event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) clone3(&(0x7f0000000140)={0xf0ff1f00000000, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) 19:21:08 executing program 0: r0 = perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r1 = perf_event_open(&(0x7f0000001d80)={0x2, 0x80, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, r0, 0x0) ioctl$AUTOFS_DEV_IOCTL_FAIL(0xffffffffffffffff, 0xc0189377, &(0x7f0000001240)=ANY=[@ANYBLOB="010000000100000018000000", @ANYRES32=r1, @ANYBLOB="08000000000100002e2f66696c6530006f9808a03c1ca2752f0cdd912ef570b1b61315682cea42490164a37dfc1877c7d0773451b5d28239adcfe5d595a73bc44f5c4b7625914a82496d28a825d9a1fd0f1cd8ad4817c75d9407a0873240621d209c4b051ff180323c663e77b617ec1bdc91b9945129671c8881e61f317394dfa4338a917e609a36a781b7a107086a0548578771c328427db689e0d685cfb7902edad2157e"]) ioctl$PERF_EVENT_IOC_PAUSE_OUTPUT(r2, 0x40042409, 0x1) perf_event_open(&(0x7f0000001300)={0x3, 0x80, 0x0, 0xd0, 0x0, 0x6, 0x0, 0x5, 0x10, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x1, 0x0, 0x0, 0x1, 0x1, 0x0, 0x3, 0x1, 0x1, 0x0, 0x0, 0x1, 0x1, 0x1, 0x0, 0x1, 0x1, 0x1, 0x1, 0x1, 0x1, 0x1, 0x1, 0x1, 0x1, 0x1, 0x0, 0x1, 0x0, 0xfffffff8, 0x1, @perf_config_ext={0x7, 0x9954}, 0x40, 0x200, 0x7, 0xf, 0xdc44, 0x7ff, 0x1, 0x0, 0x80000001, 0x0, 0x100000001}, 0x0, 0xffffffffffffffff, r1, 0x8) r3 = perf_event_open(&(0x7f0000001d80)={0x2, 0x80, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, r0, 0x0) r4 = syz_open_dev$sg(&(0x7f0000000400), 0x0, 0x0) r5 = syz_open_dev$evdev(&(0x7f0000000040), 0x0, 0x8802) r6 = fcntl$dupfd(r5, 0x0, r4) writev(r6, &(0x7f0000000140)=[{&(0x7f0000000300)="0040abe02400030021206cda3b5e5672b89aeddb2a535fbd", 0x7e0}], 0x1) perf_event_open(&(0x7f0000001140)={0x1, 0x80, 0x5, 0x2c, 0xff, 0xff, 0x0, 0x8, 0x40000, 0x2, 0x0, 0x1, 0x0, 0x1, 0x0, 0x1, 0x0, 0x0, 0x1, 0x0, 0x0, 0x1, 0x1, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x1, 0x1, 0x0, 0x1, 0x0, 0x0, 0x0, 0x1, 0x0, 0x1, 0x1, 0x0, 0x0, 0x1, 0x1, 0x1, 0x1, 0x0, 0x0, 0xd4, 0x3, @perf_config_ext={0x4, 0x629}, 0x888, 0x6, 0x1, 0x0, 0x2f, 0x8, 0x3ff, 0x0, 0x3, 0x0, 0xf220}, 0xffffffffffffffff, 0x3, r6, 0x9) ioctl$SECCOMP_IOCTL_NOTIF_RECV(0xffffffffffffffff, 0xc0502100, &(0x7f00000010c0)) readv(r3, &(0x7f0000001200)=[{&(0x7f00000000c0)=""/4096, 0x1000}], 0x1) 19:21:08 executing program 7: r0 = perf_event_open(&(0x7f0000000200)={0x2, 0x80, 0x8, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x1, 0xfffffffffffffff8}, 0x0, 0x8}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r1 = creat(0x0, 0x0) ftruncate(r1, 0xff) clone3(&(0x7f0000000140)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) write(0xffffffffffffffff, 0x0, 0x0) r2 = fsmount(r1, 0x1, 0x4) mount$9p_fd(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000000040), 0x14000, &(0x7f0000000080)={'trans=fd,', {'rfdno', 0x3d, r2}, 0x2c, {'wfdno', 0x3d, r0}, 0x2c, {[{@noextend}, {@cache_fscache}, {@access_any}, {@cache_mmap}, {@msize={'msize', 0x3d, 0x5}}], [{@smackfsdef={'smackfsdef', 0x3d, '/'}}]}}) 19:21:08 executing program 1: perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) clone3(&(0x7f0000000140)={0x100000000000000, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) 19:21:08 executing program 1: perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) clone3(&(0x7f0000000140)={0x800000000000000, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) 19:21:24 executing program 1: perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) clone3(&(0x7f0000000140)={0x1100000000000000, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) 19:21:24 executing program 2: perf_event_open(&(0x7f0000000200)={0x2, 0x80, 0x8, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) creat(0x0, 0x0) syz_io_uring_setup(0x44af, 0x0, &(0x7f0000000000/0x12000)=nil, &(0x7f000000e000/0x1000)=nil, &(0x7f0000000080), &(0x7f0000000040)) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) clone3(&(0x7f0000000140)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) 19:21:24 executing program 5: perf_event_open(&(0x7f0000000200)={0x2, 0x80, 0x8, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_io_uring_setup(0x0, &(0x7f0000000100)={0x0, 0x2, 0x0, 0x0, 0x389}, &(0x7f0000000000/0x12000)=nil, &(0x7f000000e000/0x1000)=nil, &(0x7f0000000080), &(0x7f0000000040)) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) clone3(&(0x7f0000000140)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) write(0xffffffffffffffff, &(0x7f0000000100)='?', 0x1) 19:21:24 executing program 4: clone3(&(0x7f0000000140)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) (fail_nth: 57) [ 772.112230] FAULT_INJECTION: forcing a failure. [ 772.112230] name failslab, interval 1, probability 0, space 0, times 0 [ 772.114583] CPU: 0 PID: 10807 Comm: syz-executor.4 Not tainted 5.10.185 #1 [ 772.116265] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 772.117936] Call Trace: [ 772.118585] dump_stack+0x107/0x167 [ 772.119338] should_fail.cold+0x5/0xa [ 772.120270] ? anon_vma_fork+0xf1/0x640 [ 772.121084] should_failslab+0x5/0x20 [ 772.122003] kmem_cache_alloc+0x5b/0x310 [ 772.122842] anon_vma_fork+0xf1/0x640 [ 772.123628] ? __vm_enough_memory+0x184/0x360 [ 772.124572] dup_mm+0x861/0x1110 [ 772.125285] ? vm_area_dup+0x290/0x290 [ 772.126235] ? __raw_spin_lock_init+0x36/0x110 [ 772.127180] copy_process+0x24e2/0x6740 [ 772.128154] ? lock_acquire+0x197/0x470 [ 772.128977] ? find_held_lock+0x2c/0x110 [ 772.129980] ? __cleanup_sighand+0xb0/0xb0 [ 772.130866] ? _copy_from_user+0xfb/0x1b0 [ 772.131932] kernel_clone+0xe7/0x980 [ 772.132700] ? lock_acquire+0x197/0x470 [ 772.133515] ? create_io_thread+0xf0/0xf0 [ 772.134389] ? ksys_write+0x21a/0x260 [ 772.135193] ? lock_downgrade+0x6d0/0x6d0 [ 772.136063] __do_sys_clone3+0x1e5/0x320 [ 772.136909] ? __do_sys_clone+0x110/0x110 [ 772.137793] ? rcu_read_lock_any_held+0x75/0xa0 [ 772.138760] ? vfs_write+0x354/0xa70 [ 772.139535] ? fput_many+0x2f/0x1a0 [ 772.140296] ? ksys_write+0x1a9/0x260 [ 772.140430] FAULT_INJECTION: forcing a failure. [ 772.140430] name failslab, interval 1, probability 0, space 0, times 0 [ 772.141085] ? __ia32_sys_read+0xb0/0xb0 [ 772.141108] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 772.141137] ? syscall_enter_from_user_mode+0x1d/0x50 [ 772.146332] ? trace_hardirqs_on+0x5b/0x180 [ 772.147213] do_syscall_64+0x33/0x40 [ 772.147981] entry_SYSCALL_64_after_hwframe+0x61/0xc6 [ 772.149026] RIP: 0033:0x7f0ecd504b19 [ 772.149786] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 772.153544] RSP: 002b:00007f0ecaa7a188 EFLAGS: 00000246 ORIG_RAX: 00000000000001b3 [ 772.155094] RAX: ffffffffffffffda RBX: 00007f0ecd617f60 RCX: 00007f0ecd504b19 [ 772.156568] RDX: 0000000000000000 RSI: 0000000000000058 RDI: 0000000020000140 [ 772.158023] RBP: 00007f0ecaa7a1d0 R08: 0000000000000000 R09: 0000000000000000 [ 772.159470] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 772.160927] R13: 00007fffa049ab2f R14: 00007f0ecaa7a300 R15: 0000000000022000 [ 772.162414] CPU: 1 PID: 10814 Comm: syz-executor.6 Not tainted 5.10.185 #1 19:21:24 executing program 0: r0 = perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) perf_event_open(&(0x7f0000001d80)={0x2, 0x80, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, r0, 0x0) r1 = perf_event_open(&(0x7f0000001d80)={0x2, 0x80, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x400, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffffffffffe}, 0x0, 0x6, r0, 0x0) write(r0, &(0x7f0000001e00)="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", 0x1000) readv(r1, &(0x7f0000001200)=[{&(0x7f00000000c0)=""/4096, 0x1000}], 0x1) 19:21:24 executing program 3: creat(0x0, 0x0) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) clone3(&(0x7f0000000140)={0x8000000, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) 19:21:24 executing program 7: sendmsg$ETHTOOL_MSG_LINKMODES_SET(0xffffffffffffffff, &(0x7f0000000280)={&(0x7f0000000080)={0x10, 0x0, 0x0, 0x200000}, 0xc, &(0x7f00000001c0)={&(0x7f00000000c0)={0x54, 0x0, 0x1, 0x70bd28, 0x25dfdbfc, {}, [@ETHTOOL_A_LINKMODES_SPEED={0x8, 0x5, 0x20}, @ETHTOOL_A_LINKMODES_AUTONEG={0x5, 0x2, 0x2}, @ETHTOOL_A_LINKMODES_HEADER={0x20, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_FLAGS={0x8, 0x3, 0x2}, @ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'caif0\x00'}]}, @ETHTOOL_A_LINKMODES_SPEED={0x8, 0x5, 0x9}, @ETHTOOL_A_LINKMODES_DUPLEX={0x5, 0x6, 0x7}]}, 0x54}, 0x1, 0x0, 0x0, 0x4008000}, 0x40000) r0 = perf_event_open(&(0x7f0000000200)={0x2, 0x80, 0x9, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r1 = syz_open_dev$rtc(&(0x7f0000000000), 0x0, 0x420000) ioctl$EXT4_IOC_MOVE_EXT(r0, 0xc028660f, &(0x7f0000000040)={0x0, r1, 0x7fff, 0x0, 0xffff, 0x3}) creat(0x0, 0x0) r2 = socket$netlink(0x10, 0x3, 0x0) sendmsg$nl_generic(r2, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000000)={0x2c, 0x16, 0x1, 0x0, 0x0, {0xa}, [@nested={0x18, 0x0, 0x0, 0x1, [@typed={0x14, 0xa, 0x0, 0x0, @ipv6=@private1}]}]}, 0x2c}}, 0x0) write$binfmt_elf64(r2, &(0x7f00000002c0)={{0x7f, 0x45, 0x4c, 0x46, 0x9, 0x9, 0x0, 0x9, 0xff, 0x3, 0x3e, 0xffff, 0x174, 0x40, 0x126, 0x6, 0x80, 0x38, 0x1, 0x4, 0x0, 0xe7}, [{0x5, 0x1, 0x4000000000000000, 0x0, 0x5, 0x80, 0x7, 0xffff}], "5a83152569829820c0e1e9b6b59cb6fd15e3aa7cadaf74d7642b7e58c8814b9e0fdde7c2b8fed5e52885", ['\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00']}, 0x9a2) clone3(&(0x7f0000000140)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) write(0xffffffffffffffff, 0x0, 0x0) 19:21:24 executing program 6: syz_open_dev$sg(0x0, 0x0, 0x0) syz_io_uring_setup(0x4ee5, &(0x7f0000000080), &(0x7f0000ffd000/0x3000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000040), &(0x7f0000000100)) (fail_nth: 65) [ 772.163874] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 772.165792] Call Trace: [ 772.166346] dump_stack+0x107/0x167 [ 772.167092] should_fail.cold+0x5/0xa [ 772.167893] ? xas_alloc+0x336/0x440 [ 772.168655] should_failslab+0x5/0x20 [ 772.169436] kmem_cache_alloc+0x5b/0x310 [ 772.170266] xas_alloc+0x336/0x440 [ 772.170994] xas_create+0x34a/0x10d0 [ 772.171769] ? kernel_text_address+0xf2/0x120 [ 772.172689] ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0 [ 772.173758] xas_store+0x8c/0x1c40 [ 772.174494] __xa_store+0x164/0x2d0 [ 772.175244] ? xa_delete_node+0x280/0x280 [ 772.176114] ? trace_hardirqs_on+0x5b/0x180 [ 772.176998] xa_store+0x31/0x50 [ 772.177674] __io_uring_add_tctx_node+0x1cf/0x520 [ 772.178655] ? io_uring_alloc_task_context+0x6a0/0x6a0 [ 772.179734] ? __alloc_fd+0x2b8/0x630 [ 772.180541] io_uring_setup+0x2011/0x2a30 [ 772.181393] ? wait_for_completion_io+0x270/0x270 [ 772.182378] ? __do_sys_io_uring_enter+0x1730/0x1730 [ 772.183432] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 772.184520] ? syscall_enter_from_user_mode+0x1d/0x50 [ 772.185567] do_syscall_64+0x33/0x40 [ 772.186333] entry_SYSCALL_64_after_hwframe+0x61/0xc6 [ 772.187364] RIP: 0033:0x7f8249b64b19 [ 772.188130] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 772.191873] RSP: 002b:00007f82470da108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9 [ 772.193424] RAX: ffffffffffffffda RBX: 00007f8249c77f60 RCX: 00007f8249b64b19 [ 772.194864] RDX: 0000000020ffc000 RSI: 0000000020000080 RDI: 0000000000004ee5 [ 772.196318] RBP: 0000000020000080 R08: 0000000020000100 R09: 0000000020000100 [ 772.197766] R10: 0000000020000040 R11: 0000000000000202 R12: 0000000020000100 [ 772.199206] R13: 0000000020ffc000 R14: 0000000020000040 R15: 0000000020ffd000 19:21:24 executing program 1: perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) clone3(&(0x7f0000000140)={0x2000000000000000, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) 19:21:24 executing program 4: clone3(&(0x7f0000000140)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) (fail_nth: 58) 19:21:24 executing program 6: syz_open_dev$sg(0x0, 0x0, 0x0) syz_io_uring_setup(0x4ee5, &(0x7f0000000080), &(0x7f0000ffd000/0x3000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000040), &(0x7f0000000100)) (fail_nth: 66) 19:21:24 executing program 1: perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) clone3(&(0x7f0000000140)={0x3f00000000000000, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) [ 772.447370] FAULT_INJECTION: forcing a failure. [ 772.447370] name failslab, interval 1, probability 0, space 0, times 0 [ 772.449757] CPU: 1 PID: 10925 Comm: syz-executor.4 Not tainted 5.10.185 #1 [ 772.451155] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 772.452841] Call Trace: [ 772.453388] dump_stack+0x107/0x167 [ 772.454127] should_fail.cold+0x5/0xa [ 772.454911] ? create_object.isra.0+0x3a/0xa20 [ 772.455845] should_failslab+0x5/0x20 [ 772.456621] kmem_cache_alloc+0x5b/0x310 [ 772.457445] create_object.isra.0+0x3a/0xa20 [ 772.458344] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 772.459389] kmem_cache_alloc+0x159/0x310 [ 772.460254] anon_vma_clone+0xdc/0x590 [ 772.461059] anon_vma_fork+0x82/0x640 [ 772.461845] ? __vm_enough_memory+0x184/0x360 [ 772.462767] dup_mm+0x861/0x1110 [ 772.463473] ? vm_area_dup+0x290/0x290 [ 772.464288] ? __raw_spin_lock_init+0x36/0x110 [ 772.465236] copy_process+0x24e2/0x6740 [ 772.466048] ? lock_acquire+0x197/0x470 [ 772.466859] ? find_held_lock+0x2c/0x110 [ 772.467708] ? __cleanup_sighand+0xb0/0xb0 [ 772.468587] ? _copy_from_user+0xfb/0x1b0 [ 772.469443] kernel_clone+0xe7/0x980 [ 772.470208] ? lock_acquire+0x197/0x470 [ 772.471018] ? create_io_thread+0xf0/0xf0 [ 772.471895] ? ksys_write+0x21a/0x260 [ 772.472668] ? lock_downgrade+0x6d0/0x6d0 [ 772.473520] __do_sys_clone3+0x1e5/0x320 [ 772.474356] ? __do_sys_clone+0x110/0x110 [ 772.475225] ? rcu_read_lock_any_held+0x75/0xa0 [ 772.476173] ? vfs_write+0x354/0xa70 [ 772.476944] ? fput_many+0x2f/0x1a0 [ 772.477684] ? ksys_write+0x1a9/0x260 [ 772.478464] ? __ia32_sys_read+0xb0/0xb0 [ 772.479291] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 772.480368] ? syscall_enter_from_user_mode+0x1d/0x50 [ 772.481407] ? trace_hardirqs_on+0x5b/0x180 [ 772.482300] do_syscall_64+0x33/0x40 [ 772.483052] entry_SYSCALL_64_after_hwframe+0x61/0xc6 [ 772.484094] RIP: 0033:0x7f0ecd504b19 [ 772.484849] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 772.488565] RSP: 002b:00007f0ecaa7a188 EFLAGS: 00000246 ORIG_RAX: 00000000000001b3 [ 772.490097] RAX: ffffffffffffffda RBX: 00007f0ecd617f60 RCX: 00007f0ecd504b19 [ 772.491544] RDX: 0000000000000000 RSI: 0000000000000058 RDI: 0000000020000140 [ 772.492989] RBP: 00007f0ecaa7a1d0 R08: 0000000000000000 R09: 0000000000000000 [ 772.494421] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 772.495859] R13: 00007fffa049ab2f R14: 00007f0ecaa7a300 R15: 0000000000022000 19:21:24 executing program 0: sync() r0 = perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x4, 0x7}, 0x0, 0xc, 0xffffffffffffffff, 0x0) getpgrp(0xffffffffffffffff) r1 = getpgrp(0x0) pidfd_open(r1, 0x0) perf_event_open(&(0x7f0000001d80)={0x2, 0x80, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x0, 0xfffffffffffffff8}, 0x100, 0x0, 0x0, 0x0, 0x1, 0x0, 0xfffc, 0x0, 0xfffffffe, 0x0, 0xc26}, r1, 0xffffffffffffffff, r0, 0x9) r2 = perf_event_open(&(0x7f0000001180)={0x5, 0x80, 0x40, 0x0, 0x7d, 0x20, 0x0, 0xff, 0x2000, 0x4, 0x0, 0x0, 0x0, 0x1, 0x0, 0x1, 0x0, 0x1, 0x1, 0x1, 0x0, 0x0, 0x0, 0x1, 0x0, 0x3, 0x0, 0x0, 0x1, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x1, 0x0, 0x1, 0x1, 0x1, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xcc8, 0x0, @perf_bp={&(0x7f0000001140), 0x1}, 0x2420, 0xfffffffffffffff8, 0x4, 0x1, 0x9, 0x8, 0x8001, 0x0, 0xce, 0x0, 0x8}, r1, 0xf, 0xffffffffffffffff, 0xa) perf_event_open(&(0x7f00000010c0)={0x0, 0x80, 0x0, 0x2, 0x1, 0x7f, 0x0, 0x5, 0x1608c0, 0xa, 0x0, 0x0, 0x1, 0x1, 0x0, 0x0, 0x1, 0x0, 0x1, 0x1, 0x0, 0x1, 0x0, 0x1, 0x1, 0x1, 0x1, 0x0, 0x1, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x1, 0x0, 0x0, 0x1, 0x1, 0x0, 0x1, 0x1, 0x0, 0x0, 0x1, 0x1, 0x0, 0xa455, 0x95c626b6369b6b1d, @perf_bp, 0xe320, 0x9, 0x1, 0x1, 0x19aa73f8, 0xfffffff9, 0x7f, 0x0, 0x1, 0x0, 0x3d3c}, r1, 0x3, r2, 0x1) r3 = perf_event_open(&(0x7f0000001d80)={0x2, 0x80, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, r0, 0x0) readv(r3, &(0x7f0000001200)=[{&(0x7f00000000c0)=""/4096, 0x1000}], 0x1) [ 772.541934] FAULT_INJECTION: forcing a failure. [ 772.541934] name failslab, interval 1, probability 0, space 0, times 0 [ 772.544384] CPU: 0 PID: 10945 Comm: syz-executor.6 Not tainted 5.10.185 #1 [ 772.545824] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 772.547547] Call Trace: [ 772.548113] dump_stack+0x107/0x167 [ 772.548887] should_fail.cold+0x5/0xa [ 772.549695] ? create_object.isra.0+0x3a/0xa20 [ 772.550643] should_failslab+0x5/0x20 [ 772.551430] kmem_cache_alloc+0x5b/0x310 [ 772.552284] ? mark_held_locks+0x9e/0xe0 [ 772.553146] create_object.isra.0+0x3a/0xa20 [ 772.554052] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 772.555093] kmem_cache_alloc+0x159/0x310 [ 772.555968] xas_alloc+0x336/0x440 [ 772.556717] xas_create+0x34a/0x10d0 [ 772.557501] ? kernel_text_address+0xf2/0x120 [ 772.558428] ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0 [ 772.559499] xas_store+0x8c/0x1c40 [ 772.560258] __xa_store+0x164/0x2d0 [ 772.561034] ? xa_delete_node+0x280/0x280 [ 772.561893] ? trace_hardirqs_on+0x5b/0x180 [ 772.562788] xa_store+0x31/0x50 [ 772.563483] __io_uring_add_tctx_node+0x1cf/0x520 [ 772.564485] ? io_uring_alloc_task_context+0x6a0/0x6a0 [ 772.565594] ? __alloc_fd+0x2b8/0x630 [ 772.566389] io_uring_setup+0x2011/0x2a30 [ 772.567246] ? wait_for_completion_io+0x270/0x270 [ 772.568268] ? __do_sys_io_uring_enter+0x1730/0x1730 [ 772.569331] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 772.570421] ? syscall_enter_from_user_mode+0x1d/0x50 [ 772.571517] do_syscall_64+0x33/0x40 [ 772.572290] entry_SYSCALL_64_after_hwframe+0x61/0xc6 [ 772.573364] RIP: 0033:0x7f8249b64b19 [ 772.574153] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 772.578006] RSP: 002b:00007f82470da108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9 [ 772.579596] RAX: ffffffffffffffda RBX: 00007f8249c77f60 RCX: 00007f8249b64b19 [ 772.581100] RDX: 0000000020ffc000 RSI: 0000000020000080 RDI: 0000000000004ee5 [ 772.582602] RBP: 0000000020000080 R08: 0000000020000100 R09: 0000000020000100 [ 772.584118] R10: 0000000020000040 R11: 0000000000000202 R12: 0000000020000100 [ 772.585588] R13: 0000000020ffc000 R14: 0000000020000040 R15: 0000000020ffd000 19:21:24 executing program 7: r0 = perf_event_open(&(0x7f0000000200)={0x2, 0x80, 0x8, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) creat(0x0, 0x0) r1 = clone3(&(0x7f0000000140)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) write(0xffffffffffffffff, 0x0, 0x0) r2 = signalfd(r0, &(0x7f00000000c0)={[0xe0b9]}, 0x8) ioctl$INCFS_IOC_FILL_BLOCKS(r0, 0x80106720, &(0x7f00000003c0)={0x3, &(0x7f0000000340)=[{0x5, 0x24, &(0x7f0000000100)="bad41426d6871185e057afaa971f66a3898d78664bb0ac4849c7cabc96acdb037b4abed5", 0x0, 0x1}, {0x800, 0x0, &(0x7f00000001c0), 0x1}, {0x102, 0x9b, &(0x7f0000000280)="aebc6a4227d2a892c46c9c6a624514684c7f1f31f59f9063c3e6a0b5e7ff967391ea8e9f2348146fd2e1f326344f2b62b2911881e06f6203150024ab115ce5e0f054da4c10434501c8afb38f2c513dd18d0b2a6f9c5b95d1e34f31592b5e62ba6a8642ca6883adafa5d04da1fcebf7dd601d9fd9c42c2f316b604a996ee86b7b8c7b4da67af13bb2c25cf387ff72e3a0f496ab05eb4321b21dc692", 0x1, 0x1}]}) perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x3, 0x5, 0x1, 0x1, 0x0, 0x2, 0x38010, 0x1, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x1, 0x1, 0x1, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x1, 0x1, 0x1, 0x1, 0x0, 0x0, 0x0, 0x1, 0x0, 0x1, 0x0, 0x0, 0x6, 0x4, @perf_bp={&(0x7f0000000000), 0x5}, 0x4002, 0x8, 0x2, 0x5, 0x9, 0x5, 0x4, 0x0, 0x20, 0x0, 0x4}, r1, 0x9, r2, 0xa) 19:21:25 executing program 1: perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) clone3(&(0x7f0000000140)={0x4000000000000000, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) 19:21:25 executing program 6: syz_open_dev$sg(0x0, 0x0, 0x0) syz_io_uring_setup(0x4ee5, &(0x7f0000000080), &(0x7f0000ffd000/0x3000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000040), &(0x7f0000000100)) (fail_nth: 67) [ 772.792794] FAULT_INJECTION: forcing a failure. [ 772.792794] name failslab, interval 1, probability 0, space 0, times 0 [ 772.795255] CPU: 0 PID: 10999 Comm: syz-executor.6 Not tainted 5.10.185 #1 [ 772.796697] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 772.798431] Call Trace: [ 772.798976] dump_stack+0x107/0x167 [ 772.799731] should_fail.cold+0x5/0xa [ 772.800538] ? xas_alloc+0x336/0x440 [ 772.801305] should_failslab+0x5/0x20 [ 772.802087] kmem_cache_alloc+0x5b/0x310 [ 772.802922] xas_alloc+0x336/0x440 [ 772.803644] xas_create+0x34a/0x10d0 [ 772.804416] ? kernel_text_address+0xf2/0x120 [ 772.805329] ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0 [ 772.806398] xas_store+0x8c/0x1c40 [ 772.807160] __xa_store+0x164/0x2d0 [ 772.807915] ? xa_delete_node+0x280/0x280 [ 772.808770] ? trace_hardirqs_on+0x5b/0x180 [ 772.809652] xa_store+0x31/0x50 [ 772.810329] __io_uring_add_tctx_node+0x1cf/0x520 [ 772.811319] ? io_uring_alloc_task_context+0x6a0/0x6a0 [ 772.812393] ? __alloc_fd+0x2b8/0x630 [ 772.813178] io_uring_setup+0x2011/0x2a30 [ 772.814025] ? wait_for_completion_io+0x270/0x270 [ 772.815003] ? __do_sys_io_uring_enter+0x1730/0x1730 [ 772.816057] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 772.817139] ? syscall_enter_from_user_mode+0x1d/0x50 [ 772.818196] do_syscall_64+0x33/0x40 [ 772.818955] entry_SYSCALL_64_after_hwframe+0x61/0xc6 [ 772.820031] RIP: 0033:0x7f8249b64b19 [ 772.820801] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 772.824557] RSP: 002b:00007f82470da108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9 [ 772.826107] RAX: ffffffffffffffda RBX: 00007f8249c77f60 RCX: 00007f8249b64b19 [ 772.827598] RDX: 0000000020ffc000 RSI: 0000000020000080 RDI: 0000000000004ee5 [ 772.829049] RBP: 0000000020000080 R08: 0000000020000100 R09: 0000000020000100 [ 772.830509] R10: 0000000020000040 R11: 0000000000000202 R12: 0000000020000100 [ 772.831985] R13: 0000000020ffc000 R14: 0000000020000040 R15: 0000000020ffd000 19:21:25 executing program 4: clone3(&(0x7f0000000140)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) (fail_nth: 59) [ 772.934567] FAULT_INJECTION: forcing a failure. [ 772.934567] name failslab, interval 1, probability 0, space 0, times 0 [ 772.938358] CPU: 1 PID: 11149 Comm: syz-executor.4 Not tainted 5.10.185 #1 [ 772.939773] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 772.941473] Call Trace: [ 772.942026] dump_stack+0x107/0x167 [ 772.942776] should_fail.cold+0x5/0xa [ 772.943564] ? anon_vma_fork+0xf1/0x640 [ 772.944375] should_failslab+0x5/0x20 [ 772.945149] kmem_cache_alloc+0x5b/0x310 [ 772.945974] anon_vma_fork+0xf1/0x640 [ 772.946752] ? __vm_enough_memory+0x184/0x360 [ 772.947660] dup_mm+0x861/0x1110 [ 772.948372] ? vm_area_dup+0x290/0x290 [ 772.949174] ? __raw_spin_lock_init+0x36/0x110 [ 772.950112] copy_process+0x24e2/0x6740 [ 772.950927] ? lock_acquire+0x197/0x470 [ 772.951739] ? find_held_lock+0x2c/0x110 [ 772.952581] ? __cleanup_sighand+0xb0/0xb0 [ 772.953456] ? _copy_from_user+0xfb/0x1b0 [ 772.954303] kernel_clone+0xe7/0x980 [ 772.955068] ? lock_acquire+0x197/0x470 [ 772.955889] ? create_io_thread+0xf0/0xf0 [ 772.956749] ? ksys_write+0x21a/0x260 [ 772.957511] ? lock_downgrade+0x6d0/0x6d0 [ 772.958359] __do_sys_clone3+0x1e5/0x320 [ 772.959184] ? __do_sys_clone+0x110/0x110 [ 772.960063] ? rcu_read_lock_any_held+0x75/0xa0 [ 772.961006] ? vfs_write+0x354/0xa70 [ 772.961768] ? fput_many+0x2f/0x1a0 [ 772.962495] ? ksys_write+0x1a9/0x260 [ 772.963267] ? __ia32_sys_read+0xb0/0xb0 [ 772.964107] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 772.965171] ? syscall_enter_from_user_mode+0x1d/0x50 [ 772.966209] ? trace_hardirqs_on+0x5b/0x180 [ 772.967086] do_syscall_64+0x33/0x40 [ 772.967836] entry_SYSCALL_64_after_hwframe+0x61/0xc6 [ 772.968877] RIP: 0033:0x7f0ecd504b19 [ 772.969647] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 772.973325] RSP: 002b:00007f0ecaa7a188 EFLAGS: 00000246 ORIG_RAX: 00000000000001b3 [ 772.974846] RAX: ffffffffffffffda RBX: 00007f0ecd617f60 RCX: 00007f0ecd504b19 [ 772.976266] RDX: 0000000000000000 RSI: 0000000000000058 RDI: 0000000020000140 [ 772.977701] RBP: 00007f0ecaa7a1d0 R08: 0000000000000000 R09: 0000000000000000 [ 772.979122] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 772.980561] R13: 00007fffa049ab2f R14: 00007f0ecaa7a300 R15: 0000000000022000 19:21:38 executing program 5: perf_event_open(&(0x7f0000000200)={0x2, 0x80, 0x8, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_io_uring_setup(0x0, &(0x7f0000000100)={0x0, 0x2, 0x0, 0x0, 0x389}, &(0x7f0000000000/0x12000)=nil, &(0x7f000000e000/0x1000)=nil, &(0x7f0000000080), &(0x7f0000000040)) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) clone3(&(0x7f0000000140)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) write(0xffffffffffffffff, &(0x7f0000000100)='?', 0x1) [ 786.643135] FAULT_INJECTION: forcing a failure. [ 786.643135] name failslab, interval 1, probability 0, space 0, times 0 [ 786.645592] CPU: 0 PID: 11259 Comm: syz-executor.6 Not tainted 5.10.185 #1 [ 786.647006] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 786.648705] Call Trace: [ 786.649257] dump_stack+0x107/0x167 [ 786.650005] should_fail.cold+0x5/0xa [ 786.650784] ? create_object.isra.0+0x3a/0xa20 [ 786.651729] should_failslab+0x5/0x20 [ 786.652524] kmem_cache_alloc+0x5b/0x310 [ 786.653345] ? mark_held_locks+0x9e/0xe0 [ 786.654162] create_object.isra.0+0x3a/0xa20 [ 786.655047] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 786.656078] kmem_cache_alloc+0x159/0x310 [ 786.656919] xas_alloc+0x336/0x440 [ 786.657637] xas_create+0x34a/0x10d0 [ 786.658396] ? kernel_text_address+0xf2/0x120 [ 786.659300] ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0 [ 786.660367] xas_store+0x8c/0x1c40 [ 786.661096] __xa_store+0x164/0x2d0 [ 786.661838] ? xa_delete_node+0x280/0x280 [ 786.662711] ? trace_hardirqs_on+0x5b/0x180 [ 786.663586] xa_store+0x31/0x50 [ 786.664289] __io_uring_add_tctx_node+0x1cf/0x520 [ 786.665269] ? io_uring_alloc_task_context+0x6a0/0x6a0 [ 786.666495] ? __alloc_fd+0x2b8/0x630 [ 786.667277] io_uring_setup+0x2011/0x2a30 [ 786.668136] ? wait_for_completion_io+0x270/0x270 [ 786.669104] ? __do_sys_io_uring_enter+0x1730/0x1730 [ 786.670139] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 786.671204] ? syscall_enter_from_user_mode+0x1d/0x50 [ 786.672267] do_syscall_64+0x33/0x40 [ 786.673019] entry_SYSCALL_64_after_hwframe+0x61/0xc6 [ 786.674055] RIP: 0033:0x7f8249b64b19 [ 786.674807] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 786.678511] RSP: 002b:00007f82470da108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9 19:21:38 executing program 0: prctl$PR_GET_TID_ADDRESS(0x28, &(0x7f0000000000)) r0 = perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) perf_event_open(&(0x7f0000001d80)={0x2, 0x80, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, r0, 0x0) r1 = perf_event_open(&(0x7f0000001d80)={0x2, 0x80, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, r0, 0x0) readv(r1, &(0x7f0000001200)=[{&(0x7f00000000c0)=""/4096, 0x1000}], 0x1) 19:21:38 executing program 3: creat(0x0, 0x0) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) clone3(&(0x7f0000000140)={0x10000200, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) 19:21:38 executing program 1: perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) clone3(&(0x7f0000000140)={0xffffffff00000000, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) 19:21:38 executing program 6: syz_open_dev$sg(0x0, 0x0, 0x0) syz_io_uring_setup(0x4ee5, &(0x7f0000000080), &(0x7f0000ffd000/0x3000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000040), &(0x7f0000000100)) (fail_nth: 68) 19:21:38 executing program 7: r0 = perf_event_open(&(0x7f0000000200)={0x2, 0x80, 0x8, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r1 = creat(0x0, 0x0) r2 = gettid() getgroups(0x1, &(0x7f0000000800)=[0xee01]) r4 = socket$netlink(0x10, 0x3, 0x0) sendmsg$nl_generic(r4, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000000)={0x2c, 0x16, 0x1, 0x0, 0x0, {0xa}, [@nested={0x18, 0x0, 0x0, 0x1, [@typed={0x14, 0xa, 0x0, 0x0, @ipv6=@private1}]}]}, 0x2c}}, 0x0) r5 = openat$sr(0xffffffffffffff9c, &(0x7f00000035c0), 0xe8b02, 0x0) ioctl$DVD_READ_STRUCT(r5, 0x6, 0x0) newfstatat(0xffffffffffffff9c, 0x0, &(0x7f0000000ac0)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x400) chown(&(0x7f00000000c0)='./file0\x00', 0xffffffffffffffff, r6) ioctl$TUNSETGROUP(r5, 0x400454ce, r6) r7 = getpgrp(0x0) pidfd_open(r7, 0x0) lstat(&(0x7f0000000880)='./file0\x00', &(0x7f00000008c0)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0}) lstat(&(0x7f0000000580)='./file0/../file0\x00', &(0x7f00000005c0)={0x0, 0x0, 0x0, 0x0, 0x0}) chown(&(0x7f0000000540)='./file0\x00', r9, 0x0) syz_mount_image$ext4(&(0x7f0000000140)='ext3\x00', &(0x7f00000002c0)='./file1\x00', 0x51, 0x5, &(0x7f0000000700)=[{&(0x7f0000000300)="ba60537d398b2f61edd89064c27f7b9d6d2c18098e7b514f1876438a35faee1c431ce90b858cfd6a9a738e2e0a721ba206e98cba4e0a3f1ff5e075589276e448056ce6a75893b415cc2b063f77588d27c60a79ed08b58f9532375cc7656af948ae5d615c3a34cc4301727969b90c53c0db21f5fcebdaa3235ae5bb2d661ab0e17637d8308e11e0095109d327886f45c2193ef6702038fe7e29a71f5e2725d68089a34265de52349d84485a9e0577b8221ca555bd94df98e9a857bc78c6f68e32f6c6f28c0ba66db0b119d69ce9f0ea9c8f", 0xd1, 0x800}, {&(0x7f0000000400)="a1291a7bbce4074eca8f6c1ec6b94deed581fee0fe6017d4c8173172cdc70455904df53f769613a5bc45e4766f0bfc7a3834e12dd5089b0b1fa346b420c7ce92ce452fa9b7e571c3fe3f09944caa32f0f2ac6d902141e0a1b7ff64eba7a1281ee34d7553e6c45399bb033c22763e2f9ef1b8734a7b89dd07720e570e6cbf8a748ca39358a8326d1de51778987275ae4bb7a300a1230c6999e1a369a0453ee40b8a54d571403b64898f1e2e4a5a900af6e3c5053367", 0xb5, 0xff}, {&(0x7f0000000500)="81a3c77ad2bc0a2348329076d43dd35a7878cba2e9ac3de5c6a69656fd0752429f2e81a4ce426f0029f0c4032fa956220e64e496e42429d4", 0x38, 0xe45}, {&(0x7f0000000540)="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", 0xfd, 0x100000000}, {&(0x7f0000000640)="0b27f008b873d2aa8bce253ba0515d0b2187f3df86a4459e1a7a526e3826daeef3b31ad09fb037bf76c61855e56bf9c459158ee971f28d0b49a8eb69b65807d5095970eed171589623266d0ae498ae072316b1b66ef2dd3cc9a596a449a85624134188af02b68da237acfcf03be3da6b240c059177356bb1db9de5bf3f775aba6c971fc213bb6c238a9e290345aabeb74109d3cc61b94e3eec656108f8daf4", 0x9f, 0x9}], 0x10a890, &(0x7f0000000d40)=ANY=[@ANYBLOB="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", @ANYRESDEC=r9, @ANYBLOB=',measure,\x00']) sendmmsg$unix(r1, &(0x7f0000000a80)=[{{&(0x7f0000000000)=@abs={0x0, 0x0, 0x4e20}, 0x6e, &(0x7f0000000100)=[{&(0x7f0000000080)="e3e0e4ce0b31ed4920b9f5a8181698effd573f2aec6145a7dccc35d850fa2fa7f983686d915289b8fd60f56feeadf03990a4d4f44cefc4ed4bc9e8f520a3d8fcfe6809af19d46db4c95660a80905c4f154154ba141412e0adf95539354ec2a", 0x5f}], 0x1, &(0x7f0000000940)=[@cred={{0x1c, 0x1, 0x2, {0xffffffffffffffff, 0x0, 0xee00}}}, @rights={{0x24, 0x1, 0x1, [r0, 0xffffffffffffffff, 0xffffffffffffffff, r0, r1]}}, @cred={{0x1c}}, @rights={{0x14, 0x1, 0x1, [0xffffffffffffffff]}}, @cred={{0x1c, 0x1, 0x2, {r2, 0xee01, r3}}}, @rights={{0x18, 0x1, 0x1, [r4, r0]}}, @cred={{0x1c, 0x1, 0x2, {0x0, 0xee01, r6}}}, @cred={{0x1c, 0x1, 0x2, {0x0, 0xee01, 0xee00}}}, @cred={{0x1c, 0x1, 0x2, {r7, 0x0, r8}}}, @cred={{0x1c, 0x1, 0x2, {0x0, r9, 0xee01}}}], 0x138, 0x4040000}}], 0x1, 0x4) clone3(&(0x7f0000000140)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) write(0xffffffffffffffff, 0x0, 0x0) 19:21:38 executing program 2: perf_event_open(&(0x7f0000000200)={0x2, 0x80, 0x8, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) creat(0x0, 0x0) syz_io_uring_setup(0x44af, 0x0, &(0x7f0000000000/0x12000)=nil, &(0x7f000000e000/0x1000)=nil, &(0x7f0000000080), &(0x7f0000000040)) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) clone3(&(0x7f0000000140)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) 19:21:38 executing program 4: clone3(&(0x7f0000000140)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) (fail_nth: 60) [ 786.679296] netlink: 'syz-executor.7': attribute type 10 has an invalid length. [ 786.680049] RAX: ffffffffffffffda RBX: 00007f8249c77f60 RCX: 00007f8249b64b19 [ 786.680061] RDX: 0000000020ffc000 RSI: 0000000020000080 RDI: 0000000000004ee5 [ 786.680073] RBP: 0000000020000080 R08: 0000000020000100 R09: 0000000020000100 [ 786.680084] R10: 0000000020000040 R11: 0000000000000202 R12: 0000000020000100 [ 786.680094] R13: 0000000020ffc000 R14: 0000000020000040 R15: 0000000020ffd000 [ 786.696448] FAULT_INJECTION: forcing a failure. [ 786.696448] name failslab, interval 1, probability 0, space 0, times 0 [ 786.698757] CPU: 0 PID: 11268 Comm: syz-executor.4 Not tainted 5.10.185 #1 [ 786.700182] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 786.701866] Call Trace: [ 786.702428] dump_stack+0x107/0x167 [ 786.703178] should_fail.cold+0x5/0xa [ 786.703979] ? create_object.isra.0+0x3a/0xa20 [ 786.704904] should_failslab+0x5/0x20 [ 786.705684] kmem_cache_alloc+0x5b/0x310 [ 786.706510] create_object.isra.0+0x3a/0xa20 [ 786.707411] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 786.708461] kmem_cache_alloc+0x159/0x310 [ 786.709316] anon_vma_fork+0x1ff/0x640 [ 786.710110] dup_mm+0x861/0x1110 [ 786.710813] ? vm_area_dup+0x290/0x290 [ 786.711607] ? __raw_spin_lock_init+0x36/0x110 [ 786.712558] copy_process+0x24e2/0x6740 [ 786.713375] ? lock_acquire+0x197/0x470 [ 786.714177] ? find_held_lock+0x2c/0x110 [ 786.715021] ? __cleanup_sighand+0xb0/0xb0 [ 786.715890] ? _copy_from_user+0xfb/0x1b0 [ 786.716753] kernel_clone+0xe7/0x980 [ 786.717510] ? __lockdep_reset_lock+0x180/0x180 [ 786.718456] ? create_io_thread+0xf0/0xf0 [ 786.719312] ? ksys_write+0x21a/0x260 [ 786.720092] ? lock_downgrade+0x6d0/0x6d0 [ 786.720933] __do_sys_clone3+0x1e5/0x320 [ 786.721762] ? __do_sys_clone+0x110/0x110 [ 786.722626] ? rcu_read_lock_any_held+0x75/0xa0 [ 786.723566] ? vfs_write+0x354/0xa70 [ 786.724343] ? fput_many+0x2f/0x1a0 [ 786.725083] ? ksys_write+0x1a9/0x260 [ 786.725855] ? __ia32_sys_read+0xb0/0xb0 [ 786.726735] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 786.727800] ? syscall_enter_from_user_mode+0x1d/0x50 [ 786.728851] ? trace_hardirqs_on+0x5b/0x180 [ 786.729726] do_syscall_64+0x33/0x40 [ 786.730478] entry_SYSCALL_64_after_hwframe+0x61/0xc6 [ 786.731522] RIP: 0033:0x7f0ecd504b19 [ 786.732331] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 786.736054] RSP: 002b:00007f0ecaa7a188 EFLAGS: 00000246 ORIG_RAX: 00000000000001b3 [ 786.737602] RAX: ffffffffffffffda RBX: 00007f0ecd617f60 RCX: 00007f0ecd504b19 [ 786.739040] RDX: 0000000000000000 RSI: 0000000000000058 RDI: 0000000020000140 [ 786.740497] RBP: 00007f0ecaa7a1d0 R08: 0000000000000000 R09: 0000000000000000 [ 786.741933] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 786.743369] R13: 00007fffa049ab2f R14: 00007f0ecaa7a300 R15: 0000000000022000 [ 786.752896] program syz-executor.7 is using a deprecated SCSI ioctl, please convert it to SG_IO 19:21:39 executing program 1: perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) clone3(&(0x7f0000000140)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) 19:21:39 executing program 6: syz_open_dev$sg(0x0, 0x0, 0x0) syz_io_uring_setup(0x4ee5, &(0x7f0000000080), &(0x7f0000ffd000/0x3000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000040), &(0x7f0000000100)) (fail_nth: 69) 19:21:39 executing program 0: r0 = perf_event_open(&(0x7f0000000040)={0x1, 0x80, 0x6f}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r1 = perf_event_open(&(0x7f0000001d80)={0x2, 0x80, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, r0, 0x0) perf_event_open(&(0x7f00000010c0)={0x4, 0x80, 0x81, 0xfc, 0x3f, 0x40, 0x0, 0x787, 0x800, 0x4, 0x0, 0x1, 0x1, 0x1, 0x0, 0x1, 0x0, 0x1, 0x1, 0x1, 0x0, 0x1, 0x0, 0x0, 0x1, 0x0, 0x0, 0x1, 0x0, 0x0, 0x1, 0x0, 0x1, 0x1, 0x0, 0x1, 0x1, 0x1, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x8, 0x1, @perf_config_ext={0x3, 0xffffffff}, 0x1200, 0x2, 0x7, 0xc, 0x4, 0x80000001, 0x9, 0x0, 0x8, 0x0, 0x5}, 0x0, 0x7, r1, 0x12) openat$tcp_mem(0xffffffffffffff9c, &(0x7f0000001140)='/proc/sys/net/ipv4/tcp_rmem\x00', 0x1, 0x0) connect$inet6(0xffffffffffffffff, &(0x7f0000001240)={0xa, 0x4e20, 0x1, @loopback, 0x8}, 0x1c) r2 = socket$netlink(0x10, 0x3, 0x0) sendmsg$nl_generic(r2, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f00000011c0)=ANY=[@ANYBLOB="2c0000001600010000000063000000000a0011000100008414085dd58123c652dc4781419c6b000a00fc010000100000000000"], 0x2c}}, 0x0) signalfd(r2, &(0x7f0000001180)={[0x9]}, 0x8) r3 = perf_event_open(&(0x7f0000001d80)={0x2, 0x80, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, r0, 0x0) readv(r3, &(0x7f0000001200)=[{&(0x7f00000000c0)=""/4096, 0x1000}], 0x1) [ 786.912247] FAULT_INJECTION: forcing a failure. [ 786.912247] name failslab, interval 1, probability 0, space 0, times 0 [ 786.915162] CPU: 0 PID: 11428 Comm: syz-executor.6 Not tainted 5.10.185 #1 [ 786.916587] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 786.918260] Call Trace: [ 786.918807] dump_stack+0x107/0x167 [ 786.919546] should_fail.cold+0x5/0xa [ 786.920339] ? vm_area_dup+0x78/0x290 [ 786.921115] should_failslab+0x5/0x20 19:21:39 executing program 3: creat(0x0, 0x0) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) clone3(&(0x7f0000000140)={0x11000000, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) [ 786.921894] kmem_cache_alloc+0x5b/0x310 [ 786.922856] vm_area_dup+0x78/0x290 [ 786.923594] ? lock_acquire+0x197/0x470 [ 786.924409] ? create_object.isra.0+0x3ad/0xa20 [ 786.925351] ? mark_lock+0xf5/0x2df0 [ 786.926107] ? __lock_acquire+0x1657/0x5b00 [ 786.926979] ? lock_chain_count+0x20/0x20 [ 786.927823] ? mark_lock+0xf5/0x2df0 [ 786.928601] ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0 [ 786.929658] ? mark_lock+0xf5/0x2df0 [ 786.930414] ? kmem_cache_alloc+0x2a6/0x310 [ 786.931282] ? vm_area_alloc+0x110/0x110 [ 786.932118] ? __lock_acquire+0x1657/0x5b00 [ 786.933001] ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0 [ 786.934056] ? vmacache_find+0x55/0x2a0 [ 786.934858] __split_vma+0xa8/0x570 [ 786.935601] __do_munmap+0x365/0x1260 [ 786.936385] ? lock_release+0x680/0x680 [ 786.937188] mmap_region+0x776/0x1590 [ 786.937962] ? get_unmapped_area+0x2f0/0x420 [ 786.938852] do_mmap+0xcdb/0x11e0 [ 786.939564] vm_mmap_pgoff+0x198/0x1f0 [ 786.940374] ? randomize_page+0xb0/0xb0 [ 786.941179] ? __fget_files+0x296/0x4c0 [ 786.941991] ksys_mmap_pgoff+0x41c/0x560 [ 786.942810] ? find_mergeable_anon_vma+0x250/0x250 [ 786.943798] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 786.944893] ? syscall_enter_from_user_mode+0x1d/0x50 [ 786.945931] do_syscall_64+0x33/0x40 [ 786.946695] entry_SYSCALL_64_after_hwframe+0x61/0xc6 [ 786.947726] RIP: 0033:0x7f8249b64b62 [ 786.948491] Code: 00 00 00 00 00 0f 1f 00 41 f7 c1 ff 0f 00 00 75 27 55 48 89 fd 53 89 cb 48 85 ff 74 3b 41 89 da 48 89 ef b8 09 00 00 00 0f 05 <48> 3d 00 f0 ff ff 77 66 5b 5d c3 0f 1f 00 48 c7 c0 bc ff ff ff 64 [ 786.952189] RSP: 002b:00007f82470da0f8 EFLAGS: 00000206 ORIG_RAX: 0000000000000009 [ 786.953722] RAX: ffffffffffffffda RBX: 0000000000008011 RCX: 00007f8249b64b62 [ 786.955150] RDX: 0000000000000003 RSI: 0000000000120140 RDI: 0000000020ffd000 [ 786.956599] RBP: 0000000020ffd000 R08: 0000000000000004 R09: 0000000000000000 [ 786.958031] R10: 0000000000008011 R11: 0000000000000206 R12: 0000000020000100 [ 786.959473] R13: 0000000020ffc000 R14: 0000000020000040 R15: 0000000020ffd000 [ 786.977182] netlink: 20 bytes leftover after parsing attributes in process `syz-executor.0'. 19:21:39 executing program 4: clone3(&(0x7f0000000140)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) (fail_nth: 61) 19:21:39 executing program 0: r0 = perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r1 = perf_event_open(&(0x7f0000001d80)={0x2, 0x80, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, r0, 0x0) r2 = perf_event_open(&(0x7f0000001d80)={0x2, 0x80, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, r0, 0x0) readv(r2, &(0x7f0000001200)=[{&(0x7f00000000c0)=""/4096, 0x1000}], 0x1) ioctl$BTRFS_IOC_LOGICAL_INO_V2(r1, 0xc038943b, &(0x7f00000010c0)={0x3, 0x20, '\x00', 0x0, &(0x7f0000000000)=[0x0, 0x0, 0x0, 0x0]}) [ 787.080325] FAULT_INJECTION: forcing a failure. [ 787.080325] name fail_page_alloc, interval 1, probability 0, space 0, times 0 [ 787.082913] CPU: 0 PID: 11500 Comm: syz-executor.4 Not tainted 5.10.185 #1 [ 787.084349] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 787.086062] Call Trace: [ 787.086619] dump_stack+0x107/0x167 [ 787.087364] should_fail.cold+0x5/0xa [ 787.088180] __alloc_pages_nodemask+0x182/0x600 [ 787.089172] ? __alloc_pages_slowpath.constprop.0+0x2130/0x2130 [ 787.090425] ? copy_page_range+0x28f6/0x3820 [ 787.091319] alloc_pages_current+0x187/0x280 [ 787.092228] get_zeroed_page+0x14/0xb0 [ 787.093017] __pud_alloc+0x33/0x270 [ 787.093757] copy_page_range+0x2cb6/0x3820 [ 787.094616] ? lock_chain_count+0x20/0x20 [ 787.095472] ? lock_downgrade+0x6d0/0x6d0 [ 787.096335] ? up_write+0x191/0x550 [ 787.097084] ? vm_iomap_memory+0x190/0x190 [ 787.097954] ? downgrade_write+0x3a0/0x3a0 [ 787.098818] ? anon_vma_interval_tree_insert+0x277/0x450 [ 787.099943] ? __vma_link_rb+0x540/0x700 [ 787.100792] dup_mm+0x8b9/0x1110 [ 787.101501] ? vm_area_dup+0x290/0x290 [ 787.102313] ? __raw_spin_lock_init+0x36/0x110 [ 787.103244] copy_process+0x24e2/0x6740 [ 787.104065] ? lock_acquire+0x197/0x470 [ 787.104878] ? find_held_lock+0x2c/0x110 [ 787.105734] ? __cleanup_sighand+0xb0/0xb0 [ 787.106615] ? _copy_from_user+0xfb/0x1b0 [ 787.107456] kernel_clone+0xe7/0x980 [ 787.108231] ? lock_acquire+0x197/0x470 [ 787.109043] ? create_io_thread+0xf0/0xf0 [ 787.109898] ? ksys_write+0x21a/0x260 [ 787.110672] ? lock_downgrade+0x6d0/0x6d0 [ 787.111516] __do_sys_clone3+0x1e5/0x320 [ 787.112347] ? __do_sys_clone+0x110/0x110 [ 787.113207] ? rcu_read_lock_any_held+0x75/0xa0 [ 787.114145] ? vfs_write+0x354/0xa70 [ 787.114903] ? fput_many+0x2f/0x1a0 [ 787.115641] ? ksys_write+0x1a9/0x260 [ 787.116417] ? __ia32_sys_read+0xb0/0xb0 [ 787.117240] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 787.118301] ? syscall_enter_from_user_mode+0x1d/0x50 [ 787.119341] ? trace_hardirqs_on+0x5b/0x180 [ 787.120234] do_syscall_64+0x33/0x40 [ 787.120990] entry_SYSCALL_64_after_hwframe+0x61/0xc6 [ 787.122030] RIP: 0033:0x7f0ecd504b19 [ 787.122783] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 787.126512] RSP: 002b:00007f0ecaa7a188 EFLAGS: 00000246 ORIG_RAX: 00000000000001b3 [ 787.128070] RAX: ffffffffffffffda RBX: 00007f0ecd617f60 RCX: 00007f0ecd504b19 [ 787.129609] RDX: 0000000000000000 RSI: 0000000000000058 RDI: 0000000020000140 [ 787.131305] RBP: 00007f0ecaa7a1d0 R08: 0000000000000000 R09: 0000000000000000 [ 787.133017] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 787.134714] R13: 00007fffa049ab2f R14: 00007f0ecaa7a300 R15: 0000000000022000 19:21:39 executing program 6: syz_open_dev$sg(0x0, 0x0, 0x0) syz_io_uring_setup(0x4ee5, &(0x7f0000000080), &(0x7f0000ffd000/0x3000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000040), &(0x7f0000000100)) (fail_nth: 70) 19:21:39 executing program 7: perf_event_open(&(0x7f0000000200)={0x2, 0x80, 0x5, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x7ff, 0x8}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = creat(0x0, 0x0) r1 = mmap$IORING_OFF_SQ_RING(&(0x7f0000fff000/0x1000)=nil, 0x1000, 0x2, 0x50, 0xffffffffffffffff, 0x0) syz_io_uring_setup(0x1, &(0x7f0000000000)={0x0, 0xcff, 0x0, 0x2, 0x246, 0x0, r0}, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000ffe000/0x2000)=nil, &(0x7f0000000080), &(0x7f00000000c0)=0x0) syz_io_uring_submit(r1, r2, &(0x7f0000000100)=@IORING_OP_MADVISE={0x19, 0x4, 0x0, 0x0, 0x0, &(0x7f0000ffc000/0x1000)=nil, 0x1000, 0x15}, 0x0) clone3(&(0x7f0000000140)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) write(0xffffffffffffffff, 0x0, 0x0) [ 787.203845] FAULT_INJECTION: forcing a failure. [ 787.203845] name failslab, interval 1, probability 0, space 0, times 0 [ 787.205830] CPU: 0 PID: 11582 Comm: syz-executor.6 Not tainted 5.10.185 #1 [ 787.206971] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 787.208351] Call Trace: [ 787.208793] dump_stack+0x107/0x167 [ 787.209399] should_fail.cold+0x5/0xa [ 787.210039] ? create_object.isra.0+0x3a/0xa20 [ 787.210812] should_failslab+0x5/0x20 [ 787.211454] kmem_cache_alloc+0x5b/0x310 [ 787.212153] create_object.isra.0+0x3a/0xa20 [ 787.212911] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 787.213767] kmem_cache_alloc+0x159/0x310 [ 787.214467] vm_area_dup+0x78/0x290 [ 787.215077] ? find_held_lock+0x2c/0x110 [ 787.215757] ? mark_lock+0xf5/0x2df0 [ 787.216391] ? __lock_acquire+0x1657/0x5b00 [ 787.217120] ? lock_chain_count+0x20/0x20 [ 787.217833] ? mark_lock+0xf5/0x2df0 [ 787.218462] ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0 [ 787.219337] ? mark_lock+0xf5/0x2df0 [ 787.219963] ? _raw_spin_unlock_irq+0x1f/0x30 [ 787.220707] ? vm_area_alloc+0x110/0x110 [ 787.221387] ? __lock_acquire+0x1657/0x5b00 [ 787.222114] ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0 [ 787.222978] ? vmacache_find+0x55/0x2a0 [ 787.223634] __split_vma+0xa8/0x570 [ 787.224253] __do_munmap+0x365/0x1260 [ 787.224897] ? lock_release+0x680/0x680 [ 787.225563] mmap_region+0x776/0x1590 [ 787.226199] ? get_unmapped_area+0x2f0/0x420 [ 787.226928] do_mmap+0xcdb/0x11e0 [ 787.227508] vm_mmap_pgoff+0x198/0x1f0 [ 787.228168] ? randomize_page+0xb0/0xb0 [ 787.228820] ? __fget_files+0x296/0x4c0 [ 787.229484] ksys_mmap_pgoff+0x41c/0x560 [ 787.230155] ? find_mergeable_anon_vma+0x250/0x250 [ 787.230967] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 787.231823] ? syscall_enter_from_user_mode+0x1d/0x50 [ 787.232684] do_syscall_64+0x33/0x40 [ 787.233296] entry_SYSCALL_64_after_hwframe+0x61/0xc6 [ 787.234128] RIP: 0033:0x7f8249b64b62 [ 787.234739] Code: 00 00 00 00 00 0f 1f 00 41 f7 c1 ff 0f 00 00 75 27 55 48 89 fd 53 89 cb 48 85 ff 74 3b 41 89 da 48 89 ef b8 09 00 00 00 0f 05 <48> 3d 00 f0 ff ff 77 66 5b 5d c3 0f 1f 00 48 c7 c0 bc ff ff ff 64 [ 787.237809] RSP: 002b:00007f82470da0f8 EFLAGS: 00000206 ORIG_RAX: 0000000000000009 [ 787.239100] RAX: ffffffffffffffda RBX: 0000000000008011 RCX: 00007f8249b64b62 [ 787.240325] RDX: 0000000000000003 RSI: 0000000000120140 RDI: 0000000020ffd000 [ 787.241529] RBP: 0000000020ffd000 R08: 0000000000000004 R09: 0000000000000000 [ 787.242741] R10: 0000000000008011 R11: 0000000000000206 R12: 0000000020000100 [ 787.243963] R13: 0000000020ffc000 R14: 0000000020000040 R15: 0000000020ffd000 19:21:53 executing program 2: perf_event_open(&(0x7f0000000200)={0x2, 0x80, 0x8, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) creat(0x0, 0x0) syz_io_uring_setup(0x44af, 0x0, &(0x7f0000000000/0x12000)=nil, &(0x7f000000e000/0x1000)=nil, &(0x7f0000000080), &(0x7f0000000040)) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) clone3(&(0x7f0000000140)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) 19:21:53 executing program 3: creat(0x0, 0x0) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) clone3(&(0x7f0000000140)={0x1ffff000, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) 19:21:53 executing program 6: syz_open_dev$sg(0x0, 0x0, 0x0) syz_io_uring_setup(0x4ee5, &(0x7f0000000080), &(0x7f0000ffd000/0x3000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000040), &(0x7f0000000100)) (fail_nth: 71) 19:21:53 executing program 4: clone3(&(0x7f0000000140)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) (fail_nth: 62) 19:21:53 executing program 1: perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) clone3(&(0x7f0000000140)={0x0, 0x0, 0x0, 0x0, {0x8}, 0x0, 0x0, 0x0, 0x0}, 0x58) 19:21:53 executing program 7: mlock2(&(0x7f0000ffa000/0x4000)=nil, 0x4000, 0x1) r0 = open(&(0x7f0000000080)='./file0\x00', 0x30200, 0x2) io_uring_setup(0x5b3c, &(0x7f0000000000)={0x0, 0x39c4, 0x1, 0x5, 0x22e, 0x0, r0}) r1 = perf_event_open(&(0x7f0000000200)={0x2, 0x80, 0x8, 0x1, 0x0, 0xff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r2 = creat(0x0, 0x0) clone3(&(0x7f0000000140)={0x1008a000, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) write(0xffffffffffffffff, 0x0, 0x0) dup2(r1, r2) 19:21:53 executing program 5: perf_event_open(&(0x7f0000000200)={0x2, 0x80, 0x8, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_io_uring_setup(0x44af, 0x0, &(0x7f0000000000/0x12000)=nil, &(0x7f000000e000/0x1000)=nil, &(0x7f0000000080), &(0x7f0000000040)) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) clone3(&(0x7f0000000140)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) write(0xffffffffffffffff, &(0x7f0000000100)='?', 0x1) 19:21:53 executing program 0: r0 = perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r1 = syz_open_dev$sg(&(0x7f0000000400), 0x0, 0x0) r2 = syz_open_dev$evdev(&(0x7f0000000040), 0x0, 0x8802) ioctl$SG_GET_LOW_DMA(0xffffffffffffffff, 0x227a, &(0x7f0000000000)) r3 = fcntl$dupfd(r2, 0x0, r1) writev(r3, &(0x7f0000000140)=[{&(0x7f0000000300)="0040abe02400030021206cda3b5e5672b89aeddb2a535fbd", 0x7e0}], 0x1) perf_event_open(&(0x7f00000010c0)={0x6, 0x80, 0x0, 0xf7, 0x2, 0x2, 0x0, 0x7ff, 0x58808, 0x0, 0x1, 0x0, 0x1, 0x0, 0x0, 0x0, 0x1, 0x1, 0x1, 0x1, 0x1, 0x1, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x1, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x1, 0x1, 0x1, 0x1, 0x0, 0x1, 0x1, 0x0, 0x1, 0x1, 0x0, 0x4, 0x1, @perf_config_ext={0x74}, 0x4, 0x7fffffff, 0xff9, 0x6, 0x865, 0x401, 0x3612, 0x0, 0x219, 0x0, 0x6}, 0x0, 0x4, r3, 0x3) perf_event_open(&(0x7f0000001d80)={0x2, 0x80, 0x70, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0, 0x5}, 0x0, 0x0, 0x9, 0x0, 0x0, 0x3f}, 0x0, 0x0, r0, 0x0) ioctl$AUTOFS_DEV_IOCTL_CLOSEMOUNT(r3, 0xc0189375, &(0x7f0000001200)={{0x1, 0x1, 0x18, r2}, './file0\x00'}) r4 = perf_event_open(&(0x7f0000001d80)={0x2, 0x80, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, r0, 0x0) readv(r4, &(0x7f00000011c0)=[{&(0x7f00000000c0)=""/4096, 0x1000}, {&(0x7f0000001140)=""/70, 0x46}, {&(0x7f0000001240)=""/216, 0xd8}], 0x3) [ 801.400545] FAULT_INJECTION: forcing a failure. [ 801.400545] name failslab, interval 1, probability 0, space 0, times 0 [ 801.403002] CPU: 0 PID: 11818 Comm: syz-executor.6 Not tainted 5.10.185 #1 [ 801.404409] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 801.406108] Call Trace: [ 801.406649] dump_stack+0x107/0x167 [ 801.407388] should_fail.cold+0x5/0xa [ 801.408177] ? anon_vma_clone+0xdc/0x590 [ 801.409000] should_failslab+0x5/0x20 [ 801.409773] kmem_cache_alloc+0x5b/0x310 [ 801.410601] anon_vma_clone+0xdc/0x590 [ 801.411401] __split_vma+0x17c/0x570 [ 801.412171] __do_munmap+0x365/0x1260 [ 801.412392] FAULT_INJECTION: forcing a failure. [ 801.412392] name fail_page_alloc, interval 1, probability 0, space 0, times 0 [ 801.412946] ? lock_release+0x680/0x680 [ 801.416160] mmap_region+0x776/0x1590 [ 801.416945] ? get_unmapped_area+0x2f0/0x420 [ 801.417852] do_mmap+0xcdb/0x11e0 [ 801.418581] vm_mmap_pgoff+0x198/0x1f0 [ 801.419378] ? randomize_page+0xb0/0xb0 [ 801.420175] ? __fget_files+0x296/0x4c0 [ 801.420978] ksys_mmap_pgoff+0x41c/0x560 [ 801.421802] ? find_mergeable_anon_vma+0x250/0x250 [ 801.422796] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 801.423854] ? syscall_enter_from_user_mode+0x1d/0x50 [ 801.424872] do_syscall_64+0x33/0x40 [ 801.425628] entry_SYSCALL_64_after_hwframe+0x61/0xc6 [ 801.426662] RIP: 0033:0x7f8249b64b62 [ 801.427402] Code: 00 00 00 00 00 0f 1f 00 41 f7 c1 ff 0f 00 00 75 27 55 48 89 fd 53 89 cb 48 85 ff 74 3b 41 89 da 48 89 ef b8 09 00 00 00 0f 05 <48> 3d 00 f0 ff ff 77 66 5b 5d c3 0f 1f 00 48 c7 c0 bc ff ff ff 64 [ 801.431105] RSP: 002b:00007f82470da0f8 EFLAGS: 00000206 ORIG_RAX: 0000000000000009 [ 801.432639] RAX: ffffffffffffffda RBX: 0000000000008011 RCX: 00007f8249b64b62 [ 801.434086] RDX: 0000000000000003 RSI: 0000000000120140 RDI: 0000000020ffd000 [ 801.435521] RBP: 0000000020ffd000 R08: 0000000000000004 R09: 0000000000000000 [ 801.436984] R10: 0000000000008011 R11: 0000000000000206 R12: 0000000020000100 [ 801.438448] R13: 0000000020ffc000 R14: 0000000020000040 R15: 0000000020ffd000 [ 801.439931] CPU: 1 PID: 11822 Comm: syz-executor.4 Not tainted 5.10.185 #1 [ 801.441343] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 801.443020] Call Trace: [ 801.443563] dump_stack+0x107/0x167 [ 801.444308] should_fail.cold+0x5/0xa [ 801.445085] __alloc_pages_nodemask+0x182/0x600 [ 801.446022] ? lock_acquire+0x197/0x470 [ 801.446821] ? __alloc_pages_slowpath.constprop.0+0x2130/0x2130 [ 801.448036] ? lock_downgrade+0x6d0/0x6d0 [ 801.448889] ? do_raw_spin_lock+0x121/0x260 [ 801.449768] alloc_pages_current+0x187/0x280 [ 801.450657] __pmd_alloc+0x37/0x5e0 [ 801.451399] copy_page_range+0x2bed/0x3820 [ 801.452261] ? perf_trace_lock+0xac/0x490 [ 801.453093] ? lock_chain_count+0x20/0x20 [ 801.453970] ? up_write+0x191/0x550 [ 801.454706] ? vm_iomap_memory+0x190/0x190 [ 801.455554] ? downgrade_write+0x3a0/0x3a0 [ 801.456411] ? anon_vma_interval_tree_insert+0x277/0x450 [ 801.457519] ? __vma_link_rb+0x540/0x700 [ 801.458349] dup_mm+0x8b9/0x1110 [ 801.459050] ? vm_area_dup+0x290/0x290 [ 801.459841] ? __raw_spin_lock_init+0x36/0x110 [ 801.460782] copy_process+0x24e2/0x6740 [ 801.461568] ? lock_acquire+0x197/0x470 [ 801.462348] ? find_held_lock+0x2c/0x110 [ 801.463204] ? __cleanup_sighand+0xb0/0xb0 [ 801.464233] ? _copy_from_user+0xfb/0x1b0 [ 801.465215] kernel_clone+0xe7/0x980 [ 801.466088] ? __lockdep_reset_lock+0x180/0x180 [ 801.467186] ? create_io_thread+0xf0/0xf0 [ 801.468208] ? ksys_write+0x21a/0x260 [ 801.469111] ? lock_downgrade+0x6d0/0x6d0 [ 801.470099] __do_sys_clone3+0x1e5/0x320 [ 801.471057] ? __do_sys_clone+0x110/0x110 [ 801.472067] ? rcu_read_lock_any_held+0x75/0xa0 [ 801.473173] ? vfs_write+0x354/0xa70 [ 801.474064] ? fput_many+0x2f/0x1a0 [ 801.474930] ? ksys_write+0x1a9/0x260 [ 801.475827] ? __ia32_sys_read+0xb0/0xb0 [ 801.476803] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 801.478055] ? syscall_enter_from_user_mode+0x1d/0x50 [ 801.479275] ? trace_hardirqs_on+0x5b/0x180 [ 801.480329] do_syscall_64+0x33/0x40 [ 801.481217] entry_SYSCALL_64_after_hwframe+0x61/0xc6 [ 801.482445] RIP: 0033:0x7f0ecd504b19 [ 801.483324] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 801.487706] RSP: 002b:00007f0ecaa7a188 EFLAGS: 00000246 ORIG_RAX: 00000000000001b3 [ 801.489529] RAX: ffffffffffffffda RBX: 00007f0ecd617f60 RCX: 00007f0ecd504b19 [ 801.491218] RDX: 0000000000000000 RSI: 0000000000000058 RDI: 0000000020000140 [ 801.492919] RBP: 00007f0ecaa7a1d0 R08: 0000000000000000 R09: 0000000000000000 [ 801.494606] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 801.496312] R13: 00007fffa049ab2f R14: 00007f0ecaa7a300 R15: 0000000000022000 19:21:53 executing program 6: syz_open_dev$sg(0x0, 0x0, 0x0) syz_io_uring_setup(0x4ee5, &(0x7f0000000080), &(0x7f0000ffd000/0x3000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000040), &(0x7f0000000100)) (fail_nth: 72) 19:21:54 executing program 3: creat(0x0, 0x0) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) clone3(&(0x7f0000000140)={0x20000000, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) 19:21:54 executing program 7: perf_event_open(&(0x7f0000000200)={0x0, 0x80, 0x8, 0x1, 0x0, 0x0, 0x0, 0x10001, 0x0, 0x7, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x0, 0x1000, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1}, 0x0, 0x0, 0xffffffffffffffff, 0x0) creat(0x0, 0x0) clone3(&(0x7f0000000140)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) write(0xffffffffffffffff, 0x0, 0x0) [ 801.776576] FAULT_INJECTION: forcing a failure. [ 801.776576] name failslab, interval 1, probability 0, space 0, times 0 [ 801.779047] CPU: 1 PID: 12030 Comm: syz-executor.6 Not tainted 5.10.185 #1 [ 801.780553] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 801.782363] Call Trace: [ 801.782950] dump_stack+0x107/0x167 [ 801.783744] should_fail.cold+0x5/0xa [ 801.784581] ? create_object.isra.0+0x3a/0xa20 [ 801.785593] should_failslab+0x5/0x20 [ 801.786448] kmem_cache_alloc+0x5b/0x310 [ 801.787349] create_object.isra.0+0x3a/0xa20 [ 801.788338] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 801.789463] kmem_cache_alloc+0x159/0x310 [ 801.790384] anon_vma_clone+0xdc/0x590 [ 801.791243] __split_vma+0x17c/0x570 [ 801.792056] __do_munmap+0x365/0x1260 [ 801.792902] ? lock_release+0x680/0x680 [ 801.793803] mmap_region+0x776/0x1590 [ 801.794650] ? get_unmapped_area+0x2f0/0x420 [ 801.795616] do_mmap+0xcdb/0x11e0 [ 801.796390] vm_mmap_pgoff+0x198/0x1f0 [ 801.797250] ? randomize_page+0xb0/0xb0 [ 801.798132] ? __fget_files+0x296/0x4c0 [ 801.799037] ksys_mmap_pgoff+0x41c/0x560 [ 801.799928] ? find_mergeable_anon_vma+0x250/0x250 [ 801.801029] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 801.802184] ? syscall_enter_from_user_mode+0x1d/0x50 [ 801.803316] do_syscall_64+0x33/0x40 [ 801.804141] entry_SYSCALL_64_after_hwframe+0x61/0xc6 [ 801.805270] RIP: 0033:0x7f8249b64b62 [ 801.806081] Code: 00 00 00 00 00 0f 1f 00 41 f7 c1 ff 0f 00 00 75 27 55 48 89 fd 53 89 cb 48 85 ff 74 3b 41 89 da 48 89 ef b8 09 00 00 00 0f 05 <48> 3d 00 f0 ff ff 77 66 5b 5d c3 0f 1f 00 48 c7 c0 bc ff ff ff 64 [ 801.810117] RSP: 002b:00007f82470da0f8 EFLAGS: 00000206 ORIG_RAX: 0000000000000009 [ 801.811811] RAX: ffffffffffffffda RBX: 0000000000008011 RCX: 00007f8249b64b62 [ 801.813394] RDX: 0000000000000003 RSI: 0000000000120140 RDI: 0000000020ffd000 [ 801.814934] RBP: 0000000020ffd000 R08: 0000000000000004 R09: 0000000000000000 [ 801.816474] R10: 0000000000008011 R11: 0000000000000206 R12: 0000000020000100 [ 801.818039] R13: 0000000020ffc000 R14: 0000000020000040 R15: 0000000020ffd000 19:21:54 executing program 4: clone3(&(0x7f0000000140)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) (fail_nth: 63) 19:21:54 executing program 1: perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) clone3(&(0x7f0000000140)={0x0, 0x0, 0x0, 0x0, {0x11}, 0x0, 0x0, 0x0, 0x0}, 0x58) [ 801.921236] FAULT_INJECTION: forcing a failure. [ 801.921236] name failslab, interval 1, probability 0, space 0, times 0 [ 801.923985] CPU: 1 PID: 12039 Comm: syz-executor.4 Not tainted 5.10.185 #1 [ 801.925623] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 801.927581] Call Trace: [ 801.928235] dump_stack+0x107/0x167 [ 801.929098] should_fail.cold+0x5/0xa [ 801.929999] ? __pmd_alloc+0x94/0x5e0 [ 801.930902] should_failslab+0x5/0x20 [ 801.931796] kmem_cache_alloc+0x5b/0x310 [ 801.932766] __pmd_alloc+0x94/0x5e0 [ 801.933634] copy_page_range+0x2bed/0x3820 [ 801.934629] ? lock_chain_count+0x20/0x20 [ 801.935647] ? up_write+0x191/0x550 [ 801.936524] ? vm_iomap_memory+0x190/0x190 [ 801.937521] ? downgrade_write+0x3a0/0x3a0 [ 801.938513] ? anon_vma_interval_tree_insert+0x277/0x450 [ 801.939802] ? __vma_link_rb+0x540/0x700 [ 801.940779] dup_mm+0x8b9/0x1110 [ 801.941590] ? vm_area_dup+0x290/0x290 [ 801.942500] ? __raw_spin_lock_init+0x36/0x110 [ 801.943576] copy_process+0x24e2/0x6740 [ 801.944520] ? lock_acquire+0x197/0x470 [ 801.945441] ? find_held_lock+0x2c/0x110 [ 801.946415] ? __cleanup_sighand+0xb0/0xb0 [ 801.947417] ? _copy_from_user+0xfb/0x1b0 [ 801.948421] kernel_clone+0xe7/0x980 [ 801.949291] ? lock_acquire+0x197/0x470 [ 801.950215] ? create_io_thread+0xf0/0xf0 [ 801.951208] ? ksys_write+0x21a/0x260 [ 801.952091] ? lock_downgrade+0x6d0/0x6d0 [ 801.953068] __do_sys_clone3+0x1e5/0x320 [ 801.954017] ? __do_sys_clone+0x110/0x110 [ 801.955008] ? rcu_read_lock_any_held+0x75/0xa0 [ 801.956097] ? vfs_write+0x354/0xa70 [ 801.956998] ? fput_many+0x2f/0x1a0 [ 801.957859] ? ksys_write+0x1a9/0x260 [ 801.958745] ? __ia32_sys_read+0xb0/0xb0 [ 801.959694] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 801.960912] ? syscall_enter_from_user_mode+0x1d/0x50 [ 801.962089] ? trace_hardirqs_on+0x5b/0x180 [ 801.963080] do_syscall_64+0x33/0x40 [ 801.963944] entry_SYSCALL_64_after_hwframe+0x61/0xc6 [ 801.965124] RIP: 0033:0x7f0ecd504b19 [ 801.965980] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 801.970559] RSP: 002b:00007f0ecaa7a188 EFLAGS: 00000246 ORIG_RAX: 00000000000001b3 [ 801.972331] RAX: ffffffffffffffda RBX: 00007f0ecd617f60 RCX: 00007f0ecd504b19 [ 801.973975] RDX: 0000000000000000 RSI: 0000000000000058 RDI: 0000000020000140 [ 801.975622] RBP: 00007f0ecaa7a1d0 R08: 0000000000000000 R09: 0000000000000000 [ 801.977263] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 801.978881] R13: 00007fffa049ab2f R14: 00007f0ecaa7a300 R15: 0000000000022000 19:21:54 executing program 0: r0 = perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) perf_event_open(&(0x7f0000001d80)={0x2, 0x80, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, r0, 0x0) r1 = perf_event_open(&(0x7f0000001d80)={0x2, 0x80, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, r0, 0x0) readv(r1, &(0x7f0000001200)=[{&(0x7f00000000c0)=""/4096, 0x1000}], 0x1) lstat(&(0x7f0000000580)='./file0/../file0\x00', &(0x7f00000005c0)={0x0, 0x0, 0x0, 0x0, 0x0}) chown(&(0x7f0000000540)='./file0\x00', r2, 0x0) r3 = openat(0xffffffffffffffff, &(0x7f0000001100)='./file0/../file0\x00', 0x2, 0x18) syz_mount_image$ext4(&(0x7f0000000140)='ext3\x00', &(0x7f00000002c0)='./file1\x00', 0x51, 0x5, &(0x7f0000000700)=[{&(0x7f0000000300)="ba60537d398b2f61edd89064c27f7b9d6d2c18098e7b514f1876438a35faee1c431ce90b858cfd6a9a738e2e0a721ba206e98cba4e0a3f1ff5e075589276e448056ce6a75893b415cc2b063f77588d27c60a79ed08b58f9532375cc7656af948ae5d615c3a34cc4301727969b90c53c0db21f5fcebdaa3235ae5bb2d661ab0e17637d8308e11e0095109d327886f45c2193ef6702038fe7e29a71f5e2725d68089a34265de52349d84485a9e0577b8221ca555bd94df98e9a857bc78c6f68e32f6c6f28c0ba66db0b119d69ce9f0ea9c8f", 0xd1, 0x800}, {&(0x7f0000000400)="a1291a7bbce4074eca8f6c1ec6b94deed581fee0fe6017d4c8173172cdc70455904df53f769613a5bc45e4766f0bfc7a3834e12dd5089b0b1fa346b420c7ce92ce452fa9b7e571c3fe3f09944caa32f0f2ac6d902141e0a1b7ff64eba7a1281ee34d7553e6c45399bb033c22763e2f9ef1b8734a7b89dd07720e570e6cbf8a748ca39358a8326d1de51778987275ae4bb7a300a1230c6999e1a369a0453ee40b8a54d571403b64898f1e2e4a5a900af6e3c5053367", 0xb5, 0xff}, {&(0x7f0000000500)="81a3c77ad2bc0a2348329076d43dd35a7878cba2e9ac3de5c6a69656fd0752429f2e81a4ce426f0029f0c4032fa956220e64e496e42429d4", 0x38, 0xe45}, {&(0x7f0000000540)="b3300c9af2e39082bf4ea5c775735bf446124f5a655070b4f14c7c993a2d6b79506db2d7a8b4bfd0559259a463f1eb72a2bfc9d4de4266e4e32b03a7e40a50d021f4ae11771105d8f1faeef61c13036d89cdec721dc476f842e4f0d45449d77af15be479535043ee5f0468a4ad850d97ca0000c3a7c7dbdadd9c4b61261065f42118d5b61c35ea3085ac9987705a971bd84e220ef6165f85277492c9e78bebf1d6ed9deebd672952a5672f660be0b1733994c7f0134624f143dd286d695071804e763cea7b6d7b079ac424a618516388e33ed260e3d02ec11f992c63d30692d440310de3f5eb432702d08bca4a53b418973ab121034b211eecafddd2cd", 0xfd, 0x100000000}, {&(0x7f0000000640)="0b27f008b873d2aa8bce253ba0515d0b2187f3df86a4459e1a7a526e3826daeef3b31ad09fb037bf76c61855e56bf9c459158ee971f28d0b49a8eb69b65807d5095970eed171589623266d0ae498ae072316b1b66ef2dd3cc9a596a449a85624134188af02b68da237acfcf03be3da6b240c059177356bb1db9de5bf3f775aba6c971fc213bb6c238a9e290345aabeb74109d3cc61b94e3eec656108f8daf4", 0x9f, 0x9}], 0x10a890, &(0x7f0000001e00)=ANY=[@ANYBLOB="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", @ANYRESDEC=r2, @ANYBLOB=',measure,\x00']) r4 = getpgrp(0x0) pidfd_open(r4, 0x0) r5 = socket$netlink(0x10, 0x3, 0x0) sendmsg$nl_generic(r5, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000000)={0x2c, 0x16, 0x1, 0x0, 0x0, {0xa}, [@nested={0x18, 0x85, 0x0, 0x1, [@typed={0x14, 0xa, 0x0, 0x0, @ipv6=@private1}]}]}, 0x2c}}, 0x0) pidfd_getfd(r3, r5, 0x0) r6 = socket$netlink(0x10, 0x3, 0x0) sendmsg$nl_generic(r6, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000000)={0x2c, 0x16, 0x1, 0x0, 0x0, {0xa}, [@nested={0x18, 0x0, 0x0, 0x1, [@typed={0x14, 0xa, 0x0, 0x0, @ipv6=@private1}]}]}, 0x2c}}, 0x0) r7 = syz_genetlink_get_family_id$ipvs(&(0x7f0000001140), r3) sendmsg$IPVS_CMD_DEL_SERVICE(r6, &(0x7f0000001240)={&(0x7f00000010c0)={0x10, 0x0, 0x0, 0x400000}, 0xc, &(0x7f00000011c0)={&(0x7f0000001180)={0x30, r7, 0x3b677d186fad8cd1, 0x70bd2a, 0x25dfdbfe, {}, [@IPVS_CMD_ATTR_TIMEOUT_TCP={0x8, 0x4, 0x7}, @IPVS_CMD_ATTR_DEST={0xc, 0x2, 0x0, 0x1, [@IPVS_DEST_ATTR_FWD_METHOD={0x8, 0x3, 0x2}]}, @IPVS_CMD_ATTR_TIMEOUT_UDP={0x8, 0x6, 0x3}]}, 0x30}, 0x1, 0x0, 0x0, 0x880}, 0x44040) sendmsg$nl_generic(0xffffffffffffffff, &(0x7f0000001300)={&(0x7f0000001280)={0x10, 0x0, 0x0, 0x400}, 0xc, &(0x7f00000012c0)={&(0x7f0000001480)={0x45c, 0x40, 0x100, 0x70bd28, 0x25dfdbfb, {0x7}, [@nested={0x36c, 0x90, 0x0, 0x1, [@typed={0x4, 0x32, 0x0, 0x0, @binary}, @typed={0xc, 0x86, 0x0, 0x0, @u64=0x400}, @generic="1900056a19dd7d8f48b52a7c3f81655fcd2693ff334a816e559acf05eff22d97b97282720d93ba6f5604ee29912e5f3247e84f53bfa2edee7a8e31f47fe16d951a6137c43ae6c73caba1752bd7c41725f8e44cb883797fa690438e8c3e43e96505c584891577a86f78ac0e4455b8fc990bddb5ab350290c294e98d9c204b5d0ea35963958082275c3238cb839e6c893acb59933a912a8082b6f25b856c8f40eec2d4db83ccef49d32aa8805082bd55bf6927a79cf47c991a524f239d5e5393b12b41cd", @generic="04710974b76dca0d5a6274f59495155931a17ee24341056dd04046f334fb7a2f0704e0e45e9f44292bc88a57b8069dc84de1107fd39d7004571a3703db5408250077d7f82d09adc239ffe44c6f3966e458a916e9e98a6986548b661d49322915566bb8369e39a843f49d53ff389caaae55d3bf3a277d5d183f05a74b4d56a2b4d7a81c2c36770f10a4a78fd79ae797be489898d8d5731ee8ebc8b154c8c7664f1ed7524a1cd65218e5a079c3a3626ff8dbe2d838967b9527bfbeb6886d6a41f27da4d83a2673ed43dd15089e4c3214c16428bee780c76910ee232d56dc7f6407", @generic="d79f47113771d806e8a7cee008ecdf", @generic="a90250a96263badba9dc170993ee6bd3c26895d3947142576cf1c0886e9dc15c5999a94890d221472cfc70c87960132b687c00d2ce1120d501222424576467c216ee52a69cd4b6fcabc448fb055a6abd20b5463bcd3d3204679a67ae5f8aa4544a6d93307cbbdb90d042fcea3b383d153bb07f1d1af30b7ea2f11a577b4f38db8b89106dd6b476be7a34688240fa1a1f1b22efa689c7df4750d643405dffb82b41c015d4bda79442b4c4144e904ec35415f48347b9ee4454fc11e7be7472214f0cc97fb09f13fc36b1f5296832e7c76127aaf5", @generic="06db2c0d2ee0f8320a2fa6545bd8f8773f628618dcfd0fca3412588c8035e7077a0e5ff9e4ad0d3f9e63de8bfa9c779e8b71bd458978648b365a2862ffe9b43f196511ac6dd99e7c7c08f40dc5a476edd5d8d8ee191dbaa66844fac523e314ea665bd8567cf27e6bbb9997f8bcef94a2eca4a2f06bf74e00e5b845d443110fc37b53f1275d634e547d071b7449f8660f0bfab8479ed9b7d342111e57c8f5a5725070a62a739d69", @typed={0x2b, 0x1f, 0x0, 0x0, @binary="06f9d2f81f375fadd71fb4b5d9f72e6d7c5b43814a93bfcdb88f1f7909de8ca3334f76d6ba1855"}]}, @nested={0x30, 0x78, 0x0, 0x1, [@typed={0x9, 0x69, 0x0, 0x0, @str='ext3\x00'}, @typed={0x9, 0x54, 0x0, 0x0, @str='ext3\x00'}, @typed={0xc, 0x3b, 0x0, 0x0, @u64=0x100}, @typed={0x8, 0x16, 0x0, 0x0, @u32=0x1000}]}, @generic="30407848e63cd04174af18bcff575b74b5f6709b163a41ede0b5206c509c21b2ef5022bea03dac84a6032a11b2d9a2eff537ebdaac143a07ed995341dba12730ae0ab446116ac6e6c0dfd37802550a03aacf6995f57d4abb85abdd4a1f64d48eba957ea675ca9f25300831f051ba273f6fb147dd69a96677ec79d00c7678309babc7a059c8c6ba7c6c16f2edfd7c48e5fb1c7b4fd284e428291df650849f22c4c6715b51adad2b", @typed={0x4, 0x74}]}, 0x45c}, 0x1, 0x0, 0x0, 0x20000004}, 0x4081) getsockopt$inet6_IPV6_XFRM_POLICY(0xffffffffffffffff, 0x29, 0x23, &(0x7f0000001340)={{{@in6=@private1, @in6=@local, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}}, {{@in6=@private1}, 0x0, @in6=@local}}, &(0x7f0000001440)=0xe8) sendmsg$nl_generic(0xffffffffffffffff, &(0x7f0000001c40)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x80}, 0xc, &(0x7f0000001c00)={&(0x7f0000001fc0)={0x1680, 0x26, 0x21, 0x70bd27, 0x25dfdbfb, {0x16}, [@generic="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", @nested={0x17a, 0x4a, 0x0, 0x1, [@typed={0x8, 0x45, 0x0, 0x0, @uid=r2}, @typed={0x14, 0x72, 0x0, 0x0, @ipv6=@rand_addr=' \x01\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x02'}, @generic="f3531f37cb65e7fe8eb9998ab12c3a510126bb509e9e209672c090bce233c405a9e0c08ba75400a1", @typed={0x14, 0x90, 0x0, 0x0, @ipv6=@private0={0xfc, 0x0, '\x00', 0x1}}, @typed={0xd, 0x69, 0x0, 0x0, @binary="7d2b280125fcaeab54"}, @typed={0x10, 0x4b, 0x0, 0x0, @str='!}\\[$+%})#{\x00'}, @generic="52c02994b7b7416a6e6bc5acecd5c6c41cff2c370355d86e0528d5504380b92028d9ab08ed8d9fad8a00237ab25b391784982a0a0c667ff3a1bde0213e1b32d40cde2c3e0e028f5ae7fbbca9da063d215ab9501f8941c322396bf9d3c22ad0e1cfd54fd47f40f4f8a30967d9216c8d92feaab73b9fb46ef665", @generic="59072583b02f94be390cae6379ad1d2b4afe3858683f996d24e8c46299f5551f41aaa3bdda194e146e80c6117f3f99edeb8c724364d07f55130d4389b3cc1ab4f91c3989575728a9bceac90b6c8bd1dea62bcc1536734b63bcf3cfc6d97a12c849d0be86978e9481b71fa60b7eedebe431f2ca354550447bb687d6c0b616a0fd69469b3a0a"]}, @nested={0xf9, 0x67, 0x0, 0x1, [@generic="7e6e00965dfc52cd475ec5439b93760fa99d31795785e7d92919c0cb7a2c2c3638c70d005c8446acd1966061529547fb63a2c2b5c625e52b22ec358e322bc48c787065a45ed85a31957d8ffefb95da46fd1bfd0e4be642ae378330f2564c6fd42d14e45c7dcaf6f1a3f4c799098a53bf6b74b26ba64f3c211f109bb7496a10b2", @generic="42f26ce480e443f4c2b76a621d31f576eae4fc9369e32bb6b2c6211436f001f8ea32aef1c089223b20bcbf0384e11cef481da82b3dad794487af3871874067d142c703345fdef1167190b313c52de4ed6e1f0a17dba1ce19e86fdf1d0a4e243e99526b1028cdab6fd9", @typed={0x4, 0x1b}, @typed={0x8, 0x64, 0x0, 0x0, @fd=r0}]}, @nested={0x26c, 0x50, 0x0, 0x1, [@generic="35a68da579afaf050f90c55096bc2dde5cdf3ee0853df6f35882414eb06c2b06e5a271b0de4e39354d766d346eebfb4c0785ebee212f28a60ecc441fde825356c21794077e0071d57d500f18ff7b03ea137e251add1ba1840a07ca1a6b565001b08e237ec977db325e470c1d435d2bce8c55483df016e8f89cd967a029bf4931e31224b23dba363a0d1d678c3da556869495f7630b6f41ece2d5b85999aa8ec8b2bb69bbc081d15d", @generic="13c30680690a5f6706457a7380a540b0528b29f04ec9f8f3ad3251ccb2d0b9006dfae378bca649f86c1fbda404abd1abaa15b938e11cac9c56d881f7153c9d2dba4240f17e984624a83db91e6aeed7fd7171a1c40f465191de26667264c31e836315bed6052fcd34222731ce55108e7db134c7aff814a130825c3bc4cdb30f99e24c19b3c740eff0b411e684d3a1f92ab0034b600f619e06695c22c685a360998c7ea3c5eeea39", @typed={0xf, 0x71, 0x0, 0x0, @str='%,--*(-\'.D\x00'}, @generic="e2c0ad56ba46d1f60bfd1eb8be45c7be5821ce3ac9822150cc9f0f6d98add3036a2478f0ccbeb6d9c75c4e60439752067ad43072ed77ac7ba5c6245ebec9d31b1170edafbc65ec8ac195967feba7b82c16", @generic="3cb1ae6423e399b0953edeba80e96e17a7d7b39c9134cc51d9f5a120307d73c7c915be67dbda3486c7a0b70ace64100ffce56d2236dc63871355c25a17bec214d4926edbf925322ea646e44cd7834665ca20c121b74b5da4a1f6c3eb249e6c2feeae2e539de0b79128a294c084eee7b2c8ee46408d2549467d7b2cf461b0e9f11f0a8df4ad0e92c54bfb9478dea0ed53b48a5820b5c0f55e9da25d54203a9bd9de74814a9f6408dcd2", @generic="a868d55ac17a17", @typed={0x8, 0x72, 0x0, 0x0, @u32=0x6}]}, @generic="5d5cc5d7213f1046d23068cb1a1357ab2cf81e47401a74d6c681f333b29f61f3257684444c0ba54bbfb998e8244f2d4a1f1c590287d6a7583f542bea55e0b1cfbadcde53dfd9e44ace15f16089f0372ad4d51e8b58b0038aad6bf62ade5b198cb00bdcf1ff45250898657b9ee1b5f0d2ff1f1114df8390a1261e75c20553d6dd4e", @typed={0x8, 0x76, 0x0, 0x0, @pid=r4}, @nested={0xc, 0x24, 0x0, 0x1, [@typed={0x8, 0x5e, 0x0, 0x0, @uid=r8}]}, @generic="fd9301a318e177bac2ae8e3f0e781ed89bef215f061a51506b213059b269a1f3b25b977027e5263e35c8a6d0e0c6ceda8b4d842ca5a0b883f655a591609c20a4ec512dff4896603ae6822c386bb8ed61ee74a50a1e43f0b3f2401d28acd302ca9b1f3e7f001f74e2c96980da3a7089ba0ebe07cc29a2b25225f805a8a2d7ac5cbad5669d3d23de49ecbc6ece32b4e2f8a02db848a629d0d25c7cebd1f3337e876d4009ecfdc75c94700a9332a5feb0c40887e0962c1ecb46ac2f3902fff14ab746d388390202a151cf2f51e7a716d8262f79b0db42748bfe23c12bcbcb64fab1da58895b6605d047fe770696454927d2da4780"]}, 0x1680}, 0x1, 0x0, 0x0, 0x8040044}, 0x4804) [ 802.033739] netlink: 'syz-executor.0': attribute type 10 has an invalid length. [ 802.042584] netlink: 'syz-executor.0': attribute type 10 has an invalid length. 19:21:54 executing program 2: perf_event_open(&(0x7f0000000200)={0x2, 0x80, 0x8, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) creat(0x0, 0x0) syz_io_uring_setup(0x44af, &(0x7f0000000100)={0x0, 0x0, 0x0, 0x0, 0x389}, &(0x7f0000000000/0x12000)=nil, &(0x7f000000e000/0x1000)=nil, &(0x7f0000000080), &(0x7f0000000040)) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) clone3(&(0x7f0000000140)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) [ 802.105218] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=0 sclass=netlink_route_socket pid=12226 comm=syz-executor.0 19:21:54 executing program 6: syz_open_dev$sg(0x0, 0x0, 0x0) syz_io_uring_setup(0x4ee5, &(0x7f0000000080), &(0x7f0000ffd000/0x3000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000040), &(0x7f0000000100)) (fail_nth: 73) [ 802.152388] netlink: 'syz-executor.0': attribute type 10 has an invalid length. [ 802.153006] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=0 sclass=netlink_route_socket pid=12246 comm=syz-executor.0 19:21:54 executing program 7: perf_event_open(&(0x7f0000000200)={0x2, 0x80, 0x8, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) creat(0x0, 0x0) clone3(&(0x7f0000000140)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x32, 0x0, 0x0}, 0x58) write(0xffffffffffffffff, 0x0, 0x0) [ 802.212050] FAULT_INJECTION: forcing a failure. [ 802.212050] name failslab, interval 1, probability 0, space 0, times 0 [ 802.213593] CPU: 0 PID: 12256 Comm: syz-executor.6 Not tainted 5.10.185 #1 [ 802.214513] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 802.215591] Call Trace: [ 802.215943] dump_stack+0x107/0x167 [ 802.216429] should_fail.cold+0x5/0xa [ 802.216932] ? ___slab_alloc+0x470/0x700 [ 802.217469] ? create_object.isra.0+0x3a/0xa20 [ 802.218074] should_failslab+0x5/0x20 [ 802.218581] kmem_cache_alloc+0x5b/0x310 [ 802.219111] create_object.isra.0+0x3a/0xa20 [ 802.219676] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 802.220324] kmem_cache_alloc+0x159/0x310 [ 802.220869] anon_vma_clone+0xdc/0x590 [ 802.221374] __split_vma+0x17c/0x570 [ 802.221844] __do_munmap+0x365/0x1260 [ 802.222339] ? lock_release+0x680/0x680 [ 802.222865] mmap_region+0x776/0x1590 [ 802.223352] ? get_unmapped_area+0x2f0/0x420 [ 802.223931] do_mmap+0xcdb/0x11e0 [ 802.224404] vm_mmap_pgoff+0x198/0x1f0 [ 802.224922] ? randomize_page+0xb0/0xb0 [ 802.225436] ? __fget_files+0x296/0x4c0 [ 802.225946] ksys_mmap_pgoff+0x41c/0x560 [ 802.226467] ? find_mergeable_anon_vma+0x250/0x250 [ 802.227133] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 802.227836] ? syscall_enter_from_user_mode+0x1d/0x50 [ 802.228540] do_syscall_64+0x33/0x40 [ 802.229020] entry_SYSCALL_64_after_hwframe+0x61/0xc6 [ 802.229715] RIP: 0033:0x7f8249b64b62 [ 802.230179] Code: 00 00 00 00 00 0f 1f 00 41 f7 c1 ff 0f 00 00 75 27 55 48 89 fd 53 89 cb 48 85 ff 74 3b 41 89 da 48 89 ef b8 09 00 00 00 0f 05 <48> 3d 00 f0 ff ff 77 66 5b 5d c3 0f 1f 00 48 c7 c0 bc ff ff ff 64 [ 802.232676] RSP: 002b:00007f82470da0f8 EFLAGS: 00000206 ORIG_RAX: 0000000000000009 [ 802.233637] RAX: ffffffffffffffda RBX: 0000000000008011 RCX: 00007f8249b64b62 [ 802.234530] RDX: 0000000000000003 RSI: 0000000000120140 RDI: 0000000020ffd000 [ 802.235423] RBP: 0000000020ffd000 R08: 0000000000000004 R09: 0000000000000000 [ 802.236372] R10: 0000000000008011 R11: 0000000000000206 R12: 0000000020000100 [ 802.237323] R13: 0000000020ffc000 R14: 0000000020000040 R15: 0000000020ffd000 [ 816.332913] FAULT_INJECTION: forcing a failure. [ 816.332913] name failslab, interval 1, probability 0, space 0, times 0 [ 816.334121] CPU: 1 PID: 12472 Comm: syz-executor.4 Not tainted 5.10.185 #1 [ 816.334863] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 816.335749] Call Trace: [ 816.336048] dump_stack+0x107/0x167 [ 816.336449] should_fail.cold+0x5/0xa [ 816.336859] ? create_object.isra.0+0x3a/0xa20 [ 816.337352] should_failslab+0x5/0x20 [ 816.337766] kmem_cache_alloc+0x5b/0x310 [ 816.338208] create_object.isra.0+0x3a/0xa20 [ 816.338680] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 816.339227] kmem_cache_alloc+0x159/0x310 [ 816.339674] __pmd_alloc+0x94/0x5e0 [ 816.340074] copy_page_range+0x2bed/0x3820 [ 816.340536] ? lock_chain_count+0x20/0x20 [ 816.340995] ? up_write+0x191/0x550 [ 816.341395] ? vm_iomap_memory+0x190/0x190 [ 816.341844] ? downgrade_write+0x3a0/0x3a0 [ 816.342298] ? anon_vma_interval_tree_insert+0x277/0x450 [ 816.342872] ? __vma_link_rb+0x540/0x700 [ 816.343315] dup_mm+0x8b9/0x1110 [ 816.343680] ? vm_area_dup+0x290/0x290 [ 816.344101] ? __raw_spin_lock_init+0x36/0x110 [ 816.344613] copy_process+0x24e2/0x6740 [ 816.345041] ? lock_acquire+0x197/0x470 [ 816.345482] ? find_held_lock+0x2c/0x110 [ 816.345953] ? __cleanup_sighand+0xb0/0xb0 [ 816.346432] ? _copy_from_user+0xfb/0x1b0 [ 816.346892] kernel_clone+0xe7/0x980 [ 816.347303] ? lock_acquire+0x197/0x470 [ 816.347742] ? create_io_thread+0xf0/0xf0 [ 816.348215] ? ksys_write+0x21a/0x260 [ 816.348627] ? lock_downgrade+0x6d0/0x6d0 [ 816.349091] __do_sys_clone3+0x1e5/0x320 [ 816.349539] ? __do_sys_clone+0x110/0x110 [ 816.350198] ? rcu_read_lock_any_held+0x75/0xa0 19:22:08 executing program 4: clone3(&(0x7f0000000140)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) (fail_nth: 64) 19:22:08 executing program 5: perf_event_open(&(0x7f0000000200)={0x2, 0x80, 0x8, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_io_uring_setup(0x44af, 0x0, &(0x7f0000000000/0x12000)=nil, &(0x7f000000e000/0x1000)=nil, &(0x7f0000000080), &(0x7f0000000040)) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) clone3(&(0x7f0000000140)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) write(0xffffffffffffffff, &(0x7f0000000100)='?', 0x1) 19:22:08 executing program 2: perf_event_open(&(0x7f0000000200)={0x2, 0x80, 0x8, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) creat(0x0, 0x0) syz_io_uring_setup(0x44af, &(0x7f0000000100)={0x0, 0x0, 0x0, 0x0, 0x389}, &(0x7f0000000000/0x12000)=nil, &(0x7f000000e000/0x1000)=nil, &(0x7f0000000080), &(0x7f0000000040)) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) clone3(&(0x7f0000000140)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) 19:22:08 executing program 6: syz_open_dev$sg(0x0, 0x0, 0x0) syz_io_uring_setup(0x4ee5, &(0x7f0000000080), &(0x7f0000ffd000/0x3000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000040), &(0x7f0000000100)) (fail_nth: 74) 19:22:08 executing program 0: r0 = perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r1 = perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x70, 0xfc, 0x0, 0x80, 0x0, 0x0, 0x2d110, 0xe, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x3ff, 0x5}, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff}, 0x0, 0x0, r0, 0x0) ioctl$BTRFS_IOC_QGROUP_ASSIGN(r1, 0x40189429, &(0x7f0000000000)={0x0, 0x5, 0x7ff}) r2 = perf_event_open(&(0x7f0000001d80)={0x3, 0x80, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x80000001, 0x7fffffff}, 0x0, 0x4, 0x0, 0x9, 0x400000000000}, 0x0, 0x0, r0, 0x0) readv(r2, &(0x7f0000001200)=[{&(0x7f00000000c0)=""/4096, 0x1000}], 0x1) ioctl$FITRIM(r0, 0xc0185879, &(0x7f00000010c0)={0x490b, 0xe3, 0x9}) 19:22:08 executing program 1: perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) clone3(&(0x7f0000000140)={0x0, 0x0, 0x0, 0x0, {0x1100}, 0x0, 0x0, 0x0, 0x0}, 0x58) 19:22:08 executing program 3: creat(0x0, 0x0) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) clone3(&(0x7f0000000140)={0x3f000000, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) 19:22:08 executing program 7: perf_event_open(&(0x7f0000000200)={0x2, 0x80, 0x8, 0x1, 0x0, 0x0, 0x0, 0x0, 0x21, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f}, 0x0, 0x0, 0xffffffffffffffff, 0x0) creat(0x0, 0x0) clone3(&(0x7f0000000140)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) write(0xffffffffffffffff, 0x0, 0x0) [ 816.350779] ? vfs_write+0x354/0xa70 [ 816.351235] ? fput_many+0x2f/0x1a0 [ 816.351635] ? ksys_write+0x1a9/0x260 [ 816.352057] ? __ia32_sys_read+0xb0/0xb0 [ 816.352501] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 816.353078] ? syscall_enter_from_user_mode+0x1d/0x50 [ 816.353626] ? trace_hardirqs_on+0x5b/0x180 [ 816.354105] do_syscall_64+0x33/0x40 [ 816.354503] entry_SYSCALL_64_after_hwframe+0x61/0xc6 [ 816.355076] RIP: 0033:0x7f0ecd504b19 [ 816.355473] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 816.357512] RSP: 002b:00007f0ecaa7a188 EFLAGS: 00000246 ORIG_RAX: 00000000000001b3 [ 816.358363] RAX: ffffffffffffffda RBX: 00007f0ecd617f60 RCX: 00007f0ecd504b19 [ 816.359150] RDX: 0000000000000000 RSI: 0000000000000058 RDI: 0000000020000140 [ 816.359918] RBP: 00007f0ecaa7a1d0 R08: 0000000000000000 R09: 0000000000000000 [ 816.360728] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 816.361518] R13: 00007fffa049ab2f R14: 00007f0ecaa7a300 R15: 0000000000022000 [ 816.370519] FAULT_INJECTION: forcing a failure. [ 816.370519] name failslab, interval 1, probability 0, space 0, times 0 [ 816.373115] CPU: 0 PID: 12479 Comm: syz-executor.6 Not tainted 5.10.185 #1 [ 816.374612] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 816.376395] Call Trace: [ 816.376966] dump_stack+0x107/0x167 [ 816.377763] should_fail.cold+0x5/0xa [ 816.378588] ? create_object.isra.0+0x3a/0xa20 [ 816.379593] should_failslab+0x5/0x20 [ 816.380420] kmem_cache_alloc+0x5b/0x310 [ 816.381300] create_object.isra.0+0x3a/0xa20 [ 816.382254] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 816.383348] kmem_cache_alloc+0x159/0x310 [ 816.384241] vm_area_alloc+0x1c/0x110 [ 816.385086] mmap_region+0x819/0x1590 [ 816.385918] ? get_unmapped_area+0x2f0/0x420 [ 816.386877] do_mmap+0xcdb/0x11e0 [ 816.387640] vm_mmap_pgoff+0x198/0x1f0 [ 816.388515] ? randomize_page+0xb0/0xb0 [ 816.389386] ? __fget_files+0x296/0x4c0 [ 816.390258] ksys_mmap_pgoff+0x41c/0x560 [ 816.391136] ? find_mergeable_anon_vma+0x250/0x250 [ 816.392205] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 816.393338] ? syscall_enter_from_user_mode+0x1d/0x50 [ 816.394455] do_syscall_64+0x33/0x40 [ 816.395257] entry_SYSCALL_64_after_hwframe+0x61/0xc6 [ 816.396372] RIP: 0033:0x7f8249b64b62 [ 816.397169] Code: 00 00 00 00 00 0f 1f 00 41 f7 c1 ff 0f 00 00 75 27 55 48 89 fd 53 89 cb 48 85 ff 74 3b 41 89 da 48 89 ef b8 09 00 00 00 0f 05 <48> 3d 00 f0 ff ff 77 66 5b 5d c3 0f 1f 00 48 c7 c0 bc ff ff ff 64 [ 816.401169] RSP: 002b:00007f82470da0f8 EFLAGS: 00000206 ORIG_RAX: 0000000000000009 [ 816.402827] RAX: ffffffffffffffda RBX: 0000000000008011 RCX: 00007f8249b64b62 [ 816.404377] RDX: 0000000000000003 RSI: 0000000000120140 RDI: 0000000020ffd000 [ 816.405925] RBP: 0000000020ffd000 R08: 0000000000000004 R09: 0000000000000000 [ 816.407465] R10: 0000000000008011 R11: 0000000000000206 R12: 0000000020000100 [ 816.409026] R13: 0000000020ffc000 R14: 0000000020000040 R15: 0000000020ffd000 19:22:08 executing program 1: perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) clone3(&(0x7f0000000140)={0x0, 0x0, 0x0, 0x0, {0x2000}, 0x0, 0x0, 0x0, 0x0}, 0x58) 19:22:08 executing program 7: perf_event_open(&(0x7f0000000200)={0x2, 0x80, 0x8, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) creat(0x0, 0x0) perf_event_open(&(0x7f0000000000)={0xb, 0x80, 0x8, 0x8, 0x0, 0x7, 0x0, 0x6, 0x80, 0x2, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x1, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x1, 0x1, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x1, 0x1, 0x1, 0x1, 0x0, 0x3, 0x0, @perf_config_ext={0x3, 0x6}, 0x4, 0xcc80, 0x4, 0x0, 0x0, 0x10000, 0x2707, 0x0, 0x2, 0x0, 0x100000000}, 0x0, 0x5, 0xffffffffffffffff, 0x3) clone3(&(0x7f0000000140)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) write(0xffffffffffffffff, 0x0, 0x0) 19:22:08 executing program 0: r0 = perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) perf_event_open(&(0x7f0000001d80)={0x2, 0x80, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, r0, 0x0) perf_event_open(&(0x7f0000001d80)={0x2, 0x80, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, r0, 0x0) 19:22:08 executing program 1: perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) clone3(&(0x7f0000000140)={0x0, 0x0, 0x0, 0x0, {0x3f00}, 0x0, 0x0, 0x0, 0x0}, 0x58) 19:22:08 executing program 7: perf_event_open(&(0x7f0000000200)={0x2, 0x80, 0x8, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = creat(0x0, 0x0) clone3(&(0x7f0000000140)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) write(0xffffffffffffffff, 0x0, 0x0) fcntl$dupfd(0xffffffffffffffff, 0x406, r0) 19:22:08 executing program 3: creat(0x0, 0x0) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) clone3(&(0x7f0000000140)={0x40000000, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) 19:22:08 executing program 6: syz_open_dev$sg(0x0, 0x0, 0x0) syz_io_uring_setup(0x4ee5, &(0x7f0000000080), &(0x7f0000ffd000/0x3000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000040), &(0x7f0000000100)) (fail_nth: 75) [ 816.704548] FAULT_INJECTION: forcing a failure. [ 816.704548] name fail_page_alloc, interval 1, probability 0, space 0, times 0 [ 816.707163] CPU: 0 PID: 12820 Comm: syz-executor.6 Not tainted 5.10.185 #1 [ 816.708583] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 816.710269] Call Trace: [ 816.710809] dump_stack+0x107/0x167 [ 816.711544] should_fail.cold+0x5/0xa [ 816.712341] __alloc_pages_nodemask+0x182/0x600 [ 816.713284] ? memtype_seq_stop+0x20/0x20 [ 816.714132] ? pat_pagerange_is_ram+0xa8/0x140 [ 816.715057] ? __alloc_pages_slowpath.constprop.0+0x2130/0x2130 [ 816.716259] ? x86_has_pat_wp+0x80/0x80 [ 816.717094] ? lookup_memtype+0x5b/0x200 [ 816.717915] ? reserve_pfn_range+0xdf/0x400 [ 816.718779] alloc_pages_current+0x187/0x280 [ 816.719673] ? __is_insn_slot_addr+0x14c/0x290 [ 816.720641] pte_alloc_one+0x16/0x1a0 [ 816.721449] __pte_alloc+0x1d/0x330 [ 816.722180] remap_pfn_range+0xaf2/0x1040 [ 816.723030] ? apply_to_existing_page_range+0x40/0x40 [ 816.724075] ? memcg_slab_post_alloc_hook+0x17a/0x430 [ 816.725124] io_uring_mmap+0x398/0x530 [ 816.725920] mmap_region+0xb5a/0x1590 [ 816.726701] do_mmap+0xcdb/0x11e0 [ 816.727408] vm_mmap_pgoff+0x198/0x1f0 [ 816.728191] ? randomize_page+0xb0/0xb0 [ 816.729009] ? __fget_files+0x296/0x4c0 [ 816.729823] ksys_mmap_pgoff+0x41c/0x560 [ 816.730657] ? find_mergeable_anon_vma+0x250/0x250 [ 816.731653] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 816.732710] ? syscall_enter_from_user_mode+0x1d/0x50 [ 816.733758] do_syscall_64+0x33/0x40 [ 816.734510] entry_SYSCALL_64_after_hwframe+0x61/0xc6 [ 816.735536] RIP: 0033:0x7f8249b64b62 [ 816.736307] Code: 00 00 00 00 00 0f 1f 00 41 f7 c1 ff 0f 00 00 75 27 55 48 89 fd 53 89 cb 48 85 ff 74 3b 41 89 da 48 89 ef b8 09 00 00 00 0f 05 <48> 3d 00 f0 ff ff 77 66 5b 5d c3 0f 1f 00 48 c7 c0 bc ff ff ff 64 [ 816.740032] RSP: 002b:00007f82470da0f8 EFLAGS: 00000206 ORIG_RAX: 0000000000000009 [ 816.741565] RAX: ffffffffffffffda RBX: 0000000000008011 RCX: 00007f8249b64b62 [ 816.742991] RDX: 0000000000000003 RSI: 0000000000120140 RDI: 0000000020ffd000 [ 816.744421] RBP: 0000000020ffd000 R08: 0000000000000004 R09: 0000000000000000 [ 816.745835] R10: 0000000000008011 R11: 0000000000000206 R12: 0000000020000100 [ 816.747252] R13: 0000000020ffc000 R14: 0000000020000040 R15: 0000000020ffd000 19:22:24 executing program 3: creat(0x0, 0x0) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) clone3(&(0x7f0000000140)={0x100000800, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) 19:22:24 executing program 5: perf_event_open(&(0x7f0000000200)={0x2, 0x80, 0x8, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_io_uring_setup(0x44af, 0x0, &(0x7f0000000000/0x12000)=nil, &(0x7f000000e000/0x1000)=nil, &(0x7f0000000080), &(0x7f0000000040)) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) clone3(&(0x7f0000000140)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) write(0xffffffffffffffff, &(0x7f0000000100)='?', 0x1) [ 831.969144] FAULT_INJECTION: forcing a failure. [ 831.969144] name fail_page_alloc, interval 1, probability 0, space 0, times 0 [ 831.971856] CPU: 0 PID: 13123 Comm: syz-executor.4 Not tainted 5.10.185 #1 [ 831.973462] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 831.975343] Call Trace: [ 831.975950] dump_stack+0x107/0x167 [ 831.976791] should_fail.cold+0x5/0xa [ 831.977672] __alloc_pages_nodemask+0x182/0x600 [ 831.978835] ? __alloc_pages_slowpath.constprop.0+0x2130/0x2130 [ 831.980197] ? find_held_lock+0x2c/0x110 [ 831.981150] ? __pmd_alloc+0x2db/0x5e0 [ 831.982032] ? lock_downgrade+0x6d0/0x6d0 [ 831.982975] ? do_raw_spin_lock+0x121/0x260 [ 831.983971] alloc_pages_current+0x187/0x280 [ 831.984985] pte_alloc_one+0x16/0x1a0 [ 831.985846] __pte_alloc+0x1d/0x330 [ 831.986673] copy_page_range+0x1b77/0x3820 [ 831.987629] ? lock_chain_count+0x20/0x20 [ 831.988617] ? up_write+0x191/0x550 [ 831.989445] ? vm_iomap_memory+0x190/0x190 [ 831.990404] ? downgrade_write+0x3a0/0x3a0 [ 831.991361] ? anon_vma_interval_tree_insert+0x277/0x450 [ 831.992601] ? __vma_link_rb+0x540/0x700 [ 831.993524] dup_mm+0x8b9/0x1110 [ 831.994306] ? vm_area_dup+0x290/0x290 [ 831.995192] ? __raw_spin_lock_init+0x36/0x110 [ 831.996226] copy_process+0x24e2/0x6740 [ 831.997125] ? lock_acquire+0x197/0x470 [ 831.998017] ? find_held_lock+0x2c/0x110 [ 831.998951] ? __cleanup_sighand+0xb0/0xb0 [ 831.999912] ? _copy_from_user+0xfb/0x1b0 [ 832.000869] kernel_clone+0xe7/0x980 [ 832.001702] ? lock_acquire+0x197/0x470 [ 832.002586] ? create_io_thread+0xf0/0xf0 [ 832.003529] ? ksys_write+0x21a/0x260 [ 832.004389] ? lock_downgrade+0x6d0/0x6d0 [ 832.005333] __do_sys_clone3+0x1e5/0x320 [ 832.006244] ? __do_sys_clone+0x110/0x110 [ 832.007196] ? rcu_read_lock_any_held+0x75/0xa0 [ 832.008238] ? vfs_write+0x354/0xa70 [ 832.009104] ? fput_many+0x2f/0x1a0 [ 832.009923] ? ksys_write+0x1a9/0x260 [ 832.010774] ? __ia32_sys_read+0xb0/0xb0 [ 832.011688] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 832.012880] ? syscall_enter_from_user_mode+0x1d/0x50 [ 832.014049] ? trace_hardirqs_on+0x5b/0x180 [ 832.015016] do_syscall_64+0x33/0x40 [ 832.015855] entry_SYSCALL_64_after_hwframe+0x61/0xc6 [ 832.017015] RIP: 0033:0x7f0ecd504b19 [ 832.017859] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 832.021931] RSP: 002b:00007f0ecaa7a188 EFLAGS: 00000246 ORIG_RAX: 00000000000001b3 [ 832.023644] RAX: ffffffffffffffda RBX: 00007f0ecd617f60 RCX: 00007f0ecd504b19 [ 832.025254] RDX: 0000000000000000 RSI: 0000000000000058 RDI: 0000000020000140 [ 832.026858] RBP: 00007f0ecaa7a1d0 R08: 0000000000000000 R09: 0000000000000000 [ 832.028454] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 832.030082] R13: 00007fffa049ab2f R14: 00007f0ecaa7a300 R15: 0000000000022000 19:22:24 executing program 4: clone3(&(0x7f0000000140)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) (fail_nth: 65) 19:22:24 executing program 0: r0 = perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r1 = perf_event_open(&(0x7f0000001d80)={0x2, 0x80, 0x70, 0x0, 0x4, 0x0, 0x0, 0x0, 0xc0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x4100, 0x4}, 0x0, 0x0, r0, 0x0) r2 = perf_event_open(&(0x7f0000001d80)={0x2, 0x80, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, r0, 0x0) readv(r2, &(0x7f0000001200)=[{&(0x7f00000000c0)=""/4096, 0x1000}], 0x1) r3 = getpgrp(0x0) pidfd_open(r3, 0x0) r4 = syz_open_dev$sg(&(0x7f0000000400), 0x0, 0x0) r5 = syz_open_dev$evdev(&(0x7f0000000040), 0x0, 0x8802) r6 = fcntl$dupfd(r5, 0x0, r4) perf_event_open(&(0x7f0000001140)={0x3, 0x80, 0x28, 0x21, 0x4, 0x3, 0x0, 0x2, 0x40a0, 0xc, 0x1, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x1, 0x0, 0x0, 0x1, 0x1, 0x1, 0x0, 0x1, 0x0, 0x1, 0x0, 0x1, 0x0, 0x1, 0x0, 0x1, 0x0, 0x1, 0x0, 0x1, 0x0, 0x4, 0x4, @perf_config_ext={0x8, 0x8}, 0x14149, 0x4, 0x3000000, 0x6, 0xe4, 0x0, 0x6, 0x0, 0x6, 0x0, 0x800}, r3, 0xe, r1, 0x2) writev(r6, &(0x7f0000000140)=[{&(0x7f0000000300)="0040abe02400030021206cda3b5e5672b89aeddb2a535fbd", 0x7e0}], 0x1) perf_event_open(&(0x7f00000010c0)={0x5, 0x80, 0x9, 0x3f, 0x5, 0x0, 0x0, 0x6b14, 0x200, 0x1, 0x0, 0x1, 0x0, 0x1, 0x0, 0x1, 0x0, 0x1, 0x0, 0x1, 0x1, 0x1, 0x1, 0x1, 0x0, 0x0, 0x1, 0x1, 0x0, 0x1, 0x0, 0x1, 0x1, 0x1, 0x1, 0x1, 0x0, 0x1, 0x0, 0x0, 0x1, 0x1, 0x0, 0x0, 0x1, 0x0, 0x1, 0x0, 0x4, 0x1, @perf_bp={&(0x7f0000000000), 0x3}, 0x4, 0x4, 0x4, 0x1, 0x7fff, 0x1, 0x3, 0x0, 0x5, 0x0, 0xb92}, r3, 0x101, r6, 0x3) 19:22:24 executing program 2: perf_event_open(&(0x7f0000000200)={0x2, 0x80, 0x8, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) creat(0x0, 0x0) syz_io_uring_setup(0x44af, &(0x7f0000000100)={0x0, 0x0, 0x0, 0x0, 0x389}, &(0x7f0000000000/0x12000)=nil, &(0x7f000000e000/0x1000)=nil, &(0x7f0000000080), &(0x7f0000000040)) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) clone3(&(0x7f0000000140)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) 19:22:24 executing program 1: perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) clone3(&(0x7f0000000140)={0x0, 0x0, 0x0, 0x0, {0x4000}, 0x0, 0x0, 0x0, 0x0}, 0x58) 19:22:24 executing program 7: perf_event_open(&(0x7f0000000200)={0x2, 0x80, 0x8, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = creat(0x0, 0x0) r1 = clone3(&(0x7f0000000140)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) ioctl$SECCOMP_IOCTL_NOTIF_RECV(r0, 0xc0502100, &(0x7f0000000380)={0x0, 0x0}) r3 = getpgrp(0x0) pidfd_open(r3, 0x0) r4 = getpgrp(0x0) pidfd_open(r4, 0x0) r5 = getpgrp(0x0) pidfd_open(r5, 0x0) ioctl$TIOCGSID(r0, 0x5429, &(0x7f00000001c0)=0x0) recvmmsg$unix(r0, &(0x7f0000000d80)=[{{&(0x7f0000000400)=@abs, 0x6e, &(0x7f0000000980)=[{&(0x7f0000000480)=""/158, 0x9e}, {&(0x7f0000000540)=""/192, 0xc0}, {&(0x7f0000000600)=""/110, 0x6e}, {&(0x7f0000000680)=""/241, 0xf1}, {&(0x7f0000000780)=""/196, 0xc4}, {&(0x7f0000000880)=""/35, 0x23}, {&(0x7f00000008c0)=""/134, 0x86}], 0x7}}, {{&(0x7f0000000a00)=@abs, 0x6e, &(0x7f0000000c80)=[{&(0x7f0000000a80)=""/106, 0x6a}, {&(0x7f0000000b00)=""/151, 0x97}, {&(0x7f0000000bc0)=""/135, 0x87}], 0x3, &(0x7f0000000cc0)=[@cred={{0x1c, 0x1, 0x2, {0x0}}}, @rights={{0x38, 0x1, 0x1, [0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff]}}, @rights={{0x20, 0x1, 0x1, [0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff]}}, @rights={{0x2c, 0x1, 0x1, [0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff]}}], 0xa8}}], 0x2, 0x40010102, &(0x7f0000000e00)) r8 = syz_open_dev$sg(&(0x7f0000000400), 0x0, 0x0) r9 = syz_open_dev$evdev(&(0x7f0000000040), 0x0, 0x8802) r10 = fcntl$dupfd(r9, 0x0, r8) writev(r10, &(0x7f0000000140)=[{&(0x7f0000000300)="0040abe02400030021206cda3b5e5672b89aeddb2a535fbd", 0x7e0}], 0x1) clone3(&(0x7f0000000e80)={0x400, &(0x7f0000000000), &(0x7f0000000040), &(0x7f0000000080), {0x30}, &(0x7f00000000c0)=""/105, 0x69, &(0x7f0000000280)=""/209, &(0x7f0000000e40)=[r2, r3, r4, r5, r6, r1, r1, r1, r7], 0x9, {r10}}, 0x58) write(0xffffffffffffffff, 0x0, 0x0) 19:22:24 executing program 6: syz_open_dev$sg(0x0, 0x0, 0x0) syz_io_uring_setup(0x4ee5, &(0x7f0000000080), &(0x7f0000ffd000/0x3000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000040), &(0x7f0000000100)) (fail_nth: 76) [ 832.061699] FAULT_INJECTION: forcing a failure. [ 832.061699] name failslab, interval 1, probability 0, space 0, times 0 [ 832.063001] CPU: 1 PID: 13278 Comm: syz-executor.6 Not tainted 5.10.185 #1 [ 832.063740] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 832.064656] Call Trace: [ 832.064964] dump_stack+0x107/0x167 [ 832.065363] should_fail.cold+0x5/0xa [ 832.065784] ? ptlock_alloc+0x1d/0x70 [ 832.066202] should_failslab+0x5/0x20 [ 832.066612] kmem_cache_alloc+0x5b/0x310 [ 832.067053] ptlock_alloc+0x1d/0x70 [ 832.067449] pte_alloc_one+0x68/0x1a0 [ 832.067865] __pte_alloc+0x1d/0x330 [ 832.068257] remap_pfn_range+0xaf2/0x1040 [ 832.068739] ? apply_to_existing_page_range+0x40/0x40 [ 832.069299] ? memcg_slab_post_alloc_hook+0x17a/0x430 [ 832.069868] io_uring_mmap+0x398/0x530 [ 832.070292] mmap_region+0xb5a/0x1590 [ 832.070713] do_mmap+0xcdb/0x11e0 [ 832.071112] vm_mmap_pgoff+0x198/0x1f0 [ 832.071542] ? randomize_page+0xb0/0xb0 [ 832.071992] ? __fget_files+0x296/0x4c0 [ 832.072451] ksys_mmap_pgoff+0x41c/0x560 [ 832.072899] ? find_mergeable_anon_vma+0x250/0x250 [ 832.073456] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 832.074027] ? syscall_enter_from_user_mode+0x1d/0x50 [ 832.074610] do_syscall_64+0x33/0x40 [ 832.075018] entry_SYSCALL_64_after_hwframe+0x61/0xc6 [ 832.075597] RIP: 0033:0x7f8249b64b62 [ 832.076003] Code: 00 00 00 00 00 0f 1f 00 41 f7 c1 ff 0f 00 00 75 27 55 48 89 fd 53 89 cb 48 85 ff 74 3b 41 89 da 48 89 ef b8 09 00 00 00 0f 05 <48> 3d 00 f0 ff ff 77 66 5b 5d c3 0f 1f 00 48 c7 c0 bc ff ff ff 64 [ 832.078095] RSP: 002b:00007f82470da0f8 EFLAGS: 00000206 ORIG_RAX: 0000000000000009 [ 832.078966] RAX: ffffffffffffffda RBX: 0000000000008011 RCX: 00007f8249b64b62 [ 832.079764] RDX: 0000000000000003 RSI: 0000000000120140 RDI: 0000000020ffd000 [ 832.080570] RBP: 0000000020ffd000 R08: 0000000000000004 R09: 0000000000000000 [ 832.081370] R10: 0000000000008011 R11: 0000000000000206 R12: 0000000020000100 [ 832.082174] R13: 0000000020ffc000 R14: 0000000020000040 R15: 0000000020ffd000 19:22:24 executing program 1: perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) clone3(&(0x7f0000000140)={0x0, 0x0, 0x0, 0x0, {0x20010}, 0x0, 0x0, 0x0, 0x0}, 0x58) 19:22:24 executing program 7: r0 = perf_event_open(&(0x7f0000000200)={0x2, 0x80, 0x8, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) creat(0x0, 0x0) ioctl$PERF_EVENT_IOC_ENABLE(r0, 0x2400, 0x3) r1 = clone3(&(0x7f0000000140)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) write(0xffffffffffffffff, 0x0, 0x0) r2 = syz_open_dev$sg(&(0x7f0000000400), 0x0, 0x0) r3 = syz_open_dev$evdev(&(0x7f0000000040), 0x0, 0x8802) r4 = fcntl$dupfd(r3, 0x0, r2) writev(r4, &(0x7f0000000140)=[{&(0x7f0000000300)="0040abe02400030021206cda3b5e5672b89aeddb2a535fbd", 0x7e0}], 0x1) perf_event_open(&(0x7f0000000000)={0x2, 0x80, 0xc, 0x3a, 0x0, 0x9, 0x0, 0xf11, 0x3100, 0x1, 0x0, 0x0, 0x1, 0x0, 0x1, 0x0, 0x0, 0x1, 0x1, 0x0, 0x0, 0x1, 0x1, 0x0, 0x1, 0x2, 0x1, 0x1, 0x1, 0x1, 0x1, 0x0, 0x1, 0x0, 0x1, 0x0, 0x1, 0x1, 0x1, 0x0, 0x1, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2739, 0x1, @perf_config_ext={0x4, 0x3eb5}, 0x408, 0x9, 0x4e2, 0x0, 0x6, 0x20, 0x7, 0x0, 0x0, 0x0, 0x40}, r1, 0x2, r4, 0x2) 19:22:24 executing program 6: syz_open_dev$sg(0x0, 0x0, 0x0) syz_io_uring_setup(0x4ee5, &(0x7f0000000080), &(0x7f0000ffd000/0x3000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000040), &(0x7f0000000100)) (fail_nth: 77) 19:22:24 executing program 0: r0 = perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) perf_event_open(&(0x7f0000001d80)={0x2, 0x80, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, r0, 0x0) r1 = perf_event_open(&(0x7f00000010c0)={0x2, 0x80, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x800, 0x0, @perf_bp={0x0}}, 0x0, 0x0, r0, 0x8) readv(r1, &(0x7f0000001200)=[{&(0x7f00000000c0)=""/4096, 0x1000}], 0x1) perf_event_open(&(0x7f0000001140)={0x1, 0x80, 0x6, 0x3, 0x5, 0x1, 0x0, 0x7, 0x8431, 0xa, 0x0, 0x1, 0x0, 0x1, 0x1, 0x1, 0x0, 0x1, 0x1, 0x0, 0x0, 0x1, 0x1, 0x0, 0x1, 0x3, 0x0, 0x1, 0x0, 0x1, 0x0, 0x1, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x1, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x0, 0x4, 0x4, @perf_config_ext={0x380000000000, 0x8}, 0x40c40, 0x8a7b, 0x8, 0x6, 0x8, 0x0, 0xef5, 0x0, 0x0, 0x0, 0x23}, 0xffffffffffffffff, 0x10, 0xffffffffffffffff, 0x2) r2 = syz_open_dev$char_usb(0xc, 0xb4, 0xd7d0) ftruncate(r2, 0x6) 19:22:24 executing program 1: perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) clone3(&(0x7f0000000140)={0x0, 0x0, 0x0, 0x0, {0x20200}, 0x0, 0x0, 0x0, 0x0}, 0x58) 19:22:24 executing program 5: perf_event_open(&(0x7f0000000200)={0x2, 0x80, 0x8, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_io_uring_setup(0x44af, &(0x7f0000000100)={0x0, 0x0, 0x0, 0x0, 0x389}, &(0x7f0000000000/0x12000)=nil, &(0x7f000000e000/0x1000)=nil, &(0x7f0000000080), &(0x7f0000000040)) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) clone3(&(0x7f0000000140)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) write(0xffffffffffffffff, &(0x7f0000000100)='?', 0x1) [ 832.283907] FAULT_INJECTION: forcing a failure. [ 832.283907] name failslab, interval 1, probability 0, space 0, times 0 [ 832.286487] CPU: 0 PID: 13450 Comm: syz-executor.6 Not tainted 5.10.185 #1 [ 832.288033] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 832.289833] Call Trace: [ 832.290423] dump_stack+0x107/0x167 [ 832.291214] should_fail.cold+0x5/0xa [ 832.292070] ? create_object.isra.0+0x3a/0xa20 [ 832.293075] should_failslab+0x5/0x20 [ 832.293895] kmem_cache_alloc+0x5b/0x310 [ 832.294797] ? __alloc_pages_slowpath.constprop.0+0x2130/0x2130 [ 832.296098] create_object.isra.0+0x3a/0xa20 [ 832.297059] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 832.298161] kmem_cache_alloc+0x159/0x310 [ 832.299068] ptlock_alloc+0x1d/0x70 [ 832.299860] pte_alloc_one+0x68/0x1a0 [ 832.300699] __pte_alloc+0x1d/0x330 [ 832.301495] remap_pfn_range+0xaf2/0x1040 [ 832.302426] ? apply_to_existing_page_range+0x40/0x40 [ 832.303539] ? memcg_slab_post_alloc_hook+0x17a/0x430 [ 832.304679] io_uring_mmap+0x398/0x530 [ 832.305529] mmap_region+0xb5a/0x1590 [ 832.306375] do_mmap+0xcdb/0x11e0 [ 832.307140] vm_mmap_pgoff+0x198/0x1f0 [ 832.307992] ? randomize_page+0xb0/0xb0 [ 832.308856] ? __fget_files+0x296/0x4c0 [ 832.309732] ksys_mmap_pgoff+0x41c/0x560 [ 832.310617] ? find_mergeable_anon_vma+0x250/0x250 [ 832.311687] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 832.312845] ? syscall_enter_from_user_mode+0x1d/0x50 [ 832.313964] do_syscall_64+0x33/0x40 [ 832.314771] entry_SYSCALL_64_after_hwframe+0x61/0xc6 [ 832.315879] RIP: 0033:0x7f8249b64b62 [ 832.316695] Code: 00 00 00 00 00 0f 1f 00 41 f7 c1 ff 0f 00 00 75 27 55 48 89 fd 53 89 cb 48 85 ff 74 3b 41 89 da 48 89 ef b8 09 00 00 00 0f 05 <48> 3d 00 f0 ff ff 77 66 5b 5d c3 0f 1f 00 48 c7 c0 bc ff ff ff 64 [ 832.320683] RSP: 002b:00007f82470da0f8 EFLAGS: 00000206 ORIG_RAX: 0000000000000009 [ 832.322422] RAX: ffffffffffffffda RBX: 0000000000008011 RCX: 00007f8249b64b62 [ 832.323948] RDX: 0000000000000003 RSI: 0000000000120140 RDI: 0000000020ffd000 [ 832.325484] RBP: 0000000020ffd000 R08: 0000000000000004 R09: 0000000000000000 [ 832.327008] R10: 0000000000008011 R11: 0000000000000206 R12: 0000000020000100 [ 832.328540] R13: 0000000020ffc000 R14: 0000000020000040 R15: 0000000020ffd000 19:22:24 executing program 1: perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) clone3(&(0x7f0000000140)={0x0, 0x0, 0x0, 0x0, {0x80000}, 0x0, 0x0, 0x0, 0x0}, 0x58) 19:22:24 executing program 2: perf_event_open(&(0x7f0000000200)={0x2, 0x80, 0x8, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) creat(0x0, 0x0) syz_io_uring_setup(0x44af, &(0x7f0000000100)={0x0, 0x2}, &(0x7f0000000000/0x12000)=nil, &(0x7f000000e000/0x1000)=nil, &(0x7f0000000080), &(0x7f0000000040)) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) clone3(&(0x7f0000000140)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) 19:22:38 executing program 3: creat(0x0, 0x0) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) clone3(&(0x7f0000000140)={0x1b0be1f000, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) 19:22:38 executing program 5: perf_event_open(&(0x7f0000000200)={0x2, 0x80, 0x8, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_io_uring_setup(0x44af, &(0x7f0000000100)={0x0, 0x0, 0x0, 0x0, 0x389}, &(0x7f0000000000/0x12000)=nil, &(0x7f000000e000/0x1000)=nil, &(0x7f0000000080), &(0x7f0000000040)) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) clone3(&(0x7f0000000140)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) write(0xffffffffffffffff, &(0x7f0000000100)='?', 0x1) 19:22:38 executing program 1: perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) clone3(&(0x7f0000000140)={0x0, 0x0, 0x0, 0x0, {0x101000}, 0x0, 0x0, 0x0, 0x0}, 0x58) 19:22:38 executing program 7: perf_event_open(&(0x7f0000000200)={0x2, 0x80, 0x8, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = creat(0x0, 0x0) clone3(&(0x7f0000000140)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) openat(r0, &(0x7f0000000000)='./file0\x00', 0x160, 0x30) socket$inet6_tcp(0xa, 0x1, 0x0) write(0xffffffffffffffff, 0x0, 0x0) r1 = signalfd(r0, &(0x7f0000000040)={[0x2]}, 0x8) perf_event_open(&(0x7f0000000080)={0x2, 0x80, 0x5, 0x80, 0x2a, 0xe0, 0x0, 0x2, 0x0, 0x0, 0x1, 0x1, 0x0, 0x1, 0x0, 0x1, 0x1, 0x1, 0x1, 0x0, 0x1, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x1, 0x1, 0x1, 0x0, 0x1, 0x0, 0x0, 0x0, 0x1, 0x1, 0x1, 0x1, 0x1, 0x0, 0x1, 0x0, 0x0, 0x0, 0x2, @perf_config_ext={0x8, 0xffffffffffff8000}, 0x400, 0xadb0, 0x8, 0x1, 0x800, 0x5, 0xff, 0x0, 0x8, 0x0, 0x2}, 0xffffffffffffffff, 0x2, r1, 0x9) 19:22:38 executing program 2: perf_event_open(&(0x7f0000000200)={0x2, 0x80, 0x8, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) creat(0x0, 0x0) syz_io_uring_setup(0x44af, &(0x7f0000000100)={0x0, 0x2}, &(0x7f0000000000/0x12000)=nil, &(0x7f000000e000/0x1000)=nil, &(0x7f0000000080), &(0x7f0000000040)) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) clone3(&(0x7f0000000140)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) 19:22:38 executing program 4: clone3(&(0x7f0000000140)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) (fail_nth: 66) 19:22:38 executing program 6: syz_open_dev$sg(0x0, 0x0, 0x0) syz_io_uring_setup(0x4ee5, &(0x7f0000000080), &(0x7f0000ffd000/0x3000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000040), &(0x7f0000000100)) (fail_nth: 78) [ 846.016846] FAULT_INJECTION: forcing a failure. [ 846.016846] name fail_page_alloc, interval 1, probability 0, space 0, times 0 [ 846.019287] CPU: 0 PID: 13666 Comm: syz-executor.6 Not tainted 5.10.185 #1 [ 846.020708] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 846.022397] Call Trace: [ 846.022942] dump_stack+0x107/0x167 [ 846.023695] should_fail.cold+0x5/0xa [ 846.024484] __alloc_pages_nodemask+0x182/0x600 [ 846.025457] ? __alloc_pages_slowpath.constprop.0+0x2130/0x2130 [ 846.026690] alloc_pages_current+0x187/0x280 [ 846.027587] pte_alloc_one+0x16/0x1a0 [ 846.028361] __pte_alloc+0x1d/0x330 [ 846.028457] FAULT_INJECTION: forcing a failure. [ 846.028457] name failslab, interval 1, probability 0, space 0, times 0 [ 846.029209] remap_pfn_range+0xaf2/0x1040 [ 846.029254] ? apply_to_existing_page_range+0x40/0x40 [ 846.033365] ? memcg_slab_post_alloc_hook+0x17a/0x430 [ 846.034414] io_uring_mmap+0x398/0x530 [ 846.035209] mmap_region+0xb5a/0x1590 [ 846.035992] do_mmap+0xcdb/0x11e0 [ 846.036712] vm_mmap_pgoff+0x198/0x1f0 [ 846.037504] ? randomize_page+0xb0/0xb0 [ 846.038309] ? __fget_files+0x296/0x4c0 [ 846.039121] ksys_mmap_pgoff+0x41c/0x560 [ 846.039943] ? find_mergeable_anon_vma+0x250/0x250 [ 846.040957] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 846.042024] ? syscall_enter_from_user_mode+0x1d/0x50 [ 846.043073] do_syscall_64+0x33/0x40 [ 846.043858] entry_SYSCALL_64_after_hwframe+0x61/0xc6 [ 846.044923] RIP: 0033:0x7f8249b64b62 [ 846.045682] Code: 00 00 00 00 00 0f 1f 00 41 f7 c1 ff 0f 00 00 75 27 55 48 89 fd 53 89 cb 48 85 ff 74 3b 41 89 da 48 89 ef b8 09 00 00 00 0f 05 <48> 3d 00 f0 ff ff 77 66 5b 5d c3 0f 1f 00 48 c7 c0 bc ff ff ff 64 [ 846.049459] RSP: 002b:00007f82470da0f8 EFLAGS: 00000206 ORIG_RAX: 0000000000000009 [ 846.050995] RAX: ffffffffffffffda RBX: 0000000000008011 RCX: 00007f8249b64b62 [ 846.052439] RDX: 0000000000000003 RSI: 0000000000120140 RDI: 0000000020ffd000 [ 846.053883] RBP: 0000000020ffd000 R08: 0000000000000004 R09: 0000000000000000 [ 846.055334] R10: 0000000000008011 R11: 0000000000000206 R12: 0000000020000100 [ 846.056785] R13: 0000000020ffc000 R14: 0000000020000040 R15: 0000000020ffd000 [ 846.058249] CPU: 1 PID: 13669 Comm: syz-executor.4 Not tainted 5.10.185 #1 [ 846.059756] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 846.061443] Call Trace: [ 846.061980] dump_stack+0x107/0x167 [ 846.062724] should_fail.cold+0x5/0xa [ 846.063503] ? ptlock_alloc+0x1d/0x70 [ 846.064281] should_failslab+0x5/0x20 [ 846.065069] kmem_cache_alloc+0x5b/0x310 [ 846.065898] ptlock_alloc+0x1d/0x70 [ 846.066640] pte_alloc_one+0x68/0x1a0 [ 846.067412] __pte_alloc+0x1d/0x330 [ 846.068155] copy_page_range+0x1b77/0x3820 [ 846.069023] ? lock_chain_count+0x20/0x20 [ 846.069900] ? up_write+0x191/0x550 [ 846.070642] ? vm_iomap_memory+0x190/0x190 [ 846.071498] ? downgrade_write+0x3a0/0x3a0 [ 846.072357] ? anon_vma_interval_tree_insert+0x277/0x450 19:22:38 executing program 0: r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) syz_genetlink_get_family_id$netlbl_cipso(&(0x7f00000002c0), r0) syz_genetlink_get_family_id$netlbl_mgmt(&(0x7f0000000000), r0) r1 = perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) perf_event_open(&(0x7f0000001d80)={0x2, 0x80, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, r1, 0x0) r2 = perf_event_open(&(0x7f0000001d80)={0x2, 0x80, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, r1, 0x0) readv(r2, &(0x7f0000001200)=[{&(0x7f00000000c0)=""/4096, 0x1000}], 0x1) [ 846.073472] ? __vma_link_rb+0x540/0x700 [ 846.074462] dup_mm+0x8b9/0x1110 [ 846.075156] ? vm_area_dup+0x290/0x290 [ 846.075939] ? __raw_spin_lock_init+0x36/0x110 [ 846.076869] copy_process+0x24e2/0x6740 [ 846.077664] ? lock_acquire+0x197/0x470 [ 846.078461] ? find_held_lock+0x2c/0x110 [ 846.079294] ? __cleanup_sighand+0xb0/0xb0 [ 846.080154] ? _copy_from_user+0xfb/0x1b0 [ 846.081000] kernel_clone+0xe7/0x980 [ 846.081748] ? lock_acquire+0x197/0x470 [ 846.082544] ? create_io_thread+0xf0/0xf0 [ 846.083388] ? ksys_write+0x21a/0x260 [ 846.084150] ? lock_downgrade+0x6d0/0x6d0 [ 846.085001] __do_sys_clone3+0x1e5/0x320 [ 846.085818] ? __do_sys_clone+0x110/0x110 [ 846.086673] ? rcu_read_lock_any_held+0x75/0xa0 [ 846.087605] ? vfs_write+0x354/0xa70 [ 846.088355] ? fput_many+0x2f/0x1a0 [ 846.089093] ? ksys_write+0x1a9/0x260 [ 846.089856] ? __ia32_sys_read+0xb0/0xb0 [ 846.090676] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 846.091728] ? syscall_enter_from_user_mode+0x1d/0x50 [ 846.092775] ? trace_hardirqs_on+0x5b/0x180 [ 846.093645] do_syscall_64+0x33/0x40 [ 846.094396] entry_SYSCALL_64_after_hwframe+0x61/0xc6 [ 846.095422] RIP: 0033:0x7f0ecd504b19 [ 846.096169] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 846.099842] RSP: 002b:00007f0ecaa7a188 EFLAGS: 00000246 ORIG_RAX: 00000000000001b3 [ 846.101374] RAX: ffffffffffffffda RBX: 00007f0ecd617f60 RCX: 00007f0ecd504b19 [ 846.102795] RDX: 0000000000000000 RSI: 0000000000000058 RDI: 0000000020000140 [ 846.104219] RBP: 00007f0ecaa7a1d0 R08: 0000000000000000 R09: 0000000000000000 [ 846.105662] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 846.107084] R13: 00007fffa049ab2f R14: 00007f0ecaa7a300 R15: 0000000000022000 19:22:38 executing program 1: perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) clone3(&(0x7f0000000140)={0x0, 0x0, 0x0, 0x0, {0xf0ff1f}, 0x0, 0x0, 0x0, 0x0}, 0x58) 19:22:38 executing program 0: perf_event_open(&(0x7f0000001140)={0x3, 0x80, 0x3, 0x7, 0x7, 0xff, 0x0, 0x81, 0x1000, 0xb, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x1, 0x1, 0x1, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x1, 0x1, 0x0, 0x1, 0x0, 0x1, 0x1, 0x0, 0x1, 0x1, 0x0, 0x0, 0x1, 0x1, 0x0, 0x1, 0x0, 0x1, 0x1, 0x0, 0x0, 0x0, 0x7fff, 0x0, @perf_config_ext={0xfffffffffffffffe, 0x8000}, 0x8020, 0x6da, 0x6, 0x5, 0x5d52, 0x5, 0x6, 0x0, 0x80, 0x0, 0x7}, 0x0, 0xd, 0xffffffffffffffff, 0xa) r0 = perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) perf_event_open(&(0x7f0000001d80)={0x2, 0x80, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, r0, 0x0) r1 = perf_event_open(&(0x7f0000001d80)={0x2, 0x80, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, r0, 0x0) perf_event_open(&(0x7f00000010c0)={0x5, 0x80, 0x2, 0x2, 0x8, 0xfd, 0x0, 0x7, 0x48800, 0x0, 0x0, 0x1, 0x1, 0x0, 0x0, 0x1, 0x0, 0x0, 0x1, 0x0, 0x1, 0x0, 0x1, 0x0, 0x1, 0x2, 0x0, 0x0, 0x1, 0x1, 0x0, 0x1, 0x0, 0x1, 0x1, 0x1, 0x1, 0x0, 0x1, 0x1, 0x0, 0x1, 0x0, 0x1, 0x0, 0x1, 0x0, 0x0, 0xdf3, 0x0, @perf_bp={&(0x7f0000000000), 0xc}, 0x26c2, 0x1ff, 0x3, 0x3, 0x6c, 0x401, 0x81, 0x0, 0xabcc, 0x0, 0xbf}, 0x0, 0x5, r0, 0x2) readv(r1, &(0x7f0000001200)=[{&(0x7f00000000c0)=""/4096, 0x1000}], 0x1) 19:22:38 executing program 3: creat(0x0, 0x0) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) clone3(&(0x7f0000000140)={0x10000000000, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) 19:22:38 executing program 6: syz_open_dev$sg(0x0, 0x0, 0x0) syz_io_uring_setup(0x4ee5, &(0x7f0000000080), &(0x7f0000ffd000/0x3000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000040), &(0x7f0000000100)) (fail_nth: 79) 19:22:38 executing program 4: clone3(&(0x7f0000000140)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) (fail_nth: 67) [ 846.420221] FAULT_INJECTION: forcing a failure. [ 846.420221] name failslab, interval 1, probability 0, space 0, times 0 [ 846.422092] FAULT_INJECTION: forcing a failure. [ 846.422092] name fail_page_alloc, interval 1, probability 0, space 0, times 0 [ 846.422622] CPU: 0 PID: 13987 Comm: syz-executor.6 Not tainted 5.10.185 #1 [ 846.426315] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 846.427967] Call Trace: [ 846.428516] dump_stack+0x107/0x167 [ 846.429289] should_fail.cold+0x5/0xa [ 846.430083] ? ptlock_alloc+0x1d/0x70 [ 846.430863] should_failslab+0x5/0x20 [ 846.431643] kmem_cache_alloc+0x5b/0x310 [ 846.432474] ptlock_alloc+0x1d/0x70 [ 846.433245] pte_alloc_one+0x68/0x1a0 [ 846.434012] __pte_alloc+0x1d/0x330 [ 846.434763] remap_pfn_range+0xaf2/0x1040 [ 846.435650] ? apply_to_existing_page_range+0x40/0x40 [ 846.436697] ? memcg_slab_post_alloc_hook+0x17a/0x430 [ 846.437749] io_uring_mmap+0x398/0x530 [ 846.438539] mmap_region+0xb5a/0x1590 [ 846.439335] do_mmap+0xcdb/0x11e0 [ 846.440046] vm_mmap_pgoff+0x198/0x1f0 [ 846.440850] ? randomize_page+0xb0/0xb0 [ 846.441663] ? __fget_files+0x296/0x4c0 [ 846.442478] ksys_mmap_pgoff+0x41c/0x560 [ 846.443299] ? find_mergeable_anon_vma+0x250/0x250 [ 846.444309] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 846.445390] ? syscall_enter_from_user_mode+0x1d/0x50 [ 846.446426] do_syscall_64+0x33/0x40 [ 846.447161] entry_SYSCALL_64_after_hwframe+0x61/0xc6 [ 846.448169] RIP: 0033:0x7f8249b64b62 [ 846.448924] Code: 00 00 00 00 00 0f 1f 00 41 f7 c1 ff 0f 00 00 75 27 55 48 89 fd 53 89 cb 48 85 ff 74 3b 41 89 da 48 89 ef b8 09 00 00 00 0f 05 <48> 3d 00 f0 ff ff 77 66 5b 5d c3 0f 1f 00 48 c7 c0 bc ff ff ff 64 [ 846.452577] RSP: 002b:00007f82470da0f8 EFLAGS: 00000206 ORIG_RAX: 0000000000000009 [ 846.454128] RAX: ffffffffffffffda RBX: 0000000000008011 RCX: 00007f8249b64b62 [ 846.455541] RDX: 0000000000000003 RSI: 0000000000120140 RDI: 0000000020ffd000 [ 846.456996] RBP: 0000000020ffd000 R08: 0000000000000004 R09: 0000000000000000 [ 846.458424] R10: 0000000000008011 R11: 0000000000000206 R12: 0000000020000100 [ 846.459858] R13: 0000000020ffc000 R14: 0000000020000040 R15: 0000000020ffd000 [ 846.462322] CPU: 1 PID: 13998 Comm: syz-executor.4 Not tainted 5.10.185 #1 [ 846.463714] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 846.465395] Call Trace: [ 846.465923] dump_stack+0x107/0x167 [ 846.466655] should_fail.cold+0x5/0xa [ 846.467421] __alloc_pages_nodemask+0x182/0x600 [ 846.468353] ? __alloc_pages_slowpath.constprop.0+0x2130/0x2130 [ 846.469568] ? copy_page_range+0x28f6/0x3820 [ 846.470447] alloc_pages_current+0x187/0x280 [ 846.471320] get_zeroed_page+0x14/0xb0 [ 846.472089] __pud_alloc+0x33/0x270 [ 846.472990] copy_page_range+0x2cb6/0x3820 [ 846.473851] ? lock_chain_count+0x20/0x20 [ 846.474698] ? lock_downgrade+0x6d0/0x6d0 [ 846.475534] ? up_write+0x191/0x550 [ 846.476342] ? vm_iomap_memory+0x190/0x190 [ 846.477216] ? downgrade_write+0x3a0/0x3a0 [ 846.478056] ? anon_vma_interval_tree_insert+0x277/0x450 19:22:38 executing program 7: perf_event_open(&(0x7f0000000200)={0x2, 0x80, 0x8, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x0, 0x0, 0x0, 0x2, 0x0, 0x3, 0x44b, 0x0, 0x0, 0x0, 0x5}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = creat(0x0, 0x0) r1 = clone3(&(0x7f0000000140)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) r2 = fspick(r0, &(0x7f00000005c0)='./file0\x00', 0x0) r3 = socket$netlink(0x10, 0x3, 0x0) sendmsg$nl_generic(r3, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000000)={0x2c, 0x16, 0x1, 0x0, 0x0, {0xa}, [@nested={0x18, 0x0, 0x0, 0x1, [@typed={0x14, 0xa, 0x0, 0x0, @ipv6=@private1}]}]}, 0x2c}}, 0x0) ioctl$BTRFS_IOC_ADD_DEV(r2, 0x5000940a, &(0x7f0000000600)={{r3}, "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"}) r4 = getpgrp(0x0) pidfd_open(r4, 0x0) clone3(&(0x7f0000000480)={0x80000, &(0x7f0000000280), &(0x7f00000002c0), &(0x7f0000000300)=0x0, {0x3c}, &(0x7f0000000340)=""/85, 0x55, &(0x7f00000003c0)=""/89, &(0x7f0000000440)=[r1, r1, r1, r1, 0x0], 0x5, {r0}}, 0x58) r6 = getpgrp(0x0) pidfd_open(r6, 0x0) r7 = syz_open_dev$sg(&(0x7f0000000400), 0x0, 0x0) r8 = syz_open_dev$evdev(&(0x7f0000000040), 0x0, 0x8802) r9 = fcntl$dupfd(r8, 0x0, r7) sendmsg$nl_generic(0xffffffffffffffff, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000000)={0x2c, 0x16, 0x1, 0x0, 0x0, {0xa}, [@nested={0x18, 0x0, 0x0, 0x1, [@typed={0x14, 0xa, 0x0, 0x0, @ipv6=@private1}]}]}, 0x2c}}, 0x0) ioctl$BTRFS_IOC_QUOTA_RESCAN(0xffffffffffffffff, 0x4040942c, &(0x7f0000001600)={0x0, 0x80000001, [0x1, 0x7, 0x2, 0x8, 0x7, 0x906b]}) writev(r9, &(0x7f0000000140)=[{&(0x7f0000000300)="0040abe02400030021206cda3b5e5672b89aeddb2a535fbd", 0x7e0}], 0x1) clone3(&(0x7f0000000540)={0x20308a200, &(0x7f0000000000), &(0x7f0000000040), &(0x7f0000000080), {0x9}, &(0x7f00000000c0)=""/95, 0x5f, &(0x7f00000001c0)=""/2, &(0x7f0000000500)=[r4, r5, r6, r1, r1, r1], 0x6, {r9}}, 0x58) write(0xffffffffffffffff, 0x0, 0x0) [ 846.479126] ? __vma_link_rb+0x540/0x700 [ 846.480071] dup_mm+0x8b9/0x1110 [ 846.480774] ? vm_area_dup+0x290/0x290 [ 846.481560] ? __raw_spin_lock_init+0x36/0x110 [ 846.482478] copy_process+0x24e2/0x6740 [ 846.483271] ? lock_acquire+0x197/0x470 [ 846.484069] ? find_held_lock+0x2c/0x110 [ 846.484912] ? __cleanup_sighand+0xb0/0xb0 [ 846.485769] ? _copy_from_user+0xfb/0x1b0 [ 846.486666] kernel_clone+0xe7/0x980 [ 846.487423] ? lock_acquire+0x197/0x470 [ 846.488228] ? create_io_thread+0xf0/0xf0 [ 846.489094] ? ksys_write+0x21a/0x260 [ 846.489860] ? lock_downgrade+0x6d0/0x6d0 [ 846.490693] __do_sys_clone3+0x1e5/0x320 [ 846.491511] ? __do_sys_clone+0x110/0x110 [ 846.492367] ? rcu_read_lock_any_held+0x75/0xa0 [ 846.493305] ? vfs_write+0x354/0xa70 [ 846.494058] ? fput_many+0x2f/0x1a0 [ 846.494790] ? ksys_write+0x1a9/0x260 [ 846.495558] ? __ia32_sys_read+0xb0/0xb0 [ 846.496375] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 846.497435] ? syscall_enter_from_user_mode+0x1d/0x50 [ 846.498469] ? trace_hardirqs_on+0x5b/0x180 [ 846.499340] do_syscall_64+0x33/0x40 [ 846.500087] entry_SYSCALL_64_after_hwframe+0x61/0xc6 [ 846.501140] RIP: 0033:0x7f0ecd504b19 [ 846.501886] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 846.505586] RSP: 002b:00007f0ecaa7a188 EFLAGS: 00000246 ORIG_RAX: 00000000000001b3 [ 846.507108] RAX: ffffffffffffffda RBX: 00007f0ecd617f60 RCX: 00007f0ecd504b19 [ 846.508542] RDX: 0000000000000000 RSI: 0000000000000058 RDI: 0000000020000140 [ 846.509982] RBP: 00007f0ecaa7a1d0 R08: 0000000000000000 R09: 0000000000000000 [ 846.511413] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 846.512869] R13: 00007fffa049ab2f R14: 00007f0ecaa7a300 R15: 0000000000022000 19:22:38 executing program 0: r0 = perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r1 = perf_event_open(&(0x7f0000001d80)={0x2, 0x80, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, r0, 0x0) ioctl$VFAT_IOCTL_READDIR_SHORT(r1, 0x82307202, &(0x7f0000001240)=[{0x0, 0x0, 0x100}, {0x0, 0x0, 0x100}]) r2 = perf_event_open(&(0x7f0000001d80)={0x2, 0x80, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, r0, 0x0) readv(r2, &(0x7f0000001200)=[{&(0x7f00000000c0)=""/4096, 0x1000}], 0x1) 19:22:38 executing program 3: creat(0x0, 0x0) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) clone3(&(0x7f0000000140)={0x2a1853d7f000, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) 19:22:53 executing program 6: syz_open_dev$sg(0x0, 0x0, 0x0) syz_io_uring_setup(0x4ee5, &(0x7f0000000080), &(0x7f0000ffd000/0x3000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000040), &(0x7f0000000100)) (fail_nth: 80) 19:22:53 executing program 4: clone3(&(0x7f0000000140)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) (fail_nth: 68) 19:22:53 executing program 2: perf_event_open(&(0x7f0000000200)={0x2, 0x80, 0x8, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) creat(0x0, 0x0) syz_io_uring_setup(0x44af, &(0x7f0000000100)={0x0, 0x2}, &(0x7f0000000000/0x12000)=nil, &(0x7f000000e000/0x1000)=nil, &(0x7f0000000080), &(0x7f0000000040)) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) clone3(&(0x7f0000000140)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) 19:22:53 executing program 5: perf_event_open(&(0x7f0000000200)={0x2, 0x80, 0x8, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_io_uring_setup(0x44af, &(0x7f0000000100)={0x0, 0x0, 0x0, 0x0, 0x389}, &(0x7f0000000000/0x12000)=nil, &(0x7f000000e000/0x1000)=nil, &(0x7f0000000080), &(0x7f0000000040)) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) clone3(&(0x7f0000000140)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) write(0xffffffffffffffff, &(0x7f0000000100)='?', 0x1) 19:22:53 executing program 3: creat(0x0, 0x0) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) clone3(&(0x7f0000000140)={0x553a284bb000, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) 19:22:53 executing program 7: r0 = perf_event_open(&(0x7f0000000200)={0x2, 0x80, 0x8, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x100}, 0x0, 0x0, 0xffffffffffffffff, 0x0) getresuid(&(0x7f0000000040), &(0x7f0000000080), &(0x7f00000000c0)=0x0) fsetxattr$security_capability(r0, &(0x7f0000000000), &(0x7f0000000100)=@v3={0x3000000, [{0x4, 0x6}, {0x800, 0x4}], r1}, 0x18, 0x2) creat(0x0, 0x0) clone3(&(0x7f0000000140)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) write(0xffffffffffffffff, 0x0, 0x0) 19:22:53 executing program 1: perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) clone3(&(0x7f0000000140)={0x0, 0x0, 0x0, 0x0, {0x1000000}, 0x0, 0x0, 0x0, 0x0}, 0x58) 19:22:53 executing program 0: r0 = perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x81}, 0x0, 0x0, 0xffffffffffffffff, 0x0) perf_event_open(&(0x7f0000001d80)={0x2, 0x80, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, r0, 0x0) r1 = perf_event_open(&(0x7f0000001d80)={0x2, 0x80, 0x70, 0x0, 0x0, 0x0, 0x0, 0x100000000000, 0x0, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2}, 0x0, 0x0, r0, 0x0) r2 = syz_open_dev$char_usb(0xc, 0xb4, 0xff) r3 = syz_open_dev$sg(&(0x7f0000000400), 0x0, 0x0) r4 = syz_open_dev$evdev(&(0x7f0000000040), 0x0, 0x8802) r5 = fcntl$dupfd(r4, 0x0, r3) writev(r5, &(0x7f0000000140)=[{&(0x7f0000000300)="0040abe02400030021206cda3b5e5672b89aeddb2a535fbd", 0x7e0}], 0x1) perf_event_open(&(0x7f00000010c0)={0x5, 0x80, 0x1, 0x4, 0x1f, 0x0, 0x0, 0x8000, 0x4310, 0x9, 0x1, 0x1, 0x1, 0x0, 0x1, 0x0, 0x1, 0x1, 0x1, 0x1, 0x1, 0x1, 0x1, 0x0, 0x0, 0x3, 0x0, 0x1, 0x1, 0x0, 0x1, 0x0, 0x1, 0x1, 0x0, 0x0, 0x1, 0x1, 0x0, 0x1, 0x1, 0x1, 0x1, 0x0, 0x1, 0x0, 0x0, 0x0, 0x4, 0x0, @perf_bp={&(0x7f0000000000), 0x5}, 0x44042, 0xe212, 0x1f, 0x8, 0x5, 0xfffffbbe, 0x2, 0x0, 0x5, 0x0, 0x8001}, 0x0, 0xb, r5, 0x0) ioctl$AUTOFS_DEV_IOCTL_VERSION(0xffffffffffffffff, 0xc0189371, &(0x7f0000001400)={{0x1, 0x1, 0x18, 0xffffffffffffffff}, './file0\x00'}) fcntl$dupfd(r2, 0x0, r6) ioctl$SCSI_IOCTL_GET_PCI(r5, 0x5387, &(0x7f0000001140)) readv(r1, &(0x7f0000001200)=[{&(0x7f00000000c0)=""/4096, 0x1000}], 0x1) [ 861.698855] FAULT_INJECTION: forcing a failure. [ 861.698855] name failslab, interval 1, probability 0, space 0, times 0 [ 861.701524] CPU: 0 PID: 14308 Comm: syz-executor.4 Not tainted 5.10.185 #1 [ 861.703128] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 861.705055] Call Trace: [ 861.705681] dump_stack+0x107/0x167 [ 861.706543] should_fail.cold+0x5/0xa [ 861.707437] ? vm_area_dup+0x78/0x290 [ 861.708323] should_failslab+0x5/0x20 [ 861.709217] kmem_cache_alloc+0x5b/0x310 [ 861.710156] ? lock_downgrade+0x6d0/0x6d0 [ 861.711128] vm_area_dup+0x78/0x290 [ 861.711974] ? _cond_resched+0x12/0x80 [ 861.712886] ? copy_page_range+0x24fe/0x3820 [ 861.713935] ? vm_area_alloc+0x110/0x110 [ 861.714868] ? up_write+0x191/0x550 [ 861.715702] ? vm_iomap_memory+0x190/0x190 [ 861.716667] ? downgrade_write+0x3a0/0x3a0 [ 861.717651] ? anon_vma_interval_tree_insert+0x277/0x450 [ 861.718895] ? __vma_link_rb+0x540/0x700 [ 861.719830] dup_mm+0x44d/0x1110 [ 861.720617] ? vm_area_dup+0x290/0x290 [ 861.721521] ? __raw_spin_lock_init+0x36/0x110 [ 861.722572] copy_process+0x24e2/0x6740 [ 861.723480] ? lock_acquire+0x197/0x470 [ 861.724383] ? find_held_lock+0x2c/0x110 [ 861.725349] ? __cleanup_sighand+0xb0/0xb0 [ 861.726323] ? _copy_from_user+0xfb/0x1b0 [ 861.727270] kernel_clone+0xe7/0x980 [ 861.728115] ? lock_acquire+0x197/0x470 [ 861.729022] ? create_io_thread+0xf0/0xf0 [ 861.729980] ? ksys_write+0x21a/0x260 [ 861.730841] ? lock_downgrade+0x6d0/0x6d0 [ 861.731786] __do_sys_clone3+0x1e5/0x320 [ 861.732705] ? __do_sys_clone+0x110/0x110 [ 861.733687] ? rcu_read_lock_any_held+0x75/0xa0 [ 861.734738] ? vfs_write+0x354/0xa70 [ 861.735588] ? fput_many+0x2f/0x1a0 [ 861.736411] ? ksys_write+0x1a9/0x260 [ 861.737279] ? __ia32_sys_read+0xb0/0xb0 [ 861.738196] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 861.739376] ? syscall_enter_from_user_mode+0x1d/0x50 [ 861.740533] ? trace_hardirqs_on+0x5b/0x180 [ 861.741513] do_syscall_64+0x33/0x40 [ 861.742353] entry_SYSCALL_64_after_hwframe+0x61/0xc6 [ 861.743498] RIP: 0033:0x7f0ecd504b19 [ 861.744333] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 861.748449] RSP: 002b:00007f0ecaa7a188 EFLAGS: 00000246 ORIG_RAX: 00000000000001b3 [ 861.750143] RAX: ffffffffffffffda RBX: 00007f0ecd617f60 RCX: 00007f0ecd504b19 [ 861.751724] RDX: 0000000000000000 RSI: 0000000000000058 RDI: 0000000020000140 [ 861.753324] RBP: 00007f0ecaa7a1d0 R08: 0000000000000000 R09: 0000000000000000 [ 861.754906] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 861.756491] R13: 00007fffa049ab2f R14: 00007f0ecaa7a300 R15: 0000000000022000 [ 861.772131] FAULT_INJECTION: forcing a failure. [ 861.772131] name failslab, interval 1, probability 0, space 0, times 0 [ 861.774698] CPU: 1 PID: 14314 Comm: syz-executor.6 Not tainted 5.10.185 #1 [ 861.776263] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 861.778127] Call Trace: [ 861.778737] dump_stack+0x107/0x167 [ 861.779564] should_fail.cold+0x5/0xa [ 861.780424] ? create_object.isra.0+0x3a/0xa20 [ 861.781473] should_failslab+0x5/0x20 [ 861.782328] kmem_cache_alloc+0x5b/0x310 [ 861.783247] ? __alloc_pages_slowpath.constprop.0+0x2130/0x2130 [ 861.784598] create_object.isra.0+0x3a/0xa20 [ 861.785594] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 861.786728] kmem_cache_alloc+0x159/0x310 [ 861.787667] ptlock_alloc+0x1d/0x70 [ 861.788481] pte_alloc_one+0x68/0x1a0 [ 861.789351] __pte_alloc+0x1d/0x330 [ 861.790168] remap_pfn_range+0xaf2/0x1040 [ 861.791119] ? apply_to_existing_page_range+0x40/0x40 [ 861.792261] ? memcg_slab_post_alloc_hook+0x17a/0x430 [ 861.793427] io_uring_mmap+0x398/0x530 [ 861.794315] mmap_region+0xb5a/0x1590 [ 861.795187] do_mmap+0xcdb/0x11e0 [ 861.795973] vm_mmap_pgoff+0x198/0x1f0 [ 861.796867] ? randomize_page+0xb0/0xb0 [ 861.797941] ? __fget_files+0x296/0x4c0 [ 861.798838] ksys_mmap_pgoff+0x41c/0x560 [ 861.799927] ? find_mergeable_anon_vma+0x250/0x250 [ 861.801030] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 861.802437] ? syscall_enter_from_user_mode+0x1d/0x50 [ 861.803583] do_syscall_64+0x33/0x40 [ 861.804577] entry_SYSCALL_64_after_hwframe+0x61/0xc6 [ 861.805724] RIP: 0033:0x7f8249b64b62 [ 861.806725] Code: 00 00 00 00 00 0f 1f 00 41 f7 c1 ff 0f 00 00 75 27 55 48 89 fd 53 89 cb 48 85 ff 74 3b 41 89 da 48 89 ef b8 09 00 00 00 0f 05 <48> 3d 00 f0 ff ff 77 66 5b 5d c3 0f 1f 00 48 c7 c0 bc ff ff ff 64 [ 861.810806] RSP: 002b:00007f82470da0f8 EFLAGS: 00000206 ORIG_RAX: 0000000000000009 [ 861.812826] RAX: ffffffffffffffda RBX: 0000000000008011 RCX: 00007f8249b64b62 [ 861.814400] RDX: 0000000000000003 RSI: 0000000000120140 RDI: 0000000020ffd000 [ 861.815962] RBP: 0000000020ffd000 R08: 0000000000000004 R09: 0000000000000000 [ 861.817529] R10: 0000000000008011 R11: 0000000000000206 R12: 0000000020000100 [ 861.819084] R13: 0000000020ffc000 R14: 0000000020000040 R15: 0000000020ffd000 19:22:54 executing program 1: perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) clone3(&(0x7f0000000140)={0x0, 0x0, 0x0, 0x0, {0x8000000}, 0x0, 0x0, 0x0, 0x0}, 0x58) 19:22:54 executing program 1: perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) clone3(&(0x7f0000000140)={0x0, 0x0, 0x0, 0x0, {0x10000200}, 0x0, 0x0, 0x0, 0x0}, 0x58) 19:22:54 executing program 3: creat(0x0, 0x0) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) clone3(&(0x7f0000000140)={0x2001000000000, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) 19:22:54 executing program 6: syz_open_dev$sg(0x0, 0x0, 0x0) syz_io_uring_setup(0x4ee5, &(0x7f0000000080), &(0x7f0000ffd000/0x3000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000040), &(0x7f0000000100)) (fail_nth: 81) 19:22:54 executing program 1: perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) clone3(&(0x7f0000000140)={0x0, 0x0, 0x0, 0x0, {0x11000000}, 0x0, 0x0, 0x0, 0x0}, 0x58) 19:22:54 executing program 7: perf_event_open(&(0x7f0000000200)={0x2, 0x80, 0x8, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) creat(0x0, 0x0) r0 = perf_event_open(&(0x7f0000000280)={0x3, 0x80, 0x47, 0x5, 0x1f, 0xff, 0x0, 0x9, 0x10003, 0x6, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x1, 0x1, 0x1, 0x1, 0x0, 0x1, 0x1, 0x2, 0x1, 0x1, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x101, 0x1, @perf_bp={&(0x7f0000000000), 0x1}, 0x40, 0x15c, 0x80000000, 0x4, 0x7, 0x400, 0x6, 0x0, 0x1f, 0x0, 0x7742}, 0x0, 0x4, 0xffffffffffffffff, 0x8) clone3(&(0x7f0000000140)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) r1 = syz_open_dev$sg(&(0x7f0000000400), 0x0, 0x0) r2 = syz_open_dev$evdev(&(0x7f0000000040), 0x0, 0x8802) r3 = fcntl$dupfd(r2, 0x0, r1) writev(r3, &(0x7f0000000140)=[{&(0x7f0000000300)="0040abe02400030021206cda3b5e5672b89aeddb2a535fbd", 0x7e0}], 0x1) pidfd_send_signal(r3, 0x840, &(0x7f00000000c0)={0x3f, 0x6, 0x2c0}, 0x0) write(0xffffffffffffffff, 0x0, 0x0) pwrite64(r0, &(0x7f0000000080)="c20053bed3c7e8daf999537b380cb94cf60f5695a2c83a16e5244fe2a663756c0c0be8a13249c922ac7b99c3e76d7baed9fb15bbd065f116e1c54b35662f", 0x3e, 0x3) 19:22:54 executing program 0: r0 = perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r1 = perf_event_open(&(0x7f0000001d80)={0x2, 0x80, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, r0, 0x0) r2 = perf_event_open(&(0x7f0000001d80)={0x2, 0x80, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, r0, 0x0) ioctl$AUTOFS_DEV_IOCTL_REQUESTER(0xffffffffffffffff, 0xc018937b, &(0x7f0000001140)=ANY=[@ANYBLOB="010000000100000018000000", @ANYRES32=r1, @ANYRES32=0xee00, @ANYRES32, @ANYBLOB="2e2fd8b84b1c3000"]) ioctl$PERF_EVENT_IOC_ENABLE(r3, 0x2400, 0x3ff) ftruncate(r1, 0x26a7702f) readv(r2, &(0x7f0000001200)=[{&(0x7f00000000c0)=""/4096, 0x1000}], 0x1) perf_event_open(&(0x7f00000010c0)={0x3, 0x80, 0x9, 0x2, 0xff, 0x90, 0x0, 0x7fffffff, 0xd00, 0x0, 0x1, 0x0, 0x1, 0x1, 0x1, 0x1, 0x0, 0x1, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x1, 0x1, 0x0, 0x1, 0x1, 0x1, 0x0, 0x0, 0x1, 0x0, 0x1, 0x0, 0x1, 0x0, 0x1, 0x0, 0x1, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x15, 0x1, @perf_bp={&(0x7f0000000000), 0x2}, 0x40000, 0x2, 0x6, 0x5, 0xfff, 0x1, 0x4, 0x0, 0x4a, 0x0, 0x1}, 0x0, 0xc, r0, 0xb) [ 862.188541] FAULT_INJECTION: forcing a failure. [ 862.188541] name failslab, interval 1, probability 0, space 0, times 0 [ 862.190924] CPU: 0 PID: 14698 Comm: syz-executor.6 Not tainted 5.10.185 #1 [ 862.192360] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 862.194047] Call Trace: [ 862.194592] dump_stack+0x107/0x167 [ 862.195334] should_fail.cold+0x5/0xa [ 862.196110] ? vm_area_dup+0x78/0x290 [ 862.196904] should_failslab+0x5/0x20 [ 862.197694] kmem_cache_alloc+0x5b/0x310 [ 862.198539] vm_area_dup+0x78/0x290 [ 862.199306] ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0 [ 862.200388] ? mark_lock+0xf5/0x2df0 [ 862.201181] ? lock_chain_count+0x20/0x20 [ 862.202027] ? __lock_acquire+0x1657/0x5b00 [ 862.202922] ? mark_lock+0xf5/0x2df0 [ 862.203695] ? vm_area_alloc+0x110/0x110 [ 862.204521] ? __lock_acquire+0x1657/0x5b00 [ 862.205418] ? lock_acquire+0x197/0x470 [ 862.206226] ? __mm_populate+0x24e/0x360 [ 862.207056] ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0 [ 862.208138] ? vmacache_find+0x55/0x2a0 [ 862.208975] __split_vma+0xa8/0x570 [ 862.209732] __do_munmap+0x365/0x1260 [ 862.210517] ? lock_release+0x680/0x680 [ 862.211336] mmap_region+0x776/0x1590 [ 862.212133] ? get_unmapped_area+0x2f0/0x420 [ 862.213060] do_mmap+0xcdb/0x11e0 [ 862.213781] vm_mmap_pgoff+0x198/0x1f0 [ 862.214579] ? randomize_page+0xb0/0xb0 [ 862.215408] ? __fget_files+0x296/0x4c0 [ 862.216231] ksys_mmap_pgoff+0x41c/0x560 [ 862.217073] ? find_mergeable_anon_vma+0x250/0x250 [ 862.218083] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 862.219167] ? syscall_enter_from_user_mode+0x1d/0x50 [ 862.220226] do_syscall_64+0x33/0x40 [ 862.221009] entry_SYSCALL_64_after_hwframe+0x61/0xc6 [ 862.222058] RIP: 0033:0x7f8249b64b62 [ 862.222818] Code: 00 00 00 00 00 0f 1f 00 41 f7 c1 ff 0f 00 00 75 27 55 48 89 fd 53 89 cb 48 85 ff 74 3b 41 89 da 48 89 ef b8 09 00 00 00 0f 05 <48> 3d 00 f0 ff ff 77 66 5b 5d c3 0f 1f 00 48 c7 c0 bc ff ff ff 64 [ 862.226639] RSP: 002b:00007f82470da0f8 EFLAGS: 00000206 ORIG_RAX: 0000000000000009 [ 862.228204] RAX: ffffffffffffffda RBX: 0000000000008011 RCX: 00007f8249b64b62 [ 862.229692] RDX: 0000000000000003 RSI: 0000000000200000 RDI: 0000000020ffc000 [ 862.231155] RBP: 0000000020ffc000 R08: 0000000000000004 R09: 0000000010000000 [ 862.232609] R10: 0000000000008011 R11: 0000000000000206 R12: 0000000020000100 [ 862.234090] R13: 0000000020ffc000 R14: 0000000020000040 R15: 0000000020ffd000 19:22:54 executing program 4: clone3(&(0x7f0000000140)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) (fail_nth: 69) 19:22:54 executing program 1: perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) clone3(&(0x7f0000000140)={0x0, 0x0, 0x0, 0x0, {0x1ffff000}, 0x0, 0x0, 0x0, 0x0}, 0x58) [ 862.313030] FAULT_INJECTION: forcing a failure. [ 862.313030] name failslab, interval 1, probability 0, space 0, times 0 [ 862.315969] CPU: 1 PID: 14791 Comm: syz-executor.4 Not tainted 5.10.185 #1 [ 862.317538] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 862.319387] Call Trace: [ 862.319996] dump_stack+0x107/0x167 [ 862.320819] should_fail.cold+0x5/0xa [ 862.321706] ? create_object.isra.0+0x3a/0xa20 [ 862.322733] should_failslab+0x5/0x20 [ 862.323590] kmem_cache_alloc+0x5b/0x310 [ 862.324703] create_object.isra.0+0x3a/0xa20 [ 862.325702] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 862.327086] kmem_cache_alloc+0x159/0x310 [ 862.328028] vm_area_dup+0x78/0x290 [ 862.329035] ? _cond_resched+0x12/0x80 [ 862.329910] ? copy_page_range+0x24fe/0x3820 [ 862.331145] ? vm_area_alloc+0x110/0x110 [ 862.332067] ? up_write+0x191/0x550 [ 862.333073] ? vm_iomap_memory+0x190/0x190 [ 862.334034] ? downgrade_write+0x3a0/0x3a0 [ 862.335184] ? anon_vma_interval_tree_insert+0x277/0x450 [ 862.336401] ? __vma_link_rb+0x540/0x700 [ 862.337517] dup_mm+0x44d/0x1110 [ 862.338296] ? vm_area_dup+0x290/0x290 [ 862.339360] ? __raw_spin_lock_init+0x36/0x110 [ 862.340391] copy_process+0x24e2/0x6740 [ 862.341476] ? lock_acquire+0x197/0x470 [ 862.342369] ? find_held_lock+0x2c/0x110 [ 862.343493] ? __cleanup_sighand+0xb0/0xb0 [ 862.344457] ? _copy_from_user+0xfb/0x1b0 [ 862.345612] kernel_clone+0xe7/0x980 [ 862.346456] ? lock_acquire+0x197/0x470 [ 862.347404] ? create_io_thread+0xf0/0xf0 [ 862.348472] ? ksys_write+0x21a/0x260 [ 862.349348] ? lock_downgrade+0x6d0/0x6d0 [ 862.350475] __do_sys_clone3+0x1e5/0x320 [ 862.351388] ? __do_sys_clone+0x110/0x110 [ 862.352531] ? rcu_read_lock_any_held+0x75/0xa0 [ 862.353594] ? vfs_write+0x354/0xa70 [ 862.354605] ? fput_many+0x2f/0x1a0 [ 862.355439] ? ksys_write+0x1a9/0x260 [ 862.356430] ? __ia32_sys_read+0xb0/0xb0 [ 862.357366] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 862.358535] ? syscall_enter_from_user_mode+0x1d/0x50 [ 862.359682] ? trace_hardirqs_on+0x5b/0x180 [ 862.360650] do_syscall_64+0x33/0x40 [ 862.361504] entry_SYSCALL_64_after_hwframe+0x61/0xc6 [ 862.362642] RIP: 0033:0x7f0ecd504b19 [ 862.363471] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 19:22:54 executing program 3: creat(0x0, 0x0) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) clone3(&(0x7f0000000140)={0x2020000000000, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) [ 862.367558] RSP: 002b:00007f0ecaa7a188 EFLAGS: 00000246 ORIG_RAX: 00000000000001b3 [ 862.369412] RAX: ffffffffffffffda RBX: 00007f0ecd617f60 RCX: 00007f0ecd504b19 [ 862.370995] RDX: 0000000000000000 RSI: 0000000000000058 RDI: 0000000020000140 [ 862.372580] RBP: 00007f0ecaa7a1d0 R08: 0000000000000000 R09: 0000000000000000 [ 862.374175] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 862.375761] R13: 00007fffa049ab2f R14: 00007f0ecaa7a300 R15: 0000000000022000 19:23:09 executing program 6: syz_open_dev$sg(0x0, 0x0, 0x0) syz_io_uring_setup(0x4ee5, &(0x7f0000000080), &(0x7f0000ffd000/0x3000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000040), &(0x7f0000000100)) (fail_nth: 82) 19:23:09 executing program 5: perf_event_open(&(0x7f0000000200)={0x2, 0x80, 0x8, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_io_uring_setup(0x44af, &(0x7f0000000100)={0x0, 0x2}, &(0x7f0000000000/0x12000)=nil, &(0x7f000000e000/0x1000)=nil, &(0x7f0000000080), &(0x7f0000000040)) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) clone3(&(0x7f0000000140)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) write(0xffffffffffffffff, &(0x7f0000000100)='?', 0x1) 19:23:09 executing program 1: perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) clone3(&(0x7f0000000140)={0x0, 0x0, 0x0, 0x0, {0x20000000}, 0x0, 0x0, 0x0, 0x0}, 0x58) 19:23:09 executing program 7: ioctl$KDFONTOP_GET(0xffffffffffffffff, 0x4b72, &(0x7f0000000040)={0x1, 0x0, 0x11, 0x7, 0x1b2, &(0x7f0000000280)}) perf_event_open(&(0x7f0000000200)={0x2, 0x80, 0x8, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) creat(0x0, 0x0) r0 = socket$netlink(0x10, 0x3, 0x0) sendmsg$nl_generic(r0, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000000)={0x2c, 0x16, 0x1, 0x0, 0x0, {0xa}, [@nested={0x18, 0x0, 0x0, 0x1, [@typed={0x14, 0xa, 0x0, 0x0, @ipv6=@private1}]}]}, 0x2c}}, 0x0) ioctl$FITRIM(r0, 0xc0185879, &(0x7f0000000100)={0xffffffffffffffc0, 0x680f, 0x10000}) clone3(&(0x7f0000000140)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) r1 = syz_open_dev$sg(&(0x7f0000000400), 0x0, 0x0) r2 = syz_open_dev$evdev(&(0x7f0000000040), 0x0, 0x8802) r3 = fcntl$dupfd(r2, 0x0, r1) writev(r3, &(0x7f0000000140)=[{&(0x7f0000000300)="0040abe02400030021206cda3b5e5672b89aeddb2a535fbd", 0x7e0}], 0x1) ioctl$KDGETKEYCODE(r3, 0x4b4c, &(0x7f00000000c0)={0xffffffff, 0x5}) r4 = openat$sysfs(0xffffffffffffff9c, &(0x7f0000000000)='/sys/class/ptp', 0x181000, 0x100) write(0xffffffffffffffff, 0x0, 0x0) setsockopt$bt_BT_RCVMTU(r4, 0x112, 0xd, &(0x7f0000000080)=0x1f, 0x2) 19:23:09 executing program 3: creat(0x0, 0x0) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) clone3(&(0x7f0000000140)={0x8000000000000, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) 19:23:09 executing program 0: r0 = perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x7}, 0x0, 0x0, 0xffffffffffffffff, 0x0) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x21020, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, @perf_bp={0x0, 0xa}}, 0x0, 0x6, r0, 0x0) r1 = perf_event_open(&(0x7f0000001d80)={0x2, 0x80, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f0000000180), 0x1}, 0x0, 0x1, 0xffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x402}, 0x0, 0x0, r0, 0x0) readv(r1, &(0x7f0000001200)=[{&(0x7f0000001e00)=""/4096, 0x1000}], 0x1) r2 = socket$netlink(0x10, 0x3, 0x0) sendmsg$nl_generic(r2, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000000)=ANY=[@ANYBLOB="2c0000001600010000000000000000000a0000001800008014000b00fc0100"/44], 0x2c}}, 0x0) ioctl$AUTOFS_DEV_IOCTL_ASKUMOUNT(0xffffffffffffffff, 0xc018937d, &(0x7f0000000140)={{0x1, 0x1, 0x18, 0xffffffffffffffff, {0x6}}, './file0\x00'}) r4 = socket$nl_generic(0x10, 0x3, 0x10) r5 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000040), 0xffffffffffffffff) sendmsg$NL80211_CMD_RELOAD_REGDB(r4, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000240)={0x14, r5, 0x1}, 0x14}}, 0x0) r6 = socket$nl_generic(0x10, 0x3, 0x10) r7 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), 0xffffffffffffffff) ioctl$sock_SIOCGIFINDEX_80211(r6, 0x8933, &(0x7f00000000c0)={'wlan1\x00', 0x0}) r9 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$NL80211_CMD_CONNECT(r9, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000000)={0x34, r7, 0x5, 0x0, 0x0, {{0x2}, {@val={0x8, 0x3, r8}, @void}}, [@chandef_params=[@NL80211_ATTR_WIPHY_FREQ={0x8, 0x26, @random=0x1464}, @NL80211_ATTR_CHANNEL_WIDTH={0x8}, @NL80211_ATTR_CENTER_FREQ2={0x8, 0xa1, 0x5}]]}, 0x34}}, 0x0) sendmsg$NL80211_CMD_SET_MCAST_RATE(r3, &(0x7f0000000280)={&(0x7f00000001c0)={0x10, 0x0, 0x0, 0x10000000}, 0xc, &(0x7f0000000240)={&(0x7f0000000200)={0x24, r5, 0x8, 0x70bd2b, 0x25dfdbff, {{}, {@val={0x8, 0x3, r8}, @void}}, [@NL80211_ATTR_MCAST_RATE={0x8, 0x6b, 0x21c}]}, 0x24}, 0x1, 0x0, 0x0, 0x4800}, 0x0) socket$netlink(0x10, 0x3, 0xe) dup2(r2, 0xffffffffffffffff) 19:23:09 executing program 4: clone3(&(0x7f0000000140)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) (fail_nth: 70) 19:23:09 executing program 2: perf_event_open(&(0x7f0000000200)={0x2, 0x80, 0x8, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) creat(0x0, 0x0) syz_io_uring_setup(0x44af, &(0x7f0000000100)={0x0, 0x2, 0x0, 0x0, 0x389}, &(0x7f0000000000/0x12000)=nil, &(0x7f000000e000/0x1000)=nil, 0x0, &(0x7f0000000040)) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) clone3(&(0x7f0000000140)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) [ 877.540257] platform regulatory.0: Direct firmware load for regulatory.db failed with error -2 [ 877.550362] FAULT_INJECTION: forcing a failure. [ 877.550362] name failslab, interval 1, probability 0, space 0, times 0 [ 877.551852] CPU: 0 PID: 14970 Comm: syz-executor.4 Not tainted 5.10.185 #1 [ 877.552733] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 877.553801] Call Trace: [ 877.554145] dump_stack+0x107/0x167 [ 877.554617] should_fail.cold+0x5/0xa [ 877.555112] ? vm_area_dup+0x78/0x290 [ 877.555598] should_failslab+0x5/0x20 [ 877.556082] kmem_cache_alloc+0x5b/0x310 [ 877.556601] ? lock_downgrade+0x6d0/0x6d0 [ 877.557153] vm_area_dup+0x78/0x290 [ 877.557630] ? _cond_resched+0x12/0x80 [ 877.558131] ? copy_page_range+0x24fe/0x3820 [ 877.558715] ? vm_area_alloc+0x110/0x110 [ 877.559239] ? up_write+0x191/0x550 [ 877.559708] ? vm_iomap_memory+0x190/0x190 [ 877.560237] ? downgrade_write+0x3a0/0x3a0 [ 877.560781] ? anon_vma_interval_tree_insert+0x277/0x450 [ 877.561472] ? __vma_link_rb+0x540/0x700 [ 877.561984] dup_mm+0x44d/0x1110 [ 877.562424] ? vm_area_dup+0x290/0x290 [ 877.562942] ? __raw_spin_lock_init+0x36/0x110 [ 877.563540] copy_process+0x24e2/0x6740 [ 877.564075] ? lock_acquire+0x197/0x470 [ 877.564592] ? find_held_lock+0x2c/0x110 [ 877.565101] FAULT_INJECTION: forcing a failure. [ 877.565101] name failslab, interval 1, probability 0, space 0, times 0 [ 877.565184] ? __cleanup_sighand+0xb0/0xb0 [ 877.568191] ? _copy_from_user+0xfb/0x1b0 [ 877.568743] kernel_clone+0xe7/0x980 [ 877.569245] ? __lockdep_reset_lock+0x180/0x180 [ 877.569858] ? create_io_thread+0xf0/0xf0 [ 877.570413] ? ksys_write+0x21a/0x260 [ 877.570910] ? lock_downgrade+0x6d0/0x6d0 [ 877.571452] __do_sys_clone3+0x1e5/0x320 [ 877.571988] ? __do_sys_clone+0x110/0x110 [ 877.572543] ? rcu_read_lock_any_held+0x75/0xa0 [ 877.573153] ? vfs_write+0x354/0xa70 [ 877.573635] ? fput_many+0x2f/0x1a0 [ 877.574115] ? ksys_write+0x1a9/0x260 [ 877.574609] ? __ia32_sys_read+0xb0/0xb0 [ 877.575143] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 877.575828] ? syscall_enter_from_user_mode+0x1d/0x50 [ 877.576498] ? trace_hardirqs_on+0x5b/0x180 [ 877.577067] do_syscall_64+0x33/0x40 [ 877.577556] entry_SYSCALL_64_after_hwframe+0x61/0xc6 [ 877.578225] RIP: 0033:0x7f0ecd504b19 [ 877.578694] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 877.581130] RSP: 002b:00007f0ecaa7a188 EFLAGS: 00000246 ORIG_RAX: 00000000000001b3 [ 877.582118] RAX: ffffffffffffffda RBX: 00007f0ecd617f60 RCX: 00007f0ecd504b19 [ 877.583049] RDX: 0000000000000000 RSI: 0000000000000058 RDI: 0000000020000140 [ 877.583982] RBP: 00007f0ecaa7a1d0 R08: 0000000000000000 R09: 0000000000000000 [ 877.584919] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 877.585847] R13: 00007fffa049ab2f R14: 00007f0ecaa7a300 R15: 0000000000022000 [ 877.586803] CPU: 1 PID: 14971 Comm: syz-executor.6 Not tainted 5.10.185 #1 [ 877.588342] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 877.590186] Call Trace: [ 877.590774] dump_stack+0x107/0x167 [ 877.591589] should_fail.cold+0x5/0xa [ 877.592433] ? create_object.isra.0+0x3a/0xa20 [ 877.593462] should_failslab+0x5/0x20 [ 877.594304] kmem_cache_alloc+0x5b/0x310 [ 877.595206] create_object.isra.0+0x3a/0xa20 [ 877.596173] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 877.597318] kmem_cache_alloc+0x159/0x310 [ 877.598237] vm_area_dup+0x78/0x290 [ 877.599038] ? perf_trace_lock+0xac/0x490 [ 877.599963] ? mark_lock+0xf5/0x2df0 [ 877.600797] ? lock_chain_count+0x20/0x20 [ 877.601729] ? __lock_acquire+0x1657/0x5b00 [ 877.602685] ? mark_lock+0xf5/0x2df0 [ 877.603510] ? vm_area_alloc+0x110/0x110 [ 877.604409] ? __lock_acquire+0x1657/0x5b00 [ 877.605393] ? lock_acquire+0x197/0x470 [ 877.606267] ? __mm_populate+0x24e/0x360 [ 877.607163] ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0 [ 877.608314] ? vmacache_find+0x55/0x2a0 [ 877.609199] __split_vma+0xa8/0x570 [ 877.610010] __do_munmap+0x365/0x1260 [ 877.610860] ? lock_release+0x680/0x680 [ 877.611742] mmap_region+0x776/0x1590 [ 877.612595] ? get_unmapped_area+0x2f0/0x420 [ 877.613577] do_mmap+0xcdb/0x11e0 [ 877.614358] vm_mmap_pgoff+0x198/0x1f0 [ 877.615224] ? randomize_page+0xb0/0xb0 [ 877.616097] ? __fget_files+0x296/0x4c0 [ 877.616987] ksys_mmap_pgoff+0x41c/0x560 [ 877.617903] ? find_mergeable_anon_vma+0x250/0x250 [ 877.618990] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 877.620133] ? syscall_enter_from_user_mode+0x1d/0x50 [ 877.621267] do_syscall_64+0x33/0x40 [ 877.622081] entry_SYSCALL_64_after_hwframe+0x61/0xc6 [ 877.623194] RIP: 0033:0x7f8249b64b62 [ 877.624006] Code: 00 00 00 00 00 0f 1f 00 41 f7 c1 ff 0f 00 00 75 27 55 48 89 fd 53 89 cb 48 85 ff 74 3b 41 89 da 48 89 ef b8 09 00 00 00 0f 05 <48> 3d 00 f0 ff ff 77 66 5b 5d c3 0f 1f 00 48 c7 c0 bc ff ff ff 64 [ 877.628028] RSP: 002b:00007f82470da0f8 EFLAGS: 00000206 ORIG_RAX: 0000000000000009 [ 877.629691] RAX: ffffffffffffffda RBX: 0000000000008011 RCX: 00007f8249b64b62 [ 877.631246] RDX: 0000000000000003 RSI: 0000000000200000 RDI: 0000000020ffc000 [ 877.632793] RBP: 0000000020ffc000 R08: 0000000000000004 R09: 0000000010000000 [ 877.634347] R10: 0000000000008011 R11: 0000000000000206 R12: 0000000020000100 [ 877.635889] R13: 0000000020ffc000 R14: 0000000020000040 R15: 0000000020ffd000 [ 877.647229] netlink: 'syz-executor.7': attribute type 10 has an invalid length. [ 877.687378] platform regulatory.0: Direct firmware load for regulatory.db failed with error -2 19:23:10 executing program 1: perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) clone3(&(0x7f0000000140)={0x0, 0x0, 0x0, 0x0, {0x3f000000}, 0x0, 0x0, 0x0, 0x0}, 0x58) [ 877.744762] syz-executor.0 (14961) used greatest stack depth: 22936 bytes left 19:23:10 executing program 4: clone3(&(0x7f0000000140)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) (fail_nth: 71) 19:23:10 executing program 2: perf_event_open(&(0x7f0000000200)={0x2, 0x80, 0x8, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) creat(0x0, 0x0) syz_io_uring_setup(0x44af, &(0x7f0000000100)={0x0, 0x2, 0x0, 0x0, 0x389}, &(0x7f0000000000/0x12000)=nil, &(0x7f000000e000/0x1000)=nil, 0x0, &(0x7f0000000040)) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) clone3(&(0x7f0000000140)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) 19:23:10 executing program 0: r0 = perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) perf_event_open(&(0x7f0000001d80)={0x2, 0x80, 0x70, 0x0, 0x0, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x200000000000000}, 0x0, 0x0, r0, 0x0) r1 = perf_event_open(&(0x7f0000001d80)={0x2, 0x80, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, r0, 0x0) readv(r1, &(0x7f0000001200)=[{&(0x7f00000000c0)=""/4096, 0x1000}], 0x1) 19:23:10 executing program 3: creat(0x0, 0x0) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) clone3(&(0x7f0000000140)={0x8000001000000, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) 19:23:10 executing program 1: perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) clone3(&(0x7f0000000140)={0x0, 0x0, 0x0, 0x0, {0x40000000}, 0x0, 0x0, 0x0, 0x0}, 0x58) [ 877.842316] FAULT_INJECTION: forcing a failure. [ 877.842316] name failslab, interval 1, probability 0, space 0, times 0 [ 877.844897] CPU: 1 PID: 15285 Comm: syz-executor.4 Not tainted 5.10.185 #1 [ 877.846472] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 877.848339] Call Trace: [ 877.848945] dump_stack+0x107/0x167 [ 877.849797] should_fail.cold+0x5/0xa [ 877.850659] ? vm_area_dup+0x78/0x290 [ 877.851518] should_failslab+0x5/0x20 [ 877.852376] kmem_cache_alloc+0x5b/0x310 [ 877.853296] ? lock_downgrade+0x6d0/0x6d0 [ 877.854227] vm_area_dup+0x78/0x290 [ 877.855051] ? _cond_resched+0x12/0x80 [ 877.855923] ? copy_page_range+0x24fe/0x3820 [ 877.856939] ? vm_area_alloc+0x110/0x110 [ 877.857857] ? up_write+0x191/0x550 [ 877.858668] ? vm_iomap_memory+0x190/0x190 [ 877.859605] ? downgrade_write+0x3a0/0x3a0 [ 877.860547] ? anon_vma_interval_tree_insert+0x277/0x450 [ 877.861760] ? __vma_link_rb+0x540/0x700 [ 877.862673] dup_mm+0x44d/0x1110 [ 877.863457] ? vm_area_dup+0x290/0x290 [ 877.864352] ? __raw_spin_lock_init+0x36/0x110 [ 877.865391] copy_process+0x24e2/0x6740 [ 877.866296] ? lock_acquire+0x197/0x470 [ 877.867189] ? find_held_lock+0x2c/0x110 [ 877.868133] ? __cleanup_sighand+0xb0/0xb0 [ 877.869107] ? _copy_from_user+0xfb/0x1b0 [ 877.870076] kernel_clone+0xe7/0x980 [ 877.870912] ? lock_acquire+0x197/0x470 [ 877.871804] ? create_io_thread+0xf0/0xf0 [ 877.872743] ? ksys_write+0x21a/0x260 [ 877.873603] ? lock_downgrade+0x6d0/0x6d0 [ 877.874525] __do_sys_clone3+0x1e5/0x320 [ 877.875426] ? __do_sys_clone+0x110/0x110 [ 877.876369] ? rcu_read_lock_any_held+0x75/0xa0 [ 877.877418] ? vfs_write+0x354/0xa70 [ 877.878250] ? fput_many+0x2f/0x1a0 [ 877.879061] ? ksys_write+0x1a9/0x260 [ 877.879907] ? __ia32_sys_read+0xb0/0xb0 [ 877.880814] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 877.881988] ? syscall_enter_from_user_mode+0x1d/0x50 [ 877.883132] ? trace_hardirqs_on+0x5b/0x180 [ 877.884094] do_syscall_64+0x33/0x40 [ 877.884924] entry_SYSCALL_64_after_hwframe+0x61/0xc6 [ 877.886079] RIP: 0033:0x7f0ecd504b19 [ 877.886906] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 877.890969] RSP: 002b:00007f0ecaa7a188 EFLAGS: 00000246 ORIG_RAX: 00000000000001b3 [ 877.892647] RAX: ffffffffffffffda RBX: 00007f0ecd617f60 RCX: 00007f0ecd504b19 [ 877.894226] RDX: 0000000000000000 RSI: 0000000000000058 RDI: 0000000020000140 [ 877.895799] RBP: 00007f0ecaa7a1d0 R08: 0000000000000000 R09: 0000000000000000 [ 877.897384] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 877.898988] R13: 00007fffa049ab2f R14: 00007f0ecaa7a300 R15: 0000000000022000 19:23:10 executing program 2: perf_event_open(&(0x7f0000000200)={0x2, 0x80, 0x8, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) creat(0x0, 0x0) syz_io_uring_setup(0x44af, &(0x7f0000000100)={0x0, 0x2, 0x0, 0x0, 0x389}, &(0x7f0000000000/0x12000)=nil, &(0x7f000000e000/0x1000)=nil, 0x0, &(0x7f0000000040)) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) clone3(&(0x7f0000000140)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) 19:23:10 executing program 1: perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) clone3(&(0x7f0000000140)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x8, 0x0, 0x0}, 0x58) 19:23:25 executing program 4: clone3(&(0x7f0000000140)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) (fail_nth: 72) 19:23:25 executing program 5: perf_event_open(&(0x7f0000000200)={0x2, 0x80, 0x8, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_io_uring_setup(0x44af, &(0x7f0000000100)={0x0, 0x2}, &(0x7f0000000000/0x12000)=nil, &(0x7f000000e000/0x1000)=nil, &(0x7f0000000080), &(0x7f0000000040)) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) clone3(&(0x7f0000000140)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) write(0xffffffffffffffff, &(0x7f0000000100)='?', 0x1) 19:23:25 executing program 0: r0 = perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) perf_event_open(&(0x7f0000001d80)={0x2, 0x80, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, r0, 0x0) r1 = perf_event_open(&(0x7f0000001d80)={0x2, 0x80, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x86000, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, @perf_bp={0x0, 0x4}, 0x5}, 0x0, 0x0, r0, 0x0) readv(r1, &(0x7f0000001200)=[{&(0x7f00000000c0)=""/4096, 0x1000}], 0x1) 19:23:25 executing program 1: perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) clone3(&(0x7f0000000140)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x11, 0x0, 0x0}, 0x58) 19:23:25 executing program 7: perf_event_open(&(0x7f0000000200)={0x2, 0x80, 0x8, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = creat(0x0, 0x0) r1 = clone3(&(0x7f0000000140)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) socketpair(0x2, 0xa, 0x0, &(0x7f0000000000)={0xffffffffffffffff}) clone3(&(0x7f0000001380)={0x100000, &(0x7f0000000040)=0xffffffffffffffff, &(0x7f0000000080), &(0x7f00000000c0), {0x11}, &(0x7f0000000280)=""/212, 0xd4, &(0x7f0000000380)=""/4096, &(0x7f0000000100)=[r1], 0x1, {r0}}, 0x58) ioctl$EXT4_IOC_MOVE_EXT(r2, 0xc028660f, &(0x7f00000001c0)={0x0, r3, 0x3, 0x80000001, 0x800, 0x1}) write(0xffffffffffffffff, 0x0, 0x0) 19:23:25 executing program 6: syz_open_dev$sg(0x0, 0x0, 0x0) syz_io_uring_setup(0x4ee5, &(0x7f0000000080), &(0x7f0000ffd000/0x3000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000040), &(0x7f0000000100)) (fail_nth: 83) 19:23:25 executing program 2: perf_event_open(&(0x7f0000000200)={0x2, 0x80, 0x8, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) creat(0x0, 0x0) syz_io_uring_setup(0x44af, &(0x7f0000000100)={0x0, 0x2, 0x0, 0x0, 0x389}, &(0x7f0000000000/0x12000)=nil, &(0x7f000000e000/0x1000)=nil, &(0x7f0000000080), 0x0) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) clone3(&(0x7f0000000140)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) 19:23:25 executing program 3: creat(0x0, 0x0) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) clone3(&(0x7f0000000140)={0x10100000000000, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) [ 893.596600] FAULT_INJECTION: forcing a failure. [ 893.596600] name failslab, interval 1, probability 0, space 0, times 0 [ 893.599009] CPU: 1 PID: 15469 Comm: syz-executor.4 Not tainted 5.10.185 #1 [ 893.600398] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 893.602091] Call Trace: [ 893.602627] dump_stack+0x107/0x167 [ 893.603370] should_fail.cold+0x5/0xa [ 893.604135] ? anon_vma_clone+0xdc/0x590 [ 893.604952] should_failslab+0x5/0x20 [ 893.605723] kmem_cache_alloc+0x5b/0x310 [ 893.606547] anon_vma_clone+0xdc/0x590 [ 893.607339] anon_vma_fork+0x82/0x640 [ 893.608111] ? __vm_enough_memory+0x184/0x360 [ 893.609019] dup_mm+0x861/0x1110 [ 893.609734] ? vm_area_dup+0x290/0x290 [ 893.610525] ? __raw_spin_lock_init+0x36/0x110 [ 893.611454] copy_process+0x24e2/0x6740 [ 893.612260] ? lock_acquire+0x197/0x470 [ 893.613064] ? find_held_lock+0x2c/0x110 [ 893.613907] ? __cleanup_sighand+0xb0/0xb0 [ 893.614771] ? _copy_from_user+0xfb/0x1b0 [ 893.615609] kernel_clone+0xe7/0x980 [ 893.616375] ? lock_acquire+0x197/0x470 [ 893.617184] ? create_io_thread+0xf0/0xf0 [ 893.618052] ? ksys_write+0x21a/0x260 [ 893.618829] ? lock_downgrade+0x6d0/0x6d0 [ 893.619709] __do_sys_clone3+0x1e5/0x320 [ 893.620527] ? __do_sys_clone+0x110/0x110 [ 893.621400] ? rcu_read_lock_any_held+0x75/0xa0 [ 893.622333] ? vfs_write+0x354/0xa70 [ 893.623085] ? fput_many+0x2f/0x1a0 [ 893.623818] ? ksys_write+0x1a9/0x260 [ 893.624582] ? __ia32_sys_read+0xb0/0xb0 [ 893.625410] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 893.626464] ? syscall_enter_from_user_mode+0x1d/0x50 [ 893.627499] ? trace_hardirqs_on+0x5b/0x180 [ 893.628374] do_syscall_64+0x33/0x40 [ 893.629123] entry_SYSCALL_64_after_hwframe+0x61/0xc6 [ 893.630167] RIP: 0033:0x7f0ecd504b19 [ 893.630918] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 893.634607] RSP: 002b:00007f0ecaa7a188 EFLAGS: 00000246 ORIG_RAX: 00000000000001b3 [ 893.636141] RAX: ffffffffffffffda RBX: 00007f0ecd617f60 RCX: 00007f0ecd504b19 [ 893.637579] RDX: 0000000000000000 RSI: 0000000000000058 RDI: 0000000020000140 [ 893.639005] RBP: 00007f0ecaa7a1d0 R08: 0000000000000000 R09: 0000000000000000 [ 893.640425] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 893.641856] R13: 00007fffa049ab2f R14: 00007f0ecaa7a300 R15: 0000000000022000 [ 893.656739] FAULT_INJECTION: forcing a failure. [ 893.656739] name failslab, interval 1, probability 0, space 0, times 0 [ 893.659097] CPU: 1 PID: 15455 Comm: syz-executor.6 Not tainted 5.10.185 #1 [ 893.660523] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 893.662231] Call Trace: [ 893.662781] dump_stack+0x107/0x167 [ 893.663527] should_fail.cold+0x5/0xa [ 893.664305] ? anon_vma_clone+0xdc/0x590 [ 893.665138] should_failslab+0x5/0x20 [ 893.665942] kmem_cache_alloc+0x5b/0x310 [ 893.666761] anon_vma_clone+0xdc/0x590 [ 893.667561] __split_vma+0x17c/0x570 [ 893.668315] __do_munmap+0x365/0x1260 [ 893.669097] ? lock_release+0x680/0x680 [ 893.669924] mmap_region+0x776/0x1590 [ 893.670704] ? get_unmapped_area+0x2f0/0x420 [ 893.671597] do_mmap+0xcdb/0x11e0 [ 893.672301] vm_mmap_pgoff+0x198/0x1f0 [ 893.673084] ? randomize_page+0xb0/0xb0 [ 893.673889] ? __fget_files+0x296/0x4c0 [ 893.674694] ksys_mmap_pgoff+0x41c/0x560 [ 893.675516] ? find_mergeable_anon_vma+0x250/0x250 [ 893.676516] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 893.677568] ? syscall_enter_from_user_mode+0x1d/0x50 [ 893.678597] do_syscall_64+0x33/0x40 [ 893.679344] entry_SYSCALL_64_after_hwframe+0x61/0xc6 [ 893.680365] RIP: 0033:0x7f8249b64b62 [ 893.681123] Code: 00 00 00 00 00 0f 1f 00 41 f7 c1 ff 0f 00 00 75 27 55 48 89 fd 53 89 cb 48 85 ff 74 3b 41 89 da 48 89 ef b8 09 00 00 00 0f 05 <48> 3d 00 f0 ff ff 77 66 5b 5d c3 0f 1f 00 48 c7 c0 bc ff ff ff 64 [ 893.684823] RSP: 002b:00007f82470da0f8 EFLAGS: 00000206 ORIG_RAX: 0000000000000009 [ 893.686371] RAX: ffffffffffffffda RBX: 0000000000008011 RCX: 00007f8249b64b62 [ 893.687812] RDX: 0000000000000003 RSI: 0000000000200000 RDI: 0000000020ffc000 [ 893.689275] RBP: 0000000020ffc000 R08: 0000000000000004 R09: 0000000010000000 [ 893.690714] R10: 0000000000008011 R11: 0000000000000206 R12: 0000000020000100 [ 893.692148] R13: 0000000020ffc000 R14: 0000000020000040 R15: 0000000020ffd000 19:23:26 executing program 1: perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) clone3(&(0x7f0000000140)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x1100, 0x0, 0x0}, 0x58) 19:23:26 executing program 2: perf_event_open(&(0x7f0000000200)={0x2, 0x80, 0x8, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) creat(0x0, 0x0) syz_io_uring_setup(0x44af, &(0x7f0000000100)={0x0, 0x2, 0x0, 0x0, 0x389}, &(0x7f0000000000/0x12000)=nil, &(0x7f000000e000/0x1000)=nil, &(0x7f0000000080), 0x0) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) clone3(&(0x7f0000000140)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) 19:23:26 executing program 1: perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) clone3(&(0x7f0000000140)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x2000, 0x0, 0x0}, 0x58) 19:23:26 executing program 4: clone3(&(0x7f0000000140)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) (fail_nth: 73) 19:23:26 executing program 6: syz_open_dev$sg(0x0, 0x0, 0x0) syz_io_uring_setup(0x4ee5, &(0x7f0000000080), &(0x7f0000ffd000/0x3000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000040), &(0x7f0000000100)) (fail_nth: 84) 19:23:26 executing program 0: r0 = perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffe, 0x0, @perf_config_ext, 0x0, 0x10000000000, 0x4}, 0x0, 0x0, 0xffffffffffffffff, 0x0) perf_event_open(&(0x7f0000001d80)={0x2, 0x80, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, r0, 0x0) r1 = perf_event_open(&(0x7f0000001d80)={0x2, 0x80, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, r0, 0x0) perf_event_open(&(0x7f00000010c0)={0x2, 0x80, 0x5, 0x7f, 0x5, 0x2, 0x0, 0x4, 0x880, 0xf, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x1, 0x1, 0x1, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x1, 0x1, 0x1, 0x1, 0x0, 0x0, 0x1, 0x0, 0x1, 0x0, 0x1, 0x0, 0x0, 0x1, 0x1, 0x1, 0x1, 0x0, 0x0, 0x1, @perf_bp={&(0x7f0000000000), 0xa}, 0x1890, 0xffffffff, 0x5, 0x8, 0x9, 0x8, 0x5, 0x0, 0x4, 0x0, 0x100000000}, 0xffffffffffffffff, 0x10, r1, 0x0) lseek(r1, 0x9, 0x3) readv(r1, &(0x7f0000001200)=[{&(0x7f00000000c0)=""/4096, 0x1000}], 0x1) 19:23:26 executing program 7: perf_event_open(&(0x7f0000000200)={0x2, 0x80, 0x8, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = syz_open_dev$sg(&(0x7f0000000400), 0x0, 0x0) r1 = syz_open_dev$evdev(&(0x7f0000000040), 0x0, 0x8802) r2 = fcntl$dupfd(r1, 0x0, r0) writev(r2, &(0x7f0000000140)=[{&(0x7f0000000300)="0040abe02400030021206cda3b5e5672b89aeddb2a535fbd", 0x7e0}], 0x1) perf_event_open(&(0x7f0000000000)={0x2, 0x80, 0x9, 0xff, 0x4, 0x81, 0x0, 0x5, 0x4200, 0x9, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x1, 0x1, 0x0, 0x1, 0x1, 0x1, 0x0, 0x0, 0x1, 0x3, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x0, 0x1, 0x1, 0x1, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x1, 0x1, 0x1, 0x1, 0x0, 0x0, 0x7, 0x2, @perf_config_ext={0x1, 0x3433000000}, 0x8000, 0x101, 0x3ff, 0x5, 0xddf, 0x7d4, 0x75, 0x0, 0x4, 0x0, 0x8}, 0x0, 0xc, r2, 0xa) creat(0x0, 0x0) clone3(&(0x7f0000000140)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) write(0xffffffffffffffff, 0x0, 0x0) 19:23:26 executing program 3: creat(0x0, 0x0) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) clone3(&(0x7f0000000140)={0xb04b283a550000, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) [ 893.991210] FAULT_INJECTION: forcing a failure. [ 893.991210] name failslab, interval 1, probability 0, space 0, times 0 19:23:26 executing program 1: perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) clone3(&(0x7f0000000140)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x3f00, 0x0, 0x0}, 0x58) [ 893.993739] CPU: 0 PID: 15739 Comm: syz-executor.4 Not tainted 5.10.185 #1 [ 893.995256] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 893.996944] Call Trace: [ 893.997506] dump_stack+0x107/0x167 [ 893.998244] should_fail.cold+0x5/0xa [ 893.999017] ? create_object.isra.0+0x3a/0xa20 [ 893.999946] should_failslab+0x5/0x20 [ 894.000718] kmem_cache_alloc+0x5b/0x310 [ 894.001554] create_object.isra.0+0x3a/0xa20 [ 894.002452] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 894.003485] kmem_cache_alloc+0x159/0x310 [ 894.004359] anon_vma_clone+0xdc/0x590 [ 894.005172] anon_vma_fork+0x82/0x640 [ 894.005968] ? __vm_enough_memory+0x184/0x360 [ 894.006895] dup_mm+0x861/0x1110 [ 894.007617] ? vm_area_dup+0x290/0x290 [ 894.008432] ? __raw_spin_lock_init+0x36/0x110 [ 894.009379] copy_process+0x24e2/0x6740 [ 894.010182] ? lock_acquire+0x197/0x470 [ 894.010985] ? find_held_lock+0x2c/0x110 [ 894.011821] ? __cleanup_sighand+0xb0/0xb0 [ 894.012692] ? _copy_from_user+0xfb/0x1b0 [ 894.013552] kernel_clone+0xe7/0x980 [ 894.014309] ? lock_acquire+0x197/0x470 [ 894.015117] ? create_io_thread+0xf0/0xf0 [ 894.015975] ? ksys_write+0x21a/0x260 [ 894.016745] ? lock_downgrade+0x6d0/0x6d0 [ 894.017594] __do_sys_clone3+0x1e5/0x320 [ 894.018416] ? __do_sys_clone+0x110/0x110 [ 894.019275] ? rcu_read_lock_any_held+0x75/0xa0 [ 894.020219] ? vfs_write+0x354/0xa70 [ 894.020983] ? fput_many+0x2f/0x1a0 [ 894.021752] ? ksys_write+0x1a9/0x260 [ 894.022544] ? __ia32_sys_read+0xb0/0xb0 [ 894.023394] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 894.024482] ? syscall_enter_from_user_mode+0x1d/0x50 [ 894.025548] ? trace_hardirqs_on+0x5b/0x180 [ 894.026432] do_syscall_64+0x33/0x40 [ 894.027188] entry_SYSCALL_64_after_hwframe+0x61/0xc6 [ 894.028222] RIP: 0033:0x7f0ecd504b19 [ 894.028986] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 894.032722] RSP: 002b:00007f0ecaa7a188 EFLAGS: 00000246 ORIG_RAX: 00000000000001b3 [ 894.034278] RAX: ffffffffffffffda RBX: 00007f0ecd617f60 RCX: 00007f0ecd504b19 [ 894.035735] RDX: 0000000000000000 RSI: 0000000000000058 RDI: 0000000020000140 [ 894.037217] RBP: 00007f0ecaa7a1d0 R08: 0000000000000000 R09: 0000000000000000 [ 894.038699] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 894.040152] R13: 00007fffa049ab2f R14: 00007f0ecaa7a300 R15: 0000000000022000 [ 894.068752] FAULT_INJECTION: forcing a failure. [ 894.068752] name failslab, interval 1, probability 0, space 0, times 0 [ 894.071129] CPU: 0 PID: 15750 Comm: syz-executor.6 Not tainted 5.10.185 #1 [ 894.072520] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 894.074212] Call Trace: [ 894.074758] dump_stack+0x107/0x167 [ 894.075497] should_fail.cold+0x5/0xa [ 894.076267] ? create_object.isra.0+0x3a/0xa20 [ 894.077192] should_failslab+0x5/0x20 [ 894.078003] kmem_cache_alloc+0x5b/0x310 [ 894.078827] create_object.isra.0+0x3a/0xa20 [ 894.079722] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 894.080737] kmem_cache_alloc+0x159/0x310 [ 894.081611] anon_vma_clone+0xdc/0x590 [ 894.082417] __split_vma+0x17c/0x570 [ 894.083192] __do_munmap+0x365/0x1260 [ 894.083968] ? lock_release+0x680/0x680 [ 894.084777] mmap_region+0x776/0x1590 [ 894.085569] ? get_unmapped_area+0x2f0/0x420 [ 894.086475] do_mmap+0xcdb/0x11e0 [ 894.087201] vm_mmap_pgoff+0x198/0x1f0 [ 894.088004] ? randomize_page+0xb0/0xb0 [ 894.088799] ? __fget_files+0x296/0x4c0 [ 894.089621] ksys_mmap_pgoff+0x41c/0x560 [ 894.090447] ? find_mergeable_anon_vma+0x250/0x250 [ 894.091451] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 894.092520] ? syscall_enter_from_user_mode+0x1d/0x50 [ 894.093578] do_syscall_64+0x33/0x40 [ 894.094327] entry_SYSCALL_64_after_hwframe+0x61/0xc6 [ 894.095385] RIP: 0033:0x7f8249b64b62 [ 894.096148] Code: 00 00 00 00 00 0f 1f 00 41 f7 c1 ff 0f 00 00 75 27 55 48 89 fd 53 89 cb 48 85 ff 74 3b 41 89 da 48 89 ef b8 09 00 00 00 0f 05 <48> 3d 00 f0 ff ff 77 66 5b 5d c3 0f 1f 00 48 c7 c0 bc ff ff ff 64 [ 894.099881] RSP: 002b:00007f82470da0f8 EFLAGS: 00000206 ORIG_RAX: 0000000000000009 [ 894.101430] RAX: ffffffffffffffda RBX: 0000000000008011 RCX: 00007f8249b64b62 [ 894.102867] RDX: 0000000000000003 RSI: 0000000000200000 RDI: 0000000020ffc000 [ 894.104303] RBP: 0000000020ffc000 R08: 0000000000000004 R09: 0000000010000000 [ 894.105779] R10: 0000000000008011 R11: 0000000000000206 R12: 0000000020000100 [ 894.107217] R13: 0000000020ffc000 R14: 0000000020000040 R15: 0000000020ffd000 [ 908.328675] FAULT_INJECTION: forcing a failure. [ 908.328675] name failslab, interval 1, probability 0, space 0, times 0 [ 908.330832] CPU: 1 PID: 16064 Comm: syz-executor.4 Not tainted 5.10.185 #1 [ 908.331965] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 908.333333] Call Trace: [ 908.333799] dump_stack+0x107/0x167 [ 908.334411] should_fail.cold+0x5/0xa [ 908.335057] ? anon_vma_fork+0xf1/0x640 [ 908.335727] should_failslab+0x5/0x20 [ 908.336365] kmem_cache_alloc+0x5b/0x310 [ 908.337052] anon_vma_fork+0xf1/0x640 [ 908.337921] ? __vm_enough_memory+0x184/0x360 [ 908.339068] dup_mm+0x861/0x1110 [ 908.339947] ? vm_area_dup+0x290/0x290 [ 908.340947] ? __raw_spin_lock_init+0x36/0x110 [ 908.342144] copy_process+0x24e2/0x6740 [ 908.343148] ? lock_acquire+0x197/0x470 [ 908.344147] ? find_held_lock+0x2c/0x110 [ 908.345195] ? __cleanup_sighand+0xb0/0xb0 [ 908.346281] ? _copy_from_user+0xfb/0x1b0 [ 908.347334] kernel_clone+0xe7/0x980 [ 908.348273] ? lock_acquire+0x197/0x470 [ 908.349272] ? create_io_thread+0xf0/0xf0 [ 908.350341] ? ksys_write+0x21a/0x260 [ 908.351297] ? lock_downgrade+0x6d0/0x6d0 [ 908.352341] __do_sys_clone3+0x1e5/0x320 [ 908.353360] ? __do_sys_clone+0x110/0x110 [ 908.354345] ? rcu_read_lock_any_held+0x75/0xa0 [ 908.355379] ? vfs_write+0x354/0xa70 [ 908.356212] ? fput_many+0x2f/0x1a0 [ 908.357016] ? ksys_write+0x1a9/0x260 [ 908.357870] ? __ia32_sys_read+0xb0/0xb0 [ 908.358777] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 908.359944] ? syscall_enter_from_user_mode+0x1d/0x50 [ 908.361083] ? trace_hardirqs_on+0x5b/0x180 [ 908.362065] do_syscall_64+0x33/0x40 [ 908.362895] entry_SYSCALL_64_after_hwframe+0x61/0xc6 [ 908.364032] RIP: 0033:0x7f0ecd504b19 [ 908.364858] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 908.368921] RSP: 002b:00007f0ecaa7a188 EFLAGS: 00000246 ORIG_RAX: 00000000000001b3 [ 908.370623] RAX: ffffffffffffffda RBX: 00007f0ecd617f60 RCX: 00007f0ecd504b19 [ 908.372215] RDX: 0000000000000000 RSI: 0000000000000058 RDI: 0000000020000140 [ 908.373811] RBP: 00007f0ecaa7a1d0 R08: 0000000000000000 R09: 0000000000000000 [ 908.375402] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 908.376992] R13: 00007fffa049ab2f R14: 00007f0ecaa7a300 R15: 0000000000022000 [ 908.392468] FAULT_INJECTION: forcing a failure. [ 908.392468] name fail_page_alloc, interval 1, probability 0, space 0, times 0 [ 908.395138] CPU: 1 PID: 16066 Comm: syz-executor.6 Not tainted 5.10.185 #1 [ 908.396674] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 908.398507] Call Trace: [ 908.399105] dump_stack+0x107/0x167 [ 908.399909] should_fail.cold+0x5/0xa [ 908.400761] __alloc_pages_nodemask+0x182/0x600 [ 908.401801] ? mark_held_locks+0x9e/0xe0 [ 908.402691] ? __alloc_pages_slowpath.constprop.0+0x2130/0x2130 [ 908.404010] ? kmem_cache_free+0xa7/0x2d0 [ 908.404942] alloc_pages_current+0x187/0x280 [ 908.405910] __get_free_pages+0xc/0xa0 [ 908.406765] ? kmem_cache_free+0x249/0x2d0 [ 908.407683] tlb_remove_table+0x3ca/0xcb0 [ 908.408596] ___pte_free_tlb+0x86/0xb0 [ 908.409476] free_pgd_range+0x752/0x13a0 [ 908.410395] free_pgtables+0x230/0x2f0 [ 908.411253] unmap_region+0x308/0x400 [ 908.412092] ? anon_vma_compatible+0x2d0/0x2d0 [ 908.413106] ? __vma_rb_erase+0x797/0xfa0 [ 908.414018] ? vmacache_update+0xce/0x140 [ 908.414929] __do_munmap+0x891/0x1260 [ 908.415781] mmap_region+0x776/0x1590 [ 908.416622] ? get_unmapped_area+0x2f0/0x420 [ 908.417610] do_mmap+0xcdb/0x11e0 [ 908.418377] vm_mmap_pgoff+0x198/0x1f0 [ 908.419234] ? randomize_page+0xb0/0xb0 [ 908.420098] ? __fget_files+0x296/0x4c0 [ 908.420979] ksys_mmap_pgoff+0x41c/0x560 [ 908.421877] ? find_mergeable_anon_vma+0x250/0x250 [ 908.422950] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 908.424107] ? syscall_enter_from_user_mode+0x1d/0x50 [ 908.425229] do_syscall_64+0x33/0x40 [ 908.426024] entry_SYSCALL_64_after_hwframe+0x61/0xc6 [ 908.427135] RIP: 0033:0x7f8249b64b62 [ 908.427936] Code: 00 00 00 00 00 0f 1f 00 41 f7 c1 ff 0f 00 00 75 27 55 48 89 fd 53 89 cb 48 85 ff 74 3b 41 89 da 48 89 ef b8 09 00 00 00 0f 05 <48> 3d 00 f0 ff ff 77 66 5b 5d c3 0f 1f 00 48 c7 c0 bc ff ff ff 64 [ 908.431956] RSP: 002b:00007f82470da0f8 EFLAGS: 00000206 ORIG_RAX: 0000000000000009 [ 908.433630] RAX: ffffffffffffffda RBX: 0000000000008011 RCX: 00007f8249b64b62 [ 908.435162] RDX: 0000000000000003 RSI: 0000000000200000 RDI: 0000000020ffc000 [ 908.436697] RBP: 0000000020ffc000 R08: 0000000000000004 R09: 0000000010000000 [ 908.438231] R10: 0000000000008011 R11: 0000000000000206 R12: 0000000020000100 [ 908.439752] R13: 0000000020ffc000 R14: 0000000020000040 R15: 0000000020ffd000 19:23:40 executing program 1: perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) clone3(&(0x7f0000000140)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x4000, 0x0, 0x0}, 0x58) 19:23:40 executing program 7: perf_event_open(&(0x7f0000000200)={0x2, 0x80, 0x8, 0x1, 0x0, 0x0, 0x0, 0x0, 0x102, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = creat(0x0, 0x0) r1 = clone3(&(0x7f0000000140)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) write(0xffffffffffffffff, 0x0, 0x0) clone3(&(0x7f0000001540)={0x2000, &(0x7f00000000c0), &(0x7f0000000100)=0x0, &(0x7f00000001c0), {0x7}, &(0x7f0000001380)=""/245, 0xf5, &(0x7f0000001480)=""/97, &(0x7f0000001500)=[r1, 0xffffffffffffffff, r1, r1, r1, r1, r1], 0x7, {r0}}, 0x58) r3 = syz_open_dev$sg(&(0x7f0000000400), 0x0, 0x0) r4 = syz_open_dev$evdev(&(0x7f0000000040), 0x0, 0x8802) r5 = fcntl$dupfd(r4, 0x0, r3) writev(r5, &(0x7f0000000140)=[{&(0x7f0000000300)="0040abe02400030021206cda3b5e5672b89aeddb2a535fbd", 0x7e0}], 0x1) r6 = syz_open_dev$sg(&(0x7f0000000400), 0x0, 0x0) r7 = syz_open_dev$evdev(&(0x7f0000000040), 0x0, 0x8802) r8 = fcntl$dupfd(r7, 0x0, r6) writev(r8, &(0x7f0000000140)=[{&(0x7f0000000300)="0040abe02400030021206cda3b5e5672b89aeddb2a535fbd", 0x7e0}], 0x1) ioctl$SCSI_IOCTL_START_UNIT(r8, 0x5) clone3(&(0x7f0000001600)={0x5200, &(0x7f0000000000), &(0x7f0000000040), &(0x7f0000000080), {0x29}, &(0x7f0000000280)=""/4096, 0x1000, &(0x7f0000001280)=""/198, &(0x7f00000015c0)=[r2], 0x1, {r5}}, 0x58) 19:23:40 executing program 4: clone3(&(0x7f0000000140)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) (fail_nth: 74) 19:23:40 executing program 0: perf_event_open(&(0x7f0000001d80)={0x2, 0x80, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = perf_event_open(&(0x7f0000001d80)={0x2, 0x80, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r1 = socket$netlink(0x10, 0x3, 0x0) sendmsg$nl_generic(r1, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000000)={0x2c, 0x16, 0x1, 0x0, 0x0, {0xa}, [@nested={0x18, 0x0, 0x0, 0x1, [@typed={0x14, 0xa, 0x0, 0x0, @ipv6=@private1}]}]}, 0x2c}}, 0x0) fsetxattr$security_capability(r1, &(0x7f0000001680), &(0x7f00000016c0)=@v3={0x3000000, [{0x3, 0xe7}, {0x9, 0x3}], 0xee00}, 0x18, 0x7) r2 = socket$netlink(0x10, 0x3, 0x0) r3 = openat$cgroup_ro(0xffffffffffffffff, &(0x7f00000011c0)='hugetlb.2MB.usage_in_bytes\x00', 0x0, 0x0) perf_event_open(&(0x7f0000001140)={0x5, 0x80, 0x8, 0x53, 0x8, 0x8, 0x0, 0x800, 0x0, 0x1, 0x0, 0x1, 0x1, 0x0, 0x1, 0x1, 0x0, 0x1, 0x1, 0x0, 0x1, 0x1, 0x0, 0x0, 0x1, 0x3, 0x1, 0x0, 0x1, 0x1, 0x1, 0x0, 0x0, 0x1, 0x0, 0x1, 0x1, 0x0, 0x1, 0x1, 0x1, 0x1, 0x0, 0x1, 0x1, 0x1, 0x1, 0x0, 0x4, 0x4, @perf_bp={&(0x7f0000000080), 0x1}, 0x1, 0x3, 0x6, 0x1, 0x0, 0x3ff, 0xfff, 0x0, 0x5, 0x0, 0xffffffff80000001}, 0xffffffffffffffff, 0xc, r3, 0x1) sendmsg$nl_generic(r2, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000001640)=ANY=[@ANYBLOB="2c0000001600010000000000000000000a0000001800008814000a00fc010000000000000000000000000000c0e84aeed6fa7d6d927e11e56e74b15d66d9789e"], 0x2c}}, 0x0) ioctl$INCFS_IOC_CREATE_FILE(r2, 0xc058671e, &(0x7f00000010c0)={{'\x00', 0x2}, {0xb5}, 0xaa, 0x0, 0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000000040)='./file0\x00', &(0x7f0000001240)="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", 0x158, 0x0, &(0x7f00000013c0)=ANY=[@ANYBLOB="02000000ac010000000000000cc9000000b40e713f5f65253c646b0b7b6cd91cb9ae15f155d73028928179205a387a4182e240bd60fa5816472897153d87723dcb0c6fe5ae7a320935b96ceaf692a564e50ff6fc45c15d7cbb213f79ae5684eb38595e86a14d5669018508ead63906b26d96f6d051daf227e923c49f1e8342c87cd5aa0cba14c5e34e99317d8307e5677cf1dc700679a74d96806a25f85b85aa89f9335ee369f3115e2d9c05e5d2dcffab015f5cb761edeb2645432bfb176c49c8155a8fe085442ef4de73d15b8480fa5262d8276f895a2c6262d60000002c14fd6b64566677425d7a31bb2eec6c5ba2e015c12d8f97367374f7b1e40b2a55abe49c91ea8a7962d6d60a69a0f6bf6675281171961638ee03face88146db3fb9f8a7e488c379441664a2592e328cd86c518ed25ea293d6043da6b48b2b195b7a052898122aae5a497bcb2fcb2a8fdf983d2dff57d14972a6ebcb89939a7bde974537c60fe2cbc269df4ad643f713ef7ab6bbbb178d99b766e70a36b6177cc005f3959e70936bff28339ab6070c1f179bc33c0a80a2ac14d9be569c050ae356e644ba856fa76f1ce4a3b410e202a4435ded795000000a0b90ce8722226ab56543288c05a0b9c87cd0a6c19706cddfdbe58f097812d6954cebeca2251dfc27a0cc4fb8af985bb4a7d4736b772119a4effd67b399448cbffd4463b691e7cb032f5a589e108fd400882e8fb4d08a631c315afbf27ce432289af35f7f5767b3329f60865256eae1390aa5e641ce5d94f2e5f0da5187486f424d606e110f1d798ec9536e0a6e51a93d24d965895000000"], 0x24d}) readv(r0, &(0x7f0000001200)=[{&(0x7f00000000c0)=""/4096, 0x1000}], 0x1) perf_event_open(&(0x7f0000001700)={0x3, 0x80, 0x40, 0xbf, 0x8, 0x97, 0x0, 0x2df51db4, 0x81300, 0xe, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x1, 0x1, 0x1, 0x1, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x1, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x1, 0x0, 0x1, 0x1, 0x0, 0x0, 0x1, 0x1, 0x0, 0x1, 0x0, 0x1, 0x0, 0xab, 0x2, @perf_config_ext={0x9, 0x2}, 0x88, 0x1ea6, 0x9c, 0x5, 0x4, 0xfffffffe, 0xfffc, 0x0, 0x8f98, 0x0, 0x3}, 0xffffffffffffffff, 0xc, 0xffffffffffffffff, 0x3) 19:23:40 executing program 6: syz_open_dev$sg(0x0, 0x0, 0x0) syz_io_uring_setup(0x4ee5, &(0x7f0000000080), &(0x7f0000ffd000/0x3000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000040), &(0x7f0000000100)) (fail_nth: 85) 19:23:40 executing program 5: perf_event_open(&(0x7f0000000200)={0x2, 0x80, 0x8, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_io_uring_setup(0x44af, &(0x7f0000000100)={0x0, 0x2}, &(0x7f0000000000/0x12000)=nil, &(0x7f000000e000/0x1000)=nil, &(0x7f0000000080), &(0x7f0000000040)) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) clone3(&(0x7f0000000140)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) write(0xffffffffffffffff, &(0x7f0000000100)='?', 0x1) 19:23:40 executing program 3: creat(0x0, 0x0) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) clone3(&(0x7f0000000140)={0xf0d753182a0000, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) 19:23:40 executing program 2: perf_event_open(&(0x7f0000000200)={0x2, 0x80, 0x8, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) creat(0x0, 0x0) syz_io_uring_setup(0x44af, &(0x7f0000000100)={0x0, 0x2, 0x0, 0x0, 0x389}, &(0x7f0000000000/0x12000)=nil, &(0x7f000000e000/0x1000)=nil, &(0x7f0000000080), 0x0) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) clone3(&(0x7f0000000140)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) 19:23:40 executing program 3: creat(0x0, 0x0) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) clone3(&(0x7f0000000140)={0xf0e10b1b000000, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) 19:23:40 executing program 1: perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) clone3(&(0x7f0000000140)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x20010, 0x0, 0x0}, 0x58) [ 908.512991] netlink: 'syz-executor.0': attribute type 10 has an invalid length. 19:23:40 executing program 4: clone3(&(0x7f0000000140)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) (fail_nth: 75) 19:23:40 executing program 5: perf_event_open(&(0x7f0000000200)={0x2, 0x80, 0x8, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_io_uring_setup(0x44af, &(0x7f0000000100)={0x0, 0x2, 0x0, 0x0, 0x389}, &(0x7f0000000000/0x12000)=nil, &(0x7f000000e000/0x1000)=nil, 0x0, &(0x7f0000000040)) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) clone3(&(0x7f0000000140)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) write(0xffffffffffffffff, &(0x7f0000000100)='?', 0x1) [ 908.549262] FAULT_INJECTION: forcing a failure. [ 908.549262] name failslab, interval 1, probability 0, space 0, times 0 [ 908.550659] CPU: 0 PID: 16315 Comm: syz-executor.4 Not tainted 5.10.185 #1 [ 908.551452] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 908.552385] Call Trace: [ 908.552696] dump_stack+0x107/0x167 [ 908.553124] should_fail.cold+0x5/0xa [ 908.553568] ? create_object.isra.0+0x3a/0xa20 [ 908.554095] should_failslab+0x5/0x20 [ 908.554535] kmem_cache_alloc+0x5b/0x310 [ 908.554999] create_object.isra.0+0x3a/0xa20 [ 908.555500] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 908.556075] kmem_cache_alloc+0x159/0x310 [ 908.556551] anon_vma_clone+0xdc/0x590 [ 908.557000] anon_vma_fork+0x82/0x640 [ 908.557446] ? __vm_enough_memory+0x184/0x360 [ 908.557973] dup_mm+0x861/0x1110 [ 908.558367] ? vm_area_dup+0x290/0x290 [ 908.558834] ? __raw_spin_lock_init+0x36/0x110 [ 908.559366] copy_process+0x24e2/0x6740 [ 908.559841] ? lock_acquire+0x197/0x470 [ 908.560311] ? find_held_lock+0x2c/0x110 [ 908.560804] ? __cleanup_sighand+0xb0/0xb0 [ 908.561313] ? _copy_from_user+0xfb/0x1b0 [ 908.561818] kernel_clone+0xe7/0x980 [ 908.562260] ? lock_acquire+0x197/0x470 [ 908.562728] ? create_io_thread+0xf0/0xf0 [ 908.563232] ? ksys_write+0x21a/0x260 [ 908.563681] ? lock_downgrade+0x6d0/0x6d0 [ 908.564176] __do_sys_clone3+0x1e5/0x320 [ 908.564655] ? __do_sys_clone+0x110/0x110 [ 908.565169] ? rcu_read_lock_any_held+0x75/0xa0 [ 908.565728] ? vfs_write+0x354/0xa70 [ 908.566168] ? fput_many+0x2f/0x1a0 [ 908.566599] ? ksys_write+0x1a9/0x260 [ 908.567051] ? __ia32_sys_read+0xb0/0xb0 [ 908.567536] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 908.568169] ? syscall_enter_from_user_mode+0x1d/0x50 [ 908.568772] ? trace_hardirqs_on+0x5b/0x180 [ 908.569278] do_syscall_64+0x33/0x40 [ 908.569731] entry_SYSCALL_64_after_hwframe+0x61/0xc6 [ 908.570334] RIP: 0033:0x7f0ecd504b19 [ 908.570766] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 908.572922] RSP: 002b:00007f0ecaa7a188 EFLAGS: 00000246 ORIG_RAX: 00000000000001b3 [ 908.573821] RAX: ffffffffffffffda RBX: 00007f0ecd617f60 RCX: 00007f0ecd504b19 [ 908.574663] RDX: 0000000000000000 RSI: 0000000000000058 RDI: 0000000020000140 [ 908.575508] RBP: 00007f0ecaa7a1d0 R08: 0000000000000000 R09: 0000000000000000 [ 908.576333] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 908.577174] R13: 00007fffa049ab2f R14: 00007f0ecaa7a300 R15: 0000000000022000 [ 908.582917] netlink: 'syz-executor.0': attribute type 10 has an invalid length. 19:23:40 executing program 6: syz_open_dev$sg(0x0, 0x0, 0x0) syz_io_uring_setup(0x4ee5, &(0x7f0000000080), &(0x7f0000ffd000/0x3000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000040), &(0x7f0000000100)) (fail_nth: 86) [ 908.604063] netlink: 'syz-executor.0': attribute type 10 has an invalid length. [ 908.607034] FAULT_INJECTION: forcing a failure. [ 908.607034] name failslab, interval 1, probability 0, space 0, times 0 [ 908.608322] CPU: 0 PID: 16392 Comm: syz-executor.6 Not tainted 5.10.185 #1 [ 908.609090] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 908.610020] Call Trace: [ 908.610328] dump_stack+0x107/0x167 [ 908.610734] should_fail.cold+0x5/0xa [ 908.611155] ? vm_area_alloc+0x1c/0x110 [ 908.611601] should_failslab+0x5/0x20 [ 908.612027] kmem_cache_alloc+0x5b/0x310 [ 908.612480] vm_area_alloc+0x1c/0x110 [ 908.612898] mmap_region+0x819/0x1590 [ 908.613329] ? get_unmapped_area+0x2f0/0x420 [ 908.613822] do_mmap+0xcdb/0x11e0 [ 908.614242] vm_mmap_pgoff+0x198/0x1f0 [ 908.614692] ? randomize_page+0xb0/0xb0 [ 908.615152] ? __fget_files+0x296/0x4c0 [ 908.615612] ksys_mmap_pgoff+0x41c/0x560 [ 908.616079] ? find_mergeable_anon_vma+0x250/0x250 [ 908.616655] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 908.617264] ? syscall_enter_from_user_mode+0x1d/0x50 [ 908.617874] do_syscall_64+0x33/0x40 [ 908.618306] entry_SYSCALL_64_after_hwframe+0x61/0xc6 [ 908.618883] RIP: 0033:0x7f8249b64b62 [ 908.619310] Code: 00 00 00 00 00 0f 1f 00 41 f7 c1 ff 0f 00 00 75 27 55 48 89 fd 53 89 cb 48 85 ff 74 3b 41 89 da 48 89 ef b8 09 00 00 00 0f 05 <48> 3d 00 f0 ff ff 77 66 5b 5d c3 0f 1f 00 48 c7 c0 bc ff ff ff 64 [ 908.621425] RSP: 002b:00007f82470da0f8 EFLAGS: 00000206 ORIG_RAX: 0000000000000009 [ 908.622293] RAX: ffffffffffffffda RBX: 0000000000008011 RCX: 00007f8249b64b62 [ 908.623112] RDX: 0000000000000003 RSI: 0000000000200000 RDI: 0000000020ffc000 [ 908.623923] RBP: 0000000020ffc000 R08: 0000000000000004 R09: 0000000010000000 [ 908.624725] R10: 0000000000008011 R11: 0000000000000206 R12: 0000000020000100 [ 908.625559] R13: 0000000020ffc000 R14: 0000000020000040 R15: 0000000020ffd000 19:23:40 executing program 4: clone3(&(0x7f0000000140)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) (fail_nth: 76) 19:23:40 executing program 1: perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) clone3(&(0x7f0000000140)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x20200, 0x0, 0x0}, 0x58) 19:23:40 executing program 1: perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) clone3(&(0x7f0000000140)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x80000, 0x0, 0x0}, 0x58) [ 908.700334] FAULT_INJECTION: forcing a failure. [ 908.700334] name failslab, interval 1, probability 0, space 0, times 0 [ 908.701620] CPU: 0 PID: 16484 Comm: syz-executor.4 Not tainted 5.10.185 #1 [ 908.702357] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 908.703239] Call Trace: [ 908.703538] dump_stack+0x107/0x167 [ 908.703932] should_fail.cold+0x5/0xa [ 908.704342] ? create_object.isra.0+0x3a/0xa20 [ 908.704840] should_failslab+0x5/0x20 [ 908.705247] kmem_cache_alloc+0x5b/0x310 [ 908.705709] create_object.isra.0+0x3a/0xa20 [ 908.706175] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 908.706719] kmem_cache_alloc+0x159/0x310 [ 908.707160] anon_vma_clone+0xdc/0x590 [ 908.707587] anon_vma_fork+0x82/0x640 [ 908.707997] ? __vm_enough_memory+0x184/0x360 [ 908.708476] dup_mm+0x861/0x1110 [ 908.708850] ? vm_area_dup+0x290/0x290 [ 908.709270] ? __raw_spin_lock_init+0x36/0x110 [ 908.709787] copy_process+0x24e2/0x6740 [ 908.710233] ? lock_acquire+0x197/0x470 [ 908.710681] ? find_held_lock+0x2c/0x110 [ 908.711145] ? __cleanup_sighand+0xb0/0xb0 [ 908.711629] ? _copy_from_user+0xfb/0x1b0 [ 908.712094] kernel_clone+0xe7/0x980 [ 908.712510] ? lock_acquire+0x197/0x470 [ 908.712961] ? create_io_thread+0xf0/0xf0 [ 908.713454] ? ksys_write+0x21a/0x260 [ 908.713888] ? lock_downgrade+0x6d0/0x6d0 [ 908.714359] __do_sys_clone3+0x1e5/0x320 [ 908.714821] ? __do_sys_clone+0x110/0x110 [ 908.715296] ? rcu_read_lock_any_held+0x75/0xa0 [ 908.715819] ? vfs_write+0x354/0xa70 [ 908.716220] ? fput_many+0x2f/0x1a0 [ 908.716633] ? ksys_write+0x1a9/0x260 [ 908.717066] ? __ia32_sys_read+0xb0/0xb0 [ 908.717538] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 908.718133] ? syscall_enter_from_user_mode+0x1d/0x50 [ 908.718696] ? trace_hardirqs_on+0x5b/0x180 [ 908.719200] do_syscall_64+0x33/0x40 [ 908.719619] entry_SYSCALL_64_after_hwframe+0x61/0xc6 [ 908.720205] RIP: 0033:0x7f0ecd504b19 [ 908.720618] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 908.722681] RSP: 002b:00007f0ecaa7a188 EFLAGS: 00000246 ORIG_RAX: 00000000000001b3 [ 908.723501] RAX: ffffffffffffffda RBX: 00007f0ecd617f60 RCX: 00007f0ecd504b19 [ 908.724304] RDX: 0000000000000000 RSI: 0000000000000058 RDI: 0000000020000140 [ 908.725064] RBP: 00007f0ecaa7a1d0 R08: 0000000000000000 R09: 0000000000000000 [ 908.725883] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 908.726693] R13: 00007fffa049ab2f R14: 00007f0ecaa7a300 R15: 0000000000022000 19:23:41 executing program 7: r0 = perf_event_open(&(0x7f0000000200)={0x2, 0x80, 0x8, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r1 = creat(0x0, 0x0) r2 = perf_event_open$cgroup(&(0x7f00000000c0)={0x0, 0x80, 0x20, 0x38, 0x81, 0x6, 0x0, 0x1, 0x200, 0x2, 0x1, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x1, 0x1, 0x1, 0x1, 0x1, 0x3, 0x1, 0x1, 0x1, 0x1, 0x1, 0x0, 0x0, 0x1, 0x1, 0x0, 0x0, 0x1, 0x1, 0x1, 0x1, 0x0, 0x0, 0x1, 0x0, 0x1, 0x1, 0x0, 0x8001, 0x2, @perf_bp={&(0x7f0000000080), 0xc89f081fdcd9c886}, 0x1880, 0x5, 0x1200, 0x8, 0x5, 0x1, 0x5, 0x0, 0x3}, r1, 0xd, r0, 0x1) perf_event_open(&(0x7f0000000000)={0x5, 0x80, 0x1f, 0x9, 0x83, 0x9, 0x0, 0x2, 0x84da0, 0x1, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x1, 0x1, 0x1, 0x0, 0x0, 0x1, 0x1, 0x1, 0x0, 0x1, 0x1, 0x0, 0x1, 0x0, 0x1, 0x1, 0x1, 0x0, 0x1, 0x0, 0x1, 0x1, 0x0, 0x1, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x101, 0x1, @perf_config_ext={0x0, 0x7ff}, 0x208, 0x9, 0x1000, 0x9, 0x3f, 0x81, 0x5, 0x0, 0x0, 0x0, 0x7}, 0x0, 0xa, r2, 0x8) clone3(&(0x7f0000000140)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) write(0xffffffffffffffff, 0x0, 0x0) readv(0xffffffffffffffff, &(0x7f0000000580)=[{&(0x7f0000000280)=""/208, 0xd0}, {&(0x7f0000000380)=""/177, 0xb1}, {&(0x7f0000000440)=""/91, 0x5b}, {&(0x7f00000004c0)=""/163, 0xa3}, {&(0x7f00000001c0)=""/54, 0x36}], 0x5) 19:23:41 executing program 1: perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) clone3(&(0x7f0000000140)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x101000, 0x0, 0x0}, 0x58) 19:23:41 executing program 6: syz_open_dev$sg(0x0, 0x0, 0x0) syz_io_uring_setup(0x4ee5, &(0x7f0000000080), &(0x7f0000ffd000/0x3000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000040), &(0x7f0000000100)) (fail_nth: 87) 19:23:41 executing program 0: perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = openat$urandom(0xffffffffffffff9c, &(0x7f0000000000), 0x400, 0x0) r1 = syz_open_dev$sg(&(0x7f0000000400), 0x0, 0x0) r2 = syz_open_dev$evdev(&(0x7f0000000040), 0x0, 0x8802) r3 = fcntl$dupfd(r2, 0x0, r1) writev(r3, &(0x7f0000000140)=[{&(0x7f0000000300)="0040abe02400030021206cda3b5e5672b89aeddb2a535fbd", 0x7e0}], 0x1) perf_event_open(&(0x7f0000001480)={0x4, 0x80, 0x81, 0x6, 0x4, 0x7, 0x0, 0x5, 0x9000, 0xb, 0x0, 0x1, 0x1, 0x1, 0x0, 0x1, 0x0, 0x0, 0x1, 0x0, 0x0, 0x1, 0x0, 0x1, 0x1, 0x1, 0x1, 0x0, 0x0, 0x1, 0x1, 0x0, 0x0, 0x1, 0x1, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x1, 0x0, 0x1, 0x0, 0x0, 0x1, 0x0, 0xa5, 0x0, @perf_bp={&(0x7f0000001440), 0xd}, 0xa086, 0x1, 0x3, 0x0, 0x3, 0x8d70, 0x8000, 0x0, 0x3f, 0x0, 0x6}, 0x0, 0x4, r3, 0xa) r4 = perf_event_open$cgroup(&(0x7f0000001240)={0x2, 0x80, 0x8, 0x0, 0x5, 0x40, 0x0, 0x80000000, 0x84480, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x1, 0x0, 0x0, 0x1, 0x1, 0x1, 0x1, 0x1, 0x0, 0x1, 0x0, 0x0, 0x1, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x1, 0x1, 0x1, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0xfffffffd, 0x2, @perf_config_ext={0x1000, 0xcc89}, 0x4002, 0x2, 0x10000, 0x3, 0x4, 0x9, 0x8, 0x0, 0x8, 0x0, 0xff}, 0xffffffffffffffff, 0x8, 0xffffffffffffffff, 0x2) r5 = syz_open_dev$sg(&(0x7f0000000400), 0x0, 0x0) r6 = syz_open_dev$evdev(&(0x7f0000000040), 0x0, 0x8802) r7 = fcntl$dupfd(r6, 0x0, r5) writev(r7, &(0x7f0000000140)=[{&(0x7f0000000300)="0040abe02400030021206cda3b5e5672b89aeddb2a535fbd", 0x7e0}], 0x1) perf_event_open(&(0x7f00000013c0)={0x0, 0x80, 0x6d, 0x0, 0x5, 0x1, 0x0, 0x2, 0x4201, 0x0, 0x1, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x1, 0x0, 0x1, 0x1, 0x1, 0x1, 0x3, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x1, 0x0, 0x0, 0x1, 0x1, 0x0, 0x0, 0x1, 0x1, 0x1, 0x1, 0x1, 0x0, 0x1, 0x0, 0x0, 0x7fffffff, 0x2, @perf_bp={&(0x7f00000011c0), 0x8}, 0x8, 0x7fff, 0x9, 0x3, 0x9202, 0x7, 0x7, 0x0, 0x8, 0x0, 0x8}, 0xffffffffffffffff, 0x6, r7, 0xc12f24ef4eaedae0) perf_event_open(&(0x7f0000001140)={0x4, 0x80, 0x0, 0xc1, 0x2, 0x81, 0x0, 0x5, 0x58000, 0x0, 0x0, 0x1, 0x1, 0x1, 0x1, 0x1, 0x0, 0x1, 0x0, 0x0, 0x0, 0x1, 0x1, 0x1, 0x0, 0x2, 0x1, 0x0, 0x1, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x1, 0x0, 0x1, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x1, 0x0, @perf_bp={&(0x7f0000001100), 0x10}, 0x40012, 0x7, 0x8000, 0x1, 0xffffffff, 0xffff8453, 0xfff9, 0x0, 0x400, 0x0, 0x548}, 0xffffffffffffffff, 0x9, r4, 0x2) ioctl$FS_IOC_SETVERSION(r0, 0x40087602, &(0x7f00000010c0)=0x4) r8 = perf_event_open(&(0x7f0000001d80)={0x2, 0x80, 0x70, 0x0, 0x0, 0x0, 0x0, 0xfffffffffffffffe, 0xf246b36216af958b, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x5, 0x5}, 0x0, 0x5}, 0x0, 0x0, 0xffffffffffffffff, 0x0) pread64(0xffffffffffffffff, &(0x7f00000012c0)=""/248, 0xf8, 0xfffffffffffffffa) readv(r8, &(0x7f0000001200)=[{&(0x7f00000000c0)=""/4096, 0x1000}], 0x1) [ 908.807905] FAULT_INJECTION: forcing a failure. [ 908.807905] name failslab, interval 1, probability 0, space 0, times 0 [ 908.809315] CPU: 0 PID: 16560 Comm: syz-executor.6 Not tainted 5.10.185 #1 [ 908.810079] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 908.810989] Call Trace: [ 908.811286] dump_stack+0x107/0x167 [ 908.811693] should_fail.cold+0x5/0xa [ 908.812102] ? create_object.isra.0+0x3a/0xa20 [ 908.812601] should_failslab+0x5/0x20 [ 908.813006] kmem_cache_alloc+0x5b/0x310 [ 908.813455] create_object.isra.0+0x3a/0xa20 [ 908.813931] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 908.814472] kmem_cache_alloc+0x159/0x310 [ 908.814924] anon_vma_clone+0xdc/0x590 [ 908.815349] __split_vma+0x17c/0x570 [ 908.815750] __do_munmap+0x365/0x1260 [ 908.816165] ? lock_release+0x680/0x680 [ 908.816595] mmap_region+0x776/0x1590 [ 908.817020] ? get_unmapped_area+0x2f0/0x420 [ 908.817501] do_mmap+0xcdb/0x11e0 [ 908.817895] vm_mmap_pgoff+0x198/0x1f0 [ 908.818343] ? randomize_page+0xb0/0xb0 [ 908.818793] ? __fget_files+0x296/0x4c0 [ 908.819243] ksys_mmap_pgoff+0x41c/0x560 [ 908.819706] ? find_mergeable_anon_vma+0x250/0x250 [ 908.820271] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 908.820868] ? syscall_enter_from_user_mode+0x1d/0x50 [ 908.821457] do_syscall_64+0x33/0x40 [ 908.821880] entry_SYSCALL_64_after_hwframe+0x61/0xc6 [ 908.822451] RIP: 0033:0x7f8249b64b62 [ 908.822856] Code: 00 00 00 00 00 0f 1f 00 41 f7 c1 ff 0f 00 00 75 27 55 48 89 fd 53 89 cb 48 85 ff 74 3b 41 89 da 48 89 ef b8 09 00 00 00 0f 05 <48> 3d 00 f0 ff ff 77 66 5b 5d c3 0f 1f 00 48 c7 c0 bc ff ff ff 64 [ 908.824918] RSP: 002b:00007f82470da0f8 EFLAGS: 00000206 ORIG_RAX: 0000000000000009 [ 908.825787] RAX: ffffffffffffffda RBX: 0000000000008011 RCX: 00007f8249b64b62 [ 908.826546] RDX: 0000000000000003 RSI: 0000000000200000 RDI: 0000000020ffc000 [ 908.827353] RBP: 0000000020ffc000 R08: 0000000000000004 R09: 0000000010000000 [ 908.828154] R10: 0000000000008011 R11: 0000000000000206 R12: 0000000020000100 [ 908.828973] R13: 0000000020ffc000 R14: 0000000020000040 R15: 0000000020ffd000 19:23:57 executing program 7: perf_event_open(&(0x7f0000000200)={0x2, 0x80, 0x8, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) creat(0x0, 0x0) r0 = openat$bsg(0xffffffffffffff9c, &(0x7f0000000000), 0x800, 0x0) ioctl$BLKSECTGET(r0, 0x1267, &(0x7f0000000040)) clone3(&(0x7f0000000140)={0x2020080, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0, 0x0, {r0}}, 0x58) write(0xffffffffffffffff, 0x0, 0x0) 19:23:57 executing program 3: creat(0x0, 0x0) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) clone3(&(0x7f0000000140)={0xf0ff1f00000000, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) 19:23:57 executing program 0: r0 = socket$netlink(0x10, 0x3, 0x0) sendmsg$nl_generic(r0, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000000)={0x2c, 0x16, 0x1, 0x0, 0x0, {0xa}, [@nested={0x18, 0x0, 0x0, 0x1, [@typed={0x14, 0xa, 0x0, 0x0, @ipv6=@private1}]}]}, 0x2c}}, 0x0) sendmsg$AUDIT_USER(r0, &(0x7f0000001100)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x2000000}, 0xc, &(0x7f00000010c0)={&(0x7f0000001e00)={0x1010, 0x3ed, 0x100, 0x70bd29, 0x25dfdbfd, "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", ["", "", "", "", "", "", "", ""]}, 0x1010}}, 0x8000) r1 = perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) perf_event_open(&(0x7f0000001d80)={0x2, 0x80, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, r1, 0x0) r2 = perf_event_open(&(0x7f0000001d80)={0x2, 0x80, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, r1, 0x0) readv(r2, &(0x7f0000001200)=[{&(0x7f00000000c0)=""/4096, 0x1000}], 0x1) 19:23:57 executing program 6: syz_open_dev$sg(0x0, 0x0, 0x0) syz_io_uring_setup(0x4ee5, &(0x7f0000000080), &(0x7f0000ffd000/0x3000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000040), &(0x7f0000000100)) (fail_nth: 88) 19:23:57 executing program 1: perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) clone3(&(0x7f0000000140)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0xf0ff1f, 0x0, 0x0}, 0x58) 19:23:57 executing program 4: clone3(&(0x7f0000000140)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) (fail_nth: 77) 19:23:57 executing program 2: perf_event_open(&(0x7f0000000200)={0x2, 0x80, 0x8, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) creat(0x0, 0x0) syz_io_uring_setup(0x44af, &(0x7f0000000100)={0x0, 0x2, 0x0, 0x0, 0x389}, &(0x7f0000000000/0x12000)=nil, &(0x7f000000e000/0x1000)=nil, &(0x7f0000000080), &(0x7f0000000040)) perf_event_open(0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) clone3(&(0x7f0000000140)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) 19:23:57 executing program 5: perf_event_open(&(0x7f0000000200)={0x2, 0x80, 0x8, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_io_uring_setup(0x44af, &(0x7f0000000100)={0x0, 0x2, 0x0, 0x0, 0x389}, &(0x7f0000000000/0x12000)=nil, &(0x7f000000e000/0x1000)=nil, 0x0, &(0x7f0000000040)) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) clone3(&(0x7f0000000140)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) write(0xffffffffffffffff, &(0x7f0000000100)='?', 0x1) [ 925.034152] netlink: 'syz-executor.0': attribute type 10 has an invalid length. [ 925.043349] FAULT_INJECTION: forcing a failure. [ 925.043349] name failslab, interval 1, probability 0, space 0, times 0 [ 925.043561] FAULT_INJECTION: forcing a failure. [ 925.043561] name fail_page_alloc, interval 1, probability 0, space 0, times 0 [ 925.045687] CPU: 1 PID: 16738 Comm: syz-executor.4 Not tainted 5.10.185 #1 [ 925.045708] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 925.051197] Call Trace: [ 925.051808] dump_stack+0x107/0x167 [ 925.052576] should_fail.cold+0x5/0xa [ 925.053486] ? create_object.isra.0+0x3a/0xa20 [ 925.054459] should_failslab+0x5/0x20 [ 925.055232] kmem_cache_alloc+0x5b/0x310 [ 925.056145] create_object.isra.0+0x3a/0xa20 [ 925.057104] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 925.058223] kmem_cache_alloc+0x159/0x310 [ 925.059201] anon_vma_fork+0x1ff/0x640 [ 925.060144] dup_mm+0x861/0x1110 [ 925.060837] ? vm_area_dup+0x290/0x290 [ 925.061649] ? __raw_spin_lock_init+0x36/0x110 [ 925.062596] copy_process+0x24e2/0x6740 [ 925.063411] ? lock_acquire+0x197/0x470 [ 925.064221] ? find_held_lock+0x2c/0x110 [ 925.065131] ? __cleanup_sighand+0xb0/0xb0 [ 925.066081] ? _copy_from_user+0xfb/0x1b0 [ 925.066946] kernel_clone+0xe7/0x980 [ 925.067720] ? lock_acquire+0x197/0x470 [ 925.068551] ? create_io_thread+0xf0/0xf0 [ 925.069561] ? ksys_write+0x21a/0x260 [ 925.070367] ? lock_downgrade+0x6d0/0x6d0 [ 925.071244] __do_sys_clone3+0x1e5/0x320 [ 925.072148] ? __do_sys_clone+0x110/0x110 [ 925.073030] ? rcu_read_lock_any_held+0x75/0xa0 [ 925.074020] ? vfs_write+0x354/0xa70 [ 925.074808] ? fput_many+0x2f/0x1a0 [ 925.075678] ? ksys_write+0x1a9/0x260 [ 925.076486] ? __ia32_sys_read+0xb0/0xb0 [ 925.077336] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 925.078604] ? syscall_enter_from_user_mode+0x1d/0x50 [ 925.079703] ? trace_hardirqs_on+0x5b/0x180 [ 925.080595] do_syscall_64+0x33/0x40 [ 925.081490] entry_SYSCALL_64_after_hwframe+0x61/0xc6 [ 925.082602] RIP: 0033:0x7f0ecd504b19 [ 925.083380] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 925.087258] RSP: 002b:00007f0ecaa7a188 EFLAGS: 00000246 ORIG_RAX: 00000000000001b3 [ 925.088892] RAX: ffffffffffffffda RBX: 00007f0ecd617f60 RCX: 00007f0ecd504b19 [ 925.090364] RDX: 0000000000000000 RSI: 0000000000000058 RDI: 0000000020000140 [ 925.091810] RBP: 00007f0ecaa7a1d0 R08: 0000000000000000 R09: 0000000000000000 [ 925.093285] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 925.094724] R13: 00007fffa049ab2f R14: 00007f0ecaa7a300 R15: 0000000000022000 [ 925.096204] CPU: 0 PID: 16733 Comm: syz-executor.6 Not tainted 5.10.185 #1 [ 925.097632] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 925.099310] Call Trace: [ 925.099852] dump_stack+0x107/0x167 [ 925.100588] should_fail.cold+0x5/0xa [ 925.101364] __alloc_pages_nodemask+0x182/0x600 [ 925.102322] ? memtype_seq_stop+0x20/0x20 [ 925.103160] ? pat_pagerange_is_ram+0xa8/0x140 [ 925.104100] ? __alloc_pages_slowpath.constprop.0+0x2130/0x2130 [ 925.105330] alloc_pages_current+0x187/0x280 [ 925.106241] pte_alloc_one+0x16/0x1a0 [ 925.107012] __pte_alloc+0x1d/0x330 [ 925.107754] remap_pfn_range+0xaf2/0x1040 [ 925.108634] ? apply_to_existing_page_range+0x40/0x40 [ 925.109701] ? memcg_slab_post_alloc_hook+0x17a/0x430 [ 925.110783] io_uring_mmap+0x398/0x530 [ 925.111595] mmap_region+0xb5a/0x1590 [ 925.112390] do_mmap+0xcdb/0x11e0 [ 925.113106] vm_mmap_pgoff+0x198/0x1f0 [ 925.113921] ? randomize_page+0xb0/0xb0 [ 925.114728] ? __fget_files+0x296/0x4c0 [ 925.115543] ksys_mmap_pgoff+0x41c/0x560 [ 925.116381] ? find_mergeable_anon_vma+0x250/0x250 [ 925.117385] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 925.118464] ? syscall_enter_from_user_mode+0x1d/0x50 [ 925.119511] do_syscall_64+0x33/0x40 [ 925.120267] entry_SYSCALL_64_after_hwframe+0x61/0xc6 [ 925.121297] RIP: 0033:0x7f8249b64b62 [ 925.122051] Code: 00 00 00 00 00 0f 1f 00 41 f7 c1 ff 0f 00 00 75 27 55 48 89 fd 53 89 cb 48 85 ff 74 3b 41 89 da 48 89 ef b8 09 00 00 00 0f 05 <48> 3d 00 f0 ff ff 77 66 5b 5d c3 0f 1f 00 48 c7 c0 bc ff ff ff 64 [ 925.125779] RSP: 002b:00007f82470da0f8 EFLAGS: 00000206 ORIG_RAX: 0000000000000009 [ 925.127364] RAX: ffffffffffffffda RBX: 0000000000008011 RCX: 00007f8249b64b62 [ 925.128795] RDX: 0000000000000003 RSI: 0000000000200000 RDI: 0000000020ffc000 [ 925.130238] RBP: 0000000020ffc000 R08: 0000000000000004 R09: 0000000010000000 [ 925.131694] R10: 0000000000008011 R11: 0000000000000206 R12: 0000000020000100 [ 925.133145] R13: 0000000020ffc000 R14: 0000000020000040 R15: 0000000020ffd000 [ 925.141478] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=1005 sclass=netlink_route_socket pid=16803 comm=syz-executor.0 [ 925.171894] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=0 sclass=netlink_route_socket pid=16735 comm=syz-executor.0 [ 925.174623] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=1005 sclass=netlink_route_socket pid=16803 comm=syz-executor.0 19:24:13 executing program 1: perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) clone3(&(0x7f0000000140)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x1000000, 0x0, 0x0}, 0x58) 19:24:13 executing program 5: perf_event_open(&(0x7f0000000200)={0x2, 0x80, 0x8, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_io_uring_setup(0x44af, &(0x7f0000000100)={0x0, 0x2, 0x0, 0x0, 0x389}, &(0x7f0000000000/0x12000)=nil, &(0x7f000000e000/0x1000)=nil, 0x0, &(0x7f0000000040)) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) clone3(&(0x7f0000000140)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) write(0xffffffffffffffff, &(0x7f0000000100)='?', 0x1) 19:24:13 executing program 6: syz_open_dev$sg(0x0, 0x0, 0x0) syz_io_uring_setup(0x4ee5, &(0x7f0000000080), &(0x7f0000ffd000/0x3000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000040), &(0x7f0000000100)) (fail_nth: 89) 19:24:13 executing program 2: perf_event_open(&(0x7f0000000200)={0x2, 0x80, 0x8, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) creat(0x0, 0x0) syz_io_uring_setup(0x44af, &(0x7f0000000100)={0x0, 0x2, 0x0, 0x0, 0x389}, &(0x7f0000000000/0x12000)=nil, &(0x7f000000e000/0x1000)=nil, &(0x7f0000000080), &(0x7f0000000040)) perf_event_open(0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) clone3(&(0x7f0000000140)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) 19:24:13 executing program 3: creat(0x0, 0x0) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) clone3(&(0x7f0000000140)={0x100000000000000, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) 19:24:13 executing program 0: r0 = perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f0000000000), 0x9}, 0x40288}, 0x0, 0x4, 0xffffffffffffffff, 0x0) perf_event_open(&(0x7f0000001d80)={0x2, 0x80, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, r0, 0x0) r1 = perf_event_open(&(0x7f0000001d80)={0x2, 0x80, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, r0, 0x0) ioctl$AUTOFS_DEV_IOCTL_ASKUMOUNT(0xffffffffffffffff, 0xc018937d, &(0x7f00000011c0)={{0x1, 0x1, 0x18, r0, {0x8000}}, './file0\x00'}) mmap$perf(&(0x7f0000ffb000/0x3000)=nil, 0x3000, 0x4, 0x10, r2, 0x4) ioctl$sock_FIOGETOWN(0xffffffffffffffff, 0x8903, &(0x7f0000001180)=0x0) perf_event_open(&(0x7f0000001100)={0x5, 0x80, 0x1, 0x6, 0x40, 0x0, 0x0, 0x70, 0x10080, 0xc, 0x1, 0x1, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x1, 0x1, 0x0, 0x1, 0x0, 0x0, 0x1, 0x1, 0x0, 0x1, 0x1, 0x0, 0x2, 0x2, @perf_bp={&(0x7f00000010c0), 0x4}, 0x4442a, 0x1d0, 0x9, 0x4, 0x2, 0x80000001, 0x80, 0x0, 0x401, 0x0, 0x4}, r3, 0x9, r0, 0x1) readv(r1, &(0x7f0000001200)=[{&(0x7f00000000c0)=""/4096, 0x1000}], 0x1) 19:24:13 executing program 4: clone3(&(0x7f0000000140)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) (fail_nth: 78) 19:24:13 executing program 7: ioctl$AUTOFS_DEV_IOCTL_CLOSEMOUNT(0xffffffffffffffff, 0xc0189375, &(0x7f0000000000)={{0x1, 0x1, 0x18, 0xffffffffffffffff}, './file0\x00'}) r1 = fork() r2 = perf_event_open(&(0x7f0000000200)={0x2, 0x80, 0x8, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, @perf_bp={0x0}, 0x0, 0x0, 0x3}, r1, 0x0, r0, 0x0) r3 = dup2(r2, r2) fcntl$dupfd(r2, 0x0, r3) creat(0x0, 0x0) clone3(&(0x7f0000000140)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) write(0xffffffffffffffff, 0x0, 0x0) [ 941.239465] FAULT_INJECTION: forcing a failure. [ 941.239465] name failslab, interval 1, probability 0, space 0, times 0 [ 941.241963] CPU: 0 PID: 17063 Comm: syz-executor.6 Not tainted 5.10.185 #1 [ 941.243434] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 941.245159] Call Trace: [ 941.245725] dump_stack+0x107/0x167 [ 941.246543] should_fail.cold+0x5/0xa [ 941.247344] ? ptlock_alloc+0x1d/0x70 [ 941.247941] FAULT_INJECTION: forcing a failure. [ 941.247941] name failslab, interval 1, probability 0, space 0, times 0 [ 941.248133] should_failslab+0x5/0x20 [ 941.251202] kmem_cache_alloc+0x5b/0x310 [ 941.252033] ptlock_alloc+0x1d/0x70 [ 941.252795] pte_alloc_one+0x68/0x1a0 [ 941.253563] __pte_alloc+0x1d/0x330 [ 941.254319] remap_pfn_range+0xaf2/0x1040 [ 941.255285] ? apply_to_existing_page_range+0x40/0x40 [ 941.256515] ? memcg_slab_post_alloc_hook+0x17a/0x430 [ 941.257762] io_uring_mmap+0x398/0x530 [ 941.258709] mmap_region+0xb5a/0x1590 [ 941.259496] do_mmap+0xcdb/0x11e0 [ 941.260212] vm_mmap_pgoff+0x198/0x1f0 [ 941.261007] ? randomize_page+0xb0/0xb0 [ 941.261817] ? __fget_files+0x296/0x4c0 [ 941.262641] ksys_mmap_pgoff+0x41c/0x560 [ 941.263467] ? find_mergeable_anon_vma+0x250/0x250 [ 941.264465] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 941.265531] ? syscall_enter_from_user_mode+0x1d/0x50 [ 941.266589] do_syscall_64+0x33/0x40 [ 941.267345] entry_SYSCALL_64_after_hwframe+0x61/0xc6 [ 941.268381] RIP: 0033:0x7f8249b64b62 [ 941.269138] Code: 00 00 00 00 00 0f 1f 00 41 f7 c1 ff 0f 00 00 75 27 55 48 89 fd 53 89 cb 48 85 ff 74 3b 41 89 da 48 89 ef b8 09 00 00 00 0f 05 <48> 3d 00 f0 ff ff 77 66 5b 5d c3 0f 1f 00 48 c7 c0 bc ff ff ff 64 [ 941.272869] RSP: 002b:00007f82470da0f8 EFLAGS: 00000206 ORIG_RAX: 0000000000000009 [ 941.274416] RAX: ffffffffffffffda RBX: 0000000000008011 RCX: 00007f8249b64b62 [ 941.275858] RDX: 0000000000000003 RSI: 0000000000200000 RDI: 0000000020ffc000 [ 941.277304] RBP: 0000000020ffc000 R08: 0000000000000004 R09: 0000000010000000 [ 941.278784] R10: 0000000000008011 R11: 0000000000000206 R12: 0000000020000100 [ 941.280260] R13: 0000000020ffc000 R14: 0000000020000040 R15: 0000000020ffd000 [ 941.281755] CPU: 1 PID: 17068 Comm: syz-executor.4 Not tainted 5.10.185 #1 [ 941.283206] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 941.284914] Call Trace: [ 941.285456] dump_stack+0x107/0x167 [ 941.286213] should_fail.cold+0x5/0xa [ 941.286989] ? anon_vma_fork+0x1ff/0x640 [ 941.287815] should_failslab+0x5/0x20 [ 941.288586] kmem_cache_alloc+0x5b/0x310 [ 941.289424] anon_vma_fork+0x1ff/0x640 [ 941.290260] dup_mm+0x861/0x1110 [ 941.290971] ? vm_area_dup+0x290/0x290 [ 941.291781] ? __raw_spin_lock_init+0x36/0x110 [ 941.292713] copy_process+0x24e2/0x6740 [ 941.293535] ? lock_acquire+0x197/0x470 [ 941.294345] ? find_held_lock+0x2c/0x110 [ 941.295193] ? __cleanup_sighand+0xb0/0xb0 [ 941.296073] ? _copy_from_user+0xfb/0x1b0 [ 941.296933] kernel_clone+0xe7/0x980 [ 941.297699] ? lock_acquire+0x197/0x470 [ 941.298523] ? create_io_thread+0xf0/0xf0 [ 941.299395] ? ksys_write+0x21a/0x260 [ 941.300168] ? lock_downgrade+0x6d0/0x6d0 [ 941.301016] __do_sys_clone3+0x1e5/0x320 [ 941.301857] ? __do_sys_clone+0x110/0x110 [ 941.302733] ? rcu_read_lock_any_held+0x75/0xa0 [ 941.303685] ? vfs_write+0x354/0xa70 [ 941.304442] ? fput_many+0x2f/0x1a0 [ 941.305195] ? ksys_write+0x1a9/0x260 [ 941.305988] ? __ia32_sys_read+0xb0/0xb0 [ 941.306826] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 941.307890] ? syscall_enter_from_user_mode+0x1d/0x50 [ 941.308956] ? trace_hardirqs_on+0x5b/0x180 [ 941.309856] do_syscall_64+0x33/0x40 [ 941.310623] entry_SYSCALL_64_after_hwframe+0x61/0xc6 [ 941.311678] RIP: 0033:0x7f0ecd504b19 [ 941.312451] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 941.316203] RSP: 002b:00007f0ecaa7a188 EFLAGS: 00000246 ORIG_RAX: 00000000000001b3 [ 941.317764] RAX: ffffffffffffffda RBX: 00007f0ecd617f60 RCX: 00007f0ecd504b19 [ 941.319224] RDX: 0000000000000000 RSI: 0000000000000058 RDI: 0000000020000140 [ 941.320687] RBP: 00007f0ecaa7a1d0 R08: 0000000000000000 R09: 0000000000000000 [ 941.322161] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 941.323627] R13: 00007fffa049ab2f R14: 00007f0ecaa7a300 R15: 0000000000022000 19:24:13 executing program 6: syz_open_dev$sg(0x0, 0x0, 0x0) syz_io_uring_setup(0x4ee5, &(0x7f0000000080), &(0x7f0000ffd000/0x3000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000040), &(0x7f0000000100)) (fail_nth: 90) 19:24:13 executing program 0: r0 = perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) perf_event_open(&(0x7f0000001d80)={0x2, 0x80, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, r0, 0x0) r1 = perf_event_open(&(0x7f0000001d80)={0x2, 0x80, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, r0, 0x0) readv(r1, &(0x7f0000001200)=[{&(0x7f00000000c0)=""/4096, 0x1000}], 0x1) r2 = socket$netlink(0x10, 0x3, 0x0) sendmsg$nl_generic(r2, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000000)={0x2c, 0x16, 0x1, 0x0, 0x0, {0xa}, [@nested={0x18, 0x0, 0x0, 0x1, [@typed={0x14, 0xa, 0x0, 0x0, @ipv6=@private1}]}]}, 0x2c}}, 0x0) getsockopt$inet_IP_IPSEC_POLICY(0xffffffffffffffff, 0x0, 0x10, &(0x7f0000001240)={{{@in6=@initdev, @in=@multicast2}}, {{@in=@local}, 0x0, @in=@empty}}, &(0x7f00000011c0)=0xe8) getsockopt$inet_IP_IPSEC_POLICY(0xffffffffffffffff, 0x0, 0x10, &(0x7f0000001400)={{{@in6=@private1, @in=@broadcast}}, {{@in=@broadcast}, 0x0, @in=@broadcast}}, &(0x7f0000001500)=0xe8) mount$9p_fd(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000001180), 0x40, &(0x7f0000001540)={'trans=fd,', {}, 0x2c, {'wfdno', 0x3d, r2}, 0x2c, {[{@loose}, {@aname={'aname', 0x3d, '\''}}, {@version_9p2000}, {@posixacl}], [{@smackfshat={'smackfshat', 0x3d, '.\'$'}}, {@mask={'mask', 0x3d, '^MAY_APPEND'}}, {@fowner_eq}, {@smackfstransmute={'smackfstransmute', 0x3d, ':'}}]}}) pread64(0xffffffffffffffff, &(0x7f00000010c0)=""/149, 0x95, 0x4) [ 941.462045] netlink: 'syz-executor.0': attribute type 10 has an invalid length. [ 941.496895] FAULT_INJECTION: forcing a failure. [ 941.496895] name failslab, interval 1, probability 0, space 0, times 0 [ 941.499283] CPU: 1 PID: 17332 Comm: syz-executor.6 Not tainted 5.10.185 #1 [ 941.500711] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 941.502412] Call Trace: [ 941.502954] dump_stack+0x107/0x167 [ 941.503703] should_fail.cold+0x5/0xa [ 941.504482] ? create_object.isra.0+0x3a/0xa20 [ 941.505404] should_failslab+0x5/0x20 [ 941.506180] kmem_cache_alloc+0x5b/0x310 [ 941.506994] ? __alloc_pages_slowpath.constprop.0+0x2130/0x2130 [ 941.508198] create_object.isra.0+0x3a/0xa20 [ 941.509076] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 941.510101] kmem_cache_alloc+0x159/0x310 [ 941.510935] ptlock_alloc+0x1d/0x70 [ 941.511662] pte_alloc_one+0x68/0x1a0 [ 941.512423] __pte_alloc+0x1d/0x330 [ 941.513157] remap_pfn_range+0xaf2/0x1040 [ 941.514032] ? apply_to_existing_page_range+0x40/0x40 [ 941.515094] ? memcg_slab_post_alloc_hook+0x17a/0x430 [ 941.516154] io_uring_mmap+0x398/0x530 [ 941.516959] mmap_region+0xb5a/0x1590 [ 941.517754] do_mmap+0xcdb/0x11e0 [ 941.518485] vm_mmap_pgoff+0x198/0x1f0 [ 941.519287] ? randomize_page+0xb0/0xb0 [ 941.520097] ? __fget_files+0x296/0x4c0 [ 941.520914] ksys_mmap_pgoff+0x41c/0x560 [ 941.521748] ? find_mergeable_anon_vma+0x250/0x250 [ 941.522763] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 941.523825] ? syscall_enter_from_user_mode+0x1d/0x50 [ 941.524876] do_syscall_64+0x33/0x40 [ 941.525630] entry_SYSCALL_64_after_hwframe+0x61/0xc6 [ 941.526681] RIP: 0033:0x7f8249b64b62 [ 941.527438] Code: 00 00 00 00 00 0f 1f 00 41 f7 c1 ff 0f 00 00 75 27 55 48 89 fd 53 89 cb 48 85 ff 74 3b 41 89 da 48 89 ef b8 09 00 00 00 0f 05 <48> 3d 00 f0 ff ff 77 66 5b 5d c3 0f 1f 00 48 c7 c0 bc ff ff ff 64 [ 941.531177] RSP: 002b:00007f82470da0f8 EFLAGS: 00000206 ORIG_RAX: 0000000000000009 [ 941.532695] RAX: ffffffffffffffda RBX: 0000000000008011 RCX: 00007f8249b64b62 [ 941.534115] RDX: 0000000000000003 RSI: 0000000000200000 RDI: 0000000020ffc000 [ 941.535546] RBP: 0000000020ffc000 R08: 0000000000000004 R09: 0000000010000000 [ 941.536992] R10: 0000000000008011 R11: 0000000000000206 R12: 0000000020000100 [ 941.538451] R13: 0000000020ffc000 R14: 0000000020000040 R15: 0000000020ffd000 19:24:13 executing program 2: perf_event_open(&(0x7f0000000200)={0x2, 0x80, 0x8, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) creat(0x0, 0x0) syz_io_uring_setup(0x44af, &(0x7f0000000100)={0x0, 0x2, 0x0, 0x0, 0x389}, &(0x7f0000000000/0x12000)=nil, &(0x7f000000e000/0x1000)=nil, &(0x7f0000000080), &(0x7f0000000040)) perf_event_open(0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) clone3(&(0x7f0000000140)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) 19:24:13 executing program 3: creat(0x0, 0x0) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) clone3(&(0x7f0000000140)={0x800000000000000, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) 19:24:13 executing program 4: clone3(&(0x7f0000000140)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) (fail_nth: 79) [ 941.608379] netlink: 'syz-executor.0': attribute type 10 has an invalid length. 19:24:13 executing program 5: perf_event_open(&(0x7f0000000200)={0x2, 0x80, 0x8, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_io_uring_setup(0x44af, &(0x7f0000000100)={0x0, 0x2, 0x0, 0x0, 0x389}, &(0x7f0000000000/0x12000)=nil, &(0x7f000000e000/0x1000)=nil, &(0x7f0000000080), 0x0) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) clone3(&(0x7f0000000140)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) write(0xffffffffffffffff, &(0x7f0000000100)='?', 0x1) [ 941.639454] FAULT_INJECTION: forcing a failure. [ 941.639454] name fail_page_alloc, interval 1, probability 0, space 0, times 0 [ 941.642019] CPU: 0 PID: 17437 Comm: syz-executor.4 Not tainted 5.10.185 #1 [ 941.643439] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 941.645129] Call Trace: [ 941.645679] dump_stack+0x107/0x167 [ 941.646436] should_fail.cold+0x5/0xa [ 941.647226] __alloc_pages_nodemask+0x182/0x600 [ 941.648180] ? lock_acquire+0x197/0x470 [ 941.649026] ? __alloc_pages_slowpath.constprop.0+0x2130/0x2130 [ 941.650291] ? lock_downgrade+0x6d0/0x6d0 [ 941.651151] ? do_raw_spin_lock+0x121/0x260 [ 941.652044] alloc_pages_current+0x187/0x280 [ 941.652957] __pmd_alloc+0x37/0x5e0 [ 941.653714] copy_page_range+0x2bed/0x3820 [ 941.654592] ? perf_trace_lock+0xac/0x490 [ 941.655452] ? lock_chain_count+0x20/0x20 [ 941.656355] ? up_write+0x191/0x550 [ 941.657108] ? vm_iomap_memory+0x190/0x190 [ 941.657987] ? downgrade_write+0x3a0/0x3a0 [ 941.658855] ? anon_vma_interval_tree_insert+0x277/0x450 [ 941.659962] ? __vma_link_rb+0x540/0x700 [ 941.660800] dup_mm+0x8b9/0x1110 [ 941.661507] ? vm_area_dup+0x290/0x290 [ 941.662316] ? __raw_spin_lock_init+0x36/0x110 [ 941.663254] copy_process+0x24e2/0x6740 [ 941.664062] ? lock_acquire+0x197/0x470 [ 941.664872] ? find_held_lock+0x2c/0x110 [ 941.665738] ? __cleanup_sighand+0xb0/0xb0 [ 941.666620] ? _copy_from_user+0xfb/0x1b0 [ 941.667479] kernel_clone+0xe7/0x980 [ 941.668235] ? __lockdep_reset_lock+0x180/0x180 [ 941.669186] ? create_io_thread+0xf0/0xf0 [ 941.670065] ? ksys_write+0x21a/0x260 [ 941.670847] ? lock_downgrade+0x6d0/0x6d0 [ 941.671695] __do_sys_clone3+0x1e5/0x320 [ 941.672522] ? __do_sys_clone+0x110/0x110 [ 941.673389] ? rcu_read_lock_any_held+0x75/0xa0 [ 941.674341] ? vfs_write+0x354/0xa70 [ 941.675102] ? fput_many+0x2f/0x1a0 [ 941.675845] ? ksys_write+0x1a9/0x260 [ 941.676620] ? __ia32_sys_read+0xb0/0xb0 [ 941.677451] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 941.678536] ? syscall_enter_from_user_mode+0x1d/0x50 [ 941.679600] ? trace_hardirqs_on+0x5b/0x180 [ 941.680485] do_syscall_64+0x33/0x40 [ 941.681248] entry_SYSCALL_64_after_hwframe+0x61/0xc6 [ 941.682304] RIP: 0033:0x7f0ecd504b19 [ 941.683075] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 941.686835] RSP: 002b:00007f0ecaa7a188 EFLAGS: 00000246 ORIG_RAX: 00000000000001b3 [ 941.688385] RAX: ffffffffffffffda RBX: 00007f0ecd617f60 RCX: 00007f0ecd504b19 [ 941.689858] RDX: 0000000000000000 RSI: 0000000000000058 RDI: 0000000020000140 [ 941.691315] RBP: 00007f0ecaa7a1d0 R08: 0000000000000000 R09: 0000000000000000 [ 941.692774] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 941.694237] R13: 00007fffa049ab2f R14: 00007f0ecaa7a300 R15: 0000000000022000 19:24:14 executing program 1: perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) clone3(&(0x7f0000000140)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x8000000, 0x0, 0x0}, 0x58) 19:24:14 executing program 7: r0 = socket$netlink(0x10, 0x3, 0x0) sendmsg$nl_generic(r0, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000280)=ANY=[@ANYBLOB="2c000000160001000000000000000000e43d45bf956ceb5714000a00fc010000000000000000000000000000a32a7860a5d2f21f8ea9cfff00000030ace418e41983ba941450e9b1694b167af0"], 0x2c}}, 0x0) ioctl$sock_SIOCGSKNS(r0, 0x894c, &(0x7f0000000000)=0xa49) r1 = syz_open_dev$mouse(&(0x7f0000000040), 0x1, 0x180) getsockopt$IP_VS_SO_GET_SERVICE(r1, 0x0, 0x483, &(0x7f0000000300), &(0x7f0000000080)=0x68) perf_event_open(&(0x7f0000000200)={0x2, 0x80, 0x8, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x0, 0x0, 0x2}, 0x0, 0x0, 0xffffffffffffffff, 0x0) creat(0x0, 0x0) clone3(&(0x7f0000000140)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) write(0xffffffffffffffff, 0x0, 0x0) 19:24:14 executing program 6: syz_open_dev$sg(0x0, 0x0, 0x0) syz_io_uring_setup(0x4ee5, &(0x7f0000000080), &(0x7f0000ffd000/0x3000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000040), &(0x7f0000000100)) (fail_nth: 91) 19:24:14 executing program 3: creat(0x0, 0x0) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) clone3(&(0x7f0000000140)={0x1100000000000000, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) 19:24:14 executing program 0: r0 = perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) perf_event_open(&(0x7f0000001d80)={0x2, 0x80, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, r0, 0x0) r1 = perf_event_open(&(0x7f0000001d80)={0x2, 0x80, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0, 0x5}, 0x0, 0x0, 0x9c31}, 0x0, 0x0, r0, 0x2) readv(r1, &(0x7f0000001200)=[{&(0x7f00000000c0)=""/4096, 0x1000}], 0x1) [ 941.823755] FAULT_INJECTION: forcing a failure. [ 941.823755] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 941.827075] CPU: 1 PID: 17493 Comm: syz-executor.6 Not tainted 5.10.185 #1 [ 941.828501] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 941.830228] Call Trace: [ 941.830790] dump_stack+0x107/0x167 [ 941.831563] should_fail.cold+0x5/0xa [ 941.832365] _copy_to_user+0x2e/0x180 [ 941.833155] simple_read_from_buffer+0xcc/0x160 [ 941.834133] proc_fail_nth_read+0x198/0x230 [ 941.835029] ? proc_sessionid_read+0x230/0x230 [ 941.835968] ? security_file_permission+0x24e/0x570 [ 941.836997] ? perf_trace_initcall_start+0x101/0x380 [ 941.838069] ? proc_sessionid_read+0x230/0x230 [ 941.839010] vfs_read+0x228/0x580 [ 941.839734] ksys_read+0x12d/0x260 [ 941.840470] ? vfs_write+0xa70/0xa70 [ 941.841259] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 941.842354] ? syscall_enter_from_user_mode+0x1d/0x50 [ 941.843423] do_syscall_64+0x33/0x40 [ 941.844200] entry_SYSCALL_64_after_hwframe+0x61/0xc6 [ 941.845253] RIP: 0033:0x7f8249b1769c [ 941.846033] Code: ec 28 48 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 f9 fc ff ff 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 31 c0 0f 05 <48> 3d 00 f0 ff ff 77 34 44 89 c7 48 89 44 24 08 e8 2f fd ff ff 48 [ 941.849789] RSP: 002b:00007f82470da170 EFLAGS: 00000246 ORIG_RAX: 0000000000000000 [ 941.851371] RAX: ffffffffffffffda RBX: 0000000000000004 RCX: 00007f8249b1769c [ 941.852836] RDX: 000000000000000f RSI: 00007f82470da1e0 RDI: 0000000000000003 [ 941.854312] RBP: 00007f82470da1d0 R08: 0000000000000000 R09: 0000000010000000 [ 941.855770] R10: 0000000000008011 R11: 0000000000000246 R12: 0000000000000002 [ 941.857230] R13: 00007ffe11e26cff R14: 00007f82470da300 R15: 0000000000022000 [ 956.717995] FAULT_INJECTION: forcing a failure. [ 956.717995] name failslab, interval 1, probability 0, space 0, times 0 [ 956.720361] CPU: 0 PID: 17813 Comm: syz-executor.4 Not tainted 5.10.185 #1 [ 956.721777] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 956.723494] Call Trace: 19:24:29 executing program 4: clone3(&(0x7f0000000140)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) (fail_nth: 80) 19:24:29 executing program 1: perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) clone3(&(0x7f0000000140)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x10000200, 0x0, 0x0}, 0x58) 19:24:29 executing program 5: perf_event_open(&(0x7f0000000200)={0x2, 0x80, 0x8, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_io_uring_setup(0x44af, &(0x7f0000000100)={0x0, 0x2, 0x0, 0x0, 0x389}, &(0x7f0000000000/0x12000)=nil, &(0x7f000000e000/0x1000)=nil, &(0x7f0000000080), 0x0) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) clone3(&(0x7f0000000140)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) write(0xffffffffffffffff, &(0x7f0000000100)='?', 0x1) 19:24:29 executing program 7: r0 = fcntl$getown(0xffffffffffffffff, 0x9) perf_event_open(&(0x7f0000000200)={0x2, 0x80, 0xc, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, r0, 0x0, 0xffffffffffffffff, 0x0) r1 = creat(0x0, 0x0) clone3(&(0x7f0000000140)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) write(0xffffffffffffffff, 0x0, 0x0) r2 = socket$netlink(0x10, 0x3, 0x0) sendmsg$nl_generic(r2, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000000)={0x2c, 0x16, 0x1, 0x0, 0x0, {0xa}, [@nested={0x18, 0x0, 0x0, 0x1, [@typed={0x14, 0xa, 0x0, 0x0, @ipv6=@private1}]}]}, 0x2c}}, 0x0) ioctl$FS_IOC_FSSETXATTR(r2, 0x401c5820, &(0x7f0000000000)={0x7, 0x10001, 0x6, 0x1, 0x4}) r3 = socket$netlink(0x10, 0x3, 0x0) setsockopt$netlink_NETLINK_LISTEN_ALL_NSID(r1, 0x10e, 0x8, &(0x7f0000000280)=0xfffffffb, 0x4) sendmsg$nl_generic(r3, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000000)={0x2c, 0x16, 0x1, 0x0, 0x0, {0xa}, [@nested={0x18, 0x0, 0x0, 0x1, [@typed={0x14, 0xa, 0x0, 0x0, @ipv6=@private1}]}]}, 0x2c}}, 0x0) fsetxattr$trusted_overlay_redirect(r3, &(0x7f0000000040), &(0x7f0000000080)='./file0\x00', 0x8, 0x2) write$bt_hci(r1, &(0x7f00000001c0)={0x1, @add_sco={{0x407, 0x4}, {0xc8}}}, 0x8) [ 956.724049] dump_stack+0x107/0x167 [ 956.725014] should_fail.cold+0x5/0xa [ 956.725798] ? __pmd_alloc+0x94/0x5e0 [ 956.726590] should_failslab+0x5/0x20 [ 956.727377] kmem_cache_alloc+0x5b/0x310 [ 956.728210] __pmd_alloc+0x94/0x5e0 [ 956.728966] copy_page_range+0x2bed/0x3820 [ 956.729832] ? lock_chain_count+0x20/0x20 [ 956.730727] ? up_write+0x191/0x550 [ 956.731473] ? vm_iomap_memory+0x190/0x190 [ 956.732346] ? downgrade_write+0x3a0/0x3a0 [ 956.733214] ? anon_vma_interval_tree_insert+0x277/0x450 [ 956.734327] ? __vma_link_rb+0x540/0x700 [ 956.735168] dup_mm+0x8b9/0x1110 [ 956.735869] ? vm_area_dup+0x290/0x290 [ 956.736670] ? __raw_spin_lock_init+0x36/0x110 [ 956.737604] copy_process+0x24e2/0x6740 [ 956.738425] ? lock_acquire+0x197/0x470 [ 956.739228] ? find_held_lock+0x2c/0x110 19:24:29 executing program 0: r0 = perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x7, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) perf_event_open$cgroup(&(0x7f00000010c0)={0x2, 0x80, 0x3f, 0x80, 0x6, 0x20, 0x0, 0x2, 0x866de127f59bdaeb, 0x2, 0x0, 0x0, 0x1, 0x1, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x1, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x1, 0x0, 0x0, 0x1, 0x1, 0x0, 0x1, 0x1, 0x0, 0x1, 0x0, 0x0, 0xc101, 0x0, @perf_bp={&(0x7f0000000000), 0x1}, 0x2, 0x990d, 0x2, 0x3, 0x8, 0xffffffc0, 0x4, 0x0, 0x5, 0x0, 0x2}, 0xffffffffffffffff, 0x10, 0xffffffffffffffff, 0x1) perf_event_open(&(0x7f0000001d80)={0x2, 0x80, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, r0, 0x0) openat2(0xffffffffffffffff, &(0x7f0000001140)='./file0\x00', &(0x7f0000001180)={0x44400, 0x0, 0x1b}, 0x18) r1 = perf_event_open(&(0x7f0000001d80)={0x2, 0x80, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, r0, 0x0) readv(r1, &(0x7f0000001200)=[{&(0x7f00000000c0)=""/4096, 0x1000}], 0x1) 19:24:29 executing program 6: syz_open_dev$sg(0x0, 0x0, 0x0) syz_io_uring_setup(0x4ee5, &(0x7f0000000080), &(0x7f0000ffd000/0x3000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000040), &(0x7f0000000100)) 19:24:29 executing program 3: creat(0x0, 0x0) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) clone3(&(0x7f0000000140)={0x2000000000000000, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) 19:24:29 executing program 2: perf_event_open(&(0x7f0000000200)={0x2, 0x80, 0x8, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) creat(0x0, 0x0) syz_io_uring_setup(0x44af, &(0x7f0000000100)={0x0, 0x2, 0x0, 0x0, 0x389}, &(0x7f0000000000/0x12000)=nil, &(0x7f000000e000/0x1000)=nil, &(0x7f0000000080), &(0x7f0000000040)) perf_event_open(&(0x7f0000001d80)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) clone3(&(0x7f0000000140)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) [ 956.740080] ? __cleanup_sighand+0xb0/0xb0 [ 956.741056] ? _copy_from_user+0xfb/0x1b0 [ 956.741914] kernel_clone+0xe7/0x980 [ 956.742686] ? lock_acquire+0x197/0x470 [ 956.743489] ? create_io_thread+0xf0/0xf0 [ 956.744355] ? ksys_write+0x21a/0x260 [ 956.745125] ? lock_downgrade+0x6d0/0x6d0 [ 956.745977] __do_sys_clone3+0x1e5/0x320 [ 956.746812] ? __do_sys_clone+0x110/0x110 [ 956.747680] ? rcu_read_lock_any_held+0x75/0xa0 [ 956.748613] ? vfs_write+0x354/0xa70 [ 956.749383] ? fput_many+0x2f/0x1a0 [ 956.750132] ? ksys_write+0x1a9/0x260 [ 956.750901] ? __ia32_sys_read+0xb0/0xb0 [ 956.751713] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 956.752777] ? syscall_enter_from_user_mode+0x1d/0x50 [ 956.753808] ? trace_hardirqs_on+0x5b/0x180 [ 956.754698] do_syscall_64+0x33/0x40 [ 956.755447] entry_SYSCALL_64_after_hwframe+0x61/0xc6 [ 956.756485] RIP: 0033:0x7f0ecd504b19 [ 956.757232] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 956.760958] RSP: 002b:00007f0ecaa7a188 EFLAGS: 00000246 ORIG_RAX: 00000000000001b3 [ 956.762515] RAX: ffffffffffffffda RBX: 00007f0ecd617f60 RCX: 00007f0ecd504b19 [ 956.763944] RDX: 0000000000000000 RSI: 0000000000000058 RDI: 0000000020000140 [ 956.765391] RBP: 00007f0ecaa7a1d0 R08: 0000000000000000 R09: 0000000000000000 [ 956.766831] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 956.768263] R13: 00007fffa049ab2f R14: 00007f0ecaa7a300 R15: 0000000000022000 19:24:29 executing program 6: syz_open_dev$sg(0x0, 0x0, 0x0) syz_io_uring_setup(0x4ee5, &(0x7f0000000080), &(0x7f0000ffd000/0x3000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000040), &(0x7f0000000100)) 19:24:29 executing program 0: r0 = perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r1 = perf_event_open(&(0x7f0000001d80)={0x2, 0x80, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, r0, 0x0) r2 = perf_event_open(&(0x7f0000001d80)={0x2, 0x80, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, r0, 0x0) readv(r2, &(0x7f0000001200)=[{&(0x7f00000000c0)=""/4096, 0x1000}], 0x1) ioctl$AUTOFS_DEV_IOCTL_TIMEOUT(0xffffffffffffffff, 0xc018937a, &(0x7f0000001140)={{0x1, 0x1, 0x18, r1, {0x1}}, './file0\x00'}) perf_event_open(&(0x7f00000010c0)={0x1, 0x80, 0x7, 0xff, 0x1, 0x7, 0x0, 0xe0cd, 0x800, 0x2, 0x1, 0x1, 0x0, 0x0, 0x0, 0x1, 0x1, 0x1, 0x0, 0x1, 0x0, 0x0, 0x0, 0x1, 0x0, 0x1, 0x1, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x1, 0x1, 0x0, 0xff23, 0x2, @perf_bp={&(0x7f0000000000), 0x9}, 0x4040, 0x0, 0x3, 0x4, 0x10001, 0x8000, 0x9, 0x0, 0x0, 0x0, 0x401}, 0xffffffffffffffff, 0x0, r3, 0x2) 19:24:29 executing program 1: perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) clone3(&(0x7f0000000140)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x11000000, 0x0, 0x0}, 0x58) 19:24:29 executing program 3: creat(0x0, 0x0) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) clone3(&(0x7f0000000140)={0x3f00000000000000, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) 19:24:29 executing program 6: syz_open_dev$sg(0x0, 0x0, 0x0) syz_io_uring_setup(0x4ee5, &(0x7f0000000080)={0x0, 0x2}, &(0x7f0000ffd000/0x3000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000040), &(0x7f0000000100)) 19:24:29 executing program 4: clone3(&(0x7f0000000140)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) (fail_nth: 81) 19:24:29 executing program 1: perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) clone3(&(0x7f0000000140)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x1ffff000, 0x0, 0x0}, 0x58) 19:24:29 executing program 2: perf_event_open(&(0x7f0000000200)={0x2, 0x80, 0x8, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) creat(0x0, 0x0) syz_io_uring_setup(0x44af, &(0x7f0000000100)={0x0, 0x2, 0x0, 0x0, 0x389}, &(0x7f0000000000/0x12000)=nil, &(0x7f000000e000/0x1000)=nil, &(0x7f0000000080), &(0x7f0000000040)) perf_event_open(&(0x7f0000001d80)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) clone3(&(0x7f0000000140)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) [ 957.112038] FAULT_INJECTION: forcing a failure. [ 957.112038] name failslab, interval 1, probability 0, space 0, times 0 [ 957.114363] CPU: 1 PID: 18182 Comm: syz-executor.4 Not tainted 5.10.185 #1 [ 957.115764] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 957.117449] Call Trace: [ 957.117985] dump_stack+0x107/0x167 [ 957.118726] should_fail.cold+0x5/0xa [ 957.119482] ? create_object.isra.0+0x3a/0xa20 [ 957.120396] should_failslab+0x5/0x20 [ 957.121148] kmem_cache_alloc+0x5b/0x310 [ 957.121961] create_object.isra.0+0x3a/0xa20 [ 957.122856] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 957.123865] kmem_cache_alloc+0x159/0x310 [ 957.124701] __pmd_alloc+0x94/0x5e0 [ 957.125423] copy_page_range+0x2bed/0x3820 [ 957.126289] ? lock_chain_count+0x20/0x20 [ 957.127157] ? up_write+0x191/0x550 [ 957.127889] ? vm_iomap_memory+0x190/0x190 [ 957.128729] ? downgrade_write+0x3a0/0x3a0 [ 957.129628] ? anon_vma_interval_tree_insert+0x277/0x450 [ 957.130751] ? __vma_link_rb+0x540/0x700 [ 957.131584] dup_mm+0x8b9/0x1110 [ 957.132283] ? vm_area_dup+0x290/0x290 [ 957.133070] ? __raw_spin_lock_init+0x36/0x110 [ 957.134043] copy_process+0x24e2/0x6740 [ 957.134836] ? lock_acquire+0x197/0x470 [ 957.135624] ? find_held_lock+0x2c/0x110 [ 957.136456] ? __cleanup_sighand+0xb0/0xb0 [ 957.137318] ? _copy_from_user+0xfb/0x1b0 [ 957.138172] kernel_clone+0xe7/0x980 [ 957.138926] ? lock_acquire+0x197/0x470 [ 957.139722] ? create_io_thread+0xf0/0xf0 [ 957.140562] ? ksys_write+0x21a/0x260 [ 957.141325] ? lock_downgrade+0x6d0/0x6d0 [ 957.142182] __do_sys_clone3+0x1e5/0x320 [ 957.143175] ? __do_sys_clone+0x110/0x110 [ 957.144037] ? rcu_read_lock_any_held+0x75/0xa0 [ 957.145139] ? vfs_write+0x354/0xa70 [ 957.145893] ? fput_many+0x2f/0x1a0 [ 957.146780] ? ksys_write+0x1a9/0x260 [ 957.147586] ? __ia32_sys_read+0xb0/0xb0 [ 957.148424] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 957.149667] ? syscall_enter_from_user_mode+0x1d/0x50 [ 957.150727] ? trace_hardirqs_on+0x5b/0x180 [ 957.151759] do_syscall_64+0x33/0x40 [ 957.152508] entry_SYSCALL_64_after_hwframe+0x61/0xc6 [ 957.153732] RIP: 0033:0x7f0ecd504b19 [ 957.154496] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 957.158897] RSP: 002b:00007f0ecaa7a188 EFLAGS: 00000246 ORIG_RAX: 00000000000001b3 [ 957.160436] RAX: ffffffffffffffda RBX: 00007f0ecd617f60 RCX: 00007f0ecd504b19 [ 957.161981] RDX: 0000000000000000 RSI: 0000000000000058 RDI: 0000000020000140 [ 957.163413] RBP: 00007f0ecaa7a1d0 R08: 0000000000000000 R09: 0000000000000000 [ 957.164837] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 957.166260] R13: 00007fffa049ab2f R14: 00007f0ecaa7a300 R15: 0000000000022000 19:24:41 executing program 4: clone3(&(0x7f0000000140)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) (fail_nth: 82) 19:24:41 executing program 0: perf_event_open(&(0x7f0000001d80)={0x2, 0x80, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = perf_event_open(&(0x7f0000001d80)={0x2, 0x80, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) readv(r0, &(0x7f0000001200)=[{&(0x7f00000000c0)=""/4096, 0x1000}], 0x1) 19:24:41 executing program 3: creat(0x0, 0x0) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) clone3(&(0x7f0000000140)={0x4000000000000000, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) 19:24:41 executing program 6: syz_open_dev$sg(0x0, 0x0, 0x0) syz_io_uring_setup(0x4ee5, &(0x7f0000000080)={0x0, 0x3}, &(0x7f0000ffd000/0x3000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000040), &(0x7f0000000100)) 19:24:41 executing program 7: modify_ldt$read_default(0x2, &(0x7f0000000080)=""/71, 0x47) modify_ldt$read_default(0x2, &(0x7f0000000280)=""/101, 0x65) perf_event_open(&(0x7f0000000200)={0x2, 0x80, 0x8, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = creat(0x0, 0x0) creat(&(0x7f0000000040)='./file0\x00', 0x1) clone3(&(0x7f0000000140)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) write(0xffffffffffffffff, 0x0, 0x0) ioctl$MON_IOCQ_RING_SIZE(r0, 0x9205) ioctl$CDROMVOLCTRL(r0, 0x530a, &(0x7f0000000000)={0xa3, 0x5, 0x1, 0xca}) [ 969.684346] FAULT_INJECTION: forcing a failure. [ 969.684346] name fail_page_alloc, interval 1, probability 0, space 0, times 0 [ 969.686883] CPU: 1 PID: 18358 Comm: syz-executor.4 Not tainted 5.10.185 #1 [ 969.688258] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 969.689895] Call Trace: [ 969.690447] dump_stack+0x107/0x167 [ 969.691178] should_fail.cold+0x5/0xa 19:24:41 executing program 1: perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) clone3(&(0x7f0000000140)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x20000000, 0x0, 0x0}, 0x58) 19:24:41 executing program 2: perf_event_open(&(0x7f0000000200)={0x2, 0x80, 0x8, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) creat(0x0, 0x0) syz_io_uring_setup(0x44af, &(0x7f0000000100)={0x0, 0x2, 0x0, 0x0, 0x389}, &(0x7f0000000000/0x12000)=nil, &(0x7f000000e000/0x1000)=nil, &(0x7f0000000080), &(0x7f0000000040)) perf_event_open(&(0x7f0000001d80)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) clone3(&(0x7f0000000140)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) 19:24:41 executing program 5: perf_event_open(&(0x7f0000000200)={0x2, 0x80, 0x8, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_io_uring_setup(0x44af, &(0x7f0000000100)={0x0, 0x2, 0x0, 0x0, 0x389}, &(0x7f0000000000/0x12000)=nil, &(0x7f000000e000/0x1000)=nil, &(0x7f0000000080), 0x0) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) clone3(&(0x7f0000000140)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) write(0xffffffffffffffff, &(0x7f0000000100)='?', 0x1) [ 969.691943] __alloc_pages_nodemask+0x182/0x600 [ 969.693004] ? __alloc_pages_slowpath.constprop.0+0x2130/0x2130 [ 969.694186] ? find_held_lock+0x2c/0x110 [ 969.695004] ? __pmd_alloc+0x2db/0x5e0 [ 969.695780] ? lock_downgrade+0x6d0/0x6d0 [ 969.696594] ? do_raw_spin_lock+0x121/0x260 [ 969.697449] alloc_pages_current+0x187/0x280 [ 969.698331] pte_alloc_one+0x16/0x1a0 [ 969.699076] __pte_alloc+0x1d/0x330 [ 969.699837] copy_page_range+0x1b77/0x3820 [ 969.700677] ? lock_chain_count+0x20/0x20 [ 969.701566] ? up_write+0x191/0x550 [ 969.702333] ? vm_iomap_memory+0x190/0x190 [ 969.703195] ? downgrade_write+0x3a0/0x3a0 [ 969.704057] ? anon_vma_interval_tree_insert+0x277/0x450 [ 969.705162] ? __vma_link_rb+0x540/0x700 [ 969.705995] dup_mm+0x8b9/0x1110 [ 969.706709] ? vm_area_dup+0x290/0x290 [ 969.707503] ? __raw_spin_lock_init+0x36/0x110 [ 969.708439] copy_process+0x24e2/0x6740 [ 969.709245] ? lock_acquire+0x197/0x470 [ 969.710051] ? find_held_lock+0x2c/0x110 [ 969.710919] ? __cleanup_sighand+0xb0/0xb0 [ 969.711781] ? _copy_from_user+0xfb/0x1b0 [ 969.712628] kernel_clone+0xe7/0x980 [ 969.713386] ? lock_acquire+0x197/0x470 [ 969.714202] ? create_io_thread+0xf0/0xf0 [ 969.715063] ? ksys_write+0x21a/0x260 [ 969.715842] ? lock_downgrade+0x6d0/0x6d0 [ 969.716692] __do_sys_clone3+0x1e5/0x320 [ 969.717522] ? __do_sys_clone+0x110/0x110 [ 969.718428] ? rcu_read_lock_any_held+0x75/0xa0 [ 969.719366] ? vfs_write+0x354/0xa70 [ 969.720123] ? fput_many+0x2f/0x1a0 [ 969.720861] ? ksys_write+0x1a9/0x260 [ 969.721636] ? __ia32_sys_read+0xb0/0xb0 [ 969.722472] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 969.723537] ? syscall_enter_from_user_mode+0x1d/0x50 [ 969.724580] ? trace_hardirqs_on+0x5b/0x180 [ 969.725457] do_syscall_64+0x33/0x40 [ 969.726220] entry_SYSCALL_64_after_hwframe+0x61/0xc6 [ 969.727274] RIP: 0033:0x7f0ecd504b19 [ 969.728034] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 969.731805] RSP: 002b:00007f0ecaa7a188 EFLAGS: 00000246 ORIG_RAX: 00000000000001b3 [ 969.733365] RAX: ffffffffffffffda RBX: 00007f0ecd617f60 RCX: 00007f0ecd504b19 [ 969.734822] RDX: 0000000000000000 RSI: 0000000000000058 RDI: 0000000020000140 [ 969.736275] RBP: 00007f0ecaa7a1d0 R08: 0000000000000000 R09: 0000000000000000 [ 969.737730] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 969.739193] R13: 00007fffa049ab2f R14: 00007f0ecaa7a300 R15: 0000000000022000 19:24:42 executing program 6: syz_open_dev$sg(0x0, 0x0, 0x0) syz_io_uring_setup(0x4ee5, &(0x7f0000000080)={0x0, 0x4}, &(0x7f0000ffd000/0x3000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000040), &(0x7f0000000100)) 19:24:42 executing program 1: perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) clone3(&(0x7f0000000140)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x3f000000, 0x0, 0x0}, 0x58) 19:24:56 executing program 4: clone3(&(0x7f0000000140)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) (fail_nth: 83) 19:24:56 executing program 1: perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) clone3(&(0x7f0000000140)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x40000000, 0x0, 0x0}, 0x58) 19:24:56 executing program 0: r0 = perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) perf_event_open(&(0x7f0000001d80)={0x2, 0x80, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, r0, 0x0) r1 = perf_event_open(&(0x7f0000001d80)={0x2, 0x80, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, r0, 0x0) sendmsg$nl_xfrm(0xffffffffffffffff, &(0x7f0000001140)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x400}, 0xc, &(0x7f0000001100)={&(0x7f00000010c0)=@getspdinfo={0x14, 0x25, 0x20, 0x70bd27, 0x80, 0xff, ["", "", "", "", "", ""]}, 0x14}, 0x1, 0x0, 0x0, 0x4000810}, 0x24004810) readv(r1, &(0x7f0000001200)=[{&(0x7f00000000c0)=""/4096, 0x1000}], 0x1) 19:24:56 executing program 5: perf_event_open(&(0x7f0000000200)={0x2, 0x80, 0x8, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_io_uring_setup(0x44af, &(0x7f0000000100)={0x0, 0x2, 0x0, 0x0, 0x389}, &(0x7f0000000000/0x12000)=nil, &(0x7f000000e000/0x1000)=nil, &(0x7f0000000080), &(0x7f0000000040)) perf_event_open(0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) clone3(&(0x7f0000000140)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) write(0xffffffffffffffff, &(0x7f0000000100)='?', 0x1) [ 983.897196] FAULT_INJECTION: forcing a failure. [ 983.897196] name failslab, interval 1, probability 0, space 0, times 0 [ 983.899736] CPU: 1 PID: 18789 Comm: syz-executor.4 Not tainted 5.10.185 #1 [ 983.901207] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 983.902986] Call Trace: [ 983.903558] dump_stack+0x107/0x167 [ 983.904343] should_fail.cold+0x5/0xa [ 983.905159] ? create_object.isra.0+0x3a/0xa20 [ 983.906157] should_failslab+0x5/0x20 [ 983.906974] kmem_cache_alloc+0x5b/0x310 [ 983.907862] create_object.isra.0+0x3a/0xa20 [ 983.908802] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 983.909905] kmem_cache_alloc+0x159/0x310 [ 983.910827] __pmd_alloc+0x94/0x5e0 [ 983.911633] copy_page_range+0x2bed/0x3820 [ 983.912542] ? lock_chain_count+0x20/0x20 [ 983.913477] ? up_write+0x191/0x550 [ 983.914260] ? vm_iomap_memory+0x190/0x190 [ 983.915180] ? downgrade_write+0x3a0/0x3a0 [ 983.916098] ? anon_vma_interval_tree_insert+0x277/0x450 [ 983.917264] ? __vma_link_rb+0x540/0x700 [ 983.918144] dup_mm+0x8b9/0x1110 [ 983.918892] ? vm_area_dup+0x290/0x290 [ 983.919743] ? __raw_spin_lock_init+0x36/0x110 [ 983.920738] copy_process+0x24e2/0x6740 [ 983.921599] ? lock_acquire+0x197/0x470 [ 983.922474] ? find_held_lock+0x2c/0x110 [ 983.923406] ? __cleanup_sighand+0xb0/0xb0 19:24:56 executing program 3: creat(0x0, 0x0) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) clone3(&(0x7f0000000140)={0xffffffff00000000, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) 19:24:56 executing program 6: syz_open_dev$sg(0x0, 0x0, 0x0) syz_io_uring_setup(0x4ee5, &(0x7f0000000080)={0x0, 0x6}, &(0x7f0000ffd000/0x3000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000040), &(0x7f0000000100)) 19:24:56 executing program 2: perf_event_open(&(0x7f0000000200)={0x2, 0x80, 0x8, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) creat(0x0, 0x0) syz_io_uring_setup(0x44af, &(0x7f0000000100)={0x0, 0x2, 0x0, 0x0, 0x389}, &(0x7f0000000000/0x12000)=nil, &(0x7f000000e000/0x1000)=nil, &(0x7f0000000080), &(0x7f0000000040)) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) clone3(&(0x7f0000000140)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) 19:24:56 executing program 7: perf_event_open(&(0x7f0000000200)={0x2, 0x80, 0x8, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = creat(0x0, 0x0) clone3(&(0x7f0000000140)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) write(0xffffffffffffffff, 0x0, 0x0) r1 = socket$netlink(0x10, 0x3, 0x0) sendmsg$nl_generic(r1, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000000)={0x2c, 0x16, 0x1, 0x0, 0x0, {0xa}, [@nested={0x18, 0x0, 0x0, 0x1, [@typed={0x14, 0xa, 0x0, 0x0, @ipv6=@private1}]}]}, 0x2c}}, 0x0) ppoll(&(0x7f0000000000)=[{r0, 0x4721}, {r1, 0x4004}], 0x2, &(0x7f0000000040)={0x77359400}, &(0x7f0000000080)={[0x2]}, 0x8) [ 983.924341] ? _copy_from_user+0xfb/0x1b0 [ 983.925398] kernel_clone+0xe7/0x980 [ 983.926210] ? lock_acquire+0x197/0x470 [ 983.927090] ? create_io_thread+0xf0/0xf0 [ 983.928007] ? ksys_write+0x21a/0x260 [ 983.928841] ? lock_downgrade+0x6d0/0x6d0 [ 983.929756] __do_sys_clone3+0x1e5/0x320 [ 983.930672] ? __do_sys_clone+0x110/0x110 [ 983.931609] ? rcu_read_lock_any_held+0x75/0xa0 [ 983.932626] ? vfs_write+0x354/0xa70 [ 983.933456] ? fput_many+0x2f/0x1a0 [ 983.934254] ? ksys_write+0x1a9/0x260 [ 983.935105] ? __ia32_sys_read+0xb0/0xb0 [ 983.936001] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 983.937173] ? syscall_enter_from_user_mode+0x1d/0x50 [ 983.938312] ? trace_hardirqs_on+0x5b/0x180 [ 983.939295] do_syscall_64+0x33/0x40 [ 983.940122] entry_SYSCALL_64_after_hwframe+0x61/0xc6 [ 983.941251] RIP: 0033:0x7f0ecd504b19 [ 983.942081] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 983.946154] RSP: 002b:00007f0ecaa7a188 EFLAGS: 00000246 ORIG_RAX: 00000000000001b3 [ 983.947871] RAX: ffffffffffffffda RBX: 00007f0ecd617f60 RCX: 00007f0ecd504b19 [ 983.949455] RDX: 0000000000000000 RSI: 0000000000000058 RDI: 0000000020000140 [ 983.951051] RBP: 00007f0ecaa7a1d0 R08: 0000000000000000 R09: 0000000000000000 [ 983.952638] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 983.954238] R13: 00007fffa049ab2f R14: 00007f0ecaa7a300 R15: 0000000000022000 19:24:56 executing program 1: perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) clone3(&(0x7f0000000140)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x100000800, 0x0, 0x0}, 0x58) 19:24:56 executing program 4: clone3(&(0x7f0000000140)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) (fail_nth: 84) 19:24:56 executing program 6: syz_open_dev$sg(0x0, 0x0, 0x0) syz_io_uring_setup(0x4ee5, &(0x7f0000000080)={0x0, 0x8}, &(0x7f0000ffd000/0x3000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000040), &(0x7f0000000100)) 19:24:56 executing program 0: r0 = perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r1 = perf_event_open(&(0x7f0000001d80)={0x2, 0x80, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, r0, 0x0) r2 = perf_event_open(&(0x7f00000012c0)={0x2, 0x80, 0x74, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, r0, 0x0) syz_io_uring_setup(0x59af, &(0x7f0000001140)={0x0, 0xb44, 0x19, 0x3, 0x10}, &(0x7f0000ffe000/0x2000)=nil, &(0x7f0000ffe000/0x2000)=nil, &(0x7f00000011c0), &(0x7f0000001240)=0x0) syz_io_uring_submit(0x0, r3, &(0x7f0000001280)=@IORING_OP_EPOLL_CTL=@del={0x1d, 0x4, 0x0, 0xffffffffffffffff, 0x0, r1, 0x2, 0x0, 0x1}, 0x1000) perf_event_open(&(0x7f00000010c0)={0x5, 0x80, 0x56, 0x7f, 0x4, 0x4, 0x0, 0xff, 0x4041, 0x4, 0x0, 0x1, 0x0, 0x1, 0x0, 0x1, 0x0, 0x0, 0x0, 0x1, 0x0, 0x1, 0x1, 0x0, 0x0, 0x1, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x1, 0x1, 0x0, 0x1, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x0, 0x0, 0x1, 0x0, 0x1f, 0x2, @perf_bp={&(0x7f0000000000), 0x8}, 0x200, 0x2, 0xfff, 0x5, 0x18, 0x4, 0xfeff, 0x0, 0x0, 0x0, 0x3}, 0x0, 0xa, 0xffffffffffffffff, 0x6) readv(r2, &(0x7f0000001200)=[{&(0x7f00000000c0)=""/4096, 0x1000}], 0x1) [ 984.131036] FAULT_INJECTION: forcing a failure. [ 984.131036] name fail_page_alloc, interval 1, probability 0, space 0, times 0 [ 984.133940] CPU: 1 PID: 19062 Comm: syz-executor.4 Not tainted 5.10.185 #1 [ 984.135517] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 984.137398] Call Trace: [ 984.138010] dump_stack+0x107/0x167 [ 984.138855] should_fail.cold+0x5/0xa [ 984.139735] __alloc_pages_nodemask+0x182/0x600 [ 984.140802] ? __alloc_pages_slowpath.constprop.0+0x2130/0x2130 [ 984.142155] ? find_held_lock+0x2c/0x110 [ 984.143101] ? __pmd_alloc+0x2db/0x5e0 [ 984.143981] ? lock_downgrade+0x6d0/0x6d0 [ 984.144919] ? do_raw_spin_lock+0x121/0x260 [ 984.145907] alloc_pages_current+0x187/0x280 [ 984.146916] pte_alloc_one+0x16/0x1a0 [ 984.147779] __pte_alloc+0x1d/0x330 [ 984.148622] copy_page_range+0x1b77/0x3820 [ 984.149772] ? lock_chain_count+0x20/0x20 [ 984.150793] ? up_write+0x191/0x550 [ 984.151783] ? vm_iomap_memory+0x190/0x190 [ 984.152748] ? downgrade_write+0x3a0/0x3a0 [ 984.153714] ? anon_vma_interval_tree_insert+0x277/0x450 [ 984.154962] ? __vma_link_rb+0x540/0x700 [ 984.155898] dup_mm+0x8b9/0x1110 [ 984.156686] ? vm_area_dup+0x290/0x290 [ 984.157560] ? __raw_spin_lock_init+0x36/0x110 [ 984.158589] copy_process+0x24e2/0x6740 [ 984.159401] ? lock_acquire+0x197/0x470 [ 984.160212] ? find_held_lock+0x2c/0x110 [ 984.161065] ? __cleanup_sighand+0xb0/0xb0 [ 984.161944] ? _copy_from_user+0xfb/0x1b0 [ 984.162817] kernel_clone+0xe7/0x980 [ 984.163577] ? lock_acquire+0x197/0x470 [ 984.164388] ? create_io_thread+0xf0/0xf0 [ 984.165257] ? ksys_write+0x21a/0x260 [ 984.166035] ? lock_downgrade+0x6d0/0x6d0 [ 984.166892] __do_sys_clone3+0x1e5/0x320 [ 984.167731] ? __do_sys_clone+0x110/0x110 [ 984.168597] ? rcu_read_lock_any_held+0x75/0xa0 [ 984.169541] ? vfs_write+0x354/0xa70 [ 984.170309] ? fput_many+0x2f/0x1a0 [ 984.171075] ? ksys_write+0x1a9/0x260 [ 984.171854] ? __ia32_sys_read+0xb0/0xb0 [ 984.172692] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 984.173762] ? syscall_enter_from_user_mode+0x1d/0x50 [ 984.174831] ? trace_hardirqs_on+0x5b/0x180 [ 984.175726] do_syscall_64+0x33/0x40 [ 984.176495] entry_SYSCALL_64_after_hwframe+0x61/0xc6 [ 984.177553] RIP: 0033:0x7f0ecd504b19 [ 984.178335] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 984.182138] RSP: 002b:00007f0ecaa7a188 EFLAGS: 00000246 ORIG_RAX: 00000000000001b3 [ 984.183691] RAX: ffffffffffffffda RBX: 00007f0ecd617f60 RCX: 00007f0ecd504b19 [ 984.185126] RDX: 0000000000000000 RSI: 0000000000000058 RDI: 0000000020000140 [ 984.186583] RBP: 00007f0ecaa7a1d0 R08: 0000000000000000 R09: 0000000000000000 [ 984.188022] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 984.189464] R13: 00007fffa049ab2f R14: 00007f0ecaa7a300 R15: 0000000000022000 19:24:56 executing program 3: creat(0x0, 0x0) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) clone3(&(0x7f0000000140)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) 19:24:56 executing program 1: perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) clone3(&(0x7f0000000140)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x1b0c51f000, 0x0, 0x0}, 0x58) 19:24:56 executing program 6: syz_open_dev$sg(0x0, 0x0, 0x0) syz_io_uring_setup(0x4ee5, &(0x7f0000000080)={0x0, 0xc}, &(0x7f0000ffd000/0x3000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000040), &(0x7f0000000100)) 19:24:56 executing program 2: perf_event_open(&(0x7f0000000200)={0x2, 0x80, 0x8, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) creat(0x0, 0x0) syz_io_uring_setup(0x44af, &(0x7f0000000100)={0x0, 0x2, 0x0, 0x0, 0x389}, &(0x7f0000000000/0x12000)=nil, &(0x7f000000e000/0x1000)=nil, &(0x7f0000000080), &(0x7f0000000040)) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) clone3(&(0x7f0000000140)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) 19:24:56 executing program 7: perf_event_open(&(0x7f0000000200)={0x2, 0xfffc, 0x8, 0x5, 0x4, 0x4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x0, 0x1}, 0x0, 0x527919d1, 0x0, 0x0, 0x1}, 0x0, 0x0, 0xffffffffffffffff, 0x10) creat(0x0, 0x0) clone3(&(0x7f0000000140)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) write(0xffffffffffffffff, 0x0, 0x0) 19:24:56 executing program 5: perf_event_open(&(0x7f0000000200)={0x2, 0x80, 0x8, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_io_uring_setup(0x44af, &(0x7f0000000100)={0x0, 0x2, 0x0, 0x0, 0x389}, &(0x7f0000000000/0x12000)=nil, &(0x7f000000e000/0x1000)=nil, &(0x7f0000000080), &(0x7f0000000040)) perf_event_open(0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) clone3(&(0x7f0000000140)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) write(0xffffffffffffffff, &(0x7f0000000100)='?', 0x1) 19:24:56 executing program 1: perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) clone3(&(0x7f0000000140)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x10000000000, 0x0, 0x0}, 0x58) 19:24:56 executing program 6: syz_open_dev$sg(0x0, 0x0, 0x0) syz_io_uring_setup(0x4ee5, &(0x7f0000000080)={0x0, 0x10}, &(0x7f0000ffd000/0x3000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000040), &(0x7f0000000100)) 19:25:11 executing program 3: creat(0x0, 0x0) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) clone3(&(0x7f0000000140)={0x0, 0x0, 0x0, 0x0, {0x8}, 0x0, 0x0, 0x0, 0x0}, 0x58) 19:25:11 executing program 2: perf_event_open(&(0x7f0000000200)={0x2, 0x80, 0x8, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) creat(0x0, 0x0) syz_io_uring_setup(0x44af, &(0x7f0000000100)={0x0, 0x2, 0x0, 0x0, 0x389}, &(0x7f0000000000/0x12000)=nil, &(0x7f000000e000/0x1000)=nil, &(0x7f0000000080), &(0x7f0000000040)) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) clone3(&(0x7f0000000140)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) 19:25:11 executing program 7: r0 = perf_event_open(&(0x7f0000000200)={0x2, 0x80, 0x8, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x3) r1 = getpgrp(0x0) pidfd_open(r1, 0x0) perf_event_open(&(0x7f0000000040)={0x0, 0x80, 0xaa, 0x5, 0xff, 0xfc, 0x0, 0xf9, 0x80, 0x9, 0x0, 0x0, 0x1, 0x1, 0x0, 0x1, 0x1, 0x1, 0x1, 0x0, 0x0, 0x1, 0x0, 0x1, 0x0, 0x2, 0x0, 0x1, 0x1, 0x1, 0x0, 0x1, 0x0, 0x0, 0x0, 0x1, 0x1, 0x1, 0x1, 0x0, 0x0, 0x0, 0x1, 0x1, 0x1, 0x1, 0x0, 0x0, 0x2, 0x1, @perf_bp={&(0x7f0000000000), 0xb}, 0x10008, 0x4, 0x101, 0x1, 0x2, 0xffffffbf, 0x6, 0x0, 0x2034, 0x0, 0x4}, r1, 0xa, r0, 0x0) creat(0x0, 0x0) clone3(&(0x7f0000000140)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) write(0xffffffffffffffff, 0x0, 0x0) 19:25:11 executing program 1: perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) clone3(&(0x7f0000000140)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x2a0286971000, 0x0, 0x0}, 0x58) 19:25:11 executing program 0: r0 = perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) perf_event_open(&(0x7f0000001d80)={0x2, 0x80, 0x70, 0x0, 0x0, 0x0, 0x0, 0x100000000000, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xc, r0, 0x0) r1 = perf_event_open(&(0x7f0000001d80)={0x2, 0x80, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, r0, 0x0) readv(r1, &(0x7f0000001200)=[{&(0x7f00000000c0)=""/4096, 0x1000}], 0x1) 19:25:11 executing program 4: clone3(&(0x7f0000000140)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) (fail_nth: 85) 19:25:11 executing program 6: syz_open_dev$sg(0x0, 0x0, 0x0) syz_io_uring_setup(0x4ee5, &(0x7f0000000080)={0x0, 0x12}, &(0x7f0000ffd000/0x3000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000040), &(0x7f0000000100)) 19:25:11 executing program 5: perf_event_open(&(0x7f0000000200)={0x2, 0x80, 0x8, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_io_uring_setup(0x44af, &(0x7f0000000100)={0x0, 0x2, 0x0, 0x0, 0x389}, &(0x7f0000000000/0x12000)=nil, &(0x7f000000e000/0x1000)=nil, &(0x7f0000000080), &(0x7f0000000040)) perf_event_open(0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) clone3(&(0x7f0000000140)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) write(0xffffffffffffffff, &(0x7f0000000100)='?', 0x1) [ 999.401987] FAULT_INJECTION: forcing a failure. [ 999.401987] name failslab, interval 1, probability 0, space 0, times 0 [ 999.404351] CPU: 1 PID: 19455 Comm: syz-executor.4 Not tainted 5.10.185 #1 [ 999.405735] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 999.407432] Call Trace: [ 999.407981] dump_stack+0x107/0x167 [ 999.408727] should_fail.cold+0x5/0xa [ 999.409510] ? vm_area_dup+0x78/0x290 [ 999.410290] should_failslab+0x5/0x20 [ 999.411070] kmem_cache_alloc+0x5b/0x310 [ 999.411898] ? lock_downgrade+0x6d0/0x6d0 [ 999.412739] vm_area_dup+0x78/0x290 [ 999.413485] ? _cond_resched+0x12/0x80 [ 999.414270] ? copy_page_range+0x24fe/0x3820 [ 999.415238] ? vm_area_alloc+0x110/0x110 [ 999.416063] ? up_write+0x191/0x550 [ 999.416802] ? vm_iomap_memory+0x190/0x190 [ 999.417655] ? downgrade_write+0x3a0/0x3a0 [ 999.418512] ? anon_vma_interval_tree_insert+0x277/0x450 [ 999.419616] ? __vma_link_rb+0x540/0x700 [ 999.420446] dup_mm+0x44d/0x1110 [ 999.421148] ? vm_area_dup+0x290/0x290 [ 999.421941] ? __raw_spin_lock_init+0x36/0x110 [ 999.422882] copy_process+0x24e2/0x6740 [ 999.423686] ? lock_acquire+0x197/0x470 [ 999.424487] ? find_held_lock+0x2c/0x110 [ 999.425333] ? __cleanup_sighand+0xb0/0xb0 [ 999.426203] ? _copy_from_user+0xfb/0x1b0 [ 999.427067] kernel_clone+0xe7/0x980 [ 999.427819] ? __lockdep_reset_lock+0x180/0x180 [ 999.428762] ? create_io_thread+0xf0/0xf0 [ 999.429619] ? ksys_write+0x21a/0x260 [ 999.430387] ? lock_downgrade+0x6d0/0x6d0 [ 999.431241] __do_sys_clone3+0x1e5/0x320 [ 999.432065] ? __do_sys_clone+0x110/0x110 [ 999.432929] ? rcu_read_lock_any_held+0x75/0xa0 [ 999.433868] ? vfs_write+0x354/0xa70 [ 999.434642] ? fput_many+0x2f/0x1a0 [ 999.435379] ? ksys_write+0x1a9/0x260 [ 999.436152] ? __ia32_sys_read+0xb0/0xb0 [ 999.436978] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 999.438036] ? syscall_enter_from_user_mode+0x1d/0x50 [ 999.439084] ? trace_hardirqs_on+0x5b/0x180 [ 999.439960] do_syscall_64+0x33/0x40 [ 999.440714] entry_SYSCALL_64_after_hwframe+0x61/0xc6 [ 999.441745] RIP: 0033:0x7f0ecd504b19 [ 999.442497] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 999.446208] RSP: 002b:00007f0ecaa7a188 EFLAGS: 00000246 ORIG_RAX: 00000000000001b3 [ 999.447747] RAX: ffffffffffffffda RBX: 00007f0ecd617f60 RCX: 00007f0ecd504b19 [ 999.449181] RDX: 0000000000000000 RSI: 0000000000000058 RDI: 0000000020000140 [ 999.450618] RBP: 00007f0ecaa7a1d0 R08: 0000000000000000 R09: 0000000000000000 [ 999.452051] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 999.453482] R13: 00007fffa049ab2f R14: 00007f0ecaa7a300 R15: 0000000000022000 19:25:11 executing program 6: syz_open_dev$sg(0x0, 0x0, 0x0) syz_io_uring_setup(0x4ee5, &(0x7f0000000080)={0x0, 0x18}, &(0x7f0000ffd000/0x3000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000040), &(0x7f0000000100)) 19:25:11 executing program 1: perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) clone3(&(0x7f0000000140)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x553a278d0000, 0x0, 0x0}, 0x58) 19:25:11 executing program 0: r0 = perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) perf_event_open(&(0x7f0000001d80)={0x2, 0x80, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x0, 0xfffffffffffffffe}, 0x0, 0x0, r0, 0x0) r1 = perf_event_open(&(0x7f0000001d80)={0x2, 0x80, 0x70, 0x0, 0x0, 0x2, 0x0, 0x0, 0x0, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2}, 0x0, 0x0, r0, 0x0) syz_io_uring_setup(0x2b2, &(0x7f00000010c0)={0x0, 0x180b, 0x10, 0x1, 0x15a}, &(0x7f0000ffb000/0x4000)=nil, &(0x7f0000ffb000/0x2000)=nil, &(0x7f0000000000), &(0x7f0000001140)) readv(r1, &(0x7f0000001200)=[{&(0x7f00000000c0)=""/4096, 0x1000}], 0x1) 19:25:11 executing program 2: perf_event_open(&(0x7f0000000200)={0x2, 0x80, 0x8, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) creat(0x0, 0x0) syz_io_uring_setup(0x44af, &(0x7f0000000100)={0x0, 0x2, 0x0, 0x0, 0x389}, &(0x7f0000000000/0x12000)=nil, &(0x7f000000e000/0x1000)=nil, &(0x7f0000000080), &(0x7f0000000040)) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) clone3(&(0x7f0000000140)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) 19:25:11 executing program 6: syz_open_dev$sg(0x0, 0x0, 0x0) syz_io_uring_setup(0x4ee5, &(0x7f0000000080)={0x0, 0x1e}, &(0x7f0000ffd000/0x3000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000040), &(0x7f0000000100)) 19:25:11 executing program 1: perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) clone3(&(0x7f0000000140)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x8d273a550000, 0x0, 0x0}, 0x58) 19:25:12 executing program 5: perf_event_open(&(0x7f0000000200)={0x2, 0x80, 0x8, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_io_uring_setup(0x44af, &(0x7f0000000100)={0x0, 0x2, 0x0, 0x0, 0x389}, &(0x7f0000000000/0x12000)=nil, &(0x7f000000e000/0x1000)=nil, &(0x7f0000000080), &(0x7f0000000040)) perf_event_open(&(0x7f0000001d80)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) clone3(&(0x7f0000000140)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) write(0xffffffffffffffff, &(0x7f0000000100)='?', 0x1) 19:25:12 executing program 4: clone3(&(0x7f0000000140)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) (fail_nth: 86) [ 999.811275] FAULT_INJECTION: forcing a failure. [ 999.811275] name failslab, interval 1, probability 0, space 0, times 0 [ 999.813538] CPU: 0 PID: 19783 Comm: syz-executor.4 Not tainted 5.10.185 #1 [ 999.814849] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 999.816409] Call Trace: [ 999.816911] dump_stack+0x107/0x167 [ 999.817607] should_fail.cold+0x5/0xa [ 999.818325] ? vm_area_dup+0x78/0x290 [ 999.819072] should_failslab+0x5/0x20 [ 999.819785] kmem_cache_alloc+0x5b/0x310 [ 999.820554] ? lock_downgrade+0x6d0/0x6d0 [ 999.821335] vm_area_dup+0x78/0x290 [ 999.822024] ? _cond_resched+0x12/0x80 [ 999.822745] ? copy_page_range+0x24fe/0x3820 [ 999.823577] ? vm_area_alloc+0x110/0x110 [ 999.824322] ? up_write+0x191/0x550 [ 999.824987] ? vm_iomap_memory+0x190/0x190 [ 999.825758] ? downgrade_write+0x3a0/0x3a0 [ 999.826539] ? anon_vma_interval_tree_insert+0x277/0x450 [ 999.827550] ? __vma_link_rb+0x540/0x700 [ 999.828299] dup_mm+0x44d/0x1110 [ 999.828927] ? vm_area_dup+0x290/0x290 [ 999.829650] ? __raw_spin_lock_init+0x36/0x110 [ 999.830485] copy_process+0x24e2/0x6740 [ 999.831219] ? lock_acquire+0x197/0x470 [ 999.831945] ? find_held_lock+0x2c/0x110 [ 999.832705] ? __cleanup_sighand+0xb0/0xb0 [ 999.833488] ? _copy_from_user+0xfb/0x1b0 [ 999.834264] kernel_clone+0xe7/0x980 [ 999.834952] ? lock_acquire+0x197/0x470 [ 999.835674] ? create_io_thread+0xf0/0xf0 [ 999.836454] ? ksys_write+0x21a/0x260 [ 999.837153] ? lock_downgrade+0x6d0/0x6d0 [ 999.837912] __do_sys_clone3+0x1e5/0x320 [ 999.838664] ? __do_sys_clone+0x110/0x110 [ 999.839450] ? rcu_read_lock_any_held+0x75/0xa0 [ 999.840291] ? vfs_write+0x354/0xa70 [ 999.840978] ? fput_many+0x2f/0x1a0 [ 999.841642] ? ksys_write+0x1a9/0x260 [ 999.842340] ? __ia32_sys_read+0xb0/0xb0 [ 999.843103] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 999.844049] ? syscall_enter_from_user_mode+0x1d/0x50 [ 999.845005] ? trace_hardirqs_on+0x5b/0x180 [ 999.845796] do_syscall_64+0x33/0x40 [ 999.846488] entry_SYSCALL_64_after_hwframe+0x61/0xc6 [ 999.847433] RIP: 0033:0x7f0ecd504b19 [ 999.848105] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 999.851423] RSP: 002b:00007f0ecaa7a188 EFLAGS: 00000246 ORIG_RAX: 00000000000001b3 [ 999.852793] RAX: ffffffffffffffda RBX: 00007f0ecd617f60 RCX: 00007f0ecd504b19 [ 999.854077] RDX: 0000000000000000 RSI: 0000000000000058 RDI: 0000000020000140 [ 999.855370] RBP: 00007f0ecaa7a1d0 R08: 0000000000000000 R09: 0000000000000000 [ 999.856654] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 999.857941] R13: 00007fffa049ab2f R14: 00007f0ecaa7a300 R15: 0000000000022000 19:25:25 executing program 2: perf_event_open(&(0x7f0000000200)={0x2, 0x80, 0x8, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) creat(0x0, 0x0) syz_io_uring_setup(0x44af, &(0x7f0000000100)={0x0, 0x2, 0x0, 0x0, 0x389}, &(0x7f0000000000/0x12000)=nil, &(0x7f000000e000/0x1000)=nil, &(0x7f0000000080), &(0x7f0000000040)) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) clone3(&(0x7f0000000140)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) 19:25:25 executing program 3: creat(0x0, 0x0) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) clone3(&(0x7f0000000140)={0x0, 0x0, 0x0, 0x0, {0x11}, 0x0, 0x0, 0x0, 0x0}, 0x58) 19:25:25 executing program 7: r0 = perf_event_open(&(0x7f0000000200)={0x2, 0x80, 0x8, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r1 = creat(0x0, 0x0) clone3(&(0x7f0000000140)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) r2 = socket$unix(0x1, 0x5, 0x0) ioctl$BTRFS_IOC_BALANCE_PROGRESS(r2, 0x84009422, &(0x7f0000002580)={0x0, 0x0, {}, {}, {0x0, @struct, 0x0}}) ioctl$BTRFS_IOC_DEV_INFO(0xffffffffffffffff, 0xd000941e, &(0x7f00000001c0)={r3, "1169feeb427ab0e2253af9114f0f7407"}) ioctl$BTRFS_IOC_SNAP_CREATE_V2(r1, 0x50009417, &(0x7f0000000280)={{r0}, 0x0, 0x16, @unused=[0x1, 0x1, 0x5, 0x1], @devid=r3}) write(0xffffffffffffffff, 0x0, 0x0) 19:25:25 executing program 6: syz_open_dev$sg(0x0, 0x0, 0x0) syz_io_uring_setup(0x4ee5, &(0x7f0000000080)={0x0, 0x24}, &(0x7f0000ffd000/0x3000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000040), &(0x7f0000000100)) 19:25:25 executing program 4: clone3(&(0x7f0000000140)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) (fail_nth: 87) 19:25:25 executing program 5: perf_event_open(&(0x7f0000000200)={0x2, 0x80, 0x8, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_io_uring_setup(0x44af, &(0x7f0000000100)={0x0, 0x2, 0x0, 0x0, 0x389}, &(0x7f0000000000/0x12000)=nil, &(0x7f000000e000/0x1000)=nil, &(0x7f0000000080), &(0x7f0000000040)) perf_event_open(&(0x7f0000001d80)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) clone3(&(0x7f0000000140)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) write(0xffffffffffffffff, &(0x7f0000000100)='?', 0x1) 19:25:25 executing program 1: perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) clone3(&(0x7f0000000140)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x2001000000000, 0x0, 0x0}, 0x58) 19:25:25 executing program 0: r0 = perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r1 = getpgrp(0x0) pidfd_open(r1, 0x0) perf_event_open(&(0x7f0000001140)={0x4, 0x80, 0x2, 0x84, 0x3, 0x9, 0x0, 0xfffffffffffffffe, 0x35, 0x2, 0x1, 0x1, 0x1, 0x0, 0x1, 0x1, 0x1, 0x0, 0x1, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x1, 0x1, 0x1, 0x1, 0x1, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x1, 0x0, 0x0, 0x1, 0x1, 0x0, 0x0, 0x0, 0x1, 0x0, 0x3ff, 0x0, @perf_bp={&(0x7f0000000000), 0x4}, 0xe0a7e63e314dd267, 0x10000, 0x1, 0x2, 0x0, 0x0, 0x20, 0x0, 0x7f, 0x0, 0x8}, r1, 0xf, r0, 0xa) perf_event_open(&(0x7f0000001d80)={0x2, 0x80, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, r0, 0x0) r2 = perf_event_open(&(0x7f0000001d80)={0x2, 0x80, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, r0, 0x0) r3 = getpgrp(0x0) pidfd_open(r3, 0x0) perf_event_open(&(0x7f00000010c0)={0x2, 0x80, 0x9, 0x0, 0x3, 0xe0, 0x0, 0x2, 0x8800, 0x3, 0x1, 0x1, 0x0, 0x0, 0x1, 0x0, 0x0, 0x1, 0x0, 0x0, 0x1, 0x1, 0x1, 0x1, 0x1, 0x1, 0x1, 0x0, 0x1, 0x0, 0x1, 0x1, 0x0, 0x0, 0x1, 0x1, 0x0, 0x0, 0x0, 0x1, 0x0, 0x1, 0x1, 0x1, 0x1, 0x1, 0x0, 0x0, 0x7f, 0x2, @perf_config_ext={0xfffffffffffffff9, 0x891d}, 0x44a00, 0x7, 0x1, 0x3, 0x2, 0x7, 0x3, 0x0, 0x8001, 0x0, 0x7}, r3, 0x0, 0xffffffffffffffff, 0x1) readv(r2, &(0x7f0000001200)=[{&(0x7f00000000c0)=""/4096, 0x1000}], 0x1) [ 1013.267748] FAULT_INJECTION: forcing a failure. [ 1013.267748] name failslab, interval 1, probability 0, space 0, times 0 [ 1013.271844] CPU: 1 PID: 19999 Comm: syz-executor.4 Not tainted 5.10.185 #1 [ 1013.273237] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1013.274909] Call Trace: [ 1013.275450] dump_stack+0x107/0x167 [ 1013.276185] should_fail.cold+0x5/0xa [ 1013.276958] ? vm_area_dup+0x78/0x290 [ 1013.277729] should_failslab+0x5/0x20 [ 1013.278497] kmem_cache_alloc+0x5b/0x310 [ 1013.279330] vm_area_dup+0x78/0x290 [ 1013.280071] ? avc_has_perm_noaudit+0x1c9/0x3e0 [ 1013.281040] ? lock_downgrade+0x6d0/0x6d0 [ 1013.281876] ? copy_page_range+0x24fe/0x3820 [ 1013.282792] ? avc_has_perm_noaudit+0x1f7/0x3e0 [ 1013.283729] ? avc_has_extended_perms+0xf40/0xf40 [ 1013.284697] ? vm_area_alloc+0x110/0x110 [ 1013.285519] ? selinux_vm_enough_memory+0x114/0x180 [ 1013.286512] ? selinux_sb_statfs+0x250/0x250 [ 1013.287407] ? percpu_counter_add_batch+0x8b/0x140 [ 1013.288393] ? __vm_enough_memory+0x184/0x360 [ 1013.289285] ? security_vm_enough_memory_mm+0x8b/0xc0 [ 1013.290313] dup_mm+0x44d/0x1110 [ 1013.291028] ? vm_area_dup+0x290/0x290 [ 1013.291810] ? __raw_spin_lock_init+0x36/0x110 [ 1013.292731] copy_process+0x24e2/0x6740 [ 1013.293528] ? lock_acquire+0x197/0x470 [ 1013.294324] ? find_held_lock+0x2c/0x110 [ 1013.295167] ? __cleanup_sighand+0xb0/0xb0 [ 1013.296027] ? _copy_from_user+0xfb/0x1b0 [ 1013.296866] kernel_clone+0xe7/0x980 [ 1013.297612] ? lock_acquire+0x197/0x470 [ 1013.298409] ? create_io_thread+0xf0/0xf0 [ 1013.299276] ? ksys_write+0x21a/0x260 [ 1013.300042] ? lock_downgrade+0x6d0/0x6d0 [ 1013.300877] __do_sys_clone3+0x1e5/0x320 [ 1013.301689] ? __do_sys_clone+0x110/0x110 [ 1013.302560] ? rcu_read_lock_any_held+0x75/0xa0 [ 1013.303498] ? vfs_write+0x354/0xa70 [ 1013.304257] ? fput_many+0x2f/0x1a0 [ 1013.304990] ? ksys_write+0x1a9/0x260 [ 1013.305753] ? __ia32_sys_read+0xb0/0xb0 [ 1013.306579] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1013.307645] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1013.308693] ? trace_hardirqs_on+0x5b/0x180 [ 1013.309561] do_syscall_64+0x33/0x40 [ 1013.310311] entry_SYSCALL_64_after_hwframe+0x61/0xc6 [ 1013.311352] RIP: 0033:0x7f0ecd504b19 [ 1013.312102] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1013.315801] RSP: 002b:00007f0ecaa7a188 EFLAGS: 00000246 ORIG_RAX: 00000000000001b3 [ 1013.317329] RAX: ffffffffffffffda RBX: 00007f0ecd617f60 RCX: 00007f0ecd504b19 [ 1013.318768] RDX: 0000000000000000 RSI: 0000000000000058 RDI: 0000000020000140 [ 1013.320203] RBP: 00007f0ecaa7a1d0 R08: 0000000000000000 R09: 0000000000000000 [ 1013.321633] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 1013.323077] R13: 00007fffa049ab2f R14: 00007f0ecaa7a300 R15: 0000000000022000 19:25:25 executing program 1: perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) clone3(&(0x7f0000000140)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x2020000000000, 0x0, 0x0}, 0x58) 19:25:25 executing program 6: syz_open_dev$sg(0x0, 0x0, 0x0) syz_io_uring_setup(0x4ee5, &(0x7f0000000080)={0x0, 0x2a}, &(0x7f0000ffd000/0x3000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000040), &(0x7f0000000100)) [ 1013.403238] perf: interrupt took too long (4173 > 4126), lowering kernel.perf_event_max_sample_rate to 47000 19:25:25 executing program 1: perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) clone3(&(0x7f0000000140)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x8000000000000, 0x0, 0x0}, 0x58) 19:25:25 executing program 0: r0 = perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) perf_event_open(&(0x7f00000010c0)={0x3, 0x80, 0x1, 0x0, 0x67, 0x84, 0x0, 0x3, 0x64004, 0x2, 0x1, 0x0, 0x1, 0x0, 0x0, 0x1, 0x1, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x1, 0x0, 0x1, 0x0, 0x0, 0x1, 0x1, 0x1, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x1, 0x0, 0x1, 0x0, 0x1, 0x1, 0x0, 0x0, 0xfffffffd, 0x0, @perf_bp, 0x8, 0x6, 0x5, 0xb, 0x3, 0x800, 0x7a3, 0x0, 0x400, 0x0, 0x6}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) perf_event_open(&(0x7f0000001d80)={0x2, 0x80, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, r0, 0x0) r1 = perf_event_open(&(0x7f0000001d80)={0x2, 0x80, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, r0, 0x0) readv(r1, &(0x7f0000001200)=[{&(0x7f00000000c0)=""/4096, 0x1000}], 0x1) [ 1013.534088] perf: interrupt took too long (5234 > 5216), lowering kernel.perf_event_max_sample_rate to 38000 19:25:25 executing program 4: clone3(&(0x7f0000000140)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) (fail_nth: 88) 19:25:25 executing program 6: syz_open_dev$sg(0x0, 0x0, 0x0) syz_io_uring_setup(0x4ee5, &(0x7f0000000080)={0x0, 0x30}, &(0x7f0000ffd000/0x3000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000040), &(0x7f0000000100)) 19:25:25 executing program 2: perf_event_open(&(0x7f0000000200)={0x2, 0x80, 0x8, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) creat(0x0, 0x0) syz_io_uring_setup(0x44af, &(0x7f0000000100)={0x0, 0x2, 0x0, 0x0, 0x389}, &(0x7f0000000000/0x12000)=nil, &(0x7f000000e000/0x1000)=nil, &(0x7f0000000080), &(0x7f0000000040)) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) clone3(&(0x7f0000000140)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) 19:25:25 executing program 7: r0 = perf_event_open(&(0x7f0000000200)={0x2, 0x80, 0x8, 0x0, 0x20, 0x0, 0x0, 0x0, 0x80b00, 0xc, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r1 = creat(0x0, 0x0) ioctl$BTRFS_IOC_SNAP_CREATE(r0, 0x50009401, &(0x7f0000000280)={{r0}, "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"}) clone3(&(0x7f0000000140)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) ioctl$PERF_EVENT_IOC_REFRESH(r0, 0x2402, 0xfff) write(0xffffffffffffffff, 0x0, 0x0) ioctl$TIOCGPGRP(r1, 0x540f, &(0x7f0000000000)=0x0) r3 = getpgrp(0x0) pidfd_open(r3, 0x0) r4 = syz_open_dev$sg(&(0x7f0000000400), 0x0, 0x0) r5 = syz_open_dev$evdev(&(0x7f0000000040), 0x0, 0x8802) r6 = fcntl$dupfd(r5, 0x0, r4) writev(r6, &(0x7f0000000140)=[{&(0x7f0000000300)="0040abe02400030021206cda3b5e5672b89aeddb2a535fbd", 0x7e0}], 0x1) clone3(&(0x7f0000001480)={0x4002000, &(0x7f00000000c0), &(0x7f0000000100), &(0x7f00000001c0), {0x17}, &(0x7f0000001280)=""/132, 0x84, &(0x7f0000001340)=""/204, &(0x7f0000001440)=[r3, 0x0], 0x2, {r6}}, 0x58) syz_open_procfs(r2, &(0x7f0000000040)='net/ip_vs_stats\x00') r7 = syz_open_dev$vcsa(&(0x7f0000000080), 0x0, 0x288200) listen(r7, 0x886) [ 1013.621564] FAULT_INJECTION: forcing a failure. [ 1013.621564] name failslab, interval 1, probability 0, space 0, times 0 [ 1013.623884] CPU: 0 PID: 20296 Comm: syz-executor.4 Not tainted 5.10.185 #1 [ 1013.625270] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1013.626941] Call Trace: [ 1013.627478] dump_stack+0x107/0x167 [ 1013.628211] should_fail.cold+0x5/0xa [ 1013.628982] ? create_object.isra.0+0x3a/0xa20 [ 1013.629896] should_failslab+0x5/0x20 [ 1013.630660] kmem_cache_alloc+0x5b/0x310 [ 1013.631517] create_object.isra.0+0x3a/0xa20 [ 1013.632402] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 1013.633444] kmem_cache_alloc+0x159/0x310 [ 1013.634289] vm_area_dup+0x78/0x290 [ 1013.635038] ? avc_has_perm_noaudit+0x1c9/0x3e0 [ 1013.635973] ? lock_downgrade+0x6d0/0x6d0 [ 1013.636805] ? copy_page_range+0x24fe/0x3820 [ 1013.637704] ? avc_has_perm_noaudit+0x1f7/0x3e0 [ 1013.638640] ? avc_has_extended_perms+0xf40/0xf40 [ 1013.639639] ? vm_area_alloc+0x110/0x110 [ 1013.640467] ? selinux_vm_enough_memory+0x114/0x180 [ 1013.641469] ? selinux_sb_statfs+0x250/0x250 [ 1013.642361] ? percpu_counter_add_batch+0x8b/0x140 [ 1013.643364] ? __vm_enough_memory+0x184/0x360 [ 1013.644266] ? security_vm_enough_memory_mm+0x8b/0xc0 [ 1013.645301] dup_mm+0x44d/0x1110 [ 1013.645999] ? vm_area_dup+0x290/0x290 [ 1013.646791] ? __raw_spin_lock_init+0x36/0x110 [ 1013.647715] copy_process+0x24e2/0x6740 [ 1013.648512] ? lock_acquire+0x197/0x470 [ 1013.649312] ? find_held_lock+0x2c/0x110 [ 1013.650151] ? __cleanup_sighand+0xb0/0xb0 [ 1013.651045] ? _copy_from_user+0xfb/0x1b0 [ 1013.651888] kernel_clone+0xe7/0x980 [ 1013.652644] ? __lockdep_reset_lock+0x180/0x180 [ 1013.653579] ? create_io_thread+0xf0/0xf0 [ 1013.654439] ? ksys_write+0x21a/0x260 [ 1013.655211] ? lock_downgrade+0x6d0/0x6d0 [ 1013.656046] __do_sys_clone3+0x1e5/0x320 [ 1013.656855] ? __do_sys_clone+0x110/0x110 [ 1013.657705] ? rcu_read_lock_any_held+0x75/0xa0 [ 1013.658624] ? vfs_write+0x354/0xa70 [ 1013.659384] ? fput_many+0x2f/0x1a0 [ 1013.660112] ? ksys_write+0x1a9/0x260 [ 1013.660872] ? __ia32_sys_read+0xb0/0xb0 [ 1013.661708] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1013.662786] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1013.663829] ? trace_hardirqs_on+0x5b/0x180 [ 1013.664702] do_syscall_64+0x33/0x40 [ 1013.665446] entry_SYSCALL_64_after_hwframe+0x61/0xc6 [ 1013.666477] RIP: 0033:0x7f0ecd504b19 [ 1013.667253] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1013.670934] RSP: 002b:00007f0ecaa7a188 EFLAGS: 00000246 ORIG_RAX: 00000000000001b3 [ 1013.672496] RAX: ffffffffffffffda RBX: 00007f0ecd617f60 RCX: 00007f0ecd504b19 [ 1013.673955] RDX: 0000000000000000 RSI: 0000000000000058 RDI: 0000000020000140 [ 1013.675418] RBP: 00007f0ecaa7a1d0 R08: 0000000000000000 R09: 0000000000000000 [ 1013.676849] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 1013.678297] R13: 00007fffa049ab2f R14: 00007f0ecaa7a300 R15: 0000000000022000 [ 1013.724484] audit: type=1400 audit(1687721126.033:24): avc: denied { checkpoint_restore } for pid=20308 comm="syz-executor.7" capability=40 scontext=system_u:system_r:kernel_t:s0 tcontext=system_u:system_r:kernel_t:s0 tclass=capability2 permissive=1 19:25:26 executing program 6: syz_open_dev$sg(0x0, 0x0, 0x0) syz_io_uring_setup(0x4ee5, &(0x7f0000000080)={0x0, 0x36}, &(0x7f0000ffd000/0x3000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000040), &(0x7f0000000100)) 19:25:40 executing program 3: creat(0x0, 0x0) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) clone3(&(0x7f0000000140)={0x0, 0x0, 0x0, 0x0, {0x1100}, 0x0, 0x0, 0x0, 0x0}, 0x58) 19:25:40 executing program 0: r0 = perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x20000000}, 0x0, 0x0, 0xffffffffffffffff, 0x0) perf_event_open(&(0x7f0000001d80)={0x2, 0x80, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, r0, 0x0) r1 = perf_event_open(&(0x7f0000001d80)={0x2, 0x80, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, r0, 0x0) readv(r1, &(0x7f0000001200)=[{&(0x7f00000000c0)=""/4096, 0x1000}], 0x1) 19:25:40 executing program 2: perf_event_open(&(0x7f0000000200)={0x2, 0x80, 0x8, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) creat(0x0, 0x0) syz_io_uring_setup(0x44af, &(0x7f0000000100)={0x0, 0x2, 0x0, 0x0, 0x389}, &(0x7f0000000000/0x12000)=nil, &(0x7f000000e000/0x1000)=nil, &(0x7f0000000080), &(0x7f0000000040)) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) clone3(0x0, 0x0) 19:25:40 executing program 1: perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) clone3(&(0x7f0000000140)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x8000001000000, 0x0, 0x0}, 0x58) 19:25:40 executing program 6: syz_open_dev$sg(0x0, 0x0, 0x0) syz_io_uring_setup(0x4ee5, &(0x7f0000000080)={0x0, 0x3c}, &(0x7f0000ffd000/0x3000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000040), &(0x7f0000000100)) 19:25:40 executing program 5: perf_event_open(&(0x7f0000000200)={0x2, 0x80, 0x8, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_io_uring_setup(0x44af, &(0x7f0000000100)={0x0, 0x2, 0x0, 0x0, 0x389}, &(0x7f0000000000/0x12000)=nil, &(0x7f000000e000/0x1000)=nil, &(0x7f0000000080), &(0x7f0000000040)) perf_event_open(&(0x7f0000001d80)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) clone3(&(0x7f0000000140)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) write(0xffffffffffffffff, &(0x7f0000000100)='?', 0x1) [ 1028.560560] FAULT_INJECTION: forcing a failure. [ 1028.560560] name failslab, interval 1, probability 0, space 0, times 0 [ 1028.561999] CPU: 1 PID: 20554 Comm: syz-executor.4 Not tainted 5.10.185 #1 [ 1028.562806] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1028.563794] Call Trace: [ 1028.564120] dump_stack+0x107/0x167 [ 1028.564556] should_fail.cold+0x5/0xa [ 1028.565006] ? anon_vma_clone+0xdc/0x590 [ 1028.565489] should_failslab+0x5/0x20 [ 1028.565942] kmem_cache_alloc+0x5b/0x310 [ 1028.566421] anon_vma_clone+0xdc/0x590 [ 1028.566878] anon_vma_fork+0x82/0x640 [ 1028.567327] ? __vm_enough_memory+0x184/0x360 [ 1028.567846] dup_mm+0x861/0x1110 [ 1028.568252] ? vm_area_dup+0x290/0x290 [ 1028.568717] ? __raw_spin_lock_init+0x36/0x110 [ 1028.569254] copy_process+0x24e2/0x6740 [ 1028.569718] ? lock_acquire+0x197/0x470 [ 1028.570185] ? find_held_lock+0x2c/0x110 [ 1028.570692] ? __cleanup_sighand+0xb0/0xb0 [ 1028.571234] ? _copy_from_user+0xfb/0x1b0 [ 1028.571739] kernel_clone+0xe7/0x980 [ 1028.572175] ? lock_acquire+0x197/0x470 [ 1028.572658] ? create_io_thread+0xf0/0xf0 [ 1028.573174] ? ksys_write+0x21a/0x260 [ 1028.573634] ? lock_downgrade+0x6d0/0x6d0 [ 1028.574152] __do_sys_clone3+0x1e5/0x320 [ 1028.574652] ? __do_sys_clone+0x110/0x110 [ 1028.575191] ? rcu_read_lock_any_held+0x75/0xa0 [ 1028.575756] ? vfs_write+0x354/0xa70 [ 1028.576209] ? fput_many+0x2f/0x1a0 [ 1028.576655] ? ksys_write+0x1a9/0x260 [ 1028.577101] ? __ia32_sys_read+0xb0/0xb0 [ 1028.577601] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1028.578245] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1028.578865] ? trace_hardirqs_on+0x5b/0x180 [ 1028.579376] do_syscall_64+0x33/0x40 [ 1028.579831] entry_SYSCALL_64_after_hwframe+0x61/0xc6 [ 1028.580447] RIP: 0033:0x7f0ecd504b19 [ 1028.580901] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1028.583158] RSP: 002b:00007f0ecaa7a188 EFLAGS: 00000246 ORIG_RAX: 00000000000001b3 [ 1028.584097] RAX: ffffffffffffffda RBX: 00007f0ecd617f60 RCX: 00007f0ecd504b19 [ 1028.584973] RDX: 0000000000000000 RSI: 0000000000000058 RDI: 0000000020000140 [ 1028.585840] RBP: 00007f0ecaa7a1d0 R08: 0000000000000000 R09: 0000000000000000 [ 1028.586723] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 1028.587616] R13: 00007fffa049ab2f R14: 00007f0ecaa7a300 R15: 0000000000022000 19:25:40 executing program 4: clone3(&(0x7f0000000140)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) (fail_nth: 89) 19:25:40 executing program 7: perf_event_open(&(0x7f0000000200)={0x2, 0x80, 0x8, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) creat(0x0, 0x0) clone3(&(0x7f0000000140)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) r0 = syz_open_dev$sg(&(0x7f0000000400), 0x0, 0x0) r1 = syz_open_dev$evdev(&(0x7f0000000040), 0x0, 0x8802) r2 = fcntl$dupfd(r1, 0x0, r0) r3 = openat$vcs(0xffffffffffffff9c, &(0x7f0000000080), 0x840, 0x0) openat(r3, &(0x7f00000000c0)='./file0\x00', 0x800, 0x108) writev(r2, &(0x7f0000000140)=[{&(0x7f0000000300)="0040abe02400030021206cda3b5e5672b89aeddb2a535fbd", 0x7e0}], 0x1) pidfd_send_signal(r2, 0x29, &(0x7f0000000000)={0x28, 0x7, 0xc}, 0x0) write(0xffffffffffffffff, 0x0, 0x0) 19:25:40 executing program 6: syz_open_dev$sg(0x0, 0x0, 0x0) syz_io_uring_setup(0x4ee5, &(0x7f0000000080)={0x0, 0x42}, &(0x7f0000ffd000/0x3000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000040), &(0x7f0000000100)) 19:25:40 executing program 6: syz_open_dev$sg(0x0, 0x0, 0x0) syz_io_uring_setup(0x4ee5, &(0x7f0000000080)={0x0, 0x60}, &(0x7f0000ffd000/0x3000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000040), &(0x7f0000000100)) 19:25:40 executing program 1: perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) clone3(&(0x7f0000000140)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x10100000000000, 0x0, 0x0}, 0x58) 19:25:41 executing program 0: r0 = perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r1 = socket$inet_icmp(0x2, 0x2, 0x1) syncfs(r1) perf_event_open(&(0x7f0000001d80)={0x2, 0x80, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, r0, 0x0) r2 = perf_event_open(&(0x7f0000001d80)={0x2, 0x80, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, r0, 0x0) readv(r2, &(0x7f0000001200)=[{&(0x7f00000000c0)=""/4096, 0x1000}], 0x1) 19:25:41 executing program 6: syz_open_dev$sg(0x0, 0x0, 0x0) syz_io_uring_setup(0x4ee5, &(0x7f0000000080)={0x0, 0x121}, &(0x7f0000ffd000/0x3000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000040), &(0x7f0000000100)) [ 1028.844185] perf: interrupt took too long (6560 > 6542), lowering kernel.perf_event_max_sample_rate to 30000 19:25:55 executing program 1: perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) clone3(&(0x7f0000000140)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x109786022a0000, 0x0, 0x0}, 0x58) 19:25:55 executing program 0: r0 = perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) perf_event_open(&(0x7f0000001d80)={0x2, 0x80, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0, 0x9}}, 0x0, 0x0, r0, 0x0) r1 = perf_event_open(&(0x7f0000001d80)={0x2, 0x80, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, r0, 0x0) readv(r1, &(0x7f0000001200)=[{&(0x7f00000000c0)=""/4096, 0x1000}], 0x1) 19:25:55 executing program 7: sendmsg$unix(0xffffffffffffffff, &(0x7f0000001440)={&(0x7f00000000c0)=@abs={0x1, 0x0, 0x4e21}, 0x6e, &(0x7f00000001c0)=[{&(0x7f0000000280)="6596036a937598a3c6dc4f563d53cec001f7dd7cb231fe1d1cd3386ea5658f21c11f7b5f7c1ce63ab5dc3842682cc1d90ebb168cc6e6802d38595749c2394dc914fda1424fc595c91cec7b6a2d0cc7b25f9a42a7535946f6077e2a946d902a7fc027a9fd9fdeff33727f437fa913b638594ff33a84d736500afa47e74049bc6fa4a15f6436724df61148ec3e85e881baf5924edefef9f58c73919b392ebf1916509c26ae92fb576b3943e32ce07290797b388fbc7bc4f3921e93", 0xba}, {&(0x7f0000000340)="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", 0x1000}, {&(0x7f0000001340)="0029e8fadee401ff239b423ea3611ef0d9ad8756d5f68027214bc6c52ca0e5dd47a2a37904f51972e5ca52a28522546cfb96778e6267853d42c8379d5c8dacc48e218c4cf69db365d4697dd4dfb02dfefca42566b3f752b755a60dca05bc7c828cade2a5e3369723b450c769156d96c0e3cf4ba497cc079e0cdf6dcdfce592a197553e60dfdaf6a52239f890a4b0dd3fbbc5e58c1346c83808ee5ab3456216d014d731e6296a7355016d8fa2e95948fa1a4ac7be304198ac198fca0b359b518f8c8a478ba432398939d565e2c3042821fb75be0c04199a6623674f9582ba6fefd57765a6fddb32ea7383ce0109b3d6f49a336f96dd33773603a1942caff99f", 0xff}], 0x3, 0x0, 0x0, 0x40000}, 0x0) write$vga_arbiter(0xffffffffffffffff, &(0x7f0000000000), 0xf) r0 = perf_event_open(&(0x7f0000000200)={0x2, 0x80, 0x8, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r1 = creat(0x0, 0x0) clone3(&(0x7f0000000140)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) setsockopt$sock_int(r1, 0x1, 0x23, &(0x7f0000001480)=0x7, 0x4) write(0xffffffffffffffff, 0x0, 0x0) perf_event_open(&(0x7f0000000040)={0x4, 0x80, 0x4, 0x8, 0x1, 0x3, 0x0, 0x3, 0x88048, 0x7, 0x0, 0x1, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x1, 0x0, 0x0, 0x0, 0x1, 0x0, 0x1, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x1, 0x1, 0x0, 0x1, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x2, @perf_config_ext={0x7, 0x404}, 0x204, 0x2, 0x9c8c, 0x1, 0xfffffffffffffa49, 0x3, 0x1, 0x0, 0x1, 0x0, 0x5}, 0xffffffffffffffff, 0xe, r0, 0x1) 19:25:55 executing program 5: perf_event_open(&(0x7f0000000200)={0x2, 0x80, 0x8, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_io_uring_setup(0x44af, &(0x7f0000000100)={0x0, 0x2, 0x0, 0x0, 0x389}, &(0x7f0000000000/0x12000)=nil, &(0x7f000000e000/0x1000)=nil, &(0x7f0000000080), &(0x7f0000000040)) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) clone3(&(0x7f0000000140)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) write(0xffffffffffffffff, &(0x7f0000000100)='?', 0x1) 19:25:55 executing program 2: perf_event_open(&(0x7f0000000200)={0x2, 0x80, 0x8, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) creat(0x0, 0x0) syz_io_uring_setup(0x44af, &(0x7f0000000100)={0x0, 0x2, 0x0, 0x0, 0x389}, &(0x7f0000000000/0x12000)=nil, &(0x7f000000e000/0x1000)=nil, &(0x7f0000000080), &(0x7f0000000040)) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) clone3(0x0, 0x0) 19:25:55 executing program 4: clone3(&(0x7f0000000140)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) (fail_nth: 90) 19:25:55 executing program 3: creat(0x0, 0x0) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) clone3(&(0x7f0000000140)={0x0, 0x0, 0x0, 0x0, {0x2000}, 0x0, 0x0, 0x0, 0x0}, 0x58) 19:25:55 executing program 6: syz_open_dev$sg(0x0, 0x0, 0x0) syz_io_uring_setup(0x4ee5, &(0x7f0000000080)={0x0, 0x1d9}, &(0x7f0000ffd000/0x3000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000040), &(0x7f0000000100)) [ 1043.036537] FAULT_INJECTION: forcing a failure. [ 1043.036537] name failslab, interval 1, probability 0, space 0, times 0 [ 1043.038997] CPU: 0 PID: 20994 Comm: syz-executor.4 Not tainted 5.10.185 #1 [ 1043.040447] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1043.042162] Call Trace: [ 1043.042718] dump_stack+0x107/0x167 [ 1043.043487] should_fail.cold+0x5/0xa [ 1043.044272] ? create_object.isra.0+0x3a/0xa20 [ 1043.045218] should_failslab+0x5/0x20 [ 1043.046013] kmem_cache_alloc+0x5b/0x310 [ 1043.046849] create_object.isra.0+0x3a/0xa20 [ 1043.047756] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 1043.048809] kmem_cache_alloc+0x159/0x310 [ 1043.049661] vm_area_dup+0x78/0x290 [ 1043.050414] ? avc_has_perm_noaudit+0x1c9/0x3e0 [ 1043.051413] ? lock_downgrade+0x6d0/0x6d0 [ 1043.052252] ? copy_page_range+0x24fe/0x3820 [ 1043.053156] ? avc_has_perm_noaudit+0x1f7/0x3e0 [ 1043.054103] ? avc_has_extended_perms+0xf40/0xf40 [ 1043.055091] ? vm_area_alloc+0x110/0x110 [ 1043.055939] ? selinux_vm_enough_memory+0x114/0x180 [ 1043.056954] ? selinux_sb_statfs+0x250/0x250 [ 1043.057855] ? percpu_counter_add_batch+0x8b/0x140 [ 1043.058866] ? __vm_enough_memory+0x184/0x360 [ 1043.059786] ? security_vm_enough_memory_mm+0x8b/0xc0 [ 1043.060835] dup_mm+0x44d/0x1110 [ 1043.061552] ? vm_area_dup+0x290/0x290 [ 1043.062354] ? __raw_spin_lock_init+0x36/0x110 [ 1043.063307] copy_process+0x24e2/0x6740 [ 1043.064121] ? lock_acquire+0x197/0x470 [ 1043.064936] ? find_held_lock+0x2c/0x110 [ 1043.065793] ? __cleanup_sighand+0xb0/0xb0 [ 1043.066672] ? _copy_from_user+0xfb/0x1b0 [ 1043.067544] kernel_clone+0xe7/0x980 [ 1043.068316] ? lock_acquire+0x197/0x470 [ 1043.069132] ? create_io_thread+0xf0/0xf0 [ 1043.069994] ? ksys_write+0x21a/0x260 [ 1043.070775] ? lock_downgrade+0x6d0/0x6d0 [ 1043.071641] __do_sys_clone3+0x1e5/0x320 [ 1043.072470] ? __do_sys_clone+0x110/0x110 [ 1043.073344] ? rcu_read_lock_any_held+0x75/0xa0 [ 1043.074292] ? vfs_write+0x354/0xa70 [ 1043.075047] ? fput_many+0x2f/0x1a0 [ 1043.075802] ? ksys_write+0x1a9/0x260 [ 1043.076574] ? __ia32_sys_read+0xb0/0xb0 [ 1043.077406] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1043.078488] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1043.079536] ? trace_hardirqs_on+0x5b/0x180 [ 1043.080419] do_syscall_64+0x33/0x40 [ 1043.081183] entry_SYSCALL_64_after_hwframe+0x61/0xc6 [ 1043.082225] RIP: 0033:0x7f0ecd504b19 [ 1043.082986] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1043.086766] RSP: 002b:00007f0ecaa7a188 EFLAGS: 00000246 ORIG_RAX: 00000000000001b3 [ 1043.088325] RAX: ffffffffffffffda RBX: 00007f0ecd617f60 RCX: 00007f0ecd504b19 [ 1043.089767] RDX: 0000000000000000 RSI: 0000000000000058 RDI: 0000000020000140 [ 1043.091232] RBP: 00007f0ecaa7a1d0 R08: 0000000000000000 R09: 0000000000000000 [ 1043.092699] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 1043.094157] R13: 00007fffa049ab2f R14: 00007f0ecaa7a300 R15: 0000000000022000 19:25:55 executing program 2: perf_event_open(&(0x7f0000000200)={0x2, 0x80, 0x8, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) creat(0x0, 0x0) syz_io_uring_setup(0x44af, &(0x7f0000000100)={0x0, 0x2, 0x0, 0x0, 0x389}, &(0x7f0000000000/0x12000)=nil, &(0x7f000000e000/0x1000)=nil, &(0x7f0000000080), &(0x7f0000000040)) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) clone3(0x0, 0x0) 19:25:55 executing program 1: perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) clone3(&(0x7f0000000140)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0xf0510c1b000000, 0x0, 0x0}, 0x58) 19:25:55 executing program 6: syz_open_dev$sg(0x0, 0x0, 0x0) syz_io_uring_setup(0x4ee5, &(0x7f0000000080)={0x0, 0x28d}, &(0x7f0000ffd000/0x3000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000040), &(0x7f0000000100)) 19:25:55 executing program 3: creat(0x0, 0x0) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) clone3(&(0x7f0000000140)={0x0, 0x0, 0x0, 0x0, {0x3f00}, 0x0, 0x0, 0x0, 0x0}, 0x58) 19:25:55 executing program 1: perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) clone3(&(0x7f0000000140)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0xf0ff1f00000000, 0x0, 0x0}, 0x58) 19:25:55 executing program 6: syz_open_dev$sg(0x0, 0x0, 0x0) syz_io_uring_setup(0x4ee5, &(0x7f0000000080)={0x0, 0x300}, &(0x7f0000ffd000/0x3000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000040), &(0x7f0000000100)) 19:25:55 executing program 5: perf_event_open(&(0x7f0000000200)={0x2, 0x80, 0x8, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_io_uring_setup(0x44af, &(0x7f0000000100)={0x0, 0x2, 0x0, 0x0, 0x389}, &(0x7f0000000000/0x12000)=nil, &(0x7f000000e000/0x1000)=nil, &(0x7f0000000080), &(0x7f0000000040)) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) clone3(&(0x7f0000000140)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) write(0xffffffffffffffff, &(0x7f0000000100)='?', 0x1) 19:25:55 executing program 1: perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) clone3(&(0x7f0000000140)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x100000000000000, 0x0, 0x0}, 0x58) [ 1060.123091] FAULT_INJECTION: forcing a failure. [ 1060.123091] name failslab, interval 1, probability 0, space 0, times 0 [ 1060.125450] CPU: 1 PID: 21638 Comm: syz-executor.4 Not tainted 5.10.185 #1 [ 1060.126851] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1060.128535] Call Trace: [ 1060.129080] dump_stack+0x107/0x167 [ 1060.129821] should_fail.cold+0x5/0xa [ 1060.130604] ? anon_vma_clone+0xdc/0x590 [ 1060.131436] should_failslab+0x5/0x20 [ 1060.132209] kmem_cache_alloc+0x5b/0x310 [ 1060.133038] anon_vma_clone+0xdc/0x590 [ 1060.134038] anon_vma_fork+0x82/0x640 19:26:12 executing program 5: perf_event_open(&(0x7f0000000200)={0x2, 0x80, 0x8, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_io_uring_setup(0x44af, &(0x7f0000000100)={0x0, 0x2, 0x0, 0x0, 0x389}, &(0x7f0000000000/0x12000)=nil, &(0x7f000000e000/0x1000)=nil, &(0x7f0000000080), &(0x7f0000000040)) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) clone3(&(0x7f0000000140)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) write(0xffffffffffffffff, &(0x7f0000000100)='?', 0x1) 19:26:12 executing program 1: perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) clone3(&(0x7f0000000140)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x800000000000000, 0x0, 0x0}, 0x58) 19:26:12 executing program 6: syz_open_dev$sg(0x0, 0x0, 0x0) syz_io_uring_setup(0x4ee5, &(0x7f0000000080)={0x0, 0x3fc}, &(0x7f0000ffd000/0x3000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000040), &(0x7f0000000100)) 19:26:12 executing program 7: perf_event_open(&(0x7f0000000000)={0x2, 0x80, 0x8, 0x1, 0x0, 0x0, 0x0, 0x0, 0x420, 0x7, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, @perf_bp={0x0}, 0x0, 0x0, 0x0, 0x0, 0x7ff}, 0x0, 0x0, 0xffffffffffffffff, 0x0) creat(0x0, 0x0) r0 = syz_open_dev$sg(&(0x7f0000000400), 0x0, 0x0) r1 = syz_open_dev$evdev(&(0x7f0000000040), 0x0, 0x8802) r2 = fcntl$dupfd(r1, 0x0, r0) writev(r2, &(0x7f0000000140)=[{&(0x7f0000000300)="0040abe02400030021206cda3b5e5672b89aeddb2a535fbd", 0x7e0}], 0x1) ioctl$BLKTRACETEARDOWN(r2, 0x1276, 0x0) clone3(&(0x7f0000000140)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) write(0xffffffffffffffff, 0x0, 0x0) r3 = syz_open_dev$sg(&(0x7f0000000400), 0x0, 0x0) r4 = syz_open_dev$evdev(&(0x7f0000000040), 0x0, 0x8802) r5 = fcntl$dupfd(r4, 0x0, r3) writev(r5, &(0x7f0000000140)=[{&(0x7f0000000300)="0040abe02400030021206cda3b5e5672b89aeddb2a535fbd", 0x7e0}], 0x1) lstat(&(0x7f0000000580)='./file0/../file0\x00', &(0x7f00000005c0)={0x0, 0x0, 0x0, 0x0, 0x0}) chown(&(0x7f0000000540)='./file0\x00', r6, 0x0) syz_mount_image$ext4(&(0x7f0000000140)='ext3\x00', &(0x7f00000002c0)='./file1\x00', 0x51, 0x5, &(0x7f0000000700)=[{&(0x7f0000000300)="ba60537d398b2f61edd89064c27f7b9d6d2c18098e7b514f1876438a35faee1c431ce90b858cfd6a9a738e2e0a721ba206e98cba4e0a3f1ff5e075589276e448056ce6a75893b415cc2b063f77588d27c60a79ed08b58f9532375cc7656af948ae5d615c3a34cc4301727969b90c53c0db21f5fcebdaa3235ae5bb2d661ab0e17637d8308e11e0095109d327886f45c2193ef6702038fe7e29a71f5e2725d68089a34265de52349d84485a9e0577b8221ca555bd94df98e9a857bc78c6f68e32f6c6f28c0ba66db0b119d69ce9f0ea9c8f", 0xd1, 0x800}, {&(0x7f0000000400)="a1291a7bbce4074eca8f6c1ec6b94deed581fee0fe6017d4c8173172cdc70455904df53f769613a5bc45e4766f0bfc7a3834e12dd5089b0b1fa346b420c7ce92ce452fa9b7e571c3fe3f09944caa32f0f2ac6d902141e0a1b7ff64eba7a1281ee34d7553e6c45399bb033c22763e2f9ef1b8734a7b89dd07720e570e6cbf8a748ca39358a8326d1de51778987275ae4bb7a300a1230c6999e1a369a0453ee40b8a54d571403b64898f1e2e4a5a900af6e3c5053367", 0xb5, 0xff}, {&(0x7f0000000500)="81a3c77ad2bc0a2348329076d43dd35a7878cba2e9ac3de5c6a69656fd0752429f2e81a4ce426f0029f0c4032fa956220e64e496e42429d4", 0x38, 0xe45}, {&(0x7f0000000540)="b3300c9af2e39082bf4ea5c775735bf446124f5a655070b4f14c7c993a2d6b79506db2d7a8b4bfd0559259a463f1eb72a2bfc9d4de4266e4e32b03a7e40a50d021f4ae11771105d8f1faeef61c13036d89cdec721dc476f842e4f0d45449d77af15be479535043ee5f0468a4ad850d97ca0000c3a7c7dbdadd9c4b61261065f42118d5b61c35ea3085ac9987705a971bd84e220ef6165f85277492c9e78bebf1d6ed9deebd672952a5672f660be0b1733994c7f0134624f143dd286d695071804e763cea7b6d7b079ac424a618516388e33ed260e3d02ec11f992c63d30692d440310de3f5eb432702d08bca4a53b418973ab121034b211eecafddd2cd", 0xfd, 0x100000000}, {&(0x7f0000000640)="0b27f008b873d2aa8bce253ba0515d0b2187f3df86a4459e1a7a526e3826daeef3b31ad09fb037bf76c61855e56bf9c459158ee971f28d0b49a8eb69b65807d5095970eed171589623266d0ae498ae072316b1b66ef2dd3cc9a596a449a85624134188af02b68da237acfcf03be3da6b240c059177356bb1db9de5bf3f775aba6c971fc213bb6c238a9e290345aabeb74109d3cc61b94e3eec656108f8daf4", 0x9f, 0x9}], 0x10a890, &(0x7f0000000780)=ANY=[@ANYBLOB="6e6f2a94ea0404b8f882b0e726644d6d626c6b5f696f5f7375626d69742c696e69745f697461626c653d3078303030303030303030303030303030312c6e6f61636c2c7379737667726f7570732c6e6f64756c616c6c6f632c67727069642c61636c2c0000000000000000613d2c6e6f67727069642c736d61636b66736861743d002c6f626a5f726f6c653d", @ANYRESDEC=r6, @ANYBLOB=',measure,\x00']) setsockopt$inet_IP_XFRM_POLICY(r5, 0x0, 0x11, &(0x7f00000001c0)={{{@in=@loopback, @in=@dev={0xac, 0x14, 0x14, 0x2e}, 0x4e20, 0xfff, 0x4e24, 0xfff, 0x2, 0x80, 0x0, 0x1, 0x0, r6}, {0x9, 0x79c, 0x100000001, 0x3, 0x7, 0x0, 0x7, 0xa8a9}, {0x0, 0xdc, 0x297, 0x81}, 0x3ff, 0x0, 0x1, 0x1, 0x1, 0x2}, {{@in6=@local, 0x4d6, 0x2b}, 0x2, @in=@rand_addr=0x64010100, 0x3503, 0x4, 0x3, 0xa1, 0xac60, 0x6}}, 0xe8) r7 = socket$netlink(0x10, 0x3, 0x0) sendmsg$nl_generic(r7, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000000)={0x2c, 0x16, 0x1, 0x0, 0x0, {0xa}, [@nested={0x18, 0x0, 0x0, 0x1, [@typed={0x14, 0xa, 0x0, 0x0, @ipv6=@private1}]}]}, 0x2c}}, 0x0) ioctl$F2FS_IOC_DEFRAGMENT(r7, 0xc010f508, &(0x7f0000000080)={0x400, 0x5}) 19:26:12 executing program 4: clone3(&(0x7f0000000140)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) (fail_nth: 91) 19:26:12 executing program 2: creat(0x0, 0x0) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) clone3(&(0x7f0000000140)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) 19:26:12 executing program 3: creat(0x0, 0x0) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) clone3(&(0x7f0000000140)={0x0, 0x0, 0x0, 0x0, {0x4000}, 0x0, 0x0, 0x0, 0x0}, 0x58) 19:26:12 executing program 0: r0 = openat(0xffffffffffffff9c, 0x0, 0x0, 0x0) ioctl$FS_IOC_FSSETXATTR(r0, 0x40086602, 0x0) r1 = socket$netlink(0x10, 0x3, 0x0) sendmsg$nl_generic(r1, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000040)={0x1c, 0x5e, 0x7c15c02d21e6d5c5, 0x0, 0x0, {0x0, 0x0, 0x2}, [@nested={0x5, 0x0, 0x0, 0x1, [@generic="92"]}]}, 0x1c}}, 0x0) readv(r1, &(0x7f00000002c0)=[{&(0x7f0000000080)=""/223, 0xdf}, {&(0x7f0000000180)=""/13, 0xd}, {&(0x7f00000001c0)=""/55, 0x37}, {&(0x7f0000000200)=""/108, 0x6c}], 0x4) r2 = syz_genetlink_get_family_id$devlink(0x0, r1) sendmsg$DEVLINK_CMD_SB_POOL_GET(r0, &(0x7f0000000380)={&(0x7f0000000240), 0xc, &(0x7f0000000340)={&(0x7f0000000280)={0x9c, r2, 0x200, 0x70bd25, 0x25dfdbfc, {}, [{@pci={{0x8}, {0x11}}, {0x8, 0xb, 0x7}, {0x6, 0x11, 0x3ff}}, {@pci={{0x8}, {0x11}}, {0x8, 0xb, 0xf0e3cd3}, {0x6, 0x11, 0x7}}, {@nsim={{0xe}, {0xf, 0x2, {'netdevsim', 0x0}}}, {0x8, 0xb, 0x800}, {0x6, 0x11, 0x8}}]}, 0x9c}}, 0x0) r3 = perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3127647f1673159e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r4 = socket$netlink(0x10, 0x3, 0x0) sendmsg$nl_generic(r4, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000000)={0x2c, 0x16, 0x1, 0x0, 0x0, {0xa}, [@nested={0x18, 0x0, 0x0, 0x1, [@typed={0x14, 0xa, 0x0, 0x0, @ipv6=@private1}]}]}, 0x2c}}, 0x0) fallocate(r4, 0x4, 0xfffffffffffffffb, 0x8000) perf_event_open(&(0x7f0000001d80)={0x2, 0x80, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, r3, 0x0) r5 = perf_event_open(&(0x7f0000001d80)={0x2, 0x80, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, r3, 0x0) readv(r5, &(0x7f0000001200)=[{&(0x7f00000000c0)=""/4096, 0x1000}], 0x1) [ 1060.134916] ? __vm_enough_memory+0x184/0x360 [ 1060.135926] dup_mm+0x861/0x1110 [ 1060.136623] ? vm_area_dup+0x290/0x290 [ 1060.137472] ? __raw_spin_lock_init+0x36/0x110 [ 1060.138412] copy_process+0x24e2/0x6740 [ 1060.139229] ? lock_acquire+0x197/0x470 [ 1060.140031] ? find_held_lock+0x2c/0x110 [ 1060.140944] ? __cleanup_sighand+0xb0/0xb0 [ 1060.141803] ? _copy_from_user+0xfb/0x1b0 [ 1060.142666] kernel_clone+0xe7/0x980 [ 1060.143461] ? lock_acquire+0x197/0x470 [ 1060.144283] ? create_io_thread+0xf0/0xf0 [ 1060.145179] ? ksys_write+0x21a/0x260 [ 1060.145322] netlink: 'syz-executor.0': attribute type 10 has an invalid length. [ 1060.145949] ? lock_downgrade+0x6d0/0x6d0 [ 1060.145973] __do_sys_clone3+0x1e5/0x320 [ 1060.145995] ? __do_sys_clone+0x110/0x110 [ 1060.150013] ? rcu_read_lock_any_held+0x75/0xa0 [ 1060.150951] ? vfs_write+0x354/0xa70 [ 1060.151729] ? fput_many+0x2f/0x1a0 [ 1060.152459] ? ksys_write+0x1a9/0x260 [ 1060.153224] ? __ia32_sys_read+0xb0/0xb0 [ 1060.154044] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1060.155093] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1060.156150] ? trace_hardirqs_on+0x5b/0x180 [ 1060.157021] do_syscall_64+0x33/0x40 [ 1060.157771] entry_SYSCALL_64_after_hwframe+0x61/0xc6 [ 1060.158808] RIP: 0033:0x7f0ecd504b19 [ 1060.159576] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1060.163265] RSP: 002b:00007f0ecaa7a188 EFLAGS: 00000246 ORIG_RAX: 00000000000001b3 [ 1060.164815] RAX: ffffffffffffffda RBX: 00007f0ecd617f60 RCX: 00007f0ecd504b19 [ 1060.166267] RDX: 0000000000000000 RSI: 0000000000000058 RDI: 0000000020000140 [ 1060.167702] RBP: 00007f0ecaa7a1d0 R08: 0000000000000000 R09: 0000000000000000 [ 1060.169145] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 1060.170571] R13: 00007fffa049ab2f R14: 00007f0ecaa7a300 R15: 0000000000022000 19:26:12 executing program 1: perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) clone3(&(0x7f0000000140)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x1100000000000000, 0x0, 0x0}, 0x58) 19:26:12 executing program 6: syz_open_dev$sg(0x0, 0x0, 0x0) syz_io_uring_setup(0x4ee5, &(0x7f0000000080)={0x0, 0x3fe}, &(0x7f0000ffd000/0x3000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000040), &(0x7f0000000100)) [ 1060.243242] audit: type=1400 audit(1687721172.552:25): avc: denied { tracepoint } for pid=21639 comm="syz-executor.7" scontext=system_u:system_r:kernel_t:s0 tcontext=system_u:system_r:kernel_t:s0 tclass=perf_event permissive=1 [ 1060.269309] netlink: 'syz-executor.0': attribute type 10 has an invalid length. 19:26:12 executing program 3: creat(0x0, 0x0) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) clone3(&(0x7f0000000140)={0x0, 0x0, 0x0, 0x0, {0x20010}, 0x0, 0x0, 0x0, 0x0}, 0x58) 19:26:12 executing program 0: r0 = perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) perf_event_open(&(0x7f0000001d80)={0x2, 0x80, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, r0, 0x0) r1 = perf_event_open(&(0x7f0000001d80)={0x2, 0x80, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, r0, 0x0) readv(r1, &(0x7f0000001200)=[{&(0x7f00000000c0)=""/4096, 0x1000}], 0x1) r2 = syz_open_dev$tty1(0xc, 0x4, 0x1) pwrite64(r2, &(0x7f00000010c0)="aeb56610b8041b41c658223fc2f153ae58ed94632315dfda70ca463ec28312252203a30ec66c81f6f750add7fef02fc8d870d487cc7f67971b460234dc60d4c49c234cb02c1357c3a56cfb464f8d89f6245bd1ec09f67ffcea17a91110b2f3f606e97b7c7e2a00c2d25e22c4823a3006199ad29f7b07316ec9cf78c28034f3b204d83885296f9ddb5c6e2c9973380b0b24f2bbc987e50b1c95e0a653f373733bb3ebe5bf6eb58e530c0115de7b22f54817804ab5ea3a8db277439b96d064047d7f329b348562a7c4a335a3f23d7d5be3d37e9733", 0xd4, 0x2) 19:26:12 executing program 7: r0 = creat(0x0, 0x0) openat(0xffffffffffffff9c, &(0x7f0000000000)='./file0\x00', 0x410000, 0x1) write(0xffffffffffffffff, 0x0, 0x0) ioctl$AUTOFS_DEV_IOCTL_CLOSEMOUNT(r0, 0xc0189375, &(0x7f0000000040)={{0x1, 0x1, 0x18, r0}, './file0\x00'}) r2 = syz_open_dev$tty1(0xc, 0x4, 0x1) ioctl$FS_IOC_FSSETXATTR(r2, 0x401c5820, &(0x7f0000000080)={0xff, 0x36c8f2b4, 0x4, 0x100, 0x1ff}) fcntl$getflags(r1, 0xb) 19:26:12 executing program 6: syz_open_dev$sg(0x0, 0x0, 0x0) syz_io_uring_setup(0x4ee5, &(0x7f0000000080)={0x0, 0x600}, &(0x7f0000ffd000/0x3000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000040), &(0x7f0000000100)) 19:26:12 executing program 1: perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) clone3(&(0x7f0000000140)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x2000000000000000, 0x0, 0x0}, 0x58) 19:26:12 executing program 5: perf_event_open(&(0x7f0000000200)={0x2, 0x80, 0x8, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_io_uring_setup(0x44af, &(0x7f0000000100)={0x0, 0x2, 0x0, 0x0, 0x389}, &(0x7f0000000000/0x12000)=nil, &(0x7f000000e000/0x1000)=nil, &(0x7f0000000080), &(0x7f0000000040)) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) clone3(&(0x7f0000000140)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) write(0xffffffffffffffff, &(0x7f0000000100)='?', 0x1) 19:26:25 executing program 5: perf_event_open(&(0x7f0000000200)={0x2, 0x80, 0x8, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_io_uring_setup(0x44af, &(0x7f0000000100)={0x0, 0x2, 0x0, 0x0, 0x389}, &(0x7f0000000000/0x12000)=nil, &(0x7f000000e000/0x1000)=nil, &(0x7f0000000080), &(0x7f0000000040)) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) clone3(&(0x7f0000000140)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) write(0xffffffffffffffff, &(0x7f0000000100)='?', 0x1) 19:26:25 executing program 6: syz_open_dev$sg(0x0, 0x0, 0x0) syz_io_uring_setup(0x4ee5, &(0x7f0000000080)={0x0, 0xc00}, &(0x7f0000ffd000/0x3000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000040), &(0x7f0000000100)) 19:26:25 executing program 7: r0 = perf_event_open(&(0x7f0000000200)={0x2, 0x80, 0x8, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r1 = socket$netlink(0x10, 0x3, 0x0) sendmsg$nl_generic(r1, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000000)={0x2c, 0x16, 0x1, 0x0, 0x0, {0xa}, [@nested={0x18, 0x0, 0x0, 0x1, [@typed={0x14, 0xa, 0x0, 0x0, @ipv6=@private1}]}]}, 0x2c}}, 0x0) ioctl$FITRIM(r1, 0xc0185879, &(0x7f0000000100)={0x200, 0x9, 0x4}) r2 = open(&(0x7f00000000c0)='./file0\x00', 0x2800c0, 0x81) perf_event_open(&(0x7f0000000040)={0x5, 0x80, 0x5, 0xdd, 0x1, 0x6, 0x0, 0x8001, 0xd0dfdf83dd2fa7c4, 0x0, 0x0, 0x1, 0x1, 0x1, 0x1, 0x1, 0x0, 0x1, 0x1, 0x0, 0x1, 0x1, 0x0, 0x1, 0x1, 0x1, 0x1, 0x0, 0x0, 0x0, 0x1, 0x1, 0x1, 0x1, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x0, 0x1, 0x0, 0x1, 0x1, 0x1, 0x1, 0x0, 0xa1c, 0x1, @perf_bp={&(0x7f0000000000), 0x4}, 0xc0, 0x6, 0x0, 0x0, 0x2, 0x2, 0x8c, 0x0, 0xa, 0x0, 0x1f}, 0x0, 0x4, r2, 0xb5d91ba0d40cf643) r3 = creat(0x0, 0x80) clone3(&(0x7f0000000140)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x200, 0x0, @perf_config_ext, 0x400c0}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r4 = syz_io_uring_setup(0x4f4f, &(0x7f0000000180), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000100)=0x0, &(0x7f0000000140)=0x0) r7 = socket$inet6_udplite(0xa, 0x2, 0x88) syz_io_uring_submit(r5, r6, &(0x7f0000000000)=@IORING_OP_SENDMSG={0x9, 0x0, 0x0, r7, 0x0, 0x0, 0x0, 0x24004804}, 0x0) mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r4, 0x0) r8 = mmap$IORING_OFF_CQ_RING(&(0x7f0000ffe000/0x2000)=nil, 0x2000, 0xf, 0x13, r4, 0x8000000) syz_io_uring_submit(r8, r6, &(0x7f00000002c0)=@IORING_OP_RECVMSG={0xa, 0x2, 0x0, r7, 0x0, 0x0}, 0x80000001) ioctl$int_in(r0, 0x5421, &(0x7f0000000400)=0xfffffffffffffeff) io_uring_enter(r4, 0x58ab, 0x0, 0x0, 0x0, 0x0) ioctl$SNDRV_SEQ_IOCTL_CREATE_QUEUE(0xffffffffffffffff, 0xc08c5332, &(0x7f0000000200)={0x0, 0x0, 0x0, 'queue1\x00'}) write(0xffffffffffffffff, 0x0, 0x0) readv(r3, &(0x7f00000001c0)=[{&(0x7f0000000280)=""/68, 0x44}, {&(0x7f0000000300)=""/208, 0xd0}], 0x2) 19:26:25 executing program 4: clone3(&(0x7f0000000140)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) (fail_nth: 92) 19:26:26 executing program 1: perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) clone3(&(0x7f0000000140)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x3f00000000000000, 0x0, 0x0}, 0x58) 19:26:26 executing program 0: r0 = perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) perf_event_open(&(0x7f0000001d80)={0x2, 0x80, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, r0, 0x0) r1 = syz_open_pts(0xffffffffffffffff, 0x20000) readv(r1, &(0x7f0000001740)=[{&(0x7f0000001300)=""/233, 0xe9}, {&(0x7f0000001400)=""/171, 0xab}, {&(0x7f00000014c0)=""/244, 0xf4}, {&(0x7f00000015c0)=""/22, 0x16}, {&(0x7f0000001600)=""/107, 0x6b}, {&(0x7f0000001680)=""/177, 0xb1}], 0x6) r2 = perf_event_open(&(0x7f0000001d80)={0x2, 0x80, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, r0, 0x0) readv(r2, &(0x7f0000001200)=[{&(0x7f00000000c0)=""/4096, 0x1000}], 0x1) r3 = openat(0xffffffffffffff9c, &(0x7f0000000000)='./file0\x00', 0x200840, 0x1) perf_event_open(&(0x7f0000001100)={0x4, 0x80, 0x5, 0x1f, 0x20, 0x81, 0x0, 0x5, 0xa50ca, 0x1a, 0x1, 0x1, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x1, 0x0, 0x2, 0x1, 0x0, 0x1, 0x1, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x1, 0x1, 0x0, 0x1, 0x0, 0x1, 0x1, 0x1, 0x1, 0x0, 0x0, 0x0, 0x9, 0x1, @perf_bp={&(0x7f00000010c0), 0x8}, 0x41001, 0x8000, 0x9, 0x3, 0x4, 0x6c, 0x2, 0x0, 0x39, 0x0, 0x966}, 0xffffffffffffffff, 0x14, r3, 0x1) r4 = openat$null(0xffffffffffffff9c, &(0x7f0000001180), 0x4000, 0x0) sendmsg$NFT_MSG_GETGEN(r4, &(0x7f00000012c0)={&(0x7f00000011c0)={0x10, 0x0, 0x0, 0x2000000}, 0xc, &(0x7f0000001280)={&(0x7f0000001240)={0x14, 0x10, 0xa, 0x201, 0x0, 0x0, {0x7, 0x0, 0x7}, ["", ""]}, 0x14}, 0x1, 0x0, 0x0, 0x40044}, 0xc005) [ 1073.705600] FAULT_INJECTION: forcing a failure. [ 1073.705600] name failslab, interval 1, probability 0, space 0, times 0 [ 1073.708474] CPU: 1 PID: 22179 Comm: syz-executor.4 Not tainted 5.10.185 #1 [ 1073.710083] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1073.712052] Call Trace: [ 1073.712676] dump_stack+0x107/0x167 [ 1073.713507] should_fail.cold+0x5/0xa [ 1073.714389] ? create_object.isra.0+0x3a/0xa20 [ 1073.715427] should_failslab+0x5/0x20 [ 1073.716305] kmem_cache_alloc+0x5b/0x310 [ 1073.717246] create_object.isra.0+0x3a/0xa20 [ 1073.718254] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 1073.719433] kmem_cache_alloc+0x159/0x310 [ 1073.720408] anon_vma_clone+0xdc/0x590 [ 1073.721330] anon_vma_fork+0x82/0x640 [ 1073.722203] ? __vm_enough_memory+0x184/0x360 [ 1073.723248] dup_mm+0x861/0x1110 [ 1073.724074] ? vm_area_dup+0x290/0x290 [ 1073.724992] ? __raw_spin_lock_init+0x36/0x110 [ 1073.726047] copy_process+0x24e2/0x6740 [ 1073.726976] ? lock_acquire+0x197/0x470 [ 1073.727903] ? find_held_lock+0x2c/0x110 [ 1073.728895] ? __cleanup_sighand+0xb0/0xb0 [ 1073.729852] ? _copy_from_user+0xfb/0x1b0 [ 1073.730761] kernel_clone+0xe7/0x980 [ 1073.731576] ? lock_acquire+0x197/0x470 [ 1073.732306] ? create_io_thread+0xf0/0xf0 [ 1073.733064] ? ksys_write+0x21a/0x260 [ 1073.733743] ? lock_downgrade+0x6d0/0x6d0 [ 1073.734474] __do_sys_clone3+0x1e5/0x320 [ 1073.735186] ? __do_sys_clone+0x110/0x110 [ 1073.735938] ? rcu_read_lock_any_held+0x75/0xa0 [ 1073.736750] ? vfs_write+0x354/0xa70 [ 1073.737409] ? fput_many+0x2f/0x1a0 [ 1073.738050] ? ksys_write+0x1a9/0x260 [ 1073.738719] ? __ia32_sys_read+0xb0/0xb0 [ 1073.739441] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1073.740373] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1073.741274] ? trace_hardirqs_on+0x5b/0x180 [ 1073.742033] do_syscall_64+0x33/0x40 [ 1073.742687] entry_SYSCALL_64_after_hwframe+0x61/0xc6 [ 1073.743601] RIP: 0033:0x7f0ecd504b19 [ 1073.744256] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1073.747470] RSP: 002b:00007f0ecaa7a188 EFLAGS: 00000246 ORIG_RAX: 00000000000001b3 [ 1073.748816] RAX: ffffffffffffffda RBX: 00007f0ecd617f60 RCX: 00007f0ecd504b19 [ 1073.750063] RDX: 0000000000000000 RSI: 0000000000000058 RDI: 0000000020000140 [ 1073.751310] RBP: 00007f0ecaa7a1d0 R08: 0000000000000000 R09: 0000000000000000 [ 1073.752562] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 1073.753809] R13: 00007fffa049ab2f R14: 00007f0ecaa7a300 R15: 0000000000022000 19:26:26 executing program 2: creat(0x0, 0x0) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) clone3(&(0x7f0000000140)={0x3f000000, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) 19:26:26 executing program 3: creat(0x0, 0x0) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) clone3(&(0x7f0000000140)={0x0, 0x0, 0x0, 0x0, {0x20200}, 0x0, 0x0, 0x0, 0x0}, 0x58) 19:26:26 executing program 6: syz_open_dev$sg(0x0, 0x0, 0x0) syz_io_uring_setup(0x4ee5, &(0x7f0000000080)={0x0, 0x1200}, &(0x7f0000ffd000/0x3000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000040), &(0x7f0000000100)) 19:26:26 executing program 3: creat(0x0, 0x0) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) clone3(&(0x7f0000000140)={0x0, 0x0, 0x0, 0x0, {0x80000}, 0x0, 0x0, 0x0, 0x0}, 0x58) 19:26:26 executing program 7: r0 = perf_event_open(&(0x7f0000000000)={0x4, 0x80, 0x1f, 0x3, 0x0, 0x80, 0x0, 0x0, 0x16c20, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, @perf_bp={0x0}, 0xa204, 0x0, 0x0, 0x0, 0x0, 0x10, 0x4, 0x0, 0x7}, 0x0, 0x3ffffffd, 0xffffffffffffffff, 0x0) creat(0x0, 0x0) r1 = syz_open_dev$loop(&(0x7f0000000680), 0x0, 0x0) ioctl$BLKPG(r1, 0x1269, &(0x7f00000007c0)={0x0, 0x0, 0x11, &(0x7f00000006c0)="064c05897fd92cd588a5a212538f65adbc"}) clone3(&(0x7f0000000140)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) r2 = socket$netlink(0x10, 0x3, 0x0) sendmsg$nl_generic(r2, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000000)={0x2c, 0x16, 0x1, 0x0, 0x0, {0xa}, [@nested={0x18, 0x0, 0x0, 0x1, [@typed={0x14, 0xa, 0x0, 0x0, @ipv6=@private1}]}]}, 0x2c}}, 0x0) ioctl$F2FS_IOC_MOVE_RANGE(r1, 0xc020f509, &(0x7f0000000080)={r0, 0x6, 0x1, 0x2}) dup2(r2, r3) write(0xffffffffffffffff, 0x0, 0x0) 19:26:26 executing program 0: r0 = perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) perf_event_open(&(0x7f0000001d80)={0x2, 0x80, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, r0, 0x0) perf_event_open(&(0x7f00000010c0)={0x0, 0x80, 0x68, 0x0, 0x1, 0x80, 0x0, 0x40, 0x2002, 0x3, 0x1, 0x0, 0x0, 0x1, 0x1, 0x1, 0x1, 0x1, 0x1, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x1, 0x0, 0x0, 0x0, 0x1, 0x0, 0x1, 0x1, 0x1, 0x0, 0x1, 0x1, 0x1, 0x0, 0x1, 0x0, 0x1, 0x1, 0x0, 0x0, 0x0, 0x2, 0x1, @perf_config_ext={0x1, 0x7}, 0x2, 0x0, 0xfffffffb, 0x4, 0x0, 0x400, 0x3, 0x0, 0x400, 0x0, 0x5459}, 0xffffffffffffffff, 0xa, 0xffffffffffffffff, 0x9) r1 = perf_event_open(&(0x7f0000001d80)={0x0, 0x80, 0x60, 0xfe, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x0, 0x0, 0x4, 0x0, 0x2}, 0x0, 0x0, r0, 0x0) readv(r1, &(0x7f0000001200)=[{&(0x7f00000000c0)=""/4096, 0x1000}], 0x1) write$binfmt_elf64(r1, &(0x7f0000001240)={{0x7f, 0x45, 0x4c, 0x46, 0x1, 0x40, 0x1f, 0x86, 0x2, 0x2, 0x3, 0xfffffffa, 0x2d1, 0x40, 0xbe, 0x7, 0x1, 0x38, 0x1, 0x1, 0x1ff, 0x20}, [{0x70000000, 0x2, 0x9a, 0x6, 0x6, 0x82, 0x0, 0x3f}, {0x0, 0x438, 0x7, 0x81, 0x6, 0x35, 0x1f, 0x3}], "7d32b21504779c58eb9a05185df4a07b22ac993fd6954bee76c54aff0fb48bb8aee8014dd9b65dc3ae43d259d4b3a8a12855fa4ae7600ca0b03fc69b12936d864ef825bce52aad5bb6e5f3186d64793928cb8401a2c8a2b1e03071bc7f687d4398a9ed08303f81c69b8998b528eb6b936af87b89dba64d319156598385c1b6af65676ffe382d3b45b104507da43a4d9e1291f1699ab6f242d8cf33a55bc48f7d10d3d9e0571be594539f2e"}, 0x15b) 19:26:26 executing program 1: perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) clone3(&(0x7f0000000140)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x4000000000000000, 0x0, 0x0}, 0x58) 19:26:26 executing program 6: syz_open_dev$sg(0x0, 0x0, 0x0) syz_io_uring_setup(0x4ee5, &(0x7f0000000080)={0x0, 0x1800}, &(0x7f0000ffd000/0x3000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000040), &(0x7f0000000100)) 19:26:26 executing program 4: clone3(&(0x7f0000000140)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) (fail_nth: 93) [ 1074.078526] FAULT_INJECTION: forcing a failure. [ 1074.078526] name failslab, interval 1, probability 0, space 0, times 0 [ 1074.081075] CPU: 0 PID: 22583 Comm: syz-executor.4 Not tainted 5.10.185 #1 [ 1074.082490] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1074.084199] Call Trace: [ 1074.084744] dump_stack+0x107/0x167 [ 1074.085497] should_fail.cold+0x5/0xa [ 1074.086273] ? create_object.isra.0+0x3a/0xa20 [ 1074.087225] should_failslab+0x5/0x20 [ 1074.088016] kmem_cache_alloc+0x5b/0x310 [ 1074.088843] create_object.isra.0+0x3a/0xa20 [ 1074.089735] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 1074.090779] kmem_cache_alloc+0x159/0x310 [ 1074.091640] anon_vma_clone+0xdc/0x590 [ 1074.092433] anon_vma_fork+0x82/0x640 [ 1074.093203] ? __vm_enough_memory+0x184/0x360 [ 1074.094110] dup_mm+0x861/0x1110 [ 1074.094809] ? vm_area_dup+0x290/0x290 [ 1074.095612] ? __raw_spin_lock_init+0x36/0x110 [ 1074.096545] copy_process+0x24e2/0x6740 [ 1074.097337] ? lock_acquire+0x197/0x470 [ 1074.098143] ? find_held_lock+0x2c/0x110 [ 1074.098991] ? __cleanup_sighand+0xb0/0xb0 [ 1074.099883] ? _copy_from_user+0xfb/0x1b0 [ 1074.100727] kernel_clone+0xe7/0x980 [ 1074.101486] ? lock_acquire+0x197/0x470 [ 1074.102295] ? create_io_thread+0xf0/0xf0 [ 1074.103148] ? ksys_write+0x21a/0x260 [ 1074.103928] ? lock_downgrade+0x6d0/0x6d0 [ 1074.104772] __do_sys_clone3+0x1e5/0x320 [ 1074.105599] ? __do_sys_clone+0x110/0x110 [ 1074.106449] ? rcu_read_lock_any_held+0x75/0xa0 [ 1074.107382] ? vfs_write+0x354/0xa70 [ 1074.108147] ? fput_many+0x2f/0x1a0 [ 1074.108877] ? ksys_write+0x1a9/0x260 [ 1074.109643] ? __ia32_sys_read+0xb0/0xb0 [ 1074.110467] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1074.111543] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1074.112583] ? trace_hardirqs_on+0x5b/0x180 [ 1074.113460] do_syscall_64+0x33/0x40 [ 1074.114215] entry_SYSCALL_64_after_hwframe+0x61/0xc6 [ 1074.115252] RIP: 0033:0x7f0ecd504b19 [ 1074.116014] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1074.119734] RSP: 002b:00007f0ecaa7a188 EFLAGS: 00000246 ORIG_RAX: 00000000000001b3 [ 1074.121272] RAX: ffffffffffffffda RBX: 00007f0ecd617f60 RCX: 00007f0ecd504b19 [ 1074.122711] RDX: 0000000000000000 RSI: 0000000000000058 RDI: 0000000020000140 [ 1074.124160] RBP: 00007f0ecaa7a1d0 R08: 0000000000000000 R09: 0000000000000000 [ 1074.125600] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 1074.127042] R13: 00007fffa049ab2f R14: 00007f0ecaa7a300 R15: 0000000000022000 19:26:41 executing program 4: clone3(&(0x7f0000000140)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) (fail_nth: 94) 19:26:41 executing program 6: syz_open_dev$sg(0x0, 0x0, 0x0) syz_io_uring_setup(0x4ee5, &(0x7f0000000080)={0x0, 0x1e00}, &(0x7f0000ffd000/0x3000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000040), &(0x7f0000000100)) 19:26:41 executing program 5: perf_event_open(&(0x7f0000000200)={0x2, 0x80, 0x8, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_io_uring_setup(0x44af, &(0x7f0000000100)={0x0, 0x2, 0x0, 0x0, 0x389}, &(0x7f0000000000/0x12000)=nil, &(0x7f000000e000/0x1000)=nil, &(0x7f0000000080), &(0x7f0000000040)) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) clone3(&(0x7f0000000140)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) write(0xffffffffffffffff, &(0x7f0000000100)='?', 0x1) 19:26:41 executing program 1: perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) clone3(&(0x7f0000000140)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0xffffffff00000000, 0x0, 0x0}, 0x58) 19:26:41 executing program 2: perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) clone3(&(0x7f0000000140)={0x0, 0x0, 0x0, 0x0, {0x11}, 0x0, 0x0, 0x0, 0x0}, 0x58) 19:26:41 executing program 3: creat(0x0, 0x0) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) clone3(&(0x7f0000000140)={0x0, 0x0, 0x0, 0x0, {0x101000}, 0x0, 0x0, 0x0, 0x0}, 0x58) 19:26:41 executing program 0: r0 = perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) perf_event_open(&(0x7f0000001d80)={0x2, 0x80, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, r0, 0x0) r1 = perf_event_open(&(0x7f0000001d80)={0x2, 0x80, 0x70, 0x0, 0x0, 0x8, 0x0, 0x0, 0x0, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x0, 0x0, 0x0, 0x4}, 0x0, 0x0, r0, 0x0) readv(r1, &(0x7f0000001200)=[{&(0x7f00000000c0)=""/4096, 0x1000}], 0x1) 19:26:41 executing program 7: perf_event_open(&(0x7f0000000200)={0x2, 0x80, 0x8, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0, 0x13}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = creat(0x0, 0x0) r1 = clone3(&(0x7f0000000140)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) r2 = clone3(&(0x7f0000000580)={0x209a40000, &(0x7f00000000c0), &(0x7f0000000100), &(0x7f00000001c0), {0xe}, &(0x7f0000000480)=""/101, 0x65, &(0x7f0000000500), &(0x7f0000000540)=[r1, r1, r1, r1, r1, r1], 0x6, {r0}}, 0x58) r3 = getpid() r4 = clone3(&(0x7f00000017c0)={0x0, &(0x7f0000000600), &(0x7f0000000640), &(0x7f0000000680), {0xc}, &(0x7f00000006c0)=""/159, 0x9f, &(0x7f0000000780)=""/4096, &(0x7f0000001780)=[r1, r1, r1], 0x3, {r0}}, 0x58) getsockopt$sock_cred(r0, 0x1, 0x11, &(0x7f0000001840)={0x0}, &(0x7f0000001880)=0xc) r6 = fork() r7 = syz_open_dev$sg(&(0x7f0000000400), 0x0, 0x0) r8 = syz_open_dev$evdev(&(0x7f0000000040), 0x0, 0x8802) r9 = fcntl$dupfd(r8, 0x0, r7) r10 = getpgid(r4) get_robust_list(r10, &(0x7f0000001a80)=&(0x7f0000001a40)={&(0x7f0000001980)={&(0x7f0000000500)}, 0x0, &(0x7f0000001a00)={&(0x7f00000019c0)}}, &(0x7f0000001ac0)=0x18) writev(r9, &(0x7f0000000140)=[{&(0x7f0000000300)="0040abe02400030021206cda3b5e5672b89aeddb2a535fbd", 0x7e0}], 0x1) clone3(&(0x7f0000001900)={0x200000, &(0x7f0000000000), &(0x7f0000000040), &(0x7f0000000080), {0x3c}, &(0x7f0000000280)=""/232, 0xe8, &(0x7f0000000380)=""/204, &(0x7f00000018c0)=[r2, r1, r3, r4, r1, r5, r6], 0x7, {r9}}, 0x58) write(0xffffffffffffffff, 0x0, 0x0) [ 1089.604809] FAULT_INJECTION: forcing a failure. [ 1089.604809] name failslab, interval 1, probability 0, space 0, times 0 [ 1089.607130] CPU: 0 PID: 22733 Comm: syz-executor.4 Not tainted 5.10.185 #1 [ 1089.608483] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1089.610086] Call Trace: [ 1089.610602] dump_stack+0x107/0x167 [ 1089.611309] should_fail.cold+0x5/0xa [ 1089.612050] ? create_object.isra.0+0x3a/0xa20 [ 1089.612933] should_failslab+0x5/0x20 [ 1089.613668] kmem_cache_alloc+0x5b/0x310 [ 1089.614476] create_object.isra.0+0x3a/0xa20 [ 1089.615341] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 1089.616350] kmem_cache_alloc+0x159/0x310 [ 1089.617165] anon_vma_clone+0xdc/0x590 [ 1089.617937] anon_vma_fork+0x82/0x640 [ 1089.618678] ? __vm_enough_memory+0x184/0x360 [ 1089.619558] dup_mm+0x861/0x1110 [ 1089.620246] ? vm_area_dup+0x290/0x290 [ 1089.621012] ? __raw_spin_lock_init+0x36/0x110 [ 1089.621905] copy_process+0x24e2/0x6740 [ 1089.622690] ? lock_acquire+0x197/0x470 [ 1089.623461] ? find_held_lock+0x2c/0x110 [ 1089.624269] ? __cleanup_sighand+0xb0/0xb0 [ 1089.625099] ? _copy_from_user+0xfb/0x1b0 [ 1089.625906] kernel_clone+0xe7/0x980 [ 1089.626621] ? lock_acquire+0x197/0x470 [ 1089.627388] ? create_io_thread+0xf0/0xf0 [ 1089.628212] ? ksys_write+0x21a/0x260 [ 1089.628942] ? lock_downgrade+0x6d0/0x6d0 [ 1089.629743] __do_sys_clone3+0x1e5/0x320 [ 1089.630524] ? __do_sys_clone+0x110/0x110 [ 1089.631339] ? rcu_read_lock_any_held+0x75/0xa0 [ 1089.632237] ? vfs_write+0x354/0xa70 [ 1089.632959] ? fput_many+0x2f/0x1a0 [ 1089.633655] ? ksys_write+0x1a9/0x260 [ 1089.634382] ? __ia32_sys_read+0xb0/0xb0 [ 1089.635162] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1089.636169] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1089.637179] ? trace_hardirqs_on+0x5b/0x180 [ 1089.638016] do_syscall_64+0x33/0x40 [ 1089.638736] entry_SYSCALL_64_after_hwframe+0x61/0xc6 [ 1089.639720] RIP: 0033:0x7f0ecd504b19 [ 1089.640440] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1089.643932] RSP: 002b:00007f0ecaa7a188 EFLAGS: 00000246 ORIG_RAX: 00000000000001b3 [ 1089.645390] RAX: ffffffffffffffda RBX: 00007f0ecd617f60 RCX: 00007f0ecd504b19 [ 1089.646754] RDX: 0000000000000000 RSI: 0000000000000058 RDI: 0000000020000140 [ 1089.648123] RBP: 00007f0ecaa7a1d0 R08: 0000000000000000 R09: 0000000000000000 [ 1089.649492] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 1089.650851] R13: 00007fffa049ab2f R14: 00007f0ecaa7a300 R15: 0000000000022000 19:26:42 executing program 4: clone3(&(0x7f0000000140)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) (fail_nth: 95) 19:26:42 executing program 0: r0 = perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) perf_event_open(&(0x7f0000001d80)={0x2, 0x80, 0x70, 0x1, 0x9, 0x8, 0x0, 0x8000000, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x2, @perf_bp={0x0}, 0x8872, 0x0, 0x7, 0x8, 0x0, 0xffffffff}, 0x0, 0x4, r0, 0x0) perf_event_open(&(0x7f00000010c0)={0x5, 0x80, 0x1f, 0x7, 0x14, 0x0, 0x0, 0x7, 0x100, 0x6, 0x1, 0x1, 0x1, 0x1, 0x1, 0x0, 0x1, 0x1, 0x0, 0x1, 0x1, 0x0, 0x0, 0x0, 0x1, 0x3, 0x1, 0x1, 0x1, 0x1, 0x1, 0x0, 0x0, 0x1, 0x1, 0x1, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x7fff, 0x0, @perf_bp={&(0x7f0000000000), 0x2}, 0x11010, 0x0, 0x40, 0x4, 0x7, 0x4a, 0x8, 0x0, 0x10000, 0x0, 0x800}, 0x0, 0x3, r0, 0x2) perf_event_open(&(0x7f0000001d80)={0x2, 0x80, 0x70, 0x0, 0x0, 0x0, 0x0, 0x2, 0x0, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, @perf_bp={0x0, 0x4}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10}, 0x0, 0x0, r0, 0x0) ioctl$AUTOFS_DEV_IOCTL_CLOSEMOUNT(0xffffffffffffffff, 0xc0189375, &(0x7f0000000140)={{0x1, 0x1, 0x18, r0}, './file0\x00'}) readv(r1, &(0x7f0000001200), 0x0) r2 = socket$netlink(0x10, 0x3, 0x0) sendmsg$nl_generic(r2, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000000)={0x2c, 0x16, 0x1, 0x0, 0x0, {0xa}, [@nested={0x18, 0x0, 0x0, 0x1, [@typed={0x14, 0xa, 0x0, 0x0, @ipv6=@private1}]}]}, 0x2c}}, 0x0) fcntl$setpipe(r2, 0x407, 0x800) 19:26:42 executing program 1: perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) clone3(&(0x7f0000000140)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0, 0x8}, 0x58) 19:26:42 executing program 6: syz_open_dev$sg(0x0, 0x0, 0x0) syz_io_uring_setup(0x4ee5, &(0x7f0000000080)={0x0, 0x2000}, &(0x7f0000ffd000/0x3000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000040), &(0x7f0000000100)) [ 1089.763167] netlink: 'syz-executor.0': attribute type 10 has an invalid length. [ 1089.800640] netlink: 'syz-executor.0': attribute type 10 has an invalid length. [ 1089.821629] FAULT_INJECTION: forcing a failure. [ 1089.821629] name failslab, interval 1, probability 0, space 0, times 0 [ 1089.823700] CPU: 0 PID: 23044 Comm: syz-executor.4 Not tainted 5.10.185 #1 [ 1089.824926] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1089.826404] Call Trace: [ 1089.826879] dump_stack+0x107/0x167 [ 1089.827529] should_fail.cold+0x5/0xa [ 1089.828217] ? anon_vma_fork+0x1ff/0x640 [ 1089.828927] should_failslab+0x5/0x20 [ 1089.829582] kmem_cache_alloc+0x5b/0x310 [ 1089.830287] anon_vma_fork+0x1ff/0x640 [ 1089.830962] dup_mm+0x861/0x1110 [ 1089.831555] ? vm_area_dup+0x290/0x290 [ 1089.832248] ? __raw_spin_lock_init+0x36/0x110 [ 1089.833036] copy_process+0x24e2/0x6740 [ 1089.833717] ? lock_acquire+0x197/0x470 [ 1089.834400] ? find_held_lock+0x2c/0x110 [ 1089.835118] ? __cleanup_sighand+0xb0/0xb0 [ 1089.835875] ? _copy_from_user+0xfb/0x1b0 [ 1089.836602] kernel_clone+0xe7/0x980 [ 1089.837248] ? lock_acquire+0x197/0x470 [ 1089.837928] ? create_io_thread+0xf0/0xf0 [ 1089.838646] ? ksys_write+0x21a/0x260 [ 1089.839291] ? lock_downgrade+0x6d0/0x6d0 [ 1089.840016] __do_sys_clone3+0x1e5/0x320 [ 1089.840708] ? __do_sys_clone+0x110/0x110 [ 1089.841432] ? rcu_read_lock_any_held+0x75/0xa0 [ 1089.842217] ? vfs_write+0x354/0xa70 [ 1089.842854] ? fput_many+0x2f/0x1a0 [ 1089.843474] ? ksys_write+0x1a9/0x260 [ 1089.844128] ? __ia32_sys_read+0xb0/0xb0 [ 1089.844822] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1089.845714] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1089.846589] ? trace_hardirqs_on+0x5b/0x180 [ 1089.847326] do_syscall_64+0x33/0x40 [ 1089.847972] entry_SYSCALL_64_after_hwframe+0x61/0xc6 [ 1089.848842] RIP: 0033:0x7f0ecd504b19 [ 1089.849476] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1089.852611] RSP: 002b:00007f0ecaa7a188 EFLAGS: 00000246 ORIG_RAX: 00000000000001b3 [ 1089.853904] RAX: ffffffffffffffda RBX: 00007f0ecd617f60 RCX: 00007f0ecd504b19 [ 1089.855106] RDX: 0000000000000000 RSI: 0000000000000058 RDI: 0000000020000140 [ 1089.856314] RBP: 00007f0ecaa7a1d0 R08: 0000000000000000 R09: 0000000000000000 [ 1089.857513] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 1089.858713] R13: 00007fffa049ab2f R14: 00007f0ecaa7a300 R15: 0000000000022000 19:26:42 executing program 5: perf_event_open(&(0x7f0000000200)={0x2, 0x80, 0x8, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_io_uring_setup(0x44af, &(0x7f0000000100)={0x0, 0x2, 0x0, 0x0, 0x389}, &(0x7f0000000000/0x12000)=nil, &(0x7f000000e000/0x1000)=nil, &(0x7f0000000080), &(0x7f0000000040)) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) clone3(0x0, 0x0) write(0xffffffffffffffff, &(0x7f0000000100)='?', 0x1) 19:26:42 executing program 3: creat(0x0, 0x0) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) clone3(&(0x7f0000000140)={0x0, 0x0, 0x0, 0x0, {0xf0ff1f}, 0x0, 0x0, 0x0, 0x0}, 0x58) 19:26:42 executing program 1: perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) clone3(&(0x7f0000000140)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0, 0x11}, 0x58) 19:26:42 executing program 2: perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) clone3(&(0x7f0000000140)={0x0, 0x0, 0x0, 0x0, {0x11}, 0x0, 0x0, 0x0, 0x0}, 0x58) 19:26:42 executing program 7: perf_event_open(&(0x7f0000000200)={0x5, 0x80, 0x8, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) creat(0x0, 0x0) r0 = syz_open_dev$sg(&(0x7f0000000400), 0x0, 0x0) r1 = syz_open_dev$evdev(&(0x7f0000000040), 0x0, 0x8802) r2 = fcntl$dupfd(r1, 0x0, r0) writev(r2, &(0x7f0000000140)=[{&(0x7f0000000300)="0040abe02400030021206cda3b5e5672b89aeddb2a535fbd", 0x7e0}], 0x1) openat$sr(0xffffffffffffff9c, &(0x7f00000000c0), 0x2000, 0x0) perf_event_open$cgroup(&(0x7f0000000040)={0x1, 0x80, 0x81, 0x7, 0x8, 0x3f, 0x0, 0x5, 0x850, 0x1, 0x0, 0x0, 0x1, 0x0, 0x1, 0x0, 0x0, 0x1, 0x1, 0x1, 0x1, 0x0, 0x0, 0x0, 0x1, 0x1, 0x1, 0x0, 0x0, 0x1, 0x0, 0x1, 0x1, 0x1, 0x0, 0x1, 0x1, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x0, 0x1, 0x1, 0x0, 0x0, 0x80000000, 0x1, @perf_bp, 0x10000, 0x7, 0x7fff, 0xd, 0x4, 0x4, 0x1, 0x0, 0x30, 0x0, 0xd6ea}, r2, 0xd, 0xffffffffffffffff, 0x0) clone3(&(0x7f0000000140)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) write(0xffffffffffffffff, 0x0, 0x0) 19:26:42 executing program 0: r0 = perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) perf_event_open(&(0x7f0000001d80)={0x2, 0x80, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, r0, 0x0) ioctl$AUTOFS_DEV_IOCTL_REQUESTER(0xffffffffffffffff, 0xc018937b, &(0x7f0000000000)={{0x1, 0x1, 0x18, 0xffffffffffffffff, {0xee01, 0xee00}}, './file0\x00'}) setsockopt$inet6_tcp_int(r1, 0x6, 0x9, &(0x7f00000010c0)=0x9, 0x4) perf_event_open(&(0x7f0000001d80)={0x2, 0x80, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, r0, 0x0) 19:26:42 executing program 6: syz_open_dev$sg(0x0, 0x0, 0x0) syz_io_uring_setup(0x4ee5, &(0x7f0000000080)={0x0, 0x2101}, &(0x7f0000ffd000/0x3000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000040), &(0x7f0000000100)) 19:26:42 executing program 6: syz_open_dev$sg(0x0, 0x0, 0x0) syz_io_uring_setup(0x4ee5, &(0x7f0000000080)={0x0, 0x2400}, &(0x7f0000ffd000/0x3000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000040), &(0x7f0000000100)) 19:26:42 executing program 0: r0 = perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r1 = syz_open_dev$sg(&(0x7f0000000400), 0x0, 0x0) r2 = syz_open_dev$evdev(&(0x7f0000000040), 0x0, 0x8802) r3 = fcntl$dupfd(r2, 0x0, r1) writev(r3, &(0x7f0000000140)=[{&(0x7f0000000300)="0040abe02400030021206cda3b5e5672b89aeddb2a535fbd", 0x7e0}], 0x1) ioctl$AUTOFS_DEV_IOCTL_CATATONIC(r3, 0xc0189379, &(0x7f0000000000)={{0x1, 0x1, 0x18, r0}, './file0\x00'}) r4 = perf_event_open(&(0x7f0000001d80)={0x2, 0x80, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, r0, 0x0) perf_event_open(&(0x7f0000001100)={0x0, 0x80, 0x0, 0x3a, 0x1, 0xff, 0x0, 0xfff, 0x10181, 0x1, 0x1, 0x0, 0x1, 0x0, 0x0, 0x1, 0x1, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x0, 0x0, 0x1, 0x0, 0x1, 0x1, 0x1, 0x0, 0x1, 0x0, 0x1, 0x1, 0x0, 0x0, 0x1, 0x1, 0x0, 0x0, 0x1, 0x1, 0x0, 0x0, 0x1, 0x0, 0x0, 0x9, 0x2, @perf_config_ext={0x3f8e, 0x100000000}, 0x40c1, 0x8, 0x2, 0x0, 0x100000001, 0x100, 0x9, 0x0, 0x400, 0x0, 0x9}, 0xffffffffffffffff, 0x9, r4, 0x1) openat$hwrng(0xffffffffffffff9c, &(0x7f00000010c0), 0x400, 0x0) r5 = perf_event_open(&(0x7f0000001d80)={0x2, 0x80, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, r0, 0x0) readv(r5, &(0x7f0000001200)=[{&(0x7f00000000c0)=""/4096, 0x1000}], 0x1) 19:26:42 executing program 3: creat(0x0, 0x0) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) clone3(&(0x7f0000000140)={0x0, 0x0, 0x0, 0x0, {0x1000000}, 0x0, 0x0, 0x0, 0x0}, 0x58) 19:26:54 executing program 2: perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) clone3(&(0x7f0000000140)={0x0, 0x0, 0x0, 0x0, {0x11}, 0x0, 0x0, 0x0, 0x0}, 0x58) 19:26:54 executing program 1: perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) clone3(&(0x7f0000000140)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0, 0x1100}, 0x58) 19:26:54 executing program 7: r0 = perf_event_open(&(0x7f0000000200)={0x2, 0x80, 0x8, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r1 = syz_io_uring_complete(0x0) perf_event_open$cgroup(&(0x7f0000000040)={0x3, 0x80, 0x30, 0x1, 0x5, 0x3, 0x0, 0x7, 0x40004, 0xb87bdce69b7ed2f9, 0x1, 0x1, 0x1, 0x1, 0x0, 0x1, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x1, 0x0, 0x0, 0x1, 0x0, 0x1, 0x1, 0x1, 0x0, 0x1, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x6, 0x3, @perf_bp={&(0x7f0000000000), 0x3}, 0x47020, 0x800, 0x9048, 0x3, 0x3, 0x8, 0x0, 0x0, 0x742, 0x0, 0x10000}, r1, 0x10, r0, 0x2) creat(0x0, 0x0) r2 = clone3(&(0x7f0000000140)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) write(0xffffffffffffffff, 0x0, 0x0) r3 = openat$null(0xffffffffffffff9c, &(0x7f0000000100), 0x20a01, 0x0) perf_event_open(&(0x7f0000000280)={0x2, 0x80, 0xff, 0x9, 0x0, 0xfc, 0x0, 0x1ff, 0x200, 0x8, 0x1, 0x0, 0x1, 0x0, 0x1, 0x1, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x1, 0x3, 0x0, 0x0, 0x1, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x1, 0x1, 0x0, 0x0, 0x1, 0x1, 0x0, 0x1, 0x0, 0x0, 0x0, 0x81, 0x4, @perf_bp={&(0x7f00000000c0), 0x5}, 0x100, 0x2, 0x7, 0x9, 0x7, 0x7fffffff, 0xf9, 0x0, 0x3, 0x0, 0x800000}, r2, 0xe, r3, 0x9) 19:26:54 executing program 3: creat(0x0, 0x0) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) clone3(&(0x7f0000000140)={0x0, 0x0, 0x0, 0x0, {0x8000000}, 0x0, 0x0, 0x0, 0x0}, 0x58) 19:26:54 executing program 6: syz_open_dev$sg(0x0, 0x0, 0x0) syz_io_uring_setup(0x4ee5, &(0x7f0000000080)={0x0, 0x2a00}, &(0x7f0000ffd000/0x3000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000040), &(0x7f0000000100)) 19:26:54 executing program 5: perf_event_open(&(0x7f0000000200)={0x2, 0x80, 0x8, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_io_uring_setup(0x44af, &(0x7f0000000100)={0x0, 0x2, 0x0, 0x0, 0x389}, &(0x7f0000000000/0x12000)=nil, &(0x7f000000e000/0x1000)=nil, &(0x7f0000000080), &(0x7f0000000040)) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) clone3(0x0, 0x0) write(0xffffffffffffffff, &(0x7f0000000100)='?', 0x1) 19:26:54 executing program 4: clone3(&(0x7f0000000140)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) (fail_nth: 96) 19:26:54 executing program 0: r0 = perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x5, 0x40000000000}, 0x0, 0x0, 0xffffffffffffffff, 0x0) pread64(r0, &(0x7f0000000180)=""/175, 0xaf, 0x8473) r1 = syz_open_dev$sg(&(0x7f0000000400), 0x0, 0x0) r2 = syz_open_dev$evdev(&(0x7f0000000040), 0x0, 0x8802) r3 = fcntl$dupfd(r2, 0x0, r1) writev(r3, &(0x7f0000000140)=[{&(0x7f0000000300)="0040abe02400030021206cda3b5e5672b89aeddb2a535fbd", 0x7e0}], 0x1) perf_event_open(&(0x7f00000000c0)={0x0, 0x80, 0x1, 0x81, 0x6, 0x1f, 0x0, 0x401, 0x8102, 0x4, 0x1, 0x1, 0x0, 0x1, 0x0, 0x1, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x1, 0x2, 0x1, 0x0, 0x1, 0x1, 0x1, 0x1, 0x1, 0x1, 0x1, 0x0, 0x1, 0x0, 0x0, 0x1, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x101, 0x2, @perf_bp={&(0x7f0000000000), 0x2}, 0x40202, 0x100, 0x7fff, 0x9, 0x0, 0x8, 0xa8, 0x0, 0x45af, 0x0, 0x401}, 0xffffffffffffffff, 0xa, r3, 0xb) r4 = socket$netlink(0x10, 0x3, 0x0) sendmsg$nl_generic(r4, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000000)={0x2c, 0x16, 0x1, 0x0, 0x0, {0xa}, [@nested={0x18, 0x0, 0x0, 0x1, [@typed={0x14, 0xa, 0x0, 0x0, @ipv6=@private1}]}]}, 0x2c}}, 0x0) syz_genetlink_get_family_id$wireguard(&(0x7f0000000240), r4) perf_event_open(&(0x7f0000001d80)={0x2, 0x80, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, r0, 0x0) perf_event_open(&(0x7f0000001d80)={0x2, 0x80, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, r0, 0x0) [ 1102.655396] netlink: 'syz-executor.0': attribute type 10 has an invalid length. [ 1102.663364] netlink: 4 bytes leftover after parsing attributes in process `syz-executor.0'. [ 1102.664326] FAULT_INJECTION: forcing a failure. [ 1102.664326] name failslab, interval 1, probability 0, space 0, times 0 [ 1102.669412] CPU: 1 PID: 23399 Comm: syz-executor.4 Not tainted 5.10.185 #1 [ 1102.670829] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1102.672506] Call Trace: [ 1102.673043] dump_stack+0x107/0x167 [ 1102.673784] should_fail.cold+0x5/0xa [ 1102.674549] ? create_object.isra.0+0x3a/0xa20 [ 1102.675467] should_failslab+0x5/0x20 [ 1102.676252] kmem_cache_alloc+0x5b/0x310 [ 1102.677073] create_object.isra.0+0x3a/0xa20 [ 1102.677953] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 1102.678974] kmem_cache_alloc+0x159/0x310 [ 1102.679811] anon_vma_fork+0x1ff/0x640 [ 1102.680604] dup_mm+0x861/0x1110 [ 1102.681295] ? vm_area_dup+0x290/0x290 [ 1102.682090] ? __raw_spin_lock_init+0x36/0x110 [ 1102.683018] copy_process+0x24e2/0x6740 [ 1102.683818] ? lock_acquire+0x197/0x470 [ 1102.684630] ? find_held_lock+0x2c/0x110 [ 1102.685469] ? __cleanup_sighand+0xb0/0xb0 [ 1102.686336] ? _copy_from_user+0xfb/0x1b0 [ 1102.687178] kernel_clone+0xe7/0x980 [ 1102.687956] ? lock_acquire+0x197/0x470 [ 1102.688762] ? create_io_thread+0xf0/0xf0 [ 1102.689621] ? ksys_write+0x21a/0x260 [ 1102.690397] ? lock_downgrade+0x6d0/0x6d0 [ 1102.691254] __do_sys_clone3+0x1e5/0x320 [ 1102.692079] ? __do_sys_clone+0x110/0x110 [ 1102.692942] ? rcu_read_lock_any_held+0x75/0xa0 [ 1102.693875] ? vfs_write+0x354/0xa70 [ 1102.694631] ? fput_many+0x2f/0x1a0 [ 1102.695363] ? ksys_write+0x1a9/0x260 [ 1102.696149] ? __ia32_sys_read+0xb0/0xb0 [ 1102.696974] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1102.698031] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1102.699075] ? trace_hardirqs_on+0x5b/0x180 [ 1102.699957] do_syscall_64+0x33/0x40 [ 1102.700712] entry_SYSCALL_64_after_hwframe+0x61/0xc6 [ 1102.701747] RIP: 0033:0x7f0ecd504b19 [ 1102.702498] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1102.706211] RSP: 002b:00007f0ecaa7a188 EFLAGS: 00000246 ORIG_RAX: 00000000000001b3 [ 1102.707743] RAX: ffffffffffffffda RBX: 00007f0ecd617f60 RCX: 00007f0ecd504b19 [ 1102.709183] RDX: 0000000000000000 RSI: 0000000000000058 RDI: 0000000020000140 [ 1102.710615] RBP: 00007f0ecaa7a1d0 R08: 0000000000000000 R09: 0000000000000000 [ 1102.712048] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 1102.713490] R13: 00007fffa049ab2f R14: 00007f0ecaa7a300 R15: 0000000000022000 19:26:55 executing program 1: perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) clone3(&(0x7f0000000140)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0, 0x2000}, 0x58) 19:26:55 executing program 6: syz_open_dev$sg(0x0, 0x0, 0x0) syz_io_uring_setup(0x4ee5, &(0x7f0000000080)={0x0, 0x3000}, &(0x7f0000ffd000/0x3000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000040), &(0x7f0000000100)) 19:26:55 executing program 4: clone3(&(0x7f0000000140)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) (fail_nth: 97) 19:26:55 executing program 5: perf_event_open(&(0x7f0000000200)={0x2, 0x80, 0x8, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_io_uring_setup(0x44af, &(0x7f0000000100)={0x0, 0x2, 0x0, 0x0, 0x389}, &(0x7f0000000000/0x12000)=nil, &(0x7f000000e000/0x1000)=nil, &(0x7f0000000080), &(0x7f0000000040)) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) clone3(0x0, 0x0) write(0xffffffffffffffff, &(0x7f0000000100)='?', 0x1) 19:26:55 executing program 3: creat(0x0, 0x0) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) clone3(&(0x7f0000000140)={0x0, 0x0, 0x0, 0x0, {0x10000200}, 0x0, 0x0, 0x0, 0x0}, 0x58) 19:26:55 executing program 0: r0 = perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r1 = getpgrp(0x0) r2 = syz_open_dev$sg(&(0x7f0000000400), 0x0, 0x0) r3 = syz_open_dev$evdev(&(0x7f0000000040), 0x0, 0x8802) r4 = fcntl$dupfd(r3, 0x0, r2) writev(r4, &(0x7f0000000140)=[{&(0x7f0000000300)="0040abe02400030021206cda3b5e5672b89aeddb2a535fbd", 0x7e0}], 0x1) perf_event_open(&(0x7f0000001140)={0x5, 0x80, 0x5, 0x5, 0x8, 0x2, 0x0, 0x7f, 0x20, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x0, 0x1, 0x1, 0x0, 0x1, 0x1, 0x1, 0x1, 0x0, 0x0, 0x3, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x1, 0x0, 0x1, 0x0, 0x0, 0x1, 0x1, 0x1, 0x0, 0x0, 0x0, 0x0, 0x4, 0x2, @perf_config_ext={0x1000, 0x5}, 0x420, 0x8, 0x8000, 0x4, 0x10000, 0xfffffc00, 0x80, 0x0, 0x1, 0x0, 0xe4ea}, 0xffffffffffffffff, 0x3, r4, 0x2) pidfd_open(r1, 0x0) perf_event_open(&(0x7f00000010c0)={0x5, 0x80, 0x8, 0x4, 0x2, 0x8, 0x0, 0x5, 0x84804, 0x8, 0x0, 0x0, 0x1, 0x0, 0x1, 0x1, 0x0, 0x1, 0x1, 0x1, 0x0, 0x1, 0x1, 0x1, 0x1, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x0, 0x1, 0x1, 0x0, 0x0, 0x1, 0x1, 0x1, 0x1, 0x1, 0x0, 0x0, 0x1, 0x0, 0x9, 0x4, @perf_config_ext={0x7, 0x24}, 0x50, 0x8001, 0x80000009, 0x4, 0x3f, 0x80000, 0x9, 0x0, 0x66c1, 0x0, 0x80000}, r1, 0x5, r0, 0xa) perf_event_open(&(0x7f0000001d80)={0x2, 0x80, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, r0, 0x0) r5 = perf_event_open(&(0x7f0000001d80)={0x2, 0x80, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, r0, 0x0) readv(r5, &(0x7f0000001200)=[{&(0x7f00000000c0)=""/4096, 0x1000}], 0x1) [ 1102.958855] FAULT_INJECTION: forcing a failure. [ 1102.958855] name fail_page_alloc, interval 1, probability 0, space 0, times 0 [ 1102.961347] CPU: 1 PID: 23608 Comm: syz-executor.4 Not tainted 5.10.185 #1 [ 1102.962740] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1102.964440] Call Trace: [ 1102.964982] dump_stack+0x107/0x167 [ 1102.965729] should_fail.cold+0x5/0xa [ 1102.966506] __alloc_pages_nodemask+0x182/0x600 [ 1102.967460] ? __alloc_pages_slowpath.constprop.0+0x2130/0x2130 [ 1102.968707] alloc_pages_current+0x187/0x280 [ 1102.969593] pte_alloc_one+0x16/0x1a0 [ 1102.970360] __pte_alloc+0x1d/0x330 [ 1102.971093] copy_page_range+0x1b77/0x3820 [ 1102.971991] ? up_write+0x191/0x550 [ 1102.972727] ? vm_iomap_memory+0x190/0x190 [ 1102.973586] ? downgrade_write+0x3a0/0x3a0 [ 1102.974449] ? anon_vma_interval_tree_insert+0x277/0x450 [ 1102.975542] ? __vma_link_rb+0x540/0x700 [ 1102.976418] dup_mm+0x8b9/0x1110 [ 1102.977120] ? vm_area_dup+0x290/0x290 [ 1102.977918] ? __raw_spin_lock_init+0x36/0x110 [ 1102.978852] copy_process+0x24e2/0x6740 [ 1102.979658] ? lock_acquire+0x197/0x470 [ 1102.980470] ? find_held_lock+0x2c/0x110 [ 1102.981306] ? __cleanup_sighand+0xb0/0xb0 [ 1102.982166] ? _copy_from_user+0xfb/0x1b0 [ 1102.983013] kernel_clone+0xe7/0x980 [ 1102.983765] ? lock_acquire+0x197/0x470 [ 1102.984581] ? create_io_thread+0xf0/0xf0 [ 1102.985431] ? ksys_write+0x21a/0x260 [ 1102.986203] ? lock_downgrade+0x6d0/0x6d0 [ 1102.987041] __do_sys_clone3+0x1e5/0x320 [ 1102.987888] ? __do_sys_clone+0x110/0x110 [ 1102.988757] ? rcu_read_lock_any_held+0x75/0xa0 [ 1102.989690] ? vfs_write+0x354/0xa70 [ 1102.990443] ? fput_many+0x2f/0x1a0 [ 1102.991184] ? ksys_write+0x1a9/0x260 [ 1102.991964] ? __ia32_sys_read+0xb0/0xb0 [ 1102.992788] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1102.993850] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1102.994896] ? trace_hardirqs_on+0x5b/0x180 [ 1102.995770] do_syscall_64+0x33/0x40 [ 1102.996537] entry_SYSCALL_64_after_hwframe+0x61/0xc6 [ 1102.997563] RIP: 0033:0x7f0ecd504b19 [ 1102.998318] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1103.002072] RSP: 002b:00007f0ecaa7a188 EFLAGS: 00000246 ORIG_RAX: 00000000000001b3 [ 1103.003617] RAX: ffffffffffffffda RBX: 00007f0ecd617f60 RCX: 00007f0ecd504b19 [ 1103.005086] RDX: 0000000000000000 RSI: 0000000000000058 RDI: 0000000020000140 [ 1103.006536] RBP: 00007f0ecaa7a1d0 R08: 0000000000000000 R09: 0000000000000000 [ 1103.007990] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 1103.009441] R13: 00007fffa049ab2f R14: 00007f0ecaa7a300 R15: 0000000000022000 [ 1118.719306] FAULT_INJECTION: forcing a failure. [ 1118.719306] name failslab, interval 1, probability 0, space 0, times 0 [ 1118.721668] CPU: 1 PID: 23721 Comm: syz-executor.4 Not tainted 5.10.185 #1 [ 1118.723082] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1118.724752] Call Trace: [ 1118.725295] dump_stack+0x107/0x167 [ 1118.726032] should_fail.cold+0x5/0xa [ 1118.726807] ? ptlock_alloc+0x1d/0x70 [ 1118.727574] should_failslab+0x5/0x20 [ 1118.728356] kmem_cache_alloc+0x5b/0x310 [ 1118.729177] ptlock_alloc+0x1d/0x70 [ 1118.729914] pte_alloc_one+0x68/0x1a0 [ 1118.730678] __pte_alloc+0x1d/0x330 [ 1118.731413] copy_page_range+0x1b77/0x3820 [ 1118.732313] ? up_write+0x191/0x550 [ 1118.733047] ? vm_iomap_memory+0x190/0x190 [ 1118.733899] ? downgrade_write+0x3a0/0x3a0 [ 1118.734750] ? anon_vma_interval_tree_insert+0x277/0x450 [ 1118.735847] ? __vma_link_rb+0x540/0x700 [ 1118.736677] dup_mm+0x8b9/0x1110 [ 1118.737371] ? vm_area_dup+0x290/0x290 [ 1118.738159] ? __raw_spin_lock_init+0x36/0x110 [ 1118.739082] copy_process+0x24e2/0x6740 [ 1118.739884] ? lock_acquire+0x197/0x470 [ 1118.740695] ? find_held_lock+0x2c/0x110 [ 1118.741533] ? __cleanup_sighand+0xb0/0xb0 [ 1118.742392] ? _copy_from_user+0xfb/0x1b0 [ 1118.743234] kernel_clone+0xe7/0x980 [ 1118.743984] ? lock_acquire+0x197/0x470 [ 1118.744791] ? create_io_thread+0xf0/0xf0 [ 1118.745638] ? ksys_write+0x21a/0x260 [ 1118.746406] ? lock_downgrade+0x6d0/0x6d0 [ 1118.747247] __do_sys_clone3+0x1e5/0x320 [ 1118.748080] ? __do_sys_clone+0x110/0x110 [ 1118.748940] ? rcu_read_lock_any_held+0x75/0xa0 [ 1118.749872] ? vfs_write+0x354/0xa70 [ 1118.750624] ? fput_many+0x2f/0x1a0 [ 1118.751358] ? ksys_write+0x1a9/0x260 [ 1118.752134] ? __ia32_sys_read+0xb0/0xb0 [ 1118.752955] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1118.754013] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1118.755055] ? trace_hardirqs_on+0x5b/0x180 [ 1118.755927] do_syscall_64+0x33/0x40 [ 1118.756685] entry_SYSCALL_64_after_hwframe+0x61/0xc6 [ 1118.757720] RIP: 0033:0x7f0ecd504b19 [ 1118.758473] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1118.762188] RSP: 002b:00007f0ecaa7a188 EFLAGS: 00000246 ORIG_RAX: 00000000000001b3 [ 1118.763723] RAX: ffffffffffffffda RBX: 00007f0ecd617f60 RCX: 00007f0ecd504b19 [ 1118.765159] RDX: 0000000000000000 RSI: 0000000000000058 RDI: 0000000020000140 [ 1118.766700] RBP: 00007f0ecaa7a1d0 R08: 0000000000000000 R09: 0000000000000000 [ 1118.768114] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 1118.769505] R13: 00007fffa049ab2f R14: 00007f0ecaa7a300 R15: 0000000000022000 19:27:11 executing program 4: clone3(&(0x7f0000000140)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) (fail_nth: 98) 19:27:11 executing program 1: perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) clone3(&(0x7f0000000140)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0, 0x3f00}, 0x58) 19:27:11 executing program 2: perf_event_open(&(0x7f0000000200)={0x2, 0x80, 0x8, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) creat(0x0, 0x0) syz_io_uring_setup(0x44af, 0x0, &(0x7f0000000000/0x12000)=nil, &(0x7f000000e000/0x1000)=nil, &(0x7f0000000080), &(0x7f0000000040)) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) clone3(&(0x7f0000000140)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) 19:27:11 executing program 5: perf_event_open(&(0x7f0000000200)={0x2, 0x80, 0x8, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_io_uring_setup(0x44af, &(0x7f0000000100)={0x0, 0x2, 0x0, 0x0, 0x389}, &(0x7f0000000000/0x12000)=nil, &(0x7f000000e000/0x1000)=nil, &(0x7f0000000080), &(0x7f0000000040)) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) clone3(&(0x7f0000000140)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) write(0xffffffffffffffff, 0x0, 0x0) 19:27:11 executing program 7: r0 = perf_event_open(&(0x7f0000000200)={0x2, 0x80, 0x8, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) creat(0x0, 0x0) clone3(&(0x7f0000000140)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) write(0xffffffffffffffff, 0x0, 0x0) ioctl$AUTOFS_IOC_PROTOSUBVER(r0, 0x80049367, &(0x7f0000000080)) r1 = syz_open_dev$sg(&(0x7f0000000400), 0xfffffffffffffffd, 0x484c2) r2 = syz_open_dev$evdev(&(0x7f0000000040), 0x0, 0x8802) r3 = socket$netlink(0x10, 0x3, 0x0) sendmsg$nl_generic(r3, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000000)={0x2c, 0x16, 0x1, 0x0, 0x0, {0xa}, [@nested={0x18, 0x0, 0x0, 0x1, [@typed={0x14, 0xa, 0x0, 0x0, @ipv6=@private1}]}]}, 0x2c}}, 0x0) fcntl$dupfd(0xffffffffffffffff, 0x406, r3) r4 = fcntl$dupfd(r2, 0x0, r1) writev(r4, &(0x7f0000000140)=[{&(0x7f0000000300)="0040abe02400030021206cda3b5e5672b89aeddb2a535fbd", 0x7e0}], 0x1) openat(r4, &(0x7f0000000000)='./file0\x00', 0x20000, 0x9) 19:27:11 executing program 6: syz_open_dev$sg(0x0, 0x0, 0x0) syz_io_uring_setup(0x4ee5, &(0x7f0000000080)={0x0, 0x3600}, &(0x7f0000ffd000/0x3000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000040), &(0x7f0000000100)) 19:27:11 executing program 3: creat(0x0, 0x0) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) clone3(&(0x7f0000000140)={0x0, 0x0, 0x0, 0x0, {0x11000000}, 0x0, 0x0, 0x0, 0x0}, 0x58) 19:27:11 executing program 0: r0 = perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8000, 0x0, @perf_bp={&(0x7f00000010c0)}}, 0x0, 0x3, 0xffffffffffffffff, 0x0) perf_event_open(&(0x7f0000001d80)={0x2, 0x80, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, r0, 0x0) openat$bsg(0xffffffffffffff9c, &(0x7f0000000000), 0x80000, 0x0) r1 = perf_event_open(&(0x7f0000001d80)={0x2, 0x80, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) readv(r1, &(0x7f0000001200)=[{&(0x7f00000000c0)=""/4095, 0xfff}], 0x1) 19:27:11 executing program 6: syz_open_dev$sg(0x0, 0x0, 0x0) syz_io_uring_setup(0x4ee5, &(0x7f0000000080)={0x0, 0x3c00}, &(0x7f0000ffd000/0x3000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000040), &(0x7f0000000100)) [ 1118.822095] netlink: 'syz-executor.7': attribute type 10 has an invalid length. 19:27:11 executing program 4: clone3(&(0x7f0000000140)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) (fail_nth: 99) 19:27:11 executing program 0: r0 = perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) ioctl$BTRFS_IOC_QUOTA_CTL(r0, 0xc0109428, &(0x7f00000010c0)={0x1, 0x4}) perf_event_open(&(0x7f0000001d80)={0x2, 0x80, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, r0, 0x0) ioctl$PERF_EVENT_IOC_SET_FILTER(r0, 0x40082406, &(0x7f0000000000)='*\\/\x10%{)\x00') r1 = perf_event_open(&(0x7f0000001d80)={0x2, 0x80, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, r0, 0x0) readv(r1, &(0x7f0000001200)=[{&(0x7f00000000c0)=""/4096, 0x1000}], 0x1) 19:27:11 executing program 1: perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) clone3(&(0x7f0000000140)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0, 0x4000}, 0x58) 19:27:11 executing program 3: creat(0x0, 0x0) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) clone3(&(0x7f0000000140)={0x0, 0x0, 0x0, 0x0, {0x1ffff000}, 0x0, 0x0, 0x0, 0x0}, 0x58) 19:27:11 executing program 6: syz_open_dev$sg(0x0, 0x0, 0x0) syz_io_uring_setup(0x4ee5, &(0x7f0000000080)={0x0, 0x4000}, &(0x7f0000ffd000/0x3000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000040), &(0x7f0000000100)) [ 1118.968938] FAULT_INJECTION: forcing a failure. [ 1118.968938] name failslab, interval 1, probability 0, space 0, times 0 [ 1118.971527] CPU: 0 PID: 23961 Comm: syz-executor.4 Not tainted 5.10.185 #1 [ 1118.972942] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1118.974615] Call Trace: [ 1118.975166] dump_stack+0x107/0x167 [ 1118.975909] should_fail.cold+0x5/0xa [ 1118.976692] ? create_object.isra.0+0x3a/0xa20 [ 1118.977618] should_failslab+0x5/0x20 [ 1118.978391] kmem_cache_alloc+0x5b/0x310 [ 1118.979219] create_object.isra.0+0x3a/0xa20 [ 1118.980133] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 1118.981163] kmem_cache_alloc+0x159/0x310 [ 1118.982009] anon_vma_fork+0x1ff/0x640 [ 1118.982802] dup_mm+0x861/0x1110 [ 1118.983502] ? vm_area_dup+0x290/0x290 [ 1118.984333] ? __raw_spin_lock_init+0x36/0x110 [ 1118.985267] copy_process+0x24e2/0x6740 [ 1118.986071] ? lock_acquire+0x197/0x470 [ 1118.986874] ? find_held_lock+0x2c/0x110 [ 1118.987716] ? __cleanup_sighand+0xb0/0xb0 [ 1118.988602] ? _copy_from_user+0xfb/0x1b0 [ 1118.989451] kernel_clone+0xe7/0x980 [ 1118.990207] ? lock_acquire+0x197/0x470 [ 1118.991012] ? create_io_thread+0xf0/0xf0 [ 1118.991871] ? ksys_write+0x21a/0x260 [ 1118.992648] ? lock_downgrade+0x6d0/0x6d0 [ 1118.993492] __do_sys_clone3+0x1e5/0x320 [ 1118.994317] ? __do_sys_clone+0x110/0x110 [ 1118.995181] ? rcu_read_lock_any_held+0x75/0xa0 [ 1118.996130] ? vfs_write+0x354/0xa70 [ 1118.996893] ? fput_many+0x2f/0x1a0 [ 1118.997631] ? ksys_write+0x1a9/0x260 [ 1118.998406] ? __ia32_sys_read+0xb0/0xb0 [ 1118.999235] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1119.000320] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1119.001365] ? trace_hardirqs_on+0x5b/0x180 [ 1119.002264] do_syscall_64+0x33/0x40 [ 1119.003024] entry_SYSCALL_64_after_hwframe+0x61/0xc6 [ 1119.004074] RIP: 0033:0x7f0ecd504b19 [ 1119.004836] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1119.008552] RSP: 002b:00007f0ecaa7a188 EFLAGS: 00000246 ORIG_RAX: 00000000000001b3 [ 1119.010099] RAX: ffffffffffffffda RBX: 00007f0ecd617f60 RCX: 00007f0ecd504b19 [ 1119.011554] RDX: 0000000000000000 RSI: 0000000000000058 RDI: 0000000020000140 [ 1119.013061] RBP: 00007f0ecaa7a1d0 R08: 0000000000000000 R09: 0000000000000000 [ 1119.014517] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 1119.015983] R13: 00007fffa049ab2f R14: 00007f0ecaa7a300 R15: 0000000000022000 19:27:11 executing program 1: perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) clone3(&(0x7f0000000140)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0, 0x20010}, 0x58) 19:27:11 executing program 6: syz_open_dev$sg(0x0, 0x0, 0x0) syz_io_uring_setup(0x4ee5, &(0x7f0000000080)={0x0, 0x4200}, &(0x7f0000ffd000/0x3000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000040), &(0x7f0000000100)) 19:27:11 executing program 7: perf_event_open(&(0x7f0000000200)={0x2, 0x80, 0x8, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) creat(0x0, 0x0) clone3(&(0x7f0000000140)={0x41400, 0x0, 0x0, 0x0, {0x26}, 0x0, 0x0, 0x0, 0x0}, 0x58) write(0xffffffffffffffff, 0x0, 0x0) [ 1134.465227] FAULT_INJECTION: forcing a failure. [ 1134.465227] name failslab, interval 1, probability 0, space 0, times 0 [ 1134.466535] CPU: 1 PID: 24305 Comm: syz-executor.4 Not tainted 5.10.185 #1 [ 1134.467278] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1134.468207] Call Trace: [ 1134.468527] dump_stack+0x107/0x167 [ 1134.468928] should_fail.cold+0x5/0xa [ 1134.469343] ? vm_area_dup+0x78/0x290 [ 1134.469755] should_failslab+0x5/0x20 [ 1134.470168] kmem_cache_alloc+0x5b/0x310 [ 1134.470600] ? lock_downgrade+0x6d0/0x6d0 [ 1134.471041] vm_area_dup+0x78/0x290 [ 1134.471431] ? _cond_resched+0x12/0x80 [ 1134.471848] ? copy_page_range+0x24fe/0x3820 [ 1134.472354] ? vm_area_alloc+0x110/0x110 [ 1134.472798] ? up_write+0x191/0x550 [ 1134.473184] ? vm_iomap_memory+0x190/0x190 [ 1134.473639] ? downgrade_write+0x3a0/0x3a0 [ 1134.474104] ? anon_vma_interval_tree_insert+0x277/0x450 [ 1134.474682] ? __vma_link_rb+0x540/0x700 [ 1134.475119] dup_mm+0x44d/0x1110 [ 1134.475501] ? vm_area_dup+0x290/0x290 [ 1134.475921] ? __raw_spin_lock_init+0x36/0x110 [ 1134.476430] copy_process+0x24e2/0x6740 [ 1134.476867] ? lock_acquire+0x197/0x470 [ 1134.477303] ? find_held_lock+0x2c/0x110 [ 1134.477763] ? __cleanup_sighand+0xb0/0xb0 [ 1134.478234] ? _copy_from_user+0xfb/0x1b0 [ 1134.478690] kernel_clone+0xe7/0x980 [ 1134.479099] ? lock_acquire+0x197/0x470 [ 1134.479537] ? create_io_thread+0xf0/0xf0 [ 1134.479996] ? ksys_write+0x21a/0x260 [ 1134.480418] ? lock_downgrade+0x6d0/0x6d0 [ 1134.480878] __do_sys_clone3+0x1e5/0x320 [ 1134.481317] ? __do_sys_clone+0x110/0x110 [ 1134.481775] ? rcu_read_lock_any_held+0x75/0xa0 [ 1134.482282] ? vfs_write+0x354/0xa70 [ 1134.482682] ? fput_many+0x2f/0x1a0 [ 1134.483082] ? ksys_write+0x1a9/0x260 [ 1134.483497] ? __ia32_sys_read+0xb0/0xb0 [ 1134.483946] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1134.484525] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1134.485072] ? trace_hardirqs_on+0x5b/0x180 [ 1134.485548] do_syscall_64+0x33/0x40 [ 1134.485962] entry_SYSCALL_64_after_hwframe+0x61/0xc6 [ 1134.486523] RIP: 0033:0x7f0ecd504b19 [ 1134.486932] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1134.488953] RSP: 002b:00007f0ecaa7a188 EFLAGS: 00000246 ORIG_RAX: 00000000000001b3 [ 1134.489775] RAX: ffffffffffffffda RBX: 00007f0ecd617f60 RCX: 00007f0ecd504b19 [ 1134.490557] RDX: 0000000000000000 RSI: 0000000000000058 RDI: 0000000020000140 [ 1134.491335] RBP: 00007f0ecaa7a1d0 R08: 0000000000000000 R09: 0000000000000000 [ 1134.492114] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000003 [ 1134.492911] R13: 00007fffa049ab2f R14: 00007f0ecaa7a300 R15: 0000000000022000 19:27:26 executing program 5: perf_event_open(&(0x7f0000000200)={0x2, 0x80, 0x8, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_io_uring_setup(0x44af, &(0x7f0000000100)={0x0, 0x2, 0x0, 0x0, 0x389}, &(0x7f0000000000/0x12000)=nil, &(0x7f000000e000/0x1000)=nil, &(0x7f0000000080), &(0x7f0000000040)) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) clone3(&(0x7f0000000140)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) write(0xffffffffffffffff, 0x0, 0x0) 19:27:26 executing program 0: r0 = perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) perf_event_open(&(0x7f0000001d80)={0x2, 0x80, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, r0, 0x0) r1 = socket$netlink(0x10, 0x3, 0x0) sendmsg$nl_generic(r1, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000000)={0x2c, 0x16, 0x1, 0x0, 0x0, {0xa}, [@nested={0x18, 0x0, 0x0, 0x1, [@typed={0x14, 0xa, 0x0, 0x0, @ipv6=@private1}]}]}, 0x2c}}, 0x0) readv(r1, &(0x7f0000001540)=[{&(0x7f00000010c0)=""/130, 0x82}, {&(0x7f0000001180)=""/97, 0x61}, {&(0x7f0000001240)=""/164, 0xa4}, {&(0x7f0000000000)=""/45, 0x2d}, {&(0x7f0000001300)=""/184, 0xb8}, {&(0x7f00000013c0)=""/23, 0x17}, {&(0x7f0000001400)=""/83, 0x53}, {&(0x7f0000001480)=""/135, 0x87}], 0x8) r2 = perf_event_open(&(0x7f0000001d80)={0x2, 0x80, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, r0, 0x0) readv(r2, &(0x7f0000001200)=[{&(0x7f00000000c0)=""/4083, 0xff3}], 0x1) 19:27:26 executing program 3: creat(0x0, 0x0) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) clone3(&(0x7f0000000140)={0x0, 0x0, 0x0, 0x0, {0x20000000}, 0x0, 0x0, 0x0, 0x0}, 0x58) 19:27:26 executing program 4: clone3(&(0x7f0000000140)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) (fail_nth: 100) 19:27:26 executing program 6: syz_open_dev$sg(0x0, 0x0, 0x0) syz_io_uring_setup(0x4ee5, &(0x7f0000000080)={0x0, 0x6000}, &(0x7f0000ffd000/0x3000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000040), &(0x7f0000000100)) 19:27:26 executing program 1: perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) clone3(&(0x7f0000000140)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0, 0x20200}, 0x58) 19:27:26 executing program 2: r0 = perf_event_open(&(0x7f0000000200)={0x2, 0x80, 0x8, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) creat(0x0, 0x0) clone3(&(0x7f0000000140)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) write(0xffffffffffffffff, 0x0, 0x0) ioctl$AUTOFS_IOC_PROTOSUBVER(r0, 0x80049367, &(0x7f0000000080)) r1 = syz_open_dev$sg(&(0x7f0000000400), 0xfffffffffffffffd, 0x484c2) r2 = syz_open_dev$evdev(&(0x7f0000000040), 0x0, 0x8802) r3 = socket$netlink(0x10, 0x3, 0x0) sendmsg$nl_generic(r3, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000000)={0x2c, 0x16, 0x1, 0x0, 0x0, {0xa}, [@nested={0x18, 0x0, 0x0, 0x1, [@typed={0x14, 0xa, 0x0, 0x0, @ipv6=@private1}]}]}, 0x2c}}, 0x0) fcntl$dupfd(0xffffffffffffffff, 0x406, r3) r4 = fcntl$dupfd(r2, 0x0, r1) writev(r4, &(0x7f0000000140)=[{&(0x7f0000000300)="0040abe02400030021206cda3b5e5672b89aeddb2a535fbd", 0x7e0}], 0x1) openat(r4, &(0x7f0000000000)='./file0\x00', 0x20000, 0x9) 19:27:26 executing program 7: perf_event_open(&(0x7f0000000200)={0x2, 0x80, 0x8, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) creat(0x0, 0x0) clone3(&(0x7f0000000140)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) r0 = syz_open_dev$sg(&(0x7f0000000400), 0x0, 0x0) r1 = socket$netlink(0x10, 0x3, 0x0) sendmsg$nl_generic(r1, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000000)={0x2c, 0x16, 0x1, 0x0, 0x0, {0xa}, [@nested={0x18, 0x0, 0x0, 0x1, [@typed={0x14, 0xa, 0x0, 0x0, @ipv6=@private1}]}]}, 0x2c}}, 0x0) ioctl$FS_IOC_FIEMAP(r1, 0xc020660b, &(0x7f0000000440)={0x7, 0x5, 0x6, 0x5, 0x9, [{0xf04f, 0x7fffffff, 0x4, '\x00', 0x505}, {0xffffffffffffffff, 0x1, 0x200, '\x00', 0x480}, {0x94, 0x47d9, 0xffffffffffff8001, '\x00', 0x60e}, {0x1, 0x8, 0x9}, {0x100, 0x100000000000000, 0x4, '\x00', 0x2509}, {0x401, 0x1f, 0x1ff, '\x00', 0x1000}, {0x4, 0x800, 0x800, '\x00', 0x209}, {0x0, 0x6, 0x1, '\x00', 0x1000}, {0x1, 0x3ff, 0x4, '\x00', 0x403}]}) r2 = syz_open_dev$evdev(&(0x7f0000000040), 0x0, 0x8802) r3 = fcntl$dupfd(r2, 0x0, r0) writev(r3, &(0x7f0000000140)=[{&(0x7f0000000300)="0040abe02400030021206cda3b5e5672b89aeddb2a535fbd", 0x7e0}], 0x1) execveat(r3, &(0x7f0000000000)='./file0\x00', &(0x7f00000002c0)=[&(0x7f0000000040)='*\'%{]\\^)\\\'\xb1/}\x00', &(0x7f0000000080)='$Q]\\%[-::\x00', &(0x7f00000000c0)='\x00', &(0x7f0000000100)='\x00', &(0x7f00000001c0)='.^\x00', &(0x7f0000000280)='}%\x00'], &(0x7f0000000400)=[&(0x7f0000000300)='\x00', &(0x7f0000000340)='^+@}[/.\x00', &(0x7f0000000380)='[:]\x00', &(0x7f00000003c0)='\x00'], 0x800) write(0xffffffffffffffff, 0x0, 0x0) [ 1134.527294] netlink: 'syz-executor.0': attribute type 10 has an invalid length. 19:27:26 executing program 1: perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) clone3(&(0x7f0000000140)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0, 0x80000}, 0x58) [ 1134.581042] netlink: 'syz-executor.0': attribute type 10 has an invalid length. 19:27:26 executing program 2: r0 = perf_event_open(&(0x7f0000000200)={0x2, 0x80, 0x8, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) creat(0x0, 0x0) clone3(&(0x7f0000000140)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) write(0xffffffffffffffff, 0x0, 0x0) ioctl$AUTOFS_IOC_PROTOSUBVER(r0, 0x80049367, &(0x7f0000000080)) r1 = syz_open_dev$sg(&(0x7f0000000400), 0xfffffffffffffffd, 0x484c2) r2 = syz_open_dev$evdev(&(0x7f0000000040), 0x0, 0x8802) r3 = socket$netlink(0x10, 0x3, 0x0) sendmsg$nl_generic(r3, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000000)={0x2c, 0x16, 0x1, 0x0, 0x0, {0xa}, [@nested={0x18, 0x0, 0x0, 0x1, [@typed={0x14, 0xa, 0x0, 0x0, @ipv6=@private1}]}]}, 0x2c}}, 0x0) fcntl$dupfd(0xffffffffffffffff, 0x406, r3) r4 = fcntl$dupfd(r2, 0x0, r1) writev(r4, &(0x7f0000000140)=[{&(0x7f0000000300)="0040abe02400030021206cda3b5e5672b89aeddb2a535fbd", 0x7e0}], 0x1) openat(r4, &(0x7f0000000000)='./file0\x00', 0x20000, 0x9) 19:27:26 executing program 3: creat(0x0, 0x0) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) clone3(&(0x7f0000000140)={0x0, 0x0, 0x0, 0x0, {0x3f000000}, 0x0, 0x0, 0x0, 0x0}, 0x58) 19:27:26 executing program 6: syz_open_dev$sg(0x0, 0x0, 0x0) syz_io_uring_setup(0x4ee5, &(0x7f0000000080)={0x0, 0x8d02}, &(0x7f0000ffd000/0x3000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000040), &(0x7f0000000100)) 19:27:26 executing program 4: clone3(&(0x7f0000000140)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) [ 1134.695655] netlink: 'syz-executor.2': attribute type 10 has an invalid length. 19:27:27 executing program 0: r0 = perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r1 = getpgrp(0x0) r2 = pidfd_open(r1, 0x0) r3 = syz_open_dev$sg(&(0x7f0000000400), 0x0, 0x0) r4 = syz_open_dev$evdev(&(0x7f0000000040), 0x0, 0x8902) r5 = socket$netlink(0x10, 0x3, 0x0) sendmsg$nl_generic(r5, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000000)={0x2c, 0x16, 0x1, 0x0, 0x0, {0xa}, [@nested={0x18, 0x0, 0x0, 0x1, [@typed={0x14, 0xa, 0x0, 0x0, @ipv6=@private1}]}]}, 0x2c}}, 0x0) r6 = getpgrp(0x0) pidfd_open(r6, 0x0) getsockopt$inet6_IPV6_IPSEC_POLICY(0xffffffffffffffff, 0x29, 0x22, &(0x7f00000017c0)={{{@in6=@loopback, @in6, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}}, {{@in6=@local}, 0x0, @in=@multicast2}}, &(0x7f00000018c0)=0xe8) ioctl$AUTOFS_DEV_IOCTL_REQUESTER(0xffffffffffffffff, 0xc018937b, &(0x7f0000001900)={{0x1, 0x1, 0x18, r4, {0xffffffffffffffff, 0xee01}}, './file0\x00'}) sendmsg$netlink(0xffffffffffffffff, &(0x7f0000001980)={&(0x7f00000011c0)=@proc={0x10, 0x0, 0x25dfdbfc, 0x4000}, 0xc, &(0x7f0000001780)=[{&(0x7f0000001440)={0x2bc, 0x40, 0x2, 0x70bd2b, 0x25dfdbfb, "", [@nested={0x171, 0x81, 0x0, 0x1, [@generic="440dddd10b68456eee31fef10433225e6a55d49b2eac8c60932b952415f23fc32a5149e2c51868f656b17fa75e1e12cb5e93f408b85c71d9dba24512dbb4e96b5fb50b191c17123a6371ddeede484252f7b1764365d3df14ad34e384b1b6f2cb142e69fd33b4301a2a7cfc7e", @typed={0x8, 0x3e, 0x0, 0x0, @u32=0x5}, @generic="45d6ce7196680a343d582254b7ed899146eb1b56ad8b3d5e3376c8363855d4e9e62cbc33935e94a38298d343199177e327b58be583a3e35a4dd6c6ac1cd573ea97ce3d11d620ce5e6043a4e57b7712fec9fb", @typed={0x8, 0x82, 0x0, 0x0, @uid}, @generic="b33c769b94a47744c5edad464e33ee5ab88b8915aa8c6216de6a296a027f5e2ef85716fb4fc24f68e417ddabbfdc637b83cb8b181546329a3e0e8653979e4a3bdbece3949dc968389f48dddea4dcf7c51a3ff13eef221ca573da6eddcc8f25cd1cac8548f12f1a5b9d5bf68762b202c4d6a67cdf4e36cad3502728248a00626d27163f5945752eff7a5ba88274bcd76034f3551f803a361c7ab160d8a30e09"]}, @nested={0xc, 0x7d, 0x0, 0x1, [@typed={0x8, 0x76, 0x0, 0x0, @pid=r1}]}, @generic="b076af1a477dc9c269f5c204a46c58b376442a0ebb497503247e345c419626b2e8633d4d668477071d7bfa59768f4ece40a8bab825207f8836da9f7b3cf7039dfb39da307ee64b86c7eee4d38c63b030fae28b37e69dc796a1c867733d0e145379ec2be889da819195c4430a854b56ce22ae60a938ae2ee2f7b98defcf89623ebeaf10fb0bfe859e5a00ffcd953c971b1348fefc3034060e7b640a271cc24957688a94a4d960e2ffb18338728021779dbb7befc8f11b9c55f2c6ef27f05fa5669ec02a02a7d082a9122dccbb0b4711a1e608db1ca0ba5d28a543c0eaff6e3c974c707feb8f4fb6eb515b4e129f", @nested={0x3b, 0x7, 0x0, 0x1, [@generic="b3f311fc4ae08b0ba12f51a9e61f3d6a972683", @typed={0x8, 0x23, 0x0, 0x0, @uid}, @typed={0x14, 0x8, 0x0, 0x0, @ipv6=@private0}, @typed={0x8, 0x35, 0x0, 0x0, @uid}]}]}, 0x2bc}, {&(0x7f0000001700)={0x30, 0x19, 0x4, 0x70bd27, 0x25dfdbfb, "", [@nested={0xc, 0x40, 0x0, 0x1, [@typed={0x8, 0x41, 0x0, 0x0, @pid=r1}]}, @typed={0xc, 0x6d, 0x0, 0x0, @u64=0xa7a}, @typed={0x8, 0x5f, 0x0, 0x0, @fd=r5}]}, 0x30}, {&(0x7f0000001740)={0x30, 0x40, 0x300, 0x70bd29, 0x25dfdbfb, "", [@typed={0x4, 0x7c}, @typed={0x8, 0x7, 0x0, 0x0, @u32=0x8}, @nested={0x14, 0x72, 0x0, 0x1, [@typed={0x8, 0x21, 0x0, 0x0, @uid=0xee00}, @typed={0x8, 0x1e, 0x0, 0x0, @u32=0x1}]}]}, 0x30}], 0x3, &(0x7f0000001940)=[@cred={{0x1c, 0x1, 0x2, {r6, r7, r8}}}], 0x20, 0x24000080}, 0x4044041) r9 = fcntl$dupfd(r4, 0x0, r3) writev(r9, &(0x7f0000000140)=[{&(0x7f0000000300)="0040abe02400030021206cda3b5e5672b89aeddb2a535fbd", 0x7e0}], 0x1) r10 = perf_event_open(&(0x7f00000010c0)={0x5, 0x80, 0x67, 0x1, 0x0, 0x7f, 0x0, 0x5, 0x20, 0x3, 0x1, 0x0, 0x1, 0x0, 0x0, 0x1, 0x1, 0x0, 0x1, 0x1, 0x0, 0x1, 0x0, 0x1, 0x0, 0x1, 0x1, 0x1, 0x1, 0x0, 0x1, 0x0, 0x1, 0x1, 0x1, 0x0, 0x1, 0x1, 0x0, 0x1, 0x0, 0x1, 0x1, 0x0, 0x0, 0x1, 0x1, 0x0, 0x0, 0x4, @perf_bp={&(0x7f0000000000), 0x8}, 0xa00, 0x0, 0x0, 0x0, 0x1, 0x6, 0x6, 0x0, 0x6, 0x0, 0x59e}, r1, 0x7, r9, 0x3) perf_event_open(&(0x7f0000001d80)={0x2, 0x80, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, r0, 0x0) ioctl$EVIOCGKEY(r2, 0x80404518, &(0x7f0000001140)=""/88) r11 = perf_event_open(&(0x7f0000001d80)={0x2, 0x80, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, r0, 0x0) fcntl$dupfd(r0, 0x406, r10) readv(r11, &(0x7f0000001200)=[{&(0x7f00000000c0)=""/4096, 0x1000}], 0x1) 19:27:27 executing program 3: creat(0x0, 0x0) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) clone3(&(0x7f0000000140)={0x0, 0x0, 0x0, 0x0, {0x40000000}, 0x0, 0x0, 0x0, 0x0}, 0x58) [ 1134.727890] netlink: 'syz-executor.0': attribute type 10 has an invalid length. 19:27:42 executing program 2: r0 = perf_event_open(&(0x7f0000000200)={0x2, 0x80, 0x8, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) creat(0x0, 0x0) clone3(&(0x7f0000000140)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) write(0xffffffffffffffff, 0x0, 0x0) ioctl$AUTOFS_IOC_PROTOSUBVER(r0, 0x80049367, &(0x7f0000000080)) r1 = syz_open_dev$sg(&(0x7f0000000400), 0xfffffffffffffffd, 0x484c2) r2 = syz_open_dev$evdev(&(0x7f0000000040), 0x0, 0x8802) r3 = socket$netlink(0x10, 0x3, 0x0) sendmsg$nl_generic(r3, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000000)={0x2c, 0x16, 0x1, 0x0, 0x0, {0xa}, [@nested={0x18, 0x0, 0x0, 0x1, [@typed={0x14, 0xa, 0x0, 0x0, @ipv6=@private1}]}]}, 0x2c}}, 0x0) fcntl$dupfd(0xffffffffffffffff, 0x406, r3) r4 = fcntl$dupfd(r2, 0x0, r1) writev(r4, &(0x7f0000000140)=[{&(0x7f0000000300)="0040abe02400030021206cda3b5e5672b89aeddb2a535fbd", 0x7e0}], 0x1) openat(r4, &(0x7f0000000000)='./file0\x00', 0x20000, 0x9) 19:27:42 executing program 5: perf_event_open(&(0x7f0000000200)={0x2, 0x80, 0x8, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_io_uring_setup(0x44af, &(0x7f0000000100)={0x0, 0x2, 0x0, 0x0, 0x389}, &(0x7f0000000000/0x12000)=nil, &(0x7f000000e000/0x1000)=nil, &(0x7f0000000080), &(0x7f0000000040)) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) clone3(&(0x7f0000000140)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) write(0xffffffffffffffff, 0x0, 0x0) 19:27:42 executing program 3: creat(0x0, 0x0) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) clone3(&(0x7f0000000140)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x8, 0x0, 0x0}, 0x58) 19:27:42 executing program 6: syz_open_dev$sg(0x0, 0x0, 0x0) syz_io_uring_setup(0x4ee5, &(0x7f0000000080)={0x0, 0xd901}, &(0x7f0000ffd000/0x3000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000040), &(0x7f0000000100)) 19:27:42 executing program 4: clone3(&(0x7f0000000140)={0x8, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) 19:27:42 executing program 7: r0 = perf_event_open(&(0x7f0000000200)={0x2, 0x80, 0x8, 0x1, 0x0, 0xfc, 0x0, 0xff, 0x800, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2000000, 0x0, @perf_bp={0xfffffffffffffffc}, 0xc0928, 0x0, 0x1}, 0x0, 0x0, 0xffffffffffffffff, 0x0) ioctl$AUTOFS_DEV_IOCTL_TIMEOUT(0xffffffffffffffff, 0xc018937a, &(0x7f0000000040)={{0x1, 0x1, 0x18, r0}, './file0\x00'}) dup2(r0, r1) r2 = creat(0x0, 0x0) clone3(&(0x7f0000000140)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) io_uring_enter(r2, 0x5ca7, 0x1796, 0x2, &(0x7f0000000000)={[0xb9]}, 0x8) write(0xffffffffffffffff, 0x0, 0x0) 19:27:42 executing program 1: perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) clone3(&(0x7f0000000140)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0, 0x101000}, 0x58) 19:27:42 executing program 0: r0 = perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) perf_event_open(&(0x7f0000001d80)={0x2, 0x80, 0x70, 0x0, 0x0, 0xfd, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4, @perf_bp={0x0}, 0x240, 0x0, 0x0, 0x0, 0x0, 0x6}, 0x0, 0x0, r0, 0x0) r1 = perf_event_open(&(0x7f0000001d80)={0x2, 0x80, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, r0, 0x0) readv(r1, &(0x7f0000001200)=[{&(0x7f00000000c0)=""/4096, 0x1000}], 0x1) 19:27:42 executing program 1: perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) clone3(&(0x7f0000000140)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0, 0xf0ff1f}, 0x58) 19:27:42 executing program 6: syz_open_dev$sg(0x0, 0x0, 0x0) syz_io_uring_setup(0x4ee5, &(0x7f0000000080)={0x0, 0xfc03}, &(0x7f0000ffd000/0x3000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000040), &(0x7f0000000100)) 19:27:42 executing program 4: clone3(&(0x7f0000000140)={0x11, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) 19:27:42 executing program 0: r0 = perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r1 = perf_event_open(&(0x7f0000001d80)={0x2, 0x80, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, r0, 0x0) mmap$perf(&(0x7f0000ffe000/0x1000)=nil, 0x1000, 0x200000c, 0x10010, r1, 0x8001) r2 = perf_event_open(&(0x7f0000001d80)={0x2, 0x80, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, r0, 0x0) r3 = syz_open_dev$sg(&(0x7f0000000400), 0x0, 0x0) r4 = syz_open_dev$evdev(&(0x7f0000000040), 0x0, 0x8802) r5 = fcntl$dupfd(r4, 0x0, r3) writev(r5, &(0x7f0000000140)=[{&(0x7f0000000300)="0040abe02400030021206cda3b5e5672b89aeddb2a535fbd", 0x7e0}], 0x1) recvmsg$unix(r5, &(0x7f0000001580)={&(0x7f00000010c0), 0x6e, &(0x7f0000001500)=[{&(0x7f0000001240)=""/200, 0xc8}, {&(0x7f0000000000)=""/46, 0x2e}, {&(0x7f0000001140)=""/50, 0x32}, {&(0x7f0000001180)=""/113, 0x71}, {&(0x7f0000001340)=""/49, 0x31}, {&(0x7f0000001380)=""/230, 0xe6}, {&(0x7f0000001480)=""/106, 0x6a}], 0x7}, 0x40000000) readv(r2, &(0x7f0000001200)=[{&(0x7f00000000c0)=""/4096, 0x1000}], 0x1) 19:27:42 executing program 1: perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) clone3(&(0x7f0000000140)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0, 0x1000000}, 0x58) 19:27:42 executing program 6: syz_open_dev$sg(0x0, 0x0, 0x0) syz_io_uring_setup(0x4ee5, &(0x7f0000000080)={0x0, 0xfe03}, &(0x7f0000ffd000/0x3000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000040), &(0x7f0000000100)) 19:27:56 executing program 4: clone3(&(0x7f0000000140)={0x1100, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) 19:27:56 executing program 5: perf_event_open(&(0x7f0000000200)={0x2, 0x80, 0x8, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_io_uring_setup(0x44af, &(0x7f0000000100)={0x0, 0x2, 0x0, 0x0, 0x389}, &(0x7f0000000000/0x12000)=nil, &(0x7f000000e000/0x1000)=nil, &(0x7f0000000080), &(0x7f0000000040)) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) clone3(&(0x7f0000000140)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) write(0xffffffffffffffff, &(0x7f0000000100), 0x0) 19:27:56 executing program 0: r0 = perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r1 = getpgrp(0x0) pidfd_open(r1, 0x0) perf_event_open(&(0x7f00000010c0)={0x3, 0x80, 0x0, 0x40, 0xa2, 0xc0, 0x0, 0x100000000, 0x0, 0x0, 0x1, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x1, 0x0, 0x1, 0x0, 0x1, 0x0, 0x2, 0x0, 0x1, 0x1, 0x1, 0x1, 0x0, 0x0, 0x1, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x0, 0x1, 0x0, 0x1, 0x0, 0x1ff, 0x0, @perf_config_ext={0x4e65, 0x81}, 0x40002, 0x20, 0x2, 0x9, 0x1ff, 0x1f, 0x6a82, 0x0, 0x7, 0x0, 0x1}, r1, 0x1, 0xffffffffffffffff, 0x8) perf_event_open(&(0x7f0000001d80)={0x2, 0x80, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, r0, 0x0) r2 = perf_event_open(&(0x7f0000001d80)={0x2, 0x80, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, r0, 0x0) readv(r2, &(0x7f0000001200)=[{&(0x7f00000000c0)=""/4096, 0x1000}], 0x1) 19:27:56 executing program 6: syz_open_dev$sg(0x0, 0x0, 0x0) syz_io_uring_setup(0x4ee5, &(0x7f0000000080)={0x0, 0x400000}, &(0x7f0000ffd000/0x3000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000040), &(0x7f0000000100)) 19:27:56 executing program 3: creat(0x0, 0x0) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) clone3(&(0x7f0000000140)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x11, 0x0, 0x0}, 0x58) 19:27:56 executing program 1: perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) clone3(&(0x7f0000000140)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0, 0x8000000}, 0x58) 19:27:56 executing program 7: perf_event_open(&(0x7f0000000200)={0x2, 0x80, 0x8, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = creat(0x0, 0x0) r1 = clone3(&(0x7f0000000140)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) ioctl$AUTOFS_DEV_IOCTL_OPENMOUNT(0xffffffffffffffff, 0xc0189374, &(0x7f0000000100)=ANY=[@ANYBLOB="010000000100000018000000", @ANYRES32=r0, @ANYBLOB="04060000000000002e2f66696c653000"]) ioctl$FAT_IOCTL_SET_ATTRIBUTES(r2, 0x40047211, &(0x7f00000001c0)) r3 = syz_open_dev$sg(&(0x7f0000000400), 0x0, 0x0) r4 = syz_open_dev$evdev(&(0x7f0000000040), 0x0, 0x8802) r5 = openat$vcs(0xffffffffffffff9c, &(0x7f0000000000), 0x800100, 0x0) perf_event_open(&(0x7f0000000080)={0x2, 0x80, 0x0, 0x2, 0x40, 0xff, 0x0, 0x6, 0xe04, 0x1, 0x0, 0x0, 0x0, 0x1, 0x1, 0x1, 0x1, 0x1, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x1, 0x1, 0x0, 0x0, 0x1, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0xe12, 0x0, @perf_config_ext={0x20, 0x8}, 0x188c0, 0x3, 0x3, 0x6, 0x0, 0xeac, 0x6, 0x0, 0x3f, 0x0, 0x10001}, r1, 0xf, r5, 0x8) r6 = fcntl$dupfd(r4, 0x0, r3) writev(r6, &(0x7f0000000140)=[{&(0x7f0000000300)="0040abe02400030021206cda3b5e5672b89aeddb2a535fbd", 0x7e0}], 0x1) ioctl$HIDIOCINITREPORT(r6, 0x4805, 0x0) write(0xffffffffffffffff, 0x0, 0x0) 19:27:56 executing program 2: r0 = perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) perf_event_open(&(0x7f0000001d80)={0x2, 0x80, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, r0, 0x0) r1 = socket$netlink(0x10, 0x3, 0x0) sendmsg$nl_generic(r1, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000000)={0x2c, 0x16, 0x1, 0x0, 0x0, {0xa}, [@nested={0x18, 0x0, 0x0, 0x1, [@typed={0x14, 0xa, 0x0, 0x0, @ipv6=@private1}]}]}, 0x2c}}, 0x0) readv(r1, &(0x7f0000001540)=[{&(0x7f00000010c0)=""/130, 0x82}, {&(0x7f0000001180)=""/97, 0x61}, {&(0x7f0000001240)=""/164, 0xa4}, {&(0x7f0000000000)=""/45, 0x2d}, {&(0x7f0000001300)=""/184, 0xb8}, {&(0x7f00000013c0)=""/23, 0x17}, {&(0x7f0000001400)=""/83, 0x53}, {&(0x7f0000001480)=""/135, 0x87}], 0x8) r2 = perf_event_open(&(0x7f0000001d80)={0x2, 0x80, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, r0, 0x0) readv(r2, &(0x7f0000001200)=[{&(0x7f00000000c0)=""/4083, 0xff3}], 0x1) [ 1164.404340] netlink: 'syz-executor.2': attribute type 10 has an invalid length. 19:27:56 executing program 1: perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) clone3(&(0x7f0000000140)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0, 0x10000200}, 0x58) 19:27:56 executing program 4: clone3(&(0x7f0000000140)={0x2000, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) 19:27:56 executing program 0: r0 = perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) perf_event_open(&(0x7f0000001d80)={0x2, 0x80, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, r0, 0x0) r1 = perf_event_open(&(0x7f0000001d80)={0x2, 0x80, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, r0, 0x0) perf_event_open(&(0x7f00000010c0)={0x4, 0x80, 0x81, 0x5, 0x0, 0x30, 0x0, 0x3, 0x40000, 0x1, 0x1, 0x0, 0x0, 0x1, 0x1, 0x1, 0x0, 0x0, 0x1, 0x1, 0x0, 0x0, 0x1, 0x1, 0x1, 0x2, 0x0, 0x0, 0x1, 0x1, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x1, 0x1, 0x0, 0x1, 0x1, 0x0, 0x1, 0x0, 0x0, 0x4, 0x2, @perf_bp={&(0x7f0000000000), 0x5}, 0x42041, 0x4, 0xffff, 0x4, 0x4, 0x8, 0x21, 0x0, 0xfff, 0x0, 0x4c4c}, 0x0, 0x5, r1, 0xa) perf_event_open(&(0x7f0000001180)={0x2, 0x80, 0x80, 0xff, 0x8, 0x1, 0x0, 0x0, 0x44010, 0x8, 0x1, 0x1, 0x0, 0x1, 0x1, 0x1, 0x1, 0x1, 0x1, 0x1, 0x1, 0x0, 0x1, 0x1, 0x1, 0x0, 0x1, 0x0, 0x1, 0x0, 0x0, 0x1, 0x1, 0x1, 0x1, 0x0, 0x1, 0x0, 0x1, 0x1, 0x0, 0x1, 0x1, 0x0, 0x1, 0x1, 0x1, 0x0, 0x8, 0x0, @perf_bp={&(0x7f0000001140), 0xb}, 0x10080, 0x8, 0x7f, 0x4, 0x8, 0x1, 0x8, 0x0, 0x6, 0x0, 0xffffffffffff1a8c}, 0xffffffffffffffff, 0xc, 0xffffffffffffffff, 0x8) r2 = getpgrp(0x0) r3 = syz_open_dev$sg(&(0x7f0000000400), 0x0, 0x0) r4 = syz_open_dev$evdev(&(0x7f0000000040), 0x0, 0x8802) r5 = fcntl$dupfd(r4, 0x0, r3) writev(r5, &(0x7f0000000140)=[{&(0x7f0000000300)="0040abe02400030021206cda3b5e5672b89aeddb2a535fbd", 0x7e0}], 0x1) perf_event_open(&(0x7f0000001240)={0x2, 0x80, 0x20, 0x4, 0x3f, 0x1, 0x0, 0xc08, 0x4000, 0x2, 0x1, 0x1, 0x1, 0x1, 0x0, 0x0, 0x1, 0x1, 0x1, 0x1, 0x0, 0x0, 0x1, 0x0, 0x0, 0x2, 0x1, 0x0, 0x0, 0x1, 0x1, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x1, 0x1, 0x0, 0x1, 0x0, 0x1, 0x1, 0x0, 0x71d, 0x2, @perf_config_ext={0x0, 0xdba}, 0x18200, 0x0, 0x81, 0x1, 0x100000001, 0x48, 0x1000, 0x0, 0x12, 0x0, 0xffffffffffffd115}, r2, 0xffffffffffffffff, r5, 0x1) readv(r1, &(0x7f0000001200)=[{&(0x7f00000000c0)=""/4096, 0x1000}], 0x1) 19:27:56 executing program 6: syz_open_dev$sg(0x0, 0x0, 0x0) syz_io_uring_setup(0x4ee5, &(0x7f0000000080)={0x0, 0x600000}, &(0x7f0000ffd000/0x3000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000040), &(0x7f0000000100)) 19:27:56 executing program 2: creat(0x0, 0x0) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) clone3(&(0x7f0000000140)={0x80000, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) 19:27:56 executing program 1: perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) clone3(&(0x7f0000000140)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0, 0x11000000}, 0x58) 19:27:56 executing program 0: r0 = perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) perf_event_open(&(0x7f0000001d80)={0x2, 0x80, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, r0, 0x0) perf_event_open(&(0x7f00000010c0)={0x3, 0x80, 0x80, 0x1f, 0x1f, 0x9, 0x0, 0x9, 0x20, 0x1, 0x0, 0x0, 0x1, 0x0, 0x1, 0x1, 0x0, 0x1, 0x1, 0x1, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x1, 0x1, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x1, 0x1, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x9d42, 0x2, @perf_bp={&(0x7f0000000000), 0x4}, 0x50cb2, 0xf000000000000000, 0x7, 0x2, 0x72f5, 0x100, 0x0, 0x0, 0x1f, 0x0, 0xfffffffffffffffa}, 0xffffffffffffffff, 0x9, r0, 0x0) r1 = perf_event_open(&(0x7f0000001d80)={0x2, 0x80, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, r0, 0x0) readv(r1, &(0x7f0000001200)=[{&(0x7f00000000c0)=""/4096, 0x1000}], 0x1) 19:27:56 executing program 4: clone3(&(0x7f0000000140)={0x3f00, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) 19:27:56 executing program 1: perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) clone3(&(0x7f0000000140)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0, 0x1ffff000}, 0x58) 19:27:56 executing program 5: perf_event_open(&(0x7f0000000200)={0x2, 0x80, 0x8, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_io_uring_setup(0x44af, &(0x7f0000000100)={0x0, 0x2, 0x0, 0x0, 0x389}, &(0x7f0000000000/0x12000)=nil, &(0x7f000000e000/0x1000)=nil, &(0x7f0000000080), &(0x7f0000000040)) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) clone3(&(0x7f0000000140)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) write(0xffffffffffffffff, &(0x7f0000000100), 0x0) 19:27:56 executing program 4: clone3(&(0x7f0000000140)={0x4000, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) 19:27:57 executing program 6: syz_open_dev$sg(0x0, 0x0, 0x0) syz_io_uring_setup(0x4ee5, &(0x7f0000000080)={0x0, 0x80ffff}, &(0x7f0000ffd000/0x3000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000040), &(0x7f0000000100)) 19:27:57 executing program 0: r0 = perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) perf_event_open(&(0x7f0000001d80)={0x2, 0x80, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, r0, 0x0) r1 = perf_event_open(&(0x7f0000001d80)={0x2, 0x80, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, r0, 0x0) readv(r1, &(0x7f0000001200)=[{&(0x7f00000000c0)=""/4096, 0x1000}], 0x1) r2 = epoll_create(0x1) readv(r2, &(0x7f0000001180)=[{0x0}, {&(0x7f00000010c0)=""/154, 0x9a}, {&(0x7f0000000000)=""/36, 0x24}, {&(0x7f0000001240)=""/189, 0xbd}, {&(0x7f0000001e00)=""/4096, 0x1000}], 0x5) 19:27:57 executing program 7: perf_event_open(&(0x7f0000000200)={0x2, 0x80, 0x8, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) creat(0x0, 0x0) clone3(&(0x7f0000000140)={0x80000, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) write(0xffffffffffffffff, 0x0, 0x0) 19:27:57 executing program 1: perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) clone3(&(0x7f0000000140)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0, 0x20000000}, 0x58) 19:27:57 executing program 3: creat(0x0, 0x0) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) clone3(&(0x7f0000000140)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x1100, 0x0, 0x0}, 0x58) 19:27:57 executing program 0: r0 = perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) perf_event_open(&(0x7f0000001d80)={0x2, 0x80, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, r0, 0x0) r1 = perf_event_open(&(0x7f00000010c0)={0x3, 0x80, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, r0, 0x0) readv(r1, &(0x7f0000001200)=[{&(0x7f00000000c0)=""/4096, 0x1000}], 0x1) 19:27:57 executing program 3: creat(0x0, 0x0) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) clone3(&(0x7f0000000140)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x2000, 0x0, 0x0}, 0x58) 19:27:57 executing program 6: syz_open_dev$sg(0x0, 0x0, 0x0) syz_io_uring_setup(0x4ee5, &(0x7f0000000080)={0x0, 0xc0ff20}, &(0x7f0000ffd000/0x3000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000040), &(0x7f0000000100)) 19:27:57 executing program 1: perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) clone3(&(0x7f0000000140)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0, 0x3f000000}, 0x58) 19:28:11 executing program 2: creat(0x0, 0x0) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) clone3(&(0x7f0000000140)={0x2000, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) 19:28:11 executing program 0: r0 = perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) perf_event_open(&(0x7f0000001d80)={0x2, 0x80, 0x70, 0x0, 0x0, 0x0, 0x0, 0x2000000, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x0, 0x1}, 0x0, 0xd, r0, 0x0) r1 = perf_event_open(&(0x7f0000001d80)={0x2, 0x80, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, r0, 0x0) readv(r1, &(0x7f0000001200)=[{&(0x7f00000000c0)=""/4096, 0x1000}], 0x1) 19:28:11 executing program 1: perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) clone3(&(0x7f0000000140)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0, 0x40000000}, 0x58) 19:28:11 executing program 5: perf_event_open(&(0x7f0000000200)={0x2, 0x80, 0x8, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_io_uring_setup(0x44af, &(0x7f0000000100)={0x0, 0x2, 0x0, 0x0, 0x389}, &(0x7f0000000000/0x12000)=nil, &(0x7f000000e000/0x1000)=nil, &(0x7f0000000080), &(0x7f0000000040)) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) clone3(&(0x7f0000000140)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) write(0xffffffffffffffff, &(0x7f0000000100), 0x0) 19:28:11 executing program 3: creat(0x0, 0x0) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) clone3(&(0x7f0000000140)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x3f00, 0x0, 0x0}, 0x58) 19:28:11 executing program 6: syz_open_dev$sg(0x0, 0x0, 0x0) syz_io_uring_setup(0x4ee5, &(0x7f0000000080)={0x0, 0xd0ff20}, &(0x7f0000ffd000/0x3000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000040), &(0x7f0000000100)) 19:28:11 executing program 4: clone3(&(0x7f0000000140)={0x20010, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) 19:28:11 executing program 7: perf_event_open(&(0x7f0000000200)={0x2, 0x80, 0x8, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) creat(0x0, 0x0) clone3(&(0x7f0000000140)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) write(0xffffffffffffffff, 0x0, 0x0) r0 = syz_open_dev$sg(&(0x7f0000000400), 0x0, 0x0) r1 = syz_open_dev$evdev(&(0x7f0000000040), 0x0, 0x8802) r2 = fcntl$dupfd(r1, 0x0, r0) writev(r2, &(0x7f0000000140)=[{&(0x7f0000000300)="0040abe02400030021206cda3b5e5672b89aeddb2a535fbd", 0x7e0}], 0x1) openat(r2, &(0x7f0000000000)='./file0\x00', 0x608083, 0x18d) 19:28:11 executing program 6: syz_open_dev$sg(0x0, 0x0, 0x0) syz_io_uring_setup(0x4ee5, &(0x7f0000000080)={0x0, 0x1000000}, &(0x7f0000ffd000/0x3000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000040), &(0x7f0000000100)) 19:28:12 executing program 4: clone3(&(0x7f0000000140)={0x20200, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) 19:28:12 executing program 1: perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) clone3(&(0x7f0000000140)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0, 0x100000800}, 0x58) 19:28:12 executing program 0: r0 = perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x9, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) perf_event_open(&(0x7f0000001d80)={0x2, 0x80, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, r0, 0x0) r1 = socket$netlink(0x10, 0x3, 0x0) sendmsg$nl_generic(r1, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000000)={0x2c, 0x16, 0x1, 0x0, 0x0, {0xa}, [@nested={0x18, 0x0, 0x0, 0x1, [@typed={0x14, 0xa, 0x0, 0x0, @ipv6=@private1}]}]}, 0x2c}}, 0x0) write$binfmt_script(r1, &(0x7f00000010c0)={'#! ', './file0', [{0x20, '![#d]:.'}, {0x20, '#^-'}, {}, {0x20, '-%\xe1&,)\xfa+$'}, {}, {0x20, '}^\xa6,{'}, {}, {0x20, '#'}, {}, {}], 0xa, "44487f1f477ec798c128db979d769f74ef0e25cdd46c07eb12ec8f470ca795ce2a526d86348e12bd6ab70070fe040c027286dd8666fd8f0cd00cb1cc5115aebee513266a91341528c1ec041a3f04615cd72cd51639e6629822ff10688731cf79dda15f295c656a9a4989e5d8adf30dfb31ab04c3f9096cb814641e403743be8083b96f6d06c29655d7e3f4a47ac54cd5bbf7347c01cbb06ed609ef7ec32acc7666608314cc6fe74113446f02baadc16c370bbb9160cc08d4"}, 0xe6) r2 = perf_event_open(&(0x7f0000001d80)={0x2, 0x80, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, r0, 0x0) readv(r2, &(0x7f0000001200)=[{&(0x7f00000000c0)=""/4096, 0x1000}], 0x1) 19:28:12 executing program 7: perf_event_open(&(0x7f0000000200)={0x0, 0x80, 0x8, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x0, 0x0, 0x0, 0x9}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = creat(0x0, 0x0) clone3(&(0x7f0000000140)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) write(0xffffffffffffffff, 0x0, 0x0) openat(r0, &(0x7f0000000000)='./file0\x00', 0x401, 0x8) 19:28:12 executing program 6: syz_open_dev$sg(0x0, 0x0, 0x0) syz_io_uring_setup(0x4ee5, &(0x7f0000000080)={0x0, 0x2000000}, &(0x7f0000ffd000/0x3000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000040), &(0x7f0000000100)) 19:28:12 executing program 4: clone3(&(0x7f0000000140)={0x80000, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) [ 1179.808534] netlink: 'syz-executor.0': attribute type 10 has an invalid length. 19:28:12 executing program 3: creat(0x0, 0x0) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) clone3(&(0x7f0000000140)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x4000, 0x0, 0x0}, 0x58) [ 1179.835756] netlink: 'syz-executor.0': attribute type 10 has an invalid length. 19:28:26 executing program 2: creat(0x0, 0x0) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) clone3(&(0x7f0000000140)={0x2000, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) 19:28:26 executing program 7: r0 = perf_event_open(&(0x7f0000000200)={0x2, 0x80, 0x8, 0x1, 0x0, 0xe0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r1 = creat(0x0, 0x0) r2 = clone3(&(0x7f0000000140)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) r3 = socket$netlink(0x10, 0x3, 0x0) sendmsg$nl_generic(r3, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000000)={0x2c, 0x16, 0x1, 0x0, 0x0, {0xa}, [@nested={0x18, 0x0, 0x0, 0x1, [@typed={0x14, 0xa, 0x0, 0x0, @ipv6=@private1}]}]}, 0x2c}}, 0x0) r4 = syz_open_dev$char_usb(0xc, 0xb4, 0x7) r5 = socket$netlink(0x10, 0x3, 0x0) sendmsg$nl_generic(r5, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000000)={0x2c, 0x16, 0x1, 0x0, 0x0, {0xa}, [@nested={0x18, 0x0, 0x0, 0x1, [@typed={0x14, 0xa, 0x0, 0x0, @ipv6=@private1}]}]}, 0x2c}}, 0x0) r6 = socket$netlink(0x10, 0x3, 0x0) sendmsg$nl_generic(r6, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000000)={0x2c, 0x16, 0x1, 0x0, 0x0, {0xa}, [@nested={0x18, 0x0, 0x0, 0x1, [@typed={0x14, 0xa, 0x0, 0x0, @ipv6=@private1}]}]}, 0x2c}}, 0x0) clone3(&(0x7f00000082c0)={0x4000, &(0x7f0000007140), &(0x7f0000007180), &(0x7f00000071c0)=0x0, {}, &(0x7f0000007200)=""/4096, 0x1000, &(0x7f0000008200)=""/100, &(0x7f0000008280)=[r2], 0x1, {r1}}, 0x58) r8 = socket$netlink(0x10, 0x3, 0x0) sendmsg$nl_generic(r8, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000000)={0x2c, 0x16, 0x1, 0x0, 0x0, {0xa}, [@nested={0x18, 0x0, 0x0, 0x1, [@typed={0x14, 0xa, 0x0, 0x0, @ipv6=@private1}]}]}, 0x2c}}, 0x0) r9 = socket$netlink(0x10, 0x3, 0x0) sendmsg$nl_generic(r9, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000000)={0x2c, 0x16, 0x1, 0x0, 0x0, {0xa}, [@nested={0x18, 0x0, 0x0, 0x1, [@typed={0x14, 0xa, 0x0, 0x0, @ipv6=@private1}]}]}, 0x2c}}, 0x0) r10 = getpgrp(0x0) pidfd_open(r10, 0x0) getresgid(&(0x7f0000008340), &(0x7f0000008380), &(0x7f00000083c0)=0x0) sendmmsg$unix(r1, &(0x7f0000008480)=[{{&(0x7f0000000000)=@abs={0x1, 0x0, 0x4e20}, 0x6e, &(0x7f0000000100)=[{&(0x7f0000000080)="b10775625237dab6e8af695ab8432ea7fcfccc6db4e471c41ad2a5a5123026f0632da02f6d83c55675e0451bc9", 0x2d}, {&(0x7f0000000280)="70458fb54e3cc577c85576cc6c6a43dad30141afa3dd86a74d1c6a934847fc428069db41dd2449148c2643185610f75d1dac1e0e5a9368a83fe160ee5d9b2498b94ac9c7ddef606ba7d4c0e04fc944f5046c1627be9421ac487778787b6f4c17d2ebd5835a93323c68ea89f42a04e11d5dd095a0a7581322e973a8ea1dc1894a6ae3219ee712160f8c1cd98695c94631bdc48928e689f863b81212edc442a27eb8", 0xa1}, {&(0x7f0000000340)="01ab2936e2a16897f327156f9d8434dd82fa5ae139d09b6d82b590c9f7281aef4f9bf5e3d863764aa6d5c755f51e4c6526ea6aaade9c1ad6fe954af58bd5a436eb3332c6219cf6e4819f87c7747e14102ff7324e05484621f2cc9ae77cbf7311de1370fc19621e40c494a5583d503dbdc769d5c55fb581db594ef8d07b3c9afb46776b1d4a0e32d494e4b51f4702da02e3bd82e36ee80fd3df2dac0e644c51e5f041f5f5c835f527fb8e1c5d01e481d6bbdf3d4e4e1235d41cfdcd364f02338a091410318cb682406f1bee3d41201188055f2668de599aaa0b4f6a4341dd8910", 0xe0}, {&(0x7f00000000c0)="ee79e3def6a78b5e8f1f8f71abed8a", 0xf}], 0x4, &(0x7f0000000b80)=[@cred={{0x1c, 0x1, 0x2, {0x0, 0xee01, 0xffffffffffffffff}}}, @cred={{0x1c, 0x1, 0x2, {0x0, 0xee01}}}, @cred={{0x1c, 0x1, 0x2, {r2, 0xee00}}}, @rights={{0x18, 0x1, 0x1, [0xffffffffffffffff, r1]}}, @cred={{0x1c, 0x1, 0x2, {r2, 0xee01}}}, @rights={{0x30, 0x1, 0x1, [0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, r0, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff]}}, @rights={{0x20, 0x1, 0x1, [0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff]}}, @rights={{0x28, 0x1, 0x1, [0xffffffffffffffff, 0xffffffffffffffff, r1, r1, 0xffffffffffffffff, 0xffffffffffffffff]}}, @cred={{0x1c, 0x1, 0x2, {r2, 0x0, 0xffffffffffffffff}}}, @rights={{0x18, 0x1, 0x1, [0xffffffffffffffff, r1]}}], 0x148, 0x4000000}}, {{&(0x7f0000000d00)=@abs={0x0, 0x0, 0x4e22}, 0x6e, &(0x7f0000002040)=[{&(0x7f0000000d80)="009361c225a1064986fed5227be4f8ab9c43229ff094868691f878b407cf0835", 0x20}, {&(0x7f0000000dc0)="bde6c53637ccc83e91688c4e34822fac5d52b251d402a66e1edbf57679b3d981acf115056d9829dd8182e0aab92922edebf20bc7e124d38801a4b21949930a76", 0x40}, {&(0x7f0000000e00)}, {&(0x7f0000000e40)="59765a982f627607552b75a10b55557588c4bd483a6ef9d75f759a2beefd3104ae19f424b44bf0fdf0a30b6e225b1da3367d1ff7f2df6db8e138359cca0dd72bff68a8ef365ae6ef121fbf4497767fc867fec9d64bc7f67bd50ff746f56a", 0x5e}, {&(0x7f0000000ec0)="41cf68ef73fcd876d9a11a4d0cba22b56a01ff6b338991a5d522b3852e225e000db309f1b00136dec409467545b919841b1be9b0c58f07de25a8cf05d1e3d3bb9bbbdf30ff9588fe914aac28ebdfe630225134febe97784a42f9557015d73740a940d35eed6f69c88e300d57a201b69f151ae2bf7e1a0be3c8ddb060bbd02d52f92dcb6d71b5efb81d6b783ab8a6c98c01d8a55e09d34f3aa98d63d41fd02cc7fbf425bcada1c462b770bb0ccf076b251064", 0xb2}, {&(0x7f0000000f80)="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", 0x1000}, {&(0x7f0000001f80)="700e36d6635b745cb7a58b45fb364f3c135dd48808ae9e1359cca2317d3f8acf8e074a215f330871be7f98f41d8190829b46249c1806ec0cb1c876448bdbe91c149dd03e735c8a1f95f0b2c127688a8f5a67f822a0ee23666b6556062776546c52af305f257596e9022c54716f7c4cefb1a635b3df413a1e966274ed14f4bec1ba2217abf02560397c7512649297890aeedd6e155aa57acb12db9b667726d4ecfb11dff3bb2a840f010b13d8b4294c5b", 0xb0}], 0x7, &(0x7f0000002400)=[@cred={{0x1c, 0x1, 0x2, {0x0, 0xee01, 0xffffffffffffffff}}}, @cred={{0x1c}}, @cred={{0x1c, 0x1, 0x2, {r2, 0xee01}}}, @rights={{0x34, 0x1, 0x1, [r0, r1, r0, 0xffffffffffffffff, r1, r0, 0xffffffffffffffff, r1, r1]}}, @cred={{0x1c, 0x1, 0x2, {r2}}}, @rights={{0x30, 0x1, 0x1, [0xffffffffffffffff, r0, 0xffffffffffffffff, r1, 0xffffffffffffffff, 0xffffffffffffffff, r0, 0xffffffffffffffff]}}, @cred={{0x1c, 0x1, 0x2, {0x0, 0xffffffffffffffff}}}], 0x108, 0x8000}}, {{&(0x7f0000002540)=@abs={0x0, 0x0, 0x4e20}, 0x6e, &(0x7f00000048c0)=[{&(0x7f00000025c0)="c899838b3f2ab6d235f5a0a3266b0359b1a935b18a7977d7bf6979481945b3093ab29fa7285ece10436a0b69c036b6b3ff", 0x31}, {&(0x7f0000002600)="c12402de0147aeaa9f6513d18443e0c2954f51178fe220d6fa88b2e25186ac1bb40f4727fac103e44c29080c345cc984adaa012985c12a1321c2b6ef7495b6401cb052ba7dfc235dd92aa5b9a9ae5113b6445f84f5da22bfba8d8d24eb676db2ab488e386ab14c394768e3518ad7e93772c5f3d56cbdf8b0bf75aabf5c60c0228c16c81d436dffa07041a020f174141985c6e375748cd3c90159bc196e34b485c71713513d0a6bb065cf96085fa6b0067075a3683c025a13f4b389ac2a2cdfb1", 0xc0}, {&(0x7f00000026c0)="d61e2d08261a2ff59d3de54b502706d08056d9bd43f6fdcb1e1ae1b6a077369cfa8d6b829e1bc56805952ecbddbecb85ab19e5e99539d48410b4fc1e2d6cca7df6454c48eeb41005470f2ef66115ce52c6a0dd4c110c329884b38fb3feded31dfa188b0839f43211ff009fc9ef753285789e4eaecffaa33be9cbf4e4240c6c958d90ec06b5eed0805a9a80e18c52b180a4a1ee2b185ad1e84ac00845f67fb6a3406ceb2f42da4afacea0a9c2bc46889c7ed42c3e31", 0xb5}, {&(0x7f0000002780)="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", 0x1000}, {&(0x7f0000003780)="540977051623fd6c176d7c451f231989995b4fa1a40ed639fcb20d82711d39cc97278df33c464ade05bd4cb5262aa5cef09692757e5f4538503fb9edad2e1acb8d240d606097ea67058e616085991c765669d0847f", 0x55}, {&(0x7f0000003800)="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", 0x1000}, {&(0x7f0000004800)="1ba4be873c9c920a6b9d6a318671524657e4cccb22955fe14a50c492fae7", 0x1e}, {&(0x7f0000004840)="9d7352bf01e49b8efbe5ec3a0f3cbdb87b0151fd7f203b8bc0219785a517e3d8e0ca9bde77dd30dcc9da6a1577931ebe4a3b0084f340c6e8cdba8b172ec604c47833197c95bbf941fd8990ac833a", 0x4e}], 0x8, &(0x7f0000004c80)=[@cred={{0x1c, 0x1, 0x2, {0x0, 0xee00}}}, @rights={{0x28, 0x1, 0x1, [0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, r0]}}, @rights={{0x38, 0x1, 0x1, [r0, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, r1, r1, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff]}}, @cred={{0x1c, 0x1, 0x2, {r2}}}, @cred={{0x1c, 0x1, 0x2, {r2, 0x0, 0xee00}}}, @cred={{0x1c, 0x1, 0x2, {r2}}}, @rights={{0x20, 0x1, 0x1, [r1, r0, 0xffffffffffffffff, r0]}}, @rights={{0x28, 0x1, 0x1, [0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, r0, 0xffffffffffffffff]}}, @cred={{0x1c, 0x1, 0x2, {0x0, 0xffffffffffffffff, 0xee01}}}], 0x148, 0x400c010}}, {{&(0x7f0000004e00)=@abs={0x1, 0x0, 0x4e24}, 0x6e, &(0x7f0000005100)=[{&(0x7f0000004e80)="48af60e3635418cd96f1b9432853300c4ccf1289b10bc46b7eab1f48ded87ef22f5ec31d1200b362818ff328fe903f73574319a2fe56e12631cc629f1b66bcc2018a0e07ebc002a5c0b23beb75c97107d21d1739f2f7fb1b8a90d93b9c98feaf852f75a8ad6370fba381e49d8ce670295ceea9de0ea59288273a6f7c03f88532c10a97e60d0790069e02ee627fbf777f90dc2d0010546562bef601279489b1239ea501c9668b75ac947d", 0xaa}, {&(0x7f0000004f40)}, {&(0x7f0000004f80)="467c44196f887e0503dfd215495ccf499780b45f8fa55ec46e1d6993a82626cbb0da95687b04683c187953c9886de6d6459f54662ee6012574f0b3074e3ac24f6ab2efe32385d927db1b53d9b2fab96fa1bdc94e10ca35655a026ac6e49793161204d52095c99bd322ffc3369ddf7ccc77b092573f60fd9a5a41302ad31ace5055c526d81823bad412e3ed2dc992ee3db348a9f8a541f8bac9b0046d997f7aacecdde31fbca24e92aa1835", 0xab}, {&(0x7f0000005040)="56eb2dd5ea098392808bb292a2630a091c7ff7a65d95ab92a9a3638a2554cdffbb2fa3bc8dad22e9ca3eddc2287c3085fd3f5fb3cf2415c4f11bec231f314242ddd84bb9811880cadc0ec7", 0x4b}, {&(0x7f00000050c0)="531f90f85f4a99491162", 0xa}], 0x5, &(0x7f00000051c0)=[@rights={{0x14, 0x1, 0x1, [0xffffffffffffffff]}}, @rights={{0x24, 0x1, 0x1, [r0, r0, r1, 0xffffffffffffffff, r0]}}, @cred={{0x1c, 0x1, 0x2, {r2, 0xee00, 0xffffffffffffffff}}}, @rights={{0x18, 0x1, 0x1, [r1, r1]}}], 0x78, 0x1001}}, {{&(0x7f0000005240)=@abs={0x1, 0x0, 0x4e22}, 0x6e, &(0x7f0000005500)=[{&(0x7f00000052c0)="78c45f540d6523cc20c08d0c1ee16f672ae0725c46650d67065ed914991a6b7e56fd1d7e4a51fef58292531cae6e7320475729c35b4dc04673d46fe583645c5e0b5957a2ba405e9c1447fefe36d2da813c88fb4cddbbc46f955ef42a3356b223e50d721372bc5f8c040310fc0a3f6243e2ed47ffc96ebabae51869b2ce280f95fbb449aff563f373107be6679fa0e7f7a251cf1527d4f246ad815dc6a5236e12a4d03c2e09d3c241dafb2c25a873b98d9a4210ad0b1db12f070ece4868b4f398de5253a22a80068ebc31", 0xca}, {&(0x7f00000053c0)='W', 0x1}, {&(0x7f0000005400)="1c7edf326ae1d410a827f06411c3462956b6b4642dfe6beb5a4137b4b46cb9386c031533c4caf0fca746f3f1", 0x2c}, {&(0x7f0000005440)="2e065d41079f852f8ba3b8a49b25f07d375e9aa4f362cb51b221e501fdd1e8bea2ec30dd0e354931ece086b52fecf31e780f6cbf3b139f0ebfb8f7ae1e183458b7da6d3bc7306d56100fa791e5469bf93d8826cf534d989efd12e1584067fcae9c0ad950110493dd924f33070e21847cb6d44a265c1cb405cdfcbed9ad0eacfbc25d9934ddad8e775d33aa14cb04e138e051a07784e06c7606900799f9", 0x9d}], 0x4, &(0x7f0000005580)=[@rights={{0x38, 0x1, 0x1, [0xffffffffffffffff, r0, r1, 0xffffffffffffffff, r1, r1, r1, r1, r0, 0xffffffffffffffff]}}], 0x38, 0x4044005}}, {{&(0x7f00000055c0)=@file={0x1, './file0\x00'}, 0x6e, &(0x7f0000005940)=[{&(0x7f0000005640)="ff17449eb3752b1e02f46efffffe10ff934e5eca72bef1c2eb5bf481295830a5db3f36653571b9a112534756c7cf4387d77d0012001ffc4438cb7a98d2ab73c7649e27e2b4b5250091bc92ee7ee9e26a8566429a2d631a54ce1de4701736893c5e1bf5ef5cf7e25b73c53da1a44151569c9fb330839c186159c973c1a1ea79c04656f6", 0x83}, {&(0x7f0000005700)="94eefbdf315c0e4600e0cd9be3c839c496752194027c3e202669587ca795243eb6dd98b0cc8ce7bd9cbce7", 0x2b}, {&(0x7f0000005740)="2e7f4adf2af7a618763ca335c720cca86101fea4ddc6d9e00c862296f24b535b4138ed789fa521124123ca3873602da357049f05bf023c07e9fa52f942889ce4b7f1b695efb47a534dfd9129920ca06ae56acf2eeda1c1429a63365e9160765d6c6ccde73aeabe7049d3aa6f3f480c5f121f030c01be90a073e371425bc0d0a1ed5d76fd194a26e8d30b23cd0339bd06168e93fc204865beb2afea5dcd4bc310a9f96a69584d09d5a6b18b172c906a5e4c31f3065cea7f8ed3b1788ee5c82a2e6c7ed34119ed0f16259e438cb6258b66c7cc4652b036166c0fa990916cc4f08b0c4b0e55d031f8023c8a1f44d9", 0xed}, {&(0x7f0000005840)="cdf39ed70de4bb09988b4270748c1ae57b622dd20e66576fe66937c946c12be9324b4ebd9f8a253b5285fc14a1164db109d1fa1727521136cd426ee9d10b3cc20b384655066997e82d8716fe00a196ff23f81d37778c104002e98e9eefe8da28b433803a40da1fd0f94e1f9a96c6b51a3f22b444c5512099f4cdb7843af6f723a6be16bad20b9df7f6602d55258d1ee0e5ce4fbf4591ca7ed4953e26a9b07b4067982950ce11dab5d5edfe2d592a848efab5c18fe23149178f1433e97512ea7686d5186c5ec64d09d4b7b11e668a5bdd1d3ef3df61506ba8e7035653ce1c2e5fa0261fe5", 0xe4}], 0x4, &(0x7f0000005b00)=[@rights={{0x18, 0x1, 0x1, [0xffffffffffffffff, 0xffffffffffffffff]}}, @rights={{0x1c, 0x1, 0x1, [r0, 0xffffffffffffffff, 0xffffffffffffffff]}}, @rights={{0x14, 0x1, 0x1, [r0]}}, @cred={{0x1c, 0x1, 0x2, {r2}}}, @rights={{0x30, 0x1, 0x1, [r3, r0, r0, r0, r4, r0, r1, r5]}}, @rights={{0x14, 0x1, 0x1, [r6]}}], 0xb8, 0x8804}}, {{&(0x7f0000005bc0)=@file={0xe6d58bc8b6287b7d, './file0\x00'}, 0x6e, &(0x7f0000005d00)=[{&(0x7f0000005c40)="19bec5d335d90b7f43dbf57c7023ab52c039d0e92334286f66d3737aca4500b8e225ff3fc12351868e980e0a1eb995f633a3b1cf8846cd1c30260ee09471bb22ad1064c65cfdaed9e1695a2b9823c4d20eeeec26971b52c7a4e141a95a7515692299686b98ca800e9d12001678acb2944eb3eb5f597de78a5da357c81d1b414f92c665f1f0e849d2ec1924ad0c6b63203631166723ff201e5946823124451e84a7f03363de2dbffad675e2a4ea53409dc7baa18cfadebd68b9", 0xb9}], 0x1, &(0x7f0000005d40)=[@rights={{0x14, 0x1, 0x1, [r1]}}], 0x18, 0x4000000}}, {{&(0x7f0000005d80)=@abs={0x0, 0x0, 0x4e22}, 0x6e, &(0x7f00000070c0)=[{&(0x7f0000005e00)="532af08406ff4cc54afafc6ab6825b9cdf5855b3eb1b3a36d293a7c82c78b0c7932f7d79e3e012035c1ee8937e74c0deb780f301f7565c1dd2e8968736c75da648939ba72e477b7f4d24f7fe10ded5cb7a0fe84ad717e56485a63f4d007fabd84dd1d84acdd59fb5a72725080ee628e1cd8a266a31195b7ddab58c8b2451a8a48b8c4c37ab29d54fd13fd18249b2ff7432b91b30d9442a358229225d7348b2b15b634973f5740b1d206a3f9877e5945eca4a263629dd6ee048601d9b38192ad023f2bdd5401e1bfd2c82e9b8b6c5ecb3e7e1069ffc6a87542622d220ab03addb136dc5c2d304ead6f6c5c7f82fce78f4ab2914c0", 0xf4}, {&(0x7f0000005f00)="2b9558e363b834e5a023d7efb3971b7766eae24a4430a70d2960742894bae5a4ecbbc40a3c3dd8795b9b917b798a133624057a9fc8b5ed81f12698e760ba588f2b966dad2cde95b597db038aa0c63ec00231b340462f6018f94833f48e858280a686001c6980ac0cc4f7c4c2f84ad1d83bf247211119a006748604f3eb95dacd684ba0a841ba5f10e2fa8c50f9a00b24dac1b5ab08fc47fcfb64c55c355ae05144b5a5b34b4d8fb2b85757b95af2fc95b0c31a37", 0xb4}, {&(0x7f0000005fc0)="dea8e4ff1518fb3b41284d47781f2de8a0b60bdbafec93278c47c2b2ba49335cddfdde11dfe46c5b71e2a20ec4", 0x2d}, {&(0x7f0000006000)="da56d6814a7237c6eb95f23922e99957b6412ac759251c50ec74349a1c90164a0fc886718f06b126b98718", 0x2b}, {&(0x7f0000006040)="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", 0x1000}, {&(0x7f0000007040)="3892c9968fb37ddf977830ccf77740bdac719d62d6d4c2de271377f140acb6f99b65e34c78cd97661dd4117a32c648f48bf1f55cfb61a238e74f7fa7d0029681672e71d1da2f3579c2aca186dfeb3366374a6625b6ab4f194fe33434b486f2f0f2432c694a49170850", 0x69}], 0x6, &(0x7f0000008400)=[@cred={{0x1c, 0x1, 0x2, {r7, 0xee01, 0xee01}}}, @cred={{0x1c, 0x1, 0x2, {r2, 0xffffffffffffffff, 0xffffffffffffffff}}}, @rights={{0x1c, 0x1, 0x1, [r8, r1, r9]}}, @cred={{0x1c, 0x1, 0x2, {r10, 0xffffffffffffffff, r11}}}], 0x80, 0x20008001}}], 0x8, 0x800) write(0xffffffffffffffff, 0x0, 0x0) 19:28:26 executing program 5: perf_event_open(&(0x7f0000000200)={0x2, 0x80, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) creat(0x0, 0x0) syz_io_uring_setup(0x44af, &(0x7f0000000100)={0x0, 0x2, 0x0, 0x0, 0x389}, &(0x7f0000000000/0x12000)=nil, &(0x7f000000e000/0x1000)=nil, &(0x7f0000000080), &(0x7f0000000040)) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) clone3(&(0x7f0000000140)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) 19:28:26 executing program 6: syz_open_dev$sg(0x0, 0x0, 0x0) syz_io_uring_setup(0x4ee5, &(0x7f0000000080)={0x0, 0x3000000}, &(0x7f0000ffd000/0x3000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000040), &(0x7f0000000100)) 19:28:26 executing program 1: perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) clone3(&(0x7f0000000140)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0, 0x1b0c51f000}, 0x58) 19:28:26 executing program 0: r0 = perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) perf_event_open(&(0x7f0000001d80)={0x2, 0x80, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4, @perf_config_ext={0x5}}, 0x0, 0x0, r0, 0x0) r1 = perf_event_open(&(0x7f0000001d80)={0x2, 0x80, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, r0, 0x0) readv(r1, &(0x7f0000001200)=[{&(0x7f00000000c0)=""/4096, 0x1000}], 0x1) r2 = socket$netlink(0x10, 0x3, 0x0) sendmsg$nl_generic(r2, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000000)={0x2c, 0x16, 0x1, 0x0, 0x0, {0xa}, [@nested={0x18, 0x0, 0x0, 0x1, [@typed={0x14, 0xa, 0x0, 0x0, @ipv6=@private1}]}]}, 0x2c}}, 0x0) ioctl$EXT4_IOC_MOVE_EXT(r0, 0xc028660f, &(0x7f0000000000)={0x0, r2, 0x6, 0xfffffffffffffffd, 0x8, 0x1}) socket$netlink(0x10, 0x3, 0xc) 19:28:26 executing program 3: creat(0x0, 0x0) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) clone3(&(0x7f0000000140)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x20010, 0x0, 0x0}, 0x58) 19:28:26 executing program 4: clone3(&(0x7f0000000140)={0x101000, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) [ 1194.716423] netlink: 'syz-executor.0': attribute type 10 has an invalid length. 19:28:27 executing program 6: syz_open_dev$sg(0x0, 0x0, 0x0) syz_io_uring_setup(0x4ee5, &(0x7f0000000080)={0x0, 0x4000000}, &(0x7f0000ffd000/0x3000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000040), &(0x7f0000000100)) 19:28:27 executing program 4: clone3(&(0x7f0000000140)={0xf0ff1f, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) 19:28:27 executing program 1: perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) clone3(&(0x7f0000000140)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0, 0x10000000000}, 0x58) 19:28:27 executing program 0: r0 = perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4, 0x0, @perf_bp={&(0x7f0000000000), 0x7}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) perf_event_open(&(0x7f0000001d80)={0x2, 0x80, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x0, 0x2}, 0x0, 0x0, r0, 0x0) r1 = perf_event_open(&(0x7f0000001d80)={0x2, 0x80, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, r0, 0x0) readv(r1, &(0x7f0000001200)=[{&(0x7f00000000c0)=""/4096, 0x1000}], 0x1) 19:28:27 executing program 6: syz_open_dev$sg(0x0, 0x0, 0x0) syz_io_uring_setup(0x4ee5, &(0x7f0000000080)={0x0, 0x6000000}, &(0x7f0000ffd000/0x3000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000040), &(0x7f0000000100)) 19:28:27 executing program 4: clone3(&(0x7f0000000140)={0x1000000, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) 19:28:27 executing program 3: creat(0x0, 0x0) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) clone3(&(0x7f0000000140)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x20200, 0x0, 0x0}, 0x58) 19:28:27 executing program 1: perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) clone3(&(0x7f0000000140)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0, 0x2a0286971000}, 0x58) 19:28:40 executing program 2: creat(0x0, 0x0) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) clone3(&(0x7f0000000140)={0x2000, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) 19:28:40 executing program 3: creat(0x0, 0x0) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) clone3(&(0x7f0000000140)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x80000, 0x0, 0x0}, 0x58) 19:28:40 executing program 0: r0 = perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) perf_event_open(&(0x7f0000001d80)={0x2, 0x80, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r1 = perf_event_open(&(0x7f0000001d80)={0x2, 0x80, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, r0, 0x0) r2 = socket$netlink(0x10, 0x3, 0x0) sendmsg$nl_generic(r2, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000000)={0x2c, 0x16, 0x1, 0x0, 0x0, {0xa}, [@nested={0x18, 0x0, 0x0, 0x1, [@typed={0x14, 0xa, 0x0, 0x0, @ipv6=@private1}]}]}, 0x2c}}, 0x0) sendfile(r0, r2, 0x0, 0x0) socketpair(0x10, 0x5, 0x602a, &(0x7f00000010c0)={0xffffffffffffffff}) sendmsg$IPSET_CMD_GET_BYNAME(r3, &(0x7f00000011c0)={&(0x7f0000001100)={0x10, 0x0, 0x0, 0x1}, 0xc, &(0x7f0000001180)={&(0x7f0000001140)={0x24, 0xe, 0x6, 0x3, 0x0, 0x0, {0x3, 0x0, 0x6}, [@IPSET_ATTR_PROTOCOL={0x5}, @IPSET_ATTR_PROTOCOL={0x5}]}, 0x24}}, 0x40) readv(r1, &(0x7f0000001200)=[{&(0x7f00000000c0)=""/4096, 0x1000}], 0x1) 19:28:40 executing program 6: syz_open_dev$sg(0x0, 0x0, 0x0) syz_io_uring_setup(0x4ee5, &(0x7f0000000080)={0x0, 0x8000000}, &(0x7f0000ffd000/0x3000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000040), &(0x7f0000000100)) 19:28:40 executing program 5: perf_event_open(&(0x7f0000000200)={0x2, 0x80, 0x8, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_io_uring_setup(0x44af, &(0x7f0000000100)={0x0, 0x2, 0x0, 0x0, 0x389}, &(0x7f0000000000/0x12000)=nil, &(0x7f000000e000/0x1000)=nil, &(0x7f0000000080), &(0x7f0000000040)) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) clone3(&(0x7f0000000140)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) (fail_nth: 1) write(0xffffffffffffffff, &(0x7f0000000100)='?', 0x1) 19:28:40 executing program 7: r0 = getpgid(0xffffffffffffffff) perf_event_open(&(0x7f0000000200)={0x2, 0x80, 0x8, 0x1, 0x0, 0x0, 0x0, 0x80000000, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x95, 0xd405, 0xfffffff9}, r0, 0x0, 0xffffffffffffffff, 0x0) creat(0x0, 0x0) clone3(&(0x7f0000000140)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) write(0xffffffffffffffff, 0x0, 0x0) r1 = socket$netlink(0x10, 0x3, 0x0) sendmsg$nl_generic(r1, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000000)={0x2c, 0x16, 0x1, 0x0, 0x0, {0xa}, [@nested={0x18, 0x0, 0x0, 0x1, [@typed={0x14, 0xa, 0x0, 0x0, @ipv6=@private1}]}]}, 0x2c}}, 0x0) r2 = socket$inet_udp(0x2, 0x2, 0x0) dup2(r1, r2) [ 1207.797005] netlink: 'syz-executor.0': attribute type 10 has an invalid length. 19:28:40 executing program 4: clone3(&(0x7f0000000140)={0x8000000, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) 19:28:40 executing program 1: perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) clone3(&(0x7f0000000140)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0, 0x553a278d0000}, 0x58) [ 1207.851706] FAULT_INJECTION: forcing a failure. [ 1207.851706] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 1207.855333] CPU: 1 PID: 27053 Comm: syz-executor.5 Not tainted 5.10.185 #1 [ 1207.856911] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1207.858815] Call Trace: [ 1207.859432] dump_stack+0x107/0x167 [ 1207.860272] should_fail.cold+0x5/0xa [ 1207.861157] _copy_from_user+0x2e/0x1b0 [ 1207.862073] copy_clone_args_from_user+0x147/0x790 [ 1207.863181] ? __lockdep_reset_lock+0x180/0x180 [ 1207.864244] ? sighand_ctor+0x40/0x40 [ 1207.865109] ? find_held_lock+0x2c/0x110 [ 1207.866042] ? ksys_write+0x21a/0x260 [ 1207.866900] ? lock_downgrade+0x6d0/0x6d0 19:28:40 executing program 6: syz_open_dev$sg(0x0, 0x0, 0x0) syz_io_uring_setup(0x4ee5, &(0x7f0000000080)={0x0, 0xc000000}, &(0x7f0000ffd000/0x3000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000040), &(0x7f0000000100)) [ 1207.867849] __do_sys_clone3+0x9d/0x320 [ 1207.868904] ? __do_sys_clone+0x110/0x110 [ 1207.869867] ? __mutex_unlock_slowpath+0xe1/0x600 [ 1207.870983] ? wait_for_completion_io+0x270/0x270 [ 1207.872085] ? rcu_read_lock_any_held+0x75/0xa0 [ 1207.873159] ? vfs_write+0x354/0xa70 [ 1207.874061] ? fput_many+0x2f/0x1a0 [ 1207.874893] ? ksys_write+0x1a9/0x260 [ 1207.875757] ? __ia32_sys_read+0xb0/0xb0 [ 1207.876699] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1207.877908] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1207.878986] ? trace_hardirqs_on+0x5b/0x180 [ 1207.879854] do_syscall_64+0x33/0x40 [ 1207.880584] entry_SYSCALL_64_after_hwframe+0x61/0xc6 [ 1207.881617] RIP: 0033:0x7f33aaad7b19 [ 1207.882344] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1207.886037] RSP: 002b:00007f33a804d188 EFLAGS: 00000246 ORIG_RAX: 00000000000001b3 [ 1207.887526] RAX: ffffffffffffffda RBX: 00007f33aabeaf60 RCX: 00007f33aaad7b19 [ 1207.888979] RDX: 0000000000000000 RSI: 0000000000000058 RDI: 0000000020000140 [ 1207.890397] RBP: 00007f33a804d1d0 R08: 0000000000000000 R09: 0000000000000000 [ 1207.891835] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 1207.893247] R13: 00007ffc9340abef R14: 00007f33a804d300 R15: 0000000000022000 19:28:40 executing program 1: perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) clone3(&(0x7f0000000140)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0, 0x8d273a550000}, 0x58) 19:28:40 executing program 0: r0 = perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xc00}, 0x0, 0x0, 0xffffffffffffffff, 0x0) perf_event_open(&(0x7f0000001d80)={0x2, 0x80, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, r0, 0x0) r1 = perf_event_open(&(0x7f0000001d80)={0x2, 0x80, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, r0, 0x0) readv(r1, &(0x7f0000001200)=[{&(0x7f00000000c0)=""/4096, 0x1000}], 0x1) 19:28:40 executing program 1: perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) clone3(&(0x7f0000000140)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0, 0x2001000000000}, 0x58) 19:28:40 executing program 7: perf_event_open(&(0x7f0000000200)={0x2, 0x80, 0x8, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) creat(0x0, 0x0) clone3(&(0x7f0000000140)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) write(0xffffffffffffffff, 0x0, 0x0) creat(&(0x7f0000000000)='./file0\x00', 0x44) 19:28:40 executing program 4: clone3(&(0x7f0000000140)={0x10000200, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) 19:28:40 executing program 6: syz_open_dev$sg(0x0, 0x0, 0x0) syz_io_uring_setup(0x4ee5, &(0x7f0000000080)={0x0, 0x10000000}, &(0x7f0000ffd000/0x3000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000040), &(0x7f0000000100)) 19:28:40 executing program 3: creat(0x0, 0x0) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) clone3(&(0x7f0000000140)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x101000, 0x0, 0x0}, 0x58) 19:28:56 executing program 2: perf_event_open(&(0x7f0000000200)={0x2, 0x80, 0x8, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) creat(0x0, 0x0) syz_io_uring_setup(0x44af, &(0x7f0000000100)={0x0, 0x2, 0x0, 0x0, 0x389}, &(0x7f0000000000/0x12000)=nil, &(0x7f000000e000/0x1000)=nil, &(0x7f0000000080), &(0x7f0000000040)) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) clone3(&(0x7f0000000140)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) (fail_nth: 1) 19:28:56 executing program 0: r0 = perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) perf_event_open(&(0x7f0000001d80)={0x2, 0x80, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, r0, 0x0) r1 = perf_event_open(&(0x7f0000001d80)={0x2, 0x80, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x0, 0x0, 0x4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8}, 0x0, 0x0, r0, 0x0) openat(0xffffffffffffff9c, &(0x7f0000000000)='./file0\x00', 0x428a02, 0x40) readv(r1, &(0x7f0000001200)=[{&(0x7f00000000c0)=""/4096, 0x1000}], 0x1) 19:28:56 executing program 6: syz_open_dev$sg(0x0, 0x0, 0x0) syz_io_uring_setup(0x4ee5, &(0x7f0000000080)={0x0, 0x12000000}, &(0x7f0000ffd000/0x3000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000040), &(0x7f0000000100)) 19:28:56 executing program 3: creat(0x0, 0x0) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) clone3(&(0x7f0000000140)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0xf0ff1f, 0x0, 0x0}, 0x58) 19:28:56 executing program 4: clone3(&(0x7f0000000140)={0x11000000, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) 19:28:56 executing program 5: perf_event_open(&(0x7f0000000200)={0x2, 0x80, 0x8, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_io_uring_setup(0x44af, &(0x7f0000000100)={0x0, 0x2, 0x0, 0x0, 0x389}, &(0x7f0000000000/0x12000)=nil, &(0x7f000000e000/0x1000)=nil, &(0x7f0000000080), &(0x7f0000000040)) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) clone3(&(0x7f0000000140)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) write(0xffffffffffffffff, &(0x7f0000000100)='?', 0x1) 19:28:56 executing program 1: perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) clone3(&(0x7f0000000140)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0, 0x2020000000000}, 0x58) 19:28:56 executing program 7: perf_event_open(&(0x7f0000000200)={0x2, 0x80, 0x8, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) creat(0x0, 0x0) r0 = clone3(&(0x7f0000000140)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) r1 = socket$netlink(0x10, 0x3, 0x0) r2 = socket$netlink(0x10, 0x3, 0x0) sendmsg$nl_generic(r2, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000000)={0x2c, 0x16, 0x1, 0x0, 0x0, {0xa}, [@nested={0x18, 0x0, 0x0, 0x1, [@typed={0x14, 0xa, 0x0, 0x0, @ipv6=@private1}]}]}, 0x2c}}, 0x0) sendmsg$nl_generic(r2, &(0x7f00000001c0)={&(0x7f0000000040), 0xc, &(0x7f0000000080)={&(0x7f0000000280)={0x22c, 0x1d, 0x800, 0x70bd29, 0x25dfdbfd, {0x1d}, [@generic="a0b9a327c7cdb58e6734340fb85f87089912229bc03f34e3ffb6bd7a48fc4ff72e1856f9eefa33c2b6ba8f424d752f8e70d0f1e17746b0e97408ed1c10df2ab67686ee7d532362b76db3e5bc8ef6bcbd2d74fe7ac68e47fb66ffe81b6006511040da49ed90b4f8a4f10baff2123e140ce89a031c1f8d3976fa0011cccbb53f99a9f02256a2", @generic="fb91037d1e3e805d462e03a9debc162f8ef09345bd15ebd2cd35009c81be3053bcb272a73482e688937889d96db4163b72", @nested={0xb9, 0x81, 0x0, 0x1, [@generic="1f760a5eb32d95103220da2c785c1df84aa8f301120f249320352eca3e592bdda7360aa4c426d470ae649a687d527dbc869b9956274d9e39ca83643edc433aa749de4faec049bfcb31b357d010", @typed={0xc, 0x21, 0x0, 0x0, @u64=0x37e}, @typed={0x8, 0x42, 0x0, 0x0, @pid=r0}, @typed={0x54, 0x24, 0x0, 0x0, @binary="7bd2f404da70615e58eb375a892495f58fc0bec68a9d2f9082289aa06da31b1d736abe1c54ad8b6dfcb8b1d5efc1f9be9bc8791620348947d711b28b11460146593d86ee6465c090738067d85cd52a24"}]}, @generic="33ec7a0b36439704d57e12b8f1657c0722fc27ad010f31d2e97d2337770653f5a1a0a3c62be0a3249c029c85225766fbb85f877af8f31c5c720c64d988df1de239632e2873f1ab9900a83b5da5a003ff56315f5eb9e7cd2508834a3d41ae37a36f73267b1da0e99e7b6810a43be2d7d35d927802996c23cdc7496c6838925fe7c80a1d80425cec93a6ed936b24371a197e621eccab67175d13a417906ad11825089498c47777"]}, 0x22c}, 0x1, 0x0, 0x0, 0x20800}, 0x10) sendmsg$nl_generic(r1, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000000)={0x2c, 0x16, 0x1, 0x0, 0x0, {0xa}, [@nested={0x18, 0x0, 0x0, 0x1, [@typed={0x14, 0xa, 0x0, 0x0, @ipv6=@private1}]}]}, 0x2c}}, 0x0) r3 = socket$netlink(0x10, 0x3, 0x0) sendmsg$nl_generic(r3, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000000)=ANY=[@ANYBLOB="4748e77215000100000000000010000a0000001800008014000a00fc01008000000800"/44], 0x2c}}, 0x0) dup2(r1, r3) write(0xffffffffffffffff, 0x0, 0x0) openat$dir(0xffffffffffffff9c, &(0x7f0000000000)='./file0\x00', 0x234200, 0x8) 19:28:56 executing program 1: perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) clone3(&(0x7f0000000140)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0, 0x8000000000000}, 0x58) [ 1223.988762] FAULT_INJECTION: forcing a failure. [ 1223.988762] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 1223.991611] CPU: 1 PID: 27604 Comm: syz-executor.2 Not tainted 5.10.185 #1 [ 1223.993036] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1223.994735] Call Trace: [ 1223.995278] dump_stack+0x107/0x167 [ 1223.996028] should_fail.cold+0x5/0xa [ 1223.996801] _copy_from_user+0x2e/0x1b0 [ 1223.997635] copy_clone_args_from_user+0x147/0x790 [ 1223.998646] ? lock_acquire+0x197/0x470 [ 1223.999458] ? sighand_ctor+0x40/0x40 [ 1224.000239] ? find_held_lock+0x2c/0x110 [ 1224.001075] ? ksys_write+0x21a/0x260 [ 1224.001858] ? lock_downgrade+0x6d0/0x6d0 [ 1224.002709] __do_sys_clone3+0x9d/0x320 [ 1224.003523] ? __do_sys_clone+0x110/0x110 [ 1224.004379] ? __mutex_unlock_slowpath+0xe1/0x600 [ 1224.005389] ? wait_for_completion_io+0x270/0x270 [ 1224.006385] ? rcu_read_lock_any_held+0x75/0xa0 [ 1224.007333] ? vfs_write+0x354/0xa70 [ 1224.008099] ? fput_many+0x2f/0x1a0 [ 1224.008842] ? ksys_write+0x1a9/0x260 [ 1224.009631] ? __ia32_sys_read+0xb0/0xb0 [ 1224.010464] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1224.011535] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1224.012589] ? trace_hardirqs_on+0x5b/0x180 [ 1224.013479] do_syscall_64+0x33/0x40 [ 1224.014244] entry_SYSCALL_64_after_hwframe+0x61/0xc6 [ 1224.015292] RIP: 0033:0x7f44f9a2eb19 [ 1224.016053] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1224.019858] RSP: 002b:00007f44f6fa4188 EFLAGS: 00000246 ORIG_RAX: 00000000000001b3 [ 1224.021426] RAX: ffffffffffffffda RBX: 00007f44f9b41f60 RCX: 00007f44f9a2eb19 [ 1224.022889] RDX: 0000000000000000 RSI: 0000000000000058 RDI: 0000000020000140 [ 1224.024381] RBP: 00007f44f6fa41d0 R08: 0000000000000000 R09: 0000000000000000 [ 1224.025836] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 1224.027289] R13: 00007ffe83cb2bbf R14: 00007f44f6fa4300 R15: 0000000000022000 19:28:56 executing program 6: syz_open_dev$sg(0x0, 0x0, 0x0) syz_io_uring_setup(0x4ee5, &(0x7f0000000080)={0x0, 0x18000000}, &(0x7f0000ffd000/0x3000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000040), &(0x7f0000000100)) 19:28:56 executing program 0: r0 = perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r1 = perf_event_open(&(0x7f0000001d80)={0x2, 0x80, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, r0, 0x0) r2 = perf_event_open(&(0x7f0000001d80)={0x2, 0x80, 0x70, 0x4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, r0, 0x2) r3 = accept4$inet(0xffffffffffffffff, &(0x7f0000001140)={0x2, 0x0, @broadcast}, &(0x7f0000001180)=0x10, 0x800) ioctl$EXT4_IOC_MOVE_EXT(r3, 0xc028660f, &(0x7f00000011c0)={0x0, r1, 0x6, 0x0, 0x9}) readv(r2, &(0x7f0000001200)=[{&(0x7f00000000c0)=""/4096, 0x1000}], 0x1) clone3(&(0x7f0000001440)={0x212210800, &(0x7f0000001240)=0xffffffffffffffff, &(0x7f0000001280), &(0x7f00000012c0), {0x10001}, &(0x7f0000001300)=""/2, 0x2, &(0x7f0000001340)=""/156, &(0x7f0000001400)=[0xffffffffffffffff], 0x1}, 0x58) fstat(r4, &(0x7f00000014c0)) perf_event_open(&(0x7f00000010c0)={0x3, 0x80, 0x0, 0x33, 0x0, 0x1, 0x0, 0xb93b, 0xa0002, 0x4, 0x0, 0x1, 0x1, 0x1, 0x0, 0x0, 0x1, 0x1, 0x0, 0x0, 0x1, 0x0, 0x0, 0x1, 0x0, 0x1, 0x0, 0x0, 0x1, 0x1, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x1, 0x1, 0x1, 0x0, 0x1, 0x1, 0x0, 0x0, 0x1, 0x1, 0x1, 0x0, 0x1000, 0x2, @perf_config_ext={0x1}, 0x8121, 0x5, 0xfffffffe, 0x5, 0x3ff, 0x80, 0x4, 0x0, 0x4, 0x0, 0x1}, 0xffffffffffffffff, 0x10, 0xffffffffffffffff, 0x2) openat$sr(0xffffffffffffff9c, &(0x7f0000000000), 0x200081, 0x0) r5 = openat(0xffffffffffffff9c, &(0x7f00000015c0)='./file0\x00', 0x801, 0x26) ioctl$AUTOFS_DEV_IOCTL_CATATONIC(r5, 0xc0189379, &(0x7f0000001580)={{0x1, 0x1, 0x18, r1}, './file0\x00'}) [ 1236.586540] FAULT_INJECTION: forcing a failure. [ 1236.586540] name failslab, interval 1, probability 0, space 0, times 0 [ 1236.587939] CPU: 0 PID: 27934 Comm: syz-executor.2 Not tainted 5.10.185 #1 [ 1236.588731] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1236.589687] Call Trace: [ 1236.589991] dump_stack+0x107/0x167 [ 1236.590401] should_fail.cold+0x5/0xa [ 1236.590832] ? copy_process+0x446c/0x6740 [ 1236.591299] should_failslab+0x5/0x20 [ 1236.591731] kmem_cache_alloc_node+0x55/0x330 [ 1236.592383] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1236.593000] copy_process+0x446c/0x6740 [ 1236.593457] ? lock_acquire+0x197/0x470 [ 1236.593909] ? find_held_lock+0x2c/0x110 [ 1236.594364] ? __might_fault+0xd3/0x180 [ 1236.594809] ? lock_downgrade+0x6d0/0x6d0 [ 1236.595293] ? __cleanup_sighand+0xb0/0xb0 [ 1236.595780] ? _copy_from_user+0xfb/0x1b0 [ 1236.596243] kernel_clone+0xe7/0x980 [ 1236.596663] ? lock_acquire+0x197/0x470 [ 1236.597121] ? create_io_thread+0xf0/0xf0 [ 1236.597608] ? ksys_write+0x21a/0x260 [ 1236.598049] ? lock_downgrade+0x6d0/0x6d0 [ 1236.598525] __do_sys_clone3+0x1e5/0x320 [ 1236.598998] ? __do_sys_clone+0x110/0x110 [ 1236.599483] ? rcu_read_lock_any_held+0x75/0xa0 [ 1236.600011] ? vfs_write+0x354/0xa70 [ 1236.600439] ? fput_many+0x2f/0x1a0 [ 1236.600603] netlink: 'syz-executor.0': attribute type 10 has an invalid length. [ 1236.600858] ? ksys_write+0x1a9/0x260 [ 1236.600868] ? __ia32_sys_read+0xb0/0xb0 [ 1236.600880] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1236.600902] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1236.604633] ? trace_hardirqs_on+0x5b/0x180 [ 1236.605133] do_syscall_64+0x33/0x40 [ 1236.605570] entry_SYSCALL_64_after_hwframe+0x61/0xc6 [ 1236.606165] RIP: 0033:0x7f44f9a2eb19 [ 1236.606595] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1236.608688] RSP: 002b:00007f44f6fa4188 EFLAGS: 00000246 ORIG_RAX: 00000000000001b3 [ 1236.609560] RAX: ffffffffffffffda RBX: 00007f44f9b41f60 RCX: 00007f44f9a2eb19 [ 1236.610380] RDX: 0000000000000000 RSI: 0000000000000058 RDI: 0000000020000140 [ 1236.611193] RBP: 00007f44f6fa41d0 R08: 0000000000000000 R09: 0000000000000000 [ 1236.612001] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 1236.612815] R13: 00007ffe83cb2bbf R14: 00007f44f6fa4300 R15: 0000000000022000 19:29:08 executing program 3: creat(0x0, 0x0) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) clone3(&(0x7f0000000140)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x1000000, 0x0, 0x0}, 0x58) 19:29:08 executing program 0: r0 = perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f0000000000), 0x9}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7, 0x0, 0x2}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r1 = socket$netlink(0x10, 0x3, 0x0) sendmsg$nl_generic(r1, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000000)={0x2c, 0x16, 0x1, 0x0, 0x0, {0xa}, [@nested={0x18, 0x0, 0x0, 0x1, [@typed={0x14, 0xa, 0x0, 0x0, @ipv6=@private1}]}]}, 0x2c}}, 0x0) vmsplice(r1, &(0x7f0000001380)=[{&(0x7f00000010c0)="155510f792aeede6b1d74183cf543d5db1f65318c3513d984f0d47c07ec9ff65d23f94cdd6431318f020d2a370bbcec4f88305c4f0aae64bfe7d04c9f78a287e6db92d3959151e6345d044940d0545ee24ab9075efdac1f534f0900dcbd4a61491ceb4afc6880ea89698f2166f28e9020ff1030683c26e1a0ae421198fbd7487921306656847c2cfab99fcc33a1af5fa1a197a205d6f1d8409b76067b8af17f509b81124a2b471fdbe1c6080", 0xac}, {&(0x7f0000001240)="97b67c308f3c957a252de638b6f8fed10ddbd09afe136e878a7f5d831823c57dd003d0d52df91261b3da6add2708c55582a6d2a54deeb7f9546e693745c87bf021f44913671bab88ff247c6f8efce1eb44b256279a6f7b804c5d2ed7ce37adb3dfcde46f6dd18cc174de99e893d442de5c02a8b3d60a204e201f7d5205feab056359679db3f20245cab1af2df8e10ec3e1375085d96083", 0x97}, {&(0x7f0000001180)="95a99f35c230a82b676eca20746b7836299aae54463df35331cabccfa6c4961c5026f10573baafca3264400ccf467f", 0x2f}, {&(0x7f0000001300)="1989a01dddbcc5755a56f95219d861a89622008e36e804ecccdf23d512a53e5f41dae8f2c38fb0dddd8cf591070893b16c704e5ca735bd9f2919484df4dd84fb435ab5d467929f4d1f2b59a29913cdc546a48c819a422537d2a21c086e3b8b3332b4e51c2184db8599d8bc", 0x6b}, {&(0x7f00000011c0)="4c9993eb7fdcf0935130cd547b8fa3926a659fa17bc203fff822b1c1e573532e6c60c7b98f7bf523b49b11bf37766ee60ba4f3ec90fc97a4e501669914b7063c", 0x40}], 0x5, 0x1) perf_event_open(&(0x7f0000001d80)={0x2, 0x80, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, r0, 0x0) r2 = perf_event_open(&(0x7f0000001d80)={0x2, 0x80, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, r0, 0x0) readv(r2, &(0x7f0000001200)=[{&(0x7f00000000c0)=""/4096, 0x1000}], 0x1) 19:29:08 executing program 6: syz_open_dev$sg(0x0, 0x0, 0x0) syz_io_uring_setup(0x4ee5, &(0x7f0000000080)={0x0, 0x1e000000}, &(0x7f0000ffd000/0x3000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000040), &(0x7f0000000100)) 19:29:08 executing program 1: perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) clone3(&(0x7f0000000140)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0, 0x8000001000000}, 0x58) 19:29:08 executing program 7: perf_event_open(&(0x7f0000000200)={0x2, 0x80, 0x8, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = creat(0x0, 0x0) connect$unix(r0, &(0x7f0000000000)=@abs={0x1, 0x0, 0x4e24}, 0x6e) clone3(&(0x7f0000000140)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) write(0xffffffffffffffff, 0x0, 0x0) 19:29:08 executing program 5: perf_event_open(&(0x7f0000000200)={0x2, 0x80, 0x8, 0x1, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_io_uring_setup(0x44af, &(0x7f0000000100)={0x0, 0x2, 0x0, 0x0, 0x389}, &(0x7f0000000000/0x12000)=nil, &(0x7f000000e000/0x1000)=nil, &(0x7f0000000080), &(0x7f0000000040)) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) clone3(&(0x7f0000000140)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) write(0xffffffffffffffff, &(0x7f0000000100)='?', 0x1) r0 = syz_open_dev$sg(&(0x7f0000000400), 0x0, 0x0) r1 = syz_open_dev$evdev(&(0x7f0000000040), 0x0, 0x8802) r2 = fcntl$dupfd(r1, 0x0, r0) writev(r2, &(0x7f0000000140)=[{&(0x7f0000000300)="0040abe02400030021206cda3b5e5672b89aeddb2a535fbd", 0x7e0}], 0x1) setsockopt$packet_fanout(r2, 0x107, 0x12, &(0x7f0000000000)={0x1, 0x2}, 0x4) 19:29:08 executing program 4: clone3(&(0x7f0000000140)={0x1ffff000, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) 19:29:08 executing program 2: perf_event_open(&(0x7f0000000200)={0x2, 0x80, 0x8, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) creat(0x0, 0x0) syz_io_uring_setup(0x44af, &(0x7f0000000100)={0x0, 0x2, 0x0, 0x0, 0x389}, &(0x7f0000000000/0x12000)=nil, &(0x7f000000e000/0x1000)=nil, &(0x7f0000000080), &(0x7f0000000040)) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) clone3(&(0x7f0000000140)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) (fail_nth: 2) 19:29:08 executing program 4: clone3(&(0x7f0000000140)={0x20000000, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) 19:29:08 executing program 1: perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) clone3(&(0x7f0000000140)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0, 0x10100000000000}, 0x58) 19:29:08 executing program 0: r0 = perf_event_open(&(0x7f0000000040)={0x5, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1c51}, 0x0, 0x0, 0xffffffffffffffff, 0x0) perf_event_open(&(0x7f0000001d80)={0x2, 0x80, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, r0, 0x0) r1 = perf_event_open(&(0x7f0000001d80)={0x2, 0x80, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, r0, 0x0) readv(r1, &(0x7f0000001200)=[{&(0x7f00000000c0)=""/4096, 0x1000}], 0x1) 19:29:08 executing program 6: syz_open_dev$sg(0x0, 0x0, 0x0) syz_io_uring_setup(0x4ee5, &(0x7f0000000080)={0x0, 0x20000000}, &(0x7f0000ffd000/0x3000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000040), &(0x7f0000000100)) 19:29:09 executing program 4: clone3(&(0x7f0000000140)={0x3f000000, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) 19:29:09 executing program 1: perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) clone3(&(0x7f0000000140)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0, 0x109786022a0000}, 0x58) 19:29:09 executing program 2: perf_event_open(&(0x7f0000000200)={0x2, 0x80, 0x8, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) creat(0x0, 0x0) syz_io_uring_setup(0x44af, &(0x7f0000000100)={0x0, 0x2, 0x0, 0x0, 0x389}, &(0x7f0000000000/0x12000)=nil, &(0x7f000000e000/0x1000)=nil, &(0x7f0000000080), &(0x7f0000000040)) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) clone3(&(0x7f0000000140)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) (fail_nth: 3) 19:29:09 executing program 6: syz_open_dev$sg(0x0, 0x0, 0x0) syz_io_uring_setup(0x4ee5, &(0x7f0000000080)={0x0, 0x20ffc000}, &(0x7f0000ffd000/0x3000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000040), &(0x7f0000000100)) 19:29:09 executing program 3: creat(0x0, 0x0) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) clone3(&(0x7f0000000140)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x8000000, 0x0, 0x0}, 0x58) 19:29:09 executing program 1: perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) clone3(&(0x7f0000000140)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0, 0xf0510c1b000000}, 0x58) 19:29:09 executing program 5: r0 = perf_event_open(&(0x7f0000000200)={0x2, 0x80, 0x8, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_io_uring_setup(0x44af, &(0x7f0000000100)={0x0, 0x2, 0x0, 0x0, 0x389}, &(0x7f0000000000/0x12000)=nil, &(0x7f000000e000/0x1000)=nil, &(0x7f0000000080), &(0x7f0000000040)) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r1 = socket$netlink(0x10, 0x3, 0x0) sendmsg$nl_generic(r1, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000000)={0x2c, 0x16, 0x1, 0x0, 0x0, {0xa}, [@nested={0x18, 0x0, 0x0, 0x1, [@typed={0x14, 0xa, 0x0, 0x0, @ipv6=@private1}]}]}, 0x2c}}, 0x0) sendfile(r0, r1, &(0x7f0000000000)=0x9, 0x7) clone3(&(0x7f0000000140)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) write(0xffffffffffffffff, &(0x7f0000000100)='?', 0x1) 19:29:09 executing program 0: ioctl$KDENABIO(0xffffffffffffffff, 0x4b36) creat(&(0x7f0000000000)='./file0\x00', 0x88) r0 = perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) perf_event_open(&(0x7f00000010c0)={0x2, 0x80, 0x6, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x1, 0x97}}, 0x0, 0x0, 0xffffffffffffffff, 0x2) r1 = perf_event_open(&(0x7f0000001d80)={0x2, 0x80, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, r0, 0x0) readv(r1, &(0x7f0000001200)=[{&(0x7f00000000c0)=""/4096, 0x1000}], 0x1) [ 1236.903271] FAULT_INJECTION: forcing a failure. [ 1236.903271] name failslab, interval 1, probability 0, space 0, times 0 [ 1236.906193] CPU: 1 PID: 28271 Comm: syz-executor.2 Not tainted 5.10.185 #1 [ 1236.907696] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1236.909493] Call Trace: [ 1236.910094] dump_stack+0x107/0x167 [ 1236.910889] should_fail.cold+0x5/0xa [ 1236.911715] ? create_object.isra.0+0x3a/0xa20 [ 1236.912701] ? create_object.isra.0+0x3a/0xa20 [ 1236.913120] netlink: 'syz-executor.5': attribute type 10 has an invalid length. [ 1236.913699] should_failslab+0x5/0x20 [ 1236.913718] kmem_cache_alloc+0x5b/0x310 [ 1236.913741] create_object.isra.0+0x3a/0xa20 [ 1236.917129] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 1236.918252] kmem_cache_alloc_node+0x169/0x330 [ 1236.919241] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1236.920379] copy_process+0x446c/0x6740 [ 1236.921242] ? lock_acquire+0x197/0x470 [ 1236.922122] ? find_held_lock+0x2c/0x110 [ 1236.923003] ? __might_fault+0xd3/0x180 [ 1236.923861] ? lock_downgrade+0x6d0/0x6d0 [ 1236.924763] ? __cleanup_sighand+0xb0/0xb0 [ 1236.925698] ? _copy_from_user+0xfb/0x1b0 [ 1236.926600] kernel_clone+0xe7/0x980 [ 1236.927405] ? lock_acquire+0x197/0x470 [ 1236.928268] ? create_io_thread+0xf0/0xf0 [ 1236.929175] ? ksys_write+0x21a/0x260 [ 1236.930006] ? lock_downgrade+0x6d0/0x6d0 [ 1236.930906] __do_sys_clone3+0x1e5/0x320 [ 1236.931781] ? __do_sys_clone+0x110/0x110 [ 1236.932697] ? rcu_read_lock_any_held+0x75/0xa0 [ 1236.933724] ? vfs_write+0x354/0xa70 [ 1236.934533] ? fput_many+0x2f/0x1a0 [ 1236.935320] ? ksys_write+0x1a9/0x260 [ 1236.936142] ? __ia32_sys_read+0xb0/0xb0 [ 1236.937025] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1236.938173] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1236.939289] ? trace_hardirqs_on+0x5b/0x180 [ 1236.940225] do_syscall_64+0x33/0x40 [ 1236.941031] entry_SYSCALL_64_after_hwframe+0x61/0xc6 [ 1236.942154] RIP: 0033:0x7f44f9a2eb19 [ 1236.942961] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1236.946942] RSP: 002b:00007f44f6fa4188 EFLAGS: 00000246 ORIG_RAX: 00000000000001b3 [ 1236.948586] RAX: ffffffffffffffda RBX: 00007f44f9b41f60 RCX: 00007f44f9a2eb19 [ 1236.950140] RDX: 0000000000000000 RSI: 0000000000000058 RDI: 0000000020000140 [ 1236.951679] RBP: 00007f44f6fa41d0 R08: 0000000000000000 R09: 0000000000000000 [ 1236.953217] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 1236.954775] R13: 00007ffe83cb2bbf R14: 00007f44f6fa4300 R15: 0000000000022000 19:29:23 executing program 1: perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) clone3(&(0x7f0000000140)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0, 0xf0ff1f00000000}, 0x58) 19:29:23 executing program 2: perf_event_open(&(0x7f0000000200)={0x2, 0x80, 0x8, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) creat(0x0, 0x0) syz_io_uring_setup(0x44af, &(0x7f0000000100)={0x0, 0x2, 0x0, 0x0, 0x389}, &(0x7f0000000000/0x12000)=nil, &(0x7f000000e000/0x1000)=nil, &(0x7f0000000080), &(0x7f0000000040)) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) clone3(&(0x7f0000000140)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) (fail_nth: 4) 19:29:23 executing program 7: perf_event_open(&(0x7f0000000200)={0x2, 0x80, 0x8, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) creat(0x0, 0x0) clone3(&(0x7f0000000140)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) mknod$loop(&(0x7f0000000000)='./file0\x00', 0x4, 0x0) write(0xffffffffffffffff, 0x0, 0x0) 19:29:23 executing program 5: perf_event_open(&(0x7f0000000200)={0x2, 0x80, 0x8, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_io_uring_setup(0x44af, &(0x7f0000000100)={0x0, 0x2, 0x0, 0x0, 0x389}, &(0x7f0000000000/0x12000)=nil, &(0x7f000000e000/0x1000)=nil, &(0x7f0000000080), &(0x7f0000000040)) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r0 = socket$netlink(0x10, 0x3, 0x0) sendmsg$nl_generic(r0, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000000)={0x2c, 0x16, 0x1, 0x0, 0x0, {0xa}, [@nested={0x18, 0x0, 0x0, 0x1, [@typed={0x14, 0xa, 0x0, 0x0, @ipv6=@private1}]}]}, 0x2c}}, 0x0) ioctl$FIOCLEX(r0, 0x5451) clone3(&(0x7f0000000140)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) write(0xffffffffffffffff, &(0x7f0000000100)='?', 0x1) 19:29:23 executing program 6: syz_open_dev$sg(0x0, 0x0, 0x0) syz_io_uring_setup(0x4ee5, &(0x7f0000000080)={0x0, 0x20ffd000}, &(0x7f0000ffd000/0x3000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000040), &(0x7f0000000100)) 19:29:23 executing program 3: creat(0x0, 0x0) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) clone3(&(0x7f0000000140)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x10000200, 0x0, 0x0}, 0x58) 19:29:23 executing program 0: r0 = perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) mmap$IORING_OFF_SQ_RING(&(0x7f0000ff7000/0x7000)=nil, 0x7000, 0x0, 0x10, r0, 0x0) perf_event_open(&(0x7f0000001d80)={0x2, 0x80, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, r0, 0x0) perf_event_open(&(0x7f0000001d80)={0x2, 0x80, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, r0, 0x0) 19:29:23 executing program 4: clone3(&(0x7f0000000140)={0x40000000, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) [ 1251.372189] FAULT_INJECTION: forcing a failure. [ 1251.372189] name fail_page_alloc, interval 1, probability 0, space 0, times 0 [ 1251.373421] netlink: 'syz-executor.5': attribute type 10 has an invalid length. [ 1251.375136] CPU: 1 PID: 28494 Comm: syz-executor.2 Not tainted 5.10.185 #1 [ 1251.377787] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1251.379484] Call Trace: [ 1251.380031] dump_stack+0x107/0x167 [ 1251.380791] should_fail.cold+0x5/0xa [ 1251.381585] __alloc_pages_nodemask+0x182/0x600 [ 1251.382555] ? lock_downgrade+0x6d0/0x6d0 [ 1251.383411] ? __alloc_pages_slowpath.constprop.0+0x2130/0x2130 [ 1251.384727] ? memcg_slab_post_alloc_hook+0x17a/0x430 [ 1251.385789] ? kmem_cache_alloc_node+0x2bc/0x330 [ 1251.386749] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1251.387817] copy_process+0x60a/0x6740 [ 1251.388607] ? lock_acquire+0x197/0x470 [ 1251.389413] ? find_held_lock+0x2c/0x110 [ 1251.390248] ? __might_fault+0xd3/0x180 [ 1251.391075] ? lock_downgrade+0x6d0/0x6d0 [ 1251.391923] ? __cleanup_sighand+0xb0/0xb0 [ 1251.392795] ? _copy_from_user+0xfb/0x1b0 [ 1251.393645] kernel_clone+0xe7/0x980 [ 1251.394411] ? __lockdep_reset_lock+0x180/0x180 [ 1251.395353] ? create_io_thread+0xf0/0xf0 [ 1251.396207] ? ksys_write+0x21a/0x260 [ 1251.396979] ? lock_downgrade+0x6d0/0x6d0 [ 1251.397830] __do_sys_clone3+0x1e5/0x320 [ 1251.398665] ? __do_sys_clone+0x110/0x110 [ 1251.399563] ? rcu_read_lock_any_held+0x75/0xa0 [ 1251.400576] ? vfs_write+0x354/0xa70 [ 1251.401353] ? copy_kernel_to_fpregs+0x9e/0xe0 [ 1251.402315] ? trace_event_raw_event_x86_fpu+0x390/0x390 [ 1251.403426] ? ksys_write+0x1a9/0x260 [ 1251.404229] ? __ia32_sys_read+0xb0/0xb0 [ 1251.405098] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1251.406198] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1251.407284] ? trace_hardirqs_on+0x5b/0x180 [ 1251.408225] do_syscall_64+0x33/0x40 [ 1251.409027] entry_SYSCALL_64_after_hwframe+0x61/0xc6 [ 1251.410127] RIP: 0033:0x7f44f9a2eb19 [ 1251.410910] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1251.414652] RSP: 002b:00007f44f6fa4188 EFLAGS: 00000246 ORIG_RAX: 00000000000001b3 [ 1251.416300] RAX: ffffffffffffffda RBX: 00007f44f9b41f60 RCX: 00007f44f9a2eb19 [ 1251.417801] RDX: 0000000000000000 RSI: 0000000000000058 RDI: 0000000020000140 [ 1251.419338] RBP: 00007f44f6fa41d0 R08: 0000000000000000 R09: 0000000000000000 [ 1251.420860] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 1251.422394] R13: 00007ffe83cb2bbf R14: 00007f44f6fa4300 R15: 0000000000022000 19:29:23 executing program 1: perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) clone3(&(0x7f0000000140)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0, 0x100000000000000}, 0x58) 19:29:23 executing program 6: syz_open_dev$sg(0x0, 0x0, 0x0) syz_io_uring_setup(0x4ee5, &(0x7f0000000080)={0x0, 0x21010000}, &(0x7f0000ffd000/0x3000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000040), &(0x7f0000000100)) 19:29:23 executing program 0: r0 = perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) perf_event_open(&(0x7f0000001d80)={0x2, 0x80, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, r0, 0x0) r1 = openat$zero(0xffffffffffffff9c, &(0x7f0000000000), 0x500, 0x0) perf_event_open(&(0x7f00000000c0)={0x0, 0x80, 0x0, 0x20, 0x21, 0x1f, 0x0, 0x4, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x1, 0x0, 0x1, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x1, 0x0, 0x1, 0x0, 0x1, 0x1, 0x0, 0x0, 0x1, 0x0, 0x1, 0x1, 0x1, 0x1, 0x0, 0x1, 0x1, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x38, 0x1, @perf_config_ext={0x401, 0x44a}, 0x20, 0x6, 0x2, 0x3, 0xffffffffffffffff, 0x10000, 0x1000, 0x0, 0x800, 0x0, 0x81}, 0x0, 0x6, r1, 0xa) perf_event_open(&(0x7f0000001d80)={0x2, 0x80, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, r0, 0x0) 19:29:23 executing program 1: perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) clone3(&(0x7f0000000140)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0, 0x800000000000000}, 0x58) 19:29:23 executing program 6: syz_open_dev$sg(0x0, 0x0, 0x0) syz_io_uring_setup(0x4ee5, &(0x7f0000000080)={0x0, 0x24000000}, &(0x7f0000ffd000/0x3000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000040), &(0x7f0000000100)) 19:29:23 executing program 3: creat(0x0, 0x0) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) clone3(&(0x7f0000000140)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x11000000, 0x0, 0x0}, 0x58) 19:29:23 executing program 0: r0 = perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) perf_event_open(&(0x7f0000001d80)={0x2, 0x80, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, r0, 0x0) r1 = perf_event_open(&(0x7f0000001d80)={0x2, 0x80, 0x70, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4, 0x4, @perf_bp={0x0}}, 0x0, 0x0, r0, 0x0) readv(r1, &(0x7f0000001200)=[{&(0x7f00000000c0)=""/4096, 0x1000}], 0x1) r2 = syz_open_dev$sg(&(0x7f0000000400), 0x0, 0x0) r3 = syz_open_dev$evdev(&(0x7f0000000040), 0x0, 0x8802) ioctl$LOOP_SET_FD(0xffffffffffffffff, 0x4c00, r0) r4 = fcntl$dupfd(r3, 0x0, r2) writev(r4, &(0x7f0000000140)=[{&(0x7f0000000300)="0040abe02400030021206cda3b5e5672b89aeddb2a535fbd", 0x7e0}], 0x1) openat(r4, &(0x7f0000000000)='./file0\x00', 0x4000, 0x4) 19:29:23 executing program 1: perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) clone3(&(0x7f0000000140)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0, 0x1100000000000000}, 0x58) 19:29:24 executing program 2: perf_event_open(&(0x7f0000000200)={0x2, 0x80, 0x8, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) creat(0x0, 0x0) syz_io_uring_setup(0x44af, &(0x7f0000000100)={0x0, 0x2, 0x0, 0x0, 0x389}, &(0x7f0000000000/0x12000)=nil, &(0x7f000000e000/0x1000)=nil, &(0x7f0000000080), &(0x7f0000000040)) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) clone3(&(0x7f0000000140)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) (fail_nth: 5) [ 1251.777684] FAULT_INJECTION: forcing a failure. [ 1251.777684] name failslab, interval 1, probability 0, space 0, times 0 [ 1251.780437] CPU: 1 PID: 28850 Comm: syz-executor.2 Not tainted 5.10.185 #1 [ 1251.781898] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1251.783624] Call Trace: [ 1251.784184] dump_stack+0x107/0x167 [ 1251.784930] should_fail.cold+0x5/0xa [ 1251.785708] ? prepare_creds+0x25/0x5f0 [ 1251.786522] should_failslab+0x5/0x20 [ 1251.787300] kmem_cache_alloc+0x5b/0x310 [ 1251.788161] ? lock_downgrade+0x6d0/0x6d0 [ 1251.789033] prepare_creds+0x25/0x5f0 [ 1251.789823] copy_creds+0x72/0x580 [ 1251.790552] copy_process+0xfce/0x6740 [ 1251.791347] ? lock_acquire+0x197/0x470 [ 1251.792176] ? find_held_lock+0x2c/0x110 [ 1251.793024] ? __might_fault+0xd3/0x180 [ 1251.793868] ? lock_downgrade+0x6d0/0x6d0 [ 1251.794741] ? __cleanup_sighand+0xb0/0xb0 [ 1251.795613] ? _copy_from_user+0xfb/0x1b0 [ 1251.796469] kernel_clone+0xe7/0x980 [ 1251.797233] ? __lockdep_reset_lock+0x180/0x180 [ 1251.798213] ? create_io_thread+0xf0/0xf0 [ 1251.799088] ? ksys_write+0x21a/0x260 [ 1251.799881] ? lock_downgrade+0x6d0/0x6d0 [ 1251.800741] __do_sys_clone3+0x1e5/0x320 [ 1251.801591] ? __do_sys_clone+0x110/0x110 [ 1251.802470] ? rcu_read_lock_any_held+0x75/0xa0 [ 1251.803400] ? vfs_write+0x354/0xa70 [ 1251.804182] ? fput_many+0x2f/0x1a0 [ 1251.804954] ? ksys_write+0x1a9/0x260 [ 1251.805785] ? __ia32_sys_read+0xb0/0xb0 [ 1251.806642] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1251.807759] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1251.808830] ? trace_hardirqs_on+0x5b/0x180 [ 1251.809726] do_syscall_64+0x33/0x40 [ 1251.810481] entry_SYSCALL_64_after_hwframe+0x61/0xc6 [ 1251.811549] RIP: 0033:0x7f44f9a2eb19 [ 1251.812311] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1251.816114] RSP: 002b:00007f44f6fa4188 EFLAGS: 00000246 ORIG_RAX: 00000000000001b3 [ 1251.817664] RAX: ffffffffffffffda RBX: 00007f44f9b41f60 RCX: 00007f44f9a2eb19 [ 1251.819148] RDX: 0000000000000000 RSI: 0000000000000058 RDI: 0000000020000140 [ 1251.820623] RBP: 00007f44f6fa41d0 R08: 0000000000000000 R09: 0000000000000000 [ 1251.822081] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 1251.823543] R13: 00007ffe83cb2bbf R14: 00007f44f6fa4300 R15: 0000000000022000 19:29:39 executing program 2: perf_event_open(&(0x7f0000000200)={0x2, 0x80, 0x8, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) creat(0x0, 0x0) syz_io_uring_setup(0x44af, &(0x7f0000000100)={0x0, 0x2, 0x0, 0x0, 0x389}, &(0x7f0000000000/0x12000)=nil, &(0x7f000000e000/0x1000)=nil, &(0x7f0000000080), &(0x7f0000000040)) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) clone3(&(0x7f0000000140)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) (fail_nth: 6) 19:29:39 executing program 0: r0 = perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r1 = perf_event_open(&(0x7f0000001d80)={0x2, 0x80, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, r0, 0x0) r2 = perf_event_open(&(0x7f0000001d80)={0x2, 0x80, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, r0, 0x0) readv(r2, &(0x7f0000001200)=[{&(0x7f00000000c0)=""/4096, 0x1000}], 0x1) r3 = socket$netlink(0x10, 0x3, 0x0) sendmsg$nl_generic(r3, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000000)={0x2c, 0x16, 0x1, 0x0, 0x0, {0xa}, [@nested={0x18, 0x0, 0x0, 0x1, [@typed={0x14, 0xa, 0x0, 0x0, @ipv6=@private1}]}]}, 0x2c}}, 0x0) fstat(r3, &(0x7f0000001180)) r4 = openat$incfs(0xffffffffffffffff, &(0x7f0000000000)='.log\x00', 0x400000, 0x140) copy_file_range(0xffffffffffffffff, &(0x7f0000001240)=0x3, r1, &(0x7f0000001280)=0x3ff, 0x0, 0x0) setsockopt$inet_MCAST_JOIN_GROUP(r4, 0x0, 0x2a, &(0x7f00000010c0)={0x0, {{0x2, 0x4e23, @dev={0xac, 0x14, 0x14, 0x31}}}}, 0x88) 19:29:39 executing program 3: creat(0x0, 0x0) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) clone3(&(0x7f0000000140)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x1ffff000, 0x0, 0x0}, 0x58) 19:29:39 executing program 4: clone3(&(0x7f0000000140)={0x100000800, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) 19:29:39 executing program 6: syz_open_dev$sg(0x0, 0x0, 0x0) syz_io_uring_setup(0x4ee5, &(0x7f0000000080)={0x0, 0x2a000000}, &(0x7f0000ffd000/0x3000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000040), &(0x7f0000000100)) 19:29:39 executing program 1: perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) clone3(&(0x7f0000000140)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0, 0x2000000000000000}, 0x58) 19:29:39 executing program 7: perf_event_open(&(0x7f0000000200)={0x2, 0x80, 0x8, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) creat(0x0, 0x0) r0 = socket$netlink(0x10, 0x3, 0x0) sendmsg$nl_generic(r0, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000040)=ANY=[@ANYBLOB="2c00000016000000070000000a00ce4966662e386a5172ea2b00001800008014000a00fc01000000000010b700000000000000"], 0x2c}}, 0x0) fallocate(r0, 0x6a, 0x92a6, 0x8) clone3(&(0x7f0000000140)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) write(0xffffffffffffffff, 0x0, 0x0) 19:29:39 executing program 5: perf_event_open(&(0x7f0000000200)={0x2, 0x80, 0x8, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_io_uring_setup(0x44af, &(0x7f0000000100)={0x0, 0x2, 0x0, 0x0, 0x389}, &(0x7f0000000000/0x12000)=nil, &(0x7f000000e000/0x1000)=nil, &(0x7f0000000080), &(0x7f0000000040)) r0 = perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) perf_event_open(&(0x7f0000000280)={0x0, 0x80, 0x3, 0x40, 0x6, 0x3, 0x0, 0x1ff, 0x808, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x1, 0x0, 0x1, 0x0, 0x1, 0x0, 0x0, 0x3, 0x1, 0x1, 0x0, 0x0, 0x1, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x6d3, 0x4, @perf_bp={&(0x7f0000000000), 0x1}, 0x80824, 0xc18, 0x7f, 0x4, 0xf5, 0x7, 0x7, 0x0, 0xba, 0x0, 0x10001}, 0x0, 0xf, r0, 0x1) clone3(&(0x7f0000000140)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) write(0xffffffffffffffff, &(0x7f0000000100)='?', 0x1) [ 1267.373244] netlink: 'syz-executor.0': attribute type 10 has an invalid length. [ 1267.398436] FAULT_INJECTION: forcing a failure. [ 1267.398436] name failslab, interval 1, probability 0, space 0, times 0 [ 1267.400495] CPU: 1 PID: 28955 Comm: syz-executor.2 Not tainted 5.10.185 #1 [ 1267.401674] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1267.403120] Call Trace: [ 1267.403587] dump_stack+0x107/0x167 [ 1267.404212] should_fail.cold+0x5/0xa [ 1267.404868] ? create_object.isra.0+0x3a/0xa20 [ 1267.405646] should_failslab+0x5/0x20 [ 1267.406315] kmem_cache_alloc+0x5b/0x310 [ 1267.407042] create_object.isra.0+0x3a/0xa20 [ 1267.407811] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 1267.408718] kmem_cache_alloc+0x159/0x310 [ 1267.409456] prepare_creds+0x25/0x5f0 [ 1267.410148] copy_creds+0x72/0x580 [ 1267.410783] copy_process+0xfce/0x6740 [ 1267.411473] ? lock_acquire+0x197/0x470 [ 1267.412176] ? find_held_lock+0x2c/0x110 [ 1267.412906] ? __might_fault+0xd3/0x180 [ 1267.413609] ? lock_downgrade+0x6d0/0x6d0 [ 1267.414357] ? __cleanup_sighand+0xb0/0xb0 [ 1267.415115] ? _copy_from_user+0xfb/0x1b0 [ 1267.415858] kernel_clone+0xe7/0x980 [ 1267.416510] ? lock_acquire+0x197/0x470 [ 1267.417214] ? create_io_thread+0xf0/0xf0 [ 1267.417967] ? ksys_write+0x21a/0x260 [ 1267.418632] ? lock_downgrade+0x6d0/0x6d0 [ 1267.419362] __do_sys_clone3+0x1e5/0x320 [ 1267.420073] ? __do_sys_clone+0x110/0x110 [ 1267.420817] ? rcu_read_lock_any_held+0x75/0xa0 [ 1267.421627] ? vfs_write+0x354/0xa70 [ 1267.422291] ? fput_many+0x2f/0x1a0 [ 1267.422930] ? ksys_write+0x1a9/0x260 [ 1267.423596] ? __ia32_sys_read+0xb0/0xb0 [ 1267.424314] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1267.425235] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1267.426160] ? trace_hardirqs_on+0x5b/0x180 [ 1267.426919] do_syscall_64+0x33/0x40 [ 1267.427569] entry_SYSCALL_64_after_hwframe+0x61/0xc6 [ 1267.428469] RIP: 0033:0x7f44f9a2eb19 [ 1267.429128] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1267.432355] RSP: 002b:00007f44f6fa4188 EFLAGS: 00000246 ORIG_RAX: 00000000000001b3 [ 1267.433692] RAX: ffffffffffffffda RBX: 00007f44f9b41f60 RCX: 00007f44f9a2eb19 [ 1267.434934] RDX: 0000000000000000 RSI: 0000000000000058 RDI: 0000000020000140 [ 1267.436164] RBP: 00007f44f6fa41d0 R08: 0000000000000000 R09: 0000000000000000 [ 1267.437394] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 1267.438639] R13: 00007ffe83cb2bbf R14: 00007f44f6fa4300 R15: 0000000000022000 19:29:39 executing program 6: syz_open_dev$sg(0x0, 0x0, 0x0) syz_io_uring_setup(0x4ee5, &(0x7f0000000080)={0x0, 0x30000000}, &(0x7f0000ffd000/0x3000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000040), &(0x7f0000000100)) 19:29:39 executing program 4: clone3(&(0x7f0000000140)={0x1b0bf1f000, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) [ 1267.448619] netlink: 'syz-executor.0': attribute type 10 has an invalid length. 19:29:39 executing program 1: perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) clone3(&(0x7f0000000140)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0, 0x3f00000000000000}, 0x58) 19:29:39 executing program 1: perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) clone3(&(0x7f0000000140)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0, 0x4000000000000000}, 0x58) 19:29:39 executing program 3: creat(0x0, 0x0) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) clone3(&(0x7f0000000140)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x20000000, 0x0, 0x0}, 0x58) 19:29:39 executing program 4: clone3(&(0x7f0000000140)={0x10000000000, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) 19:29:39 executing program 0: r0 = perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) sendmsg$nl_generic(0xffffffffffffffff, &(0x7f0000001100)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x200}, 0xc, &(0x7f00000010c0)={&(0x7f0000001e00)={0x1040, 0x35, 0x4, 0x70bd2d, 0x25dfdbfb, {}, [@nested={0x1024, 0x19, 0x0, 0x1, [@typed={0x7, 0x67, 0x0, 0x0, @str='%+\x00'}, @typed={0x8, 0x1f, 0x0, 0x0, @u32=0x200}, @typed={0xc, 0x74, 0x0, 0x0, @str='-/,:0%}\x00'}, @typed={0x1004, 0x35, 0x0, 0x0, @binary="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"}]}, @typed={0x8, 0x7, 0x0, 0x0, @ipv4=@dev={0xac, 0x14, 0x14, 0x40}}]}, 0x1040}, 0x1, 0x0, 0x0, 0x4800}, 0x40000) perf_event_open(&(0x7f0000001d80)={0x2, 0x80, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, r0, 0x0) r1 = perf_event_open(&(0x7f0000001d80)={0x2, 0x80, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0, 0x4}}, 0x0, 0x0, r0, 0x0) readv(r1, &(0x7f0000001200)=[{&(0x7f00000000c0)=""/4096, 0x1000}], 0x1) 19:29:39 executing program 6: syz_open_dev$sg(0x0, 0x0, 0x0) syz_io_uring_setup(0x4ee5, &(0x7f0000000080)={0x0, 0x36000000}, &(0x7f0000ffd000/0x3000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000040), &(0x7f0000000100)) 19:29:54 executing program 3: creat(0x0, 0x0) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) clone3(&(0x7f0000000140)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x3f000000, 0x0, 0x0}, 0x58) 19:29:54 executing program 2: perf_event_open(&(0x7f0000000200)={0x2, 0x80, 0x8, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) creat(0x0, 0x0) syz_io_uring_setup(0x44af, &(0x7f0000000100)={0x0, 0x2, 0x0, 0x0, 0x389}, &(0x7f0000000000/0x12000)=nil, &(0x7f000000e000/0x1000)=nil, &(0x7f0000000080), &(0x7f0000000040)) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) clone3(&(0x7f0000000140)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) (fail_nth: 7) 19:29:54 executing program 0: r0 = perf_event_open(&(0x7f0000000040)={0x5, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f00000010c0), 0x1}, 0x0, 0x0, 0x4000, 0x0, 0x0, 0x0, 0x0, 0x0, 0x6, 0x0, 0xffffffffffffffff}, 0x0, 0x0, 0xffffffffffffffff, 0x0) perf_event_open(&(0x7f0000001d80)={0x2, 0x80, 0x70, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3}, 0x0, 0xfffffffffffffffc, r0, 0x0) r1 = creat(&(0x7f0000000000)='./file0\x00', 0x51) r2 = syz_open_dev$sg(&(0x7f0000000400), 0x0, 0x0) r3 = syz_open_dev$evdev(&(0x7f0000000040), 0x0, 0x8802) r4 = fcntl$dupfd(r3, 0x0, r2) writev(r4, &(0x7f0000000140)=[{&(0x7f0000000300)="0040abe02400030021206cda3b5e5672b89aeddb2a535fbd", 0x7e0}], 0x1) r5 = perf_event_open(&(0x7f0000001d80)={0x4, 0x80, 0x78, 0x0, 0x0, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, @perf_bp={&(0x7f00000000c0), 0x5}, 0x1408, 0x20000000, 0x4, 0xe2e47484ea0fb6c0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4}, 0x0, 0x0, r4, 0x2) readv(r5, &(0x7f0000001200)=[{&(0x7f0000001e00)=""/4096, 0x1000}], 0x1) ioctl$PERF_EVENT_IOC_ID(r1, 0x80082407, &(0x7f0000001100)) 19:29:54 executing program 7: perf_event_open(&(0x7f0000000200)={0x2, 0x80, 0x8, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) creat(0x0, 0x0) clone3(&(0x7f0000000140)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0xffffffffffffff22) write(0xffffffffffffffff, 0x0, 0x0) 19:29:54 executing program 1: perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) clone3(&(0x7f0000000140)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0, 0xffffffff00000000}, 0x58) 19:29:54 executing program 6: syz_open_dev$sg(0x0, 0x0, 0x0) syz_io_uring_setup(0x4ee5, &(0x7f0000000080)={0x0, 0x3c000000}, &(0x7f0000ffd000/0x3000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000040), &(0x7f0000000100)) 19:29:54 executing program 4: clone3(&(0x7f0000000140)={0x29b973760000, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) 19:29:54 executing program 5: perf_event_open(&(0x7f0000000200)={0x4, 0x80, 0x8, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x0, 0xffffffffffffffff, 0x0, 0x2, 0x851, 0x0, 0x1}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_io_uring_setup(0x44af, &(0x7f0000000100)={0x0, 0x2, 0x0, 0x0, 0x389}, &(0x7f0000000000/0x12000)=nil, &(0x7f000000e000/0x1000)=nil, &(0x7f0000000080), &(0x7f0000000040)) r0 = syz_open_dev$sg(&(0x7f0000000400), 0x0, 0x0) r1 = syz_open_dev$evdev(&(0x7f0000000040), 0x0, 0x8802) r2 = fcntl$dupfd(r1, 0x0, r0) writev(r2, &(0x7f0000000140)=[{&(0x7f0000000300)="0040abe02400030021206cda3b5e5672b89aeddb2a535fbd", 0x7e0}], 0x1) r3 = socket$netlink(0x10, 0x3, 0x0) sendmsg$nl_generic(r3, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000000)={0x2c, 0x16, 0x1, 0x0, 0x0, {0xa}, [@nested={0x18, 0x0, 0x0, 0x1, [@typed={0x14, 0xa, 0x0, 0x0, @ipv6=@private1}]}]}, 0x2c}}, 0x0) ioctl$AUTOFS_DEV_IOCTL_PROTOSUBVER(r2, 0xc0189373, &(0x7f0000000000)={{0x1, 0x1, 0x18, r3, {0x938}}, './file0\x00'}) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) clone3(&(0x7f0000000140)={0x0, 0x0, 0x0, 0x0, {0xffffffff}, 0x0, 0x0, 0x0, 0x0}, 0x58) write(0xffffffffffffffff, &(0x7f0000000100)='?', 0x1) [ 1281.881665] FAULT_INJECTION: forcing a failure. [ 1281.881665] name failslab, interval 1, probability 0, space 0, times 0 [ 1281.884314] CPU: 1 PID: 29389 Comm: syz-executor.2 Not tainted 5.10.185 #1 [ 1281.885712] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1281.887411] Call Trace: [ 1281.887952] dump_stack+0x107/0x167 [ 1281.888695] should_fail.cold+0x5/0xa [ 1281.889097] netlink: 'syz-executor.5': attribute type 10 has an invalid length. [ 1281.889468] ? security_prepare_creds+0x112/0x190 [ 1281.889496] should_failslab+0x5/0x20 [ 1281.892723] __kmalloc+0x72/0x390 [ 1281.893437] security_prepare_creds+0x112/0x190 [ 1281.894396] prepare_creds+0x458/0x5f0 [ 1281.895187] copy_creds+0x72/0x580 [ 1281.895914] copy_process+0xfce/0x6740 [ 1281.896718] ? lock_acquire+0x197/0x470 [ 1281.897524] ? find_held_lock+0x2c/0x110 [ 1281.898383] ? __might_fault+0xd3/0x180 [ 1281.899196] ? lock_downgrade+0x6d0/0x6d0 [ 1281.900041] ? __cleanup_sighand+0xb0/0xb0 [ 1281.900934] ? _copy_from_user+0xfb/0x1b0 [ 1281.901778] kernel_clone+0xe7/0x980 [ 1281.902551] ? lock_acquire+0x197/0x470 [ 1281.903362] ? create_io_thread+0xf0/0xf0 [ 1281.904213] ? ksys_write+0x21a/0x260 [ 1281.904993] ? lock_downgrade+0x6d0/0x6d0 [ 1281.905836] __do_sys_clone3+0x1e5/0x320 [ 1281.906676] ? __do_sys_clone+0x110/0x110 [ 1281.907535] ? rcu_read_lock_any_held+0x75/0xa0 [ 1281.908475] ? vfs_write+0x354/0xa70 [ 1281.909232] ? fput_many+0x2f/0x1a0 [ 1281.909972] ? ksys_write+0x1a9/0x260 [ 1281.910750] ? __ia32_sys_read+0xb0/0xb0 [ 1281.911576] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1281.912640] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1281.913702] ? trace_hardirqs_on+0x5b/0x180 [ 1281.914597] do_syscall_64+0x33/0x40 [ 1281.915352] entry_SYSCALL_64_after_hwframe+0x61/0xc6 [ 1281.916389] RIP: 0033:0x7f44f9a2eb19 [ 1281.917146] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1281.920881] RSP: 002b:00007f44f6fa4188 EFLAGS: 00000246 ORIG_RAX: 00000000000001b3 [ 1281.922436] RAX: ffffffffffffffda RBX: 00007f44f9b41f60 RCX: 00007f44f9a2eb19 [ 1281.923881] RDX: 0000000000000000 RSI: 0000000000000058 RDI: 0000000020000140 [ 1281.925324] RBP: 00007f44f6fa41d0 R08: 0000000000000000 R09: 0000000000000000 [ 1281.926776] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 1281.928224] R13: 00007ffe83cb2bbf R14: 00007f44f6fa4300 R15: 0000000000022000 19:29:54 executing program 0: r0 = perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) sendfile(r0, r0, &(0x7f00000010c0)=0xff, 0xfffffffffffffffc) r1 = syz_open_dev$sg(&(0x7f0000000400), 0x0, 0x0) r2 = syz_open_dev$evdev(&(0x7f0000000040), 0x0, 0x8802) ioctl$SG_IO(r1, 0x2285, &(0x7f00000014c0)={0x53, 0xfffffffffffffffc, 0x1000, 0x37, @scatter={0x4, 0x0, &(0x7f00000011c0)=[{&(0x7f0000001100)=""/17, 0x11}, {&(0x7f0000001140)=""/98, 0x62}, {&(0x7f0000001240)=""/202, 0xca}, {&(0x7f0000001340)=""/252, 0xfc}]}, &(0x7f0000001e00)="0e837c0ca5b260fa054cc4a3137b75685582fed385af7086c54bf9cdf80119c2c0b23e46b499bd78cc8e24eacb7887c27a6e869f4497180020fdddf9d3b433e50c7242cadf68c7fad6a329ef523c2bad408aa8ab82c433f899ae6a01dab194cbfbe38613717ffb9842e9f4c599e017ca642caab64fdff4f65b03f1d598e1cbabdcf9987b8268897cbb9565972a9d1b81a973819dcb6aa81ebae1d4350047854ca4f20673c98a428fac7b170f5b57af8bcf4faa3402141c68337482ccc25ffce7944011fce262a289870e4d2639d0a9d8004bf9be49aef3af6733e73cb8cc44fb5edc9deb01c7d1a6eb9103c7062c5d3c2d37bf13aa5e8b4cf11f3905b34d843398f028555a6560cba28b98afe756fca2d12865e252ac43abee44d70aae8a3b012951a2ed36a1c334b24403f37ed1cbcc611f066076925c8f6d026957624362a31491fda4642495c272559c4d4c6f492a1278e38a7d011ea2e0e099500d172842e976b0229921111cd1d1a1d8d2af17e505db0e258f42897e3ccaeadc35da2052f79954e8f698a9577c09f60c703073ed0085a03ffa726800471faddde131a844c60d037c44c1ac6283cd12a624a9c084b6eb5bd3524c1d10cd23b881a8985f0ac980a1376f211cca1ec7e401448e8fe37fc68d3d609c63239d6b717763e237d89f1c7217eb436cc0a1ee8f6dabc5ee9d649a972f6b7d3451a6770a23b280a15d001a28ac575afd33b8c26b40ca36a9369e319d69ec4fa9bb79378a032b1ee656deecff010bafb35ef6e33857ae63dbefa0637f94fbe57542da9615c235ff6ef59542e5ccfa1a7cc6834a4058670fc7840410a2f7f7c7e8498d91fd987ed9db58ad8e84883cddfb23efa583accb82807ec5e84936d109a7d668cb9e9adaeb72d7984422c2be4dbb560c60b5b554bc9d9bc07e3998800f98c9555a03cac0a3157f5f434f80a7c26c3ea4700f00190ddee9cf6eb9854077ba4511edceec58b874bc683cfecd524de45ff9c2e95261c062c4377336f016641778cd0f9d7de2103a6cdc18420fa6e9181fb902029b157f64e14c21ba3d81936127a2762490b5311293906a0d61b9ad0ce1ccbe86657b620c71acaa4e2bc074c230a73b8f2da0c71d3e77af2d80cb8fd831cac75ec3d4d4f7e7a2d8aa49affe5e1b91de20f023f35e39cc3e4e815ccd8c60d3de5e1cee933c9c2d54568f2b85676de6bc4ff3a5eb435f742c66fd5d57928ad52540e5ef7a7cad811371d7357f89e968c7af31360784aad067d580d8953e5a1b6cbe1c6ca5b7d4f79ea498541bdd285876b718f9b760b22cbe229dbc16d10b1ff1a7503a0ace28f743cdcd81c6654d1e3dc11d184250c75f809053a751948b17b3c6a19c6f9e799876628e0fdccc212ae39e1e2d82125a5d8b5b2d89c0bc9382c31c0dad56fd3af17d573c810eea5f3e66e0e3ccbdc32aee4f9dfefe2ef6e5f4b41d493976b6c87eeb3e60aed7bdd904853f2ffddb6dd5f14ee1be4cdd3ee0f88c3dd3bc2faa9d0404ed8e1c2fb3769c3b3fc2a50cad960314ef958c1bbf000a214bcbb51290c2d3646ebafe911e33d7de01119c90f03cb65601adea28b9203051fd1a294f22e1901296534c07120cc15f296c04d6d15b9981147c87e8de80cda01e5e9412f6240d4ffcd1664ed719f1302ef31cdb9b4c17dd6b9fb3d0e2607299ce1f28c03b64c2cfb61965a45f5e9c1d8a262a15637cb67ccc09ab7dea54f3a2e98ca098c015afa9b7625d4f28fc57b64da08c0e4736beba3821dbca32d881e099f3dbcb1ed3d89623dc3c228911ed858eddb1c3d55d7d40fdfffeee4d8ed04d67faf1aaa69298a8d5de76b97407d3c3a17502ad321e057db890ad9337b79beed8a1ef609fa448273ff82263550bf0960920e4f79b87b646139377354e6c789fd654410aedfab8bd527129ee4361772eb100fdc7a6202de1c527670a72ebf25e437d74a9019de60581c221ac59605cbf7f9de1478d9991be9262e22538ddd42022fd41fbbd733343cac47be503705eed904252f34bc3635cd1599ef2afabf7504c1d865877c8a16d6d96241b3ec81dc28c740a6b20b09128cc1370f72f3484dd0279a0a7c3e48f285401893467521ba3d320932442907d85298ff79ca9436915d2b94644e23fd563538d3db9f28b4f39f992ab3b7d4a91fb34e0f20e2da90395d6c8e780ebcda04b0d7fc6633c6ccb916a7f3c4172061328fb7c300a448bba99643de5a027cb95670bc86d7ab4629a3a0c052302bbfd30a454c8b8def7d7cf0ca4b676e2328d050e8395a261958dd35982a3110534dc4a56bb509f20d338169477ea76b390250c6c4174ff25e47770318d4159e27ef3ebc8c3cd9f5f8d52ed9a933ccd8ce5929d7f4caf92969bd51813e2c809ef92c18823d957e03ae60d91a9b94555e2b61f27d116cfeabd268689f961e9ae77942e1ea21a57bede3c6e1a1bdcb6c32d4db0c3277b181b8304f093ad4a064f71025d65a4a4dbe968b434f2390168328a4850e07a568fdecfb59b749709ef94e291f91c4002065d1f1a64241d582152e79f401947149985526dcac68dbb00de4bfda24a6c55b8fcb0b72f0eb51e0a18fd5622afca8b59cb58079c41083af14c2cd7e686cd89e6929f523643342ee8d041d59394548191ea42f0e55d5dea557a4c3fafce020d8184efef65db3a53744db898cd841f34310a1328a6fbb8097a98a9d195a2c5fcef0836dc806549d37da1f887c71a2ac0e631f46a7ee8f6bb773369149bd9b112c4e4e1031474ef6823d2f6e94a7fda940245239c5d3c42a9b70dfb03e401edf97dda5da918e5cd77d692b0157b34a0643c03183f982d99b8befd51c6df6f568a5e3d5360d811b6ab8b010de536a030681fc1edd81322827c535b7e4dacacb1d3f5828d7bacebc0b590470cab326789d627229be83727b092638d72973069e55b8591b486f1a8c9075ca7a1308cca9f6ddeed6402d2d2e1d5b22f5b8dd4a7d95a82f5759b70b114c281362f6bac49d95ac7a0842aa26f3cc6d9234e8c678fc934749f18ebf37b3326d1d6651ae0fbdb82d4e4c05cbbf746ba90b5c0beabf6809c653c4f9ee24060f5ef1bc07466fdad8d6969bc9977bb724ef77f5df6b76c6ff379c529cc3a8b8cad315965f619a95c47b525796ed66df7927a2907d233a13b2b3322195bb3f1b42c206a9d2010504261f8a2bed41a4a720fd0b811a30143f76d049b916a2c33c0d5864ae3e4645ebb051cf4d82979ecf37eb47a94cf6d597987485aa7fb69bcdcc8d136119e757dc280bdb2a81405a54caa6308dc3bc9d582e095055e0a035203675590da235b58e5fe760896a51a9ff2cf57ceaafe96306e7b5747a299f50cd44a083c78ab6e4efe693852aa100f08bb035763c72988ed4be0b8e7bae94fbfc85d19c1c38ea6afa362bac60ce2b2813734041dd307654d50947f849cf06b701651d28d0ce26e7581d968bd43ebe0eb7a52421bf2a6fa3487941f09bcf3dcabea5a1f3954f08a0bee00debbb50e299875e2277e9915c41cb7decba515df4a11c16be032c1d55752d66d35464ac0576bfb2ec5c93c33c2d64d31692f7e3f3a631df0b1c93fd9be2c04de9ff806105223ee3809ef5e7fbd157180eafdf7ed9e68541751ab63df4e47ed7ccd6bf70437ac6693d6cc3af69f6276405b1a5bc0f9d31c233c131d586f6a3abee4ad44f7379d0bc165a757b992b1e2433bca696fb6d04a7ed164b3e09fc6998e3c451fb5bb788928a5868a24571f21f3ebc5cd57fbd0bd4b4b630efa9011c3720254cff11100512ceb8c58f3f78c0a28f46e4cfd8a7b8894dca64d60d105bb2f82e3876fc34d45c8802d1be08a48cf04cedd59b39cf4adfb8871879fefd38f4e34a4345e631872c37e6dc5bb80533f629ff6a7a98a5dbe47b88d997910a09e8cc28c01d1d690cb5220a0f16ccbd7ef3ba984e52d00b860eb49853da3307063b79b26c8f6faadb1146f0ebff6462d207ea3c8c4409bdfd020916ee678291a5d26a6636cce5a95fbcf40587e97808972209fe7c6aaf6ebd886fe73ed4b46e2c36ee219ef760b6ce2eddb4eb61f9b67d73e597518702af872910c488bbb184eb7fe3814f4e25baa4efff865342039194de1e9e340897298405a5fb725ffa11aa0dea694d9d3fd487a2053279fd8d012f15978605ed3441567a7bcc5afb44cdc8a81318a14669c7c4ae06286a5e39140801276247c7d7c97974e05f8d8892e88b1085679ee69bc58f8045f4f9a0f8d3bb44735ee8e831e2b768c8541fb6c6b23b6fa28abd9592bc291c2658b95ffc660351d105f7c6c41ede19ddf2c8360e24db157f9ed6fc5197b0aa3063c2c38d7b70483c05719a5a2e507d14dc3ff4a02342efe3a59d7eed911c1f89e2a83ab94e0f828cbbc42b6e01c01db02012ed6e957f6a767eaa71e15f2199e4f3aa6af2193142d9e615929d9285c93b61b28744ba045763760866b9418317b816bc749d189cea1fc3001924ab0c19fab5c45826727961b4de0e87735d82c162799adc561175afbf90255d3a61a6bb734717f0f420ad0d607bc57967050d7cc4f147f42652e20c64c9af9cb36e7fa1c45156744aa2acfbc5796d938f505bf3cd58f1c30a84f7c9dcd24d0ea3979a343686d4a2b2151aeb69b05e09f8370576118dd35f3f8754cab6875a963d4b4566d69b2ec67048190b70098ce3fb987b562cbfb0d0ea8b1517f3552a00cbac67793148edc1c0c66053828f5b57cbe14a9863e137f7f9e4296cef5e103614b97587a8638a4944c336dbbb5cd8d1946ab6e217cf36ef9add992a02c4d18a8d676dd63238dddd71f854aaf54675854d68b3dcba176116ea26b1ee93ffca1214a6438c2ea67e3f0632fb0740468ff5c27467f02f82af4c50cda473502148adf630e5f2a8a14e5f4a725863d15e878603f88074706ea901b761a482a4c1f2d818ee2e1e314dbd097911c2d58db407c557585e6f3827935a05ef80cb8a0981f4bd136601ff4fa8fbd4a492e2232a7f7ce32b49af76b08451a3d13aa2717fad825b4eb171427c89181cf83f77e367ddc46e01e94b8f40e967da7849406dc7d164ad750d6ba5aa3843b9759b9a7f924bb5c64b2cbd6e3af9e6958c0ae3a27b778d3a834a02ec83a7feaa2543cbf7ace3a2e23dc5abd061b376af581507e1a3239cf0628494e4e005350475e308b8d9b133124e119e49f50c5b58f24080b066e0cfa39de5c8a8fa0c014a2d16a584216ea7a330c5dd7ed6e1378d15c577b30471edf79292281032600de1d0382af20aa32a0d17dacaf6431c40688bc53259f6e1251899b1bbd622e5fdcbcbc90808ad28ac19abf5e634edb24a22160bd2989ddd3c70637249250c7fb9dc8f4135999880f5424fd4d87b8a2bff1d5a4442824877a9de89e6bce68ea1788240ee9b1e36f9048758bb76729a70bf7b0f04a43182f49132ddb3bd9cd5c5340a77741ec9cb5b60b50978dab4a77d32d8b13f687ccca0ef4d608f634432ddabfba06764a400856fc430096b90cfd2d7860ef00a53424320ee27a4ac370f2823cec85395116e972f357bc8a15495b0ffc0298de66de2ea8cdf89b742d727b6cd11c945d3100bcebcb0ee2649b9e0f1f5e56389f5f3a457736118c87e30f91035fab3e170d48be61658ae74a9f757220aeb7afa3aefc38520916afe0d03c4109e38bd36ba88cf7c3e8dcc667bd33749c0248dba6cf7c2bf4d526d28249cb31cc88d1d1d5c2918839fb0d86391dbc448d08780f2a166d236873628327d79b9d9667175be259109ce8ba26efe671b9f8068da2", &(0x7f0000001440)=""/53, 0x7, 0x12, 0xffffffffffffffff, &(0x7f0000001480)}) r3 = fcntl$dupfd(r2, 0x0, r1) writev(r3, &(0x7f0000000140)=[{&(0x7f0000000300)="0040abe02400030021206cda3b5e5672b89aeddb2a535fbd", 0x7e0}], 0x1) write$bt_hci(r3, &(0x7f0000000000)={0x1, @le_add_to_accept_list={{0x2011, 0x7}, {0x9a, @fixed={'\xaa\xaa\xaa\xaa\xaa', 0x11}}}}, 0xb) fallocate(r0, 0x4, 0xfffffffffffffff7, 0x2) r4 = syz_io_uring_complete(0x0) mmap(&(0x7f0000ff9000/0x4000)=nil, 0x4000, 0x6, 0x10, r4, 0xc34dc000) perf_event_open(&(0x7f0000001d80)={0x2, 0x80, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, r0, 0x0) r5 = socket$netlink(0x10, 0x3, 0x0) sendmsg$nl_generic(r5, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000000)={0x2c, 0x16, 0x1, 0x0, 0x0, {0xa}, [@nested={0x18, 0x0, 0x0, 0x1, [@typed={0x14, 0xa, 0x0, 0x0, @ipv6=@private1}]}]}, 0x2c}}, 0x0) fcntl$addseals(r5, 0x409, 0x3) r6 = perf_event_open(&(0x7f0000001d80)={0x2, 0x80, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, r0, 0x0) readv(r6, &(0x7f0000001200)=[{&(0x7f00000000c0)=""/4096, 0x1000}], 0x1) 19:29:54 executing program 4: clone3(&(0x7f0000000140)={0x553a293b8000, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) 19:29:54 executing program 1: perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) clone3(&(0x7f0000000140)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x57) [ 1282.034161] netlink: 'syz-executor.0': attribute type 10 has an invalid length. 19:29:54 executing program 6: syz_open_dev$sg(0x0, 0x0, 0x0) syz_io_uring_setup(0x4ee5, &(0x7f0000000080)={0x0, 0x40000000}, &(0x7f0000ffd000/0x3000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000040), &(0x7f0000000100)) [ 1282.064770] netlink: 'syz-executor.0': attribute type 10 has an invalid length. 19:29:54 executing program 2: perf_event_open(&(0x7f0000000200)={0x2, 0x80, 0x8, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) creat(0x0, 0x0) syz_io_uring_setup(0x44af, &(0x7f0000000100)={0x0, 0x2, 0x0, 0x0, 0x389}, &(0x7f0000000000/0x12000)=nil, &(0x7f000000e000/0x1000)=nil, &(0x7f0000000080), &(0x7f0000000040)) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) clone3(&(0x7f0000000140)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) (fail_nth: 8) 19:29:54 executing program 7: r0 = perf_event_open(&(0x7f0000000200)={0x2, 0x80, 0x8, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) creat(0x0, 0x0) r1 = clone3(&(0x7f0000000140)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) perf_event_open(&(0x7f0000000000)={0x3, 0x80, 0x7, 0x6, 0x2a, 0x7f, 0x0, 0x6, 0x20, 0x6, 0x0, 0x1, 0x1, 0x1, 0x1, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x1, 0x1, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x1, 0x0, 0x1, 0x1, 0x1, 0x1, 0x1, 0x0, 0x0, 0x1, 0x0, 0x1, 0x0, 0x1, 0x4, @perf_config_ext={0x4, 0xb6c}, 0x2, 0x7fff, 0x3, 0x0, 0x0, 0x2, 0x8005, 0x0, 0x7fffffff, 0x0, 0x4}, r1, 0xe, r0, 0x0) write(0xffffffffffffffff, 0x0, 0x0) [ 1282.159375] FAULT_INJECTION: forcing a failure. [ 1282.159375] name failslab, interval 1, probability 0, space 0, times 0 [ 1282.162000] CPU: 1 PID: 29716 Comm: syz-executor.2 Not tainted 5.10.185 #1 [ 1282.163449] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1282.165139] Call Trace: [ 1282.165689] dump_stack+0x107/0x167 [ 1282.166450] should_fail.cold+0x5/0xa [ 1282.167228] ? prepare_creds+0x25/0x5f0 [ 1282.168038] ? prepare_creds+0x25/0x5f0 [ 1282.168855] should_failslab+0x5/0x20 [ 1282.169644] kmem_cache_alloc+0x5b/0x310 [ 1282.170482] ? lock_downgrade+0x6d0/0x6d0 [ 1282.171328] prepare_creds+0x25/0x5f0 [ 1282.172103] copy_creds+0x72/0x580 [ 1282.172835] copy_process+0xfce/0x6740 [ 1282.173624] ? lock_acquire+0x197/0x470 [ 1282.174456] ? find_held_lock+0x2c/0x110 [ 1282.175287] ? __might_fault+0xd3/0x180 [ 1282.176096] ? lock_downgrade+0x6d0/0x6d0 [ 1282.176948] ? __cleanup_sighand+0xb0/0xb0 [ 1282.177816] ? _copy_from_user+0xfb/0x1b0 [ 1282.178681] kernel_clone+0xe7/0x980 [ 1282.179439] ? lock_acquire+0x197/0x470 [ 1282.180245] ? create_io_thread+0xf0/0xf0 [ 1282.181099] ? ksys_write+0x21a/0x260 [ 1282.181874] ? lock_downgrade+0x6d0/0x6d0 [ 1282.182722] __do_sys_clone3+0x1e5/0x320 [ 1282.183554] ? __do_sys_clone+0x110/0x110 [ 1282.184414] ? rcu_read_lock_any_held+0x75/0xa0 [ 1282.185359] ? vfs_write+0x354/0xa70 [ 1282.186131] ? fput_many+0x2f/0x1a0 [ 1282.186871] ? ksys_write+0x1a9/0x260 [ 1282.187648] ? __ia32_sys_read+0xb0/0xb0 [ 1282.188478] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1282.189550] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1282.190614] ? trace_hardirqs_on+0x5b/0x180 [ 1282.191493] do_syscall_64+0x33/0x40 [ 1282.192252] entry_SYSCALL_64_after_hwframe+0x61/0xc6 [ 1282.193296] RIP: 0033:0x7f44f9a2eb19 [ 1282.194057] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1282.197803] RSP: 002b:00007f44f6fa4188 EFLAGS: 00000246 ORIG_RAX: 00000000000001b3 [ 1282.199358] RAX: ffffffffffffffda RBX: 00007f44f9b41f60 RCX: 00007f44f9a2eb19 [ 1282.200807] RDX: 0000000000000000 RSI: 0000000000000058 RDI: 0000000020000140 [ 1282.202274] RBP: 00007f44f6fa41d0 R08: 0000000000000000 R09: 0000000000000000 [ 1282.203729] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 1282.205177] R13: 00007ffe83cb2bbf R14: 00007f44f6fa4300 R15: 0000000000022000 19:30:08 executing program 1: perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) clone3(&(0x7f0000000140)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x20000198) 19:30:08 executing program 3: creat(0x0, 0x0) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) clone3(&(0x7f0000000140)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x40000000, 0x0, 0x0}, 0x58) 19:30:08 executing program 7: perf_event_open(&(0x7f0000000200)={0x2, 0x80, 0x8, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4, @perf_bp={0x0}, 0x0, 0x0, 0x0, 0x2, 0xffff}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = creat(0x0, 0x0) clone3(&(0x7f0000000140)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) r1 = syz_open_dev$sg(&(0x7f0000000400), 0x0, 0x0) r2 = syz_open_dev$evdev(&(0x7f0000000040), 0x0, 0x8802) r3 = fcntl$dupfd(r2, 0x0, r1) writev(r0, &(0x7f0000000140)=[{&(0x7f0000000300)="0040abe02400030021206cda3b5e5672b89aeddb2a535fbd", 0x18}], 0x1) openat$cgroup_ro(r3, &(0x7f0000000000)='cpuset.memory_pressure\x00', 0x0, 0x0) write(0xffffffffffffffff, 0x0, 0x0) 19:30:08 executing program 6: syz_open_dev$sg(0x0, 0x0, 0x0) syz_io_uring_setup(0x4ee5, &(0x7f0000000080)={0x0, 0x42000000}, &(0x7f0000ffd000/0x3000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000040), &(0x7f0000000100)) 19:30:08 executing program 5: perf_event_open(&(0x7f0000000200)={0x2, 0x80, 0x8, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_io_uring_setup(0x44af, &(0x7f0000000100)={0x0, 0x2, 0x0, 0x0, 0x389}, &(0x7f0000000000/0x12000)=nil, &(0x7f000000e000/0x1000)=nil, &(0x7f0000000080), &(0x7f0000000040)) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r0 = syz_open_dev$sg(&(0x7f0000000400), 0x0, 0x0) r1 = syz_open_dev$evdev(&(0x7f0000000040), 0x0, 0x8802) r2 = fcntl$dupfd(r1, 0x0, r0) writev(r2, &(0x7f0000000140)=[{&(0x7f0000000300)="0040abe02400030021206cda3b5e5672b89aeddb2a535fbd", 0x7e0}], 0x1) clone3(&(0x7f0000000140)={0x0, 0x0, 0x0, 0x0, {0xfffffffe}, 0x0, 0x0, 0x0, 0x0, 0x0, {r2}}, 0x58) write(0xffffffffffffffff, &(0x7f0000000100)='?', 0x1) 19:30:08 executing program 4: clone3(&(0x7f0000000140)={0x7673b9290000, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) 19:30:08 executing program 0: clone3(&(0x7f0000000140)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) (fail_nth: 1) 19:30:08 executing program 2: perf_event_open(&(0x7f0000000200)={0x2, 0x80, 0x8, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) creat(0x0, 0x0) syz_io_uring_setup(0x44af, &(0x7f0000000100)={0x0, 0x2, 0x0, 0x0, 0x389}, &(0x7f0000000000/0x12000)=nil, &(0x7f000000e000/0x1000)=nil, &(0x7f0000000080), &(0x7f0000000040)) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) clone3(&(0x7f0000000140)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) (fail_nth: 9) [ 1296.376261] FAULT_INJECTION: forcing a failure. [ 1296.376261] name failslab, interval 1, probability 0, space 0, times 0 [ 1296.379284] CPU: 1 PID: 29858 Comm: syz-executor.2 Not tainted 5.10.185 #1 [ 1296.380722] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1296.382451] Call Trace: [ 1296.383013] dump_stack+0x107/0x167 [ 1296.383774] should_fail.cold+0x5/0xa [ 1296.384571] ? __delayacct_tsk_init+0x1b/0x80 [ 1296.385501] ? __delayacct_tsk_init+0x1b/0x80 [ 1296.386446] should_failslab+0x5/0x20 [ 1296.387248] kmem_cache_alloc+0x5b/0x310 [ 1296.388084] ? prepare_creds+0x46c/0x5f0 [ 1296.388920] __delayacct_tsk_init+0x1b/0x80 [ 1296.389812] copy_process+0x4500/0x6740 [ 1296.390664] ? lock_acquire+0x197/0x470 [ 1296.391479] ? find_held_lock+0x2c/0x110 [ 1296.392328] ? __might_fault+0xd3/0x180 [ 1296.393140] ? __cleanup_sighand+0xb0/0xb0 [ 1296.394001] ? _copy_from_user+0xfb/0x1b0 [ 1296.394854] kernel_clone+0xe7/0x980 [ 1296.395632] ? lock_acquire+0x197/0x470 [ 1296.396455] ? create_io_thread+0xf0/0xf0 [ 1296.397327] ? ksys_write+0x21a/0x260 [ 1296.398102] ? lock_downgrade+0x6d0/0x6d0 [ 1296.398968] __do_sys_clone3+0x1e5/0x320 [ 1296.399798] ? __do_sys_clone+0x110/0x110 [ 1296.400681] ? rcu_read_lock_any_held+0x75/0xa0 [ 1296.401631] ? vfs_write+0x354/0xa70 [ 1296.402421] ? fput_many+0x2f/0x1a0 [ 1296.403170] ? ksys_write+0x1a9/0x260 [ 1296.403952] ? __ia32_sys_read+0xb0/0xb0 [ 1296.404784] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1296.405878] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1296.406997] ? trace_hardirqs_on+0x5b/0x180 [ 1296.407903] do_syscall_64+0x33/0x40 [ 1296.408679] entry_SYSCALL_64_after_hwframe+0x61/0xc6 [ 1296.409744] RIP: 0033:0x7f44f9a2eb19 [ 1296.410535] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1296.414367] RSP: 002b:00007f44f6fa4188 EFLAGS: 00000246 ORIG_RAX: 00000000000001b3 [ 1296.415955] RAX: ffffffffffffffda RBX: 00007f44f9b41f60 RCX: 00007f44f9a2eb19 [ 1296.417457] RDX: 0000000000000000 RSI: 0000000000000058 RDI: 0000000020000140 [ 1296.418956] RBP: 00007f44f6fa41d0 R08: 0000000000000000 R09: 0000000000000000 [ 1296.420457] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 1296.421932] R13: 00007ffe83cb2bbf R14: 00007f44f6fa4300 R15: 0000000000022000 19:30:08 executing program 0: clone3(&(0x7f0000000140)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) 19:30:08 executing program 6: syz_open_dev$sg(0x0, 0x0, 0x0) syz_io_uring_setup(0x4ee5, &(0x7f0000000080)={0x0, 0x61400fff}, &(0x7f0000ffd000/0x3000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000040), &(0x7f0000000100)) 19:30:08 executing program 3: creat(0x0, 0x0) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) clone3(&(0x7f0000000140)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x100000800, 0x0, 0x0}, 0x58) 19:30:08 executing program 4: clone3(&(0x7f0000000140)={0x2001000000000, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) 19:30:08 executing program 1: perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x2, 0x0, 0x0, 0x0, 0x5e, 0x204, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r0 = syz_open_dev$sg(&(0x7f0000000400), 0x0, 0x0) r1 = syz_open_dev$evdev(&(0x7f0000000040), 0x0, 0x8802) r2 = fcntl$dupfd(r1, 0x0, r0) openat(r2, &(0x7f0000000740)='./file0\x00', 0x541000, 0x80) writev(r2, &(0x7f0000000140)=[{&(0x7f0000000300)="0040abe02400030021206cda3b5e5672b89aeddb2a535fbd", 0x7e0}], 0x1) sendmsg$inet6(r2, &(0x7f0000000700)={&(0x7f0000000000)={0xa, 0x4e23, 0x7, @rand_addr=' \x01\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x02', 0x2}, 0x1c, &(0x7f0000000100)=[{&(0x7f0000000040)="78737b5746e7a1045dc080cf2c069001ff207f0732bd25428a5646ceb73c215387c4b1a655cb396f037a1696c50d0f22fd00943d68d7c0d23b841ff32934d07f5d66899eb832b874db8a744df24b7a7b67ce0fbc1f3c6793f0a94d976cf804a155c0ee0d9bf112a4c04953870b3c8699a185ccf66af2f6696344e456049b6fe46a85e7dd09f8555e2933020f60128347e4825bd05e672af1b6399e2445fb80fe7dddc9aaaae016965c49d1af", 0xac}], 0x1, &(0x7f00000001c0)=[@hoplimit_2292={{0x14, 0x29, 0x8, 0x1}}, @hopopts={{0x1f0, 0x29, 0x36, {0x84, 0x3a, '\x00', [@generic={0xe3, 0xf0, "5877f0455293d9994008ad3fc0e8ecd33499391522f04542b5f775eac9418756131022e218301a0ce52e6b5c08f872b01817237fd547559b051da87a9bbcd0256ea746db88306195af6b689fd730cf8cc74922c4b18db18ce3e91b7f8dc51dfa2e2e0f3362e4a125ddb94c70d830dd6c1051ef4bf065befd992b9d5ecfff7242e5cbbb84f7dfddb8bbd1f7e8d0b788aee5b5a1d178baf9d7775fd08a17ca0bea46c6a7caa005f7c7b7488226d9ef748e989b7ee3fe8d8f286b07dc47cea14c406539a91ca5317d183afdb93a1054f4686792862d70b2a3f096144049e66e93bb95fd629af6373754977c5f11561bdcb8"}, @generic={0x3, 0xb2, "a426b6110a79aec90ae2d3ca4f16a42d37b7aef7d889ddfba083fe4003ca30ed779637e9a5f093aa92f3bc79f8fb80c1837d3762f3335acd4edcf982d267198096cf1ecdcbad130090516f73db7b90790c2571178d6776a05c472432ddc6f93a1c4b04c01b9812e417fa18792d3d04e49c5dc34c51bc0436ee33591b552b2281a1631a9f73b461eb8b55be85c57fce2be23b15f36d0df045974ef8d06c5c82e5a3643344733f169f29b3437622a1a5c08ad9"}, @enc_lim={0x4, 0x1, 0x81}, @calipso={0x7, 0x28, {0x0, 0x8, 0x80, 0x5, [0x5, 0x6, 0x2, 0x2]}}, @ra={0x5, 0x2, 0x4}]}}}, @rthdrdstopts={{0xc8, 0x29, 0x37, {0x2f, 0x16, '\x00', [@generic={0x4, 0x1d, "fa7b62fd1d6bfde34f0505aafb4f85a7af3262303cf6ed3c4e1ef20dee"}, @calipso={0x7, 0x40, {0x1, 0xe, 0x3, 0x7f, [0x5, 0x3, 0x7fffffff, 0x6, 0x4, 0x0, 0x4]}}, @calipso={0x7, 0x10, {0xfe57fe1d265d1250, 0x2, 0x0, 0x5, [0x5]}}, @ra, @enc_lim={0x4, 0x1, 0xa0}, @calipso={0x7, 0x30, {0x0, 0xa, 0x0, 0xa9d, [0x1, 0x10000, 0x2105, 0x5, 0x4]}}, @ra={0x5, 0x2, 0x2}]}}}, @hoplimit_2292={{0x14, 0x29, 0x8, 0x1}}, @dstopts={{0xe0, 0x29, 0x37, {0x1d, 0x18, '\x00', [@generic={0xe1, 0x8f, "8f2ade15b43e95d3599cbe17940ecdd31ca30fa36673d50828b05232a473f4f60e14b043b75f3c047fd13a7d1fd267afe664aa9ccbffede706fa38c134cae8c6d770f7795ed8ce25b4a7ed87211f908034fa61776c637f1596b4753a757d3b88fa1a11f0f1c1f65047b52929e8857813163d9380a58adc5cad41cdda9a3f1a0f0a804d2406f91e62bce02434799ad5"}, @jumbo={0xc2, 0x4, 0x80000000}, @calipso={0x7, 0x18, {0x2, 0x4, 0x5, 0xc37, [0x8000, 0x8]}}, @hao={0xc9, 0x10, @private0={0xfc, 0x0, '\x00', 0x1}}]}}}, @hopopts_2292={{0x20, 0x29, 0x36, {0x6c, 0x0, '\x00', [@enc_lim={0x4, 0x1, 0x2}]}}}, @dontfrag={{0x14}}, @dstopts={{0x48, 0x29, 0x37, {0x87, 0x5, '\x00', [@padn={0x1, 0x4, [0x0, 0x0, 0x0, 0x0]}, @jumbo={0xc2, 0x4, 0x8}, @enc_lim={0x4, 0x1, 0x3}, @ra={0x5, 0x2, 0x200}, @jumbo={0xc2, 0x4, 0x7fffffff}, @hao={0xc9, 0x10, @local}]}}}, @rthdr={{0xb8, 0x29, 0x39, {0x3b, 0x14, 0x2, 0x41, 0x0, [@empty, @mcast2, @loopback, @ipv4={'\x00', '\xff\xff', @loopback}, @private1={0xfc, 0x1, '\x00', 0x1}, @empty, @remote, @remote, @ipv4={'\x00', '\xff\xff', @local}, @local]}}}, @tclass={{0x14}}], 0x518}, 0x40000) clone3(&(0x7f0000000140)={0x4200, 0x0, 0x0, 0x0, {0x1e}, 0x0, 0xff5a, 0x0, 0x0}, 0x58) 19:30:08 executing program 4: clone3(&(0x7f0000000140)={0x2020000000000, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) 19:30:08 executing program 6: syz_open_dev$sg(0x0, 0x0, 0x0) syz_io_uring_setup(0x4ee5, &(0x7f0000000080)={0x0, 0x61520fff}, &(0x7f0000ffd000/0x3000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000040), &(0x7f0000000100)) 19:30:08 executing program 5: perf_event_open(&(0x7f0000000200)={0x2, 0x80, 0x8, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_io_uring_setup(0x44af, &(0x7f0000000100)={0x0, 0x2, 0x0, 0x0, 0x389}, &(0x7f0000000000/0x12000)=nil, &(0x7f000000e000/0x1000)=nil, &(0x7f0000000080), &(0x7f0000000040)) r0 = perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) perf_event_open(&(0x7f0000000280)={0x4, 0x80, 0x0, 0x80, 0x4b, 0x20, 0x0, 0xffffffff, 0x20000, 0x6, 0x1, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x1, 0x1, 0x1, 0x1, 0x1, 0x1, 0x0, 0x1, 0x0, 0x1, 0x0, 0x0, 0x1, 0x1, 0x1, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x1, 0x1, 0x1, 0x0, 0xe7e9, 0x1, @perf_bp={&(0x7f0000000000), 0x8}, 0x64200, 0x7, 0x81, 0x3, 0x7, 0x3f, 0x4, 0x0, 0xfff, 0x0, 0x4}, 0x0, 0x6, r0, 0x8) clone3(&(0x7f0000000140)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) write(0xffffffffffffffff, &(0x7f0000000100)='?', 0x1) 19:30:08 executing program 1: perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0) perf_event_open(&(0x7f0000001d80)={0x3, 0x80, 0x0, 0x0, 0x8, 0x0, 0x0, 0x5d, 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x2}, 0x430c0, 0xa4}, 0x0, 0x0, 0xffffffffffffffff, 0x0) clone3(&(0x7f0000000140)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) 19:30:23 executing program 5: perf_event_open(&(0x7f0000000200)={0x2, 0x80, 0x8, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_io_uring_setup(0x44af, &(0x7f0000000100)={0x0, 0x2, 0x0, 0x0, 0x389}, &(0x7f0000000000/0x12000)=nil, &(0x7f000000e000/0x1000)=nil, &(0x7f0000000080), &(0x7f0000000040)) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) clone3(&(0x7f0000000140)={0x800000, 0x0, 0x0, 0x0, {0xf}, 0x0, 0xfffffffffffffd17, 0x0, 0x0}, 0x58) write(0xffffffffffffffff, &(0x7f0000000100)='?', 0x1) 19:30:23 executing program 2: perf_event_open(&(0x7f0000000200)={0x2, 0x80, 0x8, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) creat(0x0, 0x0) syz_io_uring_setup(0x44af, &(0x7f0000000100)={0x0, 0x2, 0x0, 0x0, 0x389}, &(0x7f0000000000/0x12000)=nil, &(0x7f000000e000/0x1000)=nil, &(0x7f0000000080), &(0x7f0000000040)) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) clone3(&(0x7f0000000140)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) (fail_nth: 10) 19:30:23 executing program 6: syz_open_dev$sg(0x0, 0x0, 0x0) syz_io_uring_setup(0x4ee5, &(0x7f0000000080)={0x0, 0x61600fff}, &(0x7f0000ffd000/0x3000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000040), &(0x7f0000000100)) 19:30:23 executing program 4: clone3(&(0x7f0000000140)={0x8000000000000, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) 19:30:23 executing program 0: clone3(&(0x7f0000000140)={0x8, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) 19:30:23 executing program 3: creat(0x0, 0x0) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) clone3(&(0x7f0000000140)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x1b0be1f000, 0x0, 0x0}, 0x58) 19:30:23 executing program 1: r0 = perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x4, 0x0, 0x5e, 0x0, 0x4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f0000000100)}, 0x40024, 0x0, 0xdc, 0x0, 0x0, 0x0, 0x3f}, 0x0, 0x0, 0xffffffffffffffff, 0x8) clone3(&(0x7f0000000140)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) listen(0xffffffffffffffff, 0x9) ioctl$FS_IOC_GETFSMAP(r0, 0xc0c0583b, &(0x7f0000000000)=ANY=[@ANYBLOB="000000000000000001000000000000000000000000000000000000000000000000000000000000000000000000008300000000000000000000000000001d00000000000000ff07000000000000000000000100000084f000000000000002000000000000000000000000000000000000000000000000000000000000e703000000220000000400000000000000fcffffffffffffff01000000000000000200"/256]) [ 1311.125198] FAULT_INJECTION: forcing a failure. [ 1311.125198] name failslab, interval 1, probability 0, space 0, times 0 [ 1311.127931] CPU: 1 PID: 30377 Comm: syz-executor.2 Not tainted 5.10.185 #1 [ 1311.129575] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1311.131490] Call Trace: 19:30:23 executing program 7: perf_event_open(&(0x7f0000000200)={0x2, 0x80, 0x8, 0x8, 0x0, 0x20, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = syz_open_dev$sg(&(0x7f0000000400), 0x0, 0x0) r1 = syz_open_dev$evdev(&(0x7f0000000040), 0x13, 0x200200) r2 = fcntl$dupfd(r1, 0x0, r0) writev(r2, &(0x7f0000000140)=[{&(0x7f0000000300)="0040abe02400030021206cda3b5e5672b89aeddb2a535fbd", 0x7e0}], 0x1) perf_event_open$cgroup(&(0x7f0000001280)={0x0, 0x80, 0x8, 0x3, 0x1, 0x3, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x1, 0x0, 0x0, 0x1, 0x0, 0x1, 0x0, 0x0, 0x1, 0x1, 0x1, 0x0, 0x1, 0x0, 0x1, 0x0, 0x0, 0x1, 0x0, 0x1, 0x0, 0x0, 0x1, 0x0, 0x0, 0x1, 0x1, 0x0, 0x1, 0x1, 0x1, 0x1, 0x0, 0x38, 0x0, @perf_bp={&(0x7f00000001c0), 0x8}, 0x20, 0x800, 0x8, 0x0, 0x7ff, 0x8, 0xfff7, 0x0, 0x1, 0x0, 0x4}, 0xffffffffffffffff, 0x3, r2, 0x1) creat(0x0, 0x0) clone3(&(0x7f0000000140)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) write(0xffffffffffffffff, 0x0, 0x0) r3 = socket$netlink(0x10, 0x3, 0x0) sendmsg$nl_generic(r3, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000001380)=ANY=[@ANYBLOB="2c0001001600010000000000000000000a0000001800008014000a00fc0100000008000000000000000000008ec0bb348a0e50e1b578ed0afd1e7f3ec17b53c5a9d9334552b0fc4000000000000000cc7f866e9eb736cf81819ad8b3cdaf95b05f9185273c1e532ee428bb41115dc9aacd1b0314ad3a58c856b6627dcb"], 0x2c}}, 0x0) r4 = syz_open_dev$loop(&(0x7f0000001340), 0x0, 0x10000) copy_file_range(r3, &(0x7f0000001300)=0xebe, r4, 0x0, 0x56000, 0x0) r5 = socket$netlink(0x10, 0x3, 0x0) sendmsg$nl_generic(r5, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000000)={0x2c, 0x16, 0x1, 0x0, 0x0, {0xa}, [@nested={0x18, 0x0, 0x0, 0x1, [@typed={0x14, 0xa, 0x0, 0x0, @ipv6=@private1}]}]}, 0x2c}}, 0x0) ioctl$FS_IOC_ENABLE_VERITY(r5, 0x40806685, &(0x7f0000000040)={0x1, 0x2, 0x1000, 0x2d, &(0x7f0000000000)="3120e32b8ee7345118691a080be2e2c1e9256352a473c8145ff364550a10857d26104a21a32413be8944d8bab5", 0x1000, 0x0, &(0x7f0000000280)="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"}) [ 1311.132130] dump_stack+0x107/0x167 [ 1311.132952] should_fail.cold+0x5/0xa [ 1311.133789] ? create_object.isra.0+0x3a/0xa20 [ 1311.134803] should_failslab+0x5/0x20 [ 1311.135634] kmem_cache_alloc+0x5b/0x310 [ 1311.136520] create_object.isra.0+0x3a/0xa20 [ 1311.137477] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 1311.138601] kmem_cache_alloc+0x159/0x310 [ 1311.139500] ? prepare_creds+0x46c/0x5f0 [ 1311.140387] __delayacct_tsk_init+0x1b/0x80 [ 1311.141322] copy_process+0x4500/0x6740 [ 1311.142186] ? lock_acquire+0x197/0x470 [ 1311.143061] ? find_held_lock+0x2c/0x110 [ 1311.143948] ? __might_fault+0xd3/0x180 [ 1311.144817] ? __cleanup_sighand+0xb0/0xb0 [ 1311.145749] ? _copy_from_user+0xfb/0x1b0 [ 1311.146663] kernel_clone+0xe7/0x980 [ 1311.147477] ? lock_acquire+0x197/0x470 [ 1311.148336] ? create_io_thread+0xf0/0xf0 [ 1311.149253] ? ksys_write+0x21a/0x260 [ 1311.150077] ? lock_downgrade+0x6d0/0x6d0 [ 1311.150982] __do_sys_clone3+0x1e5/0x320 [ 1311.151852] ? __do_sys_clone+0x110/0x110 [ 1311.152760] ? rcu_read_lock_any_held+0x75/0xa0 [ 1311.153754] ? vfs_write+0x354/0xa70 [ 1311.154574] ? fput_many+0x2f/0x1a0 [ 1311.155358] ? ksys_write+0x1a9/0x260 [ 1311.156178] ? __ia32_sys_read+0xb0/0xb0 [ 1311.157055] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1311.158181] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1311.159295] ? trace_hardirqs_on+0x5b/0x180 [ 1311.160225] do_syscall_64+0x33/0x40 [ 1311.161027] entry_SYSCALL_64_after_hwframe+0x61/0xc6 [ 1311.162127] RIP: 0033:0x7f44f9a2eb19 [ 1311.162957] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1311.166929] RSP: 002b:00007f44f6fa4188 EFLAGS: 00000246 ORIG_RAX: 00000000000001b3 [ 1311.168578] RAX: ffffffffffffffda RBX: 00007f44f9b41f60 RCX: 00007f44f9a2eb19 [ 1311.170126] RDX: 0000000000000000 RSI: 0000000000000058 RDI: 0000000020000140 [ 1311.171673] RBP: 00007f44f6fa41d0 R08: 0000000000000000 R09: 0000000000000000 [ 1311.173209] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 1311.174698] netlink: 'syz-executor.7': attribute type 10 has an invalid length. [ 1311.174763] R13: 00007ffe83cb2bbf R14: 00007f44f6fa4300 R15: 0000000000022000 19:30:23 executing program 3: creat(0x0, 0x0) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) clone3(&(0x7f0000000140)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x10000000000, 0x0, 0x0}, 0x58) 19:30:23 executing program 6: syz_open_dev$sg(0x0, 0x0, 0x0) syz_io_uring_setup(0x4ee5, &(0x7f0000000080)={0x0, 0x617fffff}, &(0x7f0000ffd000/0x3000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000040), &(0x7f0000000100)) [ 1311.232911] cgroup: fork rejected by pids controller in /syz1 19:30:23 executing program 6: syz_open_dev$sg(0x0, 0x0, 0x0) syz_io_uring_setup(0x4ee5, &(0x7f0000000080)={0x0, 0x8d020000}, &(0x7f0000ffd000/0x3000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000040), &(0x7f0000000100)) 19:30:23 executing program 0: clone3(&(0x7f0000000140)={0x11, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) 19:30:23 executing program 4: clone3(&(0x7f0000000140)={0x8000001000000, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) 19:30:23 executing program 7: prctl$PR_TASK_PERF_EVENTS_DISABLE(0x1f) creat(0x0, 0x0) write(0xffffffffffffffff, 0x0, 0x0) 19:30:23 executing program 3: creat(0x0, 0x0) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) clone3(&(0x7f0000000140)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x2a1853d7f000, 0x0, 0x0}, 0x58) 19:30:23 executing program 5: perf_event_open(&(0x7f0000000200)={0x2, 0x80, 0x8, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_io_uring_setup(0x44af, &(0x7f0000000100)={0x0, 0x2, 0x0, 0x0, 0x389}, &(0x7f0000000000/0x12000)=nil, &(0x7f000000e000/0x1000)=nil, &(0x7f0000000080), &(0x7f0000000040)) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x81, 0xb137}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) clone3(&(0x7f0000000140)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) write(0xffffffffffffffff, &(0x7f0000000100)='?', 0x1) 19:30:23 executing program 6: syz_open_dev$sg(0x0, 0x0, 0x0) syz_io_uring_setup(0x4ee5, &(0x7f0000000080)={0x0, 0xd9010000}, &(0x7f0000ffd000/0x3000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000040), &(0x7f0000000100)) 19:30:45 executing program 4: clone3(&(0x7f0000000140)={0x10100000000000, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) 19:30:45 executing program 2: perf_event_open(&(0x7f0000000200)={0x2, 0x80, 0x8, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) creat(0x0, 0x0) syz_io_uring_setup(0x44af, &(0x7f0000000100)={0x0, 0x2, 0x0, 0x0, 0x389}, &(0x7f0000000000/0x12000)=nil, &(0x7f000000e000/0x1000)=nil, &(0x7f0000000080), &(0x7f0000000040)) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) clone3(&(0x7f0000000140)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) (fail_nth: 11) 19:30:45 executing program 6: syz_open_dev$sg(0x0, 0x0, 0x0) syz_io_uring_setup(0x4ee5, &(0x7f0000000080)={0x0, 0xfc030000}, &(0x7f0000ffd000/0x3000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000040), &(0x7f0000000100)) 19:30:45 executing program 0: clone3(&(0x7f0000000140)={0x1100, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) 19:30:45 executing program 1: r0 = accept4(0xffffffffffffffff, 0x0, &(0x7f00000000c0), 0x800) pwritev2(r0, &(0x7f0000000240)=[{&(0x7f0000000100)}, {&(0x7f00000001c0)="c04aa07767170313116ebdddf9f3cfc8a63af97811ad54d60cce0a29a3c822ea005483818279675e77e7af402a03c970c94d037bd254d6680d061f8ca05481c8b5919effabdf6ccc5068de559f90bd5e701cdef923dcaa694ee8ef395cf27685bf06ab6ef4d5", 0x66}], 0x2, 0x1, 0x7ff, 0xc) r1 = perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r2 = syz_open_dev$sg(&(0x7f0000000400), 0x0, 0x0) r3 = syz_open_dev$evdev(&(0x7f0000000040), 0x0, 0x8802) r4 = fcntl$dupfd(r3, 0x0, r2) writev(r4, &(0x7f0000000140)=[{&(0x7f0000000300)="0040abe02400030021206cda3b5e5672b89aeddb2a535fbd", 0x7e0}], 0x1) ioctl$sock_ipv4_tunnel_SIOCGETTUNNEL(r0, 0x89f0, &(0x7f0000000700)={'erspan0\x00', &(0x7f0000000640)={'gre0\x00', 0x0, 0x700, 0x20, 0x8000, 0x3, {{0x28, 0x4, 0x3, 0x0, 0xa0, 0x66, 0x0, 0x3f, 0x4, 0x0, @local, @rand_addr=0x64010102, {[@timestamp_prespec={0x44, 0x34, 0x6c, 0x3, 0x3, [{@initdev={0xac, 0x1e, 0x1, 0x0}, 0xff}, {@broadcast, 0x6}, {@loopback, 0x1}, {@multicast2, 0x7}, {@rand_addr=0x64010101, 0x3}, {@broadcast, 0x9}]}, @cipso={0x86, 0x19, 0x0, [{0x2, 0xa, "25ce8f7281231a49"}, {0x7, 0x9, "b9d462e9648c1a"}]}, @timestamp_addr={0x44, 0x3c, 0xc5, 0x1, 0x6, [{@empty, 0xfffffffe}, {@loopback, 0x1000}, {@multicast1}, {@broadcast, 0xfffff800}, {@private=0xa010101, 0x5}, {@dev={0xac, 0x14, 0x14, 0x30}, 0x9}, {@broadcast, 0x1ff}]}]}}}}}) ioctl$sock_ipv6_tunnel_SIOCADDPRL(r4, 0x89f5, &(0x7f00000007c0)={'syztnl0\x00', &(0x7f0000000740)={'ip6gre0\x00', r5, 0x29, 0x8, 0x3, 0x3f, 0x0, @dev={0xfe, 0x80, '\x00', 0x21}, @local, 0x0, 0x40, 0x1ff, 0xfffffffa}}) clone3(&(0x7f0000000140)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) r6 = socket$netlink(0x10, 0x3, 0x0) sendmsg$nl_generic(r6, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000600)=ANY=[@ANYBLOB="2c0000000200010000000000000000000a0000001800008014006864f1c66a2a5c3691284f780a00fc0100"/56], 0x2c}}, 0x0) sendmsg$nl_generic(r6, &(0x7f0000000080)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x80000000}, 0xc, &(0x7f0000000040)={&(0x7f0000000280)={0x360, 0x5, 0x100, 0x70bd27, 0x25dfdbfd, {0xe}, [@generic="1d3905a68d7b37b2c841a21195736693c024e5156e30f916963e6977e1f4d4d2181d447f5948a1b9c4d7cdf2518794cc96ee80745f563c18797105f24892ce9c8a3d28370601c49715d8ee6a6051d2676b088d796db0e3971ca3c0fac791c54cd8309a9e31f04b3562c5ea9f8772c1d22050a10185de0ea4f04befb6dcdf5d91da6fff6c4b36ad7dd6f30ea64c55369cad239d8a25541df4d8a9af641ed7bb7c71d29be4bcc60cbafad955d99b74c29df31d3ab461f3d1303ad9c6ad87c8f0c00fe22e3104b56b855453d81d6d144857", @generic="cef5853d5391c3d534dabf2eecdf86903507bfe24a888ef92a2a5095a7436f639e56585313ee65bbaf33b2bf89f3ee735dbed2fb4213368e9bb37646c3eb7ec4f17e67a1c78dbafc082424e4ace0e7b49b4249c93e27f7faa90244fac2dc63e31cb5bbeed0320cffca2516f3145468817e53fd59c657de33537270c89477e4e5b20a8d351672e8a229e182bdd553d98f08b13708cddf0269190df20d09ffd1e2ba41b729545751fc761d492bed37cacb9f75c1cd5ba56819ceaa2df5c093fdbba3f5383376bd3dea17e6985f2624942d2225b00fc429949d1ba0888de1aff3c88992fc9b4e0bcc2a1311ff65", @nested={0x18a, 0x5f, 0x0, 0x1, [@generic="7f96a88d2ae72579697313c53158c37228b060f0ecb69d78bb9c65bac26f8516ef8868a029b834b63f6508071e2f44d98edfc9bc3b5e84f82bdd0d05f255d578eefd83c71cbc91a8a4cf0ed2f14485c4c8f0620e123bb1d00557b55036c115ee5f093364079def7a669ccab79407bd66064011bc22d4775bb21667bf2ca6e92566b4d22f9c72589502fa8c54a7616cc441db40e6cd7d8a732d423ffe5714f9389d48157efa39effd39aa4e9f0c487a4b0ee1c4252744503b03e270ed2c24434dfeb215", @typed={0x8, 0x31, 0x0, 0x0, @fd=r1}, @generic="35c1a5b9d0484eaca74a69b800ca2eb10e9bd208482c67e98f65ad65d465114992f979dd32fe14f56cb286d2d285220a95c33b35df2a9df4e765a2dd2882fd295470af16f1eab93ffe10c85e4c0d148941c3ccd9913d6371d3a3edaa04d972c49df07c4b1f03e07408e04e507dbcda7512e5ecfd0d47deb9025d40dfbe92aa4aee955d0f546225ca62f2d9104807b3fe09a65642aa47140bf6efad8df512eb97d3f63a49e753468d32e8b69ce7542c8573cdb3062a5525e7551cd8"]}, @typed={0x4, 0x53}]}, 0x360}, 0x1, 0x0, 0x0, 0x44001}, 0x4884) 19:30:45 executing program 7: perf_event_open(&(0x7f0000000200)={0x2, 0x80, 0x8, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = creat(0x0, 0x0) r1 = openat(r0, &(0x7f0000000000)='./file0\x00', 0x202, 0xc0) vmsplice(r0, &(0x7f0000001480)=[{&(0x7f0000000300)="dc705325a420c5c9a789b142a59d759076d3a9090e1124fcc2833b6b599067995600ec7fbb060f676bcba7b06acfdabbec169bb466aadce397d59870d0aba366016ca2b10007cc75d6ac1fec993efcd066bf453957661476b0141d838aca", 0x5e}, {&(0x7f0000000380)="c6584cfe7f3e91fad3295435264b5bedc92922bc9347e8ac94d057364aecd1a80202ec41caffdc7314e8f8e620596ee39923a9db87a307f6b2a777d31c338f3c6122280ecb7c8f089d49259d3be3f94779a9be3b85230d4761b41148ea75ee13e4f8541b3947d5b1b3504f2e609796119fb5a259209c7fa24bffb3dff75db9868f97e64c1fdf72", 0x87}, {&(0x7f0000000440)="7b23f8572ab7ae259a519ee5b16d8a52aa0bf6", 0x13}, {&(0x7f0000000480)="3034544dcde468e8738f9cd705a676eb8e19ac0d7f87d8a7e6dc6e1093aa72931a3f878693ddb3028573cb724ea530700d367680bc25d2ce4848b5e8ef8dc333347d36d7270207d98fe04359a414d11a5c400a8d58df6113259e8e7422632736f9411a43850260f33656c8288bc5b122e4273fe33d1a8bd51242cf46eef875e63fec2f4bebf21cc356769858613c62256d681313eca6e08a3e5d58ea371597596862c9021dada9d49887f9936ba5db694a9e2613d91c77851780bf747854764fa07b66df57b2316f00dfc82e9812dd184c5814be484dca37835d52556e6008fe7969df7c98c099c49b54457c5f2a6753f3f1dbf5bd60a311013b4a496f057822e1955721e711da6af7331f282328624f706369e5ba7ec9f30d95507405b5fcfce64417ef63da15225d334032c6371a94b7998c9398ba5892efcf2374fc61896cdee1295c5daf1152bf04592759492e6603a2e1bbc911119f2a44c1ff7102f0426e82e42a522286ebc467432beab2d9fbdf03502b6881c4e42fa1af5890241cb10e64e245f3a586567dc2ad9f21a9e58c82f352d927cf89f15bc64743fcc73dcec71f681be0617d8daa2bf697e6077c569fa2b93016945ebdf21c12c49c0c2ca1c1979ca6526b174bae6bb6e5c0d4413f79c338f927405fc6405716131b69bbe01a3899debd24c0de1f7c4373afdc43a121224566209fb74c6b132862b0ee66c8751bffa7714c68415a26d9862d694cf1cc9fd1dd45f5583c1e087b0a9d113c4647c47fa32c90307c435dc3b10b9bc69cb1899e388ce27c60221113378f7fbea92b9ee5ab720a6412a56af31bcb261937917932c8410f1c9ca469104f0e8e955f9b58f0afa031fa852ec61cc7a6e8ed7f5b1b9064b22aca6cc73377d6d65c46f33a6689e3091b844a57fa14fefdc19429e785e49f6bc573ce9f32ab9c2ce4dd1909b8ca79db2fa818d29f1feb57cde29a0fd1acc0fa4174a22b389f18fa0d3e7598b9e53f3377879413bb459d8a4d2f11c8017adac0dd402a8d7eb2a4de35bb802ba80e23eb4303b53cd8b0784f7d8e29482e4b86859eaeff3b78667b894636ab04eb256214ca7450d365a693078c57b1669c2fd9c3e9d17fc2199b52daa3b9ec6d327e29907664591be737141d7b2a889f5c82c7f1f7c7b3da96b3311113994006900636f925a718b5678e7261f7d3b19a0793a30b161b664ef0b462204349facce99a19da1c7914d0c492337870dd05c2053daa2e6924081a7f3a217ca3e4d4c4730bf33fc74d27a007653e0ef0f0fd8cc6fa219d62ad731a7a6f105f872d730b11e2424e7d1733d3f85a04e65b4be0bceb74948bedced35d939f91ed480f511cf4fcffe3802c39096e648acbd3091e78e8e54dc0f85cb636c314d5c1a6ff3e76ab476e7f4634beec3a1dd34ec3c23d747e8236f275345f7c831cac408d4c5649b0492ce7022b592b320f4c83059dd54ebd1c3cf67288666ce529439f342d194803428144db3480eb78fe5b271ce332afa52ca569f03ca5b032fa537dd95c44c1383a3febb2d5e72f1d09620e55b5bb624bf726d5b071132cddca3e61c8bf49cd9aae05ef7458768d2876e1cb6c3516999ec6e00e3358981d4ccf3045b4b725c941a86a3b5ee66865de3145bd433f965d62ac97d6bb286f39b43ff5becd9a1c9c72726d2c027452dd0d963a3778bebfec3dd923516a1abc9de44768937bbae639ac9b14c58673fd99795b457adbc76b6cad58af2aadedf46c81453ae611c7438401cbef694442b3b14ac2129756d0e7c35b4ab233f215d4f098d74ab82bdcccf63ef85e659b8e07ff9b6f747a22285b27f671446e5ca45692cb4a095ac17a358f33fc4fb47e079b21b283b491cf46f61bc3dd035f8505c2fe9d1ddd91e29c0edbbec818e96da5797e61aa4ad00b02a4730dbebfde9ab2115f969892a94401baa788ad0bf149014578d270d2cbb97926e6fc7372eec1f41a8f287a51848459a24918c75656738c74805560ecab6f3d56814b089a610212c0fe190f4359568345266399a5bc7dd4ddd7c727a1ec917e34242f157d834869c343916fb77e81738ba88757b340cb7fea802f18bfd970817dec7657c97eea8f8d7dd39bd7e85eaf8cde77a0977777d58efbd2bf542bd70f540a7f23695116b85d2e205b2199c4c9dbf8a69d982f4b26e8cc4a9dbda5040c99b86ad3844b346eeb9b9e2d5cbc8974455024f554c49a95aec5f65516dd63dff21e7581bd4810353e5f3688455a900dbda162315c4a9443f2fc1b716ba05320118d5df4bb8e1ecd22fd9a0eead71d624c55bd39a6c209f3dd436fe21c97471a4f77c4c4a47e79b06e2ba2161006f9d2c129287eb74d2341df938e84a16e67b7094875be314693193da67aa8dec507b4fe8fbb8bf44d36ea42de077c1d990f12e6901e8a6e552e9100bba1068869acdb4cced23505f1dbbef6ebba733b23b4980c296f6766e798639d374f5f5d7491954abe95e192286552f56bae19581b28f50cee8a0f77539fe60e423bc77d21c5f4acc67cec4f6cc669956ac45b939a5784b619d2c9ee034908c3cd14b3303960eb4545537f980abe310865f6e4a73884f5e1f2a8d41f02b28f012f0b303c28a4a764f4ea64ea028bc4e68821481f9b2b77d118ec14654f5f68338ad4652a977d20174f85bb59571c25ccbd6c0f880dff798a42c701a702666086a98e793ddd117da983741478228615d220ae56a7df4defee85072cde3c53e53f7db06b15840b7693c7118ea79eec0c979e50c579eac8ac280b4e7b6a8eff484ad8769a26629ac9ba6e3e297bb8567309d32b73d141e3d3c149424524c7e5f64d1f660bf7c07d57e125f1c6beda730de4f2973c0bcdb1e81696c72f42953b26510e7bf173af9e6d1b708730ccf5287dbed569dcb40fa0fa19dcdcfa6f98d68aac27da7bda150de32d3e708609ba833488f3e5d48da0bbddd7bc9d1dfd82994caedb01cecd06e710d35992404b97d7408bd4ef605b1438f8b2e31754b601bae8f207e443e1e465066f77b58444b17548357e28920b2ea416d8812209078ec508c06bebc9cc118145c9ae381cc6429815267cfea456a1bd049b1f05315c8957c47408a8f3b137ed0a9150b66376737f45e15bef1c0c69a51c04f0bccc1cc66b0e0932ac3b9c974c1502e645f43d7382dd8bb9bb93316d7cea417e32e2a8f469c49face93b7aca14a4fdeac7f9934708c589dca3077a5f78869f57e3220d51f3b0b35e9b76021382b077d222bb7c797f7d04598a988a83c184fe39faf685fa8628385fdbf24660eaecc9eb11e2ec4b56cd75669a159f8ead1a0d9ca5d76da21e206bd85243481e35059c6c9d2f4663d58eb85df559e9f5fbf4ff5e680a94ea7ee583c69c6c822108e4bf2fcf67c17d6b5052b76277de38681b204241a4878db93915493258cb6c1ae95c2c00bb14c6bfcd6eb74f9201500663377282581e79d1994432ac3bcdfa4822f88684f033e74d3e4d9650c78edcafbe227d641cb2d5dbb3d0b5c019b48a89bc6c89ac162339eb37cc754134489c10d657c9e8ecf7a4d408861a32f87143ea266eb592ab052e093ce54d03911bc8ba022a0416a636e62c48423948b98c85d60b4eb0e58bc1fa5e8a4f04231460cac0abbbc54d8c4a7cc1ca567bf3b0fb254c7bf23d6375afdc6e90fc64d3ad342934ac350b3135a9d241a4eddb7292d61de58e3ffe6263b1e0af021303155e10f9064c9c649cdfc48189269d334e690987621764878e35ffbc683cbbeda3507c221b21c09c293fff970717772c323d8cec1b955a90c84a5e0bc2422cfa1dbff98649f1a6f94afe3eae126ea96f851c99e961dabccab3cdeff5ba5c6e3492084f05f3fb0610da3af1edcf3f4531da31abf4e21f36d802a8cd281e1132f847cc4858a1623d8f93b4a4e941aca3b73e0e46c9e1da8590e5af2e8fb9fa8485bf89992e47864573e6ee345cf37e458d41b4c908d24b53e0678c1ab52c0da33256542231a1dafc0a7d02512c0867bdfc3fc0abacdfc29100ba8b00cc594d84110e241e77108dfa241f0c6a19a10e3ce6a04e7748ce3196fd04c47cb197cb8090e3ecf24fa485e623206fb5a4916260ae79177293a97e1ebf1f185944fe8d7f27ccd9ecca0c61515f7e142f85e5a09c97dfe9b1660ee40dd27e168b56647d7e1242d2cb39072832ff6835ed7c2b2e1b7f3d65de2f8ce65e43289062143ccbcb9fc96f1195de603925d447b86edb3d230aa0142958eab22ad6779bb75d3d21f7a8a8b96a14100361777c8a368761345a655113386242fd8f3e4aa77a64b7af63f24a405e4d2d194d07e904280029fe2c31c08c84e251400cc9641ad6819a40159555d09078c7f5c9b7fd1a62f669fcc3644c0adfaced0d63a820a13b3d64d5ddfe30875dbc82378b7aedb130d4d5df68b7097f67089e7e438cd0253a7455865b3f77bb16314bf835ada43aaba8fada05c94a6f72c85af236ccaee26a132fe06784c3d9e2323f65436c4c6a941b0f540872d8c7fe3946fe9eb5d52df19e15e10570441312e51344f03f0727e8cdfa5258f1a519efb1c84727956319169c7e3f3130de4e5fe47b294afa23ed12eb3adafe1a08d2f674ac42e8c85ad30420ab962ac65a1d364579aa4e54167733bf74b54e2ae535a586aa6a9329c2da95f9ca8e2e77254a9a8254e8f7d93d89558dd2611fe90fe429c028e9e300d5d8fae25c9732bf3a0f9277dd5750e6045608a5c1e072efc700c47397fdcdcb60cb4381079cf50b309463800f2b9cf75cc58a7de9078d1c0c77513f9607c871291b41eacf5a652740a3aeaf8ee3f2297b04812ef29a149df440c4e97d9ed99d39bef0d7b69d0c5b1d6ca013a256fdb3ce000e727becdca7456f86c2f4d166fef84d37ee6993661797f63f0ec74023bec13f4693ad52c8a5bebc5ce017aa41f40384d980987be23cdd97689337ae6a480519bda7ffdfedab4750e2096299e96a127c321179ba01cbf3f59d02d5fda266dc8a59e9c1472d09af0b84452a877ccd6aa2cd983cf3c891fcb16fadafdc69fc5faf57c127e50d6cdd03792768b22b206a9f9d92589e01e95821790721610eb8488e47d51f7fa1d3d364677c2a082ec882bcb346c7b8891ba83215d476f87449559752a4b56101461f68f7a57d9e6ae79ed729422d4dfad85c6bc47e58e40fb176521c6ae9fb8b25b3c485ffef9bad564451851c6f0730696d84b98bde4656d6b89cb45ad37a015966fd198e2106ff1e540a3d734858ea0d2ea22c08f97f4b53b028210cced14a7096ffffdd8d0accf3e3fcb39c1a09924060d4eda8d84c57e52fae2dd35a9e442cab4f60c3866d7a192a6f2cec886664b1852982216ea60636d5a7984165812dda92f22ee30174b37794ce296fcbc6b8721dc2f197891ac684f45370c8ea95e46eaaec6337f4d671cd15754bd6005915ebbb3ce8f551b3ac4f0d7c8bd86c57b809bc4f95264a0929698b4caff26c4a46fcf10aa9e127795d443fb57b28fb16e26e504eb8bf3e0a213624eb901d33e4d82691b9ea4c8d7578a770f464fba44d3709bc862bec683be4e58a703478021cbbc634453c63574081b2ac4cf747fce1f7f86a31f85088ac12b7a1fb1dbbf6c98531edca7d28b9bdfe5ce3df87277bd575f78580e1c310c2f1746ff112f16733f88b1344ae8ec17f3448f7642aa6372ea6868124be6b47b2ea91a42086e37167f962994c6303198420491a39e2a8d8650da9200beb76f2d5a5fe830c9501d5cc99c5d1d100f524243274b6db61d6c1946c762e7aa20841cb0f", 0x1000}], 0x4, 0x8) clone3(&(0x7f0000000140)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) write(0xffffffffffffffff, 0x0, 0x0) syz_io_uring_submit(0x0, 0x0, &(0x7f00000001c0)=@IORING_OP_PROVIDE_BUFFERS={0x1f, 0x2, 0x0, 0x800, 0x1, &(0x7f0000000280)="c49f578137ce4c0c21f829e632879572f5b88aa8cd7e17327b1a243235906db0e58a2421c1d82daf5585fbb5fe42555b8d4ab54d64c3b6a46f22247e4d0c12277a", 0x6, 0x0, 0x0, {0x3}}, 0x0) io_submit(0x0, 0x1, &(0x7f0000000100)=[&(0x7f00000000c0)={0x0, 0x0, 0x0, 0x6, 0xfd0, r0, &(0x7f0000000040)="186ea6f2b8d22a8b512205282e5ed4daa9e1c7012bf17553c5651127abdbe1aecb4970f151f53deb84c8a659412605cda1d4521b9789a7d90e3c04ebcb51faf50ee375", 0x43, 0x1, 0x0, 0x1, r1}]) 19:30:45 executing program 3: creat(0x0, 0x0) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) clone3(&(0x7f0000000140)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x553a284bb000, 0x0, 0x0}, 0x58) 19:30:45 executing program 5: rmdir(&(0x7f0000000000)='./file0\x00') perf_event_open(&(0x7f0000000200)={0x2, 0x80, 0x8, 0x1, 0x0, 0x0, 0x0, 0x0, 0xe0100, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_io_uring_setup(0x44af, &(0x7f0000000100)={0x0, 0x2, 0x0, 0x0, 0x389}, &(0x7f0000000000/0x12000)=nil, &(0x7f000000e000/0x1000)=nil, &(0x7f0000000080), &(0x7f0000000040)) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) clone3(&(0x7f0000000140)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) write(0xffffffffffffffff, &(0x7f0000000100)='?', 0x1) r0 = syz_open_dev$sg(&(0x7f0000000400), 0x0, 0x0) r1 = syz_open_dev$evdev(&(0x7f0000000040), 0x0, 0x8802) r2 = fcntl$dupfd(r1, 0x0, r0) writev(r2, &(0x7f0000000140)=[{&(0x7f0000000300)="0040abe02400030021206cda3b5e5672b89aeddb2a535fbd", 0x7e0}], 0x1) openat2(r2, &(0x7f00000000c0)='./file0\x00', &(0x7f00000001c0)={0x40, 0xa3, 0x10}, 0x18) [ 1333.658726] FAULT_INJECTION: forcing a failure. [ 1333.658726] name failslab, interval 1, probability 0, space 0, times 0 [ 1333.661527] CPU: 0 PID: 31222 Comm: syz-executor.2 Not tainted 5.10.185 #1 [ 1333.662967] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1333.664676] Call Trace: [ 1333.665229] dump_stack+0x107/0x167 [ 1333.665980] should_fail.cold+0x5/0xa [ 1333.666786] ? dup_fd+0x89/0xcf0 [ 1333.667486] should_failslab+0x5/0x20 [ 1333.668270] kmem_cache_alloc+0x5b/0x310 [ 1333.669102] dup_fd+0x89/0xcf0 [ 1333.669757] ? audit_filter_inodes+0x40/0x40 [ 1333.670660] ? security_task_alloc+0xe6/0x260 [ 1333.671602] copy_process+0x195b/0x6740 [ 1333.672411] ? lock_acquire+0x197/0x470 [ 1333.673236] ? find_held_lock+0x2c/0x110 [ 1333.674079] ? __cleanup_sighand+0xb0/0xb0 [ 1333.674992] ? _copy_from_user+0xfb/0x1b0 [ 1333.675843] kernel_clone+0xe7/0x980 [ 1333.676614] ? lock_acquire+0x197/0x470 [ 1333.677421] ? create_io_thread+0xf0/0xf0 [ 1333.678302] ? ksys_write+0x21a/0x260 [ 1333.679086] ? lock_downgrade+0x6d0/0x6d0 [ 1333.679933] __do_sys_clone3+0x1e5/0x320 [ 1333.680759] ? __do_sys_clone+0x110/0x110 [ 1333.681622] ? rcu_read_lock_any_held+0x75/0xa0 [ 1333.682567] ? vfs_write+0x354/0xa70 [ 1333.683341] ? fput_many+0x2f/0x1a0 [ 1333.684082] ? ksys_write+0x1a9/0x260 [ 1333.684853] ? __ia32_sys_read+0xb0/0xb0 [ 1333.685678] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1333.686743] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1333.687788] ? trace_hardirqs_on+0x5b/0x180 [ 1333.688664] do_syscall_64+0x33/0x40 [ 1333.689415] entry_SYSCALL_64_after_hwframe+0x61/0xc6 [ 1333.690445] RIP: 0033:0x7f44f9a2eb19 [ 1333.691209] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1333.695074] RSP: 002b:00007f44f6fa4188 EFLAGS: 00000246 ORIG_RAX: 00000000000001b3 [ 1333.696638] RAX: ffffffffffffffda RBX: 00007f44f9b41f60 RCX: 00007f44f9a2eb19 [ 1333.698086] RDX: 0000000000000000 RSI: 0000000000000058 RDI: 0000000020000140 [ 1333.699542] RBP: 00007f44f6fa41d0 R08: 0000000000000000 R09: 0000000000000000 [ 1333.700977] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 1333.702419] R13: 00007ffe83cb2bbf R14: 00007f44f6fa4300 R15: 0000000000022000 [ 1348.249988] netlink: 'syz-executor.1': attribute type 10 has an invalid length. 19:31:00 executing program 4: clone3(&(0x7f0000000140)={0x803b293a550000, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) 19:31:00 executing program 6: syz_open_dev$sg(0x0, 0x0, 0x0) syz_io_uring_setup(0x4ee5, &(0x7f0000000080)={0x0, 0xfe030000}, &(0x7f0000ffd000/0x3000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000040), &(0x7f0000000100)) 19:31:00 executing program 0: clone3(&(0x7f0000000140)={0x2000, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) 19:31:00 executing program 7: perf_event_open(&(0x7f0000000200)={0x2, 0x80, 0x8, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = creat(0x0, 0x0) r1 = clone3(&(0x7f0000000140)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) write(0xffffffffffffffff, 0x0, 0x0) getsockopt$sock_cred(r0, 0x1, 0x11, &(0x7f0000000000)={0x0}, &(0x7f0000000040)=0xc) r3 = perf_event_open$cgroup(&(0x7f0000000080)={0x2, 0x80, 0x5, 0x1, 0x48, 0x20, 0x0, 0x77, 0x0, 0xc, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x1, 0x0, 0x1, 0x1, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x1, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x1, 0x1, 0x1, 0x1, 0x0, 0x0, 0x0, 0xad1f, 0x2, @perf_config_ext={0x2, 0x5}, 0x42008, 0x6, 0x0, 0x5, 0xffffffff7fffffff, 0x5, 0xb803, 0x0, 0xadb, 0x0, 0x2}, r0, 0x9, 0xffffffffffffffff, 0x8) kcmp(r2, r1, 0x5, r3, 0xffffffffffffffff) 19:31:00 executing program 3: creat(0x0, 0x0) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) clone3(&(0x7f0000000140)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x2001000000000, 0x0, 0x0}, 0x58) 19:31:00 executing program 2: perf_event_open(&(0x7f0000000200)={0x2, 0x80, 0x8, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) creat(0x0, 0x0) syz_io_uring_setup(0x44af, &(0x7f0000000100)={0x0, 0x2, 0x0, 0x0, 0x389}, &(0x7f0000000000/0x12000)=nil, &(0x7f000000e000/0x1000)=nil, &(0x7f0000000080), &(0x7f0000000040)) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) clone3(&(0x7f0000000140)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) (fail_nth: 12) 19:31:00 executing program 1: r0 = perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0) openat(0xffffffffffffff9c, 0x0, 0x10000, 0x12c) ioctl$FS_IOC_RESVSP(0xffffffffffffffff, 0x40305828, 0x0) r1 = creat(&(0x7f0000000040)='./file0\x00', 0x0) r2 = fcntl$dupfd(0xffffffffffffffff, 0x0, 0xffffffffffffffff) writev(r2, &(0x7f0000000140)=[{&(0x7f0000000300)="0040abe02400030021206cda3b5e5672b89aeddb2a535fbd", 0x7e0}], 0x1) perf_event_open(&(0x7f00000001c0)={0x0, 0x80, 0x2, 0x7, 0x8, 0x15, 0x0, 0x80, 0x4040, 0x2, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x1, 0x0, 0x0, 0x1, 0x1, 0x1, 0x1, 0x0, 0x2, 0x0, 0x1, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x0, 0x1, 0x0, 0x1, 0x0, 0x1, 0x0, 0x1, 0x1, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x4, @perf_config_ext={0x8ca2, 0x200}, 0x14080, 0x80000000, 0x10000, 0x6, 0x3f, 0x0, 0x0, 0x0, 0x3, 0x0, 0x20}, 0xffffffffffffffff, 0xf, r2, 0x8) socket$inet6_tcp(0xa, 0x1, 0x0) write$binfmt_elf64(r1, &(0x7f0000000100)=ANY=[], 0xfdef) r3 = socket$netlink(0x10, 0x3, 0x0) sendmsg$nl_generic(r3, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000000)={0x2c, 0x16, 0x1, 0x0, 0x0, {0xa}, [@nested={0x18, 0x0, 0x0, 0x1, [@typed={0x14, 0xa, 0x0, 0x0, @ipv6=@private1}]}]}, 0x2c}}, 0x0) sendfile(r3, r0, &(0x7f0000000100)=0x6, 0x253f) perf_event_open(&(0x7f0000000280)={0x4, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5f, 0x10024, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x401, 0x4, @perf_config_ext, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffff7, 0x0, 0x0, 0xfffffffd}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) fallocate(r1, 0x3, 0x0, 0x8000) r4 = perf_event_open(&(0x7f0000001d80)={0x4, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f00000000c0), 0x1d}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r5 = getpgrp(0x0) socket$inet_tcp(0x2, 0x1, 0x0) perf_event_open(&(0x7f0000000040)={0x4, 0x80, 0x7, 0x0, 0x0, 0x0, 0x0, 0x3f, 0x1000, 0x9, 0x0, 0x0, 0x0, 0x1, 0x1, 0x1, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x1, 0x0, 0x1, 0x3, 0x1, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x1, 0x0, 0x0, 0x1, 0x0, 0x1, 0x0, 0x0, 0x1, 0x0, 0x1, 0x0, 0x0, 0x0, 0xfff, 0x4, @perf_bp={&(0x7f0000000000), 0xa}, 0x50007, 0x2, 0x22602371, 0x1, 0x100000008, 0x0, 0xf522, 0x0, 0x40, 0x0, 0xfffffffffffffff9}, r5, 0x5, r0, 0xb) clone3(&(0x7f0000000140)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) ftruncate(r4, 0x7fff) 19:31:00 executing program 5: r0 = perf_event_open(&(0x7f0000000200)={0x2, 0x80, 0x8, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_io_uring_setup(0x44af, &(0x7f0000000100)={0x0, 0x4af9, 0x0, 0x0, 0x381}, &(0x7f0000004000/0x2000)=nil, &(0x7f000000e000/0x1000)=nil, &(0x7f0000000080), &(0x7f0000000040)) r1 = openat$sysfs(0xffffffffffffff9c, &(0x7f00000000c0)='/sys/module/configfs', 0x10000, 0x8) io_uring_register$IORING_REGISTER_PERSONALITY(r1, 0x9, 0x0, 0x0) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r2 = clone3(&(0x7f0000000140)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) ioctl$AUTOFS_DEV_IOCTL_PROTOVER(0xffffffffffffffff, 0xc0189372, &(0x7f0000000000)=ANY=[@ANYBLOB="010000000100000018000000", @ANYRES32=r0, @ANYBLOB="0300fe681afa00002e2f64696c653000"]) pidfd_send_signal(r3, 0x13, &(0x7f0000000280)={0x3b, 0x7, 0x3}, 0x0) r4 = syz_open_dev$sg(&(0x7f0000000400), 0x0, 0x0) r5 = syz_open_dev$evdev(&(0x7f0000000040), 0x0, 0x8802) r6 = fcntl$dupfd(r5, 0x0, r4) r7 = socket$netlink(0x10, 0x3, 0x0) ioctl$F2FS_IOC_DEFRAGMENT(r6, 0xc010f508, &(0x7f0000000440)={0x400, 0x80}) sendmsg$nl_generic(r7, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000000)=ANY=[@ANYBLOB="2c000008160001000000f4ff000f00000a0000001800008014000a00fc0100"/44], 0x2c}}, 0x0) r8 = getpgrp(0x0) pidfd_open(r8, 0x0) sendmsg$nl_generic(r7, &(0x7f00000004c0)={&(0x7f00000001c0)={0x10, 0x0, 0x0, 0x80}, 0xc, &(0x7f0000000480)={&(0x7f0000000500)={0x174, 0x1f, 0x100, 0x70bd27, 0x25dfdbfe, {0x18}, [@typed={0x8, 0x1c, 0x0, 0x0, @fd=r3}, @nested={0x14d, 0x81, 0x0, 0x1, [@typed={0x14, 0x7f, 0x0, 0x0, @ipv6=@dev={0xfe, 0x80, '\x00', 0x24}}, @typed={0x8, 0x1c, 0x0, 0x0, @pid}, @generic="e5be9e97cb3f17750f53759d99d76210308257d2199a2158d88e04e82f3bed3ca9e076378b5112d47d5da5ce350215c0bb50c79c0787a685326bdcf28e60eb929d8a8a9871e3bc7930abed401f9c56c286a020685369fafb97485a850a5ca2b881f0a0ae3354ac5f89bc352d7c93207f08b8e10a1294b85fca0c7d49854f37", @typed={0xc, 0x2, 0x0, 0x0, @u64=0x7}, @typed={0x8, 0x6a, 0x0, 0x0, @pid=r8}, @generic="853ea0ba66d0b8ba856f1a82b5d2a79e0cf9df4914cd3ac58e9365ddfd62f56fd2468b72d1b170e4813c3573343b2f746489d7c81080b83de5ac059d14955657c8c5e172bb08d3f0992971046fb7abfd2bbb451d62601f2579452d9d8f485606ca3756449478d353816619a2084da54af4baba9b5506bbb5e6ac44072f4d266631e96c4e58907ad7f9c0462d82741216d8eb39acec8d5bb6aaa3"]}, @typed={0x8, 0x79, 0x0, 0x0, @pid=r2}]}, 0x174}, 0x1, 0x0, 0x0, 0x24000044}, 0x4) writev(r6, &(0x7f0000000140)=[{&(0x7f0000000300)="0040abe02400030021206cda3b5e5672b89aeddb2a535fbd", 0x7e0}], 0x1) getdents64(r6, &(0x7f0000000300)=""/223, 0xdf) write(0xffffffffffffffff, &(0x7f0000000100)='?', 0x1) [ 1348.286512] FAULT_INJECTION: forcing a failure. [ 1348.286512] name failslab, interval 1, probability 0, space 0, times 0 [ 1348.288351] CPU: 1 PID: 31677 Comm: syz-executor.2 Not tainted 5.10.185 #1 [ 1348.289213] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1348.290226] Call Trace: [ 1348.290563] dump_stack+0x107/0x167 [ 1348.291020] should_fail.cold+0x5/0xa [ 1348.291489] ? create_object.isra.0+0x3a/0xa20 [ 1348.292044] should_failslab+0x5/0x20 [ 1348.292514] kmem_cache_alloc+0x5b/0x310 [ 1348.293009] create_object.isra.0+0x3a/0xa20 [ 1348.293552] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 1348.294174] kmem_cache_alloc+0x159/0x310 [ 1348.294679] dup_fd+0x89/0xcf0 [ 1348.295079] ? audit_filter_inodes+0x40/0x40 [ 1348.295645] ? security_task_alloc+0xe6/0x260 [ 1348.296230] copy_process+0x195b/0x6740 [ 1348.296745] ? lock_acquire+0x197/0x470 [ 1348.297266] ? find_held_lock+0x2c/0x110 [ 1348.297816] ? __cleanup_sighand+0xb0/0xb0 [ 1348.298368] ? _copy_from_user+0xfb/0x1b0 [ 1348.298922] kernel_clone+0xe7/0x980 [ 1348.299403] ? lock_acquire+0x197/0x470 [ 1348.299891] ? create_io_thread+0xf0/0xf0 [ 1348.300418] ? ksys_write+0x21a/0x260 [ 1348.300893] ? lock_downgrade+0x6d0/0x6d0 [ 1348.301410] __do_sys_clone3+0x1e5/0x320 [ 1348.301934] ? __do_sys_clone+0x110/0x110 [ 1348.302487] ? rcu_read_lock_any_held+0x75/0xa0 [ 1348.303083] ? vfs_write+0x354/0xa70 [ 1348.303555] ? fput_many+0x2f/0x1a0 [ 1348.304008] ? ksys_write+0x1a9/0x260 [ 1348.304499] ? __ia32_sys_read+0xb0/0xb0 [ 1348.305030] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1348.305712] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1348.306382] ? trace_hardirqs_on+0x5b/0x180 [ 1348.306947] do_syscall_64+0x33/0x40 [ 1348.307427] entry_SYSCALL_64_after_hwframe+0x61/0xc6 [ 1348.308086] RIP: 0033:0x7f44f9a2eb19 [ 1348.308572] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1348.310969] RSP: 002b:00007f44f6fa4188 EFLAGS: 00000246 ORIG_RAX: 00000000000001b3 [ 1348.311956] RAX: ffffffffffffffda RBX: 00007f44f9b41f60 RCX: 00007f44f9a2eb19 [ 1348.312876] RDX: 0000000000000000 RSI: 0000000000000058 RDI: 0000000020000140 [ 1348.313807] RBP: 00007f44f6fa41d0 R08: 0000000000000000 R09: 0000000000000000 [ 1348.314729] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 1348.315666] R13: 00007ffe83cb2bbf R14: 00007f44f6fa4300 R15: 0000000000022000 [ 1348.321728] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=31 sclass=netlink_route_socket pid=31658 comm=syz-executor.5 19:31:00 executing program 4: clone3(&(0x7f0000000140)={0xf0f10b1b000000, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) 19:31:00 executing program 0: clone3(&(0x7f0000000140)={0x3f00, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) 19:31:15 executing program 4: clone3(&(0x7f0000000140)={0xf0ff1f00000000, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) 19:31:15 executing program 7: perf_event_open(&(0x7f0000000200)={0x2, 0x80, 0x8, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) creat(0x0, 0x0) r0 = socket$netlink(0x10, 0x3, 0x0) sendmsg$nl_generic(r0, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000000)={0x2c, 0x16, 0x1, 0x0, 0x0, {0xa}, [@nested={0x18, 0x0, 0x0, 0x1, [@typed={0x14, 0xa, 0x0, 0x0, @ipv6=@private1}]}]}, 0x2c}}, 0x0) pread64(r0, &(0x7f0000000280)=""/4096, 0x1000, 0x3f) clone3(&(0x7f0000000140)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) write(0xffffffffffffffff, 0x0, 0x0) 19:31:15 executing program 2: perf_event_open(&(0x7f0000000200)={0x2, 0x80, 0x8, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) creat(0x0, 0x0) syz_io_uring_setup(0x44af, &(0x7f0000000100)={0x0, 0x2, 0x0, 0x0, 0x389}, &(0x7f0000000000/0x12000)=nil, &(0x7f000000e000/0x1000)=nil, &(0x7f0000000080), &(0x7f0000000040)) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) clone3(&(0x7f0000000140)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) (fail_nth: 13) 19:31:15 executing program 1: r0 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a) ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000140)={'syz_tun\x00', 0x0}) ioctl$sock_inet6_SIOCDIFADDR(0xffffffffffffffff, 0x8916, &(0x7f0000000000)={@mcast2, 0x0, r1}) r2 = socket$inet6_udplite(0xa, 0x2, 0x88) r3 = dup(r2) r4 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a) ioctl$sock_SIOCGIFINDEX(r4, 0x8933, &(0x7f0000000140)={'syz_tun\x00', 0x0}) ioctl$sock_inet6_SIOCDIFADDR(r3, 0x8916, &(0x7f0000000000)={@mcast2, 0x0, r5}) r6 = socket$inet6_udplite(0xa, 0x2, 0x88) r7 = dup(r6) r8 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a) ioctl$sock_SIOCGIFINDEX(r8, 0x8933, &(0x7f0000000140)={'syz_tun\x00', 0x0}) ioctl$sock_inet6_SIOCDIFADDR(r7, 0x8916, &(0x7f0000000000)={@mcast2, 0x0, r9}) sendmsg$ETHTOOL_MSG_PRIVFLAGS_GET(0xffffffffffffffff, &(0x7f00000006c0)={&(0x7f00000001c0)={0x10, 0x0, 0x0, 0x20}, 0xc, &(0x7f0000000680)={&(0x7f0000000700)=ANY=[@ANYBLOB="e0010000", @ANYRES16=0x0, @ANYBLOB="01002dbd7000fcdbdf250d0000007400018014000200776c616e300000000000000000000000140002006e6574706369300000000000000000001400020076657468315f766972745f776966690014000200766c616e31000000000000000000000008000100", @ANYRES32=0x0, @ANYBLOB="08000100", @ANYRES32=0x0, @ANYBLOB="080003000200000008000300010000002c00018014000200626f6e645f736c6176655f31000000001400020073797a5f74756e000000000000000000580001800800030000000000080003000200000008000100", @ANYRES32=0x0, @ANYBLOB="0800030002000000080003000000000008000100", @ANYRES32=0x0, @ANYBLOB="140002006e657470636930000000000000000000080003000100000008000300010000000c00018008000100", @ANYRES32=r1, @ANYBLOB="680001800800010023c3d2e43b913be39d6ae90a08e708087f2c368a293819c31b687e29137625bc4176d9e73dd6dbaf14f6e048cdd31aa537093d3ec68a7739ea1edffabaf2e5f31c0fee519a53e6ee096b4a7c2422a33146", @ANYRES32=r5, @ANYBLOB="08000100", @ANYRES32=0x0, @ANYBLOB="1400020076657468315f746f5f6873720000000014000200626f6e645f736c6176655f300000000008000100", @ANYRES32=r9, @ANYBLOB="1400020067726530000000000000000000000000080003000300000008000100", @ANYRES32=0x0, @ANYBLOB="4c0001801400020077673200000000000000000000000000140002006970766c616e3100000000000000000008000100", @ANYRES32=0x0, @ANYBLOB="08000300030000fc0700030003000000080003000200000014000182080003000200734e08000300000000006511c53ca88e676f75eb2f21776a5e18322b65cdf606af6fdac89abde1517e01e102ace9a7d70a0a5856f84939f7ed1f4a49dfdf2ce03ecdb6b441b18e3f10bbde2099944b1ccd02f8"], 0x1e0}, 0x1, 0x0, 0x0, 0x8000}, 0x4000) perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0) r10 = perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) ioctl$sock_FIOGETOWN(0xffffffffffffffff, 0x8903, &(0x7f0000000080)=0x0) r12 = perf_event_open(&(0x7f00000000c0)={0x2, 0x80, 0x7, 0x1, 0x3, 0x40, 0x0, 0xcf28, 0x400, 0x8, 0x1, 0x1, 0x1, 0x0, 0x1, 0x1, 0x0, 0x1, 0x1, 0x0, 0x0, 0x1, 0x1, 0x0, 0x1, 0x2, 0x1, 0x0, 0x0, 0x1, 0x0, 0x1, 0x1, 0x0, 0x0, 0x1, 0x1, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x1, 0x1, 0x0, 0x1, 0x0, 0x3, 0x4, @perf_config_ext={0x1, 0x2}, 0x400, 0x100000001, 0x2ab, 0x7, 0x5, 0x8, 0xe20b, 0x0, 0x2, 0x0, 0x3b}, 0xffffffffffffffff, 0x6, r10, 0x2) perf_event_open(&(0x7f0000000000)={0x2, 0x80, 0x9, 0x1, 0x6, 0x40, 0x0, 0x9, 0x8000, 0x4, 0x0, 0x1, 0x1, 0x0, 0x0, 0x1, 0x1, 0x1, 0x1, 0x1, 0x1, 0x1, 0x1, 0x1, 0x1, 0x3, 0x0, 0x1, 0x1, 0x1, 0x1, 0x1, 0x1, 0x0, 0x1, 0x1, 0x1, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0xffc00000, 0x0, @perf_config_ext={0x81, 0x6}, 0x2, 0x5, 0x7f, 0x9ff6b01efbbaaf21, 0x8000, 0xfffffff7, 0x9, 0x0, 0x0, 0x0, 0x14}, r11, 0x7, r12, 0x8) clone3(&(0x7f0000000140)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) 19:31:15 executing program 0: clone3(&(0x7f0000000140)={0x4000, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) 19:31:15 executing program 6: syz_open_dev$sg(0x0, 0x0, 0x0) syz_io_uring_setup(0x4ee5, &(0x7f0000000080)={0x0, 0xfeffffff}, &(0x7f0000ffd000/0x3000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000040), &(0x7f0000000100)) 19:31:15 executing program 3: creat(0x0, 0x0) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) clone3(&(0x7f0000000140)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x2020000000000, 0x0, 0x0}, 0x58) 19:31:15 executing program 5: perf_event_open(&(0x7f0000000200)={0x2, 0x80, 0x8, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_io_uring_setup(0x44af, &(0x7f0000000100)={0x0, 0x2, 0x0, 0x0, 0x389}, &(0x7f0000000000/0x12000)=nil, &(0x7f000000e000/0x1000)=nil, &(0x7f0000000080), &(0x7f0000000040)) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) clone3(&(0x7f0000000140)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) socket$inet6_icmp_raw(0xa, 0x3, 0x3a) write(0xffffffffffffffff, &(0x7f0000000100)='?', 0x1) [ 1362.888379] netlink: 'syz-executor.7': attribute type 10 has an invalid length. [ 1362.895704] FAULT_INJECTION: forcing a failure. [ 1362.895704] name failslab, interval 1, probability 0, space 0, times 0 [ 1362.898296] CPU: 0 PID: 32080 Comm: syz-executor.2 Not tainted 5.10.185 #1 [ 1362.899746] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1362.901481] Call Trace: [ 1362.902036] dump_stack+0x107/0x167 [ 1362.902785] should_fail.cold+0x5/0xa [ 1362.903569] ? alloc_fdtable+0x84/0x280 [ 1362.904388] should_failslab+0x5/0x20 [ 1362.905150] kmem_cache_alloc_trace+0x55/0x320 [ 1362.906077] ? rwlock_bug.part.0+0x90/0x90 [ 1362.906938] alloc_fdtable+0x84/0x280 [ 1362.907717] dup_fd+0x74d/0xcf0 [ 1362.908401] ? security_task_alloc+0xe6/0x260 [ 1362.909300] copy_process+0x195b/0x6740 [ 1362.910111] ? lock_acquire+0x197/0x470 [ 1362.910904] ? find_held_lock+0x2c/0x110 [ 1362.911750] ? __cleanup_sighand+0xb0/0xb0 [ 1362.912611] ? _copy_from_user+0xfb/0x1b0 [ 1362.913480] kernel_clone+0xe7/0x980 [ 1362.914229] ? lock_acquire+0x197/0x470 [ 1362.915037] ? create_io_thread+0xf0/0xf0 [ 1362.915891] ? ksys_write+0x21a/0x260 [ 1362.916672] ? lock_downgrade+0x6d0/0x6d0 [ 1362.917506] __do_sys_clone3+0x1e5/0x320 [ 1362.918318] ? __do_sys_clone+0x110/0x110 [ 1362.919185] ? rcu_read_lock_any_held+0x75/0xa0 [ 1362.920112] ? vfs_write+0x354/0xa70 [ 1362.920862] ? fput_many+0x2f/0x1a0 [ 1362.921591] ? ksys_write+0x1a9/0x260 [ 1362.922353] ? __ia32_sys_read+0xb0/0xb0 [ 1362.923186] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1362.924238] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1362.925269] ? trace_hardirqs_on+0x5b/0x180 [ 1362.926136] do_syscall_64+0x33/0x40 [ 1362.926882] entry_SYSCALL_64_after_hwframe+0x61/0xc6 [ 1362.927915] RIP: 0033:0x7f44f9a2eb19 [ 1362.928662] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1362.932412] RSP: 002b:00007f44f6fa4188 EFLAGS: 00000246 ORIG_RAX: 00000000000001b3 [ 1362.933945] RAX: ffffffffffffffda RBX: 00007f44f9b41f60 RCX: 00007f44f9a2eb19 [ 1362.935388] RDX: 0000000000000000 RSI: 0000000000000058 RDI: 0000000020000140 [ 1362.936830] RBP: 00007f44f6fa41d0 R08: 0000000000000000 R09: 0000000000000000 [ 1362.938264] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 1362.939699] R13: 00007ffe83cb2bbf R14: 00007f44f6fa4300 R15: 0000000000022000 19:31:15 executing program 4: clone3(&(0x7f0000000140)={0x100000000000000, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) 19:31:15 executing program 6: syz_open_dev$sg(0x0, 0x0, 0x0) syz_io_uring_setup(0x4ee5, &(0x7f0000000080)={0x0, 0xff0f4061}, &(0x7f0000ffd000/0x3000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000040), &(0x7f0000000100)) 19:31:15 executing program 4: clone3(&(0x7f0000000140)={0x800000000000000, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) 19:31:15 executing program 3: creat(0x0, 0x0) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) clone3(&(0x7f0000000140)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x8000000000000, 0x0, 0x0}, 0x58) 19:31:15 executing program 6: syz_open_dev$sg(0x0, 0x0, 0x0) syz_io_uring_setup(0x4ee5, &(0x7f0000000080)={0x0, 0xff0f5261}, &(0x7f0000ffd000/0x3000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000040), &(0x7f0000000100)) 19:31:15 executing program 2: perf_event_open(&(0x7f0000000200)={0x2, 0x80, 0x8, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) creat(0x0, 0x0) syz_io_uring_setup(0x44af, &(0x7f0000000100)={0x0, 0x2, 0x0, 0x0, 0x389}, &(0x7f0000000000/0x12000)=nil, &(0x7f000000e000/0x1000)=nil, &(0x7f0000000080), &(0x7f0000000040)) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) clone3(&(0x7f0000000140)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) (fail_nth: 14) [ 1363.201669] netlink: 'syz-executor.7': attribute type 10 has an invalid length. 19:31:15 executing program 7: perf_event_open(&(0x7f0000000200)={0x2, 0x80, 0x8, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = socket$netlink(0x10, 0x3, 0x0) sendmsg$nl_generic(r0, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000002580)=ANY=[@ANYBLOB="2c0000001600010000000000000000000a0080001800008014000a00fc0100000000000096f661ae00000000454eef584f5eee8b0ab4d85bf8cbbb0576316402c0b4d6293b3026295eed14cae0496d0a62663c097cd351f1f208ea7c9beef9750f0a0d0c760000004b298084c1dfd9f765d27d0006bf3189d8a772f951178ccc8c31290c4ce6ea2875482047116eee24fbaf064bae9d97e4f7356672a3e168c6266a80ae47fce5fbd70ab3acba"], 0x2c}}, 0x0) sendmsg$nl_generic(0xffffffffffffffff, &(0x7f0000000080)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x9}, 0xc, &(0x7f0000000040)={&(0x7f0000000280)={0x22c8, 0x1f, 0x1, 0x70bd2c, 0x25dfdbff, {0x17}, [@nested={0x12a9, 0x86, 0x0, 0x1, [@generic="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", @typed={0x8, 0x2, 0x0, 0x0, @fd=r0}, @generic="16a2eb1a2325bfc6cd22494297ae0b262f2a6036f9d387cecb792d9a576435108e22b18779b6de3fa7c2a4ad2a545ae8010b4053d1768bea28893f1cee6041ad6ec7c680f667cccadfd8176a30c9c9a7cdbac180be74d7197a3ea12df9a28286843a38b426806488749d17d16dcd7a24ebe1002759f228e751129920fc90cb5bcd2b6be032644abc744a0580d076eba04964532ee7aec3622d6064365ccf050cbd16d65fc06cd3080c715321653ef7e17d29969d18cde0f69b3c8c72c4b45ef0d491c7fb2969a4e7b89fb4708dd0af96983518ef1848bf2012747f444e2342d4e5478735c03bd1afeffdf3e5fb3d6877a5fe515ce44a", @typed={0xbb, 0x22, 0x0, 0x0, @binary="a13e750843577f9fa331d7fbed500867e600892948cb2ddf3f1570c403adc4c578b86deb8b68db9f818baa9cdb554b2162870c204d39c89fc88258e0249aa68c07e22a5f4aa4c00c903e1c6f838543981476b5b532c3499715b941d89293acf84e2a4645f4d5cfbc5ab75e9c440b2103c24ecb3e5441de3052a9075bc169f90fed43ced6a00c6047cbdf80293ed3ce839fc716d4f05bc87404b319f228f579c544139bd443b527a84710ac0e676a61d5bc65ffba8eccfe"}, @typed={0x8, 0x5b, 0x0, 0x0, @ipv4=@local}, @generic="018f8089051da3717f23fc87793d99e72e9c93068f9552b66fce1008fc427ee6dab4a78ced66d85fcc55f680c1d2cb8f0698169ead627d336fd93fc21a8cc4fccc589d9e74eda8c2f515998fe216f136dcad4dd4f73a4b79f98cadac837cdfc4368e3fbe24ff5b7bebb41c506e7a37f9920820b0712a8fb66187db7ecb3c2a6e8cdd54ed3eda48f21edbaddd2796fae2367c717c5a3b0090d9daf18917b95efbd9869dbadc22ae613f197ba49b368751b600791bb02674d645f4338086f2f75632b01c51fb1b2d97a04d2bf689d00a", @typed={0x11, 0x13, 0x0, 0x0, @binary="3cbd25a84d1b1d49bbf19c477f"}]}, @typed={0x8, 0x26, 0x0, 0x0, @pid}, @generic="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"]}, 0x22c8}, 0x1, 0x0, 0x0, 0x20040800}, 0x44011) r1 = creat(0x0, 0x0) r2 = mmap$IORING_OFF_CQ_RING(&(0x7f0000ffc000/0x1000)=nil, 0x1000, 0x8, 0x10, r1, 0x8000000) syz_io_uring_submit(r2, 0x0, &(0x7f00000001c0)=@IORING_OP_TIMEOUT_REMOVE={0xc, 0x2, 0x0, 0x0, 0x0, 0x12345}, 0x4) ioctl$EXT4_IOC_GROUP_EXTEND(r1, 0x40086607, &(0x7f0000002640)=0x6) clone3(&(0x7f0000000140)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) write(0xffffffffffffffff, 0x0, 0x0) 19:31:15 executing program 4: clone3(&(0x7f0000000140)={0x1100000000000000, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) 19:31:15 executing program 6: syz_open_dev$sg(0x0, 0x0, 0x0) syz_io_uring_setup(0x4ee5, &(0x7f0000000080)={0x0, 0xff0f6061}, &(0x7f0000ffd000/0x3000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000040), &(0x7f0000000100)) 19:31:15 executing program 1: r0 = perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0) ioctl$FS_IOC_FSGETXATTR(r0, 0x801c581f, &(0x7f0000000000)={0x0, 0xba2, 0x5, 0x4, 0x6}) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x1}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) clone3(&(0x7f0000000140)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) [ 1363.280774] FAULT_INJECTION: forcing a failure. [ 1363.280774] name failslab, interval 1, probability 0, space 0, times 0 [ 1363.283483] CPU: 1 PID: 32578 Comm: syz-executor.2 Not tainted 5.10.185 #1 [ 1363.284879] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1363.286562] Call Trace: [ 1363.287105] dump_stack+0x107/0x167 [ 1363.287843] should_fail.cold+0x5/0xa [ 1363.288606] ? create_object.isra.0+0x3a/0xa20 [ 1363.289521] should_failslab+0x5/0x20 [ 1363.290289] kmem_cache_alloc+0x5b/0x310 [ 1363.291111] create_object.isra.0+0x3a/0xa20 [ 1363.292003] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 1363.293037] kmem_cache_alloc_trace+0x151/0x320 [ 1363.293974] ? rwlock_bug.part.0+0x90/0x90 [ 1363.294824] alloc_fdtable+0x84/0x280 [ 1363.295607] dup_fd+0x74d/0xcf0 [ 1363.296303] ? security_task_alloc+0xe6/0x260 [ 1363.297217] copy_process+0x195b/0x6740 [ 1363.298001] ? lock_acquire+0x197/0x470 [ 1363.298803] ? find_held_lock+0x2c/0x110 [ 1363.299639] ? __cleanup_sighand+0xb0/0xb0 [ 1363.300503] ? _copy_from_user+0xfb/0x1b0 [ 1363.301362] kernel_clone+0xe7/0x980 [ 1363.302129] ? lock_acquire+0x197/0x470 [ 1363.302932] ? create_io_thread+0xf0/0xf0 [ 1363.303792] ? ksys_write+0x21a/0x260 [ 1363.304561] ? lock_downgrade+0x6d0/0x6d0 [ 1363.305415] __do_sys_clone3+0x1e5/0x320 [ 1363.306231] ? __do_sys_clone+0x110/0x110 [ 1363.307111] ? rcu_read_lock_any_held+0x75/0xa0 [ 1363.308043] ? vfs_write+0x354/0xa70 [ 1363.308801] ? fput_many+0x2f/0x1a0 [ 1363.309555] ? ksys_write+0x1a9/0x260 [ 1363.310335] ? __ia32_sys_read+0xb0/0xb0 [ 1363.311166] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1363.312221] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1363.313274] ? trace_hardirqs_on+0x5b/0x180 [ 1363.314161] do_syscall_64+0x33/0x40 [ 1363.314943] entry_SYSCALL_64_after_hwframe+0x61/0xc6 [ 1363.315982] RIP: 0033:0x7f44f9a2eb19 [ 1363.316729] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1363.320512] RSP: 002b:00007f44f6fa4188 EFLAGS: 00000246 ORIG_RAX: 00000000000001b3 [ 1363.322077] RAX: ffffffffffffffda RBX: 00007f44f9b41f60 RCX: 00007f44f9a2eb19 [ 1363.323533] RDX: 0000000000000000 RSI: 0000000000000058 RDI: 0000000020000140 [ 1363.324989] RBP: 00007f44f6fa41d0 R08: 0000000000000000 R09: 0000000000000000 [ 1363.326451] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 1363.327906] R13: 00007ffe83cb2bbf R14: 00007f44f6fa4300 R15: 0000000000022000 19:31:15 executing program 3: creat(0x0, 0x0) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) clone3(&(0x7f0000000140)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x8000001000000, 0x0, 0x0}, 0x58) 19:31:15 executing program 4: clone3(&(0x7f0000000140)={0x2000000000000000, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) [ 1363.722206] cgroup: fork rejected by pids controller in /syz0 19:31:32 executing program 1: r0 = openat$sndseq(0xffffffffffffff9c, &(0x7f0000000000), 0x804200) ioctl$FS_IOC_RESVSP(r0, 0x40305828, &(0x7f0000000040)={0x0, 0x3, 0x2, 0xfffffffffffffff7}) perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) clone3(&(0x7f0000000140)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) 19:31:32 executing program 0: clone3(&(0x7f0000000140)={0x20010, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) 19:31:32 executing program 6: syz_open_dev$sg(0x0, 0x0, 0x0) syz_io_uring_setup(0x4ee5, &(0x7f0000000080)={0x0, 0xffff7f61}, &(0x7f0000ffd000/0x3000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000040), &(0x7f0000000100)) 19:31:32 executing program 5: r0 = fsmount(0xffffffffffffffff, 0x0, 0x8) ioctl$TIOCGPTPEER(r0, 0x5441, 0x5) r1 = perf_event_open(&(0x7f0000000200)={0x2, 0x80, 0x8, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r2 = perf_event_open(&(0x7f0000000280)={0x3, 0x80, 0x8, 0x7, 0x3f, 0x1, 0x0, 0x4, 0x201, 0xa, 0x1, 0x1, 0x1, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x1, 0x1, 0x1, 0x0, 0x0, 0x1, 0x1, 0x0, 0x1, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x1, 0x0, 0x1, 0x1, 0x0, 0x1, 0x1, 0x1, 0x1, 0x0, 0x3, 0x4, @perf_config_ext={0xffffffffffffff72, 0x8}, 0x9201, 0x40, 0x1, 0x5, 0x773, 0xff, 0x7, 0x0, 0xffffffff}, 0xffffffffffffffff, 0xffffffffffffffff, r1, 0x1) r3 = syz_io_uring_setup(0x44af, &(0x7f0000000100)={0x0, 0x2, 0x0, 0x0, 0x389}, &(0x7f0000000000/0x12000)=nil, &(0x7f000000e000/0x1000)=nil, &(0x7f0000000080), &(0x7f0000000040)=0x0) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) perf_event_open(&(0x7f00000007c0)={0x0, 0x80, 0x7, 0x0, 0x95, 0x0, 0x0, 0x1, 0x10100, 0x1, 0x1, 0x1, 0x1, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x1, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x1, 0x1, 0x0, 0x0, 0x0, 0x1, 0x0, 0x1, 0x1, 0x0, 0x0, 0x0, 0x1, 0x0, 0x1, 0x1, 0x0, 0x0, 0x0, 0x7, 0x4, @perf_bp={&(0x7f0000000780), 0xa}, 0x0, 0x6, 0x9d3, 0x0, 0x975, 0x0, 0x8000, 0x0, 0x8, 0x0, 0x64}, 0x0, 0x1, r2, 0x1) syz_io_uring_setup(0x54f6, &(0x7f0000000380)={0x0, 0x375, 0x0, 0x3, 0x35b, 0x0, r3}, &(0x7f0000ffb000/0x2000)=nil, &(0x7f0000ffb000/0x2000)=nil, &(0x7f00000000c0)=0x0, &(0x7f00000001c0)) syz_io_uring_submit(r5, r4, &(0x7f0000000640)=@IORING_OP_WRITEV={0x2, 0x5, 0x4004, @fd_index=0x6, 0x8, &(0x7f0000000600)=[{&(0x7f0000000400)="0b5e322039eb51341a1e75579f3be15120a5fc601c56f8f15bbea21711e86d80af6b010dc42d0ca9d2c7bc950c2ef1a70ba0d08f101dff62c20ea6b632270f520c69635fe37f14ee6a539593a4ef76080c89d3e31962ba64168cdfbdcf03337e10556408aae9b9f80453afb9e3b8f5b119710f4ffc38bdd7933a0ca18c47bf55f7f7fe71216b67f0079c019f2a89300f6531dc7278ef2a8dabf166358de755da70bd8c105d7e8ffbd16f33fd13144784a66a3fa98aa6e411f4ddd385b19e3885e2866c2a9dfc5b4299a496d1aadc8ad5fe6677f54859311a45d1bdf8c9bc6e8db10e50779e7761f1c5", 0xe9}, {&(0x7f0000000500)="b072ac2fa33c5b551de8115c5a78666577ee2f2f1357707a0ff3504446322b5011ce92eb122043bc8c07e5ccf10145985fd05a7b05c71b0aa70a64ffb5d3c4ae90cae969916c91151c20", 0x4a}, {&(0x7f0000000580)="88e8265bd8ac8fa058756ad45067fe977c1e9ee838380cd46bb57d831d366155af49da10d276260d3867c033fae7118bccd541befb2a48dc90d026c88c170da0c7e82006a15b012829d87696abc06225f07561db1d3d4f2800ff357a233a2d150a3ed72fbc5c9f89b8eaf87a53a95f8819f191f870aea39fa273a8adc5", 0x7d}], 0x3, 0x4, 0x1, {0x3}}, 0x9) r6 = syz_open_dev$sg(&(0x7f0000000400), 0x0, 0x0) r7 = syz_open_dev$evdev(&(0x7f0000000040), 0x0, 0x8802) r8 = fcntl$dupfd(0xffffffffffffffff, 0x0, 0xffffffffffffffff) writev(r8, &(0x7f0000000140)=[{&(0x7f0000000300)="0040abe02400030021206cda3b5e5672b89aeddb2a535fbd", 0x7e0}], 0x1) perf_event_open(&(0x7f0000000880)={0x4, 0x80, 0x5, 0x3f, 0x9, 0xff, 0x0, 0x0, 0x200, 0x8, 0x1, 0x1, 0x0, 0x1, 0x1, 0x0, 0x1, 0x1, 0x0, 0x1, 0x0, 0x0, 0x1, 0x1, 0x1, 0x0, 0x0, 0x0, 0x1, 0x0, 0x1, 0x0, 0x1, 0x1, 0x0, 0x0, 0x0, 0x1, 0x0, 0x1, 0x0, 0x1, 0x0, 0x1, 0x1, 0x0, 0x0, 0x0, 0x5c3e, 0x4, @perf_bp={&(0x7f0000000840), 0x7}, 0x10400, 0x3, 0x9, 0x0, 0xff, 0x4, 0x81e8, 0x0, 0x6, 0x0, 0x3}, 0xffffffffffffffff, 0x8, r8, 0x1) r9 = fcntl$dupfd(r7, 0x0, r6) writev(r9, &(0x7f0000000140)=[{&(0x7f0000000300)="0040abe02400030021206cda3b5e5672b89aeddb2a535fbd", 0x7e0}], 0x1) syz_io_uring_setup(0x6737, &(0x7f0000000680)={0x0, 0x9cbf, 0x28, 0x0, 0x30a, 0x0, r9}, &(0x7f000000d000/0x4000)=nil, &(0x7f0000000000/0x3000)=nil, &(0x7f0000000700), &(0x7f0000000740)) clone3(&(0x7f0000000140)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) perf_event_open(&(0x7f0000000300)={0x3, 0x80, 0x3, 0x3f, 0x20, 0x4, 0x0, 0x8, 0x28800, 0xf, 0x0, 0x1, 0x1, 0x1, 0x0, 0x0, 0x1, 0x0, 0x1, 0x1, 0x0, 0x0, 0x0, 0x1, 0x0, 0x1, 0x1, 0x1, 0x0, 0x1, 0x1, 0x1, 0x0, 0x0, 0x0, 0x1, 0x0, 0x1, 0x1, 0x1, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x1, 0x0, 0x8, 0x4, @perf_bp={&(0x7f0000000000), 0xa}, 0x10022, 0x3, 0x4, 0x5, 0x43, 0x400, 0x9, 0x0, 0x6, 0x0, 0x8}, 0x0, 0x8, r1, 0x2) write(0xffffffffffffffff, &(0x7f0000000100)='?', 0x1) 19:31:32 executing program 2: perf_event_open(&(0x7f0000000200)={0x2, 0x80, 0x8, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) creat(0x0, 0x0) syz_io_uring_setup(0x44af, &(0x7f0000000100)={0x0, 0x2, 0x0, 0x0, 0x389}, &(0x7f0000000000/0x12000)=nil, &(0x7f000000e000/0x1000)=nil, &(0x7f0000000080), &(0x7f0000000040)) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) clone3(&(0x7f0000000140)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) (fail_nth: 15) 19:31:32 executing program 4: clone3(&(0x7f0000000140)={0x3f00000000000000, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) 19:31:32 executing program 3: creat(0x0, 0x0) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) clone3(&(0x7f0000000140)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x10100000000000, 0x0, 0x0}, 0x58) 19:31:32 executing program 7: perf_event_open(&(0x7f0000000200)={0x2, 0x80, 0x8, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) perf_event_open(&(0x7f0000001300)={0x3, 0x80, 0xb5, 0xfa, 0x6, 0xc0, 0x0, 0x80, 0x20003, 0x0, 0x1, 0x1, 0x1, 0x1, 0x0, 0x1, 0x0, 0x0, 0x0, 0x1, 0x1, 0x1, 0x1, 0x1, 0x1, 0x0, 0x1, 0x0, 0x1, 0x1, 0x1, 0x0, 0x1, 0x0, 0x1, 0x0, 0x0, 0x1, 0x1, 0x0, 0x1, 0x0, 0x1, 0x0, 0x1, 0x1, 0x1, 0x0, 0xf0b, 0x2, @perf_bp={&(0x7f00000001c0), 0xb}, 0x800, 0x400, 0x4, 0x3, 0xfffffffffffffffd, 0x3, 0x8000, 0x0, 0x6, 0x0, 0x9}, 0xffffffffffffffff, 0xd, 0xffffffffffffffff, 0xb) r0 = creat(0x0, 0x0) r1 = clone3(&(0x7f0000000140)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) r2 = fcntl$getown(r0, 0x9) clone3(&(0x7f0000001280)={0x84000000, &(0x7f0000000000), &(0x7f0000000040), &(0x7f0000000080), {0x1c}, &(0x7f0000000280)=""/4096, 0x1000, &(0x7f00000000c0)=""/47, &(0x7f0000000100)=[r2, r1, 0xffffffffffffffff], 0x3, {r0}}, 0x58) write(0xffffffffffffffff, 0x0, 0x0) [ 1379.943625] FAULT_INJECTION: forcing a failure. [ 1379.943625] name failslab, interval 1, probability 0, space 0, times 0 [ 1379.945336] CPU: 1 PID: 33042 Comm: syz-executor.2 Not tainted 5.10.185 #1 [ 1379.946173] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1379.947157] Call Trace: [ 1379.947501] dump_stack+0x107/0x167 [ 1379.947936] should_fail.cold+0x5/0xa [ 1379.948399] ? kvmalloc_node+0x119/0x170 [ 1379.948885] should_failslab+0x5/0x20 [ 1379.949347] __kmalloc_node+0x76/0x420 [ 1379.949816] kvmalloc_node+0x119/0x170 [ 1379.950291] alloc_fdtable+0xd3/0x280 [ 1379.950759] dup_fd+0x74d/0xcf0 [ 1379.951173] ? security_task_alloc+0xe6/0x260 [ 1379.951723] copy_process+0x195b/0x6740 [ 1379.952202] ? lock_acquire+0x197/0x470 [ 1379.952673] ? find_held_lock+0x2c/0x110 [ 1379.953187] ? __cleanup_sighand+0xb0/0xb0 [ 1379.953763] ? _copy_from_user+0xfb/0x1b0 [ 1379.954326] kernel_clone+0xe7/0x980 [ 1379.954824] ? lock_acquire+0x197/0x470 [ 1379.955346] ? create_io_thread+0xf0/0xf0 [ 1379.955898] ? ksys_write+0x21a/0x260 [ 1379.956388] ? lock_downgrade+0x6d0/0x6d0 [ 1379.956941] __do_sys_clone3+0x1e5/0x320 [ 1379.957486] ? __do_sys_clone+0x110/0x110 [ 1379.958060] ? rcu_read_lock_any_held+0x75/0xa0 [ 1379.958676] ? vfs_write+0x354/0xa70 [ 1379.959170] ? fput_many+0x2f/0x1a0 [ 1379.959682] ? ksys_write+0x1a9/0x260 [ 1379.960190] ? __ia32_sys_read+0xb0/0xb0 [ 1379.960729] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1379.961426] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1379.962113] ? trace_hardirqs_on+0x5b/0x180 [ 1379.962681] do_syscall_64+0x33/0x40 [ 1379.963170] entry_SYSCALL_64_after_hwframe+0x61/0xc6 [ 1379.963840] RIP: 0033:0x7f44f9a2eb19 [ 1379.964330] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1379.966726] RSP: 002b:00007f44f6fa4188 EFLAGS: 00000246 ORIG_RAX: 00000000000001b3 [ 1379.967731] RAX: ffffffffffffffda RBX: 00007f44f9b41f60 RCX: 00007f44f9a2eb19 [ 1379.968674] RDX: 0000000000000000 RSI: 0000000000000058 RDI: 0000000020000140 [ 1379.969594] RBP: 00007f44f6fa41d0 R08: 0000000000000000 R09: 0000000000000000 [ 1379.970545] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 1379.971518] R13: 00007ffe83cb2bbf R14: 00007f44f6fa4300 R15: 0000000000022000 19:31:32 executing program 4: clone3(&(0x7f0000000140)={0x4000000000000000, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) 19:31:32 executing program 0: clone3(&(0x7f0000000140)={0x20200, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) 19:31:32 executing program 6: syz_open_dev$sg(0x0, 0x0, 0x0) syz_io_uring_setup(0x4ee5, &(0x7f0000000080)={0x0, 0xffff8000}, &(0x7f0000ffd000/0x3000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000040), &(0x7f0000000100)) 19:31:32 executing program 4: clone3(&(0x7f0000000140)={0xffffffff00000000, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) 19:31:32 executing program 7: perf_event_open(&(0x7f0000000200)={0x2, 0x80, 0x8, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4}, 0x0, 0x0, 0xffffffffffffffff, 0x0) creat(0x0, 0x0) clone3(&(0x7f0000000140)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) write(0xffffffffffffffff, 0x0, 0x0) 19:31:32 executing program 4: clone3(&(0x7f0000000140)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) 19:31:32 executing program 0: clone3(&(0x7f0000000140)={0x80000, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) 19:31:32 executing program 2: perf_event_open(&(0x7f0000000200)={0x2, 0x80, 0x8, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) creat(0x0, 0x0) syz_io_uring_setup(0x44af, &(0x7f0000000100)={0x0, 0x2, 0x0, 0x0, 0x389}, &(0x7f0000000000/0x12000)=nil, &(0x7f000000e000/0x1000)=nil, &(0x7f0000000080), &(0x7f0000000040)) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) clone3(&(0x7f0000000140)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) (fail_nth: 16) [ 1380.207478] FAULT_INJECTION: forcing a failure. [ 1380.207478] name failslab, interval 1, probability 0, space 0, times 0 [ 1380.210241] CPU: 0 PID: 33326 Comm: syz-executor.2 Not tainted 5.10.185 #1 [ 1380.211646] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1380.213261] Call Trace: [ 1380.213802] dump_stack+0x107/0x167 [ 1380.214526] should_fail.cold+0x5/0xa [ 1380.215301] ? create_object.isra.0+0x3a/0xa20 [ 1380.216215] should_failslab+0x5/0x20 [ 1380.216987] kmem_cache_alloc+0x5b/0x310 [ 1380.217799] create_object.isra.0+0x3a/0xa20 [ 1380.218695] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 1380.219745] __kmalloc_node+0x1ae/0x420 [ 1380.220558] kvmalloc_node+0x119/0x170 [ 1380.221345] alloc_fdtable+0xd3/0x280 [ 1380.222113] dup_fd+0x74d/0xcf0 [ 1380.222784] ? security_task_alloc+0xe6/0x260 [ 1380.223697] copy_process+0x195b/0x6740 [ 1380.224497] ? lock_acquire+0x197/0x470 [ 1380.225296] ? find_held_lock+0x2c/0x110 [ 1380.226127] ? __cleanup_sighand+0xb0/0xb0 [ 1380.226984] ? _copy_from_user+0xfb/0x1b0 [ 1380.227831] kernel_clone+0xe7/0x980 [ 1380.228580] ? lock_acquire+0x197/0x470 [ 1380.229378] ? create_io_thread+0xf0/0xf0 [ 1380.230226] ? ksys_write+0x21a/0x260 [ 1380.230991] ? lock_downgrade+0x6d0/0x6d0 [ 1380.231841] __do_sys_clone3+0x1e5/0x320 [ 1380.232656] ? __do_sys_clone+0x110/0x110 [ 1380.233509] ? rcu_read_lock_any_held+0x75/0xa0 [ 1380.234407] ? vfs_write+0x354/0xa70 [ 1380.235158] ? fput_many+0x2f/0x1a0 [ 1380.235902] ? ksys_write+0x1a9/0x260 [ 1380.236667] ? __ia32_sys_read+0xb0/0xb0 [ 1380.237485] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1380.238542] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1380.239597] ? trace_hardirqs_on+0x5b/0x180 [ 1380.240465] do_syscall_64+0x33/0x40 [ 1380.241216] entry_SYSCALL_64_after_hwframe+0x61/0xc6 [ 1380.242245] RIP: 0033:0x7f44f9a2eb19 [ 1380.243001] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1380.246707] RSP: 002b:00007f44f6fa4188 EFLAGS: 00000246 ORIG_RAX: 00000000000001b3 [ 1380.248240] RAX: ffffffffffffffda RBX: 00007f44f9b41f60 RCX: 00007f44f9a2eb19 [ 1380.249675] RDX: 0000000000000000 RSI: 0000000000000058 RDI: 0000000020000140 [ 1380.251111] RBP: 00007f44f6fa41d0 R08: 0000000000000000 R09: 0000000000000000 [ 1380.252560] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 1380.253991] R13: 00007ffe83cb2bbf R14: 00007f44f6fa4300 R15: 0000000000022000 19:31:47 executing program 4: clone3(&(0x7f0000000140)={0x0, 0x0, 0x0, 0x0, {0x8}, 0x0, 0x0, 0x0, 0x0}, 0x58) 19:31:47 executing program 6: syz_open_dev$sg(0x0, 0x0, 0x0) syz_io_uring_setup(0x4ee5, &(0x7f0000000080)={0x0, 0xfffffffe}, &(0x7f0000ffd000/0x3000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000040), &(0x7f0000000100)) 19:31:47 executing program 3: creat(0x0, 0x0) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) clone3(&(0x7f0000000140)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0xb04b283a550000, 0x0, 0x0}, 0x58) 19:31:47 executing program 2: perf_event_open(&(0x7f0000000200)={0x2, 0x80, 0x8, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) creat(0x0, 0x0) syz_io_uring_setup(0x44af, &(0x7f0000000100)={0x0, 0x2, 0x0, 0x0, 0x389}, &(0x7f0000000000/0x12000)=nil, &(0x7f000000e000/0x1000)=nil, &(0x7f0000000080), &(0x7f0000000040)) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) clone3(&(0x7f0000000140)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) (fail_nth: 17) 19:31:47 executing program 1: perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) clone3(&(0x7f0000000140)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) r0 = getpgrp(0x0) pidfd_open(r0, 0x0) r1 = syz_open_dev$sg(&(0x7f0000000400), 0x0, 0x0) r2 = syz_open_dev$evdev(&(0x7f0000000040), 0x0, 0x8802) r3 = fcntl$dupfd(r2, 0x0, r1) writev(r3, &(0x7f0000000140)=[{&(0x7f0000000300)="0040abe02400030021206cda3b5e5672b89aeddb2a535fbd", 0x7e0}], 0x1) perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x7, 0x8, 0x3, 0xfc, 0x0, 0xd2e, 0x87000, 0x4, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x1, 0x1, 0x1, 0x1, 0x1, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x1, 0x0, 0x1, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x1, 0x1, 0x1, 0x0, 0x0, 0x0, 0x1, 0x0, 0x4, 0x4, @perf_bp={&(0x7f0000000000), 0x4}, 0x2000, 0x5, 0x9, 0x2, 0x20, 0x1, 0x3, 0x0, 0x3, 0x0, 0x2}, r0, 0x10, r3, 0x8) 19:31:47 executing program 7: perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x8, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = creat(0x0, 0x0) ioctl$FITRIM(r0, 0xc0185879, &(0x7f0000000100)={0x6, 0x6, 0xffffffff}) ioctl$AUTOFS_DEV_IOCTL_ASKUMOUNT(r0, 0xc018937d, &(0x7f0000000000)={{0x1, 0x1, 0x18, r0, {0xf79efcde}}, './file0\x00'}) r2 = openat(r1, &(0x7f00000000c0)='./file0\x00', 0x80, 0x32) write(0xffffffffffffffff, 0x0, 0x0) ioctl$AUTOFS_DEV_IOCTL_ISMOUNTPOINT(r2, 0xc018937e, &(0x7f0000000140)={{0x1, 0x1, 0x18, r1, @in_args={0x1}}, './file0\x00'}) ioctl$F2FS_IOC_PRECACHE_EXTENTS(r3, 0xf50f, 0x0) 19:31:47 executing program 0: clone3(&(0x7f0000000140)={0x101000, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) 19:31:47 executing program 5: r0 = perf_event_open(&(0x7f0000000200)={0x2, 0x80, 0x8, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f0000000580), 0x4}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4000}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_io_uring_setup(0x44af, &(0x7f0000000100)={0x0, 0x2, 0x0, 0x0, 0x389}, &(0x7f0000000000/0x12000)=nil, &(0x7f000000e000/0x1000)=nil, &(0x7f0000000080), &(0x7f0000000040)) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x2) clone3(&(0x7f0000000140)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) write(0xffffffffffffffff, &(0x7f0000000100)='?', 0x1) r1 = socket$netlink(0x10, 0x3, 0x0) pidfd_open(0x0, 0x0) sendmsg$nl_generic(r1, &(0x7f0000000900)={&(0x7f0000000500)={0x10, 0x0, 0x0, 0x10000}, 0xc, &(0x7f00000008c0)={&(0x7f0000000680)={0x20c, 0x15, 0x200, 0x70bd2a, 0x25dfdbfd, {0xb}, [@typed={0x8, 0x8b, 0x0, 0x0, @uid}, @nested={0x18f, 0x60, 0x0, 0x1, [@generic="f2a83bfcf52e37b1b0ad1f61e59b5ccd0cab7f46c7eeb163315f9792df436fcfab2a474fa8cfffc298bddc00f01e4c1355c1b3f109e818eda1c90a10f960db3e1a7996e291ff0047c3e659b9f946d36e60e90243f0089d1734abd712cc365e43b3282627e865f26ac42d6869d184b1e5eb5c6120add19ba4527b477e132c3400515cfcb57f1e", @generic="640ea1a450ab8a666abddafc7ffeaf57017a4ef8db5f2d72acba", @generic="b409748ed0bdf4cbb69e4271cc6c088f880b24ff033d3f17b2fbdf05ea0d60833a49800ca77b0a5380e83a416c8a2f441343958d6573c37f406ab40c76a47bef7151781620f22833f7e4277fa95d074f8e0c3cfef919b1068bcc5d522e8ff15f30993a26546a36c5726df4c9846f01a0f114a251619bfedaa1f0d52a5296295d0c73595443b45a739cf7916690ce0bff6a9a362fdb95c2e83dbfb212153d87ec9b4f4d3131f816fe86573e9077750d13073805b3ba932b333bb9e37f83bf08c4a4f9d780aa25421cabeac69272c80bf6a51464a66c2e071650d59f268cdbc0ac30", @generic="ec12cddf09af9836bbf1"]}, @typed={0x4, 0x2b}, @typed={0x14, 0x14, 0x0, 0x0, @ipv6=@rand_addr=' \x01\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x01'}, @generic="dfd01b37f4d83a6e78b66eaf4f870070ab51d23baac24a1b03c29f1d75d86c", @typed={0x8, 0x51, 0x0, 0x0, @pid}, @generic="fbc69c7feb09d5a4755bae43ac14b6c2fda2402eb6", @typed={0xa, 0x13, 0x0, 0x0, @str='-}).{\x00'}]}, 0x20c}, 0x1, 0x0, 0x0, 0x800}, 0x800) sendmsg$nl_generic(0xffffffffffffffff, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000540)={0x1c, 0x16, 0x100, 0x0, 0x0, {0xa}, [@typed={0x8, 0x41, 0x0, 0x0, @uid}]}, 0x1c}, 0x1, 0x0, 0x0, 0x4004040}, 0x400d0) r2 = socket$netlink(0x10, 0x3, 0x0) sendmsg$nl_generic(r2, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000000)={0x1c, 0x16, 0x1, 0x0, 0x0, {0xa}, [@nested={0x8, 0x0, 0x0, 0x1, [@typed={0xffffffffffffff5f, 0xa}]}]}, 0x1c}}, 0x0) r3 = syz_open_dev$sg(&(0x7f0000000400), 0x0, 0x0) r4 = syz_open_dev$evdev(&(0x7f0000000040), 0x0, 0x8802) r5 = fcntl$dupfd(r4, 0x0, r3) writev(r5, &(0x7f0000000140)=[{&(0x7f0000000300)="0040abe02400030021206cda3b5e5672b89aeddb2a535fbd", 0x7e0}], 0x1) r6 = syz_open_dev$sg(&(0x7f0000000400), 0x0, 0x0) r7 = syz_open_dev$evdev(&(0x7f0000000040), 0x0, 0x8802) r8 = fcntl$dupfd(r7, 0x0, r6) writev(r8, &(0x7f0000000140)=[{&(0x7f0000000300)="0040abe02400030021206cda3b5e5672b89aeddb2a535fbd", 0x7e0}], 0x1) io_submit(0x0, 0x4, &(0x7f00000004c0)=[&(0x7f0000000000)={0x0, 0x0, 0x0, 0x5, 0x9, r1, &(0x7f0000000280)="8da01217fe4756000af4453d0042643a31f53db6a095ac64e68517f3457115576c0c8d6a416128a68d6ce6004c1ee15ac284e9748ea028864cc8510da07f61d2cc78e235e7148d58f71d4911b9d51ba31aad188c82795d868ccf0911345ae45cea9e1f4f40b4e5126faaf10577b97a581f3b08864394a33229e0c55db505", 0x7e, 0x101}, &(0x7f00000000c0)={0x0, 0x0, 0x0, 0x3, 0x1673, r0, &(0x7f0000000300)="2404305db305e7f6d91382addaf29efe28f0c30a058647e6d7b81038da94e0f5da1f37f0be3527cf89a9e134be8c45c4197e5b3a3a2b5fae7c638a66b85429b914b465f45b4585965c9498fb329251b556d671f78fee8a9dd108db08b5b4fb17a4df2cbc7d1932b2d0682f0a41809a52393b9598bf2f9baabb35094a79e9f40a1650b23cf04b7d028c40ec2a32566906a6730ee7a9b8cec7f25fc3607d619144468ef69f1af0fed3fa7f9dee5bad7e2daa02f685953851fe79db7b3b30bdfb0b24c1e99fc66e", 0xc6, 0x3, 0x0, 0x1}, &(0x7f0000000400)={0x0, 0x0, 0x0, 0x0, 0x2, r2, &(0x7f00000001c0)="a92c191bc7431607952eab16483eb1e6b77831a0f84b23a5fb5e529eabafc7bbba4e4531297a8376036ab6c200ab57d405", 0x31, 0xa405, 0x0, 0x3, r5}, &(0x7f0000000480)={0x0, 0x0, 0x0, 0x1, 0x800, r0, &(0x7f0000000440)="4138c291c126b5e14c8f7fc0858a737d44343ab57cea7f03", 0x18, 0x2a40b92b, 0x0, 0x2, r8}]) 19:31:47 executing program 6: syz_open_dev$sg(0x0, 0x0, 0x0) syz_io_uring_setup(0x4ee5, &(0x7f0000000080), &(0x7f0000ffd000/0x3000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000040), &(0x7f0000000100)) [ 1395.532393] FAULT_INJECTION: forcing a failure. [ 1395.532393] name failslab, interval 1, probability 0, space 0, times 0 [ 1395.535405] CPU: 1 PID: 33581 Comm: syz-executor.2 Not tainted 5.10.185 #1 [ 1395.537002] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1395.538900] Call Trace: [ 1395.539523] dump_stack+0x107/0x167 [ 1395.540365] should_fail.cold+0x5/0xa [ 1395.541243] ? kvmalloc_node+0x119/0x170 [ 1395.542163] should_failslab+0x5/0x20 [ 1395.543022] __kmalloc_node+0x76/0x420 [ 1395.543912] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 1395.545059] kvmalloc_node+0x119/0x170 [ 1395.545946] alloc_fdtable+0x13f/0x280 [ 1395.546823] dup_fd+0x74d/0xcf0 [ 1395.547601] ? security_task_alloc+0xe6/0x260 [ 1395.548613] copy_process+0x195b/0x6740 [ 1395.549510] ? lock_acquire+0x197/0x470 19:31:47 executing program 0: clone3(&(0x7f0000000140)={0xf0ff1f, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) [ 1395.550409] ? find_held_lock+0x2c/0x110 [ 1395.551498] ? __cleanup_sighand+0xb0/0xb0 [ 1395.552462] ? _copy_from_user+0xfb/0x1b0 [ 1395.553395] kernel_clone+0xe7/0x980 [ 1395.554226] ? lock_acquire+0x197/0x470 [ 1395.555113] ? create_io_thread+0xf0/0xf0 [ 1395.556070] ? ksys_write+0x21a/0x260 [ 1395.556918] ? lock_downgrade+0x6d0/0x6d0 [ 1395.557846] __do_sys_clone3+0x1e5/0x320 [ 1395.558752] ? __do_sys_clone+0x110/0x110 [ 1395.559706] ? rcu_read_lock_any_held+0x75/0xa0 [ 1395.560740] ? vfs_write+0x354/0xa70 [ 1395.561575] ? fput_many+0x2f/0x1a0 [ 1395.562389] ? ksys_write+0x1a9/0x260 [ 1395.563237] ? __ia32_sys_read+0xb0/0xb0 [ 1395.564165] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1395.565337] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1395.566488] ? trace_hardirqs_on+0x5b/0x180 [ 1395.567453] do_syscall_64+0x33/0x40 [ 1395.568293] entry_SYSCALL_64_after_hwframe+0x61/0xc6 [ 1395.569435] RIP: 0033:0x7f44f9a2eb19 [ 1395.570268] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1395.574373] RSP: 002b:00007f44f6fa4188 EFLAGS: 00000246 ORIG_RAX: 00000000000001b3 [ 1395.576068] RAX: ffffffffffffffda RBX: 00007f44f9b41f60 RCX: 00007f44f9a2eb19 [ 1395.577642] RDX: 0000000000000000 RSI: 0000000000000058 RDI: 0000000020000140 [ 1395.579216] RBP: 00007f44f6fa41d0 R08: 0000000000000000 R09: 0000000000000000 [ 1395.580796] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 1395.582370] R13: 00007ffe83cb2bbf R14: 00007f44f6fa4300 R15: 0000000000022000 19:31:47 executing program 6: syz_open_dev$sg(0x0, 0x0, 0x0) syz_io_uring_setup(0x4ee5, &(0x7f0000000080)={0x0, 0x0, 0x2}, &(0x7f0000ffd000/0x3000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000040), &(0x7f0000000100)) 19:31:47 executing program 0: clone3(&(0x7f0000000140)={0x1000000, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) 19:31:47 executing program 4: clone3(&(0x7f0000000140)={0x0, 0x0, 0x0, 0x0, {0x11}, 0x0, 0x0, 0x0, 0x0}, 0x58) [ 1395.736329] cgroup: fork rejected by pids controller in /syz4 19:32:03 executing program 6: syz_open_dev$sg(0x0, 0x0, 0x0) syz_io_uring_setup(0x4ee5, &(0x7f0000000080)={0x0, 0x0, 0x3}, &(0x7f0000ffd000/0x3000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000040), &(0x7f0000000100)) 19:32:03 executing program 3: creat(0x0, 0x0) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) clone3(&(0x7f0000000140)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0xf0d753182a0000, 0x0, 0x0}, 0x58) 19:32:03 executing program 5: r0 = perf_event_open(&(0x7f0000000200)={0x2, 0x80, 0x8, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) perf_event_open(&(0x7f0000000300)={0x0, 0x80, 0x80, 0x8, 0x2, 0x0, 0x0, 0x0, 0x8104, 0xb, 0x1, 0x1, 0x0, 0x0, 0x1, 0x0, 0x0, 0x1, 0x1, 0x0, 0x1, 0x1, 0x0, 0x1, 0x1, 0x1, 0x0, 0x1, 0x1, 0x1, 0x1, 0x1, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x6, 0x1, @perf_config_ext={0x40, 0x4}, 0x40, 0x5, 0x1f, 0x2, 0x80, 0x7fff, 0x8001, 0x0, 0xbd, 0x0, 0x1ff}, 0x0, 0x8, r0, 0x9) fcntl$setstatus(0xffffffffffffffff, 0x4, 0x42000) syz_io_uring_setup(0x44af, &(0x7f0000000100)={0x0, 0x1d0f, 0x3d, 0x1, 0x12}, &(0x7f0000000000/0x12000)=nil, &(0x7f000000e000/0x1000)=nil, &(0x7f0000000080), &(0x7f0000000040)) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) perf_event_open(&(0x7f0000000280)={0x2, 0x80, 0xe4, 0x1, 0x0, 0x4, 0x0, 0x9, 0x20000, 0x8, 0x0, 0x0, 0x1, 0x1, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x1, 0x1, 0x3, 0x1, 0x1, 0x1, 0x0, 0x1, 0x0, 0x0, 0x0, 0x1, 0x0, 0x1, 0x0, 0x1, 0x1, 0x0, 0x0, 0x1, 0x1, 0x0, 0x0, 0x1, 0x0, 0xfffffff9, 0x1, @perf_bp, 0x2200, 0x66, 0xfffffffa, 0xe, 0x800, 0x4, 0x7f, 0x0, 0x6, 0x0, 0x1}, 0xffffffffffffffff, 0xc, 0xffffffffffffffff, 0x0) clone3(&(0x7f0000000140)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) write(0xffffffffffffffff, &(0x7f0000000100)='?', 0x1) 19:32:03 executing program 0: clone3(&(0x7f0000000140)={0x8000000, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) 19:32:03 executing program 4: clone3(&(0x7f0000000140)={0x0, 0x0, 0x0, 0x0, {0x1100}, 0x0, 0x0, 0x0, 0x0}, 0x58) 19:32:03 executing program 1: r0 = getpgrp(0x0) pidfd_open(r0, 0x0) syz_open_procfs(r0, &(0x7f0000000000)='net/netfilter\x00') perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0) r1 = inotify_init() r2 = syz_init_net_socket$bt_l2cap(0x1f, 0x3, 0x0) dup2(r1, r2) fsetxattr$trusted_overlay_redirect(0xffffffffffffffff, &(0x7f0000000040), &(0x7f0000000080)='./file0\x00', 0x8, 0x0) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) clone3(&(0x7f0000000140)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) 19:32:03 executing program 2: perf_event_open(&(0x7f0000000200)={0x2, 0x80, 0x8, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) creat(0x0, 0x0) syz_io_uring_setup(0x44af, &(0x7f0000000100)={0x0, 0x2, 0x0, 0x0, 0x389}, &(0x7f0000000000/0x12000)=nil, &(0x7f000000e000/0x1000)=nil, &(0x7f0000000080), &(0x7f0000000040)) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) clone3(&(0x7f0000000140)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) (fail_nth: 18) 19:32:03 executing program 7: perf_event_open(&(0x7f0000000200)={0x2, 0x80, 0x8, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = creat(0x0, 0x0) r1 = clone3(&(0x7f0000000140)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) fcntl$lock(r0, 0x0, &(0x7f0000000000)={0x2, 0x0, 0x1ff, 0xffffffff, r1}) write(0xffffffffffffffff, 0x0, 0x0) 19:32:03 executing program 4: clone3(&(0x7f0000000140)={0x0, 0x0, 0x0, 0x0, {0x2000}, 0x0, 0x0, 0x0, 0x0}, 0x58) [ 1411.591357] FAULT_INJECTION: forcing a failure. [ 1411.591357] name failslab, interval 1, probability 0, space 0, times 0 [ 1411.593409] CPU: 1 PID: 34031 Comm: syz-executor.2 Not tainted 5.10.185 #1 [ 1411.594390] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1411.595568] Call Trace: [ 1411.595969] dump_stack+0x107/0x167 [ 1411.596499] should_fail.cold+0x5/0xa [ 1411.597060] ? create_object.isra.0+0x3a/0xa20 [ 1411.597722] should_failslab+0x5/0x20 [ 1411.598272] kmem_cache_alloc+0x5b/0x310 [ 1411.598858] create_object.isra.0+0x3a/0xa20 [ 1411.599497] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 1411.600234] __kmalloc_node+0x1ae/0x420 [ 1411.600822] kvmalloc_node+0x119/0x170 [ 1411.601384] alloc_fdtable+0x13f/0x280 [ 1411.601947] dup_fd+0x74d/0xcf0 [ 1411.602425] ? security_task_alloc+0xe6/0x260 [ 1411.603069] copy_process+0x195b/0x6740 [ 1411.603654] ? lock_acquire+0x197/0x470 [ 1411.604239] ? find_held_lock+0x2c/0x110 [ 1411.604840] ? __cleanup_sighand+0xb0/0xb0 [ 1411.605457] ? _copy_from_user+0xfb/0x1b0 [ 1411.606070] kernel_clone+0xe7/0x980 [ 1411.606603] ? lock_acquire+0x197/0x470 [ 1411.607172] ? create_io_thread+0xf0/0xf0 [ 1411.607789] ? ksys_write+0x21a/0x260 [ 1411.608335] ? lock_downgrade+0x6d0/0x6d0 [ 1411.608935] __do_sys_clone3+0x1e5/0x320 [ 1411.609517] ? __do_sys_clone+0x110/0x110 [ 1411.610120] ? rcu_read_lock_any_held+0x75/0xa0 [ 1411.610787] ? vfs_write+0x354/0xa70 [ 1411.611328] ? fput_many+0x2f/0x1a0 [ 1411.611860] ? ksys_write+0x1a9/0x260 [ 1411.612403] ? __ia32_sys_read+0xb0/0xb0 [ 1411.612985] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1411.613752] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1411.614481] ? trace_hardirqs_on+0x5b/0x180 [ 1411.615097] do_syscall_64+0x33/0x40 [ 1411.615626] entry_SYSCALL_64_after_hwframe+0x61/0xc6 [ 1411.616358] RIP: 0033:0x7f44f9a2eb19 [ 1411.616885] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1411.619493] RSP: 002b:00007f44f6fa4188 EFLAGS: 00000246 ORIG_RAX: 00000000000001b3 [ 1411.620592] RAX: ffffffffffffffda RBX: 00007f44f9b41f60 RCX: 00007f44f9a2eb19 [ 1411.621602] RDX: 0000000000000000 RSI: 0000000000000058 RDI: 0000000020000140 [ 1411.622614] RBP: 00007f44f6fa41d0 R08: 0000000000000000 R09: 0000000000000000 [ 1411.623628] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 1411.624651] R13: 00007ffe83cb2bbf R14: 00007f44f6fa4300 R15: 0000000000022000 19:32:03 executing program 6: syz_open_dev$sg(0x0, 0x0, 0x0) syz_io_uring_setup(0x4ee5, &(0x7f0000000080)={0x0, 0x0, 0x4}, &(0x7f0000ffd000/0x3000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000040), &(0x7f0000000100)) 19:32:04 executing program 4: clone3(&(0x7f0000000140)={0x0, 0x0, 0x0, 0x0, {0x3f00}, 0x0, 0x0, 0x0, 0x0}, 0x58) 19:32:04 executing program 1: r0 = perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0) clone3(&(0x7f0000000140)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) r1 = fcntl$getown(r0, 0x9) r2 = syz_open_dev$sg(&(0x7f0000000400), 0x0, 0x0) r3 = syz_open_dev$evdev(&(0x7f0000000040), 0x0, 0x8802) r4 = fcntl$dupfd(r3, 0x0, r2) writev(r4, &(0x7f0000000140)=[{&(0x7f0000000300)="0040abe02400030021206cda3b5e5672b89aeddb2a535fbd", 0x7e0}], 0x1) perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x4, 0x1, 0x6b, 0x80, 0x0, 0x2, 0x9000, 0x0, 0x1, 0x0, 0x1, 0x0, 0x0, 0x1, 0x0, 0x1, 0x0, 0x1, 0x0, 0x1, 0x1, 0x1, 0x0, 0x0, 0x1, 0x1, 0x0, 0x1, 0x1, 0x0, 0x0, 0x1, 0x1, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x1, 0x1, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x1, @perf_bp={&(0x7f0000000000), 0x5}, 0x108, 0x5, 0x3, 0x0, 0x3, 0xff, 0x1, 0x0, 0xfffffffb, 0x0, 0xfff}, r1, 0x5, r4, 0x8) r5 = syz_mount_image$ext4(&(0x7f00000000c0)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x81, 0x1, &(0x7f0000000240)=[{&(0x7f00000001c0)="e7bc99d9fb3d5fe827bd7b3d964d250c869667664a484be724b1f16fe29ef694f8e197a772dad475851a41a06821ceb1712d0f60d6f9352c8d3926d4f5e6d85a114271dada8bb134d1653421a39547d8dae459a87f4a88c91be960b2dc99fa24279eb72535ba170365aa09cc27d6", 0x6e, 0x9}], 0x280400, &(0x7f0000000a80)=ANY=[@ANYBLOB="646973636172642c6a6f75636e616c5f6465763d3078303030303030303030303030303030382c6e6f626c6f636b5f76616c69646974792c6e6f6c617a7974696d652c6e6f62682c636f6e746578743d75736572ba70b65273636f6e746578743d756e636f6e66696e65645f752c7375626a5f757365723d2f6465762f736723002c7365636c6162656c2c007f7bc4167f5f04ec2586ffb388604ec3e64b17173f2f9eb2c73b93f03ad8646fd426dd2bd8c412f2d90f874c2cf4ed3c0ad186a94a9817ac"]) newfstatat(0xffffffffffffff9c, &(0x7f00000009c0)='./file0\x00', &(0x7f0000000a00), 0x2000) readv(r5, &(0x7f0000000940)=[{&(0x7f0000000440)=""/173, 0xad}, {&(0x7f0000000280)=""/124, 0x7c}, {&(0x7f0000000500)=""/231, 0xe7}, {&(0x7f0000000600)=""/9, 0x9}, {&(0x7f0000000640)=""/235, 0xeb}, {&(0x7f0000000740)=""/218, 0xda}, {&(0x7f0000000840)=""/35, 0x23}, {&(0x7f0000000880)=""/180, 0xb4}], 0x8) 19:32:04 executing program 7: perf_event_open(&(0x7f0000000200)={0x2, 0x80, 0x8, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = creat(0x0, 0x0) creat(&(0x7f00000001c0)='./file0\x00', 0x2) r1 = getpgrp(0x0) pidfd_open(r1, 0x0) ioctl$sock_inet_SIOCSIFFLAGS(0xffffffffffffffff, 0x8914, &(0x7f00000003c0)={'macvlan0\x00'}) clone3(&(0x7f0000000340)={0x40000000, &(0x7f0000000000), &(0x7f0000000040), &(0x7f0000000080), {0xb}, &(0x7f0000000280)=""/150, 0x96, &(0x7f00000000c0)=""/36, &(0x7f0000000100)=[0xffffffffffffffff, r1, 0xffffffffffffffff, 0xffffffffffffffff], 0x4, {r0}}, 0x58) clone3(&(0x7f0000000140)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) write(0xffffffffffffffff, 0x0, 0x0) 19:32:04 executing program 6: syz_open_dev$sg(0x0, 0x0, 0x0) syz_io_uring_setup(0x4ee5, &(0x7f0000000080)={0x0, 0x0, 0x6}, &(0x7f0000ffd000/0x3000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000040), &(0x7f0000000100)) 19:32:04 executing program 3: creat(0x0, 0x0) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) clone3(&(0x7f0000000140)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0xf0e10b1b000000, 0x0, 0x0}, 0x58) 19:32:04 executing program 4: clone3(&(0x7f0000000140)={0x0, 0x0, 0x0, 0x0, {0x4000}, 0x0, 0x0, 0x0, 0x0}, 0x58) 19:32:04 executing program 0: clone3(&(0x7f0000000140)={0x10000200, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) 19:32:18 executing program 5: perf_event_open(&(0x7f0000000200)={0x2, 0x80, 0x8, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_io_uring_setup(0x44af, &(0x7f0000000100)={0x0, 0x2, 0x0, 0x0, 0x389}, &(0x7f0000000000/0x12000)=nil, &(0x7f000000e000/0x1000)=nil, &(0x7f0000000080)=0x0, &(0x7f0000000040)=0x0) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r2 = socket$inet6(0xa, 0x1, 0x40) syz_io_uring_submit(r0, r1, &(0x7f00000001c0)=@IORING_OP_SENDMSG={0x9, 0x1, 0x0, r2, 0x0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000000)=[{&(0x7f0000000280)="6129d4f2cafc546fcc498871beed1273361f13bee2c81bee26f8e82514ef148c0c4605182a46f53db9576771886a78337aa3005c218e7d06c7b3b621ec0c1e9892474351779bb969af459111ea4bdbf3f04d5b5a5c57e372cb0d0e9072af0f9766f0ead93f7523c8d4e61dc3e8ed8a541f47cdeeaa224b04fcb23ac96d8e370ecd5ba03681b8571295a3abc58738448ab6390712a8ad2ee4bfd79b8aed8335376c3446fcd837de53df562b9f1a15a2b3e41ea9a071252810163e7a9e9756415324548822d5b27777b82f1817f594303ab3e8108858c5bf528c36b2d325d42b44f193b81be1c0998ee2f76880d39d934e5be8", 0xf2}, {&(0x7f0000000380)="2139a07592dd3766f4b3ecd15ab8048ce73222c42daf38a2fa61ee8b6a65970f9a8d43caee7607c99cc47f6b0ccc777bfc25c3783457195f68a140d6538e784ec6bf793b329552412673c21069faf60da781d07ef404b628b8663f64a3e2ca1c4742f1d025a86bfdae1033e67b53b72dd5e809b5bcdfe4037024bf29b21f5efaeef3c215e2692ed348ff4f7348eddc284074e2f2bd53042589d16a5386bf42d09fe201c20199dffddd4d9097511b0085f5415fe43784c7a1", 0xb8}, {&(0x7f0000000440)="ee17be694f0b04e71c0e18c11ebbfacf2a8780b299fa939d1c8ffb7f8a6dd6766fdf2ac75e7051e2806ad29cf63f58d38cba4bb9084ee6a21a85f9b3b03d2a5f691971d7daf9849a9668f6c00f6933d38ffd332dca53d839da81d6ae0de1b7", 0x5f}], 0x3, &(0x7f00000004c0)=[{0x40, 0x84, 0x8, "f0fb2181fde438486c6cfc035ef5f37408ce86bf6729198a30e23d1753b6969d3047877190b78e0d576dafbf9ed207b4"}, {0x68, 0x118, 0x5, "b6c055fb393a30b6aac7683995adc771b70f3b589766590f224752fa39367f48c40f019de1f3d417fc30062eca4aa5f02bad1a7c53f1994c7b79f373a50e6aa5473b95a9de3f11432164b196d837de8a0891465313842b"}], 0xa8}, 0x0, 0x60, 0x1}, 0x1c3) ioctl$AUTOFS_IOC_PROTOVER(r2, 0x80049363, &(0x7f0000000580)) clone3(&(0x7f0000000140)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) write(0xffffffffffffffff, &(0x7f0000000100)='?', 0x1) 19:32:18 executing program 6: syz_open_dev$sg(0x0, 0x0, 0x0) syz_io_uring_setup(0x4ee5, &(0x7f0000000080)={0x0, 0x0, 0x8}, &(0x7f0000ffd000/0x3000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000040), &(0x7f0000000100)) 19:32:18 executing program 7: r0 = perf_event_open(&(0x7f0000000200)={0x2, 0x80, 0x5, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r1 = creat(0x0, 0x171) r2 = getpid() dup3(r1, r1, 0x0) perf_event_open(&(0x7f0000000000)={0x4, 0x80, 0xea, 0x5, 0x7, 0x5, 0x0, 0x401, 0x2, 0x2, 0x0, 0x1, 0x1, 0x1, 0x0, 0x1, 0x1, 0x1, 0x1, 0x1, 0x1, 0x1, 0x0, 0x1, 0x0, 0x1, 0x0, 0x0, 0x1, 0x1, 0x1, 0x0, 0x0, 0x0, 0x1, 0x1, 0x1, 0x1, 0x1, 0x0, 0x0, 0x1, 0x1, 0x0, 0x0, 0x0, 0x1, 0x0, 0x101, 0x0, @perf_config_ext={0xf70, 0x7c657b7b}, 0x10, 0xbcf7, 0x763a, 0x8, 0x0, 0x418a, 0x1, 0x0, 0x5, 0x0, 0x9}, r2, 0xffffffffffffffff, r0, 0x0) r3 = socket$unix(0x1, 0x5, 0x0) ioctl$BTRFS_IOC_BALANCE_PROGRESS(r3, 0x84009422, &(0x7f0000002580)={0x0, 0x0, {}, {}, {0x0, @struct, 0x0}}) ioctl$BTRFS_IOC_DEV_INFO(0xffffffffffffffff, 0xd000941e, &(0x7f00000001c0)={r4, "1169feeb427ab0e2253af9114f0f7407"}) ioctl$BTRFS_IOC_BALANCE_V2(r0, 0xc4009420, &(0x7f0000000340)={0xd, 0x5, {0x8, @struct={0x61, 0x20}, 0x0, 0x200, 0x42cc, 0x59b, 0x79, 0x4, 0x4b2, @usage=0x200, 0x5, 0x3, [0x10000, 0x1, 0x0, 0x101, 0x8, 0x1]}, {0x6, @usage=0xffffffffffffffad, r4, 0x5, 0x0, 0xbbd, 0x0, 0x1, 0x8, @struct={0x1, 0x4}, 0x1, 0x1, [0x8, 0x3ff, 0x8000, 0x68, 0x2, 0x29dd]}, {0xffff, @struct={0x4}, 0x0, 0xea, 0x4, 0x5, 0x80, 0x8001, 0x21, @struct={0x3, 0x3}, 0x7, 0x7806, [0x7fffffff, 0x5, 0x5, 0x4, 0x3, 0x43bf]}, {0x29, 0x100, 0x9}}) recvmsg$unix(r1, &(0x7f0000000300)={&(0x7f0000000080)=@abs, 0x6e, &(0x7f00000001c0)=[{&(0x7f0000000100)=""/62, 0x3e}], 0x1, &(0x7f00000011c0)=[@cred={{0x1c}}, @cred={{0x1c, 0x1, 0x2, {0x0}}}, @cred={{0x1c}}], 0x60}, 0x40012000) ptrace$cont(0x1f, r5, 0x7, 0x6) clone3(&(0x7f0000000140)={0x100, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) write(0xffffffffffffffff, 0x0, 0x0) 19:32:18 executing program 1: perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) clone3(&(0x7f0000000140)={0x9154309699ba5ddc, 0x0, 0x0, 0x0, {0xfffffffd}, 0x0, 0x0, 0x0, 0x0}, 0x58) 19:32:18 executing program 3: creat(0x0, 0x0) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) clone3(&(0x7f0000000140)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0xf0ff1f00000000, 0x0, 0x0}, 0x58) 19:32:18 executing program 0: clone3(&(0x7f0000000140)={0x11000000, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) 19:32:18 executing program 4: clone3(&(0x7f0000000140)={0x0, 0x0, 0x0, 0x0, {0x20010}, 0x0, 0x0, 0x0, 0x0}, 0x58) 19:32:18 executing program 2: perf_event_open(&(0x7f0000000200)={0x2, 0x80, 0x8, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) creat(0x0, 0x0) syz_io_uring_setup(0x44af, &(0x7f0000000100)={0x0, 0x2, 0x0, 0x0, 0x389}, &(0x7f0000000000/0x12000)=nil, &(0x7f000000e000/0x1000)=nil, &(0x7f0000000080), &(0x7f0000000040)) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) clone3(&(0x7f0000000140)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) (fail_nth: 19) [ 1425.996635] FAULT_INJECTION: forcing a failure. [ 1425.996635] name failslab, interval 1, probability 0, space 0, times 0 [ 1425.999230] CPU: 0 PID: 34772 Comm: syz-executor.2 Not tainted 5.10.185 #1 [ 1426.000597] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1426.002224] Call Trace: [ 1426.002758] dump_stack+0x107/0x167 [ 1426.003482] should_fail.cold+0x5/0xa [ 1426.004255] ? copy_fs_struct+0x45/0x340 [ 1426.005078] ? copy_fs_struct+0x45/0x340 [ 1426.005883] should_failslab+0x5/0x20 [ 1426.006662] kmem_cache_alloc+0x5b/0x310 [ 1426.007474] copy_fs_struct+0x45/0x340 [ 1426.008276] copy_process+0x461c/0x6740 [ 1426.009068] ? lock_acquire+0x197/0x470 [ 1426.009885] ? find_held_lock+0x2c/0x110 [ 1426.010704] ? __cleanup_sighand+0xb0/0xb0 [ 1426.011543] ? _copy_from_user+0xfb/0x1b0 [ 1426.012399] kernel_clone+0xe7/0x980 [ 1426.013132] ? lock_acquire+0x197/0x470 [ 1426.013943] ? create_io_thread+0xf0/0xf0 [ 1426.014769] ? ksys_write+0x21a/0x260 [ 1426.015539] ? lock_downgrade+0x6d0/0x6d0 [ 1426.016376] __do_sys_clone3+0x1e5/0x320 [ 1426.017190] ? __do_sys_clone+0x110/0x110 [ 1426.018019] ? rcu_read_lock_any_held+0x75/0xa0 [ 1426.018957] ? vfs_write+0x354/0xa70 [ 1426.019714] ? fput_many+0x2f/0x1a0 [ 1426.020458] ? ksys_write+0x1a9/0x260 [ 1426.021226] ? __ia32_sys_read+0xb0/0xb0 [ 1426.022050] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1426.023111] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1426.024165] ? trace_hardirqs_on+0x5b/0x180 [ 1426.025037] do_syscall_64+0x33/0x40 [ 1426.025790] entry_SYSCALL_64_after_hwframe+0x61/0xc6 [ 1426.026824] RIP: 0033:0x7f44f9a2eb19 [ 1426.027577] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1426.031287] RSP: 002b:00007f44f6fa4188 EFLAGS: 00000246 ORIG_RAX: 00000000000001b3 [ 1426.032835] RAX: ffffffffffffffda RBX: 00007f44f9b41f60 RCX: 00007f44f9a2eb19 [ 1426.034275] RDX: 0000000000000000 RSI: 0000000000000058 RDI: 0000000020000140 [ 1426.035727] RBP: 00007f44f6fa41d0 R08: 0000000000000000 R09: 0000000000000000 [ 1426.037190] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 1426.038643] R13: 00007ffe83cb2bbf R14: 00007f44f6fa4300 R15: 0000000000022000 19:32:18 executing program 6: syz_open_dev$sg(0x0, 0x0, 0x0) syz_io_uring_setup(0x4ee5, &(0x7f0000000080)={0x0, 0x0, 0xc}, &(0x7f0000ffd000/0x3000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000040), &(0x7f0000000100)) 19:32:18 executing program 0: clone3(&(0x7f0000000140)={0x1ffff000, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) 19:32:18 executing program 4: clone3(&(0x7f0000000140)={0x0, 0x0, 0x0, 0x0, {0x20200}, 0x0, 0x0, 0x0, 0x0}, 0x58) 19:32:18 executing program 3: creat(0x0, 0x0) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) clone3(&(0x7f0000000140)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x100000000000000, 0x0, 0x0}, 0x58) 19:32:18 executing program 7: perf_event_open(&(0x7f0000000200)={0x2, 0x80, 0x8, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x8921, 0x9, 0x4000000, 0x3, 0x0, 0xfffffffd}, 0x0, 0x0, 0xffffffffffffffff, 0x0) creat(0x0, 0x0) clone3(&(0x7f0000000140)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) write(0xffffffffffffffff, 0x0, 0x0) 19:32:18 executing program 0: clone3(&(0x7f0000000140)={0x20000000, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) 19:32:18 executing program 2: perf_event_open(&(0x7f0000000200)={0x2, 0x80, 0x8, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) creat(0x0, 0x0) syz_io_uring_setup(0x44af, &(0x7f0000000100)={0x0, 0x2, 0x0, 0x0, 0x389}, &(0x7f0000000000/0x12000)=nil, &(0x7f000000e000/0x1000)=nil, &(0x7f0000000080), &(0x7f0000000040)) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) clone3(&(0x7f0000000140)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) (fail_nth: 20) 19:32:18 executing program 5: perf_event_open(&(0x7f0000000200)={0x2, 0x80, 0x8, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = syz_io_uring_setup(0x44af, &(0x7f0000000100)={0x0, 0x2, 0x0, 0x0, 0x389}, &(0x7f0000000000/0x12000)=nil, &(0x7f000000e000/0x1000)=nil, &(0x7f0000000080), &(0x7f0000000040)) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x3108}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_io_uring_setup(0x58ea, &(0x7f0000000180)={0x0, 0x7b12, 0x1, 0x1, 0x2f0, 0x0, r0}, &(0x7f0000003000/0x1000)=nil, &(0x7f0000ffd000/0x2000)=nil, &(0x7f0000000000), &(0x7f00000000c0)) write(0xffffffffffffffff, &(0x7f0000000100)='?', 0x1) 19:32:18 executing program 6: syz_open_dev$sg(0x0, 0x0, 0x0) syz_io_uring_setup(0x4ee5, &(0x7f0000000080)={0x0, 0x0, 0x10}, &(0x7f0000ffd000/0x3000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000040), &(0x7f0000000100)) 19:32:18 executing program 4: clone3(&(0x7f0000000140)={0x0, 0x0, 0x0, 0x0, {0x80000}, 0x0, 0x0, 0x0, 0x0}, 0x58) 19:32:18 executing program 1: perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0) clone3(&(0x7f0000000140)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) ftruncate(0xffffffffffffffff, 0x9) perf_event_open(&(0x7f0000000040)={0x0, 0x80, 0xf0, 0x9c, 0x96, 0x4, 0x0, 0x1, 0x20, 0xa, 0x1, 0x1, 0x1, 0x1, 0x0, 0x0, 0x1, 0x0, 0x0, 0x1, 0x1, 0x0, 0x1, 0x1, 0x1, 0x3, 0x1, 0x1, 0x1, 0x1, 0x1, 0x1, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x1, 0x1, 0x0, 0x1, 0x1, 0x1, 0x1, 0x0, 0x9, 0x1, @perf_config_ext={0x200, 0x1}, 0x4220, 0x8, 0x329, 0x4, 0x7, 0x4, 0x9, 0x0, 0x164c, 0x0, 0x10000}, 0xffffffffffffffff, 0x1, 0xffffffffffffffff, 0x8) openat$procfs(0xffffffffffffff9c, &(0x7f0000000000)='/proc/asound/seq/clients\x00', 0x0, 0x0) [ 1426.322558] FAULT_INJECTION: forcing a failure. [ 1426.322558] name failslab, interval 1, probability 0, space 0, times 0 [ 1426.325314] CPU: 1 PID: 35272 Comm: syz-executor.2 Not tainted 5.10.185 #1 [ 1426.326694] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1426.328388] Call Trace: [ 1426.328921] dump_stack+0x107/0x167 [ 1426.329667] should_fail.cold+0x5/0xa [ 1426.330424] ? create_object.isra.0+0x3a/0xa20 [ 1426.331330] should_failslab+0x5/0x20 [ 1426.332136] kmem_cache_alloc+0x5b/0x310 [ 1426.332926] create_object.isra.0+0x3a/0xa20 [ 1426.333813] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 1426.334800] __kmalloc_node+0x1ae/0x420 [ 1426.335618] kvmalloc_node+0x119/0x170 [ 1426.336415] alloc_fdtable+0x13f/0x280 [ 1426.337198] dup_fd+0x74d/0xcf0 [ 1426.337887] ? security_task_alloc+0xe6/0x260 [ 1426.338778] copy_process+0x195b/0x6740 [ 1426.339605] ? lock_acquire+0x197/0x470 [ 1426.340427] ? find_held_lock+0x2c/0x110 [ 1426.341287] ? __cleanup_sighand+0xb0/0xb0 [ 1426.342149] ? _copy_from_user+0xfb/0x1b0 [ 1426.343025] kernel_clone+0xe7/0x980 [ 1426.343783] ? lock_acquire+0x197/0x470 [ 1426.344622] ? create_io_thread+0xf0/0xf0 [ 1426.345443] ? ksys_write+0x21a/0x260 [ 1426.346216] ? lock_downgrade+0x6d0/0x6d0 [ 1426.347026] __do_sys_clone3+0x1e5/0x320 [ 1426.347846] ? __do_sys_clone+0x110/0x110 [ 1426.348693] ? rcu_read_lock_any_held+0x75/0xa0 [ 1426.349626] ? vfs_write+0x354/0xa70 [ 1426.350378] ? fput_many+0x2f/0x1a0 [ 1426.351111] ? ksys_write+0x1a9/0x260 [ 1426.351900] ? __ia32_sys_read+0xb0/0xb0 [ 1426.352732] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1426.353787] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1426.354826] ? trace_hardirqs_on+0x5b/0x180 [ 1426.355698] do_syscall_64+0x33/0x40 [ 1426.356472] entry_SYSCALL_64_after_hwframe+0x61/0xc6 [ 1426.357504] RIP: 0033:0x7f44f9a2eb19 [ 1426.358255] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1426.361974] RSP: 002b:00007f44f6fa4188 EFLAGS: 00000246 ORIG_RAX: 00000000000001b3 [ 1426.363500] RAX: ffffffffffffffda RBX: 00007f44f9b41f60 RCX: 00007f44f9a2eb19 [ 1426.364954] RDX: 0000000000000000 RSI: 0000000000000058 RDI: 0000000020000140 [ 1426.366385] RBP: 00007f44f6fa41d0 R08: 0000000000000000 R09: 0000000000000000 [ 1426.367815] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 1426.369272] R13: 00007ffe83cb2bbf R14: 00007f44f6fa4300 R15: 0000000000022000 19:32:18 executing program 6: syz_open_dev$sg(0x0, 0x0, 0x0) syz_io_uring_setup(0x4ee5, &(0x7f0000000080)={0x0, 0x0, 0x12}, &(0x7f0000ffd000/0x3000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000040), &(0x7f0000000100)) 19:32:18 executing program 4: clone3(&(0x7f0000000140)={0x0, 0x0, 0x0, 0x0, {0x101000}, 0x0, 0x0, 0x0, 0x0}, 0x58) 19:32:18 executing program 3: creat(0x0, 0x0) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) clone3(&(0x7f0000000140)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x800000000000000, 0x0, 0x0}, 0x58) 19:32:18 executing program 6: syz_open_dev$sg(0x0, 0x0, 0x0) syz_io_uring_setup(0x4ee5, &(0x7f0000000080)={0x0, 0x0, 0x18}, &(0x7f0000ffd000/0x3000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000040), &(0x7f0000000100)) 19:32:36 executing program 2: perf_event_open(&(0x7f0000000200)={0x2, 0x80, 0x8, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) creat(0x0, 0x0) syz_io_uring_setup(0x44af, &(0x7f0000000100)={0x0, 0x2, 0x0, 0x0, 0x389}, &(0x7f0000000000/0x12000)=nil, &(0x7f000000e000/0x1000)=nil, &(0x7f0000000080), &(0x7f0000000040)) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) clone3(&(0x7f0000000140)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) (fail_nth: 21) 19:32:36 executing program 6: syz_open_dev$sg(0x0, 0x0, 0x0) syz_io_uring_setup(0x4ee5, &(0x7f0000000080)={0x0, 0x0, 0x1e}, &(0x7f0000ffd000/0x3000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000040), &(0x7f0000000100)) 19:32:36 executing program 0: clone3(&(0x7f0000000140)={0x3f000000, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) 19:32:36 executing program 5: perf_event_open(&(0x7f0000000200)={0x2, 0x80, 0x8, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_io_uring_setup(0x1723, &(0x7f0000000100)={0x0, 0x2, 0x0, 0x0, 0x389}, &(0x7f0000000000/0x12000)=nil, &(0x7f000000e000/0x1000)=nil, &(0x7f0000000000), &(0x7f0000000040)) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) clone3(&(0x7f0000000140)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) write(0xffffffffffffffff, &(0x7f0000000100)='?', 0x1) 19:32:36 executing program 7: perf_event_open(&(0x7f0000000000)={0x2, 0x80, 0x8, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xb0f, 0x0, @perf_config_ext={0x20, 0xa7}, 0x200, 0x0, 0x0, 0x3, 0x10000}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = creat(0x0, 0x0) clone3(&(0x7f0000000140)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) waitid$P_PIDFD(0x3, r0, 0x0, 0x2, &(0x7f0000000080)) write(0xffffffffffffffff, 0x0, 0x0) 19:32:36 executing program 4: clone3(&(0x7f0000000140)={0x0, 0x0, 0x0, 0x0, {0xf0ff1f}, 0x0, 0x0, 0x0, 0x0}, 0x58) 19:32:36 executing program 3: creat(0x0, 0x0) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) clone3(&(0x7f0000000140)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x1100000000000000, 0x0, 0x0}, 0x58) 19:32:36 executing program 1: perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x15, 0x0, 0x0, 0x0, 0x5e, 0x40004, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f00000001c0), 0xd}, 0x0, 0x10000, 0x6, 0x0, 0x0, 0x3}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = openat$bsg(0xffffffffffffff9c, &(0x7f0000000000), 0x450000, 0x0) getdents(r0, &(0x7f0000000040)=""/251, 0xfb) clone3(&(0x7f0000000140)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) 19:32:36 executing program 6: syz_open_dev$sg(0x0, 0x0, 0x0) syz_io_uring_setup(0x4ee5, &(0x7f0000000080)={0x0, 0x0, 0x24}, &(0x7f0000ffd000/0x3000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000040), &(0x7f0000000100)) 19:32:36 executing program 0: clone3(&(0x7f0000000140)={0x40000000, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) [ 1444.365524] FAULT_INJECTION: forcing a failure. [ 1444.365524] name failslab, interval 1, probability 0, space 0, times 0 [ 1444.368429] CPU: 0 PID: 35750 Comm: syz-executor.2 Not tainted 5.10.185 #1 [ 1444.369851] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1444.371542] Call Trace: [ 1444.372098] dump_stack+0x107/0x167 [ 1444.372858] should_fail.cold+0x5/0xa [ 1444.373638] ? copy_process+0x1ac6/0x6740 [ 1444.374487] ? copy_process+0x1ac6/0x6740 [ 1444.375335] should_failslab+0x5/0x20 [ 1444.376121] kmem_cache_alloc+0x5b/0x310 [ 1444.376949] ? _raw_spin_unlock+0x1a/0x30 [ 1444.377858] copy_process+0x1ac6/0x6740 [ 1444.378660] ? lock_acquire+0x197/0x470 [ 1444.379465] ? find_held_lock+0x2c/0x110 [ 1444.380318] ? __cleanup_sighand+0xb0/0xb0 [ 1444.381218] ? _copy_from_user+0xfb/0x1b0 [ 1444.382061] kernel_clone+0xe7/0x980 [ 1444.382812] ? lock_acquire+0x197/0x470 [ 1444.383623] ? create_io_thread+0xf0/0xf0 [ 1444.384501] ? ksys_write+0x21a/0x260 [ 1444.385282] ? lock_downgrade+0x6d0/0x6d0 [ 1444.386147] __do_sys_clone3+0x1e5/0x320 [ 1444.386983] ? __do_sys_clone+0x110/0x110 [ 1444.387859] ? rcu_read_lock_any_held+0x75/0xa0 [ 1444.388817] ? vfs_write+0x354/0xa70 [ 1444.389583] ? fput_many+0x2f/0x1a0 [ 1444.390318] ? ksys_write+0x1a9/0x260 [ 1444.391091] ? __ia32_sys_read+0xb0/0xb0 [ 1444.391918] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1444.393005] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1444.394067] ? trace_hardirqs_on+0x5b/0x180 [ 1444.394949] do_syscall_64+0x33/0x40 [ 1444.395716] entry_SYSCALL_64_after_hwframe+0x61/0xc6 [ 1444.396767] RIP: 0033:0x7f44f9a2eb19 [ 1444.397539] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1444.401279] RSP: 002b:00007f44f6fa4188 EFLAGS: 00000246 ORIG_RAX: 00000000000001b3 [ 1444.402818] RAX: ffffffffffffffda RBX: 00007f44f9b41f60 RCX: 00007f44f9a2eb19 [ 1444.404264] RDX: 0000000000000000 RSI: 0000000000000058 RDI: 0000000020000140 [ 1444.405701] RBP: 00007f44f6fa41d0 R08: 0000000000000000 R09: 0000000000000000 [ 1444.407157] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 1444.408635] R13: 00007ffe83cb2bbf R14: 00007f44f6fa4300 R15: 0000000000022000 19:32:52 executing program 4: clone3(&(0x7f0000000140)={0x0, 0x0, 0x0, 0x0, {0x1000000}, 0x0, 0x0, 0x0, 0x0}, 0x58) 19:32:52 executing program 0: clone3(&(0x7f0000000140)={0x100000800, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) 19:32:52 executing program 7: r0 = perf_event_open(&(0x7f0000000200)={0x2, 0x80, 0x8, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r1 = getpgrp(0x0) pidfd_open(r1, 0x0) r2 = syz_open_dev$sg(&(0x7f0000000400), 0x0, 0x0) r3 = syz_open_dev$evdev(&(0x7f0000000040), 0x0, 0x8802) r4 = fcntl$dupfd(r3, 0x0, r2) writev(r4, &(0x7f0000000140)=[{&(0x7f0000000300)="0040abe02400030021206cda3b5e5672b89aeddb2a535fbd", 0x7e0}], 0x1) perf_event_open(&(0x7f00000004c0)={0x4, 0x80, 0x81, 0x3, 0x3f, 0x1f, 0x0, 0x8, 0x8, 0x1, 0x0, 0x1, 0x1, 0x1, 0x1, 0x1, 0x0, 0x1, 0x0, 0x0, 0x1, 0x1, 0x1, 0x0, 0x1, 0x0, 0x0, 0x1, 0x0, 0x1, 0x1, 0x0, 0x0, 0x1, 0x1, 0x1, 0x0, 0x1, 0x0, 0x0, 0x1, 0x1, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x6, 0x4, @perf_config_ext={0xfffffffffffffff8, 0x6}, 0x1542, 0x5, 0xc024, 0x2, 0x9, 0x1, 0x1, 0x0, 0xfffffe00, 0x0, 0x182}, r1, 0x5, r4, 0x8) r5 = creat(0x0, 0x0) clone3(&(0x7f0000000140)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) r6 = fork() r7 = syz_open_dev$sg(&(0x7f0000000400), 0x0, 0x0) r8 = syz_open_dev$evdev(&(0x7f0000000040), 0x0, 0x8802) r9 = fcntl$dupfd(r8, 0x0, r7) writev(r9, &(0x7f0000000140)=[{&(0x7f0000000300)="0040abe02400030021206cda3b5e5672b89aeddb2a535fbd", 0x7e0}], 0x1) ioctl$TIOCGPGRP(r5, 0x540f, &(0x7f00000000c0)=0x0) clone3(&(0x7f0000000440)={0xb0808000, &(0x7f0000000000), &(0x7f0000000040), &(0x7f0000000080), {0x25}, &(0x7f0000000280)=""/195, 0xc3, &(0x7f0000000380)=""/136, &(0x7f0000000100)=[r6, r10], 0x2, {r5}}, 0x58) r11 = socket$inet6_udp(0xa, 0x2, 0x0) r12 = openat$vga_arbiter(0xffffffffffffff9c, &(0x7f00000025c0), 0x12000, 0x0) sendmsg$unix(r4, &(0x7f00000026c0)={&(0x7f0000000540)=@abs={0x0, 0x0, 0x4e24}, 0x6e, &(0x7f00000001c0)=[{&(0x7f00000005c0)="e8e2da9001963e083cafe98d567f7fd4b87d2cb36ad229878ae62c015a3205e0e892c1642a5d71e804d3531d741050f10ae02287a5455c6c20e49258669489fb46c4bdc5953e0414d1a34e31602e3ffd037cb91ca26178cdb5defdcc7ce37fae3b9046e7f97c55357e20969d8bb052bf14b5b95d2e4f7069dd61ed0e65c894a840f4b0ea9b87334a4f2054abf3246e87b288b70c66e752cb035f0ab524d116cc55d45acb28edd828ec3a213ac30c44c76f47a733704e05ca85451a56915f3dbc3daeb5600c70c802c917281d35fba1b5160a83dbcfa478d849b9bb5cc74f2957631d649711e6da8196da62b1aedb2bcf3fff1c10a3e3561e6a99fa0b8c8c788287ad2b780a0f404b7e286032d702a1545c4291a5a0f8a8ea8c7910a08ec787a0fdc1e15379e8bc2afe65fffa3813838b4f8a45b6f85f0068e30d46936a9fd23030946b79d4b0cc4fcbd3f092b27904ed3fbc8e6a02384955e364660b920fe637f3b73c92a09f31fdb2174e9b008b5c9ec2a30ee91ef0b5ec81eb14ccc8cedccf9709bee85b2fe0fb744436dd976ffdc47bef07d04d87917202ddaf3b283487219daf28f3dc4116eb12d40dd38cefb4e6e5b3d40e9142ebb11f9d35a4e9f874d36c9b54bfc8aa3b4674b3035bc5bb89d7f55980562f8c9746e54fc0b4653f164e5bf21fc026ffba1fcf6d06bd8b3c32c3ad46aa6e6d9ea52bb3bf83653cb5108ce2469f00652194b64bc91f0427957095ecea78572b64a5c0023518404366e7d2e85e6de33179c500eeaa2e8843e1e8b9cf3106466600235cb9431b32a691c3731bdced8493fdef574e53e46c0c28dbbfbd4cf59e1190a9e525dfcd10baba12eccf194c8f0140408504ccf1bc8b11e49eb4206aa764ca27bbe3df19a8cd066b4431840839468fd9bac0d40889dd19c0e6b0b991642db89c00e0079c9c71216a438938b49c0e519b6215500e106967328b9d56cccb54540eccca10a18ab60c9ef0762c9bcd8be77869d1b63bc1543cb8888825f9830e381418a861c168245a63c9cca5431cdd63d6e66739fab3d8d3c7c9d612fe86a878cbbe7fda222b8fa10887970811d35c45c69165d5fa4772807d7fd38979104e6beb19fc651fb1636552ad43a14b84c7f4666fd72b524e3ce41cfddc6c393d87a9520ebaaa07f6d86c384cd634c8182d4082b9361cf4ca0ed261027238ec9168e91c59f0485e70f884ab636de8c500ad51dc270d8611a4135c0e6e2f60beec87a92bcdfe156d7f8412b2e1609673e38f20f52521e3d951bb5191bace773b009847f8bcc807687328af49f07b1b336614f90868d3d19a4f15760ea9ff17a3b7d558a67ec67c5ba120509f2642dae96c6a8552c1e418aca21512aa60938515b9bd41d4fa54e6820390310c4f92470d55b3ee34895dde3f59d8211edeb9d37590a36ed6d8c4167422e860f56478ff05dac7bf64dd938cadaf1b4387ee3b6b16a31647f7e62f9b79e33fe654e91b284941ba89b25fccffc1e56ced3c4706c4f77b105f3a4cbe98dfb78d523277f0fc2c603c41c9217bc06892320a30e69381a335b6d26c3578ba82317f1e5e4449123852b2fc9f6723104d86056919974de53ff1645311de5d26c6550bfa2ef7cd9c43ef664da919782c9eb0616ccb821366ddd9e4b27daf683d1580e37fc4ad96bcfbcefe879f460fac74749c046f063d70ba44f6bede2d48a1e255092762dec24ca6a4f815ddab4bb839e6b304ef5446ac814d37914136a1fec079a98156dce49bbe5c4996fb94ce5c6f5f1c5017bc0924ab3a0d50ef1490f97ab17a4265a8176d7084e23ed1ec28d327de8a1aeb92bb44ca5a2fd68c2fee341663bbb933fe1ad639a28b8eb0c99c6a5cce20f86edc0f14ac577acea25ac08e68e63fcfb708ed4ae0d5dee746a186b94cb78b551b098aee82d5d9070048fc9eecf7333a92c8eea554ff7b7d64d10a7201f4b2fc9e32cec32287be9d169ccd43c1b0eb58165c38986a07e5cbc2e909b074023927f80b6307d9cb99b85c63c47f22761d9ab8a2b6db7f0b1a676cb4cc5d072352448236e5834d64b71ae1908f6e1c6df84767dcee03706796d2e6ecb35946f5b21896923e81392e4d23e3dcc0b837bdf865e64febba90106e2cb763197a4f7cca3a3b25531f9c56a34152c39c37d0970f654192d83c8ac03415b8c2e52b488f2789ec65bfba2545dc88bd97688474472f2a402e6da4b135e0829870479ad72c76651ac683308ff6e35f8805af1e6eedff2c4701241c695f46af57003800e840085eae70dc63db8343b4c00ab8fbdb341780b9940990c94a943de593d4a94d083abb28cd3405486a477363936d845641db06e6b95a1705dc1171fde39c8e282e9e289f1d202f137a6620188182e86702556c9fe9079068160d62dad8242c1155804d804b245a1135dd879de46e4e8f8742b089cb491ed60061578104a0dcf422d611deb4c22ef4d5baa8b043137aaf51f0e010642e82709f7bf63c5b095f689929c4e8f9b6c99475c3ebdc1fa02ffa33fb8fe8d2e14fee9bde4288617010ab6c9b7f6b7e039281807e13430063c88052b78a67afb1665e1d5bba34084fa16a274c1e7f87dbeef1e8c622b8396f081480adcd42ff62428cd98ddef457621e7e8a3d16e85125cf5777af35c3e8f9b3b163836d06c6de4de7bdc115a0e9dddfda664f031375d8d3eaf920206cd4c7eb0c08c16db942a46da7d3f9f83c00feca52763949e3f5cd076f7fabb3cbbe72047568fd55308d670104f162adc19e3acea0f357717629d88a65411e0daad6761124458f12156ff078598db34159a85770434184e0e2578e6ba6959e77f44e48628ddf7aed6e164d2c36d9a17d92baf3887de879e9eb746c084d0957d75a01db2cd58533e2679ed535d4afdd2f9fa87da8524c787dc5ce562fb3a6b5bfd217d08c7da4b3025c5a8174f9175264fff75aaabd326b4e1ca530ea94ac403e96f5c0875e638d326e6a416cff5f157d85d2b3be84dfbbe9f2951eff98301adfa2908e32b58df07fa9c08eaf908c8c68f7a9134243d8ec6fd2c6810393c3467eac086d52270990903180198908ca7bb991b46e9f18836edc343d7334648b3382fdeb1f6db751a2814b07123767b52f02b304be5a457dc6acc50df0438448a622b77a9a1603b87311057fbaa2d4fa7e04a07f7fc3195e00b8e04a7439e3a10017d5c62caeb21e486a993d6f9348b7069b5b90dd70912b071a0a8f4561a79cfab9fe14a25b8ad35518d2f304d41e5b6c32b07f2ded8155d3b32e8bf8e66bb1367a140ef70d2f95fd01490eec2c2f14fd37c473f4c4af54b591b71e897649b4c003a8137109fbad137bb24a28a18910a37d9a9f5429208827752c2434d5e1c24bf19d2501aef2806ea3bbd4e40d9a7773a24112a13a9e500c5cfeac530f2f0f9fcf685b719395fa62531f832ce020ef7e7a87fcaad779742810170c6e0b72cfec34f200bc821fc550b0db977fff0df16928d960099df8f5678bd371d76aae17ebf3ebadb76fbdc8eacd72a45ad800455d460c955a747c52bb8686dd53a49bf51aebd8686b8ccbdbccb9fb85b71c0ddd993c17d4907f24eb682c5f6744de13f36bd159cd9453d88f8138a772904a530949bc5839e3434ee244cb42aa7d6a153d681708269052321168e9231f0452741ef38f226b7e3a4eb375df59d87a92c1cd8cf1860cd682a42a4123a7044abf50ea3152bd9c9beff27596fff01f5376abe1e8fd7e75cc29ae546b8e1401590884bef1ea9a1bcd54fb6afd3471120398b34f3645b9119f1fde515368b780204c2782739fc6c2062fc600487ff94f6ec18c612d146f4783093a06a6967a58786d6a884d7207a6bf4062dbae4245fa96172f27d10cb86893be2be874104c612068f63b7fe39dfef0fa47aa38bd93f3a7ee9c47c40a4f79e7827e0de2ed079f675c6f17aeac9f4607830f39b701f66eba1ba7415f9727364148d0c76db434719fac9443f61fd61727d9d09f3b464698b51493f92c0136f24fe6fbc2f4494bfc4c52649441089688e9aab033c949339759e7f47535c9554f1a3059971d0f1dc86cc24ac769e782637d67aeac454cb2ed66f15c4aa42f6760f726c2478d68f2f4f371d11713987dac624d7f82089a190de8c5baba3905f89128fdeaf86b47425e3e33acb187fbb9aed64e7394e30a8741f66900e8851cb238cb01dcd97cfbca22f0f8d12fdec8b4c470a491627bd3baae2e5a30b679eb970955b1c0d07e6a162a07308ea2ca121e5aa3310f384573bd9f715077950ae73e0f9286f5aafe5741c0d3c8dd1ac14b06f95161f6a61dfafa75abd92c5c4ca1ac5cc927495fe99298766dc70c116939f831d4393e385340250bdc4dc37f36e1cc8d87e5a2ba6caeeba070b65af03f38979167cc39b7497a279fa1e8477f7f19710114b4857dedc4cfeab366c58db24d9de6ce3f1cc2c37d7662a780b6b599c3b416b755f62fe5edbe4237b9fba606fc694aa346090613d013705f08ae392e1bbe0efe955ee86b2bb91e605de3ad495c7177cc77b05fd8c420bdf1000139a30d0890307a79b5b78a0ed2004654323a42b84d28bd7773d86c1a1d989bd9ba2d5d3d80ed1ff8fdf18fd414b7b21921a01406655e501bbe04f07c1ac2ba80c5e88424bd79818362a1fcf3ddeb99d2eb34d1a9443e58863e29f7a6af8160290b2e31938a028c689d3c985373e3166179ce54486c9d2b02f7a22f8c2e8d9defdd1d21a28befff22b3499fa24574d2894263d3e0bd88ce8fda7800a2928f0cfd1efa8fb27f13e5da1ca4501a8efb10fff62b1f60788523ee3d7ee43289065ba82425da84df2f9f078a76f7ef150e3bc3add46fdbdcf087f432762b857457cab228a83cefb8319e08fd505fcc60c2c49df042c5a3a7b8afc827329ec2130654d219779fac8ba8250ece6ef58c8c803bc86a20257185f8de27be016a7874c35d90f861a1a3af73ea0504dccb610d8f69b2ed52aa09a0ce6da100970b9dbdd9716d532799a52e6248498706474ebb4d6f6b08c1a232fa0ced15666c283de947ec815807e60974461b310339f31a97a7538f08d3e2f5042e94eee370f74781ce13ccdb64655d9d1e5efc8162b85a935f1c40b9f03b7c45bcff376726063e1396eb67932aa2e272437e798d31b9c0765b6c26bf6a018803e0098bf8169fc6c668276c4c98d87b2aa0ce83d7cf165aa051136c115e1d0b58196dd75aca9b03cb63d2bbf98fa1fd62c1924261e061ccf62ab1bbf2613fcd56856a56517877fe6e480a431d09b3c6b85c3e2cb5ec0189767acbe2846614867acbc4e7d14be558340d36f0622dd43b28dbef0e0cabc0adaf2ebf0396f4caec46f67df118d5ef3bc1163ea2e10911b907352c550d2b5129fd1abd1fb7af981171a513a7214b260440bc4ea80f15c932637586a2cdf17bfa3e2f9c1ebc9bbf343232bd8e0a705410b232810ebd651163e3232691df73450cfe34e7356cef6acbbbed391d0072dfd21c4ee0e2293d15f9f6c74061d86319e429ad69d69c65d3e620cbcabca385d86842d6847755f0fe8b8a8f48a6c8906912a9dccaa13aa0e0451955a3c625075c45e73d40f1893300a8fb573b2020f96de1779dec141ecc6f5e8631516cba6183f35b0228d0b68113bfe13b5f86faa29305fa7e47016f3c692c4bdc4a7bab991e8a8fd122f0075eebf4b519d24e5dc83afb666fd0e4c5d208b12cafcf2184373134047ae1e7abd3e3831de5fe7a4278a14ffe85b42ee5a6adb971b7fe5488abee642f51edd696565c24b996b4e11617d8b384", 0x1000}, {&(0x7f00000015c0)="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", 0x1000}], 0x2, &(0x7f0000002600)=[@rights={{0x14, 0x1, 0x1, [r9]}}, @cred={{0x1c, 0x1, 0x2, {0x0, 0x0, 0xffffffffffffffff}}}, @rights={{0x1c, 0x1, 0x1, [r0, r11, r12]}}, @rights={{0x18, 0x1, 0x1, [0xffffffffffffffff, 0xffffffffffffffff]}}, @rights={{0x14, 0x1, 0x1, [r9]}}], 0x88, 0x2004c080}, 0x4040016) 19:32:52 executing program 6: syz_open_dev$sg(0x0, 0x0, 0x0) syz_io_uring_setup(0x4ee5, &(0x7f0000000080)={0x0, 0x0, 0x2a}, &(0x7f0000ffd000/0x3000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000040), &(0x7f0000000100)) 19:32:52 executing program 3: creat(0x0, 0x0) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) clone3(&(0x7f0000000140)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x2000000000000000, 0x0, 0x0}, 0x58) 19:32:52 executing program 2: perf_event_open(&(0x7f0000000200)={0x2, 0x80, 0x8, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) creat(0x0, 0x0) syz_io_uring_setup(0x44af, &(0x7f0000000100)={0x0, 0x2, 0x0, 0x0, 0x389}, &(0x7f0000000000/0x12000)=nil, &(0x7f000000e000/0x1000)=nil, &(0x7f0000000080), &(0x7f0000000040)) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) clone3(&(0x7f0000000140)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) (fail_nth: 22) 19:32:52 executing program 1: perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0) getsockopt$sock_cred(0xffffffffffffffff, 0x1, 0x11, &(0x7f00000000c0)={0x0}, &(0x7f0000000100)=0xc) r1 = syz_open_procfs(0xffffffffffffffff, &(0x7f00000001c0)='net/ip_tables_targets\x00') perf_event_open(&(0x7f0000000040)={0x4, 0x80, 0xc4, 0x1, 0x1f, 0x57, 0x0, 0x1f, 0x84008, 0x4, 0x1, 0x0, 0x0, 0x1, 0x0, 0x1, 0x1, 0x1, 0x1, 0x1, 0x0, 0x0, 0x1, 0x1, 0x0, 0x1, 0x0, 0x0, 0x1, 0x0, 0x0, 0x1, 0x1, 0x1, 0x0, 0x1, 0x1, 0x1, 0x0, 0x0, 0x1, 0x1, 0x0, 0x0, 0x1, 0x1, 0x0, 0x0, 0x5, 0x1, @perf_bp={&(0x7f0000000000), 0x1}, 0x40, 0x1000, 0x0, 0x3, 0x0, 0xfff, 0x3, 0x0, 0x9b73, 0x0, 0x1}, r0, 0x9, r1, 0x2) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x6, 0xffffffffffffffff, 0x0) 19:32:52 executing program 5: perf_event_open(&(0x7f0000000200)={0x2, 0x80, 0x8, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_io_uring_setup(0x44af, &(0x7f0000000100)={0x0, 0x2, 0x0, 0x0, 0x389}, &(0x7f0000000000/0x12000)=nil, &(0x7f000000e000/0x1000)=nil, &(0x7f0000000080), &(0x7f0000000040)) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r0 = clone3(&(0x7f0000000140)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) r1 = getpgrp(0x0) pidfd_open(r1, 0x0) ioctl$sock_SIOCGPGRP(0xffffffffffffffff, 0x8904, &(0x7f0000000340)=0x0) clone3(&(0x7f00000003c0)={0x100, &(0x7f0000000000), &(0x7f00000000c0), &(0x7f00000001c0), {0x4}, &(0x7f0000000280)=""/122, 0x7a, &(0x7f0000000300)=""/51, &(0x7f0000000380)=[r0, r1, r2, r0], 0x4}, 0x58) write(0xffffffffffffffff, &(0x7f0000000100)='?', 0x1) [ 1460.010641] FAULT_INJECTION: forcing a failure. [ 1460.010641] name failslab, interval 1, probability 0, space 0, times 0 [ 1460.013339] CPU: 1 PID: 36168 Comm: syz-executor.2 Not tainted 5.10.185 #1 [ 1460.014796] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1460.016524] Call Trace: [ 1460.017076] dump_stack+0x107/0x167 [ 1460.017835] should_fail.cold+0x5/0xa 19:32:52 executing program 6: syz_open_dev$sg(0x0, 0x0, 0x0) syz_io_uring_setup(0x4ee5, &(0x7f0000000080)={0x0, 0x0, 0x30}, &(0x7f0000ffd000/0x3000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000040), &(0x7f0000000100)) [ 1460.018630] ? create_object.isra.0+0x3a/0xa20 [ 1460.019725] should_failslab+0x5/0x20 [ 1460.020526] kmem_cache_alloc+0x5b/0x310 [ 1460.021364] create_object.isra.0+0x3a/0xa20 [ 1460.022273] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 1460.023323] kmem_cache_alloc+0x159/0x310 [ 1460.024170] ? _raw_spin_unlock+0x1a/0x30 [ 1460.025043] copy_process+0x1ac6/0x6740 [ 1460.025857] ? lock_acquire+0x197/0x470 [ 1460.026669] ? find_held_lock+0x2c/0x110 [ 1460.027522] ? __cleanup_sighand+0xb0/0xb0 [ 1460.028416] ? _copy_from_user+0xfb/0x1b0 [ 1460.029267] kernel_clone+0xe7/0x980 [ 1460.030030] ? lock_acquire+0x197/0x470 [ 1460.030848] ? create_io_thread+0xf0/0xf0 [ 1460.031710] ? ksys_write+0x21a/0x260 [ 1460.032493] ? lock_downgrade+0x6d0/0x6d0 [ 1460.033374] __do_sys_clone3+0x1e5/0x320 [ 1460.034205] ? __do_sys_clone+0x110/0x110 [ 1460.035066] ? rcu_read_lock_any_held+0x75/0xa0 [ 1460.036019] ? vfs_write+0x354/0xa70 [ 1460.036798] ? fput_many+0x2f/0x1a0 [ 1460.037549] ? ksys_write+0x1a9/0x260 [ 1460.038337] ? __ia32_sys_read+0xb0/0xb0 [ 1460.039163] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1460.040242] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1460.041298] ? trace_hardirqs_on+0x5b/0x180 [ 1460.042188] do_syscall_64+0x33/0x40 [ 1460.042944] entry_SYSCALL_64_after_hwframe+0x61/0xc6 [ 1460.043984] RIP: 0033:0x7f44f9a2eb19 [ 1460.044775] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1460.048548] RSP: 002b:00007f44f6fa4188 EFLAGS: 00000246 ORIG_RAX: 00000000000001b3 [ 1460.050111] RAX: ffffffffffffffda RBX: 00007f44f9b41f60 RCX: 00007f44f9a2eb19 [ 1460.051572] RDX: 0000000000000000 RSI: 0000000000000058 RDI: 0000000020000140 [ 1460.053036] RBP: 00007f44f6fa41d0 R08: 0000000000000000 R09: 0000000000000000 [ 1460.054504] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 1460.055967] R13: 00007ffe83cb2bbf R14: 00007f44f6fa4300 R15: 0000000000022000 19:32:52 executing program 4: clone3(&(0x7f0000000140)={0x0, 0x0, 0x0, 0x0, {0x8000000}, 0x0, 0x0, 0x0, 0x0}, 0x58) 19:32:52 executing program 0: clone3(&(0x7f0000000140)={0x1b0c81f000, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) 19:32:52 executing program 1: r0 = perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0) preadv(r0, &(0x7f00000003c0)=[{&(0x7f00000000c0)=""/118, 0x76}, {&(0x7f00000001c0)=""/8, 0x8}, {&(0x7f0000000200)=""/14, 0xe}, {&(0x7f0000000240)=""/157, 0x9d}, {&(0x7f0000000300)=""/160, 0xa0}], 0x5, 0x0, 0x30c4) ioctl$AUTOFS_DEV_IOCTL_ISMOUNTPOINT(0xffffffffffffffff, 0xc018937e, &(0x7f0000000000)={{0x1, 0x1, 0x18, r0, @out_args}, './file0\x00'}) syz_io_uring_submit(0x0, 0x0, &(0x7f0000000080)=@IORING_OP_EPOLL_CTL=@mod={0x1d, 0x1, 0x0, r1, &(0x7f0000000040)={0x40000009}, r0}, 0x8d3) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x2}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) ioctl$AUTOFS_DEV_IOCTL_REQUESTER(0xffffffffffffffff, 0xc018937b, &(0x7f0000000440)={{0x1, 0x1, 0x18, r1, {0x0, 0xffffffffffffffff}}, './file0\x00'}) bind$inet6(r2, &(0x7f0000000480)={0xa, 0x4e20, 0xa029, @empty, 0x4}, 0x1c) clone3(&(0x7f0000000140)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) 19:32:52 executing program 6: syz_open_dev$sg(0x0, 0x0, 0x0) syz_io_uring_setup(0x4ee5, &(0x7f0000000080)={0x0, 0x0, 0x36}, &(0x7f0000ffd000/0x3000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000040), &(0x7f0000000100)) 19:32:52 executing program 0: clone3(&(0x7f0000000140)={0x10000000000, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) 19:32:52 executing program 3: creat(0x0, 0x0) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) clone3(&(0x7f0000000140)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x3f00000000000000, 0x0, 0x0}, 0x58) 19:32:52 executing program 4: clone3(&(0x7f0000000140)={0x0, 0x0, 0x0, 0x0, {0x10000200}, 0x0, 0x0, 0x0, 0x0}, 0x58) 19:32:52 executing program 7: r0 = getpgrp(0x0) pidfd_open(r0, 0x0) perf_event_open(&(0x7f0000000200)={0x2, 0x80, 0x8, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x474e, 0x0, @perf_bp={0x0}, 0x47c00, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffffffffffe}, r0, 0x0, 0xffffffffffffffff, 0x0) creat(0x0, 0x0) clone3(&(0x7f0000000140)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) write(0xffffffffffffffff, 0x0, 0x0) 19:32:52 executing program 0: clone3(&(0x7f0000000140)={0x29e7fc88f000, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) 19:32:52 executing program 6: syz_open_dev$sg(0x0, 0x0, 0x0) syz_io_uring_setup(0x4ee5, &(0x7f0000000080)={0x0, 0x0, 0x3c}, &(0x7f0000ffd000/0x3000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000040), &(0x7f0000000100)) 19:32:52 executing program 4: clone3(&(0x7f0000000140)={0x0, 0x0, 0x0, 0x0, {0x11000000}, 0x0, 0x0, 0x0, 0x0}, 0x58) 19:32:52 executing program 0: clone3(&(0x7f0000000140)={0x553a27839000, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) 19:33:07 executing program 0: clone3(&(0x7f0000000140)={0x2001000000000, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) 19:33:07 executing program 1: prctl$PR_PAC_RESET_KEYS(0x36, 0x10) perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) clone3(&(0x7f0000000140)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) 19:33:07 executing program 6: syz_open_dev$sg(0x0, 0x0, 0x0) syz_io_uring_setup(0x4ee5, &(0x7f0000000080)={0x0, 0x0, 0x42}, &(0x7f0000ffd000/0x3000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000040), &(0x7f0000000100)) 19:33:07 executing program 3: creat(0x0, 0x0) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) clone3(&(0x7f0000000140)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x4000000000000000, 0x0, 0x0}, 0x58) 19:33:07 executing program 4: clone3(&(0x7f0000000140)={0x0, 0x0, 0x0, 0x0, {0x1ffff000}, 0x0, 0x0, 0x0, 0x0}, 0x58) 19:33:07 executing program 5: r0 = perf_event_open(&(0x7f0000000200)={0x2, 0x80, 0x8, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_io_uring_setup(0x44af, &(0x7f0000000100)={0x0, 0x2, 0x0, 0x0, 0x389}, &(0x7f0000000000/0x12000)=nil, &(0x7f000000e000/0x1000)=nil, &(0x7f0000000080), &(0x7f0000000040)) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r1 = getpid() r2 = socket$netlink(0x10, 0x3, 0xb) sendmsg$nl_generic(r2, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f00000001c0)=ANY=[@ANYBLOB="2c0000001600010000000000000000000a0000001800008014983b7c4a9fa2cb1f46d38548000a00fc0100"/56], 0x2c}}, 0x0) lseek(r2, 0xffffffff, 0x2) perf_event_open(&(0x7f0000000280)={0x1, 0x80, 0x5, 0xee, 0x8, 0x5, 0x0, 0x401, 0x41000, 0x1, 0x0, 0x0, 0x1, 0x0, 0x0, 0x1, 0x1, 0x1, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x1, 0x2, 0x1, 0x0, 0x0, 0x0, 0x1, 0x0, 0x1, 0x0, 0x0, 0x1, 0x0, 0x0, 0x1, 0x1, 0x0, 0x1, 0x1, 0x0, 0x1, 0x0, 0x0, 0x0, 0x4, 0x0, @perf_bp={&(0x7f0000000000), 0x1}, 0x41400, 0x7, 0xffff, 0x3, 0x0, 0x8001, 0x7, 0x0, 0x9, 0x0, 0x20}, r1, 0x6, r0, 0x0) clone3(&(0x7f0000000140)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) write(0xffffffffffffffff, &(0x7f0000000100)='?', 0x1) 19:33:07 executing program 2: perf_event_open(&(0x7f0000000200)={0x2, 0x80, 0x8, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) creat(0x0, 0x0) syz_io_uring_setup(0x44af, &(0x7f0000000100)={0x0, 0x2, 0x0, 0x0, 0x389}, &(0x7f0000000000/0x12000)=nil, &(0x7f000000e000/0x1000)=nil, &(0x7f0000000080), &(0x7f0000000040)) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) clone3(&(0x7f0000000140)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) (fail_nth: 23) 19:33:07 executing program 7: perf_event_open(&(0x7f0000000200)={0x5, 0x80, 0x8, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0xa, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = creat(&(0x7f0000000080)='./file0\x00', 0x2) r1 = creat(0x0, 0x0) clone3(&(0x7f0000000140)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) perf_event_open(&(0x7f00000002c0)={0x0, 0x80, 0x9, 0x1, 0x1, 0x1, 0x0, 0x1f, 0x400, 0x5, 0x0, 0x0, 0x0, 0x1, 0x0, 0x1, 0x0, 0x1, 0x1, 0x0, 0x1, 0x1, 0x1, 0x1, 0x0, 0x1, 0x1, 0x1, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x1, 0x0, 0x1, 0x1, 0x1, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4, 0x4, @perf_bp={&(0x7f0000000280), 0x8}, 0x100, 0x5, 0x101, 0x1, 0xffff, 0x7e, 0x7, 0x0, 0x101}, 0x0, 0x5, r0, 0x2) write(0xffffffffffffffff, 0x0, 0x0) r2 = socket$netlink(0x10, 0x3, 0x0) bind$netlink(r1, &(0x7f0000000040)={0x10, 0x0, 0x25dfdbfb, 0x40000}, 0xc) sendmsg$nl_generic(r2, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000000)={0x2c, 0x16, 0x1, 0x0, 0x0, {0xa}, [@nested={0x18, 0x0, 0x0, 0x1, [@typed={0x14, 0xa, 0x0, 0x0, @ipv6=@private1}]}]}, 0x2c}}, 0x0) bind$netlink(0xffffffffffffffff, &(0x7f00000001c0)={0x10, 0x0, 0x25dfdbfd, 0x40}, 0xc) r3 = socket$netlink(0x10, 0x3, 0x0) sendmsg$nl_generic(r3, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000000)=ANY=[@ANYBLOB="2c0000001600810000000000000000000a0000001800008014000a00fc0100000000000000000048af3d3503"], 0x2c}}, 0x0) dup2(r2, r3) 19:33:07 executing program 4: clone3(&(0x7f0000000140)={0x0, 0x0, 0x0, 0x0, {0x20000000}, 0x0, 0x0, 0x0, 0x0}, 0x58) 19:33:07 executing program 0: clone3(&(0x7f0000000140)={0x2020000000000, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) 19:33:07 executing program 6: syz_open_dev$sg(0x0, 0x0, 0x0) syz_io_uring_setup(0x4ee5, &(0x7f0000000080)={0x0, 0x0, 0x60}, &(0x7f0000ffd000/0x3000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000040), &(0x7f0000000100)) [ 1475.010566] netlink: 'syz-executor.7': attribute type 10 has an invalid length. [ 1475.014777] FAULT_INJECTION: forcing a failure. [ 1475.014777] name failslab, interval 1, probability 0, space 0, times 0 [ 1475.017358] netlink: 'syz-executor.7': attribute type 10 has an invalid length. [ 1475.019370] CPU: 1 PID: 36927 Comm: syz-executor.2 Not tainted 5.10.185 #1 [ 1475.020813] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1475.022540] Call Trace: [ 1475.023095] dump_stack+0x107/0x167 [ 1475.023858] should_fail.cold+0x5/0xa [ 1475.024677] ? copy_fs_struct+0x45/0x340 [ 1475.025522] should_failslab+0x5/0x20 [ 1475.026318] kmem_cache_alloc+0x5b/0x310 [ 1475.027165] copy_fs_struct+0x45/0x340 [ 1475.027987] copy_process+0x461c/0x6740 [ 1475.028817] ? lock_acquire+0x197/0x470 [ 1475.029639] ? find_held_lock+0x2c/0x110 [ 1475.030494] ? __cleanup_sighand+0xb0/0xb0 [ 1475.031380] ? _copy_from_user+0xfb/0x1b0 [ 1475.032245] kernel_clone+0xe7/0x980 [ 1475.033026] ? lock_acquire+0x197/0x470 [ 1475.033846] ? create_io_thread+0xf0/0xf0 [ 1475.034717] ? ksys_write+0x21a/0x260 [ 1475.035497] ? lock_downgrade+0x6d0/0x6d0 [ 1475.036358] __do_sys_clone3+0x1e5/0x320 [ 1475.037205] ? __do_sys_clone+0x110/0x110 [ 1475.038076] ? rcu_read_lock_any_held+0x75/0xa0 [ 1475.039029] ? vfs_write+0x354/0xa70 [ 1475.039795] ? fput_many+0x2f/0x1a0 [ 1475.040547] ? ksys_write+0x1a9/0x260 [ 1475.041327] ? __ia32_sys_read+0xb0/0xb0 [ 1475.042165] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1475.043245] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1475.044303] ? trace_hardirqs_on+0x5b/0x180 [ 1475.045208] do_syscall_64+0x33/0x40 [ 1475.045977] entry_SYSCALL_64_after_hwframe+0x61/0xc6 [ 1475.047033] RIP: 0033:0x7f44f9a2eb19 [ 1475.047801] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1475.051575] RSP: 002b:00007f44f6fa4188 EFLAGS: 00000246 ORIG_RAX: 00000000000001b3 [ 1475.053148] RAX: ffffffffffffffda RBX: 00007f44f9b41f60 RCX: 00007f44f9a2eb19 [ 1475.054597] RDX: 0000000000000000 RSI: 0000000000000058 RDI: 0000000020000140 [ 1475.056044] RBP: 00007f44f6fa41d0 R08: 0000000000000000 R09: 0000000000000000 [ 1475.057537] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 1475.058991] R13: 00007ffe83cb2bbf R14: 00007f44f6fa4300 R15: 0000000000022000 19:33:07 executing program 4: clone3(&(0x7f0000000140)={0x0, 0x0, 0x0, 0x0, {0x3f000000}, 0x0, 0x0, 0x0, 0x0}, 0x58) 19:33:07 executing program 6: syz_open_dev$sg(0x0, 0x0, 0x0) syz_io_uring_setup(0x4ee5, &(0x7f0000000080)={0x0, 0x0, 0x121}, &(0x7f0000ffd000/0x3000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000040), &(0x7f0000000100)) 19:33:07 executing program 4: clone3(&(0x7f0000000140)={0x0, 0x0, 0x0, 0x0, {0x40000000}, 0x0, 0x0, 0x0, 0x0}, 0x58) 19:33:07 executing program 7: perf_event_open(&(0x7f0000000200)={0x2, 0x80, 0x8, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = getpgrp(0x0) pidfd_open(r0, 0x0) r1 = syz_open_dev$sg(&(0x7f0000000400), 0x0, 0x0) r2 = syz_open_dev$evdev(&(0x7f0000000040), 0x0, 0x8802) r3 = fcntl$dupfd(r2, 0x0, r1) r4 = socket$netlink(0x10, 0x3, 0x0) sendmsg$nl_generic(r4, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000000)={0x2c, 0x16, 0x1, 0x0, 0x0, {0xa}, [@nested={0x18, 0x0, 0x0, 0x1, [@typed={0x14, 0xa, 0x0, 0x0, @ipv6=@private1}]}]}, 0x2c}}, 0x0) writev(r4, &(0x7f0000000280)=[{&(0x7f0000000440)="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", 0x12a}], 0x1) perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0xc2, 0x9e, 0x0, 0x0, 0x0, 0x81, 0x50201, 0x4, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x0, 0x1, 0x1, 0x0, 0x1, 0x1, 0x1, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x0, 0x0, 0x1, 0x0, 0x1, 0x1, 0x1, 0x0, 0xfffffff8, 0x4, @perf_bp={&(0x7f0000000000), 0x4}, 0x1c, 0x8b, 0x3, 0x0, 0x9, 0xffffff57, 0x12b, 0x0, 0x7f, 0x0, 0x7}, r0, 0xffffffffffffffff, r3, 0x2) creat(0x0, 0x0) syz_io_uring_setup(0x44ae, &(0x7f0000000100), &(0x7f0000000000/0x12000)=nil, &(0x7f000000f000/0x1000)=nil, &(0x7f0000000080), &(0x7f0000000000)=0x0) syz_io_uring_submit(0x0, r5, &(0x7f0000000180)=@IORING_OP_POLL_ADD, 0x0) r6 = io_uring_register$IORING_REGISTER_PERSONALITY(r3, 0x9, 0x0, 0x0) syz_io_uring_submit(0x0, r5, &(0x7f00000001c0)=@IORING_OP_FSYNC={0x3, 0x5, 0x0, @fd_index=0x4, 0x0, 0x0, 0x0, 0x0, 0x1, {0x0, r6}}, 0x7) clone3(&(0x7f0000000140)={0x88800, 0x0, 0x0, 0x0, {0x27}, 0x0, 0x15, 0x0, 0x0}, 0x58) write(0xffffffffffffffff, 0x0, 0x0) [ 1475.146282] netlink: 'syz-executor.7': attribute type 10 has an invalid length. 19:33:07 executing program 0: clone3(&(0x7f0000000140)={0x8000000000000, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) 19:33:07 executing program 4: clone3(&(0x7f0000000140)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x8, 0x0, 0x0}, 0x58) 19:33:21 executing program 2: perf_event_open(&(0x7f0000000200)={0x2, 0x80, 0x8, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) creat(0x0, 0x0) syz_io_uring_setup(0x44af, &(0x7f0000000100)={0x0, 0x2, 0x0, 0x0, 0x389}, &(0x7f0000000000/0x12000)=nil, &(0x7f000000e000/0x1000)=nil, &(0x7f0000000080), &(0x7f0000000040)) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) clone3(&(0x7f0000000140)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) (fail_nth: 24) 19:33:21 executing program 5: perf_event_open(&(0x7f0000000200)={0x2, 0x80, 0x8, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_io_uring_setup(0x44af, &(0x7f0000000100)={0x0, 0x2, 0x0, 0x0, 0x389}, &(0x7f0000000000/0x12000)=nil, &(0x7f000000e000/0x1000)=nil, &(0x7f0000000080), &(0x7f0000000040)) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) clone3(&(0x7f0000000140)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) r0 = syz_open_dev$sg(&(0x7f0000000400), 0x0, 0x0) r1 = syz_open_dev$evdev(&(0x7f0000000040), 0x0, 0x8802) r2 = fcntl$dupfd(r1, 0x0, r0) writev(r2, &(0x7f0000000140)=[{&(0x7f0000000300)="0040abe02400030021206cda3b5e5672b89aeddb2a535fbd", 0x7e0}], 0x1) ioctl$RTC_ALM_SET(r2, 0x40247007, &(0x7f0000000000)={0x2f, 0x3b, 0x14, 0x2, 0x1, 0x401, 0x3, 0xfa, 0xffffffffffffffff}) write(0xffffffffffffffff, &(0x7f0000000100)='?', 0x1) 19:33:21 executing program 1: perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x4000}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = clone3(&(0x7f0000000140)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) r1 = getpgrp(r0) r2 = syz_open_dev$sg(&(0x7f0000000400), 0x0, 0x0) r3 = syz_open_dev$evdev(&(0x7f0000000040), 0x0, 0x8802) r4 = fcntl$dupfd(r3, 0x0, r2) writev(r4, &(0x7f0000000140)=[{&(0x7f0000000300)="0040abe02400030021206cda3b5e5672b89aeddb2a535fbd", 0x7e0}], 0x1) perf_event_open(&(0x7f0000000040)={0x1, 0x80, 0xf6, 0x1, 0xe5, 0x1, 0x0, 0x1f, 0x8804, 0x0, 0x1, 0x0, 0x1, 0x0, 0x0, 0x1, 0x1, 0x0, 0x0, 0x0, 0x1, 0x1, 0x1, 0x0, 0x1, 0x3, 0x1, 0x1, 0x0, 0x1, 0x1, 0x0, 0x1, 0x1, 0x1, 0x1, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x1, 0x0, 0x0, 0x8000, 0x0, @perf_bp={&(0x7f0000000000), 0x8}, 0x900, 0x9, 0x5, 0x9, 0x525, 0x8, 0x8, 0x0, 0x7}, r1, 0xb, r4, 0xa) 19:33:21 executing program 4: clone3(&(0x7f0000000140)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x11, 0x0, 0x0}, 0x58) 19:33:21 executing program 7: perf_event_open(&(0x7f0000000200)={0x2, 0x80, 0x5, 0x1, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x4, 0x1ff}, 0x0, 0x4e00000000000000, 0x0, 0x6, 0x0, 0xfffffffd}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = creat(0x0, 0x0) clone3(&(0x7f0000000140)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) r1 = accept4$inet6(r0, &(0x7f0000000080)={0xa, 0x0, 0x0, @private0}, &(0x7f00000000c0)=0x1c, 0x0) fallocate(r1, 0x4, 0x1, 0x100) sendmsg$inet6(r0, &(0x7f0000001500)={&(0x7f0000000100)={0xa, 0x4e22, 0x6, @private1, 0x5}, 0x1c, &(0x7f00000001c0)=[{&(0x7f0000000280)="321e438ac2978bd2dea050d9ead3de5febc18bbab85792c7362022e00d2c10c2e645c0ad0d83b92f01cda0b60e033a30e95c353294086765bf5b8ce940d0a18853af399050e8afcf573b5caecb199bf98777b165c3a1c0715087419b74b62eda2376ea259743e5d40e504059a079441d5a14f77acbbc4ae8785401a1718dbcf4d36171735258cccacde2fc46ac1f6d13454013e353ff34c690ca82b45de66a7bc668341da460dcbaf6fa182ed93e337c2299203edd9da58a920194a19ecdd3160ef5d7069d53ab1e61d6c8a19d21d7d24f76a630e64be67caefab846", 0xdc}, {&(0x7f0000000380)="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", 0x1000}], 0x2, &(0x7f0000001380)=ANY=[@ANYBLOB="200100000000000029000000360000002f200000000000000001000775000000020efd0800290200000000000000010000000000000900000000000500050000000000000008000000000000007f00000000000000ff0f000000000000c910ff02000000000000000000000000000101000000000004010a5800000000000000290000003700000073070000000000000718000000010400030000000000000000000600000000000000c910ff010000000000000000000000000001c91000000000000000000000ffffac1414bb0000"], 0x178}, 0x10000010) pidfd_send_signal(r0, 0x40, &(0x7f0000000000)={0x7, 0x8, 0xfffffc51}, 0x0) write(0xffffffffffffffff, 0x0, 0x0) 19:33:21 executing program 0: clone3(&(0x7f0000000140)={0x8000001000000, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) 19:33:21 executing program 6: syz_open_dev$sg(0x0, 0x0, 0x0) syz_io_uring_setup(0x4ee5, &(0x7f0000000080)={0x0, 0x0, 0x1d9}, &(0x7f0000ffd000/0x3000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000040), &(0x7f0000000100)) 19:33:21 executing program 3: creat(0x0, 0x0) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) clone3(&(0x7f0000000140)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0xffffffff00000000, 0x0, 0x0}, 0x58) 19:33:21 executing program 6: syz_open_dev$sg(0x0, 0x0, 0x0) syz_io_uring_setup(0x4ee5, &(0x7f0000000080)={0x0, 0x0, 0x28d}, &(0x7f0000ffd000/0x3000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000040), &(0x7f0000000100)) [ 1488.775180] FAULT_INJECTION: forcing a failure. [ 1488.775180] name failslab, interval 1, probability 0, space 0, times 0 [ 1488.776485] CPU: 0 PID: 37461 Comm: syz-executor.2 Not tainted 5.10.185 #1 [ 1488.777233] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1488.778124] Call Trace: [ 1488.778416] dump_stack+0x107/0x167 [ 1488.778816] should_fail.cold+0x5/0xa [ 1488.779246] ? create_object.isra.0+0x3a/0xa20 [ 1488.779730] should_failslab+0x5/0x20 [ 1488.780134] kmem_cache_alloc+0x5b/0x310 [ 1488.780578] create_object.isra.0+0x3a/0xa20 [ 1488.781065] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 1488.781624] kmem_cache_alloc+0x159/0x310 [ 1488.782062] copy_process+0x1c44/0x6740 [ 1488.782485] ? lock_acquire+0x197/0x470 [ 1488.782909] ? find_held_lock+0x2c/0x110 [ 1488.783358] ? __cleanup_sighand+0xb0/0xb0 [ 1488.783817] ? _copy_from_user+0xfb/0x1b0 [ 1488.784258] kernel_clone+0xe7/0x980 [ 1488.784674] ? lock_acquire+0x197/0x470 [ 1488.785094] ? create_io_thread+0xf0/0xf0 [ 1488.785546] ? ksys_write+0x21a/0x260 [ 1488.785955] ? lock_downgrade+0x6d0/0x6d0 [ 1488.786398] __do_sys_clone3+0x1e5/0x320 [ 1488.786842] ? __do_sys_clone+0x110/0x110 [ 1488.787298] ? rcu_read_lock_any_held+0x75/0xa0 [ 1488.787796] ? vfs_write+0x354/0xa70 [ 1488.788215] ? fput_many+0x2f/0x1a0 [ 1488.788624] ? ksys_write+0x1a9/0x260 [ 1488.789053] ? __ia32_sys_read+0xb0/0xb0 [ 1488.789512] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1488.790103] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1488.790681] ? trace_hardirqs_on+0x5b/0x180 [ 1488.791167] do_syscall_64+0x33/0x40 [ 1488.791590] entry_SYSCALL_64_after_hwframe+0x61/0xc6 [ 1488.792156] RIP: 0033:0x7f44f9a2eb19 [ 1488.792565] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1488.794522] RSP: 002b:00007f44f6fa4188 EFLAGS: 00000246 ORIG_RAX: 00000000000001b3 [ 1488.795324] RAX: ffffffffffffffda RBX: 00007f44f9b41f60 RCX: 00007f44f9a2eb19 [ 1488.796089] RDX: 0000000000000000 RSI: 0000000000000058 RDI: 0000000020000140 [ 1488.796873] RBP: 00007f44f6fa41d0 R08: 0000000000000000 R09: 0000000000000000 [ 1488.797640] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 1488.798420] R13: 00007ffe83cb2bbf R14: 00007f44f6fa4300 R15: 0000000000022000 19:33:34 executing program 0: clone3(&(0x7f0000000140)={0x10100000000000, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) 19:33:34 executing program 3: creat(0x0, 0x0) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) clone3(&(0x7f0000000140)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0, 0x8}, 0x58) 19:33:34 executing program 4: clone3(&(0x7f0000000140)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x1100, 0x0, 0x0}, 0x58) 19:33:34 executing program 6: syz_open_dev$sg(0x0, 0x0, 0x0) syz_io_uring_setup(0x4ee5, &(0x7f0000000080)={0x0, 0x0, 0x300}, &(0x7f0000ffd000/0x3000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000040), &(0x7f0000000100)) 19:33:34 executing program 7: ioctl$KDSKBMODE(0xffffffffffffffff, 0x4b45, &(0x7f0000000080)) perf_event_open(&(0x7f0000000000)={0x3, 0x80, 0x8, 0x1, 0x0, 0x0, 0x0, 0x0, 0x23290, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4, @perf_bp={0x0}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3}, 0xffffffffffffffff, 0x0, 0xffffffffffffffff, 0x0) creat(0x0, 0x0) clone3(&(0x7f0000000140)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) r0 = syz_open_dev$ttys(0xc, 0x2, 0x1) ioctl$TIOCSTI(r0, 0x5412, &(0x7f00000000c0)=0x8) write(0xffffffffffffffff, 0x0, 0x0) 19:33:34 executing program 1: perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) clone3(&(0x7f0000000140)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) syz_io_uring_setup(0x886, &(0x7f0000000000)={0x0, 0x6701, 0x0, 0x0, 0x1f0}, &(0x7f0000ffa000/0x3000)=nil, &(0x7f0000ffb000/0x2000)=nil, &(0x7f0000000080), &(0x7f00000000c0)) 19:33:34 executing program 2: perf_event_open(&(0x7f0000000200)={0x2, 0x80, 0x8, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) creat(0x0, 0x0) syz_io_uring_setup(0x44af, &(0x7f0000000100)={0x0, 0x2, 0x0, 0x0, 0x389}, &(0x7f0000000000/0x12000)=nil, &(0x7f000000e000/0x1000)=nil, &(0x7f0000000080), &(0x7f0000000040)) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) clone3(&(0x7f0000000140)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) (fail_nth: 25) 19:33:34 executing program 5: perf_event_open(&(0x7f0000000200)={0x2, 0x80, 0x8, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_io_uring_setup(0x44af, &(0x7f0000000100)={0x0, 0x2, 0x4, 0x0, 0x389}, &(0x7f0000000000/0x12000)=nil, &(0x7f000000e000/0x1000)=nil, &(0x7f0000000080), &(0x7f0000000040)) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) clone3(&(0x7f0000000140)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) write(0xffffffffffffffff, &(0x7f0000000100)='?', 0x1) 19:33:34 executing program 0: clone3(&(0x7f0000000140)={0x9083273a550000, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) [ 1502.469464] FAULT_INJECTION: forcing a failure. [ 1502.469464] name failslab, interval 1, probability 0, space 0, times 0 [ 1502.472250] CPU: 1 PID: 37886 Comm: syz-executor.2 Not tainted 5.10.185 #1 [ 1502.473674] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1502.475381] Call Trace: [ 1502.475926] dump_stack+0x107/0x167 [ 1502.476682] should_fail.cold+0x5/0xa [ 1502.477485] ? dup_mm+0x88/0x1110 [ 1502.478205] should_failslab+0x5/0x20 [ 1502.478995] kmem_cache_alloc+0x5b/0x310 [ 1502.479820] dup_mm+0x88/0x1110 [ 1502.480490] ? copy_process+0x2107/0x6740 [ 1502.481345] ? vm_area_dup+0x290/0x290 [ 1502.482184] ? __raw_spin_lock_init+0x36/0x110 [ 1502.483113] copy_process+0x24e2/0x6740 [ 1502.483910] ? lock_acquire+0x197/0x470 [ 1502.484712] ? find_held_lock+0x2c/0x110 [ 1502.485566] ? __cleanup_sighand+0xb0/0xb0 [ 1502.486423] ? _copy_from_user+0xfb/0x1b0 [ 1502.487263] kernel_clone+0xe7/0x980 [ 1502.488012] ? lock_acquire+0x197/0x470 [ 1502.488836] ? create_io_thread+0xf0/0xf0 [ 1502.489685] ? ksys_write+0x21a/0x260 [ 1502.490451] ? lock_downgrade+0x6d0/0x6d0 [ 1502.491288] __do_sys_clone3+0x1e5/0x320 [ 1502.492136] ? __do_sys_clone+0x110/0x110 [ 1502.493001] ? rcu_read_lock_any_held+0x75/0xa0 [ 1502.493967] ? vfs_write+0x354/0xa70 [ 1502.494725] ? fput_many+0x2f/0x1a0 [ 1502.495477] ? ksys_write+0x1a9/0x260 [ 1502.496247] ? __ia32_sys_read+0xb0/0xb0 [ 1502.497085] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1502.498150] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1502.499218] ? trace_hardirqs_on+0x5b/0x180 [ 1502.500091] do_syscall_64+0x33/0x40 [ 1502.500867] entry_SYSCALL_64_after_hwframe+0x61/0xc6 [ 1502.501897] RIP: 0033:0x7f44f9a2eb19 [ 1502.502652] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1502.506367] RSP: 002b:00007f44f6fa4188 EFLAGS: 00000246 ORIG_RAX: 00000000000001b3 [ 1502.507909] RAX: ffffffffffffffda RBX: 00007f44f9b41f60 RCX: 00007f44f9a2eb19 [ 1502.509353] RDX: 0000000000000000 RSI: 0000000000000058 RDI: 0000000020000140 [ 1502.510801] RBP: 00007f44f6fa41d0 R08: 0000000000000000 R09: 0000000000000000 [ 1502.512241] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 1502.513700] R13: 00007ffe83cb2bbf R14: 00007f44f6fa4300 R15: 0000000000022000 19:33:34 executing program 4: clone3(&(0x7f0000000140)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x2000, 0x0, 0x0}, 0x58) 19:33:34 executing program 6: syz_open_dev$sg(0x0, 0x0, 0x0) syz_io_uring_setup(0x4ee5, &(0x7f0000000080)={0x0, 0x0, 0x3fc}, &(0x7f0000ffd000/0x3000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000040), &(0x7f0000000100)) 19:33:34 executing program 0: clone3(&(0x7f0000000140)={0xf0810c1b000000, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) 19:33:34 executing program 4: clone3(&(0x7f0000000140)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x3f00, 0x0, 0x0}, 0x58) 19:33:34 executing program 6: syz_open_dev$sg(0x0, 0x0, 0x0) syz_io_uring_setup(0x4ee5, &(0x7f0000000080)={0x0, 0x0, 0x3fe}, &(0x7f0000ffd000/0x3000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000040), &(0x7f0000000100)) 19:33:34 executing program 3: creat(0x0, 0x0) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) clone3(&(0x7f0000000140)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0, 0x11}, 0x58) 19:33:48 executing program 4: clone3(&(0x7f0000000140)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x4000, 0x0, 0x0}, 0x58) 19:33:48 executing program 5: r0 = perf_event_open(&(0x7f0000000200)={0x2, 0x80, 0x8, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) fcntl$F_GET_FILE_RW_HINT(r0, 0x40d, &(0x7f0000000000)) syz_io_uring_setup(0x44af, &(0x7f0000000100)={0x0, 0x2, 0x0, 0x0, 0x389}, &(0x7f0000000000/0x12000)=nil, &(0x7f000000e000/0x1000)=nil, &(0x7f0000000080), &(0x7f0000000040)) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) clone3(&(0x7f0000000140)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) write(0xffffffffffffffff, &(0x7f0000000100)='?', 0x1) 19:33:48 executing program 1: perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x20000, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x2000000, 0xffffffffffffffff, 0x0) 19:33:48 executing program 7: ioctl$sock_SIOCGIFINDEX_80211(0xffffffffffffffff, 0x8933, &(0x7f0000000040)={'wlan0\x00', 0x0}) r1 = socket$nl_generic(0x10, 0x3, 0x10) r2 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000040), 0xffffffffffffffff) sendmsg$NL80211_CMD_RELOAD_REGDB(r1, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000240)={0x14, r2, 0x1}, 0x14}}, 0x0) sendmsg$NL80211_CMD_SET_INTERFACE(0xffffffffffffffff, &(0x7f00000003c0)={&(0x7f0000000280)={0x10, 0x0, 0x0, 0x80000000}, 0xc, &(0x7f0000000380)={&(0x7f00000002c0)={0x84, r2, 0x1, 0x70bd2d, 0x25dfdbfd, {{}, {@void, @void}}, [@NL80211_ATTR_IFTYPE={0x8, 0x5, 0x4}, @mon_options=[@NL80211_ATTR_MNTR_FLAGS={0x14, 0x17, 0x0, 0x1, [@NL80211_MNTR_FLAG_COOK_FRAMES={0x4}, @NL80211_MNTR_FLAG_PLCPFAIL={0x4}, @NL80211_MNTR_FLAG_COOK_FRAMES={0x4}, @NL80211_MNTR_FLAG_PLCPFAIL={0x4}]}, @NL80211_ATTR_MU_MIMO_FOLLOW_MAC_ADDR={0xa}, @NL80211_ATTR_MU_MIMO_GROUP_DATA={0x1c, 0xe7, "bd8d861b87ec77b0ed3b3ed9bb9150c695f7aed281a81c33"}, @NL80211_ATTR_MNTR_FLAGS={0x8, 0x17, 0x0, 0x1, [@NL80211_MNTR_FLAG_ACTIVE={0x4}]}, @NL80211_ATTR_MU_MIMO_GROUP_DATA={0x1c, 0xe7, "db55cf646fa4b9973982c2298d558514f2a92df199991370"}], @NL80211_ATTR_4ADDR={0x5}]}, 0x84}, 0x1, 0x0, 0x0, 0x40040}, 0x40001) sendmsg$NL80211_CMD_EXTERNAL_AUTH(0xffffffffffffffff, &(0x7f00000001c0)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x2}, 0xc, &(0x7f0000000100)={&(0x7f0000000080)={0x44, 0x0, 0x100, 0x70bd2c, 0x25dfdbff, {{}, {@val={0x8, 0x3, r0}, @val={0xc, 0x99, {0x81, 0x18}}}}, [@NL80211_ATTR_STATUS_CODE={0x6, 0x48, 0x51}, @NL80211_ATTR_PMKID={0x14, 0x55, "85d718af445d446437cae6059d5ab7a1"}]}, 0x44}, 0x1, 0x0, 0x0, 0x81c0}, 0x20080014) perf_event_open(&(0x7f0000000200)={0x2, 0x80, 0x8, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) creat(0x0, 0x0) clone3(&(0x7f0000000140)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) write(0xffffffffffffffff, 0x0, 0x0) 19:33:48 executing program 0: clone3(&(0x7f0000000140)={0xf088fce7290000, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) 19:33:48 executing program 2: perf_event_open(&(0x7f0000000200)={0x2, 0x80, 0x8, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) creat(0x0, 0x0) syz_io_uring_setup(0x44af, &(0x7f0000000100)={0x0, 0x2, 0x0, 0x0, 0x389}, &(0x7f0000000000/0x12000)=nil, &(0x7f000000e000/0x1000)=nil, &(0x7f0000000080), &(0x7f0000000040)) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) clone3(&(0x7f0000000140)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) (fail_nth: 26) 19:33:48 executing program 6: syz_open_dev$sg(0x0, 0x0, 0x0) syz_io_uring_setup(0x4ee5, &(0x7f0000000080)={0x0, 0x0, 0x600}, &(0x7f0000ffd000/0x3000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000040), &(0x7f0000000100)) 19:33:48 executing program 3: creat(0x0, 0x0) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) clone3(&(0x7f0000000140)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0, 0x1100}, 0x58) 19:33:48 executing program 0: clone3(&(0x7f0000000140)={0xf0ff1f00000000, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) [ 1516.549721] FAULT_INJECTION: forcing a failure. [ 1516.549721] name failslab, interval 1, probability 0, space 0, times 0 [ 1516.551333] CPU: 1 PID: 38438 Comm: syz-executor.2 Not tainted 5.10.185 #1 [ 1516.552103] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1516.553034] Call Trace: [ 1516.553334] dump_stack+0x107/0x167 [ 1516.553737] should_fail.cold+0x5/0xa [ 1516.554152] ? dup_mm+0x88/0x1110 [ 1516.554540] should_failslab+0x5/0x20 [ 1516.554956] kmem_cache_alloc+0x5b/0x310 [ 1516.555407] dup_mm+0x88/0x1110 [ 1516.555773] ? copy_process+0x2107/0x6740 [ 1516.556234] ? vm_area_dup+0x290/0x290 [ 1516.556665] ? __raw_spin_lock_init+0x36/0x110 [ 1516.557182] copy_process+0x24e2/0x6740 [ 1516.557632] ? lock_acquire+0x197/0x470 [ 1516.558075] ? find_held_lock+0x2c/0x110 [ 1516.558530] ? __cleanup_sighand+0xb0/0xb0 [ 1516.559006] ? _copy_from_user+0xfb/0x1b0 [ 1516.559463] kernel_clone+0xe7/0x980 [ 1516.559875] ? lock_acquire+0x197/0x470 [ 1516.560312] ? create_io_thread+0xf0/0xf0 [ 1516.560778] ? ksys_write+0x21a/0x260 [ 1516.561202] ? lock_downgrade+0x6d0/0x6d0 [ 1516.561577] platform regulatory.0: Direct firmware load for regulatory.db failed with error -2 [ 1516.561665] __do_sys_clone3+0x1e5/0x320 [ 1516.564052] ? __do_sys_clone+0x110/0x110 [ 1516.564525] ? rcu_read_lock_any_held+0x75/0xa0 [ 1516.565050] ? vfs_write+0x354/0xa70 [ 1516.565459] ? fput_many+0x2f/0x1a0 [ 1516.565881] ? ksys_write+0x1a9/0x260 [ 1516.566319] ? __ia32_sys_read+0xb0/0xb0 [ 1516.566795] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1516.567404] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1516.568003] ? trace_hardirqs_on+0x5b/0x180 [ 1516.568502] do_syscall_64+0x33/0x40 [ 1516.568932] entry_SYSCALL_64_after_hwframe+0x61/0xc6 [ 1516.569534] RIP: 0033:0x7f44f9a2eb19 [ 1516.569961] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1516.572068] RSP: 002b:00007f44f6fa4188 EFLAGS: 00000246 ORIG_RAX: 00000000000001b3 [ 1516.572939] RAX: ffffffffffffffda RBX: 00007f44f9b41f60 RCX: 00007f44f9a2eb19 [ 1516.573774] RDX: 0000000000000000 RSI: 0000000000000058 RDI: 0000000020000140 [ 1516.574621] RBP: 00007f44f6fa41d0 R08: 0000000000000000 R09: 0000000000000000 [ 1516.575469] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 1516.576321] R13: 00007ffe83cb2bbf R14: 00007f44f6fa4300 R15: 0000000000022000 19:33:48 executing program 4: clone3(&(0x7f0000000140)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x20010, 0x0, 0x0}, 0x58) 19:33:48 executing program 6: syz_open_dev$sg(0x0, 0x0, 0x0) syz_io_uring_setup(0x4ee5, &(0x7f0000000080)={0x0, 0x0, 0xc00}, &(0x7f0000ffd000/0x3000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000040), &(0x7f0000000100)) 19:33:48 executing program 1: perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) clone3(&(0x7f0000000140)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) 19:33:48 executing program 4: clone3(&(0x7f0000000140)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x20200, 0x0, 0x0}, 0x58) 19:33:48 executing program 6: syz_open_dev$sg(0x0, 0x0, 0x0) syz_io_uring_setup(0x4ee5, &(0x7f0000000080)={0x0, 0x0, 0x1200}, &(0x7f0000ffd000/0x3000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000040), &(0x7f0000000100)) 19:33:49 executing program 2: perf_event_open(&(0x7f0000000200)={0x2, 0x80, 0x8, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) creat(0x0, 0x0) syz_io_uring_setup(0x44af, &(0x7f0000000100)={0x0, 0x2, 0x0, 0x0, 0x389}, &(0x7f0000000000/0x12000)=nil, &(0x7f000000e000/0x1000)=nil, &(0x7f0000000080), &(0x7f0000000040)) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) clone3(&(0x7f0000000140)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) (fail_nth: 27) 19:33:49 executing program 0: clone3(&(0x7f0000000140)={0x100000000000000, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) [ 1516.786140] FAULT_INJECTION: forcing a failure. [ 1516.786140] name fail_page_alloc, interval 1, probability 0, space 0, times 0 [ 1516.787814] CPU: 1 PID: 38690 Comm: syz-executor.2 Not tainted 5.10.185 #1 [ 1516.788550] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1516.789425] Call Trace: [ 1516.789716] dump_stack+0x107/0x167 [ 1516.790099] should_fail.cold+0x5/0xa [ 1516.790509] __alloc_pages_nodemask+0x182/0x600 [ 1516.791003] ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0 [ 1516.791561] ? __alloc_pages_slowpath.constprop.0+0x2130/0x2130 [ 1516.792203] alloc_pages_current+0x187/0x280 [ 1516.792673] __get_free_pages+0xc/0xa0 [ 1516.793107] ? trace_hardirqs_on+0x5b/0x180 [ 1516.793562] pgd_alloc+0x84/0x4e0 [ 1516.793934] ? pgd_page_get_mm+0x40/0x40 [ 1516.794373] mm_init+0x670/0xab0 [ 1516.794739] dup_mm+0xd5/0x1110 [ 1516.795091] ? copy_process+0x2107/0x6740 [ 1516.795524] ? vm_area_dup+0x290/0x290 [ 1516.795941] ? __raw_spin_lock_init+0x36/0x110 [ 1516.796434] copy_process+0x24e2/0x6740 [ 1516.796854] ? lock_acquire+0x197/0x470 [ 1516.797290] ? find_held_lock+0x2c/0x110 [ 1516.797728] ? __cleanup_sighand+0xb0/0xb0 [ 1516.798184] ? _copy_from_user+0xfb/0x1b0 [ 1516.798625] kernel_clone+0xe7/0x980 [ 1516.799024] ? lock_acquire+0x197/0x470 [ 1516.799443] ? create_io_thread+0xf0/0xf0 [ 1516.799891] ? ksys_write+0x21a/0x260 [ 1516.800299] ? lock_downgrade+0x6d0/0x6d0 [ 1516.800739] __do_sys_clone3+0x1e5/0x320 [ 1516.801176] ? __do_sys_clone+0x110/0x110 [ 1516.801633] ? rcu_read_lock_any_held+0x75/0xa0 [ 1516.802119] ? vfs_write+0x354/0xa70 [ 1516.802516] ? fput_many+0x2f/0x1a0 [ 1516.802904] ? ksys_write+0x1a9/0x260 [ 1516.803306] ? __ia32_sys_read+0xb0/0xb0 [ 1516.803736] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1516.804301] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1516.804841] ? trace_hardirqs_on+0x5b/0x180 [ 1516.805313] do_syscall_64+0x33/0x40 [ 1516.805710] entry_SYSCALL_64_after_hwframe+0x61/0xc6 [ 1516.806250] RIP: 0033:0x7f44f9a2eb19 [ 1516.806642] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1516.808575] RSP: 002b:00007f44f6fa4188 EFLAGS: 00000246 ORIG_RAX: 00000000000001b3 [ 1516.809395] RAX: ffffffffffffffda RBX: 00007f44f9b41f60 RCX: 00007f44f9a2eb19 [ 1516.810140] RDX: 0000000000000000 RSI: 0000000000000058 RDI: 0000000020000140 [ 1516.810896] RBP: 00007f44f6fa41d0 R08: 0000000000000000 R09: 0000000000000000 [ 1516.811646] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 1516.812392] R13: 00007ffe83cb2bbf R14: 00007f44f6fa4300 R15: 0000000000022000 19:34:04 executing program 6: syz_open_dev$sg(0x0, 0x0, 0x0) syz_io_uring_setup(0x4ee5, &(0x7f0000000080)={0x0, 0x0, 0x1800}, &(0x7f0000ffd000/0x3000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000040), &(0x7f0000000100)) 19:34:04 executing program 1: perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) recvmmsg$unix(0xffffffffffffffff, &(0x7f0000004f40)=[{{&(0x7f0000000000)=@abs, 0x6e, &(0x7f0000000340)=[{&(0x7f0000000080)=""/187, 0xbb}, {&(0x7f00000001c0)=""/210, 0xd2}, {&(0x7f00000002c0)=""/114, 0x72}], 0x3, &(0x7f0000000380)=[@cred={{0x1c}}, @cred={{0x1c}}, @cred={{0x1c}}, @cred={{0x1c}}, @cred={{0x1c}}, @cred={{0x1c}}, @cred={{0x1c}}, @rights={{0x30, 0x1, 0x1, [0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff]}}], 0x110}}, {{0x0, 0x0, &(0x7f0000001740)=[{&(0x7f00000004c0)=""/79, 0x4f}, {&(0x7f0000000540)=""/4096, 0x1000}, {&(0x7f0000001540)=""/193, 0xc1}, {&(0x7f0000001640)=""/194, 0xc2}, {&(0x7f0000001e00)=""/4096, 0x1000}], 0x5, &(0x7f00000017c0)=ANY=[@ANYBLOB="1c000000000000000100000002000000", @ANYRES32=0x0, @ANYRES32=0x0, @ANYRES32=0x0, @ANYBLOB="0000000018000000000100000001000000000000", @ANYRES32, @ANYRES32], 0x38}}, {{&(0x7f0000001800), 0x6e, &(0x7f0000001b80)=[{&(0x7f0000001880)=""/172, 0xac}, {&(0x7f0000001940)=""/99, 0x63}, {&(0x7f00000019c0)=""/207, 0xcf}, {&(0x7f0000002e00)=""/4096, 0x1000}, {&(0x7f0000001ac0)=""/168, 0xa8}], 0x5, &(0x7f0000007080)=ANY=[@ANYBLOB="38000000000000000100000001009351950000c53bbf1b0acd9f6831eba81ed334c79d20e837c242", @ANYRES32, @ANYRES32, @ANYRES32, @ANYRES32, @ANYRES32, @ANYRES32, @ANYRES32=0xffffffffffffffff, @ANYRES32, @ANYRES32, @ANYRES32], 0x38}}, {{&(0x7f0000001c40)=@abs, 0x6e, &(0x7f0000003fc0)=[{&(0x7f0000001cc0)=""/141, 0x8d}, {&(0x7f0000003e00)=""/153, 0x99}, {&(0x7f0000003ec0)=""/153, 0x99}, {&(0x7f0000003f80)=""/15, 0xf}], 0x4, &(0x7f0000004000)=[@rights={{0x20, 0x1, 0x1, [0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff]}}, @rights={{0x34, 0x1, 0x1, [0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff]}}, @cred={{0x1c}}, @rights={{0x24, 0x1, 0x1, [0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff]}}, @cred={{0x1c}}], 0xc0}}, {{&(0x7f00000040c0), 0x6e, &(0x7f0000004340)=[{&(0x7f0000005180)=""/43, 0x2b}, {&(0x7f0000004180)=""/202, 0xca}, {&(0x7f0000004280)=""/45, 0x2d}, {&(0x7f00000042c0)=""/120, 0x78}], 0x4, &(0x7f0000004380)=[@rights={{0x18, 0x1, 0x1, [0xffffffffffffffff, 0xffffffffffffffff]}}, @cred={{0x1c}}, @cred={{0x1c}}, @cred={{0x1c}}, @cred={{0x1c}}, @cred={{0x1c}}, @rights={{0x18, 0x1, 0x1, [0xffffffffffffffff, 0xffffffffffffffff]}}], 0xd0}}, {{&(0x7f0000004480), 0x6e, &(0x7f0000004680)=[{&(0x7f0000004500)=""/92, 0x5c}, {&(0x7f0000004580)=""/186, 0xba}, {&(0x7f0000004640)=""/31, 0xfffffffffffffd88}], 0x3, &(0x7f00000046c0)=[@cred={{0x1c}}], 0x20}}, {{&(0x7f0000004700), 0x6e, &(0x7f0000004dc0)=[{&(0x7f0000004780)=""/97, 0x61}, {&(0x7f0000004800)=""/250, 0xfa}, {&(0x7f0000004900)=""/89, 0x59}, {&(0x7f0000004980)=""/210, 0xd2}, {&(0x7f0000004a80)=""/195, 0xc3}, {&(0x7f0000004b80)=""/54, 0x36}, {&(0x7f0000004bc0)=""/13, 0xd}, {&(0x7f0000004c00)=""/239, 0xef}, {&(0x7f0000004d00)=""/160, 0xa0}], 0x9, &(0x7f0000004e80)=[@rights={{0x20, 0x1, 0x1, [0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff]}}, @cred={{0x1c}}, @rights={{0x18, 0x1, 0x1, [0xffffffffffffffff, 0xffffffffffffffff]}}, @rights={{0x24, 0x1, 0x1, [0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff]}}, @rights={{0x14, 0x1, 0x1, [0xffffffffffffffff]}}], 0x98}}], 0x7, 0x0, &(0x7f0000005100)) epoll_ctl$EPOLL_CTL_ADD(r1, 0x1, 0xffffffffffffffff, &(0x7f0000005140)={0x30000004}) ioctl$FS_IOC_FIEMAP(r3, 0xc020660b, &(0x7f0000006f00)={0x80000001, 0x4cfa, 0x1, 0x3, 0x5, [{0x7f, 0x4, 0x7, '\x00', 0x70d}, {0x6, 0xa2, 0xfffffffffffffff8, '\x00', 0x1}, {0x5, 0x3, 0x7ff, '\x00', 0x1810}, {0x8, 0x3, 0xffff, '\x00', 0x1108}, {0x7, 0xffffffffffffffff, 0x9, '\x00', 0x9}]}) clone3(&(0x7f0000000140)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) syz_io_uring_setup(0x44ae, &(0x7f0000000100)={0x0, 0x0, 0x0, 0x2}, &(0x7f0000006000/0x1000)=nil, &(0x7f000000f000/0x1000)=nil, &(0x7f0000007040)=0x0, &(0x7f0000000000)) r7 = socket$netlink(0x10, 0x3, 0x0) r8 = getpid() r9 = inotify_init1(0x80000) r10 = socket$netlink(0x10, 0x3, 0x0) sendmsg$nl_generic(r10, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000000)={0x2c, 0x16, 0x1, 0x0, 0x0, {0xa}, [@nested={0x18, 0x0, 0x0, 0x1, [@typed={0x14, 0xa, 0x0, 0x0, @ipv6=@private1}]}]}, 0x2c}}, 0x0) kcmp(0x0, r8, 0x2, r9, r10) sendmsg$nl_generic(r7, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000000)={0x2c, 0x16, 0x1, 0x0, 0x0, {0xa}, [@nested={0x18, 0x0, 0x0, 0x1, [@typed={0x14, 0xa, 0x0, 0x0, @ipv6=@private1}]}]}, 0x2c}}, 0x0) ioctl$F2FS_IOC_DEFRAGMENT(r7, 0xc010f508, &(0x7f0000006d00)={0x1}) syz_io_uring_submit(r6, 0x0, &(0x7f00000000c0)=@IORING_OP_SYNC_FILE_RANGE={0x8, 0x2, 0x0, @fd, 0xffffffffffff0001, 0x0, 0x2, 0x3}, 0x57) r11 = mmap$IORING_OFF_SQES(&(0x7f0000ffb000/0x4000)=nil, 0x4000, 0x0, 0x10, r2, 0x10000000) recvmmsg$unix(r4, &(0x7f0000006d80)=[{{&(0x7f00000051c0), 0x6e, &(0x7f0000006580)=[{&(0x7f0000005240)=""/225, 0xe1}, {&(0x7f0000005340)=""/4096, 0x1000}, {&(0x7f0000006340)=""/35, 0x23}, {&(0x7f0000006380)=""/90, 0x5a}, {&(0x7f0000006400)=""/81, 0x51}, {&(0x7f0000006480)=""/46, 0x2e}, {&(0x7f00000064c0)=""/124, 0x7c}, {&(0x7f0000006540)=""/28, 0x1c}], 0x8, &(0x7f0000006600)=[@rights={{0x28, 0x1, 0x1, [0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff]}}, @cred={{0x1c}}, @rights={{0x38, 0x1, 0x1, [0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff]}}], 0x80}}, {{&(0x7f0000006680), 0x6e, &(0x7f0000006980)=[{&(0x7f0000006700)=""/219, 0xdb}, {&(0x7f0000006800)=""/105, 0x69}, {&(0x7f0000006880)=""/254, 0xfe}], 0x3}}, {{&(0x7f00000069c0)=@abs, 0x6e, &(0x7f0000006bc0)=[{&(0x7f0000006a40)=""/81, 0x51}, {&(0x7f0000006ac0)=""/235, 0xeb}], 0x2, &(0x7f0000007100)=ANY=[@ANYBLOB="000000002048e5bd25800000000100000002000000", @ANYRES32=0x0, @ANYRES32=0x0, @ANYRES32=0x0, @ANYBLOB="000000001c000000000000000100000002000000", @ANYRES32=0x0, @ANYRES32=0x0, @ANYRES32=0x0, @ANYBLOB="0000000018000000000000000100000001000000", @ANYRES32, @ANYRES32, @ANYBLOB="1c000000000000000100000001000000", @ANYRES32, @ANYRES32, @ANYRES32, @ANYBLOB='\x00\x00\x00\x00'], 0x78}}, {{&(0x7f0000006c80), 0x6e, &(0x7f0000006d00), 0x0, &(0x7f0000006d40)=[@rights={{0x18, 0x1, 0x1, [0xffffffffffffffff, 0xffffffffffffffff]}}, @cred={{0x1c}}], 0x38}}], 0x4, 0x40000120, &(0x7f0000006e80)) epoll_ctl$EPOLL_CTL_MOD(r12, 0x3, r13, &(0x7f0000006ec0)={0xd0000004}) r14 = io_uring_register$IORING_REGISTER_PERSONALITY(r0, 0x9, 0x0, 0x0) syz_io_uring_submit(r6, r11, &(0x7f0000004140)=@IORING_OP_CLOSE={0x13, 0x0, 0x0, r5, 0x0, 0x0, 0x0, 0x0, 0x0, {0x0, r14}}, 0x1) 19:34:04 executing program 4: clone3(&(0x7f0000000140)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x80000, 0x0, 0x0}, 0x58) 19:34:04 executing program 5: perf_event_open(&(0x7f0000000200)={0x2, 0x80, 0x8, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_io_uring_setup(0x44af, &(0x7f0000000100)={0x0, 0x2, 0x0, 0x0, 0x389}, &(0x7f0000000000/0x12000)=nil, &(0x7f000000e000/0x1000)=nil, &(0x7f0000000080), &(0x7f0000000040)) r0 = perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) clone3(&(0x7f0000000140)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) r1 = socket$netlink(0x10, 0x3, 0x0) sendmsg$nl_generic(r1, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000000)={0x2c, 0x16, 0x1, 0x0, 0x0, {0xa}, [@nested={0x18, 0x0, 0x0, 0x1, [@typed={0x14, 0xa, 0x0, 0x0, @ipv6=@private1}]}]}, 0x2c}}, 0x0) fcntl$dupfd(r0, 0x406, r1) write(0xffffffffffffffff, &(0x7f0000000100)='?', 0x1) 19:34:04 executing program 2: perf_event_open(&(0x7f0000000200)={0x2, 0x80, 0x8, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) creat(0x0, 0x0) syz_io_uring_setup(0x44af, &(0x7f0000000100)={0x0, 0x2, 0x0, 0x0, 0x389}, &(0x7f0000000000/0x12000)=nil, &(0x7f000000e000/0x1000)=nil, &(0x7f0000000080), &(0x7f0000000040)) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) clone3(&(0x7f0000000140)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) (fail_nth: 28) 19:34:04 executing program 3: creat(0x0, 0x0) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) clone3(&(0x7f0000000140)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0, 0x2000}, 0x58) 19:34:04 executing program 0: clone3(&(0x7f0000000140)={0x800000000000000, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) 19:34:04 executing program 7: perf_event_open(&(0x7f0000000200)={0x2, 0x80, 0x8, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) creat(0x0, 0x0) clone3(&(0x7f0000000140)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) r0 = socket$netlink(0x10, 0x3, 0x0) sendmsg$nl_generic(r0, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000280)=ANY=[@ANYBLOB="2c000000ff0001000000bcd6216e4618bcef430ae9f600000004000001ef00001800008014000a00fc010000000000005df83e8d993b4c9b3da7c4987e8e58efeeda16643b2939019ee2c2ccf23fdba76a04462890772207750dbe90a8a133b8cb8a57b05ab534f5839b9db0dc48528e601d7ae8f4e119aa148cf2886c988cba4209fd655338c594ed980acb9681c1d4ac6e77dd4c176e0700000000000000bb1d3c09d5ff09"], 0x2c}}, 0x0) r1 = syz_open_pts(0xffffffffffffffff, 0x21a8c0) ioctl$TIOCSISO7816(r1, 0xc0285443, &(0x7f0000000040)={0x0, 0x1, 0x9, 0x0, 0x9}) fallocate(r0, 0x60, 0xfffffffffffffff7, 0x3de) write(0xffffffffffffffff, 0x0, 0x0) [ 1531.902538] FAULT_INJECTION: forcing a failure. [ 1531.902538] name failslab, interval 1, probability 0, space 0, times 0 [ 1531.905244] CPU: 0 PID: 38777 Comm: syz-executor.2 Not tainted 5.10.185 #1 [ 1531.906634] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1531.908303] Call Trace: [ 1531.908846] dump_stack+0x107/0x167 [ 1531.909609] should_fail.cold+0x5/0xa [ 1531.910378] ? dup_mm+0x88/0x1110 [ 1531.911092] should_failslab+0x5/0x20 [ 1531.911860] kmem_cache_alloc+0x5b/0x310 [ 1531.912684] dup_mm+0x88/0x1110 [ 1531.913363] ? copy_process+0x2107/0x6740 [ 1531.914208] ? vm_area_dup+0x290/0x290 [ 1531.915004] ? __raw_spin_lock_init+0x36/0x110 [ 1531.915934] copy_process+0x24e2/0x6740 [ 1531.916737] ? lock_acquire+0x197/0x470 [ 1531.917549] ? find_held_lock+0x2c/0x110 [ 1531.918386] ? __cleanup_sighand+0xb0/0xb0 [ 1531.919235] ? _copy_from_user+0xfb/0x1b0 [ 1531.920057] kernel_clone+0xe7/0x980 [ 1531.920792] ? lock_acquire+0x197/0x470 [ 1531.921589] ? create_io_thread+0xf0/0xf0 [ 1531.922419] ? ksys_write+0x21a/0x260 [ 1531.923187] ? lock_downgrade+0x6d0/0x6d0 [ 1531.924028] __do_sys_clone3+0x1e5/0x320 [ 1531.924854] ? __do_sys_clone+0x110/0x110 [ 1531.925713] ? rcu_read_lock_any_held+0x75/0xa0 [ 1531.926644] ? vfs_write+0x354/0xa70 [ 1531.927405] ? copy_kernel_to_fpregs+0x9e/0xe0 [ 1531.928330] ? trace_event_raw_event_x86_fpu+0x390/0x390 [ 1531.929440] ? ksys_write+0x1a9/0x260 [ 1531.930207] ? __ia32_sys_read+0xb0/0xb0 [ 1531.931030] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1531.932084] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1531.933124] ? trace_hardirqs_on+0x5b/0x180 [ 1531.934001] do_syscall_64+0x33/0x40 [ 1531.934752] entry_SYSCALL_64_after_hwframe+0x61/0xc6 [ 1531.935786] RIP: 0033:0x7f44f9a2eb19 [ 1531.936549] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1531.940279] RSP: 002b:00007f44f6fa4188 EFLAGS: 00000246 ORIG_RAX: 00000000000001b3 [ 1531.941819] RAX: ffffffffffffffda RBX: 00007f44f9b41f60 RCX: 00007f44f9a2eb19 [ 1531.943263] RDX: 0000000000000000 RSI: 0000000000000058 RDI: 0000000020000140 [ 1531.944704] RBP: 00007f44f6fa41d0 R08: 0000000000000000 R09: 0000000000000000 [ 1531.946149] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 1531.947584] R13: 00007ffe83cb2bbf R14: 00007f44f6fa4300 R15: 0000000000022000 19:34:04 executing program 6: syz_open_dev$sg(0x0, 0x0, 0x0) syz_io_uring_setup(0x4ee5, &(0x7f0000000080)={0x0, 0x0, 0x1e00}, &(0x7f0000ffd000/0x3000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000040), &(0x7f0000000100)) 19:34:04 executing program 4: clone3(&(0x7f0000000140)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x101000, 0x0, 0x0}, 0x58) 19:34:04 executing program 0: clone3(&(0x7f0000000140)={0x1100000000000000, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) 19:34:04 executing program 2: perf_event_open(&(0x7f0000000200)={0x2, 0x80, 0x8, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) creat(0x0, 0x0) syz_io_uring_setup(0x44af, &(0x7f0000000100)={0x0, 0x2, 0x0, 0x0, 0x389}, &(0x7f0000000000/0x12000)=nil, &(0x7f000000e000/0x1000)=nil, &(0x7f0000000080), &(0x7f0000000040)) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) clone3(&(0x7f0000000140)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) (fail_nth: 29) 19:34:04 executing program 3: creat(0x0, 0x0) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) clone3(&(0x7f0000000140)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0, 0x3f00}, 0x58) 19:34:04 executing program 4: clone3(&(0x7f0000000140)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0xf0ff1f, 0x0, 0x0}, 0x58) 19:34:04 executing program 0: clone3(&(0x7f0000000140)={0x2000000000000000, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) 19:34:04 executing program 6: syz_open_dev$sg(0x0, 0x0, 0x0) syz_io_uring_setup(0x4ee5, &(0x7f0000000080)={0x0, 0x0, 0x2000}, &(0x7f0000ffd000/0x3000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000040), &(0x7f0000000100)) [ 1532.185560] FAULT_INJECTION: forcing a failure. [ 1532.185560] name failslab, interval 1, probability 0, space 0, times 0 [ 1532.188216] CPU: 0 PID: 39162 Comm: syz-executor.2 Not tainted 5.10.185 #1 [ 1532.189655] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1532.191351] Call Trace: [ 1532.191898] dump_stack+0x107/0x167 [ 1532.192652] should_fail.cold+0x5/0xa [ 1532.193461] ? create_object.isra.0+0x3a/0xa20 [ 1532.194405] should_failslab+0x5/0x20 [ 1532.195186] kmem_cache_alloc+0x5b/0x310 [ 1532.196030] create_object.isra.0+0x3a/0xa20 [ 1532.196921] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 1532.197960] kmem_cache_alloc+0x159/0x310 [ 1532.198809] vm_area_dup+0x78/0x290 [ 1532.199557] ? __lock_acquire+0xbb1/0x5b00 [ 1532.200435] ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0 [ 1532.201525] ? lock_acquire+0x197/0x470 [ 1532.202326] ? dup_mm+0x159/0x1110 [ 1532.203052] ? vm_area_alloc+0x110/0x110 [ 1532.203872] ? find_held_lock+0x2c/0x110 [ 1532.204696] ? get_mm_exe_file+0x139/0x310 [ 1532.205567] ? lock_downgrade+0x6d0/0x6d0 [ 1532.206405] ? down_write_nested+0xe4/0x160 [ 1532.207274] ? rwsem_down_write_slowpath+0xc30/0xc30 [ 1532.208302] ? get_mm_exe_file+0x162/0x310 [ 1532.209156] dup_mm+0x44d/0x1110 [ 1532.209852] ? copy_process+0x2107/0x6740 [ 1532.210692] ? vm_area_dup+0x290/0x290 [ 1532.211483] ? __raw_spin_lock_init+0x36/0x110 [ 1532.212408] copy_process+0x24e2/0x6740 [ 1532.213226] ? lock_acquire+0x197/0x470 [ 1532.214027] ? find_held_lock+0x2c/0x110 [ 1532.214865] ? __cleanup_sighand+0xb0/0xb0 [ 1532.215728] ? _copy_from_user+0xfb/0x1b0 [ 1532.216570] kernel_clone+0xe7/0x980 [ 1532.217331] ? lock_acquire+0x197/0x470 [ 1532.218137] ? create_io_thread+0xf0/0xf0 [ 1532.218957] ? ksys_write+0x21a/0x260 [ 1532.219724] ? lock_downgrade+0x6d0/0x6d0 [ 1532.220565] __do_sys_clone3+0x1e5/0x320 [ 1532.221418] ? __do_sys_clone+0x110/0x110 [ 1532.222272] ? rcu_read_lock_any_held+0x75/0xa0 [ 1532.223204] ? vfs_write+0x354/0xa70 [ 1532.223936] ? fput_many+0x2f/0x1a0 [ 1532.224670] ? ksys_write+0x1a9/0x260 [ 1532.225453] ? __ia32_sys_read+0xb0/0xb0 [ 1532.226286] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1532.227339] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1532.228385] ? trace_hardirqs_on+0x5b/0x180 [ 1532.229267] do_syscall_64+0x33/0x40 [ 1532.230024] entry_SYSCALL_64_after_hwframe+0x61/0xc6 [ 1532.231061] RIP: 0033:0x7f44f9a2eb19 [ 1532.231823] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1532.235531] RSP: 002b:00007f44f6fa4188 EFLAGS: 00000246 ORIG_RAX: 00000000000001b3 [ 1532.237075] RAX: ffffffffffffffda RBX: 00007f44f9b41f60 RCX: 00007f44f9a2eb19 [ 1532.238531] RDX: 0000000000000000 RSI: 0000000000000058 RDI: 0000000020000140 [ 1532.239973] RBP: 00007f44f6fa41d0 R08: 0000000000000000 R09: 0000000000000000 [ 1532.241419] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 1532.242862] R13: 00007ffe83cb2bbf R14: 00007f44f6fa4300 R15: 0000000000022000 19:34:04 executing program 0: clone3(&(0x7f0000000140)={0x3f00000000000000, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) 19:34:21 executing program 4: clone3(&(0x7f0000000140)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x1000000, 0x0, 0x0}, 0x58) 19:34:21 executing program 2: perf_event_open(&(0x7f0000000200)={0x2, 0x80, 0x8, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) creat(0x0, 0x0) syz_io_uring_setup(0x44af, &(0x7f0000000100)={0x0, 0x2, 0x0, 0x0, 0x389}, &(0x7f0000000000/0x12000)=nil, &(0x7f000000e000/0x1000)=nil, &(0x7f0000000080), &(0x7f0000000040)) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) clone3(&(0x7f0000000140)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) (fail_nth: 30) 19:34:21 executing program 7: perf_event_open(&(0x7f0000000200)={0x0, 0x80, 0x8, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) creat(0x0, 0x0) r0 = semget$private(0x0, 0x2, 0x0) semctl$GETZCNT(r0, 0x2, 0xf, 0x0) r1 = semget$private(0x0, 0x6, 0x0) semop(r1, &(0x7f0000000080)=[{}, {}], 0x2) semctl$SEM_INFO(r1, 0x1, 0x13, &(0x7f00000000c0)=""/4096) semctl$IPC_RMID(r1, 0x0, 0x0) semop(r1, &(0x7f0000000040)=[{0x4, 0x7, 0x3800}, {0x2, 0x9, 0x800}, {0x0, 0x1}, {0x1, 0x800, 0x800}], 0x4) semtimedop(r0, &(0x7f0000000000)=[{0x2, 0x0, 0x800}, {0x0, 0x3, 0x1400}, {0x0, 0x2, 0x1800}, {0x1, 0xbb, 0x800}, {0x3, 0x8, 0x1000}, {0xb3d81f4e1a9bc0f3, 0x9, 0x800}], 0x6, &(0x7f00000010c0)={0x0, 0x989680}) semctl$IPC_RMID(r1, 0x0, 0x0) clone3(&(0x7f0000000140)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) write(0xffffffffffffffff, 0x0, 0x0) 19:34:21 executing program 6: syz_open_dev$sg(0x0, 0x0, 0x0) syz_io_uring_setup(0x4ee5, &(0x7f0000000080)={0x0, 0x0, 0x2101}, &(0x7f0000ffd000/0x3000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000040), &(0x7f0000000100)) 19:34:21 executing program 3: creat(0x0, 0x0) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) clone3(&(0x7f0000000140)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0, 0x4000}, 0x58) 19:34:21 executing program 1: r0 = socket$netlink(0x10, 0x3, 0x0) sendmsg$nl_generic(r0, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000000)=ANY=[@ANYBLOB="2c0000000a0000001800a38714000a00fc0100"/44], 0x2c}}, 0x0) ioctl$AUTOFS_DEV_IOCTL_SETPIPEFD(0xffffffffffffffff, 0xc0189378, &(0x7f0000000000)=ANY=[@ANYBLOB="010000000000000018000000", @ANYRES32=r0, @ANYRES32, @ANYBLOB='\x00\x00\x00\x00./file0\x00']) perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, 0x0, @perf_config_ext, 0x10, 0x0, 0x0, 0x1}, 0x0, 0x0, 0xffffffffffffffff, 0x0) clone3(&(0x7f0000000140)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) 19:34:21 executing program 0: clone3(&(0x7f0000000140)={0x4000000000000000, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) 19:34:21 executing program 5: r0 = perf_event_open(&(0x7f0000000200)={0x2, 0x80, 0x8, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r1 = getpgrp(0x0) pidfd_open(r1, 0x0) perf_event_open(&(0x7f0000000280)={0x0, 0x80, 0x4b, 0x4, 0xff, 0x7, 0x0, 0x0, 0x802, 0x6, 0x0, 0x1, 0x1, 0x1, 0x1, 0x1, 0x0, 0x1, 0x0, 0x0, 0x0, 0x1, 0x1, 0x1, 0x1, 0x2, 0x1, 0x0, 0x0, 0x1, 0x1, 0x1, 0x1, 0x0, 0x1, 0x0, 0x1, 0x0, 0x1, 0x0, 0x1, 0x0, 0x1, 0x0, 0x0, 0x0, 0x1, 0x0, 0x80, 0x2, @perf_bp={&(0x7f0000000000), 0xb}, 0x1000, 0x1, 0x8, 0x9, 0x842, 0x8000, 0x78d, 0x0, 0x200, 0x0, 0x7}, r1, 0x9, r0, 0x8) syz_io_uring_setup(0x44af, &(0x7f0000000100)={0x0, 0x2, 0x0, 0x0, 0x389}, &(0x7f0000000000/0x12000)=nil, &(0x7f000000e000/0x1000)=nil, &(0x7f0000000080), &(0x7f0000000040)) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) clone3(&(0x7f0000000140)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) r2 = syz_open_dev$ttys(0xc, 0x2, 0x1) ioctl$FITRIM(r2, 0xc0185879, &(0x7f00000001c0)={0xe93, 0x0, 0x80000001}) perf_event_open(&(0x7f0000000300)={0x3, 0x80, 0x10, 0x1f, 0x20, 0x3e, 0x0, 0x8, 0x2000, 0x2, 0x1, 0x1, 0x1, 0x1, 0x1, 0x0, 0x1, 0x0, 0x1, 0x1, 0x0, 0x1, 0x0, 0x1, 0x1, 0x1, 0x0, 0x0, 0x0, 0x1, 0x1, 0x1, 0x0, 0x1, 0x0, 0x1, 0x1, 0x1, 0x1, 0x1, 0x1, 0x1, 0x1, 0x0, 0x1, 0x0, 0x0, 0x0, 0x2, 0x2, @perf_bp={&(0x7f00000000c0), 0x4}, 0x42000, 0x8001, 0x40, 0x2, 0x0, 0x7fff, 0xfffb, 0x0, 0x1, 0x0, 0x100000000}, 0x0, 0xb, 0xffffffffffffffff, 0xb) write(0xffffffffffffffff, &(0x7f0000000100)='?', 0x1) 19:34:21 executing program 4: clone3(&(0x7f0000000140)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x8000000, 0x0, 0x0}, 0x58) [ 1548.972738] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=10 sclass=netlink_route_socket pid=39307 comm=syz-executor.1 [ 1548.978481] FAULT_INJECTION: forcing a failure. [ 1548.978481] name failslab, interval 1, probability 0, space 0, times 0 [ 1548.980897] CPU: 1 PID: 39302 Comm: syz-executor.2 Not tainted 5.10.185 #1 [ 1548.982345] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1548.984054] Call Trace: [ 1548.984607] dump_stack+0x107/0x167 [ 1548.985354] should_fail.cold+0x5/0xa [ 1548.986180] ? vm_area_dup+0x78/0x290 [ 1548.986968] should_failslab+0x5/0x20 [ 1548.987744] kmem_cache_alloc+0x5b/0x310 [ 1548.988578] vm_area_dup+0x78/0x290 [ 1548.989343] ? copy_page_range+0x24fe/0x3820 [ 1548.990316] ? vm_area_alloc+0x110/0x110 [ 1548.991142] ? find_held_lock+0x2c/0x110 [ 1548.991974] ? vm_iomap_memory+0x190/0x190 [ 1548.992845] ? __vma_link_rb+0x540/0x700 [ 1548.993702] dup_mm+0x44d/0x1110 [ 1548.994401] ? vm_area_dup+0x290/0x290 [ 1548.995204] ? __raw_spin_lock_init+0x36/0x110 [ 1548.996143] copy_process+0x24e2/0x6740 [ 1548.996946] ? lock_acquire+0x197/0x470 [ 1548.997794] ? find_held_lock+0x2c/0x110 [ 1548.998650] ? __cleanup_sighand+0xb0/0xb0 [ 1548.999527] ? _copy_from_user+0xfb/0x1b0 [ 1549.000382] kernel_clone+0xe7/0x980 [ 1549.001137] ? lock_acquire+0x197/0x470 [ 1549.001972] ? create_io_thread+0xf0/0xf0 [ 1549.002835] ? ksys_write+0x21a/0x260 [ 1549.003616] ? lock_downgrade+0x6d0/0x6d0 [ 1549.004475] __do_sys_clone3+0x1e5/0x320 [ 1549.005298] ? __do_sys_clone+0x110/0x110 [ 1549.006246] ? rcu_read_lock_any_held+0x75/0xa0 [ 1549.007195] ? vfs_write+0x354/0xa70 [ 1549.007979] ? fput_many+0x2f/0x1a0 [ 1549.008713] ? ksys_write+0x1a9/0x260 [ 1549.009514] ? __ia32_sys_read+0xb0/0xb0 [ 1549.010340] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1549.011401] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1549.012467] ? trace_hardirqs_on+0x5b/0x180 [ 1549.013344] do_syscall_64+0x33/0x40 [ 1549.014104] entry_SYSCALL_64_after_hwframe+0x61/0xc6 [ 1549.015164] RIP: 0033:0x7f44f9a2eb19 [ 1549.015918] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1549.019636] RSP: 002b:00007f44f6fa4188 EFLAGS: 00000246 ORIG_RAX: 00000000000001b3 [ 1549.021174] RAX: ffffffffffffffda RBX: 00007f44f9b41f60 RCX: 00007f44f9a2eb19 [ 1549.022638] RDX: 0000000000000000 RSI: 0000000000000058 RDI: 0000000020000140 [ 1549.024083] RBP: 00007f44f6fa41d0 R08: 0000000000000000 R09: 0000000000000000 [ 1549.025531] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 1549.026974] R13: 00007ffe83cb2bbf R14: 00007f44f6fa4300 R15: 0000000000022000 19:34:21 executing program 4: clone3(&(0x7f0000000140)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x10000200, 0x0, 0x0}, 0x58) 19:34:21 executing program 0: clone3(&(0x7f0000000140)={0xffffffff00000000, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) 19:34:21 executing program 6: syz_open_dev$sg(0x0, 0x0, 0x0) syz_io_uring_setup(0x4ee5, &(0x7f0000000080)={0x0, 0x0, 0x2400}, &(0x7f0000ffd000/0x3000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000040), &(0x7f0000000100)) 19:34:21 executing program 3: creat(0x0, 0x0) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) clone3(&(0x7f0000000140)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0, 0x20010}, 0x58) 19:34:21 executing program 4: clone3(&(0x7f0000000140)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x11000000, 0x0, 0x0}, 0x58) 19:34:21 executing program 0: clone3(&(0x7f0000000140)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) 19:34:21 executing program 2: perf_event_open(&(0x7f0000000200)={0x2, 0x80, 0x8, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) creat(0x0, 0x0) syz_io_uring_setup(0x44af, &(0x7f0000000100)={0x0, 0x2, 0x0, 0x0, 0x389}, &(0x7f0000000000/0x12000)=nil, &(0x7f000000e000/0x1000)=nil, &(0x7f0000000080), &(0x7f0000000040)) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) clone3(&(0x7f0000000140)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) (fail_nth: 31) 19:34:21 executing program 6: syz_open_dev$sg(0x0, 0x0, 0x0) syz_io_uring_setup(0x4ee5, &(0x7f0000000080)={0x0, 0x0, 0x2a00}, &(0x7f0000ffd000/0x3000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000040), &(0x7f0000000100)) 19:34:21 executing program 4: clone3(&(0x7f0000000140)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x1ffff000, 0x0, 0x0}, 0x58) [ 1549.308338] FAULT_INJECTION: forcing a failure. [ 1549.308338] name failslab, interval 1, probability 0, space 0, times 0 [ 1549.311231] CPU: 0 PID: 39736 Comm: syz-executor.2 Not tainted 5.10.185 #1 [ 1549.312640] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1549.314322] Call Trace: [ 1549.314858] dump_stack+0x107/0x167 [ 1549.315592] should_fail.cold+0x5/0xa [ 1549.316358] ? create_object.isra.0+0x3a/0xa20 [ 1549.317275] should_failslab+0x5/0x20 [ 1549.318043] kmem_cache_alloc+0x5b/0x310 [ 1549.318865] create_object.isra.0+0x3a/0xa20 [ 1549.319744] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 1549.320767] kmem_cache_alloc+0x159/0x310 [ 1549.321623] vm_area_dup+0x78/0x290 [ 1549.322373] ? copy_page_range+0x24fe/0x3820 [ 1549.323300] ? vm_area_alloc+0x110/0x110 [ 1549.324133] ? find_held_lock+0x2c/0x110 [ 1549.324967] ? vm_iomap_memory+0x190/0x190 [ 1549.325850] ? __vma_link_rb+0x540/0x700 [ 1549.326682] dup_mm+0x44d/0x1110 [ 1549.327393] ? vm_area_dup+0x290/0x290 [ 1549.328190] ? __raw_spin_lock_init+0x36/0x110 [ 1549.329120] copy_process+0x24e2/0x6740 [ 1549.329939] ? lock_acquire+0x197/0x470 [ 1549.330743] ? find_held_lock+0x2c/0x110 [ 1549.331578] ? __cleanup_sighand+0xb0/0xb0 [ 1549.332443] ? _copy_from_user+0xfb/0x1b0 [ 1549.333285] kernel_clone+0xe7/0x980 [ 1549.334045] ? lock_acquire+0x197/0x470 [ 1549.334846] ? create_io_thread+0xf0/0xf0 [ 1549.335701] ? ksys_write+0x21a/0x260 [ 1549.336483] ? lock_downgrade+0x6d0/0x6d0 [ 1549.337338] __do_sys_clone3+0x1e5/0x320 [ 1549.338169] ? __do_sys_clone+0x110/0x110 [ 1549.339038] ? rcu_read_lock_any_held+0x75/0xa0 [ 1549.339986] ? vfs_write+0x354/0xa70 [ 1549.340752] ? fput_many+0x2f/0x1a0 [ 1549.341501] ? ksys_write+0x1a9/0x260 [ 1549.342274] ? __ia32_sys_read+0xb0/0xb0 [ 1549.343092] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1549.344145] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1549.345182] ? trace_hardirqs_on+0x5b/0x180 [ 1549.346080] do_syscall_64+0x33/0x40 [ 1549.346843] entry_SYSCALL_64_after_hwframe+0x61/0xc6 [ 1549.347875] RIP: 0033:0x7f44f9a2eb19 [ 1549.348634] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1549.352345] RSP: 002b:00007f44f6fa4188 EFLAGS: 00000246 ORIG_RAX: 00000000000001b3 [ 1549.353914] RAX: ffffffffffffffda RBX: 00007f44f9b41f60 RCX: 00007f44f9a2eb19 [ 1549.355358] RDX: 0000000000000000 RSI: 0000000000000058 RDI: 0000000020000140 [ 1549.356790] RBP: 00007f44f6fa41d0 R08: 0000000000000000 R09: 0000000000000000 [ 1549.358245] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 1549.359689] R13: 00007ffe83cb2bbf R14: 00007f44f6fa4300 R15: 0000000000022000 19:34:21 executing program 7: fcntl$getflags(0xffffffffffffffff, 0x408) ioctl$AUTOFS_IOC_FAIL(0xffffffffffffffff, 0x9361, 0x3) perf_event_open(&(0x7f0000000200)={0x2, 0x80, 0x8, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0xd, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x200000, 0x0, 0xfff}, 0x0, 0x1, 0xffffffffffffffff, 0xa) creat(0x0, 0x0) r0 = clone3(&(0x7f0000000140)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) r1 = open$dir(&(0x7f0000000080)='./file0\x00', 0x181200, 0x108) openat(r1, &(0x7f00000000c0)='./file0\x00', 0x1, 0x0) perf_event_open(&(0x7f0000000000)={0x2, 0x80, 0x1, 0x7, 0x1, 0x6, 0x0, 0x0, 0x280, 0x8, 0x0, 0x1, 0x1, 0x1, 0x0, 0x1, 0x1, 0x1, 0x1, 0x1, 0x1, 0x1, 0x1, 0x0, 0x1, 0x2, 0x1, 0x0, 0x1, 0x0, 0x1, 0x0, 0x1, 0x0, 0x1, 0x0, 0x0, 0x1, 0x1, 0x1, 0x0, 0x0, 0x0, 0x1, 0x0, 0x1, 0x0, 0x0, 0x8, 0x2, @perf_config_ext={0x1ff}, 0x2008, 0x20, 0x8, 0x8, 0x3, 0xc16d, 0x9, 0x0, 0x80, 0x0, 0x7714}, r0, 0x9, 0xffffffffffffffff, 0x0) write(0xffffffffffffffff, 0x0, 0x0) 19:34:21 executing program 1: r0 = perf_event_open(0x0, 0x0, 0x10, 0xffffffffffffffff, 0x8) perf_event_open(&(0x7f0000000280)={0x3, 0x80, 0xff, 0x5, 0x4, 0x8, 0x0, 0x4, 0x300, 0x0, 0x1, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x1, 0x1, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x1, 0x0, 0x0, 0x1, 0x1, 0x0, 0x0, 0x1, 0x1, 0x1, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x1, 0x0, 0x1, 0x1, 0x0, 0xfffffff7, 0x1, @perf_bp={&(0x7f0000000300), 0x6}, 0x800, 0x1f, 0x3f, 0x9, 0x3, 0x20, 0x5, 0x0, 0x8001}, 0x0, 0x5, 0xffffffffffffffff, 0x1) ioctl$AUTOFS_DEV_IOCTL_TIMEOUT(0xffffffffffffffff, 0xc018937a, &(0x7f0000000080)=ANY=[@ANYBLOB="010000000100000018000000", @ANYRES32=r0, @ANYBLOB="f9ffffffffffffff2e2f66696c6530007e815c19197a45dbd394934c63976c5348e922551d84b1e8b0dcf3c40f2023b93eadb2d391b74c7ee70bd2a8e15e5547ff91959be1108b20e448f2c40da84b03bcfb8c21b8010fd3153f97938eefe31dbd37cc79dfeeb5b84c4d96"]) r1 = openat$null(0xffffffffffffff9c, &(0x7f0000000040), 0x10002, 0x0) ioctl$AUTOFS_DEV_IOCTL_PROTOSUBVER(r1, 0xc0189373, &(0x7f0000000340)=ANY=[@ANYBLOB="e1000000000000001800001d94bdb6925efd0078e47eb7f10f95a0292428ec000000146d8438892a0894baa9eb7c7e49436a734bff11402a3329d41af92fea4fec07b2f23a0b9bd6", @ANYRES32=r0, @ANYBLOB="05000000000000002e2f66696c653000"]) perf_event_open(&(0x7f00000001c0)={0x5, 0x80, 0x80, 0x7f, 0x4, 0x1, 0x0, 0x10001, 0x804, 0x6, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x0, 0x1, 0x0, 0x1, 0x0, 0x0, 0x1, 0x1, 0x1, 0x0, 0x1, 0x1, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x1, 0x1, 0x1, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x6, 0x2, @perf_bp={&(0x7f0000000100)}, 0x80, 0xffff, 0x6, 0x9, 0x3f, 0x3f, 0x1, 0x0, 0x1, 0x0, 0x2}, 0x0, 0x0, r2, 0x1) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x10, 0xffffffffffffffff, 0x0) clone3(&(0x7f0000000140)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) openat(r1, &(0x7f0000000000)='./file0\x00', 0x0, 0x11) 19:34:21 executing program 6: syz_open_dev$sg(0x0, 0x0, 0x0) syz_io_uring_setup(0x4ee5, &(0x7f0000000080)={0x0, 0x0, 0x3000}, &(0x7f0000ffd000/0x3000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000040), &(0x7f0000000100)) 19:34:35 executing program 2: perf_event_open(&(0x7f0000000200)={0x2, 0x80, 0x8, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) creat(0x0, 0x0) syz_io_uring_setup(0x44af, &(0x7f0000000100)={0x0, 0x2, 0x0, 0x0, 0x389}, &(0x7f0000000000/0x12000)=nil, &(0x7f000000e000/0x1000)=nil, &(0x7f0000000080), &(0x7f0000000040)) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) clone3(&(0x7f0000000140)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) (fail_nth: 32) 19:34:35 executing program 3: creat(0x0, 0x0) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) clone3(&(0x7f0000000140)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0, 0x20200}, 0x58) 19:34:35 executing program 7: r0 = perf_event_open(&(0x7f0000000200)={0x2, 0x80, 0x8, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r1 = creat(0x0, 0x0) r2 = openat$cgroup_int(r1, &(0x7f0000000000)='blkio.throttle.read_bps_device\x00', 0x2, 0x0) sendfile(0xffffffffffffffff, r0, &(0x7f0000000040)=0x3, 0x81) r3 = socket$netlink(0x10, 0x3, 0x0) sendmsg$nl_generic(r3, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000000)={0x2c, 0x16, 0x1, 0x0, 0x0, {0xa}, [@nested={0x18, 0x0, 0x0, 0x1, [@typed={0x14, 0xa, 0x0, 0x0, @ipv6=@private1}]}]}, 0x2c}}, 0x0) fcntl$dupfd(r0, 0x0, r3) kcmp(0xffffffffffffffff, 0xffffffffffffffff, 0x6, r2, r1) clone3(&(0x7f0000000140)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) write(0xffffffffffffffff, 0x0, 0x0) 19:34:35 executing program 5: r0 = perf_event_open(&(0x7f0000000200)={0x2, 0x80, 0x8, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r1 = syz_io_uring_setup(0x44af, &(0x7f0000000100)={0x0, 0x2, 0x0, 0x0, 0x389}, &(0x7f0000000000/0x12000)=nil, &(0x7f000000e000/0x1000)=nil, &(0x7f0000000080), &(0x7f0000000040)) write(r0, &(0x7f0000000280)="94071fd7496987f5d7faff592693e1489df42747086df821ee14248cfe877c3dfddb28050c81d7778533bf6df5f0a18c6f955e4d2a0f08bdf7fbba5d9fa9f21158b7ea833603c6b60d3fe37e4de6ba7625bba9d8a28787b7a7767202f04f3e551ba2cebf87ff38b4875a9c8628eb7da77b354febb54d86584041858b04374b9ed59c074bbb9a14bb0bd43755d30d7107cbba664b0f7eedf1bad88175e100d77eb6e26eb7eaa1167363ef673e370ca834945edd4ce3d8186bd4c276ed8a9daba6170d3c33be52187830e92e4438840ac85d080b8de268c1f93793202d378676cbf5ac7c75700090b5d240d898455d12c648e9d56fdcd84a", 0xf7) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) clone3(&(0x7f0000000140)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) write(0xffffffffffffffff, &(0x7f0000000100)='?', 0x1) ioctl$RTC_UIE_ON(0xffffffffffffffff, 0x7003) r2 = dup2(r0, r1) sendmsg$NFNL_MSG_CTHELPER_GET(r2, &(0x7f00000001c0)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x1000000}, 0xc, &(0x7f00000000c0)={&(0x7f0000000380)={0x78, 0x1, 0x9, 0x3, 0x0, 0x0, {0x3, 0x0, 0x7}, [@NFCTH_STATUS={0x8}, @NFCTH_TUPLE={0x38, 0x2, [@CTA_TUPLE_PROTO={0xc, 0x2, 0x0, 0x1, {0x5, 0x1, 0x3a}}, @CTA_TUPLE_PROTO={0xc, 0x2, 0x0, 0x1, {0x5}}, @CTA_TUPLE_ZONE={0x6}, @CTA_TUPLE_IP={0x14, 0x1, 0x0, 0x1, @ipv4={{0x8, 0x1, @multicast1}, {0x8, 0x2, @initdev={0xac, 0x1e, 0x1, 0x0}}}}]}, @NFCTH_NAME={0x9, 0x1, 'syz0\x00'}, @NFCTH_NAME={0x9, 0x1, 'syz1\x00'}, @NFCTH_NAME={0x9, 0x1, 'syz1\x00'}]}, 0x78}, 0x1, 0x0, 0x0, 0x1}, 0x8c10) 19:34:35 executing program 4: clone3(&(0x7f0000000140)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x20000000, 0x0, 0x0}, 0x58) 19:34:35 executing program 6: syz_open_dev$sg(0x0, 0x0, 0x0) syz_io_uring_setup(0x4ee5, &(0x7f0000000080)={0x0, 0x0, 0x3600}, &(0x7f0000ffd000/0x3000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000040), &(0x7f0000000100)) 19:34:35 executing program 0: clone3(&(0x7f0000000140)={0x0, 0x0, 0x0, 0x0, {0x8}, 0x0, 0x0, 0x0, 0x0}, 0x58) 19:34:35 executing program 1: perf_event_open(0x0, 0x0, 0x7, 0xffffffffffffffff, 0x0) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) clone3(&(0x7f0000000140)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) 19:34:35 executing program 4: clone3(&(0x7f0000000140)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x3f000000, 0x0, 0x0}, 0x58) [ 1563.642636] netlink: 'syz-executor.7': attribute type 10 has an invalid length. [ 1563.649724] FAULT_INJECTION: forcing a failure. [ 1563.649724] name fail_page_alloc, interval 1, probability 0, space 0, times 0 [ 1563.651044] CPU: 0 PID: 40078 Comm: syz-executor.2 Not tainted 5.10.185 #1 [ 1563.651760] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1563.652608] Call Trace: [ 1563.652889] dump_stack+0x107/0x167 [ 1563.653266] should_fail.cold+0x5/0xa [ 1563.653669] __alloc_pages_nodemask+0x182/0x600 [ 1563.654161] ? __alloc_pages_slowpath.constprop.0+0x2130/0x2130 [ 1563.654833] ? track_pfn_copy+0xaa/0x1d0 [ 1563.655296] alloc_pages_current+0x187/0x280 [ 1563.655816] get_zeroed_page+0x14/0xb0 [ 1563.656274] __pud_alloc+0x33/0x270 [ 1563.656820] copy_page_range+0x2cb6/0x3820 [ 1563.657294] ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0 [ 1563.657919] ? find_held_lock+0x2c/0x110 [ 1563.658369] ? vm_iomap_memory+0x190/0x190 [ 1563.658834] ? up_write+0x191/0x550 [ 1563.659239] ? downgrade_write+0x3a0/0x3a0 [ 1563.659706] ? down_write_killable+0x180/0x180 [ 1563.660236] ? __vma_link_rb+0x540/0x700 [ 1563.660712] dup_mm+0x8b9/0x1110 [ 1563.661108] ? vm_area_dup+0x290/0x290 [ 1563.661566] ? __raw_spin_lock_init+0x36/0x110 [ 1563.662099] copy_process+0x24e2/0x6740 [ 1563.662556] ? lock_acquire+0x197/0x470 [ 1563.662987] ? find_held_lock+0x2c/0x110 [ 1563.663477] ? __cleanup_sighand+0xb0/0xb0 [ 1563.663966] ? _copy_from_user+0xfb/0x1b0 [ 1563.664450] kernel_clone+0xe7/0x980 [ 1563.664880] ? lock_acquire+0x197/0x470 [ 1563.665345] ? create_io_thread+0xf0/0xf0 [ 1563.665846] ? ksys_write+0x21a/0x260 [ 1563.666290] ? lock_downgrade+0x6d0/0x6d0 [ 1563.666782] __do_sys_clone3+0x1e5/0x320 [ 1563.667249] ? __do_sys_clone+0x110/0x110 [ 1563.667713] ? rcu_read_lock_any_held+0x75/0xa0 [ 1563.668239] ? vfs_write+0x354/0xa70 [ 1563.668645] ? fput_many+0x2f/0x1a0 [ 1563.669066] ? ksys_write+0x1a9/0x260 [ 1563.669527] ? __ia32_sys_read+0xb0/0xb0 [ 1563.670013] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1563.670622] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1563.671222] ? trace_hardirqs_on+0x5b/0x180 [ 1563.671719] do_syscall_64+0x33/0x40 [ 1563.672161] entry_SYSCALL_64_after_hwframe+0x61/0xc6 [ 1563.672767] RIP: 0033:0x7f44f9a2eb19 [ 1563.673226] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1563.675455] RSP: 002b:00007f44f6fa4188 EFLAGS: 00000246 ORIG_RAX: 00000000000001b3 [ 1563.676280] RAX: ffffffffffffffda RBX: 00007f44f9b41f60 RCX: 00007f44f9a2eb19 [ 1563.677118] RDX: 0000000000000000 RSI: 0000000000000058 RDI: 0000000020000140 [ 1563.677957] RBP: 00007f44f6fa41d0 R08: 0000000000000000 R09: 0000000000000000 [ 1563.678717] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 1563.679512] R13: 00007ffe83cb2bbf R14: 00007f44f6fa4300 R15: 0000000000022000 19:34:36 executing program 6: syz_open_dev$sg(0x0, 0x0, 0x0) syz_io_uring_setup(0x4ee5, &(0x7f0000000080)={0x0, 0x0, 0x3c00}, &(0x7f0000ffd000/0x3000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000040), &(0x7f0000000100)) 19:34:36 executing program 6: syz_open_dev$sg(0x0, 0x0, 0x0) syz_io_uring_setup(0x4ee5, &(0x7f0000000080)={0x0, 0x0, 0x4000}, &(0x7f0000ffd000/0x3000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000040), &(0x7f0000000100)) 19:34:36 executing program 6: syz_open_dev$sg(0x0, 0x0, 0x0) syz_io_uring_setup(0x4ee5, &(0x7f0000000080)={0x0, 0x0, 0x4200}, &(0x7f0000ffd000/0x3000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000040), &(0x7f0000000100)) 19:34:36 executing program 4: clone3(&(0x7f0000000140)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x40000000, 0x0, 0x0}, 0x58) 19:34:36 executing program 3: creat(0x0, 0x0) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) clone3(&(0x7f0000000140)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0, 0x80000}, 0x58) 19:34:36 executing program 6: syz_open_dev$sg(0x0, 0x0, 0x0) syz_io_uring_setup(0x4ee5, &(0x7f0000000080)={0x0, 0x0, 0x6000}, &(0x7f0000ffd000/0x3000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000040), &(0x7f0000000100)) [ 1563.916404] ------------[ cut here ]------------ [ 1563.917343] WARNING: CPU: 0 PID: 40078 at arch/x86/mm/pat/memtype.c:1097 untrack_pfn+0x24e/0x2a0 [ 1563.918349] Modules linked in: [ 1563.918783] CPU: 0 PID: 40078 Comm: syz-executor.2 Not tainted 5.10.185 #1 [ 1563.919581] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1563.920535] RIP: 0010:untrack_pfn+0x24e/0x2a0 [ 1563.921057] Code: ff ff e8 25 28 2e 00 4c 89 ee 4c 89 e7 e8 ea da ff ff e8 15 28 2e 00 48 85 db 0f 85 54 ff ff ff e9 7b ff ff ff e8 02 28 2e 00 <0f> 0b e9 6f ff ff ff 48 89 df e8 53 d9 59 00 e9 91 fe ff ff e8 29 [ 1563.923080] RSP: 0018:ffff88806148f6b8 EFLAGS: 00010216 [ 1563.923711] RAX: 00000000000191b5 RBX: ffff88800ceca200 RCX: ffffc90006a20000 [ 1563.924531] RDX: 0000000000040000 RSI: ffffffff81123b2e RDI: 0000000000000005 [ 1563.925371] RBP: 1ffff1100c291ed7 R08: 0000000000000000 R09: ffff88806148f640 [ 1563.926222] R10: 0000000000000000 R11: 0000000000000001 R12: 00000000ffffffea [ 1563.928551] R13: 0000000000000000 R14: 0000000000000000 R15: ffff88800ceca250 [ 1563.931203] FS: 00007f44f6fa4700(0000) GS:ffff88806ce00000(0000) knlGS:0000000000000000 [ 1563.933363] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 1563.934042] CR2: 00007f0e33ea8344 CR3: 000000005ada0000 CR4: 0000000000350ef0 [ 1563.934858] Call Trace: [ 1563.935185] ? __warn+0xe2/0x1f0 [ 1563.935583] ? untrack_pfn+0x24e/0x2a0 [ 1563.936057] ? report_bug+0x1c1/0x210 [ 1563.936537] ? handle_bug+0x41/0x90 [ 1563.936964] ? exc_invalid_op+0x14/0x50 [ 1563.937437] ? asm_exc_invalid_op+0x12/0x20 [ 1563.937984] ? untrack_pfn+0x24e/0x2a0 [ 1563.938424] ? untrack_pfn+0x24e/0x2a0 [ 1563.938904] ? untrack_pfn+0x24e/0x2a0 [ 1563.939365] ? track_pfn_insert+0x150/0x150 [ 1563.939897] ? vm_normal_page+0x2e0/0x2e0 [ 1563.940398] ? uprobe_munmap+0x1c/0x560 [ 1563.940885] ? unmap_single_vma+0x183/0x300 [ 1563.941403] unmap_single_vma+0x1bc/0x300 [ 1563.941933] unmap_vmas+0x16d/0x300 [ 1563.942374] ? zap_vma_ptes+0x100/0x100 [ 1563.942945] exit_mmap+0x27f/0x4f0 [ 1563.943375] ? __ia32_sys_remap_file_pages+0x150/0x150 [ 1563.944053] mmput+0xca/0x340 [ 1563.944433] dup_mm+0xa46/0x1110 [ 1563.944893] ? vm_area_dup+0x290/0x290 [ 1563.945368] ? __raw_spin_lock_init+0x36/0x110 [ 1563.945964] copy_process+0x24e2/0x6740 [ 1563.946414] ? lock_acquire+0x197/0x470 [ 1563.946875] ? find_held_lock+0x2c/0x110 [ 1563.947394] ? __cleanup_sighand+0xb0/0xb0 [ 1563.947915] ? _copy_from_user+0xfb/0x1b0 [ 1563.948423] kernel_clone+0xe7/0x980 [ 1563.948874] ? lock_acquire+0x197/0x470 [ 1563.949354] ? create_io_thread+0xf0/0xf0 [ 1563.949918] ? ksys_write+0x21a/0x260 [ 1563.950395] ? lock_downgrade+0x6d0/0x6d0 [ 1563.950904] __do_sys_clone3+0x1e5/0x320 [ 1563.951364] ? __do_sys_clone+0x110/0x110 [ 1563.951948] ? rcu_read_lock_any_held+0x75/0xa0 [ 1563.952494] ? vfs_write+0x354/0xa70 [ 1563.952965] ? fput_many+0x2f/0x1a0 [ 1563.953423] ? ksys_write+0x1a9/0x260 [ 1563.953915] ? __ia32_sys_read+0xb0/0xb0 [ 1563.954415] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1563.955036] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1563.955637] ? trace_hardirqs_on+0x5b/0x180 [ 1563.956174] do_syscall_64+0x33/0x40 [ 1563.956606] entry_SYSCALL_64_after_hwframe+0x61/0xc6 [ 1563.957212] RIP: 0033:0x7f44f9a2eb19 [ 1563.957656] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1563.959680] RSP: 002b:00007f44f6fa4188 EFLAGS: 00000246 ORIG_RAX: 00000000000001b3 [ 1563.960592] RAX: ffffffffffffffda RBX: 00007f44f9b41f60 RCX: 00007f44f9a2eb19 [ 1563.961401] RDX: 0000000000000000 RSI: 0000000000000058 RDI: 0000000020000140 [ 1563.962271] RBP: 00007f44f6fa41d0 R08: 0000000000000000 R09: 0000000000000000 [ 1563.963082] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 1563.963911] R13: 00007ffe83cb2bbf R14: 00007f44f6fa4300 R15: 0000000000022000 [ 1563.964779] irq event stamp: 2875 [ 1563.965227] hardirqs last enabled at (2893): [] console_unlock+0x92d/0xb40 [ 1563.966208] hardirqs last disabled at (2908): [] sysvec_apic_timer_interrupt+0xb/0xa0 [ 1563.967257] softirqs last enabled at (1546): [] asm_call_irq_on_stack+0x12/0x20 [ 1563.968307] softirqs last disabled at (1417): [] asm_call_irq_on_stack+0x12/0x20 [ 1563.969309] ---[ end trace 3fae0b4dd5dcbab7 ]--- VM DIAGNOSIS: 19:34:36 Registers: info registers vcpu 0 RAX=0000000000000030 RBX=00000000000003f8 RCX=0000000000000000 RDX=00000000000003f8 RSI=ffffffff822c3691 RDI=ffffffff879e4160 RBP=ffffffff879e4120 RSP=ffff88806148f0c8 R8 =0000000000000001 R9 =0000000000000003 R10=0000000000000000 R11=0000000000000001 R12=0000000000000030 R13=0000000000000030 R14=ffffffff879e4120 R15=dffffc0000000000 RIP=ffffffff822c36e8 RFL=00000002 [-------] CPL=0 II=0 A20=1 SMM=0 HLT=0 ES =0000 0000000000000000 00000000 00000000 CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA] SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS [-WA] DS =0000 0000000000000000 00000000 00000000 FS =0000 00007f44f6fa4700 00000000 00000000 GS =0000 ffff88806ce00000 00000000 00000000 LDT=0000 fffffe0000000000 00000000 00000000 TR =0040 fffffe0000003000 00004087 00008b00 DPL=0 TSS64-busy GDT= fffffe0000001000 0000007f IDT= fffffe0000000000 00000fff CR0=80050033 CR2=00007f0e33ea8344 CR3=000000005ada0000 CR4=00350ef0 DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 DR6=00000000ffff0ff0 DR7=0000000000000400 EFER=0000000000000d01 FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80 FPR0=0000000000000000 0000 FPR1=0000000000000000 0000 FPR2=0000000000000000 0000 FPR3=0000000000000000 0000 FPR4=0000000000000000 0000 FPR5=0000000000000000 0000 FPR6=0000000000000000 0000 FPR7=0000000000000000 0000 XMM00=00000000000000000000000000000000 XMM01=ffffffffffffffffffffffffffffffff XMM02=00000000000000000000000000000000 XMM03=00000000000000000000000000000000 XMM04=000000000000000000000000000000ff XMM05=00000000000000000000000000000000 XMM06=0000000000000000000000524f525245 XMM07=00000000000000000000000000000000 XMM08=000000000000000000524f5252450040 XMM09=00000000000000000000000000000000 XMM10=00000000000000000000000000000000 XMM11=00000000000000000000000000000000 XMM12=00000000000000000000000000000000 XMM13=00000000000000000000000000000000 XMM14=00000000000000000000000000000000 XMM15=00000000000000000000000000000000 info registers vcpu 1 RAX=dffffc0000000000 RBX=ffff88806cf3c000 RCX=ffffffff81270adf RDX=0000000000000000 RSI=0000000000000008 RDI=ffff88806cf3c128 RBP=0000000000000000 RSP=ffff88804565fd20 R8 =0000000000000000 R9 =ffffffff8567064f R10=fffffbfff0ace0c9 R11=0000000000000001 R12=0000000000000002 R13=0000000000000000 R14=ffffffff84ff7fa0 R15=0000000000000000 RIP=ffffffff812dc4d3 RFL=00000212 [----A--] CPL=0 II=0 A20=1 SMM=0 HLT=0 ES =0000 0000000000000000 00000000 00000000 CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA] SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS [-WA] DS =0000 0000000000000000 00000000 00000000 FS =0000 0000555556059400 00000000 00000000 GS =0000 ffff88806cf00000 00000000 00000000 LDT=0000 fffffe0000000000 00000000 00000000 TR =0040 fffffe000004a000 00004087 00008b00 DPL=0 TSS64-busy GDT= fffffe0000048000 0000007f IDT= fffffe0000000000 00000fff CR0=80050033 CR2=0000555556062c58 CR3=0000000045654000 CR4=00350ee0 DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 DR6=00000000ffff0ff0 DR7=0000000000000400 EFER=0000000000000d01 FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80 FPR0=0000000000000000 0000 FPR1=0000000000000000 0000 FPR2=0000000000000000 0000 FPR3=0000000000000000 0000 FPR4=0000000000000000 0000 FPR5=0000000000000000 0000 FPR6=0000000000000000 0000 FPR7=0000000000000000 0000 XMM00=0000000000000000ff000000000000ff XMM01=25252525252525252525252525252525 XMM02=00000000000000000000000000000000 XMM03=00000000000000000000000000000000 XMM04=000000000000000000000000000000ff XMM05=00000000000000000000000000000000 XMM06=0000000000000000000000524f525245 XMM07=00000000000000000000000000000000 XMM08=000000000000000000524f5252450040 XMM09=00000000000000000000000000000000 XMM10=00000000000000000000000000000000 XMM11=00000000000000000000000000000000 XMM12=00000000000000000000000000000000 XMM13=00000000000000000000000000000000 XMM14=00000000000000000000000000000000 XMM15=00000000000000000000000000000000