, {[{@nodevmap}]}}) (fail_nth: 8)

21:14:28 executing program 3:
openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x105142, 0x0)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x400}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
pipe(&(0x7f00000001c0)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
mount$9p_fd(0x0, &(0x7f0000000040)='./file1\x00', &(0x7f00000000c0), 0x0, &(0x7f0000000280)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {}, 0x2c, {[{@nodevmap}]}}) (fail_nth: 15)
openat(r1, &(0x7f0000000180)='./file1\x00', 0x0, 0x0)

[ 2021.972341] RDX: 00000000200000c0 RSI: 0000000020000040 RDI: 0000000000000000
[ 2021.972349] RBP: 00007f9bc78cf1d0 R08: 0000000020000280 R09: 0000000000000000
[ 2021.972358] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[ 2021.972367] R13: 00007fffb54b7e9f R14: 00007f9bc78cf300 R15: 0000000000022000
[ 2021.977203] FAULT_INJECTION: forcing a failure.
[ 2021.977203] name fail_usercopy, interval 1, probability 0, space 0, times 0
[ 2021.977232] CPU: 0 PID: 16965 Comm: syz-executor.5 Not tainted 5.10.172 #1
[ 2021.977239] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 2021.977244] Call Trace:
[ 2021.977262]  dump_stack+0x107/0x167
[ 2021.977277]  should_fail.cold+0x5/0xa
[ 2021.977297]  strncpy_from_user+0x34/0x470
[ 2021.977320]  getname_flags.part.0+0x95/0x4f0
[ 2021.977332]  ? _copy_from_user+0xfb/0x1b0
[ 2021.977348]  user_path_at_empty+0xa1/0x100
[ 2021.977366]  __x64_sys_mount+0x1e9/0x300
[ 2021.977382]  ? copy_mnt_ns+0xa00/0xa00
[ 2021.977402]  ? rcu_read_lock_sched_held+0x3e/0x80
[ 2021.977421]  do_syscall_64+0x33/0x40
[ 2021.977435]  entry_SYSCALL_64_after_hwframe+0x61/0xc6
[ 2021.977444] RIP: 0033:0x7f38308e8b19
[ 2021.977457] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 2021.977464] RSP: 002b:00007f382de5e188 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5
[ 2021.977479] RAX: ffffffffffffffda RBX: 00007f38309fbf60 RCX: 00007f38308e8b19
[ 2021.977487] RDX: 00000000200000c0 RSI: 0000000020000040 RDI: 0000000000000000
[ 2021.977495] RBP: 00007f382de5e1d0 R08: 0000000020000280 R09: 0000000000000000
[ 2021.977502] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[ 2021.977510] R13: 00007ffca2bf07df R14: 00007f382de5e300 R15: 0000000000022000
[ 2021.983594] FAT-fs (loop6): invalid media value (0x00)
[ 2021.983606] FAT-fs (loop6): Can't find a valid FAT filesystem
[ 2021.995268] 9pnet: Insufficient options for proto=fd
[ 2022.200620] FAULT_INJECTION: forcing a failure.
[ 2022.200620] name failslab, interval 1, probability 0, space 0, times 0
[ 2022.200704] CPU: 1 PID: 16981 Comm: syz-executor.3 Not tainted 5.10.172 #1
[ 2022.200712] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 2022.200717] Call Trace:
[ 2022.200738]  dump_stack+0x107/0x167
[ 2022.200757]  should_fail.cold+0x5/0xa
[ 2022.200775]  ? v9fs_mount+0x5a/0x8f0
[ 2022.200797]  should_failslab+0x5/0x20
[ 2022.200814]  kmem_cache_alloc_trace+0x55/0x360
[ 2022.200838]  ? v9fs_write_inode+0x60/0x60
[ 2022.200857]  v9fs_mount+0x5a/0x8f0
[ 2022.200881]  ? v9fs_write_inode+0x60/0x60
[ 2022.200900]  legacy_get_tree+0x105/0x220
[ 2022.200926]  vfs_get_tree+0x8e/0x300
[ 2022.200947]  path_mount+0x13be/0x20b0
[ 2022.200972]  ? strncpy_from_user+0x9e/0x470
[ 2022.200995]  ? finish_automount+0xa40/0xa40
[ 2022.201015]  ? getname_flags.part.0+0x1dd/0x4f0
[ 2022.201029]  ? _copy_from_user+0xfb/0x1b0
[ 2022.201056]  __x64_sys_mount+0x282/0x300
[ 2022.201073]  ? copy_mnt_ns+0xa00/0xa00
[ 2022.201095]  ? rcu_read_lock_sched_held+0x3e/0x80
[ 2022.201116]  do_syscall_64+0x33/0x40
[ 2022.201132]  entry_SYSCALL_64_after_hwframe+0x61/0xc6
[ 2022.201142] RIP: 0033:0x7f68c9012b19
[ 2022.201155] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 2022.201164] RSP: 002b:00007f68c6588188 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5
[ 2022.201180] RAX: ffffffffffffffda RBX: 00007f68c9125f60 RCX: 00007f68c9012b19
[ 2022.201189] RDX: 00000000200000c0 RSI: 0000000020000040 RDI: 0000000000000000
[ 2022.201198] RBP: 00007f68c65881d0 R08: 0000000020000280 R09: 0000000000000000
[ 2022.201206] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[ 2022.201215] R13: 00007ffe8a1e19df R14: 00007f68c6588300 R15: 0000000000022000
[ 2022.217020] FAULT_INJECTION: forcing a failure.
[ 2022.217020] name failslab, interval 1, probability 0, space 0, times 0
[ 2022.217051] CPU: 0 PID: 16986 Comm: syz-executor.1 Not tainted 5.10.172 #1
[ 2022.217059] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 2022.217063] Call Trace:
[ 2022.217082]  dump_stack+0x107/0x167
[ 2022.217101]  should_fail.cold+0x5/0xa
[ 2022.217119]  ? getname_flags.part.0+0x50/0x4f0
[ 2022.217135]  should_failslab+0x5/0x20
[ 2022.217148]  kmem_cache_alloc+0x5b/0x360
[ 2022.217170]  getname_flags.part.0+0x50/0x4f0
[ 2022.217184]  ? _copy_from_user+0xfb/0x1b0
[ 2022.217200]  user_path_at_empty+0xa1/0x100
[ 2022.217221]  __x64_sys_mount+0x1e9/0x300
[ 2022.217236]  ? copy_mnt_ns+0xa00/0xa00
[ 2022.217257]  ? rcu_read_lock_sched_held+0x3e/0x80
[ 2022.217278]  do_syscall_64+0x33/0x40
[ 2022.217294]  entry_SYSCALL_64_after_hwframe+0x61/0xc6
[ 2022.217304] RIP: 0033:0x7f9bca359b19
[ 2022.217318] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 2022.217325] RSP: 002b:00007f9bc78cf188 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5
[ 2022.217412] RAX: ffffffffffffffda RBX: 00007f9bca46cf60 RCX: 00007f9bca359b19
[ 2022.217421] RDX: 00000000200000c0 RSI: 0000000020000040 RDI: 0000000000000000
[ 2022.217429] RBP: 00007f9bc78cf1d0 R08: 0000000020000280 R09: 0000000000000000
[ 2022.217436] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[ 2022.217445] R13: 00007fffb54b7e9f R14: 00007f9bc78cf300 R15: 0000000000022000
[ 2022.240909] FAULT_INJECTION: forcing a failure.
[ 2022.240909] name failslab, interval 1, probability 0, space 0, times 0
[ 2022.240956] CPU: 0 PID: 16987 Comm: syz-executor.5 Not tainted 5.10.172 #1
[ 2022.240963] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 2022.240968] Call Trace:
[ 2022.240988]  dump_stack+0x107/0x167
[ 2022.241006]  should_fail.cold+0x5/0xa
[ 2022.241024]  ? alloc_fs_context+0x57/0x840
[ 2022.241040]  should_failslab+0x5/0x20
[ 2022.241054]  kmem_cache_alloc_trace+0x55/0x360
[ 2022.241076]  alloc_fs_context+0x57/0x840
[ 2022.241100]  path_mount+0xa72/0x20b0
[ 2022.241119]  ? strncpy_from_user+0x9e/0x470
[ 2022.241136]  ? finish_automount+0xa40/0xa40
[ 2022.241153]  ? getname_flags.part.0+0x1dd/0x4f0
[ 2022.241166]  ? _copy_from_user+0xfb/0x1b0
[ 2022.241191]  __x64_sys_mount+0x282/0x300
[ 2022.241206]  ? copy_mnt_ns+0xa00/0xa00
[ 2022.241226]  ? rcu_read_lock_sched_held+0x3e/0x80
[ 2022.241246]  do_syscall_64+0x33/0x40
[ 2022.241261]  entry_SYSCALL_64_after_hwframe+0x61/0xc6
[ 2022.241271] RIP: 0033:0x7f38308e8b19
[ 2022.241284] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 2022.241292] RSP: 002b:00007f382de5e188 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5
[ 2022.241308] RAX: ffffffffffffffda RBX: 00007f38309fbf60 RCX: 00007f38308e8b19
[ 2022.241316] RDX: 00000000200000c0 RSI: 0000000020000040 RDI: 0000000000000000
[ 2022.241324] RBP: 00007f382de5e1d0 R08: 0000000020000280 R09: 0000000000000000
[ 2022.241331] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[ 2022.241404] R13: 00007ffca2bf07df R14: 00007f382de5e300 R15: 0000000000022000
[ 2022.370657] FAULT_INJECTION: forcing a failure.
[ 2022.370657] name failslab, interval 1, probability 0, space 0, times 0
[ 2022.370685] CPU: 1 PID: 16990 Comm: syz-executor.3 Not tainted 5.10.172 #1
[ 2022.370692] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 2022.370695] Call Trace:
[ 2022.370713]  dump_stack+0x107/0x167
[ 2022.370729]  should_fail.cold+0x5/0xa
[ 2022.370743]  ? create_object.isra.0+0x3a/0xa20
[ 2022.370757]  should_failslab+0x5/0x20
[ 2022.370768]  kmem_cache_alloc+0x5b/0x360
[ 2022.370780]  ? v9fs_mount+0x5a/0x8f0
[ 2022.370795]  create_object.isra.0+0x3a/0xa20
[ 2022.370806]  ? __kasan_kmalloc.constprop.0+0xc9/0xd0
[ 2022.370822]  kmem_cache_alloc_trace+0x151/0x360
[ 2022.370837]  ? v9fs_write_inode+0x60/0x60
[ 2022.370849]  v9fs_mount+0x5a/0x8f0
[ 2022.370863]  ? v9fs_write_inode+0x60/0x60
[ 2022.370876]  legacy_get_tree+0x105/0x220
[ 2022.370891]  vfs_get_tree+0x8e/0x300
[ 2022.370905]  path_mount+0x13be/0x20b0
[ 2022.370921]  ? strncpy_from_user+0x9e/0x470
[ 2022.370934]  ? finish_automount+0xa40/0xa40
[ 2022.370948]  ? getname_flags.part.0+0x1dd/0x4f0
[ 2022.370960]  ? _copy_from_user+0xfb/0x1b0
[ 2022.370980]  __x64_sys_mount+0x282/0x300
[ 2022.370994]  ? copy_mnt_ns+0xa00/0xa00
[ 2022.371011]  ? rcu_read_lock_sched_held+0x3e/0x80
[ 2022.371027]  do_syscall_64+0x33/0x40
[ 2022.371039]  entry_SYSCALL_64_after_hwframe+0x61/0xc6
[ 2022.371047] RIP: 0033:0x7f68c9012b19
[ 2022.371059] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 2022.371065] RSP: 002b:00007f68c6588188 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5
[ 2022.371080] RAX: ffffffffffffffda RBX: 00007f68c9125f60 RCX: 00007f68c9012b19
[ 2022.371087] RDX: 00000000200000c0 RSI: 0000000020000040 RDI: 0000000000000000
[ 2022.371094] RBP: 00007f68c65881d0 R08: 0000000020000280 R09: 0000000000000000
[ 2022.371102] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[ 2022.371109] R13: 00007ffe8a1e19df R14: 00007f68c6588300 R15: 0000000000022000
[ 2022.371687] 9pnet: Insufficient options for proto=fd
[ 2022.417436] FAULT_INJECTION: forcing a failure.
[ 2022.417436] name failslab, interval 1, probability 0, space 0, times 0
[ 2022.417454] CPU: 1 PID: 16996 Comm: syz-executor.1 Not tainted 5.10.172 #1
[ 2022.417461] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 2022.417466] Call Trace:
[ 2022.417486]  dump_stack+0x107/0x167
[ 2022.417503]  should_fail.cold+0x5/0xa
[ 2022.417519]  ? create_object.isra.0+0x3a/0xa20
[ 2022.417535]  should_failslab+0x5/0x20
[ 2022.417548]  kmem_cache_alloc+0x5b/0x360
[ 2022.417567]  create_object.isra.0+0x3a/0xa20
[ 2022.417581]  ? __kasan_kmalloc.constprop.0+0xc9/0xd0
[ 2022.417599]  kmem_cache_alloc+0x159/0x360
[ 2022.417626]  getname_flags.part.0+0x50/0x4f0
[ 2022.417640]  ? _copy_from_user+0xfb/0x1b0
[ 2022.417659]  user_path_at_empty+0xa1/0x100
[ 2022.417678]  __x64_sys_mount+0x1e9/0x300
[ 2022.417694]  ? copy_mnt_ns+0xa00/0xa00
[ 2022.417714]  ? rcu_read_lock_sched_held+0x3e/0x80
[ 2022.417733]  do_syscall_64+0x33/0x40
[ 2022.417748]  entry_SYSCALL_64_after_hwframe+0x61/0xc6
[ 2022.417758] RIP: 0033:0x7f9bca359b19
[ 2022.417771] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 2022.417779] RSP: 002b:00007f9bc78cf188 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5
[ 2022.417795] RAX: ffffffffffffffda RBX: 00007f9bca46cf60 RCX: 00007f9bca359b19
[ 2022.417803] RDX: 00000000200000c0 RSI: 0000000020000040 RDI: 0000000000000000
[ 2022.417811] RBP: 00007f9bc78cf1d0 R08: 0000000020000280 R09: 0000000000000000
[ 2022.417819] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[ 2022.417827] R13: 00007fffb54b7e9f R14: 00007f9bc78cf300 R15: 0000000000022000
[ 2022.421340] 9pnet: Insufficient options for proto=fd
21:14:47 executing program 5:
openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x105142, 0x0)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
pipe(&(0x7f00000001c0)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
mount$9p_fd(0x0, &(0x7f0000000040)='./file1\x00', &(0x7f00000000c0), 0x0, &(0x7f0000000280)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}}) (fail_nth: 11)
openat(0xffffffffffffffff, 0x0, 0x0, 0x0)

21:14:47 executing program 3:
openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x105142, 0x0)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x400}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
pipe(&(0x7f00000001c0)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
mount$9p_fd(0x0, &(0x7f0000000040)='./file1\x00', &(0x7f00000000c0), 0x0, &(0x7f0000000280)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {}, 0x2c, {[{@nodevmap}]}}) (fail_nth: 16)
openat(r1, &(0x7f0000000180)='./file1\x00', 0x0, 0x0)

21:14:47 executing program 7:
r0 = perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
io_setup(0x7f, &(0x7f00000002c0)=<r1=>0x0)
io_submit(r1, 0x1, &(0x7f0000000340)=[&(0x7f0000000300)={0x0, 0x0, 0x0, 0x5, 0x0, r0, 0x0}])
r2 = openat(0xffffffffffffffff, 0x0, 0x0, 0x10)
r3 = perf_event_open(&(0x7f0000001d80)={0x2, 0x80, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
mmap(&(0x7f0000ffc000/0x2000)=nil, 0x2000, 0x0, 0x13, r3, 0x0)
perf_event_open(&(0x7f0000001d80)={0x2, 0x80, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, r3, 0x2)
pipe(&(0x7f00000001c0)={<r4=>0xffffffffffffffff, <r5=>0xffffffffffffffff})
mount$9p_fd(0x0, &(0x7f0000000040)='./file1\x00', &(0x7f00000000c0), 0x0, &(0x7f0000000280)={'trans=fd,', {'rfdno', 0x3d, r4}, 0x2c, {'wfdno', 0x3d, r5}, 0x2c, {[{@nodevmap}]}})
ioctl$AUTOFS_DEV_IOCTL_ASKUMOUNT(r2, 0xc018937d, &(0x7f0000000280)={{0x1, 0x1, 0x18, <r6=>r2, {0x81}}, './file0\x00'})
r7 = perf_event_open(&(0x7f0000001d80)={0x2, 0x80, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
mmap(&(0x7f0000ffc000/0x2000)=nil, 0x2000, 0x0, 0x13, r7, 0x0)
perf_event_open(&(0x7f0000001d80)={0x2, 0x20, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8, 0x0, @perf_bp={&(0x7f0000001600), 0x4}}, 0x0, 0x0, r7, 0x2)
pipe(&(0x7f00000001c0)={<r8=>0xffffffffffffffff, <r9=>0xffffffffffffffff})
mount$9p_fd(0x0, &(0x7f0000000040)='./file1\x00', &(0x7f00000000c0), 0x0, &(0x7f0000000280)={'trans=fd,', {'rfdno', 0x3d, r8}, 0x2c, {'wfdno', 0x3d, r9}, 0x2c, {[{@nodevmap}]}})
io_submit(r1, 0x6, &(0x7f00000015c0)=[&(0x7f00000000c0)={0x0, 0x0, 0x0, 0x1, 0x3f, r0, &(0x7f0000000000)="9d149406b6af3abebadb9f75546d7c24aca3101b9c47baaee5ab8947cb792c2b78fcb3771f142b7679e8ebff4b6f40c1e7c56b5a191f2c92040ca67b4d33", 0x3e, 0x9a35}, &(0x7f0000000140)={0x0, 0x0, 0x0, 0x8, 0x0, r3, &(0x7f0000000100)="9f4376e7e8d1ec94fba910660fc86dc271190557be55edf88a0da722808560a0111aa11bd33fe8f75379937300f6082e986f9f42", 0x34, 0x0, 0x0, 0x0, r2}, &(0x7f0000000240)={0x0, 0x0, 0x0, 0x8, 0xffff, r0, &(0x7f0000000180)="6012d3911c7910d6e134010f6d1cdf2f70db957d44230b48cc55346abeedc61fc992e9c6f79480912ef42d0be35e2290516cec54e54c335787199fff108af29a7379a3769a3ede97baf21e6a07b6f37ab97685040fa5365b039902f914a7dc1d3bedbc79e77dd1d7a14f9fe1fdf05f0f913c1fb58c6af4c358518efabb53ca458c6604e1b32bde2e2af84087d6d67c8281b4a94604894dd8e4332ea188f908723dceeeda459e3681db3e0de8f6c7b6", 0xaf, 0x83f, 0x0, 0x3, r5}, &(0x7f0000001380)={0x0, 0x0, 0x0, 0x1, 0x7, r2, &(0x7f0000000380)="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", 0x1000, 0x8, 0x0, 0x2, r6}, &(0x7f00000014c0)={0x0, 0x0, 0x0, 0x6, 0x4, r0, &(0x7f00000013c0)="fe21f05c8771cc41bff3de481491613adff725036ce50bc9bedcd0137fd675df9849c103bfddb10057bdbc34817cc93cc715ad7ff9ffc287d50df49bde6554e03e1c4d80191843962d48e58f3f6db1424f2f3ef02121d166ff5dc5bfa62a9b8e47a6dc9509af229416a418d1e955d9292a3f2f3f170a23c4b081e21713bc29618b1818370c9a9c4c710a18cfeeb840319ba90012909624795c610372b2ec6ee68e58804f34dd02dfb04b3ed0b074cc19ace938d30243f0ce5c2364954f18edb19f167be972fba44a5f43c27b890e3598d840afb020ae0c809b95a12b2b48", 0xde, 0x3, 0x0, 0x2}, &(0x7f0000001580)={0x0, 0x0, 0x0, 0x0, 0x4000, r7, &(0x7f0000001500)="4cccf5d1f9e29b081f49e4b58b7f6038213e767dba10c36ebd213c39db6277ba9ce8ddb50ff0bb7af9baca1854594cc9c7279b675e100d9dda8787d1f3e76e93d84367c25640adb4112f1d59c23f72c6267431af57e692916db05c40fa208761f4f62f17defa39709e1e25", 0x6b, 0x7, 0x0, 0x3, r8}])

21:14:47 executing program 6:
r0 = syz_mount_image$vfat(&(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x0, 0x2, &(0x7f0000000180)=[{&(0x7f0000000140)="eb3c906d6b66732e66617400020801000470", 0x12}, {0x0, 0x0, 0x1000a00}], 0x0, &(0x7f0000000240)=ANY=[])
chdir(&(0x7f0000000040)='./file0\x00')
openat2(r0, &(0x7f0000000100)='./file0\x00', &(0x7f00000001c0)={0x40000, 0x81}, 0x18)
mount$cgroup(0x0, 0x0, &(0x7f0000000400), 0x0, 0x0)
r1 = syz_io_uring_setup(0x22, &(0x7f0000000680)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000180)=<r2=>0x0, &(0x7f0000002a40)=<r3=>0x0)
r4 = io_uring_register$IORING_REGISTER_PERSONALITY(r1, 0x9, 0x0, 0x0)
r5 = socket$nl_netfilter(0x10, 0x3, 0xc)
syz_io_uring_submit(r2, r3, &(0x7f0000000400)=@IORING_OP_WRITEV={0x2, 0x0, 0x0, @fd=r5, 0x0, 0x0, 0x0, 0x0, 0x0, {0x0, r4}}, 0x0)
r6 = syz_io_uring_setup(0x22, &(0x7f0000000680)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000180), &(0x7f0000002a40))
r7 = io_uring_register$IORING_REGISTER_PERSONALITY(r6, 0x9, 0x0, 0x0)
syz_io_uring_submit(r2, 0x0, &(0x7f0000000440)=@IORING_OP_FSYNC={0x3, 0x2, 0x0, @fd_index=0x9, 0x0, 0x0, 0x0, 0x0, 0x1, {0x0, r7}}, 0x2)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r8 = openat(0xffffffffffffff9c, &(0x7f00000002c0)='./file1\x00', 0x105142, 0x0)
r9 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0)
sendfile(r8, r9, 0x0, 0x100000001)
newfstatat(0xffffffffffffff9c, &(0x7f0000000340)='./file1\x00', &(0x7f0000000380), 0x400)

21:14:47 executing program 4:
openat$vcs(0xffffffffffffff9c, &(0x7f0000000040), 0x0, 0x0)
openat$sr(0xffffffffffffff9c, &(0x7f00000035c0), 0x0, 0x0)
openat$sr(0xffffffffffffff9c, &(0x7f00000000c0), 0x224400, 0x0)
openat$rtc(0xffffffffffffff9c, &(0x7f0000000200), 0x0, 0x0)
pipe(&(0x7f00000001c0))
open(&(0x7f00000016c0)='./cgroup.net/cgroup.procs\x00', 0x0, 0x0)
pselect6(0x40, &(0x7f0000000180), &(0x7f00000001c0)={0x3fc, 0x0, 0x0, 0x0, 0xa000000}, 0x0, 0x0, 0x0)

21:14:47 executing program 1:
openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x105142, 0x0)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
pipe(&(0x7f00000001c0))
mount$9p_fd(0x0, &(0x7f0000000040)='./file1\x00', &(0x7f00000000c0), 0x0, &(0x7f0000000280)={'trans=fd,', {}, 0x2c, {}, 0x2c, {[{@nodevmap}]}}) (fail_nth: 9)

21:14:47 executing program 2:
syz_mount_image$vfat(&(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x0, 0x2, &(0x7f0000000180)=[{&(0x7f0000000140)="eb3c906d6b66732e66617400020801000470008400f801", 0x17}, {0x0, 0x0, 0x1000a00}], 0x0, &(0x7f0000000240)=ANY=[])
chdir(&(0x7f0000000040)='./file0\x00')
r0 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x105142, 0x0)
ioctl$FS_IOC_RESVSP(r0, 0x40305828, &(0x7f0000000040)={0x0, 0x0, 0x0, 0x4000006, 0xd000000})

21:14:47 executing program 0:
syz_mount_image$vfat(&(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x0, 0x2, &(0x7f0000000180)=[{&(0x7f0000000140)="eb3c906d6b66732e66617400020801000470008400f801", 0x17}, {0x0, 0x0, 0x1000a00}], 0x0, &(0x7f0000000240)=ANY=[])
chdir(&(0x7f0000000040)='./file0\x00')
mount$cgroup(0x0, 0x0, 0x0, 0x0, 0x0)
r0 = syz_io_uring_setup(0x22, &(0x7f0000000680)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000180)=<r1=>0x0, &(0x7f0000002a40)=<r2=>0x0)
r3 = io_uring_register$IORING_REGISTER_PERSONALITY(r0, 0x9, 0x0, 0x0)
r4 = socket$nl_netfilter(0x10, 0x3, 0xc)
syz_io_uring_submit(r1, r2, &(0x7f0000000400)=@IORING_OP_WRITEV={0x2, 0x0, 0x0, @fd=r4, 0x0, 0x0, 0x0, 0x0, 0x0, {0x0, r3}}, 0x0)
r5 = syz_io_uring_setup(0x22, &(0x7f0000000680)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000180), &(0x7f0000002a40))
r6 = io_uring_register$IORING_REGISTER_PERSONALITY(r5, 0x9, 0x0, 0x0)
syz_io_uring_submit(r1, 0x0, &(0x7f0000000440)=@IORING_OP_FSYNC={0x3, 0x2, 0x0, @fd_index=0x9, 0x0, 0x0, 0x0, 0x0, 0x1, {0x0, r6}}, 0x2)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r7 = openat(0xffffffffffffff9c, &(0x7f00000002c0)='./file1\x00', 0x105142, 0x0)
r8 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0)
mount(&(0x7f0000000200)=ANY=[@ANYBLOB="2f6f651317868af191bdb2"], &(0x7f0000000240)='./file0\x00', &(0x7f0000000280)='nfsd\x00', 0x800000, &(0x7f0000000300)='cgroup\x00')
sendfile(r7, r8, 0x0, 0x100000001)
newfstatat(0xffffffffffffff9c, &(0x7f0000000340)='./file1\x00', &(0x7f0000000380), 0x400)

[ 2040.859186] FAULT_INJECTION: forcing a failure.
[ 2040.859186] name fail_usercopy, interval 1, probability 0, space 0, times 0
[ 2040.864953] CPU: 0 PID: 17023 Comm: syz-executor.1 Not tainted 5.10.172 #1
[ 2040.865845] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 2040.866882] Call Trace:
[ 2040.867255]  dump_stack+0x107/0x167
[ 2040.867779]  should_fail.cold+0x5/0xa
[ 2040.868280]  strncpy_from_user+0x34/0x470
[ 2040.868814]  getname_flags.part.0+0x95/0x4f0
[ 2040.869378]  ? _copy_from_user+0xfb/0x1b0
[ 2040.869908]  user_path_at_empty+0xa1/0x100
[ 2040.870455]  __x64_sys_mount+0x1e9/0x300
[ 2040.870971]  ? copy_mnt_ns+0xa00/0xa00
[ 2040.871501]  ? rcu_read_lock_sched_held+0x3e/0x80
[ 2040.872129]  do_syscall_64+0x33/0x40
[ 2040.872601]  entry_SYSCALL_64_after_hwframe+0x61/0xc6
[ 2040.873254] RIP: 0033:0x7f9bca359b19
[ 2040.873736] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 2040.876045] RSP: 002b:00007f9bc78cf188 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5
[ 2040.876961] RAX: ffffffffffffffda RBX: 00007f9bca46cf60 RCX: 00007f9bca359b19
[ 2040.877822] RDX: 00000000200000c0 RSI: 0000000020000040 RDI: 0000000000000000
[ 2040.878678] RBP: 00007f9bc78cf1d0 R08: 0000000020000280 R09: 0000000000000000
[ 2040.879585] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[ 2040.880502] R13: 00007fffb54b7e9f R14: 00007f9bc78cf300 R15: 0000000000022000
[ 2040.882278] FAULT_INJECTION: forcing a failure.
[ 2040.882278] name failslab, interval 1, probability 0, space 0, times 0
[ 2040.883907] CPU: 0 PID: 17020 Comm: syz-executor.5 Not tainted 5.10.172 #1
[ 2040.884793] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 2040.885868] Call Trace:
[ 2040.886219]  dump_stack+0x107/0x167
[ 2040.886699]  should_fail.cold+0x5/0xa
[ 2040.887208]  ? create_object.isra.0+0x3a/0xa20
[ 2040.887831]  ? create_object.isra.0+0x3a/0xa20
[ 2040.888439]  should_failslab+0x5/0x20
[ 2040.888934]  kmem_cache_alloc+0x5b/0x360
[ 2040.889464]  create_object.isra.0+0x3a/0xa20
[ 2040.890035]  ? __kasan_kmalloc.constprop.0+0xc9/0xd0
[ 2040.890697]  kmem_cache_alloc_trace+0x151/0x360
[ 2040.891313]  alloc_fs_context+0x57/0x840
[ 2040.895930]  path_mount+0xa72/0x20b0
[ 2040.896418]  ? strncpy_from_user+0x9e/0x470
[ 2040.896930]  ? finish_automount+0xa40/0xa40
[ 2040.897448]  ? getname_flags.part.0+0x1dd/0x4f0
[ 2040.897991]  ? _copy_from_user+0xfb/0x1b0
[ 2040.898506]  __x64_sys_mount+0x282/0x300
[ 2040.898992]  ? copy_mnt_ns+0xa00/0xa00
[ 2040.899516]  ? rcu_read_lock_sched_held+0x3e/0x80
[ 2040.900141]  do_syscall_64+0x33/0x40
[ 2040.900617]  entry_SYSCALL_64_after_hwframe+0x61/0xc6
[ 2040.901260] RIP: 0033:0x7f38308e8b19
[ 2040.901732] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 2040.904011] RSP: 002b:00007f382de5e188 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5
[ 2040.904968] RAX: ffffffffffffffda RBX: 00007f38309fbf60 RCX: 00007f38308e8b19
[ 2040.905859] RDX: 00000000200000c0 RSI: 0000000020000040 RDI: 0000000000000000
[ 2040.906732] RBP: 00007f382de5e1d0 R08: 0000000020000280 R09: 0000000000000000
[ 2040.907651] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[ 2040.908596] R13: 00007ffca2bf07df R14: 00007f382de5e300 R15: 0000000000022000
[ 2040.917127] FAULT_INJECTION: forcing a failure.
[ 2040.917127] name failslab, interval 1, probability 0, space 0, times 0
[ 2040.921104] CPU: 0 PID: 17021 Comm: syz-executor.3 Not tainted 5.10.172 #1
[ 2040.921981] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 2040.923029] Call Trace:
21:14:47 executing program 0:
syz_mount_image$vfat(&(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x0, 0x2, &(0x7f0000000180)=[{&(0x7f0000000140)="eb3c906d6b66732e66617400020801000470008400f801", 0x17}, {0x0, 0x0, 0x1000a00}], 0x0, &(0x7f0000000240)=ANY=[])
chdir(&(0x7f0000000040)='./file0\x00')
mount$cgroup(0x0, 0x0, &(0x7f0000000400), 0x0, 0x0)
r0 = syz_io_uring_setup(0x0, &(0x7f0000000680)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000180)=<r1=>0x0, &(0x7f0000002a40)=<r2=>0x0)
r3 = io_uring_register$IORING_REGISTER_PERSONALITY(r0, 0x9, 0x0, 0x0)
r4 = socket$nl_netfilter(0x10, 0x3, 0xc)
syz_io_uring_submit(r1, r2, &(0x7f0000000400)=@IORING_OP_WRITEV={0x2, 0x0, 0x0, @fd=r4, 0x0, 0x0, 0x0, 0x0, 0x0, {0x0, r3}}, 0x0)
r5 = syz_io_uring_setup(0x22, &(0x7f0000000680)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000180), &(0x7f0000002a40))
r6 = io_uring_register$IORING_REGISTER_PERSONALITY(r5, 0x9, 0x0, 0x0)
syz_io_uring_submit(r1, 0x0, &(0x7f0000000440)=@IORING_OP_FSYNC={0x3, 0x2, 0x0, @fd_index=0x9, 0x0, 0x0, 0x0, 0x0, 0x1, {0x0, r6}}, 0x2)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r7 = openat(0xffffffffffffff9c, &(0x7f00000002c0)='./file1\x00', 0x105142, 0x0)
r8 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0)
mount(&(0x7f0000000200)=ANY=[@ANYBLOB="2f6f651317868af191bdb2"], &(0x7f0000000240)='./file0\x00', &(0x7f0000000280)='nfsd\x00', 0x800000, &(0x7f0000000300)='cgroup\x00')
sendfile(r7, r8, 0x0, 0x100000001)
newfstatat(0xffffffffffffff9c, &(0x7f0000000340)='./file1\x00', &(0x7f0000000380), 0x400)

[ 2040.923382]  dump_stack+0x107/0x167
[ 2040.932003]  should_fail.cold+0x5/0xa
[ 2040.932512]  should_failslab+0x5/0x20
[ 2040.933004]  __kmalloc_track_caller+0x79/0x3c0
[ 2040.933578]  ? v9fs_session_init+0xa7/0x16a0
[ 2040.934152]  ? kernel_text_address+0xf2/0x120
[ 2040.934745]  kstrdup+0x36/0x70
[ 2040.935176]  v9fs_session_init+0xa7/0x16a0
[ 2040.935741]  ? irqentry_enter+0x26/0x60
[ 2040.936269]  ? lockdep_hardirqs_on_prepare+0x277/0x3e0
[ 2040.936955]  ? asm_sysvec_apic_timer_interrupt+0x12/0x20
[ 2040.937660]  ? trace_hardirqs_on+0x5b/0x180
[ 2040.938213]  ? v9fs_show_options+0x690/0x690
[ 2040.938814]  ? kasan_unpoison_shadow+0x33/0x50
[ 2040.939403]  ? __kasan_kmalloc.constprop.0+0xc9/0xd0
[ 2040.940110]  v9fs_mount+0x79/0x8f0
[ 2040.940573]  ? v9fs_write_inode+0x60/0x60
[ 2040.941119]  legacy_get_tree+0x105/0x220
[ 2040.941649]  vfs_get_tree+0x8e/0x300
[ 2040.942148]  path_mount+0x13be/0x20b0
[ 2040.942644]  ? strncpy_from_user+0x9e/0x470
[ 2040.943201]  ? finish_automount+0xa40/0xa40
[ 2040.943800]  ? getname_flags.part.0+0x1dd/0x4f0
[ 2040.944403]  ? _copy_from_user+0xfb/0x1b0
[ 2040.944968]  __x64_sys_mount+0x282/0x300
[ 2040.945500]  ? copy_mnt_ns+0xa00/0xa00
[ 2040.946013]  ? rcu_read_lock_sched_held+0x3e/0x80
[ 2040.946647]  do_syscall_64+0x33/0x40
[ 2040.947143]  entry_SYSCALL_64_after_hwframe+0x61/0xc6
[ 2040.947815] RIP: 0033:0x7f68c9012b19
[ 2040.948299] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 2040.950468] RSP: 002b:00007f68c6588188 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5
[ 2040.955470] RAX: ffffffffffffffda RBX: 00007f68c9125f60 RCX: 00007f68c9012b19
[ 2040.956441] RDX: 00000000200000c0 RSI: 0000000020000040 RDI: 0000000000000000
[ 2040.957347] RBP: 00007f68c65881d0 R08: 0000000020000280 R09: 0000000000000000
[ 2040.958269] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[ 2040.959169] R13: 00007ffe8a1e19df R14: 00007f68c6588300 R15: 0000000000022000
21:14:47 executing program 1:
openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x105142, 0x0)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
pipe(&(0x7f00000001c0))
mount$9p_fd(0x0, &(0x7f0000000040)='./file1\x00', &(0x7f00000000c0), 0x0, &(0x7f0000000280)={'trans=fd,', {}, 0x2c, {}, 0x2c, {[{@nodevmap}]}}) (fail_nth: 10)

[ 2041.019363] FAT-fs (loop6): invalid media value (0x00)
[ 2041.020257] FAT-fs (loop6): Can't find a valid FAT filesystem
21:14:47 executing program 5:
openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x105142, 0x0)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
pipe(&(0x7f00000001c0)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
mount$9p_fd(0x0, &(0x7f0000000040)='./file1\x00', &(0x7f00000000c0), 0x0, &(0x7f0000000280)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}}) (fail_nth: 12)
openat(0xffffffffffffffff, 0x0, 0x0, 0x0)

21:14:47 executing program 2:
syz_mount_image$vfat(&(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x0, 0x2, &(0x7f0000000180)=[{&(0x7f0000000140)="eb3c906d6b66732e66617400020801000470008400f801", 0x17}, {0x0, 0x0, 0x1000a00}], 0x0, &(0x7f0000000240)=ANY=[])
chdir(&(0x7f0000000040)='./file0\x00')
r0 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x105142, 0x0)
ioctl$FS_IOC_RESVSP(r0, 0x40305828, &(0x7f0000000040)={0x0, 0x0, 0x0, 0x4000006, 0xf000000})

21:14:47 executing program 3:
openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x105142, 0x0)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x400}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
pipe(&(0x7f00000001c0)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
mount$9p_fd(0x0, &(0x7f0000000040)='./file1\x00', &(0x7f00000000c0), 0x0, &(0x7f0000000280)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {}, 0x2c, {[{@nodevmap}]}}) (fail_nth: 17)
openat(r1, &(0x7f0000000180)='./file1\x00', 0x0, 0x0)

21:14:47 executing program 4:
openat$vcs(0xffffffffffffff9c, &(0x7f0000000040), 0x0, 0x0)
openat$sr(0xffffffffffffff9c, &(0x7f00000035c0), 0x0, 0x0)
openat$sr(0xffffffffffffff9c, &(0x7f00000000c0), 0x224400, 0x0)
openat$rtc(0xffffffffffffff9c, &(0x7f0000000200), 0x0, 0x0)
pipe(&(0x7f00000001c0))
open(&(0x7f00000016c0)='./cgroup.net/cgroup.procs\x00', 0x0, 0x0)
pselect6(0x40, &(0x7f0000000180), &(0x7f00000001c0)={0x3fc, 0x0, 0x0, 0x0, 0x10000000}, 0x0, 0x0, 0x0)

[ 2041.146129] FAULT_INJECTION: forcing a failure.
[ 2041.146129] name failslab, interval 1, probability 0, space 0, times 0
[ 2041.147613] CPU: 0 PID: 17040 Comm: syz-executor.1 Not tainted 5.10.172 #1
[ 2041.148477] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 2041.149498] Call Trace:
[ 2041.149854]  dump_stack+0x107/0x167
[ 2041.150337]  should_fail.cold+0x5/0xa
[ 2041.150829]  ? alloc_fs_context+0x57/0x840
[ 2041.151375]  should_failslab+0x5/0x20
[ 2041.151873]  kmem_cache_alloc_trace+0x55/0x360
[ 2041.152447]  alloc_fs_context+0x57/0x840
[ 2041.152968]  path_mount+0xa72/0x20b0
[ 2041.153446]  ? strncpy_from_user+0x9e/0x470
[ 2041.154014]  ? finish_automount+0xa40/0xa40
[ 2041.154580]  ? getname_flags.part.0+0x1dd/0x4f0
[ 2041.155183]  ? _copy_from_user+0xfb/0x1b0
[ 2041.155773]  __x64_sys_mount+0x282/0x300
[ 2041.156297]  ? copy_mnt_ns+0xa00/0xa00
[ 2041.156820]  ? rcu_read_lock_sched_held+0x3e/0x80
[ 2041.157453]  do_syscall_64+0x33/0x40
[ 2041.157938]  entry_SYSCALL_64_after_hwframe+0x61/0xc6
[ 2041.158600] RIP: 0033:0x7f9bca359b19
[ 2041.159087] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 2041.161425] RSP: 002b:00007f9bc78cf188 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5
[ 2041.162402] RAX: ffffffffffffffda RBX: 00007f9bca46cf60 RCX: 00007f9bca359b19
[ 2041.163316] RDX: 00000000200000c0 RSI: 0000000020000040 RDI: 0000000000000000
[ 2041.164270] RBP: 00007f9bc78cf1d0 R08: 0000000020000280 R09: 0000000000000000
[ 2041.165184] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[ 2041.166103] R13: 00007fffb54b7e9f R14: 00007f9bc78cf300 R15: 0000000000022000
21:14:47 executing program 7:
r0 = perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f0000000100), 0x4}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
fsetxattr$trusted_overlay_opaque(r0, &(0x7f0000000000), &(0x7f00000000c0), 0x2, 0x2)
r1 = dup(r0)
io_setup(0x7f, &(0x7f00000002c0))
r2 = perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
io_setup(0x7f, &(0x7f00000002c0)=<r3=>0x0)
io_submit(r3, 0x1, &(0x7f0000000340)=[&(0x7f0000000300)={0x0, 0x0, 0x0, 0x5, 0x0, r2, 0x0}])
io_submit(r3, 0x0, &(0x7f0000000340))
io_setup(0x8, &(0x7f0000000140)=<r4=>0x0)
io_cancel(r4, &(0x7f00000001c0)={0x0, 0x0, 0x0, 0x2, 0x9, r0, &(0x7f0000000180)="1b627987d9c8f35bdefcae643f96302299e0a466941fbef27825ef621d4fc567c421", 0x22, 0x10, 0x0, 0x2, r1}, &(0x7f0000000200))
openat(0xffffffffffffffff, 0x0, 0x0, 0x10)

[ 2041.197111] FAULT_INJECTION: forcing a failure.
[ 2041.197111] name failslab, interval 1, probability 0, space 0, times 0
[ 2041.200355] CPU: 0 PID: 17043 Comm: syz-executor.5 Not tainted 5.10.172 #1
[ 2041.202361] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 2041.204765] Call Trace:
[ 2041.205643]  dump_stack+0x107/0x167
[ 2041.206656]  should_fail.cold+0x5/0xa
[ 2041.207722]  ? legacy_init_fs_context+0x44/0xe0
[ 2041.209001]  should_failslab+0x5/0x20
[ 2041.210150]  kmem_cache_alloc_trace+0x55/0x360
[ 2041.211394]  ? lockdep_init_map_type+0x2c7/0x780
[ 2041.212793]  legacy_init_fs_context+0x44/0xe0
[ 2041.214076]  ? generic_parse_monolithic+0x1f0/0x1f0
[ 2041.215410]  alloc_fs_context+0x4f8/0x840
[ 2041.216623]  path_mount+0xa72/0x20b0
[ 2041.217669]  ? strncpy_from_user+0x9e/0x470
[ 2041.218877]  ? finish_automount+0xa40/0xa40
[ 2041.220113]  ? getname_flags.part.0+0x1dd/0x4f0
[ 2041.221374]  ? _copy_from_user+0xfb/0x1b0
[ 2041.222569]  __x64_sys_mount+0x282/0x300
[ 2041.223740]  ? copy_mnt_ns+0xa00/0xa00
[ 2041.224827]  ? rcu_read_lock_sched_held+0x3e/0x80
[ 2041.226111]  do_syscall_64+0x33/0x40
[ 2041.227180]  entry_SYSCALL_64_after_hwframe+0x61/0xc6
[ 2041.228669] RIP: 0033:0x7f38308e8b19
[ 2041.229729] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 2041.234996] RSP: 002b:00007f382de5e188 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5
[ 2041.237155] RAX: ffffffffffffffda RBX: 00007f38309fbf60 RCX: 00007f38308e8b19
[ 2041.239152] RDX: 00000000200000c0 RSI: 0000000020000040 RDI: 0000000000000000
[ 2041.241183] RBP: 00007f382de5e1d0 R08: 0000000020000280 R09: 0000000000000000
[ 2041.243223] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[ 2041.245261] R13: 00007ffca2bf07df R14: 00007f382de5e300 R15: 0000000000022000
[ 2041.273715] FAULT_INJECTION: forcing a failure.
[ 2041.273715] name failslab, interval 1, probability 0, space 0, times 0
[ 2041.276655] CPU: 0 PID: 17049 Comm: syz-executor.3 Not tainted 5.10.172 #1
[ 2041.278143] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 2041.279356] Call Trace:
[ 2041.279778]  dump_stack+0x107/0x167
[ 2041.280255]  should_fail.cold+0x5/0xa
[ 2041.280746]  ? create_object.isra.0+0x3a/0xa20
[ 2041.281346]  should_failslab+0x5/0x20
[ 2041.281832]  kmem_cache_alloc+0x5b/0x360
[ 2041.282374]  create_object.isra.0+0x3a/0xa20
[ 2041.282930]  ? __kasan_kmalloc.constprop.0+0xc9/0xd0
[ 2041.283675]  __kmalloc_track_caller+0x177/0x3c0
[ 2041.285003]  ? v9fs_session_init+0xa7/0x16a0
[ 2041.286055]  ? kernel_text_address+0xf2/0x120
[ 2041.287075]  kstrdup+0x36/0x70
[ 2041.287693]  v9fs_session_init+0xa7/0x16a0
[ 2041.288281]  ? irqentry_enter+0x26/0x60
[ 2041.288795]  ? lockdep_hardirqs_on_prepare+0x277/0x3e0
[ 2041.289487]  ? asm_sysvec_apic_timer_interrupt+0x12/0x20
[ 2041.290186]  ? trace_hardirqs_on+0x5b/0x180
[ 2041.290751]  ? v9fs_show_options+0x690/0x690
[ 2041.291330]  ? kasan_unpoison_shadow+0x33/0x50
[ 2041.292544]  ? __kasan_kmalloc.constprop.0+0xc9/0xd0
[ 2041.294003]  v9fs_mount+0x79/0x8f0
[ 2041.294848]  ? v9fs_write_inode+0x60/0x60
[ 2041.295896]  legacy_get_tree+0x105/0x220
[ 2041.296848]  vfs_get_tree+0x8e/0x300
[ 2041.297716]  path_mount+0x13be/0x20b0
[ 2041.298589]  ? strncpy_from_user+0x9e/0x470
[ 2041.299641]  ? finish_automount+0xa40/0xa40
[ 2041.300641]  ? getname_flags.part.0+0x1dd/0x4f0
[ 2041.301732]  ? _copy_from_user+0xfb/0x1b0
[ 2041.302696]  __x64_sys_mount+0x282/0x300
[ 2041.303702]  ? copy_mnt_ns+0xa00/0xa00
[ 2041.304585]  ? rcu_read_lock_sched_held+0x3e/0x80
[ 2041.305665]  do_syscall_64+0x33/0x40
[ 2041.306525]  entry_SYSCALL_64_after_hwframe+0x61/0xc6
[ 2041.307793] RIP: 0033:0x7f68c9012b19
[ 2041.308655] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 2041.313234] RSP: 002b:00007f68c6588188 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5
[ 2041.314948] RAX: ffffffffffffffda RBX: 00007f68c9125f60 RCX: 00007f68c9012b19
[ 2041.316884] RDX: 00000000200000c0 RSI: 0000000020000040 RDI: 0000000000000000
[ 2041.318517] RBP: 00007f68c65881d0 R08: 0000000020000280 R09: 0000000000000000
[ 2041.319869] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[ 2041.320790] R13: 00007ffe8a1e19df R14: 00007f68c6588300 R15: 0000000000022000
21:14:47 executing program 1:
openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x105142, 0x0)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
pipe(&(0x7f00000001c0))
mount$9p_fd(0x0, &(0x7f0000000040)='./file1\x00', &(0x7f00000000c0), 0x0, &(0x7f0000000280)={'trans=fd,', {}, 0x2c, {}, 0x2c, {[{@nodevmap}]}}) (fail_nth: 11)

[ 2041.380278] 9pnet: Insufficient options for proto=fd
[ 2041.410401] FAULT_INJECTION: forcing a failure.
[ 2041.410401] name fail_page_alloc, interval 1, probability 0, space 0, times 1
[ 2041.412598] CPU: 0 PID: 17058 Comm: syz-executor.1 Not tainted 5.10.172 #1
[ 2041.413509] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 2041.414593] Call Trace:
[ 2041.414931]  dump_stack+0x107/0x167
[ 2041.415430]  should_fail.cold+0x5/0xa
[ 2041.416015]  ? __lock_acquire+0xbb1/0x5b00
[ 2041.416555]  __alloc_pages_nodemask+0x182/0x680
[ 2041.417164]  ? __alloc_pages_slowpath.constprop.0+0x2220/0x2220
[ 2041.417927]  ? kmem_cache_alloc_trace+0x347/0x360
[ 2041.418576]  alloc_pages_current+0x187/0x280
[ 2041.419144]  allocate_slab+0x26f/0x380
[ 2041.419817]  ___slab_alloc+0x470/0x700
[ 2041.420331]  ? lock_downgrade+0x6d0/0x6d0
[ 2041.420850]  ? alloc_fs_context+0x57/0x840
[ 2041.421413]  ? lockdep_hardirqs_on_prepare+0x277/0x3e0
[ 2041.422079]  ? trace_hardirqs_on+0x5b/0x180
[ 2041.422634]  ? alloc_fs_context+0x57/0x840
[ 2041.423165]  ? kmem_cache_alloc_trace+0x347/0x360
[ 2041.423797]  kmem_cache_alloc_trace+0x347/0x360
[ 2041.424381]  alloc_fs_context+0x57/0x840
[ 2041.424889]  path_mount+0xa72/0x20b0
[ 2041.425366]  ? strncpy_from_user+0x9e/0x470
[ 2041.425911]  ? finish_automount+0xa40/0xa40
[ 2041.426466]  ? getname_flags.part.0+0x1dd/0x4f0
[ 2041.427063]  ? _copy_from_user+0xfb/0x1b0
[ 2041.427641]  __x64_sys_mount+0x282/0x300
[ 2041.428177]  ? copy_mnt_ns+0xa00/0xa00
[ 2041.428683]  ? rcu_read_lock_sched_held+0x3e/0x80
[ 2041.429279]  do_syscall_64+0x33/0x40
[ 2041.429770]  entry_SYSCALL_64_after_hwframe+0x61/0xc6
[ 2041.430419] RIP: 0033:0x7f9bca359b19
[ 2041.430898] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 2041.433223] RSP: 002b:00007f9bc78cf188 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5
[ 2041.434187] RAX: ffffffffffffffda RBX: 00007f9bca46cf60 RCX: 00007f9bca359b19
[ 2041.435100] RDX: 00000000200000c0 RSI: 0000000020000040 RDI: 0000000000000000
[ 2041.436061] RBP: 00007f9bc78cf1d0 R08: 0000000020000280 R09: 0000000000000000
[ 2041.436962] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[ 2041.437880] R13: 00007fffb54b7e9f R14: 00007f9bc78cf300 R15: 0000000000022000
[ 2041.514541] 9pnet: Insufficient options for proto=fd
21:15:06 executing program 5:
openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x105142, 0x0)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
pipe(&(0x7f00000001c0)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
mount$9p_fd(0x0, &(0x7f0000000040)='./file1\x00', &(0x7f00000000c0), 0x0, &(0x7f0000000280)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}}) (fail_nth: 13)
openat(0xffffffffffffffff, 0x0, 0x0, 0x0)

21:15:06 executing program 0:
syz_mount_image$vfat(&(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x0, 0x2, &(0x7f0000000180)=[{&(0x7f0000000140)="eb3c906d6b66732e66617400020801000470008400f801", 0x17}, {0x0, 0x0, 0x1000a00}], 0x0, &(0x7f0000000240)=ANY=[])
chdir(&(0x7f0000000040)='./file0\x00')
mount$cgroup(0x0, 0x0, &(0x7f0000000400), 0x0, 0x0)
r0 = syz_io_uring_setup(0x0, &(0x7f0000000680)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000180)=<r1=>0x0, &(0x7f0000002a40)=<r2=>0x0)
r3 = io_uring_register$IORING_REGISTER_PERSONALITY(r0, 0x9, 0x0, 0x0)
r4 = socket$nl_netfilter(0x10, 0x3, 0xc)
syz_io_uring_submit(r1, r2, &(0x7f0000000400)=@IORING_OP_WRITEV={0x2, 0x0, 0x0, @fd=r4, 0x0, 0x0, 0x0, 0x0, 0x0, {0x0, r3}}, 0x0)
r5 = syz_io_uring_setup(0x22, &(0x7f0000000680)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000180), &(0x7f0000002a40))
r6 = io_uring_register$IORING_REGISTER_PERSONALITY(r5, 0x9, 0x0, 0x0)
syz_io_uring_submit(r1, 0x0, &(0x7f0000000440)=@IORING_OP_FSYNC={0x3, 0x2, 0x0, @fd_index=0x9, 0x0, 0x0, 0x0, 0x0, 0x1, {0x0, r6}}, 0x2)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r7 = openat(0xffffffffffffff9c, &(0x7f00000002c0)='./file1\x00', 0x105142, 0x0)
r8 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0)
mount(&(0x7f0000000200)=ANY=[@ANYBLOB="2f6f651317868af191bdb2"], &(0x7f0000000240)='./file0\x00', &(0x7f0000000280)='nfsd\x00', 0x800000, &(0x7f0000000300)='cgroup\x00')
sendfile(r7, r8, 0x0, 0x100000001)
newfstatat(0xffffffffffffff9c, &(0x7f0000000340)='./file1\x00', &(0x7f0000000380), 0x400)

21:15:06 executing program 6:
r0 = syz_mount_image$vfat(&(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x0, 0x2, &(0x7f0000000180)=[{&(0x7f0000000140)="eb3c906d6b66732e66617400020801000470008400", 0x15}, {0x0, 0x0, 0x1000a00}], 0x0, &(0x7f0000000240)=ANY=[])
chdir(&(0x7f0000000040)='./file0\x00')
openat2(r0, &(0x7f0000000100)='./file0\x00', &(0x7f00000001c0)={0x40000, 0x81}, 0x18)
mount$cgroup(0x0, 0x0, &(0x7f0000000400), 0x0, 0x0)
r1 = syz_io_uring_setup(0x22, &(0x7f0000000680)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000180)=<r2=>0x0, &(0x7f0000002a40)=<r3=>0x0)
r4 = io_uring_register$IORING_REGISTER_PERSONALITY(r1, 0x9, 0x0, 0x0)
r5 = socket$nl_netfilter(0x10, 0x3, 0xc)
syz_io_uring_submit(r2, r3, &(0x7f0000000400)=@IORING_OP_WRITEV={0x2, 0x0, 0x0, @fd=r5, 0x0, 0x0, 0x0, 0x0, 0x0, {0x0, r4}}, 0x0)
r6 = syz_io_uring_setup(0x22, &(0x7f0000000680)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000180), &(0x7f0000002a40))
r7 = io_uring_register$IORING_REGISTER_PERSONALITY(r6, 0x9, 0x0, 0x0)
syz_io_uring_submit(r2, 0x0, &(0x7f0000000440)=@IORING_OP_FSYNC={0x3, 0x2, 0x0, @fd_index=0x9, 0x0, 0x0, 0x0, 0x0, 0x1, {0x0, r7}}, 0x2)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r8 = openat(0xffffffffffffff9c, &(0x7f00000002c0)='./file1\x00', 0x105142, 0x0)
r9 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0)
sendfile(r8, r9, 0x0, 0x100000001)
newfstatat(0xffffffffffffff9c, &(0x7f0000000340)='./file1\x00', &(0x7f0000000380), 0x400)

21:15:06 executing program 1:
openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x105142, 0x0)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
pipe(&(0x7f00000001c0))
mount$9p_fd(0x0, &(0x7f0000000040)='./file1\x00', &(0x7f00000000c0), 0x0, &(0x7f0000000280)={'trans=fd,', {}, 0x2c, {}, 0x2c, {[{@nodevmap}]}}) (fail_nth: 12)

21:15:06 executing program 3:
openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x105142, 0x0)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x400}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
pipe(&(0x7f00000001c0)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
mount$9p_fd(0x0, &(0x7f0000000040)='./file1\x00', &(0x7f00000000c0), 0x0, &(0x7f0000000280)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {}, 0x2c, {[{@nodevmap}]}}) (fail_nth: 18)
openat(r1, &(0x7f0000000180)='./file1\x00', 0x0, 0x0)

21:15:06 executing program 7:
r0 = perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0xa4d, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
io_setup(0x7f, &(0x7f00000002c0)=<r1=>0x0)
ioctl$AUTOFS_DEV_IOCTL_PROTOSUBVER(0xffffffffffffffff, 0xc0189373, &(0x7f0000000000)=ANY=[@ANYBLOB="010000000100000018000000", @ANYRES32=<r2=>r0, @ANYBLOB="f7696c653100"/16])
r3 = perf_event_open(&(0x7f0000001d80)={0x2, 0x80, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
mmap(&(0x7f0000ffc000/0x2000)=nil, 0x2000, 0x0, 0x13, r3, 0x0)
perf_event_open(&(0x7f0000001d80)={0x2, 0x80, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, r3, 0x2)
r4 = syz_open_dev$hidraw(&(0x7f0000000580), 0x2, 0x242a80)
r5 = perf_event_open(&(0x7f0000001d80)={0x2, 0x80, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
mmap(&(0x7f0000ffc000/0x2000)=nil, 0x2000, 0x0, 0x13, r5, 0x0)
perf_event_open(&(0x7f0000001d80)={0x2, 0x80, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, r5, 0x2)
r6 = openat$vcsa(0xffffffffffffff9c, &(0x7f0000000780), 0x305100, 0x0)
pipe(&(0x7f00000001c0)={<r7=>0xffffffffffffffff, <r8=>0xffffffffffffffff})
mount$9p_fd(0x0, &(0x7f0000000040)='./file1\x00', &(0x7f00000000c0), 0x0, &(0x7f0000000280)={'trans=fd,', {'rfdno', 0x3d, r7}, 0x2c, {'wfdno', 0x3d, r8}, 0x2c, {[{@nodevmap}]}})
ioctl$AUTOFS_DEV_IOCTL_CLOSEMOUNT(r2, 0xc0189375, &(0x7f0000000940)={{0x1, 0x1, 0x18, <r9=>r2}, './file0\x00'})
pipe(&(0x7f00000001c0)={<r10=>0xffffffffffffffff, <r11=>0xffffffffffffffff})
mount$9p_fd(0x0, &(0x7f0000000040)='./file1\x00', &(0x7f00000000c0), 0x0, &(0x7f0000000280)={'trans=fd,', {'rfdno', 0x3d, r10}, 0x2c, {'wfdno', 0x3d, r11}, 0x2c, {[{@nodevmap}]}})
io_submit(r1, 0x8, &(0x7f0000000a80)=[&(0x7f00000001c0)={0x0, 0x0, 0x0, 0x8, 0x1, 0xffffffffffffffff, &(0x7f0000000140)="ebd3549497850e5386655fdd39d9432d534c05a406106b757cc75b9af9f58171e0e16fdacfcc0fde844bc0f8156d1e3e3d2b62c0119882c52bf60848737586dd4a1cacc98d96c045e57faed605219a84ba909771ebb5daec258abcc83944d5ba2920cd6870fc72f87b41e662", 0x6c, 0x0, 0x0, 0x1}, &(0x7f0000000380)={0x0, 0x0, 0x0, 0x8, 0x8, 0xffffffffffffffff, &(0x7f0000000240)="8a5f3dcac51630377b15c40650c7880b0029abab074fb66fc37c76e00db270c107c03698f36c02dd6424fa7dfe083e1a628f7a4bcff2c5eef3aa09584965d0a33fb7d06ed4f46c6084f1ac87373ee130b780cbb910a857fcbc6ae5", 0x5b, 0x100000000, 0x0, 0x1, r2}, &(0x7f0000000440)={0x0, 0x0, 0x0, 0x0, 0x800, 0xffffffffffffffff, &(0x7f00000003c0)="60d2726977dc038b71a3b608a03ed82f7e02e0cdaef3f1fa3f0762acc3512354380fcc7aa39d3b1845e59974e3a3659feb288dbdfd2ddac38e5a42db208405a70cb9e433d09c9e05cf0d1bcaa40dc253d4e6274c22892f3a030406a83b8335d7faddf15c7c2d8b", 0x67, 0x2, 0x0, 0x1, r2}, &(0x7f0000000540)={0x0, 0x0, 0x0, 0x0, 0x2, r3, &(0x7f0000000480)="b2813f9eb93e87f5b6899799499f82f071dc2c858b397ff8e9b1c65ced0fa25d252b6c5d1c150311d3cefa51bae705dde345268b9f07115210c7840e85164e80260b87403b643e7423a98cba056c343ae0e6b0379b5f89d2ebce2e183ef0a36b9b12713dcbf240b45a9f8ff956bff8a999c255e84f246faecc0a17146cc3db89144c95a4cfddee55812f64f3ac025715b86294c377b6646523e72cbcef", 0x9d, 0x7, 0x0, 0x0, r2}, &(0x7f0000000640)={0x0, 0x0, 0x0, 0x2, 0x4, r4, &(0x7f00000005c0)="e0b6a769d11273f53a98ff3d89964189e684546d73c220e55a83d9c10ec7a3d412d8a2f0e6e31aa027ccd559c6d305debfdf2a5cc8f056e59536ba26bd31e412ee", 0x41, 0x7, 0x0, 0x0, r2}, &(0x7f00000007c0)={0x0, 0x0, 0x0, 0x3, 0x5, r5, &(0x7f0000000680)="fa3924f03036a2dbe60b68a54ad965abbc1a0fe115a29e68725e31cd20d1c765a4def2aec518f92070d08953eb9496767a34919d45c6ff801816ece69b839c1b86715d24236c7934a23c37a6f07bb14a9cd9733b6985c4c9306133218ba6e6bce5f52212b615abb6b91628134b58368fa7480ea1ecec9025cfb40c875a72823b2a0e30adab7c406c70a4625efd2b3d4f709329db75891979be4e054d45e12fcc9ee1c0197ff45a5105c399d8803c4e76d4b56d6430f7dace3aff6f18683958b58fcd1b2ca233b1f0878f652ebb222ca941eb12c13bcc1008c1994703c2f7acbdeee25cb857fb5001383a7bc13aa340e53ae5d1", 0xf3, 0x7ff, 0x0, 0x2, r6}, &(0x7f0000000900)={0x0, 0x0, 0x0, 0x2, 0x4, r2, &(0x7f0000000800)="fa1a021aef3b4d24bc1f10d30deefa5fdf58511a153e8cd374de04c095372d56ed9b33a875a5aca779d77003a923322a26eabb9df7855d0ca02fc82777c33e45c3a61f3478e11537c3dd3469c603b3796b728ad877602890266314f08be6dff6e7e88a7ab15f7b3c92ff4886249328eaffe8ad1c0e6127e2f2ac52831a6891bd6e33ff53120682d35dd6ff64c651ebaca08c65c3aca1624d574934f25324476ecdeb4e439fb1ed133ec039dad1a58a5517a5206b18764895c3f4513854bee59561a3", 0xc2, 0x9, 0x0, 0x0, r8}, &(0x7f0000000a40)={0x0, 0x0, 0x0, 0x2, 0x4, r9, &(0x7f0000000980)="46b1b7ae009ee9f6615071ddda80c7b329abbf9e68f06d16fdb36ce79226fb967781cc57b0b548dbe7f43d4faa3f11a3b2f51284147ee0819ccb87e2a3461b7b3198119d66ed41e092bdb8dd413f2c8f170ef3ef32750c521b96b7affb205b36978eb11f22f8ed566618d45dfcd45192b30fc4aa502718c0d13a1e3382eb3724a5c1f81ed7c6da0a8e50c35e7cf7e5f9175749fb4fa4a7872689a92c8605c367b1658c692033b9a7", 0xa8, 0xe33, 0x0, 0x2, r10}])
perf_event_open(&(0x7f00000000c0)={0x4, 0x80, 0xe1, 0x14, 0xf, 0xbc, 0x0, 0x1, 0x200, 0x2, 0x1, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x1, 0x0, 0x1, 0x1, 0x1, 0x0, 0x0, 0x1, 0x1, 0x0, 0x0, 0x1, 0x1, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0xbf8, 0x0, @perf_config_ext={0x5, 0x80000000}, 0x400, 0x401, 0xf8, 0x8, 0x8b4, 0x4, 0x40, 0x0, 0x1, 0x0, 0x9}, 0x0, 0x5, r2, 0x2)
io_submit(r1, 0x1, &(0x7f0000000340)=[&(0x7f0000000300)={0x0, 0x0, 0x0, 0x5, 0x0, r0, 0x0}])
openat(0xffffffffffffffff, 0x0, 0x0, 0x10)

21:15:06 executing program 4:
openat$vcs(0xffffffffffffff9c, &(0x7f0000000040), 0x0, 0x0)
openat$sr(0xffffffffffffff9c, &(0x7f00000035c0), 0x0, 0x0)
openat$sr(0xffffffffffffff9c, &(0x7f00000000c0), 0x224400, 0x0)
openat$rtc(0xffffffffffffff9c, &(0x7f0000000200), 0x0, 0x0)
pipe(&(0x7f00000001c0))
open(&(0x7f00000016c0)='./cgroup.net/cgroup.procs\x00', 0x0, 0x0)
pselect6(0x40, &(0x7f0000000180), &(0x7f00000001c0)={0x3fc, 0x0, 0x0, 0x0, 0x100000000000000}, 0x0, 0x0, 0x0)

21:15:06 executing program 2:
syz_mount_image$vfat(&(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x0, 0x2, &(0x7f0000000180)=[{&(0x7f0000000140)="eb3c906d6b66732e66617400020801000470008400f801", 0x17}, {0x0, 0x0, 0x1000a00}], 0x0, &(0x7f0000000240)=ANY=[])
chdir(&(0x7f0000000040)='./file0\x00')
r0 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x105142, 0x0)
ioctl$FS_IOC_RESVSP(r0, 0x40305828, &(0x7f0000000040)={0x0, 0x0, 0x0, 0x4000006, 0xfffffff})

[ 2059.717024] FAULT_INJECTION: forcing a failure.
[ 2059.717024] name failslab, interval 1, probability 0, space 0, times 0
[ 2059.718550] CPU: 0 PID: 17074 Comm: syz-executor.5 Not tainted 5.10.172 #1
[ 2059.719440] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 2059.720524] Call Trace:
[ 2059.720873]  dump_stack+0x107/0x167
[ 2059.721345]  should_fail.cold+0x5/0xa
[ 2059.721858]  ? create_object.isra.0+0x3a/0xa20
[ 2059.722453]  should_failslab+0x5/0x20
[ 2059.722958]  kmem_cache_alloc+0x5b/0x360
[ 2059.723512]  create_object.isra.0+0x3a/0xa20
[ 2059.724141]  ? __kasan_kmalloc.constprop.0+0xc9/0xd0
[ 2059.724775]  kmem_cache_alloc_trace+0x151/0x360
[ 2059.725376]  ? lockdep_init_map_type+0x2c7/0x780
[ 2059.725999]  legacy_init_fs_context+0x44/0xe0
[ 2059.726585]  ? generic_parse_monolithic+0x1f0/0x1f0
[ 2059.727248]  alloc_fs_context+0x4f8/0x840
[ 2059.727834]  path_mount+0xa72/0x20b0
[ 2059.728328]  ? strncpy_from_user+0x9e/0x470
[ 2059.728896]  ? finish_automount+0xa40/0xa40
[ 2059.729472]  ? getname_flags.part.0+0x1dd/0x4f0
[ 2059.730104]  ? _copy_from_user+0xfb/0x1b0
[ 2059.730671]  __x64_sys_mount+0x282/0x300
[ 2059.731222]  ? copy_mnt_ns+0xa00/0xa00
[ 2059.731775]  ? rcu_read_lock_sched_held+0x3e/0x80
[ 2059.732407]  do_syscall_64+0x33/0x40
[ 2059.732898]  entry_SYSCALL_64_after_hwframe+0x61/0xc6
[ 2059.733578] RIP: 0033:0x7f38308e8b19
[ 2059.734085] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 2059.736543] RSP: 002b:00007f382de5e188 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5
[ 2059.737543] RAX: ffffffffffffffda RBX: 00007f38309fbf60 RCX: 00007f38308e8b19
[ 2059.738475] RDX: 00000000200000c0 RSI: 0000000020000040 RDI: 0000000000000000
[ 2059.739405] RBP: 00007f382de5e1d0 R08: 0000000020000280 R09: 0000000000000000
[ 2059.740358] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[ 2059.741288] R13: 00007ffca2bf07df R14: 00007f382de5e300 R15: 0000000000022000
21:15:06 executing program 0:
syz_mount_image$vfat(&(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x0, 0x2, &(0x7f0000000180)=[{&(0x7f0000000140)="eb3c906d6b66732e66617400020801000470008400f801", 0x17}, {0x0, 0x0, 0x1000a00}], 0x0, &(0x7f0000000240)=ANY=[])
chdir(&(0x7f0000000040)='./file0\x00')
mount$cgroup(0x0, 0x0, &(0x7f0000000400), 0x0, 0x0)
r0 = syz_io_uring_setup(0x0, &(0x7f0000000680)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000180)=<r1=>0x0, &(0x7f0000002a40)=<r2=>0x0)
r3 = io_uring_register$IORING_REGISTER_PERSONALITY(r0, 0x9, 0x0, 0x0)
r4 = socket$nl_netfilter(0x10, 0x3, 0xc)
syz_io_uring_submit(r1, r2, &(0x7f0000000400)=@IORING_OP_WRITEV={0x2, 0x0, 0x0, @fd=r4, 0x0, 0x0, 0x0, 0x0, 0x0, {0x0, r3}}, 0x0)
r5 = syz_io_uring_setup(0x22, &(0x7f0000000680)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000180), &(0x7f0000002a40))
r6 = io_uring_register$IORING_REGISTER_PERSONALITY(r5, 0x9, 0x0, 0x0)
syz_io_uring_submit(r1, 0x0, &(0x7f0000000440)=@IORING_OP_FSYNC={0x3, 0x2, 0x0, @fd_index=0x9, 0x0, 0x0, 0x0, 0x0, 0x1, {0x0, r6}}, 0x2)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r7 = openat(0xffffffffffffff9c, &(0x7f00000002c0)='./file1\x00', 0x105142, 0x0)
r8 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0)
mount(&(0x7f0000000200)=ANY=[@ANYBLOB="2f6f651317868af191bdb2"], &(0x7f0000000240)='./file0\x00', &(0x7f0000000280)='nfsd\x00', 0x800000, &(0x7f0000000300)='cgroup\x00')
sendfile(r7, r8, 0x0, 0x100000001)
newfstatat(0xffffffffffffff9c, &(0x7f0000000340)='./file1\x00', &(0x7f0000000380), 0x400)

[ 2059.778168] FAULT_INJECTION: forcing a failure.
[ 2059.778168] name failslab, interval 1, probability 0, space 0, times 0
[ 2059.779696] CPU: 0 PID: 17081 Comm: syz-executor.3 Not tainted 5.10.172 #1
[ 2059.780586] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 2059.784014] Call Trace:
[ 2059.784386]  dump_stack+0x107/0x167
[ 2059.785020]  should_fail.cold+0x5/0xa
[ 2059.785541]  should_failslab+0x5/0x20
[ 2059.786067]  __kmalloc_track_caller+0x79/0x3c0
[ 2059.786656]  ? v9fs_session_init+0xa7/0x16a0
[ 2059.787234]  ? kernel_text_address+0xf2/0x120
[ 2059.791887]  kstrdup+0x36/0x70
[ 2059.792285]  v9fs_session_init+0xa7/0x16a0
[ 2059.792803]  ? find_held_lock+0x2c/0x110
[ 2059.793409]  ? kmem_cache_alloc_trace+0x151/0x360
[ 2059.794004]  ? v9fs_show_options+0x690/0x690
[ 2059.794574]  ? kasan_unpoison_shadow+0x33/0x50
[ 2059.795192]  ? __kasan_kmalloc.constprop.0+0xc9/0xd0
[ 2059.795886]  v9fs_mount+0x79/0x8f0
[ 2059.796340]  ? v9fs_write_inode+0x60/0x60
[ 2059.796873]  legacy_get_tree+0x105/0x220
[ 2059.797400]  vfs_get_tree+0x8e/0x300
[ 2059.797927]  path_mount+0x13be/0x20b0
[ 2059.798435]  ? strncpy_from_user+0x9e/0x470
[ 2059.798997]  ? finish_automount+0xa40/0xa40
[ 2059.799554]  ? getname_flags.part.0+0x1dd/0x4f0
[ 2059.800176]  ? _copy_from_user+0xfb/0x1b0
[ 2059.800740]  __x64_sys_mount+0x282/0x300
[ 2059.801283]  ? copy_mnt_ns+0xa00/0xa00
[ 2059.808192]  ? rcu_read_lock_sched_held+0x3e/0x80
[ 2059.808825]  do_syscall_64+0x33/0x40
[ 2059.809312]  entry_SYSCALL_64_after_hwframe+0x61/0xc6
[ 2059.809975] RIP: 0033:0x7f68c9012b19
[ 2059.810459] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 2059.812934] RSP: 002b:00007f68c6588188 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5
[ 2059.813915] RAX: ffffffffffffffda RBX: 00007f68c9125f60 RCX: 00007f68c9012b19
[ 2059.814838] RDX: 00000000200000c0 RSI: 0000000020000040 RDI: 0000000000000000
[ 2059.815788] RBP: 00007f68c65881d0 R08: 0000000020000280 R09: 0000000000000000
[ 2059.816729] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[ 2059.817668] R13: 00007ffe8a1e19df R14: 00007f68c6588300 R15: 0000000000022000
[ 2059.833519] FAULT_INJECTION: forcing a failure.
[ 2059.833519] name failslab, interval 1, probability 0, space 0, times 0
[ 2059.835142] CPU: 1 PID: 17086 Comm: syz-executor.1 Not tainted 5.10.172 #1
[ 2059.844108] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 2059.845184] Call Trace:
[ 2059.845549]  dump_stack+0x107/0x167
[ 2059.846028]  should_fail.cold+0x5/0xa
[ 2059.846532]  ? legacy_init_fs_context+0x44/0xe0
[ 2059.847138]  should_failslab+0x5/0x20
[ 2059.847638]  kmem_cache_alloc_trace+0x55/0x360
[ 2059.848268]  legacy_init_fs_context+0x44/0xe0
[ 2059.848866]  ? generic_parse_monolithic+0x1f0/0x1f0
[ 2059.849513]  alloc_fs_context+0x4f8/0x840
[ 2059.850061]  path_mount+0xa72/0x20b0
[ 2059.850555]  ? strncpy_from_user+0x9e/0x470
[ 2059.851125]  ? finish_automount+0xa40/0xa40
[ 2059.851692]  ? getname_flags.part.0+0x1dd/0x4f0
[ 2059.852324]  __x64_sys_mount+0x282/0x300
[ 2059.852870]  ? copy_mnt_ns+0xa00/0xa00
[ 2059.853379]  ? rcu_read_lock_sched_held+0x3e/0x80
[ 2059.854028]  do_syscall_64+0x33/0x40
[ 2059.854525]  entry_SYSCALL_64_after_hwframe+0x61/0xc6
[ 2059.855193] RIP: 0033:0x7f9bca359b19
[ 2059.855712] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 2059.858052] RSP: 002b:00007f9bc78cf188 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5
[ 2059.859195] RAX: ffffffffffffffda RBX: 00007f9bca46cf60 RCX: 00007f9bca359b19
[ 2059.860172] RDX: 00000000200000c0 RSI: 0000000020000040 RDI: 0000000000000000
[ 2059.861179] RBP: 00007f9bc78cf1d0 R08: 0000000020000280 R09: 0000000000000000
[ 2059.862095] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[ 2059.863011] R13: 00007fffb54b7e9f R14: 00007f9bc78cf300 R15: 0000000000022000
21:15:06 executing program 3:
openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x105142, 0x0)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x400}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
pipe(&(0x7f00000001c0)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
mount$9p_fd(0x0, &(0x7f0000000040)='./file1\x00', &(0x7f00000000c0), 0x0, &(0x7f0000000280)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {}, 0x2c, {[{@nodevmap}]}}) (fail_nth: 19)
openat(r1, &(0x7f0000000180)='./file1\x00', 0x0, 0x0)

[ 2059.876315] FAT-fs (loop6): invalid media value (0x00)
[ 2059.877398] FAT-fs (loop6): Can't find a valid FAT filesystem
21:15:06 executing program 1:
openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x105142, 0x0)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
pipe(&(0x7f00000001c0))
mount$9p_fd(0x0, &(0x7f0000000040)='./file1\x00', &(0x7f00000000c0), 0x0, &(0x7f0000000280)={'trans=fd,', {}, 0x2c, {}, 0x2c, {[{@nodevmap}]}}) (fail_nth: 13)

[ 2059.998545] FAULT_INJECTION: forcing a failure.
[ 2059.998545] name failslab, interval 1, probability 0, space 0, times 0
[ 2060.000240] CPU: 1 PID: 17100 Comm: syz-executor.3 Not tainted 5.10.172 #1
[ 2060.001143] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 2060.002196] Call Trace:
[ 2060.002545]  dump_stack+0x107/0x167
[ 2060.003020]  should_fail.cold+0x5/0xa
[ 2060.003530]  ? create_object.isra.0+0x3a/0xa20
[ 2060.004178]  should_failslab+0x5/0x20
[ 2060.004791]  kmem_cache_alloc+0x5b/0x360
[ 2060.005348]  create_object.isra.0+0x3a/0xa20
[ 2060.005905]  ? __kasan_kmalloc.constprop.0+0xc9/0xd0
[ 2060.006580]  __kmalloc_track_caller+0x177/0x3c0
[ 2060.007162]  ? v9fs_session_init+0xe9/0x16a0
[ 2060.007761]  ? kernel_text_address+0xf2/0x120
[ 2060.008333]  kstrdup+0x36/0x70
[ 2060.008740]  v9fs_session_init+0xe9/0x16a0
[ 2060.009281]  ? find_held_lock+0x2c/0x110
[ 2060.009803]  ? kmem_cache_alloc_trace+0x151/0x360
[ 2060.010395]  ? v9fs_show_options+0x690/0x690
[ 2060.010962]  ? kasan_unpoison_shadow+0x33/0x50
[ 2060.011531]  ? __kasan_kmalloc.constprop.0+0xc9/0xd0
[ 2060.012205]  v9fs_mount+0x79/0x8f0
[ 2060.012737]  ? v9fs_write_inode+0x60/0x60
[ 2060.013260]  legacy_get_tree+0x105/0x220
[ 2060.013767]  ? vfs_get_tree+0x7b/0x300
[ 2060.014305]  vfs_get_tree+0x8e/0x300
[ 2060.014783]  path_mount+0x13be/0x20b0
[ 2060.015309]  ? asm_sysvec_apic_timer_interrupt+0x12/0x20
[ 2060.016034]  ? finish_automount+0xa40/0xa40
[ 2060.016659]  __x64_sys_mount+0x282/0x300
[ 2060.017197]  ? copy_mnt_ns+0xa00/0xa00
[ 2060.017715]  ? rcu_read_lock_sched_held+0x3e/0x80
[ 2060.018352]  do_syscall_64+0x33/0x40
[ 2060.018828]  entry_SYSCALL_64_after_hwframe+0x61/0xc6
[ 2060.019533] RIP: 0033:0x7f68c9012b19
[ 2060.020040] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 2060.022320] RSP: 002b:00007f68c6588188 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5
[ 2060.023291] RAX: ffffffffffffffda RBX: 00007f68c9125f60 RCX: 00007f68c9012b19
[ 2060.024238] RDX: 00000000200000c0 RSI: 0000000020000040 RDI: 0000000000000000
[ 2060.025140] RBP: 00007f68c65881d0 R08: 0000000020000280 R09: 0000000000000000
[ 2060.026037] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[ 2060.026954] R13: 00007ffe8a1e19df R14: 00007f68c6588300 R15: 0000000000022000
21:15:06 executing program 4:
openat$vcs(0xffffffffffffff9c, &(0x7f0000000040), 0x0, 0x0)
openat$sr(0xffffffffffffff9c, &(0x7f00000035c0), 0x0, 0x0)
openat$sr(0xffffffffffffff9c, &(0x7f00000000c0), 0x224400, 0x0)
openat$rtc(0xffffffffffffff9c, &(0x7f0000000200), 0x0, 0x0)
pipe(&(0x7f00000001c0))
open(&(0x7f00000016c0)='./cgroup.net/cgroup.procs\x00', 0x0, 0x0)
pselect6(0x40, &(0x7f0000000180), &(0x7f00000001c0)={0x3fc, 0x0, 0x0, 0x0, 0x800000000000000}, 0x0, 0x0, 0x0)

21:15:06 executing program 5:
openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x105142, 0x0)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
pipe(&(0x7f00000001c0)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
mount$9p_fd(0x0, &(0x7f0000000040)='./file1\x00', &(0x7f00000000c0), 0x0, &(0x7f0000000280)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}}) (fail_nth: 14)
openat(0xffffffffffffffff, 0x0, 0x0, 0x0)

21:15:06 executing program 2:
syz_mount_image$vfat(&(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x0, 0x2, &(0x7f0000000180)=[{&(0x7f0000000140)="eb3c906d6b66732e66617400020801000470008400f801", 0x17}, {0x0, 0x0, 0x1000a00}], 0x0, &(0x7f0000000240)=ANY=[])
chdir(&(0x7f0000000040)='./file0\x00')
r0 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x105142, 0x0)
ioctl$FS_IOC_RESVSP(r0, 0x40305828, &(0x7f0000000040)={0x0, 0x0, 0x0, 0x4000006, 0x11000000})

21:15:06 executing program 7:
r0 = perf_event_open(&(0x7f0000000040)={0x0, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x7ff, 0x7}, 0x4004}, 0x0, 0x0, 0xffffffffffffffff, 0xb)
io_setup(0x7f, &(0x7f00000002c0)=<r1=>0x0)
io_submit(r1, 0x1, &(0x7f0000000340)=[&(0x7f0000000300)={0x0, 0x0, 0x0, 0x5, 0x0, r0, 0x0}])
openat(0xffffffffffffffff, 0x0, 0x0, 0x10)

[ 2060.044540] FAULT_INJECTION: forcing a failure.
[ 2060.044540] name failslab, interval 1, probability 0, space 0, times 0
[ 2060.049711] CPU: 0 PID: 17103 Comm: syz-executor.1 Not tainted 5.10.172 #1
[ 2060.050701] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 2060.052998] Call Trace:
[ 2060.053367]  dump_stack+0x107/0x167
[ 2060.053858]  should_fail.cold+0x5/0xa
[ 2060.054365]  ? create_object.isra.0+0x3a/0xa20
[ 2060.054974]  should_failslab+0x5/0x20
[ 2060.055476]  kmem_cache_alloc+0x5b/0x360
[ 2060.056065]  ? create_object.isra.0+0x3ad/0xa20
[ 2060.056727]  create_object.isra.0+0x3a/0xa20
[ 2060.057290]  ? __kasan_kmalloc.constprop.0+0xc9/0xd0
[ 2060.057976]  __kmalloc_node+0x1ae/0x4b0
[ 2060.058083] 9pnet: Insufficient options for proto=fd
[ 2060.058518]  memcg_alloc_page_obj_cgroups+0x73/0x100
[ 2060.058535]  memcg_slab_post_alloc_hook+0x1f9/0x3f0
[ 2060.058559]  ? trace_hardirqs_on+0x5b/0x180
[ 2060.061222]  kmem_cache_alloc_trace+0x169/0x360
[ 2060.061850]  alloc_fs_context+0x57/0x840
[ 2060.062400]  path_mount+0xa72/0x20b0
[ 2060.062897]  ? strncpy_from_user+0x9e/0x470
[ 2060.063482]  ? finish_automount+0xa40/0xa40
[ 2060.064091]  ? getname_flags.part.0+0x1dd/0x4f0
[ 2060.064715]  ? _copy_from_user+0xfb/0x1b0
[ 2060.065285]  __x64_sys_mount+0x282/0x300
[ 2060.065808]  ? copy_mnt_ns+0xa00/0xa00
[ 2060.066323]  ? rcu_read_lock_sched_held+0x3e/0x80
[ 2060.066961]  do_syscall_64+0x33/0x40
[ 2060.067455]  entry_SYSCALL_64_after_hwframe+0x61/0xc6
[ 2060.068129] RIP: 0033:0x7f9bca359b19
[ 2060.068629] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 2060.071044] RSP: 002b:00007f9bc78cf188 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5
[ 2060.072067] RAX: ffffffffffffffda RBX: 00007f9bca46cf60 RCX: 00007f9bca359b19
[ 2060.073002] RDX: 00000000200000c0 RSI: 0000000020000040 RDI: 0000000000000000
[ 2060.073933] RBP: 00007f9bc78cf1d0 R08: 0000000020000280 R09: 0000000000000000
[ 2060.074871] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[ 2060.079889] R13: 00007fffb54b7e9f R14: 00007f9bc78cf300 R15: 0000000000022000
21:15:06 executing program 7:
msgrcv(0xffffffffffffffff, &(0x7f00000000c0)={0x0, ""/180}, 0xbc, 0x1, 0x800)
r0 = perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x8001, 0x18800, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffd}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
io_setup(0x7f, &(0x7f00000002c0)=<r1=>0x0)
ioctl$PERF_EVENT_IOC_SET_FILTER(r0, 0x40082406, &(0x7f0000000000)='(\xbd\x00')
io_submit(r1, 0x1, &(0x7f0000000340)=[&(0x7f0000000300)={0x0, 0x0, 0x0, 0x5, 0x0, r0, 0x0}])
openat(0xffffffffffffffff, 0x0, 0x0, 0x10)
r2 = gettid()
timer_create(0x0, &(0x7f0000000240)={0x0, 0xb, 0x4, @tid=r2}, &(0x7f0000000040))
perf_event_open(&(0x7f00000001c0)={0x0, 0x80, 0x9, 0x3f, 0x6, 0x6b, 0x0, 0x100000000, 0x80000, 0x4, 0x0, 0x1, 0x1, 0x1, 0x1, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x1, 0x1, 0x0, 0x1, 0x0, 0x0, 0x0, 0x1, 0x1, 0x1, 0x1, 0x1, 0x1, 0x1, 0x0, 0x1, 0x1, 0x1, 0x0, 0x1, 0x1, 0x1, 0x0, 0x1, 0x1, 0x1, 0x0, 0x1, 0x1, @perf_bp={&(0x7f0000000180), 0x1}, 0x4c400, 0xffffffff00000001, 0x1, 0x9, 0x955, 0xffff, 0x8, 0x0, 0x4, 0x0, 0x3}, r2, 0x8, 0xffffffffffffffff, 0x2)

21:15:06 executing program 3:
openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x105142, 0x0)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x400}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
pipe(&(0x7f00000001c0)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
mount$9p_fd(0x0, &(0x7f0000000040)='./file1\x00', &(0x7f00000000c0), 0x0, &(0x7f0000000280)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {}, 0x2c, {[{@nodevmap}]}}) (fail_nth: 20)
openat(r1, &(0x7f0000000180)='./file1\x00', 0x0, 0x0)

[ 2060.190056] FAULT_INJECTION: forcing a failure.
[ 2060.190056] name failslab, interval 1, probability 0, space 0, times 0
[ 2060.192032] CPU: 0 PID: 17116 Comm: syz-executor.5 Not tainted 5.10.172 #1
[ 2060.200185] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 2060.202155] Call Trace:
[ 2060.202796]  dump_stack+0x107/0x167
[ 2060.203655]  should_fail.cold+0x5/0xa
[ 2060.204220]  ? v9fs_mount+0x5a/0x8f0
[ 2060.204721]  should_failslab+0x5/0x20
[ 2060.205223]  kmem_cache_alloc_trace+0x55/0x360
[ 2060.205834]  ? asm_sysvec_apic_timer_interrupt+0x12/0x20
[ 2060.206550]  ? trace_hardirqs_on+0x5b/0x180
[ 2060.207127]  ? v9fs_write_inode+0x60/0x60
[ 2060.207726]  v9fs_mount+0x5a/0x8f0
[ 2060.208912]  ? v9fs_write_inode+0x60/0x60
[ 2060.210216]  legacy_get_tree+0x105/0x220
[ 2060.211464]  ? path_mount+0x13b6/0x20b0
[ 2060.212628]  vfs_get_tree+0x8e/0x300
[ 2060.213711]  path_mount+0x13be/0x20b0
[ 2060.214805]  ? strncpy_from_user+0x9e/0x470
[ 2060.216094]  ? finish_automount+0xa40/0xa40
[ 2060.217388]  ? getname_flags.part.0+0x1dd/0x4f0
[ 2060.218160] 9pnet: Insufficient options for proto=fd
[ 2060.218737]  ? _copy_from_user+0xfb/0x1b0
[ 2060.218762]  __x64_sys_mount+0x282/0x300
[ 2060.218793]  ? copy_mnt_ns+0xa00/0xa00
[ 2060.223191]  ? rcu_read_lock_sched_held+0x3e/0x80
[ 2060.224571]  do_syscall_64+0x33/0x40
[ 2060.225684]  entry_SYSCALL_64_after_hwframe+0x61/0xc6
[ 2060.227158] RIP: 0033:0x7f38308e8b19
[ 2060.228243] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 2060.233259] RSP: 002b:00007f382de5e188 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5
[ 2060.235270] RAX: ffffffffffffffda RBX: 00007f38309fbf60 RCX: 00007f38308e8b19
[ 2060.237329] RDX: 00000000200000c0 RSI: 0000000020000040 RDI: 0000000000000000
[ 2060.239342] RBP: 00007f382de5e1d0 R08: 0000000020000280 R09: 0000000000000000
[ 2060.241305] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[ 2060.243294] R13: 00007ffca2bf07df R14: 00007f382de5e300 R15: 0000000000022000
[ 2060.308496] FAULT_INJECTION: forcing a failure.
[ 2060.308496] name failslab, interval 1, probability 0, space 0, times 0
[ 2060.310551] CPU: 1 PID: 17121 Comm: syz-executor.3 Not tainted 5.10.172 #1
[ 2060.311585] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 2060.312693] Call Trace:
[ 2060.313054]  dump_stack+0x107/0x167
[ 2060.313547]  should_fail.cold+0x5/0xa
[ 2060.314059]  ? p9_client_create+0xaf/0x1090
[ 2060.314627]  should_failslab+0x5/0x20
[ 2060.315123]  kmem_cache_alloc_trace+0x55/0x360
[ 2060.315740]  ? find_held_lock+0x2c/0x110
[ 2060.316804]  p9_client_create+0xaf/0x1090
[ 2060.317847]  ? lock_downgrade+0x6d0/0x6d0
[ 2060.318899]  ? p9_client_flush+0x430/0x430
[ 2060.320031]  ? lockdep_init_map_type+0x2c7/0x780
[ 2060.321174]  ? rcu_read_lock_sched_held+0x3e/0x80
[ 2060.322403]  ? __raw_spin_lock_init+0x36/0x110
[ 2060.323499]  v9fs_session_init+0x1dd/0x16a0
[ 2060.324162]  ? kmem_cache_alloc_trace+0x151/0x360
[ 2060.324742]  ? v9fs_show_options+0x690/0x690
[ 2060.325287]  ? kasan_unpoison_shadow+0x33/0x50
[ 2060.325855]  ? __kasan_kmalloc.constprop.0+0xc9/0xd0
[ 2060.326506]  v9fs_mount+0x79/0x8f0
[ 2060.326987]  ? v9fs_write_inode+0x60/0x60
[ 2060.327542]  legacy_get_tree+0x105/0x220
[ 2060.328128]  vfs_get_tree+0x8e/0x300
[ 2060.328630]  path_mount+0x13be/0x20b0
[ 2060.329149]  ? strncpy_from_user+0x9e/0x470
[ 2060.329725]  ? finish_automount+0xa40/0xa40
[ 2060.330315]  ? getname_flags.part.0+0x1dd/0x4f0
[ 2060.330928]  ? _copy_from_user+0xfb/0x1b0
[ 2060.331492]  __x64_sys_mount+0x282/0x300
[ 2060.332107]  ? copy_mnt_ns+0xa00/0xa00
[ 2060.332621]  ? rcu_read_lock_sched_held+0x3e/0x80
[ 2060.333275]  do_syscall_64+0x33/0x40
[ 2060.333781]  entry_SYSCALL_64_after_hwframe+0x61/0xc6
[ 2060.334465] RIP: 0033:0x7f68c9012b19
[ 2060.334956] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 2060.337393] RSP: 002b:00007f68c6588188 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5
[ 2060.338372] RAX: ffffffffffffffda RBX: 00007f68c9125f60 RCX: 00007f68c9012b19
[ 2060.339290] RDX: 00000000200000c0 RSI: 0000000020000040 RDI: 0000000000000000
[ 2060.340282] RBP: 00007f68c65881d0 R08: 0000000020000280 R09: 0000000000000000
[ 2060.341211] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[ 2060.342153] R13: 00007ffe8a1e19df R14: 00007f68c6588300 R15: 0000000000022000
21:15:25 executing program 1:
openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x105142, 0x0)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
pipe(&(0x7f00000001c0))
mount$9p_fd(0x0, &(0x7f0000000040)='./file1\x00', &(0x7f00000000c0), 0x0, &(0x7f0000000280)={'trans=fd,', {}, 0x2c, {}, 0x2c, {[{@nodevmap}]}}) (fail_nth: 14)

21:15:25 executing program 0:
syz_mount_image$vfat(&(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x0, 0x2, &(0x7f0000000180)=[{&(0x7f0000000140)="eb3c906d6b66732e66617400020801000470008400f801", 0x17}, {0x0, 0x0, 0x1000a00}], 0x0, &(0x7f0000000240)=ANY=[])
chdir(&(0x7f0000000040)='./file0\x00')
mount$cgroup(0x0, 0x0, &(0x7f0000000400), 0x0, 0x0)
r0 = syz_io_uring_setup(0x22, 0x0, &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000180)=<r1=>0x0, &(0x7f0000002a40)=<r2=>0x0)
r3 = io_uring_register$IORING_REGISTER_PERSONALITY(r0, 0x9, 0x0, 0x0)
r4 = socket$nl_netfilter(0x10, 0x3, 0xc)
syz_io_uring_submit(r1, r2, &(0x7f0000000400)=@IORING_OP_WRITEV={0x2, 0x0, 0x0, @fd=r4, 0x0, 0x0, 0x0, 0x0, 0x0, {0x0, r3}}, 0x0)
r5 = syz_io_uring_setup(0x22, &(0x7f0000000680)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000180), &(0x7f0000002a40))
r6 = io_uring_register$IORING_REGISTER_PERSONALITY(r5, 0x9, 0x0, 0x0)
syz_io_uring_submit(r1, 0x0, &(0x7f0000000440)=@IORING_OP_FSYNC={0x3, 0x2, 0x0, @fd_index=0x9, 0x0, 0x0, 0x0, 0x0, 0x1, {0x0, r6}}, 0x2)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r7 = openat(0xffffffffffffff9c, &(0x7f00000002c0)='./file1\x00', 0x105142, 0x0)
r8 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0)
mount(&(0x7f0000000200)=ANY=[@ANYBLOB="2f6f651317868af191bdb2"], &(0x7f0000000240)='./file0\x00', &(0x7f0000000280)='nfsd\x00', 0x800000, &(0x7f0000000300)='cgroup\x00')
sendfile(r7, r8, 0x0, 0x100000001)
newfstatat(0xffffffffffffff9c, &(0x7f0000000340)='./file1\x00', &(0x7f0000000380), 0x400)

21:15:25 executing program 6:
r0 = syz_mount_image$vfat(&(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x0, 0x2, &(0x7f0000000180)=[{&(0x7f0000000140)="eb3c906d6b66732e66617400020801000470008400", 0x15}, {0x0, 0x0, 0x1000a00}], 0x0, &(0x7f0000000240)=ANY=[])
chdir(&(0x7f0000000040)='./file0\x00')
openat2(r0, &(0x7f0000000100)='./file0\x00', &(0x7f00000001c0)={0x40000, 0x81}, 0x18)
mount$cgroup(0x0, 0x0, &(0x7f0000000400), 0x0, 0x0)
r1 = syz_io_uring_setup(0x22, &(0x7f0000000680)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000180)=<r2=>0x0, &(0x7f0000002a40)=<r3=>0x0)
r4 = io_uring_register$IORING_REGISTER_PERSONALITY(r1, 0x9, 0x0, 0x0)
r5 = socket$nl_netfilter(0x10, 0x3, 0xc)
syz_io_uring_submit(r2, r3, &(0x7f0000000400)=@IORING_OP_WRITEV={0x2, 0x0, 0x0, @fd=r5, 0x0, 0x0, 0x0, 0x0, 0x0, {0x0, r4}}, 0x0)
r6 = syz_io_uring_setup(0x22, &(0x7f0000000680)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000180), &(0x7f0000002a40))
r7 = io_uring_register$IORING_REGISTER_PERSONALITY(r6, 0x9, 0x0, 0x0)
syz_io_uring_submit(r2, 0x0, &(0x7f0000000440)=@IORING_OP_FSYNC={0x3, 0x2, 0x0, @fd_index=0x9, 0x0, 0x0, 0x0, 0x0, 0x1, {0x0, r7}}, 0x2)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r8 = openat(0xffffffffffffff9c, &(0x7f00000002c0)='./file1\x00', 0x105142, 0x0)
r9 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0)
sendfile(r8, r9, 0x0, 0x100000001)
newfstatat(0xffffffffffffff9c, &(0x7f0000000340)='./file1\x00', &(0x7f0000000380), 0x400)

21:15:25 executing program 7:
r0 = perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
io_setup(0x7f, &(0x7f00000002c0)=<r1=>0x0)
io_submit(r1, 0x1, &(0x7f0000000340)=[&(0x7f0000000300)={0x0, 0x0, 0x0, 0x5, 0x0, r0, 0x0}])
r2 = openat(0xffffffffffffffff, 0x0, 0x0, 0x10)
r3 = perf_event_open(&(0x7f0000001d80)={0x2, 0x80, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
mmap(&(0x7f0000ffc000/0x2000)=nil, 0x2000, 0x0, 0x13, r3, 0x0)
perf_event_open(&(0x7f0000001d80)={0x2, 0x80, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, r3, 0x2)
r4 = signalfd4(r2, &(0x7f0000000200)={[0x1]}, 0x8, 0x80800)
ioctl$AUTOFS_DEV_IOCTL_OPENMOUNT(r2, 0xc0189374, &(0x7f0000000640)=ANY=[@ANYBLOB="01000077d400000018000008", @ANYRES32=<r5=>r2, @ANYBLOB="07000000000000002e2f66696c65300052ccd805d61661c1f0e096a475e94b5f1670f6d426451f8c649a9dc51ca23ace86303ad645b80ac9b4ad6f1a83a3980ce1cbd8013e9b2bf647fff1d452f627e98107599108215133a4d6f36d770d7a7e0246bb20e4bee983e1fe30078e5342845b3bcecd5c17db0cf639db31b23017ff46949264840af4154600cb4282471320bc995062eca7e62ed676051c08fa88"])
r6 = dup3(r0, r2, 0x0)
io_submit(r1, 0x5, &(0x7f0000000600)=[&(0x7f0000000000)={0x0, 0x0, 0x0, 0x1, 0x3, r3, &(0x7f00000000c0)="6ab21670bf13a5050765ab3cbd2ba7dce46f96ceddc99c21aa735ae1d0b143003d77326a839a03b83da5a5287a818fa53e399a9c622226c08930e2a278c967240e309aba4ce00c35c85f88dbc21ef5c8fe34e496d0d23caaf3a3eb05af031907d3f4003ad587ea16d2ec8c4220c5bdbc5d1b65211426641609ab3357a8cd6a14d8eff1901148e4ccb900071d36634afa9cacbb564bc40808dbd4971a759dfbde1db5", 0xa2, 0x6, 0x0, 0x1, r2}, &(0x7f0000000240)={0x0, 0x0, 0x0, 0x7, 0x1000, r0, &(0x7f0000000180)="2aa6b3d9600e9d3eed939b9713e74fa5defc1230dcb04b74f6070a17d4da6a85f1362d891c96b3ac0f654749c7adcb434fa7b8f3156bc698c5966b0407afd892cc8837d5198cae3bc6cba526ad51364d52c84da46381c0ff18ff8b8e4e91e2f9c6a8c148a6a5e294", 0x68, 0x200, 0x0, 0x0, r4}, &(0x7f0000000280)={0x0, 0x0, 0x0, 0x8, 0x2, r2, &(0x7f0000000380)="759d645084eae58ea87349a794a8c2bcdaf4f55b7b142f88c323681e178b073ab77f061a7e93eadf1c9bc1c2d235cdab250fd6087600f0a5715a6aa57c6cd361d65acdaccd363e8886b5f22e64e51fe5a6ea55b540f7273315d63028e4c7f2d6494d4639f61941e58521978bc7730a8e45184c33a98596688a33efb0", 0x7c, 0x20, 0x0, 0x3, r2}, &(0x7f0000000540)={0x0, 0x0, 0x0, 0x0, 0x6, r2, &(0x7f0000000400)="b2a4bca91fab944d44c4757e07f4d2768be98eb1b80e697b3ffa9ae8bacaa5013f4630ea799c2d76e88d1db6468993b937ccfe83230d569496aa8bfdc71d71bb697e597f3d05ea729555267624507c0a23d0081a1bfd4872572568146b6ffd724cba633594336a9e2010be32559c288ee5ea7c121842c674189a9b84f595bf2d025c03bb79ad2efa40b0e8bcf75d51042acb5b7c1f15dae0ee6e5ee4381fe66d6f8e4f3b4c3f100bcafeb9b27d39588f59aaf368396d0afb79d6e2f761bde4f072f1954af9ed57ed52f97a909fe6abfa5e11891bd8bcef5afe185351dfe9e16327e0aa07ab20de0e84e4f9d977c0dea0361f25d430a0", 0xf6, 0x7fff, 0x0, 0x2, r5}, &(0x7f00000005c0)={0x0, 0x0, 0x0, 0x5, 0x7, r2, &(0x7f0000000580)="c7b6ddd6ddef91a5e080a6444ac3f8a2a77cb71dd6ce80aa938955a05c4476ce4c6fd664d1d544f144d370ee79452eb842ac875124af7f44e1e6a26e1fa95bb6", 0x40, 0x6, 0x0, 0x3, r6}])

21:15:25 executing program 2:
syz_mount_image$vfat(&(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x0, 0x2, &(0x7f0000000180)=[{&(0x7f0000000140)="eb3c906d6b66732e66617400020801000470008400f801", 0x17}, {0x0, 0x0, 0x1000a00}], 0x0, &(0x7f0000000240)=ANY=[])
chdir(&(0x7f0000000040)='./file0\x00')
r0 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x105142, 0x0)
ioctl$FS_IOC_RESVSP(r0, 0x40305828, &(0x7f0000000040)={0x0, 0x0, 0x0, 0x4000006, 0x12000000})

21:15:25 executing program 4:
openat$vcs(0xffffffffffffff9c, &(0x7f0000000040), 0x0, 0x0)
openat$sr(0xffffffffffffff9c, &(0x7f00000035c0), 0x0, 0x0)
openat$sr(0xffffffffffffff9c, &(0x7f00000000c0), 0x224400, 0x0)
openat$rtc(0xffffffffffffff9c, &(0x7f0000000200), 0x0, 0x0)
pipe(&(0x7f00000001c0))
open(&(0x7f00000016c0)='./cgroup.net/cgroup.procs\x00', 0x0, 0x0)
pselect6(0x40, &(0x7f0000000180), &(0x7f00000001c0)={0x3fc, 0x0, 0x0, 0x0, 0xa00000000000000}, 0x0, 0x0, 0x0)

21:15:25 executing program 5:
openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x105142, 0x0)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
pipe(&(0x7f00000001c0)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
mount$9p_fd(0x0, &(0x7f0000000040)='./file1\x00', &(0x7f00000000c0), 0x0, &(0x7f0000000280)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}}) (fail_nth: 15)
openat(0xffffffffffffffff, 0x0, 0x0, 0x0)

21:15:25 executing program 3:
openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x105142, 0x0)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x400}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
pipe(&(0x7f00000001c0)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
mount$9p_fd(0x0, &(0x7f0000000040)='./file1\x00', &(0x7f00000000c0), 0x0, &(0x7f0000000280)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {}, 0x2c, {[{@nodevmap}]}}) (fail_nth: 21)
openat(r1, &(0x7f0000000180)='./file1\x00', 0x0, 0x0)

[ 2078.782166] FAULT_INJECTION: forcing a failure.
[ 2078.782166] name failslab, interval 1, probability 0, space 0, times 0
[ 2078.783822] CPU: 0 PID: 17146 Comm: syz-executor.1 Not tainted 5.10.172 #1
[ 2078.784726] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 2078.785764] Call Trace:
[ 2078.786134]  dump_stack+0x107/0x167
[ 2078.786626]  should_fail.cold+0x5/0xa
[ 2078.787146]  ? legacy_init_fs_context+0x44/0xe0
[ 2078.787743]  should_failslab+0x5/0x20
[ 2078.788254]  kmem_cache_alloc_trace+0x55/0x360
[ 2078.788825]  ? lockdep_init_map_type+0x2c7/0x780
[ 2078.789435]  legacy_init_fs_context+0x44/0xe0
[ 2078.790014]  ? generic_parse_monolithic+0x1f0/0x1f0
[ 2078.790678]  alloc_fs_context+0x4f8/0x840
[ 2078.791241]  path_mount+0xa72/0x20b0
[ 2078.791749]  ? strncpy_from_user+0x9e/0x470
[ 2078.792363]  ? finish_automount+0xa40/0xa40
[ 2078.792944]  ? getname_flags.part.0+0x1dd/0x4f0
[ 2078.793576]  ? _copy_from_user+0xfb/0x1b0
[ 2078.794157]  __x64_sys_mount+0x282/0x300
[ 2078.794704]  ? copy_mnt_ns+0xa00/0xa00
[ 2078.795232]  ? rcu_read_lock_sched_held+0x3e/0x80
[ 2078.795882]  do_syscall_64+0x33/0x40
[ 2078.796405]  entry_SYSCALL_64_after_hwframe+0x61/0xc6
[ 2078.797077] RIP: 0033:0x7f9bca359b19
[ 2078.797565] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 2078.800075] RSP: 002b:00007f9bc78cf188 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5
[ 2078.801077] RAX: ffffffffffffffda RBX: 00007f9bca46cf60 RCX: 00007f9bca359b19
[ 2078.801994] RDX: 00000000200000c0 RSI: 0000000020000040 RDI: 0000000000000000
[ 2078.802929] RBP: 00007f9bc78cf1d0 R08: 0000000020000280 R09: 0000000000000000
[ 2078.803861] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[ 2078.804838] R13: 00007fffb54b7e9f R14: 00007f9bc78cf300 R15: 0000000000022000
[ 2078.809536] FAULT_INJECTION: forcing a failure.
[ 2078.809536] name failslab, interval 1, probability 0, space 0, times 0
[ 2078.812292] CPU: 1 PID: 17138 Comm: syz-executor.3 Not tainted 5.10.172 #1
[ 2078.813230] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 2078.814336] Call Trace:
[ 2078.814702]  dump_stack+0x107/0x167
[ 2078.815193]  should_fail.cold+0x5/0xa
[ 2078.815716]  ? create_object.isra.0+0x3a/0xa20
[ 2078.816337]  should_failslab+0x5/0x20
[ 2078.816824]  kmem_cache_alloc+0x5b/0x360
[ 2078.817336]  ? kernel_text_address+0xf2/0x120
[ 2078.817914]  create_object.isra.0+0x3a/0xa20
[ 2078.818455]  ? __kasan_kmalloc.constprop.0+0xc9/0xd0
[ 2078.819109]  kmem_cache_alloc_trace+0x151/0x360
[ 2078.819711]  ? find_held_lock+0x2c/0x110
[ 2078.820288]  p9_client_create+0xaf/0x1090
[ 2078.820818]  ? lock_downgrade+0x6d0/0x6d0
[ 2078.821335]  ? p9_client_flush+0x430/0x430
[ 2078.821867]  ? lockdep_init_map_type+0x2c7/0x780
[ 2078.822461]  ? rcu_read_lock_sched_held+0x3e/0x80
[ 2078.823079]  ? __raw_spin_lock_init+0x36/0x110
[ 2078.823657]  v9fs_session_init+0x1dd/0x16a0
[ 2078.824336]  ? kmem_cache_alloc_trace+0x151/0x360
[ 2078.824987]  ? v9fs_show_options+0x690/0x690
[ 2078.825598]  ? kasan_unpoison_shadow+0x33/0x50
[ 2078.826210]  ? __kasan_kmalloc.constprop.0+0xc9/0xd0
[ 2078.826894]  v9fs_mount+0x79/0x8f0
[ 2078.827373]  ? v9fs_write_inode+0x60/0x60
[ 2078.827974]  legacy_get_tree+0x105/0x220
[ 2078.828533]  vfs_get_tree+0x8e/0x300
[ 2078.829063]  path_mount+0x13be/0x20b0
[ 2078.829572]  ? strncpy_from_user+0x9e/0x470
[ 2078.830153]  ? finish_automount+0xa40/0xa40
[ 2078.830738]  ? getname_flags.part.0+0x1dd/0x4f0
[ 2078.831357]  ? _copy_from_user+0xfb/0x1b0
[ 2078.831924]  __x64_sys_mount+0x282/0x300
[ 2078.832486]  ? copy_mnt_ns+0xa00/0xa00
[ 2078.833021]  ? rcu_read_lock_sched_held+0x3e/0x80
[ 2078.833670]  do_syscall_64+0x33/0x40
[ 2078.834172]  entry_SYSCALL_64_after_hwframe+0x61/0xc6
[ 2078.834853] RIP: 0033:0x7f68c9012b19
[ 2078.835351] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 2078.837925] RSP: 002b:00007f68c6588188 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5
[ 2078.839045] RAX: ffffffffffffffda RBX: 00007f68c9125f60 RCX: 00007f68c9012b19
[ 2078.840107] RDX: 00000000200000c0 RSI: 0000000020000040 RDI: 0000000000000000
[ 2078.841050] RBP: 00007f68c65881d0 R08: 0000000020000280 R09: 0000000000000000
[ 2078.841995] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[ 2078.843053] R13: 00007ffe8a1e19df R14: 00007f68c6588300 R15: 0000000000022000
[ 2078.867214] FAT-fs (loop6): invalid media value (0x00)
[ 2078.868158] FAT-fs (loop6): Can't find a valid FAT filesystem
21:15:25 executing program 1:
openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x105142, 0x0)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
pipe(&(0x7f00000001c0))
mount$9p_fd(0x0, &(0x7f0000000040)='./file1\x00', &(0x7f00000000c0), 0x0, &(0x7f0000000280)={'trans=fd,', {}, 0x2c, {}, 0x2c, {[{@nodevmap}]}}) (fail_nth: 15)

[ 2078.873132] 9pnet: Insufficient options for proto=fd
[ 2078.881508] FAULT_INJECTION: forcing a failure.
[ 2078.881508] name failslab, interval 1, probability 0, space 0, times 0
[ 2078.884115] CPU: 1 PID: 17150 Comm: syz-executor.5 Not tainted 5.10.172 #1
[ 2078.885135] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 2078.886415] Call Trace:
[ 2078.886814]  dump_stack+0x107/0x167
[ 2078.887373]  should_fail.cold+0x5/0xa
[ 2078.887993]  ? create_object.isra.0+0x3a/0xa20
[ 2078.888689]  should_failslab+0x5/0x20
[ 2078.889254]  kmem_cache_alloc+0x5b/0x360
[ 2078.889863]  ? legacy_init_fs_context+0x44/0xe0
[ 2078.890556]  create_object.isra.0+0x3a/0xa20
[ 2078.891197]  ? __kasan_kmalloc.constprop.0+0xc9/0xd0
[ 2078.892014]  kmem_cache_alloc_trace+0x151/0x360
[ 2078.892710]  legacy_init_fs_context+0x44/0xe0
[ 2078.893382]  ? generic_parse_monolithic+0x1f0/0x1f0
[ 2078.894128]  alloc_fs_context+0x4f8/0x840
[ 2078.894757]  path_mount+0xa72/0x20b0
[ 2078.895328]  ? strncpy_from_user+0x9e/0x470
[ 2078.895993]  ? finish_automount+0xa40/0xa40
[ 2078.896646]  ? getname_flags.part.0+0x1dd/0x4f0
[ 2078.897340]  ? _copy_from_user+0xfb/0x1b0
[ 2078.897993]  __x64_sys_mount+0x282/0x300
[ 2078.898565]  ? copy_mnt_ns+0xa00/0xa00
[ 2078.899140]  ? rcu_read_lock_sched_held+0x3e/0x80
[ 2078.899861]  do_syscall_64+0x33/0x40
[ 2078.900437]  entry_SYSCALL_64_after_hwframe+0x61/0xc6
[ 2078.901206] RIP: 0033:0x7f38308e8b19
[ 2078.901783] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 2078.904517] RSP: 002b:00007f382de5e188 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5
[ 2078.905642] RAX: ffffffffffffffda RBX: 00007f38309fbf60 RCX: 00007f38308e8b19
[ 2078.906699] RDX: 00000000200000c0 RSI: 0000000020000040 RDI: 0000000000000000
[ 2078.907730] RBP: 00007f382de5e1d0 R08: 0000000020000280 R09: 0000000000000000
[ 2078.908727] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[ 2078.909788] R13: 00007ffca2bf07df R14: 00007f382de5e300 R15: 0000000000022000
[ 2078.952822] FAULT_INJECTION: forcing a failure.
[ 2078.952822] name failslab, interval 1, probability 0, space 0, times 0
[ 2078.954358] CPU: 1 PID: 17163 Comm: syz-executor.1 Not tainted 5.10.172 #1
[ 2078.955223] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 2078.956341] Call Trace:
[ 2078.956691]  dump_stack+0x107/0x167
[ 2078.957153]  should_fail.cold+0x5/0xa
[ 2078.957631]  ? create_object.isra.0+0x3a/0xa20
[ 2078.958213]  should_failslab+0x5/0x20
[ 2078.958694]  kmem_cache_alloc+0x5b/0x360
[ 2078.959211]  ? cred_has_capability.isra.0+0x152/0x2b0
[ 2078.959874]  create_object.isra.0+0x3a/0xa20
[ 2078.960628]  ? __kasan_kmalloc.constprop.0+0xc9/0xd0
[ 2078.961286]  kmem_cache_alloc_trace+0x151/0x360
[ 2078.961927]  ? v9fs_write_inode+0x60/0x60
[ 2078.962495]  v9fs_mount+0x5a/0x8f0
[ 2078.962994]  ? v9fs_write_inode+0x60/0x60
[ 2078.963555]  legacy_get_tree+0x105/0x220
[ 2078.964223]  vfs_get_tree+0x8e/0x300
[ 2078.965087]  path_mount+0x13be/0x20b0
[ 2078.966003]  ? strncpy_from_user+0x9e/0x470
[ 2078.967053]  ? finish_automount+0xa40/0xa40
[ 2078.968263]  ? getname_flags.part.0+0x1dd/0x4f0
[ 2078.969350]  ? _copy_from_user+0xfb/0x1b0
[ 2078.970296]  __x64_sys_mount+0x282/0x300
[ 2078.971335]  ? copy_mnt_ns+0xa00/0xa00
[ 2078.972458]  ? rcu_read_lock_sched_held+0x3e/0x80
[ 2078.974030]  do_syscall_64+0x33/0x40
[ 2078.975285]  entry_SYSCALL_64_after_hwframe+0x61/0xc6
[ 2078.976993] RIP: 0033:0x7f9bca359b19
[ 2078.978181] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 2078.993449] RSP: 002b:00007f9bc78cf188 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5
[ 2078.994506] RAX: ffffffffffffffda RBX: 00007f9bca46cf60 RCX: 00007f9bca359b19
[ 2078.995426] RDX: 00000000200000c0 RSI: 0000000020000040 RDI: 0000000000000000
[ 2079.000388] RBP: 00007f9bc78cf1d0 R08: 0000000020000280 R09: 0000000000000000
[ 2079.001244] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[ 2079.002100] R13: 00007fffb54b7e9f R14: 00007f9bc78cf300 R15: 0000000000022000
21:15:25 executing program 3:
openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x105142, 0x0)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x400}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
pipe(&(0x7f00000001c0)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
mount$9p_fd(0x0, &(0x7f0000000040)='./file1\x00', &(0x7f00000000c0), 0x0, &(0x7f0000000280)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {}, 0x2c, {[{@nodevmap}]}}) (fail_nth: 22)
openat(r1, &(0x7f0000000180)='./file1\x00', 0x0, 0x0)

21:15:25 executing program 2:
syz_mount_image$vfat(&(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x0, 0x2, &(0x7f0000000180)=[{&(0x7f0000000140)="eb3c906d6b66732e66617400020801000470008400f801", 0x17}, {0x0, 0x0, 0x1000a00}], 0x0, &(0x7f0000000240)=ANY=[])
chdir(&(0x7f0000000040)='./file0\x00')
r0 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x105142, 0x0)
ioctl$FS_IOC_RESVSP(r0, 0x40305828, &(0x7f0000000040)={0x0, 0x0, 0x0, 0x4000006, 0x23000000})

21:15:25 executing program 4:
openat$vcs(0xffffffffffffff9c, &(0x7f0000000040), 0x0, 0x0)
openat$sr(0xffffffffffffff9c, &(0x7f00000035c0), 0x0, 0x0)
openat$sr(0xffffffffffffff9c, &(0x7f00000000c0), 0x224400, 0x0)
openat$rtc(0xffffffffffffff9c, &(0x7f0000000200), 0x0, 0x0)
pipe(&(0x7f00000001c0))
open(&(0x7f00000016c0)='./cgroup.net/cgroup.procs\x00', 0x0, 0x0)
pselect6(0x40, &(0x7f0000000180), &(0x7f00000001c0)={0x3fc, 0x0, 0x0, 0x0, 0x1000000000000000}, 0x0, 0x0, 0x0)

[ 2079.091531] FAULT_INJECTION: forcing a failure.
[ 2079.091531] name failslab, interval 1, probability 0, space 0, times 0
[ 2079.097217] CPU: 1 PID: 17166 Comm: syz-executor.3 Not tainted 5.10.172 #1
[ 2079.099127] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 2079.100695] Call Trace:
[ 2079.101032]  dump_stack+0x107/0x167
[ 2079.101514]  should_fail.cold+0x5/0xa
[ 2079.102029]  should_failslab+0x5/0x20
[ 2079.102537]  __kmalloc_track_caller+0x79/0x3c0
[ 2079.103099]  ? p9_client_create+0x41d/0x1090
[ 2079.103664]  kstrdup+0x36/0x70
[ 2079.108193]  p9_client_create+0x41d/0x1090
[ 2079.108727]  ? lock_downgrade+0x6d0/0x6d0
[ 2079.109251]  ? p9_client_flush+0x430/0x430
[ 2079.109790]  ? lockdep_init_map_type+0x2c7/0x780
[ 2079.110424]  ? rcu_read_lock_sched_held+0x3e/0x80
[ 2079.111069]  ? __raw_spin_lock_init+0x36/0x110
[ 2079.111683]  v9fs_session_init+0x1dd/0x16a0
[ 2079.112295]  ? irqentry_enter+0x26/0x60
[ 2079.112845]  ? irqentry_enter+0x26/0x60
[ 2079.113397]  ? v9fs_show_options+0x690/0x690
[ 2079.113995]  ? lockdep_hardirqs_on_prepare+0x277/0x3e0
[ 2079.114703]  ? asm_sysvec_apic_timer_interrupt+0x12/0x20
[ 2079.115427]  ? trace_hardirqs_on+0x5b/0x180
[ 2079.116062]  ? asm_sysvec_apic_timer_interrupt+0x12/0x20
[ 2079.116770]  v9fs_mount+0x79/0x8f0
[ 2079.117222]  ? v9fs_write_inode+0x60/0x60
[ 2079.117769]  legacy_get_tree+0x105/0x220
[ 2079.118292]  vfs_get_tree+0x8e/0x300
[ 2079.118780]  path_mount+0x13be/0x20b0
[ 2079.119281]  ? strncpy_from_user+0x9e/0x470
[ 2079.119838]  ? finish_automount+0xa40/0xa40
[ 2079.120407]  ? getname_flags.part.0+0x1dd/0x4f0
[ 2079.121001]  ? _copy_from_user+0xfb/0x1b0
[ 2079.121566]  __x64_sys_mount+0x282/0x300
[ 2079.122109]  ? copy_mnt_ns+0xa00/0xa00
[ 2079.122636]  ? rcu_read_lock_sched_held+0x3e/0x80
[ 2079.123278]  do_syscall_64+0x33/0x40
[ 2079.123773]  entry_SYSCALL_64_after_hwframe+0x61/0xc6
[ 2079.124468] RIP: 0033:0x7f68c9012b19
[ 2079.124940] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 2079.127289] RSP: 002b:00007f68c6588188 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5
[ 2079.128308] RAX: ffffffffffffffda RBX: 00007f68c9125f60 RCX: 00007f68c9012b19
[ 2079.129284] RDX: 00000000200000c0 RSI: 0000000020000040 RDI: 0000000000000000
[ 2079.130224] RBP: 00007f68c65881d0 R08: 0000000020000280 R09: 0000000000000000
[ 2079.131176] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[ 2079.132188] R13: 00007ffe8a1e19df R14: 00007f68c6588300 R15: 0000000000022000
[ 2079.152509] 9pnet: Insufficient options for proto=fd
21:15:25 executing program 5:
openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x105142, 0x0)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
pipe(&(0x7f00000001c0)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
mount$9p_fd(0x0, &(0x7f0000000040)='./file1\x00', &(0x7f00000000c0), 0x0, &(0x7f0000000280)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}}) (fail_nth: 16)
openat(0xffffffffffffffff, 0x0, 0x0, 0x0)

21:15:25 executing program 7:
r0 = perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
io_setup(0x7f, &(0x7f00000002c0)=<r1=>0x0)
r2 = accept4$bt_l2cap(0xffffffffffffffff, &(0x7f0000000000), &(0x7f00000000c0)=0xe, 0x100000)
r3 = perf_event_open(&(0x7f0000001d80)={0x2, 0x80, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
mmap(&(0x7f0000ffc000/0x2000)=nil, 0x2000, 0x0, 0x13, r3, 0x0)
perf_event_open(&(0x7f0000001d80)={0x2, 0x80, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, r3, 0x2)
r4 = perf_event_open(&(0x7f0000001d80)={0x2, 0x80, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
mmap(&(0x7f0000ffc000/0x2000)=nil, 0x2000, 0x0, 0x13, r4, 0x0)
perf_event_open(&(0x7f0000001d80)={0x2, 0x80, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, r4, 0x2)
r5 = signalfd4(0xffffffffffffffff, &(0x7f0000000480)={[0x70]}, 0x8, 0x0)
r6 = openat2(0xffffffffffffffff, &(0x7f0000000540)='./file0\x00', &(0x7f0000000580)={0x101000, 0x44, 0xf}, 0x18)
io_submit(r1, 0x4, &(0x7f0000000600)=[&(0x7f00000001c0)={0x0, 0x0, 0x0, 0x0, 0x3f, r2, &(0x7f0000000100)="7e639dd920b5b3eec335ad1522133ab26137524b61e269b99116810c35fce806b8f4ff7a0ba887096839418db7953d340ff01e60b52c68a9cff098bab8bc4a3284131c4b338636bc1a993ac76a3940feef414267febbc006d988113740d3eb9e0bdaec7568d4be2e4cd83fc09bc7b6551356def16b5f998d58488ce61783645d4c82ce802de587dc296f6bcc832c", 0x8e, 0x9}, &(0x7f0000000280)={0x0, 0x0, 0x0, 0x1, 0x1ff, r3, &(0x7f0000000200)="37c3859862f57b74ec099e6396890dbdda9116b68e787cb06fd35807046aa17996aba5d047b52bc144fd8ed9338d1d56dbd5444edb623c873c780d08ea136c67dbbff15dbb3ce38aff54e3f898100486fee34ad9aefbc1446bde87c1016462bd9f7d656251e3fec201fc4409fe3e3c2f717b", 0x72, 0x6}, &(0x7f0000000440)={0x0, 0x0, 0x0, 0x7, 0x9, r4, &(0x7f0000000380)="60c215e830ecc5e880063940303de20f5c0a5c26cf6ea06fcacb7f9e27cfbce851f273ed5590b071a2ebbb8b97fab1b0748ba726d500bdc6b7ba59039df0717fb671e15d099c985328ed0ca7c4fdf33e957d9b5ffbdfa551c7f4599e3dbc3e908d1a3964d480741db867aa12f00e2c9501b218ad4aa3cda6b17989ae17a0b61e64386be602cb69d6eb000ba2c066140dab4529b9a5b4e2dc26bf18f1218878873d77da1678994190dfd9cc4577b83c966016c1828e87edf946354cfdfafa", 0xbe, 0x1ff, 0x0, 0x1}, &(0x7f00000005c0)={0x0, 0x0, 0x0, 0x3, 0xffff, r5, &(0x7f00000004c0)="e79f59554cb8d4d78342d6c523c09ad5a9fad6c9ea55bb12fb417b16882712f17ec0bfe39c1f9b77a06ab2330bf76ba4ff19de4535523632afdce97fcb40fcc8bb3b0e6d8b8b2f6f7364bac07aff90a5f4d046c5d46554f6dbc076968498b43713fa51c7a73dfc4a8bd6dbe54833b85fef04734ebdaaa2506b3df7652067", 0x7e, 0x0, 0x0, 0x0, r6}])
io_submit(r1, 0x1, &(0x7f0000000340)=[&(0x7f0000000300)={0x0, 0x0, 0x0, 0x5, 0x0, r0, 0x0}])
openat(0xffffffffffffffff, 0x0, 0x0, 0x10)

21:15:25 executing program 2:
syz_mount_image$vfat(&(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x0, 0x2, &(0x7f0000000180)=[{&(0x7f0000000140)="eb3c906d6b66732e66617400020801000470008400f801", 0x17}, {0x0, 0x0, 0x1000a00}], 0x0, &(0x7f0000000240)=ANY=[])
chdir(&(0x7f0000000040)='./file0\x00')
r0 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x105142, 0x0)
ioctl$FS_IOC_RESVSP(r0, 0x40305828, &(0x7f0000000040)={0x0, 0x0, 0x0, 0x4000006, 0x3f000000})

[ 2079.359256] FAULT_INJECTION: forcing a failure.
[ 2079.359256] name failslab, interval 1, probability 0, space 0, times 0
[ 2079.364950] CPU: 0 PID: 17177 Comm: syz-executor.5 Not tainted 5.10.172 #1
[ 2079.372213] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 2079.373348] Call Trace:
[ 2079.373722]  dump_stack+0x107/0x167
[ 2079.374216]  should_fail.cold+0x5/0xa
[ 2079.374739]  should_failslab+0x5/0x20
[ 2079.375252]  __kmalloc_track_caller+0x79/0x3c0
[ 2079.375859]  ? v9fs_session_init+0xa7/0x16a0
[ 2079.376454]  ? kernel_text_address+0xf2/0x120
[ 2079.377042]  kstrdup+0x36/0x70
[ 2079.377460]  v9fs_session_init+0xa7/0x16a0
[ 2079.378009]  ? irqentry_enter+0x26/0x60
[ 2079.378530]  ? lockdep_hardirqs_on_prepare+0x277/0x3e0
[ 2079.379204]  ? asm_sysvec_apic_timer_interrupt+0x12/0x20
[ 2079.379898]  ? trace_hardirqs_on+0x5b/0x180
[ 2079.380491]  ? v9fs_show_options+0x690/0x690
[ 2079.381092]  ? kasan_unpoison_shadow+0x33/0x50
[ 2079.381694]  ? __kasan_kmalloc.constprop.0+0xc9/0xd0
[ 2079.382366]  v9fs_mount+0x79/0x8f0
[ 2079.382835]  ? v9fs_write_inode+0x60/0x60
[ 2079.383372]  legacy_get_tree+0x105/0x220
[ 2079.383901]  vfs_get_tree+0x8e/0x300
[ 2079.384425]  path_mount+0x13be/0x20b0
[ 2079.384921]  ? strncpy_from_user+0x9e/0x470
[ 2079.385473]  ? finish_automount+0xa40/0xa40
[ 2079.386016]  ? getname_flags.part.0+0x1dd/0x4f0
[ 2079.386629]  __x64_sys_mount+0x282/0x300
[ 2079.387168]  ? copy_mnt_ns+0xa00/0xa00
[ 2079.387696]  ? rcu_read_lock_sched_held+0x3e/0x80
[ 2079.388359]  do_syscall_64+0x33/0x40
[ 2079.388840]  entry_SYSCALL_64_after_hwframe+0x61/0xc6
[ 2079.389499] RIP: 0033:0x7f38308e8b19
[ 2079.389983] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 2079.392400] RSP: 002b:00007f382de5e188 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5
[ 2079.393379] RAX: ffffffffffffffda RBX: 00007f38309fbf60 RCX: 00007f38308e8b19
[ 2079.394292] RDX: 00000000200000c0 RSI: 0000000020000040 RDI: 0000000000000000
[ 2079.395235] RBP: 00007f382de5e1d0 R08: 0000000020000280 R09: 0000000000000000
[ 2079.396226] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[ 2079.397139] R13: 00007ffca2bf07df R14: 00007f382de5e300 R15: 0000000000022000
21:15:44 executing program 3:
openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x105142, 0x0)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x400}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
pipe(&(0x7f00000001c0)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
mount$9p_fd(0x0, &(0x7f0000000040)='./file1\x00', &(0x7f00000000c0), 0x0, &(0x7f0000000280)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {}, 0x2c, {[{@nodevmap}]}}) (fail_nth: 23)
openat(r1, &(0x7f0000000180)='./file1\x00', 0x0, 0x0)

21:15:44 executing program 4:
openat$vcs(0xffffffffffffff9c, &(0x7f0000000040), 0x0, 0x0)
openat$sr(0xffffffffffffff9c, &(0x7f00000035c0), 0x0, 0x0)
openat$sr(0xffffffffffffff9c, &(0x7f00000000c0), 0x224400, 0x0)
openat$rtc(0xffffffffffffff9c, &(0x7f0000000200), 0x0, 0x0)
pipe(&(0x7f00000001c0))
open(&(0x7f00000016c0)='./cgroup.net/cgroup.procs\x00', 0x0, 0x0)
pselect6(0x40, &(0x7f0000000180), &(0x7f00000001c0)={0x3fc, 0x0, 0x0, 0x0, 0x0, 0x8}, 0x0, 0x0, 0x0)

21:15:44 executing program 0:
syz_mount_image$vfat(&(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x0, 0x2, &(0x7f0000000180)=[{&(0x7f0000000140)="eb3c906d6b66732e66617400020801000470008400f801", 0x17}, {0x0, 0x0, 0x1000a00}], 0x0, &(0x7f0000000240)=ANY=[])
chdir(&(0x7f0000000040)='./file0\x00')
mount$cgroup(0x0, 0x0, &(0x7f0000000400), 0x0, 0x0)
r0 = syz_io_uring_setup(0x22, 0x0, &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000180)=<r1=>0x0, &(0x7f0000002a40)=<r2=>0x0)
r3 = io_uring_register$IORING_REGISTER_PERSONALITY(r0, 0x9, 0x0, 0x0)
r4 = socket$nl_netfilter(0x10, 0x3, 0xc)
syz_io_uring_submit(r1, r2, &(0x7f0000000400)=@IORING_OP_WRITEV={0x2, 0x0, 0x0, @fd=r4, 0x0, 0x0, 0x0, 0x0, 0x0, {0x0, r3}}, 0x0)
r5 = syz_io_uring_setup(0x22, &(0x7f0000000680)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000180), &(0x7f0000002a40))
r6 = io_uring_register$IORING_REGISTER_PERSONALITY(r5, 0x9, 0x0, 0x0)
syz_io_uring_submit(r1, 0x0, &(0x7f0000000440)=@IORING_OP_FSYNC={0x3, 0x2, 0x0, @fd_index=0x9, 0x0, 0x0, 0x0, 0x0, 0x1, {0x0, r6}}, 0x2)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r7 = openat(0xffffffffffffff9c, &(0x7f00000002c0)='./file1\x00', 0x105142, 0x0)
r8 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0)
mount(&(0x7f0000000200)=ANY=[@ANYBLOB="2f6f651317868af191bdb2"], &(0x7f0000000240)='./file0\x00', &(0x7f0000000280)='nfsd\x00', 0x800000, &(0x7f0000000300)='cgroup\x00')
sendfile(r7, r8, 0x0, 0x100000001)
newfstatat(0xffffffffffffff9c, &(0x7f0000000340)='./file1\x00', &(0x7f0000000380), 0x400)

21:15:44 executing program 6:
r0 = syz_mount_image$vfat(&(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x0, 0x2, &(0x7f0000000180)=[{&(0x7f0000000140)="eb3c906d6b66732e66617400020801000470008400", 0x15}, {0x0, 0x0, 0x1000a00}], 0x0, &(0x7f0000000240)=ANY=[])
chdir(&(0x7f0000000040)='./file0\x00')
openat2(r0, &(0x7f0000000100)='./file0\x00', &(0x7f00000001c0)={0x40000, 0x81}, 0x18)
mount$cgroup(0x0, 0x0, &(0x7f0000000400), 0x0, 0x0)
r1 = syz_io_uring_setup(0x22, &(0x7f0000000680)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000180)=<r2=>0x0, &(0x7f0000002a40)=<r3=>0x0)
r4 = io_uring_register$IORING_REGISTER_PERSONALITY(r1, 0x9, 0x0, 0x0)
r5 = socket$nl_netfilter(0x10, 0x3, 0xc)
syz_io_uring_submit(r2, r3, &(0x7f0000000400)=@IORING_OP_WRITEV={0x2, 0x0, 0x0, @fd=r5, 0x0, 0x0, 0x0, 0x0, 0x0, {0x0, r4}}, 0x0)
r6 = syz_io_uring_setup(0x22, &(0x7f0000000680)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000180), &(0x7f0000002a40))
r7 = io_uring_register$IORING_REGISTER_PERSONALITY(r6, 0x9, 0x0, 0x0)
syz_io_uring_submit(r2, 0x0, &(0x7f0000000440)=@IORING_OP_FSYNC={0x3, 0x2, 0x0, @fd_index=0x9, 0x0, 0x0, 0x0, 0x0, 0x1, {0x0, r7}}, 0x2)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r8 = openat(0xffffffffffffff9c, &(0x7f00000002c0)='./file1\x00', 0x105142, 0x0)
r9 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0)
sendfile(r8, r9, 0x0, 0x100000001)
newfstatat(0xffffffffffffff9c, &(0x7f0000000340)='./file1\x00', &(0x7f0000000380), 0x400)

21:15:44 executing program 7:
r0 = perf_event_open(&(0x7f0000000040)={0x3, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
io_setup(0x7f, &(0x7f00000002c0)=<r1=>0x0)
io_submit(r1, 0x1, &(0x7f0000000340)=[&(0x7f0000000300)={0x0, 0x0, 0x0, 0x5, 0x0, r0, 0x0}])
perf_event_open(&(0x7f00000000c0)={0x1, 0x80, 0x99, 0x20, 0x1, 0x4, 0x0, 0x800, 0x80, 0x6, 0x0, 0x0, 0x1, 0x0, 0x0, 0x1, 0x1, 0x1, 0x0, 0x0, 0x1, 0x0, 0x0, 0x1, 0x0, 0x2, 0x0, 0x0, 0x1, 0x0, 0x0, 0x1, 0x1, 0x1, 0x1, 0x0, 0x1, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x0, 0x7, 0x1, @perf_bp={&(0x7f0000000000), 0x6}, 0x4100, 0x2, 0x7cf601f9, 0x8, 0x8001, 0x400, 0x401, 0x0, 0x6d, 0x0, 0x7}, 0x0, 0x10, 0xffffffffffffffff, 0x0)
openat(0xffffffffffffffff, 0x0, 0x0, 0x10)

21:15:44 executing program 2:
syz_mount_image$vfat(&(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x0, 0x2, &(0x7f0000000180)=[{&(0x7f0000000140)="eb3c906d6b66732e66617400020801000470008400f801", 0x17}, {0x0, 0x0, 0x1000a00}], 0x0, &(0x7f0000000240)=ANY=[])
chdir(&(0x7f0000000040)='./file0\x00')
r0 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x105142, 0x0)
ioctl$FS_IOC_RESVSP(r0, 0x40305828, &(0x7f0000000040)={0x0, 0x0, 0x0, 0x4000006, 0x40000000})

21:15:44 executing program 5:
openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x105142, 0x0)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
pipe(&(0x7f00000001c0)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
mount$9p_fd(0x0, &(0x7f0000000040)='./file1\x00', &(0x7f00000000c0), 0x0, &(0x7f0000000280)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}}) (fail_nth: 17)
openat(0xffffffffffffffff, 0x0, 0x0, 0x0)

21:15:44 executing program 1:
openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x105142, 0x0)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
pipe(&(0x7f00000001c0))
mount$9p_fd(0x0, &(0x7f0000000040)='./file1\x00', &(0x7f00000000c0), 0x0, &(0x7f0000000280)={'trans=fd,', {}, 0x2c, {}, 0x2c, {[{@nodevmap}]}}) (fail_nth: 16)

[ 2097.696226] FAULT_INJECTION: forcing a failure.
[ 2097.696226] name failslab, interval 1, probability 0, space 0, times 0
[ 2097.698115] CPU: 0 PID: 17205 Comm: syz-executor.1 Not tainted 5.10.172 #1
[ 2097.698984] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 2097.700019] Call Trace:
[ 2097.700281] FAULT_INJECTION: forcing a failure.
[ 2097.700281] name failslab, interval 1, probability 0, space 0, times 0
[ 2097.700385]  dump_stack+0x107/0x167
[ 2097.702384]  should_fail.cold+0x5/0xa
[ 2097.702881]  should_failslab+0x5/0x20
[ 2097.703505]  __kmalloc_track_caller+0x79/0x3c0
[ 2097.704088]  ? v9fs_session_init+0xa7/0x16a0
[ 2097.704809]  ? kernel_text_address+0xf2/0x120
[ 2097.705419]  kstrdup+0x36/0x70
[ 2097.705819]  v9fs_session_init+0xa7/0x16a0
[ 2097.706422]  ? irqentry_enter+0x26/0x60
[ 2097.706994]  ? lockdep_hardirqs_on_prepare+0x277/0x3e0
[ 2097.707759]  ? asm_sysvec_apic_timer_interrupt+0x12/0x20
[ 2097.708600]  ? trace_hardirqs_on+0x5b/0x180
[ 2097.709148]  ? v9fs_show_options+0x690/0x690
[ 2097.709833]  ? kasan_unpoison_shadow+0x33/0x50
[ 2097.710516]  ? __kasan_kmalloc.constprop.0+0xc9/0xd0
[ 2097.711235]  v9fs_mount+0x79/0x8f0
[ 2097.711729]  ? v9fs_write_inode+0x60/0x60
[ 2097.712293]  legacy_get_tree+0x105/0x220
[ 2097.712812]  vfs_get_tree+0x8e/0x300
[ 2097.713289]  path_mount+0x13be/0x20b0
[ 2097.713787]  ? strncpy_from_user+0x9e/0x470
[ 2097.714393]  ? finish_automount+0xa40/0xa40
[ 2097.715008]  ? getname_flags.part.0+0x1dd/0x4f0
[ 2097.715686]  ? _copy_from_user+0xfb/0x1b0
[ 2097.716324]  __x64_sys_mount+0x282/0x300
[ 2097.716847]  ? copy_mnt_ns+0xa00/0xa00
[ 2097.717377]  ? rcu_read_lock_sched_held+0x3e/0x80
[ 2097.718120]  do_syscall_64+0x33/0x40
[ 2097.718680]  entry_SYSCALL_64_after_hwframe+0x61/0xc6
[ 2097.719424] RIP: 0033:0x7f9bca359b19
[ 2097.719904] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 2097.722352] RSP: 002b:00007f9bc78cf188 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5
[ 2097.723494] RAX: ffffffffffffffda RBX: 00007f9bca46cf60 RCX: 00007f9bca359b19
[ 2097.724577] RDX: 00000000200000c0 RSI: 0000000020000040 RDI: 0000000000000000
[ 2097.725504] RBP: 00007f9bc78cf1d0 R08: 0000000020000280 R09: 0000000000000000
[ 2097.726498] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[ 2097.728127] R13: 00007fffb54b7e9f R14: 00007f9bc78cf300 R15: 0000000000022000
[ 2097.730209] CPU: 1 PID: 17197 Comm: syz-executor.3 Not tainted 5.10.172 #1
[ 2097.731362] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 2097.732727] Call Trace:
[ 2097.733701]  dump_stack+0x107/0x167
[ 2097.734327]  should_fail.cold+0x5/0xa
[ 2097.734911]  ? p9_client_create+0xaf/0x1090
[ 2097.735644]  should_failslab+0x5/0x20
[ 2097.736316]  kmem_cache_alloc_trace+0x55/0x360
[ 2097.736998]  ? find_held_lock+0x2c/0x110
[ 2097.737705]  p9_client_create+0xaf/0x1090
[ 2097.738443]  ? lock_downgrade+0x6d0/0x6d0
[ 2097.739039]  ? p9_client_flush+0x430/0x430
[ 2097.739711]  ? lockdep_init_map_type+0x2c7/0x780
[ 2097.740466]  ? rcu_read_lock_sched_held+0x3e/0x80
[ 2097.741160]  ? __raw_spin_lock_init+0x36/0x110
[ 2097.741837]  v9fs_session_init+0x1dd/0x16a0
[ 2097.742506]  ? irqentry_enter+0x26/0x60
[ 2097.743050]  ? asm_sysvec_apic_timer_interrupt+0x12/0x20
[ 2097.743842]  ? trace_hardirqs_on+0x5b/0x180
[ 2097.745023]  ? v9fs_show_options+0x690/0x690
[ 2097.745787]  ? kasan_unpoison_shadow+0x33/0x50
[ 2097.746544]  ? __kasan_kmalloc.constprop.0+0xc9/0xd0
[ 2097.747435]  v9fs_mount+0x79/0x8f0
[ 2097.748011]  ? v9fs_write_inode+0x60/0x60
[ 2097.748787]  legacy_get_tree+0x105/0x220
[ 2097.749474]  vfs_get_tree+0x8e/0x300
[ 2097.750054]  path_mount+0x13be/0x20b0
[ 2097.750707]  ? strncpy_from_user+0x9e/0x470
[ 2097.751433]  ? finish_automount+0xa40/0xa40
[ 2097.752095]  ? getname_flags.part.0+0x1dd/0x4f0
[ 2097.752932]  ? _copy_from_user+0xfb/0x1b0
[ 2097.753671]  __x64_sys_mount+0x282/0x300
[ 2097.754350]  ? copy_mnt_ns+0xa00/0xa00
[ 2097.754938]  ? rcu_read_lock_sched_held+0x3e/0x80
[ 2097.755746]  do_syscall_64+0x33/0x40
[ 2097.756395]  entry_SYSCALL_64_after_hwframe+0x61/0xc6
[ 2097.757241] RIP: 0033:0x7f68c9012b19
[ 2097.757805] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 2097.760732] RSP: 002b:00007f68c6588188 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5
[ 2097.762350] RAX: ffffffffffffffda RBX: 00007f68c9125f60 RCX: 00007f68c9012b19
[ 2097.763334] RDX: 00000000200000c0 RSI: 0000000020000040 RDI: 0000000000000000
[ 2097.764356] RBP: 00007f68c65881d0 R08: 0000000020000280 R09: 0000000000000000
[ 2097.765382] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[ 2097.766394] R13: 00007ffe8a1e19df R14: 00007f68c6588300 R15: 0000000000022000
[ 2097.771057] FAULT_INJECTION: forcing a failure.
[ 2097.771057] name failslab, interval 1, probability 0, space 0, times 0
[ 2097.773106] CPU: 0 PID: 17212 Comm: syz-executor.5 Not tainted 5.10.172 #1
[ 2097.775029] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 2097.777409] Call Trace:
[ 2097.778170]  dump_stack+0x107/0x167
[ 2097.779167]  should_fail.cold+0x5/0xa
[ 2097.780259]  ? create_object.isra.0+0x3a/0xa20
[ 2097.781576]  should_failslab+0x5/0x20
[ 2097.782654]  kmem_cache_alloc+0x5b/0x360
[ 2097.783796]  create_object.isra.0+0x3a/0xa20
[ 2097.785034]  ? __kasan_kmalloc.constprop.0+0xc9/0xd0
[ 2097.789152]  __kmalloc_track_caller+0x177/0x3c0
[ 2097.790501]  ? v9fs_session_init+0xa7/0x16a0
[ 2097.791739]  ? kernel_text_address+0xf2/0x120
[ 2097.793008]  kstrdup+0x36/0x70
[ 2097.793918]  v9fs_session_init+0xa7/0x16a0
[ 2097.795109]  ? find_held_lock+0x2c/0x110
[ 2097.796263]  ? kmem_cache_alloc_trace+0x151/0x360
[ 2097.797677]  ? v9fs_show_options+0x690/0x690
[ 2097.798932]  ? kasan_unpoison_shadow+0x33/0x50
[ 2097.800191]  ? __kasan_kmalloc.constprop.0+0xc9/0xd0
[ 2097.801665]  v9fs_mount+0x79/0x8f0
[ 2097.802479]  ? v9fs_write_inode+0x60/0x60
[ 2097.803430]  legacy_get_tree+0x105/0x220
[ 2097.804412]  vfs_get_tree+0x8e/0x300
[ 2097.805403]  path_mount+0x13be/0x20b0
[ 2097.806291]  ? strncpy_from_user+0x9e/0x470
[ 2097.807279]  ? finish_automount+0xa40/0xa40
[ 2097.808261]  ? getname_flags.part.0+0x1dd/0x4f0
[ 2097.809507]  ? _copy_from_user+0xfb/0x1b0
[ 2097.810602]  __x64_sys_mount+0x282/0x300
[ 2097.811505]  ? copy_mnt_ns+0xa00/0xa00
[ 2097.812431]  ? rcu_read_lock_sched_held+0x3e/0x80
[ 2097.813478]  do_syscall_64+0x33/0x40
[ 2097.814289]  entry_SYSCALL_64_after_hwframe+0x61/0xc6
[ 2097.815393] RIP: 0033:0x7f38308e8b19
[ 2097.816356] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 2097.820637] RSP: 002b:00007f382de3d188 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5
[ 2097.822342] RAX: ffffffffffffffda RBX: 00007f38309fc020 RCX: 00007f38308e8b19
[ 2097.823941] RDX: 00000000200000c0 RSI: 0000000020000040 RDI: 0000000000000000
[ 2097.825859] RBP: 00007f382de3d1d0 R08: 0000000020000280 R09: 0000000000000000
[ 2097.827504] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
21:15:44 executing program 7:
r0 = perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
io_setup(0x7f, &(0x7f00000002c0)=<r1=>0x0)
r2 = eventfd2(0x1a, 0x101800)
ioctl$AUTOFS_DEV_IOCTL_CLOSEMOUNT(0xffffffffffffffff, 0xc0189375, &(0x7f0000000440)={{0x1, 0x1, 0x18, <r3=>r0}, './file0\x00'})
r4 = open(&(0x7f0000000500)='./file0\x00', 0x88000, 0x60)
r5 = perf_event_open(&(0x7f0000001d80)={0x2, 0x80, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
mmap(&(0x7f0000ffc000/0x2000)=nil, 0x2000, 0x0, 0x13, r5, 0x0)
perf_event_open(&(0x7f0000001d80)={0x2, 0x80, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, r5, 0x2)
pipe(&(0x7f00000001c0)={<r6=>0xffffffffffffffff, <r7=>0xffffffffffffffff})
mount$9p_fd(0x0, &(0x7f0000000040)='./file1\x00', &(0x7f00000000c0), 0x0, &(0x7f0000000280)={'trans=fd,', {'rfdno', 0x3d, r6}, 0x2c, {'wfdno', 0x3d, r7}, 0x2c, {[{@nodevmap}]}})
r8 = perf_event_open(&(0x7f0000001d80)={0x2, 0x80, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
mmap(&(0x7f0000ffc000/0x2000)=nil, 0x2000, 0x0, 0x13, r8, 0x0)
perf_event_open(&(0x7f0000001d80)={0x2, 0x80, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, r8, 0x2)
pipe(&(0x7f00000001c0)={<r9=>0xffffffffffffffff, <r10=>0xffffffffffffffff})
mount$9p_fd(0x0, &(0x7f0000000040)='./file1\x00', &(0x7f00000000c0), 0x0, &(0x7f0000000280)={'trans=fd,', {'rfdno', 0x3d, r9}, 0x2c, {'wfdno', 0x3d, r10}, 0x2c, {[{@nodevmap}]}})
pipe(&(0x7f00000001c0)={<r11=>0xffffffffffffffff, <r12=>0xffffffffffffffff})
mount$9p_fd(0x0, &(0x7f0000000040)='./file1\x00', &(0x7f00000000c0), 0x0, &(0x7f0000000280)={'trans=fd,', {'rfdno', 0x3d, r11}, 0x2c, {'wfdno', 0x3d, r12}, 0x2c, {[{@nodevmap}]}})
[ 2097.829350] R13: 00007ffca2bf07df R14: 00007f382de3d300 R15: 0000000000022000
[ 2097.834954] 9pnet: Insufficient options for proto=fd
io_submit(0x0, 0x7, &(0x7f0000000800)=[&(0x7f0000000140)={0x0, 0x0, 0x0, 0x1, 0x3, 0xffffffffffffffff, &(0x7f0000000100)="e19da47529f0c55e7fa00af3c4922f0d62a6e9d681cc47223e1876eeed0e77be1a87e4a7c0f9f6c9", 0x28, 0x0, 0x0, 0x2}, &(0x7f0000000280)={0x0, 0x0, 0x0, 0x3, 0x6, 0xffffffffffffffff, &(0x7f0000000180)="6d9503eedce0712c73a8b60b40c13c23fdd21e8e114c803f7fe9edb1974c59a08e226aea31b93322791d1ffb5b8b3e96db58721e19a4feef1d2ad10fa5840122cb00424d29fcc7601cdcc66f8f8aeb71d8be3235571133025330e81340588259a8f0616b889b5422efc35d0fa909f1e7d5fa1e0cce0b3b8509bea361e42cb846ad26ac3321f1336595fb467e8600f0301001ea7b2fae563837e777f22d44e35ffa78fc372d8256d6ff56f959689a1d79c68272da48d8f4de359011c971cd595f4da699144113199ba5e3a03bd75070e26ccd4aff3bd8bbb7a62b3413b836fcac3f46fab6b6b65c2c1c8b25a19ba819c1f6fb25", 0xf3, 0xffffffff}, &(0x7f0000000480)={0x0, 0x0, 0x0, 0x8, 0x3, r2, &(0x7f0000000380)="7f33b8adc18414c8b7b29d16df575828f573bfa5ec8018d51cd02d141dd5b91b273675b9c1e3f0ad7e459d4f0e4169434f0770eb513490ed73410d7d6f6235297992c1d87e3f5a5b55a461149a6071ffd31e563a20eee1aa0c2f458f0cc901b8c2b049c9686eb9798bb2290d1962b7c36a7191818e04e1410c420c32a9c269262b4fe3a9e461ba030d2b175ca656590b72ee", 0x92, 0x100000001, 0x0, 0x1, r3}, &(0x7f0000000540)={0x0, 0x0, 0x0, 0x6, 0x7, r0, &(0x7f00000004c0)="d1424c9dbdb415af6f9105adf991257ca977aa6eca000ad1", 0x18, 0x8000, 0x0, 0x0, r4}, &(0x7f00000005c0)={0x0, 0x0, 0x0, 0x3, 0x1, r5, &(0x7f0000000580), 0x0, 0x9, 0x0, 0x2, r6}, &(0x7f00000006c0)={0x0, 0x0, 0x0, 0x1, 0x800, r8, &(0x7f0000000600)="9210e6f31e6218e678078fe197df7bb8adb88d2a7b9a6fc654ec72828bad9a0377afe1874929012030c7acdd20e641d2721c6a68bb923d52f4a06e18b8c429137c511c01acfaf826407938ba6159d7cb97ca184c044f980d7ad140b51fff5d1f1b2474492506a5435916cec33ff9d8f96b6db047657727d7d9bee74bdd8349b24ffb64", 0x83, 0x3, 0x0, 0x1, r9}, &(0x7f00000007c0)={0x0, 0x0, 0x0, 0x1, 0x2, 0xffffffffffffffff, &(0x7f0000000700)="579b1e84af7ad9d68ad2c1a29853eee9e437d24c585b7a1614ed112185e34b12d59e1d2c8ab4a665e498a1fb14edf3cbb06a7d8bdad643dfee38a680dcbfbd921b89276ed85362e40767dda53a27f500068c1515d868a58795020787ab3015b1db79cd39c8e3c1a079df860ff1e10ad6fefa57cce0480983185c4d80ed62ff669fe673ebb31322", 0x87, 0x3ff, 0x0, 0x2, r11}])
io_submit(r1, 0x1, &(0x7f0000000340)=[&(0x7f0000000300)={0x0, 0x0, 0x0, 0x5, 0x0, r0, 0x0}])
openat(0xffffffffffffffff, 0x0, 0x0, 0x10)

[ 2097.892897] FAT-fs (loop6): invalid media value (0x00)
[ 2097.893594] FAT-fs (loop6): Can't find a valid FAT filesystem
21:15:44 executing program 3:
openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x105142, 0x0)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x400}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
pipe(&(0x7f00000001c0)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
mount$9p_fd(0x0, &(0x7f0000000040)='./file1\x00', &(0x7f00000000c0), 0x0, &(0x7f0000000280)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {}, 0x2c, {[{@nodevmap}]}}) (fail_nth: 24)
openat(r1, &(0x7f0000000180)='./file1\x00', 0x0, 0x0)

21:15:44 executing program 1:
openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x105142, 0x0)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
pipe(&(0x7f00000001c0))
mount$9p_fd(0x0, &(0x7f0000000040)='./file1\x00', &(0x7f00000000c0), 0x0, &(0x7f0000000280)={'trans=fd,', {}, 0x2c, {}, 0x2c, {[{@nodevmap}]}}) (fail_nth: 17)

21:15:44 executing program 2:
syz_mount_image$vfat(&(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x0, 0x2, &(0x7f0000000180)=[{&(0x7f0000000140)="eb3c906d6b66732e66617400020801000470008400f801", 0x17}, {0x0, 0x0, 0x1000a00}], 0x0, &(0x7f0000000240)=ANY=[])
chdir(&(0x7f0000000040)='./file0\x00')
r0 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x105142, 0x0)
ioctl$FS_IOC_RESVSP(r0, 0x40305828, &(0x7f0000000040)={0x0, 0x0, 0x0, 0x4000006, 0xf5ffffff})

21:15:44 executing program 4:
openat$vcs(0xffffffffffffff9c, &(0x7f0000000040), 0x0, 0x0)
openat$sr(0xffffffffffffff9c, &(0x7f00000035c0), 0x0, 0x0)
openat$sr(0xffffffffffffff9c, &(0x7f00000000c0), 0x224400, 0x0)
openat$rtc(0xffffffffffffff9c, &(0x7f0000000200), 0x0, 0x0)
pipe(&(0x7f00000001c0))
open(&(0x7f00000016c0)='./cgroup.net/cgroup.procs\x00', 0x0, 0x0)
pselect6(0x40, &(0x7f0000000180), &(0x7f00000001c0)={0x3fc, 0x0, 0x0, 0x0, 0x0, 0xa}, 0x0, 0x0, 0x0)

[ 2098.016796] FAULT_INJECTION: forcing a failure.
[ 2098.016796] name failslab, interval 1, probability 0, space 0, times 0
[ 2098.020161] CPU: 1 PID: 17224 Comm: syz-executor.3 Not tainted 5.10.172 #1
[ 2098.021953] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 2098.023713] Call Trace:
[ 2098.024408]  dump_stack+0x107/0x167
[ 2098.025289]  should_fail.cold+0x5/0xa
[ 2098.026220]  should_failslab+0x5/0x20
[ 2098.027129]  __kmalloc_track_caller+0x79/0x3c0
[ 2098.028383]  ? p9_client_create+0x51e/0x1090
[ 2098.029723]  kmemdup_nul+0x2d/0xa0
[ 2098.030595]  p9_client_create+0x51e/0x1090
[ 2098.031618]  ? p9_client_flush+0x430/0x430
[ 2098.032924]  ? lockdep_init_map_type+0x2c7/0x780
[ 2098.034028]  ? rcu_read_lock_sched_held+0x3e/0x80
[ 2098.035179]  ? __raw_spin_lock_init+0x36/0x110
[ 2098.036370]  v9fs_session_init+0x1dd/0x16a0
[ 2098.037411]  ? kmem_cache_alloc_trace+0x151/0x360
[ 2098.038765]  ? v9fs_show_options+0x690/0x690
[ 2098.039854]  ? kasan_unpoison_shadow+0x33/0x50
[ 2098.041137]  ? __kasan_kmalloc.constprop.0+0xc9/0xd0
[ 2098.041959]  v9fs_mount+0x79/0x8f0
[ 2098.042475]  ? v9fs_write_inode+0x60/0x60
[ 2098.043051]  legacy_get_tree+0x105/0x220
[ 2098.043607]  ? mount_capable+0x7b/0xf0
[ 2098.044219]  vfs_get_tree+0x8e/0x300
[ 2098.044738]  path_mount+0x13be/0x20b0
[ 2098.045293]  ? strncpy_from_user+0x9e/0x470
[ 2098.045887]  ? finish_automount+0xa40/0xa40
[ 2098.046556]  ? getname_flags.part.0+0x1dd/0x4f0
[ 2098.047373]  ? _copy_from_user+0xfb/0x1b0
[ 2098.048021]  __x64_sys_mount+0x282/0x300
[ 2098.048617]  ? copy_mnt_ns+0xa00/0xa00
[ 2098.049211]  ? rcu_read_lock_sched_held+0x3e/0x80
[ 2098.049920]  do_syscall_64+0x33/0x40
[ 2098.050525]  entry_SYSCALL_64_after_hwframe+0x61/0xc6
[ 2098.051249] RIP: 0033:0x7f68c9012b19
[ 2098.051770] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 2098.054472] RSP: 002b:00007f68c6588188 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5
[ 2098.055515] RAX: ffffffffffffffda RBX: 00007f68c9125f60 RCX: 00007f68c9012b19
[ 2098.055522] RDX: 00000000200000c0 RSI: 0000000020000040 RDI: 0000000000000000
[ 2098.055528] RBP: 00007f68c65881d0 R08: 0000000020000280 R09: 0000000000000000
[ 2098.055535] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[ 2098.055541] R13: 00007ffe8a1e19df R14: 00007f68c6588300 R15: 0000000000022000
[ 2098.077143] FAULT_INJECTION: forcing a failure.
[ 2098.077143] name failslab, interval 1, probability 0, space 0, times 0
21:15:44 executing program 5:
openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x105142, 0x0)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
pipe(&(0x7f00000001c0)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
mount$9p_fd(0x0, &(0x7f0000000040)='./file1\x00', &(0x7f00000000c0), 0x0, &(0x7f0000000280)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}}) (fail_nth: 18)
openat(0xffffffffffffffff, 0x0, 0x0, 0x0)

[ 2098.077161] CPU: 0 PID: 17229 Comm: syz-executor.1 Not tainted 5.10.172 #1
[ 2098.077169] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 2098.077174] Call Trace:
[ 2098.077195]  dump_stack+0x107/0x167
[ 2098.077217]  should_fail.cold+0x5/0xa
[ 2098.077234]  ? create_object.isra.0+0x3a/0xa20
[ 2098.077252]  should_failslab+0x5/0x20
[ 2098.077266]  kmem_cache_alloc+0x5b/0x360
[ 2098.077289]  create_object.isra.0+0x3a/0xa20
[ 2098.077303]  ? __kasan_kmalloc.constprop.0+0xc9/0xd0
[ 2098.077325]  __kmalloc_track_caller+0x177/0x3c0
[ 2098.077338]  ? v9fs_session_init+0xa7/0x16a0
21:15:44 executing program 3:
openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x105142, 0x0)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x400}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
pipe(&(0x7f00000001c0)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
mount$9p_fd(0x0, &(0x7f0000000040)='./file1\x00', &(0x7f00000000c0), 0x0, &(0x7f0000000280)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {}, 0x2c, {[{@nodevmap}]}}) (fail_nth: 25)
openat(r1, &(0x7f0000000180)='./file1\x00', 0x0, 0x0)

[ 2098.077351]  ? kernel_text_address+0xf2/0x120
[ 2098.077374]  kstrdup+0x36/0x70
[ 2098.077388]  v9fs_session_init+0xa7/0x16a0
[ 2098.077408]  ? find_held_lock+0x2c/0x110
[ 2098.077431]  ? kmem_cache_alloc_trace+0x151/0x360
[ 2098.077445]  ? v9fs_show_options+0x690/0x690
[ 2098.077483]  ? kasan_unpoison_shadow+0x33/0x50
[ 2098.077499]  ? __kasan_kmalloc.constprop.0+0xc9/0xd0
[ 2098.077521]  v9fs_mount+0x79/0x8f0
[ 2098.077539]  ? v9fs_write_inode+0x60/0x60
[ 2098.077555]  legacy_get_tree+0x105/0x220
[ 2098.077576]  vfs_get_tree+0x8e/0x300
[ 2098.077593]  path_mount+0x13be/0x20b0
[ 2098.077614]  ? strncpy_from_user+0x9e/0x470
[ 2098.077632]  ? finish_automount+0xa40/0xa40
[ 2098.077655]  ? getname_flags.part.0+0x1dd/0x4f0
[ 2098.077669]  ? _copy_from_user+0xfb/0x1b0
[ 2098.077697]  __x64_sys_mount+0x282/0x300
[ 2098.077714]  ? copy_mnt_ns+0xa00/0xa00
[ 2098.077736]  ? rcu_read_lock_sched_held+0x3e/0x80
[ 2098.077758]  do_syscall_64+0x33/0x40
[ 2098.077774]  entry_SYSCALL_64_after_hwframe+0x61/0xc6
[ 2098.077784] RIP: 0033:0x7f9bca359b19
[ 2098.077798] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 2098.077806] RSP: 002b:00007f9bc78cf188 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5
[ 2098.077824] RAX: ffffffffffffffda RBX: 00007f9bca46cf60 RCX: 00007f9bca359b19
[ 2098.077833] RDX: 00000000200000c0 RSI: 0000000020000040 RDI: 0000000000000000
[ 2098.077842] RBP: 00007f9bc78cf1d0 R08: 0000000020000280 R09: 0000000000000000
[ 2098.077850] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[ 2098.077859] R13: 00007fffb54b7e9f R14: 00007f9bc78cf300 R15: 0000000000022000
[ 2098.099291] 9pnet: Insufficient options for proto=fd
[ 2098.131625] FAULT_INJECTION: forcing a failure.
[ 2098.131625] name failslab, interval 1, probability 0, space 0, times 0
[ 2098.131900] CPU: 0 PID: 17235 Comm: syz-executor.5 Not tainted 5.10.172 #1
[ 2098.131908] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 2098.131912] Call Trace:
[ 2098.131933]  dump_stack+0x107/0x167
[ 2098.131952]  should_fail.cold+0x5/0xa
[ 2098.131975]  should_failslab+0x5/0x20
[ 2098.131989]  __kmalloc_track_caller+0x79/0x3c0
[ 2098.132000]  ? v9fs_session_init+0xe9/0x16a0
[ 2098.132014]  ? kernel_text_address+0xf2/0x120
[ 2098.132033]  kstrdup+0x36/0x70
[ 2098.132046]  v9fs_session_init+0xe9/0x16a0
[ 2098.132063]  ? find_held_lock+0x2c/0x110
[ 2098.132084]  ? kmem_cache_alloc_trace+0x151/0x360
[ 2098.132098]  ? v9fs_show_options+0x690/0x690
[ 2098.132131]  ? kasan_unpoison_shadow+0x33/0x50
[ 2098.132147]  ? __kasan_kmalloc.constprop.0+0xc9/0xd0
[ 2098.132167]  v9fs_mount+0x79/0x8f0
[ 2098.132184]  ? v9fs_write_inode+0x60/0x60
[ 2098.132216]  legacy_get_tree+0x105/0x220
[ 2098.132233]  vfs_get_tree+0x8e/0x300
[ 2098.132248]  path_mount+0x13be/0x20b0
[ 2098.132266]  ? strncpy_from_user+0x9e/0x470
[ 2098.132284]  ? finish_automount+0xa40/0xa40
[ 2098.132300]  ? getname_flags.part.0+0x1dd/0x4f0
[ 2098.132312]  ? _copy_from_user+0xfb/0x1b0
[ 2098.132335]  __x64_sys_mount+0x282/0x300
[ 2098.132350]  ? copy_mnt_ns+0xa00/0xa00
[ 2098.132369]  ? rcu_read_lock_sched_held+0x3e/0x80
[ 2098.132387]  do_syscall_64+0x33/0x40
[ 2098.132401]  entry_SYSCALL_64_after_hwframe+0x61/0xc6
[ 2098.132410] RIP: 0033:0x7f38308e8b19
[ 2098.132425] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 2098.132431] RSP: 002b:00007f382de5e188 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5
[ 2098.132447] RAX: ffffffffffffffda RBX: 00007f38309fbf60 RCX: 00007f38308e8b19
[ 2098.132455] RDX: 00000000200000c0 RSI: 0000000020000040 RDI: 0000000000000000
[ 2098.132463] RBP: 00007f382de5e1d0 R08: 0000000020000280 R09: 0000000000000000
[ 2098.132470] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[ 2098.132478] R13: 00007ffca2bf07df R14: 00007f382de5e300 R15: 0000000000022000
[ 2098.318570] FAULT_INJECTION: forcing a failure.
[ 2098.318570] name failslab, interval 1, probability 0, space 0, times 0
[ 2098.318588] CPU: 1 PID: 17241 Comm: syz-executor.3 Not tainted 5.10.172 #1
[ 2098.318596] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 2098.318600] Call Trace:
[ 2098.318625]  dump_stack+0x107/0x167
[ 2098.318643]  should_fail.cold+0x5/0xa
[ 2098.318660]  ? create_object.isra.0+0x3a/0xa20
[ 2098.318676]  should_failslab+0x5/0x20
[ 2098.318689]  kmem_cache_alloc+0x5b/0x360
[ 2098.318709]  create_object.isra.0+0x3a/0xa20
[ 2098.318723]  ? __kasan_kmalloc.constprop.0+0xc9/0xd0
[ 2098.318742]  __kmalloc_track_caller+0x177/0x3c0
[ 2098.318755]  ? p9_client_create+0x51e/0x1090
[ 2098.318776]  kmemdup_nul+0x2d/0xa0
[ 2098.318790]  p9_client_create+0x51e/0x1090
[ 2098.318813]  ? p9_client_flush+0x430/0x430
[ 2098.318834]  ? lockdep_init_map_type+0x2c7/0x780
[ 2098.318848]  ? rcu_read_lock_sched_held+0x3e/0x80
[ 2098.318865]  ? __raw_spin_lock_init+0x36/0x110
[ 2098.318885]  v9fs_session_init+0x1dd/0x16a0
[ 2098.318910]  ? kmem_cache_alloc_trace+0x151/0x360
[ 2098.318923]  ? v9fs_show_options+0x690/0x690
[ 2098.318955]  ? kasan_unpoison_shadow+0x33/0x50
[ 2098.318970]  ? __kasan_kmalloc.constprop.0+0xc9/0xd0
[ 2098.318989]  v9fs_mount+0x79/0x8f0
[ 2098.319006]  ? v9fs_write_inode+0x60/0x60
[ 2098.319021]  legacy_get_tree+0x105/0x220
[ 2098.319040]  vfs_get_tree+0x8e/0x300
[ 2098.319056]  path_mount+0x13be/0x20b0
[ 2098.319074]  ? strncpy_from_user+0x9e/0x470
[ 2098.319091]  ? finish_automount+0xa40/0xa40
[ 2098.319108]  ? getname_flags.part.0+0x1dd/0x4f0
[ 2098.319121]  ? _copy_from_user+0xfb/0x1b0
[ 2098.319147]  __x64_sys_mount+0x282/0x300
[ 2098.319162]  ? copy_mnt_ns+0xa00/0xa00
[ 2098.319181]  ? rcu_read_lock_sched_held+0x3e/0x80
[ 2098.319201]  do_syscall_64+0x33/0x40
[ 2098.319216]  entry_SYSCALL_64_after_hwframe+0x61/0xc6
[ 2098.319226] RIP: 0033:0x7f68c9012b19
[ 2098.319239] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 2098.319246] RSP: 002b:00007f68c6588188 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5
[ 2098.319262] RAX: ffffffffffffffda RBX: 00007f68c9125f60 RCX: 00007f68c9012b19
[ 2098.319270] RDX: 00000000200000c0 RSI: 0000000020000040 RDI: 0000000000000000
[ 2098.319278] RBP: 00007f68c65881d0 R08: 0000000020000280 R09: 0000000000000000
[ 2098.319287] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[ 2098.319295] R13: 00007ffe8a1e19df R14: 00007f68c6588300 R15: 0000000000022000
[ 2098.319749] 9pnet: Insufficient options for proto=fd
21:16:02 executing program 1:
openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x105142, 0x0)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
pipe(&(0x7f00000001c0))
mount$9p_fd(0x0, &(0x7f0000000040)='./file1\x00', &(0x7f00000000c0), 0x0, &(0x7f0000000280)={'trans=fd,', {}, 0x2c, {}, 0x2c, {[{@nodevmap}]}}) (fail_nth: 18)

21:16:02 executing program 6:
r0 = syz_mount_image$vfat(&(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x0, 0x2, &(0x7f0000000180)=[{&(0x7f0000000140)="eb3c906d6b66732e66617400020801000470008400f8", 0x16}, {0x0, 0x0, 0x1000a00}], 0x0, &(0x7f0000000240)=ANY=[])
chdir(&(0x7f0000000040)='./file0\x00')
openat2(r0, &(0x7f0000000100)='./file0\x00', &(0x7f00000001c0)={0x40000, 0x81}, 0x18)
mount$cgroup(0x0, 0x0, &(0x7f0000000400), 0x0, 0x0)
r1 = syz_io_uring_setup(0x22, &(0x7f0000000680)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000180)=<r2=>0x0, &(0x7f0000002a40)=<r3=>0x0)
r4 = io_uring_register$IORING_REGISTER_PERSONALITY(r1, 0x9, 0x0, 0x0)
r5 = socket$nl_netfilter(0x10, 0x3, 0xc)
syz_io_uring_submit(r2, r3, &(0x7f0000000400)=@IORING_OP_WRITEV={0x2, 0x0, 0x0, @fd=r5, 0x0, 0x0, 0x0, 0x0, 0x0, {0x0, r4}}, 0x0)
r6 = syz_io_uring_setup(0x22, &(0x7f0000000680)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000180), &(0x7f0000002a40))
r7 = io_uring_register$IORING_REGISTER_PERSONALITY(r6, 0x9, 0x0, 0x0)
syz_io_uring_submit(r2, 0x0, &(0x7f0000000440)=@IORING_OP_FSYNC={0x3, 0x2, 0x0, @fd_index=0x9, 0x0, 0x0, 0x0, 0x0, 0x1, {0x0, r7}}, 0x2)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r8 = openat(0xffffffffffffff9c, &(0x7f00000002c0)='./file1\x00', 0x105142, 0x0)
r9 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0)
sendfile(r8, r9, 0x0, 0x100000001)
newfstatat(0xffffffffffffff9c, &(0x7f0000000340)='./file1\x00', &(0x7f0000000380), 0x400)

21:16:02 executing program 0:
syz_mount_image$vfat(&(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x0, 0x2, &(0x7f0000000180)=[{&(0x7f0000000140)="eb3c906d6b66732e66617400020801000470008400f801", 0x17}, {0x0, 0x0, 0x1000a00}], 0x0, &(0x7f0000000240)=ANY=[])
chdir(&(0x7f0000000040)='./file0\x00')
mount$cgroup(0x0, 0x0, &(0x7f0000000400), 0x0, 0x0)
r0 = syz_io_uring_setup(0x22, 0x0, &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000180)=<r1=>0x0, &(0x7f0000002a40)=<r2=>0x0)
r3 = io_uring_register$IORING_REGISTER_PERSONALITY(r0, 0x9, 0x0, 0x0)
r4 = socket$nl_netfilter(0x10, 0x3, 0xc)
syz_io_uring_submit(r1, r2, &(0x7f0000000400)=@IORING_OP_WRITEV={0x2, 0x0, 0x0, @fd=r4, 0x0, 0x0, 0x0, 0x0, 0x0, {0x0, r3}}, 0x0)
r5 = syz_io_uring_setup(0x22, &(0x7f0000000680)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000180), &(0x7f0000002a40))
r6 = io_uring_register$IORING_REGISTER_PERSONALITY(r5, 0x9, 0x0, 0x0)
syz_io_uring_submit(r1, 0x0, &(0x7f0000000440)=@IORING_OP_FSYNC={0x3, 0x2, 0x0, @fd_index=0x9, 0x0, 0x0, 0x0, 0x0, 0x1, {0x0, r6}}, 0x2)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r7 = openat(0xffffffffffffff9c, &(0x7f00000002c0)='./file1\x00', 0x105142, 0x0)
r8 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0)
mount(&(0x7f0000000200)=ANY=[@ANYBLOB="2f6f651317868af191bdb2"], &(0x7f0000000240)='./file0\x00', &(0x7f0000000280)='nfsd\x00', 0x800000, &(0x7f0000000300)='cgroup\x00')
sendfile(r7, r8, 0x0, 0x100000001)
newfstatat(0xffffffffffffff9c, &(0x7f0000000340)='./file1\x00', &(0x7f0000000380), 0x400)

21:16:02 executing program 7:
r0 = perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
write(r0, &(0x7f0000000000)="43ef4d0da5f25e101aca03e51535aef6a970afd08194362f426edba641b0cd1f9113997adec7f7acb25d1b2f143aade42524", 0x32)
r1 = perf_event_open(&(0x7f0000001d80)={0x2, 0x80, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
mmap(&(0x7f0000ffc000/0x2000)=nil, 0x2000, 0x0, 0x13, r1, 0x0)
perf_event_open(&(0x7f0000001d80)={0x2, 0x80, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, r1, 0x2)
write$binfmt_elf64(r1, &(0x7f0000000380)={{0x7f, 0x45, 0x4c, 0x46, 0x1, 0x7, 0x8, 0x2, 0xb5ba, 0x3, 0x6, 0xffff8ffc, 0x11d, 0x40, 0x391, 0x80, 0x8001, 0x38, 0x1, 0x3c3a, 0x3, 0x773}, [{0x4, 0x80, 0x5, 0x155, 0x3f, 0x100000001, 0xfffffffffffffffb, 0x3}, {0x5, 0x7, 0x10000, 0x7, 0x7, 0x800, 0x1, 0x20}], "", ['\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00']}, 0x7b0)
io_setup(0x7f, &(0x7f00000002c0)=<r2=>0x0)
io_submit(r2, 0x1, &(0x7f0000000340)=[&(0x7f0000000300)={0x0, 0x0, 0x0, 0x5, 0x0, r0, 0x0}])
ioctl$BTRFS_IOC_DEFRAG(r0, 0x50009402, 0x0)
openat(0xffffffffffffffff, 0x0, 0x0, 0x10)

21:16:02 executing program 2:
syz_mount_image$vfat(&(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x0, 0x2, &(0x7f0000000180)=[{&(0x7f0000000140)="eb3c906d6b66732e66617400020801000470008400f801", 0x17}, {0x0, 0x0, 0x1000a00}], 0x0, &(0x7f0000000240)=ANY=[])
chdir(&(0x7f0000000040)='./file0\x00')
r0 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x105142, 0x0)
ioctl$FS_IOC_RESVSP(r0, 0x40305828, &(0x7f0000000040)={0x0, 0x0, 0x0, 0x4000006, 0xf60f0000})

21:16:03 executing program 5:
openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x105142, 0x0)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
pipe(&(0x7f00000001c0)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
mount$9p_fd(0x0, &(0x7f0000000040)='./file1\x00', &(0x7f00000000c0), 0x0, &(0x7f0000000280)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}}) (fail_nth: 19)
openat(0xffffffffffffffff, 0x0, 0x0, 0x0)

21:16:03 executing program 3:
openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x105142, 0x0)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x400}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
pipe(&(0x7f00000001c0)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
mount$9p_fd(0x0, &(0x7f0000000040)='./file1\x00', &(0x7f00000000c0), 0x0, &(0x7f0000000280)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {}, 0x2c, {[{@nodevmap}]}}) (fail_nth: 26)
openat(r1, &(0x7f0000000180)='./file1\x00', 0x0, 0x0)

21:16:03 executing program 4:
openat$vcs(0xffffffffffffff9c, &(0x7f0000000040), 0x0, 0x0)
openat$sr(0xffffffffffffff9c, &(0x7f00000035c0), 0x0, 0x0)
openat$sr(0xffffffffffffff9c, &(0x7f00000000c0), 0x224400, 0x0)
openat$rtc(0xffffffffffffff9c, &(0x7f0000000200), 0x0, 0x0)
pipe(&(0x7f00000001c0))
open(&(0x7f00000016c0)='./cgroup.net/cgroup.procs\x00', 0x0, 0x0)
pselect6(0x40, &(0x7f0000000180), &(0x7f00000001c0)={0x3fc, 0x0, 0x0, 0x0, 0x0, 0x10}, 0x0, 0x0, 0x0)

[ 2116.591609] FAULT_INJECTION: forcing a failure.
[ 2116.591609] name failslab, interval 1, probability 0, space 0, times 0
[ 2116.593762] CPU: 1 PID: 17263 Comm: syz-executor.1 Not tainted 5.10.172 #1
[ 2116.594674] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 2116.595755] Call Trace:
[ 2116.596106]  dump_stack+0x107/0x167
[ 2116.600688]  should_fail.cold+0x5/0xa
[ 2116.601220]  should_failslab+0x5/0x20
[ 2116.601715]  __kmalloc_track_caller+0x79/0x3c0
[ 2116.602325]  ? v9fs_session_init+0xe9/0x16a0
[ 2116.602895]  kstrdup+0x36/0x70
[ 2116.603334]  v9fs_session_init+0xe9/0x16a0
[ 2116.603881]  ? find_held_lock+0x2c/0x110
[ 2116.604465]  ? kmem_cache_alloc_trace+0x151/0x360
[ 2116.605077]  ? v9fs_show_options+0x690/0x690
[ 2116.605675]  ? kasan_unpoison_shadow+0x33/0x50
[ 2116.606259]  ? __kasan_kmalloc.constprop.0+0xc9/0xd0
[ 2116.606930]  v9fs_mount+0x79/0x8f0
[ 2116.607394]  ? v9fs_write_inode+0x60/0x60
[ 2116.607948]  legacy_get_tree+0x105/0x220
[ 2116.608512]  vfs_get_tree+0x8e/0x300
[ 2116.609032]  path_mount+0x13be/0x20b0
[ 2116.609526]  ? strncpy_from_user+0x9e/0x470
[ 2116.610075]  ? finish_automount+0xa40/0xa40
[ 2116.610623]  ? getname_flags.part.0+0x1dd/0x4f0
[ 2116.611244]  ? _copy_from_user+0xfb/0x1b0
[ 2116.611774]  __x64_sys_mount+0x282/0x300
[ 2116.612318]  ? copy_mnt_ns+0xa00/0xa00
[ 2116.616925]  ? rcu_read_lock_sched_held+0x3e/0x80
[ 2116.617562]  do_syscall_64+0x33/0x40
[ 2116.618054]  entry_SYSCALL_64_after_hwframe+0x61/0xc6
[ 2116.618718] RIP: 0033:0x7f9bca359b19
[ 2116.619202] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 2116.621519] RSP: 002b:00007f9bc78cf188 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5
[ 2116.622396] RAX: ffffffffffffffda RBX: 00007f9bca46cf60 RCX: 00007f9bca359b19
[ 2116.623213] RDX: 00000000200000c0 RSI: 0000000020000040 RDI: 0000000000000000
[ 2116.624036] RBP: 00007f9bc78cf1d0 R08: 0000000020000280 R09: 0000000000000000
[ 2116.624928] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[ 2116.625850] R13: 00007fffb54b7e9f R14: 00007f9bc78cf300 R15: 0000000000022000
[ 2116.643920] FAULT_INJECTION: forcing a failure.
[ 2116.643920] name failslab, interval 1, probability 0, space 0, times 0
[ 2116.649035] CPU: 0 PID: 17264 Comm: syz-executor.5 Not tainted 5.10.172 #1
[ 2116.649570] FAULT_INJECTION: forcing a failure.
[ 2116.649570] name failslab, interval 1, probability 0, space 0, times 0
[ 2116.649912] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 2116.649917] Call Trace:
[ 2116.649936]  dump_stack+0x107/0x167
[ 2116.649954]  should_fail.cold+0x5/0xa
[ 2116.653790]  ? create_object.isra.0+0x3a/0xa20
[ 2116.654379]  should_failslab+0x5/0x20
[ 2116.654862]  kmem_cache_alloc+0x5b/0x360
[ 2116.655382]  create_object.isra.0+0x3a/0xa20
[ 2116.655954]  ? __kasan_kmalloc.constprop.0+0xc9/0xd0
[ 2116.656646]  __kmalloc_track_caller+0x177/0x3c0
[ 2116.657262]  ? v9fs_session_init+0xe9/0x16a0
[ 2116.657833]  ? kernel_text_address+0xf2/0x120
[ 2116.658442]  kstrdup+0x36/0x70
[ 2116.658875]  v9fs_session_init+0xe9/0x16a0
[ 2116.659437]  ? irqentry_enter+0x26/0x60
[ 2116.660001]  ? lockdep_hardirqs_on_prepare+0x277/0x3e0
[ 2116.661725]  ? asm_sysvec_apic_timer_interrupt+0x12/0x20
[ 2116.663473]  ? trace_hardirqs_on+0x5b/0x180
[ 2116.664879]  ? v9fs_show_options+0x690/0x690
[ 2116.666291]  ? kasan_unpoison_shadow+0x33/0x50
[ 2116.667716]  ? __kasan_kmalloc.constprop.0+0xc9/0xd0
[ 2116.668847]  v9fs_mount+0x79/0x8f0
[ 2116.669326]  ? v9fs_write_inode+0x60/0x60
[ 2116.669882]  legacy_get_tree+0x105/0x220
[ 2116.670390]  vfs_get_tree+0x8e/0x300
[ 2116.670845]  path_mount+0x13be/0x20b0
[ 2116.671494]  ? strncpy_from_user+0x9e/0x470
[ 2116.672053]  ? finish_automount+0xa40/0xa40
[ 2116.672842]  ? getname_flags.part.0+0x1dd/0x4f0
[ 2116.674166]  __x64_sys_mount+0x282/0x300
[ 2116.675276]  ? copy_mnt_ns+0xa00/0xa00
[ 2116.676350]  ? rcu_read_lock_sched_held+0x3e/0x80
[ 2116.677812]  do_syscall_64+0x33/0x40
[ 2116.678934]  entry_SYSCALL_64_after_hwframe+0x61/0xc6
[ 2116.696583] RIP: 0033:0x7f38308e8b19
[ 2116.697100] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 2116.699464] RSP: 002b:00007f382de5e188 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5
[ 2116.700466] RAX: ffffffffffffffda RBX: 00007f38309fbf60 RCX: 00007f38308e8b19
[ 2116.701394] RDX: 00000000200000c0 RSI: 0000000020000040 RDI: 0000000000000000
[ 2116.702335] RBP: 00007f382de5e1d0 R08: 0000000020000280 R09: 0000000000000000
[ 2116.703256] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[ 2116.704209] R13: 00007ffca2bf07df R14: 00007f382de5e300 R15: 0000000000022000
[ 2116.713316] CPU: 1 PID: 17265 Comm: syz-executor.3 Not tainted 5.10.172 #1
[ 2116.714211] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 2116.715257] Call Trace:
[ 2116.715606]  dump_stack+0x107/0x167
[ 2116.716077]  should_fail.cold+0x5/0xa
[ 2116.716609]  should_failslab+0x5/0x20
[ 2116.717108]  __kmalloc_track_caller+0x79/0x3c0
[ 2116.717712]  ? parse_opts.part.0+0x8e/0x340
[ 2116.718285]  kstrdup+0x36/0x70
[ 2116.718721]  parse_opts.part.0+0x8e/0x340
[ 2116.719283]  ? p9_fd_show_options+0x1c0/0x1c0
[ 2116.719881]  ? lockdep_hardirqs_on_prepare+0x277/0x3e0
[ 2116.720597]  ? quarantine_put+0x8b/0x1a0
[ 2116.721146]  ? trace_hardirqs_on+0x5b/0x180
[ 2116.721722]  ? kfree+0xd7/0x390
[ 2116.722189]  p9_fd_create+0x98/0x4a0
[ 2116.722697]  ? p9_conn_create+0x510/0x510
[ 2116.723255]  ? p9_client_create+0x798/0x1090
[ 2116.723836]  ? kfree+0xd7/0x390
[ 2116.724282]  ? do_raw_spin_unlock+0x4f/0x220
[ 2116.724892]  p9_client_create+0x7ff/0x1090
[ 2116.725461]  ? p9_client_flush+0x430/0x430
[ 2116.726026]  ? trace_hardirqs_on+0x5b/0x180
[ 2116.726600]  ? asm_sysvec_apic_timer_interrupt+0x12/0x20
[ 2116.727386]  v9fs_session_init+0x1dd/0x16a0
[ 2116.727938]  ? irqentry_enter+0x26/0x60
[ 2116.728487]  ? asm_sysvec_apic_timer_interrupt+0x12/0x20
[ 2116.729172]  ? trace_hardirqs_on+0x5b/0x180
[ 2116.729717]  ? v9fs_show_options+0x690/0x690
[ 2116.730304]  ? kasan_unpoison_shadow+0x33/0x50
[ 2116.730891]  ? __kasan_kmalloc.constprop.0+0xc9/0xd0
[ 2116.731545]  v9fs_mount+0x79/0x8f0
[ 2116.732008]  ? v9fs_write_inode+0x60/0x60
[ 2116.740511]  legacy_get_tree+0x105/0x220
[ 2116.745010]  ? path_mount+0x13b6/0x20b0
[ 2116.745849]  vfs_get_tree+0x8e/0x300
[ 2116.746334]  path_mount+0x13be/0x20b0
[ 2116.746825]  ? strncpy_from_user+0x9e/0x470
[ 2116.747368]  ? finish_automount+0xa40/0xa40
[ 2116.747919]  ? getname_flags.part.0+0x1dd/0x4f0
[ 2116.748527]  ? _copy_from_user+0xfb/0x1b0
[ 2116.749054]  __x64_sys_mount+0x282/0x300
[ 2116.749543]  ? copy_mnt_ns+0xa00/0xa00
[ 2116.750019]  ? rcu_read_lock_sched_held+0x3e/0x80
[ 2116.750626]  do_syscall_64+0x33/0x40
[ 2116.751128]  entry_SYSCALL_64_after_hwframe+0x61/0xc6
[ 2116.751792] RIP: 0033:0x7f68c9012b19
[ 2116.752275] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 2116.756818] RSP: 002b:00007f68c6588188 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5
[ 2116.757899] RAX: ffffffffffffffda RBX: 00007f68c9125f60 RCX: 00007f68c9012b19
[ 2116.758930] RDX: 00000000200000c0 RSI: 0000000020000040 RDI: 0000000000000000
[ 2116.759988] RBP: 00007f68c65881d0 R08: 0000000020000280 R09: 0000000000000000
[ 2116.761002] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[ 2116.762212] R13: 00007ffe8a1e19df R14: 00007f68c6588300 R15: 0000000000022000
[ 2116.763239] 9pnet: Insufficient options for proto=fd
[ 2116.764675] FAT-fs (loop6): bogus number of FAT sectors
[ 2116.767370] FAT-fs (loop6): Can't find a valid FAT filesystem
21:16:03 executing program 2:
syz_mount_image$vfat(&(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x0, 0x2, &(0x7f0000000180)=[{&(0x7f0000000140)="eb3c906d6b66732e66617400020801000470008400f801", 0x17}, {0x0, 0x0, 0x1000a00}], 0x0, &(0x7f0000000240)=ANY=[])
chdir(&(0x7f0000000040)='./file0\x00')
r0 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x105142, 0x0)
ioctl$FS_IOC_RESVSP(r0, 0x40305828, &(0x7f0000000040)={0x0, 0x0, 0x0, 0x4000006, 0xfffdffff})

21:16:03 executing program 3:
openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x105142, 0x0)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x400}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
pipe(&(0x7f00000001c0)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
mount$9p_fd(0x0, &(0x7f0000000040)='./file1\x00', &(0x7f00000000c0), 0x0, &(0x7f0000000280)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {}, 0x2c, {[{@nodevmap}]}}) (fail_nth: 27)
openat(r1, &(0x7f0000000180)='./file1\x00', 0x0, 0x0)

21:16:03 executing program 1:
openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x105142, 0x0)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
pipe(&(0x7f00000001c0))
mount$9p_fd(0x0, &(0x7f0000000040)='./file1\x00', &(0x7f00000000c0), 0x0, &(0x7f0000000280)={'trans=fd,', {}, 0x2c, {}, 0x2c, {[{@nodevmap}]}}) (fail_nth: 19)

[ 2116.920125] FAULT_INJECTION: forcing a failure.
[ 2116.920125] name failslab, interval 1, probability 0, space 0, times 0
[ 2116.922584] CPU: 1 PID: 17280 Comm: syz-executor.3 Not tainted 5.10.172 #1
[ 2116.923661] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 2116.924849] Call Trace:
[ 2116.925199]  dump_stack+0x107/0x167
[ 2116.925940]  should_fail.cold+0x5/0xa
[ 2116.926500]  ? create_object.isra.0+0x3a/0xa20
[ 2116.927199]  should_failslab+0x5/0x20
[ 2116.927744]  kmem_cache_alloc+0x5b/0x360
[ 2116.928560]  ? legacy_get_tree+0x105/0x220
[ 2116.931517]  ? vfs_get_tree+0x8e/0x300
[ 2116.932088]  create_object.isra.0+0x3a/0xa20
[ 2116.932716]  ? __kasan_kmalloc.constprop.0+0xc9/0xd0
[ 2116.933510]  __kmalloc_track_caller+0x177/0x3c0
[ 2116.934430]  ? parse_opts.part.0+0x8e/0x340
[ 2116.935101]  kstrdup+0x36/0x70
[ 2116.935659]  parse_opts.part.0+0x8e/0x340
[ 2116.936392]  ? p9_fd_show_options+0x1c0/0x1c0
[ 2116.937073]  ? lockdep_hardirqs_on_prepare+0x277/0x3e0
[ 2116.937859]  ? quarantine_put+0x8b/0x1a0
[ 2116.938468]  ? trace_hardirqs_on+0x5b/0x180
[ 2116.939118]  ? kfree+0xd7/0x390
[ 2116.939629]  p9_fd_create+0x98/0x4a0
[ 2116.940185]  ? p9_conn_create+0x510/0x510
[ 2116.940836]  ? p9_client_create+0x798/0x1090
[ 2116.941399]  ? kfree+0xd7/0x390
[ 2116.941829]  ? do_raw_spin_unlock+0x4f/0x220
[ 2116.942405]  p9_client_create+0x7ff/0x1090
[ 2116.942965]  ? p9_client_flush+0x430/0x430
[ 2116.943508]  ? lockdep_init_map_type+0x2c7/0x780
[ 2116.944124]  ? rcu_read_lock_sched_held+0x3e/0x80
[ 2116.945169]  ? __raw_spin_lock_init+0x36/0x110
[ 2116.946026]  v9fs_session_init+0x1dd/0x16a0
[ 2116.946603]  ? irqentry_enter+0x26/0x60
[ 2116.947124]  ? asm_sysvec_apic_timer_interrupt+0x12/0x20
[ 2116.947824]  ? trace_hardirqs_on+0x5b/0x180
[ 2116.948385]  ? v9fs_show_options+0x690/0x690
[ 2116.949003]  ? kasan_unpoison_shadow+0x33/0x50
[ 2116.950104]  ? __kasan_kmalloc.constprop.0+0xc9/0xd0
[ 2116.966626]  v9fs_mount+0x79/0x8f0
[ 2116.967111]  ? v9fs_write_inode+0x60/0x60
[ 2116.968740]  legacy_get_tree+0x105/0x220
[ 2116.969268]  vfs_get_tree+0x8e/0x300
[ 2116.972900]  path_mount+0x13be/0x20b0
[ 2116.973389]  ? strncpy_from_user+0x9e/0x470
[ 2116.973938]  ? finish_automount+0xa40/0xa40
[ 2116.974467]  ? getname_flags.part.0+0x1dd/0x4f0
[ 2116.975052]  ? _copy_from_user+0xfb/0x1b0
[ 2116.975580]  __x64_sys_mount+0x282/0x300
[ 2116.976094]  ? copy_mnt_ns+0xa00/0xa00
[ 2116.980649]  ? rcu_read_lock_sched_held+0x3e/0x80
[ 2116.981240]  do_syscall_64+0x33/0x40
[ 2116.981697]  entry_SYSCALL_64_after_hwframe+0x61/0xc6
[ 2116.982335] RIP: 0033:0x7f68c9012b19
[ 2116.982819] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 2116.985084] RSP: 002b:00007f68c6588188 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5
[ 2116.986036] RAX: ffffffffffffffda RBX: 00007f68c9125f60 RCX: 00007f68c9012b19
[ 2116.986933] RDX: 00000000200000c0 RSI: 0000000020000040 RDI: 0000000000000000
[ 2116.987808] RBP: 00007f68c65881d0 R08: 0000000020000280 R09: 0000000000000000
[ 2116.988740] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[ 2116.989637] R13: 00007ffe8a1e19df R14: 00007f68c6588300 R15: 0000000000022000
21:16:03 executing program 4:
openat$vcs(0xffffffffffffff9c, &(0x7f0000000040), 0x0, 0x0)
openat$sr(0xffffffffffffff9c, &(0x7f00000035c0), 0x0, 0x0)
openat$sr(0xffffffffffffff9c, &(0x7f00000000c0), 0x224400, 0x0)
openat$rtc(0xffffffffffffff9c, &(0x7f0000000200), 0x0, 0x0)
pipe(&(0x7f00000001c0))
open(&(0x7f00000016c0)='./cgroup.net/cgroup.procs\x00', 0x0, 0x0)
pselect6(0x40, &(0x7f0000000180), &(0x7f00000001c0)={0x3fc, 0x0, 0x0, 0x0, 0x0, 0xa00}, 0x0, 0x0, 0x0)

[ 2117.028558] FAULT_INJECTION: forcing a failure.
[ 2117.028558] name failslab, interval 1, probability 0, space 0, times 0
[ 2117.030429] CPU: 0 PID: 17284 Comm: syz-executor.1 Not tainted 5.10.172 #1
[ 2117.031329] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 2117.032402] Call Trace:
[ 2117.032778]  dump_stack+0x107/0x167
[ 2117.033260]  should_fail.cold+0x5/0xa
[ 2117.033765]  ? create_object.isra.0+0x3a/0xa20
[ 2117.034360]  should_failslab+0x5/0x20
21:16:03 executing program 0:
syz_mount_image$vfat(&(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x0, 0x2, &(0x7f0000000180)=[{&(0x7f0000000140)="eb3c906d6b66732e66617400020801000470008400f801", 0x17}, {0x0, 0x0, 0x1000a00}], 0x0, &(0x7f0000000240)=ANY=[])
chdir(&(0x7f0000000040)='./file0\x00')
mount$cgroup(0x0, 0x0, &(0x7f0000000400), 0x0, 0x0)
r0 = syz_io_uring_setup(0x22, &(0x7f0000000680)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x4000)=nil, 0x0, &(0x7f0000002a40)=<r1=>0x0)
r2 = io_uring_register$IORING_REGISTER_PERSONALITY(r0, 0x9, 0x0, 0x0)
r3 = socket$nl_netfilter(0x10, 0x3, 0xc)
syz_io_uring_submit(0x0, r1, &(0x7f0000000400)=@IORING_OP_WRITEV={0x2, 0x0, 0x0, @fd=r3, 0x0, 0x0, 0x0, 0x0, 0x0, {0x0, r2}}, 0x0)
r4 = syz_io_uring_setup(0x22, &(0x7f0000000680)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000180), &(0x7f0000002a40))
r5 = io_uring_register$IORING_REGISTER_PERSONALITY(r4, 0x9, 0x0, 0x0)
syz_io_uring_submit(0x0, 0x0, &(0x7f0000000440)=@IORING_OP_FSYNC={0x3, 0x2, 0x0, @fd_index=0x9, 0x0, 0x0, 0x0, 0x0, 0x1, {0x0, r5}}, 0x2)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r6 = openat(0xffffffffffffff9c, &(0x7f00000002c0)='./file1\x00', 0x105142, 0x0)
r7 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0)
mount(&(0x7f0000000200)=ANY=[@ANYBLOB="2f6f651317868af191bdb2"], &(0x7f0000000240)='./file0\x00', &(0x7f0000000280)='nfsd\x00', 0x800000, &(0x7f0000000300)='cgroup\x00')
sendfile(r6, r7, 0x0, 0x100000001)
newfstatat(0xffffffffffffff9c, &(0x7f0000000340)='./file1\x00', &(0x7f0000000380), 0x400)

[ 2117.034857]  kmem_cache_alloc+0x5b/0x360
[ 2117.035408]  create_object.isra.0+0x3a/0xa20
[ 2117.036163]  ? __kasan_kmalloc.constprop.0+0xc9/0xd0
[ 2117.036864]  __kmalloc_track_caller+0x177/0x3c0
[ 2117.037446]  ? v9fs_session_init+0xe9/0x16a0
[ 2117.037999]  kstrdup+0x36/0x70
[ 2117.038402]  v9fs_session_init+0xe9/0x16a0
[ 2117.038944]  ? find_held_lock+0x2c/0x110
[ 2117.039493]  ? kmem_cache_alloc_trace+0x151/0x360
[ 2117.040128]  ? v9fs_show_options+0x690/0x690
[ 2117.040745]  ? kasan_unpoison_shadow+0x33/0x50
[ 2117.041356]  ? __kasan_kmalloc.constprop.0+0xc9/0xd0
[ 2117.042012]  v9fs_mount+0x79/0x8f0
[ 2117.042489]  ? v9fs_write_inode+0x60/0x60
[ 2117.043036]  legacy_get_tree+0x105/0x220
[ 2117.043574]  vfs_get_tree+0x8e/0x300
[ 2117.044069]  path_mount+0x13be/0x20b0
[ 2117.044595]  ? strncpy_from_user+0x9e/0x470
[ 2117.045211]  ? finish_automount+0xa40/0xa40
[ 2117.045796]  ? getname_flags.part.0+0x1dd/0x4f0
[ 2117.046383]  ? _copy_from_user+0xfb/0x1b0
[ 2117.046936]  __x64_sys_mount+0x282/0x300
[ 2117.047461]  ? copy_mnt_ns+0xa00/0xa00
[ 2117.047987]  ? rcu_read_lock_sched_held+0x3e/0x80
[ 2117.048648]  do_syscall_64+0x33/0x40
[ 2117.049132]  entry_SYSCALL_64_after_hwframe+0x61/0xc6
[ 2117.049799] RIP: 0033:0x7f9bca359b19
[ 2117.050286] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 2117.052649] RSP: 002b:00007f9bc78cf188 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5
[ 2117.053640] RAX: ffffffffffffffda RBX: 00007f9bca46cf60 RCX: 00007f9bca359b19
[ 2117.054548] RDX: 00000000200000c0 RSI: 0000000020000040 RDI: 0000000000000000
[ 2117.055460] RBP: 00007f9bc78cf1d0 R08: 0000000020000280 R09: 0000000000000000
[ 2117.056394] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[ 2117.057349] R13: 00007fffb54b7e9f R14: 00007f9bc78cf300 R15: 0000000000022000
[ 2117.075532] 9pnet: Insufficient options for proto=fd
21:16:03 executing program 7:
r0 = perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
io_setup(0x7f, &(0x7f00000002c0)=<r1=>0x0)
io_submit(r1, 0x1, &(0x7f0000000340)=[&(0x7f0000000300)={0x0, 0x0, 0x0, 0x5, 0x0, r0, 0x0}])
openat(0xffffffffffffffff, 0x0, 0x0, 0x10)
io_setup(0xffffffff, &(0x7f0000000000))

21:16:03 executing program 5:
openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x105142, 0x0)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
pipe(&(0x7f00000001c0)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
mount$9p_fd(0x0, &(0x7f0000000040)='./file1\x00', &(0x7f00000000c0), 0x0, &(0x7f0000000280)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}}) (fail_nth: 20)
openat(0xffffffffffffffff, 0x0, 0x0, 0x0)

21:16:03 executing program 3:
openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x105142, 0x0)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x400}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
pipe(&(0x7f00000001c0)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
mount$9p_fd(0x0, &(0x7f0000000040)='./file1\x00', &(0x7f00000000c0), 0x0, &(0x7f0000000280)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {}, 0x2c, {[{@nodevmap}]}}) (fail_nth: 28)
openat(r1, &(0x7f0000000180)='./file1\x00', 0x0, 0x0)

21:16:03 executing program 7:
r0 = perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0xff8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1010}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
io_setup(0x7f, &(0x7f00000002c0)=<r1=>0x0)
io_submit(r1, 0x1, &(0x7f0000000340)=[&(0x7f0000000300)={0x0, 0x0, 0x0, 0x5, 0x0, r0, 0x0}])
openat(0xffffffffffffffff, 0x0, 0x0, 0x10)

[ 2117.236967] FAULT_INJECTION: forcing a failure.
[ 2117.236967] name failslab, interval 1, probability 0, space 0, times 0
[ 2117.238597] CPU: 0 PID: 17299 Comm: syz-executor.3 Not tainted 5.10.172 #1
[ 2117.239479] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 2117.240564] Call Trace:
[ 2117.240919]  dump_stack+0x107/0x167
[ 2117.241394]  should_fail.cold+0x5/0xa
[ 2117.241885]  should_failslab+0x5/0x20
[ 2117.242387]  __kmalloc_track_caller+0x79/0x3c0
[ 2117.242970]  ? match_number+0xaf/0x1d0
[ 2117.243473]  kmemdup_nul+0x2d/0xa0
[ 2117.243930]  match_number+0xaf/0x1d0
[ 2117.244205] 9pnet: Insufficient options for proto=fd
[ 2117.244423]  ? match_u64+0x190/0x190
[ 2117.245685]  ? __kmalloc_track_caller+0x2d4/0x3c0
[ 2117.246310]  ? memcpy+0x39/0x60
[ 2117.246739]  parse_opts.part.0+0x1f3/0x340
[ 2117.247304]  ? p9_fd_show_options+0x1c0/0x1c0
[ 2117.247882]  ? lockdep_hardirqs_on_prepare+0x277/0x3e0
[ 2117.248591]  ? trace_hardirqs_on+0x5b/0x180
[ 2117.249138]  ? kfree+0xd7/0x390
[ 2117.249560]  p9_fd_create+0x98/0x4a0
[ 2117.250032]  ? p9_conn_create+0x510/0x510
[ 2117.250540]  ? p9_client_create+0x798/0x1090
[ 2117.251095]  ? kfree+0xd7/0x390
[ 2117.251620]  ? do_raw_spin_unlock+0x4f/0x220
[ 2117.252183]  p9_client_create+0x7ff/0x1090
[ 2117.252745]  ? p9_client_flush+0x430/0x430
[ 2117.253329]  ? lockdep_init_map_type+0x2c7/0x780
[ 2117.253924]  ? rcu_read_lock_sched_held+0x3e/0x80
[ 2117.254539]  ? __raw_spin_lock_init+0x36/0x110
[ 2117.255120]  v9fs_session_init+0x1dd/0x16a0
[ 2117.255673]  ? kmem_cache_alloc_trace+0x151/0x360
[ 2117.256327]  ? v9fs_show_options+0x690/0x690
[ 2117.256925]  ? kasan_unpoison_shadow+0x33/0x50
[ 2117.257509]  ? __kasan_kmalloc.constprop.0+0xc9/0xd0
[ 2117.258165]  v9fs_mount+0x79/0x8f0
[ 2117.258630]  ? v9fs_write_inode+0x60/0x60
[ 2117.259176]  legacy_get_tree+0x105/0x220
[ 2117.259726]  vfs_get_tree+0x8e/0x300
[ 2117.260209]  path_mount+0x13be/0x20b0
[ 2117.260749]  ? strncpy_from_user+0x9e/0x470
[ 2117.261301]  ? finish_automount+0xa40/0xa40
[ 2117.261859]  ? getname_flags.part.0+0x1dd/0x4f0
[ 2117.262449]  ? _copy_from_user+0xfb/0x1b0
[ 2117.262988]  __x64_sys_mount+0x282/0x300
[ 2117.263497]  ? copy_mnt_ns+0xa00/0xa00
[ 2117.263995]  ? rcu_read_lock_sched_held+0x3e/0x80
[ 2117.264639]  do_syscall_64+0x33/0x40
[ 2117.265105]  entry_SYSCALL_64_after_hwframe+0x61/0xc6
[ 2117.265737] RIP: 0033:0x7f68c9012b19
[ 2117.266198] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 2117.268436] RSP: 002b:00007f68c6588188 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5
[ 2117.269387] RAX: ffffffffffffffda RBX: 00007f68c9125f60 RCX: 00007f68c9012b19
[ 2117.270263] RDX: 00000000200000c0 RSI: 0000000020000040 RDI: 0000000000000000
[ 2117.271142] RBP: 00007f68c65881d0 R08: 0000000020000280 R09: 0000000000000000
[ 2117.272049] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[ 2117.272961] R13: 00007ffe8a1e19df R14: 00007f68c6588300 R15: 0000000000022000
[ 2117.279183] FAULT_INJECTION: forcing a failure.
[ 2117.279183] name failslab, interval 1, probability 0, space 0, times 0
[ 2117.280880] CPU: 0 PID: 17300 Comm: syz-executor.5 Not tainted 5.10.172 #1
[ 2117.281750] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 2117.282788] Call Trace:
[ 2117.283141]  dump_stack+0x107/0x167
[ 2117.283598]  should_fail.cold+0x5/0xa
[ 2117.284069]  ? p9_client_create+0xaf/0x1090
[ 2117.284653]  should_failslab+0x5/0x20
[ 2117.285140]  kmem_cache_alloc_trace+0x55/0x360
[ 2117.285724]  ? find_held_lock+0x2c/0x110
[ 2117.286243]  p9_client_create+0xaf/0x1090
[ 2117.286765]  ? lock_downgrade+0x6d0/0x6d0
[ 2117.287302]  ? p9_client_flush+0x430/0x430
[ 2117.287830]  ? lockdep_init_map_type+0x2c7/0x780
[ 2117.288387]  ? rcu_read_lock_sched_held+0x3e/0x80
[ 2117.289009]  ? __raw_spin_lock_init+0x36/0x110
[ 2117.289557]  v9fs_session_init+0x1dd/0x16a0
[ 2117.290091]  ? kmem_cache_alloc_trace+0x151/0x360
[ 2117.290671]  ? v9fs_show_options+0x690/0x690
[ 2117.291208]  ? kasan_unpoison_shadow+0x33/0x50
[ 2117.291671]  ? __kasan_kmalloc.constprop.0+0xc9/0xd0
[ 2117.292208]  v9fs_mount+0x79/0x8f0
[ 2117.292659]  ? v9fs_write_inode+0x60/0x60
[ 2117.293182]  legacy_get_tree+0x105/0x220
[ 2117.293708]  vfs_get_tree+0x8e/0x300
[ 2117.294185]  path_mount+0x13be/0x20b0
[ 2117.294669]  ? strncpy_from_user+0x9e/0x470
[ 2117.295209]  ? finish_automount+0xa40/0xa40
[ 2117.295766]  ? getname_flags.part.0+0x1dd/0x4f0
[ 2117.296375]  ? _copy_from_user+0xfb/0x1b0
[ 2117.296945]  __x64_sys_mount+0x282/0x300
[ 2117.297463]  ? copy_mnt_ns+0xa00/0xa00
[ 2117.297946]  ? rcu_read_lock_sched_held+0x3e/0x80
[ 2117.298572]  do_syscall_64+0x33/0x40
[ 2117.299052]  entry_SYSCALL_64_after_hwframe+0x61/0xc6
[ 2117.299706] RIP: 0033:0x7f38308e8b19
[ 2117.300176] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 2117.302551] RSP: 002b:00007f382de5e188 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5
[ 2117.303556] RAX: ffffffffffffffda RBX: 00007f38309fbf60 RCX: 00007f38308e8b19
[ 2117.304559] RDX: 00000000200000c0 RSI: 0000000020000040 RDI: 0000000000000000
[ 2117.305471] RBP: 00007f382de5e1d0 R08: 0000000020000280 R09: 0000000000000000
[ 2117.306362] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[ 2117.307259] R13: 00007ffca2bf07df R14: 00007f382de5e300 R15: 0000000000022000
[ 2117.332479] 9pnet: Insufficient options for proto=fd
[ 2135.459488] FAULT_INJECTION: forcing a failure.
[ 2135.459488] name failslab, interval 1, probability 0, space 0, times 0
[ 2135.461540] CPU: 1 PID: 17315 Comm: syz-executor.5 Not tainted 5.10.172 #1
[ 2135.463808] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 2135.466018] Call Trace:
[ 2135.466646]  dump_stack+0x107/0x167
[ 2135.467592]  should_fail.cold+0x5/0xa
[ 2135.468569]  ? create_object.isra.0+0x3a/0xa20
[ 2135.469882]  should_failslab+0x5/0x20
[ 2135.470943]  kmem_cache_alloc+0x5b/0x360
[ 2135.472025]  ? kernel_text_address+0xf2/0x120
[ 2135.474410]  create_object.isra.0+0x3a/0xa20
[ 2135.475596]  ? __kasan_kmalloc.constprop.0+0xc9/0xd0
[ 2135.476954]  kmem_cache_alloc_trace+0x151/0x360
[ 2135.476969]  ? find_held_lock+0x2c/0x110
[ 2135.476989]  p9_client_create+0xaf/0x1090
[ 2135.477004]  ? lock_downgrade+0x6d0/0x6d0
[ 2135.477023]  ? p9_client_flush+0x430/0x430
[ 2135.477045]  ? lockdep_init_map_type+0x2c7/0x780
[ 2135.477058]  ? rcu_read_lock_sched_held+0x3e/0x80
[ 2135.477077]  ? __raw_spin_lock_init+0x36/0x110
21:16:21 executing program 0:
syz_mount_image$vfat(&(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x0, 0x2, &(0x7f0000000180)=[{&(0x7f0000000140)="eb3c906d6b66732e66617400020801000470008400f801", 0x17}, {0x0, 0x0, 0x1000a00}], 0x0, &(0x7f0000000240)=ANY=[])
chdir(&(0x7f0000000040)='./file0\x00')
mount$cgroup(0x0, 0x0, &(0x7f0000000400), 0x0, 0x0)
r0 = syz_io_uring_setup(0x22, &(0x7f0000000680)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x4000)=nil, 0x0, &(0x7f0000002a40)=<r1=>0x0)
r2 = io_uring_register$IORING_REGISTER_PERSONALITY(r0, 0x9, 0x0, 0x0)
r3 = socket$nl_netfilter(0x10, 0x3, 0xc)
syz_io_uring_submit(0x0, r1, &(0x7f0000000400)=@IORING_OP_WRITEV={0x2, 0x0, 0x0, @fd=r3, 0x0, 0x0, 0x0, 0x0, 0x0, {0x0, r2}}, 0x0)
r4 = syz_io_uring_setup(0x22, &(0x7f0000000680)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000180), &(0x7f0000002a40))
r5 = io_uring_register$IORING_REGISTER_PERSONALITY(r4, 0x9, 0x0, 0x0)
syz_io_uring_submit(0x0, 0x0, &(0x7f0000000440)=@IORING_OP_FSYNC={0x3, 0x2, 0x0, @fd_index=0x9, 0x0, 0x0, 0x0, 0x0, 0x1, {0x0, r5}}, 0x2)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r6 = openat(0xffffffffffffff9c, &(0x7f00000002c0)='./file1\x00', 0x105142, 0x0)
r7 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0)
mount(&(0x7f0000000200)=ANY=[@ANYBLOB="2f6f651317868af191bdb2"], &(0x7f0000000240)='./file0\x00', &(0x7f0000000280)='nfsd\x00', 0x800000, &(0x7f0000000300)='cgroup\x00')
sendfile(r6, r7, 0x0, 0x100000001)
newfstatat(0xffffffffffffff9c, &(0x7f0000000340)='./file1\x00', &(0x7f0000000380), 0x400)

21:16:21 executing program 4:
openat$vcs(0xffffffffffffff9c, &(0x7f0000000040), 0x0, 0x0)
openat$sr(0xffffffffffffff9c, &(0x7f00000035c0), 0x0, 0x0)
openat$sr(0xffffffffffffff9c, &(0x7f00000000c0), 0x224400, 0x0)
openat$rtc(0xffffffffffffff9c, &(0x7f0000000200), 0x0, 0x0)
pipe(&(0x7f00000001c0))
open(&(0x7f00000016c0)='./cgroup.net/cgroup.procs\x00', 0x0, 0x0)
pselect6(0x40, &(0x7f0000000180), &(0x7f00000001c0)={0x3fc, 0x0, 0x0, 0x0, 0x0, 0x1000000}, 0x0, 0x0, 0x0)

21:16:21 executing program 6:
r0 = syz_mount_image$vfat(&(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x0, 0x2, &(0x7f0000000180)=[{&(0x7f0000000140)="eb3c906d6b66732e66617400020801000470008400f8", 0x16}, {0x0, 0x0, 0x1000a00}], 0x0, &(0x7f0000000240)=ANY=[])
chdir(&(0x7f0000000040)='./file0\x00')
openat2(r0, &(0x7f0000000100)='./file0\x00', &(0x7f00000001c0)={0x40000, 0x81}, 0x18)
mount$cgroup(0x0, 0x0, &(0x7f0000000400), 0x0, 0x0)
r1 = syz_io_uring_setup(0x22, &(0x7f0000000680)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000180)=<r2=>0x0, &(0x7f0000002a40)=<r3=>0x0)
r4 = io_uring_register$IORING_REGISTER_PERSONALITY(r1, 0x9, 0x0, 0x0)
r5 = socket$nl_netfilter(0x10, 0x3, 0xc)
syz_io_uring_submit(r2, r3, &(0x7f0000000400)=@IORING_OP_WRITEV={0x2, 0x0, 0x0, @fd=r5, 0x0, 0x0, 0x0, 0x0, 0x0, {0x0, r4}}, 0x0)
r6 = syz_io_uring_setup(0x22, &(0x7f0000000680)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000180), &(0x7f0000002a40))
r7 = io_uring_register$IORING_REGISTER_PERSONALITY(r6, 0x9, 0x0, 0x0)
syz_io_uring_submit(r2, 0x0, &(0x7f0000000440)=@IORING_OP_FSYNC={0x3, 0x2, 0x0, @fd_index=0x9, 0x0, 0x0, 0x0, 0x0, 0x1, {0x0, r7}}, 0x2)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r8 = openat(0xffffffffffffff9c, &(0x7f00000002c0)='./file1\x00', 0x105142, 0x0)
r9 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0)
sendfile(r8, r9, 0x0, 0x100000001)
newfstatat(0xffffffffffffff9c, &(0x7f0000000340)='./file1\x00', &(0x7f0000000380), 0x400)

21:16:21 executing program 7:
r0 = socket$nl_xfrm(0x10, 0x3, 0x6)
ioctl$EXT4_IOC_ALLOC_DA_BLKS(r0, 0x660c)
r1 = perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x80800, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f0000000140), 0x4}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r2 = perf_event_open(&(0x7f00000000c0)={0x5, 0x80, 0x0, 0x0, 0x1f, 0x4b, 0x0, 0x2, 0xa140, 0xc, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x1, 0x0, 0x1, 0x1, 0x1, 0x0, 0x1, 0x0, 0x0, 0x0, 0x1, 0x0, 0x1, 0x0, 0x1, 0x1, 0x0, 0x0, 0x1, 0x0, 0x1, 0x1, 0x0, 0x0, 0x1, 0x1, 0x0, 0x1, 0x0, 0x3f, 0x0, @perf_bp, 0x0, 0x800, 0x74c6, 0x4, 0xfffffffffffffffe, 0x0, 0x2, 0x0, 0xfffffc00, 0x0, 0x1}, 0xffffffffffffffff, 0x4, r1, 0x0)
io_setup(0x7f, &(0x7f00000002c0)=<r3=>0x0)
r4 = perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
io_setup(0x7f, &(0x7f00000002c0)=<r5=>0x0)
io_submit(r5, 0x1, &(0x7f0000000340)=[&(0x7f0000000300)={0x0, 0x0, 0x0, 0x5, 0x0, r4, 0x0}])
r6 = perf_event_open(&(0x7f0000001d80)={0x2, 0x80, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
mmap(&(0x7f0000ffc000/0x2000)=nil, 0x2000, 0x0, 0x13, r6, 0x0)
perf_event_open(&(0x7f0000001d80)={0x2, 0x80, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, r6, 0x2)
r7 = eventfd2(0x56, 0x1)
pipe(&(0x7f00000001c0)={<r8=>0xffffffffffffffff, <r9=>0xffffffffffffffff})
mount$9p_fd(0x0, &(0x7f0000000040)='./file1\x00', &(0x7f00000000c0), 0x0, &(0x7f0000000280)={'trans=fd,', {'rfdno', 0x3d, r8}, 0x2c, {'wfdno', 0x3d, r9}, 0x2c, {[{@nodevmap}]}})
pipe(&(0x7f00000001c0)={<r10=>0xffffffffffffffff, <r11=>0xffffffffffffffff})
mount$9p_fd(0x0, &(0x7f0000000040)='./file1\x00', &(0x7f00000000c0), 0x0, &(0x7f0000000b40)=ANY=[@ANYBLOB='trans=fd,rfdno=', @ANYRESHEX=r10, @ANYBLOB=',wfdno=', @ANYRESHEX=r11, @ANYBLOB="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"])
io_submit(r5, 0x4, &(0x7f0000000b00)=[&(0x7f00000004c0)={0x0, 0x0, 0x0, 0x1, 0x3, r4, &(0x7f0000000680)="d025e069d916774c31555826b9563756b71563169aac18467712090e5fb2b16780872a1beec45206c4179c6101098903f225f7edff7698da159e2d41bf751bd95e8d5ccd578582eeb368bb22e127ebdd5e0bc24b20d26fe3f168adbda19ebdade96afc75701ab1cb2a34279a90ab2c7e1bc5527a90c27de593d21ba1772b0a7aa05e1e95aaa344557b071f708a7b35a4ce3f", 0x92, 0x8, 0x0, 0x3, r8}, &(0x7f0000000880)={0x0, 0x0, 0x0, 0x0, 0xffff, 0xffffffffffffffff, &(0x7f0000000780)="517d780ecd015ed6d3ad2a74ae3dadb0be2790d057b7e6d12dc63f6d0b14a35fdbd49cbf60febcf70259171e9d5d71f956590911d714bbb8f36908427cee9b39a603cff36e21ab89fcc28b0a716d99bd961ce4320c98ddb14bc465ee6ff3cfd4a3c36bd481f6447bac141a1bab7e15c71a591a006f297e5303772fb506c718fea61c9de9066174522abd28ba68a77f3264f09f3258b64493694d225297d1331a102279120fc08a66f0d59d1497421f0a6109dab4a02d83547edf71fb5eff5a707d87d3fdd1a49a8ed27992c40dcfcb6fbb09236238a6c1814e5b5c993716228aaaf7935a12b0864ca2e581400f70b23a872a0cfc4cbf", 0xf6, 0x6, 0x0, 0x2}, &(0x7f0000000980)={0x0, 0x0, 0x0, 0x3, 0x7, 0xffffffffffffffff, &(0x7f00000008c0)="550191c4ac0a8a1530c1f93baf90190306205d6c32769e0c344cc46ee0a947a9e4f3ee3a7108a9f2ad1ad148526157d02166a819d0c4d4bcf38e95d714fd8f681538e7e9d92ea17d3a5a57aaf6016265e8454b14358e4a977864dc3e4762f9182469c8826cb78886a240a6485598883d7dc2825ff2c9085ea61a8cb3a8fafd0d2493f15f83b64cccdf", 0x89, 0x5, 0x0, 0x2}, &(0x7f0000000ac0)={0x0, 0x0, 0x0, 0x3, 0xa13, 0xffffffffffffffff, &(0x7f00000009c0)="2e88e5a83405ed400cc28af25e4a64c65ad438329d461c9c73c4a3c2c709da384e278f07027af41edb5411d661b3dc6a5ac82aceb3de88c42b0f7be3e522a236a6bfb10e44294ac1b68b4cae6ae52d0c319dfa0be98ca5b6d6d69060190ac922eef7170163820743a8cf14f494c6f16536b35f54c3d2b9594fda7c920a2af07695891976d6eeec2d9aff67acbfb45f9f9fa2f48be8c462a2e482bf2172e4f556c5f64a49cec093972c94e06dbe8ed8e9450ea91890ddcf68092a82aca44a4c2d6e11f425e14cec665796dd0da949af317872e5b74b1438d681ff12ad43", 0xdd, 0x54a, 0x0, 0x1, r10}])
io_submit(r5, 0x4, &(0x7f0000000640)=[&(0x7f0000000280)={0x0, 0x0, 0x0, 0x6, 0x100, r6, &(0x7f0000000180)="b345170d8391cfce12b15b7d61793d8b977fde90347294a695a3ba1fcafe22b26d429bd6f69e963b6d7ccb9f5aa557e8c1d439ff35e41c7a1b727698a585e6e8c35013088ce35c5e3c98438902d63e5f138f4c45e0b97a12284ee4416dc64ab3aa4819efbe0b8dae46ffc87faa5047f7ae84e958cd16ec32c285b56d9cd2a031d1012e8511f6214a141f65ac12cb905408bb7264a562270ff8a1376755cb8d1f8a3e8894a8c6010f839386b0c30bca0760c547e51c46fb993cfa860c08375e50502990d718cce93ba98e56c836a4d463abd1fd03", 0xd4, 0x1000, 0x0, 0x3}, &(0x7f0000000480)={0x0, 0x0, 0x0, 0x8, 0x4, r1, &(0x7f0000000380)="832349815be9424fb47fa53231785b8e1c31e3a3b9ac6de0abe1546d920b1a04ddd265800a5b0ac2ff1371c72a4973304ac768c9e3801206c9058fb3beeecb25d976129b6eb5dc8943fafbfccfaeb2c7bd693f6bd23c5583ca86ff9601d81bdb6c2d429fc7aee4f90296db0eadc7edbd2a1185b2842a468b9de31e1bbfd87b13fb0d846c81bd8c040d650290d03174b129bbaca6f5131563b13ae8f622f96883a49b7e65d236992664e43ece5a94a752142ad1fbf4a602cf149edf6df27c87c81c4fbfe77d46e8b4e41f0e846f761b", 0xcf, 0x20, 0x0, 0x1, r7}, &(0x7f0000000500)={0x0, 0x0, 0x0, 0x6, 0x400, r2, &(0x7f00000004c0), 0x0, 0x8, 0x0, 0x1, r9}, &(0x7f0000000600)={0x0, 0x0, 0x0, 0x5, 0x9, r2, &(0x7f0000000540)="a8de568e3a558197d9b13989f5f43e8fd0f547e205bdec93403dbbcc24ae8fba96045a5891ae651a5364807cad88df3ec97d56f29af7feaf7dd1335b64d1ae09cd1dc940d3ed7e15d3a24eaa8cb7326d0d3841f44f37531874d4a4996c53d3e323bd2e9a22ce783c6baa0a6ed066472e5483ff0c871533870dfa89cc24d80d545a7bd5e4bac9187017aaa0f80f986855bde360f24674550cb4d83426ea584a6d77", 0xa1, 0x1}])
io_submit(r3, 0x1, &(0x7f0000000340)=[&(0x7f0000000300)={0x0, 0x0, 0x0, 0x5, 0x0, r1, 0x0}])
openat(0xffffffffffffffff, 0x0, 0x0, 0x10)

21:16:21 executing program 5:
openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x105142, 0x0)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
pipe(&(0x7f00000001c0)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
mount$9p_fd(0x0, &(0x7f0000000040)='./file1\x00', &(0x7f00000000c0), 0x0, &(0x7f0000000280)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}}) (fail_nth: 21)
openat(0xffffffffffffffff, 0x0, 0x0, 0x0)

21:16:21 executing program 3:
openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x105142, 0x0)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x400}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
pipe(&(0x7f00000001c0)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
mount$9p_fd(0x0, &(0x7f0000000040)='./file1\x00', &(0x7f00000000c0), 0x0, &(0x7f0000000280)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {}, 0x2c, {[{@nodevmap}]}}) (fail_nth: 29)
openat(r1, &(0x7f0000000180)='./file1\x00', 0x0, 0x0)

21:16:21 executing program 2:
syz_mount_image$vfat(&(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x0, 0x2, &(0x7f0000000180)=[{&(0x7f0000000140)="eb3c906d6b66732e66617400020801000470008400f801", 0x17}, {0x0, 0x0, 0x1000a00}], 0x0, &(0x7f0000000240)=ANY=[])
chdir(&(0x7f0000000040)='./file0\x00')
r0 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x105142, 0x0)
ioctl$FS_IOC_RESVSP(r0, 0x40305828, &(0x7f0000000040)={0x0, 0x0, 0x0, 0x4000006, 0xffff0f00})

21:16:21 executing program 1:
openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x105142, 0x0)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
pipe(&(0x7f00000001c0))
mount$9p_fd(0x0, &(0x7f0000000040)='./file1\x00', &(0x7f00000000c0), 0x0, &(0x7f0000000280)={'trans=fd,', {}, 0x2c, {}, 0x2c, {[{@nodevmap}]}}) (fail_nth: 20)

[ 2135.477097]  v9fs_session_init+0x1dd/0x16a0
[ 2135.477124]  ? kmem_cache_alloc_trace+0x151/0x360
[ 2135.477137]  ? v9fs_show_options+0x690/0x690
[ 2135.477169]  ? kasan_unpoison_shadow+0x33/0x50
21:16:22 executing program 1:
openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x105142, 0x0)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
pipe(&(0x7f00000001c0))
mount$9p_fd(0x0, &(0x7f0000000040)='./file1\x00', &(0x7f00000000c0), 0x0, &(0x7f0000000280)={'trans=fd,', {}, 0x2c, {}, 0x2c, {[{@nodevmap}]}}) (fail_nth: 21)

[ 2135.477185]  ? __kasan_kmalloc.constprop.0+0xc9/0xd0
[ 2135.477204]  v9fs_mount+0x79/0x8f0
[ 2135.477222]  ? v9fs_write_inode+0x60/0x60
[ 2135.477237]  legacy_get_tree+0x105/0x220
[ 2135.477256]  vfs_get_tree+0x8e/0x300
[ 2135.477273]  path_mount+0x13be/0x20b0
[ 2135.477292]  ? strncpy_from_user+0x9e/0x470
[ 2135.477308]  ? finish_automount+0xa40/0xa40
[ 2135.477325]  ? getname_flags.part.0+0x1dd/0x4f0
[ 2135.477338]  ? _copy_from_user+0xfb/0x1b0
[ 2135.477363]  __x64_sys_mount+0x282/0x300
[ 2135.477380]  ? copy_mnt_ns+0xa00/0xa00
[ 2135.477399]  ? rcu_read_lock_sched_held+0x3e/0x80
[ 2135.477417]  do_syscall_64+0x33/0x40
[ 2135.477432]  entry_SYSCALL_64_after_hwframe+0x61/0xc6
[ 2135.477442] RIP: 0033:0x7f38308e8b19
21:16:22 executing program 3:
openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x105142, 0x0)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x400}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
pipe(&(0x7f00000001c0)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
mount$9p_fd(0x0, &(0x7f0000000040)='./file1\x00', &(0x7f00000000c0), 0x0, &(0x7f0000000280)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {}, 0x2c, {[{@nodevmap}]}}) (fail_nth: 30)
openat(r1, &(0x7f0000000180)='./file1\x00', 0x0, 0x0)

[ 2135.477457] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 2135.477465] RSP: 002b:00007f382de5e188 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5
[ 2135.477482] RAX: ffffffffffffffda RBX: 00007f38309fbf60 RCX: 00007f38308e8b19
[ 2135.477490] RDX: 00000000200000c0 RSI: 0000000020000040 RDI: 0000000000000000
[ 2135.477498] RBP: 00007f382de5e1d0 R08: 0000000020000280 R09: 0000000000000000
[ 2135.477506] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[ 2135.477513] R13: 00007ffca2bf07df R14: 00007f382de5e300 R15: 0000000000022000
[ 2135.484198] FAULT_INJECTION: forcing a failure.
[ 2135.484198] name failslab, interval 1, probability 0, space 0, times 0
[ 2135.484215] CPU: 1 PID: 17316 Comm: syz-executor.1 Not tainted 5.10.172 #1
[ 2135.484223] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 2135.484228] Call Trace:
[ 2135.484248]  dump_stack+0x107/0x167
[ 2135.484266]  should_fail.cold+0x5/0xa
[ 2135.484282]  ? p9_client_create+0xaf/0x1090
[ 2135.484298]  should_failslab+0x5/0x20
[ 2135.484313]  kmem_cache_alloc_trace+0x55/0x360
[ 2135.484326]  ? find_held_lock+0x2c/0x110
[ 2135.484344]  p9_client_create+0xaf/0x1090
21:16:22 executing program 7:
r0 = perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
io_setup(0x7f, &(0x7f00000002c0)=<r1=>0x0)
mount$9p_fd(0x0, &(0x7f0000000040)='./file1\x00', &(0x7f00000000c0), 0x0, &(0x7f0000000280)={'trans=fd,', {}, 0x2c, {}, 0x2c, {[{@nodevmap}]}})
pipe(&(0x7f00000001c0)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
mount$9p_fd(0x0, &(0x7f0000000040)='./file1\x00', &(0x7f00000000c0), 0x0, &(0x7f0000000280)={'trans=fd,', {'rfdno', 0x3d, r2}, 0x2c, {'wfdno', 0x3d, r3}, 0x2c, {[{@nodevmap}]}})
pipe(&(0x7f00000001c0)={<r4=>0xffffffffffffffff, <r5=>0xffffffffffffffff})
mount$9p_fd(0x0, &(0x7f0000000040)='./file1\x00', &(0x7f00000000c0), 0x0, &(0x7f0000000280)={'trans=fd,', {'rfdno', 0x3d, r4}, 0x2c, {'wfdno', 0x3d, r5}, 0x2c, {[{@nodevmap}]}})
r6 = socket$inet6_icmp(0xa, 0x2, 0x3a)
pipe(&(0x7f00000001c0)={<r7=>0xffffffffffffffff, <r8=>0xffffffffffffffff})
mount$9p_fd(0x0, &(0x7f0000000040)='./file1\x00', &(0x7f00000000c0), 0x0, &(0x7f0000000280)={'trans=fd,', {'rfdno', 0x3d, r7}, 0x2c, {'wfdno', 0x3d, r8}, 0x2c, {[{@nodevmap}]}})
r9 = perf_event_open(&(0x7f0000001d80)={0x2, 0x80, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
mmap(&(0x7f0000ffc000/0x2000)=nil, 0x2000, 0x0, 0x13, r9, 0x0)
perf_event_open(&(0x7f0000001d80)={0x2, 0x80, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, r9, 0x2)
pipe(&(0x7f00000001c0)={<r10=>0xffffffffffffffff, <r11=>0xffffffffffffffff})
mount$9p_fd(0x0, &(0x7f0000000040)='./file1\x00', &(0x7f00000000c0), 0x0, &(0x7f0000000280)={'trans=fd,', {'rfdno', 0x3d, r10}, 0x2c, {'wfdno', 0x3d, r11}, 0x2c, {[{@nodevmap}]}})
r12 = socket$inet6_tcp(0xa, 0x1, 0x0)
r13 = syz_io_uring_complete(0x0)
io_submit(0x0, 0x9, &(0x7f0000001880)=[&(0x7f0000000000)={0x0, 0x0, 0x0, 0x3, 0x9, r0, &(0x7f00000000c0)="7db17a3b8640c2283e38a5e0312fe50e4289140ebe9ee00f309157a6bacc3a892574eeef4c6ae45250a4df42989f6b2081ad80be975b565a34a2efedbe984fc6d93fbb666ee46785788359fb496f581228da193db9e96e08e6d25fd049cf8c7245f90ef4051039c8f9a3ded9", 0x6c, 0x6, 0x0, 0x1}, &(0x7f0000000240)={0x0, 0x0, 0x0, 0x8, 0x2, 0xffffffffffffffff, &(0x7f0000000140)="15abd0d43096c631caa34029ec2dbde7ff4758076b7a3c256e2e5881c0a348daf4857ce97c7731652fad18b66e9d1b6cdd0381581a46640a7de17d92662855a9cc25e8a8f172f761eb3c18b85751aee46a633a8e0e553446cf2f928f4da6d9286442eeedaa1e7849800b5d21772ad283b7e3a31a8956c6565e9c83cc7d945c5910cce6093ed103b7b8609197292a154337eb97d4538f966db8a053262c1921cf814be4a563c5fbaa5bbcd9218100ce4798cd848d5960027e6451bc0eb6f6b2aad0c2ce70c80a795c42429d06db4afe9319439f15b441fb0bce6d62004c43fcb56cdeffc7f16a3dd96ba371fc0672edf7467d5e4a4644", 0xf6, 0x5350}, &(0x7f0000000280)={0x0, 0x0, 0x0, 0x1, 0xff, r0, &(0x7f0000000380)="70ffbadac7f9a80f43fb7d7e1df48d7d6776410905b51e2fd92d560d1d6d323d54386522b1d78af3339126edcf7c05bea8faa82f227d1bbb40bd0038fc6b26ad9adc9c04bcfa3eed3354884a25625568d58d35dde429314009f2a6502f0a8563385636c5a7feefedec305289b9103a4481a8d3577072", 0x76, 0x9, 0x0, 0x1, r3}, &(0x7f0000000480)={0x0, 0x0, 0x0, 0x7, 0x1, r0, &(0x7f0000000400)="988461b31dcf81e469b9e0a6397066b21893cfcf4803a0bad2c75e16d96a00e87045e6ac1e6b599f8dc2b11ebeae89f4a76d0a720df1c2405decef71fcc7224312283735", 0x44, 0x8, 0x0, 0x1}, &(0x7f0000000540)={0x0, 0x0, 0x0, 0x2, 0x0, r0, &(0x7f00000004c0)="c5c6b6b0f16a360669cc914383ffbe1e8a9b9832988ac51be51b76655321b21102a0aff0b7aded3e8e7a3b6ec9908275cf937f1ffc9ea76b5f0f5aab6846d55c24ab9b3d19d40533", 0x48, 0x0, 0x0, 0x3, r5}, &(0x7f0000001580)={0x0, 0x0, 0x0, 0x4, 0xff1e, r6, &(0x7f0000000580)="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", 0x1000, 0xdb79, 0x0, 0x1, r8}, &(0x7f0000001600)={0x0, 0x0, 0x0, 0x6, 0x6, r9, &(0x7f00000015c0)="fbfea2bffef9c3740eaf7d3a7db3bdf12b02105bc963edd3e1ca78c8b0c8f71c9c0627434f6f780601ab01059f656f4039a43306107eb1b6b8133e", 0x3b, 0x0, 0x0, 0x3, r10}, &(0x7f0000001740)={0x0, 0x0, 0x0, 0x2, 0xf5, r0, &(0x7f0000001640)="91f125fdc891644b46127063da94c710462718e49bc25f336f3efb1c6692a1c9c8ee74686d58b9f6e49209f9222b707a436839d8c503a3a29c8ddb995b4548bd72adb85699fd7097ce0d3d95206727e39ce8ff75b706bd4e8a290d9bc092bc18da76f2f11e6798e50193e62f9aa72bd1965418252a6c69691173bd5bf9653ccd0cd3233f588d550096614fcacf3fa05ae7b34535dc42ee5b29e8740060c4e492d8386251c84bcd557e5dd230c664e23a7bc0e2082733f7baf8c1aed85f1df782b6278aa14453d154bd080a7a22719d51151a0ca06b24c5", 0xd7, 0xbd}, &(0x7f0000001840)={0x0, 0x0, 0x0, 0x6, 0x7, r12, &(0x7f0000001780)="20d85a69496a123227834796744ada125ef54f393fd4c23bc48518f98d1716fd5f3ea9db0d483392b7cb231d3d1be86a0c268897241fbb436bb5ba69804361424cb08bef20b5566e80fce24b4a93d34decb7cea8ecc37ba30c5977cbd7d0d07cf18ef258a92155c1775a5719a92b1cfa7d531529572965e5d6c34980143759af664f7cd0c0957c2e279180dacb8c88c6c2a23d0614104fd637f9671b47548a57", 0xa0, 0x10000, 0x0, 0x0, r13}])
io_submit(r1, 0x1, &(0x7f0000000340)=[&(0x7f0000000300)={0x0, 0x0, 0x0, 0x5, 0x0, r0, 0x0}])
openat(0xffffffffffffffff, 0x0, 0x0, 0x10)

21:16:22 executing program 2:
syz_mount_image$vfat(&(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x0, 0x2, &(0x7f0000000180)=[{&(0x7f0000000140)="eb3c906d6b66732e66617400020801000470008400f801", 0x17}, {0x0, 0x0, 0x1000a00}], 0x0, &(0x7f0000000240)=ANY=[])
chdir(&(0x7f0000000040)='./file0\x00')
r0 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x105142, 0x0)
ioctl$FS_IOC_RESVSP(r0, 0x40305828, &(0x7f0000000040)={0x0, 0x0, 0x0, 0x4000006, 0xfffffdff})

21:16:22 executing program 1:
openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x105142, 0x0)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
pipe(&(0x7f00000001c0))
mount$9p_fd(0x0, &(0x7f0000000040)='./file1\x00', &(0x7f00000000c0), 0x0, &(0x7f0000000280)={'trans=fd,', {}, 0x2c, {}, 0x2c, {[{@nodevmap}]}}) (fail_nth: 22)

[ 2135.484359]  ? lock_downgrade+0x6d0/0x6d0
[ 2135.484378]  ? p9_client_flush+0x430/0x430
[ 2135.484425]  ? lockdep_init_map_type+0x2c7/0x780
[ 2135.484440]  ? rcu_read_lock_sched_held+0x3e/0x80
[ 2135.484459]  ? __raw_spin_lock_init+0x36/0x110
[ 2135.484478]  v9fs_session_init+0x1dd/0x16a0
[ 2135.484491]  ? irqentry_enter+0x26/0x60
[ 2135.484511]  ? asm_sysvec_apic_timer_interrupt+0x12/0x20
[ 2135.484525]  ? trace_hardirqs_on+0x5b/0x180
[ 2135.484539]  ? v9fs_show_options+0x690/0x690
[ 2135.484573]  ? kasan_unpoison_shadow+0x33/0x50
[ 2135.484587]  ? __kasan_kmalloc.constprop.0+0xc9/0xd0
[ 2135.484604]  v9fs_mount+0x79/0x8f0
[ 2135.484620]  ? v9fs_write_inode+0x60/0x60
[ 2135.484634]  legacy_get_tree+0x105/0x220
[ 2135.484653]  vfs_get_tree+0x8e/0x300
[ 2135.484669]  path_mount+0x13be/0x20b0
[ 2135.484703]  ? strncpy_from_user+0x9e/0x470
[ 2135.484721]  ? finish_automount+0xa40/0xa40
[ 2135.484738]  ? getname_flags.part.0+0x1dd/0x4f0
[ 2135.484751]  ? _copy_from_user+0xfb/0x1b0
[ 2135.484776]  __x64_sys_mount+0x282/0x300
[ 2135.484789]  ? copy_mnt_ns+0xa00/0xa00
[ 2135.484806]  ? rcu_read_lock_sched_held+0x3e/0x80
[ 2135.484824]  do_syscall_64+0x33/0x40
[ 2135.484837]  entry_SYSCALL_64_after_hwframe+0x61/0xc6
[ 2135.484846] RIP: 0033:0x7f9bca359b19
[ 2135.484859] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 2135.484866] RSP: 002b:00007f9bc78cf188 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5
[ 2135.484881] RAX: ffffffffffffffda RBX: 00007f9bca46cf60 RCX: 00007f9bca359b19
[ 2135.484889] RDX: 00000000200000c0 RSI: 0000000020000040 RDI: 0000000000000000
[ 2135.484896] RBP: 00007f9bc78cf1d0 R08: 0000000020000280 R09: 0000000000000000
[ 2135.484903] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[ 2135.484911] R13: 00007fffb54b7e9f R14: 00007f9bc78cf300 R15: 0000000000022000
[ 2135.500577] FAULT_INJECTION: forcing a failure.
[ 2135.500577] name failslab, interval 1, probability 0, space 0, times 0
[ 2135.500595] CPU: 0 PID: 17320 Comm: syz-executor.3 Not tainted 5.10.172 #1
21:16:22 executing program 0:
syz_mount_image$vfat(&(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x0, 0x2, &(0x7f0000000180)=[{&(0x7f0000000140)="eb3c906d6b66732e66617400020801000470008400f801", 0x17}, {0x0, 0x0, 0x1000a00}], 0x0, &(0x7f0000000240)=ANY=[])
chdir(&(0x7f0000000040)='./file0\x00')
mount$cgroup(0x0, 0x0, &(0x7f0000000400), 0x0, 0x0)
r0 = syz_io_uring_setup(0x22, &(0x7f0000000680)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x4000)=nil, 0x0, &(0x7f0000002a40)=<r1=>0x0)
r2 = io_uring_register$IORING_REGISTER_PERSONALITY(r0, 0x9, 0x0, 0x0)
r3 = socket$nl_netfilter(0x10, 0x3, 0xc)
syz_io_uring_submit(0x0, r1, &(0x7f0000000400)=@IORING_OP_WRITEV={0x2, 0x0, 0x0, @fd=r3, 0x0, 0x0, 0x0, 0x0, 0x0, {0x0, r2}}, 0x0)
r4 = syz_io_uring_setup(0x22, &(0x7f0000000680)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000180), &(0x7f0000002a40))
r5 = io_uring_register$IORING_REGISTER_PERSONALITY(r4, 0x9, 0x0, 0x0)
syz_io_uring_submit(0x0, 0x0, &(0x7f0000000440)=@IORING_OP_FSYNC={0x3, 0x2, 0x0, @fd_index=0x9, 0x0, 0x0, 0x0, 0x0, 0x1, {0x0, r5}}, 0x2)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r6 = openat(0xffffffffffffff9c, &(0x7f00000002c0)='./file1\x00', 0x105142, 0x0)
r7 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0)
mount(&(0x7f0000000200)=ANY=[@ANYBLOB="2f6f651317868af191bdb2"], &(0x7f0000000240)='./file0\x00', &(0x7f0000000280)='nfsd\x00', 0x800000, &(0x7f0000000300)='cgroup\x00')
sendfile(r6, r7, 0x0, 0x100000001)
newfstatat(0xffffffffffffff9c, &(0x7f0000000340)='./file1\x00', &(0x7f0000000380), 0x400)

[ 2135.500603] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
21:16:22 executing program 5:
openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x105142, 0x0)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
pipe(&(0x7f00000001c0)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
mount$9p_fd(0x0, &(0x7f0000000040)='./file1\x00', &(0x7f00000000c0), 0x0, &(0x7f0000000280)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}}) (fail_nth: 22)
openat(0xffffffffffffffff, 0x0, 0x0, 0x0)

21:16:22 executing program 3:
openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x105142, 0x0)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x400}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
pipe(&(0x7f00000001c0)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
mount$9p_fd(0x0, &(0x7f0000000040)='./file1\x00', &(0x7f00000000c0), 0x0, &(0x7f0000000280)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {}, 0x2c, {[{@nodevmap}]}}) (fail_nth: 31)
openat(r1, &(0x7f0000000180)='./file1\x00', 0x0, 0x0)

[ 2135.500608] Call Trace:
[ 2135.500636]  dump_stack+0x107/0x167
[ 2135.500658]  should_fail.cold+0x5/0xa
[ 2135.500678]  ? create_object.isra.0+0x3a/0xa20
[ 2135.503249] FAT-fs (loop6): bogus number of FAT sectors
[ 2135.503263] FAT-fs (loop6): Can't find a valid FAT filesystem
[ 2135.504732]  should_failslab+0x5/0x20
[ 2135.504749]  kmem_cache_alloc+0x5b/0x360
[ 2135.504773]  create_object.isra.0+0x3a/0xa20
[ 2135.504790]  ? __kasan_kmalloc.constprop.0+0xc9/0xd0
[ 2135.504808]  __kmalloc_track_caller+0x177/0x3c0
[ 2135.504824]  ? match_number+0xaf/0x1d0
[ 2135.504851]  kmemdup_nul+0x2d/0xa0
[ 2135.504867]  match_number+0xaf/0x1d0
[ 2135.504883]  ? match_u64+0x190/0x190
[ 2135.504895]  ? __kmalloc_track_caller+0x2d4/0x3c0
[ 2135.504915]  ? memcpy+0x39/0x60
[ 2135.504939]  parse_opts.part.0+0x1f3/0x340
[ 2135.504958]  ? p9_fd_show_options+0x1c0/0x1c0
[ 2135.504985]  ? lockdep_hardirqs_on_prepare+0x277/0x3e0
[ 2135.505006]  ? trace_hardirqs_on+0x5b/0x180
[ 2135.505024]  ? kfree+0xd7/0x390
[ 2135.505048]  p9_fd_create+0x98/0x4a0
[ 2135.505062]  ? p9_conn_create+0x510/0x510
[ 2135.505074]  ? p9_client_create+0x798/0x1090
[ 2135.505086]  ? kfree+0xd7/0x390
[ 2135.505099]  ? do_raw_spin_unlock+0x4f/0x220
[ 2135.505120]  p9_client_create+0x7ff/0x1090
[ 2135.505143]  ? p9_client_flush+0x430/0x430
[ 2135.505166]  ? lockdep_init_map_type+0x2c7/0x780
[ 2135.505182]  ? rcu_read_lock_sched_held+0x3e/0x80
[ 2135.505202]  ? __raw_spin_lock_init+0x36/0x110
[ 2135.505223]  v9fs_session_init+0x1dd/0x16a0
[ 2135.505238]  ? irqentry_enter+0x26/0x60
[ 2135.505261]  ? asm_sysvec_apic_timer_interrupt+0x12/0x20
[ 2135.505274]  ? trace_hardirqs_on+0x5b/0x180
[ 2135.505288]  ? v9fs_show_options+0x690/0x690
21:16:22 executing program 1:
openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x105142, 0x0)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
pipe(&(0x7f00000001c0))
mount$9p_fd(0x0, &(0x7f0000000040)='./file1\x00', &(0x7f00000000c0), 0x0, &(0x7f0000000280)={'trans=fd,', {}, 0x2c, {}, 0x2c, {[{@nodevmap}]}}) (fail_nth: 23)

[ 2135.505322]  ? kasan_unpoison_shadow+0x33/0x50
[ 2135.505337]  ? __kasan_kmalloc.constprop.0+0xc9/0xd0
[ 2135.505357]  v9fs_mount+0x79/0x8f0
[ 2135.505374]  ? v9fs_write_inode+0x60/0x60
[ 2135.505391]  legacy_get_tree+0x105/0x220
[ 2135.505411]  vfs_get_tree+0x8e/0x300
[ 2135.505429]  path_mount+0x13be/0x20b0
[ 2135.505449]  ? strncpy_from_user+0x9e/0x470
[ 2135.505467]  ? finish_automount+0xa40/0xa40
[ 2135.505488]  ? getname_flags.part.0+0x1dd/0x4f0
[ 2135.505501]  ? _copy_from_user+0xfb/0x1b0
[ 2135.505527]  __x64_sys_mount+0x282/0x300
[ 2135.505543]  ? copy_mnt_ns+0xa00/0xa00
[ 2135.505565]  ? rcu_read_lock_sched_held+0x3e/0x80
[ 2135.505587]  do_syscall_64+0x33/0x40
[ 2135.505604]  entry_SYSCALL_64_after_hwframe+0x61/0xc6
[ 2135.505615] RIP: 0033:0x7f68c9012b19
[ 2135.505631] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 2135.505639] RSP: 002b:00007f68c6588188 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5
[ 2135.505655] RAX: ffffffffffffffda RBX: 00007f68c9125f60 RCX: 00007f68c9012b19
[ 2135.505664] RDX: 00000000200000c0 RSI: 0000000020000040 RDI: 0000000000000000
[ 2135.505673] RBP: 00007f68c65881d0 R08: 0000000020000280 R09: 0000000000000000
[ 2135.505681] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[ 2135.505690] R13: 00007ffe8a1e19df R14: 00007f68c6588300 R15: 0000000000022000
[ 2135.542008] 9pnet: Insufficient options for proto=fd
[ 2135.691436] FAULT_INJECTION: forcing a failure.
[ 2135.691436] name failslab, interval 1, probability 0, space 0, times 0
[ 2135.691454] CPU: 1 PID: 17336 Comm: syz-executor.1 Not tainted 5.10.172 #1
[ 2135.691463] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 2135.691467] Call Trace:
[ 2135.691488]  dump_stack+0x107/0x167
[ 2135.691507]  should_fail.cold+0x5/0xa
[ 2135.691523]  ? create_object.isra.0+0x3a/0xa20
[ 2135.691540]  should_failslab+0x5/0x20
[ 2135.691553]  kmem_cache_alloc+0x5b/0x360
[ 2135.691574]  create_object.isra.0+0x3a/0xa20
[ 2135.691588]  ? __kasan_kmalloc.constprop.0+0xc9/0xd0
[ 2135.691608]  __kmalloc_track_caller+0x177/0x3c0
[ 2135.691624]  ? v9fs_session_init+0xe9/0x16a0
[ 2135.691637]  ? kernel_text_address+0xf2/0x120
[ 2135.691658]  kstrdup+0x36/0x70
[ 2135.691672]  v9fs_session_init+0xe9/0x16a0
[ 2135.691690]  ? find_held_lock+0x2c/0x110
[ 2135.691711]  ? kmem_cache_alloc_trace+0x151/0x360
[ 2135.691725]  ? v9fs_show_options+0x690/0x690
[ 2135.691759]  ? kasan_unpoison_shadow+0x33/0x50
[ 2135.691775]  ? __kasan_kmalloc.constprop.0+0xc9/0xd0
[ 2135.691795]  v9fs_mount+0x79/0x8f0
[ 2135.691813]  ? v9fs_write_inode+0x60/0x60
[ 2135.691829]  legacy_get_tree+0x105/0x220
[ 2135.691851]  vfs_get_tree+0x8e/0x300
[ 2135.691871]  path_mount+0x13be/0x20b0
[ 2135.691893]  ? strncpy_from_user+0x9e/0x470
[ 2135.691910]  ? finish_automount+0xa40/0xa40
[ 2135.691928]  ? getname_flags.part.0+0x1dd/0x4f0
[ 2135.691941]  ? _copy_from_user+0xfb/0x1b0
[ 2135.691968]  __x64_sys_mount+0x282/0x300
[ 2135.691984]  ? copy_mnt_ns+0xa00/0xa00
[ 2135.692005]  ? rcu_read_lock_sched_held+0x3e/0x80
[ 2135.692025]  do_syscall_64+0x33/0x40
[ 2135.692041]  entry_SYSCALL_64_after_hwframe+0x61/0xc6
[ 2135.692051] RIP: 0033:0x7f9bca359b19
[ 2135.692067] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 2135.692075] RSP: 002b:00007f9bc78cf188 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5
[ 2135.692092] RAX: ffffffffffffffda RBX: 00007f9bca46cf60 RCX: 00007f9bca359b19
[ 2135.692100] RDX: 00000000200000c0 RSI: 0000000020000040 RDI: 0000000000000000
[ 2135.692109] RBP: 00007f9bc78cf1d0 R08: 0000000020000280 R09: 0000000000000000
[ 2135.692117] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[ 2135.692126] R13: 00007fffb54b7e9f R14: 00007f9bc78cf300 R15: 0000000000022000
[ 2135.701286] 9pnet: Insufficient options for proto=fd
[ 2135.811468] FAULT_INJECTION: forcing a failure.
[ 2135.811468] name failslab, interval 1, probability 0, space 0, times 0
[ 2135.811506] CPU: 0 PID: 17342 Comm: syz-executor.3 Not tainted 5.10.172 #1
[ 2135.811514] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 2135.811519] Call Trace:
[ 2135.811539]  dump_stack+0x107/0x167
[ 2135.811557]  should_fail.cold+0x5/0xa
[ 2135.811577]  should_failslab+0x5/0x20
[ 2135.811591]  __kmalloc_track_caller+0x79/0x3c0
[ 2135.811604]  ? match_number+0xaf/0x1d0
[ 2135.811622]  ? kfree+0xd7/0x390
[ 2135.811641]  kmemdup_nul+0x2d/0xa0
[ 2135.811656]  match_number+0xaf/0x1d0
[ 2135.811671]  ? match_u64+0x190/0x190
[ 2135.811684]  ? __kmalloc_track_caller+0x2d4/0x3c0
[ 2135.811701]  ? memcpy+0x39/0x60
[ 2135.811721]  parse_opts.part.0+0x1f3/0x340
[ 2135.811738]  ? p9_fd_show_options+0x1c0/0x1c0
[ 2135.811758]  ? lockdep_hardirqs_on_prepare+0x277/0x3e0
[ 2135.811774]  ? trace_hardirqs_on+0x5b/0x180
[ 2135.811790]  ? kfree+0xd7/0x390
[ 2135.811810]  p9_fd_create+0x98/0x4a0
[ 2135.811824]  ? p9_conn_create+0x510/0x510
[ 2135.811836]  ? p9_client_create+0x798/0x1090
[ 2135.811849]  ? kfree+0xd7/0x390
[ 2135.811862]  ? do_raw_spin_unlock+0x4f/0x220
[ 2135.811883]  p9_client_create+0x7ff/0x1090
[ 2135.811907]  ? p9_client_flush+0x430/0x430
[ 2135.811929]  ? lockdep_init_map_type+0x2c7/0x780
[ 2135.811943]  ? rcu_read_lock_sched_held+0x3e/0x80
[ 2135.811962]  ? __raw_spin_lock_init+0x36/0x110
[ 2135.812050]  v9fs_session_init+0x1dd/0x16a0
[ 2135.812077]  ? kmem_cache_alloc_trace+0x151/0x360
[ 2135.812090]  ? v9fs_show_options+0x690/0x690
[ 2135.812125]  ? kasan_unpoison_shadow+0x33/0x50
[ 2135.812140]  ? __kasan_kmalloc.constprop.0+0xc9/0xd0
[ 2135.812158]  v9fs_mount+0x79/0x8f0
[ 2135.812174]  ? v9fs_write_inode+0x60/0x60
[ 2135.812190]  legacy_get_tree+0x105/0x220
[ 2135.812209]  vfs_get_tree+0x8e/0x300
[ 2135.812225]  path_mount+0x13be/0x20b0
[ 2135.812243]  ? strncpy_from_user+0x9e/0x470
[ 2135.812260]  ? finish_automount+0xa40/0xa40
[ 2135.812278]  ? getname_flags.part.0+0x1dd/0x4f0
[ 2135.812291]  ? _copy_from_user+0xfb/0x1b0
[ 2135.812316]  __x64_sys_mount+0x282/0x300
[ 2135.812332]  ? copy_mnt_ns+0xa00/0xa00
[ 2135.812350]  ? rcu_read_lock_sched_held+0x3e/0x80
[ 2135.812368]  do_syscall_64+0x33/0x40
[ 2135.812383]  entry_SYSCALL_64_after_hwframe+0x61/0xc6
[ 2135.812392] RIP: 0033:0x7f68c9012b19
[ 2135.812406] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 2135.812413] RSP: 002b:00007f68c6588188 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5
[ 2135.812429] RAX: ffffffffffffffda RBX: 00007f68c9125f60 RCX: 00007f68c9012b19
[ 2135.812437] RDX: 00000000200000c0 RSI: 0000000020000040 RDI: 0000000000000000
[ 2135.812445] RBP: 00007f68c65881d0 R08: 0000000020000280 R09: 0000000000000000
[ 2135.812453] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[ 2135.812461] R13: 00007ffe8a1e19df R14: 00007f68c6588300 R15: 0000000000022000
[ 2135.817943] 9pnet: Insufficient options for proto=fd
[ 2135.956432] FAULT_INJECTION: forcing a failure.
[ 2135.956432] name failslab, interval 1, probability 0, space 0, times 0
[ 2135.956450] CPU: 0 PID: 17349 Comm: syz-executor.1 Not tainted 5.10.172 #1
[ 2135.956458] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 2135.956462] Call Trace:
[ 2135.956482]  dump_stack+0x107/0x167
[ 2135.956501]  should_fail.cold+0x5/0xa
[ 2135.956523]  should_failslab+0x5/0x20
[ 2135.956537]  __kmalloc_track_caller+0x79/0x3c0
[ 2135.956550]  ? p9_client_create+0x41d/0x1090
[ 2135.956607]  kstrdup+0x36/0x70
[ 2135.956627]  p9_client_create+0x41d/0x1090
[ 2135.956643]  ? lock_downgrade+0x6d0/0x6d0
[ 2135.956665]  ? p9_client_flush+0x430/0x430
[ 2135.956700]  ? lockdep_init_map_type+0x2c7/0x780
[ 2135.956713]  ? rcu_read_lock_sched_held+0x3e/0x80
[ 2135.956732]  ? __raw_spin_lock_init+0x36/0x110
[ 2135.956753]  v9fs_session_init+0x1dd/0x16a0
[ 2135.956780]  ? kmem_cache_alloc_trace+0x151/0x360
[ 2135.956793]  ? v9fs_show_options+0x690/0x690
[ 2135.956826]  ? kasan_unpoison_shadow+0x33/0x50
[ 2135.956842]  ? __kasan_kmalloc.constprop.0+0xc9/0xd0
[ 2135.956862]  v9fs_mount+0x79/0x8f0
[ 2135.956880]  ? v9fs_write_inode+0x60/0x60
[ 2135.956896]  legacy_get_tree+0x105/0x220
[ 2135.956916]  vfs_get_tree+0x8e/0x300
[ 2135.956933]  path_mount+0x13be/0x20b0
[ 2135.956952]  ? strncpy_from_user+0x9e/0x470
[ 2135.956970]  ? finish_automount+0xa40/0xa40
[ 2135.956986]  ? getname_flags.part.0+0x1dd/0x4f0
[ 2135.956999]  ? _copy_from_user+0xfb/0x1b0
[ 2135.957024]  __x64_sys_mount+0x282/0x300
[ 2135.957040]  ? copy_mnt_ns+0xa00/0xa00
[ 2135.957060]  ? rcu_read_lock_sched_held+0x3e/0x80
[ 2135.957081]  do_syscall_64+0x33/0x40
[ 2135.957096]  entry_SYSCALL_64_after_hwframe+0x61/0xc6
[ 2135.957106] RIP: 0033:0x7f9bca359b19
[ 2135.957120] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 2135.957128] RSP: 002b:00007f9bc78cf188 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5
[ 2135.957144] RAX: ffffffffffffffda RBX: 00007f9bca46cf60 RCX: 00007f9bca359b19
[ 2135.957153] RDX: 00000000200000c0 RSI: 0000000020000040 RDI: 0000000000000000
[ 2135.957162] RBP: 00007f9bc78cf1d0 R08: 0000000020000280 R09: 0000000000000000
[ 2135.957170] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[ 2135.957178] R13: 00007fffb54b7e9f R14: 00007f9bc78cf300 R15: 0000000000022000
[ 2136.111773] FAULT_INJECTION: forcing a failure.
[ 2136.111773] name failslab, interval 1, probability 0, space 0, times 0
[ 2136.111806] CPU: 0 PID: 17356 Comm: syz-executor.3 Not tainted 5.10.172 #1
[ 2136.111814] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 2136.111819] Call Trace:
[ 2136.111839]  dump_stack+0x107/0x167
[ 2136.111858]  should_fail.cold+0x5/0xa
[ 2136.111874]  ? create_object.isra.0+0x3a/0xa20
[ 2136.111890]  should_failslab+0x5/0x20
[ 2136.111904]  kmem_cache_alloc+0x5b/0x360
[ 2136.111920]  ? lockdep_hardirqs_on_prepare+0x277/0x3e0
[ 2136.111937]  create_object.isra.0+0x3a/0xa20
[ 2136.111950]  ? __kasan_kmalloc.constprop.0+0xc9/0xd0
[ 2136.111969]  __kmalloc_track_caller+0x177/0x3c0
[ 2136.111982]  ? match_number+0xaf/0x1d0
[ 2136.112003]  kmemdup_nul+0x2d/0xa0
[ 2136.112017]  match_number+0xaf/0x1d0
[ 2136.112032]  ? match_u64+0x190/0x190
[ 2136.112058]  parse_opts.part.0+0x1f3/0x340
[ 2136.112076]  ? p9_fd_show_options+0x1c0/0x1c0
[ 2136.112095]  ? lockdep_hardirqs_on_prepare+0x277/0x3e0
[ 2136.112110]  ? trace_hardirqs_on+0x5b/0x180
[ 2136.112125]  ? kfree+0xd7/0x390
[ 2136.112146]  p9_fd_create+0x98/0x4a0
[ 2136.112160]  ? p9_conn_create+0x510/0x510
[ 2136.112172]  ? p9_client_create+0x798/0x1090
[ 2136.112185]  ? kfree+0xd7/0x390
[ 2136.112198]  ? do_raw_spin_unlock+0x4f/0x220
[ 2136.112219]  p9_client_create+0x7ff/0x1090
[ 2136.112241]  ? p9_client_flush+0x430/0x430
[ 2136.112266]  ? lockdep_init_map_type+0x2c7/0x780
[ 2136.112279]  ? rcu_read_lock_sched_held+0x3e/0x80
[ 2136.112297]  ? __raw_spin_lock_init+0x36/0x110
[ 2136.112317]  v9fs_session_init+0x1dd/0x16a0
[ 2136.112347]  ? kmem_cache_alloc_trace+0x151/0x360
[ 2136.112361]  ? v9fs_show_options+0x690/0x690
[ 2136.112392]  ? kasan_unpoison_shadow+0x33/0x50
[ 2136.112408]  ? __kasan_kmalloc.constprop.0+0xc9/0xd0
[ 2136.112427]  v9fs_mount+0x79/0x8f0
[ 2136.112443]  ? v9fs_write_inode+0x60/0x60
[ 2136.112458]  legacy_get_tree+0x105/0x220
[ 2136.112476]  vfs_get_tree+0x8e/0x300
[ 2136.112492]  path_mount+0x13be/0x20b0
[ 2136.112510]  ? strncpy_from_user+0x9e/0x470
[ 2136.112527]  ? finish_automount+0xa40/0xa40
[ 2136.112544]  ? getname_flags.part.0+0x1dd/0x4f0
[ 2136.112556]  ? _copy_from_user+0xfb/0x1b0
[ 2136.112581]  __x64_sys_mount+0x282/0x300
[ 2136.112600]  ? copy_mnt_ns+0xa00/0xa00
[ 2136.112624]  ? rcu_read_lock_sched_held+0x3e/0x80
[ 2136.112648]  do_syscall_64+0x33/0x40
[ 2136.112667]  entry_SYSCALL_64_after_hwframe+0x61/0xc6
[ 2136.112679] RIP: 0033:0x7f68c9012b19
[ 2136.112711] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 2136.112722] RSP: 002b:00007f68c6588188 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5
[ 2136.112742] RAX: ffffffffffffffda RBX: 00007f68c9125f60 RCX: 00007f68c9012b19
[ 2136.112753] RDX: 00000000200000c0 RSI: 0000000020000040 RDI: 0000000000000000
[ 2136.112763] RBP: 00007f68c65881d0 R08: 0000000020000280 R09: 0000000000000000
[ 2136.112773] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[ 2136.112783] R13: 00007ffe8a1e19df R14: 00007f68c6588300 R15: 0000000000022000
[ 2136.113165] 9pnet: Insufficient options for proto=fd
[ 2136.150926] FAULT_INJECTION: forcing a failure.
[ 2136.150926] name failslab, interval 1, probability 0, space 0, times 0
[ 2136.150959] CPU: 0 PID: 17359 Comm: syz-executor.5 Not tainted 5.10.172 #1
[ 2136.150967] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 2136.150971] Call Trace:
[ 2136.150989]  dump_stack+0x107/0x167
[ 2136.151005]  should_fail.cold+0x5/0xa
[ 2136.151019]  ? create_object.isra.0+0x3a/0xa20
[ 2136.151034]  should_failslab+0x5/0x20
[ 2136.151046]  kmem_cache_alloc+0x5b/0x360
[ 2136.151058]  ? kernel_text_address+0xf2/0x120
[ 2136.151074]  create_object.isra.0+0x3a/0xa20
[ 2136.151086]  ? __kasan_kmalloc.constprop.0+0xc9/0xd0
[ 2136.151105]  kmem_cache_alloc_trace+0x151/0x360
[ 2136.151124]  p9_client_create+0xaf/0x1090
[ 2136.151138]  ? lock_downgrade+0x6d0/0x6d0
[ 2136.151156]  ? p9_client_flush+0x430/0x430
[ 2136.151180]  ? lockdep_init_map_type+0x2c7/0x780
[ 2136.151193]  ? rcu_read_lock_sched_held+0x3e/0x80
[ 2136.151212]  ? __raw_spin_lock_init+0x36/0x110
[ 2136.151231]  v9fs_session_init+0x1dd/0x16a0
[ 2136.151242]  ? irqentry_enter+0x26/0x60
[ 2136.151262]  ? asm_sysvec_apic_timer_interrupt+0x12/0x20
[ 2136.151275]  ? trace_hardirqs_on+0x5b/0x180
[ 2136.151289]  ? v9fs_show_options+0x690/0x690
[ 2136.151318]  ? kasan_unpoison_shadow+0x33/0x50
[ 2136.151385]  ? __kasan_kmalloc.constprop.0+0xc9/0xd0
[ 2136.151406]  v9fs_mount+0x79/0x8f0
[ 2136.151422]  ? v9fs_write_inode+0x60/0x60
[ 2136.151435]  legacy_get_tree+0x105/0x220
[ 2136.151452]  vfs_get_tree+0x8e/0x300
[ 2136.151468]  path_mount+0x13be/0x20b0
[ 2136.151485]  ? strncpy_from_user+0x9e/0x470
[ 2136.151501]  ? finish_automount+0xa40/0xa40
[ 2136.151515]  ? getname_flags.part.0+0x1dd/0x4f0
[ 2136.151527]  ? _copy_from_user+0xfb/0x1b0
[ 2136.151548]  __x64_sys_mount+0x282/0x300
[ 2136.151575]  ? copy_mnt_ns+0xa00/0xa00
[ 2136.151590]  ? rcu_read_lock_sched_held+0x3e/0x80
[ 2136.151607]  do_syscall_64+0x33/0x40
[ 2136.151622]  entry_SYSCALL_64_after_hwframe+0x61/0xc6
[ 2136.151631] RIP: 0033:0x7f38308e8b19
[ 2136.151644] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 2136.151651] RSP: 002b:00007f382de5e188 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5
[ 2136.151666] RAX: ffffffffffffffda RBX: 00007f38309fbf60 RCX: 00007f38308e8b19
[ 2136.151674] RDX: 00000000200000c0 RSI: 0000000020000040 RDI: 0000000000000000
[ 2136.151681] RBP: 00007f382de5e1d0 R08: 0000000020000280 R09: 0000000000000000
[ 2136.151689] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[ 2136.151697] R13: 00007ffca2bf07df R14: 00007f382de5e300 R15: 0000000000022000
[ 2136.298445] FAULT_INJECTION: forcing a failure.
[ 2136.298445] name failslab, interval 1, probability 0, space 0, times 0
[ 2136.298466] CPU: 0 PID: 17365 Comm: syz-executor.1 Not tainted 5.10.172 #1
[ 2136.298474] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 2136.298479] Call Trace:
[ 2136.298499]  dump_stack+0x107/0x167
[ 2136.298517]  should_fail.cold+0x5/0xa
[ 2136.298533]  ? create_object.isra.0+0x3a/0xa20
[ 2136.298549]  should_failslab+0x5/0x20
[ 2136.298562]  kmem_cache_alloc+0x5b/0x360
[ 2136.298577]  ? lock_downgrade+0x6d0/0x6d0
[ 2136.298595]  create_object.isra.0+0x3a/0xa20
[ 2136.298614]  ? __kasan_kmalloc.constprop.0+0xc9/0xd0
[ 2136.298633]  __kmalloc_track_caller+0x177/0x3c0
[ 2136.298646]  ? p9_client_create+0x41d/0x1090
[ 2136.298670]  kstrdup+0x36/0x70
[ 2136.298686]  p9_client_create+0x41d/0x1090
[ 2136.298718]  ? lock_downgrade+0x6d0/0x6d0
[ 2136.298738]  ? p9_client_flush+0x430/0x430
[ 2136.298759]  ? lockdep_init_map_type+0x2c7/0x780
[ 2136.298772]  ? rcu_read_lock_sched_held+0x3e/0x80
[ 2136.298791]  ? __raw_spin_lock_init+0x36/0x110
[ 2136.298812]  v9fs_session_init+0x1dd/0x16a0
[ 2136.298838]  ? kmem_cache_alloc_trace+0x151/0x360
[ 2136.298851]  ? v9fs_show_options+0x690/0x690
[ 2136.298883]  ? kasan_unpoison_shadow+0x33/0x50
[ 2136.298899]  ? __kasan_kmalloc.constprop.0+0xc9/0xd0
[ 2136.298918]  v9fs_mount+0x79/0x8f0
[ 2136.298936]  ? v9fs_write_inode+0x60/0x60
[ 2136.298953]  legacy_get_tree+0x105/0x220
[ 2136.298976]  vfs_get_tree+0x8e/0x300
[ 2136.299004]  path_mount+0x13be/0x20b0
[ 2136.299027]  ? strncpy_from_user+0x9e/0x470
[ 2136.299049]  ? finish_automount+0xa40/0xa40
[ 2136.300378]  ? getname_flags.part.0+0x1dd/0x4f0
[ 2136.300397]  ? _copy_from_user+0xfb/0x1b0
[ 2136.300422]  __x64_sys_mount+0x282/0x300
[ 2136.300438]  ? copy_mnt_ns+0xa00/0xa00
[ 2136.300458]  ? rcu_read_lock_sched_held+0x3e/0x80
[ 2136.300478]  do_syscall_64+0x33/0x40
[ 2136.300503]  entry_SYSCALL_64_after_hwframe+0x61/0xc6
[ 2136.300513] RIP: 0033:0x7f9bca359b19
[ 2136.300527] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 2136.300535] RSP: 002b:00007f9bc78cf188 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5
[ 2136.300551] RAX: ffffffffffffffda RBX: 00007f9bca46cf60 RCX: 00007f9bca359b19
[ 2136.300559] RDX: 00000000200000c0 RSI: 0000000020000040 RDI: 0000000000000000
[ 2136.300568] RBP: 00007f9bc78cf1d0 R08: 0000000020000280 R09: 0000000000000000
[ 2136.300576] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[ 2136.300584] R13: 00007fffb54b7e9f R14: 00007f9bc78cf300 R15: 0000000000022000
[ 2136.320501] 9pnet: Insufficient options for proto=fd
21:16:41 executing program 4:
openat$vcs(0xffffffffffffff9c, &(0x7f0000000040), 0x0, 0x0)
openat$sr(0xffffffffffffff9c, &(0x7f00000035c0), 0x0, 0x0)
openat$sr(0xffffffffffffff9c, &(0x7f00000000c0), 0x224400, 0x0)
openat$rtc(0xffffffffffffff9c, &(0x7f0000000200), 0x0, 0x0)
pipe(&(0x7f00000001c0))
open(&(0x7f00000016c0)='./cgroup.net/cgroup.procs\x00', 0x0, 0x0)
pselect6(0x40, &(0x7f0000000180), &(0x7f00000001c0)={0x3fc, 0x0, 0x0, 0x0, 0x0, 0x8000000}, 0x0, 0x0, 0x0)

21:16:41 executing program 5:
openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x105142, 0x0)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
pipe(&(0x7f00000001c0)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
mount$9p_fd(0x0, &(0x7f0000000040)='./file1\x00', &(0x7f00000000c0), 0x0, &(0x7f0000000280)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}}) (fail_nth: 23)
openat(0xffffffffffffffff, 0x0, 0x0, 0x0)

21:16:41 executing program 7:
r0 = perf_event_open(&(0x7f0000000040)={0x0, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0xfffffffffffffffd, 0x90, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffff}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
io_setup(0x7f, &(0x7f00000002c0)=<r1=>0x0)
io_setup(0xfff, &(0x7f00000000c0)=<r2=>0x0)
r3 = perf_event_open(&(0x7f0000001d80)={0x2, 0x80, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
mmap(&(0x7f0000ffc000/0x2000)=nil, 0x2000, 0x0, 0x13, r3, 0x0)
perf_event_open(&(0x7f0000001d80)={0x2, 0x80, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, r3, 0x2)
pipe(&(0x7f00000001c0)={<r4=>0xffffffffffffffff, <r5=>0xffffffffffffffff})
mount$9p_fd(0x0, &(0x7f0000000040)='./file1\x00', &(0x7f00000000c0), 0x0, &(0x7f0000000280)={'trans=fd,', {'rfdno', 0x3d, r4}, 0x2c, {'wfdno', 0x3d, r5}, 0x2c, {[{@nodevmap}]}})
io_submit(r2, 0x4, &(0x7f00000005c0)=[&(0x7f0000000200)={0x0, 0x0, 0x0, 0x8, 0x8, r0, &(0x7f0000000100)="c6f27fb4747b64199237804087c92b0b172c9e376f792c2ec16f8d4b5ba6412ad3b0fbd10290193103480c297263776f0f4beb3de7e7dfe135ae233fba4c383ed5aa85d6ebb31a78ede7d59a82e303e1fd20f6b2b633c2c02a1e81bb2ecc8ef3acd7e74addfe2a9c964e741cc3ca023fcc80f1c83021ac1069f31142913a45a8beb6d478c09b8ca332d3ba6dec5385e34dc19cf2405548f94ef25773b2496986ce14a8622d82cc7755978f474fc6f2011ddb0352038d3cdbbbbcafd3cb964f2275a624c2c24dae70a103d5e6b793f329761445ab455034e7cffc", 0xda, 0x3}, &(0x7f0000000240)={0x0, 0x0, 0x0, 0xe0ac391abcef7cd3, 0x3, 0xffffffffffffffff, &(0x7f0000000380)="19ce29a08319f607ad4b1cffff87a903636e8c4d17b6bfea2e50dfe79de9fe8090445897f15132321471186ac387507ec0e0605f6a965ca8106f391a4761022e19453c15c341b44bdf81734c76d5655f842a11a923a3674ea7b057d04a987d7e86921e1e46d244100512b66a4d0f0886b81ad172762d75e58801ff8f0fdaa337c70700346dab987899bfaf9718eef79a28dd8babc4b869e0bfe91262b73737b10f7d99165d04fe89ed6499084e0236", 0xaf, 0x7ff, 0x0, 0x2}, &(0x7f0000000280)={0x0, 0x0, 0x0, 0x5, 0x3, r3, &(0x7f0000000440)="3387f123ed5b57bb4c720b9e500b095d939d565086d45af1b3bdc578185373ffc42ed048182bd24d09e0dabba4a207745fa81540cf8cfd85bc3f1699b02ef0a9d76bc37f356b", 0x46, 0x1, 0x0, 0x1, r5}, &(0x7f0000000580)={0x0, 0x0, 0x0, 0x0, 0x3, r0, &(0x7f00000004c0)="5fd8e5c8506103d244451b830961313b4c8d9e1bc1eda73abc38d14b71ecced3711c6dedd6062aeaa58edb54e2e3c3fe5640ae8325259e8fd243ff5ce271835805aa9911805519f2fa00b6ed1d439cf8a0d7074ea1faa3b7e1dca202d2b2e7ba3389c6c7a3480f0b1dea1b0df6daf3070885198ae4152da139f278cce0b12672e33a611c5f5e63e417e89d643c9fdf30bc50e4c83615637f014ba40016bfda392127", 0xa2, 0x101, 0x0, 0x2}])
io_submit(r1, 0x1, &(0x7f0000000340)=[&(0x7f0000000300)={0x0, 0x0, 0x0, 0x5, 0x0, r0, 0x0}])
ioctl$HCIINQUIRY(0xffffffffffffffff, 0x800448f0, &(0x7f0000000000)={0xffffffffffffffff, 0x0, "b384a2", 0x0, 0x2})
openat(0xffffffffffffffff, 0x0, 0x0, 0x10)

21:16:41 executing program 1:
openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x105142, 0x0)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
pipe(&(0x7f00000001c0))
mount$9p_fd(0x0, &(0x7f0000000040)='./file1\x00', &(0x7f00000000c0), 0x0, &(0x7f0000000280)={'trans=fd,', {}, 0x2c, {}, 0x2c, {[{@nodevmap}]}}) (fail_nth: 24)

21:16:41 executing program 2:
syz_mount_image$vfat(&(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x0, 0x2, &(0x7f0000000180)=[{&(0x7f0000000140)="eb3c906d6b66732e66617400020801000470008400f801", 0x17}, {0x0, 0x0, 0x1000a00}], 0x0, &(0x7f0000000240)=ANY=[])
chdir(&(0x7f0000000040)='./file0\x00')
r0 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x105142, 0x0)
ioctl$FS_IOC_RESVSP(r0, 0x40305828, &(0x7f0000000040)={0x0, 0x0, 0x0, 0x4000006, 0xffffff0f})

21:16:41 executing program 3:
openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x105142, 0x0)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x400}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
pipe(&(0x7f00000001c0)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
mount$9p_fd(0x0, &(0x7f0000000040)='./file1\x00', &(0x7f00000000c0), 0x0, &(0x7f0000000280)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {}, 0x2c, {[{@nodevmap}]}}) (fail_nth: 32)
openat(r1, &(0x7f0000000180)='./file1\x00', 0x0, 0x0)

21:16:41 executing program 0:
syz_mount_image$vfat(&(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x0, 0x2, &(0x7f0000000180)=[{&(0x7f0000000140)="eb3c906d6b66732e66617400020801000470008400f801", 0x17}, {0x0, 0x0, 0x1000a00}], 0x0, &(0x7f0000000240)=ANY=[])
chdir(&(0x7f0000000040)='./file0\x00')
mount$cgroup(0x0, 0x0, &(0x7f0000000400), 0x0, 0x0)
r0 = syz_io_uring_setup(0x22, &(0x7f0000000680)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000180)=<r1=>0x0, 0x0)
r2 = io_uring_register$IORING_REGISTER_PERSONALITY(r0, 0x9, 0x0, 0x0)
r3 = socket$nl_netfilter(0x10, 0x3, 0xc)
syz_io_uring_submit(r1, 0x0, &(0x7f0000000400)=@IORING_OP_WRITEV={0x2, 0x0, 0x0, @fd=r3, 0x0, 0x0, 0x0, 0x0, 0x0, {0x0, r2}}, 0x0)
r4 = syz_io_uring_setup(0x22, &(0x7f0000000680)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000180), &(0x7f0000002a40))
r5 = io_uring_register$IORING_REGISTER_PERSONALITY(r4, 0x9, 0x0, 0x0)
syz_io_uring_submit(r1, 0x0, &(0x7f0000000440)=@IORING_OP_FSYNC={0x3, 0x2, 0x0, @fd_index=0x9, 0x0, 0x0, 0x0, 0x0, 0x1, {0x0, r5}}, 0x2)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r6 = openat(0xffffffffffffff9c, &(0x7f00000002c0)='./file1\x00', 0x105142, 0x0)
r7 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0)
mount(&(0x7f0000000200)=ANY=[@ANYBLOB="2f6f651317868af191bdb2"], &(0x7f0000000240)='./file0\x00', &(0x7f0000000280)='nfsd\x00', 0x800000, &(0x7f0000000300)='cgroup\x00')
sendfile(r6, r7, 0x0, 0x100000001)
newfstatat(0xffffffffffffff9c, &(0x7f0000000340)='./file1\x00', &(0x7f0000000380), 0x400)

21:16:41 executing program 6:
r0 = syz_mount_image$vfat(&(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x0, 0x2, &(0x7f0000000180)=[{&(0x7f0000000140)="eb3c906d6b66732e66617400020801000470008400f8", 0x16}, {0x0, 0x0, 0x1000a00}], 0x0, &(0x7f0000000240)=ANY=[])
chdir(&(0x7f0000000040)='./file0\x00')
openat2(r0, &(0x7f0000000100)='./file0\x00', &(0x7f00000001c0)={0x40000, 0x81}, 0x18)
mount$cgroup(0x0, 0x0, &(0x7f0000000400), 0x0, 0x0)
r1 = syz_io_uring_setup(0x22, &(0x7f0000000680)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000180)=<r2=>0x0, &(0x7f0000002a40)=<r3=>0x0)
r4 = io_uring_register$IORING_REGISTER_PERSONALITY(r1, 0x9, 0x0, 0x0)
r5 = socket$nl_netfilter(0x10, 0x3, 0xc)
syz_io_uring_submit(r2, r3, &(0x7f0000000400)=@IORING_OP_WRITEV={0x2, 0x0, 0x0, @fd=r5, 0x0, 0x0, 0x0, 0x0, 0x0, {0x0, r4}}, 0x0)
r6 = syz_io_uring_setup(0x22, &(0x7f0000000680)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000180), &(0x7f0000002a40))
r7 = io_uring_register$IORING_REGISTER_PERSONALITY(r6, 0x9, 0x0, 0x0)
syz_io_uring_submit(r2, 0x0, &(0x7f0000000440)=@IORING_OP_FSYNC={0x3, 0x2, 0x0, @fd_index=0x9, 0x0, 0x0, 0x0, 0x0, 0x1, {0x0, r7}}, 0x2)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r8 = openat(0xffffffffffffff9c, &(0x7f00000002c0)='./file1\x00', 0x105142, 0x0)
r9 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0)
sendfile(r8, r9, 0x0, 0x100000001)
newfstatat(0xffffffffffffff9c, &(0x7f0000000340)='./file1\x00', &(0x7f0000000380), 0x400)

[ 2154.992920] FAULT_INJECTION: forcing a failure.
[ 2154.992920] name failslab, interval 1, probability 0, space 0, times 0
[ 2154.995382] CPU: 0 PID: 17378 Comm: syz-executor.5 Not tainted 5.10.172 #1
[ 2154.996527] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 2154.997974] Call Trace:
[ 2154.998399]  dump_stack+0x107/0x167
[ 2154.998909]  should_fail.cold+0x5/0xa
[ 2154.999560]  ? create_object.isra.0+0x3a/0xa20
[ 2155.000236]  should_failslab+0x5/0x20
[ 2155.000811]  kmem_cache_alloc+0x5b/0x360
[ 2155.002012]  create_object.isra.0+0x3a/0xa20
[ 2155.002027]  ? __kasan_kmalloc.constprop.0+0xc9/0xd0
[ 2155.002048]  __kmalloc_track_caller+0x177/0x3c0
[ 2155.002061]  ? p9_client_create+0x41d/0x1090
[ 2155.002084]  kstrdup+0x36/0x70
[ 2155.002099]  p9_client_create+0x41d/0x1090
[ 2155.002176]  ? p9_client_flush+0x430/0x430
[ 2155.002201]  ? lockdep_init_map_type+0x2c7/0x780
[ 2155.002215]  ? rcu_read_lock_sched_held+0x3e/0x80
[ 2155.002240]  ? __raw_spin_lock_init+0x36/0x110
[ 2155.002267]  v9fs_session_init+0x1dd/0x16a0
[ 2155.002284]  ? irqentry_enter+0x26/0x60
[ 2155.002313]  ? asm_sysvec_apic_timer_interrupt+0x12/0x20
[ 2155.002330]  ? trace_hardirqs_on+0x5b/0x180
[ 2155.002349]  ? v9fs_show_options+0x690/0x690
[ 2155.002386]  ? kasan_unpoison_shadow+0x33/0x50
[ 2155.002402]  ? __kasan_kmalloc.constprop.0+0xc9/0xd0
[ 2155.002422]  v9fs_mount+0x79/0x8f0
[ 2155.002440]  ? v9fs_write_inode+0x60/0x60
[ 2155.002455]  legacy_get_tree+0x105/0x220
[ 2155.002476]  vfs_get_tree+0x8e/0x300
[ 2155.002492]  path_mount+0x13be/0x20b0
[ 2155.002512]  ? strncpy_from_user+0x9e/0x470
[ 2155.002530]  ? finish_automount+0xa40/0xa40
[ 2155.002547]  ? getname_flags.part.0+0x1dd/0x4f0
[ 2155.002561]  ? _copy_from_user+0xfb/0x1b0
[ 2155.002588]  __x64_sys_mount+0x282/0x300
[ 2155.002604]  ? copy_mnt_ns+0xa00/0xa00
[ 2155.002625]  ? rcu_read_lock_sched_held+0x3e/0x80
[ 2155.002644]  do_syscall_64+0x33/0x40
[ 2155.002660]  entry_SYSCALL_64_after_hwframe+0x61/0xc6
[ 2155.002670] RIP: 0033:0x7f38308e8b19
[ 2155.002685] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 2155.002693] RSP: 002b:00007f382de5e188 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5
[ 2155.002710] RAX: ffffffffffffffda RBX: 00007f38309fbf60 RCX: 00007f38308e8b19
[ 2155.002718] RDX: 00000000200000c0 RSI: 0000000020000040 RDI: 0000000000000000
[ 2155.002727] RBP: 00007f382de5e1d0 R08: 0000000020000280 R09: 0000000000000000
[ 2155.002735] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[ 2155.002744] R13: 00007ffca2bf07df R14: 00007f382de5e300 R15: 0000000000022000
[ 2155.037382] FAULT_INJECTION: forcing a failure.
[ 2155.037382] name failslab, interval 1, probability 0, space 0, times 0
[ 2155.037415] CPU: 0 PID: 17387 Comm: syz-executor.1 Not tainted 5.10.172 #1
[ 2155.037422] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 2155.037427] Call Trace:
[ 2155.037447]  dump_stack+0x107/0x167
[ 2155.037466]  should_fail.cold+0x5/0xa
[ 2155.037488]  should_failslab+0x5/0x20
[ 2155.037503]  __kmalloc_track_caller+0x79/0x3c0
[ 2155.037516]  ? p9_client_create+0x51e/0x1090
[ 2155.037539]  kmemdup_nul+0x2d/0xa0
[ 2155.037555]  p9_client_create+0x51e/0x1090
[ 2155.037581]  ? p9_client_flush+0x430/0x430
[ 2155.037605]  ? lockdep_init_map_type+0x2c7/0x780
[ 2155.037624]  ? rcu_read_lock_sched_held+0x3e/0x80
[ 2155.037644]  ? __raw_spin_lock_init+0x36/0x110
[ 2155.037665]  v9fs_session_init+0x1dd/0x16a0
[ 2155.037691]  ? kmem_cache_alloc_trace+0x151/0x360
[ 2155.037705]  ? v9fs_show_options+0x690/0x690
[ 2155.037736]  ? kasan_unpoison_shadow+0x33/0x50
[ 2155.037751]  ? __kasan_kmalloc.constprop.0+0xc9/0xd0
[ 2155.037769]  v9fs_mount+0x79/0x8f0
[ 2155.037786]  ? v9fs_write_inode+0x60/0x60
[ 2155.037800]  legacy_get_tree+0x105/0x220
[ 2155.037820]  vfs_get_tree+0x8e/0x300
[ 2155.037835]  path_mount+0x13be/0x20b0
[ 2155.037854]  ? strncpy_from_user+0x9e/0x470
[ 2155.037870]  ? finish_automount+0xa40/0xa40
[ 2155.037887]  ? getname_flags.part.0+0x1dd/0x4f0
[ 2155.037900]  ? _copy_from_user+0xfb/0x1b0
[ 2155.037925]  __x64_sys_mount+0x282/0x300
[ 2155.037940]  ? copy_mnt_ns+0xa00/0xa00
[ 2155.037960]  ? rcu_read_lock_sched_held+0x3e/0x80
[ 2155.037981]  do_syscall_64+0x33/0x40
[ 2155.037997]  entry_SYSCALL_64_after_hwframe+0x61/0xc6
[ 2155.038008] RIP: 0033:0x7f9bca359b19
[ 2155.038022] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 2155.038030] RSP: 002b:00007f9bc78cf188 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5
[ 2155.038048] RAX: ffffffffffffffda RBX: 00007f9bca46cf60 RCX: 00007f9bca359b19
[ 2155.038057] RDX: 00000000200000c0 RSI: 0000000020000040 RDI: 0000000000000000
[ 2155.038066] RBP: 00007f9bc78cf1d0 R08: 0000000020000280 R09: 0000000000000000
[ 2155.038074] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[ 2155.038083] R13: 00007fffb54b7e9f R14: 00007f9bc78cf300 R15: 0000000000022000
[ 2155.065318] FAULT_INJECTION: forcing a failure.
[ 2155.065318] name failslab, interval 1, probability 0, space 0, times 0
[ 2155.141555] CPU: 0 PID: 17391 Comm: syz-executor.3 Not tainted 5.10.172 #1
[ 2155.142418] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 2155.143454] Call Trace:
[ 2155.143806]  dump_stack+0x107/0x167
[ 2155.144276]  should_fail.cold+0x5/0xa
[ 2155.144761]  should_failslab+0x5/0x20
[ 2155.153365]  __kmalloc_track_caller+0x79/0x3c0
[ 2155.153967]  ? match_number+0xaf/0x1d0
[ 2155.154463]  ? kfree+0xd7/0x390
[ 2155.154896]  kmemdup_nul+0x2d/0xa0
[ 2155.155357]  match_number+0xaf/0x1d0
[ 2155.155827]  ? match_u64+0x190/0x190
[ 2155.156310]  ? memcpy+0x39/0x60
[ 2155.156864]  parse_opts.part.0+0x1f3/0x340
[ 2155.157407]  ? p9_fd_show_options+0x1c0/0x1c0
[ 2155.157975]  ? lockdep_hardirqs_on_prepare+0x277/0x3e0
[ 2155.158673]  ? trace_hardirqs_on+0x5b/0x180
[ 2155.159254]  ? kfree+0xd7/0x390
[ 2155.159660]  p9_fd_create+0x98/0x4a0
[ 2155.160177]  ? p9_conn_create+0x510/0x510
[ 2155.160720]  ? p9_client_create+0x798/0x1090
[ 2155.161316]  ? kfree+0xd7/0x390
[ 2155.161720]  ? do_raw_spin_unlock+0x4f/0x220
[ 2155.162261]  p9_client_create+0x7ff/0x1090
[ 2155.162778]  ? p9_client_flush+0x430/0x430
[ 2155.163317]  ? lockdep_init_map_type+0x2c7/0x780
[ 2155.163944]  ? rcu_read_lock_sched_held+0x3e/0x80
[ 2155.164580]  ? __raw_spin_lock_init+0x36/0x110
[ 2155.165221]  v9fs_session_init+0x1dd/0x16a0
[ 2155.165806]  ? irqentry_enter+0x26/0x60
[ 2155.166335]  ? asm_sysvec_apic_timer_interrupt+0x12/0x20
[ 2155.167047]  ? trace_hardirqs_on+0x5b/0x180
[ 2155.167617]  ? v9fs_show_options+0x690/0x690
[ 2155.168225]  ? kasan_unpoison_shadow+0x33/0x50
[ 2155.168832]  ? __kasan_kmalloc.constprop.0+0xc9/0xd0
[ 2155.169527]  v9fs_mount+0x79/0x8f0
[ 2155.169966]  ? v9fs_write_inode+0x60/0x60
[ 2155.170511]  legacy_get_tree+0x105/0x220
[ 2155.171056]  vfs_get_tree+0x8e/0x300
[ 2155.171549]  path_mount+0x13be/0x20b0
[ 2155.172024]  ? strncpy_from_user+0x9e/0x470
[ 2155.172560]  ? finish_automount+0xa40/0xa40
[ 2155.173566]  ? getname_flags.part.0+0x1dd/0x4f0
[ 2155.174130]  ? _copy_from_user+0xfb/0x1b0
[ 2155.174653]  __x64_sys_mount+0x282/0x300
[ 2155.175169]  ? copy_mnt_ns+0xa00/0xa00
[ 2155.175696]  ? rcu_read_lock_sched_held+0x3e/0x80
[ 2155.176343]  do_syscall_64+0x33/0x40
[ 2155.176836]  entry_SYSCALL_64_after_hwframe+0x61/0xc6
[ 2155.177530] RIP: 0033:0x7f68c9012b19
[ 2155.178009] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 2155.180537] RSP: 002b:00007f68c6588188 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5
[ 2155.181696] RAX: ffffffffffffffda RBX: 00007f68c9125f60 RCX: 00007f68c9012b19
[ 2155.182788] RDX: 00000000200000c0 RSI: 0000000020000040 RDI: 0000000000000000
[ 2155.183723] RBP: 00007f68c65881d0 R08: 0000000020000280 R09: 0000000000000000
[ 2155.184625] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[ 2155.186321] R13: 00007ffe8a1e19df R14: 00007f68c6588300 R15: 0000000000022000
[ 2155.188746] 9pnet: Insufficient options for proto=fd
[ 2155.198150] FAT-fs (loop6): bogus number of FAT sectors
[ 2155.199777] FAT-fs (loop6): Can't find a valid FAT filesystem
21:16:41 executing program 1:
openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x105142, 0x0)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
pipe(&(0x7f00000001c0))
mount$9p_fd(0x0, &(0x7f0000000040)='./file1\x00', &(0x7f00000000c0), 0x0, &(0x7f0000000280)={'trans=fd,', {}, 0x2c, {}, 0x2c, {[{@nodevmap}]}}) (fail_nth: 25)

21:16:41 executing program 7:
perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
io_setup(0x7f, &(0x7f00000002c0))
openat(0xffffffffffffffff, 0x0, 0x0, 0x10)

21:16:41 executing program 2:
syz_mount_image$vfat(&(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x0, 0x2, &(0x7f0000000180)=[{&(0x7f0000000140)="eb3c906d6b66732e66617400020801000470008400f801", 0x17}, {0x0, 0x0, 0x1000a00}], 0x0, &(0x7f0000000240)=ANY=[])
chdir(&(0x7f0000000040)='./file0\x00')
r0 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x105142, 0x0)
ioctl$FS_IOC_RESVSP(r0, 0x40305828, &(0x7f0000000040)={0x0, 0x0, 0x0, 0x4000006, 0xfffffff5})

[ 2155.323307] FAULT_INJECTION: forcing a failure.
[ 2155.323307] name failslab, interval 1, probability 0, space 0, times 0
[ 2155.324975] CPU: 0 PID: 17411 Comm: syz-executor.1 Not tainted 5.10.172 #1
[ 2155.325980] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 2155.327037] Call Trace:
[ 2155.327374]  dump_stack+0x107/0x167
[ 2155.327867]  should_fail.cold+0x5/0xa
[ 2155.328362]  ? create_object.isra.0+0x3a/0xa20
[ 2155.328980]  should_failslab+0x5/0x20
[ 2155.329470]  kmem_cache_alloc+0x5b/0x360
[ 2155.330002]  create_object.isra.0+0x3a/0xa20
[ 2155.330555]  ? __kasan_kmalloc.constprop.0+0xc9/0xd0
[ 2155.331203]  __kmalloc_track_caller+0x177/0x3c0
[ 2155.331807]  ? p9_client_create+0x51e/0x1090
[ 2155.332382]  kmemdup_nul+0x2d/0xa0
[ 2155.332857]  p9_client_create+0x51e/0x1090
[ 2155.333433]  ? p9_client_flush+0x430/0x430
[ 2155.334012]  ? lockdep_init_map_type+0x2c7/0x780
[ 2155.334619]  ? rcu_read_lock_sched_held+0x3e/0x80
[ 2155.335238]  ? __raw_spin_lock_init+0x36/0x110
[ 2155.335835]  v9fs_session_init+0x1dd/0x16a0
[ 2155.336402]  ? kmem_cache_alloc_trace+0x151/0x360
[ 2155.337060]  ? v9fs_show_options+0x690/0x690
[ 2155.337647]  ? kasan_unpoison_shadow+0x33/0x50
[ 2155.338254]  ? __kasan_kmalloc.constprop.0+0xc9/0xd0
[ 2155.338906]  v9fs_mount+0x79/0x8f0
[ 2155.339392]  ? v9fs_write_inode+0x60/0x60
[ 2155.339928]  legacy_get_tree+0x105/0x220
[ 2155.340484]  vfs_get_tree+0x8e/0x300
[ 2155.340977]  path_mount+0x13be/0x20b0
[ 2155.341484]  ? strncpy_from_user+0x9e/0x470
[ 2155.342048]  ? finish_automount+0xa40/0xa40
[ 2155.342620]  ? getname_flags.part.0+0x1dd/0x4f0
[ 2155.343233]  ? _copy_from_user+0xfb/0x1b0
[ 2155.343783]  __x64_sys_mount+0x282/0x300
[ 2155.344330]  ? copy_mnt_ns+0xa00/0xa00
[ 2155.344836]  ? rcu_read_lock_sched_held+0x3e/0x80
[ 2155.345502]  do_syscall_64+0x33/0x40
[ 2155.346017]  entry_SYSCALL_64_after_hwframe+0x61/0xc6
[ 2155.346689] RIP: 0033:0x7f9bca359b19
[ 2155.347180] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 2155.349573] RSP: 002b:00007f9bc78cf188 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5
[ 2155.350567] RAX: ffffffffffffffda RBX: 00007f9bca46cf60 RCX: 00007f9bca359b19
[ 2155.351491] RDX: 00000000200000c0 RSI: 0000000020000040 RDI: 0000000000000000
[ 2155.352407] RBP: 00007f9bc78cf1d0 R08: 0000000020000280 R09: 0000000000000000
[ 2155.353337] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[ 2155.354257] R13: 00007fffb54b7e9f R14: 00007f9bc78cf300 R15: 0000000000022000
21:16:41 executing program 4:
openat$vcs(0xffffffffffffff9c, &(0x7f0000000040), 0x0, 0x0)
openat$sr(0xffffffffffffff9c, &(0x7f00000035c0), 0x0, 0x0)
openat$sr(0xffffffffffffff9c, &(0x7f00000000c0), 0x224400, 0x0)
openat$rtc(0xffffffffffffff9c, &(0x7f0000000200), 0x0, 0x0)
pipe(&(0x7f00000001c0))
open(&(0x7f00000016c0)='./cgroup.net/cgroup.procs\x00', 0x0, 0x0)
pselect6(0x40, &(0x7f0000000180), &(0x7f00000001c0)={0x3fc, 0x0, 0x0, 0x0, 0x0, 0xa000000}, 0x0, 0x0, 0x0)

[ 2155.395594] 9pnet: Insufficient options for proto=fd
21:16:59 executing program 2:
syz_mount_image$vfat(&(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x0, 0x2, &(0x7f0000000180)=[{&(0x7f0000000140)="eb3c906d6b66732e66617400020801000470008400f801", 0x17}, {0x0, 0x0, 0x1000a00}], 0x0, &(0x7f0000000240)=ANY=[])
chdir(&(0x7f0000000040)='./file0\x00')
r0 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x105142, 0x0)
ioctl$FS_IOC_RESVSP(r0, 0x40305828, &(0x7f0000000040)={0x0, 0x0, 0x0, 0x4000006})

21:16:59 executing program 7:
ioctl$sock_ipv6_tunnel_SIOCADDTUNNEL(0xffffffffffffffff, 0x89f1, &(0x7f00000005c0)={'ip6gre0\x00', &(0x7f0000000540)={'ip6tnl0\x00', 0x0, 0x29, 0x40, 0x9, 0xffff, 0x2, @initdev={0xfe, 0x88, '\x00', 0x0, 0x0}, @local, 0x20, 0x40, 0x4, 0x7fffffff}})
r0 = perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x80874, 0x4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
ioctl$FS_IOC_GETVERSION(r0, 0x80087601, &(0x7f00000001c0))
sendmsg(0xffffffffffffffff, &(0x7f0000000680)={&(0x7f0000000200)=@rc={0x1f, @none, 0x5}, 0x80, &(0x7f0000000280)=[{&(0x7f0000000380)="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", 0xfd}, {&(0x7f0000000480)="f1c0326bf966efe9f47a0673f9361daf1872b4292c4fe3728390a12d82fcb9711567c10947d235deba233d17beb839b41fd6f83ef6e30cde61cedeb98dea75fa3edca3c4585d23e79e37230cc6e26747c0801bc0b1e3fcf5c0da18aa690be16d018ffd87bfdd632431da8bc37feca3d7875af96788af887d4d773cc91ab5faf04090c944544e790075908ab73e772af535feb834e05a96e0256f6e448f3f654533ff7d3d73b92fb3026d8be2aec619f21cf242", 0xb3}], 0x2, &(0x7f00000006c0)=ANY=[@ANYBLOB="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"], 0x130}, 0x200480c5)
io_setup(0x7f, &(0x7f00000002c0)=<r1=>0x0)
io_setup(0x7, &(0x7f0000000000))
io_setup(0x597, &(0x7f00000000c0)=<r2=>0x0)
clock_gettime(0x0, &(0x7f0000000140)={<r3=>0x0, <r4=>0x0})
io_getevents(r2, 0x4, 0x1, &(0x7f0000000100)=[{}], &(0x7f0000000180)={r3, r4+60000000})
io_submit(r1, 0x1, &(0x7f0000000340)=[&(0x7f0000000300)={0x0, 0x0, 0x0, 0x5, 0x0, r0, 0x0}])
openat(0xffffffffffffffff, 0x0, 0x0, 0x10)
r5 = signalfd(r0, &(0x7f0000000600)={[0x8]}, 0x8)
r6 = syz_mount_image$vfat(&(0x7f0000000640), &(0x7f0000000800)='.\x00', 0xffffffffffffff75, 0x4, &(0x7f0000000b00)=[{&(0x7f0000000840)="9df9974bb598d102ae6596ea2ec2291e11c01c2edd6d29c831bdfec7974909fdc065531bb2dcf1cb132d3609fbe82f8643aa16ca75f646d747f54983d4d569b67c20bbb919adf142f89c374f8968e6922ef0317deae85f79e4cb2f61c2b617b4001c1c030d584e6402905e8f6b93c40bc58ad3aadca5cd76195927cca0603aef70c43d10430a4e8b0423f4b87ba224dba5155896e77f794503592ff45c855e0aa17511c7c78928476b663a5d51fa66d6a45c30a3cdfb645c8bec3c13ba2a9344461c7095f8507cb2485e73714eb3266c45f173f00c71cdb9201ed9f5b2cceb928a", 0xe1, 0x5}, {&(0x7f0000000940)="3bcb62f7a163681089f3230819ad0df4c04978107a2a2bc06dfaed7f65d229c56bbd2a9786bc6b700bbe", 0x2a, 0x4}, {&(0x7f0000000980)="10cc515ffbac82717d9f5b66ef2f11460d72032bcc82b4d54577e933094895a27cd365ecf965c5e5187ab53e1e1675ce4382190ed2766c8deebda9210f7ae8d854cd71b9cb16837c8242da", 0x4b, 0x3ff}, {&(0x7f0000000a00)="10edffbaa49230da24708b5a7bc2016aa35e6dacff7512b33cc2ce8a9e75c955fd467a85ba6ea573469da68e542f1f2c54a1610ab5745e479a4a525872d97ec07cb63e0a353a9197eddd8aa42bda715b46fa822aa95cda5de075d032995dabb346484f7dd275daed79a4f559a25761f415180565390c10c80b121fc97f8c7eaf8ea6e5e541e9ca996dc6b5ecd1133ad06d2d99e179d0504986816af730718477a972532e73ce6375b5e8c500646593a1bc202a16b9700ca18a3bd43ca9daf5141c9acbb97f0cbab35cb92bade3c01e4686e5c93d0f996739d84b2a33b8c21c572854", 0xe2, 0x9}], 0x4000, &(0x7f0000000b80)={[{@nonumtail}, {@shortname_winnt}], [{@smackfsdef}, {@obj_role={'obj_role', 0x3d, 'ip6tnl0\x00'}}, {@subj_type={'subj_type', 0x3d, '\x00'}}, {@fsmagic={'fsmagic', 0x3d, 0x2}}, {@smackfshat}, {@fsmagic={'fsmagic', 0x3d, 0x7}}, {@dont_appraise}]})
ioctl$F2FS_IOC_MOVE_RANGE(r5, 0xc020f509, &(0x7f0000000c40)={r6, 0x2, 0x4, 0x3})

21:16:59 executing program 6:
r0 = syz_mount_image$vfat(&(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x0, 0x2, &(0x7f0000000180)=[{&(0x7f0000000140)="eb3c906d6b66732e66617400020801000470008400f801", 0x17}, {0x0, 0x0, 0x1000a00}], 0x0, 0x0)
chdir(&(0x7f0000000040)='./file0\x00')
openat2(r0, &(0x7f0000000100)='./file0\x00', &(0x7f00000001c0)={0x40000, 0x81}, 0x18)
mount$cgroup(0x0, 0x0, &(0x7f0000000400), 0x0, 0x0)
r1 = syz_io_uring_setup(0x22, &(0x7f0000000680)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000180)=<r2=>0x0, &(0x7f0000002a40)=<r3=>0x0)
r4 = io_uring_register$IORING_REGISTER_PERSONALITY(r1, 0x9, 0x0, 0x0)
r5 = socket$nl_netfilter(0x10, 0x3, 0xc)
syz_io_uring_submit(r2, r3, &(0x7f0000000400)=@IORING_OP_WRITEV={0x2, 0x0, 0x0, @fd=r5, 0x0, 0x0, 0x0, 0x0, 0x0, {0x0, r4}}, 0x0)
r6 = syz_io_uring_setup(0x22, &(0x7f0000000680)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000180), &(0x7f0000002a40))
r7 = io_uring_register$IORING_REGISTER_PERSONALITY(r6, 0x9, 0x0, 0x0)
syz_io_uring_submit(r2, 0x0, &(0x7f0000000440)=@IORING_OP_FSYNC={0x3, 0x2, 0x0, @fd_index=0x9, 0x0, 0x0, 0x0, 0x0, 0x1, {0x0, r7}}, 0x2)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r8 = openat(0xffffffffffffff9c, &(0x7f00000002c0)='./file1\x00', 0x105142, 0x0)
r9 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0)
sendfile(r8, r9, 0x0, 0x100000001)
newfstatat(0xffffffffffffff9c, &(0x7f0000000340)='./file1\x00', &(0x7f0000000380), 0x400)

21:16:59 executing program 0:
syz_mount_image$vfat(&(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x0, 0x2, &(0x7f0000000180)=[{&(0x7f0000000140)="eb3c906d6b66732e66617400020801000470008400f801", 0x17}, {0x0, 0x0, 0x1000a00}], 0x0, &(0x7f0000000240)=ANY=[])
chdir(&(0x7f0000000040)='./file0\x00')
mount$cgroup(0x0, 0x0, &(0x7f0000000400), 0x0, 0x0)
r0 = syz_io_uring_setup(0x22, &(0x7f0000000680)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000180)=<r1=>0x0, 0x0)
r2 = io_uring_register$IORING_REGISTER_PERSONALITY(r0, 0x9, 0x0, 0x0)
r3 = socket$nl_netfilter(0x10, 0x3, 0xc)
syz_io_uring_submit(r1, 0x0, &(0x7f0000000400)=@IORING_OP_WRITEV={0x2, 0x0, 0x0, @fd=r3, 0x0, 0x0, 0x0, 0x0, 0x0, {0x0, r2}}, 0x0)
r4 = syz_io_uring_setup(0x22, &(0x7f0000000680)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000180), &(0x7f0000002a40))
r5 = io_uring_register$IORING_REGISTER_PERSONALITY(r4, 0x9, 0x0, 0x0)
syz_io_uring_submit(r1, 0x0, &(0x7f0000000440)=@IORING_OP_FSYNC={0x3, 0x2, 0x0, @fd_index=0x9, 0x0, 0x0, 0x0, 0x0, 0x1, {0x0, r5}}, 0x2)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r6 = openat(0xffffffffffffff9c, &(0x7f00000002c0)='./file1\x00', 0x105142, 0x0)
r7 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0)
mount(&(0x7f0000000200)=ANY=[@ANYBLOB="2f6f651317868af191bdb2"], &(0x7f0000000240)='./file0\x00', &(0x7f0000000280)='nfsd\x00', 0x800000, &(0x7f0000000300)='cgroup\x00')
sendfile(r6, r7, 0x0, 0x100000001)
newfstatat(0xffffffffffffff9c, &(0x7f0000000340)='./file1\x00', &(0x7f0000000380), 0x400)

21:16:59 executing program 5:
openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x105142, 0x0)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
pipe(&(0x7f00000001c0)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
mount$9p_fd(0x0, &(0x7f0000000040)='./file1\x00', &(0x7f00000000c0), 0x0, &(0x7f0000000280)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}}) (fail_nth: 24)
openat(0xffffffffffffffff, 0x0, 0x0, 0x0)

21:16:59 executing program 1:
openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x105142, 0x0)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
pipe(&(0x7f00000001c0))
mount$9p_fd(0x0, &(0x7f0000000040)='./file1\x00', &(0x7f00000000c0), 0x0, &(0x7f0000000280)={'trans=fd,', {}, 0x2c, {}, 0x2c, {[{@nodevmap}]}}) (fail_nth: 26)

21:16:59 executing program 4:
openat$vcs(0xffffffffffffff9c, &(0x7f0000000040), 0x0, 0x0)
openat$sr(0xffffffffffffff9c, &(0x7f00000035c0), 0x0, 0x0)
openat$sr(0xffffffffffffff9c, &(0x7f00000000c0), 0x224400, 0x0)
openat$rtc(0xffffffffffffff9c, &(0x7f0000000200), 0x0, 0x0)
pipe(&(0x7f00000001c0))
open(&(0x7f00000016c0)='./cgroup.net/cgroup.procs\x00', 0x0, 0x0)
pselect6(0x40, &(0x7f0000000180), &(0x7f00000001c0)={0x3fc, 0x0, 0x0, 0x0, 0x0, 0x10000000}, 0x0, 0x0, 0x0)

21:16:59 executing program 3:
openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x105142, 0x0)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x400}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
pipe(&(0x7f00000001c0)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
mount$9p_fd(0x0, &(0x7f0000000040)='./file1\x00', &(0x7f00000000c0), 0x0, &(0x7f0000000280)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {}, 0x2c, {[{@nodevmap}]}}) (fail_nth: 33)
openat(r1, &(0x7f0000000180)='./file1\x00', 0x0, 0x0)

[ 2173.290508] FAULT_INJECTION: forcing a failure.
[ 2173.290508] name failslab, interval 1, probability 0, space 0, times 0
[ 2173.292460] CPU: 0 PID: 17429 Comm: syz-executor.1 Not tainted 5.10.172 #1
[ 2173.292469] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 2173.292474] Call Trace:
[ 2173.292495]  dump_stack+0x107/0x167
[ 2173.292515]  should_fail.cold+0x5/0xa
[ 2173.292535]  should_failslab+0x5/0x20
[ 2173.292549]  __kmalloc_track_caller+0x79/0x3c0
[ 2173.292563]  ? parse_opts.part.0+0x8e/0x340
[ 2173.292584]  kstrdup+0x36/0x70
[ 2173.292598]  parse_opts.part.0+0x8e/0x340
[ 2173.292615]  ? p9_fd_show_options+0x1c0/0x1c0
[ 2173.292636]  ? lockdep_hardirqs_on_prepare+0x277/0x3e0
[ 2173.292648]  ? quarantine_put+0x8b/0x1a0
[ 2173.292663]  ? trace_hardirqs_on+0x5b/0x180
[ 2173.292679]  ? kfree+0xd7/0x390
[ 2173.292700]  p9_fd_create+0x98/0x4a0
[ 2173.292713]  ? p9_conn_create+0x510/0x510
[ 2173.292725]  ? p9_client_create+0x798/0x1090
[ 2173.292738]  ? kfree+0xd7/0x390
[ 2173.292752]  ? do_raw_spin_unlock+0x4f/0x220
[ 2173.292772]  p9_client_create+0x7ff/0x1090
[ 2173.292794]  ? p9_client_flush+0x430/0x430
[ 2173.292814]  ? lockdep_init_map_type+0x2c7/0x780
[ 2173.292827]  ? rcu_read_lock_sched_held+0x3e/0x80
[ 2173.292846]  ? __raw_spin_lock_init+0x36/0x110
[ 2173.292866]  v9fs_session_init+0x1dd/0x16a0
[ 2173.292892]  ? kmem_cache_alloc_trace+0x151/0x360
[ 2173.292906]  ? v9fs_show_options+0x690/0x690
[ 2173.292938]  ? kasan_unpoison_shadow+0x33/0x50
[ 2173.292953]  ? __kasan_kmalloc.constprop.0+0xc9/0xd0
[ 2173.292973]  v9fs_mount+0x79/0x8f0
[ 2173.292990]  ? v9fs_write_inode+0x60/0x60
[ 2173.293005]  legacy_get_tree+0x105/0x220
[ 2173.293024]  vfs_get_tree+0x8e/0x300
[ 2173.293041]  path_mount+0x13be/0x20b0
[ 2173.293060]  ? strncpy_from_user+0x9e/0x470
[ 2173.293078]  ? finish_automount+0xa40/0xa40
[ 2173.293094]  ? getname_flags.part.0+0x1dd/0x4f0
[ 2173.293107]  ? _copy_from_user+0xfb/0x1b0
[ 2173.293132]  __x64_sys_mount+0x282/0x300
[ 2173.293149]  ? copy_mnt_ns+0xa00/0xa00
[ 2173.293169]  ? rcu_read_lock_sched_held+0x3e/0x80
[ 2173.293207]  do_syscall_64+0x33/0x40
[ 2173.293223]  entry_SYSCALL_64_after_hwframe+0x61/0xc6
[ 2173.293233] RIP: 0033:0x7f9bca359b19
[ 2173.293248] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 2173.293266] RSP: 002b:00007f9bc78cf188 EFLAGS: 00000246
[ 2173.300021] 9pnet: Insufficient options for proto=fd
[ 2173.301854]  ORIG_RAX: 00000000000000a5
[ 2173.301869] RAX: ffffffffffffffda RBX: 00007f9bca46cf60 RCX: 00007f9bca359b19
[ 2173.301878] RDX: 00000000200000c0 RSI: 0000000020000040 RDI: 0000000000000000
[ 2173.301886] RBP: 00007f9bc78cf1d0 R08: 0000000020000280 R09: 0000000000000000
[ 2173.301896] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[ 2173.301904] R13: 00007fffb54b7e9f R14: 00007f9bc78cf300 R15: 0000000000022000
[ 2173.302119] 9pnet: Insufficient options for proto=fd
[ 2173.303183] FAULT_INJECTION: forcing a failure.
[ 2173.303183] name fail_usercopy, interval 1, probability 0, space 0, times 0
[ 2173.303317] CPU: 1 PID: 17440 Comm: syz-executor.3 Not tainted 5.10.172 #1
[ 2173.343662] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 2173.344762] Call Trace:
[ 2173.345238]  dump_stack+0x107/0x167
[ 2173.346338]  should_fail.cold+0x5/0xa
[ 2173.353690]  _copy_from_user+0x2e/0x1b0
[ 2173.354220]  kstrtouint_from_user+0xbd/0x220
[ 2173.354797]  ? kstrtou8_from_user+0x210/0x210
[ 2173.355389]  ? lock_acquire+0x197/0x490
[ 2173.355903]  ? ksys_write+0x12d/0x260
[ 2173.356411]  proc_fail_nth_write+0x78/0x220
[ 2173.356976]  ? proc_task_getattr+0x1f0/0x1f0
[ 2173.357610]  ? proc_task_getattr+0x1f0/0x1f0
[ 2173.358187]  vfs_write+0x29a/0xa30
[ 2173.358656]  ksys_write+0x12d/0x260
[ 2173.359148]  ? __ia32_sys_read+0xb0/0xb0
[ 2173.359669]  ? rcu_read_lock_sched_held+0x3e/0x80
[ 2173.360302]  do_syscall_64+0x33/0x40
[ 2173.360797]  entry_SYSCALL_64_after_hwframe+0x61/0xc6
[ 2173.365536] RIP: 0033:0x7f68c8fc55ff
[ 2173.366030] Code: 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 99 fd ff ff 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 b8 01 00 00 00 0f 05 <48> 3d 00 f0 ff ff 77 31 44 89 c7 48 89 44 24 08 e8 cc fd ff ff 48
[ 2173.366623] FAULT_INJECTION: forcing a failure.
[ 2173.366623] name failslab, interval 1, probability 0, space 0, times 0
[ 2173.368379] RSP: 002b:00007f68c6588170 EFLAGS: 00000293 ORIG_RAX: 0000000000000001
[ 2173.368397] RAX: ffffffffffffffda RBX: 0000000000000000 RCX: 00007f68c8fc55ff
[ 2173.368406] RDX: 0000000000000001 RSI: 00007f68c65881e0 RDI: 0000000000000007
[ 2173.368424] RBP: 00007f68c65881d0 R08: 0000000000000000 R09: 0000000000000000
[ 2173.381698] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000002
[ 2173.382624] R13: 00007ffe8a1e19df R14: 00007f68c6588300 R15: 0000000000022000
[ 2173.383575] CPU: 0 PID: 17445 Comm: syz-executor.5 Not tainted 5.10.172 #1
[ 2173.384526] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 2173.385638] Call Trace:
[ 2173.386005]  dump_stack+0x107/0x167
[ 2173.386494]  should_fail.cold+0x5/0xa
[ 2173.387014]  should_failslab+0x5/0x20
[ 2173.387531]  __kmalloc_track_caller+0x79/0x3c0
[ 2173.388155]  ? p9_client_create+0x51e/0x1090
[ 2173.388751]  kmemdup_nul+0x2d/0xa0
[ 2173.389272]  p9_client_create+0x51e/0x1090
[ 2173.389819]  ? p9_client_flush+0x430/0x430
[ 2173.390383]  ? lockdep_init_map_type+0x2c7/0x780
[ 2173.390976]  ? rcu_read_lock_sched_held+0x3e/0x80
[ 2173.391621]  ? __raw_spin_lock_init+0x36/0x110
[ 2173.392220]  v9fs_session_init+0x1dd/0x16a0
[ 2173.392791]  ? kmem_cache_alloc_trace+0x151/0x360
[ 2173.393418]  ? v9fs_show_options+0x690/0x690
[ 2173.393988]  ? kasan_unpoison_shadow+0x33/0x50
[ 2173.394565]  ? __kasan_kmalloc.constprop.0+0xc9/0xd0
[ 2173.395200]  v9fs_mount+0x79/0x8f0
[ 2173.395646]  ? v9fs_write_inode+0x60/0x60
[ 2173.396162]  legacy_get_tree+0x105/0x220
[ 2173.396683]  vfs_get_tree+0x8e/0x300
[ 2173.397157]  path_mount+0x13be/0x20b0
[ 2173.397663]  ? strncpy_from_user+0x9e/0x470
[ 2173.398215]  ? finish_automount+0xa40/0xa40
[ 2173.398762]  ? getname_flags.part.0+0x1dd/0x4f0
[ 2173.399346]  ? _copy_from_user+0xfb/0x1b0
[ 2173.399882]  __x64_sys_mount+0x282/0x300
[ 2173.400479]  ? copy_mnt_ns+0xa00/0xa00
[ 2173.400994]  ? rcu_read_lock_sched_held+0x3e/0x80
[ 2173.401640]  do_syscall_64+0x33/0x40
[ 2173.402143]  entry_SYSCALL_64_after_hwframe+0x61/0xc6
[ 2173.402804] RIP: 0033:0x7f38308e8b19
[ 2173.403308] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 2173.405667] RSP: 002b:00007f382de3d188 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5
[ 2173.406671] RAX: ffffffffffffffda RBX: 00007f38309fc020 RCX: 00007f38308e8b19
[ 2173.407612] RDX: 00000000200000c0 RSI: 0000000020000040 RDI: 0000000000000000
[ 2173.408527] RBP: 00007f382de3d1d0 R08: 0000000020000280 R09: 0000000000000000
[ 2173.409802] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[ 2173.411594] R13: 00007ffca2bf07df R14: 00007f382de3d300 R15: 0000000000022000
21:16:59 executing program 3:
openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x105142, 0x0)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x400}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
pipe(&(0x7f00000001c0)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
mount$9p_fd(0x0, &(0x7f0000000040)='./file1\x00', &(0x7f00000000c0), 0x0, &(0x7f0000000280)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {}, 0x2c, {[{@nodevmap}]}})
openat(r1, &(0x7f0000000180)='./file1\x00', 0x0, 0x0)

[ 2173.462366] FAT-fs (loop7): Unrecognized mount option "nnonumtail=1" or missing value
21:16:59 executing program 1:
openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x105142, 0x0)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
pipe(&(0x7f00000001c0))
mount$9p_fd(0x0, &(0x7f0000000040)='./file1\x00', &(0x7f00000000c0), 0x0, &(0x7f0000000280)={'trans=fd,', {}, 0x2c, {}, 0x2c, {[{@nodevmap}]}}) (fail_nth: 27)

21:16:59 executing program 5:
openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x105142, 0x0)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
pipe(&(0x7f00000001c0)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
mount$9p_fd(0x0, &(0x7f0000000040)='./file1\x00', &(0x7f00000000c0), 0x0, &(0x7f0000000280)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}}) (fail_nth: 25)
openat(0xffffffffffffffff, 0x0, 0x0, 0x0)

[ 2173.553752] FAT-fs (loop7): Unrecognized mount option "nnonumtail=1" or missing value
[ 2173.553792] FAULT_INJECTION: forcing a failure.
[ 2173.553792] name failslab, interval 1, probability 0, space 0, times 0
[ 2173.559003] CPU: 1 PID: 17464 Comm: syz-executor.5 Not tainted 5.10.172 #1
[ 2173.560032] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 2173.562402] 9pnet: Insufficient options for proto=fd
[ 2173.569292] Call Trace:
[ 2173.569322]  dump_stack+0x107/0x167
[ 2173.569341]  should_fail.cold+0x5/0xa
[ 2173.569357]  ? create_object.isra.0+0x3a/0xa20
[ 2173.569374]  should_failslab+0x5/0x20
[ 2173.569388]  kmem_cache_alloc+0x5b/0x360
[ 2173.569408]  create_object.isra.0+0x3a/0xa20
[ 2173.569422]  ? __kasan_kmalloc.constprop.0+0xc9/0xd0
[ 2173.569442]  __kmalloc_track_caller+0x177/0x3c0
[ 2173.569456]  ? p9_client_create+0x51e/0x1090
[ 2173.569476]  kmemdup_nul+0x2d/0xa0
[ 2173.569491]  p9_client_create+0x51e/0x1090
[ 2173.569515]  ? p9_client_flush+0x430/0x430
[ 2173.569537]  ? lockdep_init_map_type+0x2c7/0x780
[ 2173.569550]  ? rcu_read_lock_sched_held+0x3e/0x80
[ 2173.569570]  ? __raw_spin_lock_init+0x36/0x110
[ 2173.569590]  v9fs_session_init+0x1dd/0x16a0
[ 2173.569617]  ? kmem_cache_alloc_trace+0x151/0x360
[ 2173.569631]  ? v9fs_show_options+0x690/0x690
[ 2173.569664]  ? kasan_unpoison_shadow+0x33/0x50
[ 2173.569680]  ? __kasan_kmalloc.constprop.0+0xc9/0xd0
[ 2173.569699]  v9fs_mount+0x79/0x8f0
[ 2173.569717]  ? v9fs_write_inode+0x60/0x60
[ 2173.569732]  legacy_get_tree+0x105/0x220
[ 2173.569756]  vfs_get_tree+0x8e/0x300
[ 2173.594252] FAULT_INJECTION: forcing a failure.
[ 2173.594252] name failslab, interval 1, probability 0, space 0, times 0
[ 2173.598395]  path_mount+0x13be/0x20b0
[ 2173.598417]  ? strncpy_from_user+0x9e/0x470
[ 2173.598433]  ? finish_automount+0xa40/0xa40
[ 2173.598449]  ? getname_flags.part.0+0x1dd/0x4f0
[ 2173.598462]  ? _copy_from_user+0xfb/0x1b0
[ 2173.598484]  __x64_sys_mount+0x282/0x300
[ 2173.598499]  ? copy_mnt_ns+0xa00/0xa00
[ 2173.598517]  ? rcu_read_lock_sched_held+0x3e/0x80
[ 2173.598536]  do_syscall_64+0x33/0x40
[ 2173.598552]  entry_SYSCALL_64_after_hwframe+0x61/0xc6
[ 2173.598562] RIP: 0033:0x7f38308e8b19
[ 2173.598586] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 2173.628431] RSP: 002b:00007f382de5e188 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5
[ 2173.629893] RAX: ffffffffffffffda RBX: 00007f38309fbf60 RCX: 00007f38308e8b19
[ 2173.630830] RDX: 00000000200000c0 RSI: 0000000020000040 RDI: 0000000000000000
[ 2173.631761] RBP: 00007f382de5e1d0 R08: 0000000020000280 R09: 0000000000000000
[ 2173.632703] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[ 2173.637773] R13: 00007ffca2bf07df R14: 00007f382de5e300 R15: 0000000000022000
[ 2173.638775] CPU: 0 PID: 17460 Comm: syz-executor.1 Not tainted 5.10.172 #1
[ 2173.639704] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 2173.640763] Call Trace:
[ 2173.641127]  dump_stack+0x107/0x167
[ 2173.641639]  should_fail.cold+0x5/0xa
[ 2173.642141]  ? create_object.isra.0+0x3a/0xa20
[ 2173.642744]  should_failslab+0x5/0x20
[ 2173.643244]  kmem_cache_alloc+0x5b/0x360
[ 2173.643833]  ? trace_hardirqs_on+0x5b/0x180
[ 2173.644410]  create_object.isra.0+0x3a/0xa20
[ 2173.645000]  ? __kasan_kmalloc.constprop.0+0xc9/0xd0
[ 2173.645723]  __kmalloc_track_caller+0x177/0x3c0
[ 2173.646346]  ? parse_opts.part.0+0x8e/0x340
[ 2173.646925]  kstrdup+0x36/0x70
[ 2173.647348]  parse_opts.part.0+0x8e/0x340
[ 2173.647907]  ? p9_fd_show_options+0x1c0/0x1c0
[ 2173.648505]  ? lockdep_hardirqs_on_prepare+0x277/0x3e0
[ 2173.649214]  ? quarantine_put+0x8b/0x1a0
[ 2173.649757]  ? trace_hardirqs_on+0x5b/0x180
[ 2173.650330]  ? kfree+0xd7/0x390
[ 2173.650772]  p9_fd_create+0x98/0x4a0
[ 2173.651264]  ? p9_conn_create+0x510/0x510
[ 2173.651825]  ? p9_client_create+0x798/0x1090
[ 2173.652396]  ? kfree+0xd7/0x390
[ 2173.652832]  p9_client_create+0x7ff/0x1090
[ 2173.653445]  ? p9_client_flush+0x430/0x430
[ 2173.654026]  ? lockdep_init_map_type+0x2c7/0x780
[ 2173.654657]  ? rcu_read_lock_sched_held+0x3e/0x80
[ 2173.655291]  ? __raw_spin_lock_init+0x36/0x110
[ 2173.655895]  v9fs_session_init+0x1dd/0x16a0
[ 2173.656468]  ? kmem_cache_alloc_trace+0x151/0x360
[ 2173.657097]  ? v9fs_show_options+0x690/0x690
[ 2173.657715]  ? kasan_unpoison_shadow+0x33/0x50
[ 2173.658304]  ? __kasan_kmalloc.constprop.0+0xc9/0xd0
[ 2173.658963]  v9fs_mount+0x79/0x8f0
[ 2173.659441]  ? v9fs_write_inode+0x60/0x60
[ 2173.659983]  legacy_get_tree+0x105/0x220
[ 2173.660526]  vfs_get_tree+0x8e/0x300
[ 2173.661014]  path_mount+0x13be/0x20b0
[ 2173.661550]  ? strncpy_from_user+0x9e/0x470
[ 2173.662119]  ? finish_automount+0xa40/0xa40
[ 2173.662692]  ? getname_flags.part.0+0x1dd/0x4f0
[ 2173.663288]  ? _copy_from_user+0xfb/0x1b0
[ 2173.663840]  __x64_sys_mount+0x282/0x300
[ 2173.664381]  ? copy_mnt_ns+0xa00/0xa00
[ 2173.665023]  ? rcu_read_lock_sched_held+0x3e/0x80
[ 2173.665861]  do_syscall_64+0x33/0x40
[ 2173.666343]  entry_SYSCALL_64_after_hwframe+0x61/0xc6
[ 2173.667002] RIP: 0033:0x7f9bca359b19
[ 2173.667489] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 2173.669837] RSP: 002b:00007f9bc78cf188 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5
[ 2173.670823] RAX: ffffffffffffffda RBX: 00007f9bca46cf60 RCX: 00007f9bca359b19
[ 2173.671744] RDX: 00000000200000c0 RSI: 0000000020000040 RDI: 0000000000000000
[ 2173.672702] RBP: 00007f9bc78cf1d0 R08: 0000000020000280 R09: 0000000000000000
[ 2173.673668] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[ 2173.674642] R13: 00007fffb54b7e9f R14: 00007f9bc78cf300 R15: 0000000000022000
21:17:00 executing program 2:
syz_mount_image$vfat(&(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x0, 0x2, &(0x7f0000000180)=[{&(0x7f0000000140)="eb3c906d6b66732e66617400020801000470008400f801", 0x17}, {0x0, 0x0, 0x1000a00}], 0x0, &(0x7f0000000240)=ANY=[])
chdir(&(0x7f0000000040)='./file0\x00')
r0 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x105142, 0x0)
ioctl$FS_IOC_RESVSP(r0, 0x40305828, &(0x7f0000000040)={0x0, 0x0, 0x0, 0x4000006, 0x0, 0x2})

21:17:00 executing program 4:
openat$vcs(0xffffffffffffff9c, &(0x7f0000000040), 0x0, 0x0)
openat$sr(0xffffffffffffff9c, &(0x7f00000035c0), 0x0, 0x0)
openat$sr(0xffffffffffffff9c, &(0x7f00000000c0), 0x224400, 0x0)
openat$rtc(0xffffffffffffff9c, &(0x7f0000000200), 0x0, 0x0)
pipe(&(0x7f00000001c0))
open(&(0x7f00000016c0)='./cgroup.net/cgroup.procs\x00', 0x0, 0x0)
pselect6(0x40, &(0x7f0000000180), &(0x7f00000001c0)={0x3fc, 0x0, 0x0, 0x0, 0x0, 0x100000000000000}, 0x0, 0x0, 0x0)

[ 2173.742842] 9pnet: Insufficient options for proto=fd
21:17:00 executing program 7:
r0 = perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0xff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f0000000180), 0x2}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
io_setup(0x7f, &(0x7f00000002c0)=<r1=>0x0)
io_submit(r1, 0x1, &(0x7f0000000340)=[&(0x7f0000000300)={0x0, 0x0, 0x0, 0x5, 0x0, r0, 0x0}])
r2 = openat(0xffffffffffffffff, 0x0, 0x0, 0x10)
pipe(&(0x7f00000001c0)={<r3=>0xffffffffffffffff, <r4=>0xffffffffffffffff})
mount$9p_fd(0x0, &(0x7f0000000040)='./file1\x00', &(0x7f00000000c0), 0x0, &(0x7f0000000280)={'trans=fd,', {'rfdno', 0x3d, r3}, 0x2c, {'wfdno', 0x3d, r4}, 0x2c, {[{@nodevmap}]}})
io_cancel(0x0, &(0x7f0000000000)={0x0, 0x0, 0x0, 0x7, 0x7, r2, &(0x7f00000000c0)="c5a3b88713e6d0513b335e46a6132f1e88d49b34d830b65b263847e9e652e01b03ba46051f51bf0dfe5438802b578f2a5a66fe0bed36b813bae3b8e43b05a8194d5bd3", 0x43, 0x8001, 0x0, 0x2, r3}, &(0x7f0000000140))

21:17:00 executing program 1:
openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x105142, 0x0)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
pipe(&(0x7f00000001c0))
mount$9p_fd(0x0, &(0x7f0000000040)='./file1\x00', &(0x7f00000000c0), 0x0, &(0x7f0000000280)={'trans=fd,', {}, 0x2c, {}, 0x2c, {[{@nodevmap}]}}) (fail_nth: 28)

[ 2174.016248] FAULT_INJECTION: forcing a failure.
[ 2174.016248] name failslab, interval 1, probability 0, space 0, times 0
[ 2174.018482] CPU: 1 PID: 17480 Comm: syz-executor.1 Not tainted 5.10.172 #1
[ 2174.019510] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 2174.020695] Call Trace:
[ 2174.021058]  dump_stack+0x107/0x167
[ 2174.021593]  should_fail.cold+0x5/0xa
[ 2174.022223]  should_failslab+0x5/0x20
[ 2174.022728]  __kmalloc_track_caller+0x79/0x3c0
[ 2174.023394]  ? match_number+0xaf/0x1d0
[ 2174.024008]  kmemdup_nul+0x2d/0xa0
[ 2174.024590]  match_number+0xaf/0x1d0
[ 2174.025083]  ? match_u64+0x190/0x190
[ 2174.025602]  ? __kmalloc_track_caller+0x2d4/0x3c0
[ 2174.026229]  ? memcpy+0x39/0x60
[ 2174.026679]  parse_opts.part.0+0x1f3/0x340
[ 2174.027245]  ? p9_fd_show_options+0x1c0/0x1c0
[ 2174.027850]  ? lockdep_hardirqs_on_prepare+0x277/0x3e0
[ 2174.028549]  ? trace_hardirqs_on+0x5b/0x180
[ 2174.029121]  ? kfree+0xd7/0x390
[ 2174.029666]  p9_fd_create+0x98/0x4a0
[ 2174.030167]  ? p9_conn_create+0x510/0x510
[ 2174.030719]  ? p9_client_create+0x798/0x1090
[ 2174.031301]  ? kfree+0xd7/0x390
[ 2174.031737]  ? do_raw_spin_unlock+0x4f/0x220
[ 2174.032325]  p9_client_create+0x7ff/0x1090
[ 2174.032899]  ? p9_client_flush+0x430/0x430
[ 2174.033503]  ? lockdep_init_map_type+0x2c7/0x780
[ 2174.034121]  ? rcu_read_lock_sched_held+0x3e/0x80
[ 2174.034768]  ? __raw_spin_lock_init+0x36/0x110
[ 2174.035391]  v9fs_session_init+0x1dd/0x16a0
[ 2174.035972]  ? kmem_cache_alloc_trace+0x151/0x360
[ 2174.036614]  ? v9fs_show_options+0x690/0x690
[ 2174.037215]  ? kasan_unpoison_shadow+0x33/0x50
[ 2174.037829]  ? __kasan_kmalloc.constprop.0+0xc9/0xd0
[ 2174.038499]  v9fs_mount+0x79/0x8f0
[ 2174.038975]  ? v9fs_write_inode+0x60/0x60
[ 2174.039529]  legacy_get_tree+0x105/0x220
[ 2174.040079]  vfs_get_tree+0x8e/0x300
[ 2174.040577]  path_mount+0x13be/0x20b0
[ 2174.041086]  ? strncpy_from_user+0x9e/0x470
[ 2174.041754]  ? finish_automount+0xa40/0xa40
[ 2174.043105]  ? getname_flags.part.0+0x1dd/0x4f0
[ 2174.044578]  ? _copy_from_user+0xfb/0x1b0
[ 2174.045971]  __x64_sys_mount+0x282/0x300
[ 2174.047148]  ? copy_mnt_ns+0xa00/0xa00
[ 2174.048379]  ? rcu_read_lock_sched_held+0x3e/0x80
[ 2174.049892]  do_syscall_64+0x33/0x40
[ 2174.050877]  entry_SYSCALL_64_after_hwframe+0x61/0xc6
[ 2174.052243] RIP: 0033:0x7f9bca359b19
[ 2174.053173] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 2174.057804] RSP: 002b:00007f9bc78cf188 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5
[ 2174.058740] RAX: ffffffffffffffda RBX: 00007f9bca46cf60 RCX: 00007f9bca359b19
[ 2174.059676] RDX: 00000000200000c0 RSI: 0000000020000040 RDI: 0000000000000000
[ 2174.060615] RBP: 00007f9bc78cf1d0 R08: 0000000020000280 R09: 0000000000000000
[ 2174.061560] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[ 2174.062479] R13: 00007fffb54b7e9f R14: 00007f9bc78cf300 R15: 0000000000022000
[ 2174.081960] 9pnet: Insufficient options for proto=fd
21:17:18 executing program 7:
r0 = perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
syz_io_uring_submit(0x0, 0x0, &(0x7f0000000000)=@IORING_OP_REMOVE_BUFFERS={0x1f, 0x3, 0x0, 0x401, 0x0, 0x0, 0x0, 0x0, 0x1}, 0x0)
io_setup(0x7f, &(0x7f00000002c0)=<r1=>0x0)
io_submit(r1, 0x1, &(0x7f0000000340)=[&(0x7f0000000300)={0x0, 0x0, 0x0, 0x5, 0x0, r0, 0x0}])
openat(0xffffffffffffffff, 0x0, 0x0, 0x10)

21:17:18 executing program 6:
r0 = syz_mount_image$vfat(&(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x0, 0x2, &(0x7f0000000180)=[{&(0x7f0000000140)="eb3c906d6b66732e66617400020801000470008400f801", 0x17}, {0x0, 0x0, 0x1000a00}], 0x0, 0x0)
chdir(&(0x7f0000000040)='./file0\x00')
openat2(r0, &(0x7f0000000100)='./file0\x00', &(0x7f00000001c0)={0x40000, 0x81}, 0x18)
mount$cgroup(0x0, 0x0, &(0x7f0000000400), 0x0, 0x0)
r1 = syz_io_uring_setup(0x22, &(0x7f0000000680)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000180)=<r2=>0x0, &(0x7f0000002a40)=<r3=>0x0)
r4 = io_uring_register$IORING_REGISTER_PERSONALITY(r1, 0x9, 0x0, 0x0)
r5 = socket$nl_netfilter(0x10, 0x3, 0xc)
syz_io_uring_submit(r2, r3, &(0x7f0000000400)=@IORING_OP_WRITEV={0x2, 0x0, 0x0, @fd=r5, 0x0, 0x0, 0x0, 0x0, 0x0, {0x0, r4}}, 0x0)
r6 = syz_io_uring_setup(0x22, &(0x7f0000000680)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000180), &(0x7f0000002a40))
r7 = io_uring_register$IORING_REGISTER_PERSONALITY(r6, 0x9, 0x0, 0x0)
syz_io_uring_submit(r2, 0x0, &(0x7f0000000440)=@IORING_OP_FSYNC={0x3, 0x2, 0x0, @fd_index=0x9, 0x0, 0x0, 0x0, 0x0, 0x1, {0x0, r7}}, 0x2)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r8 = openat(0xffffffffffffff9c, &(0x7f00000002c0)='./file1\x00', 0x105142, 0x0)
r9 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0)
sendfile(r8, r9, 0x0, 0x100000001)
newfstatat(0xffffffffffffff9c, &(0x7f0000000340)='./file1\x00', &(0x7f0000000380), 0x400)

21:17:18 executing program 5:
openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x105142, 0x0)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
pipe(&(0x7f00000001c0)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
mount$9p_fd(0x0, &(0x7f0000000040)='./file1\x00', &(0x7f00000000c0), 0x0, &(0x7f0000000280)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}}) (fail_nth: 26)
openat(0xffffffffffffffff, 0x0, 0x0, 0x0)

21:17:18 executing program 1:
openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x105142, 0x0)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
pipe(&(0x7f00000001c0))
mount$9p_fd(0x0, &(0x7f0000000040)='./file1\x00', &(0x7f00000000c0), 0x0, &(0x7f0000000280)={'trans=fd,', {}, 0x2c, {}, 0x2c, {[{@nodevmap}]}}) (fail_nth: 29)

21:17:18 executing program 2:
syz_mount_image$vfat(&(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x0, 0x2, &(0x7f0000000180)=[{&(0x7f0000000140)="eb3c906d6b66732e66617400020801000470008400f801", 0x17}, {0x0, 0x0, 0x1000a00}], 0x0, &(0x7f0000000240)=ANY=[])
chdir(&(0x7f0000000040)='./file0\x00')
r0 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x105142, 0x0)
ioctl$FS_IOC_RESVSP(r0, 0x40305828, &(0x7f0000000040)={0x0, 0x0, 0x0, 0x4000006, 0x0, 0x3})

21:17:18 executing program 4:
openat$vcs(0xffffffffffffff9c, &(0x7f0000000040), 0x0, 0x0)
openat$sr(0xffffffffffffff9c, &(0x7f00000035c0), 0x0, 0x0)
openat$sr(0xffffffffffffff9c, &(0x7f00000000c0), 0x224400, 0x0)
openat$rtc(0xffffffffffffff9c, &(0x7f0000000200), 0x0, 0x0)
pipe(&(0x7f00000001c0))
open(&(0x7f00000016c0)='./cgroup.net/cgroup.procs\x00', 0x0, 0x0)
pselect6(0x40, &(0x7f0000000180), &(0x7f00000001c0)={0x3fc, 0x0, 0x0, 0x0, 0x0, 0x800000000000000}, 0x0, 0x0, 0x0)

21:17:18 executing program 3:
openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x105142, 0x0)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x400}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
pipe(&(0x7f00000001c0)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
mount$9p_fd(0x2, &(0x7f0000000040)='./file1\x00', &(0x7f00000000c0), 0x0, &(0x7f0000000280)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {}, 0x2c, {[{@nodevmap}]}})
openat(r1, &(0x7f0000000180)='./file1\x00', 0x0, 0x0)

21:17:18 executing program 0:
syz_mount_image$vfat(&(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x0, 0x2, &(0x7f0000000180)=[{&(0x7f0000000140)="eb3c906d6b66732e66617400020801000470008400f801", 0x17}, {0x0, 0x0, 0x1000a00}], 0x0, &(0x7f0000000240)=ANY=[])
chdir(&(0x7f0000000040)='./file0\x00')
mount$cgroup(0x0, 0x0, &(0x7f0000000400), 0x0, 0x0)
r0 = syz_io_uring_setup(0x22, &(0x7f0000000680)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000180)=<r1=>0x0, 0x0)
r2 = io_uring_register$IORING_REGISTER_PERSONALITY(r0, 0x9, 0x0, 0x0)
r3 = socket$nl_netfilter(0x10, 0x3, 0xc)
syz_io_uring_submit(r1, 0x0, &(0x7f0000000400)=@IORING_OP_WRITEV={0x2, 0x0, 0x0, @fd=r3, 0x0, 0x0, 0x0, 0x0, 0x0, {0x0, r2}}, 0x0)
r4 = syz_io_uring_setup(0x22, &(0x7f0000000680)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000180), &(0x7f0000002a40))
r5 = io_uring_register$IORING_REGISTER_PERSONALITY(r4, 0x9, 0x0, 0x0)
syz_io_uring_submit(r1, 0x0, &(0x7f0000000440)=@IORING_OP_FSYNC={0x3, 0x2, 0x0, @fd_index=0x9, 0x0, 0x0, 0x0, 0x0, 0x1, {0x0, r5}}, 0x2)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r6 = openat(0xffffffffffffff9c, &(0x7f00000002c0)='./file1\x00', 0x105142, 0x0)
r7 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0)
mount(&(0x7f0000000200)=ANY=[@ANYBLOB="2f6f651317868af191bdb2"], &(0x7f0000000240)='./file0\x00', &(0x7f0000000280)='nfsd\x00', 0x800000, &(0x7f0000000300)='cgroup\x00')
sendfile(r6, r7, 0x0, 0x100000001)
newfstatat(0xffffffffffffff9c, &(0x7f0000000340)='./file1\x00', &(0x7f0000000380), 0x400)

21:17:18 executing program 3:
openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x105142, 0x0)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x400}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
pipe(&(0x7f00000001c0)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
mount$9p_fd(0x3, &(0x7f0000000040)='./file1\x00', &(0x7f00000000c0), 0x0, &(0x7f0000000280)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {}, 0x2c, {[{@nodevmap}]}})
openat(r1, &(0x7f0000000180)='./file1\x00', 0x0, 0x0)

[ 2191.866543] FAULT_INJECTION: forcing a failure.
[ 2191.866543] name failslab, interval 1, probability 0, space 0, times 0
[ 2191.873170] CPU: 1 PID: 17497 Comm: syz-executor.1 Not tainted 5.10.172 #1
[ 2191.874112] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 2191.875206] Call Trace:
[ 2191.875550]  dump_stack+0x107/0x167
[ 2191.876026]  should_fail.cold+0x5/0xa
[ 2191.876530]  ? create_object.isra.0+0x3a/0xa20
[ 2191.877134]  should_failslab+0x5/0x20
[ 2191.877681]  kmem_cache_alloc+0x5b/0x360
[ 2191.878192]  create_object.isra.0+0x3a/0xa20
[ 2191.878729]  ? __kasan_kmalloc.constprop.0+0xc9/0xd0
[ 2191.879374]  __kmalloc_track_caller+0x177/0x3c0
[ 2191.879989]  ? match_number+0xaf/0x1d0
[ 2191.880519]  kmemdup_nul+0x2d/0xa0
[ 2191.880998]  match_number+0xaf/0x1d0
[ 2191.882298]  ? match_u64+0x190/0x190
[ 2191.882770]  ? __kmalloc_track_caller+0x2d4/0x3c0
[ 2191.883399]  ? memcpy+0x39/0x60
[ 2191.883835]  parse_opts.part.0+0x1f3/0x340
[ 2191.884411]  ? p9_fd_show_options+0x1c0/0x1c0
[ 2191.885017]  ? lockdep_hardirqs_on_prepare+0x277/0x3e0
[ 2191.885756]  ? trace_hardirqs_on+0x5b/0x180
[ 2191.886330]  ? kfree+0xd7/0x390
[ 2191.886786]  p9_fd_create+0x98/0x4a0
[ 2191.887288]  ? p9_conn_create+0x510/0x510
[ 2191.887919]  ? p9_client_create+0x798/0x1090
[ 2191.888556]  ? kfree+0xd7/0x390
[ 2191.889068]  ? do_raw_spin_unlock+0x4f/0x220
[ 2191.891750]  p9_client_create+0x7ff/0x1090
[ 2191.892835]  ? p9_client_flush+0x430/0x430
[ 2191.893786]  ? lockdep_init_map_type+0x2c7/0x780
[ 2191.894813]  ? rcu_read_lock_sched_held+0x3e/0x80
[ 2191.895955]  ? __raw_spin_lock_init+0x36/0x110
[ 2191.897115]  v9fs_session_init+0x1dd/0x16a0
[ 2191.898443]  ? kmem_cache_alloc_trace+0x151/0x360
[ 2191.899219]  ? v9fs_show_options+0x690/0x690
[ 2191.899927]  ? kasan_unpoison_shadow+0x33/0x50
[ 2191.901392]  ? __kasan_kmalloc.constprop.0+0xc9/0xd0
[ 2191.902082]  v9fs_mount+0x79/0x8f0
[ 2191.902551]  ? v9fs_write_inode+0x60/0x60
[ 2191.903334]  legacy_get_tree+0x105/0x220
[ 2191.904466]  vfs_get_tree+0x8e/0x300
[ 2191.904937]  path_mount+0x13be/0x20b0
[ 2191.905417]  ? strncpy_from_user+0x9e/0x470
[ 2191.906030]  ? finish_automount+0xa40/0xa40
[ 2191.906579]  ? getname_flags.part.0+0x1dd/0x4f0
[ 2191.907167]  ? _copy_from_user+0xfb/0x1b0
[ 2191.907700]  __x64_sys_mount+0x282/0x300
[ 2191.908209]  ? copy_mnt_ns+0xa00/0xa00
[ 2191.908714]  ? rcu_read_lock_sched_held+0x3e/0x80
[ 2191.909317]  do_syscall_64+0x33/0x40
[ 2191.909855]  entry_SYSCALL_64_after_hwframe+0x61/0xc6
[ 2191.910500] RIP: 0033:0x7f9bca359b19
[ 2191.910973] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 2191.913388] RSP: 002b:00007f9bc78cf188 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5
[ 2191.914419] RAX: ffffffffffffffda RBX: 00007f9bca46cf60 RCX: 00007f9bca359b19
[ 2191.915332] RDX: 00000000200000c0 RSI: 0000000020000040 RDI: 0000000000000000
[ 2191.916272] RBP: 00007f9bc78cf1d0 R08: 0000000020000280 R09: 0000000000000000
[ 2191.917234] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[ 2191.918323] R13: 00007fffb54b7e9f R14: 00007f9bc78cf300 R15: 0000000000022000
[ 2191.931554] 9pnet: Insufficient options for proto=fd
[ 2191.937420] FAULT_INJECTION: forcing a failure.
[ 2191.937420] name failslab, interval 1, probability 0, space 0, times 0
[ 2191.941607] CPU: 0 PID: 17501 Comm: syz-executor.5 Not tainted 5.10.172 #1
[ 2191.942600] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 2191.944496] Call Trace:
[ 2191.944849]  dump_stack+0x107/0x167
[ 2191.945336]  should_fail.cold+0x5/0xa
[ 2191.945861]  should_failslab+0x5/0x20
[ 2191.946744]  __kmalloc_track_caller+0x79/0x3c0
[ 2191.947342]  ? parse_opts.part.0+0x8e/0x340
[ 2191.948351]  kstrdup+0x36/0x70
[ 2191.949256]  parse_opts.part.0+0x8e/0x340
[ 2191.950256]  ? p9_fd_show_options+0x1c0/0x1c0
[ 2191.951631]  ? trace_hardirqs_on+0x5b/0x180
[ 2191.952767]  ? asm_sysvec_apic_timer_interrupt+0x12/0x20
[ 2191.956314]  p9_fd_create+0x98/0x4a0
[ 2191.957346]  ? p9_conn_create+0x510/0x510
[ 2191.957937]  ? p9_client_create+0x798/0x1090
[ 2191.958509]  ? kfree+0xd7/0x390
[ 2191.958938]  ? do_raw_spin_unlock+0x4f/0x220
[ 2191.959505]  p9_client_create+0x7ff/0x1090
[ 2191.960062]  ? p9_client_flush+0x430/0x430
[ 2191.960637]  ? lockdep_init_map_type+0x2c7/0x780
[ 2191.961258]  ? rcu_read_lock_sched_held+0x3e/0x80
[ 2191.961985]  ? __raw_spin_lock_init+0x36/0x110
[ 2191.962579]  v9fs_session_init+0x1dd/0x16a0
[ 2191.963181]  ? kmem_cache_alloc_trace+0x151/0x360
[ 2191.963803]  ? v9fs_show_options+0x690/0x690
[ 2191.964404]  ? kasan_unpoison_shadow+0x33/0x50
[ 2191.965034]  ? __kasan_kmalloc.constprop.0+0xc9/0xd0
[ 2191.965731]  v9fs_mount+0x79/0x8f0
[ 2191.966194]  ? v9fs_write_inode+0x60/0x60
[ 2191.966730]  legacy_get_tree+0x105/0x220
[ 2191.967268]  vfs_get_tree+0x8e/0x300
[ 2191.967748]  path_mount+0x13be/0x20b0
[ 2191.968260]  ? strncpy_from_user+0x9e/0x470
[ 2191.968823]  ? finish_automount+0xa40/0xa40
[ 2191.969390]  ? getname_flags.part.0+0x1dd/0x4f0
[ 2191.970432]  ? _copy_from_user+0xfb/0x1b0
[ 2191.971400]  __x64_sys_mount+0x282/0x300
[ 2191.971985]  ? copy_mnt_ns+0xa00/0xa00
[ 2191.972548]  ? rcu_read_lock_sched_held+0x3e/0x80
[ 2191.973224]  do_syscall_64+0x33/0x40
[ 2191.973767]  entry_SYSCALL_64_after_hwframe+0x61/0xc6
[ 2191.974446] RIP: 0033:0x7f38308e8b19
[ 2191.975063] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 2191.980260] RSP: 002b:00007f382de5e188 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5
[ 2191.982392] RAX: ffffffffffffffda RBX: 00007f38309fbf60 RCX: 00007f38308e8b19
[ 2191.984258] RDX: 00000000200000c0 RSI: 0000000020000040 RDI: 0000000000000000
[ 2191.985707] RBP: 00007f382de5e1d0 R08: 0000000020000280 R09: 0000000000000000
[ 2191.986618] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[ 2191.987521] R13: 00007ffca2bf07df R14: 00007f382de5e300 R15: 0000000000022000
[ 2191.990184] 9pnet: Insufficient options for proto=fd
21:17:18 executing program 1:
openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x105142, 0x0)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
pipe(&(0x7f00000001c0))
mount$9p_fd(0x0, &(0x7f0000000040)='./file1\x00', &(0x7f00000000c0), 0x0, &(0x7f0000000280)={'trans=fd,', {}, 0x2c, {}, 0x2c, {[{@nodevmap}]}}) (fail_nth: 30)

21:17:18 executing program 7:
r0 = perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
io_setup(0x7f, &(0x7f00000002c0)=<r1=>0x0)
io_submit(r1, 0x1, &(0x7f0000000340)=[&(0x7f0000000300)={0x0, 0x0, 0x0, 0x5, 0x0, r0, 0x0}])
openat(0xffffffffffffffff, 0x0, 0x0, 0x10)
r2 = syz_mount_image$ext4(&(0x7f0000000000)='ext3\x00', &(0x7f00000000c0)='./file0\x00', 0x5, 0x3, &(0x7f0000000140)=[{&(0x7f0000000100)="52a51cb98e84ba184f35162e3b0f18aac265f9ef95bd8fb35b95cc00640c9e49870b0241e6969230007ff06af847e88bc7a56b4ceac2aab30ad7", 0x3a, 0x7fff}, {&(0x7f0000000380)="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", 0x1000, 0x100000000}, {&(0x7f0000001380)="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", 0x1000, 0x80000001}], 0x2, &(0x7f00000001c0)={[{@errors_remount}], [{@dont_measure}, {@obj_role={'obj_role', 0x3d, '^.]\x8e],#'}}, {@rootcontext={'rootcontext', 0x3d, 'staff_u'}}, {@fowner_gt={'fowner>', 0xffffffffffffffff}}, {@smackfstransmute}]})
ftruncate(r2, 0x1e)

21:17:18 executing program 2:
syz_mount_image$vfat(&(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x0, 0x2, &(0x7f0000000180)=[{&(0x7f0000000140)="eb3c906d6b66732e66617400020801000470008400f801", 0x17}, {0x0, 0x0, 0x1000a00}], 0x0, &(0x7f0000000240)=ANY=[])
chdir(&(0x7f0000000040)='./file0\x00')
r0 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x105142, 0x0)
ioctl$FS_IOC_RESVSP(r0, 0x40305828, &(0x7f0000000040)={0x0, 0x0, 0x0, 0x4000006, 0x0, 0x4})

21:17:18 executing program 4:
openat$vcs(0xffffffffffffff9c, &(0x7f0000000040), 0x0, 0x0)
openat$sr(0xffffffffffffff9c, &(0x7f00000035c0), 0x0, 0x0)
openat$sr(0xffffffffffffff9c, &(0x7f00000000c0), 0x224400, 0x0)
openat$rtc(0xffffffffffffff9c, &(0x7f0000000200), 0x0, 0x0)
pipe(&(0x7f00000001c0))
open(&(0x7f00000016c0)='./cgroup.net/cgroup.procs\x00', 0x0, 0x0)
pselect6(0x40, &(0x7f0000000180), &(0x7f00000001c0)={0x3fc, 0x0, 0x0, 0x0, 0x0, 0xa00000000000000}, 0x0, 0x0, 0x0)

21:17:18 executing program 5:
openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x105142, 0x0)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
pipe(&(0x7f00000001c0)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
mount$9p_fd(0x0, &(0x7f0000000040)='./file1\x00', &(0x7f00000000c0), 0x0, &(0x7f0000000280)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}}) (fail_nth: 27)
openat(0xffffffffffffffff, 0x0, 0x0, 0x0)

21:17:18 executing program 0:
syz_mount_image$vfat(&(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x0, 0x2, &(0x7f0000000180)=[{&(0x7f0000000140)="eb3c906d6b66732e66617400020801000470008400f801", 0x17}, {0x0, 0x0, 0x1000a00}], 0x0, &(0x7f0000000240)=ANY=[])
chdir(&(0x7f0000000040)='./file0\x00')
mount$cgroup(0x0, 0x0, &(0x7f0000000400), 0x0, 0x0)
syz_io_uring_setup(0x22, &(0x7f0000000680)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000180)=<r0=>0x0, &(0x7f0000002a40)=<r1=>0x0)
r2 = io_uring_register$IORING_REGISTER_PERSONALITY(0xffffffffffffffff, 0x9, 0x0, 0x0)
r3 = socket$nl_netfilter(0x10, 0x3, 0xc)
syz_io_uring_submit(r0, r1, &(0x7f0000000400)=@IORING_OP_WRITEV={0x2, 0x0, 0x0, @fd=r3, 0x0, 0x0, 0x0, 0x0, 0x0, {0x0, r2}}, 0x0)
r4 = syz_io_uring_setup(0x22, &(0x7f0000000680)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000180), &(0x7f0000002a40))
r5 = io_uring_register$IORING_REGISTER_PERSONALITY(r4, 0x9, 0x0, 0x0)
syz_io_uring_submit(r0, 0x0, &(0x7f0000000440)=@IORING_OP_FSYNC={0x3, 0x2, 0x0, @fd_index=0x9, 0x0, 0x0, 0x0, 0x0, 0x1, {0x0, r5}}, 0x2)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r6 = openat(0xffffffffffffff9c, &(0x7f00000002c0)='./file1\x00', 0x105142, 0x0)
r7 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0)
mount(&(0x7f0000000200)=ANY=[@ANYBLOB="2f6f651317868af191bdb2"], &(0x7f0000000240)='./file0\x00', &(0x7f0000000280)='nfsd\x00', 0x800000, &(0x7f0000000300)='cgroup\x00')
sendfile(r6, r7, 0x0, 0x100000001)
newfstatat(0xffffffffffffff9c, &(0x7f0000000340)='./file1\x00', &(0x7f0000000380), 0x400)

21:17:18 executing program 6:
r0 = syz_mount_image$vfat(&(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x0, 0x2, &(0x7f0000000180)=[{&(0x7f0000000140)="eb3c906d6b66732e66617400020801000470008400f801", 0x17}, {0x0, 0x0, 0x1000a00}], 0x0, 0x0)
chdir(&(0x7f0000000040)='./file0\x00')
openat2(r0, &(0x7f0000000100)='./file0\x00', &(0x7f00000001c0)={0x40000, 0x81}, 0x18)
mount$cgroup(0x0, 0x0, &(0x7f0000000400), 0x0, 0x0)
r1 = syz_io_uring_setup(0x22, &(0x7f0000000680)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000180)=<r2=>0x0, &(0x7f0000002a40)=<r3=>0x0)
r4 = io_uring_register$IORING_REGISTER_PERSONALITY(r1, 0x9, 0x0, 0x0)
r5 = socket$nl_netfilter(0x10, 0x3, 0xc)
syz_io_uring_submit(r2, r3, &(0x7f0000000400)=@IORING_OP_WRITEV={0x2, 0x0, 0x0, @fd=r5, 0x0, 0x0, 0x0, 0x0, 0x0, {0x0, r4}}, 0x0)
r6 = syz_io_uring_setup(0x22, &(0x7f0000000680)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000180), &(0x7f0000002a40))
r7 = io_uring_register$IORING_REGISTER_PERSONALITY(r6, 0x9, 0x0, 0x0)
syz_io_uring_submit(r2, 0x0, &(0x7f0000000440)=@IORING_OP_FSYNC={0x3, 0x2, 0x0, @fd_index=0x9, 0x0, 0x0, 0x0, 0x0, 0x1, {0x0, r7}}, 0x2)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r8 = openat(0xffffffffffffff9c, &(0x7f00000002c0)='./file1\x00', 0x105142, 0x0)
r9 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0)
sendfile(r8, r9, 0x0, 0x100000001)
newfstatat(0xffffffffffffff9c, &(0x7f0000000340)='./file1\x00', &(0x7f0000000380), 0x400)

[ 2192.338452] FAULT_INJECTION: forcing a failure.
[ 2192.338452] name failslab, interval 1, probability 0, space 0, times 0
[ 2192.339958] CPU: 0 PID: 17534 Comm: syz-executor.5 Not tainted 5.10.172 #1
[ 2192.340727] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 2192.341666] Call Trace:
[ 2192.341986]  dump_stack+0x107/0x167
[ 2192.342390]  should_fail.cold+0x5/0xa
[ 2192.342853]  should_failslab+0x5/0x20
[ 2192.343295]  __kmalloc_track_caller+0x79/0x3c0
[ 2192.343801]  ? parse_opts.part.0+0x8e/0x340
[ 2192.344281]  kstrdup+0x36/0x70
[ 2192.344637]  parse_opts.part.0+0x8e/0x340
[ 2192.345108]  ? p9_fd_show_options+0x1c0/0x1c0
[ 2192.345623]  ? lockdep_hardirqs_on_prepare+0x277/0x3e0
[ 2192.346198]  ? quarantine_put+0x8b/0x1a0
[ 2192.346655]  ? trace_hardirqs_on+0x5b/0x180
[ 2192.347153]  ? kfree+0xd7/0x390
[ 2192.347523]  p9_fd_create+0x98/0x4a0
[ 2192.347983]  ? p9_conn_create+0x510/0x510
[ 2192.348443]  ? p9_client_create+0x798/0x1090
[ 2192.348924]  ? kfree+0xd7/0x390
[ 2192.349289]  ? do_raw_spin_unlock+0x4f/0x220
[ 2192.349788]  p9_client_create+0x7ff/0x1090
[ 2192.350268]  ? p9_client_flush+0x430/0x430
[ 2192.350412] FAULT_INJECTION: forcing a failure.
[ 2192.350412] name failslab, interval 1, probability 0, space 0, times 0
[ 2192.350746]  ? lockdep_init_map_type+0x2c7/0x780
[ 2192.350756]  ? rcu_read_lock_sched_held+0x3e/0x80
[ 2192.350770]  ? __raw_spin_lock_init+0x36/0x110
[ 2192.350787]  v9fs_session_init+0x1dd/0x16a0
[ 2192.354547]  ? kmem_cache_alloc_trace+0x151/0x360
[ 2192.355094]  ? v9fs_show_options+0x690/0x690
[ 2192.355596]  ? kasan_unpoison_shadow+0x33/0x50
[ 2192.356128]  ? __kasan_kmalloc.constprop.0+0xc9/0xd0
[ 2192.356703]  v9fs_mount+0x79/0x8f0
[ 2192.357124]  ? v9fs_write_inode+0x60/0x60
[ 2192.357627]  legacy_get_tree+0x105/0x220
[ 2192.358100]  vfs_get_tree+0x8e/0x300
[ 2192.358534]  path_mount+0x13be/0x20b0
[ 2192.359004]  ? strncpy_from_user+0x9e/0x470
[ 2192.359499]  ? finish_automount+0xa40/0xa40
[ 2192.359995]  ? getname_flags.part.0+0x1dd/0x4f0
[ 2192.360529]  ? _copy_from_user+0xfb/0x1b0
[ 2192.361019]  __x64_sys_mount+0x282/0x300
[ 2192.361495]  ? copy_mnt_ns+0xa00/0xa00
[ 2192.361950]  ? rcu_read_lock_sched_held+0x3e/0x80
[ 2192.362498]  do_syscall_64+0x33/0x40
[ 2192.362923]  entry_SYSCALL_64_after_hwframe+0x61/0xc6
[ 2192.363496] RIP: 0033:0x7f38308e8b19
[ 2192.363919] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 2192.366018] RSP: 002b:00007f382de5e188 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5
[ 2192.366887] RAX: ffffffffffffffda RBX: 00007f38309fbf60 RCX: 00007f38308e8b19
[ 2192.367686] RDX: 00000000200000c0 RSI: 0000000020000040 RDI: 0000000000000000
[ 2192.368485] RBP: 00007f382de5e1d0 R08: 0000000020000280 R09: 0000000000000000
[ 2192.369292] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[ 2192.370120] R13: 00007ffca2bf07df R14: 00007f382de5e300 R15: 0000000000022000
[ 2192.370970] CPU: 1 PID: 17531 Comm: syz-executor.1 Not tainted 5.10.172 #1
[ 2192.371064] 9pnet: Insufficient options for proto=fd
[ 2192.371909] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 2192.371915] Call Trace:
[ 2192.371944]  dump_stack+0x107/0x167
[ 2192.374380]  should_fail.cold+0x5/0xa
[ 2192.374890]  should_failslab+0x5/0x20
[ 2192.375389]  __kmalloc_track_caller+0x79/0x3c0
[ 2192.375984]  ? match_number+0xaf/0x1d0
[ 2192.376497]  ? kfree+0xd7/0x390
[ 2192.376939]  kmemdup_nul+0x2d/0xa0
[ 2192.377341]  match_number+0xaf/0x1d0
[ 2192.377847]  ? match_u64+0x190/0x190
[ 2192.378344]  ? __kmalloc_track_caller+0x2d4/0x3c0
[ 2192.378990]  ? memcpy+0x39/0x60
[ 2192.379439]  parse_opts.part.0+0x1f3/0x340
[ 2192.380001]  ? p9_fd_show_options+0x1c0/0x1c0
[ 2192.380540]  ? lockdep_hardirqs_on_prepare+0x277/0x3e0
[ 2192.381137]  ? trace_hardirqs_on+0x5b/0x180
[ 2192.381619]  ? kfree+0xd7/0x390
[ 2192.381992]  p9_fd_create+0x98/0x4a0
[ 2192.382385]  ? p9_conn_create+0x510/0x510
[ 2192.382835]  ? p9_client_create+0x798/0x1090
[ 2192.383322]  ? kfree+0xd7/0x390
[ 2192.383703]  ? do_raw_spin_unlock+0x4f/0x220
[ 2192.384195]  p9_client_create+0x7ff/0x1090
[ 2192.384673]  ? p9_client_flush+0x430/0x430
[ 2192.385128]  ? lockdep_init_map_type+0x2c7/0x780
[ 2192.385674]  ? rcu_read_lock_sched_held+0x3e/0x80
[ 2192.386214]  ? __raw_spin_lock_init+0x36/0x110
[ 2192.386721]  v9fs_session_init+0x1dd/0x16a0
[ 2192.387205]  ? kmem_cache_alloc_trace+0x151/0x360
[ 2192.387728]  ? v9fs_show_options+0x690/0x690
[ 2192.388230]  ? kasan_unpoison_shadow+0x33/0x50
[ 2192.388738]  ? __kasan_kmalloc.constprop.0+0xc9/0xd0
[ 2192.389299]  v9fs_mount+0x79/0x8f0
[ 2192.389690]  ? v9fs_write_inode+0x60/0x60
[ 2192.390157]  legacy_get_tree+0x105/0x220
[ 2192.390601]  vfs_get_tree+0x8e/0x300
[ 2192.391029]  path_mount+0x13be/0x20b0
[ 2192.391446]  ? strncpy_from_user+0x9e/0x470
[ 2192.391933]  ? finish_automount+0xa40/0xa40
[ 2192.392397]  ? getname_flags.part.0+0x1dd/0x4f0
[ 2192.392906]  ? _copy_from_user+0xfb/0x1b0
[ 2192.393369]  __x64_sys_mount+0x282/0x300
[ 2192.393830]  ? copy_mnt_ns+0xa00/0xa00
[ 2192.394261]  ? rcu_read_lock_sched_held+0x3e/0x80
[ 2192.394787]  do_syscall_64+0x33/0x40
[ 2192.395211]  entry_SYSCALL_64_after_hwframe+0x61/0xc6
[ 2192.395767] RIP: 0033:0x7f9bca359b19
[ 2192.396181] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 2192.398166] RSP: 002b:00007f9bc78cf188 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5
[ 2192.398986] RAX: ffffffffffffffda RBX: 00007f9bca46cf60 RCX: 00007f9bca359b19
[ 2192.399756] RDX: 00000000200000c0 RSI: 0000000020000040 RDI: 0000000000000000
[ 2192.400517] RBP: 00007f9bc78cf1d0 R08: 0000000020000280 R09: 0000000000000000
[ 2192.401291] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[ 2192.402061] R13: 00007fffb54b7e9f R14: 00007f9bc78cf300 R15: 0000000000022000
[ 2192.403037] 9pnet: Insufficient options for proto=fd
21:17:18 executing program 3:
openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x105142, 0x0)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x400}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
pipe(&(0x7f00000001c0)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
mount$9p_fd(0x4, &(0x7f0000000040)='./file1\x00', &(0x7f00000000c0), 0x0, &(0x7f0000000280)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {}, 0x2c, {[{@nodevmap}]}})
openat(r1, &(0x7f0000000180)='./file1\x00', 0x0, 0x0)

[ 2192.446563] EXT4-fs (loop7): VFS: Can't find ext4 filesystem
21:17:18 executing program 5:
openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x105142, 0x0)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
pipe(&(0x7f00000001c0)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
mount$9p_fd(0x0, &(0x7f0000000040)='./file1\x00', &(0x7f00000000c0), 0x0, &(0x7f0000000280)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}}) (fail_nth: 28)
openat(0xffffffffffffffff, 0x0, 0x0, 0x0)

21:17:18 executing program 1:
openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x105142, 0x0)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
pipe(&(0x7f00000001c0))
mount$9p_fd(0x0, &(0x7f0000000040)='./file1\x00', &(0x7f00000000c0), 0x0, &(0x7f0000000280)={'trans=fd,', {}, 0x2c, {}, 0x2c, {[{@nodevmap}]}}) (fail_nth: 31)

[ 2192.481338] FAULT_INJECTION: forcing a failure.
[ 2192.481338] name failslab, interval 1, probability 0, space 0, times 0
[ 2192.482866] CPU: 0 PID: 17551 Comm: syz-executor.1 Not tainted 5.10.172 #1
21:17:18 executing program 2:
syz_mount_image$vfat(&(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x0, 0x2, &(0x7f0000000180)=[{&(0x7f0000000140)="eb3c906d6b66732e66617400020801000470008400f801", 0x17}, {0x0, 0x0, 0x1000a00}], 0x0, &(0x7f0000000240)=ANY=[])
chdir(&(0x7f0000000040)='./file0\x00')
r0 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x105142, 0x0)
ioctl$FS_IOC_RESVSP(r0, 0x40305828, &(0x7f0000000040)={0x0, 0x0, 0x0, 0x4000006, 0x0, 0x5})

[ 2192.483556] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 2192.484583] Call Trace:
[ 2192.484882]  dump_stack+0x107/0x167
[ 2192.485304]  should_fail.cold+0x5/0xa
[ 2192.485753]  ? create_object.isra.0+0x3a/0xa20
[ 2192.486273]  should_failslab+0x5/0x20
[ 2192.486697]  kmem_cache_alloc+0x5b/0x360
[ 2192.487154]  create_object.isra.0+0x3a/0xa20
[ 2192.487595]  ? __kasan_kmalloc.constprop.0+0xc9/0xd0
[ 2192.488162]  __kmalloc_track_caller+0x177/0x3c0
[ 2192.488626]  ? match_number+0xaf/0x1d0
[ 2192.489067]  kmemdup_nul+0x2d/0xa0
[ 2192.489424]  match_number+0xaf/0x1d0
[ 2192.489862]  ? match_u64+0x190/0x190
[ 2192.490237]  ? __kmalloc_track_caller+0x2d4/0x3c0
[ 2192.490771]  ? memcpy+0x39/0x60
[ 2192.491110]  parse_opts.part.0+0x1f3/0x340
[ 2192.491589]  ? p9_fd_show_options+0x1c0/0x1c0
[ 2192.492043]  ? lockdep_hardirqs_on_prepare+0x277/0x3e0
[ 2192.492635]  ? trace_hardirqs_on+0x5b/0x180
[ 2192.493071]  ? kfree+0xd7/0x390
[ 2192.493455]  p9_fd_create+0x98/0x4a0
[ 2192.493872]  ? p9_conn_create+0x510/0x510
[ 2192.494289]  ? p9_client_create+0x798/0x1090
[ 2192.494789]  ? kfree+0xd7/0x390
[ 2192.495158]  ? do_raw_spin_unlock+0x4f/0x220
[ 2192.495598]  p9_client_create+0x7ff/0x1090
[ 2192.496079]  ? p9_client_flush+0x430/0x430
[ 2192.496538]  ? lockdep_init_map_type+0x2c7/0x780
[ 2192.497047]  ? rcu_read_lock_sched_held+0x3e/0x80
[ 2192.497581]  ? __raw_spin_lock_init+0x36/0x110
[ 2192.498097]  v9fs_session_init+0x1dd/0x16a0
[ 2192.498589]  ? kmem_cache_alloc_trace+0x151/0x360
[ 2192.499123]  ? v9fs_show_options+0x690/0x690
[ 2192.499618]  ? kasan_unpoison_shadow+0x33/0x50
[ 2192.500125]  ? __kasan_kmalloc.constprop.0+0xc9/0xd0
[ 2192.500682]  v9fs_mount+0x79/0x8f0
[ 2192.501087]  ? v9fs_write_inode+0x60/0x60
[ 2192.501560]  legacy_get_tree+0x105/0x220
[ 2192.502017]  vfs_get_tree+0x8e/0x300
[ 2192.502430]  path_mount+0x13be/0x20b0
[ 2192.502863]  ? strncpy_from_user+0x9e/0x470
[ 2192.503360]  ? finish_automount+0xa40/0xa40
[ 2192.503846]  ? getname_flags.part.0+0x1dd/0x4f0
[ 2192.504368]  ? _copy_from_user+0xfb/0x1b0
[ 2192.504844]  __x64_sys_mount+0x282/0x300
[ 2192.505308]  ? copy_mnt_ns+0xa00/0xa00
[ 2192.505758]  ? rcu_read_lock_sched_held+0x3e/0x80
[ 2192.506314]  do_syscall_64+0x33/0x40
[ 2192.506734]  entry_SYSCALL_64_after_hwframe+0x61/0xc6
[ 2192.507307] RIP: 0033:0x7f9bca359b19
[ 2192.507726] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 2192.509810] RSP: 002b:00007f9bc78cf188 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5
[ 2192.510672] RAX: ffffffffffffffda RBX: 00007f9bca46cf60 RCX: 00007f9bca359b19
[ 2192.511477] RDX: 00000000200000c0 RSI: 0000000020000040 RDI: 0000000000000000
[ 2192.512285] RBP: 00007f9bc78cf1d0 R08: 0000000020000280 R09: 0000000000000000
[ 2192.513083] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[ 2192.513902] R13: 00007fffb54b7e9f R14: 00007f9bc78cf300 R15: 0000000000022000
[ 2192.515087] 9pnet: Insufficient options for proto=fd
[ 2192.524503] EXT4-fs (loop7): VFS: Can't find ext4 filesystem
21:17:19 executing program 3:
openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x105142, 0x0)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x400}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
pipe(&(0x7f00000001c0)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
mount$9p_fd(0x5, &(0x7f0000000040)='./file1\x00', &(0x7f00000000c0), 0x0, &(0x7f0000000280)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {}, 0x2c, {[{@nodevmap}]}})
openat(r1, &(0x7f0000000180)='./file1\x00', 0x0, 0x0)

21:17:19 executing program 7:
r0 = perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
io_setup(0x7f, &(0x7f00000002c0)=<r1=>0x0)
io_pgetevents(r1, 0x1, 0x1, &(0x7f0000000000)=[{}], 0x0, 0x0)
io_submit(r1, 0x1, &(0x7f0000000340)=[&(0x7f0000000300)={0x0, 0x0, 0x0, 0x5, 0x0, r0, 0x0}])
openat(0xffffffffffffffff, 0x0, 0x0, 0x10)

[ 2192.598908] FAULT_INJECTION: forcing a failure.
[ 2192.598908] name failslab, interval 1, probability 0, space 0, times 0
[ 2192.600411] CPU: 0 PID: 17558 Comm: syz-executor.5 Not tainted 5.10.172 #1
[ 2192.601178] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 2192.602106] Call Trace:
[ 2192.602414]  dump_stack+0x107/0x167
21:17:19 executing program 4:
openat$vcs(0xffffffffffffff9c, &(0x7f0000000040), 0x0, 0x0)
openat$sr(0xffffffffffffff9c, &(0x7f00000035c0), 0x0, 0x0)
openat$sr(0xffffffffffffff9c, &(0x7f00000000c0), 0x224400, 0x0)
openat$rtc(0xffffffffffffff9c, &(0x7f0000000200), 0x0, 0x0)
pipe(&(0x7f00000001c0))
open(&(0x7f00000016c0)='./cgroup.net/cgroup.procs\x00', 0x0, 0x0)
pselect6(0x40, &(0x7f0000000180), &(0x7f00000001c0)={0x3fc, 0x0, 0x0, 0x0, 0x0, 0x1000000000000000}, 0x0, 0x0, 0x0)

[ 2192.602821]  should_fail.cold+0x5/0xa
[ 2192.603750]  should_failslab+0x5/0x20
[ 2192.604668]  __kmalloc_track_caller+0x79/0x3c0
[ 2192.605787]  ? match_number+0xaf/0x1d0
[ 2192.606728]  kmemdup_nul+0x2d/0xa0
[ 2192.607579]  match_number+0xaf/0x1d0
[ 2192.608468]  ? match_u64+0x190/0x190
[ 2192.609350]  ? __kmalloc_track_caller+0x2d4/0x3c0
[ 2192.610509]  ? memcpy+0x39/0x60
[ 2192.611305]  parse_opts.part.0+0x1f3/0x340
[ 2192.612312]  ? p9_fd_show_options+0x1c0/0x1c0
[ 2192.613406]  ? lockdep_hardirqs_on_prepare+0x277/0x3e0
[ 2192.614663]  ? asm_sysvec_apic_timer_interrupt+0x12/0x20
[ 2192.615945]  ? trace_hardirqs_on+0x5b/0x180
[ 2192.616975]  p9_fd_create+0x98/0x4a0
[ 2192.617884]  ? p9_conn_create+0x510/0x510
[ 2192.618583]  ? snd_open+0x3b4/0x420
[ 2192.619080]  p9_client_create+0x7ff/0x1090
[ 2192.619686]  ? p9_client_flush+0x430/0x430
[ 2192.620244]  ? trace_hardirqs_on+0x5b/0x180
[ 2192.620860]  ? asm_sysvec_apic_timer_interrupt+0x12/0x20
[ 2192.621610]  v9fs_session_init+0x1dd/0x16a0
[ 2192.622244]  ? kmem_cache_alloc_trace+0x151/0x360
[ 2192.622905]  ? v9fs_show_options+0x690/0x690
[ 2192.623511]  ? kasan_unpoison_shadow+0x33/0x50
[ 2192.624159]  ? __kasan_kmalloc.constprop.0+0xc9/0xd0
[ 2192.624843]  v9fs_mount+0x79/0x8f0
[ 2192.625349]  ? v9fs_write_inode+0x60/0x60
[ 2192.625928]  legacy_get_tree+0x105/0x220
[ 2192.626501]  vfs_get_tree+0x8e/0x300
[ 2192.627010]  path_mount+0x13be/0x20b0
[ 2192.627552]  ? strncpy_from_user+0x9e/0x470
[ 2192.628138]  ? finish_automount+0xa40/0xa40
[ 2192.628760]  ? getname_flags.part.0+0x1dd/0x4f0
[ 2192.629390]  ? _copy_from_user+0xfb/0x1b0
[ 2192.629997]  __x64_sys_mount+0x282/0x300
[ 2192.630550]  ? copy_mnt_ns+0xa00/0xa00
[ 2192.631079]  ? rcu_read_lock_sched_held+0x3e/0x80
[ 2192.631735]  do_syscall_64+0x33/0x40
[ 2192.632243]  entry_SYSCALL_64_after_hwframe+0x61/0xc6
[ 2192.632982] RIP: 0033:0x7f38308e8b19
[ 2192.633543] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 2192.636491] RSP: 002b:00007f382de5e188 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5
[ 2192.637578] RAX: ffffffffffffffda RBX: 00007f38309fbf60 RCX: 00007f38308e8b19
[ 2192.638613] RDX: 00000000200000c0 RSI: 0000000020000040 RDI: 0000000000000000
[ 2192.639652] RBP: 00007f382de5e1d0 R08: 0000000020000280 R09: 0000000000000000
[ 2192.640685] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[ 2192.641721] R13: 00007ffca2bf07df R14: 00007f382de5e300 R15: 0000000000022000
[ 2192.726833] 9pnet: Insufficient options for proto=fd
21:17:32 executing program 6:
r0 = syz_mount_image$vfat(&(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x0, 0x2, &(0x7f0000000180)=[{&(0x7f0000000140)="eb3c906d6b66732e66617400020801000470008400f801", 0x17}, {0x0, 0x0, 0x1000a00}], 0x0, &(0x7f0000000240)=ANY=[])
chdir(0x0)
openat2(r0, &(0x7f0000000100)='./file0\x00', &(0x7f00000001c0)={0x40000, 0x81}, 0x18)
mount$cgroup(0x0, 0x0, &(0x7f0000000400), 0x0, 0x0)
r1 = syz_io_uring_setup(0x22, &(0x7f0000000680)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000180)=<r2=>0x0, &(0x7f0000002a40)=<r3=>0x0)
r4 = io_uring_register$IORING_REGISTER_PERSONALITY(r1, 0x9, 0x0, 0x0)
r5 = socket$nl_netfilter(0x10, 0x3, 0xc)
syz_io_uring_submit(r2, r3, &(0x7f0000000400)=@IORING_OP_WRITEV={0x2, 0x0, 0x0, @fd=r5, 0x0, 0x0, 0x0, 0x0, 0x0, {0x0, r4}}, 0x0)
r6 = syz_io_uring_setup(0x22, &(0x7f0000000680)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000180), &(0x7f0000002a40))
r7 = io_uring_register$IORING_REGISTER_PERSONALITY(r6, 0x9, 0x0, 0x0)
syz_io_uring_submit(r2, 0x0, &(0x7f0000000440)=@IORING_OP_FSYNC={0x3, 0x2, 0x0, @fd_index=0x9, 0x0, 0x0, 0x0, 0x0, 0x1, {0x0, r7}}, 0x2)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r8 = openat(0xffffffffffffff9c, &(0x7f00000002c0)='./file1\x00', 0x105142, 0x0)
r9 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0)
sendfile(r8, r9, 0x0, 0x100000001)
newfstatat(0xffffffffffffff9c, &(0x7f0000000340)='./file1\x00', &(0x7f0000000380), 0x400)

21:17:32 executing program 0:
syz_mount_image$vfat(&(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x0, 0x2, &(0x7f0000000180)=[{&(0x7f0000000140)="eb3c906d6b66732e66617400020801000470008400f801", 0x17}, {0x0, 0x0, 0x1000a00}], 0x0, &(0x7f0000000240)=ANY=[])
chdir(&(0x7f0000000040)='./file0\x00')
mount$cgroup(0x0, 0x0, &(0x7f0000000400), 0x0, 0x0)
syz_io_uring_setup(0x22, &(0x7f0000000680)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000180)=<r0=>0x0, &(0x7f0000002a40)=<r1=>0x0)
r2 = io_uring_register$IORING_REGISTER_PERSONALITY(0xffffffffffffffff, 0x9, 0x0, 0x0)
r3 = socket$nl_netfilter(0x10, 0x3, 0xc)
syz_io_uring_submit(r0, r1, &(0x7f0000000400)=@IORING_OP_WRITEV={0x2, 0x0, 0x0, @fd=r3, 0x0, 0x0, 0x0, 0x0, 0x0, {0x0, r2}}, 0x0)
r4 = syz_io_uring_setup(0x22, &(0x7f0000000680)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000180), &(0x7f0000002a40))
r5 = io_uring_register$IORING_REGISTER_PERSONALITY(r4, 0x9, 0x0, 0x0)
syz_io_uring_submit(r0, 0x0, &(0x7f0000000440)=@IORING_OP_FSYNC={0x3, 0x2, 0x0, @fd_index=0x9, 0x0, 0x0, 0x0, 0x0, 0x1, {0x0, r5}}, 0x2)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r6 = openat(0xffffffffffffff9c, &(0x7f00000002c0)='./file1\x00', 0x105142, 0x0)
r7 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0)
mount(&(0x7f0000000200)=ANY=[@ANYBLOB="2f6f651317868af191bdb2"], &(0x7f0000000240)='./file0\x00', &(0x7f0000000280)='nfsd\x00', 0x800000, &(0x7f0000000300)='cgroup\x00')
sendfile(r6, r7, 0x0, 0x100000001)
newfstatat(0xffffffffffffff9c, &(0x7f0000000340)='./file1\x00', &(0x7f0000000380), 0x400)

21:17:33 executing program 7:
r0 = perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r1 = perf_event_open(&(0x7f0000001d80)={0x2, 0x80, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
mmap(&(0x7f0000ffc000/0x2000)=nil, 0x2000, 0x0, 0x13, r1, 0x0)
perf_event_open(&(0x7f0000001d80)={0x2, 0x80, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4, @perf_bp={&(0x7f0000000000), 0x9}}, 0x0, 0x0, r1, 0x2)
perf_event_open(&(0x7f00000000c0)={0x2, 0x80, 0x40, 0x80, 0x85, 0x9, 0x0, 0x7, 0x1000, 0x6, 0x0, 0x1, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x1, 0x0, 0x1, 0x0, 0x1, 0x0, 0x0, 0x0, 0x1, 0x0, 0x1, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x1, 0x1, 0x1, 0x0, 0x1, 0x1, 0x0, 0x0, 0x0, 0x0, 0xe0d, 0x2, @perf_config_ext={0x5, 0x8}, 0x104, 0x6f7000000000000, 0x90b, 0x4, 0x0, 0x7, 0x4, 0x0, 0x5, 0x0, 0x9}, 0xffffffffffffffff, 0x5, r1, 0x9)
perf_event_open(&(0x7f0000000180)={0x4, 0x80, 0x4, 0x2, 0x81, 0x2, 0x0, 0x5, 0x2040, 0x7, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x1, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x1, 0x0, 0x1, 0x0, 0x1, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x1, 0x0, 0x1, 0x1, 0x0, 0x1, 0x0, 0x1, 0x1, 0x0, 0x4, 0x0, @perf_bp={&(0x7f0000000140), 0x8}, 0x8008, 0x0, 0xfffffe00, 0x5, 0x3, 0x8, 0x3e9, 0x0, 0x81, 0x0, 0x6}, 0xffffffffffffffff, 0x1, 0xffffffffffffffff, 0x8)
io_setup(0x7f, &(0x7f00000002c0)=<r2=>0x0)
io_submit(r2, 0x1, &(0x7f0000000340)=[&(0x7f0000000300)={0x0, 0x0, 0x0, 0x5, 0x0, r0, 0x0}])
openat(0xffffffffffffffff, 0x0, 0x0, 0x10)

21:17:33 executing program 1:
openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x105142, 0x0)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
pipe(&(0x7f00000001c0))
mount$9p_fd(0x0, &(0x7f0000000040)='./file1\x00', &(0x7f00000000c0), 0x0, &(0x7f0000000280)={'trans=fd,', {}, 0x2c, {}, 0x2c, {[{@nodevmap}]}}) (fail_nth: 32)

21:17:33 executing program 2:
syz_mount_image$vfat(&(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x0, 0x2, &(0x7f0000000180)=[{&(0x7f0000000140)="eb3c906d6b66732e66617400020801000470008400f801", 0x17}, {0x0, 0x0, 0x1000a00}], 0x0, &(0x7f0000000240)=ANY=[])
chdir(&(0x7f0000000040)='./file0\x00')
r0 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x105142, 0x0)
ioctl$FS_IOC_RESVSP(r0, 0x40305828, &(0x7f0000000040)={0x0, 0x0, 0x0, 0x4000006, 0x0, 0x7})

21:17:33 executing program 3:
openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x105142, 0x0)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x400}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
pipe(&(0x7f00000001c0)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
mount$9p_fd(0x6, &(0x7f0000000040)='./file1\x00', &(0x7f00000000c0), 0x0, &(0x7f0000000280)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {}, 0x2c, {[{@nodevmap}]}})
openat(r1, &(0x7f0000000180)='./file1\x00', 0x0, 0x0)

21:17:33 executing program 5:
openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x105142, 0x0)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
pipe(&(0x7f00000001c0)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
mount$9p_fd(0x0, &(0x7f0000000040)='./file1\x00', &(0x7f00000000c0), 0x0, &(0x7f0000000280)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}}) (fail_nth: 29)
openat(0xffffffffffffffff, 0x0, 0x0, 0x0)

21:17:33 executing program 4:
openat$vcs(0xffffffffffffff9c, &(0x7f0000000040), 0x0, 0x0)
openat$sr(0xffffffffffffff9c, &(0x7f00000035c0), 0x0, 0x0)
openat$sr(0xffffffffffffff9c, &(0x7f00000000c0), 0x224400, 0x0)
openat$rtc(0xffffffffffffff9c, &(0x7f0000000200), 0x0, 0x0)
pipe(&(0x7f00000001c0))
open(&(0x7f00000016c0)='./cgroup.net/cgroup.procs\x00', 0x0, 0x0)
pselect6(0x40, &(0x7f0000000180), &(0x7f00000001c0)={0x3fc, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8}, 0x0, 0x0, 0x0)

[ 2206.557962] FAULT_INJECTION: forcing a failure.
[ 2206.557962] name failslab, interval 1, probability 0, space 0, times 0
[ 2206.560618] CPU: 0 PID: 17583 Comm: syz-executor.5 Not tainted 5.10.172 #1
[ 2206.562045] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 2206.563703] Call Trace:
[ 2206.564251]  dump_stack+0x107/0x167
[ 2206.564990]  should_fail.cold+0x5/0xa
[ 2206.565811]  ? create_object.isra.0+0x3a/0xa20
[ 2206.566844]  should_failslab+0x5/0x20
[ 2206.567745]  kmem_cache_alloc+0x5b/0x360
[ 2206.568884]  ? irqentry_enter+0x26/0x60
[ 2206.570037]  create_object.isra.0+0x3a/0xa20
[ 2206.571272]  ? __kasan_kmalloc.constprop.0+0xc9/0xd0
[ 2206.572703]  __kmalloc_track_caller+0x177/0x3c0
[ 2206.574015]  ? match_number+0xaf/0x1d0
[ 2206.574912]  kmemdup_nul+0x2d/0xa0
[ 2206.575740]  match_number+0xaf/0x1d0
[ 2206.576596]  ? match_u64+0x190/0x190
[ 2206.577443]  ? __kmalloc_track_caller+0x2d4/0x3c0
[ 2206.578589]  ? memcpy+0x39/0x60
[ 2206.579362]  parse_opts.part.0+0x1f3/0x340
[ 2206.580323]  ? p9_fd_show_options+0x1c0/0x1c0
[ 2206.581354]  ? lockdep_hardirqs_on_prepare+0x277/0x3e0
[ 2206.582557]  ? trace_hardirqs_on+0x5b/0x180
[ 2206.583554]  ? kfree+0xd7/0x390
[ 2206.583588]  p9_fd_create+0x98/0x4a0
[ 2206.583608]  ? p9_conn_create+0x510/0x510
[ 2206.583625]  ? p9_client_create+0x798/0x1090
[ 2206.583645]  ? kfree+0xd7/0x390
[ 2206.583665]  ? do_raw_spin_unlock+0x4f/0x220
[ 2206.583693]  p9_client_create+0x7ff/0x1090
[ 2206.583725]  ? p9_client_flush+0x430/0x430
[ 2206.583755]  ? lockdep_init_map_type+0x2c7/0x780
[ 2206.583774]  ? rcu_read_lock_sched_held+0x3e/0x80
[ 2206.583801]  ? __raw_spin_lock_init+0x36/0x110
[ 2206.583829]  v9fs_session_init+0x1dd/0x16a0
[ 2206.583867]  ? kmem_cache_alloc_trace+0x151/0x360
[ 2206.583885]  ? v9fs_show_options+0x690/0x690
[ 2206.583932]  ? kasan_unpoison_shadow+0x33/0x50
[ 2206.583955]  ? __kasan_kmalloc.constprop.0+0xc9/0xd0
[ 2206.583988]  v9fs_mount+0x79/0x8f0
[ 2206.584022]  ? v9fs_write_inode+0x60/0x60
21:17:33 executing program 3:
openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x105142, 0x0)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x400}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
pipe(&(0x7f00000001c0)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
mount$9p_fd(0x7, &(0x7f0000000040)='./file1\x00', &(0x7f00000000c0), 0x0, &(0x7f0000000280)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {}, 0x2c, {[{@nodevmap}]}})
openat(r1, &(0x7f0000000180)='./file1\x00', 0x0, 0x0)

[ 2206.584044]  legacy_get_tree+0x105/0x220
[ 2206.584072]  vfs_get_tree+0x8e/0x300
[ 2206.584095]  path_mount+0x13be/0x20b0
[ 2206.584121]  ? strncpy_from_user+0x9e/0x470
[ 2206.584146]  ? finish_automount+0xa40/0xa40
[ 2206.584170]  ? getname_flags.part.0+0x1dd/0x4f0
21:17:33 executing program 7:
r0 = perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
io_setup(0x7f, &(0x7f00000002c0)=<r1=>0x0)
io_submit(r1, 0x1, &(0x7f0000000340)=[&(0x7f0000000300)={0x0, 0x0, 0x0, 0x5, 0x0, r0, 0x0}])
r2 = openat(0xffffffffffffffff, 0x0, 0x0, 0x10)
connect$inet6(r2, &(0x7f0000000000)={0xa, 0x4e21, 0x0, @empty, 0xb0d9}, 0x1c)

21:17:33 executing program 1:
openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x105142, 0x0)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
pipe(&(0x7f00000001c0))
mount$9p_fd(0x0, &(0x7f0000000040)='./file1\x00', &(0x7f00000000c0), 0x0, &(0x7f0000000280)={'trans=fd,', {}, 0x2c, {}, 0x2c, {[{@nodevmap}]}}) (fail_nth: 33)

[ 2206.584189]  ? _copy_from_user+0xfb/0x1b0
[ 2206.584224]  __x64_sys_mount+0x282/0x300
[ 2206.584246]  ? copy_mnt_ns+0xa00/0xa00
[ 2206.584273]  ? rcu_read_lock_sched_held+0x3e/0x80
[ 2206.584300]  do_syscall_64+0x33/0x40
[ 2206.584323]  entry_SYSCALL_64_after_hwframe+0x61/0xc6
[ 2206.584337] RIP: 0033:0x7f38308e8b19
[ 2206.584359] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
21:17:33 executing program 2:
syz_mount_image$vfat(&(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x0, 0x2, &(0x7f0000000180)=[{&(0x7f0000000140)="eb3c906d6b66732e66617400020801000470008400f801", 0x17}, {0x0, 0x0, 0x1000a00}], 0x0, &(0x7f0000000240)=ANY=[])
chdir(&(0x7f0000000040)='./file0\x00')
r0 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x105142, 0x0)
ioctl$FS_IOC_RESVSP(r0, 0x40305828, &(0x7f0000000040)={0x0, 0x0, 0x0, 0x4000006, 0x0, 0x9})

[ 2206.584371] RSP: 002b:00007f382de5e188 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5
[ 2206.584395] RAX: ffffffffffffffda RBX: 00007f38309fbf60 RCX: 00007f38308e8b19
[ 2206.584408] RDX: 00000000200000c0 RSI: 0000000020000040 RDI: 0000000000000000
[ 2206.584421] RBP: 00007f382de5e1d0 R08: 0000000020000280 R09: 0000000000000000
[ 2206.584433] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[ 2206.584446] R13: 00007ffca2bf07df R14: 00007f382de5e300 R15: 0000000000022000
[ 2206.627703] FAULT_INJECTION: forcing a failure.
[ 2206.627703] name failslab, interval 1, probability 0, space 0, times 0
[ 2206.627821] CPU: 0 PID: 17592 Comm: syz-executor.1 Not tainted 5.10.172 #1
[ 2206.627832] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 2206.627838] Call Trace:
[ 2206.627863]  dump_stack+0x107/0x167
21:17:33 executing program 3:
openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x105142, 0x0)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x400}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
pipe(&(0x7f00000001c0)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
mount$9p_fd(0x8, &(0x7f0000000040)='./file1\x00', &(0x7f00000000c0), 0x0, &(0x7f0000000280)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {}, 0x2c, {[{@nodevmap}]}})
openat(r1, &(0x7f0000000180)='./file1\x00', 0x0, 0x0)

21:17:33 executing program 2:
syz_mount_image$vfat(&(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x0, 0x2, &(0x7f0000000180)=[{&(0x7f0000000140)="eb3c906d6b66732e66617400020801000470008400f801", 0x17}, {0x0, 0x0, 0x1000a00}], 0x0, &(0x7f0000000240)=ANY=[])
chdir(&(0x7f0000000040)='./file0\x00')
r0 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x105142, 0x0)
ioctl$FS_IOC_RESVSP(r0, 0x40305828, &(0x7f0000000040)={0x0, 0x0, 0x0, 0x4000006, 0x0, 0xa})

[ 2206.627887]  should_fail.cold+0x5/0xa
[ 2206.627913]  should_failslab+0x5/0x20
[ 2206.627931]  __kmalloc_track_caller+0x79/0x3c0
[ 2206.627947]  ? match_number+0xaf/0x1d0
[ 2206.627964]  ? kfree+0xd7/0x390
[ 2206.628000]  kmemdup_nul+0x2d/0xa0
[ 2206.628028]  match_number+0xaf/0x1d0
[ 2206.628055]  ? match_u64+0x190/0x190
[ 2206.628078]  ? __kmalloc_track_caller+0x2d4/0x3c0
[ 2206.628106]  ? memcpy+0x39/0x60
[ 2206.628131]  parse_opts.part.0+0x1f3/0x340
[ 2206.628153]  ? p9_fd_show_options+0x1c0/0x1c0
[ 2206.628178]  ? lockdep_hardirqs_on_prepare+0x277/0x3e0
[ 2206.628199]  ? trace_hardirqs_on+0x5b/0x180
[ 2206.628219]  ? kfree+0xd7/0x390
[ 2206.628250]  p9_fd_create+0x98/0x4a0
[ 2206.628268]  ? p9_conn_create+0x510/0x510
[ 2206.628283]  ? p9_client_create+0x798/0x1090
[ 2206.628300]  ? kfree+0xd7/0x390
[ 2206.628318]  ? do_raw_spin_unlock+0x4f/0x220
[ 2206.628346]  p9_client_create+0x7ff/0x1090
21:17:33 executing program 6:
r0 = syz_mount_image$vfat(&(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x0, 0x2, &(0x7f0000000180)=[{&(0x7f0000000140)="eb3c906d6b66732e66617400020801000470008400f801", 0x17}, {0x0, 0x0, 0x1000a00}], 0x0, &(0x7f0000000240)=ANY=[])
chdir(0x0)
openat2(r0, &(0x7f0000000100)='./file0\x00', &(0x7f00000001c0)={0x40000, 0x81}, 0x18)
mount$cgroup(0x0, 0x0, &(0x7f0000000400), 0x0, 0x0)
r1 = syz_io_uring_setup(0x22, &(0x7f0000000680)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000180)=<r2=>0x0, &(0x7f0000002a40)=<r3=>0x0)
r4 = io_uring_register$IORING_REGISTER_PERSONALITY(r1, 0x9, 0x0, 0x0)
r5 = socket$nl_netfilter(0x10, 0x3, 0xc)
syz_io_uring_submit(r2, r3, &(0x7f0000000400)=@IORING_OP_WRITEV={0x2, 0x0, 0x0, @fd=r5, 0x0, 0x0, 0x0, 0x0, 0x0, {0x0, r4}}, 0x0)
r6 = syz_io_uring_setup(0x22, &(0x7f0000000680)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000180), &(0x7f0000002a40))
r7 = io_uring_register$IORING_REGISTER_PERSONALITY(r6, 0x9, 0x0, 0x0)
syz_io_uring_submit(r2, 0x0, &(0x7f0000000440)=@IORING_OP_FSYNC={0x3, 0x2, 0x0, @fd_index=0x9, 0x0, 0x0, 0x0, 0x0, 0x1, {0x0, r7}}, 0x2)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r8 = openat(0xffffffffffffff9c, &(0x7f00000002c0)='./file1\x00', 0x105142, 0x0)
r9 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0)
sendfile(r8, r9, 0x0, 0x100000001)
newfstatat(0xffffffffffffff9c, &(0x7f0000000340)='./file1\x00', &(0x7f0000000380), 0x400)

[ 2206.628376]  ? p9_client_flush+0x430/0x430
[ 2206.628404]  ? lockdep_init_map_type+0x2c7/0x780
[ 2206.628421]  ? rcu_read_lock_sched_held+0x3e/0x80
21:17:33 executing program 5:
openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x105142, 0x0)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
pipe(&(0x7f00000001c0)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
mount$9p_fd(0x0, &(0x7f0000000040)='./file1\x00', &(0x7f00000000c0), 0x0, &(0x7f0000000280)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}}) (fail_nth: 30)
openat(0xffffffffffffffff, 0x0, 0x0, 0x0)

[ 2206.628446]  ? __raw_spin_lock_init+0x36/0x110
21:17:33 executing program 1:
openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x105142, 0x0)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
pipe(&(0x7f00000001c0))
mount$9p_fd(0x0, &(0x7f0000000040)='./file1\x00', &(0x7f00000000c0), 0x0, &(0x7f0000000280)={'trans=fd,', {}, 0x2c, {}, 0x2c, {[{@nodevmap}]}})

[ 2206.628472]  v9fs_session_init+0x1dd/0x16a0
[ 2206.628488]  ? irqentry_enter+0x26/0x60
[ 2206.628517]  ? asm_sysvec_apic_timer_interrupt+0x12/0x20
[ 2206.628535]  ? trace_hardirqs_on+0x5b/0x180
[ 2206.628555]  ? v9fs_show_options+0x690/0x690
[ 2206.628597]  ? kasan_unpoison_shadow+0x33/0x50
[ 2206.628617]  ? __kasan_kmalloc.constprop.0+0xc9/0xd0
[ 2206.628642]  v9fs_mount+0x79/0x8f0
[ 2206.628665]  ? v9fs_write_inode+0x60/0x60
[ 2206.628685]  legacy_get_tree+0x105/0x220
[ 2206.628709]  vfs_get_tree+0x8e/0x300
21:17:33 executing program 7:
r0 = perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
io_setup(0x7f, &(0x7f00000002c0)=<r1=>0x0)
io_submit(r1, 0x1, &(0x7f0000000340)=[&(0x7f0000000300)={0x0, 0x0, 0x0, 0x5, 0x0, r0, 0x0}])
io_setup(0x4, &(0x7f0000000000)=<r2=>0x0)
r3 = accept$unix(0xffffffffffffffff, &(0x7f0000000200), &(0x7f0000000280)=0x6e)
pipe(&(0x7f00000001c0)={<r4=>0xffffffffffffffff, <r5=>0xffffffffffffffff})
mount$9p_fd(0x0, &(0x7f0000000040)='./file1\x00', &(0x7f00000000c0), 0x0, &(0x7f0000000280)={'trans=fd,', {'rfdno', 0x3d, r4}, 0x2c, {'wfdno', 0x3d, r5}, 0x2c, {[{@nodevmap}]}})
pipe(&(0x7f00000001c0)={<r6=>0xffffffffffffffff, <r7=>0xffffffffffffffff})
mount$9p_fd(0x0, &(0x7f0000000040)='./file1\x00', &(0x7f00000000c0), 0x0, &(0x7f0000000280)={'trans=fd,', {'rfdno', 0x3d, r6}, 0x2c, {'wfdno', 0x3d, r7}, 0x2c, {[{@nodevmap}]}})
pipe(&(0x7f00000001c0)={<r8=>0xffffffffffffffff, <r9=>0xffffffffffffffff})
mount$9p_fd(0x0, &(0x7f0000000040)='./file1\x00', &(0x7f00000000c0), 0x0, &(0x7f0000000280)={'trans=fd,', {'rfdno', 0x3d, r8}, 0x2c, {'wfdno', 0x3d, r9}, 0x2c, {[{@nodevmap}]}})
ioctl$AUTOFS_DEV_IOCTL_SETPIPEFD(r5, 0xc0189378, &(0x7f0000002940)={{0x1, 0x1, 0x18, <r10=>r7, {r3}}, './file1\x00'})
io_submit(r1, 0x5, &(0x7f00000029c0)=[&(0x7f00000025c0)={0x0, 0x0, 0x0, 0x7, 0x8, r5, &(0x7f00000015c0)="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", 0x1000, 0xfffffffffffffffb, 0x0, 0x3, r5}, &(0x7f0000002700)={0x0, 0x0, 0x0, 0x8, 0x3, r6, &(0x7f0000002600)="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", 0xfb, 0xb5, 0x0, 0x3}, &(0x7f0000002780)={0x0, 0x0, 0x0, 0x6, 0x4, r4, &(0x7f0000002740), 0x0, 0x5}, &(0x7f0000002880)={0x0, 0x0, 0x0, 0x6, 0x2, 0xffffffffffffffff, &(0x7f00000027c0)="012476ab795d93bdcf6df4ab84bbbf64058a5d2b341a73efa376bf649a0619b6d20c3d515e8463b892c6fd3d8dbfb7c711dcf142c9ac10727e9238f38281fb97a78555d2edbb88262f80fd6224b6d6acb1396dc94564ca4320d9025db4d3e0f5a84a7369e9bcc39aa94ffec59799a45145acb3d734b7258eb2ee720033da1a221ce9cb950a736913f17e2cbc27e48c", 0x8f, 0x4, 0x0, 0x2, r8}, &(0x7f0000002980)={0x0, 0x0, 0x0, 0x6, 0x2, r7, &(0x7f00000028c0)="6aba69f8461c257ecf1cf7c6bdc9ca9db4b49eccfac74117063cb1ed2b2c5694ef0d2942cf9d9ec7c1cd336a74f1902b8457e21a959b06716c34674981ba7fbcd61193e5f76ddfff73740588f0", 0x4d, 0x4, 0x0, 0x2, r10}])
io_submit(r2, 0x4, &(0x7f0000001580)=[&(0x7f00000001c0)={0x0, 0x0, 0x0, 0x0, 0x7ff, r0, &(0x7f00000000c0)="0d8b8784988074dcd57fdd290637a199d1e7a540d905cf6f241ed2e50e96cb2cb1849d2f09b4e33f94125f97b8786c53132fcef4aa49e44e30df67b8892c765ede4085f236e1f5944508af1f5aa1cef7c6317bf1c3354245806feb5fcd68326429ae3919a8a48f94d789f530efe76549a6a94b62b7ae5f6fe62f14a38f2b2984e50e727161415865bc74099f929f4a875496696bd1d9677546fd20115c0a31fe5e3f522ad8fe72048d3af12767ec85b5b5ea36743967a99f99a8c31fd9b83891092962e9fd927b94b54f8bed5724", 0xce, 0x100000001, 0x0, 0x3}, &(0x7f0000001380)={0x0, 0x0, 0x0, 0x8, 0x2, r3, &(0x7f0000000380)="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", 0x1000, 0x10001, 0x0, 0x2, r4}, &(0x7f0000001400)={0x0, 0x0, 0x0, 0x8, 0x8000, r0, &(0x7f00000013c0)="dc3cbca046", 0x5, 0x8, 0x0, 0x2}, &(0x7f0000001540)={0x0, 0x0, 0x0, 0x8, 0x101, 0xffffffffffffffff, &(0x7f0000001440)="adf889bb8fb7b67d6d2259dc0e640519aa0196bfa403f3adea5d5f1122ad39f07ea48203964783fa234a745b90fe90bd341392c8b2559c131e48a0a4847f0d494297a326e0e0d59956fcef7f426c559d9108ec00c429987b32bfa35e9b255f5a176e87473bd2dab7a5b8129d131161e258ccc3e1368f6188562ec6b2140190c279df261075b1ca39dca5ba5aa94ef9ed770099c9e04601737b4d4f2fedaa2758e224d3dc9cdc55fc5437328df2805f92c9b94e7750f27e309995c34b94a25666266d1c96e8ccf68e1e", 0xc9, 0x0, 0x0, 0x6, r7}])
openat(0xffffffffffffffff, 0x0, 0x0, 0x10)

[ 2206.628730]  path_mount+0x13be/0x20b0
[ 2206.628753]  ? strncpy_from_user+0x9e/0x470
[ 2206.628775]  ? finish_automount+0xa40/0xa40
[ 2206.628797]  ? getname_flags.part.0+0x1dd/0x4f0
21:17:33 executing program 2:
syz_mount_image$vfat(&(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x0, 0x2, &(0x7f0000000180)=[{&(0x7f0000000140)="eb3c906d6b66732e66617400020801000470008400f801", 0x17}, {0x0, 0x0, 0x1000a00}], 0x0, &(0x7f0000000240)=ANY=[])
chdir(&(0x7f0000000040)='./file0\x00')
r0 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x105142, 0x0)
ioctl$FS_IOC_RESVSP(r0, 0x40305828, &(0x7f0000000040)={0x0, 0x0, 0x0, 0x4000006, 0x0, 0xd})

[ 2206.628814]  ? _copy_from_user+0xfb/0x1b0
[ 2206.628847]  __x64_sys_mount+0x282/0x300
[ 2206.628867]  ? copy_mnt_ns+0xa00/0xa00
[ 2206.628893]  ? rcu_read_lock_sched_held+0x3e/0x80
21:17:33 executing program 0:
syz_mount_image$vfat(&(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x0, 0x2, &(0x7f0000000180)=[{&(0x7f0000000140)="eb3c906d6b66732e66617400020801000470008400f801", 0x17}, {0x0, 0x0, 0x1000a00}], 0x0, &(0x7f0000000240)=ANY=[])
chdir(&(0x7f0000000040)='./file0\x00')
mount$cgroup(0x0, 0x0, &(0x7f0000000400), 0x0, 0x0)
syz_io_uring_setup(0x22, &(0x7f0000000680)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000180)=<r0=>0x0, &(0x7f0000002a40)=<r1=>0x0)
r2 = io_uring_register$IORING_REGISTER_PERSONALITY(0xffffffffffffffff, 0x9, 0x0, 0x0)
r3 = socket$nl_netfilter(0x10, 0x3, 0xc)
syz_io_uring_submit(r0, r1, &(0x7f0000000400)=@IORING_OP_WRITEV={0x2, 0x0, 0x0, @fd=r3, 0x0, 0x0, 0x0, 0x0, 0x0, {0x0, r2}}, 0x0)
r4 = syz_io_uring_setup(0x22, &(0x7f0000000680)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000180), &(0x7f0000002a40))
r5 = io_uring_register$IORING_REGISTER_PERSONALITY(r4, 0x9, 0x0, 0x0)
syz_io_uring_submit(r0, 0x0, &(0x7f0000000440)=@IORING_OP_FSYNC={0x3, 0x2, 0x0, @fd_index=0x9, 0x0, 0x0, 0x0, 0x0, 0x1, {0x0, r5}}, 0x2)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r6 = openat(0xffffffffffffff9c, &(0x7f00000002c0)='./file1\x00', 0x105142, 0x0)
r7 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0)
mount(&(0x7f0000000200)=ANY=[@ANYBLOB="2f6f651317868af191bdb2"], &(0x7f0000000240)='./file0\x00', &(0x7f0000000280)='nfsd\x00', 0x800000, &(0x7f0000000300)='cgroup\x00')
sendfile(r6, r7, 0x0, 0x100000001)
newfstatat(0xffffffffffffff9c, &(0x7f0000000340)='./file1\x00', &(0x7f0000000380), 0x400)

[ 2206.628918]  do_syscall_64+0x33/0x40
[ 2206.628938]  entry_SYSCALL_64_after_hwframe+0x61/0xc6
[ 2206.628950] RIP: 0033:0x7f9bca359b19
21:17:33 executing program 3:
openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x105142, 0x0)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x400}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
pipe(&(0x7f00000001c0)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
mount$9p_fd(0x9, &(0x7f0000000040)='./file1\x00', &(0x7f00000000c0), 0x0, &(0x7f0000000280)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {}, 0x2c, {[{@nodevmap}]}})
openat(r1, &(0x7f0000000180)='./file1\x00', 0x0, 0x0)

[ 2206.628972] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 2206.628988] RSP: 002b:00007f9bc78cf188 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5
[ 2206.629015] RAX: ffffffffffffffda RBX: 00007f9bca46cf60 RCX: 00007f9bca359b19
[ 2206.629026] RDX: 00000000200000c0 RSI: 0000000020000040 RDI: 0000000000000000
[ 2206.629037] RBP: 00007f9bc78cf1d0 R08: 0000000020000280 R09: 0000000000000000
[ 2206.629048] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[ 2206.629060] R13: 00007fffb54b7e9f R14: 00007f9bc78cf300 R15: 0000000000022000
[ 2206.629335] 9pnet: Insufficient options for proto=fd
[ 2206.940201] 9pnet: Insufficient options for proto=fd
[ 2206.953156] FAULT_INJECTION: forcing a failure.
[ 2206.953156] name fail_usercopy, interval 1, probability 0, space 0, times 0
[ 2206.953183] CPU: 1 PID: 17611 Comm: syz-executor.1 Not tainted 5.10.172 #1
[ 2206.953195] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 2206.953203] Call Trace:
[ 2206.953233]  dump_stack+0x107/0x167
[ 2206.953262]  should_fail.cold+0x5/0xa
[ 2206.953293]  _copy_from_user+0x2e/0x1b0
[ 2206.953323]  kstrtouint_from_user+0xbd/0x220
[ 2206.953348]  ? kstrtou8_from_user+0x210/0x210
[ 2206.953385]  ? lock_acquire+0x197/0x490
[ 2206.953408]  ? ksys_write+0x12d/0x260
[ 2206.953447]  proc_fail_nth_write+0x78/0x220
[ 2206.953470]  ? proc_task_getattr+0x1f0/0x1f0
[ 2206.953495]  ? __fget_files+0x296/0x480
[ 2206.953532]  ? proc_task_getattr+0x1f0/0x1f0
[ 2206.953550]  vfs_write+0x29a/0xa30
[ 2206.953582]  ksys_write+0x12d/0x260
[ 2206.953605]  ? __ia32_sys_read+0xb0/0xb0
[ 2206.953667]  ? rcu_read_lock_sched_held+0x3e/0x80
[ 2206.953698]  do_syscall_64+0x33/0x40
[ 2206.953722]  entry_SYSCALL_64_after_hwframe+0x61/0xc6
[ 2206.953737] RIP: 0033:0x7f9bca30c5ff
[ 2206.953761] Code: 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 99 fd ff ff 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 b8 01 00 00 00 0f 05 <48> 3d 00 f0 ff ff 77 31 44 89 c7 48 89 44 24 08 e8 cc fd ff ff 48
[ 2206.953773] RSP: 002b:00007f9bc78cf170 EFLAGS: 00000293 ORIG_RAX: 0000000000000001
[ 2206.953799] RAX: ffffffffffffffda RBX: 0000000000000000 RCX: 00007f9bca30c5ff
[ 2206.953812] RDX: 0000000000000001 RSI: 00007f9bc78cf1e0 RDI: 0000000000000007
[ 2206.953825] RBP: 00007f9bc78cf1d0 R08: 0000000000000000 R09: 0000000000000000
21:17:33 executing program 5:
openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x105142, 0x0)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
pipe(&(0x7f00000001c0)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
mount$9p_fd(0x0, &(0x7f0000000040)='./file1\x00', &(0x7f00000000c0), 0x0, &(0x7f0000000280)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}}) (fail_nth: 31)
openat(0xffffffffffffffff, 0x0, 0x0, 0x0)

[ 2206.953838] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000002
[ 2206.953851] R13: 00007fffb54b7e9f R14: 00007f9bc78cf300 R15: 0000000000022000
[ 2207.239950] 9pnet: Insufficient options for proto=fd
[ 2207.247624] FAULT_INJECTION: forcing a failure.
[ 2207.247624] name failslab, interval 1, probability 0, space 0, times 0
[ 2207.247733] CPU: 0 PID: 17633 Comm: syz-executor.5 Not tainted 5.10.172 #1
[ 2207.247744] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 2207.247750] Call Trace:
[ 2207.247776]  dump_stack+0x107/0x167
[ 2207.247800]  should_fail.cold+0x5/0xa
[ 2207.247827]  should_failslab+0x5/0x20
[ 2207.247846]  __kmalloc_track_caller+0x79/0x3c0
[ 2207.247864]  ? match_number+0xaf/0x1d0
[ 2207.247880]  ? kfree+0xd7/0x390
[ 2207.247904]  kmemdup_nul+0x2d/0xa0
[ 2207.247922]  match_number+0xaf/0x1d0
[ 2207.247941]  ? match_u64+0x190/0x190
[ 2207.247958]  ? __kmalloc_track_caller+0x2d4/0x3c0
[ 2207.247980]  ? memcpy+0x39/0x60
[ 2207.248005]  parse_opts.part.0+0x1f3/0x340
[ 2207.248027]  ? p9_fd_show_options+0x1c0/0x1c0
[ 2207.248054]  ? lockdep_hardirqs_on_prepare+0x277/0x3e0
[ 2207.248075]  ? trace_hardirqs_on+0x5b/0x180
[ 2207.248095]  ? kfree+0xd7/0x390
[ 2207.248123]  p9_fd_create+0x98/0x4a0
[ 2207.248141]  ? p9_conn_create+0x510/0x510
21:17:33 executing program 1:
openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x105142, 0x0)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
pipe(&(0x7f00000001c0))
mount$9p_fd(0x2, &(0x7f0000000040)='./file1\x00', &(0x7f00000000c0), 0x0, &(0x7f0000000280)={'trans=fd,', {}, 0x2c, {}, 0x2c, {[{@nodevmap}]}})

[ 2207.248156]  ? p9_client_create+0x798/0x1090
[ 2207.248174]  ? kfree+0xd7/0x390
[ 2207.248191]  ? do_raw_spin_unlock+0x4f/0x220
[ 2207.248217]  p9_client_create+0x7ff/0x1090
[ 2207.248245]  ? p9_client_flush+0x430/0x430
[ 2207.248272]  ? lockdep_init_map_type+0x2c7/0x780
[ 2207.248291]  ? rcu_read_lock_sched_held+0x3e/0x80
[ 2207.248315]  ? __raw_spin_lock_init+0x36/0x110
[ 2207.248340]  v9fs_session_init+0x1dd/0x16a0
[ 2207.248374]  ? kmem_cache_alloc_trace+0x151/0x360
[ 2207.248391]  ? v9fs_show_options+0x690/0x690
[ 2207.248433]  ? kasan_unpoison_shadow+0x33/0x50
[ 2207.248453]  ? __kasan_kmalloc.constprop.0+0xc9/0xd0
[ 2207.248477]  v9fs_mount+0x79/0x8f0
[ 2207.248499]  ? v9fs_write_inode+0x60/0x60
[ 2207.248519]  legacy_get_tree+0x105/0x220
[ 2207.248543]  vfs_get_tree+0x8e/0x300
[ 2207.248564]  path_mount+0x13be/0x20b0
[ 2207.248587]  ? strncpy_from_user+0x9e/0x470
[ 2207.248609]  ? finish_automount+0xa40/0xa40
[ 2207.248631]  ? getname_flags.part.0+0x1dd/0x4f0
[ 2207.248648]  ? _copy_from_user+0xfb/0x1b0
[ 2207.248679]  __x64_sys_mount+0x282/0x300
[ 2207.248699]  ? copy_mnt_ns+0xa00/0xa00
[ 2207.248724]  ? rcu_read_lock_sched_held+0x3e/0x80
[ 2207.248748]  do_syscall_64+0x33/0x40
[ 2207.248768]  entry_SYSCALL_64_after_hwframe+0x61/0xc6
[ 2207.248781] RIP: 0033:0x7f38308e8b19
[ 2207.248801] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 2207.248811] RSP: 002b:00007f382de5e188 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5
[ 2207.248832] RAX: ffffffffffffffda RBX: 00007f38309fbf60 RCX: 00007f38308e8b19
[ 2207.248843] RDX: 00000000200000c0 RSI: 0000000020000040 RDI: 0000000000000000
[ 2207.248854] RBP: 00007f382de5e1d0 R08: 0000000020000280 R09: 0000000000000000
[ 2207.248865] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[ 2207.248876] R13: 00007ffca2bf07df R14: 00007f382de5e300 R15: 0000000000022000
[ 2207.249095] 9pnet: Insufficient options for proto=fd
[ 2207.585551] FAULT_INJECTION: forcing a failure.
[ 2207.585551] name failslab, interval 1, probability 0, space 0, times 0
[ 2207.588238] CPU: 0 PID: 17685 Comm: syz-executor.5 Not tainted 5.10.172 #1
[ 2207.589689] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 2207.591349] Call Trace:
[ 2207.591886]  dump_stack+0x107/0x167
[ 2207.592619]  should_fail.cold+0x5/0xa
[ 2207.593386]  ? create_object.isra.0+0x3a/0xa20
[ 2207.594314]  should_failslab+0x5/0x20
[ 2207.595075]  kmem_cache_alloc+0x5b/0x360
[ 2207.595891]  ? trace_hardirqs_on+0x5b/0x180
[ 2207.596755]  create_object.isra.0+0x3a/0xa20
[ 2207.597631]  ? __kasan_kmalloc.constprop.0+0xc9/0xd0
[ 2207.598657]  __kmalloc_track_caller+0x177/0x3c0
[ 2207.599583]  ? match_number+0xaf/0x1d0
[ 2207.600370]  kmemdup_nul+0x2d/0xa0
[ 2207.601076]  match_number+0xaf/0x1d0
[ 2207.601832]  ? match_u64+0x190/0x190
[ 2207.602573]  ? __kmalloc_track_caller+0x2d4/0x3c0
[ 2207.603536]  ? memcpy+0x39/0x60
[ 2207.604201]  parse_opts.part.0+0x1f3/0x340
[ 2207.605044]  ? p9_fd_show_options+0x1c0/0x1c0
[ 2207.605949]  ? lockdep_hardirqs_on_prepare+0x277/0x3e0
[ 2207.606985]  ? trace_hardirqs_on+0x5b/0x180
[ 2207.607843]  ? kfree+0xd7/0x390
[ 2207.608508]  p9_fd_create+0x98/0x4a0
[ 2207.609245]  ? p9_conn_create+0x510/0x510
[ 2207.610086]  ? p9_client_create+0x798/0x1090
[ 2207.610956]  ? kfree+0xd7/0x390
[ 2207.611610]  ? do_raw_spin_unlock+0x4f/0x220
[ 2207.612493]  p9_client_create+0x7ff/0x1090
[ 2207.613343]  ? p9_client_flush+0x430/0x430
[ 2207.614200]  ? lockdep_init_map_type+0x2c7/0x780
[ 2207.615134]  ? rcu_read_lock_sched_held+0x3e/0x80
[ 2207.616090]  ? __raw_spin_lock_init+0x36/0x110
[ 2207.617002]  v9fs_session_init+0x1dd/0x16a0
[ 2207.617883]  ? kmem_cache_alloc_trace+0x151/0x360
[ 2207.618839]  ? v9fs_show_options+0x690/0x690
[ 2207.619736]  ? kasan_unpoison_shadow+0x33/0x50
[ 2207.620643]  ? __kasan_kmalloc.constprop.0+0xc9/0xd0
[ 2207.621671]  v9fs_mount+0x79/0x8f0
[ 2207.622381]  ? v9fs_write_inode+0x60/0x60
[ 2207.623202]  legacy_get_tree+0x105/0x220
[ 2207.624014]  vfs_get_tree+0x8e/0x300
[ 2207.624755]  path_mount+0x13be/0x20b0
[ 2207.625516]  ? strncpy_from_user+0x9e/0x470
[ 2207.626383]  ? finish_automount+0xa40/0xa40
[ 2207.627241]  ? getname_flags.part.0+0x1dd/0x4f0
[ 2207.628161]  ? _copy_from_user+0xfb/0x1b0
[ 2207.629004]  __x64_sys_mount+0x282/0x300
[ 2207.629823]  ? copy_mnt_ns+0xa00/0xa00
[ 2207.630616]  ? rcu_read_lock_sched_held+0x3e/0x80
[ 2207.631581]  do_syscall_64+0x33/0x40
[ 2207.632324]  entry_SYSCALL_64_after_hwframe+0x61/0xc6
[ 2207.633366] RIP: 0033:0x7f38308e8b19
[ 2207.634136] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 2207.637832] RSP: 002b:00007f382de5e188 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5
[ 2207.639525] RAX: ffffffffffffffda RBX: 00007f38309fbf60 RCX: 00007f38308e8b19
[ 2207.641116] RDX: 00000000200000c0 RSI: 0000000020000040 RDI: 0000000000000000
[ 2207.642712] RBP: 00007f382de5e1d0 R08: 0000000020000280 R09: 0000000000000000
[ 2207.644301] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[ 2207.645906] R13: 00007ffca2bf07df R14: 00007f382de5e300 R15: 0000000000022000
21:17:48 executing program 5:
openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x105142, 0x0)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
pipe(&(0x7f00000001c0)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
mount$9p_fd(0x0, &(0x7f0000000040)='./file1\x00', &(0x7f00000000c0), 0x0, &(0x7f0000000280)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}}) (fail_nth: 32)
openat(0xffffffffffffffff, 0x0, 0x0, 0x0)

21:17:48 executing program 6:
r0 = syz_mount_image$vfat(&(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x0, 0x2, &(0x7f0000000180)=[{&(0x7f0000000140)="eb3c906d6b66732e66617400020801000470008400f801", 0x17}, {0x0, 0x0, 0x1000a00}], 0x0, &(0x7f0000000240)=ANY=[])
chdir(0x0)
openat2(r0, &(0x7f0000000100)='./file0\x00', &(0x7f00000001c0)={0x40000, 0x81}, 0x18)
mount$cgroup(0x0, 0x0, &(0x7f0000000400), 0x0, 0x0)
r1 = syz_io_uring_setup(0x22, &(0x7f0000000680)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000180)=<r2=>0x0, &(0x7f0000002a40)=<r3=>0x0)
r4 = io_uring_register$IORING_REGISTER_PERSONALITY(r1, 0x9, 0x0, 0x0)
r5 = socket$nl_netfilter(0x10, 0x3, 0xc)
syz_io_uring_submit(r2, r3, &(0x7f0000000400)=@IORING_OP_WRITEV={0x2, 0x0, 0x0, @fd=r5, 0x0, 0x0, 0x0, 0x0, 0x0, {0x0, r4}}, 0x0)
r6 = syz_io_uring_setup(0x22, &(0x7f0000000680)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000180), &(0x7f0000002a40))
r7 = io_uring_register$IORING_REGISTER_PERSONALITY(r6, 0x9, 0x0, 0x0)
syz_io_uring_submit(r2, 0x0, &(0x7f0000000440)=@IORING_OP_FSYNC={0x3, 0x2, 0x0, @fd_index=0x9, 0x0, 0x0, 0x0, 0x0, 0x1, {0x0, r7}}, 0x2)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r8 = openat(0xffffffffffffff9c, &(0x7f00000002c0)='./file1\x00', 0x105142, 0x0)
r9 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0)
sendfile(r8, r9, 0x0, 0x100000001)
newfstatat(0xffffffffffffff9c, &(0x7f0000000340)='./file1\x00', &(0x7f0000000380), 0x400)

21:17:48 executing program 7:
io_setup(0x7f, &(0x7f00000002c0)=<r0=>0x0)
io_submit(r0, 0x1, &(0x7f0000000340)=[&(0x7f0000000300)={0x0, 0x0, 0x0, 0x5, 0x0, 0xffffffffffffffff, 0x0}])
io_setup(0xbc, &(0x7f0000000a00))
bind$bt_hci(0xffffffffffffffff, &(0x7f0000000000)={0x1f, 0x2}, 0x6)
r1 = openat(0xffffffffffffffff, 0x0, 0x0, 0x10)
io_setup(0x7, &(0x7f0000000040)=<r2=>0x0)
pipe(&(0x7f00000001c0)={<r3=>0xffffffffffffffff, <r4=>0xffffffffffffffff})
mount$9p_fd(0x0, &(0x7f0000000040)='./file1\x00', &(0x7f00000000c0), 0x0, &(0x7f0000000ac0)=ANY=[@ANYBLOB="25c312c795750985977f450a534c43b732b8c186d365f232a61ea6f092a22c32175f74ca3607f490addbac0daa3c235e2084613219cd8ab1931927cb7c2002548a22c03c743aa35341e4a6b7047797c9628807e281686ac19753420313639843482103ced673", @ANYRESHEX=r3, @ANYBLOB=',wfdno=', @ANYRESHEX=r4, @ANYBLOB=',nodevmap,\x00'])
r5 = socket$packet(0x11, 0x3, 0x300)
r6 = openat$vcsu(0xffffffffffffff9c, &(0x7f0000000440), 0x0, 0x0)
r7 = perf_event_open(&(0x7f0000001d80)={0x4, 0x80, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x43c46, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7fffffff}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
mmap(&(0x7f0000ffc000/0x2000)=nil, 0x2000, 0x0, 0x13, r7, 0x0)
perf_event_open(&(0x7f0000001d80)={0x2, 0x80, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, r7, 0x2)
pipe(&(0x7f00000001c0)={<r8=>0xffffffffffffffff, <r9=>0xffffffffffffffff})
mount$9p_fd(0x0, &(0x7f0000000040)='./file1\x00', &(0x7f00000000c0), 0x0, &(0x7f0000000bc0)=ANY=[@ANYBLOB='trans=fd,rfdno=', @ANYRESHEX=r8, @ANYBLOB="00000000080000762975352193fab46abc44587041e65fc022310c845901f1674c3e4b63353e5063826a3838071f6f58254e0a147845d6adb07494ced3e03bdb134c1396926af07977a8cb56c77529a45496f0af4c5f6d667d2e43eedb76dedb9390c36e8446f5eb4548501a28d70dbb761b70925e8b4713d5805bad062301cc652ecc0000000000", @ANYRESHEX=r9, @ANYBLOB=',nodevmap,\x00'])
ioctl$sock_bt_hci(0xffffffffffffffff, 0x400448e7, &(0x7f0000000a40)="58635edfb2b155492dd34cdb92691782e36edb6292290a49e7b2fdd8ec6b696951bdf446c408e5eb83ccbff325884a55cfa1b798129fcfbe79dcf99cb22426d0a8ff0c0d0022e6c09b03")
io_submit(r2, 0x9, &(0x7f0000000980)=[&(0x7f0000000140)={0x0, 0x0, 0x0, 0x1, 0x5, 0xffffffffffffffff, &(0x7f0000000080)="0700b559d1b06522f970c047bcd62d26e7ba6da5b9b6264f9765e7183304f2701986cd657fa1106a4548b97841467ecbd8033fe33a5c9ebc356fd3ccfb38e07d248223d0f5cb8059e6e70455d6cc5e973752523cbde3a73b8dd695170baafe3bc532c2a6ea2f7e38c75ce7b7d0b375604eb0c576ea0c56445466d69854914a3388e585f0ad7325e1a04e1ebd6a9822622f9cee1d2bdc50950eb0abf9efcf6704456de1d8eed3a18718f188fd7bf9046b575cb7f6b33eae6724f502a67ea9bf", 0xbf, 0x0, 0x0, 0x3, r4}, &(0x7f0000000280)={0x0, 0x0, 0x0, 0x8, 0x9b, r5, &(0x7f0000000180)="fed97030f176c612b7642a672006956b97b6df5006236f27a4e97094f76af723bcd3d8813bac53c89711c2f09811220a236f6aa35919d04b654e5273a870c9fd35e44179307066d5ed938212fc93ad3427c31a4db167616929a51232c62b3056bb1a805cc92d4fc15f12712054632ae6b9606e6cd8b004c6a4798e8e24cede8d90bb653ddfb770e9390d2134fd2e6604778821416e373cf03cef76d9276b38c93b15509de0f97ad0b3e69eaf519c0bdedb684fedd9802e9721c472dbc9ba8e43c64d2a64812fdc5397f2ccef2418e44c24cf5cf0f599e0", 0xd7, 0x6, 0x0, 0x0, r1}, &(0x7f0000000480)={0x0, 0x0, 0x0, 0x0, 0x4, r1, &(0x7f0000000380)="4ff1694717b639741ab4996ac58fdfd291dccfb829af62a0f3280fc9ebfbb93d477984cf77184e930a57bc7b39a2878da603b9789bb2c61a712a83dc7c500e88723eac2de2312231dfe9b3391da72fbeba10e94638ac49b884d240e4bab38e710cbd19d937c04aab4faf7a43f589382e36f1643eb6ad8725fef4cd8fb7df9361298f9a8f2489766ef8d5ce8312c787b13516e96310", 0x95, 0x6, 0x0, 0x1, r6}, &(0x7f0000000540)={0x0, 0x0, 0x0, 0x8, 0x77, r7, &(0x7f00000004c0)="1fd76af00350e4507146e7bbe7e8bcaee586ac171fb9877a58cf1e3844b3c93dfc6435279e4146cface54ffa1f316bc76ac1b88f7f9be62d20683ba1a033cd2465c3a0368f9983f78d5cadbd85364118be70617c76f21d0c3aefebe91835f36a05a5a0e3e024b3ac3443d51f87bf7b027c36a6d06087", 0x76, 0x7, 0x0, 0x3, r1}, &(0x7f0000000680)={0x0, 0x0, 0x0, 0x8, 0x800, r1, &(0x7f0000000580)="5c322f29a54069e5ea33461fe71a3648ae62bbf3f612bafcac46b075d38d7bce2c47eb15679ac96288ef5f7ab7b54434163f38373b785c0fc128c3facb4b582870154db8df07462065c888fb69009f465af9867221e9a763603498b36405e43587a394c1cf1a450a24270ce0b2a65f54d390c7e86825f82bccf813c02c3d8880af9c0ecc79b1e6627a134b5cdb8c222f5ad9480517be7d2cd923ba69921ca36936917a4f690171650022c061ed2a1aec03802a341aa592ec74523726c53605c2b7c82106520d62cb5e35f01203ca69031764bc3a01ea398a3a43f78f0ef0eda5d40fc724e5272e06", 0xe8, 0x4b3e, 0x0, 0x1, r1}, &(0x7f0000000700)={0x0, 0x0, 0x0, 0x1, 0x9, r1, &(0x7f00000006c0)="44572a2404eeaa07277891ca0550267ce6d2eec5748cb8e005", 0x19, 0x6, 0x0, 0x3}, &(0x7f00000007c0)={0x0, 0x0, 0x0, 0x5, 0x3, 0xffffffffffffffff, &(0x7f0000000740)="06d9d93250474f7154263bf249cb8f89752e745007ec86b79cf651b0f5cb811383d2d9b0c7f918f73cf6aba980082107209f69b7c9183c01627ff2fbea97371739cc2b48cb66ddc36b424e444ae9b79843aa94e64437661ea804c69bfb9ad00e1a3e6f3dc0", 0x65, 0x7fffffff, 0x0, 0x3}, &(0x7f0000000880)={0x0, 0x0, 0x0, 0x5, 0xfff, r1, &(0x7f0000000800)="078dff258184e6af48e22202adb7e1a1b89f3711d8cb8013a3755eea0dd740d732e59db6ada222a7ec0357096d1e3f99ac92d792c51354705fcbc94433fedb824c852ef75c63b791b570042d6f60186ef350a80b58b57db2846a51065aad417708ee87d5da9f34e02954ffe434f559b3145b1408487de0", 0x77, 0x9120, 0x0, 0x1, r1}, &(0x7f0000000940)={0x0, 0x0, 0x0, 0x3, 0xfbff, r1, &(0x7f00000008c0)="aa92090cada21132895760557ef340040da390750b09f88181d855aeebe05875399ef74e0aabbffa11051784713c7b2a7c4a4a9464b0b13f93acab332d9f30ed91c9", 0x42, 0x9, 0x0, 0x0, r8}])
mmap(&(0x7f0000ffc000/0x2000)=nil, 0x2000, 0x1000003, 0x13, 0xffffffffffffffff, 0x0)
perf_event_open(&(0x7f0000001d80)={0x2, 0x80, 0x70, 0x0, 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x2)
ioctl$BTRFS_IOC_SCRUB_CANCEL(0xffffffffffffffff, 0x941c, 0x0)

21:17:48 executing program 1:
openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x105142, 0x0)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
pipe(&(0x7f00000001c0))
mount$9p_fd(0x3, &(0x7f0000000040)='./file1\x00', &(0x7f00000000c0), 0x0, &(0x7f0000000280)={'trans=fd,', {}, 0x2c, {}, 0x2c, {[{@nodevmap}]}})

21:17:48 executing program 0:
syz_mount_image$vfat(&(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x0, 0x2, &(0x7f0000000180)=[{&(0x7f0000000140)="eb3c906d6b66732e66617400020801000470008400f801", 0x17}, {0x0, 0x0, 0x1000a00}], 0x0, &(0x7f0000000240)=ANY=[])
chdir(&(0x7f0000000040)='./file0\x00')
mount$cgroup(0x0, 0x0, &(0x7f0000000400), 0x0, 0x0)
r0 = syz_io_uring_setup(0x22, &(0x7f0000000680)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000180)=<r1=>0x0, &(0x7f0000002a40)=<r2=>0x0)
r3 = io_uring_register$IORING_REGISTER_PERSONALITY(r0, 0x9, 0x0, 0x0)
r4 = socket$nl_netfilter(0x10, 0x3, 0xc)
syz_io_uring_submit(0x0, r2, &(0x7f0000000400)=@IORING_OP_WRITEV={0x2, 0x0, 0x0, @fd=r4, 0x0, 0x0, 0x0, 0x0, 0x0, {0x0, r3}}, 0x0)
r5 = syz_io_uring_setup(0x22, &(0x7f0000000680)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000180), &(0x7f0000002a40))
r6 = io_uring_register$IORING_REGISTER_PERSONALITY(r5, 0x9, 0x0, 0x0)
syz_io_uring_submit(r1, 0x0, &(0x7f0000000440)=@IORING_OP_FSYNC={0x3, 0x2, 0x0, @fd_index=0x9, 0x0, 0x0, 0x0, 0x0, 0x1, {0x0, r6}}, 0x2)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r7 = openat(0xffffffffffffff9c, &(0x7f00000002c0)='./file1\x00', 0x105142, 0x0)
r8 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0)
mount(&(0x7f0000000200)=ANY=[@ANYBLOB="2f6f651317868af191bdb2"], &(0x7f0000000240)='./file0\x00', &(0x7f0000000280)='nfsd\x00', 0x800000, &(0x7f0000000300)='cgroup\x00')
sendfile(r7, r8, 0x0, 0x100000001)
newfstatat(0xffffffffffffff9c, &(0x7f0000000340)='./file1\x00', &(0x7f0000000380), 0x400)

21:17:48 executing program 3:
openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x105142, 0x0)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x400}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
pipe(&(0x7f00000001c0)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
mount$9p_fd(0xa, &(0x7f0000000040)='./file1\x00', &(0x7f00000000c0), 0x0, &(0x7f0000000280)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {}, 0x2c, {[{@nodevmap}]}})
openat(r1, &(0x7f0000000180)='./file1\x00', 0x0, 0x0)

21:17:48 executing program 2:
syz_mount_image$vfat(&(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x0, 0x2, &(0x7f0000000180)=[{&(0x7f0000000140)="eb3c906d6b66732e66617400020801000470008400f801", 0x17}, {0x0, 0x0, 0x1000a00}], 0x0, &(0x7f0000000240)=ANY=[])
chdir(&(0x7f0000000040)='./file0\x00')
r0 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x105142, 0x0)
ioctl$FS_IOC_RESVSP(r0, 0x40305828, &(0x7f0000000040)={0x0, 0x0, 0x0, 0x4000006, 0x0, 0xf})

21:17:48 executing program 4:
openat$vcs(0xffffffffffffff9c, &(0x7f0000000040), 0x0, 0x0)
openat$sr(0xffffffffffffff9c, &(0x7f00000035c0), 0x0, 0x0)
openat$sr(0xffffffffffffff9c, &(0x7f00000000c0), 0x224400, 0x0)
openat$rtc(0xffffffffffffff9c, &(0x7f0000000200), 0x0, 0x0)
pipe(&(0x7f00000001c0))
open(&(0x7f00000016c0)='./cgroup.net/cgroup.procs\x00', 0x0, 0x0)
pselect6(0x40, &(0x7f0000000180), &(0x7f00000001c0)={0x3fc, 0x0, 0x0, 0x0, 0x0, 0x0, 0xa}, 0x0, 0x0, 0x0)

[ 2222.281971] FAULT_INJECTION: forcing a failure.
[ 2222.281971] name failslab, interval 1, probability 0, space 0, times 0
[ 2222.283771] CPU: 0 PID: 17775 Comm: syz-executor.5 Not tainted 5.10.172 #1
[ 2222.285729] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 2222.288335] Call Trace:
[ 2222.289146]  dump_stack+0x107/0x167
[ 2222.290253]  should_fail.cold+0x5/0xa
[ 2222.291452]  ? rcu_all_qs+0x7/0xb0
[ 2222.292514]  ? p9_fd_create+0x161/0x4a0
[ 2222.293635]  should_failslab+0x5/0x20
[ 2222.294838]  kmem_cache_alloc_trace+0x55/0x360
[ 2222.296268]  p9_fd_create+0x161/0x4a0
[ 2222.297437]  ? p9_conn_create+0x510/0x510
[ 2222.298751]  ? p9_client_create+0x798/0x1090
[ 2222.300105]  ? kfree+0xd7/0x390
[ 2222.301192]  ? do_raw_spin_unlock+0x4f/0x220
[ 2222.302619]  p9_client_create+0x7ff/0x1090
[ 2222.303949]  ? p9_client_flush+0x430/0x430
[ 2222.305402]  ? lockdep_init_map_type+0x2c7/0x780
[ 2222.306914]  ? rcu_read_lock_sched_held+0x3e/0x80
[ 2222.308393]  ? __raw_spin_lock_init+0x36/0x110
[ 2222.309849]  v9fs_session_init+0x1dd/0x16a0
[ 2222.311151]  ? irqentry_enter+0x26/0x60
[ 2222.312429]  ? asm_sysvec_apic_timer_interrupt+0x12/0x20
[ 2222.314107]  ? trace_hardirqs_on+0x5b/0x180
[ 2222.315482]  ? v9fs_show_options+0x690/0x690
[ 2222.316878]  ? kasan_unpoison_shadow+0x33/0x50
[ 2222.318366]  ? __kasan_kmalloc.constprop.0+0xc9/0xd0
[ 2222.319979]  v9fs_mount+0x79/0x8f0
[ 2222.321117]  ? v9fs_write_inode+0x60/0x60
[ 2222.322399]  legacy_get_tree+0x105/0x220
[ 2222.323605]  vfs_get_tree+0x8e/0x300
[ 2222.324581]  path_mount+0x13be/0x20b0
[ 2222.325536]  ? strncpy_from_user+0x9e/0x470
[ 2222.326299]  ? finish_automount+0xa40/0xa40
[ 2222.326893]  ? getname_flags.part.0+0x1dd/0x4f0
[ 2222.328212]  ? _copy_from_user+0xfb/0x1b0
[ 2222.329204]  __x64_sys_mount+0x282/0x300
[ 2222.330329]  ? copy_mnt_ns+0xa00/0xa00
[ 2222.331297]  ? rcu_read_lock_sched_held+0x3e/0x80
[ 2222.332490]  do_syscall_64+0x33/0x40
[ 2222.333449]  entry_SYSCALL_64_after_hwframe+0x61/0xc6
[ 2222.334686] RIP: 0033:0x7f38308e8b19
[ 2222.335576] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 2222.339155] RSP: 002b:00007f382de5e188 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5
[ 2222.340147] RAX: ffffffffffffffda RBX: 00007f38309fbf60 RCX: 00007f38308e8b19
[ 2222.341089] RDX: 00000000200000c0 RSI: 0000000020000040 RDI: 0000000000000000
[ 2222.366080] RBP: 00007f382de5e1d0 R08: 0000000020000280 R09: 0000000000000000
[ 2222.367029] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[ 2222.367920] R13: 00007ffca2bf07df R14: 00007f382de5e300 R15: 0000000000022000
21:17:48 executing program 1:
openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x105142, 0x0)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
pipe(&(0x7f00000001c0))
mount$9p_fd(0x4, &(0x7f0000000040)='./file1\x00', &(0x7f00000000c0), 0x0, &(0x7f0000000280)={'trans=fd,', {}, 0x2c, {}, 0x2c, {[{@nodevmap}]}})

21:17:48 executing program 3:
openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x105142, 0x0)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x400}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
pipe(&(0x7f00000001c0)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
mount$9p_fd(0xb, &(0x7f0000000040)='./file1\x00', &(0x7f00000000c0), 0x0, &(0x7f0000000280)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {}, 0x2c, {[{@nodevmap}]}})
openat(r1, &(0x7f0000000180)='./file1\x00', 0x0, 0x0)

21:17:48 executing program 2:
syz_mount_image$vfat(&(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x0, 0x2, &(0x7f0000000180)=[{&(0x7f0000000140)="eb3c906d6b66732e66617400020801000470008400f801", 0x17}, {0x0, 0x0, 0x1000a00}], 0x0, &(0x7f0000000240)=ANY=[])
chdir(&(0x7f0000000040)='./file0\x00')
r0 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x105142, 0x0)
ioctl$FS_IOC_RESVSP(r0, 0x40305828, &(0x7f0000000040)={0x0, 0x0, 0x0, 0x4000006, 0x0, 0x11})

21:17:48 executing program 7:
r0 = perf_event_open(&(0x7f0000000040)={0x4, 0x80, 0x6d, 0x0, 0x0, 0x0, 0x0, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0xfff, 0x0, 0x0, 0x0, 0xfffffffc, 0x0, 0x0, 0x0, 0x0, 0xb4}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
io_setup(0x7f, &(0x7f00000002c0)=<r1=>0x0)
io_submit(r1, 0x1, &(0x7f0000000340)=[&(0x7f0000000300)={0x0, 0x0, 0x0, 0x5, 0x0, r0, 0x0}])
r2 = openat$vcsu(0xffffffffffffff9c, &(0x7f0000000140), 0x107200, 0x0)
perf_event_open(&(0x7f00000000c0)={0x4, 0x80, 0xfd, 0x0, 0x0, 0x8, 0x0, 0x4, 0x10000, 0x1, 0x0, 0x0, 0x0, 0x1, 0x1, 0x1, 0x0, 0x0, 0x1, 0x1, 0x0, 0x0, 0x0, 0x1, 0x1, 0x1, 0x1, 0x1, 0x1, 0x1, 0x0, 0x1, 0x1, 0x0, 0x0, 0x1, 0x1, 0x1, 0x0, 0x1, 0x0, 0x1, 0x0, 0x1, 0x1, 0x0, 0x0, 0x0, 0x100, 0x4, @perf_config_ext={0x401, 0x2}, 0x4000, 0x1ccd, 0x5000000, 0x4, 0x2, 0x1, 0x6, 0x0, 0x3f, 0x0, 0x8}, 0xffffffffffffffff, 0xc, r2, 0x8)
r3 = openat(0xffffffffffffffff, 0x0, 0x0, 0x10)
r4 = gettid()
timer_create(0x0, &(0x7f0000000240)={0x0, 0xb, 0x4, @tid=r4}, &(0x7f0000000040))
perf_event_open(&(0x7f00000001c0)={0x0, 0x80, 0x6d, 0x70, 0x0, 0x7, 0x0, 0x5, 0x80810, 0x0, 0x1, 0x1, 0x1, 0x0, 0x1, 0x1, 0x1, 0x1, 0x1, 0x1, 0x1, 0x1, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x1, 0x1, 0x1, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x0, 0x1, 0x1, 0x1, 0x1, 0x0, 0x0, 0x1, 0x0, @perf_bp={&(0x7f0000000180), 0x4}, 0x0, 0x4, 0x3, 0x4, 0x3f, 0x5, 0x2, 0x0, 0x8, 0x0, 0xffff}, r4, 0xd, r2, 0x8)
openat(r3, &(0x7f0000000000)='./file0\x00', 0x8240, 0x2)

21:17:48 executing program 3:
openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x105142, 0x0)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x400}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
pipe(&(0x7f00000001c0)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
mount$9p_fd(0x10, &(0x7f0000000040)='./file1\x00', &(0x7f00000000c0), 0x0, &(0x7f0000000280)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {}, 0x2c, {[{@nodevmap}]}})
openat(r1, &(0x7f0000000180)='./file1\x00', 0x0, 0x0)

21:17:49 executing program 4:
openat$vcs(0xffffffffffffff9c, &(0x7f0000000040), 0x0, 0x0)
openat$sr(0xffffffffffffff9c, &(0x7f00000035c0), 0x0, 0x0)
openat$sr(0xffffffffffffff9c, &(0x7f00000000c0), 0x224400, 0x0)
openat$rtc(0xffffffffffffff9c, &(0x7f0000000200), 0x0, 0x0)
pipe(&(0x7f00000001c0))
open(&(0x7f00000016c0)='./cgroup.net/cgroup.procs\x00', 0x0, 0x0)
pselect6(0x40, &(0x7f0000000180), &(0x7f00000001c0)={0x3fc, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10}, 0x0, 0x0, 0x0)

21:17:49 executing program 1:
openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x105142, 0x0)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
pipe(&(0x7f00000001c0))
mount$9p_fd(0x5, &(0x7f0000000040)='./file1\x00', &(0x7f00000000c0), 0x0, &(0x7f0000000280)={'trans=fd,', {}, 0x2c, {}, 0x2c, {[{@nodevmap}]}})

21:17:49 executing program 7:
r0 = perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
io_setup(0x7f, &(0x7f00000002c0)=<r1=>0x0)
ioctl$F2FS_IOC_MOVE_RANGE(r0, 0xc020f509, &(0x7f0000000000)={<r2=>0xffffffffffffffff, 0x1, 0x200, 0x10001})
ioctl$EXT4_IOC_MOVE_EXT(r0, 0xc028660f, &(0x7f00000000c0)={0x0, r2, 0x5, 0x20, 0x7, 0x9})
io_submit(r1, 0x1, &(0x7f0000000340)=[&(0x7f0000000300)={0x0, 0x0, 0x0, 0x5, 0x0, r2, 0x0, 0x10, 0x5, 0x0, 0x1}])
creat(&(0x7f0000000100)='./file0\x00', 0x18)
openat(0xffffffffffffffff, 0x0, 0x0, 0x10)

21:18:05 executing program 5:
openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x105142, 0x0)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
pipe(&(0x7f00000001c0)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
mount$9p_fd(0x0, &(0x7f0000000040)='./file1\x00', &(0x7f00000000c0), 0x0, &(0x7f0000000280)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}}) (fail_nth: 33)
openat(0xffffffffffffffff, 0x0, 0x0, 0x0)

21:18:05 executing program 6:
syz_mount_image$vfat(&(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x0, 0x2, &(0x7f0000000180)=[{&(0x7f0000000140)="eb3c906d6b66732e66617400020801000470008400f801", 0x17}, {0x0, 0x0, 0x1000a00}], 0x0, &(0x7f0000000240)=ANY=[])
chdir(&(0x7f0000000040)='./file0\x00')
openat2(0xffffffffffffffff, &(0x7f0000000100)='./file0\x00', &(0x7f00000001c0)={0x40000, 0x81}, 0x18)
mount$cgroup(0x0, 0x0, &(0x7f0000000400), 0x0, 0x0)
r0 = syz_io_uring_setup(0x22, &(0x7f0000000680)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000180)=<r1=>0x0, &(0x7f0000002a40)=<r2=>0x0)
r3 = io_uring_register$IORING_REGISTER_PERSONALITY(r0, 0x9, 0x0, 0x0)
r4 = socket$nl_netfilter(0x10, 0x3, 0xc)
syz_io_uring_submit(r1, r2, &(0x7f0000000400)=@IORING_OP_WRITEV={0x2, 0x0, 0x0, @fd=r4, 0x0, 0x0, 0x0, 0x0, 0x0, {0x0, r3}}, 0x0)
r5 = syz_io_uring_setup(0x22, &(0x7f0000000680)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000180), &(0x7f0000002a40))
r6 = io_uring_register$IORING_REGISTER_PERSONALITY(r5, 0x9, 0x0, 0x0)
syz_io_uring_submit(r1, 0x0, &(0x7f0000000440)=@IORING_OP_FSYNC={0x3, 0x2, 0x0, @fd_index=0x9, 0x0, 0x0, 0x0, 0x0, 0x1, {0x0, r6}}, 0x2)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r7 = openat(0xffffffffffffff9c, &(0x7f00000002c0)='./file1\x00', 0x105142, 0x0)
r8 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0)
sendfile(r7, r8, 0x0, 0x100000001)
newfstatat(0xffffffffffffff9c, &(0x7f0000000340)='./file1\x00', &(0x7f0000000380), 0x400)

21:18:05 executing program 1:
openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x105142, 0x0)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
pipe(&(0x7f00000001c0))
mount$9p_fd(0x6, &(0x7f0000000040)='./file1\x00', &(0x7f00000000c0), 0x0, &(0x7f0000000280)={'trans=fd,', {}, 0x2c, {}, 0x2c, {[{@nodevmap}]}})

21:18:05 executing program 0:
syz_mount_image$vfat(&(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x0, 0x2, &(0x7f0000000180)=[{&(0x7f0000000140)="eb3c906d6b66732e66617400020801000470008400f801", 0x17}, {0x0, 0x0, 0x1000a00}], 0x0, &(0x7f0000000240)=ANY=[])
chdir(&(0x7f0000000040)='./file0\x00')
mount$cgroup(0x0, 0x0, &(0x7f0000000400), 0x0, 0x0)
r0 = syz_io_uring_setup(0x22, &(0x7f0000000680)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000180)=<r1=>0x0, &(0x7f0000002a40)=<r2=>0x0)
r3 = io_uring_register$IORING_REGISTER_PERSONALITY(r0, 0x9, 0x0, 0x0)
r4 = socket$nl_netfilter(0x10, 0x3, 0xc)
syz_io_uring_submit(0x0, r2, &(0x7f0000000400)=@IORING_OP_WRITEV={0x2, 0x0, 0x0, @fd=r4, 0x0, 0x0, 0x0, 0x0, 0x0, {0x0, r3}}, 0x0)
r5 = syz_io_uring_setup(0x22, &(0x7f0000000680)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000180), &(0x7f0000002a40))
r6 = io_uring_register$IORING_REGISTER_PERSONALITY(r5, 0x9, 0x0, 0x0)
syz_io_uring_submit(r1, 0x0, &(0x7f0000000440)=@IORING_OP_FSYNC={0x3, 0x2, 0x0, @fd_index=0x9, 0x0, 0x0, 0x0, 0x0, 0x1, {0x0, r6}}, 0x2)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r7 = openat(0xffffffffffffff9c, &(0x7f00000002c0)='./file1\x00', 0x105142, 0x0)
r8 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0)
mount(&(0x7f0000000200)=ANY=[@ANYBLOB="2f6f651317868af191bdb2"], &(0x7f0000000240)='./file0\x00', &(0x7f0000000280)='nfsd\x00', 0x800000, &(0x7f0000000300)='cgroup\x00')
sendfile(r7, r8, 0x0, 0x100000001)
newfstatat(0xffffffffffffff9c, &(0x7f0000000340)='./file1\x00', &(0x7f0000000380), 0x400)

21:18:05 executing program 4:
openat$vcs(0xffffffffffffff9c, &(0x7f0000000040), 0x0, 0x0)
openat$sr(0xffffffffffffff9c, &(0x7f00000035c0), 0x0, 0x0)
openat$sr(0xffffffffffffff9c, &(0x7f00000000c0), 0x224400, 0x0)
openat$rtc(0xffffffffffffff9c, &(0x7f0000000200), 0x0, 0x0)
pipe(&(0x7f00000001c0))
open(&(0x7f00000016c0)='./cgroup.net/cgroup.procs\x00', 0x0, 0x0)
pselect6(0x40, &(0x7f0000000180), &(0x7f00000001c0)={0x3fc, 0x0, 0x0, 0x0, 0x0, 0x0, 0xa00}, 0x0, 0x0, 0x0)

21:18:05 executing program 7:
r0 = perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
io_setup(0x7f, &(0x7f00000002c0)=<r1=>0x0)
perf_event_open(&(0x7f00000000c0)={0x2, 0x80, 0x2, 0x0, 0x5a, 0xf9, 0x0, 0x80000001, 0xa4221, 0x4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x1, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x1, 0x0, 0x1, 0x0, 0x1, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x81, 0x4, @perf_bp={&(0x7f0000000000), 0x1}, 0x10000, 0x6, 0x4, 0x6, 0x1000, 0x80, 0x1ff, 0x0, 0xc0000, 0x0, 0x3}, 0xffffffffffffffff, 0x1, 0xffffffffffffffff, 0x8)
io_submit(r1, 0x1, &(0x7f0000000340)=[&(0x7f0000000300)={0x0, 0x0, 0x0, 0x5, 0x0, r0, 0x0}])
openat(0xffffffffffffffff, 0x0, 0x0, 0x10)

21:18:05 executing program 2:
syz_mount_image$vfat(&(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x0, 0x2, &(0x7f0000000180)=[{&(0x7f0000000140)="eb3c906d6b66732e66617400020801000470008400f801", 0x17}, {0x0, 0x0, 0x1000a00}], 0x0, &(0x7f0000000240)=ANY=[])
chdir(&(0x7f0000000040)='./file0\x00')
r0 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x105142, 0x0)
ioctl$FS_IOC_RESVSP(r0, 0x40305828, &(0x7f0000000040)={0x0, 0x0, 0x0, 0x4000006, 0x0, 0x12})

21:18:05 executing program 3:
openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x105142, 0x0)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x400}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
pipe(&(0x7f00000001c0)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
mount$9p_fd(0x300, &(0x7f0000000040)='./file1\x00', &(0x7f00000000c0), 0x0, &(0x7f0000000280)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {}, 0x2c, {[{@nodevmap}]}})
openat(r1, &(0x7f0000000180)='./file1\x00', 0x0, 0x0)

[ 2239.387278] FAULT_INJECTION: forcing a failure.
[ 2239.387278] name failslab, interval 1, probability 0, space 0, times 0
[ 2239.390200] CPU: 1 PID: 18131 Comm: syz-executor.5 Not tainted 5.10.172 #1
[ 2239.391593] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 2239.393124] Call Trace:
[ 2239.393676]  dump_stack+0x107/0x167
[ 2239.394431]  should_fail.cold+0x5/0xa
[ 2239.395184]  ? create_object.isra.0+0x3a/0xa20
[ 2239.396100]  should_failslab+0x5/0x20
[ 2239.396894]  kmem_cache_alloc+0x5b/0x360
[ 2239.397728]  ? p9_fd_show_options+0x1c0/0x1c0
[ 2239.398632]  create_object.isra.0+0x3a/0xa20
[ 2239.399534]  ? __kasan_kmalloc.constprop.0+0xc9/0xd0
[ 2239.400550]  kmem_cache_alloc_trace+0x151/0x360
[ 2239.401467]  p9_fd_create+0x161/0x4a0
[ 2239.402234]  ? p9_conn_create+0x510/0x510
[ 2239.403051]  ? p9_client_create+0x798/0x1090
[ 2239.403967]  ? kfree+0xd7/0x390
[ 2239.404662]  ? do_raw_spin_unlock+0x4f/0x220
[ 2239.405540]  p9_client_create+0x7ff/0x1090
[ 2239.406411]  ? p9_client_flush+0x430/0x430
[ 2239.407266]  ? lockdep_init_map_type+0x2c7/0x780
[ 2239.408187]  ? rcu_read_lock_sched_held+0x3e/0x80
[ 2239.409134]  ? __raw_spin_lock_init+0x36/0x110
[ 2239.410188]  v9fs_session_init+0x1dd/0x16a0
[ 2239.410804]  ? kmem_cache_alloc_trace+0x151/0x360
[ 2239.411618]  ? v9fs_show_options+0x690/0x690
[ 2239.412539]  ? kasan_unpoison_shadow+0x33/0x50
[ 2239.413485]  ? __kasan_kmalloc.constprop.0+0xc9/0xd0
[ 2239.414796]  v9fs_mount+0x79/0x8f0
[ 2239.415593]  ? v9fs_write_inode+0x60/0x60
[ 2239.416131]  legacy_get_tree+0x105/0x220
[ 2239.416661]  vfs_get_tree+0x8e/0x300
[ 2239.417157]  path_mount+0x13be/0x20b0
[ 2239.417934]  ? strncpy_from_user+0x9e/0x470
[ 2239.418775]  ? finish_automount+0xa40/0xa40
[ 2239.419776]  ? getname_flags.part.0+0x1dd/0x4f0
[ 2239.420642]  ? _copy_from_user+0xfb/0x1b0
[ 2239.421428]  __x64_sys_mount+0x282/0x300
[ 2239.422532]  ? copy_mnt_ns+0xa00/0xa00
[ 2239.423380]  ? rcu_read_lock_sched_held+0x3e/0x80
[ 2239.424299]  do_syscall_64+0x33/0x40
[ 2239.424989]  entry_SYSCALL_64_after_hwframe+0x61/0xc6
[ 2239.425937] RIP: 0033:0x7f38308e8b19
[ 2239.426641] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 2239.429966] RSP: 002b:00007f382de5e188 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5
[ 2239.431620] RAX: ffffffffffffffda RBX: 00007f38309fbf60 RCX: 00007f38308e8b19
[ 2239.432846] RDX: 00000000200000c0 RSI: 0000000020000040 RDI: 0000000000000000
[ 2239.434050] RBP: 00007f382de5e1d0 R08: 0000000020000280 R09: 0000000000000000
[ 2239.435338] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[ 2239.436593] R13: 00007ffca2bf07df R14: 00007f382de5e300 R15: 0000000000022000
21:18:05 executing program 3:
openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x105142, 0x0)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x400}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
pipe(&(0x7f00000001c0)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
mount$9p_fd(0x500, &(0x7f0000000040)='./file1\x00', &(0x7f00000000c0), 0x0, &(0x7f0000000280)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {}, 0x2c, {[{@nodevmap}]}})
openat(r1, &(0x7f0000000180)='./file1\x00', 0x0, 0x0)

21:18:05 executing program 2:
syz_mount_image$vfat(&(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x0, 0x2, &(0x7f0000000180)=[{&(0x7f0000000140)="eb3c906d6b66732e66617400020801000470008400f801", 0x17}, {0x0, 0x0, 0x1000a00}], 0x0, &(0x7f0000000240)=ANY=[])
chdir(&(0x7f0000000040)='./file0\x00')
r0 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x105142, 0x0)
ioctl$FS_IOC_RESVSP(r0, 0x40305828, &(0x7f0000000040)={0x0, 0x0, 0x0, 0x4000006, 0x0, 0x23})

21:18:06 executing program 1:
openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x105142, 0x0)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
pipe(&(0x7f00000001c0))
mount$9p_fd(0x7, &(0x7f0000000040)='./file1\x00', &(0x7f00000000c0), 0x0, &(0x7f0000000280)={'trans=fd,', {}, 0x2c, {}, 0x2c, {[{@nodevmap}]}})

21:18:06 executing program 4:
openat$vcs(0xffffffffffffff9c, &(0x7f0000000040), 0x0, 0x0)
openat$sr(0xffffffffffffff9c, &(0x7f00000035c0), 0x0, 0x0)
openat$sr(0xffffffffffffff9c, &(0x7f00000000c0), 0x224400, 0x0)
openat$rtc(0xffffffffffffff9c, &(0x7f0000000200), 0x0, 0x0)
pipe(&(0x7f00000001c0))
open(&(0x7f00000016c0)='./cgroup.net/cgroup.procs\x00', 0x0, 0x0)
pselect6(0x40, &(0x7f0000000180), &(0x7f00000001c0)={0x3fc, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1000000}, 0x0, 0x0, 0x0)

21:18:06 executing program 3:
openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x105142, 0x0)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x400}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
pipe(&(0x7f00000001c0)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
mount$9p_fd(0x600, &(0x7f0000000040)='./file1\x00', &(0x7f00000000c0), 0x0, &(0x7f0000000280)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {}, 0x2c, {[{@nodevmap}]}})
openat(r1, &(0x7f0000000180)='./file1\x00', 0x0, 0x0)

21:18:06 executing program 6:
syz_mount_image$vfat(&(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x0, 0x2, &(0x7f0000000180)=[{&(0x7f0000000140)="eb3c906d6b66732e66617400020801000470008400f801", 0x17}, {0x0, 0x0, 0x1000a00}], 0x0, &(0x7f0000000240)=ANY=[])
chdir(&(0x7f0000000040)='./file0\x00')
openat2(0xffffffffffffffff, &(0x7f0000000100)='./file0\x00', &(0x7f00000001c0)={0x40000, 0x81}, 0x18)
mount$cgroup(0x0, 0x0, &(0x7f0000000400), 0x0, 0x0)
r0 = syz_io_uring_setup(0x22, &(0x7f0000000680)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000180)=<r1=>0x0, &(0x7f0000002a40)=<r2=>0x0)
r3 = io_uring_register$IORING_REGISTER_PERSONALITY(r0, 0x9, 0x0, 0x0)
r4 = socket$nl_netfilter(0x10, 0x3, 0xc)
syz_io_uring_submit(r1, r2, &(0x7f0000000400)=@IORING_OP_WRITEV={0x2, 0x0, 0x0, @fd=r4, 0x0, 0x0, 0x0, 0x0, 0x0, {0x0, r3}}, 0x0)
r5 = syz_io_uring_setup(0x22, &(0x7f0000000680)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000180), &(0x7f0000002a40))
r6 = io_uring_register$IORING_REGISTER_PERSONALITY(r5, 0x9, 0x0, 0x0)
syz_io_uring_submit(r1, 0x0, &(0x7f0000000440)=@IORING_OP_FSYNC={0x3, 0x2, 0x0, @fd_index=0x9, 0x0, 0x0, 0x0, 0x0, 0x1, {0x0, r6}}, 0x2)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r7 = openat(0xffffffffffffff9c, &(0x7f00000002c0)='./file1\x00', 0x105142, 0x0)
r8 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0)
sendfile(r7, r8, 0x0, 0x100000001)
newfstatat(0xffffffffffffff9c, &(0x7f0000000340)='./file1\x00', &(0x7f0000000380), 0x400)

21:18:06 executing program 2:
syz_mount_image$vfat(&(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x0, 0x2, &(0x7f0000000180)=[{&(0x7f0000000140)="eb3c906d6b66732e66617400020801000470008400f801", 0x17}, {0x0, 0x0, 0x1000a00}], 0x0, &(0x7f0000000240)=ANY=[])
chdir(&(0x7f0000000040)='./file0\x00')
r0 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x105142, 0x0)
ioctl$FS_IOC_RESVSP(r0, 0x40305828, &(0x7f0000000040)={0x0, 0x0, 0x0, 0x4000006, 0x0, 0x300})

21:18:06 executing program 7:
write$P9_RVERSION(0xffffffffffffffff, &(0x7f0000001a00)=ANY=[@ANYBLOB="55f5ffff643bd453ef000008003950323030302e4ca68e28fc885ebff1d3465ac8fe37c7fae261b1f7dc8dadea6ef4b35181d9e6658a0f37b2f8d455f9dd9e83012271b038bc9750c4290e91ce0457757ecd30a9ea28108ed75a8b28d30cd0b0cd686b401b418bb3f3fbd190b7673e550b15dd57578b87fca07e483aa36f73696127c545087b355deae70880bd73900fe469ab352235fdc4d7cb6976e4f1d4e84cd873bcd9dd1638d4f51f1a98b8e8f28904b868c038014025615eb2f4238bcacb83499e0b7fa2a2b214a50db663ca2a61a73444fded4c0708516ce35e1b2b4ac99c425076c798b17ef30a0825aaeb165ecfb515ce6e45d899810f6576"], 0x15)
r0 = perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
io_setup(0x7f, &(0x7f00000002c0)=<r1=>0x0)
io_submit(r1, 0x1, &(0x7f0000000340)=[&(0x7f0000000300)={0x0, 0x0, 0x0, 0x5, 0x0, r0, 0x0}])
r2 = accept4$packet(0xffffffffffffffff, &(0x7f0000000100)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @dev}, &(0x7f0000000140)=0x14, 0x80000)
r3 = perf_event_open(&(0x7f0000001d80)={0x2, 0x80, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
mmap(&(0x7f0000ffc000/0x2000)=nil, 0x2000, 0x0, 0x13, r3, 0x0)
perf_event_open(&(0x7f0000001d80)={0x2, 0x80, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, r3, 0x2)
ioctl$BTRFS_IOC_START_SYNC(r3, 0x80089418, &(0x7f00000018c0))
r4 = openat$vcs(0xffffffffffffff9c, &(0x7f0000000280), 0x80040, 0x0)
r5 = perf_event_open(&(0x7f0000001d80)={0x2, 0x80, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
mmap(&(0x7f0000ffc000/0x2000)=nil, 0x2000, 0x0, 0x13, r5, 0x0)
perf_event_open(&(0x7f0000001d80)={0x2, 0x80, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, r5, 0x2)
pipe(&(0x7f00000001c0)={<r6=>0xffffffffffffffff, <r7=>0xffffffffffffffff})
mount$9p_fd(0x0, &(0x7f0000000040)='./file1\x00', &(0x7f00000000c0), 0x0, &(0x7f0000001900)=ANY=[@ANYBLOB="74726172e13dc219ff0000000000fd", @ANYRESHEX=r6, @ANYBLOB="2c77666c01003d", @ANYRESHEX=r7, @ANYBLOB="813fc3b46ff0abdd1341bd5bc5681a4af10caea2fb7192987701041cfc53de161f3d0ae24a1a53f0a2000000000000"])
r8 = perf_event_open(&(0x7f0000001d80)={0x2, 0x80, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
mmap(&(0x7f0000ffc000/0x2000)=nil, 0x2000, 0x0, 0x13, r8, 0x0)
perf_event_open(&(0x7f0000001d80)={0x2, 0x80, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, r8, 0x2)
io_submit(r1, 0x8, &(0x7f0000001880)=[&(0x7f00000000c0)={0x0, 0x0, 0x0, 0x2, 0x9, r0, &(0x7f0000000380)="367a7436cb493656f2e88773a75bef7ae088fc56a1f5c007c9bd54388d7e5755797661468c6340714c3ae1cdf6a8ad94794e62a1ccd6e5b32048d18a42977717a90570c69edde8ea429fd2de18f55825b75796697713b34edaca2fed6f39992bbd5f5feb5e0c77e35b161933081ff06404b5eb1422caa8ccb63493f7472fba741ec1130fa97e124fddd3971e34c33937a3c93d87fde1619d5215807961cd6b5f6775f68ea198bd6c2ce2df134ad31943ea866850c6725ce7a07d9046f25e6b3ce645435203c6c19365a0a3c716ae7bb5587ae6c84604fe38266611e9b2389904a49d8f9234602fa164b08f6c08d0bba3e3224347890104ca293e55c5beea8198cae173f1118f48b92ea3e153d2eb5420ae8d16eed77d537b9c309aa70806d6a8d4e6105bbed6bd5307f029b0409e65f015375c9c2b01c02366485b0ef7dfa2566560e825bee6a99c1b65145ebc77b7f8a191c94765303837bfd77ae8f2fffc7b2de280686d05755ad7b594d1abbdd40d685f49f274329125c8648d3938ee515a2212e57f219411c401ee3be975c3d9075316df3bbc980dcdf4eb66780917f0028fa19e61f31ec2f07c3b0a79f108560ce44645f31e72be6ff7b95ab93e6c299045b160d49da51c6fe2b392bfb168489a8d8a2c9c7c6f58eec2abde8a32c90fe58ebc883fa4d5361668b2464d069bf2b4b069950fd08c2f906724a337438b6f072b243fde36937045ed33b2f1e5f3b5a0a9b653a6ed7abf788c36cc3c458a111faa14abfaa3a5c24c552a03a0b7fb95a1d633297e19eab007d7d6bbc7ef9051bcc4dbed479f620335bd6e3ae9520d0e1526842a90c8633453aaf5f25f58d1d3ed7216c794919c862b20464a2144e179dc032a39225e2e0d3e172cee224f02134d83caa5d656b5a3de5fa93184e1e582caa984b3b2560648310cd2787d80edda820cc4dc7d19a5824f6cc7ca7f6d613ca75a250b1574a76c9cbaab287ab28a34146b4332a3ff95551a8511ed62d92ed12d4631c5839f4571d2a376abdaef6cdc675ba19ad51a8ebe35c25aca124d6c00b3afcc4386200573882be82ca71b71fa5a29a6f737a88ef85c734738ee0b5dcf5a8d94750650927a10c37d79a44f502f9ce6ec08576caf0d24182ffde3ebc1406a9991ddf2ffa2dde8b36713b6d950ff393f65c65ddf488b14b86642c498aa3335de08227649a42d2d741234f9d4d4a6d9f79a763c1f101d62f68b48c54aacf2817b89049f11e417225bbbee53281b8a4ec31485f8f81b81142e41dd2fc0b5f22884e066d1d716d80926bbb82963843ce82b92aa729800a36397213135f437e57b14d50c42ad52dd4127e7b0bc7e6add6a89db8e791ae90143524f7cd33886979c73b536a7d691ba1e7f134b25502a89f4402bb1e717b10a73c1df5f209dc874307d3bdc576d275bb32129d2d42a3d6f8f554e2d36a4e3f5efc436621db0717ddfa06e9915a966fdf015cd01765a34ee140ced6812ac6d025dc4563c2b0c98ebbd26128985c7c59dcfd0f6ba30acfaa7cf2622d081c836b8469bfab51951cc04afa3d47596ea0ed9f3395c9e864f08b25f591ee6590ab9ea1a61260319ec89744f8f4b4063b6de89a998c3c88e505ccc9d962684a744d4306c4c5f5ba64ebdbc6082ed929fe2a92359ebe908ccbf1272b70471270633db4c967861a40b37729a626d552273d5cd534d588a818a06c7255891db6a9dde347dfd887208f49ef846e094c3fdeca7272819704171cbd64bd41b67198b8c5c796f1ac7b1972d0bd3f53379f4dd07ed5fe31745395ce00e784b81f45ab9f6fcef77c87aeba83f3666e5c9b56063a2dd1080b09bedb114a8e485e823d21299abff8182020230daa52c623445d27008581e3fa6d36f302c98e9ff465ec0e8a31385fa5f2a9a09089cacad579b69a8f1873bbfe42fc7a2d08b4c262e569b0b1d24e36a4c3b724aa9e31e623ff3cf2436ec84caae97daca536a1c255a3c98a3ac12c303a1d995a6b44f90c6662e7418834922bde4d35f1535f64df7fcc5484a72e86ebedbc02daea177f34751bf26e871ab6109c1a8ac5a78dfdd4b91fce3924283f22f4ad9a14fcc37f949a0e1957b7c81f656d9b876c5311028460af419bbf608293c565a4d703281c97459fccdea63a3358395d680dafbb147bc21c52366760791c27a38776e5118f3f45f57009c6748da319faf2ba827a913d06fa543d97e8cdf54d30018c0e99b4081f99e5979e82b661d00964e2881052e20a25ff6b988b9639101853290cef40d197d813b1756cb6f391c88fc6f33460c3c02a5c8a04cd47c2b831a91e45241082cc69df0b1b58421d480193ce8a5ddd1336e2d5ce2d1a3eee18f04d406d7eb56d94c6dc61d6a72b093d39894c552aef660ec88fff6e1ba026858de88796701fbfd9bd03ade3480c161f8385eb3fdaa2953a16fa580f22a967b6ae7acc64702532ddadd3c4748210d9bc80da2309f280396e0c6653dc051b262a238141c14efcd88c8f787b89da02b82274063193044f38078cb24d41e3ff0ccfbf77b8b116e4caa2976e8963b445bdf1b04ba0175193d4c863bc19e7b9bc5d8b911b820461ff0f36432a23080a6b4f9c41472e49734705ce9122ae5d6629a80e5b12d7b3354fb6199963dfea7e79c7ad73ae1129f473f8e0ed73b3114464337b308313ca59a2bd5f163086b7e5d542dc770cba68d37c7f14f99af895cb405a4d6824a168ed13f0578419e653aefe394b4ff35009fc0eb9c380d556931f06c10be6ea29c62fe5c4efb5630f07d1c79e6981f805904b4282a5336dc580218ea0d9c6a8208971c0c69467194dc6c77f5441345b200306328ae6a7380e95a0c24af755eb356802fef69c554dfe987e20e9636024d491362e7c94e1042f9a00b5e074355ee0591248c44409eb4957f8048b174a751f46befb9dea70d092b1a2d74a5b9bd5386386e63dd2e1bb73e1f71f19e9030d7e9306f66fbe87eed9938aae30a531184a46560a8c958b7fd8d890ce53056658b292d7b111c27bdfcb40638aa17b34ea8332b923b9fe50e74a27aef77e2e6dfb059e6b86a9a7a353c86f75db1272ddf31b442cdb9c18fa81298b4c2d1053a24aacb1bbcf2e2656ffa261e9e80e419e79003f4acda681e7425ac35a0298999baddd6e36e3b5ff3c4f77cc4f948fc012904d39a0de0efc743e891dc24ec6b27d85328e5694f7b97a35365805a598549e74b89eb873d751b3090eb5b0ba0f74709240605778fdbf1c44ac0a3894b6774bf7bb54b0e5f829989ee767a626d563fa109ecafba772db3e61fa7c015fbb299216e98f6bf1c94bbe455514c27c93cb35beef3ae3b0544a49359778fd2d494d7a54cebd9fdf82ef26f368b39642d0a4bb72bb4e958e120957d8b1ccd79d8e127d1f19d9779253b93105437f86117c61c6d4f1e4d68dfc1dba7adf03d3fc731f49efff779d7accecd1d66bd2cab56753b9fc3c8e9b229a2d3ba8ee9fa4f43b7b668a0de20161e8c78a36ea20dbb18581ffbfa2f4b343ae84059a539f278d8dd91cbf782700e442cc2fb2f75d919260f6dcccf910a62fe308877cd4546e2c8c3ed71efe1fa256ec8bc35088e5563ef0e847ee7eb4ad72376827199c1dbc81b5e66eaa6870461c58b3221b5c8dd1c70e387f41880697439b2b975e1f18f656f0ac0c2aaa009bc24be9e48c28b1eb65a0ef74b219ffc1f6d86073ccdb05e70d63e9b66b26e229da4cb98847de1599d680b9625ee604dc0c6463f3469d797986b706039bdbdd8759c21bf49120a9c152b4d8979c55c8c5157cd489c3b6e656c06d18370f3878db0460ddd92e5cc622fde5761cb883066dfd2944cbab79f670fb6aa87bf442929917c8259d14817f5e07f9a1c4291ce5931334649755774dab8d2cca6c82f25c186d420f7b5fb20286a5bbebc4124de3bdaa9bf62ff8226d38b4054ee9e81125fc4248ed89b0f820717e703e8983d0b9dec08d438b75c272cd64809f51482dc97254042eaa71ece620551b51943c089f540c1b8502a9e79c12519710d8bc8b38d4a6300f6a107be167bd097e313ea8f095837bb61f2ad42e6783ba3f643d50d26399489b6982729bbfe681e48bf6cb7e5b279968fe344216ba504ddcb12da3a6fac4360cf2eabe33904eeaa1269256c7850a35007def0d32097c7c46ef711bc1ba9e513b19eee87952ea9b92c7163a2c292f4eba1370a759f36c3b6fcaeb6622d5e0ec5048346f103951a0162b3742d810ab211ffe5ed1591cdc1a76c0de029487f6cc6569dad50d5f27eef39f5e67c8ea048afc7a4a53960ef9c4f5dbc399db5e8a976ddc9bcafd22a017bf3b2676bc48867f74967840ad14bce9e6b88765d22bc798077a75969e2452e6704f043cd11d10d809b90e110473ae2e38010c630983a6c83b480a07892e835863edd1dd3168c7aeb77c3e64da0de3ebd09d2f4e5b57821f4f16a8003a6d586bf22dd2e1fe449af17fb505902f2d65cce08ef467119ab3eacb845ab223edb888bd2e49244aea85ffcd6b1203a48a90eaf6dbc0a2f289c0e4298ca6a0f897aa6bf0f90960edc8930ed4f7f4e4cf86c6d4420dfe08640675d8d6f1e186313074259dbeb0e0422f4a54ef96d5bdd896e057b3a1f704da21e2b715b12f0892abc1a4b2032696d7aa04cb562910c12bddcc3015f2d7c732dd5ae2642ad7107683e47fd1ae6ec9f7d887cf631946824bf88d5883b37db90fc410bc0c9917f79ea51e5ebe1fd57d08e5502c3f6cf1b3421b411d42f33160554e5f2053597b00a7ba2f99f24a4ef020b42f9cf8237a77403d33d2424c0ef7d973a1a53878745ee6587e2275646dd92d2bd4c5aac4d91add9eede7cd4a4bac544248c9abf191fbb08448c7512c9793cb1da638ed656bf6d47584d95179a971f8f11a8559edd6f36b61841f1c3584c138860587034460d5087c41e9c03e59dbc477113e78576a9094a618ab5048d96c638bafded71b340830817e40d6bb5267db06554757ca55194e1781918e5608ce89d466f33504be51021f280894231ee851760b3fd535019a2406695f073c2d03f0621c04f5d4c23103e2bf444acd1481afe8b4d817a77866bb9da89373cb0655d9aaf530aa6b7a61046acf852f8c1279f4ffb1b5961a31ff1279fa44bc915b0a4a69c95baaadbd110fa17f2575c5d42a4eab4b8d7983fe7799e044f31d68c2bb306fe3263bb0b91173a34264eb0cca3ff4f4b3ec40106b773f20755e36c1772cb9752a5282aa02a67f6ea270c85d8fa11761e5e180e77cf52567dde8b72356daeab0afd2019852a0f15f5d64ac4b83d018ca95549dab54ab3260d84407a31058206f7880e37df799be0a63093a54affb0717767b6321dd57f5f91a3b7f1fefad42610622a269ce0993ef02886d4ef8fb585ab8808fdba5b6f8bc8b19019d93fcb0e474d037da29d120eadabb6cf544910a763af2f6e76b036188085d030bad56b0ea3d947efd5550fd9bf56c357adfd087bc620ae1c9641d0cd61f81884622fa13f9bb17eea6db5dccdeaa103784689dd7954c3d7671ce2394f41150d3d48fdbf2c67abea6b0164a601748d8b69b21c28f511bffcf53a847c68201f074c079c3255510e34931d3ad92803db8417831dc6b18a58dbc0daaaa609ef8a4bb175db055470eee14fb6ebd22594a1034c62b204e9c65d85a75f738f97f71c2c91a24b0fbfd90402966b6223a1058a58e435f74aa792914828579b81df6c1b425c1e87b08ad5053d0cf18b1dd7ac27bb51891d89e6ce66000796d396b27fe2ebde20031716dd1bbd4f", 0x1000, 0xff, 0x0, 0x3}, &(0x7f0000001380)={0x0, 0x0, 0x0, 0x1, 0x40, r2, &(0x7f0000000180)="040ff54363db15c648868fff39a420248b2c20654486c1df8662fc4a7ae82562f16c1d818bacca3bce10b6d7481b65b39b4bcb29617218c973a6ec2e71aa6fd7b30e6178cc4fa59ac827c463474402b691eba4bdfc46e6a9f319c5ba0c478720362f8ad774c5788f7716b8031b2a19903977adc3bd46ccf935a19a5bfe9d05084ddf552af7e8f77057018f9c4dbbbce853be916c0679a11b5630fdcfe9ed14b5db43e29ab5389af0be37c893e4ef808532a6e88c88c9a7a41b228fc16c27f67299be30f0b8e9e0e67a3a9d7fc53065", 0xcf, 0x6, 0x0, 0x0, r4}, &(0x7f00000014c0)={0x0, 0x0, 0x0, 0x8, 0xfff, r5, &(0x7f00000013c0)="41de5a9d4625be68d427f13a55f1338fa0febc77488be57a16d531845aee00cb795e1f99ff663efed0561282eb613a3f046fb4f6409bf90303ee933b4920432af28cd77540a236e5fa71fd2e4a8793b96f71df5bf7bb847ab6e2924e781cf0c12beb640a2b5438b9673cd0bd84bb660dbd820c3568707edd6102dccd1c0bd15c19afdd02532f63e1747945696e32e43784b66b828bb91e46b2bf62ee4368979ce716f3dc19f666986c15b0b5a056bf7cba3b02a6bbdbf2a49b2f2cfc33d314f007270b118f89", 0xc6, 0x200, 0x0, 0x0, r7}, &(0x7f0000001580)={0x0, 0x0, 0x0, 0x6, 0x7, r0, &(0x7f0000001500)="3c0e3ec74b0ede9ab04792e6abe51745500a01b2c76f6a22bd5f56a06b1e2ee0e2e579214ccf9668947932985d640e184c24c91c3b84f42c56344e9e11f4117919d32553a381581071b9762b0cf8e6c1b12233758b5cdd83", 0x58, 0x279, 0x0, 0x2}, &(0x7f0000001600)={0x0, 0x0, 0x0, 0xc7a69ec23e6ad3dc, 0x7, r0, &(0x7f00000015c0)="38789ff6bf3e3709dceeca49b94f408c74c10e12e13d0ada2a9e27c37cd4948638df1b4baf8aa3cbf7c400d843093611ac7587fe38980ce3", 0x38, 0xda16}, &(0x7f0000001740)={0x0, 0x0, 0x0, 0x1, 0x1, r0, &(0x7f0000001640)="f5ed5f3b83edab010e5e1d0b3fcbf4f8b8cb830edf6083ee4e6091e52ed2a095d2c5ce2014d131be43ebd6ac0530077cdae0b1896e51f0f7ed7f61d9a57952dc8d8be94acdd23e9b99a942cb09d93de97c2951635e87038d826f0a6c806b9f0dcef3c472e81d1cce046eba6b373b5e738a8f548c45f7f00b8965663573a59b4f9e23c8852257af53cfce9de195e2014aa8820410a888a25a3ed0c02bc6fb1f7fe679b7a84edce205f14f51094cfac7dc7179e620d7f7fc28cbdef98fb30bb4330fc21115292e595c5284179c03c43326", 0xd0, 0x6, 0x0, 0x1, r0}, &(0x7f00000017c0)={0x0, 0x0, 0x0, 0x2, 0x7fb1, r0, &(0x7f0000001780)="4596b21f71aeef09a63acd4aa98fc4db6bbf2d2970393999bfa26eb9613c0a6212e7fffb10", 0x25, 0x100000000, 0x0, 0x3}, &(0x7f0000001840)={0x0, 0x0, 0x0, 0x8, 0x4, r8, &(0x7f0000001800)="c636c92bd9b62aaff7e43cc1c901a957f8f7e65e", 0x14, 0x2, 0x0, 0x2}])
openat(0xffffffffffffffff, 0x0, 0x80180, 0x110)

21:18:24 executing program 5:
openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x105142, 0x0)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
pipe(&(0x7f00000001c0)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
mount$9p_fd(0x0, &(0x7f0000000040)='./file1\x00', &(0x7f00000000c0), 0x0, &(0x7f0000000280)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}}) (fail_nth: 34)
openat(0xffffffffffffffff, 0x0, 0x0, 0x0)

21:18:24 executing program 6:
syz_mount_image$vfat(&(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x0, 0x2, &(0x7f0000000180)=[{&(0x7f0000000140)="eb3c906d6b66732e66617400020801000470008400f801", 0x17}, {0x0, 0x0, 0x1000a00}], 0x0, &(0x7f0000000240)=ANY=[])
chdir(&(0x7f0000000040)='./file0\x00')
openat2(0xffffffffffffffff, &(0x7f0000000100)='./file0\x00', &(0x7f00000001c0)={0x40000, 0x81}, 0x18)
mount$cgroup(0x0, 0x0, &(0x7f0000000400), 0x0, 0x0)
r0 = syz_io_uring_setup(0x22, &(0x7f0000000680)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000180)=<r1=>0x0, &(0x7f0000002a40)=<r2=>0x0)
r3 = io_uring_register$IORING_REGISTER_PERSONALITY(r0, 0x9, 0x0, 0x0)
r4 = socket$nl_netfilter(0x10, 0x3, 0xc)
syz_io_uring_submit(r1, r2, &(0x7f0000000400)=@IORING_OP_WRITEV={0x2, 0x0, 0x0, @fd=r4, 0x0, 0x0, 0x0, 0x0, 0x0, {0x0, r3}}, 0x0)
r5 = syz_io_uring_setup(0x22, &(0x7f0000000680)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000180), &(0x7f0000002a40))
r6 = io_uring_register$IORING_REGISTER_PERSONALITY(r5, 0x9, 0x0, 0x0)
syz_io_uring_submit(r1, 0x0, &(0x7f0000000440)=@IORING_OP_FSYNC={0x3, 0x2, 0x0, @fd_index=0x9, 0x0, 0x0, 0x0, 0x0, 0x1, {0x0, r6}}, 0x2)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r7 = openat(0xffffffffffffff9c, &(0x7f00000002c0)='./file1\x00', 0x105142, 0x0)
r8 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0)
sendfile(r7, r8, 0x0, 0x100000001)
newfstatat(0xffffffffffffff9c, &(0x7f0000000340)='./file1\x00', &(0x7f0000000380), 0x400)

[ 2257.913579] FAULT_INJECTION: forcing a failure.
[ 2257.913579] name failslab, interval 1, probability 0, space 0, times 0
[ 2257.915346] CPU: 1 PID: 18385 Comm: syz-executor.5 Not tainted 5.10.172 #1
[ 2257.916383] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 2257.917617] Call Trace:
[ 2257.918011]  dump_stack+0x107/0x167
[ 2257.918596]  should_fail.cold+0x5/0xa
[ 2257.919166]  ? p9_client_prepare_req.part.0+0x3a/0xb30
[ 2257.919954]  should_failslab+0x5/0x20
[ 2257.920525]  kmem_cache_alloc+0x5b/0x360
[ 2257.921144]  p9_client_prepare_req.part.0+0x3a/0xb30
[ 2257.921921]  p9_client_rpc+0x220/0x1270
[ 2257.922547]  ? lockdep_hardirqs_on_prepare+0x277/0x3e0
[ 2257.923309]  ? p9_client_prepare_req.part.0+0xb30/0xb30
[ 2257.924064]  ? pipe_poll+0x21b/0x7f0
[ 2257.924631]  ? p9_fd_close+0x4a0/0x4a0
[ 2257.925213]  ? anon_pipe_buf_release+0x280/0x280
[ 2257.925941]  ? p9_fd_poll+0x1e0/0x2c0
[ 2257.926546]  ? p9_fd_create+0x357/0x4a0
[ 2257.927161]  ? p9_conn_create+0x510/0x510
21:18:24 executing program 1:
openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x105142, 0x0)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
pipe(&(0x7f00000001c0))
mount$9p_fd(0x8, &(0x7f0000000040)='./file1\x00', &(0x7f00000000c0), 0x0, &(0x7f0000000280)={'trans=fd,', {}, 0x2c, {}, 0x2c, {[{@nodevmap}]}})

21:18:24 executing program 0:
syz_mount_image$vfat(&(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x0, 0x2, &(0x7f0000000180)=[{&(0x7f0000000140)="eb3c906d6b66732e66617400020801000470008400f801", 0x17}, {0x0, 0x0, 0x1000a00}], 0x0, &(0x7f0000000240)=ANY=[])
chdir(&(0x7f0000000040)='./file0\x00')
mount$cgroup(0x0, 0x0, &(0x7f0000000400), 0x0, 0x0)
r0 = syz_io_uring_setup(0x22, &(0x7f0000000680)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000180)=<r1=>0x0, &(0x7f0000002a40)=<r2=>0x0)
r3 = io_uring_register$IORING_REGISTER_PERSONALITY(r0, 0x9, 0x0, 0x0)
r4 = socket$nl_netfilter(0x10, 0x3, 0xc)
syz_io_uring_submit(0x0, r2, &(0x7f0000000400)=@IORING_OP_WRITEV={0x2, 0x0, 0x0, @fd=r4, 0x0, 0x0, 0x0, 0x0, 0x0, {0x0, r3}}, 0x0)
r5 = syz_io_uring_setup(0x22, &(0x7f0000000680)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000180), &(0x7f0000002a40))
r6 = io_uring_register$IORING_REGISTER_PERSONALITY(r5, 0x9, 0x0, 0x0)
syz_io_uring_submit(r1, 0x0, &(0x7f0000000440)=@IORING_OP_FSYNC={0x3, 0x2, 0x0, @fd_index=0x9, 0x0, 0x0, 0x0, 0x0, 0x1, {0x0, r6}}, 0x2)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r7 = openat(0xffffffffffffff9c, &(0x7f00000002c0)='./file1\x00', 0x105142, 0x0)
r8 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0)
mount(&(0x7f0000000200)=ANY=[@ANYBLOB="2f6f651317868af191bdb2"], &(0x7f0000000240)='./file0\x00', &(0x7f0000000280)='nfsd\x00', 0x800000, &(0x7f0000000300)='cgroup\x00')
sendfile(r7, r8, 0x0, 0x100000001)
newfstatat(0xffffffffffffff9c, &(0x7f0000000340)='./file1\x00', &(0x7f0000000380), 0x400)

21:18:24 executing program 3:
openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x105142, 0x0)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x400}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
pipe(&(0x7f00000001c0)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
mount$9p_fd(0x700, &(0x7f0000000040)='./file1\x00', &(0x7f00000000c0), 0x0, &(0x7f0000000280)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {}, 0x2c, {[{@nodevmap}]}})
openat(r1, &(0x7f0000000180)='./file1\x00', 0x0, 0x0)

21:18:24 executing program 7:
r0 = perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
io_setup(0x7f, &(0x7f00000002c0)=<r1=>0x0)
ioctl$AUTOFS_DEV_IOCTL_ASKUMOUNT(0xffffffffffffffff, 0xc018937d, &(0x7f0000000140)={{0x1, 0x1, 0x18, <r2=>r0, {0x3ff}}, './file0\x00'})
perf_event_open(&(0x7f00000000c0)={0x5, 0x80, 0xd6, 0x4, 0x5, 0x6, 0x0, 0x5, 0x2200, 0x2, 0x0, 0x1, 0x1, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x1, 0x0, 0x1, 0x0, 0x0, 0x1, 0x3, 0x0, 0x1, 0x0, 0x0, 0x1, 0x0, 0x1, 0x1, 0x0, 0x0, 0x1, 0x0, 0x1, 0x0, 0x0, 0x1, 0x0, 0x0, 0x1, 0x1, 0x0, 0x0, 0x7, 0x2, @perf_bp={&(0x7f0000000000), 0x4}, 0x20, 0x0, 0xfffffffc, 0x3, 0x5c9, 0x1ff, 0x9d, 0x0, 0x0, 0x0, 0x101}, 0xffffffffffffffff, 0x6, r2, 0x2)
io_submit(r1, 0x1, &(0x7f0000000340)=[&(0x7f0000000300)={0x0, 0x0, 0x0, 0x5, 0x0, r0, 0x0}])
openat(0xffffffffffffffff, 0x0, 0x0, 0x10)

[ 2257.927799]  ? p9_client_create+0x798/0x1090
[ 2257.928857]  ? kfree+0xd7/0x390
[ 2257.929392]  ? do_raw_spin_unlock+0x4f/0x220
[ 2257.930076]  p9_client_create+0xa76/0x1090
[ 2257.930793]  ? p9_client_flush+0x430/0x430
[ 2257.931472]  ? lockdep_init_map_type+0x2c7/0x780
[ 2257.932187]  ? rcu_read_lock_sched_held+0x3e/0x80
[ 2257.932938]  ? __raw_spin_lock_init+0x36/0x110
[ 2257.933646]  v9fs_session_init+0x1dd/0x16a0
[ 2257.934327]  ? kmem_cache_alloc_trace+0x151/0x360
[ 2257.935050]  ? v9fs_show_options+0x690/0x690
[ 2257.935746]  ? kasan_unpoison_shadow+0x33/0x50
[ 2257.936438]  ? __kasan_kmalloc.constprop.0+0xc9/0xd0
[ 2257.937211]  v9fs_mount+0x79/0x8f0
[ 2257.937761]  ? v9fs_write_inode+0x60/0x60
[ 2257.938416]  legacy_get_tree+0x105/0x220
21:18:24 executing program 4:
openat$vcs(0xffffffffffffff9c, &(0x7f0000000040), 0x0, 0x0)
openat$sr(0xffffffffffffff9c, &(0x7f00000035c0), 0x0, 0x0)
openat$sr(0xffffffffffffff9c, &(0x7f00000000c0), 0x224400, 0x0)
openat$rtc(0xffffffffffffff9c, &(0x7f0000000200), 0x0, 0x0)
pipe(&(0x7f00000001c0))
open(&(0x7f00000016c0)='./cgroup.net/cgroup.procs\x00', 0x0, 0x0)
pselect6(0x40, &(0x7f0000000180), &(0x7f00000001c0)={0x3fc, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8000000}, 0x0, 0x0, 0x0)

21:18:24 executing program 2:
syz_mount_image$vfat(&(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x0, 0x2, &(0x7f0000000180)=[{&(0x7f0000000140)="eb3c906d6b66732e66617400020801000470008400f801", 0x17}, {0x0, 0x0, 0x1000a00}], 0x0, &(0x7f0000000240)=ANY=[])
chdir(&(0x7f0000000040)='./file0\x00')
r0 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x105142, 0x0)
ioctl$FS_IOC_RESVSP(r0, 0x40305828, &(0x7f0000000040)={0x0, 0x0, 0x0, 0x4000006, 0x0, 0x500})

[ 2257.939017]  vfs_get_tree+0x8e/0x300
[ 2257.939814]  path_mount+0x13be/0x20b0
[ 2257.940404]  ? strncpy_from_user+0x9e/0x470
[ 2257.941078]  ? finish_automount+0xa40/0xa40
[ 2257.941747]  ? getname_flags.part.0+0x1dd/0x4f0
[ 2257.942486]  ? _copy_from_user+0xfb/0x1b0
[ 2257.943121]  __x64_sys_mount+0x282/0x300
[ 2257.943705]  ? copy_mnt_ns+0xa00/0xa00
[ 2257.944237]  ? rcu_read_lock_sched_held+0x3e/0x80
[ 2257.944877]  do_syscall_64+0x33/0x40
[ 2257.945368]  entry_SYSCALL_64_after_hwframe+0x61/0xc6
[ 2257.946038] RIP: 0033:0x7f38308e8b19
[ 2257.946546] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 2257.948935] RSP: 002b:00007f382de5e188 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5
[ 2257.949951] RAX: ffffffffffffffda RBX: 00007f38309fbf60 RCX: 00007f38308e8b19
[ 2257.951030] RDX: 00000000200000c0 RSI: 0000000020000040 RDI: 0000000000000000
[ 2257.952088] RBP: 00007f382de5e1d0 R08: 0000000020000280 R09: 0000000000000000
[ 2257.953142] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[ 2257.954194] R13: 00007ffca2bf07df R14: 00007f382de5e300 R15: 0000000000022000
21:18:24 executing program 7:
r0 = perf_event_open(&(0x7f0000000040)={0x5, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x6, 0x1, @perf_config_ext={0x3}, 0x80}, 0x0, 0xa, 0xffffffffffffffff, 0x0)
io_setup(0x7f, &(0x7f00000002c0)=<r1=>0x0)
io_submit(r1, 0x1, &(0x7f0000000340)=[&(0x7f0000000300)={0x0, 0x0, 0x0, 0x5, 0x0, r0, 0x0}])
r2 = openat$binderfs_ctrl(0xffffffffffffff9c, &(0x7f0000000180)='./binderfs/binder-control\x00', 0x0, 0x0)
ioctl$FICLONE(r2, 0x40049409, r0)
finit_module(r0, &(0x7f0000000140)='\'\x00', 0x1)
perf_event_open(&(0x7f00000000c0)={0x5, 0x80, 0x2c, 0x2, 0x13, 0x1, 0x0, 0x28000, 0x800, 0x8, 0x1, 0x1, 0x0, 0x0, 0x1, 0x0, 0x1, 0x1, 0x1, 0x1, 0x0, 0x0, 0x1, 0x1, 0x1, 0x3, 0x1, 0x1, 0x0, 0x0, 0x1, 0x0, 0x0, 0x1, 0x0, 0x1, 0x1, 0x0, 0x1, 0x1, 0x0, 0x1, 0x0, 0x1, 0x1, 0x0, 0x1, 0x0, 0x3f, 0x1, @perf_bp={&(0x7f0000000000), 0x4}, 0x80, 0x5c34067, 0x2, 0x5, 0x81, 0xff, 0x2, 0x0, 0x3ff, 0x0, 0x8}, 0x0, 0x6, 0xffffffffffffffff, 0x8)
openat(0xffffffffffffffff, 0x0, 0x0, 0x10)
syz_mount_image$vfat(&(0x7f0000001580), &(0x7f00000015c0)='./file0\x00', 0x2, 0x6, &(0x7f0000002980)=[{&(0x7f0000001600)="fb702d40c017ba245970a6ef3a558a6ef9c4321abaf7d6822621c7032aa03e5b8560f503dc221f05859fd8e7412514ae003ce49d2be011d06d491a457125857f4d1d2b41e7", 0x45, 0x27f}, {&(0x7f0000001680)="e9ea9ed62f7143fd74c7c0b649d3900647c2d9ff6c01882896ada737e0d7fd0202f4d83e4c860f01c99d80ce7a36675dafdb885092fa52e495d042729d2ef112fe186b69e4dd426de5b21291292db647260987a7e37af87a5c2ebfac886136f4415b814f40768cb76f6269d9f160b71988793f272a9901cd0177d6b949ec642ec6dcdfdbc36da147023926c6ca9353a4abefcd9b6639d7e0a8", 0x99, 0x4}, {&(0x7f0000001740)="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", 0x1000}, {&(0x7f0000002740)="cb7f6450a9bd04526460aa280040bc7bc37ae6d72a24485798cae20466809fc27cde5c7748e83f5854704f148316a691231994b25e36ff9031db35c0240a2c1835b9784c99f95a56c5d33b0faebeebede3d0f00abe72cff8f1715e7b39c407d454a6d6a0049d7681a09aa14ac3ecebefe7f0dab0942afb9fc310423ab5837e3879f4985b6d5e27c0819c8bc3b3de7a5652be360f913cbcc2bd83425f26aafd76bfebe44fcbd1cdd6f57b8dfd9968a0f4da73c47be5e13bade20a2b0d7bdf105e5e52fb34a156a0ec9503854c7785d3bd4168d9ab3e37075d44", 0xd9, 0x19a2}, {&(0x7f0000002840)="96", 0x1, 0x8}, {&(0x7f0000002880)="b01e2df202fe94526c5eabd42a8927837f14f33d7b1e706ab246419d67adc1a51b07c1ae46631548e18a2292c7ec9ed6e3e0460fc922233c90c5d44f9c9a7f6cb4e968bb9142a821649b33a04b4a82b034c8049bbd89a99608032f650677fb542ed27d5b9781143da602be201d103fdbf650551fb298f12d7a30dc443d4641865156173a06b929fa6087fe56c3758027e114d53b9d6a9418581f6f39722851f8e14ae2e87349d1272a8e6cd5bbdff0619bc8d2b7078f4adcc85881ec54b3e7e949343806bca31bec0a73af5cd038a21d88b100a00ab9f684f0a69b9256b1d9407770a694ebe525de9d55f98b9688bb306641ebc1", 0xf4, 0xc0}], 0x824000, &(0x7f0000002a40)={[{@uni_xlateno}, {@shortname_winnt}, {@utf8}, {@nonumtail}], [{@fsname={'fsname', 0x3d, '$\\[\x19!\\+)^.'}}, {@appraise_type}, {@smackfshat={'smackfshat', 0x3d, '\'\x00'}}]})
r3 = perf_event_open(&(0x7f0000001d80)={0x2, 0x80, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
mmap(&(0x7f0000ffc000/0x2000)=nil, 0x2000, 0x0, 0x13, r3, 0x0)
perf_event_open(&(0x7f0000001d80)={0x2, 0x80, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, r3, 0x2)
ioctl$AUTOFS_IOC_FAIL(r3, 0x9361, 0x100000001)

21:18:39 executing program 5:
openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x105142, 0x0)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
pipe(&(0x7f00000001c0)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
mount$9p_fd(0x0, &(0x7f0000000040)='./file1\x00', &(0x7f00000000c0), 0x0, &(0x7f0000000280)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}}) (fail_nth: 35)
openat(0xffffffffffffffff, 0x0, 0x0, 0x0)

21:18:39 executing program 0:
syz_mount_image$vfat(&(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x0, 0x2, &(0x7f0000000180)=[{&(0x7f0000000140)="eb3c906d6b66732e66617400020801000470008400f801", 0x17}, {0x0, 0x0, 0x1000a00}], 0x0, &(0x7f0000000240)=ANY=[])
chdir(&(0x7f0000000040)='./file0\x00')
mount$cgroup(0x0, 0x0, &(0x7f0000000400), 0x0, 0x0)
r0 = syz_io_uring_setup(0x22, &(0x7f0000000680)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000180)=<r1=>0x0, &(0x7f0000002a40))
r2 = io_uring_register$IORING_REGISTER_PERSONALITY(r0, 0x9, 0x0, 0x0)
r3 = socket$nl_netfilter(0x10, 0x3, 0xc)
syz_io_uring_submit(r1, 0x0, &(0x7f0000000400)=@IORING_OP_WRITEV={0x2, 0x0, 0x0, @fd=r3, 0x0, 0x0, 0x0, 0x0, 0x0, {0x0, r2}}, 0x0)
r4 = syz_io_uring_setup(0x22, &(0x7f0000000680)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000180), &(0x7f0000002a40))
r5 = io_uring_register$IORING_REGISTER_PERSONALITY(r4, 0x9, 0x0, 0x0)
syz_io_uring_submit(r1, 0x0, &(0x7f0000000440)=@IORING_OP_FSYNC={0x3, 0x2, 0x0, @fd_index=0x9, 0x0, 0x0, 0x0, 0x0, 0x1, {0x0, r5}}, 0x2)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r6 = openat(0xffffffffffffff9c, &(0x7f00000002c0)='./file1\x00', 0x105142, 0x0)
r7 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0)
mount(&(0x7f0000000200)=ANY=[@ANYBLOB="2f6f651317868af191bdb2"], &(0x7f0000000240)='./file0\x00', &(0x7f0000000280)='nfsd\x00', 0x800000, &(0x7f0000000300)='cgroup\x00')
sendfile(r6, r7, 0x0, 0x100000001)
newfstatat(0xffffffffffffff9c, &(0x7f0000000340)='./file1\x00', &(0x7f0000000380), 0x400)

21:18:39 executing program 4:
openat$vcs(0xffffffffffffff9c, &(0x7f0000000040), 0x0, 0x0)
openat$sr(0xffffffffffffff9c, &(0x7f00000035c0), 0x0, 0x0)
openat$sr(0xffffffffffffff9c, &(0x7f00000000c0), 0x224400, 0x0)
openat$rtc(0xffffffffffffff9c, &(0x7f0000000200), 0x0, 0x0)
pipe(&(0x7f00000001c0))
open(&(0x7f00000016c0)='./cgroup.net/cgroup.procs\x00', 0x0, 0x0)
pselect6(0x40, &(0x7f0000000180), &(0x7f00000001c0)={0x3fc, 0x0, 0x0, 0x0, 0x0, 0x0, 0xa000000}, 0x0, 0x0, 0x0)

21:18:39 executing program 6:
r0 = syz_mount_image$vfat(&(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x0, 0x2, &(0x7f0000000180)=[{&(0x7f0000000140)="eb3c906d6b66732e66617400020801000470008400f801", 0x17}, {0x0, 0x0, 0x1000a00}], 0x0, &(0x7f0000000240)=ANY=[])
chdir(&(0x7f0000000040)='./file0\x00')
openat2(r0, 0x0, &(0x7f00000001c0)={0x40000, 0x81}, 0x18)
mount$cgroup(0x0, 0x0, &(0x7f0000000400), 0x0, 0x0)
r1 = syz_io_uring_setup(0x22, &(0x7f0000000680)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000180)=<r2=>0x0, &(0x7f0000002a40)=<r3=>0x0)
r4 = io_uring_register$IORING_REGISTER_PERSONALITY(r1, 0x9, 0x0, 0x0)
r5 = socket$nl_netfilter(0x10, 0x3, 0xc)
syz_io_uring_submit(r2, r3, &(0x7f0000000400)=@IORING_OP_WRITEV={0x2, 0x0, 0x0, @fd=r5, 0x0, 0x0, 0x0, 0x0, 0x0, {0x0, r4}}, 0x0)
r6 = syz_io_uring_setup(0x22, &(0x7f0000000680)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000180), &(0x7f0000002a40))
r7 = io_uring_register$IORING_REGISTER_PERSONALITY(r6, 0x9, 0x0, 0x0)
syz_io_uring_submit(r2, 0x0, &(0x7f0000000440)=@IORING_OP_FSYNC={0x3, 0x2, 0x0, @fd_index=0x9, 0x0, 0x0, 0x0, 0x0, 0x1, {0x0, r7}}, 0x2)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r8 = openat(0xffffffffffffff9c, &(0x7f00000002c0)='./file1\x00', 0x105142, 0x0)
r9 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0)
sendfile(r8, r9, 0x0, 0x100000001)
newfstatat(0xffffffffffffff9c, &(0x7f0000000340)='./file1\x00', &(0x7f0000000380), 0x400)

21:18:39 executing program 2:
syz_mount_image$vfat(&(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x0, 0x2, &(0x7f0000000180)=[{&(0x7f0000000140)="eb3c906d6b66732e66617400020801000470008400f801", 0x17}, {0x0, 0x0, 0x1000a00}], 0x0, &(0x7f0000000240)=ANY=[])
chdir(&(0x7f0000000040)='./file0\x00')
r0 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x105142, 0x0)
ioctl$FS_IOC_RESVSP(r0, 0x40305828, &(0x7f0000000040)={0x0, 0x0, 0x0, 0x4000006, 0x0, 0x700})

21:18:39 executing program 7:
openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x105142, 0x0)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
pipe(&(0x7f00000001c0))
mount$9p_fd(0x3, &(0x7f0000000040)='./file1\x00', &(0x7f00000000c0), 0x0, &(0x7f0000000280)={'trans=fd,', {}, 0x2c, {}, 0x2c, {[{@nodevmap}]}})

21:18:39 executing program 1:
openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x105142, 0x0)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
pipe(&(0x7f00000001c0))
mount$9p_fd(0x9, &(0x7f0000000040)='./file1\x00', &(0x7f00000000c0), 0x0, &(0x7f0000000280)={'trans=fd,', {}, 0x2c, {}, 0x2c, {[{@nodevmap}]}})

21:18:39 executing program 3:
openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x105142, 0x0)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x400}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
pipe(&(0x7f00000001c0)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
mount$9p_fd(0x900, &(0x7f0000000040)='./file1\x00', &(0x7f00000000c0), 0x0, &(0x7f0000000280)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {}, 0x2c, {[{@nodevmap}]}})
openat(r1, &(0x7f0000000180)='./file1\x00', 0x0, 0x0)

[ 2273.105380] FAULT_INJECTION: forcing a failure.
[ 2273.105380] name failslab, interval 1, probability 0, space 0, times 0
[ 2273.107967] CPU: 0 PID: 18534 Comm: syz-executor.5 Not tainted 5.10.172 #1
[ 2273.109455] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 2273.111263] Call Trace:
[ 2273.111835]  dump_stack+0x107/0x167
[ 2273.112633]  should_fail.cold+0x5/0xa
[ 2273.113457]  ? create_object.isra.0+0x3a/0xa20
[ 2273.114439]  should_failslab+0x5/0x20
[ 2273.115286]  kmem_cache_alloc+0x5b/0x360
[ 2273.116185]  create_object.isra.0+0x3a/0xa20
[ 2273.117127]  ? __kasan_kmalloc.constprop.0+0xc9/0xd0
[ 2273.118234]  kmem_cache_alloc+0x159/0x360
[ 2273.119161]  p9_client_prepare_req.part.0+0x3a/0xb30
[ 2273.120284]  p9_client_rpc+0x220/0x1270
[ 2273.121143]  ? lockdep_hardirqs_on_prepare+0x277/0x3e0
[ 2273.122296]  ? p9_client_prepare_req.part.0+0xb30/0xb30
[ 2273.123464]  ? pipe_poll+0x21b/0x7f0
[ 2273.124307]  ? p9_fd_close+0x4a0/0x4a0
[ 2273.125167]  ? anon_pipe_buf_release+0x280/0x280
[ 2273.126239]  ? p9_fd_poll+0x1e0/0x2c0
[ 2273.127202]  ? p9_fd_create+0x357/0x4a0
[ 2273.128142]  ? p9_conn_create+0x510/0x510
[ 2273.129181]  ? p9_client_create+0x798/0x1090
[ 2273.130296]  ? kfree+0xd7/0x390
[ 2273.131159]  ? do_raw_spin_unlock+0x4f/0x220
[ 2273.132296]  p9_client_create+0xa76/0x1090
[ 2273.133356]  ? p9_client_flush+0x430/0x430
[ 2273.134293]  ? lockdep_init_map_type+0x2c7/0x780
[ 2273.135323]  ? rcu_read_lock_sched_held+0x3e/0x80
[ 2273.136396]  ? __raw_spin_lock_init+0x36/0x110
[ 2273.137395]  v9fs_session_init+0x1dd/0x16a0
[ 2273.138321]  ? irqentry_enter+0x26/0x60
[ 2273.139205]  ? asm_sysvec_apic_timer_interrupt+0x12/0x20
[ 2273.140360]  ? trace_hardirqs_on+0x5b/0x180
[ 2273.141295]  ? v9fs_show_options+0x690/0x690
[ 2273.142267]  ? kasan_unpoison_shadow+0x33/0x50
[ 2273.143264]  ? __kasan_kmalloc.constprop.0+0xc9/0xd0
[ 2273.144354]  v9fs_mount+0x79/0x8f0
[ 2273.145139]  ? v9fs_write_inode+0x60/0x60
[ 2273.146030]  legacy_get_tree+0x105/0x220
[ 2273.146915]  vfs_get_tree+0x8e/0x300
[ 2273.147716]  path_mount+0x13be/0x20b0
[ 2273.148542]  ? strncpy_from_user+0x9e/0x470
[ 2273.149473]  ? finish_automount+0xa40/0xa40
[ 2273.150419]  ? getname_flags.part.0+0x1dd/0x4f0
[ 2273.151432]  ? _copy_from_user+0xfb/0x1b0
[ 2273.152344]  __x64_sys_mount+0x282/0x300
[ 2273.153224]  ? copy_mnt_ns+0xa00/0xa00
[ 2273.154076]  ? rcu_read_lock_sched_held+0x3e/0x80
[ 2273.155123]  do_syscall_64+0x33/0x40
[ 2273.155919]  entry_SYSCALL_64_after_hwframe+0x61/0xc6
[ 2273.157018] RIP: 0033:0x7f38308e8b19
[ 2273.157831] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 2273.161764] RSP: 002b:00007f382de5e188 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5
[ 2273.163408] RAX: ffffffffffffffda RBX: 00007f38309fbf60 RCX: 00007f38308e8b19
[ 2273.164942] RDX: 00000000200000c0 RSI: 0000000020000040 RDI: 0000000000000000
[ 2273.166487] RBP: 00007f382de5e1d0 R08: 0000000020000280 R09: 0000000000000000
[ 2273.168024] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[ 2273.169545] R13: 00007ffca2bf07df R14: 00007f382de5e300 R15: 0000000000022000
21:18:39 executing program 7:
r0 = perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
io_setup(0x7f, &(0x7f00000002c0)=<r1=>0x0)
io_pgetevents(r1, 0x1, 0x1, &(0x7f0000000000)=[{}], 0x0, 0x0)
io_submit(r1, 0x1, &(0x7f0000000340)=[&(0x7f0000000300)={0x0, 0x0, 0x0, 0x5, 0x0, r0, 0x0}])
openat(0xffffffffffffffff, 0x0, 0x0, 0x10)

21:18:53 executing program 5:
openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x105142, 0x0)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
pipe(&(0x7f00000001c0)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
mount$9p_fd(0x0, &(0x7f0000000040)='./file1\x00', &(0x7f00000000c0), 0x0, &(0x7f0000000280)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}}) (fail_nth: 36)
openat(0xffffffffffffffff, 0x0, 0x0, 0x0)

21:18:53 executing program 3:
openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x105142, 0x0)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x400}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
pipe(&(0x7f00000001c0)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
mount$9p_fd(0xa00, &(0x7f0000000040)='./file1\x00', &(0x7f00000000c0), 0x0, &(0x7f0000000280)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {}, 0x2c, {[{@nodevmap}]}})
openat(r1, &(0x7f0000000180)='./file1\x00', 0x0, 0x0)

21:18:53 executing program 0:
syz_mount_image$vfat(&(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x0, 0x2, &(0x7f0000000180)=[{&(0x7f0000000140)="eb3c906d6b66732e66617400020801000470008400f801", 0x17}, {0x0, 0x0, 0x1000a00}], 0x0, &(0x7f0000000240)=ANY=[])
chdir(&(0x7f0000000040)='./file0\x00')
mount$cgroup(0x0, 0x0, &(0x7f0000000400), 0x0, 0x0)
r0 = syz_io_uring_setup(0x22, &(0x7f0000000680)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000180)=<r1=>0x0, &(0x7f0000002a40))
r2 = io_uring_register$IORING_REGISTER_PERSONALITY(r0, 0x9, 0x0, 0x0)
r3 = socket$nl_netfilter(0x10, 0x3, 0xc)
syz_io_uring_submit(r1, 0x0, &(0x7f0000000400)=@IORING_OP_WRITEV={0x2, 0x0, 0x0, @fd=r3, 0x0, 0x0, 0x0, 0x0, 0x0, {0x0, r2}}, 0x0)
r4 = syz_io_uring_setup(0x22, &(0x7f0000000680)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000180), &(0x7f0000002a40))
r5 = io_uring_register$IORING_REGISTER_PERSONALITY(r4, 0x9, 0x0, 0x0)
syz_io_uring_submit(r1, 0x0, &(0x7f0000000440)=@IORING_OP_FSYNC={0x3, 0x2, 0x0, @fd_index=0x9, 0x0, 0x0, 0x0, 0x0, 0x1, {0x0, r5}}, 0x2)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r6 = openat(0xffffffffffffff9c, &(0x7f00000002c0)='./file1\x00', 0x105142, 0x0)
r7 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0)
mount(&(0x7f0000000200)=ANY=[@ANYBLOB="2f6f651317868af191bdb2"], &(0x7f0000000240)='./file0\x00', &(0x7f0000000280)='nfsd\x00', 0x800000, &(0x7f0000000300)='cgroup\x00')
sendfile(r6, r7, 0x0, 0x100000001)
newfstatat(0xffffffffffffff9c, &(0x7f0000000340)='./file1\x00', &(0x7f0000000380), 0x400)

21:18:53 executing program 7:
r0 = perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
io_setup(0x7f, &(0x7f00000002c0)=<r1=>0x0)
io_pgetevents(r1, 0x1, 0x1, &(0x7f0000000000)=[{}], 0x0, 0x0)
io_submit(r1, 0x1, &(0x7f0000000340)=[&(0x7f0000000300)={0x0, 0x0, 0x0, 0x5, 0x0, r0, 0x0}])
openat(0xffffffffffffffff, 0x0, 0x0, 0x10)

21:18:53 executing program 1:
openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x105142, 0x0)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
pipe(&(0x7f00000001c0))
mount$9p_fd(0xa, &(0x7f0000000040)='./file1\x00', &(0x7f00000000c0), 0x0, &(0x7f0000000280)={'trans=fd,', {}, 0x2c, {}, 0x2c, {[{@nodevmap}]}})

21:18:53 executing program 4:
openat$vcs(0xffffffffffffff9c, &(0x7f0000000040), 0x0, 0x0)
openat$sr(0xffffffffffffff9c, &(0x7f00000035c0), 0x0, 0x0)
openat$sr(0xffffffffffffff9c, &(0x7f00000000c0), 0x224400, 0x0)
openat$rtc(0xffffffffffffff9c, &(0x7f0000000200), 0x0, 0x0)
pipe(&(0x7f00000001c0))
open(&(0x7f00000016c0)='./cgroup.net/cgroup.procs\x00', 0x0, 0x0)
pselect6(0x40, &(0x7f0000000180), &(0x7f00000001c0)={0x3fc, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10000000}, 0x0, 0x0, 0x0)

21:18:53 executing program 2:
syz_mount_image$vfat(&(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x0, 0x2, &(0x7f0000000180)=[{&(0x7f0000000140)="eb3c906d6b66732e66617400020801000470008400f801", 0x17}, {0x0, 0x0, 0x1000a00}], 0x0, &(0x7f0000000240)=ANY=[])
chdir(&(0x7f0000000040)='./file0\x00')
r0 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x105142, 0x0)
ioctl$FS_IOC_RESVSP(r0, 0x40305828, &(0x7f0000000040)={0x0, 0x0, 0x0, 0x4000006, 0x0, 0x900})

21:18:53 executing program 6:
r0 = syz_mount_image$vfat(&(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x0, 0x2, &(0x7f0000000180)=[{&(0x7f0000000140)="eb3c906d6b66732e66617400020801000470008400f801", 0x17}, {0x0, 0x0, 0x1000a00}], 0x0, &(0x7f0000000240)=ANY=[])
chdir(&(0x7f0000000040)='./file0\x00')
openat2(r0, 0x0, &(0x7f00000001c0)={0x40000, 0x81}, 0x18)
mount$cgroup(0x0, 0x0, &(0x7f0000000400), 0x0, 0x0)
r1 = syz_io_uring_setup(0x22, &(0x7f0000000680)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000180)=<r2=>0x0, &(0x7f0000002a40)=<r3=>0x0)
r4 = io_uring_register$IORING_REGISTER_PERSONALITY(r1, 0x9, 0x0, 0x0)
r5 = socket$nl_netfilter(0x10, 0x3, 0xc)
syz_io_uring_submit(r2, r3, &(0x7f0000000400)=@IORING_OP_WRITEV={0x2, 0x0, 0x0, @fd=r5, 0x0, 0x0, 0x0, 0x0, 0x0, {0x0, r4}}, 0x0)
r6 = syz_io_uring_setup(0x22, &(0x7f0000000680)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000180), &(0x7f0000002a40))
r7 = io_uring_register$IORING_REGISTER_PERSONALITY(r6, 0x9, 0x0, 0x0)
syz_io_uring_submit(r2, 0x0, &(0x7f0000000440)=@IORING_OP_FSYNC={0x3, 0x2, 0x0, @fd_index=0x9, 0x0, 0x0, 0x0, 0x0, 0x1, {0x0, r7}}, 0x2)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r8 = openat(0xffffffffffffff9c, &(0x7f00000002c0)='./file1\x00', 0x105142, 0x0)
r9 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0)
sendfile(r8, r9, 0x0, 0x100000001)
newfstatat(0xffffffffffffff9c, &(0x7f0000000340)='./file1\x00', &(0x7f0000000380), 0x400)

[ 2287.150027] FAULT_INJECTION: forcing a failure.
[ 2287.150027] name failslab, interval 1, probability 0, space 0, times 0
[ 2287.151400] CPU: 1 PID: 18674 Comm: syz-executor.5 Not tainted 5.10.172 #1
[ 2287.152208] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 2287.153099] Call Trace:
[ 2287.153416]  dump_stack+0x107/0x167
[ 2287.153844]  should_fail.cold+0x5/0xa
[ 2287.154285]  ? p9_fcall_init+0x97/0x210
[ 2287.154750]  should_failslab+0x5/0x20
[ 2287.155187]  __kmalloc+0x72/0x3f0
[ 2287.155590]  p9_fcall_init+0x97/0x210
[ 2287.156036]  p9_client_prepare_req.part.0+0x8c/0xb30
[ 2287.156630]  p9_client_rpc+0x220/0x1270
[ 2287.157087]  ? _raw_spin_unlock_irqrestore+0x38/0x40
[ 2287.157680]  ? p9_client_prepare_req.part.0+0xb30/0xb30
[ 2287.158301]  ? pipe_poll+0x21b/0x7f0
[ 2287.158748]  ? p9_fd_close+0x4a0/0x4a0
[ 2287.159195]  ? anon_pipe_buf_release+0x280/0x280
[ 2287.159738]  ? p9_fd_poll+0x1e0/0x2c0
[ 2287.160183]  ? p9_fd_create+0x357/0x4a0
[ 2287.160641]  ? p9_conn_create+0x510/0x510
[ 2287.161115]  ? p9_client_create+0x798/0x1090
[ 2287.161622]  ? kfree+0xd7/0x390
[ 2287.162007]  ? do_raw_spin_unlock+0x4f/0x220
[ 2287.162518]  p9_client_create+0xa76/0x1090
[ 2287.163019]  ? p9_client_flush+0x430/0x430
[ 2287.163508]  ? lockdep_init_map_type+0x2c7/0x780
[ 2287.164046]  ? rcu_read_lock_sched_held+0x3e/0x80
[ 2287.164609]  ? __raw_spin_lock_init+0x36/0x110
[ 2287.165143]  v9fs_session_init+0x1dd/0x16a0
[ 2287.165661]  ? kmem_cache_alloc_trace+0x151/0x360
[ 2287.166224]  ? v9fs_show_options+0x690/0x690
[ 2287.166774]  ? kasan_unpoison_shadow+0x33/0x50
[ 2287.167301]  ? __kasan_kmalloc.constprop.0+0xc9/0xd0
[ 2287.167908]  v9fs_mount+0x79/0x8f0
[ 2287.168337]  ? v9fs_write_inode+0x60/0x60
[ 2287.168829]  legacy_get_tree+0x105/0x220
[ 2287.169316]  ? __sanitizer_cov_trace_pc+0x30/0x60
[ 2287.169892]  vfs_get_tree+0x8e/0x300
[ 2287.170337]  path_mount+0x13be/0x20b0
[ 2287.170808]  ? strncpy_from_user+0x9e/0x470
[ 2287.171326]  ? finish_automount+0xa40/0xa40
[ 2287.171848]  ? getname_flags.part.0+0x1dd/0x4f0
[ 2287.172407]  ? _copy_from_user+0xfb/0x1b0
[ 2287.172902]  __x64_sys_mount+0x282/0x300
[ 2287.173382]  ? copy_mnt_ns+0xa00/0xa00
[ 2287.173851]  ? rcu_read_lock_sched_held+0x3e/0x80
[ 2287.174421]  do_syscall_64+0x33/0x40
[ 2287.174877]  entry_SYSCALL_64_after_hwframe+0x61/0xc6
[ 2287.175473] RIP: 0033:0x7f38308e8b19
[ 2287.175927] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 2287.178109] RSP: 002b:00007f382de5e188 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5
[ 2287.179027] RAX: ffffffffffffffda RBX: 00007f38309fbf60 RCX: 00007f38308e8b19
[ 2287.179891] RDX: 00000000200000c0 RSI: 0000000020000040 RDI: 0000000000000000
[ 2287.180757] RBP: 00007f382de5e1d0 R08: 0000000020000280 R09: 0000000000000000
[ 2287.181625] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[ 2287.182496] R13: 00007ffca2bf07df R14: 00007f382de5e300 R15: 0000000000022000
21:18:53 executing program 2:
syz_mount_image$vfat(&(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x0, 0x2, &(0x7f0000000180)=[{&(0x7f0000000140)="eb3c906d6b66732e66617400020801000470008400f801", 0x17}, {0x0, 0x0, 0x1000a00}], 0x0, &(0x7f0000000240)=ANY=[])
chdir(&(0x7f0000000040)='./file0\x00')
r0 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x105142, 0x0)
ioctl$FS_IOC_RESVSP(r0, 0x40305828, &(0x7f0000000040)={0x0, 0x0, 0x0, 0x4000006, 0x0, 0xa00})

21:18:53 executing program 7:
r0 = perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
io_setup(0x7f, &(0x7f00000002c0)=<r1=>0x0)
io_pgetevents(r1, 0x1, 0x1, &(0x7f0000000000)=[{}], 0x0, 0x0)
io_submit(r1, 0x1, &(0x7f0000000340)=[&(0x7f0000000300)={0x0, 0x0, 0x0, 0x5, 0x0, r0, 0x0}])
openat(0xffffffffffffffff, 0x0, 0x0, 0x10)

21:18:53 executing program 3:
openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x105142, 0x0)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x400}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
pipe(&(0x7f00000001c0)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
mount$9p_fd(0xb00, &(0x7f0000000040)='./file1\x00', &(0x7f00000000c0), 0x0, &(0x7f0000000280)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {}, 0x2c, {[{@nodevmap}]}})
openat(r1, &(0x7f0000000180)='./file1\x00', 0x0, 0x0)

21:18:53 executing program 5:
openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x105142, 0x0)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
pipe(&(0x7f00000001c0)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
mount$9p_fd(0x0, &(0x7f0000000040)='./file1\x00', &(0x7f00000000c0), 0x0, &(0x7f0000000280)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}}) (fail_nth: 37)
openat(0xffffffffffffffff, 0x0, 0x0, 0x0)

21:18:53 executing program 4:
openat$vcs(0xffffffffffffff9c, &(0x7f0000000040), 0x0, 0x0)
openat$sr(0xffffffffffffff9c, &(0x7f00000035c0), 0x0, 0x0)
openat$sr(0xffffffffffffff9c, &(0x7f00000000c0), 0x224400, 0x0)
openat$rtc(0xffffffffffffff9c, &(0x7f0000000200), 0x0, 0x0)
pipe(&(0x7f00000001c0))
open(&(0x7f00000016c0)='./cgroup.net/cgroup.procs\x00', 0x0, 0x0)
pselect6(0x40, &(0x7f0000000180), &(0x7f00000001c0)={0x3fc, 0x0, 0x0, 0x0, 0x0, 0x0, 0x100000000000000}, 0x0, 0x0, 0x0)

21:18:53 executing program 2:
syz_mount_image$vfat(&(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x0, 0x2, &(0x7f0000000180)=[{&(0x7f0000000140)="eb3c906d6b66732e66617400020801000470008400f801", 0x17}, {0x0, 0x0, 0x1000a00}], 0x0, &(0x7f0000000240)=ANY=[])
chdir(&(0x7f0000000040)='./file0\x00')
r0 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x105142, 0x0)
ioctl$FS_IOC_RESVSP(r0, 0x40305828, &(0x7f0000000040)={0x0, 0x0, 0x0, 0x4000006, 0x0, 0xd00})

21:18:53 executing program 1:
openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x105142, 0x0)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
pipe(&(0x7f00000001c0))
mount$9p_fd(0xb, &(0x7f0000000040)='./file1\x00', &(0x7f00000000c0), 0x0, &(0x7f0000000280)={'trans=fd,', {}, 0x2c, {}, 0x2c, {[{@nodevmap}]}})

21:18:53 executing program 0:
syz_mount_image$vfat(&(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x0, 0x2, &(0x7f0000000180)=[{&(0x7f0000000140)="eb3c906d6b66732e66617400020801000470008400f801", 0x17}, {0x0, 0x0, 0x1000a00}], 0x0, &(0x7f0000000240)=ANY=[])
chdir(&(0x7f0000000040)='./file0\x00')
mount$cgroup(0x0, 0x0, &(0x7f0000000400), 0x0, 0x0)
r0 = syz_io_uring_setup(0x22, &(0x7f0000000680)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000180)=<r1=>0x0, &(0x7f0000002a40))
r2 = io_uring_register$IORING_REGISTER_PERSONALITY(r0, 0x9, 0x0, 0x0)
r3 = socket$nl_netfilter(0x10, 0x3, 0xc)
syz_io_uring_submit(r1, 0x0, &(0x7f0000000400)=@IORING_OP_WRITEV={0x2, 0x0, 0x0, @fd=r3, 0x0, 0x0, 0x0, 0x0, 0x0, {0x0, r2}}, 0x0)
r4 = syz_io_uring_setup(0x22, &(0x7f0000000680)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000180), &(0x7f0000002a40))
r5 = io_uring_register$IORING_REGISTER_PERSONALITY(r4, 0x9, 0x0, 0x0)
syz_io_uring_submit(r1, 0x0, &(0x7f0000000440)=@IORING_OP_FSYNC={0x3, 0x2, 0x0, @fd_index=0x9, 0x0, 0x0, 0x0, 0x0, 0x1, {0x0, r5}}, 0x2)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r6 = openat(0xffffffffffffff9c, &(0x7f00000002c0)='./file1\x00', 0x105142, 0x0)
r7 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0)
mount(&(0x7f0000000200)=ANY=[@ANYBLOB="2f6f651317868af191bdb2"], &(0x7f0000000240)='./file0\x00', &(0x7f0000000280)='nfsd\x00', 0x800000, &(0x7f0000000300)='cgroup\x00')
sendfile(r6, r7, 0x0, 0x100000001)
newfstatat(0xffffffffffffff9c, &(0x7f0000000340)='./file1\x00', &(0x7f0000000380), 0x400)

21:18:53 executing program 3:
openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x105142, 0x0)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x400}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
pipe(&(0x7f00000001c0)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
mount$9p_fd(0x1020, &(0x7f0000000040)='./file1\x00', &(0x7f00000000c0), 0x0, &(0x7f0000000280)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {}, 0x2c, {[{@nodevmap}]}})
openat(r1, &(0x7f0000000180)='./file1\x00', 0x0, 0x0)

21:18:53 executing program 3:
openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x105142, 0x0)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x400}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
pipe(&(0x7f00000001c0)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
mount$9p_fd(0x2000, &(0x7f0000000040)='./file1\x00', &(0x7f00000000c0), 0x0, &(0x7f0000000280)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {}, 0x2c, {[{@nodevmap}]}})
openat(r1, &(0x7f0000000180)='./file1\x00', 0x0, 0x0)

21:18:54 executing program 4:
openat$vcs(0xffffffffffffff9c, &(0x7f0000000040), 0x0, 0x0)
openat$sr(0xffffffffffffff9c, &(0x7f00000035c0), 0x0, 0x0)
openat$sr(0xffffffffffffff9c, &(0x7f00000000c0), 0x224400, 0x0)
openat$rtc(0xffffffffffffff9c, &(0x7f0000000200), 0x0, 0x0)
pipe(&(0x7f00000001c0))
open(&(0x7f00000016c0)='./cgroup.net/cgroup.procs\x00', 0x0, 0x0)
pselect6(0x40, &(0x7f0000000180), &(0x7f00000001c0)={0x3fc, 0x0, 0x0, 0x0, 0x0, 0x0, 0x800000000000000}, 0x0, 0x0, 0x0)

21:18:54 executing program 6:
r0 = syz_mount_image$vfat(&(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x0, 0x2, &(0x7f0000000180)=[{&(0x7f0000000140)="eb3c906d6b66732e66617400020801000470008400f801", 0x17}, {0x0, 0x0, 0x1000a00}], 0x0, &(0x7f0000000240)=ANY=[])
chdir(&(0x7f0000000040)='./file0\x00')
openat2(r0, 0x0, &(0x7f00000001c0)={0x40000, 0x81}, 0x18)
mount$cgroup(0x0, 0x0, &(0x7f0000000400), 0x0, 0x0)
r1 = syz_io_uring_setup(0x22, &(0x7f0000000680)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000180)=<r2=>0x0, &(0x7f0000002a40)=<r3=>0x0)
r4 = io_uring_register$IORING_REGISTER_PERSONALITY(r1, 0x9, 0x0, 0x0)
r5 = socket$nl_netfilter(0x10, 0x3, 0xc)
syz_io_uring_submit(r2, r3, &(0x7f0000000400)=@IORING_OP_WRITEV={0x2, 0x0, 0x0, @fd=r5, 0x0, 0x0, 0x0, 0x0, 0x0, {0x0, r4}}, 0x0)
r6 = syz_io_uring_setup(0x22, &(0x7f0000000680)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000180), &(0x7f0000002a40))
r7 = io_uring_register$IORING_REGISTER_PERSONALITY(r6, 0x9, 0x0, 0x0)
syz_io_uring_submit(r2, 0x0, &(0x7f0000000440)=@IORING_OP_FSYNC={0x3, 0x2, 0x0, @fd_index=0x9, 0x0, 0x0, 0x0, 0x0, 0x1, {0x0, r7}}, 0x2)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r8 = openat(0xffffffffffffff9c, &(0x7f00000002c0)='./file1\x00', 0x105142, 0x0)
r9 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0)
sendfile(r8, r9, 0x0, 0x100000001)
newfstatat(0xffffffffffffff9c, &(0x7f0000000340)='./file1\x00', &(0x7f0000000380), 0x400)

[ 2287.551220] FAULT_INJECTION: forcing a failure.
[ 2287.551220] name failslab, interval 1, probability 0, space 0, times 0
[ 2287.554206] CPU: 0 PID: 18806 Comm: syz-executor.5 Not tainted 5.10.172 #1
[ 2287.555637] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 2287.557317] Call Trace:
[ 2287.557864]  dump_stack+0x107/0x167
[ 2287.558611]  should_fail.cold+0x5/0xa
[ 2287.559405]  ? create_object.isra.0+0x3a/0xa20
[ 2287.560339]  should_failslab+0x5/0x20
[ 2287.561117]  kmem_cache_alloc+0x5b/0x360
[ 2287.561943]  create_object.isra.0+0x3a/0xa20
[ 2287.562847]  ? __kasan_kmalloc.constprop.0+0xc9/0xd0
[ 2287.563876]  __kmalloc+0x16e/0x3f0
[ 2287.564601]  p9_fcall_init+0x97/0x210
[ 2287.565373]  p9_client_prepare_req.part.0+0x8c/0xb30
[ 2287.566407]  p9_client_rpc+0x220/0x1270
[ 2287.567219]  ? lockdep_hardirqs_on_prepare+0x277/0x3e0
[ 2287.568285]  ? p9_client_prepare_req.part.0+0xb30/0xb30
[ 2287.569362]  ? pipe_poll+0x21b/0x7f0
[ 2287.570114]  ? p9_fd_close+0x4a0/0x4a0
[ 2287.570918]  ? anon_pipe_buf_release+0x280/0x280
[ 2287.571876]  ? p9_fd_poll+0x1e0/0x2c0
[ 2287.572658]  ? p9_fd_create+0x357/0x4a0
[ 2287.573460]  ? p9_conn_create+0x510/0x510
[ 2287.574292]  ? p9_client_create+0x798/0x1090
[ 2287.575186]  ? kfree+0xd7/0x390
[ 2287.575852]  ? do_raw_spin_unlock+0x4f/0x220
[ 2287.576747]  p9_client_create+0xa76/0x1090
[ 2287.577658]  ? p9_client_flush+0x430/0x430
[ 2287.578538]  ? lockdep_init_map_type+0x2c7/0x780
[ 2287.579511]  ? rcu_read_lock_sched_held+0x3e/0x80
[ 2287.580500]  ? __raw_spin_lock_init+0x36/0x110
[ 2287.581433]  v9fs_session_init+0x1dd/0x16a0
[ 2287.582326]  ? kmem_cache_alloc_trace+0x151/0x360
[ 2287.583320]  ? v9fs_show_options+0x690/0x690
[ 2287.584255]  ? kasan_unpoison_shadow+0x33/0x50
[ 2287.585176]  ? __kasan_kmalloc.constprop.0+0xc9/0xd0
[ 2287.586223]  v9fs_mount+0x79/0x8f0
[ 2287.586954]  ? v9fs_write_inode+0x60/0x60
[ 2287.587793]  legacy_get_tree+0x105/0x220
[ 2287.588617]  vfs_get_tree+0x8e/0x300
[ 2287.589371]  path_mount+0x13be/0x20b0
[ 2287.590149]  ? strncpy_from_user+0x9e/0x470
[ 2287.591042]  ? finish_automount+0xa40/0xa40
[ 2287.591916]  ? getname_flags.part.0+0x1dd/0x4f0
[ 2287.592852]  ? _copy_from_user+0xfb/0x1b0
[ 2287.593704]  __x64_sys_mount+0x282/0x300
[ 2287.594524]  ? copy_mnt_ns+0xa00/0xa00
[ 2287.595327]  ? rcu_read_lock_sched_held+0x3e/0x80
[ 2287.596305]  do_syscall_64+0x33/0x40
[ 2287.597058]  entry_SYSCALL_64_after_hwframe+0x61/0xc6
[ 2287.598090] RIP: 0033:0x7f38308e8b19
[ 2287.598853] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 2287.602566] RSP: 002b:00007f382de5e188 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5
[ 2287.604125] RAX: ffffffffffffffda RBX: 00007f38309fbf60 RCX: 00007f38308e8b19
[ 2287.605564] RDX: 00000000200000c0 RSI: 0000000020000040 RDI: 0000000000000000
[ 2287.607009] RBP: 00007f382de5e1d0 R08: 0000000020000280 R09: 0000000000000000
[ 2287.608453] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[ 2287.609890] R13: 00007ffca2bf07df R14: 00007f382de5e300 R15: 0000000000022000
21:18:54 executing program 7:
r0 = perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
io_setup(0x7f, &(0x7f00000002c0)=<r1=>0x0)
io_pgetevents(r1, 0x1, 0x1, &(0x7f0000000000)=[{}], 0x0, 0x0)
io_submit(r1, 0x1, &(0x7f0000000340)=[&(0x7f0000000300)={0x0, 0x0, 0x0, 0x5, 0x0, r0, 0x0}])

21:18:54 executing program 3:
openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x105142, 0x0)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x400}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
pipe(&(0x7f00000001c0)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
mount$9p_fd(0x2010, &(0x7f0000000040)='./file1\x00', &(0x7f00000000c0), 0x0, &(0x7f0000000280)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {}, 0x2c, {[{@nodevmap}]}})
openat(r1, &(0x7f0000000180)='./file1\x00', 0x0, 0x0)

21:18:54 executing program 2:
syz_mount_image$vfat(&(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x0, 0x2, &(0x7f0000000180)=[{&(0x7f0000000140)="eb3c906d6b66732e66617400020801000470008400f801", 0x17}, {0x0, 0x0, 0x1000a00}], 0x0, &(0x7f0000000240)=ANY=[])
chdir(&(0x7f0000000040)='./file0\x00')
r0 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x105142, 0x0)
ioctl$FS_IOC_RESVSP(r0, 0x40305828, &(0x7f0000000040)={0x0, 0x0, 0x0, 0x4000006, 0x0, 0xf00})

21:19:09 executing program 5:
openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x105142, 0x0)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
pipe(&(0x7f00000001c0)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
mount$9p_fd(0x0, &(0x7f0000000040)='./file1\x00', &(0x7f00000000c0), 0x0, &(0x7f0000000280)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}}) (fail_nth: 38)
openat(0xffffffffffffffff, 0x0, 0x0, 0x0)

21:19:09 executing program 2:
syz_mount_image$vfat(&(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x0, 0x2, &(0x7f0000000180)=[{&(0x7f0000000140)="eb3c906d6b66732e66617400020801000470008400f801", 0x17}, {0x0, 0x0, 0x1000a00}], 0x0, &(0x7f0000000240)=ANY=[])
chdir(&(0x7f0000000040)='./file0\x00')
r0 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x105142, 0x0)
ioctl$FS_IOC_RESVSP(r0, 0x40305828, &(0x7f0000000040)={0x0, 0x0, 0x0, 0x4000006, 0x0, 0xff6})

21:19:09 executing program 6:
r0 = syz_mount_image$vfat(&(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x0, 0x2, &(0x7f0000000180)=[{&(0x7f0000000140)="eb3c906d6b66732e66617400020801000470008400f801", 0x17}, {0x0, 0x0, 0x1000a00}], 0x0, &(0x7f0000000240)=ANY=[])
chdir(&(0x7f0000000040)='./file0\x00')
openat2(r0, &(0x7f0000000100)='./file0\x00', 0x0, 0x0)
mount$cgroup(0x0, 0x0, &(0x7f0000000400), 0x0, 0x0)
r1 = syz_io_uring_setup(0x22, &(0x7f0000000680)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000180)=<r2=>0x0, &(0x7f0000002a40)=<r3=>0x0)
r4 = io_uring_register$IORING_REGISTER_PERSONALITY(r1, 0x9, 0x0, 0x0)
r5 = socket$nl_netfilter(0x10, 0x3, 0xc)
syz_io_uring_submit(r2, r3, &(0x7f0000000400)=@IORING_OP_WRITEV={0x2, 0x0, 0x0, @fd=r5, 0x0, 0x0, 0x0, 0x0, 0x0, {0x0, r4}}, 0x0)
r6 = syz_io_uring_setup(0x22, &(0x7f0000000680)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000180), &(0x7f0000002a40))
r7 = io_uring_register$IORING_REGISTER_PERSONALITY(r6, 0x9, 0x0, 0x0)
syz_io_uring_submit(r2, 0x0, &(0x7f0000000440)=@IORING_OP_FSYNC={0x3, 0x2, 0x0, @fd_index=0x9, 0x0, 0x0, 0x0, 0x0, 0x1, {0x0, r7}}, 0x2)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r8 = openat(0xffffffffffffff9c, &(0x7f00000002c0)='./file1\x00', 0x105142, 0x0)
r9 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0)
sendfile(r8, r9, 0x0, 0x100000001)
newfstatat(0xffffffffffffff9c, &(0x7f0000000340)='./file1\x00', &(0x7f0000000380), 0x400)

21:19:09 executing program 4:
openat$vcs(0xffffffffffffff9c, &(0x7f0000000040), 0x0, 0x0)
openat$sr(0xffffffffffffff9c, &(0x7f00000035c0), 0x0, 0x0)
openat$sr(0xffffffffffffff9c, &(0x7f00000000c0), 0x224400, 0x0)
openat$rtc(0xffffffffffffff9c, &(0x7f0000000200), 0x0, 0x0)
pipe(&(0x7f00000001c0))
open(&(0x7f00000016c0)='./cgroup.net/cgroup.procs\x00', 0x0, 0x0)
pselect6(0x40, &(0x7f0000000180), &(0x7f00000001c0)={0x3fc, 0x0, 0x0, 0x0, 0x0, 0x0, 0xa00000000000000}, 0x0, 0x0, 0x0)

21:19:09 executing program 0:
syz_mount_image$vfat(&(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x0, 0x2, &(0x7f0000000180)=[{&(0x7f0000000140)="eb3c906d6b66732e66617400020801000470008400f801", 0x17}, {0x0, 0x0, 0x1000a00}], 0x0, &(0x7f0000000240)=ANY=[])
chdir(&(0x7f0000000040)='./file0\x00')
mount$cgroup(0x0, 0x0, &(0x7f0000000400), 0x0, 0x0)
r0 = syz_io_uring_setup(0x22, &(0x7f0000000680)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000180)=<r1=>0x0, &(0x7f0000002a40)=<r2=>0x0)
io_uring_register$IORING_REGISTER_PERSONALITY(r0, 0x9, 0x0, 0x0)
socket$nl_netfilter(0x10, 0x3, 0xc)
syz_io_uring_submit(r1, r2, 0x0, 0x0)
r3 = syz_io_uring_setup(0x22, &(0x7f0000000680)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000180), &(0x7f0000002a40))
r4 = io_uring_register$IORING_REGISTER_PERSONALITY(r3, 0x9, 0x0, 0x0)
syz_io_uring_submit(r1, 0x0, &(0x7f0000000440)=@IORING_OP_FSYNC={0x3, 0x2, 0x0, @fd_index=0x9, 0x0, 0x0, 0x0, 0x0, 0x1, {0x0, r4}}, 0x2)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r5 = openat(0xffffffffffffff9c, &(0x7f00000002c0)='./file1\x00', 0x105142, 0x0)
r6 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0)
mount(&(0x7f0000000200)=ANY=[@ANYBLOB="2f6f651317868af191bdb2"], &(0x7f0000000240)='./file0\x00', &(0x7f0000000280)='nfsd\x00', 0x800000, &(0x7f0000000300)='cgroup\x00')
sendfile(r5, r6, 0x0, 0x100000001)
newfstatat(0xffffffffffffff9c, &(0x7f0000000340)='./file1\x00', &(0x7f0000000380), 0x400)

21:19:09 executing program 7:
perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
io_setup(0x7f, &(0x7f00000002c0)=<r0=>0x0)
io_pgetevents(r0, 0x1, 0x1, &(0x7f0000000000)=[{}], 0x0, 0x0)

21:19:09 executing program 3:
openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x105142, 0x0)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x400}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
pipe(&(0x7f00000001c0)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
mount$9p_fd(0xedc0, &(0x7f0000000040)='./file1\x00', &(0x7f00000000c0), 0x0, &(0x7f0000000280)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {}, 0x2c, {[{@nodevmap}]}})
openat(r1, &(0x7f0000000180)='./file1\x00', 0x0, 0x0)

21:19:09 executing program 1:
openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x105142, 0x0)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
pipe(&(0x7f00000001c0))
mount$9p_fd(0x300, &(0x7f0000000040)='./file1\x00', &(0x7f00000000c0), 0x0, &(0x7f0000000280)={'trans=fd,', {}, 0x2c, {}, 0x2c, {[{@nodevmap}]}})

[ 2303.601507] FAULT_INJECTION: forcing a failure.
[ 2303.601507] name fail_page_alloc, interval 1, probability 0, space 0, times 0
[ 2303.605182] CPU: 0 PID: 18959 Comm: syz-executor.5 Not tainted 5.10.172 #1
[ 2303.606781] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 2303.608706] Call Trace:
[ 2303.609320]  dump_stack+0x107/0x167
[ 2303.610174]  should_fail.cold+0x5/0xa
[ 2303.611094]  __alloc_pages_nodemask+0x182/0x680
[ 2303.612178]  ? __alloc_pages_slowpath.constprop.0+0x2220/0x2220
[ 2303.613577]  ? __kmalloc+0x3ce/0x3f0
[ 2303.614446]  alloc_pages_current+0x187/0x280
[ 2303.615480]  allocate_slab+0x26f/0x380
[ 2303.616386]  ___slab_alloc+0x470/0x700
[ 2303.617291]  ? p9_fcall_init+0x97/0x210
[ 2303.618217]  ? kmem_cache_alloc+0x159/0x360
[ 2303.619239]  ? lock_downgrade+0x6d0/0x6d0
[ 2303.620202]  ? p9_fcall_init+0x97/0x210
[ 2303.621128]  ? __kmalloc+0x3ce/0x3f0
[ 2303.621984]  ? p9_fcall_init+0x97/0x210
[ 2303.622902]  __kmalloc+0x3ce/0x3f0
[ 2303.623747]  p9_fcall_init+0x97/0x210
[ 2303.624633]  p9_client_prepare_req.part.0+0x8c/0xb30
[ 2303.625815]  p9_client_rpc+0x220/0x1270
[ 2303.626735]  ? lockdep_hardirqs_on_prepare+0x277/0x3e0
[ 2303.627959]  ? p9_client_prepare_req.part.0+0xb30/0xb30
[ 2303.629184]  ? pipe_poll+0x21b/0x7f0
[ 2303.630038]  ? p9_fd_close+0x4a0/0x4a0
[ 2303.630947]  ? anon_pipe_buf_release+0x280/0x280
[ 2303.632046]  ? p9_fd_poll+0x1e0/0x2c0
[ 2303.632930]  ? p9_fd_create+0x357/0x4a0
[ 2303.633847]  ? p9_conn_create+0x510/0x510
[ 2303.634792]  ? p9_client_create+0x798/0x1090
[ 2303.635808]  ? kfree+0xd7/0x390
[ 2303.636575]  ? do_raw_spin_unlock+0x4f/0x220
[ 2303.637597]  p9_client_create+0xa76/0x1090
[ 2303.638573]  ? p9_client_flush+0x430/0x430
[ 2303.639570]  ? lockdep_init_map_type+0x2c7/0x780
[ 2303.640649]  ? rcu_read_lock_sched_held+0x3e/0x80
[ 2303.641753]  ? __raw_spin_lock_init+0x36/0x110
[ 2303.642802]  v9fs_session_init+0x1dd/0x16a0
[ 2303.643812]  ? kmem_cache_alloc_trace+0x151/0x360
[ 2303.644913]  ? v9fs_show_options+0x690/0x690
[ 2303.645945]  ? kasan_unpoison_shadow+0x33/0x50
[ 2303.647008]  ? __kasan_kmalloc.constprop.0+0xc9/0xd0
[ 2303.648174]  v9fs_mount+0x79/0x8f0
[ 2303.649001]  ? v9fs_write_inode+0x60/0x60
[ 2303.649952]  legacy_get_tree+0x105/0x220
[ 2303.650891]  vfs_get_tree+0x8e/0x300
[ 2303.651749]  path_mount+0x13be/0x20b0
[ 2303.652618]  ? strncpy_from_user+0x9e/0x470
[ 2303.653594]  ? finish_automount+0xa40/0xa40
[ 2303.654563]  ? getname_flags.part.0+0x1dd/0x4f0
[ 2303.655622]  ? _copy_from_user+0xfb/0x1b0
[ 2303.656568]  __x64_sys_mount+0x282/0x300
[ 2303.657489]  ? copy_mnt_ns+0xa00/0xa00
[ 2303.658394]  ? rcu_read_lock_sched_held+0x3e/0x80
[ 2303.659514]  do_syscall_64+0x33/0x40
[ 2303.660367]  entry_SYSCALL_64_after_hwframe+0x61/0xc6
[ 2303.661525] RIP: 0033:0x7f38308e8b19
[ 2303.662380] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 2303.666531] RSP: 002b:00007f382de5e188 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5
[ 2303.668262] RAX: ffffffffffffffda RBX: 00007f38309fbf60 RCX: 00007f38308e8b19
[ 2303.669865] RDX: 00000000200000c0 RSI: 0000000020000040 RDI: 0000000000000000
[ 2303.671474] RBP: 00007f382de5e1d0 R08: 0000000020000280 R09: 0000000000000000
[ 2303.673082] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[ 2303.674665] R13: 00007ffca2bf07df R14: 00007f382de5e300 R15: 0000000000022000
21:19:10 executing program 3:
openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x105142, 0x0)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x400}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
pipe(&(0x7f00000001c0)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
mount$9p_fd(0x80000, &(0x7f0000000040)='./file1\x00', &(0x7f00000000c0), 0x0, &(0x7f0000000280)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {}, 0x2c, {[{@nodevmap}]}})
openat(r1, &(0x7f0000000180)='./file1\x00', 0x0, 0x0)

21:19:10 executing program 6:
r0 = syz_mount_image$vfat(&(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x0, 0x2, &(0x7f0000000180)=[{&(0x7f0000000140)="eb3c906d6b66732e66617400020801000470008400f801", 0x17}, {0x0, 0x0, 0x1000a00}], 0x0, &(0x7f0000000240)=ANY=[])
chdir(&(0x7f0000000040)='./file0\x00')
openat2(r0, &(0x7f0000000100)='./file0\x00', 0x0, 0x0)
mount$cgroup(0x0, 0x0, &(0x7f0000000400), 0x0, 0x0)
r1 = syz_io_uring_setup(0x22, &(0x7f0000000680)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000180)=<r2=>0x0, &(0x7f0000002a40)=<r3=>0x0)
r4 = io_uring_register$IORING_REGISTER_PERSONALITY(r1, 0x9, 0x0, 0x0)
r5 = socket$nl_netfilter(0x10, 0x3, 0xc)
syz_io_uring_submit(r2, r3, &(0x7f0000000400)=@IORING_OP_WRITEV={0x2, 0x0, 0x0, @fd=r5, 0x0, 0x0, 0x0, 0x0, 0x0, {0x0, r4}}, 0x0)
r6 = syz_io_uring_setup(0x22, &(0x7f0000000680)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000180), &(0x7f0000002a40))
r7 = io_uring_register$IORING_REGISTER_PERSONALITY(r6, 0x9, 0x0, 0x0)
syz_io_uring_submit(r2, 0x0, &(0x7f0000000440)=@IORING_OP_FSYNC={0x3, 0x2, 0x0, @fd_index=0x9, 0x0, 0x0, 0x0, 0x0, 0x1, {0x0, r7}}, 0x2)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r8 = openat(0xffffffffffffff9c, &(0x7f00000002c0)='./file1\x00', 0x105142, 0x0)
r9 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0)
sendfile(r8, r9, 0x0, 0x100000001)
newfstatat(0xffffffffffffff9c, &(0x7f0000000340)='./file1\x00', &(0x7f0000000380), 0x400)

21:19:10 executing program 2:
syz_mount_image$vfat(&(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x0, 0x2, &(0x7f0000000180)=[{&(0x7f0000000140)="eb3c906d6b66732e66617400020801000470008400f801", 0x17}, {0x0, 0x0, 0x1000a00}], 0x0, &(0x7f0000000240)=ANY=[])
chdir(&(0x7f0000000040)='./file0\x00')
r0 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x105142, 0x0)
ioctl$FS_IOC_RESVSP(r0, 0x40305828, &(0x7f0000000040)={0x0, 0x0, 0x0, 0x4000006, 0x0, 0x1100})

21:19:26 executing program 7:
perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
io_setup(0x7f, &(0x7f00000002c0)=<r0=>0x0)
io_pgetevents(r0, 0x1, 0x1, &(0x7f0000000000)=[{}], 0x0, 0x0)

21:19:26 executing program 1:
openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x105142, 0x0)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
pipe(&(0x7f00000001c0))
mount$9p_fd(0x500, &(0x7f0000000040)='./file1\x00', &(0x7f00000000c0), 0x0, &(0x7f0000000280)={'trans=fd,', {}, 0x2c, {}, 0x2c, {[{@nodevmap}]}})

21:19:26 executing program 6:
r0 = syz_mount_image$vfat(&(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x0, 0x2, &(0x7f0000000180)=[{&(0x7f0000000140)="eb3c906d6b66732e66617400020801000470008400f801", 0x17}, {0x0, 0x0, 0x1000a00}], 0x0, &(0x7f0000000240)=ANY=[])
chdir(&(0x7f0000000040)='./file0\x00')
openat2(r0, &(0x7f0000000100)='./file0\x00', 0x0, 0x0)
mount$cgroup(0x0, 0x0, &(0x7f0000000400), 0x0, 0x0)
r1 = syz_io_uring_setup(0x22, &(0x7f0000000680)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000180)=<r2=>0x0, &(0x7f0000002a40)=<r3=>0x0)
r4 = io_uring_register$IORING_REGISTER_PERSONALITY(r1, 0x9, 0x0, 0x0)
r5 = socket$nl_netfilter(0x10, 0x3, 0xc)
syz_io_uring_submit(r2, r3, &(0x7f0000000400)=@IORING_OP_WRITEV={0x2, 0x0, 0x0, @fd=r5, 0x0, 0x0, 0x0, 0x0, 0x0, {0x0, r4}}, 0x0)
r6 = syz_io_uring_setup(0x22, &(0x7f0000000680)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000180), &(0x7f0000002a40))
r7 = io_uring_register$IORING_REGISTER_PERSONALITY(r6, 0x9, 0x0, 0x0)
syz_io_uring_submit(r2, 0x0, &(0x7f0000000440)=@IORING_OP_FSYNC={0x3, 0x2, 0x0, @fd_index=0x9, 0x0, 0x0, 0x0, 0x0, 0x1, {0x0, r7}}, 0x2)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r8 = openat(0xffffffffffffff9c, &(0x7f00000002c0)='./file1\x00', 0x105142, 0x0)
r9 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0)
sendfile(r8, r9, 0x0, 0x100000001)
newfstatat(0xffffffffffffff9c, &(0x7f0000000340)='./file1\x00', &(0x7f0000000380), 0x400)

21:19:26 executing program 3:
openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x105142, 0x0)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x400}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
pipe(&(0x7f00000001c0)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
mount$9p_fd(0x1000000, &(0x7f0000000040)='./file1\x00', &(0x7f00000000c0), 0x0, &(0x7f0000000280)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {}, 0x2c, {[{@nodevmap}]}})
openat(r1, &(0x7f0000000180)='./file1\x00', 0x0, 0x0)

21:19:26 executing program 4:
openat$vcs(0xffffffffffffff9c, &(0x7f0000000040), 0x0, 0x0)
openat$sr(0xffffffffffffff9c, &(0x7f00000035c0), 0x0, 0x0)
openat$sr(0xffffffffffffff9c, &(0x7f00000000c0), 0x224400, 0x0)
openat$rtc(0xffffffffffffff9c, &(0x7f0000000200), 0x0, 0x0)
pipe(&(0x7f00000001c0))
open(&(0x7f00000016c0)='./cgroup.net/cgroup.procs\x00', 0x0, 0x0)
pselect6(0x40, &(0x7f0000000180), &(0x7f00000001c0)={0x3fc, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1000000000000000}, 0x0, 0x0, 0x0)

21:19:26 executing program 0:
syz_mount_image$vfat(&(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x0, 0x2, &(0x7f0000000180)=[{&(0x7f0000000140)="eb3c906d6b66732e66617400020801000470008400f801", 0x17}, {0x0, 0x0, 0x1000a00}], 0x0, &(0x7f0000000240)=ANY=[])
chdir(&(0x7f0000000040)='./file0\x00')
mount$cgroup(0x0, 0x0, &(0x7f0000000400), 0x0, 0x0)
r0 = syz_io_uring_setup(0x22, &(0x7f0000000680)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000180)=<r1=>0x0, &(0x7f0000002a40)=<r2=>0x0)
io_uring_register$IORING_REGISTER_PERSONALITY(r0, 0x9, 0x0, 0x0)
socket$nl_netfilter(0x10, 0x3, 0xc)
syz_io_uring_submit(r1, r2, 0x0, 0x0)
r3 = syz_io_uring_setup(0x22, &(0x7f0000000680)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000180), &(0x7f0000002a40))
r4 = io_uring_register$IORING_REGISTER_PERSONALITY(r3, 0x9, 0x0, 0x0)
syz_io_uring_submit(r1, 0x0, &(0x7f0000000440)=@IORING_OP_FSYNC={0x3, 0x2, 0x0, @fd_index=0x9, 0x0, 0x0, 0x0, 0x0, 0x1, {0x0, r4}}, 0x2)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r5 = openat(0xffffffffffffff9c, &(0x7f00000002c0)='./file1\x00', 0x105142, 0x0)
r6 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0)
mount(&(0x7f0000000200)=ANY=[@ANYBLOB="2f6f651317868af191bdb2"], &(0x7f0000000240)='./file0\x00', &(0x7f0000000280)='nfsd\x00', 0x800000, &(0x7f0000000300)='cgroup\x00')
sendfile(r5, r6, 0x0, 0x100000001)
newfstatat(0xffffffffffffff9c, &(0x7f0000000340)='./file1\x00', &(0x7f0000000380), 0x400)

21:19:26 executing program 2:
syz_mount_image$vfat(&(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x0, 0x2, &(0x7f0000000180)=[{&(0x7f0000000140)="eb3c906d6b66732e66617400020801000470008400f801", 0x17}, {0x0, 0x0, 0x1000a00}], 0x0, &(0x7f0000000240)=ANY=[])
chdir(&(0x7f0000000040)='./file0\x00')
r0 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x105142, 0x0)
ioctl$FS_IOC_RESVSP(r0, 0x40305828, &(0x7f0000000040)={0x0, 0x0, 0x0, 0x4000006, 0x0, 0x1200})

21:19:26 executing program 5:
openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x105142, 0x0)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
pipe(&(0x7f00000001c0)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
mount$9p_fd(0x0, &(0x7f0000000040)='./file1\x00', &(0x7f00000000c0), 0x0, &(0x7f0000000280)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}}) (fail_nth: 39)
openat(0xffffffffffffffff, 0x0, 0x0, 0x0)

[ 2320.476357] FAULT_INJECTION: forcing a failure.
[ 2320.476357] name failslab, interval 1, probability 0, space 0, times 0
[ 2320.479334] CPU: 0 PID: 19089 Comm: syz-executor.5 Not tainted 5.10.172 #1
[ 2320.480717] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 2320.482699] Call Trace:
[ 2320.483283]  dump_stack+0x107/0x167
[ 2320.483308]  should_fail.cold+0x5/0xa
[ 2320.483329]  ? create_object.isra.0+0x3a/0xa20
[ 2320.483351]  should_failslab+0x5/0x20
[ 2320.483368]  kmem_cache_alloc+0x5b/0x360
[ 2320.483392]  create_object.isra.0+0x3a/0xa20
[ 2320.483410]  ? __kasan_kmalloc.constprop.0+0xc9/0xd0
[ 2320.483432]  __kmalloc+0x16e/0x3f0
[ 2320.483459]  p9_fcall_init+0x97/0x210
[ 2320.483482]  p9_client_prepare_req.part.0+0xf4/0xb30
[ 2320.483509]  p9_client_rpc+0x220/0x1270
[ 2320.483528]  ? lockdep_hardirqs_on_prepare+0x277/0x3e0
[ 2320.483555]  ? p9_client_prepare_req.part.0+0xb30/0xb30
[ 2320.483578]  ? pipe_poll+0x21b/0x7f0
[ 2320.483594]  ? p9_fd_close+0x4a0/0x4a0
[ 2320.483611]  ? anon_pipe_buf_release+0x280/0x280
[ 2320.483631]  ? p9_fd_poll+0x1e0/0x2c0
[ 2320.483657]  ? p9_fd_create+0x357/0x4a0
[ 2320.483674]  ? p9_conn_create+0x510/0x510
[ 2320.483689]  ? p9_client_create+0x798/0x1090
[ 2320.483707]  ? kfree+0xd7/0x390
[ 2320.483724]  ? do_raw_spin_unlock+0x4f/0x220
[ 2320.483750]  p9_client_create+0xa76/0x1090
21:19:27 executing program 1:
openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x105142, 0x0)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
pipe(&(0x7f00000001c0))
mount$9p_fd(0x600, &(0x7f0000000040)='./file1\x00', &(0x7f00000000c0), 0x0, &(0x7f0000000280)={'trans=fd,', {}, 0x2c, {}, 0x2c, {[{@nodevmap}]}})

[ 2320.483779]  ? p9_client_flush+0x430/0x430
[ 2320.483808]  ? lockdep_init_map_type+0x2c7/0x780
[ 2320.483826]  ? rcu_read_lock_sched_held+0x3e/0x80
[ 2320.483851]  ? __raw_spin_lock_init+0x36/0x110
21:19:27 executing program 3:
openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x105142, 0x0)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x400}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
pipe(&(0x7f00000001c0)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
mount$9p_fd(0x2000000, &(0x7f0000000040)='./file1\x00', &(0x7f00000000c0), 0x0, &(0x7f0000000280)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {}, 0x2c, {[{@nodevmap}]}})
openat(r1, &(0x7f0000000180)='./file1\x00', 0x0, 0x0)

[ 2320.483877]  v9fs_session_init+0x1dd/0x16a0
[ 2320.483909]  ? kmem_cache_alloc_trace+0x151/0x360
[ 2320.483926]  ? v9fs_show_options+0x690/0x690
[ 2320.483965]  ? kasan_unpoison_shadow+0x33/0x50
21:19:27 executing program 2:
syz_mount_image$vfat(&(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x0, 0x2, &(0x7f0000000180)=[{&(0x7f0000000140)="eb3c906d6b66732e66617400020801000470008400f801", 0x17}, {0x0, 0x0, 0x1000a00}], 0x0, &(0x7f0000000240)=ANY=[])
chdir(&(0x7f0000000040)='./file0\x00')
r0 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x105142, 0x0)
ioctl$FS_IOC_RESVSP(r0, 0x40305828, &(0x7f0000000040)={0x0, 0x0, 0x0, 0x4000006, 0x0, 0x2300})

[ 2320.483985]  ? __kasan_kmalloc.constprop.0+0xc9/0xd0
[ 2320.484008]  v9fs_mount+0x79/0x8f0
[ 2320.484030]  ? v9fs_write_inode+0x60/0x60
[ 2320.484050]  legacy_get_tree+0x105/0x220
[ 2320.484074]  vfs_get_tree+0x8e/0x300
[ 2320.484095]  path_mount+0x13be/0x20b0
[ 2320.484118]  ? strncpy_from_user+0x9e/0x470
[ 2320.484140]  ? finish_automount+0xa40/0xa40
[ 2320.484162]  ? getname_flags.part.0+0x1dd/0x4f0
[ 2320.484179]  ? _copy_from_user+0xfb/0x1b0
[ 2320.484210]  __x64_sys_mount+0x282/0x300
[ 2320.484230]  ? copy_mnt_ns+0xa00/0xa00
[ 2320.484254]  ? rcu_read_lock_sched_held+0x3e/0x80
[ 2320.484279]  do_syscall_64+0x33/0x40
[ 2320.484300]  entry_SYSCALL_64_after_hwframe+0x61/0xc6
[ 2320.484312] RIP: 0033:0x7f38308e8b19
[ 2320.484333] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
21:19:27 executing program 6:
r0 = syz_mount_image$vfat(&(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x0, 0x2, &(0x7f0000000180)=[{&(0x7f0000000140)="eb3c906d6b66732e66617400020801000470008400f801", 0x17}, {0x0, 0x0, 0x1000a00}], 0x0, &(0x7f0000000240)=ANY=[])
chdir(&(0x7f0000000040)='./file0\x00')
openat2(r0, &(0x7f0000000100)='./file0\x00', &(0x7f00000001c0)={0x0, 0x81}, 0x18)
mount$cgroup(0x0, 0x0, &(0x7f0000000400), 0x0, 0x0)
r1 = syz_io_uring_setup(0x22, &(0x7f0000000680)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000180)=<r2=>0x0, &(0x7f0000002a40)=<r3=>0x0)
r4 = io_uring_register$IORING_REGISTER_PERSONALITY(r1, 0x9, 0x0, 0x0)
r5 = socket$nl_netfilter(0x10, 0x3, 0xc)
syz_io_uring_submit(r2, r3, &(0x7f0000000400)=@IORING_OP_WRITEV={0x2, 0x0, 0x0, @fd=r5, 0x0, 0x0, 0x0, 0x0, 0x0, {0x0, r4}}, 0x0)
r6 = syz_io_uring_setup(0x22, &(0x7f0000000680)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000180), &(0x7f0000002a40))
r7 = io_uring_register$IORING_REGISTER_PERSONALITY(r6, 0x9, 0x0, 0x0)
syz_io_uring_submit(r2, 0x0, &(0x7f0000000440)=@IORING_OP_FSYNC={0x3, 0x2, 0x0, @fd_index=0x9, 0x0, 0x0, 0x0, 0x0, 0x1, {0x0, r7}}, 0x2)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r8 = openat(0xffffffffffffff9c, &(0x7f00000002c0)='./file1\x00', 0x105142, 0x0)
r9 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0)
sendfile(r8, r9, 0x0, 0x100000001)
newfstatat(0xffffffffffffff9c, &(0x7f0000000340)='./file1\x00', &(0x7f0000000380), 0x400)

[ 2320.484343] RSP: 002b:00007f382de5e188 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5
[ 2320.484364] RAX: ffffffffffffffda RBX: 00007f38309fbf60 RCX: 00007f38308e8b19
[ 2320.484375] RDX: 00000000200000c0 RSI: 0000000020000040 RDI: 0000000000000000
[ 2320.484386] RBP: 00007f382de5e1d0 R08: 0000000020000280 R09: 0000000000000000
21:19:27 executing program 3:
openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x105142, 0x0)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x400}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
pipe(&(0x7f00000001c0)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
mount$9p_fd(0x3000000, &(0x7f0000000040)='./file1\x00', &(0x7f00000000c0), 0x0, &(0x7f0000000280)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {}, 0x2c, {[{@nodevmap}]}})
openat(r1, &(0x7f0000000180)='./file1\x00', 0x0, 0x0)

[ 2320.484396] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
21:19:27 executing program 0:
syz_mount_image$vfat(&(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x0, 0x2, &(0x7f0000000180)=[{&(0x7f0000000140)="eb3c906d6b66732e66617400020801000470008400f801", 0x17}, {0x0, 0x0, 0x1000a00}], 0x0, &(0x7f0000000240)=ANY=[])
chdir(&(0x7f0000000040)='./file0\x00')
mount$cgroup(0x0, 0x0, &(0x7f0000000400), 0x0, 0x0)
r0 = syz_io_uring_setup(0x22, &(0x7f0000000680)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000180)=<r1=>0x0, &(0x7f0000002a40)=<r2=>0x0)
io_uring_register$IORING_REGISTER_PERSONALITY(r0, 0x9, 0x0, 0x0)
socket$nl_netfilter(0x10, 0x3, 0xc)
syz_io_uring_submit(r1, r2, 0x0, 0x0)
r3 = syz_io_uring_setup(0x22, &(0x7f0000000680)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000180), &(0x7f0000002a40))
r4 = io_uring_register$IORING_REGISTER_PERSONALITY(r3, 0x9, 0x0, 0x0)
syz_io_uring_submit(r1, 0x0, &(0x7f0000000440)=@IORING_OP_FSYNC={0x3, 0x2, 0x0, @fd_index=0x9, 0x0, 0x0, 0x0, 0x0, 0x1, {0x0, r4}}, 0x2)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r5 = openat(0xffffffffffffff9c, &(0x7f00000002c0)='./file1\x00', 0x105142, 0x0)
r6 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0)
mount(&(0x7f0000000200)=ANY=[@ANYBLOB="2f6f651317868af191bdb2"], &(0x7f0000000240)='./file0\x00', &(0x7f0000000280)='nfsd\x00', 0x800000, &(0x7f0000000300)='cgroup\x00')
sendfile(r5, r6, 0x0, 0x100000001)
newfstatat(0xffffffffffffff9c, &(0x7f0000000340)='./file1\x00', &(0x7f0000000380), 0x400)

[ 2320.484407] R13: 00007ffca2bf07df R14: 00007f382de5e300 R15: 0000000000022000
21:19:27 executing program 2:
syz_mount_image$vfat(&(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x0, 0x2, &(0x7f0000000180)=[{&(0x7f0000000140)="eb3c906d6b66732e66617400020801000470008400f801", 0x17}, {0x0, 0x0, 0x1000a00}], 0x0, &(0x7f0000000240)=ANY=[])
chdir(&(0x7f0000000040)='./file0\x00')
r0 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x105142, 0x0)
ioctl$FS_IOC_RESVSP(r0, 0x40305828, &(0x7f0000000040)={0x0, 0x0, 0x0, 0x4000006, 0x0, 0x3f00})

21:19:27 executing program 1:
openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x105142, 0x0)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
pipe(&(0x7f00000001c0))
mount$9p_fd(0x700, &(0x7f0000000040)='./file1\x00', &(0x7f00000000c0), 0x0, &(0x7f0000000280)={'trans=fd,', {}, 0x2c, {}, 0x2c, {[{@nodevmap}]}})

21:19:44 executing program 3:
openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x105142, 0x0)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x400}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
pipe(&(0x7f00000001c0)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
mount$9p_fd(0x4000000, &(0x7f0000000040)='./file1\x00', &(0x7f00000000c0), 0x0, &(0x7f0000000280)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {}, 0x2c, {[{@nodevmap}]}})
openat(r1, &(0x7f0000000180)='./file1\x00', 0x0, 0x0)

21:19:44 executing program 7:
perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
io_setup(0x7f, &(0x7f00000002c0)=<r0=>0x0)
io_pgetevents(r0, 0x1, 0x1, &(0x7f0000000000)=[{}], 0x0, 0x0)

21:19:44 executing program 0:
syz_mount_image$vfat(&(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x0, 0x2, &(0x7f0000000180)=[{&(0x7f0000000140)="eb3c906d6b66732e66617400020801000470008400f801", 0x17}, {0x0, 0x0, 0x1000a00}], 0x0, &(0x7f0000000240)=ANY=[])
chdir(&(0x7f0000000040)='./file0\x00')
mount$cgroup(0x0, 0x0, &(0x7f0000000400), 0x0, 0x0)
r0 = syz_io_uring_setup(0x22, &(0x7f0000000680)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000180)=<r1=>0x0, &(0x7f0000002a40)=<r2=>0x0)
r3 = io_uring_register$IORING_REGISTER_PERSONALITY(r0, 0x9, 0x0, 0x0)
socket$nl_netfilter(0x10, 0x3, 0xc)
syz_io_uring_submit(r1, r2, &(0x7f0000000400)=@IORING_OP_WRITEV={0x2, 0x0, 0x0, @fd, 0x0, 0x0, 0x0, 0x0, 0x0, {0x0, r3}}, 0x0)
r4 = syz_io_uring_setup(0x22, &(0x7f0000000680)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000180), &(0x7f0000002a40))
r5 = io_uring_register$IORING_REGISTER_PERSONALITY(r4, 0x9, 0x0, 0x0)
syz_io_uring_submit(r1, 0x0, &(0x7f0000000440)=@IORING_OP_FSYNC={0x3, 0x2, 0x0, @fd_index=0x9, 0x0, 0x0, 0x0, 0x0, 0x1, {0x0, r5}}, 0x2)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r6 = openat(0xffffffffffffff9c, &(0x7f00000002c0)='./file1\x00', 0x105142, 0x0)
r7 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0)
mount(&(0x7f0000000200)=ANY=[@ANYBLOB="2f6f651317868af191bdb2"], &(0x7f0000000240)='./file0\x00', &(0x7f0000000280)='nfsd\x00', 0x800000, &(0x7f0000000300)='cgroup\x00')
sendfile(r6, r7, 0x0, 0x100000001)
newfstatat(0xffffffffffffff9c, &(0x7f0000000340)='./file1\x00', &(0x7f0000000380), 0x400)

21:19:44 executing program 5:
openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x105142, 0x0)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
pipe(&(0x7f00000001c0)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
mount$9p_fd(0x0, &(0x7f0000000040)='./file1\x00', &(0x7f00000000c0), 0x0, &(0x7f0000000280)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}}) (fail_nth: 40)
openat(0xffffffffffffffff, 0x0, 0x0, 0x0)

21:19:44 executing program 6:
r0 = syz_mount_image$vfat(&(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x0, 0x2, &(0x7f0000000180)=[{&(0x7f0000000140)="eb3c906d6b66732e66617400020801000470008400f801", 0x17}, {0x0, 0x0, 0x1000a00}], 0x0, &(0x7f0000000240)=ANY=[])
chdir(&(0x7f0000000040)='./file0\x00')
openat2(r0, &(0x7f0000000100)='./file0\x00', &(0x7f00000001c0)={0x0, 0x81}, 0x18)
mount$cgroup(0x0, 0x0, &(0x7f0000000400), 0x0, 0x0)
r1 = syz_io_uring_setup(0x22, &(0x7f0000000680)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000180)=<r2=>0x0, &(0x7f0000002a40)=<r3=>0x0)
r4 = io_uring_register$IORING_REGISTER_PERSONALITY(r1, 0x9, 0x0, 0x0)
r5 = socket$nl_netfilter(0x10, 0x3, 0xc)
syz_io_uring_submit(r2, r3, &(0x7f0000000400)=@IORING_OP_WRITEV={0x2, 0x0, 0x0, @fd=r5, 0x0, 0x0, 0x0, 0x0, 0x0, {0x0, r4}}, 0x0)
r6 = syz_io_uring_setup(0x22, &(0x7f0000000680)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000180), &(0x7f0000002a40))
r7 = io_uring_register$IORING_REGISTER_PERSONALITY(r6, 0x9, 0x0, 0x0)
syz_io_uring_submit(r2, 0x0, &(0x7f0000000440)=@IORING_OP_FSYNC={0x3, 0x2, 0x0, @fd_index=0x9, 0x0, 0x0, 0x0, 0x0, 0x1, {0x0, r7}}, 0x2)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r8 = openat(0xffffffffffffff9c, &(0x7f00000002c0)='./file1\x00', 0x105142, 0x0)
r9 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0)
sendfile(r8, r9, 0x0, 0x100000001)
newfstatat(0xffffffffffffff9c, &(0x7f0000000340)='./file1\x00', &(0x7f0000000380), 0x400)

21:19:44 executing program 4:
openat$vcs(0xffffffffffffff9c, &(0x7f0000000040), 0x0, 0x0)
openat$sr(0xffffffffffffff9c, &(0x7f00000035c0), 0x0, 0x0)
openat$sr(0xffffffffffffff9c, &(0x7f00000000c0), 0x224400, 0x0)
openat$rtc(0xffffffffffffff9c, &(0x7f0000000200), 0x0, 0x0)
pipe(&(0x7f00000001c0))
open(&(0x7f00000016c0)='./cgroup.net/cgroup.procs\x00', 0x0, 0x0)
pselect6(0x40, &(0x7f0000000180), &(0x7f00000001c0)={0x3fc, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8}, 0x0, 0x0, 0x0)

21:19:44 executing program 2:
syz_mount_image$vfat(&(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x0, 0x2, &(0x7f0000000180)=[{&(0x7f0000000140)="eb3c906d6b66732e66617400020801000470008400f801", 0x17}, {0x0, 0x0, 0x1000a00}], 0x0, &(0x7f0000000240)=ANY=[])
chdir(&(0x7f0000000040)='./file0\x00')
r0 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x105142, 0x0)
ioctl$FS_IOC_RESVSP(r0, 0x40305828, &(0x7f0000000040)={0x0, 0x0, 0x0, 0x4000006, 0x0, 0x4000})

21:19:44 executing program 1:
openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x105142, 0x0)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
pipe(&(0x7f00000001c0))
mount$9p_fd(0x900, &(0x7f0000000040)='./file1\x00', &(0x7f00000000c0), 0x0, &(0x7f0000000280)={'trans=fd,', {}, 0x2c, {}, 0x2c, {[{@nodevmap}]}})

[ 2337.763262] FAULT_INJECTION: forcing a failure.
[ 2337.763262] name failslab, interval 1, probability 0, space 0, times 0
[ 2337.765694] CPU: 1 PID: 19458 Comm: syz-executor.5 Not tainted 5.10.172 #1
[ 2337.767037] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 2337.768643] Call Trace:
[ 2337.769163]  dump_stack+0x107/0x167
[ 2337.769882]  should_fail.cold+0x5/0xa
[ 2337.770634]  ? radix_tree_node_alloc.constprop.0+0x1e3/0x300
[ 2337.771759]  should_failslab+0x5/0x20
[ 2337.772633]  kmem_cache_alloc+0x5b/0x360
[ 2337.773577]  radix_tree_node_alloc.constprop.0+0x1e3/0x300
[ 2337.774848]  idr_get_free+0x4b5/0x8f0
[ 2337.775702]  idr_alloc_u32+0x170/0x2d0
[ 2337.776443]  ? __fprop_inc_percpu_max+0x130/0x130
[ 2337.777349]  ? p9_client_prepare_req.part.0+0x20a/0xb30
[ 2337.778351]  ? lock_release+0x6b0/0x6b0
[ 2337.779095]  idr_alloc+0xc2/0x130
[ 2337.779754]  ? idr_alloc_u32+0x2d0/0x2d0
[ 2337.780510]  ? rwlock_bug.part.0+0x90/0x90
[ 2337.781313]  p9_client_prepare_req.part.0+0x625/0xb30
[ 2337.782280]  p9_client_rpc+0x220/0x1270
[ 2337.783023]  ? lockdep_hardirqs_on_prepare+0x277/0x3e0
[ 2337.784024]  ? p9_client_prepare_req.part.0+0xb30/0xb30
[ 2337.785016]  ? irqentry_enter+0x26/0x60
[ 2337.785771]  ? lockdep_hardirqs_on_prepare+0x277/0x3e0
[ 2337.786754]  ? asm_sysvec_apic_timer_interrupt+0x12/0x20
[ 2337.787786]  ? trace_hardirqs_on+0x5b/0x180
[ 2337.788627]  p9_client_create+0xa76/0x1090
[ 2337.789431]  ? p9_client_flush+0x430/0x430
[ 2337.790238]  ? lockdep_init_map_type+0x2c7/0x780
[ 2337.791132]  ? rcu_read_lock_sched_held+0x3e/0x80
[ 2337.792043]  ? __raw_spin_lock_init+0x36/0x110
[ 2337.792907]  v9fs_session_init+0x1dd/0x16a0
[ 2337.793735]  ? kmem_cache_alloc_trace+0x151/0x360
[ 2337.794643]  ? v9fs_show_options+0x690/0x690
[ 2337.795495]  ? kasan_unpoison_shadow+0x33/0x50
[ 2337.796353]  ? __kasan_kmalloc.constprop.0+0xc9/0xd0
[ 2337.797296]  v9fs_mount+0x79/0x8f0
[ 2337.797958]  ? v9fs_write_inode+0x60/0x60
[ 2337.798726]  legacy_get_tree+0x105/0x220
[ 2337.799504]  vfs_get_tree+0x8e/0x300
[ 2337.800197]  path_mount+0x13be/0x20b0
[ 2337.800905]  ? strncpy_from_user+0x9e/0x470
[ 2337.801701]  ? finish_automount+0xa40/0xa40
[ 2337.802501]  ? getname_flags.part.0+0x1dd/0x4f0
[ 2337.803330]  ? _copy_from_user+0xfb/0x1b0
[ 2337.804117]  __x64_sys_mount+0x282/0x300
[ 2337.804867]  ? copy_mnt_ns+0xa00/0xa00
[ 2337.805592]  ? rcu_read_lock_sched_held+0x3e/0x80
[ 2337.806486]  do_syscall_64+0x33/0x40
[ 2337.807184]  entry_SYSCALL_64_after_hwframe+0x61/0xc6
[ 2337.808139] RIP: 0033:0x7f38308e8b19
[ 2337.808829] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 2337.812219] RSP: 002b:00007f382de5e188 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5
[ 2337.813621] RAX: ffffffffffffffda RBX: 00007f38309fbf60 RCX: 00007f38308e8b19
[ 2337.814934] RDX: 00000000200000c0 RSI: 0000000020000040 RDI: 0000000000000000
[ 2337.816253] RBP: 00007f382de5e1d0 R08: 0000000020000280 R09: 0000000000000000
[ 2337.817557] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[ 2337.818856] R13: 00007ffca2bf07df R14: 00007f382de5e300 R15: 0000000000022000
21:19:44 executing program 3:
openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x105142, 0x0)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x400}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
pipe(&(0x7f00000001c0)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
mount$9p_fd(0x5000000, &(0x7f0000000040)='./file1\x00', &(0x7f00000000c0), 0x0, &(0x7f0000000280)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {}, 0x2c, {[{@nodevmap}]}})
openat(r1, &(0x7f0000000180)='./file1\x00', 0x0, 0x0)

21:19:44 executing program 2:
syz_mount_image$vfat(&(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x0, 0x2, &(0x7f0000000180)=[{&(0x7f0000000140)="eb3c906d6b66732e66617400020801000470008400f801", 0x17}, {0x0, 0x0, 0x1000a00}], 0x0, &(0x7f0000000240)=ANY=[])
chdir(&(0x7f0000000040)='./file0\x00')
r0 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x105142, 0x0)
ioctl$FS_IOC_RESVSP(r0, 0x40305828, &(0x7f0000000040)={0x0, 0x0, 0x0, 0x4000006, 0x0, 0xf60f})

21:19:44 executing program 4:
openat$vcs(0xffffffffffffff9c, &(0x7f0000000040), 0x0, 0x0)
openat$sr(0xffffffffffffff9c, &(0x7f00000035c0), 0x0, 0x0)
openat$sr(0xffffffffffffff9c, &(0x7f00000000c0), 0x224400, 0x0)
openat$rtc(0xffffffffffffff9c, &(0x7f0000000200), 0x0, 0x0)
pipe(&(0x7f00000001c0))
open(&(0x7f00000016c0)='./cgroup.net/cgroup.procs\x00', 0x0, 0x0)
pselect6(0x40, &(0x7f0000000180), &(0x7f00000001c0)={0x3fc, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xa}, 0x0, 0x0, 0x0)

21:19:44 executing program 5:
openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x105142, 0x0)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
pipe(&(0x7f00000001c0)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
mount$9p_fd(0x0, &(0x7f0000000040)='./file1\x00', &(0x7f00000000c0), 0x0, &(0x7f0000000280)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}}) (fail_nth: 41)
openat(0xffffffffffffffff, 0x0, 0x0, 0x0)

21:19:44 executing program 2:
syz_mount_image$vfat(&(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x0, 0x2, &(0x7f0000000180)=[{&(0x7f0000000140)="eb3c906d6b66732e66617400020801000470008400f801", 0x17}, {0x0, 0x0, 0x1000a00}], 0x0, &(0x7f0000000240)=ANY=[])
chdir(&(0x7f0000000040)='./file0\x00')
r0 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x105142, 0x0)
ioctl$FS_IOC_RESVSP(r0, 0x40305828, &(0x7f0000000040)={0x0, 0x0, 0x0, 0x4000006, 0x0, 0xfffff})

21:19:44 executing program 6:
r0 = syz_mount_image$vfat(&(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x0, 0x2, &(0x7f0000000180)=[{&(0x7f0000000140)="eb3c906d6b66732e66617400020801000470008400f801", 0x17}, {0x0, 0x0, 0x1000a00}], 0x0, &(0x7f0000000240)=ANY=[])
chdir(&(0x7f0000000040)='./file0\x00')
openat2(r0, &(0x7f0000000100)='./file0\x00', &(0x7f00000001c0)={0x0, 0x81}, 0x18)
mount$cgroup(0x0, 0x0, &(0x7f0000000400), 0x0, 0x0)
r1 = syz_io_uring_setup(0x22, &(0x7f0000000680)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000180)=<r2=>0x0, &(0x7f0000002a40)=<r3=>0x0)
r4 = io_uring_register$IORING_REGISTER_PERSONALITY(r1, 0x9, 0x0, 0x0)
r5 = socket$nl_netfilter(0x10, 0x3, 0xc)
syz_io_uring_submit(r2, r3, &(0x7f0000000400)=@IORING_OP_WRITEV={0x2, 0x0, 0x0, @fd=r5, 0x0, 0x0, 0x0, 0x0, 0x0, {0x0, r4}}, 0x0)
r6 = syz_io_uring_setup(0x22, &(0x7f0000000680)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000180), &(0x7f0000002a40))
r7 = io_uring_register$IORING_REGISTER_PERSONALITY(r6, 0x9, 0x0, 0x0)
syz_io_uring_submit(r2, 0x0, &(0x7f0000000440)=@IORING_OP_FSYNC={0x3, 0x2, 0x0, @fd_index=0x9, 0x0, 0x0, 0x0, 0x0, 0x1, {0x0, r7}}, 0x2)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r8 = openat(0xffffffffffffff9c, &(0x7f00000002c0)='./file1\x00', 0x105142, 0x0)
r9 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0)
sendfile(r8, r9, 0x0, 0x100000001)
newfstatat(0xffffffffffffff9c, &(0x7f0000000340)='./file1\x00', &(0x7f0000000380), 0x400)

[ 2338.117054] FAULT_INJECTION: forcing a failure.
[ 2338.117054] name failslab, interval 1, probability 0, space 0, times 0
[ 2338.118623] CPU: 1 PID: 19585 Comm: syz-executor.5 Not tainted 5.10.172 #1
[ 2338.119601] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 2338.120750] Call Trace:
[ 2338.121133]  dump_stack+0x107/0x167
[ 2338.121650]  should_fail.cold+0x5/0xa
[ 2338.122186]  ? ___slab_alloc+0x155/0x700
[ 2338.122756]  ? create_object.isra.0+0x3a/0xa20
[ 2338.123395]  should_failslab+0x5/0x20
[ 2338.123927]  kmem_cache_alloc+0x5b/0x360
[ 2338.124497]  create_object.isra.0+0x3a/0xa20
[ 2338.125106]  ? __kasan_kmalloc.constprop.0+0xc9/0xd0
[ 2338.125868]  kmem_cache_alloc+0x159/0x360
[ 2338.126455]  radix_tree_node_alloc.constprop.0+0x1e3/0x300
[ 2338.127238]  idr_get_free+0x4b5/0x8f0
[ 2338.127982]  idr_alloc_u32+0x170/0x2d0
[ 2338.128694]  ? __fprop_inc_percpu_max+0x130/0x130
[ 2338.129574]  ? p9_client_prepare_req.part.0+0x20a/0xb30
[ 2338.130549]  ? lock_release+0x6b0/0x6b0
[ 2338.131271]  idr_alloc+0xc2/0x130
[ 2338.131915]  ? idr_alloc_u32+0x2d0/0x2d0
[ 2338.132654]  ? rwlock_bug.part.0+0x90/0x90
[ 2338.133326]  p9_client_prepare_req.part.0+0x625/0xb30
[ 2338.134275]  p9_client_rpc+0x220/0x1270
[ 2338.135001]  ? lockdep_hardirqs_on_prepare+0x277/0x3e0
[ 2338.135973]  ? p9_client_prepare_req.part.0+0xb30/0xb30
[ 2338.136945]  ? pipe_poll+0x21b/0x7f0
[ 2338.137577]  ? p9_fd_close+0x4a0/0x4a0
[ 2338.138177]  ? anon_pipe_buf_release+0x280/0x280
[ 2338.138876]  ? p9_fd_poll+0x1e0/0x2c0
[ 2338.139496]  ? p9_fd_create+0x357/0x4a0
[ 2338.140082]  ? p9_conn_create+0x510/0x510
[ 2338.140728]  ? p9_client_create+0x798/0x1090
[ 2338.141372]  ? kfree+0xd7/0x390
[ 2338.141878]  ? do_raw_spin_unlock+0x4f/0x220
[ 2338.142532]  p9_client_create+0xa76/0x1090
[ 2338.143202]  ? p9_client_flush+0x430/0x430
[ 2338.143845]  ? lockdep_init_map_type+0x2c7/0x780
[ 2338.144536]  ? rcu_read_lock_sched_held+0x3e/0x80
[ 2338.145249]  ? __raw_spin_lock_init+0x36/0x110
[ 2338.145920]  v9fs_session_init+0x1dd/0x16a0
[ 2338.146605]  ? kmem_cache_alloc_trace+0x151/0x360
[ 2338.147313]  ? v9fs_show_options+0x690/0x690
[ 2338.148016]  ? kasan_unpoison_shadow+0x33/0x50
[ 2338.148716]  ? __kasan_kmalloc.constprop.0+0xc9/0xd0
[ 2338.149484]  v9fs_mount+0x79/0x8f0
[ 2338.150028]  ? v9fs_write_inode+0x60/0x60
[ 2338.150661]  legacy_get_tree+0x105/0x220
[ 2338.151274]  vfs_get_tree+0x8e/0x300
[ 2338.151848]  path_mount+0x13be/0x20b0
[ 2338.152430]  ? strncpy_from_user+0x9e/0x470
[ 2338.153082]  ? finish_automount+0xa40/0xa40
[ 2338.153732]  ? getname_flags.part.0+0x1dd/0x4f0
[ 2338.154415]  ? _copy_from_user+0xfb/0x1b0
[ 2338.155045]  __x64_sys_mount+0x282/0x300
[ 2338.155661]  ? copy_mnt_ns+0xa00/0xa00
[ 2338.156253]  ? rcu_read_lock_sched_held+0x3e/0x80
[ 2338.156984]  do_syscall_64+0x33/0x40
[ 2338.157543]  entry_SYSCALL_64_after_hwframe+0x61/0xc6
[ 2338.158308] RIP: 0033:0x7f38308e8b19
[ 2338.158870] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 2338.161636] RSP: 002b:00007f382de5e188 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5
[ 2338.162769] RAX: ffffffffffffffda RBX: 00007f38309fbf60 RCX: 00007f38308e8b19
[ 2338.163868] RDX: 00000000200000c0 RSI: 0000000020000040 RDI: 0000000000000000
21:19:44 executing program 3:
openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x105142, 0x0)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x400}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
pipe(&(0x7f00000001c0)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
mount$9p_fd(0x6000000, &(0x7f0000000040)='./file1\x00', &(0x7f00000000c0), 0x0, &(0x7f0000000280)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {}, 0x2c, {[{@nodevmap}]}})
openat(r1, &(0x7f0000000180)='./file1\x00', 0x0, 0x0)

[ 2338.164919] RBP: 00007f382de5e1d0 R08: 0000000020000280 R09: 0000000000000000
[ 2338.166107] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[ 2338.167148] R13: 00007ffca2bf07df R14: 00007f382de5e300 R15: 0000000000022000
21:19:44 executing program 0:
syz_mount_image$vfat(&(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x0, 0x2, &(0x7f0000000180)=[{&(0x7f0000000140)="eb3c906d6b66732e66617400020801000470008400f801", 0x17}, {0x0, 0x0, 0x1000a00}], 0x0, &(0x7f0000000240)=ANY=[])
chdir(&(0x7f0000000040)='./file0\x00')
mount$cgroup(0x0, 0x0, &(0x7f0000000400), 0x0, 0x0)
r0 = syz_io_uring_setup(0x22, &(0x7f0000000680)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000180)=<r1=>0x0, &(0x7f0000002a40)=<r2=>0x0)
r3 = io_uring_register$IORING_REGISTER_PERSONALITY(r0, 0x9, 0x0, 0x0)
socket$nl_netfilter(0x10, 0x3, 0xc)
syz_io_uring_submit(r1, r2, &(0x7f0000000400)=@IORING_OP_WRITEV={0x2, 0x0, 0x0, @fd, 0x0, 0x0, 0x0, 0x0, 0x0, {0x0, r3}}, 0x0)
r4 = syz_io_uring_setup(0x22, &(0x7f0000000680)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000180), &(0x7f0000002a40))
r5 = io_uring_register$IORING_REGISTER_PERSONALITY(r4, 0x9, 0x0, 0x0)
syz_io_uring_submit(r1, 0x0, &(0x7f0000000440)=@IORING_OP_FSYNC={0x3, 0x2, 0x0, @fd_index=0x9, 0x0, 0x0, 0x0, 0x0, 0x1, {0x0, r5}}, 0x2)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r6 = openat(0xffffffffffffff9c, &(0x7f00000002c0)='./file1\x00', 0x105142, 0x0)
r7 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0)
mount(&(0x7f0000000200)=ANY=[@ANYBLOB="2f6f651317868af191bdb2"], &(0x7f0000000240)='./file0\x00', &(0x7f0000000280)='nfsd\x00', 0x800000, &(0x7f0000000300)='cgroup\x00')
sendfile(r6, r7, 0x0, 0x100000001)
newfstatat(0xffffffffffffff9c, &(0x7f0000000340)='./file1\x00', &(0x7f0000000380), 0x400)

21:19:44 executing program 1:
openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x105142, 0x0)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
pipe(&(0x7f00000001c0))
mount$9p_fd(0xa00, &(0x7f0000000040)='./file1\x00', &(0x7f00000000c0), 0x0, &(0x7f0000000280)={'trans=fd,', {}, 0x2c, {}, 0x2c, {[{@nodevmap}]}})

21:20:04 executing program 2:
syz_mount_image$vfat(&(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x0, 0x2, &(0x7f0000000180)=[{&(0x7f0000000140)="eb3c906d6b66732e66617400020801000470008400f801", 0x17}, {0x0, 0x0, 0x1000a00}], 0x0, &(0x7f0000000240)=ANY=[])
chdir(&(0x7f0000000040)='./file0\x00')
r0 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x105142, 0x0)
ioctl$FS_IOC_RESVSP(r0, 0x40305828, &(0x7f0000000040)={0x0, 0x0, 0x0, 0x4000006, 0x0, 0x1000000})

21:20:04 executing program 0:
syz_mount_image$vfat(&(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x0, 0x2, &(0x7f0000000180)=[{&(0x7f0000000140)="eb3c906d6b66732e66617400020801000470008400f801", 0x17}, {0x0, 0x0, 0x1000a00}], 0x0, &(0x7f0000000240)=ANY=[])
chdir(&(0x7f0000000040)='./file0\x00')
mount$cgroup(0x0, 0x0, &(0x7f0000000400), 0x0, 0x0)
r0 = syz_io_uring_setup(0x22, &(0x7f0000000680)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000180)=<r1=>0x0, &(0x7f0000002a40)=<r2=>0x0)
r3 = io_uring_register$IORING_REGISTER_PERSONALITY(r0, 0x9, 0x0, 0x0)
socket$nl_netfilter(0x10, 0x3, 0xc)
syz_io_uring_submit(r1, r2, &(0x7f0000000400)=@IORING_OP_WRITEV={0x2, 0x0, 0x0, @fd, 0x0, 0x0, 0x0, 0x0, 0x0, {0x0, r3}}, 0x0)
r4 = syz_io_uring_setup(0x22, &(0x7f0000000680)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000180), &(0x7f0000002a40))
r5 = io_uring_register$IORING_REGISTER_PERSONALITY(r4, 0x9, 0x0, 0x0)
syz_io_uring_submit(r1, 0x0, &(0x7f0000000440)=@IORING_OP_FSYNC={0x3, 0x2, 0x0, @fd_index=0x9, 0x0, 0x0, 0x0, 0x0, 0x1, {0x0, r5}}, 0x2)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r6 = openat(0xffffffffffffff9c, &(0x7f00000002c0)='./file1\x00', 0x105142, 0x0)
r7 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0)
mount(&(0x7f0000000200)=ANY=[@ANYBLOB="2f6f651317868af191bdb2"], &(0x7f0000000240)='./file0\x00', &(0x7f0000000280)='nfsd\x00', 0x800000, &(0x7f0000000300)='cgroup\x00')
sendfile(r6, r7, 0x0, 0x100000001)
newfstatat(0xffffffffffffff9c, &(0x7f0000000340)='./file1\x00', &(0x7f0000000380), 0x400)

21:20:04 executing program 1:
openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x105142, 0x0)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
pipe(&(0x7f00000001c0))
mount$9p_fd(0xb00, &(0x7f0000000040)='./file1\x00', &(0x7f00000000c0), 0x0, &(0x7f0000000280)={'trans=fd,', {}, 0x2c, {}, 0x2c, {[{@nodevmap}]}})

21:20:04 executing program 6:
r0 = syz_mount_image$vfat(&(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x0, 0x2, &(0x7f0000000180)=[{&(0x7f0000000140)="eb3c906d6b66732e66617400020801000470008400f801", 0x17}, {0x0, 0x0, 0x1000a00}], 0x0, &(0x7f0000000240)=ANY=[])
chdir(&(0x7f0000000040)='./file0\x00')
openat2(r0, &(0x7f0000000100)='./file0\x00', &(0x7f00000001c0)={0x40000}, 0x18)
mount$cgroup(0x0, 0x0, &(0x7f0000000400), 0x0, 0x0)
r1 = syz_io_uring_setup(0x22, &(0x7f0000000680)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000180)=<r2=>0x0, &(0x7f0000002a40)=<r3=>0x0)
r4 = io_uring_register$IORING_REGISTER_PERSONALITY(r1, 0x9, 0x0, 0x0)
r5 = socket$nl_netfilter(0x10, 0x3, 0xc)
syz_io_uring_submit(r2, r3, &(0x7f0000000400)=@IORING_OP_WRITEV={0x2, 0x0, 0x0, @fd=r5, 0x0, 0x0, 0x0, 0x0, 0x0, {0x0, r4}}, 0x0)
r6 = syz_io_uring_setup(0x22, &(0x7f0000000680)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000180), &(0x7f0000002a40))
r7 = io_uring_register$IORING_REGISTER_PERSONALITY(r6, 0x9, 0x0, 0x0)
syz_io_uring_submit(r2, 0x0, &(0x7f0000000440)=@IORING_OP_FSYNC={0x3, 0x2, 0x0, @fd_index=0x9, 0x0, 0x0, 0x0, 0x0, 0x1, {0x0, r7}}, 0x2)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r8 = openat(0xffffffffffffff9c, &(0x7f00000002c0)='./file1\x00', 0x105142, 0x0)
r9 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0)
sendfile(r8, r9, 0x0, 0x100000001)
newfstatat(0xffffffffffffff9c, &(0x7f0000000340)='./file1\x00', &(0x7f0000000380), 0x400)

21:20:04 executing program 3:
openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x105142, 0x0)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x400}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
pipe(&(0x7f00000001c0)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
mount$9p_fd(0x7000000, &(0x7f0000000040)='./file1\x00', &(0x7f00000000c0), 0x0, &(0x7f0000000280)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {}, 0x2c, {[{@nodevmap}]}})
openat(r1, &(0x7f0000000180)='./file1\x00', 0x0, 0x0)

21:20:04 executing program 5:
openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x105142, 0x0)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
pipe(&(0x7f00000001c0)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
mount$9p_fd(0x0, &(0x7f0000000040)='./file1\x00', &(0x7f00000000c0), 0x0, &(0x7f0000000280)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}}) (fail_nth: 42)
openat(0xffffffffffffffff, 0x0, 0x0, 0x0)

21:20:04 executing program 7:
r0 = perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
io_pgetevents(0x0, 0x1, 0x1, &(0x7f0000000000)=[{}], 0x0, 0x0)
io_submit(0x0, 0x1, &(0x7f0000000340)=[&(0x7f0000000300)={0x0, 0x0, 0x0, 0x5, 0x0, r0, 0x0}])

21:20:04 executing program 4:
openat$vcs(0xffffffffffffff9c, &(0x7f0000000040), 0x0, 0x0)
openat$sr(0xffffffffffffff9c, &(0x7f00000035c0), 0x0, 0x0)
openat$sr(0xffffffffffffff9c, &(0x7f00000000c0), 0x224400, 0x0)
openat$rtc(0xffffffffffffff9c, &(0x7f0000000200), 0x0, 0x0)
pipe(&(0x7f00000001c0))
open(&(0x7f00000016c0)='./cgroup.net/cgroup.procs\x00', 0x0, 0x0)
pselect6(0x40, &(0x7f0000000180), &(0x7f00000001c0)={0x3fc, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10}, 0x0, 0x0, 0x0)

21:20:04 executing program 2:
syz_mount_image$vfat(&(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x0, 0x2, &(0x7f0000000180)=[{&(0x7f0000000140)="eb3c906d6b66732e66617400020801000470008400f801", 0x17}, {0x0, 0x0, 0x1000a00}], 0x0, &(0x7f0000000240)=ANY=[])
chdir(&(0x7f0000000040)='./file0\x00')
r0 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x105142, 0x0)
ioctl$FS_IOC_RESVSP(r0, 0x40305828, &(0x7f0000000040)={0x0, 0x0, 0x0, 0x4000006, 0x0, 0x2000000})

[ 2358.001579] FAULT_INJECTION: forcing a failure.
[ 2358.001579] name failslab, interval 1, probability 0, space 0, times 0
[ 2358.003457] CPU: 1 PID: 19719 Comm: syz-executor.5 Not tainted 5.10.172 #1
[ 2358.004618] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 2358.005998] Call Trace:
[ 2358.006455]  dump_stack+0x107/0x167
[ 2358.007079]  should_fail.cold+0x5/0xa
[ 2358.007740]  ? radix_tree_node_alloc.constprop.0+0x1e3/0x300
[ 2358.008701]  should_failslab+0x5/0x20
[ 2358.009343]  kmem_cache_alloc+0x5b/0x360
[ 2358.010031]  radix_tree_node_alloc.constprop.0+0x1e3/0x300
[ 2358.010967]  idr_get_free+0x4b5/0x8f0
[ 2358.011645]  idr_alloc_u32+0x170/0x2d0
[ 2358.012316]  ? __fprop_inc_percpu_max+0x130/0x130
[ 2358.013150]  ? p9_client_prepare_req.part.0+0x20a/0xb30
[ 2358.014077]  ? lock_release+0x6b0/0x6b0
[ 2358.014760]  idr_alloc+0xc2/0x130
[ 2358.015363]  ? idr_alloc_u32+0x2d0/0x2d0
[ 2358.016077]  ? rwlock_bug.part.0+0x90/0x90
[ 2358.016813]  p9_client_prepare_req.part.0+0x625/0xb30
[ 2358.017707]  p9_client_rpc+0x220/0x1270
[ 2358.018382]  ? lockdep_hardirqs_on_prepare+0x277/0x3e0
[ 2358.019271]  ? p9_client_prepare_req.part.0+0xb30/0xb30
[ 2358.020176]  ? pipe_poll+0x21b/0x7f0
[ 2358.020835]  ? p9_fd_close+0x4a0/0x4a0
[ 2358.021482]  ? anon_pipe_buf_release+0x280/0x280
[ 2358.022310]  ? p9_fd_poll+0x1e0/0x2c0
[ 2358.022949]  ? p9_fd_create+0x357/0x4a0
[ 2358.023661]  ? p9_conn_create+0x510/0x510
[ 2358.024406]  ? p9_client_create+0x798/0x1090
[ 2358.025143]  ? kfree+0xd7/0x390
[ 2358.025705]  ? do_raw_spin_unlock+0x4f/0x220
[ 2358.026452]  p9_client_create+0xa76/0x1090
[ 2358.027182]  ? p9_client_flush+0x430/0x430
[ 2358.027908]  ? lockdep_init_map_type+0x2c7/0x780
[ 2358.028704]  ? rcu_read_lock_sched_held+0x3e/0x80
[ 2358.029530]  ? __raw_spin_lock_init+0x36/0x110
[ 2358.030322]  v9fs_session_init+0x1dd/0x16a0
[ 2358.031059]  ? irqentry_enter+0x26/0x60
[ 2358.031766]  ? asm_sysvec_apic_timer_interrupt+0x12/0x20
[ 2358.032690]  ? trace_hardirqs_on+0x5b/0x180
[ 2358.033433]  ? v9fs_show_options+0x690/0x690
[ 2358.034214]  ? kasan_unpoison_shadow+0x33/0x50
[ 2358.034996]  ? __kasan_kmalloc.constprop.0+0xc9/0xd0
[ 2358.035878]  v9fs_mount+0x79/0x8f0
[ 2358.036490]  ? v9fs_write_inode+0x60/0x60
[ 2358.037191]  legacy_get_tree+0x105/0x220
[ 2358.037884]  vfs_get_tree+0x8e/0x300
[ 2358.038510]  path_mount+0x13be/0x20b0
[ 2358.039156]  ? strncpy_from_user+0x9e/0x470
[ 2358.039894]  ? finish_automount+0xa40/0xa40
[ 2358.040626]  ? getname_flags.part.0+0x1dd/0x4f0
[ 2358.041407]  ? _copy_from_user+0xfb/0x1b0
[ 2358.042120]  __x64_sys_mount+0x282/0x300
[ 2358.042807]  ? copy_mnt_ns+0xa00/0xa00
[ 2358.043500]  ? rcu_read_lock_sched_held+0x3e/0x80
[ 2358.044333]  do_syscall_64+0x33/0x40
[ 2358.044966]  entry_SYSCALL_64_after_hwframe+0x61/0xc6
[ 2358.045830] RIP: 0033:0x7f38308e8b19
[ 2358.046457] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 2358.049582] RSP: 002b:00007f382de5e188 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5
[ 2358.050877] RAX: ffffffffffffffda RBX: 00007f38309fbf60 RCX: 00007f38308e8b19
[ 2358.052091] RDX: 00000000200000c0 RSI: 0000000020000040 RDI: 0000000000000000
[ 2358.053281] RBP: 00007f382de5e1d0 R08: 0000000020000280 R09: 0000000000000000
[ 2358.054467] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[ 2358.055650] R13: 00007ffca2bf07df R14: 00007f382de5e300 R15: 0000000000022000
21:20:04 executing program 7:
r0 = perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
io_pgetevents(0x0, 0x1, 0x1, &(0x7f0000000000)=[{}], 0x0, 0x0)
io_submit(0x0, 0x1, &(0x7f0000000340)=[&(0x7f0000000300)={0x0, 0x0, 0x0, 0x5, 0x0, r0, 0x0}])

21:20:04 executing program 3:
openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x105142, 0x0)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x400}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
pipe(&(0x7f00000001c0)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
mount$9p_fd(0x8000000, &(0x7f0000000040)='./file1\x00', &(0x7f00000000c0), 0x0, &(0x7f0000000280)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {}, 0x2c, {[{@nodevmap}]}})
openat(r1, &(0x7f0000000180)='./file1\x00', 0x0, 0x0)

21:20:04 executing program 4:
openat$vcs(0xffffffffffffff9c, &(0x7f0000000040), 0x0, 0x0)
openat$sr(0xffffffffffffff9c, &(0x7f00000035c0), 0x0, 0x0)
openat$sr(0xffffffffffffff9c, &(0x7f00000000c0), 0x224400, 0x0)
openat$rtc(0xffffffffffffff9c, &(0x7f0000000200), 0x0, 0x0)
pipe(&(0x7f00000001c0))
open(&(0x7f00000016c0)='./cgroup.net/cgroup.procs\x00', 0x0, 0x0)
pselect6(0x40, &(0x7f0000000180), &(0x7f00000001c0)={0x3fc, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xa00}, 0x0, 0x0, 0x0)

21:20:04 executing program 1:
openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x105142, 0x0)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
pipe(&(0x7f00000001c0))
mount$9p_fd(0x1020, &(0x7f0000000040)='./file1\x00', &(0x7f00000000c0), 0x0, &(0x7f0000000280)={'trans=fd,', {}, 0x2c, {}, 0x2c, {[{@nodevmap}]}})

21:20:04 executing program 6:
r0 = syz_mount_image$vfat(&(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x0, 0x2, &(0x7f0000000180)=[{&(0x7f0000000140)="eb3c906d6b66732e66617400020801000470008400f801", 0x17}, {0x0, 0x0, 0x1000a00}], 0x0, &(0x7f0000000240)=ANY=[])
chdir(&(0x7f0000000040)='./file0\x00')
openat2(r0, &(0x7f0000000100)='./file0\x00', &(0x7f00000001c0)={0x40000}, 0x18)
mount$cgroup(0x0, 0x0, &(0x7f0000000400), 0x0, 0x0)
r1 = syz_io_uring_setup(0x22, &(0x7f0000000680)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000180)=<r2=>0x0, &(0x7f0000002a40)=<r3=>0x0)
r4 = io_uring_register$IORING_REGISTER_PERSONALITY(r1, 0x9, 0x0, 0x0)
r5 = socket$nl_netfilter(0x10, 0x3, 0xc)
syz_io_uring_submit(r2, r3, &(0x7f0000000400)=@IORING_OP_WRITEV={0x2, 0x0, 0x0, @fd=r5, 0x0, 0x0, 0x0, 0x0, 0x0, {0x0, r4}}, 0x0)
r6 = syz_io_uring_setup(0x22, &(0x7f0000000680)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000180), &(0x7f0000002a40))
r7 = io_uring_register$IORING_REGISTER_PERSONALITY(r6, 0x9, 0x0, 0x0)
syz_io_uring_submit(r2, 0x0, &(0x7f0000000440)=@IORING_OP_FSYNC={0x3, 0x2, 0x0, @fd_index=0x9, 0x0, 0x0, 0x0, 0x0, 0x1, {0x0, r7}}, 0x2)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r8 = openat(0xffffffffffffff9c, &(0x7f00000002c0)='./file1\x00', 0x105142, 0x0)
r9 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0)
sendfile(r8, r9, 0x0, 0x100000001)
newfstatat(0xffffffffffffff9c, &(0x7f0000000340)='./file1\x00', &(0x7f0000000380), 0x400)

21:20:04 executing program 0:
syz_mount_image$vfat(&(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x0, 0x2, &(0x7f0000000180)=[{&(0x7f0000000140)="eb3c906d6b66732e66617400020801000470008400f801", 0x17}, {0x0, 0x0, 0x1000a00}], 0x0, &(0x7f0000000240)=ANY=[])
chdir(&(0x7f0000000040)='./file0\x00')
mount$cgroup(0x0, 0x0, &(0x7f0000000400), 0x0, 0x0)
r0 = syz_io_uring_setup(0x22, &(0x7f0000000680)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000180)=<r1=>0x0, &(0x7f0000002a40)=<r2=>0x0)
io_uring_register$IORING_REGISTER_PERSONALITY(r0, 0x9, 0x0, 0x0)
r3 = socket$nl_netfilter(0x10, 0x3, 0xc)
syz_io_uring_submit(r1, r2, &(0x7f0000000400)=@IORING_OP_WRITEV={0x2, 0x0, 0x0, @fd=r3, 0x0, 0x0}, 0x0)
r4 = syz_io_uring_setup(0x22, &(0x7f0000000680)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000180), &(0x7f0000002a40))
r5 = io_uring_register$IORING_REGISTER_PERSONALITY(r4, 0x9, 0x0, 0x0)
syz_io_uring_submit(r1, 0x0, &(0x7f0000000440)=@IORING_OP_FSYNC={0x3, 0x2, 0x0, @fd_index=0x9, 0x0, 0x0, 0x0, 0x0, 0x1, {0x0, r5}}, 0x2)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r6 = openat(0xffffffffffffff9c, &(0x7f00000002c0)='./file1\x00', 0x105142, 0x0)
r7 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0)
mount(&(0x7f0000000200)=ANY=[@ANYBLOB="2f6f651317868af191bdb2"], &(0x7f0000000240)='./file0\x00', &(0x7f0000000280)='nfsd\x00', 0x800000, &(0x7f0000000300)='cgroup\x00')
sendfile(r6, r7, 0x0, 0x100000001)
newfstatat(0xffffffffffffff9c, &(0x7f0000000340)='./file1\x00', &(0x7f0000000380), 0x400)

21:20:04 executing program 2:
syz_mount_image$vfat(&(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x0, 0x2, &(0x7f0000000180)=[{&(0x7f0000000140)="eb3c906d6b66732e66617400020801000470008400f801", 0x17}, {0x0, 0x0, 0x1000a00}], 0x0, &(0x7f0000000240)=ANY=[])
chdir(&(0x7f0000000040)='./file0\x00')
r0 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x105142, 0x0)
ioctl$FS_IOC_RESVSP(r0, 0x40305828, &(0x7f0000000040)={0x0, 0x0, 0x0, 0x4000006, 0x0, 0x3000000})

21:20:04 executing program 7:
r0 = perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
io_pgetevents(0x0, 0x1, 0x1, &(0x7f0000000000)=[{}], 0x0, 0x0)
io_submit(0x0, 0x1, &(0x7f0000000340)=[&(0x7f0000000300)={0x0, 0x0, 0x0, 0x5, 0x0, r0, 0x0}])

21:20:04 executing program 1:
openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x105142, 0x0)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
pipe(&(0x7f00000001c0))
mount$9p_fd(0x2000, &(0x7f0000000040)='./file1\x00', &(0x7f00000000c0), 0x0, &(0x7f0000000280)={'trans=fd,', {}, 0x2c, {}, 0x2c, {[{@nodevmap}]}})

21:20:04 executing program 3:
openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x105142, 0x0)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x400}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
pipe(&(0x7f00000001c0)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
mount$9p_fd(0x9000000, &(0x7f0000000040)='./file1\x00', &(0x7f00000000c0), 0x0, &(0x7f0000000280)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {}, 0x2c, {[{@nodevmap}]}})
openat(r1, &(0x7f0000000180)='./file1\x00', 0x0, 0x0)

21:20:20 executing program 0:
syz_mount_image$vfat(&(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x0, 0x2, &(0x7f0000000180)=[{&(0x7f0000000140)="eb3c906d6b66732e66617400020801000470008400f801", 0x17}, {0x0, 0x0, 0x1000a00}], 0x0, &(0x7f0000000240)=ANY=[])
chdir(&(0x7f0000000040)='./file0\x00')
mount$cgroup(0x0, 0x0, &(0x7f0000000400), 0x0, 0x0)
r0 = syz_io_uring_setup(0x22, &(0x7f0000000680)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000180)=<r1=>0x0, &(0x7f0000002a40)=<r2=>0x0)
io_uring_register$IORING_REGISTER_PERSONALITY(r0, 0x9, 0x0, 0x0)
r3 = socket$nl_netfilter(0x10, 0x3, 0xc)
syz_io_uring_submit(r1, r2, &(0x7f0000000400)=@IORING_OP_WRITEV={0x2, 0x0, 0x0, @fd=r3, 0x0, 0x0}, 0x0)
r4 = syz_io_uring_setup(0x22, &(0x7f0000000680)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000180), &(0x7f0000002a40))
r5 = io_uring_register$IORING_REGISTER_PERSONALITY(r4, 0x9, 0x0, 0x0)
syz_io_uring_submit(r1, 0x0, &(0x7f0000000440)=@IORING_OP_FSYNC={0x3, 0x2, 0x0, @fd_index=0x9, 0x0, 0x0, 0x0, 0x0, 0x1, {0x0, r5}}, 0x2)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r6 = openat(0xffffffffffffff9c, &(0x7f00000002c0)='./file1\x00', 0x105142, 0x0)
r7 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0)
mount(&(0x7f0000000200)=ANY=[@ANYBLOB="2f6f651317868af191bdb2"], &(0x7f0000000240)='./file0\x00', &(0x7f0000000280)='nfsd\x00', 0x800000, &(0x7f0000000300)='cgroup\x00')
sendfile(r6, r7, 0x0, 0x100000001)
newfstatat(0xffffffffffffff9c, &(0x7f0000000340)='./file1\x00', &(0x7f0000000380), 0x400)

21:20:20 executing program 4:
openat$vcs(0xffffffffffffff9c, &(0x7f0000000040), 0x0, 0x0)
openat$sr(0xffffffffffffff9c, &(0x7f00000035c0), 0x0, 0x0)
openat$sr(0xffffffffffffff9c, &(0x7f00000000c0), 0x224400, 0x0)
openat$rtc(0xffffffffffffff9c, &(0x7f0000000200), 0x0, 0x0)
pipe(&(0x7f00000001c0))
open(&(0x7f00000016c0)='./cgroup.net/cgroup.procs\x00', 0x0, 0x0)
pselect6(0x40, &(0x7f0000000180), &(0x7f00000001c0)={0x3fc, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1000000}, 0x0, 0x0, 0x0)

21:20:20 executing program 6:
r0 = syz_mount_image$vfat(&(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x0, 0x2, &(0x7f0000000180)=[{&(0x7f0000000140)="eb3c906d6b66732e66617400020801000470008400f801", 0x17}, {0x0, 0x0, 0x1000a00}], 0x0, &(0x7f0000000240)=ANY=[])
chdir(&(0x7f0000000040)='./file0\x00')
openat2(r0, &(0x7f0000000100)='./file0\x00', &(0x7f00000001c0)={0x40000}, 0x18)
mount$cgroup(0x0, 0x0, &(0x7f0000000400), 0x0, 0x0)
r1 = syz_io_uring_setup(0x22, &(0x7f0000000680)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000180)=<r2=>0x0, &(0x7f0000002a40)=<r3=>0x0)
r4 = io_uring_register$IORING_REGISTER_PERSONALITY(r1, 0x9, 0x0, 0x0)
r5 = socket$nl_netfilter(0x10, 0x3, 0xc)
syz_io_uring_submit(r2, r3, &(0x7f0000000400)=@IORING_OP_WRITEV={0x2, 0x0, 0x0, @fd=r5, 0x0, 0x0, 0x0, 0x0, 0x0, {0x0, r4}}, 0x0)
r6 = syz_io_uring_setup(0x22, &(0x7f0000000680)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000180), &(0x7f0000002a40))
r7 = io_uring_register$IORING_REGISTER_PERSONALITY(r6, 0x9, 0x0, 0x0)
syz_io_uring_submit(r2, 0x0, &(0x7f0000000440)=@IORING_OP_FSYNC={0x3, 0x2, 0x0, @fd_index=0x9, 0x0, 0x0, 0x0, 0x0, 0x1, {0x0, r7}}, 0x2)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r8 = openat(0xffffffffffffff9c, &(0x7f00000002c0)='./file1\x00', 0x105142, 0x0)
r9 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0)
sendfile(r8, r9, 0x0, 0x100000001)
newfstatat(0xffffffffffffff9c, &(0x7f0000000340)='./file1\x00', &(0x7f0000000380), 0x400)

21:20:20 executing program 3:
openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x105142, 0x0)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x400}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
pipe(&(0x7f00000001c0)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
mount$9p_fd(0xa000000, &(0x7f0000000040)='./file1\x00', &(0x7f00000000c0), 0x0, &(0x7f0000000280)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {}, 0x2c, {[{@nodevmap}]}})
openat(r1, &(0x7f0000000180)='./file1\x00', 0x0, 0x0)

21:20:20 executing program 7:
io_setup(0x7f, &(0x7f00000002c0)=<r0=>0x0)
io_pgetevents(r0, 0x1, 0x1, &(0x7f0000000000)=[{}], 0x0, 0x0)
io_submit(r0, 0x1, &(0x7f0000000340)=[&(0x7f0000000300)={0x0, 0x0, 0x0, 0x5, 0x0, 0xffffffffffffffff, 0x0}])

21:20:20 executing program 2:
syz_mount_image$vfat(&(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x0, 0x2, &(0x7f0000000180)=[{&(0x7f0000000140)="eb3c906d6b66732e66617400020801000470008400f801", 0x17}, {0x0, 0x0, 0x1000a00}], 0x0, &(0x7f0000000240)=ANY=[])
chdir(&(0x7f0000000040)='./file0\x00')
r0 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x105142, 0x0)
ioctl$FS_IOC_RESVSP(r0, 0x40305828, &(0x7f0000000040)={0x0, 0x0, 0x0, 0x4000006, 0x0, 0x4000000})

21:20:20 executing program 5:
openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x105142, 0x0)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
pipe(&(0x7f00000001c0)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
mount$9p_fd(0x0, &(0x7f0000000040)='./file1\x00', &(0x7f00000000c0), 0x0, &(0x7f0000000280)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}}) (fail_nth: 43)
openat(0xffffffffffffffff, 0x0, 0x0, 0x0)

21:20:20 executing program 1:
openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x105142, 0x0)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
pipe(&(0x7f00000001c0))
mount$9p_fd(0x2010, &(0x7f0000000040)='./file1\x00', &(0x7f00000000c0), 0x0, &(0x7f0000000280)={'trans=fd,', {}, 0x2c, {}, 0x2c, {[{@nodevmap}]}})

[ 2373.622456] FAULT_INJECTION: forcing a failure.
[ 2373.622456] name failslab, interval 1, probability 0, space 0, times 0
[ 2373.624965] CPU: 0 PID: 20094 Comm: syz-executor.5 Not tainted 5.10.172 #1
[ 2373.626763] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 2373.628623] Call Trace:
[ 2373.629221]  dump_stack+0x107/0x167
[ 2373.630040]  should_fail.cold+0x5/0xa
[ 2373.630890]  ? create_object.isra.0+0x3a/0xa20
[ 2373.631916]  should_failslab+0x5/0x20
[ 2373.632753]  kmem_cache_alloc+0x5b/0x360
[ 2373.633653]  create_object.isra.0+0x3a/0xa20
[ 2373.634623]  ? __kasan_kmalloc.constprop.0+0xc9/0xd0
[ 2373.635747]  kmem_cache_alloc+0x159/0x360
[ 2373.636684]  radix_tree_node_alloc.constprop.0+0x1e3/0x300
[ 2373.637919]  idr_get_free+0x4b5/0x8f0
[ 2373.638782]  idr_alloc_u32+0x170/0x2d0
[ 2373.639650]  ? __fprop_inc_percpu_max+0x130/0x130
[ 2373.640723]  ? p9_client_prepare_req.part.0+0x20a/0xb30
[ 2373.641899]  ? lock_release+0x6b0/0x6b0
[ 2373.642788]  idr_alloc+0xc2/0x130
[ 2373.643548]  ? idr_alloc_u32+0x2d0/0x2d0
[ 2373.644443]  ? rwlock_bug.part.0+0x90/0x90
[ 2373.645390]  p9_client_prepare_req.part.0+0x625/0xb30
[ 2373.646534]  p9_client_rpc+0x220/0x1270
[ 2373.647407]  ? _raw_spin_unlock_irqrestore+0x38/0x40
[ 2373.648541]  ? p9_client_prepare_req.part.0+0xb30/0xb30
[ 2373.649717]  ? pipe_poll+0x21b/0x7f0
[ 2373.650535]  ? p9_fd_close+0x4a0/0x4a0
[ 2373.651388]  ? anon_pipe_buf_release+0x280/0x280
[ 2373.652421]  ? p9_fd_poll+0x1e0/0x2c0
[ 2373.653281]  ? p9_fd_create+0x357/0x4a0
[ 2373.654148]  ? p9_conn_create+0x510/0x510
[ 2373.655044]  ? p9_client_create+0x798/0x1090
[ 2373.656019]  ? kfree+0xd7/0x390
[ 2373.656740]  ? do_raw_spin_unlock+0x4f/0x220
[ 2373.657706]  p9_client_create+0xa76/0x1090
[ 2373.658635]  ? p9_client_flush+0x430/0x430
[ 2373.659565]  ? lockdep_init_map_type+0x2c7/0x780
[ 2373.660607]  ? rcu_read_lock_sched_held+0x3e/0x80
[ 2373.661663]  ? __raw_spin_lock_init+0x36/0x110
[ 2373.662663]  v9fs_session_init+0x1dd/0x16a0
[ 2373.663616]  ? kmem_cache_alloc_trace+0x151/0x360
[ 2373.664679]  ? v9fs_show_options+0x690/0x690
[ 2373.665664]  ? kasan_unpoison_shadow+0x33/0x50
[ 2373.666656]  ? __kasan_kmalloc.constprop.0+0xc9/0xd0
[ 2373.667760]  v9fs_mount+0x79/0x8f0
[ 2373.668550]  ? v9fs_write_inode+0x60/0x60
[ 2373.669450]  legacy_get_tree+0x105/0x220
[ 2373.670343]  vfs_get_tree+0x8e/0x300
[ 2373.671150]  path_mount+0x13be/0x20b0
[ 2373.671988]  ? strncpy_from_user+0x9e/0x470
[ 2373.672917]  ? finish_automount+0xa40/0xa40
[ 2373.673851]  ? getname_flags.part.0+0x1dd/0x4f0
[ 2373.674846]  ? _copy_from_user+0xfb/0x1b0
[ 2373.675756]  __x64_sys_mount+0x282/0x300
[ 2373.676651]  ? copy_mnt_ns+0xa00/0xa00
[ 2373.677494]  ? rcu_read_lock_sched_held+0x3e/0x80
[ 2373.678540]  do_syscall_64+0x33/0x40
[ 2373.679342]  entry_SYSCALL_64_after_hwframe+0x61/0xc6
[ 2373.680454] RIP: 0033:0x7f38308e8b19
[ 2373.681255] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 2373.685203] RSP: 002b:00007f382de5e188 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5
[ 2373.686833] RAX: ffffffffffffffda RBX: 00007f38309fbf60 RCX: 00007f38308e8b19
[ 2373.688369] RDX: 00000000200000c0 RSI: 0000000020000040 RDI: 0000000000000000
[ 2373.689911] RBP: 00007f382de5e1d0 R08: 0000000020000280 R09: 0000000000000000
[ 2373.691486] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[ 2373.693067] R13: 00007ffca2bf07df R14: 00007f382de5e300 R15: 0000000000022000
21:20:20 executing program 2:
syz_mount_image$vfat(&(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x0, 0x2, &(0x7f0000000180)=[{&(0x7f0000000140)="eb3c906d6b66732e66617400020801000470008400f801", 0x17}, {0x0, 0x0, 0x1000a00}], 0x0, &(0x7f0000000240)=ANY=[])
chdir(&(0x7f0000000040)='./file0\x00')
r0 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x105142, 0x0)
ioctl$FS_IOC_RESVSP(r0, 0x40305828, &(0x7f0000000040)={0x0, 0x0, 0x0, 0x4000006, 0x0, 0x4000006})

21:20:20 executing program 3:
openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x105142, 0x0)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x400}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
pipe(&(0x7f00000001c0)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
mount$9p_fd(0xb000000, &(0x7f0000000040)='./file1\x00', &(0x7f00000000c0), 0x0, &(0x7f0000000280)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {}, 0x2c, {[{@nodevmap}]}})
openat(r1, &(0x7f0000000180)='./file1\x00', 0x0, 0x0)

21:20:20 executing program 4:
openat$vcs(0xffffffffffffff9c, &(0x7f0000000040), 0x0, 0x0)
openat$sr(0xffffffffffffff9c, &(0x7f00000035c0), 0x0, 0x0)
openat$sr(0xffffffffffffff9c, &(0x7f00000000c0), 0x224400, 0x0)
openat$rtc(0xffffffffffffff9c, &(0x7f0000000200), 0x0, 0x0)
pipe(&(0x7f00000001c0))
open(&(0x7f00000016c0)='./cgroup.net/cgroup.procs\x00', 0x0, 0x0)
pselect6(0x40, &(0x7f0000000180), &(0x7f00000001c0)={0x3fc, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8000000}, 0x0, 0x0, 0x0)

21:20:20 executing program 1:
openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x105142, 0x0)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
pipe(&(0x7f00000001c0))
mount$9p_fd(0xedc0, &(0x7f0000000040)='./file1\x00', &(0x7f00000000c0), 0x0, &(0x7f0000000280)={'trans=fd,', {}, 0x2c, {}, 0x2c, {[{@nodevmap}]}})

21:20:20 executing program 6:
r0 = syz_mount_image$vfat(&(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x0, 0x2, &(0x7f0000000180)=[{&(0x7f0000000140)="eb3c906d6b66732e66617400020801000470008400f801", 0x17}, {0x0, 0x0, 0x1000a00}], 0x0, &(0x7f0000000240)=ANY=[])
chdir(&(0x7f0000000040)='./file0\x00')
openat2(r0, &(0x7f0000000100)='./file0\x00', &(0x7f00000001c0)={0x40000, 0x81}, 0x18)
mount$cgroup(0x0, 0x0, 0x0, 0x0, 0x0)
r1 = syz_io_uring_setup(0x22, &(0x7f0000000680)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000180)=<r2=>0x0, &(0x7f0000002a40)=<r3=>0x0)
r4 = io_uring_register$IORING_REGISTER_PERSONALITY(r1, 0x9, 0x0, 0x0)
r5 = socket$nl_netfilter(0x10, 0x3, 0xc)
syz_io_uring_submit(r2, r3, &(0x7f0000000400)=@IORING_OP_WRITEV={0x2, 0x0, 0x0, @fd=r5, 0x0, 0x0, 0x0, 0x0, 0x0, {0x0, r4}}, 0x0)
r6 = syz_io_uring_setup(0x22, &(0x7f0000000680)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000180), &(0x7f0000002a40))
r7 = io_uring_register$IORING_REGISTER_PERSONALITY(r6, 0x9, 0x0, 0x0)
syz_io_uring_submit(r2, 0x0, &(0x7f0000000440)=@IORING_OP_FSYNC={0x3, 0x2, 0x0, @fd_index=0x9, 0x0, 0x0, 0x0, 0x0, 0x1, {0x0, r7}}, 0x2)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r8 = openat(0xffffffffffffff9c, &(0x7f00000002c0)='./file1\x00', 0x105142, 0x0)
r9 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0)
sendfile(r8, r9, 0x0, 0x100000001)
newfstatat(0xffffffffffffff9c, &(0x7f0000000340)='./file1\x00', &(0x7f0000000380), 0x400)

21:20:20 executing program 0:
syz_mount_image$vfat(&(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x0, 0x2, &(0x7f0000000180)=[{&(0x7f0000000140)="eb3c906d6b66732e66617400020801000470008400f801", 0x17}, {0x0, 0x0, 0x1000a00}], 0x0, &(0x7f0000000240)=ANY=[])
chdir(&(0x7f0000000040)='./file0\x00')
mount$cgroup(0x0, 0x0, &(0x7f0000000400), 0x0, 0x0)
r0 = syz_io_uring_setup(0x22, &(0x7f0000000680)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000180)=<r1=>0x0, &(0x7f0000002a40)=<r2=>0x0)
io_uring_register$IORING_REGISTER_PERSONALITY(r0, 0x9, 0x0, 0x0)
r3 = socket$nl_netfilter(0x10, 0x3, 0xc)
syz_io_uring_submit(r1, r2, &(0x7f0000000400)=@IORING_OP_WRITEV={0x2, 0x0, 0x0, @fd=r3, 0x0, 0x0}, 0x0)
r4 = syz_io_uring_setup(0x22, &(0x7f0000000680)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000180), &(0x7f0000002a40))
r5 = io_uring_register$IORING_REGISTER_PERSONALITY(r4, 0x9, 0x0, 0x0)
syz_io_uring_submit(r1, 0x0, &(0x7f0000000440)=@IORING_OP_FSYNC={0x3, 0x2, 0x0, @fd_index=0x9, 0x0, 0x0, 0x0, 0x0, 0x1, {0x0, r5}}, 0x2)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r6 = openat(0xffffffffffffff9c, &(0x7f00000002c0)='./file1\x00', 0x105142, 0x0)
r7 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0)
mount(&(0x7f0000000200)=ANY=[@ANYBLOB="2f6f651317868af191bdb2"], &(0x7f0000000240)='./file0\x00', &(0x7f0000000280)='nfsd\x00', 0x800000, &(0x7f0000000300)='cgroup\x00')
sendfile(r6, r7, 0x0, 0x100000001)
newfstatat(0xffffffffffffff9c, &(0x7f0000000340)='./file1\x00', &(0x7f0000000380), 0x400)

21:20:36 executing program 7:
io_setup(0x7f, &(0x7f00000002c0)=<r0=>0x0)
io_pgetevents(r0, 0x1, 0x1, &(0x7f0000000000)=[{}], 0x0, 0x0)
io_submit(r0, 0x1, &(0x7f0000000340)=[&(0x7f0000000300)={0x0, 0x0, 0x0, 0x5, 0x0, 0xffffffffffffffff, 0x0}])

21:20:36 executing program 2:
syz_mount_image$vfat(&(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x0, 0x2, &(0x7f0000000180)=[{&(0x7f0000000140)="eb3c906d6b66732e66617400020801000470008400f801", 0x17}, {0x0, 0x0, 0x1000a00}], 0x0, &(0x7f0000000240)=ANY=[])
chdir(&(0x7f0000000040)='./file0\x00')
r0 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x105142, 0x0)
ioctl$FS_IOC_RESVSP(r0, 0x40305828, &(0x7f0000000040)={0x0, 0x0, 0x0, 0x4000006, 0x0, 0x5000000})

21:20:36 executing program 0:
syz_mount_image$vfat(&(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x0, 0x2, &(0x7f0000000180)=[{&(0x7f0000000140)="eb3c906d6b66732e66617400020801000470008400f801", 0x17}, {0x0, 0x0, 0x1000a00}], 0x0, &(0x7f0000000240)=ANY=[])
chdir(&(0x7f0000000040)='./file0\x00')
mount$cgroup(0x0, 0x0, &(0x7f0000000400), 0x0, 0x0)
r0 = syz_io_uring_setup(0x22, &(0x7f0000000680)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000180)=<r1=>0x0, &(0x7f0000002a40)=<r2=>0x0)
r3 = io_uring_register$IORING_REGISTER_PERSONALITY(r0, 0x9, 0x0, 0x0)
r4 = socket$nl_netfilter(0x10, 0x3, 0xc)
syz_io_uring_submit(r1, r2, &(0x7f0000000400)=@IORING_OP_WRITEV={0x2, 0x0, 0x0, @fd=r4, 0x0, 0x0, 0x0, 0x0, 0x0, {0x0, r3}}, 0x0)
r5 = syz_io_uring_setup(0x0, &(0x7f0000000680)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000180), &(0x7f0000002a40))
r6 = io_uring_register$IORING_REGISTER_PERSONALITY(r5, 0x9, 0x0, 0x0)
syz_io_uring_submit(r1, 0x0, &(0x7f0000000440)=@IORING_OP_FSYNC={0x3, 0x2, 0x0, @fd_index=0x9, 0x0, 0x0, 0x0, 0x0, 0x1, {0x0, r6}}, 0x2)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r7 = openat(0xffffffffffffff9c, &(0x7f00000002c0)='./file1\x00', 0x105142, 0x0)
r8 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0)
mount(&(0x7f0000000200)=ANY=[@ANYBLOB="2f6f651317868af191bdb2"], &(0x7f0000000240)='./file0\x00', &(0x7f0000000280)='nfsd\x00', 0x800000, &(0x7f0000000300)='cgroup\x00')
sendfile(r7, r8, 0x0, 0x100000001)
newfstatat(0xffffffffffffff9c, &(0x7f0000000340)='./file1\x00', &(0x7f0000000380), 0x400)

21:20:36 executing program 1:
openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x105142, 0x0)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
pipe(&(0x7f00000001c0))
mount$9p_fd(0x80000, &(0x7f0000000040)='./file1\x00', &(0x7f00000000c0), 0x0, &(0x7f0000000280)={'trans=fd,', {}, 0x2c, {}, 0x2c, {[{@nodevmap}]}})

21:20:36 executing program 3:
openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x105142, 0x0)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x400}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
pipe(&(0x7f00000001c0)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
mount$9p_fd(0x10000000, &(0x7f0000000040)='./file1\x00', &(0x7f00000000c0), 0x0, &(0x7f0000000280)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {}, 0x2c, {[{@nodevmap}]}})
openat(r1, &(0x7f0000000180)='./file1\x00', 0x0, 0x0)

21:20:36 executing program 4:
openat$vcs(0xffffffffffffff9c, &(0x7f0000000040), 0x0, 0x0)
openat$sr(0xffffffffffffff9c, &(0x7f00000035c0), 0x0, 0x0)
openat$sr(0xffffffffffffff9c, &(0x7f00000000c0), 0x224400, 0x0)
openat$rtc(0xffffffffffffff9c, &(0x7f0000000200), 0x0, 0x0)
pipe(&(0x7f00000001c0))
open(&(0x7f00000016c0)='./cgroup.net/cgroup.procs\x00', 0x0, 0x0)
pselect6(0x40, &(0x7f0000000180), &(0x7f00000001c0)={0x3fc, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xa000000}, 0x0, 0x0, 0x0)

21:20:36 executing program 6:
r0 = syz_mount_image$vfat(&(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x0, 0x2, &(0x7f0000000180)=[{&(0x7f0000000140)="eb3c906d6b66732e66617400020801000470008400f801", 0x17}, {0x0, 0x0, 0x1000a00}], 0x0, &(0x7f0000000240)=ANY=[])
chdir(&(0x7f0000000040)='./file0\x00')
openat2(r0, &(0x7f0000000100)='./file0\x00', &(0x7f00000001c0)={0x40000, 0x81}, 0x18)
mount$cgroup(0x0, 0x0, 0x0, 0x0, 0x0)
r1 = syz_io_uring_setup(0x22, &(0x7f0000000680)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000180)=<r2=>0x0, &(0x7f0000002a40)=<r3=>0x0)
r4 = io_uring_register$IORING_REGISTER_PERSONALITY(r1, 0x9, 0x0, 0x0)
r5 = socket$nl_netfilter(0x10, 0x3, 0xc)
syz_io_uring_submit(r2, r3, &(0x7f0000000400)=@IORING_OP_WRITEV={0x2, 0x0, 0x0, @fd=r5, 0x0, 0x0, 0x0, 0x0, 0x0, {0x0, r4}}, 0x0)
r6 = syz_io_uring_setup(0x22, &(0x7f0000000680)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000180), &(0x7f0000002a40))
r7 = io_uring_register$IORING_REGISTER_PERSONALITY(r6, 0x9, 0x0, 0x0)
syz_io_uring_submit(r2, 0x0, &(0x7f0000000440)=@IORING_OP_FSYNC={0x3, 0x2, 0x0, @fd_index=0x9, 0x0, 0x0, 0x0, 0x0, 0x1, {0x0, r7}}, 0x2)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r8 = openat(0xffffffffffffff9c, &(0x7f00000002c0)='./file1\x00', 0x105142, 0x0)
r9 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0)
sendfile(r8, r9, 0x0, 0x100000001)
newfstatat(0xffffffffffffff9c, &(0x7f0000000340)='./file1\x00', &(0x7f0000000380), 0x400)

21:20:36 executing program 5:
openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x105142, 0x0)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
pipe(&(0x7f00000001c0)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
mount$9p_fd(0x0, &(0x7f0000000040)='./file1\x00', &(0x7f00000000c0), 0x0, &(0x7f0000000280)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}}) (fail_nth: 44)
openat(0xffffffffffffffff, 0x0, 0x0, 0x0)

[ 2390.026329] FAULT_INJECTION: forcing a failure.
[ 2390.026329] name failslab, interval 1, probability 0, space 0, times 0
[ 2390.028301] CPU: 0 PID: 20350 Comm: syz-executor.5 Not tainted 5.10.172 #1
[ 2390.029512] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 2390.031039] Call Trace:
[ 2390.031514]  dump_stack+0x107/0x167
[ 2390.032228]  should_fail.cold+0x5/0xa
[ 2390.032954]  ? radix_tree_node_alloc.constprop.0+0x1e3/0x300
[ 2390.034029]  should_failslab+0x5/0x20
[ 2390.034733]  kmem_cache_alloc+0x5b/0x360
[ 2390.035506]  radix_tree_node_alloc.constprop.0+0x1e3/0x300
[ 2390.036537]  idr_get_free+0x4b5/0x8f0
[ 2390.037242]  idr_alloc_u32+0x170/0x2d0
[ 2390.037943]  ? __fprop_inc_percpu_max+0x130/0x130
[ 2390.038815]  ? p9_client_prepare_req.part.0+0x20a/0xb30
[ 2390.039777]  ? lock_release+0x6b0/0x6b0
[ 2390.040520]  idr_alloc+0xc2/0x130
[ 2390.041143]  ? idr_alloc_u32+0x2d0/0x2d0
[ 2390.041871]  ? rwlock_bug.part.0+0x90/0x90
[ 2390.042646]  p9_client_prepare_req.part.0+0x625/0xb30
[ 2390.043581]  p9_client_rpc+0x220/0x1270
[ 2390.044311]  ? lockdep_hardirqs_on_prepare+0x277/0x3e0
[ 2390.045255]  ? p9_client_prepare_req.part.0+0xb30/0xb30
[ 2390.046212]  ? pipe_poll+0x21b/0x7f0
[ 2390.046868]  ? p9_fd_close+0x4a0/0x4a0
[ 2390.047554]  ? anon_pipe_buf_release+0x280/0x280
[ 2390.048420]  ? p9_fd_poll+0x1e0/0x2c0
[ 2390.049109]  ? p9_fd_create+0x357/0x4a0
[ 2390.049819]  ? p9_conn_create+0x510/0x510
[ 2390.050552]  ? p9_client_create+0x798/0x1090
[ 2390.051329]  ? kfree+0xd7/0x390
[ 2390.051918]  ? do_raw_spin_unlock+0x4f/0x220
[ 2390.052721]  p9_client_create+0xa76/0x1090
[ 2390.053480]  ? p9_client_flush+0x430/0x430
[ 2390.054236]  ? lockdep_init_map_type+0x2c7/0x780
[ 2390.055071]  ? rcu_read_lock_sched_held+0x3e/0x80
[ 2390.055929]  ? __raw_spin_lock_init+0x36/0x110
[ 2390.056755]  v9fs_session_init+0x1dd/0x16a0
[ 2390.057533]  ? kmem_cache_alloc_trace+0x151/0x360
[ 2390.058381]  ? v9fs_show_options+0x690/0x690
[ 2390.059185]  ? kasan_unpoison_shadow+0x33/0x50
[ 2390.059991]  ? __kasan_kmalloc.constprop.0+0xc9/0xd0
[ 2390.060922]  v9fs_mount+0x79/0x8f0
[ 2390.061567]  ? v9fs_write_inode+0x60/0x60
[ 2390.062307]  legacy_get_tree+0x105/0x220
[ 2390.063028]  vfs_get_tree+0x8e/0x300
[ 2390.063697]  path_mount+0x13be/0x20b0
[ 2390.064383]  ? strncpy_from_user+0x9e/0x470
[ 2390.065151]  ? finish_automount+0xa40/0xa40
[ 2390.065907]  ? getname_flags.part.0+0x1dd/0x4f0
[ 2390.066726]  ? _copy_from_user+0xfb/0x1b0
[ 2390.067478]  __x64_sys_mount+0x282/0x300
[ 2390.068216]  ? copy_mnt_ns+0xa00/0xa00
[ 2390.068907]  ? rcu_read_lock_sched_held+0x3e/0x80
[ 2390.069767]  do_syscall_64+0x33/0x40
[ 2390.070426]  entry_SYSCALL_64_after_hwframe+0x61/0xc6
[ 2390.071337] RIP: 0033:0x7f38308e8b19
[ 2390.072004] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 2390.075246] RSP: 002b:00007f382de5e188 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5
[ 2390.076586] RAX: ffffffffffffffda RBX: 00007f38309fbf60 RCX: 00007f38308e8b19
[ 2390.077839] RDX: 00000000200000c0 RSI: 0000000020000040 RDI: 0000000000000000
[ 2390.079094] RBP: 00007f382de5e1d0 R08: 0000000020000280 R09: 0000000000000000
[ 2390.080354] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[ 2390.081613] R13: 00007ffca2bf07df R14: 00007f382de5e300 R15: 0000000000022000
21:20:36 executing program 3:
openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x105142, 0x0)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x400}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
pipe(&(0x7f00000001c0)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
mount$9p_fd(0x20000000, &(0x7f0000000040)='./file1\x00', &(0x7f00000000c0), 0x0, &(0x7f0000000280)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {}, 0x2c, {[{@nodevmap}]}})
openat(r1, &(0x7f0000000180)='./file1\x00', 0x0, 0x0)

21:20:36 executing program 2:
syz_mount_image$vfat(&(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x0, 0x2, &(0x7f0000000180)=[{&(0x7f0000000140)="eb3c906d6b66732e66617400020801000470008400f801", 0x17}, {0x0, 0x0, 0x1000a00}], 0x0, &(0x7f0000000240)=ANY=[])
chdir(&(0x7f0000000040)='./file0\x00')
r0 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x105142, 0x0)
ioctl$FS_IOC_RESVSP(r0, 0x40305828, &(0x7f0000000040)={0x0, 0x0, 0x0, 0x4000006, 0x0, 0x6000004})

21:20:36 executing program 4:
openat$vcs(0xffffffffffffff9c, &(0x7f0000000040), 0x0, 0x0)
openat$sr(0xffffffffffffff9c, &(0x7f00000035c0), 0x0, 0x0)
openat$sr(0xffffffffffffff9c, &(0x7f00000000c0), 0x224400, 0x0)
openat$rtc(0xffffffffffffff9c, &(0x7f0000000200), 0x0, 0x0)
pipe(&(0x7f00000001c0))
open(&(0x7f00000016c0)='./cgroup.net/cgroup.procs\x00', 0x0, 0x0)
pselect6(0x40, &(0x7f0000000180), &(0x7f00000001c0)={0x3fc, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10000000}, 0x0, 0x0, 0x0)

[ 2390.290464] 9pnet: Insufficient options for proto=fd
[ 2390.315094] 9pnet: Insufficient options for proto=fd
21:20:36 executing program 1:
openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x105142, 0x0)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
pipe(&(0x7f00000001c0))
mount$9p_fd(0x1000000, &(0x7f0000000040)='./file1\x00', &(0x7f00000000c0), 0x0, &(0x7f0000000280)={'trans=fd,', {}, 0x2c, {}, 0x2c, {[{@nodevmap}]}})

21:20:36 executing program 2:
syz_mount_image$vfat(&(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x0, 0x2, &(0x7f0000000180)=[{&(0x7f0000000140)="eb3c906d6b66732e66617400020801000470008400f801", 0x17}, {0x0, 0x0, 0x1000a00}], 0x0, &(0x7f0000000240)=ANY=[])
chdir(&(0x7f0000000040)='./file0\x00')
r0 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x105142, 0x0)
ioctl$FS_IOC_RESVSP(r0, 0x40305828, &(0x7f0000000040)={0x0, 0x0, 0x0, 0x4000006, 0x0, 0x7000000})

21:20:36 executing program 6:
r0 = syz_mount_image$vfat(&(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x0, 0x2, &(0x7f0000000180)=[{&(0x7f0000000140)="eb3c906d6b66732e66617400020801000470008400f801", 0x17}, {0x0, 0x0, 0x1000a00}], 0x0, &(0x7f0000000240)=ANY=[])
chdir(&(0x7f0000000040)='./file0\x00')
openat2(r0, &(0x7f0000000100)='./file0\x00', &(0x7f00000001c0)={0x40000, 0x81}, 0x18)
mount$cgroup(0x0, 0x0, 0x0, 0x0, 0x0)
r1 = syz_io_uring_setup(0x22, &(0x7f0000000680)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000180)=<r2=>0x0, &(0x7f0000002a40)=<r3=>0x0)
r4 = io_uring_register$IORING_REGISTER_PERSONALITY(r1, 0x9, 0x0, 0x0)
r5 = socket$nl_netfilter(0x10, 0x3, 0xc)
syz_io_uring_submit(r2, r3, &(0x7f0000000400)=@IORING_OP_WRITEV={0x2, 0x0, 0x0, @fd=r5, 0x0, 0x0, 0x0, 0x0, 0x0, {0x0, r4}}, 0x0)
r6 = syz_io_uring_setup(0x22, &(0x7f0000000680)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000180), &(0x7f0000002a40))
r7 = io_uring_register$IORING_REGISTER_PERSONALITY(r6, 0x9, 0x0, 0x0)
syz_io_uring_submit(r2, 0x0, &(0x7f0000000440)=@IORING_OP_FSYNC={0x3, 0x2, 0x0, @fd_index=0x9, 0x0, 0x0, 0x0, 0x0, 0x1, {0x0, r7}}, 0x2)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r8 = openat(0xffffffffffffff9c, &(0x7f00000002c0)='./file1\x00', 0x105142, 0x0)
r9 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0)
sendfile(r8, r9, 0x0, 0x100000001)
newfstatat(0xffffffffffffff9c, &(0x7f0000000340)='./file1\x00', &(0x7f0000000380), 0x400)

21:20:36 executing program 3:
openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x105142, 0x0)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x400}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
pipe(&(0x7f00000001c0)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
mount$9p_fd(0x20100000, &(0x7f0000000040)='./file1\x00', &(0x7f00000000c0), 0x0, &(0x7f0000000280)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {}, 0x2c, {[{@nodevmap}]}})
openat(r1, &(0x7f0000000180)='./file1\x00', 0x0, 0x0)

21:20:37 executing program 6:
r0 = syz_mount_image$vfat(&(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x0, 0x2, &(0x7f0000000180)=[{&(0x7f0000000140)="eb3c906d6b66732e66617400020801000470008400f801", 0x17}, {0x0, 0x0, 0x1000a00}], 0x0, &(0x7f0000000240)=ANY=[])
chdir(&(0x7f0000000040)='./file0\x00')
openat2(r0, &(0x7f0000000100)='./file0\x00', &(0x7f00000001c0)={0x40000, 0x81}, 0x18)
mount$cgroup(0x0, 0x0, &(0x7f0000000400), 0x0, 0x0)
r1 = syz_io_uring_setup(0x0, &(0x7f0000000680)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000180)=<r2=>0x0, &(0x7f0000002a40)=<r3=>0x0)
r4 = io_uring_register$IORING_REGISTER_PERSONALITY(r1, 0x9, 0x0, 0x0)
r5 = socket$nl_netfilter(0x10, 0x3, 0xc)
syz_io_uring_submit(r2, r3, &(0x7f0000000400)=@IORING_OP_WRITEV={0x2, 0x0, 0x0, @fd=r5, 0x0, 0x0, 0x0, 0x0, 0x0, {0x0, r4}}, 0x0)
r6 = syz_io_uring_setup(0x22, &(0x7f0000000680)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000180), &(0x7f0000002a40))
r7 = io_uring_register$IORING_REGISTER_PERSONALITY(r6, 0x9, 0x0, 0x0)
syz_io_uring_submit(r2, 0x0, &(0x7f0000000440)=@IORING_OP_FSYNC={0x3, 0x2, 0x0, @fd_index=0x9, 0x0, 0x0, 0x0, 0x0, 0x1, {0x0, r7}}, 0x2)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r8 = openat(0xffffffffffffff9c, &(0x7f00000002c0)='./file1\x00', 0x105142, 0x0)
r9 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0)
sendfile(r8, r9, 0x0, 0x100000001)
newfstatat(0xffffffffffffff9c, &(0x7f0000000340)='./file1\x00', &(0x7f0000000380), 0x400)

[ 2390.626208] 9pnet: Insufficient options for proto=fd
[ 2390.677386] 9pnet: Insufficient options for proto=fd
21:20:54 executing program 7:
io_setup(0x7f, &(0x7f00000002c0)=<r0=>0x0)
io_pgetevents(r0, 0x1, 0x1, &(0x7f0000000000)=[{}], 0x0, 0x0)
io_submit(r0, 0x1, &(0x7f0000000340)=[&(0x7f0000000300)={0x0, 0x0, 0x0, 0x5, 0x0, 0xffffffffffffffff, 0x0}])

21:20:54 executing program 4:
openat$vcs(0xffffffffffffff9c, &(0x7f0000000040), 0x0, 0x0)
openat$sr(0xffffffffffffff9c, &(0x7f00000035c0), 0x0, 0x0)
openat$sr(0xffffffffffffff9c, &(0x7f00000000c0), 0x224400, 0x0)
openat$rtc(0xffffffffffffff9c, &(0x7f0000000200), 0x0, 0x0)
pipe(&(0x7f00000001c0))
open(&(0x7f00000016c0)='./cgroup.net/cgroup.procs\x00', 0x0, 0x0)
pselect6(0x40, &(0x7f0000000180), &(0x7f00000001c0)={0x3fc, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x100000000000000}, 0x0, 0x0, 0x0)

21:20:54 executing program 3:
openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x105142, 0x0)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x400}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
pipe(&(0x7f00000001c0)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
mount$9p_fd(0x8cffffff, &(0x7f0000000040)='./file1\x00', &(0x7f00000000c0), 0x0, &(0x7f0000000280)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {}, 0x2c, {[{@nodevmap}]}})
openat(r1, &(0x7f0000000180)='./file1\x00', 0x0, 0x0)

21:20:54 executing program 2:
syz_mount_image$vfat(&(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x0, 0x2, &(0x7f0000000180)=[{&(0x7f0000000140)="eb3c906d6b66732e66617400020801000470008400f801", 0x17}, {0x0, 0x0, 0x1000a00}], 0x0, &(0x7f0000000240)=ANY=[])
chdir(&(0x7f0000000040)='./file0\x00')
r0 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x105142, 0x0)
ioctl$FS_IOC_RESVSP(r0, 0x40305828, &(0x7f0000000040)={0x0, 0x0, 0x0, 0x4000006, 0x0, 0x9000000})

21:20:54 executing program 1:
openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x105142, 0x0)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
pipe(&(0x7f00000001c0))
mount$9p_fd(0x2000000, &(0x7f0000000040)='./file1\x00', &(0x7f00000000c0), 0x0, &(0x7f0000000280)={'trans=fd,', {}, 0x2c, {}, 0x2c, {[{@nodevmap}]}})

21:20:54 executing program 6:
r0 = syz_mount_image$vfat(&(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x0, 0x2, &(0x7f0000000180)=[{&(0x7f0000000140)="eb3c906d6b66732e66617400020801000470008400f801", 0x17}, {0x0, 0x0, 0x1000a00}], 0x0, &(0x7f0000000240)=ANY=[])
chdir(&(0x7f0000000040)='./file0\x00')
openat2(r0, &(0x7f0000000100)='./file0\x00', &(0x7f00000001c0)={0x40000, 0x81}, 0x18)
mount$cgroup(0x0, 0x0, &(0x7f0000000400), 0x0, 0x0)
r1 = syz_io_uring_setup(0x0, &(0x7f0000000680)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000180)=<r2=>0x0, &(0x7f0000002a40)=<r3=>0x0)
r4 = io_uring_register$IORING_REGISTER_PERSONALITY(r1, 0x9, 0x0, 0x0)
r5 = socket$nl_netfilter(0x10, 0x3, 0xc)
syz_io_uring_submit(r2, r3, &(0x7f0000000400)=@IORING_OP_WRITEV={0x2, 0x0, 0x0, @fd=r5, 0x0, 0x0, 0x0, 0x0, 0x0, {0x0, r4}}, 0x0)
r6 = syz_io_uring_setup(0x22, &(0x7f0000000680)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000180), &(0x7f0000002a40))
r7 = io_uring_register$IORING_REGISTER_PERSONALITY(r6, 0x9, 0x0, 0x0)
syz_io_uring_submit(r2, 0x0, &(0x7f0000000440)=@IORING_OP_FSYNC={0x3, 0x2, 0x0, @fd_index=0x9, 0x0, 0x0, 0x0, 0x0, 0x1, {0x0, r7}}, 0x2)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r8 = openat(0xffffffffffffff9c, &(0x7f00000002c0)='./file1\x00', 0x105142, 0x0)
r9 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0)
sendfile(r8, r9, 0x0, 0x100000001)
newfstatat(0xffffffffffffff9c, &(0x7f0000000340)='./file1\x00', &(0x7f0000000380), 0x400)

21:20:54 executing program 5:
openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x105142, 0x0)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
pipe(&(0x7f00000001c0)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
mount$9p_fd(0x0, &(0x7f0000000040)='./file1\x00', &(0x7f00000000c0), 0x0, &(0x7f0000000280)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}}) (fail_nth: 45)
openat(0xffffffffffffffff, 0x0, 0x0, 0x0)

21:20:54 executing program 0:
syz_mount_image$vfat(&(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x0, 0x2, &(0x7f0000000180)=[{&(0x7f0000000140)="eb3c906d6b66732e66617400020801000470008400f801", 0x17}, {0x0, 0x0, 0x1000a00}], 0x0, &(0x7f0000000240)=ANY=[])
chdir(&(0x7f0000000040)='./file0\x00')
mount$cgroup(0x0, 0x0, &(0x7f0000000400), 0x0, 0x0)
r0 = syz_io_uring_setup(0x22, &(0x7f0000000680)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000180)=<r1=>0x0, &(0x7f0000002a40)=<r2=>0x0)
r3 = io_uring_register$IORING_REGISTER_PERSONALITY(r0, 0x9, 0x0, 0x0)
r4 = socket$nl_netfilter(0x10, 0x3, 0xc)
syz_io_uring_submit(r1, r2, &(0x7f0000000400)=@IORING_OP_WRITEV={0x2, 0x0, 0x0, @fd=r4, 0x0, 0x0, 0x0, 0x0, 0x0, {0x0, r3}}, 0x0)
r5 = syz_io_uring_setup(0x0, &(0x7f0000000680)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000180), &(0x7f0000002a40))
r6 = io_uring_register$IORING_REGISTER_PERSONALITY(r5, 0x9, 0x0, 0x0)
syz_io_uring_submit(r1, 0x0, &(0x7f0000000440)=@IORING_OP_FSYNC={0x3, 0x2, 0x0, @fd_index=0x9, 0x0, 0x0, 0x0, 0x0, 0x1, {0x0, r6}}, 0x2)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r7 = openat(0xffffffffffffff9c, &(0x7f00000002c0)='./file1\x00', 0x105142, 0x0)
r8 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0)
mount(&(0x7f0000000200)=ANY=[@ANYBLOB="2f6f651317868af191bdb2"], &(0x7f0000000240)='./file0\x00', &(0x7f0000000280)='nfsd\x00', 0x800000, &(0x7f0000000300)='cgroup\x00')
sendfile(r7, r8, 0x0, 0x100000001)
newfstatat(0xffffffffffffff9c, &(0x7f0000000340)='./file1\x00', &(0x7f0000000380), 0x400)

[ 2408.372578] FAULT_INJECTION: forcing a failure.
[ 2408.372578] name failslab, interval 1, probability 0, space 0, times 0
[ 2408.374848] CPU: 1 PID: 20625 Comm: syz-executor.5 Not tainted 5.10.172 #1
[ 2408.376233] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 2408.377926] Call Trace:
[ 2408.378469]  dump_stack+0x107/0x167
[ 2408.379211]  should_fail.cold+0x5/0xa
[ 2408.379986]  ? create_object.isra.0+0x3a/0xa20
[ 2408.380929]  should_failslab+0x5/0x20
[ 2408.381696]  kmem_cache_alloc+0x5b/0x360
[ 2408.382531]  create_object.isra.0+0x3a/0xa20
[ 2408.383418]  ? __kasan_kmalloc.constprop.0+0xc9/0xd0
[ 2408.384453]  kmem_cache_alloc+0x159/0x360
[ 2408.385298]  radix_tree_node_alloc.constprop.0+0x1e3/0x300
[ 2408.386439]  idr_get_free+0x4b5/0x8f0
[ 2408.387219]  idr_alloc_u32+0x170/0x2d0
[ 2408.388009]  ? __fprop_inc_percpu_max+0x130/0x130
[ 2408.389021]  ? p9_client_prepare_req.part.0+0x20a/0xb30
[ 2408.390109]  ? lock_release+0x6b0/0x6b0
[ 2408.390913]  idr_alloc+0xc2/0x130
[ 2408.391621]  ? idr_alloc_u32+0x2d0/0x2d0
[ 2408.392447]  ? rwlock_bug.part.0+0x90/0x90
[ 2408.393302]  p9_client_prepare_req.part.0+0x625/0xb30
[ 2408.394361]  p9_client_rpc+0x220/0x1270
[ 2408.395149]  ? lockdep_hardirqs_on_prepare+0x277/0x3e0
[ 2408.396234]  ? p9_client_prepare_req.part.0+0xb30/0xb30
[ 2408.397331]  ? pipe_poll+0x21b/0x7f0
[ 2408.398094]  ? p9_fd_close+0x4a0/0x4a0
[ 2408.398893]  ? anon_pipe_buf_release+0x280/0x280
[ 2408.399853]  ? p9_fd_poll+0x1e0/0x2c0
[ 2408.400651]  ? p9_fd_create+0x357/0x4a0
[ 2408.401453]  ? p9_conn_create+0x510/0x510
[ 2408.402282]  ? p9_client_create+0x798/0x1090
[ 2408.403160]  ? kfree+0xd7/0x390
[ 2408.403822]  ? do_raw_spin_unlock+0x4f/0x220
[ 2408.404739]  p9_client_create+0xa76/0x1090
[ 2408.405604]  ? p9_client_flush+0x430/0x430
[ 2408.406464]  ? lockdep_init_map_type+0x2c7/0x780
[ 2408.407411]  ? rcu_read_lock_sched_held+0x3e/0x80
[ 2408.408408]  ? __raw_spin_lock_init+0x36/0x110
[ 2408.409344]  v9fs_session_init+0x1dd/0x16a0
[ 2408.410211]  ? irqentry_enter+0x26/0x60
[ 2408.411034]  ? asm_sysvec_apic_timer_interrupt+0x12/0x20
[ 2408.412137]  ? trace_hardirqs_on+0x5b/0x180
[ 2408.413021]  ? v9fs_show_options+0x690/0x690
[ 2408.413934]  ? kasan_unpoison_shadow+0x33/0x50
[ 2408.414853]  ? __kasan_kmalloc.constprop.0+0xc9/0xd0
[ 2408.415895]  v9fs_mount+0x79/0x8f0
[ 2408.416641]  ? v9fs_write_inode+0x60/0x60
[ 2408.417484]  legacy_get_tree+0x105/0x220
[ 2408.418320]  vfs_get_tree+0x8e/0x300
[ 2408.419078]  path_mount+0x13be/0x20b0
[ 2408.419844]  ? getname_flags.part.0+0x107/0x4f0
[ 2408.420797]  ? getname_flags.part.0+0x115/0x4f0
[ 2408.421740]  ? finish_automount+0xa40/0xa40
[ 2408.422621]  ? getname_flags.part.0+0x1dd/0x4f0
[ 2408.423553]  ? _copy_from_user+0xfb/0x1b0
[ 2408.424430]  __x64_sys_mount+0x282/0x300
[ 2408.425251]  ? copy_mnt_ns+0xa00/0xa00
[ 2408.426045]  ? rcu_read_lock_sched_held+0x3e/0x80
[ 2408.427021]  do_syscall_64+0x33/0x40
[ 2408.427777]  entry_SYSCALL_64_after_hwframe+0x61/0xc6
[ 2408.428823] RIP: 0033:0x7f38308e8b19
[ 2408.429576] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 2408.433283] RSP: 002b:00007f382de5e188 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5
[ 2408.434825] RAX: ffffffffffffffda RBX: 00007f38309fbf60 RCX: 00007f38308e8b19
[ 2408.436274] RDX: 00000000200000c0 RSI: 0000000020000040 RDI: 0000000000000000
[ 2408.437730] RBP: 00007f382de5e1d0 R08: 0000000020000280 R09: 0000000000000000
[ 2408.439182] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[ 2408.440641] R13: 00007ffca2bf07df R14: 00007f382de5e300 R15: 0000000000022000
21:20:54 executing program 3:
openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x105142, 0x0)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x400}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
pipe(&(0x7f00000001c0)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
mount$9p_fd(0xc0ed0000, &(0x7f0000000040)='./file1\x00', &(0x7f00000000c0), 0x0, &(0x7f0000000280)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {}, 0x2c, {[{@nodevmap}]}})
openat(r1, &(0x7f0000000180)='./file1\x00', 0x0, 0x0)

21:20:54 executing program 1:
openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x105142, 0x0)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
pipe(&(0x7f00000001c0))
mount$9p_fd(0x3000000, &(0x7f0000000040)='./file1\x00', &(0x7f00000000c0), 0x0, &(0x7f0000000280)={'trans=fd,', {}, 0x2c, {}, 0x2c, {[{@nodevmap}]}})

21:20:55 executing program 2:
syz_mount_image$vfat(&(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x0, 0x2, &(0x7f0000000180)=[{&(0x7f0000000140)="eb3c906d6b66732e66617400020801000470008400f801", 0x17}, {0x0, 0x0, 0x1000a00}], 0x0, &(0x7f0000000240)=ANY=[])
chdir(&(0x7f0000000040)='./file0\x00')
r0 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x105142, 0x0)
ioctl$FS_IOC_RESVSP(r0, 0x40305828, &(0x7f0000000040)={0x0, 0x0, 0x0, 0x4000006, 0x0, 0xa000000})

21:20:55 executing program 4:
openat$vcs(0xffffffffffffff9c, &(0x7f0000000040), 0x0, 0x0)
openat$sr(0xffffffffffffff9c, &(0x7f00000035c0), 0x0, 0x0)
openat$sr(0xffffffffffffff9c, &(0x7f00000000c0), 0x224400, 0x0)
openat$rtc(0xffffffffffffff9c, &(0x7f0000000200), 0x0, 0x0)
pipe(&(0x7f00000001c0))
open(&(0x7f00000016c0)='./cgroup.net/cgroup.procs\x00', 0x0, 0x0)
pselect6(0x40, &(0x7f0000000180), &(0x7f00000001c0)={0x3fc, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x800000000000000}, 0x0, 0x0, 0x0)

21:20:55 executing program 6:
r0 = syz_mount_image$vfat(&(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x0, 0x2, &(0x7f0000000180)=[{&(0x7f0000000140)="eb3c906d6b66732e66617400020801000470008400f801", 0x17}, {0x0, 0x0, 0x1000a00}], 0x0, &(0x7f0000000240)=ANY=[])
chdir(&(0x7f0000000040)='./file0\x00')
openat2(r0, &(0x7f0000000100)='./file0\x00', &(0x7f00000001c0)={0x40000, 0x81}, 0x18)
mount$cgroup(0x0, 0x0, &(0x7f0000000400), 0x0, 0x0)
r1 = syz_io_uring_setup(0x0, &(0x7f0000000680)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000180)=<r2=>0x0, &(0x7f0000002a40)=<r3=>0x0)
r4 = io_uring_register$IORING_REGISTER_PERSONALITY(r1, 0x9, 0x0, 0x0)
r5 = socket$nl_netfilter(0x10, 0x3, 0xc)
syz_io_uring_submit(r2, r3, &(0x7f0000000400)=@IORING_OP_WRITEV={0x2, 0x0, 0x0, @fd=r5, 0x0, 0x0, 0x0, 0x0, 0x0, {0x0, r4}}, 0x0)
r6 = syz_io_uring_setup(0x22, &(0x7f0000000680)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000180), &(0x7f0000002a40))
r7 = io_uring_register$IORING_REGISTER_PERSONALITY(r6, 0x9, 0x0, 0x0)
syz_io_uring_submit(r2, 0x0, &(0x7f0000000440)=@IORING_OP_FSYNC={0x3, 0x2, 0x0, @fd_index=0x9, 0x0, 0x0, 0x0, 0x0, 0x1, {0x0, r7}}, 0x2)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r8 = openat(0xffffffffffffff9c, &(0x7f00000002c0)='./file1\x00', 0x105142, 0x0)
r9 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0)
sendfile(r8, r9, 0x0, 0x100000001)
newfstatat(0xffffffffffffff9c, &(0x7f0000000340)='./file1\x00', &(0x7f0000000380), 0x400)

21:20:55 executing program 3:
openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x105142, 0x0)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x400}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
pipe(&(0x7f00000001c0)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
mount$9p_fd(0xf6ffffff, &(0x7f0000000040)='./file1\x00', &(0x7f00000000c0), 0x0, &(0x7f0000000280)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {}, 0x2c, {[{@nodevmap}]}})
openat(r1, &(0x7f0000000180)='./file1\x00', 0x0, 0x0)

21:21:13 executing program 7:
r0 = perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0)
io_setup(0x7f, &(0x7f00000002c0)=<r1=>0x0)
io_pgetevents(r1, 0x1, 0x1, &(0x7f0000000000)=[{}], 0x0, 0x0)
io_submit(r1, 0x1, &(0x7f0000000340)=[&(0x7f0000000300)={0x0, 0x0, 0x0, 0x5, 0x0, r0, 0x0}])

21:21:13 executing program 2:
syz_mount_image$vfat(&(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x0, 0x2, &(0x7f0000000180)=[{&(0x7f0000000140)="eb3c906d6b66732e66617400020801000470008400f801", 0x17}, {0x0, 0x0, 0x1000a00}], 0x0, &(0x7f0000000240)=ANY=[])
chdir(&(0x7f0000000040)='./file0\x00')
r0 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x105142, 0x0)
ioctl$FS_IOC_RESVSP(r0, 0x40305828, &(0x7f0000000040)={0x0, 0x0, 0x0, 0x4000006, 0x0, 0xd000000})

21:21:13 executing program 6:
r0 = syz_mount_image$vfat(&(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x0, 0x2, &(0x7f0000000180)=[{&(0x7f0000000140)="eb3c906d6b66732e66617400020801000470008400f801", 0x17}, {0x0, 0x0, 0x1000a00}], 0x0, &(0x7f0000000240)=ANY=[])
chdir(&(0x7f0000000040)='./file0\x00')
openat2(r0, &(0x7f0000000100)='./file0\x00', &(0x7f00000001c0)={0x40000, 0x81}, 0x18)
mount$cgroup(0x0, 0x0, &(0x7f0000000400), 0x0, 0x0)
r1 = syz_io_uring_setup(0x22, 0x0, &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000180)=<r2=>0x0, &(0x7f0000002a40)=<r3=>0x0)
r4 = io_uring_register$IORING_REGISTER_PERSONALITY(r1, 0x9, 0x0, 0x0)
r5 = socket$nl_netfilter(0x10, 0x3, 0xc)
syz_io_uring_submit(r2, r3, &(0x7f0000000400)=@IORING_OP_WRITEV={0x2, 0x0, 0x0, @fd=r5, 0x0, 0x0, 0x0, 0x0, 0x0, {0x0, r4}}, 0x0)
r6 = syz_io_uring_setup(0x22, &(0x7f0000000680)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000180), &(0x7f0000002a40))
r7 = io_uring_register$IORING_REGISTER_PERSONALITY(r6, 0x9, 0x0, 0x0)
syz_io_uring_submit(r2, 0x0, &(0x7f0000000440)=@IORING_OP_FSYNC={0x3, 0x2, 0x0, @fd_index=0x9, 0x0, 0x0, 0x0, 0x0, 0x1, {0x0, r7}}, 0x2)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r8 = openat(0xffffffffffffff9c, &(0x7f00000002c0)='./file1\x00', 0x105142, 0x0)
r9 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0)
sendfile(r8, r9, 0x0, 0x100000001)
newfstatat(0xffffffffffffff9c, &(0x7f0000000340)='./file1\x00', &(0x7f0000000380), 0x400)

21:21:13 executing program 3:
openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x105142, 0x0)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x400}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
pipe(&(0x7f00000001c0)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
mount$9p_fd(0xffffff8c, &(0x7f0000000040)='./file1\x00', &(0x7f00000000c0), 0x0, &(0x7f0000000280)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {}, 0x2c, {[{@nodevmap}]}})
openat(r1, &(0x7f0000000180)='./file1\x00', 0x0, 0x0)

21:21:13 executing program 4:
openat$vcs(0xffffffffffffff9c, &(0x7f0000000040), 0x0, 0x0)
openat$sr(0xffffffffffffff9c, &(0x7f00000035c0), 0x0, 0x0)
openat$sr(0xffffffffffffff9c, &(0x7f00000000c0), 0x224400, 0x0)
openat$rtc(0xffffffffffffff9c, &(0x7f0000000200), 0x0, 0x0)
pipe(&(0x7f00000001c0))
open(&(0x7f00000016c0)='./cgroup.net/cgroup.procs\x00', 0x0, 0x0)
pselect6(0x40, &(0x7f0000000180), &(0x7f00000001c0)={0x3fc, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xa00000000000000}, 0x0, 0x0, 0x0)

21:21:13 executing program 1:
openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x105142, 0x0)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
pipe(&(0x7f00000001c0))
mount$9p_fd(0x4000000, &(0x7f0000000040)='./file1\x00', &(0x7f00000000c0), 0x0, &(0x7f0000000280)={'trans=fd,', {}, 0x2c, {}, 0x2c, {[{@nodevmap}]}})

21:21:13 executing program 0:
syz_mount_image$vfat(&(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x0, 0x2, &(0x7f0000000180)=[{&(0x7f0000000140)="eb3c906d6b66732e66617400020801000470008400f801", 0x17}, {0x0, 0x0, 0x1000a00}], 0x0, &(0x7f0000000240)=ANY=[])
chdir(&(0x7f0000000040)='./file0\x00')
mount$cgroup(0x0, 0x0, &(0x7f0000000400), 0x0, 0x0)
r0 = syz_io_uring_setup(0x22, &(0x7f0000000680)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000180)=<r1=>0x0, &(0x7f0000002a40)=<r2=>0x0)
r3 = io_uring_register$IORING_REGISTER_PERSONALITY(r0, 0x9, 0x0, 0x0)
r4 = socket$nl_netfilter(0x10, 0x3, 0xc)
syz_io_uring_submit(r1, r2, &(0x7f0000000400)=@IORING_OP_WRITEV={0x2, 0x0, 0x0, @fd=r4, 0x0, 0x0, 0x0, 0x0, 0x0, {0x0, r3}}, 0x0)
r5 = syz_io_uring_setup(0x0, &(0x7f0000000680)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000180), &(0x7f0000002a40))
r6 = io_uring_register$IORING_REGISTER_PERSONALITY(r5, 0x9, 0x0, 0x0)
syz_io_uring_submit(r1, 0x0, &(0x7f0000000440)=@IORING_OP_FSYNC={0x3, 0x2, 0x0, @fd_index=0x9, 0x0, 0x0, 0x0, 0x0, 0x1, {0x0, r6}}, 0x2)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r7 = openat(0xffffffffffffff9c, &(0x7f00000002c0)='./file1\x00', 0x105142, 0x0)
r8 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0)
mount(&(0x7f0000000200)=ANY=[@ANYBLOB="2f6f651317868af191bdb2"], &(0x7f0000000240)='./file0\x00', &(0x7f0000000280)='nfsd\x00', 0x800000, &(0x7f0000000300)='cgroup\x00')
sendfile(r7, r8, 0x0, 0x100000001)
newfstatat(0xffffffffffffff9c, &(0x7f0000000340)='./file1\x00', &(0x7f0000000380), 0x400)

21:21:13 executing program 5:
openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x105142, 0x0)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
pipe(&(0x7f00000001c0)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
mount$9p_fd(0x0, &(0x7f0000000040)='./file1\x00', &(0x7f00000000c0), 0x0, &(0x7f0000000280)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}}) (fail_nth: 46)
openat(0xffffffffffffffff, 0x0, 0x0, 0x0)

[ 2426.697702] FAULT_INJECTION: forcing a failure.
[ 2426.697702] name failslab, interval 1, probability 0, space 0, times 0
[ 2426.700531] CPU: 1 PID: 20870 Comm: syz-executor.5 Not tainted 5.10.172 #1
[ 2426.702053] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 2426.703646] Call Trace:
[ 2426.704185]  dump_stack+0x107/0x167
[ 2426.704897]  should_fail.cold+0x5/0xa
[ 2426.705707]  ? p9pdu_readf+0xb23/0x1ca0
[ 2426.706525]  should_failslab+0x5/0x20
[ 2426.707320]  __kmalloc+0x72/0x3f0
[ 2426.708092]  p9pdu_readf+0xb23/0x1ca0
[ 2426.708889]  ? pipe_poll+0x21b/0x7f0
[ 2426.709633]  ? p9pdu_writef+0x100/0x100
[ 2426.710449]  ? p9_fd_poll+0x1e0/0x2c0
[ 2426.711218]  ? p9_fd_create+0x357/0x4a0
[ 2426.712068]  ? p9_conn_create+0x510/0x510
[ 2426.712930]  ? p9_client_create+0x798/0x1090
[ 2426.713833]  ? kfree+0xd7/0x390
[ 2426.714499]  ? do_raw_spin_unlock+0x4f/0x220
[ 2426.715414]  p9_client_create+0xaee/0x1090
[ 2426.716339]  ? p9_client_flush+0x430/0x430
[ 2426.717286]  ? lockdep_init_map_type+0x2c7/0x780
[ 2426.718235]  ? rcu_read_lock_sched_held+0x3e/0x80
[ 2426.719212]  ? __raw_spin_lock_init+0x36/0x110
[ 2426.720130]  v9fs_session_init+0x1dd/0x16a0
[ 2426.721019]  ? kmem_cache_alloc_trace+0x151/0x360
[ 2426.722004]  ? v9fs_show_options+0x690/0x690
[ 2426.722950]  ? kasan_unpoison_shadow+0x33/0x50
[ 2426.723886]  ? __kasan_kmalloc.constprop.0+0xc9/0xd0
[ 2426.724932]  v9fs_mount+0x79/0x8f0
[ 2426.725676]  ? v9fs_write_inode+0x60/0x60
[ 2426.726609]  legacy_get_tree+0x105/0x220
[ 2426.727451]  vfs_get_tree+0x8e/0x300
[ 2426.728251]  path_mount+0x13be/0x20b0
[ 2426.729046]  ? getname_flags.part.0+0xce/0x4f0
[ 2426.729980]  ? finish_automount+0xa40/0xa40
[ 2426.730857]  ? getname_flags.part.0+0x1dd/0x4f0
[ 2426.731809]  ? _copy_from_user+0xfb/0x1b0
[ 2426.732671]  __x64_sys_mount+0x282/0x300
[ 2426.733484]  ? copy_mnt_ns+0xa00/0xa00
[ 2426.734320]  ? rcu_read_lock_sched_held+0x3e/0x80
[ 2426.735310]  do_syscall_64+0x33/0x40
[ 2426.736076]  entry_SYSCALL_64_after_hwframe+0x61/0xc6
[ 2426.737145] RIP: 0033:0x7f38308e8b19
[ 2426.737903] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 2426.741822] RSP: 002b:00007f382de5e188 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5
[ 2426.743385] RAX: ffffffffffffffda RBX: 00007f38309fbf60 RCX: 00007f38308e8b19
[ 2426.744857] RDX: 00000000200000c0 RSI: 0000000020000040 RDI: 0000000000000000
[ 2426.746313] RBP: 00007f382de5e1d0 R08: 0000000020000280 R09: 0000000000000000
[ 2426.747763] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[ 2426.749377] R13: 00007ffca2bf07df R14: 00007f382de5e300 R15: 0000000000022000
21:21:13 executing program 3:
openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x105142, 0x0)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x400}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
pipe(&(0x7f00000001c0)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
mount$9p_fd(0xfffffff6, &(0x7f0000000040)='./file1\x00', &(0x7f00000000c0), 0x0, &(0x7f0000000280)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {}, 0x2c, {[{@nodevmap}]}})
openat(r1, &(0x7f0000000180)='./file1\x00', 0x0, 0x0)

21:21:13 executing program 5:
openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x105142, 0x0)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
pipe(&(0x7f00000001c0)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
mount$9p_fd(0x0, &(0x7f0000000040)='./file1\x00', &(0x7f00000000c0), 0x0, &(0x7f0000000280)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}}) (fail_nth: 47)
openat(0xffffffffffffffff, 0x0, 0x0, 0x0)

21:21:13 executing program 4:
openat$vcs(0xffffffffffffff9c, &(0x7f0000000040), 0x0, 0x0)
openat$sr(0xffffffffffffff9c, &(0x7f00000035c0), 0x0, 0x0)
openat$sr(0xffffffffffffff9c, &(0x7f00000000c0), 0x224400, 0x0)
openat$rtc(0xffffffffffffff9c, &(0x7f0000000200), 0x0, 0x0)
pipe(&(0x7f00000001c0))
open(&(0x7f00000016c0)='./cgroup.net/cgroup.procs\x00', 0x0, 0x0)
pselect6(0x40, &(0x7f0000000180), &(0x7f00000001c0)={0x3fc, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1000000000000000}, 0x0, 0x0, 0x0)

21:21:13 executing program 2:
syz_mount_image$vfat(&(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x0, 0x2, &(0x7f0000000180)=[{&(0x7f0000000140)="eb3c906d6b66732e66617400020801000470008400f801", 0x17}, {0x0, 0x0, 0x1000a00}], 0x0, &(0x7f0000000240)=ANY=[])
chdir(&(0x7f0000000040)='./file0\x00')
r0 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x105142, 0x0)
ioctl$FS_IOC_RESVSP(r0, 0x40305828, &(0x7f0000000040)={0x0, 0x0, 0x0, 0x4000006, 0x0, 0xf000000})

21:21:13 executing program 3:
openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x105142, 0x0)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x400}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
pipe(&(0x7f00000001c0)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
mount$9p_fd(0xedc000000000, &(0x7f0000000040)='./file1\x00', &(0x7f00000000c0), 0x0, &(0x7f0000000280)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {}, 0x2c, {[{@nodevmap}]}})
openat(r1, &(0x7f0000000180)='./file1\x00', 0x0, 0x0)

[ 2427.026396] FAULT_INJECTION: forcing a failure.
[ 2427.026396] name failslab, interval 1, probability 0, space 0, times 0
[ 2427.029207] CPU: 1 PID: 20987 Comm: syz-executor.5 Not tainted 5.10.172 #1
[ 2427.030558] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 2427.032114] Call Trace:
[ 2427.032663]  dump_stack+0x107/0x167
[ 2427.033368]  should_fail.cold+0x5/0xa
[ 2427.034100]  ? create_object.isra.0+0x3a/0xa20
[ 2427.034973]  should_failslab+0x5/0x20
[ 2427.035821]  kmem_cache_alloc+0x5b/0x360
[ 2427.036668]  create_object.isra.0+0x3a/0xa20
[ 2427.037559]  ? __kasan_kmalloc.constprop.0+0xc9/0xd0
[ 2427.038642]  __kmalloc+0x16e/0x3f0
[ 2427.039343]  p9pdu_readf+0xb23/0x1ca0
[ 2427.040088]  ? irqentry_enter+0x26/0x60
[ 2427.040890]  ? p9pdu_writef+0x100/0x100
[ 2427.041630]  ? entry_SYSCALL_64+0x8/0x29
[ 2427.042427]  ? trace_hardirqs_on+0x5b/0x180
[ 2427.043291]  ? asm_sysvec_apic_timer_interrupt+0x12/0x20
[ 2427.044422]  ? p9_client_rpc+0x1f1/0x1270
[ 2427.045252]  p9_client_create+0xaee/0x1090
[ 2427.046111]  ? p9_client_flush+0x430/0x430
[ 2427.047019]  ? lockdep_init_map_type+0x2c7/0x780
[ 2427.047951]  ? rcu_read_lock_sched_held+0x3e/0x80
[ 2427.048964]  ? __raw_spin_lock_init+0x36/0x110
[ 2427.049900]  v9fs_session_init+0x1dd/0x16a0
[ 2427.050757]  ? kmem_cache_alloc_trace+0x151/0x360
[ 2427.051756]  ? v9fs_show_options+0x690/0x690
[ 2427.052695]  ? kasan_unpoison_shadow+0x33/0x50
[ 2427.053616]  ? __kasan_kmalloc.constprop.0+0xc9/0xd0
[ 2427.054679]  v9fs_mount+0x79/0x8f0
[ 2427.055383]  ? v9fs_write_inode+0x60/0x60
[ 2427.056183]  legacy_get_tree+0x105/0x220
[ 2427.057063]  vfs_get_tree+0x8e/0x300
[ 2427.057801]  path_mount+0x13be/0x20b0
[ 2427.058544]  ? strncpy_from_user+0x9e/0x470
[ 2427.059443]  ? finish_automount+0xa40/0xa40
[ 2427.060342]  ? getname_flags.part.0+0x1dd/0x4f0
[ 2427.061283]  ? _copy_from_user+0xfb/0x1b0
[ 2427.062181]  __x64_sys_mount+0x282/0x300
[ 2427.062969]  ? copy_mnt_ns+0xa00/0xa00
[ 2427.063738]  ? rcu_read_lock_sched_held+0x3e/0x80
[ 2427.064738]  do_syscall_64+0x33/0x40
[ 2427.065463]  entry_SYSCALL_64_after_hwframe+0x61/0xc6
[ 2427.066518] RIP: 0033:0x7f38308e8b19
[ 2427.067289] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 2427.071730] RSP: 002b:00007f382de5e188 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5
[ 2427.073713] RAX: ffffffffffffffda RBX: 00007f38309fbf60 RCX: 00007f38308e8b19
[ 2427.075336] RDX: 00000000200000c0 RSI: 0000000020000040 RDI: 0000000000000000
[ 2427.076941] RBP: 00007f382de5e1d0 R08: 0000000020000280 R09: 0000000000000000
[ 2427.078570] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[ 2427.080304] R13: 00007ffca2bf07df R14: 00007f382de5e300 R15: 0000000000022000
21:21:29 executing program 7:
r0 = perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0)
io_setup(0x7f, &(0x7f00000002c0)=<r1=>0x0)
io_pgetevents(r1, 0x1, 0x1, &(0x7f0000000000)=[{}], 0x0, 0x0)
io_submit(r1, 0x1, &(0x7f0000000340)=[&(0x7f0000000300)={0x0, 0x0, 0x0, 0x5, 0x0, r0, 0x0}])

21:21:29 executing program 3:
openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x105142, 0x0)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x400}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
pipe(&(0x7f00000001c0)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
mount$9p_fd(0x8000000000000, &(0x7f0000000040)='./file1\x00', &(0x7f00000000c0), 0x0, &(0x7f0000000280)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {}, 0x2c, {[{@nodevmap}]}})
openat(r1, &(0x7f0000000180)='./file1\x00', 0x0, 0x0)

21:21:29 executing program 5:
openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x105142, 0x0)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
pipe(&(0x7f00000001c0)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
mount$9p_fd(0x0, &(0x7f0000000040)='./file1\x00', &(0x7f00000000c0), 0x0, &(0x7f0000000280)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}}) (fail_nth: 48)
openat(0xffffffffffffffff, 0x0, 0x0, 0x0)

21:21:29 executing program 4:
openat$vcs(0xffffffffffffff9c, &(0x7f0000000040), 0x0, 0x0)
r0 = openat$sr(0xffffffffffffff9c, &(0x7f00000035c0), 0x0, 0x0)
openat$sr(0xffffffffffffff9c, &(0x7f00000000c0), 0x224400, 0x0)
openat$rtc(0xffffffffffffff9c, &(0x7f0000000200), 0x0, 0x0)
pipe(&(0x7f00000001c0))
open(&(0x7f0000000080)='./cgroup.net/cgroup.procs\x00', 0x0, 0x0)
pselect6(0x40, &(0x7f0000000180)={0x0, 0x0, 0x0, 0x0, 0x0, 0x2, 0x0, 0x8000}, &(0x7f00000001c0)={0x3fc, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff}, 0x0, 0x0, 0x0)
ioctl$RTC_ALM_SET(r0, 0x40247007, &(0x7f0000000000)={0x39, 0x1b, 0x4, 0x1, 0x6, 0xfffffff9, 0x6, 0x39, 0xffffffffffffffff})

21:21:29 executing program 1:
openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x105142, 0x0)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
pipe(&(0x7f00000001c0))
mount$9p_fd(0x5000000, &(0x7f0000000040)='./file1\x00', &(0x7f00000000c0), 0x0, &(0x7f0000000280)={'trans=fd,', {}, 0x2c, {}, 0x2c, {[{@nodevmap}]}})

21:21:29 executing program 2:
syz_mount_image$vfat(&(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x0, 0x2, &(0x7f0000000180)=[{&(0x7f0000000140)="eb3c906d6b66732e66617400020801000470008400f801", 0x17}, {0x0, 0x0, 0x1000a00}], 0x0, &(0x7f0000000240)=ANY=[])
chdir(&(0x7f0000000040)='./file0\x00')
r0 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x105142, 0x0)
ioctl$FS_IOC_RESVSP(r0, 0x40305828, &(0x7f0000000040)={0x0, 0x0, 0x0, 0x4000006, 0x0, 0xfffffff})

21:21:29 executing program 6:
r0 = syz_mount_image$vfat(&(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x0, 0x2, &(0x7f0000000180)=[{&(0x7f0000000140)="eb3c906d6b66732e66617400020801000470008400f801", 0x17}, {0x0, 0x0, 0x1000a00}], 0x0, &(0x7f0000000240)=ANY=[])
chdir(&(0x7f0000000040)='./file0\x00')
openat2(r0, &(0x7f0000000100)='./file0\x00', &(0x7f00000001c0)={0x40000, 0x81}, 0x18)
mount$cgroup(0x0, 0x0, &(0x7f0000000400), 0x0, 0x0)
r1 = syz_io_uring_setup(0x22, 0x0, &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000180)=<r2=>0x0, &(0x7f0000002a40)=<r3=>0x0)
r4 = io_uring_register$IORING_REGISTER_PERSONALITY(r1, 0x9, 0x0, 0x0)
r5 = socket$nl_netfilter(0x10, 0x3, 0xc)
syz_io_uring_submit(r2, r3, &(0x7f0000000400)=@IORING_OP_WRITEV={0x2, 0x0, 0x0, @fd=r5, 0x0, 0x0, 0x0, 0x0, 0x0, {0x0, r4}}, 0x0)
r6 = syz_io_uring_setup(0x22, &(0x7f0000000680)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000180), &(0x7f0000002a40))
r7 = io_uring_register$IORING_REGISTER_PERSONALITY(r6, 0x9, 0x0, 0x0)
syz_io_uring_submit(r2, 0x0, &(0x7f0000000440)=@IORING_OP_FSYNC={0x3, 0x2, 0x0, @fd_index=0x9, 0x0, 0x0, 0x0, 0x0, 0x1, {0x0, r7}}, 0x2)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r8 = openat(0xffffffffffffff9c, &(0x7f00000002c0)='./file1\x00', 0x105142, 0x0)
r9 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0)
sendfile(r8, r9, 0x0, 0x100000001)
newfstatat(0xffffffffffffff9c, &(0x7f0000000340)='./file1\x00', &(0x7f0000000380), 0x400)

21:21:29 executing program 0:
syz_mount_image$vfat(&(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x0, 0x2, &(0x7f0000000180)=[{&(0x7f0000000140)="eb3c906d6b66732e66617400020801000470008400f801", 0x17}, {0x0, 0x0, 0x1000a00}], 0x0, &(0x7f0000000240)=ANY=[])
chdir(&(0x7f0000000040)='./file0\x00')
mount$cgroup(0x0, 0x0, &(0x7f0000000400), 0x0, 0x0)
r0 = syz_io_uring_setup(0x22, &(0x7f0000000680)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000180)=<r1=>0x0, &(0x7f0000002a40)=<r2=>0x0)
r3 = io_uring_register$IORING_REGISTER_PERSONALITY(r0, 0x9, 0x0, 0x0)
r4 = socket$nl_netfilter(0x10, 0x3, 0xc)
syz_io_uring_submit(r1, r2, &(0x7f0000000400)=@IORING_OP_WRITEV={0x2, 0x0, 0x0, @fd=r4, 0x0, 0x0, 0x0, 0x0, 0x0, {0x0, r3}}, 0x0)
r5 = syz_io_uring_setup(0x22, 0x0, &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000180), &(0x7f0000002a40))
r6 = io_uring_register$IORING_REGISTER_PERSONALITY(r5, 0x9, 0x0, 0x0)
syz_io_uring_submit(r1, 0x0, &(0x7f0000000440)=@IORING_OP_FSYNC={0x3, 0x2, 0x0, @fd_index=0x9, 0x0, 0x0, 0x0, 0x0, 0x1, {0x0, r6}}, 0x2)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r7 = openat(0xffffffffffffff9c, &(0x7f00000002c0)='./file1\x00', 0x105142, 0x0)
r8 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0)
mount(&(0x7f0000000200)=ANY=[@ANYBLOB="2f6f651317868af191bdb2"], &(0x7f0000000240)='./file0\x00', &(0x7f0000000280)='nfsd\x00', 0x800000, &(0x7f0000000300)='cgroup\x00')
sendfile(r7, r8, 0x0, 0x100000001)
newfstatat(0xffffffffffffff9c, &(0x7f0000000340)='./file1\x00', &(0x7f0000000380), 0x400)

[ 2443.479537] FAULT_INJECTION: forcing a failure.
[ 2443.479537] name failslab, interval 1, probability 0, space 0, times 0
[ 2443.481816] CPU: 1 PID: 21022 Comm: syz-executor.5 Not tainted 5.10.172 #1
[ 2443.483210] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 2443.484946] Call Trace:
[ 2443.485494]  dump_stack+0x107/0x167
[ 2443.486256]  should_fail.cold+0x5/0xa
[ 2443.487042]  ? create_object.isra.0+0x3a/0xa20
[ 2443.487964]  should_failslab+0x5/0x20
[ 2443.488738]  kmem_cache_alloc+0x5b/0x360
[ 2443.489569]  create_object.isra.0+0x3a/0xa20
[ 2443.490461]  ? __kasan_kmalloc.constprop.0+0xc9/0xd0
[ 2443.491476]  kmem_cache_alloc+0x159/0x360
[ 2443.492329]  radix_tree_node_alloc.constprop.0+0x1e3/0x300
[ 2443.493474]  idr_get_free+0x4b5/0x8f0
[ 2443.494265]  idr_alloc_u32+0x170/0x2d0
[ 2443.495043]  ? __fprop_inc_percpu_max+0x130/0x130
[ 2443.496022]  ? p9_client_prepare_req.part.0+0x20a/0xb30
[ 2443.497106]  ? lock_release+0x6b0/0x6b0
[ 2443.497921]  idr_alloc+0xc2/0x130
[ 2443.498613]  ? idr_alloc_u32+0x2d0/0x2d0
[ 2443.499436]  ? rwlock_bug.part.0+0x90/0x90
21:21:29 executing program 3:
openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x105142, 0x0)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x400}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
pipe(&(0x7f00000001c0)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
mount$9p_fd(0x100000000000000, &(0x7f0000000040)='./file1\x00', &(0x7f00000000c0), 0x0, &(0x7f0000000280)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {}, 0x2c, {[{@nodevmap}]}})
openat(r1, &(0x7f0000000180)='./file1\x00', 0x0, 0x0)

[ 2443.500467]  p9_client_prepare_req.part.0+0x625/0xb30
[ 2443.501538]  p9_client_rpc+0x220/0x1270
[ 2443.502348]  ? lockdep_hardirqs_on_prepare+0x277/0x3e0
[ 2443.503402]  ? p9_client_prepare_req.part.0+0xb30/0xb30
[ 2443.504482]  ? pipe_poll+0x21b/0x7f0
[ 2443.505234]  ? p9_fd_close+0x4a0/0x4a0
[ 2443.506024]  ? anon_pipe_buf_release+0x280/0x280
[ 2443.506977]  ? p9_fd_poll+0x1e0/0x2c0
[ 2443.507745]  ? p9_fd_create+0x357/0x4a0
[ 2443.508551]  ? p9_conn_create+0x510/0x510
[ 2443.509385]  ? p9_client_create+0x798/0x1090
[ 2443.510274]  ? kfree+0xd7/0x390
[ 2443.510939]  ? do_raw_spin_unlock+0x4f/0x220
[ 2443.511838]  p9_client_create+0xa76/0x1090
[ 2443.512696]  ? p9_client_flush+0x430/0x430
[ 2443.513568]  ? lockdep_init_map_type+0x2c7/0x780
[ 2443.514526]  ? rcu_read_lock_sched_held+0x3e/0x80
[ 2443.515507]  ? __raw_spin_lock_init+0x36/0x110
[ 2443.516438]  v9fs_session_init+0x1dd/0x16a0
[ 2443.517337]  ? kmem_cache_alloc_trace+0x151/0x360
[ 2443.518316]  ? v9fs_show_options+0x690/0x690
[ 2443.519233]  ? kasan_unpoison_shadow+0x33/0x50
[ 2443.520158]  ? __kasan_kmalloc.constprop.0+0xc9/0xd0
[ 2443.521202]  v9fs_mount+0x79/0x8f0
[ 2443.521936]  ? v9fs_write_inode+0x60/0x60
[ 2443.522780]  legacy_get_tree+0x105/0x220
[ 2443.523606]  vfs_get_tree+0x8e/0x300
[ 2443.524367]  path_mount+0x13be/0x20b0
[ 2443.525161]  ? strncpy_from_user+0x9e/0x470
[ 2443.526038]  ? finish_automount+0xa40/0xa40
[ 2443.526921]  ? getname_flags.part.0+0x1dd/0x4f0
[ 2443.527857]  ? _copy_from_user+0xfb/0x1b0
[ 2443.528714]  __x64_sys_mount+0x282/0x300
[ 2443.529569]  ? copy_mnt_ns+0xa00/0xa00
[ 2443.530369]  ? rcu_read_lock_sched_held+0x3e/0x80
[ 2443.531351]  do_syscall_64+0x33/0x40
[ 2443.532112]  entry_SYSCALL_64_after_hwframe+0x61/0xc6
[ 2443.533160] RIP: 0033:0x7f38308e8b19
[ 2443.533917] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 2443.537618] RSP: 002b:00007f382de5e188 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5
[ 2443.539157] RAX: ffffffffffffffda RBX: 00007f38309fbf60 RCX: 00007f38308e8b19
[ 2443.540591] RDX: 00000000200000c0 RSI: 0000000020000040 RDI: 0000000000000000
[ 2443.542044] RBP: 00007f382de5e1d0 R08: 0000000020000280 R09: 0000000000000000
[ 2443.543439] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[ 2443.544896] R13: 00007ffca2bf07df R14: 00007f382de5e300 R15: 0000000000022000
21:21:30 executing program 5:
openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x105142, 0x0)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
pipe(&(0x7f00000001c0)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
mount$9p_fd(0x0, &(0x7f0000000040)='./file1\x00', &(0x7f00000000c0), 0x0, &(0x7f0000000280)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}}) (fail_nth: 49)
openat(0xffffffffffffffff, 0x0, 0x0, 0x0)

[ 2443.693345] FAULT_INJECTION: forcing a failure.
[ 2443.693345] name failslab, interval 1, probability 0, space 0, times 0
[ 2443.695858] CPU: 1 PID: 21114 Comm: syz-executor.5 Not tainted 5.10.172 #1
21:21:30 executing program 3:
openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x105142, 0x0)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x400}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
pipe(&(0x7f00000001c0)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
mount$9p_fd(0x200000000000000, &(0x7f0000000040)='./file1\x00', &(0x7f00000000c0), 0x0, &(0x7f0000000280)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {}, 0x2c, {[{@nodevmap}]}})
openat(r1, &(0x7f0000000180)='./file1\x00', 0x0, 0x0)

[ 2443.697294] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 2443.699197] Call Trace:
[ 2443.699754]  dump_stack+0x107/0x167
[ 2443.700500]  should_fail.cold+0x5/0xa
[ 2443.701290]  ? create_object.isra.0+0x3a/0xa20
[ 2443.702219]  should_failslab+0x5/0x20
[ 2443.702991]  kmem_cache_alloc+0x5b/0x360
[ 2443.703825]  create_object.isra.0+0x3a/0xa20
[ 2443.704707]  ? __kasan_kmalloc.constprop.0+0xc9/0xd0
[ 2443.705738]  __kmalloc+0x16e/0x3f0
[ 2443.706464]  p9pdu_readf+0xb23/0x1ca0
[ 2443.707247]  ? p9pdu_writef+0x100/0x100
[ 2443.708069]  ? lockdep_hardirqs_on_prepare+0x277/0x3e0
[ 2443.709150]  ? asm_sysvec_apic_timer_interrupt+0x12/0x20
[ 2443.710238]  ? trace_hardirqs_on+0x5b/0x180
[ 2443.711111]  ? asm_sysvec_apic_timer_interrupt+0x12/0x20
[ 2443.712216]  p9_client_create+0xaee/0x1090
[ 2443.713104]  ? p9_client_flush+0x430/0x430
[ 2443.713966]  ? lockdep_init_map_type+0x2c7/0x780
[ 2443.714922]  ? rcu_read_lock_sched_held+0x3e/0x80
[ 2443.715896]  ? __raw_spin_lock_init+0x36/0x110
[ 2443.716834]  v9fs_session_init+0x1dd/0x16a0
[ 2443.717717]  ? kmem_cache_alloc_trace+0x151/0x360
[ 2443.718677]  ? v9fs_show_options+0x690/0x690
[ 2443.719565]  ? kasan_unpoison_shadow+0x33/0x50
[ 2443.720503]  ? __kasan_kmalloc.constprop.0+0xc9/0xd0
[ 2443.721554]  v9fs_mount+0x79/0x8f0
[ 2443.722285]  ? v9fs_write_inode+0x60/0x60
[ 2443.723122]  legacy_get_tree+0x105/0x220
[ 2443.723950]  vfs_get_tree+0x8e/0x300
[ 2443.724712]  path_mount+0x13be/0x20b0
[ 2443.725502]  ? strncpy_from_user+0x9e/0x470
[ 2443.726381]  ? finish_automount+0xa40/0xa40
[ 2443.727254]  ? getname_flags.part.0+0x1dd/0x4f0
[ 2443.728194]  ? _copy_from_user+0xfb/0x1b0
[ 2443.729051]  __x64_sys_mount+0x282/0x300
[ 2443.729869]  ? copy_mnt_ns+0xa00/0xa00
[ 2443.730658]  ? rcu_read_lock_sched_held+0x3e/0x80
[ 2443.731638]  do_syscall_64+0x33/0x40
[ 2443.732406]  entry_SYSCALL_64_after_hwframe+0x61/0xc6
[ 2443.733456] RIP: 0033:0x7f38308e8b19
[ 2443.734219] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 2443.737946] RSP: 002b:00007f382de5e188 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5
[ 2443.739480] RAX: ffffffffffffffda RBX: 00007f38309fbf60 RCX: 00007f38308e8b19
[ 2443.740928] RDX: 00000000200000c0 RSI: 0000000020000040 RDI: 0000000000000000
[ 2443.742365] RBP: 00007f382de5e1d0 R08: 0000000020000280 R09: 0000000000000000
[ 2443.743813] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[ 2443.745261] R13: 00007ffca2bf07df R14: 00007f382de5e300 R15: 0000000000022000
21:21:30 executing program 2:
syz_mount_image$vfat(&(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x0, 0x2, &(0x7f0000000180)=[{&(0x7f0000000140)="eb3c906d6b66732e66617400020801000470008400f801", 0x17}, {0x0, 0x0, 0x1000a00}], 0x0, &(0x7f0000000240)=ANY=[])
chdir(&(0x7f0000000040)='./file0\x00')
r0 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x105142, 0x0)
ioctl$FS_IOC_RESVSP(r0, 0x40305828, &(0x7f0000000040)={0x0, 0x0, 0x0, 0x4000006, 0x0, 0x11000000})

21:21:30 executing program 0:
syz_mount_image$vfat(&(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x0, 0x2, &(0x7f0000000180)=[{&(0x7f0000000140)="eb3c906d6b66732e66617400020801000470008400f801", 0x17}, {0x0, 0x0, 0x1000a00}], 0x0, &(0x7f0000000240)=ANY=[])
chdir(&(0x7f0000000040)='./file0\x00')
mount$cgroup(0x0, 0x0, &(0x7f0000000400), 0x0, 0x0)
r0 = syz_io_uring_setup(0x22, &(0x7f0000000680)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000180)=<r1=>0x0, &(0x7f0000002a40)=<r2=>0x0)
r3 = io_uring_register$IORING_REGISTER_PERSONALITY(r0, 0x9, 0x0, 0x0)
r4 = socket$nl_netfilter(0x10, 0x3, 0xc)
syz_io_uring_submit(r1, r2, &(0x7f0000000400)=@IORING_OP_WRITEV={0x2, 0x0, 0x0, @fd=r4, 0x0, 0x0, 0x0, 0x0, 0x0, {0x0, r3}}, 0x0)
r5 = syz_io_uring_setup(0x22, 0x0, &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000180), &(0x7f0000002a40))
r6 = io_uring_register$IORING_REGISTER_PERSONALITY(r5, 0x9, 0x0, 0x0)
syz_io_uring_submit(r1, 0x0, &(0x7f0000000440)=@IORING_OP_FSYNC={0x3, 0x2, 0x0, @fd_index=0x9, 0x0, 0x0, 0x0, 0x0, 0x1, {0x0, r6}}, 0x2)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r7 = openat(0xffffffffffffff9c, &(0x7f00000002c0)='./file1\x00', 0x105142, 0x0)
r8 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0)
mount(&(0x7f0000000200)=ANY=[@ANYBLOB="2f6f651317868af191bdb2"], &(0x7f0000000240)='./file0\x00', &(0x7f0000000280)='nfsd\x00', 0x800000, &(0x7f0000000300)='cgroup\x00')
sendfile(r7, r8, 0x0, 0x100000001)
newfstatat(0xffffffffffffff9c, &(0x7f0000000340)='./file1\x00', &(0x7f0000000380), 0x400)

21:21:30 executing program 3:
openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x105142, 0x0)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x400}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
pipe(&(0x7f00000001c0)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
mount$9p_fd(0x300000000000000, &(0x7f0000000040)='./file1\x00', &(0x7f00000000c0), 0x0, &(0x7f0000000280)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {}, 0x2c, {[{@nodevmap}]}})
openat(r1, &(0x7f0000000180)='./file1\x00', 0x0, 0x0)

21:21:30 executing program 1:
openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x105142, 0x0)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
pipe(&(0x7f00000001c0))
mount$9p_fd(0x6000000, &(0x7f0000000040)='./file1\x00', &(0x7f00000000c0), 0x0, &(0x7f0000000280)={'trans=fd,', {}, 0x2c, {}, 0x2c, {[{@nodevmap}]}})

21:21:30 executing program 6:
r0 = syz_mount_image$vfat(&(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x0, 0x2, &(0x7f0000000180)=[{&(0x7f0000000140)="eb3c906d6b66732e66617400020801000470008400f801", 0x17}, {0x0, 0x0, 0x1000a00}], 0x0, &(0x7f0000000240)=ANY=[])
chdir(&(0x7f0000000040)='./file0\x00')
openat2(r0, &(0x7f0000000100)='./file0\x00', &(0x7f00000001c0)={0x40000, 0x81}, 0x18)
mount$cgroup(0x0, 0x0, &(0x7f0000000400), 0x0, 0x0)
r1 = syz_io_uring_setup(0x22, 0x0, &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000180)=<r2=>0x0, &(0x7f0000002a40)=<r3=>0x0)
r4 = io_uring_register$IORING_REGISTER_PERSONALITY(r1, 0x9, 0x0, 0x0)
r5 = socket$nl_netfilter(0x10, 0x3, 0xc)
syz_io_uring_submit(r2, r3, &(0x7f0000000400)=@IORING_OP_WRITEV={0x2, 0x0, 0x0, @fd=r5, 0x0, 0x0, 0x0, 0x0, 0x0, {0x0, r4}}, 0x0)
r6 = syz_io_uring_setup(0x22, &(0x7f0000000680)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000180), &(0x7f0000002a40))
r7 = io_uring_register$IORING_REGISTER_PERSONALITY(r6, 0x9, 0x0, 0x0)
syz_io_uring_submit(r2, 0x0, &(0x7f0000000440)=@IORING_OP_FSYNC={0x3, 0x2, 0x0, @fd_index=0x9, 0x0, 0x0, 0x0, 0x0, 0x1, {0x0, r7}}, 0x2)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r8 = openat(0xffffffffffffff9c, &(0x7f00000002c0)='./file1\x00', 0x105142, 0x0)
r9 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0)
sendfile(r8, r9, 0x0, 0x100000001)
newfstatat(0xffffffffffffff9c, &(0x7f0000000340)='./file1\x00', &(0x7f0000000380), 0x400)

21:21:45 executing program 2:
syz_mount_image$vfat(&(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x0, 0x2, &(0x7f0000000180)=[{&(0x7f0000000140)="eb3c906d6b66732e66617400020801000470008400f801", 0x17}, {0x0, 0x0, 0x1000a00}], 0x0, &(0x7f0000000240)=ANY=[])
chdir(&(0x7f0000000040)='./file0\x00')
r0 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x105142, 0x0)
ioctl$FS_IOC_RESVSP(r0, 0x40305828, &(0x7f0000000040)={0x0, 0x0, 0x0, 0x4000006, 0x0, 0x12000000})

21:21:45 executing program 0:
syz_mount_image$vfat(&(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x0, 0x2, &(0x7f0000000180)=[{&(0x7f0000000140)="eb3c906d6b66732e66617400020801000470008400f801", 0x17}, {0x0, 0x0, 0x1000a00}], 0x0, &(0x7f0000000240)=ANY=[])
chdir(&(0x7f0000000040)='./file0\x00')
mount$cgroup(0x0, 0x0, &(0x7f0000000400), 0x0, 0x0)
r0 = syz_io_uring_setup(0x22, &(0x7f0000000680)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000180)=<r1=>0x0, &(0x7f0000002a40)=<r2=>0x0)
r3 = io_uring_register$IORING_REGISTER_PERSONALITY(r0, 0x9, 0x0, 0x0)
r4 = socket$nl_netfilter(0x10, 0x3, 0xc)
syz_io_uring_submit(r1, r2, &(0x7f0000000400)=@IORING_OP_WRITEV={0x2, 0x0, 0x0, @fd=r4, 0x0, 0x0, 0x0, 0x0, 0x0, {0x0, r3}}, 0x0)
r5 = syz_io_uring_setup(0x22, 0x0, &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000180), &(0x7f0000002a40))
r6 = io_uring_register$IORING_REGISTER_PERSONALITY(r5, 0x9, 0x0, 0x0)
syz_io_uring_submit(r1, 0x0, &(0x7f0000000440)=@IORING_OP_FSYNC={0x3, 0x2, 0x0, @fd_index=0x9, 0x0, 0x0, 0x0, 0x0, 0x1, {0x0, r6}}, 0x2)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r7 = openat(0xffffffffffffff9c, &(0x7f00000002c0)='./file1\x00', 0x105142, 0x0)
r8 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0)
mount(&(0x7f0000000200)=ANY=[@ANYBLOB="2f6f651317868af191bdb2"], &(0x7f0000000240)='./file0\x00', &(0x7f0000000280)='nfsd\x00', 0x800000, &(0x7f0000000300)='cgroup\x00')
sendfile(r7, r8, 0x0, 0x100000001)
newfstatat(0xffffffffffffff9c, &(0x7f0000000340)='./file1\x00', &(0x7f0000000380), 0x400)

21:21:45 executing program 6:
r0 = syz_mount_image$vfat(&(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x0, 0x2, &(0x7f0000000180)=[{&(0x7f0000000140)="eb3c906d6b66732e66617400020801000470008400f801", 0x17}, {0x0, 0x0, 0x1000a00}], 0x0, &(0x7f0000000240)=ANY=[])
chdir(&(0x7f0000000040)='./file0\x00')
openat2(r0, &(0x7f0000000100)='./file0\x00', &(0x7f00000001c0)={0x40000, 0x81}, 0x18)
mount$cgroup(0x0, 0x0, &(0x7f0000000400), 0x0, 0x0)
r1 = syz_io_uring_setup(0x22, &(0x7f0000000680)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x4000)=nil, 0x0, &(0x7f0000002a40)=<r2=>0x0)
r3 = io_uring_register$IORING_REGISTER_PERSONALITY(r1, 0x9, 0x0, 0x0)
r4 = socket$nl_netfilter(0x10, 0x3, 0xc)
syz_io_uring_submit(0x0, r2, &(0x7f0000000400)=@IORING_OP_WRITEV={0x2, 0x0, 0x0, @fd=r4, 0x0, 0x0, 0x0, 0x0, 0x0, {0x0, r3}}, 0x0)
r5 = syz_io_uring_setup(0x22, &(0x7f0000000680)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000180), &(0x7f0000002a40))
r6 = io_uring_register$IORING_REGISTER_PERSONALITY(r5, 0x9, 0x0, 0x0)
syz_io_uring_submit(0x0, 0x0, &(0x7f0000000440)=@IORING_OP_FSYNC={0x3, 0x2, 0x0, @fd_index=0x9, 0x0, 0x0, 0x0, 0x0, 0x1, {0x0, r6}}, 0x2)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r7 = openat(0xffffffffffffff9c, &(0x7f00000002c0)='./file1\x00', 0x105142, 0x0)
r8 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0)
sendfile(r7, r8, 0x0, 0x100000001)
newfstatat(0xffffffffffffff9c, &(0x7f0000000340)='./file1\x00', &(0x7f0000000380), 0x400)

21:21:45 executing program 3:
openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x105142, 0x0)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x400}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
pipe(&(0x7f00000001c0)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
mount$9p_fd(0x400000000000000, &(0x7f0000000040)='./file1\x00', &(0x7f00000000c0), 0x0, &(0x7f0000000280)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {}, 0x2c, {[{@nodevmap}]}})
openat(r1, &(0x7f0000000180)='./file1\x00', 0x0, 0x0)

21:21:45 executing program 5:
openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x105142, 0x0)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
pipe(&(0x7f00000001c0)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
mount$9p_fd(0x0, &(0x7f0000000040)='./file1\x00', &(0x7f00000000c0), 0x0, &(0x7f0000000280)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}}) (fail_nth: 50)
openat(0xffffffffffffffff, 0x0, 0x0, 0x0)

21:21:45 executing program 1:
openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x105142, 0x0)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
pipe(&(0x7f00000001c0))
mount$9p_fd(0x7000000, &(0x7f0000000040)='./file1\x00', &(0x7f00000000c0), 0x0, &(0x7f0000000280)={'trans=fd,', {}, 0x2c, {}, 0x2c, {[{@nodevmap}]}})

21:21:45 executing program 4:
openat$vcs(0xffffffffffffff9c, &(0x7f0000000040), 0x0, 0x0)
r0 = openat$sr(0xffffffffffffff9c, &(0x7f00000035c0), 0x0, 0x0)
r1 = openat$sr(0xffffffffffffff9c, &(0x7f00000000c0), 0x224400, 0x0)
openat$rtc(0xffffffffffffff9c, &(0x7f0000000200), 0x0, 0x0)
pipe(&(0x7f00000001c0)={0xffffffffffffffff, <r2=>0xffffffffffffffff})
ioctl$PERF_EVENT_IOC_SET_OUTPUT(r2, 0x2405, r1)
r3 = open(&(0x7f00000016c0)='./cgroup.net/cgroup.procs\x00', 0x0, 0x0)
ioctl$BTRFS_IOC_GET_SUBVOL_INFO(0xffffffffffffffff, 0x81f8943c, &(0x7f0000009640)={0x0, ""/256, <r4=>0x0})
ioctl$BTRFS_IOC_INO_LOOKUP_USER(0xffffffffffffffff, 0xd000943e, &(0x7f000000aa40)={0x0, <r5=>0x0, "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", "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"})
ioctl$BTRFS_IOC_GET_SUBVOL_INFO(0xffffffffffffffff, 0x81f8943c, &(0x7f0000001300)={0x0, ""/256, 0x0, <r6=>0x0})
ioctl$BTRFS_IOC_GET_SUBVOL_ROOTREF(0xffffffffffffffff, 0xd000943d, &(0x7f000007d440)={0x9, [{}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {r4}, {}, {}, {}, {}, {r5}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {0x0, r6}], 0x0, "46dacd8396fe92"})
ioctl$BTRFS_IOC_GET_SUBVOL_INFO(r3, 0x81f8943c, &(0x7f000004b780)={0x0, ""/256, <r7=>0x0})
ioctl$BTRFS_IOC_GET_SUBVOL_ROOTREF(0xffffffffffffffff, 0xd000943d, &(0x7f000004b980)={0x6, [{}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {0x0, r6}, {r7}], 0x8, "9f901bf68f4ef3"})
pselect6(0x40, &(0x7f0000000180), &(0x7f00000001c0)={0x3fc, 0x0, 0x0, 0x0, 0x8}, 0x0, 0x0, 0x0)
pipe(&(0x7f00000001c0)={<r8=>0xffffffffffffffff, <r9=>0xffffffffffffffff})
mount$9p_fd(0x0, &(0x7f0000000040)='./file1\x00', &(0x7f00000000c0), 0x0, &(0x7f0000000280)={'trans=fd,', {'rfdno', 0x3d, r8}, 0x2c, {'wfdno', 0x3d, r9}, 0x2c, {[{@nodevmap}]}})
ioctl$AUTOFS_DEV_IOCTL_CATATONIC(r2, 0xc0189379, &(0x7f0000000080)={{0x1, 0x1, 0x18, <r10=>r0}, './file1\x00'})
ioctl$RTC_SET_TIME(r10, 0x4024700a, &(0x7f0000000100)={0x2b, 0x38, 0xf, 0x2, 0x6, 0x0, 0x6, 0x18, 0x1})
ioctl$RTC_ALM_SET(r9, 0x40247007, &(0x7f0000000000)={0x5, 0xd, 0xe, 0x13, 0xb, 0x1, 0x2, 0x33})
sendmsg$NBD_CMD_RECONFIGURE(0xffffffffffffffff, &(0x7f0000000380)={&(0x7f0000000140)={0x10, 0x0, 0x0, 0x4000000}, 0xc, &(0x7f0000000240)={&(0x7f0000000300)={0x4c, 0x0, 0x100, 0x70bd28, 0x25dfdbfe, {}, [@NBD_ATTR_SERVER_FLAGS={0xc, 0x5, 0x103}, @NBD_ATTR_CLIENT_FLAGS={0xc, 0x6, 0x2}, @NBD_ATTR_INDEX={0x8, 0x1, 0x0}, @NBD_ATTR_SERVER_FLAGS={0xc, 0x5, 0xe}, @NBD_ATTR_CLIENT_FLAGS={0xc}]}, 0x4c}, 0x1, 0x0, 0x0, 0x4050}, 0x10044800)

21:21:45 executing program 7:
r0 = perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0)
io_setup(0x7f, &(0x7f00000002c0)=<r1=>0x0)
io_pgetevents(r1, 0x1, 0x1, &(0x7f0000000000)=[{}], 0x0, 0x0)
io_submit(r1, 0x1, &(0x7f0000000340)=[&(0x7f0000000300)={0x0, 0x0, 0x0, 0x5, 0x0, r0, 0x0}])

[ 2458.646474] FAULT_INJECTION: forcing a failure.
[ 2458.646474] name failslab, interval 1, probability 0, space 0, times 0
[ 2458.648250] CPU: 0 PID: 21273 Comm: syz-executor.5 Not tainted 5.10.172 #1
[ 2458.649061] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 2458.650023] Call Trace:
[ 2458.650343]  dump_stack+0x107/0x167
[ 2458.650775]  should_fail.cold+0x5/0xa
[ 2458.651222]  ? create_object.isra.0+0x3a/0xa20
[ 2458.651756]  should_failslab+0x5/0x20
[ 2458.652249]  kmem_cache_alloc+0x5b/0x360
[ 2458.652285]  create_object.isra.0+0x3a/0xa20
[ 2458.652297]  ? __kasan_kmalloc.constprop.0+0xc9/0xd0
[ 2458.652313]  kmem_cache_alloc_node+0x169/0x370
[ 2458.652331]  __kmem_cache_create+0x10e/0x520
[ 2458.652349]  kmem_cache_create_usercopy+0x1db/0x2f0
[ 2458.652368]  p9_client_create+0xc2b/0x1090
[ 2458.652390]  ? p9_client_flush+0x430/0x430
[ 2458.652410]  ? lockdep_init_map_type+0x2c7/0x780
[ 2458.652422]  ? rcu_read_lock_sched_held+0x3e/0x80
[ 2458.652438]  ? __raw_spin_lock_init+0x36/0x110
[ 2458.652457]  v9fs_session_init+0x1dd/0x16a0
[ 2458.652479]  ? kmem_cache_alloc_trace+0x151/0x360
[ 2458.652491]  ? v9fs_show_options+0x690/0x690
[ 2458.652520]  ? kasan_unpoison_shadow+0x33/0x50
[ 2458.652533]  ? __kasan_kmalloc.constprop.0+0xc9/0xd0
[ 2458.652550]  v9fs_mount+0x79/0x8f0
[ 2458.652565]  ? v9fs_write_inode+0x60/0x60
[ 2458.652578]  legacy_get_tree+0x105/0x220
[ 2458.652594]  vfs_get_tree+0x8e/0x300
21:21:45 executing program 3:
openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x105142, 0x0)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x400}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
pipe(&(0x7f00000001c0)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
mount$9p_fd(0x500000000000000, &(0x7f0000000040)='./file1\x00', &(0x7f00000000c0), 0x0, &(0x7f0000000280)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {}, 0x2c, {[{@nodevmap}]}})
openat(r1, &(0x7f0000000180)='./file1\x00', 0x0, 0x0)

[ 2458.652607]  path_mount+0x13be/0x20b0
[ 2458.652624]  ? strncpy_from_user+0x9e/0x470
[ 2458.652637]  ? finish_automount+0xa40/0xa40
[ 2458.652652]  ? getname_flags.part.0+0x1dd/0x4f0
[ 2458.652663]  ? _copy_from_user+0xfb/0x1b0
[ 2458.652685]  __x64_sys_mount+0x282/0x300
[ 2458.652698]  ? copy_mnt_ns+0xa00/0xa00
[ 2458.652713]  ? rcu_read_lock_sched_held+0x3e/0x80
21:21:45 executing program 2:
syz_mount_image$vfat(&(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x0, 0x2, &(0x7f0000000180)=[{&(0x7f0000000140)="eb3c906d6b66732e66617400020801000470008400f801", 0x17}, {0x0, 0x0, 0x1000a00}], 0x0, &(0x7f0000000240)=ANY=[])
chdir(&(0x7f0000000040)='./file0\x00')
r0 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x105142, 0x0)
ioctl$FS_IOC_RESVSP(r0, 0x40305828, &(0x7f0000000040)={0x0, 0x0, 0x0, 0x4000006, 0x0, 0x23000000})

[ 2458.652730]  do_syscall_64+0x33/0x40
[ 2458.652744]  entry_SYSCALL_64_after_hwframe+0x61/0xc6
[ 2458.652751] RIP: 0033:0x7f38308e8b19
[ 2458.652764] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 2458.652772] RSP: 002b:00007f382de5e188 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5
[ 2458.652785] RAX: ffffffffffffffda RBX: 00007f38309fbf60 RCX: 00007f38308e8b19
[ 2458.652792] RDX: 00000000200000c0 RSI: 0000000020000040 RDI: 0000000000000000
[ 2458.652800] RBP: 00007f382de5e1d0 R08: 0000000020000280 R09: 0000000000000000
[ 2458.652806] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[ 2458.652813] R13: 00007ffca2bf07df R14: 00007f382de5e300 R15: 0000000000022000
21:21:45 executing program 1:
openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x105142, 0x0)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
pipe(&(0x7f00000001c0))
mount$9p_fd(0x8000000, &(0x7f0000000040)='./file1\x00', &(0x7f00000000c0), 0x0, &(0x7f0000000280)={'trans=fd,', {}, 0x2c, {}, 0x2c, {[{@nodevmap}]}})

21:21:45 executing program 6:
r0 = syz_mount_image$vfat(&(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x0, 0x2, &(0x7f0000000180)=[{&(0x7f0000000140)="eb3c906d6b66732e66617400020801000470008400f801", 0x17}, {0x0, 0x0, 0x1000a00}], 0x0, &(0x7f0000000240)=ANY=[])
chdir(&(0x7f0000000040)='./file0\x00')
openat2(r0, &(0x7f0000000100)='./file0\x00', &(0x7f00000001c0)={0x40000, 0x81}, 0x18)
mount$cgroup(0x0, 0x0, &(0x7f0000000400), 0x0, 0x0)
r1 = syz_io_uring_setup(0x22, &(0x7f0000000680)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x4000)=nil, 0x0, &(0x7f0000002a40)=<r2=>0x0)
r3 = io_uring_register$IORING_REGISTER_PERSONALITY(r1, 0x9, 0x0, 0x0)
r4 = socket$nl_netfilter(0x10, 0x3, 0xc)
syz_io_uring_submit(0x0, r2, &(0x7f0000000400)=@IORING_OP_WRITEV={0x2, 0x0, 0x0, @fd=r4, 0x0, 0x0, 0x0, 0x0, 0x0, {0x0, r3}}, 0x0)
r5 = syz_io_uring_setup(0x22, &(0x7f0000000680)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000180), &(0x7f0000002a40))
r6 = io_uring_register$IORING_REGISTER_PERSONALITY(r5, 0x9, 0x0, 0x0)
syz_io_uring_submit(0x0, 0x0, &(0x7f0000000440)=@IORING_OP_FSYNC={0x3, 0x2, 0x0, @fd_index=0x9, 0x0, 0x0, 0x0, 0x0, 0x1, {0x0, r6}}, 0x2)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r7 = openat(0xffffffffffffff9c, &(0x7f00000002c0)='./file1\x00', 0x105142, 0x0)
r8 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0)
sendfile(r7, r8, 0x0, 0x100000001)
newfstatat(0xffffffffffffff9c, &(0x7f0000000340)='./file1\x00', &(0x7f0000000380), 0x400)

21:21:45 executing program 3:
openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x105142, 0x0)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x400}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
pipe(&(0x7f00000001c0)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
mount$9p_fd(0x600000000000000, &(0x7f0000000040)='./file1\x00', &(0x7f00000000c0), 0x0, &(0x7f0000000280)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {}, 0x2c, {[{@nodevmap}]}})
openat(r1, &(0x7f0000000180)='./file1\x00', 0x0, 0x0)

21:21:45 executing program 2:
syz_mount_image$vfat(&(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x0, 0x2, &(0x7f0000000180)=[{&(0x7f0000000140)="eb3c906d6b66732e66617400020801000470008400f801", 0x17}, {0x0, 0x0, 0x1000a00}], 0x0, &(0x7f0000000240)=ANY=[])
chdir(&(0x7f0000000040)='./file0\x00')
r0 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x105142, 0x0)
ioctl$FS_IOC_RESVSP(r0, 0x40305828, &(0x7f0000000040)={0x0, 0x0, 0x0, 0x4000006, 0x0, 0x3f000000})

21:21:45 executing program 0:
syz_mount_image$vfat(&(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x0, 0x2, &(0x7f0000000180)=[{&(0x7f0000000140)="eb3c906d6b66732e66617400020801000470008400f801", 0x17}, {0x0, 0x0, 0x1000a00}], 0x0, &(0x7f0000000240)=ANY=[])
chdir(&(0x7f0000000040)='./file0\x00')
mount$cgroup(0x0, 0x0, &(0x7f0000000400), 0x0, 0x0)
r0 = syz_io_uring_setup(0x22, &(0x7f0000000680)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000180)=<r1=>0x0, &(0x7f0000002a40)=<r2=>0x0)
r3 = io_uring_register$IORING_REGISTER_PERSONALITY(r0, 0x9, 0x0, 0x0)
r4 = socket$nl_netfilter(0x10, 0x3, 0xc)
syz_io_uring_submit(r1, r2, &(0x7f0000000400)=@IORING_OP_WRITEV={0x2, 0x0, 0x0, @fd=r4, 0x0, 0x0, 0x0, 0x0, 0x0, {0x0, r3}}, 0x0)
r5 = syz_io_uring_setup(0x22, &(0x7f0000000680)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x4000)=nil, 0x0, &(0x7f0000002a40))
r6 = io_uring_register$IORING_REGISTER_PERSONALITY(r5, 0x9, 0x0, 0x0)
syz_io_uring_submit(r1, 0x0, &(0x7f0000000440)=@IORING_OP_FSYNC={0x3, 0x2, 0x0, @fd_index=0x9, 0x0, 0x0, 0x0, 0x0, 0x1, {0x0, r6}}, 0x2)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r7 = openat(0xffffffffffffff9c, &(0x7f00000002c0)='./file1\x00', 0x105142, 0x0)
r8 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0)
mount(&(0x7f0000000200)=ANY=[@ANYBLOB="2f6f651317868af191bdb2"], &(0x7f0000000240)='./file0\x00', &(0x7f0000000280)='nfsd\x00', 0x800000, &(0x7f0000000300)='cgroup\x00')
sendfile(r7, r8, 0x0, 0x100000001)
newfstatat(0xffffffffffffff9c, &(0x7f0000000340)='./file1\x00', &(0x7f0000000380), 0x400)

21:21:45 executing program 3:
openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x105142, 0x0)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x400}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
pipe(&(0x7f00000001c0)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
mount$9p_fd(0x700000000000000, &(0x7f0000000040)='./file1\x00', &(0x7f00000000c0), 0x0, &(0x7f0000000280)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {}, 0x2c, {[{@nodevmap}]}})
openat(r1, &(0x7f0000000180)='./file1\x00', 0x0, 0x0)

21:21:45 executing program 4:
openat$vcs(0xffffffffffffff9c, &(0x7f0000000040), 0x0, 0x0)
openat$sr(0xffffffffffffff9c, &(0x7f00000035c0), 0x0, 0x0)
openat$sr(0xffffffffffffff9c, &(0x7f00000000c0), 0x224400, 0x0)
r0 = openat$rtc(0xffffffffffffff9c, &(0x7f0000000200), 0x0, 0x0)
pipe(&(0x7f00000001c0))
ioctl$RTC_SET_TIME(r0, 0x4024700a, &(0x7f0000000000)={0xc, 0xb, 0xa, 0x9, 0x1d57e94d, 0x2, 0x5, 0x114, 0xffffffffffffffff})
open(&(0x7f00000016c0)='./cgroup.net/cgroup.procs\x00', 0x0, 0x0)
pselect6(0x40, &(0x7f0000000180), &(0x7f00000001c0)={0x3fc}, 0x0, 0x0, 0x0)

21:21:45 executing program 5:
openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x105142, 0x0)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
pipe(&(0x7f00000001c0)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
mount$9p_fd(0x0, &(0x7f0000000040)='./file1\x00', &(0x7f00000000c0), 0x0, &(0x7f0000000280)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}}) (fail_nth: 51)
openat(0xffffffffffffffff, 0x0, 0x0, 0x0)

[ 2458.949323] FAULT_INJECTION: forcing a failure.
[ 2458.949323] name failslab, interval 1, probability 0, space 0, times 0
[ 2458.950936] CPU: 1 PID: 21498 Comm: syz-executor.5 Not tainted 5.10.172 #1
[ 2458.951786] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 2458.952795] Call Trace:
[ 2458.953159]  dump_stack+0x107/0x167
[ 2458.953617]  should_fail.cold+0x5/0xa
[ 2458.954090]  ? create_object.isra.0+0x3a/0xa20
[ 2458.954662]  should_failslab+0x5/0x20
[ 2458.955129]  kmem_cache_alloc+0x5b/0x360
[ 2458.955617]  create_object.isra.0+0x3a/0xa20
[ 2458.956157]  kmemleak_alloc_percpu+0xa0/0x100
[ 2458.956709]  pcpu_alloc+0x4e2/0x12f0
[ 2458.957187]  __kmem_cache_create+0x35a/0x520
[ 2458.957723]  kmem_cache_create_usercopy+0x1db/0x2f0
[ 2458.958337]  p9_client_create+0xc2b/0x1090
[ 2458.958885]  ? p9_client_flush+0x430/0x430
[ 2458.959422]  ? lockdep_init_map_type+0x2c7/0x780
[ 2458.960016]  ? rcu_read_lock_sched_held+0x3e/0x80
[ 2458.960646]  ? __raw_spin_lock_init+0x36/0x110
[ 2458.961235]  v9fs_session_init+0x1dd/0x16a0
[ 2458.961793]  ? kmem_cache_alloc_trace+0x151/0x360
[ 2458.962395]  ? v9fs_show_options+0x690/0x690
[ 2458.963003]  ? kasan_unpoison_shadow+0x33/0x50
[ 2458.963621]  ? __kasan_kmalloc.constprop.0+0xc9/0xd0
[ 2458.964302]  v9fs_mount+0x79/0x8f0
[ 2458.964780]  ? v9fs_write_inode+0x60/0x60
[ 2458.965370]  legacy_get_tree+0x105/0x220
[ 2458.965929]  vfs_get_tree+0x8e/0x300
[ 2458.966438]  path_mount+0x13be/0x20b0
[ 2458.966979]  ? strncpy_from_user+0x9e/0x470
[ 2458.967578]  ? finish_automount+0xa40/0xa40
[ 2458.968184]  ? getname_flags.part.0+0x1dd/0x4f0
[ 2458.968808]  ? _copy_from_user+0xfb/0x1b0
[ 2458.969420]  __x64_sys_mount+0x282/0x300
[ 2458.969974]  ? copy_mnt_ns+0xa00/0xa00
[ 2458.970517]  ? rcu_read_lock_sched_held+0x3e/0x80
[ 2458.971156]  do_syscall_64+0x33/0x40
[ 2458.971661]  entry_SYSCALL_64_after_hwframe+0x61/0xc6
[ 2458.972353] RIP: 0033:0x7f38308e8b19
[ 2458.972851] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 2458.975337] RSP: 002b:00007f382de5e188 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5
[ 2458.976341] RAX: ffffffffffffffda RBX: 00007f38309fbf60 RCX: 00007f38308e8b19
[ 2458.977310] RDX: 00000000200000c0 RSI: 0000000020000040 RDI: 0000000000000000
[ 2458.978273] RBP: 00007f382de5e1d0 R08: 0000000020000280 R09: 0000000000000000
[ 2458.979212] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[ 2458.980185] R13: 00007ffca2bf07df R14: 00007f382de5e300 R15: 0000000000022000
21:22:02 executing program 7:
r0 = perf_event_open(&(0x7f0000000040)={0x0, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
io_setup(0x7f, &(0x7f00000002c0)=<r1=>0x0)
io_pgetevents(r1, 0x1, 0x1, &(0x7f0000000000)=[{}], 0x0, 0x0)
io_submit(r1, 0x1, &(0x7f0000000340)=[&(0x7f0000000300)={0x0, 0x0, 0x0, 0x5, 0x0, r0, 0x0}])

21:22:02 executing program 5:
openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x105142, 0x0)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
pipe(&(0x7f00000001c0)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
mount$9p_fd(0x0, &(0x7f0000000040)='./file1\x00', &(0x7f00000000c0), 0x0, &(0x7f0000000280)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}}) (fail_nth: 52)
openat(0xffffffffffffffff, 0x0, 0x0, 0x0)

21:22:02 executing program 3:
openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x105142, 0x0)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x400}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
pipe(&(0x7f00000001c0)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
mount$9p_fd(0x800000000000000, &(0x7f0000000040)='./file1\x00', &(0x7f00000000c0), 0x0, &(0x7f0000000280)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {}, 0x2c, {[{@nodevmap}]}})
openat(r1, &(0x7f0000000180)='./file1\x00', 0x0, 0x0)

21:22:02 executing program 6:
r0 = syz_mount_image$vfat(&(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x0, 0x2, &(0x7f0000000180)=[{&(0x7f0000000140)="eb3c906d6b66732e66617400020801000470008400f801", 0x17}, {0x0, 0x0, 0x1000a00}], 0x0, &(0x7f0000000240)=ANY=[])
chdir(&(0x7f0000000040)='./file0\x00')
openat2(r0, &(0x7f0000000100)='./file0\x00', &(0x7f00000001c0)={0x40000, 0x81}, 0x18)
mount$cgroup(0x0, 0x0, &(0x7f0000000400), 0x0, 0x0)
r1 = syz_io_uring_setup(0x22, &(0x7f0000000680)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x4000)=nil, 0x0, &(0x7f0000002a40)=<r2=>0x0)
r3 = io_uring_register$IORING_REGISTER_PERSONALITY(r1, 0x9, 0x0, 0x0)
r4 = socket$nl_netfilter(0x10, 0x3, 0xc)
syz_io_uring_submit(0x0, r2, &(0x7f0000000400)=@IORING_OP_WRITEV={0x2, 0x0, 0x0, @fd=r4, 0x0, 0x0, 0x0, 0x0, 0x0, {0x0, r3}}, 0x0)
r5 = syz_io_uring_setup(0x22, &(0x7f0000000680)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000180), &(0x7f0000002a40))
r6 = io_uring_register$IORING_REGISTER_PERSONALITY(r5, 0x9, 0x0, 0x0)
syz_io_uring_submit(0x0, 0x0, &(0x7f0000000440)=@IORING_OP_FSYNC={0x3, 0x2, 0x0, @fd_index=0x9, 0x0, 0x0, 0x0, 0x0, 0x1, {0x0, r6}}, 0x2)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r7 = openat(0xffffffffffffff9c, &(0x7f00000002c0)='./file1\x00', 0x105142, 0x0)
r8 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0)
sendfile(r7, r8, 0x0, 0x100000001)
newfstatat(0xffffffffffffff9c, &(0x7f0000000340)='./file1\x00', &(0x7f0000000380), 0x400)

21:22:02 executing program 1:
openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x105142, 0x0)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
pipe(&(0x7f00000001c0))
mount$9p_fd(0x9000000, &(0x7f0000000040)='./file1\x00', &(0x7f00000000c0), 0x0, &(0x7f0000000280)={'trans=fd,', {}, 0x2c, {}, 0x2c, {[{@nodevmap}]}})

21:22:02 executing program 2:
syz_mount_image$vfat(&(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x0, 0x2, &(0x7f0000000180)=[{&(0x7f0000000140)="eb3c906d6b66732e66617400020801000470008400f801", 0x17}, {0x0, 0x0, 0x1000a00}], 0x0, &(0x7f0000000240)=ANY=[])
chdir(&(0x7f0000000040)='./file0\x00')
r0 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x105142, 0x0)
ioctl$FS_IOC_RESVSP(r0, 0x40305828, &(0x7f0000000040)={0x0, 0x0, 0x0, 0x4000006, 0x0, 0x40000000})

21:22:02 executing program 0:
syz_mount_image$vfat(&(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x0, 0x2, &(0x7f0000000180)=[{&(0x7f0000000140)="eb3c906d6b66732e66617400020801000470008400f801", 0x17}, {0x0, 0x0, 0x1000a00}], 0x0, &(0x7f0000000240)=ANY=[])
chdir(&(0x7f0000000040)='./file0\x00')
mount$cgroup(0x0, 0x0, &(0x7f0000000400), 0x0, 0x0)
r0 = syz_io_uring_setup(0x22, &(0x7f0000000680)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000180)=<r1=>0x0, &(0x7f0000002a40)=<r2=>0x0)
r3 = io_uring_register$IORING_REGISTER_PERSONALITY(r0, 0x9, 0x0, 0x0)
r4 = socket$nl_netfilter(0x10, 0x3, 0xc)
syz_io_uring_submit(r1, r2, &(0x7f0000000400)=@IORING_OP_WRITEV={0x2, 0x0, 0x0, @fd=r4, 0x0, 0x0, 0x0, 0x0, 0x0, {0x0, r3}}, 0x0)
r5 = syz_io_uring_setup(0x22, &(0x7f0000000680)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x4000)=nil, 0x0, &(0x7f0000002a40))
r6 = io_uring_register$IORING_REGISTER_PERSONALITY(r5, 0x9, 0x0, 0x0)
syz_io_uring_submit(r1, 0x0, &(0x7f0000000440)=@IORING_OP_FSYNC={0x3, 0x2, 0x0, @fd_index=0x9, 0x0, 0x0, 0x0, 0x0, 0x1, {0x0, r6}}, 0x2)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r7 = openat(0xffffffffffffff9c, &(0x7f00000002c0)='./file1\x00', 0x105142, 0x0)
r8 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0)
mount(&(0x7f0000000200)=ANY=[@ANYBLOB="2f6f651317868af191bdb2"], &(0x7f0000000240)='./file0\x00', &(0x7f0000000280)='nfsd\x00', 0x800000, &(0x7f0000000300)='cgroup\x00')
sendfile(r7, r8, 0x0, 0x100000001)
newfstatat(0xffffffffffffff9c, &(0x7f0000000340)='./file1\x00', &(0x7f0000000380), 0x400)

21:22:02 executing program 4:
openat$vcs(0xffffffffffffff9c, &(0x7f0000000040), 0x0, 0x0)
openat$sr(0xffffffffffffff9c, &(0x7f00000035c0), 0x24a80, 0x0)
r0 = openat$sr(0xffffffffffffff9c, &(0x7f00000000c0), 0x224400, 0x0)
openat$rtc(0xffffffffffffff9c, &(0x7f0000000200), 0x0, 0x0)
pipe(&(0x7f00000001c0))
r1 = open(&(0x7f0000000000)='./cgroup.net/cgroup.procs\x00', 0x4940, 0x0)
pselect6(0x40, &(0x7f0000000180), &(0x7f00000001c0)={0x3fc}, 0x0, 0x0, 0x0)
r2 = perf_event_open(&(0x7f0000001d80)={0x2, 0x80, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
mmap(&(0x7f0000ffc000/0x2000)=nil, 0x2000, 0x0, 0x13, r2, 0x0)
perf_event_open(&(0x7f0000001d80)={0x2, 0x80, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x9, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x1, 0x5}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4}, 0x0, 0x0, r2, 0x3)
ioctl$AUTOFS_DEV_IOCTL_ISMOUNTPOINT(r1, 0xc018937e, &(0x7f0000000340)=ANY=[@ANYBLOB="8bac7bf8ffffffffffffff00", @ANYRES32=<r3=>0xffffffffffffffff, @ANYBLOB='\x00\x00\x00\x00\x00\x00\x00\x00./cgroup.net/cgroup.procs/file0\x00'])
pipe(&(0x7f00000001c0)={<r4=>0xffffffffffffffff, <r5=>0xffffffffffffffff})
mount$9p_fd(0x0, &(0x7f0000000040)='./file1\x00', &(0x7f00000000c0), 0x0, &(0x7f0000000280)={'trans=fd,', {'rfdno', 0x3d, r4}, 0x2c, {'wfdno', 0x3d, r5}, 0x2c, {[{@nodevmap}]}})
r6 = perf_event_open(&(0x7f0000001d80)={0x2, 0x80, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
mmap(&(0x7f0000ffc000/0x2000)=nil, 0x2000, 0x0, 0x13, r6, 0x0)
perf_event_open(&(0x7f0000001d80)={0x2, 0x80, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, r6, 0x2)
r7 = perf_event_open(&(0x7f0000001d80)={0x2, 0x80, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
mmap(&(0x7f0000ffc000/0x2000)=nil, 0x2000, 0x0, 0x13, r7, 0x0)
perf_event_open(&(0x7f0000001d80)={0x2, 0x80, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, r7, 0x2)
io_submit(0x0, 0x6, &(0x7f0000000700)=[&(0x7f0000000240)={0x0, 0x0, 0x0, 0x0, 0x5, 0xffffffffffffffff, &(0x7f0000000100)="eb81e0b5f2e941a5bf74aaa7c653724f01a9e9e439f7f11ac3269a83419d73d3bdf746a38f8ef24a12c7c52b1adc8c8884c3230341aee5e63406461da2ba3df197a47badedddb18b567199b8d0ed84cc6ec5d05a79c2f7", 0x57, 0x2, 0x0, 0x3}, &(0x7f0000000300)={0x0, 0x0, 0x0, 0x7, 0x6, r2, &(0x7f0000000280)="16a8c7f04c3750a3268228d9279ec2bdeab948f1041f1c434a7347d1afc83172c14c4350a6dd471e712a9254e6a7b58dc04acaa3512412430d3b2d6423d3fac4f35a9e437b01519707e8c37daaa5980d99e54e9356627a095026a2b0676d2968783c636e1f88c24209d6c814b7e86fbae54b370b9a", 0x75, 0x5, 0x0, 0x1}, &(0x7f00000003c0)={0x0, 0x0, 0x0, 0x3, 0x4, r3, &(0x7f0000000380)="ee0fad65fe94a5fe520a718087f5b794d6ae850cb14aaf25966dbc43d6474859985a3841609f", 0x26, 0x8f0, 0x0, 0x2, r5}, &(0x7f0000000480)={0x0, 0x0, 0x0, 0x2, 0x6483, r6, &(0x7f0000000400)="5b4a1231e297811114831918acc61b183660ebf1619e5af73dcd2a3ca22b49518841a5cec66a8916b34e8f196869114deb74a691e7e52a040eec86b49006c10a9f63df1c3023b57fa457fd6946a2423da1f342b7b29630f9eea030a51f1b49faaa6aae61a2", 0x65, 0x8, 0x0, 0x0, r0}, &(0x7f0000000580)={0x0, 0x0, 0x0, 0x5, 0x6, r7, &(0x7f00000004c0)="986075d427953bcf6db06cc62c3cd7294c74f7dbccdedc7813b857a6dfbc82dee8e69f7bd5e0b24aad44d14b25cab16a3663d0d63b3356d668386596a6e761809b24dcaa37dd259fc3a543cca211d1ed895eaac51e275b9bcb9d17e16d94a1c9072ac2818720c056d51a604c495c9a8cd5a1d03a6d6bb547c0f008508a112032c12bbd722fffba1b117f795d8438f24681b20a1a41ad517376ca9e3cec2edda2ca525e5bd0a5c510e2fecd10d09c48e9edf2b5fe53f55cd645fc1828", 0xbc, 0x4, 0x0, 0x1}, &(0x7f00000006c0)={0x0, 0x0, 0x0, 0x1, 0x0, r1, &(0x7f00000005c0)="171524fd8cc3dbd221317f85d1a1cd8bce2cc9d3d44abdea4f6ae92663f5f7d988797659176efa62b76344c42f7882056f077740f039121c5f2672abae983e90d474ef8debda9797289564800c114f3c85d3e90c15d83eb253e5b46597d25c53c692f5178b787d5d7f2fb30e65b25d66b25fdd87fc6e1d37259aabc9a0596edb701402a3f04e945244226f326508583d06c8c303f0c438d4b1413396dfdee6cb3756c1c1150276e839e87c4b1009d3a1d0bfe6c37f9d38e523b1e167039c78bf226bdbd36fd820aa0a3d9795c4bcd4e8fb8cd89f9f18f19e5ae5f111b8f81d6368b3a1", 0xe3, 0x7fff, 0x0, 0x1, r0}])

[ 2476.325228] FAULT_INJECTION: forcing a failure.
[ 2476.325228] name failslab, interval 1, probability 0, space 0, times 0
[ 2476.328180] CPU: 0 PID: 21560 Comm: syz-executor.5 Not tainted 5.10.172 #1
[ 2476.329670] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 2476.331343] Call Trace:
[ 2476.331910]  dump_stack+0x107/0x167
[ 2476.332685]  should_fail.cold+0x5/0xa
[ 2476.333485]  ? create_object.isra.0+0x3a/0xa20
[ 2476.334409]  should_failslab+0x5/0x20
[ 2476.335180]  kmem_cache_alloc+0x5b/0x360
[ 2476.336015]  ? mark_held_locks+0x9e/0xe0
[ 2476.336846]  create_object.isra.0+0x3a/0xa20
[ 2476.337786]  kmemleak_alloc_percpu+0xa0/0x100
[ 2476.338732]  pcpu_alloc+0x4e2/0x12f0
[ 2476.339543]  __kmem_cache_create+0x35a/0x520
[ 2476.340468]  kmem_cache_create_usercopy+0x1db/0x2f0
[ 2476.341512]  p9_client_create+0xc2b/0x1090
[ 2476.342379]  ? p9_client_flush+0x430/0x430
[ 2476.343253]  ? lockdep_init_map_type+0x2c7/0x780
[ 2476.344208]  ? rcu_read_lock_sched_held+0x3e/0x80
[ 2476.345212]  ? __raw_spin_lock_init+0x36/0x110
[ 2476.346141]  v9fs_session_init+0x1dd/0x16a0
[ 2476.347057]  ? kmem_cache_alloc_trace+0x151/0x360
[ 2476.348042]  ? v9fs_show_options+0x690/0x690
[ 2476.348952]  ? kasan_unpoison_shadow+0x33/0x50
[ 2476.349919]  ? __kasan_kmalloc.constprop.0+0xc9/0xd0
[ 2476.350990]  v9fs_mount+0x79/0x8f0
[ 2476.351713]  ? v9fs_write_inode+0x60/0x60
[ 2476.352553]  legacy_get_tree+0x105/0x220
[ 2476.353409]  vfs_get_tree+0x8e/0x300
[ 2476.354175]  path_mount+0x13be/0x20b0
[ 2476.354950]  ? strncpy_from_user+0x9e/0x470
[ 2476.355851]  ? finish_automount+0xa40/0xa40
[ 2476.356746]  ? getname_flags.part.0+0x1dd/0x4f0
[ 2476.357705]  ? _copy_from_user+0xfb/0x1b0
[ 2476.358547]  __x64_sys_mount+0x282/0x300
[ 2476.359371]  ? copy_mnt_ns+0xa00/0xa00
[ 2476.360169]  ? rcu_read_lock_sched_held+0x3e/0x80
[ 2476.361151]  do_syscall_64+0x33/0x40
[ 2476.361925]  entry_SYSCALL_64_after_hwframe+0x61/0xc6
[ 2476.362968] RIP: 0033:0x7f38308e8b19
[ 2476.363726] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 2476.367452] RSP: 002b:00007f382de5e188 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5
[ 2476.369187] RAX: ffffffffffffffda RBX: 00007f38309fbf60 RCX: 00007f38308e8b19
[ 2476.370695] RDX: 00000000200000c0 RSI: 0000000020000040 RDI: 0000000000000000
[ 2476.372170] RBP: 00007f382de5e1d0 R08: 0000000020000280 R09: 0000000000000000
[ 2476.373728] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[ 2476.375462] R13: 00007ffca2bf07df R14: 00007f382de5e300 R15: 0000000000022000
21:22:02 executing program 6:
r0 = syz_mount_image$vfat(&(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x0, 0x2, &(0x7f0000000180)=[{&(0x7f0000000140)="eb3c906d6b66732e66617400020801000470008400f801", 0x17}, {0x0, 0x0, 0x1000a00}], 0x0, &(0x7f0000000240)=ANY=[])
chdir(&(0x7f0000000040)='./file0\x00')
openat2(r0, &(0x7f0000000100)='./file0\x00', &(0x7f00000001c0)={0x40000, 0x81}, 0x18)
mount$cgroup(0x0, 0x0, &(0x7f0000000400), 0x0, 0x0)
r1 = syz_io_uring_setup(0x22, &(0x7f0000000680)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000180)=<r2=>0x0, 0x0)
r3 = io_uring_register$IORING_REGISTER_PERSONALITY(r1, 0x9, 0x0, 0x0)
r4 = socket$nl_netfilter(0x10, 0x3, 0xc)
syz_io_uring_submit(r2, 0x0, &(0x7f0000000400)=@IORING_OP_WRITEV={0x2, 0x0, 0x0, @fd=r4, 0x0, 0x0, 0x0, 0x0, 0x0, {0x0, r3}}, 0x0)
r5 = syz_io_uring_setup(0x22, &(0x7f0000000680)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000180), &(0x7f0000002a40))
r6 = io_uring_register$IORING_REGISTER_PERSONALITY(r5, 0x9, 0x0, 0x0)
syz_io_uring_submit(r2, 0x0, &(0x7f0000000440)=@IORING_OP_FSYNC={0x3, 0x2, 0x0, @fd_index=0x9, 0x0, 0x0, 0x0, 0x0, 0x1, {0x0, r6}}, 0x2)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r7 = openat(0xffffffffffffff9c, &(0x7f00000002c0)='./file1\x00', 0x105142, 0x0)
r8 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0)
sendfile(r7, r8, 0x0, 0x100000001)
newfstatat(0xffffffffffffff9c, &(0x7f0000000340)='./file1\x00', &(0x7f0000000380), 0x400)

21:22:03 executing program 3:
openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x105142, 0x0)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x400}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
pipe(&(0x7f00000001c0)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
mount$9p_fd(0x900000000000000, &(0x7f0000000040)='./file1\x00', &(0x7f00000000c0), 0x0, &(0x7f0000000280)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {}, 0x2c, {[{@nodevmap}]}})
openat(r1, &(0x7f0000000180)='./file1\x00', 0x0, 0x0)

21:22:03 executing program 2:
syz_mount_image$vfat(&(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x0, 0x2, &(0x7f0000000180)=[{&(0x7f0000000140)="eb3c906d6b66732e66617400020801000470008400f801", 0x17}, {0x0, 0x0, 0x1000a00}], 0x0, &(0x7f0000000240)=ANY=[])
chdir(&(0x7f0000000040)='./file0\x00')
r0 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x105142, 0x0)
ioctl$FS_IOC_RESVSP(r0, 0x40305828, &(0x7f0000000040)={0x0, 0x0, 0x0, 0x4000006, 0x0, 0xf5ffffff})

21:22:03 executing program 1:
openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x105142, 0x0)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
pipe(&(0x7f00000001c0))
mount$9p_fd(0xa000000, &(0x7f0000000040)='./file1\x00', &(0x7f00000000c0), 0x0, &(0x7f0000000280)={'trans=fd,', {}, 0x2c, {}, 0x2c, {[{@nodevmap}]}})

21:22:03 executing program 0:
syz_mount_image$vfat(&(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x0, 0x2, &(0x7f0000000180)=[{&(0x7f0000000140)="eb3c906d6b66732e66617400020801000470008400f801", 0x17}, {0x0, 0x0, 0x1000a00}], 0x0, &(0x7f0000000240)=ANY=[])
chdir(&(0x7f0000000040)='./file0\x00')
mount$cgroup(0x0, 0x0, &(0x7f0000000400), 0x0, 0x0)
r0 = syz_io_uring_setup(0x22, &(0x7f0000000680)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000180)=<r1=>0x0, &(0x7f0000002a40)=<r2=>0x0)
r3 = io_uring_register$IORING_REGISTER_PERSONALITY(r0, 0x9, 0x0, 0x0)
r4 = socket$nl_netfilter(0x10, 0x3, 0xc)
syz_io_uring_submit(r1, r2, &(0x7f0000000400)=@IORING_OP_WRITEV={0x2, 0x0, 0x0, @fd=r4, 0x0, 0x0, 0x0, 0x0, 0x0, {0x0, r3}}, 0x0)
r5 = syz_io_uring_setup(0x22, &(0x7f0000000680)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x4000)=nil, 0x0, &(0x7f0000002a40))
r6 = io_uring_register$IORING_REGISTER_PERSONALITY(r5, 0x9, 0x0, 0x0)
syz_io_uring_submit(r1, 0x0, &(0x7f0000000440)=@IORING_OP_FSYNC={0x3, 0x2, 0x0, @fd_index=0x9, 0x0, 0x0, 0x0, 0x0, 0x1, {0x0, r6}}, 0x2)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r7 = openat(0xffffffffffffff9c, &(0x7f00000002c0)='./file1\x00', 0x105142, 0x0)
r8 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0)
mount(&(0x7f0000000200)=ANY=[@ANYBLOB="2f6f651317868af191bdb2"], &(0x7f0000000240)='./file0\x00', &(0x7f0000000280)='nfsd\x00', 0x800000, &(0x7f0000000300)='cgroup\x00')
sendfile(r7, r8, 0x0, 0x100000001)
newfstatat(0xffffffffffffff9c, &(0x7f0000000340)='./file1\x00', &(0x7f0000000380), 0x400)

21:22:03 executing program 4:
syz_usb_connect$printer(0x5, 0x2d, &(0x7f0000000000)={{0x12, 0x1, 0x300, 0x0, 0x0, 0x0, 0x40, 0x525, 0xa4a8, 0x40, 0x1, 0x2, 0x3, 0x1, [{{0x9, 0x2, 0x1b, 0x1, 0x1, 0x34, 0xc0, 0x9, [{{0x9, 0x4, 0x0, 0x8, 0x1, 0x7, 0x1, 0x3, 0x0, "", {{{0x9, 0x5, 0x1, 0x2, 0x3ff, 0x1, 0xe6, 0x40}}}}}]}}]}}, &(0x7f0000000600)={0xa, &(0x7f0000000080)={0xa, 0x6, 0x200, 0x7d, 0x6, 0xb9, 0x20, 0x9}, 0xab, &(0x7f0000000240)=ANY=[@ANYBLOB="050fab00020a1003000500081f100bd8e99de4d9f2e4421ab4f60a4dde847d0cb47e574e4243552afea675613f012fe694826672f6a61f9c6db15867852cee4ce1a361b6bce84d704335b77e6e112890c495de5b64f4a0006034c6c4b1b238e01ca5a987a106c6f3660e34632f25a2c90e46277a6b688dcb93289a5a97514a619657d539874246531bb56a4a66807ef2f8ec1c59a0df8486b809dae602c53b70b0109857975e3c07"], 0x6, [{0x101, &(0x7f0000000300)=@string={0x101, 0x3, "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"}}, {0x4, &(0x7f0000000100)=@lang_id={0x4, 0x3, 0x1407}}, {0x4, &(0x7f0000000140)=@lang_id={0x4, 0x3, 0x500a}}, {0xf4, &(0x7f0000000440)=@string={0xf4, 0x3, "26b680018064abaccf3e696234df6ec5e851a0beb0d6bd9c2be91dfd86e18c2694eaeccbadd7ba24a1d64bab5ce08460a9a8cbd94144e34ca086237f2e286f68aa07f9282deb4b1c2fe6306ab19047d344f25c63ccae4b65a08b4e61b1de3c9e8e5a1410f457424132a7d1cf95467a4dfd60dcb55fea023cbe4a541b8da77f1a71ccca0d2ea6bd2042ef3fbf8e1e48378360fca016fc110e902a945957245369e12580e0e2709eedb57f0400023d9fc19de71d0a47cbe70ca9b927fc35613872e44dd261041b1d12c44f9a1198374008aaba8342bdba8d70785eb50501431191a9683f4c038bd00ad736053ce070ebc1702c"}}, {0x3c, &(0x7f0000000540)=@string={0x3c, 0x3, "d310e0d6b0f75e1dfebf31528198e6c53fef4834b13346d8f453b38114291bbf43fe1a9f00ba0a19f5082fa5bc741b21231ca9dc16eaa23ae169"}}, {0x4, &(0x7f0000000580)=@lang_id={0x4, 0x3, 0x410}}]})
openat$vcs(0xffffffffffffff9c, &(0x7f0000000040), 0x0, 0x0)
openat$sr(0xffffffffffffff9c, &(0x7f00000035c0), 0x0, 0x0)
openat$sr(0xffffffffffffff9c, &(0x7f00000000c0), 0x224400, 0x0)
openat$rtc(0xffffffffffffff9c, &(0x7f0000000200), 0x0, 0x0)
pipe(&(0x7f00000001c0))
open(&(0x7f00000016c0)='./cgroup.net/cgroup.procs\x00', 0x0, 0x0)
pselect6(0x40, &(0x7f0000000180), &(0x7f00000001c0)={0x3fc}, 0x0, 0x0, 0x0)

[ 2476.649127] udc-core: couldn't find an available UDC or it's busy
[ 2476.650600] misc raw-gadget: fail, usb_gadget_probe_driver returned -19
21:22:03 executing program 1:
openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x105142, 0x0)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
pipe(&(0x7f00000001c0))
mount$9p_fd(0xb000000, &(0x7f0000000040)='./file1\x00', &(0x7f00000000c0), 0x0, &(0x7f0000000280)={'trans=fd,', {}, 0x2c, {}, 0x2c, {[{@nodevmap}]}})

21:22:03 executing program 3:
openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x105142, 0x0)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x400}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
pipe(&(0x7f00000001c0)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
mount$9p_fd(0xa00000000000000, &(0x7f0000000040)='./file1\x00', &(0x7f00000000c0), 0x0, &(0x7f0000000280)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {}, 0x2c, {[{@nodevmap}]}})
openat(r1, &(0x7f0000000180)='./file1\x00', 0x0, 0x0)

21:22:03 executing program 2:
syz_mount_image$vfat(&(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x0, 0x2, &(0x7f0000000180)=[{&(0x7f0000000140)="eb3c906d6b66732e66617400020801000470008400f801", 0x17}, {0x0, 0x0, 0x1000a00}], 0x0, &(0x7f0000000240)=ANY=[])
chdir(&(0x7f0000000040)='./file0\x00')
r0 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x105142, 0x0)
ioctl$FS_IOC_RESVSP(r0, 0x40305828, &(0x7f0000000040)={0x0, 0x0, 0x0, 0x4000006, 0x0, 0xf60f0000})

21:22:03 executing program 7:
r0 = perf_event_open(&(0x7f0000000040)={0x0, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
io_setup(0x7f, &(0x7f00000002c0)=<r1=>0x0)
io_pgetevents(r1, 0x1, 0x1, &(0x7f0000000000)=[{}], 0x0, 0x0)
io_submit(r1, 0x1, &(0x7f0000000340)=[&(0x7f0000000300)={0x0, 0x0, 0x0, 0x5, 0x0, r0, 0x0}])

21:22:03 executing program 3:
openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x105142, 0x0)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x400}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
pipe(&(0x7f00000001c0)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
mount$9p_fd(0xb00000000000000, &(0x7f0000000040)='./file1\x00', &(0x7f00000000c0), 0x0, &(0x7f0000000280)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {}, 0x2c, {[{@nodevmap}]}})
openat(r1, &(0x7f0000000180)='./file1\x00', 0x0, 0x0)

21:22:03 executing program 1:
openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x105142, 0x0)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
pipe(&(0x7f00000001c0))
mount$9p_fd(0x20000000, &(0x7f0000000040)='./file1\x00', &(0x7f00000000c0), 0x0, &(0x7f0000000280)={'trans=fd,', {}, 0x2c, {}, 0x2c, {[{@nodevmap}]}})

21:22:03 executing program 5:
openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x105142, 0x0)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
pipe(&(0x7f00000001c0)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
mount$9p_fd(0x0, &(0x7f0000000040)='./file1\x00', &(0x7f00000000c0), 0x0, &(0x7f0000000280)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}}) (fail_nth: 53)
openat(0xffffffffffffffff, 0x0, 0x0, 0x0)

21:22:03 executing program 6:
r0 = syz_mount_image$vfat(&(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x0, 0x2, &(0x7f0000000180)=[{&(0x7f0000000140)="eb3c906d6b66732e66617400020801000470008400f801", 0x17}, {0x0, 0x0, 0x1000a00}], 0x0, &(0x7f0000000240)=ANY=[])
chdir(&(0x7f0000000040)='./file0\x00')
openat2(r0, &(0x7f0000000100)='./file0\x00', &(0x7f00000001c0)={0x40000, 0x81}, 0x18)
mount$cgroup(0x0, 0x0, &(0x7f0000000400), 0x0, 0x0)
r1 = syz_io_uring_setup(0x22, &(0x7f0000000680)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000180)=<r2=>0x0, 0x0)
r3 = io_uring_register$IORING_REGISTER_PERSONALITY(r1, 0x9, 0x0, 0x0)
r4 = socket$nl_netfilter(0x10, 0x3, 0xc)
syz_io_uring_submit(r2, 0x0, &(0x7f0000000400)=@IORING_OP_WRITEV={0x2, 0x0, 0x0, @fd=r4, 0x0, 0x0, 0x0, 0x0, 0x0, {0x0, r3}}, 0x0)
r5 = syz_io_uring_setup(0x22, &(0x7f0000000680)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000180), &(0x7f0000002a40))
r6 = io_uring_register$IORING_REGISTER_PERSONALITY(r5, 0x9, 0x0, 0x0)
syz_io_uring_submit(r2, 0x0, &(0x7f0000000440)=@IORING_OP_FSYNC={0x3, 0x2, 0x0, @fd_index=0x9, 0x0, 0x0, 0x0, 0x0, 0x1, {0x0, r6}}, 0x2)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r7 = openat(0xffffffffffffff9c, &(0x7f00000002c0)='./file1\x00', 0x105142, 0x0)
r8 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0)
sendfile(r7, r8, 0x0, 0x100000001)
newfstatat(0xffffffffffffff9c, &(0x7f0000000340)='./file1\x00', &(0x7f0000000380), 0x400)

21:22:03 executing program 2:
syz_mount_image$vfat(&(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x0, 0x2, &(0x7f0000000180)=[{&(0x7f0000000140)="eb3c906d6b66732e66617400020801000470008400f801", 0x17}, {0x0, 0x0, 0x1000a00}], 0x0, &(0x7f0000000240)=ANY=[])
chdir(&(0x7f0000000040)='./file0\x00')
r0 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x105142, 0x0)
ioctl$FS_IOC_RESVSP(r0, 0x40305828, &(0x7f0000000040)={0x0, 0x0, 0x0, 0x4000006, 0x0, 0xfffdffff})

[ 2477.206297] FAULT_INJECTION: forcing a failure.
[ 2477.206297] name failslab, interval 1, probability 0, space 0, times 0
[ 2477.209492] CPU: 0 PID: 21899 Comm: syz-executor.5 Not tainted 5.10.172 #1
[ 2477.211154] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 2477.213173] Call Trace:
[ 2477.213817]  dump_stack+0x107/0x167
[ 2477.214714]  should_fail.cold+0x5/0xa
[ 2477.215758]  ? create_object.isra.0+0x3a/0xa20
[ 2477.216706]  should_failslab+0x5/0x20
[ 2477.217496]  kmem_cache_alloc+0x5b/0x360
[ 2477.218314]  ? mark_held_locks+0x9e/0xe0
[ 2477.219139]  create_object.isra.0+0x3a/0xa20
[ 2477.220024]  kmemleak_alloc_percpu+0xa0/0x100
[ 2477.220929]  pcpu_alloc+0x4e2/0x12f0
[ 2477.221710]  __kmem_cache_create+0x35a/0x520
[ 2477.222601]  kmem_cache_create_usercopy+0x1db/0x2f0
[ 2477.223605]  p9_client_create+0xc2b/0x1090
[ 2477.224467]  ? p9_client_flush+0x430/0x430
[ 2477.225351]  ? lockdep_init_map_type+0x2c7/0x780
21:22:03 executing program 3:
openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x105142, 0x0)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x400}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
pipe(&(0x7f00000001c0)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
mount$9p_fd(0x1000000000000000, &(0x7f0000000040)='./file1\x00', &(0x7f00000000c0), 0x0, &(0x7f0000000280)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {}, 0x2c, {[{@nodevmap}]}})
openat(r1, &(0x7f0000000180)='./file1\x00', 0x0, 0x0)

[ 2477.226304]  ? rcu_read_lock_sched_held+0x3e/0x80
[ 2477.227368]  ? __raw_spin_lock_init+0x36/0x110
[ 2477.228337]  v9fs_session_init+0x1dd/0x16a0
[ 2477.229238]  ? kmem_cache_alloc_trace+0x151/0x360
[ 2477.230209]  ? v9fs_show_options+0x690/0x690
[ 2477.231120]  ? kasan_unpoison_shadow+0x33/0x50
[ 2477.232039]  ? __kasan_kmalloc.constprop.0+0xc9/0xd0
[ 2477.233064]  v9fs_mount+0x79/0x8f0
[ 2477.233803]  ? v9fs_write_inode+0x60/0x60
[ 2477.234636]  legacy_get_tree+0x105/0x220
[ 2477.235463]  vfs_get_tree+0x8e/0x300
[ 2477.236217]  path_mount+0x13be/0x20b0
[ 2477.236988]  ? strncpy_from_user+0x9e/0x470
[ 2477.237860]  ? finish_automount+0xa40/0xa40
[ 2477.238735]  ? getname_flags.part.0+0x1dd/0x4f0
[ 2477.239669]  ? _copy_from_user+0xfb/0x1b0
[ 2477.240523]  __x64_sys_mount+0x282/0x300
[ 2477.241350]  ? copy_mnt_ns+0xa00/0xa00
[ 2477.242133]  ? rcu_read_lock_sched_held+0x3e/0x80
[ 2477.243113]  do_syscall_64+0x33/0x40
[ 2477.243862]  entry_SYSCALL_64_after_hwframe+0x61/0xc6
[ 2477.244900] RIP: 0033:0x7f38308e8b19
[ 2477.245684] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 2477.249398] RSP: 002b:00007f382de5e188 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5
[ 2477.250960] RAX: ffffffffffffffda RBX: 00007f38309fbf60 RCX: 00007f38308e8b19
[ 2477.251682] 9pnet: Insufficient options for proto=fd
[ 2477.252383] RDX: 00000000200000c0 RSI: 0000000020000040 RDI: 0000000000000000
[ 2477.252395] RBP: 00007f382de5e1d0 R08: 0000000020000280 R09: 0000000000000000
[ 2477.252413] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[ 2477.257340] R13: 00007ffca2bf07df R14: 00007f382de5e300 R15: 0000000000022000
[ 2477.277924] udc-core: couldn't find an available UDC or it's busy
[ 2477.279306] misc raw-gadget: fail, usb_gadget_probe_driver returned -19
21:22:22 executing program 4:
openat$vcs(0xffffffffffffff9c, &(0x7f0000000040), 0x0, 0x0)
r0 = syz_io_uring_setup(0x1, &(0x7f0000000280)={0x0, 0x2e3b}, &(0x7f0000ffd000/0x1000)=nil, &(0x7f0000ffc000/0x2000)=nil, &(0x7f00000000c0)=<r1=>0x0, &(0x7f0000000080)=<r2=>0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000040)={<r3=>0xffffffffffffffff})
r4 = socket$inet6_udplite(0xa, 0x2, 0x88)
r5 = dup2(r4, r3)
r6 = openat$sysfs(0xffffffffffffff9c, &(0x7f0000000000)='/sys/power/resume', 0x0, 0x0)
r7 = dup2(r6, r5)
syz_io_uring_submit(r1, r2, &(0x7f0000000200)=@IORING_OP_READ=@pass_buffer={0x16, 0x0, 0x0, @fd=r7, 0x0, &(0x7f0000000240)=""/61, 0x3d, 0x13}, 0x20)
r8 = perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, 0x0, @perf_bp={0x0}, 0x0, 0x0, 0x7}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r9 = dup2(r8, 0xffffffffffffffff)
open_tree(r9, &(0x7f0000000040)='./file0\x00', 0x81000)
sendmsg$NL80211_CMD_JOIN_MESH(r9, &(0x7f00000001c0)={&(0x7f0000000100)={0x10, 0x0, 0x0, 0x8}, 0xc, &(0x7f0000000180)={&(0x7f0000000480)=ANY=[@ANYBLOB='(\x00\x00\x00', @ANYRES16=0x0, @ANYBLOB="0002250900000000000000000800030000003a7fcaea0c93a416a0ec56f6b997aa4e29b9aa8f815a26a938b35b3d2d4493c6b5e1a587fa40eaf1f995767ba1c7a952c2b0cb", @ANYRES32=0x0, @ANYBLOB="a60300090000000000000000"], 0x28}, 0x1, 0x0, 0x0, 0x10}, 0x20000010)
io_uring_enter(r0, 0x1, 0x0, 0x0, 0x0, 0x0)
r10 = socket$inet6_udplite(0xa, 0x2, 0x88)
r11 = dup(r10)
r12 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a)
ioctl$sock_SIOCGIFINDEX(r12, 0x8933, &(0x7f0000000140)={'syz_tun\x00', <r13=>0x0})
ioctl$sock_inet6_SIOCDIFADDR(r11, 0x8936, &(0x7f0000000080)={@local, 0x78, r13})
ioctl$sock_inet6_SIOCDIFADDR(r11, 0x8916, &(0x7f0000000000)={@initdev={0xfe, 0x88, '\x00', 0x0, 0x0}, 0x0, r13})
openat(r11, &(0x7f00000003c0)='./file0/file0\x00', 0x100, 0x1d1)

21:22:22 executing program 7:
r0 = perf_event_open(&(0x7f0000000040)={0x0, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
io_setup(0x7f, &(0x7f00000002c0)=<r1=>0x0)
io_pgetevents(r1, 0x1, 0x1, &(0x7f0000000000)=[{}], 0x0, 0x0)
io_submit(r1, 0x1, &(0x7f0000000340)=[&(0x7f0000000300)={0x0, 0x0, 0x0, 0x5, 0x0, r0, 0x0}])

21:22:22 executing program 5:
openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x105142, 0x0)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
pipe(&(0x7f00000001c0)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
mount$9p_fd(0x0, &(0x7f0000000040)='./file1\x00', &(0x7f00000000c0), 0x0, &(0x7f0000000280)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}}) (fail_nth: 54)
openat(0xffffffffffffffff, 0x0, 0x0, 0x0)

21:22:22 executing program 6:
r0 = syz_mount_image$vfat(&(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x0, 0x2, &(0x7f0000000180)=[{&(0x7f0000000140)="eb3c906d6b66732e66617400020801000470008400f801", 0x17}, {0x0, 0x0, 0x1000a00}], 0x0, &(0x7f0000000240)=ANY=[])
chdir(&(0x7f0000000040)='./file0\x00')
openat2(r0, &(0x7f0000000100)='./file0\x00', &(0x7f00000001c0)={0x40000, 0x81}, 0x18)
mount$cgroup(0x0, 0x0, &(0x7f0000000400), 0x0, 0x0)
r1 = syz_io_uring_setup(0x22, &(0x7f0000000680)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000180)=<r2=>0x0, 0x0)
r3 = io_uring_register$IORING_REGISTER_PERSONALITY(r1, 0x9, 0x0, 0x0)
r4 = socket$nl_netfilter(0x10, 0x3, 0xc)
syz_io_uring_submit(r2, 0x0, &(0x7f0000000400)=@IORING_OP_WRITEV={0x2, 0x0, 0x0, @fd=r4, 0x0, 0x0, 0x0, 0x0, 0x0, {0x0, r3}}, 0x0)
r5 = syz_io_uring_setup(0x22, &(0x7f0000000680)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000180), &(0x7f0000002a40))
r6 = io_uring_register$IORING_REGISTER_PERSONALITY(r5, 0x9, 0x0, 0x0)
syz_io_uring_submit(r2, 0x0, &(0x7f0000000440)=@IORING_OP_FSYNC={0x3, 0x2, 0x0, @fd_index=0x9, 0x0, 0x0, 0x0, 0x0, 0x1, {0x0, r6}}, 0x2)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r7 = openat(0xffffffffffffff9c, &(0x7f00000002c0)='./file1\x00', 0x105142, 0x0)
r8 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0)
sendfile(r7, r8, 0x0, 0x100000001)
newfstatat(0xffffffffffffff9c, &(0x7f0000000340)='./file1\x00', &(0x7f0000000380), 0x400)

21:22:22 executing program 2:
syz_mount_image$vfat(&(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x0, 0x2, &(0x7f0000000180)=[{&(0x7f0000000140)="eb3c906d6b66732e66617400020801000470008400f801", 0x17}, {0x0, 0x0, 0x1000a00}], 0x0, &(0x7f0000000240)=ANY=[])
chdir(&(0x7f0000000040)='./file0\x00')
r0 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x105142, 0x0)
ioctl$FS_IOC_RESVSP(r0, 0x40305828, &(0x7f0000000040)={0x0, 0x0, 0x0, 0x4000006, 0x0, 0xffff0f00})

21:22:22 executing program 0:
syz_mount_image$vfat(&(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x0, 0x2, &(0x7f0000000180)=[{&(0x7f0000000140)="eb3c906d6b66732e66617400020801000470008400f801", 0x17}, {0x0, 0x0, 0x1000a00}], 0x0, &(0x7f0000000240)=ANY=[])
chdir(&(0x7f0000000040)='./file0\x00')
mount$cgroup(0x0, 0x0, &(0x7f0000000400), 0x0, 0x0)
r0 = syz_io_uring_setup(0x22, &(0x7f0000000680)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000180)=<r1=>0x0, &(0x7f0000002a40)=<r2=>0x0)
r3 = io_uring_register$IORING_REGISTER_PERSONALITY(r0, 0x9, 0x0, 0x0)
r4 = socket$nl_netfilter(0x10, 0x3, 0xc)
syz_io_uring_submit(r1, r2, &(0x7f0000000400)=@IORING_OP_WRITEV={0x2, 0x0, 0x0, @fd=r4, 0x0, 0x0, 0x0, 0x0, 0x0, {0x0, r3}}, 0x0)
r5 = syz_io_uring_setup(0x22, &(0x7f0000000680)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000180), 0x0)
r6 = io_uring_register$IORING_REGISTER_PERSONALITY(r5, 0x9, 0x0, 0x0)
syz_io_uring_submit(r1, 0x0, &(0x7f0000000440)=@IORING_OP_FSYNC={0x3, 0x2, 0x0, @fd_index=0x9, 0x0, 0x0, 0x0, 0x0, 0x1, {0x0, r6}}, 0x2)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r7 = openat(0xffffffffffffff9c, &(0x7f00000002c0)='./file1\x00', 0x105142, 0x0)
r8 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0)
mount(&(0x7f0000000200)=ANY=[@ANYBLOB="2f6f651317868af191bdb2"], &(0x7f0000000240)='./file0\x00', &(0x7f0000000280)='nfsd\x00', 0x800000, &(0x7f0000000300)='cgroup\x00')
sendfile(r7, r8, 0x0, 0x100000001)
newfstatat(0xffffffffffffff9c, &(0x7f0000000340)='./file1\x00', &(0x7f0000000380), 0x400)

21:22:22 executing program 3:
openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x105142, 0x0)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x400}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
pipe(&(0x7f00000001c0)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
mount$9p_fd(0x2000000000000000, &(0x7f0000000040)='./file1\x00', &(0x7f00000000c0), 0x0, &(0x7f0000000280)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {}, 0x2c, {[{@nodevmap}]}})
openat(r1, &(0x7f0000000180)='./file1\x00', 0x0, 0x0)

21:22:22 executing program 1:
openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x105142, 0x0)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
pipe(&(0x7f00000001c0))
mount$9p_fd(0x20100000, &(0x7f0000000040)='./file1\x00', &(0x7f00000000c0), 0x0, &(0x7f0000000280)={'trans=fd,', {}, 0x2c, {}, 0x2c, {[{@nodevmap}]}})

[ 2496.101389] FAULT_INJECTION: forcing a failure.
[ 2496.101389] name failslab, interval 1, probability 0, space 0, times 0
[ 2496.103155] CPU: 0 PID: 22037 Comm: syz-executor.5 Not tainted 5.10.172 #1
[ 2496.104034] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 2496.105033] Call Trace:
[ 2496.105363]  dump_stack+0x107/0x167
[ 2496.105841]  should_fail.cold+0x5/0xa
[ 2496.106306]  ? create_object.isra.0+0x3a/0xa20
[ 2496.106756]  should_failslab+0x5/0x20
[ 2496.107139]  kmem_cache_alloc+0x5b/0x360
[ 2496.107548]  create_object.isra.0+0x3a/0xa20
[ 2496.107985]  kmemleak_alloc_percpu+0xa0/0x100
[ 2496.108434]  pcpu_alloc+0x4e2/0x12f0
[ 2496.108813]  __kmem_cache_create+0x35a/0x520
[ 2496.109255]  kmem_cache_create_usercopy+0x1db/0x2f0
[ 2496.109852]  p9_client_create+0xc2b/0x1090
[ 2496.110415]  ? p9_client_flush+0x430/0x430
[ 2496.110952]  ? lockdep_init_map_type+0x2c7/0x780
[ 2496.111576]  ? rcu_read_lock_sched_held+0x3e/0x80
[ 2496.112241]  ? __raw_spin_lock_init+0x36/0x110
[ 2496.112862]  v9fs_session_init+0x1dd/0x16a0
[ 2496.113425]  ? irqentry_enter+0x26/0x60
[ 2496.113974]  ? v9fs_show_options+0x690/0x690
[ 2496.114564]  ? lockdep_hardirqs_on_prepare+0x277/0x3e0
[ 2496.115224]  ? asm_sysvec_apic_timer_interrupt+0x12/0x20
[ 2496.115932]  ? trace_hardirqs_on+0x5b/0x180
[ 2496.116490]  ? asm_sysvec_apic_timer_interrupt+0x12/0x20
[ 2496.117231]  v9fs_mount+0x79/0x8f0
[ 2496.117742]  ? v9fs_write_inode+0x60/0x60
[ 2496.118285]  legacy_get_tree+0x105/0x220
[ 2496.118307]  vfs_get_tree+0x8e/0x300
[ 2496.118323]  path_mount+0x13be/0x20b0
[ 2496.118344]  ? strncpy_from_user+0x9e/0x470
[ 2496.118360]  ? finish_automount+0xa40/0xa40
[ 2496.118378]  ? getname_flags.part.0+0x1dd/0x4f0
21:22:22 executing program 3:
openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x105142, 0x0)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x400}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
pipe(&(0x7f00000001c0)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
mount$9p_fd(0x2010000000000000, &(0x7f0000000040)='./file1\x00', &(0x7f00000000c0), 0x0, &(0x7f0000000280)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {}, 0x2c, {[{@nodevmap}]}})
openat(r1, &(0x7f0000000180)='./file1\x00', 0x0, 0x0)

[ 2496.118391]  ? _copy_from_user+0xfb/0x1b0
[ 2496.118416]  __x64_sys_mount+0x282/0x300
[ 2496.118432]  ? copy_mnt_ns+0xa00/0xa00
[ 2496.118453]  ? rcu_read_lock_sched_held+0x3e/0x80
[ 2496.118473]  do_syscall_64+0x33/0x40
[ 2496.118487]  entry_SYSCALL_64_after_hwframe+0x61/0xc6
21:22:22 executing program 1:
openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x105142, 0x0)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
pipe(&(0x7f00000001c0))
mount$9p_fd(0x8cffffff, &(0x7f0000000040)='./file1\x00', &(0x7f00000000c0), 0x0, &(0x7f0000000280)={'trans=fd,', {}, 0x2c, {}, 0x2c, {[{@nodevmap}]}})

[ 2496.118496] RIP: 0033:0x7f38308e8b19
[ 2496.118510] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 2496.118518] RSP: 002b:00007f382de5e188 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5
[ 2496.118536] RAX: ffffffffffffffda RBX: 00007f38309fbf60 RCX: 00007f38308e8b19
[ 2496.118546] RDX: 00000000200000c0 RSI: 0000000020000040 RDI: 0000000000000000
[ 2496.118554] RBP: 00007f382de5e1d0 R08: 0000000020000280 R09: 0000000000000000
[ 2496.118561] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
21:22:22 executing program 2:
syz_mount_image$vfat(&(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x0, 0x2, &(0x7f0000000180)=[{&(0x7f0000000140)="eb3c906d6b66732e66617400020801000470008400f801", 0x17}, {0x0, 0x0, 0x1000a00}], 0x0, &(0x7f0000000240)=ANY=[])
chdir(&(0x7f0000000040)='./file0\x00')
r0 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x105142, 0x0)
ioctl$FS_IOC_RESVSP(r0, 0x40305828, &(0x7f0000000040)={0x0, 0x0, 0x0, 0x4000006, 0x0, 0xfffffdff})

21:22:22 executing program 1:
openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x105142, 0x0)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
pipe(&(0x7f00000001c0))
mount$9p_fd(0xc0ed0000, &(0x7f0000000040)='./file1\x00', &(0x7f00000000c0), 0x0, &(0x7f0000000280)={'trans=fd,', {}, 0x2c, {}, 0x2c, {[{@nodevmap}]}})

[ 2496.118568] R13: 00007ffca2bf07df R14: 00007f382de5e300 R15: 0000000000022000
[ 2496.121419] 9pnet: Insufficient options for proto=fd
21:22:22 executing program 3:
openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x105142, 0x0)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x400}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
pipe(&(0x7f00000001c0)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
mount$9p_fd(0x8cffffff00000000, &(0x7f0000000040)='./file1\x00', &(0x7f00000000c0), 0x0, &(0x7f0000000280)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {}, 0x2c, {[{@nodevmap}]}})
openat(r1, &(0x7f0000000180)='./file1\x00', 0x0, 0x0)

21:22:40 executing program 7:
r0 = perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
io_setup(0x7f, &(0x7f00000002c0)=<r1=>0x0)
io_pgetevents(r1, 0x1, 0x1, &(0x7f0000000000)=[{}], 0x0, 0x0)
io_submit(r1, 0x1, &(0x7f0000000340)=[&(0x7f0000000300)={0x0, 0x0, 0x0, 0x5, 0x0, r0, 0x0}])

21:22:40 executing program 0:
syz_mount_image$vfat(&(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x0, 0x2, &(0x7f0000000180)=[{&(0x7f0000000140)="eb3c906d6b66732e66617400020801000470008400f801", 0x17}, {0x0, 0x0, 0x1000a00}], 0x0, &(0x7f0000000240)=ANY=[])
chdir(&(0x7f0000000040)='./file0\x00')
mount$cgroup(0x0, 0x0, &(0x7f0000000400), 0x0, 0x0)
r0 = syz_io_uring_setup(0x22, &(0x7f0000000680)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000180)=<r1=>0x0, &(0x7f0000002a40)=<r2=>0x0)
r3 = io_uring_register$IORING_REGISTER_PERSONALITY(r0, 0x9, 0x0, 0x0)
r4 = socket$nl_netfilter(0x10, 0x3, 0xc)
syz_io_uring_submit(r1, r2, &(0x7f0000000400)=@IORING_OP_WRITEV={0x2, 0x0, 0x0, @fd=r4, 0x0, 0x0, 0x0, 0x0, 0x0, {0x0, r3}}, 0x0)
r5 = syz_io_uring_setup(0x22, &(0x7f0000000680)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000180), 0x0)
r6 = io_uring_register$IORING_REGISTER_PERSONALITY(r5, 0x9, 0x0, 0x0)
syz_io_uring_submit(r1, 0x0, &(0x7f0000000440)=@IORING_OP_FSYNC={0x3, 0x2, 0x0, @fd_index=0x9, 0x0, 0x0, 0x0, 0x0, 0x1, {0x0, r6}}, 0x2)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r7 = openat(0xffffffffffffff9c, &(0x7f00000002c0)='./file1\x00', 0x105142, 0x0)
r8 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0)
mount(&(0x7f0000000200)=ANY=[@ANYBLOB="2f6f651317868af191bdb2"], &(0x7f0000000240)='./file0\x00', &(0x7f0000000280)='nfsd\x00', 0x800000, &(0x7f0000000300)='cgroup\x00')
sendfile(r7, r8, 0x0, 0x100000001)
newfstatat(0xffffffffffffff9c, &(0x7f0000000340)='./file1\x00', &(0x7f0000000380), 0x400)

21:22:40 executing program 3:
openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x105142, 0x0)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x400}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
pipe(&(0x7f00000001c0)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
mount$9p_fd(0xf6ffffff00000000, &(0x7f0000000040)='./file1\x00', &(0x7f00000000c0), 0x0, &(0x7f0000000280)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {}, 0x2c, {[{@nodevmap}]}})
openat(r1, &(0x7f0000000180)='./file1\x00', 0x0, 0x0)

21:22:40 executing program 2:
syz_mount_image$vfat(&(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x0, 0x2, &(0x7f0000000180)=[{&(0x7f0000000140)="eb3c906d6b66732e66617400020801000470008400f801", 0x17}, {0x0, 0x0, 0x1000a00}], 0x0, &(0x7f0000000240)=ANY=[])
chdir(&(0x7f0000000040)='./file0\x00')
r0 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x105142, 0x0)
ioctl$FS_IOC_RESVSP(r0, 0x40305828, &(0x7f0000000040)={0x0, 0x0, 0x0, 0x4000006, 0x0, 0xffffff0f})

21:22:40 executing program 4:
openat$vcs(0xffffffffffffff9c, &(0x7f0000000040), 0x0, 0x0)
openat$sr(0xffffffffffffff9c, &(0x7f00000035c0), 0x0, 0x0)
openat$sr(0xffffffffffffff9c, &(0x7f00000000c0), 0x3a5082, 0x0)
openat$rtc(0xffffffffffffff9c, &(0x7f0000000200), 0x0, 0x0)
pipe(&(0x7f00000001c0))
open(&(0x7f00000016c0)='./cgroup.net/cgroup.procs\x00', 0x0, 0x0)
pselect6(0x40, &(0x7f0000000180), &(0x7f00000001c0)={0x3fc}, 0x0, 0x0, 0x0)

21:22:40 executing program 6:
r0 = syz_mount_image$vfat(&(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x0, 0x2, &(0x7f0000000180)=[{&(0x7f0000000140)="eb3c906d6b66732e66617400020801000470008400f801", 0x17}, {0x0, 0x0, 0x1000a00}], 0x0, &(0x7f0000000240)=ANY=[])
chdir(&(0x7f0000000040)='./file0\x00')
openat2(r0, &(0x7f0000000100)='./file0\x00', &(0x7f00000001c0)={0x40000, 0x81}, 0x18)
mount$cgroup(0x0, 0x0, &(0x7f0000000400), 0x0, 0x0)
syz_io_uring_setup(0x22, &(0x7f0000000680)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000180)=<r1=>0x0, &(0x7f0000002a40)=<r2=>0x0)
r3 = io_uring_register$IORING_REGISTER_PERSONALITY(0xffffffffffffffff, 0x9, 0x0, 0x0)
r4 = socket$nl_netfilter(0x10, 0x3, 0xc)
syz_io_uring_submit(r1, r2, &(0x7f0000000400)=@IORING_OP_WRITEV={0x2, 0x0, 0x0, @fd=r4, 0x0, 0x0, 0x0, 0x0, 0x0, {0x0, r3}}, 0x0)
r5 = syz_io_uring_setup(0x22, &(0x7f0000000680)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000180), &(0x7f0000002a40))
r6 = io_uring_register$IORING_REGISTER_PERSONALITY(r5, 0x9, 0x0, 0x0)
syz_io_uring_submit(r1, 0x0, &(0x7f0000000440)=@IORING_OP_FSYNC={0x3, 0x2, 0x0, @fd_index=0x9, 0x0, 0x0, 0x0, 0x0, 0x1, {0x0, r6}}, 0x2)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r7 = openat(0xffffffffffffff9c, &(0x7f00000002c0)='./file1\x00', 0x105142, 0x0)
r8 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0)
sendfile(r7, r8, 0x0, 0x100000001)
newfstatat(0xffffffffffffff9c, &(0x7f0000000340)='./file1\x00', &(0x7f0000000380), 0x400)

21:22:40 executing program 5:
openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x105142, 0x0)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
pipe(&(0x7f00000001c0)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
mount$9p_fd(0x0, &(0x7f0000000040)='./file1\x00', &(0x7f00000000c0), 0x0, &(0x7f0000000280)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}}) (fail_nth: 55)
openat(0xffffffffffffffff, 0x0, 0x0, 0x0)

21:22:40 executing program 1:
openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x105142, 0x0)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
pipe(&(0x7f00000001c0))
mount$9p_fd(0xf6ffffff, &(0x7f0000000040)='./file1\x00', &(0x7f00000000c0), 0x0, &(0x7f0000000280)={'trans=fd,', {}, 0x2c, {}, 0x2c, {[{@nodevmap}]}})

[ 2514.478945] FAULT_INJECTION: forcing a failure.
[ 2514.478945] name failslab, interval 1, probability 0, space 0, times 0
[ 2514.480551] CPU: 1 PID: 22389 Comm: syz-executor.5 Not tainted 5.10.172 #1
[ 2514.481415] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 2514.482497] Call Trace:
[ 2514.482846]  dump_stack+0x107/0x167
[ 2514.483324]  should_fail.cold+0x5/0xa
[ 2514.483813]  ? __kernfs_new_node+0xd4/0x850
[ 2514.484367]  should_failslab+0x5/0x20
[ 2514.484858]  kmem_cache_alloc+0x5b/0x360
[ 2514.485389]  __kernfs_new_node+0xd4/0x850
[ 2514.485963]  ? kernfs_dop_revalidate+0x3a0/0x3a0
[ 2514.486632]  ? kernfs_next_descendant_post+0x1a7/0x2a0
[ 2514.487376]  ? mark_held_locks+0x9e/0xe0
[ 2514.487922]  ? lockdep_hardirqs_on_prepare+0x277/0x3e0
[ 2514.488622]  ? asm_sysvec_apic_timer_interrupt+0x12/0x20
[ 2514.489421]  kernfs_new_node+0x93/0x120
[ 2514.490004]  __kernfs_create_file+0x51/0x350
[ 2514.490596]  sysfs_add_file_mode_ns+0x221/0x560
[ 2514.491218]  internal_create_group+0x324/0xb30
[ 2514.491829]  ? sysfs_remove_group+0x170/0x170
[ 2514.492418]  ? kernfs_name_hash+0xe7/0x110
[ 2514.492981]  ? kernfs_find_ns+0x256/0x380
[ 2514.493534]  sysfs_slab_add+0x188/0x200
[ 2514.494099]  __kmem_cache_create+0x3db/0x520
[ 2514.494663]  kmem_cache_create_usercopy+0x1db/0x2f0
[ 2514.495306]  p9_client_create+0xc2b/0x1090
[ 2514.495946]  ? p9_client_flush+0x430/0x430
[ 2514.496583]  ? lockdep_init_map_type+0x2c7/0x780
[ 2514.497286]  ? rcu_read_lock_sched_held+0x3e/0x80
[ 2514.497980]  ? __raw_spin_lock_init+0x36/0x110
[ 2514.498607]  v9fs_session_init+0x1dd/0x16a0
[ 2514.499610]  ? irqentry_enter+0x26/0x60
[ 2514.500728]  ? asm_sysvec_apic_timer_interrupt+0x12/0x20
[ 2514.502250]  ? trace_hardirqs_on+0x5b/0x180
[ 2514.503621]  ? v9fs_show_options+0x690/0x690
[ 2514.504823]  ? kasan_unpoison_shadow+0x33/0x50
[ 2514.506096]  ? __kasan_kmalloc.constprop.0+0xc9/0xd0
[ 2514.507462]  v9fs_mount+0x79/0x8f0
[ 2514.508142]  ? v9fs_write_inode+0x60/0x60
[ 2514.508673]  legacy_get_tree+0x105/0x220
[ 2514.509627]  ? path_mount+0x13b6/0x20b0
[ 2514.510687]  vfs_get_tree+0x8e/0x300
[ 2514.511735]  path_mount+0x13be/0x20b0
[ 2514.512801]  ? strncpy_from_user+0x9e/0x470
[ 2514.513832]  ? finish_automount+0xa40/0xa40
[ 2514.514392]  ? getname_flags.part.0+0x1dd/0x4f0
[ 2514.515175]  ? _copy_from_user+0xfb/0x1b0
[ 2514.516237]  __x64_sys_mount+0x282/0x300
[ 2514.517262]  ? copy_mnt_ns+0xa00/0xa00
[ 2514.518247]  ? rcu_read_lock_sched_held+0x3e/0x80
[ 2514.519367]  do_syscall_64+0x33/0x40
[ 2514.520063]  entry_SYSCALL_64_after_hwframe+0x61/0xc6
[ 2514.521503] RIP: 0033:0x7f38308e8b19
[ 2514.522067] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 2514.527121] RSP: 002b:00007f382de5e188 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5
[ 2514.528922] RAX: ffffffffffffffda RBX: 00007f38309fbf60 RCX: 00007f38308e8b19
[ 2514.530561] RDX: 00000000200000c0 RSI: 0000000020000040 RDI: 0000000000000000
[ 2514.532122] RBP: 00007f382de5e1d0 R08: 0000000020000280 R09: 0000000000000000
[ 2514.533664] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[ 2514.535775] R13: 00007ffca2bf07df R14: 00007f382de5e300 R15: 0000000000022000
21:22:41 executing program 1:
openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x105142, 0x0)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
pipe(&(0x7f00000001c0))
mount$9p_fd(0xffffff8c, &(0x7f0000000040)='./file1\x00', &(0x7f00000000c0), 0x0, &(0x7f0000000280)={'trans=fd,', {}, 0x2c, {}, 0x2c, {[{@nodevmap}]}})

21:22:41 executing program 3:
openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x105142, 0x0)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x400}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
pipe(&(0x7f00000001c0)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
mount$9p_fd(0x0, &(0x7f0000000040)='./file1\x00', &(0x7f00000000c0), 0x2, &(0x7f0000000280)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {}, 0x2c, {[{@nodevmap}]}})
openat(r1, &(0x7f0000000180)='./file1\x00', 0x0, 0x0)

21:22:41 executing program 2:
syz_mount_image$vfat(&(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x0, 0x2, &(0x7f0000000180)=[{&(0x7f0000000140)="eb3c906d6b66732e66617400020801000470008400f801", 0x17}, {0x0, 0x0, 0x1000a00}], 0x0, &(0x7f0000000240)=ANY=[])
chdir(&(0x7f0000000040)='./file0\x00')
r0 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x105142, 0x0)
ioctl$FS_IOC_RESVSP(r0, 0x40305828, &(0x7f0000000040)={0x0, 0x0, 0x0, 0x4000006, 0x0, 0xfffffff5})

[ 2514.612766] 9pnet: Insufficient options for proto=fd
[ 2514.617936] 9pnet: Insufficient options for proto=fd
21:22:41 executing program 3:
openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x105142, 0x0)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x400}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
pipe(&(0x7f00000001c0)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
mount$9p_fd(0x0, &(0x7f0000000040)='./file1\x00', &(0x7f00000000c0), 0x3, &(0x7f0000000280)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {}, 0x2c, {[{@nodevmap}]}})
openat(r1, &(0x7f0000000180)='./file1\x00', 0x0, 0x0)

[ 2514.680346] 9pnet: Insufficient options for proto=fd
[ 2514.721087] 9pnet: Insufficient options for proto=fd
[ 2514.768899] kmem_cache_create(9p-fcall-cache) failed with error -12
[ 2514.770204] CPU: 0 PID: 22389 Comm: syz-executor.5 Not tainted 5.10.172 #1
[ 2514.771054] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 2514.772070] Call Trace:
[ 2514.772409]  dump_stack+0x107/0x167
[ 2514.772868]  kmem_cache_create_usercopy.cold+0x17/0x65
[ 2514.773524]  p9_client_create+0xc2b/0x1090
[ 2514.774084]  ? p9_client_flush+0x430/0x430
[ 2514.774622]  ? lockdep_init_map_type+0x2c7/0x780
[ 2514.775211]  ? rcu_read_lock_sched_held+0x3e/0x80
[ 2514.775818]  ? __raw_spin_lock_init+0x36/0x110
[ 2514.776390]  v9fs_session_init+0x1dd/0x16a0
[ 2514.776924]  ? irqentry_enter+0x26/0x60
[ 2514.777424]  ? asm_sysvec_apic_timer_interrupt+0x12/0x20
[ 2514.778152]  ? trace_hardirqs_on+0x5b/0x180
[ 2514.778686]  ? v9fs_show_options+0x690/0x690
[ 2514.779249]  ? kasan_unpoison_shadow+0x33/0x50
[ 2514.779812]  ? __kasan_kmalloc.constprop.0+0xc9/0xd0
[ 2514.780438]  v9fs_mount+0x79/0x8f0
[ 2514.780889]  ? v9fs_write_inode+0x60/0x60
[ 2514.781442]  legacy_get_tree+0x105/0x220
[ 2514.781966]  ? path_mount+0x13b6/0x20b0
[ 2514.782463]  vfs_get_tree+0x8e/0x300
[ 2514.782932]  path_mount+0x13be/0x20b0
[ 2514.783411]  ? strncpy_from_user+0x9e/0x470
[ 2514.783946]  ? finish_automount+0xa40/0xa40
[ 2514.784481]  ? getname_flags.part.0+0x1dd/0x4f0
[ 2514.785053]  ? _copy_from_user+0xfb/0x1b0
[ 2514.785578]  __x64_sys_mount+0x282/0x300
[ 2514.786135]  ? copy_mnt_ns+0xa00/0xa00
[ 2514.786623]  ? rcu_read_lock_sched_held+0x3e/0x80
[ 2514.787222]  do_syscall_64+0x33/0x40
[ 2514.787687]  entry_SYSCALL_64_after_hwframe+0x61/0xc6
[ 2514.788319] RIP: 0033:0x7f38308e8b19
[ 2514.788787] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 2514.791105] RSP: 002b:00007f382de5e188 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5
[ 2514.792052] RAX: ffffffffffffffda RBX: 00007f38309fbf60 RCX: 00007f38308e8b19
[ 2514.792934] RDX: 00000000200000c0 RSI: 0000000020000040 RDI: 0000000000000000
[ 2514.794524] RBP: 00007f382de5e1d0 R08: 0000000020000280 R09: 0000000000000000
[ 2514.795403] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[ 2514.796405] R13: 00007ffca2bf07df R14: 00007f382de5e300 R15: 0000000000022000
21:22:41 executing program 4:
r0 = openat$vcs(0xffffffffffffff9c, &(0x7f0000000040), 0x0, 0x0)
r1 = openat$sr(0xffffffffffffff9c, &(0x7f00000035c0), 0x0, 0x0)
r2 = openat$sr(0xffffffffffffff9c, &(0x7f00000000c0), 0x224400, 0x0)
r3 = perf_event_open(&(0x7f0000001d80)={0x2, 0x80, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
mmap(&(0x7f0000ffc000/0x2000)=nil, 0x2000, 0x0, 0x13, r3, 0x0)
perf_event_open(&(0x7f0000001d80)={0x2, 0x80, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, r3, 0x2)
r4 = syz_open_dev$mouse(&(0x7f0000000100), 0x80000001, 0x600)
syz_genetlink_get_family_id$devlink(&(0x7f0000002240), 0xffffffffffffffff)
r5 = eventfd2(0x100, 0xdb94560cb28dcec6)
pipe(&(0x7f00000001c0)={<r6=>0xffffffffffffffff, <r7=>0xffffffffffffffff})
mount$9p_fd(0x0, &(0x7f0000002280)='./file0\x00', &(0x7f00000000c0), 0x0, &(0x7f00000021c0)={'trans=fd,', {'rfdno', 0x3d, r6}, 0x2c, {'wfdno', 0x3d, r7}, 0x2c, {[{@nodevmap}, {@posixacl}]}})
r8 = openat$sysfs(0xffffffffffffff9c, &(0x7f0000001540)='/sys/module/i8042', 0x840, 0x164)
r9 = syz_init_net_socket$802154_dgram(0x24, 0x2, 0x0)
socket$inet6_tcp(0xa, 0x1, 0x0)
r10 = syz_mount_image$iso9660(&(0x7f0000001700), &(0x7f0000001740)='./file0\x00', 0xd06, 0x8, &(0x7f0000001e80)=[{&(0x7f0000001780)="63982b8a945edb217b8006e8f96b6aa700b6c86d0fdc8e8a7a114ac1b483f6f7aa452ea89942205c77436da8a0f103c650ebe3416f0bddf77fcb76ae65734ff13556e778bd5012af207c9b04bf5280060f8b3bab978991ff1bdc2d750df18cc3182a7d630c2dd9ff3450b8ba970039f297639bd5cc686ccfa87cfdd1cc49ee08bcaa254d571967dbe3cba5fd5521134e1b2ee2c88ad6f225c19790f183", 0x9d, 0x10000}, {&(0x7f0000001840)="0632daefc8a07711f515d2aa4a9b07ec59c7649469ea9c63d3cc5309e89bdae9b84e00a1c6158c8371625e9d2b74338657e3c7f192ade24a2b56240a1750f8672020538c30f0a05ec72a6698978e067e77682dda234cdedba1c9ddb131f9f3cfad4a50f7809203b057cde5b56250189b6bfdb745427edb993ddc0be9dc9b195333d5c9859151f6d8689d0f82ea915a1a78e3d9e3a68f0f699865ee21ee72cd301ae3942b91ca695e10b5d997273971ce6779de95ac69f411be1761350f5ec606b42fd0bca70779f1585d8f75d731563f", 0xd0, 0x7}, {&(0x7f0000001940)="9cf1c900bda71bca275f3e9dd69e145e295f45efb2ff662f9e77888cf91e48e4c662e72f6637b3a71f572294eb1ba8d29f6042491653653329df4aaade1c113e22883fb66291219c9b8ed8cc84c988d7b3b920706039f32fd88a90db6092eb85ae691df6a6f8d7f998d8bab991ae409b63aef0d40a56af5c93c0d6028ea1998db4b8ccc7943345ca627fb50e5321f04d5f54d36fffbe048dfbb1f7db58cd3d17e226ae64f260ab7b06255d5ee840162dcf5cb380be73fa4a4423c66393663511e168da711cb3bc6662a001b08288f96c7ae2a0198281a543c687971cef5dbd3456", 0xe1, 0x10001}, {&(0x7f0000001a40)="e3f9e47da5d45fb8bfcd2aa31e3a55902e411a7e5c8b70e803a2be1d7074769b8ab728863e04e46242b5e4fe1627a71fdf0913850388ad1b949cd72bbcb7414e980427fddd9a65cc72736b12ce3c381f72ffc261289a5f62786cc6795f920c29149b6398b31178151fa351385d8a096a3655ca5695d2c6bb75ca96ae910d96b36d5b805de70c98fd844cd96e83aeecbe9a52498232001672a84962f6707f63c69ac6cb2f18aa83ca8b76122f3b312329e34a783ebd53212ba8dd589a98ee464ab198a16d59c18845854b90669431d3eaec4ef0952360582680be970f6c626a64765293840794d90bce7309aaba3adecb", 0xf0, 0xfa}, {&(0x7f0000001b40)="514a7c7575f110d88f9d81606e8b23e12ab0553a57034ba7283c63593e123cc4a9aac6bc716d2a5ab4d36b7434f30ef8858d50788bed5a756d5eb895a79c495163a356cb47418ab30b9adeee629963f42cc3119c8b1eba2d2eb190f2ef597c2ea882c9d8d5f168ef2fa6cadb19f3bcf2ed44f8d09fa580e4f239767950024116dd4a6c0285e947070df3deb4be310bab27cafddd30841f3f6779c942ae6f802cea848c16a3050f52866df255d16058bbbe9cc7299a5fad7079e2dc6e3b33c380", 0xc0, 0x1}, {&(0x7f0000001c00)="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", 0xfc, 0x80000001}, {&(0x7f0000001d00)="e6505366d12665bdd441f651c0bea8d3db2c820c32b7a8596024e631a67012988c06aff3149ac8164ceaa5e0ed012f3147f8b7925d8184c6cfc5bd0732350cd79586d81ce592e28098469ddd535fbc173ef2d1bf0c5aa83d4fbbd8818d9eb69d22881985193a1e8da42b69b09a268bb3e94f1b84539389077b660b862172229d56626a4189bff38495a6f9cbddc75d2b34554a8ead505abd8aa3a7684524c9c69d684037614e88d7ad35232af1750695778e6cc2f41f08127158c0d47d752337495afb7bec0183405aa1b09d96c50d1e17a803a89a51a7a8d53458d4ebf9825900c5cef26a95ef11d3d9ab4bd5f7", 0xee, 0x7}, {&(0x7f0000001e00)="61d528bbb8b1a8b4dec3af807026c7087a089b00b7a766814a8be6f1286630b03e28eba71c4804449f726705e7d8aad63094d8de80644eab6fb2c1080c339a77a1b16b1c5b3d2b4de05601929fb4752f25aa1f257c3636ea0fa3470a5907c624185eb93f943d05f054752c24808edad658241ab526e1ea", 0x77, 0x9}], 0xedff45c914d68e4c, &(0x7f00000022c0)=ANY=[@ANYBLOB='block=0x0000000000000800,nocompress,norock,block=0x0000000000000800,mask=^MAY_READ,dont_appraise,fowner>', @ANYRESDEC=0x0, @ANYBLOB=',smackfsroot=/dev/sr0\x00,smackfstransmute=/dev/vcs\x00,euid>', @ANYRESDEC=0xee00, @ANYBLOB="2c736d61636b667f7472616e736d7574653d2f6465762f766373002c66736d616769633d3078303030303030303030303030303030322c7375626a5f757365723d2e273a2d2c004de7c4004786251b65c2171a5fcb58cc56dc06d47a86b8221626d616644739aa88"])
io_submit(0x0, 0x8, &(0x7f0000002180)=[&(0x7f0000000080)={0x0, 0x0, 0x0, 0x0, 0xffff, 0xffffffffffffffff, &(0x7f0000000000)="35921a91741e4e4f015ad8", 0xb, 0x80000001, 0x0, 0x1}, &(0x7f0000000140)={0x0, 0x0, 0x0, 0x5, 0xe8, r3, &(0x7f0000000240)="4ae2a71070ec38885f755a99cf185698b0212cabb135dbb40f64ae239d3d5ca627284217a3c7b1dfa0fd0eef9b1cddd84aa9c67473b163f899f38a9e87fe1e222e0463f7d790bc3fb85a501bee32b6efd9769544eb26fd371ff25866cdfbd790eb29ddb2a6293d8ab9263633e5038a8025e3b833edd013f477ee7ec5af4b75459d5b6d9bc703671b38", 0x89, 0xfe00000, 0x0, 0x1, r4}, &(0x7f0000001300)={0x0, 0x0, 0x0, 0x6, 0x6, 0xffffffffffffffff, &(0x7f0000000300)="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", 0x1000, 0x1, 0x0, 0x1, r5}, &(0x7f0000001440)={0x0, 0x0, 0x0, 0x2, 0x3, r0, &(0x7f0000001340)="4fc4e1d69a0d1b5bb65c1391c99cf28e2fb9586d57a7445e1c9902db342075c707cb30503e6330544f9d760342dce8a659e236a3abc974eb70894c775d2d6004ff73da2df4614f92d77e84bcf3e438b03c606852e14a1e26eac60a6f641642de9895743adc86d66824096943d0d93afe56dce1940af912573750778dec9866a30218e7ae341759329976744d17fc9ba9fc72c3796f4afde31d9a2568bcda198e1058c91f6c7a556fabf22d10526a5c6cb5b2e033f5d28b7e863c12816ec537905bfebe65a92727ebeb1902a62760834370f72eef203def0eaa6c59aa", 0xdc, 0x1ff, 0x0, 0x0, r7}, &(0x7f0000001580)={0x0, 0x0, 0x0, 0x0, 0x3, r2, &(0x7f0000001480)="2c35824e812f2a6dc06e34bb27c6108d8d95921005ce38fa978138e66563a8580077a6ae6d6d3e1d6b6356c3c45496d24cdad74279cc1524461f58350db6c6ec83e8469468883d2cf63eff317ce6777c626194739d6e4971f583f9a226bfba073fd526c382d5aba15fa75156a33988c45e64a97c659319dc51fa7a4738d284ede04752c9248e070c2195c9c178f3a0d27264e826d2ab4456473f0b7f063423e4a618", 0xa2, 0x8, 0x0, 0x2, r8}, &(0x7f0000001680)={0x0, 0x0, 0x0, 0x8, 0x401, r9, &(0x7f00000015c0)="f233e59abba94c592605f08f0d254380f45af6d1cd2e21168c5c1556e7f55441e1465e20b01652a3e67041d4e04a08d0df9480306e2a8318e11ba0c73a1cfbd6470f0f4377042d489daa764aa090e6d60093a17f0520341eec17554ca40d300b93fea1d78d5ff0247022e5ac94475bab84645262d5c9bdaeed8163c57de64b980c9b58b6e23b14689c145a049c2e9aad3b5b013ea62647cc01807931a5220dd39308e1499007d5bd84df7656970caa492bed89f2", 0xb4, 0x5, 0x0, 0x3}, &(0x7f00000020c0)={0x0, 0x0, 0x0, 0x0, 0x2000, r10, &(0x7f0000002080)="3e4bf0df983009a7a5e6aeef86f379d417d90fb536b85e6c49aba893edeb1da9540bd78ee3ea3a77aedcfa3d430bc7b8", 0x30, 0x5, 0x0, 0x2}, &(0x7f0000002140)={0x0, 0x0, 0x0, 0x7, 0x8000, r1, &(0x7f0000002100)="0fb176cfd7d3bee64fd630efb4dff8c4ea99361f610c11d2d28f706c63973b06d441cc8e5cfd5de5b456fba4cbb303d35a3ce901", 0x34, 0x809, 0x0, 0x1}])
openat$rtc(0xffffffffffffff9c, &(0x7f0000000200), 0x10002, 0x0)
pipe(&(0x7f00000001c0))
open(&(0x7f00000016c0)='./cgroup.net/cgroup.procs\x00', 0x0, 0x0)
pselect6(0x40, &(0x7f0000000180), &(0x7f00000001c0)={0x3fc}, 0x0, 0x0, 0x0)

[ 2514.859432] 9pnet: Insufficient options for proto=fd
21:22:41 executing program 3:
openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x105142, 0x0)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x400}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
pipe(&(0x7f00000001c0)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
mount$9p_fd(0x0, &(0x7f0000000040)='./file1\x00', &(0x7f00000000c0), 0x4, &(0x7f0000000280)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {}, 0x2c, {[{@nodevmap}]}})
openat(r1, &(0x7f0000000180)='./file1\x00', 0x0, 0x0)

[ 2514.863473] 9pnet: Insufficient options for proto=fd
21:22:59 executing program 7:
r0 = perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
io_setup(0x7f, &(0x7f00000002c0)=<r1=>0x0)
io_pgetevents(r1, 0x1, 0x1, &(0x7f0000000000)=[{}], 0x0, 0x0)
io_submit(r1, 0x1, &(0x7f0000000340)=[&(0x7f0000000300)={0x0, 0x0, 0x0, 0x5, 0x0, r0, 0x0}])

21:22:59 executing program 4:
openat$vcs(0xffffffffffffff9c, &(0x7f0000000040), 0x0, 0x0)
r0 = syz_init_net_socket$802154_dgram(0x24, 0x2, 0x0)
sync_file_range(r0, 0x4, 0x800, 0x0)
r1 = openat$rfkill(0xffffffffffffff9c, &(0x7f0000000000), 0x2000, 0x0)
dup(r1)
openat$sr(0xffffffffffffff9c, &(0x7f00000035c0), 0x0, 0x0)
openat$sr(0xffffffffffffff9c, &(0x7f00000000c0), 0x224400, 0x0)
openat$rtc(0xffffffffffffff9c, &(0x7f0000000200), 0x0, 0x0)
pipe(&(0x7f00000001c0))
r2 = open(&(0x7f00000016c0)='./cgroup.net/cgroup.procs\x00', 0x0, 0x0)
r3 = perf_event_open(&(0x7f0000001d80)={0x2, 0x80, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
mmap(&(0x7f0000ffc000/0x2000)=nil, 0x2000, 0x0, 0x13, r3, 0x0)
perf_event_open(&(0x7f0000001d80)={0x2, 0x80, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, r3, 0x2)
r4 = signalfd4(r2, &(0x7f0000000080)={[0x4]}, 0x8, 0x800)
dup(r4)
dup(r3)
pselect6(0x40, &(0x7f0000000180), &(0x7f00000001c0)={0x3fc}, 0x0, 0x0, 0x0)

21:22:59 executing program 0:
syz_mount_image$vfat(&(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x0, 0x2, &(0x7f0000000180)=[{&(0x7f0000000140)="eb3c906d6b66732e66617400020801000470008400f801", 0x17}, {0x0, 0x0, 0x1000a00}], 0x0, &(0x7f0000000240)=ANY=[])
chdir(&(0x7f0000000040)='./file0\x00')
mount$cgroup(0x0, 0x0, &(0x7f0000000400), 0x0, 0x0)
r0 = syz_io_uring_setup(0x22, &(0x7f0000000680)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000180)=<r1=>0x0, &(0x7f0000002a40)=<r2=>0x0)
r3 = io_uring_register$IORING_REGISTER_PERSONALITY(r0, 0x9, 0x0, 0x0)
r4 = socket$nl_netfilter(0x10, 0x3, 0xc)
syz_io_uring_submit(r1, r2, &(0x7f0000000400)=@IORING_OP_WRITEV={0x2, 0x0, 0x0, @fd=r4, 0x0, 0x0, 0x0, 0x0, 0x0, {0x0, r3}}, 0x0)
r5 = syz_io_uring_setup(0x22, &(0x7f0000000680)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000180), 0x0)
r6 = io_uring_register$IORING_REGISTER_PERSONALITY(r5, 0x9, 0x0, 0x0)
syz_io_uring_submit(r1, 0x0, &(0x7f0000000440)=@IORING_OP_FSYNC={0x3, 0x2, 0x0, @fd_index=0x9, 0x0, 0x0, 0x0, 0x0, 0x1, {0x0, r6}}, 0x2)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r7 = openat(0xffffffffffffff9c, &(0x7f00000002c0)='./file1\x00', 0x105142, 0x0)
r8 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0)
mount(&(0x7f0000000200)=ANY=[@ANYBLOB="2f6f651317868af191bdb2"], &(0x7f0000000240)='./file0\x00', &(0x7f0000000280)='nfsd\x00', 0x800000, &(0x7f0000000300)='cgroup\x00')
sendfile(r7, r8, 0x0, 0x100000001)
newfstatat(0xffffffffffffff9c, &(0x7f0000000340)='./file1\x00', &(0x7f0000000380), 0x400)

21:22:59 executing program 3:
openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x105142, 0x0)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x400}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
pipe(&(0x7f00000001c0)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
mount$9p_fd(0x0, &(0x7f0000000040)='./file1\x00', &(0x7f00000000c0), 0x5, &(0x7f0000000280)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {}, 0x2c, {[{@nodevmap}]}})
openat(r1, &(0x7f0000000180)='./file1\x00', 0x0, 0x0)

21:22:59 executing program 2:
syz_mount_image$vfat(&(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x0, 0x2, &(0x7f0000000180)=[{&(0x7f0000000140)="eb3c906d6b66732e66617400020801000470008400f801", 0x17}, {0x0, 0x0, 0x1000a00}], 0x0, &(0x7f0000000240)=ANY=[])
chdir(&(0x7f0000000040)='./file0\x00')
r0 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x105142, 0x0)
setxattr$security_capability(&(0x7f0000000000)='./file1\x00', &(0x7f00000001c0), &(0x7f0000000200)=@v1={0x1000000, [{0xffffff7a, 0xff}]}, 0xc, 0x1)
ioctl$FS_IOC_RESVSP(r0, 0x40305828, &(0x7f0000000040)={0x0, 0x0, 0x0, 0x4000006})
pipe(&(0x7f00000001c0)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
mount$9p_fd(0x0, &(0x7f0000000040)='./file1\x00', &(0x7f00000000c0), 0x0, &(0x7f0000000280)={'trans=fd,', {'rfdno', 0x3d, r1}, 0x2c, {'wfdno', 0x3d, r2}, 0x2c, {[{@nodevmap}]}})
read$char_usb(r2, &(0x7f0000000240)=""/186, 0xba)

21:22:59 executing program 6:
r0 = syz_mount_image$vfat(&(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x0, 0x2, &(0x7f0000000180)=[{&(0x7f0000000140)="eb3c906d6b66732e66617400020801000470008400f801", 0x17}, {0x0, 0x0, 0x1000a00}], 0x0, &(0x7f0000000240)=ANY=[])
chdir(&(0x7f0000000040)='./file0\x00')
openat2(r0, &(0x7f0000000100)='./file0\x00', &(0x7f00000001c0)={0x40000, 0x81}, 0x18)
mount$cgroup(0x0, 0x0, &(0x7f0000000400), 0x0, 0x0)
syz_io_uring_setup(0x22, &(0x7f0000000680)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000180)=<r1=>0x0, &(0x7f0000002a40)=<r2=>0x0)
r3 = io_uring_register$IORING_REGISTER_PERSONALITY(0xffffffffffffffff, 0x9, 0x0, 0x0)
r4 = socket$nl_netfilter(0x10, 0x3, 0xc)
syz_io_uring_submit(r1, r2, &(0x7f0000000400)=@IORING_OP_WRITEV={0x2, 0x0, 0x0, @fd=r4, 0x0, 0x0, 0x0, 0x0, 0x0, {0x0, r3}}, 0x0)
r5 = syz_io_uring_setup(0x22, &(0x7f0000000680)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000180), &(0x7f0000002a40))
r6 = io_uring_register$IORING_REGISTER_PERSONALITY(r5, 0x9, 0x0, 0x0)
syz_io_uring_submit(r1, 0x0, &(0x7f0000000440)=@IORING_OP_FSYNC={0x3, 0x2, 0x0, @fd_index=0x9, 0x0, 0x0, 0x0, 0x0, 0x1, {0x0, r6}}, 0x2)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r7 = openat(0xffffffffffffff9c, &(0x7f00000002c0)='./file1\x00', 0x105142, 0x0)
r8 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0)
sendfile(r7, r8, 0x0, 0x100000001)
newfstatat(0xffffffffffffff9c, &(0x7f0000000340)='./file1\x00', &(0x7f0000000380), 0x400)

21:22:59 executing program 5:
openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x105142, 0x0)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
pipe(&(0x7f00000001c0)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
mount$9p_fd(0x0, &(0x7f0000000040)='./file1\x00', &(0x7f00000000c0), 0x0, &(0x7f0000000280)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}}) (fail_nth: 56)
openat(0xffffffffffffffff, 0x0, 0x0, 0x0)

21:22:59 executing program 1:
openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x105142, 0x0)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
pipe(&(0x7f00000001c0))
mount$9p_fd(0xfffffff6, &(0x7f0000000040)='./file1\x00', &(0x7f00000000c0), 0x0, &(0x7f0000000280)={'trans=fd,', {}, 0x2c, {}, 0x2c, {[{@nodevmap}]}})

[ 2532.740432] FAULT_INJECTION: forcing a failure.
[ 2532.740432] name failslab, interval 1, probability 0, space 0, times 0
[ 2532.743156] CPU: 1 PID: 22645 Comm: syz-executor.5 Not tainted 5.10.172 #1
[ 2532.743546] 9pnet: Insufficient options for proto=fd
[ 2532.744016] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 2532.744057] Call Trace:
[ 2532.744081]  dump_stack+0x107/0x167
[ 2532.744102]  should_fail.cold+0x5/0xa
[ 2532.744122]  ? radix_tree_node_alloc.constprop.0+0x1e3/0x300
[ 2532.744144]  should_failslab+0x5/0x20
[ 2532.749119]  kmem_cache_alloc+0x5b/0x360
[ 2532.749658]  radix_tree_node_alloc.constprop.0+0x1e3/0x300
[ 2532.754511]  idr_get_free+0x4b5/0x8f0
[ 2532.755013]  idr_alloc_u32+0x170/0x2d0
[ 2532.755506]  ? __fprop_inc_percpu_max+0x130/0x130
[ 2532.756108]  ? lock_acquire+0x197/0x490
[ 2532.756596]  ? __kernfs_new_node+0xff/0x850
[ 2532.757137]  idr_alloc_cyclic+0x102/0x230
[ 2532.757648]  ? idr_alloc+0x130/0x130
[ 2532.758141]  ? rwlock_bug.part.0+0x90/0x90
[ 2532.758566] 9pnet: Insufficient options for proto=fd
[ 2532.758683]  __kernfs_new_node+0x117/0x850
[ 2532.758710]  ? kernfs_dop_revalidate+0x3a0/0x3a0
[ 2532.760465]  ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0
[ 2532.761127]  ? perf_trace_lock+0xac/0x490
[ 2532.761657]  ? __lockdep_reset_lock+0x180/0x180
[ 2532.762258]  kernfs_create_dir_ns+0x9c/0x230
[ 2532.762795]  sysfs_create_dir_ns+0x127/0x290
[ 2532.763340]  ? sysfs_create_mount_point+0xb0/0xb0
[ 2532.763937]  ? rwlock_bug.part.0+0x90/0x90
[ 2532.764468]  ? do_raw_spin_unlock+0x4f/0x220
[ 2532.765008]  kobject_add_internal+0x25e/0xa30
[ 2532.765568]  kobject_init_and_add+0x101/0x160
[ 2532.766163]  ? kobject_create_and_add+0xb0/0xb0
[ 2532.766747]  ? wait_for_completion_io+0x270/0x270
[ 2532.767337]  ? kernfs_name_hash+0xe7/0x110
[ 2532.767864]  ? kernfs_find_ns+0x256/0x380
[ 2532.768389]  sysfs_slab_add+0x172/0x200
[ 2532.768890]  __kmem_cache_create+0x3db/0x520
[ 2532.769454]  kmem_cache_create_usercopy+0x1db/0x2f0
[ 2532.770218]  p9_client_create+0xc2b/0x1090
[ 2532.770754]  ? p9_client_flush+0x430/0x430
[ 2532.771286]  ? lockdep_init_map_type+0x2c7/0x780
[ 2532.771866]  ? rcu_read_lock_sched_held+0x3e/0x80
[ 2532.772467]  ? __raw_spin_lock_init+0x36/0x110
[ 2532.773042]  v9fs_session_init+0x1dd/0x16a0
[ 2532.773563]  ? irqentry_enter+0x26/0x60
[ 2532.778171]  ? asm_sysvec_apic_timer_interrupt+0x12/0x20
[ 2532.778872]  ? trace_hardirqs_on+0x5b/0x180
[ 2532.779443]  ? v9fs_show_options+0x690/0x690
[ 2532.780049]  ? kasan_unpoison_shadow+0x33/0x50
[ 2532.780646]  ? __kasan_kmalloc.constprop.0+0xc9/0xd0
[ 2532.781279]  v9fs_mount+0x79/0x8f0
[ 2532.781745]  ? v9fs_write_inode+0x60/0x60
[ 2532.782901]  legacy_get_tree+0x105/0x220
[ 2532.783450]  vfs_get_tree+0x8e/0x300
[ 2532.783944]  path_mount+0x13be/0x20b0
[ 2532.784460]  ? strncpy_from_user+0x9e/0x470
[ 2532.785032]  ? finish_automount+0xa40/0xa40
[ 2532.785596]  ? getname_flags.part.0+0x1dd/0x4f0
[ 2532.793176]  ? _copy_from_user+0xfb/0x1b0
[ 2532.793733]  __x64_sys_mount+0x282/0x300
[ 2532.794307]  ? copy_mnt_ns+0xa00/0xa00
[ 2532.794822]  ? rcu_read_lock_sched_held+0x3e/0x80
[ 2532.795447]  do_syscall_64+0x33/0x40
[ 2532.795931]  entry_SYSCALL_64_after_hwframe+0x61/0xc6
[ 2532.796590] RIP: 0033:0x7f38308e8b19
[ 2532.797082] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 2532.799533] RSP: 002b:00007f382de5e188 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5
[ 2532.800510] RAX: ffffffffffffffda RBX: 00007f38309fbf60 RCX: 00007f38308e8b19
[ 2532.801428] RDX: 00000000200000c0 RSI: 0000000020000040 RDI: 0000000000000000
[ 2532.802360] RBP: 00007f382de5e1d0 R08: 0000000020000280 R09: 0000000000000000
[ 2532.803266] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[ 2532.804174] R13: 00007ffca2bf07df R14: 00007f382de5e300 R15: 0000000000022000
21:22:59 executing program 3:
openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x105142, 0x0)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x400}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
pipe(&(0x7f00000001c0)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
mount$9p_fd(0x0, &(0x7f0000000040)='./file1\x00', &(0x7f00000000c0), 0x6, &(0x7f0000000280)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {}, 0x2c, {[{@nodevmap}]}})
openat(r1, &(0x7f0000000180)='./file1\x00', 0x0, 0x0)

21:22:59 executing program 1:
openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x105142, 0x0)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
pipe(&(0x7f00000001c0))
mount$9p_fd(0xedc000000000, &(0x7f0000000040)='./file1\x00', &(0x7f00000000c0), 0x0, &(0x7f0000000280)={'trans=fd,', {}, 0x2c, {}, 0x2c, {[{@nodevmap}]}})

[ 2532.904264] 9pnet: Insufficient options for proto=fd
[ 2532.916557] 9pnet: Insufficient options for proto=fd
21:22:59 executing program 0:
syz_mount_image$vfat(&(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x0, 0x2, &(0x7f0000000180)=[{&(0x7f0000000140)="eb3c906d6b66732e66617400020801000470008400f801", 0x17}, {0x0, 0x0, 0x1000a00}], 0x0, &(0x7f0000000240)=ANY=[])
chdir(&(0x7f0000000040)='./file0\x00')
mount$cgroup(0x0, 0x0, &(0x7f0000000400), 0x0, 0x0)
r0 = syz_io_uring_setup(0x22, &(0x7f0000000680)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000180)=<r1=>0x0, &(0x7f0000002a40)=<r2=>0x0)
r3 = io_uring_register$IORING_REGISTER_PERSONALITY(r0, 0x9, 0x0, 0x0)
r4 = socket$nl_netfilter(0x10, 0x3, 0xc)
syz_io_uring_submit(r1, r2, &(0x7f0000000400)=@IORING_OP_WRITEV={0x2, 0x0, 0x0, @fd=r4, 0x0, 0x0, 0x0, 0x0, 0x0, {0x0, r3}}, 0x0)
syz_io_uring_setup(0x22, &(0x7f0000000680)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000180), &(0x7f0000002a40))
r5 = io_uring_register$IORING_REGISTER_PERSONALITY(0xffffffffffffffff, 0x9, 0x0, 0x0)
syz_io_uring_submit(r1, 0x0, &(0x7f0000000440)=@IORING_OP_FSYNC={0x3, 0x2, 0x0, @fd_index=0x9, 0x0, 0x0, 0x0, 0x0, 0x1, {0x0, r5}}, 0x2)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r6 = openat(0xffffffffffffff9c, &(0x7f00000002c0)='./file1\x00', 0x105142, 0x0)
r7 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0)
mount(&(0x7f0000000200)=ANY=[@ANYBLOB="2f6f651317868af191bdb2"], &(0x7f0000000240)='./file0\x00', &(0x7f0000000280)='nfsd\x00', 0x800000, &(0x7f0000000300)='cgroup\x00')
sendfile(r6, r7, 0x0, 0x100000001)
newfstatat(0xffffffffffffff9c, &(0x7f0000000340)='./file1\x00', &(0x7f0000000380), 0x400)

21:22:59 executing program 3:
openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x105142, 0x0)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x400}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
pipe(&(0x7f00000001c0)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
mount$9p_fd(0x0, &(0x7f0000000040)='./file1\x00', &(0x7f00000000c0), 0x7, &(0x7f0000000280)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {}, 0x2c, {[{@nodevmap}]}})
openat(r1, &(0x7f0000000180)='./file1\x00', 0x0, 0x0)

21:22:59 executing program 4:
openat$vcs(0xffffffffffffff9c, &(0x7f0000000040), 0x0, 0x0)
openat$sr(0xffffffffffffff9c, &(0x7f00000035c0), 0x0, 0x0)
openat$sr(0xffffffffffffff9c, &(0x7f00000000c0), 0x224400, 0x0)
openat$rtc(0xffffffffffffff9c, &(0x7f0000000200), 0x0, 0x0)
pipe(&(0x7f00000001c0))
r0 = open(&(0x7f00000016c0)='./cgroup.net/cgroup.procs\x00', 0x0, 0x0)
pselect6(0x40, &(0x7f0000000180), &(0x7f00000001c0)={0x3fc}, 0x0, 0x0, 0x0)
r1 = perf_event_open(&(0x7f0000001d80)={0x2, 0x80, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
mmap(&(0x7f0000ffc000/0x2000)=nil, 0x2000, 0x0, 0x13, r1, 0x0)
perf_event_open(&(0x7f0000001d80)={0x2, 0x80, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, r1, 0x2)
lstat(&(0x7f0000000100)='./cgroup.net/cgroup.procs\x00', &(0x7f0000001240)={0x0, 0x0, 0x0, 0x0, <r2=>0x0})
sendmsg$nl_generic(r0, &(0x7f00000015c0)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x200000}, 0xc, &(0x7f0000000140)={&(0x7f0000000240)=ANY=[@ANYBLOB="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", @ANYRES32, @ANYBLOB="08008f00", @ANYRES32=r1, @ANYBLOB="0800698004001300f8007b802b798e834453fd944748ea1bf3b241c7d7c3f8bac58f2a41b51d16b23a709c8f8fbc812ac5cb72031d082d61b2f10ddb396c17e2a93b7699e7f1112eb56af26ee9da11d678ea1630097e93bf91e5df7d270dfb9a45911e01dce6ddaf437cdd65bfda6f7d6a3141a9b1c09f070079002f2700007538e5f42c1a96c31b6c63219cb9633ff3a9152db46568eff43cc575e3a6c47f18433542c4460b936832ef44a70b08007c00", @ANYRES32=0x0, @ANYBLOB='\b\x00o\x00', @ANYRES32, @ANYBLOB="91839818c8eed0894c245c61c32c7787175fae5a8d4b7dfb8eb12579cdf2b68c9b0d9b306dfacae5853a9a8434f9a200885ccc8493471bea263463c59983cc810254232f8054ae6d3587cd4a7a9ba7", @ANYRES32=r2, @ANYBLOB="1400548008001b000100000008009200", @ANYRES32=0x0, @ANYBLOB='\x00'], 0x2cc}, 0x1, 0x0, 0x0, 0x40}, 0x4008000)

[ 2533.106159] 9pnet: Insufficient options for proto=fd
[ 2533.165664] 9pnet: Insufficient options for proto=fd
21:22:59 executing program 1:
openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x105142, 0x0)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
pipe(&(0x7f00000001c0))
mount$9p_fd(0x8000000000000, &(0x7f0000000040)='./file1\x00', &(0x7f00000000c0), 0x0, &(0x7f0000000280)={'trans=fd,', {}, 0x2c, {}, 0x2c, {[{@nodevmap}]}})

21:22:59 executing program 6:
r0 = syz_mount_image$vfat(&(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x0, 0x2, &(0x7f0000000180)=[{&(0x7f0000000140)="eb3c906d6b66732e66617400020801000470008400f801", 0x17}, {0x0, 0x0, 0x1000a00}], 0x0, &(0x7f0000000240)=ANY=[])
chdir(&(0x7f0000000040)='./file0\x00')
openat2(r0, &(0x7f0000000100)='./file0\x00', &(0x7f00000001c0)={0x40000, 0x81}, 0x18)
mount$cgroup(0x0, 0x0, &(0x7f0000000400), 0x0, 0x0)
syz_io_uring_setup(0x22, &(0x7f0000000680)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000180)=<r1=>0x0, &(0x7f0000002a40)=<r2=>0x0)
r3 = io_uring_register$IORING_REGISTER_PERSONALITY(0xffffffffffffffff, 0x9, 0x0, 0x0)
r4 = socket$nl_netfilter(0x10, 0x3, 0xc)
syz_io_uring_submit(r1, r2, &(0x7f0000000400)=@IORING_OP_WRITEV={0x2, 0x0, 0x0, @fd=r4, 0x0, 0x0, 0x0, 0x0, 0x0, {0x0, r3}}, 0x0)
r5 = syz_io_uring_setup(0x22, &(0x7f0000000680)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000180), &(0x7f0000002a40))
r6 = io_uring_register$IORING_REGISTER_PERSONALITY(r5, 0x9, 0x0, 0x0)
syz_io_uring_submit(r1, 0x0, &(0x7f0000000440)=@IORING_OP_FSYNC={0x3, 0x2, 0x0, @fd_index=0x9, 0x0, 0x0, 0x0, 0x0, 0x1, {0x0, r6}}, 0x2)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r7 = openat(0xffffffffffffff9c, &(0x7f00000002c0)='./file1\x00', 0x105142, 0x0)
r8 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0)
sendfile(r7, r8, 0x0, 0x100000001)
newfstatat(0xffffffffffffff9c, &(0x7f0000000340)='./file1\x00', &(0x7f0000000380), 0x400)

21:22:59 executing program 3:
openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x105142, 0x0)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x400}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
pipe(&(0x7f00000001c0)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
mount$9p_fd(0x0, &(0x7f0000000040)='./file1\x00', &(0x7f00000000c0), 0x8, &(0x7f0000000280)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {}, 0x2c, {[{@nodevmap}]}})
openat(r1, &(0x7f0000000180)='./file1\x00', 0x0, 0x0)

[ 2533.329278] 9pnet: Insufficient options for proto=fd
[ 2533.343524] 9pnet: Insufficient options for proto=fd
21:23:17 executing program 4:
r0 = openat$vcs(0xffffffffffffff9c, &(0x7f0000000040), 0x0, 0x0)
openat$sr(0xffffffffffffff9c, &(0x7f00000035c0), 0x0, 0x0)
r1 = openat$sr(0xffffffffffffff9c, &(0x7f00000000c0), 0x224400, 0x0)
openat$rtc(0xffffffffffffff9c, &(0x7f0000000200), 0x0, 0x0)
pipe(&(0x7f00000001c0))
pipe(&(0x7f00000001c0)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
r4 = openat$hwrng(0xffffffffffffff9c, &(0x7f0000000240), 0x602100, 0x0)
fcntl$dupfd(r0, 0x406, r4)
mount$9p_fd(0x0, &(0x7f0000000040)='./file1\x00', &(0x7f00000000c0), 0x0, &(0x7f0000000280)={'trans=fd,', {'rfdno', 0x3d, r2}, 0x2c, {'wfdno', 0x3d, r3}, 0x2c, {[{@nodevmap}]}})
setsockopt$inet6_IPV6_HOPOPTS(r2, 0x29, 0x36, &(0x7f0000000100)=ANY=[@ANYBLOB="2c0000000000000000010000e4030000"], 0x10)
fsetxattr(r1, &(0x7f0000000000)=@known='com.apple.FinderInfo\x00', &(0x7f0000000080)='/dev/rtc0\x00', 0xa, 0x0)
open(&(0x7f00000016c0)='./cgroup.net/cgroup.procs\x00', 0x0, 0x0)
ioctl$BLKROSET(r2, 0x125d, &(0x7f0000000140)=0xd7ad)
pselect6(0x40, &(0x7f0000000180), &(0x7f00000001c0)={0x3fc}, 0x0, 0x0, 0x0)
ioctl$RTC_SET_TIME(0xffffffffffffffff, 0x4024700a, &(0x7f0000000300)={0x3, 0x39, 0x2, 0xf, 0xa, 0x1, 0x3, 0x88, 0x1})

21:23:17 executing program 2:
r0 = syz_mount_image$vfat(&(0x7f0000000080), &(0x7f00000000c0)='./file2\x00', 0x0, 0x2, &(0x7f0000000180)=[{&(0x7f0000000140)="eb3c906d6b66732e66617400020801000470008400f801", 0x17}, {0x0, 0x28, 0x1000a00}], 0x2, &(0x7f0000000240)=ANY=[])
chdir(&(0x7f0000000040)='./file0\x00')
r1 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x105142, 0x0)
setxattr$trusted_overlay_opaque(&(0x7f0000000000)='./file1\x00', &(0x7f00000001c0), &(0x7f0000000200), 0x2, 0x1)
creat(&(0x7f0000000440)='./file1\x00', 0x150)
setxattr$security_evm(&(0x7f0000000240)='./file1\x00', &(0x7f0000000280), &(0x7f00000002c0)=@sha1={0x1, "8452834414efe51da4cafc34c0bcb354afbb8fb7"}, 0x15, 0x1)
ioctl$FS_IOC_RESVSP(r1, 0x40305828, &(0x7f0000000040)={0x0, 0x0, 0x0, 0x4000006})
close(r0)
syz_open_procfs(0x0, &(0x7f0000000480)='totmaps\x00')
r2 = ioctl$TUNGETDEVNETNS(r1, 0x54e3, 0x0)
lsetxattr$security_capability(&(0x7f00000004c0)='./file2/../file0\x00', &(0x7f0000000500), &(0x7f0000000540)=@v3={0x3000000, [{0x2, 0x7}, {0xff, 0x800}], 0xee01}, 0x18, 0x3)
ioctl$AUTOFS_IOC_EXPIRE(r2, 0x810c9365, &(0x7f0000000300)={{0x0, 0x1}, 0x100, './file1\x00'})

21:23:17 executing program 6:
r0 = syz_mount_image$vfat(&(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x0, 0x2, &(0x7f0000000180)=[{&(0x7f0000000140)="eb3c906d6b66732e66617400020801000470008400f801", 0x17}, {0x0, 0x0, 0x1000a00}], 0x0, &(0x7f0000000240)=ANY=[])
chdir(&(0x7f0000000040)='./file0\x00')
openat2(r0, &(0x7f0000000100)='./file0\x00', &(0x7f00000001c0)={0x40000, 0x81}, 0x18)
mount$cgroup(0x0, 0x0, &(0x7f0000000400), 0x0, 0x0)
r1 = syz_io_uring_setup(0x22, &(0x7f0000000680)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000180)=<r2=>0x0, &(0x7f0000002a40)=<r3=>0x0)
r4 = io_uring_register$IORING_REGISTER_PERSONALITY(r1, 0x9, 0x0, 0x0)
r5 = socket$nl_netfilter(0x10, 0x3, 0xc)
syz_io_uring_submit(0x0, r3, &(0x7f0000000400)=@IORING_OP_WRITEV={0x2, 0x0, 0x0, @fd=r5, 0x0, 0x0, 0x0, 0x0, 0x0, {0x0, r4}}, 0x0)
r6 = syz_io_uring_setup(0x22, &(0x7f0000000680)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000180), &(0x7f0000002a40))
r7 = io_uring_register$IORING_REGISTER_PERSONALITY(r6, 0x9, 0x0, 0x0)
syz_io_uring_submit(r2, 0x0, &(0x7f0000000440)=@IORING_OP_FSYNC={0x3, 0x2, 0x0, @fd_index=0x9, 0x0, 0x0, 0x0, 0x0, 0x1, {0x0, r7}}, 0x2)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r8 = openat(0xffffffffffffff9c, &(0x7f00000002c0)='./file1\x00', 0x105142, 0x0)
r9 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0)
sendfile(r8, r9, 0x0, 0x100000001)
newfstatat(0xffffffffffffff9c, &(0x7f0000000340)='./file1\x00', &(0x7f0000000380), 0x400)

21:23:17 executing program 3:
openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x105142, 0x0)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x400}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
pipe(&(0x7f00000001c0)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
mount$9p_fd(0x0, &(0x7f0000000040)='./file1\x00', &(0x7f00000000c0), 0x9, &(0x7f0000000280)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {}, 0x2c, {[{@nodevmap}]}})
openat(r1, &(0x7f0000000180)='./file1\x00', 0x0, 0x0)

[ 2550.941213] 9pnet: Insufficient options for proto=fd
21:23:17 executing program 0:
syz_mount_image$vfat(&(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x0, 0x2, &(0x7f0000000180)=[{&(0x7f0000000140)="eb3c906d6b66732e66617400020801000470008400f801", 0x17}, {0x0, 0x0, 0x1000a00}], 0x0, &(0x7f0000000240)=ANY=[])
chdir(&(0x7f0000000040)='./file0\x00')
mount$cgroup(0x0, 0x0, &(0x7f0000000400), 0x0, 0x0)
r0 = syz_io_uring_setup(0x22, &(0x7f0000000680)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000180)=<r1=>0x0, &(0x7f0000002a40)=<r2=>0x0)
r3 = io_uring_register$IORING_REGISTER_PERSONALITY(r0, 0x9, 0x0, 0x0)
r4 = socket$nl_netfilter(0x10, 0x3, 0xc)
syz_io_uring_submit(r1, r2, &(0x7f0000000400)=@IORING_OP_WRITEV={0x2, 0x0, 0x0, @fd=r4, 0x0, 0x0, 0x0, 0x0, 0x0, {0x0, r3}}, 0x0)
syz_io_uring_setup(0x22, &(0x7f0000000680)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000180), &(0x7f0000002a40))
r5 = io_uring_register$IORING_REGISTER_PERSONALITY(0xffffffffffffffff, 0x9, 0x0, 0x0)
syz_io_uring_submit(r1, 0x0, &(0x7f0000000440)=@IORING_OP_FSYNC={0x3, 0x2, 0x0, @fd_index=0x9, 0x0, 0x0, 0x0, 0x0, 0x1, {0x0, r5}}, 0x2)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r6 = openat(0xffffffffffffff9c, &(0x7f00000002c0)='./file1\x00', 0x105142, 0x0)
r7 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0)
mount(&(0x7f0000000200)=ANY=[@ANYBLOB="2f6f651317868af191bdb2"], &(0x7f0000000240)='./file0\x00', &(0x7f0000000280)='nfsd\x00', 0x800000, &(0x7f0000000300)='cgroup\x00')
sendfile(r6, r7, 0x0, 0x100000001)
newfstatat(0xffffffffffffff9c, &(0x7f0000000340)='./file1\x00', &(0x7f0000000380), 0x400)

21:23:17 executing program 7:
r0 = perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
io_setup(0x7f, &(0x7f00000002c0)=<r1=>0x0)
io_pgetevents(r1, 0x1, 0x1, &(0x7f0000000000)=[{}], 0x0, 0x0)
io_submit(r1, 0x1, &(0x7f0000000340)=[&(0x7f0000000300)={0x0, 0x0, 0x0, 0x5, 0x0, r0, 0x0}])

21:23:17 executing program 1:
openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x105142, 0x0)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
pipe(&(0x7f00000001c0))
mount$9p_fd(0x100000000000000, &(0x7f0000000040)='./file1\x00', &(0x7f00000000c0), 0x0, &(0x7f0000000280)={'trans=fd,', {}, 0x2c, {}, 0x2c, {[{@nodevmap}]}})

21:23:17 executing program 5:
openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x105142, 0x0)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
pipe(&(0x7f00000001c0)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
mount$9p_fd(0x0, &(0x7f0000000040)='./file1\x00', &(0x7f00000000c0), 0x0, &(0x7f0000000280)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}}) (fail_nth: 57)
openat(0xffffffffffffffff, 0x0, 0x0, 0x0)

[ 2550.998510] 9pnet: Insufficient options for proto=fd
[ 2551.102237] FAULT_INJECTION: forcing a failure.
[ 2551.102237] name failslab, interval 1, probability 0, space 0, times 0
[ 2551.104175] CPU: 1 PID: 23026 Comm: syz-executor.5 Not tainted 5.10.172 #1
[ 2551.105046] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 2551.106082] Call Trace:
[ 2551.106457]  dump_stack+0x107/0x167
[ 2551.106925]  should_fail.cold+0x5/0xa
[ 2551.107413]  ? __kernfs_new_node+0xd4/0x850
[ 2551.107962]  should_failslab+0x5/0x20
[ 2551.108444]  kmem_cache_alloc+0x5b/0x360
[ 2551.108968]  __kernfs_new_node+0xd4/0x850
[ 2551.109505]  ? kernfs_dop_revalidate+0x3a0/0x3a0
[ 2551.110109]  ? __mutex_unlock_slowpath+0xe1/0x600
[ 2551.110739]  ? wait_for_completion_io+0x270/0x270
[ 2551.111354]  ? kernfs_next_descendant_post+0x1a7/0x2a0
[ 2551.112024]  kernfs_new_node+0x93/0x120
[ 2551.112540]  __kernfs_create_file+0x51/0x350
[ 2551.113106]  sysfs_add_file_mode_ns+0x221/0x560
[ 2551.113832]  internal_create_group+0x324/0xb30
[ 2551.118473]  ? sysfs_remove_group+0x170/0x170
[ 2551.119051]  sysfs_slab_add+0x188/0x200
[ 2551.119557]  __kmem_cache_create+0x3db/0x520
[ 2551.120108]  kmem_cache_create_usercopy+0x1db/0x2f0
[ 2551.120738]  p9_client_create+0xc2b/0x1090
[ 2551.121287]  ? p9_client_flush+0x430/0x430
[ 2551.121830]  ? lockdep_init_map_type+0x2c7/0x780
[ 2551.122461]  ? rcu_read_lock_sched_held+0x3e/0x80
[ 2551.123076]  ? __raw_spin_lock_init+0x36/0x110
[ 2551.123663]  v9fs_session_init+0x1dd/0x16a0
[ 2551.124218]  ? kmem_cache_alloc_trace+0x151/0x360
[ 2551.124830]  ? v9fs_show_options+0x690/0x690
[ 2551.125401]  ? kasan_unpoison_shadow+0x33/0x50
[ 2551.125979]  ? __kasan_kmalloc.constprop.0+0xc9/0xd0
[ 2551.126649]  v9fs_mount+0x79/0x8f0
[ 2551.127106]  ? v9fs_write_inode+0x60/0x60
[ 2551.127636]  legacy_get_tree+0x105/0x220
[ 2551.128151]  ? path_mount+0x13b6/0x20b0
[ 2551.128662]  vfs_get_tree+0x8e/0x300
[ 2551.129137]  path_mount+0x13be/0x20b0
[ 2551.129628]  ? strncpy_from_user+0x9e/0x470
[ 2551.130175]  ? finish_automount+0xa40/0xa40
[ 2551.130805]  ? getname_flags.part.0+0x1dd/0x4f0
[ 2551.131430]  ? _copy_from_user+0xfb/0x1b0
[ 2551.131963]  __x64_sys_mount+0x282/0x300
[ 2551.132477]  ? copy_mnt_ns+0xa00/0xa00
[ 2551.132976]  ? rcu_read_lock_sched_held+0x3e/0x80
[ 2551.133595]  do_syscall_64+0x33/0x40
[ 2551.134067]  entry_SYSCALL_64_after_hwframe+0x61/0xc6
[ 2551.134732] RIP: 0033:0x7f38308e8b19
[ 2551.135208] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 2551.137532] RSP: 002b:00007f382de5e188 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5
[ 2551.138524] RAX: ffffffffffffffda RBX: 00007f38309fbf60 RCX: 00007f38308e8b19
[ 2551.139411] RDX: 00000000200000c0 RSI: 0000000020000040 RDI: 0000000000000000
[ 2551.140293] RBP: 00007f382de5e1d0 R08: 0000000020000280 R09: 0000000000000000
[ 2551.141177] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[ 2551.142060] R13: 00007ffca2bf07df R14: 00007f382de5e300 R15: 0000000000022000
[ 2551.170127] kmem_cache_create(9p-fcall-cache) failed with error -12
[ 2551.171104] CPU: 0 PID: 23026 Comm: syz-executor.5 Not tainted 5.10.172 #1
[ 2551.172026] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 2551.173121] Call Trace:
[ 2551.173487]  dump_stack+0x107/0x167
[ 2551.173979]  kmem_cache_create_usercopy.cold+0x17/0x65
[ 2551.174702]  p9_client_create+0xc2b/0x1090
[ 2551.175276]  ? p9_client_flush+0x430/0x430
[ 2551.175847]  ? lockdep_init_map_type+0x2c7/0x780
[ 2551.176472]  ? rcu_read_lock_sched_held+0x3e/0x80
[ 2551.177114]  ? __raw_spin_lock_init+0x36/0x110
[ 2551.177740]  v9fs_session_init+0x1dd/0x16a0
[ 2551.178359]  ? kmem_cache_alloc_trace+0x151/0x360
[ 2551.178999]  ? v9fs_show_options+0x690/0x690
[ 2551.179602]  ? kasan_unpoison_shadow+0x33/0x50
[ 2551.180217]  ? __kasan_kmalloc.constprop.0+0xc9/0xd0
[ 2551.180891]  v9fs_mount+0x79/0x8f0
[ 2551.181371]  ? v9fs_write_inode+0x60/0x60
[ 2551.181929]  legacy_get_tree+0x105/0x220
[ 2551.182491]  ? path_mount+0x13b6/0x20b0
[ 2551.183026]  vfs_get_tree+0x8e/0x300
[ 2551.183531]  path_mount+0x13be/0x20b0
[ 2551.184047]  ? strncpy_from_user+0x9e/0x470
[ 2551.184630]  ? finish_automount+0xa40/0xa40
[ 2551.185210]  ? getname_flags.part.0+0x1dd/0x4f0
[ 2551.185828]  ? _copy_from_user+0xfb/0x1b0
[ 2551.186433]  __x64_sys_mount+0x282/0x300
[ 2551.186974]  ? copy_mnt_ns+0xa00/0xa00
[ 2551.187501]  ? rcu_read_lock_sched_held+0x3e/0x80
[ 2551.188150]  do_syscall_64+0x33/0x40
[ 2551.188658]  entry_SYSCALL_64_after_hwframe+0x61/0xc6
[ 2551.189356] RIP: 0033:0x7f38308e8b19
[ 2551.189895] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 2551.192336] RSP: 002b:00007f382de5e188 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5
[ 2551.193342] RAX: ffffffffffffffda RBX: 00007f38309fbf60 RCX: 00007f38308e8b19
[ 2551.194321] RDX: 00000000200000c0 RSI: 0000000020000040 RDI: 0000000000000000
[ 2551.195254] RBP: 00007f382de5e1d0 R08: 0000000020000280 R09: 0000000000000000
[ 2551.196191] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[ 2551.197125] R13: 00007ffca2bf07df R14: 00007f382de5e300 R15: 0000000000022000
21:23:17 executing program 3:
openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x105142, 0x0)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x400}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
pipe(&(0x7f00000001c0)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
mount$9p_fd(0x0, &(0x7f0000000040)='./file1\x00', &(0x7f00000000c0), 0xa, &(0x7f0000000280)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {}, 0x2c, {[{@nodevmap}]}})
openat(r1, &(0x7f0000000180)='./file1\x00', 0x0, 0x0)

21:23:17 executing program 4:
openat$vcs(0xffffffffffffff9c, &(0x7f0000000040), 0x0, 0x0)
openat$sr(0xffffffffffffff9c, &(0x7f00000035c0), 0x0, 0x0)
openat$sr(0xffffffffffffff9c, &(0x7f00000000c0), 0x224400, 0x0)
openat$rtc(0xffffffffffffff9c, &(0x7f0000000200), 0x0, 0x0)
pipe(&(0x7f00000001c0))
open(&(0x7f0000000000)='./cgroup.net/cgroup.procs\x00', 0x0, 0x18)
pselect6(0x40, &(0x7f0000000180), &(0x7f00000001c0)={0x3fc}, 0x0, 0x0, 0x0)

21:23:17 executing program 2:
r0 = syz_mount_image$vfat(&(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x0, 0x2, &(0x7f0000000180)=[{&(0x7f0000000140)="eb3c906d6b66732e66617400020801000470008400f801", 0x17}, {0x0, 0x0, 0x1000a00}], 0x0, &(0x7f0000000240)=ANY=[])
chdir(&(0x7f0000000040)='./file0\x00')
ioctl$AUTOFS_DEV_IOCTL_ASKUMOUNT(0xffffffffffffffff, 0xc018937d, &(0x7f0000000000)={{0x1, 0x1, 0x18, <r1=>r0, {0x1ff}}, './file0/file0\x00'})
openat2(r1, &(0x7f00000001c0)='./file1\x00', &(0x7f0000000200)={0xa302, 0x120, 0x8}, 0x18)
r2 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x105142, 0x0)
ioctl$FS_IOC_RESVSP(r2, 0x40305828, &(0x7f0000000040)={0x0, 0x0, 0x0, 0x4000006})

21:23:17 executing program 0:
syz_mount_image$vfat(&(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x0, 0x2, &(0x7f0000000180)=[{&(0x7f0000000140)="eb3c906d6b66732e66617400020801000470008400f801", 0x17}, {0x0, 0x0, 0x1000a00}], 0x0, &(0x7f0000000240)=ANY=[])
chdir(&(0x7f0000000040)='./file0\x00')
mount$cgroup(0x0, 0x0, &(0x7f0000000400), 0x0, 0x0)
r0 = syz_io_uring_setup(0x22, &(0x7f0000000680)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000180)=<r1=>0x0, &(0x7f0000002a40)=<r2=>0x0)
r3 = io_uring_register$IORING_REGISTER_PERSONALITY(r0, 0x9, 0x0, 0x0)
r4 = socket$nl_netfilter(0x10, 0x3, 0xc)
syz_io_uring_submit(r1, r2, &(0x7f0000000400)=@IORING_OP_WRITEV={0x2, 0x0, 0x0, @fd=r4, 0x0, 0x0, 0x0, 0x0, 0x0, {0x0, r3}}, 0x0)
syz_io_uring_setup(0x22, &(0x7f0000000680)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000180), &(0x7f0000002a40))
r5 = io_uring_register$IORING_REGISTER_PERSONALITY(0xffffffffffffffff, 0x9, 0x0, 0x0)
syz_io_uring_submit(r1, 0x0, &(0x7f0000000440)=@IORING_OP_FSYNC={0x3, 0x2, 0x0, @fd_index=0x9, 0x0, 0x0, 0x0, 0x0, 0x1, {0x0, r5}}, 0x2)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r6 = openat(0xffffffffffffff9c, &(0x7f00000002c0)='./file1\x00', 0x105142, 0x0)
r7 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0)
mount(&(0x7f0000000200)=ANY=[@ANYBLOB="2f6f651317868af191bdb2"], &(0x7f0000000240)='./file0\x00', &(0x7f0000000280)='nfsd\x00', 0x800000, &(0x7f0000000300)='cgroup\x00')
sendfile(r6, r7, 0x0, 0x100000001)
newfstatat(0xffffffffffffff9c, &(0x7f0000000340)='./file1\x00', &(0x7f0000000380), 0x400)

[ 2551.305404] 9pnet: Insufficient options for proto=fd
[ 2551.318490] 9pnet: Insufficient options for proto=fd
21:23:17 executing program 1:
openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x105142, 0x0)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
pipe(&(0x7f00000001c0))
mount$9p_fd(0x200000000000000, &(0x7f0000000040)='./file1\x00', &(0x7f00000000c0), 0x0, &(0x7f0000000280)={'trans=fd,', {}, 0x2c, {}, 0x2c, {[{@nodevmap}]}})

21:23:17 executing program 3:
openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x105142, 0x0)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x400}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
pipe(&(0x7f00000001c0)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
mount$9p_fd(0x0, &(0x7f0000000040)='./file1\x00', &(0x7f00000000c0), 0xb, &(0x7f0000000280)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {}, 0x2c, {[{@nodevmap}]}})
openat(r1, &(0x7f0000000180)='./file1\x00', 0x0, 0x0)

21:23:17 executing program 4:
r0 = openat$vcs(0xffffffffffffff9c, &(0x7f0000000040), 0x0, 0x0)
openat$sr(0xffffffffffffff9c, &(0x7f00000035c0), 0x0, 0x0)
ioctl$TIOCGDEV(r0, 0x80045432, &(0x7f0000000000))
openat$sr(0xffffffffffffff9c, &(0x7f00000000c0), 0x224400, 0x0)
r1 = openat$rtc(0xffffffffffffff9c, &(0x7f0000000200), 0x0, 0x0)
syz_io_uring_submit(0x0, 0x0, &(0x7f0000000100)=@IORING_OP_CLOSE={0x13, 0x4, 0x0, r1, 0x0, 0x0, 0x0, 0x0, 0x1}, 0xffff)
pipe(&(0x7f00000001c0)={<r2=>0xffffffffffffffff})
ioctl$HIDIOCGFLAG(r2, 0x8004480e, &(0x7f0000000080))
open(&(0x7f00000016c0)='./cgroup.net/cgroup.procs\x00', 0x0, 0x0)
pselect6(0x40, &(0x7f0000000180), &(0x7f00000001c0)={0x3fc}, 0x0, 0x0, 0x0)

21:23:17 executing program 6:
r0 = syz_mount_image$vfat(&(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x0, 0x2, &(0x7f0000000180)=[{&(0x7f0000000140)="eb3c906d6b66732e66617400020801000470008400f801", 0x17}, {0x0, 0x0, 0x1000a00}], 0x0, &(0x7f0000000240)=ANY=[])
chdir(&(0x7f0000000040)='./file0\x00')
openat2(r0, &(0x7f0000000100)='./file0\x00', &(0x7f00000001c0)={0x40000, 0x81}, 0x18)
mount$cgroup(0x0, 0x0, &(0x7f0000000400), 0x0, 0x0)
r1 = syz_io_uring_setup(0x22, &(0x7f0000000680)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000180)=<r2=>0x0, &(0x7f0000002a40)=<r3=>0x0)
r4 = io_uring_register$IORING_REGISTER_PERSONALITY(r1, 0x9, 0x0, 0x0)
r5 = socket$nl_netfilter(0x10, 0x3, 0xc)
syz_io_uring_submit(0x0, r3, &(0x7f0000000400)=@IORING_OP_WRITEV={0x2, 0x0, 0x0, @fd=r5, 0x0, 0x0, 0x0, 0x0, 0x0, {0x0, r4}}, 0x0)
r6 = syz_io_uring_setup(0x22, &(0x7f0000000680)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000180), &(0x7f0000002a40))
r7 = io_uring_register$IORING_REGISTER_PERSONALITY(r6, 0x9, 0x0, 0x0)
syz_io_uring_submit(r2, 0x0, &(0x7f0000000440)=@IORING_OP_FSYNC={0x3, 0x2, 0x0, @fd_index=0x9, 0x0, 0x0, 0x0, 0x0, 0x1, {0x0, r7}}, 0x2)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r8 = openat(0xffffffffffffff9c, &(0x7f00000002c0)='./file1\x00', 0x105142, 0x0)
r9 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0)
sendfile(r8, r9, 0x0, 0x100000001)
newfstatat(0xffffffffffffff9c, &(0x7f0000000340)='./file1\x00', &(0x7f0000000380), 0x400)

[ 2551.487290] 9pnet: Insufficient options for proto=fd
[ 2551.513339] 9pnet: Insufficient options for proto=fd
21:23:41 executing program 7:
r0 = perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
io_setup(0x0, &(0x7f00000002c0)=<r1=>0x0)
io_pgetevents(r1, 0x1, 0x1, &(0x7f0000000000)=[{}], 0x0, 0x0)
io_submit(r1, 0x1, &(0x7f0000000340)=[&(0x7f0000000300)={0x0, 0x0, 0x0, 0x5, 0x0, r0, 0x0}])

21:23:41 executing program 6:
r0 = syz_mount_image$vfat(&(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x0, 0x2, &(0x7f0000000180)=[{&(0x7f0000000140)="eb3c906d6b66732e66617400020801000470008400f801", 0x17}, {0x0, 0x0, 0x1000a00}], 0x0, &(0x7f0000000240)=ANY=[])
chdir(&(0x7f0000000040)='./file0\x00')
openat2(r0, &(0x7f0000000100)='./file0\x00', &(0x7f00000001c0)={0x40000, 0x81}, 0x18)
mount$cgroup(0x0, 0x0, &(0x7f0000000400), 0x0, 0x0)
r1 = syz_io_uring_setup(0x22, &(0x7f0000000680)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000180)=<r2=>0x0, &(0x7f0000002a40)=<r3=>0x0)
r4 = io_uring_register$IORING_REGISTER_PERSONALITY(r1, 0x9, 0x0, 0x0)
r5 = socket$nl_netfilter(0x10, 0x3, 0xc)
syz_io_uring_submit(0x0, r3, &(0x7f0000000400)=@IORING_OP_WRITEV={0x2, 0x0, 0x0, @fd=r5, 0x0, 0x0, 0x0, 0x0, 0x0, {0x0, r4}}, 0x0)
r6 = syz_io_uring_setup(0x22, &(0x7f0000000680)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000180), &(0x7f0000002a40))
r7 = io_uring_register$IORING_REGISTER_PERSONALITY(r6, 0x9, 0x0, 0x0)
syz_io_uring_submit(r2, 0x0, &(0x7f0000000440)=@IORING_OP_FSYNC={0x3, 0x2, 0x0, @fd_index=0x9, 0x0, 0x0, 0x0, 0x0, 0x1, {0x0, r7}}, 0x2)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r8 = openat(0xffffffffffffff9c, &(0x7f00000002c0)='./file1\x00', 0x105142, 0x0)
r9 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0)
sendfile(r8, r9, 0x0, 0x100000001)
newfstatat(0xffffffffffffff9c, &(0x7f0000000340)='./file1\x00', &(0x7f0000000380), 0x400)

21:23:41 executing program 2:
syz_mount_image$vfat(&(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x0, 0x2, &(0x7f0000000180)=[{&(0x7f0000000140)="eb3c906d6b66732e66617400020801000470008400f801", 0x17}, {0x0, 0x0, 0x1000a00}], 0x0, &(0x7f0000000240)=ANY=[])
perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
syz_mount_image$ext4(0x0, &(0x7f0000000100)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0)
pipe(&(0x7f00000001c0)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
mount$9p_fd(0x0, &(0x7f0000000040)='./file1\x00', &(0x7f00000000c0), 0x0, &(0x7f0000000380)=ANY=[@ANYBLOB='trans=fd,rfdno=', @ANYRESHEX=r0, @ANYBLOB=',wfdno=', @ANYRESHEX=r1, @ANYBLOB="2c6e6f6465766d61702c0002cbc99bd579332c3444b4a3662b8914ab83f6cf9229fc655d9a826d874b9d0682ef1d7bb48c38722fa26e0254513a4d6825646e97a4f160512e3513d46f86c9fc463dea5bbf15fced68f814b7613a2c5cd0cf54962b6bd829ab5230c6b70c53f949943de028dc7fb6bc778f483d837bf519e337ff55649ab89cd00915"])
openat(r1, &(0x7f00000001c0)='.\x00', 0x801c0, 0x10)
mount(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000000280)='sysfs\x00', 0x0, 0x0)
umount2(&(0x7f0000000180)='./file0\x00', 0x4)
chdir(&(0x7f0000000040)='./file0\x00')
r2 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x105142, 0x0)
ioctl$FS_IOC_RESVSP(r2, 0x40305828, &(0x7f0000000040)={0x0, 0x0, 0x0, 0x4000006})

21:23:41 executing program 1:
openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x105142, 0x0)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
pipe(&(0x7f00000001c0))
mount$9p_fd(0x300000000000000, &(0x7f0000000040)='./file1\x00', &(0x7f00000000c0), 0x0, &(0x7f0000000280)={'trans=fd,', {}, 0x2c, {}, 0x2c, {[{@nodevmap}]}})

21:23:41 executing program 5:
openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x105142, 0x0)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
pipe(&(0x7f00000001c0)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
mount$9p_fd(0x0, &(0x7f0000000040)='./file1\x00', &(0x7f00000000c0), 0x0, &(0x7f0000000280)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}}) (fail_nth: 58)
openat(0xffffffffffffffff, 0x0, 0x0, 0x0)

21:23:41 executing program 3:
openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x105142, 0x0)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x400}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
pipe(&(0x7f00000001c0)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
mount$9p_fd(0x0, &(0x7f0000000040)='./file1\x00', &(0x7f00000000c0), 0x10, &(0x7f0000000280)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {}, 0x2c, {[{@nodevmap}]}})
openat(r1, &(0x7f0000000180)='./file1\x00', 0x0, 0x0)

21:23:41 executing program 0:
syz_mount_image$vfat(&(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x0, 0x2, &(0x7f0000000180)=[{&(0x7f0000000140)="eb3c906d6b66732e66617400020801000470008400f801", 0x17}, {0x0, 0x0, 0x1000a00}], 0x0, &(0x7f0000000240)=ANY=[])
chdir(&(0x7f0000000040)='./file0\x00')
mount$cgroup(0x0, 0x0, &(0x7f0000000400), 0x0, 0x0)
r0 = syz_io_uring_setup(0x22, &(0x7f0000000680)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000180)=<r1=>0x0, &(0x7f0000002a40)=<r2=>0x0)
r3 = io_uring_register$IORING_REGISTER_PERSONALITY(r0, 0x9, 0x0, 0x0)
r4 = socket$nl_netfilter(0x10, 0x3, 0xc)
syz_io_uring_submit(r1, r2, &(0x7f0000000400)=@IORING_OP_WRITEV={0x2, 0x0, 0x0, @fd=r4, 0x0, 0x0, 0x0, 0x0, 0x0, {0x0, r3}}, 0x0)
r5 = syz_io_uring_setup(0x22, &(0x7f0000000680)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000180), &(0x7f0000002a40))
r6 = io_uring_register$IORING_REGISTER_PERSONALITY(r5, 0x9, 0x0, 0x0)
syz_io_uring_submit(0x0, 0x0, &(0x7f0000000440)=@IORING_OP_FSYNC={0x3, 0x2, 0x0, @fd_index=0x9, 0x0, 0x0, 0x0, 0x0, 0x1, {0x0, r6}}, 0x2)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r7 = openat(0xffffffffffffff9c, &(0x7f00000002c0)='./file1\x00', 0x105142, 0x0)
r8 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0)
mount(&(0x7f0000000200)=ANY=[@ANYBLOB="2f6f651317868af191bdb2"], &(0x7f0000000240)='./file0\x00', &(0x7f0000000280)='nfsd\x00', 0x800000, &(0x7f0000000300)='cgroup\x00')
sendfile(r7, r8, 0x0, 0x100000001)
newfstatat(0xffffffffffffff9c, &(0x7f0000000340)='./file1\x00', &(0x7f0000000380), 0x400)

21:23:41 executing program 4:
openat$vcs(0xffffffffffffff9c, &(0x7f0000000040), 0x0, 0x0)
openat$sr(0xffffffffffffff9c, &(0x7f0000000100), 0x0, 0x0)
openat$sr(0xffffffffffffff9c, &(0x7f00000000c0), 0x224400, 0x0)
openat$rtc(0xffffffffffffff9c, &(0x7f0000000200), 0x0, 0x0)
pipe(&(0x7f0000000000))
open(&(0x7f00000016c0)='./cgroup.net/cgroup.procs\x00', 0x0, 0x0)
pselect6(0x40, &(0x7f0000000180), &(0x7f00000001c0)={0x3fc}, 0x0, 0x0, 0x0)

[ 2574.728186] 9pnet: Insufficient options for proto=fd
[ 2574.741169] 9pnet: Insufficient options for proto=fd
[ 2574.752137] FAULT_INJECTION: forcing a failure.
[ 2574.752137] name failslab, interval 1, probability 0, space 0, times 0
[ 2574.753772] CPU: 1 PID: 23278 Comm: syz-executor.5 Not tainted 5.10.172 #1
[ 2574.754689] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 2574.755533] Call Trace:
[ 2574.755891]  dump_stack+0x107/0x167
[ 2574.756376]  should_fail.cold+0x5/0xa
[ 2574.756877]  ? create_object.isra.0+0x3a/0xa20
[ 2574.757477]  should_failslab+0x5/0x20
[ 2574.757866]  kmem_cache_alloc+0x5b/0x360
[ 2574.758307]  create_object.isra.0+0x3a/0xa20
[ 2574.758772]  ? __kasan_kmalloc.constprop.0+0xc9/0xd0
[ 2574.759305]  kmem_cache_alloc+0x159/0x360
[ 2574.759741]  __kernfs_new_node+0xd4/0x850
[ 2574.760177]  ? kernfs_dop_revalidate+0x3a0/0x3a0
[ 2574.760667]  ? __mutex_unlock_slowpath+0xe1/0x600
[ 2574.761166]  ? wait_for_completion_io+0x270/0x270
[ 2574.761666]  ? kernfs_next_descendant_post+0x1a7/0x2a0
[ 2574.762218]  kernfs_new_node+0x93/0x120
[ 2574.762640]  __kernfs_create_file+0x51/0x350
[ 2574.763102]  sysfs_add_file_mode_ns+0x221/0x560
[ 2574.763589]  internal_create_group+0x324/0xb30
[ 2574.764071]  ? sysfs_remove_group+0x170/0x170
[ 2574.764533]  ? kernfs_name_hash+0xe7/0x110
[ 2574.764970]  ? kernfs_find_ns+0x256/0x380
[ 2574.765406]  sysfs_slab_add+0x188/0x200
[ 2574.765816]  __kmem_cache_create+0x3db/0x520
[ 2574.766270]  kmem_cache_create_usercopy+0x1db/0x2f0
[ 2574.766810]  p9_client_create+0xc2b/0x1090
[ 2574.767253]  ? p9_client_flush+0x430/0x430
[ 2574.767715]  ? lockdep_init_map_type+0x2c7/0x780
[ 2574.768195]  ? rcu_read_lock_sched_held+0x3e/0x80
[ 2574.768724]  ? __raw_spin_lock_init+0x36/0x110
[ 2574.769195]  v9fs_session_init+0x1dd/0x16a0
[ 2574.769676]  ? kmem_cache_alloc_trace+0x151/0x360
[ 2574.770166]  ? v9fs_show_options+0x690/0x690
[ 2574.770668]  ? kasan_unpoison_shadow+0x33/0x50
[ 2574.771136]  ? __kasan_kmalloc.constprop.0+0xc9/0xd0
[ 2574.771696]  v9fs_mount+0x79/0x8f0
[ 2574.772067]  ? v9fs_write_inode+0x60/0x60
[ 2574.772518]  legacy_get_tree+0x105/0x220
[ 2574.772937]  vfs_get_tree+0x8e/0x300
[ 2574.773344]  path_mount+0x13be/0x20b0
[ 2574.773736]  ? strncpy_from_user+0x9e/0x470
[ 2574.774201]  ? finish_automount+0xa40/0xa40
[ 2574.774661]  ? getname_flags.part.0+0x1dd/0x4f0
[ 2574.775162]  ? _copy_from_user+0xfb/0x1b0
[ 2574.775592]  __x64_sys_mount+0x282/0x300
[ 2574.776031]  ? copy_mnt_ns+0xa00/0xa00
[ 2574.776432]  ? rcu_read_lock_sched_held+0x3e/0x80
[ 2574.776961]  do_syscall_64+0x33/0x40
[ 2574.777342]  entry_SYSCALL_64_after_hwframe+0x61/0xc6
[ 2574.777887] RIP: 0033:0x7f38308e8b19
[ 2574.778270] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 2574.780241] RSP: 002b:00007f382de5e188 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5
[ 2574.781019] RAX: ffffffffffffffda RBX: 00007f38309fbf60 RCX: 00007f38308e8b19
[ 2574.781772] RDX: 00000000200000c0 RSI: 0000000020000040 RDI: 0000000000000000
[ 2574.782549] RBP: 00007f382de5e1d0 R08: 0000000020000280 R09: 0000000000000000
[ 2574.783313] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[ 2574.784074] R13: 00007ffca2bf07df R14: 00007f382de5e300 R15: 0000000000022000
21:23:41 executing program 3:
openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x105142, 0x0)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x400}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
pipe(&(0x7f00000001c0)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
mount$9p_fd(0x0, &(0x7f0000000040)='./file1\x00', &(0x7f00000000c0), 0x300, &(0x7f0000000280)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {}, 0x2c, {[{@nodevmap}]}})
openat(r1, &(0x7f0000000180)='./file1\x00', 0x0, 0x0)

21:23:41 executing program 7:
r0 = perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
io_setup(0x0, &(0x7f00000002c0)=<r1=>0x0)
io_pgetevents(r1, 0x1, 0x1, &(0x7f0000000000)=[{}], 0x0, 0x0)
io_submit(r1, 0x1, &(0x7f0000000340)=[&(0x7f0000000300)={0x0, 0x0, 0x0, 0x5, 0x0, r0, 0x0}])

[ 2574.891395] 9pnet: Insufficient options for proto=fd
[ 2574.909067] 9pnet: Insufficient options for proto=fd
21:23:41 executing program 4:
prctl$PR_SET_MM_MAP(0x23, 0xe, &(0x7f0000000100)={&(0x7f0000ffc000/0x4000)=nil, &(0x7f0000ffd000/0x1000)=nil, &(0x7f0000ffb000/0x4000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000ffe000/0x1000)=nil, &(0x7f0000ffb000/0x1000)=nil, &(0x7f0000ffe000/0x2000)=nil, &(0x7f0000ffd000/0x3000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000ffd000/0x3000)=nil, &(0x7f0000000000)="99b9c427b58919456593831bac2cfa26e8eb0c7bc45e336afaf75e8cb6ba906c138743447d5f7a7dacc151ac", 0x2c}, 0x68)
openat$vcs(0xffffffffffffff9c, &(0x7f0000000040), 0x0, 0x0)
openat$sr(0xffffffffffffff9c, &(0x7f00000035c0), 0x0, 0x0)
openat$sr(0xffffffffffffff9c, &(0x7f00000000c0), 0x224400, 0x0)
openat$rtc(0xffffffffffffff9c, &(0x7f0000000200), 0x0, 0x0)
r0 = perf_event_open(&(0x7f0000001d80)={0x2, 0x80, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
mmap(&(0x7f0000ffc000/0x2000)=nil, 0x2000, 0x0, 0x13, r0, 0x0)
perf_event_open(&(0x7f0000001d80)={0x2, 0x80, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, r0, 0x2)
write$binfmt_elf64(r0, &(0x7f0000000240)=ANY=[@ANYBLOB="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"/551], 0x227)
pipe(&(0x7f00000001c0))
open(&(0x7f00000016c0)='./cgroup.net/cgroup.procs\x00', 0x0, 0x0)
pselect6(0x40, &(0x7f0000000180)={0x0, 0x5}, &(0x7f00000001c0)={0x3fc, 0x0, 0x0, 0x0, 0x7, 0x3}, 0x0, 0x0, 0x0)

21:23:41 executing program 2:
r0 = perf_event_open(&(0x7f0000001d80)={0x2, 0x80, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
mmap(&(0x7f0000ffc000/0x2000)=nil, 0x2000, 0x0, 0x13, r0, 0x0)
r1 = perf_event_open(&(0x7f0000001d80)={0x2, 0x80, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, r0, 0x2)
r2 = perf_event_open(&(0x7f0000001d80)={0x2, 0x80, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
mmap(&(0x7f0000ffc000/0x2000)=nil, 0x2000, 0x0, 0x13, r2, 0x0)
perf_event_open(&(0x7f0000001d80)={0x2, 0x80, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, r2, 0x2)
syz_mount_image$vfat(&(0x7f0000000080), &(0x7f00000000c0)='./file1\x00', 0x0, 0xe, &(0x7f0000000a00)=[{&(0x7f0000000140)="eb3c906d922b173d937c58df7f0801080470008400f801", 0x17}, {0x0, 0x0, 0x1000a00}, {&(0x7f00000002c0), 0x0, 0x7}, {&(0x7f0000000300)="cbd4c35be40fe3e74aa00a79b2a4f3b45442fc70b8b9", 0x16, 0x1}, {&(0x7f0000000340)="678b11c2cc92272835a4a33498b600279e9a073f9974b5c0e406708e4464c2ba2a651ff7dcb8bb9b638628c4a7f234b0243502c1c31f904ac416205de5a9", 0x3e, 0x299f}, {&(0x7f0000000380)="2e01f738223920b6afb85ed2768fd4233800a08314867515adfc017d2020ff502134ba6b076a343112d3fa2ba6472caa3d35de303de675e819efaf052cb49025a7af1ea86a8f4262a5ab9ba947abb3b2e9f78f44506f9aae46654502527125a72e4566a57b16401b4ef99c8f689a3ae3b493714a0aea2f7037d81fc2a98b53cbb03e9d4e14349e073fefb09bc36f67281142ac0500d983a60fe9556735cb7564e8e58fc797445369076d97ae9f5fa1e973921af4adf9b54b1771ca19c196766d759d59791fbd30debf", 0xc9}, {&(0x7f0000000480)="6e12f1ffbf3bad64c63087650feb25bc76a57ec9b4a41707cfd2c252cb65a4d090c676ff0e60085aba4536b1efe181a403b0d692edd89b72", 0x38, 0x1}, {&(0x7f00000004c0)="985d2e72c0908f58c13591720398f3b1c0b3766a3fb6a27acee4180b0c9628d94b1607f2808a121a3949e170a3dde13861fbb40bf5dcb716f807b5a90cafe442261a3202e9d3713db71bedd8a1b7017e6fb524820e61659421e62a86eaa95891fd971e1d7f6c8f2b2d55e117441ebf02368897543727b2fa507ae7e0317dec87721932e047453bbeedda84f73152418e10a06c5354776e88fb06040f76d8606a7a4404290bce7d868452da0668b470cbc533cebe7553d6cb6c8ba3", 0xbb, 0xdf9b}, {&(0x7f0000000580)="8889d49b6cdc1563d0aacf0e7329a349852f4426858307972c640ee082ef30e77113531d0db8d00f72a95499db678178c005fb0f0f873221a89b25d71376e9162c402783979f37792d9b5f3b91c629c1b72df2c9752be7b958d8b83142bacf0271cce0eedbf5c3c8328c5f74daaee4b53a374f3c0ba58f3328a64e825899b53ef884e8106b3794fe15ae7127", 0x8c, 0x9}, {&(0x7f0000000640)="6f7abf4e308b24b77055a79795d77a421de8a8a70ba9a8b232528925eaa1c13e00500dbe8b4a69406b66c7911e9c9a143f29ec0de60e122e2237db4ad7889d6398752e3fdd06f3780830b1a4c4121dce604b0661e7fe0799bfaaaaa5220f98d57dee6a6e02ee548059a518c86083460245ab65085641bc7dd382a9b5342b8fc8c34c079f84cbf9bc12bb78297dcd2c3f2d7becb8d30d904cf46f4986743adb1ac0b5bc582fb05c1ce7b4cf147a2e0c1d6dd92949c9981511c2318d95a6470aff99d65b4e85a76609722c9085646e1bf32351da3bd2df144e5daf0b6f7319789cb3b02ec0296c031d26eadabc45", 0xed, 0x706b}, {&(0x7f0000000740)="fe58eb868dda6b59bab4bd3dfab9ad0b9f9ad3fab37bb55d7ee27d5741e24cd72ddb945e3910a65e5a28f43fcfe4f4bfba24d3143704db0b2070f3eba0c3ac64f4775ca4493595a1c9e9369bf228352d602421aebc153fb9507116e5405b75a99c8b3e1309593403f9e636b0ba79fb9fb7dd2a16354e3ceeb69532882e0525dc17addd3f7a5ad4c1e925dde3f5ddb3d5afb4caeef0f3196a4dbb7d5ae113dc9928650ff09805c832433d", 0xaa, 0x86}, {&(0x7f0000000800)="1804fabf2df4c61e70c8fb7690eba52922eb459b97c0cba31639962dfa6c63321a1e2f1ca56c76ecbf1e2f76747d9bd0da0b94b24278a658716736edf5d04de0f3e0876d96a96c813d33d2c19cf88d6c537d4ab9a3001ca5df3d0ddaa4bd754102b3ce01eff05aec366b9519e89d65c394b2e16e7fd2aac936af", 0x7a, 0x6}, {&(0x7f0000000c40)="ecbc715c4468996808894e6e541817c600271346112ebd8e2c9b9c3fcb4945a2e402ae3310bf4771aff4817ffc3908a083873172b7386513e5fe4422d4eb849b51eca18d4159622c2df2410315b8f68d3c3fc454bed397459143df3efcdc156e14ebd632c3f1070cd50d8bffa2768e57b1df7bfb5a60d58ce4cad90ad402b5d4287e4a9ed8c320d7477ffbc39d279dd03c1c5e00000000000047a723f5613cb6d67e287009ed132d37b9cd0eb5fb5852bebf8e24a912f9eb638c86d24fe7632685f9937d1343e9e4c3b5", 0xca, 0x7c12}, {&(0x7f0000000940)="3148e04226d4fa57f613007d15196646adf8dff17316718a18ec8930f5c54ea738d3e0bd645e2c7ff783e26419d4542dbba12e4b66c4b0ed8feea850c7a2e6818968267c29656e77521f9dd64b0be84abdcd9bc64ca871ddd19f8c152deb2803ced492d0ade59b15c468f82d25581eb048a2a5466810152874796a5373254e47e260e98bd45b72dce0f01087a915ba750826d85aca3e78ee5eac3af713c6fcc058418190b167", 0xa6, 0x5}], 0x0, &(0x7f00000001c0)=ANY=[@ANYRESHEX=r2, @ANYRESHEX=0x0, @ANYRESHEX=r0, @ANYRESDEC, @ANYRESDEC=r1])
name_to_handle_at(0xffffffffffffffff, &(0x7f0000000000)='./file1\x00', &(0x7f0000000240)=@ocfs2_parent={0x18, 0x2, {{0x53}, {0x5, 0x10001, 0x7}}}, &(0x7f0000000280), 0x0)
chdir(&(0x7f0000000040)='./file0\x00')
r3 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x105142, 0x0)
ioctl$FS_IOC_RESVSP(r3, 0x40305828, &(0x7f0000000040)={0x0, 0x0, 0x0, 0x4000006})
r4 = perf_event_open(&(0x7f0000001d80)={0x2, 0x80, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
mmap(&(0x7f0000ffc000/0x2000)=nil, 0x2000, 0x0, 0x13, r4, 0x0)
perf_event_open(&(0x7f0000001d80)={0x2, 0x80, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, r4, 0x2)
ioctl$BTRFS_IOC_SYNC(r4, 0x9408, 0x0)

21:23:41 executing program 1:
openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x105142, 0x0)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
pipe(&(0x7f00000001c0))
mount$9p_fd(0x400000000000000, &(0x7f0000000040)='./file1\x00', &(0x7f00000000c0), 0x0, &(0x7f0000000280)={'trans=fd,', {}, 0x2c, {}, 0x2c, {[{@nodevmap}]}})

21:23:41 executing program 3:
openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x105142, 0x0)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x400}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
pipe(&(0x7f00000001c0)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
mount$9p_fd(0x0, &(0x7f0000000040)='./file1\x00', &(0x7f00000000c0), 0x500, &(0x7f0000000280)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {}, 0x2c, {[{@nodevmap}]}})
openat(r1, &(0x7f0000000180)='./file1\x00', 0x0, 0x0)

21:23:41 executing program 7:
r0 = perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
io_setup(0x0, &(0x7f00000002c0)=<r1=>0x0)
io_pgetevents(r1, 0x1, 0x1, &(0x7f0000000000)=[{}], 0x0, 0x0)
io_submit(r1, 0x1, &(0x7f0000000340)=[&(0x7f0000000300)={0x0, 0x0, 0x0, 0x5, 0x0, r0, 0x0}])

21:23:41 executing program 7:
r0 = perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
io_setup(0x7f, 0x0)
io_pgetevents(0x0, 0x1, 0x1, &(0x7f0000000000)=[{}], 0x0, 0x0)
io_submit(0x0, 0x1, &(0x7f0000000340)=[&(0x7f0000000300)={0x0, 0x0, 0x0, 0x5, 0x0, r0, 0x0}])

[ 2575.210945] FAT-fs (loop2): Unrecognized mount option "0x00000000000000050x00000000000000000x00000000000000031844674407370955161500000000000000000004" or missing value
[ 2575.245195] 9pnet: Insufficient options for proto=fd
[ 2575.295793] 9pnet: Insufficient options for proto=fd
21:23:41 executing program 5:
openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x105142, 0x0)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
pipe(&(0x7f00000001c0)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
mount$9p_fd(0x0, &(0x7f0000000040)='./file1\x00', &(0x7f00000000c0), 0x0, &(0x7f0000000280)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}}) (fail_nth: 59)
openat(0xffffffffffffffff, 0x0, 0x0, 0x0)

[ 2575.383885] FAT-fs (loop2): Unrecognized mount option "0x00000000000000040x00000000000000000x00000000000000031844674407370955161500000000000000000004" or missing value
[ 2575.489554] FAULT_INJECTION: forcing a failure.
[ 2575.489554] name failslab, interval 1, probability 0, space 0, times 0
[ 2575.493087] CPU: 0 PID: 23515 Comm: syz-executor.5 Not tainted 5.10.172 #1
[ 2575.494944] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 2575.496966] Call Trace:
[ 2575.497587]  dump_stack+0x107/0x167
[ 2575.498435]  should_fail.cold+0x5/0xa
[ 2575.499315]  ? __kernfs_new_node+0xd4/0x850
[ 2575.500286]  should_failslab+0x5/0x20
[ 2575.501145]  kmem_cache_alloc+0x5b/0x360
[ 2575.502051]  __kernfs_new_node+0xd4/0x850
[ 2575.502997]  ? kernfs_dop_revalidate+0x3a0/0x3a0
[ 2575.504034]  ? __mutex_unlock_slowpath+0xe1/0x600
[ 2575.505092]  ? wait_for_completion_io+0x270/0x270
[ 2575.506144]  ? kernfs_next_descendant_post+0x1a7/0x2a0
[ 2575.507313]  kernfs_new_node+0x93/0x120
[ 2575.508189]  __kernfs_create_file+0x51/0x350
[ 2575.509160]  sysfs_add_file_mode_ns+0x221/0x560
[ 2575.510187]  internal_create_group+0x324/0xb30
[ 2575.511220]  ? sysfs_remove_group+0x170/0x170
[ 2575.512211]  ? kernfs_name_hash+0xe7/0x110
[ 2575.513144]  ? kernfs_find_ns+0x256/0x380
[ 2575.514061]  sysfs_slab_add+0x188/0x200
[ 2575.514949]  __kmem_cache_create+0x3db/0x520
[ 2575.515920]  kmem_cache_create_usercopy+0x1db/0x2f0
[ 2575.517023]  p9_client_create+0xc2b/0x1090
[ 2575.517962]  ? p9_client_flush+0x430/0x430
[ 2575.518922]  ? lockdep_init_map_type+0x2c7/0x780
[ 2575.519961]  ? rcu_read_lock_sched_held+0x3e/0x80
[ 2575.521018]  ? __raw_spin_lock_init+0x36/0x110
[ 2575.522028]  v9fs_session_init+0x1dd/0x16a0
[ 2575.523004]  ? kmem_cache_alloc_trace+0x151/0x360
[ 2575.524051]  ? v9fs_show_options+0x690/0x690
[ 2575.525037]  ? kasan_unpoison_shadow+0x33/0x50
[ 2575.526035]  ? __kasan_kmalloc.constprop.0+0xc9/0xd0
[ 2575.527152]  v9fs_mount+0x79/0x8f0
[ 2575.527932]  ? v9fs_write_inode+0x60/0x60
[ 2575.528834]  legacy_get_tree+0x105/0x220
[ 2575.529729]  vfs_get_tree+0x8e/0x300
[ 2575.530559]  path_mount+0x13be/0x20b0
[ 2575.531397]  ? strncpy_from_user+0x9e/0x470
[ 2575.532342]  ? finish_automount+0xa40/0xa40
[ 2575.533283]  ? getname_flags.part.0+0x1dd/0x4f0
[ 2575.534299]  ? _copy_from_user+0xfb/0x1b0
[ 2575.535227]  __x64_sys_mount+0x282/0x300
[ 2575.536118]  ? copy_mnt_ns+0xa00/0xa00
[ 2575.536974]  ? rcu_read_lock_sched_held+0x3e/0x80
[ 2575.538032]  do_syscall_64+0x33/0x40
[ 2575.538862]  entry_SYSCALL_64_after_hwframe+0x61/0xc6
[ 2575.539979] RIP: 0033:0x7f38308e8b19
[ 2575.540798] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 2575.544791] RSP: 002b:00007f382de5e188 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5
[ 2575.546438] RAX: ffffffffffffffda RBX: 00007f38309fbf60 RCX: 00007f38308e8b19
[ 2575.547992] RDX: 00000000200000c0 RSI: 0000000020000040 RDI: 0000000000000000
[ 2575.549559] RBP: 00007f382de5e1d0 R08: 0000000020000280 R09: 0000000000000000
[ 2575.551121] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[ 2575.552695] R13: 00007ffca2bf07df R14: 00007f382de5e300 R15: 0000000000022000
[ 2575.625339] kmem_cache_create(9p-fcall-cache) failed with error -12
[ 2575.627210] CPU: 1 PID: 23515 Comm: syz-executor.5 Not tainted 5.10.172 #1
[ 2575.628488] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 2575.630016] Call Trace:
[ 2575.630527]  dump_stack+0x107/0x167
[ 2575.631213]  kmem_cache_create_usercopy.cold+0x17/0x65
[ 2575.632192]  p9_client_create+0xc2b/0x1090
[ 2575.632985]  ? p9_client_flush+0x430/0x430
[ 2575.633779]  ? lockdep_init_map_type+0x2c7/0x780
[ 2575.634679]  ? rcu_read_lock_sched_held+0x3e/0x80
[ 2575.635576]  ? __raw_spin_lock_init+0x36/0x110
[ 2575.636431]  v9fs_session_init+0x1dd/0x16a0
[ 2575.637244]  ? kmem_cache_alloc_trace+0x151/0x360
[ 2575.638129]  ? v9fs_show_options+0x690/0x690
[ 2575.638964]  ? kasan_unpoison_shadow+0x33/0x50
[ 2575.639801]  ? __kasan_kmalloc.constprop.0+0xc9/0xd0
[ 2575.640736]  v9fs_mount+0x79/0x8f0
[ 2575.641397]  ? v9fs_write_inode+0x60/0x60
[ 2575.642155]  legacy_get_tree+0x105/0x220
[ 2575.642929]  vfs_get_tree+0x8e/0x300
[ 2575.643619]  path_mount+0x13be/0x20b0
[ 2575.644326]  ? strncpy_from_user+0x9e/0x470
[ 2575.645119]  ? finish_automount+0xa40/0xa40
[ 2575.645914]  ? getname_flags.part.0+0x1dd/0x4f0
[ 2575.646775]  ? _copy_from_user+0xfb/0x1b0
[ 2575.647549]  __x64_sys_mount+0x282/0x300
[ 2575.648295]  ? copy_mnt_ns+0xa00/0xa00
[ 2575.649015]  ? rcu_read_lock_sched_held+0x3e/0x80
[ 2575.649900]  do_syscall_64+0x33/0x40
[ 2575.650603]  entry_SYSCALL_64_after_hwframe+0x61/0xc6
[ 2575.651540] RIP: 0033:0x7f38308e8b19
[ 2575.652225] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 2575.655587] RSP: 002b:00007f382de5e188 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5
[ 2575.656984] RAX: ffffffffffffffda RBX: 00007f38309fbf60 RCX: 00007f38308e8b19
[ 2575.658284] RDX: 00000000200000c0 RSI: 0000000020000040 RDI: 0000000000000000
[ 2575.659588] RBP: 00007f382de5e1d0 R08: 0000000020000280 R09: 0000000000000000
[ 2575.660880] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[ 2575.662179] R13: 00007ffca2bf07df R14: 00007f382de5e300 R15: 0000000000022000
21:23:57 executing program 6:
r0 = syz_mount_image$vfat(&(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x0, 0x2, &(0x7f0000000180)=[{&(0x7f0000000140)="eb3c906d6b66732e66617400020801000470008400f801", 0x17}, {0x0, 0x0, 0x1000a00}], 0x0, &(0x7f0000000240)=ANY=[])
chdir(&(0x7f0000000040)='./file0\x00')
openat2(r0, &(0x7f0000000100)='./file0\x00', &(0x7f00000001c0)={0x40000, 0x81}, 0x18)
mount$cgroup(0x0, 0x0, &(0x7f0000000400), 0x0, 0x0)
r1 = syz_io_uring_setup(0x22, &(0x7f0000000680)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000180)=<r2=>0x0, &(0x7f0000002a40))
r3 = io_uring_register$IORING_REGISTER_PERSONALITY(r1, 0x9, 0x0, 0x0)
r4 = socket$nl_netfilter(0x10, 0x3, 0xc)
syz_io_uring_submit(r2, 0x0, &(0x7f0000000400)=@IORING_OP_WRITEV={0x2, 0x0, 0x0, @fd=r4, 0x0, 0x0, 0x0, 0x0, 0x0, {0x0, r3}}, 0x0)
r5 = syz_io_uring_setup(0x22, &(0x7f0000000680)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000180), &(0x7f0000002a40))
r6 = io_uring_register$IORING_REGISTER_PERSONALITY(r5, 0x9, 0x0, 0x0)
syz_io_uring_submit(r2, 0x0, &(0x7f0000000440)=@IORING_OP_FSYNC={0x3, 0x2, 0x0, @fd_index=0x9, 0x0, 0x0, 0x0, 0x0, 0x1, {0x0, r6}}, 0x2)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r7 = openat(0xffffffffffffff9c, &(0x7f00000002c0)='./file1\x00', 0x105142, 0x0)
r8 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0)
sendfile(r7, r8, 0x0, 0x100000001)
newfstatat(0xffffffffffffff9c, &(0x7f0000000340)='./file1\x00', &(0x7f0000000380), 0x400)

21:23:57 executing program 4:
openat$vcs(0xffffffffffffff9c, &(0x7f0000000040), 0x0, 0x0)
openat$sr(0xffffffffffffff9c, &(0x7f00000035c0), 0x0, 0x0)
openat$sr(0xffffffffffffff9c, &(0x7f00000000c0), 0x224400, 0x0)
openat$rtc(0xffffffffffffff9c, &(0x7f0000000200), 0x0, 0x0)
pipe(&(0x7f00000001c0))
r0 = open(&(0x7f00000016c0)='./cgroup.net/cgroup.procs\x00', 0x0, 0x0)
ioctl$INCFS_IOC_CREATE_FILE(r0, 0xc058671e, &(0x7f0000000480)={{}, {0x2}, 0xc, 0x0, 0x0, &(0x7f0000000000)='./cgroup.net/cgroup.procs\x00', &(0x7f0000000080)='./cgroup.net/cgroup.procs\x00', &(0x7f0000000100)="b568d829b742fcbf5f1b09f66726aa2d", 0x10, 0x0, &(0x7f0000000240)={0x2, 0x149, {0x1, 0xc, 0x9c, "54af046265f38a76279e644db8778eb2a1d377a2c9bbb1d9decf516e19daff6ccf0b462a63992d9a32493bcd7881cfb09a0fb1adeff2ad2d0ab14bffa1e72af727ad49943a462c17e0f975e06aa02ce76729777386cfa3290907a533b1355281a28adf1f7fd39bc6fb0d6ffe43c2072ec2349683a4f6aad73de133abcba35a2fd2f208eec36184e646a5fe77b596255068517dc0b71422ff15a3e69e", 0xa0, "beb1b4776cc497a7f8a7ea1f47523e28e1cfecdcc272b5b6a15d85146a3ea915ca1bc04dd28550180dea268eee707be7d6663b6a284d720e665c6ec2acbc86da57a2e68c908882e834efd1f5f1cdef3e65ddd1a3297589ae3a27769beb63ddf6d0412dbbaa54f8767dcf4a05bae87cfe22fbcff39030f6aaad07f85c2dbfb00b36e676ee40fac982c76eff865a2a92ae34f7ebf6810a49f0c8321947f3883f7c"}, 0xd9, "4a1aecb892e6b6727c4810c8f63f39dfc1e8abc49c56f76245fcc0f3b9ffe4ed6cbe8cb6e26d69ab768a4edc951b17ad55920eaa39706cc22810feb1520e46fdbd198d9266878815e0c3b5c383841ceb78ea4362cbcd1f0233ffaf3e2444e9db57ad99acdf38d5d6044ea2918fd69300a8d9da385d42c5d16b43d37eb5d3d9f300b062378b62b7221ccb566e0a8f451f89a0dd45a2adf280825327a835a29c5f8081d0bbd18dbb935695aa97c8029eb6d5508788e70f9eee7f3d08781134bbc5584e50ebc635ac9dcfbbb83e3fb8f5da68806ec291967ff0d9"}, 0x22e})
pselect6(0x40, &(0x7f0000000180), &(0x7f00000001c0)={0x3fc}, 0x0, 0x0, 0x0)

21:23:57 executing program 0:
syz_mount_image$vfat(&(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x0, 0x2, &(0x7f0000000180)=[{&(0x7f0000000140)="eb3c906d6b66732e66617400020801000470008400f801", 0x17}, {0x0, 0x0, 0x1000a00}], 0x0, &(0x7f0000000240)=ANY=[])
chdir(&(0x7f0000000040)='./file0\x00')
mount$cgroup(0x0, 0x0, &(0x7f0000000400), 0x0, 0x0)
r0 = syz_io_uring_setup(0x22, &(0x7f0000000680)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000180)=<r1=>0x0, &(0x7f0000002a40)=<r2=>0x0)
r3 = io_uring_register$IORING_REGISTER_PERSONALITY(r0, 0x9, 0x0, 0x0)
r4 = socket$nl_netfilter(0x10, 0x3, 0xc)
syz_io_uring_submit(r1, r2, &(0x7f0000000400)=@IORING_OP_WRITEV={0x2, 0x0, 0x0, @fd=r4, 0x0, 0x0, 0x0, 0x0, 0x0, {0x0, r3}}, 0x0)
r5 = syz_io_uring_setup(0x22, &(0x7f0000000680)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000180), &(0x7f0000002a40))
r6 = io_uring_register$IORING_REGISTER_PERSONALITY(r5, 0x9, 0x0, 0x0)
syz_io_uring_submit(0x0, 0x0, &(0x7f0000000440)=@IORING_OP_FSYNC={0x3, 0x2, 0x0, @fd_index=0x9, 0x0, 0x0, 0x0, 0x0, 0x1, {0x0, r6}}, 0x2)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r7 = openat(0xffffffffffffff9c, &(0x7f00000002c0)='./file1\x00', 0x105142, 0x0)
r8 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0)
mount(&(0x7f0000000200)=ANY=[@ANYBLOB="2f6f651317868af191bdb2"], &(0x7f0000000240)='./file0\x00', &(0x7f0000000280)='nfsd\x00', 0x800000, &(0x7f0000000300)='cgroup\x00')
sendfile(r7, r8, 0x0, 0x100000001)
newfstatat(0xffffffffffffff9c, &(0x7f0000000340)='./file1\x00', &(0x7f0000000380), 0x400)

21:23:57 executing program 1:
openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x105142, 0x0)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
pipe(&(0x7f00000001c0))
mount$9p_fd(0x500000000000000, &(0x7f0000000040)='./file1\x00', &(0x7f00000000c0), 0x0, &(0x7f0000000280)={'trans=fd,', {}, 0x2c, {}, 0x2c, {[{@nodevmap}]}})

21:23:57 executing program 5:
openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x105142, 0x0)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
pipe(&(0x7f00000001c0)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
mount$9p_fd(0x0, &(0x7f0000000040)='./file1\x00', &(0x7f00000000c0), 0x0, &(0x7f0000000280)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}}) (fail_nth: 60)
openat(0xffffffffffffffff, 0x0, 0x0, 0x0)

21:23:57 executing program 3:
openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x105142, 0x0)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x400}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
pipe(&(0x7f00000001c0)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
mount$9p_fd(0x0, &(0x7f0000000040)='./file1\x00', &(0x7f00000000c0), 0x600, &(0x7f0000000280)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {}, 0x2c, {[{@nodevmap}]}})
openat(r1, &(0x7f0000000180)='./file1\x00', 0x0, 0x0)

21:23:57 executing program 7:
r0 = perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
io_setup(0x7f, 0x0)
io_pgetevents(0x0, 0x1, 0x1, &(0x7f0000000000)=[{}], 0x0, 0x0)
io_submit(0x0, 0x1, &(0x7f0000000340)=[&(0x7f0000000300)={0x0, 0x0, 0x0, 0x5, 0x0, r0, 0x0}])

21:23:57 executing program 2:
syz_mount_image$vfat(&(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x0, 0x2, &(0x7f0000000180)=[{&(0x7f0000000140)="eb3c906d6b66732e66617400020801000470008400f801", 0x17, 0xfffffffffffffffc}, {0x0, 0x0, 0x1000a00}], 0x0, &(0x7f0000000240)=ANY=[])
chdir(&(0x7f0000000040)='./file0\x00')
r0 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x105142, 0x0)
ioctl$FS_IOC_RESVSP(r0, 0x40305828, &(0x7f0000000040)={0x0, 0x0, 0x0, 0x4000006})

[ 2591.444557] 9pnet: Insufficient options for proto=fd
[ 2591.462350] FAULT_INJECTION: forcing a failure.
[ 2591.462350] name failslab, interval 1, probability 0, space 0, times 0
[ 2591.465156] CPU: 1 PID: 23536 Comm: syz-executor.5 Not tainted 5.10.172 #1
[ 2591.466647] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 2591.468450] Call Trace:
[ 2591.469025]  dump_stack+0x107/0x167
[ 2591.469809]  should_fail.cold+0x5/0xa
[ 2591.470640]  ? create_object.isra.0+0x3a/0xa20
[ 2591.471621]  should_failslab+0x5/0x20
[ 2591.472403]  kmem_cache_alloc+0x5b/0x360
[ 2591.473252]  create_object.isra.0+0x3a/0xa20
[ 2591.474158]  ? __kasan_kmalloc.constprop.0+0xc9/0xd0
[ 2591.475227]  kmem_cache_alloc+0x159/0x360
[ 2591.476095]  __kernfs_new_node+0xd4/0x850
[ 2591.476957]  ? kernfs_dop_revalidate+0x3a0/0x3a0
[ 2591.477945]  ? __mutex_unlock_slowpath+0xe1/0x600
[ 2591.478988]  ? wait_for_completion_io+0x270/0x270
[ 2591.479996]  ? kernfs_next_descendant_post+0x1a7/0x2a0
[ 2591.481085]  kernfs_new_node+0x93/0x120
[ 2591.481937]  __kernfs_create_file+0x51/0x350
[ 2591.482864]  sysfs_add_file_mode_ns+0x221/0x560
[ 2591.483859]  internal_create_group+0x324/0xb30
[ 2591.484817]  ? sysfs_remove_group+0x170/0x170
[ 2591.485776]  ? kernfs_name_hash+0xe7/0x110
[ 2591.486658]  ? kernfs_find_ns+0x256/0x380
[ 2591.487566]  sysfs_slab_add+0x188/0x200
[ 2591.488406]  __kmem_cache_create+0x3db/0x520
[ 2591.489323]  kmem_cache_create_usercopy+0x1db/0x2f0
[ 2591.490375]  p9_client_create+0xc2b/0x1090
[ 2591.491288]  ? p9_client_flush+0x430/0x430
[ 2591.492174]  ? lockdep_init_map_type+0x2c7/0x780
[ 2591.493147]  ? rcu_read_lock_sched_held+0x3e/0x80
[ 2591.494139]  ? __raw_spin_lock_init+0x36/0x110
[ 2591.495102]  v9fs_session_init+0x1dd/0x16a0
[ 2591.496016]  ? kmem_cache_alloc_trace+0x151/0x360
[ 2591.497015]  ? v9fs_show_options+0x690/0x690
[ 2591.497949]  ? kasan_unpoison_shadow+0x33/0x50
[ 2591.498915]  ? __kasan_kmalloc.constprop.0+0xc9/0xd0
[ 2591.499981]  v9fs_mount+0x79/0x8f0
[ 2591.500724]  ? v9fs_write_inode+0x60/0x60
[ 2591.501585]  legacy_get_tree+0x105/0x220
[ 2591.502440]  vfs_get_tree+0x8e/0x300
[ 2591.503226]  path_mount+0x13be/0x20b0
[ 2591.504055]  ? strncpy_from_user+0x9e/0x470
[ 2591.504965]  ? finish_automount+0xa40/0xa40
[ 2591.505874]  ? getname_flags.part.0+0x1dd/0x4f0
[ 2591.506865]  ? _copy_from_user+0xfb/0x1b0
[ 2591.507738]  __x64_sys_mount+0x282/0x300
[ 2591.508600]  ? copy_mnt_ns+0xa00/0xa00
[ 2591.509401]  ? rcu_read_lock_sched_held+0x3e/0x80
[ 2591.510429]  do_syscall_64+0x33/0x40
[ 2591.511185]  entry_SYSCALL_64_after_hwframe+0x61/0xc6
[ 2591.512261] RIP: 0033:0x7f38308e8b19
[ 2591.513059] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 2591.516924] RSP: 002b:00007f382de5e188 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5
[ 2591.518509] RAX: ffffffffffffffda RBX: 00007f38309fbf60 RCX: 00007f38308e8b19
[ 2591.520002] RDX: 00000000200000c0 RSI: 0000000020000040 RDI: 0000000000000000
[ 2591.521481] RBP: 00007f382de5e1d0 R08: 0000000020000280 R09: 0000000000000000
[ 2591.522967] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[ 2591.524443] R13: 00007ffca2bf07df R14: 00007f382de5e300 R15: 0000000000022000
[ 2591.533740] FAT-fs (loop2): bogus number of reserved sectors
[ 2591.535107] FAT-fs (loop2): Can't find a valid FAT filesystem
21:23:58 executing program 6:
r0 = syz_mount_image$vfat(&(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x0, 0x2, &(0x7f0000000180)=[{&(0x7f0000000140)="eb3c906d6b66732e66617400020801000470008400f801", 0x17}, {0x0, 0x0, 0x1000a00}], 0x0, &(0x7f0000000240)=ANY=[])
chdir(&(0x7f0000000040)='./file0\x00')
openat2(r0, &(0x7f0000000100)='./file0\x00', &(0x7f00000001c0)={0x40000, 0x81}, 0x18)
mount$cgroup(0x0, 0x0, &(0x7f0000000400), 0x0, 0x0)
r1 = syz_io_uring_setup(0x22, &(0x7f0000000680)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000180)=<r2=>0x0, &(0x7f0000002a40))
r3 = io_uring_register$IORING_REGISTER_PERSONALITY(r1, 0x9, 0x0, 0x0)
r4 = socket$nl_netfilter(0x10, 0x3, 0xc)
syz_io_uring_submit(r2, 0x0, &(0x7f0000000400)=@IORING_OP_WRITEV={0x2, 0x0, 0x0, @fd=r4, 0x0, 0x0, 0x0, 0x0, 0x0, {0x0, r3}}, 0x0)
r5 = syz_io_uring_setup(0x22, &(0x7f0000000680)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000180), &(0x7f0000002a40))
r6 = io_uring_register$IORING_REGISTER_PERSONALITY(r5, 0x9, 0x0, 0x0)
syz_io_uring_submit(r2, 0x0, &(0x7f0000000440)=@IORING_OP_FSYNC={0x3, 0x2, 0x0, @fd_index=0x9, 0x0, 0x0, 0x0, 0x0, 0x1, {0x0, r6}}, 0x2)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r7 = openat(0xffffffffffffff9c, &(0x7f00000002c0)='./file1\x00', 0x105142, 0x0)
r8 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0)
sendfile(r7, r8, 0x0, 0x100000001)
newfstatat(0xffffffffffffff9c, &(0x7f0000000340)='./file1\x00', &(0x7f0000000380), 0x400)

21:23:58 executing program 7:
r0 = perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
io_setup(0x7f, 0x0)
io_pgetevents(0x0, 0x1, 0x1, &(0x7f0000000000)=[{}], 0x0, 0x0)
io_submit(0x0, 0x1, &(0x7f0000000340)=[&(0x7f0000000300)={0x0, 0x0, 0x0, 0x5, 0x0, r0, 0x0}])

[ 2591.583529] 9pnet: Insufficient options for proto=fd
[ 2591.653281] FAT-fs (loop2): bogus number of reserved sectors
[ 2591.654565] FAT-fs (loop2): Can't find a valid FAT filesystem
21:23:58 executing program 3:
openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x105142, 0x0)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x400}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
pipe(&(0x7f00000001c0)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
mount$9p_fd(0x0, &(0x7f0000000040)='./file1\x00', &(0x7f00000000c0), 0x700, &(0x7f0000000280)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {}, 0x2c, {[{@nodevmap}]}})
openat(r1, &(0x7f0000000180)='./file1\x00', 0x0, 0x0)

21:23:58 executing program 4:
r0 = openat$sr(0xffffffffffffff9c, &(0x7f00000035c0), 0x0, 0x0)
openat$sr(0xffffffffffffff9c, &(0x7f00000000c0), 0x224400, 0x0)
r1 = openat$rtc(0xffffffffffffff9c, &(0x7f0000000200), 0x0, 0x0)
pipe(&(0x7f00000001c0)={<r2=>0xffffffffffffffff})
ioctl$RTC_ALM_SET(r1, 0x40247007, &(0x7f0000000000)={0x2, 0x36, 0x1, 0x14, 0xb, 0x3ff, 0x1, 0x7, 0xffffffffffffffff})
r3 = perf_event_open(&(0x7f0000001d80)={0x2, 0x80, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
mmap(&(0x7f0000ffc000/0x2000)=nil, 0x2000, 0x0, 0x13, r3, 0x0)
perf_event_open(&(0x7f0000001d80)={0x2, 0x80, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, r3, 0x2)
ioctl$BTRFS_IOC_INO_PATHS(r3, 0xc0389423, &(0x7f0000000080)={0x1, 0x18, [0x4, 0x800, 0x400, 0x9], &(0x7f0000000040)=[0x0, 0x0, 0x0]})
ioctl$BTRFS_IOC_QUOTA_RESCAN_WAIT(r0, 0x942e, 0x0)
fcntl$setstatus(r2, 0x4, 0x6000)
open(&(0x7f00000016c0)='./cgroup.net/cgroup.procs\x00', 0x0, 0x0)
ioctl$CDROM_SELECT_SPEED(r2, 0x5322, 0xfff)
pselect6(0x40, &(0x7f0000000180)={0x0, 0x0, 0x0, 0x0, 0x0, 0x200000000000000}, &(0x7f00000001c0)={0x3fc, 0x0, 0x9}, 0x0, 0x0, 0x0)

[ 2591.758524] 9pnet: Insufficient options for proto=fd
21:23:58 executing program 2:
syz_mount_image$vfat(&(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x0, 0x2, &(0x7f0000000180)=[{&(0x7f0000000140)="eb3c906d6b66732e66617400020801000470008400f801", 0x17}, {0x0, 0x0, 0x1000a00}], 0x0, &(0x7f0000000240)=ANY=[])
r0 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x105142, 0x0)
ioctl$FS_IOC_RESVSP(r0, 0x40305828, &(0x7f0000000040)={0x0, 0x0, 0x0, 0x4000006})

[ 2591.820618] 9pnet: Insufficient options for proto=fd
21:23:58 executing program 5:
openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x105142, 0x0)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
pipe(&(0x7f00000001c0)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
mount$9p_fd(0x0, &(0x7f0000000040)='./file1\x00', &(0x7f00000000c0), 0x0, &(0x7f0000000280)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}}) (fail_nth: 61)
openat(0xffffffffffffffff, 0x0, 0x0, 0x0)

[ 2591.927421] FAULT_INJECTION: forcing a failure.
[ 2591.927421] name failslab, interval 1, probability 0, space 0, times 0
[ 2591.929316] CPU: 0 PID: 23670 Comm: syz-executor.5 Not tainted 5.10.172 #1
[ 2591.930424] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 2591.931760] Call Trace:
[ 2591.932192]  dump_stack+0x107/0x167
[ 2591.932783]  should_fail.cold+0x5/0xa
[ 2591.933392]  ? __kernfs_new_node+0xd4/0x850
[ 2591.934081]  should_failslab+0x5/0x20
[ 2591.934690]  kmem_cache_alloc+0x5b/0x360
[ 2591.935363]  __kernfs_new_node+0xd4/0x850
[ 2591.936057]  ? kernfs_dop_revalidate+0x3a0/0x3a0
[ 2591.936822]  ? __mutex_unlock_slowpath+0xe1/0x600
[ 2591.937597]  ? wait_for_completion_io+0x270/0x270
[ 2591.938383]  ? kernfs_next_descendant_post+0x1a7/0x2a0
[ 2591.939259]  kernfs_new_node+0x93/0x120
[ 2591.939931]  __kernfs_create_file+0x51/0x350
[ 2591.940662]  sysfs_add_file_mode_ns+0x221/0x560
[ 2591.941418]  internal_create_group+0x324/0xb30
[ 2591.942169]  ? sysfs_remove_group+0x170/0x170
[ 2591.942902]  ? kernfs_name_hash+0xe7/0x110
[ 2591.943592]  ? kernfs_find_ns+0x256/0x380
[ 2591.944296]  sysfs_slab_add+0x188/0x200
[ 2591.944949]  __kmem_cache_create+0x3db/0x520
[ 2591.945655]  kmem_cache_create_usercopy+0x1db/0x2f0
[ 2591.946456]  p9_client_create+0xc2b/0x1090
[ 2591.947176]  ? p9_client_flush+0x430/0x430
[ 2591.947860]  ? lockdep_init_map_type+0x2c7/0x780
[ 2591.948611]  ? rcu_read_lock_sched_held+0x3e/0x80
[ 2591.949380]  ? __raw_spin_lock_init+0x36/0x110
[ 2591.950113]  v9fs_session_init+0x1dd/0x16a0
[ 2591.950848]  ? kmem_cache_alloc_trace+0x151/0x360
[ 2591.951627]  ? v9fs_show_options+0x690/0x690
[ 2591.952354]  ? kasan_unpoison_shadow+0x33/0x50
[ 2591.953099]  ? __kasan_kmalloc.constprop.0+0xc9/0xd0
[ 2591.953932]  v9fs_mount+0x79/0x8f0
[ 2591.954515]  ? v9fs_write_inode+0x60/0x60
[ 2591.955188]  legacy_get_tree+0x105/0x220
[ 2591.955847]  vfs_get_tree+0x8e/0x300
[ 2591.956449]  path_mount+0x13be/0x20b0
[ 2591.957086]  ? strncpy_from_user+0x9e/0x470
[ 2591.957802]  ? finish_automount+0xa40/0xa40
[ 2591.958517]  ? getname_flags.part.0+0x1dd/0x4f0
[ 2591.959283]  ? _copy_from_user+0xfb/0x1b0
[ 2591.959974]  __x64_sys_mount+0x282/0x300
[ 2591.960629]  ? copy_mnt_ns+0xa00/0xa00
[ 2591.961277]  ? rcu_read_lock_sched_held+0x3e/0x80
[ 2591.962070]  do_syscall_64+0x33/0x40
[ 2591.962687]  entry_SYSCALL_64_after_hwframe+0x61/0xc6
[ 2591.963547] RIP: 0033:0x7f38308e8b19
[ 2591.964159] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 2591.967143] RSP: 002b:00007f382de5e188 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5
[ 2591.968377] RAX: ffffffffffffffda RBX: 00007f38309fbf60 RCX: 00007f38308e8b19
[ 2591.969552] RDX: 00000000200000c0 RSI: 0000000020000040 RDI: 0000000000000000
[ 2591.970768] RBP: 00007f382de5e1d0 R08: 0000000020000280 R09: 0000000000000000
[ 2591.971952] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[ 2591.973139] R13: 00007ffca2bf07df R14: 00007f382de5e300 R15: 0000000000022000
[ 2592.057405] kmem_cache_create(9p-fcall-cache) failed with error -12
[ 2592.059089] CPU: 0 PID: 23670 Comm: syz-executor.5 Not tainted 5.10.172 #1
[ 2592.060256] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 2592.061714] Call Trace:
[ 2592.062169]  dump_stack+0x107/0x167
[ 2592.062809]  kmem_cache_create_usercopy.cold+0x17/0x65
[ 2592.063707]  p9_client_create+0xc2b/0x1090
[ 2592.064442]  ? p9_client_flush+0x430/0x430
[ 2592.065176]  ? lockdep_init_map_type+0x2c7/0x780
[ 2592.065986]  ? rcu_read_lock_sched_held+0x3e/0x80
[ 2592.066814]  ? __raw_spin_lock_init+0x36/0x110
[ 2592.067587]  v9fs_session_init+0x1dd/0x16a0
[ 2592.068332]  ? kmem_cache_alloc_trace+0x151/0x360
[ 2592.069147]  ? v9fs_show_options+0x690/0x690
[ 2592.069919]  ? kasan_unpoison_shadow+0x33/0x50
[ 2592.070695]  ? __kasan_kmalloc.constprop.0+0xc9/0xd0
[ 2592.071560]  v9fs_mount+0x79/0x8f0
[ 2592.072177]  ? v9fs_write_inode+0x60/0x60
[ 2592.072893]  legacy_get_tree+0x105/0x220
[ 2592.073554]  vfs_get_tree+0x8e/0x300
[ 2592.074193]  path_mount+0x13be/0x20b0
[ 2592.074849]  ? strncpy_from_user+0x9e/0x470
[ 2592.075574]  ? finish_automount+0xa40/0xa40
[ 2592.076304]  ? getname_flags.part.0+0x1dd/0x4f0
[ 2592.077084]  ? _copy_from_user+0xfb/0x1b0
[ 2592.077797]  __x64_sys_mount+0x282/0x300
[ 2592.078508]  ? copy_mnt_ns+0xa00/0xa00
[ 2592.079181]  ? rcu_read_lock_sched_held+0x3e/0x80
[ 2592.079995]  do_syscall_64+0x33/0x40
[ 2592.080631]  entry_SYSCALL_64_after_hwframe+0x61/0xc6
[ 2592.081492] RIP: 0033:0x7f38308e8b19
[ 2592.082100] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 2592.085211] RSP: 002b:00007f382de5e188 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5
[ 2592.086508] RAX: ffffffffffffffda RBX: 00007f38309fbf60 RCX: 00007f38308e8b19
[ 2592.087723] RDX: 00000000200000c0 RSI: 0000000020000040 RDI: 0000000000000000
[ 2592.088929] RBP: 00007f382de5e1d0 R08: 0000000020000280 R09: 0000000000000000
[ 2592.090115] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[ 2592.091314] R13: 00007ffca2bf07df R14: 00007f382de5e300 R15: 0000000000022000
21:24:14 executing program 7:
r0 = perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
io_setup(0x7f, &(0x7f00000002c0)=<r1=>0x0)
io_pgetevents(0x0, 0x1, 0x1, &(0x7f0000000000)=[{}], 0x0, 0x0)
io_submit(r1, 0x1, &(0x7f0000000340)=[&(0x7f0000000300)={0x0, 0x0, 0x0, 0x5, 0x0, r0, 0x0}])

21:24:14 executing program 5:
openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x105142, 0x0)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
pipe(&(0x7f00000001c0)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
mount$9p_fd(0x0, &(0x7f0000000040)='./file1\x00', &(0x7f00000000c0), 0x0, &(0x7f0000000280)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}}) (fail_nth: 62)
openat(0xffffffffffffffff, 0x0, 0x0, 0x0)

21:24:14 executing program 4:
openat$vcs(0xffffffffffffff9c, &(0x7f0000000040), 0x0, 0x0)
openat$sr(0xffffffffffffff9c, &(0x7f00000035c0), 0x0, 0x0)
r0 = perf_event_open(&(0x7f0000001d80)={0x2, 0x80, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
mmap(&(0x7f0000ffc000/0x2000)=nil, 0x2000, 0x0, 0x13, r0, 0x0)
perf_event_open(&(0x7f0000001d80)={0x2, 0x80, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, r0, 0x2)
r1 = perf_event_open(&(0x7f0000001d80)={0x2, 0x80, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
mmap(&(0x7f0000ffc000/0x2000)=nil, 0x2000, 0x0, 0x13, r1, 0x0)
perf_event_open(&(0x7f0000001d80)={0x2, 0x80, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, r1, 0x2)
sendfile(r0, r1, &(0x7f0000000000)=0x4, 0xfffffffffffffff8)
openat$sr(0xffffffffffffff9c, &(0x7f00000000c0), 0x224400, 0x0)
openat$rtc(0xffffffffffffff9c, &(0x7f0000000200), 0x0, 0x0)
pipe(&(0x7f00000001c0))
open(&(0x7f00000016c0)='./cgroup.net/cgroup.procs\x00', 0x0, 0x0)
pselect6(0x40, &(0x7f0000000180), &(0x7f00000001c0)={0x3fc}, 0x0, 0x0, 0x0)

21:24:14 executing program 3:
openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x105142, 0x0)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x400}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
pipe(&(0x7f00000001c0)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
mount$9p_fd(0x0, &(0x7f0000000040)='./file1\x00', &(0x7f00000000c0), 0x900, &(0x7f0000000280)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {}, 0x2c, {[{@nodevmap}]}})
openat(r1, &(0x7f0000000180)='./file1\x00', 0x0, 0x0)

21:24:14 executing program 1:
openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x105142, 0x0)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
pipe(&(0x7f00000001c0))
mount$9p_fd(0x600000000000000, &(0x7f0000000040)='./file1\x00', &(0x7f00000000c0), 0x0, &(0x7f0000000280)={'trans=fd,', {}, 0x2c, {}, 0x2c, {[{@nodevmap}]}})

21:24:14 executing program 0:
syz_mount_image$vfat(&(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x0, 0x2, &(0x7f0000000180)=[{&(0x7f0000000140)="eb3c906d6b66732e66617400020801000470008400f801", 0x17}, {0x0, 0x0, 0x1000a00}], 0x0, &(0x7f0000000240)=ANY=[])
chdir(&(0x7f0000000040)='./file0\x00')
mount$cgroup(0x0, 0x0, &(0x7f0000000400), 0x0, 0x0)
r0 = syz_io_uring_setup(0x22, &(0x7f0000000680)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000180)=<r1=>0x0, &(0x7f0000002a40)=<r2=>0x0)
r3 = io_uring_register$IORING_REGISTER_PERSONALITY(r0, 0x9, 0x0, 0x0)
r4 = socket$nl_netfilter(0x10, 0x3, 0xc)
syz_io_uring_submit(r1, r2, &(0x7f0000000400)=@IORING_OP_WRITEV={0x2, 0x0, 0x0, @fd=r4, 0x0, 0x0, 0x0, 0x0, 0x0, {0x0, r3}}, 0x0)
r5 = syz_io_uring_setup(0x22, &(0x7f0000000680)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000180), &(0x7f0000002a40))
r6 = io_uring_register$IORING_REGISTER_PERSONALITY(r5, 0x9, 0x0, 0x0)
syz_io_uring_submit(0x0, 0x0, &(0x7f0000000440)=@IORING_OP_FSYNC={0x3, 0x2, 0x0, @fd_index=0x9, 0x0, 0x0, 0x0, 0x0, 0x1, {0x0, r6}}, 0x2)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r7 = openat(0xffffffffffffff9c, &(0x7f00000002c0)='./file1\x00', 0x105142, 0x0)
r8 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0)
mount(&(0x7f0000000200)=ANY=[@ANYBLOB="2f6f651317868af191bdb2"], &(0x7f0000000240)='./file0\x00', &(0x7f0000000280)='nfsd\x00', 0x800000, &(0x7f0000000300)='cgroup\x00')
sendfile(r7, r8, 0x0, 0x100000001)
newfstatat(0xffffffffffffff9c, &(0x7f0000000340)='./file1\x00', &(0x7f0000000380), 0x400)

21:24:14 executing program 2:
pwrite64(0xffffffffffffffff, &(0x7f0000000000), 0x0, 0x5)
chdir(&(0x7f0000000200)='./file1\x00')
r0 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x105142, 0x0)
ioctl$FS_IOC_RESVSP(r0, 0x40305828, &(0x7f0000000040)={0x0, 0x3, 0x0, 0x4000006})
open_tree(0xffffffffffffffff, &(0x7f00000001c0)='./file0/../file0\x00', 0x800)

21:24:14 executing program 6:
r0 = syz_mount_image$vfat(&(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x0, 0x2, &(0x7f0000000180)=[{&(0x7f0000000140)="eb3c906d6b66732e66617400020801000470008400f801", 0x17}, {0x0, 0x0, 0x1000a00}], 0x0, &(0x7f0000000240)=ANY=[])
chdir(&(0x7f0000000040)='./file0\x00')
openat2(r0, &(0x7f0000000100)='./file0\x00', &(0x7f00000001c0)={0x40000, 0x81}, 0x18)
mount$cgroup(0x0, 0x0, &(0x7f0000000400), 0x0, 0x0)
r1 = syz_io_uring_setup(0x22, &(0x7f0000000680)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000180)=<r2=>0x0, &(0x7f0000002a40))
r3 = io_uring_register$IORING_REGISTER_PERSONALITY(r1, 0x9, 0x0, 0x0)
r4 = socket$nl_netfilter(0x10, 0x3, 0xc)
syz_io_uring_submit(r2, 0x0, &(0x7f0000000400)=@IORING_OP_WRITEV={0x2, 0x0, 0x0, @fd=r4, 0x0, 0x0, 0x0, 0x0, 0x0, {0x0, r3}}, 0x0)
r5 = syz_io_uring_setup(0x22, &(0x7f0000000680)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000180), &(0x7f0000002a40))
r6 = io_uring_register$IORING_REGISTER_PERSONALITY(r5, 0x9, 0x0, 0x0)
syz_io_uring_submit(r2, 0x0, &(0x7f0000000440)=@IORING_OP_FSYNC={0x3, 0x2, 0x0, @fd_index=0x9, 0x0, 0x0, 0x0, 0x0, 0x1, {0x0, r6}}, 0x2)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r7 = openat(0xffffffffffffff9c, &(0x7f00000002c0)='./file1\x00', 0x105142, 0x0)
r8 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0)
sendfile(r7, r8, 0x0, 0x100000001)
newfstatat(0xffffffffffffff9c, &(0x7f0000000340)='./file1\x00', &(0x7f0000000380), 0x400)

[ 2608.046346] FAULT_INJECTION: forcing a failure.
[ 2608.046346] name failslab, interval 1, probability 0, space 0, times 0
[ 2608.047358] 9pnet: Insufficient options for proto=fd
[ 2608.047852] CPU: 1 PID: 23686 Comm: syz-executor.5 Not tainted 5.10.172 #1
[ 2608.049468] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 2608.050408] Call Trace:
[ 2608.050710]  dump_stack+0x107/0x167
[ 2608.051139]  should_fail.cold+0x5/0xa
[ 2608.051576]  ? create_object.isra.0+0x3a/0xa20
[ 2608.052092]  should_failslab+0x5/0x20
[ 2608.052520]  kmem_cache_alloc+0x5b/0x360
[ 2608.052983]  create_object.isra.0+0x3a/0xa20
[ 2608.053476]  ? __kasan_kmalloc.constprop.0+0xc9/0xd0
[ 2608.054044]  kmem_cache_alloc+0x159/0x360
[ 2608.054492]  radix_tree_node_alloc.constprop.0+0x1e3/0x300
[ 2608.055135]  idr_get_free+0x4b5/0x8f0
[ 2608.055572]  idr_alloc_u32+0x170/0x2d0
[ 2608.056010]  ? __fprop_inc_percpu_max+0x130/0x130
[ 2608.056546]  ? lock_acquire+0x197/0x490
[ 2608.056994]  ? __kernfs_new_node+0xff/0x850
[ 2608.057477]  idr_alloc_cyclic+0x102/0x230
[ 2608.057944]  ? idr_alloc+0x130/0x130
[ 2608.058362]  ? rwlock_bug.part.0+0x90/0x90
[ 2608.058850]  __kernfs_new_node+0x117/0x850
[ 2608.059340]  ? kernfs_dop_revalidate+0x3a0/0x3a0
[ 2608.059878]  ? __mutex_unlock_slowpath+0xe1/0x600
[ 2608.060420]  ? wait_for_completion_io+0x270/0x270
[ 2608.060967]  ? kernfs_next_descendant_post+0x1a7/0x2a0
[ 2608.061562]  kernfs_new_node+0x93/0x120
[ 2608.062012]  __kernfs_create_file+0x51/0x350
[ 2608.062509]  sysfs_add_file_mode_ns+0x221/0x560
[ 2608.063053]  internal_create_group+0x324/0xb30
[ 2608.063573]  ? sysfs_remove_group+0x170/0x170
[ 2608.064075]  ? kernfs_name_hash+0xe7/0x110
[ 2608.064550]  ? kernfs_find_ns+0x256/0x380
[ 2608.065027]  sysfs_slab_add+0x188/0x200
[ 2608.065479]  __kmem_cache_create+0x3db/0x520
[ 2608.065997]  kmem_cache_create_usercopy+0x1db/0x2f0
[ 2608.066570]  p9_client_create+0xc2b/0x1090
[ 2608.067073]  ? p9_client_flush+0x430/0x430
[ 2608.067559]  ? lockdep_init_map_type+0x2c7/0x780
[ 2608.068099]  ? rcu_read_lock_sched_held+0x3e/0x80
[ 2608.068640]  ? __raw_spin_lock_init+0x36/0x110
[ 2608.069155]  v9fs_session_init+0x1dd/0x16a0
[ 2608.069650]  ? kmem_cache_alloc_trace+0x151/0x360
[ 2608.070183]  ? v9fs_show_options+0x690/0x690
[ 2608.070692]  ? kasan_unpoison_shadow+0x33/0x50
[ 2608.071221]  ? __kasan_kmalloc.constprop.0+0xc9/0xd0
[ 2608.071804]  v9fs_mount+0x79/0x8f0
[ 2608.072209]  ? v9fs_write_inode+0x60/0x60
[ 2608.072679]  legacy_get_tree+0x105/0x220
[ 2608.073148]  vfs_get_tree+0x8e/0x300
[ 2608.073562]  path_mount+0x13be/0x20b0
[ 2608.074015]  ? strncpy_from_user+0x9e/0x470
[ 2608.074499]  ? finish_automount+0xa40/0xa40
[ 2608.075008]  ? getname_flags.part.0+0x1dd/0x4f0
[ 2608.075534]  ? _copy_from_user+0xfb/0x1b0
[ 2608.076006]  __x64_sys_mount+0x282/0x300
[ 2608.076456]  ? copy_mnt_ns+0xa00/0xa00
[ 2608.076913]  ? rcu_read_lock_sched_held+0x3e/0x80
[ 2608.077456]  do_syscall_64+0x33/0x40
[ 2608.077881]  entry_SYSCALL_64_after_hwframe+0x61/0xc6
[ 2608.078452] RIP: 0033:0x7f38308e8b19
[ 2608.078877] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 2608.080932] RSP: 002b:00007f382de5e188 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5
[ 2608.081784] RAX: ffffffffffffffda RBX: 00007f38309fbf60 RCX: 00007f38308e8b19
[ 2608.082575] RDX: 00000000200000c0 RSI: 0000000020000040 RDI: 0000000000000000
[ 2608.083370] RBP: 00007f382de5e1d0 R08: 0000000020000280 R09: 0000000000000000
[ 2608.084140] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[ 2608.084930] R13: 00007ffca2bf07df R14: 00007f382de5e300 R15: 0000000000022000
[ 2608.114408] 9pnet: Insufficient options for proto=fd
21:24:14 executing program 2:
syz_mount_image$vfat(&(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x0, 0x2, &(0x7f0000000180)=[{&(0x7f0000000140)="eb3c906d6b66732e66617400020801000470008400f801", 0x17}, {0x0, 0x0, 0x1000a00}], 0x0, &(0x7f0000000240)=ANY=[])
chdir(&(0x7f0000000040)='./file0\x00')
r0 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x105142, 0x0)
ioctl$FS_IOC_RESVSP(r0, 0x40305828, &(0x7f0000000040)={0x0, 0x0, 0x0, 0x4000006})
pipe(&(0x7f00000001c0)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
mount$9p_fd(0x0, &(0x7f0000000040)='./file1\x00', &(0x7f00000000c0), 0x0, &(0x7f0000000280)={'trans=fd,', {'rfdno', 0x3d, r1}, 0x2c, {'wfdno', 0x3d, r2}, 0x2c, {[{@nodevmap}]}})
renameat2(r0, &(0x7f0000000000)='.\x00', r2, &(0x7f00000001c0)='./file1/file0\x00', 0x7)

21:24:14 executing program 7:
r0 = perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
io_setup(0x7f, &(0x7f00000002c0)=<r1=>0x0)
io_pgetevents(0x0, 0x1, 0x1, &(0x7f0000000000)=[{}], 0x0, 0x0)
io_submit(r1, 0x1, &(0x7f0000000340)=[&(0x7f0000000300)={0x0, 0x0, 0x0, 0x5, 0x0, r0, 0x0}])

[ 2608.182169] 9pnet: Insufficient options for proto=fd
[ 2608.186962] 9pnet: Insufficient options for proto=fd
21:24:14 executing program 3:
openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x105142, 0x0)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x400}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
pipe(&(0x7f00000001c0)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
mount$9p_fd(0x0, &(0x7f0000000040)='./file1\x00', &(0x7f00000000c0), 0xa00, &(0x7f0000000280)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {}, 0x2c, {[{@nodevmap}]}})
openat(r1, &(0x7f0000000180)='./file1\x00', 0x0, 0x0)

21:24:14 executing program 3:
openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x105142, 0x0)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x400}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
pipe(&(0x7f00000001c0)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
mount$9p_fd(0x0, &(0x7f0000000040)='./file1\x00', &(0x7f00000000c0), 0xb00, &(0x7f0000000280)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {}, 0x2c, {[{@nodevmap}]}})
openat(r1, &(0x7f0000000180)='./file1\x00', 0x0, 0x0)

21:24:14 executing program 4:
openat$vcs(0xffffffffffffff9c, &(0x7f0000000040), 0x0, 0x0)
openat$sr(0xffffffffffffff9c, &(0x7f00000035c0), 0x0, 0x0)
openat$sr(0xffffffffffffff9c, &(0x7f00000000c0), 0x224400, 0x0)
r0 = perf_event_open(&(0x7f0000001d80)={0x2, 0x80, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
mmap(&(0x7f0000ffc000/0x2000)=nil, 0x2000, 0x0, 0x13, r0, 0x0)
perf_event_open(&(0x7f0000001d80)={0x2, 0x80, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, r0, 0x2)
fsetxattr$trusted_overlay_opaque(r0, &(0x7f0000000000), &(0x7f0000000080), 0x2, 0x1)
openat$rtc(0xffffffffffffff9c, &(0x7f0000000200), 0x0, 0x0)
pipe(&(0x7f00000001c0))
open(&(0x7f00000016c0)='./cgroup.net/cgroup.procs\x00', 0x0, 0x0)
pselect6(0x40, &(0x7f0000000180), &(0x7f00000001c0)={0x3fc}, 0x0, 0x0, 0x0)

21:24:14 executing program 7:
r0 = perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
io_setup(0x7f, &(0x7f00000002c0)=<r1=>0x0)
io_pgetevents(0x0, 0x1, 0x1, &(0x7f0000000000)=[{}], 0x0, 0x0)
io_submit(r1, 0x1, &(0x7f0000000340)=[&(0x7f0000000300)={0x0, 0x0, 0x0, 0x5, 0x0, r0, 0x0}])

21:24:14 executing program 1:
openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x105142, 0x0)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
pipe(&(0x7f00000001c0))
mount$9p_fd(0x700000000000000, &(0x7f0000000040)='./file1\x00', &(0x7f00000000c0), 0x0, &(0x7f0000000280)={'trans=fd,', {}, 0x2c, {}, 0x2c, {[{@nodevmap}]}})

[ 2608.402417] 9pnet: Insufficient options for proto=fd
21:24:14 executing program 0:
syz_mount_image$vfat(&(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x0, 0x2, &(0x7f0000000180)=[{&(0x7f0000000140)="eb3c906d6b66732e66617400020801000470008400f801", 0x17}, {0x0, 0x0, 0x1000a00}], 0x0, &(0x7f0000000240)=ANY=[])
chdir(&(0x7f0000000040)='./file0\x00')
mount$cgroup(0x0, 0x0, &(0x7f0000000400), 0x0, 0x0)
r0 = syz_io_uring_setup(0x22, &(0x7f0000000680)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000180)=<r1=>0x0, &(0x7f0000002a40)=<r2=>0x0)
r3 = io_uring_register$IORING_REGISTER_PERSONALITY(r0, 0x9, 0x0, 0x0)
r4 = socket$nl_netfilter(0x10, 0x3, 0xc)
syz_io_uring_submit(r1, r2, &(0x7f0000000400)=@IORING_OP_WRITEV={0x2, 0x0, 0x0, @fd=r4, 0x0, 0x0, 0x0, 0x0, 0x0, {0x0, r3}}, 0x0)
r5 = syz_io_uring_setup(0x22, &(0x7f0000000680)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000180), &(0x7f0000002a40))
io_uring_register$IORING_REGISTER_PERSONALITY(r5, 0x9, 0x0, 0x0)
syz_io_uring_submit(r1, 0x0, 0x0, 0x2)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r6 = openat(0xffffffffffffff9c, &(0x7f00000002c0)='./file1\x00', 0x105142, 0x0)
r7 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0)
mount(&(0x7f0000000200)=ANY=[@ANYBLOB="2f6f651317868af191bdb2"], &(0x7f0000000240)='./file0\x00', &(0x7f0000000280)='nfsd\x00', 0x800000, &(0x7f0000000300)='cgroup\x00')
sendfile(r6, r7, 0x0, 0x100000001)
newfstatat(0xffffffffffffff9c, &(0x7f0000000340)='./file1\x00', &(0x7f0000000380), 0x400)

[ 2608.441307] 9pnet: Insufficient options for proto=fd
21:24:14 executing program 6:
r0 = syz_mount_image$vfat(&(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x0, 0x2, &(0x7f0000000180)=[{&(0x7f0000000140)="eb3c906d6b66732e66617400020801000470008400f801", 0x17}, {0x0, 0x0, 0x1000a00}], 0x0, &(0x7f0000000240)=ANY=[])
chdir(&(0x7f0000000040)='./file0\x00')
openat2(r0, &(0x7f0000000100)='./file0\x00', &(0x7f00000001c0)={0x40000, 0x81}, 0x18)
mount$cgroup(0x0, 0x0, &(0x7f0000000400), 0x0, 0x0)
r1 = syz_io_uring_setup(0x22, &(0x7f0000000680)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000180)=<r2=>0x0, &(0x7f0000002a40)=<r3=>0x0)
io_uring_register$IORING_REGISTER_PERSONALITY(r1, 0x9, 0x0, 0x0)
socket$nl_netfilter(0x10, 0x3, 0xc)
syz_io_uring_submit(r2, r3, 0x0, 0x0)
r4 = syz_io_uring_setup(0x22, &(0x7f0000000680)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000180), &(0x7f0000002a40))
r5 = io_uring_register$IORING_REGISTER_PERSONALITY(r4, 0x9, 0x0, 0x0)
syz_io_uring_submit(r2, 0x0, &(0x7f0000000440)=@IORING_OP_FSYNC={0x3, 0x2, 0x0, @fd_index=0x9, 0x0, 0x0, 0x0, 0x0, 0x1, {0x0, r5}}, 0x2)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r6 = openat(0xffffffffffffff9c, &(0x7f00000002c0)='./file1\x00', 0x105142, 0x0)
r7 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0)
sendfile(r6, r7, 0x0, 0x100000001)
newfstatat(0xffffffffffffff9c, &(0x7f0000000340)='./file1\x00', &(0x7f0000000380), 0x400)

21:24:31 executing program 3:
openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x105142, 0x0)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x400}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
pipe(&(0x7f00000001c0)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
mount$9p_fd(0x0, &(0x7f0000000040)='./file1\x00', &(0x7f00000000c0), 0x1020, &(0x7f0000000280)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {}, 0x2c, {[{@nodevmap}]}})
openat(r1, &(0x7f0000000180)='./file1\x00', 0x0, 0x0)

21:24:31 executing program 0:
syz_mount_image$vfat(&(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x0, 0x2, &(0x7f0000000180)=[{&(0x7f0000000140)="eb3c906d6b66732e66617400020801000470008400f801", 0x17}, {0x0, 0x0, 0x1000a00}], 0x0, &(0x7f0000000240)=ANY=[])
chdir(&(0x7f0000000040)='./file0\x00')
mount$cgroup(0x0, 0x0, &(0x7f0000000400), 0x0, 0x0)
r0 = syz_io_uring_setup(0x22, &(0x7f0000000680)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000180)=<r1=>0x0, &(0x7f0000002a40)=<r2=>0x0)
r3 = io_uring_register$IORING_REGISTER_PERSONALITY(r0, 0x9, 0x0, 0x0)
r4 = socket$nl_netfilter(0x10, 0x3, 0xc)
syz_io_uring_submit(r1, r2, &(0x7f0000000400)=@IORING_OP_WRITEV={0x2, 0x0, 0x0, @fd=r4, 0x0, 0x0, 0x0, 0x0, 0x0, {0x0, r3}}, 0x0)
r5 = syz_io_uring_setup(0x22, &(0x7f0000000680)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000180), &(0x7f0000002a40))
io_uring_register$IORING_REGISTER_PERSONALITY(r5, 0x9, 0x0, 0x0)
syz_io_uring_submit(r1, 0x0, 0x0, 0x2)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r6 = openat(0xffffffffffffff9c, &(0x7f00000002c0)='./file1\x00', 0x105142, 0x0)
r7 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0)
mount(&(0x7f0000000200)=ANY=[@ANYBLOB="2f6f651317868af191bdb2"], &(0x7f0000000240)='./file0\x00', &(0x7f0000000280)='nfsd\x00', 0x800000, &(0x7f0000000300)='cgroup\x00')
sendfile(r6, r7, 0x0, 0x100000001)
newfstatat(0xffffffffffffff9c, &(0x7f0000000340)='./file1\x00', &(0x7f0000000380), 0x400)

21:24:31 executing program 4:
getsockopt$sock_cred(0xffffffffffffffff, 0x1, 0x11, &(0x7f0000000100)={<r0=>0x0}, &(0x7f0000000240)=0xc)
fcntl$setown(0xffffffffffffffff, 0x8, r0)
openat$vcs(0xffffffffffffff9c, &(0x7f0000000040), 0x0, 0x0)
openat$sr(0xffffffffffffff9c, &(0x7f00000035c0), 0x0, 0x0)
pipe(&(0x7f00000001c0)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
mount$9p_fd(0x0, &(0x7f0000000040)='./file1\x00', &(0x7f00000000c0), 0x0, &(0x7f00000003c0)=ANY=[@ANYBLOB='trans=fd,rfdno=', @ANYRESHEX=r1, @ANYBLOB=',wfdno=', @ANYRESHEX=r2, @ANYBLOB="2c6e6f6465766d61702c70726976706f7274621111ac8c5a2f83517669450643f85c785b79fed06c6b71c1c4ad73f1b252bf442b52084ccb8660", @ANYRESHEX=0xee01, @ANYBLOB=',\x00'])
getsockopt$inet_mreqsrc(r1, 0x0, 0x25, &(0x7f0000000000)={@rand_addr, @loopback, @multicast1}, &(0x7f0000000080)=0xc)
r3 = openat$sr(0xffffffffffffff9c, &(0x7f0000001600), 0x0, 0x0)
openat$rtc(0xffffffffffffff9c, &(0x7f0000000200), 0x0, 0x0)
pipe(&(0x7f00000001c0))
r4 = syz_genetlink_get_family_id$ethtool(&(0x7f0000000640), 0xffffffffffffffff)
sendmsg$ETHTOOL_MSG_EEE_SET(0xffffffffffffffff, &(0x7f0000000880)={0x0, 0x0, &(0x7f0000000840)={&(0x7f0000000780)=ANY=[@ANYBLOB="14000020", @ANYRES16=r4, @ANYBLOB="0100000000000000000018000000"], 0x14}}, 0x0)
ioctl$BTRFS_IOC_BALANCE_PROGRESS(0xffffffffffffffff, 0x84009422, &(0x7f00000011c0)={0x0, 0x0, {}, {}, {0x0, @struct, <r5=>0x0}})
ioctl$BTRFS_IOC_RM_DEV_V2(0xffffffffffffffff, 0x5000943a, &(0x7f0000002080)={{}, 0x0, 0x2, @inherit={0x50, &(0x7f0000000000)=ANY=[@ANYBLOB="00000000000000000100000000000000070000000000000000000000000000002200000001000000660c000000000000ffffff7f000000007f0000000000000006000000000000000900000000000000"]}, @devid=r5})
ioctl$BTRFS_IOC_DEV_INFO(0xffffffffffffffff, 0xd000941e, &(0x7f00000001c0)={r5, "1169feeb427ab0e2253af9114f0f7407"})
ioctl$BTRFS_IOC_DEV_INFO(0xffffffffffffffff, 0xd000941e, &(0x7f0000000480)={r5, "99f5f50d6ef58807cb63f2f9363d55e8"})
ioctl$FAT_IOCTL_GET_ATTRIBUTES(r3, 0x80047210, &(0x7f0000000140))
open(&(0x7f00000016c0)='./cgroup.net/cgroup.procs\x00', 0x0, 0x0)
pselect6(0x40, &(0x7f0000000180)={0x0, 0x0, 0x1, 0xffffffffffffffff, 0x0, 0x0, 0x4, 0x100}, &(0x7f00000015c0)={0x40000000003fc, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1f}, 0x0, 0x0, 0x0)

21:24:31 executing program 7:
r0 = perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
io_setup(0x7f, &(0x7f00000002c0)=<r1=>0x0)
io_pgetevents(r1, 0x0, 0x1, &(0x7f0000000000)=[{}], 0x0, 0x0)
io_submit(r1, 0x1, &(0x7f0000000340)=[&(0x7f0000000300)={0x0, 0x0, 0x0, 0x5, 0x0, r0, 0x0}])

21:24:31 executing program 1:
openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x105142, 0x0)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
pipe(&(0x7f00000001c0))
mount$9p_fd(0x800000000000000, &(0x7f0000000040)='./file1\x00', &(0x7f00000000c0), 0x0, &(0x7f0000000280)={'trans=fd,', {}, 0x2c, {}, 0x2c, {[{@nodevmap}]}})

21:24:31 executing program 5:
openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x105142, 0x0)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
pipe(&(0x7f00000001c0)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
mount$9p_fd(0x0, &(0x7f0000000040)='./file1\x00', &(0x7f00000000c0), 0x0, &(0x7f0000000280)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}}) (fail_nth: 63)
openat(0xffffffffffffffff, 0x0, 0x0, 0x0)

21:24:31 executing program 6:
r0 = syz_mount_image$vfat(&(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x0, 0x2, &(0x7f0000000180)=[{&(0x7f0000000140)="eb3c906d6b66732e66617400020801000470008400f801", 0x17}, {0x0, 0x0, 0x1000a00}], 0x0, &(0x7f0000000240)=ANY=[])
chdir(&(0x7f0000000040)='./file0\x00')
openat2(r0, &(0x7f0000000100)='./file0\x00', &(0x7f00000001c0)={0x40000, 0x81}, 0x18)
mount$cgroup(0x0, 0x0, &(0x7f0000000400), 0x0, 0x0)
r1 = syz_io_uring_setup(0x22, &(0x7f0000000680)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000180)=<r2=>0x0, &(0x7f0000002a40)=<r3=>0x0)
io_uring_register$IORING_REGISTER_PERSONALITY(r1, 0x9, 0x0, 0x0)
socket$nl_netfilter(0x10, 0x3, 0xc)
syz_io_uring_submit(r2, r3, 0x0, 0x0)
r4 = syz_io_uring_setup(0x0, &(0x7f0000000680)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000180), &(0x7f0000002a40))
r5 = io_uring_register$IORING_REGISTER_PERSONALITY(r4, 0x9, 0x0, 0x0)
syz_io_uring_submit(r2, 0x0, &(0x7f0000000440)=@IORING_OP_FSYNC={0x3, 0x2, 0x0, @fd_index=0x9, 0x0, 0x0, 0x0, 0x0, 0x1, {0x0, r5}}, 0x2)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r6 = openat(0xffffffffffffff9c, &(0x7f00000002c0)='./file1\x00', 0x105142, 0x0)
r7 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0)
sendfile(r6, r7, 0x0, 0x100000001)
newfstatat(0xffffffffffffff9c, &(0x7f0000000340)='./file1\x00', &(0x7f0000000380), 0x400)

21:24:31 executing program 2:
syz_mount_image$vfat(&(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x0, 0x2, &(0x7f0000000180)=[{&(0x7f0000000140)="eb3c906d6b66732e66617400020801000470008400f801", 0x17}, {0x0, 0x0, 0x1000a00}], 0x0, &(0x7f0000000240)=ANY=[])
chdir(&(0x7f0000000040)='./file0\x00')
r0 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x105142, 0x0)
statfs(&(0x7f0000000000)='./file1\x00', &(0x7f00000001c0)=""/54)
ioctl$FS_IOC_RESVSP(r0, 0x40305828, &(0x7f0000000040)={0x0, 0x0, 0x0, 0x4000006})

21:24:31 executing program 3:
openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x105142, 0x0)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x400}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
pipe(&(0x7f00000001c0)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
mount$9p_fd(0x0, &(0x7f0000000040)='./file1\x00', &(0x7f00000000c0), 0x2000, &(0x7f0000000280)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {}, 0x2c, {[{@nodevmap}]}})
openat(r1, &(0x7f0000000180)='./file1\x00', 0x0, 0x0)

[ 2624.837265] FAULT_INJECTION: forcing a failure.
[ 2624.837265] name failslab, interval 1, probability 0, space 0, times 0
[ 2624.838825] CPU: 1 PID: 23955 Comm: syz-executor.5 Not tainted 5.10.172 #1
[ 2624.839746] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 2624.840798] Call Trace:
[ 2624.841147]  dump_stack+0x107/0x167
[ 2624.841621]  should_fail.cold+0x5/0xa
[ 2624.842109]  ? __kernfs_new_node+0xd4/0x850
[ 2624.842683]  should_failslab+0x5/0x20
[ 2624.843187]  kmem_cache_alloc+0x5b/0x360
[ 2624.843780]  __kernfs_new_node+0xd4/0x850
[ 2624.844331]  ? kernfs_dop_revalidate+0x3a0/0x3a0
[ 2624.844940]  ? __mutex_unlock_slowpath+0xe1/0x600
[ 2624.845558]  ? wait_for_completion_io+0x270/0x270
[ 2624.846175]  ? kernfs_next_descendant_post+0x1a7/0x2a0
[ 2624.846855]  kernfs_new_node+0x93/0x120
[ 2624.851470]  __kernfs_create_file+0x51/0x350
[ 2624.852044]  sysfs_add_file_mode_ns+0x221/0x560
[ 2624.852655]  internal_create_group+0x324/0xb30
[ 2624.853249]  ? sysfs_remove_group+0x170/0x170
[ 2624.853837]  ? kernfs_name_hash+0xe7/0x110
[ 2624.854385]  ? kernfs_find_ns+0x256/0x380
[ 2624.854933]  sysfs_slab_add+0x188/0x200
[ 2624.855552]  __kmem_cache_create+0x3db/0x520
[ 2624.856136]  kmem_cache_create_usercopy+0x1db/0x2f0
[ 2624.856814]  p9_client_create+0xc2b/0x1090
[ 2624.857366]  ? p9_client_flush+0x430/0x430
[ 2624.857918]  ? lockdep_init_map_type+0x2c7/0x780
[ 2624.858523]  ? rcu_read_lock_sched_held+0x3e/0x80
[ 2624.859150]  ? __raw_spin_lock_init+0x36/0x110
[ 2624.863861]  v9fs_session_init+0x1dd/0x16a0
[ 2624.864448]  ? kmem_cache_alloc_trace+0x151/0x360
[ 2624.865077]  ? v9fs_show_options+0x690/0x690
[ 2624.865672]  ? kasan_unpoison_shadow+0x33/0x50
[ 2624.866274]  ? __kasan_kmalloc.constprop.0+0xc9/0xd0
[ 2624.866947]  v9fs_mount+0x79/0x8f0
[ 2624.871436]  ? v9fs_write_inode+0x60/0x60
[ 2624.871980]  legacy_get_tree+0x105/0x220
[ 2624.872517]  vfs_get_tree+0x8e/0x300
[ 2624.873001]  path_mount+0x13be/0x20b0
[ 2624.873496]  ? strncpy_from_user+0x9e/0x470
[ 2624.874050]  ? finish_automount+0xa40/0xa40
[ 2624.874630]  ? getname_flags.part.0+0x1dd/0x4f0
[ 2624.875272]  ? _copy_from_user+0xfb/0x1b0
[ 2624.875843]  __x64_sys_mount+0x282/0x300
[ 2624.876398]  ? copy_mnt_ns+0xa00/0xa00
[ 2624.876916]  ? rcu_read_lock_sched_held+0x3e/0x80
[ 2624.877539]  do_syscall_64+0x33/0x40
[ 2624.878035]  entry_SYSCALL_64_after_hwframe+0x61/0xc6
[ 2624.878754] RIP: 0033:0x7f38308e8b19
[ 2624.883376] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 2624.885752] RSP: 002b:00007f382de5e188 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5
[ 2624.886697] RAX: ffffffffffffffda RBX: 00007f38309fbf60 RCX: 00007f38308e8b19
[ 2624.891663] RDX: 00000000200000c0 RSI: 0000000020000040 RDI: 0000000000000000
[ 2624.892579] RBP: 00007f382de5e1d0 R08: 0000000020000280 R09: 0000000000000000
[ 2624.893487] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[ 2624.894371] R13: 00007ffca2bf07df R14: 00007f382de5e300 R15: 0000000000022000
[ 2624.953317] kmem_cache_create(9p-fcall-cache) failed with error -12
[ 2624.954343] CPU: 0 PID: 23955 Comm: syz-executor.5 Not tainted 5.10.172 #1
[ 2624.955445] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 2624.956509] Call Trace:
[ 2624.956863]  dump_stack+0x107/0x167
[ 2624.957359]  kmem_cache_create_usercopy.cold+0x17/0x65
[ 2624.958060]  p9_client_create+0xc2b/0x1090
[ 2624.958629]  ? p9_client_flush+0x430/0x430
21:24:31 executing program 7:
r0 = perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
io_setup(0x7f, &(0x7f00000002c0)=<r1=>0x0)
io_pgetevents(r1, 0x0, 0x1, &(0x7f0000000000)=[{}], 0x0, 0x0)
io_submit(r1, 0x1, &(0x7f0000000340)=[&(0x7f0000000300)={0x0, 0x0, 0x0, 0x5, 0x0, r0, 0x0}])

[ 2624.959227]  ? lockdep_init_map_type+0x2c7/0x780
[ 2624.959847]  ? rcu_read_lock_sched_held+0x3e/0x80
[ 2624.960648]  ? __raw_spin_lock_init+0x36/0x110
[ 2624.961599]  v9fs_session_init+0x1dd/0x16a0
[ 2624.962856]  ? kmem_cache_alloc_trace+0x151/0x360
[ 2624.964020]  ? v9fs_show_options+0x690/0x690
[ 2624.965058]  ? kasan_unpoison_shadow+0x33/0x50
[ 2624.966186]  ? __kasan_kmalloc.constprop.0+0xc9/0xd0
[ 2624.967733]  v9fs_mount+0x79/0x8f0
[ 2624.968651]  ? v9fs_write_inode+0x60/0x60
[ 2624.969863]  legacy_get_tree+0x105/0x220
[ 2624.970849]  vfs_get_tree+0x8e/0x300
[ 2624.972049]  path_mount+0x13be/0x20b0
[ 2624.972927]  ? strncpy_from_user+0x9e/0x470
[ 2624.973901]  ? finish_automount+0xa40/0xa40
[ 2624.974857]  ? getname_flags.part.0+0x1dd/0x4f0
[ 2624.976112]  ? _copy_from_user+0xfb/0x1b0
[ 2624.977068]  __x64_sys_mount+0x282/0x300
[ 2624.977969]  ? copy_mnt_ns+0xa00/0xa00
[ 2624.978855]  ? rcu_read_lock_sched_held+0x3e/0x80
[ 2624.980103]  do_syscall_64+0x33/0x40
[ 2624.980969]  entry_SYSCALL_64_after_hwframe+0x61/0xc6
[ 2624.982128] RIP: 0033:0x7f38308e8b19
[ 2624.983171] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 2624.987521] RSP: 002b:00007f382de5e188 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5
[ 2624.988453] RAX: ffffffffffffffda RBX: 00007f38309fbf60 RCX: 00007f38308e8b19
[ 2624.989293] RDX: 00000000200000c0 RSI: 0000000020000040 RDI: 0000000000000000
[ 2624.990101] RBP: 00007f382de5e1d0 R08: 0000000020000280 R09: 0000000000000000
[ 2624.990918] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[ 2624.991840] R13: 00007ffca2bf07df R14: 00007f382de5e300 R15: 0000000000022000
21:24:31 executing program 1:
openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x105142, 0x0)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
pipe(&(0x7f00000001c0))
mount$9p_fd(0x900000000000000, &(0x7f0000000040)='./file1\x00', &(0x7f00000000c0), 0x0, &(0x7f0000000280)={'trans=fd,', {}, 0x2c, {}, 0x2c, {[{@nodevmap}]}})

21:24:31 executing program 7:
r0 = perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
io_setup(0x7f, &(0x7f00000002c0)=<r1=>0x0)
io_pgetevents(r1, 0x0, 0x1, &(0x7f0000000000)=[{}], 0x0, 0x0)
io_submit(r1, 0x1, &(0x7f0000000340)=[&(0x7f0000000300)={0x0, 0x0, 0x0, 0x5, 0x0, r0, 0x0}])

21:24:31 executing program 2:
syz_mount_image$vfat(&(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x0, 0x2, &(0x7f0000000180)=[{&(0x7f0000000140)="eb3c906d6b66732e66617400020801000470008400f801", 0x17}, {0x0, 0x0, 0x1000a00}], 0x0, &(0x7f0000000280)=ANY=[])
setxattr$trusted_overlay_upper(&(0x7f00000001c0)='./file0/file0\x00', &(0x7f0000000200), &(0x7f0000000240)=ANY=[@ANYBLOB="00fb2104faec00100000000000a267bb8e20624f3689a1a1cf0e131e3ac3f93f"], 0x21, 0x1)
r0 = perf_event_open(&(0x7f0000001d80)={0x2, 0x80, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
mmap(&(0x7f0000ffc000/0x2000)=nil, 0x2000, 0x0, 0x13, r0, 0x0)
perf_event_open(&(0x7f0000001d80)={0x2, 0x80, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, r0, 0x2)
ioctl$AUTOFS_DEV_IOCTL_ASKUMOUNT(0xffffffffffffffff, 0xc018937d, &(0x7f0000000340)={{0x1, 0x1, 0x18, r0, {0xffffff00}}, './file0/file0\x00'})
chdir(&(0x7f0000000000)='./file0\x00')
acct(&(0x7f0000000300)='./file0/file1/file0\x00')
r1 = creat(&(0x7f0000000280)='./file0\x00', 0xc6)
r2 = perf_event_open(&(0x7f0000001d80)={0x2, 0x80, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
mmap(&(0x7f0000ffc000/0x2000)=nil, 0x2000, 0x0, 0x13, r2, 0x0)
perf_event_open(&(0x7f0000001d80)={0x2, 0x80, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, r2, 0x2)
ioctl$AUTOFS_DEV_IOCTL_FAIL(0xffffffffffffffff, 0xc0189377, &(0x7f00000002c0)=ANY=[@ANYBLOB="000000006c73940201270000", @ANYRES32=r1, @ANYRES16=r2])
r3 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x105142, 0x0)
ioctl$FS_IOC_RESVSP(r3, 0x40305828, &(0x7f0000000040)={0x0, 0x0, 0x0, 0x4000006})

21:24:31 executing program 3:
openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x105142, 0x0)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x400}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
pipe(&(0x7f00000001c0)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
mount$9p_fd(0x0, &(0x7f0000000040)='./file1\x00', &(0x7f00000000c0), 0x2010, &(0x7f0000000280)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {}, 0x2c, {[{@nodevmap}]}})
openat(r1, &(0x7f0000000180)='./file1\x00', 0x0, 0x0)

21:24:31 executing program 7:
r0 = perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
io_setup(0x7f, &(0x7f00000002c0)=<r1=>0x0)
io_pgetevents(r1, 0x1, 0x0, 0x0, 0x0, 0x0)
io_submit(r1, 0x1, &(0x7f0000000340)=[&(0x7f0000000300)={0x0, 0x0, 0x0, 0x5, 0x0, r0, 0x0}])

21:24:31 executing program 5:
openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x105142, 0x0)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
pipe(&(0x7f00000001c0)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
mount$9p_fd(0x0, &(0x7f0000000040)='./file1\x00', &(0x7f00000000c0), 0x0, &(0x7f0000000280)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}}) (fail_nth: 64)
openat(0xffffffffffffffff, 0x0, 0x0, 0x0)

21:24:31 executing program 4:
openat$vcs(0xffffffffffffff9c, &(0x7f0000000040), 0x0, 0x0)
openat$sr(0xffffffffffffff9c, &(0x7f00000035c0), 0x0, 0x0)
openat$sr(0xffffffffffffff9c, &(0x7f0000000000), 0xc280, 0x0)
openat$rtc(0xffffffffffffff9c, &(0x7f0000000200), 0x0, 0x0)
pipe(&(0x7f00000001c0))
open(&(0x7f00000016c0)='./cgroup.net/cgroup.procs\x00', 0x0, 0x0)
pselect6(0x40, &(0x7f0000000180), &(0x7f00000001c0)={0x3fc}, 0x0, 0x0, 0x0)

[ 2625.357213] FAULT_INJECTION: forcing a failure.
[ 2625.357213] name failslab, interval 1, probability 0, space 0, times 0
[ 2625.358876] CPU: 0 PID: 24188 Comm: syz-executor.5 Not tainted 5.10.172 #1
[ 2625.361201] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 2625.362277] Call Trace:
[ 2625.362656]  dump_stack+0x107/0x167
[ 2625.363155]  should_fail.cold+0x5/0xa
[ 2625.363682]  ? create_object.isra.0+0x3a/0xa20
[ 2625.364271]  should_failslab+0x5/0x20
[ 2625.364750]  kmem_cache_alloc+0x5b/0x360
[ 2625.365273]  create_object.isra.0+0x3a/0xa20
[ 2625.366615]  ? __kasan_kmalloc.constprop.0+0xc9/0xd0
[ 2625.367278]  kmem_cache_alloc+0x159/0x360
[ 2625.367867]  __kernfs_new_node+0xd4/0x850
[ 2625.368502]  ? kernfs_dop_revalidate+0x3a0/0x3a0
[ 2625.369196]  ? __mutex_unlock_slowpath+0xe1/0x600
[ 2625.369905]  ? wait_for_completion_io+0x270/0x270
[ 2625.370667]  ? kernfs_next_descendant_post+0x1a7/0x2a0
[ 2625.371414]  kernfs_new_node+0x93/0x120
[ 2625.372036]  __kernfs_create_file+0x51/0x350
[ 2625.372702]  sysfs_add_file_mode_ns+0x221/0x560
[ 2625.373363]  internal_create_group+0x324/0xb30
[ 2625.374078]  ? sysfs_remove_group+0x170/0x170
[ 2625.374695]  ? kernfs_name_hash+0xe7/0x110
[ 2625.377151]  ? kernfs_find_ns+0x256/0x380
[ 2625.377796]  sysfs_slab_add+0x188/0x200
[ 2625.378442]  __kmem_cache_create+0x3db/0x520
[ 2625.379088]  kmem_cache_create_usercopy+0x1db/0x2f0
[ 2625.379887]  p9_client_create+0xc2b/0x1090
[ 2625.380500]  ? p9_client_flush+0x430/0x430
[ 2625.381098]  ? lockdep_init_map_type+0x2c7/0x780
[ 2625.385564]  ? rcu_read_lock_sched_held+0x3e/0x80
[ 2625.386193]  ? __raw_spin_lock_init+0x36/0x110
[ 2625.387226]  v9fs_session_init+0x1dd/0x16a0
[ 2625.388452]  ? kmem_cache_alloc_trace+0x151/0x360
[ 2625.389553]  ? v9fs_show_options+0x690/0x690
[ 2625.390600]  ? kasan_unpoison_shadow+0x33/0x50
[ 2625.391207]  ? __kasan_kmalloc.constprop.0+0xc9/0xd0
[ 2625.391855]  v9fs_mount+0x79/0x8f0
[ 2625.392328]  ? v9fs_write_inode+0x60/0x60
[ 2625.392864]  legacy_get_tree+0x105/0x220
[ 2625.393410]  vfs_get_tree+0x8e/0x300
[ 2625.393892]  path_mount+0x13be/0x20b0
[ 2625.394329]  ? strncpy_from_user+0x9e/0x470
[ 2625.394765]  ? finish_automount+0xa40/0xa40
[ 2625.395229]  ? getname_flags.part.0+0x1dd/0x4f0
[ 2625.395834]  ? _copy_from_user+0xfb/0x1b0
[ 2625.396389]  __x64_sys_mount+0x282/0x300
[ 2625.396937]  ? copy_mnt_ns+0xa00/0xa00
[ 2625.397506]  ? rcu_read_lock_sched_held+0x3e/0x80
[ 2625.398200]  do_syscall_64+0x33/0x40
[ 2625.398748]  entry_SYSCALL_64_after_hwframe+0x61/0xc6
[ 2625.399508] RIP: 0033:0x7f38308e8b19
[ 2625.400156] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 2625.400164] RSP: 002b:00007f382de5e188 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5
[ 2625.400181] RAX: ffffffffffffffda RBX: 00007f38309fbf60 RCX: 00007f38308e8b19
[ 2625.400189] RDX: 00000000200000c0 RSI: 0000000020000040 RDI: 0000000000000000
[ 2625.400197] RBP: 00007f382de5e1d0 R08: 0000000020000280 R09: 0000000000000000
[ 2625.400204] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[ 2625.400213] R13: 00007ffca2bf07df R14: 00007f382de5e300 R15: 0000000000022000
[ 2625.420737] FAT-fs (loop2): Unrecognized mount option "./file0" or missing value
21:24:49 executing program 1:
openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x105142, 0x0)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
pipe(&(0x7f00000001c0))
mount$9p_fd(0xa00000000000000, &(0x7f0000000040)='./file1\x00', &(0x7f00000000c0), 0x0, &(0x7f0000000280)={'trans=fd,', {}, 0x2c, {}, 0x2c, {[{@nodevmap}]}})

21:24:49 executing program 6:
r0 = syz_mount_image$vfat(&(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x0, 0x2, &(0x7f0000000180)=[{&(0x7f0000000140)="eb3c906d6b66732e66617400020801000470008400f801", 0x17}, {0x0, 0x0, 0x1000a00}], 0x0, &(0x7f0000000240)=ANY=[])
chdir(&(0x7f0000000040)='./file0\x00')
openat2(r0, &(0x7f0000000100)='./file0\x00', &(0x7f00000001c0)={0x40000, 0x81}, 0x18)
mount$cgroup(0x0, 0x0, &(0x7f0000000400), 0x0, 0x0)
r1 = syz_io_uring_setup(0x22, &(0x7f0000000680)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000180)=<r2=>0x0, &(0x7f0000002a40)=<r3=>0x0)
io_uring_register$IORING_REGISTER_PERSONALITY(r1, 0x9, 0x0, 0x0)
socket$nl_netfilter(0x10, 0x3, 0xc)
syz_io_uring_submit(r2, r3, 0x0, 0x0)
r4 = syz_io_uring_setup(0x0, &(0x7f0000000680)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000180), &(0x7f0000002a40))
r5 = io_uring_register$IORING_REGISTER_PERSONALITY(r4, 0x9, 0x0, 0x0)
syz_io_uring_submit(r2, 0x0, &(0x7f0000000440)=@IORING_OP_FSYNC={0x3, 0x2, 0x0, @fd_index=0x9, 0x0, 0x0, 0x0, 0x0, 0x1, {0x0, r5}}, 0x2)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r6 = openat(0xffffffffffffff9c, &(0x7f00000002c0)='./file1\x00', 0x105142, 0x0)
r7 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0)
sendfile(r6, r7, 0x0, 0x100000001)
newfstatat(0xffffffffffffff9c, &(0x7f0000000340)='./file1\x00', &(0x7f0000000380), 0x400)

21:24:49 executing program 5:
openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x105142, 0x0)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
pipe(&(0x7f00000001c0)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
mount$9p_fd(0x0, &(0x7f0000000040)='./file1\x00', &(0x7f00000000c0), 0x0, &(0x7f0000000280)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}}) (fail_nth: 65)
openat(0xffffffffffffffff, 0x0, 0x0, 0x0)

21:24:49 executing program 3:
openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x105142, 0x0)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x400}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
pipe(&(0x7f00000001c0)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
mount$9p_fd(0x0, &(0x7f0000000040)='./file1\x00', &(0x7f00000000c0), 0xedc0, &(0x7f0000000280)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {}, 0x2c, {[{@nodevmap}]}})
openat(r1, &(0x7f0000000180)='./file1\x00', 0x0, 0x0)

21:24:49 executing program 2:
r0 = syz_mount_image$vfat(&(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x0, 0x2, &(0x7f0000000180)=[{&(0x7f0000000140)="eb3c906d6b66732e66617400020801000470008400f801", 0x17}, {0x0, 0x0, 0x1000a00}], 0x0, &(0x7f0000000240)=ANY=[])
chdir(&(0x7f0000000040)='./file0\x00')
r1 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x105142, 0x0)
openat(0xffffffffffffff9c, &(0x7f00000002c0)='./file0\x00', 0x2682, 0x20)
r2 = dup2(r0, 0xffffffffffffffff)
mknodat(r2, &(0x7f0000000280)='./file1\x00', 0x40, 0x5)
getsockname(r1, &(0x7f00000001c0)=@pppol2tpv3in6={0x18, 0x1, {0x0, <r3=>0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, {0xa, 0x0, 0x0, @mcast2}}}, &(0x7f0000000000)=0x80)
acct(0x0)
ioctl$ifreq_SIOCGIFINDEX_team(r3, 0x8933, &(0x7f0000000240))
ioctl$FS_IOC_RESVSP(r3, 0x40305828, &(0x7f0000000040)={0x0, 0x0, 0x8, 0x81})

21:24:49 executing program 7:
r0 = perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
io_setup(0x7f, &(0x7f00000002c0)=<r1=>0x0)
io_pgetevents(r1, 0x1, 0x0, 0x0, 0x0, 0x0)
io_submit(r1, 0x1, &(0x7f0000000340)=[&(0x7f0000000300)={0x0, 0x0, 0x0, 0x5, 0x0, r0, 0x0}])

21:24:49 executing program 4:
r0 = openat$vcs(0xffffffffffffff9c, &(0x7f0000000040), 0x0, 0x0)
r1 = openat$sr(0xffffffffffffff9c, &(0x7f00000035c0), 0x0, 0x0)
r2 = gettid()
timer_create(0x0, &(0x7f0000000240)={0x0, 0xb, 0x4, @tid=r2}, &(0x7f0000000040))
r3 = perf_event_open(&(0x7f0000000100)={0x2, 0x80, 0x96, 0x6c, 0x4, 0x8, 0x0, 0xffffffff, 0x82550, 0xb, 0x1, 0x0, 0x0, 0x1, 0x1, 0x1, 0x1, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x1, 0x0, 0x3, 0x0, 0x1, 0x0, 0x1, 0x0, 0x0, 0x0, 0x1, 0x0, 0x1, 0x0, 0x1, 0x1, 0x1, 0x1, 0x1, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x6, 0x4, @perf_config_ext={0x1d5, 0x6}, 0x2e80, 0x7, 0x80000001, 0x9, 0x1f8e450, 0x2, 0x2, 0x0, 0x8, 0x0, 0xfff}, r2, 0xf, r1, 0x2)
r4 = openat$sr(0xffffffffffffff9c, &(0x7f00000000c0), 0x418180, 0x0)
openat$rtc(0xffffffffffffff9c, &(0x7f0000000200), 0x0, 0x0)
ioctl$RTC_SET_TIME(r4, 0x4024700a, &(0x7f0000000000)={0x1c, 0xf, 0x14, 0x12, 0x0, 0x4, 0x0, 0x10a, 0x1})
pipe(&(0x7f00000001c0))
ioctl$RTC_UIE_ON(r0, 0x7003)
ioctl$RTC_ALM_SET(r4, 0x40247007, &(0x7f0000000440)={0x32, 0x19, 0xf, 0x15, 0x4, 0x3, 0x2, 0xd3, 0xffffffffffffffff})
r5 = perf_event_open(&(0x7f0000001d80)={0x2, 0x80, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
mmap(&(0x7f0000ffc000/0x2000)=nil, 0x2000, 0x0, 0x13, r5, 0x0)
perf_event_open(&(0x7f0000001d80)={0x2, 0x80, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f0000000480), 0x5}, 0x10481}, 0x0, 0x0, r5, 0x2)
ioctl$FITHAW(r5, 0xc0045878)
pwritev(r3, &(0x7f0000000080)=[{&(0x7f0000000280)="e40adce971ddfbbd829bf615494924b083b023cfc93654ae98c3600aad93b8f40f541c2efcaed483a0f159f4491eb59f78e402dcf0d3c9f40648a0f76f6c7cdebefb60e0b43831a4101674b31c7d6f6f7776747b235106c2568dcda98ef09f4827b6ae86043fff166566fd63a58bd22d4dd00f3348e9e97a9d923955c14f66404b9d2acf5282b9771dd2ad58417fdcbac4feb8ec4f39436b55c2b28914402b98f9670c07b444c6a85e42224fad398097bcd7a55133062db40b5642", 0xbb}, {&(0x7f0000000340)="7a0a1d12a511553824cdc34b38443442f6eb58d86746e9a44dd3028b4ffbdb1242ff0350e1de07622f81ab6abf18f733cc00b5f52bd6908dc7f66908562a5cee6214f20d963e9debd3735777acbece29a8e638e4922eb5342165e3183383d05e42de4d760befb7b6d5d0", 0x6a}, {&(0x7f00000003c0)="0c5835368d82014c2d86ba64885dc0882a03d231395c79c6cda1c89cfbe93aa0ea53585db09bf35fe661c7e95886bad4726382a0032ec59030bf068cd698265939b18127685067a23ebc", 0x4a}], 0x3, 0x4f7, 0x6)
open(&(0x7f00000004c0)='./cgroup.net/cgroup.procs\x00', 0x0, 0x0)
pselect6(0x40, &(0x7f0000000180), &(0x7f00000001c0)={0x3fc}, 0x0, 0x0, 0x0)

21:24:49 executing program 0:
syz_mount_image$vfat(&(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x0, 0x2, &(0x7f0000000180)=[{&(0x7f0000000140)="eb3c906d6b66732e66617400020801000470008400f801", 0x17}, {0x0, 0x0, 0x1000a00}], 0x0, &(0x7f0000000240)=ANY=[])
chdir(&(0x7f0000000040)='./file0\x00')
mount$cgroup(0x0, 0x0, &(0x7f0000000400), 0x0, 0x0)
r0 = syz_io_uring_setup(0x22, &(0x7f0000000680)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000180)=<r1=>0x0, &(0x7f0000002a40)=<r2=>0x0)
r3 = io_uring_register$IORING_REGISTER_PERSONALITY(r0, 0x9, 0x0, 0x0)
r4 = socket$nl_netfilter(0x10, 0x3, 0xc)
syz_io_uring_submit(r1, r2, &(0x7f0000000400)=@IORING_OP_WRITEV={0x2, 0x0, 0x0, @fd=r4, 0x0, 0x0, 0x0, 0x0, 0x0, {0x0, r3}}, 0x0)
r5 = syz_io_uring_setup(0x22, &(0x7f0000000680)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000180), &(0x7f0000002a40))
io_uring_register$IORING_REGISTER_PERSONALITY(r5, 0x9, 0x0, 0x0)
syz_io_uring_submit(r1, 0x0, 0x0, 0x2)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r6 = openat(0xffffffffffffff9c, &(0x7f00000002c0)='./file1\x00', 0x105142, 0x0)
r7 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0)
mount(&(0x7f0000000200)=ANY=[@ANYBLOB="2f6f651317868af191bdb2"], &(0x7f0000000240)='./file0\x00', &(0x7f0000000280)='nfsd\x00', 0x800000, &(0x7f0000000300)='cgroup\x00')
sendfile(r6, r7, 0x0, 0x100000001)
newfstatat(0xffffffffffffff9c, &(0x7f0000000340)='./file1\x00', &(0x7f0000000380), 0x400)

[ 2643.365607] FAULT_INJECTION: forcing a failure.
[ 2643.365607] name failslab, interval 1, probability 0, space 0, times 0
[ 2643.368203] CPU: 0 PID: 24212 Comm: syz-executor.5 Not tainted 5.10.172 #1
[ 2643.369119] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 2643.370207] Call Trace:
[ 2643.370563]  dump_stack+0x107/0x167
[ 2643.371052]  should_fail.cold+0x5/0xa
[ 2643.371593]  ? __kernfs_new_node+0xd4/0x850
[ 2643.372136]  should_failslab+0x5/0x20
[ 2643.372624]  kmem_cache_alloc+0x5b/0x360
[ 2643.373147]  __kernfs_new_node+0xd4/0x850
[ 2643.373677]  ? kernfs_dop_revalidate+0x3a0/0x3a0
[ 2643.374271]  ? __mutex_unlock_slowpath+0xe1/0x600
[ 2643.374881]  ? wait_for_completion_io+0x270/0x270
[ 2643.375527]  ? kernfs_next_descendant_post+0x1a7/0x2a0
[ 2643.376217]  kernfs_new_node+0x93/0x120
[ 2643.376742]  __kernfs_create_file+0x51/0x350
[ 2643.377327]  sysfs_add_file_mode_ns+0x221/0x560
[ 2643.377945]  internal_create_group+0x324/0xb30
[ 2643.378559]  ? sysfs_remove_group+0x170/0x170
[ 2643.379159]  ? kernfs_name_hash+0xe7/0x110
[ 2643.379762]  ? kernfs_find_ns+0x256/0x380
[ 2643.380301]  sysfs_slab_add+0x188/0x200
[ 2643.380817]  __kmem_cache_create+0x3db/0x520
[ 2643.381386]  kmem_cache_create_usercopy+0x1db/0x2f0
[ 2643.382029]  p9_client_create+0xc2b/0x1090
[ 2643.382581]  ? p9_client_flush+0x430/0x430
[ 2643.383134]  ? lockdep_init_map_type+0x2c7/0x780
[ 2643.383765]  ? rcu_read_lock_sched_held+0x3e/0x80
[ 2643.384382]  ? __raw_spin_lock_init+0x36/0x110
[ 2643.384960]  v9fs_session_init+0x1dd/0x16a0
[ 2643.385519]  ? irqentry_enter+0x26/0x60
[ 2643.386054]  ? irqentry_enter+0x26/0x60
[ 2643.386569]  ? v9fs_show_options+0x690/0x690
[ 2643.387141]  ? lockdep_hardirqs_on_prepare+0x277/0x3e0
[ 2643.387837]  ? asm_sysvec_apic_timer_interrupt+0x12/0x20
[ 2643.388528]  ? trace_hardirqs_on+0x5b/0x180
[ 2643.389093]  ? asm_sysvec_apic_timer_interrupt+0x12/0x20
[ 2643.389804]  ? entry_SYSCALL_64_after_hwframe+0x61/0xc6
[ 2643.390544]  v9fs_mount+0x79/0x8f0
[ 2643.391016]  ? v9fs_write_inode+0x60/0x60
[ 2643.391609]  legacy_get_tree+0x105/0x220
[ 2643.392210]  vfs_get_tree+0x8e/0x300
[ 2643.392787]  path_mount+0x13be/0x20b0
[ 2643.393307]  ? strncpy_from_user+0x9e/0x470
[ 2643.393977]  ? finish_automount+0xa40/0xa40
[ 2643.394608]  ? getname_flags.part.0+0x1dd/0x4f0
[ 2643.395339]  ? _copy_from_user+0xfb/0x1b0
[ 2643.395970]  __x64_sys_mount+0x282/0x300
[ 2643.396614]  ? copy_mnt_ns+0xa00/0xa00
[ 2643.397234]  ? rcu_read_lock_sched_held+0x3e/0x80
[ 2643.398006]  do_syscall_64+0x33/0x40
[ 2643.398601]  entry_SYSCALL_64_after_hwframe+0x61/0xc6
[ 2643.399432] RIP: 0033:0x7f38308e8b19
[ 2643.400009] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 2643.402868] RSP: 002b:00007f382de5e188 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5
[ 2643.404049] RAX: ffffffffffffffda RBX: 00007f38309fbf60 RCX: 00007f38308e8b19
[ 2643.405149] RDX: 00000000200000c0 RSI: 0000000020000040 RDI: 0000000000000000
[ 2643.406279] RBP: 00007f382de5e1d0 R08: 0000000020000280 R09: 0000000000000000
[ 2643.407423] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[ 2643.408427] R13: 00007ffca2bf07df R14: 00007f382de5e300 R15: 0000000000022000
21:24:49 executing program 3:
openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x105142, 0x0)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x400}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
pipe(&(0x7f00000001c0)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
mount$9p_fd(0x0, &(0x7f0000000040)='./file1\x00', &(0x7f00000000c0), 0x80000, &(0x7f0000000280)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {}, 0x2c, {[{@nodevmap}]}})
openat(r1, &(0x7f0000000180)='./file1\x00', 0x0, 0x0)

[ 2643.423164] kmem_cache_create(9p-fcall-cache) failed with error -12
[ 2643.424073] CPU: 0 PID: 24212 Comm: syz-executor.5 Not tainted 5.10.172 #1
[ 2643.424939] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 2643.425988] Call Trace:
[ 2643.426409]  dump_stack+0x107/0x167
[ 2643.426980]  kmem_cache_create_usercopy.cold+0x17/0x65
[ 2643.427779]  p9_client_create+0xc2b/0x1090
[ 2643.428332]  ? p9_client_flush+0x430/0x430
[ 2643.428890]  ? lockdep_init_map_type+0x2c7/0x780
[ 2643.429515]  ? rcu_read_lock_sched_held+0x3e/0x80
[ 2643.430261]  ? __raw_spin_lock_init+0x36/0x110
[ 2643.430983]  v9fs_session_init+0x1dd/0x16a0
[ 2643.431660]  ? irqentry_enter+0x26/0x60
[ 2643.432171]  ? irqentry_enter+0x26/0x60
[ 2643.432677]  ? v9fs_show_options+0x690/0x690
[ 2643.433234]  ? lockdep_hardirqs_on_prepare+0x277/0x3e0
[ 2643.433893]  ? asm_sysvec_apic_timer_interrupt+0x12/0x20
[ 2643.434696]  ? trace_hardirqs_on+0x5b/0x180
[ 2643.435255]  ? asm_sysvec_apic_timer_interrupt+0x12/0x20
[ 2643.435986]  ? entry_SYSCALL_64_after_hwframe+0x61/0xc6
[ 2643.436714]  v9fs_mount+0x79/0x8f0
[ 2643.437192]  ? v9fs_write_inode+0x60/0x60
[ 2643.437747]  legacy_get_tree+0x105/0x220
[ 2643.438293]  vfs_get_tree+0x8e/0x300
[ 2643.438827]  path_mount+0x13be/0x20b0
[ 2643.439334]  ? strncpy_from_user+0x9e/0x470
[ 2643.439918]  ? finish_automount+0xa40/0xa40
[ 2643.440491]  ? getname_flags.part.0+0x1dd/0x4f0
[ 2643.441105]  ? _copy_from_user+0xfb/0x1b0
[ 2643.441672]  __x64_sys_mount+0x282/0x300
[ 2643.442214]  ? copy_mnt_ns+0xa00/0xa00
[ 2643.442733]  ? rcu_read_lock_sched_held+0x3e/0x80
[ 2643.443373]  do_syscall_64+0x33/0x40
[ 2643.443899]  entry_SYSCALL_64_after_hwframe+0x61/0xc6
[ 2643.444578] RIP: 0033:0x7f38308e8b19
[ 2643.445084] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 2643.447494] RSP: 002b:00007f382de5e188 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5
[ 2643.448493] RAX: ffffffffffffffda RBX: 00007f38309fbf60 RCX: 00007f38308e8b19
[ 2643.449418] RDX: 00000000200000c0 RSI: 0000000020000040 RDI: 0000000000000000
[ 2643.450353] RBP: 00007f382de5e1d0 R08: 0000000020000280 R09: 0000000000000000
[ 2643.451295] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[ 2643.452270] R13: 00007ffca2bf07df R14: 00007f382de5e300 R15: 0000000000022000
21:24:49 executing program 1:
openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x105142, 0x0)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
pipe(&(0x7f00000001c0))
mount$9p_fd(0xb00000000000000, &(0x7f0000000040)='./file1\x00', &(0x7f00000000c0), 0x0, &(0x7f0000000280)={'trans=fd,', {}, 0x2c, {}, 0x2c, {[{@nodevmap}]}})

21:24:49 executing program 7:
r0 = perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
io_setup(0x7f, &(0x7f00000002c0)=<r1=>0x0)
io_pgetevents(r1, 0x1, 0x0, 0x0, 0x0, 0x0)
io_submit(r1, 0x1, &(0x7f0000000340)=[&(0x7f0000000300)={0x0, 0x0, 0x0, 0x5, 0x0, r0, 0x0}])

21:24:50 executing program 4:
openat$vcs(0xffffffffffffff9c, &(0x7f0000000040), 0x0, 0x0)
openat$sr(0xffffffffffffff9c, &(0x7f00000035c0), 0x0, 0x0)
openat$sr(0xffffffffffffff9c, &(0x7f00000000c0), 0x224400, 0x0)
openat$rtc(0xffffffffffffff9c, &(0x7f0000000200), 0x0, 0x0)
pipe(&(0x7f00000001c0))
open(&(0x7f00000016c0)='./cgroup.net/cgroup.procs\x00', 0x0, 0x0)
pselect6(0x40, &(0x7f0000000180), &(0x7f00000001c0)={0x3fc}, 0x0, 0x0, 0x0)
r0 = syz_open_dev$mouse(&(0x7f0000000000), 0x8, 0x400200)
ioctl$RTC_ALM_SET(r0, 0x40247007, &(0x7f0000000100)={0x27, 0x2, 0x16, 0x1b, 0x7, 0x1000, 0x0, 0xfe, 0xffffffffffffffff})

21:24:50 executing program 3:
openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x105142, 0x0)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x400}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
pipe(&(0x7f00000001c0)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
mount$9p_fd(0x0, &(0x7f0000000040)='./file1\x00', &(0x7f00000000c0), 0x1000000, &(0x7f0000000280)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {}, 0x2c, {[{@nodevmap}]}})
openat(r1, &(0x7f0000000180)='./file1\x00', 0x0, 0x0)

21:24:50 executing program 2:
syz_mount_image$vfat(&(0x7f0000000200), &(0x7f00000000c0)='./file0\x00', 0x8001, 0x2, &(0x7f0000000180)=[{&(0x7f0000000140)="eb3c906d6b66732e66617400020801000470008400f801", 0x17}, {0x0, 0x0, 0x1000a00}], 0x0, &(0x7f0000000240)=ANY=[])
chdir(&(0x7f0000000040)='./file0\x00')
r0 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x105142, 0x0)
ioctl$FS_IOC_RESVSP(r0, 0x40305828, &(0x7f0000000040)={0x0, 0x0, 0x0, 0x4000006})
fsetxattr$trusted_overlay_redirect(0xffffffffffffffff, &(0x7f0000000300), &(0x7f0000000340)='./file0\x00', 0x8, 0x2)
pipe(&(0x7f00000001c0)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
r3 = syz_open_procfs(0xffffffffffffffff, &(0x7f0000000080)='net/ip_mr_vif\x00')
r4 = perf_event_open(&(0x7f0000001d80)={0x2, 0x80, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
mmap(&(0x7f0000ffc000/0x2000)=nil, 0x2000, 0x0, 0x13, r4, 0x0)
perf_event_open(&(0x7f0000001d80)={0x2, 0x80, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, r4, 0x2)
ioctl$AUTOFS_DEV_IOCTL_PROTOVER(r3, 0xc0189372, &(0x7f0000000240)={{0x1, 0x1, 0x18, r4, {0x401}}, './file1\x00'})
mount$9p_fd(0x0, &(0x7f0000000040)='./file1\x00', &(0x7f00000000c0), 0x0, &(0x7f0000000280)={'trans=fd,', {'rfdno', 0x3d, r1}, 0x2c, {'wfdno', 0x3d, r2}, 0x2c, {[{@nodevmap}]}})
r5 = syz_io_uring_complete(0x0)
renameat(r2, &(0x7f0000000000)='./file1\x00', r5, &(0x7f00000001c0)='./file1\x00')

21:24:50 executing program 7:
r0 = perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
io_setup(0x7f, &(0x7f00000002c0)=<r1=>0x0)
io_pgetevents(r1, 0x1, 0x0, &(0x7f0000000000), 0x0, 0x0)
io_submit(r1, 0x1, &(0x7f0000000340)=[&(0x7f0000000300)={0x0, 0x0, 0x0, 0x5, 0x0, r0, 0x0}])

21:24:50 executing program 6:
r0 = syz_mount_image$vfat(&(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x0, 0x2, &(0x7f0000000180)=[{&(0x7f0000000140)="eb3c906d6b66732e66617400020801000470008400f801", 0x17}, {0x0, 0x0, 0x1000a00}], 0x0, &(0x7f0000000240)=ANY=[])
chdir(&(0x7f0000000040)='./file0\x00')
openat2(r0, &(0x7f0000000100)='./file0\x00', &(0x7f00000001c0)={0x40000, 0x81}, 0x18)
mount$cgroup(0x0, 0x0, &(0x7f0000000400), 0x0, 0x0)
r1 = syz_io_uring_setup(0x22, &(0x7f0000000680)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000180)=<r2=>0x0, &(0x7f0000002a40)=<r3=>0x0)
io_uring_register$IORING_REGISTER_PERSONALITY(r1, 0x9, 0x0, 0x0)
socket$nl_netfilter(0x10, 0x3, 0xc)
syz_io_uring_submit(r2, r3, 0x0, 0x0)
r4 = syz_io_uring_setup(0x0, &(0x7f0000000680)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000180), &(0x7f0000002a40))
r5 = io_uring_register$IORING_REGISTER_PERSONALITY(r4, 0x9, 0x0, 0x0)
syz_io_uring_submit(r2, 0x0, &(0x7f0000000440)=@IORING_OP_FSYNC={0x3, 0x2, 0x0, @fd_index=0x9, 0x0, 0x0, 0x0, 0x0, 0x1, {0x0, r5}}, 0x2)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r6 = openat(0xffffffffffffff9c, &(0x7f00000002c0)='./file1\x00', 0x105142, 0x0)
r7 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0)
sendfile(r6, r7, 0x0, 0x100000001)
newfstatat(0xffffffffffffff9c, &(0x7f0000000340)='./file1\x00', &(0x7f0000000380), 0x400)

[ 2643.697349] 9pnet: Insufficient options for proto=fd
21:24:50 executing program 7:
r0 = perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
io_setup(0x7f, &(0x7f00000002c0)=<r1=>0x0)
io_pgetevents(r1, 0x1, 0x0, &(0x7f0000000000), 0x0, 0x0)
io_submit(r1, 0x1, &(0x7f0000000340)=[&(0x7f0000000300)={0x0, 0x0, 0x0, 0x5, 0x0, r0, 0x0}])

[ 2643.725078] 9pnet: Insufficient options for proto=fd
21:24:50 executing program 7:
r0 = perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
io_setup(0x7f, &(0x7f00000002c0)=<r1=>0x0)
io_pgetevents(r1, 0x1, 0x0, &(0x7f0000000000), 0x0, 0x0)
io_submit(r1, 0x1, &(0x7f0000000340)=[&(0x7f0000000300)={0x0, 0x0, 0x0, 0x5, 0x0, r0, 0x0}])

21:25:06 executing program 1:
openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x105142, 0x0)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
pipe(&(0x7f00000001c0))
mount$9p_fd(0x2000000000000000, &(0x7f0000000040)='./file1\x00', &(0x7f00000000c0), 0x0, &(0x7f0000000280)={'trans=fd,', {}, 0x2c, {}, 0x2c, {[{@nodevmap}]}})

21:25:06 executing program 3:
openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x105142, 0x0)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x400}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
pipe(&(0x7f00000001c0)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
mount$9p_fd(0x0, &(0x7f0000000040)='./file1\x00', &(0x7f00000000c0), 0x2000000, &(0x7f0000000280)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {}, 0x2c, {[{@nodevmap}]}})
openat(r1, &(0x7f0000000180)='./file1\x00', 0x0, 0x0)

21:25:06 executing program 6:
r0 = syz_mount_image$vfat(&(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x0, 0x2, &(0x7f0000000180)=[{&(0x7f0000000140)="eb3c906d6b66732e66617400020801000470008400f801", 0x17}, {0x0, 0x0, 0x1000a00}], 0x0, &(0x7f0000000240)=ANY=[])
chdir(&(0x7f0000000040)='./file0\x00')
openat2(r0, &(0x7f0000000100)='./file0\x00', &(0x7f00000001c0)={0x40000, 0x81}, 0x18)
mount$cgroup(0x0, 0x0, &(0x7f0000000400), 0x0, 0x0)
r1 = syz_io_uring_setup(0x22, &(0x7f0000000680)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000180)=<r2=>0x0, &(0x7f0000002a40)=<r3=>0x0)
io_uring_register$IORING_REGISTER_PERSONALITY(r1, 0x9, 0x0, 0x0)
socket$nl_netfilter(0x10, 0x3, 0xc)
syz_io_uring_submit(r2, r3, 0x0, 0x0)
r4 = syz_io_uring_setup(0x22, 0x0, &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000180), &(0x7f0000002a40))
r5 = io_uring_register$IORING_REGISTER_PERSONALITY(r4, 0x9, 0x0, 0x0)
syz_io_uring_submit(r2, 0x0, &(0x7f0000000440)=@IORING_OP_FSYNC={0x3, 0x2, 0x0, @fd_index=0x9, 0x0, 0x0, 0x0, 0x0, 0x1, {0x0, r5}}, 0x2)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r6 = openat(0xffffffffffffff9c, &(0x7f00000002c0)='./file1\x00', 0x105142, 0x0)
r7 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0)
sendfile(r6, r7, 0x0, 0x100000001)
newfstatat(0xffffffffffffff9c, &(0x7f0000000340)='./file1\x00', &(0x7f0000000380), 0x400)

21:25:06 executing program 0:
syz_mount_image$vfat(&(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x0, 0x2, &(0x7f0000000180)=[{&(0x7f0000000140)="eb3c906d6b66732e66617400020801000470008400f801", 0x17}, {0x0, 0x0, 0x1000a00}], 0x0, &(0x7f0000000240)=ANY=[])
chdir(&(0x7f0000000040)='./file0\x00')
mount$cgroup(0x0, 0x0, &(0x7f0000000400), 0x0, 0x0)
r0 = syz_io_uring_setup(0x22, &(0x7f0000000680)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000180)=<r1=>0x0, &(0x7f0000002a40)=<r2=>0x0)
r3 = io_uring_register$IORING_REGISTER_PERSONALITY(r0, 0x9, 0x0, 0x0)
r4 = socket$nl_netfilter(0x10, 0x3, 0xc)
syz_io_uring_submit(r1, r2, &(0x7f0000000400)=@IORING_OP_WRITEV={0x2, 0x0, 0x0, @fd=r4, 0x0, 0x0, 0x0, 0x0, 0x0, {0x0, r3}}, 0x0)
r5 = syz_io_uring_setup(0x22, &(0x7f0000000680)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000180), &(0x7f0000002a40))
r6 = io_uring_register$IORING_REGISTER_PERSONALITY(r5, 0x9, 0x0, 0x0)
syz_io_uring_submit(r1, 0x0, &(0x7f0000000440)=@IORING_OP_FSYNC={0x3, 0x0, 0x0, @fd_index=0x9, 0x0, 0x0, 0x0, 0x0, 0x1, {0x0, r6}}, 0x2)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r7 = openat(0xffffffffffffff9c, &(0x7f00000002c0)='./file1\x00', 0x105142, 0x0)
r8 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0)
mount(&(0x7f0000000200)=ANY=[@ANYBLOB="2f6f651317868af191bdb2"], &(0x7f0000000240)='./file0\x00', &(0x7f0000000280)='nfsd\x00', 0x800000, &(0x7f0000000300)='cgroup\x00')
sendfile(r7, r8, 0x0, 0x100000001)
newfstatat(0xffffffffffffff9c, &(0x7f0000000340)='./file1\x00', &(0x7f0000000380), 0x400)

21:25:06 executing program 4:
openat$vcs(0xffffffffffffff9c, &(0x7f0000000040), 0x0, 0x0)
openat$sr(0xffffffffffffff9c, &(0x7f00000035c0), 0x0, 0x0)
openat$sr(0xffffffffffffff9c, &(0x7f00000000c0), 0x224400, 0x0)
pipe(&(0x7f00000001c0)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
mount$9p_fd(0x0, &(0x7f0000000040)='./file1\x00', &(0x7f00000000c0), 0x0, &(0x7f0000000280)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}, 0x2c, {[{@nodevmap}]}})
ioctl$RTC_AIE_ON(r1, 0x7001)
openat$rtc(0xffffffffffffff9c, &(0x7f0000000200), 0x0, 0x0)
pipe(&(0x7f00000001c0))
open(&(0x7f00000016c0)='./cgroup.net/cgroup.procs\x00', 0x0, 0x0)
pselect6(0x40, &(0x7f0000000180), &(0x7f00000001c0)={0x3fc, 0x10, 0x1, 0x4, 0x4000004, 0x1}, 0x0, 0x0, 0x0)

21:25:06 executing program 7:
r0 = perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
io_setup(0x7f, &(0x7f00000002c0)=<r1=>0x0)
io_pgetevents(r1, 0x1, 0x1, &(0x7f0000000000)=[{}], 0x0, 0x0)
io_submit(0x0, 0x1, &(0x7f0000000340)=[&(0x7f0000000300)={0x0, 0x0, 0x0, 0x5, 0x0, r0, 0x0}])

21:25:06 executing program 2:
r0 = syz_mount_image$vfat(&(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x0, 0x2, &(0x7f0000000180)=[{&(0x7f0000000140)="eb3c906d6b66732e66617400020801000470008400f801", 0x17}, {0x0, 0x0, 0x1000a00}], 0x0, &(0x7f0000000240)=ANY=[])
chdir(&(0x7f0000000040)='./file0\x00')
mknodat$null(r0, &(0x7f0000000000)='./file0\x00', 0x2, 0x103)
r1 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x105142, 0x0)
ioctl$FS_IOC_RESVSP(r1, 0x40305828, &(0x7f0000000040)={0x0, 0x0, 0x0, 0x4000006})

21:25:06 executing program 5:
openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x105142, 0x0)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
pipe(&(0x7f00000001c0)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
mount$9p_fd(0x0, &(0x7f0000000040)='./file1\x00', &(0x7f00000000c0), 0x0, &(0x7f0000000280)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}}) (fail_nth: 66)
openat(0xffffffffffffffff, 0x0, 0x0, 0x0)

[ 2660.195606] FAULT_INJECTION: forcing a failure.
[ 2660.195606] name failslab, interval 1, probability 0, space 0, times 0
[ 2660.197129] CPU: 1 PID: 24472 Comm: syz-executor.5 Not tainted 5.10.172 #1
[ 2660.197987] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 2660.199020] Call Trace:
[ 2660.199363]  dump_stack+0x107/0x167
[ 2660.199823]  should_fail.cold+0x5/0xa
[ 2660.200294]  ? create_object.isra.0+0x3a/0xa20
[ 2660.200858]  ? create_object.isra.0+0x3a/0xa20
[ 2660.201426]  should_failslab+0x5/0x20
[ 2660.201901]  kmem_cache_alloc+0x5b/0x360
[ 2660.202412]  create_object.isra.0+0x3a/0xa20
[ 2660.202955]  ? __kasan_kmalloc.constprop.0+0xc9/0xd0
[ 2660.203594]  kmem_cache_alloc+0x159/0x360
[ 2660.204139]  __kernfs_new_node+0xd4/0x850
[ 2660.204651]  ? kernfs_dop_revalidate+0x3a0/0x3a0
[ 2660.205238]  ? __mutex_unlock_slowpath+0xe1/0x600
[ 2660.205837]  ? wait_for_completion_io+0x270/0x270
[ 2660.206463]  ? kernfs_next_descendant_post+0x1a7/0x2a0
[ 2660.207154]  kernfs_new_node+0x93/0x120
[ 2660.207687]  __kernfs_create_file+0x51/0x350
[ 2660.208266]  sysfs_add_file_mode_ns+0x221/0x560
[ 2660.208884]  internal_create_group+0x324/0xb30
[ 2660.208904]  ? sysfs_remove_group+0x170/0x170
[ 2660.208915]  ? kernfs_name_hash+0xe7/0x110
[ 2660.208930]  ? kernfs_find_ns+0x256/0x380
[ 2660.208949]  sysfs_slab_add+0x188/0x200
[ 2660.208964]  __kmem_cache_create+0x3db/0x520
[ 2660.208980]  kmem_cache_create_usercopy+0x1db/0x2f0
[ 2660.208999]  p9_client_create+0xc2b/0x1090
[ 2660.209020]  ? p9_client_flush+0x430/0x430
[ 2660.209040]  ? lockdep_init_map_type+0x2c7/0x780
[ 2660.209052]  ? rcu_read_lock_sched_held+0x3e/0x80
[ 2660.209068]  ? __raw_spin_lock_init+0x36/0x110
[ 2660.209086]  v9fs_session_init+0x1dd/0x16a0
[ 2660.209110]  ? kmem_cache_alloc_trace+0x151/0x360
[ 2660.209121]  ? v9fs_show_options+0x690/0x690
[ 2660.209153]  ? kasan_unpoison_shadow+0x33/0x50
21:25:06 executing program 3:
openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x105142, 0x0)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x400}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
pipe(&(0x7f00000001c0)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
mount$9p_fd(0x0, &(0x7f0000000040)='./file1\x00', &(0x7f00000000c0), 0x3000000, &(0x7f0000000280)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {}, 0x2c, {[{@nodevmap}]}})
openat(r1, &(0x7f0000000180)='./file1\x00', 0x0, 0x0)

[ 2660.209166]  ? __kasan_kmalloc.constprop.0+0xc9/0xd0
[ 2660.209183]  v9fs_mount+0x79/0x8f0
[ 2660.209197]  ? v9fs_write_inode+0x60/0x60
[ 2660.209210]  legacy_get_tree+0x105/0x220
[ 2660.209227]  vfs_get_tree+0x8e/0x300
[ 2660.209241]  path_mount+0x13be/0x20b0
[ 2660.209259]  ? strncpy_from_user+0x9e/0x470
[ 2660.209273]  ? finish_automount+0xa40/0xa40
[ 2660.209288]  ? getname_flags.part.0+0x1dd/0x4f0
[ 2660.209299]  ? _copy_from_user+0xfb/0x1b0
[ 2660.209321]  __x64_sys_mount+0x282/0x300
[ 2660.209335]  ? copy_mnt_ns+0xa00/0xa00
[ 2660.209351]  ? rcu_read_lock_sched_held+0x3e/0x80
[ 2660.209368]  do_syscall_64+0x33/0x40
[ 2660.209381]  entry_SYSCALL_64_after_hwframe+0x61/0xc6
[ 2660.209390] RIP: 0033:0x7f38308e8b19
[ 2660.209402] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 2660.209409] RSP: 002b:00007f382de5e188 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5
[ 2660.209423] RAX: ffffffffffffffda RBX: 00007f38309fbf60 RCX: 00007f38308e8b19
21:25:06 executing program 2:
syz_mount_image$vfat(&(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0xfffffffffffffffc, 0x2, &(0x7f0000000180)=[{&(0x7f0000000140)="eb3c906d6b66732e66617400020801000470008400f801", 0x17}, {0x0, 0x0, 0x1000a00}], 0x0, &(0x7f0000000240)=ANY=[])
chdir(&(0x7f0000000040)='./file0\x00')
getpeername(0xffffffffffffffff, &(0x7f00000001c0)=@nfc, &(0x7f0000000000)=0x80)
pipe(&(0x7f0000000300)={<r0=>0xffffffffffffffff})
openat(r0, &(0x7f0000000340)='./file0\x00', 0x111401, 0x23b)
setxattr(&(0x7f0000000240)='./file0\x00', &(0x7f0000000280)=@random={'trusted.', '\x00'}, &(0x7f00000002c0)='\x00', 0x1, 0x0)
r1 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x105142, 0x0)
ioctl$FS_IOC_RESVSP(r1, 0x40305828, &(0x7f0000000040)={0x0, 0x0, 0x0, 0x4000006})

[ 2660.209430] RDX: 00000000200000c0 RSI: 0000000020000040 RDI: 0000000000000000
[ 2660.209438] RBP: 00007f382de5e1d0 R08: 0000000020000280 R09: 0000000000000000
[ 2660.209445] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[ 2660.209452] R13: 00007ffca2bf07df R14: 00007f382de5e300 R15: 0000000000022000
[ 2660.258153] 9pnet: Insufficient options for proto=fd
[ 2660.266070] 9pnet: Insufficient options for proto=fd
[ 2660.379205] 9pnet: Insufficient options for proto=fd
21:25:06 executing program 3:
openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x105142, 0x0)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x400}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
pipe(&(0x7f00000001c0)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
mount$9p_fd(0x0, &(0x7f0000000040)='./file1\x00', &(0x7f00000000c0), 0x4000000, &(0x7f0000000280)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {}, 0x2c, {[{@nodevmap}]}})
openat(r1, &(0x7f0000000180)='./file1\x00', 0x0, 0x0)

[ 2660.382431] 9pnet: Insufficient options for proto=fd
[ 2660.419604] 9pnet: Insufficient options for proto=fd
21:25:06 executing program 6:
r0 = syz_mount_image$vfat(&(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x0, 0x2, &(0x7f0000000180)=[{&(0x7f0000000140)="eb3c906d6b66732e66617400020801000470008400f801", 0x17}, {0x0, 0x0, 0x1000a00}], 0x0, &(0x7f0000000240)=ANY=[])
chdir(&(0x7f0000000040)='./file0\x00')
openat2(r0, &(0x7f0000000100)='./file0\x00', &(0x7f00000001c0)={0x40000, 0x81}, 0x18)
mount$cgroup(0x0, 0x0, &(0x7f0000000400), 0x0, 0x0)
r1 = syz_io_uring_setup(0x22, &(0x7f0000000680)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000180)=<r2=>0x0, &(0x7f0000002a40)=<r3=>0x0)
io_uring_register$IORING_REGISTER_PERSONALITY(r1, 0x9, 0x0, 0x0)
socket$nl_netfilter(0x10, 0x3, 0xc)
syz_io_uring_submit(r2, r3, 0x0, 0x0)
r4 = syz_io_uring_setup(0x22, 0x0, &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000180), &(0x7f0000002a40))
r5 = io_uring_register$IORING_REGISTER_PERSONALITY(r4, 0x9, 0x0, 0x0)
syz_io_uring_submit(r2, 0x0, &(0x7f0000000440)=@IORING_OP_FSYNC={0x3, 0x2, 0x0, @fd_index=0x9, 0x0, 0x0, 0x0, 0x0, 0x1, {0x0, r5}}, 0x2)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r6 = openat(0xffffffffffffff9c, &(0x7f00000002c0)='./file1\x00', 0x105142, 0x0)
r7 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0)
sendfile(r6, r7, 0x0, 0x100000001)
newfstatat(0xffffffffffffff9c, &(0x7f0000000340)='./file1\x00', &(0x7f0000000380), 0x400)

[ 2660.434283] 9pnet: Insufficient options for proto=fd
21:25:06 executing program 3:
openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x105142, 0x0)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x400}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
pipe(&(0x7f00000001c0)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
mount$9p_fd(0x0, &(0x7f0000000040)='./file1\x00', &(0x7f00000000c0), 0x5000000, &(0x7f0000000280)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {}, 0x2c, {[{@nodevmap}]}})
openat(r1, &(0x7f0000000180)='./file1\x00', 0x0, 0x0)

[ 2660.531251] 9pnet: Insufficient options for proto=fd
[ 2660.540901] 9pnet: Insufficient options for proto=fd
21:25:23 executing program 5:
openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x105142, 0x0)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
pipe(&(0x7f00000001c0)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
mount$9p_fd(0x0, &(0x7f0000000040)='./file1\x00', &(0x7f00000000c0), 0x0, &(0x7f0000000280)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}}) (fail_nth: 67)
openat(0xffffffffffffffff, 0x0, 0x0, 0x0)

21:25:23 executing program 7:
r0 = perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
io_setup(0x7f, &(0x7f00000002c0)=<r1=>0x0)
io_pgetevents(r1, 0x1, 0x1, &(0x7f0000000000)=[{}], 0x0, 0x0)
io_submit(0x0, 0x1, &(0x7f0000000340)=[&(0x7f0000000300)={0x0, 0x0, 0x0, 0x5, 0x0, r0, 0x0}])

21:25:23 executing program 0:
syz_mount_image$vfat(&(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x0, 0x2, &(0x7f0000000180)=[{&(0x7f0000000140)="eb3c906d6b66732e66617400020801000470008400f801", 0x17}, {0x0, 0x0, 0x1000a00}], 0x0, &(0x7f0000000240)=ANY=[])
chdir(&(0x7f0000000040)='./file0\x00')
mount$cgroup(0x0, 0x0, &(0x7f0000000400), 0x0, 0x0)
r0 = syz_io_uring_setup(0x22, &(0x7f0000000680)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000180)=<r1=>0x0, &(0x7f0000002a40)=<r2=>0x0)
r3 = io_uring_register$IORING_REGISTER_PERSONALITY(r0, 0x9, 0x0, 0x0)
r4 = socket$nl_netfilter(0x10, 0x3, 0xc)
syz_io_uring_submit(r1, r2, &(0x7f0000000400)=@IORING_OP_WRITEV={0x2, 0x0, 0x0, @fd=r4, 0x0, 0x0, 0x0, 0x0, 0x0, {0x0, r3}}, 0x0)
r5 = syz_io_uring_setup(0x22, &(0x7f0000000680)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000180), &(0x7f0000002a40))
r6 = io_uring_register$IORING_REGISTER_PERSONALITY(r5, 0x9, 0x0, 0x0)
syz_io_uring_submit(r1, 0x0, &(0x7f0000000440)=@IORING_OP_FSYNC={0x3, 0x0, 0x0, @fd_index=0x9, 0x0, 0x0, 0x0, 0x0, 0x1, {0x0, r6}}, 0x2)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r7 = openat(0xffffffffffffff9c, &(0x7f00000002c0)='./file1\x00', 0x105142, 0x0)
r8 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0)
mount(&(0x7f0000000200)=ANY=[@ANYBLOB="2f6f651317868af191bdb2"], &(0x7f0000000240)='./file0\x00', &(0x7f0000000280)='nfsd\x00', 0x800000, &(0x7f0000000300)='cgroup\x00')
sendfile(r7, r8, 0x0, 0x100000001)
newfstatat(0xffffffffffffff9c, &(0x7f0000000340)='./file1\x00', &(0x7f0000000380), 0x400)

21:25:23 executing program 3:
openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x105142, 0x0)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x400}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
pipe(&(0x7f00000001c0)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
mount$9p_fd(0x0, &(0x7f0000000040)='./file1\x00', &(0x7f00000000c0), 0x6000000, &(0x7f0000000280)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {}, 0x2c, {[{@nodevmap}]}})
openat(r1, &(0x7f0000000180)='./file1\x00', 0x0, 0x0)

21:25:23 executing program 1:
openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x105142, 0x0)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
pipe(&(0x7f00000001c0))
mount$9p_fd(0x2010000000000000, &(0x7f0000000040)='./file1\x00', &(0x7f00000000c0), 0x0, &(0x7f0000000280)={'trans=fd,', {}, 0x2c, {}, 0x2c, {[{@nodevmap}]}})

21:25:23 executing program 4:
r0 = openat$vcs(0xffffffffffffff9c, &(0x7f0000000040), 0x0, 0x0)
r1 = openat$sr(0xffffffffffffff9c, &(0x7f00000035c0), 0x0, 0x0)
openat$sr(0xffffffffffffff9c, &(0x7f00000000c0), 0x0, 0x0)
openat$rtc(0xffffffffffffff9c, &(0x7f0000000200), 0x0, 0x0)
pipe(&(0x7f00000001c0)={<r2=>0xffffffffffffffff})
r3 = open(&(0x7f00000016c0)='./cgroup.net/cgroup.procs\x00', 0x0, 0x0)
pselect6(0x40, &(0x7f0000000180), &(0x7f00000001c0)={0x3fc}, 0x0, 0x0, 0x0)
pipe(&(0x7f00000001c0)={<r4=>0xffffffffffffffff, <r5=>0xffffffffffffffff})
mount$9p_fd(0x0, &(0x7f0000000040)='./file1\x00', &(0x7f00000000c0), 0x0, &(0x7f0000002700)=ANY=[@ANYBLOB='trans=fd,rfdno=', @ANYRESHEX=r4, @ANYBLOB="2c7766649f7b3de8678c4889dae4e4b9e5b3979f67f7a3a153fb39f6d234225f00b25f10a68eaaa1c292360444e07d27bd03a0baa7cd225287b28c080fffb94c2f6a7f041b4a5cfe24bc355f976815729aa4106f223d6fd3f5ca7bb78698a176dad4ed2fb8d62b7146578d2ab199ff5a066682555aea47baf929f336e6b1d6672e37ef966af73e43b09d7293b0dd5325f6ab8f4a7eaad8d75dea2d7931f452e9fd00"/174, @ANYRESHEX=r5, @ANYBLOB='\b\x00\x00\x00\x00\x00\x00\x00p43'])
r6 = openat$null(0xffffffffffffff9c, &(0x7f00000012c0), 0x301000, 0x0)
r7 = perf_event_open(&(0x7f0000001d80)={0x2, 0x80, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
mmap(&(0x7f0000ffc000/0x2000)=nil, 0x2000, 0x0, 0x13, r7, 0x0)
perf_event_open(&(0x7f0000001d80)={0x2, 0x80, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, r7, 0x2)
r8 = perf_event_open(&(0x7f0000001d80)={0x2, 0x80, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
mmap(&(0x7f0000ffc000/0x2000)=nil, 0x2000, 0x0, 0x13, r8, 0x0)
perf_event_open(&(0x7f0000001d80)={0x2, 0x80, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x6, 0x0, 0x0, 0x0, 0x7ff}, 0x0, 0x0, r8, 0x2)
pipe(&(0x7f00000001c0)={<r9=>0xffffffffffffffff, <r10=>0xffffffffffffffff})
mount$9p_fd(0x0, &(0x7f0000000040)='./file1\x00', &(0x7f00000000c0), 0x0, &(0x7f0000000280)={'trans=fd,', {'rfdno', 0x3d, r9}, 0x2c, {'wfdno', 0x3d, r10}, 0x2c, {[{@nodevmap}]}})
r11 = openat$bsg(0xffffffffffffff9c, &(0x7f0000001540), 0x880, 0x0)
[ 2677.484272] FAULT_INJECTION: forcing a failure.
[ 2677.484272] name failslab, interval 1, probability 0, space 0, times 0
[ 2677.485909] CPU: 1 PID: 24627 Comm: syz-executor.5 Not tainted 5.10.172 #1
[ 2677.486506] 9pnet: Insufficient options for proto=fd
[ 2677.486849] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 2677.486854] Call Trace:
[ 2677.486874]  dump_stack+0x107/0x167
[ 2677.486890]  should_fail.cold+0x5/0xa
[ 2677.486915]  ? __kernfs_new_node+0xd4/0x850
[ 2677.491100]  should_failslab+0x5/0x20
[ 2677.491598]  kmem_cache_alloc+0x5b/0x360
[ 2677.492163]  __kernfs_new_node+0xd4/0x850
[ 2677.492709]  ? kernfs_dop_revalidate+0x3a0/0x3a0
[ 2677.493304] 9pnet: Insufficient options for proto=fd
[ 2677.493354]  ? __mutex_unlock_slowpath+0xe1/0x600
[ 2677.495289]  ? wait_for_completion_io+0x270/0x270
[ 2677.496381]  ? kernfs_next_descendant_post+0x1a7/0x2a0
[ 2677.497237]  kernfs_new_node+0x93/0x120
io_submit(0x0, 0x7, &(0x7f0000001640)=[&(0x7f0000000000)={0x0, 0x0, 0x0, 0x1, 0x0, r0, &(0x7f0000000100)="981aa3b28b7151aaac86a9b2078e6b5ce9a5170cf988e025c70a8bf2ec2c7f83482232b263d781614bc3977a02b86936ac6d9f208effd07feec0ba9a8a70d1783caf1b66b8e17d7e26d4c2aaa259717645d89fffbff8d4d1af9cd8b992476c680c9de69684743a8684e62b62", 0x6c, 0x8, 0x0, 0x5}, &(0x7f0000000080)={0x0, 0x0, 0x0, 0x3, 0x7fff, r2, &(0x7f0000000240)="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", 0x1000, 0xf40b, 0x0, 0x2}, &(0x7f0000001280)={0x0, 0x0, 0x0, 0x8, 0x30, 0xffffffffffffffff, &(0x7f0000001700)="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", 0x1000, 0x8, 0x0, 0x2, r4}, &(0x7f0000001380)={0x0, 0x0, 0x0, 0x5, 0x7, r6, &(0x7f0000001300)="cc124d9222aba5d999e8b8df64f9a728ec11a136fdd02d59ebb26a7fed5cce0a4b53ab5a0ffe329216297d875a7bfc15ba8a54a81407214aba83dcbcac35b3001297c90d78d643e6e8fdb4fb71287f960b0bb6ddbbd61d", 0x57, 0x5, 0x0, 0x0, r1}, &(0x7f00000013c0)={0x0, 0x0, 0x0, 0x8, 0x0, r7, &(0x7f0000003600)="486378ff6dd02ce26132756e3fe8defa4ab24263bb6f311de14cacdf2ea17956e144c6f9916370fd754b88077e0bf6be85553ce8f2a7b3df3d3cfda598509a07e82fd8c3f0093967b2660aed7a9842cd0f64408958fa0f85048beba60479aa10a2db6ec18fe5718de7c1fdc646d88904f1cd8656600f77036f393cb8a5168801c247d43cd1589765c1bbed5a51a4b4f9172804d99296b111af2287ddc60936f8f2ba6b574e222b7f1811aa370191257ef3dc08498e6b524261f3300257c7848110f67af793ba2de3ee40b55888a205b7afe746e3f71f5cbab4a635ed7dfa2162380b98c4afbe5769aea099671c94b61d8ee24caf2c1e027ae1c164ac430d9a2cd3ec0f5b48f3e404104f7308539b95dc1bd97c69a1af15e686eb6e5babe973e4018ff0cfb72e3e95bf4e83237b21c8afd89c835bc7f99e8225d392e9845fbd8ed897485ba5f1a48136c1162e24b81f7307618235913e1c2dc31566051926078029b1e21fdb94f27dbaa9f4593d8f561c5d5a9f290a8d83f144ab0ed8754db865c856376920299139c4dbbeb960d78bdfabd30e9af0ca0788a053e59cc9040647e5f33193c63370763d2a6194336518f67c9bb4c069f9350417ca8f4c9a138e6b30ed3c8cf703cea74b192b9f3a37964cc45003858b06516ce8ea3682471dc7a0f24581287b67622ba410ec41d69808daa98ed83b75d88f0e327c3d36b72524621cec28cd91bb19b190907a3a638171494b35c2f01248fba37ea0039db4c7ac2cb8d3fe796c42fcc95221bfad148b2baceccdaa8a3ac601666b86ff18645f4a2bc60b86b96549c45b1c264004eb4b6c0dacee84699f9edb02ad2658b2a2e1f967d78060f005bd217d603983a5edf72051336b159e8e0db2d4ca678823fab7e538612353308d7a8bf83ccdb28ce46c0c3dbb053e2a10d408cf76c280570afade730e8496ffa42a32b9efaa4060340cd116ab257c8a8dd6b8740128d0660edd76bbd2eb5c44a5da861cc51490d62424188039b7449c9b6e073de188d2d0b5c2395893998cd4dd226c1227d5448726fb17dfc8f61f14bf2c78114d2beeb34b0d90fb9415e5265ea058a81fdcb33fc7dda4173e2535b638e3fd7aa5c193d101e8028240c52d55aa402beae434f88b3fba7e5b13feb6f699c9fcb070870f3da835ed63b784925948912faf0604ed1cac1b7dd80e13bbb2d867c4a61d80d3841286773ff9bc4acd5c83a3eb52212eab4e38bd144054e9019f1ba4a869cf952e8e61db21e1243bcdcccca371224e8a0444c266bed4e47e1b2a2bfdb0ccceb637eca1fae4d50360e41bb5553e908cf1a50f296ee6d490b9283dc058f6cf55b059863b8cfbc88e45581f8054721ef5820ef565fad315721566d228cbcbc8d3ed0624dd8ae1d6702164c62da8cb19a04133a840a2e52ca2337d9fe4aa0c660d720e8b2c42fcd3fa89e5472fa2b63cafc0211864040d9649d54f2093a56f72af284e525548d5057bb22cba078b4994d061cd099734c7d2434ab85cfcac14d41ab63fa9075a70a19527315dfcf4a1c15dc9e5d5b10f97f290c00731d7a0612b443aa442d07d9ac536e04d6ef119553697ba370584d0c275bbac5d155827228b55bee372fb6475e73fce55449be4f7c9297ca9bab90dc7ef8bae7593ce330ef72266ef638eed2dc95b9de365ee8719d70dd3a28258aea7d25a6d0083f6b70365e93f9386089145663581bee65f3eb82f52fa9d51a78dc067dd2cd365d1541ed9a6187cc5db9d5bf768a3a2e15d2107987a60d173301b45e6159a3239cefd1f8e9af74c2d87b4b069c2a2d8a8d19e99b7a66da61a5d42ee224f8517bc00a4a4df0c15ceff8f1fd6f8f38d7b29a7b06a8403854d736ad5818c49184e9bc1456dd166a1169043f0c8605f1827dbc80ed4ea19a2dd3bc0e72367c0a9e65ed60d41ccaf1015f265aca4add8b61ea8897fbf3edf830181e6e8bcbffaec18316b6bbe16ca69bc1f08061088a311579d41420b5684e0fe9df15677749e35671e404c557ed96625dfa81dc54c82e4f607c37d3a12e53f120ae167fb41850d754b2995a49aaa91e628f997a8631d27ca8426e10a2494948ecb441dd2994f3720d98a07a887c58188fe2dc96ee4a2aaf9a00843776c64ab5d3f2c9972407584cecede0eeed64fb24c736d14f04947fab6e88e0d8dac7f4007759c6d894122ebdf9800c76dee6700f3e2a7580a7d67a8a4971073c299611b0b34f96335490d5a5fa4f472783e710aa92afd4cacf1aeaede7c438d5e0d1299495733281d6b94ddb70c86d575e15c272e0a7ebdba1ef1a6f116008c49f08cd12979f67243ee8327d7b24df9f26f662dd557c9bbed377227a720bdb4ff8f7797735453d0d854d25b6d534a5617260dc48a06f762f80c9bd0936313e10db248be3bd6ef3f0f550c8916cea725a97e4d8981e3877b2c3221d27c67647fcc3b55e1976af8bc0d63107a3d23ab486d5fe377078930b9051167a57bbcbe81d1d1046f3b420cf5b8f992183dc8d3163b99d2540eec2c5a63cddd59e9bd55f8e5fbaaf234a42215e74ab7477dad9f917276eb13c71006e1d3bfc3e1d13ed7b9f7bfe905529a6f67c0e8aa3b0e75eb2f4c68b2dde1e6d1555a9eedb03cbcc6fc0bf39e427dda464332c18ce1e7ac79631bf9045fc7d00ce492df0d6c8589ab1f8c1b4f03428b4d6ddf0aa30862f1baa56c56065bd1b899cd6b367bfe507e62b87df6f4b4a1402d4b48364fc0c368652a8666308e28b6451c30386cfa3736621e4030c9ebff4aed1bcab8b6822e697154aebdc35db1a18294ede80c2b32a04e676388014f0b68cb433b271e3a04e8d2239696a51100a0700944b07567177f65b79ff140e114f9e0a72ea347cfc4bc081400aa38294ee360d1413ade882001450d2920d9e55ef053289be8db53a51352fa928f8d901a2e3cca78057281cba48faab6060b7ade0b2dd87b23f6e3bb5c467f40bc4172047f64dd4b6393a4db16b8639cb114101d0e7f4395d022bb7f1acbb4d35ba5ebb5ebef368d79bc42c976ba070f9b390bd4643e9626b5cbed058650180ef41c43e5e9e458eb47b247a073647c3ecd72128fcb1bcf177891dba345f1daf7ee009edf9e8cd93df6e42d3c07f5c33799ff7ae65bdf6288c5152407bd0bd7009d57f7f57e07a739bb5ea7992ff6bb453b8fecd7a813c582700fe3dd7f9940d6cab6d7a7d523b97aad4fc65ac19dd1b20e2e18655470495d170ce3ba61d57cdeacb6cae70c5bd8b4ca73da33d79d16c6496973003e2370264ec4f457c726ee8b77aa5ac8e66b805abcbb57ba09921e36e77025fb13ea492e887fafa477ecfc09997e13030ec533eae3c872a07ade1751442b7cb410741cd7de7cd16cae2df4fc6f0522fc4a68e210732a0c78d513b0af7d4dda8fd700d78144c139f069072d7efbae011bdb451155e9969c2cdd3f48d8f7fa6edd5451a5409582c0bd8ca3b1e5f1ab53f86120766d0428cd986941fcce95307e7925e2bf9bcad8ccdab56a11bd3cf8c74bf240714195329baeb2dd98f34fa0998342ece7b2ddc4c19854d462124c9760a470767efcfe6e60613f381637cb7e5718d4206cefca6e122ebfeb2337e29c56cfaa71a181ca1243191c8015aca797b615d52725916a4ca244a52c4bd489a61b1482d31058327af694a52f89778dc7b5c39429a7a879f7bf3f8d2c28b5dbf971c56b1c2ffaa3f0972e0a2e8bee497b920de4b6f3d731b28d2ea88edec1896e7a6015e1b657b5679cd2b1bc5714d5546413507203cbecc7cf1fcacfa5403d0e6808cca179dcf3c58cdd7f13be338a758c0c49b3c1344ccd52f8725c80041969feed42329c08d4395dd776ef3f62f901c86178a4b54690bfa8e8631d14587380e669685c6f39570da14294bc79acf748cc2b898866260d833821fecaeb8d0f928583689bd72e64246435fcd11330845e262cc0408df78eda11a5521a2f0538695ef6a5ad5e63d4f8aa19248323bc375d82b2ae0cf96696ef190125f480b3049f8d341d7d61e1f012e6d13b60718763767ec328485680681557762ee605532d656e8ae64da455f83f5280dc5edf36e3f35ec535b57a460686aaf804870c38a414639e68bd6bbd4a0ce665cbbf55272afd6eb9838508051baabe64f8a048cfbe301d4a7fd1cdc0864381d9b2e9058db062097bf316d0015ba36a03ca7c1c57b19d789bd27c9ea4fdbe6dcdd689adc430961e0e625e097a84a5a60c056aecae681cfd12ca5bb528709c377dfb13cd92a54d10be693fddb3fa91fd0a49c23a755af864a7719bdd4fbda9af156147a3e3877e70dad40ddb6cb025e2f1d8adb704dbd857884c36ad92205b727be64fe8c536b6e384d86449283ba0d2608435405fb4ffa875f21f4e8f99329dcbdebee7cf539e22d021042f3ea5b1aa3aa59e72bd1ec41aee3aa74554efc87797ae441dd0d2857e42ab533d6fc30a6e126cff96c2d33ac20937d63745594aa0c7791a34b4d05b2a38c68e4ed60aed518b911794dfce4512f18c94de3a7f113f63938118d69674f3b174267947b746830f06da9ee08622277598221073f2f3d27432566a66d344aa5d52c654cf578bec165bb54b3733abf634f018b6bfe1207758c85c7ec203cc304e85cd27a1ef40bb024ca1530aa10d56dc5fe21bd179866f7c1d08f6c5eae705ad5b33d02a1c0fa22272e14bbc4d856bb20c7115b0a60efc58e01810b106a43ad02d017d3e51c844d598fba75c461c1f4be0479da135dce2671dfee138a7812b32fd58455b12d2539c96c94bf762d8218b6bf83394630ae6a70bb9cef71c45f1db2ec89fd32e016dc9b2de4a553a307c23f009b611676e2492958fbcce1f56ec7116303dce34724bc5bbf9cd38535d8f47b5286f3ee8f0be8dec039ef8554c093a3ae3144650d7886d4998d5463b04ffdafe187c71870ac6606de51182d4e5e85c2a126917fa9debd6fc3f8e0f7b36e3131abd839edc3ef0b8d5b1dd7534a26479b9f81dd16aa08570f8112b3df32017af1f538dade571196eec512e046daa8949f230e47775e38a39f83a60a8626383d72af9d7cde889dc79ac20a57c526b94cd1116ec9a554d1a01c2cdc779ce04b7042be22aeeda89453fe9658d4daa56da898abefa983232e62c2958733c300b289dcddba80205c2e8b4e339add375d2b2f6994765e3b945fbbf55c3beaacf73cd3d12dc5abf2fa17c53189ba3800b1db454883931f1b239cfa8c7d6ee70cdc8cbdf9065bfd700d13d2983a3c920d7762db04ce56715f0932b642b5fc1bdbd703b44e27f37040ec76e36b26769a7cbba46aa2e3c873f7cf51c326004a7e5bc97ef1f336257c2619a6465f030f35f6aa56fa9a168938e8c2dc981d06990abbb4694f10d98339ce3a90318f110e7c1b2e7d28bd6989b45f469801f488b32b5279420226c03a4d76a4758bc8f63a133ec0dc0d59d7ec92f58d59f382ff757d927489f84e6c7d6cebacda5e35e418fca46fe523dd15384192e968c91e13d702f5b00333a6ca690741ea1ae04341f1d5d2336b984d09d05c412a8e45a952ff6fa59e185bf67aef70cf1b69edcd76674c44f0a43fa3e8f1aac877377154fc0f7e99c2b68959b26da66cd94a1eca6a90e95f1f9fac838d6c1d2a9536ed3f3cf9a2cf8f80199a97f79cb20d63a371dfa56dd02ae4b6a0c815366067b912015fcbda3d847de37b4e44defaea188b2c11cd2c73ba908055070308c34ad60205fbd6946bdfaec25d211a77b7e4bbab6856f61e6f8c581ced422de84736b174db1c75723c6b1c1d1a3520a22", 0x1000, 0x9, 0x0, 0x3, r3}, &(0x7f0000001500)={0x0, 0x0, 0x0, 0x7, 0xffff, r8, &(0x7f0000001400)="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", 0xfa, 0x0, 0x0, 0x2, r9}, &(0x7f0000001600)={0x0, 0x0, 0x0, 0x2, 0x9f, r11, &(0x7f0000001580)="266ce40541e30836a33b73b0ccc374cdcb2d4af8ee22b9d734a7d421653d33175cb9d1e939cbf761927af133699e1593ebc6e0363d9d047d38173d45f9894ee87b69c6571890ef03acf56ea1e2fdcef25b38e1dd5bfdecee5db7aff8be", 0x5d, 0x17044785, 0x0, 0x1, r1}])

21:25:23 executing program 6:
r0 = syz_mount_image$vfat(&(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x0, 0x2, &(0x7f0000000180)=[{&(0x7f0000000140)="eb3c906d6b66732e66617400020801000470008400f801", 0x17}, {0x0, 0x0, 0x1000a00}], 0x0, &(0x7f0000000240)=ANY=[])
chdir(&(0x7f0000000040)='./file0\x00')
openat2(r0, &(0x7f0000000100)='./file0\x00', &(0x7f00000001c0)={0x40000, 0x81}, 0x18)
mount$cgroup(0x0, 0x0, &(0x7f0000000400), 0x0, 0x0)
r1 = syz_io_uring_setup(0x22, &(0x7f0000000680)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000180)=<r2=>0x0, &(0x7f0000002a40)=<r3=>0x0)
io_uring_register$IORING_REGISTER_PERSONALITY(r1, 0x9, 0x0, 0x0)
socket$nl_netfilter(0x10, 0x3, 0xc)
syz_io_uring_submit(r2, r3, 0x0, 0x0)
r4 = syz_io_uring_setup(0x22, 0x0, &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000180), &(0x7f0000002a40))
r5 = io_uring_register$IORING_REGISTER_PERSONALITY(r4, 0x9, 0x0, 0x0)
syz_io_uring_submit(r2, 0x0, &(0x7f0000000440)=@IORING_OP_FSYNC={0x3, 0x2, 0x0, @fd_index=0x9, 0x0, 0x0, 0x0, 0x0, 0x1, {0x0, r5}}, 0x2)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r6 = openat(0xffffffffffffff9c, &(0x7f00000002c0)='./file1\x00', 0x105142, 0x0)
r7 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0)
sendfile(r6, r7, 0x0, 0x100000001)
newfstatat(0xffffffffffffff9c, &(0x7f0000000340)='./file1\x00', &(0x7f0000000380), 0x400)

21:25:23 executing program 2:
r0 = syz_mount_image$vfat(&(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x0, 0x2, &(0x7f0000000000)=[{&(0x7f0000000140)="eb3c906d6b66732e66617400020801000470008400f801", 0x17, 0x4}, {0x0}], 0x22000, &(0x7f0000000240)=ANY=[])
chdir(&(0x7f0000000040)='./file0\x00')
r1 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x105142, 0x0)
r2 = epoll_create(0x6)
pipe(&(0x7f00000001c0)={<r3=>0xffffffffffffffff, <r4=>0xffffffffffffffff})
mount$9p_fd(0x0, &(0x7f0000000040)='./file1\x00', &(0x7f00000000c0), 0x0, &(0x7f0000000940)=ANY=[@ANYBLOB="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", @ANYRESHEX=r3, @ANYBLOB=',wfdno=', @ANYRESHEX=r4, @ANYBLOB=',nodevmap,\x00'])
r5 = syz_open_procfs(0xffffffffffffffff, &(0x7f0000000180)='net/rt_acct\x00')
[ 2677.497824]  __kernfs_create_file+0x51/0x350
r6 = perf_event_open(&(0x7f0000001d80)={0x2, 0x80, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
mmap(&(0x7f0000ffc000/0x2000)=nil, 0x2000, 0x0, 0x13, r6, 0x0)
perf_event_open(&(0x7f0000001d80)={0x2, 0x80, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, r6, 0x2)
readv(r6, &(0x7f0000000600)=[{&(0x7f0000000300)=""/189, 0xbd}, {&(0x7f00000003c0)=""/157, 0x9d}, {&(0x7f0000000240)=""/2, 0x2}, {&(0x7f0000000480)=""/93, 0x5d}, {&(0x7f0000000500)=""/227, 0xe3}], 0x5)
epoll_ctl$EPOLL_CTL_ADD(r4, 0x1, r5, &(0x7f0000000200)={0x10000000})
ioctl$FS_IOC_RESVSP(r2, 0x40305828, &(0x7f00000001c0)={0x0, 0x0, 0x2, 0x4})
ioctl$FS_IOC_GETFSMAP(r0, 0xc0c0583b, &(0x7f0000000680)={0x0, 0x0, 0x7, 0x0, '\x00', [{0xcb12, 0x20, 0x3, 0x9, 0x3, 0x100000001}, {0x8, 0x0, 0x0, 0x100000000, 0x2, 0x5}], ['\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00']})
write$cgroup_freezer_state(r1, &(0x7f0000000900)='FROZEN\x00', 0x7)

[ 2677.498504]  sysfs_add_file_mode_ns+0x221/0x560
[ 2677.499216]  internal_create_group+0x324/0xb30
[ 2677.499810]  ? sysfs_remove_group+0x170/0x170
[ 2677.500412]  ? kernfs_name_hash+0xe7/0x110
[ 2677.500956]  ? kernfs_find_ns+0x256/0x380
[ 2677.501502]  sysfs_slab_add+0x188/0x200
[ 2677.501992]  __kmem_cache_create+0x3db/0x520
[ 2677.502569]  kmem_cache_create_usercopy+0x1db/0x2f0
[ 2677.503197]  p9_client_create+0xc2b/0x1090
[ 2677.503760]  ? p9_client_flush+0x430/0x430
[ 2677.504320]  ? lockdep_init_map_type+0x2c7/0x780
[ 2677.504920]  ? rcu_read_lock_sched_held+0x3e/0x80
[ 2677.505544]  ? __raw_spin_lock_init+0x36/0x110
[ 2677.506116]  v9fs_session_init+0x1dd/0x16a0
[ 2677.506671]  ? kmem_cache_alloc_trace+0x151/0x360
[ 2677.507284]  ? v9fs_show_options+0x690/0x690
[ 2677.507885]  ? kasan_unpoison_shadow+0x33/0x50
[ 2677.508482]  ? __kasan_kmalloc.constprop.0+0xc9/0xd0
[ 2677.509128]  v9fs_mount+0x79/0x8f0
[ 2677.509608]  ? v9fs_write_inode+0x60/0x60
[ 2677.510188]  legacy_get_tree+0x105/0x220
[ 2677.510770]  vfs_get_tree+0x8e/0x300
[ 2677.511281]  path_mount+0x13be/0x20b0
[ 2677.511820]  ? strncpy_from_user+0x9e/0x470
[ 2677.512441]  ? finish_automount+0xa40/0xa40
[ 2677.513036]  ? getname_flags.part.0+0x1dd/0x4f0
[ 2677.513691]  ? _copy_from_user+0xfb/0x1b0
[ 2677.514276]  __x64_sys_mount+0x282/0x300
[ 2677.514846]  ? copy_mnt_ns+0xa00/0xa00
[ 2677.515387]  ? rcu_read_lock_sched_held+0x3e/0x80
[ 2677.516085]  do_syscall_64+0x33/0x40
[ 2677.516605]  entry_SYSCALL_64_after_hwframe+0x61/0xc6
[ 2677.517320] RIP: 0033:0x7f38308e8b19
[ 2677.517808] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 2677.520480] RSP: 002b:00007f382de5e188 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5
[ 2677.521551] RAX: ffffffffffffffda RBX: 00007f38309fbf60 RCX: 00007f38308e8b19
[ 2677.522674] RDX: 00000000200000c0 RSI: 0000000020000040 RDI: 0000000000000000
[ 2677.523801] RBP: 00007f382de5e1d0 R08: 0000000020000280 R09: 0000000000000000
[ 2677.524944] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[ 2677.526088] R13: 00007ffca2bf07df R14: 00007f382de5e300 R15: 0000000000022000
21:25:24 executing program 3:
openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x105142, 0x0)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x400}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
pipe(&(0x7f00000001c0)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
mount$9p_fd(0x0, &(0x7f0000000040)='./file1\x00', &(0x7f00000000c0), 0x7000000, &(0x7f0000000280)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {}, 0x2c, {[{@nodevmap}]}})
openat(r1, &(0x7f0000000180)='./file1\x00', 0x0, 0x0)

[ 2677.568829] 9pnet: Insufficient options for proto=fd
[ 2677.575276] 9pnet: Insufficient options for proto=fd
21:25:24 executing program 3:
openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x105142, 0x0)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x400}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
pipe(&(0x7f00000001c0)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
mount$9p_fd(0x0, &(0x7f0000000040)='./file1\x00', &(0x7f00000000c0), 0x8000000, &(0x7f0000000280)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {}, 0x2c, {[{@nodevmap}]}})
openat(r1, &(0x7f0000000180)='./file1\x00', 0x0, 0x0)

[ 2677.687244] 9pnet: Insufficient options for proto=fd
[ 2677.697349] 9pnet: Insufficient options for proto=fd
21:25:24 executing program 1:
openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x105142, 0x0)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
pipe(&(0x7f00000001c0))
mount$9p_fd(0x8cffffff00000000, &(0x7f0000000040)='./file1\x00', &(0x7f00000000c0), 0x0, &(0x7f0000000280)={'trans=fd,', {}, 0x2c, {}, 0x2c, {[{@nodevmap}]}})

21:25:24 executing program 2:
syz_mount_image$vfat(&(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x0, 0x2, &(0x7f0000000180)=[{&(0x7f0000000140)="eb3c906d6b66732e666174000201", 0xe}, {0x0, 0x0, 0x1000a00}], 0x0, &(0x7f0000000440)=ANY=[])
chdir(&(0x7f0000000040)='./file0\x00')
r0 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x105142, 0x0)
pipe(&(0x7f00000001c0)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
mount$9p_fd(0x0, &(0x7f0000000040)='./file1\x00', &(0x7f00000000c0), 0x0, &(0x7f0000000380)=ANY=[@ANYBLOB="7472616e73646e6f3d0000000000003491f327bf73eb9d1db474203e37f2b46c203b7a92f74a08efec8d90c64f8a41433ce846ac42b857e6baec1f01096fb0286a1c92b6", @ANYRESHEX=r1, @ANYBLOB=',wfdno=', @ANYRESHEX=r2, @ANYBLOB=',nodevmap,\x00'])
unlinkat(r2, &(0x7f0000000340)='./file0\x00', 0x200)
ioctl$FS_IOC_RESVSP(r0, 0x40305828, &(0x7f0000000040)={0x0, 0x0, 0x0, 0x4000006})
ioctl$FS_IOC_GET_ENCRYPTION_PWSALT(r2, 0x40106614, &(0x7f0000000400))
syz_mount_image$vfat(&(0x7f0000000000), &(0x7f00000001c0)='./file1\x00', 0x1, 0x2, &(0x7f0000000300)=[{&(0x7f0000000200)="11f2c527b99381b6fbf201208ee10b651a001eaf17b675607612af855a64bf09cc9c1e6c94feb200a95099e575e2ae84a1685c8f54f43eb9614212e63896fe21cfe33164", 0x44, 0x9}, {&(0x7f0000000280)="9518580772087f2899168c3169371284982869a0009579b31ceafa2ea112c30ee9b643aa788271f1591926cc2f7bf2bd7cefb097253016638e2764fc5a9a013b69fc061f22cb6a48c17d0759981640ba134e74e1f06f97f49e4abc2f8aac5a494842ca05047acfa0d8df87397745bfcbd14e56eb04a4414d1c0fadd2fd", 0x7d, 0x400}], 0xaa376dd191acc6b9, &(0x7f0000000540)=ANY=[@ANYBLOB="73686f72746e616d653d77696e6e742c757466383d312c73686f72746e616d653d6d697865642c726f6469722c6e6e6f6e756d7461696c3d312c73686f72746e616d653d77696e6e742c757466383d312c646f733178666c6f7070792c636865636b3d6e6f726d616c2c646d61736b3d30313737373737373737373737373737373737373535352c657569643dd6df45c67faa9fa770c1d6cdad86a1083fd6bc5842", @ANYRESDEC, @ANYBLOB="2c0e5d190d12cddad6127f08633fdd7b939dcba6abe37aa06aa0e8279887f46b5f0c98ad20e73fff578099763f000000000000000155f6cd75d5"])

21:25:24 executing program 3:
openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x105142, 0x0)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x400}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
pipe(&(0x7f00000001c0)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
mount$9p_fd(0x0, &(0x7f0000000040)='./file1\x00', &(0x7f00000000c0), 0x9000000, &(0x7f0000000280)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {}, 0x2c, {[{@nodevmap}]}})
openat(r1, &(0x7f0000000180)='./file1\x00', 0x0, 0x0)

[ 2677.757268] kmem_cache_create(9p-fcall-cache) failed with error -12
[ 2677.758055] CPU: 1 PID: 24627 Comm: syz-executor.5 Not tainted 5.10.172 #1
[ 2677.758805] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 2677.759698] Call Trace:
[ 2677.760021]  dump_stack+0x107/0x167
[ 2677.760425]  kmem_cache_create_usercopy.cold+0x17/0x65
[ 2677.761006]  p9_client_create+0xc2b/0x1090
[ 2677.761469]  ? p9_client_flush+0x430/0x430
[ 2677.761938]  ? lockdep_init_map_type+0x2c7/0x780
[ 2677.762445]  ? rcu_read_lock_sched_held+0x3e/0x80
[ 2677.762968]  ? __raw_spin_lock_init+0x36/0x110
[ 2677.763474]  v9fs_session_init+0x1dd/0x16a0
[ 2677.763981]  ? kmem_cache_alloc_trace+0x151/0x360
[ 2677.764504]  ? v9fs_show_options+0x690/0x690
[ 2677.764998]  ? kasan_unpoison_shadow+0x33/0x50
[ 2677.765498]  ? __kasan_kmalloc.constprop.0+0xc9/0xd0
[ 2677.766060]  v9fs_mount+0x79/0x8f0
[ 2677.766464]  ? v9fs_write_inode+0x60/0x60
[ 2677.766920]  legacy_get_tree+0x105/0x220
[ 2677.767384]  vfs_get_tree+0x8e/0x300
[ 2677.767794]  path_mount+0x13be/0x20b0
[ 2677.768239]  ? strncpy_from_user+0x9e/0x470
[ 2677.768728]  ? finish_automount+0xa40/0xa40
[ 2677.769197]  ? getname_flags.part.0+0x1dd/0x4f0
[ 2677.769726]  ? _copy_from_user+0xfb/0x1b0
[ 2677.770205]  __x64_sys_mount+0x282/0x300
[ 2677.770659]  ? copy_mnt_ns+0xa00/0xa00
[ 2677.771113]  ? rcu_read_lock_sched_held+0x3e/0x80
[ 2677.771655]  do_syscall_64+0x33/0x40
[ 2677.772089]  entry_SYSCALL_64_after_hwframe+0x61/0xc6
[ 2677.772660] RIP: 0033:0x7f38308e8b19
[ 2677.773084] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 2677.775132] RSP: 002b:00007f382de5e188 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5
[ 2677.776025] RAX: ffffffffffffffda RBX: 00007f38309fbf60 RCX: 00007f38308e8b19
[ 2677.776815] RDX: 00000000200000c0 RSI: 0000000020000040 RDI: 0000000000000000
[ 2677.777604] RBP: 00007f382de5e1d0 R08: 0000000020000280 R09: 0000000000000000
[ 2677.778400] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[ 2677.779195] R13: 00007ffca2bf07df R14: 00007f382de5e300 R15: 0000000000022000
[ 2677.805388] 9pnet: Insufficient options for proto=fd
[ 2677.817237] 9pnet: Insufficient options for proto=fd
21:25:24 executing program 6:
r0 = syz_mount_image$vfat(&(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x0, 0x2, &(0x7f0000000180)=[{&(0x7f0000000140)="eb3c906d6b66732e66617400020801000470008400f801", 0x17}, {0x0, 0x0, 0x1000a00}], 0x0, &(0x7f0000000240)=ANY=[])
chdir(&(0x7f0000000040)='./file0\x00')
openat2(r0, &(0x7f0000000100)='./file0\x00', &(0x7f00000001c0)={0x40000, 0x81}, 0x18)
mount$cgroup(0x0, 0x0, &(0x7f0000000400), 0x0, 0x0)
r1 = syz_io_uring_setup(0x22, &(0x7f0000000680)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000180)=<r2=>0x0, &(0x7f0000002a40)=<r3=>0x0)
io_uring_register$IORING_REGISTER_PERSONALITY(r1, 0x9, 0x0, 0x0)
socket$nl_netfilter(0x10, 0x3, 0xc)
syz_io_uring_submit(r2, r3, 0x0, 0x0)
r4 = syz_io_uring_setup(0x22, &(0x7f0000000680)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x4000)=nil, 0x0, &(0x7f0000002a40))
r5 = io_uring_register$IORING_REGISTER_PERSONALITY(r4, 0x9, 0x0, 0x0)
syz_io_uring_submit(r2, 0x0, &(0x7f0000000440)=@IORING_OP_FSYNC={0x3, 0x2, 0x0, @fd_index=0x9, 0x0, 0x0, 0x0, 0x0, 0x1, {0x0, r5}}, 0x2)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r6 = openat(0xffffffffffffff9c, &(0x7f00000002c0)='./file1\x00', 0x105142, 0x0)
r7 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0)
sendfile(r6, r7, 0x0, 0x100000001)
newfstatat(0xffffffffffffff9c, &(0x7f0000000340)='./file1\x00', &(0x7f0000000380), 0x400)

[ 2677.854890] FAT-fs (loop2): bogus number of reserved sectors
[ 2677.855774] FAT-fs (loop2): Can't find a valid FAT filesystem
21:25:24 executing program 3:
openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x105142, 0x0)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x400}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
pipe(&(0x7f00000001c0)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
mount$9p_fd(0x0, &(0x7f0000000040)='./file1\x00', &(0x7f00000000c0), 0xa000000, &(0x7f0000000280)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {}, 0x2c, {[{@nodevmap}]}})
openat(r1, &(0x7f0000000180)='./file1\x00', 0x0, 0x0)

[ 2677.901729] 9pnet: Insufficient options for proto=fd
[ 2677.915591] 9pnet: Insufficient options for proto=fd
[ 2677.929278] FAT-fs (loop2): bogus number of reserved sectors
[ 2677.929986] FAT-fs (loop2): Can't find a valid FAT filesystem
21:25:44 executing program 7:
r0 = perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
io_setup(0x7f, &(0x7f00000002c0)=<r1=>0x0)
io_pgetevents(r1, 0x1, 0x1, &(0x7f0000000000)=[{}], 0x0, 0x0)
io_submit(0x0, 0x1, &(0x7f0000000340)=[&(0x7f0000000300)={0x0, 0x0, 0x0, 0x5, 0x0, r0, 0x0}])

21:25:44 executing program 1:
openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x105142, 0x0)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
pipe(&(0x7f00000001c0))
mount$9p_fd(0xf6ffffff00000000, &(0x7f0000000040)='./file1\x00', &(0x7f00000000c0), 0x0, &(0x7f0000000280)={'trans=fd,', {}, 0x2c, {}, 0x2c, {[{@nodevmap}]}})

21:25:44 executing program 4:
openat$vcs(0xffffffffffffff9c, &(0x7f0000000040), 0x0, 0x0)
r0 = openat$sr(0xffffffffffffff9c, &(0x7f00000035c0), 0x0, 0x0)
openat$sr(0xffffffffffffff9c, &(0x7f00000000c0), 0x10d002, 0x0)
openat$rtc(0xffffffffffffff9c, &(0x7f0000000200), 0x0, 0x0)
pipe(&(0x7f0000000000))
open(&(0x7f00000016c0)='./cgroup.net/cgroup.procs\x00', 0x0, 0x0)
pselect6(0x40, &(0x7f0000000180), &(0x7f00000001c0)={0x3fc}, 0x0, 0x0, 0x0)
r1 = openat(0xffffffffffffffff, &(0x7f0000000700)='./file0\x00', 0x24000, 0x84)
r2 = syz_genetlink_get_family_id$mptcp(&(0x7f0000000040), r1)
sendmsg$MPTCP_PM_CMD_GET_ADDR(0xffffffffffffffff, &(0x7f00000001c0)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x80}, 0xc, &(0x7f00000000c0)={&(0x7f00000003c0)=ANY=[@ANYBLOB='x\x00\x00\x00', @ANYRES16=r2, @ANYBLOB="00042dbd7000ffdbdf2503000000240001800500020004000000080006000d000000080006000f0000000f060005004e22000008000300020000000800020007000000040001802c0001800800060000000000060005004e210000060005004e210000060005004e21000008000600020000552a98a2a7e8c3ae20b09133fd4a5c62142fb0039da64ab46acfdda0b368396e056ad1084d85725fd79877a82bc2e3c75cc9695e66a4dfa759c0d45041c022c0996b7ae1768dbaa49351541075b19499304aa6e7f43f7b5d08ff96ec"], 0x78}, 0x1, 0x0, 0x0, 0x80}, 0x800)
sendmsg$MPTCP_PM_CMD_FLUSH_ADDRS(r0, &(0x7f0000000140)={&(0x7f0000000080)={0x10, 0x0, 0x0, 0x8004}, 0xc, &(0x7f0000000100)={&(0x7f0000000240)={0x84, r2, 0x200, 0x70bd2d, 0x25dfdbfc, {}, [@MPTCP_PM_ATTR_ADDR={0x1c, 0x1, 0x0, 0x1, [@MPTCP_PM_ADDR_ATTR_ID={0x5, 0x2, 0x1}, @MPTCP_PM_ADDR_ATTR_IF_IDX={0x8}, @MPTCP_PM_ADDR_ATTR_FLAGS={0x8, 0x6, 0x1}]}, @MPTCP_PM_ATTR_SUBFLOWS={0x8, 0x3, 0x6}, @MPTCP_PM_ATTR_ADDR={0x48, 0x1, 0x0, 0x1, [@MPTCP_PM_ADDR_ATTR_IF_IDX={0x8}, @MPTCP_PM_ADDR_ATTR_ID={0x5, 0x2, 0x1}, @MPTCP_PM_ADDR_ATTR_PORT={0x6, 0x5, 0x4e22}, @MPTCP_PM_ADDR_ATTR_FAMILY={0x6, 0x1, 0x2}, @MPTCP_PM_ADDR_ATTR_ADDR6={0x14, 0x4, @ipv4={'\x00', '\xff\xff', @initdev={0xac, 0x1e, 0x1, 0x0}}}, @MPTCP_PM_ADDR_ATTR_ID={0x5, 0x2, 0x2}, @MPTCP_PM_ADDR_ATTR_ADDR4={0x8, 0x3, @empty}]}, @MPTCP_PM_ATTR_ADDR={0x4}]}, 0x84}, 0x1, 0x0, 0x0, 0x8001}, 0x20000000)

21:25:44 executing program 3:
openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x105142, 0x0)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x400}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
pipe(&(0x7f00000001c0)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
mount$9p_fd(0x0, &(0x7f0000000040)='./file1\x00', &(0x7f00000000c0), 0xb000000, &(0x7f0000000280)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {}, 0x2c, {[{@nodevmap}]}})
openat(r1, &(0x7f0000000180)='./file1\x00', 0x0, 0x0)

21:25:44 executing program 2:
syz_mount_image$vfat(&(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x0, 0x2, &(0x7f0000000180)=[{&(0x7f0000000140)="eb3c906d6b66732e66617400020801000470008400f801", 0x17}, {0x0, 0x0, 0x1000a00}], 0x0, &(0x7f0000000240)=ANY=[])
chdir(&(0x7f0000000040)='./file0\x00')
r0 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x105142, 0x0)
mknod$loop(&(0x7f0000000000)='./file0\x00', 0x6000, 0x0)
ioctl$FS_IOC_RESVSP(r0, 0x40305828, &(0x7f0000000040)={0x0, 0x0, 0x0, 0x4000006})

21:25:44 executing program 0:
syz_mount_image$vfat(&(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x0, 0x2, &(0x7f0000000180)=[{&(0x7f0000000140)="eb3c906d6b66732e66617400020801000470008400f801", 0x17}, {0x0, 0x0, 0x1000a00}], 0x0, &(0x7f0000000240)=ANY=[])
chdir(&(0x7f0000000040)='./file0\x00')
mount$cgroup(0x0, 0x0, &(0x7f0000000400), 0x0, 0x0)
r0 = syz_io_uring_setup(0x22, &(0x7f0000000680)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000180)=<r1=>0x0, &(0x7f0000002a40)=<r2=>0x0)
r3 = io_uring_register$IORING_REGISTER_PERSONALITY(r0, 0x9, 0x0, 0x0)
r4 = socket$nl_netfilter(0x10, 0x3, 0xc)
syz_io_uring_submit(r1, r2, &(0x7f0000000400)=@IORING_OP_WRITEV={0x2, 0x0, 0x0, @fd=r4, 0x0, 0x0, 0x0, 0x0, 0x0, {0x0, r3}}, 0x0)
r5 = syz_io_uring_setup(0x22, &(0x7f0000000680)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000180), &(0x7f0000002a40))
r6 = io_uring_register$IORING_REGISTER_PERSONALITY(r5, 0x9, 0x0, 0x0)
syz_io_uring_submit(r1, 0x0, &(0x7f0000000440)=@IORING_OP_FSYNC={0x3, 0x0, 0x0, @fd_index=0x9, 0x0, 0x0, 0x0, 0x0, 0x1, {0x0, r6}}, 0x2)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r7 = openat(0xffffffffffffff9c, &(0x7f00000002c0)='./file1\x00', 0x105142, 0x0)
r8 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0)
mount(&(0x7f0000000200)=ANY=[@ANYBLOB="2f6f651317868af191bdb2"], &(0x7f0000000240)='./file0\x00', &(0x7f0000000280)='nfsd\x00', 0x800000, &(0x7f0000000300)='cgroup\x00')
sendfile(r7, r8, 0x0, 0x100000001)
newfstatat(0xffffffffffffff9c, &(0x7f0000000340)='./file1\x00', &(0x7f0000000380), 0x400)

21:25:44 executing program 6:
r0 = syz_mount_image$vfat(&(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x0, 0x2, &(0x7f0000000180)=[{&(0x7f0000000140)="eb3c906d6b66732e66617400020801000470008400f801", 0x17}, {0x0, 0x0, 0x1000a00}], 0x0, &(0x7f0000000240)=ANY=[])
chdir(&(0x7f0000000040)='./file0\x00')
openat2(r0, &(0x7f0000000100)='./file0\x00', &(0x7f00000001c0)={0x40000, 0x81}, 0x18)
mount$cgroup(0x0, 0x0, &(0x7f0000000400), 0x0, 0x0)
r1 = syz_io_uring_setup(0x22, &(0x7f0000000680)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000180)=<r2=>0x0, &(0x7f0000002a40)=<r3=>0x0)
io_uring_register$IORING_REGISTER_PERSONALITY(r1, 0x9, 0x0, 0x0)
socket$nl_netfilter(0x10, 0x3, 0xc)
syz_io_uring_submit(r2, r3, 0x0, 0x0)
r4 = syz_io_uring_setup(0x22, &(0x7f0000000680)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x4000)=nil, 0x0, &(0x7f0000002a40))
r5 = io_uring_register$IORING_REGISTER_PERSONALITY(r4, 0x9, 0x0, 0x0)
syz_io_uring_submit(r2, 0x0, &(0x7f0000000440)=@IORING_OP_FSYNC={0x3, 0x2, 0x0, @fd_index=0x9, 0x0, 0x0, 0x0, 0x0, 0x1, {0x0, r5}}, 0x2)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r6 = openat(0xffffffffffffff9c, &(0x7f00000002c0)='./file1\x00', 0x105142, 0x0)
r7 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0)
sendfile(r6, r7, 0x0, 0x100000001)
newfstatat(0xffffffffffffff9c, &(0x7f0000000340)='./file1\x00', &(0x7f0000000380), 0x400)

21:25:44 executing program 5:
openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x105142, 0x0)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
pipe(&(0x7f00000001c0)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
mount$9p_fd(0x0, &(0x7f0000000040)='./file1\x00', &(0x7f00000000c0), 0x0, &(0x7f0000000280)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}}) (fail_nth: 68)
openat(0xffffffffffffffff, 0x0, 0x0, 0x0)

[ 2698.248615] FAULT_INJECTION: forcing a failure.
[ 2698.248615] name failslab, interval 1, probability 0, space 0, times 0
[ 2698.250377] CPU: 0 PID: 24887 Comm: syz-executor.5 Not tainted 5.10.172 #1
[ 2698.251315] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 2698.252437] Call Trace:
[ 2698.252800]  dump_stack+0x107/0x167
[ 2698.253273]  should_fail.cold+0x5/0xa
[ 2698.253777]  ? create_object.isra.0+0x3a/0xa20
[ 2698.254367]  should_failslab+0x5/0x20
[ 2698.254859]  kmem_cache_alloc+0x5b/0x360
[ 2698.255400]  create_object.isra.0+0x3a/0xa20
[ 2698.256024]  ? __kasan_kmalloc.constprop.0+0xc9/0xd0
[ 2698.256755]  kmem_cache_alloc+0x159/0x360
[ 2698.257302]  ? mark_lock+0xf5/0x2df0
[ 2698.257793]  __kernfs_new_node+0xd4/0x850
[ 2698.258352]  ? lock_chain_count+0x20/0x20
[ 2698.258910]  ? kernfs_dop_revalidate+0x3a0/0x3a0
[ 2698.258932]  ? __mutex_unlock_slowpath+0xe1/0x600
[ 2698.258950]  ? wait_for_completion_io+0x270/0x270
[ 2698.258967]  ? kernfs_next_descendant_post+0x1a7/0x2a0
[ 2698.258990]  kernfs_new_node+0x93/0x120
[ 2698.259012]  __kernfs_create_file+0x51/0x350
[ 2698.259033]  sysfs_add_file_mode_ns+0x221/0x560
[ 2698.259057]  internal_create_group+0x324/0xb30
[ 2698.259079]  ? sysfs_remove_group+0x170/0x170
[ 2698.259091]  ? kernfs_name_hash+0xe7/0x110
[ 2698.259110]  ? kernfs_find_ns+0x256/0x380
[ 2698.259133]  sysfs_slab_add+0x188/0x200
[ 2698.259151]  __kmem_cache_create+0x3db/0x520
[ 2698.259171]  kmem_cache_create_usercopy+0x1db/0x2f0
[ 2698.259193]  p9_client_create+0xc2b/0x1090
[ 2698.259218]  ? p9_client_flush+0x430/0x430
[ 2698.259237]  ? asm_sysvec_apic_timer_interrupt+0x12/0x20
[ 2698.259261]  ? __init_rwsem+0xf9/0x1b0
[ 2698.259278]  ? __kasan_check_write+0x4/0x10
[ 2698.259298]  v9fs_session_init+0x1dd/0x16a0
[ 2698.259326]  ? kmem_cache_alloc_trace+0x151/0x360
[ 2698.259340]  ? v9fs_show_options+0x690/0x690
21:25:44 executing program 2:
syz_mount_image$vfat(&(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x0, 0x2, &(0x7f0000000180)=[{&(0x7f0000000140)="eb3c906d6b66732e66617400020801000470008400f801", 0x17}, {0x0, 0x0, 0x1000a00}], 0x0, &(0x7f0000000240)=ANY=[])
chdir(&(0x7f0000000040)='./file0\x00')
r0 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x105142, 0x0)
ioctl$FS_IOC_RESVSP(r0, 0x40305828, &(0x7f0000000040)={0x0, 0x0, 0x0, 0x4000006})
socketpair(0x1f, 0x1, 0x4, &(0x7f0000000000)={<r1=>0xffffffffffffffff})
getsockopt$packet_buf(r1, 0x107, 0x1, &(0x7f00000001c0)=""/236, &(0x7f00000002c0)=0xec)

[ 2698.259373]  ? kasan_unpoison_shadow+0x33/0x50
[ 2698.259388]  ? __kasan_kmalloc.constprop.0+0xc9/0xd0
[ 2698.259408]  v9fs_mount+0x79/0x8f0
[ 2698.259426]  ? v9fs_write_inode+0x60/0x60
[ 2698.259441]  legacy_get_tree+0x105/0x220
[ 2698.259461]  vfs_get_tree+0x8e/0x300
[ 2698.259478]  path_mount+0x13be/0x20b0
[ 2698.259497]  ? strncpy_from_user+0x9e/0x470
[ 2698.259515]  ? finish_automount+0xa40/0xa40
[ 2698.259532]  ? getname_flags.part.0+0x1dd/0x4f0
21:25:44 executing program 5:
openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x105142, 0x0)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
pipe(&(0x7f00000001c0)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
mount$9p_fd(0x0, &(0x7f0000000040)='./file1\x00', &(0x7f00000000c0), 0x0, &(0x7f0000000280)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}}) (fail_nth: 69)
openat(0xffffffffffffffff, 0x0, 0x0, 0x0)

[ 2698.259546]  ? _copy_from_user+0xfb/0x1b0
[ 2698.259572]  __x64_sys_mount+0x282/0x300
21:25:44 executing program 3:
openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x105142, 0x0)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x400}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
pipe(&(0x7f00000001c0)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
mount$9p_fd(0x0, &(0x7f0000000040)='./file1\x00', &(0x7f00000000c0), 0x10000000, &(0x7f0000000280)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {}, 0x2c, {[{@nodevmap}]}})
openat(r1, &(0x7f0000000180)='./file1\x00', 0x0, 0x0)

[ 2698.259589]  ? copy_mnt_ns+0xa00/0xa00
[ 2698.259609]  ? rcu_read_lock_sched_held+0x3e/0x80
[ 2698.259632]  do_syscall_64+0x33/0x40
[ 2698.259650]  entry_SYSCALL_64_after_hwframe+0x61/0xc6
[ 2698.259660] RIP: 0033:0x7f38308e8b19
[ 2698.259676] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 2698.259684] RSP: 002b:00007f382de5e188 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5
[ 2698.259700] RAX: ffffffffffffffda RBX: 00007f38309fbf60 RCX: 00007f38308e8b19
[ 2698.259708] RDX: 00000000200000c0 RSI: 0000000020000040 RDI: 0000000000000000
[ 2698.259716] RBP: 00007f382de5e1d0 R08: 0000000020000280 R09: 0000000000000000
[ 2698.259724] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[ 2698.259732] R13: 00007ffca2bf07df R14: 00007f382de5e300 R15: 0000000000022000
[ 2698.277729] 9pnet: Insufficient options for proto=fd
[ 2698.290888] 9pnet: Insufficient options for proto=fd
[ 2698.534303] FAULT_INJECTION: forcing a failure.
[ 2698.534303] name failslab, interval 1, probability 0, space 0, times 0
[ 2698.534321] CPU: 0 PID: 25017 Comm: syz-executor.5 Not tainted 5.10.172 #1
[ 2698.534329] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 2698.534334] Call Trace:
[ 2698.534354]  dump_stack+0x107/0x167
[ 2698.534371]  should_fail.cold+0x5/0xa
[ 2698.534390]  ? __kernfs_new_node+0xd4/0x850
[ 2698.534407]  should_failslab+0x5/0x20
[ 2698.534421]  kmem_cache_alloc+0x5b/0x360
[ 2698.534443]  __kernfs_new_node+0xd4/0x850
[ 2698.534464]  ? kernfs_dop_revalidate+0x3a0/0x3a0
[ 2698.534485]  ? __mutex_unlock_slowpath+0xe1/0x600
[ 2698.534507]  ? wait_for_completion_io+0x270/0x270
[ 2698.539125] 9pnet: Insufficient options for proto=fd
[ 2698.539746]  ? kernfs_next_descendant_post+0x1a7/0x2a0
[ 2698.539787]  kernfs_new_node+0x93/0x120
[ 2698.557001]  __kernfs_create_file+0x51/0x350
[ 2698.557604]  sysfs_add_file_mode_ns+0x221/0x560
[ 2698.558192]  internal_create_group+0x324/0xb30
[ 2698.558788]  ? sysfs_remove_group+0x170/0x170
[ 2698.559379]  ? kernfs_name_hash+0xe7/0x110
[ 2698.559943]  ? kernfs_find_ns+0x256/0x380
[ 2698.560424] 9pnet: Insufficient options for proto=fd
[ 2698.560526]  sysfs_slab_add+0x188/0x200
[ 2698.561765]  __kmem_cache_create+0x3db/0x520
[ 2698.562360]  kmem_cache_create_usercopy+0x1db/0x2f0
[ 2698.563025]  p9_client_create+0xc2b/0x1090
[ 2698.563589]  ? p9_client_flush+0x430/0x430
[ 2698.564168]  ? lockdep_init_map_type+0x2c7/0x780
[ 2698.564798]  ? rcu_read_lock_sched_held+0x3e/0x80
[ 2698.565444]  ? __raw_spin_lock_init+0x36/0x110
[ 2698.566058]  v9fs_session_init+0x1dd/0x16a0
[ 2698.566652]  ? kmem_cache_alloc_trace+0x151/0x360
[ 2698.567293]  ? v9fs_show_options+0x690/0x690
[ 2698.567888]  ? kasan_unpoison_shadow+0x33/0x50
[ 2698.568527]  ? __kasan_kmalloc.constprop.0+0xc9/0xd0
[ 2698.569193]  v9fs_mount+0x79/0x8f0
[ 2698.569682]  ? v9fs_write_inode+0x60/0x60
[ 2698.570235]  legacy_get_tree+0x105/0x220
[ 2698.570781]  vfs_get_tree+0x8e/0x300
[ 2698.571300]  path_mount+0x13be/0x20b0
[ 2698.571832]  ? strncpy_from_user+0x9e/0x470
[ 2698.572436]  ? finish_automount+0xa40/0xa40
[ 2698.573019]  ? getname_flags.part.0+0x1dd/0x4f0
[ 2698.573639]  ? _copy_from_user+0xfb/0x1b0
[ 2698.574194]  __x64_sys_mount+0x282/0x300
[ 2698.574744]  ? copy_mnt_ns+0xa00/0xa00
[ 2698.575271]  ? rcu_read_lock_sched_held+0x3e/0x80
[ 2698.575907]  do_syscall_64+0x33/0x40
[ 2698.576410]  entry_SYSCALL_64_after_hwframe+0x61/0xc6
[ 2698.577053] RIP: 0033:0x7f38308e8b19
[ 2698.577545] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 2698.579976] RSP: 002b:00007f382de5e188 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5
[ 2698.585088] RAX: ffffffffffffffda RBX: 00007f38309fbf60 RCX: 00007f38308e8b19
[ 2698.586022] RDX: 00000000200000c0 RSI: 0000000020000040 RDI: 0000000000000000
21:25:45 executing program 0:
syz_mount_image$vfat(&(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x0, 0x2, &(0x7f0000000180)=[{&(0x7f0000000140)="eb3c906d6b66732e66617400020801000470008400f801", 0x17}, {0x0, 0x0, 0x1000a00}], 0x0, &(0x7f0000000240)=ANY=[])
chdir(&(0x7f0000000040)='./file0\x00')
mount$cgroup(0x0, 0x0, &(0x7f0000000400), 0x0, 0x0)
r0 = syz_io_uring_setup(0x22, &(0x7f0000000680)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000180)=<r1=>0x0, &(0x7f0000002a40)=<r2=>0x0)
r3 = io_uring_register$IORING_REGISTER_PERSONALITY(r0, 0x9, 0x0, 0x0)
r4 = socket$nl_netfilter(0x10, 0x3, 0xc)
syz_io_uring_submit(r1, r2, &(0x7f0000000400)=@IORING_OP_WRITEV={0x2, 0x0, 0x0, @fd=r4, 0x0, 0x0, 0x0, 0x0, 0x0, {0x0, r3}}, 0x0)
r5 = syz_io_uring_setup(0x22, &(0x7f0000000680)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000180), &(0x7f0000002a40))
r6 = io_uring_register$IORING_REGISTER_PERSONALITY(r5, 0x9, 0x0, 0x0)
syz_io_uring_submit(r1, 0x0, &(0x7f0000000440)=@IORING_OP_FSYNC={0x3, 0x2, 0x0, @fd_index, 0x0, 0x0, 0x0, 0x0, 0x1, {0x0, r6}}, 0x2)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r7 = openat(0xffffffffffffff9c, &(0x7f00000002c0)='./file1\x00', 0x105142, 0x0)
r8 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0)
mount(&(0x7f0000000200)=ANY=[@ANYBLOB="2f6f651317868af191bdb2"], &(0x7f0000000240)='./file0\x00', &(0x7f0000000280)='nfsd\x00', 0x800000, &(0x7f0000000300)='cgroup\x00')
sendfile(r7, r8, 0x0, 0x100000001)
newfstatat(0xffffffffffffff9c, &(0x7f0000000340)='./file1\x00', &(0x7f0000000380), 0x400)

21:25:45 executing program 1:
openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x105142, 0x0)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
pipe(&(0x7f00000001c0))
mount$9p_fd(0x0, &(0x7f0000000040)='./file1\x00', &(0x7f00000000c0), 0x2, &(0x7f0000000280)={'trans=fd,', {}, 0x2c, {}, 0x2c, {[{@nodevmap}]}})

[ 2698.586968] RBP: 00007f382de5e1d0 R08: 0000000020000280 R09: 0000000000000000
[ 2698.586978] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[ 2698.586986] R13: 00007ffca2bf07df R14: 00007f382de5e300 R15: 0000000000022000
[ 2698.598312] kmem_cache_create(9p-fcall-cache) failed with error -12
[ 2698.605270] CPU: 0 PID: 25017 Comm: syz-executor.5 Not tainted 5.10.172 #1
[ 2698.606191] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 2698.607268] Call Trace:
[ 2698.607632]  dump_stack+0x107/0x167
[ 2698.608108]  kmem_cache_create_usercopy.cold+0x17/0x65
[ 2698.608844]  p9_client_create+0xc2b/0x1090
[ 2698.609427]  ? p9_client_flush+0x430/0x430
[ 2698.610002]  ? lockdep_init_map_type+0x2c7/0x780
[ 2698.610636]  ? rcu_read_lock_sched_held+0x3e/0x80
[ 2698.611273]  ? __raw_spin_lock_init+0x36/0x110
[ 2698.611905]  v9fs_session_init+0x1dd/0x16a0
[ 2698.612516]  ? kmem_cache_alloc_trace+0x151/0x360
[ 2698.613160]  ? v9fs_show_options+0x690/0x690
[ 2698.613774]  ? kasan_unpoison_shadow+0x33/0x50
[ 2698.614413]  ? __kasan_kmalloc.constprop.0+0xc9/0xd0
[ 2698.615109]  v9fs_mount+0x79/0x8f0
[ 2698.620337]  ? v9fs_write_inode+0x60/0x60
[ 2698.620878]  legacy_get_tree+0x105/0x220
[ 2698.621398]  vfs_get_tree+0x8e/0x300
[ 2698.621880]  path_mount+0x13be/0x20b0
[ 2698.622375]  ? strncpy_from_user+0x9e/0x470
[ 2698.622931]  ? finish_automount+0xa40/0xa40
[ 2698.623483]  ? getname_flags.part.0+0x1dd/0x4f0
[ 2698.624067]  ? _copy_from_user+0xfb/0x1b0
[ 2698.624632]  __x64_sys_mount+0x282/0x300
[ 2698.625153]  ? copy_mnt_ns+0xa00/0xa00
[ 2698.625660]  ? rcu_read_lock_sched_held+0x3e/0x80
[ 2698.626266]  do_syscall_64+0x33/0x40
[ 2698.626755]  entry_SYSCALL_64_after_hwframe+0x61/0xc6
[ 2698.627412] RIP: 0033:0x7f38308e8b19
[ 2698.627895] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 2698.630222] RSP: 002b:00007f382de5e188 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5
[ 2698.631169] RAX: ffffffffffffffda RBX: 00007f38309fbf60 RCX: 00007f38308e8b19
[ 2698.632204] RDX: 00000000200000c0 RSI: 0000000020000040 RDI: 0000000000000000
[ 2698.633113] RBP: 00007f382de5e1d0 R08: 0000000020000280 R09: 0000000000000000
[ 2698.634051] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[ 2698.634967] R13: 00007ffca2bf07df R14: 00007f382de5e300 R15: 0000000000022000
21:25:45 executing program 6:
r0 = syz_mount_image$vfat(&(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x0, 0x2, &(0x7f0000000180)=[{&(0x7f0000000140)="eb3c906d6b66732e66617400020801000470008400f801", 0x17}, {0x0, 0x0, 0x1000a00}], 0x0, &(0x7f0000000240)=ANY=[])
chdir(&(0x7f0000000040)='./file0\x00')
openat2(r0, &(0x7f0000000100)='./file0\x00', &(0x7f00000001c0)={0x40000, 0x81}, 0x18)
mount$cgroup(0x0, 0x0, &(0x7f0000000400), 0x0, 0x0)
r1 = syz_io_uring_setup(0x22, &(0x7f0000000680)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000180)=<r2=>0x0, &(0x7f0000002a40)=<r3=>0x0)
io_uring_register$IORING_REGISTER_PERSONALITY(r1, 0x9, 0x0, 0x0)
socket$nl_netfilter(0x10, 0x3, 0xc)
syz_io_uring_submit(r2, r3, 0x0, 0x0)
r4 = syz_io_uring_setup(0x22, &(0x7f0000000680)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x4000)=nil, 0x0, &(0x7f0000002a40))
r5 = io_uring_register$IORING_REGISTER_PERSONALITY(r4, 0x9, 0x0, 0x0)
syz_io_uring_submit(r2, 0x0, &(0x7f0000000440)=@IORING_OP_FSYNC={0x3, 0x2, 0x0, @fd_index=0x9, 0x0, 0x0, 0x0, 0x0, 0x1, {0x0, r5}}, 0x2)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r6 = openat(0xffffffffffffff9c, &(0x7f00000002c0)='./file1\x00', 0x105142, 0x0)
r7 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0)
sendfile(r6, r7, 0x0, 0x100000001)
newfstatat(0xffffffffffffff9c, &(0x7f0000000340)='./file1\x00', &(0x7f0000000380), 0x400)

[ 2698.689505] 9pnet: Insufficient options for proto=fd
21:25:45 executing program 3:
openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x105142, 0x0)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x400}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
pipe(&(0x7f00000001c0)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
mount$9p_fd(0x0, &(0x7f0000000040)='./file1\x00', &(0x7f00000000c0), 0x20000000, &(0x7f0000000280)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {}, 0x2c, {[{@nodevmap}]}})
openat(r1, &(0x7f0000000180)='./file1\x00', 0x0, 0x0)

21:25:45 executing program 5:
openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x105142, 0x0)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
pipe(&(0x7f00000001c0)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
mount$9p_fd(0x0, &(0x7f0000000040)='./file1\x00', &(0x7f00000000c0), 0x0, &(0x7f0000000280)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}}) (fail_nth: 70)
openat(0xffffffffffffffff, 0x0, 0x0, 0x0)

[ 2698.762114] 9pnet: Insufficient options for proto=fd
[ 2698.777469] 9pnet: Insufficient options for proto=fd
[ 2698.818268] FAULT_INJECTION: forcing a failure.
[ 2698.818268] name failslab, interval 1, probability 0, space 0, times 0
[ 2698.820263] CPU: 0 PID: 25082 Comm: syz-executor.5 Not tainted 5.10.172 #1
[ 2698.821158] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 2698.822419] Call Trace:
[ 2698.822771]  dump_stack+0x107/0x167
[ 2698.823252]  should_fail.cold+0x5/0xa
[ 2698.824293]  ? __kernfs_new_node+0xd4/0x850
[ 2698.825511]  should_failslab+0x5/0x20
[ 2698.826600]  kmem_cache_alloc+0x5b/0x360
[ 2698.827609]  __kernfs_new_node+0xd4/0x850
[ 2698.828827]  ? kernfs_dop_revalidate+0x3a0/0x3a0
[ 2698.830205]  ? __mutex_unlock_slowpath+0xe1/0x600
[ 2698.831550]  ? wait_for_completion_io+0x270/0x270
[ 2698.832959]  ? kernfs_next_descendant_post+0x1a7/0x2a0
[ 2698.834440]  kernfs_new_node+0x93/0x120
[ 2698.835628]  __kernfs_create_file+0x51/0x350
[ 2698.836931]  sysfs_add_file_mode_ns+0x221/0x560
[ 2698.838361]  internal_create_group+0x324/0xb30
[ 2698.839719]  ? sysfs_remove_group+0x170/0x170
[ 2698.841057]  ? kernfs_name_hash+0xe7/0x110
[ 2698.842246]  ? kernfs_find_ns+0x256/0x380
[ 2698.843461]  sysfs_slab_add+0x188/0x200
[ 2698.844603]  __kmem_cache_create+0x3db/0x520
[ 2698.845880]  kmem_cache_create_usercopy+0x1db/0x2f0
[ 2698.847329]  p9_client_create+0xc2b/0x1090
[ 2698.848560]  ? p9_client_flush+0x430/0x430
[ 2698.849806]  ? lockdep_init_map_type+0x2c7/0x780
[ 2698.851152]  ? rcu_read_lock_sched_held+0x3e/0x80
[ 2698.852594]  ? __raw_spin_lock_init+0x36/0x110
[ 2698.853915]  v9fs_session_init+0x1dd/0x16a0
[ 2698.855305]  ? kmem_cache_alloc_trace+0x151/0x360
[ 2698.856826]  ? v9fs_show_options+0x690/0x690
[ 2698.858067]  ? kasan_unpoison_shadow+0x33/0x50
[ 2698.859349]  ? __kasan_kmalloc.constprop.0+0xc9/0xd0
[ 2698.860808]  v9fs_mount+0x79/0x8f0
[ 2698.861821]  ? v9fs_write_inode+0x60/0x60
[ 2698.863006]  legacy_get_tree+0x105/0x220
[ 2698.864252]  vfs_get_tree+0x8e/0x300
[ 2698.865334]  path_mount+0x13be/0x20b0
[ 2698.866496]  ? strncpy_from_user+0x9e/0x470
[ 2698.867712]  ? finish_automount+0xa40/0xa40
[ 2698.868994]  ? getname_flags.part.0+0x1dd/0x4f0
[ 2698.870334]  ? _copy_from_user+0xfb/0x1b0
[ 2698.871529]  __x64_sys_mount+0x282/0x300
[ 2698.872758]  ? copy_mnt_ns+0xa00/0xa00
[ 2698.873865]  ? rcu_read_lock_sched_held+0x3e/0x80
[ 2698.875310]  do_syscall_64+0x33/0x40
[ 2698.876404]  entry_SYSCALL_64_after_hwframe+0x61/0xc6
[ 2698.877906] RIP: 0033:0x7f38308e8b19
[ 2698.878972] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 2698.884294] RSP: 002b:00007f382de5e188 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5
[ 2698.886093] RAX: ffffffffffffffda RBX: 00007f38309fbf60 RCX: 00007f38308e8b19
[ 2698.887778] RDX: 00000000200000c0 RSI: 0000000020000040 RDI: 0000000000000000
[ 2698.889720] RBP: 00007f382de5e1d0 R08: 0000000020000280 R09: 0000000000000000
[ 2698.891392] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[ 2698.893332] R13: 00007ffca2bf07df R14: 00007f382de5e300 R15: 0000000000022000
[ 2698.922113] kmem_cache_create(9p-fcall-cache) failed with error -12
[ 2698.923163] CPU: 1 PID: 25082 Comm: syz-executor.5 Not tainted 5.10.172 #1
[ 2698.924217] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 2698.925290] Call Trace:
[ 2698.925654]  dump_stack+0x107/0x167
[ 2698.926148]  kmem_cache_create_usercopy.cold+0x17/0x65
[ 2698.926847]  p9_client_create+0xc2b/0x1090
[ 2698.927403]  ? p9_client_flush+0x430/0x430
[ 2698.927973]  ? lockdep_init_map_type+0x2c7/0x780
[ 2698.928680]  ? rcu_read_lock_sched_held+0x3e/0x80
[ 2698.929372]  ? __raw_spin_lock_init+0x36/0x110
[ 2698.929983]  v9fs_session_init+0x1dd/0x16a0
[ 2698.930561]  ? kmem_cache_alloc_trace+0x151/0x360
[ 2698.931234]  ? v9fs_show_options+0x690/0x690
[ 2698.931830]  ? kasan_unpoison_shadow+0x33/0x50
[ 2698.932504]  ? __kasan_kmalloc.constprop.0+0xc9/0xd0
[ 2698.933154]  v9fs_mount+0x79/0x8f0
[ 2698.933628]  ? v9fs_write_inode+0x60/0x60
[ 2698.934182]  legacy_get_tree+0x105/0x220
[ 2698.934720]  vfs_get_tree+0x8e/0x300
[ 2698.935222]  path_mount+0x13be/0x20b0
[ 2698.935747]  ? strncpy_from_user+0x9e/0x470
[ 2698.936365]  ? finish_automount+0xa40/0xa40
[ 2698.936936]  ? getname_flags.part.0+0x1dd/0x4f0
[ 2698.937541]  ? _copy_from_user+0xfb/0x1b0
[ 2698.938113]  __x64_sys_mount+0x282/0x300
[ 2698.938649]  ? copy_mnt_ns+0xa00/0xa00
[ 2698.939226]  ? rcu_read_lock_sched_held+0x3e/0x80
[ 2698.939868]  do_syscall_64+0x33/0x40
[ 2698.940408]  entry_SYSCALL_64_after_hwframe+0x61/0xc6
[ 2698.941078] RIP: 0033:0x7f38308e8b19
[ 2698.941577] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 2698.944022] RSP: 002b:00007f382de5e188 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5
[ 2698.945073] RAX: ffffffffffffffda RBX: 00007f38309fbf60 RCX: 00007f38308e8b19
[ 2698.946006] RDX: 00000000200000c0 RSI: 0000000020000040 RDI: 0000000000000000
[ 2698.946935] RBP: 00007f382de5e1d0 R08: 0000000020000280 R09: 0000000000000000
[ 2698.947915] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[ 2698.948849] R13: 00007ffca2bf07df R14: 00007f382de5e300 R15: 0000000000022000
21:26:03 executing program 0:
syz_mount_image$vfat(&(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x0, 0x2, &(0x7f0000000180)=[{&(0x7f0000000140)="eb3c906d6b66732e66617400020801000470008400f801", 0x17}, {0x0, 0x0, 0x1000a00}], 0x0, &(0x7f0000000240)=ANY=[])
chdir(&(0x7f0000000040)='./file0\x00')
mount$cgroup(0x0, 0x0, &(0x7f0000000400), 0x0, 0x0)
r0 = syz_io_uring_setup(0x22, &(0x7f0000000680)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000180)=<r1=>0x0, &(0x7f0000002a40)=<r2=>0x0)
r3 = io_uring_register$IORING_REGISTER_PERSONALITY(r0, 0x9, 0x0, 0x0)
r4 = socket$nl_netfilter(0x10, 0x3, 0xc)
syz_io_uring_submit(r1, r2, &(0x7f0000000400)=@IORING_OP_WRITEV={0x2, 0x0, 0x0, @fd=r4, 0x0, 0x0, 0x0, 0x0, 0x0, {0x0, r3}}, 0x0)
r5 = syz_io_uring_setup(0x22, &(0x7f0000000680)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000180), &(0x7f0000002a40))
r6 = io_uring_register$IORING_REGISTER_PERSONALITY(r5, 0x9, 0x0, 0x0)
syz_io_uring_submit(r1, 0x0, &(0x7f0000000440)=@IORING_OP_FSYNC={0x3, 0x2, 0x0, @fd_index, 0x0, 0x0, 0x0, 0x0, 0x1, {0x0, r6}}, 0x2)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r7 = openat(0xffffffffffffff9c, &(0x7f00000002c0)='./file1\x00', 0x105142, 0x0)
r8 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0)
mount(&(0x7f0000000200)=ANY=[@ANYBLOB="2f6f651317868af191bdb2"], &(0x7f0000000240)='./file0\x00', &(0x7f0000000280)='nfsd\x00', 0x800000, &(0x7f0000000300)='cgroup\x00')
sendfile(r7, r8, 0x0, 0x100000001)
newfstatat(0xffffffffffffff9c, &(0x7f0000000340)='./file1\x00', &(0x7f0000000380), 0x400)

21:26:03 executing program 2:
r0 = syz_mount_image$vfat(&(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x0, 0x2, &(0x7f0000000180)=[{&(0x7f0000000140)="eb3c906d6b66732e66617400020801000470008400f801", 0x17}, {0x0, 0x0, 0x1000a00}], 0x0, &(0x7f0000000240)=ANY=[])
chdir(&(0x7f0000000040)='./file0\x00')
statfs(&(0x7f0000000340)='./file1\x00', &(0x7f00000016c0)=""/153)
r1 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x105142, 0x0)
r2 = openat$vcs(0xffffffffffffff9c, &(0x7f00000001c0), 0x628000, 0x0)
copy_file_range(r0, &(0x7f0000000000)=0x7, r2, &(0x7f0000000200)=0x8001, 0x9, 0x0)
ioctl$FS_IOC_RESVSP(r1, 0x40305828, &(0x7f0000000040)={0x0, 0x0, 0x0, 0x4000006})
getsockopt$inet_IP_IPSEC_POLICY(0xffffffffffffffff, 0x0, 0x10, &(0x7f00000001c0)={{{@in=@dev, @in6=@ipv4={""/10, ""/2, @private}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, <r3=>0x0}}, {{@in6=@dev}, 0x0, @in6=@ipv4={""/10, ""/2, @remote}}}, &(0x7f00000002c0)=0xe8)
fsetxattr$security_capability(0xffffffffffffffff, &(0x7f0000000180), &(0x7f00000003c0)=@v3={0x3000000, [{0x2, 0x9}, {0x5, 0x7}], r3}, 0x18, 0x1)
syz_mount_image$vfat(&(0x7f0000000240), &(0x7f0000000280)='./file0\x00', 0x1, 0x5, &(0x7f0000001540)=[{&(0x7f00000002c0)="7c9d9d944e07c47237fbeb7f969681f5b73a6a6c2a61a40ba8cea115a63c3a38de8b4fd32b152ff460706ace724ca061c23aa2799c5505f0b887d775898920a37d20686f5f9821da0acb91cac2454aa71a27af8ebc3d9e049ead6f43724df72a7a7276e7a7ae8272be5031fcc83a16539317e6bb7d48", 0x76, 0x101}, {&(0x7f0000000340), 0x0, 0x200}, {&(0x7f0000000380)="4517999adeacca95089dead32d9fcde888fe541da68b46e82b5cad1a56da120a4874a586f0f3c1d737bc9e0aea29b1776e236f5eae23ded347c0d6cc6e53f5b0be88b8656384583aee7f27e41965fa22cc6698e2e012fa24aecdb8b34ce2841b8c6e13131832f617964f7e6a8a3323ce8756a6c8d7b67a3b7a501ce04e4247df9471abc6742a44c392b10ee2dda1a758b7a4038423084bfe85d7e85c061b1ac41bb29c207a521e145b71d5483dee9036030e4b55591bd96e4bac48f15270ac39a5eefa4aa565035fe94140a0a036650b6edc3332c06ac727a97a5c4081", 0xdd, 0xa129}, {&(0x7f0000000480)="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", 0x1000, 0x9}, {&(0x7f0000001480)="73f87578f35ca4220909c7c23dc9e3aa03892f6fc3d407d969bd72624022dda43f96d54b7176b045095b07fbb543601d94a7e12f17230ac2e874c3b2708d9aae2ab3639b54f9bd0584ff32ad570264dc26cb71c121111d97a8b18aebf73457e0cbc8a007f653e62fdc31b29b42671b68d083cd7868a769a36cc31d4564220ff159fbecd148364797fe594b5e8f1947bcb2ca014bf21e5e845aaca66d491a89464a394329ea597f3da0534e2823d3f436486666ea48d5d742989c4b", 0xbb, 0xffff}], 0x2, &(0x7f00000015c0)={[{@iocharset={'iocharset', 0x3d, 'cp850'}}, {@utf8no}, {@utf8}, {@iocharset={'iocharset', 0x3d, 'macceltic'}}, {@utf8}, {@iocharset={'iocharset', 0x3d, 'iso8859-2'}}, {@utf8no}], [{@smackfsfloor={'smackfsfloor', 0x3d, 'vfat\x00'}}, {@context={'context', 0x3d, 'system_u'}}, {@fsuuid={'fsuuid', 0x3d, {[0x39, 0x62, 0x33, 0x30, 0x39, 0x39, 0x32, 0x34], 0x2d, [0x38, 0x36, 0x37, 0x65], 0x2d, [0x37, 0x32, 0x38, 0x38], 0x2d, [0x34, 0x39, 0x37, 0x32], 0x2d, [0x35, 0x32, 0x61, 0x66, 0x33, 0x38, 0x35, 0x38]}}}, {@smackfshat={'smackfshat', 0x3d, '/dev/vcs\x00'}}, {@fowner_eq={'fowner', 0x3d, r3}}]})

21:26:03 executing program 7:
perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
io_setup(0x7f, &(0x7f00000002c0)=<r0=>0x0)
io_pgetevents(r0, 0x1, 0x1, &(0x7f0000000000)=[{}], 0x0, 0x0)
io_submit(r0, 0x0, 0x0)

21:26:03 executing program 5:
openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x105142, 0x0)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
pipe(&(0x7f00000001c0)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
mount$9p_fd(0x0, &(0x7f0000000040)='./file1\x00', &(0x7f00000000c0), 0x0, &(0x7f0000000280)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}}) (fail_nth: 71)
openat(0xffffffffffffffff, 0x0, 0x0, 0x0)

21:26:03 executing program 4:
openat$vcs(0xffffffffffffff9c, &(0x7f0000000040), 0x0, 0x0)
openat$sr(0xffffffffffffff9c, &(0x7f00000035c0), 0x0, 0x0)
openat$sr(0xffffffffffffff9c, &(0x7f00000000c0), 0x224400, 0x0)
openat$rtc(0xffffffffffffff9c, &(0x7f0000000200), 0x0, 0x0)
r0 = socket$nl_generic(0x10, 0x3, 0x10)
setsockopt$netlink_NETLINK_LISTEN_ALL_NSID(r0, 0x10e, 0x8, &(0x7f0000000000)=0x4, 0x4)
syz_genetlink_get_family_id$ethtool(&(0x7f0000000180), r0)
r1 = socket$nl_generic(0x10, 0x3, 0x10)
r2 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), 0xffffffffffffffff)
ioctl$sock_SIOCGIFINDEX_80211(r1, 0x8933, &(0x7f00000000c0)={'wlan1\x00', <r3=>0x0})
sendmsg$NL80211_CMD_CONNECT(r1, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000340)=ANY=[@ANYBLOB=',\x00\x00\x00', @ANYRES16=r2, @ANYBLOB="05000000ce36a765daa6db99f380e3b601", @ANYRES32=r3, @ANYBLOB="080026006c0900000800270003000000"], 0x2c}}, 0x0)
sendmsg$NL80211_CMD_GET_PROTOCOL_FEATURES(r0, &(0x7f0000000140)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x4000000}, 0xc, &(0x7f0000000100)={&(0x7f0000000080)={0x14, r2, 0x4, 0x70bd27, 0x25dfdbfc, {}, [""]}, 0x14}, 0x1, 0x0, 0x0, 0x5}, 0x4040051)
pipe(&(0x7f00000001c0))
open(&(0x7f00000016c0)='./cgroup.net/cgroup.procs\x00', 0x0, 0x0)
pselect6(0x40, &(0x7f0000000180), &(0x7f00000001c0)={0x3fc}, 0x0, 0x0, 0x0)

21:26:03 executing program 1:
openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x105142, 0x0)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
pipe(&(0x7f00000001c0))
mount$9p_fd(0x0, &(0x7f0000000040)='./file1\x00', &(0x7f00000000c0), 0x3, &(0x7f0000000280)={'trans=fd,', {}, 0x2c, {}, 0x2c, {[{@nodevmap}]}})

21:26:03 executing program 3:
openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x105142, 0x0)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x400}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
pipe(&(0x7f00000001c0)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
mount$9p_fd(0x0, &(0x7f0000000040)='./file1\x00', &(0x7f00000000c0), 0x20100000, &(0x7f0000000280)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {}, 0x2c, {[{@nodevmap}]}})
openat(r1, &(0x7f0000000180)='./file1\x00', 0x0, 0x0)

21:26:03 executing program 6:
r0 = syz_mount_image$vfat(&(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x0, 0x2, &(0x7f0000000180)=[{&(0x7f0000000140)="eb3c906d6b66732e66617400020801000470008400f801", 0x17}, {0x0, 0x0, 0x1000a00}], 0x0, &(0x7f0000000240)=ANY=[])
chdir(&(0x7f0000000040)='./file0\x00')
openat2(r0, &(0x7f0000000100)='./file0\x00', &(0x7f00000001c0)={0x40000, 0x81}, 0x18)
mount$cgroup(0x0, 0x0, &(0x7f0000000400), 0x0, 0x0)
r1 = syz_io_uring_setup(0x22, &(0x7f0000000680)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000180)=<r2=>0x0, &(0x7f0000002a40)=<r3=>0x0)
io_uring_register$IORING_REGISTER_PERSONALITY(r1, 0x9, 0x0, 0x0)
socket$nl_netfilter(0x10, 0x3, 0xc)
syz_io_uring_submit(r2, r3, 0x0, 0x0)
r4 = syz_io_uring_setup(0x22, &(0x7f0000000680)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000180), 0x0)
r5 = io_uring_register$IORING_REGISTER_PERSONALITY(r4, 0x9, 0x0, 0x0)
syz_io_uring_submit(r2, 0x0, &(0x7f0000000440)=@IORING_OP_FSYNC={0x3, 0x2, 0x0, @fd_index=0x9, 0x0, 0x0, 0x0, 0x0, 0x1, {0x0, r5}}, 0x2)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r6 = openat(0xffffffffffffff9c, &(0x7f00000002c0)='./file1\x00', 0x105142, 0x0)
r7 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0)
sendfile(r6, r7, 0x0, 0x100000001)
newfstatat(0xffffffffffffff9c, &(0x7f0000000340)='./file1\x00', &(0x7f0000000380), 0x400)

[ 2716.672608] 9pnet: Insufficient options for proto=fd
[ 2716.682095] FAULT_INJECTION: forcing a failure.
[ 2716.682095] name failslab, interval 1, probability 0, space 0, times 0
[ 2716.686072] CPU: 1 PID: 25162 Comm: syz-executor.5 Not tainted 5.10.172 #1
[ 2716.688185] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 2716.690786] Call Trace:
[ 2716.691596]  dump_stack+0x107/0x167
[ 2716.692486]  should_fail.cold+0x5/0xa
[ 2716.693330]  ? __kernfs_new_node+0xd4/0x850
[ 2716.694268]  should_failslab+0x5/0x20
[ 2716.695121]  kmem_cache_alloc+0x5b/0x360
[ 2716.696340]  __kernfs_new_node+0xd4/0x850
[ 2716.697521]  ? kernfs_dop_revalidate+0x3a0/0x3a0
[ 2716.698695]  ? __mutex_unlock_slowpath+0xe1/0x600
[ 2716.700020]  ? mark_held_locks+0x9e/0xe0
[ 2716.701248]  ? lockdep_hardirqs_on_prepare+0x277/0x3e0
[ 2716.702747]  kernfs_new_node+0x93/0x120
[ 2716.704011]  __kernfs_create_file+0x51/0x350
[ 2716.705370]  sysfs_add_file_mode_ns+0x221/0x560
[ 2716.706782]  internal_create_group+0x324/0xb30
[ 2716.708181]  ? sysfs_remove_group+0x170/0x170
[ 2716.709554]  ? kernfs_name_hash+0xe7/0x110
[ 2716.710872]  ? kernfs_find_ns+0x256/0x380
[ 2716.712182]  sysfs_slab_add+0x188/0x200
[ 2716.713477]  __kmem_cache_create+0x3db/0x520
[ 2716.714887]  kmem_cache_create_usercopy+0x1db/0x2f0
[ 2716.716573]  p9_client_create+0xc2b/0x1090
[ 2716.717941]  ? p9_client_flush+0x430/0x430
[ 2716.719310]  ? lockdep_init_map_type+0x2c7/0x780
[ 2716.720885]  ? rcu_read_lock_sched_held+0x3e/0x80
[ 2716.722417]  ? __raw_spin_lock_init+0x36/0x110
[ 2716.723936]  v9fs_session_init+0x1dd/0x16a0
[ 2716.725283]  ? irqentry_enter+0x26/0x60
[ 2716.726637]  ? asm_sysvec_apic_timer_interrupt+0x12/0x20
[ 2716.728255]  ? trace_hardirqs_on+0x5b/0x180
[ 2716.729608]  ? v9fs_show_options+0x690/0x690
[ 2716.731037]  ? kasan_unpoison_shadow+0x33/0x50
[ 2716.732444]  ? __kasan_kmalloc.constprop.0+0xc9/0xd0
[ 2716.733990]  v9fs_mount+0x79/0x8f0
[ 2716.735151]  ? v9fs_write_inode+0x60/0x60
[ 2716.736467]  legacy_get_tree+0x105/0x220
[ 2716.737736]  vfs_get_tree+0x8e/0x300
[ 2716.738911]  path_mount+0x13be/0x20b0
[ 2716.740057]  ? strncpy_from_user+0x9e/0x470
[ 2716.741363]  ? finish_automount+0xa40/0xa40
[ 2716.742773]  ? getname_flags.part.0+0x1dd/0x4f0
[ 2716.744257]  ? _copy_from_user+0xfb/0x1b0
[ 2716.745605]  __x64_sys_mount+0x282/0x300
[ 2716.746875]  ? copy_mnt_ns+0xa00/0xa00
[ 2716.748067]  ? rcu_read_lock_sched_held+0x3e/0x80
[ 2716.749655]  do_syscall_64+0x33/0x40
[ 2716.750838]  entry_SYSCALL_64_after_hwframe+0x61/0xc6
[ 2716.752459] RIP: 0033:0x7f38308e8b19
[ 2716.753625] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 2716.759451] RSP: 002b:00007f382de5e188 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5
[ 2716.761909] RAX: ffffffffffffffda RBX: 00007f38309fbf60 RCX: 00007f38308e8b19
[ 2716.764124] RDX: 00000000200000c0 RSI: 0000000020000040 RDI: 0000000000000000
[ 2716.766313] RBP: 00007f382de5e1d0 R08: 0000000020000280 R09: 0000000000000000
[ 2716.768594] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[ 2716.770884] R13: 00007ffca2bf07df R14: 00007f382de5e300 R15: 0000000000022000
21:26:03 executing program 3:
openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x105142, 0x0)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x400}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
pipe(&(0x7f00000001c0)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
mount$9p_fd(0x0, &(0x7f0000000040)='./file1\x00', &(0x7f00000000c0), 0x8cffffff, &(0x7f0000000280)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {}, 0x2c, {[{@nodevmap}]}})
openat(r1, &(0x7f0000000180)='./file1\x00', 0x0, 0x0)

21:26:03 executing program 4:
r0 = openat$vcs(0xffffffffffffff9c, &(0x7f0000000040), 0x0, 0x0)
r1 = perf_event_open(&(0x7f0000001d80)={0x2, 0x80, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1000, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x8, 0x0, 0x0, 0x3}, 0x0, 0x0, 0xffffffffffffffff, 0x3)
mmap(&(0x7f0000ffc000/0x2000)=nil, 0x2000, 0x0, 0x13, r1, 0x0)
perf_event_open(&(0x7f0000001d80)={0x2, 0x80, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, r1, 0x2)
r2 = accept4$inet(r0, &(0x7f00000000c0), &(0x7f0000000100)=0x10, 0x0)
ioctl$int_in(r2, 0x5421, &(0x7f0000000140)=0x81)
r3 = openat$sr(0xffffffffffffff9c, &(0x7f00000035c0), 0x0, 0x0)
openat$sr(0xffffffffffffff9c, &(0x7f0000000000), 0x224400, 0x0)
openat$rtc(0xffffffffffffff9c, &(0x7f0000000200), 0x0, 0x0)
fallocate(r3, 0x4, 0x1f, 0x9)
pipe(&(0x7f00000001c0))
open(&(0x7f00000016c0)='./cgroup.net/cgroup.procs\x00', 0xca40, 0x0)
pselect6(0x40, &(0x7f0000000180), &(0x7f00000001c0)={0x3fc}, 0x0, 0x0, 0x0)

21:26:03 executing program 2:
sendmsg$AUDIT_TTY_GET(0xffffffffffffffff, &(0x7f0000000240)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x1}, 0xc, &(0x7f0000000200)={&(0x7f0000000280)={0x10, 0x3f8, 0x8, 0x70bd28, 0x25dfdbff, "", ["", "", "", "", "", "", ""]}, 0x10}, 0x1, 0x0, 0x0, 0xc010}, 0x24004000)
ioctl$BTRFS_IOC_SYNC(0xffffffffffffffff, 0x9408, 0x0)
syz_mount_image$vfat(&(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x0, 0x2, &(0x7f0000000180)=[{&(0x7f0000000140)="eb3c906d6b66732e66617400020801000470008400f801", 0x17}, {0x0, 0x0, 0x1000a00}], 0x0, &(0x7f0000000240)=ANY=[])
sendmsg$IPSET_CMD_TEST(0xffffffffffffffff, &(0x7f00000004c0)={&(0x7f00000001c0)={0x10, 0x0, 0x0, 0x100000}, 0xc, &(0x7f0000000480)={&(0x7f0000000440)={0x30, 0xb, 0x6, 0x101, 0x0, 0x0, {0x5, 0x0, 0x7}, [@IPSET_ATTR_SETNAME={0x9, 0x2, 'syz1\x00'}, @IPSET_ATTR_LINENO={0x8, 0x9, 0x1, 0x0, 0x7}, @IPSET_ATTR_PROTOCOL={0x5}]}, 0x30}, 0x1, 0x0, 0x0, 0x40}, 0x4)
chdir(&(0x7f0000000040)='./file0\x00')
r0 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x105142, 0x0)
sendmsg$IPSET_CMD_TEST(0xffffffffffffffff, &(0x7f0000000400)={&(0x7f00000002c0)={0x10, 0x0, 0x0, 0x1000000}, 0xc, &(0x7f00000003c0)={&(0x7f0000000300)={0x8c, 0xb, 0x6, 0x401, 0x0, 0x0, {0x7, 0x0, 0x6}, [@IPSET_ATTR_ADT={0x78, 0x8, 0x0, 0x1, [{0xc, 0x7, 0x0, 0x1, @IPSET_ATTR_PORT={0x6, 0x4, 0x1, 0x0, 0x4e21}}, {0x1c, 0x7, 0x0, 0x1, @IPSET_ATTR_IP={0x18, 0x1, 0x0, 0x1, @IPSET_ATTR_IPADDR_IPV6={0x14, 0x2, 0x1, 0x0, @rand_addr=' \x01\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x01'}}}, {0xc, 0x7, 0x0, 0x1, @IPSET_ATTR_MARK={0x8, 0xa, 0x1, 0x0, 0xfffffff8}}, {0x10, 0x7, 0x0, 0x1, @IPSET_ATTR_COMMENT={0x9, 0x1a, 'vfat\x00'}}, {0x10, 0x7, 0x0, 0x1, @IPSET_ATTR_ETHER={0xa, 0x11, @remote}}, {0x10, 0x7, 0x0, 0x1, @IPSET_ATTR_NAME={0x9, 0x12, 'syz0\x00'}}, {0x10, 0x7, 0x0, 0x1, @IPSET_ATTR_IP2={0xc, 0x14, 0x0, 0x1, @IPSET_ATTR_IPADDR_IPV4={0x8, 0x1, 0x1, 0x0, @multicast2}}}]}]}, 0x8c}, 0x1, 0x0, 0x0, 0x4004000}, 0xc091)
r1 = openat$cgroup_int(r0, &(0x7f0000000580)='memory.min\x00', 0x2, 0x0)
r2 = perf_event_open(&(0x7f0000001d80)={0x2, 0x80, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
mmap(&(0x7f0000ffc000/0x2000)=nil, 0x2000, 0x0, 0x13, r2, 0x0)
perf_event_open(&(0x7f0000001d80)={0x2, 0x80, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, r2, 0x2)
pwrite64(r2, &(0x7f0000000680)="092e50a8a34cdadcbb69d1abc37fe87c5e1aabde80b17c93fa0d23836124c288675c5dfd1e06215d6e563a3627f1ba3a8a9f1b2525a1a231033a3f54665a12afd15daa34b691a7202d60b04b932172c3d9ee0a7fd9fb8338473e5f10816032076f058d2030c01492add1f601e9f7b85b8fe5935c9bac216e97", 0x79, 0x9000000000000000)
mount$9p_fd(0x0, &(0x7f0000000500)='./file0\x00', &(0x7f0000000540), 0x10000, &(0x7f00000005c0)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}, 0x2c, {[{@cachetag={'cachetag', 0x3d, '\xca)'}}, {@cache_mmap}, {@posixacl}, {@debug={'debug', 0x3d, 0x132}}, {@posixacl}, {@posixacl}, {@loose}], [{@uid_eq={'uid', 0x3d, 0xee00}}]}})
ioctl$FS_IOC_RESVSP(r0, 0x40305828, &(0x7f0000000040)={0x0, 0x0, 0x0, 0x4000006})

[ 2716.938173] kmem_cache_create(9p-fcall-cache) failed with error -12
[ 2716.939075] CPU: 0 PID: 25162 Comm: syz-executor.5 Not tainted 5.10.172 #1
21:26:03 executing program 0:
syz_mount_image$vfat(&(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x0, 0x2, &(0x7f0000000180)=[{&(0x7f0000000140)="eb3c906d6b66732e66617400020801000470008400f801", 0x17}, {0x0, 0x0, 0x1000a00}], 0x0, &(0x7f0000000240)=ANY=[])
chdir(&(0x7f0000000040)='./file0\x00')
mount$cgroup(0x0, 0x0, &(0x7f0000000400), 0x0, 0x0)
r0 = syz_io_uring_setup(0x22, &(0x7f0000000680)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000180)=<r1=>0x0, &(0x7f0000002a40)=<r2=>0x0)
r3 = io_uring_register$IORING_REGISTER_PERSONALITY(r0, 0x9, 0x0, 0x0)
r4 = socket$nl_netfilter(0x10, 0x3, 0xc)
syz_io_uring_submit(r1, r2, &(0x7f0000000400)=@IORING_OP_WRITEV={0x2, 0x0, 0x0, @fd=r4, 0x0, 0x0, 0x0, 0x0, 0x0, {0x0, r3}}, 0x0)
r5 = syz_io_uring_setup(0x22, &(0x7f0000000680)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000180), &(0x7f0000002a40))
r6 = io_uring_register$IORING_REGISTER_PERSONALITY(r5, 0x9, 0x0, 0x0)
syz_io_uring_submit(r1, 0x0, &(0x7f0000000440)=@IORING_OP_FSYNC={0x3, 0x2, 0x0, @fd_index, 0x0, 0x0, 0x0, 0x0, 0x1, {0x0, r6}}, 0x2)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r7 = openat(0xffffffffffffff9c, &(0x7f00000002c0)='./file1\x00', 0x105142, 0x0)
r8 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0)
mount(&(0x7f0000000200)=ANY=[@ANYBLOB="2f6f651317868af191bdb2"], &(0x7f0000000240)='./file0\x00', &(0x7f0000000280)='nfsd\x00', 0x800000, &(0x7f0000000300)='cgroup\x00')
sendfile(r7, r8, 0x0, 0x100000001)
newfstatat(0xffffffffffffff9c, &(0x7f0000000340)='./file1\x00', &(0x7f0000000380), 0x400)

[ 2716.940004] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 2716.942429] Call Trace:
[ 2716.943172]  dump_stack+0x107/0x167
[ 2716.943189]  kmem_cache_create_usercopy.cold+0x17/0x65
[ 2716.943209]  p9_client_create+0xc2b/0x1090
[ 2716.943230]  ? p9_client_flush+0x430/0x430
[ 2716.943251]  ? lockdep_init_map_type+0x2c7/0x780
[ 2716.943264]  ? rcu_read_lock_sched_held+0x3e/0x80
21:26:03 executing program 3:
openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x105142, 0x0)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x400}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
pipe(&(0x7f00000001c0)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
mount$9p_fd(0x0, &(0x7f0000000040)='./file1\x00', &(0x7f00000000c0), 0xc0ed0000, &(0x7f0000000280)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {}, 0x2c, {[{@nodevmap}]}})
openat(r1, &(0x7f0000000180)='./file1\x00', 0x0, 0x0)

[ 2716.943281]  ? __raw_spin_lock_init+0x36/0x110
[ 2716.943299]  v9fs_session_init+0x1dd/0x16a0
21:26:03 executing program 1:
openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x105142, 0x0)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
pipe(&(0x7f00000001c0))
mount$9p_fd(0x0, &(0x7f0000000040)='./file1\x00', &(0x7f00000000c0), 0x4, &(0x7f0000000280)={'trans=fd,', {}, 0x2c, {}, 0x2c, {[{@nodevmap}]}})

[ 2716.943311]  ? irqentry_enter+0x26/0x60
[ 2716.943331]  ? asm_sysvec_apic_timer_interrupt+0x12/0x20
21:26:03 executing program 6:
r0 = syz_mount_image$vfat(&(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x0, 0x2, &(0x7f0000000180)=[{&(0x7f0000000140)="eb3c906d6b66732e66617400020801000470008400f801", 0x17}, {0x0, 0x0, 0x1000a00}], 0x0, &(0x7f0000000240)=ANY=[])
chdir(&(0x7f0000000040)='./file0\x00')
openat2(r0, &(0x7f0000000100)='./file0\x00', &(0x7f00000001c0)={0x40000, 0x81}, 0x18)
mount$cgroup(0x0, 0x0, &(0x7f0000000400), 0x0, 0x0)
r1 = syz_io_uring_setup(0x22, &(0x7f0000000680)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000180)=<r2=>0x0, &(0x7f0000002a40)=<r3=>0x0)
io_uring_register$IORING_REGISTER_PERSONALITY(r1, 0x9, 0x0, 0x0)
socket$nl_netfilter(0x10, 0x3, 0xc)
syz_io_uring_submit(r2, r3, 0x0, 0x0)
r4 = syz_io_uring_setup(0x22, &(0x7f0000000680)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000180), 0x0)
r5 = io_uring_register$IORING_REGISTER_PERSONALITY(r4, 0x9, 0x0, 0x0)
syz_io_uring_submit(r2, 0x0, &(0x7f0000000440)=@IORING_OP_FSYNC={0x3, 0x2, 0x0, @fd_index=0x9, 0x0, 0x0, 0x0, 0x0, 0x1, {0x0, r5}}, 0x2)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r6 = openat(0xffffffffffffff9c, &(0x7f00000002c0)='./file1\x00', 0x105142, 0x0)
r7 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0)
sendfile(r6, r7, 0x0, 0x100000001)
newfstatat(0xffffffffffffff9c, &(0x7f0000000340)='./file1\x00', &(0x7f0000000380), 0x400)

[ 2716.943344]  ? trace_hardirqs_on+0x5b/0x180
21:26:03 executing program 5:
openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x105142, 0x0)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
pipe(&(0x7f00000001c0)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
mount$9p_fd(0x0, &(0x7f0000000040)='./file1\x00', &(0x7f00000000c0), 0x0, &(0x7f0000000280)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}}) (fail_nth: 72)
openat(0xffffffffffffffff, 0x0, 0x0, 0x0)

[ 2716.943358]  ? v9fs_show_options+0x690/0x690
[ 2716.943387]  ? kasan_unpoison_shadow+0x33/0x50
[ 2716.943402]  ? __kasan_kmalloc.constprop.0+0xc9/0xd0
[ 2716.943420]  v9fs_mount+0x79/0x8f0
[ 2716.943436]  ? v9fs_write_inode+0x60/0x60
[ 2716.943450]  legacy_get_tree+0x105/0x220
[ 2716.943468]  vfs_get_tree+0x8e/0x300
21:26:03 executing program 2:
r0 = syz_mount_image$vfat(&(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x0, 0x2, &(0x7f0000000180)=[{&(0x7f0000000140)="eb3c906d6b66732e66617400020801000470008400f801", 0x17}, {0x0, 0x0, 0x1000a00}], 0x0, &(0x7f0000000240)=ANY=[])
r1 = perf_event_open(&(0x7f0000001d80)={0x2, 0x80, 0x1f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f00000001c0), 0x1}, 0x0, 0x0, 0x20}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
mmap(&(0x7f0000ffc000/0x2000)=nil, 0x2000, 0x0, 0x13, r1, 0x0)
perf_event_open(&(0x7f0000001d80)={0x2, 0x9a, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f0000000200), 0x5}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x80000001}, 0x0, 0x0, r1, 0x2)
sendfile(r0, r0, &(0x7f0000000000)=0x800000000007fff, 0xf3)
chdir(&(0x7f0000000040)='./file0\x00')
creat(&(0x7f0000000240)='./file1\x00', 0x4)
r2 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x105142, 0x0)
ioctl$FS_IOC_RESVSP(r2, 0x40305828, &(0x7f0000000040)={0x0, 0x0, 0x0, 0x4000006})

[ 2716.943485]  path_mount+0x13be/0x20b0
[ 2716.943503]  ? strncpy_from_user+0x9e/0x470
[ 2716.943518]  ? finish_automount+0xa40/0xa40
[ 2716.943535]  ? getname_flags.part.0+0x1dd/0x4f0
[ 2716.943548]  ? _copy_from_user+0xfb/0x1b0
[ 2716.943572]  __x64_sys_mount+0x282/0x300
21:26:03 executing program 6:
r0 = syz_mount_image$vfat(&(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x0, 0x2, &(0x7f0000000180)=[{&(0x7f0000000140)="eb3c906d6b66732e66617400020801000470008400f801", 0x17}, {0x0, 0x0, 0x1000a00}], 0x0, &(0x7f0000000240)=ANY=[])
chdir(&(0x7f0000000040)='./file0\x00')
openat2(r0, &(0x7f0000000100)='./file0\x00', &(0x7f00000001c0)={0x40000, 0x81}, 0x18)
mount$cgroup(0x0, 0x0, &(0x7f0000000400), 0x0, 0x0)
r1 = syz_io_uring_setup(0x22, &(0x7f0000000680)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000180)=<r2=>0x0, &(0x7f0000002a40)=<r3=>0x0)
io_uring_register$IORING_REGISTER_PERSONALITY(r1, 0x9, 0x0, 0x0)
socket$nl_netfilter(0x10, 0x3, 0xc)
syz_io_uring_submit(r2, r3, 0x0, 0x0)
r4 = syz_io_uring_setup(0x22, &(0x7f0000000680)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000180), 0x0)
r5 = io_uring_register$IORING_REGISTER_PERSONALITY(r4, 0x9, 0x0, 0x0)
syz_io_uring_submit(r2, 0x0, &(0x7f0000000440)=@IORING_OP_FSYNC={0x3, 0x2, 0x0, @fd_index=0x9, 0x0, 0x0, 0x0, 0x0, 0x1, {0x0, r5}}, 0x2)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r6 = openat(0xffffffffffffff9c, &(0x7f00000002c0)='./file1\x00', 0x105142, 0x0)
r7 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0)
sendfile(r6, r7, 0x0, 0x100000001)
newfstatat(0xffffffffffffff9c, &(0x7f0000000340)='./file1\x00', &(0x7f0000000380), 0x400)

[ 2716.943588]  ? copy_mnt_ns+0xa00/0xa00
[ 2716.943607]  ? rcu_read_lock_sched_held+0x3e/0x80
[ 2716.943625]  do_syscall_64+0x33/0x40
[ 2716.943641]  entry_SYSCALL_64_after_hwframe+0x61/0xc6
[ 2716.943652] RIP: 0033:0x7f38308e8b19
[ 2716.943667] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 2716.943674] RSP: 002b:00007f382de5e188 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5
[ 2716.943689] RAX: ffffffffffffffda RBX: 00007f38309fbf60 RCX: 00007f38308e8b19
[ 2716.943698] RDX: 00000000200000c0 RSI: 0000000020000040 RDI: 0000000000000000
[ 2716.943706] RBP: 00007f382de5e1d0 R08: 0000000020000280 R09: 0000000000000000
[ 2716.943714] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[ 2716.943722] R13: 00007ffca2bf07df R14: 00007f382de5e300 R15: 0000000000022000
[ 2717.102525] 9pnet: Insufficient options for proto=fd
[ 2717.108224] 9pnet: Insufficient options for proto=fd
[ 2717.119447] FAULT_INJECTION: forcing a failure.
[ 2717.119447] name failslab, interval 1, probability 0, space 0, times 0
[ 2717.119465] CPU: 0 PID: 25295 Comm: syz-executor.5 Not tainted 5.10.172 #1
[ 2717.119473] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 2717.119479] Call Trace:
[ 2717.119500]  dump_stack+0x107/0x167
[ 2717.119521]  should_fail.cold+0x5/0xa
[ 2717.119539]  ? create_object.isra.0+0x3a/0xa20
[ 2717.119557]  should_failslab+0x5/0x20
[ 2717.119571]  kmem_cache_alloc+0x5b/0x360
[ 2717.119594]  create_object.isra.0+0x3a/0xa20
[ 2717.119609]  ? __kasan_kmalloc.constprop.0+0xc9/0xd0
[ 2717.119635]  kmem_cache_alloc+0x159/0x360
[ 2717.119660]  __kernfs_new_node+0xd4/0x850
[ 2717.119682]  ? kernfs_dop_revalidate+0x3a0/0x3a0
[ 2717.119704]  ? __mutex_unlock_slowpath+0xe1/0x600
[ 2717.119725]  ? wait_for_completion_io+0x270/0x270
[ 2717.119744]  ? kernfs_next_descendant_post+0x1a7/0x2a0
[ 2717.119770]  kernfs_new_node+0x93/0x120
[ 2717.119794]  __kernfs_create_file+0x51/0x350
[ 2717.119818]  sysfs_add_file_mode_ns+0x221/0x560
[ 2717.119845]  internal_create_group+0x324/0xb30
[ 2717.119870]  ? sysfs_remove_group+0x170/0x170
[ 2717.119883]  ? kernfs_name_hash+0xe7/0x110
[ 2717.119904]  ? kernfs_find_ns+0x256/0x380
[ 2717.119930]  sysfs_slab_add+0x188/0x200
[ 2717.119948]  __kmem_cache_create+0x3db/0x520
[ 2717.119969]  kmem_cache_create_usercopy+0x1db/0x2f0
[ 2717.119992]  p9_client_create+0xc2b/0x1090
[ 2717.120019]  ? p9_client_flush+0x430/0x430
[ 2717.120048]  ? lockdep_init_map_type+0x2c7/0x780
[ 2717.120062]  ? rcu_read_lock_sched_held+0x3e/0x80
[ 2717.120082]  ? __raw_spin_lock_init+0x36/0x110
[ 2717.120103]  v9fs_session_init+0x1dd/0x16a0
[ 2717.120116]  ? irqentry_enter+0x26/0x60
[ 2717.120140]  ? asm_sysvec_apic_timer_interrupt+0x12/0x20
[ 2717.120154]  ? trace_hardirqs_on+0x5b/0x180
[ 2717.120171]  ? v9fs_show_options+0x690/0x690
[ 2717.120207]  ? kasan_unpoison_shadow+0x33/0x50
[ 2717.120223]  ? __kasan_kmalloc.constprop.0+0xc9/0xd0
[ 2717.120243]  v9fs_mount+0x79/0x8f0
[ 2717.120261]  ? v9fs_write_inode+0x60/0x60
[ 2717.120275]  legacy_get_tree+0x105/0x220
[ 2717.120288]  ? path_mount+0x13b6/0x20b0
[ 2717.120306]  vfs_get_tree+0x8e/0x300
[ 2717.120323]  path_mount+0x13be/0x20b0
[ 2717.120343]  ? strncpy_from_user+0x9e/0x470
[ 2717.120360]  ? finish_automount+0xa40/0xa40
[ 2717.120394]  ? getname_flags.part.0+0x1dd/0x4f0
[ 2717.120409]  ? _copy_from_user+0xfb/0x1b0
[ 2717.120438]  __x64_sys_mount+0x282/0x300
[ 2717.120455]  ? copy_mnt_ns+0xa00/0xa00
[ 2717.120476]  ? rcu_read_lock_sched_held+0x3e/0x80
[ 2717.120499]  do_syscall_64+0x33/0x40
[ 2717.120515]  entry_SYSCALL_64_after_hwframe+0x61/0xc6
[ 2717.120527] RIP: 0033:0x7f38308e8b19
[ 2717.120542] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 2717.120550] RSP: 002b:00007f382de5e188 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5
[ 2717.120567] RAX: ffffffffffffffda RBX: 00007f38309fbf60 RCX: 00007f38308e8b19
[ 2717.120576] RDX: 00000000200000c0 RSI: 0000000020000040 RDI: 0000000000000000
[ 2717.120585] RBP: 00007f382de5e1d0 R08: 0000000020000280 R09: 0000000000000000
[ 2717.120594] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[ 2717.120603] R13: 00007ffca2bf07df R14: 00007f382de5e300 R15: 0000000000022000
[ 2717.122736] 9pnet: Insufficient options for proto=fd
21:26:21 executing program 7:
perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
io_setup(0x7f, &(0x7f00000002c0)=<r0=>0x0)
io_pgetevents(r0, 0x1, 0x1, &(0x7f0000000000)=[{}], 0x0, 0x0)
io_submit(r0, 0x0, 0x0)

21:26:21 executing program 4:
openat$vcs(0xffffffffffffff9c, &(0x7f0000000040), 0x0, 0x0)
openat$sr(0xffffffffffffff9c, &(0x7f00000035c0), 0x0, 0x0)
openat$sr(0xffffffffffffff9c, &(0x7f00000000c0), 0x224400, 0x0)
r0 = openat$rtc(0xffffffffffffff9c, &(0x7f0000000200), 0x0, 0x0)
ioctl$RTC_SET_TIME(r0, 0x4024700a, &(0x7f0000000000)={0x32, 0x22, 0x12, 0x11, 0x7, 0x7, 0x1, 0x74})
pipe(&(0x7f00000001c0))
open(&(0x7f00000016c0)='./cgroup.net/cgroup.procs\x00', 0x0, 0x0)
r1 = perf_event_open(&(0x7f0000001d80)={0x2, 0x80, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
mmap(&(0x7f0000ffc000/0x2000)=nil, 0x2000, 0x0, 0x13, r1, 0x0)
perf_event_open(&(0x7f0000001d80)={0x2, 0x80, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, r1, 0x2)
fsetxattr$trusted_overlay_upper(r1, &(0x7f0000000080), &(0x7f0000000380)=ANY=[@ANYBLOB="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"], 0x10b, 0x3)
pselect6(0x40, &(0x7f0000000180), &(0x7f00000001c0)={0x3fc}, 0x0, 0x0, 0x0)

21:26:21 executing program 1:
openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x105142, 0x0)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
pipe(&(0x7f00000001c0))
mount$9p_fd(0x0, &(0x7f0000000040)='./file1\x00', &(0x7f00000000c0), 0x5, &(0x7f0000000280)={'trans=fd,', {}, 0x2c, {}, 0x2c, {[{@nodevmap}]}})

21:26:21 executing program 0:
syz_mount_image$vfat(&(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x0, 0x2, &(0x7f0000000180)=[{&(0x7f0000000140)="eb3c906d6b66732e66617400020801000470008400f801", 0x17}, {0x0, 0x0, 0x1000a00}], 0x0, &(0x7f0000000240)=ANY=[])
chdir(&(0x7f0000000040)='./file0\x00')
mount$cgroup(0x0, 0x0, &(0x7f0000000400), 0x0, 0x0)
r0 = syz_io_uring_setup(0x22, &(0x7f0000000680)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000180)=<r1=>0x0, &(0x7f0000002a40)=<r2=>0x0)
r3 = io_uring_register$IORING_REGISTER_PERSONALITY(r0, 0x9, 0x0, 0x0)
r4 = socket$nl_netfilter(0x10, 0x3, 0xc)
syz_io_uring_submit(r1, r2, &(0x7f0000000400)=@IORING_OP_WRITEV={0x2, 0x0, 0x0, @fd=r4, 0x0, 0x0, 0x0, 0x0, 0x0, {0x0, r3}}, 0x0)
r5 = syz_io_uring_setup(0x22, &(0x7f0000000680)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000180), &(0x7f0000002a40))
r6 = io_uring_register$IORING_REGISTER_PERSONALITY(r5, 0x9, 0x0, 0x0)
syz_io_uring_submit(r1, 0x0, &(0x7f0000000440)=@IORING_OP_FSYNC={0x3, 0x2, 0x0, @fd_index=0x9, 0x0, 0x0, 0x0, 0x0, 0x0, {0x0, r6}}, 0x2)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r7 = openat(0xffffffffffffff9c, &(0x7f00000002c0)='./file1\x00', 0x105142, 0x0)
r8 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0)
mount(&(0x7f0000000200)=ANY=[@ANYBLOB="2f6f651317868af191bdb2"], &(0x7f0000000240)='./file0\x00', &(0x7f0000000280)='nfsd\x00', 0x800000, &(0x7f0000000300)='cgroup\x00')
sendfile(r7, r8, 0x0, 0x100000001)
newfstatat(0xffffffffffffff9c, &(0x7f0000000340)='./file1\x00', &(0x7f0000000380), 0x400)

21:26:21 executing program 3:
openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x105142, 0x0)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x400}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
pipe(&(0x7f00000001c0)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
mount$9p_fd(0x0, &(0x7f0000000040)='./file1\x00', &(0x7f00000000c0), 0xf6ffffff, &(0x7f0000000280)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {}, 0x2c, {[{@nodevmap}]}})
openat(r1, &(0x7f0000000180)='./file1\x00', 0x0, 0x0)

21:26:21 executing program 2:
syz_mount_image$vfat(&(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x0, 0x2, &(0x7f0000000180)=[{&(0x7f0000000140)="eb3c906d6b66732e66617400020801000470008400f801", 0x17}, {0x0, 0x0, 0x1000a00}], 0x0, &(0x7f0000000240)=ANY=[])
chdir(&(0x7f0000000040)='./file0\x00')
setxattr$trusted_overlay_origin(&(0x7f0000000000)='./file0\x00', &(0x7f0000000100), &(0x7f00000001c0), 0x2, 0x2)
ioctl$FS_IOC_RESVSP(0xffffffffffffffff, 0x40305828, &(0x7f0000000040)={0x0, 0x0, 0x0, 0x4000006})

21:26:21 executing program 5:
openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x105142, 0x0)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
pipe(&(0x7f00000001c0)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
mount$9p_fd(0x0, &(0x7f0000000040)='./file1\x00', &(0x7f00000000c0), 0x0, &(0x7f0000000280)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}}) (fail_nth: 73)
openat(0xffffffffffffffff, 0x0, 0x0, 0x0)

21:26:21 executing program 6:
r0 = syz_mount_image$vfat(&(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x0, 0x2, &(0x7f0000000180)=[{&(0x7f0000000140)="eb3c906d6b66732e66617400020801000470008400f801", 0x17}, {0x0, 0x0, 0x1000a00}], 0x0, &(0x7f0000000240)=ANY=[])
chdir(&(0x7f0000000040)='./file0\x00')
openat2(r0, &(0x7f0000000100)='./file0\x00', &(0x7f00000001c0)={0x40000, 0x81}, 0x18)
mount$cgroup(0x0, 0x0, &(0x7f0000000400), 0x0, 0x0)
r1 = syz_io_uring_setup(0x22, &(0x7f0000000680)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000180)=<r2=>0x0, &(0x7f0000002a40)=<r3=>0x0)
io_uring_register$IORING_REGISTER_PERSONALITY(r1, 0x9, 0x0, 0x0)
socket$nl_netfilter(0x10, 0x3, 0xc)
syz_io_uring_submit(r2, r3, 0x0, 0x0)
syz_io_uring_setup(0x22, &(0x7f0000000680)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000180), &(0x7f0000002a40))
r4 = io_uring_register$IORING_REGISTER_PERSONALITY(0xffffffffffffffff, 0x9, 0x0, 0x0)
syz_io_uring_submit(r2, 0x0, &(0x7f0000000440)=@IORING_OP_FSYNC={0x3, 0x2, 0x0, @fd_index=0x9, 0x0, 0x0, 0x0, 0x0, 0x1, {0x0, r4}}, 0x2)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r5 = openat(0xffffffffffffff9c, &(0x7f00000002c0)='./file1\x00', 0x105142, 0x0)
r6 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0)
sendfile(r5, r6, 0x0, 0x100000001)
newfstatat(0xffffffffffffff9c, &(0x7f0000000340)='./file1\x00', &(0x7f0000000380), 0x400)

[ 2735.208402] 9pnet: Insufficient options for proto=fd
[ 2735.309473] FAULT_INJECTION: forcing a failure.
[ 2735.309473] name failslab, interval 1, probability 0, space 0, times 0
[ 2735.311559] CPU: 1 PID: 25431 Comm: syz-executor.5 Not tainted 5.10.172 #1
[ 2735.312484] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 2735.313681] Call Trace:
[ 2735.314057]  dump_stack+0x107/0x167
[ 2735.314557]  should_fail.cold+0x5/0xa
[ 2735.315072]  ? __kernfs_new_node+0xd4/0x850
[ 2735.315655]  should_failslab+0x5/0x20
[ 2735.316176]  kmem_cache_alloc+0x5b/0x360
[ 2735.316748]  __kernfs_new_node+0xd4/0x850
[ 2735.317315]  ? kernfs_dop_revalidate+0x3a0/0x3a0
[ 2735.317955]  ? __mutex_unlock_slowpath+0xe1/0x600
[ 2735.318583]  ? wait_for_completion_io+0x270/0x270
[ 2735.319230]  ? kernfs_next_descendant_post+0x1a7/0x2a0
[ 2735.319916]  kernfs_new_node+0x93/0x120
[ 2735.320458]  __kernfs_create_file+0x51/0x350
[ 2735.321061]  sysfs_add_file_mode_ns+0x221/0x560
[ 2735.321659]  internal_create_group+0x324/0xb30
[ 2735.322252]  ? sysfs_remove_group+0x170/0x170
[ 2735.322852]  ? kernfs_find_ns+0x256/0x380
[ 2735.323401]  sysfs_slab_add+0x188/0x200
[ 2735.323937]  __kmem_cache_create+0x3db/0x520
[ 2735.324518]  kmem_cache_create_usercopy+0x1db/0x2f0
[ 2735.325265]  p9_client_create+0xc2b/0x1090
[ 2735.325880]  ? p9_client_flush+0x430/0x430
[ 2735.326451]  ? lockdep_init_map_type+0x2c7/0x780
[ 2735.327112]  ? rcu_read_lock_sched_held+0x3e/0x80
[ 2735.327784]  ? __raw_spin_lock_init+0x36/0x110
[ 2735.328402]  v9fs_session_init+0x1dd/0x16a0
[ 2735.329033]  ? kmem_cache_alloc_trace+0x151/0x360
[ 2735.329684]  ? v9fs_show_options+0x690/0x690
[ 2735.330297]  ? kasan_unpoison_shadow+0x33/0x50
[ 2735.330909]  ? __kasan_kmalloc.constprop.0+0xc9/0xd0
[ 2735.331579]  v9fs_mount+0x79/0x8f0
[ 2735.332063]  ? v9fs_write_inode+0x60/0x60
[ 2735.332662]  legacy_get_tree+0x105/0x220
[ 2735.333253]  vfs_get_tree+0x8e/0x300
[ 2735.333798]  path_mount+0x13be/0x20b0
[ 2735.334327]  ? strncpy_from_user+0x9e/0x470
[ 2735.334915]  ? finish_automount+0xa40/0xa40
[ 2735.335479]  ? getname_flags.part.0+0x1dd/0x4f0
[ 2735.336113]  ? _copy_from_user+0xfb/0x1b0
[ 2735.336768]  __x64_sys_mount+0x282/0x300
[ 2735.337353]  ? copy_mnt_ns+0xa00/0xa00
[ 2735.337931]  ? rcu_read_lock_sched_held+0x3e/0x80
[ 2735.338594]  do_syscall_64+0x33/0x40
[ 2735.339101]  entry_SYSCALL_64_after_hwframe+0x61/0xc6
[ 2735.339789] RIP: 0033:0x7f38308e8b19
[ 2735.340296] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 2735.342792] RSP: 002b:00007f382de5e188 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5
[ 2735.343783] RAX: ffffffffffffffda RBX: 00007f38309fbf60 RCX: 00007f38308e8b19
[ 2735.344756] RDX: 00000000200000c0 RSI: 0000000020000040 RDI: 0000000000000000
[ 2735.345667] RBP: 00007f382de5e1d0 R08: 0000000020000280 R09: 0000000000000000
[ 2735.346591] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[ 2735.347502] R13: 00007ffca2bf07df R14: 00007f382de5e300 R15: 0000000000022000
21:26:21 executing program 2:
chdir(&(0x7f0000000040)='./file0\x00')
openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x80180, 0x146)
r0 = syz_open_dev$vcsn(&(0x7f0000000000), 0x2, 0x1)
openat(r0, &(0x7f0000000080)='./file1\x00', 0x400, 0x81)

21:26:21 executing program 6:
r0 = syz_mount_image$vfat(&(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x0, 0x2, &(0x7f0000000180)=[{&(0x7f0000000140)="eb3c906d6b66732e66617400020801000470008400f801", 0x17}, {0x0, 0x0, 0x1000a00}], 0x0, &(0x7f0000000240)=ANY=[])
chdir(&(0x7f0000000040)='./file0\x00')
openat2(r0, &(0x7f0000000100)='./file0\x00', &(0x7f00000001c0)={0x40000, 0x81}, 0x18)
mount$cgroup(0x0, 0x0, &(0x7f0000000400), 0x0, 0x0)
r1 = syz_io_uring_setup(0x22, &(0x7f0000000680)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000180)=<r2=>0x0, &(0x7f0000002a40)=<r3=>0x0)
io_uring_register$IORING_REGISTER_PERSONALITY(r1, 0x9, 0x0, 0x0)
socket$nl_netfilter(0x10, 0x3, 0xc)
syz_io_uring_submit(r2, r3, 0x0, 0x0)
syz_io_uring_setup(0x22, &(0x7f0000000680)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000180), &(0x7f0000002a40))
r4 = io_uring_register$IORING_REGISTER_PERSONALITY(0xffffffffffffffff, 0x9, 0x0, 0x0)
syz_io_uring_submit(r2, 0x0, &(0x7f0000000440)=@IORING_OP_FSYNC={0x3, 0x2, 0x0, @fd_index=0x9, 0x0, 0x0, 0x0, 0x0, 0x1, {0x0, r4}}, 0x2)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r5 = openat(0xffffffffffffff9c, &(0x7f00000002c0)='./file1\x00', 0x105142, 0x0)
r6 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0)
sendfile(r5, r6, 0x0, 0x100000001)
newfstatat(0xffffffffffffff9c, &(0x7f0000000340)='./file1\x00', &(0x7f0000000380), 0x400)

21:26:21 executing program 0:
syz_mount_image$vfat(&(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x0, 0x2, &(0x7f0000000180)=[{&(0x7f0000000140)="eb3c906d6b66732e66617400020801000470008400f801", 0x17}, {0x0, 0x0, 0x1000a00}], 0x0, &(0x7f0000000240)=ANY=[])
chdir(&(0x7f0000000040)='./file0\x00')
mount$cgroup(0x0, 0x0, &(0x7f0000000400), 0x0, 0x0)
r0 = syz_io_uring_setup(0x22, &(0x7f0000000680)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000180)=<r1=>0x0, &(0x7f0000002a40)=<r2=>0x0)
r3 = io_uring_register$IORING_REGISTER_PERSONALITY(r0, 0x9, 0x0, 0x0)
r4 = socket$nl_netfilter(0x10, 0x3, 0xc)
syz_io_uring_submit(r1, r2, &(0x7f0000000400)=@IORING_OP_WRITEV={0x2, 0x0, 0x0, @fd=r4, 0x0, 0x0, 0x0, 0x0, 0x0, {0x0, r3}}, 0x0)
r5 = syz_io_uring_setup(0x22, &(0x7f0000000680)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000180), &(0x7f0000002a40))
r6 = io_uring_register$IORING_REGISTER_PERSONALITY(r5, 0x9, 0x0, 0x0)
syz_io_uring_submit(r1, 0x0, &(0x7f0000000440)=@IORING_OP_FSYNC={0x3, 0x2, 0x0, @fd_index=0x9, 0x0, 0x0, 0x0, 0x0, 0x0, {0x0, r6}}, 0x2)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r7 = openat(0xffffffffffffff9c, &(0x7f00000002c0)='./file1\x00', 0x105142, 0x0)
r8 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0)
mount(&(0x7f0000000200)=ANY=[@ANYBLOB="2f6f651317868af191bdb2"], &(0x7f0000000240)='./file0\x00', &(0x7f0000000280)='nfsd\x00', 0x800000, &(0x7f0000000300)='cgroup\x00')
sendfile(r7, r8, 0x0, 0x100000001)
newfstatat(0xffffffffffffff9c, &(0x7f0000000340)='./file1\x00', &(0x7f0000000380), 0x400)

21:26:21 executing program 3:
openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x105142, 0x0)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x400}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
pipe(&(0x7f00000001c0)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
mount$9p_fd(0x0, &(0x7f0000000040)='./file1\x00', &(0x7f00000000c0), 0xffffff8c, &(0x7f0000000280)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {}, 0x2c, {[{@nodevmap}]}})
openat(r1, &(0x7f0000000180)='./file1\x00', 0x0, 0x0)

21:26:21 executing program 4:
openat$vcs(0xffffffffffffff9c, &(0x7f0000000040), 0x0, 0x0)
r0 = openat$thread_pidfd(0xffffffffffffff9c, &(0x7f0000000480), 0x0, 0x0)
readahead(r0, 0x7, 0x401)
r1 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x105142, 0x0)
perf_event_open(&(0x7f0000001d80)={0x2, 0x80, 0x93, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
mlock(&(0x7f0000ffc000/0x4000)=nil, 0x4000)
perf_event_open(&(0x7f0000000000)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x6, 0xffffffffffffffff}, 0xca0cc, 0x7}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
ioctl$EXT4_IOC_GROUP_EXTEND(r1, 0x40086607, &(0x7f00000004c0))
openat$sr(0xffffffffffffff9c, &(0x7f00000035c0), 0x0, 0x0)
openat$sr(0xffffffffffffff9c, &(0x7f00000000c0), 0x224400, 0x0)
openat$rtc(0xffffffffffffff9c, &(0x7f0000000200), 0x0, 0x0)
pipe(&(0x7f00000001c0))
open(&(0x7f00000016c0)='./cgroup.net/cgroup.procs\x00', 0x0, 0x0)
pselect6(0x40, &(0x7f0000000180)={0x0, 0x4, 0x0, 0x2}, &(0x7f00000001c0)={0x59b, 0x0, 0x1}, 0x0, 0x0, 0x0)

21:26:21 executing program 1:
openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x105142, 0x0)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
pipe(&(0x7f00000001c0))
mount$9p_fd(0x0, &(0x7f0000000040)='./file1\x00', &(0x7f00000000c0), 0x6, &(0x7f0000000280)={'trans=fd,', {}, 0x2c, {}, 0x2c, {[{@nodevmap}]}})

21:26:21 executing program 2:
syz_mount_image$vfat(&(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x0, 0x2, &(0x7f0000000180)=[{&(0x7f0000000140)="eb3c906d6b66732e66617400020801000470008400f801", 0x17}, {0x0, 0x0, 0x1000a00}], 0x0, &(0x7f0000000240)=ANY=[])
chdir(&(0x7f0000000000)='./file1/file0\x00')
chdir(&(0x7f0000000040)='./file0\x00')
r0 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x105142, 0x0)
ioctl$FS_IOC_RESVSP(r0, 0x40305828, &(0x7f0000000040)={0x0, 0x0, 0x0, 0x4000006})

[ 2735.516257] kmem_cache_create(9p-fcall-cache) failed with error -12
[ 2735.525838] CPU: 1 PID: 25431 Comm: syz-executor.5 Not tainted 5.10.172 #1
[ 2735.526788] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 2735.527874] Call Trace:
[ 2735.528235]  dump_stack+0x107/0x167
[ 2735.528740]  kmem_cache_create_usercopy.cold+0x17/0x65
[ 2735.529434]  p9_client_create+0xc2b/0x1090
[ 2735.530001]  ? p9_client_flush+0x430/0x430
[ 2735.530555]  ? lockdep_init_map_type+0x2c7/0x780
[ 2735.531162]  ? rcu_read_lock_sched_held+0x3e/0x80
[ 2735.531806]  ? __raw_spin_lock_init+0x36/0x110
[ 2735.532420]  v9fs_session_init+0x1dd/0x16a0
[ 2735.533037]  ? kmem_cache_alloc_trace+0x151/0x360
[ 2735.533677]  ? v9fs_show_options+0x690/0x690
[ 2735.534287]  ? kasan_unpoison_shadow+0x33/0x50
[ 2735.534900]  ? __kasan_kmalloc.constprop.0+0xc9/0xd0
[ 2735.535567]  v9fs_mount+0x79/0x8f0
[ 2735.536048]  ? v9fs_write_inode+0x60/0x60
[ 2735.536602]  legacy_get_tree+0x105/0x220
[ 2735.537172]  vfs_get_tree+0x8e/0x300
[ 2735.537658]  path_mount+0x13be/0x20b0
[ 2735.538169]  ? strncpy_from_user+0x9e/0x470
[ 2735.538740]  ? finish_automount+0xa40/0xa40
[ 2735.539311]  ? getname_flags.part.0+0x1dd/0x4f0
[ 2735.539923]  ? _copy_from_user+0xfb/0x1b0
[ 2735.540483]  __x64_sys_mount+0x282/0x300
[ 2735.541047]  ? copy_mnt_ns+0xa00/0xa00
[ 2735.541579]  ? rcu_read_lock_sched_held+0x3e/0x80
[ 2735.542228]  do_syscall_64+0x33/0x40
[ 2735.542734]  entry_SYSCALL_64_after_hwframe+0x61/0xc6
[ 2735.543454] RIP: 0033:0x7f38308e8b19
[ 2735.543956] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 2735.546336] RSP: 002b:00007f382de5e188 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5
[ 2735.547336] RAX: ffffffffffffffda RBX: 00007f38309fbf60 RCX: 00007f38308e8b19
[ 2735.548257] RDX: 00000000200000c0 RSI: 0000000020000040 RDI: 0000000000000000
[ 2735.553277] RBP: 00007f382de5e1d0 R08: 0000000020000280 R09: 0000000000000000
[ 2735.554267] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[ 2735.555200] R13: 00007ffca2bf07df R14: 00007f382de5e300 R15: 0000000000022000
[ 2735.746845] 9pnet: Insufficient options for proto=fd
21:26:22 executing program 5:
openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x105142, 0x0)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
pipe(&(0x7f00000001c0)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
mount$9p_fd(0x0, &(0x7f0000000040)='./file1\x00', &(0x7f00000000c0), 0x0, &(0x7f0000000280)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}}) (fail_nth: 74)
openat(0xffffffffffffffff, 0x0, 0x0, 0x0)

[ 2735.972145] FAULT_INJECTION: forcing a failure.
[ 2735.972145] name failslab, interval 1, probability 0, space 0, times 0
[ 2735.974289] CPU: 1 PID: 25672 Comm: syz-executor.5 Not tainted 5.10.172 #1
[ 2735.975198] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 2735.976281] Call Trace:
[ 2735.976671]  dump_stack+0x107/0x167
[ 2735.977170]  should_fail.cold+0x5/0xa
[ 2735.977685]  ? create_object.isra.0+0x3a/0xa20
[ 2735.978299]  should_failslab+0x5/0x20
[ 2735.978810]  kmem_cache_alloc+0x5b/0x360
[ 2735.979357]  create_object.isra.0+0x3a/0xa20
[ 2735.979937]  ? __kasan_kmalloc.constprop.0+0xc9/0xd0
[ 2735.980615]  kmem_cache_alloc+0x159/0x360
[ 2735.981432]  __kernfs_new_node+0xd4/0x850
[ 2735.981995]  ? kernfs_dop_revalidate+0x3a0/0x3a0
[ 2735.982690]  ? __mutex_unlock_slowpath+0xe1/0x600
[ 2735.983382]  ? asm_sysvec_apic_timer_interrupt+0x12/0x20
[ 2735.984110]  ? wait_for_completion_io+0x270/0x270
[ 2735.984895]  ? kernfs_next_descendant_post+0x1a7/0x2a0
[ 2735.985706]  kernfs_new_node+0x93/0x120
[ 2735.986252]  __kernfs_create_file+0x51/0x350
[ 2735.986892]  sysfs_add_file_mode_ns+0x221/0x560
[ 2735.987570]  internal_create_group+0x324/0xb30
[ 2735.988192]  ? sysfs_remove_group+0x170/0x170
[ 2735.988871]  ? kernfs_name_hash+0xe7/0x110
[ 2735.989541]  ? kernfs_find_ns+0x256/0x380
[ 2735.990109]  sysfs_slab_add+0x188/0x200
[ 2735.990708]  __kmem_cache_create+0x3db/0x520
[ 2735.991303]  kmem_cache_create_usercopy+0x1db/0x2f0
[ 2735.992078]  p9_client_create+0xc2b/0x1090
[ 2735.992736]  ? p9_client_flush+0x430/0x430
[ 2735.993389]  ? lockdep_init_map_type+0x2c7/0x780
[ 2735.994017]  ? rcu_read_lock_sched_held+0x3e/0x80
[ 2735.994765]  ? __raw_spin_lock_init+0x36/0x110
[ 2735.995439]  v9fs_session_init+0x1dd/0x16a0
[ 2735.996028]  ? kmem_cache_alloc_trace+0x151/0x360
[ 2735.996754]  ? v9fs_show_options+0x690/0x690
[ 2735.997469]  ? kasan_unpoison_shadow+0x33/0x50
[ 2735.998083]  ? __kasan_kmalloc.constprop.0+0xc9/0xd0
[ 2735.998869]  v9fs_mount+0x79/0x8f0
[ 2735.999406]  ? v9fs_write_inode+0x60/0x60
[ 2735.999974]  legacy_get_tree+0x105/0x220
[ 2736.000590]  vfs_get_tree+0x8e/0x300
[ 2736.001131]  path_mount+0x13be/0x20b0
[ 2736.001707]  ? strncpy_from_user+0x9e/0x470
[ 2736.002296]  ? finish_automount+0xa40/0xa40
[ 2736.002964]  ? getname_flags.part.0+0x1dd/0x4f0
[ 2736.003620]  ? _copy_from_user+0xfb/0x1b0
[ 2736.004224]  __x64_sys_mount+0x282/0x300
[ 2736.004877]  ? copy_mnt_ns+0xa00/0xa00
[ 2736.005465]  ? rcu_read_lock_sched_held+0x3e/0x80
[ 2736.006099]  do_syscall_64+0x33/0x40
[ 2736.006750]  entry_SYSCALL_64_after_hwframe+0x61/0xc6
[ 2736.007482] RIP: 0033:0x7f38308e8b19
[ 2736.007980] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 2736.010577] RSP: 002b:00007f382de5e188 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5
[ 2736.011604] RAX: ffffffffffffffda RBX: 00007f38309fbf60 RCX: 00007f38308e8b19
[ 2736.012598] RDX: 00000000200000c0 RSI: 0000000020000040 RDI: 0000000000000000
[ 2736.013614] RBP: 00007f382de5e1d0 R08: 0000000020000280 R09: 0000000000000000
[ 2736.014656] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[ 2736.015631] R13: 00007ffca2bf07df R14: 00007f382de5e300 R15: 0000000000022000
21:26:22 executing program 7:
perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
io_setup(0x7f, &(0x7f00000002c0)=<r0=>0x0)
io_pgetevents(r0, 0x1, 0x1, &(0x7f0000000000)=[{}], 0x0, 0x0)
io_submit(r0, 0x0, 0x0)

21:26:22 executing program 3:
openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x105142, 0x0)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x400}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
pipe(&(0x7f00000001c0)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
mount$9p_fd(0x0, &(0x7f0000000040)='./file1\x00', &(0x7f00000000c0), 0xfffffff6, &(0x7f0000000280)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {}, 0x2c, {[{@nodevmap}]}})
openat(r1, &(0x7f0000000180)='./file1\x00', 0x0, 0x0)

21:26:22 executing program 1:
openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x105142, 0x0)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
pipe(&(0x7f00000001c0))
mount$9p_fd(0x0, &(0x7f0000000040)='./file1\x00', &(0x7f00000000c0), 0x7, &(0x7f0000000280)={'trans=fd,', {}, 0x2c, {}, 0x2c, {[{@nodevmap}]}})

21:26:22 executing program 4:
openat$sr(0xffffffffffffff9c, &(0x7f00000035c0), 0x0, 0x0)
r0 = openat$sr(0xffffffffffffff9c, &(0x7f00000000c0), 0x224400, 0x0)
openat$rtc(0xffffffffffffff9c, &(0x7f0000000200), 0x0, 0x0)
pipe(&(0x7f00000001c0)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
mount$9p_fd(0x0, &(0x7f0000000040)='./file1\x00', &(0x7f00000000c0), 0x0, &(0x7f0000000280)={'trans=fd,', {'rfdno', 0x3d, r1}, 0x2c, {'wfdno', 0x3d, r2}, 0x2c, {[{@nodevmap}]}})
splice(r2, &(0x7f0000000000)=0xa65, r0, &(0x7f0000000080)=0x3, 0x9, 0xc)
ioctl$RTC_UIE_ON(r1, 0x7003)
pipe(&(0x7f00000001c0))
open(&(0x7f00000016c0)='./cgroup.net/cgroup.procs\x00', 0x0, 0x0)
pselect6(0x40, &(0x7f0000000180), &(0x7f00000001c0)={0x3fc}, 0x0, 0x0, 0x0)

[ 2736.100159] 9pnet: Insufficient options for proto=fd
21:26:22 executing program 2:
r0 = syz_mount_image$vfat(&(0x7f0000000080), &(0x7f00000000c0)='./file1\x00', 0x100000000, 0x0, &(0x7f0000000180), 0x2300081, &(0x7f0000000240)=ANY=[])
r1 = fcntl$dupfd(r0, 0x0, r0)
r2 = openat$zero(0xffffffffffffff9c, &(0x7f0000000140), 0x0, 0x0)
unlinkat(r2, &(0x7f0000000200)='./file0\x00', 0x0)
r3 = syz_io_uring_complete(0x0)
r4 = openat$vcsu(0xffffffffffffff9c, &(0x7f0000000240), 0x100, 0x0)
stat(&(0x7f0000001cc0)='.\x00', &(0x7f0000001c00)={0x0, 0x0, 0x0, 0x0, <r5=>0x0})
setresuid(0xffffffffffffffff, r5, 0x0)
r6 = getegid()
setgid(r6)
ioctl$AUTOFS_DEV_IOCTL_REQUESTER(r3, 0xc018937b, &(0x7f0000000280)={{0x1, 0x1, 0x18, r4, {r5, r6}}, './file1\x00'})
openat(r1, &(0x7f0000000000)='./file2\x00', 0x141000, 0x2)
chdir(&(0x7f0000000040)='./file0\x00')
openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x105142, 0x0)
ioctl$FS_IOC_RESVSP(r4, 0x40305828, &(0x7f0000000040)={0x0, 0x0, 0x5, 0x4000005})

21:26:22 executing program 2:
syz_mount_image$vfat(&(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x0, 0x2, &(0x7f0000000180)=[{&(0x7f0000000140)="eb3c906d6b66732e66617400020801000470008400f801", 0x17}, {0x0, 0x0, 0x1000a00}], 0x0, &(0x7f0000000240)=ANY=[])
chdir(&(0x7f0000000000)='./file0\x00')
chdir(&(0x7f0000000040)='./file0\x00')
r0 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x105142, 0x0)
ioctl$FS_IOC_RESVSP(r0, 0x40305828, &(0x7f0000000040)={0x0, 0x0, 0x0, 0x4000006})

21:26:22 executing program 3:
openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x105142, 0x0)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x400}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
pipe(&(0x7f00000001c0)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
mount$9p_fd(0x0, &(0x7f0000000040)='./file1\x00', &(0x7f00000000c0), 0xedc000000000, &(0x7f0000000280)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {}, 0x2c, {[{@nodevmap}]}})
openat(r1, &(0x7f0000000180)='./file1\x00', 0x0, 0x0)

21:26:22 executing program 5:
openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x105142, 0x0)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
pipe(&(0x7f00000001c0)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
mount$9p_fd(0x0, &(0x7f0000000040)='./file1\x00', &(0x7f00000000c0), 0x0, &(0x7f0000000280)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}}) (fail_nth: 75)
openat(0xffffffffffffffff, 0x0, 0x0, 0x0)

21:26:22 executing program 4:
openat$vcs(0xffffffffffffff9c, &(0x7f0000000040), 0x0, 0x0)
openat$sr(0xffffffffffffff9c, &(0x7f00000035c0), 0x0, 0x0)
r0 = openat$sr(0xffffffffffffff9c, &(0x7f00000000c0), 0x224400, 0x0)
openat$rtc(0xffffffffffffff9c, &(0x7f0000000200), 0x0, 0x0)
ioctl$AUTOFS_DEV_IOCTL_VERSION(r0, 0xc0189371, &(0x7f0000000000)={{0x1, 0x1, 0x18, <r1=>r0}, './cgroup.net/cgroup.procs\x00'})
ioctl$AUTOFS_DEV_IOCTL_PROTOSUBVER(r1, 0xc0189373, &(0x7f0000000080)={{0x1, 0x1, 0x18, r0, {0x1}}, './cgroup.net/cgroup.procs\x00'})
pipe(&(0x7f00000001c0))
open(&(0x7f00000016c0)='./cgroup.net/cgroup.procs\x00', 0x0, 0x0)
pselect6(0x40, &(0x7f0000000180), &(0x7f00000001c0)={0x3fc}, 0x0, 0x0, 0x0)

[ 2736.386463] FAULT_INJECTION: forcing a failure.
[ 2736.386463] name failslab, interval 1, probability 0, space 0, times 0
[ 2736.388598] CPU: 1 PID: 25798 Comm: syz-executor.5 Not tainted 5.10.172 #1
[ 2736.389524] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 2736.390563] Call Trace:
[ 2736.390912]  dump_stack+0x107/0x167
[ 2736.391392]  should_fail.cold+0x5/0xa
[ 2736.391882]  ? __kernfs_new_node+0xd4/0x850
[ 2736.392438]  should_failslab+0x5/0x20
[ 2736.392949]  kmem_cache_alloc+0x5b/0x360
[ 2736.393475]  __kernfs_new_node+0xd4/0x850
[ 2736.394014]  ? kernfs_dop_revalidate+0x3a0/0x3a0
[ 2736.394611]  ? __mutex_unlock_slowpath+0xe1/0x600
[ 2736.395223]  ? wait_for_completion_io+0x270/0x270
[ 2736.395840]  ? kernfs_next_descendant_post+0x1a7/0x2a0
[ 2736.396517]  kernfs_new_node+0x93/0x120
[ 2736.397071]  __kernfs_create_file+0x51/0x350
[ 2736.397655]  sysfs_add_file_mode_ns+0x221/0x560
[ 2736.398259]  internal_create_group+0x324/0xb30
[ 2736.398852]  ? sysfs_remove_group+0x170/0x170
[ 2736.399449]  sysfs_slab_add+0x188/0x200
[ 2736.399966]  __kmem_cache_create+0x3db/0x520
[ 2736.400537]  kmem_cache_create_usercopy+0x1db/0x2f0
[ 2736.401221]  p9_client_create+0xc2b/0x1090
[ 2736.401777]  ? p9_client_flush+0x430/0x430
[ 2736.402445]  ? lockdep_init_map_type+0x2c7/0x780
[ 2736.403057]  ? rcu_read_lock_sched_held+0x3e/0x80
[ 2736.403680]  ? __raw_spin_lock_init+0x36/0x110
[ 2736.404282]  v9fs_session_init+0x1dd/0x16a0
[ 2736.404885]  ? kmem_cache_alloc_trace+0x151/0x360
[ 2736.405472]  ? v9fs_show_options+0x690/0x690
[ 2736.406031]  ? kasan_unpoison_shadow+0x33/0x50
[ 2736.406596]  ? __kasan_kmalloc.constprop.0+0xc9/0xd0
[ 2736.407246]  v9fs_mount+0x79/0x8f0
[ 2736.407723]  ? v9fs_write_inode+0x60/0x60
[ 2736.408266]  legacy_get_tree+0x105/0x220
[ 2736.408855]  vfs_get_tree+0x8e/0x300
[ 2736.409348]  path_mount+0x13be/0x20b0
[ 2736.409867]  ? strncpy_from_user+0x9e/0x470
[ 2736.410446]  ? finish_automount+0xa40/0xa40
[ 2736.411025]  ? getname_flags.part.0+0x1dd/0x4f0
[ 2736.411633]  ? _copy_from_user+0xfb/0x1b0
[ 2736.412186]  __x64_sys_mount+0x282/0x300
[ 2736.412742]  ? copy_mnt_ns+0xa00/0xa00
[ 2736.413263]  ? rcu_read_lock_sched_held+0x3e/0x80
[ 2736.413895]  do_syscall_64+0x33/0x40
[ 2736.414386]  entry_SYSCALL_64_after_hwframe+0x61/0xc6
[ 2736.415054] RIP: 0033:0x7f38308e8b19
[ 2736.415547] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 2736.417883] RSP: 002b:00007f382de5e188 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5
[ 2736.418874] RAX: ffffffffffffffda RBX: 00007f38309fbf60 RCX: 00007f38308e8b19
[ 2736.419803] RDX: 00000000200000c0 RSI: 0000000020000040 RDI: 0000000000000000
[ 2736.420772] RBP: 00007f382de5e1d0 R08: 0000000020000280 R09: 0000000000000000
[ 2736.421698] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[ 2736.422636] R13: 00007ffca2bf07df R14: 00007f382de5e300 R15: 0000000000022000
[ 2736.459271] kmem_cache_create(9p-fcall-cache) failed with error -12
[ 2736.460268] CPU: 0 PID: 25798 Comm: syz-executor.5 Not tainted 5.10.172 #1
[ 2736.465232] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 2736.466289] Call Trace:
[ 2736.466658]  dump_stack+0x107/0x167
[ 2736.467142]  kmem_cache_create_usercopy.cold+0x17/0x65
[ 2736.467844]  p9_client_create+0xc2b/0x1090
[ 2736.468415]  ? p9_client_flush+0x430/0x430
[ 2736.468991]  ? lockdep_init_map_type+0x2c7/0x780
[ 2736.469606]  ? rcu_read_lock_sched_held+0x3e/0x80
[ 2736.470253]  ? __raw_spin_lock_init+0x36/0x110
[ 2736.470868]  v9fs_session_init+0x1dd/0x16a0
[ 2736.471452]  ? kmem_cache_alloc_trace+0x151/0x360
[ 2736.472100]  ? v9fs_show_options+0x690/0x690
[ 2736.472717]  ? kasan_unpoison_shadow+0x33/0x50
[ 2736.473362]  ? __kasan_kmalloc.constprop.0+0xc9/0xd0
[ 2736.474072]  v9fs_mount+0x79/0x8f0
[ 2736.474556]  ? v9fs_write_inode+0x60/0x60
[ 2736.475107]  legacy_get_tree+0x105/0x220
[ 2736.475658]  vfs_get_tree+0x8e/0x300
[ 2736.476158]  path_mount+0x13be/0x20b0
[ 2736.476705]  ? strncpy_from_user+0x9e/0x470
[ 2736.477289]  ? finish_automount+0xa40/0xa40
[ 2736.477922]  ? getname_flags.part.0+0x1dd/0x4f0
[ 2736.478549]  ? _copy_from_user+0xfb/0x1b0
[ 2736.479142]  __x64_sys_mount+0x282/0x300
[ 2736.479689]  ? copy_mnt_ns+0xa00/0xa00
[ 2736.480214]  ? rcu_read_lock_sched_held+0x3e/0x80
[ 2736.480883]  do_syscall_64+0x33/0x40
[ 2736.481375]  entry_SYSCALL_64_after_hwframe+0x61/0xc6
[ 2736.482032] RIP: 0033:0x7f38308e8b19
[ 2736.482543] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 2736.485023] RSP: 002b:00007f382de5e188 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5
[ 2736.486015] RAX: ffffffffffffffda RBX: 00007f38309fbf60 RCX: 00007f38308e8b19
[ 2736.486956] RDX: 00000000200000c0 RSI: 0000000020000040 RDI: 0000000000000000
[ 2736.487897] RBP: 00007f382de5e1d0 R08: 0000000020000280 R09: 0000000000000000
[ 2736.488863] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[ 2736.489787] R13: 00007ffca2bf07df R14: 00007f382de5e300 R15: 0000000000022000
21:26:41 executing program 3:
openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x105142, 0x0)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x400}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
pipe(&(0x7f00000001c0)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
mount$9p_fd(0x0, &(0x7f0000000040)='./file1\x00', &(0x7f00000000c0), 0x8000000000000, &(0x7f0000000280)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {}, 0x2c, {[{@nodevmap}]}})
openat(r1, &(0x7f0000000180)='./file1\x00', 0x0, 0x0)

21:26:41 executing program 6:
r0 = syz_mount_image$vfat(&(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x0, 0x2, &(0x7f0000000180)=[{&(0x7f0000000140)="eb3c906d6b66732e66617400020801000470008400f801", 0x17}, {0x0, 0x0, 0x1000a00}], 0x0, &(0x7f0000000240)=ANY=[])
chdir(&(0x7f0000000040)='./file0\x00')
openat2(r0, &(0x7f0000000100)='./file0\x00', &(0x7f00000001c0)={0x40000, 0x81}, 0x18)
mount$cgroup(0x0, 0x0, &(0x7f0000000400), 0x0, 0x0)
r1 = syz_io_uring_setup(0x22, &(0x7f0000000680)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000180)=<r2=>0x0, &(0x7f0000002a40)=<r3=>0x0)
io_uring_register$IORING_REGISTER_PERSONALITY(r1, 0x9, 0x0, 0x0)
socket$nl_netfilter(0x10, 0x3, 0xc)
syz_io_uring_submit(r2, r3, 0x0, 0x0)
syz_io_uring_setup(0x22, &(0x7f0000000680)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000180), &(0x7f0000002a40))
r4 = io_uring_register$IORING_REGISTER_PERSONALITY(0xffffffffffffffff, 0x9, 0x0, 0x0)
syz_io_uring_submit(r2, 0x0, &(0x7f0000000440)=@IORING_OP_FSYNC={0x3, 0x2, 0x0, @fd_index=0x9, 0x0, 0x0, 0x0, 0x0, 0x1, {0x0, r4}}, 0x2)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r5 = openat(0xffffffffffffff9c, &(0x7f00000002c0)='./file1\x00', 0x105142, 0x0)
r6 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0)
sendfile(r5, r6, 0x0, 0x100000001)
newfstatat(0xffffffffffffff9c, &(0x7f0000000340)='./file1\x00', &(0x7f0000000380), 0x400)

21:26:41 executing program 7:
perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
io_setup(0x7f, &(0x7f00000002c0)=<r0=>0x0)
io_pgetevents(r0, 0x1, 0x1, &(0x7f0000000000)=[{}], 0x0, 0x0)
io_submit(r0, 0x0, &(0x7f0000000340))

21:26:41 executing program 4:
r0 = openat$vcs(0xffffffffffffff9c, &(0x7f0000000040), 0x0, 0x0)
r1 = openat$sr(0xffffffffffffff9c, &(0x7f00000035c0), 0x0, 0x0)
r2 = openat$sr(0xffffffffffffff9c, &(0x7f00000000c0), 0x224400, 0x0)
pipe(&(0x7f00000001c0)={<r3=>0xffffffffffffffff, <r4=>0xffffffffffffffff})
mount$9p_fd(0x0, &(0x7f0000000040)='./file1\x00', &(0x7f00000000c0), 0x0, &(0x7f0000000280)={'trans=fd,', {'rfdno', 0x3d, r3}, 0x2c, {'wfdno', 0x3d, r4}, 0x2c, {[{@nodevmap}]}})
setsockopt$inet6_tcp_TCP_REPAIR_WINDOW(r4, 0x6, 0x1d, &(0x7f0000000240)={0x7, 0x5d10, 0x3, 0x4, 0x37}, 0x14)
ioctl$AUTOFS_DEV_IOCTL_SETPIPEFD(r1, 0xc0189378, &(0x7f0000000000)={{0x1, 0x1, 0x18, <r5=>r2, {<r6=>0xffffffffffffffff}}, './cgroup.net/cgroup.procs\x00'})
fsconfig$FSCONFIG_SET_BINARY(r5, 0x2, &(0x7f0000000080)='/dev/rtc0\x00', &(0x7f0000000100)="783c51d4fd1eda", 0x7)
r7 = openat$rtc(0xffffffffffffff9c, &(0x7f0000000200), 0x0, 0x0)
pipe(&(0x7f00000001c0)={<r8=>0xffffffffffffffff, <r9=>0xffffffffffffffff})
mount$9p_fd(0x0, &(0x7f0000000040)='./file1\x00', &(0x7f00000000c0), 0x0, &(0x7f0000000280)={'trans=fd,', {'rfdno', 0x3d, r8}, 0x2c, {'wfdno', 0x3d, r9}, 0x2c, {[{@nodevmap}]}})
r10 = syz_open_dev$vcsa(&(0x7f0000000940), 0x7fff, 0x200000)
io_submit(0x0, 0x8, &(0x7f00000009c0)=[&(0x7f0000000480)={0x0, 0x0, 0x0, 0x1, 0x3b, 0xffffffffffffffff, &(0x7f0000000340)="30569c94c2500ffeb8f261997e33c4f0a20b4912f683605384b5d9aedc2f99f6fa4c2a2420d67239d3d764e2ec897105b169b6e0bf3e5b91e18abfb848aea7ab85c03f5d1625ed204adef5db6b1fa6aacb9612a1f40b4f6412fdb78bab031bc5294de7d6b008d3fae48ba3fee4b24b65e66558ffce71870c64b9de899d0940649e0ef86c556ddb650c452d6ebfbd87f7b8a06c201eabc2e81abe4c1f3a8c531dc5eae771092b99e4bf285e4693624db106a2310446e25073a4d2c13a49bb96fb49b78bc9", 0xc4, 0x0, 0x0, 0x1}, &(0x7f0000000540)={0x0, 0x0, 0x0, 0x0, 0xbea0, r7, &(0x7f00000004c0)="e3c29070fbc7ce408867ca0fa9b2a1cb71933c55929d90b3bb21e00a8b48a548a07da1178ff5caef2f9af1c0b51310c778b897876c22f252fe1f4dd2a7ebfefbfe666d0ed80807b02772ba892155d783feef3ad46f87a112689e40d01275a4446a99db9181a3b8a6410da4faf0f44c", 0x6f, 0x80, 0x0, 0x2, r0}, &(0x7f0000000600)={0x0, 0x0, 0x0, 0x7, 0x0, r0, &(0x7f0000000580)="fadd8f7934eac877d5", 0x9, 0x81}, &(0x7f00000006c0)={0x0, 0x0, 0x0, 0x0, 0x2000, 0xffffffffffffffff, &(0x7f0000000640)="e732dc689db567fd8322214ca29c102170ef4819ab285cb2a8b76d5a64eb2c2db6fad99582a5b854ec8f575f827400418f1fb732447bd00e4c22fd707e5aabfc864b163dc15515b3b408de66c6267eb978", 0x51, 0x5, 0x0, 0x1, r6}, &(0x7f0000000740)={0x0, 0x0, 0x0, 0x1, 0x1, 0xffffffffffffffff, &(0x7f0000000700)="42ab0a0e4a3d6a3632b9b5921cff0092c70c5bd51d40c0796e61c9054a7b8211c88d2b6901d4330519e09323a528011bbb278284", 0x34, 0x9, 0x0, 0x2}, &(0x7f0000000800)={0x0, 0x0, 0x0, 0x0, 0xd, 0xffffffffffffffff, &(0x7f0000000780)="d494beb3de8bc7178a6b228f1419a3c1cd43910f434a9aa1ecc7a5d5b53d2497bc55db59ab18f3238194d2de7d847365b3a8ee6c7915af2a73ce7e7f11ae0757cffdd624cc68ca468b3f6d799ead4a676a350ef627467d92e56e11689443b258f4c306185297c29358d0a7e2958aa6a646d8785e038b9aee5ceb51ad50177c", 0x7f, 0x1da93c76, 0x0, 0x1, r2}, &(0x7f0000000880)={0x0, 0x0, 0x0, 0x5, 0x400, 0xffffffffffffffff, &(0x7f0000000840)="b2f3bbce6b6ddede20c7d0f1031d96cc3af04ef94236cd2ea91009", 0x1b, 0x4, 0x0, 0x1, r8}, &(0x7f0000000980)={0x0, 0x0, 0x0, 0x3, 0x400, r1, &(0x7f00000008c0)="68b59dce2b83ec276359d23354b55386490a348b3bff550a09f340b0da972bd87a4bce6262dddb0bfeacc1c32322d7f971543d3f4f28f023f9553999e344b0d4e91816af6012c06427f3f3141bbcca64", 0x50, 0xe8, 0x0, 0x2, r10}])
pipe(&(0x7f00000001c0))
open(&(0x7f00000016c0)='./cgroup.net/cgroup.procs\x00', 0x0, 0x0)
pipe(&(0x7f00000001c0)={<r11=>0xffffffffffffffff, <r12=>0xffffffffffffffff})
mount$9p_fd(0x0, &(0x7f0000000040)='./file1\x00', &(0x7f00000000c0), 0x0, &(0x7f0000000280)={'trans=fd,', {'rfdno', 0x3d, r11}, 0x2c, {'wfdno', 0x3d, r12}, 0x2c, {[{@nodevmap}]}})
openat(0xffffffffffffff9c, &(0x7f0000000140)='./cgroup.net/cgroup.procs/file0\x00', 0x2101, 0x80)
ioctl$RTC_UIE_ON(r12, 0x7003)
pselect6(0x40, &(0x7f0000000180), &(0x7f00000001c0)={0x3fc}, 0x0, 0x0, 0x0)

21:26:41 executing program 2:
syz_mount_image$vfat(&(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x0, 0x0, &(0x7f0000000180)=[{&(0x7f0000000000)="eb3c906d6b66732e66617400020801000470008400f801", 0x17, 0xfffffffffffffffd}, {0x0, 0x0, 0x1000a00}], 0x2080, &(0x7f0000000240)=ANY=[])
chdir(&(0x7f0000000040)='./file0\x00')
r0 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x105142, 0x0)
ioctl$FS_IOC_RESVSP(r0, 0x40305828, &(0x7f0000000040)={0x0, 0x0, 0x0, 0x4000006})

21:26:41 executing program 5:
openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x105142, 0x0)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
pipe(&(0x7f00000001c0)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
mount$9p_fd(0x0, &(0x7f0000000040)='./file1\x00', &(0x7f00000000c0), 0x0, &(0x7f0000000280)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}}) (fail_nth: 76)
openat(0xffffffffffffffff, 0x0, 0x0, 0x0)

21:26:41 executing program 1:
openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x105142, 0x0)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
pipe(&(0x7f00000001c0))
mount$9p_fd(0x0, &(0x7f0000000040)='./file1\x00', &(0x7f00000000c0), 0x8, &(0x7f0000000280)={'trans=fd,', {}, 0x2c, {}, 0x2c, {[{@nodevmap}]}})

21:26:41 executing program 0:
syz_mount_image$vfat(&(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x0, 0x2, &(0x7f0000000180)=[{&(0x7f0000000140)="eb3c906d6b66732e66617400020801000470008400f801", 0x17}, {0x0, 0x0, 0x1000a00}], 0x0, &(0x7f0000000240)=ANY=[])
chdir(&(0x7f0000000040)='./file0\x00')
mount$cgroup(0x0, 0x0, &(0x7f0000000400), 0x0, 0x0)
r0 = syz_io_uring_setup(0x22, &(0x7f0000000680)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000180)=<r1=>0x0, &(0x7f0000002a40)=<r2=>0x0)
r3 = io_uring_register$IORING_REGISTER_PERSONALITY(r0, 0x9, 0x0, 0x0)
r4 = socket$nl_netfilter(0x10, 0x3, 0xc)
syz_io_uring_submit(r1, r2, &(0x7f0000000400)=@IORING_OP_WRITEV={0x2, 0x0, 0x0, @fd=r4, 0x0, 0x0, 0x0, 0x0, 0x0, {0x0, r3}}, 0x0)
r5 = syz_io_uring_setup(0x22, &(0x7f0000000680)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000180), &(0x7f0000002a40))
r6 = io_uring_register$IORING_REGISTER_PERSONALITY(r5, 0x9, 0x0, 0x0)
syz_io_uring_submit(r1, 0x0, &(0x7f0000000440)=@IORING_OP_FSYNC={0x3, 0x2, 0x0, @fd_index=0x9, 0x0, 0x0, 0x0, 0x0, 0x0, {0x0, r6}}, 0x2)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r7 = openat(0xffffffffffffff9c, &(0x7f00000002c0)='./file1\x00', 0x105142, 0x0)
r8 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0)
mount(&(0x7f0000000200)=ANY=[@ANYBLOB="2f6f651317868af191bdb2"], &(0x7f0000000240)='./file0\x00', &(0x7f0000000280)='nfsd\x00', 0x800000, &(0x7f0000000300)='cgroup\x00')
sendfile(r7, r8, 0x0, 0x100000001)
newfstatat(0xffffffffffffff9c, &(0x7f0000000340)='./file1\x00', &(0x7f0000000380), 0x400)

[ 2754.782377] 9pnet: Insufficient options for proto=fd
[ 2754.833177] FAULT_INJECTION: forcing a failure.
[ 2754.833177] name failslab, interval 1, probability 0, space 0, times 0
[ 2754.838205] CPU: 0 PID: 25841 Comm: syz-executor.5 Not tainted 5.10.172 #1
[ 2754.840177] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 2754.841250] Call Trace:
[ 2754.841960]  dump_stack+0x107/0x167
[ 2754.842426]  should_fail.cold+0x5/0xa
[ 2754.842904]  ? create_object.isra.0+0x3a/0xa20
[ 2754.843480]  should_failslab+0x5/0x20
[ 2754.843953]  kmem_cache_alloc+0x5b/0x360
[ 2754.844465]  create_object.isra.0+0x3a/0xa20
[ 2754.845042]  ? __kasan_kmalloc.constprop.0+0xc9/0xd0
[ 2754.845678]  kmem_cache_alloc+0x159/0x360
[ 2754.846201]  __kernfs_new_node+0xd4/0x850
[ 2754.846732]  ? kernfs_dop_revalidate+0x3a0/0x3a0
[ 2754.847855]  ? __mutex_unlock_slowpath+0xe1/0x600
[ 2754.848466]  ? wait_for_completion_io+0x270/0x270
[ 2754.849407]  ? kernfs_next_descendant_post+0x1a7/0x2a0
[ 2754.850741]  kernfs_new_node+0x93/0x120
[ 2754.851563]  __kernfs_create_file+0x51/0x350
[ 2754.852132]  sysfs_add_file_mode_ns+0x221/0x560
[ 2754.853197]  internal_create_group+0x324/0xb30
[ 2754.854407]  ? sysfs_remove_group+0x170/0x170
[ 2754.855564]  ? kernfs_name_hash+0xe7/0x110
[ 2754.856652]  ? kernfs_find_ns+0x256/0x380
[ 2754.857745]  sysfs_slab_add+0x188/0x200
[ 2754.858803]  __kmem_cache_create+0x3db/0x520
[ 2754.859840]  kmem_cache_create_usercopy+0x1db/0x2f0
[ 2754.861177]  p9_client_create+0xc2b/0x1090
[ 2754.862294]  ? p9_client_flush+0x430/0x430
[ 2754.863580]  ? lockdep_init_map_type+0x2c7/0x780
[ 2754.864358]  ? rcu_read_lock_sched_held+0x3e/0x80
[ 2754.865000]  ? __raw_spin_lock_init+0x36/0x110
[ 2754.865614]  v9fs_session_init+0x1dd/0x16a0
[ 2754.866190]  ? kmem_cache_alloc_trace+0x151/0x360
[ 2754.866836]  ? v9fs_show_options+0x690/0x690
[ 2754.867420]  ? kasan_unpoison_shadow+0x33/0x50
[ 2754.868000]  ? __kasan_kmalloc.constprop.0+0xc9/0xd0
[ 2754.868687]  v9fs_mount+0x79/0x8f0
[ 2754.870564]  ? v9fs_write_inode+0x60/0x60
[ 2754.871113]  legacy_get_tree+0x105/0x220
[ 2754.871652]  vfs_get_tree+0x8e/0x300
[ 2754.872150]  path_mount+0x13be/0x20b0
[ 2754.872670]  ? strncpy_from_user+0x9e/0x470
[ 2754.874740]  ? finish_automount+0xa40/0xa40
[ 2754.875317]  ? getname_flags.part.0+0x1dd/0x4f0
[ 2754.875944]  ? _copy_from_user+0xfb/0x1b0
[ 2754.876510]  __x64_sys_mount+0x282/0x300
[ 2754.879868]  ? copy_mnt_ns+0xa00/0xa00
[ 2754.880409]  ? rcu_read_lock_sched_held+0x3e/0x80
[ 2754.881095]  do_syscall_64+0x33/0x40
[ 2754.881708]  entry_SYSCALL_64_after_hwframe+0x61/0xc6
[ 2754.882374] RIP: 0033:0x7f38308e8b19
[ 2754.882877] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 2754.885310] RSP: 002b:00007f382de5e188 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5
[ 2754.886322] RAX: ffffffffffffffda RBX: 00007f38309fbf60 RCX: 00007f38308e8b19
[ 2754.887254] RDX: 00000000200000c0 RSI: 0000000020000040 RDI: 0000000000000000
[ 2754.888191] RBP: 00007f382de5e1d0 R08: 0000000020000280 R09: 0000000000000000
[ 2754.889153] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[ 2754.890077] R13: 00007ffca2bf07df R14: 00007f382de5e300 R15: 0000000000022000
21:26:59 executing program 3:
openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x105142, 0x0)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x400}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
pipe(&(0x7f00000001c0)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
mount$9p_fd(0x0, &(0x7f0000000040)='./file1\x00', &(0x7f00000000c0), 0x100000000000000, &(0x7f0000000280)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {}, 0x2c, {[{@nodevmap}]}})
openat(r1, &(0x7f0000000180)='./file1\x00', 0x0, 0x0)

21:26:59 executing program 7:
perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
io_setup(0x7f, &(0x7f00000002c0)=<r0=>0x0)
io_pgetevents(r0, 0x1, 0x1, &(0x7f0000000000)=[{}], 0x0, 0x0)
io_submit(r0, 0x0, &(0x7f0000000340))

21:26:59 executing program 0:
syz_mount_image$vfat(&(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x0, 0x2, &(0x7f0000000180)=[{&(0x7f0000000140)="eb3c906d6b66732e66617400020801000470008400f801", 0x17}, {0x0, 0x0, 0x1000a00}], 0x0, &(0x7f0000000240)=ANY=[])
chdir(&(0x7f0000000040)='./file0\x00')
mount$cgroup(0x0, 0x0, &(0x7f0000000400), 0x0, 0x0)
r0 = syz_io_uring_setup(0x22, &(0x7f0000000680)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000180)=<r1=>0x0, &(0x7f0000002a40)=<r2=>0x0)
r3 = io_uring_register$IORING_REGISTER_PERSONALITY(r0, 0x9, 0x0, 0x0)
r4 = socket$nl_netfilter(0x10, 0x3, 0xc)
syz_io_uring_submit(r1, r2, &(0x7f0000000400)=@IORING_OP_WRITEV={0x2, 0x0, 0x0, @fd=r4, 0x0, 0x0, 0x0, 0x0, 0x0, {0x0, r3}}, 0x0)
r5 = syz_io_uring_setup(0x22, &(0x7f0000000680)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000180), &(0x7f0000002a40))
io_uring_register$IORING_REGISTER_PERSONALITY(r5, 0x9, 0x0, 0x0)
syz_io_uring_submit(r1, 0x0, &(0x7f0000000440)=@IORING_OP_FSYNC={0x3, 0x2, 0x0, @fd_index=0x9, 0x0, 0x0, 0x0, 0x0, 0x1}, 0x2)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r6 = openat(0xffffffffffffff9c, &(0x7f00000002c0)='./file1\x00', 0x105142, 0x0)
r7 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0)
mount(&(0x7f0000000200)=ANY=[@ANYBLOB="2f6f651317868af191bdb2"], &(0x7f0000000240)='./file0\x00', &(0x7f0000000280)='nfsd\x00', 0x800000, &(0x7f0000000300)='cgroup\x00')
sendfile(r6, r7, 0x0, 0x100000001)
newfstatat(0xffffffffffffff9c, &(0x7f0000000340)='./file1\x00', &(0x7f0000000380), 0x400)

21:26:59 executing program 2:
r0 = syz_mount_image$vfat(&(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x0, 0x2, &(0x7f0000000180)=[{&(0x7f0000000140)="eb3c906d6b66732e66617400020801000470008400f801", 0x17}, {0x0, 0x0, 0x1000a00}], 0x0, &(0x7f0000000240)=ANY=[])
chdir(&(0x7f0000000040)='./file0\x00')
mkdirat(r0, &(0x7f0000000200)='./file1\x00', 0x102)
openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x105142, 0x0)
r1 = perf_event_open(&(0x7f0000001d80)={0x2, 0x80, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f0000001540)}, 0x15120, 0x0, 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, 0x2000000, 0x0, 0x4}, 0x0, 0x0, 0xffffffffffffffff, 0x1)
mmap(&(0x7f0000ffc000/0x2000)=nil, 0x2000, 0x0, 0x13, r1, 0x0)
r2 = perf_event_open(&(0x7f0000001d80)={0x2, 0x80, 0x70, 0x0, 0x40, 0x0, 0x0, 0x7, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, r1, 0x2)
ioctl$INCFS_IOC_CREATE_FILE(r1, 0xc058671e, &(0x7f0000001440)={{'\x00', 0x2}, {}, 0x100, 0x0, 0x0, &(0x7f0000000280)='./file0\x00', &(0x7f00000002c0)='./file1\x00', &(0x7f0000000300)="66394062f15d2a23a51a459d98559b72", 0x10, 0x0, &(0x7f0000000340)={0x2, 0xe2, {0x1, 0xc, 0x81, "d8919a3d1de571620fd38369fc8f565079ca699a97dab0dd77ae03957ec1fc055ba63cc2adb76cc9de5819940de3e5cbf2b3fdcc393ba089bf2e417434c7302a4ac04a0ca53339be5fc2dc2e93b25351462658df4ce15905e5078b7e7a1bd4f74766e8169f355e7af603ae8d4250d8b7985c78c6b5b1ec33caf7f5c7dfd89d1a88", 0x54, "fffb954a09f97827d6822b49b56d1fdc7452c8397ac3b23390e51ffd674521e22f8a6f3d8e8ad3ecc00055024a36be20c7f5b54e6f262d7950f50d63298fe78ed883738f85737f6dda28abc1266f4d5df40cc9a5"}, 0x1000, "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"}, 0x10ee})
r3 = creat(&(0x7f0000001580)='./file0\x00', 0x9)
pipe(&(0x7f00000001c0)={<r4=>0xffffffffffffffff, <r5=>0xffffffffffffffff})
mount$9p_fd(0x0, &(0x7f0000000040)='./file1\x00', &(0x7f00000000c0), 0x0, &(0x7f00000015c0)=ANY=[@ANYBLOB='trans=fd,rfdno=', @ANYRESHEX=r4, @ANYBLOB="2c7766646e6f3dfc09df60c5f380ee9df12995d0bbf6293301065acf7966dcfb1cc7ea8ca3acb1c128fc5f3c2258d014d459cb6fc49b456c85aa29517966e12598116f0606e1ddb70b1f5f3c104b07d23dfafe2076b178cfcacbead0af581a77cf4a10802c51ffcd149f3148e1bd8f7fccdf5f9a1e2076eeff90b65c00562e53524c5af58b3b0e3f000000000000", @ANYRESHEX=r5, @ANYBLOB=',nodevmap,\x00'])
openat(r4, &(0x7f0000001500)='./file0\x00', 0x101000, 0x40)
ioctl$BTRFS_IOC_BALANCE_CTL(r3, 0x40049421, 0x2)
ioctl$BTRFS_IOC_DEV_INFO(0xffffffffffffffff, 0xd000941e, &(0x7f00000001c0)={0x0, "1169feeb427ab0e2253af9114f0f7407"})
ioctl$BTRFS_IOC_DEV_REPLACE(r5, 0xca289435, &(0x7f0000001e00)={0x0, 0x200, @start={0x0, 0x0, "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", "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"}, [0x0, 0x8000000000040, 0x2, 0x64e, 0xffffffff, 0x1, 0x9, 0x8001, 0x1, 0x9, 0x8, 0x7ff, 0xfff, 0xc9e, 0x800, 0xe, 0x100000001, 0x8, 0x7, 0x8, 0x80000001, 0x8, 0x80000000, 0x1ff, 0x3, 0x9, 0x0, 0x6, 0x4, 0xffffffffffffffff, 0x7, 0xffc, 0x2, 0x81, 0x8, 0x1000, 0x0, 0x0, 0x0, 0x80d7, 0xfff, 0x6, 0x18d9a00000000, 0x98, 0x0, 0x81, 0x8001, 0xad, 0x2, 0x5, 0x3, 0x10000, 0xbf4e, 0xfad, 0x39, 0x7fffffff, 0x40004, 0x7, 0x6, 0x1000000004, 0x80, 0x4, 0x1f]})
ioctl$FS_IOC_RESVSP(r0, 0x40305828, &(0x7f0000000040)={0x0, 0x0, 0x101, 0x4000009})
r6 = syz_open_dev$vcsn(&(0x7f0000000000), 0x0, 0x0)
copy_file_range(r1, 0x0, r2, &(0x7f00000014c0)=0x65eaa123, 0x10001, 0x0)
openat(r6, &(0x7f00000001c0)='./file1\x00', 0x40200, 0xa0)
creat(&(0x7f0000000240)='./file1\x00', 0x18)

21:26:59 executing program 1:
openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x105142, 0x0)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
pipe(&(0x7f00000001c0))
mount$9p_fd(0x0, &(0x7f0000000040)='./file1\x00', &(0x7f00000000c0), 0x9, &(0x7f0000000280)={'trans=fd,', {}, 0x2c, {}, 0x2c, {[{@nodevmap}]}})

21:26:59 executing program 4:
r0 = openat$vcs(0xffffffffffffff9c, &(0x7f0000000040), 0x0, 0x0)
r1 = openat$sr(0xffffffffffffff9c, &(0x7f00000035c0), 0x0, 0x0)
r2 = openat$sr(0xffffffffffffff9c, &(0x7f00000000c0), 0x224400, 0x0)
io_submit(0x0, 0x1, &(0x7f0000000440)=[&(0x7f0000000400)={0x0, 0x0, 0x0, 0x1, 0xfff9, r1, &(0x7f0000000300)="d3c5704ef40abdc5a283bc12b72ccbdcd3a88f236eb1ba03dc17425f4b3219a49492ab8007d4b82feb195213b4bf7d7d659e9a9e89975a657e582540b2b76368eee570c5d77414c8b026abfeb1caaceb75453d1bc0e8d3214f744cba9576015c7099fbae370ddc4fac7dc7014d07d9ee90740ae038ac3c3865613a1d7758ac0435d071a0784965ed54449580c190e957673ffa2310ed75925ebbab95830415929cb8c9575364b5c1c958b18ed8ee60880b5c6a02ab46d0daa30adc35e69e4d7031afbe1faac2c1b06fcce83b6411865d29f20eb6d206", 0xd6, 0x8001, 0x0, 0x3, r2}])
openat$rtc(0xffffffffffffff9c, &(0x7f0000000200), 0x0, 0x0)
pipe(&(0x7f0000000080)={<r3=>0xffffffffffffffff})
r4 = open(&(0x7f00000016c0)='./cgroup.net/cgroup.procs\x00', 0x0, 0x0)
pselect6(0x40, &(0x7f0000000180), &(0x7f00000001c0)={0x3fc}, 0x0, 0x0, 0x0)
r5 = pidfd_getfd(r3, r1, 0x0)
splice(r0, &(0x7f0000000000)=0xd33, r5, &(0x7f0000000100), 0x8001, 0x1)
r6 = openat2(r0, &(0x7f0000000140)='./cgroup.net/cgroup.procs\x00', &(0x7f0000000240)={0x4000, 0x16, 0x4}, 0x18)
ioctl$AUTOFS_DEV_IOCTL_VERSION(0xffffffffffffffff, 0xc0189371, &(0x7f0000000280)={{0x1, 0x1, 0x18, <r7=>r4}, './cgroup.net/cgroup.procs\x00'})
ioctl$AUTOFS_DEV_IOCTL_VERSION(r6, 0xc0189371, &(0x7f00000002c0)={{0x1, 0x1, 0x18, r7}, './cgroup.net/cgroup.procs\x00'})

21:26:59 executing program 6:
r0 = syz_mount_image$vfat(&(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x0, 0x2, &(0x7f0000000180)=[{&(0x7f0000000140)="eb3c906d6b66732e66617400020801000470008400f801", 0x17}, {0x0, 0x0, 0x1000a00}], 0x0, &(0x7f0000000240)=ANY=[])
chdir(&(0x7f0000000040)='./file0\x00')
openat2(r0, &(0x7f0000000100)='./file0\x00', &(0x7f00000001c0)={0x40000, 0x81}, 0x18)
mount$cgroup(0x0, 0x0, &(0x7f0000000400), 0x0, 0x0)
r1 = syz_io_uring_setup(0x22, &(0x7f0000000680)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000180)=<r2=>0x0, &(0x7f0000002a40)=<r3=>0x0)
io_uring_register$IORING_REGISTER_PERSONALITY(r1, 0x9, 0x0, 0x0)
socket$nl_netfilter(0x10, 0x3, 0xc)
syz_io_uring_submit(r2, r3, 0x0, 0x0)
r4 = syz_io_uring_setup(0x22, &(0x7f0000000680)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000180), &(0x7f0000002a40))
r5 = io_uring_register$IORING_REGISTER_PERSONALITY(r4, 0x9, 0x0, 0x0)
syz_io_uring_submit(0x0, 0x0, &(0x7f0000000440)=@IORING_OP_FSYNC={0x3, 0x2, 0x0, @fd_index=0x9, 0x0, 0x0, 0x0, 0x0, 0x1, {0x0, r5}}, 0x2)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r6 = openat(0xffffffffffffff9c, &(0x7f00000002c0)='./file1\x00', 0x105142, 0x0)
r7 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0)
sendfile(r6, r7, 0x0, 0x100000001)
newfstatat(0xffffffffffffff9c, &(0x7f0000000340)='./file1\x00', &(0x7f0000000380), 0x400)

21:26:59 executing program 5:
openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x105142, 0x0)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
pipe(&(0x7f00000001c0)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
mount$9p_fd(0x0, &(0x7f0000000040)='./file1\x00', &(0x7f00000000c0), 0x0, &(0x7f0000000280)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}}) (fail_nth: 77)
openat(0xffffffffffffffff, 0x0, 0x0, 0x0)

21:26:59 executing program 3:
openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x105142, 0x0)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x400}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
pipe(&(0x7f00000001c0)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
mount$9p_fd(0x0, &(0x7f0000000040)='./file1\x00', &(0x7f00000000c0), 0x200000000000000, &(0x7f0000000280)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {}, 0x2c, {[{@nodevmap}]}})
openat(r1, &(0x7f0000000180)='./file1\x00', 0x0, 0x0)

[ 2773.224584] 9pnet: Insufficient options for proto=fd
[ 2773.289562] FAULT_INJECTION: forcing a failure.
[ 2773.289562] name failslab, interval 1, probability 0, space 0, times 0
[ 2773.291436] CPU: 1 PID: 25967 Comm: syz-executor.5 Not tainted 5.10.172 #1
[ 2773.292279] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 2773.293313] Call Trace:
[ 2773.293664]  dump_stack+0x107/0x167
[ 2773.294121]  should_fail.cold+0x5/0xa
[ 2773.294596]  ? __kernfs_new_node+0xd4/0x850
[ 2773.295128]  should_failslab+0x5/0x20
[ 2773.295605]  kmem_cache_alloc+0x5b/0x360
[ 2773.296117]  __kernfs_new_node+0xd4/0x850
[ 2773.296636]  ? kernfs_dop_revalidate+0x3a0/0x3a0
[ 2773.297236]  ? __mutex_unlock_slowpath+0xe1/0x600
[ 2773.297837]  ? wait_for_completion_io+0x270/0x270
[ 2773.298437]  ? kernfs_next_descendant_post+0x1a7/0x2a0
[ 2773.299088]  kernfs_new_node+0x93/0x120
[ 2773.299585]  __kernfs_create_file+0x51/0x350
[ 2773.300132]  sysfs_add_file_mode_ns+0x221/0x560
[ 2773.300724]  internal_create_group+0x324/0xb30
[ 2773.301335]  ? sysfs_remove_group+0x170/0x170
[ 2773.301885]  ? kernfs_name_hash+0xe7/0x110
[ 2773.302412]  ? kernfs_find_ns+0x256/0x380
[ 2773.302936]  sysfs_slab_add+0x188/0x200
[ 2773.303432]  __kmem_cache_create+0x3db/0x520
[ 2773.303981]  kmem_cache_create_usercopy+0x1db/0x2f0
[ 2773.304603]  p9_client_create+0xc2b/0x1090
[ 2773.305153]  ? p9_client_flush+0x430/0x430
[ 2773.305701]  ? lockdep_init_map_type+0x2c7/0x780
[ 2773.306285]  ? rcu_read_lock_sched_held+0x3e/0x80
[ 2773.306886]  ? __raw_spin_lock_init+0x36/0x110
[ 2773.307457]  v9fs_session_init+0x1dd/0x16a0
[ 2773.308003]  ? kmem_cache_alloc_trace+0x151/0x360
[ 2773.308596]  ? v9fs_show_options+0x690/0x690
[ 2773.309184]  ? kasan_unpoison_shadow+0x33/0x50
[ 2773.309801]  ? __kasan_kmalloc.constprop.0+0xc9/0xd0
[ 2773.310466]  v9fs_mount+0x79/0x8f0
[ 2773.310912]  ? v9fs_write_inode+0x60/0x60
[ 2773.311425]  legacy_get_tree+0x105/0x220
[ 2773.311931]  vfs_get_tree+0x8e/0x300
[ 2773.312396]  path_mount+0x13be/0x20b0
[ 2773.312875]  ? strncpy_from_user+0x9e/0x470
[ 2773.313448]  ? finish_automount+0xa40/0xa40
[ 2773.313984]  ? getname_flags.part.0+0x1dd/0x4f0
[ 2773.314558]  ? _copy_from_user+0xfb/0x1b0
[ 2773.315087]  __x64_sys_mount+0x282/0x300
[ 2773.315590]  ? copy_mnt_ns+0xa00/0xa00
[ 2773.316080]  ? rcu_read_lock_sched_held+0x3e/0x80
[ 2773.316680]  do_syscall_64+0x33/0x40
[ 2773.317159]  entry_SYSCALL_64_after_hwframe+0x61/0xc6
[ 2773.317808] RIP: 0033:0x7f38308e8b19
[ 2773.318271] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 2773.320495] RSP: 002b:00007f382de5e188 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5
[ 2773.321451] RAX: ffffffffffffffda RBX: 00007f38309fbf60 RCX: 00007f38308e8b19
[ 2773.322323] RDX: 00000000200000c0 RSI: 0000000020000040 RDI: 0000000000000000
[ 2773.323195] RBP: 00007f382de5e1d0 R08: 0000000020000280 R09: 0000000000000000
[ 2773.324066] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[ 2773.324937] R13: 00007ffca2bf07df R14: 00007f382de5e300 R15: 0000000000022000
[ 2773.352839] 9pnet: Insufficient options for proto=fd
[ 2773.390065] 9pnet: Insufficient options for proto=fd
[ 2773.409320] kmem_cache_create(9p-fcall-cache) failed with error -12
[ 2773.410263] CPU: 0 PID: 25967 Comm: syz-executor.5 Not tainted 5.10.172 #1
[ 2773.411157] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 2773.412205] Call Trace:
[ 2773.412552]  dump_stack+0x107/0x167
[ 2773.413031]  kmem_cache_create_usercopy.cold+0x17/0x65
[ 2773.413761]  p9_client_create+0xc2b/0x1090
[ 2773.414354]  ? p9_client_flush+0x430/0x430
[ 2773.414913]  ? lockdep_init_map_type+0x2c7/0x780
[ 2773.415529]  ? rcu_read_lock_sched_held+0x3e/0x80
[ 2773.416157]  ? __raw_spin_lock_init+0x36/0x110
[ 2773.416763]  v9fs_session_init+0x1dd/0x16a0
[ 2773.417374]  ? kmem_cache_alloc_trace+0x151/0x360
[ 2773.418010]  ? v9fs_show_options+0x690/0x690
[ 2773.418606]  ? kasan_unpoison_shadow+0x33/0x50
[ 2773.419185]  ? __kasan_kmalloc.constprop.0+0xc9/0xd0
[ 2773.419870]  v9fs_mount+0x79/0x8f0
[ 2773.420353]  ? v9fs_write_inode+0x60/0x60
[ 2773.420895]  legacy_get_tree+0x105/0x220
[ 2773.421485]  vfs_get_tree+0x8e/0x300
[ 2773.421985]  path_mount+0x13be/0x20b0
[ 2773.422498]  ? strncpy_from_user+0x9e/0x470
[ 2773.423069]  ? finish_automount+0xa40/0xa40
[ 2773.423632]  ? getname_flags.part.0+0x1dd/0x4f0
[ 2773.424245]  ? _copy_from_user+0xfb/0x1b0
[ 2773.424798]  __x64_sys_mount+0x282/0x300
[ 2773.425368]  ? copy_mnt_ns+0xa00/0xa00
[ 2773.425911]  ? rcu_read_lock_sched_held+0x3e/0x80
[ 2773.426557]  do_syscall_64+0x33/0x40
[ 2773.427053]  entry_SYSCALL_64_after_hwframe+0x61/0xc6
[ 2773.427723] RIP: 0033:0x7f38308e8b19
[ 2773.428211] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 2773.430632] RSP: 002b:00007f382de5e188 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5
[ 2773.431611] RAX: ffffffffffffffda RBX: 00007f38309fbf60 RCX: 00007f38308e8b19
[ 2773.432533] RDX: 00000000200000c0 RSI: 0000000020000040 RDI: 0000000000000000
[ 2773.433488] RBP: 00007f382de5e1d0 R08: 0000000020000280 R09: 0000000000000000
[ 2773.434405] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[ 2773.435312] R13: 00007ffca2bf07df R14: 00007f382de5e300 R15: 0000000000022000
21:26:59 executing program 4:
openat$vcs(0xffffffffffffff9c, &(0x7f0000000040), 0x0, 0x0)
openat$sr(0xffffffffffffff9c, &(0x7f00000035c0), 0x0, 0x0)
openat$sr(0xffffffffffffff9c, &(0x7f00000000c0), 0x224400, 0x0)
openat$rtc(0xffffffffffffff9c, &(0x7f0000000200), 0x0, 0x0)
pipe(&(0x7f00000001c0)={<r0=>0xffffffffffffffff})
open(&(0x7f00000016c0)='./cgroup.net/cgroup.procs\x00', 0x0, 0x0)
pselect6(0x40, &(0x7f0000000180), &(0x7f00000001c0)={0x3fc}, 0x0, 0x0, 0x0)
r1 = ioctl$TIOCGPTPEER(r0, 0x5441, 0x8e)
fchmod(r1, 0x80)

21:26:59 executing program 2:
syz_mount_image$vfat(&(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x0, 0x2, &(0x7f0000000180)=[{&(0x7f0000000140)="eb3c906d6b66732e66617400020801000470008400f801", 0x17}, {0x0, 0x0, 0x1000a00}], 0x0, &(0x7f0000000240)=ANY=[])
getsockname(0xffffffffffffffff, &(0x7f00000001c0)=@pppoe={0x18, 0x0, {0x0, @dev}}, &(0x7f0000000000)=0x80)
chdir(&(0x7f0000000240)='./file0\x00')
r0 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x105142, 0x0)
ioctl$FS_IOC_RESVSP(r0, 0x40305828, &(0x7f0000000040)={0x0, 0x0, 0x0, 0x4000006})

[ 2791.591620] FAULT_INJECTION: forcing a failure.
[ 2791.591620] name failslab, interval 1, probability 0, space 0, times 0
[ 2791.593930] CPU: 0 PID: 26095 Comm: syz-executor.5 Not tainted 5.10.172 #1
[ 2791.594868] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 2791.595927] Call Trace:
[ 2791.596290]  dump_stack+0x107/0x167
[ 2791.596791]  should_fail.cold+0x5/0xa
[ 2791.597309]  ? create_object.isra.0+0x3a/0xa20
[ 2791.597948]  should_failslab+0x5/0x20
[ 2791.598454]  kmem_cache_alloc+0x5b/0x360
[ 2791.598995]  create_object.isra.0+0x3a/0xa20
[ 2791.599581]  ? __kasan_kmalloc.constprop.0+0xc9/0xd0
[ 2791.600258]  kmem_cache_alloc+0x159/0x360
[ 2791.600836]  __kernfs_new_node+0xd4/0x850
[ 2791.601433]  ? kernfs_dop_revalidate+0x3a0/0x3a0
[ 2791.602080]  ? __mutex_unlock_slowpath+0xe1/0x600
[ 2791.602726]  ? asm_sysvec_apic_timer_interrupt+0x12/0x20
[ 2791.603446]  ? mark_held_locks+0x9e/0xe0
[ 2791.603988]  ? lockdep_hardirqs_on_prepare+0x277/0x3e0
[ 2791.604671]  kernfs_new_node+0x93/0x120
[ 2791.605206]  __kernfs_create_file+0x51/0x350
[ 2791.605820]  sysfs_add_file_mode_ns+0x221/0x560
[ 2791.606456]  internal_create_group+0x324/0xb30
[ 2791.607099]  ? sysfs_remove_group+0x170/0x170
[ 2791.607694]  ? kernfs_name_hash+0xe7/0x110
[ 2791.608262]  ? kernfs_find_ns+0x256/0x380
[ 2791.608815]  sysfs_slab_add+0x188/0x200
[ 2791.609359]  __kmem_cache_create+0x3db/0x520
[ 2791.609978]  kmem_cache_create_usercopy+0x1db/0x2f0
[ 2791.610643]  p9_client_create+0xc2b/0x1090
[ 2791.611233]  ? p9_client_flush+0x430/0x430
[ 2791.611784]  ? lockdep_init_map_type+0x2c7/0x780
[ 2791.612406]  ? rcu_read_lock_sched_held+0x3e/0x80
[ 2791.613042]  ? __raw_spin_lock_init+0x36/0x110
[ 2791.613678]  v9fs_session_init+0x1dd/0x16a0
[ 2791.614299]  ? kmem_cache_alloc_trace+0x151/0x360
[ 2791.614967]  ? v9fs_show_options+0x690/0x690
[ 2791.615569]  ? kasan_unpoison_shadow+0x33/0x50
[ 2791.616173]  ? __kasan_kmalloc.constprop.0+0xc9/0xd0
[ 2791.616856]  v9fs_mount+0x79/0x8f0
[ 2791.617332]  ? v9fs_write_inode+0x60/0x60
[ 2791.617957]  legacy_get_tree+0x105/0x220
[ 2791.621824]  vfs_get_tree+0x8e/0x300
[ 2791.622329]  path_mount+0x13be/0x20b0
[ 2791.622855]  ? strncpy_from_user+0x9e/0x470
[ 2791.623433]  ? finish_automount+0xa40/0xa40
[ 2791.624019]  ? getname_flags.part.0+0x1dd/0x4f0
[ 2791.624640]  ? _copy_from_user+0xfb/0x1b0
[ 2791.625205]  __x64_sys_mount+0x282/0x300
[ 2791.625786]  ? copy_mnt_ns+0xa00/0xa00
[ 2791.626320]  ? rcu_read_lock_sched_held+0x3e/0x80
[ 2791.626732] 9pnet: Insufficient options for proto=fd
[ 2791.626969]  do_syscall_64+0x33/0x40
[ 2791.626993]  entry_SYSCALL_64_after_hwframe+0x61/0xc6
[ 2791.628831] RIP: 0033:0x7f38308e8b19
[ 2791.629343] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 2791.631779] RSP: 002b:00007f382de5e188 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5
[ 2791.632772] RAX: ffffffffffffffda RBX: 00007f38309fbf60 RCX: 00007f38308e8b19
[ 2791.633739] RDX: 00000000200000c0 RSI: 0000000020000040 RDI: 0000000000000000
[ 2791.634685] RBP: 00007f382de5e1d0 R08: 0000000020000280 R09: 0000000000000000
[ 2791.635613] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
21:27:18 executing program 3:
openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x105142, 0x0)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x400}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
pipe(&(0x7f00000001c0)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
mount$9p_fd(0x0, &(0x7f0000000040)='./file1\x00', &(0x7f00000000c0), 0x300000000000000, &(0x7f0000000280)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {}, 0x2c, {[{@nodevmap}]}})
openat(r1, &(0x7f0000000180)='./file1\x00', 0x0, 0x0)

21:27:18 executing program 7:
perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
io_setup(0x7f, &(0x7f00000002c0)=<r0=>0x0)
io_pgetevents(r0, 0x1, 0x1, &(0x7f0000000000)=[{}], 0x0, 0x0)
io_submit(r0, 0x0, &(0x7f0000000340))

21:27:18 executing program 2:
syz_mount_image$vfat(&(0x7f00000001c0), &(0x7f00000000c0)='./file0\x00', 0x81, 0x2, &(0x7f0000000180)=[{&(0x7f0000000080)="eb3c906d6b66732e66617400020801000470008400f801", 0x17, 0x8}, {0x0, 0xffffffffffffffa2, 0x1000a00}], 0x1, &(0x7f0000000000)=ANY=[])
chdir(&(0x7f0000000040)='./file0\x00')
r0 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x105142, 0x0)
creat(&(0x7f0000000000)='./file1\x00', 0x0)
ioctl$FS_IOC_RESVSP(r0, 0x40305828, &(0x7f0000000040)={0x0, 0x0, 0x0, 0x4000006})

21:27:18 executing program 5:
openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x105142, 0x0)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
pipe(&(0x7f00000001c0)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
mount$9p_fd(0x0, &(0x7f0000000040)='./file1\x00', &(0x7f00000000c0), 0x0, &(0x7f0000000280)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}}) (fail_nth: 78)
openat(0xffffffffffffffff, 0x0, 0x0, 0x0)

21:27:18 executing program 0:
syz_mount_image$vfat(&(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x0, 0x2, &(0x7f0000000180)=[{&(0x7f0000000140)="eb3c906d6b66732e66617400020801000470008400f801", 0x17}, {0x0, 0x0, 0x1000a00}], 0x0, &(0x7f0000000240)=ANY=[])
chdir(&(0x7f0000000040)='./file0\x00')
mount$cgroup(0x0, 0x0, &(0x7f0000000400), 0x0, 0x0)
r0 = syz_io_uring_setup(0x22, &(0x7f0000000680)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000180)=<r1=>0x0, &(0x7f0000002a40)=<r2=>0x0)
r3 = io_uring_register$IORING_REGISTER_PERSONALITY(r0, 0x9, 0x0, 0x0)
r4 = socket$nl_netfilter(0x10, 0x3, 0xc)
syz_io_uring_submit(r1, r2, &(0x7f0000000400)=@IORING_OP_WRITEV={0x2, 0x0, 0x0, @fd=r4, 0x0, 0x0, 0x0, 0x0, 0x0, {0x0, r3}}, 0x0)
r5 = syz_io_uring_setup(0x22, &(0x7f0000000680)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000180), &(0x7f0000002a40))
io_uring_register$IORING_REGISTER_PERSONALITY(r5, 0x9, 0x0, 0x0)
syz_io_uring_submit(r1, 0x0, &(0x7f0000000440)=@IORING_OP_FSYNC={0x3, 0x2, 0x0, @fd_index=0x9, 0x0, 0x0, 0x0, 0x0, 0x1}, 0x2)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r6 = openat(0xffffffffffffff9c, &(0x7f00000002c0)='./file1\x00', 0x105142, 0x0)
r7 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0)
mount(&(0x7f0000000200)=ANY=[@ANYBLOB="2f6f651317868af191bdb2"], &(0x7f0000000240)='./file0\x00', &(0x7f0000000280)='nfsd\x00', 0x800000, &(0x7f0000000300)='cgroup\x00')
sendfile(r6, r7, 0x0, 0x100000001)
newfstatat(0xffffffffffffff9c, &(0x7f0000000340)='./file1\x00', &(0x7f0000000380), 0x400)

21:27:18 executing program 1:
openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x105142, 0x0)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
pipe(&(0x7f00000001c0))
mount$9p_fd(0x0, &(0x7f0000000040)='./file1\x00', &(0x7f00000000c0), 0xa, &(0x7f0000000280)={'trans=fd,', {}, 0x2c, {}, 0x2c, {[{@nodevmap}]}})

21:27:18 executing program 6:
r0 = syz_mount_image$vfat(&(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x0, 0x2, &(0x7f0000000180)=[{&(0x7f0000000140)="eb3c906d6b66732e66617400020801000470008400f801", 0x17}, {0x0, 0x0, 0x1000a00}], 0x0, &(0x7f0000000240)=ANY=[])
chdir(&(0x7f0000000040)='./file0\x00')
openat2(r0, &(0x7f0000000100)='./file0\x00', &(0x7f00000001c0)={0x40000, 0x81}, 0x18)
mount$cgroup(0x0, 0x0, &(0x7f0000000400), 0x0, 0x0)
r1 = syz_io_uring_setup(0x22, &(0x7f0000000680)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000180)=<r2=>0x0, &(0x7f0000002a40)=<r3=>0x0)
io_uring_register$IORING_REGISTER_PERSONALITY(r1, 0x9, 0x0, 0x0)
socket$nl_netfilter(0x10, 0x3, 0xc)
syz_io_uring_submit(r2, r3, 0x0, 0x0)
r4 = syz_io_uring_setup(0x22, &(0x7f0000000680)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000180), &(0x7f0000002a40))
r5 = io_uring_register$IORING_REGISTER_PERSONALITY(r4, 0x9, 0x0, 0x0)
syz_io_uring_submit(0x0, 0x0, &(0x7f0000000440)=@IORING_OP_FSYNC={0x3, 0x2, 0x0, @fd_index=0x9, 0x0, 0x0, 0x0, 0x0, 0x1, {0x0, r5}}, 0x2)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r6 = openat(0xffffffffffffff9c, &(0x7f00000002c0)='./file1\x00', 0x105142, 0x0)
r7 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0)
sendfile(r6, r7, 0x0, 0x100000001)
newfstatat(0xffffffffffffff9c, &(0x7f0000000340)='./file1\x00', &(0x7f0000000380), 0x400)

21:27:18 executing program 4:
r0 = openat$vcs(0xffffffffffffff9c, &(0x7f0000000040), 0x0, 0x0)
perf_event_open(&(0x7f0000000100)={0x2, 0x80, 0x5e, 0x0, 0x6, 0x9, 0x0, 0x4, 0x10200, 0x8, 0x1, 0x0, 0x1, 0x1, 0x1, 0x1, 0x0, 0x0, 0x1, 0x1, 0x1, 0x1, 0x1, 0x0, 0x0, 0x0, 0x1, 0x0, 0x1, 0x0, 0x1, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x1, 0x1, 0x1, 0x0, 0x0, 0x1, 0x1, 0x1, 0x0, 0x0, 0x0, 0x20, 0x0, @perf_bp={&(0x7f0000000080), 0x1}, 0x800, 0x3ff, 0x4, 0x6, 0xfc, 0x43, 0x8, 0x0, 0x0, 0x0, 0x7f}, 0xffffffffffffffff, 0x5, r0, 0x8)
openat$sr(0xffffffffffffff9c, &(0x7f00000035c0), 0x0, 0x0)
openat$sr(0xffffffffffffff9c, &(0x7f00000000c0), 0x224400, 0x0)
openat$rtc(0xffffffffffffff9c, &(0x7f0000000200), 0x0, 0x0)
pipe(&(0x7f00000001c0)={<r1=>0xffffffffffffffff})
ioctl$RTC_UIE_ON(r1, 0x7003)
open(&(0x7f00000016c0)='./cgroup.net/cgroup.procs\x00', 0x0, 0x0)
pselect6(0x40, &(0x7f0000000000)={0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x4}, &(0x7f00000001c0)={0x3fc}, 0x0, 0x0, 0x0)
syz_open_dev$tty1(0xc, 0x4, 0x1)

[ 2791.636551] R13: 00007ffca2bf07df R14: 00007f382de5e300 R15: 0000000000022000
[ 2791.676320] FAT-fs (loop2): bogus number of reserved sectors
[ 2791.677310] FAT-fs (loop2): Can't find a valid FAT filesystem
21:27:18 executing program 3:
openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x105142, 0x0)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x400}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
pipe(&(0x7f00000001c0)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
mount$9p_fd(0x0, &(0x7f0000000040)='./file1\x00', &(0x7f00000000c0), 0x400000000000000, &(0x7f0000000280)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {}, 0x2c, {[{@nodevmap}]}})
openat(r1, &(0x7f0000000180)='./file1\x00', 0x0, 0x0)

[ 2791.782817] FAT-fs (loop2): Unrecognized mount option "./file1" or missing value
21:27:18 executing program 4:
r0 = openat$vcs(0xffffffffffffff9c, &(0x7f0000000040), 0x0, 0x0)
openat$sr(0xffffffffffffff9c, &(0x7f00000000c0), 0x224400, 0x0)
r1 = syz_open_dev$vcsn(&(0x7f0000000080), 0x0, 0x280000)
sendmsg$NFNL_MSG_CTHELPER_GET(r1, &(0x7f00000002c0)={&(0x7f0000000100)={0x10, 0x0, 0x0, 0x80}, 0xc, &(0x7f0000000140)={&(0x7f0000000240)={0x48, 0x1, 0x9, 0x101, 0x0, 0x0, {0x2}, [@NFCTH_PRIV_DATA_LEN={0x8, 0x5, 0x1, 0x0, 0xf}, @NFCTH_TUPLE={0x14, 0x2, [@CTA_TUPLE_ZONE={0x6, 0x3, 0x1, 0x0, 0x3}, @CTA_TUPLE_ZONE={0x6, 0x3, 0x1, 0x0, 0x1}]}, @NFCTH_QUEUE_NUM={0x8, 0x3, 0x1, 0x0, 0x7}, @NFCTH_QUEUE_NUM={0x8, 0x3, 0x1, 0x0, 0x5}, @NFCTH_PRIV_DATA_LEN={0x8, 0x5, 0x1, 0x0, 0x12}]}, 0x48}, 0x1, 0x0, 0x0, 0x20004000}, 0xc000)
r2 = openat$rtc(0xffffffffffffff9c, &(0x7f0000000200), 0x0, 0x0)
ioctl$AUTOFS_IOC_EXPIRE_MULTI(r2, 0x40049366, &(0x7f0000000000))
ioctl$F2FS_IOC_MOVE_RANGE(0xffffffffffffffff, 0xc020f509, &(0x7f0000000300)={<r3=>0xffffffffffffffff, 0xc4, 0xffff, 0x100})
ioctl$RTC_ALM_SET(r3, 0x40247007, &(0x7f0000000340)={0xc, 0x9, 0x8, 0x6, 0xa, 0xf9, 0x3, 0x65, 0xffffffffffffffff})
pipe(&(0x7f00000001c0)={0xffffffffffffffff, <r4=>0xffffffffffffffff})
r5 = open(&(0x7f00000016c0)='./cgroup.net/cgroup.procs\x00', 0x0, 0x6)
r6 = fcntl$dupfd(r0, 0x406, r5)
r7 = fcntl$dupfd(r5, 0x406, r4)
r8 = perf_event_open(&(0x7f0000001d80)={0x2, 0x80, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
mmap(&(0x7f0000ffc000/0x2000)=nil, 0x2000, 0x0, 0x13, r8, 0x0)
pipe(&(0x7f00000001c0)={<r9=>0xffffffffffffffff, <r10=>0xffffffffffffffff})
mount$9p_fd(0x0, &(0x7f0000000040)='./file1\x00', &(0x7f00000000c0), 0x0, &(0x7f0000000280)=ANY=[@ANYBLOB="7472616e733d66642c7266646eff3d", @ANYRESHEX=r9, @ANYBLOB=',wfdno=', @ANYRESHEX=r10, @ANYBLOB=',nodevmap,\x00'])
io_submit(0x0, 0x3, &(0x7f0000000680)=[&(0x7f0000000400)={0x0, 0x0, 0x0, 0x6, 0x2, 0xffffffffffffffff, &(0x7f00000003c0)="aab087dc07305bf32314740e2571a437803a2058a6009bdaa7f3605adb863d4a6024ae48e4499665dc12e3ac02fa0f2f064b", 0x32, 0x80000001, 0x0, 0x2, r6}, &(0x7f0000000500)={0x0, 0x0, 0x0, 0x3, 0x7f, 0xffffffffffffffff, &(0x7f0000000440)="62c88039770be9181234f332cb8d2e9d58d9a6ec5a12517d276749fc425537b41d024aa9e5d9094dda5d1275d7fda5b14708e9e9699a780520df86f8d177c01a991e1dfada0f235147e501df173f81b65ba78e06db431ebee3700bcaac40f0b3edc0387c417a8e1d2d47260bf0a52c10190df7eb84d39fd034b5a82e881a4b9de921b5f128bbe4", 0x87, 0x9, 0x0, 0x1, r7}, &(0x7f0000000640)={0x0, 0x0, 0x0, 0x7, 0x4, r8, &(0x7f0000000540)="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", 0xff, 0x0, 0x0, 0x2, r9}])
pselect6(0x40, &(0x7f0000000180), &(0x7f00000001c0)={0x3fc}, 0x0, 0x0, 0x0)
perf_event_open(&(0x7f0000001d80)={0x2, 0x80, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x2)
io_submit(0x0, 0x4, &(0x7f0000000b40)=[&(0x7f00000007c0)={0x0, 0x0, 0x0, 0x5, 0x1, 0xffffffffffffffff, &(0x7f00000006c0)="acd9f1d52e52a1822e77c7abf14ef9bc67a3ae3fde98bdbe0351670be8b395ac2d488938bedbb52d2f529000c5b72a1e970998addb979edddec4f87d42f055509b9acd2fb047093fb11957f4573d95e263cd4724a325621f07849ef0a0634833a429b8447687e54e1c2fa6a1a6d41597c808b7dd2ebb7a0c3e8dad44c1366efa34f75163b52aa8b8f8d4eb65edc9a387349c4efb4adc5958f5648679a1080825", 0xa0, 0x2}, &(0x7f0000000900)={0x0, 0x0, 0x0, 0x2, 0x2, r0, &(0x7f0000000800)="a11172f918d20a71e8fb095a2334472ef988ed7ea3cca2354baccad0bde8acc404dd9e74fc222f424f419f0675f2eabdd6fde6961286c9d487dc21286d277f0d1056c5c7636231768d015b2b68808919470df8bb0de1382df7bb059b52e9327fadca134c0bf370ac8f3dd00493ddfb394b533f6bce791d24a4eea2a00507fd660083359a1e19ff38101b36f0b3dcea64cf9b2f9952c0a263944fc7f699315dd68aee169c33e772eeafb2e15f4608bc626ae6d108f3dce9bcad3dd2997d4633b8", 0xc0, 0x1}, &(0x7f0000000a00)={0x0, 0x0, 0x0, 0x5, 0x200, 0xffffffffffffffff, &(0x7f0000000940)="8ca1499597e3b2d32b7db7e405913ff19941d53a0d07558cf52ce1f624698e882286068d13fd990b250377e8dd9fd69ad87676be1b143c11e1e0db56e35a25cadb97933db64af7c985e87543b961e7bf61349559319f0cf25d254bf7c34e7cb74a961aaa4acbfa84893382e2a11f38c8e3cfef4cce67e8a9830ff1ee607874fabc950c21b288628bcf3e08b7cc76bdfe628f818584f14e1467ce1d60", 0x9c, 0x8, 0x0, 0x3, r5}, &(0x7f0000000b00)={0x0, 0x0, 0x0, 0x7, 0x8000, 0xffffffffffffffff, &(0x7f0000000a40)="d85552e46dfeb67b8575071e1cd2a9aa41f3d6b4be64d435b8a2fd1893e4891e46d4bf5cb8314bfbf854c32c494f866ffbed6c95f0121f52a2775766d75878b60739a4f2d848c0c3c29239648d5af7a27b858562f4d280001cc5d6029b45d05e9d4aacb8e5b5b90689ef16ee876bb508e6e0c0683dad80b02714144cb52c0f4b2a36c413e4657067f622b72a4131b49372ca5451de836d04e3a7ed9081c93385fb466182ca2310b9b04278df2b4769aeb8f422e44ff991e932f1b52635f8", 0xbe, 0x9}])

21:27:18 executing program 3:
openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x105142, 0x0)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x400}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
pipe(&(0x7f00000001c0)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
mount$9p_fd(0x0, &(0x7f0000000040)='./file1\x00', &(0x7f00000000c0), 0x500000000000000, &(0x7f0000000280)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {}, 0x2c, {[{@nodevmap}]}})
openat(r1, &(0x7f0000000180)='./file1\x00', 0x0, 0x0)

21:27:18 executing program 1:
openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x105142, 0x0)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
pipe(&(0x7f00000001c0))
mount$9p_fd(0x0, &(0x7f0000000040)='./file1\x00', &(0x7f00000000c0), 0xb, &(0x7f0000000280)={'trans=fd,', {}, 0x2c, {}, 0x2c, {[{@nodevmap}]}})

21:27:18 executing program 5:
openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x105142, 0x0)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
pipe(&(0x7f00000001c0)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
mount$9p_fd(0x0, &(0x7f0000000040)='./file1\x00', &(0x7f00000000c0), 0x0, &(0x7f0000000280)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}}) (fail_nth: 79)
openat(0xffffffffffffffff, 0x0, 0x0, 0x0)

21:27:18 executing program 2:
syz_mount_image$vfat(&(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x0, 0x2, &(0x7f0000000180)=[{&(0x7f0000000140)="eb3c906d6b66732e66617400020801000470008400f801", 0x17}, {0x0, 0x0, 0x1000a00}], 0x0, &(0x7f0000000240)=ANY=[])
chdir(&(0x7f0000000040)='./file0\x00')
r0 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x105142, 0x0)
getpeername(r0, &(0x7f00000001c0)=@ethernet={0x0, @dev}, &(0x7f0000000000)=0x80)
r1 = perf_event_open(&(0x7f0000001d80)={0x2, 0x80, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
mmap(&(0x7f0000ffc000/0x2000)=nil, 0x2000, 0x0, 0x13, r1, 0x0)
perf_event_open(&(0x7f0000001d80)={0x2, 0x80, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, r1, 0x2)
r2 = syz_open_dev$sg(&(0x7f0000000240), 0x1000, 0x100)
sendfile(r1, r2, &(0x7f0000000280)=0x1f, 0x7c99)
ioctl$FS_IOC_RESVSP(r0, 0x40305828, &(0x7f0000000040)={0x0, 0x0, 0x0, 0x4000006})

[ 2791.985156] FAULT_INJECTION: forcing a failure.
[ 2791.985156] name failslab, interval 1, probability 0, space 0, times 0
[ 2791.989343] CPU: 0 PID: 26230 Comm: syz-executor.5 Not tainted 5.10.172 #1
[ 2791.991375] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 2791.993753] Call Trace:
[ 2791.994497]  dump_stack+0x107/0x167
[ 2791.995531]  should_fail.cold+0x5/0xa
[ 2791.996635]  ? __kernfs_new_node+0xd4/0x850
[ 2791.997970]  should_failslab+0x5/0x20
[ 2791.999163]  kmem_cache_alloc+0x5b/0x360
21:27:18 executing program 0:
syz_mount_image$vfat(&(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x0, 0x2, &(0x7f0000000180)=[{&(0x7f0000000140)="eb3c906d6b66732e66617400020801000470008400f801", 0x17}, {0x0, 0x0, 0x1000a00}], 0x0, &(0x7f0000000240)=ANY=[])
chdir(&(0x7f0000000040)='./file0\x00')
mount$cgroup(0x0, 0x0, &(0x7f0000000400), 0x0, 0x0)
r0 = syz_io_uring_setup(0x22, &(0x7f0000000680)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000180)=<r1=>0x0, &(0x7f0000002a40)=<r2=>0x0)
r3 = io_uring_register$IORING_REGISTER_PERSONALITY(r0, 0x9, 0x0, 0x0)
r4 = socket$nl_netfilter(0x10, 0x3, 0xc)
syz_io_uring_submit(r1, r2, &(0x7f0000000400)=@IORING_OP_WRITEV={0x2, 0x0, 0x0, @fd=r4, 0x0, 0x0, 0x0, 0x0, 0x0, {0x0, r3}}, 0x0)
r5 = syz_io_uring_setup(0x22, &(0x7f0000000680)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000180), &(0x7f0000002a40))
io_uring_register$IORING_REGISTER_PERSONALITY(r5, 0x9, 0x0, 0x0)
syz_io_uring_submit(r1, 0x0, &(0x7f0000000440)=@IORING_OP_FSYNC={0x3, 0x2, 0x0, @fd_index=0x9, 0x0, 0x0, 0x0, 0x0, 0x1}, 0x2)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r6 = openat(0xffffffffffffff9c, &(0x7f00000002c0)='./file1\x00', 0x105142, 0x0)
r7 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0)
mount(&(0x7f0000000200)=ANY=[@ANYBLOB="2f6f651317868af191bdb2"], &(0x7f0000000240)='./file0\x00', &(0x7f0000000280)='nfsd\x00', 0x800000, &(0x7f0000000300)='cgroup\x00')
sendfile(r6, r7, 0x0, 0x100000001)
newfstatat(0xffffffffffffff9c, &(0x7f0000000340)='./file1\x00', &(0x7f0000000380), 0x400)

[ 2792.000452]  __kernfs_new_node+0xd4/0x850
[ 2792.003744]  ? kernfs_dop_revalidate+0x3a0/0x3a0
[ 2792.004994]  ? __mutex_unlock_slowpath+0xe1/0x600
[ 2792.006410]  ? wait_for_completion_io+0x270/0x270
[ 2792.007730]  ? kernfs_next_descendant_post+0x1a7/0x2a0
[ 2792.009263]  kernfs_new_node+0x93/0x120
[ 2792.011171]  __kernfs_create_file+0x51/0x350
[ 2792.012455]  sysfs_add_file_mode_ns+0x221/0x560
[ 2792.013831]  internal_create_group+0x324/0xb30
[ 2792.015206]  ? sysfs_remove_group+0x170/0x170
[ 2792.016368]  ? kernfs_name_hash+0xe7/0x110
[ 2792.017512]  ? kernfs_find_ns+0x256/0x380
[ 2792.018790]  sysfs_slab_add+0x188/0x200
[ 2792.019930]  __kmem_cache_create+0x3db/0x520
[ 2792.021181]  kmem_cache_create_usercopy+0x1db/0x2f0
[ 2792.022631]  p9_client_create+0xc2b/0x1090
[ 2792.023819]  ? p9_client_flush+0x430/0x430
[ 2792.024902]  ? lockdep_init_map_type+0x2c7/0x780
[ 2792.026213]  ? rcu_read_lock_sched_held+0x3e/0x80
[ 2792.027472]  ? __raw_spin_lock_init+0x36/0x110
[ 2792.028699]  v9fs_session_init+0x1dd/0x16a0
[ 2792.029834]  ? irqentry_enter+0x26/0x60
[ 2792.030973]  ? asm_sysvec_apic_timer_interrupt+0x12/0x20
[ 2792.032439]  ? trace_hardirqs_on+0x5b/0x180
[ 2792.033721]  ? v9fs_show_options+0x690/0x690
[ 2792.037580]  ? kasan_unpoison_shadow+0x33/0x50
[ 2792.038823]  ? __kasan_kmalloc.constprop.0+0xc9/0xd0
[ 2792.040225]  v9fs_mount+0x79/0x8f0
[ 2792.041264]  ? v9fs_write_inode+0x60/0x60
[ 2792.042429]  legacy_get_tree+0x105/0x220
[ 2792.043540]  vfs_get_tree+0x8e/0x300
[ 2792.044561]  path_mount+0x13be/0x20b0
[ 2792.045670]  ? strncpy_from_user+0x9e/0x470
[ 2792.046809]  ? finish_automount+0xa40/0xa40
[ 2792.047959]  ? getname_flags.part.0+0x1dd/0x4f0
[ 2792.049275]  ? _copy_from_user+0xfb/0x1b0
[ 2792.050439]  __x64_sys_mount+0x282/0x300
[ 2792.051523]  ? copy_mnt_ns+0xa00/0xa00
[ 2792.052657]  do_syscall_64+0x33/0x40
[ 2792.053704]  entry_SYSCALL_64_after_hwframe+0x61/0xc6
[ 2792.055132] RIP: 0033:0x7f38308e8b19
[ 2792.056167] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 2792.062048] RSP: 002b:00007f382de5e188 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5
[ 2792.064518] RAX: ffffffffffffffda RBX: 00007f38309fbf60 RCX: 00007f38308e8b19
[ 2792.066724] RDX: 00000000200000c0 RSI: 0000000020000040 RDI: 0000000000000000
[ 2792.068753] RBP: 00007f382de5e1d0 R08: 0000000020000280 R09: 0000000000000000
[ 2792.070742] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[ 2792.072688] R13: 00007ffca2bf07df R14: 00007f382de5e300 R15: 0000000000022000
[ 2792.089290] kmem_cache_create(9p-fcall-cache) failed with error -12
[ 2792.091793] CPU: 0 PID: 26230 Comm: syz-executor.5 Not tainted 5.10.172 #1
[ 2792.093995] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 2792.096723] Call Trace:
[ 2792.097583]  dump_stack+0x107/0x167
[ 2792.098749]  kmem_cache_create_usercopy.cold+0x17/0x65
[ 2792.100407]  p9_client_create+0xc2b/0x1090
[ 2792.101787]  ? p9_client_flush+0x430/0x430
[ 2792.103113]  ? lockdep_init_map_type+0x2c7/0x780
[ 2792.104631]  ? rcu_read_lock_sched_held+0x3e/0x80
[ 2792.106169]  ? __raw_spin_lock_init+0x36/0x110
[ 2792.107676]  v9fs_session_init+0x1dd/0x16a0
[ 2792.109172]  ? irqentry_enter+0x26/0x60
[ 2792.110483]  ? asm_sysvec_apic_timer_interrupt+0x12/0x20
[ 2792.112043]  ? trace_hardirqs_on+0x5b/0x180
[ 2792.113266]  ? v9fs_show_options+0x690/0x690
[ 2792.114564]  ? kasan_unpoison_shadow+0x33/0x50
[ 2792.115888]  ? __kasan_kmalloc.constprop.0+0xc9/0xd0
[ 2792.117318]  v9fs_mount+0x79/0x8f0
[ 2792.118286]  ? v9fs_write_inode+0x60/0x60
[ 2792.119495]  legacy_get_tree+0x105/0x220
[ 2792.120851]  vfs_get_tree+0x8e/0x300
[ 2792.121892]  path_mount+0x13be/0x20b0
[ 2792.122962]  ? strncpy_from_user+0x9e/0x470
[ 2792.124199]  ? finish_automount+0xa40/0xa40
[ 2792.125405]  ? getname_flags.part.0+0x1dd/0x4f0
[ 2792.126820]  ? _copy_from_user+0xfb/0x1b0
[ 2792.128150]  __x64_sys_mount+0x282/0x300
[ 2792.129475]  ? copy_mnt_ns+0xa00/0xa00
[ 2792.130737]  do_syscall_64+0x33/0x40
[ 2792.131899]  entry_SYSCALL_64_after_hwframe+0x61/0xc6
[ 2792.133652] RIP: 0033:0x7f38308e8b19
[ 2792.134949] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 2792.140402] RSP: 002b:00007f382de5e188 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5
[ 2792.142495] RAX: ffffffffffffffda RBX: 00007f38309fbf60 RCX: 00007f38308e8b19
[ 2792.144632] RDX: 00000000200000c0 RSI: 0000000020000040 RDI: 0000000000000000
[ 2792.146765] RBP: 00007f382de5e1d0 R08: 0000000020000280 R09: 0000000000000000
[ 2792.148978] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[ 2792.151187] R13: 00007ffca2bf07df R14: 00007f382de5e300 R15: 0000000000022000
21:27:18 executing program 6:
r0 = syz_mount_image$vfat(&(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x0, 0x2, &(0x7f0000000180)=[{&(0x7f0000000140)="eb3c906d6b66732e66617400020801000470008400f801", 0x17}, {0x0, 0x0, 0x1000a00}], 0x0, &(0x7f0000000240)=ANY=[])
chdir(&(0x7f0000000040)='./file0\x00')
openat2(r0, &(0x7f0000000100)='./file0\x00', &(0x7f00000001c0)={0x40000, 0x81}, 0x18)
mount$cgroup(0x0, 0x0, &(0x7f0000000400), 0x0, 0x0)
r1 = syz_io_uring_setup(0x22, &(0x7f0000000680)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000180)=<r2=>0x0, &(0x7f0000002a40)=<r3=>0x0)
io_uring_register$IORING_REGISTER_PERSONALITY(r1, 0x9, 0x0, 0x0)
socket$nl_netfilter(0x10, 0x3, 0xc)
syz_io_uring_submit(r2, r3, 0x0, 0x0)
r4 = syz_io_uring_setup(0x22, &(0x7f0000000680)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000180), &(0x7f0000002a40))
r5 = io_uring_register$IORING_REGISTER_PERSONALITY(r4, 0x9, 0x0, 0x0)
syz_io_uring_submit(0x0, 0x0, &(0x7f0000000440)=@IORING_OP_FSYNC={0x3, 0x2, 0x0, @fd_index=0x9, 0x0, 0x0, 0x0, 0x0, 0x1, {0x0, r5}}, 0x2)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r6 = openat(0xffffffffffffff9c, &(0x7f00000002c0)='./file1\x00', 0x105142, 0x0)
r7 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0)
sendfile(r6, r7, 0x0, 0x100000001)
newfstatat(0xffffffffffffff9c, &(0x7f0000000340)='./file1\x00', &(0x7f0000000380), 0x400)

21:27:18 executing program 4:
openat$vcs(0xffffffffffffff9c, &(0x7f0000000040), 0x0, 0x0)
openat$sr(0xffffffffffffff9c, &(0x7f00000035c0), 0x0, 0x0)
openat$sr(0xffffffffffffff9c, &(0x7f00000000c0), 0x224400, 0x0)
openat$rtc(0xffffffffffffff9c, &(0x7f0000000200), 0x0, 0x0)
pipe(&(0x7f00000001c0))
open(&(0x7f00000016c0)='./cgroup.net/cgroup.procs\x00', 0x0, 0x0)
pselect6(0x40, &(0x7f0000000180)={0x0, 0x0, 0xffffffffffffffff}, &(0x7f00000001c0)={0x3fc}, 0x0, 0x0, 0x0)

21:27:36 executing program 3:
openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x105142, 0x0)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x400}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
pipe(&(0x7f00000001c0)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
mount$9p_fd(0x0, &(0x7f0000000040)='./file1\x00', &(0x7f00000000c0), 0x600000000000000, &(0x7f0000000280)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {}, 0x2c, {[{@nodevmap}]}})
openat(r1, &(0x7f0000000180)='./file1\x00', 0x0, 0x0)

21:27:36 executing program 1:
openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x105142, 0x0)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
pipe(&(0x7f00000001c0))
mount$9p_fd(0x0, &(0x7f0000000040)='./file1\x00', &(0x7f00000000c0), 0x300, &(0x7f0000000280)={'trans=fd,', {}, 0x2c, {}, 0x2c, {[{@nodevmap}]}})

21:27:36 executing program 4:
openat$vcs(0xffffffffffffff9c, &(0x7f0000000040), 0x0, 0x0)
openat$sr(0xffffffffffffff9c, &(0x7f00000035c0), 0x0, 0x0)
openat$sr(0xffffffffffffff9c, &(0x7f00000000c0), 0x224400, 0x0)
openat$rtc(0xffffffffffffff9c, &(0x7f0000000200), 0x0, 0x0)
pipe(&(0x7f00000001c0))
open(&(0x7f0000000080)='./cgroup.net/cgroup.procs\x00', 0x0, 0x1c)
pselect6(0x40, &(0x7f0000000180), &(0x7f00000001c0)={0x3fc}, 0x0, 0x0, 0x0)
clock_getres(0x0, &(0x7f0000000000))

21:27:36 executing program 5:
openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x105142, 0x0)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
pipe(&(0x7f00000001c0)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
mount$9p_fd(0x0, &(0x7f0000000040)='./file1\x00', &(0x7f00000000c0), 0x0, &(0x7f0000000280)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}}) (fail_nth: 80)
openat(0xffffffffffffffff, 0x0, 0x0, 0x0)

21:27:36 executing program 6:
r0 = syz_mount_image$vfat(&(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x0, 0x2, &(0x7f0000000180)=[{&(0x7f0000000140)="eb3c906d6b66732e66617400020801000470008400f801", 0x17}, {0x0, 0x0, 0x1000a00}], 0x0, &(0x7f0000000240)=ANY=[])
chdir(&(0x7f0000000040)='./file0\x00')
openat2(r0, &(0x7f0000000100)='./file0\x00', &(0x7f00000001c0)={0x40000, 0x81}, 0x18)
mount$cgroup(0x0, 0x0, &(0x7f0000000400), 0x0, 0x0)
r1 = syz_io_uring_setup(0x22, &(0x7f0000000680)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000180)=<r2=>0x0, &(0x7f0000002a40)=<r3=>0x0)
io_uring_register$IORING_REGISTER_PERSONALITY(r1, 0x9, 0x0, 0x0)
socket$nl_netfilter(0x10, 0x3, 0xc)
syz_io_uring_submit(r2, r3, 0x0, 0x0)
r4 = syz_io_uring_setup(0x22, &(0x7f0000000680)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000180), &(0x7f0000002a40))
io_uring_register$IORING_REGISTER_PERSONALITY(r4, 0x9, 0x0, 0x0)
syz_io_uring_submit(r2, 0x0, 0x0, 0x2)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r5 = openat(0xffffffffffffff9c, &(0x7f00000002c0)='./file1\x00', 0x105142, 0x0)
r6 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0)
sendfile(r5, r6, 0x0, 0x100000001)
newfstatat(0xffffffffffffff9c, &(0x7f0000000340)='./file1\x00', &(0x7f0000000380), 0x400)

21:27:36 executing program 7:
perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
io_setup(0x7f, &(0x7f00000002c0)=<r0=>0x0)
io_pgetevents(r0, 0x1, 0x1, &(0x7f0000000000)=[{}], 0x0, 0x0)
io_submit(r0, 0x1, &(0x7f0000000340)=[0x0])

[ 2810.400073] 9pnet: Insufficient options for proto=fd
21:27:36 executing program 0:
syz_mount_image$vfat(&(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x0, 0x2, &(0x7f0000000180)=[{&(0x7f0000000140)="eb3c906d6b66732e66617400020801000470008400f801", 0x17}, {0x0, 0x0, 0x1000a00}], 0x0, &(0x7f0000000240)=ANY=[])
chdir(&(0x7f0000000040)='./file0\x00')
mount$cgroup(0x0, 0x0, &(0x7f0000000400), 0x0, 0x0)
r0 = syz_io_uring_setup(0x22, &(0x7f0000000680)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000180)=<r1=>0x0, &(0x7f0000002a40)=<r2=>0x0)
r3 = io_uring_register$IORING_REGISTER_PERSONALITY(r0, 0x9, 0x0, 0x0)
r4 = socket$nl_netfilter(0x10, 0x3, 0xc)
syz_io_uring_submit(r1, r2, &(0x7f0000000400)=@IORING_OP_WRITEV={0x2, 0x0, 0x0, @fd=r4, 0x0, 0x0, 0x0, 0x0, 0x0, {0x0, r3}}, 0x0)
r5 = syz_io_uring_setup(0x22, &(0x7f0000000680)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000180), &(0x7f0000002a40))
r6 = io_uring_register$IORING_REGISTER_PERSONALITY(r5, 0x9, 0x0, 0x0)
syz_io_uring_submit(r1, 0x0, &(0x7f0000000440)=@IORING_OP_FSYNC={0x3, 0x2, 0x0, @fd_index=0x9, 0x0, 0x0, 0x0, 0x0, 0x1, {0x0, r6}}, 0x0)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r7 = openat(0xffffffffffffff9c, &(0x7f00000002c0)='./file1\x00', 0x105142, 0x0)
r8 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0)
mount(&(0x7f0000000200)=ANY=[@ANYBLOB="2f6f651317868af191bdb2"], &(0x7f0000000240)='./file0\x00', &(0x7f0000000280)='nfsd\x00', 0x800000, &(0x7f0000000300)='cgroup\x00')
sendfile(r7, r8, 0x0, 0x100000001)
newfstatat(0xffffffffffffff9c, &(0x7f0000000340)='./file1\x00', &(0x7f0000000380), 0x400)

21:27:36 executing program 2:
syz_mount_image$vfat(&(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x0, 0x2, &(0x7f0000000180)=[{&(0x7f0000000140)="eb3c906d6b66732e66617400020801000470008400f801", 0x17}, {0x0, 0x0, 0x1000a00}], 0x0, &(0x7f0000000240)=ANY=[])
chdir(&(0x7f0000000040)='./file0\x00')
r0 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x105142, 0x0)
ioctl$FS_IOC_RESVSP(r0, 0x40305828, &(0x7f0000000040)={0x0, 0x0, 0x0, 0x4000006})
openat(r0, &(0x7f0000000000)='./file1/file0\x00', 0x145080, 0x80)
pipe(&(0x7f00000001c0)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
mount$9p_fd(0x0, &(0x7f0000000040)='./file1\x00', &(0x7f00000000c0), 0x0, &(0x7f0000000280)={'trans=fd,', {'rfdno', 0x3d, r1}, 0x2c, {'wfdno', 0x3d, r2}, 0x2c, {[{@nodevmap}]}})
r3 = perf_event_open(&(0x7f0000001d80)={0x2, 0x80, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
mount(&(0x7f0000000300)=@sg0, &(0x7f0000000340)='./file1\x00', &(0x7f0000000380)='devpts\x00', 0x800, &(0x7f00000003c0)='\x00')
mmap(&(0x7f0000ffc000/0x2000)=nil, 0x2000, 0x0, 0x13, r3, 0x0)
r4 = perf_event_open(&(0x7f0000001d80)={0x2, 0x80, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
mmap(&(0x7f0000ffc000/0x2000)=nil, 0x2000, 0x0, 0x13, r4, 0x0)
perf_event_open(&(0x7f0000001d80)={0x2, 0x80, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, r4, 0x2)
pread64(r4, &(0x7f0000000200)=""/91, 0x5b, 0x1ff)
perf_event_open(&(0x7f0000001d80)={0x2, 0x80, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, r3, 0x2)
syz_genetlink_get_family_id$ethtool(&(0x7f0000000180), 0xffffffffffffffff)
clock_gettime(0x0, &(0x7f0000001c80)={<r5=>0x0, <r6=>0x0})
recvmmsg$unix(r1, &(0x7f0000001ac0)=[{{&(0x7f0000000440), 0x6e, &(0x7f0000000540)=[{&(0x7f00000004c0)=""/91, 0x5b}], 0x1}}, {{&(0x7f0000000580), 0x6e, &(0x7f0000000a40)=[{&(0x7f0000000600)=""/27, 0x1b}, {&(0x7f0000000640)=""/228, 0xe4}, {&(0x7f0000000740)=""/203, 0xcb}, {&(0x7f0000000840)=""/137, 0x89}, {&(0x7f0000000900)=""/11, 0xb}, {&(0x7f0000000940)=""/54, 0x36}, {&(0x7f0000000980)=""/72, 0x48}, {&(0x7f0000000a00)=""/36, 0x24}], 0x8, &(0x7f0000000ac0)=[@rights={{0x28, 0x1, 0x1, [0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff]}}, @rights={{0x14, 0x1, 0x1, [0xffffffffffffffff]}}, @rights={{0x20, 0x1, 0x1, [0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff]}}], 0x60}}, {{0x0, 0x0, &(0x7f0000000bc0)=[{&(0x7f00000020c0)=""/87, 0x57}], 0x1, &(0x7f0000000c00)=[@rights={{0x1c, 0x1, 0x1, [0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff]}}, @cred={{0x1c, 0x1, 0x2, {<r7=>0x0}}}, @cred={{0x1c}}, @cred={{0x1c}}, @rights={{0x2c, 0x1, 0x1, [0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff]}}, @rights={{0x10}}, @cred={{0x1c}}, @cred={{0x1c}}, @rights={{0x14, 0x1, 0x1, [0xffffffffffffffff]}}], 0x118}}, {{0x0, 0x0, &(0x7f0000001040)=[{&(0x7f0000000d40)=""/116, 0x74}, {&(0x7f0000000dc0)=""/158, 0x9e}, {&(0x7f0000000e80)=""/243, 0xf3}, {&(0x7f0000000f80)=""/76, 0x4c}, {&(0x7f0000002080)=""/45, 0x2d}], 0x5, &(0x7f00000010c0)=[@rights={{0x14, 0x1, 0x1, [0xffffffffffffffff]}}, @cred={{0x1c}}, @cred={{0x1c}}], 0x58}}, {{&(0x7f0000001140)=@abs, 0x6e, &(0x7f0000001280)=[{&(0x7f00000011c0)=""/162, 0xa2}], 0x1, &(0x7f00000012c0)=[@cred={{0x1c}}, @rights={{0x24, 0x1, 0x1, [0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff]}}], 0x48}}, {{0x0, 0x0, &(0x7f0000001540)=[{&(0x7f0000001340)=""/241, 0xf1}, {&(0x7f0000001440)=""/206, 0xce}], 0x2, &(0x7f0000001580)=[@rights={{0x2c, 0x1, 0x1, [0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff]}}], 0x30}}, {{0x0, 0x0, &(0x7f00000019c0)=[{&(0x7f00000015c0)=""/214, 0xd6}, {&(0x7f00000016c0)=""/251, 0xfb}, {&(0x7f00000017c0)=""/92, 0x5c}, {&(0x7f0000001840)=""/118, 0x76}, {&(0x7f00000018c0)=""/196, 0xc4}], 0x5, &(0x7f0000001a40)=[@cred={{0x1c}}, @cred={{0x1c}}, @rights={{0x24, 0x1, 0x1, [0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff]}}, @rights={{0x14, 0x1, 0x1, [0xffffffffffffffff]}}], 0x80}}], 0x7, 0x40010041, &(0x7f0000001cc0)={r5, r6+10000000})
sendmsg$nl_generic(0xffffffffffffffff, &(0x7f0000001d40)={&(0x7f0000000400)={0x10, 0x0, 0x0, 0x40000}, 0xc, &(0x7f0000001d00)={&(0x7f0000001e00)=ANY=[@ANYBLOB="7c0200002b0000012b00000000dbdf251400000050000d8014003500fc01000000000000000000000000000108008e00ac1e000105006900000000001f00230007407881b6161023225c6f3f4f64ecd0cc05002176078ad7062b990008002700", @ANYRES32=0xee01, @ANYBLOB="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", @ANYRES32=r7, @ANYBLOB="00699a4e7540798e7ad02c60cfb2116841458049c48016b71eb7a46d56d135e4abf7a7912517a16982fba2ea3b594d1c9efba483476b66693bf9706fe2efebbb7f5150c1f860e889c4ece3e7b22bf402e27eb338f3549400"], 0x27c}, 0x1, 0x0, 0x0, 0x480}, 0x20040000)
pidfd_getfd(r1, r3, 0x0)

[ 2810.473183] FAULT_INJECTION: forcing a failure.
[ 2810.473183] name failslab, interval 1, probability 0, space 0, times 0
[ 2810.474713] CPU: 0 PID: 26373 Comm: syz-executor.5 Not tainted 5.10.172 #1
[ 2810.475591] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 2810.476630] Call Trace:
[ 2810.476974]  dump_stack+0x107/0x167
[ 2810.477442]  should_fail.cold+0x5/0xa
[ 2810.477964]  ? create_object.isra.0+0x3a/0xa20
[ 2810.478556]  should_failslab+0x5/0x20
[ 2810.479052]  kmem_cache_alloc+0x5b/0x360
[ 2810.479580]  create_object.isra.0+0x3a/0xa20
[ 2810.480138]  ? __kasan_kmalloc.constprop.0+0xc9/0xd0
[ 2810.480801]  kmem_cache_alloc+0x159/0x360
[ 2810.481355]  __kernfs_new_node+0xd4/0x850
[ 2810.481928]  ? kernfs_dop_revalidate+0x3a0/0x3a0
[ 2810.482557]  ? __mutex_unlock_slowpath+0xe1/0x600
[ 2810.483186]  ? wait_for_completion_io+0x270/0x270
[ 2810.483811]  ? kernfs_next_descendant_post+0x1a7/0x2a0
[ 2810.484504]  kernfs_new_node+0x93/0x120
[ 2810.485040]  __kernfs_create_file+0x51/0x350
[ 2810.485653]  sysfs_add_file_mode_ns+0x221/0x560
[ 2810.486276]  internal_create_group+0x324/0xb30
[ 2810.486861]  ? sysfs_remove_group+0x170/0x170
[ 2810.487431]  ? kernfs_name_hash+0xe7/0x110
[ 2810.487995]  sysfs_slab_add+0x188/0x200
[ 2810.488514]  __kmem_cache_create+0x3db/0x520
[ 2810.489081]  kmem_cache_create_usercopy+0x1db/0x2f0
[ 2810.489774]  p9_client_create+0xc2b/0x1090
[ 2810.490321]  ? p9_client_flush+0x430/0x430
[ 2810.490877]  ? lockdep_init_map_type+0x2c7/0x780
[ 2810.491472]  ? rcu_read_lock_sched_held+0x3e/0x80
[ 2810.492087]  ? __raw_spin_lock_init+0x36/0x110
[ 2810.492677]  v9fs_session_init+0x1dd/0x16a0
[ 2810.493250]  ? kmem_cache_alloc_trace+0x151/0x360
[ 2810.493900]  ? v9fs_show_options+0x690/0x690
[ 2810.494484]  ? kasan_unpoison_shadow+0x33/0x50
[ 2810.495060]  ? __kasan_kmalloc.constprop.0+0xc9/0xd0
[ 2810.495720]  v9fs_mount+0x79/0x8f0
[ 2810.496188]  ? v9fs_write_inode+0x60/0x60
[ 2810.496737]  legacy_get_tree+0x105/0x220
[ 2810.497274]  vfs_get_tree+0x8e/0x300
[ 2810.497795]  path_mount+0x13be/0x20b0
[ 2810.498289]  ? strncpy_from_user+0x9e/0x470
[ 2810.498843]  ? finish_automount+0xa40/0xa40
[ 2810.499401]  ? getname_flags.part.0+0x1dd/0x4f0
[ 2810.500000]  ? _copy_from_user+0xfb/0x1b0
[ 2810.500541]  __x64_sys_mount+0x282/0x300
[ 2810.501057]  ? copy_mnt_ns+0xa00/0xa00
[ 2810.501563]  ? rcu_read_lock_sched_held+0x3e/0x80
[ 2810.502232]  do_syscall_64+0x33/0x40
[ 2810.502722]  entry_SYSCALL_64_after_hwframe+0x61/0xc6
[ 2810.503396] RIP: 0033:0x7f38308e8b19
[ 2810.503908] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 2810.506316] RSP: 002b:00007f382de5e188 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5
[ 2810.507280] RAX: ffffffffffffffda RBX: 00007f38309fbf60 RCX: 00007f38308e8b19
[ 2810.508179] RDX: 00000000200000c0 RSI: 0000000020000040 RDI: 0000000000000000
[ 2810.509078] RBP: 00007f382de5e1d0 R08: 0000000020000280 R09: 0000000000000000
[ 2810.510027] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[ 2810.510931] R13: 00007ffca2bf07df R14: 00007f382de5e300 R15: 0000000000022000
21:27:37 executing program 6:
r0 = syz_mount_image$vfat(&(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x0, 0x2, &(0x7f0000000180)=[{&(0x7f0000000140)="eb3c906d6b66732e66617400020801000470008400f801", 0x17}, {0x0, 0x0, 0x1000a00}], 0x0, &(0x7f0000000240)=ANY=[])
chdir(&(0x7f0000000040)='./file0\x00')
openat2(r0, &(0x7f0000000100)='./file0\x00', &(0x7f00000001c0)={0x40000, 0x81}, 0x18)
mount$cgroup(0x0, 0x0, &(0x7f0000000400), 0x0, 0x0)
r1 = syz_io_uring_setup(0x22, &(0x7f0000000680)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000180)=<r2=>0x0, &(0x7f0000002a40)=<r3=>0x0)
io_uring_register$IORING_REGISTER_PERSONALITY(r1, 0x9, 0x0, 0x0)
socket$nl_netfilter(0x10, 0x3, 0xc)
syz_io_uring_submit(r2, r3, 0x0, 0x0)
r4 = syz_io_uring_setup(0x22, &(0x7f0000000680)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000180), &(0x7f0000002a40))
io_uring_register$IORING_REGISTER_PERSONALITY(r4, 0x9, 0x0, 0x0)
syz_io_uring_submit(r2, 0x0, 0x0, 0x2)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r5 = openat(0xffffffffffffff9c, &(0x7f00000002c0)='./file1\x00', 0x105142, 0x0)
r6 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0)
sendfile(r5, r6, 0x0, 0x100000001)
newfstatat(0xffffffffffffff9c, &(0x7f0000000340)='./file1\x00', &(0x7f0000000380), 0x400)

21:27:37 executing program 3:
openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x105142, 0x0)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x400}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
pipe(&(0x7f00000001c0)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
mount$9p_fd(0x0, &(0x7f0000000040)='./file1\x00', &(0x7f00000000c0), 0x700000000000000, &(0x7f0000000280)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {}, 0x2c, {[{@nodevmap}]}})
openat(r1, &(0x7f0000000180)='./file1\x00', 0x0, 0x0)

21:27:37 executing program 4:
openat$vcs(0xffffffffffffff9c, &(0x7f0000000040), 0x0, 0x0)
r0 = openat$sr(0xffffffffffffff9c, &(0x7f00000035c0), 0x0, 0x0)
openat$sr(0xffffffffffffff9c, &(0x7f00000000c0), 0x224400, 0x0)
openat$rtc(0xffffffffffffff9c, &(0x7f0000000200), 0x0, 0x0)
pipe(&(0x7f00000001c0))
sendmsg$NFT_MSG_GETSET(0xffffffffffffffff, &(0x7f0000000140)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x400000}, 0xc, &(0x7f0000000100)={&(0x7f0000000080)={0x1c, 0xa, 0xa, 0x3, 0x0, 0x0, {0x3, 0x0, 0x5}, [@NFTA_SET_KEY_LEN={0x8, 0x5, 0x1, 0x0, 0x12}]}, 0x1c}}, 0x90)
open(&(0x7f00000016c0)='./cgroup.net/cgroup.procs\x00', 0x0, 0x0)
pselect6(0x40, &(0x7f0000000180)={0x0, 0x0, 0x2, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x9de0}, &(0x7f00000001c0)={0x3fc, 0x4000000000000000, 0x0, 0x0, 0x2, 0x0, 0x10000fffc}, 0x0, 0x0, 0x0)
ioctl$BTRFS_IOC_DEFRAG_RANGE(r0, 0x40309410, 0x0)
pipe(&(0x7f00000001c0)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
mount$9p_fd(0x0, &(0x7f0000000040)='./file1\x00', &(0x7f00000000c0), 0x0, &(0x7f0000000280)={'trans=fd,', {'rfdno', 0x3d, r1}, 0x2c, {'wfdno', 0x3d, r2}, 0x2c, {[{@nodevmap}]}})
ioctl$SG_GET_LOW_DMA(r2, 0x227a, &(0x7f0000000240))

21:27:37 executing program 1:
openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x105142, 0x0)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
pipe(&(0x7f00000001c0))
mount$9p_fd(0x0, &(0x7f0000000040)='./file1\x00', &(0x7f00000000c0), 0x500, &(0x7f0000000280)={'trans=fd,', {}, 0x2c, {}, 0x2c, {[{@nodevmap}]}})

21:27:37 executing program 6:
r0 = syz_mount_image$vfat(&(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x0, 0x2, &(0x7f0000000180)=[{&(0x7f0000000140)="eb3c906d6b66732e66617400020801000470008400f801", 0x17}, {0x0, 0x0, 0x1000a00}], 0x0, &(0x7f0000000240)=ANY=[])
chdir(&(0x7f0000000040)='./file0\x00')
openat2(r0, &(0x7f0000000100)='./file0\x00', &(0x7f00000001c0)={0x40000, 0x81}, 0x18)
mount$cgroup(0x0, 0x0, &(0x7f0000000400), 0x0, 0x0)
r1 = syz_io_uring_setup(0x22, &(0x7f0000000680)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000180)=<r2=>0x0, &(0x7f0000002a40)=<r3=>0x0)
io_uring_register$IORING_REGISTER_PERSONALITY(r1, 0x9, 0x0, 0x0)
socket$nl_netfilter(0x10, 0x3, 0xc)
syz_io_uring_submit(r2, r3, 0x0, 0x0)
r4 = syz_io_uring_setup(0x22, &(0x7f0000000680)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000180), &(0x7f0000002a40))
io_uring_register$IORING_REGISTER_PERSONALITY(r4, 0x9, 0x0, 0x0)
syz_io_uring_submit(r2, 0x0, 0x0, 0x2)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r5 = openat(0xffffffffffffff9c, &(0x7f00000002c0)='./file1\x00', 0x105142, 0x0)
r6 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0)
sendfile(r5, r6, 0x0, 0x100000001)
newfstatat(0xffffffffffffff9c, &(0x7f0000000340)='./file1\x00', &(0x7f0000000380), 0x400)

[ 2810.785489] 9pnet: Insufficient options for proto=fd
21:27:37 executing program 3:
openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x105142, 0x0)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x400}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
pipe(&(0x7f00000001c0)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
mount$9p_fd(0x0, &(0x7f0000000040)='./file1\x00', &(0x7f00000000c0), 0x800000000000000, &(0x7f0000000280)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {}, 0x2c, {[{@nodevmap}]}})
openat(r1, &(0x7f0000000180)='./file1\x00', 0x0, 0x0)

21:27:37 executing program 2:
accept(0xffffffffffffffff, &(0x7f0000000400)=@pppol2tpv3={0x18, 0x1, {0x0, <r0=>0xffffffffffffffff, {0x2, 0x0, @multicast2}}}, &(0x7f0000000480)=0x80)
copy_file_range(r0, &(0x7f00000004c0)=0x8001, 0xffffffffffffffff, &(0x7f0000000500)=0xfffffffffffffff8, 0x10001, 0x0)
r1 = syz_mount_image$vfat(&(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x0, 0x2, &(0x7f0000000180)=[{&(0x7f0000000140)="eb3c906d6b66732e66617400020801000470008400f801", 0x17}, {0x0, 0x0, 0x1000a00}], 0x0, &(0x7f0000000240)=ANY=[])
chdir(&(0x7f0000000040)='./file0\x00')
ioctl$VFAT_IOCTL_READDIR_SHORT(r1, 0x82307202, &(0x7f00000001c0)=[{0x0, 0x0, 0x100}, {0x0, 0x0, 0x100}])
openat(0xffffffffffffff9c, &(0x7f0000000000)='./file0\x00', 0x40000, 0x100)
mmap(&(0x7f0000ffc000/0x3000)=nil, 0x3000, 0x1, 0x962acd8f2aed7a11, r1, 0xdc45f000)
r2 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x105142, 0x0)
ioctl$FS_IOC_RESVSP(r2, 0x40305828, &(0x7f0000000040)={0x0, 0x0, 0x0, 0x4000006})

21:27:37 executing program 0:
syz_mount_image$vfat(&(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x0, 0x2, &(0x7f0000000180)=[{&(0x7f0000000140)="eb3c906d6b66732e66617400020801000470008400f801", 0x17}, {0x0, 0x0, 0x1000a00}], 0x0, &(0x7f0000000240)=ANY=[])
chdir(&(0x7f0000000040)='./file0\x00')
mount$cgroup(0x0, 0x0, &(0x7f0000000400), 0x0, 0x0)
r0 = syz_io_uring_setup(0x22, &(0x7f0000000680)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000180)=<r1=>0x0, &(0x7f0000002a40)=<r2=>0x0)
r3 = io_uring_register$IORING_REGISTER_PERSONALITY(r0, 0x9, 0x0, 0x0)
r4 = socket$nl_netfilter(0x10, 0x3, 0xc)
syz_io_uring_submit(r1, r2, &(0x7f0000000400)=@IORING_OP_WRITEV={0x2, 0x0, 0x0, @fd=r4, 0x0, 0x0, 0x0, 0x0, 0x0, {0x0, r3}}, 0x0)
r5 = syz_io_uring_setup(0x22, &(0x7f0000000680)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000180), &(0x7f0000002a40))
r6 = io_uring_register$IORING_REGISTER_PERSONALITY(r5, 0x9, 0x0, 0x0)
syz_io_uring_submit(r1, 0x0, &(0x7f0000000440)=@IORING_OP_FSYNC={0x3, 0x2, 0x0, @fd_index=0x9, 0x0, 0x0, 0x0, 0x0, 0x1, {0x0, r6}}, 0x0)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r7 = openat(0xffffffffffffff9c, &(0x7f00000002c0)='./file1\x00', 0x105142, 0x0)
r8 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0)
mount(&(0x7f0000000200)=ANY=[@ANYBLOB="2f6f651317868af191bdb2"], &(0x7f0000000240)='./file0\x00', &(0x7f0000000280)='nfsd\x00', 0x800000, &(0x7f0000000300)='cgroup\x00')
sendfile(r7, r8, 0x0, 0x100000001)
newfstatat(0xffffffffffffff9c, &(0x7f0000000340)='./file1\x00', &(0x7f0000000380), 0x400)

21:27:37 executing program 4:
openat$vcs(0xffffffffffffff9c, &(0x7f0000000040), 0x0, 0x0)
openat$sr(0xffffffffffffff9c, &(0x7f00000035c0), 0x0, 0x0)
openat$sr(0xffffffffffffff9c, &(0x7f00000000c0), 0x224400, 0x0)
openat$rtc(0xffffffffffffff9c, &(0x7f0000000200), 0x0, 0x0)
pipe(&(0x7f00000001c0))
open(&(0x7f00000016c0)='./cgroup.net/cgroup.procs\x00', 0x0, 0x0)
pselect6(0x40, &(0x7f0000000180)={0x0, 0x0, 0x0, 0x0, 0x0, 0x5}, &(0x7f00000001c0)={0x3fc, 0x1, 0x0, 0x0, 0x0, 0x4}, 0x0, 0x0, 0x0)

21:27:37 executing program 5:
openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x105142, 0x0)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
pipe(&(0x7f00000001c0)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
mount$9p_fd(0x0, &(0x7f0000000040)='./file1\x00', &(0x7f00000000c0), 0x0, &(0x7f0000000280)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}}) (fail_nth: 81)
openat(0xffffffffffffffff, 0x0, 0x0, 0x0)

21:27:37 executing program 2:
r0 = perf_event_open(&(0x7f0000001d80)={0x2, 0x80, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
mmap(&(0x7f0000ffc000/0x2000)=nil, 0x2000, 0x0, 0x13, r0, 0x0)
perf_event_open(&(0x7f0000001d80)={0x2, 0x80, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, r0, 0x2)
syz_mount_image$vfat(&(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x0, 0x2, &(0x7f0000000180)=[{&(0x7f0000000140)="eb3c906d6b66732e66617400020801000470008400f801", 0x17}, {0x0, 0x0, 0x1000a00}], 0x0, &(0x7f0000000480)=ANY=[@ANYRESOCT=r0, @ANYRES64, @ANYBLOB="003e8b59b65f2e93d8b16978bc392ad188ad0f22e9c3ad54ca2ef71ab9639cfafd4df4d8cf3fe010a1b8a8903f3691568ede59adf121e1647f73230aaa265cf010b1a6b9d498707234a4e6c8ba51f27bff392ffb4ad73f58c8da50b89fab7c90069640bc69d337025d7762605a88af42d4414ad0465587419c71039d7fde0689d998fce0f524cdea86df37330868e48a"])
chdir(&(0x7f0000000040)='./file0\x00')
r1 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file0\x00', 0x105142, 0x0)
pipe(&(0x7f00000001c0)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
mount$9p_fd(0x0, &(0x7f0000000040)='./file1\x00', &(0x7f00000000c0), 0x0, &(0x7f0000000280)={'trans=fd,', {'rfdno', 0x3d, r2}, 0x2c, {'wfdno', 0x3d, r3}, 0x2c, {[{@nodevmap}]}})
mkdirat(r3, &(0x7f0000000240)='./file0\x00', 0x10)
pipe(&(0x7f00000001c0)={<r4=>0xffffffffffffffff, <r5=>0xffffffffffffffff})
r6 = perf_event_open(&(0x7f0000001d80)={0x2, 0x80, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5, 0x0, @perf_config_ext, 0x8000}, 0x0, 0x10000000000000, 0xffffffffffffffff, 0x0)
mmap(&(0x7f0000ffc000/0x2000)=nil, 0x2000, 0x0, 0x13, r6, 0x0)
perf_event_open(&(0x7f0000001d80)={0x2, 0x80, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, r6, 0x2)
readv(r6, &(0x7f0000000380)=[{&(0x7f0000000300)=""/125, 0x7d}], 0x1)
mount$9p_fd(0x0, &(0x7f0000000040)='./file1\x00', &(0x7f00000000c0), 0x0, &(0x7f0000000280)={'trans=fd,', {'rfdno', 0x3d, r4}, 0x2c, {'wfdno', 0x3d, r5}, 0x2c, {[{@nodevmap}]}})
openat(r5, &(0x7f0000000000)='./file0\x00', 0x40000, 0x20)
write$P9_RSTAT(r1, &(0x7f00000003c0)={0x4d, 0x7d, 0x1, {0x0, 0x46, 0x3, 0x1, {0x4, 0x2, 0x6}, 0x0, 0x8, 0x1, 0x3f, 0x1, '#', 0xd, '\xf2}\'\\)}-*\xee+^-\'', 0x2, '\'(', 0x3, '%\xc1@'}}, 0x4d)
ioctl$FS_IOC_RESVSP(r1, 0x40305828, &(0x7f0000000040)={0x0, 0x0, 0x0, 0x4000006})
ioctl$TIOCPKT(0xffffffffffffffff, 0x5420, &(0x7f0000000200)=0x3ff)

21:27:37 executing program 1:
openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x105142, 0x0)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
pipe(&(0x7f00000001c0))
mount$9p_fd(0x0, &(0x7f0000000040)='./file1\x00', &(0x7f00000000c0), 0x600, &(0x7f0000000280)={'trans=fd,', {}, 0x2c, {}, 0x2c, {[{@nodevmap}]}})

21:27:37 executing program 3:
openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x105142, 0x0)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x400}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
pipe(&(0x7f00000001c0)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
mount$9p_fd(0x0, &(0x7f0000000040)='./file1\x00', &(0x7f00000000c0), 0x900000000000000, &(0x7f0000000280)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {}, 0x2c, {[{@nodevmap}]}})
openat(r1, &(0x7f0000000180)='./file1\x00', 0x0, 0x0)

[ 2811.121127] FAULT_INJECTION: forcing a failure.
[ 2811.121127] name failslab, interval 1, probability 0, space 0, times 0
[ 2811.123988] CPU: 0 PID: 26623 Comm: syz-executor.5 Not tainted 5.10.172 #1
[ 2811.125649] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 2811.127986] Call Trace:
[ 2811.128616]  dump_stack+0x107/0x167
[ 2811.129455]  should_fail.cold+0x5/0xa
[ 2811.130084]  ? __kernfs_new_node+0xd4/0x850
[ 2811.130650]  should_failslab+0x5/0x20
[ 2811.131149]  kmem_cache_alloc+0x5b/0x360
[ 2811.131697]  __kernfs_new_node+0xd4/0x850
[ 2811.132250]  ? kernfs_dop_revalidate+0x3a0/0x3a0
[ 2811.132874]  ? __mutex_unlock_slowpath+0xe1/0x600
[ 2811.133533]  ? wait_for_completion_io+0x270/0x270
[ 2811.135290]  ? kernfs_next_descendant_post+0x1a7/0x2a0
[ 2811.135996]  kernfs_new_node+0x93/0x120
[ 2811.136532]  __kernfs_create_file+0x51/0x350
[ 2811.137117]  sysfs_add_file_mode_ns+0x221/0x560
[ 2811.137782]  internal_create_group+0x324/0xb30
[ 2811.138371]  ? sysfs_remove_group+0x170/0x170
[ 2811.138967]  ? kernfs_name_hash+0xe7/0x110
[ 2811.139501]  ? kernfs_find_ns+0x256/0x380
[ 2811.140026]  sysfs_slab_add+0x188/0x200
[ 2811.140528]  __kmem_cache_create+0x3db/0x520
[ 2811.141108]  kmem_cache_create_usercopy+0x1db/0x2f0
[ 2811.141780]  p9_client_create+0xc2b/0x1090
[ 2811.142354]  ? p9_client_flush+0x430/0x430
[ 2811.142921]  ? lockdep_init_map_type+0x2c7/0x780
[ 2811.143544]  ? rcu_read_lock_sched_held+0x3e/0x80
[ 2811.144307]  ? __raw_spin_lock_init+0x36/0x110
[ 2811.144931]  v9fs_session_init+0x1dd/0x16a0
[ 2811.145496]  ? kmem_cache_alloc_trace+0x151/0x360
[ 2811.148774]  ? v9fs_show_options+0x690/0x690
[ 2811.149354]  ? kasan_unpoison_shadow+0x33/0x50
[ 2811.149991]  ? __kasan_kmalloc.constprop.0+0xc9/0xd0
[ 2811.150646]  v9fs_mount+0x79/0x8f0
[ 2811.151108]  ? v9fs_write_inode+0x60/0x60
[ 2811.151641]  legacy_get_tree+0x105/0x220
[ 2811.152164]  vfs_get_tree+0x8e/0x300
[ 2811.152651]  path_mount+0x13be/0x20b0
[ 2811.153153]  ? strncpy_from_user+0x9e/0x470
[ 2811.153758]  ? finish_automount+0xa40/0xa40
[ 2811.154294]  ? getname_flags.part.0+0x1dd/0x4f0
[ 2811.154908]  ? _copy_from_user+0xfb/0x1b0
[ 2811.155458]  __x64_sys_mount+0x282/0x300
[ 2811.156008]  ? copy_mnt_ns+0xa00/0xa00
[ 2811.156523]  ? rcu_read_lock_sched_held+0x3e/0x80
[ 2811.157167]  do_syscall_64+0x33/0x40
[ 2811.157682]  entry_SYSCALL_64_after_hwframe+0x61/0xc6
[ 2811.158364] RIP: 0033:0x7f38308e8b19
[ 2811.158859] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 2811.161307] RSP: 002b:00007f382de5e188 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5
[ 2811.162373] RAX: ffffffffffffffda RBX: 00007f38309fbf60 RCX: 00007f38308e8b19
[ 2811.163330] RDX: 00000000200000c0 RSI: 0000000020000040 RDI: 0000000000000000
[ 2811.164272] RBP: 00007f382de5e1d0 R08: 0000000020000280 R09: 0000000000000000
[ 2811.165203] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[ 2811.166192] R13: 00007ffca2bf07df R14: 00007f382de5e300 R15: 0000000000022000
[ 2811.179951] kmem_cache_create(9p-fcall-cache) failed with error -12
[ 2811.180930] CPU: 0 PID: 26623 Comm: syz-executor.5 Not tainted 5.10.172 #1
[ 2811.181892] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 2811.183015] Call Trace:
[ 2811.183384]  dump_stack+0x107/0x167
[ 2811.183882]  kmem_cache_create_usercopy.cold+0x17/0x65
[ 2811.184577]  p9_client_create+0xc2b/0x1090
[ 2811.185159]  ? p9_client_flush+0x430/0x430
[ 2811.185741]  ? lockdep_init_map_type+0x2c7/0x780
[ 2811.186376]  ? rcu_read_lock_sched_held+0x3e/0x80
[ 2811.187026]  ? __raw_spin_lock_init+0x36/0x110
[ 2811.187644]  v9fs_session_init+0x1dd/0x16a0
[ 2811.188248]  ? kmem_cache_alloc_trace+0x151/0x360
[ 2811.188897]  ? v9fs_show_options+0x690/0x690
[ 2811.189506]  ? kasan_unpoison_shadow+0x33/0x50
[ 2811.190139]  ? __kasan_kmalloc.constprop.0+0xc9/0xd0
[ 2811.190833]  v9fs_mount+0x79/0x8f0
[ 2811.191320]  ? v9fs_write_inode+0x60/0x60
[ 2811.191892]  legacy_get_tree+0x105/0x220
[ 2811.192455]  vfs_get_tree+0x8e/0x300
[ 2811.192959]  path_mount+0x13be/0x20b0
[ 2811.193473]  ? strncpy_from_user+0x9e/0x470
[ 2811.194087]  ? finish_automount+0xa40/0xa40
[ 2811.194674]  ? getname_flags.part.0+0x1dd/0x4f0
[ 2811.195296]  ? _copy_from_user+0xfb/0x1b0
[ 2811.195871]  __x64_sys_mount+0x282/0x300
[ 2811.196425]  ? copy_mnt_ns+0xa00/0xa00
[ 2811.196953]  ? rcu_read_lock_sched_held+0x3e/0x80
[ 2811.197604]  do_syscall_64+0x33/0x40
[ 2811.198141]  entry_SYSCALL_64_after_hwframe+0x61/0xc6
[ 2811.198827] RIP: 0033:0x7f38308e8b19
[ 2811.199340] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 2811.201804] RSP: 002b:00007f382de5e188 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5
[ 2811.202820] RAX: ffffffffffffffda RBX: 00007f38309fbf60 RCX: 00007f38308e8b19
[ 2811.203783] RDX: 00000000200000c0 RSI: 0000000020000040 RDI: 0000000000000000
[ 2811.204742] RBP: 00007f382de5e1d0 R08: 0000000020000280 R09: 0000000000000000
[ 2811.205738] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[ 2811.206726] R13: 00007ffca2bf07df R14: 00007f382de5e300 R15: 0000000000022000
[ 2811.227568] 9pnet: Insufficient options for proto=fd
[ 2811.263323] FAT-fs (loop2): Unrecognized mount option "00000000000000000000003��������" or missing value
21:27:55 executing program 3:
openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x105142, 0x0)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x400}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
pipe(&(0x7f00000001c0)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
mount$9p_fd(0x0, &(0x7f0000000040)='./file1\x00', &(0x7f00000000c0), 0xa00000000000000, &(0x7f0000000280)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {}, 0x2c, {[{@nodevmap}]}})
openat(r1, &(0x7f0000000180)='./file1\x00', 0x0, 0x0)

21:27:55 executing program 0:
syz_mount_image$vfat(&(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x0, 0x2, &(0x7f0000000180)=[{&(0x7f0000000140)="eb3c906d6b66732e66617400020801000470008400f801", 0x17}, {0x0, 0x0, 0x1000a00}], 0x0, &(0x7f0000000240)=ANY=[])
chdir(&(0x7f0000000040)='./file0\x00')
mount$cgroup(0x0, 0x0, &(0x7f0000000400), 0x0, 0x0)
r0 = syz_io_uring_setup(0x22, &(0x7f0000000680)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000180)=<r1=>0x0, &(0x7f0000002a40)=<r2=>0x0)
r3 = io_uring_register$IORING_REGISTER_PERSONALITY(r0, 0x9, 0x0, 0x0)
r4 = socket$nl_netfilter(0x10, 0x3, 0xc)
syz_io_uring_submit(r1, r2, &(0x7f0000000400)=@IORING_OP_WRITEV={0x2, 0x0, 0x0, @fd=r4, 0x0, 0x0, 0x0, 0x0, 0x0, {0x0, r3}}, 0x0)
r5 = syz_io_uring_setup(0x22, &(0x7f0000000680)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000180), &(0x7f0000002a40))
r6 = io_uring_register$IORING_REGISTER_PERSONALITY(r5, 0x9, 0x0, 0x0)
syz_io_uring_submit(r1, 0x0, &(0x7f0000000440)=@IORING_OP_FSYNC={0x3, 0x2, 0x0, @fd_index=0x9, 0x0, 0x0, 0x0, 0x0, 0x1, {0x0, r6}}, 0x0)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r7 = openat(0xffffffffffffff9c, &(0x7f00000002c0)='./file1\x00', 0x105142, 0x0)
r8 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0)
mount(&(0x7f0000000200)=ANY=[@ANYBLOB="2f6f651317868af191bdb2"], &(0x7f0000000240)='./file0\x00', &(0x7f0000000280)='nfsd\x00', 0x800000, &(0x7f0000000300)='cgroup\x00')
sendfile(r7, r8, 0x0, 0x100000001)
newfstatat(0xffffffffffffff9c, &(0x7f0000000340)='./file1\x00', &(0x7f0000000380), 0x400)

21:27:55 executing program 5:
openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x105142, 0x0)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
pipe(&(0x7f00000001c0)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
mount$9p_fd(0x0, &(0x7f0000000040)='./file1\x00', &(0x7f00000000c0), 0x0, &(0x7f0000000280)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}}) (fail_nth: 82)
openat(0xffffffffffffffff, 0x0, 0x0, 0x0)

21:27:55 executing program 1:
openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x105142, 0x0)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
pipe(&(0x7f00000001c0))
mount$9p_fd(0x0, &(0x7f0000000040)='./file1\x00', &(0x7f00000000c0), 0x700, &(0x7f0000000280)={'trans=fd,', {}, 0x2c, {}, 0x2c, {[{@nodevmap}]}})

21:27:55 executing program 2:
r0 = syz_mount_image$vfat(&(0x7f0000000080), &(0x7f00000000c0)='./file1\x00', 0x0, 0x2, &(0x7f0000000180)=[{&(0x7f0000000140)="eb3c2681bbcbf8865f14a4581ba29c906d6b66732e66617400020801000470008400f801", 0x24}, {0x0, 0x0, 0x1000a00}], 0x0, &(0x7f0000000240)=ANY=[])
chdir(&(0x7f0000000040)='./file0\x00')
openat(r0, &(0x7f0000000000)='./file0\x00', 0x400, 0x21)
openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x105142, 0x0)

21:27:55 executing program 7:
perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
io_setup(0x7f, &(0x7f00000002c0)=<r0=>0x0)
io_pgetevents(r0, 0x1, 0x1, &(0x7f0000000000)=[{}], 0x0, 0x0)
io_submit(r0, 0x1, &(0x7f0000000340)=[0x0])

21:27:55 executing program 4:
r0 = openat$vcs(0xffffffffffffff9c, &(0x7f0000000040), 0x0, 0x0)
openat$sr(0xffffffffffffff9c, &(0x7f00000035c0), 0x0, 0x0)
openat$sr(0xffffffffffffff9c, &(0x7f00000000c0), 0x224400, 0x0)
openat$rtc(0xffffffffffffff9c, &(0x7f0000000200), 0x0, 0x0)
ioctl$RTC_ALM_SET(r0, 0x40247007, &(0x7f0000000000)={0xc, 0x19, 0x11, 0x6, 0x9, 0x80, 0x4, 0xe8, 0xec34dec030066267})
pipe(&(0x7f00000001c0))
open(&(0x7f00000016c0)='./cgroup.net/cgroup.procs\x00', 0x0, 0x0)
pselect6(0x40, &(0x7f0000000180), &(0x7f00000001c0)={0x3fc}, 0x0, 0x0, 0x0)

21:27:55 executing program 6:
r0 = syz_mount_image$vfat(&(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x0, 0x2, &(0x7f0000000180)=[{&(0x7f0000000140)="eb3c906d6b66732e66617400020801000470008400f801", 0x17}, {0x0, 0x0, 0x1000a00}], 0x0, &(0x7f0000000240)=ANY=[])
chdir(&(0x7f0000000040)='./file0\x00')
openat2(r0, &(0x7f0000000100)='./file0\x00', &(0x7f00000001c0)={0x40000, 0x81}, 0x18)
mount$cgroup(0x0, 0x0, &(0x7f0000000400), 0x0, 0x0)
r1 = syz_io_uring_setup(0x22, &(0x7f0000000680)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000180)=<r2=>0x0, &(0x7f0000002a40)=<r3=>0x0)
io_uring_register$IORING_REGISTER_PERSONALITY(r1, 0x9, 0x0, 0x0)
socket$nl_netfilter(0x10, 0x3, 0xc)
syz_io_uring_submit(r2, r3, 0x0, 0x0)
r4 = syz_io_uring_setup(0x22, &(0x7f0000000680)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000180), &(0x7f0000002a40))
r5 = io_uring_register$IORING_REGISTER_PERSONALITY(r4, 0x9, 0x0, 0x0)
syz_io_uring_submit(r2, 0x0, &(0x7f0000000440)=@IORING_OP_FSYNC={0x3, 0x0, 0x0, @fd_index=0x9, 0x0, 0x0, 0x0, 0x0, 0x1, {0x0, r5}}, 0x2)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r6 = openat(0xffffffffffffff9c, &(0x7f00000002c0)='./file1\x00', 0x105142, 0x0)
r7 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0)
sendfile(r6, r7, 0x0, 0x100000001)
newfstatat(0xffffffffffffff9c, &(0x7f0000000340)='./file1\x00', &(0x7f0000000380), 0x400)

[ 2829.124153] 9pnet: Insufficient options for proto=fd
[ 2829.132946] FAULT_INJECTION: forcing a failure.
[ 2829.132946] name failslab, interval 1, probability 0, space 0, times 0
[ 2829.134624] CPU: 0 PID: 26748 Comm: syz-executor.5 Not tainted 5.10.172 #1
[ 2829.135512] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 2829.136560] Call Trace:
[ 2829.136908]  dump_stack+0x107/0x167
[ 2829.137375]  should_fail.cold+0x5/0xa
[ 2829.137896]  ? create_object.isra.0+0x3a/0xa20
[ 2829.138488]  should_failslab+0x5/0x20
[ 2829.138969]  kmem_cache_alloc+0x5b/0x360
[ 2829.139496]  create_object.isra.0+0x3a/0xa20
[ 2829.140055]  ? __kasan_kmalloc.constprop.0+0xc9/0xd0
[ 2829.140710]  kmem_cache_alloc+0x159/0x360
[ 2829.141241]  __kernfs_new_node+0xd4/0x850
[ 2829.141773]  ? kernfs_dop_revalidate+0x3a0/0x3a0
[ 2829.142421]  ? __mutex_unlock_slowpath+0xe1/0x600
[ 2829.143051]  ? mark_held_locks+0x9e/0xe0
[ 2829.143571]  ? lockdep_hardirqs_on_prepare+0x277/0x3e0
[ 2829.144239]  kernfs_new_node+0x93/0x120
[ 2829.144753]  __kernfs_create_file+0x51/0x350
[ 2829.145314]  sysfs_add_file_mode_ns+0x221/0x560
[ 2829.145951]  internal_create_group+0x324/0xb30
[ 2829.146548]  ? sysfs_remove_group+0x170/0x170
[ 2829.147114]  ? kernfs_name_hash+0xe7/0x110
[ 2829.147667]  ? kernfs_find_ns+0x256/0x380
[ 2829.148211]  sysfs_slab_add+0x188/0x200
[ 2829.148729]  __kmem_cache_create+0x3db/0x520
[ 2829.149298]  kmem_cache_create_usercopy+0x1db/0x2f0
[ 2829.149976]  p9_client_create+0xc2b/0x1090
[ 2829.150540]  ? p9_client_flush+0x430/0x430
[ 2829.151094]  ? lockdep_init_map_type+0x2c7/0x780
[ 2829.151675]  ? rcu_read_lock_sched_held+0x3e/0x80
[ 2829.152298]  ? __raw_spin_lock_init+0x36/0x110
[ 2829.152914]  v9fs_session_init+0x1dd/0x16a0
[ 2829.153503]  ? kmem_cache_alloc_trace+0x151/0x360
[ 2829.154165]  ? v9fs_show_options+0x690/0x690
[ 2829.154767]  ? kasan_unpoison_shadow+0x33/0x50
[ 2829.155158] FAT-fs (loop2): invalid media value (0x66)
[ 2829.155367]  ? __kasan_kmalloc.constprop.0+0xc9/0xd0
[ 2829.155389]  v9fs_mount+0x79/0x8f0
[ 2829.155408]  ? v9fs_write_inode+0x60/0x60
[ 2829.155430]  legacy_get_tree+0x105/0x220
[ 2829.156185] FAT-fs (loop2): Can't find a valid FAT filesystem
[ 2829.156818]  vfs_get_tree+0x8e/0x300
[ 2829.156839]  path_mount+0x13be/0x20b0
[ 2829.156862]  ? strncpy_from_user+0x9e/0x470
[ 2829.160678]  ? finish_automount+0xa40/0xa40
[ 2829.161250]  ? getname_flags.part.0+0x1dd/0x4f0
[ 2829.161855]  ? _copy_from_user+0xfb/0x1b0
[ 2829.162439]  __x64_sys_mount+0x282/0x300
[ 2829.162977]  ? copy_mnt_ns+0xa00/0xa00
[ 2829.163494]  ? rcu_read_lock_sched_held+0x3e/0x80
[ 2829.164145]  do_syscall_64+0x33/0x40
[ 2829.164642]  entry_SYSCALL_64_after_hwframe+0x61/0xc6
[ 2829.165308] RIP: 0033:0x7f38308e8b19
[ 2829.165802] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 2829.168202] RSP: 002b:00007f382de5e188 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5
[ 2829.169194] RAX: ffffffffffffffda RBX: 00007f38309fbf60 RCX: 00007f38308e8b19
[ 2829.170153] RDX: 00000000200000c0 RSI: 0000000020000040 RDI: 0000000000000000
[ 2829.171077] RBP: 00007f382de5e1d0 R08: 0000000020000280 R09: 0000000000000000
[ 2829.172010] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[ 2829.172936] R13: 00007ffca2bf07df R14: 00007f382de5e300 R15: 0000000000022000
[ 2829.207061] FAT-fs (loop2): invalid media value (0x66)
[ 2829.207886] FAT-fs (loop2): Can't find a valid FAT filesystem
21:27:55 executing program 3:
openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x105142, 0x0)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x400}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
pipe(&(0x7f00000001c0)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
mount$9p_fd(0x0, &(0x7f0000000040)='./file1\x00', &(0x7f00000000c0), 0xb00000000000000, &(0x7f0000000280)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {}, 0x2c, {[{@nodevmap}]}})
openat(r1, &(0x7f0000000180)='./file1\x00', 0x0, 0x0)

21:27:55 executing program 2:
syz_mount_image$vfat(&(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x0, 0x2, &(0x7f0000000180)=[{&(0x7f0000000140)="eb3c906d6b66732e66617400020801000470008400f801", 0x17}, {0x0, 0x0, 0x1000a00}], 0x0, &(0x7f0000000240)=ANY=[])
chdir(&(0x7f0000000040)='./file0\x00')
setxattr$security_selinux(&(0x7f0000000000)='./file0\x00', &(0x7f00000001c0), &(0x7f0000000200)='system_u:object_r:framebuf_device_t:s0\x00', 0x27, 0x3)
mount$9p_tcp(&(0x7f0000000240), &(0x7f0000000280)='./file0\x00', &(0x7f00000002c0), 0x2300400, &(0x7f0000000300)={'trans=tcp,', {'port', 0x3d, 0x4e21}, 0x2c, {[{@loose}, {@uname={'uname', 0x3d, 'system_u:object_r:framebuf_device_t:s0\x00'}}, {@afid={'afid', 0x3d, 0x7}}, {@aname={'aname', 0x3d, '(/\x00-('}}, {@afid={'afid', 0x3d, 0x6}}], [{@subj_type={'subj_type', 0x3d, 'system_u:object_r:framebuf_device_t:s0\x00'}}, {@appraise_type}, {@dont_measure}, {@mask={'mask', 0x3d, 'MAY_WRITE'}}]}})
r0 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x105142, 0x0)
ioctl$FS_IOC_RESVSP(r0, 0x40305828, &(0x7f0000000040)={0x0, 0x0, 0x0, 0x4000006})

21:27:55 executing program 1:
openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x105142, 0x0)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
pipe(&(0x7f00000001c0))
mount$9p_fd(0x0, &(0x7f0000000040)='./file1\x00', &(0x7f00000000c0), 0x900, &(0x7f0000000280)={'trans=fd,', {}, 0x2c, {}, 0x2c, {[{@nodevmap}]}})

[ 2829.413617] 9pnet: Insufficient options for proto=fd
21:28:13 executing program 7:
perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
io_setup(0x7f, &(0x7f00000002c0)=<r0=>0x0)
io_pgetevents(r0, 0x1, 0x1, &(0x7f0000000000)=[{}], 0x0, 0x0)
io_submit(r0, 0x1, &(0x7f0000000340)=[0x0])

21:28:13 executing program 1:
openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x105142, 0x0)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
pipe(&(0x7f00000001c0))
mount$9p_fd(0x0, &(0x7f0000000040)='./file1\x00', &(0x7f00000000c0), 0xa00, &(0x7f0000000280)={'trans=fd,', {}, 0x2c, {}, 0x2c, {[{@nodevmap}]}})

21:28:13 executing program 6:
r0 = syz_mount_image$vfat(&(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x0, 0x2, &(0x7f0000000180)=[{&(0x7f0000000140)="eb3c906d6b66732e66617400020801000470008400f801", 0x17}, {0x0, 0x0, 0x1000a00}], 0x0, &(0x7f0000000240)=ANY=[])
chdir(&(0x7f0000000040)='./file0\x00')
openat2(r0, &(0x7f0000000100)='./file0\x00', &(0x7f00000001c0)={0x40000, 0x81}, 0x18)
mount$cgroup(0x0, 0x0, &(0x7f0000000400), 0x0, 0x0)
r1 = syz_io_uring_setup(0x22, &(0x7f0000000680)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000180)=<r2=>0x0, &(0x7f0000002a40)=<r3=>0x0)
io_uring_register$IORING_REGISTER_PERSONALITY(r1, 0x9, 0x0, 0x0)
socket$nl_netfilter(0x10, 0x3, 0xc)
syz_io_uring_submit(r2, r3, 0x0, 0x0)
r4 = syz_io_uring_setup(0x22, &(0x7f0000000680)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000180), &(0x7f0000002a40))
r5 = io_uring_register$IORING_REGISTER_PERSONALITY(r4, 0x9, 0x0, 0x0)
syz_io_uring_submit(r2, 0x0, &(0x7f0000000440)=@IORING_OP_FSYNC={0x3, 0x0, 0x0, @fd_index=0x9, 0x0, 0x0, 0x0, 0x0, 0x1, {0x0, r5}}, 0x2)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r6 = openat(0xffffffffffffff9c, &(0x7f00000002c0)='./file1\x00', 0x105142, 0x0)
r7 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0)
sendfile(r6, r7, 0x0, 0x100000001)
newfstatat(0xffffffffffffff9c, &(0x7f0000000340)='./file1\x00', &(0x7f0000000380), 0x400)

21:28:13 executing program 3:
openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x105142, 0x0)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x400}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
pipe(&(0x7f00000001c0)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
mount$9p_fd(0x0, &(0x7f0000000040)='./file1\x00', &(0x7f00000000c0), 0x1000000000000000, &(0x7f0000000280)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {}, 0x2c, {[{@nodevmap}]}})
openat(r1, &(0x7f0000000180)='./file1\x00', 0x0, 0x0)

21:28:13 executing program 4:
perf_event_open(&(0x7f0000000100)={0x0, 0x80, 0x5, 0x8, 0x9, 0x4, 0x0, 0x5, 0x0, 0x8, 0x0, 0x0, 0x1, 0x0, 0x1, 0x0, 0x1, 0x1, 0x1, 0x1, 0x1, 0x1, 0x1, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x1, 0x1, 0x0, 0x0, 0x1, 0x1, 0x1, 0x1, 0x1, 0x1, 0x1, 0x1, 0x1, 0x0, 0x0, 0x0, 0x7fff, 0x2, @perf_config_ext={0x671, 0x200}, 0x10, 0x820, 0x80, 0x0, 0x6, 0x9, 0x401, 0x0, 0x1, 0x0, 0x2}, 0xffffffffffffffff, 0x8, 0xffffffffffffffff, 0xa)
openat$vcs(0xffffffffffffff9c, &(0x7f0000000040), 0x0, 0x0)
openat$sr(0xffffffffffffff9c, &(0x7f00000035c0), 0x80200, 0x0)
openat$sr(0xffffffffffffff9c, &(0x7f00000000c0), 0x224400, 0x0)
openat$rtc(0xffffffffffffff9c, &(0x7f0000000200), 0x0, 0x0)
pipe(&(0x7f00000001c0))
open(&(0x7f00000016c0)='./cgroup.net/cgroup.procs\x00', 0x0, 0x0)
pselect6(0x40, &(0x7f0000000180), &(0x7f00000001c0)={0x3fc}, 0x0, 0x0, 0x0)

21:28:13 executing program 0:
syz_mount_image$vfat(&(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x0, 0x2, &(0x7f0000000180)=[{&(0x7f0000000140)="eb3c906d6b66732e66617400020801000470008400f801", 0x17}, {0x0, 0x0, 0x1000a00}], 0x0, &(0x7f0000000240)=ANY=[])
chdir(&(0x7f0000000040)='./file0\x00')
mount$cgroup(0x0, 0x0, &(0x7f0000000400), 0x0, 0x0)
r0 = syz_io_uring_setup(0x22, &(0x7f0000000680)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000180)=<r1=>0x0, &(0x7f0000002a40)=<r2=>0x0)
r3 = io_uring_register$IORING_REGISTER_PERSONALITY(r0, 0x9, 0x0, 0x0)
r4 = socket$nl_netfilter(0x10, 0x3, 0xc)
syz_io_uring_submit(r1, r2, &(0x7f0000000400)=@IORING_OP_WRITEV={0x2, 0x0, 0x0, @fd=r4, 0x0, 0x0, 0x0, 0x0, 0x0, {0x0, r3}}, 0x0)
r5 = syz_io_uring_setup(0x22, &(0x7f0000000680)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000180), &(0x7f0000002a40))
r6 = io_uring_register$IORING_REGISTER_PERSONALITY(r5, 0x9, 0x0, 0x0)
syz_io_uring_submit(r1, 0x0, &(0x7f0000000440)=@IORING_OP_FSYNC={0x3, 0x2, 0x0, @fd_index=0x9, 0x0, 0x0, 0x0, 0x0, 0x1, {0x0, r6}}, 0x2)
perf_event_open(0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r7 = openat(0xffffffffffffff9c, &(0x7f00000002c0)='./file1\x00', 0x105142, 0x0)
r8 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0)
mount(&(0x7f0000000200)=ANY=[@ANYBLOB="2f6f651317868af191bdb2"], &(0x7f0000000240)='./file0\x00', &(0x7f0000000280)='nfsd\x00', 0x800000, &(0x7f0000000300)='cgroup\x00')
sendfile(r7, r8, 0x0, 0x100000001)
newfstatat(0xffffffffffffff9c, &(0x7f0000000340)='./file1\x00', &(0x7f0000000380), 0x400)

21:28:13 executing program 5:
openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x105142, 0x0)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
pipe(&(0x7f00000001c0)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
mount$9p_fd(0x0, &(0x7f0000000040)='./file1\x00', &(0x7f00000000c0), 0x0, &(0x7f0000000280)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}}) (fail_nth: 83)
openat(0xffffffffffffffff, 0x0, 0x0, 0x0)

21:28:13 executing program 2:
syz_mount_image$vfat(&(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x0, 0x2, &(0x7f0000000180)=[{&(0x7f0000000140)="eb3c906d6b66732e66617400020801000470008400f801", 0x17}, {0x0, 0x0, 0x1000a00}], 0x0, &(0x7f0000000240)=ANY=[])
chdir(&(0x7f0000000040)='./file0\x00')
r0 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x105142, 0x0)
ioctl$FS_IOC_RESVSP(r0, 0x40305828, &(0x7f0000000000)={0x0, 0x0, 0x0, 0x84000006})

[ 2847.351399] 9pnet: Insufficient options for proto=fd
[ 2847.375212] FAULT_INJECTION: forcing a failure.
[ 2847.375212] name failslab, interval 1, probability 0, space 0, times 0
[ 2847.377005] CPU: 0 PID: 27002 Comm: syz-executor.5 Not tainted 5.10.172 #1
[ 2847.377898] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 2847.379032] Call Trace:
[ 2847.379400]  dump_stack+0x107/0x167
[ 2847.379895]  should_fail.cold+0x5/0xa
[ 2847.380406]  ? __kernfs_new_node+0xd4/0x850
[ 2847.380986]  should_failslab+0x5/0x20
[ 2847.381516]  kmem_cache_alloc+0x5b/0x360
[ 2847.382067]  __kernfs_new_node+0xd4/0x850
[ 2847.382645]  ? kernfs_dop_revalidate+0x3a0/0x3a0
[ 2847.383324]  ? __mutex_unlock_slowpath+0xe1/0x600
[ 2847.383979]  ? wait_for_completion_io+0x270/0x270
[ 2847.384568]  ? kernfs_next_descendant_post+0x1a7/0x2a0
[ 2847.385244]  kernfs_new_node+0x93/0x120
[ 2847.385787]  __kernfs_create_file+0x51/0x350
[ 2847.386422]  sysfs_add_file_mode_ns+0x221/0x560
[ 2847.387049]  internal_create_group+0x324/0xb30
[ 2847.387671]  ? sysfs_remove_group+0x170/0x170
[ 2847.388261]  ? kernfs_name_hash+0xe7/0x110
[ 2847.388830]  ? kernfs_find_ns+0x256/0x380
[ 2847.389368]  sysfs_slab_add+0x188/0x200
[ 2847.389872]  __kmem_cache_create+0x3db/0x520
[ 2847.390484]  kmem_cache_create_usercopy+0x1db/0x2f0
[ 2847.391133]  p9_client_create+0xc2b/0x1090
[ 2847.391680]  ? p9_client_flush+0x430/0x430
[ 2847.392236]  ? lockdep_init_map_type+0x2c7/0x780
[ 2847.392827]  ? rcu_read_lock_sched_held+0x3e/0x80
[ 2847.393468]  ? __raw_spin_lock_init+0x36/0x110
[ 2847.394096]  v9fs_session_init+0x1dd/0x16a0
[ 2847.394704]  ? irqentry_enter+0x26/0x60
[ 2847.395271]  ? asm_sysvec_apic_timer_interrupt+0x12/0x20
[ 2847.395979]  ? trace_hardirqs_on+0x5b/0x180
[ 2847.396557]  ? v9fs_show_options+0x690/0x690
[ 2847.397206]  ? kasan_unpoison_shadow+0x33/0x50
[ 2847.397820]  ? __kasan_kmalloc.constprop.0+0xc9/0xd0
[ 2847.398562]  v9fs_mount+0x79/0x8f0
[ 2847.399048]  ? v9fs_write_inode+0x60/0x60
[ 2847.399606]  legacy_get_tree+0x105/0x220
[ 2847.400194]  vfs_get_tree+0x8e/0x300
[ 2847.400696]  path_mount+0x13be/0x20b0
[ 2847.401240]  ? strncpy_from_user+0x9e/0x470
[ 2847.401813]  ? finish_automount+0xa40/0xa40
[ 2847.402433]  ? getname_flags.part.0+0x1dd/0x4f0
[ 2847.403041]  ? _copy_from_user+0xfb/0x1b0
[ 2847.403604]  __x64_sys_mount+0x282/0x300
[ 2847.404145]  ? copy_mnt_ns+0xa00/0xa00
[ 2847.404662]  ? rcu_read_lock_sched_held+0x3e/0x80
[ 2847.405357]  do_syscall_64+0x33/0x40
[ 2847.405860]  entry_SYSCALL_64_after_hwframe+0x61/0xc6
[ 2847.406574] RIP: 0033:0x7f38308e8b19
[ 2847.407078] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 2847.409498] RSP: 002b:00007f382de5e188 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5
[ 2847.410554] RAX: ffffffffffffffda RBX: 00007f38309fbf60 RCX: 00007f38308e8b19
[ 2847.411634] RDX: 00000000200000c0 RSI: 0000000020000040 RDI: 0000000000000000
[ 2847.412587] RBP: 00007f382de5e1d0 R08: 0000000020000280 R09: 0000000000000000
[ 2847.413505] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[ 2847.414446] R13: 00007ffca2bf07df R14: 00007f382de5e300 R15: 0000000000022000
[ 2847.423434] kmem_cache_create(9p-fcall-cache) failed with error -12
21:28:13 executing program 3:
openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x105142, 0x0)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x400}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
pipe(&(0x7f00000001c0)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
mount$9p_fd(0x0, &(0x7f0000000040)='./file1\x00', &(0x7f00000000c0), 0x2000000000000000, &(0x7f0000000280)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {}, 0x2c, {[{@nodevmap}]}})
openat(r1, &(0x7f0000000180)='./file1\x00', 0x0, 0x0)

[ 2847.424293] CPU: 1 PID: 27002 Comm: syz-executor.5 Not tainted 5.10.172 #1
[ 2847.430605] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 2847.434794] Call Trace:
[ 2847.435167]  dump_stack+0x107/0x167
[ 2847.435654]  kmem_cache_create_usercopy.cold+0x17/0x65
[ 2847.436358]  p9_client_create+0xc2b/0x1090
[ 2847.436925]  ? p9_client_flush+0x430/0x430
[ 2847.437505]  ? lockdep_init_map_type+0x2c7/0x780
[ 2847.438150]  ? rcu_read_lock_sched_held+0x3e/0x80
[ 2847.438782]  ? __raw_spin_lock_init+0x36/0x110
[ 2847.439398]  v9fs_session_init+0x1dd/0x16a0
[ 2847.439971]  ? irqentry_enter+0x26/0x60
[ 2847.440510]  ? asm_sysvec_apic_timer_interrupt+0x12/0x20
[ 2847.441222]  ? trace_hardirqs_on+0x5b/0x180
[ 2847.441804]  ? v9fs_show_options+0x690/0x690
[ 2847.442441]  ? kasan_unpoison_shadow+0x33/0x50
[ 2847.443035]  ? __kasan_kmalloc.constprop.0+0xc9/0xd0
[ 2847.443677]  v9fs_mount+0x79/0x8f0
[ 2847.444161]  ? v9fs_write_inode+0x60/0x60
[ 2847.444711]  legacy_get_tree+0x105/0x220
[ 2847.445256]  vfs_get_tree+0x8e/0x300
[ 2847.445747]  path_mount+0x13be/0x20b0
[ 2847.446292]  ? strncpy_from_user+0x9e/0x470
[ 2847.446856]  ? finish_automount+0xa40/0xa40
[ 2847.447432]  ? getname_flags.part.0+0x1dd/0x4f0
[ 2847.448041]  ? _copy_from_user+0xfb/0x1b0
[ 2847.448602]  __x64_sys_mount+0x282/0x300
[ 2847.449134]  ? copy_mnt_ns+0xa00/0xa00
[ 2847.449636]  ? rcu_read_lock_sched_held+0x3e/0x80
[ 2847.450334]  do_syscall_64+0x33/0x40
[ 2847.450831]  entry_SYSCALL_64_after_hwframe+0x61/0xc6
[ 2847.451481] RIP: 0033:0x7f38308e8b19
[ 2847.451974] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 2847.454442] RSP: 002b:00007f382de5e188 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5
[ 2847.455425] RAX: ffffffffffffffda RBX: 00007f38309fbf60 RCX: 00007f38308e8b19
[ 2847.456381] RDX: 00000000200000c0 RSI: 0000000020000040 RDI: 0000000000000000
[ 2847.457309] RBP: 00007f382de5e1d0 R08: 0000000020000280 R09: 0000000000000000
[ 2847.458253] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[ 2847.459141] R13: 00007ffca2bf07df R14: 00007f382de5e300 R15: 0000000000022000
21:28:13 executing program 2:
syz_mount_image$vfat(&(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x0, 0x2, &(0x7f0000000180)=[{&(0x7f0000000140)="eb3c906d6b66732e66617400020801000470008400f801", 0x17}, {0x0, 0x0, 0x1000a00}], 0x0, &(0x7f0000000240)=ANY=[])
chdir(&(0x7f0000000040)='./file0\x00')
pipe(&(0x7f00000001c0)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
mount$9p_fd(0x0, &(0x7f0000000040)='./file1\x00', &(0x7f00000000c0), 0x0, &(0x7f0000000280)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}, 0x2c, {[{@nodevmap}]}})
faccessat2(r1, &(0x7f0000000000)='./file0\x00', 0x188, 0x1800)
ioctl$FS_IOC_RESVSP(0xffffffffffffffff, 0x40305828, &(0x7f0000000040)={0x0, 0x0, 0x0, 0x4000006})

21:28:13 executing program 3:
openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x105142, 0x0)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x400}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
pipe(&(0x7f00000001c0)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
mount$9p_fd(0x0, &(0x7f0000000040)='./file1\x00', &(0x7f00000000c0), 0x2010000000000000, &(0x7f0000000280)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {}, 0x2c, {[{@nodevmap}]}})
openat(r1, &(0x7f0000000180)='./file1\x00', 0x0, 0x0)

21:28:14 executing program 1:
openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x105142, 0x0)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
pipe(&(0x7f00000001c0))
mount$9p_fd(0x0, &(0x7f0000000040)='./file1\x00', &(0x7f00000000c0), 0xb00, &(0x7f0000000280)={'trans=fd,', {}, 0x2c, {}, 0x2c, {[{@nodevmap}]}})

21:28:14 executing program 4:
r0 = openat$vcs(0xffffffffffffff9c, &(0x7f0000000040), 0x0, 0x0)
openat$sr(0xffffffffffffff9c, &(0x7f00000035c0), 0x0, 0x0)
r1 = openat$sr(0xffffffffffffff9c, &(0x7f00000000c0), 0x224400, 0x0)
fcntl$setpipe(r1, 0x407, 0x9)
openat$rtc(0xffffffffffffff9c, &(0x7f0000000080), 0x40000, 0x0)
pipe(&(0x7f00000001c0))
open(&(0x7f00000016c0)='./cgroup.net/cgroup.procs\x00', 0x0, 0x0)
ioctl$sock_inet6_SIOCDIFADDR(r0, 0x8936, &(0x7f0000000000)={@loopback, 0x62})
r2 = perf_event_open(&(0x7f0000001d80)={0x2, 0x80, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
mmap(&(0x7f0000ffc000/0x2000)=nil, 0x2000, 0x0, 0x13, r2, 0x0)
perf_event_open(&(0x7f0000001d80)={0x2, 0x80, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, r2, 0x2)
ioctl$F2FS_IOC_START_ATOMIC_WRITE(r2, 0xf501, 0x0)
pselect6(0x40, &(0x7f0000000180), &(0x7f00000001c0)={0x3fc}, 0x0, 0x0, 0x0)

21:28:14 executing program 0:
syz_mount_image$vfat(&(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x0, 0x2, &(0x7f0000000180)=[{&(0x7f0000000140)="eb3c906d6b66732e66617400020801000470008400f801", 0x17}, {0x0, 0x0, 0x1000a00}], 0x0, &(0x7f0000000240)=ANY=[])
chdir(&(0x7f0000000040)='./file0\x00')
mount$cgroup(0x0, 0x0, &(0x7f0000000400), 0x0, 0x0)
r0 = syz_io_uring_setup(0x22, &(0x7f0000000680)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000180)=<r1=>0x0, &(0x7f0000002a40)=<r2=>0x0)
r3 = io_uring_register$IORING_REGISTER_PERSONALITY(r0, 0x9, 0x0, 0x0)
r4 = socket$nl_netfilter(0x10, 0x3, 0xc)
syz_io_uring_submit(r1, r2, &(0x7f0000000400)=@IORING_OP_WRITEV={0x2, 0x0, 0x0, @fd=r4, 0x0, 0x0, 0x0, 0x0, 0x0, {0x0, r3}}, 0x0)
r5 = syz_io_uring_setup(0x22, &(0x7f0000000680)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000180), &(0x7f0000002a40))
r6 = io_uring_register$IORING_REGISTER_PERSONALITY(r5, 0x9, 0x0, 0x0)
syz_io_uring_submit(r1, 0x0, &(0x7f0000000440)=@IORING_OP_FSYNC={0x3, 0x2, 0x0, @fd_index=0x9, 0x0, 0x0, 0x0, 0x0, 0x1, {0x0, r6}}, 0x2)
perf_event_open(0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r7 = openat(0xffffffffffffff9c, &(0x7f00000002c0)='./file1\x00', 0x105142, 0x0)
r8 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0)
mount(&(0x7f0000000200)=ANY=[@ANYBLOB="2f6f651317868af191bdb2"], &(0x7f0000000240)='./file0\x00', &(0x7f0000000280)='nfsd\x00', 0x800000, &(0x7f0000000300)='cgroup\x00')
sendfile(r7, r8, 0x0, 0x100000001)
newfstatat(0xffffffffffffff9c, &(0x7f0000000340)='./file1\x00', &(0x7f0000000380), 0x400)

[ 2847.626155] 9pnet: Insufficient options for proto=fd
21:28:14 executing program 3:
openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x105142, 0x0)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x400}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
pipe(&(0x7f00000001c0)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
mount$9p_fd(0x0, &(0x7f0000000040)='./file1\x00', &(0x7f00000000c0), 0x8cffffff00000000, &(0x7f0000000280)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {}, 0x2c, {[{@nodevmap}]}})
openat(r1, &(0x7f0000000180)='./file1\x00', 0x0, 0x0)

21:28:14 executing program 5:
openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x105142, 0x0)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
pipe(&(0x7f00000001c0)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
mount$9p_fd(0x0, &(0x7f0000000040)='./file1\x00', &(0x7f00000000c0), 0x0, &(0x7f0000000280)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}}) (fail_nth: 84)
openat(0xffffffffffffffff, 0x0, 0x0, 0x0)

[ 2847.776355] FAULT_INJECTION: forcing a failure.
[ 2847.776355] name failslab, interval 1, probability 0, space 0, times 0
[ 2847.778381] CPU: 0 PID: 27178 Comm: syz-executor.5 Not tainted 5.10.172 #1
[ 2847.779251] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 2847.780264] Call Trace:
[ 2847.780601]  dump_stack+0x107/0x167
[ 2847.781062]  should_fail.cold+0x5/0xa
[ 2847.781544]  ? create_object.isra.0+0x3a/0xa20
[ 2847.782152]  should_failslab+0x5/0x20
[ 2847.782651]  kmem_cache_alloc+0x5b/0x360
[ 2847.783184]  create_object.isra.0+0x3a/0xa20
[ 2847.783752]  ? __kasan_kmalloc.constprop.0+0xc9/0xd0
[ 2847.784425]  kmem_cache_alloc+0x159/0x360
[ 2847.784995]  __kernfs_new_node+0xd4/0x850
[ 2847.785555]  ? kernfs_dop_revalidate+0x3a0/0x3a0
[ 2847.786226]  ? __mutex_unlock_slowpath+0xe1/0x600
[ 2847.786865]  ? wait_for_completion_io+0x270/0x270
[ 2847.787514]  ? kernfs_next_descendant_post+0x1a7/0x2a0
[ 2847.788203]  kernfs_new_node+0x93/0x120
[ 2847.788729]  __kernfs_create_file+0x51/0x350
[ 2847.789313]  sysfs_add_file_mode_ns+0x221/0x560
[ 2847.789946]  internal_create_group+0x324/0xb30
[ 2847.790585]  ? sysfs_remove_group+0x170/0x170
[ 2847.791167]  ? kernfs_name_hash+0xe7/0x110
[ 2847.791728]  ? kernfs_find_ns+0x256/0x380
[ 2847.792282]  sysfs_slab_add+0x188/0x200
[ 2847.792805]  __kmem_cache_create+0x3db/0x520
[ 2847.793380]  kmem_cache_create_usercopy+0x1db/0x2f0
[ 2847.794041]  p9_client_create+0xc2b/0x1090
[ 2847.794639]  ? p9_client_flush+0x430/0x430
[ 2847.795202]  ? lockdep_init_map_type+0x2c7/0x780
[ 2847.795816]  ? rcu_read_lock_sched_held+0x3e/0x80
[ 2847.796452]  ? __raw_spin_lock_init+0x36/0x110
[ 2847.797065]  v9fs_session_init+0x1dd/0x16a0
[ 2847.797655]  ? kmem_cache_alloc_trace+0x151/0x360
[ 2847.798337]  ? v9fs_show_options+0x690/0x690
[ 2847.798939]  ? kasan_unpoison_shadow+0x33/0x50
[ 2847.799548]  ? __kasan_kmalloc.constprop.0+0xc9/0xd0
[ 2847.800221]  v9fs_mount+0x79/0x8f0
[ 2847.800705]  ? v9fs_write_inode+0x60/0x60
[ 2847.801249]  legacy_get_tree+0x105/0x220
[ 2847.801797]  vfs_get_tree+0x8e/0x300
[ 2847.802318]  path_mount+0x13be/0x20b0
[ 2847.802820]  ? strncpy_from_user+0x9e/0x470
[ 2847.803375]  ? finish_automount+0xa40/0xa40
[ 2847.803943]  ? getname_flags.part.0+0x1dd/0x4f0
[ 2847.804562]  ? _copy_from_user+0xfb/0x1b0
[ 2847.805128]  __x64_sys_mount+0x282/0x300
[ 2847.805682]  ? copy_mnt_ns+0xa00/0xa00
[ 2847.806438]  ? rcu_read_lock_sched_held+0x3e/0x80
[ 2847.807699]  do_syscall_64+0x33/0x40
[ 2847.808735]  entry_SYSCALL_64_after_hwframe+0x61/0xc6
[ 2847.809928] RIP: 0033:0x7f38308e8b19
[ 2847.810950] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 2847.815841] RSP: 002b:00007f382de5e188 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5
[ 2847.818036] RAX: ffffffffffffffda RBX: 00007f38309fbf60 RCX: 00007f38308e8b19
[ 2847.820234] RDX: 00000000200000c0 RSI: 0000000020000040 RDI: 0000000000000000
[ 2847.822024] RBP: 00007f382de5e1d0 R08: 0000000020000280 R09: 0000000000000000
[ 2847.824250] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[ 2847.826467] R13: 00007ffca2bf07df R14: 00007f382de5e300 R15: 0000000000022000
21:28:32 executing program 0:
syz_mount_image$vfat(&(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x0, 0x2, &(0x7f0000000180)=[{&(0x7f0000000140)="eb3c906d6b66732e66617400020801000470008400f801", 0x17}, {0x0, 0x0, 0x1000a00}], 0x0, &(0x7f0000000240)=ANY=[])
chdir(&(0x7f0000000040)='./file0\x00')
mount$cgroup(0x0, 0x0, &(0x7f0000000400), 0x0, 0x0)
r0 = syz_io_uring_setup(0x22, &(0x7f0000000680)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000180)=<r1=>0x0, &(0x7f0000002a40)=<r2=>0x0)
r3 = io_uring_register$IORING_REGISTER_PERSONALITY(r0, 0x9, 0x0, 0x0)
r4 = socket$nl_netfilter(0x10, 0x3, 0xc)
syz_io_uring_submit(r1, r2, &(0x7f0000000400)=@IORING_OP_WRITEV={0x2, 0x0, 0x0, @fd=r4, 0x0, 0x0, 0x0, 0x0, 0x0, {0x0, r3}}, 0x0)
r5 = syz_io_uring_setup(0x22, &(0x7f0000000680)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000180), &(0x7f0000002a40))
r6 = io_uring_register$IORING_REGISTER_PERSONALITY(r5, 0x9, 0x0, 0x0)
syz_io_uring_submit(r1, 0x0, &(0x7f0000000440)=@IORING_OP_FSYNC={0x3, 0x2, 0x0, @fd_index=0x9, 0x0, 0x0, 0x0, 0x0, 0x1, {0x0, r6}}, 0x2)
perf_event_open(0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r7 = openat(0xffffffffffffff9c, &(0x7f00000002c0)='./file1\x00', 0x105142, 0x0)
r8 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0)
mount(&(0x7f0000000200)=ANY=[@ANYBLOB="2f6f651317868af191bdb2"], &(0x7f0000000240)='./file0\x00', &(0x7f0000000280)='nfsd\x00', 0x800000, &(0x7f0000000300)='cgroup\x00')
sendfile(r7, r8, 0x0, 0x100000001)
newfstatat(0xffffffffffffff9c, &(0x7f0000000340)='./file1\x00', &(0x7f0000000380), 0x400)

21:28:32 executing program 4:
openat$vcs(0xffffffffffffff9c, &(0x7f0000000040), 0x0, 0x0)
openat$sr(0xffffffffffffff9c, &(0x7f00000035c0), 0x0, 0x0)
r0 = openat$sr(0xffffffffffffff9c, &(0x7f00000000c0), 0x224400, 0x0)
r1 = openat$rtc(0xffffffffffffff9c, &(0x7f0000000200), 0x0, 0x0)
pipe(&(0x7f00000001c0))
ioctl$BTRFS_IOC_GET_FEATURES(r1, 0x80189439, &(0x7f0000000000))
r2 = perf_event_open(&(0x7f0000001d80)={0x2, 0x80, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
mmap(&(0x7f0000ffc000/0x2000)=nil, 0x2000, 0x0, 0x13, r2, 0x0)
r3 = perf_event_open(&(0x7f0000001d80)={0x2, 0x80, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, r2, 0x2)
ioctl$FIDEDUPERANGE(r0, 0xc0189436, &(0x7f0000000080)={0xffffffff, 0x0, 0x1, 0x0, 0x0, [{{r2}}]})
ioctl$TIOCGSID(r0, 0x5429, &(0x7f0000000140)=<r4=>0x0)
perf_event_open(&(0x7f0000000240)={0x0, 0x80, 0x5, 0x1f, 0x4, 0x0, 0x0, 0x100, 0x6000a, 0x6, 0x1, 0x0, 0x0, 0x0, 0x1, 0x1, 0x1, 0x0, 0x1, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x2, 0x1, 0x1, 0x0, 0x0, 0x1, 0x1, 0x0, 0x0, 0x1, 0x1, 0x1, 0x1, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x0, 0x1, 0x0, 0x0, 0x101, 0x2, @perf_bp={&(0x7f0000000100), 0x1}, 0xa000, 0x1, 0x9, 0x0, 0x8, 0x9, 0x2, 0x0, 0x5b, 0x0, 0x2}, r4, 0x1, r3, 0x5)
open(&(0x7f00000016c0)='./cgroup.net/cgroup.procs\x00', 0x0, 0x0)
pselect6(0x40, &(0x7f0000000180), &(0x7f00000001c0)={0x3fc}, 0x0, 0x0, 0x0)

21:28:32 executing program 6:
r0 = syz_mount_image$vfat(&(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x0, 0x2, &(0x7f0000000180)=[{&(0x7f0000000140)="eb3c906d6b66732e66617400020801000470008400f801", 0x17}, {0x0, 0x0, 0x1000a00}], 0x0, &(0x7f0000000240)=ANY=[])
chdir(&(0x7f0000000040)='./file0\x00')
openat2(r0, &(0x7f0000000100)='./file0\x00', &(0x7f00000001c0)={0x40000, 0x81}, 0x18)
mount$cgroup(0x0, 0x0, &(0x7f0000000400), 0x0, 0x0)
r1 = syz_io_uring_setup(0x22, &(0x7f0000000680)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000180)=<r2=>0x0, &(0x7f0000002a40)=<r3=>0x0)
io_uring_register$IORING_REGISTER_PERSONALITY(r1, 0x9, 0x0, 0x0)
socket$nl_netfilter(0x10, 0x3, 0xc)
syz_io_uring_submit(r2, r3, 0x0, 0x0)
r4 = syz_io_uring_setup(0x22, &(0x7f0000000680)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000180), &(0x7f0000002a40))
r5 = io_uring_register$IORING_REGISTER_PERSONALITY(r4, 0x9, 0x0, 0x0)
syz_io_uring_submit(r2, 0x0, &(0x7f0000000440)=@IORING_OP_FSYNC={0x3, 0x0, 0x0, @fd_index=0x9, 0x0, 0x0, 0x0, 0x0, 0x1, {0x0, r5}}, 0x2)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r6 = openat(0xffffffffffffff9c, &(0x7f00000002c0)='./file1\x00', 0x105142, 0x0)
r7 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0)
sendfile(r6, r7, 0x0, 0x100000001)
newfstatat(0xffffffffffffff9c, &(0x7f0000000340)='./file1\x00', &(0x7f0000000380), 0x400)

21:28:32 executing program 2:
r0 = syz_mount_image$vfat(&(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x0, 0x2, &(0x7f0000000180)=[{&(0x7f0000000140)="eb3c906d6b66732e66617400020801000470008400f801", 0x17}, {0x0, 0x0, 0x1000a00}], 0x801400, &(0x7f0000000240)=ANY=[])
pipe(&(0x7f00000001c0)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
mount$9p_fd(0x0, &(0x7f0000000040)='./file1\x00', &(0x7f00000000c0), 0x0, &(0x7f00000003c0)=ANY=[@ANYBLOB='trans=fR\x00rfdno=', @ANYRESHEX=r1, @ANYBLOB=',wfdno=', @ANYRESHEX=r2, @ANYBLOB="2c6e6f6465766d61702c0014d30a4e5fadeaaa4c2e5c934980b48e50651e7b4fa4763a1f5b8b73953628ca2b6d35ca5e869b1896b2ddbfcd95d4a3dd885fa0587565914b27d60470f2fe846870b4d48214aacc6bece59f05d590c8e843ae0df304ea9983cff7d0dadd91134869b5ac43d06cefb74f7e9690ac4d7e51f460236bc5f3fe0b08c4100a1bac3abb617f1ef1ea15edd564acd938b9431d06b5ed806ce6c3a4d0e2f9aaeb80ef71945971fafa7f05b77e5fb34180fc4462b1d6b6b3d07ab8943eecbaee1649063260b8043bdc0b9ebc7c1de003c57a"])
ioctl$FITHAW(r2, 0xc0045878)
openat2(r2, &(0x7f0000000200)='./file0\x00', &(0x7f00000002c0)={0x420000, 0x110, 0x1d}, 0x18)
chdir(&(0x7f0000000040)='./file0\x00')
openat(r0, &(0x7f0000000280)='./file0\x00', 0x80, 0x80)
r3 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x105142, 0x0)
openat(r3, &(0x7f0000000240)='./file1\x00', 0x440080, 0x20)
ioctl$FS_IOC_RESVSP(r3, 0x40305828, &(0x7f0000000040)={0x0, 0x0, 0x0, 0x4000006})
getsockopt$inet6_mreq(r3, 0x29, 0x15, &(0x7f0000000000)={@ipv4={""/10, ""/2, @loopback}}, &(0x7f00000001c0)=0x14)
r4 = syz_io_uring_setup(0x4d4f, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r5=>0x0, &(0x7f0000000140)=<r6=>0x0)
r7 = openat$full(0xffffffffffffff9c, &(0x7f0000000040), 0x0, 0x0)
syz_io_uring_submit(r5, r6, &(0x7f0000000000)=@IORING_OP_READV=@use_registered_buffer={0x1, 0x0, 0x0, @fd=r7}, 0x0)
syz_io_uring_submit(r5, r6, &(0x7f0000000280)=@IORING_OP_STATX={0x15, 0x2, 0x0, 0xffffffffffffffff, 0x0, 0x0}, 0x800)
mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r4, 0x0)
syz_io_uring_submit(0x0, r6, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x5, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x800}, 0x8000)
r8 = io_uring_register$IORING_REGISTER_PERSONALITY(r1, 0x9, 0x0, 0x0)
syz_io_uring_submit(0x0, r6, &(0x7f0000000340)=@IORING_OP_FSYNC={0x3, 0x3, 0x0, @fd, 0x0, 0x0, 0x0, 0x1, 0x1, {0x0, r8}}, 0x400)
sendfile(r1, r2, &(0x7f0000000300)=0x1, 0xfb)

21:28:32 executing program 7:
r0 = perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
io_setup(0x7f, &(0x7f00000002c0)=<r1=>0x0)
io_pgetevents(r1, 0x1, 0x1, &(0x7f0000000000)=[{}], 0x0, 0x0)
io_submit(r1, 0x1, &(0x7f0000000340)=[&(0x7f0000000300)={0x0, 0x0, 0x0, 0x0, 0x0, r0, 0x0}])

21:28:32 executing program 5:
openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x105142, 0x0)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
pipe(&(0x7f00000001c0)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
mount$9p_fd(0x0, &(0x7f0000000040)='./file1\x00', &(0x7f00000000c0), 0x0, &(0x7f0000000280)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}}) (fail_nth: 85)
openat(0xffffffffffffffff, 0x0, 0x0, 0x0)

21:28:32 executing program 1:
openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x105142, 0x0)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
pipe(&(0x7f00000001c0))
mount$9p_fd(0x0, &(0x7f0000000040)='./file1\x00', &(0x7f00000000c0), 0x1020, &(0x7f0000000280)={'trans=fd,', {}, 0x2c, {}, 0x2c, {[{@nodevmap}]}})

21:28:32 executing program 3:
openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x105142, 0x0)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x400}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
pipe(&(0x7f00000001c0)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
mount$9p_fd(0x0, &(0x7f0000000040)='./file1\x00', &(0x7f00000000c0), 0xf6ffffff00000000, &(0x7f0000000280)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {}, 0x2c, {[{@nodevmap}]}})
openat(r1, &(0x7f0000000180)='./file1\x00', 0x0, 0x0)

[ 2865.788042] FAULT_INJECTION: forcing a failure.
[ 2865.788042] name failslab, interval 1, probability 0, space 0, times 0
[ 2865.790075] CPU: 1 PID: 27264 Comm: syz-executor.5 Not tainted 5.10.172 #1
[ 2865.791114] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 2865.792168] Call Trace:
[ 2865.792534]  dump_stack+0x107/0x167
[ 2865.792996]  should_fail.cold+0x5/0xa
[ 2865.793510]  ? __kernfs_new_node+0xd4/0x850
[ 2865.794063]  should_failslab+0x5/0x20
[ 2865.794592]  kmem_cache_alloc+0x5b/0x360
[ 2865.795137]  __kernfs_new_node+0xd4/0x850
[ 2865.795695]  ? kernfs_dop_revalidate+0x3a0/0x3a0
[ 2865.796362]  ? __mutex_unlock_slowpath+0xe1/0x600
[ 2865.797058]  ? wait_for_completion_io+0x270/0x270
[ 2865.797751]  ? kernfs_next_descendant_post+0x1a7/0x2a0
[ 2865.801134]  kernfs_new_node+0x93/0x120
[ 2865.801774]  __kernfs_create_file+0x51/0x350
[ 2865.802466]  sysfs_add_file_mode_ns+0x221/0x560
[ 2865.803223]  internal_create_group+0x324/0xb30
[ 2865.803941]  ? sysfs_remove_group+0x170/0x170
[ 2865.804611]  ? kernfs_name_hash+0xe7/0x110
[ 2865.805260]  ? kernfs_find_ns+0x256/0x380
[ 2865.805898]  sysfs_slab_add+0x188/0x200
[ 2865.806742]  __kmem_cache_create+0x3db/0x520
[ 2865.807401]  kmem_cache_create_usercopy+0x1db/0x2f0
[ 2865.808166]  p9_client_create+0xc2b/0x1090
[ 2865.808812]  ? p9_client_flush+0x430/0x430
[ 2865.809481]  ? lockdep_init_map_type+0x2c7/0x780
[ 2865.810221]  ? rcu_read_lock_sched_held+0x3e/0x80
[ 2865.811249]  ? __raw_spin_lock_init+0x36/0x110
[ 2865.811944]  v9fs_session_init+0x1dd/0x16a0
[ 2865.812610]  ? kmem_cache_alloc_trace+0x151/0x360
[ 2865.813332]  ? v9fs_show_options+0x690/0x690
[ 2865.814011]  ? kasan_unpoison_shadow+0x33/0x50
[ 2865.822768]  ? __kasan_kmalloc.constprop.0+0xc9/0xd0
[ 2865.823532]  v9fs_mount+0x79/0x8f0
[ 2865.824072]  ? v9fs_write_inode+0x60/0x60
[ 2865.824708]  legacy_get_tree+0x105/0x220
[ 2865.825323]  vfs_get_tree+0x8e/0x300
[ 2865.825903]  path_mount+0x13be/0x20b0
[ 2865.826494]  ? strncpy_from_user+0x9e/0x470
[ 2865.827057]  ? finish_automount+0xa40/0xa40
[ 2865.827612]  ? getname_flags.part.0+0x1dd/0x4f0
[ 2865.828220]  ? _copy_from_user+0xfb/0x1b0
[ 2865.828757]  __x64_sys_mount+0x282/0x300
[ 2865.829295]  ? copy_mnt_ns+0xa00/0xa00
[ 2865.829848]  ? rcu_read_lock_sched_held+0x3e/0x80
[ 2865.830505]  do_syscall_64+0x33/0x40
[ 2865.831084]  entry_SYSCALL_64_after_hwframe+0x61/0xc6
[ 2865.831851] RIP: 0033:0x7f38308e8b19
[ 2865.832403] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 2865.835221] RSP: 002b:00007f382de5e188 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5
[ 2865.836187] RAX: ffffffffffffffda RBX: 00007f38309fbf60 RCX: 00007f38308e8b19
[ 2865.837243] RDX: 00000000200000c0 RSI: 0000000020000040 RDI: 0000000000000000
[ 2865.838172] RBP: 00007f382de5e1d0 R08: 0000000020000280 R09: 0000000000000000
[ 2865.839302] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[ 2865.840430] R13: 00007ffca2bf07df R14: 00007f382de5e300 R15: 0000000000022000
[ 2865.856359] kmem_cache_create(9p-fcall-cache) failed with error -12
[ 2865.857388] CPU: 1 PID: 27264 Comm: syz-executor.5 Not tainted 5.10.172 #1
[ 2865.859465] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 2865.861660] Call Trace:
[ 2865.862342]  dump_stack+0x107/0x167
[ 2865.863333]  kmem_cache_create_usercopy.cold+0x17/0x65
[ 2865.864780]  p9_client_create+0xc2b/0x1090
[ 2865.865978]  ? p9_client_flush+0x430/0x430
[ 2865.867174]  ? lockdep_init_map_type+0x2c7/0x780
[ 2865.868499]  ? rcu_read_lock_sched_held+0x3e/0x80
[ 2865.869764]  ? __raw_spin_lock_init+0x36/0x110
[ 2865.871014]  v9fs_session_init+0x1dd/0x16a0
[ 2865.872167]  ? kmem_cache_alloc_trace+0x151/0x360
[ 2865.873485]  ? v9fs_show_options+0x690/0x690
[ 2865.874763]  ? kasan_unpoison_shadow+0x33/0x50
[ 2865.876055]  ? __kasan_kmalloc.constprop.0+0xc9/0xd0
[ 2865.877461]  v9fs_mount+0x79/0x8f0
[ 2865.878504]  ? v9fs_write_inode+0x60/0x60
[ 2865.879610]  legacy_get_tree+0x105/0x220
[ 2865.880701]  vfs_get_tree+0x8e/0x300
[ 2865.881679]  path_mount+0x13be/0x20b0
[ 2865.882807]  ? strncpy_from_user+0x9e/0x470
[ 2865.884005]  ? finish_automount+0xa40/0xa40
[ 2865.885219]  ? getname_flags.part.0+0x1dd/0x4f0
[ 2865.886579]  ? _copy_from_user+0xfb/0x1b0
[ 2865.887719]  __x64_sys_mount+0x282/0x300
[ 2865.888793]  ? copy_mnt_ns+0xa00/0xa00
[ 2865.889849]  ? rcu_read_lock_sched_held+0x3e/0x80
[ 2865.891225]  do_syscall_64+0x33/0x40
[ 2865.892282]  entry_SYSCALL_64_after_hwframe+0x61/0xc6
[ 2865.893708] RIP: 0033:0x7f38308e8b19
21:28:32 executing program 3:
openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x105142, 0x0)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x400}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
pipe(&(0x7f00000001c0)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
mount$9p_fd(0x0, &(0x7f0000000040)='./file1\x00', &(0x7f00000000c0), 0x0, &(0x7f0000000280)={'trans=fd,', {'rfdno', 0x22, r0}, 0x2c, {}, 0x2c, {[{@nodevmap}]}})
openat(r1, &(0x7f0000000180)='./file1\x00', 0x0, 0x0)

[ 2865.894837] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 2865.902403] RSP: 002b:00007f382de5e188 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5
[ 2865.903427] RAX: ffffffffffffffda RBX: 00007f38309fbf60 RCX: 00007f38308e8b19
[ 2865.904373] RDX: 00000000200000c0 RSI: 0000000020000040 RDI: 0000000000000000
[ 2865.905316] RBP: 00007f382de5e1d0 R08: 0000000020000280 R09: 0000000000000000
[ 2865.906256] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[ 2865.907246] R13: 00007ffca2bf07df R14: 00007f382de5e300 R15: 0000000000022000
[ 2865.937266] 9pnet: Insufficient options for proto=fd
[ 2865.963310] 9pnet: Insufficient options for proto=fd
[ 2865.968869] 9pnet: Could not find request transport: fR
21:28:32 executing program 1:
openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x105142, 0x0)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
pipe(&(0x7f00000001c0))
mount$9p_fd(0x0, &(0x7f0000000040)='./file1\x00', &(0x7f00000000c0), 0x2000, &(0x7f0000000280)={'trans=fd,', {}, 0x2c, {}, 0x2c, {[{@nodevmap}]}})

21:28:32 executing program 4:
openat$vcs(0xffffffffffffff9c, &(0x7f0000000040), 0x0, 0x0)
openat$sr(0xffffffffffffff9c, &(0x7f00000035c0), 0x0, 0x0)
openat$sr(0xffffffffffffff9c, &(0x7f00000000c0), 0x224400, 0x0)
openat$rtc(0xffffffffffffff9c, &(0x7f0000000200), 0x0, 0x0)
pipe(&(0x7f00000001c0))
open(&(0x7f00000016c0)='./cgroup.net/cgroup.procs\x00', 0x0, 0x0)
pselect6(0x40, &(0x7f0000000180)={0xfffffffffffffffc, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff}, &(0x7f00000001c0)={0x3fc, 0x2}, 0x0, 0x0, 0x0)

21:28:32 executing program 6:
r0 = syz_mount_image$vfat(&(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x0, 0x2, &(0x7f0000000180)=[{&(0x7f0000000140)="eb3c906d6b66732e66617400020801000470008400f801", 0x17}, {0x0, 0x0, 0x1000a00}], 0x0, &(0x7f0000000240)=ANY=[])
chdir(&(0x7f0000000040)='./file0\x00')
openat2(r0, &(0x7f0000000100)='./file0\x00', &(0x7f00000001c0)={0x40000, 0x81}, 0x18)
mount$cgroup(0x0, 0x0, &(0x7f0000000400), 0x0, 0x0)
r1 = syz_io_uring_setup(0x22, &(0x7f0000000680)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000180)=<r2=>0x0, &(0x7f0000002a40)=<r3=>0x0)
io_uring_register$IORING_REGISTER_PERSONALITY(r1, 0x9, 0x0, 0x0)
socket$nl_netfilter(0x10, 0x3, 0xc)
syz_io_uring_submit(r2, r3, 0x0, 0x0)
r4 = syz_io_uring_setup(0x22, &(0x7f0000000680)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000180), &(0x7f0000002a40))
r5 = io_uring_register$IORING_REGISTER_PERSONALITY(r4, 0x9, 0x0, 0x0)
syz_io_uring_submit(r2, 0x0, &(0x7f0000000440)=@IORING_OP_FSYNC={0x3, 0x2, 0x0, @fd_index, 0x0, 0x0, 0x0, 0x0, 0x1, {0x0, r5}}, 0x2)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r6 = openat(0xffffffffffffff9c, &(0x7f00000002c0)='./file1\x00', 0x105142, 0x0)
r7 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0)
sendfile(r6, r7, 0x0, 0x100000001)
newfstatat(0xffffffffffffff9c, &(0x7f0000000340)='./file1\x00', &(0x7f0000000380), 0x400)

21:28:32 executing program 3:
openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x105142, 0x0)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x400}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
pipe(&(0x7f00000001c0)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
mount$9p_fd(0x0, &(0x7f0000000040)='./file1\x00', &(0x7f00000000c0), 0x0, &(0x7f0000000280)={'trans=fd,', {'rfdno', 0x25, r0}, 0x2c, {}, 0x2c, {[{@nodevmap}]}})
openat(r1, &(0x7f0000000180)='./file1\x00', 0x0, 0x0)

21:28:32 executing program 0:
syz_mount_image$vfat(&(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x0, 0x2, &(0x7f0000000180)=[{&(0x7f0000000140)="eb3c906d6b66732e66617400020801000470008400f801", 0x17}, {0x0, 0x0, 0x1000a00}], 0x0, &(0x7f0000000240)=ANY=[])
chdir(&(0x7f0000000040)='./file0\x00')
mount$cgroup(0x0, 0x0, &(0x7f0000000400), 0x0, 0x0)
r0 = syz_io_uring_setup(0x22, &(0x7f0000000680)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000180)=<r1=>0x0, &(0x7f0000002a40)=<r2=>0x0)
r3 = io_uring_register$IORING_REGISTER_PERSONALITY(r0, 0x9, 0x0, 0x0)
r4 = socket$nl_netfilter(0x10, 0x3, 0xc)
syz_io_uring_submit(r1, r2, &(0x7f0000000400)=@IORING_OP_WRITEV={0x2, 0x0, 0x0, @fd=r4, 0x0, 0x0, 0x0, 0x0, 0x0, {0x0, r3}}, 0x0)
r5 = syz_io_uring_setup(0x22, &(0x7f0000000680)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000180), &(0x7f0000002a40))
r6 = io_uring_register$IORING_REGISTER_PERSONALITY(r5, 0x9, 0x0, 0x0)
syz_io_uring_submit(r1, 0x0, &(0x7f0000000440)=@IORING_OP_FSYNC={0x3, 0x2, 0x0, @fd_index=0x9, 0x0, 0x0, 0x0, 0x0, 0x1, {0x0, r6}}, 0x2)
perf_event_open(&(0x7f0000001d80)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r7 = openat(0xffffffffffffff9c, &(0x7f00000002c0)='./file1\x00', 0x105142, 0x0)
r8 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0)
mount(&(0x7f0000000200)=ANY=[@ANYBLOB="2f6f651317868af191bdb2"], &(0x7f0000000240)='./file0\x00', &(0x7f0000000280)='nfsd\x00', 0x800000, &(0x7f0000000300)='cgroup\x00')
sendfile(r7, r8, 0x0, 0x100000001)
newfstatat(0xffffffffffffff9c, &(0x7f0000000340)='./file1\x00', &(0x7f0000000380), 0x400)

21:28:32 executing program 2:
syz_mount_image$vfat(&(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x0, 0x2, &(0x7f0000000180)=[{&(0x7f0000000140)="eb3c906d6b66732e66617400020801000470008400f801", 0x17}, {0x0, 0x0, 0x1000a00}], 0x0, &(0x7f0000000240)=ANY=[])
chdir(&(0x7f0000000000)='./file0\x00')
r0 = open_tree(0xffffffffffffff9c, &(0x7f00000001c0)='./file0\x00', 0x81101)
r1 = openat(r0, &(0x7f0000000100)='./file0\x00', 0x105142, 0x40)
ioctl$FS_IOC_RESVSP(r1, 0x40305828, &(0x7f0000000040)={0x0, 0x0, 0x0, 0x4000006})

21:28:32 executing program 5:
openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x105142, 0x0)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
pipe(&(0x7f00000001c0)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
mount$9p_fd(0x0, &(0x7f0000000040)='./file1\x00', &(0x7f00000000c0), 0x0, &(0x7f0000000280)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}}) (fail_nth: 86)
openat(0xffffffffffffffff, 0x0, 0x0, 0x0)

[ 2866.206900] 9pnet: Insufficient options for proto=fd
[ 2866.217560] 9pnet: Insufficient options for proto=fd
[ 2866.338133] FAULT_INJECTION: forcing a failure.
[ 2866.338133] name failslab, interval 1, probability 0, space 0, times 0
[ 2866.341499] CPU: 1 PID: 27507 Comm: syz-executor.5 Not tainted 5.10.172 #1
[ 2866.343513] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 2866.345965] Call Trace:
[ 2866.346734]  dump_stack+0x107/0x167
[ 2866.347727]  should_fail.cold+0x5/0xa
[ 2866.348728]  ? create_object.isra.0+0x3a/0xa20
[ 2866.349984]  should_failslab+0x5/0x20
[ 2866.351008]  kmem_cache_alloc+0x5b/0x360
[ 2866.352128]  create_object.isra.0+0x3a/0xa20
[ 2866.353276]  ? __kasan_kmalloc.constprop.0+0xc9/0xd0
[ 2866.354755]  kmem_cache_alloc+0x159/0x360
[ 2866.355866]  __kernfs_new_node+0xd4/0x850
[ 2866.357020]  ? kernfs_dop_revalidate+0x3a0/0x3a0
[ 2866.358279]  ? __mutex_unlock_slowpath+0xe1/0x600
[ 2866.359562]  ? wait_for_completion_io+0x270/0x270
[ 2866.360852]  ? kernfs_next_descendant_post+0x1a7/0x2a0
[ 2866.362245]  kernfs_new_node+0x93/0x120
[ 2866.363311]  __kernfs_create_file+0x51/0x350
[ 2866.364481]  sysfs_add_file_mode_ns+0x221/0x560
[ 2866.365738]  internal_create_group+0x324/0xb30
[ 2866.367009]  ? sysfs_remove_group+0x170/0x170
[ 2866.368219]  ? kernfs_name_hash+0xe7/0x110
[ 2866.369372]  ? kernfs_find_ns+0x256/0x380
[ 2866.370508]  sysfs_slab_add+0x188/0x200
[ 2866.371584]  __kmem_cache_create+0x3db/0x520
[ 2866.372765]  kmem_cache_create_usercopy+0x1db/0x2f0
[ 2866.374095]  p9_client_create+0xc2b/0x1090
[ 2866.375227]  ? p9_client_flush+0x430/0x430
[ 2866.376413]  ? lockdep_init_map_type+0x2c7/0x780
[ 2866.377676]  ? rcu_read_lock_sched_held+0x3e/0x80
[ 2866.378986]  ? __raw_spin_lock_init+0x36/0x110
[ 2866.380195]  v9fs_session_init+0x1dd/0x16a0
[ 2866.381356]  ? kmem_cache_alloc_trace+0x151/0x360
[ 2866.382668]  ? v9fs_show_options+0x690/0x690
[ 2866.383987]  ? kasan_unpoison_shadow+0x33/0x50
[ 2866.385234]  ? __kasan_kmalloc.constprop.0+0xc9/0xd0
[ 2866.386638]  v9fs_mount+0x79/0x8f0
[ 2866.387639]  ? v9fs_write_inode+0x60/0x60
[ 2866.388695]  legacy_get_tree+0x105/0x220
[ 2866.389792]  vfs_get_tree+0x8e/0x300
[ 2866.390850]  path_mount+0x13be/0x20b0
[ 2866.391858]  ? strncpy_from_user+0x9e/0x470
[ 2866.393002]  ? finish_automount+0xa40/0xa40
[ 2866.394154]  ? getname_flags.part.0+0x1dd/0x4f0
[ 2866.395394]  ? _copy_from_user+0xfb/0x1b0
[ 2866.396512]  __x64_sys_mount+0x282/0x300
[ 2866.397633]  ? copy_mnt_ns+0xa00/0xa00
[ 2866.398753]  ? rcu_read_lock_sched_held+0x3e/0x80
[ 2866.400047]  do_syscall_64+0x33/0x40
[ 2866.401046]  entry_SYSCALL_64_after_hwframe+0x61/0xc6
[ 2866.402439] RIP: 0033:0x7f38308e8b19
[ 2866.403461] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 2866.408477] RSP: 002b:00007f382de5e188 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5
[ 2866.410621] RAX: ffffffffffffffda RBX: 00007f38309fbf60 RCX: 00007f38308e8b19
[ 2866.412551] RDX: 00000000200000c0 RSI: 0000000020000040 RDI: 0000000000000000
[ 2866.414505] RBP: 00007f382de5e1d0 R08: 0000000020000280 R09: 0000000000000000
[ 2866.416416] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[ 2866.418259] R13: 00007ffca2bf07df R14: 00007f382de5e300 R15: 0000000000022000
21:28:50 executing program 7:
r0 = perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
io_setup(0x7f, &(0x7f00000002c0)=<r1=>0x0)
io_pgetevents(r1, 0x1, 0x1, &(0x7f0000000000)=[{}], 0x0, 0x0)
io_submit(r1, 0x1, &(0x7f0000000340)=[&(0x7f0000000300)={0x0, 0x0, 0x0, 0x0, 0x0, r0, 0x0}])

21:28:50 executing program 3:
openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x105142, 0x0)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x400}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
pipe(&(0x7f00000001c0)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
mount$9p_fd(0x0, &(0x7f0000000040)='./file1\x00', &(0x7f00000000c0), 0x0, &(0x7f0000000280)={'trans=fd,', {'rfdno', 0x2c, r0}, 0x2c, {}, 0x2c, {[{@nodevmap}]}})
openat(r1, &(0x7f0000000180)='./file1\x00', 0x0, 0x0)

21:28:50 executing program 5:
openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x105142, 0x0)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
pipe(&(0x7f00000001c0)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
mount$9p_fd(0x0, &(0x7f0000000040)='./file1\x00', &(0x7f00000000c0), 0x0, &(0x7f0000000280)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}}) (fail_nth: 87)
openat(0xffffffffffffffff, 0x0, 0x0, 0x0)

21:28:50 executing program 4:
r0 = openat$vcs(0xffffffffffffff9c, &(0x7f0000000040), 0x0, 0x0)
openat$sr(0xffffffffffffff9c, &(0x7f00000035c0), 0x0, 0x0)
openat$sr(0xffffffffffffff9c, &(0x7f00000000c0), 0x224400, 0x0)
openat$rtc(0xffffffffffffff9c, &(0x7f0000000200), 0x0, 0x0)
pipe(&(0x7f00000001c0)={0xffffffffffffffff, <r1=>0xffffffffffffffff})
open(&(0x7f00000016c0)='./cgroup.net/cgroup.procs\x00', 0x46202, 0x188)
pipe(&(0x7f00000001c0)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
mount$9p_fd(0x0, &(0x7f0000000040)='./file1\x00', &(0x7f00000000c0), 0x0, &(0x7f0000000280)={'trans=fd,', {'rfdno', 0x3d, r2}, 0x2c, {'wfdno', 0x3d, r3}, 0x2c, {[{@nodevmap}]}})
fcntl$setstatus(r0, 0x4, 0x0)
fcntl$dupfd(r1, 0x406, r3)
ioctl$RTC_SET_TIME(r3, 0x4024700a, &(0x7f0000000000)={0x31, 0x31, 0x8, 0xd, 0x4, 0x0, 0xffff, 0xde, 0xffffffffffffffff})
pselect6(0x40, &(0x7f0000000180), &(0x7f00000001c0)={0x3fc}, 0x0, 0x0, 0x0)
sendmsg$nl_generic(r1, &(0x7f0000000300)={&(0x7f0000000080)={0x10, 0x0, 0x0, 0x800}, 0xc, &(0x7f0000000240)={&(0x7f0000000100)={0x44, 0x20, 0x2, 0x70bd2d, 0x25dfdbfb, {0x1}, [@generic="ef372b7fb06636392b696db66c73d91ecaff1e78b31e96ee35db8010", @typed={0xc, 0x3c, 0x0, 0x0, @u64=0x3f}, @typed={0x6, 0x6a, 0x0, 0x0, @str='%\x00'}]}, 0x44}, 0x1, 0x0, 0x0, 0x40000}, 0x20000000)

21:28:50 executing program 1:
openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x105142, 0x0)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
pipe(&(0x7f00000001c0))
mount$9p_fd(0x0, &(0x7f0000000040)='./file1\x00', &(0x7f00000000c0), 0x2010, &(0x7f0000000280)={'trans=fd,', {}, 0x2c, {}, 0x2c, {[{@nodevmap}]}})

21:28:50 executing program 6:
r0 = syz_mount_image$vfat(&(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x0, 0x2, &(0x7f0000000180)=[{&(0x7f0000000140)="eb3c906d6b66732e66617400020801000470008400f801", 0x17}, {0x0, 0x0, 0x1000a00}], 0x0, &(0x7f0000000240)=ANY=[])
chdir(&(0x7f0000000040)='./file0\x00')
openat2(r0, &(0x7f0000000100)='./file0\x00', &(0x7f00000001c0)={0x40000, 0x81}, 0x18)
mount$cgroup(0x0, 0x0, &(0x7f0000000400), 0x0, 0x0)
r1 = syz_io_uring_setup(0x22, &(0x7f0000000680)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000180)=<r2=>0x0, &(0x7f0000002a40)=<r3=>0x0)
io_uring_register$IORING_REGISTER_PERSONALITY(r1, 0x9, 0x0, 0x0)
socket$nl_netfilter(0x10, 0x3, 0xc)
syz_io_uring_submit(r2, r3, 0x0, 0x0)
r4 = syz_io_uring_setup(0x22, &(0x7f0000000680)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000180), &(0x7f0000002a40))
r5 = io_uring_register$IORING_REGISTER_PERSONALITY(r4, 0x9, 0x0, 0x0)
syz_io_uring_submit(r2, 0x0, &(0x7f0000000440)=@IORING_OP_FSYNC={0x3, 0x2, 0x0, @fd_index, 0x0, 0x0, 0x0, 0x0, 0x1, {0x0, r5}}, 0x2)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r6 = openat(0xffffffffffffff9c, &(0x7f00000002c0)='./file1\x00', 0x105142, 0x0)
r7 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0)
sendfile(r6, r7, 0x0, 0x100000001)
newfstatat(0xffffffffffffff9c, &(0x7f0000000340)='./file1\x00', &(0x7f0000000380), 0x400)

21:28:50 executing program 2:
r0 = syz_mount_image$vfat(&(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x0, 0x2, &(0x7f0000000180)=[{&(0x7f0000000140)="eb3c906d6b66732e66617400020801000470008400f801", 0x17}, {0x0, 0x0, 0x1000a00}], 0x0, &(0x7f0000000240)=ANY=[])
chdir(&(0x7f0000000040)='./file0\x00')
r1 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x105142, 0x0)
ioctl$FS_IOC_RESVSP(r1, 0x40305828, &(0x7f0000000040)={0x0, 0x0, 0x0, 0x4000006})
ioctl$AUTOFS_IOC_CATATONIC(r0, 0x9362, 0x0)
ioctl$AUTOFS_DEV_IOCTL_REQUESTER(r1, 0xc018937b, &(0x7f0000000000)={{0x1, 0x1, 0x18, <r2=>r1, {0x0, 0xee00}}, './file0\x00'})
r3 = perf_event_open(&(0x7f0000001d80)={0x2, 0x80, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
mmap(&(0x7f0000ffc000/0x2000)=nil, 0x2000, 0x0, 0x13, r3, 0x0)
perf_event_open(&(0x7f0000001d80)={0x2, 0x80, 0x70, 0xb, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x6}, 0x0, 0x0, r3, 0x2)
r4 = perf_event_open(&(0x7f0000001d80)={0x2, 0x80, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
mmap(&(0x7f0000ffc000/0x2000)=nil, 0x2000, 0x0, 0x13, r4, 0x0)
perf_event_open(&(0x7f0000001d80)={0x2, 0x80, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, r4, 0x2)
copy_file_range(r3, &(0x7f00000011c0)=0x5, r4, &(0x7f0000001200)=0x4, 0x10001, 0x0)
openat$nvram(0xffffffffffffff9c, &(0x7f0000001240), 0xc4881, 0x0)
ioctl$BTRFS_IOC_INO_LOOKUP(r2, 0xd0009412, &(0x7f00000001c0)={0x0, 0x1f})

21:28:50 executing program 0:
syz_mount_image$vfat(&(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x0, 0x2, &(0x7f0000000180)=[{&(0x7f0000000140)="eb3c906d6b66732e66617400020801000470008400f801", 0x17}, {0x0, 0x0, 0x1000a00}], 0x0, &(0x7f0000000240)=ANY=[])
chdir(&(0x7f0000000040)='./file0\x00')
mount$cgroup(0x0, 0x0, &(0x7f0000000400), 0x0, 0x0)
r0 = syz_io_uring_setup(0x22, &(0x7f0000000680)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000180)=<r1=>0x0, &(0x7f0000002a40)=<r2=>0x0)
r3 = io_uring_register$IORING_REGISTER_PERSONALITY(r0, 0x9, 0x0, 0x0)
r4 = socket$nl_netfilter(0x10, 0x3, 0xc)
syz_io_uring_submit(r1, r2, &(0x7f0000000400)=@IORING_OP_WRITEV={0x2, 0x0, 0x0, @fd=r4, 0x0, 0x0, 0x0, 0x0, 0x0, {0x0, r3}}, 0x0)
r5 = syz_io_uring_setup(0x22, &(0x7f0000000680)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000180), &(0x7f0000002a40))
r6 = io_uring_register$IORING_REGISTER_PERSONALITY(r5, 0x9, 0x0, 0x0)
syz_io_uring_submit(r1, 0x0, &(0x7f0000000440)=@IORING_OP_FSYNC={0x3, 0x2, 0x0, @fd_index=0x9, 0x0, 0x0, 0x0, 0x0, 0x1, {0x0, r6}}, 0x2)
perf_event_open(&(0x7f0000001d80)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r7 = openat(0xffffffffffffff9c, &(0x7f00000002c0)='./file1\x00', 0x105142, 0x0)
r8 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0)
mount(&(0x7f0000000200)=ANY=[@ANYBLOB="2f6f651317868af191bdb2"], &(0x7f0000000240)='./file0\x00', &(0x7f0000000280)='nfsd\x00', 0x800000, &(0x7f0000000300)='cgroup\x00')
sendfile(r7, r8, 0x0, 0x100000001)
newfstatat(0xffffffffffffff9c, &(0x7f0000000340)='./file1\x00', &(0x7f0000000380), 0x400)

[ 2884.083423] 9pnet: Insufficient options for proto=fd
[ 2884.109607] 9pnet: Insufficient options for proto=fd
[ 2884.115040] FAULT_INJECTION: forcing a failure.
[ 2884.115040] name failslab, interval 1, probability 0, space 0, times 0
[ 2884.116550] CPU: 0 PID: 27525 Comm: syz-executor.5 Not tainted 5.10.172 #1
[ 2884.117460] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 2884.118518] Call Trace:
[ 2884.118922]  dump_stack+0x107/0x167
[ 2884.119416]  should_fail.cold+0x5/0xa
[ 2884.119924]  ? __kernfs_new_node+0xd4/0x850
[ 2884.120511]  should_failslab+0x5/0x20
[ 2884.121021]  kmem_cache_alloc+0x5b/0x360
[ 2884.121580]  __kernfs_new_node+0xd4/0x850
[ 2884.122149]  ? kernfs_dop_revalidate+0x3a0/0x3a0
[ 2884.122798]  ? __mutex_unlock_slowpath+0xe1/0x600
[ 2884.123433]  ? wait_for_completion_io+0x270/0x270
[ 2884.124060]  ? kernfs_next_descendant_post+0x1a7/0x2a0
[ 2884.124763]  kernfs_new_node+0x93/0x120
[ 2884.125300]  __kernfs_create_file+0x51/0x350
[ 2884.125891]  sysfs_add_file_mode_ns+0x221/0x560
[ 2884.126546]  internal_create_group+0x324/0xb30
[ 2884.127196]  ? sysfs_remove_group+0x170/0x170
[ 2884.127756]  ? kernfs_name_hash+0xe7/0x110
[ 2884.128273]  ? kernfs_find_ns+0x256/0x380
[ 2884.128780]  sysfs_slab_add+0x188/0x200
[ 2884.129266]  __kmem_cache_create+0x3db/0x520
[ 2884.129811]  kmem_cache_create_usercopy+0x1db/0x2f0
[ 2884.130431]  p9_client_create+0xc2b/0x1090
[ 2884.131044]  ? p9_client_flush+0x430/0x430
[ 2884.131610]  ? lockdep_init_map_type+0x2c7/0x780
[ 2884.132240]  ? rcu_read_lock_sched_held+0x3e/0x80
[ 2884.132876]  ? __raw_spin_lock_init+0x36/0x110
[ 2884.133493]  v9fs_session_init+0x1dd/0x16a0
[ 2884.134079]  ? kmem_cache_alloc_trace+0x151/0x360
[ 2884.134792]  ? v9fs_show_options+0x690/0x690
[ 2884.135386]  ? kasan_unpoison_shadow+0x33/0x50
[ 2884.135990]  ? __kasan_kmalloc.constprop.0+0xc9/0xd0
[ 2884.136672]  v9fs_mount+0x79/0x8f0
[ 2884.137154]  ? v9fs_write_inode+0x60/0x60
[ 2884.137707]  legacy_get_tree+0x105/0x220
[ 2884.138255]  vfs_get_tree+0x8e/0x300
[ 2884.138783]  path_mount+0x13be/0x20b0
[ 2884.139296]  ? strncpy_from_user+0x9e/0x470
[ 2884.139867]  ? finish_automount+0xa40/0xa40
[ 2884.140445]  ? getname_flags.part.0+0x1dd/0x4f0
[ 2884.141055]  ? _copy_from_user+0xfb/0x1b0
[ 2884.141617]  __x64_sys_mount+0x282/0x300
[ 2884.142158]  ? copy_mnt_ns+0xa00/0xa00
[ 2884.142712]  ? rcu_read_lock_sched_held+0x3e/0x80
[ 2884.143357]  do_syscall_64+0x33/0x40
[ 2884.143855]  entry_SYSCALL_64_after_hwframe+0x61/0xc6
[ 2884.144531] RIP: 0033:0x7f38308e8b19
[ 2884.145029] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 2884.147439] RSP: 002b:00007f382de5e188 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5
[ 2884.148445] RAX: ffffffffffffffda RBX: 00007f38309fbf60 RCX: 00007f38308e8b19
[ 2884.149390] RDX: 00000000200000c0 RSI: 0000000020000040 RDI: 0000000000000000
[ 2884.150328] RBP: 00007f382de5e1d0 R08: 0000000020000280 R09: 0000000000000000
[ 2884.151285] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[ 2884.152226] R13: 00007ffca2bf07df R14: 00007f382de5e300 R15: 0000000000022000
[ 2884.166457] kmem_cache_create(9p-fcall-cache) failed with error -12
[ 2884.169557] CPU: 1 PID: 27525 Comm: syz-executor.5 Not tainted 5.10.172 #1
[ 2884.170449] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 2884.171535] Call Trace:
[ 2884.171883]  dump_stack+0x107/0x167
[ 2884.172380]  kmem_cache_create_usercopy.cold+0x17/0x65
[ 2884.173041]  p9_client_create+0xc2b/0x1090
[ 2884.173568]  ? p9_client_flush+0x430/0x430
[ 2884.174105]  ? lockdep_init_map_type+0x2c7/0x780
[ 2884.174804]  ? rcu_read_lock_sched_held+0x3e/0x80
[ 2884.175449]  ? __raw_spin_lock_init+0x36/0x110
[ 2884.176035]  v9fs_session_init+0x1dd/0x16a0
[ 2884.176585]  ? kmem_cache_alloc_trace+0x151/0x360
[ 2884.177192]  ? v9fs_show_options+0x690/0x690
[ 2884.177778]  ? kasan_unpoison_shadow+0x33/0x50
[ 2884.178362]  ? __kasan_kmalloc.constprop.0+0xc9/0xd0
[ 2884.179038]  v9fs_mount+0x79/0x8f0
[ 2884.179498]  ? v9fs_write_inode+0x60/0x60
[ 2884.180025]  legacy_get_tree+0x105/0x220
[ 2884.180562]  vfs_get_tree+0x8e/0x300
[ 2884.181042]  path_mount+0x13be/0x20b0
[ 2884.181548]  ? strncpy_from_user+0x9e/0x470
[ 2884.182088]  ? finish_automount+0xa40/0xa40
[ 2884.186718]  ? getname_flags.part.0+0x1dd/0x4f0
[ 2884.187320]  ? _copy_from_user+0xfb/0x1b0
[ 2884.187865]  __x64_sys_mount+0x282/0x300
[ 2884.188407]  ? copy_mnt_ns+0xa00/0xa00
[ 2884.188917]  ? rcu_read_lock_sched_held+0x3e/0x80
[ 2884.189569]  do_syscall_64+0x33/0x40
[ 2884.190071]  entry_SYSCALL_64_after_hwframe+0x61/0xc6
[ 2884.190800] RIP: 0033:0x7f38308e8b19
[ 2884.191284] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 2884.193600] RSP: 002b:00007f382de5e188 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5
[ 2884.194571] RAX: ffffffffffffffda RBX: 00007f38309fbf60 RCX: 00007f38308e8b19
[ 2884.195505] RDX: 00000000200000c0 RSI: 0000000020000040 RDI: 0000000000000000
[ 2884.196413] RBP: 00007f382de5e1d0 R08: 0000000020000280 R09: 0000000000000000
[ 2884.197326] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[ 2884.198225] R13: 00007ffca2bf07df R14: 00007f382de5e300 R15: 0000000000022000
21:28:50 executing program 0:
syz_mount_image$vfat(&(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x0, 0x2, &(0x7f0000000180)=[{&(0x7f0000000140)="eb3c906d6b66732e66617400020801000470008400f801", 0x17}, {0x0, 0x0, 0x1000a00}], 0x0, &(0x7f0000000240)=ANY=[])
chdir(&(0x7f0000000040)='./file0\x00')
mount$cgroup(0x0, 0x0, &(0x7f0000000400), 0x0, 0x0)
r0 = syz_io_uring_setup(0x22, &(0x7f0000000680)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000180)=<r1=>0x0, &(0x7f0000002a40)=<r2=>0x0)
r3 = io_uring_register$IORING_REGISTER_PERSONALITY(r0, 0x9, 0x0, 0x0)
r4 = socket$nl_netfilter(0x10, 0x3, 0xc)
syz_io_uring_submit(r1, r2, &(0x7f0000000400)=@IORING_OP_WRITEV={0x2, 0x0, 0x0, @fd=r4, 0x0, 0x0, 0x0, 0x0, 0x0, {0x0, r3}}, 0x0)
r5 = syz_io_uring_setup(0x22, &(0x7f0000000680)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000180), &(0x7f0000002a40))
r6 = io_uring_register$IORING_REGISTER_PERSONALITY(r5, 0x9, 0x0, 0x0)
syz_io_uring_submit(r1, 0x0, &(0x7f0000000440)=@IORING_OP_FSYNC={0x3, 0x2, 0x0, @fd_index=0x9, 0x0, 0x0, 0x0, 0x0, 0x1, {0x0, r6}}, 0x2)
perf_event_open(&(0x7f0000001d80)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r7 = openat(0xffffffffffffff9c, &(0x7f00000002c0)='./file1\x00', 0x105142, 0x0)
r8 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0)
mount(&(0x7f0000000200)=ANY=[@ANYBLOB="2f6f651317868af191bdb2"], &(0x7f0000000240)='./file0\x00', &(0x7f0000000280)='nfsd\x00', 0x800000, &(0x7f0000000300)='cgroup\x00')
sendfile(r7, r8, 0x0, 0x100000001)
newfstatat(0xffffffffffffff9c, &(0x7f0000000340)='./file1\x00', &(0x7f0000000380), 0x400)

21:28:50 executing program 4:
r0 = openat$vcs(0xffffffffffffff9c, &(0x7f0000000040), 0x0, 0x0)
openat$rtc(0xffffffffffffff9c, &(0x7f0000000100), 0x505682, 0x0)
r1 = openat$sr(0xffffffffffffff9c, &(0x7f00000035c0), 0x0, 0x0)
openat$sr(0xffffffffffffff9c, &(0x7f00000000c0), 0x224400, 0x0)
openat(r1, &(0x7f0000000140)='./cgroup.net/cgroup.procs\x00', 0x2c3, 0x180)
dup2(r1, r0)
r2 = openat$rtc(0xffffffffffffff9c, &(0x7f0000000200), 0x0, 0x0)
pipe(&(0x7f00000001c0))
fallocate(r2, 0x4, 0x9a, 0x0)
open(&(0x7f00000016c0)='./cgroup.net/cgroup.procs\x00', 0x0, 0x0)
pselect6(0x40, &(0x7f0000000180), &(0x7f00000001c0)={0x3fc}, 0x0, 0x0, 0x0)

21:28:50 executing program 3:
openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x105142, 0x0)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x400}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
pipe(&(0x7f00000001c0)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
mount$9p_fd(0x0, &(0x7f0000000040)='./file1\x00', &(0x7f00000000c0), 0x0, &(0x7f0000000280)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x22, {}, 0x2c, {[{@nodevmap}]}})
openat(r1, &(0x7f0000000180)='./file1\x00', 0x0, 0x0)

[ 2884.395279] 9pnet: Insufficient options for proto=fd
21:28:50 executing program 5:
openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x105142, 0x0)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
pipe(&(0x7f00000001c0)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
mount$9p_fd(0x0, &(0x7f0000000040)='./file1\x00', &(0x7f00000000c0), 0x0, &(0x7f0000000280)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}}) (fail_nth: 88)
openat(0xffffffffffffffff, 0x0, 0x0, 0x0)

[ 2884.445589] FAULT_INJECTION: forcing a failure.
[ 2884.445589] name failslab, interval 1, probability 0, space 0, times 0
[ 2884.451317] CPU: 1 PID: 27652 Comm: syz-executor.5 Not tainted 5.10.172 #1
[ 2884.451338] 9pnet: Insufficient options for proto=fd
[ 2884.452202] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 2884.452209] Call Trace:
[ 2884.452232]  dump_stack+0x107/0x167
[ 2884.452252]  should_fail.cold+0x5/0xa
[ 2884.452282]  ? create_object.isra.0+0x3a/0xa20
[ 2884.455845]  should_failslab+0x5/0x20
[ 2884.456341]  kmem_cache_alloc+0x5b/0x360
[ 2884.456866]  create_object.isra.0+0x3a/0xa20
[ 2884.457430]  ? __kasan_kmalloc.constprop.0+0xc9/0xd0
[ 2884.458086]  kmem_cache_alloc+0x159/0x360
[ 2884.458637]  __kernfs_new_node+0xd4/0x850
[ 2884.459173]  ? kernfs_dop_revalidate+0x3a0/0x3a0
[ 2884.459794]  ? __mutex_unlock_slowpath+0xe1/0x600
[ 2884.460410]  ? wait_for_completion_io+0x270/0x270
[ 2884.461076]  ? kernfs_next_descendant_post+0x1a7/0x2a0
[ 2884.461754]  kernfs_new_node+0x93/0x120
[ 2884.462274]  __kernfs_create_file+0x51/0x350
[ 2884.462866]  sysfs_add_file_mode_ns+0x221/0x560
[ 2884.463470]  internal_create_group+0x324/0xb30
21:28:50 executing program 2:
syz_mount_image$vfat(&(0x7f0000000180), &(0x7f00000000c0)='./file0\x00', 0x0, 0x5, &(0x7f0000000300)=[{&(0x7f0000000140)="eb3c906d6b66732e4cb00aaa8a86756661740002080100", 0x17}, {0x0, 0x0, 0x1000a00}, {&(0x7f0000000000)="2b99a4a1985eb8e0ad07ab28514ea6a085", 0x11, 0x8000}, {&(0x7f00000001c0)="35e766fa59f02e072d7d978794ecaf4066110b92b407f78d0fde45ae5d34b68c79303d18696ef0fac1a9f107332ea71a056cde012c7dc0adef0b472c2eee34ec1e3b9e7aa24ad3abd1d357436011dd4801d17449e87b85bb0b476708a9a0752db5c5232eadff4779a2b781a78929ac82f02c48469ce76606395bcba1e4aafd0c29f467db8c1517364b021fcc83860f4f", 0x90, 0x10001}, {&(0x7f0000000280)="6764cac0095a6d0b34f2654d1c9c3c60c2ea04b940ad55581a7ea470718a0292dd0f3f299227a965f6cb7b56b683a9d7d50b8e7c01b602c5eb6722eeb71349d001b3896037bc665c3025", 0x4a, 0x7}], 0x0, &(0x7f0000000240)=ANY=[])
syz_mount_image$tmpfs(&(0x7f0000000380), &(0x7f00000003c0)='./file1\x00', 0x0, 0x5, &(0x7f00000025c0)=[{&(0x7f0000000400)="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", 0x1000, 0x81}, {&(0x7f0000001400)='I', 0x1, 0x3}, {&(0x7f0000001440)="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", 0x1000, 0x100000000}, {&(0x7f0000002440)="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", 0xfd, 0x7c44}, {&(0x7f0000002540)="098728f99e1bd001ca2b3c3829dd842c679d03a604e22e4cf481778509cd220c3c32b86ee2336506ec1cd625ede21ccb1ab5501536fb3aa27201d4a464802b2796f624ff5e321db9e29a01fc033bf3636b7634c0542798", 0x57, 0x392}], 0x810000, &(0x7f0000002640)={[{@mpol={'mpol', 0x3d, {'default', '=static', @val={0x3a, [0x35, 0x39, 0x2d, 0x2c, 0x2d]}}}}], [{@measure}]})
chdir(&(0x7f0000000040)='./file0\x00')
r0 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x105142, 0x0)
ioctl$FS_IOC_RESVSP(r0, 0x40305828, &(0x7f0000000040)={0x0, 0x0, 0x0, 0x4000006})
openat$procfs(0xffffffffffffff9c, &(0x7f0000000080)='/proc/schedstat\x00', 0x0, 0x0)

[ 2884.467122]  ? sysfs_remove_group+0x170/0x170
[ 2884.475025]  sysfs_slab_add+0x188/0x200
[ 2884.483176]  __kmem_cache_create+0x3db/0x520
[ 2884.483750]  kmem_cache_create_usercopy+0x1db/0x2f0
[ 2884.484391]  p9_client_create+0xc2b/0x1090
[ 2884.484934]  ? p9_client_flush+0x430/0x430
[ 2884.485473]  ? lockdep_init_map_type+0x2c7/0x780
[ 2884.486078]  ? rcu_read_lock_sched_held+0x3e/0x80
[ 2884.486742]  ? __raw_spin_lock_init+0x36/0x110
[ 2884.487325]  v9fs_session_init+0x1dd/0x16a0
[ 2884.487868]  ? irqentry_enter+0x26/0x60
[ 2884.488382]  ? asm_sysvec_apic_timer_interrupt+0x12/0x20
[ 2884.494952]  ? trace_hardirqs_on+0x5b/0x180
[ 2884.495595]  ? v9fs_show_options+0x690/0x690
[ 2884.496294]  ? kasan_unpoison_shadow+0x33/0x50
[ 2884.496970]  ? __kasan_kmalloc.constprop.0+0xc9/0xd0
[ 2884.497714]  v9fs_mount+0x79/0x8f0
[ 2884.498247]  ? v9fs_write_inode+0x60/0x60
[ 2884.498850]  legacy_get_tree+0x105/0x220
[ 2884.499372]  vfs_get_tree+0x8e/0x300
[ 2884.499846]  path_mount+0x13be/0x20b0
[ 2884.500341]  ? strncpy_from_user+0x9e/0x470
[ 2884.500890]  ? finish_automount+0xa40/0xa40
[ 2884.501441]  ? getname_flags.part.0+0x1dd/0x4f0
[ 2884.502039]  ? _copy_from_user+0xfb/0x1b0
[ 2884.502578]  __x64_sys_mount+0x282/0x300
[ 2884.503146]  ? copy_mnt_ns+0xa00/0xa00
[ 2884.503660]  ? rcu_read_lock_sched_held+0x3e/0x80
[ 2884.504293]  do_syscall_64+0x33/0x40
[ 2884.504781]  entry_SYSCALL_64_after_hwframe+0x61/0xc6
[ 2884.505446] RIP: 0033:0x7f38308e8b19
[ 2884.505936] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 2884.512355] RSP: 002b:00007f382de5e188 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5
[ 2884.513355] RAX: ffffffffffffffda RBX: 00007f38309fbf60 RCX: 00007f38308e8b19
[ 2884.514293] RDX: 00000000200000c0 RSI: 0000000020000040 RDI: 0000000000000000
[ 2884.519273] RBP: 00007f382de5e1d0 R08: 0000000020000280 R09: 0000000000000000
[ 2884.520213] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[ 2884.521142] R13: 00007ffca2bf07df R14: 00007f382de5e300 R15: 0000000000022000
21:28:51 executing program 1:
openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x105142, 0x0)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
pipe(&(0x7f00000001c0))
mount$9p_fd(0x0, &(0x7f0000000040)='./file1\x00', &(0x7f00000000c0), 0xedc0, &(0x7f0000000280)={'trans=fd,', {}, 0x2c, {}, 0x2c, {[{@nodevmap}]}})

21:28:51 executing program 3:
openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x105142, 0x0)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x400}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
pipe(&(0x7f00000001c0)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
mount$9p_fd(0x0, &(0x7f0000000040)='./file1\x00', &(0x7f00000000c0), 0x0, &(0x7f0000000280)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x22}, 0x2c, {[{@nodevmap}]}})
openat(r1, &(0x7f0000000180)='./file1\x00', 0x0, 0x0)

[ 2884.593093] FAT-fs (loop2): Unrecognized mount option ")�gی6K̃�O" or missing value
[ 2884.621124] 9pnet: Insufficient options for proto=fd
[ 2884.632157] tmpfs: Bad value for 'mpol'
[ 2884.649505] 9pnet: Insufficient options for proto=fd
21:28:51 executing program 4:
pipe(&(0x7f00000001c0)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
mount$9p_fd(0x0, &(0x7f0000000040)='./file1\x00', &(0x7f00000000c0), 0x0, &(0x7f0000000280)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}, 0x2c, {[{@nodevmap}]}})
r2 = perf_event_open(&(0x7f0000001d80)={0x2, 0x80, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
mmap(&(0x7f0000ffc000/0x2000)=nil, 0x2000, 0x0, 0x13, r2, 0x0)
perf_event_open(&(0x7f0000001d80)={0x2, 0x80, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, r2, 0x2)
ioctl$AUTOFS_DEV_IOCTL_ASKUMOUNT(r1, 0xc018937d, &(0x7f0000000000)={{0x1, 0x1, 0x18, r2, {0xffffff00}}, './file1\x00'})
r3 = ioctl$LOOP_CTL_GET_FREE(r0, 0x4c82)
pipe(&(0x7f00000001c0)={<r4=>0xffffffffffffffff, <r5=>0xffffffffffffffff})
mount$9p_fd(0x0, &(0x7f0000000040)='./file1\x00', &(0x7f00000000c0), 0x0, &(0x7f0000000280)={'trans=fd,', {'rfdno', 0x3d, r4}, 0x2c, {'wfdno', 0x3d, r5}, 0x2c, {[{@nodevmap}]}})
ioctl$LOOP_CTL_ADD(r4, 0x4c80, r3)
openat$vcs(0xffffffffffffff9c, &(0x7f0000000040), 0x0, 0x0)
openat$sr(0xffffffffffffff9c, &(0x7f00000035c0), 0x0, 0x0)
openat$sr(0xffffffffffffff9c, &(0x7f00000000c0), 0x224400, 0x0)
openat$rtc(0xffffffffffffff9c, &(0x7f0000000200), 0x0, 0x0)
pipe(&(0x7f0000000080))
open(&(0x7f00000016c0)='./cgroup.net/cgroup.procs\x00', 0x0, 0x0)
pselect6(0x40, &(0x7f0000000180), &(0x7f00000001c0)={0x3fc}, 0x0, 0x0, 0x0)

[ 2884.730588] FAT-fs (loop2): Unrecognized mount option ")�gی6K̃�O" or missing value
[ 2884.765572] tmpfs: Bad value for 'mpol'
21:29:09 executing program 3:
openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x105142, 0x0)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x400}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
pipe(&(0x7f00000001c0)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
mount$9p_fd(0x0, &(0x7f0000000040)='./file1\x00', &(0x7f00000000c0), 0x0, &(0x7f0000000280)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x25}, 0x2c, {[{@nodevmap}]}})
openat(r1, &(0x7f0000000180)='./file1\x00', 0x0, 0x0)

21:29:09 executing program 1:
openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x105142, 0x0)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
pipe(&(0x7f00000001c0))
mount$9p_fd(0x0, &(0x7f0000000040)='./file1\x00', &(0x7f00000000c0), 0x80000, &(0x7f0000000280)={'trans=fd,', {}, 0x2c, {}, 0x2c, {[{@nodevmap}]}})

21:29:09 executing program 5:
openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x105142, 0x0)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
pipe(&(0x7f00000001c0)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
mount$9p_fd(0x0, &(0x7f0000000040)='./file1\x00', &(0x7f00000000c0), 0x0, &(0x7f0000000280)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}}) (fail_nth: 89)
openat(0xffffffffffffffff, 0x0, 0x0, 0x0)

21:29:09 executing program 7:
r0 = perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
io_setup(0x7f, &(0x7f00000002c0)=<r1=>0x0)
io_pgetevents(r1, 0x1, 0x1, &(0x7f0000000000)=[{}], 0x0, 0x0)
io_submit(r1, 0x1, &(0x7f0000000340)=[&(0x7f0000000300)={0x0, 0x0, 0x0, 0x0, 0x0, r0, 0x0}])

[ 2902.825548] 9pnet: Insufficient options for proto=fd
21:29:09 executing program 0:
syz_mount_image$vfat(&(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x0, 0x2, &(0x7f0000000180)=[{&(0x7f0000000140)="eb3c906d6b66732e66617400020801000470008400f801", 0x17}, {0x0, 0x0, 0x1000a00}], 0x0, &(0x7f0000000240)=ANY=[])
chdir(&(0x7f0000000040)='./file0\x00')
mount$cgroup(0x0, 0x0, &(0x7f0000000400), 0x0, 0x0)
r0 = syz_io_uring_setup(0x22, &(0x7f0000000680)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000180)=<r1=>0x0, &(0x7f0000002a40)=<r2=>0x0)
r3 = io_uring_register$IORING_REGISTER_PERSONALITY(r0, 0x9, 0x0, 0x0)
r4 = socket$nl_netfilter(0x10, 0x3, 0xc)
syz_io_uring_submit(r1, r2, &(0x7f0000000400)=@IORING_OP_WRITEV={0x2, 0x0, 0x0, @fd=r4, 0x0, 0x0, 0x0, 0x0, 0x0, {0x0, r3}}, 0x0)
r5 = syz_io_uring_setup(0x22, &(0x7f0000000680)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000180), &(0x7f0000002a40))
r6 = io_uring_register$IORING_REGISTER_PERSONALITY(r5, 0x9, 0x0, 0x0)
syz_io_uring_submit(r1, 0x0, &(0x7f0000000440)=@IORING_OP_FSYNC={0x3, 0x2, 0x0, @fd_index=0x9, 0x0, 0x0, 0x0, 0x0, 0x1, {0x0, r6}}, 0x2)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r7 = openat(0xffffffffffffff9c, &(0x7f00000002c0)='./file1\x00', 0x105142, 0x0)
r8 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0)
mount(&(0x7f0000000200)=ANY=[@ANYBLOB="2f6f651317868af191bdb2"], &(0x7f0000000240)='./file0\x00', &(0x7f0000000280)='nfsd\x00', 0x800000, &(0x7f0000000300)='cgroup\x00')
sendfile(r7, r8, 0x0, 0x100000001)
newfstatat(0xffffffffffffff9c, &(0x7f0000000340)='./file1\x00', &(0x7f0000000380), 0x400)

21:29:09 executing program 6:
r0 = syz_mount_image$vfat(&(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x0, 0x2, &(0x7f0000000180)=[{&(0x7f0000000140)="eb3c906d6b66732e66617400020801000470008400f801", 0x17}, {0x0, 0x0, 0x1000a00}], 0x0, &(0x7f0000000240)=ANY=[])
chdir(&(0x7f0000000040)='./file0\x00')
openat2(r0, &(0x7f0000000100)='./file0\x00', &(0x7f00000001c0)={0x40000, 0x81}, 0x18)
mount$cgroup(0x0, 0x0, &(0x7f0000000400), 0x0, 0x0)
r1 = syz_io_uring_setup(0x22, &(0x7f0000000680)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000180)=<r2=>0x0, &(0x7f0000002a40)=<r3=>0x0)
io_uring_register$IORING_REGISTER_PERSONALITY(r1, 0x9, 0x0, 0x0)
socket$nl_netfilter(0x10, 0x3, 0xc)
syz_io_uring_submit(r2, r3, 0x0, 0x0)
r4 = syz_io_uring_setup(0x22, &(0x7f0000000680)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000180), &(0x7f0000002a40))
r5 = io_uring_register$IORING_REGISTER_PERSONALITY(r4, 0x9, 0x0, 0x0)
syz_io_uring_submit(r2, 0x0, &(0x7f0000000440)=@IORING_OP_FSYNC={0x3, 0x2, 0x0, @fd_index, 0x0, 0x0, 0x0, 0x0, 0x1, {0x0, r5}}, 0x2)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r6 = openat(0xffffffffffffff9c, &(0x7f00000002c0)='./file1\x00', 0x105142, 0x0)
r7 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0)
sendfile(r6, r7, 0x0, 0x100000001)
newfstatat(0xffffffffffffff9c, &(0x7f0000000340)='./file1\x00', &(0x7f0000000380), 0x400)

21:29:09 executing program 4:
r0 = openat$vcs(0xffffffffffffff9c, &(0x7f0000000040), 0x0, 0x0)
r1 = openat$sr(0xffffffffffffff9c, &(0x7f00000035c0), 0x0, 0x0)
ioctl$FS_IOC_GETFSMAP(r1, 0xc0c0583b, &(0x7f0000000240)={0x0, 0x0, 0x3, 0x0, '\x00', [{0xf8000000, 0x9, 0x80000000, 0x8, 0x3, 0x5}, {0xdd4, 0xfffffff9, 0x200, 0x431e, 0x7cdf, 0x7fffffff}], ['\x00', '\x00', '\x00']})
openat$sr(0xffffffffffffff9c, &(0x7f00000000c0), 0x224400, 0x0)
openat$rtc(0xffffffffffffff9c, &(0x7f0000000200), 0x0, 0x0)
pipe(&(0x7f00000001c0)={0xffffffffffffffff, <r2=>0xffffffffffffffff})
r3 = syz_open_dev$vcsu(&(0x7f0000000080), 0x3, 0x400900)
sendmsg$DEVLINK_CMD_TRAP_GROUP_GET(r3, &(0x7f0000000580)={&(0x7f0000000100)={0x10, 0x0, 0x0, 0x8000000}, 0xc, &(0x7f0000000140)={&(0x7f00000005c0)={0x184, 0x0, 0x100, 0x70bd2c, 0x25dfdbfd, {}, [{@nsim={{}, {0x0, 0x2, {'netdevsim', 0x0}}}, {0xd}}, {@pci={{0x8}, {0x11}}, {0xd}}, {@pci, {0xd}}, {@pci={{0x8}, {0x11}}, {0xd}}, {@nsim={{0xe}, {0xf, 0x2, {'netdevsim', 0x0}}}, {0xd}}, {@nsim={{0xe}, {0xf, 0x2, {'netdevsim', 0x0}}}, {0xd}}, {@pci, {0xd}}, {@pci={{0x8}, {0x11}}, {0xffffffffffffff02}}]}, 0x184}, 0x1, 0x0, 0x0, 0x200400d4}, 0x20040010)
r4 = open(&(0x7f00000016c0)='./cgroup.net/cgroup.procs\x00', 0x0, 0x21)
pselect6(0x40, &(0x7f0000000180)={0x10000, 0x1}, &(0x7f00000001c0)={0x3fc, 0xffffffffffffffff}, 0x0, 0x0, 0x0)
sendfile(r2, r0, &(0x7f0000000000)=0x5e4d, 0xfffffffffffffffb)
ioctl$RTC_AIE_ON(r4, 0x7001)

21:29:09 executing program 2:
syz_mount_image$vfat(&(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x0, 0x2, &(0x7f0000000180)=[{&(0x7f0000000140)="eb3c906d6b66732e66617400020801000470008400f801", 0x17}, {0x0, 0x0, 0x1000a00}], 0x0, &(0x7f0000000240)=ANY=[])
chdir(&(0x7f0000000040)='./file0\x00')
pipe(&(0x7f00000001c0)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
mount$9p_fd(0x0, &(0x7f0000000040)='./file1\x00', &(0x7f00000000c0), 0x0, &(0x7f0000000280)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}, 0x2c, {[{@nodevmap}]}})
faccessat2(r0, &(0x7f0000000000)='./file1\x00', 0x110, 0x50fb96662ae9ebc0)
r2 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x105142, 0x0)
ioctl$FS_IOC_RESVSP(r2, 0x40305828, &(0x7f0000000040)={0x0, 0x0, 0x0, 0x4000006})

[ 2902.846533] 9pnet: Insufficient options for proto=fd
[ 2902.852375] FAULT_INJECTION: forcing a failure.
[ 2902.852375] name failslab, interval 1, probability 0, space 0, times 0
[ 2902.853916] CPU: 0 PID: 27789 Comm: syz-executor.5 Not tainted 5.10.172 #1
[ 2902.854769] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 2902.855828] Call Trace:
[ 2902.856169]  dump_stack+0x107/0x167
[ 2902.856630]  should_fail.cold+0x5/0xa
[ 2902.857115]  ? __kernfs_new_node+0xd4/0x850
[ 2902.857702]  should_failslab+0x5/0x20
[ 2902.858309]  kmem_cache_alloc+0x5b/0x360
[ 2902.858988]  __kernfs_new_node+0xd4/0x850
[ 2902.859513]  ? kernfs_dop_revalidate+0x3a0/0x3a0
[ 2902.860108]  ? __mutex_unlock_slowpath+0xe1/0x600
[ 2902.860726]  ? wait_for_completion_io+0x270/0x270
[ 2902.861341]  ? kernfs_next_descendant_post+0x1a7/0x2a0
[ 2902.862075]  kernfs_new_node+0x93/0x120
[ 2902.862588]  __kernfs_create_file+0x51/0x350
[ 2902.863194]  sysfs_add_file_mode_ns+0x221/0x560
[ 2902.863795]  internal_create_group+0x324/0xb30
[ 2902.864389]  ? sysfs_remove_group+0x170/0x170
[ 2902.864971]  ? kernfs_find_ns+0x256/0x380
[ 2902.865521]  sysfs_slab_add+0x188/0x200
[ 2902.866042]  __kmem_cache_create+0x3db/0x520
[ 2902.866657]  kmem_cache_create_usercopy+0x1db/0x2f0
[ 2902.867326]  p9_client_create+0xc2b/0x1090
[ 2902.867889]  ? p9_client_flush+0x430/0x430
[ 2902.868430]  ? lockdep_init_map_type+0x2c7/0x780
[ 2902.869037]  ? rcu_read_lock_sched_held+0x3e/0x80
[ 2902.869663]  ? __raw_spin_lock_init+0x36/0x110
[ 2902.870252]  v9fs_session_init+0x1dd/0x16a0
[ 2902.870821]  ? kmem_cache_alloc_trace+0x151/0x360
[ 2902.875580]  ? v9fs_show_options+0x690/0x690
[ 2902.876173]  ? kasan_unpoison_shadow+0x33/0x50
[ 2902.876748]  ? __kasan_kmalloc.constprop.0+0xc9/0xd0
[ 2902.877414]  v9fs_mount+0x79/0x8f0
[ 2902.877893]  ? v9fs_write_inode+0x60/0x60
[ 2902.878446]  legacy_get_tree+0x105/0x220
[ 2902.879001]  vfs_get_tree+0x8e/0x300
[ 2902.879476]  path_mount+0x13be/0x20b0
[ 2902.879969]  ? strncpy_from_user+0x9e/0x470
[ 2902.880513]  ? finish_automount+0xa40/0xa40
[ 2902.881071]  ? getname_flags.part.0+0x1dd/0x4f0
[ 2902.881655]  ? _copy_from_user+0xfb/0x1b0
[ 2902.882186]  __x64_sys_mount+0x282/0x300
[ 2902.882718]  ? copy_mnt_ns+0xa00/0xa00
[ 2902.883256]  ? rcu_read_lock_sched_held+0x3e/0x80
[ 2902.883890]  do_syscall_64+0x33/0x40
[ 2902.884368]  entry_SYSCALL_64_after_hwframe+0x61/0xc6
[ 2902.885032] RIP: 0033:0x7f38308e8b19
[ 2902.885525] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 2902.887873] RSP: 002b:00007f382de5e188 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5
[ 2902.888828] RAX: ffffffffffffffda RBX: 00007f38309fbf60 RCX: 00007f38308e8b19
[ 2902.889675] RDX: 00000000200000c0 RSI: 0000000020000040 RDI: 0000000000000000
[ 2902.890574] RBP: 00007f382de5e1d0 R08: 0000000020000280 R09: 0000000000000000
[ 2902.891518] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[ 2902.891526] R13: 00007ffca2bf07df R14: 00007f382de5e300 R15: 0000000000022000
21:29:09 executing program 3:
openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x105142, 0x0)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x400}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
pipe(&(0x7f00000001c0)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
mount$9p_fd(0x0, &(0x7f0000000040)='./file1\x00', &(0x7f00000000c0), 0x0, &(0x7f0000000280)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x2c}, 0x2c, {[{@nodevmap}]}})
openat(r1, &(0x7f0000000180)='./file1\x00', 0x0, 0x0)

[ 2902.898712] kmem_cache_create(9p-fcall-cache) failed with error -12
[ 2902.899867] CPU: 0 PID: 27789 Comm: syz-executor.5 Not tainted 5.10.172 #1
[ 2902.906525] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 2902.907630] Call Trace:
[ 2902.907972]  dump_stack+0x107/0x167
[ 2902.908462]  kmem_cache_create_usercopy.cold+0x17/0x65
[ 2902.909149]  p9_client_create+0xc2b/0x1090
[ 2902.909727]  ? p9_client_flush+0x430/0x430
[ 2902.910279]  ? lockdep_init_map_type+0x2c7/0x780
[ 2902.910924]  ? rcu_read_lock_sched_held+0x3e/0x80
[ 2902.911560]  ? __raw_spin_lock_init+0x36/0x110
[ 2902.912164]  v9fs_session_init+0x1dd/0x16a0
[ 2902.912731]  ? kmem_cache_alloc_trace+0x151/0x360
[ 2902.913358]  ? v9fs_show_options+0x690/0x690
[ 2902.913940]  ? kasan_unpoison_shadow+0x33/0x50
[ 2902.914539]  ? __kasan_kmalloc.constprop.0+0xc9/0xd0
[ 2902.915254]  v9fs_mount+0x79/0x8f0
[ 2902.915737]  ? v9fs_write_inode+0x60/0x60
[ 2902.916277]  legacy_get_tree+0x105/0x220
[ 2902.916816]  vfs_get_tree+0x8e/0x300
[ 2902.917298]  path_mount+0x13be/0x20b0
[ 2902.917807]  ? strncpy_from_user+0x9e/0x470
[ 2902.918373]  ? finish_automount+0xa40/0xa40
[ 2902.918982]  ? getname_flags.part.0+0x1dd/0x4f0
[ 2902.919573]  ? _copy_from_user+0xfb/0x1b0
[ 2902.920111]  __x64_sys_mount+0x282/0x300
[ 2902.920647]  ? copy_mnt_ns+0xa00/0xa00
[ 2902.921161]  ? rcu_read_lock_sched_held+0x3e/0x80
[ 2902.921802]  do_syscall_64+0x33/0x40
[ 2902.922283]  entry_SYSCALL_64_after_hwframe+0x61/0xc6
[ 2902.922970] RIP: 0033:0x7f38308e8b19
[ 2902.923449] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 2902.925763] RSP: 002b:00007f382de5e188 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5
[ 2902.926741] RAX: ffffffffffffffda RBX: 00007f38309fbf60 RCX: 00007f38308e8b19
[ 2902.927826] RDX: 00000000200000c0 RSI: 0000000020000040 RDI: 0000000000000000
[ 2902.928899] RBP: 00007f382de5e1d0 R08: 0000000020000280 R09: 0000000000000000
[ 2902.929972] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[ 2902.931057] R13: 00007ffca2bf07df R14: 00007f382de5e300 R15: 0000000000022000
[ 2903.053406] 9pnet: Insufficient options for proto=fd
21:29:09 executing program 1:
openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x105142, 0x0)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
pipe(&(0x7f00000001c0))
mount$9p_fd(0x0, &(0x7f0000000040)='./file1\x00', &(0x7f00000000c0), 0x1000000, &(0x7f0000000280)={'trans=fd,', {}, 0x2c, {}, 0x2c, {[{@nodevmap}]}})

[ 2903.105600] 9pnet: Insufficient options for proto=fd
21:29:09 executing program 4:
openat$vcs(0xffffffffffffff9c, &(0x7f0000000040), 0x0, 0x0)
r0 = openat$sr(0xffffffffffffff9c, &(0x7f00000035c0), 0x0, 0x0)
openat$sr(0xffffffffffffff9c, &(0x7f00000000c0), 0x224400, 0x0)
openat$rtc(0xffffffffffffff9c, &(0x7f0000000200), 0x4c0, 0x0)
pipe(&(0x7f00000001c0))
ioctl$AUTOFS_DEV_IOCTL_CLOSEMOUNT(r0, 0xc0189375, &(0x7f0000000000)={{0x1, 0x1, 0x18, r0}, './cgroup.net/cgroup.procs\x00'})
open(&(0x7f00000016c0)='./cgroup.net/cgroup.procs\x00', 0x0, 0x0)
pselect6(0x40, &(0x7f0000000180), &(0x7f00000001c0)={0x3fc}, 0x0, 0x0, 0x0)

[ 2903.158498] 9pnet: Insufficient options for proto=fd
21:29:09 executing program 6:
r0 = syz_mount_image$vfat(&(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x0, 0x2, &(0x7f0000000180)=[{&(0x7f0000000140)="eb3c906d6b66732e66617400020801000470008400f801", 0x17}, {0x0, 0x0, 0x1000a00}], 0x0, &(0x7f0000000240)=ANY=[])
chdir(&(0x7f0000000040)='./file0\x00')
openat2(r0, &(0x7f0000000100)='./file0\x00', &(0x7f00000001c0)={0x40000, 0x81}, 0x18)
mount$cgroup(0x0, 0x0, &(0x7f0000000400), 0x0, 0x0)
r1 = syz_io_uring_setup(0x22, &(0x7f0000000680)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000180)=<r2=>0x0, &(0x7f0000002a40)=<r3=>0x0)
io_uring_register$IORING_REGISTER_PERSONALITY(r1, 0x9, 0x0, 0x0)
socket$nl_netfilter(0x10, 0x3, 0xc)
syz_io_uring_submit(r2, r3, 0x0, 0x0)
r4 = syz_io_uring_setup(0x22, &(0x7f0000000680)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000180), &(0x7f0000002a40))
r5 = io_uring_register$IORING_REGISTER_PERSONALITY(r4, 0x9, 0x0, 0x0)
syz_io_uring_submit(r2, 0x0, &(0x7f0000000440)=@IORING_OP_FSYNC={0x3, 0x2, 0x0, @fd_index=0x9, 0x0, 0x0, 0x0, 0x0, 0x0, {0x0, r5}}, 0x2)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r6 = openat(0xffffffffffffff9c, &(0x7f00000002c0)='./file1\x00', 0x105142, 0x0)
r7 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0)
sendfile(r6, r7, 0x0, 0x100000001)
newfstatat(0xffffffffffffff9c, &(0x7f0000000340)='./file1\x00', &(0x7f0000000380), 0x400)

21:29:09 executing program 5:
openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x105142, 0x0)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
pipe(&(0x7f00000001c0)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
mount$9p_fd(0x0, &(0x7f0000000040)='./file1\x00', &(0x7f00000000c0), 0x0, &(0x7f0000000280)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}}) (fail_nth: 90)
openat(0xffffffffffffffff, 0x0, 0x0, 0x0)

21:29:09 executing program 3:
openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x105142, 0x0)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x400}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
pipe(&(0x7f00000001c0)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
mount$9p_fd(0x0, &(0x7f0000000040)='./file1\x00', &(0x7f00000000c0), 0x0, &(0x7f0000000280)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {}, 0x22, {[{@nodevmap}]}})
openat(r1, &(0x7f0000000180)='./file1\x00', 0x0, 0x0)

[ 2903.252799] FAULT_INJECTION: forcing a failure.
21:29:09 executing program 2:
syz_mount_image$vfat(&(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x0, 0x2, &(0x7f0000000180)=[{&(0x7f0000000140)="eb3c906d6b66732e66617400020801000470008400f801", 0x17}, {0x0, 0x0, 0x1000a00}], 0x0, &(0x7f0000000240)=ANY=[])
chdir(&(0x7f0000000040)='./file0\x00')
r0 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x105142, 0x1)
ioctl$FS_IOC_RESVSP(r0, 0x40305828, &(0x7f0000000040)={0x0, 0x0, 0x0, 0x4000006})

[ 2903.252799] name failslab, interval 1, probability 0, space 0, times 0
[ 2903.263748] CPU: 0 PID: 27969 Comm: syz-executor.5 Not tainted 5.10.172 #1
[ 2903.264630] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 2903.265677] Call Trace:
[ 2903.266019]  dump_stack+0x107/0x167
[ 2903.266529]  should_fail.cold+0x5/0xa
[ 2903.267270]  ? create_object.isra.0+0x3a/0xa20
[ 2903.268565]  should_failslab+0x5/0x20
[ 2903.269640]  kmem_cache_alloc+0x5b/0x360
[ 2903.270811]  create_object.isra.0+0x3a/0xa20
[ 2903.272049]  ? __kasan_kmalloc.constprop.0+0xc9/0xd0
[ 2903.273427]  kmem_cache_alloc+0x159/0x360
[ 2903.274660]  __kernfs_new_node+0xd4/0x850
[ 2903.275895]  ? kernfs_dop_revalidate+0x3a0/0x3a0
[ 2903.277222]  ? __mutex_unlock_slowpath+0xe1/0x600
[ 2903.278578]  ? asm_sysvec_apic_timer_interrupt+0x12/0x20
[ 2903.280083]  ? wait_for_completion_io+0x270/0x270
[ 2903.281467]  ? kernfs_next_descendant_post+0x1a7/0x2a0
[ 2903.282913]  kernfs_new_node+0x93/0x120
[ 2903.284014]  __kernfs_create_file+0x51/0x350
[ 2903.285271]  sysfs_add_file_mode_ns+0x221/0x560
[ 2903.286577]  internal_create_group+0x324/0xb30
[ 2903.287877]  ? sysfs_remove_group+0x170/0x170
[ 2903.289083]  ? kernfs_name_hash+0xe7/0x110
[ 2903.290211]  ? kernfs_find_ns+0x256/0x380
[ 2903.291462]  sysfs_slab_add+0x188/0x200
[ 2903.292538]  __kmem_cache_create+0x3db/0x520
[ 2903.293780]  kmem_cache_create_usercopy+0x1db/0x2f0
[ 2903.295160]  p9_client_create+0xc2b/0x1090
[ 2903.296370]  ? p9_client_flush+0x430/0x430
[ 2903.297540]  ? lockdep_init_map_type+0x2c7/0x780
[ 2903.298909]  ? rcu_read_lock_sched_held+0x3e/0x80
[ 2903.300287]  ? __raw_spin_lock_init+0x36/0x110
[ 2903.301616]  v9fs_session_init+0x1dd/0x16a0
[ 2903.302863]  ? kmem_cache_alloc_trace+0x151/0x360
[ 2903.304260]  ? v9fs_show_options+0x690/0x690
[ 2903.305403]  ? kasan_unpoison_shadow+0x33/0x50
[ 2903.306632]  ? __kasan_kmalloc.constprop.0+0xc9/0xd0
[ 2903.307957]  v9fs_mount+0x79/0x8f0
[ 2903.308865]  ? v9fs_write_inode+0x60/0x60
[ 2903.309936]  legacy_get_tree+0x105/0x220
[ 2903.311121]  vfs_get_tree+0x8e/0x300
[ 2903.312123]  path_mount+0x13be/0x20b0
[ 2903.313127]  ? strncpy_from_user+0x9e/0x470
[ 2903.314287]  ? finish_automount+0xa40/0xa40
[ 2903.315478]  ? getname_flags.part.0+0x1dd/0x4f0
[ 2903.316862]  ? _copy_from_user+0xfb/0x1b0
[ 2903.318052]  __x64_sys_mount+0x282/0x300
[ 2903.319116]  ? copy_mnt_ns+0xa00/0xa00
[ 2903.320121]  ? rcu_read_lock_sched_held+0x3e/0x80
[ 2903.321308]  do_syscall_64+0x33/0x40
[ 2903.321808]  entry_SYSCALL_64_after_hwframe+0x61/0xc6
[ 2903.322485] RIP: 0033:0x7f38308e8b19
[ 2903.322988] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 2903.325563] RSP: 002b:00007f382de5e188 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5
[ 2903.326599] RAX: ffffffffffffffda RBX: 00007f38309fbf60 RCX: 00007f38308e8b19
[ 2903.327642] RDX: 00000000200000c0 RSI: 0000000020000040 RDI: 0000000000000000
[ 2903.328671] RBP: 00007f382de5e1d0 R08: 0000000020000280 R09: 0000000000000000
[ 2903.329650] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[ 2903.330631] R13: 00007ffca2bf07df R14: 00007f382de5e300 R15: 0000000000022000
[ 2903.343405] 9pnet: Insufficient options for proto=fd
[ 2903.357080] 9pnet: Insufficient options for proto=fd
21:29:09 executing program 3:
openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x105142, 0x0)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x400}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
pipe(&(0x7f00000001c0)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
mount$9p_fd(0x0, &(0x7f0000000040)='./file1\x00', &(0x7f00000000c0), 0x0, &(0x7f0000000280)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {}, 0x2c, {[{@nodevmap, 0x22}]}})
openat(r1, &(0x7f0000000180)='./file1\x00', 0x0, 0x0)

21:29:09 executing program 1:
openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x105142, 0x0)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
pipe(&(0x7f00000001c0))
mount$9p_fd(0x0, &(0x7f0000000040)='./file1\x00', &(0x7f00000000c0), 0x2000000, &(0x7f0000000280)={'trans=fd,', {}, 0x2c, {}, 0x2c, {[{@nodevmap}]}})

21:29:09 executing program 4:
openat$vcs(0xffffffffffffff9c, &(0x7f0000000040), 0x0, 0x0)
openat$sr(0xffffffffffffff9c, &(0x7f00000035c0), 0x0, 0x0)
openat$sr(0xffffffffffffff9c, &(0x7f00000000c0), 0x224400, 0x0)
openat$rtc(0xffffffffffffff9c, &(0x7f0000000200), 0x0, 0x0)
pipe(&(0x7f00000001c0))
open(&(0x7f00000016c0)='./cgroup.net/cgroup.procs\x00', 0x0, 0x0)
r0 = epoll_create(0x3)
r1 = perf_event_open(&(0x7f0000001d80)={0x2, 0x80, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
mmap(&(0x7f0000ffc000/0x2000)=nil, 0x2000, 0x0, 0x13, r1, 0x0)
perf_event_open(&(0x7f0000001d80)={0x2, 0x80, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, r1, 0x2)
epoll_ctl$EPOLL_CTL_MOD(r0, 0x3, r1, &(0x7f0000000000)={0x4})
pselect6(0x40, &(0x7f0000000180)={0x0, 0x0, 0x0, 0x4, 0x0, 0x0, 0x1, 0x9f}, &(0x7f00000001c0)={0x400000003fc, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x8}, 0x0, 0x0, 0x0)

[ 2903.488431] 9pnet: Insufficient options for proto=fd
[ 2903.511596] 9pnet: Insufficient options for proto=fd
[ 2903.524344] 9pnet: Insufficient options for proto=fd
21:29:10 executing program 3:
openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x105142, 0x0)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x400}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
pipe(&(0x7f00000001c0)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
mount$9p_fd(0x0, &(0x7f0000000040)='./file1\x00', &(0x7f00000000c0), 0x0, &(0x7f0000000280)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {}, 0x2c, {[{@nodevmap}]}})
openat(r1, &(0x7f0000000180)='./file1\x00', 0x0, 0x0)

[ 2903.665298] 9pnet: Insufficient options for proto=fd
[ 2903.689695] 9pnet: Insufficient options for proto=fd
21:29:28 executing program 5:
openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x105142, 0x0)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
pipe(&(0x7f00000001c0)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
mount$9p_fd(0x0, &(0x7f0000000040)='./file1\x00', &(0x7f00000000c0), 0x0, &(0x7f0000000280)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}}) (fail_nth: 91)
openat(0xffffffffffffffff, 0x0, 0x0, 0x0)

21:29:28 executing program 7:
perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
io_setup(0x7f, &(0x7f00000002c0)=<r0=>0x0)
io_pgetevents(r0, 0x1, 0x1, &(0x7f0000000000)=[{}], 0x0, 0x0)
io_submit(r0, 0x1, &(0x7f0000000340)=[&(0x7f0000000300)={0x0, 0x0, 0x0, 0x5, 0x0, 0xffffffffffffffff, 0x0}])

21:29:28 executing program 2:
ioctl$FICLONE(0xffffffffffffffff, 0x40049409, 0xffffffffffffffff)
syz_mount_image$vfat(&(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x0, 0x2, &(0x7f0000000180)=[{&(0x7f0000000140)="eb3c906d6b66732e66617400020801000470008400f801", 0x17}, {0x0, 0x0, 0x1000a00}], 0x0, &(0x7f0000000240)=ANY=[])
chdir(&(0x7f0000000040)='./file0\x00')
r0 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x105142, 0x0)
ioctl$FS_IOC_RESVSP(r0, 0x40305828, &(0x7f0000000040)={0x0, 0x0, 0x0, 0x4000006})

21:29:28 executing program 6:
r0 = syz_mount_image$vfat(&(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x0, 0x2, &(0x7f0000000180)=[{&(0x7f0000000140)="eb3c906d6b66732e66617400020801000470008400f801", 0x17}, {0x0, 0x0, 0x1000a00}], 0x0, &(0x7f0000000240)=ANY=[])
chdir(&(0x7f0000000040)='./file0\x00')
openat2(r0, &(0x7f0000000100)='./file0\x00', &(0x7f00000001c0)={0x40000, 0x81}, 0x18)
mount$cgroup(0x0, 0x0, &(0x7f0000000400), 0x0, 0x0)
r1 = syz_io_uring_setup(0x22, &(0x7f0000000680)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000180)=<r2=>0x0, &(0x7f0000002a40)=<r3=>0x0)
io_uring_register$IORING_REGISTER_PERSONALITY(r1, 0x9, 0x0, 0x0)
socket$nl_netfilter(0x10, 0x3, 0xc)
syz_io_uring_submit(r2, r3, 0x0, 0x0)
r4 = syz_io_uring_setup(0x22, &(0x7f0000000680)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000180), &(0x7f0000002a40))
r5 = io_uring_register$IORING_REGISTER_PERSONALITY(r4, 0x9, 0x0, 0x0)
syz_io_uring_submit(r2, 0x0, &(0x7f0000000440)=@IORING_OP_FSYNC={0x3, 0x2, 0x0, @fd_index=0x9, 0x0, 0x0, 0x0, 0x0, 0x0, {0x0, r5}}, 0x2)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r6 = openat(0xffffffffffffff9c, &(0x7f00000002c0)='./file1\x00', 0x105142, 0x0)
r7 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0)
sendfile(r6, r7, 0x0, 0x100000001)
newfstatat(0xffffffffffffff9c, &(0x7f0000000340)='./file1\x00', &(0x7f0000000380), 0x400)

21:29:28 executing program 3:
openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x105142, 0x0)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x400}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
pipe(&(0x7f00000001c0)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
mount$9p_fd(0x0, &(0x7f0000000040)='./file1\x00', &(0x7f00000000c0), 0x0, &(0x7f0000000280)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {}, 0x2c, {[{@nodevmap}], [], 0x2}})
openat(r1, &(0x7f0000000180)='./file1\x00', 0x0, 0x0)

21:29:28 executing program 1:
openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x105142, 0x0)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
pipe(&(0x7f00000001c0))
mount$9p_fd(0x0, &(0x7f0000000040)='./file1\x00', &(0x7f00000000c0), 0x3000000, &(0x7f0000000280)={'trans=fd,', {}, 0x2c, {}, 0x2c, {[{@nodevmap}]}})

21:29:28 executing program 0:
syz_mount_image$vfat(&(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x0, 0x2, &(0x7f0000000180)=[{&(0x7f0000000140)="eb3c906d6b66732e66617400020801000470008400f801", 0x17}, {0x0, 0x0, 0x1000a00}], 0x0, &(0x7f0000000240)=ANY=[])
chdir(&(0x7f0000000040)='./file0\x00')
mount$cgroup(0x0, 0x0, &(0x7f0000000400), 0x0, 0x0)
r0 = syz_io_uring_setup(0x22, &(0x7f0000000680)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000180)=<r1=>0x0, &(0x7f0000002a40)=<r2=>0x0)
r3 = io_uring_register$IORING_REGISTER_PERSONALITY(r0, 0x9, 0x0, 0x0)
r4 = socket$nl_netfilter(0x10, 0x3, 0xc)
syz_io_uring_submit(r1, r2, &(0x7f0000000400)=@IORING_OP_WRITEV={0x2, 0x0, 0x0, @fd=r4, 0x0, 0x0, 0x0, 0x0, 0x0, {0x0, r3}}, 0x0)
r5 = syz_io_uring_setup(0x22, &(0x7f0000000680)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000180), &(0x7f0000002a40))
r6 = io_uring_register$IORING_REGISTER_PERSONALITY(r5, 0x9, 0x0, 0x0)
syz_io_uring_submit(r1, 0x0, &(0x7f0000000440)=@IORING_OP_FSYNC={0x3, 0x2, 0x0, @fd_index=0x9, 0x0, 0x0, 0x0, 0x0, 0x1, {0x0, r6}}, 0x2)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r7 = openat(0xffffffffffffff9c, &(0x7f00000002c0)='./file1\x00', 0x105142, 0x0)
r8 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0)
mount(&(0x7f0000000200)=ANY=[@ANYBLOB="2f6f651317868af191bdb2"], &(0x7f0000000240)='./file0\x00', &(0x7f0000000280)='nfsd\x00', 0x800000, &(0x7f0000000300)='cgroup\x00')
sendfile(r7, r8, 0x0, 0x100000001)
newfstatat(0xffffffffffffff9c, &(0x7f0000000340)='./file1\x00', &(0x7f0000000380), 0x400)

21:29:28 executing program 4:
openat$vcs(0xffffffffffffff9c, &(0x7f0000000040), 0x0, 0x0)
openat$sr(0xffffffffffffff9c, &(0x7f00000035c0), 0x0, 0x0)
openat$sr(0xffffffffffffff9c, &(0x7f00000000c0), 0x224400, 0x0)
openat$rtc(0xffffffffffffff9c, &(0x7f0000000200), 0x0, 0x0)
pipe(&(0x7f00000001c0))
pselect6(0x40, &(0x7f0000000180), &(0x7f00000001c0)={0x3fc}, 0x0, 0x0, 0x0)

[ 2921.842904] FAULT_INJECTION: forcing a failure.
[ 2921.842904] name failslab, interval 1, probability 0, space 0, times 0
[ 2921.844531] CPU: 0 PID: 28153 Comm: syz-executor.5 Not tainted 5.10.172 #1
[ 2921.845478] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 2921.846598] Call Trace:
[ 2921.846960]  dump_stack+0x107/0x167
[ 2921.847477]  should_fail.cold+0x5/0xa
[ 2921.847968]  ? __kernfs_new_node+0xd4/0x850
[ 2921.848542]  should_failslab+0x5/0x20
[ 2921.849063]  kmem_cache_alloc+0x5b/0x360
[ 2921.849621]  __kernfs_new_node+0xd4/0x850
[ 2921.850183]  ? kernfs_dop_revalidate+0x3a0/0x3a0
[ 2921.850824]  ? __mutex_unlock_slowpath+0xe1/0x600
[ 2921.851507]  ? wait_for_completion_io+0x270/0x270
[ 2921.852158]  ? kernfs_next_descendant_post+0x1a7/0x2a0
[ 2921.852873]  kernfs_new_node+0x93/0x120
[ 2921.853137] 9pnet: Insufficient options for proto=fd
[ 2921.853429]  __kernfs_create_file+0x51/0x350
[ 2921.854726]  sysfs_add_file_mode_ns+0x221/0x560
[ 2921.855387]  internal_create_group+0x324/0xb30
[ 2921.856012]  ? sysfs_remove_group+0x170/0x170
[ 2921.856590]  ? kernfs_name_hash+0xe7/0x110
[ 2921.857145]  ? kernfs_find_ns+0x256/0x380
[ 2921.857708]  sysfs_slab_add+0x188/0x200
[ 2921.858242]  __kmem_cache_create+0x3db/0x520
[ 2921.858829]  kmem_cache_create_usercopy+0x1db/0x2f0
[ 2921.859539]  p9_client_create+0xc2b/0x1090
[ 2921.860122]  ? p9_client_flush+0x430/0x430
[ 2921.860702]  ? lockdep_init_map_type+0x2c7/0x780
[ 2921.861344]  ? rcu_read_lock_sched_held+0x3e/0x80
[ 2921.862009]  ? __raw_spin_lock_init+0x36/0x110
[ 2921.862634]  v9fs_session_init+0x1dd/0x16a0
[ 2921.862956] 9pnet: Insufficient options for proto=fd
[ 2921.863248]  ? irqentry_enter+0x26/0x60
[ 2921.863282]  ? asm_sysvec_apic_timer_interrupt+0x12/0x20
[ 2921.865135] 9pnet: Insufficient options for proto=fd
[ 2921.865193]  ? trace_hardirqs_on+0x5b/0x180
[ 2921.866436]  ? v9fs_show_options+0x690/0x690
[ 2921.867042]  ? kasan_unpoison_shadow+0x33/0x50
[ 2921.867693]  ? __kasan_kmalloc.constprop.0+0xc9/0xd0
[ 2921.868366]  v9fs_mount+0x79/0x8f0
[ 2921.868839]  ? capable+0x7b/0x100
[ 2921.869302]  ? v9fs_write_inode+0x60/0x60
[ 2921.869866]  legacy_get_tree+0x105/0x220
[ 2921.870416]  vfs_get_tree+0x8e/0x300
[ 2921.870921]  path_mount+0x13be/0x20b0
[ 2921.871463]  ? strncpy_from_user+0x9e/0x470
[ 2921.872048]  ? finish_automount+0xa40/0xa40
[ 2921.872627]  ? getname_flags.part.0+0x1dd/0x4f0
[ 2921.873247]  ? _copy_from_user+0xfb/0x1b0
[ 2921.873816]  __x64_sys_mount+0x282/0x300
[ 2921.874367]  ? copy_mnt_ns+0xa00/0xa00
[ 2921.874898]  ? rcu_read_lock_sched_held+0x3e/0x80
[ 2921.875572]  do_syscall_64+0x33/0x40
[ 2921.876076]  entry_SYSCALL_64_after_hwframe+0x61/0xc6
[ 2921.876757] RIP: 0033:0x7f38308e8b19
[ 2921.877258] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 2921.879853] RSP: 002b:00007f382de5e188 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5
[ 2921.880858] RAX: ffffffffffffffda RBX: 00007f38309fbf60 RCX: 00007f38308e8b19
[ 2921.881791] RDX: 00000000200000c0 RSI: 0000000020000040 RDI: 0000000000000000
[ 2921.882727] RBP: 00007f382de5e1d0 R08: 0000000020000280 R09: 0000000000000000
[ 2921.883689] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[ 2921.884630] R13: 00007ffca2bf07df R14: 00007f382de5e300 R15: 0000000000022000
21:29:28 executing program 3:
openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x105142, 0x0)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x400}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
pipe(&(0x7f00000001c0)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
mount$9p_fd(0x0, &(0x7f0000000040)='./file1\x00', &(0x7f00000000c0), 0x0, &(0x7f0000000280)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {}, 0x2c, {[{@nodevmap}], [], 0x3}})
openat(r1, &(0x7f0000000180)='./file1\x00', 0x0, 0x0)

21:29:28 executing program 1:
openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x105142, 0x0)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
pipe(&(0x7f00000001c0))
mount$9p_fd(0x0, &(0x7f0000000040)='./file1\x00', &(0x7f00000000c0), 0x4000000, &(0x7f0000000280)={'trans=fd,', {}, 0x2c, {}, 0x2c, {[{@nodevmap}]}})

[ 2922.015497] 9pnet: Insufficient options for proto=fd
[ 2922.035462] kmem_cache_create(9p-fcall-cache) failed with error -12
[ 2922.036410] CPU: 1 PID: 28153 Comm: syz-executor.5 Not tainted 5.10.172 #1
[ 2922.037312] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 2922.038401] Call Trace:
[ 2922.038755]  dump_stack+0x107/0x167
[ 2922.039265]  kmem_cache_create_usercopy.cold+0x17/0x65
[ 2922.039961]  p9_client_create+0xc2b/0x1090
[ 2922.040530]  ? p9_client_flush+0x430/0x430
[ 2922.041097]  ? lockdep_init_map_type+0x2c7/0x780
[ 2922.041725]  ? rcu_read_lock_sched_held+0x3e/0x80
[ 2922.042360]  ? __raw_spin_lock_init+0x36/0x110
[ 2922.042979]  v9fs_session_init+0x1dd/0x16a0
[ 2922.043609]  ? irqentry_enter+0x26/0x60
[ 2922.044141]  ? asm_sysvec_apic_timer_interrupt+0x12/0x20
[ 2922.044857]  ? trace_hardirqs_on+0x5b/0x180
[ 2922.045431]  ? v9fs_show_options+0x690/0x690
[ 2922.046087]  ? kasan_unpoison_shadow+0x33/0x50
[ 2922.046720]  ? __kasan_kmalloc.constprop.0+0xc9/0xd0
[ 2922.047438]  v9fs_mount+0x79/0x8f0
[ 2922.047917]  ? capable+0x7b/0x100
[ 2922.048392]  ? v9fs_write_inode+0x60/0x60
[ 2922.048952]  legacy_get_tree+0x105/0x220
[ 2922.049501]  vfs_get_tree+0x8e/0x300
[ 2922.049996]  path_mount+0x13be/0x20b0
[ 2922.050516]  ? strncpy_from_user+0x9e/0x470
[ 2922.051086]  ? finish_automount+0xa40/0xa40
[ 2922.051694]  ? getname_flags.part.0+0x1dd/0x4f0
[ 2922.052310]  ? _copy_from_user+0xfb/0x1b0
[ 2922.053176]  __x64_sys_mount+0x282/0x300
[ 2922.054507]  ? copy_mnt_ns+0xa00/0xa00
[ 2922.055747]  ? rcu_read_lock_sched_held+0x3e/0x80
[ 2922.057237]  do_syscall_64+0x33/0x40
[ 2922.058394]  entry_SYSCALL_64_after_hwframe+0x61/0xc6
[ 2922.060048] RIP: 0033:0x7f38308e8b19
[ 2922.061246] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 2922.062708] 9pnet: Insufficient options for proto=fd
[ 2922.066658] RSP: 002b:00007f382de5e188 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5
[ 2922.066678] RAX: ffffffffffffffda RBX: 00007f38309fbf60 RCX: 00007f38308e8b19
[ 2922.066686] RDX: 00000000200000c0 RSI: 0000000020000040 RDI: 0000000000000000
[ 2922.066696] RBP: 00007f382de5e1d0 R08: 0000000020000280 R09: 0000000000000000
[ 2922.066706] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[ 2922.066716] R13: 00007ffca2bf07df R14: 00007f382de5e300 R15: 0000000000022000
[ 2922.125205] 9pnet: Insufficient options for proto=fd
21:29:28 executing program 4:
r0 = openat$vcs(0xffffffffffffff9c, &(0x7f0000000040), 0x0, 0x0)
r1 = perf_event_open$cgroup(&(0x7f0000000100)={0x2, 0x80, 0x8, 0x80, 0x3, 0x9, 0x0, 0x9, 0x40000, 0x5, 0x1, 0x1, 0x1, 0x1, 0x0, 0x1, 0x0, 0x0, 0x1, 0x1, 0x1, 0x0, 0x1, 0x0, 0x1, 0x3, 0x0, 0x1, 0x1, 0x1, 0x1, 0x1, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x0, 0x1, 0x1, 0x0, 0x80, 0x0, @perf_config_ext={0x2, 0x4}, 0x1000, 0x3, 0x2, 0x4, 0x4, 0x1000, 0x1, 0x0, 0x809a, 0x0, 0x4}, r0, 0xc, 0xffffffffffffffff, 0x5)
ioctl$F2FS_IOC_GET_COMPRESS_BLOCKS(r1, 0x8008f511, &(0x7f0000000000))
openat$sr(0xffffffffffffff9c, &(0x7f00000035c0), 0x0, 0x0)
openat$sr(0xffffffffffffff9c, &(0x7f00000000c0), 0x224400, 0x0)
openat$rtc(0xffffffffffffff9c, &(0x7f0000000200), 0x0, 0x0)
pipe(&(0x7f00000001c0))
open(&(0x7f00000016c0)='./cgroup.net/cgroup.procs\x00', 0x0, 0x0)
pselect6(0x40, &(0x7f0000000180)={0x0, 0x0, 0x0, 0x0, 0x100000}, &(0x7f00000001c0)={0x3fc, 0x0, 0x0, 0x0, 0x8, 0x0, 0x1, 0xdee}, 0x0, 0x0, 0x0)

21:29:28 executing program 2:
syz_mount_image$vfat(&(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x0, 0x2, &(0x7f0000000180)=[{&(0x7f00000001c0)="eb3c906f6b66732e05000000020801000470008400f801be2d9abe1a1bfeb72f3bfaad8d3b2737cf8da305f87ededf1f40aed76935ad15552c5ef6f5f4c80923bef60ab0e90240de6821de7fdbc66b627207ebca4b13b7b2eedb57e7b1128f80b874cb0bd44744edf210927966110942ca25094499bab8f32ffc81963fda67705a289cbd45915ab422c4162c9e5db470b45041b353311e2d246c6e0222a6b994d44f6932d26c383640190fa0bc615ab51ac8", 0xb2}, {0x0, 0x0, 0x1000a00}], 0x0, &(0x7f0000000240)=ANY=[])
chdir(&(0x7f0000000040)='./file0\x00')
r0 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x105142, 0x0)
ioctl$FS_IOC_RESVSP(r0, 0x40305828, &(0x7f0000000040)={0x0, 0x4, 0x0, 0x4000006})

21:29:28 executing program 3:
openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x105142, 0x0)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x400}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
pipe(&(0x7f00000001c0)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
mount$9p_fd(0x0, &(0x7f0000000040)='./file1\x00', &(0x7f00000000c0), 0x0, &(0x7f0000000280)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {}, 0x2c, {[{@nodevmap}], [], 0x4}})
openat(r1, &(0x7f0000000180)='./file1\x00', 0x0, 0x0)

21:29:28 executing program 6:
r0 = syz_mount_image$vfat(&(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x0, 0x2, &(0x7f0000000180)=[{&(0x7f0000000140)="eb3c906d6b66732e66617400020801000470008400f801", 0x17}, {0x0, 0x0, 0x1000a00}], 0x0, &(0x7f0000000240)=ANY=[])
chdir(&(0x7f0000000040)='./file0\x00')
openat2(r0, &(0x7f0000000100)='./file0\x00', &(0x7f00000001c0)={0x40000, 0x81}, 0x18)
mount$cgroup(0x0, 0x0, &(0x7f0000000400), 0x0, 0x0)
r1 = syz_io_uring_setup(0x22, &(0x7f0000000680)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000180)=<r2=>0x0, &(0x7f0000002a40)=<r3=>0x0)
io_uring_register$IORING_REGISTER_PERSONALITY(r1, 0x9, 0x0, 0x0)
socket$nl_netfilter(0x10, 0x3, 0xc)
syz_io_uring_submit(r2, r3, 0x0, 0x0)
r4 = syz_io_uring_setup(0x22, &(0x7f0000000680)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000180), &(0x7f0000002a40))
r5 = io_uring_register$IORING_REGISTER_PERSONALITY(r4, 0x9, 0x0, 0x0)
syz_io_uring_submit(r2, 0x0, &(0x7f0000000440)=@IORING_OP_FSYNC={0x3, 0x2, 0x0, @fd_index=0x9, 0x0, 0x0, 0x0, 0x0, 0x0, {0x0, r5}}, 0x2)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r6 = openat(0xffffffffffffff9c, &(0x7f00000002c0)='./file1\x00', 0x105142, 0x0)
r7 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0)
sendfile(r6, r7, 0x0, 0x100000001)
newfstatat(0xffffffffffffff9c, &(0x7f0000000340)='./file1\x00', &(0x7f0000000380), 0x400)

21:29:28 executing program 0:
syz_mount_image$vfat(&(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x0, 0x2, &(0x7f0000000180)=[{&(0x7f0000000140)="eb3c906d6b66732e66617400020801000470008400f801", 0x17}, {0x0, 0x0, 0x1000a00}], 0x0, &(0x7f0000000240)=ANY=[])
chdir(&(0x7f0000000040)='./file0\x00')
mount$cgroup(0x0, 0x0, &(0x7f0000000400), 0x0, 0x0)
r0 = syz_io_uring_setup(0x22, &(0x7f0000000680)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000180)=<r1=>0x0, &(0x7f0000002a40)=<r2=>0x0)
r3 = io_uring_register$IORING_REGISTER_PERSONALITY(r0, 0x9, 0x0, 0x0)
r4 = socket$nl_netfilter(0x10, 0x3, 0xc)
syz_io_uring_submit(r1, r2, &(0x7f0000000400)=@IORING_OP_WRITEV={0x2, 0x0, 0x0, @fd=r4, 0x0, 0x0, 0x0, 0x0, 0x0, {0x0, r3}}, 0x0)
r5 = syz_io_uring_setup(0x22, &(0x7f0000000680)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000180), &(0x7f0000002a40))
r6 = io_uring_register$IORING_REGISTER_PERSONALITY(r5, 0x9, 0x0, 0x0)
syz_io_uring_submit(r1, 0x0, &(0x7f0000000440)=@IORING_OP_FSYNC={0x3, 0x2, 0x0, @fd_index=0x9, 0x0, 0x0, 0x0, 0x0, 0x1, {0x0, r6}}, 0x2)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r7 = openat(0xffffffffffffff9c, &(0x7f00000002c0)='./file1\x00', 0x105142, 0x0)
r8 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0)
mount(&(0x7f0000000200)=ANY=[@ANYBLOB="2f6f651317868af191bdb2"], &(0x7f0000000240)='./file0\x00', &(0x7f0000000280)='nfsd\x00', 0x800000, &(0x7f0000000300)='cgroup\x00')
sendfile(r7, r8, 0x0, 0x100000001)
newfstatat(0xffffffffffffff9c, &(0x7f0000000340)='./file1\x00', &(0x7f0000000380), 0x400)

21:29:28 executing program 5:
openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x105142, 0x0)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
pipe(&(0x7f00000001c0)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
mount$9p_fd(0x0, &(0x7f0000000040)='./file1\x00', &(0x7f00000000c0), 0x0, &(0x7f0000000280)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}}) (fail_nth: 92)
openat(0xffffffffffffffff, 0x0, 0x0, 0x0)

[ 2922.284789] 9pnet: Insufficient options for proto=fd
[ 2922.287578] FAT-fs (loop2): Unrecognized mount option "Z(��E�Z�"�" or missing value
21:29:28 executing program 4:
r0 = openat$vcs(0xffffffffffffff9c, &(0x7f0000000040), 0x0, 0x0)
r1 = openat$ptp0(0xffffffffffffff9c, &(0x7f0000000080), 0x6000, 0x0)
ioctl$BTRFS_IOC_SNAP_CREATE_V2(r0, 0x50009417, &(0x7f00000002c0)={{r1}, 0x0, 0xa, @inherit={0x58, &(0x7f0000000240)={0x1, 0x2, 0x612, 0x3, {0x2f, 0x8, 0x3, 0x2, 0x80000000}, [0x3, 0x3c]}}, @subvolid=0x200})
openat$sr(0xffffffffffffff9c, &(0x7f00000035c0), 0x0, 0x0)
openat$sr(0xffffffffffffff9c, &(0x7f00000000c0), 0x224400, 0x0)
r2 = openat$rtc(0xffffffffffffff9c, &(0x7f0000000200), 0x0, 0x0)
pipe(&(0x7f00000001c0)={0xffffffffffffffff, <r3=>0xffffffffffffffff})
open(&(0x7f00000016c0)='./cgroup.net/cgroup.procs\x00', 0x0, 0x0)
r4 = accept(r3, &(0x7f0000000100), &(0x7f0000000000)=0x80)
pipe(&(0x7f00000001c0)={<r5=>0xffffffffffffffff, <r6=>0xffffffffffffffff})
mount$9p_fd(0x0, &(0x7f0000000040)='./file1\x00', &(0x7f00000000c0), 0x0, &(0x7f0000000280)={'trans=fd,', {'rfdno', 0x3d, r5}, 0x2c, {'wfdno', 0x3d, r6}, 0x2c, {[{@nodevmap}]}})
ioctl$DVD_READ_STRUCT(r5, 0x5390, &(0x7f0000001700)=@copyright={0x1, 0x1, 0xfc, 0x3f})
dup3(r4, r2, 0x0)
pselect6(0x40, &(0x7f0000000180), &(0x7f00000001c0)={0x3fc}, 0x0, 0x0, 0x0)

[ 2922.304449] 9pnet: Insufficient options for proto=fd
[ 2922.328276] FAULT_INJECTION: forcing a failure.
[ 2922.328276] name failslab, interval 1, probability 0, space 0, times 0
[ 2922.331306] CPU: 1 PID: 28401 Comm: syz-executor.5 Not tainted 5.10.172 #1
[ 2922.333258] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 2922.335604] Call Trace:
[ 2922.336332]  dump_stack+0x107/0x167
[ 2922.337264]  should_fail.cold+0x5/0xa
[ 2922.338223]  ? create_object.isra.0+0x3a/0xa20
[ 2922.339374]  should_failslab+0x5/0x20
[ 2922.340314]  kmem_cache_alloc+0x5b/0x360
[ 2922.341332]  ? __mutex_lock+0x14c/0x12a0
[ 2922.342432]  create_object.isra.0+0x3a/0xa20
[ 2922.343524]  ? __kasan_kmalloc.constprop.0+0xc9/0xd0
[ 2922.344772]  kmem_cache_alloc+0x159/0x360
[ 2922.345824]  __kernfs_new_node+0xd4/0x850
[ 2922.346989]  ? kernfs_dop_revalidate+0x3a0/0x3a0
[ 2922.348224]  ? __mutex_unlock_slowpath+0xe1/0x600
[ 2922.349517]  ? wait_for_completion_io+0x270/0x270
[ 2922.350746]  ? kernfs_next_descendant_post+0x1a7/0x2a0
[ 2922.352236]  kernfs_new_node+0x93/0x120
[ 2922.353327]  __kernfs_create_file+0x51/0x350
[ 2922.354542]  sysfs_add_file_mode_ns+0x221/0x560
[ 2922.355942]  internal_create_group+0x324/0xb30
[ 2922.357308]  ? sysfs_remove_group+0x170/0x170
[ 2922.358682]  ? kernfs_name_hash+0xe7/0x110
[ 2922.360011]  ? kernfs_find_ns+0x256/0x380
[ 2922.361317]  sysfs_slab_add+0x188/0x200
[ 2922.362544]  __kmem_cache_create+0x3db/0x520
[ 2922.363734] FAT-fs (loop2): Unrecognized mount option "Z(��E�Z�"�" or missing value
[ 2922.363883]  kmem_cache_create_usercopy+0x1db/0x2f0
[ 2922.366546]  p9_client_create+0xc2b/0x1090
[ 2922.367791]  ? p9_client_flush+0x430/0x430
[ 2922.368929]  ? lockdep_init_map_type+0x2c7/0x780
[ 2922.370170]  ? rcu_read_lock_sched_held+0x3e/0x80
[ 2922.371512]  ? __raw_spin_lock_init+0x36/0x110
[ 2922.372820]  v9fs_session_init+0x1dd/0x16a0
[ 2922.374122]  ? irqentry_enter+0x26/0x60
[ 2922.375330]  ? asm_sysvec_apic_timer_interrupt+0x12/0x20
[ 2922.376943]  ? trace_hardirqs_on+0x5b/0x180
[ 2922.378224]  ? v9fs_show_options+0x690/0x690
[ 2922.379585]  ? kasan_unpoison_shadow+0x33/0x50
[ 2922.380957]  ? __kasan_kmalloc.constprop.0+0xc9/0xd0
[ 2922.382470]  v9fs_mount+0x79/0x8f0
[ 2922.383570]  ? v9fs_write_inode+0x60/0x60
[ 2922.384749]  legacy_get_tree+0x105/0x220
[ 2922.385920]  vfs_get_tree+0x8e/0x300
[ 2922.387071]  path_mount+0x13be/0x20b0
[ 2922.388210]  ? strncpy_from_user+0x9e/0x470
[ 2922.389473]  ? finish_automount+0xa40/0xa40
[ 2922.390670]  ? getname_flags.part.0+0x1dd/0x4f0
[ 2922.392015]  ? _copy_from_user+0xfb/0x1b0
[ 2922.393252]  __x64_sys_mount+0x282/0x300
[ 2922.394476]  ? copy_mnt_ns+0xa00/0xa00
[ 2922.395661]  ? rcu_read_lock_sched_held+0x3e/0x80
[ 2922.397121]  do_syscall_64+0x33/0x40
[ 2922.398192]  entry_SYSCALL_64_after_hwframe+0x61/0xc6
[ 2922.399663] RIP: 0033:0x7f38308e8b19
[ 2922.400737] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 2922.406307] RSP: 002b:00007f382de5e188 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5
[ 2922.408622] RAX: ffffffffffffffda RBX: 00007f38309fbf60 RCX: 00007f38308e8b19
[ 2922.410714] RDX: 00000000200000c0 RSI: 0000000020000040 RDI: 0000000000000000
[ 2922.412791] RBP: 00007f382de5e1d0 R08: 0000000020000280 R09: 0000000000000000
[ 2922.414923] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[ 2922.417038] R13: 00007ffca2bf07df R14: 00007f382de5e300 R15: 0000000000022000
[ 2922.473281] FAT-fs (loop0): Unrecognized mount option "./file0" or missing value
21:29:47 executing program 1:
openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x105142, 0x0)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
pipe(&(0x7f00000001c0))
mount$9p_fd(0x0, &(0x7f0000000040)='./file1\x00', &(0x7f00000000c0), 0x5000000, &(0x7f0000000280)={'trans=fd,', {}, 0x2c, {}, 0x2c, {[{@nodevmap}]}})

21:29:47 executing program 0:
syz_mount_image$vfat(&(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x0, 0x2, &(0x7f0000000180)=[{&(0x7f0000000140)="eb3c906d6b66732e66617400020801000470008400f801", 0x17}, {0x0, 0x0, 0x1000a00}], 0x0, &(0x7f0000000240)=ANY=[])
chdir(&(0x7f0000000040)='./file0\x00')
mount$cgroup(0x0, 0x0, &(0x7f0000000400), 0x0, 0x0)
r0 = syz_io_uring_setup(0x22, &(0x7f0000000680)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000180)=<r1=>0x0, &(0x7f0000002a40)=<r2=>0x0)
r3 = io_uring_register$IORING_REGISTER_PERSONALITY(r0, 0x9, 0x0, 0x0)
r4 = socket$nl_netfilter(0x10, 0x3, 0xc)
syz_io_uring_submit(r1, r2, &(0x7f0000000400)=@IORING_OP_WRITEV={0x2, 0x0, 0x0, @fd=r4, 0x0, 0x0, 0x0, 0x0, 0x0, {0x0, r3}}, 0x0)
r5 = syz_io_uring_setup(0x22, &(0x7f0000000680)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000180), &(0x7f0000002a40))
r6 = io_uring_register$IORING_REGISTER_PERSONALITY(r5, 0x9, 0x0, 0x0)
syz_io_uring_submit(r1, 0x0, &(0x7f0000000440)=@IORING_OP_FSYNC={0x3, 0x2, 0x0, @fd_index=0x9, 0x0, 0x0, 0x0, 0x0, 0x1, {0x0, r6}}, 0x2)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r7 = openat(0xffffffffffffff9c, &(0x7f00000002c0)='./file1\x00', 0x105142, 0x0)
r8 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0)
mount(&(0x7f0000000200)=ANY=[@ANYBLOB="2f6f651317868af191bdb2"], &(0x7f0000000240)='./file0\x00', &(0x7f0000000280)='nfsd\x00', 0x800000, &(0x7f0000000300)='cgroup\x00')
sendfile(r7, r8, 0x0, 0x100000001)
newfstatat(0xffffffffffffff9c, &(0x7f0000000340)='./file1\x00', &(0x7f0000000380), 0x400)

21:29:47 executing program 7:
perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
io_setup(0x7f, &(0x7f00000002c0)=<r0=>0x0)
io_pgetevents(r0, 0x1, 0x1, &(0x7f0000000000)=[{}], 0x0, 0x0)
io_submit(r0, 0x1, &(0x7f0000000340)=[&(0x7f0000000300)={0x0, 0x0, 0x0, 0x5, 0x0, 0xffffffffffffffff, 0x0}])

21:29:47 executing program 3:
openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x105142, 0x0)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x400}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
pipe(&(0x7f00000001c0)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
mount$9p_fd(0x0, &(0x7f0000000040)='./file1\x00', &(0x7f00000000c0), 0x0, &(0x7f0000000280)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {}, 0x2c, {[{@nodevmap}], [], 0x5}})
openat(r1, &(0x7f0000000180)='./file1\x00', 0x0, 0x0)

21:29:47 executing program 6:
r0 = syz_mount_image$vfat(&(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x0, 0x2, &(0x7f0000000180)=[{&(0x7f0000000140)="eb3c906d6b66732e66617400020801000470008400f801", 0x17}, {0x0, 0x0, 0x1000a00}], 0x0, &(0x7f0000000240)=ANY=[])
chdir(&(0x7f0000000040)='./file0\x00')
openat2(r0, &(0x7f0000000100)='./file0\x00', &(0x7f00000001c0)={0x40000, 0x81}, 0x18)
mount$cgroup(0x0, 0x0, &(0x7f0000000400), 0x0, 0x0)
r1 = syz_io_uring_setup(0x22, &(0x7f0000000680)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000180)=<r2=>0x0, &(0x7f0000002a40)=<r3=>0x0)
io_uring_register$IORING_REGISTER_PERSONALITY(r1, 0x9, 0x0, 0x0)
socket$nl_netfilter(0x10, 0x3, 0xc)
syz_io_uring_submit(r2, r3, 0x0, 0x0)
r4 = syz_io_uring_setup(0x22, &(0x7f0000000680)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000180), &(0x7f0000002a40))
io_uring_register$IORING_REGISTER_PERSONALITY(r4, 0x9, 0x0, 0x0)
syz_io_uring_submit(r2, 0x0, &(0x7f0000000440)=@IORING_OP_FSYNC={0x3, 0x2, 0x0, @fd_index=0x9, 0x0, 0x0, 0x0, 0x0, 0x1}, 0x2)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r5 = openat(0xffffffffffffff9c, &(0x7f00000002c0)='./file1\x00', 0x105142, 0x0)
r6 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0)
sendfile(r5, r6, 0x0, 0x100000001)
newfstatat(0xffffffffffffff9c, &(0x7f0000000340)='./file1\x00', &(0x7f0000000380), 0x400)

[ 2940.590519] 9pnet: Insufficient options for proto=fd
[ 2940.595442] 9pnet: Insufficient options for proto=fd
[ 2940.612116] FAT-fs (loop2): bogus number of reserved sectors
[ 2940.612937] FAT-fs (loop2): Can't find a valid FAT filesystem
21:29:47 executing program 5:
openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x105142, 0x0)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
pipe(&(0x7f00000001c0)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
mount$9p_fd(0x0, &(0x7f0000000040)='./file1\x00', &(0x7f00000000c0), 0x0, &(0x7f0000000280)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}}) (fail_nth: 93)
openat(0xffffffffffffffff, 0x0, 0x0, 0x0)

21:29:47 executing program 2:
syz_mount_image$vfat(&(0x7f0000000140), &(0x7f00000000c0)='./file0\x00', 0x0, 0x2, &(0x7f0000000180)=[{&(0x7f0000000000)="eb3c906d6b66732e66617400020801000470008400f801", 0x17}, {0x0, 0x0, 0x6}], 0x8, &(0x7f0000000240)=ANY=[])
mount$tmpfs(0x0, &(0x7f0000000080)='.\x00', &(0x7f00000001c0), 0x10000, &(0x7f0000000200)={[{@huge_never}, {@nr_blocks={'nr_blocks', 0x3d, [0x37, 0x6d, 0x56, 0x65, 0x74]}}, {@nr_blocks={'nr_blocks', 0x3d, [0x78]}}, {@huge_never}], [{@smackfsdef={'smackfsdef', 0x3d, '\x00'}}]})
chdir(&(0x7f0000000040)='./file0\x00')
r0 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x105142, 0x0)
ioctl$FS_IOC_RESVSP(r0, 0x40305828, &(0x7f0000000040)={0x0, 0x0, 0x0, 0x4000006})
setxattr$security_selinux(&(0x7f0000000240)='./file0\x00', &(0x7f0000000280), &(0x7f00000002c0)='system_u:object_r:newrole_exec_t:s0\x00', 0x24, 0x1)

21:29:47 executing program 4:
r0 = openat$vcs(0xffffffffffffff9c, &(0x7f0000000040), 0x0, 0x0)
openat$sr(0xffffffffffffff9c, &(0x7f00000035c0), 0x0, 0x0)
openat$sr(0xffffffffffffff9c, &(0x7f00000000c0), 0x224400, 0x0)
openat$rtc(0xffffffffffffff9c, &(0x7f0000000200), 0x0, 0x0)
pipe(&(0x7f00000001c0))
open(&(0x7f00000016c0)='./cgroup.net/cgroup.procs\x00', 0x0, 0x0)
pselect6(0x40, &(0x7f0000000180), &(0x7f00000001c0)={0x3fc}, 0x0, 0x0, 0x0)
r1 = openat$bsg(0xffffffffffffff9c, &(0x7f0000000080), 0x400200, 0x0)
ioctl$RTC_AIE_ON(r1, 0x7001)
pipe(&(0x7f00000001c0)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
io_uring_enter(r0, 0x475e, 0xe5a5, 0x2, &(0x7f0000000000)={[0xc0]}, 0x8)
mount$9p_fd(0x0, &(0x7f0000000040)='./file1\x00', &(0x7f00000000c0), 0x0, &(0x7f0000000280)={'trans=fd,', {'rfdno', 0x3d, r2}, 0x2c, {'wfdno', 0x3d, r3}, 0x2c, {[{@nodevmap}]}})
ioctl$RTC_AIE_ON(r3, 0x7001)

[ 2940.632003] 9pnet: Insufficient options for proto=fd
21:29:47 executing program 3:
openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x105142, 0x0)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x400}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
pipe(&(0x7f00000001c0)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
mount$9p_fd(0x0, &(0x7f0000000040)='./file1\x00', &(0x7f00000000c0), 0x0, &(0x7f0000000280)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {}, 0x2c, {[{@nodevmap}], [], 0x6}})
openat(r1, &(0x7f0000000180)='./file1\x00', 0x0, 0x0)

[ 2940.650684] tmpfs: Bad value for 'nr_blocks'
[ 2940.676299] 9pnet: Insufficient options for proto=fd
[ 2940.690322] 9pnet: Insufficient options for proto=fd
[ 2940.697350] FAULT_INJECTION: forcing a failure.
[ 2940.697350] name failslab, interval 1, probability 0, space 0, times 0
[ 2940.699302] CPU: 0 PID: 28463 Comm: syz-executor.5 Not tainted 5.10.172 #1
[ 2940.700200] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 2940.701240] Call Trace:
[ 2940.701599]  dump_stack+0x107/0x167
[ 2940.702095]  should_fail.cold+0x5/0xa
[ 2940.702601]  ? create_object.isra.0+0x3a/0xa20
[ 2940.703199]  should_failslab+0x5/0x20
[ 2940.703713]  kmem_cache_alloc+0x5b/0x360
[ 2940.704664]  create_object.isra.0+0x3a/0xa20
[ 2940.705853]  ? __kasan_kmalloc.constprop.0+0xc9/0xd0
[ 2940.707077]  kmem_cache_alloc+0x159/0x360
[ 2940.708257]  __kernfs_new_node+0xd4/0x850
[ 2940.709446]  ? kernfs_dop_revalidate+0x3a0/0x3a0
[ 2940.710811]  ? __mutex_unlock_slowpath+0xe1/0x600
[ 2940.712111]  ? wait_for_completion_io+0x270/0x270
[ 2940.713415]  ? kernfs_next_descendant_post+0x1a7/0x2a0
[ 2940.714975]  kernfs_new_node+0x93/0x120
[ 2940.716212]  __kernfs_create_file+0x51/0x350
[ 2940.717565]  sysfs_add_file_mode_ns+0x221/0x560
[ 2940.718968]  internal_create_group+0x324/0xb30
[ 2940.720290]  ? sysfs_remove_group+0x170/0x170
[ 2940.721617]  ? kernfs_name_hash+0xe7/0x110
[ 2940.722318]  ? kernfs_find_ns+0x256/0x380
[ 2940.723553]  sysfs_slab_add+0x188/0x200
[ 2940.724638]  __kmem_cache_create+0x3db/0x520
[ 2940.725814]  kmem_cache_create_usercopy+0x1db/0x2f0
[ 2940.727242]  p9_client_create+0xc2b/0x1090
[ 2940.728504]  ? p9_client_flush+0x430/0x430
[ 2940.729568]  ? lockdep_init_map_type+0x2c7/0x780
[ 2940.730711]  ? rcu_read_lock_sched_held+0x3e/0x80
[ 2940.732020]  ? __raw_spin_lock_init+0x36/0x110
[ 2940.733168]  v9fs_session_init+0x1dd/0x16a0
[ 2940.734373]  ? kmem_cache_alloc_trace+0x151/0x360
[ 2940.735783]  ? v9fs_show_options+0x690/0x690
[ 2940.737042]  ? kasan_unpoison_shadow+0x33/0x50
[ 2940.738085]  ? __kasan_kmalloc.constprop.0+0xc9/0xd0
[ 2940.739245]  v9fs_mount+0x79/0x8f0
[ 2940.740244]  ? v9fs_write_inode+0x60/0x60
[ 2940.741260]  legacy_get_tree+0x105/0x220
[ 2940.742235]  vfs_get_tree+0x8e/0x300
[ 2940.743104]  path_mount+0x13be/0x20b0
[ 2940.744192]  ? strncpy_from_user+0x9e/0x470
[ 2940.744896]  ? finish_automount+0xa40/0xa40
[ 2940.745480]  ? getname_flags.part.0+0x1dd/0x4f0
[ 2940.746716]  ? _copy_from_user+0xfb/0x1b0
[ 2940.747809]  __x64_sys_mount+0x282/0x300
[ 2940.748829]  ? copy_mnt_ns+0xa00/0xa00
[ 2940.749736]  ? rcu_read_lock_sched_held+0x3e/0x80
[ 2940.750964]  do_syscall_64+0x33/0x40
[ 2940.751897]  entry_SYSCALL_64_after_hwframe+0x61/0xc6
[ 2940.753153] RIP: 0033:0x7f38308e8b19
[ 2940.753950] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 2940.756374] RSP: 002b:00007f382de5e188 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5
[ 2940.757761] RAX: ffffffffffffffda RBX: 00007f38309fbf60 RCX: 00007f38308e8b19
[ 2940.759759] RDX: 00000000200000c0 RSI: 0000000020000040 RDI: 0000000000000000
[ 2940.761745] RBP: 00007f382de5e1d0 R08: 0000000020000280 R09: 0000000000000000
[ 2940.763408] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[ 2940.765421] R13: 00007ffca2bf07df R14: 00007f382de5e300 R15: 0000000000022000
[ 2940.776124] FAT-fs (loop2): Unrecognized mount option "./file0" or missing value
[ 2940.791258] tmpfs: Bad value for 'nr_blocks'
21:29:47 executing program 1:
openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x105142, 0x0)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
pipe(&(0x7f00000001c0))
mount$9p_fd(0x0, &(0x7f0000000040)='./file1\x00', &(0x7f00000000c0), 0x6000000, &(0x7f0000000280)={'trans=fd,', {}, 0x2c, {}, 0x2c, {[{@nodevmap}]}})

[ 2940.883161] 9pnet: Insufficient options for proto=fd
21:30:05 executing program 3:
openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x105142, 0x0)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x400}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
pipe(&(0x7f00000001c0)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
mount$9p_fd(0x0, &(0x7f0000000040)='./file1\x00', &(0x7f00000000c0), 0x0, &(0x7f0000000280)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {}, 0x2c, {[{@nodevmap}], [], 0x7}})
openat(r1, &(0x7f0000000180)='./file1\x00', 0x0, 0x0)

21:30:05 executing program 7:
perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
io_setup(0x7f, &(0x7f00000002c0)=<r0=>0x0)
io_pgetevents(r0, 0x1, 0x1, &(0x7f0000000000)=[{}], 0x0, 0x0)
io_submit(r0, 0x1, &(0x7f0000000340)=[&(0x7f0000000300)={0x0, 0x0, 0x0, 0x5, 0x0, 0xffffffffffffffff, 0x0}])

21:30:05 executing program 5:
openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x105142, 0x0)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
pipe(&(0x7f00000001c0)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
mount$9p_fd(0x0, &(0x7f0000000040)='./file1\x00', &(0x7f00000000c0), 0x0, &(0x7f0000000280)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}}) (fail_nth: 94)
openat(0xffffffffffffffff, 0x0, 0x0, 0x0)

21:30:05 executing program 6:
r0 = syz_mount_image$vfat(&(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x0, 0x2, &(0x7f0000000180)=[{&(0x7f0000000140)="eb3c906d6b66732e66617400020801000470008400f801", 0x17}, {0x0, 0x0, 0x1000a00}], 0x0, &(0x7f0000000240)=ANY=[])
chdir(&(0x7f0000000040)='./file0\x00')
openat2(r0, &(0x7f0000000100)='./file0\x00', &(0x7f00000001c0)={0x40000, 0x81}, 0x18)
mount$cgroup(0x0, 0x0, &(0x7f0000000400), 0x0, 0x0)
r1 = syz_io_uring_setup(0x22, &(0x7f0000000680)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000180)=<r2=>0x0, &(0x7f0000002a40)=<r3=>0x0)
io_uring_register$IORING_REGISTER_PERSONALITY(r1, 0x9, 0x0, 0x0)
socket$nl_netfilter(0x10, 0x3, 0xc)
syz_io_uring_submit(r2, r3, 0x0, 0x0)
r4 = syz_io_uring_setup(0x22, &(0x7f0000000680)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000180), &(0x7f0000002a40))
io_uring_register$IORING_REGISTER_PERSONALITY(r4, 0x9, 0x0, 0x0)
syz_io_uring_submit(r2, 0x0, &(0x7f0000000440)=@IORING_OP_FSYNC={0x3, 0x2, 0x0, @fd_index=0x9, 0x0, 0x0, 0x0, 0x0, 0x1}, 0x2)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r5 = openat(0xffffffffffffff9c, &(0x7f00000002c0)='./file1\x00', 0x105142, 0x0)
r6 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0)
sendfile(r5, r6, 0x0, 0x100000001)
newfstatat(0xffffffffffffff9c, &(0x7f0000000340)='./file1\x00', &(0x7f0000000380), 0x400)

21:30:05 executing program 2:
syz_mount_image$vfat(&(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x0, 0x2, &(0x7f0000000180)=[{&(0x7f0000000140)="eb3c906d6b66732e66617400020801000470008400f801", 0x17}, {0x0, 0x0, 0x1000a00}], 0x0, &(0x7f0000000240)=ANY=[])
chdir(&(0x7f0000000040)='./file0\x00')
r0 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x105142, 0x0)
ioctl$FS_IOC_RESVSP(r0, 0x40305828, &(0x7f0000000040)={0x0, 0x0, 0x0, 0x4000006})
setxattr$security_evm(&(0x7f0000000000)='./file0\x00', &(0x7f00000001c0), &(0x7f0000000200)=@v1={0x2, "e8c1f2d9e752c5f7a67614eface6b0"}, 0x10, 0x2)

21:30:05 executing program 0:
syz_mount_image$vfat(&(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x0, 0x2, &(0x7f0000000180)=[{&(0x7f0000000140)="eb3c906d6b66732e66617400020801000470008400f801", 0x17}, {0x0, 0x0, 0x1000a00}], 0x0, &(0x7f0000000240)=ANY=[])
chdir(&(0x7f0000000040)='./file0\x00')
mount$cgroup(0x0, 0x0, &(0x7f0000000400), 0x0, 0x0)
r0 = syz_io_uring_setup(0x22, &(0x7f0000000680)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000180)=<r1=>0x0, &(0x7f0000002a40)=<r2=>0x0)
r3 = io_uring_register$IORING_REGISTER_PERSONALITY(r0, 0x9, 0x0, 0x0)
r4 = socket$nl_netfilter(0x10, 0x3, 0xc)
syz_io_uring_submit(r1, r2, &(0x7f0000000400)=@IORING_OP_WRITEV={0x2, 0x0, 0x0, @fd=r4, 0x0, 0x0, 0x0, 0x0, 0x0, {0x0, r3}}, 0x0)
r5 = syz_io_uring_setup(0x22, &(0x7f0000000680)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000180), &(0x7f0000002a40))
r6 = io_uring_register$IORING_REGISTER_PERSONALITY(r5, 0x9, 0x0, 0x0)
syz_io_uring_submit(r1, 0x0, &(0x7f0000000440)=@IORING_OP_FSYNC={0x3, 0x2, 0x0, @fd_index=0x9, 0x0, 0x0, 0x0, 0x0, 0x1, {0x0, r6}}, 0x2)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r7 = openat(0xffffffffffffff9c, &(0x7f00000002c0)='./file1\x00', 0x105142, 0x0)
r8 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0)
mount(&(0x7f0000000200)=ANY=[@ANYBLOB="2f6f651317868af191bdb2"], &(0x7f0000000240)='./file0\x00', &(0x7f0000000280)='nfsd\x00', 0x800000, &(0x7f0000000300)='cgroup\x00')
sendfile(r7, r8, 0x0, 0x100000001)
newfstatat(0xffffffffffffff9c, &(0x7f0000000340)='./file1\x00', &(0x7f0000000380), 0x400)

21:30:05 executing program 1:
openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x105142, 0x0)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
pipe(&(0x7f00000001c0))
mount$9p_fd(0x0, &(0x7f0000000040)='./file1\x00', &(0x7f00000000c0), 0x7000000, &(0x7f0000000280)={'trans=fd,', {}, 0x2c, {}, 0x2c, {[{@nodevmap}]}})

21:30:05 executing program 4:
r0 = openat$vcs(0xffffffffffffff9c, &(0x7f0000000040), 0x0, 0x0)
openat$sr(0xffffffffffffff9c, &(0x7f00000035c0), 0x0, 0x0)
openat$sr(0xffffffffffffff9c, &(0x7f00000000c0), 0x224400, 0x0)
ioctl$AUTOFS_DEV_IOCTL_VERSION(r0, 0xc0189371, &(0x7f0000000080)={{0x1, 0x1, 0x18, <r1=>r0}, './cgroup.net/cgroup.procs\x00'})
perf_event_open(&(0x7f0000000100)={0x2, 0x80, 0x20, 0x2d, 0x0, 0x7, 0x0, 0x9, 0x10, 0x0, 0x1, 0x0, 0x0, 0x0, 0x1, 0x0, 0x1, 0x0, 0x1, 0x0, 0x1, 0x0, 0x0, 0x0, 0x1, 0x0, 0x1, 0x1, 0x0, 0x1, 0x0, 0x1, 0x0, 0x0, 0x0, 0x1, 0x1, 0x1, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x1, 0x0, 0x81, 0xa, @perf_bp={&(0x7f0000000000), 0x10}, 0x48008, 0x6e7e, 0x1, 0x7, 0x5, 0xffff, 0x5, 0x0, 0xca, 0x0, 0x4}, 0xffffffffffffffff, 0xffffffffffffffff, r1, 0x1)
openat$rtc(0xffffffffffffff9c, &(0x7f0000000200), 0x0, 0x0)
pipe(&(0x7f00000001c0))
open(&(0x7f00000016c0)='./cgroup.net/cgroup.procs\x00', 0x0, 0x0)
pselect6(0x40, &(0x7f0000000180), &(0x7f00000001c0)={0x3fc}, 0x0, 0x0, 0x0)

[ 2958.566123] 9pnet: Insufficient options for proto=fd
[ 2958.606582] 9pnet: Insufficient options for proto=fd
[ 2958.640847] 9pnet: Insufficient options for proto=fd
[ 2958.652430] FAULT_INJECTION: forcing a failure.
[ 2958.652430] name failslab, interval 1, probability 0, space 0, times 0
[ 2958.654255] CPU: 1 PID: 28710 Comm: syz-executor.5 Not tainted 5.10.172 #1
[ 2958.655130] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 2958.656182] Call Trace:
[ 2958.656531]  dump_stack+0x107/0x167
[ 2958.657014]  should_fail.cold+0x5/0xa
[ 2958.657521]  ? __kernfs_new_node+0xd4/0x850
[ 2958.658091]  should_failslab+0x5/0x20
[ 2958.658597]  kmem_cache_alloc+0x5b/0x360
[ 2958.659152]  __kernfs_new_node+0xd4/0x850
[ 2958.659754]  ? kernfs_dop_revalidate+0x3a0/0x3a0
[ 2958.660397]  ? __mutex_unlock_slowpath+0xe1/0x600
[ 2958.661045]  ? wait_for_completion_io+0x270/0x270
[ 2958.661683]  ? kernfs_next_descendant_post+0x1a7/0x2a0
[ 2958.662389]  kernfs_new_node+0x93/0x120
[ 2958.662926]  __kernfs_create_file+0x51/0x350
[ 2958.663517]  sysfs_add_file_mode_ns+0x221/0x560
[ 2958.664165]  internal_create_group+0x324/0xb30
[ 2958.664772]  ? sysfs_remove_group+0x170/0x170
[ 2958.665364]  ? kernfs_find_ns+0x256/0x380
[ 2958.665931]  sysfs_slab_add+0x188/0x200
[ 2958.666466]  __kmem_cache_create+0x3db/0x520
[ 2958.667057]  kmem_cache_create_usercopy+0x1db/0x2f0
[ 2958.667779]  p9_client_create+0xc2b/0x1090
[ 2958.668344]  ? p9_client_flush+0x430/0x430
[ 2958.668926]  ? lockdep_init_map_type+0x2c7/0x780
[ 2958.669548]  ? rcu_read_lock_sched_held+0x3e/0x80
[ 2958.670190]  ? __raw_spin_lock_init+0x36/0x110
[ 2958.670812]  v9fs_session_init+0x1dd/0x16a0
[ 2958.671389]  ? irqentry_enter+0x26/0x60
[ 2958.671956]  ? asm_sysvec_apic_timer_interrupt+0x12/0x20
[ 2958.672673]  ? trace_hardirqs_on+0x5b/0x180
[ 2958.673256]  ? v9fs_show_options+0x690/0x690
[ 2958.673861]  ? kasan_unpoison_shadow+0x33/0x50
[ 2958.674464]  ? __kasan_kmalloc.constprop.0+0xc9/0xd0
[ 2958.675146]  v9fs_mount+0x79/0x8f0
[ 2958.675648]  ? v9fs_write_inode+0x60/0x60
[ 2958.676221]  legacy_get_tree+0x105/0x220
[ 2958.676798]  vfs_get_tree+0x8e/0x300
[ 2958.677297]  path_mount+0x13be/0x20b0
[ 2958.677810]  ? strncpy_from_user+0x9e/0x470
[ 2958.678388]  ? finish_automount+0xa40/0xa40
[ 2958.678962]  ? getname_flags.part.0+0x1dd/0x4f0
[ 2958.679614]  ? _copy_from_user+0xfb/0x1b0
[ 2958.680174]  __x64_sys_mount+0x282/0x300
[ 2958.680720]  ? copy_mnt_ns+0xa00/0xa00
[ 2958.681240]  ? rcu_read_lock_sched_held+0x3e/0x80
[ 2958.681879]  do_syscall_64+0x33/0x40
[ 2958.682378]  entry_SYSCALL_64_after_hwframe+0x61/0xc6
[ 2958.683055] RIP: 0033:0x7f38308e8b19
[ 2958.683547] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 2958.685974] RSP: 002b:00007f382de5e188 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5
[ 2958.686977] RAX: ffffffffffffffda RBX: 00007f38309fbf60 RCX: 00007f38308e8b19
[ 2958.687937] RDX: 00000000200000c0 RSI: 0000000020000040 RDI: 0000000000000000
[ 2958.688871] RBP: 00007f382de5e1d0 R08: 0000000020000280 R09: 0000000000000000
[ 2958.689826] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[ 2958.690779] R13: 00007ffca2bf07df R14: 00007f382de5e300 R15: 0000000000022000
21:30:05 executing program 1:
openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x105142, 0x0)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
pipe(&(0x7f00000001c0))
mount$9p_fd(0x0, &(0x7f0000000040)='./file1\x00', &(0x7f00000000c0), 0x8000000, &(0x7f0000000280)={'trans=fd,', {}, 0x2c, {}, 0x2c, {[{@nodevmap}]}})

[ 2958.740505] 9pnet: Insufficient options for proto=fd
21:30:05 executing program 3:
openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x105142, 0x0)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x400}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
pipe(&(0x7f00000001c0)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
mount$9p_fd(0x0, &(0x7f0000000040)='./file1\x00', &(0x7f00000000c0), 0x0, &(0x7f0000000280)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {}, 0x2c, {[{@nodevmap}], [], 0x8}})
openat(r1, &(0x7f0000000180)='./file1\x00', 0x0, 0x0)

[ 2958.850517] 9pnet: Insufficient options for proto=fd
[ 2958.854122] kmem_cache_create(9p-fcall-cache) failed with error -12
[ 2958.856117] CPU: 1 PID: 28710 Comm: syz-executor.5 Not tainted 5.10.172 #1
[ 2958.857007] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 2958.858424] Call Trace:
[ 2958.858842]  dump_stack+0x107/0x167
[ 2958.859613]  kmem_cache_create_usercopy.cold+0x17/0x65
[ 2958.861190]  p9_client_create+0xc2b/0x1090
[ 2958.862345]  ? p9_client_flush+0x430/0x430
[ 2958.863482]  ? lockdep_init_map_type+0x2c7/0x780
[ 2958.864808]  ? rcu_read_lock_sched_held+0x3e/0x80
[ 2958.866274]  ? __raw_spin_lock_init+0x36/0x110
[ 2958.867660]  v9fs_session_init+0x1dd/0x16a0
[ 2958.868405] 9pnet: Insufficient options for proto=fd
21:30:05 executing program 0:
syz_mount_image$vfat(&(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x0, 0x2, &(0x7f0000000180)=[{&(0x7f0000000140)="eb3c906d6b66732e66617400020801000470008400f801", 0x17}, {0x0, 0x0, 0x1000a00}], 0x0, &(0x7f0000000240)=ANY=[])
chdir(&(0x7f0000000040)='./file0\x00')
mount$cgroup(0x0, 0x0, &(0x7f0000000400), 0x0, 0x0)
r0 = syz_io_uring_setup(0x22, &(0x7f0000000680)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000180)=<r1=>0x0, &(0x7f0000002a40)=<r2=>0x0)
r3 = io_uring_register$IORING_REGISTER_PERSONALITY(r0, 0x9, 0x0, 0x0)
r4 = socket$nl_netfilter(0x10, 0x3, 0xc)
syz_io_uring_submit(r1, r2, &(0x7f0000000400)=@IORING_OP_WRITEV={0x2, 0x0, 0x0, @fd=r4, 0x0, 0x0, 0x0, 0x0, 0x0, {0x0, r3}}, 0x0)
r5 = syz_io_uring_setup(0x22, &(0x7f0000000680)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000180), &(0x7f0000002a40))
r6 = io_uring_register$IORING_REGISTER_PERSONALITY(r5, 0x9, 0x0, 0x0)
syz_io_uring_submit(r1, 0x0, &(0x7f0000000440)=@IORING_OP_FSYNC={0x3, 0x2, 0x0, @fd_index=0x9, 0x0, 0x0, 0x0, 0x0, 0x1, {0x0, r6}}, 0x2)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r7 = openat(0xffffffffffffff9c, &(0x7f00000002c0)='./file1\x00', 0x105142, 0x0)
r8 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0)
mount(&(0x7f0000000200)=ANY=[@ANYBLOB="2f6f651317868af191bdb2"], &(0x7f0000000240)='./file0\x00', &(0x7f0000000280)='nfsd\x00', 0x800000, &(0x7f0000000300)='cgroup\x00')
sendfile(r7, r8, 0x0, 0x100000001)
newfstatat(0xffffffffffffff9c, &(0x7f0000000340)='./file1\x00', &(0x7f0000000380), 0x400)

[ 2958.868951]  ? irqentry_enter+0x26/0x60
[ 2958.868975]  ? asm_sysvec_apic_timer_interrupt+0x12/0x20
[ 2958.868990]  ? trace_hardirqs_on+0x5b/0x180
[ 2958.869006]  ? v9fs_show_options+0x690/0x690
[ 2958.869038]  ? kasan_unpoison_shadow+0x33/0x50
[ 2958.881763]  ? __kasan_kmalloc.constprop.0+0xc9/0xd0
[ 2958.883318]  v9fs_mount+0x79/0x8f0
[ 2958.884426]  ? v9fs_write_inode+0x60/0x60
[ 2958.885757]  legacy_get_tree+0x105/0x220
[ 2958.886981]  vfs_get_tree+0x8e/0x300
[ 2958.888108]  path_mount+0x13be/0x20b0
[ 2958.889260]  ? strncpy_from_user+0x9e/0x470
[ 2958.890634]  ? finish_automount+0xa40/0xa40
[ 2958.891984]  ? getname_flags.part.0+0x1dd/0x4f0
[ 2958.893360]  ? _copy_from_user+0xfb/0x1b0
[ 2958.894581]  __x64_sys_mount+0x282/0x300
[ 2958.895834]  ? copy_mnt_ns+0xa00/0xa00
[ 2958.896983]  ? rcu_read_lock_sched_held+0x3e/0x80
[ 2958.898416]  do_syscall_64+0x33/0x40
[ 2958.899450]  entry_SYSCALL_64_after_hwframe+0x61/0xc6
[ 2958.900875] RIP: 0033:0x7f38308e8b19
[ 2958.901880] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 2958.907041] RSP: 002b:00007f382de5e188 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5
[ 2958.909379] RAX: ffffffffffffffda RBX: 00007f38309fbf60 RCX: 00007f38308e8b19
[ 2958.911446] RDX: 00000000200000c0 RSI: 0000000020000040 RDI: 0000000000000000
21:30:05 executing program 3:
openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x105142, 0x0)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x400}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
pipe(&(0x7f00000001c0)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
mount$9p_fd(0x0, &(0x7f0000000040)='./file1\x00', &(0x7f00000000c0), 0x0, &(0x7f0000000280)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {}, 0x2c, {[{@nodevmap}], [], 0x9}})
openat(r1, &(0x7f0000000180)='./file1\x00', 0x0, 0x0)

[ 2958.913598] RBP: 00007f382de5e1d0 R08: 0000000020000280 R09: 0000000000000000
[ 2958.915893] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[ 2958.917932] R13: 00007ffca2bf07df R14: 00007f382de5e300 R15: 0000000000022000
[ 2959.008294] 9pnet: Insufficient options for proto=fd
[ 2959.041093] 9pnet: Insufficient options for proto=fd
[ 2959.083123] 9pnet: Insufficient options for proto=fd
21:30:05 executing program 4:
openat$vcs(0xffffffffffffff9c, &(0x7f0000000040), 0x0, 0x0)
r0 = openat$sr(0xffffffffffffff9c, &(0x7f00000035c0), 0x0, 0x0)
ioctl$ifreq_SIOCGIFINDEX_vcan(r0, 0x8933, &(0x7f0000000340)={'vcan0\x00'})
r1 = openat$sr(0xffffffffffffff9c, &(0x7f00000000c0), 0x224400, 0x0)
r2 = io_uring_register$IORING_REGISTER_PERSONALITY(0xffffffffffffffff, 0x9, 0x0, 0x0)
syz_io_uring_submit(0x0, 0x0, &(0x7f0000000080)=@IORING_OP_TIMEOUT_REMOVE={0xc, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, {0x0, r2}}, 0x7f)
syz_io_uring_submit(0x0, 0x0, &(0x7f00000004c0)=@IORING_OP_OPENAT2={0x1c, 0x2, 0x0, 0xffffffffffffffff, &(0x7f0000000440)={0x400800, 0x10, 0xf}, &(0x7f0000000480)='./file1\x00', 0x18, 0x0, 0x23456, {0x0, r2}}, 0x9)
openat$rtc(0xffffffffffffff9c, &(0x7f0000000200), 0x0, 0x0)
pipe(&(0x7f00000001c0)={0xffffffffffffffff, <r3=>0xffffffffffffffff})
r4 = fsmount(r1, 0x1, 0x1)
mount$9p_fd(0x0, &(0x7f0000000400)='./cgroup.net/cgroup.procs\x00', &(0x7f00000000c0), 0x20, &(0x7f0000000380)={'trans=fd,', {'rfdno', 0x3d, r4}, 0x2c, {'wfdno', 0x3d, r3}, 0x2c, {[{@nodevmap}, {@noextend}, {@noextend}]}})
write$bt_hci(r3, &(0x7f0000000140)={0x1, @remote_name_req_cancel={{0x41a, 0x6}}}, 0xa)
pipe(&(0x7f00000001c0)={0xffffffffffffffff, <r5=>0xffffffffffffffff})
open(&(0x7f00000016c0)='./cgroup.net/cgroup.procs\x00', 0x0, 0x0)
pipe(&(0x7f00000001c0)={<r6=>0xffffffffffffffff, <r7=>0xffffffffffffffff})
mount$9p_fd(0x0, &(0x7f0000000040)='./file1\x00', &(0x7f00000000c0), 0x0, &(0x7f0000000280)={'trans=fd,', {'rfdno', 0x3d, r6}, 0x2c, {'wfdno', 0x3d, r7}, 0x2c, {[{@nodevmap}]}})
stat(&(0x7f0000000100)='./cgroup.net/cgroup.procs\x00', &(0x7f0000001c00)={0x0, 0x0, 0x0, 0x0, <r8=>0x0})
setresuid(0xffffffffffffffff, r8, 0x0)
mount$9p_fd(0x0, &(0x7f0000000000)='./cgroup.net/cgroup.procs\x00', &(0x7f0000000080), 0x1000000, &(0x7f0000000240)={'trans=fd,', {'rfdno', 0x3d, r6}, 0x2c, {'wfdno', 0x3d, r5}, 0x2c, {[{@access_user}], [{@obj_type}, {@dont_measure}, {@hash}, {@appraise_type}, {@smackfshat={'smackfshat', 0x3d, '/dev/rtc0\x00'}}, {@uid_gt={'uid>', 0xee01}}, {@hash}, {@smackfshat={'smackfshat', 0x3d, '/dev/vcs\x00'}}, {@fowner_eq={'fowner', 0x3d, r8}}]}})
pselect6(0x40, &(0x7f0000000180), &(0x7f00000001c0)={0x3fc}, 0x0, 0x0, 0x0)

21:30:05 executing program 1:
openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x105142, 0x0)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
pipe(&(0x7f00000001c0))
mount$9p_fd(0x0, &(0x7f0000000040)='./file1\x00', &(0x7f00000000c0), 0x9000000, &(0x7f0000000280)={'trans=fd,', {}, 0x2c, {}, 0x2c, {[{@nodevmap}]}})

21:30:05 executing program 6:
r0 = syz_mount_image$vfat(&(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x0, 0x2, &(0x7f0000000180)=[{&(0x7f0000000140)="eb3c906d6b66732e66617400020801000470008400f801", 0x17}, {0x0, 0x0, 0x1000a00}], 0x0, &(0x7f0000000240)=ANY=[])
chdir(&(0x7f0000000040)='./file0\x00')
openat2(r0, &(0x7f0000000100)='./file0\x00', &(0x7f00000001c0)={0x40000, 0x81}, 0x18)
mount$cgroup(0x0, 0x0, &(0x7f0000000400), 0x0, 0x0)
r1 = syz_io_uring_setup(0x22, &(0x7f0000000680)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000180)=<r2=>0x0, &(0x7f0000002a40)=<r3=>0x0)
io_uring_register$IORING_REGISTER_PERSONALITY(r1, 0x9, 0x0, 0x0)
socket$nl_netfilter(0x10, 0x3, 0xc)
syz_io_uring_submit(r2, r3, 0x0, 0x0)
r4 = syz_io_uring_setup(0x22, &(0x7f0000000680)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000180), &(0x7f0000002a40))
io_uring_register$IORING_REGISTER_PERSONALITY(r4, 0x9, 0x0, 0x0)
syz_io_uring_submit(r2, 0x0, &(0x7f0000000440)=@IORING_OP_FSYNC={0x3, 0x2, 0x0, @fd_index=0x9, 0x0, 0x0, 0x0, 0x0, 0x1}, 0x2)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r5 = openat(0xffffffffffffff9c, &(0x7f00000002c0)='./file1\x00', 0x105142, 0x0)
r6 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0)
sendfile(r5, r6, 0x0, 0x100000001)
newfstatat(0xffffffffffffff9c, &(0x7f0000000340)='./file1\x00', &(0x7f0000000380), 0x400)

21:30:05 executing program 2:
r0 = syz_mount_image$vfat(&(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x0, 0x2, &(0x7f0000000180)=[{&(0x7f0000000140)="eb3c906d6b66732e66617400020801000470008400f801", 0x17}, {0x0, 0x0, 0x1000a00}], 0x0, &(0x7f0000000240)=ANY=[])
chdir(&(0x7f0000000040)='./file0\x00')
pipe(&(0x7f00000001c0)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
mount$9p_fd(0x0, &(0x7f0000000040)='./file1\x00', &(0x7f00000000c0), 0x0, &(0x7f0000000300)=ANY=[@ANYBLOB="002ffcb20260df57f05d8871ea2c18628aaf46227e0eee003aab72160262f166b8136db52ad39dd6e9dec328b9df0015", @ANYRESHEX=r1, @ANYBLOB=',wfdno=', @ANYRESHEX=r2, @ANYBLOB=',nodevmap,\x00'])
mkdirat(r1, &(0x7f0000000240)='./file0\x00', 0x18d)
r3 = fcntl$dupfd(r0, 0x406, r0)
r4 = openat2(r0, &(0x7f0000000000)='./file0\x00', &(0x7f00000001c0)={0x202600, 0x184, 0x4}, 0x18)
ioctl$AUTOFS_DEV_IOCTL_EXPIRE(r3, 0xc018937c, &(0x7f0000000200)={{0x1, 0x1, 0x18, r4, {0x4}}, './file0\x00'})
r5 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x105142, 0x0)
ioctl$FS_IOC_RESVSP(r5, 0x40305828, &(0x7f0000000040)={0x0, 0x0, 0x0, 0x4000006})

21:30:05 executing program 5:
openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x105142, 0x0)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
pipe(&(0x7f00000001c0)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
mount$9p_fd(0x0, &(0x7f0000000040)='./file1\x00', &(0x7f00000000c0), 0x0, &(0x7f0000000280)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}}) (fail_nth: 95)
openat(0xffffffffffffffff, 0x0, 0x0, 0x0)

[ 2959.253124] FAULT_INJECTION: forcing a failure.
[ 2959.253124] name failslab, interval 1, probability 0, space 0, times 0
[ 2959.257105] CPU: 1 PID: 29018 Comm: syz-executor.5 Not tainted 5.10.172 #1
[ 2959.259138] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 2959.261568] Call Trace:
[ 2959.262341]  dump_stack+0x107/0x167
[ 2959.263395]  should_fail.cold+0x5/0xa
[ 2959.264586]  ? create_object.isra.0+0x3a/0xa20
[ 2959.265962]  should_failslab+0x5/0x20
[ 2959.267082]  kmem_cache_alloc+0x5b/0x360
[ 2959.268310]  create_object.isra.0+0x3a/0xa20
[ 2959.269575]  ? __kasan_kmalloc.constprop.0+0xc9/0xd0
[ 2959.271069]  kmem_cache_alloc+0x159/0x360
[ 2959.272336]  __kernfs_new_node+0xd4/0x850
[ 2959.273578]  ? kernfs_dop_revalidate+0x3a0/0x3a0
[ 2959.275008]  ? __mutex_unlock_slowpath+0xe1/0x600
[ 2959.276495]  ? wait_for_completion_io+0x270/0x270
[ 2959.277910]  ? kernfs_next_descendant_post+0x1a7/0x2a0
[ 2959.279441]  kernfs_new_node+0x93/0x120
[ 2959.280656]  __kernfs_create_file+0x51/0x350
[ 2959.281906]  sysfs_add_file_mode_ns+0x221/0x560
[ 2959.283286]  internal_create_group+0x324/0xb30
[ 2959.288831]  ? sysfs_remove_group+0x170/0x170
[ 2959.290194]  ? kernfs_name_hash+0xe7/0x110
[ 2959.291447]  ? kernfs_find_ns+0x256/0x380
[ 2959.296857]  sysfs_slab_add+0x188/0x200
[ 2959.297943]  __kmem_cache_create+0x3db/0x520
[ 2959.299125]  kmem_cache_create_usercopy+0x1db/0x2f0
[ 2959.300515]  p9_client_create+0xc2b/0x1090
[ 2959.301653]  ? p9_client_flush+0x430/0x430
[ 2959.302912]  ? lockdep_init_map_type+0x2c7/0x780
[ 2959.304361]  ? rcu_read_lock_sched_held+0x3e/0x80
[ 2959.305753]  ? __raw_spin_lock_init+0x36/0x110
[ 2959.307076]  v9fs_session_init+0x1dd/0x16a0
[ 2959.308394]  ? kmem_cache_alloc_trace+0x151/0x360
[ 2959.309858]  ? v9fs_show_options+0x690/0x690
[ 2959.311168]  ? kasan_unpoison_shadow+0x33/0x50
[ 2959.312568]  ? __kasan_kmalloc.constprop.0+0xc9/0xd0
[ 2959.314104]  v9fs_mount+0x79/0x8f0
[ 2959.315144]  ? v9fs_write_inode+0x60/0x60
[ 2959.320549]  legacy_get_tree+0x105/0x220
[ 2959.321755]  vfs_get_tree+0x8e/0x300
[ 2959.322842]  path_mount+0x13be/0x20b0
[ 2959.324010]  ? strncpy_from_user+0x9e/0x470
[ 2959.325247]  ? finish_automount+0xa40/0xa40
[ 2959.326491]  ? getname_flags.part.0+0x1dd/0x4f0
[ 2959.327880]  ? _copy_from_user+0xfb/0x1b0
[ 2959.329056]  __x64_sys_mount+0x282/0x300
[ 2959.330275]  ? copy_mnt_ns+0xa00/0xa00
[ 2959.331377]  ? rcu_read_lock_sched_held+0x3e/0x80
[ 2959.332773]  do_syscall_64+0x33/0x40
[ 2959.333822]  entry_SYSCALL_64_after_hwframe+0x61/0xc6
[ 2959.335323] RIP: 0033:0x7f38308e8b19
[ 2959.344561] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 2959.352526] RSP: 002b:00007f382de5e188 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5
[ 2959.354749] RAX: ffffffffffffffda RBX: 00007f38309fbf60 RCX: 00007f38308e8b19
[ 2959.356895] RDX: 00000000200000c0 RSI: 0000000020000040 RDI: 0000000000000000
[ 2959.358993] RBP: 00007f382de5e1d0 R08: 0000000020000280 R09: 0000000000000000
[ 2959.361085] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[ 2959.362988] R13: 00007ffca2bf07df R14: 00007f382de5e300 R15: 0000000000022000
21:30:23 executing program 6:
r0 = syz_mount_image$vfat(&(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x0, 0x2, &(0x7f0000000180)=[{&(0x7f0000000140)="eb3c906d6b66732e66617400020801000470008400f801", 0x17}, {0x0, 0x0, 0x1000a00}], 0x0, &(0x7f0000000240)=ANY=[])
chdir(&(0x7f0000000040)='./file0\x00')
openat2(r0, &(0x7f0000000100)='./file0\x00', &(0x7f00000001c0)={0x40000, 0x81}, 0x18)
mount$cgroup(0x0, 0x0, &(0x7f0000000400), 0x0, 0x0)
r1 = syz_io_uring_setup(0x22, &(0x7f0000000680)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000180)=<r2=>0x0, &(0x7f0000002a40)=<r3=>0x0)
io_uring_register$IORING_REGISTER_PERSONALITY(r1, 0x9, 0x0, 0x0)
socket$nl_netfilter(0x10, 0x3, 0xc)
syz_io_uring_submit(r2, r3, 0x0, 0x0)
r4 = syz_io_uring_setup(0x22, &(0x7f0000000680)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000180), &(0x7f0000002a40))
r5 = io_uring_register$IORING_REGISTER_PERSONALITY(r4, 0x9, 0x0, 0x0)
syz_io_uring_submit(r2, 0x0, &(0x7f0000000440)=@IORING_OP_FSYNC={0x3, 0x2, 0x0, @fd_index=0x9, 0x0, 0x0, 0x0, 0x0, 0x1, {0x0, r5}}, 0x0)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r6 = openat(0xffffffffffffff9c, &(0x7f00000002c0)='./file1\x00', 0x105142, 0x0)
r7 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0)
sendfile(r6, r7, 0x0, 0x100000001)
newfstatat(0xffffffffffffff9c, &(0x7f0000000340)='./file1\x00', &(0x7f0000000380), 0x400)

[ 2977.443223] FAULT_INJECTION: forcing a failure.
[ 2977.443223] name failslab, interval 1, probability 0, space 0, times 0
[ 2977.446334] CPU: 0 PID: 29039 Comm: syz-executor.5 Not tainted 5.10.172 #1
[ 2977.456839] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 2977.457938] Call Trace:
[ 2977.458294]  dump_stack+0x107/0x167
[ 2977.458776]  should_fail.cold+0x5/0xa
[ 2977.459278]  ? create_object.isra.0+0x3a/0xa20
[ 2977.459911]  should_failslab+0x5/0x20
[ 2977.460410]  kmem_cache_alloc+0x5b/0x360
[ 2977.460441] 9pnet: Insufficient options for proto=fd
[ 2977.460945]  create_object.isra.0+0x3a/0xa20
[ 2977.460974]  ? __kasan_kmalloc.constprop.0+0xc9/0xd0
[ 2977.462864]  kmem_cache_alloc+0x159/0x360
[ 2977.463419]  __kernfs_new_node+0xd4/0x850
[ 2977.464047]  ? kernfs_dop_revalidate+0x3a0/0x3a0
[ 2977.464674]  ? __mutex_unlock_slowpath+0xe1/0x600
[ 2977.465306]  ? asm_sysvec_apic_timer_interrupt+0x12/0x20
[ 2977.466021]  ? wait_for_completion_io+0x270/0x270
[ 2977.466655]  ? kernfs_next_descendant_post+0x1a7/0x2a0
[ 2977.467349]  kernfs_new_node+0x93/0x120
[ 2977.467895]  __kernfs_create_file+0x51/0x350
[ 2977.468511]  sysfs_add_file_mode_ns+0x221/0x560
[ 2977.469124]  internal_create_group+0x324/0xb30
[ 2977.469726]  ? sysfs_remove_group+0x170/0x170
[ 2977.470314]  ? kernfs_name_hash+0xe7/0x110
[ 2977.470871]  ? kernfs_find_ns+0x256/0x380
[ 2977.471457]  sysfs_slab_add+0x188/0x200
[ 2977.472019]  __kmem_cache_create+0x3db/0x520
[ 2977.472597]  kmem_cache_create_usercopy+0x1db/0x2f0
[ 2977.473251]  p9_client_create+0xc2b/0x1090
[ 2977.473813]  ? p9_client_flush+0x430/0x430
[ 2977.474375]  ? lockdep_init_map_type+0x2c7/0x780
[ 2977.474986]  ? rcu_read_lock_sched_held+0x3e/0x80
[ 2977.475615]  ? __raw_spin_lock_init+0x36/0x110
[ 2977.476257]  v9fs_session_init+0x1dd/0x16a0
[ 2977.476861]  ? kmem_cache_alloc_trace+0x151/0x360
[ 2977.477512]  ? v9fs_show_options+0x690/0x690
[ 2977.478103]  ? kasan_unpoison_shadow+0x33/0x50
[ 2977.478701]  ? __kasan_kmalloc.constprop.0+0xc9/0xd0
[ 2977.479371]  v9fs_mount+0x79/0x8f0
[ 2977.479876]  ? v9fs_write_inode+0x60/0x60
[ 2977.480425]  legacy_get_tree+0x105/0x220
[ 2977.480434] 9pnet: Insufficient options for proto=fd
[ 2977.481599]  vfs_get_tree+0x8e/0x300
[ 2977.482088]  path_mount+0x13be/0x20b0
[ 2977.482597]  ? strncpy_from_user+0x9e/0x470
[ 2977.483159]  ? finish_automount+0xa40/0xa40
[ 2977.483725]  ? getname_flags.part.0+0x1dd/0x4f0
[ 2977.484355]  ? _copy_from_user+0xfb/0x1b0
[ 2977.484452] 9pnet: Insufficient options for proto=fd
[ 2977.484908]  __x64_sys_mount+0x282/0x300
[ 2977.484934]  ? copy_mnt_ns+0xa00/0xa00
[ 2977.486651]  ? rcu_read_lock_sched_held+0x3e/0x80
[ 2977.487312]  do_syscall_64+0x33/0x40
[ 2977.487801]  entry_SYSCALL_64_after_hwframe+0x61/0xc6
[ 2977.488495] RIP: 0033:0x7f38308e8b19
[ 2977.488986] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 2977.491357] RSP: 002b:00007f382de5e188 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5
[ 2977.492376] RAX: ffffffffffffffda RBX: 00007f38309fbf60 RCX: 00007f38308e8b19
[ 2977.493290] RDX: 00000000200000c0 RSI: 0000000020000040 RDI: 0000000000000000
[ 2977.494190] RBP: 00007f382de5e1d0 R08: 0000000020000280 R09: 0000000000000000
[ 2977.495094] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[ 2977.496046] R13: 00007ffca2bf07df R14: 00007f382de5e300 R15: 0000000000022000
21:30:23 executing program 4:
r0 = openat$vcs(0xffffffffffffff9c, &(0x7f0000000040), 0x0, 0x0)
openat$sr(0xffffffffffffff9c, &(0x7f00000035c0), 0x0, 0x0)
openat$sr(0xffffffffffffff9c, &(0x7f00000000c0), 0x224400, 0x0)
openat$rtc(0xffffffffffffff9c, &(0x7f0000000200), 0x0, 0x0)
ioctl$AUTOFS_IOC_EXPIRE(r0, 0x810c9365, &(0x7f0000000240)={{0x2, 0x20}, 0x100, './cgroup.net/cgroup.procs\x00'})
pipe(&(0x7f00000001c0))
open(&(0x7f00000016c0)='./cgroup.net/cgroup.procs\x00', 0x0, 0x0)
pselect6(0x40, &(0x7f0000000180), &(0x7f00000001c0)={0x3fc}, 0x0, 0x0, 0x0)
syz_io_uring_submit(0x0, 0x0, &(0x7f0000000000)=@IORING_OP_NOP={0x0, 0x3}, 0x9)

21:30:23 executing program 3:
openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x105142, 0x0)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x400}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
pipe(&(0x7f00000001c0)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
mount$9p_fd(0x0, &(0x7f0000000040)='./file1\x00', &(0x7f00000000c0), 0x0, &(0x7f0000000280)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {}, 0x2c, {[{@nodevmap}], [], 0xa}})
openat(r1, &(0x7f0000000180)='./file1\x00', 0x0, 0x0)

21:30:23 executing program 2:
syz_mount_image$vfat(&(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x0, 0x2, &(0x7f0000000180)=[{&(0x7f0000000140)="eb3c906d6b66732e66617400020801000470008400f801", 0x17}, {0x0, 0x0, 0x1000a00}], 0x0, &(0x7f0000000240)=ANY=[])
chdir(&(0x7f0000000040)='./file0\x00')
r0 = creat(&(0x7f0000000000)='./file1\x00', 0x10)
openat2(r0, &(0x7f00000001c0)='./file1/../file0\x00', &(0x7f0000000200)={0x40, 0x26, 0x11}, 0x18)
r1 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x105142, 0x0)
ioctl$FS_IOC_RESVSP(r1, 0x40305828, &(0x7f0000000040)={0x0, 0x0, 0x0, 0x4000006})

21:30:23 executing program 0:
syz_mount_image$vfat(&(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x0, 0x2, &(0x7f0000000180)=[{&(0x7f0000000140)="eb3c906d6b66732e66617400020801000470008400f801", 0x17}, {0x0, 0x0, 0x1000a00}], 0x0, &(0x7f0000000240)=ANY=[])
chdir(&(0x7f0000000040)='./file0\x00')
mount$cgroup(0x0, 0x0, &(0x7f0000000400), 0x0, 0x0)
r0 = syz_io_uring_setup(0x22, &(0x7f0000000680)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000180)=<r1=>0x0, &(0x7f0000002a40)=<r2=>0x0)
r3 = io_uring_register$IORING_REGISTER_PERSONALITY(r0, 0x9, 0x0, 0x0)
r4 = socket$nl_netfilter(0x10, 0x3, 0xc)
syz_io_uring_submit(r1, r2, &(0x7f0000000400)=@IORING_OP_WRITEV={0x2, 0x0, 0x0, @fd=r4, 0x0, 0x0, 0x0, 0x0, 0x0, {0x0, r3}}, 0x0)
r5 = syz_io_uring_setup(0x22, &(0x7f0000000680)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000180), &(0x7f0000002a40))
r6 = io_uring_register$IORING_REGISTER_PERSONALITY(r5, 0x9, 0x0, 0x0)
syz_io_uring_submit(r1, 0x0, &(0x7f0000000440)=@IORING_OP_FSYNC={0x3, 0x2, 0x0, @fd_index=0x9, 0x0, 0x0, 0x0, 0x0, 0x1, {0x0, r6}}, 0x2)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r7 = openat(0xffffffffffffff9c, 0x0, 0x105142, 0x0)
r8 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0)
mount(&(0x7f0000000200)=ANY=[@ANYBLOB="2f6f651317868af191bdb2"], &(0x7f0000000240)='./file0\x00', &(0x7f0000000280)='nfsd\x00', 0x800000, &(0x7f0000000300)='cgroup\x00')
sendfile(r7, r8, 0x0, 0x100000001)
newfstatat(0xffffffffffffff9c, &(0x7f0000000340)='./file1\x00', &(0x7f0000000380), 0x400)

21:30:23 executing program 5:
openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x105142, 0x0)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
pipe(&(0x7f00000001c0)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
mount$9p_fd(0x0, &(0x7f0000000040)='./file1\x00', &(0x7f00000000c0), 0x0, &(0x7f0000000280)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}}) (fail_nth: 96)
openat(0xffffffffffffffff, 0x0, 0x0, 0x0)

21:30:23 executing program 7:
openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x105142, 0x0)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
pipe(&(0x7f00000001c0))
mount$9p_fd(0x0, &(0x7f0000000040)='./file1\x00', &(0x7f00000000c0), 0x9000000, &(0x7f0000000280)={'trans=fd,', {}, 0x2c, {}, 0x2c, {[{@nodevmap}]}})

21:30:23 executing program 1:
openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x105142, 0x0)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
pipe(&(0x7f00000001c0))
mount$9p_fd(0x0, &(0x7f0000000040)='./file1\x00', &(0x7f00000000c0), 0xa000000, &(0x7f0000000280)={'trans=fd,', {}, 0x2c, {}, 0x2c, {[{@nodevmap}]}})

21:30:23 executing program 7:
openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x105142, 0x0)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x400}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
pipe(&(0x7f00000001c0)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
mount$9p_fd(0x0, &(0x7f0000000040)='./file1\x00', &(0x7f00000000c0), 0x0, &(0x7f0000000280)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {}, 0x2c, {[{@nodevmap}], [], 0x8}})
openat(r1, &(0x7f0000000180)='./file1\x00', 0x0, 0x0)

[ 2977.525474] 9pnet: Insufficient options for proto=fd
21:30:24 executing program 3:
openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x105142, 0x0)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x400}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
pipe(&(0x7f00000001c0)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
mount$9p_fd(0x0, &(0x7f0000000040)='./file1\x00', &(0x7f00000000c0), 0x0, &(0x7f0000000280)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {}, 0x2c, {[{@nodevmap}], [], 0xb}})
openat(r1, &(0x7f0000000180)='./file1\x00', 0x0, 0x0)

[ 2977.612488] 9pnet: Insufficient options for proto=fd
[ 2977.630130] 9pnet: Insufficient options for proto=fd
[ 2977.653267] 9pnet: Insufficient options for proto=fd
21:30:24 executing program 1:
openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x105142, 0x0)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
pipe(&(0x7f00000001c0))
mount$9p_fd(0x0, &(0x7f0000000040)='./file1\x00', &(0x7f00000000c0), 0xb000000, &(0x7f0000000280)={'trans=fd,', {}, 0x2c, {}, 0x2c, {[{@nodevmap}]}})

21:30:24 executing program 4:
openat$vcs(0xffffffffffffff9c, &(0x7f0000000040), 0x0, 0x0)
r0 = openat$sr(0xffffffffffffff9c, &(0x7f00000035c0), 0x0, 0x0)
openat$rtc(0xffffffffffffff9c, &(0x7f0000000200), 0x0, 0x0)
pipe(&(0x7f00000001c0)={0xffffffffffffffff, <r1=>0xffffffffffffffff})
open(&(0x7f00000016c0)='./cgroup.net/cgroup.procs\x00', 0x0, 0x0)
pselect6(0x40, &(0x7f0000000180), &(0x7f00000001c0)={0x3fc}, 0x0, 0x0, 0x0)
recvmmsg(r1, &(0x7f0000002a80)=[{{&(0x7f0000000100)=@pppoe={0x18, 0x0, {0x0, @remote}}, 0x80, &(0x7f0000000000)=[{&(0x7f0000000240)=""/234, 0xea}, {&(0x7f0000000340)=""/187, 0xbb}], 0x2, &(0x7f0000000080)=""/37, 0x25}, 0x8}, {{&(0x7f0000000400)=@ll, 0x80, &(0x7f0000001600)=[{&(0x7f0000000480)=""/122, 0x7a}, {&(0x7f0000000500)=""/103, 0x67}, {&(0x7f0000000580)=""/116, 0x74}, {&(0x7f0000000600)=""/4096, 0x1000}], 0x4, &(0x7f0000001700)=""/163, 0xa3}, 0x8}, {{0x0, 0x0, &(0x7f0000001a00)=[{&(0x7f0000001640)=""/33, 0x21}, {&(0x7f00000017c0)=""/105, 0x69}, {&(0x7f0000001840)=""/244, 0xf4}, {&(0x7f0000001680)=""/17, 0x11}, {&(0x7f0000001940)=""/158, 0x9e}], 0x5, &(0x7f0000001a80)=""/4096, 0x1000}, 0xfffff54a}], 0x3, 0x40010003, &(0x7f0000002b40)={0x0, 0x989680})
ioctl$EXT4_IOC_ALLOC_DA_BLKS(r0, 0x660c)

21:30:24 executing program 2:
syz_mount_image$vfat(&(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x0, 0x2, &(0x7f0000000180)=[{&(0x7f0000000280)="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", 0x163}, {0x0, 0x0, 0x1000a00}], 0x20000, &(0x7f0000000000)=ANY=[@ANYRESHEX=0x0, @ANYBLOB, @ANYRESDEC])
chdir(&(0x7f0000000040)='./file0\x00')
r0 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x105142, 0x0)
ioctl$FS_IOC_RESVSP(r0, 0x40305828, &(0x7f0000000040)={0x0, 0x0, 0x0, 0x4000006})
r1 = openat(0xffffffffffffff9c, &(0x7f0000001340)='./file1\x00', 0x105142, 0x0)
r2 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffd000/0x3000)=nil, 0x3000, 0xa, 0x10, r1, 0x0)
pipe(&(0x7f00000001c0)={<r3=>0xffffffffffffffff, <r4=>0xffffffffffffffff})
mount$9p_fd(0x0, &(0x7f0000000040)='./file1\x00', &(0x7f00000000c0), 0x0, &(0x7f0000000280)={'trans=fd,', {'rfdno', 0x3d, r3}, 0x2c, {'wfdno', 0x3d, r4}, 0x2c, {[{@nodevmap}]}})
mkdirat(r4, &(0x7f00000001c0)='./file0\x00', 0x14)
syz_io_uring_submit(r2, 0x0, 0x0, 0x0)
r5 = perf_event_open(&(0x7f0000001d80)={0x2, 0x80, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
mmap(&(0x7f0000ffc000/0x2000)=nil, 0x2000, 0x0, 0x13, r5, 0x0)
perf_event_open(&(0x7f0000001d80)={0x2, 0x80, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, r5, 0x2)
syz_io_uring_submit(r2, 0x0, &(0x7f0000000140)=@IORING_OP_FSYNC={0x3, 0x0, 0x0, @fd=r5}, 0x7fffffff)

21:30:24 executing program 7:
openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x105142, 0x0)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x400}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
pipe(&(0x7f00000001c0)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
mount$9p_fd(0x0, &(0x7f0000000040)='./file1\x00', &(0x7f00000000c0), 0x0, &(0x7f0000000280)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {}, 0x2c, {[{@nodevmap}], [], 0x7}})
openat(r1, &(0x7f0000000180)='./file1\x00', 0x0, 0x0)

21:30:24 executing program 0:
syz_mount_image$vfat(&(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x0, 0x2, &(0x7f0000000180)=[{&(0x7f0000000140)="eb3c906d6b66732e66617400020801000470008400f801", 0x17}, {0x0, 0x0, 0x1000a00}], 0x0, &(0x7f0000000240)=ANY=[])
chdir(&(0x7f0000000040)='./file0\x00')
mount$cgroup(0x0, 0x0, &(0x7f0000000400), 0x0, 0x0)
r0 = syz_io_uring_setup(0x22, &(0x7f0000000680)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000180)=<r1=>0x0, &(0x7f0000002a40)=<r2=>0x0)
r3 = io_uring_register$IORING_REGISTER_PERSONALITY(r0, 0x9, 0x0, 0x0)
r4 = socket$nl_netfilter(0x10, 0x3, 0xc)
syz_io_uring_submit(r1, r2, &(0x7f0000000400)=@IORING_OP_WRITEV={0x2, 0x0, 0x0, @fd=r4, 0x0, 0x0, 0x0, 0x0, 0x0, {0x0, r3}}, 0x0)
r5 = syz_io_uring_setup(0x22, &(0x7f0000000680)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000180), &(0x7f0000002a40))
r6 = io_uring_register$IORING_REGISTER_PERSONALITY(r5, 0x9, 0x0, 0x0)
syz_io_uring_submit(r1, 0x0, &(0x7f0000000440)=@IORING_OP_FSYNC={0x3, 0x2, 0x0, @fd_index=0x9, 0x0, 0x0, 0x0, 0x0, 0x1, {0x0, r6}}, 0x2)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r7 = openat(0xffffffffffffff9c, 0x0, 0x105142, 0x0)
r8 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0)
mount(&(0x7f0000000200)=ANY=[@ANYBLOB="2f6f651317868af191bdb2"], &(0x7f0000000240)='./file0\x00', &(0x7f0000000280)='nfsd\x00', 0x800000, &(0x7f0000000300)='cgroup\x00')
sendfile(r7, r8, 0x0, 0x100000001)
newfstatat(0xffffffffffffff9c, &(0x7f0000000340)='./file1\x00', &(0x7f0000000380), 0x400)

[ 2977.796312] 9pnet: Insufficient options for proto=fd
[ 2977.808526] 9pnet: Insufficient options for proto=fd
21:30:24 executing program 3:
openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x105142, 0x0)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x400}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
pipe(&(0x7f00000001c0)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
mount$9p_fd(0x0, &(0x7f0000000040)='./file1\x00', &(0x7f00000000c0), 0x0, &(0x7f0000000280)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {}, 0x2c, {[{@nodevmap}], [], 0x10}})
openat(r1, &(0x7f0000000180)='./file1\x00', 0x0, 0x0)

[ 2977.869109] 9pnet: Insufficient options for proto=fd
[ 2977.884427] 9pnet: Insufficient options for proto=fd
21:30:24 executing program 4:
openat$vcs(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0)
openat$sr(0xffffffffffffff9c, &(0x7f00000035c0), 0x0, 0x0)
r0 = openat$sr(0xffffffffffffff9c, &(0x7f00000000c0), 0x400580, 0x0)
openat$rtc(0xffffffffffffff9c, &(0x7f0000000200), 0x0, 0x0)
pipe(&(0x7f00000001c0)={<r1=>0xffffffffffffffff})
r2 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x2000)=nil, 0x2000, 0x2000000, 0x30, r1, 0x0)
r3 = perf_event_open(&(0x7f0000001d80)={0x2, 0x80, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
mmap(&(0x7f0000ffc000/0x2000)=nil, 0x2000, 0x0, 0x13, r3, 0x0)
perf_event_open(&(0x7f0000001d80)={0x2, 0x80, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, r3, 0x2)
syz_io_uring_submit(r2, 0x0, &(0x7f0000000100)=@IORING_OP_EPOLL_CTL=@add={0x1d, 0x1, 0x0, r0, &(0x7f0000000040)={0x6000001b}, r3, 0x1, 0x0, 0x1}, 0x4)
open(&(0x7f00000016c0)='./cgroup.net/cgroup.procs\x00', 0x0, 0x0)
r4 = open(&(0x7f0000000000)='./cgroup.net/cgroup.procs\x00', 0x80c00, 0x1)
dup(r4)
pselect6(0x40, &(0x7f0000000180), &(0x7f00000001c0)={0x3fc}, 0x0, 0x0, 0x0)

21:30:24 executing program 6:
r0 = syz_mount_image$vfat(&(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x0, 0x2, &(0x7f0000000180)=[{&(0x7f0000000140)="eb3c906d6b66732e66617400020801000470008400f801", 0x17}, {0x0, 0x0, 0x1000a00}], 0x0, &(0x7f0000000240)=ANY=[])
chdir(&(0x7f0000000040)='./file0\x00')
openat2(r0, &(0x7f0000000100)='./file0\x00', &(0x7f00000001c0)={0x40000, 0x81}, 0x18)
mount$cgroup(0x0, 0x0, &(0x7f0000000400), 0x0, 0x0)
r1 = syz_io_uring_setup(0x22, &(0x7f0000000680)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000180)=<r2=>0x0, &(0x7f0000002a40)=<r3=>0x0)
io_uring_register$IORING_REGISTER_PERSONALITY(r1, 0x9, 0x0, 0x0)
socket$nl_netfilter(0x10, 0x3, 0xc)
syz_io_uring_submit(r2, r3, 0x0, 0x0)
r4 = syz_io_uring_setup(0x22, &(0x7f0000000680)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000180), &(0x7f0000002a40))
r5 = io_uring_register$IORING_REGISTER_PERSONALITY(r4, 0x9, 0x0, 0x0)
syz_io_uring_submit(r2, 0x0, &(0x7f0000000440)=@IORING_OP_FSYNC={0x3, 0x2, 0x0, @fd_index=0x9, 0x0, 0x0, 0x0, 0x0, 0x1, {0x0, r5}}, 0x0)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r6 = openat(0xffffffffffffff9c, &(0x7f00000002c0)='./file1\x00', 0x105142, 0x0)
r7 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0)
sendfile(r6, r7, 0x0, 0x100000001)
newfstatat(0xffffffffffffff9c, &(0x7f0000000340)='./file1\x00', &(0x7f0000000380), 0x400)

21:30:42 executing program 7:
openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x105142, 0x0)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
pipe(&(0x7f00000001c0))
mount$9p_fd(0x0, &(0x7f0000000040)='./file1\x00', &(0x7f00000000c0), 0x700, &(0x7f0000000280)={'trans=fd,', {}, 0x2c, {}, 0x2c, {[{@nodevmap}]}})

21:30:42 executing program 1:
openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x105142, 0x0)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
pipe(&(0x7f00000001c0))
mount$9p_fd(0x0, &(0x7f0000000040)='./file1\x00', &(0x7f00000000c0), 0x20000000, &(0x7f0000000280)={'trans=fd,', {}, 0x2c, {}, 0x2c, {[{@nodevmap}]}})

21:30:42 executing program 2:
syz_mount_image$vfat(&(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x0, 0x2, &(0x7f0000000180)=[{&(0x7f0000000140)="eb3c906d6b66732e66617400020801000470008400f801", 0x17}, {0x0, 0x0, 0x1000a00}], 0x0, &(0x7f0000000240)=ANY=[])
chdir(&(0x7f0000000040)='./file0\x00')
r0 = openat(0xffffffffffffffff, &(0x7f0000000000)='./file0/file0\x00', 0x494340, 0x1)
ioctl$AUTOFS_DEV_IOCTL_PROTOSUBVER(0xffffffffffffffff, 0xc0189373, &(0x7f00000001c0)={{0x1, 0x1, 0x18, <r1=>r0, {0x6}}, './file0\x00'})
openat(r1, &(0x7f0000000200)='./file0/file0/../file0\x00', 0x4400, 0x100)
r2 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x105142, 0x0)
ioctl$FS_IOC_RESVSP(r2, 0x40305828, &(0x7f0000000040)={0x0, 0x0, 0x0, 0x4000006})

21:30:42 executing program 6:
r0 = syz_mount_image$vfat(&(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x0, 0x2, &(0x7f0000000180)=[{&(0x7f0000000140)="eb3c906d6b66732e66617400020801000470008400f801", 0x17}, {0x0, 0x0, 0x1000a00}], 0x0, &(0x7f0000000240)=ANY=[])
chdir(&(0x7f0000000040)='./file0\x00')
openat2(r0, &(0x7f0000000100)='./file0\x00', &(0x7f00000001c0)={0x40000, 0x81}, 0x18)
mount$cgroup(0x0, 0x0, &(0x7f0000000400), 0x0, 0x0)
r1 = syz_io_uring_setup(0x22, &(0x7f0000000680)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000180)=<r2=>0x0, &(0x7f0000002a40)=<r3=>0x0)
io_uring_register$IORING_REGISTER_PERSONALITY(r1, 0x9, 0x0, 0x0)
socket$nl_netfilter(0x10, 0x3, 0xc)
syz_io_uring_submit(r2, r3, 0x0, 0x0)
r4 = syz_io_uring_setup(0x22, &(0x7f0000000680)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000180), &(0x7f0000002a40))
r5 = io_uring_register$IORING_REGISTER_PERSONALITY(r4, 0x9, 0x0, 0x0)
syz_io_uring_submit(r2, 0x0, &(0x7f0000000440)=@IORING_OP_FSYNC={0x3, 0x2, 0x0, @fd_index=0x9, 0x0, 0x0, 0x0, 0x0, 0x1, {0x0, r5}}, 0x0)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r6 = openat(0xffffffffffffff9c, &(0x7f00000002c0)='./file1\x00', 0x105142, 0x0)
r7 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0)
sendfile(r6, r7, 0x0, 0x100000001)
newfstatat(0xffffffffffffff9c, &(0x7f0000000340)='./file1\x00', &(0x7f0000000380), 0x400)

21:30:42 executing program 5:
openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x105142, 0x0)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
pipe(&(0x7f00000001c0)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
mount$9p_fd(0x0, &(0x7f0000000040)='./file1\x00', &(0x7f00000000c0), 0x0, &(0x7f0000000280)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}}) (fail_nth: 97)
openat(0xffffffffffffffff, 0x0, 0x0, 0x0)

21:30:42 executing program 0:
syz_mount_image$vfat(&(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x0, 0x2, &(0x7f0000000180)=[{&(0x7f0000000140)="eb3c906d6b66732e66617400020801000470008400f801", 0x17}, {0x0, 0x0, 0x1000a00}], 0x0, &(0x7f0000000240)=ANY=[])
chdir(&(0x7f0000000040)='./file0\x00')
mount$cgroup(0x0, 0x0, &(0x7f0000000400), 0x0, 0x0)
r0 = syz_io_uring_setup(0x22, &(0x7f0000000680)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000180)=<r1=>0x0, &(0x7f0000002a40)=<r2=>0x0)
r3 = io_uring_register$IORING_REGISTER_PERSONALITY(r0, 0x9, 0x0, 0x0)
r4 = socket$nl_netfilter(0x10, 0x3, 0xc)
syz_io_uring_submit(r1, r2, &(0x7f0000000400)=@IORING_OP_WRITEV={0x2, 0x0, 0x0, @fd=r4, 0x0, 0x0, 0x0, 0x0, 0x0, {0x0, r3}}, 0x0)
r5 = syz_io_uring_setup(0x22, &(0x7f0000000680)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000180), &(0x7f0000002a40))
r6 = io_uring_register$IORING_REGISTER_PERSONALITY(r5, 0x9, 0x0, 0x0)
syz_io_uring_submit(r1, 0x0, &(0x7f0000000440)=@IORING_OP_FSYNC={0x3, 0x2, 0x0, @fd_index=0x9, 0x0, 0x0, 0x0, 0x0, 0x1, {0x0, r6}}, 0x2)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r7 = openat(0xffffffffffffff9c, 0x0, 0x105142, 0x0)
r8 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0)
mount(&(0x7f0000000200)=ANY=[@ANYBLOB="2f6f651317868af191bdb2"], &(0x7f0000000240)='./file0\x00', &(0x7f0000000280)='nfsd\x00', 0x800000, &(0x7f0000000300)='cgroup\x00')
sendfile(r7, r8, 0x0, 0x100000001)
newfstatat(0xffffffffffffff9c, &(0x7f0000000340)='./file1\x00', &(0x7f0000000380), 0x400)

21:30:42 executing program 4:
openat$vcs(0xffffffffffffff9c, &(0x7f0000000040), 0x0, 0x0)
openat$sr(0xffffffffffffff9c, &(0x7f00000035c0), 0x0, 0x0)
openat$sr(0xffffffffffffff9c, &(0x7f00000000c0), 0x224400, 0x0)
openat$rtc(0xffffffffffffff9c, &(0x7f0000000200), 0x0, 0x0)
pipe(&(0x7f00000001c0))
open(&(0x7f00000016c0)='./cgroup.net/cgroup.procs\x00', 0x0, 0x0)
pselect6(0x40, &(0x7f0000000180), &(0x7f00000001c0)={0x3fc, 0x0, 0x1}, 0x0, 0x0, 0x0)

21:30:42 executing program 3:
openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x105142, 0x0)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x400}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
pipe(&(0x7f00000001c0)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
mount$9p_fd(0x0, &(0x7f0000000040)='./file1\x00', &(0x7f00000000c0), 0x0, &(0x7f0000000200)=ANY=[@ANYBLOB="7472616edfa0578a778ccf0ba644506624", @ANYRESHEX=r0, @ANYBLOB=',wfdno=', @ANYRESHEX, @ANYBLOB=',nodevmap,\x00'])
openat(r1, &(0x7f0000000180)='./file1\x00', 0x0, 0x0)

[ 2996.141173] 9pnet: Insufficient options for proto=fd
[ 2996.143176] 9pnet: Insufficient options for proto=fd
[ 2996.173514] FAULT_INJECTION: forcing a failure.
[ 2996.173514] name failslab, interval 1, probability 0, space 0, times 0
[ 2996.175466] CPU: 0 PID: 29304 Comm: syz-executor.5 Not tainted 5.10.172 #1
[ 2996.184787] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 2996.185978] Call Trace:
[ 2996.186336]  dump_stack+0x107/0x167
[ 2996.186811]  should_fail.cold+0x5/0xa
[ 2996.187260]  ? __kernfs_new_node+0xd4/0x850
[ 2996.187805]  should_failslab+0x5/0x20
[ 2996.188290]  kmem_cache_alloc+0x5b/0x360
[ 2996.188772]  __kernfs_new_node+0xd4/0x850
[ 2996.189259]  ? kernfs_dop_revalidate+0x3a0/0x3a0
[ 2996.189816]  ? __mutex_unlock_slowpath+0xe1/0x600
[ 2996.190385]  ? wait_for_completion_io+0x270/0x270
[ 2996.191005]  ? kernfs_next_descendant_post+0x1a7/0x2a0
[ 2996.191650]  kernfs_new_node+0x93/0x120
[ 2996.192202]  __kernfs_create_file+0x51/0x350
[ 2996.192746]  sysfs_add_file_mode_ns+0x221/0x560
[ 2996.193299]  internal_create_group+0x324/0xb30
[ 2996.193842]  ? sysfs_remove_group+0x170/0x170
[ 2996.194369]  ? kernfs_name_hash+0xe7/0x110
[ 2996.194935]  ? kernfs_find_ns+0x256/0x380
[ 2996.195439]  sysfs_slab_add+0x188/0x200
[ 2996.195930]  __kmem_cache_create+0x3db/0x520
[ 2996.196512]  kmem_cache_create_usercopy+0x1db/0x2f0
[ 2996.197276]  p9_client_create+0xc2b/0x1090
[ 2996.198239]  ? p9_client_flush+0x430/0x430
[ 2996.199173]  ? lockdep_init_map_type+0x2c7/0x780
[ 2996.200238]  ? rcu_read_lock_sched_held+0x3e/0x80
[ 2996.201282]  ? __raw_spin_lock_init+0x36/0x110
[ 2996.202265]  v9fs_session_init+0x1dd/0x16a0
[ 2996.203269]  ? irqentry_enter+0x26/0x60
[ 2996.204276]  ? asm_sysvec_apic_timer_interrupt+0x12/0x20
[ 2996.205719]  ? trace_hardirqs_on+0x5b/0x180
[ 2996.206306]  ? v9fs_show_options+0x690/0x690
[ 2996.207495]  ? kasan_unpoison_shadow+0x33/0x50
[ 2996.208708]  ? __kasan_kmalloc.constprop.0+0xc9/0xd0
[ 2996.210056]  v9fs_mount+0x79/0x8f0
[ 2996.210984]  ? v9fs_write_inode+0x60/0x60
[ 2996.211984]  legacy_get_tree+0x105/0x220
[ 2996.213054]  vfs_get_tree+0x8e/0x300
[ 2996.214042]  path_mount+0x13be/0x20b0
[ 2996.215031]  ? strncpy_from_user+0x9e/0x470
[ 2996.216321]  ? finish_automount+0xa40/0xa40
[ 2996.217583]  ? getname_flags.part.0+0x1dd/0x4f0
[ 2996.218865]  ? _copy_from_user+0xfb/0x1b0
[ 2996.219669]  __x64_sys_mount+0x282/0x300
[ 2996.220902]  ? copy_mnt_ns+0xa00/0xa00
[ 2996.222033]  ? rcu_read_lock_sched_held+0x3e/0x80
[ 2996.223433]  do_syscall_64+0x33/0x40
[ 2996.224526]  entry_SYSCALL_64_after_hwframe+0x61/0xc6
[ 2996.225995] RIP: 0033:0x7f38308e8b19
[ 2996.227090] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 2996.232490] RSP: 002b:00007f382de5e188 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5
[ 2996.234721] RAX: ffffffffffffffda RBX: 00007f38309fbf60 RCX: 00007f38308e8b19
[ 2996.236822] RDX: 00000000200000c0 RSI: 0000000020000040 RDI: 0000000000000000
[ 2996.238908] RBP: 00007f382de5e1d0 R08: 0000000020000280 R09: 0000000000000000
[ 2996.241008] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[ 2996.243090] R13: 00007ffca2bf07df R14: 00007f382de5e300 R15: 0000000000022000
21:30:42 executing program 6:
r0 = syz_mount_image$vfat(&(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x0, 0x2, &(0x7f0000000180)=[{&(0x7f0000000140)="eb3c906d6b66732e66617400020801000470008400f801", 0x17}, {0x0, 0x0, 0x1000a00}], 0x0, &(0x7f0000000240)=ANY=[])
chdir(&(0x7f0000000040)='./file0\x00')
openat2(r0, &(0x7f0000000100)='./file0\x00', &(0x7f00000001c0)={0x40000, 0x81}, 0x18)
mount$cgroup(0x0, 0x0, &(0x7f0000000400), 0x0, 0x0)
r1 = syz_io_uring_setup(0x22, &(0x7f0000000680)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000180)=<r2=>0x0, &(0x7f0000002a40)=<r3=>0x0)
io_uring_register$IORING_REGISTER_PERSONALITY(r1, 0x9, 0x0, 0x0)
socket$nl_netfilter(0x10, 0x3, 0xc)
syz_io_uring_submit(r2, r3, 0x0, 0x0)
r4 = syz_io_uring_setup(0x22, &(0x7f0000000680)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000180), &(0x7f0000002a40))
r5 = io_uring_register$IORING_REGISTER_PERSONALITY(r4, 0x9, 0x0, 0x0)
syz_io_uring_submit(r2, 0x0, &(0x7f0000000440)=@IORING_OP_FSYNC={0x3, 0x2, 0x0, @fd_index=0x9, 0x0, 0x0, 0x0, 0x0, 0x1, {0x0, r5}}, 0x2)
perf_event_open(0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r6 = openat(0xffffffffffffff9c, &(0x7f00000002c0)='./file1\x00', 0x105142, 0x0)
r7 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0)
sendfile(r6, r7, 0x0, 0x100000001)
newfstatat(0xffffffffffffff9c, &(0x7f0000000340)='./file1\x00', &(0x7f0000000380), 0x400)

21:30:42 executing program 3:
openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x105142, 0x0)
perf_event_open(&(0x7f0000001d80)={0x0, 0x80, 0x40, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffff, 0x4, @perf_bp={&(0x7f0000000000), 0x5}, 0x0, 0x0, 0x400, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2}, 0x0, 0xe, 0xffffffffffffffff, 0x0)
pipe(&(0x7f00000001c0)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
mount$9p_fd(0x0, &(0x7f0000000040)='./file1\x00', &(0x7f00000000c0), 0x0, &(0x7f0000000200)=ANY=[@ANYBLOB='trans=fd,rfdno=', @ANYRESHEX=r0, @ANYBLOB="2c7766646e6f3d7b49750cc6ed2a4c7123d4bb3322224695b96e0317fe74ab7d815426d50b7bca56b924651ed28b57bd567be27f9ae83f2876ec0bc076cf114bb36e", @ANYRESHEX, @ANYBLOB=',nodevmap,\x00'])
openat(r1, &(0x7f0000000180)='./file1\x00', 0x0, 0x0)

21:30:42 executing program 7:
syz_mount_image$vfat(&(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x0, 0x2, &(0x7f0000000180)=[{&(0x7f0000000140)="eb3c906d6b66732e66617400020801000470008400f801", 0x17}, {0x0, 0x0, 0x1000a00}], 0x0, &(0x7f0000000240)=ANY=[])
chdir(&(0x7f0000000040)='./file0\x00')
r0 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x105142, 0x0)
ioctl$FS_IOC_RESVSP(r0, 0x40305828, &(0x7f0000000040)={0x0, 0x0, 0x0, 0x4000006})
openat(r0, &(0x7f0000000000)='./file1/file0\x00', 0x145080, 0x80)
pipe(&(0x7f00000001c0)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
mount$9p_fd(0x0, &(0x7f0000000040)='./file1\x00', &(0x7f00000000c0), 0x0, &(0x7f0000000280)={'trans=fd,', {'rfdno', 0x3d, r1}, 0x2c, {'wfdno', 0x3d, r2}, 0x2c, {[{@nodevmap}]}})
r3 = perf_event_open(&(0x7f0000001d80)={0x2, 0x80, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
mount(&(0x7f0000000300)=@sg0, &(0x7f0000000340)='./file1\x00', &(0x7f0000000380)='devpts\x00', 0x800, &(0x7f00000003c0)='\x00')
mmap(&(0x7f0000ffc000/0x2000)=nil, 0x2000, 0x0, 0x13, r3, 0x0)
r4 = perf_event_open(&(0x7f0000001d80)={0x2, 0x80, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
mmap(&(0x7f0000ffc000/0x2000)=nil, 0x2000, 0x0, 0x13, r4, 0x0)
perf_event_open(&(0x7f0000001d80)={0x2, 0x80, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, r4, 0x2)
pread64(r4, &(0x7f0000000200)=""/91, 0x5b, 0x1ff)
perf_event_open(&(0x7f0000001d80)={0x2, 0x80, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, r3, 0x2)
syz_genetlink_get_family_id$ethtool(&(0x7f0000000180), 0xffffffffffffffff)
clock_gettime(0x0, &(0x7f0000001c80)={<r5=>0x0, <r6=>0x0})
recvmmsg$unix(r1, &(0x7f0000001ac0)=[{{&(0x7f0000000440), 0x6e, &(0x7f0000000540)=[{&(0x7f00000004c0)=""/91, 0x5b}], 0x1}}, {{&(0x7f0000000580), 0x6e, &(0x7f0000000a40)=[{&(0x7f0000000600)=""/27, 0x1b}, {&(0x7f0000000640)=""/228, 0xe4}, {&(0x7f0000000740)=""/203, 0xcb}, {&(0x7f0000000840)=""/137, 0x89}, {&(0x7f0000000900)=""/11, 0xb}, {&(0x7f0000000940)=""/54, 0x36}, {&(0x7f0000000980)=""/72, 0x48}, {&(0x7f0000000a00)=""/36, 0x24}], 0x8, &(0x7f0000000ac0)=[@rights={{0x28, 0x1, 0x1, [0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff]}}, @rights={{0x14, 0x1, 0x1, [0xffffffffffffffff]}}, @rights={{0x20, 0x1, 0x1, [0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff]}}], 0x60}}, {{0x0, 0x0, &(0x7f0000000bc0)=[{&(0x7f00000020c0)=""/87, 0x57}], 0x1, &(0x7f0000000c00)=[@rights={{0x1c, 0x1, 0x1, [0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff]}}, @cred={{0x1c, 0x1, 0x2, {<r7=>0x0}}}, @cred={{0x1c}}, @cred={{0x1c}}, @rights={{0x2c, 0x1, 0x1, [0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff]}}, @rights={{0x10}}, @cred={{0x1c}}, @cred={{0x1c}}, @rights={{0x14, 0x1, 0x1, [0xffffffffffffffff]}}], 0x118}}, {{0x0, 0x0, &(0x7f0000001040)=[{&(0x7f0000000d40)=""/116, 0x74}, {&(0x7f0000000dc0)=""/158, 0x9e}, {&(0x7f0000000e80)=""/243, 0xf3}, {&(0x7f0000000f80)=""/76, 0x4c}, {&(0x7f0000002080)=""/45, 0x2d}], 0x5, &(0x7f00000010c0)=[@rights={{0x14, 0x1, 0x1, [0xffffffffffffffff]}}, @cred={{0x1c}}, @cred={{0x1c}}], 0x58}}, {{&(0x7f0000001140)=@abs, 0x6e, &(0x7f0000001280)=[{&(0x7f00000011c0)=""/162, 0xa2}], 0x1, &(0x7f00000012c0)=[@cred={{0x1c}}, @rights={{0x24, 0x1, 0x1, [0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff]}}], 0x48}}, {{0x0, 0x0, &(0x7f0000001540)=[{&(0x7f0000001340)=""/241, 0xf1}, {&(0x7f0000001440)=""/206, 0xce}], 0x2, &(0x7f0000001580)=[@rights={{0x2c, 0x1, 0x1, [0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff]}}], 0x30}}, {{0x0, 0x0, &(0x7f00000019c0)=[{&(0x7f00000015c0)=""/214, 0xd6}, {&(0x7f00000016c0)=""/251, 0xfb}, {&(0x7f00000017c0)=""/92, 0x5c}, {&(0x7f0000001840)=""/118, 0x76}, {&(0x7f00000018c0)=""/196, 0xc4}], 0x5, &(0x7f0000001a40)=[@cred={{0x1c}}, @cred={{0x1c}}, @rights={{0x24, 0x1, 0x1, [0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff]}}, @rights={{0x14, 0x1, 0x1, [0xffffffffffffffff]}}], 0x80}}], 0x7, 0x40010041, &(0x7f0000001cc0)={r5, r6+10000000})
sendmsg$nl_generic(0xffffffffffffffff, &(0x7f0000001d40)={&(0x7f0000000400)={0x10, 0x0, 0x0, 0x40000}, 0xc, &(0x7f0000001d00)={&(0x7f0000001e00)=ANY=[@ANYBLOB="7c0200002b0000012b00000000dbdf251400000050000d8014003500fc01000000000000000000000000000108008e00ac1e000105006900000000001f00230007407881b6161023225c6f3f4f64ecd0cc05002176078ad7062b990008002700", @ANYRES32=0xee01, @ANYBLOB="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", @ANYRES32=r7, @ANYBLOB="00699a4e7540798e7ad02c60cfb2116841458049c48016b71eb7a46d56d135e4abf7a7912517a16982fba2ea3b594d1c9efba483476b66693bf9706fe2efebbb7f5150c1f860e889c4ece3e7b22bf402e27eb338f3549400"], 0x27c}, 0x1, 0x0, 0x0, 0x480}, 0x20040000)
pidfd_getfd(r1, r3, 0x0)

[ 2996.340947] 9pnet: Insufficient options for proto=fd
[ 2996.352919] 9pnet: Insufficient options for proto=fd
21:30:42 executing program 2:
syz_mount_image$vfat(&(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0xfff, 0x2, &(0x7f0000000180)=[{&(0x7f0000000140)="eb3c906d6b66732e66617400020801000470008400f801", 0x17}, {0x0, 0x0, 0x1000a00}], 0x3c000, &(0x7f0000000240)=ANY=[])
lgetxattr(&(0x7f0000000000)='./file1\x00', &(0x7f00000001c0)=@random={'os2.', 'vfat\x00'}, &(0x7f0000000200)=""/184, 0xb8)
chdir(&(0x7f0000000040)='./file0\x00')
r0 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x105142, 0x0)
ioctl$FS_IOC_RESVSP(r0, 0x40305828, &(0x7f0000000040)={0x0, 0x0, 0x0, 0x4000006})

21:30:42 executing program 0:
syz_mount_image$vfat(&(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x0, 0x2, &(0x7f0000000180)=[{&(0x7f0000000140)="eb3c906d6b66732e66617400020801000470008400f801", 0x17}, {0x0, 0x0, 0x1000a00}], 0x0, &(0x7f0000000240)=ANY=[])
chdir(&(0x7f0000000040)='./file0\x00')
mount$cgroup(0x0, 0x0, &(0x7f0000000400), 0x0, 0x0)
r0 = syz_io_uring_setup(0x22, &(0x7f0000000680)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000180)=<r1=>0x0, &(0x7f0000002a40)=<r2=>0x0)
r3 = io_uring_register$IORING_REGISTER_PERSONALITY(r0, 0x9, 0x0, 0x0)
r4 = socket$nl_netfilter(0x10, 0x3, 0xc)
syz_io_uring_submit(r1, r2, &(0x7f0000000400)=@IORING_OP_WRITEV={0x2, 0x0, 0x0, @fd=r4, 0x0, 0x0, 0x0, 0x0, 0x0, {0x0, r3}}, 0x0)
r5 = syz_io_uring_setup(0x22, &(0x7f0000000680)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000180), &(0x7f0000002a40))
r6 = io_uring_register$IORING_REGISTER_PERSONALITY(r5, 0x9, 0x0, 0x0)
syz_io_uring_submit(r1, 0x0, &(0x7f0000000440)=@IORING_OP_FSYNC={0x3, 0x2, 0x0, @fd_index=0x9, 0x0, 0x0, 0x0, 0x0, 0x1, {0x0, r6}}, 0x2)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r7 = openat(0xffffffffffffff9c, &(0x7f00000002c0)='./file1\x00', 0x0, 0x0)
r8 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0)
mount(&(0x7f0000000200)=ANY=[@ANYBLOB="2f6f651317868af191bdb2"], &(0x7f0000000240)='./file0\x00', &(0x7f0000000280)='nfsd\x00', 0x800000, &(0x7f0000000300)='cgroup\x00')
sendfile(r7, r8, 0x0, 0x100000001)
newfstatat(0xffffffffffffff9c, &(0x7f0000000340)='./file1\x00', &(0x7f0000000380), 0x400)

[ 2996.448170] kmem_cache_create(9p-fcall-cache) failed with error -12
[ 2996.450499] CPU: 1 PID: 29304 Comm: syz-executor.5 Not tainted 5.10.172 #1
[ 2996.452552] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 2996.454889] Call Trace:
[ 2996.455658]  dump_stack+0x107/0x167
[ 2996.456731]  kmem_cache_create_usercopy.cold+0x17/0x65
[ 2996.458253]  p9_client_create+0xc2b/0x1090
[ 2996.459480]  ? p9_client_flush+0x430/0x430
[ 2996.460737]  ? lockdep_init_map_type+0x2c7/0x780
[ 2996.462135]  ? rcu_read_lock_sched_held+0x3e/0x80
[ 2996.463496]  ? __raw_spin_lock_init+0x36/0x110
[ 2996.464787]  v9fs_session_init+0x1dd/0x16a0
[ 2996.465952]  ? irqentry_enter+0x26/0x60
[ 2996.467084]  ? asm_sysvec_apic_timer_interrupt+0x12/0x20
[ 2996.468620]  ? trace_hardirqs_on+0x5b/0x180
[ 2996.469829]  ? v9fs_show_options+0x690/0x690
[ 2996.471071]  ? kasan_unpoison_shadow+0x33/0x50
[ 2996.472391]  ? __kasan_kmalloc.constprop.0+0xc9/0xd0
[ 2996.473759]  v9fs_mount+0x79/0x8f0
[ 2996.474629]  ? v9fs_write_inode+0x60/0x60
[ 2996.475640]  legacy_get_tree+0x105/0x220
[ 2996.476645]  vfs_get_tree+0x8e/0x300
[ 2996.477546]  path_mount+0x13be/0x20b0
[ 2996.478590]  ? strncpy_from_user+0x9e/0x470
[ 2996.479752]  ? finish_automount+0xa40/0xa40
[ 2996.480934]  ? getname_flags.part.0+0x1dd/0x4f0
[ 2996.482193]  ? _copy_from_user+0xfb/0x1b0
[ 2996.483317]  __x64_sys_mount+0x282/0x300
[ 2996.484437]  ? copy_mnt_ns+0xa00/0xa00
[ 2996.485491]  ? rcu_read_lock_sched_held+0x3e/0x80
[ 2996.486790]  do_syscall_64+0x33/0x40
[ 2996.487801]  entry_SYSCALL_64_after_hwframe+0x61/0xc6
[ 2996.489212] RIP: 0033:0x7f38308e8b19
[ 2996.490216] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 2996.495227] RSP: 002b:00007f382de5e188 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5
[ 2996.497294] RAX: ffffffffffffffda RBX: 00007f38309fbf60 RCX: 00007f38308e8b19
[ 2996.499240] RDX: 00000000200000c0 RSI: 0000000020000040 RDI: 0000000000000000
[ 2996.501140] RBP: 00007f382de5e1d0 R08: 0000000020000280 R09: 0000000000000000
[ 2996.503125] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[ 2996.504962] R13: 00007ffca2bf07df R14: 00007f382de5e300 R15: 0000000000022000
21:30:42 executing program 3:
r0 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x105142, 0x0)
r1 = perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x400, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
sendfile(r1, r0, &(0x7f0000000000)=0x9, 0x80000001)
pipe(&(0x7f00000001c0)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
mount$9p_fd(0x0, &(0x7f0000000040)='./file1\x00', &(0x7f00000000c0), 0x0, &(0x7f0000000200)=ANY=[@ANYBLOB='trans=fd,rfdno=', @ANYRESHEX=r2, @ANYBLOB=',wfdno=', @ANYRESHEX, @ANYBLOB="000062aa3d5cbcd535ce4cdfb2a4e06e897dd80e47ae77"])
openat(r3, &(0x7f0000000180)='./file1\x00', 0x0, 0x0)
r4 = socket$nl_netfilter(0x10, 0x3, 0xc)
r5 = perf_event_open(&(0x7f0000001d80)={0x2, 0x80, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
mmap(&(0x7f0000ffc000/0x2000)=nil, 0x2000, 0x0, 0x13, r5, 0x0)
perf_event_open(&(0x7f0000001d80)={0x2, 0x80, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, r5, 0x2)
ioctl$BTRFS_IOC_GET_SUBVOL_INFO(r5, 0x81f8943c, &(0x7f0000000280))
lseek(r4, 0x9, 0x1)

21:30:42 executing program 4:
openat$vcs(0xffffffffffffff9c, &(0x7f0000000040), 0x0, 0x0)
openat$sr(0xffffffffffffff9c, &(0x7f00000035c0), 0x0, 0x0)
openat$sr(0xffffffffffffff9c, &(0x7f0000000000), 0x225400, 0x0)
openat$rtc(0xffffffffffffff9c, &(0x7f0000000200), 0x0, 0x0)
pipe(&(0x7f00000001c0))
open(&(0x7f00000016c0)='./cgroup.net/cgroup.procs\x00', 0x0, 0x0)
pselect6(0x40, &(0x7f0000000180), &(0x7f00000001c0)={0x3fc}, 0x0, 0x0, 0x0)
r0 = perf_event_open(&(0x7f0000001d80)={0x2, 0x80, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
mmap(&(0x7f0000ffc000/0x2000)=nil, 0x2000, 0x0, 0x13, r0, 0x0)
perf_event_open(&(0x7f0000001d80)={0x2, 0x80, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, r0, 0x2)
ioctl$BTRFS_IOC_QUOTA_RESCAN_WAIT(r0, 0x942e, 0x0)

21:30:42 executing program 6:
r0 = syz_mount_image$vfat(&(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x0, 0x2, &(0x7f0000000180)=[{&(0x7f0000000140)="eb3c906d6b66732e66617400020801000470008400f801", 0x17}, {0x0, 0x0, 0x1000a00}], 0x0, &(0x7f0000000240)=ANY=[])
chdir(&(0x7f0000000040)='./file0\x00')
openat2(r0, &(0x7f0000000100)='./file0\x00', &(0x7f00000001c0)={0x40000, 0x81}, 0x18)
mount$cgroup(0x0, 0x0, &(0x7f0000000400), 0x0, 0x0)
r1 = syz_io_uring_setup(0x22, &(0x7f0000000680)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000180)=<r2=>0x0, &(0x7f0000002a40)=<r3=>0x0)
io_uring_register$IORING_REGISTER_PERSONALITY(r1, 0x9, 0x0, 0x0)
socket$nl_netfilter(0x10, 0x3, 0xc)
syz_io_uring_submit(r2, r3, 0x0, 0x0)
r4 = syz_io_uring_setup(0x22, &(0x7f0000000680)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000180), &(0x7f0000002a40))
r5 = io_uring_register$IORING_REGISTER_PERSONALITY(r4, 0x9, 0x0, 0x0)
syz_io_uring_submit(r2, 0x0, &(0x7f0000000440)=@IORING_OP_FSYNC={0x3, 0x2, 0x0, @fd_index=0x9, 0x0, 0x0, 0x0, 0x0, 0x1, {0x0, r5}}, 0x2)
perf_event_open(0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r6 = openat(0xffffffffffffff9c, &(0x7f00000002c0)='./file1\x00', 0x105142, 0x0)
r7 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0)
sendfile(r6, r7, 0x0, 0x100000001)
newfstatat(0xffffffffffffff9c, &(0x7f0000000340)='./file1\x00', &(0x7f0000000380), 0x400)

21:30:42 executing program 1:
openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x105142, 0x0)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
pipe(&(0x7f00000001c0))
mount$9p_fd(0x0, &(0x7f0000000040)='./file1\x00', &(0x7f00000000c0), 0x20100000, &(0x7f0000000280)={'trans=fd,', {}, 0x2c, {}, 0x2c, {[{@nodevmap}]}})

[ 2996.563500] 9pnet: Insufficient options for proto=fd
[ 2996.614552] 9pnet: Insufficient options for proto=fd
21:30:43 executing program 3:
r0 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x105142, 0x0)
openat(r0, &(0x7f0000000000)='./file1\x00', 0x444100, 0x0)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x400}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
pipe(&(0x7f00000001c0)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
r3 = perf_event_open(&(0x7f0000001d80)={0x2, 0x80, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
mmap(&(0x7f0000ffc000/0x2000)=nil, 0x2000, 0x0, 0x13, r3, 0x0)
perf_event_open(&(0x7f0000001d80)={0x2, 0x80, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, r3, 0x2)
mount$9p_fd(0x0, &(0x7f0000000040)='./file1\x00', &(0x7f00000000c0), 0x0, &(0x7f0000000280)={'trans=fd,', {'rfdno', 0x3d, r1}, 0x2c, {'wfdno', 0x3d, r3}, 0x2c, {[{@nodevmap}]}})
openat(r2, &(0x7f0000000180)='./file1\x00', 0x0, 0x0)

21:30:43 executing program 0:
syz_mount_image$vfat(&(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x0, 0x2, &(0x7f0000000180)=[{&(0x7f0000000140)="eb3c906d6b66732e66617400020801000470008400f801", 0x17}, {0x0, 0x0, 0x1000a00}], 0x0, &(0x7f0000000240)=ANY=[])
chdir(&(0x7f0000000040)='./file0\x00')
mount$cgroup(0x0, 0x0, &(0x7f0000000400), 0x0, 0x0)
r0 = syz_io_uring_setup(0x22, &(0x7f0000000680)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000180)=<r1=>0x0, &(0x7f0000002a40)=<r2=>0x0)
r3 = io_uring_register$IORING_REGISTER_PERSONALITY(r0, 0x9, 0x0, 0x0)
r4 = socket$nl_netfilter(0x10, 0x3, 0xc)
syz_io_uring_submit(r1, r2, &(0x7f0000000400)=@IORING_OP_WRITEV={0x2, 0x0, 0x0, @fd=r4, 0x0, 0x0, 0x0, 0x0, 0x0, {0x0, r3}}, 0x0)
r5 = syz_io_uring_setup(0x22, &(0x7f0000000680)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000180), &(0x7f0000002a40))
r6 = io_uring_register$IORING_REGISTER_PERSONALITY(r5, 0x9, 0x0, 0x0)
syz_io_uring_submit(r1, 0x0, &(0x7f0000000440)=@IORING_OP_FSYNC={0x3, 0x2, 0x0, @fd_index=0x9, 0x0, 0x0, 0x0, 0x0, 0x1, {0x0, r6}}, 0x2)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r7 = openat(0xffffffffffffff9c, &(0x7f00000002c0)='./file1\x00', 0x0, 0x0)
r8 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0)
mount(&(0x7f0000000200)=ANY=[@ANYBLOB="2f6f651317868af191bdb2"], &(0x7f0000000240)='./file0\x00', &(0x7f0000000280)='nfsd\x00', 0x800000, &(0x7f0000000300)='cgroup\x00')
sendfile(r7, r8, 0x0, 0x100000001)
newfstatat(0xffffffffffffff9c, &(0x7f0000000340)='./file1\x00', &(0x7f0000000380), 0x400)

21:30:59 executing program 3:
openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x105142, 0x0)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x400}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
pipe(&(0x7f00000001c0)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
mount$9p_fd(0x0, &(0x7f0000000040)='./file1\x00', &(0x7f00000000c0), 0x0, &(0x7f0000000280)=ANY=[@ANYBLOB='tbans=fd,rfdno=', @ANYRESHEX=r0, @ANYBLOB=',wfdno=', @ANYRESHEX, @ANYBLOB=',nodevmap,\x00'])
openat(r1, &(0x7f0000000180)='./file1\x00', 0x0, 0x0)
r2 = perf_event_open(&(0x7f0000001d80)={0x2, 0x80, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
mmap(&(0x7f0000ffc000/0x2000)=nil, 0x2000, 0x0, 0x13, r2, 0x0)
perf_event_open(&(0x7f0000001d80)={0x2, 0x80, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, r2, 0x2)
readv(r2, &(0x7f0000000080)=[{&(0x7f0000000300)=""/166, 0xa6}, {&(0x7f0000000000)=""/52, 0x34}], 0x2)

21:30:59 executing program 2:
syz_mount_image$vfat(&(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x0, 0x2, &(0x7f0000000180)=[{&(0x7f0000000140)="eb3c906d6b66732e66617400020801000470008400f801", 0x17}, {0x0, 0x0, 0x1000a00}], 0x0, &(0x7f0000000240)=ANY=[])
chdir(&(0x7f0000000040)='./file0\x00')
r0 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x105142, 0x0)
ioctl$FS_IOC_RESVSP(r0, 0x40305828, &(0x7f0000000040)={0x0, 0x0, 0x0, 0x4000006})
sendmsg$BATADV_CMD_GET_ROUTING_ALGOS(r0, &(0x7f0000000280)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x20}, 0xc, &(0x7f0000000240)={&(0x7f00000001c0)={0x4c, 0x0, 0x200, 0x70bd2d, 0x25dfdbfd, {}, [@BATADV_ATTR_AGGREGATED_OGMS_ENABLED={0x5}, @BATADV_ATTR_MULTICAST_FORCEFLOOD_ENABLED={0x5}, @BATADV_ATTR_GW_BANDWIDTH_UP={0x8, 0x32, 0x3}, @BATADV_ATTR_ISOLATION_MARK={0x8, 0x2b, 0x8000}, @BATADV_ATTR_AGGREGATED_OGMS_ENABLED={0x5}, @BATADV_ATTR_VLANID={0x6, 0x28, 0x2}, @BATADV_ATTR_ELP_INTERVAL={0x8, 0x3a, 0x5}]}, 0x4c}, 0x1, 0x0, 0x0, 0x20000080}, 0x4)

21:30:59 executing program 6:
r0 = syz_mount_image$vfat(&(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x0, 0x2, &(0x7f0000000180)=[{&(0x7f0000000140)="eb3c906d6b66732e66617400020801000470008400f801", 0x17}, {0x0, 0x0, 0x1000a00}], 0x0, &(0x7f0000000240)=ANY=[])
chdir(&(0x7f0000000040)='./file0\x00')
openat2(r0, &(0x7f0000000100)='./file0\x00', &(0x7f00000001c0)={0x40000, 0x81}, 0x18)
mount$cgroup(0x0, 0x0, &(0x7f0000000400), 0x0, 0x0)
r1 = syz_io_uring_setup(0x22, &(0x7f0000000680)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000180)=<r2=>0x0, &(0x7f0000002a40)=<r3=>0x0)
io_uring_register$IORING_REGISTER_PERSONALITY(r1, 0x9, 0x0, 0x0)
socket$nl_netfilter(0x10, 0x3, 0xc)
syz_io_uring_submit(r2, r3, 0x0, 0x0)
r4 = syz_io_uring_setup(0x22, &(0x7f0000000680)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000180), &(0x7f0000002a40))
r5 = io_uring_register$IORING_REGISTER_PERSONALITY(r4, 0x9, 0x0, 0x0)
syz_io_uring_submit(r2, 0x0, &(0x7f0000000440)=@IORING_OP_FSYNC={0x3, 0x2, 0x0, @fd_index=0x9, 0x0, 0x0, 0x0, 0x0, 0x1, {0x0, r5}}, 0x2)
perf_event_open(0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r6 = openat(0xffffffffffffff9c, &(0x7f00000002c0)='./file1\x00', 0x105142, 0x0)
r7 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0)
sendfile(r6, r7, 0x0, 0x100000001)
newfstatat(0xffffffffffffff9c, &(0x7f0000000340)='./file1\x00', &(0x7f0000000380), 0x400)

21:30:59 executing program 7:
openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x105142, 0x0)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x400}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
pipe(&(0x7f00000001c0)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
mount$9p_fd(0x0, &(0x7f0000000040)='./file1\x00', &(0x7f00000000c0), 0xc0ed0000, &(0x7f0000000280)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {}, 0x2c, {[{@nodevmap}]}})
openat(r1, &(0x7f0000000180)='./file1\x00', 0x0, 0x0)

21:30:59 executing program 4:
openat$vcs(0xffffffffffffff9c, &(0x7f0000000040), 0x0, 0x0)
r0 = perf_event_open(&(0x7f0000001d80)={0x2, 0x80, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
mmap(&(0x7f0000ffc000/0x2000)=nil, 0x2000, 0x0, 0x13, r0, 0x0)
perf_event_open(&(0x7f0000001d80)={0x2, 0x80, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, r0, 0x2)
ftruncate(r0, 0x9be9)
openat$sr(0xffffffffffffff9c, &(0x7f00000035c0), 0x0, 0x0)
openat$sr(0xffffffffffffff9c, &(0x7f00000000c0), 0x224400, 0x0)
openat$rtc(0xffffffffffffff9c, &(0x7f0000000200), 0x0, 0x0)
pipe(&(0x7f00000001c0))
open(&(0x7f00000016c0)='./cgroup.net/cgroup.procs\x00', 0x0, 0x0)
pselect6(0x40, &(0x7f0000000180), &(0x7f00000001c0)={0x3fc}, 0x0, 0x0, 0x0)

21:30:59 executing program 0:
syz_mount_image$vfat(&(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x0, 0x2, &(0x7f0000000180)=[{&(0x7f0000000140)="eb3c906d6b66732e66617400020801000470008400f801", 0x17}, {0x0, 0x0, 0x1000a00}], 0x0, &(0x7f0000000240)=ANY=[])
chdir(&(0x7f0000000040)='./file0\x00')
mount$cgroup(0x0, 0x0, &(0x7f0000000400), 0x0, 0x0)
r0 = syz_io_uring_setup(0x22, &(0x7f0000000680)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000180)=<r1=>0x0, &(0x7f0000002a40)=<r2=>0x0)
r3 = io_uring_register$IORING_REGISTER_PERSONALITY(r0, 0x9, 0x0, 0x0)
r4 = socket$nl_netfilter(0x10, 0x3, 0xc)
syz_io_uring_submit(r1, r2, &(0x7f0000000400)=@IORING_OP_WRITEV={0x2, 0x0, 0x0, @fd=r4, 0x0, 0x0, 0x0, 0x0, 0x0, {0x0, r3}}, 0x0)
r5 = syz_io_uring_setup(0x22, &(0x7f0000000680)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000180), &(0x7f0000002a40))
r6 = io_uring_register$IORING_REGISTER_PERSONALITY(r5, 0x9, 0x0, 0x0)
syz_io_uring_submit(r1, 0x0, &(0x7f0000000440)=@IORING_OP_FSYNC={0x3, 0x2, 0x0, @fd_index=0x9, 0x0, 0x0, 0x0, 0x0, 0x1, {0x0, r6}}, 0x2)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r7 = openat(0xffffffffffffff9c, &(0x7f00000002c0)='./file1\x00', 0x0, 0x0)
r8 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0)
mount(&(0x7f0000000200)=ANY=[@ANYBLOB="2f6f651317868af191bdb2"], &(0x7f0000000240)='./file0\x00', &(0x7f0000000280)='nfsd\x00', 0x800000, &(0x7f0000000300)='cgroup\x00')
sendfile(r7, r8, 0x0, 0x100000001)
newfstatat(0xffffffffffffff9c, &(0x7f0000000340)='./file1\x00', &(0x7f0000000380), 0x400)

21:30:59 executing program 5:
openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x105142, 0x0)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
pipe(&(0x7f00000001c0)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
mount$9p_fd(0x0, &(0x7f0000000040)='./file1\x00', &(0x7f00000000c0), 0x0, &(0x7f0000000280)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}}) (fail_nth: 98)
openat(0xffffffffffffffff, 0x0, 0x0, 0x0)

21:30:59 executing program 1:
openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x105142, 0x0)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
pipe(&(0x7f00000001c0))
mount$9p_fd(0x0, &(0x7f0000000040)='./file1\x00', &(0x7f00000000c0), 0x8cffffff, &(0x7f0000000280)={'trans=fd,', {}, 0x2c, {}, 0x2c, {[{@nodevmap}]}})

[ 3012.993177] 9pnet: Insufficient options for proto=fd
[ 3013.037608] FAULT_INJECTION: forcing a failure.
[ 3013.037608] name failslab, interval 1, probability 0, space 0, times 0
[ 3013.039512] CPU: 0 PID: 29610 Comm: syz-executor.5 Not tainted 5.10.172 #1
[ 3013.040425] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 3013.041516] Call Trace:
[ 3013.041883]  dump_stack+0x107/0x167
[ 3013.042415]  should_fail.cold+0x5/0xa
[ 3013.042935]  ? create_object.isra.0+0x3a/0xa20
[ 3013.043567]  should_failslab+0x5/0x20
[ 3013.044085]  kmem_cache_alloc+0x5b/0x360
[ 3013.044646]  create_object.isra.0+0x3a/0xa20
[ 3013.045225]  ? __kasan_kmalloc.constprop.0+0xc9/0xd0
[ 3013.045865]  kmem_cache_alloc+0x159/0x360
[ 3013.046441]  __kernfs_new_node+0xd4/0x850
[ 3013.046956]  ? kernfs_dop_revalidate+0x3a0/0x3a0
[ 3013.047586]  ? __mutex_unlock_slowpath+0xe1/0x600
[ 3013.048186]  ? wait_for_completion_io+0x270/0x270
[ 3013.048849]  ? kernfs_next_descendant_post+0x1a7/0x2a0
[ 3013.049508]  kernfs_new_node+0x93/0x120
[ 3013.050055]  __kernfs_create_file+0x51/0x350
[ 3013.050606]  sysfs_add_file_mode_ns+0x221/0x560
[ 3013.051237]  internal_create_group+0x324/0xb30
[ 3013.051801]  ? sysfs_remove_group+0x170/0x170
[ 3013.052399]  ? kernfs_name_hash+0xe7/0x110
[ 3013.052918]  ? kernfs_find_ns+0x256/0x380
[ 3013.053460]  sysfs_slab_add+0x188/0x200
[ 3013.053957]  __kmem_cache_create+0x3db/0x520
[ 3013.054517]  kmem_cache_create_usercopy+0x1db/0x2f0
[ 3013.055131]  p9_client_create+0xc2b/0x1090
[ 3013.055708]  ? p9_client_flush+0x430/0x430
[ 3013.056245]  ? lockdep_init_map_type+0x2c7/0x780
[ 3013.056857]  ? rcu_read_lock_sched_held+0x3e/0x80
[ 3013.057442]  ? __raw_spin_lock_init+0x36/0x110
[ 3013.058045]  v9fs_session_init+0x1dd/0x16a0
[ 3013.058591]  ? kmem_cache_alloc_trace+0x151/0x360
[ 3013.059227]  ? v9fs_show_options+0x690/0x690
[ 3013.059802]  ? kasan_unpoison_shadow+0x33/0x50
[ 3013.060419]  ? __kasan_kmalloc.constprop.0+0xc9/0xd0
[ 3013.061081]  v9fs_mount+0x79/0x8f0
[ 3013.061548]  ? v9fs_write_inode+0x60/0x60
[ 3013.062072]  legacy_get_tree+0x105/0x220
[ 3013.062620]  vfs_get_tree+0x8e/0x300
[ 3013.063099]  path_mount+0x13be/0x20b0
[ 3013.063596]  ? strncpy_from_user+0x9e/0x470
[ 3013.064162]  ? finish_automount+0xa40/0xa40
[ 3013.064744]  ? getname_flags.part.0+0x1dd/0x4f0
[ 3013.065350]  ? _copy_from_user+0xfb/0x1b0
[ 3013.065895]  __x64_sys_mount+0x282/0x300
[ 3013.066420]  ? copy_mnt_ns+0xa00/0xa00
[ 3013.066942]  ? rcu_read_lock_sched_held+0x3e/0x80
[ 3013.067554]  do_syscall_64+0x33/0x40
[ 3013.068044]  entry_SYSCALL_64_after_hwframe+0x61/0xc6
[ 3013.068713] RIP: 0033:0x7f38308e8b19
[ 3013.069197] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 3013.071489] RSP: 002b:00007f382de5e188 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5
[ 3013.072486] RAX: ffffffffffffffda RBX: 00007f38309fbf60 RCX: 00007f38308e8b19
[ 3013.073372] RDX: 00000000200000c0 RSI: 0000000020000040 RDI: 0000000000000000
[ 3013.074260] RBP: 00007f382de5e1d0 R08: 0000000020000280 R09: 0000000000000000
[ 3013.075160] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[ 3013.076056] R13: 00007ffca2bf07df R14: 00007f382de5e300 R15: 0000000000022000
21:30:59 executing program 7:
r0 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x105142, 0x0)
openat(r0, &(0x7f0000000000)='./file1\x00', 0x444100, 0x0)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x400}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
pipe(&(0x7f00000001c0)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
r3 = perf_event_open(&(0x7f0000001d80)={0x2, 0x80, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
mmap(&(0x7f0000ffc000/0x2000)=nil, 0x2000, 0x0, 0x13, r3, 0x0)
perf_event_open(&(0x7f0000001d80)={0x2, 0x80, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, r3, 0x2)
mount$9p_fd(0x0, &(0x7f0000000040)='./file1\x00', &(0x7f00000000c0), 0x0, &(0x7f0000000280)={'trans=fd,', {'rfdno', 0x3d, r1}, 0x2c, {'wfdno', 0x3d, r3}, 0x2c, {[{@nodevmap}]}})
openat(r2, &(0x7f0000000180)='./file1\x00', 0x0, 0x0)

21:30:59 executing program 2:
syz_mount_image$vfat(&(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x0, 0x2, &(0x7f0000000180)=[{&(0x7f0000000140)="eb3c906d6b66732e66617400020801000470008400f801", 0x17}, {0x0, 0x0, 0x1000a00}], 0x0, &(0x7f0000000240)=ANY=[])
chdir(&(0x7f0000000040)='./file0\x00')
r0 = socket$nl_generic(0x10, 0x3, 0x10)
setsockopt$netlink_NETLINK_LISTEN_ALL_NSID(r0, 0x10e, 0x8, &(0x7f0000000000)=0x4, 0x4)
pipe(&(0x7f00000001c0)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
mount$9p_fd(0x0, &(0x7f0000000040)='./file1\x00', &(0x7f00000000c0), 0x0, &(0x7f0000000280)={'trans=fd,', {'rfdno', 0x3d, r1}, 0x2c, {'wfdno', 0x3d, r2}, 0x2c, {[{@nodevmap}]}})
openat(r2, &(0x7f0000000240)='./file0\x00', 0x4041, 0x9)
syz_genetlink_get_family_id$ethtool(&(0x7f0000000180), r0)
getsockname(r0, &(0x7f00000001c0)=@l2tp6={0xa, 0x0, 0x0, @ipv4={""/10, ""/2, @dev}}, &(0x7f0000000000)=0x80)
r3 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x105142, 0x0)
ioctl$FS_IOC_RESVSP(r3, 0x40305828, &(0x7f0000000040)={0x0, 0x0, 0x0, 0x4000006})

21:30:59 executing program 1:
openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x105142, 0x0)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
pipe(&(0x7f00000001c0))
mount$9p_fd(0x0, &(0x7f0000000040)='./file1\x00', &(0x7f00000000c0), 0xc0ed0000, &(0x7f0000000280)={'trans=fd,', {}, 0x2c, {}, 0x2c, {[{@nodevmap}]}})

21:30:59 executing program 6:
r0 = syz_mount_image$vfat(&(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x0, 0x2, &(0x7f0000000180)=[{&(0x7f0000000140)="eb3c906d6b66732e66617400020801000470008400f801", 0x17}, {0x0, 0x0, 0x1000a00}], 0x0, &(0x7f0000000240)=ANY=[])
chdir(&(0x7f0000000040)='./file0\x00')
openat2(r0, &(0x7f0000000100)='./file0\x00', &(0x7f00000001c0)={0x40000, 0x81}, 0x18)
mount$cgroup(0x0, 0x0, &(0x7f0000000400), 0x0, 0x0)
r1 = syz_io_uring_setup(0x22, &(0x7f0000000680)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000180)=<r2=>0x0, &(0x7f0000002a40)=<r3=>0x0)
io_uring_register$IORING_REGISTER_PERSONALITY(r1, 0x9, 0x0, 0x0)
socket$nl_netfilter(0x10, 0x3, 0xc)
syz_io_uring_submit(r2, r3, 0x0, 0x0)
r4 = syz_io_uring_setup(0x22, &(0x7f0000000680)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000180), &(0x7f0000002a40))
r5 = io_uring_register$IORING_REGISTER_PERSONALITY(r4, 0x9, 0x0, 0x0)
syz_io_uring_submit(r2, 0x0, &(0x7f0000000440)=@IORING_OP_FSYNC={0x3, 0x2, 0x0, @fd_index=0x9, 0x0, 0x0, 0x0, 0x0, 0x1, {0x0, r5}}, 0x2)
perf_event_open(&(0x7f0000001d80)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r6 = openat(0xffffffffffffff9c, &(0x7f00000002c0)='./file1\x00', 0x105142, 0x0)
r7 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0)
sendfile(r6, r7, 0x0, 0x100000001)
newfstatat(0xffffffffffffff9c, &(0x7f0000000340)='./file1\x00', &(0x7f0000000380), 0x400)

21:30:59 executing program 3:
r0 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x105142, 0x0)
writev(r0, &(0x7f0000000000)=[{&(0x7f0000001540)="8d607b0b6f7a97f66041ca4d38a99f6632926ef3972be3fed6f867d37169276566bed4d05b8bf31f66515ee1b421e7c8c746f23365f259e6966adf5422515a933dd99a7ba221ce64bd894e054ef49dbf5a155ef86186b2570f7ca3b8cba04d958b74ffe86b44c537fe0bc35a72b3100bfdfd899999a0c63851793d15dd35a84c6972f720755bdd9e5e2ff208c4610e9ef3d55e3ee7a4eec3510fd2f6ba108515a85760a16cf8cd8dce13d17c3b100b19d7a8bdaec09e1ccd9deb0ea5", 0xbc}, {&(0x7f00000003c0)="f4924a8a6bcd1af4a585cafb1132a946a172f2291160f3030266964f40b0f6c380798e897f0401e10865482e13d2e8c2b330dae955c93aad6c0263057c05873fe525d41a6bd1489f04f60a8987280af166803aa4f2b131344629c01bbd5ddda1b23792f9b4cc9e2ea6a6d6bdb56f288ed6295300cf21b21dc7551f0f8a0b219d6c28", 0x82}, {&(0x7f0000000300)="1967e69f10eadf8ca6114fd438f84a449be241016c88fd15a6e780b077e708cfef6a3b92158264a2a442ac414280ae345c7a1e7a0b529b12d9146d94f29535b64b6e6c3027e30eccdfce70226520f9ecfa9ff1fb40b250769c363d544ab95c6d995a53073482a6ebcd5a5acf88bb5e29e8fe12459b855a72823915e27e0e4ff5e47293bd09029aeeeed6563d92b3205f9b4c4056604eb0c6bfabbf66d43b5e905a6d78dcda7af14b947934c8d728a2c75fb303e9e4be8386cd400d4d92f2b6be", 0xc0}, {&(0x7f0000000540)="44fcaea64de4854ce153098415d1beec238e6b72f2606ca93eca0312495c17dcf61391ba5aa23a0c474a7c85dd60db1de4dde1754113bdc0625c0129a79845e73619da9ae9ba9f1c042eb284572a46f3169cc5a900a1a1cddd35b304babe33d9a14237d635bf464db343e5daa0fbd268118a7d55d60bcca81200165109bf509a85cc69345034c1dc34dae5c99aa9a555039a0637301e3a61aefbff9c9b0dc803af848eb89e6a3af69769a8b1bef44bb26283d83a728b1af0e54388a4c96ead3610505ee0cd26934513df08a8e996aaabe537461877239623bfaf8ad395bb79ea9f8653567427ce4ab33c337946344930caebad71ab5c198fdd2037ca0fbf2d41d1fcb63bbe96d95ae5f550a0765c1210b22f0a531208677adf2cdd75512fc56371ed8a7ca49ba60e1c31f315733d5f19438c63d26a5066bb85d5d3fb89df41e3822c0bf4472ad670f13c4556f3e146b1ea9a1e57a071f98441d9481d569fc94ae920254dd10a93074e17d9a6b5ebf27a02615df4331360f884453d99a63f2a780fe84833c5fe9aa3d26501e572bcdc18f0a5dbf43f72d12d045158a6e2028f4466ed7992de416e0f9aa64543387e4fc9703882a45e86ebeb6d7e7278a0282fddc8e5e77adfb5375c3265f2bc01448c284163ec70b9e1932738a915bff45703dbd2c84513f74593b988e0a876cd35ad752a51d6c9f3ab6422946c99a012a18750644c92983e06b6e918987e60b20dd272dd565729bef8acbcd9f3454685e9f0d01ab5c9f842e95ea40d924c3d119e701bc4bf9d513c505b0de357908370e0b63bf4bd7eaf67e4852e92ae789b5b3de22ac841b092c288382402e3f3044d36f68aad98416c3c26bedbd74a5e5dee148cecd9549218ad3eb4d2d152292303ccc8e98e941bb7976e1fa74300cb1bf9825c0e56f15d894782bffcffd38fa87eb7a41332ca40c5aede8ed65bb6d6afd028f5a5e02b977a347f0e4b444eaaff016b57f00ba80eb763a4d39e2f5259127373914168453abe86ac5e495c48b7fc7c51df12f5ab973da47abec8011e72af6899ad0675d900753132a742b4877d448496395cfab90974342da1fc8c3c1d57955e53ead33c87042359f69c2da13d48ce6043e3c33b36244f513ec09ce29c2edc3094d60760cd401cd90c1e549766e2f88a880fa1181612780a9a0f4a16d1d7b7b9108027a12f290b8174624ec978875b897fb3277f7d6f299be21d1a53846a615f47a9b9b8eb5474a3a19d07b5bfaf8db378fdda64d137b3544cd003c5689d6062e60b76f1678608fd29a57d17fc55fa3b66df3b62e5a4b41df2b039452a828ac4688eae5121e036a862cfb0a4d42c4f9a73dfc606796885c8875d621df55febf4e65a52699c42cac49d58e46cec00519deca029b079ffbc204f30ae5d2e29b9596acfb7d09fd6af76a8c31959c454b2f8de13f4ee6cdfb7a04141e8facab5c2d360aa947c5d68fa1f190f7bfeb4be80c43b1ccfbbb767ba5ab52902205d3e8d5b888546b0acf006e3797669b1a19086df0b679f4c73c586b09294fffc0e3318a500b36177e20abddd2d2f7be3b7e4783e0975cdb9396d2fc26a8cfbcd2a2a952dfb5c0a7ea83b68d557bc115f9909535130615e83b12d3dd347ae2f54f2d04efdcf3cbd77b50d880f6130289448d87d169edbc9f4a1cf6a8e2bbb53f5b35893dd652f20ebf4a72dec42f4942c4977b8814e1526f0bd5e06f4833a1a0e01c340db864c33591e26a6399a59af8c40f82cb3dd74ef6d2134b0ea6ce058af88e683aeac4292863ac0817b1d4f043d05ace05d6d9c9af7954db53e4d0379ef09957da89ebe3f8b69a15fc6eb859092facc2119c46c52a334c00dcebe4861d51128321106a4620a793d1318a41172b91cda906c6d7d30dded506ac4ab7a95db610a2933e68040a0c2a5f72df2461c7c4192ca5201fa6c6aec16375fdab96c993b4d42cc29ddb254be5dc6255f982d3816f98ad910bf9841a3f88ca695f39ead8e753ae82837c22bc4cd0749f19b469537ea5bd60d7155d38a2e18231eac46f96bff928e97c67cf81dac50dff07a85cc7d0ee112918cae9d5b1d4310095c481896aad7002a08ce12443101a8928befd9be8f76b9d960b10491d27bf30a9e1e1729a15b13bf536656f42931d98fe9f755058221e98de7a4772befdd742c56942ec0907149ec1bedbcd8ccf5180efda74e1c582ff08764c5b8f4ee69e6234ea285f2e5c0077416d5efe5ff85aa26a3b44ed662c61eb22f55db09365e6349536fa0e3d633fa3c254ecfb49dc71287c4d4593013020847da6fac7f7945386fda40e73204662afc9676cad3e736506e56b82158bb117ee8f8996abc79b87c4f62b88b76a355135e576f4431a9db061dffa4403d1555454fc78435f14a7e99def19854c94f905b896ee937dd470c45529a8ffedde43e9c036480b6664c6fbb6cec48aff6123cdd6f9c0b57d9c3f39acc1bbce122e9fc0761888c7f4082044856c1dfe2a90c8d46f696d8661219e1dd23323367efa7b8f9ee884707255fb75d94e3dfaaad98608618aed3991f59db2069c083dda67911c05f120caa1adec17952280ba9115d34b53dbbbee3df9b280440d2dae37e1e999e7b6384f62495e9f18b7f523c345910726044b68f9b8bb27bb24e91744dc434a197d61ce41c69db141601b4deeeaebba1c68666d84ede3f31bdff6d3ab3531e2a964f39ab8be0b6f598d02bc9498acd18224a0213a7cf925c8dc11bd5660710c2918e345d959c6e8680b2da064a67493cc58f6747dbe87771dffa6ddae793a19255f6d9d54d15a7e6febe34cb4b20b06779b6b93f132c72cf539a255ea981eb4d9d08ddae506669888e6bc84b575cd2243f23b4504d47ccf6e49d5716cd05e29ab74b6a62952a3d00896a2b9e6782354fc06b8165b4763ea8d819af5cb98fabf113c74c2eb66269e57cb1d919887d793bc82d2451dc1b8653044201c93888160d16eec050b55a8f32a25fe90485d93158f1e2ba7820556e79da82d558bf56439e5a05bce27f79ffded2467c5104be0d20bc8493f4b01281e911be50d0361d9f43058b3e5ac7b7c5627f60855f20745a92416b3f1eaa108bdc984d1f022c0fa87f4878250c490632dcb0fd62ffab9a014de8df5ee9fa5caff64b550c0b1a4d6f9016353ce7c02121e64b1fe19fde4dbd9e28ccc0acbd8466163cb7e08c875d9e9960132075b8cba8c2310c269c02fe9549a40d4c0e582c6c878833ab0560aca221ecc359a69acbe0aae77df220665d606c09a08248aaa170909a19690982a51e39b44021e7b12431aa9420c9a66ef66c1a8d1e1f25f2a9fd36003992fc038485dbc454ad65d3e164dd15e425abd5c6ce0ca3ee55d2699737b264d5c7d9ac3dd320e139e9dfd8d7b3035cba2d82f020dd5c4c2e9edb3b5a99699f552423cb167f6d32c92fadd3728cd4111c67612d6bd3ddfec46f1df5efbc05355a44037db912d6f5c56263b49301165cea8a535b3d8209c4fe08c198fb81e52a4171b0c3df3b982304c47b52d671c5f80033fab9d6ee36167c0e8ac50052dee6b95a95f2fc7853ee62774b8d7379ffe6688029165475c1e46326c7454b2836834de18ca313c126d8d96ae2abc7b3ed396239f66da9e868b1540a358e123cbfa55457d9b408efb563e276d05d51876f4fcee4b429330d98ef6e7f351424f38544ba7f7228594309226bcd708b5b328ba1c984e959d5a9c4ff79a5faac9fd7497b6cfbf2b0b76186580e51eafda797c01d90742e5ce18d938b629e9d5516808b1d0c16e6129b11f024985d553ea440161a796eada04451479a571a0cc95ac6901613e5a0ea4378e9cbbe14247885225f651f5fc9ddaf1203b8af3e82b9230ddc9831424aaa9fdbdc0f80e1873a98da532ca693766fd1fff81db7f9748ed3bf828348d06a185919f4c254d7d5428b63d23f6b187a094d8eb9bf2e80215c1850114d056aac39bfd4be390a706fce7827d833e64c8c26a560a90636c2653f5abdfe42456e5343dc39ff9ded3bcb56aff888df86f4352772a71882238f3454c467c4262f5b6c12c7cd6eab0fe33800bde624916b568271bda3e8166f79269cf7e3babe4ccfe596fbf69588581f3fc68c4abec66d8d614f10246a26da56fc8b6d3731da8699f7d47a1b41d4ad4950c287c115ace7b284dc7eb69f0f43be4fff3cdb4150ac757231251f159c47bceeed2d38db753bbeba66b8501cd821917ebbaf3887352cf80b07b0d0f33da18f165a6d276996c6b4336a87fb270aad5c1ce1d4017aa850c95e8dee3e32c14d64cde71aa7d19feba9fed5eb3617b93172cdc5fe91982d846f96341b23847e229235b55d2eadfcd759c6e9bbc998bd41cb096b4f5d511aa596106c613e84aecab2153bb020b5ff754028293212507cac7801cca98ede413a1ce7329fc6957af96f1da7cec34e2ca65872c08888b1d1d1d7298329f36a7272f7f99632e47bc2815224ed4fe41c1df8433c8f7f63a7ea938ead51024cef131e47426a3fc6874d9daab34e13dd8600be3bc32be2130aaf53e25d74b50c06cf2c5adade2088d80adcb449ab31c77c0ad496cf47dbea1e8e4142698ec477b448702e6f72c73fa82a2a0c8e2553705517a95b54ed94445b55db3fe52ddbf94476adadc6ce7c771fc067029ac122ea1cf417fd6aa3de35d989dc592d28adabbee4848b93424dd502d6cd56ea52e85df6b88d4d4d46461fdb33bda44b58c23ac7de3f220365c498d8189ec806a145a389f7ad1c05e26c5a5b3ba83f40e9fa32a3fed0df58814326d4a45382ba8d307cce4a5ab52534c05885c4fb1acb35f8df1054975392319546c2bb4241a5a1aa012750bfff1e9ef6dbebb285e6917fab4e27628c4b8618c97e0095255ee45d4a8b2c7608546eb4115748abddd1ff78b6d703b55b2a4d8af850be1a938ce31b5bda9d7125afcb9881099f48840350418eec86c9d9ba2cca3e707277ad8108f6d8833e21d6d27d8097316683812697fc5c854adcb1a12fcf08d618099f2b016ceff0a52c28318a45841c87637eb701d69c633ac86a8a2f90c2f4d22146ca465b618920faa33ff14c926aae23674c129a8a6f9223b09854fe16395c7cc3d4ffb87f2cd18d93728d8b61eca38674bbaadaa3c04cdac10ca9f3219e1ba8a075275a91ccd18ea7ceb544b85ae006162047b91ec9a952baf0e9415745d7a75630d02964a5dbe8ae5d3c4efa2d0303874bacf5fefb1ccde6cf6c7fdc7b89b6649a21419f614d9ca2b475b92a19fbac0e272b8dec29cd6792ef860e7aa7d1421afa79cd3b0404aa0eceebd613a92290f1bc0f0c0ec54c10691f45fe7dfdcb209ba9f0a026ab0a7e0c154aac2de65b05055bd30b43c7965c69183cbc471f7f032e3475abd9e385091774cc11e213866cebfda0b779f5c0d2860310aace5d276318c862339e196d0f5e39d10a7ae1821464b0590bd215d2912813b2b98c3b95d92ff571650adf873c7e0586e942728f38bca801dab1c4a27e3a5a41090381ad0b880f7dcdc4bfb463d72caf8829fb28f802cd9ed4054fb0561a3b110319ba30ad5c01723017158136a0073630613279954ca18893642b841b0ab2c301e6d346a2cc8dedf29888f3c9eaecb1d8d938b732f6a5831c74425f1d7cfb36b8e0ffbe4e2ec9b45b09ba74271cb8234766006bcd5ce62f71ad4c599cfda0ff801cd56564d1975eb90e36160b1087bd3cd968b050072c289cee4d0d96ca922e132b2d7c8064eab81e966f3d9eb1d8cd4e1490ca5cd52dad2b83dc98e13465ffc462a12d19f8", 0x1000}], 0x4)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x400}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
pipe(&(0x7f00000001c0)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
mount$9p_fd(0x0, &(0x7f0000000040)='./file1\x00', &(0x7f00000000c0), 0x0, &(0x7f0000000280)={'trans=fd,', {'rfdno', 0x3d, r1}, 0x2c, {}, 0x2c, {[{@nodevmap}]}})
openat(r2, &(0x7f0000000180)='./file1\x00', 0x0, 0x0)

[ 3013.261092] 9pnet: Insufficient options for proto=fd
21:30:59 executing program 4:
openat$vcs(0xffffffffffffff9c, &(0x7f0000000040), 0x0, 0x0)
openat$sr(0xffffffffffffff9c, &(0x7f00000035c0), 0x0, 0x0)
openat$sr(0xffffffffffffff9c, &(0x7f00000000c0), 0x4ad7a658afdca895, 0x0)
openat$rtc(0xffffffffffffff9c, &(0x7f0000000200), 0x0, 0x0)
pipe(&(0x7f00000001c0)={0xffffffffffffffff, <r0=>0xffffffffffffffff})
ioctl$FITRIM(r0, 0xc0185879, &(0x7f0000000000)={0x100000000, 0x688, 0x8})
open(&(0x7f00000016c0)='./cgroup.net/cgroup.procs\x00', 0x0, 0x0)
pselect6(0x40, &(0x7f0000000180), &(0x7f00000001c0)={0x3fc}, 0x0, 0x0, 0x0)

21:30:59 executing program 0:
syz_mount_image$vfat(&(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x0, 0x2, &(0x7f0000000180)=[{&(0x7f0000000140)="eb3c906d6b66732e66617400020801000470008400f801", 0x17}, {0x0, 0x0, 0x1000a00}], 0x0, &(0x7f0000000240)=ANY=[])
chdir(&(0x7f0000000040)='./file0\x00')
mount$cgroup(0x0, 0x0, &(0x7f0000000400), 0x0, 0x0)
r0 = syz_io_uring_setup(0x22, &(0x7f0000000680)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000180)=<r1=>0x0, &(0x7f0000002a40)=<r2=>0x0)
r3 = io_uring_register$IORING_REGISTER_PERSONALITY(r0, 0x9, 0x0, 0x0)
r4 = socket$nl_netfilter(0x10, 0x3, 0xc)
syz_io_uring_submit(r1, r2, &(0x7f0000000400)=@IORING_OP_WRITEV={0x2, 0x0, 0x0, @fd=r4, 0x0, 0x0, 0x0, 0x0, 0x0, {0x0, r3}}, 0x0)
r5 = syz_io_uring_setup(0x22, &(0x7f0000000680)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000180), &(0x7f0000002a40))
r6 = io_uring_register$IORING_REGISTER_PERSONALITY(r5, 0x9, 0x0, 0x0)
syz_io_uring_submit(r1, 0x0, &(0x7f0000000440)=@IORING_OP_FSYNC={0x3, 0x2, 0x0, @fd_index=0x9, 0x0, 0x0, 0x0, 0x0, 0x1, {0x0, r6}}, 0x2)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r7 = openat(0xffffffffffffff9c, &(0x7f00000002c0)='./file1\x00', 0x105142, 0x0)
r8 = openat(0xffffffffffffff9c, 0x0, 0x0, 0x0)
mount(&(0x7f0000000200)=ANY=[@ANYBLOB="2f6f651317868af191bdb2"], &(0x7f0000000240)='./file0\x00', &(0x7f0000000280)='nfsd\x00', 0x800000, &(0x7f0000000300)='cgroup\x00')
sendfile(r7, r8, 0x0, 0x100000001)
newfstatat(0xffffffffffffff9c, &(0x7f0000000340)='./file1\x00', &(0x7f0000000380), 0x400)

[ 3013.346470] 9pnet: Insufficient options for proto=fd
21:30:59 executing program 1:
openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x105142, 0x0)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
pipe(&(0x7f00000001c0))
mount$9p_fd(0x0, &(0x7f0000000040)='./file1\x00', &(0x7f00000000c0), 0xf6ffffff, &(0x7f0000000280)={'trans=fd,', {}, 0x2c, {}, 0x2c, {[{@nodevmap}]}})

[ 3013.433724] 9pnet: Insufficient options for proto=fd
21:31:00 executing program 4:
r0 = openat$vcs(0xffffffffffffff9c, &(0x7f0000000040), 0x0, 0x0)
openat$sr(0xffffffffffffff9c, &(0x7f00000035c0), 0x0, 0x0)
openat$sr(0xffffffffffffff9c, &(0x7f00000000c0), 0x224400, 0x0)
setsockopt$inet_tcp_TLS_RX(r0, 0x6, 0x2, &(0x7f0000000000)=@ccm_128={{0x303}, "68dfb2b0aaef27a5", "091b84378a426781ded8a8069d7cf0a4", "2e73e331", "37bf576245fda434"}, 0x28)
openat$rtc(0xffffffffffffff9c, &(0x7f0000000200), 0x0, 0x0)
pipe(&(0x7f00000001c0))
open(&(0x7f00000016c0)='./cgroup.net/cgroup.procs\x00', 0x0, 0x0)
pselect6(0x40, &(0x7f0000000180), &(0x7f00000001c0)={0x3fc}, 0x0, 0x0, 0x0)

21:31:00 executing program 5:
openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x105142, 0x0)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
pipe(&(0x7f00000001c0)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
mount$9p_fd(0x0, &(0x7f0000000040)='./file1\x00', &(0x7f00000000c0), 0x0, &(0x7f0000000280)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}}) (fail_nth: 99)
openat(0xffffffffffffffff, 0x0, 0x0, 0x0)

21:31:00 executing program 0:
syz_mount_image$vfat(&(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x0, 0x2, &(0x7f0000000180)=[{&(0x7f0000000140)="eb3c906d6b66732e66617400020801000470008400f801", 0x17}, {0x0, 0x0, 0x1000a00}], 0x0, &(0x7f0000000240)=ANY=[])
chdir(&(0x7f0000000040)='./file0\x00')
mount$cgroup(0x0, 0x0, &(0x7f0000000400), 0x0, 0x0)
r0 = syz_io_uring_setup(0x22, &(0x7f0000000680)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000180)=<r1=>0x0, &(0x7f0000002a40)=<r2=>0x0)
r3 = io_uring_register$IORING_REGISTER_PERSONALITY(r0, 0x9, 0x0, 0x0)
r4 = socket$nl_netfilter(0x10, 0x3, 0xc)
syz_io_uring_submit(r1, r2, &(0x7f0000000400)=@IORING_OP_WRITEV={0x2, 0x0, 0x0, @fd=r4, 0x0, 0x0, 0x0, 0x0, 0x0, {0x0, r3}}, 0x0)
r5 = syz_io_uring_setup(0x22, &(0x7f0000000680)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000180), &(0x7f0000002a40))
r6 = io_uring_register$IORING_REGISTER_PERSONALITY(r5, 0x9, 0x0, 0x0)
syz_io_uring_submit(r1, 0x0, &(0x7f0000000440)=@IORING_OP_FSYNC={0x3, 0x2, 0x0, @fd_index=0x9, 0x0, 0x0, 0x0, 0x0, 0x1, {0x0, r6}}, 0x2)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r7 = openat(0xffffffffffffff9c, &(0x7f00000002c0)='./file1\x00', 0x105142, 0x0)
r8 = openat(0xffffffffffffff9c, 0x0, 0x0, 0x0)
mount(&(0x7f0000000200)=ANY=[@ANYBLOB="2f6f651317868af191bdb2"], &(0x7f0000000240)='./file0\x00', &(0x7f0000000280)='nfsd\x00', 0x800000, &(0x7f0000000300)='cgroup\x00')
sendfile(r7, r8, 0x0, 0x100000001)
newfstatat(0xffffffffffffff9c, &(0x7f0000000340)='./file1\x00', &(0x7f0000000380), 0x400)

21:31:00 executing program 3:
openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x105142, 0x0)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x400}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = perf_event_open(&(0x7f0000001d80)={0x2, 0x80, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
mmap(&(0x7f0000ffc000/0x2000)=nil, 0x2000, 0x0, 0x13, r0, 0x0)
perf_event_open(&(0x7f0000001d80)={0x2, 0x80, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, r0, 0x2)
pwrite64(r0, &(0x7f0000000300)="7c83630e17eed72fa0a9ee3ef7c698d6dc25ce6c135183c6cced15224ae85b34a52e2470fd932503b60715de97ccac5195274818cd54d5885473b8f3f772bdea966ac4534852af2655c7f6f1dccb141464bc611fe79fb48f2554c583d4f764444a6e983d3a203e22ff4854fd08f460189bdc79218bd3e6a81e970a5624e80ff684cc7933099529fa7ec8aa6da37bb43a67fa177662a80e413ef33c2fb66e75b53f68b21a83db749fd7b825ed6f1dd809ccaab666a6dd18ad4cf92f34bc31245b7a997408285e27dae8b5fd547c39118c600ebacce53c99314ced4196b029e2004f9ae515dd9b290d4345a5", 0xeb, 0x2341)
pipe(&(0x7f00000001c0)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
mount$9p_fd(0x0, &(0x7f0000000040)='./file1\x00', &(0x7f00000000c0), 0x0, &(0x7f0000000280)={'trans=fd,', {'rfdno', 0x3d, r1}, 0x2c, {}, 0x2c, {[{@nodevmap}]}})
openat(r2, &(0x7f0000000180)='./file1\x00', 0x0, 0x0)

21:31:00 executing program 6:
r0 = syz_mount_image$vfat(&(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x0, 0x2, &(0x7f0000000180)=[{&(0x7f0000000140)="eb3c906d6b66732e66617400020801000470008400f801", 0x17}, {0x0, 0x0, 0x1000a00}], 0x0, &(0x7f0000000240)=ANY=[])
chdir(&(0x7f0000000040)='./file0\x00')
openat2(r0, &(0x7f0000000100)='./file0\x00', &(0x7f00000001c0)={0x40000, 0x81}, 0x18)
mount$cgroup(0x0, 0x0, &(0x7f0000000400), 0x0, 0x0)
r1 = syz_io_uring_setup(0x22, &(0x7f0000000680)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000180)=<r2=>0x0, &(0x7f0000002a40)=<r3=>0x0)
io_uring_register$IORING_REGISTER_PERSONALITY(r1, 0x9, 0x0, 0x0)
socket$nl_netfilter(0x10, 0x3, 0xc)
syz_io_uring_submit(r2, r3, 0x0, 0x0)
r4 = syz_io_uring_setup(0x22, &(0x7f0000000680)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000180), &(0x7f0000002a40))
r5 = io_uring_register$IORING_REGISTER_PERSONALITY(r4, 0x9, 0x0, 0x0)
syz_io_uring_submit(r2, 0x0, &(0x7f0000000440)=@IORING_OP_FSYNC={0x3, 0x2, 0x0, @fd_index=0x9, 0x0, 0x0, 0x0, 0x0, 0x1, {0x0, r5}}, 0x2)
perf_event_open(&(0x7f0000001d80)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r6 = openat(0xffffffffffffff9c, &(0x7f00000002c0)='./file1\x00', 0x105142, 0x0)
r7 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0)
sendfile(r6, r7, 0x0, 0x100000001)
newfstatat(0xffffffffffffff9c, &(0x7f0000000340)='./file1\x00', &(0x7f0000000380), 0x400)

[ 3013.661389] FAULT_INJECTION: forcing a failure.
[ 3013.661389] name failslab, interval 1, probability 0, space 0, times 0
[ 3013.664331] CPU: 0 PID: 29827 Comm: syz-executor.5 Not tainted 5.10.172 #1
[ 3013.665820] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 3013.667591] Call Trace:
[ 3013.668166]  dump_stack+0x107/0x167
[ 3013.668963]  should_fail.cold+0x5/0xa
[ 3013.669785]  ? __kernfs_new_node+0xd4/0x850
[ 3013.670720]  should_failslab+0x5/0x20
[ 3013.671527]  kmem_cache_alloc+0x5b/0x360
[ 3013.672422]  __kernfs_new_node+0xd4/0x850
[ 3013.673301]  ? kernfs_dop_revalidate+0x3a0/0x3a0
[ 3013.674337]  ? __mutex_unlock_slowpath+0xe1/0x600
[ 3013.675356]  ? wait_for_completion_io+0x270/0x270
[ 3013.676426]  ? kernfs_next_descendant_post+0x1a7/0x2a0
[ 3013.677537]  kernfs_new_node+0x93/0x120
[ 3013.678405]  __kernfs_create_file+0x51/0x350
[ 3013.679339]  sysfs_add_file_mode_ns+0x221/0x560
[ 3013.680367]  internal_create_group+0x324/0xb30
[ 3013.681337]  ? sysfs_remove_group+0x170/0x170
[ 3013.682296]  ? kernfs_name_hash+0xe7/0x110
[ 3013.683194]  ? kernfs_find_ns+0x256/0x380
[ 3013.684100]  sysfs_slab_add+0x188/0x200
[ 3013.684990]  __kmem_cache_create+0x3db/0x520
[ 3013.685941]  kmem_cache_create_usercopy+0x1db/0x2f0
[ 3013.687030]  p9_client_create+0xc2b/0x1090
[ 3013.687946]  ? p9_client_flush+0x430/0x430
[ 3013.688878]  ? lockdep_init_map_type+0x2c7/0x780
[ 3013.689894]  ? rcu_read_lock_sched_held+0x3e/0x80
[ 3013.690948]  ? __raw_spin_lock_init+0x36/0x110
[ 3013.691960]  v9fs_session_init+0x1dd/0x16a0
[ 3013.692939]  ? kmem_cache_alloc_trace+0x151/0x360
[ 3013.693977]  ? v9fs_show_options+0x690/0x690
[ 3013.694963]  ? kasan_unpoison_shadow+0x33/0x50
[ 3013.695947]  ? __kasan_kmalloc.constprop.0+0xc9/0xd0
[ 3013.697054]  v9fs_mount+0x79/0x8f0
[ 3013.697828]  ? v9fs_write_inode+0x60/0x60
[ 3013.698726]  legacy_get_tree+0x105/0x220
[ 3013.699596]  vfs_get_tree+0x8e/0x300
[ 3013.700400]  path_mount+0x13be/0x20b0
[ 3013.701217]  ? strncpy_from_user+0x9e/0x470
[ 3013.702146]  ? finish_automount+0xa40/0xa40
[ 3013.703086]  ? getname_flags.part.0+0x1dd/0x4f0
[ 3013.704092]  ? _copy_from_user+0xfb/0x1b0
[ 3013.705023]  __x64_sys_mount+0x282/0x300
[ 3013.705898]  ? copy_mnt_ns+0xa00/0xa00
[ 3013.706749]  ? rcu_read_lock_sched_held+0x3e/0x80
[ 3013.707800]  do_syscall_64+0x33/0x40
[ 3013.708619]  entry_SYSCALL_64_after_hwframe+0x61/0xc6
[ 3013.709721] RIP: 0033:0x7f38308e8b19
[ 3013.710524] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 3013.714466] RSP: 002b:00007f382de5e188 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5
[ 3013.716104] RAX: ffffffffffffffda RBX: 00007f38309fbf60 RCX: 00007f38308e8b19
[ 3013.717643] RDX: 00000000200000c0 RSI: 0000000020000040 RDI: 0000000000000000
[ 3013.719189] RBP: 00007f382de5e1d0 R08: 0000000020000280 R09: 0000000000000000
[ 3013.720729] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[ 3013.722239] R13: 00007ffca2bf07df R14: 00007f382de5e300 R15: 0000000000022000
[ 3013.732418] kmem_cache_create(9p-fcall-cache) failed with error -12
[ 3013.733942] CPU: 0 PID: 29827 Comm: syz-executor.5 Not tainted 5.10.172 #1
[ 3013.735424] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 3013.737219] Call Trace:
[ 3013.737799]  dump_stack+0x107/0x167
[ 3013.738597]  kmem_cache_create_usercopy.cold+0x17/0x65
[ 3013.739738]  p9_client_create+0xc2b/0x1090
[ 3013.740680]  ? p9_client_flush+0x430/0x430
[ 3013.741610]  ? lockdep_init_map_type+0x2c7/0x780
[ 3013.742622]  ? rcu_read_lock_sched_held+0x3e/0x80
[ 3013.743767]  ? __raw_spin_lock_init+0x36/0x110
[ 3013.745055]  v9fs_session_init+0x1dd/0x16a0
[ 3013.746258]  ? kmem_cache_alloc_trace+0x151/0x360
[ 3013.747571]  ? v9fs_show_options+0x690/0x690
[ 3013.748730]  ? kasan_unpoison_shadow+0x33/0x50
[ 3013.749721]  ? __kasan_kmalloc.constprop.0+0xc9/0xd0
[ 3013.750828]  v9fs_mount+0x79/0x8f0
[ 3013.751600]  ? v9fs_write_inode+0x60/0x60
[ 3013.752505]  legacy_get_tree+0x105/0x220
[ 3013.753385]  vfs_get_tree+0x8e/0x300
[ 3013.754169]  path_mount+0x13be/0x20b0
[ 3013.755006]  ? strncpy_from_user+0x9e/0x470
[ 3013.755936]  ? finish_automount+0xa40/0xa40
[ 3013.756935]  ? getname_flags.part.0+0x1dd/0x4f0
[ 3013.757944]  ? _copy_from_user+0xfb/0x1b0
[ 3013.758861]  __x64_sys_mount+0x282/0x300
[ 3013.759741]  ? copy_mnt_ns+0xa00/0xa00
[ 3013.760599]  ? rcu_read_lock_sched_held+0x3e/0x80
[ 3013.761685]  do_syscall_64+0x33/0x40
[ 3013.762503]  entry_SYSCALL_64_after_hwframe+0x61/0xc6
[ 3013.763651] RIP: 0033:0x7f38308e8b19
[ 3013.764484] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 3013.768434] RSP: 002b:00007f382de5e188 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5
[ 3013.770058] RAX: ffffffffffffffda RBX: 00007f38309fbf60 RCX: 00007f38308e8b19
[ 3013.771578] RDX: 00000000200000c0 RSI: 0000000020000040 RDI: 0000000000000000
[ 3013.773103] RBP: 00007f382de5e1d0 R08: 0000000020000280 R09: 0000000000000000
[ 3013.774617] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[ 3013.776166] R13: 00007ffca2bf07df R14: 00007f382de5e300 R15: 0000000000022000
21:31:00 executing program 2:
r0 = syz_mount_image$vfat(&(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x0, 0x2, &(0x7f0000000180)=[{&(0x7f0000000140)="eb3c906d6b66732e66617400020801000470008400f801", 0x17}, {0x0, 0x0, 0x1000a00}], 0x0, &(0x7f0000000240)=ANY=[])
chdir(&(0x7f0000000040)='./file0\x00')
r1 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x105142, 0x0)
unlinkat(r0, &(0x7f0000000000)='./file1\x00', 0x200)
getpeername(r1, &(0x7f00000001c0)=@l2, &(0x7f0000000240)=0x80)
ioctl$FS_IOC_RESVSP(r1, 0x40305828, &(0x7f0000000040)={0x0, 0x0, 0x0, 0x4000006})

21:31:00 executing program 0:
syz_mount_image$vfat(&(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x0, 0x2, &(0x7f0000000180)=[{&(0x7f0000000140)="eb3c906d6b66732e66617400020801000470008400f801", 0x17}, {0x0, 0x0, 0x1000a00}], 0x0, &(0x7f0000000240)=ANY=[])
chdir(&(0x7f0000000040)='./file0\x00')
mount$cgroup(0x0, 0x0, &(0x7f0000000400), 0x0, 0x0)
r0 = syz_io_uring_setup(0x22, &(0x7f0000000680)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000180)=<r1=>0x0, &(0x7f0000002a40)=<r2=>0x0)
r3 = io_uring_register$IORING_REGISTER_PERSONALITY(r0, 0x9, 0x0, 0x0)
r4 = socket$nl_netfilter(0x10, 0x3, 0xc)
syz_io_uring_submit(r1, r2, &(0x7f0000000400)=@IORING_OP_WRITEV={0x2, 0x0, 0x0, @fd=r4, 0x0, 0x0, 0x0, 0x0, 0x0, {0x0, r3}}, 0x0)
r5 = syz_io_uring_setup(0x22, &(0x7f0000000680)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000180), &(0x7f0000002a40))
r6 = io_uring_register$IORING_REGISTER_PERSONALITY(r5, 0x9, 0x0, 0x0)
syz_io_uring_submit(r1, 0x0, &(0x7f0000000440)=@IORING_OP_FSYNC={0x3, 0x2, 0x0, @fd_index=0x9, 0x0, 0x0, 0x0, 0x0, 0x1, {0x0, r6}}, 0x2)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r7 = openat(0xffffffffffffff9c, &(0x7f00000002c0)='./file1\x00', 0x105142, 0x0)
r8 = openat(0xffffffffffffff9c, 0x0, 0x0, 0x0)
mount(&(0x7f0000000200)=ANY=[@ANYBLOB="2f6f651317868af191bdb2"], &(0x7f0000000240)='./file0\x00', &(0x7f0000000280)='nfsd\x00', 0x800000, &(0x7f0000000300)='cgroup\x00')
sendfile(r7, r8, 0x0, 0x100000001)
newfstatat(0xffffffffffffff9c, &(0x7f0000000340)='./file1\x00', &(0x7f0000000380), 0x400)

[ 3013.870454] 9pnet: Insufficient options for proto=fd
[ 3013.931806] 9pnet: Insufficient options for proto=fd
21:31:00 executing program 4:
r0 = openat$vcs(0xffffffffffffff9c, &(0x7f0000000040), 0x0, 0x0)
openat$sr(0xffffffffffffff9c, &(0x7f00000035c0), 0x0, 0x0)
openat$sr(0xffffffffffffff9c, &(0x7f00000000c0), 0x224400, 0x0)
openat$rtc(0xffffffffffffff9c, &(0x7f0000000200), 0x0, 0x0)
pipe(&(0x7f00000001c0))
open(&(0x7f00000016c0)='./cgroup.net/cgroup.procs\x00', 0x0, 0x0)
pselect6(0x40, &(0x7f0000000180), &(0x7f00000001c0)={0x3fc}, 0x0, 0x0, 0x0)
r1 = syz_open_dev$char_usb(0xc, 0xb4, 0x3)
ioctl$EXT4_IOC_MOVE_EXT(r1, 0xc028660f, &(0x7f0000000000)={0x0, r0, 0x0, 0x91, 0x0, 0x7})

21:31:16 executing program 7:
openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x105142, 0x0)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x400}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = perf_event_open(&(0x7f0000001d80)={0x2, 0x80, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
mmap(&(0x7f0000ffc000/0x2000)=nil, 0x2000, 0x0, 0x13, r0, 0x0)
perf_event_open(&(0x7f0000001d80)={0x2, 0x80, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, r0, 0x2)
pwrite64(r0, &(0x7f0000000300)="7c83630e17eed72fa0a9ee3ef7c698d6dc25ce6c135183c6cced15224ae85b34a52e2470fd932503b60715de97ccac5195274818cd54d5885473b8f3f772bdea966ac4534852af2655c7f6f1dccb141464bc611fe79fb48f2554c583d4f764444a6e983d3a203e22ff4854fd08f460189bdc79218bd3e6a81e970a5624e80ff684cc7933099529fa7ec8aa6da37bb43a67fa177662a80e413ef33c2fb66e75b53f68b21a83db749fd7b825ed6f1dd809ccaab666a6dd18ad4cf92f34bc31245b7a997408285e27dae8b5fd547c39118c600ebacce53c99314ced4196b029e2004f9ae515dd9b290d4345a5", 0xeb, 0x2341)
pipe(&(0x7f00000001c0)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
mount$9p_fd(0x0, &(0x7f0000000040)='./file1\x00', &(0x7f00000000c0), 0x0, &(0x7f0000000280)={'trans=fd,', {'rfdno', 0x3d, r1}, 0x2c, {}, 0x2c, {[{@nodevmap}]}})
openat(r2, &(0x7f0000000180)='./file1\x00', 0x0, 0x0)

21:31:16 executing program 5:
openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x105142, 0x0)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
pipe(&(0x7f00000001c0)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
mount$9p_fd(0x0, &(0x7f0000000040)='./file1\x00', &(0x7f00000000c0), 0x0, &(0x7f0000000280)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}}) (fail_nth: 100)
openat(0xffffffffffffffff, 0x0, 0x0, 0x0)

21:31:16 executing program 6:
r0 = syz_mount_image$vfat(&(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x0, 0x2, &(0x7f0000000180)=[{&(0x7f0000000140)="eb3c906d6b66732e66617400020801000470008400f801", 0x17}, {0x0, 0x0, 0x1000a00}], 0x0, &(0x7f0000000240)=ANY=[])
chdir(&(0x7f0000000040)='./file0\x00')
openat2(r0, &(0x7f0000000100)='./file0\x00', &(0x7f00000001c0)={0x40000, 0x81}, 0x18)
mount$cgroup(0x0, 0x0, &(0x7f0000000400), 0x0, 0x0)
r1 = syz_io_uring_setup(0x22, &(0x7f0000000680)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000180)=<r2=>0x0, &(0x7f0000002a40)=<r3=>0x0)
io_uring_register$IORING_REGISTER_PERSONALITY(r1, 0x9, 0x0, 0x0)
socket$nl_netfilter(0x10, 0x3, 0xc)
syz_io_uring_submit(r2, r3, 0x0, 0x0)
r4 = syz_io_uring_setup(0x22, &(0x7f0000000680)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000180), &(0x7f0000002a40))
r5 = io_uring_register$IORING_REGISTER_PERSONALITY(r4, 0x9, 0x0, 0x0)
syz_io_uring_submit(r2, 0x0, &(0x7f0000000440)=@IORING_OP_FSYNC={0x3, 0x2, 0x0, @fd_index=0x9, 0x0, 0x0, 0x0, 0x0, 0x1, {0x0, r5}}, 0x2)
perf_event_open(&(0x7f0000001d80)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r6 = openat(0xffffffffffffff9c, &(0x7f00000002c0)='./file1\x00', 0x105142, 0x0)
r7 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0)
sendfile(r6, r7, 0x0, 0x100000001)
newfstatat(0xffffffffffffff9c, &(0x7f0000000340)='./file1\x00', &(0x7f0000000380), 0x400)

21:31:16 executing program 4:
openat$vcs(0xffffffffffffff9c, &(0x7f0000000000), 0x402400, 0x0)
openat$sr(0xffffffffffffff9c, &(0x7f00000035c0), 0x0, 0x0)
openat$sr(0xffffffffffffff9c, &(0x7f00000000c0), 0x200000, 0x0)
openat$rtc(0xffffffffffffff9c, &(0x7f0000000200), 0x0, 0x0)
pipe(&(0x7f00000001c0)={0xffffffffffffffff, <r0=>0xffffffffffffffff})
fallocate(r0, 0x49, 0x4, 0xfffffffffffffff7)
open(&(0x7f00000016c0)='./cgroup.net/cgroup.procs\x00', 0x0, 0x0)
pselect6(0x40, &(0x7f0000000180), &(0x7f00000001c0)={0x3fc}, 0x0, 0x0, 0x0)

21:31:16 executing program 3:
r0 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x105142, 0x0)
ioctl$INCFS_IOC_CREATE_FILE(r0, 0xc058671e, &(0x7f0000000200)={{'\x00', 0x2}, {0x4}, 0x20, 0x0, 0x0, &(0x7f0000000000)='./file1\x00', &(0x7f0000000080)='./file1\x00', &(0x7f0000000300)="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", 0x1cf, 0x0, &(0x7f0000000500)={0x2, 0x1033, {0x0, 0xc, 0x1000, "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", 0x26, "54d03540409accf583cf0174acbb35145bc682263b481a147a86a08ed7ab3608d262239bda57"}, 0x69, "d1cd4976e34de94d9676c522c91f4863389b24edd4efcdac415bd8b9b6e9ea0b0e5c64caad6c24af8b4d33d4dd682a7f39d3b51e541fd93dea164e2e66d4f7e39493225607aae67cbcc5b835fc012102e3ecd03f91bbce20874953d5ab3227022dde3601ebd13dd966"}, 0x10a8})
pipe(&(0x7f00000001c0)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
mount$9p_fd(0x0, &(0x7f0000000040)='./file1\x00', &(0x7f00000000c0), 0x0, &(0x7f0000000280)={'trans=fd,', {'rfdno', 0x3d, r1}, 0x2c, {}, 0x2c, {[{@nodevmap}]}})
openat(r2, &(0x7f0000000180)='./file1\x00', 0x0, 0x0)

21:31:16 executing program 0:
syz_mount_image$vfat(&(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x0, 0x2, &(0x7f0000000180)=[{&(0x7f0000000140)="eb3c906d6b66732e66617400020801000470008400f801", 0x17}, {0x0, 0x0, 0x1000a00}], 0x0, &(0x7f0000000240)=ANY=[])
chdir(&(0x7f0000000040)='./file0\x00')
mount$cgroup(0x0, 0x0, &(0x7f0000000400), 0x0, 0x0)
r0 = syz_io_uring_setup(0x22, &(0x7f0000000680)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000180)=<r1=>0x0, &(0x7f0000002a40)=<r2=>0x0)
r3 = io_uring_register$IORING_REGISTER_PERSONALITY(r0, 0x9, 0x0, 0x0)
r4 = socket$nl_netfilter(0x10, 0x3, 0xc)
syz_io_uring_submit(r1, r2, &(0x7f0000000400)=@IORING_OP_WRITEV={0x2, 0x0, 0x0, @fd=r4, 0x0, 0x0, 0x0, 0x0, 0x0, {0x0, r3}}, 0x0)
r5 = syz_io_uring_setup(0x22, &(0x7f0000000680)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000180), &(0x7f0000002a40))
r6 = io_uring_register$IORING_REGISTER_PERSONALITY(r5, 0x9, 0x0, 0x0)
syz_io_uring_submit(r1, 0x0, &(0x7f0000000440)=@IORING_OP_FSYNC={0x3, 0x2, 0x0, @fd_index=0x9, 0x0, 0x0, 0x0, 0x0, 0x1, {0x0, r6}}, 0x2)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r7 = openat(0xffffffffffffff9c, &(0x7f00000002c0)='./file1\x00', 0x105142, 0x0)
r8 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0)
mount(0x0, &(0x7f0000000240)='./file0\x00', &(0x7f0000000280)='nfsd\x00', 0x800000, &(0x7f0000000300)='cgroup\x00')
sendfile(r7, r8, 0x0, 0x100000001)
newfstatat(0xffffffffffffff9c, &(0x7f0000000340)='./file1\x00', &(0x7f0000000380), 0x400)

21:31:16 executing program 2:
syz_mount_image$vfat(&(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x0, 0x2, &(0x7f0000000180)=[{&(0x7f0000000140)="eb3c906d6b66732e66617400020801000470008400f801", 0x17}, {0x0, 0x0, 0x1000a00}], 0x0, &(0x7f0000000240)=ANY=[])
chdir(&(0x7f0000000040)='./file0\x00')
r0 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x105142, 0x0)
r1 = perf_event_open(&(0x7f0000001d80)={0x2, 0x80, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
mmap(&(0x7f0000ffc000/0x2000)=nil, 0x2000, 0x0, 0x13, r1, 0x0)
pipe(&(0x7f00000001c0)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
mount$9p_fd(0x0, &(0x7f0000000040)='./file1\x00', &(0x7f00000000c0), 0x0, &(0x7f0000000280)={'trans=fd,', {'rfdno', 0x3d, r2}, 0x2c, {'wfdno', 0x3d, r3}, 0x2c, {[{@nodevmap}]}})
r4 = perf_event_open(&(0x7f0000001d80)={0x2, 0x80, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
mmap(&(0x7f0000ffc000/0x2000)=nil, 0x2000, 0x0, 0x13, r4, 0x0)
perf_event_open(&(0x7f0000001d80)={0x2, 0x80, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, r4, 0x2)
ioctl$AUTOFS_DEV_IOCTL_OPENMOUNT(r2, 0xc0189374, &(0x7f00000002c0)={{0x1, 0x1, 0x18, r4, {0x8000}}, './file1\x00'})
rename(&(0x7f0000000240)='./file1\x00', &(0x7f0000000280)='./file1\x00')
perf_event_open(&(0x7f0000001d80)={0x2, 0x80, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, r1, 0x2)
ioctl$AUTOFS_DEV_IOCTL_OPENMOUNT(r0, 0xc0189374, &(0x7f0000000000)={{0x1, 0x1, 0x18, r1, {0x1}}, './file0/file0\x00'})
ioctl$FS_IOC_RESVSP(r0, 0x40305828, &(0x7f0000000040)={0x0, 0x0, 0x0, 0x4000006})
perf_event_open(&(0x7f00000001c0)={0x5, 0x80, 0x4, 0x5, 0x81, 0x7, 0x0, 0x1, 0x4, 0x2, 0x1, 0x1, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x0, 0x1, 0x0, 0x1, 0x1, 0x1, 0x1, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x1, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x0, 0xfff, 0x1, @perf_config_ext={0x1, 0x813}, 0x16f20, 0x1, 0x2, 0x3, 0x3f99, 0x8, 0xdc, 0x0, 0x1, 0x0, 0x9e}, 0xffffffffffffffff, 0xd, 0xffffffffffffffff, 0x0)

21:31:16 executing program 1:
openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x105142, 0x0)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
pipe(&(0x7f00000001c0))
mount$9p_fd(0x0, &(0x7f0000000040)='./file1\x00', &(0x7f00000000c0), 0xffffff8c, &(0x7f0000000280)={'trans=fd,', {}, 0x2c, {}, 0x2c, {[{@nodevmap}]}})

[ 3030.337081] 9pnet: Insufficient options for proto=fd
[ 3030.342322] 9pnet: Insufficient options for proto=fd
[ 3030.382393] FAULT_INJECTION: forcing a failure.
[ 3030.382393] name failslab, interval 1, probability 0, space 0, times 0
[ 3030.384701] CPU: 1 PID: 29962 Comm: syz-executor.5 Not tainted 5.10.172 #1
[ 3030.385992] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 3030.387521] Call Trace:
[ 3030.388046]  dump_stack+0x107/0x167
[ 3030.388755]  should_fail.cold+0x5/0xa
[ 3030.389450]  ? create_object.isra.0+0x3a/0xa20
[ 3030.390307]  should_failslab+0x5/0x20
[ 3030.391048]  kmem_cache_alloc+0x5b/0x360
[ 3030.391840]  create_object.isra.0+0x3a/0xa20
[ 3030.392981]  ? __kasan_kmalloc.constprop.0+0xc9/0xd0
[ 3030.394769]  kmem_cache_alloc+0x159/0x360
[ 3030.396234]  __kernfs_new_node+0xd4/0x850
[ 3030.398023]  ? kernfs_dop_revalidate+0x3a0/0x3a0
[ 3030.398933]  ? __mutex_unlock_slowpath+0xe1/0x600
[ 3030.399823]  ? wait_for_completion_io+0x270/0x270
[ 3030.400795]  ? kernfs_next_descendant_post+0x1a7/0x2a0
[ 3030.401816]  kernfs_new_node+0x93/0x120
[ 3030.402597]  __kernfs_create_file+0x51/0x350
[ 3030.403447]  sysfs_add_file_mode_ns+0x221/0x560
[ 3030.404367]  internal_create_group+0x324/0xb30
[ 3030.405296]  ? sysfs_remove_group+0x170/0x170
[ 3030.406166]  ? kernfs_name_hash+0xe7/0x110
[ 3030.406985]  ? kernfs_find_ns+0x256/0x380
[ 3030.407811]  sysfs_slab_add+0x188/0x200
[ 3030.408612]  __kmem_cache_create+0x3db/0x520
[ 3030.409460]  kmem_cache_create_usercopy+0x1db/0x2f0
[ 3030.410431]  p9_client_create+0xc2b/0x1090
[ 3030.411266]  ? p9_client_flush+0x430/0x430
[ 3030.412107]  ? lockdep_init_map_type+0x2c7/0x780
[ 3030.413054]  ? rcu_read_lock_sched_held+0x3e/0x80
[ 3030.413993]  ? __raw_spin_lock_init+0x36/0x110
[ 3030.414881]  v9fs_session_init+0x1dd/0x16a0
[ 3030.415741]  ? kmem_cache_alloc_trace+0x151/0x360
[ 3030.416704]  ? v9fs_show_options+0x690/0x690
[ 3030.417564]  ? kasan_unpoison_shadow+0x33/0x50
[ 3030.418443]  ? __kasan_kmalloc.constprop.0+0xc9/0xd0
[ 3030.419426]  v9fs_mount+0x79/0x8f0
[ 3030.420114]  ? v9fs_write_inode+0x60/0x60
[ 3030.420946]  legacy_get_tree+0x105/0x220
[ 3030.421731]  vfs_get_tree+0x8e/0x300
[ 3030.422440]  path_mount+0x13be/0x20b0
[ 3030.423172]  ? strncpy_from_user+0x9e/0x470
[ 3030.424000]  ? finish_automount+0xa40/0xa40
[ 3030.424845]  ? getname_flags.part.0+0x1dd/0x4f0
[ 3030.425735]  ? _copy_from_user+0xfb/0x1b0
[ 3030.426546]  __x64_sys_mount+0x282/0x300
[ 3030.427301]  ? copy_mnt_ns+0xa00/0xa00
[ 3030.428064]  ? rcu_read_lock_sched_held+0x3e/0x80
[ 3030.429030]  do_syscall_64+0x33/0x40
[ 3030.429756]  entry_SYSCALL_64_after_hwframe+0x61/0xc6
[ 3030.430729] RIP: 0033:0x7f38308e8b19
[ 3030.431446] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 3030.434933] RSP: 002b:00007f382de5e188 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5
[ 3030.436381] RAX: ffffffffffffffda RBX: 00007f38309fbf60 RCX: 00007f38308e8b19
[ 3030.437749] RDX: 00000000200000c0 RSI: 0000000020000040 RDI: 0000000000000000
[ 3030.439099] RBP: 00007f382de5e1d0 R08: 0000000020000280 R09: 0000000000000000
[ 3030.440446] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000003
[ 3030.441830] R13: 00007ffca2bf07df R14: 00007f382de5e300 R15: 0000000000022000
[ 3030.629350] 9pnet: Insufficient options for proto=fd
21:31:17 executing program 3:
openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x105142, 0x0)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f0000000000), 0xa}, 0x0, 0x0, 0x400, 0x0, 0x20, 0x5}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
pipe(&(0x7f00000001c0)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
mount$9p_fd(0x0, &(0x7f0000000040)='./file1\x00', &(0x7f00000000c0), 0x0, &(0x7f0000000280)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {}, 0x2c, {[{@nodevmap}]}})
openat(r1, &(0x7f0000000180)='./file1\x00', 0x0, 0x0)

21:31:17 executing program 5:
openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x105142, 0x0)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
pipe(&(0x7f00000001c0)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
mount$9p_fd(0x0, &(0x7f0000000040)='./file1\x00', &(0x7f00000000c0), 0x0, &(0x7f0000000280)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}})
openat(0xffffffffffffffff, 0x0, 0x0, 0x0)

[ 3030.700216] perf: interrupt took too long (9987 > 9972), lowering kernel.perf_event_max_sample_rate to 20000
[ 3030.712595] 9pnet: Insufficient options for proto=fd
21:31:17 executing program 4:
ioctl$AUTOFS_DEV_IOCTL_CLOSEMOUNT(0xffffffffffffffff, 0xc0189375, &(0x7f0000000000)={{0x1, 0x1, 0x18, <r0=>0xffffffffffffffff}, './cgroup.net/cgroup.procs\x00'})
sendmsg$IPSET_CMD_GET_BYNAME(r0, &(0x7f0000000240)={&(0x7f0000000080)={0x10, 0x0, 0x0, 0x8}, 0xc, &(0x7f0000000140)={&(0x7f0000000100)={0x20, 0xe, 0x6, 0x5, 0x0, 0x0, {0x0, 0x0, 0x6}, [@IPSET_ATTR_SETNAME={0x9, 0x2, 'syz0\x00'}]}, 0x20}, 0x1, 0x0, 0x0, 0x20000001}, 0x0)
openat$vcs(0xffffffffffffff9c, &(0x7f0000000040), 0x0, 0x0)
openat$sr(0xffffffffffffff9c, &(0x7f00000035c0), 0x0, 0x0)
openat$sr(0xffffffffffffff9c, &(0x7f00000000c0), 0x224400, 0x0)
openat$rtc(0xffffffffffffff9c, &(0x7f0000000200), 0x0, 0x0)
pipe(&(0x7f00000001c0))
open(&(0x7f0000000280)='./cgroup.net/cgroup.procs\x00', 0x200, 0x149)
mkdirat(r0, &(0x7f00000002c0)='./cgroup.net/cgroup.procs\x00', 0x0)
pselect6(0x40, &(0x7f0000000180), &(0x7f00000001c0)={0x3fc}, 0x0, 0x0, 0x0)

[ 3030.760945] 9pnet: Insufficient options for proto=fd
[ 3030.990407] perf: interrupt took too long (12485 > 12483), lowering kernel.perf_event_max_sample_rate to 16000
21:31:34 executing program 7:
openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x105142, 0x0)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x400}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = perf_event_open(&(0x7f0000001d80)={0x2, 0x80, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
mmap(&(0x7f0000ffc000/0x2000)=nil, 0x2000, 0x0, 0x13, r0, 0x0)
perf_event_open(&(0x7f0000001d80)={0x2, 0x80, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, r0, 0x2)
pwrite64(r0, &(0x7f0000000300)="7c83630e17eed72fa0a9ee3ef7c698d6dc25ce6c135183c6cced15224ae85b34a52e2470fd932503b60715de97ccac5195274818cd54d5885473b8f3f772bdea966ac4534852af2655c7f6f1dccb141464bc611fe79fb48f2554c583d4f764444a6e983d3a203e22ff4854fd08f460189bdc79218bd3e6a81e970a5624e80ff684cc7933099529fa7ec8aa6da37bb43a67fa177662a80e413ef33c2fb66e75b53f68b21a83db749fd7b825ed6f1dd809ccaab666a6dd18ad4cf92f34bc31245b7a997408285e27dae8b5fd547c39118c600ebacce53c99314ced4196b029e2004f9ae515dd9b290d4345a5", 0xeb, 0x2341)
pipe(&(0x7f00000001c0)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
mount$9p_fd(0x0, &(0x7f0000000040)='./file1\x00', &(0x7f00000000c0), 0x0, &(0x7f0000000280)={'trans=fd,', {'rfdno', 0x3d, r1}, 0x2c, {}, 0x2c, {[{@nodevmap}]}})
openat(r2, &(0x7f0000000180)='./file1\x00', 0x0, 0x0)

21:31:34 executing program 0:
syz_mount_image$vfat(&(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x0, 0x2, &(0x7f0000000180)=[{&(0x7f0000000140)="eb3c906d6b66732e66617400020801000470008400f801", 0x17}, {0x0, 0x0, 0x1000a00}], 0x0, &(0x7f0000000240)=ANY=[])
chdir(&(0x7f0000000040)='./file0\x00')
mount$cgroup(0x0, 0x0, &(0x7f0000000400), 0x0, 0x0)
r0 = syz_io_uring_setup(0x22, &(0x7f0000000680)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000180)=<r1=>0x0, &(0x7f0000002a40)=<r2=>0x0)
r3 = io_uring_register$IORING_REGISTER_PERSONALITY(r0, 0x9, 0x0, 0x0)
r4 = socket$nl_netfilter(0x10, 0x3, 0xc)
syz_io_uring_submit(r1, r2, &(0x7f0000000400)=@IORING_OP_WRITEV={0x2, 0x0, 0x0, @fd=r4, 0x0, 0x0, 0x0, 0x0, 0x0, {0x0, r3}}, 0x0)
r5 = syz_io_uring_setup(0x22, &(0x7f0000000680)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000180), &(0x7f0000002a40))
r6 = io_uring_register$IORING_REGISTER_PERSONALITY(r5, 0x9, 0x0, 0x0)
syz_io_uring_submit(r1, 0x0, &(0x7f0000000440)=@IORING_OP_FSYNC={0x3, 0x2, 0x0, @fd_index=0x9, 0x0, 0x0, 0x0, 0x0, 0x1, {0x0, r6}}, 0x2)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r7 = openat(0xffffffffffffff9c, &(0x7f00000002c0)='./file1\x00', 0x105142, 0x0)
r8 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0)
mount(0x0, &(0x7f0000000240)='./file0\x00', &(0x7f0000000280)='nfsd\x00', 0x800000, &(0x7f0000000300)='cgroup\x00')
sendfile(r7, r8, 0x0, 0x100000001)
newfstatat(0xffffffffffffff9c, &(0x7f0000000340)='./file1\x00', &(0x7f0000000380), 0x400)

21:31:34 executing program 6:
r0 = syz_mount_image$vfat(&(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x0, 0x2, &(0x7f0000000180)=[{&(0x7f0000000140)="eb3c906d6b66732e66617400020801000470008400f801", 0x17}, {0x0, 0x0, 0x1000a00}], 0x0, &(0x7f0000000240)=ANY=[])
chdir(&(0x7f0000000040)='./file0\x00')
openat2(r0, &(0x7f0000000100)='./file0\x00', &(0x7f00000001c0)={0x40000, 0x81}, 0x18)
mount$cgroup(0x0, 0x0, &(0x7f0000000400), 0x0, 0x0)
r1 = syz_io_uring_setup(0x22, &(0x7f0000000680)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000180)=<r2=>0x0, &(0x7f0000002a40)=<r3=>0x0)
io_uring_register$IORING_REGISTER_PERSONALITY(r1, 0x9, 0x0, 0x0)
socket$nl_netfilter(0x10, 0x3, 0xc)
syz_io_uring_submit(r2, r3, 0x0, 0x0)
r4 = syz_io_uring_setup(0x22, &(0x7f0000000680)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000180), &(0x7f0000002a40))
r5 = io_uring_register$IORING_REGISTER_PERSONALITY(r4, 0x9, 0x0, 0x0)
syz_io_uring_submit(r2, 0x0, &(0x7f0000000440)=@IORING_OP_FSYNC={0x3, 0x2, 0x0, @fd_index=0x9, 0x0, 0x0, 0x0, 0x0, 0x1, {0x0, r5}}, 0x2)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r6 = openat(0xffffffffffffff9c, &(0x7f00000002c0)='./file1\x00', 0x105142, 0x0)
r7 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0)
sendfile(r6, r7, 0x0, 0x100000001)
newfstatat(0xffffffffffffff9c, &(0x7f0000000340)='./file1\x00', &(0x7f0000000380), 0x400)

21:31:34 executing program 5:
openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x105142, 0x0)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
pipe(&(0x7f00000001c0)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
mount$9p_fd(0x2, &(0x7f0000000040)='./file1\x00', &(0x7f00000000c0), 0x0, &(0x7f0000000280)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}})
openat(0xffffffffffffffff, 0x0, 0x0, 0x0)

21:31:34 executing program 1:
openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x105142, 0x0)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
pipe(&(0x7f00000001c0))
mount$9p_fd(0x0, &(0x7f0000000040)='./file1\x00', &(0x7f00000000c0), 0xfffffff6, &(0x7f0000000280)={'trans=fd,', {}, 0x2c, {}, 0x2c, {[{@nodevmap}]}})

21:31:34 executing program 4:
openat$vcs(0xffffffffffffff9c, &(0x7f0000000040), 0x0, 0x0)
r0 = openat$sr(0xffffffffffffff9c, &(0x7f00000035c0), 0x0, 0x0)
openat$sr(0xffffffffffffff9c, &(0x7f00000000c0), 0x224400, 0x0)
r1 = openat$rtc(0xffffffffffffff9c, &(0x7f0000000200), 0x0, 0x0)
ioctl$RTC_IRQP_SET(r1, 0x4008700c, 0x1de2)
pipe(&(0x7f0000000000))
ioctl$EXT4_IOC_PRECACHE_EXTENTS(r0, 0x6612)
open(&(0x7f00000016c0)='./cgroup.net/cgroup.procs\x00', 0x0, 0x0)
pselect6(0x40, &(0x7f0000000180), &(0x7f00000001c0)={0x3fc}, 0x0, 0x0, 0x0)

21:31:34 executing program 2:
syz_mount_image$vfat(&(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x0, 0x2, &(0x7f0000000180)=[{&(0x7f0000000000)="eb3c906d6b66732e66617400020801000470008400f801", 0x17}, {0x0, 0x0, 0x1000a00}], 0x0, &(0x7f0000000240)=ANY=[])
chdir(&(0x7f0000000040)='./file0\x00')
r0 = openat$nvram(0xffffffffffffff9c, &(0x7f0000000140), 0x8000, 0x0)
openat(r0, &(0x7f00000001c0)='./file0\x00', 0x40, 0x90)
r1 = openat$sysfs(0xffffffffffffff9c, &(0x7f0000000200)='/sys/class/mem', 0x480, 0x20)
r2 = openat(r1, &(0x7f0000000100)='./file1\x00', 0x105142, 0x1)
ioctl$FS_IOC_RESVSP(r2, 0x40305828, &(0x7f0000000040)={0x0, 0x0, 0x0, 0x4000006})

21:31:34 executing program 3:
openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x105142, 0x0)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x20, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f0000000000), 0x5}, 0x5, 0x0, 0x400, 0x7}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
pipe(&(0x7f00000001c0)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
r2 = perf_event_open(&(0x7f0000001d80)={0x2, 0x80, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
mmap(&(0x7f0000ffc000/0x2000)=nil, 0x2000, 0x0, 0x13, r2, 0x0)
perf_event_open(&(0x7f0000001d80)={0x2, 0x80, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, r2, 0x2)
ioctl$PERF_EVENT_IOC_PERIOD(r2, 0x40082404, &(0x7f0000000080)=0xbc)
mount$9p_fd(0x0, &(0x7f0000000040)='./file1\x00', &(0x7f00000000c0), 0x0, &(0x7f0000000280)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {}, 0x2c, {[{@nodevmap}]}})
openat(r1, &(0x7f0000000180)='./file1\x00', 0x0, 0x0)

[ 3048.509330] 9pnet: Insufficient options for proto=fd
[ 3048.529479] 9pnet: Insufficient options for proto=fd
[ 3048.574172] 9pnet: Insufficient options for proto=fd
21:31:53 executing program 5:
openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x105142, 0x0)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
pipe(&(0x7f00000001c0)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
mount$9p_fd(0x3, &(0x7f0000000040)='./file1\x00', &(0x7f00000000c0), 0x0, &(0x7f0000000280)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}})
openat(0xffffffffffffffff, 0x0, 0x0, 0x0)

21:31:53 executing program 1:
openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x105142, 0x0)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
pipe(&(0x7f00000001c0))
mount$9p_fd(0x0, &(0x7f0000000040)='./file1\x00', &(0x7f00000000c0), 0xedc000000000, &(0x7f0000000280)={'trans=fd,', {}, 0x2c, {}, 0x2c, {[{@nodevmap}]}})

21:31:53 executing program 2:
getpeername(0xffffffffffffffff, &(0x7f00000001c0)=@pptp={0x18, 0x2, {0x0, @dev}}, &(0x7f0000000000)=0x80)
syz_mount_image$vfat(&(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x0, 0x2, &(0x7f0000000180)=[{&(0x7f0000000140)="eb3c906d6b66732e66617400020801000470008400f801", 0x17}, {0x0, 0x0, 0x1000a00}], 0x0, &(0x7f0000000240)=ANY=[])
chdir(&(0x7f0000000040)='./file0\x00')
r0 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x105142, 0x0)
ioctl$FS_IOC_RESVSP(r0, 0x40305828, &(0x7f0000000040)={0x0, 0x0, 0x0, 0x4000006})

21:31:53 executing program 7:
sendmsg$AUDIT_TTY_GET(0xffffffffffffffff, &(0x7f0000000240)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x1}, 0xc, &(0x7f0000000200)={&(0x7f0000000280)={0x10, 0x3f8, 0x8, 0x70bd28, 0x25dfdbff, "", ["", "", "", "", "", "", ""]}, 0x10}, 0x1, 0x0, 0x0, 0xc010}, 0x24004000)
ioctl$BTRFS_IOC_SYNC(0xffffffffffffffff, 0x9408, 0x0)
syz_mount_image$vfat(&(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x0, 0x2, &(0x7f0000000180)=[{&(0x7f0000000140)="eb3c906d6b66732e66617400020801000470008400f801", 0x17}, {0x0, 0x0, 0x1000a00}], 0x0, &(0x7f0000000240)=ANY=[])
sendmsg$IPSET_CMD_TEST(0xffffffffffffffff, &(0x7f00000004c0)={&(0x7f00000001c0)={0x10, 0x0, 0x0, 0x100000}, 0xc, &(0x7f0000000480)={&(0x7f0000000440)={0x30, 0xb, 0x6, 0x101, 0x0, 0x0, {0x5, 0x0, 0x7}, [@IPSET_ATTR_SETNAME={0x9, 0x2, 'syz1\x00'}, @IPSET_ATTR_LINENO={0x8, 0x9, 0x1, 0x0, 0x7}, @IPSET_ATTR_PROTOCOL={0x5}]}, 0x30}, 0x1, 0x0, 0x0, 0x40}, 0x4)
chdir(&(0x7f0000000040)='./file0\x00')
r0 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x105142, 0x0)
sendmsg$IPSET_CMD_TEST(0xffffffffffffffff, &(0x7f0000000400)={&(0x7f00000002c0)={0x10, 0x0, 0x0, 0x1000000}, 0xc, &(0x7f00000003c0)={&(0x7f0000000300)={0x8c, 0xb, 0x6, 0x401, 0x0, 0x0, {0x7, 0x0, 0x6}, [@IPSET_ATTR_ADT={0x78, 0x8, 0x0, 0x1, [{0xc, 0x7, 0x0, 0x1, @IPSET_ATTR_PORT={0x6, 0x4, 0x1, 0x0, 0x4e21}}, {0x1c, 0x7, 0x0, 0x1, @IPSET_ATTR_IP={0x18, 0x1, 0x0, 0x1, @IPSET_ATTR_IPADDR_IPV6={0x14, 0x2, 0x1, 0x0, @rand_addr=' \x01\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x01'}}}, {0xc, 0x7, 0x0, 0x1, @IPSET_ATTR_MARK={0x8, 0xa, 0x1, 0x0, 0xfffffff8}}, {0x10, 0x7, 0x0, 0x1, @IPSET_ATTR_COMMENT={0x9, 0x1a, 'vfat\x00'}}, {0x10, 0x7, 0x0, 0x1, @IPSET_ATTR_ETHER={0xa, 0x11, @remote}}, {0x10, 0x7, 0x0, 0x1, @IPSET_ATTR_NAME={0x9, 0x12, 'syz0\x00'}}, {0x10, 0x7, 0x0, 0x1, @IPSET_ATTR_IP2={0xc, 0x14, 0x0, 0x1, @IPSET_ATTR_IPADDR_IPV4={0x8, 0x1, 0x1, 0x0, @multicast2}}}]}]}, 0x8c}, 0x1, 0x0, 0x0, 0x4004000}, 0xc091)
r1 = openat$cgroup_int(r0, &(0x7f0000000580)='memory.min\x00', 0x2, 0x0)
r2 = perf_event_open(&(0x7f0000001d80)={0x2, 0x80, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
mmap(&(0x7f0000ffc000/0x2000)=nil, 0x2000, 0x0, 0x13, r2, 0x0)
perf_event_open(&(0x7f0000001d80)={0x2, 0x80, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, r2, 0x2)
pwrite64(r2, &(0x7f0000000680)="092e50a8a34cdadcbb69d1abc37fe87c5e1aabde80b17c93fa0d23836124c288675c5dfd1e06215d6e563a3627f1ba3a8a9f1b2525a1a231033a3f54665a12afd15daa34b691a7202d60b04b932172c3d9ee0a7fd9fb8338473e5f10816032076f058d2030c01492add1f601e9f7b85b8fe5935c9bac216e97", 0x79, 0x9000000000000000)
mount$9p_fd(0x0, &(0x7f0000000500)='./file0\x00', &(0x7f0000000540), 0x10000, &(0x7f00000005c0)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}, 0x2c, {[{@cachetag={'cachetag', 0x3d, '\xca)'}}, {@cache_mmap}, {@posixacl}, {@debug={'debug', 0x3d, 0x132}}, {@posixacl}, {@posixacl}, {@loose}], [{@uid_eq={'uid', 0x3d, 0xee00}}]}})
ioctl$FS_IOC_RESVSP(r0, 0x40305828, &(0x7f0000000040)={0x0, 0x0, 0x0, 0x4000006})

21:31:53 executing program 4:
r0 = openat$vcs(0xffffffffffffff9c, &(0x7f0000000040), 0x0, 0x0)
openat$sr(0xffffffffffffff9c, &(0x7f00000035c0), 0x761802, 0x0)
openat$sr(0xffffffffffffff9c, &(0x7f00000000c0), 0x224400, 0x0)
openat$rtc(0xffffffffffffff9c, &(0x7f0000000200), 0x0, 0x0)
pipe(&(0x7f00000001c0))
ioctl$int_in(r0, 0x73, &(0x7f0000000000)=0x3)
open(&(0x7f00000016c0)='./cgroup.net/cgroup.procs\x00', 0x0, 0x0)
pselect6(0x40, &(0x7f0000000180), &(0x7f00000001c0)={0x3fc}, 0x0, 0x0, 0x0)

21:31:53 executing program 6:
r0 = syz_mount_image$vfat(&(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x0, 0x2, &(0x7f0000000180)=[{&(0x7f0000000140)="eb3c906d6b66732e66617400020801000470008400f801", 0x17}, {0x0, 0x0, 0x1000a00}], 0x0, &(0x7f0000000240)=ANY=[])
chdir(&(0x7f0000000040)='./file0\x00')
openat2(r0, &(0x7f0000000100)='./file0\x00', &(0x7f00000001c0)={0x40000, 0x81}, 0x18)
mount$cgroup(0x0, 0x0, &(0x7f0000000400), 0x0, 0x0)
r1 = syz_io_uring_setup(0x22, &(0x7f0000000680)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000180)=<r2=>0x0, &(0x7f0000002a40)=<r3=>0x0)
io_uring_register$IORING_REGISTER_PERSONALITY(r1, 0x9, 0x0, 0x0)
socket$nl_netfilter(0x10, 0x3, 0xc)
syz_io_uring_submit(r2, r3, 0x0, 0x0)
r4 = syz_io_uring_setup(0x22, &(0x7f0000000680)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000180), &(0x7f0000002a40))
r5 = io_uring_register$IORING_REGISTER_PERSONALITY(r4, 0x9, 0x0, 0x0)
syz_io_uring_submit(r2, 0x0, &(0x7f0000000440)=@IORING_OP_FSYNC={0x3, 0x2, 0x0, @fd_index=0x9, 0x0, 0x0, 0x0, 0x0, 0x1, {0x0, r5}}, 0x2)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r6 = openat(0xffffffffffffff9c, &(0x7f00000002c0)='./file1\x00', 0x105142, 0x0)
r7 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0)
sendfile(r6, r7, 0x0, 0x100000001)
newfstatat(0xffffffffffffff9c, &(0x7f0000000340)='./file1\x00', &(0x7f0000000380), 0x400)

21:31:53 executing program 0:
syz_mount_image$vfat(&(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x0, 0x2, &(0x7f0000000180)=[{&(0x7f0000000140)="eb3c906d6b66732e66617400020801000470008400f801", 0x17}, {0x0, 0x0, 0x1000a00}], 0x0, &(0x7f0000000240)=ANY=[])
chdir(&(0x7f0000000040)='./file0\x00')
mount$cgroup(0x0, 0x0, &(0x7f0000000400), 0x0, 0x0)
r0 = syz_io_uring_setup(0x22, &(0x7f0000000680)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000180)=<r1=>0x0, &(0x7f0000002a40)=<r2=>0x0)
r3 = io_uring_register$IORING_REGISTER_PERSONALITY(r0, 0x9, 0x0, 0x0)
r4 = socket$nl_netfilter(0x10, 0x3, 0xc)
syz_io_uring_submit(r1, r2, &(0x7f0000000400)=@IORING_OP_WRITEV={0x2, 0x0, 0x0, @fd=r4, 0x0, 0x0, 0x0, 0x0, 0x0, {0x0, r3}}, 0x0)
r5 = syz_io_uring_setup(0x22, &(0x7f0000000680)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000180), &(0x7f0000002a40))
r6 = io_uring_register$IORING_REGISTER_PERSONALITY(r5, 0x9, 0x0, 0x0)
syz_io_uring_submit(r1, 0x0, &(0x7f0000000440)=@IORING_OP_FSYNC={0x3, 0x2, 0x0, @fd_index=0x9, 0x0, 0x0, 0x0, 0x0, 0x1, {0x0, r6}}, 0x2)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r7 = openat(0xffffffffffffff9c, &(0x7f00000002c0)='./file1\x00', 0x105142, 0x0)
r8 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0)
mount(0x0, &(0x7f0000000240)='./file0\x00', &(0x7f0000000280)='nfsd\x00', 0x800000, &(0x7f0000000300)='cgroup\x00')
sendfile(r7, r8, 0x0, 0x100000001)
newfstatat(0xffffffffffffff9c, &(0x7f0000000340)='./file1\x00', &(0x7f0000000380), 0x400)

21:31:53 executing program 3:
openat(0xffffffffffffffff, &(0x7f0000000100)='./file1\x00', 0x105142, 0x0)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x400}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
pipe(&(0x7f00000001c0)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
r2 = perf_event_open(&(0x7f0000001d80)={0x2, 0x80, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
mmap(&(0x7f0000ffc000/0x2000)=nil, 0x2000, 0x0, 0x13, r2, 0x0)
perf_event_open(&(0x7f0000001d80)={0x2, 0x80, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x0, 0x2}, 0x0, 0x0, r2, 0x2)
r3 = syz_io_uring_complete(0x0)
ioctl$BTRFS_IOC_SEND(r2, 0x40489426, &(0x7f0000000200)={{r3}, 0x4, &(0x7f0000000000)=[0x7f, 0x6, 0x2, 0x0], 0x8000, 0x4, [0x7ff, 0x5, 0x4]})
mount$9p_fd(0x0, &(0x7f0000000040)='./file1\x00', &(0x7f00000000c0), 0x0, &(0x7f0000000340)=ANY=[@ANYBLOB="7472616e73f966642c7262646e6f3d", @ANYRESHEX=r0, @ANYBLOB="2c7766642e6f3d41aaeef25150f13466dfdc84945ca4936e7805cacb82bf3c9fc76b54b9576ac7ab12ff4a39fec3b9c24c1085470b10c112ae66fad43ff69c916316d03fc589b97fa03460080d9fd21df94c2a9b6298fbf3bab102bae34d37710ff4c08054cb40b7435489170f510d448ab9bc6841e9a34b508cfe2088", @ANYRESHEX, @ANYBLOB="2c09000000c10420002c00"])
openat(r1, &(0x7f0000000180)='./file1\x00', 0x0, 0x0)

21:31:53 executing program 4:
openat$vcs(0xffffffffffffff9c, &(0x7f0000000040), 0x2, 0x0)
openat$sr(0xffffffffffffff9c, &(0x7f00000035c0), 0x0, 0x0)
openat$sr(0xffffffffffffff9c, &(0x7f00000000c0), 0x224400, 0x0)
openat$rtc(0xffffffffffffff9c, &(0x7f0000000200), 0x0, 0x0)
pipe(&(0x7f00000001c0))
open(&(0x7f00000016c0)='./cgroup.net/cgroup.procs\x00', 0x0, 0x0)
pselect6(0x40, &(0x7f0000000180), &(0x7f00000001c0)={0x3fc}, 0x0, 0x0, 0x0)

21:31:53 executing program 5:
openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x105142, 0x0)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
pipe(&(0x7f00000001c0)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
mount$9p_fd(0x4, &(0x7f0000000040)='./file1\x00', &(0x7f00000000c0), 0x0, &(0x7f0000000280)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}})
openat(0xffffffffffffffff, 0x0, 0x0, 0x0)

21:31:53 executing program 2:
syz_mount_image$vfat(&(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x0, 0x2, &(0x7f0000000180)=[{&(0x7f0000000140)="eb3c906d6b66732e66617400020801000470008400f801", 0x17}, {0x0, 0x0, 0x1000a00}], 0x0, &(0x7f0000000240)=ANY=[])
chdir(&(0x7f0000000040)='./file0\x00')
r0 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x105142, 0x0)
ioctl$FS_IOC_RESVSP(r0, 0x40305828, &(0x7f0000000040)={0x0, 0x0, 0x0, 0x4000006})
openat(0xffffffffffffffff, &(0x7f0000000000)='./file1\x00', 0x20800, 0x16)

21:31:53 executing program 1:
openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x105142, 0x0)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
pipe(&(0x7f00000001c0))
mount$9p_fd(0x0, &(0x7f0000000040)='./file1\x00', &(0x7f00000000c0), 0x8000000000000, &(0x7f0000000280)={'trans=fd,', {}, 0x2c, {}, 0x2c, {[{@nodevmap}]}})

21:31:53 executing program 5:
openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x105142, 0x0)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
pipe(&(0x7f00000001c0)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
mount$9p_fd(0x5, &(0x7f0000000040)='./file1\x00', &(0x7f00000000c0), 0x0, &(0x7f0000000280)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}})
openat(0xffffffffffffffff, 0x0, 0x0, 0x0)

21:31:53 executing program 3:
openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x105142, 0x0)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x0, 0xfffffffffffffffc}, 0x0, 0x0, 0x400}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
pipe(&(0x7f00000001c0)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
mount$9p_fd(0x0, &(0x7f0000000040)='./file1\x00', &(0x7f00000000c0), 0x0, &(0x7f0000000280)=ANY=[@ANYBLOB="7472616e733d66642c7266646ef708", @ANYRESHEX=r0, @ANYBLOB=',wfdno=', @ANYRESHEX, @ANYBLOB=',nodevmap,\x00'])
openat(r1, &(0x7f0000000180)='./file1\x00', 0x0, 0x0)

21:31:53 executing program 7:
sendmsg$AUDIT_TTY_GET(0xffffffffffffffff, &(0x7f0000000240)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x1}, 0xc, &(0x7f0000000200)={&(0x7f0000000280)={0x10, 0x3f8, 0x8, 0x70bd28, 0x25dfdbff, "", ["", "", "", "", "", "", ""]}, 0x10}, 0x1, 0x0, 0x0, 0xc010}, 0x24004000)
ioctl$BTRFS_IOC_SYNC(0xffffffffffffffff, 0x9408, 0x0)
syz_mount_image$vfat(&(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x0, 0x2, &(0x7f0000000180)=[{&(0x7f0000000140)="eb3c906d6b66732e66617400020801000470008400f801", 0x17}, {0x0, 0x0, 0x1000a00}], 0x0, &(0x7f0000000240)=ANY=[])
sendmsg$IPSET_CMD_TEST(0xffffffffffffffff, &(0x7f00000004c0)={&(0x7f00000001c0)={0x10, 0x0, 0x0, 0x100000}, 0xc, &(0x7f0000000480)={&(0x7f0000000440)={0x30, 0xb, 0x6, 0x101, 0x0, 0x0, {0x5, 0x0, 0x7}, [@IPSET_ATTR_SETNAME={0x9, 0x2, 'syz1\x00'}, @IPSET_ATTR_LINENO={0x8, 0x9, 0x1, 0x0, 0x7}, @IPSET_ATTR_PROTOCOL={0x5}]}, 0x30}, 0x1, 0x0, 0x0, 0x40}, 0x4)
chdir(&(0x7f0000000040)='./file0\x00')
r0 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x105142, 0x0)
sendmsg$IPSET_CMD_TEST(0xffffffffffffffff, &(0x7f0000000400)={&(0x7f00000002c0)={0x10, 0x0, 0x0, 0x1000000}, 0xc, &(0x7f00000003c0)={&(0x7f0000000300)={0x8c, 0xb, 0x6, 0x401, 0x0, 0x0, {0x7, 0x0, 0x6}, [@IPSET_ATTR_ADT={0x78, 0x8, 0x0, 0x1, [{0xc, 0x7, 0x0, 0x1, @IPSET_ATTR_PORT={0x6, 0x4, 0x1, 0x0, 0x4e21}}, {0x1c, 0x7, 0x0, 0x1, @IPSET_ATTR_IP={0x18, 0x1, 0x0, 0x1, @IPSET_ATTR_IPADDR_IPV6={0x14, 0x2, 0x1, 0x0, @rand_addr=' \x01\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x01'}}}, {0xc, 0x7, 0x0, 0x1, @IPSET_ATTR_MARK={0x8, 0xa, 0x1, 0x0, 0xfffffff8}}, {0x10, 0x7, 0x0, 0x1, @IPSET_ATTR_COMMENT={0x9, 0x1a, 'vfat\x00'}}, {0x10, 0x7, 0x0, 0x1, @IPSET_ATTR_ETHER={0xa, 0x11, @remote}}, {0x10, 0x7, 0x0, 0x1, @IPSET_ATTR_NAME={0x9, 0x12, 'syz0\x00'}}, {0x10, 0x7, 0x0, 0x1, @IPSET_ATTR_IP2={0xc, 0x14, 0x0, 0x1, @IPSET_ATTR_IPADDR_IPV4={0x8, 0x1, 0x1, 0x0, @multicast2}}}]}]}, 0x8c}, 0x1, 0x0, 0x0, 0x4004000}, 0xc091)
r1 = openat$cgroup_int(r0, &(0x7f0000000580)='memory.min\x00', 0x2, 0x0)
r2 = perf_event_open(&(0x7f0000001d80)={0x2, 0x80, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
mmap(&(0x7f0000ffc000/0x2000)=nil, 0x2000, 0x0, 0x13, r2, 0x0)
perf_event_open(&(0x7f0000001d80)={0x2, 0x80, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, r2, 0x2)
pwrite64(r2, &(0x7f0000000680)="092e50a8a34cdadcbb69d1abc37fe87c5e1aabde80b17c93fa0d23836124c288675c5dfd1e06215d6e563a3627f1ba3a8a9f1b2525a1a231033a3f54665a12afd15daa34b691a7202d60b04b932172c3d9ee0a7fd9fb8338473e5f10816032076f058d2030c01492add1f601e9f7b85b8fe5935c9bac216e97", 0x79, 0x9000000000000000)
mount$9p_fd(0x0, &(0x7f0000000500)='./file0\x00', &(0x7f0000000540), 0x10000, &(0x7f00000005c0)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}, 0x2c, {[{@cachetag={'cachetag', 0x3d, '\xca)'}}, {@cache_mmap}, {@posixacl}, {@debug={'debug', 0x3d, 0x132}}, {@posixacl}, {@posixacl}, {@loose}], [{@uid_eq={'uid', 0x3d, 0xee00}}]}})
ioctl$FS_IOC_RESVSP(r0, 0x40305828, &(0x7f0000000040)={0x0, 0x0, 0x0, 0x4000006})

21:31:53 executing program 6:
r0 = syz_mount_image$vfat(&(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x0, 0x2, &(0x7f0000000180)=[{&(0x7f0000000140)="eb3c906d6b66732e66617400020801000470008400f801", 0x17}, {0x0, 0x0, 0x1000a00}], 0x0, &(0x7f0000000240)=ANY=[])
chdir(&(0x7f0000000040)='./file0\x00')
openat2(r0, &(0x7f0000000100)='./file0\x00', &(0x7f00000001c0)={0x40000, 0x81}, 0x18)
mount$cgroup(0x0, 0x0, &(0x7f0000000400), 0x0, 0x0)
r1 = syz_io_uring_setup(0x22, &(0x7f0000000680)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000180)=<r2=>0x0, &(0x7f0000002a40)=<r3=>0x0)
io_uring_register$IORING_REGISTER_PERSONALITY(r1, 0x9, 0x0, 0x0)
socket$nl_netfilter(0x10, 0x3, 0xc)
syz_io_uring_submit(r2, r3, 0x0, 0x0)
r4 = syz_io_uring_setup(0x22, &(0x7f0000000680)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000180), &(0x7f0000002a40))
r5 = io_uring_register$IORING_REGISTER_PERSONALITY(r4, 0x9, 0x0, 0x0)
syz_io_uring_submit(r2, 0x0, &(0x7f0000000440)=@IORING_OP_FSYNC={0x3, 0x2, 0x0, @fd_index=0x9, 0x0, 0x0, 0x0, 0x0, 0x1, {0x0, r5}}, 0x2)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r6 = openat(0xffffffffffffff9c, &(0x7f00000002c0)='./file1\x00', 0x105142, 0x0)
r7 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0)
sendfile(r6, r7, 0x0, 0x100000001)
newfstatat(0xffffffffffffff9c, &(0x7f0000000340)='./file1\x00', &(0x7f0000000380), 0x400)

21:31:53 executing program 0:
syz_mount_image$vfat(&(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x0, 0x2, &(0x7f0000000180)=[{&(0x7f0000000140)="eb3c906d6b66732e66617400020801000470008400f801", 0x17}, {0x0, 0x0, 0x1000a00}], 0x0, &(0x7f0000000240)=ANY=[])
chdir(&(0x7f0000000040)='./file0\x00')
mount$cgroup(0x0, 0x0, &(0x7f0000000400), 0x0, 0x0)
r0 = syz_io_uring_setup(0x22, &(0x7f0000000680)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000180)=<r1=>0x0, &(0x7f0000002a40)=<r2=>0x0)
r3 = io_uring_register$IORING_REGISTER_PERSONALITY(r0, 0x9, 0x0, 0x0)
r4 = socket$nl_netfilter(0x10, 0x3, 0xc)
syz_io_uring_submit(r1, r2, &(0x7f0000000400)=@IORING_OP_WRITEV={0x2, 0x0, 0x0, @fd=r4, 0x0, 0x0, 0x0, 0x0, 0x0, {0x0, r3}}, 0x0)
r5 = syz_io_uring_setup(0x22, &(0x7f0000000680)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000180), &(0x7f0000002a40))
r6 = io_uring_register$IORING_REGISTER_PERSONALITY(r5, 0x9, 0x0, 0x0)
syz_io_uring_submit(r1, 0x0, &(0x7f0000000440)=@IORING_OP_FSYNC={0x3, 0x2, 0x0, @fd_index=0x9, 0x0, 0x0, 0x0, 0x0, 0x1, {0x0, r6}}, 0x2)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r7 = openat(0xffffffffffffff9c, &(0x7f00000002c0)='./file1\x00', 0x105142, 0x0)
r8 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0)
mount(&(0x7f0000000200)=ANY=[], &(0x7f0000000240)='./file0\x00', &(0x7f0000000280)='nfsd\x00', 0x800000, &(0x7f0000000300)='cgroup\x00')
sendfile(r7, r8, 0x0, 0x100000001)
newfstatat(0xffffffffffffff9c, &(0x7f0000000340)='./file1\x00', &(0x7f0000000380), 0x400)

21:31:53 executing program 2:
syz_mount_image$vfat(&(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x0, 0x2, &(0x7f0000000180)=[{&(0x7f0000000140)="eb3c906d6b66732e66617400020801000470008400f801", 0x17}, {0x0, 0x0, 0x1000a00}], 0x0, &(0x7f0000000240)=ANY=[])
pipe(&(0x7f00000001c0)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
mount$9p_fd(0x0, &(0x7f0000000040)='./file1\x00', &(0x7f00000000c0), 0x0, &(0x7f0000000200)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}, 0x2c, {[{@nodevmap}]}})
openat(r1, &(0x7f0000000000)='./file1\x00', 0x101000, 0x84)
chdir(&(0x7f0000000040)='./file0\x00')
openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x105142, 0x0)

[ 3066.931408] 9pnet: Insufficient options for proto=fd
[ 3066.967575] 9pnet: Insufficient options for proto=fd
21:31:53 executing program 5:
openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x105142, 0x0)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
pipe(&(0x7f00000001c0)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
mount$9p_fd(0x6, &(0x7f0000000040)='./file1\x00', &(0x7f00000000c0), 0x0, &(0x7f0000000280)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}})
openat(0xffffffffffffffff, 0x0, 0x0, 0x0)

21:31:53 executing program 4:
openat$vcs(0xffffffffffffff9c, &(0x7f0000000040), 0x0, 0x0)
openat$sr(0xffffffffffffff9c, &(0x7f00000035c0), 0x0, 0x0)
r0 = ioctl$TIOCGPTPEER(0xffffffffffffffff, 0x5441, 0x9)
fcntl$F_GET_RW_HINT(r0, 0x40b, &(0x7f0000000000))
openat$sr(0xffffffffffffff9c, &(0x7f00000000c0), 0x224400, 0x0)
openat$rtc(0xffffffffffffff9c, &(0x7f0000000200), 0x0, 0x0)
pipe(&(0x7f00000001c0))
open(&(0x7f00000016c0)='./cgroup.net/cgroup.procs\x00', 0x0, 0x0)
pselect6(0x40, &(0x7f0000000180)={0x3, 0x0, 0x4, 0x1}, &(0x7f0000000080)={0x3fc, 0x0, 0x2, 0x0, 0x0, 0x1000000000000, 0x0, 0x5}, 0x0, 0x0, 0x0)

21:31:53 executing program 7:
sendmsg$AUDIT_TTY_GET(0xffffffffffffffff, &(0x7f0000000240)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x1}, 0xc, &(0x7f0000000200)={&(0x7f0000000280)={0x10, 0x3f8, 0x8, 0x70bd28, 0x25dfdbff, "", ["", "", "", "", "", "", ""]}, 0x10}, 0x1, 0x0, 0x0, 0xc010}, 0x24004000)
ioctl$BTRFS_IOC_SYNC(0xffffffffffffffff, 0x9408, 0x0)
syz_mount_image$vfat(&(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x0, 0x2, &(0x7f0000000180)=[{&(0x7f0000000140)="eb3c906d6b66732e66617400020801000470008400f801", 0x17}, {0x0, 0x0, 0x1000a00}], 0x0, &(0x7f0000000240)=ANY=[])
sendmsg$IPSET_CMD_TEST(0xffffffffffffffff, &(0x7f00000004c0)={&(0x7f00000001c0)={0x10, 0x0, 0x0, 0x100000}, 0xc, &(0x7f0000000480)={&(0x7f0000000440)={0x30, 0xb, 0x6, 0x101, 0x0, 0x0, {0x5, 0x0, 0x7}, [@IPSET_ATTR_SETNAME={0x9, 0x2, 'syz1\x00'}, @IPSET_ATTR_LINENO={0x8, 0x9, 0x1, 0x0, 0x7}, @IPSET_ATTR_PROTOCOL={0x5}]}, 0x30}, 0x1, 0x0, 0x0, 0x40}, 0x4)
chdir(&(0x7f0000000040)='./file0\x00')
r0 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x105142, 0x0)
sendmsg$IPSET_CMD_TEST(0xffffffffffffffff, &(0x7f0000000400)={&(0x7f00000002c0)={0x10, 0x0, 0x0, 0x1000000}, 0xc, &(0x7f00000003c0)={&(0x7f0000000300)={0x8c, 0xb, 0x6, 0x401, 0x0, 0x0, {0x7, 0x0, 0x6}, [@IPSET_ATTR_ADT={0x78, 0x8, 0x0, 0x1, [{0xc, 0x7, 0x0, 0x1, @IPSET_ATTR_PORT={0x6, 0x4, 0x1, 0x0, 0x4e21}}, {0x1c, 0x7, 0x0, 0x1, @IPSET_ATTR_IP={0x18, 0x1, 0x0, 0x1, @IPSET_ATTR_IPADDR_IPV6={0x14, 0x2, 0x1, 0x0, @rand_addr=' \x01\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x01'}}}, {0xc, 0x7, 0x0, 0x1, @IPSET_ATTR_MARK={0x8, 0xa, 0x1, 0x0, 0xfffffff8}}, {0x10, 0x7, 0x0, 0x1, @IPSET_ATTR_COMMENT={0x9, 0x1a, 'vfat\x00'}}, {0x10, 0x7, 0x0, 0x1, @IPSET_ATTR_ETHER={0xa, 0x11, @remote}}, {0x10, 0x7, 0x0, 0x1, @IPSET_ATTR_NAME={0x9, 0x12, 'syz0\x00'}}, {0x10, 0x7, 0x0, 0x1, @IPSET_ATTR_IP2={0xc, 0x14, 0x0, 0x1, @IPSET_ATTR_IPADDR_IPV4={0x8, 0x1, 0x1, 0x0, @multicast2}}}]}]}, 0x8c}, 0x1, 0x0, 0x0, 0x4004000}, 0xc091)
r1 = openat$cgroup_int(r0, &(0x7f0000000580)='memory.min\x00', 0x2, 0x0)
r2 = perf_event_open(&(0x7f0000001d80)={0x2, 0x80, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
mmap(&(0x7f0000ffc000/0x2000)=nil, 0x2000, 0x0, 0x13, r2, 0x0)
perf_event_open(&(0x7f0000001d80)={0x2, 0x80, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, r2, 0x2)
pwrite64(r2, &(0x7f0000000680)="092e50a8a34cdadcbb69d1abc37fe87c5e1aabde80b17c93fa0d23836124c288675c5dfd1e06215d6e563a3627f1ba3a8a9f1b2525a1a231033a3f54665a12afd15daa34b691a7202d60b04b932172c3d9ee0a7fd9fb8338473e5f10816032076f058d2030c01492add1f601e9f7b85b8fe5935c9bac216e97", 0x79, 0x9000000000000000)
mount$9p_fd(0x0, &(0x7f0000000500)='./file0\x00', &(0x7f0000000540), 0x10000, &(0x7f00000005c0)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}, 0x2c, {[{@cachetag={'cachetag', 0x3d, '\xca)'}}, {@cache_mmap}, {@posixacl}, {@debug={'debug', 0x3d, 0x132}}, {@posixacl}, {@posixacl}, {@loose}], [{@uid_eq={'uid', 0x3d, 0xee00}}]}})
ioctl$FS_IOC_RESVSP(r0, 0x40305828, &(0x7f0000000040)={0x0, 0x0, 0x0, 0x4000006})

21:31:53 executing program 6:
r0 = syz_mount_image$vfat(&(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x0, 0x2, &(0x7f0000000180)=[{&(0x7f0000000140)="eb3c906d6b66732e66617400020801000470008400f801", 0x17}, {0x0, 0x0, 0x1000a00}], 0x0, &(0x7f0000000240)=ANY=[])
chdir(&(0x7f0000000040)='./file0\x00')
openat2(r0, &(0x7f0000000100)='./file0\x00', &(0x7f00000001c0)={0x40000, 0x81}, 0x18)
mount$cgroup(0x0, 0x0, &(0x7f0000000400), 0x0, 0x0)
r1 = syz_io_uring_setup(0x22, &(0x7f0000000680)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000180)=<r2=>0x0, &(0x7f0000002a40)=<r3=>0x0)
io_uring_register$IORING_REGISTER_PERSONALITY(r1, 0x9, 0x0, 0x0)
socket$nl_netfilter(0x10, 0x3, 0xc)
syz_io_uring_submit(r2, r3, 0x0, 0x0)
r4 = syz_io_uring_setup(0x22, &(0x7f0000000680)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000180), &(0x7f0000002a40))
r5 = io_uring_register$IORING_REGISTER_PERSONALITY(r4, 0x9, 0x0, 0x0)
syz_io_uring_submit(r2, 0x0, &(0x7f0000000440)=@IORING_OP_FSYNC={0x3, 0x2, 0x0, @fd_index=0x9, 0x0, 0x0, 0x0, 0x0, 0x1, {0x0, r5}}, 0x2)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r6 = openat(0xffffffffffffff9c, &(0x7f00000002c0)='./file1\x00', 0x105142, 0x0)
r7 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0)
sendfile(r6, r7, 0x0, 0x100000001)
newfstatat(0xffffffffffffff9c, &(0x7f0000000340)='./file1\x00', &(0x7f0000000380), 0x400)

21:32:10 executing program 7:
sendmsg$AUDIT_TTY_GET(0xffffffffffffffff, &(0x7f0000000240)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x1}, 0xc, &(0x7f0000000200)={&(0x7f0000000280)={0x10, 0x3f8, 0x8, 0x70bd28, 0x25dfdbff, "", ["", "", "", "", "", "", ""]}, 0x10}, 0x1, 0x0, 0x0, 0xc010}, 0x24004000)
ioctl$BTRFS_IOC_SYNC(0xffffffffffffffff, 0x9408, 0x0)
syz_mount_image$vfat(&(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x0, 0x2, &(0x7f0000000180)=[{&(0x7f0000000140)="eb3c906d6b66732e66617400020801000470008400f801", 0x17}, {0x0, 0x0, 0x1000a00}], 0x0, &(0x7f0000000240)=ANY=[])
sendmsg$IPSET_CMD_TEST(0xffffffffffffffff, &(0x7f00000004c0)={&(0x7f00000001c0)={0x10, 0x0, 0x0, 0x100000}, 0xc, &(0x7f0000000480)={&(0x7f0000000440)={0x30, 0xb, 0x6, 0x101, 0x0, 0x0, {0x5, 0x0, 0x7}, [@IPSET_ATTR_SETNAME={0x9, 0x2, 'syz1\x00'}, @IPSET_ATTR_LINENO={0x8, 0x9, 0x1, 0x0, 0x7}, @IPSET_ATTR_PROTOCOL={0x5}]}, 0x30}, 0x1, 0x0, 0x0, 0x40}, 0x4)
chdir(&(0x7f0000000040)='./file0\x00')
r0 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x105142, 0x0)
sendmsg$IPSET_CMD_TEST(0xffffffffffffffff, &(0x7f0000000400)={&(0x7f00000002c0)={0x10, 0x0, 0x0, 0x1000000}, 0xc, &(0x7f00000003c0)={&(0x7f0000000300)={0x8c, 0xb, 0x6, 0x401, 0x0, 0x0, {0x7, 0x0, 0x6}, [@IPSET_ATTR_ADT={0x78, 0x8, 0x0, 0x1, [{0xc, 0x7, 0x0, 0x1, @IPSET_ATTR_PORT={0x6, 0x4, 0x1, 0x0, 0x4e21}}, {0x1c, 0x7, 0x0, 0x1, @IPSET_ATTR_IP={0x18, 0x1, 0x0, 0x1, @IPSET_ATTR_IPADDR_IPV6={0x14, 0x2, 0x1, 0x0, @rand_addr=' \x01\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x01'}}}, {0xc, 0x7, 0x0, 0x1, @IPSET_ATTR_MARK={0x8, 0xa, 0x1, 0x0, 0xfffffff8}}, {0x10, 0x7, 0x0, 0x1, @IPSET_ATTR_COMMENT={0x9, 0x1a, 'vfat\x00'}}, {0x10, 0x7, 0x0, 0x1, @IPSET_ATTR_ETHER={0xa, 0x11, @remote}}, {0x10, 0x7, 0x0, 0x1, @IPSET_ATTR_NAME={0x9, 0x12, 'syz0\x00'}}, {0x10, 0x7, 0x0, 0x1, @IPSET_ATTR_IP2={0xc, 0x14, 0x0, 0x1, @IPSET_ATTR_IPADDR_IPV4={0x8, 0x1, 0x1, 0x0, @multicast2}}}]}]}, 0x8c}, 0x1, 0x0, 0x0, 0x4004000}, 0xc091)
openat$cgroup_int(r0, &(0x7f0000000580)='memory.min\x00', 0x2, 0x0)
r1 = perf_event_open(&(0x7f0000001d80)={0x2, 0x80, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
mmap(&(0x7f0000ffc000/0x2000)=nil, 0x2000, 0x0, 0x13, r1, 0x0)
perf_event_open(&(0x7f0000001d80)={0x2, 0x80, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, r1, 0x2)
pwrite64(r1, &(0x7f0000000680)="092e50a8a34cdadcbb69d1abc37fe87c5e1aabde80b17c93fa0d23836124c288675c5dfd1e06215d6e563a3627f1ba3a8a9f1b2525a1a231033a3f54665a12afd15daa34b691a7202d60b04b932172c3d9ee0a7fd9fb8338473e5f10816032076f058d2030c01492add1f601e9f7b85b8fe5935c9bac216e97", 0x79, 0x9000000000000000)
ioctl$FS_IOC_RESVSP(r0, 0x40305828, &(0x7f0000000040)={0x0, 0x0, 0x0, 0x4000006})

21:32:10 executing program 6:
r0 = syz_mount_image$vfat(&(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x0, 0x2, &(0x7f0000000180)=[{&(0x7f0000000140)="eb3c906d6b66732e66617400020801000470008400f801", 0x17}, {0x0, 0x0, 0x1000a00}], 0x0, &(0x7f0000000240)=ANY=[])
chdir(&(0x7f0000000040)='./file0\x00')
openat2(r0, &(0x7f0000000100)='./file0\x00', &(0x7f00000001c0)={0x40000, 0x81}, 0x18)
mount$cgroup(0x0, 0x0, &(0x7f0000000400), 0x0, 0x0)
r1 = syz_io_uring_setup(0x22, &(0x7f0000000680)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000180)=<r2=>0x0, &(0x7f0000002a40)=<r3=>0x0)
io_uring_register$IORING_REGISTER_PERSONALITY(r1, 0x9, 0x0, 0x0)
socket$nl_netfilter(0x10, 0x3, 0xc)
syz_io_uring_submit(r2, r3, 0x0, 0x0)
r4 = syz_io_uring_setup(0x22, &(0x7f0000000680)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000180), &(0x7f0000002a40))
r5 = io_uring_register$IORING_REGISTER_PERSONALITY(r4, 0x9, 0x0, 0x0)
syz_io_uring_submit(r2, 0x0, &(0x7f0000000440)=@IORING_OP_FSYNC={0x3, 0x2, 0x0, @fd_index=0x9, 0x0, 0x0, 0x0, 0x0, 0x1, {0x0, r5}}, 0x2)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r6 = openat(0xffffffffffffff9c, &(0x7f00000002c0)='./file1\x00', 0x105142, 0x0)
r7 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0)
sendfile(r6, r7, 0x0, 0x100000001)
newfstatat(0xffffffffffffff9c, &(0x7f0000000340)='./file1\x00', &(0x7f0000000380), 0x400)

21:32:10 executing program 0:
syz_mount_image$vfat(&(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x0, 0x2, &(0x7f0000000180)=[{&(0x7f0000000140)="eb3c906d6b66732e66617400020801000470008400f801", 0x17}, {0x0, 0x0, 0x1000a00}], 0x0, &(0x7f0000000240)=ANY=[])
chdir(&(0x7f0000000040)='./file0\x00')
mount$cgroup(0x0, 0x0, &(0x7f0000000400), 0x0, 0x0)
r0 = syz_io_uring_setup(0x22, &(0x7f0000000680)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000180)=<r1=>0x0, &(0x7f0000002a40)=<r2=>0x0)
r3 = io_uring_register$IORING_REGISTER_PERSONALITY(r0, 0x9, 0x0, 0x0)
r4 = socket$nl_netfilter(0x10, 0x3, 0xc)
syz_io_uring_submit(r1, r2, &(0x7f0000000400)=@IORING_OP_WRITEV={0x2, 0x0, 0x0, @fd=r4, 0x0, 0x0, 0x0, 0x0, 0x0, {0x0, r3}}, 0x0)
r5 = syz_io_uring_setup(0x22, &(0x7f0000000680)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000180), &(0x7f0000002a40))
r6 = io_uring_register$IORING_REGISTER_PERSONALITY(r5, 0x9, 0x0, 0x0)
syz_io_uring_submit(r1, 0x0, &(0x7f0000000440)=@IORING_OP_FSYNC={0x3, 0x2, 0x0, @fd_index=0x9, 0x0, 0x0, 0x0, 0x0, 0x1, {0x0, r6}}, 0x2)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r7 = openat(0xffffffffffffff9c, &(0x7f00000002c0)='./file1\x00', 0x105142, 0x0)
r8 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0)
mount(&(0x7f0000000200)=ANY=[], &(0x7f0000000240)='./file0\x00', &(0x7f0000000280)='nfsd\x00', 0x800000, &(0x7f0000000300)='cgroup\x00')
sendfile(r7, r8, 0x0, 0x100000001)
newfstatat(0xffffffffffffff9c, &(0x7f0000000340)='./file1\x00', &(0x7f0000000380), 0x400)

21:32:10 executing program 5:
openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x105142, 0x0)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
pipe(&(0x7f00000001c0)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
mount$9p_fd(0x7, &(0x7f0000000040)='./file1\x00', &(0x7f00000000c0), 0x0, &(0x7f0000000280)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}})
openat(0xffffffffffffffff, 0x0, 0x0, 0x0)

21:32:10 executing program 1:
openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x105142, 0x0)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
pipe(&(0x7f00000001c0))
mount$9p_fd(0x0, &(0x7f0000000040)='./file1\x00', &(0x7f00000000c0), 0x100000000000000, &(0x7f0000000280)={'trans=fd,', {}, 0x2c, {}, 0x2c, {[{@nodevmap}]}})

21:32:10 executing program 2:
syz_mount_image$vfat(&(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x0, 0x2, &(0x7f0000000180)=[{&(0x7f0000000140)="eb3c906d6b66732e66617400020801000470008400f801", 0x17, 0xd2}, {0x0, 0x0, 0x1000a00}], 0x0, &(0x7f0000000240)=ANY=[])
chdir(&(0x7f0000000040)='./file0\x00')
r0 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x105142, 0x0)
ioctl$FS_IOC_RESVSP(r0, 0x40305828, &(0x7f0000000040)={0x0, 0x0, 0x0, 0x4000006})
accept$unix(r0, &(0x7f00000001c0), &(0x7f0000000000)=0x6e)
creat(&(0x7f0000000240)='./file0\x00', 0x2)

21:32:10 executing program 4:
r0 = openat$vcs(0xffffffffffffff9c, &(0x7f0000000040), 0x0, 0x0)
openat$sr(0xffffffffffffff9c, &(0x7f00000035c0), 0x0, 0x0)
openat$sr(0xffffffffffffff9c, &(0x7f00000000c0), 0x224400, 0x0)
r1 = openat$rtc(0xffffffffffffff9c, &(0x7f0000000200), 0x0, 0x0)
ioctl$FAT_IOCTL_GET_VOLUME_ID(r1, 0x80047213, &(0x7f0000000000))
r2 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000140), r0)
sendmsg$NL80211_CMD_NOTIFY_RADAR(r0, &(0x7f00000002c0)={&(0x7f0000000100)={0x10, 0x0, 0x0, 0x100}, 0xc, &(0x7f0000000280)={&(0x7f0000000240)={0x38, r2, 0x200, 0x70bd28, 0x25dfdbfb, {{}, {@val={0x8}, @val={0xc, 0x99, {0x0, 0x60}}}}, [@NL80211_ATTR_CHANNEL_WIDTH={0x8, 0x9f, 0x2}, @NL80211_ATTR_WIPHY_FREQ_OFFSET={0x8, 0x122, 0x2a2}]}, 0x38}, 0x1, 0x0, 0x0, 0x20008000}, 0x0)
pipe(&(0x7f00000001c0)={<r3=>0xffffffffffffffff})
open(&(0x7f00000016c0)='./cgroup.net/cgroup.procs\x00', 0x0, 0x0)
pselect6(0x40, &(0x7f0000000180), &(0x7f00000001c0)={0x3fc}, 0x0, 0x0, 0x0)
r4 = perf_event_open(&(0x7f0000001d80)={0x2, 0x80, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4, @perf_config_ext={0x0, 0x1}, 0x0, 0x0, 0x0, 0x0, 0x4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x9}, 0x0, 0x9, 0xffffffffffffffff, 0x0)
mmap(&(0x7f0000ffc000/0x2000)=nil, 0x2000, 0x0, 0x13, r4, 0x0)
perf_event_open(&(0x7f0000001d80)={0x2, 0x80, 0x70, 0x0, 0x0, 0x9, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x8680, 0x5}, 0x0, 0x0, r4, 0x2)
ioctl$BTRFS_IOC_SPACE_INFO(r4, 0xc0109414, &(0x7f0000003600))
ioctl$AUTOFS_DEV_IOCTL_SETPIPEFD(r3, 0xc0189378, &(0x7f0000000080)=ANY=[@ANYBLOB="010000000100000018000000", @ANYRES32=r3, @ANYRES32=<r5=>r4, @ANYBLOB='\x00\x00\x00\x00./cgroup.net8cgroup.procs\x00'])
mmap$perf(&(0x7f0000ffd000/0x2000)=nil, 0x2000, 0x2000003, 0x10, r5, 0x0)

21:32:10 executing program 3:
openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x105142, 0x0)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x400}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
pipe(&(0x7f00000001c0)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
mount$9p_fd(0x0, &(0x7f0000000040)='./file1\x00', &(0x7f00000000c0), 0x0, &(0x7f0000000280)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {}, 0x2c, {[{@nodevmap}]}})
r2 = openat(r1, &(0x7f0000000180)='./file1\x00', 0x0, 0x0)
ioctl$KDGKBMETA(r2, 0x4b62, &(0x7f0000000200))
lsetxattr$security_ima(&(0x7f0000000000)='./file1\x00', &(0x7f0000000080), &(0x7f0000000140)=@ng={0x4, 0x30, "b4ef8f18630100000001000000653bf0b97648"}, 0x15, 0x1)

[ 3084.059757] FAT-fs (loop2): bogus number of reserved sectors
[ 3084.061169] FAT-fs (loop2): Can't find a valid FAT filesystem
[ 3084.072305] 9pnet: Insufficient options for proto=fd
[ 3084.092827] 9pnet: Insufficient options for proto=fd
[ 3084.152830] FAT-fs (loop2): Unrecognized mount option "./file0" or missing value
21:32:26 executing program 5:
openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x105142, 0x0)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
pipe(&(0x7f00000001c0)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
mount$9p_fd(0x8, &(0x7f0000000040)='./file1\x00', &(0x7f00000000c0), 0x0, &(0x7f0000000280)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}})
openat(0xffffffffffffffff, 0x0, 0x0, 0x0)

21:32:26 executing program 3:
openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x105142, 0x0)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x400}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
pipe(&(0x7f00000001c0)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
mount$9p_fd(0x0, &(0x7f0000000040)='./file1\x00', &(0x7f00000000c0), 0x0, &(0x7f0000000280)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {}, 0x2c, {[{@nodevmap}]}})
openat(r1, &(0x7f0000000180)='./file1\x00', 0x0, 0x0)
r2 = openat$null(0xffffffffffffff9c, &(0x7f0000000000), 0x100, 0x0)
openat(r2, &(0x7f0000000080)='./file1\x00', 0x694200, 0x20)

21:32:26 executing program 0:
syz_mount_image$vfat(&(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x0, 0x2, &(0x7f0000000180)=[{&(0x7f0000000140)="eb3c906d6b66732e66617400020801000470008400f801", 0x17}, {0x0, 0x0, 0x1000a00}], 0x0, &(0x7f0000000240)=ANY=[])
chdir(&(0x7f0000000040)='./file0\x00')
mount$cgroup(0x0, 0x0, &(0x7f0000000400), 0x0, 0x0)
r0 = syz_io_uring_setup(0x22, &(0x7f0000000680)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000180)=<r1=>0x0, &(0x7f0000002a40)=<r2=>0x0)
r3 = io_uring_register$IORING_REGISTER_PERSONALITY(r0, 0x9, 0x0, 0x0)
r4 = socket$nl_netfilter(0x10, 0x3, 0xc)
syz_io_uring_submit(r1, r2, &(0x7f0000000400)=@IORING_OP_WRITEV={0x2, 0x0, 0x0, @fd=r4, 0x0, 0x0, 0x0, 0x0, 0x0, {0x0, r3}}, 0x0)
r5 = syz_io_uring_setup(0x22, &(0x7f0000000680)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000180), &(0x7f0000002a40))
r6 = io_uring_register$IORING_REGISTER_PERSONALITY(r5, 0x9, 0x0, 0x0)
syz_io_uring_submit(r1, 0x0, &(0x7f0000000440)=@IORING_OP_FSYNC={0x3, 0x2, 0x0, @fd_index=0x9, 0x0, 0x0, 0x0, 0x0, 0x1, {0x0, r6}}, 0x2)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r7 = openat(0xffffffffffffff9c, &(0x7f00000002c0)='./file1\x00', 0x105142, 0x0)
r8 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0)
mount(&(0x7f0000000200)=ANY=[], &(0x7f0000000240)='./file0\x00', &(0x7f0000000280)='nfsd\x00', 0x800000, &(0x7f0000000300)='cgroup\x00')
sendfile(r7, r8, 0x0, 0x100000001)
newfstatat(0xffffffffffffff9c, &(0x7f0000000340)='./file1\x00', &(0x7f0000000380), 0x400)

21:32:26 executing program 6:
r0 = syz_mount_image$vfat(&(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x0, 0x2, &(0x7f0000000180)=[{&(0x7f0000000140)="eb3c906d6b66732e66617400020801000470008400f801", 0x17}, {0x0, 0x0, 0x1000a00}], 0x0, &(0x7f0000000240)=ANY=[])
chdir(&(0x7f0000000040)='./file0\x00')
openat2(r0, &(0x7f0000000100)='./file0\x00', &(0x7f00000001c0)={0x40000, 0x81}, 0x18)
mount$cgroup(0x0, 0x0, &(0x7f0000000400), 0x0, 0x0)
r1 = syz_io_uring_setup(0x22, &(0x7f0000000680)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000180)=<r2=>0x0, &(0x7f0000002a40)=<r3=>0x0)
io_uring_register$IORING_REGISTER_PERSONALITY(r1, 0x9, 0x0, 0x0)
socket$nl_netfilter(0x10, 0x3, 0xc)
syz_io_uring_submit(r2, r3, 0x0, 0x0)
r4 = syz_io_uring_setup(0x22, &(0x7f0000000680)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000180), &(0x7f0000002a40))
r5 = io_uring_register$IORING_REGISTER_PERSONALITY(r4, 0x9, 0x0, 0x0)
syz_io_uring_submit(r2, 0x0, &(0x7f0000000440)=@IORING_OP_FSYNC={0x3, 0x2, 0x0, @fd_index=0x9, 0x0, 0x0, 0x0, 0x0, 0x1, {0x0, r5}}, 0x2)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r6 = openat(0xffffffffffffff9c, &(0x7f00000002c0)='./file1\x00', 0x105142, 0x0)
r7 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0)
sendfile(r6, r7, 0x0, 0x100000001)
newfstatat(0xffffffffffffff9c, &(0x7f0000000340)='./file1\x00', &(0x7f0000000380), 0x400)

21:32:26 executing program 7:
sendmsg$AUDIT_TTY_GET(0xffffffffffffffff, &(0x7f0000000240)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x1}, 0xc, &(0x7f0000000200)={&(0x7f0000000280)={0x10, 0x3f8, 0x8, 0x70bd28, 0x25dfdbff, "", ["", "", "", "", "", "", ""]}, 0x10}, 0x1, 0x0, 0x0, 0xc010}, 0x24004000)
ioctl$BTRFS_IOC_SYNC(0xffffffffffffffff, 0x9408, 0x0)
syz_mount_image$vfat(&(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x0, 0x2, &(0x7f0000000180)=[{&(0x7f0000000140)="eb3c906d6b66732e66617400020801000470008400f801", 0x17}, {0x0, 0x0, 0x1000a00}], 0x0, &(0x7f0000000240)=ANY=[])
sendmsg$IPSET_CMD_TEST(0xffffffffffffffff, &(0x7f00000004c0)={&(0x7f00000001c0)={0x10, 0x0, 0x0, 0x100000}, 0xc, &(0x7f0000000480)={&(0x7f0000000440)={0x30, 0xb, 0x6, 0x101, 0x0, 0x0, {0x5, 0x0, 0x7}, [@IPSET_ATTR_SETNAME={0x9, 0x2, 'syz1\x00'}, @IPSET_ATTR_LINENO={0x8, 0x9, 0x1, 0x0, 0x7}, @IPSET_ATTR_PROTOCOL={0x5}]}, 0x30}, 0x1, 0x0, 0x0, 0x40}, 0x4)
chdir(&(0x7f0000000040)='./file0\x00')
r0 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x105142, 0x0)
sendmsg$IPSET_CMD_TEST(0xffffffffffffffff, &(0x7f0000000400)={&(0x7f00000002c0)={0x10, 0x0, 0x0, 0x1000000}, 0xc, &(0x7f00000003c0)={&(0x7f0000000300)={0x8c, 0xb, 0x6, 0x401, 0x0, 0x0, {0x7, 0x0, 0x6}, [@IPSET_ATTR_ADT={0x78, 0x8, 0x0, 0x1, [{0xc, 0x7, 0x0, 0x1, @IPSET_ATTR_PORT={0x6, 0x4, 0x1, 0x0, 0x4e21}}, {0x1c, 0x7, 0x0, 0x1, @IPSET_ATTR_IP={0x18, 0x1, 0x0, 0x1, @IPSET_ATTR_IPADDR_IPV6={0x14, 0x2, 0x1, 0x0, @rand_addr=' \x01\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x01'}}}, {0xc, 0x7, 0x0, 0x1, @IPSET_ATTR_MARK={0x8, 0xa, 0x1, 0x0, 0xfffffff8}}, {0x10, 0x7, 0x0, 0x1, @IPSET_ATTR_COMMENT={0x9, 0x1a, 'vfat\x00'}}, {0x10, 0x7, 0x0, 0x1, @IPSET_ATTR_ETHER={0xa, 0x11, @remote}}, {0x10, 0x7, 0x0, 0x1, @IPSET_ATTR_NAME={0x9, 0x12, 'syz0\x00'}}, {0x10, 0x7, 0x0, 0x1, @IPSET_ATTR_IP2={0xc, 0x14, 0x0, 0x1, @IPSET_ATTR_IPADDR_IPV4={0x8, 0x1, 0x1, 0x0, @multicast2}}}]}]}, 0x8c}, 0x1, 0x0, 0x0, 0x4004000}, 0xc091)
openat$cgroup_int(r0, &(0x7f0000000580)='memory.min\x00', 0x2, 0x0)
r1 = perf_event_open(&(0x7f0000001d80)={0x2, 0x80, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
mmap(&(0x7f0000ffc000/0x2000)=nil, 0x2000, 0x0, 0x13, r1, 0x0)
perf_event_open(&(0x7f0000001d80)={0x2, 0x80, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, r1, 0x2)
ioctl$FS_IOC_RESVSP(r0, 0x40305828, &(0x7f0000000040)={0x0, 0x0, 0x0, 0x4000006})

21:32:26 executing program 4:
r0 = openat$vcs(0xffffffffffffff9c, &(0x7f0000000040), 0x0, 0x0)
openat$sr(0xffffffffffffff9c, &(0x7f00000035c0), 0x0, 0x0)
r1 = openat$sr(0xffffffffffffff9c, &(0x7f00000000c0), 0x224400, 0x0)
ioctl$AUTOFS_DEV_IOCTL_OPENMOUNT(r0, 0xc0189374, &(0x7f0000000000)={{0x1, 0x1, 0x18, <r2=>0xffffffffffffffff, {0x5}}, './cgroup.net/cgroup.procs\x00'})
r3 = syz_genetlink_get_family_id$smc(&(0x7f0000000100), r1)
sendmsg$SMC_PNETID_ADD(r2, &(0x7f0000000300)={&(0x7f0000000080)={0x10, 0x0, 0x0, 0x40090}, 0xc, &(0x7f0000000140)={&(0x7f0000000240)={0x98, r3, 0x300, 0x70bd28, 0x25dfdbfc, {}, [@SMC_PNETID_IBNAME={0x9, 0x3, 'syz0\x00'}, @SMC_PNETID_NAME={0x9, 0x1, 'syz1\x00'}, @SMC_PNETID_ETHNAME={0x14, 0x2, 'rose0\x00'}, @SMC_PNETID_IBNAME={0x9, 0x3, 'syz0\x00'}, @SMC_PNETID_IBPORT={0x5, 0x4, 0x2}, @SMC_PNETID_IBNAME={0x9, 0x3, 'syz2\x00'}, @SMC_PNETID_IBNAME={0x9, 0x3, 'syz2\x00'}, @SMC_PNETID_IBNAME={0x9, 0x3, 'syz2\x00'}, @SMC_PNETID_ETHNAME={0x14, 0x2, 'netdevsim0\x00'}, @SMC_PNETID_IBNAME={0x9, 0x3, 'syz2\x00'}]}, 0x98}, 0x1, 0x0, 0x0, 0x10}, 0x41)
openat$rtc(0xffffffffffffff9c, &(0x7f0000000200), 0x0, 0x0)
pipe(&(0x7f00000001c0))
open(&(0x7f00000016c0)='./cgroup.net/cgroup.procs\x00', 0x0, 0x0)
pselect6(0x40, &(0x7f0000000180), &(0x7f00000001c0)={0x3fc}, 0x0, 0x0, 0x0)

21:32:26 executing program 2:
ioctl$EXT4_IOC_GROUP_ADD(0xffffffffffffffff, 0x40286608, &(0x7f0000000000)={0x80000001, 0x1ff, 0x200, 0x0, 0x80000001, 0x7fff})
syz_mount_image$vfat(&(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x0, 0x2, &(0x7f0000000180)=[{&(0x7f0000000140)="eb3c906d6b66732e66617400020801000470008400f801", 0x17}, {0x0, 0x0, 0x1000a00}], 0x0, &(0x7f0000000240)=ANY=[])
chdir(&(0x7f0000000040)='./file1\x00')
pipe(&(0x7f00000001c0)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
mount$9p_fd(0x0, &(0x7f0000000040)='./file1\x00', &(0x7f00000000c0), 0x0, &(0x7f0000000280)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}, 0x2c, {[{@nodevmap}]}})
write$P9_RREADLINK(r0, &(0x7f0000000200)={0x10, 0x17, 0x1, {0x7, './file1'}}, 0x10)
r2 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x125142, 0x121)
ioctl$FS_IOC_RESVSP(r2, 0x40305828, &(0x7f0000000040)={0x0, 0x0, 0x0, 0x4000006})
fcntl$setstatus(r2, 0x4, 0x40400)
r3 = syz_open_dev$ttys(0xc, 0x2, 0x0)
ioctl$EXT4_IOC_MOVE_EXT(r3, 0xc028660f, &(0x7f00000001c0)={0x0, r2, 0x8, 0x8, 0x7fff, 0x10001})

21:32:26 executing program 1:
openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x105142, 0x0)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
pipe(&(0x7f00000001c0))
mount$9p_fd(0x0, &(0x7f0000000040)='./file1\x00', &(0x7f00000000c0), 0x200000000000000, &(0x7f0000000280)={'trans=fd,', {}, 0x2c, {}, 0x2c, {[{@nodevmap}]}})

[ 3100.143962] 9pnet: Insufficient options for proto=fd
[ 3100.158391] 9pnet: Insufficient options for proto=fd
21:32:26 executing program 5:
openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x105142, 0x0)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
pipe(&(0x7f00000001c0)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
mount$9p_fd(0x9, &(0x7f0000000040)='./file1\x00', &(0x7f00000000c0), 0x0, &(0x7f0000000280)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}})
openat(0xffffffffffffffff, 0x0, 0x0, 0x0)

21:32:26 executing program 3:
r0 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000000)='/proc/key-users\x00', 0x0, 0x0)
r1 = openat(r0, &(0x7f0000000100)='./file1\x00', 0x105142, 0x0)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x400}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
pipe(&(0x7f00000001c0)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
mount$9p_fd(0x0, &(0x7f0000000040)='./file1\x00', &(0x7f00000000c0), 0x0, &(0x7f0000000340)=ANY=[@ANYBLOB="747269090000803a3e23500000000066646e6f3d94ec4a1a57b22cff74d7f125357c212ab0c3c8ec3fdb79ef245f8a71510b0e55a02297211f15b4d4c4cef2dabaf32b3d71bf3cf923bfb61f5be5935af907a25878d6e19fed06dec0cb6eacac7c7243e35539af7fdf2ae7756fcaa03711b4f6a6249ca34cca4ff84966124aa02013986467dfa4c1c27579", @ANYRESHEX=r2, @ANYRES64=r1, @ANYRES16=0x0, @ANYBLOB="e92ee22c6e6ffaff766d61702c457f65007e7d1e0873f223747791e806da04"])
openat(r3, &(0x7f0000000180)='./file1\x00', 0x0, 0x0)

21:32:26 executing program 7:
sendmsg$AUDIT_TTY_GET(0xffffffffffffffff, &(0x7f0000000240)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x1}, 0xc, &(0x7f0000000200)={&(0x7f0000000280)={0x10, 0x3f8, 0x8, 0x70bd28, 0x25dfdbff, "", ["", "", "", "", "", "", ""]}, 0x10}, 0x1, 0x0, 0x0, 0xc010}, 0x24004000)
ioctl$BTRFS_IOC_SYNC(0xffffffffffffffff, 0x9408, 0x0)
syz_mount_image$vfat(&(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x0, 0x2, &(0x7f0000000180)=[{&(0x7f0000000140)="eb3c906d6b66732e66617400020801000470008400f801", 0x17}, {0x0, 0x0, 0x1000a00}], 0x0, &(0x7f0000000240)=ANY=[])
sendmsg$IPSET_CMD_TEST(0xffffffffffffffff, &(0x7f00000004c0)={&(0x7f00000001c0)={0x10, 0x0, 0x0, 0x100000}, 0xc, &(0x7f0000000480)={&(0x7f0000000440)={0x30, 0xb, 0x6, 0x101, 0x0, 0x0, {0x5, 0x0, 0x7}, [@IPSET_ATTR_SETNAME={0x9, 0x2, 'syz1\x00'}, @IPSET_ATTR_LINENO={0x8, 0x9, 0x1, 0x0, 0x7}, @IPSET_ATTR_PROTOCOL={0x5}]}, 0x30}, 0x1, 0x0, 0x0, 0x40}, 0x4)
chdir(&(0x7f0000000040)='./file0\x00')
r0 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x105142, 0x0)
sendmsg$IPSET_CMD_TEST(0xffffffffffffffff, &(0x7f0000000400)={&(0x7f00000002c0)={0x10, 0x0, 0x0, 0x1000000}, 0xc, &(0x7f00000003c0)={&(0x7f0000000300)={0x8c, 0xb, 0x6, 0x401, 0x0, 0x0, {0x7, 0x0, 0x6}, [@IPSET_ATTR_ADT={0x78, 0x8, 0x0, 0x1, [{0xc, 0x7, 0x0, 0x1, @IPSET_ATTR_PORT={0x6, 0x4, 0x1, 0x0, 0x4e21}}, {0x1c, 0x7, 0x0, 0x1, @IPSET_ATTR_IP={0x18, 0x1, 0x0, 0x1, @IPSET_ATTR_IPADDR_IPV6={0x14, 0x2, 0x1, 0x0, @rand_addr=' \x01\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x01'}}}, {0xc, 0x7, 0x0, 0x1, @IPSET_ATTR_MARK={0x8, 0xa, 0x1, 0x0, 0xfffffff8}}, {0x10, 0x7, 0x0, 0x1, @IPSET_ATTR_COMMENT={0x9, 0x1a, 'vfat\x00'}}, {0x10, 0x7, 0x0, 0x1, @IPSET_ATTR_ETHER={0xa, 0x11, @remote}}, {0x10, 0x7, 0x0, 0x1, @IPSET_ATTR_NAME={0x9, 0x12, 'syz0\x00'}}, {0x10, 0x7, 0x0, 0x1, @IPSET_ATTR_IP2={0xc, 0x14, 0x0, 0x1, @IPSET_ATTR_IPADDR_IPV4={0x8, 0x1, 0x1, 0x0, @multicast2}}}]}]}, 0x8c}, 0x1, 0x0, 0x0, 0x4004000}, 0xc091)
openat$cgroup_int(r0, &(0x7f0000000580)='memory.min\x00', 0x2, 0x0)
r1 = perf_event_open(&(0x7f0000001d80)={0x2, 0x80, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
mmap(&(0x7f0000ffc000/0x2000)=nil, 0x2000, 0x0, 0x13, r1, 0x0)
perf_event_open(&(0x7f0000001d80)={0x2, 0x80, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, r1, 0x2)
ioctl$FS_IOC_RESVSP(r0, 0x40305828, &(0x7f0000000040)={0x0, 0x0, 0x0, 0x4000006})

21:32:26 executing program 4:
r0 = openat$vcs(0xffffffffffffff9c, &(0x7f0000000040), 0x0, 0x0)
openat$sr(0xffffffffffffff9c, &(0x7f00000035c0), 0x0, 0x0)
openat$sr(0xffffffffffffff9c, &(0x7f00000000c0), 0x224400, 0x0)
openat$rtc(0xffffffffffffff9c, &(0x7f0000000200), 0x0, 0x0)
fallocate(r0, 0x5, 0x0, 0x9)
pipe(&(0x7f00000001c0)={0xffffffffffffffff, <r1=>0xffffffffffffffff})
open(&(0x7f00000016c0)='./cgroup.net/cgroup.procs\x00', 0x0, 0x0)
pipe(&(0x7f00000001c0)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
mount$9p_fd(0x0, &(0x7f0000000040)='./file1\x00', &(0x7f00000000c0), 0x0, &(0x7f0000000280)={'trans=fd,', {'rfdno', 0x3d, r2}, 0x2c, {'wfdno', 0x3d, r3}, 0x2c, {[{@nodevmap}]}})
stat(&(0x7f0000001cc0)='.\x00', &(0x7f0000001c00)={0x0, 0x0, 0x0, 0x0, <r4=>0x0})
setresuid(0xffffffffffffffff, r4, 0x0)
mount$9p_fd(0x0, &(0x7f0000000000)='./cgroup.net/cgroup.procs/file0\x00', &(0x7f0000000080), 0x46800, &(0x7f0000000240)={'trans=fd,', {'rfdno', 0x3d, r2}, 0x2c, {'wfdno', 0x3d, r1}, 0x2c, {[{@access_client}, {@cache_none}, {@access_any}, {@access_any}, {@version_L}, {@nodevmap}, {@version_9p2000}, {@version_L}, {@version_9p2000}, {@access_any}], [{@obj_type={'obj_type', 0x3d, '/dev/sr0\x00'}}, {@euid_lt={'euid<', 0xee00}}, {@obj_role={'obj_role', 0x3d, '+^`}.\']..'}}, {@euid_gt={'euid>', r4}}, {@appraise}, {@hash}, {@permit_directio}, {@defcontext={'defcontext', 0x3d, 'unconfined_u'}}]}})
pselect6(0x40, &(0x7f0000000180), &(0x7f00000001c0)={0x3fc}, 0x0, 0x0, 0x0)

21:32:26 executing program 1:
openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x105142, 0x0)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
pipe(&(0x7f00000001c0))
mount$9p_fd(0x0, &(0x7f0000000040)='./file1\x00', &(0x7f00000000c0), 0x300000000000000, &(0x7f0000000280)={'trans=fd,', {}, 0x2c, {}, 0x2c, {[{@nodevmap}]}})

21:32:26 executing program 3:
openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x105142, 0x0)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x400}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
pipe(&(0x7f00000001c0)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
mount$9p_fd(0x0, &(0x7f0000000040)='./file1\x00', &(0x7f00000000c0), 0x0, &(0x7f0000000340)=ANY=[@ANYBLOB='trans=fd,rfdno=', @ANYRESHEX=r0, @ANYBLOB=',wfdno=', @ANYRESHEX, @ANYBLOB="d2d5e12c76472c6e6f6465088dcd4c77dd18f392473c22711e45746407f46464c2054040ec5bcc47f69b402e22d6f386997364e7da8acbe097fc120cc7185dbe682ad48a501d248875346b28f80ddcfa410913b5e5829fe4387fcbdb11fad7935e2b46ea8a54640e2f887b8fad7127f39a886dac1aca5b"])
openat(r1, &(0x7f0000000180)='./file1\x00', 0x0, 0x0)

21:32:26 executing program 6:
r0 = syz_mount_image$vfat(&(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x0, 0x2, &(0x7f0000000180)=[{&(0x7f0000000140)="eb3c906d6b66732e66617400020801000470008400f801", 0x17}, {0x0, 0x0, 0x1000a00}], 0x0, &(0x7f0000000240)=ANY=[])
chdir(&(0x7f0000000040)='./file0\x00')
openat2(r0, &(0x7f0000000100)='./file0\x00', &(0x7f00000001c0)={0x40000, 0x81}, 0x18)
mount$cgroup(0x0, 0x0, &(0x7f0000000400), 0x0, 0x0)
r1 = syz_io_uring_setup(0x22, &(0x7f0000000680)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000180)=<r2=>0x0, &(0x7f0000002a40)=<r3=>0x0)
io_uring_register$IORING_REGISTER_PERSONALITY(r1, 0x9, 0x0, 0x0)
socket$nl_netfilter(0x10, 0x3, 0xc)
syz_io_uring_submit(r2, r3, 0x0, 0x0)
r4 = syz_io_uring_setup(0x22, &(0x7f0000000680)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000180), &(0x7f0000002a40))
r5 = io_uring_register$IORING_REGISTER_PERSONALITY(r4, 0x9, 0x0, 0x0)
syz_io_uring_submit(r2, 0x0, &(0x7f0000000440)=@IORING_OP_FSYNC={0x3, 0x2, 0x0, @fd_index=0x9, 0x0, 0x0, 0x0, 0x0, 0x1, {0x0, r5}}, 0x2)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r6 = openat(0xffffffffffffff9c, 0x0, 0x105142, 0x0)
r7 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0)
sendfile(r6, r7, 0x0, 0x100000001)
newfstatat(0xffffffffffffff9c, &(0x7f0000000340)='./file1\x00', &(0x7f0000000380), 0x400)

[ 3100.447984] 9pnet: Insufficient options for proto=fd
[ 3100.457276] 9pnet: Insufficient options for proto=fd
21:32:26 executing program 4:
r0 = openat$vcs(0xffffffffffffff9c, &(0x7f0000000040), 0x0, 0x0)
bind$inet(r0, &(0x7f0000000000)={0x2, 0x4e24, @dev={0xac, 0x14, 0x14, 0x31}}, 0x10)
openat$sr(0xffffffffffffff9c, &(0x7f00000035c0), 0x0, 0x0)
r1 = openat$sr(0xffffffffffffff9c, &(0x7f00000000c0), 0x224400, 0x0)
openat$rtc(0xffffffffffffff9c, &(0x7f0000000200), 0x0, 0x0)
pipe(&(0x7f00000001c0))
r2 = openat$cgroup_ro(r1, &(0x7f0000000100)='io.stat\x00', 0x0, 0x0)
r3 = perf_event_open(&(0x7f0000001d80)={0x2, 0x80, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
mmap(&(0x7f0000ffc000/0x2000)=nil, 0x2000, 0x0, 0x13, r3, 0x0)
r4 = perf_event_open(&(0x7f0000001d80)={0x2, 0x80, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
mmap(&(0x7f0000ffc000/0x2000)=nil, 0x2000, 0x0, 0x13, r4, 0x0)
perf_event_open(&(0x7f0000001d80)={0x2, 0x80, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, r4, 0x2)
perf_event_open(&(0x7f0000001d80)={0x2, 0x80, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, r4, 0x2)
ioctl$BTRFS_IOC_SNAP_DESTROY(r2, 0x5000940f, &(0x7f0000000240)={{r3}, "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"})
r5 = open(&(0x7f00000016c0)='./cgroup.net/cgroup.procs\x00', 0x0, 0x0)
openat(0xffffffffffffff9c, &(0x7f0000000080)='./cgroup.net/cgroup.procs\x00', 0xc40, 0x1)
ioctl$FS_IOC_ADD_ENCRYPTION_KEY(r5, 0xc0506617, &(0x7f0000001240)=ANY=[@ANYBLOB="0200000000000000000000000000000000000000000000000000000000000000000000000000000040000000", @ANYRES32=0x0, @ANYBLOB='\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00aaaaaaa\x00\x00\x00\x00aaaaaaaaaaaaaaaaaaaaa1111111111111111111111111111'])
pselect6(0x40, &(0x7f0000000180), &(0x7f00000001c0)={0x3fc}, 0x0, 0x0, 0x0)

21:32:26 executing program 5:
openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x105142, 0x0)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
pipe(&(0x7f00000001c0)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
mount$9p_fd(0xa, &(0x7f0000000040)='./file1\x00', &(0x7f00000000c0), 0x0, &(0x7f0000000280)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}})
openat(0xffffffffffffffff, 0x0, 0x0, 0x0)

21:32:26 executing program 0:
syz_mount_image$vfat(&(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x0, 0x2, &(0x7f0000000180)=[{&(0x7f0000000140)="eb3c906d6b66732e66617400020801000470008400f801", 0x17}, {0x0, 0x0, 0x1000a00}], 0x0, &(0x7f0000000240)=ANY=[])
chdir(&(0x7f0000000040)='./file0\x00')
mount$cgroup(0x0, 0x0, &(0x7f0000000400), 0x0, 0x0)
r0 = syz_io_uring_setup(0x22, &(0x7f0000000680)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000180)=<r1=>0x0, &(0x7f0000002a40)=<r2=>0x0)
r3 = io_uring_register$IORING_REGISTER_PERSONALITY(r0, 0x9, 0x0, 0x0)
r4 = socket$nl_netfilter(0x10, 0x3, 0xc)
syz_io_uring_submit(r1, r2, &(0x7f0000000400)=@IORING_OP_WRITEV={0x2, 0x0, 0x0, @fd=r4, 0x0, 0x0, 0x0, 0x0, 0x0, {0x0, r3}}, 0x0)
r5 = syz_io_uring_setup(0x22, &(0x7f0000000680)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000180), &(0x7f0000002a40))
r6 = io_uring_register$IORING_REGISTER_PERSONALITY(r5, 0x9, 0x0, 0x0)
syz_io_uring_submit(r1, 0x0, &(0x7f0000000440)=@IORING_OP_FSYNC={0x3, 0x2, 0x0, @fd_index=0x9, 0x0, 0x0, 0x0, 0x0, 0x1, {0x0, r6}}, 0x2)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r7 = openat(0xffffffffffffff9c, &(0x7f00000002c0)='./file1\x00', 0x105142, 0x0)
r8 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0)
mount(&(0x7f0000000200)=ANY=[@ANYBLOB], &(0x7f0000000240)='./file0\x00', &(0x7f0000000280)='nfsd\x00', 0x800000, &(0x7f0000000300)='cgroup\x00')
sendfile(r7, r8, 0x0, 0x100000001)
newfstatat(0xffffffffffffff9c, &(0x7f0000000340)='./file1\x00', &(0x7f0000000380), 0x400)

21:32:27 executing program 7:
sendmsg$AUDIT_TTY_GET(0xffffffffffffffff, &(0x7f0000000240)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x1}, 0xc, &(0x7f0000000200)={&(0x7f0000000280)={0x10, 0x3f8, 0x8, 0x70bd28, 0x25dfdbff, "", ["", "", "", "", "", "", ""]}, 0x10}, 0x1, 0x0, 0x0, 0xc010}, 0x24004000)
ioctl$BTRFS_IOC_SYNC(0xffffffffffffffff, 0x9408, 0x0)
syz_mount_image$vfat(&(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x0, 0x2, &(0x7f0000000180)=[{&(0x7f0000000140)="eb3c906d6b66732e66617400020801000470008400f801", 0x17}, {0x0, 0x0, 0x1000a00}], 0x0, &(0x7f0000000240)=ANY=[])
sendmsg$IPSET_CMD_TEST(0xffffffffffffffff, &(0x7f00000004c0)={&(0x7f00000001c0)={0x10, 0x0, 0x0, 0x100000}, 0xc, &(0x7f0000000480)={&(0x7f0000000440)={0x30, 0xb, 0x6, 0x101, 0x0, 0x0, {0x5, 0x0, 0x7}, [@IPSET_ATTR_SETNAME={0x9, 0x2, 'syz1\x00'}, @IPSET_ATTR_LINENO={0x8, 0x9, 0x1, 0x0, 0x7}, @IPSET_ATTR_PROTOCOL={0x5}]}, 0x30}, 0x1, 0x0, 0x0, 0x40}, 0x4)
chdir(&(0x7f0000000040)='./file0\x00')
r0 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x105142, 0x0)
sendmsg$IPSET_CMD_TEST(0xffffffffffffffff, &(0x7f0000000400)={&(0x7f00000002c0)={0x10, 0x0, 0x0, 0x1000000}, 0xc, &(0x7f00000003c0)={&(0x7f0000000300)={0x8c, 0xb, 0x6, 0x401, 0x0, 0x0, {0x7, 0x0, 0x6}, [@IPSET_ATTR_ADT={0x78, 0x8, 0x0, 0x1, [{0xc, 0x7, 0x0, 0x1, @IPSET_ATTR_PORT={0x6, 0x4, 0x1, 0x0, 0x4e21}}, {0x1c, 0x7, 0x0, 0x1, @IPSET_ATTR_IP={0x18, 0x1, 0x0, 0x1, @IPSET_ATTR_IPADDR_IPV6={0x14, 0x2, 0x1, 0x0, @rand_addr=' \x01\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x01'}}}, {0xc, 0x7, 0x0, 0x1, @IPSET_ATTR_MARK={0x8, 0xa, 0x1, 0x0, 0xfffffff8}}, {0x10, 0x7, 0x0, 0x1, @IPSET_ATTR_COMMENT={0x9, 0x1a, 'vfat\x00'}}, {0x10, 0x7, 0x0, 0x1, @IPSET_ATTR_ETHER={0xa, 0x11, @remote}}, {0x10, 0x7, 0x0, 0x1, @IPSET_ATTR_NAME={0x9, 0x12, 'syz0\x00'}}, {0x10, 0x7, 0x0, 0x1, @IPSET_ATTR_IP2={0xc, 0x14, 0x0, 0x1, @IPSET_ATTR_IPADDR_IPV4={0x8, 0x1, 0x1, 0x0, @multicast2}}}]}]}, 0x8c}, 0x1, 0x0, 0x0, 0x4004000}, 0xc091)
openat$cgroup_int(r0, &(0x7f0000000580)='memory.min\x00', 0x2, 0x0)
r1 = perf_event_open(&(0x7f0000001d80)={0x2, 0x80, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
mmap(&(0x7f0000ffc000/0x2000)=nil, 0x2000, 0x0, 0x13, r1, 0x0)
perf_event_open(&(0x7f0000001d80)={0x2, 0x80, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, r1, 0x2)
ioctl$FS_IOC_RESVSP(r0, 0x40305828, &(0x7f0000000040)={0x0, 0x0, 0x0, 0x4000006})

21:32:27 executing program 3:
r0 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x105142, 0x0)
r1 = perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0xa5}, 0x0, 0x0, 0x400}, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r2 = pidfd_open(0xffffffffffffffff, 0x0)
r3 = openat$hpet(0xffffffffffffff9c, &(0x7f0000000280), 0x30000, 0x0)
openat(r3, &(0x7f00000002c0)='./file1\x00', 0x40402, 0x4)
ioctl$sock_SIOCGPGRP(r0, 0x8904, &(0x7f0000000080)=<r4=>0x0)
pidfd_open(r4, 0x0)
ioctl$AUTOFS_DEV_IOCTL_READY(r0, 0xc0189376, &(0x7f0000000000)=ANY=[@ANYRESOCT=r1, @ANYRES32=r2, @ANYBLOB="ac0f000018696da82e2f66696c653100"])
ioctl$sock_FIOGETOWN(r0, 0x8903, &(0x7f0000000140)=<r5=>0x0)
pidfd_open(r5, 0x0)
ioctl$F2FS_IOC_START_ATOMIC_WRITE(r1, 0xf501, 0x0)
pipe(&(0x7f00000001c0)={<r6=>0xffffffffffffffff, <r7=>0xffffffffffffffff})
mount$9p_fd(0x0, &(0x7f0000000040)='./file1\x00', &(0x7f00000000c0), 0x0, &(0x7f0000000200)=ANY=[@ANYBLOB="7472616e733d665c0695cdd4696c1e2668558d99642c7208446e6f3d", @ANYRESHEX=r6, @ANYBLOB=',wfdno=', @ANYRESHEX, @ANYBLOB=',nodevmap,\x00'])
openat(r7, &(0x7f0000000180)='./file1\x00', 0x0, 0x0)

21:32:27 executing program 5:
openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x105142, 0x0)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
pipe(&(0x7f00000001c0)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
mount$9p_fd(0xb, &(0x7f0000000040)='./file1\x00', &(0x7f00000000c0), 0x0, &(0x7f0000000280)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}})
openat(0xffffffffffffffff, 0x0, 0x0, 0x0)

21:32:27 executing program 1:
openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x105142, 0x0)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
pipe(&(0x7f00000001c0))
mount$9p_fd(0x0, &(0x7f0000000040)='./file1\x00', &(0x7f00000000c0), 0x400000000000000, &(0x7f0000000280)={'trans=fd,', {}, 0x2c, {}, 0x2c, {[{@nodevmap}]}})

[ 3100.686678] audit: type=1400 audit(1678138347.154:17): avc:  denied  { map } for  pid=30830 comm="syz-executor.4" path="pipe:[52324]" dev="pipefs" ino=52324 scontext=system_u:system_r:kernel_t:s0 tcontext=system_u:system_r:kernel_t:s0 tclass=fifo_file permissive=1
[ 3100.709424] 9pnet: Could not find request transport: f\���il&hU��d
[ 3100.745233] 9pnet: Could not find request transport: f\���il&hU��d

VM DIAGNOSIS:
21:37:29  Registers:
info registers vcpu 0
RAX=ffffffff83e354a0 RBX=ffffffff84e322c0 RCX=ffffffff83e1cddc RDX=0000000000000000
RSI=0000000000000000 RDI=ffffffff83e35863 RBP=fffffbfff09c6458 RSP=ffffffff84e07e40
R8 =0000000000000001 R9 =ffff88806ce3c12b R10=ffffed100d9c7825 R11=0000000000000001
R12=0000000000000000 R13=ffffffff85672408 R14=0000000000000000 R15=dffffc0000000000
RIP=ffffffff83e354ae RFL=00000202 [-------] CPL=0 II=0 A20=1 SMM=0 HLT=1
ES =0000 0000000000000000 00000000 00000000
CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA]
SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS   [-WA]
DS =0000 0000000000000000 00000000 00000000
FS =0000 0000000000000000 00000000 00000000
GS =0000 ffff88806ce00000 00000000 00000000
LDT=0000 fffffe0000000000 00000000 00000000
TR =0040 fffffe0000003000 00004087 00008b00 DPL=0 TSS64-busy
GDT=     fffffe0000001000 0000007f
IDT=     fffffe0000000000 00000fff
CR0=80050033 CR2=00007f9e4482e010 CR3=000000000e160000 CR4=00350ef0
DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 
DR6=00000000ffff0ff0 DR7=0000000000000400
EFER=0000000000000d01
FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001fa0
FPR0=0000000000000000 0000 FPR1=0000000000000000 0000
FPR2=0000000000000000 0000 FPR3=0000000000000000 0000
FPR4=0000000000000000 0000 FPR5=0000000000000000 0000
FPR6=0000000000000000 0000 FPR7=0000000000000000 0000
XMM00=00000000000000000000000000000000 XMM01=00000007000000060000000000000000
XMM02=6465657320636578650a0a0100010101 XMM03=74616469646e616320636578650e0073
XMM04=0d0065676169727420636578650b0065 XMM05=650a00657a696d696e696d2063657865
XMM06=20636578650a006873616d7320636578 XMM07=20726f74756365786511006c61746f74
XMM08=6e616320636578650e00736465657320 XMM09=69727420636578650b00657461646964
XMM10=696d696e696d20636578650d00656761 XMM11=0a006873616d7320636578650a00657a
XMM12=6365786511006c61746f742063657865 XMM13=650800737472617473657220726f7475
XMM14=7566206365786509006e656720636578 XMM15=000073746e696820636578650a007a7a
info registers vcpu 1
RAX=ffffffff83e354a0 RBX=ffff888008568000 RCX=ffffffff83e1cddc RDX=0000000000000000
RSI=0000000000000000 RDI=ffffffff83e35863 RBP=ffffed10010ad000 RSP=ffff88800857fe78
R8 =0000000000000001 R9 =ffff88806cf3c12b R10=ffffed100d9e7825 R11=0000000000000001
R12=0000000000000001 R13=ffffffff85672408 R14=0000000000000000 R15=dffffc0000000000
RIP=ffffffff83e354ae RFL=00000202 [-------] CPL=0 II=0 A20=1 SMM=0 HLT=1
ES =0000 0000000000000000 00000000 00000000
CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA]
SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS   [-WA]
DS =0000 0000000000000000 00000000 00000000
FS =0000 0000000000000000 00000000 00000000
GS =0000 ffff88806cf00000 00000000 00000000
LDT=0000 fffffe0000000000 00000000 00000000
TR =0040 fffffe000004a000 00004087 00008b00 DPL=0 TSS64-busy
GDT=     fffffe0000048000 0000007f
IDT=     fffffe0000000000 00000fff
CR0=80050033 CR2=00005587cf8a0678 CR3=000000000e160000 CR4=00350ee0
DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 
DR6=00000000ffff0ff0 DR7=0000000000000400
EFER=0000000000000d01
FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001fa0
FPR0=0000000000000000 0000 FPR1=0000000000000000 0000
FPR2=0000000000000000 0000 FPR3=0000000000000000 0000
FPR4=0000000000000000 0000 FPR5=0000000000000000 0000
FPR6=0000000000000000 0000 FPR7=0000000000000000 0000
XMM00=00000000000000000000000000000000 XMM01=002803fe016c6c6f502e726567616e61
XMM02=696e696d20636578650d0a0100010101 XMM03=6873616d7320636578650a00657a696d
XMM04=78650a00736465657320636578650a00 XMM05=6320636578650e006c61746f74206365
XMM06=7420636578650b006574616469646e61 XMM07=746e696820636578650a006567616972
XMM08=20636578650a00657a696d696e696d20 XMM09=6465657320636578650a006873616d73
XMM10=650e006c61746f7420636578650a0073 XMM11=650b006574616469646e616320636578
XMM12=636578650a0065676169727420636578 XMM13=726f747563657865110073746e696820
XMM14=20636578650800737472617473657220 XMM15=00007a7a7566206365786509006e6567