_unlock_slowpath+0xe1/0x600 [ 3076.226679] ? wait_for_completion_io+0x270/0x270 [ 3076.227739] ? rcu_read_lock_any_held+0x75/0xa0 [ 3076.228774] ? vfs_write+0x354/0xa70 [ 3076.229600] ? fput_many+0x2f/0x1a0 [ 3076.230404] ? ksys_write+0x1a9/0x260 [ 3076.231257] ? __ia32_sys_read+0xb0/0xb0 [ 3076.231506] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium [ 3076.232223] __x64_sys_sendmmsg+0x99/0x100 [ 3076.232254] do_syscall_64+0x33/0x40 [ 3076.235810] entry_SYSCALL_64_after_hwframe+0x62/0xc7 [ 3076.237017] RIP: 0033:0x7fac065c2b19 [ 3076.237834] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 3076.241840] RSP: 002b:00007fac03b38188 EFLAGS: 00000246 ORIG_RAX: 0000000000000133 [ 3076.243501] RAX: ffffffffffffffda RBX: 00007fac066d5f60 RCX: 00007fac065c2b19 [ 3076.245071] RDX: 0000000000000001 RSI: 0000000020002040 RDI: 0000000000000003 [ 3076.246621] RBP: 00007fac03b381d0 R08: 0000000000000000 R09: 0000000000000000 [ 3076.248179] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 3076.249732] R13: 00007ffe4d4b793f R14: 00007fac03b38300 R15: 0000000000022000 19:56:16 executing program 1: sendmsg$ETHTOOL_MSG_FEATURES_SET(0xffffffffffffffff, 0x0, 0x0) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x0, 0x54}, 0x0, 0x0, 0x0, 0x0, 0x0, 0xaf}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) io_setup(0xf7, &(0x7f0000000000)) io_setup(0x735, &(0x7f0000000040)=0x0) io_destroy(r0) r1 = openat$sr(0xffffffffffffff9c, &(0x7f00000035c0), 0xe8b02, 0x0) r2 = syz_io_uring_setup(0x21, &(0x7f0000000080)={0x0, 0x0, 0x2, 0x0, 0x189}, &(0x7f0000ffb000/0x2000)=nil, &(0x7f00000b0000)=nil, 0x0, &(0x7f0000002a40)) r3 = eventfd(0x0) io_uring_register$IORING_REGISTER_EVENTFD(r2, 0x4, &(0x7f0000000140)=r3, 0x1) r4 = open$dir(&(0x7f0000000000)='.\x00', 0x0, 0x0) ioctl$FS_IOC_SETFLAGS(r4, 0x40086602, &(0x7f00000002c0)=0x4000) ioctl$FS_IOC_SETFLAGS(r4, 0x40086602, &(0x7f0000000040)) openat(r4, 0x0, 0x0, 0x0) syz_open_procfs(0x0, &(0x7f0000000580)='net/ptype\x00') ioctl$AUTOFS_DEV_IOCTL_TIMEOUT(0xffffffffffffffff, 0xc018937a, &(0x7f0000000700)=ANY=[@ANYRES32=r1]) [ 3076.275011] FAULT_INJECTION: forcing a failure. [ 3076.275011] name failslab, interval 1, probability 0, space 0, times 0 [ 3076.277339] CPU: 1 PID: 21914 Comm: syz-executor.6 Not tainted 5.10.207 #1 [ 3076.278775] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 3076.280482] Call Trace: [ 3076.281025] dump_stack+0x107/0x167 [ 3076.281782] should_fail.cold+0x5/0xa [ 3076.282569] ? jbd2__journal_start+0x190/0x7e0 [ 3076.283503] should_failslab+0x5/0x20 [ 3076.284286] kmem_cache_alloc+0x5b/0x310 [ 3076.285136] ? __kernel_text_address+0x9/0x40 [ 3076.286057] jbd2__journal_start+0x190/0x7e0 [ 3076.287007] __ext4_journal_start_sb+0x214/0x390 [ 3076.287982] ext4_iomap_begin+0x485/0x700 [ 3076.288868] ? ext4_iomap_begin_report+0x5a0/0x5a0 [ 3076.289864] ? kasan_save_stack+0x1b/0x40 [ 3076.290715] ? ext4_file_write_iter+0xb26/0x18d0 [ 3076.291688] ? truncate_exceptional_pvec_entries.part.0+0x510/0x510 [ 3076.292992] ? splice_direct_to_actor+0x387/0x980 [ 3076.293969] ? do_splice_direct+0x1c4/0x290 [ 3076.294849] ? vfs_copy_file_range+0x4f8/0x1290 [ 3076.295800] ? __do_sys_copy_file_range+0x193/0x420 [ 3076.296839] ? do_syscall_64+0x33/0x40 [ 3076.297631] ? entry_SYSCALL_64_after_hwframe+0x62/0xc7 [ 3076.298725] iomap_apply+0x164/0x810 [ 3076.299488] ? iomap_dio_rw+0x90/0x90 [ 3076.300281] ? trace_event_raw_event_iomap_apply+0x430/0x430 [ 3076.301478] ? mark_held_locks+0x9e/0xe0 [ 3076.302326] ? filemap_check_errors+0xa5/0x150 [ 3076.303258] __iomap_dio_rw+0x6cd/0x1110 [ 3076.304101] ? iomap_dio_rw+0x90/0x90 [ 3076.304901] ? iomap_dio_bio_actor+0xef0/0xef0 [ 3076.305827] ? ext4_orphan_add+0x253/0x9e0 [ 3076.306691] ? jbd2_buffer_abort_trigger+0x80/0x80 [ 3076.307693] ? ext4_empty_dir+0xae0/0xae0 [ 3076.308549] ? jbd2__journal_start+0xf3/0x7e0 [ 3076.309477] iomap_dio_rw+0x31/0x90 [ 3076.310226] ext4_file_write_iter+0xb26/0x18d0 [ 3076.311177] ? ext4_file_read_iter+0x4c0/0x4c0 [ 3076.312117] ? kasan_save_stack+0x32/0x40 [ 3076.312963] ? kasan_save_stack+0x1b/0x40 [ 3076.313812] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 3076.314840] ? iter_file_splice_write+0x16d/0xc30 [ 3076.315820] ? direct_splice_actor+0x10f/0x170 [ 3076.316767] ? splice_direct_to_actor+0x387/0x980 [ 3076.317748] ? do_splice_direct+0x1c4/0x290 [ 3076.318623] ? vfs_copy_file_range+0x4f8/0x1290 [ 3076.319573] ? __do_sys_copy_file_range+0x193/0x420 [ 3076.320610] do_iter_readv_writev+0x476/0x750 [ 3076.321531] ? new_sync_write+0x660/0x660 [ 3076.322374] ? selinux_file_permission+0x92/0x520 [ 3076.323385] do_iter_write+0x191/0x670 [ 3076.324192] ? trace_hardirqs_on+0x5b/0x180 [ 3076.325088] vfs_iter_write+0x70/0xa0 [ 3076.325870] iter_file_splice_write+0x762/0xc30 [ 3076.326840] ? generic_splice_sendpage+0x140/0x140 [ 3076.327855] ? avc_policy_seqno+0x9/0x70 [ 3076.328705] ? selinux_file_permission+0x92/0x520 [ 3076.329703] ? lockdep_init_map_type+0x2c7/0x780 [ 3076.330675] ? generic_splice_sendpage+0x140/0x140 [ 3076.331701] direct_splice_actor+0x10f/0x170 [ 3076.332615] splice_direct_to_actor+0x387/0x980 [ 3076.333577] ? pipe_to_sendpage+0x380/0x380 [ 3076.334466] ? do_splice_to+0x160/0x160 [ 3076.335290] ? security_file_permission+0x24e/0x570 [ 3076.336336] do_splice_direct+0x1c4/0x290 [ 3076.337201] ? splice_direct_to_actor+0x980/0x980 [ 3076.338182] ? selinux_file_permission+0x92/0x520 [ 3076.339176] ? security_file_permission+0x24e/0x570 [ 3076.340228] vfs_copy_file_range+0x4f8/0x1290 [ 3076.341167] ? generic_file_rw_checks+0x240/0x240 [ 3076.342198] __do_sys_copy_file_range+0x193/0x420 [ 3076.343184] ? vfs_copy_file_range+0x1290/0x1290 [ 3076.344151] ? ksys_write+0x1a9/0x260 [ 3076.344933] ? __ia32_sys_read+0xb0/0xb0 [ 3076.345780] do_syscall_64+0x33/0x40 [ 3076.346538] entry_SYSCALL_64_after_hwframe+0x62/0xc7 [ 3076.347579] RIP: 0033:0x7fec371d4b19 [ 3076.348362] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 3076.352075] RSP: 002b:00007fec34729188 EFLAGS: 00000246 ORIG_RAX: 0000000000000146 [ 3076.353691] RAX: ffffffffffffffda RBX: 00007fec372e8020 RCX: 00007fec371d4b19 [ 3076.355131] RDX: 0000000000000007 RSI: 0000000000000000 RDI: 0000000000000008 [ 3076.356580] RBP: 00007fec347291d0 R08: 0000000000000c3a R09: 0000000000000000 [ 3076.358025] R10: 0000000020000280 R11: 0000000000000246 R12: 0000000000000002 [ 3076.359676] R13: 00007ffec551fc1f R14: 00007fec34729300 R15: 0000000000022000 [ 3076.446343] EXT4-fs (loop5): mounted filesystem without journal. Opts: noblock_validity,,errors=continue [ 3076.450274] EXT4-fs (loop6): mounted filesystem without journal. Opts: ,errors=continue 19:56:16 executing program 3: fcntl$setpipe(0xffffffffffffffff, 0x407, 0x0) r0 = perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x248e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f0000000000), 0x1}, 0x31}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r1 = syz_io_uring_complete(0x0) r2 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000180), 0xffffffffffffffff) sendmsg$NL80211_CMD_DEL_NAN_FUNCTION(r1, &(0x7f0000000240)={&(0x7f00000000c0)={0x10, 0x0, 0x0, 0x1001000}, 0xc, &(0x7f00000001c0)={&(0x7f0000001280)={0x44, r2, 0x100, 0x70bd2c, 0x25dfdbfe, {{}, {@void, @val={0x55, 0x99, {0x8001, 0x1a}}}}, [@NL80211_ATTR_COOKIE={0xc, 0x58, 0x49}, @NL80211_ATTR_COOKIE={0xc, 0x58, 0x60}, @NL80211_ATTR_COOKIE={0xc, 0x58, 0x70}]}, 0x44}, 0x1, 0x0, 0x0, 0x20008015}, 0x4044080) pkey_mprotect(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x2000008, 0xffffffffffffffff) ioctl$INCFS_IOC_GET_FILLED_BLOCKS(0xffffffffffffffff, 0x80286722, &(0x7f0000000140)={&(0x7f0000000100)=""/8, 0x8, 0xfff, 0x401}) r3 = openat$procfs(0xffffffffffffff9c, &(0x7f0000002700)='/proc/stat\x00', 0x0, 0x0) r4 = openat$tcp_mem(0xffffffffffffff9c, &(0x7f0000000080)='/proc/sys/net/ipv4/tcp_wmem\x00', 0x1, 0x0) sendfile(r4, r3, &(0x7f0000000040)=0xb, 0x80000001) ioctl$BTRFS_IOC_DEV_INFO(0xffffffffffffffff, 0xd000941e, &(0x7f0000000280)={0x0, "49b585c196fe935f749c6bda18633872"}) pidfd_getfd(r3, r0, 0x0) ioctl$TIOCGPGRP(0xffffffffffffffff, 0x540f, &(0x7f0000000200)) [ 3076.499755] EXT4-fs (loop5): re-mounted. Opts: (null) [ 3076.525304] 9pnet: p9_fd_create_unix (21861): problem connecting socket: ./file0: -111 19:56:16 executing program 2: r0 = socket$inet_icmp_raw(0x2, 0x3, 0x1) r1 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a) ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000140)={'syz_tun\x00', 0x0}) perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) sendmmsg$inet(r0, &(0x7f0000002040)=[{{&(0x7f0000000380)={0x2, 0x0, @multicast1}, 0x10, &(0x7f0000001600)=[{&(0x7f00000003c0)="db9c", 0xffe7}], 0x1, &(0x7f0000001640)=ANY=[@ANYBLOB="14000000000000000000000007000000c4048f01000000001c000000000000000000000008000000", @ANYRES32=r2], 0x38}}], 0x1, 0x0) (fail_nth: 8) [ 3076.560981] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium 19:56:16 executing program 7: syz_io_uring_setup(0x1d79, &(0x7f0000000240)={0x0, 0x0, 0x2}, &(0x7f0000ffd000/0x1000)=nil, &(0x7f0000ffd000/0x3000)=nil, &(0x7f00000002c0), 0x0) perf_event_open(&(0x7f00000000c0)={0x2, 0x80, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) msgget$private(0x0, 0x0) msgctl$MSG_STAT(0xffffffffffffffff, 0xb, &(0x7f0000000040)=""/97) mlock2(&(0x7f0000ffd000/0x3000)=nil, 0x3000, 0x1) r0 = msgget$private(0x0, 0x0) msgsnd(r0, &(0x7f0000000000)={0x2}, 0x8, 0x0) msgrcv(r0, 0xfffffffffffffffe, 0x0, 0x0, 0x3000) msgctl$IPC_RMID(r0, 0x0) msgctl$MSG_STAT_ANY(r0, 0xd, &(0x7f0000000180)=""/32) msgrcv(0x0, 0xfffffffffffffffe, 0x0, 0x0, 0x3000) msgctl$IPC_RMID(0x0, 0x0) [ 3076.676369] FAULT_INJECTION: forcing a failure. [ 3076.676369] name failslab, interval 1, probability 0, space 0, times 0 [ 3076.679224] CPU: 0 PID: 21987 Comm: syz-executor.2 Not tainted 5.10.207 #1 [ 3076.680771] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 3076.682640] Call Trace: [ 3076.683227] dump_stack+0x107/0x167 [ 3076.684041] should_fail.cold+0x5/0xa [ 3076.684899] ? create_object.isra.0+0x3a/0xa20 [ 3076.685913] should_failslab+0x5/0x20 [ 3076.686749] kmem_cache_alloc+0x5b/0x310 [ 3076.687647] ? unwind_next_frame+0x13ef/0x1a90 [ 3076.688666] create_object.isra.0+0x3a/0xa20 [ 3076.689637] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 3076.690759] __kmalloc+0x16e/0x390 [ 3076.691538] ? perf_tp_event+0x5ce/0xc00 [ 3076.692472] ip_options_get+0xa5/0x430 [ 3076.693334] ? ip_options_undo+0x460/0x460 [ 3076.694273] ? arch_stack_walk+0x99/0xf0 [ 3076.695173] ? mark_lock+0xf5/0x2df0 [ 3076.696018] ip_cmsg_send+0x888/0xa50 [ 3076.696888] ? arch_stack_walk+0x99/0xf0 [ 3076.697819] raw_sendmsg+0xc0a/0x29d0 [ 3076.698685] ? dst_output+0x170/0x170 [ 3076.699523] ? perf_trace_run_bpf_submit+0xf5/0x190 [ 3076.700655] ? perf_trace_lock+0x2bd/0x490 [ 3076.701596] ? SOFTIRQ_verbose+0x10/0x10 [ 3076.702503] ? __lockdep_reset_lock+0x180/0x180 [ 3076.703526] ? lock_release+0x680/0x680 [ 3076.704430] ? sock_has_perm+0x1ea/0x280 [ 3076.705331] ? selinux_socket_post_create+0x7f0/0x7f0 [ 3076.706461] ? find_held_lock+0x2c/0x110 [ 3076.707388] ? trace_hardirqs_on+0x5b/0x180 [ 3076.708357] ? dst_output+0x170/0x170 [ 3076.709206] inet_sendmsg+0x11d/0x140 [ 3076.710048] ? inet_send_prepare+0x540/0x540 [ 3076.711012] __sock_sendmsg+0x13c/0x190 [ 3076.711895] ____sys_sendmsg+0x334/0x870 [ 3076.712819] ? sock_write_iter+0x3d0/0x3d0 [ 3076.713751] ? do_recvmmsg+0x6d0/0x6d0 [ 3076.714605] ? perf_trace_lock+0x2bd/0x490 [ 3076.715559] ? __lockdep_reset_lock+0x180/0x180 [ 3076.716609] ___sys_sendmsg+0xf3/0x170 [ 3076.717476] ? sendmsg_copy_msghdr+0x160/0x160 [ 3076.718495] ? lock_downgrade+0x6d0/0x6d0 [ 3076.719421] ? perf_trace_run_bpf_submit+0xf5/0x190 [ 3076.720544] ? __fget_files+0x296/0x4c0 [ 3076.721452] ? __fget_light+0xea/0x290 [ 3076.722331] __sys_sendmmsg+0x195/0x470 [ 3076.723224] ? __ia32_sys_sendmsg+0xb0/0xb0 [ 3076.724189] ? lock_downgrade+0x6d0/0x6d0 [ 3076.725148] ? __mutex_unlock_slowpath+0xe1/0x600 [ 3076.726221] ? wait_for_completion_io+0x270/0x270 [ 3076.727286] ? rcu_read_lock_any_held+0x75/0xa0 [ 3076.728314] ? vfs_write+0x354/0xa70 [ 3076.729141] ? fput_many+0x2f/0x1a0 [ 3076.729950] ? ksys_write+0x1a9/0x260 [ 3076.730786] ? __ia32_sys_read+0xb0/0xb0 [ 3076.731699] __x64_sys_sendmmsg+0x99/0x100 [ 3076.732638] do_syscall_64+0x33/0x40 [ 3076.733460] entry_SYSCALL_64_after_hwframe+0x62/0xc7 [ 3076.734579] RIP: 0033:0x7fac065c2b19 [ 3076.735402] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 3076.739470] RSP: 002b:00007fac03b38188 EFLAGS: 00000246 ORIG_RAX: 0000000000000133 [ 3076.741154] RAX: ffffffffffffffda RBX: 00007fac066d5f60 RCX: 00007fac065c2b19 [ 3076.742719] RDX: 0000000000000001 RSI: 0000000020002040 RDI: 0000000000000003 [ 3076.744293] RBP: 00007fac03b381d0 R08: 0000000000000000 R09: 0000000000000000 [ 3076.745857] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 3076.747427] R13: 00007ffe4d4b793f R14: 00007fac03b38300 R15: 0000000000022000 19:56:16 executing program 4: syz_80211_inject_frame(&(0x7f00000000c0)=@device_a={0x8, 0x2, 0x11, 0x16}, &(0x7f0000000440)=ANY=[], 0x2f) 19:56:16 executing program 6: syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000140)='./file0\x00', 0x40000, 0x4, &(0x7f0000000200)=[{&(0x7f0000010000)="20000000000100000c000000d40000000f000000010000000000000000000000002000000020000020000000d7f4655fd7f4655f0100ffff53ef010001000000d7f4655f000000000000000001000000000000000b0000000002", 0x5a, 0x400}, {&(0x7f0000010400)="030000000400000005000000d4000f", 0xf, 0x800}, {&(0x7f0000000500)="ffffffffff070000000000000000000000000000000000000000000000000080ffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffff", 0x402, 0xc00}, {&(0x7f0000010e00)="ed41000000040000d7f4655fd7f4655fd7f4655f000000000000040002", 0x1d, 0x1600}], 0x0, &(0x7f00000003c0)=ANY=[]) chdir(&(0x7f0000000040)='./file0\x00') openat(0xffffffffffffff9c, &(0x7f0000000080)='./file1\x00', 0x105142, 0x0) r0 = openat(0xffffffffffffff9c, &(0x7f0000000200)='./file1\x00', 0x2, 0x0) write(r0, &(0x7f0000000240)="01", 0x1) r1 = openat(0xffffffffffffff9c, &(0x7f00000000c0)='./file2\x00', 0x105142, 0x0) r2 = openat(0xffffffffffffff9c, &(0x7f0000001340)='./file1\x00', 0x0, 0x0) copy_file_range(r2, 0x0, r1, &(0x7f0000000280)=0x10000, 0xc3a, 0x0) (fail_nth: 17) openat$sr(0xffffffffffffff9c, 0x0, 0x0, 0x0) [ 3076.823626] cgroup: fork rejected by pids controller in /syz1 19:56:16 executing program 5: pipe2(0x0, 0x0) getsockopt$IPT_SO_GET_REVISION_MATCH(0xffffffffffffffff, 0x0, 0x42, &(0x7f00000014c0)={'HL\x00'}, &(0x7f0000001540)=0x1e) pipe2(0x0, 0x0) r0 = perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x3}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) read(0xffffffffffffffff, &(0x7f0000001340)=""/77, 0xffffffffffffff51) r1 = socket$netlink(0x10, 0x3, 0x0) sendmsg$nl_generic(r1, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000003f40)=ANY=[@ANYBLOB="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"], 0x1248}, 0x1, 0x0, 0x0, 0x48804}, 0x20000040) r2 = socket$inet6_udplite(0xa, 0x2, 0x88) fallocate(r0, 0x10, 0x8000, 0x20) r3 = dup(r2) r4 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a) ioctl$sock_SIOCGIFINDEX(r4, 0x8933, &(0x7f0000000140)={'syz_tun\x00', 0x0}) ioctl$sock_inet6_SIOCDIFADDR(r3, 0x8936, &(0x7f0000000080)={@rand_addr=' \x01\x00', 0x16, r5}) sendmsg$nl_generic(r3, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000002e80)=ANY=[@ANYBLOB="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"], 0x10a0}, 0x1, 0x0, 0x0, 0x20000841}, 0x40014) copy_file_range(0xffffffffffffffff, &(0x7f0000000200)=0xffffffffffffffff, 0xffffffffffffffff, &(0x7f0000000240)=0xff, 0x7, 0x0) sendmsg$nl_generic(r1, &(0x7f00000015c0)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x8000}, 0xc, &(0x7f0000001580)={0x0, 0x224}, 0x1, 0x0, 0x0, 0x4004000}, 0x0) io_uring_setup(0x5473, &(0x7f00000000c0)={0x0, 0x7ba4, 0x3a, 0x1, 0x1c0, 0x0, r0}) sendmsg$ETHTOOL_MSG_CHANNELS_SET(r1, &(0x7f0000001480)={&(0x7f00000013c0)={0x10, 0x0, 0x0, 0x8000}, 0xc, &(0x7f0000001440)={&(0x7f0000001400)=ANY=[@ANYBLOB="1418eb00", @ANYRES16=0x0, @ANYBLOB="200000000000ffdbdf2512000000"], 0x14}, 0x1, 0x0, 0x0, 0x20000810}, 0x4000000) syz_genetlink_get_family_id$nbd(&(0x7f0000001500), 0xffffffffffffffff) setsockopt$inet6_udp_int(r3, 0x11, 0xa, &(0x7f0000000000)=0x6, 0x4) [ 3076.855946] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium [ 3076.862691] EXT4-fs (loop6): mounted filesystem without journal. Opts: ,errors=continue [ 3076.888694] FAULT_INJECTION: forcing a failure. [ 3076.888694] name failslab, interval 1, probability 0, space 0, times 0 [ 3076.891210] CPU: 0 PID: 22018 Comm: syz-executor.6 Not tainted 5.10.207 #1 [ 3076.892767] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 3076.894609] Call Trace: [ 3076.895206] dump_stack+0x107/0x167 [ 3076.896038] should_fail.cold+0x5/0xa [ 3076.896921] ? create_object.isra.0+0x3a/0xa20 [ 3076.897943] should_failslab+0x5/0x20 [ 3076.898791] kmem_cache_alloc+0x5b/0x310 [ 3076.899702] create_object.isra.0+0x3a/0xa20 [ 3076.900688] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 3076.901821] kmem_cache_alloc+0x159/0x310 [ 3076.902753] ext4_mb_new_blocks+0x209f/0x45b0 [ 3076.903782] ? ext4_new_meta_blocks+0x16e/0x320 [ 3076.904834] ? ext4_should_retry_alloc+0x240/0x240 [ 3076.905924] ? ext4_discard_preallocations+0xd80/0xd80 [ 3076.907088] ? ext4_get_branch+0x541/0x6d0 [ 3076.908048] ext4_ind_map_blocks+0x17de/0x2150 [ 3076.909106] ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0 [ 3076.910281] ? ext4_free_branches+0x680/0x680 [ 3076.911302] ? lock_release+0x680/0x680 [ 3076.912233] ? down_write+0xe0/0x160 [ 3076.913062] ? down_write_killable+0x180/0x180 [ 3076.914092] ext4_map_blocks+0x9ed/0x1940 [ 3076.915028] ? __kernel_text_address+0x9/0x40 [ 3076.916024] ? ext4_issue_zeroout+0x1c0/0x1c0 [ 3076.917042] ? ext4_journal_check_start+0x1b3/0x2a0 [ 3076.918151] ? __ext4_journal_start_sb+0x1db/0x390 [ 3076.919231] ? ext4_meta_trans_blocks+0x25c/0x310 [ 3076.920316] ext4_iomap_begin+0x3ad/0x700 [ 3076.921251] ? ext4_iomap_begin_report+0x5a0/0x5a0 [ 3076.922331] ? kasan_save_stack+0x1b/0x40 [ 3076.923254] ? ext4_file_write_iter+0xb26/0x18d0 [ 3076.924311] ? truncate_exceptional_pvec_entries.part.0+0x510/0x510 [ 3076.925689] ? splice_direct_to_actor+0x387/0x980 [ 3076.926739] ? do_splice_direct+0x1c4/0x290 [ 3076.927682] ? vfs_copy_file_range+0x4f8/0x1290 [ 3076.928724] ? __do_sys_copy_file_range+0x193/0x420 [ 3076.929814] ? do_syscall_64+0x33/0x40 [ 3076.930668] ? entry_SYSCALL_64_after_hwframe+0x62/0xc7 [ 3076.931839] iomap_apply+0x164/0x810 [ 3076.932678] ? iomap_dio_rw+0x90/0x90 [ 3076.933515] ? trace_event_raw_event_iomap_apply+0x430/0x430 [ 3076.934788] ? mark_held_locks+0x9e/0xe0 [ 3076.935695] ? filemap_check_errors+0xa5/0x150 [ 3076.936723] __iomap_dio_rw+0x6cd/0x1110 [ 3076.937607] ? iomap_dio_rw+0x90/0x90 [ 3076.938470] ? iomap_dio_bio_actor+0xef0/0xef0 [ 3076.939464] ? generic_update_time+0x21c/0x370 [ 3076.940474] ? ext4_orphan_add+0x253/0x9e0 [ 3076.941394] ? inode_dio_wait+0xbf/0x270 [ 3076.942297] ? ext4_empty_dir+0xae0/0xae0 [ 3076.943223] ? ext4_journal_check_start+0x1b3/0x2a0 [ 3076.944334] iomap_dio_rw+0x31/0x90 [ 3076.945138] ext4_file_write_iter+0xb26/0x18d0 [ 3076.946169] ? ext4_file_read_iter+0x4c0/0x4c0 [ 3076.947171] ? kasan_save_stack+0x32/0x40 [ 3076.948083] ? kasan_save_stack+0x1b/0x40 [ 3076.949013] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 3076.950119] ? iter_file_splice_write+0x16d/0xc30 [ 3076.951174] ? direct_splice_actor+0x10f/0x170 [ 3076.952181] ? splice_direct_to_actor+0x387/0x980 [ 3076.953242] ? do_splice_direct+0x1c4/0x290 [ 3076.954186] ? vfs_copy_file_range+0x4f8/0x1290 [ 3076.955207] ? __do_sys_copy_file_range+0x193/0x420 [ 3076.956319] do_iter_readv_writev+0x476/0x750 [ 3076.957296] ? new_sync_write+0x660/0x660 [ 3076.958205] ? selinux_file_permission+0x92/0x520 [ 3076.959281] do_iter_write+0x191/0x670 [ 3076.960162] ? trace_hardirqs_on+0x5b/0x180 [ 3076.961108] vfs_iter_write+0x70/0xa0 [ 3076.961947] iter_file_splice_write+0x762/0xc30 [ 3076.962974] ? generic_splice_sendpage+0x140/0x140 [ 3076.964059] ? avc_policy_seqno+0x9/0x70 [ 3076.964959] ? selinux_file_permission+0x92/0x520 [ 3076.966040] ? lockdep_init_map_type+0x2c7/0x780 [ 3076.967095] ? generic_splice_sendpage+0x140/0x140 [ 3076.968183] direct_splice_actor+0x10f/0x170 [ 3076.969168] splice_direct_to_actor+0x387/0x980 [ 3076.970198] ? pipe_to_sendpage+0x380/0x380 [ 3076.971166] ? do_splice_to+0x160/0x160 [ 3076.972045] ? security_file_permission+0x24e/0x570 [ 3076.973176] do_splice_direct+0x1c4/0x290 [ 3076.974088] ? splice_direct_to_actor+0x980/0x980 [ 3076.975139] ? selinux_file_permission+0x92/0x520 [ 3076.976214] ? security_file_permission+0x24e/0x570 [ 3076.977336] vfs_copy_file_range+0x4f8/0x1290 [ 3076.978338] ? generic_file_rw_checks+0x240/0x240 [ 3076.979447] __do_sys_copy_file_range+0x193/0x420 [ 3076.980539] ? vfs_copy_file_range+0x1290/0x1290 [ 3076.981582] ? ksys_write+0x1a9/0x260 [ 3076.982421] ? __ia32_sys_read+0xb0/0xb0 [ 3076.983365] do_syscall_64+0x33/0x40 [ 3076.984194] entry_SYSCALL_64_after_hwframe+0x62/0xc7 [ 3076.985322] RIP: 0033:0x7fec371d4b19 [ 3076.986139] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 3076.990190] RSP: 002b:00007fec3474a188 EFLAGS: 00000246 ORIG_RAX: 0000000000000146 [ 3076.991865] RAX: ffffffffffffffda RBX: 00007fec372e7f60 RCX: 00007fec371d4b19 [ 3076.993426] RDX: 0000000000000006 RSI: 0000000000000000 RDI: 0000000000000007 [ 3076.994965] RBP: 00007fec3474a1d0 R08: 0000000000000c3a R09: 0000000000000000 [ 3076.996518] R10: 0000000020000280 R11: 0000000000000246 R12: 0000000000000002 [ 3076.996663] netlink: 4648 bytes leftover after parsing attributes in process `syz-executor.5'. [ 3076.998048] R13: 00007ffec551fc1f R14: 00007fec3474a300 R15: 0000000000022000 [ 3077.176693] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium 19:56:31 executing program 2: r0 = socket$inet_icmp_raw(0x2, 0x3, 0x1) r1 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a) ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000140)={'syz_tun\x00', 0x0}) perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) sendmmsg$inet(r0, &(0x7f0000002040)=[{{&(0x7f0000000380)={0x2, 0x0, @multicast1}, 0x10, &(0x7f0000001600)=[{&(0x7f00000003c0)="db9c", 0xffe7}], 0x1, &(0x7f0000001640)=ANY=[@ANYBLOB="14000000000000000000000007000000c4048f01000000001c000000000000000000000008000000", @ANYRES32=r2], 0x38}}], 0x1, 0x0) (fail_nth: 9) 19:56:31 executing program 3: syz_open_dev$tty20(0xc, 0x4, 0x1) r0 = dup(0xffffffffffffffff) ioctl$SG_NEXT_CMD_LEN(0xffffffffffffffff, 0x2283, &(0x7f0000000000)=0x96) ioctl$AUTOFS_DEV_IOCTL_TIMEOUT(0xffffffffffffffff, 0xc018937a, 0x0) syz_mount_image$ext4(0x0, &(0x7f0000000100)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0) mount(0x0, &(0x7f0000000040)='./file0\x00', &(0x7f0000000500)='ramfs\x00', 0x0, 0x0) perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) symlink(&(0x7f0000000000)='./file1\x00', &(0x7f0000000080)='./file0/file0\x00') creat(&(0x7f0000000480)='./file0/file0\x00', 0x0) unlink(&(0x7f00000007c0)='./file0/file1\x00') r1 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x2010, 0xffffffffffffffff, 0x0) syz_io_uring_submit(r1, 0x0, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x3, 0x0, 0xffffffffffffffff, 0x0}, 0x8001) syz_io_uring_submit(r1, 0x0, &(0x7f00000005c0)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0xa, 0x8, &(0x7f0000000580)=[{&(0x7f00000003c0)=""/5, 0x5}, {&(0x7f0000000400)=""/66, 0x42}, {&(0x7f0000000480)=""/27, 0x1b}, {&(0x7f00000004c0)=""/157, 0x9d}], 0x4, 0x6}, 0x1) ioctl$TIOCSTI(r0, 0x5412, 0x0) r2 = syz_io_uring_setup(0x4d4e, &(0x7f00000002c0)={0x0, 0x0, 0x0, 0xffffffff, 0x2}, &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000200)=0x0, &(0x7f0000000140)=0x0) ioctl$SG_GET_SCSI_ID(r0, 0x2276, 0x0) syz_io_uring_submit(r3, r4, &(0x7f0000000000)=@IORING_OP_WRITE={0x17, 0x0, 0x0, @fd_index=0x3, 0x0, &(0x7f0000000240)="6623ed122eaa0e703cefb5", 0xb, 0x0, 0x1}, 0x0) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x80004, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x0, 0x2, 0x8001, 0x0, 0x0, 0x400000, 0x1}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) io_uring_enter(r2, 0x58ab, 0x0, 0x0, 0x0, 0x0) 19:56:31 executing program 5: ftruncate(0xffffffffffffffff, 0x0) r0 = open(&(0x7f0000000140)='./file1\x00', 0x141180, 0x38) statx(0xffffffffffffffff, &(0x7f0000000180)='./file1\x00', 0x100, 0x8, &(0x7f00000001c0)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0}) lstat(&(0x7f00000002c0)='./file1\x00', 0x0) syz_open_dev$vcsn(0x0, 0x4, 0x0) ioctl$SNDRV_TIMER_IOCTL_CONTINUE(r0, 0x54a2) fchownat(0xffffffffffffff9c, &(0x7f00000003c0)='./file1\x00', r1, r2, 0x1000) socket$nl_generic(0x10, 0x3, 0x10) ioctl$FS_IOC_FSSETXATTR(0xffffffffffffffff, 0x40086602, 0x0) socket$inet_udplite(0x2, 0x2, 0x88) r3 = openat$vcsu(0xffffffffffffff9c, &(0x7f0000000400), 0x303242, 0x0) syz_io_uring_setup(0x4d4f, &(0x7f00000002c0), &(0x7f0000ffe000/0x1000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=0x0, &(0x7f0000000140)=0x0) r6 = openat$full(0xffffffffffffff9c, &(0x7f0000000040), 0x0, 0x0) syz_io_uring_submit(r4, r5, &(0x7f0000000000)=@IORING_OP_READV=@use_registered_buffer={0x1, 0x0, 0x0, @fd=r6}, 0x0) getsockopt$inet_IP_XFRM_POLICY(r0, 0x0, 0x11, &(0x7f00000005c0)={{{@in, @in6=@mcast2}}, {{@in=@multicast1}, 0x0, @in6=@loopback}}, 0x0) ioctl$ifreq_SIOCGIFINDEX_vcan(0xffffffffffffffff, 0x8933, &(0x7f0000000380)={'vcan0\x00'}) ioctl$AUTOFS_IOC_PROTOVER(r3, 0x80049363, &(0x7f0000000040)) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x400}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r7 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$nl_generic(r7, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000480)={&(0x7f00000004c0)=ANY=[@ANYBLOB="1c0000001d00210c0000000000000000fdff020008000c00e8ffffff0a0c299fc0b24eef9aab1fe559f33f1a6b147aa3c172f1d88e383891f4351a55ffff0000b91d62a9adf8ad4742507c76572ea4"], 0x1c}}, 0x0) 19:56:31 executing program 4: syz_80211_inject_frame(&(0x7f00000000c0)=@device_a={0x8, 0x2, 0x11, 0x17}, &(0x7f0000000440)=ANY=[], 0x2f) 19:56:31 executing program 6: syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000140)='./file0\x00', 0x40000, 0x4, &(0x7f0000000200)=[{&(0x7f0000010000)="20000000000100000c000000d40000000f000000010000000000000000000000002000000020000020000000d7f4655fd7f4655f0100ffff53ef010001000000d7f4655f000000000000000001000000000000000b0000000002", 0x5a, 0x400}, {&(0x7f0000010400)="030000000400000005000000d4000f", 0xf, 0x800}, {&(0x7f0000000500)="ffffffffff070000000000000000000000000000000000000000000000000080ffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffff", 0x402, 0xc00}, {&(0x7f0000010e00)="ed41000000040000d7f4655fd7f4655fd7f4655f000000000000040002", 0x1d, 0x1600}], 0x0, &(0x7f00000003c0)=ANY=[]) chdir(&(0x7f0000000040)='./file0\x00') openat(0xffffffffffffff9c, &(0x7f0000000080)='./file1\x00', 0x105142, 0x0) r0 = openat(0xffffffffffffff9c, &(0x7f0000000200)='./file1\x00', 0x2, 0x0) write(r0, &(0x7f0000000240)="01", 0x1) r1 = openat(0xffffffffffffff9c, &(0x7f00000000c0)='./file2\x00', 0x105142, 0x0) r2 = openat(0xffffffffffffff9c, &(0x7f0000001340)='./file1\x00', 0x0, 0x0) copy_file_range(r2, 0x0, r1, &(0x7f0000000280)=0x10000, 0xc3a, 0x0) (fail_nth: 18) openat$sr(0xffffffffffffff9c, 0x0, 0x0, 0x0) 19:56:31 executing program 7: r0 = socket$inet_icmp_raw(0x2, 0x3, 0x1) r1 = openat$vcsu(0xffffffffffffff9c, &(0x7f0000000080), 0x10000, 0x0) ioctl$sock_inet_SIOCDARP(r1, 0x8953, &(0x7f0000002a80)={{0x2, 0x4e20, @multicast1}, {0x6, @broadcast}, 0x2, {0x2, 0x4e24, @multicast1}, 'batadv_slave_0\x00'}) setsockopt$inet_group_source_req(r0, 0x0, 0x2e, &(0x7f0000000100)={0x1, {{0x2, 0x0, @multicast2}}}, 0x108) setsockopt$inet_group_source_req(r0, 0x0, 0x2e, &(0x7f0000000240)={0x4, {{0x2, 0x0, @multicast2}}, {{0x2, 0x0, @multicast2}}}, 0x108) ioctl$BTRFS_IOC_GET_SUPPORTED_FEATURES(r0, 0x80489439, &(0x7f0000002b00)) sendmmsg$inet(r0, &(0x7f0000002a00)=[{{&(0x7f0000000000)={0x2, 0x4e23, @local}, 0x10, &(0x7f00000000c0)=[{&(0x7f0000000040)="c6cdcf5393c094db60c78f0dc972db3eeabd57c1c8af335fd5bf48648802b74913b339a9d4497f2cde9f4540a5678279f4d5ac787d24", 0x36}, {&(0x7f0000000440)="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", 0x1000}, {&(0x7f0000000080)}, {&(0x7f0000001440)="91d882eca8e5411647bf862ab2082e986abcbe30385015e6ac0aeecf4feb6e7b4939c4b05d4e509d1537700da9fc1f312feb9d49615d33e6ebc84879e0a6600c3c90ffa9577c51c5634a26b1f86f070f1cf64a971ab351de56cfd71af08efd7fed9e7bee52c2d7493deec8e967fd2890705cff92ef52edfdb964ce8345d2c5f90f81ca6e060c0621c545f0b2", 0x8c}], 0x4}}, {{&(0x7f0000000380)={0x2, 0x4e21, @loopback}, 0x10, &(0x7f0000002840)=[{&(0x7f0000001500)="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", 0x1000}, {&(0x7f0000002500)="b93cdc0ee7926e995ca039bb1419258fa9bf07e208a17eeb4772c18ca2cb939397692e62ca3abc195f19302b089a15294be0ba4562ce8059cdab0eb7de7ddb6e200acd69b9b5a497b07566762089b8859e76579d6330cf82f4aae3608b0ec4e2b6f1d08b1c96507d34caa2ae06f38f0216995a95ff2e0c70f24b5c3f31ef377dea9020cd0fe0e624d2a81f70e9a294a7a1d7844811c6d6a70704c8a0d96b4c0b7d0db2089e365074b27a5d1540006f06e0adcac421ea48b1059d1bd52db5c7f22074e8ddcff4cf8d76b9c62ffd1ed74a3bb00dd2", 0xd4}, {&(0x7f0000002600)="4b289428c1585b0b98e9647be310f8d22aa2cc43badb50528524135f06ef93da512d2d94a155d4562029d0cc685ed78183dbd7504d748586578945a052716911f0a4b745fafccfb4f24eebf3bf2b92b2d7cac95947d4d96d29b237ce64e3f928d43aedc7902c79b87dfb91eccc49cbdf8b8b7352473443f942f77ee866f6240f58ec2a4f906a82f27304fb3f6b9c224496054542c6ddf91e2af7d0474e4ac9997596a6e7a7e958a1fa6051e08156b6e7024ba363d75825d6fb56e08e6e21abf99627a8ef61f8d043aba180a679", 0xcd}, {&(0x7f0000002700)="3cfd564157ebf6e69b20407e3ea803cb7175fa8f3419dee20e0596ad1884fabc252817b1c78d238cf2976ad03a72ecbd2f47b211ea3c8fdd3b02780a2d5e578bbe8475356a3704a626b99cce0d43557a078c92f1ebab62ad6c4bc9a4c0e570f881d7a257c1bdcb000c539d62089cdffee58f3910740fefd68da537d0f78244c65924572c43d713a6345d2dc1e6e37966aabb912916e15d1f4d0970e33bb5f1a4ad22db783572a729", 0xa8}, {&(0x7f00000003c0)="1aaba4a017d8382fc4cfb0aa17b27fd38ccff964be6cf9", 0x17}, {&(0x7f00000027c0)="a98f718db6932533128807e2f88ec7d2f042fe82edda1a974350d610b5ad595b42543394f60524494824c542a90c8e1f0feab156e121f81d0aaa2bf09ce6e0b6cd65afd99c8df1cb9bd4f980003c17a99627a9e1", 0x63}], 0x6, &(0x7f00000028c0)=ANY=[@ANYRES32=r0], 0x108}}], 0x5c6, 0x4) syz_emit_ethernet(0x3e, &(0x7f0000000400)={@link_local, @empty, @void, {@ipv4={0x800, @icmp={{0x5, 0x4, 0x0, 0x0, 0x30, 0x0, 0x0, 0x0, 0x1, 0x0, @initdev={0xac, 0x1e, 0x0, 0x0}, @multicast1}, @time_exceeded={0x3, 0x0, 0x0, 0x0, 0x0, 0x0, {0x5, 0x4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @initdev={0xac, 0x1e, 0x0, 0x0}}}}}}}, 0x0) 19:56:31 executing program 1: r0 = socket$netlink(0x10, 0x3, 0xc) r1 = getpgid(0x0) clone3(&(0x7f0000000580)={0x80040300, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, &(0x7f0000000540)=[r1], 0x1}, 0x58) getresuid(&(0x7f00000030c0)=0x0, &(0x7f0000003100), &(0x7f0000003140)) r3 = getpgid(0x0) clone3(&(0x7f0000000580)={0x80040300, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, &(0x7f0000000540)=[r3], 0x1}, 0x58) r4 = getgid() r5 = socket$inet6_tcp(0xa, 0x1, 0x0) getsockopt$inet6_int(r5, 0x29, 0x4, 0x0, &(0x7f0000000080)) r6 = openat$sr(0xffffffffffffff9c, &(0x7f0000005780), 0x8c440, 0x0) r7 = dup3(0xffffffffffffffff, 0xffffffffffffffff, 0x0) linkat(r7, &(0x7f0000000100)='./file0\x00', 0xffffffffffffffff, &(0x7f0000000140)='./file0/file0\x00', 0x1000) r8 = syz_open_procfs(0xffffffffffffffff, &(0x7f00000057c0)='net/igmp6\x00') r9 = socket$nl_route(0x10, 0x3, 0x0) r10 = perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) write$binfmt_elf32(r10, &(0x7f0000001e00)={{0x7f, 0x45, 0x4c, 0x46, 0xd1, 0xf2, 0x1, 0x4, 0x37c5, 0x2, 0x3, 0xc6, 0x3c4, 0x38, 0x326, 0x5d, 0x81, 0x20, 0x2, 0x800, 0x5, 0x7fff}, [{0x6474e554, 0x4, 0x180, 0x1, 0x7, 0x401, 0x7ff, 0x5ba}, {0x4, 0x0, 0x3ff, 0x9, 0x3, 0xfffffe00, 0x0, 0x7ff}], "26f187e682d6ce10e88d558abfbb2bf6cc25ce8b6f2c32", ['\x00', '\x00', '\x00', '\x00', '\x00']}, 0x58f) r11 = openat2$dir(0xffffffffffffff9c, &(0x7f0000005800)='./file0\x00', &(0x7f0000005840)={0x420c0, 0x181, 0x1}, 0x18) sendmmsg$unix(0xffffffffffffffff, &(0x7f0000005d80)=[{{0x0, 0x0, &(0x7f0000000440)=[{&(0x7f0000000140)="27033ddaea98e8eb1771f0023cd2f83d6f1fe4457ed1335b9b822f3b6c5b63809941f433549474bcb61a926087780f2925f8fd043c77067ccace3f4f6bab720f9aec162c781952d35f9328db8659e2e583d06af2f56e22950e42318ab4d60300cf52ae6c", 0x64}, {&(0x7f0000000280)="c9ff6e6e0c0774c841499d2f88622d8b8b9a7bf9722e011aa5476f8505a91b2308efa7c48a112772c1768cb1ad70b555a9c27d62396cb0e2345b121375f35b6d05b74311e5b38a2b97534815fedebed9d336499616ba1e641d71d114ea27a213a7a4abda1a3bbe2c535611e1c1e4152f951cde561ade67688b1263fb18765ddc1f82fed8586aae027740", 0x8a}, {&(0x7f00000001c0)="582e289c836d97c4", 0x8}, {&(0x7f0000000340)="b7767115b4f6a62088e21e0f4dbd02cf8cd71274d06b801f82fb81", 0x1b}, {&(0x7f0000000380)="e296162ec4e62b562b0a", 0xa}, {&(0x7f00000003c0)="bbfeb6e9b676935eaead5559ef449e8510508680c806ec2b1b6e6e013022d7a434a603ba6ba1b5b1c7d985e74e12c3a3aece2d0078b4211bfcb1f4df", 0x3c}, {&(0x7f0000000400)="29290b1dce260490b4be99114535b7802d610b6f59c6eb7c8891ef2fa3d38cdb38757e", 0x23}], 0x7, &(0x7f0000002dc0)=[@cred={{0x1c}}, @cred={{0x1c, 0x1, 0x2, {0x0, 0xffffffffffffffff, 0xee00}}}, @cred={{0x1c, 0x1, 0x2, {0xffffffffffffffff}}}, @rights={{0x28, 0x1, 0x1, [0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff]}}], 0x88, 0x8010}}, {{&(0x7f0000002e80)=@abs={0x1, 0x0, 0x4e23}, 0x6e, &(0x7f0000003080)=[{&(0x7f0000002f00)}, {&(0x7f0000002f40)}, {&(0x7f0000002f80)="7b6f11e1928b9f84c64a541e3a2c9c6ce90b146355aade1f99bb2a", 0x1b}, {&(0x7f0000002fc0)="a1bd0d80bd17a83827299e2baf2cf909debdc5b16d8c9075d63931d7ba823d797974779e171e3ee45bcc1cc02da8eb21221263f369ee0c0f66a8304eee06e7039ec72e8f45d7002c36a702647c80710cdfcb47230169ec5837e5de50b34c769a4ec879d4710447bc266ec3f0507550cada5b5cf91f23ab9ea5809ae130d6dc7d77663e110c3ba68f", 0x88}], 0x4, &(0x7f0000003180)=[@rights={{0x14, 0x1, 0x1, [r0]}}, @cred={{0x1c, 0x1, 0x2, {r1, r2, 0xffffffffffffffff}}}, @cred={{0x1c, 0x1, 0x2, {r3, 0xffffffffffffffff, r4}}}], 0x58}}, {{0x0, 0x0, &(0x7f0000004280)=[{&(0x7f0000003200)="aae8c6e065f65b9a1e93a6e2a7d8b59f2df38080c01c29ae5c2fea02c53a20", 0x1f}, {&(0x7f0000003240)="6db5f7f6b5dda3d738ca0cb059e62397f9ceb0d73938266283a6293ab7ffd91f1d368f72d0d34e09d71bbe5799264b666a7bc8be4bd6aae325d57f66c4b3955846f567c5bd4a4031c48d1f49363d488858276889e52ccb5b895eec45380a91ae12f2691c743c6281174edc669f698f9e9da36fea078215163b6f3a7db52481ab0d567064c2447939b663a0d0d4ca38ba27a419b4597bc04d149e2d104eeb92544e2e4ed09ac895a0f5c3ff4e5d1d246e60e6f2e0aa4a04c65c0e223550ddaf719b70127613fe2a1a3c1c3e215fcb80d4678e64e91658a5046a80a117fad9c35976d392e320c4e82cc2a6395f4c5134b4d87c8da6678cb7ccfbe932a23f6b4f23a6b16c9cad06c216d478b9f1a68022b04449cb6d987561b593de7c9e7cacc20ab0bf70822144dba0ff9682ad6fc7f91a45c55d81bd00736e15251c01646cef886bd035b5488acb60f7a49d3b6c79477feea62936028160d9c04a3c681a3cc483e797a715b7a73ac069f8bb9a98e067a8b233f29c3ed0ff68a57602cd30fe4e8eaf9addce0a13c512d09e4aa7646d25d4ab5a2f45f541757cffb5153458f468cdfdf3e03e20d6b3469f9575f0cb327520bc08a50bb536a0c40b18e5d8e835ace2904be0d8ce5030e41176c1bb70e5ca44993f8ad90a67db64b76ee581f5229224e7b124ba0c6ec21fe98480b08978bbb502c3cc3389d2b52b1a79a031b623363f4ee582c3f1e1cf50ab62092fc91606313e75ad5076b4a2ca05cbc4a246e305b6c77b2b060eb3c9e0c11aa8732ac0569726fbabc9c952338941efae30cd19b0bffaaabbb81bdc931950bdfdd2a0925f6f092bed5f63a4b9b663bcdebd42fef6b434e69cdf13a55898a3cdfa954e3dd4be51986ee04dde09bd669333729971ff84de41a6c36f8dd9d78463ce9bf37c65b80a785829a4b4f6ebe850050f5bfac56bc9121fec9036723a0a1efe4b71a17cc0f4667cc66aeb313ca58bdbadfa5ce187122524194818b8b812e77e854177d349850036e75ae3676c534cf477dff290d79a09a44c1d83a091c8583eba4c2eddbac900657d35ccbbd6bd1695cf9b1bcd09e4509467fc1f73abee19c8fd4fdb91962540c62c0ef5a82b5ece97590c7887a1a250ecc04fa0cfdee643ed236dc6b76c452c65415fb3b734616332a24dee19cd6ab8dfcc8eb17ff5307a4efb8202ce883c87512345d3a88f0383603d3df0b5062175c79a6526bb8d2e1dae853d65af3afe00543554745beb76206b76411048857ec21a8f25287e0953e941a33a928b454a3cc364c3e2fceffda1653308e305d089402da1b37015ed90858b7188a279b412f348216ef010338446861888362464589c7b346da4ab9b356025738d620593bb05c163ea48805d2f15b5af84900583e463cf41fa20f6370a9ef359e405c63b32c94f998d9300a046dd8d97aeb4fbdaadaa3f8554e8135a6c33076101103c8a11895c499e9ce47fc4d4f2b032fbbd22e20618957d3ed9b9a12089083fd7bc21e12d29f6272a04864dccc4e24600eb9f1d69e672af21d3a0b8e213bb1b08a41b9137ec689f43dc996ed0ac051eb8411c6ebe4b4204152454f10cb229544422f37ccec53d4e08f1c058f3bff468421c77b6290662e81e551d061f93963798a86f802a8ce4e258b2bff802190ebdea5285f005f5df4057fc4dadfb7306c568530efb769f91456d2678aa6e42ce707e57ae9aafd25cc7c789b4007edbd5565df476fcc67dc8127762122e69d3bfe58de6e4d561c831f1c32005c1fdb0a92ce9490ffc3c8c74f6f10cde8810ad4f53aa708f4d51b6e0d000ce0abe4529fe382b75f0402a70a9708525b8e648e001bee2984eb036a3a5625655f766435934270645432219ed7378e4aa2d06959869facfaf572b857a477ac8bcccdf8b86101123bbb49f83e61c3e6af891b74eb1afd7e911886c259fe88713efcbb236cefbe0b04f675d35eb5938ad4082228966bfa1dbe6c543688f15dd1de6d70346162dbb20af61a31b6a66169f52b78139c1e084516513285ff61a95614ee23a46fd9c108b738f0d41293bb2e9e6ffd00d39b1f77b6f7483c21104b801fb559558f4803420b955aeeee427d022b3ffd46cf51de69fe273381756a2f19080b5fb6f0c0e5271d3312098c68c13edb21da62730b98c31b9d3502ade40e40bde9c64148136f2cd5f8382967225d0e1335350455eb1355c8fcd8dbb5ede4e1c215a190cbc6e64c375535471998eede3b3840c1bf3dec42d8a29a6f15ae8946e1cb5ccf9ee7d6ec10ae1217b1f08da7b6803a96c2335c40dfd685edf093a0552c565c4bfafb2c013732312c96f3d856c92b3a0a5e701f79ed2326d76ca68981267e2a3ac92a5965efdc7f26c5fb73fe2a433a4c8285d2da6bfcdca8a8d1987e9400b9994f4dde9286df74b14c8955e72fabdb3e74b1c5452a8e24d59842d50d63dd80b83378df5196eeb434900600ca9c15448554d5cc350976f7fb551cc462640ba1e68032cb58e0e639dc5fb39fba35078b8157ec9f8a5f7c337167806e30f3a6019192df522df3fb449efbb24ad0a84880ba7e3f1b5497bf93255f239ec5a9534d12c1ab40f29d28c940a847156b02e4fc3edcba1fc4aa74bb51da28a510ee87581bdc41fc70e3d8666336650d9a04da4c57a494227df505832d75bef08a9852748d36b5b613afe3d92cf887ac02a0aabada5c16d9558622359b66ed193db63f8f6fad90f073de2f44b5be9434d42406d783b168d7445b5284c6db3da80fcaf84bf2bd83a80e85a5f50b1a6cc84807af8594b43cbc6fbb1d91ceafd4fa84d3dadf381e32ccca4b9051839b2bddb905960617242d969dbdfb254d35edd7df381c59a5f82087c73b23b8ae91b676c98ddc1f3e049887d1ba236c293e0919a49868abfb5b18f556c34040560512aefca0e0b6d52ca24709154c2765bf47425a85f1ae1ff2717116e9f29e8167dc35c9f5969a0c7490154f19c0ba3ebad7502d6662abfd0fb1d13cf7cc8e37ba9b678042b8e9cb276515080e18db144734a5cb73db1b946b13b0f8662d2eea5fc2cd03cfcd66ca684a0b8f1088bf9f1aed796e18523b7691325300aacb695f2445cb5475f6f14ead89e3c926689e6a6437eb26af80d6767b8844e7f27d6a36b758e55e80059f0e2609d477d51b93e5aecab1e4ae53fb709fe03de3a1ec3a28b2783bc3a01de52db82daca9ed7277ce3a14bcf4272fd0df417d93766a3d11fb38b9ec02227268dc2bcb0ae3c407dc51803a351ada47755e8be32b1ea13ed4b8a283e0394063a720bd106e1fe4e815e898ea1012da21a8ea5e0c03edf7d980c76bb011ee7fca76f2e5ceb68a9dd1ede3ae3c3e99d5978d1a3f4ff8f62543ad09f24a819524f1e403e99f3c30a92b3de5b828dc5b26445a8c9a899318f342b7d6d692055e04048589c3866848a809428e1dfe9866670ce02875b94ca8a7d9c967d620488c5314910830b0f70d85562d3387d966a9dbce12cd9099fac7a19ccbc4cf61c1fff0fbd87b0a9e0639fd759aefe5b7d38da0f482c5c3ec2d845bbe489c7d4acd629f692e47877935c415e7779115dbb5e1f32f8d82cea8a17ac9322826526ef8e10afea3823818c1fec8eef3ed28d0b9a70a6e65166fc3c99099c912f6ce58823cca6fec299b3852d62c42fd849dad08c4141fabb55379dab9b0467bb114769315b8d048dd17e499c1d91d16c6b5439f59fac9607f236d95e1be46807faa1505cc75e4c591a2b721b319817cdb030bef29fdd0ed4f1cdef60f70f97132f867257d4bdd29773ee192a8552ab8671e18ec9b4fb214880b44ad523b469aba5a43b88e0d010964c88af856796218843f364dbeef0f1190ba11edeeca039de7deff69a962c5993a32a591f8d07ca112f9753d45cb0c80439ebb867c571c6ffab2b2cba34b07cefb1fdf6b3e0d0b5d6379f6b8e5b4caefcf89da79d08f7f46abe6d1202be8e47e2b0ca261d7e3579c9c5e4d959861d1751f1a7d00b46c3315bb461e2f39ac997c9b10444baebc3dbeb1b1804d3090b5d07c09d92c04b2567bbffcc960b8e1f93d53e30023c82c2804a5c5c16aba4589af8a5aab6af3fefb085f709155b1cc53a59c3a2e5159f98a9810b9df2fe003eb434184ddc5d2e1fe4a2f5ef3353f9d94f1aa6f8afedae796d21a1d0889ff9ef4c7777342df8a81e5e224173ff75c55c6a50a46c1cf3b34293a38e688dd8e159a1b48a4c1812daa166c0adec0cb72a0d302fb3ff6428719f7f95600bb4a8ffdbd4233c3c5be854b885377a50ec3315a509653ca07043e75a99a7de94b1932a03b2034b45c880317d6632393b2730bfa45d3207070d80f36bcb2de854d8b0bf9fbb20eb4f77a0364bf2c6c0e203d86943a4c7fbd20b6fe3a07130b7319abd03e3f5f40774dc8976cf4ca3c0c8ee2dc99befd67e53fad31ec39f7919bb2bb63d86f7c0bfc947aecfa545e5714cea265b8f91bd7a31c9a33d2f2e831302a485020317a156003cefb231c8166693c0bea4fe014ee89d7b3e225ef72d7dc67c7594f495a45144a34af116347e680a02e32cfd7c1df6c1d04a8a798aca777b689f225c635d877dcb37d81c4a8d45dfc555372eb3bcdffd6749aaf16f17f06cdfab9439e221fca25f5b3809b2ae1cd2628966d27348115566e13b003ff6180919a12f37ed8919877594f751053f4b191c91633a99ff8bfacb30175205aa269d161620b0be69d326e6f9212d49481cdeee6edc18335e4a456f05a8005c215e13b75f893147ddb2b439d1e1a99f1c5be4ebcf6d7fd3a7f1fd27bc5a2ba583422b564a7a7898e77426f103cb132d5ee62bbde9448568a78ae6e7c6e4496e0bc94aa6704472e183654b3d10666f8be2e5f6f53f4e9acdc9a59aba27b28d1de32e6b67c9ca0206c1ec7b5dc6648919f7f914d10a9428c9d4d45380260d716091da7fb6a73cc6f621c7ac700f393bff81d38cd784655db527006c936ad0829d552a37ddc693eb63cb0abc5b96698e94650724bfd885e453891aac900ed5a52a537fa4715c79b24aea7c3e4d0eff9a238169187edefd998792f5357b29d68af594a8d9f2feeb04ef244ba30ca5d17e12b3963255412450e07168384f5899a0c2aa53d186ee49b13b6f9aa62ec4bd2e38d7724a47cc059396847d23f7212b7b507db00d7716d220821eecba7e5839c15edebf6a5b16efd8aaa0ef82a7e56e964015b2bfdc7d89ffa554f702871d11d6102eedcd230fb4e83adc5571ba21b0d8a042147fb3f823448ed43d812330f7fe31ddac1c993065b9d88515e64f7c8a040333b225ca0f908ce8899e1c0250cb5257d1ddc5a61236cd8470539050ae3f68be12837812d9887cfe0b273c5b469c989804e9ebf681c495394b6985fb7df460bc112c839954cc1b89a4cebef681240923935e82889e5af5cf40ab4c89d7888a649afcd2b8a13a61f70e10c06d534520183a736d2e2a2c9ec1ce22b2edb7974195031f75deea7a0672dd14c79487614b4edf7cb65aedc0bcf94dc4018769c4fd2451e08beb7603f31cb00cf3b7ef7231ba9c97cd9fda516c200e18b8ea95ab3f6b847cd5807cc7ad417dc6d67cc813b7df5df3a12db896bd5ef0996707301e6ef86e41a52dac41fcc6ed908e429cca50f5fc27004e2178f6eb80d2643e7e5c9d827309036714a9fea14dac07e91a90b762e95f700e0e94f934737085e2e799395d211c8436ea841751e9bc91a0b61dca4aa40979b861745545a3a6e1640dd4b97cc66f50b5c083cb5726c7c74c60070e57b525fd8e2e7d96f05df84fe404f3849a", 0x1000}, {&(0x7f0000004240)="29c564501796ed1c5cc312880b3827d3561dfef0", 0x14}], 0x3, 0x0, 0x0, 0x90}}, {{&(0x7f00000042c0)=@abs={0x1, 0x0, 0x4e20}, 0x6e, &(0x7f0000005700)=[{&(0x7f0000004340)="cecd908d89a4d6692c8b9fce83ee13d39f0aa7768c12108703e87e8e695f6ae9108a8512e6871c8e7a68c662768acb8adf40916bb2255ebc14bdf202b6d216a4cda81faab6152e1568d661332e7a8f776ad22df896c72bc55e56456ab98971323fd88144", 0x64}, {&(0x7f00000043c0)="6e171bcda6099e162142fb14d83a51bd783fba7c41dd651956ec539e91cf53ed58b1d1cd15a93bed980e3a4d2b75f8a3f3bdaa684bee3f94ead3bff3a65b76b2518fbe0d5f24bc72dba5032a8225ca125b0c059728e309811b7a5c506c0c1644d6650a4109daef0d1fba66208e7afa9faf564b5678c3b8266093e9c16b273dca9c2bd19b8fb139adde9afdfcaf33d6eac8d76de6602d69d2f8574fdbd35086fa3db7023dd221c1331a7f57725e4b8026", 0xb0}, {&(0x7f0000004480)="1ffd510c8c6dc96e4b53c316ea991168827a602101a44b079996d354da62af92a23ad0a4b4f829a10eb31ea0ddf5fdaac1127894bc91ab408533724a9c8f60b7b5dee9896750346420f2f91e30f0c2", 0x4f}, {&(0x7f0000004500)="f6a5ff74255c888d38c877239fd2b76573a978678d620a2d9024e768b7ab3ef9175ee1e1032e", 0x26}, {&(0x7f0000004540)}, {&(0x7f0000004580)="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", 0x1000}, {&(0x7f0000005580)="65e27494d2f64e445d9dbf92f841443ec8f0a08ee3224222be534bfcb0847c95b638e0c4735ac2ce4718abf56701a6ba8a121f17ca803a8d632130ceea6f9f0945ffa5415ad0b063bcd645ac961fede3ec642f59d412f5e1eb071595b22bd2d71a7caf67b41237af4990a87480da4880bce6f3ed6d2bea17b9b4edd516fa1fc44196a680c51e5831c786f94e3347a644205db008b485a0af5a4d4a49661f90972323795a28eee3969e45a26e9ce8e0e6db71df45a530a7edfd0b766e14e5569986f6c316edb397b39ece414d69b226054f7aa956", 0xd4}, {&(0x7f0000005680)="3ac9b7872fff9635ffb0fdda1753a9c4498771630f86a915a26205010751df4fc54d96557bfc5805ba9d27868e87f0751401ca277f0e8091341f1b1f594ecf7cae5cde721271bfaa609d071d5fae6c55927660767ba84a58aed6d6", 0x5b}], 0x8, &(0x7f0000005880)=[@rights={{0x2c, 0x1, 0x1, [r5, r0, r6, r0, r7, r8, r9]}}, @rights={{0x20, 0x1, 0x1, [r0, r0, r10, r11]}}, @cred={{0x1c, 0x1, 0x2, {0x0, 0xffffffffffffffff, 0xffffffffffffffff}}}], 0x70, 0x4040000}}, {{&(0x7f0000005900)=@file={0x1, './file0\x00'}, 0x6e, &(0x7f0000005d00)=[{&(0x7f0000005980)="32cf72a5125cfbac89fb7f27817c6f0dfedea79fdbc619ab43977304c7bf06d6e2d067a2b3084f8e228a3c9c8b6d81c4025efc1af987", 0x36}, {&(0x7f00000059c0)="421e7f5a89e4226756c67d239d5d070ef6566c325107ece1e34529b930e86d51e2e4e1beeabc0af5e4d93e63092d9e345a53", 0x32}, {&(0x7f0000005a00)="dec678de8b7cc005ad6d296d8c2223c5dedfb4e30a6f8ace5e9c92a1c7c368f10334b3a0f96d1602b3a2dd5c41e0b9102efe72c1caefad1f042a1ab5f0a415e4277895b1a054806008a6685890cfa81e4c5bcb4911061422cb7e47fce99048e75132f05826d5cd3fb6c04fd6728668d0b73ae725736fcca4f81ae753c601a3446fcec4bc3f9a14fc85152d10566f2b89acd91359266d8d87fcfae780515c9547e398f9c01b5736dbc2d1f585e4208c5f631f23d474fc4be37f8b7733fdd634301d3c109a6d3fcbf9eb69e81618e7d00e1c9eee97c4b6fac86bbcf3ea9c8fab1c678481380edb61366bce4c20eab397c6c150e891f9eee5ab", 0xf8}, {&(0x7f0000005b00)="4275d2805a86c7531161119dcc5b560700350f3ea1009345e6aad9e0f6c9fa87b63f1ae2e364d75e0950759f02b3955b8ccc343b701f55e0f4650298b860351bf2ccf4f1", 0x44}, {&(0x7f0000005b80)="9661ea5cf4f52f7c95e1f19f3d137f89b6eb94bf93224878aef581bc95a2625bfcae25368d65156ada7e3bb823f919ce4bcc958fdbce3bcb86e4989759183525e083d481bfca45e018b90e03857744b016218a0b5e634b6e4291669602472809f854b646f4fb66b4d33ebf9d392e62003c16d0490be0d0755c12a8d2349a9ab5c2057783f93ccc31eef751c9404bb19e54fd619a3239b6b812876ee9", 0x9c}, {&(0x7f0000005c40)="bdd095db90798803945dcad3e7f186", 0xf}, {&(0x7f0000005c80)="f4dd21385ce2f4cacc486b3006d4bf2f9030d5b4fe56becdb7473d9287306897bbb31419ec5b7de0439dc17cc06502f14100a360ce78fc3da63699a3c605cb2e24877312fc09c28bb2f9ff86425c0138251d1e", 0x53}], 0x7, 0x0, 0x0, 0x4000000}}], 0x5, 0x1) r12 = perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) sendmsg$nl_xfrm(r0, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000740)=ANY=[@ANYBLOB="f00000001000000000000061525963eb9d0000000000e0000a00000000e49c183cad01000000e000000100000000800000000000000010e71c4082000000e0ff4bce9810a2ebd482db36754327f156b485b4f8f40db019755a93977697b74fe4c969f799729cc72216f60368187583ea", @ANYRESDEC=r12, @ANYRES32=0x0, @ANYBLOB="000000000000000000000000000000000000000000000000fe8000000000000000000000000000aa00"/168], 0xf0}}, 0x800) 19:56:31 executing program 0: perf_event_open(&(0x7f0000001d80)={0x2, 0x80, 0x93, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) syz_mount_image$ext4(0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0) mbind(&(0x7f0000ffc000/0x1000)=nil, 0x1000, 0x0, 0x0, 0x0, 0x0) mlock2(&(0x7f0000ffd000/0x2000)=nil, 0x2000, 0x0) r0 = openat(0xffffffffffffff9c, &(0x7f0000000080)='/proc/self/exe\x00', 0x0, 0x0) r1 = socket$inet6_tcp(0xa, 0x1, 0x0) r2 = openat$urandom(0xffffffffffffff9c, &(0x7f0000000100), 0xc0040, 0x0) copy_file_range(0xffffffffffffffff, &(0x7f0000000040)=0x100, r2, &(0x7f0000000140), 0x8, 0x0) bind$inet6(r1, &(0x7f00000000c0)={0xa, 0x4e20, 0x0, @loopback}, 0x1c) connect$inet6(r1, &(0x7f0000000000)={0xa, 0x4e20, 0x0, @loopback}, 0x1c) sendfile(r1, r0, 0x0, 0x0) [ 3091.632380] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium [ 3091.635427] EXT4-fs (loop6): mounted filesystem without journal. Opts: ,errors=continue [ 3091.639640] FAULT_INJECTION: forcing a failure. [ 3091.639640] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 3091.639664] CPU: 0 PID: 22328 Comm: syz-executor.2 Not tainted 5.10.207 #1 [ 3091.639677] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 3091.639685] Call Trace: [ 3091.639714] dump_stack+0x107/0x167 [ 3091.639749] should_fail.cold+0x5/0xa [ 3091.639793] _copy_from_iter_full+0x201/0xa60 [ 3091.639853] raw_sendmsg+0x1d0f/0x29d0 [ 3091.639903] ? dst_output+0x170/0x170 [ 3091.639928] ? perf_trace_run_bpf_submit+0xf5/0x190 [ 3091.639985] ? perf_trace_lock+0x2bd/0x490 [ 3091.640011] ? SOFTIRQ_verbose+0x10/0x10 [ 3091.640044] ? __lockdep_reset_lock+0x180/0x180 [ 3091.640093] ? selinux_socket_post_create+0x7f0/0x7f0 [ 3091.640112] ? find_held_lock+0x2c/0x110 [ 3091.640171] ? trace_hardirqs_on+0x5b/0x180 [ 3091.640205] ? dst_output+0x170/0x170 [ 3091.640235] inet_sendmsg+0x11d/0x140 [ 3091.640258] ? inet_send_prepare+0x540/0x540 [ 3091.640291] __sock_sendmsg+0x13c/0x190 19:56:31 executing program 2: r0 = socket$inet_icmp_raw(0x2, 0x3, 0x1) r1 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a) ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000140)={'syz_tun\x00', 0x0}) perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) sendmmsg$inet(r0, &(0x7f0000002040)=[{{&(0x7f0000000380)={0x2, 0x0, @multicast1}, 0x10, &(0x7f0000001600)=[{&(0x7f00000003c0)="db9c", 0xffe7}], 0x1, &(0x7f0000001640)=ANY=[@ANYBLOB="14000000000000000000000007000000c4048f01000000001c000000000000000000000008000000", @ANYRES32=r2], 0x38}}], 0x1, 0x0) (fail_nth: 10) [ 3091.640319] ____sys_sendmsg+0x334/0x870 [ 3091.640351] ? sock_write_iter+0x3d0/0x3d0 [ 3091.640369] ? do_recvmmsg+0x6d0/0x6d0 [ 3091.640388] ? perf_trace_lock+0x2bd/0x490 [ 3091.640430] ? __lockdep_reset_lock+0x180/0x180 [ 3091.640471] ___sys_sendmsg+0xf3/0x170 [ 3091.640501] ? sendmsg_copy_msghdr+0x160/0x160 [ 3091.640538] ? lock_downgrade+0x6d0/0x6d0 [ 3091.640573] ? perf_trace_run_bpf_submit+0xf5/0x190 [ 3091.640618] ? __fget_files+0x296/0x4c0 [ 3091.640673] ? __fget_light+0xea/0x290 [ 3091.640717] __sys_sendmmsg+0x195/0x470 [ 3091.640755] ? __ia32_sys_sendmsg+0xb0/0xb0 [ 3091.640779] ? lock_downgrade+0x6d0/0x6d0 [ 3091.640845] ? __mutex_unlock_slowpath+0xe1/0x600 [ 3091.640879] ? wait_for_completion_io+0x270/0x270 [ 3091.640909] ? rcu_read_lock_any_held+0x75/0xa0 [ 3091.640930] ? vfs_write+0x354/0xa70 [ 3091.640961] ? fput_many+0x2f/0x1a0 [ 3091.640987] ? ksys_write+0x1a9/0x260 [ 3091.641012] ? __ia32_sys_read+0xb0/0xb0 [ 3091.641054] __x64_sys_sendmmsg+0x99/0x100 [ 3091.641084] do_syscall_64+0x33/0x40 [ 3091.641106] entry_SYSCALL_64_after_hwframe+0x62/0xc7 [ 3091.641121] RIP: 0033:0x7fac065c2b19 [ 3091.641143] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 3091.641156] RSP: 002b:00007fac03b38188 EFLAGS: 00000246 ORIG_RAX: 0000000000000133 [ 3091.641181] RAX: ffffffffffffffda RBX: 00007fac066d5f60 RCX: 00007fac065c2b19 [ 3091.641195] RDX: 0000000000000001 RSI: 0000000020002040 RDI: 0000000000000003 [ 3091.641208] RBP: 00007fac03b381d0 R08: 0000000000000000 R09: 0000000000000000 [ 3091.641221] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 3091.641235] R13: 00007ffe4d4b793f R14: 00007fac03b38300 R15: 0000000000022000 [ 3091.659051] FAULT_INJECTION: forcing a failure. [ 3091.659051] name failslab, interval 1, probability 0, space 0, times 0 [ 3091.659258] CPU: 1 PID: 22319 Comm: syz-executor.6 Not tainted 5.10.207 #1 [ 3091.659270] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 3091.659276] Call Trace: [ 3091.659303] dump_stack+0x107/0x167 [ 3091.659331] should_fail.cold+0x5/0xa [ 3091.659355] ? __es_insert_extent+0xed1/0x1370 [ 3091.659378] should_failslab+0x5/0x20 [ 3091.659398] kmem_cache_alloc+0x5b/0x310 [ 3091.659426] __es_insert_extent+0xed1/0x1370 [ 3091.659454] ? do_raw_read_unlock+0x70/0x70 [ 3091.659489] ext4_es_insert_extent+0x45d/0xf10 [ 3091.659521] ? ext4_es_scan_clu+0x2e0/0x2e0 [ 3091.659563] ? down_write+0xe0/0x160 [ 3091.659583] ? down_write_killable+0x180/0x180 [ 3091.659620] ext4_map_blocks+0x8e1/0x1940 [ 3091.659650] ? __kernel_text_address+0x9/0x40 [ 3091.659672] ? ext4_issue_zeroout+0x1c0/0x1c0 [ 3091.659705] ? ext4_journal_check_start+0x1b3/0x2a0 [ 3091.659729] ? __ext4_journal_start_sb+0x1db/0x390 [ 3091.659747] ? ext4_meta_trans_blocks+0x25c/0x310 [ 3091.659778] ext4_iomap_begin+0x3ad/0x700 [ 3091.659815] ? ext4_iomap_begin_report+0x5a0/0x5a0 [ 3091.659833] ? kasan_save_stack+0x1b/0x40 [ 3091.659854] ? ext4_file_write_iter+0xb26/0x18d0 [ 3091.659879] ? truncate_exceptional_pvec_entries.part.0+0x510/0x510 [ 3091.659896] ? splice_direct_to_actor+0x387/0x980 [ 3091.659911] ? do_splice_direct+0x1c4/0x290 [ 3091.659931] ? vfs_copy_file_range+0x4f8/0x1290 [ 3091.659951] ? __do_sys_copy_file_range+0x193/0x420 [ 3091.659969] ? do_syscall_64+0x33/0x40 [ 3091.659985] ? entry_SYSCALL_64_after_hwframe+0x62/0xc7 [ 3091.660012] iomap_apply+0x164/0x810 [ 3091.660033] ? iomap_dio_rw+0x90/0x90 [ 3091.660058] ? trace_event_raw_event_iomap_apply+0x430/0x430 [ 3091.660093] ? mark_held_locks+0x9e/0xe0 [ 3091.660131] ? filemap_check_errors+0xa5/0x150 [ 3091.660159] __iomap_dio_rw+0x6cd/0x1110 [ 3091.660176] ? iomap_dio_rw+0x90/0x90 [ 3091.660220] ? iomap_dio_bio_actor+0xef0/0xef0 [ 3091.660236] ? generic_update_time+0x21c/0x370 [ 3091.660255] ? ext4_orphan_add+0x253/0x9e0 [ 3091.660269] ? inode_dio_wait+0xbf/0x270 [ 3091.660305] ? ext4_empty_dir+0xae0/0xae0 [ 3091.660330] ? ext4_journal_check_start+0x1b3/0x2a0 [ 3091.660356] iomap_dio_rw+0x31/0x90 [ 3091.660379] ext4_file_write_iter+0xb26/0x18d0 [ 3091.660419] ? ext4_file_read_iter+0x4c0/0x4c0 [ 3091.660437] ? kasan_save_stack+0x32/0x40 [ 3091.660455] ? kasan_save_stack+0x1b/0x40 [ 3091.660474] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 3091.660491] ? iter_file_splice_write+0x16d/0xc30 [ 3091.660506] ? direct_splice_actor+0x10f/0x170 [ 3091.660522] ? splice_direct_to_actor+0x387/0x980 [ 3091.660537] ? do_splice_direct+0x1c4/0x290 [ 3091.660556] ? vfs_copy_file_range+0x4f8/0x1290 [ 3091.660574] ? __do_sys_copy_file_range+0x193/0x420 [ 3091.660606] do_iter_readv_writev+0x476/0x750 [ 3091.660632] ? new_sync_write+0x660/0x660 [ 3091.660650] ? selinux_file_permission+0x92/0x520 [ 3091.660697] do_iter_write+0x191/0x670 [ 3091.660721] ? trace_hardirqs_on+0x5b/0x180 [ 3091.660752] vfs_iter_write+0x70/0xa0 [ 3091.660775] iter_file_splice_write+0x762/0xc30 [ 3091.660818] ? generic_splice_sendpage+0x140/0x140 [ 3091.660849] ? avc_policy_seqno+0x9/0x70 [ 3091.660866] ? selinux_file_permission+0x92/0x520 [ 3091.660895] ? lockdep_init_map_type+0x2c7/0x780 [ 3091.660921] ? generic_splice_sendpage+0x140/0x140 [ 3091.660944] direct_splice_actor+0x10f/0x170 [ 3091.660968] splice_direct_to_actor+0x387/0x980 [ 3091.660996] ? pipe_to_sendpage+0x380/0x380 [ 3091.661021] ? do_splice_to+0x160/0x160 [ 3091.661041] ? security_file_permission+0x24e/0x570 [ 3091.661076] do_splice_direct+0x1c4/0x290 [ 3091.661097] ? splice_direct_to_actor+0x980/0x980 [ 3091.661113] ? selinux_file_permission+0x92/0x520 [ 3091.661142] ? security_file_permission+0x24e/0x570 [ 3091.661180] vfs_copy_file_range+0x4f8/0x1290 [ 3091.661213] ? generic_file_rw_checks+0x240/0x240 [ 3091.661269] __do_sys_copy_file_range+0x193/0x420 [ 3091.661296] ? vfs_copy_file_range+0x1290/0x1290 [ 3091.661313] ? ksys_write+0x1a9/0x260 [ 3091.661333] ? __ia32_sys_read+0xb0/0xb0 [ 3091.661371] do_syscall_64+0x33/0x40 [ 3091.661389] entry_SYSCALL_64_after_hwframe+0x62/0xc7 [ 3091.661402] RIP: 0033:0x7fec371d4b19 [ 3091.661423] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 3091.661433] RSP: 002b:00007fec3474a188 EFLAGS: 00000246 ORIG_RAX: 0000000000000146 [ 3091.661456] RAX: ffffffffffffffda RBX: 00007fec372e7f60 RCX: 00007fec371d4b19 [ 3091.661466] RDX: 0000000000000006 RSI: 0000000000000000 RDI: 0000000000000007 [ 3091.661478] RBP: 00007fec3474a1d0 R08: 0000000000000c3a R09: 0000000000000000 [ 3091.661489] R10: 0000000020000280 R11: 0000000000000246 R12: 0000000000000002 [ 3091.661500] R13: 00007ffec551fc1f R14: 00007fec3474a300 R15: 0000000000022000 [ 3091.716178] netlink: 220 bytes leftover after parsing attributes in process `syz-executor.1'. [ 3091.870286] FAULT_INJECTION: forcing a failure. [ 3091.870286] name failslab, interval 1, probability 0, space 0, times 0 [ 3091.874395] CPU: 0 PID: 22372 Comm: syz-executor.2 Not tainted 5.10.207 #1 [ 3091.875927] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 3091.877785] Call Trace: [ 3091.878380] dump_stack+0x107/0x167 [ 3091.879204] should_fail.cold+0x5/0xa [ 3091.880061] ? dst_alloc+0x9e/0x610 [ 3091.880889] should_failslab+0x5/0x20 [ 3091.881724] kmem_cache_alloc+0x5b/0x310 [ 3091.882640] dst_alloc+0x9e/0x610 [ 3091.883409] ? trace_hardirqs_on+0x5b/0x180 [ 3091.884401] rt_dst_alloc+0x73/0x440 [ 3091.885239] ip_route_output_key_hash_rcu+0x93d/0x2a90 [ 3091.886414] ip_route_output_key_hash+0x18d/0x340 [ 3091.887474] ? ip_route_output_key_hash_rcu+0x2a90/0x2a90 [ 3091.888722] ? _copy_from_iter_full+0x27c/0xa60 [ 3091.889773] ip_route_output_flow+0x23/0x150 [ 3091.890760] raw_sendmsg+0x930/0x29d0 [ 3091.891632] ? dst_output+0x170/0x170 [ 3091.892496] ? perf_trace_run_bpf_submit+0xf5/0x190 [ 3091.893630] ? perf_trace_lock+0x2bd/0x490 [ 3091.894572] ? SOFTIRQ_verbose+0x10/0x10 [ 3091.895480] ? __lockdep_reset_lock+0x180/0x180 [ 3091.896543] ? selinux_socket_post_create+0x7f0/0x7f0 [ 3091.897675] ? find_held_lock+0x2c/0x110 [ 3091.898606] ? trace_hardirqs_on+0x5b/0x180 [ 3091.899570] ? dst_output+0x170/0x170 [ 3091.900442] inet_sendmsg+0x11d/0x140 [ 3091.901282] ? inet_send_prepare+0x540/0x540 [ 3091.902256] __sock_sendmsg+0x13c/0x190 [ 3091.903145] ____sys_sendmsg+0x334/0x870 [ 3091.904059] ? sock_write_iter+0x3d0/0x3d0 [ 3091.905003] ? do_recvmmsg+0x6d0/0x6d0 [ 3091.905864] ? perf_trace_lock+0x2bd/0x490 [ 3091.906815] ? __lockdep_reset_lock+0x180/0x180 [ 3091.907862] ___sys_sendmsg+0xf3/0x170 [ 3091.908737] ? sendmsg_copy_msghdr+0x160/0x160 [ 3091.909759] ? lock_downgrade+0x6d0/0x6d0 [ 3091.910683] ? perf_trace_run_bpf_submit+0xf5/0x190 [ 3091.911814] ? __fget_files+0x296/0x4c0 [ 3091.912743] ? __fget_light+0xea/0x290 [ 3091.913625] __sys_sendmmsg+0x195/0x470 [ 3091.914521] ? __ia32_sys_sendmsg+0xb0/0xb0 [ 3091.915468] ? lock_downgrade+0x6d0/0x6d0 [ 3091.916438] ? __mutex_unlock_slowpath+0xe1/0x600 [ 3091.917522] ? wait_for_completion_io+0x270/0x270 [ 3091.918590] ? rcu_read_lock_any_held+0x75/0xa0 [ 3091.919617] ? vfs_write+0x354/0xa70 [ 3091.920457] ? fput_many+0x2f/0x1a0 [ 3091.921276] ? ksys_write+0x1a9/0x260 [ 3091.922119] ? __ia32_sys_read+0xb0/0xb0 [ 3091.923034] __x64_sys_sendmmsg+0x99/0x100 [ 3091.923967] do_syscall_64+0x33/0x40 [ 3091.924810] entry_SYSCALL_64_after_hwframe+0x62/0xc7 [ 3091.925940] RIP: 0033:0x7fac065c2b19 [ 3091.926779] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 3091.930808] RSP: 002b:00007fac03b38188 EFLAGS: 00000246 ORIG_RAX: 0000000000000133 [ 3091.932506] RAX: ffffffffffffffda RBX: 00007fac066d5f60 RCX: 00007fac065c2b19 [ 3091.934082] RDX: 0000000000000001 RSI: 0000000020002040 RDI: 0000000000000003 [ 3091.935638] RBP: 00007fac03b381d0 R08: 0000000000000000 R09: 0000000000000000 [ 3091.937215] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 3091.938783] R13: 00007ffe4d4b793f R14: 00007fac03b38300 R15: 0000000000022000 19:56:31 executing program 5: openat(0xffffffffffffff9c, &(0x7f00000001c0)='./file1\x00', 0x0, 0x0) r0 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x105142, 0x0) syz_open_procfs(0x0, 0x0) ioctl$AUTOFS_DEV_IOCTL_ISMOUNTPOINT(0xffffffffffffffff, 0xc018937e, &(0x7f0000000180)={{0x1, 0x1, 0x18, r0, @out_args}, './file0\x00'}) ioctl$AUTOFS_DEV_IOCTL_CATATONIC(0xffffffffffffffff, 0xc0189379, &(0x7f0000000480)=ANY=[@ANYBLOB="010000000100000018000000", @ANYRES32=r1, @ANYBLOB="00000080000000002e2f666954653100805ca29df3b00f36d56ab6e766cfa26d021b18b29a5a3ad4c2be9274e22d6762b1d1581b40d03a0be863d0ff55f80a00005fd7b7eae6f8f5eac4a1cb5f7e55b5c8fcffa4c7ad9cd9a2affa6f3b00ec1c1404f69971f4a1f9fb5727d20a17ab0660dbe8901e11c9b2d00736b93afdaf3ff02abd2051a03644028d1a6df5d46a16a3d3053222aad09e02759bf6901904f8ad8218419326315472b3c469089dada7ce5b1b0a181a77c1b9871b625186efe022277064f0b0c749e3d70cf9459a69608c0998479a1623dc61b2e545ac0b59e62e95b94b5453c99434b9124e3beee6cbd08a7ae17be17cc8b19a339ac642a89396c25534e681825e33e6c007f1a83ba6c781b7ef52ad05487fd4c0b9fa6f4b9e6a1d91f6108e44791cbd2a1f9d724729d427ee56942670ae3dbbef3a4eb26fc951b9e72dd15114bfadf2bdbb48247657953d9620ee8d8609ff4a21a000f0621bd0b80746facca86ef4fcd26ec0146e2b8ecae6f4f0cec810d8660d3d714cf69163740e65e817ae37e0ebecb6c6073fdc9229291d2fefff5f08a3a427c43b43b4ed923118cb81849a8eff2992b1aa5a2e42f4c1e36f554987f39157000000000000005be1bd4db0d41d8e15b95ca439bce4aaabc4e7bd4ae1556c87bc12394e12f64ace9192bb2d498d84064ec55b171bfd77e27fa549c90005c86477ab306c19fca3af86861a100672fa0ece7a6b259ad22e442df47413f4bea9242385590f621384365bbd6b05759ef381f0de8608f64e11eef32ee49533837959d9f734969602e5cfebd987478942254c257459750cb4c47d6263349cdcce2c1418b1"]) syz_io_uring_setup(0x4d4f, &(0x7f0000000340)={0x0, 0x0, 0x2, 0x1, 0x400000, 0x0, r1}, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f00000000c0), &(0x7f0000000140)=0x0) r3 = openat$full(0xffffffffffffff9c, &(0x7f0000000040), 0x0, 0x0) syz_io_uring_submit(0x0, r2, &(0x7f0000000000)=@IORING_OP_READV=@use_registered_buffer={0x1, 0x0, 0x0, @fd=r3}, 0x0) close(r3) ioctl$AUTOFS_DEV_IOCTL_EXPIRE(r3, 0xc018937c, &(0x7f0000000080)={{0x1, 0x1, 0x18, r1, {0x2}}, './file1/file0\x00'}) r4 = fsmount(0xffffffffffffffff, 0x0, 0x2) syz_open_procfs(0x0, &(0x7f0000000040)='net/mcfilter6\x00') sendmsg$NL80211_CMD_SET_NOACK_MAP(0xffffffffffffffff, &(0x7f0000001180)={&(0x7f0000001080)={0x10, 0x0, 0x0, 0x80000000}, 0xc, &(0x7f0000001140)={&(0x7f0000000700)=ANY=[@ANYBLOB='D\x00\x00\x00', @ANYRES16=0x0, @ANYBLOB="000100000000fcdbdf25000000060095001f10000006109500080000000600950001000000060095000000000006009500800000007f1e92847793ef7fd195a5bf94cf5d459e9b665c1251496706399d193486a3a4da6ad160366663a6ff9b8825f5237b53c4e15cf2e7e283ff2d93586d14ac685407a567766a6fc950766a897bf7f0a906effb1d8011997435680dc4cba5e0c1ebf4a47039213bcc07e3385f6a97ed243ae243c43b7efc9f124f4aa084d83f48e4e8e3b2347e3a8b274dc3b46215706384cb6e5fd9a7ef532435e3881977e0aba69ec59d4df73684289e8fa629056ebbefab2da938d39b077118000000000000000000"], 0x44}, 0x1, 0x0, 0x0, 0x1}, 0x4000) lseek(r0, 0x800, 0x4) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x400, 0x2, 0xfffffffffffffffd}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r5 = openat(r4, &(0x7f0000000280)='/proc/self/exe\x00', 0x0, 0x0) fstatfs(r0, &(0x7f0000000000)=""/46) epoll_ctl$EPOLL_CTL_ADD(0xffffffffffffffff, 0x1, 0xffffffffffffffff, &(0x7f0000000140)) epoll_ctl$EPOLL_CTL_ADD(0xffffffffffffffff, 0x1, r0, &(0x7f0000000240)={0x12}) sendfile(r0, r5, 0x0, 0x100000001) 19:56:31 executing program 6: syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000140)='./file0\x00', 0x40000, 0x4, &(0x7f0000000200)=[{&(0x7f0000010000)="20000000000100000c000000d40000000f000000010000000000000000000000002000000020000020000000d7f4655fd7f4655f0100ffff53ef010001000000d7f4655f000000000000000001000000000000000b0000000002", 0x5a, 0x400}, {&(0x7f0000010400)="030000000400000005000000d4000f", 0xf, 0x800}, {&(0x7f0000000500)="ffffffffff070000000000000000000000000000000000000000000000000080ffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffff", 0x402, 0xc00}, {&(0x7f0000010e00)="ed41000000040000d7f4655fd7f4655fd7f4655f000000000000040002", 0x1d, 0x1600}], 0x0, &(0x7f00000003c0)=ANY=[]) chdir(&(0x7f0000000040)='./file0\x00') openat(0xffffffffffffff9c, &(0x7f0000000080)='./file1\x00', 0x105142, 0x0) r0 = openat(0xffffffffffffff9c, &(0x7f0000000200)='./file1\x00', 0x2, 0x0) write(r0, &(0x7f0000000240)="01", 0x1) r1 = openat(0xffffffffffffff9c, &(0x7f00000000c0)='./file2\x00', 0x105142, 0x0) r2 = openat(0xffffffffffffff9c, &(0x7f0000001340)='./file1\x00', 0x0, 0x0) copy_file_range(r2, 0x0, r1, &(0x7f0000000280)=0x10000, 0xc3a, 0x0) (fail_nth: 19) openat$sr(0xffffffffffffff9c, 0x0, 0x0, 0x0) 19:56:31 executing program 7: r0 = socket$inet_tcp(0x2, 0x1, 0x0) sendto$inet(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0) r1 = openat(0xffffffffffffffff, &(0x7f0000000000)='/proc/self/exe\x00', 0x10000, 0x0) sendfile(0xffffffffffffffff, 0xffffffffffffffff, 0x0, 0x100000001) setsockopt$inet_tcp_TCP_REPAIR(r1, 0x6, 0x13, &(0x7f00000000c0), 0x4) setsockopt$sock_linger(r0, 0x1, 0x35, &(0x7f00000011c0)={0x0, 0x5}, 0x8) signalfd4(0xffffffffffffffff, &(0x7f0000000040)={[0x4]}, 0x8, 0x800) ioctl$AUTOFS_DEV_IOCTL_REQUESTER(0xffffffffffffffff, 0xc018937b, 0x0) ioctl$SNAPSHOT_PLATFORM_SUPPORT(0xffffffffffffffff, 0x330f, 0x0) r2 = openat(0xffffffffffffffff, &(0x7f0000000080)='./file1\x00', 0x105142, 0x0) r3 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0) ioctl$BTRFS_IOC_QUOTA_RESCAN(0xffffffffffffffff, 0x4040942c, &(0x7f0000000140)={0x0, 0x401, [0x40, 0x1, 0x4, 0xa2, 0x7ff, 0x5]}) copy_file_range(r3, 0x0, r2, 0x0, 0x10001, 0x0) dup2(r2, r3) r4 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x0, 0x0) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x6, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x8}, 0x2, 0x0, 0x0, 0x0, 0x0, 0xfffffffe}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) pipe2(&(0x7f0000000000)={0x0, 0x0}, 0x80800) writev(r5, &(0x7f0000001280)=[{&(0x7f0000001180)}], 0x1) fcntl$setpipe(r5, 0x407, 0x0) sendfile(r2, r4, 0x0, 0x20d315) [ 3092.043729] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium 19:56:32 executing program 1: r0 = syz_open_dev$usbmon(&(0x7f0000000040), 0x0, 0x0) syz_io_uring_setup(0x8, &(0x7f0000000180), &(0x7f0000ffb000/0x4000)=nil, &(0x7f0000ffb000/0x5000)=nil, 0x0, 0x0) socket$packet(0x11, 0x3, 0x300) fcntl$getownex(r0, 0x10, &(0x7f0000000240)) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f0000000040)}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x1) r1 = socket$netlink(0x10, 0x3, 0x0) sendmsg$nl_generic(r1, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000180)=ANY=[@ANYBLOB="240000001000010000000000000096000000000005000000ff7f000000000000040014"], 0x24}}, 0x0) r2 = syz_mount_image$vfat(&(0x7f0000000000), &(0x7f0000000100)='./file0\x00', 0x0, 0x2, &(0x7f0000000200)=[{&(0x7f0000010000)="eb3c906d6b66732e66617400020101000240008000f801", 0x17}, {&(0x7f0000010300)="53595a4b414c4c45522020080000e680325132510000e680325100000000000041660069006c00650030000f00fc0000ffffffffffffffffffff0000ffffffff46494c45302020202020201000ace670325132510000e670325103000000000041660069006c00650031000f00100000ffffffffffffffffffff0000ffffffff46494c45312020202020202000ace670325132510000e670325107", 0x9b, 0x600}], 0x0, &(0x7f0000000080)=ANY=[]) io_setup(0x5, &(0x7f0000000000)) r3 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x105142, 0x0) io_uring_register$IORING_REGISTER_PERSONALITY(r3, 0x9, 0x0, 0x0) openat(r2, &(0x7f00000000c0)='./file2\x00', 0x8040, 0x0) inotify_init1(0x0) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x4150, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xdd}, 0x0, 0x0, 0xffffffffffffffff, 0x0) pselect6(0x40, &(0x7f0000000180)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7}, &(0x7f00000001c0)={0x3fc}, 0x0, 0x0, 0x0) [ 3092.129318] EXT4-fs (loop6): mounted filesystem without journal. Opts: ,errors=continue [ 3092.139758] FAULT_INJECTION: forcing a failure. [ 3092.139758] name failslab, interval 1, probability 0, space 0, times 0 [ 3092.142838] CPU: 0 PID: 22439 Comm: syz-executor.6 Not tainted 5.10.207 #1 [ 3092.144492] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 3092.146315] Call Trace: [ 3092.146910] dump_stack+0x107/0x167 [ 3092.147720] should_fail.cold+0x5/0xa [ 3092.148584] ? create_object.isra.0+0x3a/0xa20 [ 3092.149600] should_failslab+0x5/0x20 [ 3092.150438] kmem_cache_alloc+0x5b/0x310 [ 3092.151336] create_object.isra.0+0x3a/0xa20 [ 3092.152320] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 3092.153441] kmem_cache_alloc+0x159/0x310 [ 3092.154354] __es_insert_extent+0xed1/0x1370 [ 3092.155327] ? do_raw_read_unlock+0x70/0x70 [ 3092.156300] ext4_es_insert_extent+0x45d/0xf10 [ 3092.157318] ? ext4_es_scan_clu+0x2e0/0x2e0 [ 3092.158289] ? down_write+0xe0/0x160 [ 3092.159117] ? down_write_killable+0x180/0x180 [ 3092.160130] ext4_map_blocks+0x8e1/0x1940 [ 3092.161068] ? __kernel_text_address+0x9/0x40 [ 3092.162054] ? ext4_issue_zeroout+0x1c0/0x1c0 [ 3092.163044] ? ext4_journal_check_start+0x1b3/0x2a0 [ 3092.164149] ? __ext4_journal_start_sb+0x1db/0x390 [ 3092.165243] ? ext4_meta_trans_blocks+0x25c/0x310 [ 3092.166307] ext4_iomap_begin+0x3ad/0x700 [ 3092.167231] ? ext4_iomap_begin_report+0x5a0/0x5a0 [ 3092.168312] ? kasan_save_stack+0x1b/0x40 19:56:32 executing program 4: syz_80211_inject_frame(&(0x7f00000000c0)=@device_a={0x8, 0x2, 0x11, 0x18}, &(0x7f0000000440)=ANY=[], 0x2f) 19:56:32 executing program 2: r0 = socket$inet_icmp_raw(0x2, 0x3, 0x1) r1 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a) ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000140)={'syz_tun\x00', 0x0}) perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) sendmmsg$inet(r0, &(0x7f0000002040)=[{{&(0x7f0000000380)={0x2, 0x0, @multicast1}, 0x10, &(0x7f0000001600)=[{&(0x7f00000003c0)="db9c", 0xffe7}], 0x1, &(0x7f0000001640)=ANY=[@ANYBLOB="14000000000000000000000007000000c4048f01000000001c000000000000000000000008000000", @ANYRES32=r2], 0x38}}], 0x1, 0x0) (fail_nth: 11) [ 3092.169218] ? ext4_file_write_iter+0xb26/0x18d0 [ 3092.170397] ? truncate_exceptional_pvec_entries.part.0+0x510/0x510 [ 3092.171789] ? splice_direct_to_actor+0x387/0x980 [ 3092.172860] ? do_splice_direct+0x1c4/0x290 [ 3092.173818] ? vfs_copy_file_range+0x4f8/0x1290 [ 3092.174843] ? __do_sys_copy_file_range+0x193/0x420 [ 3092.175948] ? do_syscall_64+0x33/0x40 [ 3092.176818] ? entry_SYSCALL_64_after_hwframe+0x62/0xc7 [ 3092.177999] iomap_apply+0x164/0x810 [ 3092.178824] ? iomap_dio_rw+0x90/0x90 [ 3092.179672] ? trace_event_raw_event_iomap_apply+0x430/0x430 [ 3092.180963] ? mark_held_locks+0x9e/0xe0 [ 3092.181882] ? filemap_check_errors+0xa5/0x150 [ 3092.182909] __iomap_dio_rw+0x6cd/0x1110 [ 3092.183801] ? iomap_dio_rw+0x90/0x90 [ 3092.184680] ? iomap_dio_bio_actor+0xef0/0xef0 [ 3092.185683] ? generic_update_time+0x21c/0x370 [ 3092.186689] ? ext4_orphan_add+0x253/0x9e0 [ 3092.187615] ? inode_dio_wait+0xbf/0x270 [ 3092.188526] ? ext4_empty_dir+0xae0/0xae0 [ 3092.189457] ? ext4_journal_check_start+0x1b3/0x2a0 [ 3092.190560] iomap_dio_rw+0x31/0x90 [ 3092.191367] ext4_file_write_iter+0xb26/0x18d0 [ 3092.192400] ? ext4_file_read_iter+0x4c0/0x4c0 [ 3092.193410] ? kasan_save_stack+0x32/0x40 [ 3092.194319] ? kasan_save_stack+0x1b/0x40 [ 3092.195233] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 3092.196368] ? iter_file_splice_write+0x16d/0xc30 [ 3092.197416] ? direct_splice_actor+0x10f/0x170 [ 3092.198431] ? splice_direct_to_actor+0x387/0x980 [ 3092.199496] ? do_splice_direct+0x1c4/0x290 [ 3092.200462] ? vfs_copy_file_range+0x4f8/0x1290 [ 3092.201485] ? __do_sys_copy_file_range+0x193/0x420 [ 3092.202602] do_iter_readv_writev+0x476/0x750 [ 3092.203597] ? new_sync_write+0x660/0x660 [ 3092.204536] ? selinux_file_permission+0x92/0x520 [ 3092.205631] do_iter_write+0x191/0x670 [ 3092.206500] ? trace_hardirqs_on+0x5b/0x180 [ 3092.207465] vfs_iter_write+0x70/0xa0 [ 3092.208316] iter_file_splice_write+0x762/0xc30 [ 3092.209364] ? generic_splice_sendpage+0x140/0x140 [ 3092.210458] ? avc_policy_seqno+0x9/0x70 [ 3092.211354] ? selinux_file_permission+0x92/0x520 [ 3092.212445] ? lockdep_init_map_type+0x2c7/0x780 [ 3092.213490] ? generic_splice_sendpage+0x140/0x140 [ 3092.214569] direct_splice_actor+0x10f/0x170 [ 3092.215539] splice_direct_to_actor+0x387/0x980 [ 3092.216592] ? pipe_to_sendpage+0x380/0x380 [ 3092.217551] ? do_splice_to+0x160/0x160 [ 3092.218429] ? security_file_permission+0x24e/0x570 [ 3092.219555] do_splice_direct+0x1c4/0x290 [ 3092.220481] ? splice_direct_to_actor+0x980/0x980 [ 3092.221531] ? selinux_file_permission+0x92/0x520 [ 3092.222604] ? security_file_permission+0x24e/0x570 [ 3092.223727] vfs_copy_file_range+0x4f8/0x1290 [ 3092.224729] ? generic_file_rw_checks+0x240/0x240 [ 3092.225826] __do_sys_copy_file_range+0x193/0x420 [ 3092.226885] ? vfs_copy_file_range+0x1290/0x1290 [ 3092.227916] ? ksys_write+0x1a9/0x260 [ 3092.228772] ? __ia32_sys_read+0xb0/0xb0 [ 3092.229689] do_syscall_64+0x33/0x40 [ 3092.230504] entry_SYSCALL_64_after_hwframe+0x62/0xc7 [ 3092.231620] RIP: 0033:0x7fec371d4b19 [ 3092.232446] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 3092.236484] RSP: 002b:00007fec3474a188 EFLAGS: 00000246 ORIG_RAX: 0000000000000146 [ 3092.238151] RAX: ffffffffffffffda RBX: 00007fec372e7f60 RCX: 00007fec371d4b19 [ 3092.239732] RDX: 0000000000000006 RSI: 0000000000000000 RDI: 0000000000000007 [ 3092.241327] RBP: 00007fec3474a1d0 R08: 0000000000000c3a R09: 0000000000000000 [ 3092.242885] R10: 0000000020000280 R11: 0000000000000246 R12: 0000000000000002 [ 3092.244465] R13: 00007ffec551fc1f R14: 00007fec3474a300 R15: 0000000000022000 [ 3092.245668] FAULT_INJECTION: forcing a failure. [ 3092.245668] name failslab, interval 1, probability 0, space 0, times 0 [ 3092.248402] CPU: 1 PID: 22642 Comm: syz-executor.2 Not tainted 5.10.207 #1 [ 3092.249857] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 3092.251527] Call Trace: [ 3092.252067] dump_stack+0x107/0x167 [ 3092.252854] should_fail.cold+0x5/0xa [ 3092.253645] ? create_object.isra.0+0x3a/0xa20 [ 3092.254584] should_failslab+0x5/0x20 [ 3092.255362] kmem_cache_alloc+0x5b/0x310 [ 3092.256175] ? lock_acquire+0x197/0x470 [ 3092.257002] create_object.isra.0+0x3a/0xa20 [ 3092.257912] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 3092.258949] kmem_cache_alloc+0x159/0x310 [ 3092.259798] dst_alloc+0x9e/0x610 [ 3092.260491] ? trace_hardirqs_on+0x5b/0x180 [ 3092.261419] rt_dst_alloc+0x73/0x440 [ 3092.262164] ip_route_output_key_hash_rcu+0x93d/0x2a90 [ 3092.263252] ip_route_output_key_hash+0x18d/0x340 [ 3092.264216] ? ip_route_output_key_hash_rcu+0x2a90/0x2a90 [ 3092.265351] ? _copy_from_iter_full+0x27c/0xa60 [ 3092.266279] ip_route_output_flow+0x23/0x150 [ 3092.267153] raw_sendmsg+0x930/0x29d0 [ 3092.267927] ? dst_output+0x170/0x170 [ 3092.268702] ? __lock_acquire+0x1657/0x5b00 [ 3092.269583] ? perf_trace_lock+0xac/0x490 [ 3092.270399] ? SOFTIRQ_verbose+0x10/0x10 [ 3092.271198] ? create_object.isra.0+0x3ad/0xa20 [ 3092.272114] ? __lockdep_reset_lock+0x180/0x180 [ 3092.272434] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium [ 3092.273050] ? selinux_socket_post_create+0x7f0/0x7f0 [ 3092.273067] ? find_held_lock+0x2c/0x110 [ 3092.273104] ? trace_hardirqs_on+0x5b/0x180 [ 3092.277711] ? dst_output+0x170/0x170 [ 3092.278509] inet_sendmsg+0x11d/0x140 [ 3092.279267] ? inet_send_prepare+0x540/0x540 [ 3092.280129] __sock_sendmsg+0x13c/0x190 [ 3092.280944] ____sys_sendmsg+0x334/0x870 [ 3092.281768] ? sock_write_iter+0x3d0/0x3d0 [ 3092.282619] ? do_recvmmsg+0x6d0/0x6d0 [ 3092.283405] ? perf_trace_lock+0xac/0x490 [ 3092.284233] ? __lockdep_reset_lock+0x180/0x180 [ 3092.285190] ? perf_trace_lock+0xac/0x490 [ 3092.286016] ___sys_sendmsg+0xf3/0x170 [ 3092.286777] ? sendmsg_copy_msghdr+0x160/0x160 [ 3092.287678] ? lock_downgrade+0x6d0/0x6d0 [ 3092.288509] ? lock_downgrade+0x6d0/0x6d0 [ 3092.289324] ? __fget_files+0x296/0x4c0 [ 3092.290113] ? __fget_light+0xea/0x290 [ 3092.290885] __sys_sendmmsg+0x195/0x470 [ 3092.291668] ? __ia32_sys_sendmsg+0xb0/0xb0 [ 3092.292522] ? lock_downgrade+0x6d0/0x6d0 [ 3092.293359] ? __mutex_unlock_slowpath+0xe1/0x600 [ 3092.294306] ? wait_for_completion_io+0x270/0x270 [ 3092.295250] ? rcu_read_lock_any_held+0x75/0xa0 [ 3092.296154] ? vfs_write+0x354/0xa70 [ 3092.296903] ? fput_many+0x2f/0x1a0 [ 3092.297615] ? ksys_write+0x1a9/0x260 [ 3092.298359] ? __ia32_sys_read+0xb0/0xb0 [ 3092.299160] __x64_sys_sendmmsg+0x99/0x100 [ 3092.299986] do_syscall_64+0x33/0x40 [ 3092.300718] entry_SYSCALL_64_after_hwframe+0x62/0xc7 [ 3092.301703] RIP: 0033:0x7fac065c2b19 [ 3092.302423] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 3092.306030] RSP: 002b:00007fac03b38188 EFLAGS: 00000246 ORIG_RAX: 0000000000000133 [ 3092.307515] RAX: ffffffffffffffda RBX: 00007fac066d5f60 RCX: 00007fac065c2b19 [ 3092.308945] RDX: 0000000000000001 RSI: 0000000020002040 RDI: 0000000000000003 [ 3092.310382] RBP: 00007fac03b381d0 R08: 0000000000000000 R09: 0000000000000000 [ 3092.311764] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 3092.313185] R13: 00007ffe4d4b793f R14: 00007fac03b38300 R15: 0000000000022000 19:56:32 executing program 6: syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000140)='./file0\x00', 0x40000, 0x4, &(0x7f0000000200)=[{&(0x7f0000010000)="20000000000100000c000000d40000000f000000010000000000000000000000002000000020000020000000d7f4655fd7f4655f0100ffff53ef010001000000d7f4655f000000000000000001000000000000000b0000000002", 0x5a, 0x400}, {&(0x7f0000010400)="030000000400000005000000d4000f", 0xf, 0x800}, {&(0x7f0000000500)="ffffffffff070000000000000000000000000000000000000000000000000080ffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffff", 0x402, 0xc00}, {&(0x7f0000010e00)="ed41000000040000d7f4655fd7f4655fd7f4655f000000000000040002", 0x1d, 0x1600}], 0x0, &(0x7f00000003c0)=ANY=[]) chdir(&(0x7f0000000040)='./file0\x00') openat(0xffffffffffffff9c, &(0x7f0000000080)='./file1\x00', 0x105142, 0x0) r0 = openat(0xffffffffffffff9c, &(0x7f0000000200)='./file1\x00', 0x2, 0x0) write(r0, &(0x7f0000000240)="01", 0x1) r1 = openat(0xffffffffffffff9c, &(0x7f00000000c0)='./file2\x00', 0x105142, 0x0) r2 = openat(0xffffffffffffff9c, &(0x7f0000001340)='./file1\x00', 0x0, 0x0) copy_file_range(r2, 0x0, r1, &(0x7f0000000280)=0x10000, 0xc3a, 0x0) (fail_nth: 20) openat$sr(0xffffffffffffff9c, 0x0, 0x0, 0x0) 19:56:32 executing program 3: r0 = perf_event_open(&(0x7f0000000040)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5b, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x1, 0xfffffffffffffffe}, 0x0, 0x0, 0x0, 0x0, 0x7}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) syz_read_part_table(0x0, 0x1, &(0x7f0000001900)=[{0x0, 0x0, 0x7ffc}]) r1 = syz_open_dev$ttys(0xc, 0x2, 0x0) r2 = dup(r1) pidfd_send_signal(0xffffffffffffffff, 0x0, &(0x7f0000000040)={0xb, 0x0, 0x2000000}, 0x0) openat$sysfs(0xffffffffffffff9c, &(0x7f0000000740)='/sys/class/drm', 0x970c7917c8cb9e10, 0x2) write$binfmt_elf64(0xffffffffffffffff, 0x0, 0xfdef) syz_io_uring_submit(0x0, 0x0, &(0x7f0000000300)=@IORING_OP_TIMEOUT={0xb, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x0) setsockopt$inet6_IPV6_FLOWLABEL_MGR(0xffffffffffffffff, 0x29, 0x20, 0x0, 0x0) ioctl$EVIOCSABS20(r2, 0x401845e0, &(0x7f00000000c0)={0x11, 0x4dbf, 0x223a, 0x9, 0x3f}) syz_io_uring_submit(0x0, 0x0, &(0x7f0000000240)=@IORING_OP_CONNECT={0x10, 0x4, 0x0, 0xffffffffffffffff, 0x80, &(0x7f00000001c0)=@nl=@unspec}, 0x0) ptrace$getsig(0x4202, 0x0, 0xb3, 0x0) syz_io_uring_submit(0x0, 0x0, 0x0, 0x0) syz_io_uring_submit(0x0, 0x0, 0x0, 0x10000009) mmap$IORING_OFF_CQ_RING(&(0x7f0000ffd000/0x3000)=nil, 0x3000, 0x1000004, 0x10, 0xffffffffffffffff, 0x8000000) newfstatat(0xffffffffffffff9c, &(0x7f0000000100)='./file0\x00', 0x0, 0x0) sendfile(0xffffffffffffffff, 0xffffffffffffffff, &(0x7f0000000000)=0xe72, 0xffffffff7fffffff) copy_file_range(0xffffffffffffffff, 0x0, r0, 0x0, 0x67, 0x0) 19:56:32 executing program 1: r0 = syz_open_dev$usbmon(&(0x7f0000000040), 0x0, 0x0) syz_io_uring_setup(0x8, &(0x7f0000000180), &(0x7f0000ffb000/0x4000)=nil, &(0x7f0000ffb000/0x5000)=nil, 0x0, 0x0) socket$packet(0x11, 0x3, 0x300) fcntl$getownex(r0, 0x10, &(0x7f0000000240)) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f0000000040)}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x1) r1 = socket$netlink(0x10, 0x3, 0x0) sendmsg$nl_generic(r1, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000180)=ANY=[@ANYBLOB="240000001000010000000000000096000000000005000000ff7f000000000000040014"], 0x24}}, 0x0) r2 = syz_mount_image$vfat(&(0x7f0000000000), &(0x7f0000000100)='./file0\x00', 0x0, 0x2, &(0x7f0000000200)=[{&(0x7f0000010000)="eb3c906d6b66732e66617400020101000240008000f801", 0x17}, {&(0x7f0000010300)="53595a4b414c4c45522020080000e680325132510000e680325100000000000041660069006c00650030000f00fc0000ffffffffffffffffffff0000ffffffff46494c45302020202020201000ace670325132510000e670325103000000000041660069006c00650031000f00100000ffffffffffffffffffff0000ffffffff46494c45312020202020202000ace670325132510000e670325107", 0x9b, 0x600}], 0x0, &(0x7f0000000080)=ANY=[]) io_setup(0x5, &(0x7f0000000000)) r3 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x105142, 0x0) io_uring_register$IORING_REGISTER_PERSONALITY(r3, 0x9, 0x0, 0x0) openat(r2, &(0x7f00000000c0)='./file2\x00', 0x8040, 0x0) inotify_init1(0x0) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x4150, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xdd}, 0x0, 0x0, 0xffffffffffffffff, 0x0) pselect6(0x40, &(0x7f0000000180)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7}, &(0x7f00000001c0)={0x3fc}, 0x0, 0x0, 0x0) 19:56:32 executing program 2: r0 = socket$inet_icmp_raw(0x2, 0x3, 0x1) r1 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a) ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000140)={'syz_tun\x00', 0x0}) perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) sendmmsg$inet(r0, &(0x7f0000002040)=[{{&(0x7f0000000380)={0x2, 0x0, @multicast1}, 0x10, &(0x7f0000001600)=[{&(0x7f00000003c0)="db9c", 0xffe7}], 0x1, &(0x7f0000001640)=ANY=[@ANYBLOB="14000000000000000000000007000000c4048f01000000001c000000000000000000000008000000", @ANYRES32=r2], 0x38}}], 0x1, 0x0) (fail_nth: 12) [ 3092.517404] FAULT_INJECTION: forcing a failure. [ 3092.517404] name failslab, interval 1, probability 0, space 0, times 0 [ 3092.520440] CPU: 1 PID: 22702 Comm: syz-executor.2 Not tainted 5.10.207 #1 [ 3092.522086] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 3092.523996] Call Trace: [ 3092.524590] dump_stack+0x107/0x167 [ 3092.525399] should_fail.cold+0x5/0xa [ 3092.526238] ? ip_setup_cork+0x6ea/0x930 [ 3092.527648] should_failslab+0x5/0x20 [ 3092.528664] kmem_cache_alloc_trace+0x55/0x320 [ 3092.529986] ? lock_release+0x680/0x680 [ 3092.531024] ip_setup_cork+0x6ea/0x930 [ 3092.532039] ? raw_destroy+0x30/0x30 [ 3092.533070] ip_append_data+0x167/0x1a0 [ 3092.534257] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 3092.535694] raw_sendmsg+0xaa6/0x29d0 [ 3092.536472] ? dst_output+0x170/0x170 [ 3092.537262] ? __lock_acquire+0x1657/0x5b00 [ 3092.538099] ? perf_trace_lock+0xac/0x490 [ 3092.538889] ? SOFTIRQ_verbose+0x10/0x10 [ 3092.539650] ? create_object.isra.0+0x3ad/0xa20 [ 3092.540620] ? __lockdep_reset_lock+0x180/0x180 [ 3092.541611] ? selinux_socket_post_create+0x7f0/0x7f0 [ 3092.542642] ? find_held_lock+0x2c/0x110 [ 3092.543397] ? trace_hardirqs_on+0x5b/0x180 [ 3092.544309] ? dst_output+0x170/0x170 [ 3092.545000] inet_sendmsg+0x11d/0x140 [ 3092.545689] ? inet_send_prepare+0x540/0x540 [ 3092.546484] __sock_sendmsg+0x13c/0x190 [ 3092.547340] ____sys_sendmsg+0x334/0x870 [ 3092.548217] ? sock_write_iter+0x3d0/0x3d0 [ 3092.548990] ? do_recvmmsg+0x6d0/0x6d0 [ 3092.549803] ? perf_trace_lock+0xac/0x490 [ 3092.550535] ? __lockdep_reset_lock+0x180/0x180 [ 3092.551356] ? perf_trace_lock+0xac/0x490 [ 3092.552092] ___sys_sendmsg+0xf3/0x170 [ 3092.552896] ? sendmsg_copy_msghdr+0x160/0x160 [ 3092.553802] ? lock_downgrade+0x6d0/0x6d0 [ 3092.554685] ? lock_downgrade+0x6d0/0x6d0 [ 3092.555429] ? __fget_files+0x296/0x4c0 [ 3092.556147] ? __fget_light+0xea/0x290 [ 3092.556943] __sys_sendmmsg+0x195/0x470 [ 3092.557659] ? __ia32_sys_sendmsg+0xb0/0xb0 [ 3092.558420] ? lock_downgrade+0x6d0/0x6d0 [ 3092.559160] ? __mutex_unlock_slowpath+0xe1/0x600 [ 3092.560027] ? wait_for_completion_io+0x270/0x270 [ 3092.560969] ? rcu_read_lock_any_held+0x75/0xa0 [ 3092.561893] ? vfs_write+0x354/0xa70 [ 3092.562679] ? fput_many+0x2f/0x1a0 [ 3092.563332] ? ksys_write+0x1a9/0x260 [ 3092.564012] ? __ia32_sys_read+0xb0/0xb0 [ 3092.564821] __x64_sys_sendmmsg+0x99/0x100 [ 3092.565614] do_syscall_64+0x33/0x40 [ 3092.566308] entry_SYSCALL_64_after_hwframe+0x62/0xc7 [ 3092.567236] RIP: 0033:0x7fac065c2b19 [ 3092.567893] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 3092.571594] RSP: 002b:00007fac03b38188 EFLAGS: 00000246 ORIG_RAX: 0000000000000133 [ 3092.573010] RAX: ffffffffffffffda RBX: 00007fac066d5f60 RCX: 00007fac065c2b19 [ 3092.574304] RDX: 0000000000000001 RSI: 0000000020002040 RDI: 0000000000000003 [ 3092.575644] RBP: 00007fac03b381d0 R08: 0000000000000000 R09: 0000000000000000 [ 3092.576994] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 3092.578513] R13: 00007ffe4d4b793f R14: 00007fac03b38300 R15: 0000000000022000 [ 3092.592598] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium [ 3092.608422] FAULT_INJECTION: forcing a failure. [ 3092.608422] name failslab, interval 1, probability 0, space 0, times 0 [ 3092.610980] CPU: 1 PID: 22704 Comm: syz-executor.6 Not tainted 5.10.207 #1 [ 3092.612230] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 3092.613751] Call Trace: [ 3092.614197] dump_stack+0x107/0x167 [ 3092.614833] should_fail.cold+0x5/0xa [ 3092.615495] ? __es_insert_extent+0xed1/0x1370 [ 3092.616301] should_failslab+0x5/0x20 [ 3092.616958] kmem_cache_alloc+0x5b/0x310 [ 3092.617642] __es_insert_extent+0xed1/0x1370 [ 3092.618404] ? do_raw_read_unlock+0x70/0x70 [ 3092.619141] ? perf_trace_lock+0xac/0x490 [ 3092.619871] ext4_es_insert_extent+0x45d/0xf10 [ 3092.620675] ? ext4_es_scan_clu+0x2e0/0x2e0 [ 3092.621471] ? ext4_es_find_extent_range+0x13b/0x3b0 [ 3092.622374] ? lock_downgrade+0x6d0/0x6d0 [ 3092.623115] ? __ext4_handle_dirty_super+0x100/0x100 [ 3092.623989] ? __es_find_extent_range+0x197/0x4b0 [ 3092.624853] ? do_raw_read_unlock+0x3b/0x70 [ 3092.625604] ext4_ext_map_blocks+0x1852/0x5850 [ 3092.626441] ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0 [ 3092.627395] ? SOFTIRQ_verbose+0x10/0x10 [ 3092.628095] ? perf_trace_lock+0xac/0x490 [ 3092.628822] ? SOFTIRQ_verbose+0x10/0x10 [ 3092.629534] ? ext4_ext_release+0x10/0x10 [ 3092.630281] ? lock_release+0x680/0x680 [ 3092.630969] ? ext4_es_lookup_extent+0x48d/0xaa0 [ 3092.631764] ? lock_downgrade+0x6d0/0x6d0 [ 3092.632491] ? down_read+0x10f/0x430 [ 3092.633111] ? down_write+0x160/0x160 [ 3092.633746] ? ext4_es_lookup_extent+0xc4/0xaa0 [ 3092.634552] ext4_map_blocks+0x9cc/0x1940 [ 3092.635263] ? kmem_cache_alloc+0x2a6/0x310 [ 3092.635997] ? __kernel_text_address+0x9/0x40 [ 3092.636765] ? ext4_issue_zeroout+0x1c0/0x1c0 [ 3092.637521] ? jbd2__journal_start+0xf3/0x7e0 [ 3092.638287] ? __ext4_journal_start_sb+0x214/0x390 [ 3092.639119] ? __ext4_journal_start_sb+0x1db/0x390 [ 3092.639951] ext4_iomap_begin+0x3ad/0x700 [ 3092.640684] ? ext4_iomap_begin_report+0x5a0/0x5a0 [ 3092.641517] ? kasan_save_stack+0x1b/0x40 [ 3092.642242] ? ext4_file_write_iter+0xb26/0x18d0 [ 3092.643052] ? truncate_exceptional_pvec_entries.part.0+0x510/0x510 [ 3092.644123] ? splice_direct_to_actor+0x387/0x980 [ 3092.645000] ? do_splice_direct+0x1c4/0x290 [ 3092.645744] ? vfs_copy_file_range+0x4f8/0x1290 [ 3092.646567] ? __do_sys_copy_file_range+0x193/0x420 [ 3092.647449] ? do_syscall_64+0x33/0x40 [ 3092.648157] ? entry_SYSCALL_64_after_hwframe+0x62/0xc7 [ 3092.649103] iomap_apply+0x164/0x810 [ 3092.649756] ? iomap_dio_rw+0x90/0x90 [ 3092.650423] ? trace_event_raw_event_iomap_apply+0x430/0x430 [ 3092.651409] ? mark_held_locks+0x9e/0xe0 [ 3092.652104] ? filemap_check_errors+0xa5/0x150 [ 3092.652886] __iomap_dio_rw+0x6cd/0x1110 [ 3092.653557] ? iomap_dio_rw+0x90/0x90 [ 3092.654242] ? iomap_dio_bio_actor+0xef0/0xef0 [ 3092.655013] ? ext4_orphan_add+0x253/0x9e0 [ 3092.655725] ? jbd2_buffer_abort_trigger+0x80/0x80 [ 3092.656563] ? ext4_empty_dir+0xae0/0xae0 [ 3092.657273] ? jbd2__journal_start+0xf3/0x7e0 [ 3092.658046] iomap_dio_rw+0x31/0x90 [ 3092.658662] ext4_file_write_iter+0xb26/0x18d0 [ 3092.659454] ? ext4_file_read_iter+0x4c0/0x4c0 [ 3092.660223] ? kasan_save_stack+0x32/0x40 [ 3092.660950] ? kasan_save_stack+0x1b/0x40 [ 3092.661650] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 3092.662493] ? iter_file_splice_write+0x16d/0xc30 [ 3092.663299] ? direct_splice_actor+0x10f/0x170 [ 3092.664069] ? splice_direct_to_actor+0x387/0x980 [ 3092.664884] ? do_splice_direct+0x1c4/0x290 [ 3092.665597] ? vfs_copy_file_range+0x4f8/0x1290 [ 3092.666326] ? __do_sys_copy_file_range+0x193/0x420 [ 3092.667164] do_iter_readv_writev+0x476/0x750 [ 3092.667890] ? new_sync_write+0x660/0x660 [ 3092.668565] ? selinux_file_permission+0x92/0x520 [ 3092.669397] do_iter_write+0x191/0x670 [ 3092.670054] ? trace_hardirqs_on+0x5b/0x180 [ 3092.670737] vfs_iter_write+0x70/0xa0 [ 3092.671383] iter_file_splice_write+0x762/0xc30 [ 3092.672175] ? generic_splice_sendpage+0x140/0x140 [ 3092.673041] ? avc_policy_seqno+0x9/0x70 [ 3092.673668] ? selinux_file_permission+0x92/0x520 [ 3092.674497] ? lockdep_init_map_type+0x2c7/0x780 [ 3092.675261] ? generic_splice_sendpage+0x140/0x140 [ 3092.676069] direct_splice_actor+0x10f/0x170 [ 3092.676771] splice_direct_to_actor+0x387/0x980 [ 3092.677565] ? pipe_to_sendpage+0x380/0x380 [ 3092.678268] ? do_splice_to+0x160/0x160 [ 3092.678948] ? security_file_permission+0x24e/0x570 [ 3092.679744] do_splice_direct+0x1c4/0x290 [ 3092.680448] ? splice_direct_to_actor+0x980/0x980 [ 3092.681250] ? selinux_file_permission+0x92/0x520 [ 3092.682063] ? security_file_permission+0x24e/0x570 [ 3092.682889] vfs_copy_file_range+0x4f8/0x1290 [ 3092.683658] ? generic_file_rw_checks+0x240/0x240 [ 3092.684556] __do_sys_copy_file_range+0x193/0x420 [ 3092.685335] ? vfs_copy_file_range+0x1290/0x1290 [ 3092.686089] ? ksys_write+0x1a9/0x260 [ 3092.686709] ? __ia32_sys_read+0xb0/0xb0 [ 3092.687389] do_syscall_64+0x33/0x40 [ 3092.688022] entry_SYSCALL_64_after_hwframe+0x62/0xc7 [ 3092.688890] RIP: 0033:0x7fec371d4b19 [ 3092.689512] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 3092.692717] RSP: 002b:00007fec34729188 EFLAGS: 00000246 ORIG_RAX: 0000000000000146 [ 3092.694028] RAX: ffffffffffffffda RBX: 00007fec372e8020 RCX: 00007fec371d4b19 [ 3092.695245] RDX: 0000000000000007 RSI: 0000000000000000 RDI: 0000000000000008 [ 3092.696426] RBP: 00007fec347291d0 R08: 0000000000000c3a R09: 0000000000000000 [ 3092.697587] R10: 0000000020000280 R11: 0000000000000246 R12: 0000000000000002 [ 3092.698881] R13: 00007ffec551fc1f R14: 00007fec34729300 R15: 0000000000022000 [ 3092.857572] EXT4-fs (loop6): mounted filesystem without journal. Opts: ,errors=continue 19:56:47 executing program 6: syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000140)='./file0\x00', 0x40000, 0x4, &(0x7f0000000200)=[{&(0x7f0000010000)="20000000000100000c000000d40000000f000000010000000000000000000000002000000020000020000000d7f4655fd7f4655f0100ffff53ef010001000000d7f4655f000000000000000001000000000000000b0000000002", 0x5a, 0x400}, {&(0x7f0000010400)="030000000400000005000000d4000f", 0xf, 0x800}, {&(0x7f0000000500)="ffffffffff070000000000000000000000000000000000000000000000000080ffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffff", 0x402, 0xc00}, {&(0x7f0000010e00)="ed41000000040000d7f4655fd7f4655fd7f4655f000000000000040002", 0x1d, 0x1600}], 0x0, &(0x7f00000003c0)=ANY=[]) chdir(&(0x7f0000000040)='./file0\x00') openat(0xffffffffffffff9c, &(0x7f0000000080)='./file1\x00', 0x105142, 0x0) r0 = openat(0xffffffffffffff9c, &(0x7f0000000200)='./file1\x00', 0x2, 0x0) write(r0, &(0x7f0000000240)="01", 0x1) r1 = openat(0xffffffffffffff9c, &(0x7f00000000c0)='./file2\x00', 0x105142, 0x0) r2 = openat(0xffffffffffffff9c, &(0x7f0000001340)='./file1\x00', 0x0, 0x0) copy_file_range(r2, 0x0, r1, &(0x7f0000000280)=0x10000, 0xc3a, 0x0) (fail_nth: 21) openat$sr(0xffffffffffffff9c, 0x0, 0x0, 0x0) 19:56:47 executing program 7: r0 = socket$inet_tcp(0x2, 0x1, 0x0) sendto$inet(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0) r1 = openat(0xffffffffffffffff, &(0x7f0000000000)='/proc/self/exe\x00', 0x10000, 0x0) sendfile(0xffffffffffffffff, 0xffffffffffffffff, 0x0, 0x100000001) setsockopt$inet_tcp_TCP_REPAIR(r1, 0x6, 0x13, &(0x7f00000000c0), 0x4) setsockopt$sock_linger(r0, 0x1, 0x35, &(0x7f00000011c0)={0x0, 0x5}, 0x8) signalfd4(0xffffffffffffffff, &(0x7f0000000040)={[0x4]}, 0x8, 0x800) ioctl$AUTOFS_DEV_IOCTL_REQUESTER(0xffffffffffffffff, 0xc018937b, 0x0) ioctl$SNAPSHOT_PLATFORM_SUPPORT(0xffffffffffffffff, 0x330f, 0x0) r2 = openat(0xffffffffffffffff, &(0x7f0000000080)='./file1\x00', 0x105142, 0x0) r3 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0) ioctl$BTRFS_IOC_QUOTA_RESCAN(0xffffffffffffffff, 0x4040942c, &(0x7f0000000140)={0x0, 0x401, [0x40, 0x1, 0x4, 0xa2, 0x7ff, 0x5]}) copy_file_range(r3, 0x0, r2, 0x0, 0x10001, 0x0) dup2(r2, r3) r4 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x0, 0x0) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x6, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x8}, 0x2, 0x0, 0x0, 0x0, 0x0, 0xfffffffe}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) pipe2(&(0x7f0000000000)={0x0, 0x0}, 0x80800) writev(r5, &(0x7f0000001280)=[{&(0x7f0000001180)}], 0x1) fcntl$setpipe(r5, 0x407, 0x0) sendfile(r2, r4, 0x0, 0x20d315) 19:56:47 executing program 3: socket$inet_tcp(0x2, 0x1, 0x0) sendto$inet(0xffffffffffffffff, 0x0, 0x0, 0x20000854, &(0x7f0000000140)={0x2, 0x0, @dev}, 0x10) openat(0xffffffffffffff9c, 0x0, 0x46e2, 0x0) getdents(0xffffffffffffffff, 0x0, 0x0) socket$inet6_udp(0xa, 0x2, 0x0) r0 = openat(0xffffffffffffff9c, &(0x7f0000000080)='./file1\x00', 0x105142, 0x0) r1 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0) copy_file_range(r1, 0x0, r0, 0x0, 0x10001, 0x0) socketpair(0x9, 0x5, 0xb, &(0x7f0000000040)={0xffffffffffffffff}) sendmsg(r2, &(0x7f0000004a40)={&(0x7f0000000180)=@rxrpc=@in6={0x21, 0x3, 0x2, 0x1c, {0xa, 0x4e23, 0x3ff, @mcast2, 0xffff7fff}}, 0x80, &(0x7f0000001480)=[{&(0x7f0000000280)="18b2711c4f6e072125f0e24eff4c9eec00fd2920bfa8aa087306c0183b5be107cac35612559f4ac365d5cdb0e9687684f1d718594113dea038c45604dcf3a3a320d072e448e3e533734596", 0x4b}, {&(0x7f00000000c0)="b0c0d68509420a5aa4e66d5f1d8c3319f3bcb36b9cd3a7b3862e70817b47a059620646e9ce", 0x25}, {&(0x7f0000000300)="9ecde5e2952094e8b5cc8f4ca0d79f2cbd8910ebfcae1c6cc7866ecf63ad020ac744e4e23fe2cc2e9be8355f23d1ac16f951905e3e19b887fee886859d", 0x3d}, {&(0x7f0000000340)="73c39c4e0e1a9016e1ab78f1256de845af55fab6a911e99538f89b5b943e78fc6f4e20b3f95ac66b04227e1dc4731eceb18737739dc68a64976d8f1424a1a25cdc5d38366e7dccca0a26e39d4a4bac0dbe54a95d5de0011bdf3ff23e51b9fb502564147064f3d8bf7cc54d8870c20dbe00d94b2cb3d169d37ac643f0405d035cfdfc042d734b67649d3c32da83861fb0a114090aeee0cd2bae8ee28505f388b55127a52530d144bc079b2027c35bbbde2df37f7e105879ff3d4ab1b3a5b40a127c2055f7dbc75cbf935da412ca906c67527844773285084039aaac5499358db2a29dcd984a0d4060d63b", 0xea}, {&(0x7f0000000440)="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", 0x1000}, {&(0x7f0000001440)="48372b402127db142e148f45a6dcce", 0xf}], 0x6, &(0x7f0000001500)=[{0x1010, 0x117, 0x3, "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"}, {0xa0, 0x105, 0x8, "0a484b7babe3f3925bff3e8ab7f3bea55383e9ee0c2fc0e0a63d2a6cbc0a5f584846c86763f002470d4ca120f2d3c809bad3c30c791fe334f389f5181be9bd07df40145ac548b028e6de31b1477a9dc6e5cfb32dff5a80870886121d7d705a54274071902d15dca6d8d9f0c5da770d51cc2eedaf12a82eb1b61b6fd55844475496f2ab50b8e08adc93301857907457"}, {0xd0, 0x3a, 0xfffffff9, "3f70739f97a00ab093b8b65c4303c20d4fb0761d2000374a9e36d9429866a0134df37b13f36611ec05f6a2fadc40092befe0219e2e42fdee78a5c5cd01e0d7566c04a37686f778dfdfa048044e7ff7dcd183824687a97bba7d1c68810a0f00db4fa384bedf1f15d93de8e47f6f36d19376b12de6cd0e27f545b179927f4feda34553d4b8067e18823f3de491c84145db0fb135aa06be254d538bab0fa703e9466b9f0d081225c614478a49900e313fd9a19f6e612aa3c5e5b22a18"}, {0x28, 0x119, 0x4, "5d2111e0950519e05c8ba22ce277131514d0"}, {0xe0, 0x110, 0x401, "d45a17da088f84b89b47b8bb8c46d0ff9ebf11188da4202567d4507b9b9565f3146e095a1a0985b83c933b9de7e938c5a50cddb0f1900637c6f4a6074a4c36764ccd581f669219b582d8789ede595dd66045545c3f0c0ec7aa023f25e7e29d20a6aa37ecb4983e4514d9a424da09b59a8643868918c7de9e894977fbf04b2a0a84505fe5925dfc2c6b7924240fe9161c32af04c75e050465530d6aef7d6a66757dfeebfba9ea35303b7d00a3c853acdeb83013288472a8b2e0a3b8405b101548f70441c1f36347594f8ce6"}, {0xe8, 0x0, 0xd54, "fbbdbbf035ec11605e0e0c4e797b56ce3ab2a3141159a5006a50d1c13b42444c189602842bbedb7d78c161bcc143dd639efe7b0026f97c4944f43e4ccd91849cd48405bf9bcd5a2bc4e7703afe6cd6d16de17216616a4992f36eef9062a11ca335acee90c5275bc9f2bbe88388ca80cb123d01f7d47939e689f4fc0ad58102ef0dc71fcd35d005ae8e41d031f06f2466571f5ac3bd6194d0f943f6012e6fd7afb9b370452f8a9d6e51e2868a4c25178f14a66977333aea60e3c6e8c585a6aaf0a77e6d8b35fbee0dbf2d8c44d089f4e486f23b"}, {0xe8, 0x101, 0x8, "ff5739d3b103f81ba8334c26bc7f922060432b35272b62bb158d32b0780e51c2ceb2ebde0d6b05215835731b68b864278e4a3c00e28bca182a31c2daf18d5c3c1cc0a9a2f2b8212c9398e2e4fb1913071652f681c39cc0aa78116728886865a608ae7d70a710a1c63b400792d4026f8ba632240a36afa985817f85438005ec5241ef95b5dc9f48d373c86ba4d403f4aa42fda846618f65a3da3c2c276770dfbfcb76ab7e09aa27b011440e41a0cf04995a3a9d36c683ac1305d0a36da0595ed610958c3ba79af6592255a83f029e100ab427"}, {0x1010, 0x103, 0x4, "1a525ddd83baaeb4c369b0362e3ce54f579f5b2dc8201d4be592d24f521389cb51de509fe7c617228f8a8c88b67337b46411456b1278d6dd02d142b990ad469759fefecd74ac231bade61f1182105da1aebefa1e6403327aef377468231f2f16692cf39d496bd108347fa0afc1c6ec3646714cfb26a3968175d8715113f7249d85afc9329a3a04f7d1bfc0096b6a495cc9ed62fd0a56b38f9951712951c12afd4216792ee2c627e49597e1de9450ce7f67a910294859f0b1a1787432bb76953f37ef8e163e48e5ba237f58b5ed892431229d2e14a9f909d1202d5a89027fec9c951ef60f223c851e796e30958bddda58caace2026eadbdfc61a2b548172f9300b126575dc03085167f8a3142fe63b11b439b1d6f1b84b2822efd4f3a2b2a46bbd05a8e69f4e8ed531bea4060902345793b7645a7be4289d584235b85ccad7465243bc0ff1e83bd05689f3f939b173892bd708d1374de245655984703d76bd5e34758afa29dd18e6776de453495af6400a05e107a8f8518bd74168bdcfac292bf369eaa20ac2a9bb12aa825980e928a45fec9dbfe5ac59cc00d5ef171817abc0b2b7bd8400b755cd5e7cfc48d910925528b8d537a106d903f0fc75abbcf22ac0b9c2853b21b017a1d443a5b582ed58a9c5689e510d9da098f3335e6813d56eeca3ad01b9ebbba9ad00c6135ed5d05ee7843c8430145d2e60b9ff9f4741591ca2d99b94297df0ef590702a0d5a1d1b243e42afce9ebe4f9628f0bcb758aa6e4271e6b9469c78c5ab6293730b90dafa2ee0150bf7c52f77940158eb8eae01ea811b8ad002804e5938e2f7d9cc9a886abe7f1a4c4e02f46fdbec6db9e2b9c22e8f53e41b4e11ce2293e7bf06ce763fbdba2d82a38677c2bb1c73fa482d97481f7bb5dff0fdf740a7a7a748019f42503177f6d07b09bd9883089e836c61b646542ae443fd9650aa7de04aa62d6f7481df1c6aca26993d433df04c0d5c37e7acc1208f7e7f2b9de5e276c4beb0761b81bb58f37ce8247a55b282eff6b68c6f5053720f4c1fbc7f4addd2da4ff43e52eb86b2b7b89cce25f56f4934227e8b86ae8802318ebcf726c76db77ba281d888c4e41032d6a9e38af1cfbf9609e45cc9d0b25a5c2dd1c50ce7a40ab9a74871a4e2cea0640f14ceef958296cc90eefc0d10c797c4ff0c1a1a02b4960e708981198cdc424bc86cd3712d0c559a85ad22e3ca1c6b70a672a90e3379865b779efbe11c7449d2ee028a6a9680a5c1e50f40faa086788b87110c7a60b00e385e3ba9bebb8d99b72b2498bc3aca7c2bcba3876cefc4979b32917a28415688713dc300fdcd7ee7e854d1100a2ecfd336e2ee3047e056c364c379c8370fd2a5672a5290cd9711c1c0ed8ff9bb22fe9febdb4a8d70de147b8f912709d1a4f163ac981c4f9a01db9871d9271d1745e79de0394165c0cca792de3391dcda9b52443103e70b1d90d4db8ebee237079357acc743fc3da7aa71efac5a295cff8b6bed04d1643d8b9e5b4fb0e513e19ee7f1333def8ecaaefbd099da342bb389aa3053a32ec5dc5a13fe3fda8d430d60ece8bf360864fe96aa5609dc050a04b27f229dc5c493073fffee5aae1f7410675ec9a176172ef7a64f5fe5308c349f033042e33935f0a01af5cf678e967fd63cf2f5b16724ece9aaa83ca923872ea4e71672ad7405973e0fd7ad44b1e781946f981d43f62a1f7dc22c5cd1cc03a3e3df2dc2b7933cb16470049b84460749f18bf22b469fb058ead8ec13c6a0b1eb873962c9a5e8ec7b8cdda2550b4b0b9ae5a154ad8fe719f9d295ef2cbfdc6e7077c8942531440da8b6e6a0e8125c04cdce20188c9e528e3acfb8deb0645a0dea7f1de9091c6b77b918bf6303646c957fa3b2b10e5be3ba5dd38edf116b9bcfa2932c7cbacc83312de0b535ae8851760350a9f9f3657622b94c8be2162fce978469d5cea36462b8e0edc37bbb88e086e894f5823eb9a7aa215cd8f1594a887fe481f70b688349bf88d3d974efc3f5455a233486c70e742831feb0e28c94669ab199d8f1880322f1a5057586eb8871905a9fd2f46c0d3221277b082c431dea23908fc7e81e78ba9426019936762fbfce8e0d7960d3839ca37cab04f67c260c5714c4523b0064a4da5a16a56685caf2c549a8c104dff5708b73e77ca239f03ddd85c326f8dc1ecdaa19f79f13d61414ae7f7ba697685c14323df0963d634cd6d6cd04ddf2bdf3c9a41f0867c9a07152e906a5a11b89f4f8b6052af6d3de92f5939e5048a414baf3ff09f8d569778244c3edb9d8141a9a05c597edac5dc78cbce353ddebfb3d25685d2ed6dc5fbda4eeb0cf8cfc2d7b6ba75ff58898346b68e30ae2e820616f428a0ce7adfb33410a309b618369e93fa672d78937ceaa0ecaf820f8e4cd65da6a3d39048b11af216721a9a81285c1b0bf0c86ef3cb0cb90c78e7b940d1ff59132d1c629667af687f13d5f34f8ee9189958fe98ccc50f81ca6bbf46d913ebb440db88c4397a0d45d0abd8b2d50b647ed688990c404bfe20fa952206931be34b153fa08c983bf2ae6ead8be71f55b433bd348ed27dc24fce5a218b7915fa8684efb98c596aef431c1a95420c858f609385da4218ef8f47a9041223d7040086bc172e07342e3cc4cde2a9d907840a4f534fcd4edd19ee7012853f1b43bb64efe455fa7ae7b7d8d9570249089b173f6789a8fb3a32ce6b58cc417b2d930ec760549e6e36177b4eb9c98d7fd62ae95992ebc52fde8df758c0c9edcdad32e8e0023b5c3d89fb73f6d7c335f41fb71a1ddc1cb508df7858f6e27dfeffea6127de029251377ed74b3b86c54714d77108a8f5daf38dcf2220258d4400f7021e02b035614d35418bd664140bc12eb1517a21805cab835ea8af4792d68c4a56f2406413e4b0f592e95398baa6b813aadc03c252b41e4752284d1af0248d10e694e39dd79bbf5686feec1139a2ba571a6c50abf7ceceb9e15709ba57158ce0169e41a93f76edc38fe37345e7a4582066ce63144e76132fd545bbf85053c1c0823539f38811301a6eee571b2bd163c02702fe14eb65a5991e59e12baf1e246fb5e8e8f65b46b6334d3ab93b055fe1601b87ed20800fa429de88b6e88ca2f8e6b9bb2f639aee9b05206e0b5de038fe3a0c88c07a21abdba886f8d649d3509ef4294d95d9d1ae733adbbcd61ef2bcccda0ce320faa5b95cc726c760de723d4377b305f31ebfea03a44c49f1d3599de71aad2a54a1543fd87abde4f8c104f0bb432e3f9e508f27007f13a759ca39b948a6e4d82aac7f2fe5796496b46051c71f9fdcfbadf32b75d12aa9e89fec836f3853042613cca670e4bdff43b3fba3040e799df3803c50389a577e2ac1170027b15592eb99a61815ff76cfc03f7176e2497a3709ea566f63b5c3ac6d71be96cf015db7918aee373555cefceca096e975f2ef393cfd84a9db2f21f289392447c9a3766c3b684999e111084c3cba00e4096205471f9863dca72dbb5e0cb58ba67f5cc1ee4dc57ec6daabd9d24a5c7b707578098db7eda06e879656804ec1bfa0d599a78f408d0d537aa9ad7daa183eeb3437ea6d0bba815f442782eea2162a980fbd19929c5f85fa8519d22243a2c2ad476b944d960a56dca06d527621ebc0843af4cb0a385d6a7d342fdfe77c9e3c4828b933081ca62d4ec0675450bfc23b2598dbf710d59493de1f03a05cda0e1d3094664a7116e6593df3a63639d5a7d7f76422bfcb18250098fbbbf8f02d6263ed9c721847e35fbd9ac91b82602368ea182ef5e4464acc3d0a7dbb07ebe98871d313dfe7e29b3f6289e69bdcbdd8fdea39a3dd1d4b99e8f553688510890c438049c4b9ba04ade4a7c077a490ebcf7291a54c39d8d3aa33e6e9ffc6f2f119f515ef783fdf0728414d9006f51ab82965885cd4359f0c8bccd9160420b4b0716a70cdd5455f806846e84419adf6e826e52d8ecca453725a2c3a90f36e060b959a92cd80e676d4c20ffa64858a3a403da192fb9b81681d1e102c02b848f44b4c7bbf21132f2e18a0022f18e07f0b8ccd9b90f90502b61639074be69b978e1bb18e347879108f0d03f4547dd1b35fea5ebd67bb27af1364c5b83a99166e542b3296bcc8b2b740ff6968a427997adf9059f7ac1d364356e0628fcedd704270291493baa137cec2dfe43de7b2dba854f08bd60be11b66d40e0667d5d37ea48b1071c4a0ee381d6b00cbd6392dfdb0033b4a1343b7fb2a4ca59e53fcbdbffe64611b30f983eeb660d2bdf0a34a9fb3736072d88bd4e0c5f77092067872e5c5e1f768b04f0e5fb37edc0a1076b43536134de9a5a24a714bb18ae8b1e0c95511fa239227c926f0d1eb730ace08e1bebecc02c12131122a52d4c49a30c6c5105f5c849ca9120873a50f100ace7ea3991ed9331d0c2c94bababe7e95ad65a9c29decb5a4fc76d530ff6fc1c0ca56901e1e763031dc16443592a32b5c99eed997a3e5a38d115abf26bbfca97f1c94daf678d48607032ae7cd7db1894cc3e5e85779625c3e863fc4d6695b63869fde9f34c4a32feb5fc9538d3eefa874880c06b68bf52f0ea906a04765d7eae45fa5d989a4ee50c849cc1500f7d87325dc6f34e9e6b030adbe00e03a13722ff55beec5c9425e97ca05592879d30cabaefb0b10f5a7af5cf8e4abafa4c8b892aff4906f1eb283baf542f9e2db6d0f18b4ff63df4955bf1f8179ef76f43b405f6f8072686df5fdb9a633dd0550d9a595b6e1a7f8a8b1afe5f7d700b941f959fd05e7d0ddca2b1785ea24f5f63e12b18aecd3d482c45dcf4a9d9dc9f1da0a3b26c57de17f47b976039ac28b43798471c9ee0b5b59fe142a1bcac4a9a73aac67753b570e7453d1e41345201cf6308ec90ab99b1f5d13eac42101c6243e16fb86619b7becd66752f62fe7cf8f44c79c7f847ad2866a36c2e064be2fc832741c3bf39cc905edba066653ec66542e4f5adaad931ef8cc37edd020f775127ecc51e741ebd9f408bfc9770a2849db372390f3e4bfc4396f18497b732b84b690e73cb2f0e996ade6b95aa82b3304d5c71688d6bf0a85d80f03a9c3058f96212200367ddaeefe2d519f4c910932d531ea9140e0eeb36c4e3256d26718fa9fb7cbcbc1ac63865a3c47bc1c1212be83bbf18f4969fc037e6ab6a3ac127036392355b9bceebbab538819b8d79bb8e04fe84b4d8b9523e8a637469141dd083b63f98c1554f77c87f6ed1a08ca26eb3d0be6c3fa0f7101a5f22c1ed3b05680bc672880ab4faec3c9384eb86bed1dd12d2e6aeef8d56a2c0ef115af644418ab2c6e94b034375e305ed162a488bcf31230c4640dc52737988d8ba29d81afb9f37537258aea3c0449ba37f9ef351c63e724125ceffc8deb3405c1c24b721215b580681ea1a07f048a849e637e23bb7956c2e4d833dfd6d52778f59d6462be89a6d449a52d3cfe63cb1eb05f51b3e20a8b5f5bab3229e8b993a74e2307484f8d3eb743c56bfe0370e64aa2321784b56a211e53b8219ed87d4b5e916b21ff6b791b076a2350ca37dc09f093dd7979376717b3201c0eb2c8c593ab0f32c16f77f72d22cfc6dc769deb04b46b1ea54c8efb734c08795a55caeabe6e3fef85cbb8a01ec24db538cd540c76e986dfe639eb3630a5b25d66935cda8ba7adbb03062b37bb7ef72034f933fc3f99f0706d58ea57a37da7b20e44b5f14c4baa3b60c8b2c8cde6ea6baeaa3c9c62ef8bf0066f65b2ff13823d5609a336cde4d9850dd9f93d75ad585073db82ef76bfe2a829ae78320d751facd63e10037f5d0b089a31141027868b274c400bca7"}, {0x90, 0x10d, 0x11, "488079c06ea077c873f8412f20061da7794012a957dab56e2d0cf49a588827ae90ce1f830aa74014a50f02895a5c4f4af6e51d966d20c78248c9786bc1fed2149e990e6d68fc892e1134c3ce6ade4522c352093a491c860c21e007139f264aa682d678cae60f29d7577a3a7f612f3d4452c023e7108aa87aba1eddb5e927"}, {0x1010, 0x109, 0x3, "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"}], 0x3508}, 0x4) r3 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x0, 0x0) perf_event_open(&(0x7f0000000200)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0xc, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x1, 0xfffffffffffffffd}, 0x2188932d843071f3, 0x31d}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) sendfile(r0, r3, 0x0, 0x20d315) 19:56:47 executing program 1: r0 = socket$netlink(0x10, 0x3, 0x0) sendmsg$nl_generic(r0, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000000)={0x14, 0x1e, 0xc21, 0x0, 0x0, {0x7}}, 0x14}}, 0x0) pwritev2(0xffffffffffffffff, &(0x7f0000000100)=[{&(0x7f0000000040)="5399b6f8fa6bcb8a6be7da35e2b60a4b87043d00e8a97dcb55e3766690c647934592311403c9aeb66af48dd254e564757cb3e2803c1ac1779a640cf8c42f98af1fdf111b474b8f3b17282555fb89e64cdf208f7bbdb2b8815d35d9d67d14", 0x5e}, {&(0x7f00000000c0)="c1d448d164f2c38d0af4bcb66f", 0xd}, {&(0x7f00000001c0)="09d2076676d0408a4287a89b376836a6c4f677082db4e0b8aa488ff7b017ab9fa37941e82f7d2a552ceb75f3019e5aac1eeef2c66bc48d2704e466f229d811b505afb7340e6dd26e6e93b87e6c52603096e59ff6dae32592752f00f9e19ba5bf77cc3df8637e2a5629d34c619691d65c622ab956f4cd708aea2181216f6549e8fd0a2786b9856578c54394cfc71f4e183e649f2db8c4bd68ca02e21a5bdf562fe9754771836f60e836bac12669", 0xad}], 0x3, 0x0, 0x7, 0xf) 19:56:47 executing program 0: r0 = signalfd(0xffffffffffffffff, &(0x7f0000000180)={[0x20]}, 0x8) openat(r0, &(0x7f0000000300)='./file0\x00', 0x284082, 0x160) setsockopt$inet_mreqn(0xffffffffffffffff, 0x0, 0x20, &(0x7f0000000000)={@remote, @remote}, 0xc) ioctl$BTRFS_IOC_BALANCE_CTL(0xffffffffffffffff, 0x40049421, 0x1) r1 = syz_open_procfs(0xffffffffffffffff, &(0x7f0000000040)='numa_maps\x00') openat(0xffffffffffffff9c, &(0x7f0000000340)='./file0\x00', 0x50482, 0x80) readv(r1, &(0x7f0000003700)=[{&(0x7f0000000200)=""/216, 0xd8}, {&(0x7f00000003c0)=""/121, 0x79}, {&(0x7f0000000380)=""/51, 0x33}, {&(0x7f00000014c0)=""/160, 0xa0}, {&(0x7f0000001640)=""/256, 0x100}, {0x0}, {&(0x7f00000015c0)=""/51, 0x33}, {&(0x7f00000001c0)=""/57, 0x39}], 0x8) readv(r1, &(0x7f0000001600)=[{&(0x7f00000004c0)=""/4096, 0x1000}], 0x1) ioctl$AUTOFS_DEV_IOCTL_OPENMOUNT(r1, 0xc0189374, &(0x7f0000000080)={{0x1, 0x1, 0x18, 0xffffffffffffffff, {0x10001}}, './file0\x00'}) mount$9p_unix(&(0x7f00000000c0)='./file0\x00', &(0x7f0000000100)='./file0\x00', &(0x7f0000000140), 0x2014051, &(0x7f0000001740)={'trans=unix,', {[{@access_user}, {@noextend}, {@cache_fscache}, {@uname={'uname', 0x3d, 'numa_maps\x00'}}, {@cache_fscache}, {@version_u}, {@cache_none}], [{@smackfsroot={'smackfsroot', 0x3d, '-'}}, {@func={'func', 0x3d, 'BPRM_CHECK'}}, {@permit_directio}]}}) getitimer(0x1, &(0x7f0000000040)) 19:56:47 executing program 4: syz_80211_inject_frame(&(0x7f00000000c0)=@device_a={0x8, 0x2, 0x11, 0x19}, &(0x7f0000000440)=ANY=[], 0x2f) 19:56:47 executing program 5: openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0) ioctl$INCFS_IOC_PERMIT_FILL(0xffffffffffffffff, 0x40046721, &(0x7f0000001840)) r0 = dup(0xffffffffffffffff) dup(r0) r1 = socket$nl_xfrm(0x10, 0x3, 0x6) ioctl$BTRFS_IOC_SUBVOL_CREATE_V2(0xffffffffffffffff, 0x50009418, &(0x7f0000001e00)={{r1}, 0x0, 0x0, @unused=[0x3, 0x0, 0x4, 0xb4], @name="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"}) openat(0xffffffffffffffff, &(0x7f0000000180)='./file0\x00', 0x14200, 0x2e) ioctl$sock_TIOCINQ(0xffffffffffffffff, 0x541b, &(0x7f0000000100)) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) perf_event_open(&(0x7f0000000040)={0x7, 0x80, 0x0, 0x0, 0x0, 0x0, 0x2, 0xff, 0x80010}, 0xffffffffffffffff, 0x0, 0xffffffffffffffff, 0x0) 19:56:47 executing program 2: r0 = socket$inet_icmp_raw(0x2, 0x3, 0x1) r1 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a) ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000140)={'syz_tun\x00', 0x0}) perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) sendmmsg$inet(r0, &(0x7f0000002040)=[{{&(0x7f0000000380)={0x2, 0x0, @multicast1}, 0x10, &(0x7f0000001600)=[{&(0x7f00000003c0)="db9c", 0xffe7}], 0x1, &(0x7f0000001640)=ANY=[@ANYBLOB="14000000000000000000000007000000c4048f01000000001c000000000000000000000008000000", @ANYRES32=r2], 0x38}}], 0x1, 0x0) (fail_nth: 13) [ 3107.721460] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium [ 3107.734221] EXT4-fs (loop6): mounted filesystem without journal. Opts: ,errors=continue [ 3107.782249] FAULT_INJECTION: forcing a failure. [ 3107.782249] name failslab, interval 1, probability 0, space 0, times 0 [ 3107.784925] CPU: 0 PID: 22845 Comm: syz-executor.2 Not tainted 5.10.207 #1 [ 3107.785460] FAULT_INJECTION: forcing a failure. [ 3107.785460] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 3107.786441] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 3107.786500] Call Trace: [ 3107.786527] dump_stack+0x107/0x167 [ 3107.786555] should_fail.cold+0x5/0xa [ 3107.786583] ? create_object.isra.0+0x3a/0xa20 [ 3107.786606] should_failslab+0x5/0x20 [ 3107.795036] kmem_cache_alloc+0x5b/0x310 [ 3107.795931] create_object.isra.0+0x3a/0xa20 [ 3107.796900] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 3107.798014] kmem_cache_alloc_trace+0x151/0x320 [ 3107.799042] ip_setup_cork+0x6ea/0x930 [ 3107.799908] ? raw_destroy+0x30/0x30 [ 3107.800748] ip_append_data+0x167/0x1a0 [ 3107.801624] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 3107.802784] raw_sendmsg+0xaa6/0x29d0 [ 3107.803649] ? dst_output+0x170/0x170 [ 3107.804452] ? __lock_acquire+0x1657/0x5b00 [ 3107.805414] ? perf_trace_lock+0xac/0x490 [ 3107.806322] ? SOFTIRQ_verbose+0x10/0x10 [ 3107.807216] ? create_object.isra.0+0x3ad/0xa20 [ 3107.808242] ? __lockdep_reset_lock+0x180/0x180 [ 3107.809270] ? selinux_socket_post_create+0x7f0/0x7f0 [ 3107.810356] ? find_held_lock+0x2c/0x110 [ 3107.811253] ? trace_hardirqs_on+0x5b/0x180 [ 3107.812164] ? dst_output+0x170/0x170 [ 3107.813009] inet_sendmsg+0x11d/0x140 [ 3107.813850] ? inet_send_prepare+0x540/0x540 [ 3107.814807] __sock_sendmsg+0x13c/0x190 [ 3107.815678] ____sys_sendmsg+0x334/0x870 [ 3107.816590] ? sock_write_iter+0x3d0/0x3d0 [ 3107.817512] ? do_recvmmsg+0x6d0/0x6d0 [ 3107.818360] ? perf_trace_lock+0xac/0x490 [ 3107.819277] ? __lockdep_reset_lock+0x180/0x180 [ 3107.820285] ? perf_trace_lock+0xac/0x490 [ 3107.821209] ___sys_sendmsg+0xf3/0x170 [ 3107.822066] ? sendmsg_copy_msghdr+0x160/0x160 [ 3107.823080] ? lock_downgrade+0x6d0/0x6d0 [ 3107.823995] ? lock_downgrade+0x6d0/0x6d0 [ 3107.824921] ? __fget_files+0x296/0x4c0 [ 3107.825812] ? __fget_light+0xea/0x290 [ 3107.826679] __sys_sendmmsg+0x195/0x470 [ 3107.827557] ? __ia32_sys_sendmsg+0xb0/0xb0 [ 3107.828520] ? lock_downgrade+0x6d0/0x6d0 [ 3107.829452] ? __mutex_unlock_slowpath+0xe1/0x600 [ 3107.830501] ? wait_for_completion_io+0x270/0x270 [ 3107.831530] ? rcu_read_lock_any_held+0x75/0xa0 [ 3107.832555] ? vfs_write+0x354/0xa70 [ 3107.833373] ? fput_many+0x2f/0x1a0 [ 3107.834144] ? ksys_write+0x1a9/0x260 [ 3107.834983] ? __ia32_sys_read+0xb0/0xb0 [ 3107.835881] __x64_sys_sendmmsg+0x99/0x100 [ 3107.836846] do_syscall_64+0x33/0x40 [ 3107.837675] entry_SYSCALL_64_after_hwframe+0x62/0xc7 [ 3107.838799] RIP: 0033:0x7fac065c2b19 [ 3107.839626] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 3107.843638] RSP: 002b:00007fac03b17188 EFLAGS: 00000246 ORIG_RAX: 0000000000000133 [ 3107.845304] RAX: ffffffffffffffda RBX: 00007fac066d6020 RCX: 00007fac065c2b19 [ 3107.846858] RDX: 0000000000000001 RSI: 0000000020002040 RDI: 0000000000000003 [ 3107.848410] RBP: 00007fac03b171d0 R08: 0000000000000000 R09: 0000000000000000 [ 3107.849989] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 3107.851541] R13: 00007ffe4d4b793f R14: 00007fac03b17300 R15: 0000000000022000 [ 3107.853147] CPU: 1 PID: 22827 Comm: syz-executor.6 Not tainted 5.10.207 #1 [ 3107.854547] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 3107.856194] Call Trace: [ 3107.856751] dump_stack+0x107/0x167 [ 3107.857498] should_fail.cold+0x5/0xa [ 3107.858269] _copy_from_user+0x2e/0x1b0 [ 3107.859068] kstrtouint_from_user+0xbd/0x220 [ 3107.859947] ? kstrtou8_from_user+0x210/0x210 [ 3107.860903] ? lock_acquire+0x197/0x470 [ 3107.861709] ? ksys_write+0x12d/0x260 [ 3107.862689] proc_fail_nth_write+0x78/0x220 19:56:47 executing program 1: [ 3107.863762] ? proc_task_getattr+0x1f0/0x1f0 [ 3107.864798] ? __fget_files+0x296/0x4c0 [ 3107.865612] ? proc_task_getattr+0x1f0/0x1f0 [ 3107.866509] vfs_write+0x29a/0xa70 syz_mount_image$iso9660(&(0x7f0000000000), &(0x7f0000000100)='./file0\x00', 0x90800, 0x3c, &(0x7f0000000200)=[{&(0x7f0000010000)="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"/1408, 0x580, 0x8000}, {&(0x7f0000010600)="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"/1408, 0x580, 0x8800}, {&(0x7f0000010c00)="ff43443030310100"/32, 0x20, 0x9000}, {&(0x7f0000010d00)="0042454130310100"/32, 0x20, 0x9800}, {&(0x7f0000010e00)="004e535230320100"/32, 0x20, 0xa000}, {&(0x7f0000010f00)="0054454130310100"/32, 0x20, 0xa800}, {&(0x7f0000011000)="01000200af000000fd9ef001200000000000000000000000084344524f4d000000000000000000000000000000000000000000000000000601000100020002000100000001000000083546363732343232303030303132423500000000000000", 0x60, 0x10000}, {&(0x7f0000011100)="0000000000000011004f53544120436f6d7072657373656420556e69636f646500000000000000000000000000000000000000000000000000000000000000000000000000000000004f53544120436f6d7072657373656420556e69636f6465", 0x60, 0x100c0}, {&(0x7f0000011200)="0000000000000000000000000000000000000000000000007810e40709140b2a3a000000002a67656e69736f696d61676500"/64, 0x40, 0x10160}, {&(0x7f0000011300)="04000200e60000001faff0012100000001000000002a554446204c5620496e666f00000000000000000000000201000000000000004f53544120436f6d7072657373656420556e69636f646500000000000000000000000000000000000000000000000000000000000000000000000000000000084344524f4d000000000000", 0x80, 0x10800}, {&(0x7f0000011400)="000000000000000000000000000000000000000600"/32, 0x20, 0x108e0}, {&(0x7f0000011500)='\x00*genisoimage\x00'/32, 0x20, 0x10960}, {&(0x7f0000011600)="050002002300000068a1f001220000000200000001000000022b4e5352303200", 0x20, 0x11000}, {&(0x7f0000011700)="00000000000000000000000000000000000000000000000001000000010100001f000000002a67656e69736f696d61676500"/64, 0x40, 0x110a0}, {&(0x7f0000011800)="060002004f0000006411ae012300000003000000004f53544120436f6d7072657373656420556e69636f646500000000000000000000000000000000000000000000000000000000000000000000000000000000084344524f4d000000000000", 0x60, 0x11800}, {&(0x7f0000011900)="000000000000000000000000000000000000000600080000002a4f5354412055444620436f6d706c69616e74000000000201030000000000001000000000000000000000000000000600000001000000002a67656e69736f696d616765000000", 0x60, 0x118c0}, {&(0x7f0000011a00)="0000000000000000000000000000000000100000400000000106010000000000", 0x20, 0x119a0}, {&(0x7f0000011b00)="07000200b10000006d0f0800240000000400"/32, 0x20, 0x12000}, {&(0x7f0000011c00)="08000200200000000000f0012500"/32, 0x20, 0x12800}, {&(0x7f0000011d00)="010002007e0000009cbef001300000000000000000000000084344524f4d000000000000000000000000000000000000000000000000000601000100020002000100000001000000083546363732343232303030303132453800000000000000", 0x60, 0x18000}, {&(0x7f0000011e00)="0000000000000011004f53544120436f6d7072657373656420556e69636f646500000000000000000000000000000000000000000000000000000000000000000000000000000000004f53544120436f6d7072657373656420556e69636f6465", 0x60, 0x180c0}, {&(0x7f0000011f00)="0000000000000000000000000000000000000000000000007810e40709140b2a3a000000002a67656e69736f696d61676500"/64, 0x40, 0x18160}, {&(0x7f0000012000)="04000200f60000001faff0013100000001000000002a554446204c5620496e666f00000000000000000000000201000000000000004f53544120436f6d7072657373656420556e69636f646500000000000000000000000000000000000000000000000000000000000000000000000000000000084344524f4d000000000000", 0x80, 0x18800}, {&(0x7f0000012100)="000000000000000000000000000000000000000600"/32, 0x20, 0x188e0}, {&(0x7f0000012200)='\x00*genisoimage\x00'/32, 0x20, 0x18960}, {&(0x7f0000012300)="050002003300000068a1f001320000000200000001000000022b4e5352303200", 0x20, 0x19000}, {&(0x7f0000012400)="00000000000000000000000000000000000000000000000001000000010100001f000000002a67656e69736f696d61676500"/64, 0x40, 0x190a0}, {&(0x7f0000012500)="060002005f0000006411ae013300000003000000004f53544120436f6d7072657373656420556e69636f646500000000000000000000000000000000000000000000000000000000000000000000000000000000084344524f4d000000000000", 0x60, 0x19800}, {&(0x7f0000012600)="000000000000000000000000000000000000000600080000002a4f5354412055444620436f6d706c69616e74000000000201030000000000001000000000000000000000000000000600000001000000002a67656e69736f696d616765000000", 0x60, 0x198c0}, {&(0x7f0000012700)="0000000000000000000000000000000000100000400000000106010000000000", 0x20, 0x199a0}, {&(0x7f0000012800)="07000200c10000006d0f0800340000000400"/32, 0x20, 0x1a000}, {&(0x7f0000012900)="08000200300000000000f0013500"/32, 0x20, 0x1a800}, {&(0x7f0000012a00)="09000200d00000000d027600400000007810e40709140b2a3a0000000100000000000000000000000c01000000000000000000000000000000000000000000000000000000000000010000002e000000000000001f000000002a67656e69736f696d61676500000000000000000000000000000000000000050000000200000002010201020100"/160, 0xa0, 0x20000}, {&(0x7f0000012b00)="080002003c0000000000f0014100"/32, 0x20, 0x20800}, {&(0x7f0000012c00)="02000200ce00000001d7f0010001000000800000200000000080000030000000", 0x20, 0x80000}, {&(0x7f0000012d00)="0001020032000000e559f001000000007810e40709140b2a3a0000000300030001000000010000000000000000000000004f53544120436f6d7072657373656420556e69636f646500000000000000000000000000000000000000000000000000000000000000000000000000000000084344524f4d00"/128, 0x80, 0x80800}, {&(0x7f0000012e00)="00000000000000000000000000000006004f53544120436f6d7072657373656420556e69636f646500000000000000000000000000000000000000000000000000000000000000000000000000000000084344524f4d000000000000000000000000000000000000000000000000000600"/128, 0x80, 0x808e0}, {&(0x7f0000012f00)="0000000000000000000000000000000000080000020000000000000000000000002a4f5354412055444620436f6d706c69616e74000000000201030000000000", 0x40, 0x80980}, {&(0x7f0000013000)="08000200fc0000000000f0010100"/32, 0x20, 0x81000}, {&(0x7f0000013100)="050102004c000000f4a6a800020000000000000004000000010000040000000000003002ffffffffffffffffa51400000200000000000000080100000000000001000000000000007810e40709140b2a3a0000007810e40709140b2a3a0000007810e40709140b2a3a0000000100000000000000000000000000000000000000002a67656e69736f696d6167650000000000000000000000000000000000000000000000000000000000000008000000080100000300"/192, 0xc0, 0x81800}, {&(0x7f0000013200)="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"/288, 0x120, 0x82000}, {&(0x7f0000013400)="05010200280000000173a800040000000000000004000000010000040000000000003002ffffffffffffffffa51400000100000000000000540000000000000001000000000000007810e40709140b2a3a0000007810e40709140b2a3a0000007810e40709140b2a3a0000000100000000000000000000000000000000000000002a67656e69736f696d6167650000000000000000000000000000000000000005010000000000000000000008000000540000000500"/192, 0xc0, 0x82800}, {&(0x7f0000013500)="01010200ca000000476218000500000001000a00000800000200000000000000000000000000000001010200d2000000affe1c000500000001000006000800000a000000000000000b01000000000866696c653000"/96, 0x60, 0x83000}, {&(0x7f0000013600)="050102001300000097c6a800060000000000000004000000010000050000000000003002ffffffffffffffff841000000100000000000000640000000000000001000000000000007810e40709140b2a3a0000007810e40709140b2a3a0000007810e40709140b2a3a0000000100000000000000000000000000000000000000002a67656e69736f696d6167650000000000000000000000000000000000000007010000000000000000000008000000640000001700"/192, 0xc0, 0x83800}, {&(0x7f0000013700)="0501020061000000a406a800070000000000000004000000010000050000000000003002ffffffffffffffff8410000001000000000000000a0000000000000001000000000000007810e40709140b2a3a0000007810e40709140b2a3a0000007810e40709140b2a3a0000000100000000000000000000000000000000000000002a67656e69736f696d61676500000000000000000000000000000000000000080100000000000000000000080000000a0000001800"/192, 0xc0, 0x84000}, {&(0x7f0000013800)="050102008c000000c50fa800080000000000000004000000010000050000000000003002ffffffffffffffff841000000100000000000000282300000000000005000000000000007810e40709140b2a3a0000007810e40709140b2a3a0000007810e40709140b2a3a0000000100000000000000000000000000000000000000002a67656e69736f696d6167650000000000000000000000000000000000000009010000000000000000000008000000282300001900"/192, 0xc0, 0x84800}, {&(0x7f0000013900)="05010200cf000000c056a800090000000000000004000000010000050000000000003002ffffffffffffffff841000000100000000000000282300000000000005000000000000007810e40709140b2a3a0000007810e40709140b2a3a0000007810e40709140b2a3a0000000100000000000000000000000000000000000000002a67656e69736f696d616765000000000000000000000000000000000000000a010000000000000000000008000000282300001900"/192, 0xc0, 0x85000}, {&(0x7f0000013a00)="05010200c400000023e7a8000a0000000000000004000000010000050000000000003002ffffffffffffffff8410000001000000000000001a0400000000000001000000000000007810e40709140b2a3a0000007810e40709140b2a3a0000007810e40709140b2a3a0000000100000000000000000000000000000000000000002a67656e69736f696d616765000000000000000000000000000000000000000b0100000000000000000000080000001a0400001e00"/192, 0xc0, 0x85800}, {&(0x7f0000013b00)="01001401000001000000050015010000010046494c4530000000000000000000", 0x20, 0x86000}, {&(0x7f0000000040)="01000000011400010000050000000115000146494c4530000000000000000000", 0x20, 0x87000}, {&(0x7f0000013d00)="010016010000010000000a0017010000010000660069006c0065003000000000", 0x20, 0x88000}, {&(0x7f0000013e00)="010000000116000100000a0000000117000100660069006c0065003000000000", 0x20, 0x89000}, {&(0x7f0000013f00)="2200140100000000011400080000000008007809140b2a3a080200000100000101002200140100000000011400080000000008007809140b2a3a080200000100000101012c00180100000000011864000000000000647809140b2a3a08000000010000010a46494c452e434f4c3b31002600150100000000011500080000000008007809140b2a3a08020000010000010546494c45302a0019010000000001190a0000000000000a7809140b2a3a08000000010000010846494c45312e3b31002a001a0100000000011a28230000000023287809140b2a3a08000000010000010846494c45322e3b31002a001a0100000000011a28230000000023287809140b2a3a08000000010000010846494c45332e3b3100"/288, 0x120, 0x8a000}, {&(0x7f0000014100)="2200150100000000011500080000000008007809140b2a3a080200000100000101002200140100000000011400080000000008007809140b2a3a080200000100000101012a001f0100000000011f1a0400000000041a7809140b2a3a08000000010000010846494c45302e3b3100"/128, 0x80, 0x8a800}, {&(0x7f0000014200)="2200160100000000011600080000000008007809140b2a3a080200000100000101002200160100000000011600080000000008007809140b2a3a080200000100000101013400180100000000011864000000000000647809140b2a3a08000000010000011200660069006c0065002e0063006f006c0064002c00170100000000011700080000000008007809140b2a3a08020000010000010a00660069006c00650030002c0019010000000001190a0000000000000a7809140b2a3a08000000010000010a00660069006c00650031002c001a0100000000011a28230000000023287809140b2a3a08000000010000010a00660069006c00650032002c001a0100000000011a28230000000023287809140b2a3a08000000010000010a00660069006c0065003300"/320, 0x140, 0x8b000}, {&(0x7f0000014400)="2200170100000000011700080000000008007809140b2a3a080200000100000101002200160100000000011600080000000008007809140b2a3a080200000100000101012c001f0100000000011f1a0400000000041a7809140b2a3a08000000010000010a00660069006c0065003000"/128, 0x80, 0x8b800}, {&(0x7f0000014500)='syzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallers\x00'/128, 0x80, 0x8c000}, {&(0x7f0000014600)='syzkallers\x00'/32, 0x20, 0x8c800}, {&(0x7f0000014700)='syzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkal\x00\x00\x00\x00\x00\x00', 0x420, 0x8f800}, {&(0x7f0000014c00)="02000200ee00000001d7f0012001000000800000200000000080000030000000", 0x20, 0x90000}], 0x0, &(0x7f0000000080)=ANY=[@ANYBLOB="753e58de01ce7484949aa000"]) [ 3107.867231] ksys_write+0x12d/0x260 [ 3107.868104] ? __ia32_sys_read+0xb0/0xb0 [ 3107.868947] do_syscall_64+0x33/0x40 [ 3107.869707] entry_SYSCALL_64_after_hwframe+0x62/0xc7 [ 3107.870737] RIP: 0033:0x7fec371875ff [ 3107.871477] Code: 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 99 fd ff ff 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 b8 01 00 00 00 0f 05 <48> 3d 00 f0 ff ff 77 31 44 89 c7 48 89 44 24 08 e8 cc fd ff ff 48 [ 3107.875089] RSP: 002b:00007fec3474a170 EFLAGS: 00000293 ORIG_RAX: 0000000000000001 [ 3107.876666] RAX: ffffffffffffffda RBX: 0000000000000000 RCX: 00007fec371875ff [ 3107.878096] RDX: 0000000000000001 RSI: 00007fec3474a1e0 RDI: 0000000000000008 [ 3107.879528] RBP: 00007fec3474a1d0 R08: 0000000000000000 R09: 0000000000000000 [ 3107.880978] R10: 0000000020000280 R11: 0000000000000293 R12: 0000000000000002 [ 3107.882387] R13: 00007ffec551fc1f R14: 00007fec3474a300 R15: 0000000000022000 19:56:47 executing program 7: r0 = openat(0xffffffffffffff9c, 0x0, 0x46e2, 0x0) r1 = perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x10001, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0xfffffffffffffff3, 0x10}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x2) ioctl$AUTOFS_IOC_EXPIRE_MULTI(r1, 0x40049366, &(0x7f0000000140)=0x1) r2 = openat$tcp_congestion(0xffffffffffffff9c, &(0x7f0000000040), 0x1, 0x0) ioctl$EXT4_IOC_GROUP_EXTEND(r2, 0x40086607, &(0x7f0000000200)=0x2) r3 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000000)='/proc/keys\x00', 0x0, 0x0) r4 = socket$unix(0x1, 0x5, 0x0) bind$unix(r4, &(0x7f0000000080)=@file={0x1, './file0\x00'}, 0x6e) r5 = openat$sr(0xffffffffffffff9c, &(0x7f00000035c0), 0xe8b02, 0x4) ioctl$CDROM_SELECT_SPEED(r5, 0x125d, 0x20000000) read$hidraw(r5, &(0x7f0000002600)=""/4096, 0x1000) listen(r4, 0x0) ioctl$sock_TIOCINQ(r4, 0x541b, 0x0) writev(r4, &(0x7f0000000180)=[{&(0x7f00000012c0)="dac08af07dc6a1e38d05fba3f9bfaa2be390bfa27e4b14402b8301ab7d26415faa1b7dac2b83504238a6e75796f3fb52dc445293357f8351cfd3d79b2b3ec4e5a25cf67ad747e1875eb1c0887a1e2ad1fe4bdbf9ee31ef220b74dfa41293acf4402f6f248ef9dde143658e7fe0c88017b40e3550ba51e0f52db658aabe2ed4ea571e7608d4bc072ed5247ba6327920c7ff70de884418420e85a13a83ca1dfb47bfd25cf5599d6238454ca0e1cd4648f41c13d862b984bedfcdd3a32475b67752f3f4eddf19cadd0e28e80aa64e22", 0xce}, {&(0x7f00000013c0)="d22f07a74c9a9662ee40c2cfe16e1209017af9ca4600bc0939588a173e9b873a2cc46350cab7db81971996f735f2a8cc51f4e0a58da6647c48c2a78e9f4ddb9287da5a7526a8865f49ee56366ce90c93ef343861df3fc9ce5ccab9b967cc4b26d2a0184214e45c24566c35c3925214c893e5a270ddd7226b65dc57a0ac833628965c5fb5a43c5dca50e4d971f43214d77b17a49e0b189ee1586630186a1f01a63abe1a3b14a5f6dba79e8fd6545dc062bbc1f80f5b24eb5913fa667010f8cd05cb33f7964a9e9b3f88a1b0f307ec066747fcb1132e2d1eebb170f80252750b21b589fe0d48f8c1544bab3cb98a64b6f8002cb3483bc8a03c33", 0xf9}], 0x2) r6 = dup2(0xffffffffffffffff, r3) fallocate(r6, 0x5c, 0x1ff, 0x0) ioctl$sock_inet_SIOCSIFFLAGS(r0, 0x8914, &(0x7f00000001c0)={'veth1_to_bridge\x00'}) preadv(r3, &(0x7f0000001580)=[{&(0x7f00000015c0)=""/4106, 0x100a}], 0x1, 0x0, 0x0) fallocate(0xffffffffffffffff, 0x42, 0x5, 0x6) openat$cgroup_ro(0xffffffffffffffff, &(0x7f0000000100)='blkio.bfq.time\x00', 0x0, 0x0) 19:56:47 executing program 0: r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = openat$zero(0xffffffffffffff9c, 0x0, 0x0, 0x0) setns(r1, 0x0) syz_genetlink_get_family_id$ethtool(0x0, r1) sendmsg$TIPC_CMD_SET_NETID(r0, &(0x7f0000000240)={&(0x7f0000000080)={0x10, 0x0, 0x0, 0x100}, 0xc, &(0x7f0000000200)={&(0x7f00000001c0)={0x24, 0x0, 0x20, 0x70bd28, 0x0, {{}, {}, {0x8, 0x2, 0xffff7fff}}}, 0x24}}, 0x4000000) r2 = openat$zero(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0) syz_genetlink_get_family_id$ethtool(&(0x7f0000000140), r2) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r3 = socket$netlink(0x10, 0x3, 0x0) sendmsg$nl_generic(r3, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000100)={0x1c, 0x1a, 0x101, 0x0, 0x0, {}, [@generic="7b828f25ec5b"]}, 0x1c}}, 0x0) r4 = openat(0xffffffffffffff9c, &(0x7f00000002c0)='./file1\x00', 0x105142, 0x0) r5 = mmap$IORING_OFF_SQES(&(0x7f0000ffd000/0x3000)=nil, 0x3000, 0x1000004, 0x13, r4, 0x10000000) r6 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0) sendfile(r4, r6, 0x0, 0x100000001) syz_io_uring_submit(0x0, r5, &(0x7f0000000180)=@IORING_OP_READ=@pass_buffer={0x16, 0x3, 0x2007, @fd_index=0xa, 0x8, &(0x7f0000000980)=""/225, 0xe1, 0x8, 0x1}, 0x4) readv(r0, &(0x7f00000008c0)=[{&(0x7f0000000300)=""/82, 0x52}, {&(0x7f0000000380)=""/137, 0x89}, {&(0x7f0000000440)=""/71, 0x47}, {&(0x7f00000004c0)=""/192, 0xc0}, {&(0x7f0000000580)=""/128, 0x80}, {&(0x7f0000000040)=""/18, 0x12}, {&(0x7f0000000600)=""/207, 0xcf}, {&(0x7f0000000700)=""/140, 0x8c}, {&(0x7f00000007c0)=""/238, 0xee}], 0x9) 19:56:47 executing program 6: syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000140)='./file0\x00', 0x40000, 0x4, &(0x7f0000000200)=[{&(0x7f0000010000)="20000000000100000c000000d40000000f000000010000000000000000000000002000000020000020000000d7f4655fd7f4655f0100ffff53ef010001000000d7f4655f000000000000000001000000000000000b0000000002", 0x5a, 0x400}, {&(0x7f0000010400)="030000000400000005000000d4000f", 0xf, 0x800}, {&(0x7f0000000500)="ffffffffff070000000000000000000000000000000000000000000000000080ffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffff", 0x402, 0xc00}, {&(0x7f0000010e00)="ed41000000040000d7f4655fd7f4655fd7f4655f000000000000040002", 0x1d, 0x1600}], 0x0, &(0x7f00000003c0)=ANY=[]) chdir(&(0x7f0000000040)='./file0\x00') openat(0xffffffffffffff9c, &(0x7f0000000080)='./file1\x00', 0x105142, 0x0) r0 = openat(0xffffffffffffff9c, &(0x7f0000000200)='./file1\x00', 0x2, 0x0) write(r0, &(0x7f0000000240)="01", 0x1) r1 = openat(0xffffffffffffff9c, &(0x7f00000000c0)='./file2\x00', 0x105142, 0x0) r2 = openat(0xffffffffffffff9c, &(0x7f0000001340)='./file1\x00', 0x0, 0x0) copy_file_range(r2, 0x0, r1, &(0x7f0000000280)=0x10000, 0xc3a, 0x0) openat$sr(0xffffffffffffff9c, 0x0, 0x0, 0x0) [ 3108.060549] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium [ 3108.155422] sr 1:0:0:0: [sr0] tag#0 FAILED Result: hostbyte=DID_OK driverbyte=DRIVER_SENSE cmd_age=0s [ 3108.157392] sr 1:0:0:0: [sr0] tag#0 Sense Key : Not Ready [current] [ 3108.158834] sr 1:0:0:0: [sr0] tag#0 Add. Sense: Medium not present [ 3108.160106] sr 1:0:0:0: [sr0] tag#0 CDB: Read(10) 28 00 00 00 00 00 00 00 02 00 [ 3108.161604] blk_update_request: I/O error, dev sr0, sector 0 op 0x0:(READ) flags 0x80700 phys_seg 1 prio class 0 [ 3108.164381] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 3108.165479] blk_update_request: I/O error, dev sr0, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0 [ 3108.167420] Buffer I/O error on dev sr0, logical block 0, async page read [ 3108.169652] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 3108.170822] blk_update_request: I/O error, dev sr0, sector 1 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0 [ 3108.172847] Buffer I/O error on dev sr0, logical block 1, async page read [ 3108.175317] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 3108.176413] blk_update_request: I/O error, dev sr0, sector 2 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0 [ 3108.178323] Buffer I/O error on dev sr0, logical block 2, async page read [ 3108.180177] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 3108.181310] blk_update_request: I/O error, dev sr0, sector 3 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0 [ 3108.183091] Buffer I/O error on dev sr0, logical block 3, async page read [ 3108.185120] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 3108.186174] blk_update_request: I/O error, dev sr0, sector 4 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0 [ 3108.188146] Buffer I/O error on dev sr0, logical block 4, async page read [ 3108.191140] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 3108.192219] blk_update_request: I/O error, dev sr0, sector 5 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0 [ 3108.194135] Buffer I/O error on dev sr0, logical block 5, async page read [ 3108.196463] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 3108.197806] blk_update_request: I/O error, dev sr0, sector 6 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0 [ 3108.200190] Buffer I/O error on dev sr0, logical block 6, async page read [ 3108.209813] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 3108.211053] blk_update_request: I/O error, dev sr0, sector 7 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0 [ 3108.213239] Buffer I/O error on dev sr0, logical block 7, async page read [ 3108.325671] EXT4-fs (loop6): mounted filesystem without journal. Opts: ,errors=continue 19:57:03 executing program 2: r0 = socket$inet_icmp_raw(0x2, 0x3, 0x1) r1 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a) ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000140)={'syz_tun\x00', 0x0}) perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) sendmmsg$inet(r0, &(0x7f0000002040)=[{{&(0x7f0000000380)={0x2, 0x0, @multicast1}, 0x10, &(0x7f0000001600)=[{&(0x7f00000003c0)="db9c", 0xffe7}], 0x1, &(0x7f0000001640)=ANY=[@ANYBLOB="14000000000000000000000007000000c4048f01000000001c000000000000000000000008000000", @ANYRES32=r2], 0x38}}], 0x1, 0x0) (fail_nth: 14) 19:57:03 executing program 1: perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r0 = socket$inet6_udp(0xa, 0x2, 0x0) syz_io_uring_setup(0x107e, &(0x7f0000000000)={0x0, 0xbaa9, 0x8, 0x2, 0x8}, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000ffb000/0x3000)=nil, &(0x7f0000000080)=0x0, &(0x7f00000000c0)) r2 = openat$hwrng(0xffffffffffffff9c, &(0x7f0000000100), 0x400000, 0x0) r3 = io_uring_register$IORING_REGISTER_PERSONALITY(0xffffffffffffffff, 0x9, 0x0, 0x0) syz_io_uring_submit(r1, 0x0, &(0x7f0000000200)=@IORING_OP_ACCEPT={0xd, 0x3, 0x0, r2, &(0x7f0000000140)=0x80, &(0x7f0000000180)=@isdn, 0x0, 0x96a7159a9e992aac, 0x1, {0x0, r3}}, 0x5) connect$inet6(r0, &(0x7f0000000600)={0xa, 0x0, 0x0, @local, 0x3}, 0x1c) sendmmsg$inet6(r0, &(0x7f0000004d00), 0x7ffff000, 0x811) 19:57:03 executing program 0: r0 = creat(&(0x7f0000000000)='./file0\x00', 0x0) fallocate(r0, 0x0, 0x0, 0x8800000) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) creat(&(0x7f0000000040)='./file0\x00', 0x0) pwrite64(0xffffffffffffffff, &(0x7f00000000c0)="fe", 0x1, 0x0) pwrite64(0xffffffffffffffff, 0x0, 0x0, 0x0) r1 = syz_io_uring_setup(0x620e, &(0x7f0000000180), &(0x7f0000ffb000/0x3000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000100), &(0x7f0000000140)) mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x0, 0x10, r1, 0x0) io_uring_enter(r1, 0x58ab, 0x0, 0x0, 0x0, 0x0) r2 = creat(&(0x7f0000000080)='./file0\x00', 0xa0) connect$inet6(r2, 0x0, 0x0) sendmmsg$inet6(0xffffffffffffffff, &(0x7f0000004d00), 0x400000000000070, 0x0) dup2(0xffffffffffffffff, 0xffffffffffffffff) 19:57:03 executing program 3: r0 = socket$inet6_udp(0xa, 0x2, 0x0) r1 = dup3(0xffffffffffffffff, 0xffffffffffffffff, 0x0) linkat(r1, &(0x7f0000000100)='./file0\x00', 0xffffffffffffffff, &(0x7f0000000140)='./file0/file0\x00', 0x1000) getsockname$packet(0xffffffffffffffff, &(0x7f0000000580)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @multicast}, &(0x7f00000005c0)=0x14) sendmmsg$inet6(r1, &(0x7f0000001ac0)=[{{&(0x7f00000000c0)={0xa, 0x4e24, 0x10001, @empty, 0x1}, 0x1c, &(0x7f0000000400)=[{&(0x7f0000000100)="79c717be57bfdfdf02b7f80c0348de7c71d17cf5cebd6af2d5d80d512a9f0898d009fb621783ae8c3041e4c7e26cdeacdb9386def789d4757f2fc6272a14d2f2cbff5861ad7731b2305d770799590f667e705f5f04839bd5319ce340c45eadaecc70e299c40cc36c863841552a89564e15e3b40688cca83028df861e1cdafabdf013d98566f402578ebebb3d9ef4", 0x8e}, {&(0x7f0000000240)="6b3f30d913981a7ab2d69436057090a1994a0dd8d94100f57f83f09860302e15ba68cc3c58bed4996214702f7e0fa18a8b6096be4f9f454e6be0b639b03563f792bcf5396252c456b762bb508fae887b4b8358fad95705604898896a13693cc3593c10018b562ff6f478d7b2bc53cb2bb2b7fad27aed75be909a3ebdb224df1a32776acd014267d401d5", 0x8a}, {&(0x7f0000000300)="4ca54446942e95e5ddeda1b8511b5d846e6e00f41d7a6fed4b962662d83980c4726e379ff5c74ed989cd5a6fc81222db7aae82c0436f7c640022939e6cce922cefa349283afd4db8dfbe1f9322a71adf1b42593f30fff49f9523ea2be4e98ceda3131623a1fb1c7cb45b5b2ad163c96c7df782ea6f41f52414266a401144f09e4494e54a60ffb4ebc28561f9f3099533e4c424f666dcf21ba04f974927bb448aee8be19dcce687ad0d50a800ac7bd547191b4a83ed8f90c429945681f420c791754293d126f219af1930d818996f447173726ebafac7d598667db3cbdcede0e821fd7a4f8200ad8aa828c7c7475543f2", 0xf0}, {&(0x7f00000001c0)="94019b6593b28c74c7c9323138210ea8f64078bb60b9ff861c66321734b508df3c98b727869726d6d24573297c35ca374590c2833318e8", 0x37}], 0x4}}, {{0x0, 0x0, &(0x7f0000000540)=[{&(0x7f0000000440)="81d7e7b3444a8c031138028f8fbc926af4759a7f9a2f5b4402da8caa6f1671a86075c51e09bab7abb5972ce54c472378ec4c55a24883a32bc564cef2c7556a9a7ea79c019985f1f1348b2251fb789c5e", 0x50}, {&(0x7f0000000640)="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", 0x1000}, {&(0x7f0000000500)}], 0x3, &(0x7f0000001640)=[@pktinfo={{0x24, 0x29, 0x32, {@loopback, r2}}}, @rthdrdstopts={{0x30, 0x29, 0x37, {0x2c, 0x2, '\x00', [@hao={0xc9, 0x10, @initdev={0xfe, 0x88, '\x00', 0x1, 0x0}}, @pad1]}}}], 0x58}}, {{&(0x7f00000016c0)={0xa, 0x4e21, 0x2, @private2={0xfc, 0x2, '\x00', 0x1}, 0x1}, 0x1c, &(0x7f0000001800)=[{&(0x7f0000001700)="21e8217a4dbb135cca40dad066b940a8c0f363bd5cf6f3eb89d8f9cdf76957627cdfbf8f8976fc1cc58111834af327f5a588727d3084c5cd2bdc0b3709b925e81bba173019d188ea4281ce6b021c7ca873faed89de18d90c65c65fdc0263ee60d703210de9002c6fafc3116c3be4fc5faac359d852d13b0579274a5d58b81da474bd777c557bc917028e5b397b0f47c9e8a7bdd54202be658e095dc5f929226291805b16053c11d51a4bf41807a0ba2658abef72abfcbce33cc7f2e5f4186138d7cae73b9a4724323c1ef42e22c00e84a3d3f6f1e988dd0c7187f7d44151302f67a9fd16a756", 0xe6}], 0x1}}, {{&(0x7f0000001840)={0xa, 0x4e23, 0x6, @private2}, 0x1c, &(0x7f0000001940)=[{&(0x7f0000001880)="4be5505deaaf3cd16dde7310a9793fd2e78f8415c2020ac76b59532ddaae4669d35415a363db4c57ea5e96a875602f66e6a85eab18cb9e685e01072eb7f7fac2bb449a51a895ad44cc36d00d190d254cadd743fddfa615e38bbc712a446fdc4345a12fefebb19c2a6635d049e353424c9d577b4e7c28c3238671cfd6f1593c4c7922265f8f9b64ab3cd61ee5c6e17a31c47e03b8a6d6d87af63944ccaa0fc723250be725217ca1c91bbef7934fcaab647e645a034c851b8da0fc", 0xba}], 0x1, &(0x7f0000001980)=[@hopopts_2292={{0x18, 0x29, 0x36, {0x1}}}, @rthdr={{0x48, 0x29, 0x39, {0x67, 0x6, 0x1, 0x1, 0x0, [@initdev={0xfe, 0x88, '\x00', 0x0, 0x0}, @initdev={0xfe, 0x88, '\x00', 0x0, 0x0}, @mcast1]}}}, @hopopts={{0x20, 0x29, 0x36, {0x3a, 0x0, '\x00', [@ra={0x5, 0x2, 0xf7a8}]}}}, @hopopts_2292={{0x28, 0x29, 0x36, {0x33, 0x1, '\x00', [@pad1, @pad1, @jumbo={0xc2, 0x4, 0x1000}]}}}, @tclass={{0x14, 0x29, 0x43, 0x80000000}}, @hopopts={{0x58, 0x29, 0x36, {0x62, 0x7, '\x00', [@pad1, @calipso={0x7, 0x28, {0x3, 0x8, 0x40, 0x1, [0x71f7, 0x7, 0x49087e5b, 0x1]}}, @ra={0x5, 0x2, 0x4}, @jumbo, @padn={0x1, 0x2, [0x0, 0x0]}]}}}], 0x118}}], 0x4, 0x4000000) r3 = socket$nl_generic(0x10, 0x3, 0x10) syz_genetlink_get_family_id$ethtool(0x0, 0xffffffffffffffff) r4 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a) ioctl$sock_SIOCGIFINDEX(r4, 0x8933, &(0x7f0000000080)={'lo\x00'}) ioctl$BTRFS_IOC_START_SYNC(r4, 0x80089418, &(0x7f0000000200)) ioctl$LOOP_CHANGE_FD(0xffffffffffffffff, 0x4c06, r3) ioctl$sock_ipv6_tunnel_SIOCADD6RD(r0, 0x89f9, 0x0) setsockopt$inet6_udp_int(r0, 0x11, 0x65, &(0x7f0000000000)=0x8, 0x4) connect$inet6(r0, &(0x7f0000000600)={0xa, 0x0, 0x0, @dev, 0x1}, 0x1c) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x6, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x8500}, 0x0, 0xffdfffffffffffff, 0xffffffffffffffff, 0x0) sendmmsg$inet6(r0, &(0x7f0000004d00)=[{{0x0, 0x0, &(0x7f00000004c0)=[{&(0x7f0000000080)='K', 0x1}], 0x1}}], 0x400000000000095, 0x0) open$dir(&(0x7f0000000040)='./file0\x00', 0x0, 0x0) 19:57:03 executing program 5: perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r0 = syz_open_procfs$userns(0x0, &(0x7f0000000000)) r1 = syz_open_dev$sg(&(0x7f0000000040), 0x0, 0x0) r2 = openat$null(0xffffffffffffff9c, &(0x7f0000000140), 0x100, 0x0) ioctl$SCSI_IOCTL_SEND_COMMAND(r2, 0x1, &(0x7f0000000180)={0xdb, 0x8, 0x0, "d30650a027884291c3e2e1fc3da8d19db5e8e623846dff3acd7dd4b55a985de83297efe9acdb676a2354be9b00aebff562210446c2af02afcaad9725a807c0de377204aaf23b7710e24f4ec08958e55605730b0c288798a622b03fb6199bf88e38e84ff2fa2853279e99434fd829e53c4d35dba955621b5a8e9fe66540e7366df9ba572529ec00f917fdb652a87f1f3b6983b8ef3d3560d8274164c9a211f06d8e77310b27eb4092f059ab5092b02ff88a84a3ac24962a87f87cfdc813a7d0f6be3a843ffde7eda7f42e6acab6869b97c19669731b13094a4982bf"}) dup2(r0, r1) r3 = openat$rtc(0xffffffffffffff9c, &(0x7f0000000040), 0x0, 0x0) ioctl$RTC_WKALM_SET(0xffffffffffffffff, 0x4028700f, &(0x7f0000000100)={0x1, 0x1, {0x2, 0x12, 0x12, 0x9, 0x4, 0x7fffffff, 0x2, 0x13e}}) ioctl$RTC_AIE_ON(r3, 0x7001) ioctl$RTC_UIE_ON(r3, 0x7003) ioctl$RTC_SET_TIME(r3, 0x4024700a, &(0x7f0000000080)={0x28, 0x1a, 0x0, 0xa, 0x2, 0x81, 0x2, 0x80}) r4 = perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) write$binfmt_elf32(r4, &(0x7f0000001e00)={{0x7f, 0x45, 0x4c, 0x46, 0xd1, 0xf2, 0x1, 0x4, 0x37c5, 0x3, 0x3, 0xc6, 0x5d, 0x38, 0x326, 0x5d, 0xfffc, 0x20, 0x2, 0x800, 0x7, 0x7fff}, [{0x6474e554, 0x4, 0x180, 0x1, 0x7, 0x401, 0x7ff, 0x5ba}, {0x4, 0x0, 0x3ff, 0x9, 0x3, 0x4, 0x0, 0x7ff}], "26f187e682d6ce10e88d558abfbb2bf6cc25ce8b6f2c32", ['\x00', '\x00', '\x00', '\x00', '\x00']}, 0x58f) socketpair$nbd(0x1, 0x1, 0x0, &(0x7f0000000280)={0xffffffffffffffff}) dup2(r4, r5) ioctl$RTC_ALM_SET(r3, 0x40247007, &(0x7f00000000c0)={0x0, 0x0, 0xb}) ioctl$RTC_UIE_ON(r3, 0x7003) ioctl$RTC_ALM_SET(r3, 0x40247007, &(0x7f0000000000)={0x9, 0x32, 0x11, 0xc, 0x4, 0xd00, 0x3, 0x0, 0xffffffffffffffff}) 19:57:03 executing program 7: ftruncate(0xffffffffffffffff, 0x0) r0 = open(&(0x7f0000000140)='./file1\x00', 0x100, 0x38) statx(0xffffffffffffffff, &(0x7f0000000100)='./file1\x00', 0x0, 0x0, 0x0) lstat(&(0x7f00000002c0)='./file1\x00', 0x0) mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x2000)=nil, 0x2000, 0x8, 0x10, 0xffffffffffffffff, 0x0) r1 = perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x402}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) io_setup(0x3, &(0x7f0000000000)=0x0) r3 = openat$sr(0xffffffffffffff9c, &(0x7f00000035c0), 0xe8b02, 0x0) r4 = openat$cgroup_netprio_ifpriomap(r3, &(0x7f00000001c0), 0x2, 0x0) ioctl$EXT4_IOC_GROUP_ADD(r4, 0x40286608, &(0x7f0000000200)={0x4, 0x6b44231, 0x8d0, 0x1, 0x7, 0x6}) io_submit(r2, 0x2, &(0x7f0000000380)=[&(0x7f0000001080)={0x0, 0x0, 0x0, 0x0, 0x0, r3, 0x0, 0x3000000}, &(0x7f0000000140)={0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0}]) r5 = gettid() sendmsg$nl_generic(r0, &(0x7f0000000180)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x400000}, 0xc, &(0x7f00000000c0)={&(0x7f00000004c0)=ANY=[@ANYBLOB="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", @ANYRES32=r1, @ANYBLOB='\b\x00\'\x00', @ANYRES32=r0, @ANYBLOB='\b\x00A\x00', @ANYRES32=r5, @ANYBLOB="1e01010000030000"], 0x140}, 0x1, 0x0, 0x0, 0x4008015}, 0xc001) ioctl$sock_ipv6_tunnel_SIOCADD6RD(r0, 0x89f9, &(0x7f0000000300)={'syztnl1\x00', &(0x7f0000000240)={'sit0\x00', 0x0, 0x2f, 0x2, 0x6a, 0x101, 0x10, @private1={0xfc, 0x1, '\x00', 0x1}, @private2, 0x20, 0x0, 0x61, 0x6}}) r6 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$nl_generic(r6, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000480)={&(0x7f0000000080)=ANY=[@ANYBLOB="1c0000001d00210c00000000160000000400020008000c0000000000"], 0x1c}}, 0x0) 19:57:03 executing program 6: syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000140)='./file0\x00', 0x40000, 0x4, &(0x7f0000000200)=[{&(0x7f0000010000)="20000000000100000c000000d40000000f000000010000000000000000000000002000000020000020000000d7f4655fd7f4655f0100ffff53ef010001000000d7f4655f000000000000000001000000000000000b0000000002", 0x5a, 0x400}, {&(0x7f0000010400)="030000000400000005000000d4000f", 0xf, 0x800}, {&(0x7f0000000500)="ffffffffff070000000000000000000000000000000000000000000000000080ffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffff", 0x402, 0xc00}, {&(0x7f0000010e00)="ed41000000040000d7f4655fd7f4655fd7f4655f000000000000040002", 0x1d, 0x1600}], 0x0, &(0x7f00000003c0)=ANY=[]) chdir(&(0x7f0000000040)='./file0\x00') openat(0xffffffffffffff9c, &(0x7f0000000080)='./file1\x00', 0x105142, 0x0) r0 = openat(0xffffffffffffff9c, &(0x7f0000000200)='./file1\x00', 0x2, 0x0) write(r0, &(0x7f0000000240)="01", 0x1) r1 = openat(0xffffffffffffff9c, &(0x7f00000000c0)='./file2\x00', 0x105142, 0x0) r2 = openat(0xffffffffffffff9c, &(0x7f0000001340)='./file1\x00', 0x0, 0x0) copy_file_range(r2, 0x0, r1, &(0x7f0000000280)=0x10002, 0xc3a, 0x0) openat$sr(0xffffffffffffff9c, 0x0, 0x0, 0x0) 19:57:03 executing program 4: syz_80211_inject_frame(&(0x7f00000000c0)=@device_a={0x8, 0x2, 0x11, 0x1a}, &(0x7f0000000440)=ANY=[], 0x2f) [ 3123.189735] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium [ 3123.207361] FAULT_INJECTION: forcing a failure. [ 3123.207361] name failslab, interval 1, probability 0, space 0, times 0 [ 3123.208904] CPU: 1 PID: 23082 Comm: syz-executor.2 Not tainted 5.10.207 #1 [ 3123.209807] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 3123.210896] Call Trace: [ 3123.211249] dump_stack+0x107/0x167 [ 3123.211749] should_fail.cold+0x5/0xa [ 3123.212280] ? __alloc_skb+0x6d/0x5b0 [ 3123.212820] should_failslab+0x5/0x20 [ 3123.213341] kmem_cache_alloc_node+0x55/0x330 [ 3123.213961] ? entry_SYSCALL_64_after_hwframe+0x62/0xc7 [ 3123.214747] __alloc_skb+0x6d/0x5b0 [ 3123.215269] __ip_append_data+0x2930/0x3310 [ 3123.215891] ? raw_destroy+0x30/0x30 [ 3123.216419] ? ip_finish_output+0x330/0x330 [ 3123.217029] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 3123.217728] ? ipv4_mtu+0x1ed/0x2c0 [ 3123.218235] ? raw_destroy+0x30/0x30 [ 3123.218757] ip_append_data+0x114/0x1a0 [ 3123.219318] raw_sendmsg+0xaa6/0x29d0 [ 3123.219857] ? dst_output+0x170/0x170 [ 3123.220393] ? __lock_acquire+0x1657/0x5b00 [ 3123.221008] ? perf_trace_lock+0xac/0x490 [ 3123.221578] ? SOFTIRQ_verbose+0x10/0x10 [ 3123.222141] ? create_object.isra.0+0x3ad/0xa20 [ 3123.222785] ? __lockdep_reset_lock+0x180/0x180 [ 3123.223410] ? selinux_socket_post_create+0x7f0/0x7f0 [ 3123.224103] ? find_held_lock+0x2c/0x110 [ 3123.224687] ? trace_hardirqs_on+0x5b/0x180 [ 3123.225269] ? dst_output+0x170/0x170 [ 3123.225777] inet_sendmsg+0x11d/0x140 [ 3123.226295] ? inet_send_prepare+0x540/0x540 [ 3123.226906] __sock_sendmsg+0x13c/0x190 [ 3123.227458] ____sys_sendmsg+0x334/0x870 [ 3123.228024] ? sock_write_iter+0x3d0/0x3d0 [ 3123.228603] ? do_recvmmsg+0x6d0/0x6d0 [ 3123.229147] ? perf_trace_lock+0xac/0x490 [ 3123.229725] ? __lockdep_reset_lock+0x180/0x180 [ 3123.230365] ? perf_trace_lock+0xac/0x490 [ 3123.230944] ___sys_sendmsg+0xf3/0x170 [ 3123.231484] ? sendmsg_copy_msghdr+0x160/0x160 [ 3123.232127] ? lock_downgrade+0x6d0/0x6d0 [ 3123.232710] ? lock_downgrade+0x6d0/0x6d0 [ 3123.233285] ? __fget_files+0x296/0x4c0 [ 3123.233854] ? __fget_light+0xea/0x290 [ 3123.234403] __sys_sendmmsg+0x195/0x470 [ 3123.234954] ? __ia32_sys_sendmsg+0xb0/0xb0 [ 3123.235555] ? lock_downgrade+0x6d0/0x6d0 [ 3123.236151] ? __mutex_unlock_slowpath+0xe1/0x600 [ 3123.236831] ? wait_for_completion_io+0x270/0x270 [ 3123.237505] ? rcu_read_lock_any_held+0x75/0xa0 [ 3123.238143] ? vfs_write+0x354/0xa70 [ 3123.238654] ? fput_many+0x2f/0x1a0 [ 3123.239159] ? ksys_write+0x1a9/0x260 [ 3123.239683] ? __ia32_sys_read+0xb0/0xb0 [ 3123.240253] __x64_sys_sendmmsg+0x99/0x100 [ 3123.240843] do_syscall_64+0x33/0x40 [ 3123.241356] entry_SYSCALL_64_after_hwframe+0x62/0xc7 [ 3123.242040] RIP: 0033:0x7fac065c2b19 [ 3123.242538] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 3123.245070] RSP: 002b:00007fac03b38188 EFLAGS: 00000246 ORIG_RAX: 0000000000000133 [ 3123.246097] RAX: ffffffffffffffda RBX: 00007fac066d5f60 RCX: 00007fac065c2b19 [ 3123.247018] RDX: 0000000000000001 RSI: 0000000020002040 RDI: 0000000000000003 [ 3123.248009] RBP: 00007fac03b381d0 R08: 0000000000000000 R09: 0000000000000000 [ 3123.249009] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 3123.249973] R13: 00007ffe4d4b793f R14: 00007fac03b38300 R15: 0000000000022000 19:57:03 executing program 2: r0 = socket$inet_icmp_raw(0x2, 0x3, 0x1) r1 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a) ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000140)={'syz_tun\x00', 0x0}) perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) sendmmsg$inet(r0, &(0x7f0000002040)=[{{&(0x7f0000000380)={0x2, 0x0, @multicast1}, 0x10, &(0x7f0000001600)=[{&(0x7f00000003c0)="db9c", 0xffe7}], 0x1, &(0x7f0000001640)=ANY=[@ANYBLOB="14000000000000000000000007000000c4048f01000000001c000000000000000000000008000000", @ANYRES32=r2], 0x38}}], 0x1, 0x0) (fail_nth: 15) [ 3123.298610] EXT4-fs (loop6): mounted filesystem without journal. Opts: ,errors=continue [ 3123.315330] FAULT_INJECTION: forcing a failure. [ 3123.315330] name failslab, interval 1, probability 0, space 0, times 0 [ 3123.316944] CPU: 1 PID: 23172 Comm: syz-executor.2 Not tainted 5.10.207 #1 [ 3123.317857] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 3123.318863] Call Trace: [ 3123.319189] dump_stack+0x107/0x167 [ 3123.319663] should_fail.cold+0x5/0xa [ 3123.320192] ? create_object.isra.0+0x3a/0xa20 [ 3123.320817] should_failslab+0x5/0x20 [ 3123.321325] kmem_cache_alloc+0x5b/0x310 [ 3123.321871] create_object.isra.0+0x3a/0xa20 [ 3123.322462] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 3123.323156] kmem_cache_alloc_node+0x169/0x330 [ 3123.323780] __alloc_skb+0x6d/0x5b0 [ 3123.324266] __ip_append_data+0x2930/0x3310 [ 3123.324853] ? raw_destroy+0x30/0x30 [ 3123.325339] ? ip_finish_output+0x330/0x330 [ 3123.325893] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 3123.326542] ? ipv4_mtu+0x1ed/0x2c0 [ 3123.327007] ? raw_destroy+0x30/0x30 [ 3123.327478] ip_append_data+0x114/0x1a0 [ 3123.327989] raw_sendmsg+0xaa6/0x29d0 [ 3123.328489] ? dst_output+0x170/0x170 [ 3123.328999] ? __lock_acquire+0x1657/0x5b00 [ 3123.329576] ? perf_trace_lock+0xac/0x490 [ 3123.330111] ? SOFTIRQ_verbose+0x10/0x10 [ 3123.330653] ? create_object.isra.0+0x3ad/0xa20 [ 3123.331302] ? __lockdep_reset_lock+0x180/0x180 [ 3123.331911] ? selinux_socket_post_create+0x7f0/0x7f0 [ 3123.332525] ? find_held_lock+0x2c/0x110 [ 3123.333066] ? trace_hardirqs_on+0x5b/0x180 [ 3123.333619] ? dst_output+0x170/0x170 [ 3123.334116] inet_sendmsg+0x11d/0x140 [ 3123.334612] ? inet_send_prepare+0x540/0x540 [ 3123.335190] __sock_sendmsg+0x13c/0x190 [ 3123.335708] ____sys_sendmsg+0x334/0x870 [ 3123.336239] ? sock_write_iter+0x3d0/0x3d0 [ 3123.336788] ? do_recvmmsg+0x6d0/0x6d0 [ 3123.337308] ? perf_trace_lock+0xac/0x490 [ 3123.337859] ? __lockdep_reset_lock+0x180/0x180 [ 3123.338479] ? perf_trace_lock+0xac/0x490 [ 3123.339040] ___sys_sendmsg+0xf3/0x170 [ 3123.339576] ? sendmsg_copy_msghdr+0x160/0x160 [ 3123.340202] ? lock_downgrade+0x6d0/0x6d0 [ 3123.340771] ? lock_downgrade+0x6d0/0x6d0 [ 3123.341326] ? __fget_files+0x296/0x4c0 [ 3123.341859] ? __fget_light+0xea/0x290 [ 3123.342381] __sys_sendmmsg+0x195/0x470 [ 3123.342889] ? __ia32_sys_sendmsg+0xb0/0xb0 [ 3123.343432] ? lock_downgrade+0x6d0/0x6d0 [ 3123.343998] ? __mutex_unlock_slowpath+0xe1/0x600 [ 3123.344627] ? wait_for_completion_io+0x270/0x270 [ 3123.345296] ? rcu_read_lock_any_held+0x75/0xa0 [ 3123.345920] ? vfs_write+0x354/0xa70 [ 3123.346429] ? fput_many+0x2f/0x1a0 [ 3123.346908] ? ksys_write+0x1a9/0x260 [ 3123.347386] ? __ia32_sys_read+0xb0/0xb0 [ 3123.347901] __x64_sys_sendmmsg+0x99/0x100 [ 3123.348439] do_syscall_64+0x33/0x40 [ 3123.348924] entry_SYSCALL_64_after_hwframe+0x62/0xc7 [ 3123.349567] RIP: 0033:0x7fac065c2b19 [ 3123.350031] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 3123.352274] RSP: 002b:00007fac03b38188 EFLAGS: 00000246 ORIG_RAX: 0000000000000133 [ 3123.353209] RAX: ffffffffffffffda RBX: 00007fac066d5f60 RCX: 00007fac065c2b19 [ 3123.354077] RDX: 0000000000000001 RSI: 0000000020002040 RDI: 0000000000000003 [ 3123.354948] RBP: 00007fac03b381d0 R08: 0000000000000000 R09: 0000000000000000 [ 3123.355805] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 3123.356673] R13: 00007ffe4d4b793f R14: 00007fac03b38300 R15: 0000000000022000 19:57:03 executing program 6: syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000140)='./file0\x00', 0x40000, 0x4, &(0x7f0000000200)=[{&(0x7f0000010000)="20000000000100000c000000d40000000f000000010000000000000000000000002000000020000020000000d7f4655fd7f4655f0100ffff53ef010001000000d7f4655f000000000000000001000000000000000b0000000002", 0x5a, 0x400}, {&(0x7f0000010400)="030000000400000005000000d4000f", 0xf, 0x800}, {&(0x7f0000000500)="ffffffffff070000000000000000000000000000000000000000000000000080ffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffff", 0x402, 0xc00}, {&(0x7f0000010e00)="ed41000000040000d7f4655fd7f4655fd7f4655f000000000000040002", 0x1d, 0x1600}], 0x0, &(0x7f00000003c0)=ANY=[]) chdir(&(0x7f0000000040)='./file0\x00') openat(0xffffffffffffff9c, &(0x7f0000000080)='./file1\x00', 0x105142, 0x0) r0 = openat(0xffffffffffffff9c, &(0x7f0000000200)='./file1\x00', 0x2, 0x0) write(r0, &(0x7f0000000240)="01", 0x1) r1 = openat(0xffffffffffffff9c, &(0x7f00000000c0)='./file2\x00', 0x105142, 0x0) r2 = openat(0xffffffffffffff9c, &(0x7f0000001340)='./file1\x00', 0x0, 0x0) copy_file_range(r2, 0x0, r1, &(0x7f0000000280)=0x10003, 0xc3a, 0x0) openat$sr(0xffffffffffffff9c, 0x0, 0x0, 0x0) 19:57:03 executing program 3: syz_mount_image$vfat(&(0x7f0000000000), &(0x7f0000000100)='./file0\x00', 0x0, 0x2, &(0x7f00000000c0)=[{&(0x7f0000010000)="eb3c906d6b66732e66617400020801000240008000f801", 0x17}, {0x0, 0x0, 0x600}], 0x0, &(0x7f0000000140)=ANY=[@ANYBLOB="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"]) chdir(&(0x7f0000000040)='./file0\x00') r0 = openat(0xffffffffffffff9c, &(0x7f00000002c0)='./file1\x00', 0x105142, 0x0) r1 = openat(0xffffffffffffff9c, &(0x7f0000000000)='./file1\x00', 0x1, 0x0) sendfile(r0, r1, 0x0, 0x100000001) 19:57:03 executing program 0: keyctl$chown(0x4, 0x0, 0xee01, 0xee00) add_key$keyring(0x0, &(0x7f0000000140)={'syz', 0x0}, 0x0, 0x0, 0xfffffffffffffffe) r0 = add_key$keyring(&(0x7f00000002c0), &(0x7f0000000300)={'syz', 0x3}, 0x0, 0x0, 0xfffffffffffffffc) add_key$keyring(&(0x7f0000000200), &(0x7f0000000280)={'syz', 0x2}, 0x0, 0x0, r0) keyctl$KEYCTL_RESTRICT_KEYRING(0x1d, 0x0, 0x0, &(0x7f0000000000)=@keyring={'key_or_keyring:', 0x0, 0xa}) add_key$keyring(0x0, &(0x7f0000000440)={'syz', 0x3}, 0x0, 0x0, 0x0) add_key$keyring(&(0x7f0000000340), &(0x7f00000003c0)={'syz', 0x3}, 0x0, 0x0, 0x0) add_key$fscrypt_v1(&(0x7f0000000080), &(0x7f00000000c0)={'fscrypt:', @auto=[0x32, 0x31, 0x62, 0x39, 0x64, 0x39, 0x32, 0x65, 0x39, 0x64, 0x31, 0x66, 0x37, 0x63, 0x32, 0x34]}, &(0x7f0000000100)={0x0, "fa92d0e52f86277257ecdf8f6de7c6cf79baebc0cfee1b3b6ea5cf82bc949509d9c4c51d4fbb35afd2494a9b857e8dcfe9f67b43ceff2f6bf1f3f7979727fe43", 0x3f}, 0x48, 0x0) openat$full(0xffffffffffffff9c, &(0x7f0000000040), 0x2800, 0x0) r1 = syz_open_procfs(0xffffffffffffffff, &(0x7f0000000000)='wchan\x00') r2 = syz_open_procfs(0xffffffffffffffff, &(0x7f0000000000)='wchan\x00') preadv(r2, &(0x7f0000000240)=[{&(0x7f0000000040)=""/242, 0xf2}], 0x1, 0x0, 0x0) r3 = socket$nl_route(0x10, 0x3, 0x0) fadvise64(r3, 0x5, 0x200, 0x3) ioctl$SNDRV_TIMER_IOCTL_CONTINUE(r2, 0x54a2) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) dup(r1) perf_event_open(&(0x7f0000000180)={0x2, 0x80, 0x1, 0x0, 0x80, 0xa, 0x0, 0x5e, 0xe9338afb6edceec3, 0x2, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7, 0x0, @perf_bp={&(0x7f0000000540)}, 0x100, 0x10000, 0x0, 0xb, 0x40000, 0x4, 0x0, 0x0, 0x2, 0x0, 0x5}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) clone3(&(0x7f0000000ac0)={0x17412c500, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) add_key$user(&(0x7f0000000380), &(0x7f0000000400)={'syz', 0x1}, &(0x7f0000000580)="2e7d4a00400e615e00517dba19ec464fd34b94526714ec67459b8a4c71bcb413d1625981a13e27ed7127fc4205df1857598c412d76f8e9a1c6563eae13eb1a935e8fccf6f8784aa77e453d43c8995261155e2ffb587f1df62a8cb8b5a9bd23102c6fe30e5845985fb0d9c1b8e3783c7a8522ad061a564feb0dfcf612939051124c7eb92ce08025dee7ebaadf622115cb38d2e67c05a9c75227a96d3ccb2648effc2c0297a882443d02f3c2b09cf5f41ad26dfa414efaaa686509128f6ccbf617ceb8c4f86fb7d8586c3719300798a7d5c928666e376f94dcebcc0bb81829b6ffc26c234a296dadeb1b46a811d4453f4416ff", 0xf2, 0x0) 19:57:03 executing program 1: perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x0, 0x0, 0x100}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) syz_open_procfs(0xffffffffffffffff, &(0x7f0000000040)='mountinfo\x00') ptrace(0x8, 0x0) ptrace(0x4207, 0x0) openat$null(0xffffffffffffff9c, &(0x7f00000002c0), 0x2, 0x0) perf_event_open(&(0x7f0000000180)={0x3, 0x80, 0x0, 0x6, 0x3, 0x5, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x1, 0x0, 0x0, 0x1, 0x1, 0x2, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x1, 0x1, 0x0, 0x1, 0x0, 0x0, 0x1, 0x0, 0x3, 0x4, @perf_config_ext={0xffffffff, 0x40}, 0x0, 0x5, 0x5a, 0x4, 0x100000000, 0x55c, 0x101, 0x0, 0xadc, 0x0, 0x9}, 0x0, 0x5, 0xffffffffffffffff, 0x1) openat$procfs(0xffffffffffffff9c, &(0x7f00000004c0)='/proc/timer_list\x00', 0x0, 0x0) r0 = socket$netlink(0x10, 0x3, 0x0) sendmsg$nl_generic(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000280)=ANY=[@ANYBLOB="240000002a00274e0000000000000000000000000400000009000000"], 0x24}}, 0x0) r1 = add_key$keyring(&(0x7f00000003c0), &(0x7f0000000400)={'syz', 0x2}, 0x0, 0x0, 0xfffffffffffffffc) add_key$fscrypt_provisioning(&(0x7f0000000240), &(0x7f0000000300)={'syz', 0x3}, &(0x7f0000000340)={0x2, 0x0, @b}, 0x48, r1) preadv2(r0, &(0x7f0000000140)=[{&(0x7f0000000000)=""/43, 0x2b}, {&(0x7f0000000080)=""/7, 0x7}, {&(0x7f00000000c0)=""/41, 0x29}, {&(0x7f0000000100)=""/58, 0x3a}], 0x4, 0x7fff, 0x9, 0x0) socket$nl_xfrm(0x10, 0x3, 0x6) 19:57:03 executing program 5: ioctl$TIOCSTI(0xffffffffffffffff, 0x5412, &(0x7f0000000340)=0x85) msgctl$IPC_SET(0x0, 0x1, 0x0) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f00000005c0)}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r0 = dup3(0xffffffffffffffff, 0xffffffffffffffff, 0x0) signalfd4(0xffffffffffffffff, &(0x7f0000000280)={[0x9]}, 0x8, 0x0) r1 = socket$inet6_udp(0xa, 0x2, 0x0) connect$inet6(r1, &(0x7f0000000000)={0xa, 0x0, 0x0, @mcast2, 0x5}, 0x1c) ioctl$FS_IOC_RESVSP(r0, 0x40305828, &(0x7f00000001c0)={0x0, 0x0, 0xb9a8, 0x6}) openat$incfs(0xffffffffffffff9c, &(0x7f0000000040)='.pending_reads\x00', 0x246002, 0x21) r2 = msgget$private(0x0, 0x0) msgctl$MSG_STAT(r2, 0xb, &(0x7f0000001080)=""/255) msgsnd(r2, &(0x7f00000000c0)={0x3, "f98591aa6d2f0cddade88617b9f3d73a7ee93b0245bc576269023ab75a009deec61f530634ef490c4c25433691998444b8e32b737a0232b88dcf4ff4b6cb5b203621a9971ae77035816d32b88763311c304c247edff6dc7ddc3d84450d5b72e7f84bcafffcc9f50cc2fed1093e248499a0dca3013a630a0af540b3740a690918d38b571e83879f85e52923675746015287aafde8e626715d6aa6bcbce32a88fb748777bcd5f666e99a0c83104943ee9d12a673fa4a7654898722ee59857a48d26841ca4dbfd6fdfcd6f842f2e5832f00b9aab64f65bd829a4b26e0fe7d45095e31906cb17d526dee0c"}, 0xf1, 0x0) sendmmsg$inet6(r1, &(0x7f0000004d00)=[{{0x0, 0x0, &(0x7f00000004c0)=[{&(0x7f0000000080)='K', 0x1}], 0x1}}], 0x7ffff000, 0x0) [ 3123.505400] EXT4-fs (loop6): mounted filesystem without journal. Opts: ,errors=continue [ 3123.507462] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium 19:57:03 executing program 2: r0 = socket$inet_icmp_raw(0x2, 0x3, 0x1) r1 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a) ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000140)={'syz_tun\x00', 0x0}) perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) sendmmsg$inet(r0, &(0x7f0000002040)=[{{&(0x7f0000000380)={0x2, 0x0, @multicast1}, 0x10, &(0x7f0000001600)=[{&(0x7f00000003c0)="db9c", 0xffe7}], 0x1, &(0x7f0000001640)=ANY=[@ANYBLOB="14000000000000000000000007000000c4048f01000000001c000000000000000000000008000000", @ANYRES32=r2], 0x38}}], 0x1, 0x0) (fail_nth: 16) 19:57:03 executing program 7: r0 = perf_event_open(&(0x7f00000000c0)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r1 = syz_open_dev$sg(&(0x7f0000000400), 0x0, 0x0) r2 = socket$packet(0x11, 0x3, 0x300) perf_event_open(&(0x7f0000000000)={0x4, 0x80, 0x7, 0xc5, 0x7, 0x6, 0x0, 0x10000, 0x1ae5, 0x5, 0x0, 0x1, 0x1, 0x1, 0x0, 0x1, 0x0, 0x1, 0x1, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x1, 0x1, 0x1, 0x1, 0x1, 0x0, 0x0, 0x0, 0x1, 0x0, 0x1, 0x1, 0x1, 0x0, 0x1, 0x0, 0x0, 0x0, 0x7fffffff, 0x4, @perf_config_ext={0x800000000000000, 0xffffffffffffffff}, 0x605de9ad3ed71b54, 0x949, 0x8, 0x9, 0x6, 0x2, 0x7, 0x0, 0x2a, 0x0, 0x2}, 0xffffffffffffffff, 0x3, r0, 0xb) r3 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a) ioctl$sock_SIOCGIFINDEX(r3, 0x8933, &(0x7f0000000140)={'lo\x00', 0x0}) setsockopt$packet_add_memb(r2, 0x107, 0x1, &(0x7f0000000100)={r4, 0x3, 0x6}, 0x10) close_range(r1, 0xffffffffffffffff, 0x0) 19:57:03 executing program 4: syz_80211_inject_frame(&(0x7f00000000c0)=@device_a={0x8, 0x2, 0x11, 0x1b}, &(0x7f0000000440)=ANY=[], 0x2f) [ 3123.634657] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium 19:57:03 executing program 6: syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000140)='./file0\x00', 0x40000, 0x4, &(0x7f0000000200)=[{&(0x7f0000010000)="20000000000100000c000000d40000000f000000010000000000000000000000002000000020000020000000d7f4655fd7f4655f0100ffff53ef010001000000d7f4655f000000000000000001000000000000000b0000000002", 0x5a, 0x400}, {&(0x7f0000010400)="030000000400000005000000d4000f", 0xf, 0x800}, {&(0x7f0000000500)="ffffffffff070000000000000000000000000000000000000000000000000080ffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffff", 0x402, 0xc00}, {&(0x7f0000010e00)="ed41000000040000d7f4655fd7f4655fd7f4655f000000000000040002", 0x1d, 0x1600}], 0x0, &(0x7f00000003c0)=ANY=[]) chdir(&(0x7f0000000040)='./file0\x00') openat(0xffffffffffffff9c, &(0x7f0000000080)='./file1\x00', 0x105142, 0x0) r0 = openat(0xffffffffffffff9c, &(0x7f0000000200)='./file1\x00', 0x2, 0x0) write(r0, &(0x7f0000000240)="01", 0x1) r1 = openat(0xffffffffffffff9c, &(0x7f00000000c0)='./file2\x00', 0x105142, 0x0) r2 = openat(0xffffffffffffff9c, &(0x7f0000001340)='./file1\x00', 0x0, 0x0) copy_file_range(r2, 0x0, r1, &(0x7f0000000280)=0x10004, 0xc3a, 0x0) openat$sr(0xffffffffffffff9c, 0x0, 0x0, 0x0) [ 3123.639743] device lo entered promiscuous mode [ 3123.651526] FAULT_INJECTION: forcing a failure. [ 3123.651526] name failslab, interval 1, probability 0, space 0, times 0 [ 3123.654061] CPU: 0 PID: 23324 Comm: syz-executor.2 Not tainted 5.10.207 #1 [ 3123.655550] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 3123.657354] Call Trace: [ 3123.657943] dump_stack+0x107/0x167 [ 3123.658767] should_fail.cold+0x5/0xa [ 3123.659621] should_failslab+0x5/0x20 [ 3123.660442] __kmalloc_node_track_caller+0x74/0x3b0 [ 3123.661566] ? __ip_append_data+0x2930/0x3310 19:57:03 executing program 3: perf_event_open(&(0x7f0000001d80)={0x0, 0x80, 0x1, 0x0, 0x0, 0x0, 0x0, 0xbb6, 0x100, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f0000000040), 0x3}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffc}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r0 = socket$nl_xfrm(0x10, 0x3, 0x6) sendmsg$nl_xfrm(r0, &(0x7f0000002e00)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000001280)=@delsa={0x28, 0x11, 0x400, 0x70bd29, 0x25dfdbfb, {@in=@rand_addr=0x64010102, 0x800004d2, 0x2, 0x5f}}, 0x28}, 0x1, 0x0, 0x0, 0x800}, 0x0) socket$nl_xfrm(0x10, 0x3, 0x6) fcntl$getownex(0xffffffffffffffff, 0x10, &(0x7f00000009c0)={0x0, 0x0}) r2 = socket$nl_xfrm(0x10, 0x3, 0x6) r3 = socket$packet(0x11, 0x2, 0x300) r4 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a) ioctl$sock_SIOCGIFINDEX(r4, 0x8933, &(0x7f0000000140)={'lo\x00', 0x0}) bind$packet(r3, &(0x7f0000000240)={0x11, 0x0, r5, 0x1, 0x0, 0x6, @random="ca73da4133fc"}, 0x14) r6 = socket$packet(0x11, 0x2, 0x300) r7 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a) ioctl$sock_SIOCGIFINDEX(r7, 0x8933, &(0x7f0000000140)={'lo\x00', 0x0}) bind$packet(r6, &(0x7f0000000240)={0x11, 0x0, r8, 0x1, 0x0, 0x6, @random="ca73da4133fc"}, 0x14) sendmsg$nl_xfrm(r2, &(0x7f0000000140)={&(0x7f0000000180)={0x10, 0x0, 0x0, 0x40}, 0xc, &(0x7f0000000100)={&(0x7f0000000300)=ANY=[@ANYBLOB="000000001000000127bd7000fcdbdf25000000000000000000000000000000007f00c71ee3e05d960d388000000000004e2200004e2200030a0030e000000000", @ANYRES32=r8, @ANYRES32=0xee01, @ANYBLOB="00000000000000000000ffff64010100000004d532000000ffffffff0000000000000000000000000101000000000000ff010000000000000100010000000000ffffff7f00000000465b0000000000009800000000000000000400000000000054040000000000006ccf000000000000000800000000000075000000000000000000001000000000000000b0000000000000008025bd7000073500000a000406380000000000000000000d007f00000100"/188], 0x50}}, 0x24048000) setpgid(0x0, r1) r9 = openat(0xffffffffffffff9c, &(0x7f00000002c0)='./file1\x00', 0x105142, 0x0) write$binfmt_aout(r9, &(0x7f0000000b00)=ANY=[], 0x742) openat(0xffffffffffffff9c, &(0x7f00000001c0)='./file1\x00', 0x0, 0x98) msgrcv(0x0, &(0x7f0000000000)=ANY=[@ANYBLOB="0000000000030000002620f90e524e45f800"/38], 0x26, 0x0, 0x3000) [ 3123.662555] ? entry_SYSCALL_64_after_hwframe+0x62/0xc7 [ 3123.663802] __alloc_skb+0xb1/0x5b0 [ 3123.664609] __ip_append_data+0x2930/0x3310 [ 3123.665610] ? raw_destroy+0x30/0x30 [ 3123.666463] ? ip_finish_output+0x330/0x330 [ 3123.667421] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 3123.668517] ? ipv4_mtu+0x1ed/0x2c0 [ 3123.669347] ? raw_destroy+0x30/0x30 [ 3123.670184] ip_append_data+0x114/0x1a0 [ 3123.671102] raw_sendmsg+0xaa6/0x29d0 [ 3123.671994] ? dst_output+0x170/0x170 [ 3123.672861] ? perf_trace_run_bpf_submit+0xf5/0x190 [ 3123.674005] ? perf_trace_lock+0x2bd/0x490 [ 3123.674953] ? SOFTIRQ_verbose+0x10/0x10 [ 3123.675863] ? __lockdep_reset_lock+0x180/0x180 [ 3123.676929] ? selinux_socket_post_create+0x7f0/0x7f0 [ 3123.678070] ? find_held_lock+0x2c/0x110 [ 3123.679012] ? trace_hardirqs_on+0x5b/0x180 [ 3123.679967] ? dst_output+0x170/0x170 [ 3123.680834] inet_sendmsg+0x11d/0x140 [ 3123.681684] ? inet_send_prepare+0x540/0x540 [ 3123.682657] __sock_sendmsg+0x13c/0x190 [ 3123.683521] ____sys_sendmsg+0x334/0x870 [ 3123.684422] ? sock_write_iter+0x3d0/0x3d0 [ 3123.685360] ? do_recvmmsg+0x6d0/0x6d0 [ 3123.686224] ? perf_trace_lock+0x2bd/0x490 [ 3123.687171] ? __lockdep_reset_lock+0x180/0x180 [ 3123.688220] ___sys_sendmsg+0xf3/0x170 [ 3123.689116] ? sendmsg_copy_msghdr+0x160/0x160 [ 3123.690149] ? lock_downgrade+0x6d0/0x6d0 [ 3123.691070] ? perf_trace_run_bpf_submit+0xf5/0x190 [ 3123.692202] ? __fget_files+0x296/0x4c0 [ 3123.693129] ? __fget_light+0xea/0x290 [ 3123.694017] __sys_sendmmsg+0x195/0x470 [ 3123.694916] ? __ia32_sys_sendmsg+0xb0/0xb0 [ 3123.695871] ? lock_downgrade+0x6d0/0x6d0 [ 3123.696858] ? __mutex_unlock_slowpath+0xe1/0x600 [ 3123.697941] ? wait_for_completion_io+0x270/0x270 [ 3123.699020] ? rcu_read_lock_any_held+0x75/0xa0 [ 3123.700045] ? vfs_write+0x354/0xa70 [ 3123.700893] ? fput_many+0x2f/0x1a0 [ 3123.701707] ? ksys_write+0x1a9/0x260 [ 3123.702559] ? __ia32_sys_read+0xb0/0xb0 [ 3123.703471] __x64_sys_sendmmsg+0x99/0x100 [ 3123.704418] do_syscall_64+0x33/0x40 [ 3123.705252] entry_SYSCALL_64_after_hwframe+0x62/0xc7 [ 3123.706385] RIP: 0033:0x7fac065c2b19 [ 3123.707200] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 3123.711272] RSP: 002b:00007fac03b38188 EFLAGS: 00000246 ORIG_RAX: 0000000000000133 [ 3123.712952] RAX: ffffffffffffffda RBX: 00007fac066d5f60 RCX: 00007fac065c2b19 [ 3123.714534] RDX: 0000000000000001 RSI: 0000000020002040 RDI: 0000000000000003 [ 3123.716105] RBP: 00007fac03b381d0 R08: 0000000000000000 R09: 0000000000000000 [ 3123.717705] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 3123.719272] R13: 00007ffe4d4b793f R14: 00007fac03b38300 R15: 0000000000022000 19:57:03 executing program 5: write$tun(0xffffffffffffffff, &(0x7f0000000000)={@void, @val={0x1, 0x1, 0x0, 0x2d6c, 0x9, 0x9cbc}, @llc={@llc={0x7e, 0xff, "8536", "011d6f2fef0b083ef5a5dbfb896149872638da43e25f677aeb64d31fb43e8b61535d65ce4c3ba00a1ba1aa24376488bd3992c59d416f73243b3686f0ab616fed952aa36c559f4e2a04d9f58d0dc9139cdca996c60cc02ec5e9deb880155f2737727779c07c949ad3aa6afe7cf2ac48b55df42f297fba2f353cb9c91701faabe4a29b795a044f6c9bacc4e6ab69dc846c65fc0445656e13f2cc5f3df38c04"}}}, 0xac) [ 3123.730635] device lo left promiscuous mode [ 3123.950464] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium 19:57:20 executing program 3: perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4304, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r0 = socket$inet6_udp(0xa, 0x2, 0x0) connect$inet6(r0, &(0x7f0000000600)={0xa, 0x0, 0x0, @dev, 0x2}, 0x1c) setsockopt$inet6_IPV6_DSTOPTS(r0, 0x29, 0x3b, &(0x7f0000000380)=ANY=[@ANYBLOB="ac0e40a737ff0f00"], 0x8) sendmmsg$inet6(r0, &(0x7f0000000080)=[{{0x0, 0x0, &(0x7f00000004c0)=[{&(0x7f00000001c0)="4bc702854e3954b59347985ccc868289d3fe483d2c0900a2a1d12e33a66529e1f276fef452632dfa3c004ce3be84a5f66c29cd4ec39ae5206562fbc9ea3c0dbbebc22e628e147b0e9631f19b0ce0a48e0e675b2da3442226b898f1ddf8eabf133ab4a9cb0999c2ee1d3bd36d089b0d8e97ea00d4c5f6ad14dce058d595aacba2d587ff5eacd81b71a73f53ed276d1f3b3384bb2bfba4e0f37302e690df9e7024378ac754ac0576f996f3ee53d1034c7720767ddf2625817532f7ae89103367b73a36152b84c38bc227ba9e9ff48bcfe027585cf14bff37a888", 0xff41}], 0x1}}], 0x1, 0x0) 19:57:20 executing program 1: perf_event_open(&(0x7f0000000080)={0x2, 0x80, 0xf, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) execveat(0xffffffffffffff9c, &(0x7f0000000000)='./file0/file0\x00', 0x0, 0x0, 0x400) 19:57:20 executing program 4: syz_80211_inject_frame(&(0x7f00000000c0)=@device_a={0x8, 0x2, 0x11, 0x1c}, &(0x7f0000000440)=ANY=[], 0x2f) 19:57:20 executing program 5: ftruncate(0xffffffffffffffff, 0x8) r0 = add_key$fscrypt_v1(&(0x7f0000000180), &(0x7f00000001c0)={'fscrypt:', @desc4}, &(0x7f0000000200)={0x0, "f038779de021f8c8c974dd89170cf2579d1fa459ba726003d07140eeb342b87ae631f7a548867a29f29fd1637ddac658a709b49b093393d0e1c7391515c7ab7c"}, 0x48, 0xfffffffffffffffe) keyctl$chown(0x4, r0, 0xee01, 0xee00) r1 = add_key$keyring(&(0x7f00000000c0), &(0x7f0000000540)={'syz', 0x2}, 0x0, 0x0, 0xfffffffffffffffb) add_key$fscrypt_v1(0x0, 0x0, &(0x7f0000000440)={0x0, "9b55f610ffe7b9856842eb69443042b20caac33d7dda6ec6986b177fa13c2bd2c68577ea852c8bb47f31ee549b6a921e231ef07ee0f7fca620564faeeeafa440"}, 0x48, 0x0) getsockopt$inet_mreq(0xffffffffffffffff, 0x0, 0x24, &(0x7f00000004c0)={@multicast1, @broadcast}, &(0x7f0000000500)=0x8) r2 = add_key$keyring(&(0x7f0000000040), &(0x7f00000002c0)={'syz', 0x3}, 0x0, 0x0, 0xfffffffffffffffd) r3 = add_key$user(&(0x7f0000000a40), &(0x7f0000000a80)={'syz', 0x1}, &(0x7f0000000300)="a3", 0x1, 0xfffffffffffffffe) keyctl$KEYCTL_RESTRICT_KEYRING(0x1d, r2, &(0x7f0000000240)='asymmetric\x00', &(0x7f0000000000)=@keyring={'key_or_keyring:', r3, 0xa}) request_key(&(0x7f0000000240)='.request_key_auth\x00', &(0x7f0000000280)={'syz', 0x3}, &(0x7f0000000380)='dns_resolver\x00', r2) add_key$keyring(0x0, &(0x7f0000000440)={'syz', 0x3}, 0x0, 0x0, 0x0) add_key$fscrypt_provisioning(&(0x7f0000000000), &(0x7f0000000140)={'syz', 0x3}, &(0x7f0000000580)=ANY=[@ANYBLOB="020000005a0000000102030400000000000000000d0e0f101112131415161718191a1bc4451e1f202122232425d03728292a2b32333435363723c8081153e7c5383b3a3b3c3d3e3f40000000000000"], 0x48, r1) add_key$keyring(&(0x7f0000000340), &(0x7f00000003c0)={'syz', 0x3}, 0x0, 0x0, r0) sendmmsg$inet(0xffffffffffffffff, &(0x7f00000004c0), 0x0, 0x800) request_key(&(0x7f0000000080)='ceph\x00', &(0x7f0000000640)={'syz', 0x1}, &(0x7f0000000680)='dns_resolver\x00', 0x0) getsockopt$IPT_SO_GET_REVISION_TARGET(0xffffffffffffffff, 0x0, 0x43, &(0x7f0000000400)={'HL\x00'}, &(0x7f0000000600)=0x1e) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f0000000100)}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) clone3(&(0x7f0000000ac0)={0x17412c500, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) 19:57:20 executing program 2: r0 = socket$inet_icmp_raw(0x2, 0x3, 0x1) r1 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a) ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000140)={'syz_tun\x00', 0x0}) perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) sendmmsg$inet(r0, &(0x7f0000002040)=[{{&(0x7f0000000380)={0x2, 0x0, @multicast1}, 0x10, &(0x7f0000001600)=[{&(0x7f00000003c0)="db9c", 0xffe7}], 0x1, &(0x7f0000001640)=ANY=[@ANYBLOB="14000000000000000000000007000000c4048f01000000001c000000000000000000000008000000", @ANYRES32=r2], 0x38}}], 0x1, 0x0) (fail_nth: 17) 19:57:20 executing program 7: r0 = perf_event_open(&(0x7f00000000c0)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r1 = syz_open_dev$sg(&(0x7f0000000400), 0x0, 0x0) r2 = socket$packet(0x11, 0x3, 0x300) perf_event_open(&(0x7f0000000000)={0x4, 0x80, 0x7, 0xc5, 0x7, 0x6, 0x0, 0x10000, 0x1ae5, 0x5, 0x0, 0x1, 0x1, 0x1, 0x0, 0x1, 0x0, 0x1, 0x1, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x1, 0x1, 0x1, 0x1, 0x1, 0x0, 0x0, 0x0, 0x1, 0x0, 0x1, 0x1, 0x1, 0x0, 0x1, 0x0, 0x0, 0x0, 0x7fffffff, 0x4, @perf_config_ext={0x800000000000000, 0xffffffffffffffff}, 0x605de9ad3ed71b54, 0x949, 0x8, 0x9, 0x6, 0x2, 0x7, 0x0, 0x2a, 0x0, 0x2}, 0xffffffffffffffff, 0x3, r0, 0xb) r3 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a) ioctl$sock_SIOCGIFINDEX(r3, 0x8933, &(0x7f0000000140)={'lo\x00', 0x0}) setsockopt$packet_add_memb(r2, 0x107, 0x1, &(0x7f0000000100)={r4, 0x3, 0x6}, 0x10) close_range(r1, 0xffffffffffffffff, 0x0) [ 3140.541724] FAULT_INJECTION: forcing a failure. [ 3140.541724] name failslab, interval 1, probability 0, space 0, times 0 [ 3140.544255] CPU: 0 PID: 23446 Comm: syz-executor.2 Not tainted 5.10.207 #1 [ 3140.545772] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 3140.547597] Call Trace: [ 3140.548186] dump_stack+0x107/0x167 [ 3140.549030] should_fail.cold+0x5/0xa 19:57:20 executing program 6: syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000140)='./file0\x00', 0x40000, 0x4, &(0x7f0000000200)=[{&(0x7f0000010000)="20000000000100000c000000d40000000f000000010000000000000000000000002000000020000020000000d7f4655fd7f4655f0100ffff53ef010001000000d7f4655f000000000000000001000000000000000b0000000002", 0x5a, 0x400}, {&(0x7f0000010400)="030000000400000005000000d4000f", 0xf, 0x800}, {&(0x7f0000000500)="ffffffffff070000000000000000000000000000000000000000000000000080ffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffff", 0x402, 0xc00}, {&(0x7f0000010e00)="ed41000000040000d7f4655fd7f4655fd7f4655f000000000000040002", 0x1d, 0x1600}], 0x0, &(0x7f00000003c0)=ANY=[]) chdir(&(0x7f0000000040)='./file0\x00') openat(0xffffffffffffff9c, &(0x7f0000000080)='./file1\x00', 0x105142, 0x0) r0 = openat(0xffffffffffffff9c, &(0x7f0000000200)='./file1\x00', 0x2, 0x0) write(r0, &(0x7f0000000240)="01", 0x1) r1 = openat(0xffffffffffffff9c, &(0x7f00000000c0)='./file2\x00', 0x105142, 0x0) r2 = openat(0xffffffffffffff9c, &(0x7f0000001340)='./file1\x00', 0x0, 0x0) copy_file_range(r2, 0x0, r1, &(0x7f0000000280)=0x1000b, 0xc3a, 0x0) openat$sr(0xffffffffffffff9c, 0x0, 0x0, 0x0) 19:57:20 executing program 0: syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f00000000c0)='./file0/file0\x00', 0x40000, 0x3, &(0x7f0000000200)=[{&(0x7f0000000140)="200000004000000003000000300000000f000000000000000200000002000000008000000080000020000000dcf4655fdcf4655f0100ffff53ef010001000000dbf4655f000000000000000001000000000000000b0000000002000028020000028401001bb8", 0x66, 0x400}, {&(0x7f0000010400)="020000000300000004", 0x9, 0x1000}, {&(0x7f0000012600)="ed41000000100000dbf4655fdcf4655fdcf4655f000000000000040008", 0x1d, 0x4200}], 0x0, &(0x7f0000000040)=ANY=[@ANYBLOB="78f4c78a55a5a744bd5c24dbc0f6c432937c35385d528687f221ffc8fbc7f2f8d1f543133170ccd8720c908ffb3f83a99ce684eb86fbb08cc1ee393213ae7a120e76c6972897b25ab1b4fa65eb90ea8e33af6b2339bf1d47fc58d167932371d9832c4c"]) [ 3140.549888] ? create_object.isra.0+0x3a/0xa20 [ 3140.551017] should_failslab+0x5/0x20 [ 3140.551850] kmem_cache_alloc+0x5b/0x310 [ 3140.552757] device lo entered promiscuous mode [ 3140.552776] create_object.isra.0+0x3a/0xa20 [ 3140.553791] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 3140.553846] __kmalloc_node_track_caller+0x1a6/0x3b0 [ 3140.556677] ? __ip_append_data+0x2930/0x3310 [ 3140.557705] ? entry_SYSCALL_64_after_hwframe+0x62/0xc7 [ 3140.557892] device lo left promiscuous mode [ 3140.558919] __alloc_skb+0xb1/0x5b0 [ 3140.558965] __ip_append_data+0x2930/0x3310 [ 3140.561351] ? raw_destroy+0x30/0x30 [ 3140.562239] ? ip_finish_output+0x330/0x330 [ 3140.563218] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 3140.564326] ? ipv4_mtu+0x1ed/0x2c0 [ 3140.565156] ? raw_destroy+0x30/0x30 [ 3140.565978] ip_append_data+0x114/0x1a0 [ 3140.566872] raw_sendmsg+0xaa6/0x29d0 [ 3140.567737] ? dst_output+0x170/0x170 [ 3140.568572] ? perf_trace_run_bpf_submit+0xf5/0x190 [ 3140.569700] ? perf_trace_lock+0x2bd/0x490 [ 3140.570624] ? SOFTIRQ_verbose+0x10/0x10 [ 3140.571518] ? __lockdep_reset_lock+0x180/0x180 [ 3140.572011] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium [ 3140.572574] ? selinux_socket_post_create+0x7f0/0x7f0 [ 3140.574903] ? find_held_lock+0x2c/0x110 [ 3140.575848] ? trace_hardirqs_on+0x5b/0x180 [ 3140.576819] ? dst_output+0x170/0x170 [ 3140.577681] inet_sendmsg+0x11d/0x140 [ 3140.578533] ? inet_send_prepare+0x540/0x540 [ 3140.579524] __sock_sendmsg+0x13c/0x190 [ 3140.580397] ____sys_sendmsg+0x334/0x870 [ 3140.581303] ? sock_write_iter+0x3d0/0x3d0 [ 3140.582225] ? do_recvmmsg+0x6d0/0x6d0 [ 3140.583074] ? perf_trace_lock+0x2bd/0x490 [ 3140.584017] ? __lockdep_reset_lock+0x180/0x180 [ 3140.585066] ___sys_sendmsg+0xf3/0x170 [ 3140.585921] ? sendmsg_copy_msghdr+0x160/0x160 [ 3140.586945] ? lock_downgrade+0x6d0/0x6d0 [ 3140.587871] ? perf_trace_run_bpf_submit+0xf5/0x190 [ 3140.588996] ? __fget_files+0x296/0x4c0 [ 3140.589901] ? __fget_light+0xea/0x290 [ 3140.590779] __sys_sendmmsg+0x195/0x470 [ 3140.591672] ? __ia32_sys_sendmsg+0xb0/0xb0 [ 3140.592619] ? lock_downgrade+0x6d0/0x6d0 [ 3140.593593] ? __mutex_unlock_slowpath+0xe1/0x600 [ 3140.594658] ? wait_for_completion_io+0x270/0x270 [ 3140.595722] ? rcu_read_lock_any_held+0x75/0xa0 [ 3140.596740] ? vfs_write+0x354/0xa70 [ 3140.597580] ? fput_many+0x2f/0x1a0 [ 3140.598382] ? ksys_write+0x1a9/0x260 [ 3140.599220] ? __ia32_sys_read+0xb0/0xb0 [ 3140.600128] __x64_sys_sendmmsg+0x99/0x100 [ 3140.601078] do_syscall_64+0x33/0x40 [ 3140.601893] entry_SYSCALL_64_after_hwframe+0x62/0xc7 [ 3140.603009] RIP: 0033:0x7fac065c2b19 [ 3140.603824] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 3140.607825] RSP: 002b:00007fac03b38188 EFLAGS: 00000246 ORIG_RAX: 0000000000000133 [ 3140.609490] RAX: ffffffffffffffda RBX: 00007fac066d5f60 RCX: 00007fac065c2b19 [ 3140.611041] RDX: 0000000000000001 RSI: 0000000020002040 RDI: 0000000000000003 [ 3140.612592] RBP: 00007fac03b381d0 R08: 0000000000000000 R09: 0000000000000000 [ 3140.614156] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 3140.615705] R13: 00007ffe4d4b793f R14: 00007fac03b38300 R15: 0000000000022000 19:57:20 executing program 5: r0 = perf_event_open(&(0x7f0000001d80)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffc}, 0xffffffffffffffff, 0x0, 0xffffffffffffffff, 0x0) r1 = getpgid(0x0) clone3(&(0x7f0000000580)={0x80040300, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, &(0x7f0000000540)=[r1], 0x1}, 0x58) r2 = openat$full(0xffffffffffffff9c, &(0x7f0000001500), 0xc0100, 0x0) perf_event_open(&(0x7f0000001480)={0x4, 0x80, 0x5, 0xff, 0x20, 0x4c, 0x0, 0x4, 0x0, 0x9, 0x1, 0x1, 0x0, 0x1, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x1, 0x0, 0x1, 0x1, 0x0, 0x0, 0x1, 0x0, 0x1, 0x1, 0x1, 0x0, 0x0, 0x1, 0x1, 0x0, 0x1, 0x0, 0x1, 0x0, 0x6, 0x2, @perf_bp={&(0x7f0000001440), 0x1}, 0x80, 0x6, 0x0, 0x2, 0x4, 0x6, 0x6, 0x0, 0x5533, 0x0, 0x4}, r1, 0x2, r2, 0x9) readv(r0, &(0x7f00000013c0)=[{&(0x7f0000000000)=""/11, 0xb}, {&(0x7f0000000040)=""/111, 0x6f}, {&(0x7f00000000c0)=""/252, 0xfc}, {&(0x7f00000001c0)=""/212, 0xd4}, {&(0x7f00000002c0)=""/4096, 0x1000}, {&(0x7f00000012c0)=""/241, 0xf1}], 0x6) 19:57:20 executing program 7: r0 = perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r1 = socket$inet6_udp(0xa, 0x2, 0x0) connect$inet6(r1, &(0x7f0000000000)={0xa, 0x0, 0x0, @mcast2, 0x5}, 0x1c) sendmmsg$inet6(r1, &(0x7f0000004d00)=[{{0x0, 0x0, &(0x7f00000004c0)=[{&(0x7f0000000080)='K', 0x1}], 0x1}}], 0x7ffff000, 0x0) fgetxattr(r0, &(0x7f0000000140)=@random={'btrfs.', '\x00'}, &(0x7f0000000180)=""/38, 0x26) r2 = openat$vcs(0xffffffffffffff9c, &(0x7f0000000040), 0x109000, 0x0) perf_event_open(&(0x7f00000000c0)={0x3, 0x80, 0x54, 0xc7, 0x5, 0x80, 0x0, 0x100000000, 0x20, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x0, 0x1, 0x1, 0x0, 0x1, 0x1, 0x0, 0x1, 0x1, 0x1, 0x1, 0x0, 0x0, 0x0, 0x1, 0x0, 0x1, 0x0, 0x0, 0x1, 0x0, 0x0, 0x1, 0x0, 0x1, 0x1, 0x1, 0x1, 0x0, 0x1, 0x1, 0x1, 0x0, 0x0, 0x1, @perf_config_ext={0x4, 0x1}, 0x4000, 0xffffffff, 0x2, 0x8, 0x81, 0x5, 0x3, 0x0, 0x3f}, 0x0, 0xf, r2, 0x2) [ 3140.701877] EXT4-fs (loop6): mounted filesystem without journal. Opts: ,errors=continue 19:57:20 executing program 0: r0 = creat(&(0x7f0000000000)='./file0\x00', 0x0) write$P9_RUNLINKAT(r0, &(0x7f0000000040)={0x7}, 0x7) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffdfffffffffffff, 0xffffffffffffffff, 0x0) r1 = open_tree(r0, &(0x7f0000000140)='./file0\x00', 0x8000) perf_event_open(&(0x7f00000000c0)={0x5, 0x80, 0x70, 0x8, 0x9, 0x4, 0x0, 0x3271, 0x2, 0x4, 0x0, 0x0, 0x1, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x1, 0x2, 0x1, 0x1, 0x1, 0x0, 0x0, 0x1, 0x1, 0x1, 0x1, 0x1, 0x0, 0x0, 0x1, 0x1, 0x0, 0x1, 0x1, 0x1, 0x1, 0x1, 0x1, 0x0, 0x40, 0x1, @perf_bp={&(0x7f0000000080)}, 0x804, 0x0, 0xac7b, 0x9, 0x1, 0x4, 0x1f, 0x0, 0x87, 0x0, 0x3}, 0x0, 0x0, r1, 0x2) fallocate(r0, 0x20, 0x0, 0x8000) 19:57:20 executing program 2: r0 = socket$inet_icmp_raw(0x2, 0x3, 0x1) r1 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a) ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000140)={'syz_tun\x00', 0x0}) perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) sendmmsg$inet(r0, &(0x7f0000002040)=[{{&(0x7f0000000380)={0x2, 0x0, @multicast1}, 0x10, &(0x7f0000001600)=[{&(0x7f00000003c0)="db9c", 0xffe7}], 0x1, &(0x7f0000001640)=ANY=[@ANYBLOB="14000000000000000000000007000000c4048f01000000001c000000000000000000000008000000", @ANYRES32=r2], 0x38}}], 0x1, 0x0) (fail_nth: 18) 19:57:20 executing program 1: perf_event_open(&(0x7f0000001d80)={0x2, 0x80, 0x70, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x2}, 0xffffffffffffffff, 0x8, 0xffffffffffffffff, 0x0) r0 = mq_open(&(0x7f0000005c00)='-@\x00', 0x42, 0x0, 0x0) r1 = openat$sysfs(0xffffffffffffff9c, &(0x7f0000000000)='/sys/module/drm', 0x202642, 0x22) write(r1, &(0x7f0000000040)="49be76f7b8124e7b217fdcfe568e5b0fcdeba4ea953c2d9f3a29ff77196ae7aaab81a5649eee8acb67dea829388d10ef2068ef086203f0b95f141fc03e9d4234f5cfeecdf42333720bbcc723e23258c688ecdc7147a5031db2153406a6bcf2a0bf755bfc1ff9ecd4d6a65dbd4a7fa87fe53da4f4e0112b8e4bcdb5190a9a1eb5d1bb7df15ce2793963e440dd115d8449e4bfb982d2e5b82ac81dea29a3fe4d0ec530711273a48fa68ee7f9446305b3a2e37f7f5862b79734b05f9fca5de583d43523ca7d6412d1a99ecb5f90a888652d1419aa7ea9ad9198163dd6397e1b348b650b5639ab168c21ec11e5", 0xeb) fsync(r1) close(r0) [ 3140.823956] FAULT_INJECTION: forcing a failure. [ 3140.823956] name failslab, interval 1, probability 0, space 0, times 0 [ 3140.826552] CPU: 0 PID: 23568 Comm: syz-executor.2 Not tainted 5.10.207 #1 [ 3140.828053] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 3140.829847] Call Trace: [ 3140.830433] dump_stack+0x107/0x167 [ 3140.831242] should_fail.cold+0x5/0xa [ 3140.832070] ? __alloc_skb+0x6d/0x5b0 [ 3140.832908] should_failslab+0x5/0x20 [ 3140.833743] kmem_cache_alloc_node+0x55/0x330 [ 3140.834742] __alloc_skb+0x6d/0x5b0 [ 3140.835566] __ip_append_data+0x2930/0x3310 [ 3140.836551] ? raw_destroy+0x30/0x30 [ 3140.837419] ? ip_finish_output+0x330/0x330 [ 3140.838374] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 3140.839482] ? ipv4_mtu+0x1ed/0x2c0 [ 3140.840299] ? raw_destroy+0x30/0x30 [ 3140.841128] ip_append_data+0x114/0x1a0 [ 3140.842027] raw_sendmsg+0xaa6/0x29d0 [ 3140.842904] ? dst_output+0x170/0x170 [ 3140.843740] ? perf_trace_run_bpf_submit+0xf5/0x190 [ 3140.844864] ? perf_trace_lock+0x2bd/0x490 [ 3140.845818] ? SOFTIRQ_verbose+0x10/0x10 [ 3140.846723] ? __lockdep_reset_lock+0x180/0x180 [ 3140.847772] ? selinux_socket_post_create+0x7f0/0x7f0 [ 3140.848895] ? find_held_lock+0x2c/0x110 [ 3140.849835] ? trace_hardirqs_on+0x5b/0x180 [ 3140.850791] ? dst_output+0x170/0x170 [ 3140.851635] inet_sendmsg+0x11d/0x140 [ 3140.852471] ? inet_send_prepare+0x540/0x540 [ 3140.853454] __sock_sendmsg+0x13c/0x190 [ 3140.854436] ____sys_sendmsg+0x334/0x870 [ 3140.855334] ? sock_write_iter+0x3d0/0x3d0 [ 3140.856257] ? do_recvmmsg+0x6d0/0x6d0 [ 3140.857121] ? perf_trace_lock+0x2bd/0x490 [ 3140.858068] ? __lockdep_reset_lock+0x180/0x180 [ 3140.859103] ___sys_sendmsg+0xf3/0x170 [ 3140.859962] ? sendmsg_copy_msghdr+0x160/0x160 [ 3140.860989] ? lock_downgrade+0x6d0/0x6d0 [ 3140.861915] ? perf_trace_run_bpf_submit+0xf5/0x190 [ 3140.863037] ? __fget_files+0x296/0x4c0 [ 3140.863941] ? __fget_light+0xea/0x290 [ 3140.864818] __sys_sendmmsg+0x195/0x470 [ 3140.865723] ? __ia32_sys_sendmsg+0xb0/0xb0 [ 3140.866668] ? lock_downgrade+0x6d0/0x6d0 [ 3140.867631] ? __mutex_unlock_slowpath+0xe1/0x600 [ 3140.868699] ? wait_for_completion_io+0x270/0x270 [ 3140.869770] ? rcu_read_lock_any_held+0x75/0xa0 [ 3140.870789] ? vfs_write+0x354/0xa70 [ 3140.871618] ? fput_many+0x2f/0x1a0 [ 3140.872425] ? ksys_write+0x1a9/0x260 [ 3140.873285] ? __ia32_sys_read+0xb0/0xb0 [ 3140.874198] __x64_sys_sendmmsg+0x99/0x100 [ 3140.875134] do_syscall_64+0x33/0x40 [ 3140.875949] entry_SYSCALL_64_after_hwframe+0x62/0xc7 [ 3140.877074] RIP: 0033:0x7fac065c2b19 [ 3140.877894] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 3140.881921] RSP: 002b:00007fac03b38188 EFLAGS: 00000246 ORIG_RAX: 0000000000000133 [ 3140.883596] RAX: ffffffffffffffda RBX: 00007fac066d5f60 RCX: 00007fac065c2b19 [ 3140.885166] RDX: 0000000000000001 RSI: 0000000020002040 RDI: 0000000000000003 [ 3140.886719] RBP: 00007fac03b381d0 R08: 0000000000000000 R09: 0000000000000000 [ 3140.888276] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 3140.889982] R13: 00007ffe4d4b793f R14: 00007fac03b38300 R15: 0000000000022000 [ 3140.994418] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium 19:57:37 executing program 7: msgctl$IPC_RMID(0x0, 0x0) msgrcv(0x0, &(0x7f00000002c0)=ANY=[], 0x61, 0x0, 0x0) msgsnd(0x0, 0x0, 0x0, 0x0) r0 = getpgrp(0x0) msgsnd(0xffffffffffffffff, &(0x7f0000000140)=ANY=[@ANYBLOB="0100000000000000cebd8d0088a8a71e388b91bfe560d5e1f207cfcf39d5f649edf3066debdcf265178e1d509ec22e11de77de1bc1ea79d44badc2ba5cb1a4473757a6b26b587bcee497bf9ebba8271b36a8e2064b7e46ed0aec729b75afce73e7ffb91aa7319624457c36cbdfdc222ec2b3858dbb10a72cc69d98a8b98150a606404472d633574a131bb6fce449f98790640b6545e3ed9d63544792a26511eee8e2e9baff201ea5db80274d4ae1ba4397fe67bae2b0b7c7107faf5964"], 0x8, 0x0) clone3(&(0x7f0000000480)={0x40021000, &(0x7f0000000040), &(0x7f0000000080), &(0x7f00000000c0), {}, &(0x7f00000002c0)=""/248, 0xf8, &(0x7f00000003c0)=""/115, &(0x7f0000000440)=[r0], 0x1}, 0x58) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0x7, &(0x7f0000000200)=[{&(0x7f0000010000)="200000000002000019000000500100000f000000000000000000000004000000000002000020000020000000def4655fdef4655f0100ffff53ef010001000000ddf4655f000000000000000001000000000000000b0000008000000018000000c20500002b02", 0x66, 0x400}, {&(0x7f0000010100)="000000000000000000000000e58ca12e13a240e2b1a22f8d07e8e55f010040", 0x1f, 0x4e0}, {&(0x7f0000010200)="010000000000050040", 0x9, 0x560}, {&(0x7f0000010300)="030000000400000005", 0x9, 0x800}, {0x0, 0x0, 0x1000000000c00}, {&(0x7f0000010d00)="ed41000000040000ddf4655fdef4655fdef4655f000000000000040020", 0x1d, 0x1480}, {&(0x7f0000012000)="504d4d00504d4dff", 0x8, 0x10000}], 0x0, &(0x7f0000012b00)=ANY=[]) 19:57:37 executing program 5: r0 = perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r1 = socket$nl_generic(0x10, 0x3, 0x10) syz_genetlink_get_family_id$nl80211(0x0, 0xffffffffffffffff) socket$inet_icmp_raw(0x2, 0x3, 0x1) r2 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a) ioctl$sock_SIOCGIFINDEX(r2, 0x8933, 0x0) sendmmsg$inet(0xffffffffffffffff, 0x0, 0x0, 0x0) sendmsg$nl_generic(r1, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000480)={&(0x7f00000000c0)=ANY=[@ANYBLOB="140000001d004527004000000000000006"], 0x14}}, 0x0) r3 = socket$inet_tcp(0x2, 0x1, 0x0) ioctl$AUTOFS_DEV_IOCTL_PROTOSUBVER(0xffffffffffffffff, 0xc0189373, &(0x7f0000000280)={{0x1, 0x1, 0x18, r3, {0x7f}}, './file0\x00'}) ioctl$FICLONE(r0, 0x40049409, r4) read(r1, &(0x7f0000000100)=""/153, 0x99) write$binfmt_elf32(r0, &(0x7f0000001e00)={{0x7f, 0x45, 0x4c, 0x46, 0xd1, 0xf2, 0x1, 0x4, 0x37c5, 0x3, 0x3, 0xc6, 0x5d, 0x38, 0x326, 0x5d, 0xfffc, 0x20, 0x2, 0x800, 0x7, 0x7fff}, [{0x6474e554, 0x4, 0x180, 0x1, 0x7, 0x401, 0x7ff, 0x5ba}, {0x4, 0x0, 0x3ff, 0x9, 0x3, 0x4, 0x0, 0x7ff}], "26f187e682d6ce10e88d558abfbb2bf6cc25ce8b6f2c32", ['\x00', '\x00', '\x00', '\x00', '\x00']}, 0x58f) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0xfe, 0x0, 0x0, 0x0, 0x0, 0x7, 0x9444c, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x18020, 0x0, 0x3, 0x0, 0x1, 0x3e}, 0x0, 0x8, r0, 0x0) syz_emit_ethernet(0xba, &(0x7f0000000040)=ANY=[@ANYBLOB="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"], 0x0) fcntl$lock(0xffffffffffffffff, 0x7, &(0x7f0000000600)) openat$procfs(0xffffffffffffff9c, &(0x7f0000000000)='/proc/vmstat\x00', 0x0, 0x0) openat$sr(0xffffffffffffff9c, &(0x7f0000000240), 0x0, 0x0) 19:57:37 executing program 2: r0 = socket$inet_icmp_raw(0x2, 0x3, 0x1) r1 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a) ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000140)={'syz_tun\x00', 0x0}) perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) sendmmsg$inet(r0, &(0x7f0000002040)=[{{&(0x7f0000000380)={0x2, 0x0, @multicast1}, 0x10, &(0x7f0000001600)=[{&(0x7f00000003c0)="db9c", 0xffe7}], 0x1, &(0x7f0000001640)=ANY=[@ANYBLOB="14000000000000000000000007000000c4048f01000000001c000000000000000000000008000000", @ANYRES32=r2], 0x38}}], 0x1, 0x0) (fail_nth: 19) 19:57:37 executing program 3: recvmmsg$unix(0xffffffffffffffff, &(0x7f0000001c40)=[{{0x0, 0x0, &(0x7f0000000700)=[{&(0x7f0000000000)=""/152, 0x98}, {&(0x7f00000000c0)=""/35, 0x23}, {&(0x7f0000000100)=""/22, 0x16}, {&(0x7f0000000240)=""/203, 0xcb}, {&(0x7f0000000340)=""/222, 0xde}, {&(0x7f0000000140)=""/31, 0x1f}, {&(0x7f0000000500)=""/206, 0xce}, {&(0x7f0000000440)=""/55, 0x37}, {&(0x7f0000000600)=""/254, 0xfe}], 0x9, &(0x7f00000007c0)=[@rights={{0x34, 0x1, 0x1, [0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff]}}, @rights={{0x24, 0x1, 0x1, [0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff]}}, @cred={{0x1c}}], 0x80}}, {{&(0x7f0000000840), 0x6e, &(0x7f00000009c0)=[{&(0x7f00000008c0)=""/200, 0xc8}], 0x1, &(0x7f0000000a00)=[@cred={{0x1c}}, @cred={{0x1c}}], 0x40}}, {{&(0x7f0000000a40), 0x6e, &(0x7f0000001b80)=[{&(0x7f0000000ac0)=""/87, 0x57}, {&(0x7f0000000b40)=""/48, 0x30}, {&(0x7f0000000b80)=""/4096, 0x1000}], 0x3, &(0x7f0000001bc0)=ANY=[@ANYBLOB="1c000000000000000100000002000000", @ANYRES32=0x0, @ANYRES32=0x0, @ANYRES32=0x0, @ANYBLOB, @ANYRES32=0x0, @ANYRES32=0x0, @ANYRES32=0x0, @ANYBLOB="0000000028000000000000000100000001000000", @ANYRES32, @ANYRES32, @ANYRES32, @ANYRES32, @ANYRES32=0xffffffffffffffff, @ANYRES32], 0x68}}], 0x3, 0x1, &(0x7f0000001d00)={0x77359400}) r1 = syz_io_uring_setup(0x21, &(0x7f0000000080)={0x0, 0x45ae, 0x0, 0x1, 0x3b2, 0x0, 0x0}, &(0x7f00000a0000)=nil, &(0x7f0000ffe000/0x1000)=nil, &(0x7f0000000100)=0x0, &(0x7f0000000340)=0x0) r4 = socket$inet6_tcp(0xa, 0x1, 0x0) syz_io_uring_submit(r2, r3, &(0x7f00000001c0)=@IORING_OP_CONNECT={0x10, 0x2, 0x0, r4, 0x80, &(0x7f0000000280)=@in6={0xa, 0xfffe, 0x0, @ipv4={'\x00', '\xff\xff', @dev={0xac, 0x14, 0x14, 0x20}}}}, 0x0) r5 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x2000008, 0x10, r1, 0x0) syz_io_uring_submit(r5, r3, &(0x7f0000000040)=@IORING_OP_POLL_ADD={0x6, 0x5, 0x0, @fd=r4, 0x0, 0x0, 0x0, {0xa084}}, 0x20) r6 = mmap$IORING_OFF_SQES(&(0x7f0000ffd000/0x3000)=nil, 0x3000, 0x1000001, 0x40f0050, r1, 0x10000000) r7 = syz_open_dev$tty1(0xc, 0x4, 0x3) r8 = io_uring_register$IORING_REGISTER_PERSONALITY(0xffffffffffffffff, 0x9, 0x0, 0x0) syz_io_uring_submit(0x0, 0x0, &(0x7f0000000440)=@IORING_OP_FSYNC={0x3, 0x0, 0x0, @fd_index, 0x0, 0x0, 0x0, 0x0, 0x1, {0x0, r8}}, 0x0) syz_io_uring_submit(r5, r6, &(0x7f0000000180)=@IORING_OP_WRITE_FIXED={0x5, 0x2, 0x0, @fd=r7, 0xff, 0x9, 0xfe, 0x1d, 0x1, {0x3, r8}}, 0xcc9e) syz_io_uring_submit(0x0, 0x0, &(0x7f0000001d80)=@IORING_OP_POLL_REMOVE={0x7, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, {0x0, r8}}, 0xfffffff7) r9 = getpgid(0x0) clone3(&(0x7f0000000580)={0x80040300, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, &(0x7f0000000540)=[r9], 0x1}, 0x58) ioctl$BINDER_GET_FROZEN_INFO(r0, 0xc00c620f, &(0x7f0000001d40)={r9}) perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r10 = syz_open_procfs(0x0, &(0x7f0000000180)='net/netstat\x00') pread64(r10, &(0x7f00000001c0)=""/122, 0x7a, 0x0) 19:57:37 executing program 6: syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000140)='./file0\x00', 0x40000, 0x4, &(0x7f0000000200)=[{&(0x7f0000010000)="20000000000100000c000000d40000000f000000010000000000000000000000002000000020000020000000d7f4655fd7f4655f0100ffff53ef010001000000d7f4655f000000000000000001000000000000000b0000000002", 0x5a, 0x400}, {&(0x7f0000010400)="030000000400000005000000d4000f", 0xf, 0x800}, {&(0x7f0000000500)="ffffffffff070000000000000000000000000000000000000000000000000080ffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffff", 0x402, 0xc00}, {&(0x7f0000010e00)="ed41000000040000d7f4655fd7f4655fd7f4655f000000000000040002", 0x1d, 0x1600}], 0x0, &(0x7f00000003c0)=ANY=[]) chdir(&(0x7f0000000040)='./file0\x00') openat(0xffffffffffffff9c, &(0x7f0000000080)='./file1\x00', 0x105142, 0x0) r0 = openat(0xffffffffffffff9c, &(0x7f0000000200)='./file1\x00', 0x2, 0x0) write(r0, &(0x7f0000000240)="01", 0x1) r1 = openat(0xffffffffffffff9c, &(0x7f00000000c0)='./file2\x00', 0x105142, 0x0) r2 = openat(0xffffffffffffff9c, &(0x7f0000001340)='./file1\x00', 0x0, 0x0) copy_file_range(r2, 0x0, r1, &(0x7f0000000280)=0x1000c, 0xc3a, 0x0) openat$sr(0xffffffffffffff9c, 0x0, 0x0, 0x0) 19:57:37 executing program 1: openat(0xffffffffffffffff, 0x0, 0x0, 0x3a1) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x101}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r0 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$BATADV_CMD_GET_BLA_BACKBONE(r0, &(0x7f0000000100)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x4000}, 0xc, &(0x7f00000000c0)={&(0x7f0000000080)={0x34, 0x0, 0x8, 0x0, 0x25dfdbfd, {}, [@BATADV_ATTR_ISOLATION_MARK={0x8, 0x2b, 0x9}, @BATADV_ATTR_GW_BANDWIDTH_DOWN={0x8, 0x31, 0x6}, @BATADV_ATTR_AP_ISOLATION_ENABLED={0x5}, @BATADV_ATTR_MULTICAST_FORCEFLOOD_ENABLED={0x5}]}, 0x34}, 0x1, 0x0, 0x0, 0x40040}, 0x800) r1 = gettid() r2 = dup3(0xffffffffffffffff, 0xffffffffffffffff, 0x0) linkat(r2, &(0x7f0000000100)='./file0\x00', 0xffffffffffffffff, &(0x7f0000000140)='./file0/file0\x00', 0x1000) perf_event_open(&(0x7f0000000340)={0x1, 0x80, 0x0, 0x4, 0x51, 0xae, 0x0, 0x0, 0xb6, 0x0, 0x1, 0x1, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x1, 0x0, 0x1, 0x1, 0x1, 0x0, 0x0, 0x2, 0x0, 0x0, 0x1, 0x1, 0x0, 0x1, 0x1, 0x0, 0x1, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x1, 0x1, 0x1, 0x1, 0x0, 0x3, 0x0, @perf_bp={&(0x7f0000000300), 0x9}, 0x2010, 0x1, 0x2, 0x8, 0x8, 0x5, 0x8, 0x0, 0xfffffff7}, r1, 0xf, r2, 0x4) fsync(r0) r3 = pidfd_open(0x0, 0x0) ioctl$INCFS_IOC_CREATE_FILE(r3, 0xc058671e, &(0x7f0000000280)={{}, {0xffffffff}, 0x1a4, 0x0, 0x0, &(0x7f0000000140)='./file0\x00', &(0x7f0000000180)='./file0\x00', &(0x7f00000001c0)="ea83e625f4496350af6ca029df3c7d466154bb9b61f3c6833fd1087ab8382a5dbf007e4d5469df59446818eacbf592d8467fcc62ec5e9a608d3e6c87c5fab2dd64f398b757e64e675e0c8c810aab843e73e58f0c5e08d35efb88237adf4ffd8f2fa8a8df02c0116e867cef2ee6818b3e6b9722ded9660c6573669fa92993a71ee3cd1a45f985faa22a50acb653592d67a0cb78902cb748713704ffe95be0560f5f6c66f12b0d70edac62ead7171eec1aee1ac3b6b7a43a86d1fb4eb889719bbd", 0xc0, 0x0, &(0x7f0000000500)={0x2, 0x14d, {0x1, 0xc, 0x4a, "89e57fcd319056bdf50734b4160c83fc1611a5f733a8819bccade8a188f7799c025a4baf365bd08af28617322211495106f01938007b87298ce3e372f4d9fc84bec89c023ca102dedb8c", 0xf6, "62cb772d1c8cf92e3d5fbd924c4970b64d99ad50f17536c870eaea2d28747a4cbb75353529b2eb9282a08c9b0c414a2171956a472d221810c2fcd7bae9e1090c37f37a38c1eee46d2ea19294ddbb009495fad079eac4370590df1ba70578d6998b7c4d409d55abeaa37933b670e07677b89c63be9667b7035490f4f72a176342642bd743a47e088854847a76a924daecc5caf999718b697eb88bcf02779881f0df118cd997921bbb8df22e3a57c53c3f79ddd388b7a0d22096b77fa8fc8d2bfc83dc39020451de0a9ce57b4f9eedb24c8c966c9bb478dea7332a59c05a481062d3492ce1f5c939cbef68ae3cbf3b4e89cb37eefad121"}, 0xaf, "88d9c688621c385b07cf9271adf47eb565a381cff1686df87d0d857845fb1a60e3af6df5d0c8c5a0b7df30a7a34d16407d938d223098fc3c95bcef191d53acc642f16a9d7f2a2ce52d5c18516d226b7c60716977e3c91d8653994735d323e1aaf06d739b0e96f42af254fb4ec73e2d175ed5483391d16e6872d2fb1aa389b3464a30b79f3d35db29541d90fc76ed4d056bb29d817835c3e881d81066500287dbe6500d9ef18973d77bf572a179744b"}, 0x208}) sendmsg$nl_generic(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000480)={&(0x7f00000004c0)={0x28, 0x1d, 0xc21, 0x0, 0x0, {0x4, 0x0, 0x2}, [@nested={0x12, 0x11, 0x0, 0x1, [@generic="809801a7b0c7dba09475f251c743"]}]}, 0x28}}, 0x0) 19:57:37 executing program 0: syz_mount_image$ext4(&(0x7f0000000000)='ext3\x00', &(0x7f0000000100)='./file0\x00', 0x200, 0x8, &(0x7f0000000200)=[{&(0x7f0000010000)="200000000002000019000000700100000f000000000000000000000004000000000002000020000020000000d1f4655fd1f4655f0100ffff53ef010001000000d1f4655f000000000000000001000000000000000b0000000004000008000000d2c201001203", 0x66, 0x400}, {&(0x7f0000010100)="000000000000000000000000d0a9da48497c4915a7449265c083aec0010040", 0x1f, 0x4e0}, {&(0x7f0000000040)="0300000004", 0x5, 0x642}, {&(0x7f0000010400)="03000000040000000500000017000f000300040000000000000000000f008551", 0x20, 0x800}, {&(0x7f0000010e00)="ed41000000040000d1f4655fd1f4655fd1f4655f000000000000040020", 0x1d, 0x1800}, {&(0x7f0000011000)="8081000000180000d1f4655fd1f4655fd1f4655f00000000000001002000000010000800000000000af302000400000000000000000000000200000050000000020000000400000052", 0x49, 0x1c00}, {&(0x7f0000000380)="8081000000180000d1f4655fd1f4655fd1f4655f00000000000001002000000010000800000000000af3020004", 0x2d, 0x8}, {&(0x7f0000012700)="111fc0d901000000803a0900803a09000000000006", 0x15, 0x14000}], 0x0, &(0x7f0000013800)) 19:57:37 executing program 4: syz_80211_inject_frame(&(0x7f00000000c0)=@device_a={0x8, 0x2, 0x11, 0x1d}, &(0x7f0000000440)=ANY=[], 0x2f) [ 3157.595114] FAULT_INJECTION: forcing a failure. [ 3157.595114] name failslab, interval 1, probability 0, space 0, times 0 [ 3157.596813] CPU: 0 PID: 23703 Comm: syz-executor.2 Not tainted 5.10.207 #1 [ 3157.597825] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 3157.599010] Call Trace: [ 3157.599399] dump_stack+0x107/0x167 [ 3157.599940] should_fail.cold+0x5/0xa [ 3157.600507] ? create_object.isra.0+0x3a/0xa20 [ 3157.601174] should_failslab+0x5/0x20 [ 3157.601729] kmem_cache_alloc+0x5b/0x310 [ 3157.602333] create_object.isra.0+0x3a/0xa20 [ 3157.602970] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 3157.603696] kmem_cache_alloc_node+0x169/0x330 [ 3157.604386] __alloc_skb+0x6d/0x5b0 [ 3157.604925] __ip_append_data+0x2930/0x3310 [ 3157.605580] ? raw_destroy+0x30/0x30 [ 3157.606116] ? ip_finish_output+0x330/0x330 [ 3157.606741] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 3157.607429] ? ipv4_mtu+0x1ed/0x2c0 [ 3157.607577] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium [ 3157.607961] ? raw_destroy+0x30/0x30 [ 3157.607977] ip_append_data+0x114/0x1a0 [ 3157.608012] raw_sendmsg+0xaa6/0x29d0 [ 3157.611447] ? dst_output+0x170/0x170 [ 3157.611977] ? perf_trace_run_bpf_submit+0xf5/0x190 [ 3157.612728] ? perf_trace_lock+0x2bd/0x490 [ 3157.613353] ? SOFTIRQ_verbose+0x10/0x10 [ 3157.613947] ? __lockdep_reset_lock+0x180/0x180 [ 3157.614602] ? selinux_socket_post_create+0x7f0/0x7f0 [ 3157.615328] ? find_held_lock+0x2c/0x110 [ 3157.615940] ? trace_hardirqs_on+0x5b/0x180 [ 3157.616531] ? dst_output+0x170/0x170 [ 3157.617080] inet_sendmsg+0x11d/0x140 [ 3157.617606] ? inet_send_prepare+0x540/0x540 [ 3157.618259] __sock_sendmsg+0x13c/0x190 [ 3157.618829] ____sys_sendmsg+0x334/0x870 [ 3157.619415] ? sock_write_iter+0x3d0/0x3d0 [ 3157.620024] ? do_recvmmsg+0x6d0/0x6d0 [ 3157.620578] ? perf_trace_lock+0x2bd/0x490 [ 3157.621206] ? __lockdep_reset_lock+0x180/0x180 [ 3157.621887] ___sys_sendmsg+0xf3/0x170 [ 3157.622448] ? sendmsg_copy_msghdr+0x160/0x160 [ 3157.623113] ? lock_downgrade+0x6d0/0x6d0 [ 3157.623683] ? perf_trace_run_bpf_submit+0xf5/0x190 [ 3157.624405] ? __fget_files+0x296/0x4c0 [ 3157.624992] ? __fget_light+0xea/0x290 [ 3157.625576] __sys_sendmmsg+0x195/0x470 [ 3157.626156] ? __ia32_sys_sendmsg+0xb0/0xb0 [ 3157.626753] ? lock_downgrade+0x6d0/0x6d0 [ 3157.627377] ? __mutex_unlock_slowpath+0xe1/0x600 [ 3157.628074] ? wait_for_completion_io+0x270/0x270 [ 3157.628777] ? rcu_read_lock_any_held+0x75/0xa0 [ 3157.629451] ? vfs_write+0x354/0xa70 [ 3157.629985] ? fput_many+0x2f/0x1a0 [ 3157.630487] ? ksys_write+0x1a9/0x260 [ 3157.631037] ? __ia32_sys_read+0xb0/0xb0 [ 3157.631632] __x64_sys_sendmmsg+0x99/0x100 [ 3157.632243] do_syscall_64+0x33/0x40 [ 3157.632772] entry_SYSCALL_64_after_hwframe+0x62/0xc7 [ 3157.633513] RIP: 0033:0x7fac065c2b19 [ 3157.634044] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 3157.636611] RSP: 002b:00007fac03b38188 EFLAGS: 00000246 ORIG_RAX: 0000000000000133 [ 3157.637711] RAX: ffffffffffffffda RBX: 00007fac066d5f60 RCX: 00007fac065c2b19 [ 3157.638712] RDX: 0000000000000001 RSI: 0000000020002040 RDI: 0000000000000003 [ 3157.639720] RBP: 00007fac03b381d0 R08: 0000000000000000 R09: 0000000000000000 [ 3157.640717] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 3157.641722] R13: 00007ffe4d4b793f R14: 00007fac03b38300 R15: 0000000000022000 [ 3157.663787] EXT4-fs (loop0): couldn't mount as ext3 due to feature incompatibilities [ 3157.670021] EXT4-fs (loop6): mounted filesystem without journal. Opts: ,errors=continue [ 3157.689680] EXT4-fs (loop0): couldn't mount as ext3 due to feature incompatibilities [ 3157.753374] EXT4-fs (loop7): mounted filesystem without journal. Opts: ,errors=continue 19:57:37 executing program 0: r0 = socket$inet6_udp(0xa, 0x2, 0x0) sendmmsg$inet6(r0, &(0x7f00000027c0), 0x0, 0x0) r1 = openat$full(0xffffffffffffff9c, &(0x7f0000000000), 0x80000, 0x0) setsockopt$inet6_int(r1, 0x29, 0x43, &(0x7f0000000040)=0x8001, 0x4) [ 3157.768574] ext4 filesystem being mounted at /syzkaller-testdir380755908/syzkaller.ZH5hLb/354/file0 supports timestamps until 2038 (0x7fffffff) 19:57:37 executing program 6: syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000140)='./file0\x00', 0x40000, 0x4, &(0x7f0000000200)=[{&(0x7f0000010000)="20000000000100000c000000d40000000f000000010000000000000000000000002000000020000020000000d7f4655fd7f4655f0100ffff53ef010001000000d7f4655f000000000000000001000000000000000b0000000002", 0x5a, 0x400}, {&(0x7f0000010400)="030000000400000005000000d4000f", 0xf, 0x800}, {&(0x7f0000000500)="ffffffffff070000000000000000000000000000000000000000000000000080ffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffff", 0x402, 0xc00}, {&(0x7f0000010e00)="ed41000000040000d7f4655fd7f4655fd7f4655f000000000000040002", 0x1d, 0x1600}], 0x0, &(0x7f00000003c0)=ANY=[]) chdir(&(0x7f0000000040)='./file0\x00') openat(0xffffffffffffff9c, &(0x7f0000000080)='./file1\x00', 0x105142, 0x0) r0 = openat(0xffffffffffffff9c, &(0x7f0000000200)='./file1\x00', 0x2, 0x0) write(r0, &(0x7f0000000240)="01", 0x1) r1 = openat(0xffffffffffffff9c, &(0x7f00000000c0)='./file2\x00', 0x105142, 0x0) r2 = openat(0xffffffffffffff9c, &(0x7f0000001340)='./file1\x00', 0x0, 0x0) copy_file_range(r2, 0x0, r1, &(0x7f0000000280)=0x1000d, 0xc3a, 0x0) openat$sr(0xffffffffffffff9c, 0x0, 0x0, 0x0) 19:57:37 executing program 2: r0 = socket$inet_icmp_raw(0x2, 0x3, 0x1) r1 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a) ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000140)={'syz_tun\x00', 0x0}) perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) sendmmsg$inet(r0, &(0x7f0000002040)=[{{&(0x7f0000000380)={0x2, 0x0, @multicast1}, 0x10, &(0x7f0000001600)=[{&(0x7f00000003c0)="db9c", 0xffe7}], 0x1, &(0x7f0000001640)=ANY=[@ANYBLOB="14000000000000000000000007000000c4048f01000000001c000000000000000000000008000000", @ANYRES32=r2], 0x38}}], 0x1, 0x0) (fail_nth: 20) 19:57:37 executing program 3: sendmsg$nl_generic(0xffffffffffffffff, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000000)=ANY=[@ANYBLOB="cfeaffffffffffff00f4ff000000000007"], 0x14}}, 0x0) r0 = openat$tun(0xffffffffffffff9c, &(0x7f0000000700), 0x0, 0x0) ioctl$TUNSETQUEUE(r0, 0x400454ca, &(0x7f0000000000)={'veth0_vlan\x00'}) io_uring_setup(0x0, &(0x7f00000001c0)={0x0, 0x0, 0x21, 0x0, 0x163}) r1 = socket$inet(0x2, 0xa, 0x0) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) ioctl$TUNSETQUEUE(r0, 0x400454d9, &(0x7f0000000040)={'veth0_to_hsr\x00'}) ioctl$sock_inet_SIOCGIFNETMASK(r1, 0x8914, &(0x7f00000001c0)={'veth0_vlan\x00', {0x2, 0x0, @empty}}) [ 3157.919151] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium [ 3157.927890] FAULT_INJECTION: forcing a failure. [ 3157.927890] name failslab, interval 1, probability 0, space 0, times 0 [ 3157.929369] CPU: 0 PID: 23835 Comm: syz-executor.2 Not tainted 5.10.207 #1 [ 3157.930250] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 3157.931242] Call Trace: [ 3157.931584] dump_stack+0x107/0x167 [ 3157.932042] should_fail.cold+0x5/0xa [ 3157.932544] should_failslab+0x5/0x20 [ 3157.932999] __kmalloc_node_track_caller+0x74/0x3b0 [ 3157.933653] ? __ip_append_data+0x2930/0x3310 [ 3157.934225] __alloc_skb+0xb1/0x5b0 [ 3157.934694] __ip_append_data+0x2930/0x3310 [ 3157.935262] ? raw_destroy+0x30/0x30 [ 3157.935745] ? ip_finish_output+0x330/0x330 [ 3157.936259] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 3157.936888] ? ipv4_mtu+0x1ed/0x2c0 [ 3157.937339] ? raw_destroy+0x30/0x30 [ 3157.937811] ip_append_data+0x114/0x1a0 [ 3157.938330] raw_sendmsg+0xaa6/0x29d0 [ 3157.938825] ? dst_output+0x170/0x170 [ 3157.939298] ? perf_trace_run_bpf_submit+0xf5/0x190 [ 3157.939926] ? perf_trace_lock+0x2bd/0x490 [ 3157.940467] ? SOFTIRQ_verbose+0x10/0x10 [ 3157.940960] ? __lockdep_reset_lock+0x180/0x180 [ 3157.941561] ? selinux_socket_post_create+0x7f0/0x7f0 [ 3157.942185] ? find_held_lock+0x2c/0x110 [ 3157.942707] ? trace_hardirqs_on+0x5b/0x180 [ 3157.943237] ? dst_output+0x170/0x170 [ 3157.943708] inet_sendmsg+0x11d/0x140 [ 3157.944166] ? inet_send_prepare+0x540/0x540 [ 3157.944702] __sock_sendmsg+0x13c/0x190 [ 3157.945209] ____sys_sendmsg+0x334/0x870 [ 3157.945705] ? sock_write_iter+0x3d0/0x3d0 [ 3157.946208] ? do_recvmmsg+0x6d0/0x6d0 [ 3157.946668] ? perf_trace_lock+0x2bd/0x490 [ 3157.947184] ? __lockdep_reset_lock+0x180/0x180 [ 3157.947755] ___sys_sendmsg+0xf3/0x170 [ 3157.948219] ? sendmsg_copy_msghdr+0x160/0x160 [ 3157.948767] ? lock_downgrade+0x6d0/0x6d0 [ 3157.949281] ? perf_trace_run_bpf_submit+0xf5/0x190 [ 3157.949897] ? __fget_files+0x296/0x4c0 [ 3157.950384] ? __fget_light+0xea/0x290 [ 3157.950874] __sys_sendmmsg+0x195/0x470 [ 3157.951356] ? __ia32_sys_sendmsg+0xb0/0xb0 [ 3157.951896] ? lock_downgrade+0x6d0/0x6d0 [ 3157.952421] ? __mutex_unlock_slowpath+0xe1/0x600 [ 3157.953013] ? wait_for_completion_io+0x270/0x270 [ 3157.953604] ? rcu_read_lock_any_held+0x75/0xa0 [ 3157.954177] ? vfs_write+0x354/0xa70 [ 3157.954626] ? fput_many+0x2f/0x1a0 [ 3157.955059] ? ksys_write+0x1a9/0x260 [ 3157.955508] ? __ia32_sys_read+0xb0/0xb0 [ 3157.956040] __x64_sys_sendmmsg+0x99/0x100 [ 3157.956544] do_syscall_64+0x33/0x40 [ 3157.956981] entry_SYSCALL_64_after_hwframe+0x62/0xc7 [ 3157.957582] RIP: 0033:0x7fac065c2b19 [ 3157.958039] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 3157.960187] RSP: 002b:00007fac03b38188 EFLAGS: 00000246 ORIG_RAX: 0000000000000133 [ 3157.961127] RAX: ffffffffffffffda RBX: 00007fac066d5f60 RCX: 00007fac065c2b19 [ 3157.962024] RDX: 0000000000000001 RSI: 0000000020002040 RDI: 0000000000000003 [ 3157.962903] RBP: 00007fac03b381d0 R08: 0000000000000000 R09: 0000000000000000 [ 3157.963781] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 3157.964662] R13: 00007ffe4d4b793f R14: 00007fac03b38300 R15: 0000000000022000 [ 3157.977443] device veth0_vlan entered promiscuous mode [ 3157.985465] EXT4-fs (loop6): mounted filesystem without journal. Opts: ,errors=continue 19:57:37 executing program 4: syz_80211_inject_frame(&(0x7f00000000c0)=@device_a={0x8, 0x2, 0x11, 0x60}, &(0x7f0000000440)=ANY=[], 0x2f) [ 3158.052002] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium [ 3158.358347] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium 19:57:53 executing program 4: syz_80211_inject_frame(&(0x7f00000000c0), &(0x7f0000000440)=ANY=[], 0x2f) 19:57:53 executing program 7: timer_create(0xfffffffffffffffc, 0x0, &(0x7f0000000180)=0x0) timer_settime(0x0, 0x0, &(0x7f0000000080)={{0x77359400}, {0x0, 0x989680}}, 0x0) timer_gettime(0x0, &(0x7f0000000440)) timer_gettime(r0, &(0x7f0000000000)) 19:57:53 executing program 2: r0 = socket$inet_icmp_raw(0x2, 0x3, 0x1) r1 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a) ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000140)={'syz_tun\x00', 0x0}) perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) sendmmsg$inet(r0, &(0x7f0000002040)=[{{&(0x7f0000000380)={0x2, 0x0, @multicast1}, 0x10, &(0x7f0000001600)=[{&(0x7f00000003c0)="db9c", 0xffe7}], 0x1, &(0x7f0000001640)=ANY=[@ANYBLOB="14000000000000000000000007000000c4048f01000000001c000000000000000000000008000000", @ANYRES32=r2], 0x38}}], 0x1, 0x0) (fail_nth: 21) 19:57:53 executing program 5: r0 = perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) perf_event_open(&(0x7f0000000cc0)={0x3, 0x80, 0x5, 0x0, 0x8, 0x20, 0x0, 0x1, 0x0, 0x8, 0x1, 0x1, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x0, 0x0, 0x1, 0x0, 0x1, 0x1, 0x1, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x1, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x1, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x0, 0x1fcbff82, 0x0, @perf_config_ext={0x6, 0x10000}, 0x7000, 0x0, 0x7, 0x3, 0x3ca9, 0x1, 0xffc2, 0x0, 0x9}, 0xffffffffffffffff, 0xd, r0, 0x10) r1 = socket$netlink(0x10, 0x3, 0x0) sendmsg$nl_generic(r1, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000ac0)=ANY=[@ANYBLOB="34000000100001000600000000000000000000000500000000000000150000809be149f8326500000ad022cea3b5906ed71efbac71604114ae634a1d3f5b42332fdb1ddff6c996d594f336ad93897a4c7c7d052c951ff3b19a2ae8dfe7daae4433b91e5be24f079e43a9064d68a1d688cb564c5100107341e4376c1319a3cb91015718c602f3acaab637ceb7852dafdf71f385cfa97aa0b4888bc38b88bda6372e3668ad38b7f74f5579af15595a0c30cb611c48d698f5ab174fbc688112a84bc0f1ed5b30c723ba82fe7b97990c195cdd6e5a3ec6986122d762e9182637b26db43c04d57f6347516027"], 0x34}}, 0x0) ioctl$FS_IOC_FSSETXATTR(0xffffffffffffffff, 0x40086602, 0x0) ioctl$sock_SIOCGPGRP(0xffffffffffffffff, 0x8904, 0x0) r2 = syz_io_uring_setup(0x3167, &(0x7f0000000380)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, &(0x7f00000a0000)=nil, &(0x7f00000b0000)=nil, &(0x7f00000002c0)=0x0, &(0x7f0000000340)=0x0) r5 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2) r6 = dup2(r5, r5) r7 = io_uring_setup(0x3, &(0x7f00000008c0)={0x0, 0x0, 0x0, 0x3, 0x31f, 0x0, r2}) syz_io_uring_submit(r3, r4, &(0x7f0000000300)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r6, 0x80, &(0x7f00000001c0)=@sco}, 0x0) r8 = eventfd2(0x8, 0x0) ioctl$F2FS_IOC_DEFRAGMENT(r8, 0xc010f508, &(0x7f0000000040)={0x3, 0x2}) r9 = fsmount(r6, 0x0, 0x8) execveat(r9, &(0x7f0000000180)='./file0\x00', &(0x7f00000005c0)=[&(0x7f0000000400)='\x00', &(0x7f0000000bc0)='\x00\x80C\x107\xa64\xee\xbd*\xd4o\x8a?[\x98\xf29\xee\xc7\x90\x97\xaa\xc3\xc8Zq\xf3\x91\x04[S\\B2m=V\x89\x99\x96Q\xcaA\x18\xaf\xaf:\xf1\xab\x80\"\x7f\xb3\x18\xfe\xd7\xbd\xcd\xcdIf\xae\xb5\x87\xb8#\xe1\xbe\xec\xf0\t\xa1\xf7\xa7\xb1\x9d\xc7\xc2\xf0\x02\xaf\xc4\xd0@\xc2\x12\'\xb9\x9a\xea\x90e%\xe6\xd2E\x19E/\xc6\x17gB0Qim\x82u\x0fZ\xa9\x14\xf5\xc7X\xa9\x00\xb7\xaf\xcfouN\xbd\xb2\t^\xbe&~\xa7l\xfa\x036\x1c\"\x80\xfc/\x9b\x95\xf1!K\xc5{\xe7\xfdB[\xca\x87\x9bc\x98dg\x1a\xa1\xaa\xb4\x19\x7f\xa7\x90y\x9fq\xf5\x8a\xa9 \xa6\xdd\xf0+gb\xa6g\\\xec\tz\x06\xdf\x1a\x9c\xc9\xf7\xcc\x85\xb4G\xe9\xd3D\xf4\x8c\n\x17\xd5\x00\xf18\xb3T', &(0x7f0000000480)='\x00', &(0x7f00000004c0)='\x00', &(0x7f0000000500)='\x00', &(0x7f0000000540)='\x00', &(0x7f0000000a00)='\x009\x1c\xaf\x14\xe6\xeb\xe9\xf1\xccO@\xbd\xfc\xbdN\xfa\x93Z\x94\xfd\xc6]\xc3\x81g\x95\'\xb7\xf2\xe8\xbf\xd3\xf3\"\xf0Z\x93T\xa1\xc6\x10\x01\xba\xf0\x11\x01 \x94X\x7fQ\xa6\v\xfa\xc2\\$\xad\x96A\xd6\xdf|\x0e,c\xc4\x13\xfb\x91\xc5|{\xde\'xb\xcd\xb2\x177\x83\'\xdb\xf6y_\x10\x87\x01\xd4\xb1\x9b\xe4\xac\xf0D4\xe6v\x86\x02^bt\xbf!b\xd4k\x11\xf5Nj\x97P\b\xf2\xdd\r\xaa,g\xfc\x8f*\bq\x10wl\xe0\x02HG)\xa0\xb9%\x12\x9fx]\xf8Gz`\xfd\x00l\xe9<\xa5\xbd\x9f\x80\xa5\x0f\xd3\xf7\xc8\x98'], &(0x7f0000000840)=[&(0x7f0000000600)='[*\x00', &(0x7f0000000000)='\xff\xb1\xc2k\xc9\xbf1Q\x9e^\x9a\x9dOW\xa5\x0el\xd2~\xa7%\xa5 \rZ\x81l\xa6\x97\xc6\xb90S\x04\x9b\xcb', &(0x7f0000000680)='\x00', &(0x7f0000000940)=']\xadt\xe0\r\xa3\xd7\xe8\x91\x90\n\x03_\x85\xa9\'E\xae\"\xeb]DE\xa3w\x8b\x94\xf7Yf\x03\x00\xd2:-\xab7\xd0\xf6\x0e\x903U\xe1\xe2\x8cS*HC\x17\xa0}@\xf4.\x87]\xed\x1f\x1e\xe8;\xfd\xee$\x8f\xba\xa5@\"\x93\xf7yR\x95z\x95\xc4\x03{\x11\xbe\xb3e\xb8B\x13\xa3uh\xcf\x11\xc7{Y\x0fp\x031\xb1/b_mq\x96\xccc\xa7\xbb\xb4T\x00J\xd7\xb8\n\xd4\xd9B\xa9\xec\xc5\xb5\x0e\xf1Q\x03\xbcX\x8d\xb2\xf6^\xb9\xc8\xa5\xdc\xa5\xcb\xde\xd3\xd03\xcc\xbe\xed\x9b\xbd\xcbb\x91\x98\x80\xe1X(t\xda\xd3F\x02\xa9\xa0\x81\xce;{\xfa\xba\xa3,{\xe87\xf6\x0f\xf9M\xb5mz', &(0x7f0000000700)='\x00', &(0x7f0000000740)='\x00', &(0x7f0000000100)='!\x00', &(0x7f00000007c0)='\x00', &(0x7f0000000800)='\x00'], 0x1000) openat(r6, &(0x7f0000000240)='./file0\x00', 0x200, 0x2) r10 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x46e2, 0x0) r11 = dup2(r7, r6) openat(r11, &(0x7f00000000c0)='./file0\x00', 0x200040, 0x0) mmap$IORING_OFF_SQ_RING(&(0x7f0000ffd000/0x3000)=nil, 0x3000, 0xa, 0x13, r10, 0x0) 19:57:53 executing program 1: close_range(0xffffffffffffffff, 0xffffffffffffffff, 0x0) r0 = openat$procfs(0xffffffffffffff9c, 0x0, 0x0, 0x0) flock(0xffffffffffffffff, 0x0) r1 = syz_mount_image$iso9660(&(0x7f0000000240), &(0x7f0000000280)='./file0\x00', 0x3, 0x2, &(0x7f0000000540)=[{&(0x7f0000000340)="9c0784415f1a3adc3074a21282997bae8e384767a2f2a5f937582f3874598ab735ba6be04d0a6eeefd0bc0fa668be84b6dcea88848f1d96057841f8f95814d8903db0a6092744e4c83394a50937b3ff34109c66767125dcd914ac6373acb3774af2cbad9c72246595e810497121b1a6bde33a9e2225a7f235b42c10b0af739d83680764c10c29d3759a9231dba2870dd5d12acec19734e239314253d2d4c6471561bc32616a7a613f7d3ab9e80cfb2fecff9d0787ae21c94ec65977a41d409590c87e1ac794f343f8ccf8cac68bddbbfd8b72c12d1f929f26aa3e621e6d8bcc4c23eef43", 0xe4, 0x101}, {&(0x7f00000004c0)="211b57cb360d03331eb2f3cae6d6a40380fb904a4b8de37911ea3a5386137fb47285ccf3c2e7da55dce1b17a87add90a7c600d8e941cf95eadc621f8846f39ca5bbaf9f7408103536cb417ff4f93325c67d1c8893916f4", 0x57, 0x3}], 0x84040, &(0x7f00000016c0)=ANY=[@ANYBLOB="636865636b3d72656c617865642c63727566642c736273656374c1723d3078303030303130010000003030303030342c6e6f636f6d7072659e732c63727566742c646d6f64653d3078303030303030303030303030303030382c6673636f6e746578743d726f6f742c7375626a5f726f6c653d65787434002c6673757569643d04333765620000372d331e664b2d63536534633763652c7365636c6162656c2c000000000000000000000000000000292f3c4be32583b7b30d28920282e2246f6f837dd8f1147371e54e384fe90e69534dac3bc54ea2dca15d44cb738618588b36c1e054adf79861377b8b28fcc1ebd122c19f2848be9e890575dfe0a5a6"]) ioctl$BTRFS_IOC_RM_DEV(r0, 0x5000940b, &(0x7f0000000640)={{r1}, "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"}) seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x6, &(0x7f0000000000)={0x1, &(0x7f0000000180)=[{0x6, 0x0, 0x0, 0x7ffc0000}]}) r2 = syz_io_uring_setup(0x4d4f, &(0x7f00000002c0), &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200), &(0x7f0000000140)) r3 = syz_io_uring_setup(0x4f3, &(0x7f0000000300)={0x0, 0x9d80, 0x10, 0x3, 0x3af}, &(0x7f0000bff000/0x400000)=nil, &(0x7f0000cb6000/0x4000)=nil, &(0x7f0000000000), &(0x7f0000000180)) dup3(0xffffffffffffffff, r3, 0x0) io_uring_register$IORING_REGISTER_FILES_UPDATE(r2, 0x6, &(0x7f00000001c0)={0x1, 0x0, &(0x7f00000000c0)=[r1, r3]}, 0x2) sendmsg$NL80211_CMD_GET_WIPHY(0xffffffffffffffff, &(0x7f0000000100)={0x0, 0x0, 0x0}, 0x0) r4 = perf_event_open(&(0x7f0000001d80)={0x2, 0x80, 0x0, 0xfc, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) write$binfmt_elf32(r4, &(0x7f0000001e00)={{0x7f, 0x45, 0x4c, 0x46, 0xd1, 0xf2, 0x1, 0x4, 0x37c5, 0x3, 0x3, 0xc6, 0x5d, 0x38, 0x326, 0x5d, 0xfffc, 0x20, 0x2, 0x800, 0x7, 0x7fff}, [{0x6474e554, 0x4, 0x180, 0x1, 0x7, 0x401, 0x7ff, 0x5ba}, {0x4, 0x0, 0x3ff, 0x9, 0x3, 0x4, 0x0, 0x7ff}], "26f187e682d6ce10e88d558abfbb2bf6cc25ce8b6f2c32", ['\x00', '\x00', '\x00', '\x00', '\x00']}, 0x58f) poll(&(0x7f0000001680)=[{r0, 0x10}, {0xffffffffffffffff, 0x348}, {r2, 0x100}, {r4}, {r2, 0x622}], 0x5, 0x8) r5 = socket$inet6_tcp(0xa, 0x1, 0x0) getsockopt$inet6_int(r5, 0x29, 0x4, 0x0, &(0x7f0000000080)) ioctl$F2FS_IOC_RESIZE_FS(r5, 0x4008f510, &(0x7f0000001640)) ioctl$EVIOCSKEYCODE_V2(0xffffffffffffffff, 0x40284504, 0x0) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0x5, &(0x7f0000000440)=[{&(0x7f0000000040)="2000000080000000060000006a0000000f000000000000000100000001000000004000000040000020000000e0f4655fe0f4655f0100ffff53ef010001000000dff4655f000000000000000001000000000000000b0000000001", 0x5a, 0x400}, {0x0}, {0x0, 0x0, 0xffffffffdffffff8}, {&(0x7f0000010400)="020000000300000004", 0x9, 0x800}, {&(0x7f0000011600)="ed41000000080000dff46552e0f4655fe0f4655f000000000000040004", 0x1d, 0x2100}], 0x0, &(0x7f0000000140)={[{@noacl}]}) 19:57:53 executing program 6: syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000140)='./file0\x00', 0x40000, 0x4, &(0x7f0000000200)=[{&(0x7f0000010000)="20000000000100000c000000d40000000f000000010000000000000000000000002000000020000020000000d7f4655fd7f4655f0100ffff53ef010001000000d7f4655f000000000000000001000000000000000b0000000002", 0x5a, 0x400}, {&(0x7f0000010400)="030000000400000005000000d4000f", 0xf, 0x800}, {&(0x7f0000000500)="ffffffffff070000000000000000000000000000000000000000000000000080ffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffff", 0x402, 0xc00}, {&(0x7f0000010e00)="ed41000000040000d7f4655fd7f4655fd7f4655f000000000000040002", 0x1d, 0x1600}], 0x0, &(0x7f00000003c0)=ANY=[]) chdir(&(0x7f0000000040)='./file0\x00') openat(0xffffffffffffff9c, &(0x7f0000000080)='./file1\x00', 0x105142, 0x0) r0 = openat(0xffffffffffffff9c, &(0x7f0000000200)='./file1\x00', 0x2, 0x0) write(r0, &(0x7f0000000240)="01", 0x1) r1 = openat(0xffffffffffffff9c, &(0x7f00000000c0)='./file2\x00', 0x105142, 0x0) r2 = openat(0xffffffffffffff9c, &(0x7f0000001340)='./file1\x00', 0x0, 0x0) copy_file_range(r2, 0x0, r1, &(0x7f0000000280)=0x1000e, 0xc3a, 0x0) openat$sr(0xffffffffffffff9c, 0x0, 0x0, 0x0) 19:57:53 executing program 0: mount$9p_unix(&(0x7f00000002c0)='./file0\x00', &(0x7f0000000300)='./file0\x00', &(0x7f0000000340), 0x20004, &(0x7f0000000380)={'trans=unix,', {[{@cache_loose}, {@privport}, {@access_client}, {@dfltuid={'dfltuid', 0x3d, 0xffffffffffffffff}}], [{@uid_lt={'uid<', 0xffffffffffffffff}}, {@seclabel}]}}) fstat(0xffffffffffffffff, &(0x7f0000001040)={0x0, 0x0, 0x0, 0x0, 0x0}) newfstatat(0xffffffffffffff9c, &(0x7f0000001280)='./file0\x00', &(0x7f00000012c0), 0x1000) syz_mount_image$ext4(&(0x7f0000000d40)='ext4\x00', &(0x7f0000000d80)='./file0\x00', 0x0, 0x3, &(0x7f0000000fc0)=[{&(0x7f0000001e00)="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", 0x1000, 0x80000001}, {&(0x7f0000000dc0)="9ecfcaa554d36b4dffa2e1449a7aaf207c871a0406cb642c99a6db2104bf5d9498079b8d94f34c09d45fb7fe985f63007a974a8dbbd4076cad2bd1966cf38ba2091657129da7013ff4b1d9b6783819c8a1681544b0f814a405c337d5ffa3ddad383d", 0x62, 0x3}, {&(0x7f0000000e40)="5fbb53b1223cd57679bd578b7ba1cb33d466938582213db9e32e6eeebd53b5ac62fc5c23fbb65473b8", 0x29, 0x5}], 0x4a4, &(0x7f0000001180)={[{@delalloc}, {@data_writeback}], [{@func={'func', 0x3d, 'MMAP_CHECK'}}, {@fowner_eq={'fowner', 0x3d, r0}}]}) perf_event_open(&(0x7f0000001d80)={0x2, 0x80, 0x69, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r1 = syz_io_uring_setup(0x4d4f, &(0x7f00000002c0)={0x0, 0x0, 0x0, 0x0, 0x2}, &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200), &(0x7f0000000140)) io_uring_enter(r1, 0x58ab, 0x0, 0x0, 0x0, 0x0) socket$inet6_tcp(0xa, 0x1, 0x0) r2 = semget$private(0x0, 0x6, 0x0) semctl$IPC_RMID(r2, 0x0, 0x0) getresgid(&(0x7f00000010c0), &(0x7f0000001100)=0x0, &(0x7f0000001140)) semctl$IPC_SET(r2, 0x0, 0x1, &(0x7f0000001200)={{0x0, 0xee01, r3, 0xffffffffffffffff, 0x0, 0x4, 0x2}, 0x1f, 0x1, 0x0, 0x0, 0x0, 0x0, 0x7f}) getgroups(0x6, &(0x7f0000000400)=[0xee01, 0xee00, 0xee00, 0x0, 0xee01, 0xffffffffffffffff]) syz_mount_image$tmpfs(&(0x7f00000000c0), &(0x7f0000000180)='./file0\x00', 0x1, 0x8, &(0x7f0000000c80)=[{&(0x7f0000000240)="1bdf27ead74eefdc8995a4d7265efb731c5966f7fee7e89625337730914d9f290c7ba48e3e5b62f1f64199ffefc9aa5e087ecf5d61e970d2efeb6e87c2a2345b0c81487219028c41fc85b6e37bf65d51df1277a2f5bd2f526376e5fefa05c11b29556d8c5fc755b1e8949c", 0x6b, 0x6}, {&(0x7f0000000800)="8153cb5acd045e65432458663622866673bb33fa592f6a8bdca9f5a83da49ac8d275e90632155a78ee6a90a9f9c52f8bd1c7ea1d47f83a6aca4f9c2d2b9aa559fb694dfa849c9189eed2f56f7d95bf86794852a6d12879b8d131000ed8e2acb939580ee5dbe304b7c5df2f519417", 0x6e, 0x3f}, {&(0x7f00000001c0)="3d1aef1ee956633e2dd381f8950d0f254536390e237f864c1079c16685ef88db45efd5ff3c6bb34cc071db2a8bbda7489c9eb5887307112da089d56a9ce849", 0x3f, 0x3}, {&(0x7f0000000880)="e8e605efc772f0bfc6a5abf27352718f0df0bc88aac3302a9cc3238aea91a3676edcb29a3a3d1bca2b21a11797a9b5b664314f1d3e8cc3e79cd69b363d5910e01cc37d50a056c451d46ec104383b9022f17ab2c4da33a20a36c94941616d2e7707de37923c15614764d23e900d6f1ff09cc18b09953f51d9be6b25c38708721231ebbf93c8b609e26abb027e090596b630de5ef6b8a3d1ad52d86cca97a0c279f126f1270c66632d280b3eaa26e480586f780b8bcd22d6299f0eb0999c505ce6", 0xc0, 0x1}, {&(0x7f0000000940)="c49424cc89ada39393d729513d6b1870771ff372d03aa37a391c707c9e6c005ae1720628cf658470a9d170066e0d4cb372c31c3ef4e48cf03b330823e52723933d", 0x41, 0xbf8}, {&(0x7f00000009c0)="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", 0xfb, 0x4}, {&(0x7f0000000ac0)="336f943a7c1cf1d3bdd6bcc9c2aecef1302d92a7a3c7413fe38f981982bec681c374235124155db8abdec6155b43bfdec7fd46d53ff05f7a02b1fdb75573476eb2b70ebeda4396f0c7104be020f187307e7ebb7e5bf3087b136591f3dfe7f8f5d456ee41381dac2162a66b0f66362362e7c709cdc4e50120cbc1ba30a21fcc77bac2390b7ad86a8e7dce6de651b8d7f9a2b7e1e0298b02918a4fb6359430633ae5631da79e55f87dfe5176dec336e9d5c2bc4e2465d645f557bfbfbfe67e41e0c1c6ad1357a8db84239c587c0dd5a7c297209507", 0xd4, 0x7}, {&(0x7f0000000bc0)="ff0c9827dd5e5c13f0e5757279e588231236eacaf52b5541fa8e99d5fe3d4fcccdcb62167781531cc7a526147e6e801caa3011571f297433295f49a59f76506a93f313ec390aa1a4b19b16987be35ec8b489fe5d32821e5696574ce4c33d1c87978562b1cd2b7a6f09f17ee54407f3ec30c079586e9145f5ed95bee283562e95ccdc90291fb516fc3d8961c87494a69b3f", 0x91, 0x38}], 0x10b009, &(0x7f0000000e80)=ANY=[@ANYBLOB='nr_blocks=0\x00,huge=never,gid=', @ANYRESHEX=r3, @ANYBLOB=',huge=always,huge=advise,gid=', @ANYRESHEX=r4, @ANYBLOB="2c6e725f696e6f6465733d342c687567653d77697468696e5f73697a652c6769643d1ba30614122a47565954ee78b38adeb7cf4d1cc82a4a2bcd05e13287fa39c940d70af98ade059bc41eeb47885a095f9b5e45a9210195f7478e9d43537895724bedd76cef0063b3260ded597f1d5194ca3a7f8054c966099ba241e98492a69bd7907b3dad10bc", @ANYRESHEX, @ANYBLOB=',mpol=prefer=static,fowner=', @ANYRESDEC=0x0, @ANYBLOB=',dont_appraise,\x00']) r5 = ioctl$TUNGETDEVNETNS(0xffffffffffffffff, 0x54e3, 0x0) dup3(r5, 0xffffffffffffffff, 0x80000) fchown(r1, 0x0, 0x0) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) sendmsg$SOCK_DIAG_BY_FAMILY(0xffffffffffffffff, &(0x7f00000007c0)={&(0x7f00000004c0)={0x10, 0x0, 0x0, 0x100000}, 0xc, &(0x7f0000000780)={&(0x7f0000000500)={0x250, 0x14, 0x501, 0x70bd27, 0x25dfdbfd, {0x2a, 0x5}, [@INET_DIAG_REQ_BYTECODE={0x35, 0x1, "03e732a577a4af5e6f7744633ccafdbc67a014117e823ecb8812f8775ce750f8bcaee5eb2e5f7b32ac021962431454bffd"}, @INET_DIAG_REQ_BYTECODE={0x51, 0x1, "469cd4bd1c61f708b02af7e86f31f79ec1635bd48744b7d6796c9c9a39ee141f2461c0e2d7ef36600f25c65a8e8ef708fdbdc23b8d20eccb40e644d7c1a748b2832e1c4f9689b6cce9a3d742e1"}, @INET_DIAG_REQ_BYTECODE={0xef, 0x1, "ce3eca012fcf780eacc3ecb19acdb4f67073839e766400e156a508068207404359d85c744eb964c52f6067dfb9090bf36a87877bc36c80bbacd440b80706f098857e5be7e9001ae81390a5fcf49064d13ae8ccf968f93667a62228a80030d6ea1a3b6755c99e2fabf2c91aab939343ce79c6369ef97e9e13d8a65e8eaf8735b345eb3ecb4c74c97ee3f2eb9ea5a90f0858114f48ee9d0232fe1be7d4f84d2f2ecfa7c3a5a8eecdc66599dc07cc436131f4b17b53aea2f3bd4798bb8bab41ec74f06312b416113c1e94fd3b34fdfdf25baacd0c8d077c1b8f564069a7b0dc3588631355eb3622e95175d169"}, @INET_DIAG_REQ_BYTECODE={0x23, 0x1, "2e2c0a0e5bb491e505f4991db3f21cbd78863b4252a5d9fb0832402e539062"}, @INET_DIAG_REQ_BYTECODE={0x36, 0x1, "b6eb460bbe7da9243a79b9e06ce36e8c307bfd50ca7834550583b7476f0f53633539a5fa8744b70f658947a582333ab124ae"}, @INET_DIAG_REQ_BYTECODE={0x61, 0x1, "f87a2bbf105899dd33c8c7e386fb863a2c99a9cd2afaff6ff880080ae6714e9c987273cf068aa55d4ff2eb9129235f83a5140c1595c23ec71537d70926fab28d5797227fb91650901bbf6c89031666a91425c4324ed33543d4c47d6154"}]}, 0x250}, 0x1, 0x0, 0x0, 0x8000}, 0x1) syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0x4, &(0x7f0000000440)=[{&(0x7f0000000040)="2000000080000000060000006a0000000f000000000000000100000001000000004000000040000020000000e0f4655fe0f4655f0100ffff53ef010001000000dff4655f000000000000000001000000000000000b0000000001", 0x5a, 0x400}, {0x0, 0x0, 0xffffffffdffffff8}, {&(0x7f0000010400)="020000000300000004", 0x9, 0x800}, {&(0x7f0000011600)="ed41000000080000dff46552e0f4655fe0f4655f000000000000040004", 0x1d, 0x2100}], 0x0, &(0x7f0000000140)={[{@delalloc}]}) [ 3173.678018] FAULT_INJECTION: forcing a failure. [ 3173.678018] name failslab, interval 1, probability 0, space 0, times 0 [ 3173.680422] CPU: 1 PID: 23958 Comm: syz-executor.2 Not tainted 5.10.207 #1 [ 3173.681388] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium [ 3173.681809] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 3173.681816] Call Trace: [ 3173.681842] dump_stack+0x107/0x167 [ 3173.681873] should_fail.cold+0x5/0xa [ 3173.687496] ? create_object.isra.0+0x3a/0xa20 [ 3173.688423] should_failslab+0x5/0x20 [ 3173.689186] kmem_cache_alloc+0x5b/0x310 [ 3173.690016] create_object.isra.0+0x3a/0xa20 [ 3173.690894] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 3173.691915] __kmalloc_node_track_caller+0x1a6/0x3b0 [ 3173.692929] ? __ip_append_data+0x2930/0x3310 [ 3173.693845] __alloc_skb+0xb1/0x5b0 [ 3173.694306] netlink: 20 bytes leftover after parsing attributes in process `syz-executor.5'. [ 3173.694585] __ip_append_data+0x2930/0x3310 [ 3173.697289] ? raw_destroy+0x30/0x30 [ 3173.698068] ? ip_finish_output+0x330/0x330 [ 3173.698937] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 3173.699948] ? ipv4_mtu+0x1ed/0x2c0 [ 3173.700679] ? raw_destroy+0x30/0x30 [ 3173.701425] ip_append_data+0x114/0x1a0 [ 3173.702234] raw_sendmsg+0xaa6/0x29d0 [ 3173.703013] ? dst_output+0x170/0x170 [ 3173.703777] ? __lock_acquire+0x1657/0x5b00 [ 3173.704665] ? perf_trace_lock+0xac/0x490 [ 3173.705518] ? SOFTIRQ_verbose+0x10/0x10 [ 3173.706325] ? create_object.isra.0+0x3ad/0xa20 [ 3173.707251] ? __lockdep_reset_lock+0x180/0x180 [ 3173.708196] ? selinux_socket_post_create+0x7f0/0x7f0 [ 3173.709220] ? find_held_lock+0x2c/0x110 [ 3173.710074] ? trace_hardirqs_on+0x5b/0x180 [ 3173.710939] ? dst_output+0x170/0x170 [ 3173.711709] inet_sendmsg+0x11d/0x140 [ 3173.712471] ? inet_send_prepare+0x540/0x540 [ 3173.713370] __sock_sendmsg+0x13c/0x190 [ 3173.714187] ____sys_sendmsg+0x334/0x870 [ 3173.715023] ? sock_write_iter+0x3d0/0x3d0 [ 3173.715885] ? do_recvmmsg+0x6d0/0x6d0 [ 3173.716685] ? perf_trace_lock+0xac/0x490 [ 3173.717562] ? __lockdep_reset_lock+0x180/0x180 [ 3173.718519] ? perf_trace_lock+0xac/0x490 [ 3173.719376] ___sys_sendmsg+0xf3/0x170 [ 3173.720189] ? sendmsg_copy_msghdr+0x160/0x160 [ 3173.721143] ? lock_downgrade+0x6d0/0x6d0 [ 3173.722013] ? lock_downgrade+0x6d0/0x6d0 [ 3173.722870] ? __fget_files+0x296/0x4c0 [ 3173.723702] ? __fget_light+0xea/0x290 [ 3173.724513] __sys_sendmmsg+0x195/0x470 [ 3173.725361] ? __ia32_sys_sendmsg+0xb0/0xb0 [ 3173.726244] ? lock_downgrade+0x6d0/0x6d0 [ 3173.727125] ? __mutex_unlock_slowpath+0xe1/0x600 [ 3173.728126] ? wait_for_completion_io+0x270/0x270 [ 3173.729116] ? rcu_read_lock_any_held+0x75/0xa0 [ 3173.730068] ? vfs_write+0x354/0xa70 [ 3173.730842] ? fput_many+0x2f/0x1a0 [ 3173.731597] ? ksys_write+0x1a9/0x260 [ 3173.732383] ? __ia32_sys_read+0xb0/0xb0 [ 3173.733234] __x64_sys_sendmmsg+0x99/0x100 [ 3173.734118] do_syscall_64+0x33/0x40 [ 3173.734887] entry_SYSCALL_64_after_hwframe+0x62/0xc7 [ 3173.735938] RIP: 0033:0x7fac065c2b19 [ 3173.736702] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 3173.740551] RSP: 002b:00007fac03b38188 EFLAGS: 00000246 ORIG_RAX: 0000000000000133 [ 3173.742126] RAX: ffffffffffffffda RBX: 00007fac066d5f60 RCX: 00007fac065c2b19 [ 3173.743595] RDX: 0000000000000001 RSI: 0000000020002040 RDI: 0000000000000003 [ 3173.745054] RBP: 00007fac03b381d0 R08: 0000000000000000 R09: 0000000000000000 19:57:53 executing program 3: r0 = syz_io_uring_setup(0x1081, &(0x7f0000000280)={0x0, 0x0, 0x40, 0x0, 0xb7}, &(0x7f0000c23000/0x1000)=nil, &(0x7f0000800000/0x800000)=nil, &(0x7f0000000180), &(0x7f00000003c0)) io_uring_register$IORING_UNREGISTER_BUFFERS(r0, 0xb, 0x2, 0x2) fcntl$F_GET_RW_HINT(r0, 0x40b, &(0x7f0000000040)) r1 = socket$inet6_udp(0xa, 0x2, 0x0) connect$inet6(r1, &(0x7f0000000000)={0xa, 0x0, 0x0, @dev, 0x2}, 0x1c) pipe(0x0) setsockopt$inet6_opts(r1, 0x29, 0x37, &(0x7f0000000040)=ANY=[], 0x10) r2 = socket$inet6_icmp(0xa, 0x2, 0x3a) sendmsg$inet6(r2, &(0x7f0000000480)={&(0x7f00000000c0)={0xa, 0x4e21, 0x5, @private0, 0x6}, 0x1c, &(0x7f0000000440)=[{&(0x7f0000000100)="c41793d0167c015fd572038587637ed3142114c8cdb47b36ec63d8162d86c5de973575c0b9a594089ce01edb75b580dbd8e02e5a4126edfc3fb77420a96a37fa8faf6c381b1241486cac0e435bdcd7b3c04ba840c94f", 0x56}, {&(0x7f0000000300)="ca3f6facd2a087f9a3e3c354ed45217388bf6885cc3112c44a27b592f375ab559a9d6e8971f8da05307eab5dd6cca6066e527bdd146961733decc59a7aea4e9725775b9cf0d9e43d02e27e23c0a88e896ab39dc48ded0ca68a37a59bf7e6f2", 0x5f}, {&(0x7f0000001740)="b44b3026219a708e53b8a348731ff7833dd5ea5195c01ff53054961c20abc9c93033c385b92d186ed4ab586d0c9ee26f5ff91d6d20522c886cf254ecdb76dbea579ce0503984ee3a006397ad10050c7b5d19b1d0e2ca506110de6a164f55cdef06797bed710d92ee81b9f3061077f61992b1add8b2babdba4e04c3e877d15b31a7a4fdbb220f135d499f738e86650527f408a460ca1b86493e51654635e5f379ecff348569c0448887c623cd00b3b9cfc99dcd185341b37b5eb1cdd88673abba66eb0113ce91b85caed94be9d2477ca2a45178aa52be", 0xd6}], 0x3}, 0x20044000) r3 = syz_open_procfs(0xffffffffffffffff, &(0x7f0000000040)='numa_maps\x00') readv(r3, &(0x7f0000003700)=[{&(0x7f0000000200)=""/216, 0xd8}, {&(0x7f00000003c0)=""/121, 0x79}, {&(0x7f0000000380)=""/51, 0x33}, {&(0x7f00000014c0)=""/160, 0xa0}, {&(0x7f0000001640)=""/256, 0x100}, {0x0}, {&(0x7f00000015c0)=""/51, 0x33}, {&(0x7f00000001c0)=""/57, 0x39}], 0x8) readv(r3, &(0x7f0000001600)=[{&(0x7f00000004c0)=""/4096, 0x1000}], 0x1) open_by_handle_at(r3, &(0x7f0000000080)=@isofs_parent={0x14, 0x2, {0xff, 0x1, 0x0, 0x64, 0x2, 0x1000}}, 0x8400) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) sendmmsg$inet6(r1, &(0x7f0000004d00), 0x7ffff000, 0x811) [ 3173.746528] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 3173.748213] R13: 00007ffe4d4b793f R14: 00007fac03b38300 R15: 0000000000022000 [ 3173.815290] netlink: 20 bytes leftover after parsing attributes in process `syz-executor.5'. [ 3173.835349] audit: type=1326 audit(1705348673.783:185): auid=0 uid=0 gid=0 ses=4 subj=system_u:system_r:kernel_t:s0 pid=23953 comm="syz-executor.1" exe="/syz-executor.1" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe825704b19 code=0x7ffc0000 [ 3173.839958] audit: type=1326 audit(1705348673.784:186): auid=0 uid=0 gid=0 ses=4 subj=system_u:system_r:kernel_t:s0 pid=23953 comm="syz-executor.1" exe="/syz-executor.1" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe825704b19 code=0x7ffc0000 19:57:53 executing program 7: r0 = socket$nl_audit(0x10, 0x3, 0x9) mount(0x0, &(0x7f00000004c0)='./file0\x00', 0x0, 0x0, 0x0) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0xb51d, 0xed5}, 0x0, 0x0, 0x0, 0x8}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) mount(0x0, 0x0, 0x0, 0x300b4e2, 0x0) r1 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a) ioctl$sock_SIOCGIFINDEX(r1, 0x8914, &(0x7f0000000140)={'lo\x00'}) r2 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a) r3 = socket$inet6_udplite(0xa, 0x2, 0x88) r4 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a) ioctl$sock_SIOCGIFINDEX(r4, 0x8933, &(0x7f0000000140)={'lo\x00', 0x0}) ioctl$sock_inet6_SIOCSIFADDR(r3, 0x8916, &(0x7f0000000180)={@loopback, 0x0, r5}) socket$inet6_icmp_raw(0xa, 0x3, 0x3a) bind$inet6(0xffffffffffffffff, 0x0, 0x0) mkdirat(0xffffffffffffffff, &(0x7f0000000000)='./file0\x00', 0x80) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0xf7, 0x0, 0x0, 0x8, 0x0, 0x5e, 0x22920, 0xf, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, 0x0, @perf_bp={&(0x7f0000000040), 0x8}, 0x280, 0x0, 0x1004, 0x0, 0xfffffffffffffffe, 0x0, 0x6, 0x0, 0x22, 0x0, 0x3}, 0x0, 0xfffffffffffffffc, 0xffffffffffffffff, 0x1) ioctl$sock_SIOCGIFINDEX(r2, 0x8914, &(0x7f0000000140)={'lo\x00'}) syz_genetlink_get_family_id$nl80211(&(0x7f0000000100), 0xffffffffffffffff) sendmsg$NL80211_CMD_GET_COALESCE(0xffffffffffffffff, &(0x7f0000000340)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000380)=ANY=[@ANYBLOB="0515aa00", @ANYRES32=0x0, @ANYBLOB="6d6e09ca044e459fc78ca27728297fa689f9108b9e5a3e210d9015b24011d6cc3f97cd895030adcb9295ad"], 0x1c}}, 0x0) ioctl$sock_SIOCSPGRP(0xffffffffffffffff, 0x8902, &(0x7f0000000080)) sendmsg$AUDIT_USER(r0, &(0x7f0000000e40)={0x0, 0x0, &(0x7f0000000e00)={&(0x7f00000003c0)=ANY=[@ANYBLOB="10000000ed030000000000cef3ef99138e4f51a6968ee8602289e5344855961c01ad0a57d2b150f4b468c86a34b574143a8f9596f84e9d1dadcee4725f84ba75558a0d67c8e8b1972ce1128b3b5f0b5b8d99e1330a5fcffd3ec62c3197a898f4715c00000000009cccebb7af1f75b902aa3247a4578979b2a5c8ccd4b33cb7fd42ccebc2634c66cca3cdd9e1c554601e6ba95947cbf93fe402f2d8c68983a0ba017f6b8b946d283f425ecf18aa35b02f8a20c1b64251c281f0cedfa9729ce39d56a66264c1298db07823eeb900bf22bc0423ddab7223bae0c87e2ca1bc2ba9dad81f0d3aea5b"], 0x10}}, 0x0) [ 3173.865918] EXT4-fs (loop6): mounted filesystem without journal. Opts: ,errors=continue [ 3173.870231] audit: type=1326 audit(1705348673.819:187): auid=0 uid=0 gid=0 ses=4 subj=system_u:system_r:kernel_t:s0 pid=23953 comm="syz-executor.1" exe="/syz-executor.1" sig=0 arch=c000003e syscall=436 compat=0 ip=0x7fe825704b19 code=0x7ffc0000 [ 3173.875111] audit: type=1326 audit(1705348673.819:188): auid=0 uid=0 gid=0 ses=4 subj=system_u:system_r:kernel_t:s0 pid=23953 comm="syz-executor.1" exe="/syz-executor.1" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe825704b19 code=0x7ffc0000 [ 3173.880520] audit: type=1326 audit(1705348673.819:189): auid=0 uid=0 gid=0 ses=4 subj=system_u:system_r:kernel_t:s0 pid=23953 comm="syz-executor.1" exe="/syz-executor.1" sig=0 arch=c000003e syscall=257 compat=0 ip=0x7fe825704b19 code=0x7ffc0000 [ 3173.885335] audit: type=1326 audit(1705348673.819:190): auid=0 uid=0 gid=0 ses=4 subj=system_u:system_r:kernel_t:s0 pid=23953 comm="syz-executor.1" exe="/syz-executor.1" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe825704b19 code=0x7ffc0000 [ 3173.898329] audit: type=1326 audit(1705348673.820:191): auid=0 uid=0 gid=0 ses=4 subj=system_u:system_r:kernel_t:s0 pid=23953 comm="syz-executor.1" exe="/syz-executor.1" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe825704b19 code=0x7ffc0000 [ 3173.903837] audit: type=1326 audit(1705348673.827:192): auid=0 uid=0 gid=0 ses=4 subj=system_u:system_r:kernel_t:s0 pid=23953 comm="syz-executor.1" exe="/syz-executor.1" sig=0 arch=c000003e syscall=319 compat=0 ip=0x7fe825704b19 code=0x7ffc0000 [ 3173.910953] audit: type=1326 audit(1705348673.827:193): auid=0 uid=0 gid=0 ses=4 subj=system_u:system_r:kernel_t:s0 pid=23953 comm="syz-executor.1" exe="/syz-executor.1" sig=0 arch=c000003e syscall=77 compat=0 ip=0x7fe825704ad7 code=0x7ffc0000 [ 3173.917486] audit: type=1326 audit(1705348673.827:194): auid=0 uid=0 gid=0 ses=4 subj=system_u:system_r:kernel_t:s0 pid=23953 comm="syz-executor.1" exe="/syz-executor.1" sig=0 arch=c000003e syscall=18 compat=0 ip=0x7fe8256b7ab7 code=0x7ffc0000 19:57:53 executing program 0: mount$9p_unix(&(0x7f00000002c0)='./file0\x00', &(0x7f0000000300)='./file0\x00', &(0x7f0000000340), 0x20004, &(0x7f0000000380)={'trans=unix,', {[{@cache_loose}, {@privport}, {@access_client}, {@dfltuid={'dfltuid', 0x3d, 0xffffffffffffffff}}], [{@uid_lt={'uid<', 0xffffffffffffffff}}, {@seclabel}]}}) fstat(0xffffffffffffffff, &(0x7f0000001040)={0x0, 0x0, 0x0, 0x0, 0x0}) newfstatat(0xffffffffffffff9c, &(0x7f0000001280)='./file0\x00', &(0x7f00000012c0), 0x1000) syz_mount_image$ext4(&(0x7f0000000d40)='ext4\x00', &(0x7f0000000d80)='./file0\x00', 0x0, 0x3, &(0x7f0000000fc0)=[{&(0x7f0000001e00)="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", 0x1000, 0x80000001}, {&(0x7f0000000dc0)="9ecfcaa554d36b4dffa2e1449a7aaf207c871a0406cb642c99a6db2104bf5d9498079b8d94f34c09d45fb7fe985f63007a974a8dbbd4076cad2bd1966cf38ba2091657129da7013ff4b1d9b6783819c8a1681544b0f814a405c337d5ffa3ddad383d", 0x62, 0x3}, {&(0x7f0000000e40)="5fbb53b1223cd57679bd578b7ba1cb33d466938582213db9e32e6eeebd53b5ac62fc5c23fbb65473b8", 0x29, 0x5}], 0x4a4, &(0x7f0000001180)={[{@delalloc}, {@data_writeback}], [{@func={'func', 0x3d, 'MMAP_CHECK'}}, {@fowner_eq={'fowner', 0x3d, r0}}]}) perf_event_open(&(0x7f0000001d80)={0x2, 0x80, 0x69, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r1 = syz_io_uring_setup(0x4d4f, &(0x7f00000002c0)={0x0, 0x0, 0x0, 0x0, 0x2}, &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200), &(0x7f0000000140)) io_uring_enter(r1, 0x58ab, 0x0, 0x0, 0x0, 0x0) socket$inet6_tcp(0xa, 0x1, 0x0) r2 = semget$private(0x0, 0x6, 0x0) semctl$IPC_RMID(r2, 0x0, 0x0) getresgid(&(0x7f00000010c0), &(0x7f0000001100)=0x0, &(0x7f0000001140)) semctl$IPC_SET(r2, 0x0, 0x1, &(0x7f0000001200)={{0x0, 0xee01, r3, 0xffffffffffffffff, 0x0, 0x4, 0x2}, 0x1f, 0x1, 0x0, 0x0, 0x0, 0x0, 0x7f}) getgroups(0x6, &(0x7f0000000400)=[0xee01, 0xee00, 0xee00, 0x0, 0xee01, 0xffffffffffffffff]) syz_mount_image$tmpfs(&(0x7f00000000c0), &(0x7f0000000180)='./file0\x00', 0x1, 0x8, &(0x7f0000000c80)=[{&(0x7f0000000240)="1bdf27ead74eefdc8995a4d7265efb731c5966f7fee7e89625337730914d9f290c7ba48e3e5b62f1f64199ffefc9aa5e087ecf5d61e970d2efeb6e87c2a2345b0c81487219028c41fc85b6e37bf65d51df1277a2f5bd2f526376e5fefa05c11b29556d8c5fc755b1e8949c", 0x6b, 0x6}, {&(0x7f0000000800)="8153cb5acd045e65432458663622866673bb33fa592f6a8bdca9f5a83da49ac8d275e90632155a78ee6a90a9f9c52f8bd1c7ea1d47f83a6aca4f9c2d2b9aa559fb694dfa849c9189eed2f56f7d95bf86794852a6d12879b8d131000ed8e2acb939580ee5dbe304b7c5df2f519417", 0x6e, 0x3f}, {&(0x7f00000001c0)="3d1aef1ee956633e2dd381f8950d0f254536390e237f864c1079c16685ef88db45efd5ff3c6bb34cc071db2a8bbda7489c9eb5887307112da089d56a9ce849", 0x3f, 0x3}, {&(0x7f0000000880)="e8e605efc772f0bfc6a5abf27352718f0df0bc88aac3302a9cc3238aea91a3676edcb29a3a3d1bca2b21a11797a9b5b664314f1d3e8cc3e79cd69b363d5910e01cc37d50a056c451d46ec104383b9022f17ab2c4da33a20a36c94941616d2e7707de37923c15614764d23e900d6f1ff09cc18b09953f51d9be6b25c38708721231ebbf93c8b609e26abb027e090596b630de5ef6b8a3d1ad52d86cca97a0c279f126f1270c66632d280b3eaa26e480586f780b8bcd22d6299f0eb0999c505ce6", 0xc0, 0x1}, {&(0x7f0000000940)="c49424cc89ada39393d729513d6b1870771ff372d03aa37a391c707c9e6c005ae1720628cf658470a9d170066e0d4cb372c31c3ef4e48cf03b330823e52723933d", 0x41, 0xbf8}, {&(0x7f00000009c0)="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", 0xfb, 0x4}, {&(0x7f0000000ac0)="336f943a7c1cf1d3bdd6bcc9c2aecef1302d92a7a3c7413fe38f981982bec681c374235124155db8abdec6155b43bfdec7fd46d53ff05f7a02b1fdb75573476eb2b70ebeda4396f0c7104be020f187307e7ebb7e5bf3087b136591f3dfe7f8f5d456ee41381dac2162a66b0f66362362e7c709cdc4e50120cbc1ba30a21fcc77bac2390b7ad86a8e7dce6de651b8d7f9a2b7e1e0298b02918a4fb6359430633ae5631da79e55f87dfe5176dec336e9d5c2bc4e2465d645f557bfbfbfe67e41e0c1c6ad1357a8db84239c587c0dd5a7c297209507", 0xd4, 0x7}, {&(0x7f0000000bc0)="ff0c9827dd5e5c13f0e5757279e588231236eacaf52b5541fa8e99d5fe3d4fcccdcb62167781531cc7a526147e6e801caa3011571f297433295f49a59f76506a93f313ec390aa1a4b19b16987be35ec8b489fe5d32821e5696574ce4c33d1c87978562b1cd2b7a6f09f17ee54407f3ec30c079586e9145f5ed95bee283562e95ccdc90291fb516fc3d8961c87494a69b3f", 0x91, 0x38}], 0x10b009, &(0x7f0000000e80)=ANY=[@ANYBLOB='nr_blocks=0\x00,huge=never,gid=', @ANYRESHEX=r3, @ANYBLOB=',huge=always,huge=advise,gid=', @ANYRESHEX=r4, @ANYBLOB="2c6e725f696e6f6465733d342c687567653d77697468696e5f73697a652c6769643d1ba30614122a47565954ee78b38adeb7cf4d1cc82a4a2bcd05e13287fa39c940d70af98ade059bc41eeb47885a095f9b5e45a9210195f7478e9d43537895724bedd76cef0063b3260ded597f1d5194ca3a7f8054c966099ba241e98492a69bd7907b3dad10bc", @ANYRESHEX, @ANYBLOB=',mpol=prefer=static,fowner=', @ANYRESDEC=0x0, @ANYBLOB=',dont_appraise,\x00']) r5 = ioctl$TUNGETDEVNETNS(0xffffffffffffffff, 0x54e3, 0x0) dup3(r5, 0xffffffffffffffff, 0x80000) fchown(r1, 0x0, 0x0) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) sendmsg$SOCK_DIAG_BY_FAMILY(0xffffffffffffffff, &(0x7f00000007c0)={&(0x7f00000004c0)={0x10, 0x0, 0x0, 0x100000}, 0xc, &(0x7f0000000780)={&(0x7f0000000500)={0x250, 0x14, 0x501, 0x70bd27, 0x25dfdbfd, {0x2a, 0x5}, [@INET_DIAG_REQ_BYTECODE={0x35, 0x1, "03e732a577a4af5e6f7744633ccafdbc67a014117e823ecb8812f8775ce750f8bcaee5eb2e5f7b32ac021962431454bffd"}, @INET_DIAG_REQ_BYTECODE={0x51, 0x1, "469cd4bd1c61f708b02af7e86f31f79ec1635bd48744b7d6796c9c9a39ee141f2461c0e2d7ef36600f25c65a8e8ef708fdbdc23b8d20eccb40e644d7c1a748b2832e1c4f9689b6cce9a3d742e1"}, @INET_DIAG_REQ_BYTECODE={0xef, 0x1, "ce3eca012fcf780eacc3ecb19acdb4f67073839e766400e156a508068207404359d85c744eb964c52f6067dfb9090bf36a87877bc36c80bbacd440b80706f098857e5be7e9001ae81390a5fcf49064d13ae8ccf968f93667a62228a80030d6ea1a3b6755c99e2fabf2c91aab939343ce79c6369ef97e9e13d8a65e8eaf8735b345eb3ecb4c74c97ee3f2eb9ea5a90f0858114f48ee9d0232fe1be7d4f84d2f2ecfa7c3a5a8eecdc66599dc07cc436131f4b17b53aea2f3bd4798bb8bab41ec74f06312b416113c1e94fd3b34fdfdf25baacd0c8d077c1b8f564069a7b0dc3588631355eb3622e95175d169"}, @INET_DIAG_REQ_BYTECODE={0x23, 0x1, "2e2c0a0e5bb491e505f4991db3f21cbd78863b4252a5d9fb0832402e539062"}, @INET_DIAG_REQ_BYTECODE={0x36, 0x1, "b6eb460bbe7da9243a79b9e06ce36e8c307bfd50ca7834550583b7476f0f53633539a5fa8744b70f658947a582333ab124ae"}, @INET_DIAG_REQ_BYTECODE={0x61, 0x1, "f87a2bbf105899dd33c8c7e386fb863a2c99a9cd2afaff6ff880080ae6714e9c987273cf068aa55d4ff2eb9129235f83a5140c1595c23ec71537d70926fab28d5797227fb91650901bbf6c89031666a91425c4324ed33543d4c47d6154"}]}, 0x250}, 0x1, 0x0, 0x0, 0x8000}, 0x1) syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0x4, &(0x7f0000000440)=[{&(0x7f0000000040)="2000000080000000060000006a0000000f000000000000000100000001000000004000000040000020000000e0f4655fe0f4655f0100ffff53ef010001000000dff4655f000000000000000001000000000000000b0000000001", 0x5a, 0x400}, {0x0, 0x0, 0xffffffffdffffff8}, {&(0x7f0000010400)="020000000300000004", 0x9, 0x800}, {&(0x7f0000011600)="ed41000000080000dff46552e0f4655fe0f4655f000000000000040004", 0x1d, 0x2100}], 0x0, &(0x7f0000000140)={[{@delalloc}]}) [ 3174.003203] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium 19:57:53 executing program 2: r0 = socket$inet_icmp_raw(0x2, 0x3, 0x1) r1 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a) ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000140)={'syz_tun\x00', 0x0}) perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) sendmmsg$inet(r0, &(0x7f0000002040)=[{{&(0x7f0000000380)={0x2, 0x0, @multicast1}, 0x10, &(0x7f0000001600)=[{&(0x7f00000003c0)="db9c", 0xffe7}], 0x1, &(0x7f0000001640)=ANY=[@ANYBLOB="14000000000000000000000007000000c4048f01000000001c000000000000000000000008000000", @ANYRES32=r2], 0x38}}], 0x1, 0x0) (fail_nth: 22) 19:57:53 executing program 6: syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000140)='./file0\x00', 0x40000, 0x4, &(0x7f0000000200)=[{&(0x7f0000010000)="20000000000100000c000000d40000000f000000010000000000000000000000002000000020000020000000d7f4655fd7f4655f0100ffff53ef010001000000d7f4655f000000000000000001000000000000000b0000000002", 0x5a, 0x400}, {&(0x7f0000010400)="030000000400000005000000d4000f", 0xf, 0x800}, {&(0x7f0000000500)="ffffffffff070000000000000000000000000000000000000000000000000080ffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffff", 0x402, 0xc00}, {&(0x7f0000010e00)="ed41000000040000d7f4655fd7f4655fd7f4655f000000000000040002", 0x1d, 0x1600}], 0x0, &(0x7f00000003c0)=ANY=[]) chdir(&(0x7f0000000040)='./file0\x00') openat(0xffffffffffffff9c, &(0x7f0000000080)='./file1\x00', 0x105142, 0x0) r0 = openat(0xffffffffffffff9c, &(0x7f0000000200)='./file1\x00', 0x2, 0x0) write(r0, &(0x7f0000000240)="01", 0x1) r1 = openat(0xffffffffffffff9c, &(0x7f00000000c0)='./file2\x00', 0x105142, 0x0) r2 = openat(0xffffffffffffff9c, &(0x7f0000001340)='./file1\x00', 0x0, 0x0) copy_file_range(r2, 0x0, r1, &(0x7f0000000280)=0x10010, 0xc3a, 0x0) openat$sr(0xffffffffffffff9c, 0x0, 0x0, 0x0) 19:57:54 executing program 4: syz_80211_inject_frame(&(0x7f00000000c0)=@device_a={0x8, 0x2, 0x11, 0x0, 0x2}, &(0x7f0000000440)=ANY=[], 0x2f) [ 3174.144539] FAULT_INJECTION: forcing a failure. [ 3174.144539] name failslab, interval 1, probability 0, space 0, times 0 [ 3174.146942] CPU: 1 PID: 24093 Comm: syz-executor.2 Not tainted 5.10.207 #1 [ 3174.148374] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 3174.150042] Call Trace: [ 3174.150603] dump_stack+0x107/0x167 [ 3174.151341] should_fail.cold+0x5/0xa [ 3174.152144] ? __alloc_skb+0x6d/0x5b0 [ 3174.152914] should_failslab+0x5/0x20 [ 3174.153711] kmem_cache_alloc_node+0x55/0x330 [ 3174.154618] __alloc_skb+0x6d/0x5b0 [ 3174.155379] __ip_append_data+0x2930/0x3310 [ 3174.156283] ? raw_destroy+0x30/0x30 [ 3174.157062] ? ip_finish_output+0x330/0x330 [ 3174.157952] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 3174.158985] ? ipv4_mtu+0x1ed/0x2c0 [ 3174.159735] ? raw_destroy+0x30/0x30 [ 3174.160495] ip_append_data+0x114/0x1a0 [ 3174.161323] raw_sendmsg+0xaa6/0x29d0 [ 3174.162145] ? dst_output+0x170/0x170 [ 3174.162925] ? __lock_acquire+0x1657/0x5b00 [ 3174.163832] ? perf_trace_lock+0xac/0x490 [ 3174.164677] ? SOFTIRQ_verbose+0x10/0x10 [ 3174.165516] ? create_object.isra.0+0x3ad/0xa20 [ 3174.166469] ? __lockdep_reset_lock+0x180/0x180 [ 3174.167437] ? selinux_socket_post_create+0x7f0/0x7f0 [ 3174.168486] ? find_held_lock+0x2c/0x110 [ 3174.169340] ? trace_hardirqs_on+0x5b/0x180 [ 3174.170273] ? dst_output+0x170/0x170 [ 3174.171058] inet_sendmsg+0x11d/0x140 [ 3174.171837] ? inet_send_prepare+0x540/0x540 [ 3174.172736] __sock_sendmsg+0x13c/0x190 [ 3174.173559] ____sys_sendmsg+0x334/0x870 [ 3174.174396] ? sock_write_iter+0x3d0/0x3d0 [ 3174.175257] ? do_recvmmsg+0x6d0/0x6d0 [ 3174.176053] ? perf_trace_lock+0xac/0x490 [ 3174.176911] ? __lockdep_reset_lock+0x180/0x180 [ 3174.177868] ? perf_trace_lock+0xac/0x490 [ 3174.178722] ___sys_sendmsg+0xf3/0x170 [ 3174.179523] ? sendmsg_copy_msghdr+0x160/0x160 [ 3174.180475] ? lock_downgrade+0x6d0/0x6d0 [ 3174.181336] ? lock_downgrade+0x6d0/0x6d0 [ 3174.182217] ? __fget_files+0x296/0x4c0 [ 3174.183051] ? __fget_light+0xea/0x290 [ 3174.183866] __sys_sendmmsg+0x195/0x470 [ 3174.184685] ? __ia32_sys_sendmsg+0xb0/0xb0 [ 3174.185586] ? lock_downgrade+0x6d0/0x6d0 [ 3174.186467] ? __mutex_unlock_slowpath+0xe1/0x600 [ 3174.187460] ? wait_for_completion_io+0x270/0x270 [ 3174.188452] ? rcu_read_lock_any_held+0x75/0xa0 [ 3174.189410] ? vfs_write+0x354/0xa70 [ 3174.190176] ? fput_many+0x2f/0x1a0 [ 3174.190923] ? ksys_write+0x1a9/0x260 [ 3174.191701] ? __ia32_sys_read+0xb0/0xb0 [ 3174.192542] __x64_sys_sendmmsg+0x99/0x100 [ 3174.193430] do_syscall_64+0x33/0x40 [ 3174.194195] entry_SYSCALL_64_after_hwframe+0x62/0xc7 [ 3174.195245] RIP: 0033:0x7fac065c2b19 [ 3174.196043] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 3174.199782] RSP: 002b:00007fac03b38188 EFLAGS: 00000246 ORIG_RAX: 0000000000000133 [ 3174.201328] RAX: ffffffffffffffda RBX: 00007fac066d5f60 RCX: 00007fac065c2b19 [ 3174.202787] RDX: 0000000000000001 RSI: 0000000020002040 RDI: 0000000000000003 [ 3174.204244] RBP: 00007fac03b381d0 R08: 0000000000000000 R09: 0000000000000000 [ 3174.205713] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 3174.207162] R13: 00007ffe4d4b793f R14: 00007fac03b38300 R15: 0000000000022000 19:57:54 executing program 1: perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) syz_mount_image$vfat(0x0, &(0x7f0000000240)='./file1\x00', 0x0, 0x0, 0x0, 0x0, 0x0) r0 = openat$zero(0xffffffffffffff9c, &(0x7f0000000000), 0x161001, 0x0) getdents64(r0, &(0x7f0000001400)=""/53, 0x35) fsconfig$FSCONFIG_CMD_RECONFIGURE(0xffffffffffffffff, 0x7, 0x0, 0x0, 0x0) clone3(&(0x7f00000008c0)={0x1040100, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) r1 = syz_open_procfs(0x0, &(0x7f0000001080)='mountinfo\x00') pread64(r1, &(0x7f0000000080)=""/4095, 0xfff, 0x5b) r2 = fcntl$getown(r1, 0x9) mount$9p_fd(0x0, &(0x7f0000000040)='./file1\x00', &(0x7f00000000c0), 0x0, &(0x7f0000001280)={'trans=fd,', {}, 0x2c, {}, 0x2c, {[{@cache_mmap}, {@cache_none}], [{@smackfsdef={'smackfsdef', 0x3d, 'mountinfo\x00'}}, {@euid_eq}]}}) openat$vcsu(0xffffffffffffff9c, &(0x7f0000000240), 0x141043, 0x0) r3 = syz_open_procfs(0x0, &(0x7f0000001080)='mountinfo\x00') pread64(r3, &(0x7f0000000080)=""/4095, 0xfff, 0x5b) openat(r0, &(0x7f00000011c0)='./file1\x00', 0x2a040, 0x2) ioctl$FIGETBSZ(0xffffffffffffffff, 0x2, &(0x7f0000001240)) r4 = dup2(0xffffffffffffffff, r0) perf_event_open(&(0x7f0000001100)={0x2, 0x80, 0x6, 0x1, 0x9, 0x3, 0x0, 0x4, 0x4000, 0xc, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x0, 0x1, 0x0, 0x0, 0x2, 0x1, 0x1, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x1, 0x1, 0x1, 0x0, 0x0, 0x1, 0x1, 0x0, 0x0, 0x200, 0x0, @perf_bp={&(0x7f00000010c0), 0x1}, 0x1031a, 0x1, 0x401, 0x9, 0x4, 0x200, 0x3, 0x0, 0x7, 0x0, 0x4}, r2, 0x8, r4, 0x2) sendmsg$nl_generic(0xffffffffffffffff, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000140)=ANY=[@ANYBLOB="400300001400010000000200040000000a00000008000000", @ANYBLOB="00f700"], 0x340}}, 0x0) fsconfig$FSCONFIG_CMD_CREATE(0xffffffffffffffff, 0x6, 0x0, 0x0, 0x0) setsockopt$inet_udp_int(r0, 0x11, 0x1, &(0x7f0000001200)=0x8, 0x4) 19:57:54 executing program 5: perf_event_open(&(0x7f0000001d80)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = socket$nl_generic(0x10, 0x3, 0x10) syz_genetlink_get_family_id$ethtool(&(0x7f0000000000), r0) r1 = syz_genetlink_get_family_id$ethtool(&(0x7f0000001700), 0xffffffffffffffff) r2 = dup3(0xffffffffffffffff, 0xffffffffffffffff, 0x0) linkat(r2, &(0x7f0000000100)='./file0\x00', 0xffffffffffffffff, &(0x7f0000000140)='./file0/file0\x00', 0x1000) syz_genetlink_get_family_id$ethtool(&(0x7f0000000140), r2) r3 = syz_io_uring_setup(0x1092, &(0x7f0000000300)={0x0, 0x9d80, 0x2, 0x3, 0x2fb}, &(0x7f0000bff000/0x400000)=nil, &(0x7f0000f9a000/0x4000)=nil, &(0x7f00000000c0), &(0x7f0000000180)) r4 = syz_open_procfs(0xffffffffffffffff, &(0x7f0000000040)='numa_maps\x00') readv(r4, &(0x7f0000003700)=[{&(0x7f0000000200)=""/216, 0xd8}, {&(0x7f00000003c0)=""/121, 0x79}, {&(0x7f0000000380)=""/51, 0x33}, {&(0x7f00000014c0)=""/160, 0xa0}, {&(0x7f0000001640)=""/256, 0x100}, {0x0}, {&(0x7f00000015c0)=""/51, 0x33}, {&(0x7f00000001c0)=""/57, 0x39}], 0x8) readv(r4, &(0x7f0000001600)=[{&(0x7f00000004c0)=""/4096, 0x1000}], 0x1) perf_event_open(&(0x7f0000000200)={0x5, 0x80, 0x8, 0x20, 0x9, 0x1f, 0x0, 0x4, 0x80000, 0x8, 0x0, 0x0, 0x1, 0x1, 0x0, 0x0, 0x0, 0x1, 0x1, 0x1, 0x0, 0x0, 0x0, 0x1, 0x0, 0x3, 0x1, 0x1, 0x0, 0x1, 0x0, 0x1, 0x0, 0x1, 0x1, 0x1, 0x0, 0x0, 0x0, 0x1, 0x1, 0x1, 0x1, 0x1, 0x0, 0x0, 0x1, 0x0, 0x48d2, 0x2, @perf_bp={&(0x7f00000001c0), 0x2}, 0x2181, 0x9be7, 0xee, 0x2, 0x7fff, 0x8, 0xfffa, 0x0, 0x5, 0x0, 0x6}, 0x0, 0x1, r4, 0x9) dup3(0xffffffffffffffff, r3, 0x0) sendmsg$ETHTOOL_MSG_PRIVFLAGS_GET(r0, &(0x7f0000000100)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000080)=ANY=[@ANYRESOCT=r1, @ANYRES16=r1, @ANYRESHEX=r3], 0x2c}}, 0x0) 19:57:54 executing program 3: r0 = socket$inet6_udplite(0xa, 0x2, 0x88) bind$inet6(r0, &(0x7f0000000080)={0xa, 0x4e22, 0x0, @private0}, 0x1c) r1 = syz_io_uring_setup(0x23, &(0x7f0000000080)={0x0, 0x45ae, 0x2b, 0x1, 0x3b2, 0x0, 0x0}, &(0x7f00000a0000)=nil, &(0x7f0000fff000/0x1000)=nil, &(0x7f0000000100)=0x0, &(0x7f0000000340)=0x0) r4 = socket$inet6_tcp(0xa, 0x1, 0x0) r5 = open(&(0x7f0000000140)='./file0\x00', 0x400501, 0x102) accept4$inet6(r5, &(0x7f0000000200)={0xa, 0x0, 0x0, @private0}, &(0x7f0000000240)=0x1c, 0x0) syz_io_uring_submit(r2, r3, &(0x7f00000001c0)=@IORING_OP_CONNECT={0x10, 0x2, 0x0, r4, 0x80, &(0x7f0000000280)=@in6={0xa, 0xfffe, 0x0, @ipv4={'\x00', '\xff\xff', @dev={0xac, 0x14, 0x14, 0x20}}}}, 0x0) r6 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x2000008, 0x10, r1, 0x0) mknodat$null(r5, &(0x7f0000000300)='./file0\x00', 0x10, 0x103) io_uring_register$IORING_REGISTER_PERSONALITY(r1, 0x9, 0x0, 0x0) syz_io_uring_setup(0x4a01, &(0x7f0000000380)={0x0, 0xdd7f, 0x10, 0x3, 0x7c, 0x0, r1}, &(0x7f0000ffd000/0x3000)=nil, &(0x7f0000ffd000/0x2000)=nil, &(0x7f0000000400), &(0x7f0000000480)) r7 = io_uring_register$IORING_REGISTER_PERSONALITY(r5, 0x9, 0x0, 0x0) syz_io_uring_submit(r2, r3, &(0x7f0000000040)=@IORING_OP_POLL_ADD={0x6, 0x0, 0x0, @fd_index=0xa, 0x0, 0x0, 0x0, {0x80}, 0x0, {0x0, r7}}, 0x20) r8 = mmap$IORING_OFF_SQES(&(0x7f0000ffd000/0x3000)=nil, 0x3000, 0x1000001, 0x40f0050, r1, 0x10000000) r9 = syz_open_dev$tty1(0xc, 0x4, 0x1) r10 = io_uring_register$IORING_REGISTER_PERSONALITY(0xffffffffffffffff, 0x9, 0x0, 0x0) syz_io_uring_submit(0x0, 0x0, &(0x7f0000000440)=@IORING_OP_FSYNC={0x3, 0x0, 0x0, @fd_index, 0x0, 0x0, 0x0, 0x0, 0x1, {0x0, r10}}, 0x0) io_uring_register$IORING_REGISTER_FILES(r1, 0x2, &(0x7f0000000380), 0x0) syz_io_uring_submit(r6, r8, &(0x7f0000000180)=@IORING_OP_WRITE_FIXED={0x5, 0x2, 0x0, @fd=r9, 0xff, 0x9, 0xfe, 0x1d, 0x1, {0x3, r10}}, 0xcc9e) syz_io_uring_submit(0x0, 0x0, &(0x7f0000000000)=@IORING_OP_SYNC_FILE_RANGE={0x8, 0x4, 0x0, @fd_index=0x9, 0x7fffffff, 0x0, 0x7, 0x0, 0x0, {0x0, r10}}, 0x7) 19:57:54 executing program 7: r0 = syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x40000, 0x3, &(0x7f0000000200)=[{&(0x7f0000010000)="200000008000000006000000660000000f000000000000000100000001000000004000000040000020000000daf4655fdaf4655f0100ffff53ef010001000000d9f4655f000000000000000001000000000000000b0000000002", 0x5a, 0x400}, {&(0x7f0000010300)="020000000300000004", 0x9, 0x800}, {&(0x7f00000000c0)="ed41000000080000d9f4655fdaf2655fdaf4655f000000000000060004", 0x1d, 0x2200}], 0x0, &(0x7f0000000280)=ANY=[]) chroot(&(0x7f00000005c0)='./file0\x00') r1 = perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x1, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x7, 0x5b3d}, 0x0, 0x0, 0x0, 0x0, 0x4}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x1) ioctl$BTRFS_IOC_SEND(r0, 0x40489426, &(0x7f0000000540)={{r1}, 0x0, 0x0, 0x5, 0x2, [0x2, 0xc9a8, 0x101, 0x1]}) stat(&(0x7f0000000040)='./file0\x00', &(0x7f0000000280)) umount2(&(0x7f0000000140)='./file0\x00', 0x0) mount$bind(&(0x7f0000000180)='./file0\x00', &(0x7f0000000300)='./file0\x00', &(0x7f0000000340), 0x21920b0, 0x0) [ 3174.258241] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium [ 3174.279335] EXT4-fs (loop6): mounted filesystem without journal. Opts: ,errors=continue [ 3174.306632] 9pnet: Insufficient options for proto=fd 19:57:54 executing program 2: r0 = socket$inet_icmp_raw(0x2, 0x3, 0x1) r1 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a) ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000140)={'syz_tun\x00', 0x0}) perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) sendmmsg$inet(r0, &(0x7f0000002040)=[{{&(0x7f0000000380)={0x2, 0x0, @multicast1}, 0x10, &(0x7f0000001600)=[{&(0x7f00000003c0)="db9c", 0xffe7}], 0x1, &(0x7f0000001640)=ANY=[@ANYBLOB="14000000000000000000000007000000c4048f01000000001c000000000000000000000008000000", @ANYRES32=r2], 0x38}}], 0x1, 0x0) (fail_nth: 23) [ 3174.384490] EXT4-fs (loop7): mounted filesystem without journal. Opts: ,errors=continue 19:57:54 executing program 0: ioctl$TCSETSF2(0xffffffffffffffff, 0x402c542d, &(0x7f0000000000)={0x8000, 0x0, 0x9, 0x0, 0x5, "f31a0000434ef9bab774bdcab95c000d00"}) r0 = openat$tun(0xffffffffffffff9c, &(0x7f0000000700), 0x0, 0x0) ioctl$TUNSETQUEUE(0xffffffffffffffff, 0x400454ca, &(0x7f0000000000)={'veth0_vlan\x00'}) sendfile(0xffffffffffffffff, 0xffffffffffffffff, 0x0, 0x0) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) ioctl$TIOCGPGRP(0xffffffffffffffff, 0x540f, &(0x7f00000000c0)) r1 = getpgrp(0x0) r2 = pidfd_open(r1, 0x0) ioctl$FS_IOC_FSSETXATTR(0xffffffffffffffff, 0x401c5820, 0x0) r3 = dup(r2) setns(r3, 0x2020000) r4 = openat$sr(0xffffffffffffff9c, &(0x7f00000035c0), 0xe8b02, 0x0) ioctl$SG_IO(r4, 0x2285, &(0x7f00000011c0)={0x53, 0xfffffffffffffffd, 0x0, 0x0, @buffer={0x0, 0x1031, &(0x7f0000001240)=""/4108}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}) ioctl$DVD_READ_STRUCT(r4, 0x5390, &(0x7f0000000440)=@copyright={0x1, 0x2, 0x0, 0x8}) ioctl$TUNSETLINK(r4, 0x400454cd, 0x339) connect$inet6(0xffffffffffffffff, &(0x7f0000000100)={0xa, 0x4a1c, 0x8, @remote, 0x3}, 0x1c) dup3(0xffffffffffffffff, r0, 0x0) readv(0xffffffffffffffff, &(0x7f0000003700)=[{&(0x7f0000000200)=""/216, 0xd8}, {&(0x7f00000003c0)=""/121, 0x49}, {&(0x7f0000000380)=""/51, 0x4a}, {&(0x7f00000014c0)=""/160, 0xa0}, {&(0x7f0000001640)=""/256, 0x100}, {0x0}, {&(0x7f00000015c0)=""/51, 0x33}, {&(0x7f00000001c0)=""/57, 0x39}], 0x8) readv(0xffffffffffffffff, &(0x7f0000001600)=[{&(0x7f00000004c0)=""/4096, 0x1000}], 0x1) pidfd_send_signal(0xffffffffffffffff, 0x32, &(0x7f0000000040)={0x24, 0x0, 0x1000}, 0x0) [ 3174.442158] EXT4-fs (loop7): re-mounted. Opts: (null) [ 3174.456950] 9pnet: Insufficient options for proto=fd [ 3174.472534] EXT4-fs (loop7): re-mounted. Opts: (null) [ 3174.484972] FAULT_INJECTION: forcing a failure. [ 3174.484972] name failslab, interval 1, probability 0, space 0, times 0 [ 3174.487322] CPU: 1 PID: 24175 Comm: syz-executor.2 Not tainted 5.10.207 #1 [ 3174.488716] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 3174.490415] Call Trace: [ 3174.490955] dump_stack+0x107/0x167 [ 3174.491698] should_fail.cold+0x5/0xa [ 3174.492472] ? create_object.isra.0+0x3a/0xa20 [ 3174.493406] should_failslab+0x5/0x20 [ 3174.494175] kmem_cache_alloc+0x5b/0x310 [ 3174.495002] create_object.isra.0+0x3a/0xa20 [ 3174.495891] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 3174.496922] kmem_cache_alloc_node+0x169/0x330 [ 3174.497877] __alloc_skb+0x6d/0x5b0 [ 3174.498624] __ip_append_data+0x2930/0x3310 [ 3174.499523] ? raw_destroy+0x30/0x30 [ 3174.500290] ? ip_finish_output+0x330/0x330 [ 3174.501167] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 3174.502190] ? ipv4_mtu+0x1ed/0x2c0 [ 3174.502936] ? raw_destroy+0x30/0x30 [ 3174.503691] ip_append_data+0x114/0x1a0 [ 3174.504511] raw_sendmsg+0xaa6/0x29d0 [ 3174.505296] ? dst_output+0x170/0x170 [ 3174.506089] ? __lock_acquire+0x1657/0x5b00 [ 3174.506986] ? perf_trace_lock+0xac/0x490 [ 3174.507824] ? SOFTIRQ_verbose+0x10/0x10 [ 3174.508648] ? create_object.isra.0+0x3ad/0xa20 [ 3174.509603] ? __lockdep_reset_lock+0x180/0x180 [ 3174.510563] ? selinux_socket_post_create+0x7f0/0x7f0 [ 3174.511599] ? find_held_lock+0x2c/0x110 [ 3174.512456] ? trace_hardirqs_on+0x5b/0x180 [ 3174.513333] ? dst_output+0x170/0x170 [ 3174.514124] inet_sendmsg+0x11d/0x140 [ 3174.514895] ? inet_send_prepare+0x540/0x540 [ 3174.515783] __sock_sendmsg+0x13c/0x190 [ 3174.516593] ____sys_sendmsg+0x334/0x870 [ 3174.517422] ? sock_write_iter+0x3d0/0x3d0 [ 3174.518274] ? do_recvmmsg+0x6d0/0x6d0 [ 3174.519060] ? perf_trace_lock+0xac/0x490 [ 3174.519907] ? __lockdep_reset_lock+0x180/0x180 [ 3174.520864] ? perf_trace_lock+0xac/0x490 [ 3174.521714] ___sys_sendmsg+0xf3/0x170 [ 3174.522502] ? sendmsg_copy_msghdr+0x160/0x160 [ 3174.523428] ? lock_downgrade+0x6d0/0x6d0 [ 3174.524271] ? lock_downgrade+0x6d0/0x6d0 [ 3174.525112] ? __fget_files+0x296/0x4c0 [ 3174.525943] ? __fget_light+0xea/0x290 [ 3174.526739] __sys_sendmmsg+0x195/0x470 [ 3174.527548] ? __ia32_sys_sendmsg+0xb0/0xb0 [ 3174.528417] ? lock_downgrade+0x6d0/0x6d0 [ 3174.529276] ? __mutex_unlock_slowpath+0xe1/0x600 [ 3174.530259] ? wait_for_completion_io+0x270/0x270 [ 3174.531236] ? rcu_read_lock_any_held+0x75/0xa0 [ 3174.532195] ? vfs_write+0x354/0xa70 [ 3174.532954] ? fput_many+0x2f/0x1a0 [ 3174.533704] ? ksys_write+0x1a9/0x260 [ 3174.534482] ? __ia32_sys_read+0xb0/0xb0 [ 3174.535317] __x64_sys_sendmmsg+0x99/0x100 [ 3174.536179] do_syscall_64+0x33/0x40 [ 3174.536933] entry_SYSCALL_64_after_hwframe+0x62/0xc7 [ 3174.538005] RIP: 0033:0x7fac065c2b19 [ 3174.538763] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 3174.542511] RSP: 002b:00007fac03b38188 EFLAGS: 00000246 ORIG_RAX: 0000000000000133 [ 3174.544048] RAX: ffffffffffffffda RBX: 00007fac066d5f60 RCX: 00007fac065c2b19 [ 3174.545489] RDX: 0000000000000001 RSI: 0000000020002040 RDI: 0000000000000003 [ 3174.546930] RBP: 00007fac03b381d0 R08: 0000000000000000 R09: 0000000000000000 [ 3174.548380] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 3174.549847] R13: 00007ffe4d4b793f R14: 00007fac03b38300 R15: 0000000000022000 [ 3174.562280] sr 1:0:0:0: [sr0] CDROM not ready. Make sure there is a disc in the drive. [ 3174.576286] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium [ 3174.583427] EXT4-fs (loop7): re-mounted. Opts: (null) 19:58:16 executing program 2: r0 = socket$inet_icmp_raw(0x2, 0x3, 0x1) r1 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a) ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000140)={'syz_tun\x00', 0x0}) perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) sendmmsg$inet(r0, &(0x7f0000002040)=[{{&(0x7f0000000380)={0x2, 0x0, @multicast1}, 0x10, &(0x7f0000001600)=[{&(0x7f00000003c0)="db9c", 0xffe7}], 0x1, &(0x7f0000001640)=ANY=[@ANYBLOB="14000000000000000000000007000000c4048f01000000001c000000000000000000000008000000", @ANYRES32=r2], 0x38}}], 0x1, 0x0) (fail_nth: 24) 19:58:16 executing program 5: perf_event_open(&(0x7f0000001d80)={0x2, 0x80, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffdfffffffff, 0xffffffffffffffff, 0x0) r0 = socket$inet(0x2, 0x1, 0x0) bind$inet(r0, &(0x7f0000000000)={0x2, 0x4e21, @multicast1}, 0x10) connect$inet(r0, &(0x7f0000000140)={0x2, 0x4e21, @local}, 0x10) sendmsg$nl_generic(0xffffffffffffffff, &(0x7f00000000c0)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x80}, 0xc, &(0x7f0000000080)={&(0x7f0000000180)={0xe4, 0x30, 0x100, 0x70bd26, 0x25dfdbfd, {0x19}, [@generic="36442b770ac14dd3ff506957d7fdda2794f2aa5d52", @generic="71d39d09cceb6db7043e36f622a0389fa30950f334e0faa83c8c4e5272449af8df0ba75bcfcf4e7876207087eba02116ca62af172258f6bfd26325c8379698038eb753b13d2d75fd2eae4c0900633a868d269d82525d19350be77a903f31c1941e8dcff34653ba0c3a5e48ef1adcafbf384757c8ed19bbd67e73bf8f53e18480ca6f4ed40c88a3b1f02cabb2945833de252ed3d22aa2782d0054c2debf3cda9167d291bee42f26326e0def602b9c23c1979be1faf846ca8e5bf1fc"]}, 0xe4}, 0x1, 0x0, 0x0, 0x880}, 0x8) 19:58:16 executing program 4: syz_80211_inject_frame(&(0x7f00000000c0)=@device_a={0x8, 0x2, 0x11, 0x0, 0x3}, &(0x7f0000000440)=ANY=[], 0x2f) 19:58:16 executing program 3: r0 = perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10000, 0x0, @perf_bp={&(0x7f0000000180), 0x5}, 0x0, 0x0, 0x0, 0x3, 0x1, 0x40}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) ioctl$SECCOMP_IOCTL_NOTIF_RECV(r0, 0xc0502100, &(0x7f00000000c0)={0x0, 0x0}) r2 = socket$inet6_udp(0xa, 0x2, 0x0) setsockopt$inet6_udp_int(r2, 0x11, 0x67, &(0x7f0000000140)=0x7f, 0x4) connect$inet6(r2, &(0x7f0000000100)={0xa, 0x0, 0x0, @remote, 0x2}, 0x1c) r3 = fcntl$dupfd(r2, 0x0, r2) sendmsg$inet6(r3, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000280)=[{&(0x7f0000000bc0)='+', 0x1fc0}], 0x1}, 0x0) write(r3, &(0x7f0000000380)="071e9f7358ec922343d9786f7c2147c81e6890a8016fb53a5ffc4951d0a6a9f38dda8a9bae8f6f3750405ca0111cc8069cb8ebd8c8564cc6aff4e3631e4eb8ebf43b0e3a61bb5878257df934ab1c2df75a49f4d39cf7effe02c00c95f02860e708", 0x61) r4 = syz_open_procfs(0x0, &(0x7f0000000000)='mounts\x00') readv(r4, &(0x7f00000015c0)=[{&(0x7f00000004c0)=""/4096, 0x1000}, {&(0x7f0000001640)=""/201, 0xc9}, {&(0x7f0000001940)=""/137, 0x89}, {&(0x7f0000001740)=""/220, 0xdc}, {&(0x7f0000000340)=""/36, 0x24}, {&(0x7f0000001840)=""/207, 0xcf}, {&(0x7f0000001500)=""/31, 0x1f}, {&(0x7f0000001580)=""/46, 0x2e}], 0x8) syz_open_procfs(r1, &(0x7f0000001540)='totmaps\x00') syz_mount_image$ext4(0x0, &(0x7f0000000100)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0) mount$9p_unix(&(0x7f00000014c0)='./file0/file0\x00', &(0x7f00000001c0)='./file0/../file0\x00', 0x0, 0x173000, 0x0) syz_mount_image$tmpfs(&(0x7f0000000000), &(0x7f0000000080)='./file0/../file0\x00', 0x0, 0x0, 0x0, 0x100000, &(0x7f0000000440)=ANY=[]) r5 = io_uring_register$IORING_REGISTER_PERSONALITY(0xffffffffffffffff, 0x9, 0x0, 0x0) syz_io_uring_submit(0x0, 0x0, &(0x7f0000000080)=@IORING_OP_SYNC_FILE_RANGE={0x8, 0x0, 0x0, @fd_index, 0x0, 0x0, 0x0, 0x0, 0x0, {0x0, r5}}, 0x0) syz_io_uring_submit(0x0, 0x0, &(0x7f0000000200)=@IORING_OP_SYNC_FILE_RANGE={0x8, 0x2, 0x0, @fd_index=0x8, 0x1, 0x0, 0x0, 0x0, 0x1, {0x0, r5}}, 0x8) mkdir(&(0x7f0000000300)='./file0/file0\x00', 0x0) syz_open_procfs(0x0, &(0x7f0000000040)='io\x00') unshare(0x48020200) 19:58:16 executing program 1: r0 = syz_io_uring_setup(0x1d, &(0x7f0000000000), &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000ffb000/0x2000)=nil, &(0x7f0000000180)=0x0, &(0x7f0000000080)=0x0) r3 = socket$inet6_tcp(0xa, 0x1, 0x0) syz_io_uring_submit(r1, r2, &(0x7f0000000300)=@IORING_OP_POLL_ADD={0x6, 0x0, 0x0, @fd=r3, 0x0, 0x0, 0x0, {}, 0x1}, 0x0) ioctl$SECCOMP_IOCTL_NOTIF_ADDFD(0xffffffffffffffff, 0x40082102, 0x0) io_uring_enter(r0, 0x76d3, 0x0, 0x0, 0x0, 0x0) [ 3196.455858] FAULT_INJECTION: forcing a failure. [ 3196.455858] name failslab, interval 1, probability 0, space 0, times 0 [ 3196.458383] CPU: 1 PID: 24233 Comm: syz-executor.2 Not tainted 5.10.207 #1 [ 3196.459805] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 3196.461521] Call Trace: [ 3196.462089] dump_stack+0x107/0x167 [ 3196.462848] should_fail.cold+0x5/0xa [ 3196.463641] ? create_object.isra.0+0x3a/0xa20 [ 3196.464592] should_failslab+0x5/0x20 [ 3196.465377] kmem_cache_alloc+0x5b/0x310 [ 3196.466244] create_object.isra.0+0x3a/0xa20 [ 3196.467149] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 19:58:16 executing program 6: syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000140)='./file0\x00', 0x40000, 0x4, &(0x7f0000000200)=[{&(0x7f0000010000)="20000000000100000c000000d40000000f000000010000000000000000000000002000000020000020000000d7f4655fd7f4655f0100ffff53ef010001000000d7f4655f000000000000000001000000000000000b0000000002", 0x5a, 0x400}, {&(0x7f0000010400)="030000000400000005000000d4000f", 0xf, 0x800}, {&(0x7f0000000500)="ffffffffff070000000000000000000000000000000000000000000000000080ffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffff", 0x402, 0xc00}, {&(0x7f0000010e00)="ed41000000040000d7f4655fd7f4655fd7f4655f000000000000040002", 0x1d, 0x1600}], 0x0, &(0x7f00000003c0)=ANY=[]) chdir(&(0x7f0000000040)='./file0\x00') openat(0xffffffffffffff9c, &(0x7f0000000080)='./file1\x00', 0x105142, 0x0) r0 = openat(0xffffffffffffff9c, &(0x7f0000000200)='./file1\x00', 0x2, 0x0) write(r0, &(0x7f0000000240)="01", 0x1) r1 = openat(0xffffffffffffff9c, &(0x7f00000000c0)='./file2\x00', 0x105142, 0x0) r2 = openat(0xffffffffffffff9c, &(0x7f0000001340)='./file1\x00', 0x0, 0x0) copy_file_range(r2, 0x0, r1, &(0x7f0000000280)=0x10041, 0xc3a, 0x0) openat$sr(0xffffffffffffff9c, 0x0, 0x0, 0x0) 19:58:16 executing program 7: semget$private(0x0, 0x4, 0x40) r0 = semget$private(0x0, 0x1, 0x100) semctl$GETNCNT(r0, 0x0, 0xe, &(0x7f0000000100)=""/239) syz_emit_ethernet(0x52, &(0x7f0000000080)=ANY=[@ANYBLOB="aaaaaaaaaaaaaaaaaaaaaa0086dd600900ad001c2b00fe8000000000000000000000000000bbfe8000000000000000000000000000aa000004000000000000000000", @ANYRES32=0x41424344, @ANYRES32=0x41424344, @ANYBLOB], 0x0) 19:58:16 executing program 0: ioctl$TCSETSF2(0xffffffffffffffff, 0x402c542d, &(0x7f0000000000)={0x8000, 0x0, 0x9, 0x0, 0x5, "f31a0000434ef9bab774bdcab95c000d00"}) r0 = openat$tun(0xffffffffffffff9c, &(0x7f0000000700), 0x0, 0x0) ioctl$TUNSETQUEUE(0xffffffffffffffff, 0x400454ca, &(0x7f0000000000)={'veth0_vlan\x00'}) sendfile(0xffffffffffffffff, 0xffffffffffffffff, 0x0, 0x0) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) ioctl$TIOCGPGRP(0xffffffffffffffff, 0x540f, &(0x7f00000000c0)) r1 = getpgrp(0x0) r2 = pidfd_open(r1, 0x0) ioctl$FS_IOC_FSSETXATTR(0xffffffffffffffff, 0x401c5820, 0x0) r3 = dup(r2) setns(r3, 0x2020000) r4 = openat$sr(0xffffffffffffff9c, &(0x7f00000035c0), 0xe8b02, 0x0) ioctl$SG_IO(r4, 0x2285, &(0x7f00000011c0)={0x53, 0xfffffffffffffffd, 0x0, 0x0, @buffer={0x0, 0x1031, &(0x7f0000001240)=""/4108}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}) ioctl$DVD_READ_STRUCT(r4, 0x5390, &(0x7f0000000440)=@copyright={0x1, 0x2, 0x0, 0x8}) ioctl$TUNSETLINK(r4, 0x400454cd, 0x339) connect$inet6(0xffffffffffffffff, &(0x7f0000000100)={0xa, 0x4a1c, 0x8, @remote, 0x3}, 0x1c) dup3(0xffffffffffffffff, r0, 0x0) readv(0xffffffffffffffff, &(0x7f0000003700)=[{&(0x7f0000000200)=""/216, 0xd8}, {&(0x7f00000003c0)=""/121, 0x49}, {&(0x7f0000000380)=""/51, 0x4a}, {&(0x7f00000014c0)=""/160, 0xa0}, {&(0x7f0000001640)=""/256, 0x100}, {0x0}, {&(0x7f00000015c0)=""/51, 0x33}, {&(0x7f00000001c0)=""/57, 0x39}], 0x8) readv(0xffffffffffffffff, &(0x7f0000001600)=[{&(0x7f00000004c0)=""/4096, 0x1000}], 0x1) pidfd_send_signal(0xffffffffffffffff, 0x32, &(0x7f0000000040)={0x24, 0x0, 0x1000}, 0x0) [ 3196.468294] kmem_cache_alloc_node+0x169/0x330 [ 3196.469332] __alloc_skb+0x6d/0x5b0 [ 3196.469431] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium [ 3196.470099] __ip_append_data+0x2930/0x3310 [ 3196.470142] ? raw_destroy+0x30/0x30 [ 3196.472847] ? ip_finish_output+0x330/0x330 [ 3196.473713] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 3196.474709] ? ipv4_mtu+0x1ed/0x2c0 [ 3196.475445] ? raw_destroy+0x30/0x30 [ 3196.476190] ip_append_data+0x114/0x1a0 [ 3196.477000] raw_sendmsg+0xaa6/0x29d0 [ 3196.477806] ? dst_output+0x170/0x170 [ 3196.478572] ? __lock_acquire+0x1657/0x5b00 [ 3196.479489] ? perf_trace_lock+0xac/0x490 [ 3196.480332] ? SOFTIRQ_verbose+0x10/0x10 [ 3196.481170] ? create_object.isra.0+0x3ad/0xa20 [ 3196.482134] ? __lockdep_reset_lock+0x180/0x180 [ 3196.483083] ? selinux_socket_post_create+0x7f0/0x7f0 [ 3196.484109] ? find_held_lock+0x2c/0x110 [ 3196.484938] ? trace_hardirqs_on+0x5b/0x180 [ 3196.485812] ? dst_output+0x170/0x170 [ 3196.486576] inet_sendmsg+0x11d/0x140 [ 3196.487345] ? inet_send_prepare+0x540/0x540 [ 3196.488219] __sock_sendmsg+0x13c/0x190 [ 3196.489024] ____sys_sendmsg+0x334/0x870 [ 3196.489849] ? sock_write_iter+0x3d0/0x3d0 [ 3196.490690] ? do_recvmmsg+0x6d0/0x6d0 [ 3196.491466] ? perf_trace_lock+0xac/0x490 [ 3196.492305] ? __lockdep_reset_lock+0x180/0x180 [ 3196.493224] ? perf_trace_lock+0xac/0x490 [ 3196.494089] ___sys_sendmsg+0xf3/0x170 [ 3196.494866] ? sendmsg_copy_msghdr+0x160/0x160 [ 3196.495780] ? lock_downgrade+0x6d0/0x6d0 [ 3196.496617] ? lock_downgrade+0x6d0/0x6d0 [ 3196.497454] ? __fget_files+0x296/0x4c0 [ 3196.498279] ? __fget_light+0xea/0x290 [ 3196.499095] __sys_sendmmsg+0x195/0x470 [ 3196.499922] ? __ia32_sys_sendmsg+0xb0/0xb0 [ 3196.500808] ? lock_downgrade+0x6d0/0x6d0 [ 3196.501705] ? __mutex_unlock_slowpath+0xe1/0x600 [ 3196.502704] ? wait_for_completion_io+0x270/0x270 [ 3196.503706] ? rcu_read_lock_any_held+0x75/0xa0 [ 3196.504660] ? vfs_write+0x354/0xa70 [ 3196.505431] ? fput_many+0x2f/0x1a0 [ 3196.506191] ? ksys_write+0x1a9/0x260 [ 3196.506974] ? __ia32_sys_read+0xb0/0xb0 [ 3196.507818] __x64_sys_sendmmsg+0x99/0x100 [ 3196.508706] do_syscall_64+0x33/0x40 [ 3196.509473] entry_SYSCALL_64_after_hwframe+0x62/0xc7 [ 3196.510536] RIP: 0033:0x7fac065c2b19 [ 3196.511304] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 3196.515807] RSP: 002b:00007fac03b38188 EFLAGS: 00000246 ORIG_RAX: 0000000000000133 [ 3196.517658] RAX: ffffffffffffffda RBX: 00007fac066d5f60 RCX: 00007fac065c2b19 [ 3196.519378] RDX: 0000000000000001 RSI: 0000000020002040 RDI: 0000000000000003 [ 3196.521097] RBP: 00007fac03b381d0 R08: 0000000000000000 R09: 0000000000000000 [ 3196.522697] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 3196.524161] R13: 00007ffe4d4b793f R14: 00007fac03b38300 R15: 0000000000022000 [ 3196.536871] EXT4-fs (loop6): mounted filesystem without journal. Opts: ,errors=continue [ 3196.566658] sr 1:0:0:0: [sr0] CDROM not ready. Make sure there is a disc in the drive. 19:58:16 executing program 7: perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x1}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r0 = syz_open_dev$tty20(0xc, 0x4, 0x0) ioctl$VT_DISALLOCATE(r0, 0x5608) openat$ptmx(0xffffffffffffff9c, &(0x7f0000000000), 0x8941, 0x0) r1 = syz_open_dev$tty1(0xc, 0x4, 0x1) ioctl$TIOCGPTPEER(r1, 0x5441, 0x8000) ioctl$TIOCL_SETSEL(r0, 0x541c, &(0x7f0000000040)={0x2, {0x2, 0x6, 0x0, 0x101, 0x8}}) 19:58:16 executing program 0: r0 = socket$inet6_udp(0xa, 0x2, 0x0) r1 = socket$inet6(0xa, 0x2, 0x8) connect$inet6(r1, &(0x7f0000000040)={0xa, 0x4e23, 0x9, @empty, 0x8}, 0x1c) connect$inet6(r0, &(0x7f0000000000)={0xa, 0x0, 0x0, @ipv4={'\x00', '\xff\xff', @local}}, 0x1c) sendmmsg$inet6(r0, &(0x7f0000000880)=[{{&(0x7f0000000080)={0xa, 0x4e22, 0x0, @empty}, 0x1c, 0x0}}], 0x1, 0x0) 19:58:16 executing program 6: syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000140)='./file0\x00', 0x40000, 0x4, &(0x7f0000000200)=[{&(0x7f0000010000)="20000000000100000c000000d40000000f000000010000000000000000000000002000000020000020000000d7f4655fd7f4655f0100ffff53ef010001000000d7f4655f000000000000000001000000000000000b0000000002", 0x5a, 0x400}, {&(0x7f0000010400)="030000000400000005000000d4000f", 0xf, 0x800}, {&(0x7f0000000500)="ffffffffff070000000000000000000000000000000000000000000000000080ffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffff", 0x402, 0xc00}, {&(0x7f0000010e00)="ed41000000040000d7f4655fd7f4655fd7f4655f000000000000040002", 0x1d, 0x1600}], 0x0, &(0x7f00000003c0)=ANY=[]) chdir(&(0x7f0000000040)='./file0\x00') openat(0xffffffffffffff9c, &(0x7f0000000080)='./file1\x00', 0x105142, 0x0) r0 = openat(0xffffffffffffff9c, &(0x7f0000000200)='./file1\x00', 0x2, 0x0) write(r0, &(0x7f0000000240)="01", 0x1) r1 = openat(0xffffffffffffff9c, &(0x7f00000000c0)='./file2\x00', 0x105142, 0x0) r2 = openat(0xffffffffffffff9c, &(0x7f0000001340)='./file1\x00', 0x0, 0x0) copy_file_range(r2, 0x0, r1, &(0x7f0000000280)=0x10281, 0xc3a, 0x0) openat$sr(0xffffffffffffff9c, 0x0, 0x0, 0x0) 19:58:16 executing program 5: r0 = socket$inet_icmp_raw(0x2, 0x3, 0x1) fchmod(r0, 0xa) perf_event_open(&(0x7f0000000080)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x2) r1 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000000), 0xc02, 0x0) r2 = syz_io_uring_setup(0x19dd, &(0x7f0000000300)={0x0, 0x9d80, 0x10, 0x3, 0xd6}, &(0x7f0000bff000/0x400000)=nil, &(0x7f0000cb6000/0x4000)=nil, &(0x7f0000000000), &(0x7f0000000180)) r3 = dup3(0xffffffffffffffff, r2, 0x0) close(r2) write$eventfd(0xffffffffffffffff, &(0x7f0000000140)=0xfff, 0x8) ioctl$TIOCGPTPEER(0xffffffffffffffff, 0x5441, 0x0) write$binfmt_elf64(r1, &(0x7f0000000040)=ANY=[], 0x98a) r4 = syz_open_procfs(0xffffffffffffffff, &(0x7f0000000040)='numa_maps\x00') readv(r4, &(0x7f0000003700)=[{&(0x7f0000000200)=""/216, 0xd8}, {&(0x7f00000003c0)=""/121, 0x79}, {&(0x7f0000000380)=""/51, 0x33}, {&(0x7f00000014c0)=""/160, 0xa0}, {&(0x7f0000001640)=""/256, 0x100}, {0x0}, {&(0x7f00000015c0)=""/51, 0x33}, {&(0x7f00000001c0)=""/57, 0x39}], 0x8) readv(r4, &(0x7f0000001600)=[{&(0x7f00000004c0)=""/4096, 0x1000}], 0x1) syz_io_uring_setup(0x1960, &(0x7f0000002340)={0x0, 0xcadb, 0x20, 0x1, 0x2d8, 0x0, r3}, &(0x7f0000dc8000/0x1000)=nil, &(0x7f0000d9f000/0x4000)=nil, &(0x7f00000023c0), &(0x7f0000002400)=0x0) syz_io_uring_submit(0x0, r5, &(0x7f00000025c0)=@IORING_OP_READV=@pass_iovec={0x1, 0x1, 0x2000, @fd_index=0x1, 0xfff, &(0x7f0000002580)=[{&(0x7f0000002440)=""/132, 0x84}, {&(0x7f0000002500)=""/74, 0x4a}], 0x2, 0x15}, 0x5) sendfile(r4, 0xffffffffffffffff, &(0x7f0000000700)=0x27e, 0x6) r6 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000040)='./cgroup/syz0\x00', 0x200002, 0x0) preadv(r6, &(0x7f0000000680)=[{&(0x7f00000001c0)=""/76, 0x4c}, {&(0x7f0000000240)=""/66, 0x42}, {&(0x7f0000000380)=""/190, 0xbe}, {&(0x7f00000002c0)=""/61, 0x3d}, {&(0x7f0000000440)=""/255, 0xff}, {&(0x7f0000000540)=""/55, 0x37}, {&(0x7f0000000580)=""/195, 0xc3}], 0x7, 0x401, 0x8001) unshare(0x4a060400) 19:58:16 executing program 1: syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000140)='./file0\x00', 0x40000, 0x4, &(0x7f0000000200)=[{&(0x7f0000010000)="20000000000100000c000000d40000000f000000010000000000000000000000002000000020000020000000d7f4655fd7f4655f0100ffff53ef010001000000d7f4655f000000000000000001000000000000000b0000000002", 0x5a, 0x400}, {&(0x7f0000010400)="030000000400000005000000d4000f", 0xf, 0x800}, {&(0x7f0000000500)="ffffffffff070000000000000000000000000000000000000000000000000080ffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffff", 0x402, 0xc00}, {&(0x7f0000010e00)="ed41000000040000d7f4655fd7f4655fd7f4655f000000000000040002", 0x1d, 0x1600}], 0x0, &(0x7f00000003c0)=ANY=[]) chdir(&(0x7f0000000040)='./file0\x00') openat(0xffffffffffffff9c, &(0x7f0000000080)='./file1\x00', 0x105142, 0x0) r0 = openat(0xffffffffffffff9c, &(0x7f0000000200)='./file1\x00', 0x2, 0x0) write(r0, &(0x7f0000000240)="01", 0x1) r1 = openat(0xffffffffffffff9c, &(0x7f00000000c0)='./file2\x00', 0x105142, 0x0) r2 = openat(0xffffffffffffff9c, &(0x7f0000001340)='./file1\x00', 0x0, 0x0) copy_file_range(r2, 0x0, r1, &(0x7f0000000280)=0x10041, 0xc3a, 0x0) openat$sr(0xffffffffffffff9c, 0x0, 0x0, 0x0) 19:58:16 executing program 2: r0 = socket$inet_icmp_raw(0x2, 0x3, 0x1) r1 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a) ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000140)={'syz_tun\x00', 0x0}) perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) sendmmsg$inet(r0, &(0x7f0000002040)=[{{&(0x7f0000000380)={0x2, 0x0, @multicast1}, 0x10, &(0x7f0000001600)=[{&(0x7f00000003c0)="db9c", 0xffe7}], 0x1, &(0x7f0000001640)=ANY=[@ANYBLOB="14000000000000000000000007000000c4048f01000000001c000000000000000000000008000000", @ANYRES32=r2], 0x38}}], 0x1, 0x0) (fail_nth: 25) 19:58:16 executing program 1: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl$sock_SIOCSIFBR(r0, 0x8941, &(0x7f0000000040)=@add_del={0x2, &(0x7f0000000000)='geneve0\x00'}) r1 = openat$hpet(0xffffffffffffff9c, &(0x7f0000000080), 0x2000, 0x0) r2 = openat$ttyS3(0xffffffffffffff9c, &(0x7f00000001c0), 0x400000, 0x0) ioctl$AUTOFS_DEV_IOCTL_CATATONIC(0xffffffffffffffff, 0xc0189379, &(0x7f0000000240)={{0x1, 0x1, 0x18, 0xffffffffffffffff}, './file0\x00'}) copy_file_range(r2, &(0x7f0000000200)=0xa5, r3, 0x0, 0x8, 0x0) fsetxattr$security_selinux(r1, &(0x7f00000000c0), &(0x7f0000000100)='system_u:object_r:netlabel_mgmt_exec_t:s0\x00', 0x2a, 0x1) getsockopt$WPAN_WANTACK(r1, 0x0, 0x0, &(0x7f0000000140), &(0x7f0000000180)=0x4) ioctl$sock_SIOCADDRT(r0, 0x890b, &(0x7f0000001280)={0x0, @ethernet={0x0, @link_local}, @nfc, @ethernet}) 19:58:16 executing program 6: syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000140)='./file0\x00', 0x40000, 0x4, &(0x7f0000000200)=[{&(0x7f0000010000)="20000000000100000c000000d40000000f000000010000000000000000000000002000000020000020000000d7f4655fd7f4655f0100ffff53ef010001000000d7f4655f000000000000000001000000000000000b0000000002", 0x5a, 0x400}, {&(0x7f0000010400)="030000000400000005000000d4000f", 0xf, 0x800}, {&(0x7f0000000500)="ffffffffff070000000000000000000000000000000000000000000000000080ffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffff", 0x402, 0xc00}, {&(0x7f0000010e00)="ed41000000040000d7f4655fd7f4655fd7f4655f000000000000040002", 0x1d, 0x1600}], 0x0, &(0x7f00000003c0)=ANY=[]) chdir(&(0x7f0000000040)='./file0\x00') openat(0xffffffffffffff9c, &(0x7f0000000080)='./file1\x00', 0x105142, 0x0) r0 = openat(0xffffffffffffff9c, &(0x7f0000000200)='./file1\x00', 0x2, 0x0) write(r0, &(0x7f0000000240)="01", 0x1) r1 = openat(0xffffffffffffff9c, &(0x7f00000000c0)='./file2\x00', 0x105142, 0x0) r2 = openat(0xffffffffffffff9c, &(0x7f0000001340)='./file1\x00', 0x0, 0x0) copy_file_range(r2, 0x0, r1, &(0x7f0000000280)=0x10300, 0xc3a, 0x0) openat$sr(0xffffffffffffff9c, 0x0, 0x0, 0x0) 19:58:16 executing program 4: syz_80211_inject_frame(&(0x7f00000000c0)=@device_a={0x8, 0x2, 0x11, 0x0, 0x4}, &(0x7f0000000440)=ANY=[], 0x2f) 19:58:16 executing program 2: r0 = socket$inet_icmp_raw(0x2, 0x3, 0x1) r1 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a) ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000140)={'syz_tun\x00', 0x0}) perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) sendmmsg$inet(r0, &(0x7f0000002040)=[{{&(0x7f0000000380)={0x2, 0x0, @multicast1}, 0x10, &(0x7f0000001600)=[{&(0x7f00000003c0)="db9c", 0xffe7}], 0x1, &(0x7f0000001640)=ANY=[@ANYBLOB="14000000000000000000000007000000c4048f01000000001c000000000000000000000008000000", @ANYRES32=r2], 0x38}}], 0x1, 0x0) (fail_nth: 26) [ 3196.710414] EXT4-fs (loop6): mounted filesystem without journal. Opts: ,errors=continue [ 3196.739436] FAULT_INJECTION: forcing a failure. [ 3196.739436] name failslab, interval 1, probability 0, space 0, times 0 19:58:16 executing program 0: ioctl$TCSETSF2(0xffffffffffffffff, 0x402c542d, &(0x7f0000000000)={0x6, 0x0, 0x0, 0x0, 0x2, "77004a6efdff00", 0x400}) r0 = openat$tun(0xffffffffffffff9c, &(0x7f0000000700), 0x0, 0x0) ioctl$TUNSETQUEUE(r0, 0x400454ca, &(0x7f0000000000)={'veth0_vlan\x00'}) io_uring_setup(0x0, &(0x7f00000001c0)={0x0, 0x0, 0x0, 0x0, 0x1cf}) ioctl$AUTOFS_DEV_IOCTL_TIMEOUT(0xffffffffffffffff, 0xc018937a, &(0x7f0000000300)=ANY=[@ANYBLOB="060000000100000018000000", @ANYRES32=r0, @ANYBLOB="65300000000000000011000000000000f15407add6fb31a49b1e8201172e785ae61a59bf1bb4254a74677751390c63e3237fcc4c4058351b"]) r2 = socket$inet(0x2, 0xa, 0x0) r3 = pidfd_getfd(0xffffffffffffffff, 0xffffffffffffffff, 0x0) ioctl$FS_IOC_GETFSMAP(r3, 0xc0c0583b, &(0x7f00000000c0)=ANY=[@ANYBLOB]) signalfd4(r3, &(0x7f0000000140)={[0x200]}, 0x8, 0x80800) syz_io_uring_setup(0x25, &(0x7f0000000080)={0x0, 0x0, 0x1}, &(0x7f0000ffb000/0x1000)=nil, &(0x7f0000ffb000/0x4000)=nil, 0x0, &(0x7f0000000040)) openat$ttyS3(0xffffffffffffff9c, &(0x7f00000000c0), 0x80, 0x0) ioctl$sock_inet_SIOCGIFNETMASK(r2, 0x8914, &(0x7f00000001c0)={'veth0_vlan\x00', {0x2, 0x0, @empty}}) r4 = creat(&(0x7f0000000040)='./file0\x00', 0x0) r5 = dup3(r4, 0xffffffffffffffff, 0x0) ioctl$EXT4_IOC_GROUP_EXTEND(0xffffffffffffffff, 0x40086607, &(0x7f0000000100)) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) accept$packet(r1, &(0x7f00000003c0)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @random}, &(0x7f0000000400)=0x14) sendmsg$ETHTOOL_MSG_LINKSTATE_GET(r4, &(0x7f0000000540)={&(0x7f0000000240)={0x10, 0x0, 0x0, 0x1000000}, 0xc, &(0x7f0000000500)={&(0x7f0000000580)={0xa8, 0x0, 0x800, 0x70bd2c, 0x25dfdbfb, {}, [@HEADER={0x44, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'vlan0\x00'}, @ETHTOOL_A_HEADER_FLAGS={0x8}, @ETHTOOL_A_HEADER_FLAGS={0x8, 0x3, 0x1}, @ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'veth1_to_batadv\x00'}, @ETHTOOL_A_HEADER_DEV_INDEX={0x8}]}, @HEADER={0x1c, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_DEV_INDEX={0x8, 0x1, r6}, @ETHTOOL_A_HEADER_DEV_INDEX={0x8}, @ETHTOOL_A_HEADER_FLAGS={0x8, 0x3, 0x2}]}, @HEADER={0x34, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_FLAGS={0x8}, @ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'veth0\x00'}, @ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'rose0\x00'}]}]}, 0xa8}, 0x1, 0x0, 0x0, 0x20000081}, 0x40) accept4$bt_l2cap(r5, &(0x7f0000000280), &(0x7f00000002c0)=0xe, 0x0) dup3(r2, r0, 0x0) [ 3196.739451] CPU: 0 PID: 24272 Comm: syz-executor.2 Not tainted 5.10.207 #1 [ 3196.739458] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 3196.739463] Call Trace: [ 3196.739482] dump_stack+0x107/0x167 [ 3196.739501] should_fail.cold+0x5/0xa 19:58:16 executing program 3: syz_usb_connect$printer(0x5, 0x2d, &(0x7f0000000040)={{0x12, 0x1, 0x250, 0x0, 0x0, 0x0, 0x20, 0x525, 0xa4a8, 0x40, 0x1, 0x2, 0x3, 0x1, [{{0x9, 0x2, 0x1b, 0x1, 0x1, 0x23, 0x30, 0x9, [{{0x9, 0x4, 0x0, 0x8, 0x1, 0x7, 0x1, 0x3, 0xc0, "", {{{0x9, 0x5, 0x1, 0x2, 0x400, 0x9, 0x1f, 0xa9}}}}}]}}]}}, &(0x7f0000000480)={0xa, &(0x7f0000000080)={0xa, 0x6, 0x200, 0x13, 0x9, 0x1, 0xff, 0x2}, 0x41, &(0x7f00000000c0)={0x5, 0xf, 0x41, 0x4, [@ss_cap={0xa, 0x10, 0x3, 0x2, 0x2, 0x1, 0x20, 0x1f}, @ssp_cap={0x24, 0x10, 0xa, 0x5, 0x6, 0x4, 0x0, 0x6, [0x0, 0x0, 0x3f, 0xff0000, 0x0, 0x0]}, @ptm_cap={0x3}, @wireless={0xb, 0x10, 0x1, 0xc, 0x60, 0xff, 0x2, 0x6, 0x3f}]}, 0x7, [{0x7a, &(0x7f0000000140)=@string={0x7a, 0x3, "62c8a54faf5436fd028d992771eecc1cda5b536ba2865c4adafee7ba0027af5bb5e749889373702193b4a3d8a36dd6274c541ac63107a5be6cd6fe321faf3032cd3aab6feb6f6a4904299339140633f623eb500df57aaa4e740185099aafeb8dc2446d12dc30332e615bb710c57dab3c47834c71eec31c4a"}}, {0x4, &(0x7f00000001c0)=@lang_id={0x4, 0x3, 0x426}}, {0xd4, &(0x7f0000000200)=@string={0xd4, 0x3, "c9feb2c0955aa7227936866d35f558b3b44051b4dcd0fc268599cad291632a5ecb2ced4e33c92b70d39d0ec4bfdbc6ba080f42e8340b511971d800ee6403122e4c7e1dc707d5d7c1848b3247a09fd7fe9ddb737148247de0ac2cf55bfb7871bbca10bf809277b77bc57761e818af5e2640bb719a6445717d2d1c4651d02392ea8ad7f45c753646425f5f074162511e0dc830745a6626c5a08c8f0e4cc19e17b9e6e543abad2a46a4297a0492a3b33e77e04b2f3c425fe4d4f2266d32a6796167ad433cd8b28874a48786348bfff753277318"}}, {0xa0, &(0x7f0000000300)=@string={0xa0, 0x3, "08ad09607163365a19c1ead076b6f4b832c8f98688f63cea2af19db0726504018b8e97a45a2b01cdc6a992ff33ccf68037d8d18e867b8b90c73e37475e92e98d14841cd589e60200c9f9a166a6bbb95ea1ec25e590194bbb2a5da7d70ed56e4e2564eefbdb22be65d6799f924ad55ad0a5c38db8963e154de22e124ad7ff9f84048423e78d7766b54d91fa4dff10f4df80c1873a6ee35f8875a48e92c8c1"}}, {0x4, &(0x7f00000003c0)=@lang_id={0x4, 0x3, 0xc0a}}, {0x4, &(0x7f0000000400)=@lang_id={0x4, 0x3, 0x40d}}, {0x4, &(0x7f0000000440)=@lang_id={0x4, 0x3, 0x3401}}]}) r0 = socket$nl_xfrm(0x10, 0x3, 0x6) sendmsg$nl_xfrm(r0, &(0x7f0000002e00)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000001280)=@updsa={0xf0, 0x1a, 0x1, 0x0, 0x0, {{@in6=@mcast2, @in6=@private0, 0x0, 0x0, 0x0, 0x0, 0x3}, {}, @in=@multicast1, {}, {}, {}, 0x0, 0x0, 0xa}}, 0xf0}}, 0x0) [ 3196.739518] ? create_object.isra.0+0x3a/0xa20 [ 3196.739534] should_failslab+0x5/0x20 [ 3196.739546] kmem_cache_alloc+0x5b/0x310 [ 3196.739567] create_object.isra.0+0x3a/0xa20 19:58:17 executing program 1: r0 = syz_mount_image$nfs4(&(0x7f0000000000), &(0x7f0000000080)='./file0\x00', 0x7fff, 0x2, &(0x7f0000000140)=[{&(0x7f00000000c0)="3cad90cd671757bba56935b087da0b04dc81cb17", 0x14, 0x2}, {&(0x7f0000000100)="e0c0a81f1a7e94", 0x7, 0x200}], 0x2000850, &(0x7f0000000180)={[{' '}, {'-(:+\\%'}, {'trylock'}, {' '}], [{@obj_user={'obj_user', 0x3d, ',}*'}}, {@subj_role={'subj_role', 0x3d, 'trylock'}}]}) mount$tmpfs(0x0, &(0x7f0000000240)='./file0/file0\x00', &(0x7f0000000280), 0x420, &(0x7f00000002c0)={[{@uid={'uid', 0x3d, 0xffffffffffffffff}}, {@huge_within_size}, {@huge_within_size}], [{@fowner_eq={'fowner', 0x3d, 0xffffffffffffffff}}, {@fsname={'fsname', 0x3d, '%}*,-{,@@(]%/,%[(.}\\.(.][\x9a%)*'}}]}) ioctl$EXT4_IOC_GETSTATE(r0, 0x40046629, &(0x7f0000000200)) perf_event_open(&(0x7f0000001d80)={0x2, 0x80, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x64ff, 0x2, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r1 = openat$vga_arbiter(0xffffffffffffff9c, &(0x7f00000001c0), 0x40001, 0x0) write$vga_arbiter(r1, &(0x7f0000000040)=@other={'trylock', ' ', 'none'}, 0xd) [ 3196.739579] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 3196.739599] __kmalloc_node_track_caller+0x1a6/0x3b0 [ 3196.739611] ? __ip_append_data+0x2930/0x3310 [ 3196.739634] __alloc_skb+0xb1/0x5b0 [ 3196.739655] __ip_append_data+0x2930/0x3310 [ 3196.739689] ? raw_destroy+0x30/0x30 19:58:17 executing program 2: r0 = socket$inet_icmp_raw(0x2, 0x3, 0x1) r1 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a) ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000140)={'syz_tun\x00', 0x0}) perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) sendmmsg$inet(r0, &(0x7f0000002040)=[{{&(0x7f0000000380)={0x2, 0x0, @multicast1}, 0x10, &(0x7f0000001600)=[{&(0x7f00000003c0)="db9c", 0xffe7}], 0x1, &(0x7f0000001640)=ANY=[@ANYBLOB="14000000000000000000000007000000c4048f01000000001c000000000000000000000008000000", @ANYRES32=r2], 0x38}}], 0x1, 0x0) (fail_nth: 27) [ 3196.739719] ? ip_finish_output+0x330/0x330 [ 3196.739736] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 3196.739747] ? ipv4_mtu+0x1ed/0x2c0 [ 3196.739767] ? raw_destroy+0x30/0x30 [ 3196.739779] ip_append_data+0x114/0x1a0 [ 3196.739807] raw_sendmsg+0xaa6/0x29d0 [ 3196.739841] ? dst_output+0x170/0x170 [ 3196.739858] ? perf_trace_run_bpf_submit+0xf5/0x190 [ 3196.739890] ? perf_trace_lock+0x2bd/0x490 [ 3196.739904] ? SOFTIRQ_verbose+0x10/0x10 [ 3196.739923] ? __lockdep_reset_lock+0x180/0x180 [ 3196.739953] ? selinux_socket_post_create+0x7f0/0x7f0 [ 3196.739963] ? find_held_lock+0x2c/0x110 [ 3196.739998] ? trace_hardirqs_on+0x5b/0x180 [ 3196.740017] ? dst_output+0x170/0x170 [ 3196.740035] inet_sendmsg+0x11d/0x140 [ 3196.740047] ? inet_send_prepare+0x540/0x540 [ 3196.740059] __sock_sendmsg+0x13c/0x190 [ 3196.740074] ____sys_sendmsg+0x334/0x870 [ 3196.740092] ? sock_write_iter+0x3d0/0x3d0 [ 3196.740101] ? do_recvmmsg+0x6d0/0x6d0 [ 3196.740112] ? perf_trace_lock+0x2bd/0x490 [ 3196.740136] ? __lockdep_reset_lock+0x180/0x180 [ 3196.740160] ___sys_sendmsg+0xf3/0x170 [ 3196.740176] ? sendmsg_copy_msghdr+0x160/0x160 [ 3196.740198] ? lock_downgrade+0x6d0/0x6d0 [ 3196.740217] ? perf_trace_run_bpf_submit+0xf5/0x190 [ 3196.740244] ? __fget_files+0x296/0x4c0 [ 3196.740273] ? __fget_light+0xea/0x290 [ 3196.740298] __sys_sendmmsg+0x195/0x470 [ 3196.740320] ? __ia32_sys_sendmsg+0xb0/0xb0 [ 3196.740333] ? lock_downgrade+0x6d0/0x6d0 [ 3196.740373] ? __mutex_unlock_slowpath+0xe1/0x600 [ 3196.740392] ? wait_for_completion_io+0x270/0x270 [ 3196.740410] ? rcu_read_lock_any_held+0x75/0xa0 [ 3196.740420] ? vfs_write+0x354/0xa70 [ 3196.740438] ? fput_many+0x2f/0x1a0 [ 3196.740453] ? ksys_write+0x1a9/0x260 [ 3196.740466] ? __ia32_sys_read+0xb0/0xb0 [ 3196.740490] __x64_sys_sendmmsg+0x99/0x100 [ 3196.740508] do_syscall_64+0x33/0x40 [ 3196.740520] entry_SYSCALL_64_after_hwframe+0x62/0xc7 [ 3196.740528] RIP: 0033:0x7fac065c2b19 [ 3196.740541] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 3196.740547] RSP: 002b:00007fac03b38188 EFLAGS: 00000246 ORIG_RAX: 0000000000000133 19:58:17 executing program 4: syz_80211_inject_frame(&(0x7f00000000c0)=@device_a={0x8, 0x2, 0x11, 0x0, 0x5}, &(0x7f0000000440)=ANY=[], 0x2f) [ 3196.740562] RAX: ffffffffffffffda RBX: 00007fac066d5f60 RCX: 00007fac065c2b19 [ 3196.740568] RDX: 0000000000000001 RSI: 0000000020002040 RDI: 0000000000000003 [ 3196.740576] RBP: 00007fac03b381d0 R08: 0000000000000000 R09: 0000000000000000 [ 3196.740583] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 3196.740590] R13: 00007ffe4d4b793f R14: 00007fac03b38300 R15: 0000000000022000 [ 3196.777932] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium [ 3196.876438] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium [ 3196.880152] kauditd_printk_skb: 32 callbacks suppressed [ 3196.880170] audit: type=1400 audit(1705348696.829:227): avc: denied { associate } for pid=24275 comm="syz-executor.1" name="hpet" dev="devtmpfs" ino=98 scontext=system_u:object_r:netlabel_mgmt_exec_t:s0 tcontext=system_u:object_r:device_t:s0 tclass=filesystem permissive=1 [ 3196.966530] FAULT_INJECTION: forcing a failure. [ 3196.966530] name failslab, interval 1, probability 0, space 0, times 0 [ 3196.966553] CPU: 1 PID: 24383 Comm: syz-executor.2 Not tainted 5.10.207 #1 [ 3196.966565] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 3196.966571] Call Trace: [ 3196.966598] dump_stack+0x107/0x167 [ 3196.966626] should_fail.cold+0x5/0xa [ 3196.966648] ? __alloc_skb+0x6d/0x5b0 [ 3196.966674] should_failslab+0x5/0x20 [ 3196.966695] kmem_cache_alloc_node+0x55/0x330 [ 3196.966722] __alloc_skb+0x6d/0x5b0 [ 3196.966760] __ip_append_data+0x2930/0x3310 [ 3196.966803] ? raw_destroy+0x30/0x30 [ 3196.966839] ? ip_finish_output+0x330/0x330 [ 3196.966861] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 3196.966878] ? ipv4_mtu+0x1ed/0x2c0 [ 3196.966904] ? raw_destroy+0x30/0x30 [ 3196.966923] ip_append_data+0x114/0x1a0 [ 3196.966956] raw_sendmsg+0xaa6/0x29d0 [ 3196.966995] ? dst_output+0x170/0x170 [ 3196.967014] ? __lock_acquire+0x1657/0x5b00 [ 3196.967057] ? perf_trace_lock+0xac/0x490 [ 3196.967075] ? SOFTIRQ_verbose+0x10/0x10 [ 3196.967094] ? create_object.isra.0+0x3ad/0xa20 [ 3196.967117] ? __lockdep_reset_lock+0x180/0x180 [ 3196.967155] ? selinux_socket_post_create+0x7f0/0x7f0 [ 3196.967172] ? find_held_lock+0x2c/0x110 [ 3196.967211] ? trace_hardirqs_on+0x5b/0x180 [ 3196.967236] ? dst_output+0x170/0x170 [ 3196.967259] inet_sendmsg+0x11d/0x140 [ 3196.967278] ? inet_send_prepare+0x540/0x540 [ 3196.967295] __sock_sendmsg+0x13c/0x190 [ 3196.967316] ____sys_sendmsg+0x334/0x870 [ 3196.967340] ? sock_write_iter+0x3d0/0x3d0 [ 3196.967357] ? do_recvmmsg+0x6d0/0x6d0 [ 3196.967376] ? perf_trace_lock+0xac/0x490 [ 3196.967404] ? __lockdep_reset_lock+0x180/0x180 [ 3196.967422] ? perf_trace_lock+0xac/0x490 [ 3196.967449] ___sys_sendmsg+0xf3/0x170 [ 3196.967471] ? sendmsg_copy_msghdr+0x160/0x160 [ 3196.967499] ? lock_downgrade+0x6d0/0x6d0 [ 3196.967529] ? lock_downgrade+0x6d0/0x6d0 [ 3196.967556] ? __fget_files+0x296/0x4c0 [ 3196.967590] ? __fget_light+0xea/0x290 [ 3196.967621] __sys_sendmmsg+0x195/0x470 [ 3196.967649] ? __ia32_sys_sendmsg+0xb0/0xb0 [ 3196.967669] ? lock_downgrade+0x6d0/0x6d0 [ 3196.967713] ? __mutex_unlock_slowpath+0xe1/0x600 [ 3196.967738] ? wait_for_completion_io+0x270/0x270 [ 3196.967763] ? rcu_read_lock_any_held+0x75/0xa0 [ 3196.967780] ? vfs_write+0x354/0xa70 [ 3196.967805] ? fput_many+0x2f/0x1a0 [ 3196.967826] ? ksys_write+0x1a9/0x260 [ 3196.967847] ? __ia32_sys_read+0xb0/0xb0 [ 3196.967877] __x64_sys_sendmmsg+0x99/0x100 [ 3196.967901] do_syscall_64+0x33/0x40 [ 3196.967920] entry_SYSCALL_64_after_hwframe+0x62/0xc7 [ 3196.967933] RIP: 0033:0x7fac065c2b19 [ 3196.967953] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 3196.967964] RSP: 002b:00007fac03b38188 EFLAGS: 00000246 ORIG_RAX: 0000000000000133 [ 3196.967987] RAX: ffffffffffffffda RBX: 00007fac066d5f60 RCX: 00007fac065c2b19 [ 3196.967998] RDX: 0000000000000001 RSI: 0000000020002040 RDI: 0000000000000003 [ 3196.968010] RBP: 00007fac03b381d0 R08: 0000000000000000 R09: 0000000000000000 [ 3196.968022] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 3196.968033] R13: 00007ffe4d4b793f R14: 00007fac03b38300 R15: 0000000000022000 [ 3197.021684] EXT4-fs (loop6): mounted filesystem without journal. Opts: ,errors=continue [ 3197.064553] udc-core: couldn't find an available UDC or it's busy [ 3197.064577] misc raw-gadget: fail, usb_gadget_probe_driver returned -19 [ 3197.154731] FAULT_INJECTION: forcing a failure. [ 3197.154731] name failslab, interval 1, probability 0, space 0, times 0 [ 3197.154826] CPU: 1 PID: 24404 Comm: syz-executor.2 Not tainted 5.10.207 #1 [ 3197.154836] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 3197.154843] Call Trace: [ 3197.154866] dump_stack+0x107/0x167 [ 3197.154893] should_fail.cold+0x5/0xa [ 3197.154915] ? __alloc_skb+0x6d/0x5b0 [ 3197.154939] should_failslab+0x5/0x20 [ 3197.154958] kmem_cache_alloc_node+0x55/0x330 [ 3197.154984] __alloc_skb+0x6d/0x5b0 [ 3197.155012] __ip_append_data+0x2930/0x3310 [ 3197.155049] ? raw_destroy+0x30/0x30 [ 3197.155083] ? ip_finish_output+0x330/0x330 [ 3197.155104] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 3197.155120] ? ipv4_mtu+0x1ed/0x2c0 [ 3197.155143] ? raw_destroy+0x30/0x30 [ 3197.155162] ip_append_data+0x114/0x1a0 [ 3197.155193] raw_sendmsg+0xaa6/0x29d0 [ 3197.155230] ? dst_output+0x170/0x170 [ 3197.155248] ? __lock_acquire+0x1657/0x5b00 [ 3197.155288] ? perf_trace_lock+0xac/0x490 [ 3197.155305] ? SOFTIRQ_verbose+0x10/0x10 [ 3197.155323] ? create_object.isra.0+0x3ad/0xa20 [ 3197.155345] ? __lockdep_reset_lock+0x180/0x180 [ 3197.155381] ? selinux_socket_post_create+0x7f0/0x7f0 [ 3197.155397] ? find_held_lock+0x2c/0x110 [ 3197.155434] ? trace_hardirqs_on+0x5b/0x180 [ 3197.155458] ? dst_output+0x170/0x170 [ 3197.155480] inet_sendmsg+0x11d/0x140 [ 3197.155498] ? inet_send_prepare+0x540/0x540 [ 3197.155515] __sock_sendmsg+0x13c/0x190 [ 3197.155535] ____sys_sendmsg+0x334/0x870 [ 3197.155558] ? sock_write_iter+0x3d0/0x3d0 [ 3197.155574] ? do_recvmmsg+0x6d0/0x6d0 [ 3197.155592] ? perf_trace_lock+0xac/0x490 [ 3197.155619] ? __lockdep_reset_lock+0x180/0x180 [ 3197.155637] ? perf_trace_lock+0xac/0x490 [ 3197.155663] ___sys_sendmsg+0xf3/0x170 [ 3197.155685] ? sendmsg_copy_msghdr+0x160/0x160 [ 3197.155711] ? lock_downgrade+0x6d0/0x6d0 [ 3197.155745] ? lock_downgrade+0x6d0/0x6d0 [ 3197.155772] ? __fget_files+0x296/0x4c0 [ 3197.155805] ? __fget_light+0xea/0x290 [ 3197.155835] __sys_sendmmsg+0x195/0x470 [ 3197.178168] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium [ 3197.178438] ? __ia32_sys_sendmsg+0xb0/0xb0 [ 3197.178460] ? lock_downgrade+0x6d0/0x6d0 [ 3197.197052] device veth0_vlan entered promiscuous mode [ 3197.197151] ? __mutex_unlock_slowpath+0xe1/0x600 [ 3197.321036] ? wait_for_completion_io+0x270/0x270 [ 3197.321062] ? rcu_read_lock_any_held+0x75/0xa0 [ 3197.321080] ? vfs_write+0x354/0xa70 [ 3197.321103] ? fput_many+0x2f/0x1a0 [ 3197.321124] ? ksys_write+0x1a9/0x260 19:58:17 executing program 1: ftruncate(0xffffffffffffffff, 0x0) fsetxattr$security_capability(0xffffffffffffffff, &(0x7f0000000640), &(0x7f0000000680)=@v1={0x1000000, [{0x5}]}, 0xc, 0x1) r0 = open(&(0x7f0000000140)='./file1\x00', 0x100, 0x38) r1 = dup3(0xffffffffffffffff, 0xffffffffffffffff, 0x0) linkat(r1, &(0x7f0000000100)='./file0\x00', 0xffffffffffffffff, &(0x7f0000000140)='./file0/file0\x00', 0x1000) statx(r1, &(0x7f0000000180)='./file1\x00', 0x100, 0x8, &(0x7f00000001c0)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0}) lstat(&(0x7f00000002c0)='./file1\x00', &(0x7f0000000300)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0}) getsockopt$inet_IP_XFRM_POLICY(0xffffffffffffffff, 0x0, 0x11, &(0x7f0000000380)={{{@in, @in6=@mcast2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}}, {{@in=@multicast1}, 0x0, @in6=@loopback}}, &(0x7f00000004c0)=0xe8) mount$9p_fd(0x0, &(0x7f0000000040)='./file1\x00', &(0x7f00000000c0), 0x2, &(0x7f0000000500)={'trans=fd,', {}, 0x2c, {'wfdno', 0x3d, r0}, 0x2c, {[{@dfltgid={'dfltgid', 0x3d, r2}}, {@posixacl}, {@loose}, {@version_u}, {@dfltgid={'dfltgid', 0x3d, r3}}, {@version_9p2000}], [{@fowner_eq={'fowner', 0x3d, r4}}, {@dont_hash}, {@defcontext={'defcontext', 0x3d, 'unconfined_u'}}, {@measure}, {@smackfshat={'smackfshat', 0x3d, '\',\'A'}}, {@seclabel}, {@pcr={'pcr', 0x3d, 0x33}}, {@defcontext={'defcontext', 0x3d, 'user_u'}}, {@appraise}]}}) openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x105142, 0x0) ioctl$AUTOFS_DEV_IOCTL_CATATONIC(0xffffffffffffffff, 0xc0189379, 0x0) mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x2000)=nil, 0x2000, 0x8, 0x10, 0xffffffffffffffff, 0x0) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x400}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r5 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$nl_generic(r5, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000480)={&(0x7f0000000080)={0x1c, 0x1d, 0xc21, 0x0, 0x0, {0x4, 0x0, 0x2}, [@typed={0x8, 0xc, 0x0, 0x0, @u32}]}, 0x1c}}, 0x0) [ 3197.321144] ? __ia32_sys_read+0xb0/0xb0 [ 3197.321174] __x64_sys_sendmmsg+0x99/0x100 [ 3197.321198] do_syscall_64+0x33/0x40 [ 3197.321216] entry_SYSCALL_64_after_hwframe+0x62/0xc7 [ 3197.321229] RIP: 0033:0x7fac065c2b19 [ 3197.321248] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 3197.321259] RSP: 002b:00007fac03b38188 EFLAGS: 00000246 ORIG_RAX: 0000000000000133 [ 3197.321280] RAX: ffffffffffffffda RBX: 00007fac066d5f60 RCX: 00007fac065c2b19 [ 3197.321292] RDX: 0000000000000001 RSI: 0000000020002040 RDI: 0000000000000003 [ 3197.321303] RBP: 00007fac03b381d0 R08: 0000000000000000 R09: 0000000000000000 [ 3197.321315] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 3197.321326] R13: 00007ffe4d4b793f R14: 00007fac03b38300 R15: 0000000000022000 [ 3197.341009] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium 19:58:17 executing program 6: syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000140)='./file0\x00', 0x40000, 0x4, &(0x7f0000000200)=[{&(0x7f0000010000)="20000000000100000c000000d40000000f000000010000000000000000000000002000000020000020000000d7f4655fd7f4655f0100ffff53ef010001000000d7f4655f000000000000000001000000000000000b0000000002", 0x5a, 0x400}, {&(0x7f0000010400)="030000000400000005000000d4000f", 0xf, 0x800}, {&(0x7f0000000500)="ffffffffff070000000000000000000000000000000000000000000000000080ffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffff", 0x402, 0xc00}, {&(0x7f0000010e00)="ed41000000040000d7f4655fd7f4655fd7f4655f000000000000040002", 0x1d, 0x1600}], 0x0, &(0x7f00000003c0)=ANY=[]) chdir(&(0x7f0000000040)='./file0\x00') openat(0xffffffffffffff9c, &(0x7f0000000080)='./file1\x00', 0x105142, 0x0) r0 = openat(0xffffffffffffff9c, &(0x7f0000000200)='./file1\x00', 0x2, 0x0) write(r0, &(0x7f0000000240)="01", 0x1) r1 = openat(0xffffffffffffff9c, &(0x7f00000000c0)='./file2\x00', 0x105142, 0x0) r2 = openat(0xffffffffffffff9c, &(0x7f0000001340)='./file1\x00', 0x0, 0x0) copy_file_range(r2, 0x0, r1, &(0x7f0000000280)=0x10b00, 0xc3a, 0x0) openat$sr(0xffffffffffffff9c, 0x0, 0x0, 0x0) 19:58:17 executing program 2: r0 = socket$inet_icmp_raw(0x2, 0x3, 0x1) r1 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a) ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000140)={'syz_tun\x00', 0x0}) perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) sendmmsg$inet(r0, &(0x7f0000002040)=[{{&(0x7f0000000380)={0x2, 0x0, @multicast1}, 0x10, &(0x7f0000001600)=[{&(0x7f00000003c0)="db9c", 0xffe7}], 0x1, &(0x7f0000001640)=ANY=[@ANYBLOB="14000000000000000000000007000000c4048f01000000001c000000000000000000000008000000", @ANYRES32=r2], 0x38}}], 0x1, 0x0) (fail_nth: 28) 19:58:17 executing program 7: syz_mount_image$ext4(&(0x7f0000000080)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0x1, &(0x7f0000000440)=[{&(0x7f0000000040)="2000000080000000060000006a0000000f000000000000000100000001000000004000000040000020000000e0f4655fe0f4655f0100ffff53ef", 0x3a, 0x400}], 0x200022, &(0x7f00000004c0)={[{@nodelalloc}, {@sb}]}) [ 3197.582019] SELinux: duplicate or incompatible mount options [ 3197.604550] FAULT_INJECTION: forcing a failure. [ 3197.604550] name failslab, interval 1, probability 0, space 0, times 0 [ 3197.605710] EXT4-fs (loop6): mounted filesystem without journal. Opts: ,errors=continue [ 3197.605904] CPU: 0 PID: 24421 Comm: syz-executor.2 Not tainted 5.10.207 #1 [ 3197.608339] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 3197.609279] Call Trace: [ 3197.609590] dump_stack+0x107/0x167 [ 3197.610028] should_fail.cold+0x5/0xa [ 3197.610471] ? create_object.isra.0+0x3a/0xa20 [ 3197.610998] should_failslab+0x5/0x20 [ 3197.611439] kmem_cache_alloc+0x5b/0x310 [ 3197.611919] create_object.isra.0+0x3a/0xa20 [ 3197.612420] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 3197.613007] kmem_cache_alloc_node+0x169/0x330 [ 3197.613567] __alloc_skb+0x6d/0x5b0 [ 3197.614026] __ip_append_data+0x2930/0x3310 [ 3197.614570] ? raw_destroy+0x30/0x30 [ 3197.615034] ? ip_finish_output+0x330/0x330 [ 3197.615551] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 3197.616159] ? ipv4_mtu+0x1ed/0x2c0 [ 3197.616603] ? raw_destroy+0x30/0x30 [ 3197.617057] ip_append_data+0x114/0x1a0 [ 3197.617547] raw_sendmsg+0xaa6/0x29d0 [ 3197.618036] ? dst_output+0x170/0x170 [ 3197.618496] ? perf_trace_run_bpf_submit+0xf5/0x190 [ 3197.619131] ? perf_trace_lock+0x2bd/0x490 [ 3197.619637] ? SOFTIRQ_verbose+0x10/0x10 [ 3197.620131] ? __lockdep_reset_lock+0x180/0x180 [ 3197.620709] ? selinux_socket_post_create+0x7f0/0x7f0 [ 3197.621329] ? find_held_lock+0x2c/0x110 [ 3197.621853] ? trace_hardirqs_on+0x5b/0x180 [ 3197.622378] ? dst_output+0x170/0x170 [ 3197.622844] inet_sendmsg+0x11d/0x140 [ 3197.623308] ? inet_send_prepare+0x540/0x540 [ 3197.623849] __sock_sendmsg+0x13c/0x190 [ 3197.624340] ____sys_sendmsg+0x334/0x870 [ 3197.624846] ? sock_write_iter+0x3d0/0x3d0 [ 3197.625356] ? do_recvmmsg+0x6d0/0x6d0 [ 3197.625842] ? perf_trace_lock+0x2bd/0x490 [ 3197.626371] ? __lockdep_reset_lock+0x180/0x180 [ 3197.626947] ___sys_sendmsg+0xf3/0x170 [ 3197.627428] ? sendmsg_copy_msghdr+0x160/0x160 [ 3197.628009] ? lock_downgrade+0x6d0/0x6d0 [ 3197.628516] ? perf_trace_run_bpf_submit+0xf5/0x190 [ 3197.629107] ? __fget_files+0x296/0x4c0 [ 3197.629600] ? __fget_light+0xea/0x290 [ 3197.630105] __sys_sendmmsg+0x195/0x470 [ 3197.630605] ? __ia32_sys_sendmsg+0xb0/0xb0 [ 3197.631134] ? lock_downgrade+0x6d0/0x6d0 [ 3197.631641] ? __mutex_unlock_slowpath+0xe1/0x600 [ 3197.632238] ? wait_for_completion_io+0x270/0x270 [ 3197.632828] ? rcu_read_lock_any_held+0x75/0xa0 [ 3197.633389] ? vfs_write+0x354/0xa70 [ 3197.633860] ? fput_many+0x2f/0x1a0 [ 3197.634306] ? ksys_write+0x1a9/0x260 [ 3197.634774] ? __ia32_sys_read+0xb0/0xb0 [ 3197.635261] __x64_sys_sendmmsg+0x99/0x100 [ 3197.635779] do_syscall_64+0x33/0x40 [ 3197.636230] entry_SYSCALL_64_after_hwframe+0x62/0xc7 [ 3197.636853] RIP: 0033:0x7fac065c2b19 [ 3197.637311] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 3197.639555] RSP: 002b:00007fac03b38188 EFLAGS: 00000246 ORIG_RAX: 0000000000000133 [ 3197.640482] RAX: ffffffffffffffda RBX: 00007fac066d5f60 RCX: 00007fac065c2b19 [ 3197.641341] RDX: 0000000000000001 RSI: 0000000020002040 RDI: 0000000000000003 [ 3197.642220] RBP: 00007fac03b381d0 R08: 0000000000000000 R09: 0000000000000000 [ 3197.643082] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 3197.643950] R13: 00007ffe4d4b793f R14: 00007fac03b38300 R15: 0000000000022000 [ 3197.646556] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium [ 3197.745511] udc-core: couldn't find an available UDC or it's busy [ 3197.746937] misc raw-gadget: fail, usb_gadget_probe_driver returned -19 19:58:32 executing program 0: r0 = openat(0xffffffffffffff9c, &(0x7f0000000280)='./file0\x00', 0x46e2, 0x0) r1 = dup3(0xffffffffffffffff, 0xffffffffffffffff, 0x0) linkat(r1, &(0x7f0000000100)='./file0\x00', 0xffffffffffffffff, &(0x7f0000000140)='./file0/file0\x00', 0x1000) mmap$IORING_OFF_SQES(&(0x7f0000ff1000/0xd000)=nil, 0xd000, 0x0, 0x20010, r1, 0x10000000) ftruncate(r0, 0x1) r2 = openat(0xffffffffffffff9c, &(0x7f00000002c0)='./file0\x00', 0x105142, 0x0) fallocate(r2, 0x3, 0x0, 0x8000) 19:58:32 executing program 5: r0 = socket$netlink(0x10, 0x3, 0x0) r1 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1) bind$bt_hci(r1, &(0x7f0000000000)={0x1f, 0xffffffffffffffff, 0x3}, 0x65) fchmod(r0, 0x0) dup2(r1, r0) sendmsg$nl_generic(r0, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000400)={0x12, 0x26, 0x0, 0x0, 0x0, {}, [@nested={0x18, 0x0, 0x0, 0x1, [@typed={0x8, 0x0, 0x0, 0x0, @uid=0xee00}, @typed={0xc, 0x0, 0x0, 0x0, @u64}]}]}, 0x2c}}, 0x0) r2 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000000), 0xffffffffffffffff) r3 = socket$nl_generic(0x10, 0x3, 0x10) ioctl$sock_SIOCGIFINDEX_80211(r3, 0x8933, &(0x7f0000000040)={'wlan1\x00', 0x0}) sendmsg$NL80211_CMD_SET_WIPHY_NETNS(r3, &(0x7f0000001740)={0x0, 0x0, &(0x7f0000000980)={&(0x7f0000000100)={0x28, r2, 0x1, 0x0, 0x0, {{}, {@void, @val={0x8, 0x3, r4}, @val={0xc}}}}, 0x28}}, 0x0) sendmsg$NL80211_CMD_FRAME_WAIT_CANCEL(r0, &(0x7f00000001c0)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x400}, 0xc, &(0x7f0000000080)={&(0x7f0000000140)={0x4c, r2, 0x2, 0x70bd2a, 0x25dfdbfe, {{}, {@val={0x8}, @void}}, [@NL80211_ATTR_COOKIE={0xc, 0x58, 0x69}, @NL80211_ATTR_COOKIE={0xc, 0x58, 0x37}, @NL80211_ATTR_COOKIE={0xc, 0x58, 0x24}, @NL80211_ATTR_COOKIE={0xc, 0x58, 0x43}]}, 0x4c}, 0x1, 0x0, 0x0, 0x20000000}, 0x20004000) 19:58:32 executing program 1: r0 = socket$inet6_udp(0xa, 0x2, 0x0) connect$inet6(r0, &(0x7f0000000600)={0xa, 0x0, 0x0, @dev, 0x3}, 0x1c) sendmmsg$inet6(r0, &(0x7f00000007c0)=[{{&(0x7f0000000180)={0xa, 0x4e20, 0x0, @remote, 0x1}, 0x1c, 0x0}}], 0x1, 0x0) setsockopt$IP6T_SO_SET_ADD_COUNTERS(r0, 0x29, 0x41, &(0x7f0000000000)={'raw\x00', 0x4, [{}, {}, {}, {}]}, 0x68) recvfrom$inet6(r0, &(0x7f0000000080)=""/162, 0xa2, 0x12060, 0x0, 0x0) 19:58:32 executing program 4: syz_80211_inject_frame(&(0x7f00000000c0)=@device_a={0x8, 0x2, 0x11, 0x0, 0x6}, &(0x7f0000000440)=ANY=[], 0x2f) 19:58:32 executing program 6: syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000140)='./file0\x00', 0x40000, 0x4, &(0x7f0000000200)=[{&(0x7f0000010000)="20000000000100000c000000d40000000f000000010000000000000000000000002000000020000020000000d7f4655fd7f4655f0100ffff53ef010001000000d7f4655f000000000000000001000000000000000b0000000002", 0x5a, 0x400}, {&(0x7f0000010400)="030000000400000005000000d4000f", 0xf, 0x800}, {&(0x7f0000000500)="ffffffffff070000000000000000000000000000000000000000000000000080ffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffff", 0x402, 0xc00}, {&(0x7f0000010e00)="ed41000000040000d7f4655fd7f4655fd7f4655f000000000000040002", 0x1d, 0x1600}], 0x0, &(0x7f00000003c0)=ANY=[]) chdir(&(0x7f0000000040)='./file0\x00') openat(0xffffffffffffff9c, &(0x7f0000000080)='./file1\x00', 0x105142, 0x0) r0 = openat(0xffffffffffffff9c, &(0x7f0000000200)='./file1\x00', 0x2, 0x0) write(r0, &(0x7f0000000240)="01", 0x1) r1 = openat(0xffffffffffffff9c, &(0x7f00000000c0)='./file2\x00', 0x105142, 0x0) r2 = openat(0xffffffffffffff9c, &(0x7f0000001340)='./file1\x00', 0x0, 0x0) copy_file_range(r2, 0x0, r1, &(0x7f0000000280)=0x10c00, 0xc3a, 0x0) openat$sr(0xffffffffffffff9c, 0x0, 0x0, 0x0) 19:58:32 executing program 3: syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000140)='./file0\x00', 0x40000, 0x4, &(0x7f0000000200)=[{&(0x7f0000010000)="20000000000100000c000000d40000000f000000010000000000000000000000002000000020000020000000d7f4655fd7f4655f0100ffff53ef010001000000d7f4655f000000000000000001000000000000000b0000000002", 0x5a, 0x400}, {&(0x7f0000010400)="030000000400000005000000d4000f", 0xf, 0x800}, {&(0x7f0000000500)="ffffffffff070000000000000000000000000000000000000000000000000080ffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffff", 0x402, 0xc00}, {&(0x7f0000010e00)="ed41000000040000d7f4655fd7f4655fd7f4655f000000000000040002", 0x1d, 0x1600}], 0x0, &(0x7f00000003c0)=ANY=[]) chdir(&(0x7f0000000040)='./file0\x00') openat(0xffffffffffffff9c, &(0x7f0000000080)='./file1\x00', 0x105142, 0x0) r0 = openat(0xffffffffffffff9c, &(0x7f0000000200)='./file1\x00', 0x2, 0x0) write(r0, &(0x7f0000000240)="01", 0x1) r1 = openat(0xffffffffffffff9c, &(0x7f00000000c0)='./file2\x00', 0x105142, 0x0) r2 = openat(0xffffffffffffff9c, &(0x7f0000001340)='./file1\x00', 0x0, 0x0) copy_file_range(r2, 0x0, r1, &(0x7f0000000280)=0x10b00, 0xc3a, 0x0) openat$sr(0xffffffffffffff9c, 0x0, 0x0, 0x0) 19:58:32 executing program 2: r0 = socket$inet_icmp_raw(0x2, 0x3, 0x1) r1 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a) ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000140)={'syz_tun\x00', 0x0}) perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) sendmmsg$inet(r0, &(0x7f0000002040)=[{{&(0x7f0000000380)={0x2, 0x0, @multicast1}, 0x10, &(0x7f0000001600)=[{&(0x7f00000003c0)="db9c", 0xffe7}], 0x1, &(0x7f0000001640)=ANY=[@ANYBLOB="14000000000000000000000007000000c4048f01000000001c000000000000000000000008000000", @ANYRES32=r2], 0x38}}], 0x1, 0x0) (fail_nth: 29) 19:58:32 executing program 7: r0 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x46e2, 0x0) r1 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffd000/0x3000)=nil, 0x3000, 0xa, 0x13, r0, 0x0) r2 = creat(&(0x7f0000000040)='./file0\x00', 0x0) r3 = socket$packet(0x11, 0x3, 0x300) ioctl$sock_SIOCGIFINDEX(0xffffffffffffffff, 0x8933, 0x0) bind$packet(r3, 0x0, 0x0) write$binfmt_elf64(r2, &(0x7f0000000280)=ANY=[], 0xfdef) r4 = syz_mount_image$iso9660(&(0x7f0000000080), &(0x7f0000000180)='./file0\x00', 0x5, 0x7, &(0x7f0000000600)=[{&(0x7f00000001c0)="500fc5", 0x3, 0x5}, {&(0x7f0000000b40)="2d7ec7bd52d0b36e727cca87e62de0cd7bf9f36bf46708b502c678d815b9066f3a8ff0b44819f9c00e6d30cb9d6d4b7b3fbe97659578aa1c71e7d5ec4dadc7bb5c8d849b13e7502b5b24c4056b63d6d829c5d97a897e217aaac5f390352e53177c5b4e67df9cc5b145625c02503c03b82d94c9cb56e114472650c05f0622978a6382e79560ef9e0ca6e58ebc631b58cab19c4c5618b2a8f1722fbe43e43ca1422077dfa06ebb07eaa16ff6ef48", 0xad, 0xffffffff}, {&(0x7f00000002c0)="71e042cd381f1e52cad979957cbe4479d9da880b47433f2b2d2c82037b38cf34720a3dc455bcb2d2a41b3186ee2bfa92aa264398932172ebb7f0bfc7dd164c428dd740543b64547829f6f2fe2d2b5d95297c87ee582ac6ff4e0e4204d1abad14dd7cb63d7314e96337c4064c3e9939b8a59bbdab2049ea60f83d3da8f5bd17372fdae4aec5cbc69abd1d13dd8f9ea6b75643147e47e61336d8693f383a9e1cd35c9bd8d3d1fc7aa20ad257bca6bfb3", 0xaf}, {&(0x7f0000000240)="0cc1cc7a58e19d7c29833efdd1", 0xd, 0xffffffffffffff1e}, {&(0x7f0000000380)="b17e1376b3b55e0fb6caefaab1dd9a98654d1f932ec0ddbc5b7a0fa475055db472dda929b3e3a336f6bae7400c86d0ecebe47e3b0a6d0ea6b6ad8dc6233ecb11043e22229e214103cf0f1298f6539a62dedcb83c73d211d959b04dff48878e9b5b8aa6bb4744b50f00ac56b05e6919cd494e7ccd6132e6ffa82b0c3aafecefae1a29a8cf961abfac4b8f41d27ab83bed1df7d0554c123302a3446846f17e1f466c3b8447420174b17e8cd3fd151a3dd6", 0xb0, 0x750a}, {&(0x7f0000000440)="aa3690e6e1e29a52ab985e99e4c83abae289039be39a4e70997ccf6a91097d2336104f28810215cce6cc350cf6dfd3203daeb7a92a642469b34ec2b5314b6690fdf5048b656783c4258ff384c78fae57d2f7e8d4fe16454037271bf2ffa8ab95d83c8917f54234387f421103579f4490623d3e189d894e78147af550f3cb195a67039cc7101514e27052bd29f06b8fcfda7b2577299c4ca85062751c67f46b95be", 0xa1, 0x3}, {&(0x7f0000000500)="1c981f59e8f812b3e9bac30422197010d3d8387edb65036facde0c6d69dc0fa5b57c2c781afc532ff427c396ee79c99a88126452deca9d5a1b4c0f34fa3196d0aade57597642cf7295c9f4f95816a1ae8f85065731645030ee2e9b0868d006ae59b730996dcbf46e916afe6dfd2e242729ebed9afd384164b1d58831c6402f77ec216b28945808cb31791520d32e16f2489c0aa821df420be444faf542631dca0570f9e2fe1bac5fce3a9dfa497c9eb39f0a3eb84f8e2a6c74e5d57773a4ce9b834ba562d912de84ff1875c3b6121691d35716e2ffd1424f62baf9e4d75081e4f3474a635e008de5d4c0e53944", 0xed, 0x4}], 0x2000, &(0x7f0000000dc0)=ANY=[@ANYBLOB="6d61703d6f66662c73657373696f6e3d3078303030303030303030300010000030312c7569643cfae27ea947fa41390189847c4a907421678eaa6f1526dcbe279968b185eb05ded6c4f80fa68766c6bfa52b99fc975b245ec578d294c73f7b9ec9218b1453a1e5256c984910b8bb0a6c3290d9d2d20b03c6d5c7946a80880d9ddffc10e09ebd485625ee4bdf0684aa6b1f5f1d656fc774c4742e533dfaa7c1100c9a5516d6f389812cc421ab30f30e329aed40a3cb378c16c7e1e2e13f8b3b32", @ANYRESDEC=0x0, @ANYBLOB=',euid=', @ANYRESDEC=0x0, @ANYBLOB=',measure,uid<', @ANYRESDEC=0xee01, @ANYBLOB=',\x00']) openat(r4, &(0x7f0000000740)='./file0\x00', 0x0, 0x2) fsetxattr$security_selinux(0xffffffffffffffff, 0x0, &(0x7f0000000140)='system_u:object_r:devtty_t:s0\x00', 0x1e, 0x0) syz_io_uring_complete(r1) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f0000000000), 0x7}}, 0x0, 0xffdfffffffffffff, 0xffffffffffffffff, 0x0) ioctl$EXT4_IOC_SWAP_BOOT(r0, 0x6611) r5 = socket$packet(0x11, 0x2, 0x300) socket$inet6_icmp_raw(0xa, 0x3, 0x3a) bind$packet(r5, &(0x7f0000000100)={0x11, 0x4, 0x0, 0x1, 0x0, 0x6, @local}, 0x14) fsetxattr$security_selinux(r5, &(0x7f00000000c0), &(0x7f0000000100)='system_u:object_r:unconfined_execmem_exec_t:s0\x00', 0x2f, 0x2) r6 = openat$zero(0xffffffffffffff9c, &(0x7f0000000200), 0x8000, 0x0) execveat(r6, &(0x7f0000000780)='./file0\x00', &(0x7f0000000900)=[&(0x7f00000007c0)='/}$:!\x00', &(0x7f0000000800)='system_u:object_r:devtty_t:s0\x00', 0xffffffffffffffff, &(0x7f0000000840)='map=off', &(0x7f0000000880)='+[\x00', &(0x7f00000008c0)='security.selinux\x00'], &(0x7f0000000b00)=[&(0x7f0000000940)='\x00', &(0x7f0000000980)='system_u:object_r:devtty_t:s0\x00', &(0x7f00000009c0)='-\x00', &(0x7f0000000a00)='$(@^%\x00', &(0x7f00000006c0)='\xad\xc8\xa0\xca\x99\x8f\x95\x1e\xff\xa1\xad\f%{#{\\Gb)\x00', &(0x7f0000000a80)='-[!\"/)\x11h!\x00', &(0x7f0000000ac0)='security.selinux\x00'], 0x1000) ioctl$sock_inet_SIOCSIFDSTADDR(0xffffffffffffffff, 0x8918, &(0x7f0000000280)={'team0\x00'}) [ 3212.630102] Bluetooth: hci0: load_link_keys: expected 3 bytes, got 38 bytes [ 3212.654694] audit: type=1400 audit(1705348712.602:228): avc: denied { relabelto } for pid=24438 comm="syz-executor.7" name="PACKET" dev="sockfs" ino=63145 scontext=system_u:system_r:kernel_t:s0 tcontext=system_u:object_r:unconfined_execmem_exec_t:s0 tclass=packet_socket permissive=1 19:58:32 executing program 3: syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000140)='./file0\x00', 0x40000, 0x4, &(0x7f0000000200)=[{&(0x7f0000010000)="20000000000100000c000000d40000000f000000010000000000000000000000002000000020000020000000d7f4655fd7f4655f0100ffff53ef010001000000d7f4655f000000000000000001000000000000000b0000000002", 0x5a, 0x400}, {&(0x7f0000010400)="030000000400000005000000d4000f", 0xf, 0x800}, {&(0x7f0000000500)="ffffffffff070000000000000000000000000000000000000000000000000080ffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffff", 0x402, 0xc00}, {&(0x7f0000010e00)="ed41000000040000d7f4655fd7f4655fd7f4655f000000000000040002", 0x1d, 0x1600}], 0x0, &(0x7f00000003c0)=ANY=[]) chdir(&(0x7f0000000040)='./file0\x00') openat(0xffffffffffffff9c, &(0x7f0000000080)='./file1\x00', 0x105142, 0x0) r0 = openat(0xffffffffffffff9c, &(0x7f0000000200)='./file1\x00', 0x2, 0x0) write(r0, &(0x7f0000000240)="01", 0x1) r1 = openat(0xffffffffffffff9c, &(0x7f00000000c0)='./file2\x00', 0x105142, 0x0) r2 = openat(0xffffffffffffff9c, &(0x7f0000001340)='./file1\x00', 0x0, 0x0) copy_file_range(r2, 0x0, r1, &(0x7f0000000280)=0x10b00, 0xc3a, 0x0) openat$sr(0xffffffffffffff9c, 0x0, 0x0, 0x0) [ 3212.678487] FAULT_INJECTION: forcing a failure. [ 3212.678487] name failslab, interval 1, probability 0, space 0, times 0 [ 3212.681006] CPU: 0 PID: 24455 Comm: syz-executor.2 Not tainted 5.10.207 #1 [ 3212.682526] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 3212.684346] Call Trace: [ 3212.684940] dump_stack+0x107/0x167 [ 3212.685754] should_fail.cold+0x5/0xa [ 3212.686616] ? create_object.isra.0+0x3a/0xa20 [ 3212.687631] should_failslab+0x5/0x20 [ 3212.688472] kmem_cache_alloc+0x5b/0x310 [ 3212.689377] create_object.isra.0+0x3a/0xa20 [ 3212.690349] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 3212.691473] __kmalloc_node_track_caller+0x1a6/0x3b0 [ 3212.692581] ? __ip_append_data+0x2930/0x3310 [ 3212.693579] __alloc_skb+0xb1/0x5b0 [ 3212.694399] __ip_append_data+0x2930/0x3310 [ 3212.695379] ? raw_destroy+0x30/0x30 [ 3212.696247] ? ip_finish_output+0x330/0x330 [ 3212.697193] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 3212.698305] ? ipv4_mtu+0x1ed/0x2c0 [ 3212.699111] ? raw_destroy+0x30/0x30 [ 3212.699928] ip_append_data+0x114/0x1a0 [ 3212.700820] raw_sendmsg+0xaa6/0x29d0 [ 3212.701686] ? dst_output+0x170/0x170 [ 3212.702524] ? perf_trace_run_bpf_submit+0xf5/0x190 [ 3212.703645] ? perf_trace_lock+0x2bd/0x490 [ 3212.704567] ? SOFTIRQ_verbose+0x10/0x10 [ 3212.705470] ? __lockdep_reset_lock+0x180/0x180 [ 3212.706316] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium [ 3212.706524] ? selinux_socket_post_create+0x7f0/0x7f0 [ 3212.709532] ? find_held_lock+0x2c/0x110 [ 3212.710473] ? trace_hardirqs_on+0x5b/0x180 [ 3212.711431] ? dst_output+0x170/0x170 [ 3212.712278] inet_sendmsg+0x11d/0x140 [ 3212.713120] ? inet_send_prepare+0x540/0x540 [ 3212.714091] __sock_sendmsg+0x13c/0x190 [ 3212.714964] ____sys_sendmsg+0x334/0x870 [ 3212.715862] ? sock_write_iter+0x3d0/0x3d0 [ 3212.716778] ? do_recvmmsg+0x6d0/0x6d0 [ 3212.717626] ? perf_trace_lock+0x2bd/0x490 [ 3212.718585] ? __lockdep_reset_lock+0x180/0x180 [ 3212.719616] ___sys_sendmsg+0xf3/0x170 [ 3212.720471] ? sendmsg_copy_msghdr+0x160/0x160 [ 3212.721481] ? lock_downgrade+0x6d0/0x6d0 [ 3212.722405] ? perf_trace_run_bpf_submit+0xf5/0x190 [ 3212.723513] ? __fget_files+0x296/0x4c0 [ 3212.724411] ? __fget_light+0xea/0x290 [ 3212.725287] __sys_sendmmsg+0x195/0x470 [ 3212.726189] ? __ia32_sys_sendmsg+0xb0/0xb0 [ 3212.727130] ? lock_downgrade+0x6d0/0x6d0 [ 3212.728086] ? __mutex_unlock_slowpath+0xe1/0x600 [ 3212.729146] ? wait_for_completion_io+0x270/0x270 [ 3212.730209] ? rcu_read_lock_any_held+0x75/0xa0 [ 3212.731216] ? vfs_write+0x354/0xa70 [ 3212.732042] ? fput_many+0x2f/0x1a0 [ 3212.732840] ? ksys_write+0x1a9/0x260 [ 3212.733670] ? __ia32_sys_read+0xb0/0xb0 [ 3212.734594] __x64_sys_sendmmsg+0x99/0x100 [ 3212.735523] do_syscall_64+0x33/0x40 [ 3212.736335] entry_SYSCALL_64_after_hwframe+0x62/0xc7 [ 3212.737446] RIP: 0033:0x7fac065c2b19 [ 3212.738267] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 3212.742254] RSP: 002b:00007fac03b38188 EFLAGS: 00000246 ORIG_RAX: 0000000000000133 [ 3212.743912] RAX: ffffffffffffffda RBX: 00007fac066d5f60 RCX: 00007fac065c2b19 [ 3212.745461] RDX: 0000000000000001 RSI: 0000000020002040 RDI: 0000000000000003 [ 3212.747053] RBP: 00007fac03b381d0 R08: 0000000000000000 R09: 0000000000000000 [ 3212.748607] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 3212.750168] R13: 00007ffe4d4b793f R14: 00007fac03b38300 R15: 0000000000022000 [ 3212.775673] Bluetooth: hci0: load_link_keys: expected 3 bytes, got 38 bytes [ 3212.780417] EXT4-fs (loop6): mounted filesystem without journal. Opts: ,errors=continue [ 3217.624808] Bluetooth: hci2: command 0x0409 tx timeout [ 3219.672888] Bluetooth: hci2: command 0x041b tx timeout [ 3221.720825] Bluetooth: hci2: command 0x040f tx timeout [ 3222.821563] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 3222.823363] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 3222.826655] IPv6: ADDRCONF(NETDEV_CHANGE): wlan0: link becomes ready [ 3222.884358] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 3222.886358] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 3222.889082] IPv6: ADDRCONF(NETDEV_CHANGE): wlan1: link becomes ready [ 3223.044362] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium [ 3223.350972] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium [ 3223.768832] Bluetooth: hci2: command 0x0419 tx timeout 19:58:59 executing program 5: perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7, 0x2, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) perf_event_open(&(0x7f0000001d80)={0x6, 0x80, 0x0, 0x0, 0x6, 0xf9, 0x4, 0x0, 0x80, 0x6, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffd, 0x4, @perf_config_ext={0xffff, 0xe1}, 0x10, 0x95, 0x0, 0x9, 0x1, 0x3, 0x0, 0x0, 0x3, 0x0, 0x1}, 0xffffffffffffffff, 0x0, 0xffffffffffffffff, 0x0) futex(0x0, 0x2, 0x2, 0x0, &(0x7f0000000140), 0x0) perf_event_open(0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r0 = openat$ttyS3(0xffffffffffffff9c, 0x0, 0x0, 0x0) ioctl$F2FS_IOC_GET_FEATURES(0xffffffffffffffff, 0x8004f50c, &(0x7f0000000440)) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0xf4, 0x0, 0x0, 0x0, 0x0, 0x5b, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0, 0x1}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x40000000}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r1 = openat$procfs(0xffffffffffffff9c, &(0x7f00000004c0)='/proc/timer_list\x00', 0x0, 0x0) lseek(r1, 0x9e46, 0x0) ioctl$TIOCCBRK(r0, 0x5428) openat$vcs(0xffffffffffffff9c, 0x0, 0x20000, 0x0) ioctl$F2FS_IOC_GARBAGE_COLLECT(0xffffffffffffffff, 0x4004f506, &(0x7f0000000540)=0x1) openat$hwrng(0xffffffffffffff9c, 0x0, 0x0, 0x0) syz_io_uring_submit(0x0, 0x0, &(0x7f00000001c0)=@IORING_OP_LINK_TIMEOUT={0xf, 0x4, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1}, 0x0) connect$inet6(0xffffffffffffffff, &(0x7f0000000000)={0xa, 0x0, 0x0, @local}, 0x1c) r2 = fork() ioctl$EXT4_IOC_ALLOC_DA_BLKS(0xffffffffffffffff, 0x660c) ioctl$AUTOFS_IOC_EXPIRE(0xffffffffffffffff, 0x810c9365, &(0x7f0000000200)={{0x2, 0x7}, 0x100, './file0\x00'}) ptrace(0x10, r2) ptrace(0x4207, r2) 19:58:59 executing program 0: perf_event_open(&(0x7f0000001d80)={0x2, 0x80, 0x46, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0xffff, 0x2}, 0x0, 0x0, 0x0, 0x0, 0x3}, 0x0, 0x0, 0xffffffffffffffff, 0x0) clone3(&(0x7f0000000200)={0x31081000, &(0x7f0000000100), 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) r0 = dup3(0xffffffffffffffff, 0xffffffffffffffff, 0x0) linkat(r0, &(0x7f0000000100)='./file0\x00', 0xffffffffffffffff, &(0x7f0000000140)='./file0/file0\x00', 0x1000) mount$9p_fd(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000000040), 0x104001, &(0x7f0000000280)={'trans=fd,', {}, 0x2c, {'wfdno', 0x3d, r0}, 0x2c, {[{@version_9p2000}, {@fscache}, {@cache_fscache}, {@debug={'debug', 0x3d, 0x100000000}}, {@cache_loose}, {@cache_mmap}], [{@permit_directio}, {@defcontext={'defcontext', 0x3d, 'unconfined_u'}}, {@fsname={'fsname', 0x3d, '^'}}, {@subj_type={'subj_type', 0x3d, '(-}#'}}]}}) 19:58:59 executing program 4: syz_80211_inject_frame(&(0x7f00000000c0)=@device_a={0x8, 0x2, 0x11, 0x0, 0x7}, &(0x7f0000000440)=ANY=[], 0x2f) 19:58:59 executing program 7: r0 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x46e2, 0x0) r1 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffd000/0x3000)=nil, 0x3000, 0xa, 0x13, r0, 0x0) r2 = creat(&(0x7f0000000040)='./file0\x00', 0x0) r3 = socket$packet(0x11, 0x3, 0x300) ioctl$sock_SIOCGIFINDEX(0xffffffffffffffff, 0x8933, 0x0) bind$packet(r3, 0x0, 0x0) write$binfmt_elf64(r2, &(0x7f0000000280)=ANY=[], 0xfdef) r4 = syz_mount_image$iso9660(&(0x7f0000000080), &(0x7f0000000180)='./file0\x00', 0x5, 0x7, &(0x7f0000000600)=[{&(0x7f00000001c0)="500fc5", 0x3, 0x5}, {&(0x7f0000000b40)="2d7ec7bd52d0b36e727cca87e62de0cd7bf9f36bf46708b502c678d815b9066f3a8ff0b44819f9c00e6d30cb9d6d4b7b3fbe97659578aa1c71e7d5ec4dadc7bb5c8d849b13e7502b5b24c4056b63d6d829c5d97a897e217aaac5f390352e53177c5b4e67df9cc5b145625c02503c03b82d94c9cb56e114472650c05f0622978a6382e79560ef9e0ca6e58ebc631b58cab19c4c5618b2a8f1722fbe43e43ca1422077dfa06ebb07eaa16ff6ef48", 0xad, 0xffffffff}, {&(0x7f00000002c0)="71e042cd381f1e52cad979957cbe4479d9da880b47433f2b2d2c82037b38cf34720a3dc455bcb2d2a41b3186ee2bfa92aa264398932172ebb7f0bfc7dd164c428dd740543b64547829f6f2fe2d2b5d95297c87ee582ac6ff4e0e4204d1abad14dd7cb63d7314e96337c4064c3e9939b8a59bbdab2049ea60f83d3da8f5bd17372fdae4aec5cbc69abd1d13dd8f9ea6b75643147e47e61336d8693f383a9e1cd35c9bd8d3d1fc7aa20ad257bca6bfb3", 0xaf}, {&(0x7f0000000240)="0cc1cc7a58e19d7c29833efdd1", 0xd, 0xffffffffffffff1e}, {&(0x7f0000000380)="b17e1376b3b55e0fb6caefaab1dd9a98654d1f932ec0ddbc5b7a0fa475055db472dda929b3e3a336f6bae7400c86d0ecebe47e3b0a6d0ea6b6ad8dc6233ecb11043e22229e214103cf0f1298f6539a62dedcb83c73d211d959b04dff48878e9b5b8aa6bb4744b50f00ac56b05e6919cd494e7ccd6132e6ffa82b0c3aafecefae1a29a8cf961abfac4b8f41d27ab83bed1df7d0554c123302a3446846f17e1f466c3b8447420174b17e8cd3fd151a3dd6", 0xb0, 0x750a}, {&(0x7f0000000440)="aa3690e6e1e29a52ab985e99e4c83abae289039be39a4e70997ccf6a91097d2336104f28810215cce6cc350cf6dfd3203daeb7a92a642469b34ec2b5314b6690fdf5048b656783c4258ff384c78fae57d2f7e8d4fe16454037271bf2ffa8ab95d83c8917f54234387f421103579f4490623d3e189d894e78147af550f3cb195a67039cc7101514e27052bd29f06b8fcfda7b2577299c4ca85062751c67f46b95be", 0xa1, 0x3}, {&(0x7f0000000500)="1c981f59e8f812b3e9bac30422197010d3d8387edb65036facde0c6d69dc0fa5b57c2c781afc532ff427c396ee79c99a88126452deca9d5a1b4c0f34fa3196d0aade57597642cf7295c9f4f95816a1ae8f85065731645030ee2e9b0868d006ae59b730996dcbf46e916afe6dfd2e242729ebed9afd384164b1d58831c6402f77ec216b28945808cb31791520d32e16f2489c0aa821df420be444faf542631dca0570f9e2fe1bac5fce3a9dfa497c9eb39f0a3eb84f8e2a6c74e5d57773a4ce9b834ba562d912de84ff1875c3b6121691d35716e2ffd1424f62baf9e4d75081e4f3474a635e008de5d4c0e53944", 0xed, 0x4}], 0x2000, &(0x7f0000000dc0)=ANY=[@ANYBLOB="6d61703d6f66662c73657373696f6e3d3078303030303030303030300010000030312c7569643cfae27ea947fa41390189847c4a907421678eaa6f1526dcbe279968b185eb05ded6c4f80fa68766c6bfa52b99fc975b245ec578d294c73f7b9ec9218b1453a1e5256c984910b8bb0a6c3290d9d2d20b03c6d5c7946a80880d9ddffc10e09ebd485625ee4bdf0684aa6b1f5f1d656fc774c4742e533dfaa7c1100c9a5516d6f389812cc421ab30f30e329aed40a3cb378c16c7e1e2e13f8b3b32", @ANYRESDEC=0x0, @ANYBLOB=',euid=', @ANYRESDEC=0x0, @ANYBLOB=',measure,uid<', @ANYRESDEC=0xee01, @ANYBLOB=',\x00']) openat(r4, &(0x7f0000000740)='./file0\x00', 0x0, 0x2) fsetxattr$security_selinux(0xffffffffffffffff, 0x0, &(0x7f0000000140)='system_u:object_r:devtty_t:s0\x00', 0x1e, 0x0) syz_io_uring_complete(r1) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f0000000000), 0x7}}, 0x0, 0xffdfffffffffffff, 0xffffffffffffffff, 0x0) ioctl$EXT4_IOC_SWAP_BOOT(r0, 0x6611) r5 = socket$packet(0x11, 0x2, 0x300) socket$inet6_icmp_raw(0xa, 0x3, 0x3a) bind$packet(r5, &(0x7f0000000100)={0x11, 0x4, 0x0, 0x1, 0x0, 0x6, @local}, 0x14) fsetxattr$security_selinux(r5, &(0x7f00000000c0), &(0x7f0000000100)='system_u:object_r:unconfined_execmem_exec_t:s0\x00', 0x2f, 0x2) r6 = openat$zero(0xffffffffffffff9c, &(0x7f0000000200), 0x8000, 0x0) execveat(r6, &(0x7f0000000780)='./file0\x00', &(0x7f0000000900)=[&(0x7f00000007c0)='/}$:!\x00', &(0x7f0000000800)='system_u:object_r:devtty_t:s0\x00', 0xffffffffffffffff, &(0x7f0000000840)='map=off', &(0x7f0000000880)='+[\x00', &(0x7f00000008c0)='security.selinux\x00'], &(0x7f0000000b00)=[&(0x7f0000000940)='\x00', &(0x7f0000000980)='system_u:object_r:devtty_t:s0\x00', &(0x7f00000009c0)='-\x00', &(0x7f0000000a00)='$(@^%\x00', &(0x7f00000006c0)='\xad\xc8\xa0\xca\x99\x8f\x95\x1e\xff\xa1\xad\f%{#{\\Gb)\x00', &(0x7f0000000a80)='-[!\"/)\x11h!\x00', &(0x7f0000000ac0)='security.selinux\x00'], 0x1000) ioctl$sock_inet_SIOCSIFDSTADDR(0xffffffffffffffff, 0x8918, &(0x7f0000000280)={'team0\x00'}) 19:58:59 executing program 3: syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000140)='./file0\x00', 0x40000, 0x4, &(0x7f0000000200)=[{&(0x7f0000010000)="20000000000100000c000000d40000000f000000010000000000000000000000002000000020000020000000d7f4655fd7f4655f0100ffff53ef010001000000d7f4655f000000000000000001000000000000000b0000000002", 0x5a, 0x400}, {&(0x7f0000010400)="030000000400000005000000d4000f", 0xf, 0x800}, {&(0x7f0000000500)="ffffffffff070000000000000000000000000000000000000000000000000080ffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffff", 0x402, 0xc00}, {&(0x7f0000010e00)="ed41000000040000d7f4655fd7f4655fd7f4655f000000000000040002", 0x1d, 0x1600}], 0x0, &(0x7f00000003c0)=ANY=[]) chdir(&(0x7f0000000040)='./file0\x00') openat(0xffffffffffffff9c, &(0x7f0000000080)='./file1\x00', 0x105142, 0x0) r0 = openat(0xffffffffffffff9c, &(0x7f0000000200)='./file1\x00', 0x2, 0x0) write(r0, &(0x7f0000000240)="01", 0x1) r1 = openat(0xffffffffffffff9c, &(0x7f00000000c0)='./file2\x00', 0x105142, 0x0) r2 = openat(0xffffffffffffff9c, &(0x7f0000001340)='./file1\x00', 0x0, 0x0) copy_file_range(r2, 0x0, r1, &(0x7f0000000280)=0x10b00, 0xc3a, 0x0) openat$sr(0xffffffffffffff9c, 0x0, 0x0, 0x0) [ 3240.056362] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium 19:59:00 executing program 2: r0 = socket$inet_icmp_raw(0x2, 0x3, 0x1) r1 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a) ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000140)={'syz_tun\x00', 0x0}) perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) sendmmsg$inet(r0, &(0x7f0000002040)=[{{&(0x7f0000000380)={0x2, 0x0, @multicast1}, 0x10, &(0x7f0000001600)=[{&(0x7f00000003c0)="db9c", 0xffe7}], 0x1, &(0x7f0000001640)=ANY=[@ANYBLOB="14000000000000000000000007000000c4048f01000000001c000000000000000000000008000000", @ANYRES32=r2], 0x38}}], 0x1, 0x0) (fail_nth: 30) 19:59:00 executing program 6: syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000140)='./file0\x00', 0x40000, 0x4, &(0x7f0000000200)=[{&(0x7f0000010000)="20000000000100000c000000d40000000f000000010000000000000000000000002000000020000020000000d7f4655fd7f4655f0100ffff53ef010001000000d7f4655f000000000000000001000000000000000b0000000002", 0x5a, 0x400}, {&(0x7f0000010400)="030000000400000005000000d4000f", 0xf, 0x800}, {&(0x7f0000000500)="ffffffffff070000000000000000000000000000000000000000000000000080ffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffff", 0x402, 0xc00}, {&(0x7f0000010e00)="ed41000000040000d7f4655fd7f4655fd7f4655f000000000000040002", 0x1d, 0x1600}], 0x0, &(0x7f00000003c0)=ANY=[]) chdir(&(0x7f0000000040)='./file0\x00') openat(0xffffffffffffff9c, &(0x7f0000000080)='./file1\x00', 0x105142, 0x0) r0 = openat(0xffffffffffffff9c, &(0x7f0000000200)='./file1\x00', 0x2, 0x0) write(r0, &(0x7f0000000240)="01", 0x1) r1 = openat(0xffffffffffffff9c, &(0x7f00000000c0)='./file2\x00', 0x105142, 0x0) r2 = openat(0xffffffffffffff9c, &(0x7f0000001340)='./file1\x00', 0x0, 0x0) copy_file_range(r2, 0x0, r1, &(0x7f0000000280)=0x10c3a, 0xc3a, 0x0) openat$sr(0xffffffffffffff9c, 0x0, 0x0, 0x0) 19:59:00 executing program 1: r0 = perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x40, 0x0, 0x0, 0x0, 0x5e, 0x0, 0xc, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0, 0x5}, 0x10000, 0x0, 0x2, 0xe, 0x0, 0x2}, 0x0, 0x7, 0xffffffffffffffff, 0x0) r1 = openat$ttyS3(0xffffffffffffff9c, &(0x7f0000000480), 0x0, 0x0) perf_event_open(&(0x7f0000001d80)={0x4, 0x80, 0x1, 0x0, 0x0, 0x0, 0x0, 0x5c, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7fff, 0x4, @perf_bp={&(0x7f0000000200)}, 0x8a00, 0xffffffff, 0x7af6436a, 0x7, 0x0, 0x10008000, 0xfffd}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x1) ioctl$FS_IOC_GETFSMAP(r0, 0xc0c0583b, &(0x7f0000000b80)=ANY=[@ANYBLOB="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"]) lseek(0xffffffffffffffff, 0x0, 0x0) ioctl$TIOCL_SCROLLCONSOLE(r1, 0x5453, 0x0) r2 = syz_open_dev$tty1(0xc, 0x4, 0x4) ioctl$KDSETKEYCODE(r2, 0x4b4d, &(0x7f0000000040)={0x4, 0x4}) fcntl$getown(r1, 0x9) socket$inet6_udplite(0xa, 0x2, 0x88) syz_io_uring_setup(0x752d, &(0x7f0000000380)={0x0, 0x52b2, 0x2, 0x1, 0x68}, &(0x7f0000ffb000/0x3000)=nil, &(0x7f0000ffb000/0x3000)=nil, &(0x7f00000001c0), &(0x7f0000000400)) clock_gettime(0x0, 0x0) r3 = openat(0xffffffffffffff9c, &(0x7f0000000280)='./file1\x00', 0x46e2, 0x0) r4 = openat(0xffffffffffffff9c, &(0x7f00000002c0)='./file1\x00', 0x105142, 0x0) copy_file_range(r3, &(0x7f0000000100)=0xfffffffffffff674, r4, 0x0, 0x0, 0x0) ioctl$INCFS_IOC_GET_FILLED_BLOCKS(r4, 0x80286722, &(0x7f0000000180)={&(0x7f0000000080)=""/204, 0xcc, 0x10f3, 0x1}) r5 = syz_open_procfs(0x0, &(0x7f0000000000)='mounts\x00') readv(r5, &(0x7f0000001600)=[{&(0x7f00000004c0)=""/4096, 0x1000}], 0x1) mmap$IORING_OFF_SQ_RING(&(0x7f0000ffd000/0x3000)=nil, 0x3000, 0x3000001, 0x8010, r5, 0x0) getsockname(0xffffffffffffffff, &(0x7f0000000300)=@sco={0x1f, @fixed}, &(0x7f0000000240)=0x80) [ 3240.121110] FAULT_INJECTION: forcing a failure. [ 3240.121110] name failslab, interval 1, probability 0, space 0, times 0 [ 3240.123487] CPU: 1 PID: 25051 Comm: syz-executor.2 Not tainted 5.10.207 #1 [ 3240.124885] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 3240.126571] Call Trace: [ 3240.127114] dump_stack+0x107/0x167 [ 3240.127869] should_fail.cold+0x5/0xa [ 3240.128644] ? __alloc_skb+0x6d/0x5b0 [ 3240.129410] should_failslab+0x5/0x20 [ 3240.130185] kmem_cache_alloc_node+0x55/0x330 [ 3240.131126] __alloc_skb+0x6d/0x5b0 [ 3240.131880] __ip_append_data+0x2930/0x3310 [ 3240.132775] ? raw_destroy+0x30/0x30 [ 3240.133552] ? ip_finish_output+0x330/0x330 [ 3240.134431] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 3240.135462] ? ipv4_mtu+0x1ed/0x2c0 [ 3240.136210] ? raw_destroy+0x30/0x30 [ 3240.136974] ip_append_data+0x114/0x1a0 [ 3240.137792] raw_sendmsg+0xaa6/0x29d0 [ 3240.138615] ? dst_output+0x170/0x170 [ 3240.139398] ? __lock_acquire+0x1657/0x5b00 19:59:00 executing program 3: syz_io_uring_submit(0x0, 0x0, &(0x7f00000000c0)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, 0xffffffffffffffff, 0x80, &(0x7f0000000040)=@ieee802154={0x24, @none={0x0, 0x3}}, 0x0, 0x0, 0x9a898e323f1e9374}, 0x1000) epoll_create1(0x0) r0 = perf_event_open(&(0x7f0000001d80)={0x2, 0x80, 0x94, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r1 = epoll_create1(0x0) r2 = epoll_create(0x6) r3 = perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) epoll_ctl$EPOLL_CTL_ADD(r2, 0x1, r1, &(0x7f0000000200)={0x20000001}) r4 = syz_open_dev$evdev(&(0x7f0000000000), 0x0, 0x0) dup3(0xffffffffffffffff, r4, 0x0) epoll_ctl$EPOLL_CTL_ADD(r2, 0x1, r4, &(0x7f0000000000)={0x40000001}) dup2(r3, r1) stat(&(0x7f0000000300)='./file0\x00', &(0x7f0000000340)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0}) syz_mount_image$ext4(&(0x7f0000000100)='ext3\x00', &(0x7f0000000140)='\x00', 0x3, 0x2, &(0x7f00000002c0)=[{&(0x7f0000000180)="370fe0093636ed1800cf6b1111519478796b5a6c2b71f3efd91dde46d9a04662c93f0f9ce83eec73ea4a84c905aefeb44be0fd40fa39e41ff9576d5b687526eec89da3d6c84f", 0x46, 0x200}, {&(0x7f0000000240)="4bbe8ac6bb47461b50b5dc7232f0a9e13edd8673be640ed20619a7da2ffc6ecca7801c94f7b137be9fa3f4b2578802c054b63700b3ada19162bc7cc7298a4fcbacd1530ebe734cb41bbc3f673b9b1173535eb8ce078dda067031265eebe19a3823a60ad6c53cbcddc1ff05b52d70ef6199be5316e1e1d3e031a7c2fd", 0x7c, 0x80}], 0x20c00, &(0x7f0000000540)=ANY=[@ANYBLOB="82a232e46777a10f577f2147356ad43457af1a663cb7cc63aad7770dd565d44b23b5d7ef237ddf88e8961a627871abfef2f345975905ed37824c947c5566beeda15131ebee99009d2e144608e7c9d73489ea4614477c398b1301b7a7ddab1866d497e98ac52ad089fbb20207ea14f88ee902a9d4ef0761c22408b03e88aa6cb800400a72bcb4f6903bc63af0010069c57089d34136de87bbf66aec2a86924e293f66c9bfbb46191194761e8399130bf4886ae32dad078bff1c73178c391afb79a0b134df13977eecfb23", @ANYRESHEX=r5, @ANYBLOB=',noauto_da_alloc,abort,grpid,journal_async_commit,discard,oldalloc,grpquota,discard,dont_appraise,fsname=\x00,\x00']) ioctl$PERF_EVENT_IOC_SET_OUTPUT(r3, 0x2405, r0) epoll_create(0x6) perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0) r6 = perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) write$binfmt_elf32(r6, &(0x7f0000001e00)={{0x7f, 0x45, 0x4c, 0x46, 0xd1, 0xf2, 0x1, 0x4, 0x37c5, 0x3, 0x3, 0xc6, 0x5d, 0x38, 0x326, 0x5d, 0xfffc, 0x20, 0x2, 0x800, 0x7, 0x7fff}, [{0x6474e554, 0x4, 0x180, 0x1, 0x7, 0x401, 0x7ff, 0x5ba}, {0x4, 0x0, 0x3ff, 0x9, 0x3, 0x4, 0x0, 0x7ff}], "26f187e682d6ce10e88d558abfbb2bf6cc25ce8b6f2c32", ['\x00', '\x00', '\x00', '\x00', '\x00']}, 0x58f) mmap$perf(&(0x7f0000ffc000/0x2000)=nil, 0x2000, 0x0, 0x10, r6, 0x1f) ioctl$F2FS_IOC_RESERVE_COMPRESS_BLOCKS(0xffffffffffffffff, 0x8008f513, 0x0) [ 3240.140308] ? perf_trace_lock+0xac/0x490 [ 3240.141354] ? SOFTIRQ_verbose+0x10/0x10 [ 3240.142194] ? create_object.isra.0+0x3ad/0xa20 [ 3240.143160] ? __lockdep_reset_lock+0x180/0x180 [ 3240.144128] ? selinux_socket_post_create+0x7f0/0x7f0 [ 3240.145184] ? find_held_lock+0x2c/0x110 [ 3240.146039] ? trace_hardirqs_on+0x5b/0x180 [ 3240.146952] ? dst_output+0x170/0x170 [ 3240.147738] inet_sendmsg+0x11d/0x140 [ 3240.148515] ? inet_send_prepare+0x540/0x540 [ 3240.149407] __sock_sendmsg+0x13c/0x190 [ 3240.150238] ____sys_sendmsg+0x334/0x870 [ 3240.151080] ? sock_write_iter+0x3d0/0x3d0 [ 3240.151941] ? do_recvmmsg+0x6d0/0x6d0 [ 3240.152740] ? perf_trace_lock+0xac/0x490 [ 3240.153596] ? __lockdep_reset_lock+0x180/0x180 [ 3240.154555] ? perf_trace_lock+0xac/0x490 [ 3240.155437] ___sys_sendmsg+0xf3/0x170 [ 3240.156229] ? sendmsg_copy_msghdr+0x160/0x160 [ 3240.157160] ? lock_downgrade+0x6d0/0x6d0 [ 3240.158010] ? lock_downgrade+0x6d0/0x6d0 [ 3240.158879] ? __fget_files+0x296/0x4c0 [ 3240.159699] ? __fget_light+0xea/0x290 [ 3240.160499] __sys_sendmmsg+0x195/0x470 [ 3240.161315] ? __ia32_sys_sendmsg+0xb0/0xb0 [ 3240.162188] ? lock_downgrade+0x6d0/0x6d0 [ 3240.163058] ? __mutex_unlock_slowpath+0xe1/0x600 [ 3240.164056] ? wait_for_completion_io+0x270/0x270 [ 3240.165038] ? rcu_read_lock_any_held+0x75/0xa0 [ 3240.165989] ? vfs_write+0x354/0xa70 [ 3240.166764] ? fput_many+0x2f/0x1a0 [ 3240.167519] ? ksys_write+0x1a9/0x260 [ 3240.168307] ? __ia32_sys_read+0xb0/0xb0 [ 3240.169160] __x64_sys_sendmmsg+0x99/0x100 [ 3240.170040] do_syscall_64+0x33/0x40 [ 3240.170836] entry_SYSCALL_64_after_hwframe+0x62/0xc7 [ 3240.171894] RIP: 0033:0x7fac065c2b19 [ 3240.172654] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 3240.176439] RSP: 002b:00007fac03b38188 EFLAGS: 00000246 ORIG_RAX: 0000000000000133 [ 3240.177992] RAX: ffffffffffffffda RBX: 00007fac066d5f60 RCX: 00007fac065c2b19 [ 3240.179471] RDX: 0000000000000001 RSI: 0000000020002040 RDI: 0000000000000003 [ 3240.180927] RBP: 00007fac03b381d0 R08: 0000000000000000 R09: 0000000000000000 [ 3240.182386] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 3240.183842] R13: 00007ffe4d4b793f R14: 00007fac03b38300 R15: 0000000000022000 [ 3240.265885] EXT4-fs (loop6): mounted filesystem without journal. Opts: ,errors=continue 19:59:00 executing program 0: perf_event_open(&(0x7f0000001d80)={0x2, 0x80, 0x46, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0xffff, 0x2}, 0x0, 0x0, 0x0, 0x0, 0x3}, 0x0, 0x0, 0xffffffffffffffff, 0x0) clone3(&(0x7f0000000200)={0x31081000, &(0x7f0000000100), 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) r0 = dup3(0xffffffffffffffff, 0xffffffffffffffff, 0x0) linkat(r0, &(0x7f0000000100)='./file0\x00', 0xffffffffffffffff, &(0x7f0000000140)='./file0/file0\x00', 0x1000) mount$9p_fd(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000000040), 0x104001, &(0x7f0000000280)={'trans=fd,', {}, 0x2c, {'wfdno', 0x3d, r0}, 0x2c, {[{@version_9p2000}, {@fscache}, {@cache_fscache}, {@debug={'debug', 0x3d, 0x100000000}}, {@cache_loose}, {@cache_mmap}], [{@permit_directio}, {@defcontext={'defcontext', 0x3d, 'unconfined_u'}}, {@fsname={'fsname', 0x3d, '^'}}, {@subj_type={'subj_type', 0x3d, '(-}#'}}]}}) 19:59:00 executing program 5: perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7, 0x2, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) perf_event_open(&(0x7f0000001d80)={0x6, 0x80, 0x0, 0x0, 0x6, 0xf9, 0x4, 0x0, 0x80, 0x6, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffd, 0x4, @perf_config_ext={0xffff, 0xe1}, 0x10, 0x95, 0x0, 0x9, 0x1, 0x3, 0x0, 0x0, 0x3, 0x0, 0x1}, 0xffffffffffffffff, 0x0, 0xffffffffffffffff, 0x0) futex(0x0, 0x2, 0x2, 0x0, &(0x7f0000000140), 0x0) perf_event_open(0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r0 = openat$ttyS3(0xffffffffffffff9c, 0x0, 0x0, 0x0) ioctl$F2FS_IOC_GET_FEATURES(0xffffffffffffffff, 0x8004f50c, &(0x7f0000000440)) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0xf4, 0x0, 0x0, 0x0, 0x0, 0x5b, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0, 0x1}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x40000000}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r1 = openat$procfs(0xffffffffffffff9c, &(0x7f00000004c0)='/proc/timer_list\x00', 0x0, 0x0) lseek(r1, 0x9e46, 0x0) ioctl$TIOCCBRK(r0, 0x5428) openat$vcs(0xffffffffffffff9c, 0x0, 0x20000, 0x0) ioctl$F2FS_IOC_GARBAGE_COLLECT(0xffffffffffffffff, 0x4004f506, &(0x7f0000000540)=0x1) openat$hwrng(0xffffffffffffff9c, 0x0, 0x0, 0x0) syz_io_uring_submit(0x0, 0x0, &(0x7f00000001c0)=@IORING_OP_LINK_TIMEOUT={0xf, 0x4, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1}, 0x0) connect$inet6(0xffffffffffffffff, &(0x7f0000000000)={0xa, 0x0, 0x0, @local}, 0x1c) r2 = fork() ioctl$EXT4_IOC_ALLOC_DA_BLKS(0xffffffffffffffff, 0x660c) ioctl$AUTOFS_IOC_EXPIRE(0xffffffffffffffff, 0x810c9365, &(0x7f0000000200)={{0x2, 0x7}, 0x100, './file0\x00'}) ptrace(0x10, r2) ptrace(0x4207, r2) 19:59:00 executing program 2: r0 = socket$inet_icmp_raw(0x2, 0x3, 0x1) r1 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a) ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000140)={'syz_tun\x00', 0x0}) perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) sendmmsg$inet(r0, &(0x7f0000002040)=[{{&(0x7f0000000380)={0x2, 0x0, @multicast1}, 0x10, &(0x7f0000001600)=[{&(0x7f00000003c0)="db9c", 0xffe7}], 0x1, &(0x7f0000001640)=ANY=[@ANYBLOB="14000000000000000000000007000000c4048f01000000001c000000000000000000000008000000", @ANYRES32=r2], 0x38}}], 0x1, 0x0) (fail_nth: 31) [ 3240.389794] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium [ 3240.413990] FAULT_INJECTION: forcing a failure. [ 3240.413990] name fail_page_alloc, interval 1, probability 0, space 0, times 0 [ 3240.416584] CPU: 1 PID: 25209 Comm: syz-executor.2 Not tainted 5.10.207 #1 [ 3240.417987] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 3240.419714] Call Trace: [ 3240.420264] dump_stack+0x107/0x167 [ 3240.421013] should_fail.cold+0x5/0xa [ 3240.421807] __alloc_pages_nodemask+0x182/0x600 [ 3240.422776] ? __alloc_pages_slowpath.constprop.0+0x2130/0x2130 [ 3240.424037] alloc_pages_current+0x187/0x280 [ 3240.424945] allocate_slab+0x26f/0x380 [ 3240.425744] ___slab_alloc+0x470/0x700 [ 3240.426558] ? __alloc_skb+0x6d/0x5b0 [ 3240.427352] ? __alloc_skb+0x6d/0x5b0 [ 3240.428135] ? kmem_cache_alloc_node+0x313/0x330 [ 3240.429105] kmem_cache_alloc_node+0x313/0x330 [ 3240.430071] __alloc_skb+0x6d/0x5b0 [ 3240.430847] __ip_append_data+0x2930/0x3310 [ 3240.431748] ? raw_destroy+0x30/0x30 [ 3240.432527] ? ip_finish_output+0x330/0x330 [ 3240.433410] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 3240.434453] ? ipv4_mtu+0x1ed/0x2c0 [ 3240.435203] ? raw_destroy+0x30/0x30 [ 3240.435966] ip_append_data+0x114/0x1a0 [ 3240.436795] raw_sendmsg+0xaa6/0x29d0 [ 3240.437593] ? dst_output+0x170/0x170 [ 3240.438392] ? __lock_acquire+0x1657/0x5b00 [ 3240.439294] ? perf_trace_lock+0xac/0x490 [ 3240.440145] ? SOFTIRQ_verbose+0x10/0x10 [ 3240.440975] ? create_object.isra.0+0x3ad/0xa20 [ 3240.441934] ? __lockdep_reset_lock+0x180/0x180 [ 3240.442909] ? selinux_socket_post_create+0x7f0/0x7f0 [ 3240.443966] ? find_held_lock+0x2c/0x110 [ 3240.444818] ? trace_hardirqs_on+0x5b/0x180 [ 3240.445706] ? dst_output+0x170/0x170 [ 3240.446503] inet_sendmsg+0x11d/0x140 [ 3240.447282] ? inet_send_prepare+0x540/0x540 [ 3240.448183] __sock_sendmsg+0x13c/0x190 [ 3240.449002] ____sys_sendmsg+0x334/0x870 [ 3240.449842] ? sock_write_iter+0x3d0/0x3d0 [ 3240.450714] ? do_recvmmsg+0x6d0/0x6d0 [ 3240.451515] ? perf_trace_lock+0xac/0x490 [ 3240.452375] ? __lockdep_reset_lock+0x180/0x180 [ 3240.453332] ? perf_trace_lock+0xac/0x490 [ 3240.454194] ___sys_sendmsg+0xf3/0x170 [ 3240.455009] ? sendmsg_copy_msghdr+0x160/0x160 [ 3240.455958] ? lock_downgrade+0x6d0/0x6d0 [ 3240.456823] ? lock_downgrade+0x6d0/0x6d0 [ 3240.457682] ? __fget_files+0x296/0x4c0 [ 3240.458520] ? __fget_light+0xea/0x290 [ 3240.459334] __sys_sendmmsg+0x195/0x470 [ 3240.460164] ? __ia32_sys_sendmsg+0xb0/0xb0 [ 3240.461049] ? lock_downgrade+0x6d0/0x6d0 [ 3240.461926] ? __mutex_unlock_slowpath+0xe1/0x600 [ 3240.462926] ? wait_for_completion_io+0x270/0x270 [ 3240.463910] ? rcu_read_lock_any_held+0x75/0xa0 [ 3240.464862] ? vfs_write+0x354/0xa70 [ 3240.465671] ? fput_many+0x2f/0x1a0 [ 3240.466436] ? ksys_write+0x1a9/0x260 [ 3240.467219] ? __ia32_sys_read+0xb0/0xb0 [ 3240.468064] __x64_sys_sendmmsg+0x99/0x100 [ 3240.468938] do_syscall_64+0x33/0x40 [ 3240.469702] entry_SYSCALL_64_after_hwframe+0x62/0xc7 [ 3240.470762] RIP: 0033:0x7fac065c2b19 [ 3240.471531] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 3240.475291] RSP: 002b:00007fac03b38188 EFLAGS: 00000246 ORIG_RAX: 0000000000000133 [ 3240.476855] RAX: ffffffffffffffda RBX: 00007fac066d5f60 RCX: 00007fac065c2b19 [ 3240.478329] RDX: 0000000000000001 RSI: 0000000020002040 RDI: 0000000000000003 [ 3240.479787] RBP: 00007fac03b381d0 R08: 0000000000000000 R09: 0000000000000000 [ 3240.481247] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 3240.482719] R13: 00007ffe4d4b793f R14: 00007fac03b38300 R15: 0000000000022000 19:59:00 executing program 7: perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4317, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) ioctl$sock_SIOCGIFINDEX(0xffffffffffffffff, 0x8933, &(0x7f0000000140)={'lo\x00'}) r0 = creat(&(0x7f00000001c0)='./cgroup/cgroup.procs\x00', 0x0) open_by_handle_at(r0, &(0x7f0000000200)=ANY=[@ANYBLOB="100000000200000009000000000000000000000000000000dc9679bd41d7bf4eeec11474132eaceb44c71d2b773e04049a874e1359b9b2e3f905cdaeeed07b24344f0eed516c79ce7a431db64592512b046a61bd38258433515cc195aa91aba7fd24edf6e0ac292d35635e3e19a79a2e891b5960f1e75015ec2a33403cbd619aafdbe1412bf285823de08ce4c7f831348177c52577e3be6e912dcd25053571107bae35a53fe4d2dc2690b65b0c3dd8ee64dea285495c7ea0a70507d5b08d94b625"], 0x0) getdents64(0xffffffffffffffff, &(0x7f0000000080)=""/61, 0x3d) io_setup(0x5, &(0x7f0000000080)=0x0) r2 = openat$tcp_mem(0xffffffffffffff9c, &(0x7f0000000000)='/proc/sys/net/ipv4/tcp_wmem\x00', 0x1, 0x0) io_submit(r1, 0x1, &(0x7f00000008c0)=[&(0x7f0000000180)={0x0, 0x0, 0x5, 0x1, 0x0, r2, &(0x7f00000001c0)='\\', 0x3fffff}]) r3 = syz_io_uring_setup(0x4f3, &(0x7f0000000300)={0x0, 0x9d80, 0x10, 0x3, 0x3af}, &(0x7f0000bff000/0x400000)=nil, &(0x7f0000cb6000/0x4000)=nil, &(0x7f0000000000), &(0x7f0000000180)) dup3(0xffffffffffffffff, r3, 0x0) ioctl$FS_IOC_GETFSLABEL(r3, 0x81009431, &(0x7f00000003c0)) ioctl$AUTOFS_DEV_IOCTL_OPENMOUNT(0xffffffffffffffff, 0xc0189374, &(0x7f0000000300)=ANY=[@ANYRESHEX=r1, @ANYBLOB, @ANYRESOCT=r0, @ANYBLOB="69c06cc80ba464d92b9a4ce0171df294f396b53ca65138a6762c2657aa8d04b7e13922b903325d0ef0939322673bb5eaa4417e7546386f0ee4dbf9fd482d7c6cd9a9b22bfe0ca09b5bc062ed4335b0d192dd2fbecb34e8d2a410eb863a8f0fb824681218d589d0"]) sendfile(0xffffffffffffffff, 0xffffffffffffffff, 0x0, 0x500000001) 19:59:00 executing program 4: syz_80211_inject_frame(&(0x7f00000000c0)=@device_a={0x8, 0x2, 0x11, 0x0, 0x9}, &(0x7f0000000440)=ANY=[], 0x2f) 19:59:00 executing program 6: syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000140)='./file0\x00', 0x40000, 0x4, &(0x7f0000000200)=[{&(0x7f0000010000)="20000000000100000c000000d40000000f000000010000000000000000000000002000000020000020000000d7f4655fd7f4655f0100ffff53ef010001000000d7f4655f000000000000000001000000000000000b0000000002", 0x5a, 0x400}, {&(0x7f0000010400)="030000000400000005000000d4000f", 0xf, 0x800}, {&(0x7f0000000500)="ffffffffff070000000000000000000000000000000000000000000000000080ffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffff", 0x402, 0xc00}, {&(0x7f0000010e00)="ed41000000040000d7f4655fd7f4655fd7f4655f000000000000040002", 0x1d, 0x1600}], 0x0, &(0x7f00000003c0)=ANY=[]) chdir(&(0x7f0000000040)='./file0\x00') openat(0xffffffffffffff9c, &(0x7f0000000080)='./file1\x00', 0x105142, 0x0) r0 = openat(0xffffffffffffff9c, &(0x7f0000000200)='./file1\x00', 0x2, 0x0) write(r0, &(0x7f0000000240)="01", 0x1) r1 = openat(0xffffffffffffff9c, &(0x7f00000000c0)='./file2\x00', 0x105142, 0x0) r2 = openat(0xffffffffffffff9c, &(0x7f0000001340)='./file1\x00', 0x0, 0x0) copy_file_range(r2, 0x0, r1, &(0x7f0000000280)=0x10d00, 0xc3a, 0x0) openat$sr(0xffffffffffffff9c, 0x0, 0x0, 0x0) [ 3240.559059] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium [ 3240.879149] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium 19:59:16 executing program 4: syz_80211_inject_frame(&(0x7f00000000c0)=@device_a={0x8, 0x2, 0x11, 0x0, 0xf}, &(0x7f0000000440)=ANY=[], 0x2f) 19:59:16 executing program 1: r0 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$nl_generic(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000480)={&(0x7f00000001c0)=ANY=[@ANYBLOB="db6bec20de0801070000000000000000040000180000000000"], 0x1c}}, 0x0) 19:59:16 executing program 2: r0 = socket$inet_icmp_raw(0x2, 0x3, 0x1) r1 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a) ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000140)={'syz_tun\x00', 0x0}) perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) sendmmsg$inet(r0, &(0x7f0000002040)=[{{&(0x7f0000000380)={0x2, 0x0, @multicast1}, 0x10, &(0x7f0000001600)=[{&(0x7f00000003c0)="db9c", 0xffe7}], 0x1, &(0x7f0000001640)=ANY=[@ANYBLOB="14000000000000000000000007000000c4048f01000000001c000000000000000000000008000000", @ANYRES32=r2], 0x38}}], 0x1, 0x0) (fail_nth: 32) 19:59:16 executing program 5: ftruncate(0xffffffffffffffff, 0x0) r0 = open(&(0x7f0000000140)='./file1\x00', 0x100, 0x38) statx(0xffffffffffffffff, &(0x7f0000000180)='./file1\x00', 0x5500, 0x8, &(0x7f00000001c0)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0}) r3 = openat(r0, &(0x7f0000000080)='./file1\x00', 0x440, 0x82) lstat(&(0x7f00000002c0)='./file1\x00', 0x0) ioctl$SNDRV_TIMER_IOCTL_CONTINUE(r0, 0x54a2) openat(r3, &(0x7f00000000c0)='./file0\x00', 0x88040, 0x120) fchownat(0xffffffffffffff9c, &(0x7f00000003c0)='./file1\x00', r1, r2, 0x1000) socket$nl_generic(0x10, 0x3, 0x10) ioctl$FS_IOC_FSSETXATTR(0xffffffffffffffff, 0x40086602, 0x0) openat$vcsu(0xffffffffffffff9c, &(0x7f0000000400), 0x303242, 0x0) socket$nl_generic(0x10, 0x3, 0x10) syz_io_uring_setup(0x4d4f, &(0x7f00000002c0)={0x0, 0x139d2, 0x0, 0xfffffffc}, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000340), &(0x7f0000000140)) openat$full(0xffffffffffffff9c, &(0x7f0000000040), 0x0, 0x0) getsockopt$inet_IP_XFRM_POLICY(r0, 0x0, 0x11, &(0x7f00000005c0)={{{@in, @in6=@mcast2}}, {{@in=@multicast1}, 0x0, @in6=@loopback}}, 0x0) ioctl$SNDRV_TIMER_IOCTL_CONTINUE(0xffffffffffffffff, 0x54a2) ioctl$ifreq_SIOCGIFINDEX_vcan(0xffffffffffffffff, 0x8933, &(0x7f0000000380)={'vxcan1\x00'}) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x400}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r4 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$nl_generic(r4, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000480)={&(0x7f0000000440)=ANY=[@ANYBLOB="1c0000001d00210c800000000000000204000000002680000023004b361324fd190a0f3cd43fa8ea9523bc7c5284808875bbefac", @ANYRES32, @ANYRES64], 0x1c}}, 0x0) 19:59:16 executing program 3: syz_mount_image$vfat(&(0x7f0000000000), &(0x7f0000000100)='./file0\x00', 0x0, 0x2, &(0x7f0000000200)=[{&(0x7f0000000340)="eb58906d6b66732e66617400028020000200000004f8000020004000000000000000000001", 0x25}, {0x0, 0x0, 0x20000000001e0}], 0x0, &(0x7f0000000380)=ANY=[@ANYBLOB='uid=', @ANYRESHEX=0xee00, @ANYBLOB="2c1b0033bcca38cac9105961bcde3928bafe2d6ad8ee78e2c0deda4f0a8f85135001e026d612df579148fbeb25f15bb5bcb03190bef1c74750296e2e44ae1fb64d3f22180bbece3a3382031be7d1f34bc4e9e78354686ea34071514b5c2e9c5d7672e29bbabce5760000796c4fd0edc2d61f807818b189be47de882017bc4eda28512c77b579f2e8f0787c78f491cc9d6734336e2f2e091bc1effd66508aef74d0b315d67c3a1948bf2e541b369c43f439889ce47a56f864c23ee542dbb68d65c73e5a723a03b8bc813b3096aac8314a91c48bb202bdf65f0b11db5b9b10c807fddd52e0e7f107907b77ac36"]) 19:59:16 executing program 0: perf_event_open(&(0x7f0000001d80)={0x2, 0x80, 0x46, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0xffff, 0x2}, 0x0, 0x0, 0x0, 0x0, 0x3}, 0x0, 0x0, 0xffffffffffffffff, 0x0) clone3(&(0x7f0000000200)={0x31081000, &(0x7f0000000100), 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) r0 = dup3(0xffffffffffffffff, 0xffffffffffffffff, 0x0) linkat(r0, &(0x7f0000000100)='./file0\x00', 0xffffffffffffffff, &(0x7f0000000140)='./file0/file0\x00', 0x1000) mount$9p_fd(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000000040), 0x104001, &(0x7f0000000280)={'trans=fd,', {}, 0x2c, {'wfdno', 0x3d, r0}, 0x2c, {[{@version_9p2000}, {@fscache}, {@cache_fscache}, {@debug={'debug', 0x3d, 0x100000000}}, {@cache_loose}, {@cache_mmap}], [{@permit_directio}, {@defcontext={'defcontext', 0x3d, 'unconfined_u'}}, {@fsname={'fsname', 0x3d, '^'}}, {@subj_type={'subj_type', 0x3d, '(-}#'}}]}}) 19:59:16 executing program 6: syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000140)='./file0\x00', 0x40000, 0x4, &(0x7f0000000200)=[{&(0x7f0000010000)="20000000000100000c000000d40000000f000000010000000000000000000000002000000020000020000000d7f4655fd7f4655f0100ffff53ef010001000000d7f4655f000000000000000001000000000000000b0000000002", 0x5a, 0x400}, {&(0x7f0000010400)="030000000400000005000000d4000f", 0xf, 0x800}, {&(0x7f0000000500)="ffffffffff070000000000000000000000000000000000000000000000000080ffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffff", 0x402, 0xc00}, {&(0x7f0000010e00)="ed41000000040000d7f4655fd7f4655fd7f4655f000000000000040002", 0x1d, 0x1600}], 0x0, &(0x7f00000003c0)=ANY=[]) chdir(&(0x7f0000000040)='./file0\x00') openat(0xffffffffffffff9c, &(0x7f0000000080)='./file1\x00', 0x105142, 0x0) r0 = openat(0xffffffffffffff9c, &(0x7f0000000200)='./file1\x00', 0x2, 0x0) write(r0, &(0x7f0000000240)="01", 0x1) r1 = openat(0xffffffffffffff9c, &(0x7f00000000c0)='./file2\x00', 0x105142, 0x0) r2 = openat(0xffffffffffffff9c, &(0x7f0000001340)='./file1\x00', 0x0, 0x0) copy_file_range(r2, 0x0, r1, &(0x7f0000000280)=0x10e00, 0xc3a, 0x0) openat$sr(0xffffffffffffff9c, 0x0, 0x0, 0x0) 19:59:16 executing program 7: perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4317, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) ioctl$sock_SIOCGIFINDEX(0xffffffffffffffff, 0x8933, &(0x7f0000000140)={'lo\x00'}) r0 = creat(&(0x7f00000001c0)='./cgroup/cgroup.procs\x00', 0x0) open_by_handle_at(r0, &(0x7f0000000200)=ANY=[@ANYBLOB="100000000200000009000000000000000000000000000000dc9679bd41d7bf4eeec11474132eaceb44c71d2b773e04049a874e1359b9b2e3f905cdaeeed07b24344f0eed516c79ce7a431db64592512b046a61bd38258433515cc195aa91aba7fd24edf6e0ac292d35635e3e19a79a2e891b5960f1e75015ec2a33403cbd619aafdbe1412bf285823de08ce4c7f831348177c52577e3be6e912dcd25053571107bae35a53fe4d2dc2690b65b0c3dd8ee64dea285495c7ea0a70507d5b08d94b625"], 0x0) getdents64(0xffffffffffffffff, &(0x7f0000000080)=""/61, 0x3d) io_setup(0x5, &(0x7f0000000080)=0x0) r2 = openat$tcp_mem(0xffffffffffffff9c, &(0x7f0000000000)='/proc/sys/net/ipv4/tcp_wmem\x00', 0x1, 0x0) io_submit(r1, 0x1, &(0x7f00000008c0)=[&(0x7f0000000180)={0x0, 0x0, 0x5, 0x1, 0x0, r2, &(0x7f00000001c0)='\\', 0x3fffff}]) r3 = syz_io_uring_setup(0x4f3, &(0x7f0000000300)={0x0, 0x9d80, 0x10, 0x3, 0x3af}, &(0x7f0000bff000/0x400000)=nil, &(0x7f0000cb6000/0x4000)=nil, &(0x7f0000000000), &(0x7f0000000180)) dup3(0xffffffffffffffff, r3, 0x0) ioctl$FS_IOC_GETFSLABEL(r3, 0x81009431, &(0x7f00000003c0)) ioctl$AUTOFS_DEV_IOCTL_OPENMOUNT(0xffffffffffffffff, 0xc0189374, &(0x7f0000000300)=ANY=[@ANYRESHEX=r1, @ANYBLOB, @ANYRESOCT=r0, @ANYBLOB="69c06cc80ba464d92b9a4ce0171df294f396b53ca65138a6762c2657aa8d04b7e13922b903325d0ef0939322673bb5eaa4417e7546386f0ee4dbf9fd482d7c6cd9a9b22bfe0ca09b5bc062ed4335b0d192dd2fbecb34e8d2a410eb863a8f0fb824681218d589d0"]) sendfile(0xffffffffffffffff, 0xffffffffffffffff, 0x0, 0x500000001) [ 3256.669691] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium [ 3256.686496] FAULT_INJECTION: forcing a failure. [ 3256.686496] name failslab, interval 1, probability 0, space 0, times 0 [ 3256.689002] CPU: 0 PID: 25308 Comm: syz-executor.2 Not tainted 5.10.207 #1 [ 3256.690526] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 3256.692316] Call Trace: [ 3256.692904] dump_stack+0x107/0x167 [ 3256.693708] should_fail.cold+0x5/0xa [ 3256.694563] should_failslab+0x5/0x20 [ 3256.695400] __kmalloc_node_track_caller+0x74/0x3b0 [ 3256.696499] ? __ip_append_data+0x2930/0x3310 [ 3256.697513] __alloc_skb+0xb1/0x5b0 [ 3256.698330] __ip_append_data+0x2930/0x3310 [ 3256.699329] ? raw_destroy+0x30/0x30 [ 3256.700183] ? ip_finish_output+0x330/0x330 [ 3256.701142] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 3256.702260] ? ipv4_mtu+0x1ed/0x2c0 [ 3256.703089] ? raw_destroy+0x30/0x30 [ 3256.703916] ip_append_data+0x114/0x1a0 [ 3256.704822] raw_sendmsg+0xaa6/0x29d0 [ 3256.705698] ? dst_output+0x170/0x170 [ 3256.706559] ? perf_trace_run_bpf_submit+0xf5/0x190 [ 3256.707693] ? perf_trace_lock+0x2bd/0x490 [ 3256.708628] ? SOFTIRQ_verbose+0x10/0x10 [ 3256.709539] ? __lockdep_reset_lock+0x180/0x180 [ 3256.710596] ? selinux_socket_post_create+0x7f0/0x7f0 [ 3256.711724] ? find_held_lock+0x2c/0x110 [ 3256.712654] ? trace_hardirqs_on+0x5b/0x180 [ 3256.713612] ? dst_output+0x170/0x170 [ 3256.714472] inet_sendmsg+0x11d/0x140 [ 3256.715314] ? inet_send_prepare+0x540/0x540 [ 3256.716276] __sock_sendmsg+0x13c/0x190 [ 3256.717154] ____sys_sendmsg+0x334/0x870 [ 3256.718058] ? sock_write_iter+0x3d0/0x3d0 [ 3256.718989] ? do_recvmmsg+0x6d0/0x6d0 [ 3256.719842] ? perf_trace_lock+0x2bd/0x490 [ 3256.720787] ? __lockdep_reset_lock+0x180/0x180 [ 3256.721829] ___sys_sendmsg+0xf3/0x170 [ 3256.722706] ? sendmsg_copy_msghdr+0x160/0x160 [ 3256.723723] ? lock_downgrade+0x6d0/0x6d0 [ 3256.724649] ? perf_trace_run_bpf_submit+0xf5/0x190 [ 3256.725768] ? __fget_files+0x296/0x4c0 [ 3256.726674] ? __fget_light+0xea/0x290 [ 3256.727563] __sys_sendmmsg+0x195/0x470 [ 3256.728461] ? __ia32_sys_sendmsg+0xb0/0xb0 [ 3256.729416] ? lock_downgrade+0x6d0/0x6d0 [ 3256.730382] ? __mutex_unlock_slowpath+0xe1/0x600 [ 3256.731467] ? wait_for_completion_io+0x270/0x270 [ 3256.732540] ? rcu_read_lock_any_held+0x75/0xa0 [ 3256.733559] ? vfs_write+0x354/0xa70 [ 3256.734386] ? fput_many+0x2f/0x1a0 [ 3256.735195] ? ksys_write+0x1a9/0x260 [ 3256.736032] ? __ia32_sys_read+0xb0/0xb0 [ 3256.736949] __x64_sys_sendmmsg+0x99/0x100 [ 3256.737887] do_syscall_64+0x33/0x40 [ 3256.738714] entry_SYSCALL_64_after_hwframe+0x62/0xc7 [ 3256.739840] RIP: 0033:0x7fac065c2b19 [ 3256.740663] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 3256.744689] RSP: 002b:00007fac03b38188 EFLAGS: 00000246 ORIG_RAX: 0000000000000133 [ 3256.746366] RAX: ffffffffffffffda RBX: 00007fac066d5f60 RCX: 00007fac065c2b19 [ 3256.747933] RDX: 0000000000000001 RSI: 0000000020002040 RDI: 0000000000000003 [ 3256.749497] RBP: 00007fac03b381d0 R08: 0000000000000000 R09: 0000000000000000 [ 3256.751089] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 3256.752645] R13: 00007ffe4d4b793f R14: 00007fac03b38300 R15: 0000000000022000 [ 3256.756325] netlink: 8 bytes leftover after parsing attributes in process `syz-executor.5'. [ 3256.767098] EXT4-fs (loop6): mounted filesystem without journal. Opts: ,errors=continue 19:59:16 executing program 1: perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x8) r0 = socket$inet(0x2, 0x1, 0x0) bind$inet(r0, &(0x7f0000000000)={0x2, 0x4e21, @multicast1}, 0x10) r1 = openat(0xffffffffffffff9c, &(0x7f0000000000)='./file1\x00', 0x882c2, 0x0) fallocate(r1, 0x10, 0x0, 0x1000002) r2 = dup3(r0, r1, 0x80000) ioctl$AUTOFS_DEV_IOCTL_OPENMOUNT(0xffffffffffffffff, 0xc0189374, 0x0) ioctl$sock_inet_SIOCDARP(0xffffffffffffffff, 0x8953, &(0x7f0000000180)={{0x2, 0x4e24, @local}, {0x6, @remote}, 0x20, {0x2, 0x4e22, @remote}, 'vxcan1\x00'}) accept4$inet(r2, 0x0, &(0x7f0000000040), 0x800) connect$inet(r0, &(0x7f0000000240)={0x2, 0x4e1e, @initdev={0xac, 0x1e, 0x0, 0x0}}, 0x10) fallocate(r2, 0x38, 0x5, 0x3) connect$inet(r0, &(0x7f0000000140)={0x2, 0x4e21, @local}, 0x10) perf_event_open(&(0x7f0000001d80)={0x2, 0xffffffffffffff10, 0x94, 0x0, 0x0, 0x0, 0x0, 0x400, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x47c0}, 0x0, 0x1}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) accept$unix(r1, &(0x7f00000000c0), &(0x7f0000000200)=0x6e) shutdown(r0, 0x1) unshare(0x48020200) kcmp(0x0, 0x0, 0x2, 0xffffffffffffffff, 0xffffffffffffffff) 19:59:16 executing program 3: perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r0 = socket$netlink(0x10, 0x3, 0x0) sendmsg$nl_generic(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000180)=ANY=[@ANYRESOCT, @ANYRESHEX, @ANYRES32], 0x28}, 0x1, 0x0, 0x0, 0xc0}, 0x0) ioctl$BTRFS_IOC_BALANCE_PROGRESS(0xffffffffffffffff, 0x84009422, &(0x7f00000004c0)={0x0, 0x0, {0x0, @struct}, {0x0, @usage, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @struct}, {0x0, @struct, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @struct}}) ioctl$FS_IOC_FSSETXATTR(0xffffffffffffffff, 0x40086602, &(0x7f0000000000)) r1 = openat$sndseq(0xffffffffffffff9c, &(0x7f0000000040), 0x0) r2 = fcntl$dupfd(r1, 0x0, r1) syz_genetlink_get_family_id$tipc(&(0x7f0000000100), r0) sendmsg$TIPC_CMD_SHOW_NAME_TABLE(r2, 0x0, 0x4004) r3 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a) ioctl$sock_inet6_SIOCDELRT(r3, 0x890c, &(0x7f0000000440)={@private1={0xfc, 0x1, '\x00', 0x1}, @rand_addr=' \x01\x00', @mcast2, 0x1000, 0x4, 0x9, 0x969327fd195cfe0c, 0x75, 0x1000128}) r4 = socket$inet6_udp(0xa, 0x2, 0x0) sendmmsg$inet6(r4, &(0x7f0000004400)=[{{&(0x7f0000000140)={0xa, 0x4e20, 0x0, @empty}, 0x1c, 0x0}}, {{&(0x7f0000002ec0)={0xa, 0x0, 0x0, @ipv4={'\x00', '\xff\xff', @local}}, 0x1c, 0x0}}], 0x2, 0x4008000) ioctl$sock_SIOCBRDELBR(r4, 0x89a1, &(0x7f0000000040)='macvtap0\x00') 19:59:16 executing program 7: r0 = syz_io_uring_setup(0x4d4f, &(0x7f0000000900), &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000200)=0x0, &(0x7f0000000140)=0x0) syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_MADVISE={0x19, 0x0, 0x0, 0x0, 0x0, &(0x7f0000ffc000/0x4000)=nil, 0x4000}, 0x0) r3 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0) r4 = perf_event_open(&(0x7f0000001d80)={0x2, 0x80, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r5 = syz_io_uring_setup(0x716, &(0x7f0000000080)={0x0, 0xb71f, 0x0, 0x3, 0x20f, 0x0, r0}, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000ffc000/0x2000)=nil, &(0x7f0000000100)=0x0, &(0x7f0000000180)) r7 = syz_mount_image$msdos(&(0x7f0000000380), &(0x7f00000003c0)='./file0\x00', 0x100, 0x3, &(0x7f0000000640)=[{&(0x7f0000000400)="636620cd34010436b1b2ef71c9b21c8806", 0x11, 0x2}, {&(0x7f0000000440)="35efec77a289a7eb1ed1b52a7cf4808c3c621bbe74d46da3df11c75bcb9c356cc7fa357605fd9b768c498dd5f1764ff9c55813fc364c273dc09b95b63ef61969fce119782caa1618c1f91fb7c11b52ecb96c308887229451f9f73b67a0b04dce76dae7df871592513212474012dda9dfd34e338d2500716ef3b5126535e1d91d3ab639ff74e702bf2231048355d3965ca9abcb4d6bd221e97c26e6d61e97030f737ae5d5b59a976c6741473d9e1f1714c590a13e2aa6cf681347a9cc31cda02f52ce3979cc4df456764d2e24a3815989854a39e022b80b3c040b", 0xda, 0xfffffffffffffff9}, {&(0x7f0000000540)="f7abdf5ce5737ee7b289a5d2500eb93e38598f872422484fe6ea701b036449aaae7246fbec772552a66767f1eea6311405005201d9dc69086877c600168aad5685c0a54f3ae4c49b47613a34d6e953f86095270bd11c21b0168d3d7fe0d31e4c61214cb8cc76ce6bd871999328d7d10b24825e16e1b4d9bdce0809bdf8acf65a625f9ae7ecc66c1618d06b365ab32c29df69f12e8e8c1e8776bc3719ea66362f14fb73c80b4378720435e0286c204d4c7e472639fb612634d79acc464173b6dede4ae0798c938f015d042ddf9ad8ce681692a72b0758942f10fd2e923d1ccf70", 0xe0, 0x3}], 0xc00c2, &(0x7f00000006c0)={[{@nodots}, {@dots}, {@dots}, {@dots}, {@nodots}, {@fat=@time_offset={'time_offset', 0x3d, 0x4d2}}], [{@defcontext={'defcontext', 0x3d, 'system_u'}}, {@context={'context', 0x3d, 'root'}}, {@euid_lt={'euid<', 0xee01}}]}) mmap(&(0x7f0000ffd000/0x2000)=nil, 0x2000, 0x4, 0x810, r7, 0x846cf000) syz_io_uring_submit(r6, r2, &(0x7f00000001c0)=@IORING_OP_WRITE={0x17, 0x1, 0x6000, @fd_index=0x1, 0x4000000000000000, &(0x7f0000000240)="16dfac3ea90731d51d93d7c4ff7c89cf134fbf808c0059f1b79bbca17084419ab5c98b37efd39e76709ae966649bee53ad9ab8a41b8409fc4b8fd65354a300423e8595", 0x43, 0xd, 0x1}, 0x7ff) syz_io_uring_submit(r3, r2, &(0x7f0000000040)=@IORING_OP_CLOSE={0x13, 0x5}, 0x1) fchmodat(r4, &(0x7f0000000880)='./file0\x00', 0x50) ioctl$sock_SIOCGPGRP(0xffffffffffffffff, 0x8904, &(0x7f0000000340)=0x0) r9 = fsmount(0xffffffffffffffff, 0x1, 0xf) io_uring_register$IORING_REGISTER_PROBE(r0, 0x8, &(0x7f0000000980)={0x0, 0x0, 0x0, '\x00', [{}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}]}, 0x1b) mmap$IORING_OFF_CQ_RING(&(0x7f0000ffc000/0x3000)=nil, 0x3000, 0x3, 0x50, r5, 0x8000000) perf_event_open(&(0x7f00000002c0)={0x5, 0x80, 0x7, 0x8, 0x0, 0xfc, 0x0, 0x3f, 0x41001, 0x2, 0x1, 0x1, 0x1, 0x1, 0x1, 0x0, 0x1, 0x1, 0x1, 0x0, 0x0, 0x1, 0x1, 0x0, 0x1, 0x3, 0x1, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x1, 0x0, 0x1, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x1, 0x0, 0x0, 0x4, @perf_config_ext={0x2, 0x3}, 0x0, 0x1f, 0x5, 0x0, 0x1000, 0x7, 0x9, 0x0, 0x15d, 0x0, 0x2}, r8, 0xe, r9, 0x9) io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0) getxattr(&(0x7f0000000740)='./file0\x00', &(0x7f0000000780)=@known='trusted.overlay.origin\x00', &(0x7f00000007c0)=""/185, 0xb9) 19:59:16 executing program 2: r0 = socket$inet_icmp_raw(0x2, 0x3, 0x1) r1 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a) ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000140)={'syz_tun\x00', 0x0}) perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) sendmmsg$inet(r0, &(0x7f0000002040)=[{{&(0x7f0000000380)={0x2, 0x0, @multicast1}, 0x10, &(0x7f0000001600)=[{&(0x7f00000003c0)="db9c", 0xffe7}], 0x1, &(0x7f0000001640)=ANY=[@ANYBLOB="14000000000000000000000007000000c4048f01000000001c000000000000000000000008000000", @ANYRES32=r2], 0x38}}], 0x1, 0x0) (fail_nth: 33) [ 3256.895898] FAULT_INJECTION: forcing a failure. [ 3256.895898] name failslab, interval 1, probability 0, space 0, times 0 [ 3256.898454] CPU: 0 PID: 25327 Comm: syz-executor.2 Not tainted 5.10.207 #1 [ 3256.899950] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 3256.901731] Call Trace: [ 3256.902313] dump_stack+0x107/0x167 [ 3256.903127] should_fail.cold+0x5/0xa [ 3256.903958] ? create_object.isra.0+0x3a/0xa20 [ 3256.904959] should_failslab+0x5/0x20 [ 3256.905811] kmem_cache_alloc+0x5b/0x310 [ 3256.906733] create_object.isra.0+0x3a/0xa20 [ 3256.907713] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 3256.908851] __kmalloc_node_track_caller+0x1a6/0x3b0 [ 3256.909980] ? __ip_append_data+0x2930/0x3310 [ 3256.911007] __alloc_skb+0xb1/0x5b0 [ 3256.911833] __ip_append_data+0x2930/0x3310 [ 3256.912824] ? raw_destroy+0x30/0x30 [ 3256.913678] ? ip_finish_output+0x330/0x330 [ 3256.914648] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 3256.915769] ? ipv4_mtu+0x1ed/0x2c0 [ 3256.916589] ? raw_destroy+0x30/0x30 [ 3256.917418] ip_append_data+0x114/0x1a0 [ 3256.918325] raw_sendmsg+0xaa6/0x29d0 [ 3256.919211] ? dst_output+0x170/0x170 [ 3256.920059] ? perf_trace_run_bpf_submit+0xf5/0x190 [ 3256.921195] ? perf_trace_lock+0x2bd/0x490 [ 3256.922128] ? SOFTIRQ_verbose+0x10/0x10 [ 3256.923050] ? __lockdep_reset_lock+0x180/0x180 [ 3256.924095] ? selinux_socket_post_create+0x7f0/0x7f0 [ 3256.925220] ? find_held_lock+0x2c/0x110 [ 3256.926155] ? trace_hardirqs_on+0x5b/0x180 [ 3256.927120] ? dst_output+0x170/0x170 [ 3256.927964] inet_sendmsg+0x11d/0x140 [ 3256.928808] ? inet_send_prepare+0x540/0x540 [ 3256.929772] __sock_sendmsg+0x13c/0x190 [ 3256.930658] ____sys_sendmsg+0x334/0x870 [ 3256.931559] ? sock_write_iter+0x3d0/0x3d0 [ 3256.932487] ? do_recvmmsg+0x6d0/0x6d0 [ 3256.933332] ? perf_trace_lock+0x2bd/0x490 [ 3256.934283] ? __lockdep_reset_lock+0x180/0x180 [ 3256.935336] ___sys_sendmsg+0xf3/0x170 [ 3256.936197] ? sendmsg_copy_msghdr+0x160/0x160 [ 3256.937211] ? lock_downgrade+0x6d0/0x6d0 [ 3256.938133] ? perf_trace_run_bpf_submit+0xf5/0x190 [ 3256.939272] ? __fget_files+0x296/0x4c0 [ 3256.940179] ? __fget_light+0xea/0x290 [ 3256.941060] __sys_sendmmsg+0x195/0x470 [ 3256.941951] ? __ia32_sys_sendmsg+0xb0/0xb0 [ 3256.942907] ? lock_downgrade+0x6d0/0x6d0 [ 3256.943864] ? __mutex_unlock_slowpath+0xe1/0x600 [ 3256.944934] ? wait_for_completion_io+0x270/0x270 [ 3256.945998] ? rcu_read_lock_any_held+0x75/0xa0 [ 3256.947030] ? vfs_write+0x354/0xa70 [ 3256.947857] ? fput_many+0x2f/0x1a0 [ 3256.948659] ? ksys_write+0x1a9/0x260 [ 3256.949500] ? __ia32_sys_read+0xb0/0xb0 [ 3256.950416] __x64_sys_sendmmsg+0x99/0x100 [ 3256.951360] do_syscall_64+0x33/0x40 [ 3256.952179] entry_SYSCALL_64_after_hwframe+0x62/0xc7 [ 3256.953301] RIP: 0033:0x7fac065c2b19 [ 3256.954113] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 3256.958132] RSP: 002b:00007fac03b38188 EFLAGS: 00000246 ORIG_RAX: 0000000000000133 [ 3256.959808] RAX: ffffffffffffffda RBX: 00007fac066d5f60 RCX: 00007fac065c2b19 [ 3256.961359] RDX: 0000000000000001 RSI: 0000000020002040 RDI: 0000000000000003 [ 3256.962925] RBP: 00007fac03b381d0 R08: 0000000000000000 R09: 0000000000000000 [ 3256.964476] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 3256.966034] R13: 00007ffe4d4b793f R14: 00007fac03b38300 R15: 0000000000022000 19:59:16 executing program 0: perf_event_open(&(0x7f0000001d80)={0x2, 0x80, 0x46, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0xffff, 0x2}, 0x0, 0x0, 0x0, 0x0, 0x3}, 0x0, 0x0, 0xffffffffffffffff, 0x0) clone3(&(0x7f0000000200)={0x31081000, &(0x7f0000000100), 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) r0 = dup3(0xffffffffffffffff, 0xffffffffffffffff, 0x0) linkat(r0, &(0x7f0000000100)='./file0\x00', 0xffffffffffffffff, &(0x7f0000000140)='./file0/file0\x00', 0x1000) mount$9p_fd(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000000040), 0x104001, &(0x7f0000000280)={'trans=fd,', {}, 0x2c, {'wfdno', 0x3d, r0}, 0x2c, {[{@version_9p2000}, {@fscache}, {@cache_fscache}, {@debug={'debug', 0x3d, 0x100000000}}, {@cache_loose}, {@cache_mmap}], [{@permit_directio}, {@defcontext={'defcontext', 0x3d, 'unconfined_u'}}, {@fsname={'fsname', 0x3d, '^'}}, {@subj_type={'subj_type', 0x3d, '(-}#'}}]}}) [ 3256.980759] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium 19:59:16 executing program 6: syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000140)='./file0\x00', 0x40000, 0x4, &(0x7f0000000200)=[{&(0x7f0000010000)="20000000000100000c000000d40000000f000000010000000000000000000000002000000020000020000000d7f4655fd7f4655f0100ffff53ef010001000000d7f4655f000000000000000001000000000000000b0000000002", 0x5a, 0x400}, {&(0x7f0000010400)="030000000400000005000000d4000f", 0xf, 0x800}, {&(0x7f0000000500)="ffffffffff070000000000000000000000000000000000000000000000000080ffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffff", 0x402, 0xc00}, {&(0x7f0000010e00)="ed41000000040000d7f4655fd7f4655fd7f4655f000000000000040002", 0x1d, 0x1600}], 0x0, &(0x7f00000003c0)=ANY=[]) chdir(&(0x7f0000000040)='./file0\x00') openat(0xffffffffffffff9c, &(0x7f0000000080)='./file1\x00', 0x105142, 0x0) r0 = openat(0xffffffffffffff9c, &(0x7f0000000200)='./file1\x00', 0x2, 0x0) write(r0, &(0x7f0000000240)="01", 0x1) r1 = openat(0xffffffffffffff9c, &(0x7f00000000c0)='./file2\x00', 0x105142, 0x0) r2 = openat(0xffffffffffffff9c, &(0x7f0000001340)='./file1\x00', 0x0, 0x0) copy_file_range(r2, 0x0, r1, &(0x7f0000000280)=0x12000, 0xc3a, 0x0) openat$sr(0xffffffffffffff9c, 0x0, 0x0, 0x0) 19:59:16 executing program 4: syz_80211_inject_frame(&(0x7f00000000c0)=@device_a={0x8, 0x2, 0x11, 0x0, 0x11}, &(0x7f0000000440)=ANY=[], 0x2f) [ 3257.067395] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium 19:59:17 executing program 3: perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r0 = socket$netlink(0x10, 0x3, 0x0) sendmsg$nl_generic(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000180)=ANY=[@ANYRESOCT, @ANYRESHEX, @ANYRES32], 0x28}, 0x1, 0x0, 0x0, 0xc0}, 0x0) ioctl$BTRFS_IOC_BALANCE_PROGRESS(0xffffffffffffffff, 0x84009422, &(0x7f00000004c0)={0x0, 0x0, {0x0, @struct}, {0x0, @usage, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @struct}, {0x0, @struct, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @struct}}) ioctl$FS_IOC_FSSETXATTR(0xffffffffffffffff, 0x40086602, &(0x7f0000000000)) r1 = openat$sndseq(0xffffffffffffff9c, &(0x7f0000000040), 0x0) r2 = fcntl$dupfd(r1, 0x0, r1) syz_genetlink_get_family_id$tipc(&(0x7f0000000100), r0) sendmsg$TIPC_CMD_SHOW_NAME_TABLE(r2, 0x0, 0x4004) r3 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a) ioctl$sock_inet6_SIOCDELRT(r3, 0x890c, &(0x7f0000000440)={@private1={0xfc, 0x1, '\x00', 0x1}, @rand_addr=' \x01\x00', @mcast2, 0x1000, 0x4, 0x9, 0x969327fd195cfe0c, 0x75, 0x1000128}) r4 = socket$inet6_udp(0xa, 0x2, 0x0) sendmmsg$inet6(r4, &(0x7f0000004400)=[{{&(0x7f0000000140)={0xa, 0x4e20, 0x0, @empty}, 0x1c, 0x0}}, {{&(0x7f0000002ec0)={0xa, 0x0, 0x0, @ipv4={'\x00', '\xff\xff', @local}}, 0x1c, 0x0}}], 0x2, 0x4008000) ioctl$sock_SIOCBRDELBR(r4, 0x89a1, &(0x7f0000000040)='macvtap0\x00') 19:59:17 executing program 5: syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000140)='./file0\x00', 0x40000, 0x4, &(0x7f0000000200)=[{&(0x7f0000010000)="20000000000100000c000000d40000000f000000010000000000000000000000002000000020000020000000d7f4655fd7f4655f0100ffff53ef010001000000d7f4655f000000000000000001000000000000000b0000000002", 0x5a, 0x400}, {&(0x7f0000010400)="030000000400000005000000d4000f", 0xf, 0x800}, {&(0x7f0000000500)="ffffffffff070000000000000000000000000000000000000000000000000080ffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffff", 0x402, 0xc00}, {&(0x7f0000010e00)="ed41000000040000d7f4655fd7f4655fd7f4655f000000000000040002", 0x1d, 0x1600}], 0x0, &(0x7f00000003c0)=ANY=[]) chdir(&(0x7f0000000040)='./file0\x00') openat(0xffffffffffffff9c, &(0x7f0000000080)='./file1\x00', 0x105142, 0x0) r0 = openat(0xffffffffffffff9c, &(0x7f0000000200)='./file1\x00', 0x2, 0x0) write(r0, &(0x7f0000000240)="01", 0x1) r1 = openat(0xffffffffffffff9c, &(0x7f00000000c0)='./file2\x00', 0x105142, 0x0) r2 = openat(0xffffffffffffff9c, &(0x7f0000001340)='./file1\x00', 0x0, 0x0) copy_file_range(r2, 0x0, r1, &(0x7f0000000280)=0x10e00, 0xc3a, 0x0) openat$sr(0xffffffffffffff9c, 0x0, 0x0, 0x0) 19:59:17 executing program 0: perf_event_open(&(0x7f0000001d80)={0x2, 0x80, 0x46, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0xffff, 0x2}, 0x0, 0x0, 0x0, 0x0, 0x3}, 0x0, 0x0, 0xffffffffffffffff, 0x0) clone3(&(0x7f0000000200)={0x31081000, &(0x7f0000000100), 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) r0 = dup3(0xffffffffffffffff, 0xffffffffffffffff, 0x0) linkat(r0, &(0x7f0000000100)='./file0\x00', 0xffffffffffffffff, &(0x7f0000000140)='./file0/file0\x00', 0x1000) 19:59:17 executing program 2: r0 = socket$inet_icmp_raw(0x2, 0x3, 0x1) r1 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a) ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000140)={'syz_tun\x00', 0x0}) perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) sendmmsg$inet(r0, &(0x7f0000002040)=[{{&(0x7f0000000380)={0x2, 0x0, @multicast1}, 0x10, &(0x7f0000001600)=[{&(0x7f00000003c0)="db9c", 0xffe7}], 0x1, &(0x7f0000001640)=ANY=[@ANYBLOB="14000000000000000000000007000000c4048f01000000001c000000000000000000000008000000", @ANYRES32=r2], 0x38}}], 0x1, 0x0) (fail_nth: 34) [ 3257.209676] EXT4-fs (loop5): mounted filesystem without journal. Opts: ,errors=continue 19:59:17 executing program 6: syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000140)='./file0\x00', 0x40000, 0x4, &(0x7f0000000200)=[{&(0x7f0000010000)="20000000000100000c000000d40000000f000000010000000000000000000000002000000020000020000000d7f4655fd7f4655f0100ffff53ef010001000000d7f4655f000000000000000001000000000000000b0000000002", 0x5a, 0x400}, {&(0x7f0000010400)="030000000400000005000000d4000f", 0xf, 0x800}, {&(0x7f0000000500)="ffffffffff070000000000000000000000000000000000000000000000000080ffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffff", 0x402, 0xc00}, {&(0x7f0000010e00)="ed41000000040000d7f4655fd7f4655fd7f4655f000000000000040002", 0x1d, 0x1600}], 0x0, &(0x7f00000003c0)=ANY=[]) chdir(&(0x7f0000000040)='./file0\x00') openat(0xffffffffffffff9c, &(0x7f0000000080)='./file1\x00', 0x105142, 0x0) r0 = openat(0xffffffffffffff9c, &(0x7f0000000200)='./file1\x00', 0x2, 0x0) write(r0, &(0x7f0000000240)="01", 0x1) r1 = openat(0xffffffffffffff9c, &(0x7f00000000c0)='./file2\x00', 0x105142, 0x0) r2 = openat(0xffffffffffffff9c, &(0x7f0000001340)='./file1\x00', 0x0, 0x0) copy_file_range(r2, 0x0, r1, &(0x7f0000000280)=0x13a0c, 0xc3a, 0x0) openat$sr(0xffffffffffffff9c, 0x0, 0x0, 0x0) 19:59:17 executing program 3: perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r0 = socket$inet(0x2, 0x1, 0x0) bind$inet(r0, &(0x7f0000000000)={0x2, 0x4e21, @multicast1}, 0x10) connect$inet(r0, &(0x7f0000000140)={0x2, 0x4e21, @local}, 0x10) pipe2(&(0x7f0000000180)={0xffffffffffffffff, 0xffffffffffffffff}, 0x80000) ioctl$sock_ipv6_tunnel_SIOCDEL6RD(0xffffffffffffffff, 0x89fa, &(0x7f00000001c0)={'sit0\x00', &(0x7f0000000500)={'syztnl0\x00', 0x0, 0x29, 0x6, 0x8, 0x4, 0x23, @initdev={0xfe, 0x88, '\x00', 0x0, 0x0}, @private0={0xfc, 0x0, '\x00', 0x1}, 0x8, 0x80, 0x9, 0x3ff}}) ioctl$sock_SIOCADDRT(r1, 0x890b, &(0x7f0000000580)={0x0, @can={0x1d, r2}, @sco={0x1f, @none}, @nfc={0x27, 0x1, 0x1, 0x2}, 0x8000, 0x0, 0x0, 0x0, 0x21bb, &(0x7f0000000300)='veth0_to_hsr\x00', 0x4, 0x1, 0x9}) ioctl$AUTOFS_DEV_IOCTL_PROTOSUBVER(0xffffffffffffffff, 0xc0189373, &(0x7f0000000380)=ANY=[@ANYBLOB="010000000100000018000000", @ANYRES32=r0, @ANYBLOB="00000000000000002e2f66696c653200f6b4371731cbf05440d1ed8ce5862d8576839f3ab27ecdae288750c957d70e33d59e95e09a"]) r4 = openat(r3, &(0x7f0000000280)='./file1\x00', 0x701f02, 0x2c) recvmmsg$unix(0xffffffffffffffff, 0x0, 0x0, 0x20, &(0x7f0000003700)={0x0, 0x989680}) r5 = syz_mount_image$vfat(&(0x7f0000000000), &(0x7f0000000100)='./file0\x00', 0x0, 0x2, &(0x7f0000000200)=[{&(0x7f0000010000)="eb58906d6b66732e66617400020820000400008000f8000020004000030000000000000001", 0x25}, {0x0, 0x0, 0x4000}], 0x0, &(0x7f00000005c0)=ANY=[]) mkdirat(r5, &(0x7f0000000340)='./file0\x00', 0x0) r6 = syz_mount_image$vfat(0x0, &(0x7f00000000c0)='./file0\x00', 0x4, 0x0, 0x0, 0x0, &(0x7f00000001c0)=ANY=[]) openat(0xffffffffffffffff, &(0x7f0000000240)='./file0\x00', 0x121040, 0x109) ioctl$BTRFS_IOC_QUOTA_RESCAN(r6, 0x4040942c, &(0x7f0000000040)={0x0, 0x1f9, [0x0, 0xc8a2, 0x0, 0x8000, 0x101, 0x4]}) statx(r4, &(0x7f00000002c0)='./file1\x00', 0x2000, 0x7ff, &(0x7f0000000400)) openat$snapshot(0xffffffffffffff9c, &(0x7f0000000140), 0x40001, 0x0) socket$netlink(0x10, 0x3, 0x0) bind$inet(0xffffffffffffffff, &(0x7f0000000080)={0x2, 0x4e22, @private=0xa010100}, 0x10) 19:59:17 executing program 7: fcntl$dupfd(0xffffffffffffffff, 0x406, 0xffffffffffffffff) perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f0000000040), 0x1}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r0 = syz_open_dev$tty20(0xc, 0x4, 0x0) r1 = syz_io_uring_setup(0x7a8a, &(0x7f0000000340)={0x0, 0x3}, &(0x7f00000a0000)=nil, &(0x7f0000ffd000/0x3000)=nil, &(0x7f0000000200), &(0x7f0000000080)) r2 = perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x1, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4, @perf_config_ext={0xfffffffffffffffc, 0x800}, 0x0, 0x0, 0x0, 0x1, 0x1f}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) openat$procfs(0xffffffffffffff9c, &(0x7f00000010c0)='/proc/diskstats\x00', 0x0, 0x0) ioctl$EVIOCSABS2F(0xffffffffffffffff, 0x401845ef, &(0x7f00000011c0)={0x81, 0x81, 0x80000001}) ioctl$AUTOFS_IOC_PROTOSUBVER(r2, 0x80049367, &(0x7f0000001080)) fsconfig$FSCONFIG_SET_STRING(0xffffffffffffffff, 0x1, &(0x7f0000000080)='\x9c\xfa1naE\x04\x9ak#\xb06\xfb\x15\x05\x05\x12Y:\x99~a\x0f\x97*2\xc2\x10\f\xec\x98\xa0;\xf0a\xdb_fAR5\xdf\x1e46\xc8\x11w\xd1\x80\xbb\xb7\xc1-j\x98\t/\x12-\xbfq\xd5\x82\x86Z\xd6h!T\xb7d\xfa\xc6\x9c\x95\xf5b\x9f\x12n\x1apS\xcb\x01\xd9\xf8\x9b>\xad;\xe9e\xf9\xf5\x00\xb3\xb3j\xc2/8%\xb8A\x10B\xc4\xe9\x05x\xd5K\xf9\xaeD\x8fDmlE\xf1\t\xfb\xf2:K\x9b\xb1:\xfa\x91c\x15\xd6\x0eb\xe4\xb5{\x86\x19\xa8\x1e3\xf0o4x!ZC)~\x94Y\xb4\x9f\xec\x00'/177, &(0x7f0000000140)='\xeb\'&t\xd6\xcc\xfc^\x97<\xed<\x8az\xeeJ\xcd\x87!\xdaF\xc2\xde|;\x9c<\x87\xe1\xcb\xb4\xf3\n=w\xe14x\xca\xf70\xf81\xd4\x9f]\xdb.G\n\xe0\xaa\xf3O=\x8ct\xb3\x18\xdf\x95t\xc7\xd0\xb2\xeew{_h\x93 3\f\xcb\x18\xe7Z\x89\xf9z\xd4\xe1\xb5[\x7f\xc3\xbf~~&\xf8\xbd\x9b\xf3\xe5J\x9d\xb2\x0e\xe0\xdc\x13\x17hj\x04\xc6\x96\\\xef\xa6\xde\xd5\xe6', 0x0) mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, 0xffffffffffffffff, 0x0) r3 = openat$sysfs(0xffffffffffffff9c, &(0x7f0000000a80)='/sys/kernel/notes', 0x0, 0x0) r4 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a) ioctl$sock_SIOCGIFINDEX(r4, 0x8933, &(0x7f0000000140)={'lo\x00'}) ioctl$BTRFS_IOC_QGROUP_ASSIGN(r4, 0x40189429, &(0x7f0000000500)={0x0, 0x0, 0x2}) io_uring_enter(r1, 0x58ab, 0x0, 0x0, 0x0, 0x0) syz_genetlink_get_family_id$batadv(&(0x7f00000002c0), r3) ioctl$TIOCL_PASTESEL(r0, 0x541c, &(0x7f0000000000)) [ 3257.276244] FAULT_INJECTION: forcing a failure. [ 3257.276244] name failslab, interval 1, probability 0, space 0, times 0 [ 3257.278796] CPU: 0 PID: 25557 Comm: syz-executor.2 Not tainted 5.10.207 #1 [ 3257.280291] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 3257.282069] Call Trace: [ 3257.282660] dump_stack+0x107/0x167 [ 3257.283466] should_fail.cold+0x5/0xa [ 3257.284295] ? __alloc_skb+0x6d/0x5b0 [ 3257.285126] should_failslab+0x5/0x20 [ 3257.285956] kmem_cache_alloc_node+0x55/0x330 [ 3257.286985] __alloc_skb+0x6d/0x5b0 [ 3257.287810] __ip_append_data+0x2930/0x3310 [ 3257.288788] ? raw_destroy+0x30/0x30 [ 3257.289635] ? ip_finish_output+0x330/0x330 [ 3257.290581] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 3257.291677] ? ipv4_mtu+0x1ed/0x2c0 [ 3257.292477] ? raw_destroy+0x30/0x30 [ 3257.293285] ip_append_data+0x114/0x1a0 [ 3257.294176] raw_sendmsg+0xaa6/0x29d0 [ 3257.295052] ? dst_output+0x170/0x170 [ 3257.295887] ? perf_trace_run_bpf_submit+0xf5/0x190 [ 3257.296994] ? perf_trace_lock+0x2bd/0x490 [ 3257.297911] ? SOFTIRQ_verbose+0x10/0x10 [ 3257.298809] ? __lockdep_reset_lock+0x180/0x180 [ 3257.299842] ? selinux_socket_post_create+0x7f0/0x7f0 [ 3257.300947] ? find_held_lock+0x2c/0x110 [ 3257.301873] ? trace_hardirqs_on+0x5b/0x180 [ 3257.302825] ? dst_output+0x170/0x170 [ 3257.303662] inet_sendmsg+0x11d/0x140 [ 3257.304506] ? inet_send_prepare+0x540/0x540 [ 3257.305462] __sock_sendmsg+0x13c/0x190 [ 3257.306334] ____sys_sendmsg+0x334/0x870 [ 3257.307259] ? sock_write_iter+0x3d0/0x3d0 [ 3257.308177] ? do_recvmmsg+0x6d0/0x6d0 [ 3257.309031] ? perf_trace_lock+0x2bd/0x490 [ 3257.309981] ? __lockdep_reset_lock+0x180/0x180 [ 3257.311020] ___sys_sendmsg+0xf3/0x170 [ 3257.311872] ? sendmsg_copy_msghdr+0x160/0x160 [ 3257.312885] ? lock_downgrade+0x6d0/0x6d0 [ 3257.313796] ? perf_trace_run_bpf_submit+0xf5/0x190 [ 3257.314925] ? __fget_files+0x296/0x4c0 [ 3257.315817] ? __fget_light+0xea/0x290 [ 3257.316699] __sys_sendmmsg+0x195/0x470 [ 3257.317579] ? __ia32_sys_sendmsg+0xb0/0xb0 [ 3257.318538] ? lock_downgrade+0x6d0/0x6d0 [ 3257.319481] ? __mutex_unlock_slowpath+0xe1/0x600 [ 3257.320541] ? wait_for_completion_io+0x270/0x270 [ 3257.321590] ? rcu_read_lock_any_held+0x75/0xa0 [ 3257.322620] ? vfs_write+0x354/0xa70 [ 3257.323436] ? fput_many+0x2f/0x1a0 [ 3257.323464] ? ksys_write+0x1a9/0x260 [ 3257.323490] ? __ia32_sys_read+0xb0/0xb0 [ 3257.323534] __x64_sys_sendmmsg+0x99/0x100 [ 3257.323564] do_syscall_64+0x33/0x40 [ 3257.325038] entry_SYSCALL_64_after_hwframe+0x62/0xc7 [ 3257.325053] RIP: 0033:0x7fac065c2b19 [ 3257.325077] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 3257.333062] RSP: 002b:00007fac03b38188 EFLAGS: 00000246 ORIG_RAX: 0000000000000133 [ 3257.334737] RAX: ffffffffffffffda RBX: 00007fac066d5f60 RCX: 00007fac065c2b19 [ 3257.336287] RDX: 0000000000000001 RSI: 0000000020002040 RDI: 0000000000000003 [ 3257.336301] RBP: 00007fac03b381d0 R08: 0000000000000000 R09: 0000000000000000 [ 3257.336318] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 3257.336333] R13: 00007ffe4d4b793f R14: 00007fac03b38300 R15: 0000000000022000 19:59:17 executing program 6: syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000140)='./file0\x00', 0x40000, 0x4, &(0x7f0000000200)=[{&(0x7f0000010000)="20000000000100000c000000d40000000f000000010000000000000000000000002000000020000020000000d7f4655fd7f4655f0100ffff53ef010001000000d7f4655f000000000000000001000000000000000b0000000002", 0x5a, 0x400}, {&(0x7f0000010400)="030000000400000005000000d4000f", 0xf, 0x800}, {&(0x7f0000000500)="ffffffffff070000000000000000000000000000000000000000000000000080ffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffff", 0x402, 0xc00}, {&(0x7f0000010e00)="ed41000000040000d7f4655fd7f4655fd7f4655f000000000000040002", 0x1d, 0x1600}], 0x0, &(0x7f00000003c0)=ANY=[]) chdir(&(0x7f0000000040)='./file0\x00') openat(0xffffffffffffff9c, &(0x7f0000000080)='./file1\x00', 0x105142, 0x0) r0 = openat(0xffffffffffffff9c, &(0x7f0000000200)='./file1\x00', 0x2, 0x0) write(r0, &(0x7f0000000240)="01", 0x1) r1 = openat(0xffffffffffffff9c, &(0x7f00000000c0)='./file2\x00', 0x105142, 0x0) r2 = openat(0xffffffffffffff9c, &(0x7f0000001340)='./file1\x00', 0x0, 0x0) copy_file_range(r2, 0x0, r1, &(0x7f0000000280)=0x14000, 0xc3a, 0x0) openat$sr(0xffffffffffffff9c, 0x0, 0x0, 0x0) [ 3257.370361] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium 19:59:17 executing program 4: syz_80211_inject_frame(&(0x7f00000000c0)=@device_a={0x8, 0x2, 0x11, 0x0, 0x12}, &(0x7f0000000440)=ANY=[], 0x2f) [ 3257.419480] EXT4-fs (loop6): mounted filesystem without journal. Opts: ,errors=continue [ 3257.431350] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium [ 3257.736901] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium 19:59:31 executing program 4: syz_80211_inject_frame(&(0x7f00000000c0)=@device_a={0x8, 0x2, 0x11, 0x0, 0x14}, &(0x7f0000000440)=ANY=[], 0x2f) 19:59:31 executing program 1: sendmsg$ETHTOOL_MSG_FEATURES_SET(0xffffffffffffffff, 0x0, 0x0) syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000040)='./file0\x00', 0x0, 0x3, &(0x7f0000000200)=[{&(0x7f0000010000)="2000000080000000060000006a0000000f000000000000000100000001000000004000000040000020000000e0f4655fe0f4655f0100ffff53ef010001000000dff4655f000000000000000001000000000000000b0000000001", 0x5a, 0x400}, {&(0x7f0000010400)="020000000300000004", 0x9, 0x800}, {&(0x7f0000000100)="ed4100000093b200dff4655fe0f4655fe0f4655f000008000000", 0x1a, 0x2100}], 0x0, &(0x7f0000000140)=ANY=[]) openat(0xffffffffffffffff, &(0x7f00000002c0)='./file1\x00', 0x0, 0x179) open(&(0x7f0000000140)='./file1\x00', 0x80, 0x1) r0 = fcntl$dupfd(0xffffffffffffffff, 0x0, 0xffffffffffffffff) ioctl$sock_SIOCGIFINDEX_80211(0xffffffffffffffff, 0x8933, &(0x7f0000000080)={'wlan0\x00'}) bind$bt_hci(r0, 0x0, 0x0) ioctl$sock_SIOCGIFINDEX_80211(0xffffffffffffffff, 0x8933, &(0x7f0000000540)={'wlan0\x00'}) socketpair(0x23, 0x2, 0x9a02, &(0x7f0000000180)={0xffffffffffffffff, 0xffffffffffffffff}) sendmsg$NL80211_CMD_SET_INTERFACE(r1, &(0x7f0000000440)={&(0x7f00000001c0)={0x10, 0x0, 0x0, 0x40}, 0xc, &(0x7f0000000280)={&(0x7f0000000300)={0x13c, 0x0, 0x200, 0x70bd27, 0x25dfdbfe, {{}, {@void, @val={0xc, 0x99, {0xc673, 0x2d}}}}, [@mon_options=[@NL80211_ATTR_MU_MIMO_GROUP_DATA={0x1c, 0xe7, "c73065c411fb890239b4348f7a03e9554213d774dcd223e7"}, @NL80211_ATTR_MU_MIMO_FOLLOW_MAC_ADDR={0xa}, @NL80211_ATTR_MU_MIMO_FOLLOW_MAC_ADDR={0xa, 0xe8, @broadcast}, @NL80211_ATTR_MNTR_FLAGS={0x24, 0x17, 0x0, 0x1, [@NL80211_MNTR_FLAG_ACTIVE={0x4}, @NL80211_MNTR_FLAG_OTHER_BSS={0x4}, @NL80211_MNTR_FLAG_OTHER_BSS={0x4}, @NL80211_MNTR_FLAG_FCSFAIL={0x4}, @NL80211_MNTR_FLAG_CONTROL={0x4}, @NL80211_MNTR_FLAG_OTHER_BSS={0x4}, @NL80211_MNTR_FLAG_OTHER_BSS={0x4}, @NL80211_MNTR_FLAG_PLCPFAIL={0x4}]}, @NL80211_ATTR_MNTR_FLAGS={0xc, 0x17, 0x0, 0x1, [@NL80211_MNTR_FLAG_PLCPFAIL={0x4}, @NL80211_MNTR_FLAG_CONTROL={0x4}]}, @NL80211_ATTR_MU_MIMO_GROUP_DATA={0x1c, 0xe7, "e757acbd2c5fa89e5d7bd8642d2518f5cf1da919aa0f8cb0"}, @NL80211_ATTR_MNTR_FLAGS={0x24, 0x17, 0x0, 0x1, [@NL80211_MNTR_FLAG_OTHER_BSS={0x4}, @NL80211_MNTR_FLAG_COOK_FRAMES={0x4}, @NL80211_MNTR_FLAG_COOK_FRAMES={0x4}, @NL80211_MNTR_FLAG_FCSFAIL={0x4}, @NL80211_MNTR_FLAG_OTHER_BSS={0x4}, @NL80211_MNTR_FLAG_OTHER_BSS={0x4}, @NL80211_MNTR_FLAG_OTHER_BSS={0x4}, @NL80211_MNTR_FLAG_COOK_FRAMES={0x4}]}], @mon_options=[@NL80211_ATTR_MNTR_FLAGS={0x8, 0x17, 0x0, 0x1, [@NL80211_MNTR_FLAG_OTHER_BSS={0x4}]}, @NL80211_ATTR_MU_MIMO_FOLLOW_MAC_ADDR={0xa}, @NL80211_ATTR_MU_MIMO_GROUP_DATA={0x1c, 0xe7, "090af89dd2d297a0dd6dc03edc392f6aca10423805725bd9"}, @NL80211_ATTR_MU_MIMO_FOLLOW_MAC_ADDR={0xa, 0xe8, @broadcast}, @NL80211_ATTR_MU_MIMO_FOLLOW_MAC_ADDR={0xa, 0xe8, @device_b}, @NL80211_ATTR_MU_MIMO_FOLLOW_MAC_ADDR={0xa}], @NL80211_ATTR_4ADDR={0x5, 0x53, 0x1}, @NL80211_ATTR_IFTYPE={0x8, 0x5, 0x4}, @NL80211_ATTR_MESH_ID={0xa}, @NL80211_ATTR_4ADDR={0x5}]}, 0x13c}, 0x1, 0x0, 0x0, 0x24004010}, 0x40) openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x42, 0x0) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) io_setup(0x5, &(0x7f0000000700)) r2 = syz_init_net_socket$bt_l2cap(0x1f, 0x1, 0x0) bind$bt_l2cap(r2, &(0x7f0000000080)={0x1f, 0x0, @any, 0xfffb}, 0xe) connect$bt_l2cap(r2, &(0x7f0000000000)={0x1f, 0x0, @fixed={'\xaa\xaa\xaa\xaa\xaa', 0x10}, 0x3}, 0xe) sendmmsg(r2, &(0x7f0000001040), 0x3fffffffffffdca, 0x40) umount2(&(0x7f00000000c0)='./file0\x00', 0x0) 19:59:31 executing program 0: perf_event_open(&(0x7f0000001d80)={0x2, 0x80, 0x46, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0xffff, 0x2}, 0x0, 0x0, 0x0, 0x0, 0x3}, 0x0, 0x0, 0xffffffffffffffff, 0x0) clone3(&(0x7f0000000200)={0x31081000, &(0x7f0000000100), 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) dup3(0xffffffffffffffff, 0xffffffffffffffff, 0x0) 19:59:31 executing program 5: syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000140)='./file0\x00', 0x40000, 0x4, &(0x7f0000000200)=[{&(0x7f0000010000)="20000000000100000c000000d40000000f000000010000000000000000000000002000000020000020000000d7f4655fd7f4655f0100ffff53ef010001000000d7f4655f000000000000000001000000000000000b0000000002", 0x5a, 0x400}, {&(0x7f0000010400)="030000000400000005000000d4000f", 0xf, 0x800}, {&(0x7f0000000500)="ffffffffff070000000000000000000000000000000000000000000000000080ffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffff", 0x402, 0xc00}, {&(0x7f0000010e00)="ed41000000040000d7f4655fd7f4655fd7f4655f000000000000040002", 0x1d, 0x1600}], 0x0, &(0x7f00000003c0)=ANY=[]) chdir(&(0x7f0000000040)='./file0\x00') openat(0xffffffffffffff9c, &(0x7f0000000080)='./file1\x00', 0x105142, 0x0) r0 = openat(0xffffffffffffff9c, &(0x7f0000000200)='./file1\x00', 0x2, 0x0) write(r0, &(0x7f0000000240)="01", 0x1) r1 = openat(0xffffffffffffff9c, &(0x7f00000000c0)='./file2\x00', 0x105142, 0x0) r2 = openat(0xffffffffffffff9c, &(0x7f0000001340)='./file1\x00', 0x0, 0x0) copy_file_range(r2, 0x0, r1, &(0x7f0000000280)=0x10e00, 0xc3a, 0x0) openat$sr(0xffffffffffffff9c, 0x0, 0x0, 0x0) 19:59:31 executing program 6: syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000140)='./file0\x00', 0x40000, 0x4, &(0x7f0000000200)=[{&(0x7f0000010000)="20000000000100000c000000d40000000f000000010000000000000000000000002000000020000020000000d7f4655fd7f4655f0100ffff53ef010001000000d7f4655f000000000000000001000000000000000b0000000002", 0x5a, 0x400}, {&(0x7f0000010400)="030000000400000005000000d4000f", 0xf, 0x800}, {&(0x7f0000000500)="ffffffffff070000000000000000000000000000000000000000000000000080ffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffff", 0x402, 0xc00}, {&(0x7f0000010e00)="ed41000000040000d7f4655fd7f4655fd7f4655f000000000000040002", 0x1d, 0x1600}], 0x0, &(0x7f00000003c0)=ANY=[]) chdir(&(0x7f0000000040)='./file0\x00') openat(0xffffffffffffff9c, &(0x7f0000000080)='./file1\x00', 0x105142, 0x0) r0 = openat(0xffffffffffffff9c, &(0x7f0000000200)='./file1\x00', 0x2, 0x0) write(r0, &(0x7f0000000240)="01", 0x1) r1 = openat(0xffffffffffffff9c, &(0x7f00000000c0)='./file2\x00', 0x105142, 0x0) r2 = openat(0xffffffffffffff9c, &(0x7f0000001340)='./file1\x00', 0x0, 0x0) copy_file_range(r2, 0x0, r1, &(0x7f0000000280)=0x14100, 0xc3a, 0x0) openat$sr(0xffffffffffffff9c, 0x0, 0x0, 0x0) 19:59:31 executing program 2: r0 = socket$inet_icmp_raw(0x2, 0x3, 0x1) r1 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a) ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000140)={'syz_tun\x00', 0x0}) perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) sendmmsg$inet(r0, &(0x7f0000002040)=[{{&(0x7f0000000380)={0x2, 0x0, @multicast1}, 0x10, &(0x7f0000001600)=[{&(0x7f00000003c0)="db9c", 0xffe7}], 0x1, &(0x7f0000001640)=ANY=[@ANYBLOB="14000000000000000000000007000000c4048f01000000001c000000000000000000000008000000", @ANYRES32=r2], 0x38}}], 0x1, 0x0) (fail_nth: 35) 19:59:31 executing program 3: r0 = socket$nl_netfilter(0x10, 0x3, 0xc) sendmsg$IPCTNL_MSG_CT_NEW(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000100)={&(0x7f00000002c0)=ANY=[@ANYBLOB="3800000000010104000000000000000002000000240001801400018008000100ac14140008000200000000000c000280040001"], 0x38}}, 0x0) r1 = openat(0xffffffffffffff9c, &(0x7f0000000180)='./file0\x00', 0x47e2, 0x4) r2 = socket$nl_generic(0x10, 0x3, 0x10) ftruncate(r1, 0x1000003) dup2(r1, r2) ioctl$FS_IOC_FSSETXATTR(r1, 0x40086602, &(0x7f0000000000)) fsetxattr$security_capability(r1, &(0x7f0000000040), &(0x7f0000000080)=@v2, 0x14, 0x0) r3 = socket$nl_generic(0x10, 0x3, 0x10) r4 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000280), 0xffffffffffffffff) ioctl$sock_SIOCGIFINDEX_80211(r3, 0x8933, &(0x7f00000000c0)={'wlan1\x00', 0x0}) sendmsg$NL80211_CMD_SET_STATION(r3, &(0x7f0000000700)={&(0x7f0000000540)={0x10, 0x0, 0x0, 0x2000000}, 0xc, &(0x7f00000006c0)={&(0x7f00000005c0)={0xf8, r4, 0x1, 0x70bd25, 0x25dfdbfe, {{}, {@val={0x8, 0x3, r5}, @void}}, [@NL80211_ATTR_STA_AID={0x6, 0x10, 0x76e}, @NL80211_ATTR_AIRTIME_WEIGHT={0x6, 0x112, 0x7}, @NL80211_ATTR_STA_EXT_CAPABILITY={0xbd, 0xac, "db4e351231a4f3249b77bb54a9141feee11d23dc18dcc6fa42bb4b510db391a7e40cc92f82cf92ce3d89e89bbcefccab3b94bc79d976b624f0c2127801ddbe302db229db45a978548ff070ffd68b1084ba776d0a23b8cbe3fbfedb3aad3591f7b219bd3e55ce9aff7182a1fe0258d73d29d8cea5cf6a1d78d28d35abd03ae439e4ca4924d0e48fd5f7f08b424d0e4d981c18040f342de2d5b87f4585e2cde9163f18bc88552507cef70e8db0dacde9cce80ac75800029d8bbb"}, @NL80211_ATTR_MAC={0xa}]}, 0xf8}, 0x1, 0x0, 0x0, 0x4000}, 0x4004000) 19:59:31 executing program 7: perf_event_open(&(0x7f0000000640)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r0 = syz_open_dev$tty1(0xc, 0x4, 0x1) r1 = add_key$keyring(&(0x7f00000003c0), &(0x7f0000000400)={'syz', 0x2}, 0x0, 0x0, 0x0) ioctl$KDGKBLED(r0, 0x4b64, &(0x7f0000000440)) ioctl$BTRFS_IOC_SCRUB(r0, 0xc400941b, &(0x7f0000000880)={0x0, 0x16c, 0x3}) fcntl$F_GET_RW_HINT(0xffffffffffffffff, 0x40b, &(0x7f0000000480)) ioctl$BTRFS_IOC_SCRUB_PROGRESS(0xffffffffffffffff, 0xc400941d, &(0x7f0000000c80)={r2, 0x3, 0x7, 0x1}) r3 = add_key$keyring(&(0x7f0000000040), &(0x7f0000000080)={'syz', 0x3}, 0x0, 0x0, 0xfffffffffffffffd) r4 = add_key$keyring(&(0x7f00000000c0), &(0x7f0000000140)={'syz', 0x3}, 0x0, 0x0, r1) ioctl$PIO_UNIMAP(r0, 0x4b67, &(0x7f0000000240)={0x1, &(0x7f0000000000)=[{0x1}]}) keyctl$KEYCTL_MOVE(0x1e, r4, 0xfffffffffffffffc, r3, 0x0) add_key(&(0x7f00000001c0)='user\x00', &(0x7f0000000200)={'syz', 0x1}, 0x0, 0x0, 0x0) r5 = add_key$keyring(&(0x7f0000000740), &(0x7f0000000780)={'syz', 0x2}, 0x0, 0x0, 0xfffffffffffffffa) keyctl$revoke(0x3, r5) r6 = syz_open_procfs(0xffffffffffffffff, &(0x7f0000000040)='net/snmp6\x00') ioctl$TIOCGSERIAL(r6, 0x541e, &(0x7f0000000340)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, &(0x7f00000007c0)=""/182}) unshare(0x48020200) r7 = dup3(0xffffffffffffffff, 0xffffffffffffffff, 0x0) linkat(r7, &(0x7f0000000100)='./file0\x00', 0xffffffffffffffff, &(0x7f0000000140)='./file0/file0\x00', 0x1000) sendmsg$nl_generic(r7, &(0x7f0000000300)={&(0x7f0000000100)={0x10, 0x0, 0x0, 0x4000000}, 0xc, &(0x7f0000000180)={&(0x7f0000000280)={0x64, 0x42, 0x20, 0x70bd2a, 0x25dfdbfd, {0x5}, [@nested={0x20, 0x27, 0x0, 0x1, [@typed={0x14, 0x48, 0x0, 0x0, @ipv6=@dev={0xfe, 0x80, '\x00', 0x32}}, @typed={0x8, 0x88, 0x0, 0x0, @uid=0xee01}]}, @typed={0x8, 0x95, 0x0, 0x0, @uid}, @typed={0x14, 0x69, 0x0, 0x0, @ipv6=@ipv4={'\x00', '\xff\xff', @broadcast}}, @typed={0x8, 0x69, 0x0, 0x0, @u32=0x72ff92d7}, @typed={0xc, 0xa, 0x0, 0x0, @u64=0x6}]}, 0x64}, 0x1, 0x0, 0x0, 0x4000}, 0x48050) [ 3271.988249] netlink: 'syz-executor.3': attribute type 1 has an invalid length. [ 3271.991921] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium [ 3272.030020] netlink: 'syz-executor.3': attribute type 1 has an invalid length. [ 3272.035827] FAULT_INJECTION: forcing a failure. [ 3272.035827] name failslab, interval 1, probability 0, space 0, times 0 [ 3272.037466] CPU: 0 PID: 25797 Comm: syz-executor.2 Not tainted 5.10.207 #1 [ 3272.038509] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 3272.039732] Call Trace: [ 3272.040137] dump_stack+0x107/0x167 [ 3272.040692] should_fail.cold+0x5/0xa [ 3272.041278] ? create_object.isra.0+0x3a/0xa20 [ 3272.041971] should_failslab+0x5/0x20 [ 3272.042544] kmem_cache_alloc+0x5b/0x310 [ 3272.043184] create_object.isra.0+0x3a/0xa20 [ 3272.043849] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 3272.044619] kmem_cache_alloc_node+0x169/0x330 [ 3272.045310] __alloc_skb+0x6d/0x5b0 [ 3272.045858] __ip_append_data+0x2930/0x3310 [ 3272.046530] ? raw_destroy+0x30/0x30 [ 3272.047119] ? ip_finish_output+0x330/0x330 [ 3272.047779] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 3272.048545] ? ipv4_mtu+0x1ed/0x2c0 [ 3272.049108] ? raw_destroy+0x30/0x30 [ 3272.049671] ip_append_data+0x114/0x1a0 [ 3272.050296] raw_sendmsg+0xaa6/0x29d0 [ 3272.050913] ? dst_output+0x170/0x170 [ 3272.051481] ? perf_trace_run_bpf_submit+0xf5/0x190 [ 3272.052254] ? perf_trace_lock+0x2bd/0x490 [ 3272.052897] ? SOFTIRQ_verbose+0x10/0x10 [ 3272.053522] ? __lockdep_reset_lock+0x180/0x180 [ 3272.054235] ? selinux_socket_post_create+0x7f0/0x7f0 [ 3272.055021] ? find_held_lock+0x2c/0x110 [ 3272.055650] ? trace_hardirqs_on+0x5b/0x180 [ 3272.056298] ? dst_output+0x170/0x170 [ 3272.056863] inet_sendmsg+0x11d/0x140 [ 3272.057438] ? inet_send_prepare+0x540/0x540 [ 3272.058101] __sock_sendmsg+0x13c/0x190 [ 3272.058711] ____sys_sendmsg+0x334/0x870 [ 3272.059343] ? sock_write_iter+0x3d0/0x3d0 [ 3272.059978] ? do_recvmmsg+0x6d0/0x6d0 [ 3272.060557] ? perf_trace_lock+0x2bd/0x490 [ 3272.061207] ? __lockdep_reset_lock+0x180/0x180 [ 3272.061915] ___sys_sendmsg+0xf3/0x170 [ 3272.062496] ? sendmsg_copy_msghdr+0x160/0x160 [ 3272.063192] ? lock_downgrade+0x6d0/0x6d0 [ 3272.063816] ? perf_trace_run_bpf_submit+0xf5/0x190 [ 3272.064585] ? __fget_files+0x296/0x4c0 [ 3272.065200] ? __fget_light+0xea/0x290 [ 3272.065808] __sys_sendmmsg+0x195/0x470 [ 3272.066417] ? __ia32_sys_sendmsg+0xb0/0xb0 [ 3272.067076] ? lock_downgrade+0x6d0/0x6d0 [ 3272.067726] ? __mutex_unlock_slowpath+0xe1/0x600 [ 3272.068473] ? wait_for_completion_io+0x270/0x270 [ 3272.069201] ? rcu_read_lock_any_held+0x75/0xa0 [ 3272.069886] ? vfs_write+0x354/0xa70 [ 3272.070441] ? fput_many+0x2f/0x1a0 [ 3272.070995] ? ksys_write+0x1a9/0x260 [ 3272.071549] ? __ia32_sys_read+0xb0/0xb0 [ 3272.072158] __x64_sys_sendmmsg+0x99/0x100 [ 3272.072764] do_syscall_64+0x33/0x40 [ 3272.073301] entry_SYSCALL_64_after_hwframe+0x62/0xc7 [ 3272.074024] RIP: 0033:0x7fac065c2b19 [ 3272.074552] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 3272.077140] RSP: 002b:00007fac03b38188 EFLAGS: 00000246 ORIG_RAX: 0000000000000133 [ 3272.078214] RAX: ffffffffffffffda RBX: 00007fac066d5f60 RCX: 00007fac065c2b19 [ 3272.079219] RDX: 0000000000000001 RSI: 0000000020002040 RDI: 0000000000000003 [ 3272.080215] RBP: 00007fac03b381d0 R08: 0000000000000000 R09: 0000000000000000 [ 3272.081209] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 3272.082233] R13: 00007ffe4d4b793f R14: 00007fac03b38300 R15: 0000000000022000 [ 3272.109709] EXT4-fs (loop5): mounted filesystem without journal. Opts: ,errors=continue 19:59:32 executing program 0: perf_event_open(&(0x7f0000001d80)={0x2, 0x80, 0x46, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0xffff, 0x2}, 0x0, 0x0, 0x0, 0x0, 0x3}, 0x0, 0x0, 0xffffffffffffffff, 0x0) clone3(&(0x7f0000000200)={0x31081000, &(0x7f0000000100), 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) [ 3272.182050] EXT4-fs (loop6): mounted filesystem without journal. Opts: ,errors=continue 19:59:32 executing program 1: r0 = perf_event_open(&(0x7f0000001d80)={0x2, 0x80, 0x69, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x6, @perf_bp={&(0x7f0000000140), 0x8}, 0x0, 0x0, 0x0, 0x2, 0x5, 0x1000000}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) fallocate(0xffffffffffffffff, 0x0, 0x0, 0x0) r1 = perf_event_open(&(0x7f0000001d80)={0x3, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x110, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0, 0x4}, 0x0, 0x0, 0x0, 0x0, 0x1}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) syz_io_uring_setup(0x21, &(0x7f0000000080)={0x0, 0x45ae, 0x0, 0x2, 0x3b2, 0x0, 0x0}, &(0x7f00000a0000)=nil, &(0x7f0000ffe000/0x1000)=nil, &(0x7f0000000100)=0x0, &(0x7f0000000340)=0x0) r4 = socket$inet6_tcp(0xa, 0x1, 0x0) syz_io_uring_submit(r2, r3, &(0x7f0000000000)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r4, 0x80, &(0x7f0000000280)=@in6={0xa, 0x0, 0x0, @ipv4={'\x00', '\xff\xff', @dev={0xac, 0x14, 0x14, 0x20}}}}, 0x0) r5 = fcntl$dupfd(r1, 0x406, r0) syz_genetlink_get_family_id$team(&(0x7f0000000240), r5) io_uring_enter(0xffffffffffffffff, 0x76d0, 0x100faa4, 0x0, 0x0, 0x0) pwrite64(0xffffffffffffffff, 0x0, 0x0, 0x0) openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x0, 0x0) dup2(0xffffffffffffffff, 0xffffffffffffffff) r6 = creat(&(0x7f0000000040)='./file0\x00', 0x0) write$binfmt_elf64(r6, &(0x7f0000000100)=ANY=[], 0xfdef) r7 = socket$nl_sock_diag(0x10, 0x3, 0x4) ppoll(&(0x7f0000000000)=[{0xffffffffffffffff, 0x230}, {r7}, {0xffffffffffffffff, 0x4}, {r6, 0x408}, {r6, 0x108}], 0x5, &(0x7f0000000080)={0x77359400}, &(0x7f00000000c0)={[0x8]}, 0x8) fallocate(r6, 0x8, 0x0, 0x8000) ioctl$INCFS_IOC_GET_FILLED_BLOCKS(0xffffffffffffffff, 0x80286722, &(0x7f0000000300)={&(0x7f00000001c0)=""/89, 0x59, 0x80000001, 0x1}) openat(r6, &(0x7f0000000180)='./file0\x00', 0x351201, 0x3) openat(0xffffffffffffff9c, &(0x7f0000000100)='./file0\x00', 0x105142, 0x3c) 19:59:32 executing program 2: r0 = socket$inet_icmp_raw(0x2, 0x3, 0x1) r1 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a) ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000140)={'syz_tun\x00', 0x0}) perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) sendmmsg$inet(r0, &(0x7f0000002040)=[{{&(0x7f0000000380)={0x2, 0x0, @multicast1}, 0x10, &(0x7f0000001600)=[{&(0x7f00000003c0)="db9c", 0xffe7}], 0x1, &(0x7f0000001640)=ANY=[@ANYBLOB="14000000000000000000000007000000c4048f01000000001c000000000000000000000008000000", @ANYRES32=r2], 0x38}}], 0x1, 0x0) (fail_nth: 36) 19:59:32 executing program 5: sendmsg$TIPC_CMD_GET_NODES(0xffffffffffffffff, &(0x7f00000000c0)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x840200}, 0xc, &(0x7f0000000080)={&(0x7f0000000040)={0x1c, 0x0, 0x100, 0x70bd27, 0x25dfdbfe, {}, [""]}, 0x1c}, 0x1, 0x0, 0x0, 0x20008000}, 0x0) r0 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$WG_CMD_SET_DEVICE(r0, &(0x7f00000001c0)={&(0x7f0000000100)={0x10, 0x0, 0x0, 0x80000000}, 0xc, &(0x7f0000000180)={&(0x7f0000000140)={0x1c, 0x0, 0x300, 0x70bd2b, 0x25dfdbfd, {}, [@WGDEVICE_A_FLAGS={0x8, 0x5, 0x1}]}, 0x1c}, 0x1, 0x0, 0x0, 0x80}, 0x40080) io_setup(0x101, &(0x7f0000000200)=0x0) r2 = socket$nl_audit(0x10, 0x3, 0x9) r3 = eventfd(0x5) r4 = socket$nl_xfrm(0x10, 0x3, 0x6) r5 = openat$incfs(0xffffffffffffffff, &(0x7f0000000800)='.pending_reads\x00', 0x100, 0x2) r6 = openat$incfs(0xffffffffffffffff, &(0x7f00000009c0)='.log\x00', 0x10000, 0xa8) io_submit(r1, 0x6, &(0x7f0000000a40)=[&(0x7f0000000340)={0x0, 0x0, 0x0, 0x1, 0xdd, r2, &(0x7f0000000240)="eb70f58813b44b7132bb9919364391c2589a3e9c23c9e76c4c24e240717c86935b287ca3898ad63d985f24bb602f13d5ed459bc14ccd970787529862c5b280c480fb54310b3b3e751651ac5f945bc01808d0d74bfa12b6f07a0949b09dfbe42c75ad0019fdcaaff498a0472266731527d28bf34dac25b51286e6fa9d49d209c1751dc28e2a3fcbfcf2eb5cde1b709d77626af4fa1ee695e81ced6290ec8302c82a3af75488582158e13d7eb67fafb00c5fd7f4d22a8d4c4b6ee9fb686062c7aec62d9fbe31ef004442bbe8b46b0e95949004c3d7acc26c30f11d3a057b4700a4", 0xe0, 0x8000, 0x0, 0x1, r3}, &(0x7f0000000480)={0x0, 0x0, 0x0, 0x8, 0x4, r0, &(0x7f0000000380)="d860f61b4056cdbc6977156bbbc319381389ebe497a8c9435541065798fa0e764b5acffa0540e96196782ecb9c04537ed8dbbfeca1e03772eeeaf4b5ec3d48db0bb1614471847588f531370d0c56abf618bec47d4ad924f933431b7bef0d282113d3a10782150b4694d942d6ffb8dbb7e5b7920588f16c9b3a3abb6408408e0747ee53891ba9b4b74fbdb26845bd5d36c800bbb87090ad8627ef1a356dc6a88219deede41ccd0de6869552b82a3b37c8027aec909e293a5104a12ada0830478b32e993adeda7", 0xc6, 0x6}, &(0x7f0000000540)={0x0, 0x0, 0x0, 0x8, 0x8, r0, &(0x7f00000004c0)="c6b38d3bc1077d9859df4075cd13e9298fca550f67ff68755b913ec96b42215f74b59cbf7b00d2f103f504b3a1ab79299d6042421c2186a963e5d0bedd2018c203d44812e922ee6f5f3c999053e276cd28b9d093c51690e2b731220f687a9fcfae4535b5e18e64b72649dc73b49801836851", 0x72, 0x4, 0x0, 0x2}, &(0x7f0000000840)={0x0, 0x0, 0x0, 0xd, 0x7, r4, &(0x7f0000000580)="600ab6d0d88c1619993b568233dbb8941065ae2ea8fbc6ce520dc2bc50271246b1af214ca1ebfde4caa6654dc114d378ea996a2d6ccbdf442ba4770a909f009c507d8d1f8475bddbc592d35cc9dc4f25558b3f08a5ec212bf3c20dcfd8dd05d92a66980e4b130d1ce139f4534c6cb1", 0x6f, 0x5, 0x0, 0x1, r5}, &(0x7f0000000900)={0x0, 0x0, 0x0, 0x5, 0x7f, r0, &(0x7f0000000880)="940119c6af056d5d9f20a9377a243db907c2cf209979362efa7c8ae3ca4c920ff9b3ab6db1626cc62244e3991ad5763d537efc1392a440d30267a92851ecaa2da8cb3bbebd6b143d19b6379abc5f64d354dfebd29145a8", 0x57}, &(0x7f0000000a00)={0x0, 0x0, 0x0, 0x8, 0x3, r0, &(0x7f0000000940)="56af04b24ce95b0705f43d72d2ee53a14a2f7d2ca1e928e0d4109ca2626d77c5490f904ad7a57d3ab9e2848347acb249aef81d333c11d55b5e175c63bcc588bc687c2e147c6b3a39251c3e646c6cde", 0x4f, 0x8, 0x0, 0x2, r6}]) r7 = syz_open_dev$vcsu(&(0x7f0000000a80), 0x7fffffff, 0x400002) ioctl$sock_ipv6_tunnel_SIOCGET6RD(r6, 0x89f8, &(0x7f0000000b80)={'ip6gre0\x00', &(0x7f0000000b00)={'ip6tnl0\x00', 0x0, 0x2f, 0x1, 0x84, 0x1, 0x42, @remote, @local, 0x40, 0x7800, 0xfffffff7, 0x7}}) getsockopt$inet6_IPV6_XFRM_POLICY(r6, 0x29, 0x23, &(0x7f0000000bc0)={{{@in6=@empty, @in6=@mcast2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}}, {{@in6=@mcast2}, 0x0, @in=@multicast1}}, &(0x7f0000000cc0)=0xe8) ioctl$sock_ipv6_tunnel_SIOCGET6RD(r6, 0x89f8, &(0x7f0000000d80)={'sit0\x00', &(0x7f0000000d00)={'syztnl1\x00', 0x0, 0x4, 0x37, 0x8, 0x2475, 0x4c, @mcast1, @initdev={0xfe, 0x88, '\x00', 0x1, 0x0}, 0x1, 0x20, 0x4, 0x4}}) sendmsg$ETHTOOL_MSG_TSINFO_GET(r7, &(0x7f0000000fc0)={&(0x7f0000000ac0)={0x10, 0x0, 0x0, 0x40000000}, 0xc, &(0x7f0000000f80)={&(0x7f0000000dc0)={0x1bc, 0x0, 0x0, 0x70bd29, 0x25dfdbfe, {}, [@HEADER={0x40, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'syzkaller0\x00'}, @ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'vlan0\x00'}, @ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'vlan1\x00'}]}, @HEADER={0x30, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_DEV_INDEX={0x8}, @ETHTOOL_A_HEADER_DEV_INDEX={0x8}, @ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'veth0\x00'}, @ETHTOOL_A_HEADER_DEV_INDEX={0x8}]}, @HEADER={0x20, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_DEV_INDEX={0x8, 0x1, r8}, @ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'team_slave_0\x00'}]}, @HEADER={0x48, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_FLAGS={0x8, 0x3, 0x3}, @ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'hsr0\x00'}, @ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'ipvlan0\x00'}, @ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'rose0\x00'}]}, @HEADER={0x38, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'veth1_to_bond\x00'}, @ETHTOOL_A_HEADER_FLAGS={0x8, 0x3, 0x2}, @ETHTOOL_A_HEADER_DEV_INDEX={0x8, 0x1, r9}, @ETHTOOL_A_HEADER_FLAGS={0x8, 0x3, 0x1}, @ETHTOOL_A_HEADER_FLAGS={0x8, 0x3, 0x3}]}, @HEADER={0x34, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'vcan0\x00'}, @ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'veth1_vlan\x00'}, @ETHTOOL_A_HEADER_DEV_INDEX={0x8, 0x1, r10}]}, @HEADER={0x64, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_DEV_INDEX={0x8}, @ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'ip6tnl0\x00'}, @ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'geneve1\x00'}, @ETHTOOL_A_HEADER_FLAGS={0x8, 0x3, 0x1}, @ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'veth1_macvtap\x00'}, @ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'vlan0\x00'}]}]}, 0x1bc}, 0x1, 0x0, 0x0, 0x50000}, 0x4000040) r11 = openat$cgroup_freezer_state(r6, &(0x7f0000001000), 0x2, 0x0) fcntl$getown(r11, 0x9) io_setup(0x3, &(0x7f0000001040)=0x0) ioctl$AUTOFS_DEV_IOCTL_VERSION(r7, 0xc0189371, &(0x7f00000010c0)={{0x1, 0x1, 0x18, r0}, './file0\x00'}) io_submit(r12, 0x3, &(0x7f00000012c0)=[&(0x7f0000001100)={0x0, 0x0, 0x0, 0x3, 0x1, r11, &(0x7f0000001080)="70e39b8d0e2ef240d2564fd88d44b1738782520f1558c2bc296507140e3a22452b403467254bbca621514fae6f2771a63feaa64039e67f0527810a9aca", 0x3d, 0x94, 0x0, 0x1, r13}, &(0x7f0000001200)={0x0, 0x0, 0x0, 0x8, 0x81, r11, &(0x7f0000001140)="15b90ab5af0966ea4dd58aa208b30a2a008aaa16268600aa8e158b3e330b4bed23c72bc0a29cc5a1d0f51c765e9d51d3fb4ded45fedb7278e839698c89e374d2ec73958da611155492b216f8e332d21cf12a20016bd40755193af2d2b946ae0a24317e013927662b48f942ad4276f52af8a98cf66da4419eb74c65684613b30a9999241c4234559ac9f6f0fb1c623ad67f19b9833578914c14d87300354ebc265b3beb52169aa15c314024ac9ddc96339b4cdb40b6bcf3c92effbf2337", 0xbd, 0x401, 0x0, 0x2, r5}, &(0x7f0000001280)={0x0, 0x0, 0x0, 0x1, 0x6, r0, &(0x7f0000001240)="9e264177aa8bc61abfdcd07b3d53d6b8b17405f8c4bf52c8fd21373e031ff2fcd688f9cf09c43f3dd3f703d1392ca955931a06a52c8a8040", 0x38, 0x0, 0x0, 0x3}]) [ 3272.304127] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium [ 3272.353659] FAULT_INJECTION: forcing a failure. [ 3272.353659] name failslab, interval 1, probability 0, space 0, times 0 [ 3272.356067] CPU: 1 PID: 25925 Comm: syz-executor.2 Not tainted 5.10.207 #1 [ 3272.357530] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 3272.359269] Call Trace: [ 3272.359820] dump_stack+0x107/0x167 [ 3272.360599] should_fail.cold+0x5/0xa [ 3272.361409] should_failslab+0x5/0x20 [ 3272.362214] __kmalloc_node_track_caller+0x74/0x3b0 [ 3272.363281] ? __ip_append_data+0x2930/0x3310 [ 3272.364228] __alloc_skb+0xb1/0x5b0 [ 3272.364990] __ip_append_data+0x2930/0x3310 [ 3272.365896] ? raw_destroy+0x30/0x30 [ 3272.366690] ? ip_finish_output+0x330/0x330 [ 3272.367576] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 3272.368621] ? ipv4_mtu+0x1ed/0x2c0 [ 3272.369372] ? raw_destroy+0x30/0x30 [ 3272.370146] ip_append_data+0x114/0x1a0 [ 3272.370993] raw_sendmsg+0xaa6/0x29d0 [ 3272.371796] ? dst_output+0x170/0x170 [ 3272.372582] ? __lock_acquire+0x1657/0x5b00 [ 3272.373490] ? perf_trace_lock+0xac/0x490 [ 3272.374336] ? SOFTIRQ_verbose+0x10/0x10 [ 3272.375179] ? create_object.isra.0+0x3ad/0xa20 [ 3272.376132] ? __lockdep_reset_lock+0x180/0x180 [ 3272.377107] ? selinux_socket_post_create+0x7f0/0x7f0 [ 3272.378156] ? find_held_lock+0x2c/0x110 [ 3272.379037] ? trace_hardirqs_on+0x5b/0x180 19:59:32 executing program 3: syz_mount_image$vfat(&(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x0, 0x58, &(0x7f0000000180)=[{&(0x7f0000000140)="eb3c906d6b66732e66617400020801000470008400f801", 0x17}, {0x0, 0x0, 0x1001000a00}], 0x2800018, &(0x7f0000000240)=ANY=[]) chdir(&(0x7f0000000040)='./file0\x00') ioctl$AUTOFS_DEV_IOCTL_SETPIPEFD(0xffffffffffffffff, 0xc0189378, 0x0) r0 = syz_io_uring_setup(0x1d, &(0x7f0000000080)={0x0, 0x0, 0x0, 0x200, 0x0, 0x0, 0x0}, &(0x7f00000a0000)=nil, &(0x7f00000b0000)=nil, &(0x7f0000000180)=0x0, &(0x7f0000000440)) io_uring_register$IORING_REGISTER_PERSONALITY(r0, 0x9, 0x0, 0x2) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) mount$cgroup(0x0, 0x0, 0x0, 0x1124001, 0x0) r2 = openat(0xffffffffffffff9c, &(0x7f00000002c0)='./file1\x00', 0x105142, 0x0) accept$unix(r2, &(0x7f00000001c0)=@abs, &(0x7f0000000240)=0x6e) r3 = accept$inet6(r2, &(0x7f0000000280), &(0x7f0000000300)=0x1c) syz_io_uring_submit(r1, 0x0, &(0x7f0000000400)=@IORING_OP_ACCEPT={0xd, 0x5, 0x0, r3, &(0x7f0000000340)=0x80, &(0x7f0000000380)=@tipc=@name, 0x0, 0x800}, 0x4) ioctl$SCSI_IOCTL_SEND_COMMAND(0xffffffffffffffff, 0x1, 0x0) write$binfmt_elf64(0xffffffffffffffff, 0x0, 0x0) r4 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0) sendfile(r2, r4, 0x0, 0x100000001) dup2(r3, 0xffffffffffffffff) open(&(0x7f0000000100)='./file0\x00', 0x300, 0x20) clock_gettime(0x0, &(0x7f00000004c0)) r5 = getegid() lsetxattr$system_posix_acl(&(0x7f0000000480)='./file0\x00', &(0x7f0000000500)='system.posix_acl_default\x00', &(0x7f00000005c0)=ANY=[@ANYBLOB="02000000010006000000000002000400", @ANYRES32=0x0, @ANYBLOB="02000200", @ANYRES32=0x0, @ANYBLOB="040005000000000008000200", @ANYRES32=0xee01, @ANYBLOB="08000300", @ANYRES32=0x0, @ANYBLOB="08000500", @ANYRES32=0x0, @ANYBLOB="595ca39f", @ANYRES32=0x0, @ANYBLOB="08000100", @ANYRES32=r5, @ANYBLOB="10000100000000002000030000000000"], 0x5c, 0x2) [ 3272.379928] ? dst_output+0x170/0x170 [ 3272.380942] inet_sendmsg+0x11d/0x140 [ 3272.381718] ? inet_send_prepare+0x540/0x540 [ 3272.382616] __sock_sendmsg+0x13c/0x190 [ 3272.383457] ____sys_sendmsg+0x334/0x870 [ 3272.384294] ? sock_write_iter+0x3d0/0x3d0 [ 3272.385181] ? do_recvmmsg+0x6d0/0x6d0 [ 3272.385976] ? perf_trace_lock+0xac/0x490 [ 3272.386842] ? __lockdep_reset_lock+0x180/0x180 [ 3272.387789] ? perf_trace_lock+0xac/0x490 [ 3272.388644] ___sys_sendmsg+0xf3/0x170 [ 3272.389451] ? sendmsg_copy_msghdr+0x160/0x160 [ 3272.390393] ? lock_downgrade+0x6d0/0x6d0 [ 3272.391275] ? lock_downgrade+0x6d0/0x6d0 [ 3272.392136] ? __fget_files+0x296/0x4c0 [ 3272.392977] ? __fget_light+0xea/0x290 [ 3272.393794] __sys_sendmmsg+0x195/0x470 [ 3272.394632] ? __ia32_sys_sendmsg+0xb0/0xb0 [ 3272.395533] ? lock_downgrade+0x6d0/0x6d0 [ 3272.396426] ? __mutex_unlock_slowpath+0xe1/0x600 [ 3272.397469] ? wait_for_completion_io+0x270/0x270 [ 3272.398461] ? rcu_read_lock_any_held+0x75/0xa0 [ 3272.399427] ? vfs_write+0x354/0xa70 [ 3272.400198] ? fput_many+0x2f/0x1a0 [ 3272.400945] ? ksys_write+0x1a9/0x260 [ 3272.401759] ? __ia32_sys_read+0xb0/0xb0 [ 3272.402606] __x64_sys_sendmmsg+0x99/0x100 [ 3272.403523] do_syscall_64+0x33/0x40 [ 3272.404287] entry_SYSCALL_64_after_hwframe+0x62/0xc7 [ 3272.405384] RIP: 0033:0x7fac065c2b19 [ 3272.406155] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 3272.410172] RSP: 002b:00007fac03b38188 EFLAGS: 00000246 ORIG_RAX: 0000000000000133 [ 3272.411736] RAX: ffffffffffffffda RBX: 00007fac066d5f60 RCX: 00007fac065c2b19 [ 3272.413196] RDX: 0000000000000001 RSI: 0000000020002040 RDI: 0000000000000003 [ 3272.414659] RBP: 00007fac03b381d0 R08: 0000000000000000 R09: 0000000000000000 [ 3272.416095] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 3272.417541] R13: 00007ffe4d4b793f R14: 00007fac03b38300 R15: 0000000000022000 19:59:47 executing program 4: syz_80211_inject_frame(&(0x7f00000000c0)=@device_a={0x8, 0x2, 0x11, 0x0, 0x15}, &(0x7f0000000440)=ANY=[], 0x2f) 19:59:47 executing program 0: clone3(&(0x7f0000000200)={0x31081000, &(0x7f0000000100), 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) 19:59:47 executing program 6: syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000140)='./file0\x00', 0x40000, 0x4, &(0x7f0000000200)=[{&(0x7f0000010000)="20000000000100000c000000d40000000f000000010000000000000000000000002000000020000020000000d7f4655fd7f4655f0100ffff53ef010001000000d7f4655f000000000000000001000000000000000b0000000002", 0x5a, 0x400}, {&(0x7f0000010400)="030000000400000005000000d4000f", 0xf, 0x800}, {&(0x7f0000000500)="ffffffffff070000000000000000000000000000000000000000000000000080ffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffff", 0x402, 0xc00}, {&(0x7f0000010e00)="ed41000000040000d7f4655fd7f4655fd7f4655f000000000000040002", 0x1d, 0x1600}], 0x0, &(0x7f00000003c0)=ANY=[]) chdir(&(0x7f0000000040)='./file0\x00') openat(0xffffffffffffff9c, &(0x7f0000000080)='./file1\x00', 0x105142, 0x0) r0 = openat(0xffffffffffffff9c, &(0x7f0000000200)='./file1\x00', 0x2, 0x0) write(r0, &(0x7f0000000240)="01", 0x1) r1 = openat(0xffffffffffffff9c, &(0x7f00000000c0)='./file2\x00', 0x105142, 0x0) r2 = openat(0xffffffffffffff9c, &(0x7f0000001340)='./file1\x00', 0x0, 0x0) copy_file_range(r2, 0x0, r1, &(0x7f0000000280)=0x18102, 0xc3a, 0x0) openat$sr(0xffffffffffffff9c, 0x0, 0x0, 0x0) 19:59:47 executing program 7: r0 = syz_io_uring_setup(0x1a6, &(0x7f00000000c0)={0x0, 0x0, 0x0, 0x3, 0x5c}, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000ffd000/0x1000)=nil, 0x0, &(0x7f0000000180)) r1 = syz_io_uring_setup(0x6120, &(0x7f00000002c0)={0x0, 0x0, 0x0, 0xfffffffd, 0x0, 0x0, r0}, &(0x7f0000ffe000/0x2000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000200)=0x0, &(0x7f0000000080)=0x0) r4 = openat$full(0xffffffffffffff9c, &(0x7f0000000040), 0x0, 0x0) r5 = syz_io_uring_setup(0x21, &(0x7f0000000080)={0x0, 0x45ae, 0x0, 0x1, 0x3b2, 0x0, 0x0}, &(0x7f00000a0000)=nil, &(0x7f0000ffe000/0x1000)=nil, &(0x7f0000000100)=0x0, &(0x7f0000000340)=0x0) r8 = socket$inet6_tcp(0xa, 0x1, 0x0) syz_io_uring_submit(r6, r7, &(0x7f00000001c0)=@IORING_OP_CONNECT={0x10, 0x2, 0x0, r8, 0x80, &(0x7f0000000280)=@in6={0xa, 0xfffe, 0x0, @ipv4={'\x00', '\xff\xff', @dev={0xac, 0x14, 0x14, 0x20}}}}, 0x0) r9 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x2000008, 0x10, r5, 0x0) syz_io_uring_submit(r9, r7, &(0x7f0000000040)=@IORING_OP_POLL_ADD={0x6, 0x5, 0x0, @fd=r8, 0x0, 0x0, 0x0, {0xa084}}, 0x20) mmap$IORING_OFF_SQES(&(0x7f0000ffd000/0x3000)=nil, 0x3000, 0x1000001, 0x40f0050, r5, 0x10000000) syz_io_uring_submit(r2, r3, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x1, 0x2007, @fd_index=0x1, 0x7, &(0x7f0000000280)=[{&(0x7f0000000340)=""/65, 0x41}], 0x1, 0x2}, 0x0) close(r4) mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000a, 0x80010, r1, 0x0) eventfd(0x0) syz_io_uring_submit(r2, r3, &(0x7f00000001c0)=@IORING_OP_LINK_TIMEOUT={0xf, 0x1, 0x0, 0x0, 0x0, 0x0}, 0x1) syz_io_uring_setup(0x0, &(0x7f0000000400)={0x0, 0x57ee, 0x0, 0x0, 0x100}, &(0x7f0000ffb000/0x3000)=nil, &(0x7f0000fea000/0x14000)=nil, &(0x7f00000003c0), &(0x7f0000000140)) setsockopt$sock_int(0xffffffffffffffff, 0x1, 0xc, &(0x7f0000000240), 0x4) socket$nl_audit(0x10, 0x3, 0x9) openat$sndseq(0xffffffffffffff9c, 0x0, 0x0) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) io_uring_enter(r1, 0x58ab, 0x0, 0x0, 0x0, 0x0) 19:59:47 executing program 5: perf_event_open(&(0x7f0000000200)={0x2, 0x80, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r0 = dup3(0xffffffffffffffff, 0xffffffffffffffff, 0x0) linkat(r0, &(0x7f0000000100)='./file0\x00', 0xffffffffffffffff, &(0x7f0000000140)='./file0/file0\x00', 0x1000) writev(r0, &(0x7f0000000080), 0x0) syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0x3, &(0x7f0000000440)=[{&(0x7f0000000040)="2000000080000000060000006a0000000f000000000000000100000001000000004000000040000020000000e0f4655fe0f4655f0100ffff53ef", 0x3a, 0x400}, {0x0, 0x0, 0xffffffffdffffff8}, {&(0x7f0000010400)="020000000300000004", 0x9, 0x800}], 0x0, &(0x7f0000000140)) 19:59:47 executing program 1: r0 = socket$netlink(0x10, 0x3, 0x0) r1 = openat$zero(0xffffffffffffff9c, &(0x7f0000000000), 0x6000, 0x0) r2 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000000), 0xffffffffffffffff) r3 = socket$nl_generic(0x10, 0x3, 0x10) r4 = accept$unix(0xffffffffffffffff, 0x0, &(0x7f0000000480)) tee(0xffffffffffffffff, r4, 0x5, 0x0) ioctl$FS_IOC_FSSETXATTR(r4, 0x401c5820, &(0x7f0000000080)={0x182, 0x4, 0x57, 0xf4, 0x6}) ioctl$sock_SIOCGIFINDEX_80211(r3, 0x8933, &(0x7f0000000040)={'wlan1\x00', 0x0}) sendmsg$NL80211_CMD_SET_WIPHY_NETNS(r3, &(0x7f0000001740)={0x0, 0x0, &(0x7f0000000980)={&(0x7f0000000340)=ANY=[@ANYBLOB='(\x00\x00\x00', @ANYRES16=r2, @ANYBLOB="01000000000000000000310000baef00030052c340ed0df44e75b24abcec8d160a222f1bb3626b5f24bc24f2c8f46fd2afdc466021cdac149aa1dff309c5899a4477f2493a17060000006a70c26fd435b7b9eb6633ca435344ee0f208f7c008a951ca282ac1df106ff830d79bc0e343637dfff55c2adb1721e8d88c5b30be9e9", @ANYRES32=r5, @ANYBLOB="470099000000000020000000"], 0x28}}, 0x0) sendmsg$NL80211_CMD_GET_INTERFACE(r1, &(0x7f0000000100)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x100}, 0xc, &(0x7f00000000c0)={&(0x7f00000001c0)=ANY=[@ANYBLOB, @ANYRES16=r2, @ANYBLOB="000126bd00000000df250534c80000000c009900070000003e000000a06d39f01afe3bfe8d83e9838b239927d74d656f8be40486e7c90ca4d206b4c96feb0c434a4af37339667b1b18ff1ec5bbd2bf4ed5a26b4310ee1610b2f66bf0f86693e3c6b756e56117570f8ec77deff55e4fcedcafdd6f1aceb9"], 0x20}, 0x1, 0x0, 0x0, 0x40000}, 0x4000) sendmsg$nl_generic(r0, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000400)=ANY=[@ANYBLOB="3c0000001f00210c00000000000000000200000019000000bbb04f0570ab07dbabde3b2eb9d39ed75a9f7eb41a0000000a001b000101010101010000cb6f7921a241d31d4854fbfa2c78e44b8673d64aaff82edd53ac1e7cd727b771c100d467c7d927814568635a5c991fc59e11e5225826fad1f238c65e9abd4eb75bdbcfb8bf8c2e0202bda1b1bb5ee986e92e578505bbde"], 0x9d}}, 0x0) ioctl$AUTOFS_DEV_IOCTL_PROTOSUBVER(r1, 0xc0189373, &(0x7f0000000140)={{0x1, 0x1, 0x18, r1, {0x8001}}, './file0\x00'}) 19:59:47 executing program 2: r0 = socket$inet_icmp_raw(0x2, 0x3, 0x1) r1 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a) ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000140)={'syz_tun\x00', 0x0}) perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) sendmmsg$inet(r0, &(0x7f0000002040)=[{{&(0x7f0000000380)={0x2, 0x0, @multicast1}, 0x10, &(0x7f0000001600)=[{&(0x7f00000003c0)="db9c", 0xffe7}], 0x1, &(0x7f0000001640)=ANY=[@ANYBLOB="14000000000000000000000007000000c4048f01000000001c000000000000000000000008000000", @ANYRES32=r2], 0x38}}], 0x1, 0x0) (fail_nth: 37) 19:59:47 executing program 3: r0 = openat(0xffffffffffffff9c, &(0x7f0000000280)='./file1\x00', 0x46e2, 0x0) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) ftruncate(r0, 0x1000003) ioctl$FS_IOC_FSSETXATTR(r0, 0x40086602, &(0x7f0000000000)) r1 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000000), 0xc02, 0x0) write$binfmt_elf64(r1, &(0x7f0000000a00)=ANY=[], 0x98a) readv(r1, &(0x7f0000000100)=[{&(0x7f0000001340)=""/4096, 0x1000}], 0x1) sched_setattr(0x0, &(0x7f00000001c0)={0x38}, 0x0) perf_event_open(0x0, 0x0, 0x8, 0xffffffffffffffff, 0x0) r2 = socket$nl_generic(0x10, 0x3, 0x10) perf_event_open(&(0x7f00000004c0)={0x4, 0x80, 0x6, 0x3, 0xb1, 0x2, 0x0, 0x4, 0x8a62, 0x1, 0x1, 0x1, 0x0, 0x0, 0x1, 0x1, 0x1, 0x0, 0x1, 0x0, 0x1, 0x0, 0x1, 0x0, 0x1, 0x2, 0x1, 0x1, 0x1, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x1, 0x0, 0x1, 0x0, 0x1, 0x0, 0x1, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5, 0x2, @perf_bp={&(0x7f0000000400)}, 0x2, 0x8, 0x267d55cb, 0x8, 0x80000001, 0x8001, 0x20, 0x0, 0x4db, 0x0, 0x7f}, 0x0, 0x8, 0xffffffffffffffff, 0x8) sendmsg$nl_generic(r2, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000480)={&(0x7f0000000540)=ANY=[@ANYBLOB="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", @ANYRES32, @ANYBLOB], 0x1c}}, 0x0) openat(0xffffffffffffffff, &(0x7f0000000040)='./file1\x00', 0x200, 0x52) openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x105142, 0x0) openat(0xffffffffffffffff, &(0x7f0000001300)='./file1\x00', 0x200000, 0x183) r3 = openat(0xffffffffffffffff, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0) clone3(&(0x7f0000002340)={0x8006c000, &(0x7f0000000080), &(0x7f00000000c0), &(0x7f0000000440), {0x3c}, &(0x7f0000000180)=""/252, 0xfc, &(0x7f0000002480)=""/4104, &(0x7f00000012c0)=[0x0, 0xffffffffffffffff], 0x2, {r3}}, 0x58) openat$ptmx(0xffffffffffffff9c, &(0x7f0000000000), 0xc02, 0x0) mmap(&(0x7f0000ffd000/0x1000)=nil, 0x1000, 0x4, 0x12, r1, 0x729d2000) unshare(0xf06d0f9fd9fef003) [ 3287.831411] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium [ 3287.849802] FAULT_INJECTION: forcing a failure. [ 3287.849802] name failslab, interval 1, probability 0, space 0, times 0 [ 3287.851409] CPU: 1 PID: 26044 Comm: syz-executor.2 Not tainted 5.10.207 #1 [ 3287.852303] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 3287.853390] Call Trace: [ 3287.853748] dump_stack+0x107/0x167 [ 3287.854238] should_fail.cold+0x5/0xa [ 3287.854746] ? create_object.isra.0+0x3a/0xa20 [ 3287.855364] should_failslab+0x5/0x20 [ 3287.855870] kmem_cache_alloc+0x5b/0x310 [ 3287.856408] create_object.isra.0+0x3a/0xa20 [ 3287.856992] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 3287.857667] __kmalloc_node_track_caller+0x1a6/0x3b0 [ 3287.858347] ? __ip_append_data+0x2930/0x3310 [ 3287.858973] __alloc_skb+0xb1/0x5b0 [ 3287.859472] __ip_append_data+0x2930/0x3310 [ 3287.860062] ? raw_destroy+0x30/0x30 [ 3287.860563] ? ip_finish_output+0x330/0x330 [ 3287.861140] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 3287.861805] ? ipv4_mtu+0x1ed/0x2c0 [ 3287.862294] ? raw_destroy+0x30/0x30 [ 3287.862793] ip_append_data+0x114/0x1a0 [ 3287.863348] raw_sendmsg+0xaa6/0x29d0 [ 3287.863869] ? dst_output+0x170/0x170 [ 3287.864367] ? __lock_acquire+0x1657/0x5b00 [ 3287.864951] ? perf_trace_lock+0xac/0x490 [ 3287.865512] ? SOFTIRQ_verbose+0x10/0x10 [ 3287.866054] ? create_object.isra.0+0x3ad/0xa20 [ 3287.866678] ? __lockdep_reset_lock+0x180/0x180 [ 3287.867333] ? selinux_socket_post_create+0x7f0/0x7f0 [ 3287.868015] ? find_held_lock+0x2c/0x110 [ 3287.868579] ? trace_hardirqs_on+0x5b/0x180 [ 3287.869154] ? dst_output+0x170/0x170 [ 3287.869673] inet_sendmsg+0x11d/0x140 [ 3287.870180] ? inet_send_prepare+0x540/0x540 [ 3287.870760] __sock_sendmsg+0x13c/0x190 [ 3287.871291] ____sys_sendmsg+0x334/0x870 [ 3287.871830] ? sock_write_iter+0x3d0/0x3d0 [ 3287.872388] ? do_recvmmsg+0x6d0/0x6d0 [ 3287.872911] ? perf_trace_lock+0xac/0x490 [ 3287.873458] ? __lockdep_reset_lock+0x180/0x180 [ 3287.874072] ? perf_trace_lock+0xac/0x490 [ 3287.874625] ___sys_sendmsg+0xf3/0x170 [ 3287.875160] ? sendmsg_copy_msghdr+0x160/0x160 [ 3287.875774] ? lock_downgrade+0x6d0/0x6d0 [ 3287.876332] ? lock_downgrade+0x6d0/0x6d0 [ 3287.876886] ? __fget_files+0x296/0x4c0 [ 3287.877428] ? __fget_light+0xea/0x290 [ 3287.877946] __sys_sendmmsg+0x195/0x470 [ 3287.878484] ? __ia32_sys_sendmsg+0xb0/0xb0 [ 3287.879068] ? lock_downgrade+0x6d0/0x6d0 [ 3287.879632] ? __mutex_unlock_slowpath+0xe1/0x600 [ 3287.880267] ? wait_for_completion_io+0x270/0x270 [ 3287.880911] ? rcu_read_lock_any_held+0x75/0xa0 [ 3287.881517] ? vfs_write+0x354/0xa70 [ 3287.882016] ? fput_many+0x2f/0x1a0 [ 3287.882490] ? ksys_write+0x1a9/0x260 [ 3287.882996] ? __ia32_sys_read+0xb0/0xb0 [ 3287.883532] __x64_sys_sendmmsg+0x99/0x100 [ 3287.884092] do_syscall_64+0x33/0x40 [ 3287.884583] entry_SYSCALL_64_after_hwframe+0x62/0xc7 [ 3287.885261] RIP: 0033:0x7fac065c2b19 [ 3287.885751] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 3287.888181] RSP: 002b:00007fac03b38188 EFLAGS: 00000246 ORIG_RAX: 0000000000000133 [ 3287.889175] RAX: ffffffffffffffda RBX: 00007fac066d5f60 RCX: 00007fac065c2b19 [ 3287.890108] RDX: 0000000000000001 RSI: 0000000020002040 RDI: 0000000000000003 [ 3287.891054] RBP: 00007fac03b381d0 R08: 0000000000000000 R09: 0000000000000000 [ 3287.891978] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 3287.892906] R13: 00007ffe4d4b793f R14: 00007fac03b38300 R15: 0000000000022000 [ 3287.899674] netlink: 20 bytes leftover after parsing attributes in process `syz-executor.1'. [ 3287.914105] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=31 sclass=netlink_route_socket pid=26040 comm=syz-executor.1 [ 3287.969268] EXT4-fs (loop6): mounted filesystem without journal. Opts: ,errors=continue [ 3287.970254] netlink: 8 bytes leftover after parsing attributes in process `syz-executor.3'. 19:59:47 executing program 0: clone3(&(0x7f0000000200)={0x31081000, &(0x7f0000000100), 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) [ 3287.989992] netlink: 20 bytes leftover after parsing attributes in process `syz-executor.1'. [ 3287.996632] EXT4-fs error (device loop5): ext4_fill_super:4962: inode #2: comm syz-executor.5: iget: special inode unallocated [ 3288.008545] EXT4-fs (loop5): get root inode failed [ 3288.009759] EXT4-fs (loop5): mount failed [ 3288.022109] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=31 sclass=netlink_route_socket pid=26064 comm=syz-executor.1 19:59:48 executing program 6: syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000140)='./file0\x00', 0x40000, 0x4, &(0x7f0000000200)=[{&(0x7f0000010000)="20000000000100000c000000d40000000f000000010000000000000000000000002000000020000020000000d7f4655fd7f4655f0100ffff53ef010001000000d7f4655f000000000000000001000000000000000b0000000002", 0x5a, 0x400}, {&(0x7f0000010400)="030000000400000005000000d4000f", 0xf, 0x800}, {&(0x7f0000000500)="ffffffffff070000000000000000000000000000000000000000000000000080ffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffff", 0x402, 0xc00}, {&(0x7f0000010e00)="ed41000000040000d7f4655fd7f4655fd7f4655f000000000000040002", 0x1d, 0x1600}], 0x0, &(0x7f00000003c0)=ANY=[]) chdir(&(0x7f0000000040)='./file0\x00') openat(0xffffffffffffff9c, &(0x7f0000000080)='./file1\x00', 0x105142, 0x0) r0 = openat(0xffffffffffffff9c, &(0x7f0000000200)='./file1\x00', 0x2, 0x0) write(r0, &(0x7f0000000240)="01", 0x1) r1 = openat(0xffffffffffffff9c, &(0x7f00000000c0)='./file2\x00', 0x105142, 0x0) r2 = openat(0xffffffffffffff9c, &(0x7f0000001340)='./file1\x00', 0x0, 0x0) copy_file_range(r2, 0x0, r1, &(0x7f0000000280)=0x1ff01, 0xc3a, 0x0) openat$sr(0xffffffffffffff9c, 0x0, 0x0, 0x0) [ 3288.139814] EXT4-fs error (device loop5): ext4_fill_super:4962: inode #2: comm syz-executor.5: iget: special inode unallocated [ 3288.146268] EXT4-fs (loop5): get root inode failed [ 3288.147769] EXT4-fs (loop5): mount failed [ 3288.168408] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium [ 3288.221676] EXT4-fs (loop6): mounted filesystem without journal. Opts: ,errors=continue 20:00:05 executing program 1: socket$inet_tcp(0x2, 0x1, 0x0) r0 = openat(0xffffffffffffff9c, 0x0, 0x46e2, 0x0) socket$inet6_udp(0xa, 0x2, 0x0) r1 = syz_io_uring_setup(0x4fa9, &(0x7f0000000140)={0x0, 0x4cb1, 0x2, 0x2, 0x207, 0x0, r0}, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000ffd000/0x2000)=nil, &(0x7f0000000040), &(0x7f00000000c0)) r2 = perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) write$binfmt_elf32(r2, &(0x7f0000001e00)={{0x7f, 0x45, 0x4c, 0x46, 0xd1, 0xf2, 0x1, 0x4, 0x37c5, 0x3, 0x3, 0xc6, 0x5d, 0x38, 0x326, 0x5d, 0xfffc, 0x20, 0x2, 0x800, 0x7, 0x7fff}, [{0x6474e554, 0x4, 0x180, 0x1, 0x7, 0x401, 0x7ff, 0x5ba}, {0x4, 0x0, 0x3ff, 0x9, 0x3, 0x4, 0x0, 0x7ff}], "26f187e682d6ce10e88d558abfbb2bf6cc25ce8b6f2c32", ['\x00', '\x00', '\x00', '\x00', '\x00']}, 0x58f) fcntl$dupfd(r1, 0x0, r2) r3 = openat(0xffffffffffffff9c, &(0x7f0000000080)='./file1\x00', 0x105142, 0x0) openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x2000, 0x0) copy_file_range(r3, 0x0, r3, 0x0, 0xfffe, 0x0) r4 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x0, 0x0) r5 = io_uring_register$IORING_REGISTER_PERSONALITY(r0, 0x9, 0x0, 0x0) perf_event_open(&(0x7f00000002c0)={0x2, 0x80, 0x17, 0xe0, 0x2, 0x4, 0x0, 0x2, 0x410c, 0x5, 0x1, 0x0, 0x0, 0x1, 0x1, 0x0, 0x1, 0x1, 0x0, 0x1, 0x0, 0x1, 0x1, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x0, 0x1, 0x1, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x4, @perf_config_ext={0x5d22, 0x101}, 0x802, 0x1f, 0x2, 0x2, 0x2, 0x7ff, 0xdda, 0x0, 0x0, 0x0, 0x8}, 0x0, 0x3, 0xffffffffffffffff, 0x0) syz_io_uring_submit(0x0, 0x0, &(0x7f0000000280)=@IORING_OP_TIMEOUT_REMOVE={0xc, 0x5, 0x0, 0x0, 0x0, 0x23456, 0x0, 0x0, 0x1, {0x0, r5}}, 0x1) perf_event_open(&(0x7f0000000200)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0xc, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x1, 0xfffffffffffffffd}, 0x2188932d843071f3, 0x31d}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) write$binfmt_elf64(0xffffffffffffffff, &(0x7f0000001340)=ANY=[@ANYBLOB="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"], 0x744) sendfile(r3, r4, 0x0, 0x20d315) r6 = accept$unix(0xffffffffffffffff, 0x0, &(0x7f0000000480)) tee(0xffffffffffffffff, r6, 0x5, 0x0) ioctl$BTRFS_IOC_QUOTA_RESCAN_WAIT(r6, 0x942e, 0x0) 20:00:05 executing program 6: syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000140)='./file0\x00', 0x40000, 0x4, &(0x7f0000000200)=[{&(0x7f0000010000)="20000000000100000c000000d40000000f000000010000000000000000000000002000000020000020000000d7f4655fd7f4655f0100ffff53ef010001000000d7f4655f000000000000000001000000000000000b0000000002", 0x5a, 0x400}, {&(0x7f0000010400)="030000000400000005000000d4000f", 0xf, 0x800}, {&(0x7f0000000500)="ffffffffff070000000000000000000000000000000000000000000000000080ffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffff", 0x402, 0xc00}, {&(0x7f0000010e00)="ed41000000040000d7f4655fd7f4655fd7f4655f000000000000040002", 0x1d, 0x1600}], 0x0, &(0x7f00000003c0)=ANY=[]) chdir(&(0x7f0000000040)='./file0\x00') openat(0xffffffffffffff9c, &(0x7f0000000080)='./file1\x00', 0x105142, 0x0) r0 = openat(0xffffffffffffff9c, &(0x7f0000000200)='./file1\x00', 0x2, 0x0) write(r0, &(0x7f0000000240)="01", 0x1) r1 = openat(0xffffffffffffff9c, &(0x7f00000000c0)='./file2\x00', 0x105142, 0x0) r2 = openat(0xffffffffffffff9c, &(0x7f0000001340)='./file1\x00', 0x0, 0x0) copy_file_range(r2, 0x0, r1, &(0x7f0000000280)=0x1ff0f, 0xc3a, 0x0) openat$sr(0xffffffffffffff9c, 0x0, 0x0, 0x0) 20:00:05 executing program 3: r0 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x105142, 0xa0) r1 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x105142, 0x0) ioctl$FS_IOC_RESVSP(r1, 0x40305828, &(0x7f0000000040)={0x0, 0x0, 0x0, 0x4000006}) openat$sysfs(0xffffffffffffff9c, 0x0, 0x0, 0x0) ioctl$LOOP_CTL_REMOVE(0xffffffffffffffff, 0x4c81, 0x0) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x101}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r2 = openat(0xffffffffffffffff, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0) sendfile(r0, r2, 0x0, 0x100000001) r3 = openat$tcp_congestion(0xffffffffffffff9c, &(0x7f0000001200), 0x1, 0x0) ioctl$EXT4_IOC_MIGRATE(r3, 0x6609) r4 = dup3(0xffffffffffffffff, 0xffffffffffffffff, 0x0) linkat(r4, &(0x7f0000000100)='./file0\x00', 0xffffffffffffffff, &(0x7f0000000140)='./file0/file0\x00', 0x1000) r5 = syz_open_procfs(0xffffffffffffffff, &(0x7f0000001180)='net/llc/core\x00') bind$netlink(r5, &(0x7f00000011c0)={0x10, 0x0, 0x25dfdbfd, 0x100000}, 0xc) openat$cgroup_type(r4, &(0x7f0000001140), 0x2, 0x0) r6 = creat(&(0x7f0000000040)='./file0\x00', 0x0) ioctl$FS_IOC_GETFSMAP(r6, 0xc0c0583b, &(0x7f0000000080)={0x0, 0xfdfdffff, 0x102, 0x0, '\x00', [{}, {0x800, 0x0, 0x400000000000000}], ['\x00']}) read(0xffffffffffffffff, &(0x7f0000000140)=""/4096, 0x1000) 20:00:05 executing program 0: clone3(&(0x7f0000000200)={0x31081000, &(0x7f0000000100), 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) 20:00:05 executing program 4: syz_80211_inject_frame(&(0x7f00000000c0)=@device_a={0x8, 0x2, 0x11, 0x0, 0x16}, &(0x7f0000000440)=ANY=[], 0x2f) 20:00:05 executing program 5: r0 = syz_open_procfs(0xffffffffffffffff, &(0x7f0000000040)='numa_maps\x00') readv(r0, &(0x7f0000003700)=[{&(0x7f0000000200)=""/216, 0xd8}, {&(0x7f00000003c0)=""/121, 0x79}, {&(0x7f0000000380)=""/51, 0x33}, {&(0x7f00000014c0)=""/160, 0xa0}, {&(0x7f0000001640)=""/256, 0x100}, {0x0}, {&(0x7f00000015c0)=""/51, 0x33}, {&(0x7f00000001c0)=""/57, 0x39}], 0x8) readv(r0, &(0x7f0000001600)=[{&(0x7f00000004c0)=""/4096, 0x1000}], 0x1) syz_open_procfs(0xffffffffffffffff, &(0x7f0000000340)='net\x00') sendmsg$IPCTNL_MSG_CT_GET_STATS_CPU(r0, &(0x7f00000000c0)={&(0x7f0000000000), 0xc, &(0x7f0000000080)={&(0x7f0000000040)={0x14, 0x4, 0x1, 0x201, 0x0, 0x0, {0x0, 0x0, 0x4}, ["", "", "", "", "", "", "", "", ""]}, 0x14}}, 0x3f6f3351483a46b2) syz_mount_image$iso9660(&(0x7f0000000180), &(0x7f00000001c0)='./file0\x00', 0x0, 0x0, &(0x7f0000000440), 0x0, &(0x7f00000004c0)=ANY=[@ANYBLOB='dmode=0x00|0002000000000,\x00']) r1 = dup3(0xffffffffffffffff, 0xffffffffffffffff, 0x0) linkat(r1, &(0x7f0000000100)='./file0\x00', 0xffffffffffffffff, &(0x7f0000000140)='./file0/file0\x00', 0x1000) syz_io_uring_setup(0x1fc4, &(0x7f0000000440)={0x0, 0xbc92, 0x8, 0x0, 0x3ae}, &(0x7f0000ffe000/0x2000)=nil, &(0x7f0000ffd000/0x3000)=nil, &(0x7f0000001580), &(0x7f00000018c0)) r2 = syz_open_procfs(0xffffffffffffffff, &(0x7f0000000040)='numa_maps\x00') readv(r2, &(0x7f0000003700)=[{&(0x7f0000000200)=""/216, 0xd8}, {&(0x7f00000003c0)=""/121, 0x79}, {&(0x7f0000000380)=""/51, 0x33}, {&(0x7f00000014c0)=""/160, 0xa0}, {&(0x7f0000001640)=""/256, 0x100}, {0x0}, {&(0x7f00000015c0)=""/51, 0x33}, {&(0x7f00000001c0)=""/57, 0x39}], 0x8) readv(r2, &(0x7f0000001600)=[{&(0x7f00000004c0)=""/4096, 0x1000}], 0x1) stat(&(0x7f0000000300)='./file0\x00', &(0x7f0000001c00)={0x0, 0x0, 0x0, 0x0, 0x0}) setresuid(0xffffffffffffffff, r3, 0x0) stat(&(0x7f0000001cc0)='.\x00', &(0x7f0000001c00)={0x0, 0x0, 0x0, 0x0, 0x0}) setresuid(0xffffffffffffffff, r4, 0x0) stat(&(0x7f0000001cc0)='.\x00', &(0x7f0000001c00)={0x0, 0x0, 0x0, 0x0, 0x0}) setresuid(0xffffffffffffffff, r5, 0x0) mount$9p_fd(0x0, &(0x7f0000000100)='./file0\x00', &(0x7f0000000140), 0xa2c30, &(0x7f0000001740)={'trans=fd,', {'rfdno', 0x3d, r1}, 0x2c, {'wfdno', 0x3d, r2}, 0x2c, {[{@cache_mmap}, {@msize={'msize', 0x3d, 0x7}}, {@access_user}, {@mmap}, {@dfltgid={'dfltgid', 0x3d, 0xee01}}, {@cachetag}, {@cache_mmap}, {@version_L}, {@cache_loose}, {@dfltuid={'dfltuid', 0x3d, r3}}], [{@euid_gt={'euid>', r4}}, {@subj_type={'subj_type', 0x3d, 'iso9660\x00'}}, {@obj_user={'obj_user', 0x3d, '(%}['}}, {@permit_directio}, {@uid_eq={'uid', 0x3d, r5}}, {@subj_role={'subj_role', 0x3d, '\\'}}, {@seclabel}, {@smackfshat={'smackfshat', 0x3d, 'iso9660\x00'}}]}}) 20:00:05 executing program 2: r0 = socket$inet_icmp_raw(0x2, 0x3, 0x1) r1 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a) ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000140)={'syz_tun\x00', 0x0}) perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) sendmmsg$inet(r0, &(0x7f0000002040)=[{{&(0x7f0000000380)={0x2, 0x0, @multicast1}, 0x10, &(0x7f0000001600)=[{&(0x7f00000003c0)="db9c", 0xffe7}], 0x1, &(0x7f0000001640)=ANY=[@ANYBLOB="14000000000000000000000007000000c4048f01000000001c000000000000000000000008000000", @ANYRES32=r2], 0x38}}], 0x1, 0x0) (fail_nth: 38) 20:00:05 executing program 7: perf_event_open(&(0x7f0000000300)={0x3, 0x80, 0x1, 0x0, 0x0, 0x0, 0x0, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x1, 0x0, 0x1, 0x1, 0x0, 0x0, 0x1, 0x0, 0x0, 0x1, 0x1, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x1, 0x0, 0x1, 0x1, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, @perf_bp={&(0x7f0000000240)}, 0x1000, 0x0, 0x80006, 0x3, 0x6, 0x8001, 0xea93, 0x0, 0x1}, 0x0, 0x0, 0xffffffffffffffff, 0x9) r0 = syz_open_procfs(0xffffffffffffffff, &(0x7f0000000040)='mountinfo\x00') perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) readv(r0, &(0x7f0000000280)=[{&(0x7f0000001e00)=""/4098, 0x1002}], 0x1) r1 = openat$sr(0xffffffffffffff9c, &(0x7f00000035c0), 0xe8b02, 0x0) ioctl$DVD_READ_STRUCT(r1, 0x6, 0x0) newfstatat(0xffffffffffffff9c, 0x0, &(0x7f0000000380)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x500) chown(&(0x7f00000000c0)='./file0\x00', 0xffffffffffffffff, r2) ioctl$TUNSETGROUP(r1, 0x400454ce, r2) mmap(&(0x7f0000000000/0xc00000)=nil, 0xc00000, 0x2, 0x1f012, 0xffffffffffffffff, 0x0) io_uring_register$IORING_REGISTER_PERSONALITY(r0, 0x9, 0x0, 0x0) r3 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x0, 0x0) ioctl$EXT4_IOC_GROUP_ADD(r3, 0x40086607, &(0x7f0000000080)) ioctl$AUTOFS_DEV_IOCTL_FAIL(0xffffffffffffffff, 0xc0189377, 0x0) [ 3305.323241] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium [ 3305.339923] FAULT_INJECTION: forcing a failure. [ 3305.339923] name failslab, interval 1, probability 0, space 0, times 0 [ 3305.342240] CPU: 1 PID: 26296 Comm: syz-executor.2 Not tainted 5.10.207 #1 [ 3305.343674] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 3305.345363] Call Trace: [ 3305.345891] dump_stack+0x107/0x167 [ 3305.346633] should_fail.cold+0x5/0xa [ 3305.347543] ? __alloc_skb+0x6d/0x5b0 [ 3305.348371] should_failslab+0x5/0x20 [ 3305.349129] kmem_cache_alloc_node+0x55/0x330 [ 3305.350041] __alloc_skb+0x6d/0x5b0 [ 3305.350778] __ip_append_data+0x2930/0x3310 [ 3305.351706] ? raw_destroy+0x30/0x30 [ 3305.352476] ? ip_finish_output+0x330/0x330 [ 3305.353361] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 3305.354367] ? ipv4_mtu+0x1ed/0x2c0 [ 3305.355124] ? raw_destroy+0x30/0x30 [ 3305.355881] ip_append_data+0x114/0x1a0 [ 3305.356703] raw_sendmsg+0xaa6/0x29d0 [ 3305.357492] ? dst_output+0x170/0x170 [ 3305.358275] ? __lock_acquire+0x1657/0x5b00 [ 3305.359196] ? perf_trace_lock+0xac/0x490 [ 3305.360060] ? SOFTIRQ_verbose+0x10/0x10 [ 3305.360886] ? create_object.isra.0+0x3ad/0xa20 [ 3305.361833] ? __lockdep_reset_lock+0x180/0x180 [ 3305.362765] ? selinux_socket_post_create+0x7f0/0x7f0 [ 3305.363851] ? find_held_lock+0x2c/0x110 [ 3305.364736] ? trace_hardirqs_on+0x5b/0x180 [ 3305.365627] ? dst_output+0x170/0x170 [ 3305.366402] inet_sendmsg+0x11d/0x140 [ 3305.367182] ? inet_send_prepare+0x540/0x540 [ 3305.368069] __sock_sendmsg+0x13c/0x190 [ 3305.368875] ____sys_sendmsg+0x334/0x870 [ 3305.369682] ? sock_write_iter+0x3d0/0x3d0 [ 3305.370513] ? do_recvmmsg+0x6d0/0x6d0 [ 3305.371313] ? perf_trace_lock+0xac/0x490 [ 3305.372161] ? __lockdep_reset_lock+0x180/0x180 [ 3305.373096] ? perf_trace_lock+0xac/0x490 [ 3305.373943] ___sys_sendmsg+0xf3/0x170 [ 3305.374730] ? sendmsg_copy_msghdr+0x160/0x160 [ 3305.375672] ? lock_downgrade+0x6d0/0x6d0 [ 3305.376521] ? lock_downgrade+0x6d0/0x6d0 [ 3305.377370] ? __fget_files+0x296/0x4c0 [ 3305.378191] ? __fget_light+0xea/0x290 [ 3305.378992] __sys_sendmmsg+0x195/0x470 [ 3305.379791] ? __ia32_sys_sendmsg+0xb0/0xb0 [ 3305.380667] ? lock_downgrade+0x6d0/0x6d0 [ 3305.381532] ? __mutex_unlock_slowpath+0xe1/0x600 [ 3305.382524] ? wait_for_completion_io+0x270/0x270 [ 3305.383528] ? rcu_read_lock_any_held+0x75/0xa0 [ 3305.384453] ? vfs_write+0x354/0xa70 [ 3305.385204] ? fput_many+0x2f/0x1a0 [ 3305.385940] ? ksys_write+0x1a9/0x260 [ 3305.386706] ? __ia32_sys_read+0xb0/0xb0 [ 3305.387551] __x64_sys_sendmmsg+0x99/0x100 [ 3305.388395] do_syscall_64+0x33/0x40 [ 3305.389150] entry_SYSCALL_64_after_hwframe+0x62/0xc7 [ 3305.390172] RIP: 0033:0x7fac065c2b19 [ 3305.390940] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 3305.394693] RSP: 002b:00007fac03b38188 EFLAGS: 00000246 ORIG_RAX: 0000000000000133 20:00:05 executing program 0: perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0) clone3(&(0x7f0000000200)={0x31081000, &(0x7f0000000100), 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) [ 3305.396264] RAX: ffffffffffffffda RBX: 00007fac066d5f60 RCX: 00007fac065c2b19 [ 3305.397882] RDX: 0000000000000001 RSI: 0000000020002040 RDI: 0000000000000003 [ 3305.399360] RBP: 00007fac03b381d0 R08: 0000000000000000 R09: 0000000000000000 [ 3305.400781] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 3305.402251] R13: 00007ffe4d4b793f R14: 00007fac03b38300 R15: 0000000000022000 [ 3305.468263] program syz-executor.7 is using a deprecated SCSI ioctl, please convert it to SG_IO [ 3305.480832] EXT4-fs (loop6): mounted filesystem without journal. Opts: ,errors=continue 20:00:05 executing program 2: r0 = socket$inet_icmp_raw(0x2, 0x3, 0x1) r1 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a) ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000140)={'syz_tun\x00', 0x0}) perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) sendmmsg$inet(r0, &(0x7f0000002040)=[{{&(0x7f0000000380)={0x2, 0x0, @multicast1}, 0x10, &(0x7f0000001600)=[{&(0x7f00000003c0)="db9c", 0xffe7}], 0x1, &(0x7f0000001640)=ANY=[@ANYBLOB="14000000000000000000000007000000c4048f01000000001c000000000000000000000008000000", @ANYRES32=r2], 0x38}}], 0x1, 0x0) (fail_nth: 39) 20:00:05 executing program 1: r0 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x46e2, 0x0) r1 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x3000)=nil, 0x3000, 0x4, 0x13, r0, 0x0) openat$procfs(0xffffffffffffff9c, &(0x7f0000000240)='/proc/schedstat\x00', 0x0, 0x0) r2 = openat$sysfs(0xffffffffffffff9c, &(0x7f0000000140)='/sys/fs/cgroup', 0xd91043, 0xb) ioctl$PERF_EVENT_IOC_DISABLE(r2, 0x2401, 0x3) truncate(&(0x7f0000000080)='./file0\x00', 0x4) syz_io_uring_complete(r1) setxattr$security_evm(&(0x7f0000000000)='./file0\x00', &(0x7f0000000100), &(0x7f0000000280)=ANY=[@ANYBLOB="05030f0000000000c5471a78362642008a1502dc019635bb6e1f2ee9c9601113cf5c9ec26d9099fea52ed494bd1fc638085edeab9af44ed5817ec430ee12272f1e2cf91bd8586457cc54c5d2c0ec92cf15929fe140e6251de8787f884745618f7b6d9a4bc955bf1b2dabbe0f1bbce0433feb91657ac6ff412f5eac8b576a86577a298adbd4065a052733bfbd5e5ce065321e6a87ee5f3edd3f9818be9258ef5dce5ea67045ce6892ca91936a3d049706d73fa390ef62cd4d7928a52a776a212eb4f74eefb8b3774c6e4f274e63f5aae93ab6a5a858dcf48258a9d6644e7f42bd07a64b7fa22a2ea006e9be684892713718ef"], 0xce, 0x3) madvise(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x15) perf_event_open(&(0x7f0000001d80)={0x2, 0x80, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) creat(&(0x7f00000000c0)='./file0\x00', 0x0) 20:00:05 executing program 6: syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000140)='./file0\x00', 0x40000, 0x4, &(0x7f0000000200)=[{&(0x7f0000010000)="20000000000100000c000000d40000000f000000010000000000000000000000002000000020000020000000d7f4655fd7f4655f0100ffff53ef010001000000d7f4655f000000000000000001000000000000000b0000000002", 0x5a, 0x400}, {&(0x7f0000010400)="030000000400000005000000d4000f", 0xf, 0x800}, {&(0x7f0000000500)="ffffffffff070000000000000000000000000000000000000000000000000080ffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffff", 0x402, 0xc00}, {&(0x7f0000010e00)="ed41000000040000d7f4655fd7f4655fd7f4655f000000000000040002", 0x1d, 0x1600}], 0x0, &(0x7f00000003c0)=ANY=[]) chdir(&(0x7f0000000040)='./file0\x00') openat(0xffffffffffffff9c, &(0x7f0000000080)='./file1\x00', 0x105142, 0x0) r0 = openat(0xffffffffffffff9c, &(0x7f0000000200)='./file1\x00', 0x2, 0x0) write(r0, &(0x7f0000000240)="01", 0x1) r1 = openat(0xffffffffffffff9c, &(0x7f00000000c0)='./file2\x00', 0x105142, 0x0) r2 = openat(0xffffffffffffff9c, &(0x7f0000001340)='./file1\x00', 0x0, 0x0) copy_file_range(r2, 0x0, r1, &(0x7f0000000280)=0x1000000, 0xc3a, 0x0) openat$sr(0xffffffffffffff9c, 0x0, 0x0, 0x0) [ 3305.674712] FAULT_INJECTION: forcing a failure. [ 3305.674712] name failslab, interval 1, probability 0, space 0, times 0 [ 3305.677527] CPU: 0 PID: 26410 Comm: syz-executor.2 Not tainted 5.10.207 #1 [ 3305.679175] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 3305.680979] Call Trace: [ 3305.681567] dump_stack+0x107/0x167 [ 3305.682380] should_fail.cold+0x5/0xa [ 3305.683231] ? create_object.isra.0+0x3a/0xa20 [ 3305.684230] should_failslab+0x5/0x20 [ 3305.685058] kmem_cache_alloc+0x5b/0x310 [ 3305.685969] create_object.isra.0+0x3a/0xa20 [ 3305.686926] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 3305.688058] kmem_cache_alloc_node+0x169/0x330 [ 3305.689072] __alloc_skb+0x6d/0x5b0 [ 3305.689889] __ip_append_data+0x2930/0x3310 [ 3305.690867] ? raw_destroy+0x30/0x30 [ 3305.691740] ? ip_finish_output+0x330/0x330 [ 3305.692708] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 3305.693812] ? ipv4_mtu+0x1ed/0x2c0 [ 3305.694625] ? raw_destroy+0x30/0x30 [ 3305.695462] ip_append_data+0x114/0x1a0 [ 3305.696361] raw_sendmsg+0xaa6/0x29d0 [ 3305.697236] ? dst_output+0x170/0x170 [ 3305.698073] ? perf_trace_run_bpf_submit+0xf5/0x190 [ 3305.699209] ? perf_trace_lock+0x2bd/0x490 [ 3305.700160] ? SOFTIRQ_verbose+0x10/0x10 [ 3305.701060] ? __lockdep_reset_lock+0x180/0x180 [ 3305.702126] ? selinux_socket_post_create+0x7f0/0x7f0 [ 3305.703283] ? find_held_lock+0x2c/0x110 [ 3305.704218] ? trace_hardirqs_on+0x5b/0x180 [ 3305.705172] ? dst_output+0x170/0x170 [ 3305.706044] inet_sendmsg+0x11d/0x140 [ 3305.706904] ? inet_send_prepare+0x540/0x540 [ 3305.707930] __sock_sendmsg+0x13c/0x190 [ 3305.708826] ____sys_sendmsg+0x334/0x870 [ 3305.709735] ? sock_write_iter+0x3d0/0x3d0 [ 3305.710652] ? do_recvmmsg+0x6d0/0x6d0 [ 3305.711523] ? perf_trace_lock+0x2bd/0x490 [ 3305.712486] ? __lockdep_reset_lock+0x180/0x180 [ 3305.713545] ___sys_sendmsg+0xf3/0x170 [ 3305.714434] ? sendmsg_copy_msghdr+0x160/0x160 [ 3305.715460] ? lock_downgrade+0x6d0/0x6d0 [ 3305.716385] ? __lock_acquire+0x1657/0x5b00 [ 3305.717358] ? __fget_files+0x296/0x4c0 [ 3305.718256] ? __fget_light+0xea/0x290 [ 3305.719154] __sys_sendmmsg+0x195/0x470 [ 3305.720084] ? __ia32_sys_sendmsg+0xb0/0xb0 [ 3305.721026] ? perf_trace_lock+0x2bd/0x490 [ 3305.722053] ? fast_mix+0x1a/0x170 [ 3305.722865] ? find_held_lock+0x2c/0x110 [ 3305.723779] ? common_interrupt+0x94/0x1a0 [ 3305.724727] ? lock_downgrade+0x6d0/0x6d0 [ 3305.725689] ? handle_edge_irq+0x3f6/0xd00 [ 3305.726640] __x64_sys_sendmmsg+0x99/0x100 [ 3305.727629] do_syscall_64+0x33/0x40 [ 3305.728446] entry_SYSCALL_64_after_hwframe+0x62/0xc7 [ 3305.729562] RIP: 0033:0x7fac065c2b19 [ 3305.730378] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 3305.734358] RSP: 002b:00007fac03b38188 EFLAGS: 00000246 ORIG_RAX: 0000000000000133 [ 3305.736026] RAX: ffffffffffffffda RBX: 00007fac066d5f60 RCX: 00007fac065c2b19 [ 3305.737567] RDX: 0000000000000001 RSI: 0000000020002040 RDI: 0000000000000003 [ 3305.739139] RBP: 00007fac03b381d0 R08: 0000000000000000 R09: 0000000000000000 [ 3305.740685] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 3305.742235] R13: 00007ffe4d4b793f R14: 00007fac03b38300 R15: 0000000000022000 [ 3305.747050] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium 20:00:05 executing program 5: ftruncate(0xffffffffffffffff, 0xffff) r0 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x105142, 0x0) lseek(r0, 0x800, 0x4) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x400}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r1 = openat(0xffffffffffffffff, &(0x7f0000000280)='/proc/self/exe\x00', 0x181000, 0x0) fstatfs(r0, &(0x7f0000000000)=""/46) ioctl$EXT4_IOC_PRECACHE_EXTENTS(r0, 0x6612) ioctl$AUTOFS_DEV_IOCTL_OPENMOUNT(0xffffffffffffffff, 0xc0189374, &(0x7f0000000140)=ANY=[@ANYRES32=r1, @ANYBLOB="04000000000000002e5066696c65311965d410a9323dc4cb9067621c7bdb7accc76a41651adb7005ce84fc826bc79ef2d7a6ad29e115f9ceee51e350fec9142f56bd15287926d43ebf01b300000000000000f1fbd8df39c84ccd943277f44490e05b663a55b00a7346"]) open_tree(r0, &(0x7f00000000c0)='./file0\x00', 0x9101) sendfile(r0, r1, 0x0, 0x100000001) 20:00:05 executing program 4: syz_80211_inject_frame(&(0x7f00000000c0)=@device_a={0x8, 0x2, 0x11, 0x0, 0x17}, &(0x7f0000000440)=ANY=[], 0x2f) [ 3305.944267] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium [ 3306.277214] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium 20:00:23 executing program 4: syz_80211_inject_frame(&(0x7f00000000c0)=@device_a={0x8, 0x2, 0x11, 0x0, 0x18}, &(0x7f0000000440)=ANY=[], 0x2f) 20:00:23 executing program 2: r0 = socket$inet_icmp_raw(0x2, 0x3, 0x1) r1 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a) ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000140)={'syz_tun\x00', 0x0}) perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) sendmmsg$inet(r0, &(0x7f0000002040)=[{{&(0x7f0000000380)={0x2, 0x0, @multicast1}, 0x10, &(0x7f0000001600)=[{&(0x7f00000003c0)="db9c", 0xffe7}], 0x1, &(0x7f0000001640)=ANY=[@ANYBLOB="14000000000000000000000007000000c4048f01000000001c000000000000000000000008000000", @ANYRES32=r2], 0x38}}], 0x1, 0x0) (fail_nth: 40) 20:00:23 executing program 5: r0 = shmget$private(0x0, 0x3000, 0x0, &(0x7f0000ffa000/0x3000)=nil) shmctl$IPC_RMID(r0, 0x0) shmat(r0, &(0x7f0000ff9000/0x4000)=nil, 0x4000) shmctl$SHM_LOCK(r0, 0xb) shmctl$SHM_STAT(r0, 0xd, &(0x7f0000000000)=""/242) shmctl$SHM_INFO(0xffffffffffffffff, 0xe, &(0x7f0000000100)=""/181) mlock2(&(0x7f0000ff9000/0x2000)=nil, 0x2000, 0x0) shmat(r0, &(0x7f0000ff9000/0x4000)=nil, 0x5000) shmctl$SHM_UNLOCK(r0, 0xc) 20:00:23 executing program 1: r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$ethtool(&(0x7f0000001700), 0xffffffffffffffff) r2 = dup3(0xffffffffffffffff, 0xffffffffffffffff, 0x0) linkat(r2, &(0x7f0000000100)='./file0\x00', 0xffffffffffffffff, &(0x7f0000000140)='./file0/file0\x00', 0x1000) syz_genetlink_get_family_id$nl80211(&(0x7f0000000140), r2) sendmsg$IPVS_CMD_FLUSH(r0, &(0x7f00000000c0)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x80000000}, 0xc, &(0x7f0000000080)={&(0x7f0000000240)=ANY=[@ANYBLOB='\x00\x00\x00\x00\x00\x00\x00\x00', @ANYRES16=0x0, @ANYBLOB="100029bd7000ffdbdf25110000000800050003000000080004000000010008000500090000003c00028006000b000000000008000400800d000008000700fbffffff080004000100000006000e004e20000008000500f7ffffff08000700060000000800060003000000080005003f00000008000500080000005400028008000300030000001400010000000000000000000000000000000001080005000500000006000b001e055f04744aaf1623090000140001000a0101000000000000000000000000000800080031000000"], 0xd4}, 0x1, 0x0, 0x0, 0x4000}, 0x91) sendmsg$ETHTOOL_MSG_PRIVFLAGS_GET(r0, &(0x7f0000000100)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000001640)={0x2c, r1, 0x1, 0x0, 0x0, {0xa}, [@HEADER={0x18, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'batadv_slave_0\x00'}]}]}, 0x2c}}, 0x0) r3 = socket$inet6_tcp(0xa, 0x1, 0x0) getsockopt$inet6_int(r3, 0x29, 0x4, 0x0, &(0x7f0000000080)) accept4(r3, &(0x7f0000000180)=@llc={0x1a, 0x0, 0x0, 0x0, 0x0, 0x0, @broadcast}, &(0x7f0000000200)=0x80, 0x0) 20:00:23 executing program 0: perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0) clone3(&(0x7f0000000200)={0x31081000, &(0x7f0000000100), 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) 20:00:23 executing program 7: ioctl$TCSETSF2(0xffffffffffffffff, 0x402c542d, &(0x7f0000000000)={0x0, 0x0, 0x0, 0x0, 0x2, "77004a6efdff0000000008002600", 0x0, 0x401}) r0 = openat$tun(0xffffffffffffff9c, &(0x7f00000001c0), 0x0, 0x0) ioctl$TUNSETQUEUE(r0, 0x400454ca, &(0x7f0000000000)={'veth0_vlan\x00'}) mq_open(&(0x7f0000000000)='-@\x00\xb7!\xf9Z\xbb,;\x7f\xc0\xa9J\xb3\v\xfb\x84\xaa\xb5\x9a\xa4O\xa8\xb5\xd2\x13/z\v\xae\xfc\xfek*D\xeb{\t\xba>\xe8\xe2\xba\x00\x00\x00\x00\x00\x00\xd0zd\xccD\xf4a\xd8/\x90x\xb5\xd8\x04\x19u\xf9D\xb7Eq\xc1\xcee\xd9\b0\xec\v\xe3\x96\x1f\x80\xe4Nk\xa6\xe1\b\x97,\x8b/\x96\x9b\xdb&\xd1\xe3J\xd5\xaf\xe3\xfc\xde\xbe\xa0\x8b\xeb\xea%\x10eW\xf6\xa0J\xe51\xa4\xfesm\x96\x89\x0f\xea\xa6\xc02\xd4\xb8y\x83L\xc4\x93U\x15\x9b\f\x9b\xc3Z\xff\\\x9d\x83\xe6\xc7fc\xa9n\x8e\aV\xe8\xf9\xf9\xe4\xfb+~\xabu\xf9K\x1d9[\xcd\x9b;=6Q\x80', 0x3, 0x0, 0x0) pread64(0xffffffffffffffff, &(0x7f0000000200)=""/230, 0xe6, 0x2) r1 = socket$inet(0x2, 0xa, 0x0) ioctl$TUNSETQUEUE(0xffffffffffffffff, 0x400454d9, &(0x7f0000000300)={'wg2\x00'}) r2 = socket$netlink(0x10, 0x3, 0x0) r3 = fcntl$dupfd(r2, 0x0, r2) r4 = syz_mount_image$nfs4(&(0x7f0000000180), &(0x7f0000000340)='./file0\x00', 0x2, 0x6, &(0x7f00000006c0)=[{&(0x7f0000000380)="9714042c2f44b67c8973eff928d57bca415fc49feadf84de253baae464c175496985221e93b50df5b1f641474c446c9700e55f4fc5e502f83976f105a1f81c2092b7e321ce48ee1a25a5d88c45263eb92e08f02d5ca8d5c7a5c7beb8", 0x5c, 0x1}, {&(0x7f0000000400)="a918a2c13f0e6c00b8c682a186831ac68a77b5f442b85bec4bf05ba4e64aeb72f4d8cd4515599dc0cdfd01c106abcc61f74a151762299df2aac5d71d0cb03a5b75211dc830bef7228c1ad97ecc00d0d3a48267da94a8e518c20dfdd42479ba243222a67e55f75d8a60a65468957c695ce49e1978d958e7edc14e499710b0a4367492f56b397a9f3d37069a57efda213c60a6f43ab539d405d0c01b5e9652c9bec2e46e3201863a68eef99f09512877500c134ee48988a14b858d80f9c78ead9098dea7da624e97125cb15cba7af36bcfe8e5533abe6b1ab74dc67ff47c9bb55c9ad002ca68d57aa3297825883d2e03", 0xef, 0x5}, {&(0x7f0000000500)="508d59e289fd60fcb1de09785c", 0xd, 0x7}, {&(0x7f0000000540)="e560c519", 0x4, 0xff}, {&(0x7f0000000580)}, {&(0x7f00000005c0)="4ca1fd2f0ba88435ce1185646994fd332f4f178778b621edd44b7bfaf4789b957d9c71808ec2351b3fe42b203d089155ca0182c445fc8206cf6a375795ceb956b6ecb6070943128cfdc35583ce6dff563a69665d7289ae2818971afdb218c857d4d5e144991532b5315947faf6ba1e49daa7a5326f661496362bc790257fbe7c15a96d52b27bb9e9415e8eac3e60f340904e1de3a73ec016983a4cef4906f8f38e76bcc9804baa6866c86fd157ea49288a3c886151cc8c55bd572cc4a0125973d76ad0af01217a7f5272af405dbce2", 0xcf, 0xffffffff}], 0x80000, &(0x7f0000000780)={[{'*'}, {'\''}, {'wg2\x00'}, {'/dev/net/tun\x00'}, {'veth0_vlan\x00'}, {'/d8\xd3\xb0\xbb\x1f\xfc\xf4fu\a\x00'}, {'-@\x00\xb7!\xf9Z\xbb,;\x7f\xc0\xa9J\xb3\v\xfb\x84\xaa\xb5\x9a\xa4O\xa8\xb5\xd2\x13/z\v\xae\xfc\xfek*D\xeb{\t\xba>\xe8\xe2\xba\x00\x00\x00\x00\x00\x00\xd0zd\xccD\xf4a\xd8/\x90x\xb5\xd8\x04\x19u\xf9D\xb7Eq\xc1\xcee\xd9\b0\xec\v\xe3\x96\x1f\x80\xe4Nk\xa6\xe1\b\x97,\x8b/\x96\x9b\xdb&\xd1\xe3J\xd5\xaf\xe3\xfc\xde\xbe\xa0\x8b\xeb\xea%\x10eW\xf6\xa0J\xe51\xa4\xfesm\x96\x89\x0f\xea\xa6\xc02\xd4\xb8y\x83L\xc4\x93U\x15\x9b\f\x9b\xc3Z\xff\\\x9d\x83\xe6\xc7fc\xa9n\x8e\aV\xe8\xf9\xf9\xe4\xfb+~\xabu\xf9K\x1d9[\xcd\x9b;=6Q\x80'}, {'wg2\x00'}], [{@obj_type={'obj_type', 0x3d, '-@\x00\xb7!\xf9Z\xbb,;\x7f\xc0\xa9J\xb3\v\xfb\x84\xaa\xb5\x9a\xa4O\xa8\xb5\xd2\x13/z\v\xae\xfc\xfek*D\xeb{\t\xba>\xe8\xe2\xba\x00\x00\x00\x00\x00\x00\xd0zd\xccD\xf4a\xd8/\x90x\xb5\xd8\x04\x19u\xf9D\xb7Eq\xc1\xcee\xd9\b0\xec\v\xe3\x96\x1f\x80\xe4Nk\xa6\xe1\b\x97,\x8b/\x96\x9b\xdb&\xd1\xe3J\xd5\xaf\xe3\xfc\xde\xbe\xa0\x8b\xeb\xea%\x10eW\xf6\xa0J\xe51\xa4\xfesm\x96\x89\x0f\xea\xa6\xc02\xd4\xb8y\x83L\xc4\x93U\x15\x9b\f\x9b\xc3Z\xff\\\x9d\x83\xe6\xc7fc\xa9n\x8e\aV\xe8\xf9\xf9\xe4\xfb+~\xabu\xf9K\x1d9[\xcd\x9b;=6Q\x80'}}, {@obj_user}, {@dont_measure}, {@hash}]}) openat(r4, &(0x7f0000000980)='./file0\x00', 0x268c40, 0x108) sendmsg$nl_generic(r3, &(0x7f0000000280)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000140)={0x30, 0x18, 0xc21, 0x0, 0x0, {0x2}, [@typed={0x8, 0x0, 0x0, 0x0, @u32}, @typed={0x14, 0x1, 0x0, 0x0, @ipv6=@private2}]}, 0x30}}, 0x0) ioctl$VT_GETMODE(r3, 0x5601, &(0x7f0000000100)) dup3(0xffffffffffffffff, r0, 0x80000) syz_genetlink_get_family_id$nl80211(&(0x7f0000000040), 0xffffffffffffffff) perf_event_open(&(0x7f0000000080)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x840}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) dup3(r1, r0, 0x0) 20:00:23 executing program 6: syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000140)='./file0\x00', 0x40000, 0x4, &(0x7f0000000200)=[{&(0x7f0000010000)="20000000000100000c000000d40000000f000000010000000000000000000000002000000020000020000000d7f4655fd7f4655f0100ffff53ef010001000000d7f4655f000000000000000001000000000000000b0000000002", 0x5a, 0x400}, {&(0x7f0000010400)="030000000400000005000000d4000f", 0xf, 0x800}, {&(0x7f0000000500)="ffffffffff070000000000000000000000000000000000000000000000000080ffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffff", 0x402, 0xc00}, {&(0x7f0000010e00)="ed41000000040000d7f4655fd7f4655fd7f4655f000000000000040002", 0x1d, 0x1600}], 0x0, &(0x7f00000003c0)=ANY=[]) chdir(&(0x7f0000000040)='./file0\x00') openat(0xffffffffffffff9c, &(0x7f0000000080)='./file1\x00', 0x105142, 0x0) r0 = openat(0xffffffffffffff9c, &(0x7f0000000200)='./file1\x00', 0x2, 0x0) write(r0, &(0x7f0000000240)="01", 0x1) r1 = openat(0xffffffffffffff9c, &(0x7f00000000c0)='./file2\x00', 0x105142, 0x0) r2 = openat(0xffffffffffffff9c, &(0x7f0000001340)='./file1\x00', 0x0, 0x0) copy_file_range(r2, 0x0, r1, &(0x7f0000000280)=0x3000000, 0xc3a, 0x0) openat$sr(0xffffffffffffff9c, 0x0, 0x0, 0x0) 20:00:23 executing program 3: syz_mount_image$vfat(0x0, &(0x7f0000000240)='./file1\x00', 0x0, 0x0, 0x0, 0x0, 0x0) r0 = fsopen(&(0x7f00000000c0)='rpc_pipefs\x00', 0x0) fsconfig$FSCONFIG_SET_FLAG(r0, 0x0, 0x0, 0x0, 0x0) fsconfig$FSCONFIG_CMD_CREATE(r0, 0x6, 0x0, 0x0, 0x0) fsmount(r0, 0x0, 0x8c) r1 = fsmount(r0, 0x0, 0x0) fsconfig$FSCONFIG_CMD_RECONFIGURE(r0, 0x7, 0x0, 0x0, 0x0) syz_io_uring_submit(0x0, 0x0, &(0x7f0000000040)=@IORING_OP_READV=@use_registered_buffer={0x1, 0x3, 0x4007, @fd_index=0x1, 0xffffffff80000000, 0x0, 0x0, 0x1d, 0x1}, 0x0) syz_io_uring_submit(0x0, 0x0, &(0x7f00000002c0)=@IORING_OP_MADVISE={0x19, 0x7, 0x0, 0x0, 0x0, &(0x7f0000ffd000/0x3000)=nil, 0x3000, 0x4, 0x1}, 0x100) r2 = syz_init_net_socket$bt_l2cap(0x1f, 0x1, 0x0) ioctl$AUTOFS_DEV_IOCTL_PROTOSUBVER(r1, 0xc0189373, &(0x7f00000001c0)={{0x1, 0x1, 0x18, r2, {0x7}}, './file1\x00'}) chmod(&(0x7f0000000280)='./file1\x00', 0x92) clone3(&(0x7f00000008c0)={0x1040100, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) r3 = open(&(0x7f0000000280)='./file0\x00', 0x20401, 0x164) fsmount(r1, 0x0, 0x84) ioctl$AUTOFS_IOC_READY(r3, 0x9360, 0x4) clone3(&(0x7f00000004c0)={0x200000000, &(0x7f0000000000), &(0x7f0000000080), &(0x7f0000000100), {0x10}, &(0x7f00000001c0), 0x0, &(0x7f0000000400)=""/80, &(0x7f0000000480)=[0x0, 0x0, 0x0, 0x0, 0x0, 0x0], 0x6, {r3}}, 0x58) pipe(&(0x7f00000003c0)={0xffffffffffffffff, 0xffffffffffffffff}) mount$9p_fd(0x0, &(0x7f0000000040)='./file1\x00', &(0x7f00000000c0), 0x0, &(0x7f0000000140)={'trans=fd,', {'rfdno', 0x3d, r4}, 0x2c, {'wfdno', 0x3d, r5}, 0x2c, {[{@cache_mmap}, {@cache_none}]}}) [ 3323.662798] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium [ 3323.681915] FAULT_INJECTION: forcing a failure. [ 3323.681915] name failslab, interval 1, probability 0, space 0, times 0 [ 3323.684258] CPU: 1 PID: 26567 Comm: syz-executor.2 Not tainted 5.10.207 #1 [ 3323.685648] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 3323.687321] Call Trace: [ 3323.687866] dump_stack+0x107/0x167 [ 3323.688606] should_fail.cold+0x5/0xa [ 3323.689382] ? create_object.isra.0+0x3a/0xa20 [ 3323.690305] should_failslab+0x5/0x20 [ 3323.691098] kmem_cache_alloc+0x5b/0x310 [ 3323.691947] create_object.isra.0+0x3a/0xa20 [ 3323.692826] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 3323.693848] kmem_cache_alloc_node+0x169/0x330 [ 3323.694771] __alloc_skb+0x6d/0x5b0 [ 3323.695519] __ip_append_data+0x2930/0x3310 [ 3323.696401] ? raw_destroy+0x30/0x30 [ 3323.697165] ? ip_finish_output+0x330/0x330 [ 3323.698030] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 3323.699039] ? ipv4_mtu+0x1ed/0x2c0 [ 3323.699780] ? raw_destroy+0x30/0x30 [ 3323.700523] ip_append_data+0x114/0x1a0 [ 3323.701332] raw_sendmsg+0xaa6/0x29d0 [ 3323.702110] ? dst_output+0x170/0x170 [ 3323.702871] ? __lock_acquire+0x1657/0x5b00 [ 3323.703775] ? perf_trace_lock+0xac/0x490 [ 3323.704602] ? SOFTIRQ_verbose+0x10/0x10 [ 3323.705411] ? create_object.isra.0+0x3ad/0xa20 [ 3323.706344] ? __lockdep_reset_lock+0x180/0x180 [ 3323.707296] ? selinux_socket_post_create+0x7f0/0x7f0 [ 3323.708326] ? find_held_lock+0x2c/0x110 [ 3323.709158] ? trace_hardirqs_on+0x5b/0x180 [ 3323.710028] ? dst_output+0x170/0x170 [ 3323.710792] inet_sendmsg+0x11d/0x140 [ 3323.711571] ? inet_send_prepare+0x540/0x540 [ 3323.712448] __sock_sendmsg+0x13c/0x190 [ 3323.713242] ____sys_sendmsg+0x334/0x870 [ 3323.714058] ? sock_write_iter+0x3d0/0x3d0 [ 3323.714897] ? do_recvmmsg+0x6d0/0x6d0 [ 3323.715683] ? perf_trace_lock+0xac/0x490 [ 3323.716520] ? __lockdep_reset_lock+0x180/0x180 [ 3323.717449] ? perf_trace_lock+0xac/0x490 [ 3323.718286] ___sys_sendmsg+0xf3/0x170 [ 3323.719069] ? sendmsg_copy_msghdr+0x160/0x160 [ 3323.719993] ? lock_downgrade+0x6d0/0x6d0 [ 3323.720856] ? lock_downgrade+0x6d0/0x6d0 [ 3323.721693] ? __fget_files+0x296/0x4c0 [ 3323.722529] ? __fget_light+0xea/0x290 [ 3323.723337] __sys_sendmmsg+0x195/0x470 [ 3323.724142] ? __ia32_sys_sendmsg+0xb0/0xb0 [ 3323.725005] ? lock_downgrade+0x6d0/0x6d0 [ 3323.725857] ? __mutex_unlock_slowpath+0xe1/0x600 [ 3323.726824] ? wait_for_completion_io+0x270/0x270 [ 3323.727805] ? rcu_read_lock_any_held+0x75/0xa0 [ 3323.728731] ? vfs_write+0x354/0xa70 [ 3323.729480] ? fput_many+0x2f/0x1a0 [ 3323.730225] ? ksys_write+0x1a9/0x260 [ 3323.730989] ? __ia32_sys_read+0xb0/0xb0 [ 3323.731843] __x64_sys_sendmmsg+0x99/0x100 [ 3323.732697] do_syscall_64+0x33/0x40 [ 3323.733457] entry_SYSCALL_64_after_hwframe+0x62/0xc7 [ 3323.734477] RIP: 0033:0x7fac065c2b19 [ 3323.735226] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 3323.738929] RSP: 002b:00007fac03b38188 EFLAGS: 00000246 ORIG_RAX: 0000000000000133 [ 3323.740459] RAX: ffffffffffffffda RBX: 00007fac066d5f60 RCX: 00007fac065c2b19 [ 3323.741888] RDX: 0000000000000001 RSI: 0000000020002040 RDI: 0000000000000003 [ 3323.743321] RBP: 00007fac03b381d0 R08: 0000000000000000 R09: 0000000000000000 [ 3323.744742] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 3323.746164] R13: 00007ffe4d4b793f R14: 00007fac03b38300 R15: 0000000000022000 [ 3323.770354] netlink: 'syz-executor.7': attribute type 1 has an invalid length. [ 3323.787046] EXT4-fs (loop6): mounted filesystem without journal. Opts: ,errors=continue 20:00:23 executing program 5: r0 = socket$nl_xfrm(0x10, 0x3, 0x6) sendmsg$nl_xfrm(r0, &(0x7f0000002e00)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000000)=ANY=[@ANYBLOB="f0000000100001000000000000000000ff02000000000000000000000000000100"/64, @ANYRES32=0x0, @ANYRES32=0x0, @ANYBLOB="000000000000000000000000000000000000000032000000e00000010000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000008dbb0b5b73ccf7c40000000000000000000000000000000000000000000a0000000000000000000000b699343c908e0ef71b806dfc4b757f81e5dfe32bd7fbf6ef76dbb07316b368bd1bfd1afe6f403f0efd742792180755f789cc77c83f24a9b0cc09bdc3308c4aa24e778bc96c200d4a0402a25af2041d0879b80b581aed00cc0fec78d80bdead731d1f15c11cea1280f2ae28553a7606cde8f3f563a9b5234809e166a46ee0462b21275eca07b744f7b55f2c25708ba6f4ad55f4c967c1a809d7f7f4e207a0cc9a8f48cad20e"], 0xf0}}, 0x0) 20:00:23 executing program 1: r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$ethtool(&(0x7f0000002740), 0xffffffffffffffff) socket$inet6_icmp_raw(0xa, 0x3, 0x3a) sendmsg$ETHTOOL_MSG_EEE_SET(r0, &(0x7f0000002800)={0x0, 0x0, &(0x7f0000000000)={&(0x7f00000014c0)=ANY=[@ANYBLOB="395f8a00", @ANYRES16=r1, @ANYBLOB="01000000000000000000080000000c00018008000100", @ANYRES32, @ANYBLOB="18000280140003800c000180080001"], 0x38}}, 0x0) 20:00:23 executing program 0: perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0) clone3(&(0x7f0000000200)={0x31081000, &(0x7f0000000100), 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) 20:00:23 executing program 2: r0 = socket$inet_icmp_raw(0x2, 0x3, 0x1) r1 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a) ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000140)={'syz_tun\x00', 0x0}) perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) sendmmsg$inet(r0, &(0x7f0000002040)=[{{&(0x7f0000000380)={0x2, 0x0, @multicast1}, 0x10, &(0x7f0000001600)=[{&(0x7f00000003c0)="db9c", 0xffe7}], 0x1, &(0x7f0000001640)=ANY=[@ANYBLOB="14000000000000000000000007000000c4048f01000000001c000000000000000000000008000000", @ANYRES32=r2], 0x38}}], 0x1, 0x0) (fail_nth: 41) [ 3323.977228] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium [ 3324.018907] FAULT_INJECTION: forcing a failure. [ 3324.018907] name failslab, interval 1, probability 0, space 0, times 0 [ 3324.021478] CPU: 0 PID: 26707 Comm: syz-executor.2 Not tainted 5.10.207 #1 [ 3324.022961] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 3324.024769] Call Trace: [ 3324.025361] dump_stack+0x107/0x167 [ 3324.026266] should_fail.cold+0x5/0xa [ 3324.027212] ? create_object.isra.0+0x3a/0xa20 [ 3324.028346] should_failslab+0x5/0x20 [ 3324.029295] kmem_cache_alloc+0x5b/0x310 [ 3324.030302] create_object.isra.0+0x3a/0xa20 [ 3324.031396] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 3324.032642] __kmalloc_node_track_caller+0x1a6/0x3b0 [ 3324.033877] ? __ip_append_data+0x2930/0x3310 [ 3324.034984] __alloc_skb+0xb1/0x5b0 20:00:23 executing program 6: syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000140)='./file0\x00', 0x40000, 0x4, &(0x7f0000000200)=[{&(0x7f0000010000)="20000000000100000c000000d40000000f000000010000000000000000000000002000000020000020000000d7f4655fd7f4655f0100ffff53ef010001000000d7f4655f000000000000000001000000000000000b0000000002", 0x5a, 0x400}, {&(0x7f0000010400)="030000000400000005000000d4000f", 0xf, 0x800}, {&(0x7f0000000500)="ffffffffff070000000000000000000000000000000000000000000000000080ffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffff", 0x402, 0xc00}, {&(0x7f0000010e00)="ed41000000040000d7f4655fd7f4655fd7f4655f000000000000040002", 0x1d, 0x1600}], 0x0, &(0x7f00000003c0)=ANY=[]) chdir(&(0x7f0000000040)='./file0\x00') openat(0xffffffffffffff9c, &(0x7f0000000080)='./file1\x00', 0x105142, 0x0) r0 = openat(0xffffffffffffff9c, &(0x7f0000000200)='./file1\x00', 0x2, 0x0) write(r0, &(0x7f0000000240)="01", 0x1) r1 = openat(0xffffffffffffff9c, &(0x7f00000000c0)='./file2\x00', 0x105142, 0x0) r2 = openat(0xffffffffffffff9c, &(0x7f0000001340)='./file1\x00', 0x0, 0x0) copy_file_range(r2, 0x0, r1, &(0x7f0000000280)=0x4000000, 0xc3a, 0x0) openat$sr(0xffffffffffffff9c, 0x0, 0x0, 0x0) [ 3324.036111] __ip_append_data+0x2930/0x3310 [ 3324.037218] ? raw_destroy+0x30/0x30 [ 3324.038167] ? ip_finish_output+0x330/0x330 [ 3324.039222] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 3324.040483] ? ipv4_mtu+0x1ed/0x2c0 [ 3324.041388] ? raw_destroy+0x30/0x30 [ 3324.042300] ip_append_data+0x114/0x1a0 [ 3324.043312] raw_sendmsg+0xaa6/0x29d0 [ 3324.044291] ? dst_output+0x170/0x170 [ 3324.045225] ? perf_trace_run_bpf_submit+0xf5/0x190 [ 3324.046484] ? perf_trace_lock+0x2bd/0x490 [ 3324.047528] ? SOFTIRQ_verbose+0x10/0x10 [ 3324.048535] ? __lockdep_reset_lock+0x180/0x180 [ 3324.049705] ? selinux_socket_post_create+0x7f0/0x7f0 [ 3324.050961] ? find_held_lock+0x2c/0x110 [ 3324.052018] ? trace_hardirqs_on+0x5b/0x180 [ 3324.053086] ? dst_output+0x170/0x170 [ 3324.054029] inet_sendmsg+0x11d/0x140 [ 3324.054963] ? inet_send_prepare+0x540/0x540 [ 3324.056042] __sock_sendmsg+0x13c/0x190 [ 3324.057021] ____sys_sendmsg+0x334/0x870 [ 3324.058026] ? sock_write_iter+0x3d0/0x3d0 [ 3324.059057] ? do_recvmmsg+0x6d0/0x6d0 [ 3324.060026] ? perf_trace_lock+0x2bd/0x490 [ 3324.061084] ? __lockdep_reset_lock+0x180/0x180 [ 3324.062245] ___sys_sendmsg+0xf3/0x170 [ 3324.063205] ? sendmsg_copy_msghdr+0x160/0x160 [ 3324.064347] ? lock_downgrade+0x6d0/0x6d0 [ 3324.065374] ? perf_trace_run_bpf_submit+0xf5/0x190 [ 3324.066614] ? __fget_files+0x296/0x4c0 [ 3324.067637] ? __fget_light+0xea/0x290 [ 3324.068618] __sys_sendmmsg+0x195/0x470 [ 3324.069610] ? __ia32_sys_sendmsg+0xb0/0xb0 [ 3324.070667] ? lock_downgrade+0x6d0/0x6d0 [ 3324.071741] ? __mutex_unlock_slowpath+0xe1/0x600 [ 3324.072932] ? wait_for_completion_io+0x270/0x270 [ 3324.074118] ? rcu_read_lock_any_held+0x75/0xa0 [ 3324.075250] ? vfs_write+0x354/0xa70 [ 3324.076179] ? fput_many+0x2f/0x1a0 [ 3324.077073] ? ksys_write+0x1a9/0x260 [ 3324.078011] ? __ia32_sys_read+0xb0/0xb0 [ 3324.079027] __x64_sys_sendmmsg+0x99/0x100 [ 3324.080089] do_syscall_64+0x33/0x40 [ 3324.081001] entry_SYSCALL_64_after_hwframe+0x62/0xc7 [ 3324.082244] RIP: 0033:0x7fac065c2b19 [ 3324.083145] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 3324.087595] RSP: 002b:00007fac03b38188 EFLAGS: 00000246 ORIG_RAX: 0000000000000133 [ 3324.089443] RAX: ffffffffffffffda RBX: 00007fac066d5f60 RCX: 00007fac065c2b19 [ 3324.091166] RDX: 0000000000000001 RSI: 0000000020002040 RDI: 0000000000000003 [ 3324.092913] RBP: 00007fac03b381d0 R08: 0000000000000000 R09: 0000000000000000 [ 3324.094637] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 3324.096371] R13: 00007ffe4d4b793f R14: 00007fac03b38300 R15: 0000000000022000 20:00:23 executing program 1: setpriority(0x0, 0xffffffffffffffff, 0x0) r0 = add_key$keyring(&(0x7f0000000040), &(0x7f0000000080)={'syz', 0x3}, 0x0, 0x0, 0xfffffffffffffffd) r1 = add_key(&(0x7f0000000100)='.request_key_auth\x00', &(0x7f0000000180)={'syz', 0x1}, 0x0, 0x0, 0xfffffffffffffff9) r2 = add_key$keyring(0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff) keyctl$get_security(0x11, 0x0, &(0x7f0000002980)=""/240, 0xf0) add_key$keyring(0x0, &(0x7f0000000200)={'syz', 0x2}, 0x0, 0x0, r2) keyctl$KEYCTL_MOVE(0x1e, r1, 0x0, 0xfffffffffffffffe, 0x1) add_key(&(0x7f00000000c0)='rxrpc_s\x00', &(0x7f0000000140)={'syz', 0x0}, &(0x7f0000000280)="99c2c8", 0x3, r0) keyctl$revoke(0x3, r0) r3 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000000)='/proc/keys\x00', 0x0, 0x0) request_key(&(0x7f00000002c0)='asymmetric\x00', &(0x7f0000000300)={'syz', 0x3}, &(0x7f00000004c0)='/proc/keys\x00', 0x0) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x6, @perf_bp={&(0x7f0000000040)}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x8) preadv(r3, &(0x7f0000001580)=[{&(0x7f00000015c0)=""/4106, 0x100a}], 0x1, 0x0, 0x0) 20:00:24 executing program 4: syz_80211_inject_frame(&(0x7f00000000c0)=@device_a={0x8, 0x2, 0x11, 0x0, 0x19}, &(0x7f0000000440)=ANY=[], 0x2f) 20:00:24 executing program 5: r0 = shmget$private(0x0, 0x3000, 0x0, &(0x7f0000ffa000/0x3000)=nil) shmat(r0, &(0x7f0000ff9000/0x4000)=nil, 0x4000) shmat(r0, &(0x7f0000ffc000/0x4000)=nil, 0x5000) r1 = shmget$private(0x0, 0x2000, 0x80, &(0x7f0000ff7000/0x2000)=nil) shmctl$SHM_LOCK(r1, 0xb) mlock(&(0x7f0000ff0000/0x10000)=nil, 0x10000) r2 = shmget(0x1, 0x4000, 0x80, &(0x7f0000ff9000/0x4000)=nil) shmget$private(0x0, 0x3000, 0x100, &(0x7f0000ffc000/0x3000)=nil) r3 = shmget$private(0x0, 0x3000, 0x78000000, &(0x7f0000ffc000/0x3000)=nil) shmat(r3, &(0x7f0000ff9000/0x4000)=nil, 0x4000) shmctl$SHM_UNLOCK(r0, 0xc) r4 = shmget(0x3, 0x3000, 0x54000000, &(0x7f0000ffd000/0x3000)=nil) shmat(r4, &(0x7f0000ff4000/0x1000)=nil, 0x3000) shmat(r3, &(0x7f0000ffb000/0x2000)=nil, 0x2000) shmctl$SHM_INFO(0xffffffffffffffff, 0xe, &(0x7f00000002c0)=""/4096) shmctl$SHM_UNLOCK(r3, 0xc) shmctl$SHM_INFO(r3, 0xe, &(0x7f0000000100)=""/182) shmctl$IPC_STAT(r3, 0x2, &(0x7f0000000000)=""/20) shmctl$SHM_UNLOCK(r2, 0xc) munmap(&(0x7f0000ff9000/0x4000)=nil, 0x4000) [ 3324.173348] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium 20:00:24 executing program 3: perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = openat(0xffffffffffffff9c, 0x0, 0x0, 0xa1) sendmsg$nl_generic(0xffffffffffffffff, 0x0, 0x0) ioctl$PERF_EVENT_IOC_PERIOD(r0, 0x40082404, &(0x7f0000000080)=0xffffffffffffffff) r1 = socket$inet6_udplite(0xa, 0x2, 0x88) bind$inet6(r1, 0x0, 0x0) syncfs(0xffffffffffffffff) setsockopt$inet6_int(0xffffffffffffffff, 0x29, 0xc8, &(0x7f0000000180)=0x3, 0x4) r2 = syz_open_procfs(0xffffffffffffffff, &(0x7f0000000200)='sessionid\x00') pread64(r2, 0x0, 0xfffffffffffffdda, 0x0) ioctl$RTC_ALM_SET(r2, 0x40247007, &(0x7f0000000100)={0x38, 0x22, 0x0, 0x0, 0x8, 0xc, 0x2, 0x95, 0x1}) r3 = memfd_create(&(0x7f00000002c0)='sessionid\x00', 0x1) ioctl$BTRFS_IOC_SUBVOL_SETFLAGS(r3, 0x4008941a, &(0x7f0000000300)) ioctl$AUTOFS_DEV_IOCTL_FAIL(r2, 0xc0189377, &(0x7f0000000340)=ANY=[@ANYBLOB="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", @ANYRES32=r3, @ANYBLOB="06000000ff0f00002e2f66696c653000"]) r4 = creat(&(0x7f0000000040)='./file0\x00', 0x0) fallocate(r4, 0x0, 0x0, 0x8000) write$9p(0xffffffffffffffff, &(0x7f00000000c0)="0fb865562069ab2f32beb83e263962827b00d7d8b791e504b65c5ed26e6688d67a9796c1aedca0de65d21b4796fd1b3df0ccedf9739e29f6b965de85433255da7945b7a842ba5fa3dbe88cd26fc9b1b807bc2d59e5a9f2c2bdaccdb839190141ba0151232669cb02b3b076251c024d73f501a54d959dac7cdb3fc324ab47f2a3e1ef12691eac5cab96860e948e", 0x8d) r5 = creat(&(0x7f0000000040)='./file0\x00', 0x0) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x8, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f00000001c0), 0x4}, 0x0, 0x0, 0x1002}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) syncfs(r5) 20:00:24 executing program 5: sendmsg$nl_generic(0xffffffffffffffff, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000140)={0x88, 0x24, 0x0, 0x70bd28, 0x25dfdbfc, {0x1d}, [@generic="d2d96cd6217dc16b4710dcad108514ff2fa0402f91a670747ab8ac008ede9fe14fd97ac69fc0216184305c21c3fa958c6ea919c8db28aee551607eb24d2b2e74b8bdea637b1675d7b3434c663937a038652fca188f7939c1aa3d98e844efc763ada37e2928a5e5e05063f61ad41c6c133d310776"]}, 0x88}, 0x1, 0x0, 0x0, 0x4000000}, 0x2000000) ioctl$FAT_IOCTL_SET_ATTRIBUTES(0xffffffffffffffff, 0x40047211, &(0x7f00000000c0)=0x4) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x4d, 0x0, 0x3f, 0x0, 0x4307, 0x0, 0xa, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, @perf_bp={&(0x7f0000000040), 0x2}, 0x14000, 0x7, 0x0, 0x9, 0x80000000, 0x7, 0x35, 0x0, 0x55cafea3}, 0x0, 0x6, 0xffffffffffffffff, 0x8) openat(0xffffffffffffffff, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0) ioctl$BTRFS_IOC_INO_LOOKUP(0xffffffffffffffff, 0xd0009412, &(0x7f0000000480)) r0 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a) connect$inet6(r0, &(0x7f0000000000)={0xa, 0x0, 0x0, @loopback}, 0x1c) mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x3000)=nil, 0x3000, 0xa, 0x1a4098a6b4c09535, 0xffffffffffffffff, 0x0) open$dir(&(0x7f0000000080)='./file0\x00', 0x181000, 0xc0) socket$unix(0x1, 0x1, 0x0) r1 = dup3(0xffffffffffffffff, 0xffffffffffffffff, 0x0) linkat(r1, &(0x7f0000000100)='./file0\x00', 0xffffffffffffffff, &(0x7f0000000140)='./file0/file0\x00', 0x1000) sendfile(0xffffffffffffffff, r1, 0x0, 0x3) 20:00:24 executing program 1: prlimit64(0x0, 0x7, &(0x7f00000003c0), 0x0) syz_io_uring_setup(0x3a75, &(0x7f0000000080)={0x0, 0x0, 0x2}, &(0x7f0000ffa000/0x1000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200), &(0x7f0000000100)) 20:00:24 executing program 6: syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000140)='./file0\x00', 0x40000, 0x4, &(0x7f0000000200)=[{&(0x7f0000010000)="20000000000100000c000000d40000000f000000010000000000000000000000002000000020000020000000d7f4655fd7f4655f0100ffff53ef010001000000d7f4655f000000000000000001000000000000000b0000000002", 0x5a, 0x400}, {&(0x7f0000010400)="030000000400000005000000d4000f", 0xf, 0x800}, {&(0x7f0000000500)="ffffffffff070000000000000000000000000000000000000000000000000080ffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffff", 0x402, 0xc00}, {&(0x7f0000010e00)="ed41000000040000d7f4655fd7f4655fd7f4655f000000000000040002", 0x1d, 0x1600}], 0x0, &(0x7f00000003c0)=ANY=[]) chdir(&(0x7f0000000040)='./file0\x00') openat(0xffffffffffffff9c, &(0x7f0000000080)='./file1\x00', 0x105142, 0x0) r0 = openat(0xffffffffffffff9c, &(0x7f0000000200)='./file1\x00', 0x2, 0x0) write(r0, &(0x7f0000000240)="01", 0x1) r1 = openat(0xffffffffffffff9c, &(0x7f00000000c0)='./file2\x00', 0x105142, 0x0) r2 = openat(0xffffffffffffff9c, &(0x7f0000001340)='./file1\x00', 0x0, 0x0) copy_file_range(r2, 0x0, r1, &(0x7f0000000280)=0x5000000, 0xc3a, 0x0) openat$sr(0xffffffffffffff9c, 0x0, 0x0, 0x0) 20:00:24 executing program 0: perf_event_open(&(0x7f0000001d80)={0x0, 0x80, 0x46, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0xffff, 0x2}, 0x0, 0x0, 0x0, 0x0, 0x3}, 0x0, 0x0, 0xffffffffffffffff, 0x0) clone3(&(0x7f0000000200)={0x31081000, &(0x7f0000000100), 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) 20:00:24 executing program 1: r0 = openat(0xffffffffffffff9c, 0x0, 0x0, 0x0) perf_event_open(&(0x7f0000000080)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0xa, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffc}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x2) ftruncate(r0, 0x1000003) ioctl$FS_IOC_FSSETXATTR(0xffffffffffffffff, 0x40086602, 0x0) r1 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000000), 0xc02, 0x0) write$eventfd(r0, &(0x7f0000000140)=0xfff, 0x8) write$binfmt_elf64(r1, &(0x7f0000000a00)=ANY=[], 0x98a) readv(r1, &(0x7f0000000100)=[{&(0x7f0000001340)=""/4096, 0x1000}], 0x1) r2 = openat$ptmx(0xffffffffffffff9c, 0x0, 0xc02, 0x0) fcntl$setflags(r2, 0x2, 0x0) ioctl$TIOCGPTPEER(r2, 0x5441, 0x80000001) r3 = syz_open_procfs(0x0, &(0x7f0000000140)='ns\x00') mount$9p_fd(0x0, &(0x7f0000000180)='./file1\x00', &(0x7f00000002c0), 0x0, &(0x7f0000000500)=ANY=[@ANYBLOB='trans=fd,rfdno=', @ANYRESHEX, @ANYBLOB=',wfdno=', @ANYRESHEX, @ANYBLOB=',msize=0x0000000000380000,']) sendfile(0xffffffffffffffff, 0xffffffffffffffff, 0x0, 0x1f) open_tree(r3, &(0x7f00000000c0)='./mnt\x00', 0x9001) r4 = syz_genetlink_get_family_id$SEG6(&(0x7f00000001c0), 0xffffffffffffffff) sendmsg$SEG6_CMD_SETHMAC(r3, &(0x7f0000000300)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x10}, 0xc, &(0x7f00000002c0)={&(0x7f0000000200)=ANY=[@ANYBLOB="54f70000", @ANYRES16=r4, @ANYBLOB="200027bd7000fedbdf250100000008000200050000000800030000000000050006000100000008000300080000001000040001000000010000000100000010000400000400000500000001000000"], 0x54}, 0x1, 0x0, 0x0, 0x4010}, 0x4) getpid() unshare(0x40000000) unshare(0x48020200) 20:00:24 executing program 7: sendmsg$ETHTOOL_MSG_FEATURES_SET(0xffffffffffffffff, 0x0, 0x0) r0 = syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000040)='./file0\x00', 0x40004, 0x3, &(0x7f0000000200)=[{&(0x7f0000010000)="2000000080000000060000006a0000000f000000000000000100000001000000004000000040000020000000e0f4655fe0f4655f0100ffff53ef010001000000dff4655f000000000000000001000000000000000b0000000001", 0x5a, 0x400}, {&(0x7f0000010400)="020000000300000004", 0x9, 0x800}, {&(0x7f0000000100)="ed4100000093b200dff4655fe0f4655fe0f4655f0000080000000400045539545cee", 0x22, 0x2100}], 0x0, &(0x7f0000000140)=ANY=[]) r1 = mmap$IORING_OFF_CQ_RING(&(0x7f0000ffe000/0x1000)=nil, 0x1000, 0x3000004, 0x8091, r0, 0x8000000) syz_io_uring_submit(r1, 0x0, &(0x7f0000000180)=@IORING_OP_REMOVE_BUFFERS={0x1f, 0x4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, {0x2}}, 0x80000001) openat(0xffffffffffffffff, &(0x7f00000002c0)='./file0\x00', 0x0, 0x179) r2 = fcntl$dupfd(0xffffffffffffffff, 0x0, 0xffffffffffffffff) inotify_init1(0x0) openat(0xffffffffffffff9c, &(0x7f0000000500)='./file1\x00', 0x268002, 0x0) write$tun(0xffffffffffffffff, &(0x7f0000000140)={@val={0x0, 0xfbfb}, @void, @x25={0x1, 0x0, 0x0, "8e53f663901b1ab98f1c5321f4c4a1c4891bcd303fbaa8d2880bb8a27f"}}, 0x24) sendmsg$NL80211_CMD_REQ_SET_REG(0xffffffffffffffff, &(0x7f00000003c0)={0x0, 0x0, &(0x7f0000000380)={&(0x7f0000000340)={0x40, 0x0, 0x8, 0x70bd26, 0x25dfdbfe, {}, [@NL80211_ATTR_DFS_REGION={0x5, 0x92, 0x9}, @NL80211_ATTR_WIPHY={0x8, 0x1, 0x66}, @NL80211_ATTR_REG_ALPHA2={0x7, 0x21, 'aa\x00'}, @NL80211_ATTR_REG_ALPHA2={0x7, 0x21, 'aa\x00'}, @NL80211_ATTR_SOCKET_OWNER={0x4}, @NL80211_ATTR_USER_REG_HINT_TYPE={0x8}]}, 0x40}}, 0x4002050) io_setup(0x5, 0x0) openat(0xffffffffffffff9c, &(0x7f0000000440)='./cgroup.cpu/cpuset.cpus\x00', 0x42, 0x0) io_submit(0x0, 0x2, &(0x7f0000000480)=[&(0x7f0000000400)={0x0, 0x0, 0x0, 0x7, 0x3ff, 0xffffffffffffffff, &(0x7f0000000300)="81736b1e0dd022d68b67adfbbe54e90926e9311947fb89f521d389de428eac173b1023", 0x0, 0x5}]) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) umount2(&(0x7f00000000c0)='./file0\x00', 0x0) sendmsg$nl_generic(0xffffffffffffffff, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000080)={&(0x7f00000006c0)=ANY=[@ANYBLOB="280000002000210c00000000000000000200"], 0x28}}, 0x40814) openat(r2, &(0x7f0000000140)='./file0\x00', 0x400840, 0x100) sendmsg$nl_generic(0xffffffffffffffff, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000540)=ANY=[@ANYRES32, @ANYBLOB="12b71503e6406319211fa17bde69d7fa4d08584415f481e8e5ac5ee9ab1834b722877622c97db43e6350cf8465149e88ffa046b217147f9dad1f6347f4f5eaa248377aa5cb82015bb6"], 0x40}}, 0x0) inotify_add_watch(0xffffffffffffffff, &(0x7f0000000280)='./file1\x00', 0x80000c00) socket$inet_tcp(0x2, 0x1, 0x0) 20:00:24 executing program 5: pwrite64(0xffffffffffffffff, &(0x7f0000000640)="2827ded11a9d85b9fab4813f06c901f461201024eb4eb68dad217742848c7122cc1e703c04232e5acbf81b970af3da4754ae5927914e6825a834c3b81298873332e992c185dee94f57fc0d778985c8cbef0d54cffd57fd85", 0xb2, 0x200000006) r0 = openat(0xffffffffffffff9c, 0x0, 0x0, 0x0) syz_emit_ethernet(0x15, &(0x7f00000002c0)={@multicast, @local, @val={@void, {0x8906}}, {@x25}}, 0x0) ioctl$FS_IOC_FSSETXATTR(r0, 0x40086602, 0x0) r1 = socket$netlink(0x10, 0x3, 0x0) readv(r1, 0x0, 0x0) sendmsg$DEVLINK_CMD_SB_POOL_GET(r0, 0x0, 0x0) sendmsg$DEVLINK_CMD_TRAP_GROUP_SET(0xffffffffffffffff, &(0x7f00000002c0)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x4000000}, 0xc, &(0x7f0000000280)={&(0x7f00000001c0)={0xbc, 0x0, 0x100, 0x70bd25, 0x25dfdbff, {}, [{@pci, {0xd}, {0x5, 0x83, 0x1}}, {@pci, {0xd}, {0x5, 0x83, 0x1}}, {@nsim={{0xe}, {0x11, 0x2, {'netdevsim', 0x0}}}, {0xd}, {0x5}}]}, 0xbc}, 0x1, 0x0, 0x0, 0x10}, 0xc885) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x96, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3f, 0x0, @perf_config_ext={0xfffffffffffffffe}, 0x58000, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r2 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000000), 0xffffffffffffffff) r3 = socket$nl_generic(0x10, 0x3, 0x10) ioctl$sock_SIOCGIFINDEX_80211(r3, 0x8933, &(0x7f0000000040)={'wlan1\x00', 0x0}) sendmsg$NL80211_CMD_SET_WIPHY_NETNS(r3, &(0x7f0000001740)={0x0, 0x0, &(0x7f0000000980)={&(0x7f0000000100)={0x28, r2, 0x1, 0x0, 0x0, {{}, {@void, @val={0x8, 0x3, r4}, @val={0xc}}}}, 0x28}}, 0x0) sendmsg$NL80211_CMD_SET_MPATH(0xffffffffffffffff, &(0x7f0000000600)={&(0x7f0000000500)={0x10, 0x0, 0x0, 0x40000000}, 0xc, &(0x7f00000005c0)={&(0x7f0000000540)={0x50, r2, 0x100, 0x70bd25, 0x25dfdbfb, {{}, {@void, @void}}, [@NL80211_ATTR_MAC={0xa}, @NL80211_ATTR_MAC={0xa, 0x6, @broadcast}, @NL80211_ATTR_MAC={0xa, 0x6, @broadcast}, @NL80211_ATTR_MAC={0xa, 0x6, @broadcast}, @NL80211_ATTR_MAC={0xa}]}, 0x50}, 0x1, 0x0, 0x0, 0x4}, 0x0) r5 = socket$inet6_udplite(0xa, 0x2, 0x88) setsockopt$inet6_group_source_req(r5, 0x29, 0x2e, &(0x7f0000000040)={0x0, {{0xa, 0x0, 0xffffffff, @mcast1, 0x2000000}}, {{0xa, 0x0, 0x0, @private1={0xfc, 0x1, '\x00', 0x1}, 0x2}}}, 0x108) ftruncate(r0, 0x0) setsockopt$inet6_MCAST_MSFILTER(r5, 0x29, 0x30, &(0x7f0000000300)={0x3, {{0xa, 0x0, 0x0, @mcast1}}, 0x0, 0x1, [{{0xa, 0x0, 0x0, @mcast1}}]}, 0x110) clone3(&(0x7f0000000140)={0x11060900, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) gettid() [ 3324.494535] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium [ 3324.554839] EXT4-fs (loop7): mounted filesystem without journal. Opts: ,errors=continue 20:00:41 executing program 2: r0 = socket$inet_icmp_raw(0x2, 0x3, 0x1) r1 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a) ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000140)={'syz_tun\x00', 0x0}) perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) sendmmsg$inet(r0, &(0x7f0000002040)=[{{&(0x7f0000000380)={0x2, 0x0, @multicast1}, 0x10, &(0x7f0000001600)=[{&(0x7f00000003c0)="db9c", 0xffe7}], 0x1, &(0x7f0000001640)=ANY=[@ANYBLOB="14000000000000000000000007000000c4048f01000000001c000000000000000000000008000000", @ANYRES32=r2], 0x38}}], 0x1, 0x0) (fail_nth: 42) 20:00:41 executing program 6: syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000140)='./file0\x00', 0x40000, 0x4, &(0x7f0000000200)=[{&(0x7f0000010000)="20000000000100000c000000d40000000f000000010000000000000000000000002000000020000020000000d7f4655fd7f4655f0100ffff53ef010001000000d7f4655f000000000000000001000000000000000b0000000002", 0x5a, 0x400}, {&(0x7f0000010400)="030000000400000005000000d4000f", 0xf, 0x800}, {&(0x7f0000000500)="ffffffffff070000000000000000000000000000000000000000000000000080ffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffff", 0x402, 0xc00}, {&(0x7f0000010e00)="ed41000000040000d7f4655fd7f4655fd7f4655f000000000000040002", 0x1d, 0x1600}], 0x0, &(0x7f00000003c0)=ANY=[]) chdir(&(0x7f0000000040)='./file0\x00') openat(0xffffffffffffff9c, &(0x7f0000000080)='./file1\x00', 0x105142, 0x0) r0 = openat(0xffffffffffffff9c, &(0x7f0000000200)='./file1\x00', 0x2, 0x0) write(r0, &(0x7f0000000240)="01", 0x1) r1 = openat(0xffffffffffffff9c, &(0x7f00000000c0)='./file2\x00', 0x105142, 0x0) r2 = openat(0xffffffffffffff9c, &(0x7f0000001340)='./file1\x00', 0x0, 0x0) copy_file_range(r2, 0x0, r1, &(0x7f0000000280)=0x6000000, 0xc3a, 0x0) openat$sr(0xffffffffffffff9c, 0x0, 0x0, 0x0) 20:00:41 executing program 1: getxattr(&(0x7f0000000040)='./file0\x00', 0x0, &(0x7f0000000340)=""/106, 0x6a) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x2, 0x0, 0x0, 0x0, 0x0, 0x1, 0xbe66f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f0000000080), 0x8}, 0x2030}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) syz_open_procfs(0x0, 0x0) r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_io_uring_setup(0x4, &(0x7f00000002c0)={0x0, 0x0, 0x4, 0x1}, &(0x7f0000ffb000/0x4000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200), &(0x7f0000000140)) io_uring_enter(r1, 0x3e77, 0x3f74, 0x3, &(0x7f0000000180)={[0x785a59ed]}, 0x8) syz_io_uring_submit(0x0, 0x0, &(0x7f0000000040)=@IORING_OP_READ=@pass_buffer={0x16, 0x4, 0x2000, @fd, 0x7, &(0x7f00000010c0)=""/223, 0xdf, 0x20, 0x1}, 0x800) syz_io_uring_submit(0x0, 0x0, &(0x7f00000005c0)=@IORING_OP_TIMEOUT_REMOVE={0xc, 0x0, 0x0, 0x0, 0x0, 0x23457, 0x0, 0x0, 0x1}, 0x62) syz_io_uring_setup(0x4d4f, &(0x7f00000003c0)={0x0, 0x0, 0x0, 0xfffffffe, 0xa7}, &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200), &(0x7f0000000240)) recvmmsg(r0, 0x0, 0x0, 0x16060, 0x0) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x1001, 0x0, 0x9}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r2 = socket$inet6_tcp(0xa, 0x1, 0x0) syz_io_uring_setup(0x1df2, &(0x7f0000000440)={0x0, 0x53de, 0x4, 0x2, 0x13}, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000ffd000/0x2000)=nil, &(0x7f0000000100), &(0x7f0000000280)) bind$inet6(r2, &(0x7f00000000c0)={0xa, 0x4e20, 0x0, @loopback}, 0x1c) connect$inet6(r2, &(0x7f0000000000)={0xa, 0x4e20, 0x0, @loopback}, 0x1c) sendmsg$inet6(r2, &(0x7f00000006c0)={0x0, 0x0, &(0x7f0000000540)=[{&(0x7f00000001c0)="cf", 0xfffffdef}], 0x1}, 0x10044001) recvmmsg(r2, &(0x7f0000000000), 0x5ac, 0x0, 0x0) fsetxattr$trusted_overlay_nlink(0xffffffffffffffff, &(0x7f00000004c0), &(0x7f0000000500)={'U+', 0x7}, 0x16, 0x4) r3 = creat(&(0x7f0000000040)='./file0\x00', 0x0) ioctl$EXT4_IOC_GROUP_ADD(r3, 0x40286608, &(0x7f0000000140)={0x401}) 20:00:41 executing program 7: r0 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x46e2, 0x0) ftruncate(0xffffffffffffffff, 0xbc5) r1 = openat$tun(0xffffffffffffff9c, &(0x7f00000000c0), 0x6980, 0x0) lseek(r1, 0x0, 0x0) r2 = openat$incfs(0xffffffffffffffff, &(0x7f0000000140)='.pending_reads\x00', 0x0, 0x0) ftruncate(r0, 0x1000003) ioctl$FS_IOC_FSSETXATTR(r0, 0x40086602, &(0x7f0000000000)={0x0, 0x0, 0xca}) r3 = openat(0xffffffffffffff9c, &(0x7f0000000080)='./file0\x00', 0x105142, 0x0) unlinkat(0xffffffffffffffff, 0x0, 0x0) r4 = openat$hpet(0xffffffffffffff9c, &(0x7f0000000100), 0x80000, 0x0) fcntl$setown(0xffffffffffffffff, 0x8, 0xffffffffffffffff) close(r4) close(0xffffffffffffffff) perf_event_open(&(0x7f0000000240)={0x6, 0x80, 0x1, 0x5, 0x0, 0x9, 0x0, 0xfffd, 0x2000, 0x8, 0x0, 0x1, 0x0, 0x1, 0x1, 0x1, 0x0, 0x0, 0x1, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x0, 0x1, 0x1, 0x0, 0x8, 0x4, @perf_bp={&(0x7f0000000180), 0x9}, 0x0, 0x7, 0x0, 0x9, 0x200, 0x3, 0xd, 0x0, 0x2, 0x0, 0x1}, 0x0, 0xc, 0xffffffffffffffff, 0x3) signalfd(0xffffffffffffffff, 0x0, 0x0) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0xa304, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, @perf_config_ext={0x5, 0x1}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xea4, 0x0, 0x0, 0x0, 0x6}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) ioctl$BTRFS_IOC_GET_SUPPORTED_FEATURES(r2, 0x80489439, 0x0) lseek(r3, 0x0, 0x2) r5 = openat(0xffffffffffffff9c, &(0x7f00000001c0)='./file0\x00', 0x0, 0x128) copy_file_range(r5, 0x0, r3, 0x0, 0x200f5ef, 0x0) 20:00:41 executing program 4: syz_80211_inject_frame(&(0x7f00000000c0)=@device_a={0x8, 0x2, 0x11, 0x0, 0x1a}, &(0x7f0000000440)=ANY=[], 0x2f) [ 3341.261967] FAULT_INJECTION: forcing a failure. [ 3341.261967] name failslab, interval 1, probability 0, space 0, times 0 [ 3341.264391] CPU: 1 PID: 27038 Comm: syz-executor.2 Not tainted 5.10.207 #1 [ 3341.265775] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 3341.267443] Call Trace: [ 3341.267991] dump_stack+0x107/0x167 [ 3341.268738] should_fail.cold+0x5/0xa [ 3341.269514] ? __alloc_skb+0x6d/0x5b0 [ 3341.270287] should_failslab+0x5/0x20 [ 3341.271051] kmem_cache_alloc_node+0x55/0x330 [ 3341.271982] __alloc_skb+0x6d/0x5b0 [ 3341.272725] __ip_append_data+0x2930/0x3310 20:00:41 executing program 3: r0 = socket$inet6_udp(0xa, 0x2, 0x0) connect$inet6(r0, &(0x7f0000000600)={0xa, 0x0, 0x0, @dev, 0x3}, 0x1c) connect$inet6(r0, &(0x7f0000000000)={0xa, 0x4e23, 0x0, @ipv4={'\x00', '\xff\xff', @multicast2}, 0x3f}, 0x1c) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8001, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r1 = openat(0xffffffffffffff9c, &(0x7f0000000080)='./file1\x00', 0x105142, 0x0) r2 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x2000, 0x0) copy_file_range(r2, 0x0, r1, 0x0, 0x10001, 0x0) dup2(r1, r2) dup2(r0, r2) sendmmsg$inet6(r0, &(0x7f0000004d00)=[{{0x0, 0x1100, &(0x7f00000004c0)=[{&(0x7f0000000080)='K', 0x1}], 0x1}}], 0x7ffff000, 0x0) r3 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a) close(r3) 20:00:41 executing program 0: perf_event_open(&(0x7f0000001d80)={0x0, 0x80, 0x46, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0xffff, 0x2}, 0x0, 0x0, 0x0, 0x0, 0x3}, 0x0, 0x0, 0xffffffffffffffff, 0x0) clone3(&(0x7f0000000200)={0x31081000, &(0x7f0000000100), 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) [ 3341.273614] ? raw_destroy+0x30/0x30 [ 3341.274483] ? ip_finish_output+0x330/0x330 [ 3341.275361] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 3341.276670] ? ipv4_mtu+0x1ed/0x2c0 [ 3341.277421] ? raw_destroy+0x30/0x30 [ 3341.278186] ip_append_data+0x114/0x1a0 [ 3341.279012] raw_sendmsg+0xaa6/0x29d0 [ 3341.279950] ? dst_output+0x170/0x170 [ 3341.280731] ? __lock_acquire+0x1657/0x5b00 [ 3341.281636] ? perf_trace_lock+0xac/0x490 [ 3341.282670] ? SOFTIRQ_verbose+0x10/0x10 [ 3341.283681] ? create_object.isra.0+0x3ad/0xa20 20:00:41 executing program 5: ioctl$TIOCSTI(0xffffffffffffffff, 0x5412, &(0x7f0000000340)=0x85) r0 = perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x1, 0x0, 0x0, 0x0, 0x4307, 0xc0305, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f00000005c0)}, 0x0, 0x0, 0x0, 0x5}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) clock_gettime(0x7, &(0x7f00000000c0)={0x0, 0x0}) utimes(&(0x7f0000000040)='./file0\x00', &(0x7f0000000240)={{0x77359400}, {r1, r2/1000+60000}}) r3 = syz_open_dev$char_usb(0xc, 0xb4, 0xd9) ioctl$BTRFS_IOC_SNAP_DESTROY(r3, 0x5000940f, &(0x7f0000002280)={{r0}, "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"}) r4 = socket$inet6_udplite(0xa, 0x2, 0x88) clock_gettime(0x2, &(0x7f0000000000)) r5 = signalfd4(r4, 0x0, 0x0, 0x0) r6 = socket$inet_udplite(0x2, 0x2, 0x88) setsockopt$inet_udp_int(r6, 0x11, 0xb, &(0x7f0000000140)=0x1000, 0x4) ioctl$TCSETSW2(r5, 0x402c542c, &(0x7f0000000080)={0x0, 0x4, 0x1f, 0x8, 0xc0, "0c44bac4e580118e444ab22f45cfe4c7e95266", 0x0, 0xfffffff8}) r7 = fork() ioctl$TIOCGPGRP(0xffffffffffffffff, 0x540f, &(0x7f00000001c0)) ptrace(0x10, r7) ptrace$getregset(0x4204, r7, 0x202, &(0x7f0000000140)={&(0x7f0000001280)=""/4096, 0x1000}) io_uring_register$IORING_REGISTER_PERSONALITY(r5, 0x9, 0x0, 0x0) [ 3341.284685] ? __lockdep_reset_lock+0x180/0x180 [ 3341.285720] ? selinux_socket_post_create+0x7f0/0x7f0 [ 3341.286780] ? find_held_lock+0x2c/0x110 [ 3341.287632] ? trace_hardirqs_on+0x5b/0x180 [ 3341.288526] ? dst_output+0x170/0x170 [ 3341.289299] inet_sendmsg+0x11d/0x140 [ 3341.290090] ? inet_send_prepare+0x540/0x540 [ 3341.290987] __sock_sendmsg+0x13c/0x190 [ 3341.291817] ____sys_sendmsg+0x334/0x870 [ 3341.292652] ? sock_write_iter+0x3d0/0x3d0 [ 3341.293523] ? do_recvmmsg+0x6d0/0x6d0 [ 3341.294323] ? perf_trace_lock+0xac/0x490 [ 3341.295184] ? __lockdep_reset_lock+0x180/0x180 [ 3341.296141] ? perf_trace_lock+0xac/0x490 [ 3341.296996] ___sys_sendmsg+0xf3/0x170 [ 3341.297796] ? sendmsg_copy_msghdr+0x160/0x160 [ 3341.298738] ? lock_downgrade+0x6d0/0x6d0 [ 3341.299617] ? lock_downgrade+0x6d0/0x6d0 [ 3341.300474] ? __fget_files+0x296/0x4c0 [ 3341.301302] ? __fget_light+0xea/0x290 [ 3341.302111] __sys_sendmmsg+0x195/0x470 [ 3341.302938] ? __ia32_sys_sendmsg+0xb0/0xb0 [ 3341.303831] ? lock_downgrade+0x6d0/0x6d0 [ 3341.304708] ? __mutex_unlock_slowpath+0xe1/0x600 [ 3341.305701] ? wait_for_completion_io+0x270/0x270 [ 3341.306685] ? rcu_read_lock_any_held+0x75/0xa0 [ 3341.307650] ? vfs_write+0x354/0xa70 [ 3341.308418] ? fput_many+0x2f/0x1a0 [ 3341.309165] ? ksys_write+0x1a9/0x260 [ 3341.309943] ? __ia32_sys_read+0xb0/0xb0 [ 3341.310781] __x64_sys_sendmmsg+0x99/0x100 [ 3341.311658] do_syscall_64+0x33/0x40 [ 3341.312421] entry_SYSCALL_64_after_hwframe+0x62/0xc7 [ 3341.313467] RIP: 0033:0x7fac065c2b19 [ 3341.314225] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 3341.317987] RSP: 002b:00007fac03b38188 EFLAGS: 00000246 ORIG_RAX: 0000000000000133 [ 3341.319557] RAX: ffffffffffffffda RBX: 00007fac066d5f60 RCX: 00007fac065c2b19 [ 3341.321010] RDX: 0000000000000001 RSI: 0000000020002040 RDI: 0000000000000003 [ 3341.322466] RBP: 00007fac03b381d0 R08: 0000000000000000 R09: 0000000000000000 [ 3341.323934] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 3341.325399] R13: 00007ffe4d4b793f R14: 00007fac03b38300 R15: 0000000000022000 [ 3341.344459] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium [ 3341.439368] EXT4-fs (loop6): mounted filesystem without journal. Opts: ,errors=continue [ 3341.544102] EXT4-fs warning (device sda): verify_group_input:146: Cannot add at group 1025 (only 16 groups) [ 3341.672272] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium 20:00:57 executing program 1: r0 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x105142, 0x0) r1 = creat(&(0x7f0000000000)='./file0\x00', 0x0) dup2(r1, r0) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffe, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10000000}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r2 = openat(0xffffffffffffffff, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0) r3 = mmap$IORING_OFF_SQES(&(0x7f0000ff9000/0x4000)=nil, 0x4000, 0x3000002, 0x50, r2, 0x10000000) syz_io_uring_submit(0x0, r3, 0x0, 0x1) sendto$unix(r1, &(0x7f0000000040)="ebeec40af293d9e48ecf8fdc143f48dba9c71c95f96d23d87f1f8a27fffb87babb496a870c9cc6ccf925abf25f8314c52f3bfbd916996ac53c828c1f991ad2ddea4eebded117a35960c6519f462c78d31749642e039bb18271822b1d141b003b865539b9ccdc74cd6f1e48b0cbbbc3795713065cd0263a4bfd490fdec76efcde0541d8970c9a7db83efc38f7a1da258ce7789d9865ac6059fdf6c87a35eb4006482bb8cc4b2a5f9caeca2eabb3cc", 0xae, 0x20000044, 0x0, 0x0) sendfile(r0, r2, 0x0, 0x100000001) 20:00:57 executing program 0: perf_event_open(&(0x7f0000001d80)={0x0, 0x80, 0x46, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0xffff, 0x2}, 0x0, 0x0, 0x0, 0x0, 0x3}, 0x0, 0x0, 0xffffffffffffffff, 0x0) clone3(&(0x7f0000000200)={0x31081000, &(0x7f0000000100), 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) [ 3357.607065] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium 20:00:57 executing program 6: syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000140)='./file0\x00', 0x40000, 0x4, &(0x7f0000000200)=[{&(0x7f0000010000)="20000000000100000c000000d40000000f000000010000000000000000000000002000000020000020000000d7f4655fd7f4655f0100ffff53ef010001000000d7f4655f000000000000000001000000000000000b0000000002", 0x5a, 0x400}, {&(0x7f0000010400)="030000000400000005000000d4000f", 0xf, 0x800}, {&(0x7f0000000500)="ffffffffff070000000000000000000000000000000000000000000000000080ffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffff", 0x402, 0xc00}, {&(0x7f0000010e00)="ed41000000040000d7f4655fd7f4655fd7f4655f000000000000040002", 0x1d, 0x1600}], 0x0, &(0x7f00000003c0)=ANY=[]) chdir(&(0x7f0000000040)='./file0\x00') openat(0xffffffffffffff9c, &(0x7f0000000080)='./file1\x00', 0x105142, 0x0) r0 = openat(0xffffffffffffff9c, &(0x7f0000000200)='./file1\x00', 0x2, 0x0) write(r0, &(0x7f0000000240)="01", 0x1) r1 = openat(0xffffffffffffff9c, &(0x7f00000000c0)='./file2\x00', 0x105142, 0x0) r2 = openat(0xffffffffffffff9c, &(0x7f0000001340)='./file1\x00', 0x0, 0x0) copy_file_range(r2, 0x0, r1, &(0x7f0000000280)=0x7000000, 0xc3a, 0x0) openat$sr(0xffffffffffffff9c, 0x0, 0x0, 0x0) 20:00:57 executing program 5: perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x1, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, @perf_config_ext={0x1}, 0x0, 0x0, 0xffffffff}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r0 = openat$vcsa(0xffffffffffffff9c, &(0x7f0000000040), 0x8000, 0x0) getsockopt$sock_cred(r0, 0x1, 0x11, &(0x7f0000000100), &(0x7f0000000500)=0xc) r1 = perf_event_open(&(0x7f0000001d80)={0x6, 0x80, 0x0, 0x0, 0x0, 0x0, 0x4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0, 0xffffffff81000000}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r2 = syz_open_procfs(0xffffffffffffffff, &(0x7f0000000140)='net/packet\x00') readv(0xffffffffffffffff, &(0x7f0000000400)=[{0x0}, {&(0x7f0000000380)=""/75, 0x4b}], 0x2) openat2(r2, &(0x7f0000000240)='./file0\x00', &(0x7f0000000280)={0x0, 0x0, 0x9}, 0x18) connect$inet6(0xffffffffffffffff, &(0x7f00000002c0)={0xa, 0x4e21, 0xfffffffd, @initdev={0xfe, 0x88, '\x00', 0x0, 0x0}, 0x2}, 0x1c) ioctl$sock_SIOCGIFINDEX(r2, 0x8933, &(0x7f0000000200)={'macsec0\x00'}) dup3(r2, r1, 0x0) preadv(r1, &(0x7f00000013c0)=[{&(0x7f00000011c0)=""/119, 0x77}], 0x1, 0x1, 0x0) fcntl$dupfd(0xffffffffffffffff, 0x0, r1) ptrace$getenv(0x4201, 0x0, 0xba, &(0x7f0000000200)) perf_event_open(0x0, 0x0, 0x4, 0xffffffffffffffff, 0xb) dup3(0xffffffffffffffff, 0xffffffffffffffff, 0x0) clock_gettime(0x0, &(0x7f0000000000)={0x0, 0x0}) bind$inet6(r2, &(0x7f0000000080)={0xa, 0x4e21, 0x2, @mcast2, 0xffff}, 0x1c) timerfd_settime(0xffffffffffffffff, 0x0, &(0x7f0000000180)={{r3, r4+60000000}, {0x77359400}}, &(0x7f00000001c0)) 20:00:57 executing program 3: chdir(0x0) r0 = openat(0xffffffffffffff9c, &(0x7f00000002c0)='./file1\x00', 0x105142, 0x0) r1 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0) futimesat(r1, &(0x7f00000000c0)='./file1\x00', &(0x7f0000000100)={{0x0, 0x2710}}) sendfile(r0, r1, 0x0, 0x100000001) r2 = openat(0xffffffffffffff9c, &(0x7f0000000180)='./file1\x00', 0x80, 0x98) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x10044, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f0000000040)}, 0xca0cc, 0x7}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r3 = socket$inet6_tcp(0xa, 0x1, 0x0) r4 = syz_io_uring_setup(0x4f3, &(0x7f0000000300)={0x0, 0x9d80, 0x10, 0x3, 0x3af}, &(0x7f0000bff000/0x400000)=nil, &(0x7f0000cb6000/0x4000)=nil, &(0x7f0000000000), &(0x7f0000000180)) dup3(0xffffffffffffffff, r4, 0x0) ioctl$AUTOFS_DEV_IOCTL_ASKUMOUNT(r2, 0xc018937d, &(0x7f0000000140)={{0x1, 0x1, 0x18, r4, {0x1}}, './file1\x00'}) getsockopt$inet6_int(r3, 0x29, 0x4, 0x0, &(0x7f0000000080)) ioctl$AUTOFS_IOC_PROTOSUBVER(r3, 0x80049367, &(0x7f0000000080)) sendfile(r0, r2, 0x0, 0x80000001) 20:00:57 executing program 4: syz_80211_inject_frame(&(0x7f00000000c0)=@device_a={0x8, 0x2, 0x11, 0x0, 0x1b}, &(0x7f0000000440)=ANY=[], 0x2f) 20:00:57 executing program 2: r0 = socket$inet_icmp_raw(0x2, 0x3, 0x1) r1 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a) ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000140)={'syz_tun\x00', 0x0}) perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) sendmmsg$inet(r0, &(0x7f0000002040)=[{{&(0x7f0000000380)={0x2, 0x0, @multicast1}, 0x10, &(0x7f0000001600)=[{&(0x7f00000003c0)="db9c", 0xffe7}], 0x1, &(0x7f0000001640)=ANY=[@ANYBLOB="14000000000000000000000007000000c4048f01000000001c000000000000000000000008000000", @ANYRES32=r2], 0x38}}], 0x1, 0x0) (fail_nth: 43) [ 3357.620879] FAULT_INJECTION: forcing a failure. [ 3357.620879] name failslab, interval 1, probability 0, space 0, times 0 [ 3357.623440] CPU: 0 PID: 27186 Comm: syz-executor.2 Not tainted 5.10.207 #1 [ 3357.624975] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 3357.626819] Call Trace: [ 3357.627406] dump_stack+0x107/0x167 [ 3357.628215] should_fail.cold+0x5/0xa [ 3357.629063] ? __alloc_skb+0x6d/0x5b0 [ 3357.629900] should_failslab+0x5/0x20 [ 3357.630737] kmem_cache_alloc_node+0x55/0x330 [ 3357.631767] __alloc_skb+0x6d/0x5b0 [ 3357.632588] __ip_append_data+0x2930/0x3310 [ 3357.633578] ? raw_destroy+0x30/0x30 [ 3357.634431] ? ip_finish_output+0x330/0x330 [ 3357.635361] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 3357.636462] ? ipv4_mtu+0x1ed/0x2c0 [ 3357.637257] ? raw_destroy+0x30/0x30 [ 3357.638073] ip_append_data+0x114/0x1a0 [ 3357.638954] raw_sendmsg+0xaa6/0x29d0 [ 3357.639837] ? dst_output+0x170/0x170 [ 3357.640654] ? perf_trace_run_bpf_submit+0xf5/0x190 [ 3357.641777] ? perf_trace_lock+0x2bd/0x490 [ 3357.642699] ? SOFTIRQ_verbose+0x10/0x10 [ 3357.643592] ? __lockdep_reset_lock+0x180/0x180 [ 3357.644642] ? selinux_socket_post_create+0x7f0/0x7f0 [ 3357.645774] ? find_held_lock+0x2c/0x110 [ 3357.646687] ? trace_hardirqs_on+0x5b/0x180 [ 3357.647640] ? dst_output+0x170/0x170 [ 3357.648482] inet_sendmsg+0x11d/0x140 [ 3357.649314] ? inet_send_prepare+0x540/0x540 [ 3357.650275] __sock_sendmsg+0x13c/0x190 [ 3357.651153] ____sys_sendmsg+0x334/0x870 [ 3357.652063] ? sock_write_iter+0x3d0/0x3d0 [ 3357.652992] ? do_recvmmsg+0x6d0/0x6d0 [ 3357.653836] ? perf_trace_lock+0x2bd/0x490 [ 3357.654784] ? __lockdep_reset_lock+0x180/0x180 [ 3357.655827] ___sys_sendmsg+0xf3/0x170 [ 3357.656689] ? sendmsg_copy_msghdr+0x160/0x160 [ 3357.657708] ? lock_downgrade+0x6d0/0x6d0 [ 3357.658628] ? perf_trace_run_bpf_submit+0xf5/0x190 [ 3357.659761] ? __fget_files+0x296/0x4c0 [ 3357.660651] ? __fget_light+0xea/0x290 [ 3357.661520] __sys_sendmmsg+0x195/0x470 [ 3357.662388] ? __ia32_sys_sendmsg+0xb0/0xb0 [ 3357.663345] ? lock_downgrade+0x6d0/0x6d0 [ 3357.664280] ? __mutex_unlock_slowpath+0xe1/0x600 [ 3357.665335] ? wait_for_completion_io+0x270/0x270 [ 3357.666369] ? rcu_read_lock_any_held+0x75/0xa0 [ 3357.667374] ? vfs_write+0x354/0xa70 [ 3357.668197] ? fput_many+0x2f/0x1a0 [ 3357.668983] ? ksys_write+0x1a9/0x260 [ 3357.669793] ? __ia32_sys_read+0xb0/0xb0 [ 3357.670681] __x64_sys_sendmmsg+0x99/0x100 [ 3357.671626] do_syscall_64+0x33/0x40 [ 3357.672441] entry_SYSCALL_64_after_hwframe+0x62/0xc7 [ 3357.673563] RIP: 0033:0x7fac065c2b19 [ 3357.674366] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 3357.678319] RSP: 002b:00007fac03b38188 EFLAGS: 00000246 ORIG_RAX: 0000000000000133 [ 3357.679972] RAX: ffffffffffffffda RBX: 00007fac066d5f60 RCX: 00007fac065c2b19 [ 3357.681490] RDX: 0000000000000001 RSI: 0000000020002040 RDI: 0000000000000003 [ 3357.683023] RBP: 00007fac03b381d0 R08: 0000000000000000 R09: 0000000000000000 [ 3357.684551] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 3357.686091] R13: 00007ffe4d4b793f R14: 00007fac03b38300 R15: 0000000000022000 20:00:57 executing program 7: r0 = perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) syz_mount_image$vfat(0x0, &(0x7f0000000240)='./file1\x00', 0x0, 0x0, 0x0, 0x0, 0x0) lsetxattr$security_evm(&(0x7f0000000000)='./file1\x00', &(0x7f0000000180), &(0x7f0000000700)=ANY=[@ANYBLOB="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"], 0xa, 0x3) fsconfig$FSCONFIG_CMD_CREATE(0xffffffffffffffff, 0x6, 0x0, 0x0, 0x0) r1 = openat$procfs(0xffffffffffffff9c, &(0x7f00000004c0)='/proc/timer_list\x00', 0x0, 0x0) fsync(r1) r2 = fsmount(r1, 0x1, 0x70) clone3(&(0x7f0000000280)={0x1040100, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) fsconfig$FSCONFIG_CMD_RECONFIGURE(r2, 0x7, 0x0, 0x0, 0x0) mount$9p_fd(0x0, &(0x7f00000001c0)='./file0/file0\x00', &(0x7f00000000c0), 0x0, &(0x7f0000000300)=ANY=[@ANYRES64=r0, @ANYRESHEX, @ANYRES32, @ANYRESHEX, @ANYBLOB="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"]) fspick(0xffffffffffffffff, &(0x7f0000000080)='./file1\x00', 0x1) r3 = dup3(0xffffffffffffffff, 0xffffffffffffffff, 0x0) linkat(r3, &(0x7f0000000100)='./file0\x00', 0xffffffffffffffff, &(0x7f0000000140)='./file0/file0\x00', 0x1000) eventfd(0x2) dup2(0xffffffffffffffff, 0xffffffffffffffff) r4 = socket$inet6_udplite(0xa, 0x2, 0x88) pidfd_getfd(r1, r4, 0x0) r5 = accept$unix(0xffffffffffffffff, 0x0, &(0x7f0000000480)) tee(0xffffffffffffffff, r5, 0x5, 0x0) ioctl$FITRIM(r5, 0xc0185879, &(0x7f0000000200)={0x9, 0x0, 0x5}) [ 3357.763557] EXT4-fs (loop6): mounted filesystem without journal. Opts: ,errors=continue 20:00:57 executing program 0: perf_event_open(&(0x7f0000001d80)={0x2, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0xffff, 0x2}, 0x0, 0x0, 0x0, 0x0, 0x3}, 0x0, 0x0, 0xffffffffffffffff, 0x0) clone3(&(0x7f0000000200)={0x31081000, &(0x7f0000000100), 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) 20:00:57 executing program 7: r0 = socket$inet6_udp(0xa, 0x2, 0x0) sendmmsg$inet6(r0, &(0x7f0000001c80)=[{{&(0x7f0000000000)={0xa, 0x4e24, 0x2, @mcast1}, 0x1c, 0x0}}, {{&(0x7f0000000280)={0xa, 0x4e20, 0x0, @dev={0xfe, 0x80, '\x00', 0x28}}, 0x1c, &(0x7f0000000480)=[{&(0x7f00000002c0)}, {&(0x7f0000000640)="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", 0x1000}], 0x2, &(0x7f0000000040)=[@rthdr_2292={{0x28, 0x29, 0x39, {0x6c, 0x2, 0x2, 0x8, 0x0, [@mcast2]}}}], 0x28}}], 0x2, 0x0) 20:00:57 executing program 2: r0 = socket$inet_icmp_raw(0x2, 0x3, 0x1) r1 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a) ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000140)={'syz_tun\x00', 0x0}) perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) sendmmsg$inet(r0, &(0x7f0000002040)=[{{&(0x7f0000000380)={0x2, 0x0, @multicast1}, 0x10, &(0x7f0000001600)=[{&(0x7f00000003c0)="db9c", 0xffe7}], 0x1, &(0x7f0000001640)=ANY=[@ANYBLOB="14000000000000000000000007000000c4048f01000000001c000000000000000000000008000000", @ANYRES32=r2], 0x38}}], 0x1, 0x0) (fail_nth: 44) 20:00:57 executing program 6: syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000140)='./file0\x00', 0x40000, 0x4, &(0x7f0000000200)=[{&(0x7f0000010000)="20000000000100000c000000d40000000f000000010000000000000000000000002000000020000020000000d7f4655fd7f4655f0100ffff53ef010001000000d7f4655f000000000000000001000000000000000b0000000002", 0x5a, 0x400}, {&(0x7f0000010400)="030000000400000005000000d4000f", 0xf, 0x800}, {&(0x7f0000000500)="ffffffffff070000000000000000000000000000000000000000000000000080ffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffff", 0x402, 0xc00}, {&(0x7f0000010e00)="ed41000000040000d7f4655fd7f4655fd7f4655f000000000000040002", 0x1d, 0x1600}], 0x0, &(0x7f00000003c0)=ANY=[]) chdir(&(0x7f0000000040)='./file0\x00') openat(0xffffffffffffff9c, &(0x7f0000000080)='./file1\x00', 0x105142, 0x0) r0 = openat(0xffffffffffffff9c, &(0x7f0000000200)='./file1\x00', 0x2, 0x0) write(r0, &(0x7f0000000240)="01", 0x1) r1 = openat(0xffffffffffffff9c, &(0x7f00000000c0)='./file2\x00', 0x105142, 0x0) r2 = openat(0xffffffffffffff9c, &(0x7f0000001340)='./file1\x00', 0x0, 0x0) copy_file_range(r2, 0x0, r1, &(0x7f0000000280)=0x8800000, 0xc3a, 0x0) openat$sr(0xffffffffffffff9c, 0x0, 0x0, 0x0) [ 3357.990097] FAULT_INJECTION: forcing a failure. [ 3357.990097] name failslab, interval 1, probability 0, space 0, times 0 [ 3357.992211] CPU: 0 PID: 27307 Comm: syz-executor.2 Not tainted 5.10.207 #1 [ 3357.993459] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 3357.994940] Call Trace: [ 3357.995415] dump_stack+0x107/0x167 [ 3357.996086] should_fail.cold+0x5/0xa [ 3357.996790] should_failslab+0x5/0x20 [ 3357.997483] __kmalloc_node_track_caller+0x74/0x3b0 [ 3357.998383] ? __ip_append_data+0x2930/0x3310 [ 3357.999211] __alloc_skb+0xb1/0x5b0 [ 3357.999898] __ip_append_data+0x2930/0x3310 [ 3358.000696] ? raw_destroy+0x30/0x30 [ 3358.001384] ? ip_finish_output+0x330/0x330 [ 3358.002161] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 3358.003096] ? ipv4_mtu+0x1ed/0x2c0 [ 3358.003777] ? raw_destroy+0x30/0x30 [ 3358.004450] ip_append_data+0x114/0x1a0 [ 3358.005176] raw_sendmsg+0xaa6/0x29d0 [ 3358.005909] ? dst_output+0x170/0x170 [ 3358.006594] ? perf_trace_run_bpf_submit+0xf5/0x190 [ 3358.007509] ? perf_trace_lock+0x2bd/0x490 [ 3358.008269] ? SOFTIRQ_verbose+0x10/0x10 [ 3358.009031] ? __lockdep_reset_lock+0x180/0x180 [ 3358.009880] ? selinux_socket_post_create+0x7f0/0x7f0 [ 3358.010798] ? find_held_lock+0x2c/0x110 [ 3358.011564] ? trace_hardirqs_on+0x5b/0x180 [ 3358.012366] ? dst_output+0x170/0x170 [ 3358.013056] inet_sendmsg+0x11d/0x140 [ 3358.013759] ? inet_send_prepare+0x540/0x540 [ 3358.014548] __sock_sendmsg+0x13c/0x190 [ 3358.015280] ____sys_sendmsg+0x334/0x870 [ 3358.016035] ? sock_write_iter+0x3d0/0x3d0 [ 3358.016806] ? do_recvmmsg+0x6d0/0x6d0 [ 3358.017520] ? perf_trace_lock+0x2bd/0x490 [ 3358.018292] ? __lockdep_reset_lock+0x180/0x180 [ 3358.019151] ___sys_sendmsg+0xf3/0x170 [ 3358.019848] ? sendmsg_copy_msghdr+0x160/0x160 [ 3358.020685] ? lock_downgrade+0x6d0/0x6d0 [ 3358.021431] ? perf_trace_run_bpf_submit+0xf5/0x190 [ 3358.022340] ? __fget_files+0x296/0x4c0 [ 3358.023075] ? __fget_light+0xea/0x290 [ 3358.023820] __sys_sendmmsg+0x195/0x470 [ 3358.024560] ? __ia32_sys_sendmsg+0xb0/0xb0 [ 3358.025328] ? lock_downgrade+0x6d0/0x6d0 [ 3358.026107] ? __mutex_unlock_slowpath+0xe1/0x600 [ 3358.026974] ? wait_for_completion_io+0x270/0x270 [ 3358.027851] ? rcu_read_lock_any_held+0x75/0xa0 [ 3358.028685] ? vfs_write+0x354/0xa70 [ 3358.029355] ? fput_many+0x2f/0x1a0 [ 3358.030022] ? ksys_write+0x1a9/0x260 [ 3358.030700] ? __ia32_sys_read+0xb0/0xb0 [ 3358.031453] __x64_sys_sendmmsg+0x99/0x100 [ 3358.032232] do_syscall_64+0x33/0x40 [ 3358.032903] entry_SYSCALL_64_after_hwframe+0x62/0xc7 [ 3358.033805] RIP: 0033:0x7fac065c2b19 [ 3358.034469] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 3358.037761] RSP: 002b:00007fac03b38188 EFLAGS: 00000246 ORIG_RAX: 0000000000000133 [ 3358.039104] RAX: ffffffffffffffda RBX: 00007fac066d5f60 RCX: 00007fac065c2b19 [ 3358.040325] RDX: 0000000000000001 RSI: 0000000020002040 RDI: 0000000000000003 [ 3358.041544] RBP: 00007fac03b381d0 R08: 0000000000000000 R09: 0000000000000000 [ 3358.042765] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 3358.043995] R13: 00007ffe4d4b793f R14: 00007fac03b38300 R15: 0000000000022000 [ 3358.049949] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium 20:00:58 executing program 0: perf_event_open(&(0x7f0000001d80)={0x2, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0xffff, 0x2}, 0x0, 0x0, 0x0, 0x0, 0x3}, 0x0, 0x0, 0xffffffffffffffff, 0x0) clone3(&(0x7f0000000200)={0x31081000, &(0x7f0000000100), 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) 20:00:58 executing program 7: r0 = dup3(0xffffffffffffffff, 0xffffffffffffffff, 0x0) linkat(r0, &(0x7f0000000100)='./file0\x00', 0xffffffffffffffff, &(0x7f0000000140)='./file0/file0\x00', 0x1000) openat(r0, &(0x7f0000000100)='./file0/file0\x00', 0x208901, 0x40) r1 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1) bind$bt_hci(r1, &(0x7f0000000000)={0x1f, 0x2}, 0x6) ioctl$sock_bt_hci(r1, 0x800448d7, &(0x7f0000000880)) openat$hpet(0xffffffffffffff9c, &(0x7f00000000c0), 0x60640, 0x0) r2 = perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) write$binfmt_elf32(r2, &(0x7f0000001e00)={{0x7f, 0x45, 0x4c, 0x46, 0xd1, 0xf2, 0x1, 0x4, 0x37c5, 0x3, 0x3, 0xc6, 0x5d, 0x38, 0x326, 0x5d, 0xfffc, 0x20, 0x2, 0x800, 0x7, 0x7fff}, [{0x6474e554, 0x4, 0x180, 0x1, 0x7, 0x401, 0x7ff, 0x5ba}, {0x4, 0x0, 0x3ff, 0x9, 0x3, 0x4, 0x0, 0x7ff}], "26f187e682d6ce10e88d558abfbb2bf6cc25ce8b6f2c32", ['\x00', '\x00', '\x00', '\x00', '\x00']}, 0x58f) ftruncate(r2, 0xfffffffffffffff8) r3 = open_tree(0xffffffffffffffff, &(0x7f0000000040)='./file0\x00', 0x1001) setsockopt$bt_hci_HCI_FILTER(r3, 0x0, 0x2, &(0x7f0000000080)={0x94, [0x6, 0x7fffffff], 0x7ff}, 0x10) 20:00:58 executing program 4: syz_80211_inject_frame(&(0x7f00000000c0)=@device_a={0x8, 0x2, 0x11, 0x0, 0x1c}, &(0x7f0000000440)=ANY=[], 0x2f) [ 3358.241643] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium [ 3358.559802] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium 20:01:15 executing program 5: r0 = syz_io_uring_setup(0x4f3, &(0x7f0000000300)={0x0, 0x9d80, 0x10, 0x3, 0x3af}, &(0x7f0000bff000/0x400000)=nil, &(0x7f0000cb6000/0x4000)=nil, &(0x7f0000000000), &(0x7f0000000180)=0x0) dup3(0xffffffffffffffff, r0, 0x0) ioctl$AUTOFS_IOC_PROTOSUBVER(r0, 0x80049367, &(0x7f00000000c0)) r2 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1) ioctl$sock_bt_hci(r2, 0x400448dd, &(0x7f0000000000)='\"') r3 = socket$inet6_tcp(0xa, 0x1, 0x0) getsockopt$inet6_int(r3, 0x29, 0x4, 0x0, &(0x7f0000000080)) syz_io_uring_submit(0x0, 0x0, &(0x7f0000000240)=@IORING_OP_READ=@pass_buffer={0x16, 0x0, 0x0, @fd_index=0x4, 0x0, &(0x7f0000000140)=""/204, 0xcc}, 0x0) r4 = syz_io_uring_setup(0x21, &(0x7f0000000080)={0x0, 0x45ae, 0x0, 0x1, 0x3b2, 0x0, 0x0}, &(0x7f00000a0000)=nil, &(0x7f0000ffe000/0x1000)=nil, &(0x7f0000000100)=0x0, &(0x7f0000000340)=0x0) r7 = socket$inet6_tcp(0xa, 0x1, 0x0) syz_io_uring_submit(r5, r6, &(0x7f00000001c0)=@IORING_OP_CONNECT={0x10, 0x2, 0x0, r7, 0x80, &(0x7f0000000280)=@in6={0xa, 0xfffe, 0x0, @ipv4={'\x00', '\xff\xff', @dev={0xac, 0x14, 0x14, 0x20}}}}, 0x0) r8 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x2000008, 0x10, r4, 0x0) syz_io_uring_submit(r8, r6, &(0x7f0000000040)=@IORING_OP_POLL_ADD={0x6, 0x5, 0x0, @fd=r7, 0x0, 0x0, 0x0, {0xa084}}, 0x20) r9 = mmap$IORING_OFF_SQES(&(0x7f0000ffd000/0x3000)=nil, 0x3000, 0x1000001, 0x40f0050, r4, 0x10000000) r10 = syz_open_dev$tty1(0xc, 0x4, 0x3) r11 = io_uring_register$IORING_REGISTER_PERSONALITY(0xffffffffffffffff, 0x9, 0x0, 0x0) syz_io_uring_submit(0x0, 0x0, &(0x7f0000000440)=@IORING_OP_FSYNC={0x3, 0x0, 0x0, @fd_index, 0x0, 0x0, 0x0, 0x0, 0x1, {0x0, r11}}, 0x0) syz_io_uring_submit(r8, r9, &(0x7f0000000180)=@IORING_OP_WRITE_FIXED={0x5, 0x2, 0x0, @fd=r10, 0xff, 0x9, 0xfe, 0x1d, 0x1, {0x3, r11}}, 0xcc9e) syz_io_uring_submit(0x0, r1, &(0x7f0000000100)=@IORING_OP_READ=@use_registered_buffer={0x16, 0x0, 0x0, @fd_index=0x3, 0x42da, 0x0, 0x0, 0x4, 0x0, {0x1, r11}}, 0x2136) ioctl$EXT4_IOC_MOVE_EXT(r2, 0xc028660f, &(0x7f0000000040)={0x0, r3, 0xffffffffffffff64, 0x20, 0x8, 0x1}) 20:01:15 executing program 6: syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000140)='./file0\x00', 0x40000, 0x4, &(0x7f0000000200)=[{&(0x7f0000010000)="20000000000100000c000000d40000000f000000010000000000000000000000002000000020000020000000d7f4655fd7f4655f0100ffff53ef010001000000d7f4655f000000000000000001000000000000000b0000000002", 0x5a, 0x400}, {&(0x7f0000010400)="030000000400000005000000d4000f", 0xf, 0x800}, {&(0x7f0000000500)="ffffffffff070000000000000000000000000000000000000000000000000080ffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffff", 0x402, 0xc00}, {&(0x7f0000010e00)="ed41000000040000d7f4655fd7f4655fd7f4655f000000000000040002", 0x1d, 0x1600}], 0x0, &(0x7f00000003c0)=ANY=[]) chdir(&(0x7f0000000040)='./file0\x00') openat(0xffffffffffffff9c, &(0x7f0000000080)='./file1\x00', 0x105142, 0x0) r0 = openat(0xffffffffffffff9c, &(0x7f0000000200)='./file1\x00', 0x2, 0x0) write(r0, &(0x7f0000000240)="01", 0x1) r1 = openat(0xffffffffffffff9c, &(0x7f00000000c0)='./file2\x00', 0x105142, 0x0) r2 = openat(0xffffffffffffff9c, &(0x7f0000001340)='./file1\x00', 0x0, 0x0) copy_file_range(r2, 0x0, r1, &(0x7f0000000280)=0x2e000000, 0xc3a, 0x0) openat$sr(0xffffffffffffff9c, 0x0, 0x0, 0x0) 20:01:15 executing program 4: syz_80211_inject_frame(&(0x7f00000000c0)=@device_a={0x8, 0x2, 0x11, 0x0, 0x1d}, &(0x7f0000000440)=ANY=[], 0x2f) 20:01:15 executing program 1: r0 = add_key$keyring(0x0, 0x0, 0x0, 0x0, 0xfffffffffffffffd) keyctl$chown(0x4, 0x0, 0x0, 0xffffffffffffffff) r1 = request_key(&(0x7f0000000280)='id_resolver\x00', &(0x7f00000002c0)={'syz', 0x3}, &(0x7f0000000300)='utf8', r0) add_key(&(0x7f0000000140)='big_key\x00', &(0x7f0000000180)={'syz', 0x2}, &(0x7f00000001c0)="1b47b9c8199fbd236ca206b467f9d70fff8acfcf6a1764202df56c27e5941c4b30aa05ea5f9c150bbba412fdc7c2fe3bbef0b3cabd661dd92fb129209211620ebdaa75a694ab64232e568aec88f1cc659ccc136b9be507b4cae5752de37c222f3e395fc7b7d6aea15b0ce4f123d4f25e341009b05a879bb8d44a065b8e4d59f59261b73307b2", 0x86, r1) syz_mount_image$iso9660(&(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x0, 0x1, &(0x7f0000000100)=[{&(0x7f0000000000)="c024f54652b91e73ee4a20f9ed69b471a792fc94a0004c661f0f56ec505f90113ffb92c89ed2d664866b69e4ff86ae8ffe519af594ab35d5635a05dcce8a074ec244640d8a74f072eab9802555218485a752c447", 0x54, 0xffffffff}], 0x0, &(0x7f00000003c0)=ANY=[@ANYBLOB='utf8,Tocharset=macroman,\x00']) r2 = add_key$keyring(&(0x7f0000000040), &(0x7f0000000640)={'syz', 0x3}, 0x0, 0x0, 0x0) r3 = add_key$user(&(0x7f0000000a40), &(0x7f0000000a80)={'syz', 0x1}, &(0x7f0000000300)="a3", 0x1, 0xfffffffffffffffe) keyctl$KEYCTL_RESTRICT_KEYRING(0x1d, r2, &(0x7f0000000240)='asymmetric\x00', &(0x7f0000000000)=@keyring={'key_or_keyring:', r3, 0xa}) r4 = request_key(&(0x7f0000000240)='.request_key_auth\x00', &(0x7f0000000280)={'syz', 0x3}, &(0x7f0000000380)='dns_resolver\x00', r2) r5 = add_key$fscrypt_v1(&(0x7f0000000180), &(0x7f00000001c0)={'fscrypt:', @desc4}, &(0x7f0000000200)={0x0, "f038779de021f8c8c974dd89170cf2579d1fa459ba726003d07140eeb342b87ae631f7a548867a29f29fd1637ddac658a709b49b093393d0e1c7391515c7ab7c"}, 0x48, 0xfffffffffffffffe) keyctl$chown(0x4, r5, 0xee01, 0xee00) request_key(&(0x7f0000000b00)='keyring\x00', &(0x7f0000000b40)={'syz', 0x0}, &(0x7f0000000b80)='\x00', 0xffffffffffffffff) add_key$keyring(&(0x7f0000000bc0), &(0x7f0000000c00)={'syz', 0x3}, 0x0, 0x0, 0xfffffffffffffff8) keyctl$KEYCTL_MOVE(0x1e, r2, 0xfffffffffffffffe, r1, 0x0) setresuid(0xffffffffffffffff, 0x0, 0x0) syz_mount_image$vfat(&(0x7f0000000340), &(0x7f0000000380)='./file1\x00', 0xffffffffffff658d, 0x7, &(0x7f0000000840)=[{&(0x7f0000000400)="7a826c87c6d5571fc40302cbd2ac6607e140092452c759291f25bfb0f59a66cc7daf587a0e85b0b66e6f4082fa25c663172743e98682f29ce91c8c87600c6f8706667f87d5e0adc8faa5c0e60ea6442c3181deaa0912a748a90ad72d868f75df52ac", 0x62, 0x20}, {&(0x7f0000000480), 0x0, 0x9}, {&(0x7f00000004c0)="3c8df0e33fb81d6b226c4fd7949a32118726680e3167977180dc882e76bacac964282c5a5cbbd1c23a64ee4c5ca98947be3704c4ea7ff5d01901c5e3ae00fb16074c677837f6028949e4b7a88478f22ba32ba31ec0a4bdaface64d49713a6cd9d695d39902e329cdc98a2b5f376af9c3cd856aac007519e485607b0db4a24d4535403becebf54b5c1eaa9fc305a879832373a518574555b003cb884453a4358f1ca3117c093b3c3c630f575bfdd24b3682c30253db4e649b3176fa4bb69e1c3bfb23b690168ff790", 0xc8, 0x1}, {&(0x7f00000005c0)="6ce768dfcdd5abba5c0bd6a859fad83c770e12846a80ad1561c4cf3dfaf6a3bc43c0da3cd1b0791e0d9043966b8ffb8ee1abae8c79e09e31547e4db5b04e61236d8a81f2fd6db4a88f56dced742cb51fb7b9daeab08d94ac3d900bef973d55f34db08b00c5329c0e149adeea09941672a2e67b5b7167f0335dcaf010c56e7dd0652e6b6d956ea31de81e652fe8538a6252c8b9375ec3d2a18572ab220c3a25042a40f46e034b2b04bbde2b99e80aac118d6f32a898028b62a1d652c5", 0xbc}, {&(0x7f0000000680)="f506d261222fd940dadefc646f3059d21501253b377884f629bc545c548f17b85ce5c60f96ca89bd04e9bdb40653e8f0c740751efa9f8a57b200009527", 0x3d, 0x4e}, {&(0x7f00000006c0)="28cd481076f1e3d17550f4f776d2e289caccdb6fbb755ba8ffd4e7db8a45b1172c977ca402d8e3c66712a296fad09fdebe86ddfc370dabe65cba333c2f4e0d71d678737c14668866571103e49a57d13416b6e85cfb331b9e3f8eba987887396c24", 0x61, 0xfffffffffffffffb}, {&(0x7f0000000740)="b99da80edba7e541216e60e9e6c3ce946bc74d6ce60b260d9e70e7e08d460df31e4ead4e8b0f40546e3cc483859be97831c868c65a442262fad999c604ef69526c4ecabe1cee3e1fcd78f69193f3cfc473f79217f85c7ca39b357417d5de143493b52cfcd5eb6c1390e95f56ef90135cfcf1d5a5e3ebe35fd2409bf7c1362b24eb525ec9efdd6055b41c3b54b678d4d8529cc8b68e028000056566a24ddb5d3c59d704d8ac9be00cc7914db9ef7406441b694b3dcc82e65553102f13f004774c1051f116c681152783f379764d0e668969667de55f6bd055b9d2939a5448a60a134b49cc27de5fdff7422c67d1d270ce36ded89054b4dd0b", 0xf8, 0x6}], 0x2840, &(0x7f0000000900)={[{@shortname_mixed}, {@shortname_win95}], [{@euid_lt}, {@fowner_eq}, {@appraise_type}]}) setns(0xffffffffffffffff, 0x0) add_key$keyring(&(0x7f0000000480), &(0x7f0000000980)={'syz', 0x2}, 0x0, 0x0, r4) add_key(&(0x7f00000009c0)='.request_key_auth\x00', &(0x7f0000000a00)={'syz', 0x0}, &(0x7f0000000ac0)="5896bb32acde40c600f44281", 0xc, 0xfffffffffffffffc) 20:01:15 executing program 3: r0 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file0\x00', 0x109102, 0x40) r1 = creat(&(0x7f0000000000)='./file0\x00', 0x0) dup2(r1, r0) fsetxattr$security_capability(r1, &(0x7f0000000080), &(0x7f00000000c0)=@v2={0x2000000, [{0x7, 0xea}, {0x7, 0x100}]}, 0x14, 0x0) openat(r0, &(0x7f0000000140)='./file0\x00', 0x12000, 0x2) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x400}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r2 = syz_io_uring_setup(0x4f3, &(0x7f0000000300)={0x0, 0x9d80, 0x10, 0x3, 0x3af}, &(0x7f0000bff000/0x400000)=nil, &(0x7f0000cb6000/0x4000)=nil, &(0x7f0000000000), &(0x7f0000000180)) dup3(0xffffffffffffffff, r2, 0x0) syz_genetlink_get_family_id$l2tp(&(0x7f0000000040), r0) ioctl$FIONCLEX(r2, 0x5450) r3 = openat(0xffffffffffffffff, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0) sendfile(r0, r3, 0x0, 0x100000001) 20:01:15 executing program 0: perf_event_open(&(0x7f0000001d80)={0x2, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0xffff, 0x2}, 0x0, 0x0, 0x0, 0x0, 0x3}, 0x0, 0x0, 0xffffffffffffffff, 0x0) clone3(&(0x7f0000000200)={0x31081000, &(0x7f0000000100), 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) 20:01:15 executing program 7: r0 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x46e2, 0x0) r1 = openat$incfs(0xffffffffffffffff, 0x0, 0x0, 0x0) ioctl$PTP_PIN_GETFUNC2(0xffffffffffffffff, 0xc0603d0f, &(0x7f00000000c0)={'\x00', 0x7, 0x3, 0x7}) ftruncate(r0, 0x1000003) ioctl$FS_IOC_FSSETXATTR(r1, 0x40086602, &(0x7f0000000000)={0x800000, 0x0, 0x0, 0xfffffffc}) r2 = openat(0xffffffffffffff9c, &(0x7f0000000080)='./file0\x00', 0x105142, 0x0) unlinkat(0xffffffffffffffff, 0x0, 0x0) fcntl$setown(0xffffffffffffffff, 0x8, 0xffffffffffffffff) close(0xffffffffffffffff) close(0xffffffffffffffff) perf_event_open(&(0x7f0000000300)={0x6, 0x80, 0xe5, 0x0, 0x0, 0x4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x1, 0x1, 0x1, 0x0, 0x0, 0x1, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x0, 0x1, 0x0, 0x0, 0x8, 0x61cff179222f2160, @perf_bp={&(0x7f0000000200), 0x9}, 0x40008, 0x20, 0x0, 0x1, 0x0, 0x7, 0x9, 0x0, 0x2}, 0x0, 0xc, r1, 0x3) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x104, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, @perf_bp={&(0x7f0000000040)}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) lseek(r2, 0x0, 0x2) r3 = openat(0xffffffffffffff9c, &(0x7f00000001c0)='./file0\x00', 0x4000, 0x128) copy_file_range(r3, 0x0, r2, 0x0, 0x200f5ef, 0x0) r4 = syz_open_procfs(0xffffffffffffffff, &(0x7f0000000040)='numa_maps\x00') readv(r4, &(0x7f0000003700)=[{&(0x7f0000000200)=""/216, 0xd8}, {&(0x7f00000003c0)=""/121, 0x79}, {&(0x7f0000000380)=""/51, 0x33}, {&(0x7f00000014c0)=""/160, 0xa0}, {&(0x7f0000001640)=""/256, 0x100}, {0x0}, {&(0x7f00000015c0)=""/51, 0x33}, {&(0x7f00000001c0)=""/57, 0x39}], 0x8) readv(r4, &(0x7f0000001600)=[{&(0x7f00000004c0)=""/4096, 0x1000}], 0x1) ioctl$RTC_ALM_READ(r4, 0x80247008, &(0x7f0000000140)) connect$802154_dgram(r1, &(0x7f0000000180)={0x24, @long={0x3, 0xfffc, {0xaaaaaaaaaaaa0202}}}, 0x14) 20:01:15 executing program 2: r0 = socket$inet_icmp_raw(0x2, 0x3, 0x1) r1 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a) ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000140)={'syz_tun\x00', 0x0}) perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) sendmmsg$inet(r0, &(0x7f0000002040)=[{{&(0x7f0000000380)={0x2, 0x0, @multicast1}, 0x10, &(0x7f0000001600)=[{&(0x7f00000003c0)="db9c", 0xffe7}], 0x1, &(0x7f0000001640)=ANY=[@ANYBLOB="14000000000000000000000007000000c4048f01000000001c000000000000000000000008000000", @ANYRES32=r2], 0x38}}], 0x1, 0x0) (fail_nth: 45) [ 3375.298354] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium [ 3375.306610] FAULT_INJECTION: forcing a failure. [ 3375.306610] name failslab, interval 1, probability 0, space 0, times 0 [ 3375.309134] CPU: 1 PID: 27541 Comm: syz-executor.2 Not tainted 5.10.207 #1 [ 3375.310524] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 3375.312168] Call Trace: [ 3375.312709] dump_stack+0x107/0x167 [ 3375.313453] should_fail.cold+0x5/0xa [ 3375.314218] ? create_object.isra.0+0x3a/0xa20 [ 3375.315130] should_failslab+0x5/0x20 [ 3375.315895] kmem_cache_alloc+0x5b/0x310 [ 3375.316752] create_object.isra.0+0x3a/0xa20 [ 3375.317633] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 3375.318702] __kmalloc_node_track_caller+0x1a6/0x3b0 [ 3375.319716] ? __ip_append_data+0x2930/0x3310 [ 3375.320677] __alloc_skb+0xb1/0x5b0 [ 3375.321448] __ip_append_data+0x2930/0x3310 [ 3375.322355] ? raw_destroy+0x30/0x30 [ 3375.323138] ? ip_finish_output+0x330/0x330 [ 3375.324069] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 3375.325140] ? ipv4_mtu+0x1ed/0x2c0 [ 3375.325923] ? raw_destroy+0x30/0x30 [ 3375.326718] ip_append_data+0x114/0x1a0 [ 3375.327550] raw_sendmsg+0xaa6/0x29d0 [ 3375.328376] ? dst_output+0x170/0x170 [ 3375.329177] ? __lock_acquire+0x1657/0x5b00 [ 3375.330101] ? perf_trace_lock+0xac/0x490 [ 3375.330962] ? SOFTIRQ_verbose+0x10/0x10 [ 3375.331818] ? create_object.isra.0+0x3ad/0xa20 [ 3375.332790] ? __lockdep_reset_lock+0x180/0x180 [ 3375.333783] ? selinux_socket_post_create+0x7f0/0x7f0 [ 3375.334886] ? find_held_lock+0x2c/0x110 [ 3375.335767] ? trace_hardirqs_on+0x5b/0x180 [ 3375.336677] ? dst_output+0x170/0x170 [ 3375.337493] inet_sendmsg+0x11d/0x140 [ 3375.338279] ? inet_send_prepare+0x540/0x540 [ 3375.339216] __sock_sendmsg+0x13c/0x190 [ 3375.340075] ____sys_sendmsg+0x334/0x870 [ 3375.340936] ? sock_write_iter+0x3d0/0x3d0 [ 3375.341815] ? do_recvmmsg+0x6d0/0x6d0 [ 3375.342643] ? perf_trace_lock+0xac/0x490 [ 3375.343524] ? __lockdep_reset_lock+0x180/0x180 [ 3375.344468] ? perf_trace_lock+0xac/0x490 [ 3375.345337] ___sys_sendmsg+0xf3/0x170 [ 3375.346141] ? sendmsg_copy_msghdr+0x160/0x160 [ 3375.347100] ? lock_downgrade+0x6d0/0x6d0 [ 3375.347984] ? lock_downgrade+0x6d0/0x6d0 [ 3375.348867] ? __fget_files+0x296/0x4c0 [ 3375.349717] ? __fget_light+0xea/0x290 [ 3375.350549] __sys_sendmmsg+0x195/0x470 [ 3375.351404] ? __ia32_sys_sendmsg+0xb0/0xb0 [ 3375.352313] ? lock_downgrade+0x6d0/0x6d0 [ 3375.353196] ? __mutex_unlock_slowpath+0xe1/0x600 [ 3375.354217] ? wait_for_completion_io+0x270/0x270 [ 3375.355223] ? rcu_read_lock_any_held+0x75/0xa0 [ 3375.356194] ? vfs_write+0x354/0xa70 [ 3375.356968] ? fput_many+0x2f/0x1a0 [ 3375.357730] ? ksys_write+0x1a9/0x260 [ 3375.358535] ? __ia32_sys_read+0xb0/0xb0 [ 3375.359390] __x64_sys_sendmmsg+0x99/0x100 [ 3375.360291] do_syscall_64+0x33/0x40 [ 3375.361077] entry_SYSCALL_64_after_hwframe+0x62/0xc7 [ 3375.362146] RIP: 0033:0x7fac065c2b19 [ 3375.362925] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 3375.366762] RSP: 002b:00007fac03b38188 EFLAGS: 00000246 ORIG_RAX: 0000000000000133 [ 3375.368357] RAX: ffffffffffffffda RBX: 00007fac066d5f60 RCX: 00007fac065c2b19 [ 3375.369847] RDX: 0000000000000001 RSI: 0000000020002040 RDI: 0000000000000003 [ 3375.371317] RBP: 00007fac03b381d0 R08: 0000000000000000 R09: 0000000000000000 [ 3375.372805] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 3375.374282] R13: 00007ffe4d4b793f R14: 00007fac03b38300 R15: 0000000000022000 [ 3375.450314] EXT4-fs: failed to create workqueue [ 3375.451512] EXT4-fs (loop6): mount failed 20:01:15 executing program 1: sendmsg$nl_generic(0xffffffffffffffff, &(0x7f0000000180)={&(0x7f00000002c0)={0x10, 0x0, 0x0, 0x100}, 0xc, &(0x7f0000000140)={&(0x7f0000000080)={0x70, 0x1f, 0x4, 0x70bd25, 0x25dfdbfd, {0x1a}, [@generic="67c0d19518e01b2c00a3600716a20970b614e129fc97f2f1e075160b134241569dbd1987da3505d3213afadc427ea80afeeabcbc7e227cf46bffd2c988ca104a4bcc7be08091d9228a3456217690f77de9ec5f3c8d7f3ab0f74f"]}, 0x70}, 0x1, 0x0, 0x0, 0x20000000}, 0x4044091) r0 = syz_mount_image$ext4(&(0x7f0000000000)='ext3\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0x0, &(0x7f0000000380), 0x81, &(0x7f0000012b00)=ANY=[]) r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000000), 0xffffffffffffffff) r2 = socket$nl_generic(0x10, 0x3, 0x10) ioctl$sock_SIOCGIFINDEX_80211(r2, 0x8933, &(0x7f0000000040)={'wlan1\x00', 0x0}) fcntl$dupfd(r2, 0x406, r0) r4 = open_tree(r0, &(0x7f0000000500)='./file0\x00', 0x100) ioctl$sock_SIOCADDDLCI(r4, 0x8980, &(0x7f0000000540)={'netdevsim0\x00', 0xff}) sendmsg$NL80211_CMD_SET_WIPHY_NETNS(r2, &(0x7f0000001740)={0x0, 0x0, &(0x7f0000000980)={&(0x7f0000000100)={0x28, r1, 0x1, 0x0, 0x0, {{}, {@void, @val={0x8, 0x3, r3}, @val={0xc}}}}, 0x28}}, 0x0) sendmsg$NL80211_CMD_DISCONNECT(0xffffffffffffffff, &(0x7f00000004c0)={&(0x7f00000001c0)={0x10, 0x0, 0x0, 0x80000}, 0xc, &(0x7f0000000480)={&(0x7f0000000580)=ANY=[@ANYBLOB="2c90f2f6b0b1ea735613b663819b70b4eb4c6cfcd8746410acb8979fb673a4a83f8fad988b1e9cea0a7fe7b9f597d70a668064f91b9164fe4ceda05fff9dc8c07c4e12b4635b0fa6157ed137ee134e15c183e1ddc07196b133cc4684cce2d43825e13e163e24a256101331c0f519df5d1ff2e82b6d8119891153cf565f81a7bf582427c756d848e605d2f58404d61515e75630e9", @ANYRES16=0x0, @ANYBLOB="1000781a0000fcdbdf253000000008000300", @ANYRES32=r3, @ANYBLOB="060036003800000006003600000000000600360014000000060036002b000000060036001c000000060036000c000000"], 0x4c}, 0x1, 0x0, 0x0, 0x40}, 0x4000) mount(&(0x7f0000000380)=ANY=[@ANYBLOB="2f6457762f6e62643000ae6065a469b40e03fa5529ca291fd005ec735695dd59bc488c8f287887d33078e69aa2305891f5d44323e0d6fd257198e742f36a32b44a3fd76e63913392e76133ff6332c86bb92c6813c8"], &(0x7f0000000200)='./file0\x00', &(0x7f0000000240)='overlay\x00', 0x2000000, &(0x7f0000000280)='ext3\x00') lgetxattr(&(0x7f0000000040)='./file0\x00', &(0x7f0000000300)=@random={'security.', 'overlay\x00'}, &(0x7f0000000340)=""/10, 0xa) 20:01:15 executing program 0: perf_event_open(&(0x7f0000001d80)={0x2, 0x80, 0x46, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x0, 0x2}, 0x0, 0x0, 0x0, 0x0, 0x3}, 0x0, 0x0, 0xffffffffffffffff, 0x0) clone3(&(0x7f0000000200)={0x31081000, &(0x7f0000000100), 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) 20:01:15 executing program 5: r0 = syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x80000, 0x2c, &(0x7f0000000200)=[{&(0x7f0000010000)="200000000002000019000000700100000f000000000000000000000004000000000002000020000020000000d1f4655fd1f4655f0100ffff53ef010001000000d1f4655f000000000000000001000000000000000b0000000004000008000000d2c20100120300000000000000000000000000000000000073797a6b616c6c6572000000000000002f746d702f73797a2d696d61676567656e33343135323238343000"/192, 0xc0, 0x400}, {&(0x7f0000010100)="000000000000000000000000d0a9da48497c4915a7449265c083aec0010040000c00000000000000d1f4655f00"/64, 0x40, 0x4e0}, {&(0x7f0000010200)="00000000000000000000000000000000000000000000000000000000200020000100000000000000000000000000000000000000040000003800000000000000", 0x40, 0x540}, {&(0x7f0000010300)="0300000004000000000000000000000000000000010400"/32, 0x20, 0x640}, {&(0x7f0000010400)="03000000040000000500000017000f000300040000000000000000000f008551", 0x20, 0x800}, {&(0x7f0000010500)="ff010000ffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffff0100ffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffff0000000000000000d1f4655fd1f4655fd1f4655f00"/2080, 0x820, 0xc00}, {&(0x7f0000010e00)="ed41000000040000d1f4655fd1f4655fd1f4655f00000000000004002000000000000800050000000af301000400000000000000000000000100000030000000", 0x40, 0x1800}, {&(0x7f0000010f00)="2000000038fad6a438fad6a400000000d1f4655f00"/32, 0x20, 0x1880}, {&(0x7f0000011000)="8081000000180000d1f4655fd1f4655fd1f4655f00000000000001002000000010000800000000000af3020004000000000000000000000002000000500000000200000004000000520000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000020000000000000000000000000000000d1f4655f00"/160, 0xa0, 0x1c00}, {&(0x7f0000011100)="8081000000180000d1f4655fd1f4655fd1f4655f00000000000001002000000010000800000000000af3020004000000000000000000000002000000600000000200000004000000620000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000020000000000000000000000000000000d1f4655f00"/160, 0xa0, 0x2000}, {&(0x7f0000011200)="c0410000002c0000d1f4655fd1f4655fd1f4655f00000000000002002000000000000800000000000af301000400000000000000000000000b00000040000000", 0x40, 0x3c00}, {&(0x7f0000000080)="20000000000000000000000000000000d1f4655f000000000000000000000000000002ea00"/64, 0x40, 0x3c80}, {&(0x7f0000011400)="ed4100003c000000d1f4655fd1f4655fd1f4655f0000000000000200000000000000001003000000020000000d0000001000050166696c65300000000e0000002800050766696c6531000000000000000000000000000000000000000000000000000000e50617fa0000000000000000000000000000000000000000000000002000000038fad6a438fad6a438fad6a4d1f4655f38fad6a40000000000000000000002ea04070000000000000000000000000000646174610000000000000000", 0xc0, 0x4000}, {&(0x7f0000011500)="ed8100001a040000d1f4655fd1f4655fd1f4655f00000000000001002000000000000800010000000af3010004000000000000000000000002000000700000000000000000000000000000000000000000000000000000000000000000000000000000000281944c0000000000000000000000000000000000000000000000002000000038fad6a438fad6a438fad6a4d1f4655f38fad6a40000000000000000", 0xa0, 0x4400}, {&(0x7f0000011600)="ffa1000026000000d1f4655fd1f4655fd1f4655f00000000000001000000000000000000010000002f746d702f73797a2d696d61676567656e3334313532323834302f66696c65302f66696c6530000000000000000000000000000000000000000000007dfbeec50000000000000000000000000000000000000000000000002000000038fad6a438fad6a438fad6a4d1f4655f38fad6a40000000000000000", 0xa0, 0x4800}, {&(0x7f0000011700)="ed8100000a000000d1f4655fd1f4655fd1f4655f000000000000010000000000000000100100000073797a6b616c6c6572730000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000cf6b9f150000000000000000000000000000000000000000000000002000000038fad6a438fad6a438fad6a4d1f4655f38fad6a40000000000000000000002ea040700000000000000000000000000006461746106015403000000000600000000000000786174747231000006014c0300000000060000000000000078617474723200"/256, 0x100, 0x4c00}, {&(0x7f0000011800)="0000000000000000000000000000000078617474723200007861747472310000ed81000028230000d1f4655fd1f4655fd1f4655f00000000000002002000000000000800010000000af3010004000000000000000000000009000000800000000000000000000000000000000000000000000000000000000000000000000000000000009b745a560000000000000000000000000000000000000000000000002000000038fad6a438fad6a438fad6a4d1f4655f38fad6a40000000000000000", 0xc0, 0x4fe0}, {&(0x7f0000011900)="ed81000064000000d1f4655fd1f4655fd1f4655f000000000000010000000000000000100100000073797a6b616c6c657273797a6b616c6c657273797a6b616c6c657273797a6b616c6c657273797a6b616c6c657273797a6b616c6c657273797a6b616c2cc444b00000000000000000000000000000000000000000000000002000000038fad6a438fad6a438fad6a4d1f4655f38fad6a40000000000000000000002ea04073403000000002800000000000000646174610000000000000000", 0xc0, 0x5400}, {&(0x7f0000011a00)='\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00lersyzkallersyzkallersyzkallersyzkallers', 0x40, 0x57c0}, {&(0x7f0000011b00)="020000000c0001022e000000020000000c0002022e2e00000b00000014000a026c6f73742b666f756e6400000c0000001000050266696c65300000000f0000001000050166696c6531000000100000001000050166696c6532000000100000001000050166696c6533000000110000009403090166696c652e636f6c64000000", 0x80, 0xc000}, {&(0x7f0000011c00)="0b0000000c0001022e000000020000000c0002022e2e000000000000e8030000", 0x20, 0x10000}, {&(0x7f0000011d00)="00000000000400"/32, 0x20, 0x10400}, {&(0x7f0000011e00)="00000000000400"/32, 0x20, 0x10800}, {&(0x7f0000011f00)="00000000000400"/32, 0x20, 0x10c00}, {&(0x7f0000012000)="00000000000400"/32, 0x20, 0x11000}, {&(0x7f0000012100)="00000000000400"/32, 0x20, 0x11400}, {&(0x7f0000012200)="00000000000400"/32, 0x20, 0x11800}, {&(0x7f0000012300)="00000000000400"/32, 0x20, 0x11c00}, {&(0x7f0000012400)="00000000000400"/32, 0x20, 0x12000}, {&(0x7f0000012500)="00000000000400"/32, 0x20, 0x12400}, {&(0x7f0000012600)="00000000000400"/32, 0x20, 0x12800}, {&(0x7f0000012700)="111fc0d901000000803a0900803a090000000000060000000000000005000000", 0x20, 0x14000}, {&(0x7f0000012800)="0200"/32, 0x20, 0x14400}, {&(0x7f0000012900)="0300"/32, 0x20, 0x14800}, {&(0x7f0000012a00)="0400"/32, 0x20, 0x14c00}, {&(0x7f0000012b00)="0500"/32, 0x20, 0x15000}, {&(0x7f0000012c00)="0000000000000000010000000000000000000000000000000000000000000000000000000000000008000000000000000000000000000000000000000000000000000100"/96, 0x60, 0x15400}, {&(0x7f0000012d00)="2719c0d901000000803a0900803a090000000000060000000000000005000000", 0x20, 0x18000}, {&(0x7f0000012e00)="0200"/32, 0x20, 0x18400}, {&(0x7f0000012f00)="0300"/32, 0x20, 0x18800}, {&(0x7f0000013000)="0400"/32, 0x20, 0x18c00}, {&(0x7f0000013100)="0500"/32, 0x20, 0x19000}, {&(0x7f0000013200)="0000000000000000010000000000000000000000000000000000000000000000000000000000000008000000000000000000000000000000000000000000000000000100"/96, 0x60, 0x19400}, {&(0x7f0000013300)='syzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkal\x00\x00\x00\x00\x00\x00', 0x420, 0x1c000}], 0x0, &(0x7f0000001800)=ANY=[@ANYBLOB="38f4fd2c74807d7c4808e406a70f5a3ff16f3d960a5f2b2c7b05a8ea120fb74157996d6e53de5fe09302d0ddfe9af925b0f84d721ebced0449c52054a8b7f923cabd076ef18bbaa71c827fbc6fa1b680789a62eb9e4a4d57452b1d1a8bfee0b725f20000001f2bbefceadf11166e36150fc2614012b7a456c69861688ecc3f17b21fa994ff931c5f499700decdea4efa942f5ecbb6b0e56c04bbb7624ac8ca8ece742566a0f3efbb07b1fd5b9e62bcc517f624824e53f6485b282071343443f967bbd053cd0b8c2f374eb67f41bc84ec52ce7936e911a85a4777e7437ec4d47d0904af343fdf592e8f2ccc41c9a7144f1ddf9f44e5369bce5b5ee2044976f90d1eadf50c4f58651129e21a63f17b41019dee51b0919374c63ad1e34f4217ded79a0487753a7ad96d09786d60a1b44ff1e4a8709856d7f925e9603640215a8b41e161c4f1e36caf535add64f48eb0bdb414bce60bcfa554a3f0055949ba535b06a8ed2a3af29d75f17b7351bd8c93a1e8ad662d6b9eb53bfcd8ec3a22be2b1db3c2a4bbbf510238d4369cc48eba16ed8d7d8da0243562eeb394605a64794cfea70716839cca4b5819b44d8c50de5c192751cb7ac8f929"]) syz_mount_image$ext4(&(0x7f00000000c0)='ext2\x00', &(0x7f0000000140)='./file0\x00', 0xffffffff, 0x5, &(0x7f0000001740)=[{&(0x7f0000000180)="cd86c4500a5313", 0x7, 0x4}, {&(0x7f00000001c0)="04d49cab", 0x4, 0x2c8}, {&(0x7f0000000640)="e74601b74ebb647bc5655360216edb0885761a9a8e777fa538cd5f5c1c6ca4b7d8856bca9da9f5b4a5188294", 0x2c, 0x5603}, {&(0x7f0000000680)="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", 0x1000, 0x8}, {&(0x7f0000001680)="382a8d8ecc51fd12be4ebb954ad6896dd135bf46f187ed8a9ee51d8464931432a4944d83287c59b41f3a40a22ae7e4800a93e8228bc65945434a91ab7286e8a70968449fd143f0b921bb766f419398200f10d6cccc6ad2b4e1763ed8ed26ae5aea4aceb363bd18d5411815f57200855eebc7484f6a17435067518b0ebbb3e02366f358dbed55fc156fb84a3af98cb1adcef7b8", 0x93, 0x8}], 0x2, &(0x7f00000017c0)={[{@auto_da_alloc_val}, {@quota}, {@mblk_io_submit}, {@noquota}]}) unlinkat(r0, &(0x7f0000000040)='./file0\x00', 0x0) rename(&(0x7f00000019c0)='./file0\x00', &(0x7f0000001a00)='./file0\x00') stat(&(0x7f0000001cc0)='.\x00', &(0x7f0000001c00)={0x0, 0x0, 0x0, 0x0, 0x0}) setresuid(0xffffffffffffffff, r1, 0x0) stat(&(0x7f0000001cc0)='.\x00', &(0x7f0000001c00)={0x0, 0x0, 0x0, 0x0, 0x0}) setresuid(0xffffffffffffffff, r2, 0x0) mount$cgroup(0x0, &(0x7f0000001a40)='./file0\x00', &(0x7f0000001a80), 0x80, &(0x7f0000001ac0)={[], [{@func={'func', 0x3d, 'MODULE_CHECK'}}, {@pcr={'pcr', 0x3d, 0x1a}}, {@fsuuid={'fsuuid', 0x3d, {[0x37, 0x63, 0x62, 0x65, 0x31, 0x32, 0x61, 0x33], 0x2d, [0x61, 0x39, 0x66, 0x52], 0x2d, [0x64, 0x36, 0x33, 0x34], 0x2d, [0x31, 0x33, 0x5df22973ea121b7a, 0x38], 0x2d, [0x62, 0x64, 0x39, 0x38, 0x6e, 0x63, 0x64, 0x62]}}}, {@context={'context', 0x3d, 'unconfined_u'}}, {@fowner_gt={'fowner>', r1}}, {@measure}, {@fowner_eq={'fowner', 0x3d, r2}}, {@obj_role={'obj_role', 0x3d, 'quota'}}]}) 20:01:15 executing program 3: r0 = openat(0xffffffffffffff9c, &(0x7f0000000280)='./file0\x00', 0x46e2, 0x0) creat(&(0x7f0000000140)='./file0\x00', 0x51) execveat(0xffffffffffffffff, &(0x7f00000000c0)='./file0\x00', &(0x7f0000000380)=[0x0, 0x0, &(0x7f0000000300)='security.capability\x00'], &(0x7f0000000440)=[&(0x7f0000000400)=']$-\x00'], 0x1000) fallocate(0xffffffffffffffff, 0x0, 0x0, 0x0) ftruncate(r0, 0x1000003) r1 = socket$inet6_udp(0xa, 0x2, 0x0) fcntl$dupfd(0xffffffffffffffff, 0x0, r1) syz_io_uring_submit(0x0, 0x0, &(0x7f0000000180)=@IORING_OP_CLOSE={0x13, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x1}, 0x4) syz_io_uring_submit(0x0, 0x0, &(0x7f0000000640)=@IORING_OP_TIMEOUT={0xb, 0x4, 0x0, 0x0, 0x8, &(0x7f00000003c0)={0x0, 0x3938700}, 0x1, 0x1}, 0x5) perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0) openat(0xffffffffffffff9c, &(0x7f00000004c0)='./file0\x00', 0x40, 0x9a) ioctl$FS_IOC_FSSETXATTR(r0, 0x40086602, &(0x7f0000000000)) getsockopt$inet6_IPV6_IPSEC_POLICY(r0, 0x29, 0x22, &(0x7f0000000180)={{{@in6=@empty}}, {{@in=@broadcast}, 0x0, @in=@local}}, &(0x7f0000000100)=0xe8) fsetxattr$security_capability(r0, &(0x7f0000000040), &(0x7f0000000080)=@v2={0x2000000, [{}, {0x8000000, 0x3}]}, 0x14, 0x0) stat(&(0x7f0000000340)='./file0\x00', &(0x7f00000005c0)) ioctl$KDSKBLED(0xffffffffffffffff, 0x4b65, 0x8) ioctl$BTRFS_IOC_SUBVOL_GETFLAGS(0xffffffffffffffff, 0x80089419, &(0x7f0000000480)) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5b, 0x1, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5, 0x0, @perf_config_ext={0x7}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) write$binfmt_elf64(r0, &(0x7f00000001c0)=ANY=[], 0xfdef) syz_io_uring_submit(0x0, 0x0, &(0x7f0000000540)=@IORING_OP_OPENAT2={0x1c, 0x2, 0x0, 0xffffffffffffff9c, &(0x7f00000002c0)={0x800, 0x8, 0x18}, &(0x7f0000000500)='./file0\x00', 0x18, 0x0, 0x23456}, 0xffff7fff) 20:01:15 executing program 2: r0 = socket$inet_icmp_raw(0x2, 0x3, 0x1) r1 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a) ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000140)={'syz_tun\x00', 0x0}) perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) sendmmsg$inet(r0, &(0x7f0000002040)=[{{&(0x7f0000000380)={0x2, 0x0, @multicast1}, 0x10, &(0x7f0000001600)=[{&(0x7f00000003c0)="db9c", 0xffe7}], 0x1, &(0x7f0000001640)=ANY=[@ANYBLOB="14000000000000000000000007000000c4048f01000000001c000000000000000000000008000000", @ANYRES32=r2], 0x38}}], 0x1, 0x0) (fail_nth: 46) [ 3375.591226] EXT4-fs (loop5): Unrecognized mount option "8ôý" or missing value 20:01:15 executing program 6: syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000140)='./file0\x00', 0x40000, 0x4, &(0x7f0000000200)=[{&(0x7f0000010000)="20000000000100000c000000d40000000f000000010000000000000000000000002000000020000020000000d7f4655fd7f4655f0100ffff53ef010001000000d7f4655f000000000000000001000000000000000b0000000002", 0x5a, 0x400}, {&(0x7f0000010400)="030000000400000005000000d4000f", 0xf, 0x800}, {&(0x7f0000000500)="ffffffffff070000000000000000000000000000000000000000000000000080ffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffff", 0x402, 0xc00}, {&(0x7f0000010e00)="ed41000000040000d7f4655fd7f4655fd7f4655f000000000000040002", 0x1d, 0x1600}], 0x0, &(0x7f00000003c0)=ANY=[]) chdir(&(0x7f0000000040)='./file0\x00') openat(0xffffffffffffff9c, &(0x7f0000000080)='./file1\x00', 0x105142, 0x0) r0 = openat(0xffffffffffffff9c, &(0x7f0000000200)='./file1\x00', 0x2, 0x0) write(r0, &(0x7f0000000240)="01", 0x1) r1 = openat(0xffffffffffffff9c, &(0x7f00000000c0)='./file2\x00', 0x105142, 0x0) r2 = openat(0xffffffffffffff9c, &(0x7f0000001340)='./file1\x00', 0x0, 0x0) copy_file_range(r2, 0x0, r1, &(0x7f0000000280)=0x2f000000, 0xc3a, 0x0) openat$sr(0xffffffffffffff9c, 0x0, 0x0, 0x0) [ 3375.615562] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium [ 3375.626843] EXT4-fs (loop5): VFS: Can't find ext4 filesystem [ 3375.644639] cgroup: Unknown subsys name 'func' 20:01:15 executing program 5: futex(0x0, 0x7, 0x0, 0x0, 0x0, 0x0) r0 = openat$cgroup_ro(0xffffffffffffffff, 0x0, 0x0, 0x0) r1 = add_key$fscrypt_v1(&(0x7f0000000180), 0x0, &(0x7f0000000200)={0x0, "f038779de021f8c8c974dd89170cf2579d1fa459ba726003d07140eeb342b87ae631f7a548867a29f29fd1637ddac658a709b49b093393d0e1c7391515c7ab7c"}, 0x48, 0xfffffffffffffffe) keyctl$KEYCTL_RESTRICT_KEYRING(0x1d, 0x0, 0x0, 0x0) keyctl$chown(0x4, r1, 0xee01, 0x0) openat(0xffffffffffffff9c, &(0x7f0000000100)='./file0\x00', 0x80743, 0x88) r2 = openat$rfkill(0xffffffffffffff9c, &(0x7f0000000000), 0x101001, 0x0) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x3) setsockopt$inet6_tcp_int(r0, 0x6, 0x4, &(0x7f0000000040)=0x1, 0x4) write$rfkill(r2, &(0x7f00000000c0)={0x0, 0x0, 0x3, 0x1}, 0x8) perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0) r3 = openat$vcsa(0xffffffffffffff9c, &(0x7f0000000080), 0x82000, 0x0) r4 = syz_open_procfs(0xffffffffffffffff, &(0x7f0000000040)='numa_maps\x00') readv(r4, &(0x7f0000003700)=[{&(0x7f0000000200)=""/216, 0xd8}, {&(0x7f00000003c0)=""/121, 0x79}, {&(0x7f0000000380)=""/51, 0x33}, {&(0x7f00000014c0)=""/160, 0xa0}, {&(0x7f0000001640)=""/256, 0x100}, {0x0}, {&(0x7f00000015c0)=""/51, 0x33}, {&(0x7f00000001c0)=""/57, 0x39}], 0x8) readv(r4, &(0x7f0000001600)=[{&(0x7f00000004c0)=""/4096, 0x1000}], 0x1) perf_event_open(&(0x7f0000000280)={0x0, 0x80, 0x6, 0x8, 0x1, 0x6, 0x0, 0x0, 0x181118, 0xc, 0x1, 0x1, 0x1, 0x1, 0x0, 0x1, 0x1, 0x1, 0x1, 0x0, 0x0, 0x1, 0x0, 0x1, 0x1, 0x0, 0x1, 0x0, 0x1, 0x0, 0x1, 0x0, 0x1, 0x1, 0x0, 0x1, 0x1, 0x1, 0x0, 0x1, 0x0, 0x0, 0x1, 0x1, 0x0, 0x1, 0x0, 0x0, 0x10001, 0x0, @perf_config_ext={0x1, 0x4}, 0x10004, 0xfffffffffffff801, 0x4, 0x8, 0x743d, 0x9, 0x6, 0x0, 0x43, 0x0, 0x4}, 0xffffffffffffffff, 0xe, r4, 0xff63af1f0131b15c) fcntl$dupfd(r2, 0x5740c7ee1e31d964, r3) [ 3375.706287] EXT4-fs (loop6): mounted filesystem without journal. Opts: ,errors=continue [ 3375.718488] FAULT_INJECTION: forcing a failure. [ 3375.718488] name failslab, interval 1, probability 0, space 0, times 0 [ 3375.720809] CPU: 1 PID: 27773 Comm: syz-executor.2 Not tainted 5.10.207 #1 [ 3375.722214] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 3375.723884] Call Trace: [ 3375.724453] dump_stack+0x107/0x167 [ 3375.725203] should_fail.cold+0x5/0xa [ 3375.725981] ? __alloc_skb+0x6d/0x5b0 [ 3375.726761] should_failslab+0x5/0x20 [ 3375.727536] kmem_cache_alloc_node+0x55/0x330 [ 3375.728462] __alloc_skb+0x6d/0x5b0 [ 3375.729212] __ip_append_data+0x2930/0x3310 [ 3375.730110] ? raw_destroy+0x30/0x30 [ 3375.730888] ? ip_finish_output+0x330/0x330 [ 3375.731762] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 3375.732805] ? ipv4_mtu+0x1ed/0x2c0 [ 3375.733551] ? raw_destroy+0x30/0x30 [ 3375.734309] ip_append_data+0x114/0x1a0 [ 3375.735130] raw_sendmsg+0xaa6/0x29d0 [ 3375.735931] ? dst_output+0x170/0x170 [ 3375.736713] ? __lock_acquire+0x1657/0x5b00 [ 3375.737612] ? perf_trace_lock+0xac/0x490 [ 3375.738452] ? SOFTIRQ_verbose+0x10/0x10 [ 3375.739276] ? create_object.isra.0+0x3ad/0xa20 [ 3375.740232] ? __lockdep_reset_lock+0x180/0x180 [ 3375.741196] ? selinux_socket_post_create+0x7f0/0x7f0 [ 3375.742238] ? find_held_lock+0x2c/0x110 [ 3375.743085] ? trace_hardirqs_on+0x5b/0x180 [ 3375.743984] ? dst_output+0x170/0x170 [ 3375.744765] inet_sendmsg+0x11d/0x140 [ 3375.745538] ? inet_send_prepare+0x540/0x540 [ 3375.746430] __sock_sendmsg+0x13c/0x190 [ 3375.747242] ____sys_sendmsg+0x334/0x870 [ 3375.748078] ? sock_write_iter+0x3d0/0x3d0 [ 3375.748934] ? do_recvmmsg+0x6d0/0x6d0 [ 3375.749723] ? perf_trace_lock+0xac/0x490 [ 3375.750573] ? __lockdep_reset_lock+0x180/0x180 [ 3375.751513] ? perf_trace_lock+0xac/0x490 [ 3375.752370] ___sys_sendmsg+0xf3/0x170 [ 3375.753165] ? sendmsg_copy_msghdr+0x160/0x160 [ 3375.754101] ? lock_downgrade+0x6d0/0x6d0 [ 3375.754956] ? lock_downgrade+0x6d0/0x6d0 [ 3375.755808] ? __fget_files+0x296/0x4c0 [ 3375.756644] ? __fget_light+0xea/0x290 [ 3375.757446] __sys_sendmmsg+0x195/0x470 [ 3375.758261] ? __ia32_sys_sendmsg+0xb0/0xb0 [ 3375.759133] ? lock_downgrade+0x6d0/0x6d0 [ 3375.760009] ? __mutex_unlock_slowpath+0xe1/0x600 [ 3375.760995] ? wait_for_completion_io+0x270/0x270 [ 3375.761980] ? rcu_read_lock_any_held+0x75/0xa0 [ 3375.762921] ? vfs_write+0x354/0xa70 [ 3375.763683] ? fput_many+0x2f/0x1a0 [ 3375.764439] ? ksys_write+0x1a9/0x260 [ 3375.765211] ? __ia32_sys_read+0xb0/0xb0 [ 3375.766049] __x64_sys_sendmmsg+0x99/0x100 [ 3375.766913] do_syscall_64+0x33/0x40 [ 3375.767670] entry_SYSCALL_64_after_hwframe+0x62/0xc7 [ 3375.768752] RIP: 0033:0x7fac065c2b19 [ 3375.769511] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 3375.773245] RSP: 002b:00007fac03b38188 EFLAGS: 00000246 ORIG_RAX: 0000000000000133 [ 3375.774792] RAX: ffffffffffffffda RBX: 00007fac066d5f60 RCX: 00007fac065c2b19 [ 3375.776250] RDX: 0000000000000001 RSI: 0000000020002040 RDI: 0000000000000003 [ 3375.777704] RBP: 00007fac03b381d0 R08: 0000000000000000 R09: 0000000000000000 [ 3375.779150] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 3375.780611] R13: 00007ffe4d4b793f R14: 00007fac03b38300 R15: 0000000000022000 20:01:15 executing program 0: perf_event_open(&(0x7f0000001d80)={0x2, 0x80, 0x46, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x0, 0x3}, 0x0, 0x0, 0xffffffffffffffff, 0x0) clone3(&(0x7f0000000200)={0x31081000, &(0x7f0000000100), 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) 20:01:15 executing program 4: syz_80211_inject_frame(&(0x7f00000000c0)=@device_a={0x8, 0x2, 0x11, 0x0, 0x60}, &(0x7f0000000440)=ANY=[], 0x2f) 20:01:15 executing program 7: syz_open_procfs$namespace(0x0, &(0x7f0000000000)='ns/uts\x00') ioctl$NS_GET_PARENT(0xffffffffffffffff, 0xb702, 0x0) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x1, 0x0, 0x5e, 0x0, 0x9, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, @perf_config_ext}, 0x0, 0x8, 0xffffffffffffffff, 0x0) ioctl$PIO_UNISCRNMAP(0xffffffffffffffff, 0x4b6a, 0x0) add_key$keyring(&(0x7f0000000780), &(0x7f0000000100)={'syz', 0x3}, 0x0, 0x0, 0xfffffffffffffffd) getsockopt$IP_VS_SO_GET_DAEMON(0xffffffffffffffff, 0x0, 0x487, 0x0, 0x0) sendmmsg(0xffffffffffffffff, 0x0, 0x0, 0x8000080) r0 = openat$sndseq(0xffffffffffffff9c, &(0x7f0000000080), 0x2) fcntl$dupfd(0xffffffffffffffff, 0x0, 0xffffffffffffffff) r1 = fcntl$dupfd(r0, 0x0, r0) r2 = perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0xc, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x0, 0x7}, 0x1080, 0x0, 0x0, 0x0, 0xb7a, 0x1000000}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0xb) ioctl$AUTOFS_DEV_IOCTL_EXPIRE(r1, 0xc018937c, &(0x7f0000000180)=ANY=[@ANYBLOB="44873b09d818ec311f11ca820518489eaef12ab522f9c286553772e713b1df495925abcd4882995466ac072b5896adb78235", @ANYRES32=r2]) ioctl$SNDRV_SEQ_IOCTL_CREATE_QUEUE(r1, 0xc08c5332, &(0x7f0000000200)={0x0, 0x0, 0x0, 'queue1\x00'}) write$sndseq(r0, &(0x7f00000002c0)=[{0x0, 0x0, 0x0, 0x0, @time, {}, {}, @ext={0xffffffffffffff94, 0x0}}], 0x200002dc) r3 = add_key(&(0x7f0000000280)='id_resolver\x00', &(0x7f0000000040)={'syz', 0x2}, &(0x7f0000000080)="fa", 0x1, 0xfffffffffffffffe) r4 = openat$nvram(0xffffffffffffff9c, &(0x7f00000000c0), 0x1, 0x0) socketpair$nbd(0x1, 0x1, 0x0, &(0x7f0000000140)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$AUTOFS_DEV_IOCTL_SETPIPEFD(0xffffffffffffffff, 0xc0189378, &(0x7f00000001c0)={{0x1, 0x1, 0x18, r4, {r5}}, './file0\x00'}) keyctl$chown(0x4, r3, 0x0, 0xffffffffffffffff) keyctl$KEYCTL_MOVE(0x1e, 0x0, r3, 0x0, 0x1) 20:01:15 executing program 1: preadv(0xffffffffffffffff, &(0x7f0000002400)=[{&(0x7f0000000440)=""/213, 0xd5}], 0x1, 0x0, 0x0) fallocate(0xffffffffffffffff, 0x0, 0x40, 0x3) r0 = openat(0xffffffffffffff9c, &(0x7f0000000280)='./file0\x00', 0x46e2, 0x0) ioctl$AUTOFS_DEV_IOCTL_READY(r0, 0xc0189376, &(0x7f00000000c0)=ANY=[@ANYBLOB="010000000100000018000400", @ANYRES32=r0, @ANYBLOB="05000000000000002e2f66696c653000"]) r1 = creat(&(0x7f0000000140)='./file0\x00', 0x51) fallocate(r1, 0x22, 0x0, 0x0) tee(0xffffffffffffffff, 0xffffffffffffffff, 0x5, 0x0) dup2(0xffffffffffffffff, 0xffffffffffffffff) ftruncate(r0, 0x1000003) fcntl$dupfd(0xffffffffffffffff, 0x0, 0xffffffffffffffff) perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x2) openat(0xffffffffffffff9c, &(0x7f00000004c0)='./file0\x00', 0x40, 0x9a) ioctl$FS_IOC_FSSETXATTR(r0, 0x40086602, &(0x7f0000000000)) getsockopt$inet6_IPV6_IPSEC_POLICY(r0, 0x29, 0x22, 0x0, &(0x7f0000000100)) fsetxattr$security_capability(r0, &(0x7f0000000040), &(0x7f0000000080)=@v2={0x2000000, [{}, {0x8000000, 0x3}]}, 0x14, 0x0) socket$netlink(0x10, 0x3, 0x0) ioctl$KDSKBLED(0xffffffffffffffff, 0x4b65, 0x8) ioctl$BTRFS_IOC_SUBVOL_GETFLAGS(0xffffffffffffffff, 0x80089419, &(0x7f0000000480)) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5b, 0x1, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5, 0x0, @perf_config_ext={0x7}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) write$binfmt_elf64(r0, &(0x7f00000001c0)=ANY=[], 0xfdef) 20:01:15 executing program 6: syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000140)='./file0\x00', 0x40000, 0x4, &(0x7f0000000200)=[{&(0x7f0000010000)="20000000000100000c000000d40000000f000000010000000000000000000000002000000020000020000000d7f4655fd7f4655f0100ffff53ef010001000000d7f4655f000000000000000001000000000000000b0000000002", 0x5a, 0x400}, {&(0x7f0000010400)="030000000400000005000000d4000f", 0xf, 0x800}, {&(0x7f0000000500)="ffffffffff070000000000000000000000000000000000000000000000000080ffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffff", 0x402, 0xc00}, {&(0x7f0000010e00)="ed41000000040000d7f4655fd7f4655fd7f4655f000000000000040002", 0x1d, 0x1600}], 0x0, &(0x7f00000003c0)=ANY=[]) chdir(&(0x7f0000000040)='./file0\x00') openat(0xffffffffffffff9c, &(0x7f0000000080)='./file1\x00', 0x105142, 0x0) r0 = openat(0xffffffffffffff9c, &(0x7f0000000200)='./file1\x00', 0x2, 0x0) write(r0, &(0x7f0000000240)="01", 0x1) r1 = openat(0xffffffffffffff9c, &(0x7f00000000c0)='./file2\x00', 0x105142, 0x0) r2 = openat(0xffffffffffffff9c, &(0x7f0000001340)='./file1\x00', 0x0, 0x0) copy_file_range(r2, 0x0, r1, &(0x7f0000000280)=0x34000000, 0xc3a, 0x0) openat$sr(0xffffffffffffff9c, 0x0, 0x0, 0x0) [ 3375.927234] [ 3375.927637] ====================================================== [ 3375.928942] WARNING: possible circular locking dependency detected [ 3375.930241] 5.10.207 #1 Not tainted [ 3375.930990] ------------------------------------------------------ [ 3375.932847] syz-executor.5/27776 is trying to acquire lock: [ 3375.934467] ffff8880180c4b78 ((work_completion)(&hdev->bg_scan_update)){+.+.}-{0:0}, at: __flush_work+0xdd/0xa90 [ 3375.937449] [ 3375.937449] but task is already holding lock: [ 3375.942073] ffffffff85619628 (rfkill_global_mutex){+.+.}-{3:3}, at: rfkill_fop_write+0xff/0x4b0 [ 3375.944032] [ 3375.944032] which lock already depends on the new lock. [ 3375.944032] [ 3375.945836] [ 3375.945836] the existing dependency chain (in reverse order) is: [ 3375.947474] [ 3375.947474] -> #4 (rfkill_global_mutex){+.+.}-{3:3}: [ 3375.948935] __mutex_lock+0x13d/0x10b0 [ 3375.949899] rfkill_register+0x36/0xa10 [ 3375.950882] hci_register_dev+0x42e/0xc00 [ 3375.951907] __vhci_create_device+0x2c8/0x5c0 [ 3375.953012] vhci_open_timeout+0x38/0x50 [ 3375.954014] process_one_work+0x9a9/0x14b0 [ 3375.955055] worker_thread+0x61d/0x1310 [ 3375.956049] kthread+0x38f/0x470 [ 3375.956899] ret_from_fork+0x22/0x30 [ 3375.957816] [ 3375.957816] -> #3 (&data->open_mutex){+.+.}-{3:3}: [ 3375.959224] __mutex_lock+0x13d/0x10b0 [ 3375.960199] vhci_send_frame+0x63/0xa0 [ 3375.961160] hci_send_frame+0x1b9/0x320 [ 3375.962126] hci_tx_work+0x10af/0x1660 [ 3375.963077] process_one_work+0x9a9/0x14b0 [ 3375.964105] worker_thread+0x61d/0x1310 [ 3375.965084] kthread+0x38f/0x470 20:01:15 executing program 6: syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000140)='./file0\x00', 0x40000, 0x4, &(0x7f0000000200)=[{&(0x7f0000010000)="20000000000100000c000000d40000000f000000010000000000000000000000002000000020000020000000d7f4655fd7f4655f0100ffff53ef010001000000d7f4655f000000000000000001000000000000000b0000000002", 0x5a, 0x400}, {&(0x7f0000010400)="030000000400000005000000d4000f", 0xf, 0x800}, {&(0x7f0000000500)="ffffffffff070000000000000000000000000000000000000000000000000080ffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffff", 0x402, 0xc00}, {&(0x7f0000010e00)="ed41000000040000d7f4655fd7f4655fd7f4655f000000000000040002", 0x1d, 0x1600}], 0x0, &(0x7f00000003c0)=ANY=[]) chdir(&(0x7f0000000040)='./file0\x00') openat(0xffffffffffffff9c, &(0x7f0000000080)='./file1\x00', 0x105142, 0x0) r0 = openat(0xffffffffffffff9c, &(0x7f0000000200)='./file1\x00', 0x2, 0x0) write(r0, &(0x7f0000000240)="01", 0x1) r1 = openat(0xffffffffffffff9c, &(0x7f00000000c0)='./file2\x00', 0x105142, 0x0) r2 = openat(0xffffffffffffff9c, &(0x7f0000001340)='./file1\x00', 0x0, 0x0) copy_file_range(r2, 0x0, r1, &(0x7f0000000280)=0x70000000, 0xc3a, 0x0) openat$sr(0xffffffffffffff9c, 0x0, 0x0, 0x0) [ 3375.965929] ret_from_fork+0x22/0x30 [ 3375.966979] [ 3375.966979] -> #2 ((work_completion)(&hdev->tx_work)){+.+.}-{0:0}: [ 3375.968705] __flush_work+0x105/0xa90 [ 3375.969648] hci_dev_do_close+0x131/0x1240 [ 3375.970674] hci_unregister_dev+0x149/0x430 [ 3375.971722] vhci_release+0x70/0xf0 [ 3375.972631] __fput+0x285/0x980 [ 3375.973458] task_work_run+0xe2/0x1a0 [ 3375.974392] do_exit+0xb6f/0x2600 [ 3375.975252] do_group_exit+0x125/0x310 [ 3375.976220] get_signal+0x4bc/0x22e0 [ 3375.977141] arch_do_signal_or_restart+0x2b7/0x1990 [ 3375.978341] exit_to_user_mode_prepare+0x10f/0x190 [ 3375.979516] syscall_exit_to_user_mode+0x38/0x1e0 [ 3375.980676] entry_SYSCALL_64_after_hwframe+0x62/0xc7 [ 3375.981900] [ 3375.981900] -> #1 (&hdev->req_lock){+.+.}-{3:3}: [ 3375.983270] __mutex_lock+0x13d/0x10b0 [ 3375.984235] bg_scan_update+0x82/0x500 [ 3375.985192] process_one_work+0x9a9/0x14b0 [ 3375.986218] worker_thread+0x61d/0x1310 [ 3375.987196] kthread+0x38f/0x470 [ 3375.988053] ret_from_fork+0x22/0x30 [ 3375.988967] [ 3375.988967] -> #0 ((work_completion)(&hdev->bg_scan_update)){+.+.}-{0:0}: [ 3375.990797] __lock_acquire+0x29e7/0x5b00 [ 3375.991803] lock_acquire+0x197/0x470 [ 3375.992744] __flush_work+0x105/0xa90 [ 3375.993682] __cancel_work_timer+0x368/0x4c0 [ 3375.994746] hci_request_cancel_all+0x73/0x230 [ 3375.995844] hci_dev_do_close+0xd9/0x1240 [ 3375.996869] hci_rfkill_set_block+0x166/0x1a0 [ 3375.997951] rfkill_set_block+0x1fd/0x540 [ 3375.998963] rfkill_fop_write+0x253/0x4b0 [ 3375.999979] vfs_write+0x29a/0xa70 [ 3376.000857] ksys_write+0x1f6/0x260 [ 3376.001756] do_syscall_64+0x33/0x40 [ 3376.002669] entry_SYSCALL_64_after_hwframe+0x62/0xc7 [ 3376.003888] [ 3376.003888] other info that might help us debug this: [ 3376.003888] [ 3376.005635] Chain exists of: [ 3376.005635] (work_completion)(&hdev->bg_scan_update) --> &data->open_mutex --> rfkill_global_mutex [ 3376.005635] [ 3376.008560] Possible unsafe locking scenario: [ 3376.008560] [ 3376.009854] CPU0 CPU1 [ 3376.010852] ---- ---- [ 3376.011847] lock(rfkill_global_mutex); [ 3376.012737] lock(&data->open_mutex); [ 3376.014116] lock(rfkill_global_mutex); [ 3376.015530] lock((work_completion)(&hdev->bg_scan_update)); [ 3376.016812] [ 3376.016812] *** DEADLOCK *** [ 3376.016812] [ 3376.018113] 1 lock held by syz-executor.5/27776: [ 3376.019131] #0: ffffffff85619628 (rfkill_global_mutex){+.+.}-{3:3}, at: rfkill_fop_write+0xff/0x4b0 [ 3376.021157] [ 3376.021157] stack backtrace: [ 3376.022126] CPU: 0 PID: 27776 Comm: syz-executor.5 Not tainted 5.10.207 #1 [ 3376.023619] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 3376.025439] Call Trace: [ 3376.026013] dump_stack+0x107/0x167 [ 3376.026806] check_noncircular+0x263/0x2e0 [ 3376.027726] ? print_circular_bug+0x470/0x470 [ 3376.028716] ? mark_held_locks+0x9e/0xe0 [ 3376.029601] ? asm_sysvec_apic_timer_interrupt+0x12/0x20 [ 3376.030778] ? alloc_chain_hlocks+0x342/0x5a0 [ 3376.031763] __lock_acquire+0x29e7/0x5b00 [ 3376.032694] ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0 [ 3376.033828] ? SOFTIRQ_verbose+0x10/0x10 [ 3376.034719] ? _raw_spin_unlock_irq+0x1f/0x30 [ 3376.035695] ? __lockdep_reset_lock+0x180/0x180 [ 3376.036712] ? _raw_spin_unlock_irq+0x1f/0x30 [ 3376.037683] ? finish_task_switch+0x126/0x5d0 [ 3376.038658] lock_acquire+0x197/0x470 [ 3376.039488] ? __flush_work+0xdd/0xa90 [ 3376.040358] ? lock_release+0x680/0x680 [ 3376.041218] ? __flush_work+0x78c/0xa90 [ 3376.042085] ? lock_chain_count+0x20/0x20 [ 3376.042992] ? io_schedule_timeout+0x140/0x140 [ 3376.043994] __flush_work+0x105/0xa90 [ 3376.044841] ? __flush_work+0xdd/0xa90 [ 3376.045686] ? lock_chain_count+0x20/0x20 [ 3376.046586] ? queue_delayed_work_on+0xe0/0xe0 [ 3376.047578] ? mark_held_locks+0x9e/0xe0 [ 3376.048466] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 3376.049588] ? asm_sysvec_apic_timer_interrupt+0x12/0x20 20:01:15 executing program 6: syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000140)='./file0\x00', 0x40000, 0x4, &(0x7f0000000200)=[{&(0x7f0000010000)="20000000000100000c000000d40000000f000000010000000000000000000000002000000020000020000000d7f4655fd7f4655f0100ffff53ef010001000000d7f4655f000000000000000001000000000000000b0000000002", 0x5a, 0x400}, {&(0x7f0000010400)="030000000400000005000000d4000f", 0xf, 0x800}, {&(0x7f0000000500)="ffffffffff070000000000000000000000000000000000000000000000000080ffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffff", 0x402, 0xc00}, {&(0x7f0000010e00)="ed41000000040000d7f4655fd7f4655fd7f4655f000000000000040002", 0x1d, 0x1600}], 0x0, &(0x7f00000003c0)=ANY=[]) chdir(&(0x7f0000000040)='./file0\x00') openat(0xffffffffffffff9c, &(0x7f0000000080)='./file1\x00', 0x105142, 0x0) r0 = openat(0xffffffffffffff9c, &(0x7f0000000200)='./file1\x00', 0x2, 0x0) write(r0, &(0x7f0000000240)="01", 0x1) r1 = openat(0xffffffffffffff9c, &(0x7f00000000c0)='./file2\x00', 0x105142, 0x0) r2 = openat(0xffffffffffffff9c, &(0x7f0000001340)='./file1\x00', 0x0, 0x0) copy_file_range(r2, 0x0, r1, &(0x7f0000000280)=0xc7000000, 0xc3a, 0x0) openat$sr(0xffffffffffffff9c, 0x0, 0x0, 0x0) [ 3376.050741] ? trace_hardirqs_on+0x5b/0x180 [ 3376.051760] ? asm_sysvec_apic_timer_interrupt+0x12/0x20 [ 3376.052938] ? mark_held_locks+0x9e/0xe0 [ 3376.053814] __cancel_work_timer+0x368/0x4c0 [ 3376.054760] ? cancel_delayed_work+0x20/0x20 [ 3376.055705] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 3376.056831] ? __cancel_work+0x250/0x2b0 [ 3376.057698] ? trace_hardirqs_on+0x5b/0x180 [ 3376.058624] ? __cancel_work+0x1bb/0x2b0 [ 3376.059506] ? try_to_grab_pending+0xe0/0xe0 [ 3376.060467] hci_request_cancel_all+0x73/0x230 [ 3376.061446] hci_dev_do_close+0xd9/0x1240 [ 3376.062334] ? asm_sysvec_apic_timer_interrupt+0x12/0x20 [ 3376.063492] ? hci_dev_open+0x350/0x350 [ 3376.064361] ? hci_rfkill_set_block+0x15e/0x1a0 [ 3376.065376] hci_rfkill_set_block+0x166/0x1a0 [ 3376.066336] ? hci_power_off+0x20/0x20 [ 3376.067169] rfkill_set_block+0x1fd/0x540 [ 3376.068086] rfkill_fop_write+0x253/0x4b0 [ 3376.068982] ? rfkill_sync_work+0xa0/0xa0 [ 3376.069879] ? security_file_permission+0x24e/0x570 [ 3376.070955] ? rfkill_sync_work+0xa0/0xa0 [ 3376.071845] vfs_write+0x29a/0xa70 [ 3376.072619] ksys_write+0x1f6/0x260 [ 3376.073400] ? __ia32_sys_read+0xb0/0xb0 [ 3376.074290] do_syscall_64+0x33/0x40 [ 3376.075092] entry_SYSCALL_64_after_hwframe+0x62/0xc7 [ 3376.076209] RIP: 0033:0x7f4119ea8b19 [ 3376.077011] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 3376.080998] RSP: 002b:00007f411741e188 EFLAGS: 00000246 ORIG_RAX: 0000000000000001 [ 3376.082642] RAX: ffffffffffffffda RBX: 00007f4119fbbf60 RCX: 00007f4119ea8b19 [ 3376.084205] RDX: 0000000000000008 RSI: 00000000200000c0 RDI: 0000000000000004 [ 3376.085761] RBP: 00007f4119f02f6d R08: 0000000000000000 R09: 0000000000000000 [ 3376.087310] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 3376.088867] R13: 00007ffddecd4bef R14: 00007f411741e300 R15: 0000000000022000 20:01:16 executing program 6: syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000140)='./file0\x00', 0x40000, 0x4, &(0x7f0000000200)=[{&(0x7f0000010000)="20000000000100000c000000d40000000f000000010000000000000000000000002000000020000020000000d7f4655fd7f4655f0100ffff53ef010001000000d7f4655f000000000000000001000000000000000b0000000002", 0x5a, 0x400}, {&(0x7f0000010400)="030000000400000005000000d4000f", 0xf, 0x800}, {&(0x7f0000000500)="ffffffffff070000000000000000000000000000000000000000000000000080ffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffff", 0x402, 0xc00}, {&(0x7f0000010e00)="ed41000000040000d7f4655fd7f4655fd7f4655f000000000000040002", 0x1d, 0x1600}], 0x0, &(0x7f00000003c0)=ANY=[]) chdir(&(0x7f0000000040)='./file0\x00') openat(0xffffffffffffff9c, &(0x7f0000000080)='./file1\x00', 0x105142, 0x0) r0 = openat(0xffffffffffffff9c, &(0x7f0000000200)='./file1\x00', 0x2, 0x0) write(r0, &(0x7f0000000240)="01", 0x1) r1 = openat(0xffffffffffffff9c, &(0x7f00000000c0)='./file2\x00', 0x105142, 0x0) r2 = openat(0xffffffffffffff9c, &(0x7f0000001340)='./file1\x00', 0x0, 0x0) copy_file_range(r2, 0x0, r1, &(0x7f0000000280)=0x404043000, 0xc3a, 0x0) openat$sr(0xffffffffffffff9c, 0x0, 0x0, 0x0) [ 3376.098301] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium 20:01:16 executing program 6: syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000140)='./file0\x00', 0x40000, 0x4, &(0x7f0000000200)=[{&(0x7f0000010000)="20000000000100000c000000d40000000f000000010000000000000000000000002000000020000020000000d7f4655fd7f4655f0100ffff53ef010001000000d7f4655f000000000000000001000000000000000b0000000002", 0x5a, 0x400}, {&(0x7f0000010400)="030000000400000005000000d4000f", 0xf, 0x800}, {&(0x7f0000000500)="ffffffffff070000000000000000000000000000000000000000000000000080ffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffff", 0x402, 0xc00}, {&(0x7f0000010e00)="ed41000000040000d7f4655fd7f4655fd7f4655f000000000000040002", 0x1d, 0x1600}], 0x0, &(0x7f00000003c0)=ANY=[]) chdir(&(0x7f0000000040)='./file0\x00') openat(0xffffffffffffff9c, &(0x7f0000000080)='./file1\x00', 0x105142, 0x0) r0 = openat(0xffffffffffffff9c, &(0x7f0000000200)='./file1\x00', 0x2, 0x0) write(r0, &(0x7f0000000240)="01", 0x1) r1 = openat(0xffffffffffffff9c, &(0x7f00000000c0)='./file2\x00', 0x105142, 0x0) r2 = openat(0xffffffffffffff9c, &(0x7f0000001340)='./file1\x00', 0x0, 0x0) copy_file_range(r2, 0x0, r1, &(0x7f0000000280)=0x1fffffffc00, 0xc3a, 0x0) openat$sr(0xffffffffffffff9c, 0x0, 0x0, 0x0) 20:01:16 executing program 1: preadv(0xffffffffffffffff, &(0x7f0000002400)=[{&(0x7f0000000440)=""/213, 0xd5}], 0x1, 0x0, 0x0) fallocate(0xffffffffffffffff, 0x0, 0x40, 0x3) r0 = openat(0xffffffffffffff9c, &(0x7f0000000280)='./file0\x00', 0x46e2, 0x0) ioctl$AUTOFS_DEV_IOCTL_READY(r0, 0xc0189376, &(0x7f00000000c0)=ANY=[@ANYBLOB="010000000100000018000400", @ANYRES32=r0, @ANYBLOB="05000000000000002e2f66696c653000"]) r1 = creat(&(0x7f0000000140)='./file0\x00', 0x51) fallocate(r1, 0x22, 0x0, 0x0) tee(0xffffffffffffffff, 0xffffffffffffffff, 0x5, 0x0) dup2(0xffffffffffffffff, 0xffffffffffffffff) ftruncate(r0, 0x1000003) fcntl$dupfd(0xffffffffffffffff, 0x0, 0xffffffffffffffff) perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x2) openat(0xffffffffffffff9c, &(0x7f00000004c0)='./file0\x00', 0x40, 0x9a) ioctl$FS_IOC_FSSETXATTR(r0, 0x40086602, &(0x7f0000000000)) getsockopt$inet6_IPV6_IPSEC_POLICY(r0, 0x29, 0x22, 0x0, &(0x7f0000000100)) fsetxattr$security_capability(r0, &(0x7f0000000040), &(0x7f0000000080)=@v2={0x2000000, [{}, {0x8000000, 0x3}]}, 0x14, 0x0) socket$netlink(0x10, 0x3, 0x0) ioctl$KDSKBLED(0xffffffffffffffff, 0x4b65, 0x8) ioctl$BTRFS_IOC_SUBVOL_GETFLAGS(0xffffffffffffffff, 0x80089419, &(0x7f0000000480)) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5b, 0x1, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5, 0x0, @perf_config_ext={0x7}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) write$binfmt_elf64(r0, &(0x7f00000001c0)=ANY=[], 0xfdef) 20:01:16 executing program 3: ioctl$TCSETSF2(0xffffffffffffffff, 0x402c542d, &(0x7f0000000000)={0x6, 0x0, 0x0, 0x0, 0x2, "77004a6efdff00"}) r0 = openat$tun(0xffffffffffffff9c, &(0x7f0000000700), 0x0, 0x0) socket$inet6_udp(0xa, 0x2, 0x0) timerfd_create(0x0, 0x0) r1 = syz_io_uring_setup(0x5, &(0x7f0000000080), &(0x7f0000ffd000/0x2000)=nil, &(0x7f00000b0000)=nil, &(0x7f0000000100)=0x0, &(0x7f0000000540)=0x0) syz_io_uring_submit(r2, r3, &(0x7f0000000240)=@IORING_OP_READ=@pass_buffer={0x16, 0x0, 0x0, @fd_index=0x4, 0x0, 0x0}, 0x0) io_uring_enter(r1, 0x5c33, 0x0, 0x0, 0x0, 0x0) ioctl$TUNSETQUEUE(r0, 0x400454ca, &(0x7f0000000000)={'veth0_vlan\x00'}) io_uring_setup(0x0, &(0x7f00000001c0)={0x0, 0x0, 0x0, 0x0, 0x1cf}) ioctl$TUNSETLINK(0xffffffffffffffff, 0x400454cd, 0xf) r4 = socket$inet(0x2, 0xa, 0x0) ioctl$FS_IOC_GETFSMAP(0xffffffffffffffff, 0xc0c0583b, 0x0) ioctl$sock_inet_SIOCGIFNETMASK(r4, 0x8914, &(0x7f00000001c0)={'veth0_vlan\x00', {0x2, 0x0, @empty}}) io_cancel(0x0, &(0x7f0000000040)={0x0, 0x0, 0x0, 0x8, 0x7ff, r4, &(0x7f0000000140)="786d49385046e60a89f4ef27c13fe91ed5c2a0ad4799839ad76eac97ebca3c2a947adbdd6265238f7904b85cc08c3ce69b7f88cc027a180673b5a11d4907280a124cffdb6163348c7045dcd02d6f210fe993", 0x52, 0x2, 0x0, 0x1}, &(0x7f0000000280)) ioctl$EXT4_IOC_GROUP_EXTEND(0xffffffffffffffff, 0x40086607, &(0x7f0000000100)) r5 = perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r6 = clone3(&(0x7f0000000580)={0x10002a180, &(0x7f0000000340), &(0x7f0000000380), &(0x7f00000003c0), {0x2d}, &(0x7f0000000400)=""/38, 0x26, &(0x7f0000000440)=""/157, &(0x7f0000000500)=[0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff], 0x4}, 0x58) perf_event_open(&(0x7f00000002c0)={0x4, 0x80, 0xec, 0x0, 0xc5, 0x0, 0x0, 0x3, 0x10, 0x8, 0x0, 0x0, 0x0, 0x1, 0x0, 0x1, 0x1, 0x1, 0x1, 0x1, 0x0, 0x1, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x8, 0x0, @perf_config_ext={0x80000001, 0x496}, 0x12010, 0x1, 0x6, 0x0, 0x1, 0x1, 0x5e, 0x0, 0x4, 0x0, 0x3f}, r6, 0x6, r5, 0x1) dup3(r4, r0, 0x0) 20:01:16 executing program 0: perf_event_open(&(0x7f0000001d80)={0x2, 0x80, 0x46, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) clone3(&(0x7f0000000200)={0x31081000, &(0x7f0000000100), 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) 20:01:16 executing program 7: syz_open_procfs$namespace(0x0, &(0x7f0000000000)='ns/uts\x00') ioctl$NS_GET_PARENT(0xffffffffffffffff, 0xb702, 0x0) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x1, 0x0, 0x5e, 0x0, 0x9, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, @perf_config_ext}, 0x0, 0x8, 0xffffffffffffffff, 0x0) ioctl$PIO_UNISCRNMAP(0xffffffffffffffff, 0x4b6a, 0x0) add_key$keyring(&(0x7f0000000780), &(0x7f0000000100)={'syz', 0x3}, 0x0, 0x0, 0xfffffffffffffffd) getsockopt$IP_VS_SO_GET_DAEMON(0xffffffffffffffff, 0x0, 0x487, 0x0, 0x0) sendmmsg(0xffffffffffffffff, 0x0, 0x0, 0x8000080) r0 = openat$sndseq(0xffffffffffffff9c, &(0x7f0000000080), 0x2) fcntl$dupfd(0xffffffffffffffff, 0x0, 0xffffffffffffffff) r1 = fcntl$dupfd(r0, 0x0, r0) r2 = perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0xc, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x0, 0x7}, 0x1080, 0x0, 0x0, 0x0, 0xb7a, 0x1000000}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0xb) ioctl$AUTOFS_DEV_IOCTL_EXPIRE(r1, 0xc018937c, &(0x7f0000000180)=ANY=[@ANYBLOB="44873b09d818ec311f11ca820518489eaef12ab522f9c286553772e713b1df495925abcd4882995466ac072b5896adb78235", @ANYRES32=r2]) ioctl$SNDRV_SEQ_IOCTL_CREATE_QUEUE(r1, 0xc08c5332, &(0x7f0000000200)={0x0, 0x0, 0x0, 'queue1\x00'}) write$sndseq(r0, &(0x7f00000002c0)=[{0x0, 0x0, 0x0, 0x0, @time, {}, {}, @ext={0xffffffffffffff94, 0x0}}], 0x200002dc) r3 = add_key(&(0x7f0000000280)='id_resolver\x00', &(0x7f0000000040)={'syz', 0x2}, &(0x7f0000000080)="fa", 0x1, 0xfffffffffffffffe) r4 = openat$nvram(0xffffffffffffff9c, &(0x7f00000000c0), 0x1, 0x0) socketpair$nbd(0x1, 0x1, 0x0, &(0x7f0000000140)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$AUTOFS_DEV_IOCTL_SETPIPEFD(0xffffffffffffffff, 0xc0189378, &(0x7f00000001c0)={{0x1, 0x1, 0x18, r4, {r5}}, './file0\x00'}) keyctl$chown(0x4, r3, 0x0, 0xffffffffffffffff) keyctl$KEYCTL_MOVE(0x1e, 0x0, r3, 0x0, 0x1) [ 3376.304389] EXT4-fs (loop6): mounted filesystem without journal. Opts: ,errors=continue [ 3376.450417] device veth0_vlan entered promiscuous mode [ 3381.784737] Bluetooth: hci2: command 0x0409 tx timeout [ 3383.832822] Bluetooth: hci2: command 0x041b tx timeout [ 3385.551471] ieee80211 phy75: Selected rate control algorithm 'minstrel_ht' [ 3385.585050] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 3385.586692] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 3385.588290] IPv6: ADDRCONF(NETDEV_CHANGE): wlan0: link becomes ready [ 3385.597589] ieee80211 phy76: Selected rate control algorithm 'minstrel_ht' [ 3385.633247] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 3385.634833] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 3385.636454] IPv6: ADDRCONF(NETDEV_CHANGE): wlan1: link becomes ready [ 3385.744929] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium [ 3385.880770] Bluetooth: hci2: command 0x040f tx timeout VM DIAGNOSIS: 20:01:16 Registers: info registers vcpu 0 RAX=0000000000000034 RBX=00000000000003f8 RCX=0000000000000000 RDX=00000000000003f8 RSI=ffffffff822cb781 RDI=ffffffff879e8240 RBP=ffffffff879e8200 RSP=ffff88801e1e71c8 R8 =0000000000000001 R9 =0000000000000003 R10=0000000000000000 R11=0000000000000001 R12=0000000000000034 R13=0000000000000034 R14=ffffffff879e8200 R15=dffffc0000000000 RIP=ffffffff822cb7d8 RFL=00000002 [-------] CPL=0 II=0 A20=1 SMM=0 HLT=0 ES =0000 0000000000000000 00000000 00000000 CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA] SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS [-WA] DS =0000 0000000000000000 00000000 00000000 FS =0000 00007f411741e700 00000000 00000000 GS =0000 ffff88806ce00000 00000000 00000000 LDT=0000 fffffe7800000000 00000000 00000000 TR =0040 fffffe0000003000 00004087 00008b00 DPL=0 TSS64-busy GDT= fffffe0000001000 0000007f IDT= fffffe0000000000 00000fff CR0=80050033 CR2=00007fd30b0b3ae0 CR3=0000000046128000 CR4=00350ef0 DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 DR6=00000000ffff0ff0 DR7=000000000ddd062a EFER=0000000000000d01 FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80 FPR0=0000000000000000 0000 FPR1=0000000000000000 0000 FPR2=0000000000000000 0000 FPR3=0000000000000000 0000 FPR4=0000000000000000 0000 FPR5=0000000000000000 0000 FPR6=0000000000000000 0000 FPR7=0000000000000000 0000 XMM00=00000000000000000000000000000000 XMM01=ffffffffffffffffffffffffffffffff XMM02=00000000000000000000000000000000 XMM03=00000000000000000000000000000000 XMM04=000000000000000000000000000000ff XMM05=00000000000000000000000000000000 XMM06=0000000000000000000000524f525245 XMM07=00000000000000000000000000000000 XMM08=000000000000000000524f5252450040 XMM09=00000000000000000000000000000000 XMM10=00000000000000000000000000000000 XMM11=00000000000000000000000000000000 XMM12=00000000000000000000000000000000 XMM13=00000000000000000000000000000000 XMM14=00000000000000000000000000000000 XMM15=00000000000000000000000000000000 info registers vcpu 1 RAX=ffffffff8447ccc8 RBX=dffffc0000000000 RCX=0000000000000000 RDX=0000000000000006 RSI=ffffffff84ff85e0 RDI=ffffffff8447ccc0 RBP=ffffffff8447ccc0 RSP=ffff888056f2f8a8 R8 =0000000000000000 R9 =ffffffff8567278f R10=fffffbfff0ace4f1 R11=0000000000000001 R12=ffffffff84ff85e0 R13=0000000000000001 R14=ffffffff84efeaa0 R15=ffff888056f2f978 RIP=ffffffff81ff2684 RFL=00000246 [---Z-P-] CPL=0 II=0 A20=1 SMM=0 HLT=0 ES =0000 0000000000000000 00000000 00000000 CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA] SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS [-WA] DS =0000 0000000000000000 00000000 00000000 FS =0000 0000555557223400 00000000 00000000 GS =0000 ffff88806cf00000 00000000 00000000 LDT=0000 fffffe3400000000 00000000 00000000 TR =0040 fffffe000004a000 00004087 00008b00 DPL=0 TSS64-busy GDT= fffffe0000048000 0000007f IDT= fffffe0000000000 00000fff CR0=80050033 CR2=0000555557224c18 CR3=0000000040688000 CR4=00350ee0 DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 DR6=00000000ffff0ff0 DR7=0000000000000400 EFER=0000000000000d01 FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80 FPR0=0000000000000000 0000 FPR1=0000000000000000 0000 FPR2=0000000000000000 0000 FPR3=0000000000000000 0000 FPR4=0000000000000000 0000 FPR5=0000000000000000 0000 FPR6=0000000000000000 0000 FPR7=0000000000000000 0000 XMM00=00000000000000000000000000000000 XMM01=00007fec372bb7c000007fec372bb7c8 XMM02=00007fec372bb7e000007fec372bb7c0 XMM03=00007fec372bb7c800007fec372bb7c0 XMM04=0000000000000000000007ffffffffff XMM05=ffffffffffffffffffffffffffffffff XMM06=ffffffffffffffffffffffffffffffff XMM07=ffffffffffffffffffffffffffffffff XMM08=ffffffffffffffffffffffffffffffff XMM09=00000000000000000000000000000000 XMM10=00000000000000000000000000000000 XMM11=00000000000000000000000000000000 XMM12=00000000000000000000000000000000 XMM13=00000000000000000000000000000000 XMM14=00000000000000000000000000000000 XMM15=00000000000000000000000000000000