x0) r0 = syz_open_procfs(0x0, &(0x7f00000000c0)='fd/3\x00') r1 = syz_open_dev$swradio(&(0x7f0000000100)='/dev/swradio#\x00', 0x0, 0x2) mount$9p_fd(0x12000000, &(0x7f0000000300)='.\x00', &(0x7f0000000080)='9p\x00', 0x0, &(0x7f0000000740)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}}) 21:37:59 executing program 1: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) r3 = syz_open_procfs(0x0, &(0x7f00000000c0)='fd/3\x00') mount$9p_fd(0x6000000, &(0x7f0000000300)='.\x00', &(0x7f0000000080)='9p\x00', 0x0, &(0x7f00000003c0)={'trans=fd,', {'rfdno', 0x3d, r3}, 0x2c, {'wfdno', 0x3d, r2}}) 21:37:59 executing program 0: set_mempolicy(0x8003, &(0x7f0000000300)=0x75f, 0x9) r0 = open(&(0x7f0000000300)='.\x00', 0x0, 0x0) symlinkat(&(0x7f0000000040)='\x13\x13w\xc5\xfc5\xd4\x14T\xd5\xd4\x1d)\xad\x1a`)Y\x81F\xe6\xbe\x16nA\xad\r\xbd@T\x03<\x9f3\xbb\xda\x82$\xa2\xf3\xd7r\xe7cnH\xb3<\xbfp\x83r\xe8\xf1\xb9\x93>\xc5\x12wC\xbe\"\x06 \x9e\xf0-\xf9\xcb\xf2\xf6\xe8\x80\xd38/\x00', r0, &(0x7f00000000c0)='./file0\x00') mkdirat(r0, &(0x7f0000000200)='\x13\x13w\xc5\xfc5\xd4\x14T\xd5\xd4\x1d)\xad\x1a`)Y\x81F\xe6\xbe\x16nA\xad\r\xbd@T\x03<\x9f3\xbb\xda\x82$\xa2\xf3\xd7r\xe7cnH\xb3<\xbfp\x83r\xe8\xf1\xb9\x93>\xc5\x12wC\xbe\"\x06 \x9e\xf0-\xf9\xcb\xf2\xf6\xe8\x80\xd38/\x00', 0x0) symlinkat(&(0x7f0000000340)='./file0/file0\x00', r0, &(0x7f0000000380)='\x13\x13w\xc5\xfc5\xd4\x14T\xd5\xd4\x1d)\xad\x1a`)Y\x81F\xe6\xbe\x16nA\xad\r\xbd@T\x03<\x9f3\xbb\xda\x82$\xa2\xf3\xd7r\xe7cnH\xb3<\xbfp\x83r\xe8\xf1\xb9\x93>\xc5\x12wC\xbe\"\x06 \x9e\xf0-\xf9\xcb\xf2\xf6\xe8\x80\xd38//file0\x00') r1 = open(&(0x7f0000000100)='.\x00', 0x0, 0x0) renameat2(r1, &(0x7f0000000400)='./file0/file0\x00', r1, &(0x7f0000000000)='./file0\x00', 0x10) 21:37:59 executing program 3: set_mempolicy(0x8003, &(0x7f0000000300)=0x75f, 0x9) open(&(0x7f0000000300)='.\x00', 0x0, 0x0) r0 = syz_open_procfs(0x0, &(0x7f00000000c0)='fd/3\x00') r1 = syz_open_dev$swradio(&(0x7f0000000100)='/dev/swradio#\x00', 0x0, 0x2) mount$9p_fd(0x7000000, &(0x7f0000000300)='.\x00', &(0x7f0000000080)='9p\x00', 0x0, &(0x7f0000000740)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}}) 21:37:59 executing program 2: set_mempolicy(0x8003, &(0x7f0000000300)=0x75f, 0x9) r0 = open(&(0x7f0000000300)='.\x00', 0x0, 0x0) symlinkat(&(0x7f0000000040)='\x13\x13w\xc5\xfc5\xd4\x14T\xd5\xd4\x1d)\xad\x1a`)Y\x81F\xe6\xbe\x16nA\xad\r\xbd@T\x03<\x9f3\xbb\xda\x82$\xa2\xf3\xd7r\xe7cnH\xb3<\xbfp\x83r\xe8\xf1\xb9\x93>\xc5\x12wC\xbe\"\x06 \x9e\xf0-\xf9\xcb\xf2\xf6\xe8\x80\xd38/\x00', r0, &(0x7f00000000c0)='./file0\x00') mkdirat(r0, &(0x7f0000000200)='\x13\x13w\xc5\xfc5\xd4\x14T\xd5\xd4\x1d)\xad\x1a`)Y\x81F\xe6\xbe\x16nA\xad\r\xbd@T\x03<\x9f3\xbb\xda\x82$\xa2\xf3\xd7r\xe7cnH\xb3<\xbfp\x83r\xe8\xf1\xb9\x93>\xc5\x12wC\xbe\"\x06 \x9e\xf0-\xf9\xcb\xf2\xf6\xe8\x80\xd38/\x00', 0x0) symlinkat(&(0x7f0000000340)='./file0/file0\x00', r0, &(0x7f0000000380)='\x13\x13w\xc5\xfc5\xd4\x14T\xd5\xd4\x1d)\xad\x1a`)Y\x81F\xe6\xbe\x16nA\xad\r\xbd@T\x03<\x9f3\xbb\xda\x82$\xa2\xf3\xd7r\xe7cnH\xb3<\xbfp\x83r\xe8\xf1\xb9\x93>\xc5\x12wC\xbe\"\x06 \x9e\xf0-\xf9\xcb\xf2\xf6\xe8\x80\xd38//file0\x00') r1 = open(&(0x7f0000000100)='.\x00', 0x0, 0x0) renameat2(r1, &(0x7f0000000400)='./file0/file0\x00', r1, &(0x7f0000000000)='./file0\x00', 0x1100) 21:37:59 executing program 5: set_mempolicy(0x8003, &(0x7f0000000300)=0x75f, 0x9) open(&(0x7f0000000300)='.\x00', 0x0, 0x0) r0 = syz_open_procfs(0x0, &(0x7f00000000c0)='fd/3\x00') r1 = syz_open_dev$swradio(&(0x7f0000000100)='/dev/swradio#\x00', 0x0, 0x2) mount$9p_fd(0x20100000, &(0x7f0000000300)='.\x00', &(0x7f0000000080)='9p\x00', 0x0, &(0x7f0000000740)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}}) 21:37:59 executing program 4: set_mempolicy(0x8003, &(0x7f0000000300)=0x75f, 0x9) open(&(0x7f0000000300)='.\x00', 0x0, 0x0) r0 = syz_open_procfs(0x0, &(0x7f00000000c0)='fd/3\x00') r1 = syz_open_dev$swradio(&(0x7f0000000100)='/dev/swradio#\x00', 0x0, 0x2) mount$9p_fd(0x9fff, &(0x7f0000000300)='.\x00', &(0x7f0000000080)='9p\x00', 0x0, &(0x7f0000000740)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}}) 21:37:59 executing program 0 (fault-call:0 fault-nth:0): syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x40000, 0x3, &(0x7f0000000200)=[{&(0x7f0000010000)="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", 0x10c, 0x400}, {&(0x7f0000010200)="0500000000000000000000000000000000000000040100002b", 0x19, 0x560}, {&(0x7f0000010300)="000000000000000000000000000000000000000000000000000000001481910a040000001400000024", 0x29, 0x7e0}], 0x0, &(0x7f0000000040)={[{@usrjquota='usrjquota='}, {@data_err_abort='data_err=abort'}]}) 21:37:59 executing program 2: set_mempolicy(0x8003, &(0x7f0000000300)=0x75f, 0x9) r0 = open(&(0x7f0000000300)='.\x00', 0x0, 0x0) symlinkat(&(0x7f0000000040)='\x13\x13w\xc5\xfc5\xd4\x14T\xd5\xd4\x1d)\xad\x1a`)Y\x81F\xe6\xbe\x16nA\xad\r\xbd@T\x03<\x9f3\xbb\xda\x82$\xa2\xf3\xd7r\xe7cnH\xb3<\xbfp\x83r\xe8\xf1\xb9\x93>\xc5\x12wC\xbe\"\x06 \x9e\xf0-\xf9\xcb\xf2\xf6\xe8\x80\xd38/\x00', r0, &(0x7f00000000c0)='./file0\x00') mkdirat(r0, &(0x7f0000000200)='\x13\x13w\xc5\xfc5\xd4\x14T\xd5\xd4\x1d)\xad\x1a`)Y\x81F\xe6\xbe\x16nA\xad\r\xbd@T\x03<\x9f3\xbb\xda\x82$\xa2\xf3\xd7r\xe7cnH\xb3<\xbfp\x83r\xe8\xf1\xb9\x93>\xc5\x12wC\xbe\"\x06 \x9e\xf0-\xf9\xcb\xf2\xf6\xe8\x80\xd38/\x00', 0x0) symlinkat(&(0x7f0000000340)='./file0/file0\x00', r0, &(0x7f0000000380)='\x13\x13w\xc5\xfc5\xd4\x14T\xd5\xd4\x1d)\xad\x1a`)Y\x81F\xe6\xbe\x16nA\xad\r\xbd@T\x03<\x9f3\xbb\xda\x82$\xa2\xf3\xd7r\xe7cnH\xb3<\xbfp\x83r\xe8\xf1\xb9\x93>\xc5\x12wC\xbe\"\x06 \x9e\xf0-\xf9\xcb\xf2\xf6\xe8\x80\xd38//file0\x00') r1 = open(&(0x7f0000000100)='.\x00', 0x0, 0x0) renameat2(r1, &(0x7f0000000400)='./file0/file0\x00', r1, &(0x7f0000000000)='./file0\x00', 0x1200) 21:37:59 executing program 1: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) r3 = syz_open_procfs(0x0, &(0x7f00000000c0)='fd/3\x00') mount$9p_fd(0x7000000, &(0x7f0000000300)='.\x00', &(0x7f0000000080)='9p\x00', 0x0, &(0x7f00000003c0)={'trans=fd,', {'rfdno', 0x3d, r3}, 0x2c, {'wfdno', 0x3d, r2}}) 21:37:59 executing program 4: set_mempolicy(0x8003, &(0x7f0000000300)=0x75f, 0x9) open(&(0x7f0000000300)='.\x00', 0x0, 0x0) r0 = syz_open_procfs(0x0, &(0x7f00000000c0)='fd/3\x00') r1 = syz_open_dev$swradio(&(0x7f0000000100)='/dev/swradio#\x00', 0x0, 0x2) mount$9p_fd(0xedc0, &(0x7f0000000300)='.\x00', &(0x7f0000000080)='9p\x00', 0x0, &(0x7f0000000740)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}}) 21:37:59 executing program 3: set_mempolicy(0x8003, &(0x7f0000000300)=0x75f, 0x9) open(&(0x7f0000000300)='.\x00', 0x0, 0x0) r0 = syz_open_procfs(0x0, &(0x7f00000000c0)='fd/3\x00') r1 = syz_open_dev$swradio(&(0x7f0000000100)='/dev/swradio#\x00', 0x0, 0x2) mount$9p_fd(0x8000000, &(0x7f0000000300)='.\x00', &(0x7f0000000080)='9p\x00', 0x0, &(0x7f0000000740)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}}) 21:37:59 executing program 5: set_mempolicy(0x8003, &(0x7f0000000300)=0x75f, 0x9) open(&(0x7f0000000300)='.\x00', 0x0, 0x0) r0 = syz_open_procfs(0x0, &(0x7f00000000c0)='fd/3\x00') r1 = syz_open_dev$swradio(&(0x7f0000000100)='/dev/swradio#\x00', 0x0, 0x2) mount$9p_fd(0x25000000, &(0x7f0000000300)='.\x00', &(0x7f0000000080)='9p\x00', 0x0, &(0x7f0000000740)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}}) [ 219.651816][T13567] FAULT_INJECTION: forcing a failure. [ 219.651816][T13567] name failslab, interval 1, probability 0, space 0, times 0 [ 219.697427][T13567] CPU: 1 PID: 13567 Comm: syz-executor.0 Not tainted 5.11.0-syzkaller #0 [ 219.705955][T13567] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 219.716174][T13567] Call Trace: [ 219.719448][T13567] dump_stack+0x116/0x15d [ 219.723879][T13567] should_fail+0x23c/0x250 [ 219.728291][T13567] __should_failslab+0x81/0x90 [ 219.733087][T13567] ? __se_sys_memfd_create+0xfb/0x390 [ 219.738535][T13567] should_failslab+0x5/0x20 [ 219.743069][T13567] __kmalloc+0x59/0x360 21:37:59 executing program 5: set_mempolicy(0x8003, &(0x7f0000000300)=0x75f, 0x9) open(&(0x7f0000000300)='.\x00', 0x0, 0x0) r0 = syz_open_procfs(0x0, &(0x7f00000000c0)='fd/3\x00') r1 = syz_open_dev$swradio(&(0x7f0000000100)='/dev/swradio#\x00', 0x0, 0x2) mount$9p_fd(0x40000000, &(0x7f0000000300)='.\x00', &(0x7f0000000080)='9p\x00', 0x0, &(0x7f0000000740)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}}) [ 219.747766][T13567] ? strnlen_user+0x137/0x1c0 [ 219.752446][T13567] __se_sys_memfd_create+0xfb/0x390 [ 219.757650][T13567] __x64_sys_memfd_create+0x2d/0x40 [ 219.762859][T13567] do_syscall_64+0x39/0x80 [ 219.767352][T13567] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 219.773257][T13567] RIP: 0033:0x465d99 [ 219.777141][T13567] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 21:37:59 executing program 5: set_mempolicy(0x8003, &(0x7f0000000300)=0x75f, 0x9) open(&(0x7f0000000300)='.\x00', 0x0, 0x0) r0 = syz_open_procfs(0x0, &(0x7f00000000c0)='fd/3\x00') r1 = syz_open_dev$swradio(&(0x7f0000000100)='/dev/swradio#\x00', 0x0, 0x2) mount$9p_fd(0x5c000000, &(0x7f0000000300)='.\x00', &(0x7f0000000080)='9p\x00', 0x0, &(0x7f0000000740)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}}) 21:37:59 executing program 4: set_mempolicy(0x8003, &(0x7f0000000300)=0x75f, 0x9) open(&(0x7f0000000300)='.\x00', 0x0, 0x0) r0 = syz_open_procfs(0x0, &(0x7f00000000c0)='fd/3\x00') r1 = syz_open_dev$swradio(&(0x7f0000000100)='/dev/swradio#\x00', 0x0, 0x2) mount$9p_fd(0xff00, &(0x7f0000000300)='.\x00', &(0x7f0000000080)='9p\x00', 0x0, &(0x7f0000000740)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}}) [ 219.796741][T13567] RSP: 002b:00007f8175ef9f48 EFLAGS: 00000246 ORIG_RAX: 000000000000013f [ 219.805147][T13567] RAX: ffffffffffffffda RBX: 0000000020000200 RCX: 0000000000465d99 [ 219.813205][T13567] RDX: 0000000000000fc0 RSI: 0000000000000000 RDI: 00000000004bbd4a [ 219.821172][T13567] RBP: 0000000000000003 R08: 00000000000007e0 R09: ffffffffffffffff [ 219.829136][T13567] R10: 0000000000000003 R11: 0000000000000246 R12: 0000000008100000 [ 219.837698][T13567] R13: 0000000020000100 R14: 0000000000040000 R15: 0000000020000040 21:37:59 executing program 2: set_mempolicy(0x8003, &(0x7f0000000300)=0x75f, 0x9) r0 = open(&(0x7f0000000300)='.\x00', 0x0, 0x0) symlinkat(&(0x7f0000000040)='\x13\x13w\xc5\xfc5\xd4\x14T\xd5\xd4\x1d)\xad\x1a`)Y\x81F\xe6\xbe\x16nA\xad\r\xbd@T\x03<\x9f3\xbb\xda\x82$\xa2\xf3\xd7r\xe7cnH\xb3<\xbfp\x83r\xe8\xf1\xb9\x93>\xc5\x12wC\xbe\"\x06 \x9e\xf0-\xf9\xcb\xf2\xf6\xe8\x80\xd38/\x00', r0, &(0x7f00000000c0)='./file0\x00') mkdirat(r0, &(0x7f0000000200)='\x13\x13w\xc5\xfc5\xd4\x14T\xd5\xd4\x1d)\xad\x1a`)Y\x81F\xe6\xbe\x16nA\xad\r\xbd@T\x03<\x9f3\xbb\xda\x82$\xa2\xf3\xd7r\xe7cnH\xb3<\xbfp\x83r\xe8\xf1\xb9\x93>\xc5\x12wC\xbe\"\x06 \x9e\xf0-\xf9\xcb\xf2\xf6\xe8\x80\xd38/\x00', 0x0) symlinkat(&(0x7f0000000340)='./file0/file0\x00', r0, &(0x7f0000000380)='\x13\x13w\xc5\xfc5\xd4\x14T\xd5\xd4\x1d)\xad\x1a`)Y\x81F\xe6\xbe\x16nA\xad\r\xbd@T\x03<\x9f3\xbb\xda\x82$\xa2\xf3\xd7r\xe7cnH\xb3<\xbfp\x83r\xe8\xf1\xb9\x93>\xc5\x12wC\xbe\"\x06 \x9e\xf0-\xf9\xcb\xf2\xf6\xe8\x80\xd38//file0\x00') r1 = open(&(0x7f0000000100)='.\x00', 0x0, 0x0) renameat2(r1, &(0x7f0000000400)='./file0/file0\x00', r1, &(0x7f0000000000)='./file0\x00', 0x1201) 21:37:59 executing program 1: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) r3 = syz_open_procfs(0x0, &(0x7f00000000c0)='fd/3\x00') mount$9p_fd(0x8000000, &(0x7f0000000300)='.\x00', &(0x7f0000000080)='9p\x00', 0x0, &(0x7f00000003c0)={'trans=fd,', {'rfdno', 0x3d, r3}, 0x2c, {'wfdno', 0x3d, r2}}) 21:37:59 executing program 5: set_mempolicy(0x8003, &(0x7f0000000300)=0x75f, 0x9) open(&(0x7f0000000300)='.\x00', 0x0, 0x0) r0 = syz_open_procfs(0x0, &(0x7f00000000c0)='fd/3\x00') r1 = syz_open_dev$swradio(&(0x7f0000000100)='/dev/swradio#\x00', 0x0, 0x2) mount$9p_fd(0x8cffffff, &(0x7f0000000300)='.\x00', &(0x7f0000000080)='9p\x00', 0x0, &(0x7f0000000740)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}}) 21:37:59 executing program 0 (fault-call:0 fault-nth:1): syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x40000, 0x3, &(0x7f0000000200)=[{&(0x7f0000010000)="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", 0x10c, 0x400}, {&(0x7f0000010200)="0500000000000000000000000000000000000000040100002b", 0x19, 0x560}, {&(0x7f0000010300)="000000000000000000000000000000000000000000000000000000001481910a040000001400000024", 0x29, 0x7e0}], 0x0, &(0x7f0000000040)={[{@usrjquota='usrjquota='}, {@data_err_abort='data_err=abort'}]}) 21:37:59 executing program 3: set_mempolicy(0x8003, &(0x7f0000000300)=0x75f, 0x9) open(&(0x7f0000000300)='.\x00', 0x0, 0x0) r0 = syz_open_procfs(0x0, &(0x7f00000000c0)='fd/3\x00') r1 = syz_open_dev$swradio(&(0x7f0000000100)='/dev/swradio#\x00', 0x0, 0x2) mount$9p_fd(0x9000000, &(0x7f0000000300)='.\x00', &(0x7f0000000080)='9p\x00', 0x0, &(0x7f0000000740)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}}) 21:37:59 executing program 4: set_mempolicy(0x8003, &(0x7f0000000300)=0x75f, 0x9) open(&(0x7f0000000300)='.\x00', 0x0, 0x0) r0 = syz_open_procfs(0x0, &(0x7f00000000c0)='fd/3\x00') r1 = syz_open_dev$swradio(&(0x7f0000000100)='/dev/swradio#\x00', 0x0, 0x2) mount$9p_fd(0xff9f, &(0x7f0000000300)='.\x00', &(0x7f0000000080)='9p\x00', 0x0, &(0x7f0000000740)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}}) 21:37:59 executing program 1: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) r3 = syz_open_procfs(0x0, &(0x7f00000000c0)='fd/3\x00') mount$9p_fd(0x9000000, &(0x7f0000000300)='.\x00', &(0x7f0000000080)='9p\x00', 0x0, &(0x7f00000003c0)={'trans=fd,', {'rfdno', 0x3d, r3}, 0x2c, {'wfdno', 0x3d, r2}}) 21:37:59 executing program 2: set_mempolicy(0x8003, &(0x7f0000000300)=0x75f, 0x9) r0 = open(&(0x7f0000000300)='.\x00', 0x0, 0x0) symlinkat(&(0x7f0000000040)='\x13\x13w\xc5\xfc5\xd4\x14T\xd5\xd4\x1d)\xad\x1a`)Y\x81F\xe6\xbe\x16nA\xad\r\xbd@T\x03<\x9f3\xbb\xda\x82$\xa2\xf3\xd7r\xe7cnH\xb3<\xbfp\x83r\xe8\xf1\xb9\x93>\xc5\x12wC\xbe\"\x06 \x9e\xf0-\xf9\xcb\xf2\xf6\xe8\x80\xd38/\x00', r0, &(0x7f00000000c0)='./file0\x00') mkdirat(r0, &(0x7f0000000200)='\x13\x13w\xc5\xfc5\xd4\x14T\xd5\xd4\x1d)\xad\x1a`)Y\x81F\xe6\xbe\x16nA\xad\r\xbd@T\x03<\x9f3\xbb\xda\x82$\xa2\xf3\xd7r\xe7cnH\xb3<\xbfp\x83r\xe8\xf1\xb9\x93>\xc5\x12wC\xbe\"\x06 \x9e\xf0-\xf9\xcb\xf2\xf6\xe8\x80\xd38/\x00', 0x0) symlinkat(&(0x7f0000000340)='./file0/file0\x00', r0, &(0x7f0000000380)='\x13\x13w\xc5\xfc5\xd4\x14T\xd5\xd4\x1d)\xad\x1a`)Y\x81F\xe6\xbe\x16nA\xad\r\xbd@T\x03<\x9f3\xbb\xda\x82$\xa2\xf3\xd7r\xe7cnH\xb3<\xbfp\x83r\xe8\xf1\xb9\x93>\xc5\x12wC\xbe\"\x06 \x9e\xf0-\xf9\xcb\xf2\xf6\xe8\x80\xd38//file0\x00') r1 = open(&(0x7f0000000100)='.\x00', 0x0, 0x0) renameat2(r1, &(0x7f0000000400)='./file0/file0\x00', r1, &(0x7f0000000000)='./file0\x00', 0x2000) 21:37:59 executing program 4: set_mempolicy(0x8003, &(0x7f0000000300)=0x75f, 0x9) open(&(0x7f0000000300)='.\x00', 0x0, 0x0) r0 = syz_open_procfs(0x0, &(0x7f00000000c0)='fd/3\x00') r1 = syz_open_dev$swradio(&(0x7f0000000100)='/dev/swradio#\x00', 0x0, 0x2) mount$9p_fd(0x400000, &(0x7f0000000300)='.\x00', &(0x7f0000000080)='9p\x00', 0x0, &(0x7f0000000740)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}}) [ 219.990166][T13611] FAULT_INJECTION: forcing a failure. [ 219.990166][T13611] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 220.049234][T13611] CPU: 0 PID: 13611 Comm: syz-executor.0 Not tainted 5.11.0-syzkaller #0 [ 220.057687][T13611] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 220.067732][T13611] Call Trace: [ 220.071001][T13611] dump_stack+0x116/0x15d [ 220.075371][T13611] should_fail+0x23c/0x250 [ 220.079782][T13611] should_fail_usercopy+0x16/0x20 [ 220.084834][T13611] _copy_from_user+0x1c/0xd0 [ 220.089409][T13611] __se_sys_memfd_create+0x137/0x390 [ 220.094676][T13611] __x64_sys_memfd_create+0x2d/0x40 [ 220.099879][T13611] do_syscall_64+0x39/0x80 [ 220.104283][T13611] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 220.110158][T13611] RIP: 0033:0x465d99 [ 220.114076][T13611] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 220.133681][T13611] RSP: 002b:00007f8175ef9f48 EFLAGS: 00000246 ORIG_RAX: 000000000000013f 21:38:00 executing program 5: set_mempolicy(0x8003, &(0x7f0000000300)=0x75f, 0x9) open(&(0x7f0000000300)='.\x00', 0x0, 0x0) r0 = syz_open_procfs(0x0, &(0x7f00000000c0)='fd/3\x00') r1 = syz_open_dev$swradio(&(0x7f0000000100)='/dev/swradio#\x00', 0x0, 0x2) mount$9p_fd(0xc0ed0000, &(0x7f0000000300)='.\x00', &(0x7f0000000080)='9p\x00', 0x0, &(0x7f0000000740)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}}) 21:38:00 executing program 3: set_mempolicy(0x8003, &(0x7f0000000300)=0x75f, 0x9) open(&(0x7f0000000300)='.\x00', 0x0, 0x0) r0 = syz_open_procfs(0x0, &(0x7f00000000c0)='fd/3\x00') r1 = syz_open_dev$swradio(&(0x7f0000000100)='/dev/swradio#\x00', 0x0, 0x2) mount$9p_fd(0xa000000, &(0x7f0000000300)='.\x00', &(0x7f0000000080)='9p\x00', 0x0, &(0x7f0000000740)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}}) [ 220.142073][T13611] RAX: ffffffffffffffda RBX: 0000000020000200 RCX: 0000000000465d99 [ 220.150031][T13611] RDX: 0000000000000fc0 RSI: 0000000000000000 RDI: 00000000004bbd4a [ 220.157981][T13611] RBP: 0000000000000003 R08: 00000000000007e0 R09: ffffffffffffffff [ 220.165932][T13611] R10: 0000000000000003 R11: 0000000000000246 R12: 0000000008100000 [ 220.173887][T13611] R13: 0000000020000100 R14: 0000000000040000 R15: 0000000020000040 [ 220.215295][ T8977] warn_unsupported: 2 callbacks suppressed [ 220.215366][ T8977] kernel read not supported for file root/syzkaller-testdir583426511/syzkaller.VVQl22/142 (pid: 8977 comm: kworker/0:3) 21:38:00 executing program 2: set_mempolicy(0x8003, &(0x7f0000000300)=0x75f, 0x9) r0 = open(&(0x7f0000000300)='.\x00', 0x0, 0x0) symlinkat(&(0x7f0000000040)='\x13\x13w\xc5\xfc5\xd4\x14T\xd5\xd4\x1d)\xad\x1a`)Y\x81F\xe6\xbe\x16nA\xad\r\xbd@T\x03<\x9f3\xbb\xda\x82$\xa2\xf3\xd7r\xe7cnH\xb3<\xbfp\x83r\xe8\xf1\xb9\x93>\xc5\x12wC\xbe\"\x06 \x9e\xf0-\xf9\xcb\xf2\xf6\xe8\x80\xd38/\x00', r0, &(0x7f00000000c0)='./file0\x00') mkdirat(r0, &(0x7f0000000200)='\x13\x13w\xc5\xfc5\xd4\x14T\xd5\xd4\x1d)\xad\x1a`)Y\x81F\xe6\xbe\x16nA\xad\r\xbd@T\x03<\x9f3\xbb\xda\x82$\xa2\xf3\xd7r\xe7cnH\xb3<\xbfp\x83r\xe8\xf1\xb9\x93>\xc5\x12wC\xbe\"\x06 \x9e\xf0-\xf9\xcb\xf2\xf6\xe8\x80\xd38/\x00', 0x0) symlinkat(&(0x7f0000000340)='./file0/file0\x00', r0, &(0x7f0000000380)='\x13\x13w\xc5\xfc5\xd4\x14T\xd5\xd4\x1d)\xad\x1a`)Y\x81F\xe6\xbe\x16nA\xad\r\xbd@T\x03<\x9f3\xbb\xda\x82$\xa2\xf3\xd7r\xe7cnH\xb3<\xbfp\x83r\xe8\xf1\xb9\x93>\xc5\x12wC\xbe\"\x06 \x9e\xf0-\xf9\xcb\xf2\xf6\xe8\x80\xd38//file0\x00') r1 = open(&(0x7f0000000100)='.\x00', 0x0, 0x0) renameat2(r1, &(0x7f0000000400)='./file0/file0\x00', r1, &(0x7f0000000000)='./file0\x00', 0x2500) 21:38:00 executing program 5: set_mempolicy(0x8003, &(0x7f0000000300)=0x75f, 0x9) open(&(0x7f0000000300)='.\x00', 0x0, 0x0) r0 = syz_open_procfs(0x0, &(0x7f00000000c0)='fd/3\x00') r1 = syz_open_dev$swradio(&(0x7f0000000100)='/dev/swradio#\x00', 0x0, 0x2) mount$9p_fd(0xf6ffffff, &(0x7f0000000300)='.\x00', &(0x7f0000000080)='9p\x00', 0x0, &(0x7f0000000740)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}}) 21:38:00 executing program 3: set_mempolicy(0x8003, &(0x7f0000000300)=0x75f, 0x9) open(&(0x7f0000000300)='.\x00', 0x0, 0x0) r0 = syz_open_procfs(0x0, &(0x7f00000000c0)='fd/3\x00') r1 = syz_open_dev$swradio(&(0x7f0000000100)='/dev/swradio#\x00', 0x0, 0x2) mount$9p_fd(0xb000000, &(0x7f0000000300)='.\x00', &(0x7f0000000080)='9p\x00', 0x0, &(0x7f0000000740)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}}) 21:38:00 executing program 0 (fault-call:0 fault-nth:2): syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x40000, 0x3, &(0x7f0000000200)=[{&(0x7f0000010000)="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", 0x10c, 0x400}, {&(0x7f0000010200)="0500000000000000000000000000000000000000040100002b", 0x19, 0x560}, {&(0x7f0000010300)="000000000000000000000000000000000000000000000000000000001481910a040000001400000024", 0x29, 0x7e0}], 0x0, &(0x7f0000000040)={[{@usrjquota='usrjquota='}, {@data_err_abort='data_err=abort'}]}) 21:38:00 executing program 1: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) r3 = syz_open_procfs(0x0, &(0x7f00000000c0)='fd/3\x00') mount$9p_fd(0xa000000, &(0x7f0000000300)='.\x00', &(0x7f0000000080)='9p\x00', 0x0, &(0x7f00000003c0)={'trans=fd,', {'rfdno', 0x3d, r3}, 0x2c, {'wfdno', 0x3d, r2}}) 21:38:00 executing program 4: set_mempolicy(0x8003, &(0x7f0000000300)=0x75f, 0x9) open(&(0x7f0000000300)='.\x00', 0x0, 0x0) r0 = syz_open_procfs(0x0, &(0x7f00000000c0)='fd/3\x00') r1 = syz_open_dev$swradio(&(0x7f0000000100)='/dev/swradio#\x00', 0x0, 0x2) mount$9p_fd(0xfeffff, &(0x7f0000000300)='.\x00', &(0x7f0000000080)='9p\x00', 0x0, &(0x7f0000000740)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}}) 21:38:00 executing program 5: set_mempolicy(0x8003, &(0x7f0000000300)=0x75f, 0x9) open(&(0x7f0000000300)='.\x00', 0x0, 0x0) r0 = syz_open_procfs(0x0, &(0x7f00000000c0)='fd/3\x00') r1 = syz_open_dev$swradio(&(0x7f0000000100)='/dev/swradio#\x00', 0x0, 0x2) mount$9p_fd(0xfeffffff, &(0x7f0000000300)='.\x00', &(0x7f0000000080)='9p\x00', 0x0, &(0x7f0000000740)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}}) [ 220.322805][ T5] kernel read not supported for file root/syzkaller-testdir583426511/syzkaller.VVQl22/142 (pid: 5 comm: kworker/0:0) [ 220.356724][T13648] FAULT_INJECTION: forcing a failure. [ 220.356724][T13648] name failslab, interval 1, probability 0, space 0, times 0 21:38:00 executing program 2: set_mempolicy(0x8003, &(0x7f0000000300)=0x75f, 0x9) r0 = open(&(0x7f0000000300)='.\x00', 0x0, 0x0) symlinkat(&(0x7f0000000040)='\x13\x13w\xc5\xfc5\xd4\x14T\xd5\xd4\x1d)\xad\x1a`)Y\x81F\xe6\xbe\x16nA\xad\r\xbd@T\x03<\x9f3\xbb\xda\x82$\xa2\xf3\xd7r\xe7cnH\xb3<\xbfp\x83r\xe8\xf1\xb9\x93>\xc5\x12wC\xbe\"\x06 \x9e\xf0-\xf9\xcb\xf2\xf6\xe8\x80\xd38/\x00', r0, &(0x7f00000000c0)='./file0\x00') mkdirat(r0, &(0x7f0000000200)='\x13\x13w\xc5\xfc5\xd4\x14T\xd5\xd4\x1d)\xad\x1a`)Y\x81F\xe6\xbe\x16nA\xad\r\xbd@T\x03<\x9f3\xbb\xda\x82$\xa2\xf3\xd7r\xe7cnH\xb3<\xbfp\x83r\xe8\xf1\xb9\x93>\xc5\x12wC\xbe\"\x06 \x9e\xf0-\xf9\xcb\xf2\xf6\xe8\x80\xd38/\x00', 0x0) symlinkat(&(0x7f0000000340)='./file0/file0\x00', r0, &(0x7f0000000380)='\x13\x13w\xc5\xfc5\xd4\x14T\xd5\xd4\x1d)\xad\x1a`)Y\x81F\xe6\xbe\x16nA\xad\r\xbd@T\x03<\x9f3\xbb\xda\x82$\xa2\xf3\xd7r\xe7cnH\xb3<\xbfp\x83r\xe8\xf1\xb9\x93>\xc5\x12wC\xbe\"\x06 \x9e\xf0-\xf9\xcb\xf2\xf6\xe8\x80\xd38//file0\x00') r1 = open(&(0x7f0000000100)='.\x00', 0x0, 0x0) renameat2(r1, &(0x7f0000000400)='./file0/file0\x00', r1, &(0x7f0000000000)='./file0\x00', 0x2700) [ 220.411387][T13648] CPU: 1 PID: 13648 Comm: syz-executor.0 Not tainted 5.11.0-syzkaller #0 [ 220.419878][T13648] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 220.429930][T13648] Call Trace: [ 220.433203][T13648] dump_stack+0x116/0x15d [ 220.437547][T13648] should_fail+0x23c/0x250 [ 220.442019][T13648] ? shmem_alloc_inode+0x22/0x30 [ 220.446950][T13648] __should_failslab+0x81/0x90 [ 220.450805][ T8977] kernel read not supported for file root/syzkaller-testdir583426511/syzkaller.VVQl22/143 (pid: 8977 comm: kworker/0:3) [ 220.451736][T13648] ? shmem_match+0xa0/0xa0 [ 220.469327][T13648] should_failslab+0x5/0x20 [ 220.473827][T13648] kmem_cache_alloc+0x36/0x2e0 [ 220.478590][T13648] ? fsnotify_perm+0x59/0x2e0 [ 220.483271][T13648] ? shmem_match+0xa0/0xa0 [ 220.487746][T13648] shmem_alloc_inode+0x22/0x30 [ 220.492602][T13648] new_inode_pseudo+0x38/0x190 [ 220.497362][T13648] new_inode+0x21/0x100 [ 220.501552][T13648] shmem_get_inode+0xa1/0x440 [ 220.503026][ T8977] kernel read not supported for file root/syzkaller-testdir583426511/syzkaller.VVQl22/143 (pid: 8977 comm: kworker/0:3) [ 220.506312][T13648] __shmem_file_setup+0xf1/0x1d0 [ 220.523713][T13648] shmem_file_setup+0x37/0x40 [ 220.528416][T13648] __se_sys_memfd_create+0x1eb/0x390 [ 220.533735][T13648] __x64_sys_memfd_create+0x2d/0x40 [ 220.538938][T13648] do_syscall_64+0x39/0x80 [ 220.543359][T13648] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 220.549312][T13648] RIP: 0033:0x465d99 [ 220.553192][T13648] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 220.572802][T13648] RSP: 002b:00007f8175ef9f48 EFLAGS: 00000246 ORIG_RAX: 000000000000013f [ 220.581293][T13648] RAX: ffffffffffffffda RBX: 0000000020000200 RCX: 0000000000465d99 [ 220.589274][T13648] RDX: 0000000000000fc0 RSI: 0000000000000000 RDI: 00000000004bbd4a [ 220.597241][T13648] RBP: 0000000000000003 R08: 00000000000007e0 R09: ffffffffffffffff 21:38:00 executing program 4: set_mempolicy(0x8003, &(0x7f0000000300)=0x75f, 0x9) open(&(0x7f0000000300)='.\x00', 0x0, 0x0) r0 = syz_open_procfs(0x0, &(0x7f00000000c0)='fd/3\x00') r1 = syz_open_dev$swradio(&(0x7f0000000100)='/dev/swradio#\x00', 0x0, 0x2) mount$9p_fd(0x1000000, &(0x7f0000000300)='.\x00', &(0x7f0000000080)='9p\x00', 0x0, &(0x7f0000000740)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}}) 21:38:00 executing program 3: set_mempolicy(0x8003, &(0x7f0000000300)=0x75f, 0x9) open(&(0x7f0000000300)='.\x00', 0x0, 0x0) r0 = syz_open_procfs(0x0, &(0x7f00000000c0)='fd/3\x00') r1 = syz_open_dev$swradio(&(0x7f0000000100)='/dev/swradio#\x00', 0x0, 0x2) mount$9p_fd(0xc000000, &(0x7f0000000300)='.\x00', &(0x7f0000000080)='9p\x00', 0x0, &(0x7f0000000740)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}}) [ 220.605232][T13648] R10: 0000000000000003 R11: 0000000000000246 R12: 0000000008100000 [ 220.613243][T13648] R13: 0000000020000100 R14: 0000000000040000 R15: 0000000020000040 21:38:00 executing program 5: set_mempolicy(0x8003, &(0x7f0000000300)=0x75f, 0x9) open(&(0x7f0000000300)='.\x00', 0x0, 0x0) r0 = syz_open_procfs(0x0, &(0x7f00000000c0)='fd/3\x00') r1 = syz_open_dev$swradio(&(0x7f0000000100)='/dev/swradio#\x00', 0x0, 0x2) mount$9p_fd(0xff000000, &(0x7f0000000300)='.\x00', &(0x7f0000000080)='9p\x00', 0x0, &(0x7f0000000740)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}}) 21:38:00 executing program 1: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) r3 = syz_open_procfs(0x0, &(0x7f00000000c0)='fd/3\x00') mount$9p_fd(0xb000000, &(0x7f0000000300)='.\x00', &(0x7f0000000080)='9p\x00', 0x0, &(0x7f00000003c0)={'trans=fd,', {'rfdno', 0x3d, r3}, 0x2c, {'wfdno', 0x3d, r2}}) 21:38:00 executing program 3: set_mempolicy(0x8003, &(0x7f0000000300)=0x75f, 0x9) open(&(0x7f0000000300)='.\x00', 0x0, 0x0) r0 = syz_open_procfs(0x0, &(0x7f00000000c0)='fd/3\x00') r1 = syz_open_dev$swradio(&(0x7f0000000100)='/dev/swradio#\x00', 0x0, 0x2) mount$9p_fd(0xd000000, &(0x7f0000000300)='.\x00', &(0x7f0000000080)='9p\x00', 0x0, &(0x7f0000000740)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}}) 21:38:00 executing program 5: set_mempolicy(0x8003, &(0x7f0000000300)=0x75f, 0x9) open(&(0x7f0000000300)='.\x00', 0x0, 0x0) r0 = syz_open_procfs(0x0, &(0x7f00000000c0)='fd/3\x00') r1 = syz_open_dev$swradio(&(0x7f0000000100)='/dev/swradio#\x00', 0x0, 0x2) mount$9p_fd(0xff9f0000, &(0x7f0000000300)='.\x00', &(0x7f0000000080)='9p\x00', 0x0, &(0x7f0000000740)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}}) 21:38:00 executing program 2: set_mempolicy(0x8003, &(0x7f0000000300)=0x75f, 0x9) r0 = open(&(0x7f0000000300)='.\x00', 0x0, 0x0) symlinkat(&(0x7f0000000040)='\x13\x13w\xc5\xfc5\xd4\x14T\xd5\xd4\x1d)\xad\x1a`)Y\x81F\xe6\xbe\x16nA\xad\r\xbd@T\x03<\x9f3\xbb\xda\x82$\xa2\xf3\xd7r\xe7cnH\xb3<\xbfp\x83r\xe8\xf1\xb9\x93>\xc5\x12wC\xbe\"\x06 \x9e\xf0-\xf9\xcb\xf2\xf6\xe8\x80\xd38/\x00', r0, &(0x7f00000000c0)='./file0\x00') mkdirat(r0, &(0x7f0000000200)='\x13\x13w\xc5\xfc5\xd4\x14T\xd5\xd4\x1d)\xad\x1a`)Y\x81F\xe6\xbe\x16nA\xad\r\xbd@T\x03<\x9f3\xbb\xda\x82$\xa2\xf3\xd7r\xe7cnH\xb3<\xbfp\x83r\xe8\xf1\xb9\x93>\xc5\x12wC\xbe\"\x06 \x9e\xf0-\xf9\xcb\xf2\xf6\xe8\x80\xd38/\x00', 0x0) symlinkat(&(0x7f0000000340)='./file0/file0\x00', r0, &(0x7f0000000380)='\x13\x13w\xc5\xfc5\xd4\x14T\xd5\xd4\x1d)\xad\x1a`)Y\x81F\xe6\xbe\x16nA\xad\r\xbd@T\x03<\x9f3\xbb\xda\x82$\xa2\xf3\xd7r\xe7cnH\xb3<\xbfp\x83r\xe8\xf1\xb9\x93>\xc5\x12wC\xbe\"\x06 \x9e\xf0-\xf9\xcb\xf2\xf6\xe8\x80\xd38//file0\x00') r1 = open(&(0x7f0000000100)='.\x00', 0x0, 0x0) renameat2(r1, &(0x7f0000000400)='./file0/file0\x00', r1, &(0x7f0000000000)='./file0\x00', 0x27b0) [ 220.760313][ T5] kernel read not supported for file root/syzkaller-testdir583426511/syzkaller.VVQl22/144 (pid: 5 comm: kworker/0:0) 21:38:00 executing program 0 (fault-call:0 fault-nth:3): syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x40000, 0x3, &(0x7f0000000200)=[{&(0x7f0000010000)="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", 0x10c, 0x400}, {&(0x7f0000010200)="0500000000000000000000000000000000000000040100002b", 0x19, 0x560}, {&(0x7f0000010300)="000000000000000000000000000000000000000000000000000000001481910a040000001400000024", 0x29, 0x7e0}], 0x0, &(0x7f0000000040)={[{@usrjquota='usrjquota='}, {@data_err_abort='data_err=abort'}]}) 21:38:00 executing program 1: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) r3 = syz_open_procfs(0x0, &(0x7f00000000c0)='fd/3\x00') mount$9p_fd(0xc000000, &(0x7f0000000300)='.\x00', &(0x7f0000000080)='9p\x00', 0x0, &(0x7f00000003c0)={'trans=fd,', {'rfdno', 0x3d, r3}, 0x2c, {'wfdno', 0x3d, r2}}) 21:38:00 executing program 3: set_mempolicy(0x8003, &(0x7f0000000300)=0x75f, 0x9) open(&(0x7f0000000300)='.\x00', 0x0, 0x0) r0 = syz_open_procfs(0x0, &(0x7f00000000c0)='fd/3\x00') r1 = syz_open_dev$swradio(&(0x7f0000000100)='/dev/swradio#\x00', 0x0, 0x2) mount$9p_fd(0xe000000, &(0x7f0000000300)='.\x00', &(0x7f0000000080)='9p\x00', 0x0, &(0x7f0000000740)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}}) 21:38:00 executing program 2: set_mempolicy(0x8003, &(0x7f0000000300)=0x75f, 0x9) r0 = open(&(0x7f0000000300)='.\x00', 0x0, 0x0) symlinkat(&(0x7f0000000040)='\x13\x13w\xc5\xfc5\xd4\x14T\xd5\xd4\x1d)\xad\x1a`)Y\x81F\xe6\xbe\x16nA\xad\r\xbd@T\x03<\x9f3\xbb\xda\x82$\xa2\xf3\xd7r\xe7cnH\xb3<\xbfp\x83r\xe8\xf1\xb9\x93>\xc5\x12wC\xbe\"\x06 \x9e\xf0-\xf9\xcb\xf2\xf6\xe8\x80\xd38/\x00', r0, &(0x7f00000000c0)='./file0\x00') mkdirat(r0, &(0x7f0000000200)='\x13\x13w\xc5\xfc5\xd4\x14T\xd5\xd4\x1d)\xad\x1a`)Y\x81F\xe6\xbe\x16nA\xad\r\xbd@T\x03<\x9f3\xbb\xda\x82$\xa2\xf3\xd7r\xe7cnH\xb3<\xbfp\x83r\xe8\xf1\xb9\x93>\xc5\x12wC\xbe\"\x06 \x9e\xf0-\xf9\xcb\xf2\xf6\xe8\x80\xd38/\x00', 0x0) symlinkat(&(0x7f0000000340)='./file0/file0\x00', r0, &(0x7f0000000380)='\x13\x13w\xc5\xfc5\xd4\x14T\xd5\xd4\x1d)\xad\x1a`)Y\x81F\xe6\xbe\x16nA\xad\r\xbd@T\x03<\x9f3\xbb\xda\x82$\xa2\xf3\xd7r\xe7cnH\xb3<\xbfp\x83r\xe8\xf1\xb9\x93>\xc5\x12wC\xbe\"\x06 \x9e\xf0-\xf9\xcb\xf2\xf6\xe8\x80\xd38//file0\x00') r1 = open(&(0x7f0000000100)='.\x00', 0x0, 0x0) renameat2(r1, &(0x7f0000000400)='./file0/file0\x00', r1, &(0x7f0000000000)='./file0\x00', 0x27e1) 21:38:00 executing program 4: set_mempolicy(0x8003, &(0x7f0000000300)=0x75f, 0x9) open(&(0x7f0000000300)='.\x00', 0x0, 0x0) r0 = syz_open_procfs(0x0, &(0x7f00000000c0)='fd/3\x00') r1 = syz_open_dev$swradio(&(0x7f0000000100)='/dev/swradio#\x00', 0x0, 0x2) mount$9p_fd(0x1000002, &(0x7f0000000300)='.\x00', &(0x7f0000000080)='9p\x00', 0x0, &(0x7f0000000740)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}}) [ 220.835078][ T3648] kernel read not supported for file root/syzkaller-testdir583426511/syzkaller.VVQl22/144 (pid: 3648 comm: kworker/1:2) 21:38:00 executing program 5: set_mempolicy(0x8003, &(0x7f0000000300)=0x75f, 0x9) open(&(0x7f0000000300)='.\x00', 0x0, 0x0) r0 = syz_open_procfs(0x0, &(0x7f00000000c0)='fd/3\x00') r1 = syz_open_dev$swradio(&(0x7f0000000100)='/dev/swradio#\x00', 0x0, 0x2) mount$9p_fd(0xffff0000, &(0x7f0000000300)='.\x00', &(0x7f0000000080)='9p\x00', 0x0, &(0x7f0000000740)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}}) 21:38:00 executing program 2: set_mempolicy(0x8003, &(0x7f0000000300)=0x75f, 0x9) r0 = open(&(0x7f0000000300)='.\x00', 0x0, 0x0) symlinkat(&(0x7f0000000040)='\x13\x13w\xc5\xfc5\xd4\x14T\xd5\xd4\x1d)\xad\x1a`)Y\x81F\xe6\xbe\x16nA\xad\r\xbd@T\x03<\x9f3\xbb\xda\x82$\xa2\xf3\xd7r\xe7cnH\xb3<\xbfp\x83r\xe8\xf1\xb9\x93>\xc5\x12wC\xbe\"\x06 \x9e\xf0-\xf9\xcb\xf2\xf6\xe8\x80\xd38/\x00', r0, &(0x7f00000000c0)='./file0\x00') mkdirat(r0, &(0x7f0000000200)='\x13\x13w\xc5\xfc5\xd4\x14T\xd5\xd4\x1d)\xad\x1a`)Y\x81F\xe6\xbe\x16nA\xad\r\xbd@T\x03<\x9f3\xbb\xda\x82$\xa2\xf3\xd7r\xe7cnH\xb3<\xbfp\x83r\xe8\xf1\xb9\x93>\xc5\x12wC\xbe\"\x06 \x9e\xf0-\xf9\xcb\xf2\xf6\xe8\x80\xd38/\x00', 0x0) symlinkat(&(0x7f0000000340)='./file0/file0\x00', r0, &(0x7f0000000380)='\x13\x13w\xc5\xfc5\xd4\x14T\xd5\xd4\x1d)\xad\x1a`)Y\x81F\xe6\xbe\x16nA\xad\r\xbd@T\x03<\x9f3\xbb\xda\x82$\xa2\xf3\xd7r\xe7cnH\xb3<\xbfp\x83r\xe8\xf1\xb9\x93>\xc5\x12wC\xbe\"\x06 \x9e\xf0-\xf9\xcb\xf2\xf6\xe8\x80\xd38//file0\x00') r1 = open(&(0x7f0000000100)='.\x00', 0x0, 0x0) renameat2(r1, &(0x7f0000000400)='./file0/file0\x00', r1, &(0x7f0000000000)='./file0\x00', 0x27e2) [ 220.928697][T13717] FAULT_INJECTION: forcing a failure. [ 220.928697][T13717] name failslab, interval 1, probability 0, space 0, times 0 [ 220.964606][ T3648] kernel read not supported for file root/syzkaller-testdir583426511/syzkaller.VVQl22/145 (pid: 3648 comm: kworker/1:2) [ 220.986199][T13717] CPU: 1 PID: 13717 Comm: syz-executor.0 Not tainted 5.11.0-syzkaller #0 [ 220.994647][T13717] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 221.004790][T13717] Call Trace: [ 221.008055][T13717] dump_stack+0x116/0x15d [ 221.012410][T13717] should_fail+0x23c/0x250 [ 221.016810][T13717] ? security_inode_alloc+0x30/0x180 [ 221.022076][T13717] __should_failslab+0x81/0x90 [ 221.026823][T13717] should_failslab+0x5/0x20 [ 221.031324][T13717] kmem_cache_alloc+0x36/0x2e0 [ 221.036124][T13717] security_inode_alloc+0x30/0x180 [ 221.041302][T13717] inode_init_always+0x211/0x430 [ 221.046226][T13717] ? shmem_match+0xa0/0xa0 [ 221.050641][T13717] new_inode_pseudo+0x6f/0x190 [ 221.055385][T13717] new_inode+0x21/0x100 [ 221.060166][T13717] shmem_get_inode+0xa1/0x440 [ 221.064900][T13717] __shmem_file_setup+0xf1/0x1d0 [ 221.069832][T13717] shmem_file_setup+0x37/0x40 [ 221.074501][T13717] __se_sys_memfd_create+0x1eb/0x390 [ 221.079804][T13717] __x64_sys_memfd_create+0x2d/0x40 [ 221.085011][T13717] do_syscall_64+0x39/0x80 [ 221.089519][T13717] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 221.095408][T13717] RIP: 0033:0x465d99 [ 221.099292][T13717] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 221.118879][T13717] RSP: 002b:00007f8175ef9f48 EFLAGS: 00000246 ORIG_RAX: 000000000000013f [ 221.127355][T13717] RAX: ffffffffffffffda RBX: 0000000020000200 RCX: 0000000000465d99 21:38:01 executing program 5: set_mempolicy(0x8003, &(0x7f0000000300)=0x75f, 0x9) open(&(0x7f0000000300)='.\x00', 0x0, 0x0) r0 = syz_open_procfs(0x0, &(0x7f00000000c0)='fd/3\x00') r1 = syz_open_dev$swradio(&(0x7f0000000100)='/dev/swradio#\x00', 0x0, 0x2) mount$9p_fd(0xfffffe00, &(0x7f0000000300)='.\x00', &(0x7f0000000080)='9p\x00', 0x0, &(0x7f0000000740)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}}) 21:38:01 executing program 3: set_mempolicy(0x8003, &(0x7f0000000300)=0x75f, 0x9) open(&(0x7f0000000300)='.\x00', 0x0, 0x0) r0 = syz_open_procfs(0x0, &(0x7f00000000c0)='fd/3\x00') r1 = syz_open_dev$swradio(&(0x7f0000000100)='/dev/swradio#\x00', 0x0, 0x2) mount$9p_fd(0x10000000, &(0x7f0000000300)='.\x00', &(0x7f0000000080)='9p\x00', 0x0, &(0x7f0000000740)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}}) [ 221.135315][T13717] RDX: 0000000000000fc0 RSI: 0000000000000000 RDI: 00000000004bbd4a [ 221.144321][T13717] RBP: 0000000000000003 R08: 00000000000007e0 R09: ffffffffffffffff [ 221.152274][T13717] R10: 0000000000000003 R11: 0000000000000246 R12: 0000000008100000 [ 221.160255][T13717] R13: 0000000020000100 R14: 0000000000040000 R15: 0000000020000040 21:38:01 executing program 2: set_mempolicy(0x8003, &(0x7f0000000300)=0x75f, 0x9) r0 = open(&(0x7f0000000300)='.\x00', 0x0, 0x0) symlinkat(&(0x7f0000000040)='\x13\x13w\xc5\xfc5\xd4\x14T\xd5\xd4\x1d)\xad\x1a`)Y\x81F\xe6\xbe\x16nA\xad\r\xbd@T\x03<\x9f3\xbb\xda\x82$\xa2\xf3\xd7r\xe7cnH\xb3<\xbfp\x83r\xe8\xf1\xb9\x93>\xc5\x12wC\xbe\"\x06 \x9e\xf0-\xf9\xcb\xf2\xf6\xe8\x80\xd38/\x00', r0, &(0x7f00000000c0)='./file0\x00') mkdirat(r0, &(0x7f0000000200)='\x13\x13w\xc5\xfc5\xd4\x14T\xd5\xd4\x1d)\xad\x1a`)Y\x81F\xe6\xbe\x16nA\xad\r\xbd@T\x03<\x9f3\xbb\xda\x82$\xa2\xf3\xd7r\xe7cnH\xb3<\xbfp\x83r\xe8\xf1\xb9\x93>\xc5\x12wC\xbe\"\x06 \x9e\xf0-\xf9\xcb\xf2\xf6\xe8\x80\xd38/\x00', 0x0) symlinkat(&(0x7f0000000340)='./file0/file0\x00', r0, &(0x7f0000000380)='\x13\x13w\xc5\xfc5\xd4\x14T\xd5\xd4\x1d)\xad\x1a`)Y\x81F\xe6\xbe\x16nA\xad\r\xbd@T\x03<\x9f3\xbb\xda\x82$\xa2\xf3\xd7r\xe7cnH\xb3<\xbfp\x83r\xe8\xf1\xb9\x93>\xc5\x12wC\xbe\"\x06 \x9e\xf0-\xf9\xcb\xf2\xf6\xe8\x80\xd38//file0\x00') r1 = open(&(0x7f0000000100)='.\x00', 0x0, 0x0) renameat2(r1, &(0x7f0000000400)='./file0/file0\x00', r1, &(0x7f0000000000)='./file0\x00', 0x2f00) 21:38:01 executing program 4: set_mempolicy(0x8003, &(0x7f0000000300)=0x75f, 0x9) open(&(0x7f0000000300)='.\x00', 0x0, 0x0) r0 = syz_open_procfs(0x0, &(0x7f00000000c0)='fd/3\x00') r1 = syz_open_dev$swradio(&(0x7f0000000100)='/dev/swradio#\x00', 0x0, 0x2) mount$9p_fd(0x2000000, &(0x7f0000000300)='.\x00', &(0x7f0000000080)='9p\x00', 0x0, &(0x7f0000000740)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}}) 21:38:01 executing program 1: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) r3 = syz_open_procfs(0x0, &(0x7f00000000c0)='fd/3\x00') mount$9p_fd(0xd000000, &(0x7f0000000300)='.\x00', &(0x7f0000000080)='9p\x00', 0x0, &(0x7f00000003c0)={'trans=fd,', {'rfdno', 0x3d, r3}, 0x2c, {'wfdno', 0x3d, r2}}) [ 221.237935][ T5] kernel read not supported for file root/syzkaller-testdir583426511/syzkaller.VVQl22/145 (pid: 5 comm: kworker/0:0) 21:38:01 executing program 0 (fault-call:0 fault-nth:4): syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x40000, 0x3, &(0x7f0000000200)=[{&(0x7f0000010000)="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", 0x10c, 0x400}, {&(0x7f0000010200)="0500000000000000000000000000000000000000040100002b", 0x19, 0x560}, {&(0x7f0000010300)="000000000000000000000000000000000000000000000000000000001481910a040000001400000024", 0x29, 0x7e0}], 0x0, &(0x7f0000000040)={[{@usrjquota='usrjquota='}, {@data_err_abort='data_err=abort'}]}) 21:38:01 executing program 2: set_mempolicy(0x8003, &(0x7f0000000300)=0x75f, 0x9) r0 = open(&(0x7f0000000300)='.\x00', 0x0, 0x0) symlinkat(&(0x7f0000000040)='\x13\x13w\xc5\xfc5\xd4\x14T\xd5\xd4\x1d)\xad\x1a`)Y\x81F\xe6\xbe\x16nA\xad\r\xbd@T\x03<\x9f3\xbb\xda\x82$\xa2\xf3\xd7r\xe7cnH\xb3<\xbfp\x83r\xe8\xf1\xb9\x93>\xc5\x12wC\xbe\"\x06 \x9e\xf0-\xf9\xcb\xf2\xf6\xe8\x80\xd38/\x00', r0, &(0x7f00000000c0)='./file0\x00') mkdirat(r0, &(0x7f0000000200)='\x13\x13w\xc5\xfc5\xd4\x14T\xd5\xd4\x1d)\xad\x1a`)Y\x81F\xe6\xbe\x16nA\xad\r\xbd@T\x03<\x9f3\xbb\xda\x82$\xa2\xf3\xd7r\xe7cnH\xb3<\xbfp\x83r\xe8\xf1\xb9\x93>\xc5\x12wC\xbe\"\x06 \x9e\xf0-\xf9\xcb\xf2\xf6\xe8\x80\xd38/\x00', 0x0) symlinkat(&(0x7f0000000340)='./file0/file0\x00', r0, &(0x7f0000000380)='\x13\x13w\xc5\xfc5\xd4\x14T\xd5\xd4\x1d)\xad\x1a`)Y\x81F\xe6\xbe\x16nA\xad\r\xbd@T\x03<\x9f3\xbb\xda\x82$\xa2\xf3\xd7r\xe7cnH\xb3<\xbfp\x83r\xe8\xf1\xb9\x93>\xc5\x12wC\xbe\"\x06 \x9e\xf0-\xf9\xcb\xf2\xf6\xe8\x80\xd38//file0\x00') r1 = open(&(0x7f0000000100)='.\x00', 0x0, 0x0) renameat2(r1, &(0x7f0000000400)='./file0/file0\x00', r1, &(0x7f0000000000)='./file0\x00', 0x3f00) 21:38:01 executing program 3: set_mempolicy(0x8003, &(0x7f0000000300)=0x75f, 0x9) open(&(0x7f0000000300)='.\x00', 0x0, 0x0) r0 = syz_open_procfs(0x0, &(0x7f00000000c0)='fd/3\x00') r1 = syz_open_dev$swradio(&(0x7f0000000100)='/dev/swradio#\x00', 0x0, 0x2) mount$9p_fd(0x11000000, &(0x7f0000000300)='.\x00', &(0x7f0000000080)='9p\x00', 0x0, &(0x7f0000000740)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}}) 21:38:01 executing program 5: set_mempolicy(0x8003, &(0x7f0000000300)=0x75f, 0x9) open(&(0x7f0000000300)='.\x00', 0x0, 0x0) r0 = syz_open_procfs(0x0, &(0x7f00000000c0)='fd/3\x00') r1 = syz_open_dev$swradio(&(0x7f0000000100)='/dev/swradio#\x00', 0x0, 0x2) mount$9p_fd(0xffffff8c, &(0x7f0000000300)='.\x00', &(0x7f0000000080)='9p\x00', 0x0, &(0x7f0000000740)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}}) 21:38:01 executing program 2: set_mempolicy(0x8003, &(0x7f0000000300)=0x75f, 0x9) r0 = open(&(0x7f0000000300)='.\x00', 0x0, 0x0) symlinkat(&(0x7f0000000040)='\x13\x13w\xc5\xfc5\xd4\x14T\xd5\xd4\x1d)\xad\x1a`)Y\x81F\xe6\xbe\x16nA\xad\r\xbd@T\x03<\x9f3\xbb\xda\x82$\xa2\xf3\xd7r\xe7cnH\xb3<\xbfp\x83r\xe8\xf1\xb9\x93>\xc5\x12wC\xbe\"\x06 \x9e\xf0-\xf9\xcb\xf2\xf6\xe8\x80\xd38/\x00', r0, &(0x7f00000000c0)='./file0\x00') mkdirat(r0, &(0x7f0000000200)='\x13\x13w\xc5\xfc5\xd4\x14T\xd5\xd4\x1d)\xad\x1a`)Y\x81F\xe6\xbe\x16nA\xad\r\xbd@T\x03<\x9f3\xbb\xda\x82$\xa2\xf3\xd7r\xe7cnH\xb3<\xbfp\x83r\xe8\xf1\xb9\x93>\xc5\x12wC\xbe\"\x06 \x9e\xf0-\xf9\xcb\xf2\xf6\xe8\x80\xd38/\x00', 0x0) symlinkat(&(0x7f0000000340)='./file0/file0\x00', r0, &(0x7f0000000380)='\x13\x13w\xc5\xfc5\xd4\x14T\xd5\xd4\x1d)\xad\x1a`)Y\x81F\xe6\xbe\x16nA\xad\r\xbd@T\x03<\x9f3\xbb\xda\x82$\xa2\xf3\xd7r\xe7cnH\xb3<\xbfp\x83r\xe8\xf1\xb9\x93>\xc5\x12wC\xbe\"\x06 \x9e\xf0-\xf9\xcb\xf2\xf6\xe8\x80\xd38//file0\x00') r1 = open(&(0x7f0000000100)='.\x00', 0x0, 0x0) renameat2(r1, &(0x7f0000000400)='./file0/file0\x00', r1, &(0x7f0000000000)='./file0\x00', 0x4000) 21:38:01 executing program 4: set_mempolicy(0x8003, &(0x7f0000000300)=0x75f, 0x9) open(&(0x7f0000000300)='.\x00', 0x0, 0x0) r0 = syz_open_procfs(0x0, &(0x7f00000000c0)='fd/3\x00') r1 = syz_open_dev$swradio(&(0x7f0000000100)='/dev/swradio#\x00', 0x0, 0x2) mount$9p_fd(0x2000001, &(0x7f0000000300)='.\x00', &(0x7f0000000080)='9p\x00', 0x0, &(0x7f0000000740)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}}) 21:38:01 executing program 2: set_mempolicy(0x8003, &(0x7f0000000300)=0x75f, 0x9) r0 = open(&(0x7f0000000300)='.\x00', 0x0, 0x0) symlinkat(&(0x7f0000000040)='\x13\x13w\xc5\xfc5\xd4\x14T\xd5\xd4\x1d)\xad\x1a`)Y\x81F\xe6\xbe\x16nA\xad\r\xbd@T\x03<\x9f3\xbb\xda\x82$\xa2\xf3\xd7r\xe7cnH\xb3<\xbfp\x83r\xe8\xf1\xb9\x93>\xc5\x12wC\xbe\"\x06 \x9e\xf0-\xf9\xcb\xf2\xf6\xe8\x80\xd38/\x00', r0, &(0x7f00000000c0)='./file0\x00') mkdirat(r0, &(0x7f0000000200)='\x13\x13w\xc5\xfc5\xd4\x14T\xd5\xd4\x1d)\xad\x1a`)Y\x81F\xe6\xbe\x16nA\xad\r\xbd@T\x03<\x9f3\xbb\xda\x82$\xa2\xf3\xd7r\xe7cnH\xb3<\xbfp\x83r\xe8\xf1\xb9\x93>\xc5\x12wC\xbe\"\x06 \x9e\xf0-\xf9\xcb\xf2\xf6\xe8\x80\xd38/\x00', 0x0) symlinkat(&(0x7f0000000340)='./file0/file0\x00', r0, &(0x7f0000000380)='\x13\x13w\xc5\xfc5\xd4\x14T\xd5\xd4\x1d)\xad\x1a`)Y\x81F\xe6\xbe\x16nA\xad\r\xbd@T\x03<\x9f3\xbb\xda\x82$\xa2\xf3\xd7r\xe7cnH\xb3<\xbfp\x83r\xe8\xf1\xb9\x93>\xc5\x12wC\xbe\"\x06 \x9e\xf0-\xf9\xcb\xf2\xf6\xe8\x80\xd38//file0\x00') r1 = open(&(0x7f0000000100)='.\x00', 0x0, 0x0) renameat2(r1, &(0x7f0000000400)='./file0/file0\x00', r1, &(0x7f0000000000)='./file0\x00', 0x4d00) 21:38:01 executing program 3: set_mempolicy(0x8003, &(0x7f0000000300)=0x75f, 0x9) open(&(0x7f0000000300)='.\x00', 0x0, 0x0) r0 = syz_open_procfs(0x0, &(0x7f00000000c0)='fd/3\x00') r1 = syz_open_dev$swradio(&(0x7f0000000100)='/dev/swradio#\x00', 0x0, 0x2) mount$9p_fd(0x12000000, &(0x7f0000000300)='.\x00', &(0x7f0000000080)='9p\x00', 0x0, &(0x7f0000000740)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}}) [ 221.392835][T13766] FAULT_INJECTION: forcing a failure. [ 221.392835][T13766] name failslab, interval 1, probability 0, space 0, times 0 21:38:01 executing program 1: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) r3 = syz_open_procfs(0x0, &(0x7f00000000c0)='fd/3\x00') mount$9p_fd(0xe000000, &(0x7f0000000300)='.\x00', &(0x7f0000000080)='9p\x00', 0x0, &(0x7f00000003c0)={'trans=fd,', {'rfdno', 0x3d, r3}, 0x2c, {'wfdno', 0x3d, r2}}) [ 221.466440][T13766] CPU: 1 PID: 13766 Comm: syz-executor.0 Not tainted 5.11.0-syzkaller #0 [ 221.474902][T13766] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 221.485134][T13766] Call Trace: [ 221.488410][T13766] dump_stack+0x116/0x15d [ 221.493024][T13766] should_fail+0x23c/0x250 [ 221.497449][T13766] ? __d_alloc+0x36/0x370 [ 221.501763][T13766] __should_failslab+0x81/0x90 [ 221.506518][T13766] should_failslab+0x5/0x20 [ 221.511080][T13766] kmem_cache_alloc+0x36/0x2e0 [ 221.515837][T13766] ? __init_rwsem+0x59/0x70 [ 221.520340][T13766] __d_alloc+0x36/0x370 [ 221.524478][T13766] ? current_time+0xdb/0x190 [ 221.529052][T13766] d_alloc_pseudo+0x1a/0x50 [ 221.533535][T13766] alloc_file_pseudo+0x63/0x130 [ 221.538369][T13766] __shmem_file_setup+0x14c/0x1d0 [ 221.543380][T13766] shmem_file_setup+0x37/0x40 [ 221.548119][T13766] __se_sys_memfd_create+0x1eb/0x390 [ 221.553559][T13766] __x64_sys_memfd_create+0x2d/0x40 [ 221.558739][T13766] do_syscall_64+0x39/0x80 [ 221.563142][T13766] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 221.569328][T13766] RIP: 0033:0x465d99 [ 221.573199][T13766] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 221.592947][T13766] RSP: 002b:00007f8175ef9f48 EFLAGS: 00000246 ORIG_RAX: 000000000000013f [ 221.601350][T13766] RAX: ffffffffffffffda RBX: 0000000020000200 RCX: 0000000000465d99 [ 221.609301][T13766] RDX: 0000000000000fc0 RSI: 0000000000000000 RDI: 00000000004bbd4a 21:38:01 executing program 5: set_mempolicy(0x8003, &(0x7f0000000300)=0x75f, 0x9) open(&(0x7f0000000300)='.\x00', 0x0, 0x0) r0 = syz_open_procfs(0x0, &(0x7f00000000c0)='fd/3\x00') r1 = syz_open_dev$swradio(&(0x7f0000000100)='/dev/swradio#\x00', 0x0, 0x2) mount$9p_fd(0xfffffff6, &(0x7f0000000300)='.\x00', &(0x7f0000000080)='9p\x00', 0x0, &(0x7f0000000740)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}}) [ 221.617250][T13766] RBP: 0000000000000003 R08: 00000000000007e0 R09: ffffffffffffffff [ 221.625633][T13766] R10: 0000000000000003 R11: 0000000000000246 R12: 0000000008100000 [ 221.633583][T13766] R13: 0000000020000100 R14: 0000000000040000 R15: 0000000020000040 21:38:01 executing program 3: set_mempolicy(0x8003, &(0x7f0000000300)=0x75f, 0x9) open(&(0x7f0000000300)='.\x00', 0x0, 0x0) r0 = syz_open_procfs(0x0, &(0x7f00000000c0)='fd/3\x00') r1 = syz_open_dev$swradio(&(0x7f0000000100)='/dev/swradio#\x00', 0x0, 0x2) mount$9p_fd(0x20100000, &(0x7f0000000300)='.\x00', &(0x7f0000000080)='9p\x00', 0x0, &(0x7f0000000740)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}}) 21:38:01 executing program 2: set_mempolicy(0x8003, &(0x7f0000000300)=0x75f, 0x9) r0 = open(&(0x7f0000000300)='.\x00', 0x0, 0x0) symlinkat(&(0x7f0000000040)='\x13\x13w\xc5\xfc5\xd4\x14T\xd5\xd4\x1d)\xad\x1a`)Y\x81F\xe6\xbe\x16nA\xad\r\xbd@T\x03<\x9f3\xbb\xda\x82$\xa2\xf3\xd7r\xe7cnH\xb3<\xbfp\x83r\xe8\xf1\xb9\x93>\xc5\x12wC\xbe\"\x06 \x9e\xf0-\xf9\xcb\xf2\xf6\xe8\x80\xd38/\x00', r0, &(0x7f00000000c0)='./file0\x00') mkdirat(r0, &(0x7f0000000200)='\x13\x13w\xc5\xfc5\xd4\x14T\xd5\xd4\x1d)\xad\x1a`)Y\x81F\xe6\xbe\x16nA\xad\r\xbd@T\x03<\x9f3\xbb\xda\x82$\xa2\xf3\xd7r\xe7cnH\xb3<\xbfp\x83r\xe8\xf1\xb9\x93>\xc5\x12wC\xbe\"\x06 \x9e\xf0-\xf9\xcb\xf2\xf6\xe8\x80\xd38/\x00', 0x0) symlinkat(&(0x7f0000000340)='./file0/file0\x00', r0, &(0x7f0000000380)='\x13\x13w\xc5\xfc5\xd4\x14T\xd5\xd4\x1d)\xad\x1a`)Y\x81F\xe6\xbe\x16nA\xad\r\xbd@T\x03<\x9f3\xbb\xda\x82$\xa2\xf3\xd7r\xe7cnH\xb3<\xbfp\x83r\xe8\xf1\xb9\x93>\xc5\x12wC\xbe\"\x06 \x9e\xf0-\xf9\xcb\xf2\xf6\xe8\x80\xd38//file0\x00') r1 = open(&(0x7f0000000100)='.\x00', 0x0, 0x0) renameat2(r1, &(0x7f0000000400)='./file0/file0\x00', r1, &(0x7f0000000000)='./file0\x00', 0x5c00) 21:38:01 executing program 0 (fault-call:0 fault-nth:5): syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x40000, 0x3, &(0x7f0000000200)=[{&(0x7f0000010000)="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", 0x10c, 0x400}, {&(0x7f0000010200)="0500000000000000000000000000000000000000040100002b", 0x19, 0x560}, {&(0x7f0000010300)="000000000000000000000000000000000000000000000000000000001481910a040000001400000024", 0x29, 0x7e0}], 0x0, &(0x7f0000000040)={[{@usrjquota='usrjquota='}, {@data_err_abort='data_err=abort'}]}) 21:38:01 executing program 4: set_mempolicy(0x8003, &(0x7f0000000300)=0x75f, 0x9) open(&(0x7f0000000300)='.\x00', 0x0, 0x0) r0 = syz_open_procfs(0x0, &(0x7f00000000c0)='fd/3\x00') r1 = syz_open_dev$swradio(&(0x7f0000000100)='/dev/swradio#\x00', 0x0, 0x2) mount$9p_fd(0x3000000, &(0x7f0000000300)='.\x00', &(0x7f0000000080)='9p\x00', 0x0, &(0x7f0000000740)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}}) 21:38:01 executing program 4: set_mempolicy(0x8003, &(0x7f0000000300)=0x75f, 0x9) open(&(0x7f0000000300)='.\x00', 0x0, 0x0) r0 = syz_open_procfs(0x0, &(0x7f00000000c0)='fd/3\x00') r1 = syz_open_dev$swradio(&(0x7f0000000100)='/dev/swradio#\x00', 0x0, 0x2) mount$9p_fd(0x4000000, &(0x7f0000000300)='.\x00', &(0x7f0000000080)='9p\x00', 0x0, &(0x7f0000000740)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}}) 21:38:01 executing program 5: set_mempolicy(0x8003, &(0x7f0000000300)=0x75f, 0x9) open(&(0x7f0000000300)='.\x00', 0x0, 0x0) r0 = syz_open_procfs(0x0, &(0x7f00000000c0)='fd/3\x00') r1 = syz_open_dev$swradio(&(0x7f0000000100)='/dev/swradio#\x00', 0x0, 0x2) mount$9p_fd(0xfffffffe, &(0x7f0000000300)='.\x00', &(0x7f0000000080)='9p\x00', 0x0, &(0x7f0000000740)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}}) 21:38:01 executing program 1: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) r3 = syz_open_procfs(0x0, &(0x7f00000000c0)='fd/3\x00') mount$9p_fd(0x10000000, &(0x7f0000000300)='.\x00', &(0x7f0000000080)='9p\x00', 0x0, &(0x7f00000003c0)={'trans=fd,', {'rfdno', 0x3d, r3}, 0x2c, {'wfdno', 0x3d, r2}}) 21:38:01 executing program 2: set_mempolicy(0x8003, &(0x7f0000000300)=0x75f, 0x9) r0 = open(&(0x7f0000000300)='.\x00', 0x0, 0x0) symlinkat(&(0x7f0000000040)='\x13\x13w\xc5\xfc5\xd4\x14T\xd5\xd4\x1d)\xad\x1a`)Y\x81F\xe6\xbe\x16nA\xad\r\xbd@T\x03<\x9f3\xbb\xda\x82$\xa2\xf3\xd7r\xe7cnH\xb3<\xbfp\x83r\xe8\xf1\xb9\x93>\xc5\x12wC\xbe\"\x06 \x9e\xf0-\xf9\xcb\xf2\xf6\xe8\x80\xd38/\x00', r0, &(0x7f00000000c0)='./file0\x00') mkdirat(r0, &(0x7f0000000200)='\x13\x13w\xc5\xfc5\xd4\x14T\xd5\xd4\x1d)\xad\x1a`)Y\x81F\xe6\xbe\x16nA\xad\r\xbd@T\x03<\x9f3\xbb\xda\x82$\xa2\xf3\xd7r\xe7cnH\xb3<\xbfp\x83r\xe8\xf1\xb9\x93>\xc5\x12wC\xbe\"\x06 \x9e\xf0-\xf9\xcb\xf2\xf6\xe8\x80\xd38/\x00', 0x0) symlinkat(&(0x7f0000000340)='./file0/file0\x00', r0, &(0x7f0000000380)='\x13\x13w\xc5\xfc5\xd4\x14T\xd5\xd4\x1d)\xad\x1a`)Y\x81F\xe6\xbe\x16nA\xad\r\xbd@T\x03<\x9f3\xbb\xda\x82$\xa2\xf3\xd7r\xe7cnH\xb3<\xbfp\x83r\xe8\xf1\xb9\x93>\xc5\x12wC\xbe\"\x06 \x9e\xf0-\xf9\xcb\xf2\xf6\xe8\x80\xd38//file0\x00') r1 = open(&(0x7f0000000100)='.\x00', 0x0, 0x0) renameat2(r1, &(0x7f0000000400)='./file0/file0\x00', r1, &(0x7f0000000000)='./file0\x00', 0xb027) 21:38:01 executing program 4: set_mempolicy(0x8003, &(0x7f0000000300)=0x75f, 0x9) open(&(0x7f0000000300)='.\x00', 0x0, 0x0) r0 = syz_open_procfs(0x0, &(0x7f00000000c0)='fd/3\x00') r1 = syz_open_dev$swradio(&(0x7f0000000100)='/dev/swradio#\x00', 0x0, 0x2) mount$9p_fd(0x5000000, &(0x7f0000000300)='.\x00', &(0x7f0000000080)='9p\x00', 0x0, &(0x7f0000000740)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}}) [ 221.770367][ T9777] kernel read not supported for file root/syzkaller-testdir496628174/syzkaller.h9GlBV/154 (pid: 9777 comm: kworker/0:5) [ 221.791286][T13808] FAULT_INJECTION: forcing a failure. [ 221.791286][T13808] name failslab, interval 1, probability 0, space 0, times 0 21:38:01 executing program 2: set_mempolicy(0x8003, &(0x7f0000000300)=0x75f, 0x9) r0 = open(&(0x7f0000000300)='.\x00', 0x0, 0x0) symlinkat(&(0x7f0000000040)='\x13\x13w\xc5\xfc5\xd4\x14T\xd5\xd4\x1d)\xad\x1a`)Y\x81F\xe6\xbe\x16nA\xad\r\xbd@T\x03<\x9f3\xbb\xda\x82$\xa2\xf3\xd7r\xe7cnH\xb3<\xbfp\x83r\xe8\xf1\xb9\x93>\xc5\x12wC\xbe\"\x06 \x9e\xf0-\xf9\xcb\xf2\xf6\xe8\x80\xd38/\x00', r0, &(0x7f00000000c0)='./file0\x00') mkdirat(r0, &(0x7f0000000200)='\x13\x13w\xc5\xfc5\xd4\x14T\xd5\xd4\x1d)\xad\x1a`)Y\x81F\xe6\xbe\x16nA\xad\r\xbd@T\x03<\x9f3\xbb\xda\x82$\xa2\xf3\xd7r\xe7cnH\xb3<\xbfp\x83r\xe8\xf1\xb9\x93>\xc5\x12wC\xbe\"\x06 \x9e\xf0-\xf9\xcb\xf2\xf6\xe8\x80\xd38/\x00', 0x0) symlinkat(&(0x7f0000000340)='./file0/file0\x00', r0, &(0x7f0000000380)='\x13\x13w\xc5\xfc5\xd4\x14T\xd5\xd4\x1d)\xad\x1a`)Y\x81F\xe6\xbe\x16nA\xad\r\xbd@T\x03<\x9f3\xbb\xda\x82$\xa2\xf3\xd7r\xe7cnH\xb3<\xbfp\x83r\xe8\xf1\xb9\x93>\xc5\x12wC\xbe\"\x06 \x9e\xf0-\xf9\xcb\xf2\xf6\xe8\x80\xd38//file0\x00') r1 = open(&(0x7f0000000100)='.\x00', 0x0, 0x0) renameat2(r1, &(0x7f0000000400)='./file0/file0\x00', r1, &(0x7f0000000000)='./file0\x00', 0xe127) [ 221.865797][ T9777] kernel read not supported for file root/syzkaller-testdir496628174/syzkaller.h9GlBV/154 (pid: 9777 comm: kworker/0:5) [ 221.887068][T13808] CPU: 0 PID: 13808 Comm: syz-executor.0 Not tainted 5.11.0-syzkaller #0 [ 221.895535][T13808] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 221.905709][T13808] Call Trace: [ 221.908988][T13808] dump_stack+0x116/0x15d [ 221.913380][T13808] should_fail+0x23c/0x250 [ 221.917803][T13808] ? __alloc_file+0x2e/0x1a0 [ 221.922390][T13808] __should_failslab+0x81/0x90 [ 221.927149][T13808] should_failslab+0x5/0x20 [ 221.931662][T13808] kmem_cache_alloc+0x36/0x2e0 [ 221.936428][T13808] ? __d_alloc+0x36/0x370 [ 221.940766][T13808] __alloc_file+0x2e/0x1a0 [ 221.945279][T13808] alloc_empty_file+0xcd/0x1c0 [ 221.950044][T13808] alloc_file+0x3a/0x280 [ 221.954280][T13808] alloc_file_pseudo+0xe2/0x130 [ 221.959239][T13808] __shmem_file_setup+0x14c/0x1d0 21:38:01 executing program 4: set_mempolicy(0x8003, &(0x7f0000000300)=0x75f, 0x9) open(&(0x7f0000000300)='.\x00', 0x0, 0x0) r0 = syz_open_procfs(0x0, &(0x7f00000000c0)='fd/3\x00') r1 = syz_open_dev$swradio(&(0x7f0000000100)='/dev/swradio#\x00', 0x0, 0x2) mount$9p_fd(0x6000000, &(0x7f0000000300)='.\x00', &(0x7f0000000080)='9p\x00', 0x0, &(0x7f0000000740)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}}) 21:38:01 executing program 2: set_mempolicy(0x8003, &(0x7f0000000300)=0x75f, 0x9) r0 = open(&(0x7f0000000300)='.\x00', 0x0, 0x0) symlinkat(&(0x7f0000000040)='\x13\x13w\xc5\xfc5\xd4\x14T\xd5\xd4\x1d)\xad\x1a`)Y\x81F\xe6\xbe\x16nA\xad\r\xbd@T\x03<\x9f3\xbb\xda\x82$\xa2\xf3\xd7r\xe7cnH\xb3<\xbfp\x83r\xe8\xf1\xb9\x93>\xc5\x12wC\xbe\"\x06 \x9e\xf0-\xf9\xcb\xf2\xf6\xe8\x80\xd38/\x00', r0, &(0x7f00000000c0)='./file0\x00') mkdirat(r0, &(0x7f0000000200)='\x13\x13w\xc5\xfc5\xd4\x14T\xd5\xd4\x1d)\xad\x1a`)Y\x81F\xe6\xbe\x16nA\xad\r\xbd@T\x03<\x9f3\xbb\xda\x82$\xa2\xf3\xd7r\xe7cnH\xb3<\xbfp\x83r\xe8\xf1\xb9\x93>\xc5\x12wC\xbe\"\x06 \x9e\xf0-\xf9\xcb\xf2\xf6\xe8\x80\xd38/\x00', 0x0) symlinkat(&(0x7f0000000340)='./file0/file0\x00', r0, &(0x7f0000000380)='\x13\x13w\xc5\xfc5\xd4\x14T\xd5\xd4\x1d)\xad\x1a`)Y\x81F\xe6\xbe\x16nA\xad\r\xbd@T\x03<\x9f3\xbb\xda\x82$\xa2\xf3\xd7r\xe7cnH\xb3<\xbfp\x83r\xe8\xf1\xb9\x93>\xc5\x12wC\xbe\"\x06 \x9e\xf0-\xf9\xcb\xf2\xf6\xe8\x80\xd38//file0\x00') r1 = open(&(0x7f0000000100)='.\x00', 0x0, 0x0) renameat2(r1, &(0x7f0000000400)='./file0/file0\x00', r1, &(0x7f0000000000)='./file0\x00', 0xe227) [ 221.964254][T13808] shmem_file_setup+0x37/0x40 [ 221.969097][T13808] __se_sys_memfd_create+0x1eb/0x390 [ 221.974376][T13808] __x64_sys_memfd_create+0x2d/0x40 [ 221.979571][T13808] do_syscall_64+0x39/0x80 [ 221.983987][T13808] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 221.989915][T13808] RIP: 0033:0x465d99 [ 221.993800][T13808] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 222.013407][T13808] RSP: 002b:00007f8175ef9f48 EFLAGS: 00000246 ORIG_RAX: 000000000000013f [ 222.021815][T13808] RAX: ffffffffffffffda RBX: 0000000020000200 RCX: 0000000000465d99 [ 222.029807][T13808] RDX: 0000000000000fc0 RSI: 0000000000000000 RDI: 00000000004bbd4a [ 222.037770][T13808] RBP: 0000000000000003 R08: 00000000000007e0 R09: ffffffffffffffff [ 222.045736][T13808] R10: 0000000000000003 R11: 0000000000000246 R12: 0000000008100000 [ 222.053735][T13808] R13: 0000000020000100 R14: 0000000000040000 R15: 0000000020000040 21:38:02 executing program 3: set_mempolicy(0x8003, &(0x7f0000000300)=0x75f, 0x9) open(&(0x7f0000000300)='.\x00', 0x0, 0x0) r0 = syz_open_procfs(0x0, &(0x7f00000000c0)='fd/3\x00') r1 = syz_open_dev$swradio(&(0x7f0000000100)='/dev/swradio#\x00', 0x0, 0x2) mount$9p_fd(0x25000000, &(0x7f0000000300)='.\x00', &(0x7f0000000080)='9p\x00', 0x0, &(0x7f0000000740)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}}) 21:38:02 executing program 5: set_mempolicy(0x8003, &(0x7f0000000300)=0x75f, 0x9) open(&(0x7f0000000300)='.\x00', 0x0, 0x0) r0 = syz_open_procfs(0x0, &(0x7f00000000c0)='fd/3\x00') r1 = syz_open_dev$swradio(&(0x7f0000000100)='/dev/swradio#\x00', 0x0, 0x2) mount$9p_fd(0x8000000000, &(0x7f0000000300)='.\x00', &(0x7f0000000080)='9p\x00', 0x0, &(0x7f0000000740)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}}) 21:38:02 executing program 0 (fault-call:0 fault-nth:6): syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x40000, 0x3, &(0x7f0000000200)=[{&(0x7f0000010000)="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", 0x10c, 0x400}, {&(0x7f0000010200)="0500000000000000000000000000000000000000040100002b", 0x19, 0x560}, {&(0x7f0000010300)="000000000000000000000000000000000000000000000000000000001481910a040000001400000024", 0x29, 0x7e0}], 0x0, &(0x7f0000000040)={[{@usrjquota='usrjquota='}, {@data_err_abort='data_err=abort'}]}) 21:38:02 executing program 4: set_mempolicy(0x8003, &(0x7f0000000300)=0x75f, 0x9) open(&(0x7f0000000300)='.\x00', 0x0, 0x0) r0 = syz_open_procfs(0x0, &(0x7f00000000c0)='fd/3\x00') r1 = syz_open_dev$swradio(&(0x7f0000000100)='/dev/swradio#\x00', 0x0, 0x2) mount$9p_fd(0x7000000, &(0x7f0000000300)='.\x00', &(0x7f0000000080)='9p\x00', 0x0, &(0x7f0000000740)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}}) 21:38:02 executing program 2: set_mempolicy(0x8003, &(0x7f0000000300)=0x75f, 0x9) r0 = open(&(0x7f0000000300)='.\x00', 0x0, 0x0) symlinkat(&(0x7f0000000040)='\x13\x13w\xc5\xfc5\xd4\x14T\xd5\xd4\x1d)\xad\x1a`)Y\x81F\xe6\xbe\x16nA\xad\r\xbd@T\x03<\x9f3\xbb\xda\x82$\xa2\xf3\xd7r\xe7cnH\xb3<\xbfp\x83r\xe8\xf1\xb9\x93>\xc5\x12wC\xbe\"\x06 \x9e\xf0-\xf9\xcb\xf2\xf6\xe8\x80\xd38/\x00', r0, &(0x7f00000000c0)='./file0\x00') mkdirat(r0, &(0x7f0000000200)='\x13\x13w\xc5\xfc5\xd4\x14T\xd5\xd4\x1d)\xad\x1a`)Y\x81F\xe6\xbe\x16nA\xad\r\xbd@T\x03<\x9f3\xbb\xda\x82$\xa2\xf3\xd7r\xe7cnH\xb3<\xbfp\x83r\xe8\xf1\xb9\x93>\xc5\x12wC\xbe\"\x06 \x9e\xf0-\xf9\xcb\xf2\xf6\xe8\x80\xd38/\x00', 0x0) symlinkat(&(0x7f0000000340)='./file0/file0\x00', r0, &(0x7f0000000380)='\x13\x13w\xc5\xfc5\xd4\x14T\xd5\xd4\x1d)\xad\x1a`)Y\x81F\xe6\xbe\x16nA\xad\r\xbd@T\x03<\x9f3\xbb\xda\x82$\xa2\xf3\xd7r\xe7cnH\xb3<\xbfp\x83r\xe8\xf1\xb9\x93>\xc5\x12wC\xbe\"\x06 \x9e\xf0-\xf9\xcb\xf2\xf6\xe8\x80\xd38//file0\x00') r1 = open(&(0x7f0000000100)='.\x00', 0x0, 0x0) renameat2(r1, &(0x7f0000000400)='./file0/file0\x00', r1, &(0x7f0000000000)='./file0\x00', 0xff00) 21:38:02 executing program 1: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) r3 = syz_open_procfs(0x0, &(0x7f00000000c0)='fd/3\x00') mount$9p_fd(0x11000000, &(0x7f0000000300)='.\x00', &(0x7f0000000080)='9p\x00', 0x0, &(0x7f00000003c0)={'trans=fd,', {'rfdno', 0x3d, r3}, 0x2c, {'wfdno', 0x3d, r2}}) 21:38:02 executing program 5: set_mempolicy(0x8003, &(0x7f0000000300)=0x75f, 0x9) open(&(0x7f0000000300)='.\x00', 0x0, 0x0) r0 = syz_open_procfs(0x0, &(0x7f00000000c0)='fd/3\x00') r1 = syz_open_dev$swradio(&(0x7f0000000100)='/dev/swradio#\x00', 0x0, 0x2) mount$9p_fd(0xedc000000000, &(0x7f0000000300)='.\x00', &(0x7f0000000080)='9p\x00', 0x0, &(0x7f0000000740)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}}) 21:38:02 executing program 3: set_mempolicy(0x8003, &(0x7f0000000300)=0x75f, 0x9) open(&(0x7f0000000300)='.\x00', 0x0, 0x0) r0 = syz_open_procfs(0x0, &(0x7f00000000c0)='fd/3\x00') r1 = syz_open_dev$swradio(&(0x7f0000000100)='/dev/swradio#\x00', 0x0, 0x2) mount$9p_fd(0x40000000, &(0x7f0000000300)='.\x00', &(0x7f0000000080)='9p\x00', 0x0, &(0x7f0000000740)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}}) 21:38:02 executing program 4: set_mempolicy(0x8003, &(0x7f0000000300)=0x75f, 0x9) open(&(0x7f0000000300)='.\x00', 0x0, 0x0) r0 = syz_open_procfs(0x0, &(0x7f00000000c0)='fd/3\x00') r1 = syz_open_dev$swradio(&(0x7f0000000100)='/dev/swradio#\x00', 0x0, 0x2) mount$9p_fd(0x8000000, &(0x7f0000000300)='.\x00', &(0x7f0000000080)='9p\x00', 0x0, &(0x7f0000000740)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}}) [ 222.313865][T13871] FAULT_INJECTION: forcing a failure. [ 222.313865][T13871] name failslab, interval 1, probability 0, space 0, times 0 [ 222.336872][T13871] CPU: 1 PID: 13871 Comm: syz-executor.0 Not tainted 5.11.0-syzkaller #0 [ 222.345320][T13871] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 222.355486][T13871] Call Trace: [ 222.358855][T13871] dump_stack+0x116/0x15d [ 222.363189][T13871] should_fail+0x23c/0x250 [ 222.367640][T13871] ? security_file_alloc+0x30/0x190 [ 222.373021][T13871] __should_failslab+0x81/0x90 [ 222.377809][T13871] should_failslab+0x5/0x20 [ 222.382311][T13871] kmem_cache_alloc+0x36/0x2e0 [ 222.387081][T13871] ? __alloc_file+0x2e/0x1a0 [ 222.391742][T13871] security_file_alloc+0x30/0x190 [ 222.396774][T13871] __alloc_file+0x83/0x1a0 [ 222.401217][T13871] alloc_empty_file+0xcd/0x1c0 [ 222.405979][T13871] alloc_file+0x3a/0x280 [ 222.410222][T13871] alloc_file_pseudo+0xe2/0x130 [ 222.415133][T13871] __shmem_file_setup+0x14c/0x1d0 [ 222.420157][T13871] shmem_file_setup+0x37/0x40 [ 222.424836][T13871] __se_sys_memfd_create+0x1eb/0x390 [ 222.430118][T13871] __x64_sys_memfd_create+0x2d/0x40 [ 222.435433][T13871] do_syscall_64+0x39/0x80 [ 222.439843][T13871] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 222.445734][T13871] RIP: 0033:0x465d99 [ 222.449620][T13871] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 222.469226][T13871] RSP: 002b:00007f8175ef9f48 EFLAGS: 00000246 ORIG_RAX: 000000000000013f [ 222.477635][T13871] RAX: ffffffffffffffda RBX: 0000000020000200 RCX: 0000000000465d99 [ 222.485610][T13871] RDX: 0000000000000fc0 RSI: 0000000000000000 RDI: 00000000004bbd4a [ 222.493600][T13871] RBP: 0000000000000003 R08: 00000000000007e0 R09: ffffffffffffffff [ 222.501564][T13871] R10: 0000000000000003 R11: 0000000000000246 R12: 0000000008100000 21:38:02 executing program 2: set_mempolicy(0x8003, &(0x7f0000000300)=0x75f, 0x9) r0 = open(&(0x7f0000000300)='.\x00', 0x0, 0x0) symlinkat(&(0x7f0000000040)='\x13\x13w\xc5\xfc5\xd4\x14T\xd5\xd4\x1d)\xad\x1a`)Y\x81F\xe6\xbe\x16nA\xad\r\xbd@T\x03<\x9f3\xbb\xda\x82$\xa2\xf3\xd7r\xe7cnH\xb3<\xbfp\x83r\xe8\xf1\xb9\x93>\xc5\x12wC\xbe\"\x06 \x9e\xf0-\xf9\xcb\xf2\xf6\xe8\x80\xd38/\x00', r0, &(0x7f00000000c0)='./file0\x00') mkdirat(r0, &(0x7f0000000200)='\x13\x13w\xc5\xfc5\xd4\x14T\xd5\xd4\x1d)\xad\x1a`)Y\x81F\xe6\xbe\x16nA\xad\r\xbd@T\x03<\x9f3\xbb\xda\x82$\xa2\xf3\xd7r\xe7cnH\xb3<\xbfp\x83r\xe8\xf1\xb9\x93>\xc5\x12wC\xbe\"\x06 \x9e\xf0-\xf9\xcb\xf2\xf6\xe8\x80\xd38/\x00', 0x0) symlinkat(&(0x7f0000000340)='./file0/file0\x00', r0, &(0x7f0000000380)='\x13\x13w\xc5\xfc5\xd4\x14T\xd5\xd4\x1d)\xad\x1a`)Y\x81F\xe6\xbe\x16nA\xad\r\xbd@T\x03<\x9f3\xbb\xda\x82$\xa2\xf3\xd7r\xe7cnH\xb3<\xbfp\x83r\xe8\xf1\xb9\x93>\xc5\x12wC\xbe\"\x06 \x9e\xf0-\xf9\xcb\xf2\xf6\xe8\x80\xd38//file0\x00') r1 = open(&(0x7f0000000100)='.\x00', 0x0, 0x0) renameat2(r1, &(0x7f0000000400)='./file0/file0\x00', r1, &(0x7f0000000000)='./file0\x00', 0x40000) 21:38:02 executing program 3: set_mempolicy(0x8003, &(0x7f0000000300)=0x75f, 0x9) open(&(0x7f0000000300)='.\x00', 0x0, 0x0) r0 = syz_open_procfs(0x0, &(0x7f00000000c0)='fd/3\x00') r1 = syz_open_dev$swradio(&(0x7f0000000100)='/dev/swradio#\x00', 0x0, 0x2) mount$9p_fd(0x5c000000, &(0x7f0000000300)='.\x00', &(0x7f0000000080)='9p\x00', 0x0, &(0x7f0000000740)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}}) 21:38:02 executing program 5: set_mempolicy(0x8003, &(0x7f0000000300)=0x75f, 0x9) open(&(0x7f0000000300)='.\x00', 0x0, 0x0) r0 = syz_open_procfs(0x0, &(0x7f00000000c0)='fd/3\x00') r1 = syz_open_dev$swradio(&(0x7f0000000100)='/dev/swradio#\x00', 0x0, 0x2) mount$9p_fd(0x1000000000000, &(0x7f0000000300)='.\x00', &(0x7f0000000080)='9p\x00', 0x0, &(0x7f0000000740)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}}) [ 222.509622][T13871] R13: 0000000020000100 R14: 0000000000040000 R15: 0000000020000040 21:38:02 executing program 1: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) r3 = syz_open_procfs(0x0, &(0x7f00000000c0)='fd/3\x00') mount$9p_fd(0x12000000, &(0x7f0000000300)='.\x00', &(0x7f0000000080)='9p\x00', 0x0, &(0x7f00000003c0)={'trans=fd,', {'rfdno', 0x3d, r3}, 0x2c, {'wfdno', 0x3d, r2}}) 21:38:02 executing program 4: set_mempolicy(0x8003, &(0x7f0000000300)=0x75f, 0x9) open(&(0x7f0000000300)='.\x00', 0x0, 0x0) r0 = syz_open_procfs(0x0, &(0x7f00000000c0)='fd/3\x00') r1 = syz_open_dev$swradio(&(0x7f0000000100)='/dev/swradio#\x00', 0x0, 0x2) mount$9p_fd(0x9000000, &(0x7f0000000300)='.\x00', &(0x7f0000000080)='9p\x00', 0x0, &(0x7f0000000740)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}}) 21:38:02 executing program 0 (fault-call:0 fault-nth:7): syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x40000, 0x3, &(0x7f0000000200)=[{&(0x7f0000010000)="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", 0x10c, 0x400}, {&(0x7f0000010200)="0500000000000000000000000000000000000000040100002b", 0x19, 0x560}, {&(0x7f0000010300)="000000000000000000000000000000000000000000000000000000001481910a040000001400000024", 0x29, 0x7e0}], 0x0, &(0x7f0000000040)={[{@usrjquota='usrjquota='}, {@data_err_abort='data_err=abort'}]}) 21:38:02 executing program 2: set_mempolicy(0x8003, &(0x7f0000000300)=0x75f, 0x9) r0 = open(&(0x7f0000000300)='.\x00', 0x0, 0x0) symlinkat(&(0x7f0000000040)='\x13\x13w\xc5\xfc5\xd4\x14T\xd5\xd4\x1d)\xad\x1a`)Y\x81F\xe6\xbe\x16nA\xad\r\xbd@T\x03<\x9f3\xbb\xda\x82$\xa2\xf3\xd7r\xe7cnH\xb3<\xbfp\x83r\xe8\xf1\xb9\x93>\xc5\x12wC\xbe\"\x06 \x9e\xf0-\xf9\xcb\xf2\xf6\xe8\x80\xd38/\x00', r0, &(0x7f00000000c0)='./file0\x00') mkdirat(r0, &(0x7f0000000200)='\x13\x13w\xc5\xfc5\xd4\x14T\xd5\xd4\x1d)\xad\x1a`)Y\x81F\xe6\xbe\x16nA\xad\r\xbd@T\x03<\x9f3\xbb\xda\x82$\xa2\xf3\xd7r\xe7cnH\xb3<\xbfp\x83r\xe8\xf1\xb9\x93>\xc5\x12wC\xbe\"\x06 \x9e\xf0-\xf9\xcb\xf2\xf6\xe8\x80\xd38/\x00', 0x0) symlinkat(&(0x7f0000000340)='./file0/file0\x00', r0, &(0x7f0000000380)='\x13\x13w\xc5\xfc5\xd4\x14T\xd5\xd4\x1d)\xad\x1a`)Y\x81F\xe6\xbe\x16nA\xad\r\xbd@T\x03<\x9f3\xbb\xda\x82$\xa2\xf3\xd7r\xe7cnH\xb3<\xbfp\x83r\xe8\xf1\xb9\x93>\xc5\x12wC\xbe\"\x06 \x9e\xf0-\xf9\xcb\xf2\xf6\xe8\x80\xd38//file0\x00') r1 = open(&(0x7f0000000100)='.\x00', 0x0, 0x0) renameat2(r1, &(0x7f0000000400)='./file0/file0\x00', r1, &(0x7f0000000000)='./file0\x00', 0x1000000) 21:38:02 executing program 3: set_mempolicy(0x8003, &(0x7f0000000300)=0x75f, 0x9) open(&(0x7f0000000300)='.\x00', 0x0, 0x0) r0 = syz_open_procfs(0x0, &(0x7f00000000c0)='fd/3\x00') r1 = syz_open_dev$swradio(&(0x7f0000000100)='/dev/swradio#\x00', 0x0, 0x2) mount$9p_fd(0x8cffffff, &(0x7f0000000300)='.\x00', &(0x7f0000000080)='9p\x00', 0x0, &(0x7f0000000740)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}}) 21:38:02 executing program 4: set_mempolicy(0x8003, &(0x7f0000000300)=0x75f, 0x9) open(&(0x7f0000000300)='.\x00', 0x0, 0x0) r0 = syz_open_procfs(0x0, &(0x7f00000000c0)='fd/3\x00') r1 = syz_open_dev$swradio(&(0x7f0000000100)='/dev/swradio#\x00', 0x0, 0x2) mount$9p_fd(0xa000000, &(0x7f0000000300)='.\x00', &(0x7f0000000080)='9p\x00', 0x0, &(0x7f0000000740)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}}) 21:38:02 executing program 5: set_mempolicy(0x8003, &(0x7f0000000300)=0x75f, 0x9) open(&(0x7f0000000300)='.\x00', 0x0, 0x0) r0 = syz_open_procfs(0x0, &(0x7f00000000c0)='fd/3\x00') r1 = syz_open_dev$swradio(&(0x7f0000000100)='/dev/swradio#\x00', 0x0, 0x2) mount$9p_fd(0x40000000000000, &(0x7f0000000300)='.\x00', &(0x7f0000000080)='9p\x00', 0x0, &(0x7f0000000740)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}}) 21:38:02 executing program 1: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) r3 = syz_open_procfs(0x0, &(0x7f00000000c0)='fd/3\x00') mount$9p_fd(0x20100000, &(0x7f0000000300)='.\x00', &(0x7f0000000080)='9p\x00', 0x0, &(0x7f00000003c0)={'trans=fd,', {'rfdno', 0x3d, r3}, 0x2c, {'wfdno', 0x3d, r2}}) [ 222.730942][T13914] FAULT_INJECTION: forcing a failure. [ 222.730942][T13914] name failslab, interval 1, probability 0, space 0, times 0 [ 222.773929][T13914] CPU: 0 PID: 13914 Comm: syz-executor.0 Not tainted 5.11.0-syzkaller #0 [ 222.782493][T13914] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 222.792545][T13914] Call Trace: [ 222.795895][T13914] dump_stack+0x116/0x15d [ 222.800377][T13914] should_fail+0x23c/0x250 [ 222.804802][T13914] __should_failslab+0x81/0x90 [ 222.809636][T13914] ? tomoyo_realpath_from_path+0x98/0x3b0 [ 222.815407][T13914] should_failslab+0x5/0x20 [ 222.819925][T13914] __kmalloc+0x59/0x360 [ 222.824112][T13914] ? __mod_memcg_lruvec_state+0xfc/0x260 [ 222.829758][T13914] tomoyo_realpath_from_path+0x98/0x3b0 [ 222.835454][T13914] tomoyo_path_perm+0xc6/0x330 [ 222.840219][T13914] tomoyo_path_truncate+0x18/0x20 [ 222.845249][T13914] security_path_truncate+0x7f/0xd0 [ 222.850453][T13914] do_sys_ftruncate+0x38d/0x530 [ 222.855304][T13914] ? fpregs_assert_state_consistent+0x7d/0x90 [ 222.861435][T13914] __x64_sys_ftruncate+0x2f/0x40 [ 222.866375][T13914] do_syscall_64+0x39/0x80 [ 222.867337][T13931] 9pnet: Insufficient options for proto=fd [ 222.870789][T13914] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 222.870816][T13914] RIP: 0033:0x465d57 [ 222.870829][T13914] Code: 48 89 e7 e8 cb e5 ff ff 48 8b 4c 24 18 64 48 2b 0c 25 28 00 00 00 75 05 48 83 c4 28 c3 e8 11 1a 00 00 90 b8 4d 00 00 00 0f 05 <48> 3d 00 f0 ff ff 77 01 c3 48 c7 c2 bc ff ff ff f7 d8 64 89 02 b8 [ 222.870844][T13914] RSP: 002b:00007f8175ef9f48 EFLAGS: 00000217 ORIG_RAX: 000000000000004d [ 222.870860][T13914] RAX: ffffffffffffffda RBX: 0000000020000200 RCX: 0000000000465d57 21:38:02 executing program 5: set_mempolicy(0x8003, &(0x7f0000000300)=0x75f, 0x9) open(&(0x7f0000000300)='.\x00', 0x0, 0x0) r0 = syz_open_procfs(0x0, &(0x7f00000000c0)='fd/3\x00') r1 = syz_open_dev$swradio(&(0x7f0000000100)='/dev/swradio#\x00', 0x0, 0x2) mount$9p_fd(0xfeffff00000000, &(0x7f0000000300)='.\x00', &(0x7f0000000080)='9p\x00', 0x0, &(0x7f0000000740)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}}) 21:38:02 executing program 3: set_mempolicy(0x8003, &(0x7f0000000300)=0x75f, 0x9) open(&(0x7f0000000300)='.\x00', 0x0, 0x0) r0 = syz_open_procfs(0x0, &(0x7f00000000c0)='fd/3\x00') r1 = syz_open_dev$swradio(&(0x7f0000000100)='/dev/swradio#\x00', 0x0, 0x2) mount$9p_fd(0xc0ed0000, &(0x7f0000000300)='.\x00', &(0x7f0000000080)='9p\x00', 0x0, &(0x7f0000000740)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}}) 21:38:02 executing program 3: set_mempolicy(0x8003, &(0x7f0000000300)=0x75f, 0x9) open(&(0x7f0000000300)='.\x00', 0x0, 0x0) r0 = syz_open_procfs(0x0, &(0x7f00000000c0)='fd/3\x00') r1 = syz_open_dev$swradio(&(0x7f0000000100)='/dev/swradio#\x00', 0x0, 0x2) mount$9p_fd(0xf6ffffff, &(0x7f0000000300)='.\x00', &(0x7f0000000080)='9p\x00', 0x0, &(0x7f0000000740)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}}) 21:38:02 executing program 2: set_mempolicy(0x8003, &(0x7f0000000300)=0x75f, 0x9) r0 = open(&(0x7f0000000300)='.\x00', 0x0, 0x0) symlinkat(&(0x7f0000000040)='\x13\x13w\xc5\xfc5\xd4\x14T\xd5\xd4\x1d)\xad\x1a`)Y\x81F\xe6\xbe\x16nA\xad\r\xbd@T\x03<\x9f3\xbb\xda\x82$\xa2\xf3\xd7r\xe7cnH\xb3<\xbfp\x83r\xe8\xf1\xb9\x93>\xc5\x12wC\xbe\"\x06 \x9e\xf0-\xf9\xcb\xf2\xf6\xe8\x80\xd38/\x00', r0, &(0x7f00000000c0)='./file0\x00') mkdirat(r0, &(0x7f0000000200)='\x13\x13w\xc5\xfc5\xd4\x14T\xd5\xd4\x1d)\xad\x1a`)Y\x81F\xe6\xbe\x16nA\xad\r\xbd@T\x03<\x9f3\xbb\xda\x82$\xa2\xf3\xd7r\xe7cnH\xb3<\xbfp\x83r\xe8\xf1\xb9\x93>\xc5\x12wC\xbe\"\x06 \x9e\xf0-\xf9\xcb\xf2\xf6\xe8\x80\xd38/\x00', 0x0) symlinkat(&(0x7f0000000340)='./file0/file0\x00', r0, &(0x7f0000000380)='\x13\x13w\xc5\xfc5\xd4\x14T\xd5\xd4\x1d)\xad\x1a`)Y\x81F\xe6\xbe\x16nA\xad\r\xbd@T\x03<\x9f3\xbb\xda\x82$\xa2\xf3\xd7r\xe7cnH\xb3<\xbfp\x83r\xe8\xf1\xb9\x93>\xc5\x12wC\xbe\"\x06 \x9e\xf0-\xf9\xcb\xf2\xf6\xe8\x80\xd38//file0\x00') r1 = open(&(0x7f0000000100)='.\x00', 0x0, 0x0) renameat2(r1, &(0x7f0000000400)='./file0/file0\x00', r1, &(0x7f0000000000)='./file0\x00', 0x1010000) 21:38:02 executing program 4: set_mempolicy(0x8003, &(0x7f0000000300)=0x75f, 0x9) open(&(0x7f0000000300)='.\x00', 0x0, 0x0) r0 = syz_open_procfs(0x0, &(0x7f00000000c0)='fd/3\x00') r1 = syz_open_dev$swradio(&(0x7f0000000100)='/dev/swradio#\x00', 0x0, 0x2) mount$9p_fd(0xb000000, &(0x7f0000000300)='.\x00', &(0x7f0000000080)='9p\x00', 0x0, &(0x7f0000000740)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}}) 21:38:02 executing program 5: set_mempolicy(0x8003, &(0x7f0000000300)=0x75f, 0x9) open(&(0x7f0000000300)='.\x00', 0x0, 0x0) r0 = syz_open_procfs(0x0, &(0x7f00000000c0)='fd/3\x00') r1 = syz_open_dev$swradio(&(0x7f0000000100)='/dev/swradio#\x00', 0x0, 0x2) mount$9p_fd(0x100000000000000, &(0x7f0000000300)='.\x00', &(0x7f0000000080)='9p\x00', 0x0, &(0x7f0000000740)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}}) [ 222.870870][T13914] RDX: 0000000000000fc0 RSI: 0000000000040000 RDI: 0000000000000004 [ 222.870881][T13914] RBP: 0000000000000003 R08: 00000000000007e0 R09: ffffffffffffffff [ 222.870891][T13914] R10: 0000000000000003 R11: 0000000000000217 R12: 0000000000000004 [ 222.870901][T13914] R13: 0000000000000004 R14: 0000000000040000 R15: 0000000020000040 [ 222.979103][T13914] ERROR: Out of memory at tomoyo_realpath_from_path. [ 223.001799][T13939] 9pnet: Insufficient options for proto=fd [ 223.007674][T13914] loop0: detected capacity change from 512 to 0 [ 223.034111][T13914] EXT4-fs (loop0): ext4_check_descriptors: Checksum for group 0 failed (38247!=0) [ 223.043641][T13914] EXT4-fs (loop0): group descriptors corrupted! 21:38:03 executing program 0 (fault-call:0 fault-nth:8): syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x40000, 0x3, &(0x7f0000000200)=[{&(0x7f0000010000)="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", 0x10c, 0x400}, {&(0x7f0000010200)="0500000000000000000000000000000000000000040100002b", 0x19, 0x560}, {&(0x7f0000010300)="000000000000000000000000000000000000000000000000000000001481910a040000001400000024", 0x29, 0x7e0}], 0x0, &(0x7f0000000040)={[{@usrjquota='usrjquota='}, {@data_err_abort='data_err=abort'}]}) 21:38:03 executing program 2: set_mempolicy(0x8003, &(0x7f0000000300)=0x75f, 0x9) r0 = open(&(0x7f0000000300)='.\x00', 0x0, 0x0) symlinkat(&(0x7f0000000040)='\x13\x13w\xc5\xfc5\xd4\x14T\xd5\xd4\x1d)\xad\x1a`)Y\x81F\xe6\xbe\x16nA\xad\r\xbd@T\x03<\x9f3\xbb\xda\x82$\xa2\xf3\xd7r\xe7cnH\xb3<\xbfp\x83r\xe8\xf1\xb9\x93>\xc5\x12wC\xbe\"\x06 \x9e\xf0-\xf9\xcb\xf2\xf6\xe8\x80\xd38/\x00', r0, &(0x7f00000000c0)='./file0\x00') mkdirat(r0, &(0x7f0000000200)='\x13\x13w\xc5\xfc5\xd4\x14T\xd5\xd4\x1d)\xad\x1a`)Y\x81F\xe6\xbe\x16nA\xad\r\xbd@T\x03<\x9f3\xbb\xda\x82$\xa2\xf3\xd7r\xe7cnH\xb3<\xbfp\x83r\xe8\xf1\xb9\x93>\xc5\x12wC\xbe\"\x06 \x9e\xf0-\xf9\xcb\xf2\xf6\xe8\x80\xd38/\x00', 0x0) symlinkat(&(0x7f0000000340)='./file0/file0\x00', r0, &(0x7f0000000380)='\x13\x13w\xc5\xfc5\xd4\x14T\xd5\xd4\x1d)\xad\x1a`)Y\x81F\xe6\xbe\x16nA\xad\r\xbd@T\x03<\x9f3\xbb\xda\x82$\xa2\xf3\xd7r\xe7cnH\xb3<\xbfp\x83r\xe8\xf1\xb9\x93>\xc5\x12wC\xbe\"\x06 \x9e\xf0-\xf9\xcb\xf2\xf6\xe8\x80\xd38//file0\x00') r1 = open(&(0x7f0000000100)='.\x00', 0x0, 0x0) renameat2(r1, &(0x7f0000000400)='./file0/file0\x00', r1, &(0x7f0000000000)='./file0\x00', 0x2000000) 21:38:03 executing program 3: set_mempolicy(0x8003, &(0x7f0000000300)=0x75f, 0x9) open(&(0x7f0000000300)='.\x00', 0x0, 0x0) r0 = syz_open_procfs(0x0, &(0x7f00000000c0)='fd/3\x00') r1 = syz_open_dev$swradio(&(0x7f0000000100)='/dev/swradio#\x00', 0x0, 0x2) mount$9p_fd(0xfeffffff, &(0x7f0000000300)='.\x00', &(0x7f0000000080)='9p\x00', 0x0, &(0x7f0000000740)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}}) 21:38:03 executing program 4: set_mempolicy(0x8003, &(0x7f0000000300)=0x75f, 0x9) open(&(0x7f0000000300)='.\x00', 0x0, 0x0) r0 = syz_open_procfs(0x0, &(0x7f00000000c0)='fd/3\x00') r1 = syz_open_dev$swradio(&(0x7f0000000100)='/dev/swradio#\x00', 0x0, 0x2) mount$9p_fd(0xc000000, &(0x7f0000000300)='.\x00', &(0x7f0000000080)='9p\x00', 0x0, &(0x7f0000000740)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}}) 21:38:03 executing program 5: set_mempolicy(0x8003, &(0x7f0000000300)=0x75f, 0x9) open(&(0x7f0000000300)='.\x00', 0x0, 0x0) r0 = syz_open_procfs(0x0, &(0x7f00000000c0)='fd/3\x00') r1 = syz_open_dev$swradio(&(0x7f0000000100)='/dev/swradio#\x00', 0x0, 0x2) mount$9p_fd(0x200000000000000, &(0x7f0000000300)='.\x00', &(0x7f0000000080)='9p\x00', 0x0, &(0x7f0000000740)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}}) 21:38:03 executing program 1: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) r3 = syz_open_procfs(0x0, &(0x7f00000000c0)='fd/3\x00') mount$9p_fd(0x25000000, &(0x7f0000000300)='.\x00', &(0x7f0000000080)='9p\x00', 0x0, &(0x7f00000003c0)={'trans=fd,', {'rfdno', 0x3d, r3}, 0x2c, {'wfdno', 0x3d, r2}}) 21:38:03 executing program 5: set_mempolicy(0x8003, &(0x7f0000000300)=0x75f, 0x9) open(&(0x7f0000000300)='.\x00', 0x0, 0x0) r0 = syz_open_procfs(0x0, &(0x7f00000000c0)='fd/3\x00') r1 = syz_open_dev$swradio(&(0x7f0000000100)='/dev/swradio#\x00', 0x0, 0x2) mount$9p_fd(0x300000000000000, &(0x7f0000000300)='.\x00', &(0x7f0000000080)='9p\x00', 0x0, &(0x7f0000000740)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}}) 21:38:03 executing program 3: set_mempolicy(0x8003, &(0x7f0000000300)=0x75f, 0x9) open(&(0x7f0000000300)='.\x00', 0x0, 0x0) r0 = syz_open_procfs(0x0, &(0x7f00000000c0)='fd/3\x00') r1 = syz_open_dev$swradio(&(0x7f0000000100)='/dev/swradio#\x00', 0x0, 0x2) mount$9p_fd(0xff000000, &(0x7f0000000300)='.\x00', &(0x7f0000000080)='9p\x00', 0x0, &(0x7f0000000740)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}}) 21:38:03 executing program 4: set_mempolicy(0x8003, &(0x7f0000000300)=0x75f, 0x9) open(&(0x7f0000000300)='.\x00', 0x0, 0x0) r0 = syz_open_procfs(0x0, &(0x7f00000000c0)='fd/3\x00') r1 = syz_open_dev$swradio(&(0x7f0000000100)='/dev/swradio#\x00', 0x0, 0x2) mount$9p_fd(0xd000000, &(0x7f0000000300)='.\x00', &(0x7f0000000080)='9p\x00', 0x0, &(0x7f0000000740)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}}) 21:38:03 executing program 2: set_mempolicy(0x8003, &(0x7f0000000300)=0x75f, 0x9) r0 = open(&(0x7f0000000300)='.\x00', 0x0, 0x0) symlinkat(&(0x7f0000000040)='\x13\x13w\xc5\xfc5\xd4\x14T\xd5\xd4\x1d)\xad\x1a`)Y\x81F\xe6\xbe\x16nA\xad\r\xbd@T\x03<\x9f3\xbb\xda\x82$\xa2\xf3\xd7r\xe7cnH\xb3<\xbfp\x83r\xe8\xf1\xb9\x93>\xc5\x12wC\xbe\"\x06 \x9e\xf0-\xf9\xcb\xf2\xf6\xe8\x80\xd38/\x00', r0, &(0x7f00000000c0)='./file0\x00') mkdirat(r0, &(0x7f0000000200)='\x13\x13w\xc5\xfc5\xd4\x14T\xd5\xd4\x1d)\xad\x1a`)Y\x81F\xe6\xbe\x16nA\xad\r\xbd@T\x03<\x9f3\xbb\xda\x82$\xa2\xf3\xd7r\xe7cnH\xb3<\xbfp\x83r\xe8\xf1\xb9\x93>\xc5\x12wC\xbe\"\x06 \x9e\xf0-\xf9\xcb\xf2\xf6\xe8\x80\xd38/\x00', 0x0) symlinkat(&(0x7f0000000340)='./file0/file0\x00', r0, &(0x7f0000000380)='\x13\x13w\xc5\xfc5\xd4\x14T\xd5\xd4\x1d)\xad\x1a`)Y\x81F\xe6\xbe\x16nA\xad\r\xbd@T\x03<\x9f3\xbb\xda\x82$\xa2\xf3\xd7r\xe7cnH\xb3<\xbfp\x83r\xe8\xf1\xb9\x93>\xc5\x12wC\xbe\"\x06 \x9e\xf0-\xf9\xcb\xf2\xf6\xe8\x80\xd38//file0\x00') r1 = open(&(0x7f0000000100)='.\x00', 0x0, 0x0) renameat2(r1, &(0x7f0000000400)='./file0/file0\x00', r1, &(0x7f0000000000)='./file0\x00', 0x3000000) [ 223.189924][T13968] FAULT_INJECTION: forcing a failure. [ 223.189924][T13968] name failslab, interval 1, probability 0, space 0, times 0 [ 223.224771][T13968] CPU: 0 PID: 13968 Comm: syz-executor.0 Not tainted 5.11.0-syzkaller #0 [ 223.233220][T13968] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 223.243275][T13968] Call Trace: [ 223.246636][T13968] dump_stack+0x116/0x15d [ 223.251047][T13968] should_fail+0x23c/0x250 [ 223.255462][T13968] __should_failslab+0x81/0x90 [ 223.260225][T13968] ? tomoyo_encode2+0x1d3/0x350 [ 223.265079][T13968] should_failslab+0x5/0x20 [ 223.269577][T13968] __kmalloc+0x59/0x360 [ 223.273727][T13968] tomoyo_encode2+0x1d3/0x350 [ 223.278403][T13968] ? dynamic_dname+0xf0/0xf0 [ 223.282989][T13968] tomoyo_realpath_from_path+0x35e/0x3b0 [ 223.288680][T13968] tomoyo_path_perm+0xc6/0x330 [ 223.293553][T13968] tomoyo_path_truncate+0x18/0x20 [ 223.298577][T13968] security_path_truncate+0x7f/0xd0 [ 223.303834][T13968] do_sys_ftruncate+0x38d/0x530 [ 223.308676][T13968] ? fpregs_assert_state_consistent+0x7d/0x90 [ 223.314737][T13968] __x64_sys_ftruncate+0x2f/0x40 [ 223.319766][T13968] do_syscall_64+0x39/0x80 [ 223.324188][T13968] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 223.330082][T13968] RIP: 0033:0x465d57 [ 223.334142][T13968] Code: 48 89 e7 e8 cb e5 ff ff 48 8b 4c 24 18 64 48 2b 0c 25 28 00 00 00 75 05 48 83 c4 28 c3 e8 11 1a 00 00 90 b8 4d 00 00 00 0f 05 <48> 3d 00 f0 ff ff 77 01 c3 48 c7 c2 bc ff ff ff f7 d8 64 89 02 b8 [ 223.353827][T13968] RSP: 002b:00007f8175ef9f48 EFLAGS: 00000217 ORIG_RAX: 000000000000004d [ 223.362239][T13968] RAX: ffffffffffffffda RBX: 0000000020000200 RCX: 0000000000465d57 [ 223.370206][T13968] RDX: 0000000000000fc0 RSI: 0000000000040000 RDI: 0000000000000004 [ 223.379013][T13968] RBP: 0000000000000003 R08: 00000000000007e0 R09: ffffffffffffffff [ 223.386990][T13968] R10: 0000000000000003 R11: 0000000000000217 R12: 0000000000000004 [ 223.394965][T13968] R13: 0000000000000004 R14: 0000000000040000 R15: 0000000020000040 21:38:03 executing program 1: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) r3 = syz_open_procfs(0x0, &(0x7f00000000c0)='fd/3\x00') mount$9p_fd(0x3f000000, &(0x7f0000000300)='.\x00', &(0x7f0000000080)='9p\x00', 0x0, &(0x7f00000003c0)={'trans=fd,', {'rfdno', 0x3d, r3}, 0x2c, {'wfdno', 0x3d, r2}}) 21:38:03 executing program 5: set_mempolicy(0x8003, &(0x7f0000000300)=0x75f, 0x9) open(&(0x7f0000000300)='.\x00', 0x0, 0x0) r0 = syz_open_procfs(0x0, &(0x7f00000000c0)='fd/3\x00') r1 = syz_open_dev$swradio(&(0x7f0000000100)='/dev/swradio#\x00', 0x0, 0x2) mount$9p_fd(0x400000000000000, &(0x7f0000000300)='.\x00', &(0x7f0000000080)='9p\x00', 0x0, &(0x7f0000000740)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}}) [ 223.532632][T13968] ERROR: Out of memory at tomoyo_realpath_from_path. [ 223.546501][T13968] loop0: detected capacity change from 512 to 0 [ 223.561588][T13968] EXT4-fs (loop0): ext4_check_descriptors: Checksum for group 0 failed (38247!=0) [ 223.571898][T13968] EXT4-fs (loop0): group descriptors corrupted! 21:38:03 executing program 0 (fault-call:0 fault-nth:9): syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x40000, 0x3, &(0x7f0000000200)=[{&(0x7f0000010000)="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", 0x10c, 0x400}, {&(0x7f0000010200)="0500000000000000000000000000000000000000040100002b", 0x19, 0x560}, {&(0x7f0000010300)="000000000000000000000000000000000000000000000000000000001481910a040000001400000024", 0x29, 0x7e0}], 0x0, &(0x7f0000000040)={[{@usrjquota='usrjquota='}, {@data_err_abort='data_err=abort'}]}) 21:38:03 executing program 2: set_mempolicy(0x8003, &(0x7f0000000300)=0x75f, 0x9) r0 = open(&(0x7f0000000300)='.\x00', 0x0, 0x0) symlinkat(&(0x7f0000000040)='\x13\x13w\xc5\xfc5\xd4\x14T\xd5\xd4\x1d)\xad\x1a`)Y\x81F\xe6\xbe\x16nA\xad\r\xbd@T\x03<\x9f3\xbb\xda\x82$\xa2\xf3\xd7r\xe7cnH\xb3<\xbfp\x83r\xe8\xf1\xb9\x93>\xc5\x12wC\xbe\"\x06 \x9e\xf0-\xf9\xcb\xf2\xf6\xe8\x80\xd38/\x00', r0, &(0x7f00000000c0)='./file0\x00') mkdirat(r0, &(0x7f0000000200)='\x13\x13w\xc5\xfc5\xd4\x14T\xd5\xd4\x1d)\xad\x1a`)Y\x81F\xe6\xbe\x16nA\xad\r\xbd@T\x03<\x9f3\xbb\xda\x82$\xa2\xf3\xd7r\xe7cnH\xb3<\xbfp\x83r\xe8\xf1\xb9\x93>\xc5\x12wC\xbe\"\x06 \x9e\xf0-\xf9\xcb\xf2\xf6\xe8\x80\xd38/\x00', 0x0) symlinkat(&(0x7f0000000340)='./file0/file0\x00', r0, &(0x7f0000000380)='\x13\x13w\xc5\xfc5\xd4\x14T\xd5\xd4\x1d)\xad\x1a`)Y\x81F\xe6\xbe\x16nA\xad\r\xbd@T\x03<\x9f3\xbb\xda\x82$\xa2\xf3\xd7r\xe7cnH\xb3<\xbfp\x83r\xe8\xf1\xb9\x93>\xc5\x12wC\xbe\"\x06 \x9e\xf0-\xf9\xcb\xf2\xf6\xe8\x80\xd38//file0\x00') r1 = open(&(0x7f0000000100)='.\x00', 0x0, 0x0) renameat2(r1, &(0x7f0000000400)='./file0/file0\x00', r1, &(0x7f0000000000)='./file0\x00', 0x4000000) 21:38:03 executing program 4: set_mempolicy(0x8003, &(0x7f0000000300)=0x75f, 0x9) open(&(0x7f0000000300)='.\x00', 0x0, 0x0) r0 = syz_open_procfs(0x0, &(0x7f00000000c0)='fd/3\x00') r1 = syz_open_dev$swradio(&(0x7f0000000100)='/dev/swradio#\x00', 0x0, 0x2) mount$9p_fd(0xe000000, &(0x7f0000000300)='.\x00', &(0x7f0000000080)='9p\x00', 0x0, &(0x7f0000000740)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}}) 21:38:03 executing program 3: set_mempolicy(0x8003, &(0x7f0000000300)=0x75f, 0x9) open(&(0x7f0000000300)='.\x00', 0x0, 0x0) r0 = syz_open_procfs(0x0, &(0x7f00000000c0)='fd/3\x00') r1 = syz_open_dev$swradio(&(0x7f0000000100)='/dev/swradio#\x00', 0x0, 0x2) mount$9p_fd(0xff9f0000, &(0x7f0000000300)='.\x00', &(0x7f0000000080)='9p\x00', 0x0, &(0x7f0000000740)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}}) 21:38:03 executing program 1: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) r3 = syz_open_procfs(0x0, &(0x7f00000000c0)='fd/3\x00') mount$9p_fd(0x5c000000, &(0x7f0000000300)='.\x00', &(0x7f0000000080)='9p\x00', 0x0, &(0x7f00000003c0)={'trans=fd,', {'rfdno', 0x3d, r3}, 0x2c, {'wfdno', 0x3d, r2}}) 21:38:03 executing program 5: set_mempolicy(0x8003, &(0x7f0000000300)=0x75f, 0x9) open(&(0x7f0000000300)='.\x00', 0x0, 0x0) r0 = syz_open_procfs(0x0, &(0x7f00000000c0)='fd/3\x00') r1 = syz_open_dev$swradio(&(0x7f0000000100)='/dev/swradio#\x00', 0x0, 0x2) mount$9p_fd(0x500000000000000, &(0x7f0000000300)='.\x00', &(0x7f0000000080)='9p\x00', 0x0, &(0x7f0000000740)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}}) 21:38:03 executing program 2: set_mempolicy(0x8003, &(0x7f0000000300)=0x75f, 0x9) r0 = open(&(0x7f0000000300)='.\x00', 0x0, 0x0) symlinkat(&(0x7f0000000040)='\x13\x13w\xc5\xfc5\xd4\x14T\xd5\xd4\x1d)\xad\x1a`)Y\x81F\xe6\xbe\x16nA\xad\r\xbd@T\x03<\x9f3\xbb\xda\x82$\xa2\xf3\xd7r\xe7cnH\xb3<\xbfp\x83r\xe8\xf1\xb9\x93>\xc5\x12wC\xbe\"\x06 \x9e\xf0-\xf9\xcb\xf2\xf6\xe8\x80\xd38/\x00', r0, &(0x7f00000000c0)='./file0\x00') mkdirat(r0, &(0x7f0000000200)='\x13\x13w\xc5\xfc5\xd4\x14T\xd5\xd4\x1d)\xad\x1a`)Y\x81F\xe6\xbe\x16nA\xad\r\xbd@T\x03<\x9f3\xbb\xda\x82$\xa2\xf3\xd7r\xe7cnH\xb3<\xbfp\x83r\xe8\xf1\xb9\x93>\xc5\x12wC\xbe\"\x06 \x9e\xf0-\xf9\xcb\xf2\xf6\xe8\x80\xd38/\x00', 0x0) symlinkat(&(0x7f0000000340)='./file0/file0\x00', r0, &(0x7f0000000380)='\x13\x13w\xc5\xfc5\xd4\x14T\xd5\xd4\x1d)\xad\x1a`)Y\x81F\xe6\xbe\x16nA\xad\r\xbd@T\x03<\x9f3\xbb\xda\x82$\xa2\xf3\xd7r\xe7cnH\xb3<\xbfp\x83r\xe8\xf1\xb9\x93>\xc5\x12wC\xbe\"\x06 \x9e\xf0-\xf9\xcb\xf2\xf6\xe8\x80\xd38//file0\x00') r1 = open(&(0x7f0000000100)='.\x00', 0x0, 0x0) renameat2(r1, &(0x7f0000000400)='./file0/file0\x00', r1, &(0x7f0000000000)='./file0\x00', 0x5000000) 21:38:03 executing program 3: set_mempolicy(0x8003, &(0x7f0000000300)=0x75f, 0x9) open(&(0x7f0000000300)='.\x00', 0x0, 0x0) r0 = syz_open_procfs(0x0, &(0x7f00000000c0)='fd/3\x00') r1 = syz_open_dev$swradio(&(0x7f0000000100)='/dev/swradio#\x00', 0x0, 0x2) mount$9p_fd(0xffff0000, &(0x7f0000000300)='.\x00', &(0x7f0000000080)='9p\x00', 0x0, &(0x7f0000000740)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}}) 21:38:03 executing program 4: set_mempolicy(0x8003, &(0x7f0000000300)=0x75f, 0x9) open(&(0x7f0000000300)='.\x00', 0x0, 0x0) r0 = syz_open_procfs(0x0, &(0x7f00000000c0)='fd/3\x00') r1 = syz_open_dev$swradio(&(0x7f0000000100)='/dev/swradio#\x00', 0x0, 0x2) mount$9p_fd(0x10000000, &(0x7f0000000300)='.\x00', &(0x7f0000000080)='9p\x00', 0x0, &(0x7f0000000740)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}}) [ 223.704170][T14030] FAULT_INJECTION: forcing a failure. [ 223.704170][T14030] name fail_page_alloc, interval 1, probability 0, space 0, times 1 [ 223.722480][T14030] CPU: 0 PID: 14030 Comm: syz-executor.0 Not tainted 5.11.0-syzkaller #0 [ 223.730916][T14030] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 223.740971][T14030] Call Trace: [ 223.744242][T14030] dump_stack+0x116/0x15d [ 223.748580][T14030] should_fail+0x23c/0x250 [ 223.752998][T14030] __alloc_pages_nodemask+0xd8/0x350 [ 223.758282][T14030] alloc_pages_vma+0x3e6/0x890 [ 223.763053][T14030] shmem_alloc_and_acct_page+0x2ba/0x650 [ 223.768692][T14030] ? __rcu_read_unlock+0x5c/0x250 [ 223.773751][T14030] shmem_getpage_gfp+0x681/0x1930 [ 223.778854][T14030] shmem_write_begin+0x83/0x100 [ 223.783707][T14030] generic_perform_write+0x196/0x3a0 [ 223.789010][T14030] __generic_file_write_iter+0x15c/0x340 [ 223.794645][T14030] ? generic_write_checks+0x250/0x290 [ 223.800033][T14030] generic_file_write_iter+0x75/0x130 [ 223.805418][T14030] vfs_write+0x6f0/0x7e0 [ 223.809657][T14030] __x64_sys_pwrite64+0xf5/0x150 [ 223.814654][T14030] do_syscall_64+0x39/0x80 [ 223.819107][T14030] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 223.825020][T14030] RIP: 0033:0x419437 [ 223.828894][T14030] Code: 08 89 3c 24 48 89 4c 24 18 e8 e5 f8 ff ff 4c 8b 54 24 18 48 8b 54 24 10 41 89 c0 48 8b 74 24 08 8b 3c 24 b8 12 00 00 00 0f 05 <48> 3d 00 f0 ff ff 77 31 44 89 c7 48 89 04 24 e8 15 f9 ff ff 48 8b 21:38:03 executing program 5: set_mempolicy(0x8003, &(0x7f0000000300)=0x75f, 0x9) open(&(0x7f0000000300)='.\x00', 0x0, 0x0) r0 = syz_open_procfs(0x0, &(0x7f00000000c0)='fd/3\x00') r1 = syz_open_dev$swradio(&(0x7f0000000100)='/dev/swradio#\x00', 0x0, 0x2) mount$9p_fd(0x600000000000000, &(0x7f0000000300)='.\x00', &(0x7f0000000080)='9p\x00', 0x0, &(0x7f0000000740)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}}) 21:38:03 executing program 1: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) r3 = syz_open_procfs(0x0, &(0x7f00000000c0)='fd/3\x00') mount$9p_fd(0x8cffffff, &(0x7f0000000300)='.\x00', &(0x7f0000000080)='9p\x00', 0x0, &(0x7f00000003c0)={'trans=fd,', {'rfdno', 0x3d, r3}, 0x2c, {'wfdno', 0x3d, r2}}) [ 223.848483][T14030] RSP: 002b:00007f8175ef9f20 EFLAGS: 00000293 ORIG_RAX: 0000000000000012 [ 223.856875][T14030] RAX: ffffffffffffffda RBX: 00000000004af960 RCX: 0000000000419437 [ 223.864829][T14030] RDX: 000000000000010c RSI: 0000000020010000 RDI: 0000000000000004 [ 223.873020][T14030] RBP: 0000000000000003 R08: 0000000000000000 R09: ffffffffffffffff [ 223.880971][T14030] R10: 0000000000000400 R11: 0000000000000293 R12: 0000000000000004 [ 223.888933][T14030] R13: 0000000000000004 R14: 0000000020000200 R15: 0000000000000000 21:38:03 executing program 0 (fault-call:0 fault-nth:10): syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x40000, 0x3, &(0x7f0000000200)=[{&(0x7f0000010000)="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", 0x10c, 0x400}, {&(0x7f0000010200)="0500000000000000000000000000000000000000040100002b", 0x19, 0x560}, {&(0x7f0000010300)="000000000000000000000000000000000000000000000000000000001481910a040000001400000024", 0x29, 0x7e0}], 0x0, &(0x7f0000000040)={[{@usrjquota='usrjquota='}, {@data_err_abort='data_err=abort'}]}) [ 223.916992][T14030] loop0: detected capacity change from 512 to 0 [ 223.924440][T14030] EXT4-fs (loop0): VFS: Can't find ext4 filesystem 21:38:03 executing program 3: set_mempolicy(0x8003, &(0x7f0000000300)=0x75f, 0x9) open(&(0x7f0000000300)='.\x00', 0x0, 0x0) r0 = syz_open_procfs(0x0, &(0x7f00000000c0)='fd/3\x00') r1 = syz_open_dev$swradio(&(0x7f0000000100)='/dev/swradio#\x00', 0x0, 0x2) mount$9p_fd(0xfffffe00, &(0x7f0000000300)='.\x00', &(0x7f0000000080)='9p\x00', 0x0, &(0x7f0000000740)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}}) [ 224.020137][T14060] FAULT_INJECTION: forcing a failure. [ 224.020137][T14060] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 224.033232][T14060] CPU: 1 PID: 14060 Comm: syz-executor.0 Not tainted 5.11.0-syzkaller #0 [ 224.041678][T14060] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 224.051814][T14060] Call Trace: [ 224.055082][T14060] dump_stack+0x116/0x15d [ 224.059419][T14060] should_fail+0x23c/0x250 [ 224.066596][T14060] should_fail_usercopy+0x16/0x20 [ 224.071618][T14060] iov_iter_copy_from_user_atomic+0x2c6/0x8f0 [ 224.077673][T14060] ? shmem_write_begin+0x83/0x100 [ 224.082764][T14060] generic_perform_write+0x1e4/0x3a0 [ 224.088034][T14060] __generic_file_write_iter+0x15c/0x340 [ 224.093649][T14060] ? generic_write_checks+0x250/0x290 [ 224.099002][T14060] generic_file_write_iter+0x75/0x130 [ 224.104394][T14060] vfs_write+0x6f0/0x7e0 [ 224.108617][T14060] __x64_sys_pwrite64+0xf5/0x150 [ 224.113538][T14060] do_syscall_64+0x39/0x80 [ 224.117937][T14060] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 224.123811][T14060] RIP: 0033:0x419437 [ 224.127740][T14060] Code: 08 89 3c 24 48 89 4c 24 18 e8 e5 f8 ff ff 4c 8b 54 24 18 48 8b 54 24 10 41 89 c0 48 8b 74 24 08 8b 3c 24 b8 12 00 00 00 0f 05 <48> 3d 00 f0 ff ff 77 31 44 89 c7 48 89 04 24 e8 15 f9 ff ff 48 8b [ 224.147333][T14060] RSP: 002b:00007f8175ef9f20 EFLAGS: 00000293 ORIG_RAX: 0000000000000012 [ 224.155727][T14060] RAX: ffffffffffffffda RBX: 00000000004af960 RCX: 0000000000419437 21:38:04 executing program 5: set_mempolicy(0x8003, &(0x7f0000000300)=0x75f, 0x9) open(&(0x7f0000000300)='.\x00', 0x0, 0x0) r0 = syz_open_procfs(0x0, &(0x7f00000000c0)='fd/3\x00') r1 = syz_open_dev$swradio(&(0x7f0000000100)='/dev/swradio#\x00', 0x0, 0x2) mount$9p_fd(0x700000000000000, &(0x7f0000000300)='.\x00', &(0x7f0000000080)='9p\x00', 0x0, &(0x7f0000000740)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}}) 21:38:04 executing program 2: set_mempolicy(0x8003, &(0x7f0000000300)=0x75f, 0x9) r0 = open(&(0x7f0000000300)='.\x00', 0x0, 0x0) symlinkat(&(0x7f0000000040)='\x13\x13w\xc5\xfc5\xd4\x14T\xd5\xd4\x1d)\xad\x1a`)Y\x81F\xe6\xbe\x16nA\xad\r\xbd@T\x03<\x9f3\xbb\xda\x82$\xa2\xf3\xd7r\xe7cnH\xb3<\xbfp\x83r\xe8\xf1\xb9\x93>\xc5\x12wC\xbe\"\x06 \x9e\xf0-\xf9\xcb\xf2\xf6\xe8\x80\xd38/\x00', r0, &(0x7f00000000c0)='./file0\x00') mkdirat(r0, &(0x7f0000000200)='\x13\x13w\xc5\xfc5\xd4\x14T\xd5\xd4\x1d)\xad\x1a`)Y\x81F\xe6\xbe\x16nA\xad\r\xbd@T\x03<\x9f3\xbb\xda\x82$\xa2\xf3\xd7r\xe7cnH\xb3<\xbfp\x83r\xe8\xf1\xb9\x93>\xc5\x12wC\xbe\"\x06 \x9e\xf0-\xf9\xcb\xf2\xf6\xe8\x80\xd38/\x00', 0x0) symlinkat(&(0x7f0000000340)='./file0/file0\x00', r0, &(0x7f0000000380)='\x13\x13w\xc5\xfc5\xd4\x14T\xd5\xd4\x1d)\xad\x1a`)Y\x81F\xe6\xbe\x16nA\xad\r\xbd@T\x03<\x9f3\xbb\xda\x82$\xa2\xf3\xd7r\xe7cnH\xb3<\xbfp\x83r\xe8\xf1\xb9\x93>\xc5\x12wC\xbe\"\x06 \x9e\xf0-\xf9\xcb\xf2\xf6\xe8\x80\xd38//file0\x00') r1 = open(&(0x7f0000000100)='.\x00', 0x0, 0x0) renameat2(r1, &(0x7f0000000400)='./file0/file0\x00', r1, &(0x7f0000000000)='./file0\x00', 0x6000000) [ 224.163687][T14060] RDX: 000000000000010c RSI: 0000000020010000 RDI: 0000000000000004 [ 224.171652][T14060] RBP: 0000000000000003 R08: 0000000000000000 R09: ffffffffffffffff [ 224.179627][T14060] R10: 0000000000000400 R11: 0000000000000293 R12: 0000000000000004 [ 224.187591][T14060] R13: 0000000000000004 R14: 0000000020000200 R15: 0000000000000000 21:38:04 executing program 4: set_mempolicy(0x8003, &(0x7f0000000300)=0x75f, 0x9) open(&(0x7f0000000300)='.\x00', 0x0, 0x0) r0 = syz_open_procfs(0x0, &(0x7f00000000c0)='fd/3\x00') r1 = syz_open_dev$swradio(&(0x7f0000000100)='/dev/swradio#\x00', 0x0, 0x2) mount$9p_fd(0x11000000, &(0x7f0000000300)='.\x00', &(0x7f0000000080)='9p\x00', 0x0, &(0x7f0000000740)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}}) 21:38:04 executing program 3: set_mempolicy(0x8003, &(0x7f0000000300)=0x75f, 0x9) open(&(0x7f0000000300)='.\x00', 0x0, 0x0) r0 = syz_open_procfs(0x0, &(0x7f00000000c0)='fd/3\x00') r1 = syz_open_dev$swradio(&(0x7f0000000100)='/dev/swradio#\x00', 0x0, 0x2) mount$9p_fd(0xffffff8c, &(0x7f0000000300)='.\x00', &(0x7f0000000080)='9p\x00', 0x0, &(0x7f0000000740)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}}) 21:38:04 executing program 1: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) r3 = syz_open_procfs(0x0, &(0x7f00000000c0)='fd/3\x00') mount$9p_fd(0xc0ed0000, &(0x7f0000000300)='.\x00', &(0x7f0000000080)='9p\x00', 0x0, &(0x7f00000003c0)={'trans=fd,', {'rfdno', 0x3d, r3}, 0x2c, {'wfdno', 0x3d, r2}}) 21:38:04 executing program 4: set_mempolicy(0x8003, &(0x7f0000000300)=0x75f, 0x9) open(&(0x7f0000000300)='.\x00', 0x0, 0x0) r0 = syz_open_procfs(0x0, &(0x7f00000000c0)='fd/3\x00') r1 = syz_open_dev$swradio(&(0x7f0000000100)='/dev/swradio#\x00', 0x0, 0x2) mount$9p_fd(0x12000000, &(0x7f0000000300)='.\x00', &(0x7f0000000080)='9p\x00', 0x0, &(0x7f0000000740)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}}) 21:38:04 executing program 2: set_mempolicy(0x8003, &(0x7f0000000300)=0x75f, 0x9) r0 = open(&(0x7f0000000300)='.\x00', 0x0, 0x0) symlinkat(&(0x7f0000000040)='\x13\x13w\xc5\xfc5\xd4\x14T\xd5\xd4\x1d)\xad\x1a`)Y\x81F\xe6\xbe\x16nA\xad\r\xbd@T\x03<\x9f3\xbb\xda\x82$\xa2\xf3\xd7r\xe7cnH\xb3<\xbfp\x83r\xe8\xf1\xb9\x93>\xc5\x12wC\xbe\"\x06 \x9e\xf0-\xf9\xcb\xf2\xf6\xe8\x80\xd38/\x00', r0, &(0x7f00000000c0)='./file0\x00') mkdirat(r0, &(0x7f0000000200)='\x13\x13w\xc5\xfc5\xd4\x14T\xd5\xd4\x1d)\xad\x1a`)Y\x81F\xe6\xbe\x16nA\xad\r\xbd@T\x03<\x9f3\xbb\xda\x82$\xa2\xf3\xd7r\xe7cnH\xb3<\xbfp\x83r\xe8\xf1\xb9\x93>\xc5\x12wC\xbe\"\x06 \x9e\xf0-\xf9\xcb\xf2\xf6\xe8\x80\xd38/\x00', 0x0) symlinkat(&(0x7f0000000340)='./file0/file0\x00', r0, &(0x7f0000000380)='\x13\x13w\xc5\xfc5\xd4\x14T\xd5\xd4\x1d)\xad\x1a`)Y\x81F\xe6\xbe\x16nA\xad\r\xbd@T\x03<\x9f3\xbb\xda\x82$\xa2\xf3\xd7r\xe7cnH\xb3<\xbfp\x83r\xe8\xf1\xb9\x93>\xc5\x12wC\xbe\"\x06 \x9e\xf0-\xf9\xcb\xf2\xf6\xe8\x80\xd38//file0\x00') r1 = open(&(0x7f0000000100)='.\x00', 0x0, 0x0) renameat2(r1, &(0x7f0000000400)='./file0/file0\x00', r1, &(0x7f0000000000)='./file0\x00', 0x7000000) 21:38:04 executing program 5: set_mempolicy(0x8003, &(0x7f0000000300)=0x75f, 0x9) open(&(0x7f0000000300)='.\x00', 0x0, 0x0) r0 = syz_open_procfs(0x0, &(0x7f00000000c0)='fd/3\x00') r1 = syz_open_dev$swradio(&(0x7f0000000100)='/dev/swradio#\x00', 0x0, 0x2) mount$9p_fd(0x800000000000000, &(0x7f0000000300)='.\x00', &(0x7f0000000080)='9p\x00', 0x0, &(0x7f0000000740)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}}) 21:38:04 executing program 3: set_mempolicy(0x8003, &(0x7f0000000300)=0x75f, 0x9) open(&(0x7f0000000300)='.\x00', 0x0, 0x0) r0 = syz_open_procfs(0x0, &(0x7f00000000c0)='fd/3\x00') r1 = syz_open_dev$swradio(&(0x7f0000000100)='/dev/swradio#\x00', 0x0, 0x2) mount$9p_fd(0xfffffff6, &(0x7f0000000300)='.\x00', &(0x7f0000000080)='9p\x00', 0x0, &(0x7f0000000740)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}}) 21:38:04 executing program 2: set_mempolicy(0x8003, &(0x7f0000000300)=0x75f, 0x9) r0 = open(&(0x7f0000000300)='.\x00', 0x0, 0x0) symlinkat(&(0x7f0000000040)='\x13\x13w\xc5\xfc5\xd4\x14T\xd5\xd4\x1d)\xad\x1a`)Y\x81F\xe6\xbe\x16nA\xad\r\xbd@T\x03<\x9f3\xbb\xda\x82$\xa2\xf3\xd7r\xe7cnH\xb3<\xbfp\x83r\xe8\xf1\xb9\x93>\xc5\x12wC\xbe\"\x06 \x9e\xf0-\xf9\xcb\xf2\xf6\xe8\x80\xd38/\x00', r0, &(0x7f00000000c0)='./file0\x00') mkdirat(r0, &(0x7f0000000200)='\x13\x13w\xc5\xfc5\xd4\x14T\xd5\xd4\x1d)\xad\x1a`)Y\x81F\xe6\xbe\x16nA\xad\r\xbd@T\x03<\x9f3\xbb\xda\x82$\xa2\xf3\xd7r\xe7cnH\xb3<\xbfp\x83r\xe8\xf1\xb9\x93>\xc5\x12wC\xbe\"\x06 \x9e\xf0-\xf9\xcb\xf2\xf6\xe8\x80\xd38/\x00', 0x0) symlinkat(&(0x7f0000000340)='./file0/file0\x00', r0, &(0x7f0000000380)='\x13\x13w\xc5\xfc5\xd4\x14T\xd5\xd4\x1d)\xad\x1a`)Y\x81F\xe6\xbe\x16nA\xad\r\xbd@T\x03<\x9f3\xbb\xda\x82$\xa2\xf3\xd7r\xe7cnH\xb3<\xbfp\x83r\xe8\xf1\xb9\x93>\xc5\x12wC\xbe\"\x06 \x9e\xf0-\xf9\xcb\xf2\xf6\xe8\x80\xd38//file0\x00') r1 = open(&(0x7f0000000100)='.\x00', 0x0, 0x0) renameat2(r1, &(0x7f0000000400)='./file0/file0\x00', r1, &(0x7f0000000000)='./file0\x00', 0x8000000) [ 224.329221][T14060] loop0: detected capacity change from 512 to 0 [ 224.338165][T14060] EXT4-fs (loop0): ext4_check_descriptors: Checksum for group 0 failed (38247!=0) [ 224.354140][T14060] EXT4-fs (loop0): group descriptors corrupted! 21:38:04 executing program 0 (fault-call:0 fault-nth:11): syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x40000, 0x3, &(0x7f0000000200)=[{&(0x7f0000010000)="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", 0x10c, 0x400}, {&(0x7f0000010200)="0500000000000000000000000000000000000000040100002b", 0x19, 0x560}, {&(0x7f0000010300)="000000000000000000000000000000000000000000000000000000001481910a040000001400000024", 0x29, 0x7e0}], 0x0, &(0x7f0000000040)={[{@usrjquota='usrjquota='}, {@data_err_abort='data_err=abort'}]}) 21:38:04 executing program 5: set_mempolicy(0x8003, &(0x7f0000000300)=0x75f, 0x9) open(&(0x7f0000000300)='.\x00', 0x0, 0x0) r0 = syz_open_procfs(0x0, &(0x7f00000000c0)='fd/3\x00') r1 = syz_open_dev$swradio(&(0x7f0000000100)='/dev/swradio#\x00', 0x0, 0x2) mount$9p_fd(0x900000000000000, &(0x7f0000000300)='.\x00', &(0x7f0000000080)='9p\x00', 0x0, &(0x7f0000000740)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}}) 21:38:04 executing program 4: set_mempolicy(0x8003, &(0x7f0000000300)=0x75f, 0x9) open(&(0x7f0000000300)='.\x00', 0x0, 0x0) r0 = syz_open_procfs(0x0, &(0x7f00000000c0)='fd/3\x00') r1 = syz_open_dev$swradio(&(0x7f0000000100)='/dev/swradio#\x00', 0x0, 0x2) mount$9p_fd(0x20100000, &(0x7f0000000300)='.\x00', &(0x7f0000000080)='9p\x00', 0x0, &(0x7f0000000740)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}}) 21:38:04 executing program 3: set_mempolicy(0x8003, &(0x7f0000000300)=0x75f, 0x9) open(&(0x7f0000000300)='.\x00', 0x0, 0x0) r0 = syz_open_procfs(0x0, &(0x7f00000000c0)='fd/3\x00') r1 = syz_open_dev$swradio(&(0x7f0000000100)='/dev/swradio#\x00', 0x0, 0x2) mount$9p_fd(0xfffffffe, &(0x7f0000000300)='.\x00', &(0x7f0000000080)='9p\x00', 0x0, &(0x7f0000000740)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}}) [ 224.483448][T14115] FAULT_INJECTION: forcing a failure. [ 224.483448][T14115] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 224.496572][T14115] CPU: 1 PID: 14115 Comm: syz-executor.0 Not tainted 5.11.0-syzkaller #0 [ 224.504985][T14115] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 224.515060][T14115] Call Trace: [ 224.518376][T14115] dump_stack+0x116/0x15d [ 224.522736][T14115] should_fail+0x23c/0x250 [ 224.527159][T14115] should_fail_usercopy+0x16/0x20 [ 224.532182][T14115] iov_iter_copy_from_user_atomic+0x2c6/0x8f0 [ 224.538328][T14115] ? shmem_write_begin+0x83/0x100 [ 224.543402][T14115] generic_perform_write+0x1e4/0x3a0 [ 224.548695][T14115] ? shmem_write_begin+0x100/0x100 [ 224.553868][T14115] __generic_file_write_iter+0x15c/0x340 [ 224.559515][T14115] ? generic_write_checks+0x250/0x290 [ 224.565218][T14115] generic_file_write_iter+0x75/0x130 [ 224.570612][T14115] vfs_write+0x6f0/0x7e0 [ 224.574848][T14115] __x64_sys_pwrite64+0xf5/0x150 [ 224.579795][T14115] do_syscall_64+0x39/0x80 [ 224.584202][T14115] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 224.590153][T14115] RIP: 0033:0x419437 [ 224.594066][T14115] Code: 08 89 3c 24 48 89 4c 24 18 e8 e5 f8 ff ff 4c 8b 54 24 18 48 8b 54 24 10 41 89 c0 48 8b 74 24 08 8b 3c 24 b8 12 00 00 00 0f 05 <48> 3d 00 f0 ff ff 77 31 44 89 c7 48 89 04 24 e8 15 f9 ff ff 48 8b [ 224.613703][T14115] RSP: 002b:00007f8175ef9f20 EFLAGS: 00000293 ORIG_RAX: 0000000000000012 [ 224.622172][T14115] RAX: ffffffffffffffda RBX: 00000000004af960 RCX: 0000000000419437 21:38:04 executing program 4: set_mempolicy(0x8003, &(0x7f0000000300)=0x75f, 0x9) open(&(0x7f0000000300)='.\x00', 0x0, 0x0) r0 = syz_open_procfs(0x0, &(0x7f00000000c0)='fd/3\x00') r1 = syz_open_dev$swradio(&(0x7f0000000100)='/dev/swradio#\x00', 0x0, 0x2) mount$9p_fd(0x25000000, &(0x7f0000000300)='.\x00', &(0x7f0000000080)='9p\x00', 0x0, &(0x7f0000000740)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}}) 21:38:04 executing program 1: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) r3 = syz_open_procfs(0x0, &(0x7f00000000c0)='fd/3\x00') mount$9p_fd(0xf6ffffff, &(0x7f0000000300)='.\x00', &(0x7f0000000080)='9p\x00', 0x0, &(0x7f00000003c0)={'trans=fd,', {'rfdno', 0x3d, r3}, 0x2c, {'wfdno', 0x3d, r2}}) 21:38:04 executing program 5: set_mempolicy(0x8003, &(0x7f0000000300)=0x75f, 0x9) open(&(0x7f0000000300)='.\x00', 0x0, 0x0) r0 = syz_open_procfs(0x0, &(0x7f00000000c0)='fd/3\x00') r1 = syz_open_dev$swradio(&(0x7f0000000100)='/dev/swradio#\x00', 0x0, 0x2) mount$9p_fd(0xa00000000000000, &(0x7f0000000300)='.\x00', &(0x7f0000000080)='9p\x00', 0x0, &(0x7f0000000740)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}}) [ 224.630137][T14115] RDX: 0000000000000019 RSI: 0000000020010200 RDI: 0000000000000004 [ 224.638090][T14115] RBP: 0000000000000003 R08: 0000000000000000 R09: ffffffffffffffff [ 224.646079][T14115] R10: 0000000000000560 R11: 0000000000000293 R12: 0000000000000004 [ 224.654039][T14115] R13: 0000000000000004 R14: 0000000020000218 R15: 0000000000000001 21:38:04 executing program 4: set_mempolicy(0x8003, &(0x7f0000000300)=0x75f, 0x9) open(&(0x7f0000000300)='.\x00', 0x0, 0x0) r0 = syz_open_procfs(0x0, &(0x7f00000000c0)='fd/3\x00') r1 = syz_open_dev$swradio(&(0x7f0000000100)='/dev/swradio#\x00', 0x0, 0x2) mount$9p_fd(0x40000000, &(0x7f0000000300)='.\x00', &(0x7f0000000080)='9p\x00', 0x0, &(0x7f0000000740)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}}) 21:38:04 executing program 3: set_mempolicy(0x8003, &(0x7f0000000300)=0x75f, 0x9) open(&(0x7f0000000300)='.\x00', 0x0, 0x0) r0 = syz_open_procfs(0x0, &(0x7f00000000c0)='fd/3\x00') r1 = syz_open_dev$swradio(&(0x7f0000000100)='/dev/swradio#\x00', 0x0, 0x2) mount$9p_fd(0x8000000000, &(0x7f0000000300)='.\x00', &(0x7f0000000080)='9p\x00', 0x0, &(0x7f0000000740)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}}) 21:38:04 executing program 2: set_mempolicy(0x8003, &(0x7f0000000300)=0x75f, 0x9) r0 = open(&(0x7f0000000300)='.\x00', 0x0, 0x0) symlinkat(&(0x7f0000000040)='\x13\x13w\xc5\xfc5\xd4\x14T\xd5\xd4\x1d)\xad\x1a`)Y\x81F\xe6\xbe\x16nA\xad\r\xbd@T\x03<\x9f3\xbb\xda\x82$\xa2\xf3\xd7r\xe7cnH\xb3<\xbfp\x83r\xe8\xf1\xb9\x93>\xc5\x12wC\xbe\"\x06 \x9e\xf0-\xf9\xcb\xf2\xf6\xe8\x80\xd38/\x00', r0, &(0x7f00000000c0)='./file0\x00') mkdirat(r0, &(0x7f0000000200)='\x13\x13w\xc5\xfc5\xd4\x14T\xd5\xd4\x1d)\xad\x1a`)Y\x81F\xe6\xbe\x16nA\xad\r\xbd@T\x03<\x9f3\xbb\xda\x82$\xa2\xf3\xd7r\xe7cnH\xb3<\xbfp\x83r\xe8\xf1\xb9\x93>\xc5\x12wC\xbe\"\x06 \x9e\xf0-\xf9\xcb\xf2\xf6\xe8\x80\xd38/\x00', 0x0) symlinkat(&(0x7f0000000340)='./file0/file0\x00', r0, &(0x7f0000000380)='\x13\x13w\xc5\xfc5\xd4\x14T\xd5\xd4\x1d)\xad\x1a`)Y\x81F\xe6\xbe\x16nA\xad\r\xbd@T\x03<\x9f3\xbb\xda\x82$\xa2\xf3\xd7r\xe7cnH\xb3<\xbfp\x83r\xe8\xf1\xb9\x93>\xc5\x12wC\xbe\"\x06 \x9e\xf0-\xf9\xcb\xf2\xf6\xe8\x80\xd38//file0\x00') r1 = open(&(0x7f0000000100)='.\x00', 0x0, 0x0) renameat2(r1, &(0x7f0000000400)='./file0/file0\x00', r1, &(0x7f0000000000)='./file0\x00', 0x9000000) 21:38:04 executing program 4: set_mempolicy(0x8003, &(0x7f0000000300)=0x75f, 0x9) open(&(0x7f0000000300)='.\x00', 0x0, 0x0) r0 = syz_open_procfs(0x0, &(0x7f00000000c0)='fd/3\x00') r1 = syz_open_dev$swradio(&(0x7f0000000100)='/dev/swradio#\x00', 0x0, 0x2) mount$9p_fd(0x5c000000, &(0x7f0000000300)='.\x00', &(0x7f0000000080)='9p\x00', 0x0, &(0x7f0000000740)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}}) 21:38:04 executing program 5: set_mempolicy(0x8003, &(0x7f0000000300)=0x75f, 0x9) open(&(0x7f0000000300)='.\x00', 0x0, 0x0) r0 = syz_open_procfs(0x0, &(0x7f00000000c0)='fd/3\x00') r1 = syz_open_dev$swradio(&(0x7f0000000100)='/dev/swradio#\x00', 0x0, 0x2) mount$9p_fd(0xb00000000000000, &(0x7f0000000300)='.\x00', &(0x7f0000000080)='9p\x00', 0x0, &(0x7f0000000740)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}}) [ 224.860675][T14115] loop0: detected capacity change from 512 to 0 [ 224.870052][T14115] EXT4-fs (loop0): ext4_check_descriptors: Checksum for group 0 failed (38247!=0) [ 224.894799][T14115] EXT4-fs (loop0): group descriptors corrupted! 21:38:04 executing program 0 (fault-call:0 fault-nth:12): syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x40000, 0x3, &(0x7f0000000200)=[{&(0x7f0000010000)="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", 0x10c, 0x400}, {&(0x7f0000010200)="0500000000000000000000000000000000000000040100002b", 0x19, 0x560}, {&(0x7f0000010300)="000000000000000000000000000000000000000000000000000000001481910a040000001400000024", 0x29, 0x7e0}], 0x0, &(0x7f0000000040)={[{@usrjquota='usrjquota='}, {@data_err_abort='data_err=abort'}]}) 21:38:04 executing program 3: set_mempolicy(0x8003, &(0x7f0000000300)=0x75f, 0x9) open(&(0x7f0000000300)='.\x00', 0x0, 0x0) r0 = syz_open_procfs(0x0, &(0x7f00000000c0)='fd/3\x00') r1 = syz_open_dev$swradio(&(0x7f0000000100)='/dev/swradio#\x00', 0x0, 0x2) mount$9p_fd(0xedc000000000, &(0x7f0000000300)='.\x00', &(0x7f0000000080)='9p\x00', 0x0, &(0x7f0000000740)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}}) 21:38:04 executing program 2: set_mempolicy(0x8003, &(0x7f0000000300)=0x75f, 0x9) r0 = open(&(0x7f0000000300)='.\x00', 0x0, 0x0) symlinkat(&(0x7f0000000040)='\x13\x13w\xc5\xfc5\xd4\x14T\xd5\xd4\x1d)\xad\x1a`)Y\x81F\xe6\xbe\x16nA\xad\r\xbd@T\x03<\x9f3\xbb\xda\x82$\xa2\xf3\xd7r\xe7cnH\xb3<\xbfp\x83r\xe8\xf1\xb9\x93>\xc5\x12wC\xbe\"\x06 \x9e\xf0-\xf9\xcb\xf2\xf6\xe8\x80\xd38/\x00', r0, &(0x7f00000000c0)='./file0\x00') mkdirat(r0, &(0x7f0000000200)='\x13\x13w\xc5\xfc5\xd4\x14T\xd5\xd4\x1d)\xad\x1a`)Y\x81F\xe6\xbe\x16nA\xad\r\xbd@T\x03<\x9f3\xbb\xda\x82$\xa2\xf3\xd7r\xe7cnH\xb3<\xbfp\x83r\xe8\xf1\xb9\x93>\xc5\x12wC\xbe\"\x06 \x9e\xf0-\xf9\xcb\xf2\xf6\xe8\x80\xd38/\x00', 0x0) symlinkat(&(0x7f0000000340)='./file0/file0\x00', r0, &(0x7f0000000380)='\x13\x13w\xc5\xfc5\xd4\x14T\xd5\xd4\x1d)\xad\x1a`)Y\x81F\xe6\xbe\x16nA\xad\r\xbd@T\x03<\x9f3\xbb\xda\x82$\xa2\xf3\xd7r\xe7cnH\xb3<\xbfp\x83r\xe8\xf1\xb9\x93>\xc5\x12wC\xbe\"\x06 \x9e\xf0-\xf9\xcb\xf2\xf6\xe8\x80\xd38//file0\x00') r1 = open(&(0x7f0000000100)='.\x00', 0x0, 0x0) renameat2(r1, &(0x7f0000000400)='./file0/file0\x00', r1, &(0x7f0000000000)='./file0\x00', 0xa000000) 21:38:04 executing program 4: set_mempolicy(0x8003, &(0x7f0000000300)=0x75f, 0x9) open(&(0x7f0000000300)='.\x00', 0x0, 0x0) r0 = syz_open_procfs(0x0, &(0x7f00000000c0)='fd/3\x00') r1 = syz_open_dev$swradio(&(0x7f0000000100)='/dev/swradio#\x00', 0x0, 0x2) mount$9p_fd(0x8cffffff, &(0x7f0000000300)='.\x00', &(0x7f0000000080)='9p\x00', 0x0, &(0x7f0000000740)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}}) 21:38:04 executing program 5: set_mempolicy(0x8003, &(0x7f0000000300)=0x75f, 0x9) open(&(0x7f0000000300)='.\x00', 0x0, 0x0) r0 = syz_open_procfs(0x0, &(0x7f00000000c0)='fd/3\x00') r1 = syz_open_dev$swradio(&(0x7f0000000100)='/dev/swradio#\x00', 0x0, 0x2) mount$9p_fd(0xc00000000000000, &(0x7f0000000300)='.\x00', &(0x7f0000000080)='9p\x00', 0x0, &(0x7f0000000740)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}}) 21:38:04 executing program 1: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) r3 = syz_open_procfs(0x0, &(0x7f00000000c0)='fd/3\x00') mount$9p_fd(0xfeffffff, &(0x7f0000000300)='.\x00', &(0x7f0000000080)='9p\x00', 0x0, &(0x7f00000003c0)={'trans=fd,', {'rfdno', 0x3d, r3}, 0x2c, {'wfdno', 0x3d, r2}}) [ 224.995782][T14178] FAULT_INJECTION: forcing a failure. [ 224.995782][T14178] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 225.009791][T14178] CPU: 1 PID: 14178 Comm: syz-executor.0 Not tainted 5.11.0-syzkaller #0 [ 225.018196][T14178] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 225.028299][T14178] Call Trace: [ 225.031563][T14178] dump_stack+0x116/0x15d [ 225.035902][T14178] should_fail+0x23c/0x250 [ 225.040324][T14178] should_fail_usercopy+0x16/0x20 [ 225.045328][T14178] iov_iter_copy_from_user_atomic+0x2c6/0x8f0 [ 225.051432][T14178] ? shmem_write_begin+0x83/0x100 [ 225.056504][T14178] generic_perform_write+0x1e4/0x3a0 [ 225.061808][T14178] __generic_file_write_iter+0x15c/0x340 [ 225.067448][T14178] ? generic_write_checks+0x250/0x290 [ 225.072838][T14178] generic_file_write_iter+0x75/0x130 [ 225.078193][T14178] vfs_write+0x6f0/0x7e0 [ 225.082414][T14178] __x64_sys_pwrite64+0xf5/0x150 [ 225.088373][T14178] do_syscall_64+0x39/0x80 [ 225.092781][T14178] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 225.098655][T14178] RIP: 0033:0x419437 [ 225.102531][T14178] Code: 08 89 3c 24 48 89 4c 24 18 e8 e5 f8 ff ff 4c 8b 54 24 18 48 8b 54 24 10 41 89 c0 48 8b 74 24 08 8b 3c 24 b8 12 00 00 00 0f 05 <48> 3d 00 f0 ff ff 77 31 44 89 c7 48 89 04 24 e8 15 f9 ff ff 48 8b [ 225.122117][T14178] RSP: 002b:00007f8175ef9f20 EFLAGS: 00000293 ORIG_RAX: 0000000000000012 [ 225.130516][T14178] RAX: ffffffffffffffda RBX: 00000000004af960 RCX: 0000000000419437 [ 225.138517][T14178] RDX: 0000000000000029 RSI: 0000000020010300 RDI: 0000000000000004 21:38:05 executing program 3: set_mempolicy(0x8003, &(0x7f0000000300)=0x75f, 0x9) open(&(0x7f0000000300)='.\x00', 0x0, 0x0) r0 = syz_open_procfs(0x0, &(0x7f00000000c0)='fd/3\x00') r1 = syz_open_dev$swradio(&(0x7f0000000100)='/dev/swradio#\x00', 0x0, 0x2) mount$9p_fd(0x1000000000000, &(0x7f0000000300)='.\x00', &(0x7f0000000080)='9p\x00', 0x0, &(0x7f0000000740)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}}) [ 225.146511][T14178] RBP: 0000000000000003 R08: 0000000000000000 R09: ffffffffffffffff [ 225.154473][T14178] R10: 00000000000007e0 R11: 0000000000000293 R12: 0000000000000004 [ 225.162492][T14178] R13: 0000000000000004 R14: 0000000020000230 R15: 0000000000000002 21:38:05 executing program 2: set_mempolicy(0x8003, &(0x7f0000000300)=0x75f, 0x9) r0 = open(&(0x7f0000000300)='.\x00', 0x0, 0x0) symlinkat(&(0x7f0000000040)='\x13\x13w\xc5\xfc5\xd4\x14T\xd5\xd4\x1d)\xad\x1a`)Y\x81F\xe6\xbe\x16nA\xad\r\xbd@T\x03<\x9f3\xbb\xda\x82$\xa2\xf3\xd7r\xe7cnH\xb3<\xbfp\x83r\xe8\xf1\xb9\x93>\xc5\x12wC\xbe\"\x06 \x9e\xf0-\xf9\xcb\xf2\xf6\xe8\x80\xd38/\x00', r0, &(0x7f00000000c0)='./file0\x00') mkdirat(r0, &(0x7f0000000200)='\x13\x13w\xc5\xfc5\xd4\x14T\xd5\xd4\x1d)\xad\x1a`)Y\x81F\xe6\xbe\x16nA\xad\r\xbd@T\x03<\x9f3\xbb\xda\x82$\xa2\xf3\xd7r\xe7cnH\xb3<\xbfp\x83r\xe8\xf1\xb9\x93>\xc5\x12wC\xbe\"\x06 \x9e\xf0-\xf9\xcb\xf2\xf6\xe8\x80\xd38/\x00', 0x0) symlinkat(&(0x7f0000000340)='./file0/file0\x00', r0, &(0x7f0000000380)='\x13\x13w\xc5\xfc5\xd4\x14T\xd5\xd4\x1d)\xad\x1a`)Y\x81F\xe6\xbe\x16nA\xad\r\xbd@T\x03<\x9f3\xbb\xda\x82$\xa2\xf3\xd7r\xe7cnH\xb3<\xbfp\x83r\xe8\xf1\xb9\x93>\xc5\x12wC\xbe\"\x06 \x9e\xf0-\xf9\xcb\xf2\xf6\xe8\x80\xd38//file0\x00') r1 = open(&(0x7f0000000100)='.\x00', 0x0, 0x0) renameat2(r1, &(0x7f0000000400)='./file0/file0\x00', r1, &(0x7f0000000000)='./file0\x00', 0xb000000) 21:38:05 executing program 4: set_mempolicy(0x8003, &(0x7f0000000300)=0x75f, 0x9) open(&(0x7f0000000300)='.\x00', 0x0, 0x0) r0 = syz_open_procfs(0x0, &(0x7f00000000c0)='fd/3\x00') r1 = syz_open_dev$swradio(&(0x7f0000000100)='/dev/swradio#\x00', 0x0, 0x2) mount$9p_fd(0xc0ed0000, &(0x7f0000000300)='.\x00', &(0x7f0000000080)='9p\x00', 0x0, &(0x7f0000000740)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}}) 21:38:05 executing program 5: set_mempolicy(0x8003, &(0x7f0000000300)=0x75f, 0x9) open(&(0x7f0000000300)='.\x00', 0x0, 0x0) r0 = syz_open_procfs(0x0, &(0x7f00000000c0)='fd/3\x00') r1 = syz_open_dev$swradio(&(0x7f0000000100)='/dev/swradio#\x00', 0x0, 0x2) mount$9p_fd(0xd00000000000000, &(0x7f0000000300)='.\x00', &(0x7f0000000080)='9p\x00', 0x0, &(0x7f0000000740)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}}) 21:38:05 executing program 3: set_mempolicy(0x8003, &(0x7f0000000300)=0x75f, 0x9) open(&(0x7f0000000300)='.\x00', 0x0, 0x0) r0 = syz_open_procfs(0x0, &(0x7f00000000c0)='fd/3\x00') r1 = syz_open_dev$swradio(&(0x7f0000000100)='/dev/swradio#\x00', 0x0, 0x2) mount$9p_fd(0x40000000000000, &(0x7f0000000300)='.\x00', &(0x7f0000000080)='9p\x00', 0x0, &(0x7f0000000740)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}}) 21:38:05 executing program 4: set_mempolicy(0x8003, &(0x7f0000000300)=0x75f, 0x9) open(&(0x7f0000000300)='.\x00', 0x0, 0x0) r0 = syz_open_procfs(0x0, &(0x7f00000000c0)='fd/3\x00') r1 = syz_open_dev$swradio(&(0x7f0000000100)='/dev/swradio#\x00', 0x0, 0x2) mount$9p_fd(0xf6ffffff, &(0x7f0000000300)='.\x00', &(0x7f0000000080)='9p\x00', 0x0, &(0x7f0000000740)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}}) [ 225.326417][T14178] loop0: detected capacity change from 512 to 0 [ 225.336718][T14178] EXT4-fs (loop0): ext4_check_descriptors: Checksum for group 0 failed (38247!=0) [ 225.351049][T14178] EXT4-fs (loop0): group descriptors corrupted! 21:38:05 executing program 0 (fault-call:0 fault-nth:13): syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x40000, 0x3, &(0x7f0000000200)=[{&(0x7f0000010000)="20000000000100000c000000d90000000f0000000100000000000000000000000020000000200000200000002cc4645f2cc4645f0100ffff53ef0100010000002cc4645f000000000000000001000000000000000b0000008000000038000000c20200006b0400000000000000000000000000000000000073797a6b616c6c6572000000000000002f746d702f73797a2d696d61676567656e3338363633343038350000000000000000000000000000000000000000000000000000000000000000000000000000000000000000010000000000000000000000000000000000000000000000000000000000d9ca5cac99fd4329af4dde786c1a5d13010040000c000000000000002cc4645f", 0x10c, 0x400}, {&(0x7f0000010200)="0500000000000000000000000000000000000000040100002b", 0x19, 0x560}, {&(0x7f0000010300)="000000000000000000000000000000000000000000000000000000001481910a040000001400000024", 0x29, 0x7e0}], 0x0, &(0x7f0000000040)={[{@usrjquota='usrjquota='}, {@data_err_abort='data_err=abort'}]}) 21:38:05 executing program 5: set_mempolicy(0x8003, &(0x7f0000000300)=0x75f, 0x9) open(&(0x7f0000000300)='.\x00', 0x0, 0x0) r0 = syz_open_procfs(0x0, &(0x7f00000000c0)='fd/3\x00') r1 = syz_open_dev$swradio(&(0x7f0000000100)='/dev/swradio#\x00', 0x0, 0x2) mount$9p_fd(0xe00000000000000, &(0x7f0000000300)='.\x00', &(0x7f0000000080)='9p\x00', 0x0, &(0x7f0000000740)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}}) 21:38:05 executing program 1: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) r3 = syz_open_procfs(0x0, &(0x7f00000000c0)='fd/3\x00') mount$9p_fd(0xff000000, &(0x7f0000000300)='.\x00', &(0x7f0000000080)='9p\x00', 0x0, &(0x7f00000003c0)={'trans=fd,', {'rfdno', 0x3d, r3}, 0x2c, {'wfdno', 0x3d, r2}}) 21:38:05 executing program 2: set_mempolicy(0x8003, &(0x7f0000000300)=0x75f, 0x9) r0 = open(&(0x7f0000000300)='.\x00', 0x0, 0x0) symlinkat(&(0x7f0000000040)='\x13\x13w\xc5\xfc5\xd4\x14T\xd5\xd4\x1d)\xad\x1a`)Y\x81F\xe6\xbe\x16nA\xad\r\xbd@T\x03<\x9f3\xbb\xda\x82$\xa2\xf3\xd7r\xe7cnH\xb3<\xbfp\x83r\xe8\xf1\xb9\x93>\xc5\x12wC\xbe\"\x06 \x9e\xf0-\xf9\xcb\xf2\xf6\xe8\x80\xd38/\x00', r0, &(0x7f00000000c0)='./file0\x00') mkdirat(r0, &(0x7f0000000200)='\x13\x13w\xc5\xfc5\xd4\x14T\xd5\xd4\x1d)\xad\x1a`)Y\x81F\xe6\xbe\x16nA\xad\r\xbd@T\x03<\x9f3\xbb\xda\x82$\xa2\xf3\xd7r\xe7cnH\xb3<\xbfp\x83r\xe8\xf1\xb9\x93>\xc5\x12wC\xbe\"\x06 \x9e\xf0-\xf9\xcb\xf2\xf6\xe8\x80\xd38/\x00', 0x0) symlinkat(&(0x7f0000000340)='./file0/file0\x00', r0, &(0x7f0000000380)='\x13\x13w\xc5\xfc5\xd4\x14T\xd5\xd4\x1d)\xad\x1a`)Y\x81F\xe6\xbe\x16nA\xad\r\xbd@T\x03<\x9f3\xbb\xda\x82$\xa2\xf3\xd7r\xe7cnH\xb3<\xbfp\x83r\xe8\xf1\xb9\x93>\xc5\x12wC\xbe\"\x06 \x9e\xf0-\xf9\xcb\xf2\xf6\xe8\x80\xd38//file0\x00') r1 = open(&(0x7f0000000100)='.\x00', 0x0, 0x0) renameat2(r1, &(0x7f0000000400)='./file0/file0\x00', r1, &(0x7f0000000000)='./file0\x00', 0xc000000) 21:38:05 executing program 3: set_mempolicy(0x8003, &(0x7f0000000300)=0x75f, 0x9) open(&(0x7f0000000300)='.\x00', 0x0, 0x0) r0 = syz_open_procfs(0x0, &(0x7f00000000c0)='fd/3\x00') r1 = syz_open_dev$swradio(&(0x7f0000000100)='/dev/swradio#\x00', 0x0, 0x2) mount$9p_fd(0xfeffff00000000, &(0x7f0000000300)='.\x00', &(0x7f0000000080)='9p\x00', 0x0, &(0x7f0000000740)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}}) 21:38:05 executing program 4: set_mempolicy(0x8003, &(0x7f0000000300)=0x75f, 0x9) open(&(0x7f0000000300)='.\x00', 0x0, 0x0) r0 = syz_open_procfs(0x0, &(0x7f00000000c0)='fd/3\x00') r1 = syz_open_dev$swradio(&(0x7f0000000100)='/dev/swradio#\x00', 0x0, 0x2) mount$9p_fd(0xfeffffff, &(0x7f0000000300)='.\x00', &(0x7f0000000080)='9p\x00', 0x0, &(0x7f0000000740)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}}) 21:38:05 executing program 2: set_mempolicy(0x8003, &(0x7f0000000300)=0x75f, 0x9) r0 = open(&(0x7f0000000300)='.\x00', 0x0, 0x0) symlinkat(&(0x7f0000000040)='\x13\x13w\xc5\xfc5\xd4\x14T\xd5\xd4\x1d)\xad\x1a`)Y\x81F\xe6\xbe\x16nA\xad\r\xbd@T\x03<\x9f3\xbb\xda\x82$\xa2\xf3\xd7r\xe7cnH\xb3<\xbfp\x83r\xe8\xf1\xb9\x93>\xc5\x12wC\xbe\"\x06 \x9e\xf0-\xf9\xcb\xf2\xf6\xe8\x80\xd38/\x00', r0, &(0x7f00000000c0)='./file0\x00') mkdirat(r0, &(0x7f0000000200)='\x13\x13w\xc5\xfc5\xd4\x14T\xd5\xd4\x1d)\xad\x1a`)Y\x81F\xe6\xbe\x16nA\xad\r\xbd@T\x03<\x9f3\xbb\xda\x82$\xa2\xf3\xd7r\xe7cnH\xb3<\xbfp\x83r\xe8\xf1\xb9\x93>\xc5\x12wC\xbe\"\x06 \x9e\xf0-\xf9\xcb\xf2\xf6\xe8\x80\xd38/\x00', 0x0) symlinkat(&(0x7f0000000340)='./file0/file0\x00', r0, &(0x7f0000000380)='\x13\x13w\xc5\xfc5\xd4\x14T\xd5\xd4\x1d)\xad\x1a`)Y\x81F\xe6\xbe\x16nA\xad\r\xbd@T\x03<\x9f3\xbb\xda\x82$\xa2\xf3\xd7r\xe7cnH\xb3<\xbfp\x83r\xe8\xf1\xb9\x93>\xc5\x12wC\xbe\"\x06 \x9e\xf0-\xf9\xcb\xf2\xf6\xe8\x80\xd38//file0\x00') r1 = open(&(0x7f0000000100)='.\x00', 0x0, 0x0) renameat2(r1, &(0x7f0000000400)='./file0/file0\x00', r1, &(0x7f0000000000)='./file0\x00', 0xd000000) 21:38:05 executing program 4: set_mempolicy(0x8003, &(0x7f0000000300)=0x75f, 0x9) open(&(0x7f0000000300)='.\x00', 0x0, 0x0) r0 = syz_open_procfs(0x0, &(0x7f00000000c0)='fd/3\x00') r1 = syz_open_dev$swradio(&(0x7f0000000100)='/dev/swradio#\x00', 0x0, 0x2) mount$9p_fd(0xff000000, &(0x7f0000000300)='.\x00', &(0x7f0000000080)='9p\x00', 0x0, &(0x7f0000000740)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}}) [ 225.467653][T14224] FAULT_INJECTION: forcing a failure. [ 225.467653][T14224] name failslab, interval 1, probability 0, space 0, times 0 [ 225.516144][T14224] CPU: 1 PID: 14224 Comm: syz-executor.0 Not tainted 5.11.0-syzkaller #0 [ 225.524588][T14224] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 225.534636][T14224] Call Trace: [ 225.537936][T14224] dump_stack+0x116/0x15d [ 225.542302][T14224] should_fail+0x23c/0x250 [ 225.546714][T14224] ? getname_flags+0x84/0x3d0 [ 225.551383][T14224] __should_failslab+0x81/0x90 [ 225.556144][T14224] should_failslab+0x5/0x20 [ 225.560710][T14224] kmem_cache_alloc+0x36/0x2e0 [ 225.565602][T14224] getname_flags+0x84/0x3d0 [ 225.570100][T14224] ? vfs_write+0x569/0x7e0 [ 225.574529][T14224] getname+0x15/0x20 [ 225.578457][T14224] do_sys_openat2+0x5b/0x250 [ 225.583106][T14224] __x64_sys_openat+0xef/0x110 [ 225.587866][T14224] do_syscall_64+0x39/0x80 [ 225.592288][T14224] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 225.600436][T14224] RIP: 0033:0x419384 [ 225.604428][T14224] Code: 84 00 00 00 00 00 44 89 54 24 0c e8 96 f9 ff ff 44 8b 54 24 0c 44 89 e2 48 89 ee 41 89 c0 bf 9c ff ff ff b8 01 01 00 00 0f 05 <48> 3d 00 f0 ff ff 77 34 44 89 c7 89 44 24 0c e8 c8 f9 ff ff 8b 44 [ 225.624053][T14224] RSP: 002b:00007f8175ef9ed0 EFLAGS: 00000293 ORIG_RAX: 0000000000000101 [ 225.632528][T14224] RAX: ffffffffffffffda RBX: 00000000004af960 RCX: 0000000000419384 [ 225.640502][T14224] RDX: 0000000000000002 RSI: 00007f8175efa000 RDI: 00000000ffffff9c [ 225.648585][T14224] RBP: 00007f8175efa000 R08: 0000000000000000 R09: ffffffffffffffff [ 225.656550][T14224] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000002 21:38:05 executing program 3: set_mempolicy(0x8003, &(0x7f0000000300)=0x75f, 0x9) open(&(0x7f0000000300)='.\x00', 0x0, 0x0) r0 = syz_open_procfs(0x0, &(0x7f00000000c0)='fd/3\x00') r1 = syz_open_dev$swradio(&(0x7f0000000100)='/dev/swradio#\x00', 0x0, 0x2) mount$9p_fd(0x100000000000000, &(0x7f0000000300)='.\x00', &(0x7f0000000080)='9p\x00', 0x0, &(0x7f0000000740)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}}) 21:38:05 executing program 5: set_mempolicy(0x8003, &(0x7f0000000300)=0x75f, 0x9) open(&(0x7f0000000300)='.\x00', 0x0, 0x0) r0 = syz_open_procfs(0x0, &(0x7f00000000c0)='fd/3\x00') r1 = syz_open_dev$swradio(&(0x7f0000000100)='/dev/swradio#\x00', 0x0, 0x2) mount$9p_fd(0xfffffffffffffff, &(0x7f0000000300)='.\x00', &(0x7f0000000080)='9p\x00', 0x0, &(0x7f0000000740)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}}) [ 225.664573][T14224] R13: 0000000000000004 R14: 0000000020000248 R15: 0000000000000003 21:38:05 executing program 1: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) r3 = syz_open_procfs(0x0, &(0x7f00000000c0)='fd/3\x00') mount$9p_fd(0xffff0000, &(0x7f0000000300)='.\x00', &(0x7f0000000080)='9p\x00', 0x0, &(0x7f00000003c0)={'trans=fd,', {'rfdno', 0x3d, r3}, 0x2c, {'wfdno', 0x3d, r2}}) 21:38:05 executing program 2: set_mempolicy(0x8003, &(0x7f0000000300)=0x75f, 0x9) r0 = open(&(0x7f0000000300)='.\x00', 0x0, 0x0) symlinkat(&(0x7f0000000040)='\x13\x13w\xc5\xfc5\xd4\x14T\xd5\xd4\x1d)\xad\x1a`)Y\x81F\xe6\xbe\x16nA\xad\r\xbd@T\x03<\x9f3\xbb\xda\x82$\xa2\xf3\xd7r\xe7cnH\xb3<\xbfp\x83r\xe8\xf1\xb9\x93>\xc5\x12wC\xbe\"\x06 \x9e\xf0-\xf9\xcb\xf2\xf6\xe8\x80\xd38/\x00', r0, &(0x7f00000000c0)='./file0\x00') mkdirat(r0, &(0x7f0000000200)='\x13\x13w\xc5\xfc5\xd4\x14T\xd5\xd4\x1d)\xad\x1a`)Y\x81F\xe6\xbe\x16nA\xad\r\xbd@T\x03<\x9f3\xbb\xda\x82$\xa2\xf3\xd7r\xe7cnH\xb3<\xbfp\x83r\xe8\xf1\xb9\x93>\xc5\x12wC\xbe\"\x06 \x9e\xf0-\xf9\xcb\xf2\xf6\xe8\x80\xd38/\x00', 0x0) symlinkat(&(0x7f0000000340)='./file0/file0\x00', r0, &(0x7f0000000380)='\x13\x13w\xc5\xfc5\xd4\x14T\xd5\xd4\x1d)\xad\x1a`)Y\x81F\xe6\xbe\x16nA\xad\r\xbd@T\x03<\x9f3\xbb\xda\x82$\xa2\xf3\xd7r\xe7cnH\xb3<\xbfp\x83r\xe8\xf1\xb9\x93>\xc5\x12wC\xbe\"\x06 \x9e\xf0-\xf9\xcb\xf2\xf6\xe8\x80\xd38//file0\x00') r1 = open(&(0x7f0000000100)='.\x00', 0x0, 0x0) renameat2(r1, &(0x7f0000000400)='./file0/file0\x00', r1, &(0x7f0000000000)='./file0\x00', 0xe000000) 21:38:05 executing program 0 (fault-call:0 fault-nth:14): syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x40000, 0x3, &(0x7f0000000200)=[{&(0x7f0000010000)="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", 0x10c, 0x400}, {&(0x7f0000010200)="0500000000000000000000000000000000000000040100002b", 0x19, 0x560}, {&(0x7f0000010300)="000000000000000000000000000000000000000000000000000000001481910a040000001400000024", 0x29, 0x7e0}], 0x0, &(0x7f0000000040)={[{@usrjquota='usrjquota='}, {@data_err_abort='data_err=abort'}]}) 21:38:05 executing program 3: set_mempolicy(0x8003, &(0x7f0000000300)=0x75f, 0x9) open(&(0x7f0000000300)='.\x00', 0x0, 0x0) r0 = syz_open_procfs(0x0, &(0x7f00000000c0)='fd/3\x00') r1 = syz_open_dev$swradio(&(0x7f0000000100)='/dev/swradio#\x00', 0x0, 0x2) mount$9p_fd(0x200000000000000, &(0x7f0000000300)='.\x00', &(0x7f0000000080)='9p\x00', 0x0, &(0x7f0000000740)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}}) 21:38:05 executing program 4: set_mempolicy(0x8003, &(0x7f0000000300)=0x75f, 0x9) open(&(0x7f0000000300)='.\x00', 0x0, 0x0) r0 = syz_open_procfs(0x0, &(0x7f00000000c0)='fd/3\x00') r1 = syz_open_dev$swradio(&(0x7f0000000100)='/dev/swradio#\x00', 0x0, 0x2) mount$9p_fd(0xff9f0000, &(0x7f0000000300)='.\x00', &(0x7f0000000080)='9p\x00', 0x0, &(0x7f0000000740)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}}) 21:38:05 executing program 5: set_mempolicy(0x8003, &(0x7f0000000300)=0x75f, 0x9) open(&(0x7f0000000300)='.\x00', 0x0, 0x0) r0 = syz_open_procfs(0x0, &(0x7f00000000c0)='fd/3\x00') r1 = syz_open_dev$swradio(&(0x7f0000000100)='/dev/swradio#\x00', 0x0, 0x2) mount$9p_fd(0x1000000000000000, &(0x7f0000000300)='.\x00', &(0x7f0000000080)='9p\x00', 0x0, &(0x7f0000000740)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}}) 21:38:05 executing program 1: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) r3 = syz_open_procfs(0x0, &(0x7f00000000c0)='fd/3\x00') mount$9p_fd(0xfffffe00, &(0x7f0000000300)='.\x00', &(0x7f0000000080)='9p\x00', 0x0, &(0x7f00000003c0)={'trans=fd,', {'rfdno', 0x3d, r3}, 0x2c, {'wfdno', 0x3d, r2}}) 21:38:05 executing program 2: set_mempolicy(0x8003, &(0x7f0000000300)=0x75f, 0x9) r0 = open(&(0x7f0000000300)='.\x00', 0x0, 0x0) symlinkat(&(0x7f0000000040)='\x13\x13w\xc5\xfc5\xd4\x14T\xd5\xd4\x1d)\xad\x1a`)Y\x81F\xe6\xbe\x16nA\xad\r\xbd@T\x03<\x9f3\xbb\xda\x82$\xa2\xf3\xd7r\xe7cnH\xb3<\xbfp\x83r\xe8\xf1\xb9\x93>\xc5\x12wC\xbe\"\x06 \x9e\xf0-\xf9\xcb\xf2\xf6\xe8\x80\xd38/\x00', r0, &(0x7f00000000c0)='./file0\x00') mkdirat(r0, &(0x7f0000000200)='\x13\x13w\xc5\xfc5\xd4\x14T\xd5\xd4\x1d)\xad\x1a`)Y\x81F\xe6\xbe\x16nA\xad\r\xbd@T\x03<\x9f3\xbb\xda\x82$\xa2\xf3\xd7r\xe7cnH\xb3<\xbfp\x83r\xe8\xf1\xb9\x93>\xc5\x12wC\xbe\"\x06 \x9e\xf0-\xf9\xcb\xf2\xf6\xe8\x80\xd38/\x00', 0x0) symlinkat(&(0x7f0000000340)='./file0/file0\x00', r0, &(0x7f0000000380)='\x13\x13w\xc5\xfc5\xd4\x14T\xd5\xd4\x1d)\xad\x1a`)Y\x81F\xe6\xbe\x16nA\xad\r\xbd@T\x03<\x9f3\xbb\xda\x82$\xa2\xf3\xd7r\xe7cnH\xb3<\xbfp\x83r\xe8\xf1\xb9\x93>\xc5\x12wC\xbe\"\x06 \x9e\xf0-\xf9\xcb\xf2\xf6\xe8\x80\xd38//file0\x00') r1 = open(&(0x7f0000000100)='.\x00', 0x0, 0x0) renameat2(r1, &(0x7f0000000400)='./file0/file0\x00', r1, &(0x7f0000000000)='./file0\x00', 0x10000000) 21:38:05 executing program 4: set_mempolicy(0x8003, &(0x7f0000000300)=0x75f, 0x9) open(&(0x7f0000000300)='.\x00', 0x0, 0x0) r0 = syz_open_procfs(0x0, &(0x7f00000000c0)='fd/3\x00') r1 = syz_open_dev$swradio(&(0x7f0000000100)='/dev/swradio#\x00', 0x0, 0x2) mount$9p_fd(0xffff0000, &(0x7f0000000300)='.\x00', &(0x7f0000000080)='9p\x00', 0x0, &(0x7f0000000740)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}}) [ 225.907661][T14276] FAULT_INJECTION: forcing a failure. [ 225.907661][T14276] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 225.978412][T14276] CPU: 1 PID: 14276 Comm: syz-executor.0 Not tainted 5.11.0-syzkaller #0 [ 225.986878][T14276] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 225.997054][T14276] Call Trace: [ 226.000408][T14276] dump_stack+0x116/0x15d [ 226.004785][T14276] should_fail+0x23c/0x250 [ 226.009271][T14276] should_fail_usercopy+0x16/0x20 [ 226.014643][T14276] strncpy_from_user+0x21/0x250 [ 226.019496][T14276] getname_flags+0xb8/0x3d0 [ 226.024004][T14276] ? vfs_write+0x569/0x7e0 [ 226.030413][T14276] getname+0x15/0x20 [ 226.034308][T14276] do_sys_openat2+0x5b/0x250 [ 226.038899][T14276] __x64_sys_openat+0xef/0x110 [ 226.043745][T14276] do_syscall_64+0x39/0x80 [ 226.048160][T14276] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 226.054235][T14276] RIP: 0033:0x419384 [ 226.058118][T14276] Code: 84 00 00 00 00 00 44 89 54 24 0c e8 96 f9 ff ff 44 8b 54 24 0c 44 89 e2 48 89 ee 41 89 c0 bf 9c ff ff ff b8 01 01 00 00 0f 05 <48> 3d 00 f0 ff ff 77 34 44 89 c7 89 44 24 0c e8 c8 f9 ff ff 8b 44 21:38:05 executing program 1: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) r3 = syz_open_procfs(0x0, &(0x7f00000000c0)='fd/3\x00') mount$9p_fd(0xffffff7f, &(0x7f0000000300)='.\x00', &(0x7f0000000080)='9p\x00', 0x0, &(0x7f00000003c0)={'trans=fd,', {'rfdno', 0x3d, r3}, 0x2c, {'wfdno', 0x3d, r2}}) 21:38:06 executing program 2: set_mempolicy(0x8003, &(0x7f0000000300)=0x75f, 0x9) r0 = open(&(0x7f0000000300)='.\x00', 0x0, 0x0) symlinkat(&(0x7f0000000040)='\x13\x13w\xc5\xfc5\xd4\x14T\xd5\xd4\x1d)\xad\x1a`)Y\x81F\xe6\xbe\x16nA\xad\r\xbd@T\x03<\x9f3\xbb\xda\x82$\xa2\xf3\xd7r\xe7cnH\xb3<\xbfp\x83r\xe8\xf1\xb9\x93>\xc5\x12wC\xbe\"\x06 \x9e\xf0-\xf9\xcb\xf2\xf6\xe8\x80\xd38/\x00', r0, &(0x7f00000000c0)='./file0\x00') mkdirat(r0, &(0x7f0000000200)='\x13\x13w\xc5\xfc5\xd4\x14T\xd5\xd4\x1d)\xad\x1a`)Y\x81F\xe6\xbe\x16nA\xad\r\xbd@T\x03<\x9f3\xbb\xda\x82$\xa2\xf3\xd7r\xe7cnH\xb3<\xbfp\x83r\xe8\xf1\xb9\x93>\xc5\x12wC\xbe\"\x06 \x9e\xf0-\xf9\xcb\xf2\xf6\xe8\x80\xd38/\x00', 0x0) symlinkat(&(0x7f0000000340)='./file0/file0\x00', r0, &(0x7f0000000380)='\x13\x13w\xc5\xfc5\xd4\x14T\xd5\xd4\x1d)\xad\x1a`)Y\x81F\xe6\xbe\x16nA\xad\r\xbd@T\x03<\x9f3\xbb\xda\x82$\xa2\xf3\xd7r\xe7cnH\xb3<\xbfp\x83r\xe8\xf1\xb9\x93>\xc5\x12wC\xbe\"\x06 \x9e\xf0-\xf9\xcb\xf2\xf6\xe8\x80\xd38//file0\x00') r1 = open(&(0x7f0000000100)='.\x00', 0x0, 0x0) renameat2(r1, &(0x7f0000000400)='./file0/file0\x00', r1, &(0x7f0000000000)='./file0\x00', 0x11000000) 21:38:06 executing program 4: set_mempolicy(0x8003, &(0x7f0000000300)=0x75f, 0x9) open(&(0x7f0000000300)='.\x00', 0x0, 0x0) r0 = syz_open_procfs(0x0, &(0x7f00000000c0)='fd/3\x00') r1 = syz_open_dev$swradio(&(0x7f0000000100)='/dev/swradio#\x00', 0x0, 0x2) mount$9p_fd(0xfffffe00, &(0x7f0000000300)='.\x00', &(0x7f0000000080)='9p\x00', 0x0, &(0x7f0000000740)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}}) 21:38:06 executing program 3: set_mempolicy(0x8003, &(0x7f0000000300)=0x75f, 0x9) open(&(0x7f0000000300)='.\x00', 0x0, 0x0) r0 = syz_open_procfs(0x0, &(0x7f00000000c0)='fd/3\x00') r1 = syz_open_dev$swradio(&(0x7f0000000100)='/dev/swradio#\x00', 0x0, 0x2) mount$9p_fd(0x300000000000000, &(0x7f0000000300)='.\x00', &(0x7f0000000080)='9p\x00', 0x0, &(0x7f0000000740)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}}) [ 226.077722][T14276] RSP: 002b:00007f8175ef9ed0 EFLAGS: 00000293 ORIG_RAX: 0000000000000101 [ 226.086137][T14276] RAX: ffffffffffffffda RBX: 00000000004af960 RCX: 0000000000419384 [ 226.094104][T14276] RDX: 0000000000000002 RSI: 00007f8175efa000 RDI: 00000000ffffff9c [ 226.102090][T14276] RBP: 00007f8175efa000 R08: 0000000000000000 R09: ffffffffffffffff [ 226.110054][T14276] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000002 [ 226.118022][T14276] R13: 0000000000000004 R14: 0000000020000248 R15: 0000000000000003 21:38:06 executing program 5: set_mempolicy(0x8003, &(0x7f0000000300)=0x75f, 0x9) open(&(0x7f0000000300)='.\x00', 0x0, 0x0) r0 = syz_open_procfs(0x0, &(0x7f00000000c0)='fd/3\x00') r1 = syz_open_dev$swradio(&(0x7f0000000100)='/dev/swradio#\x00', 0x0, 0x2) mount$9p_fd(0x1100000000000000, &(0x7f0000000300)='.\x00', &(0x7f0000000080)='9p\x00', 0x0, &(0x7f0000000740)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}}) 21:38:06 executing program 0 (fault-call:0 fault-nth:15): syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x40000, 0x3, &(0x7f0000000200)=[{&(0x7f0000010000)="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", 0x10c, 0x400}, {&(0x7f0000010200)="0500000000000000000000000000000000000000040100002b", 0x19, 0x560}, {&(0x7f0000010300)="000000000000000000000000000000000000000000000000000000001481910a040000001400000024", 0x29, 0x7e0}], 0x0, &(0x7f0000000040)={[{@usrjquota='usrjquota='}, {@data_err_abort='data_err=abort'}]}) 21:38:06 executing program 3: set_mempolicy(0x8003, &(0x7f0000000300)=0x75f, 0x9) open(&(0x7f0000000300)='.\x00', 0x0, 0x0) r0 = syz_open_procfs(0x0, &(0x7f00000000c0)='fd/3\x00') r1 = syz_open_dev$swradio(&(0x7f0000000100)='/dev/swradio#\x00', 0x0, 0x2) mount$9p_fd(0x400000000000000, &(0x7f0000000300)='.\x00', &(0x7f0000000080)='9p\x00', 0x0, &(0x7f0000000740)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}}) 21:38:06 executing program 2: set_mempolicy(0x8003, &(0x7f0000000300)=0x75f, 0x9) r0 = open(&(0x7f0000000300)='.\x00', 0x0, 0x0) symlinkat(&(0x7f0000000040)='\x13\x13w\xc5\xfc5\xd4\x14T\xd5\xd4\x1d)\xad\x1a`)Y\x81F\xe6\xbe\x16nA\xad\r\xbd@T\x03<\x9f3\xbb\xda\x82$\xa2\xf3\xd7r\xe7cnH\xb3<\xbfp\x83r\xe8\xf1\xb9\x93>\xc5\x12wC\xbe\"\x06 \x9e\xf0-\xf9\xcb\xf2\xf6\xe8\x80\xd38/\x00', r0, &(0x7f00000000c0)='./file0\x00') mkdirat(r0, &(0x7f0000000200)='\x13\x13w\xc5\xfc5\xd4\x14T\xd5\xd4\x1d)\xad\x1a`)Y\x81F\xe6\xbe\x16nA\xad\r\xbd@T\x03<\x9f3\xbb\xda\x82$\xa2\xf3\xd7r\xe7cnH\xb3<\xbfp\x83r\xe8\xf1\xb9\x93>\xc5\x12wC\xbe\"\x06 \x9e\xf0-\xf9\xcb\xf2\xf6\xe8\x80\xd38/\x00', 0x0) symlinkat(&(0x7f0000000340)='./file0/file0\x00', r0, &(0x7f0000000380)='\x13\x13w\xc5\xfc5\xd4\x14T\xd5\xd4\x1d)\xad\x1a`)Y\x81F\xe6\xbe\x16nA\xad\r\xbd@T\x03<\x9f3\xbb\xda\x82$\xa2\xf3\xd7r\xe7cnH\xb3<\xbfp\x83r\xe8\xf1\xb9\x93>\xc5\x12wC\xbe\"\x06 \x9e\xf0-\xf9\xcb\xf2\xf6\xe8\x80\xd38//file0\x00') r1 = open(&(0x7f0000000100)='.\x00', 0x0, 0x0) renameat2(r1, &(0x7f0000000400)='./file0/file0\x00', r1, &(0x7f0000000000)='./file0\x00', 0x12000000) 21:38:06 executing program 5: set_mempolicy(0x8003, &(0x7f0000000300)=0x75f, 0x9) open(&(0x7f0000000300)='.\x00', 0x0, 0x0) r0 = syz_open_procfs(0x0, &(0x7f00000000c0)='fd/3\x00') r1 = syz_open_dev$swradio(&(0x7f0000000100)='/dev/swradio#\x00', 0x0, 0x2) mount$9p_fd(0x1200000000000000, &(0x7f0000000300)='.\x00', &(0x7f0000000080)='9p\x00', 0x0, &(0x7f0000000740)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}}) 21:38:06 executing program 1: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) r3 = syz_open_procfs(0x0, &(0x7f00000000c0)='fd/3\x00') mount$9p_fd(0xffffff8c, &(0x7f0000000300)='.\x00', &(0x7f0000000080)='9p\x00', 0x0, &(0x7f00000003c0)={'trans=fd,', {'rfdno', 0x3d, r3}, 0x2c, {'wfdno', 0x3d, r2}}) 21:38:06 executing program 4: set_mempolicy(0x8003, &(0x7f0000000300)=0x75f, 0x9) open(&(0x7f0000000300)='.\x00', 0x0, 0x0) r0 = syz_open_procfs(0x0, &(0x7f00000000c0)='fd/3\x00') r1 = syz_open_dev$swradio(&(0x7f0000000100)='/dev/swradio#\x00', 0x0, 0x2) mount$9p_fd(0xffffff8c, &(0x7f0000000300)='.\x00', &(0x7f0000000080)='9p\x00', 0x0, &(0x7f0000000740)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}}) [ 226.251721][T14322] FAULT_INJECTION: forcing a failure. [ 226.251721][T14322] name failslab, interval 1, probability 0, space 0, times 0 21:38:06 executing program 3: set_mempolicy(0x8003, &(0x7f0000000300)=0x75f, 0x9) open(&(0x7f0000000300)='.\x00', 0x0, 0x0) r0 = syz_open_procfs(0x0, &(0x7f00000000c0)='fd/3\x00') r1 = syz_open_dev$swradio(&(0x7f0000000100)='/dev/swradio#\x00', 0x0, 0x2) mount$9p_fd(0x500000000000000, &(0x7f0000000300)='.\x00', &(0x7f0000000080)='9p\x00', 0x0, &(0x7f0000000740)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}}) 21:38:06 executing program 2: set_mempolicy(0x8003, &(0x7f0000000300)=0x75f, 0x9) r0 = open(&(0x7f0000000300)='.\x00', 0x0, 0x0) symlinkat(&(0x7f0000000040)='\x13\x13w\xc5\xfc5\xd4\x14T\xd5\xd4\x1d)\xad\x1a`)Y\x81F\xe6\xbe\x16nA\xad\r\xbd@T\x03<\x9f3\xbb\xda\x82$\xa2\xf3\xd7r\xe7cnH\xb3<\xbfp\x83r\xe8\xf1\xb9\x93>\xc5\x12wC\xbe\"\x06 \x9e\xf0-\xf9\xcb\xf2\xf6\xe8\x80\xd38/\x00', r0, &(0x7f00000000c0)='./file0\x00') mkdirat(r0, &(0x7f0000000200)='\x13\x13w\xc5\xfc5\xd4\x14T\xd5\xd4\x1d)\xad\x1a`)Y\x81F\xe6\xbe\x16nA\xad\r\xbd@T\x03<\x9f3\xbb\xda\x82$\xa2\xf3\xd7r\xe7cnH\xb3<\xbfp\x83r\xe8\xf1\xb9\x93>\xc5\x12wC\xbe\"\x06 \x9e\xf0-\xf9\xcb\xf2\xf6\xe8\x80\xd38/\x00', 0x0) symlinkat(&(0x7f0000000340)='./file0/file0\x00', r0, &(0x7f0000000380)='\x13\x13w\xc5\xfc5\xd4\x14T\xd5\xd4\x1d)\xad\x1a`)Y\x81F\xe6\xbe\x16nA\xad\r\xbd@T\x03<\x9f3\xbb\xda\x82$\xa2\xf3\xd7r\xe7cnH\xb3<\xbfp\x83r\xe8\xf1\xb9\x93>\xc5\x12wC\xbe\"\x06 \x9e\xf0-\xf9\xcb\xf2\xf6\xe8\x80\xd38//file0\x00') r1 = open(&(0x7f0000000100)='.\x00', 0x0, 0x0) renameat2(r1, &(0x7f0000000400)='./file0/file0\x00', r1, &(0x7f0000000000)='./file0\x00', 0x12010000) [ 226.349750][T14322] CPU: 0 PID: 14322 Comm: syz-executor.0 Not tainted 5.11.0-syzkaller #0 [ 226.358196][T14322] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 226.368250][T14322] Call Trace: [ 226.371510][T14322] dump_stack+0x116/0x15d [ 226.375835][T14322] should_fail+0x23c/0x250 [ 226.380232][T14322] ? __alloc_file+0x2e/0x1a0 [ 226.384978][T14322] __should_failslab+0x81/0x90 [ 226.389742][T14322] should_failslab+0x5/0x20 [ 226.394624][T14322] kmem_cache_alloc+0x36/0x2e0 [ 226.399502][T14322] __alloc_file+0x2e/0x1a0 [ 226.403968][T14322] alloc_empty_file+0xcd/0x1c0 [ 226.408976][T14322] path_openat+0x6a/0x20a0 [ 226.413375][T14322] ? set_page_dirty+0x104/0x200 [ 226.418266][T14322] ? iov_iter_advance+0x1f1/0x880 [ 226.423273][T14322] ? shmem_write_begin+0x83/0x100 [ 226.428281][T14322] ? balance_dirty_pages_ratelimited+0xce/0x8b0 [ 226.434583][T14322] ? generic_perform_write+0x332/0x3a0 [ 226.440024][T14322] do_filp_open+0xbd/0x1d0 [ 226.444419][T14322] ? expand_files+0x55/0x510 [ 226.448988][T14322] ? __virt_addr_valid+0x15a/0x1a0 [ 226.454099][T14322] ? __check_object_size+0x253/0x310 [ 226.459371][T14322] ? _raw_spin_unlock+0x22/0x40 [ 226.464214][T14322] ? alloc_fd+0x35d/0x3b0 [ 226.468530][T14322] do_sys_openat2+0xa3/0x250 [ 226.473106][T14322] __x64_sys_openat+0xef/0x110 [ 226.477916][T14322] do_syscall_64+0x39/0x80 [ 226.482430][T14322] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 226.488310][T14322] RIP: 0033:0x419384 [ 226.492195][T14322] Code: 84 00 00 00 00 00 44 89 54 24 0c e8 96 f9 ff ff 44 8b 54 24 0c 44 89 e2 48 89 ee 41 89 c0 bf 9c ff ff ff b8 01 01 00 00 0f 05 <48> 3d 00 f0 ff ff 77 34 44 89 c7 89 44 24 0c e8 c8 f9 ff ff 8b 44 [ 226.511794][T14322] RSP: 002b:00007f8175ef9ed0 EFLAGS: 00000293 ORIG_RAX: 0000000000000101 [ 226.520184][T14322] RAX: ffffffffffffffda RBX: 00000000004af960 RCX: 0000000000419384 [ 226.528222][T14322] RDX: 0000000000000002 RSI: 00007f8175efa000 RDI: 00000000ffffff9c [ 226.536259][T14322] RBP: 00007f8175efa000 R08: 0000000000000000 R09: ffffffffffffffff 21:38:06 executing program 1: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) r3 = syz_open_procfs(0x0, &(0x7f00000000c0)='fd/3\x00') mount$9p_fd(0xfffffff6, &(0x7f0000000300)='.\x00', &(0x7f0000000080)='9p\x00', 0x0, &(0x7f00000003c0)={'trans=fd,', {'rfdno', 0x3d, r3}, 0x2c, {'wfdno', 0x3d, r2}}) 21:38:06 executing program 3: set_mempolicy(0x8003, &(0x7f0000000300)=0x75f, 0x9) open(&(0x7f0000000300)='.\x00', 0x0, 0x0) r0 = syz_open_procfs(0x0, &(0x7f00000000c0)='fd/3\x00') r1 = syz_open_dev$swradio(&(0x7f0000000100)='/dev/swradio#\x00', 0x0, 0x2) mount$9p_fd(0x600000000000000, &(0x7f0000000300)='.\x00', &(0x7f0000000080)='9p\x00', 0x0, &(0x7f0000000740)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}}) [ 226.544729][T14322] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000002 [ 226.552744][T14322] R13: 0000000000000004 R14: 0000000020000248 R15: 0000000000000003 21:38:06 executing program 5: set_mempolicy(0x8003, &(0x7f0000000300)=0x75f, 0x9) open(&(0x7f0000000300)='.\x00', 0x0, 0x0) r0 = syz_open_procfs(0x0, &(0x7f00000000c0)='fd/3\x00') r1 = syz_open_dev$swradio(&(0x7f0000000100)='/dev/swradio#\x00', 0x0, 0x2) mount$9p_fd(0x2010000000000000, &(0x7f0000000300)='.\x00', &(0x7f0000000080)='9p\x00', 0x0, &(0x7f0000000740)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}}) 21:38:06 executing program 0 (fault-call:0 fault-nth:16): syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x40000, 0x3, &(0x7f0000000200)=[{&(0x7f0000010000)="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", 0x10c, 0x400}, {&(0x7f0000010200)="0500000000000000000000000000000000000000040100002b", 0x19, 0x560}, {&(0x7f0000010300)="000000000000000000000000000000000000000000000000000000001481910a040000001400000024", 0x29, 0x7e0}], 0x0, &(0x7f0000000040)={[{@usrjquota='usrjquota='}, {@data_err_abort='data_err=abort'}]}) 21:38:06 executing program 4: set_mempolicy(0x8003, &(0x7f0000000300)=0x75f, 0x9) open(&(0x7f0000000300)='.\x00', 0x0, 0x0) r0 = syz_open_procfs(0x0, &(0x7f00000000c0)='fd/3\x00') r1 = syz_open_dev$swradio(&(0x7f0000000100)='/dev/swradio#\x00', 0x0, 0x2) mount$9p_fd(0xfffffff6, &(0x7f0000000300)='.\x00', &(0x7f0000000080)='9p\x00', 0x0, &(0x7f0000000740)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}}) 21:38:06 executing program 2: set_mempolicy(0x8003, &(0x7f0000000300)=0x75f, 0x9) r0 = open(&(0x7f0000000300)='.\x00', 0x0, 0x0) symlinkat(&(0x7f0000000040)='\x13\x13w\xc5\xfc5\xd4\x14T\xd5\xd4\x1d)\xad\x1a`)Y\x81F\xe6\xbe\x16nA\xad\r\xbd@T\x03<\x9f3\xbb\xda\x82$\xa2\xf3\xd7r\xe7cnH\xb3<\xbfp\x83r\xe8\xf1\xb9\x93>\xc5\x12wC\xbe\"\x06 \x9e\xf0-\xf9\xcb\xf2\xf6\xe8\x80\xd38/\x00', r0, &(0x7f00000000c0)='./file0\x00') mkdirat(r0, &(0x7f0000000200)='\x13\x13w\xc5\xfc5\xd4\x14T\xd5\xd4\x1d)\xad\x1a`)Y\x81F\xe6\xbe\x16nA\xad\r\xbd@T\x03<\x9f3\xbb\xda\x82$\xa2\xf3\xd7r\xe7cnH\xb3<\xbfp\x83r\xe8\xf1\xb9\x93>\xc5\x12wC\xbe\"\x06 \x9e\xf0-\xf9\xcb\xf2\xf6\xe8\x80\xd38/\x00', 0x0) symlinkat(&(0x7f0000000340)='./file0/file0\x00', r0, &(0x7f0000000380)='\x13\x13w\xc5\xfc5\xd4\x14T\xd5\xd4\x1d)\xad\x1a`)Y\x81F\xe6\xbe\x16nA\xad\r\xbd@T\x03<\x9f3\xbb\xda\x82$\xa2\xf3\xd7r\xe7cnH\xb3<\xbfp\x83r\xe8\xf1\xb9\x93>\xc5\x12wC\xbe\"\x06 \x9e\xf0-\xf9\xcb\xf2\xf6\xe8\x80\xd38//file0\x00') r1 = open(&(0x7f0000000100)='.\x00', 0x0, 0x0) renameat2(r1, &(0x7f0000000400)='./file0/file0\x00', r1, &(0x7f0000000000)='./file0\x00', 0x20000000) [ 226.661348][T14358] FAULT_INJECTION: forcing a failure. [ 226.661348][T14358] name failslab, interval 1, probability 0, space 0, times 0 21:38:06 executing program 1: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) r3 = syz_open_procfs(0x0, &(0x7f00000000c0)='fd/3\x00') mount$9p_fd(0xfffffffe, &(0x7f0000000300)='.\x00', &(0x7f0000000080)='9p\x00', 0x0, &(0x7f00000003c0)={'trans=fd,', {'rfdno', 0x3d, r3}, 0x2c, {'wfdno', 0x3d, r2}}) 21:38:06 executing program 3: set_mempolicy(0x8003, &(0x7f0000000300)=0x75f, 0x9) open(&(0x7f0000000300)='.\x00', 0x0, 0x0) r0 = syz_open_procfs(0x0, &(0x7f00000000c0)='fd/3\x00') r1 = syz_open_dev$swradio(&(0x7f0000000100)='/dev/swradio#\x00', 0x0, 0x2) mount$9p_fd(0x700000000000000, &(0x7f0000000300)='.\x00', &(0x7f0000000080)='9p\x00', 0x0, &(0x7f0000000740)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}}) 21:38:06 executing program 4: set_mempolicy(0x8003, &(0x7f0000000300)=0x75f, 0x9) open(&(0x7f0000000300)='.\x00', 0x0, 0x0) r0 = syz_open_procfs(0x0, &(0x7f00000000c0)='fd/3\x00') r1 = syz_open_dev$swradio(&(0x7f0000000100)='/dev/swradio#\x00', 0x0, 0x2) mount$9p_fd(0xfffffffe, &(0x7f0000000300)='.\x00', &(0x7f0000000080)='9p\x00', 0x0, &(0x7f0000000740)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}}) [ 226.742585][T14358] CPU: 0 PID: 14358 Comm: syz-executor.0 Not tainted 5.11.0-syzkaller #0 [ 226.751103][T14358] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 226.761165][T14358] Call Trace: [ 226.764490][T14358] dump_stack+0x116/0x15d [ 226.768875][T14358] should_fail+0x23c/0x250 [ 226.773370][T14358] ? security_file_alloc+0x30/0x190 [ 226.778577][T14358] __should_failslab+0x81/0x90 [ 226.783341][T14358] should_failslab+0x5/0x20 [ 226.787835][T14358] kmem_cache_alloc+0x36/0x2e0 21:38:06 executing program 2: set_mempolicy(0x8003, &(0x7f0000000300)=0x75f, 0x9) r0 = open(&(0x7f0000000300)='.\x00', 0x0, 0x0) symlinkat(&(0x7f0000000040)='\x13\x13w\xc5\xfc5\xd4\x14T\xd5\xd4\x1d)\xad\x1a`)Y\x81F\xe6\xbe\x16nA\xad\r\xbd@T\x03<\x9f3\xbb\xda\x82$\xa2\xf3\xd7r\xe7cnH\xb3<\xbfp\x83r\xe8\xf1\xb9\x93>\xc5\x12wC\xbe\"\x06 \x9e\xf0-\xf9\xcb\xf2\xf6\xe8\x80\xd38/\x00', r0, &(0x7f00000000c0)='./file0\x00') mkdirat(r0, &(0x7f0000000200)='\x13\x13w\xc5\xfc5\xd4\x14T\xd5\xd4\x1d)\xad\x1a`)Y\x81F\xe6\xbe\x16nA\xad\r\xbd@T\x03<\x9f3\xbb\xda\x82$\xa2\xf3\xd7r\xe7cnH\xb3<\xbfp\x83r\xe8\xf1\xb9\x93>\xc5\x12wC\xbe\"\x06 \x9e\xf0-\xf9\xcb\xf2\xf6\xe8\x80\xd38/\x00', 0x0) symlinkat(&(0x7f0000000340)='./file0/file0\x00', r0, &(0x7f0000000380)='\x13\x13w\xc5\xfc5\xd4\x14T\xd5\xd4\x1d)\xad\x1a`)Y\x81F\xe6\xbe\x16nA\xad\r\xbd@T\x03<\x9f3\xbb\xda\x82$\xa2\xf3\xd7r\xe7cnH\xb3<\xbfp\x83r\xe8\xf1\xb9\x93>\xc5\x12wC\xbe\"\x06 \x9e\xf0-\xf9\xcb\xf2\xf6\xe8\x80\xd38//file0\x00') r1 = open(&(0x7f0000000100)='.\x00', 0x0, 0x0) renameat2(r1, &(0x7f0000000400)='./file0/file0\x00', r1, &(0x7f0000000000)='./file0\x00', 0x25000000) [ 226.792590][T14358] ? __alloc_file+0x2e/0x1a0 [ 226.797180][T14358] security_file_alloc+0x30/0x190 [ 226.802280][T14358] __alloc_file+0x83/0x1a0 [ 226.806703][T14358] alloc_empty_file+0xcd/0x1c0 [ 226.811465][T14358] path_openat+0x6a/0x20a0 [ 226.815884][T14358] ? set_page_dirty+0x104/0x200 [ 226.820796][T14358] ? iov_iter_advance+0x1f1/0x880 [ 226.825906][T14358] ? shmem_write_begin+0x83/0x100 [ 226.830931][T14358] ? balance_dirty_pages_ratelimited+0xce/0x8b0 [ 226.837179][T14358] ? generic_perform_write+0x332/0x3a0 21:38:06 executing program 3: set_mempolicy(0x8003, &(0x7f0000000300)=0x75f, 0x9) open(&(0x7f0000000300)='.\x00', 0x0, 0x0) r0 = syz_open_procfs(0x0, &(0x7f00000000c0)='fd/3\x00') r1 = syz_open_dev$swradio(&(0x7f0000000100)='/dev/swradio#\x00', 0x0, 0x2) mount$9p_fd(0x800000000000000, &(0x7f0000000300)='.\x00', &(0x7f0000000080)='9p\x00', 0x0, &(0x7f0000000740)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}}) [ 226.842640][T14358] do_filp_open+0xbd/0x1d0 [ 226.847072][T14358] ? expand_files+0x55/0x510 [ 226.851716][T14358] ? __virt_addr_valid+0x15a/0x1a0 [ 226.856843][T14358] ? __check_object_size+0x253/0x310 [ 226.862279][T14358] ? _raw_spin_unlock+0x22/0x40 [ 226.867263][T14358] ? alloc_fd+0x35d/0x3b0 [ 226.871659][T14358] do_sys_openat2+0xa3/0x250 [ 226.876304][T14358] __x64_sys_openat+0xef/0x110 [ 226.881086][T14358] do_syscall_64+0x39/0x80 [ 226.885500][T14358] entry_SYSCALL_64_after_hwframe+0x44/0xa9 21:38:06 executing program 5: set_mempolicy(0x8003, &(0x7f0000000300)=0x75f, 0x9) open(&(0x7f0000000300)='.\x00', 0x0, 0x0) r0 = syz_open_procfs(0x0, &(0x7f00000000c0)='fd/3\x00') r1 = syz_open_dev$swradio(&(0x7f0000000100)='/dev/swradio#\x00', 0x0, 0x2) mount$9p_fd(0x2500000000000000, &(0x7f0000000300)='.\x00', &(0x7f0000000080)='9p\x00', 0x0, &(0x7f0000000740)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}}) [ 226.891388][T14358] RIP: 0033:0x419384 [ 226.895316][T14358] Code: 84 00 00 00 00 00 44 89 54 24 0c e8 96 f9 ff ff 44 8b 54 24 0c 44 89 e2 48 89 ee 41 89 c0 bf 9c ff ff ff b8 01 01 00 00 0f 05 <48> 3d 00 f0 ff ff 77 34 44 89 c7 89 44 24 0c e8 c8 f9 ff ff 8b 44 [ 226.914937][T14358] RSP: 002b:00007f8175ef9ed0 EFLAGS: 00000293 ORIG_RAX: 0000000000000101 [ 226.923368][T14358] RAX: ffffffffffffffda RBX: 00000000004af960 RCX: 0000000000419384 [ 226.931338][T14358] RDX: 0000000000000002 RSI: 00007f8175efa000 RDI: 00000000ffffff9c 21:38:06 executing program 4: set_mempolicy(0x8003, &(0x7f0000000300)=0x75f, 0x9) open(&(0x7f0000000300)='.\x00', 0x0, 0x0) r0 = syz_open_procfs(0x0, &(0x7f00000000c0)='fd/3\x00') r1 = syz_open_dev$swradio(&(0x7f0000000100)='/dev/swradio#\x00', 0x0, 0x2) mount$9p_fd(0x8000000000, &(0x7f0000000300)='.\x00', &(0x7f0000000080)='9p\x00', 0x0, &(0x7f0000000740)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}}) [ 226.939342][T14358] RBP: 00007f8175efa000 R08: 0000000000000000 R09: ffffffffffffffff [ 226.947304][T14358] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000002 [ 226.955265][T14358] R13: 0000000000000004 R14: 0000000020000248 R15: 0000000000000003 21:38:06 executing program 0 (fault-call:0 fault-nth:17): syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x40000, 0x3, &(0x7f0000000200)=[{&(0x7f0000010000)="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", 0x10c, 0x400}, {&(0x7f0000010200)="0500000000000000000000000000000000000000040100002b", 0x19, 0x560}, {&(0x7f0000010300)="000000000000000000000000000000000000000000000000000000001481910a040000001400000024", 0x29, 0x7e0}], 0x0, &(0x7f0000000040)={[{@usrjquota='usrjquota='}, {@data_err_abort='data_err=abort'}]}) 21:38:07 executing program 2: set_mempolicy(0x8003, &(0x7f0000000300)=0x75f, 0x9) r0 = open(&(0x7f0000000300)='.\x00', 0x0, 0x0) symlinkat(&(0x7f0000000040)='\x13\x13w\xc5\xfc5\xd4\x14T\xd5\xd4\x1d)\xad\x1a`)Y\x81F\xe6\xbe\x16nA\xad\r\xbd@T\x03<\x9f3\xbb\xda\x82$\xa2\xf3\xd7r\xe7cnH\xb3<\xbfp\x83r\xe8\xf1\xb9\x93>\xc5\x12wC\xbe\"\x06 \x9e\xf0-\xf9\xcb\xf2\xf6\xe8\x80\xd38/\x00', r0, &(0x7f00000000c0)='./file0\x00') mkdirat(r0, &(0x7f0000000200)='\x13\x13w\xc5\xfc5\xd4\x14T\xd5\xd4\x1d)\xad\x1a`)Y\x81F\xe6\xbe\x16nA\xad\r\xbd@T\x03<\x9f3\xbb\xda\x82$\xa2\xf3\xd7r\xe7cnH\xb3<\xbfp\x83r\xe8\xf1\xb9\x93>\xc5\x12wC\xbe\"\x06 \x9e\xf0-\xf9\xcb\xf2\xf6\xe8\x80\xd38/\x00', 0x0) symlinkat(&(0x7f0000000340)='./file0/file0\x00', r0, &(0x7f0000000380)='\x13\x13w\xc5\xfc5\xd4\x14T\xd5\xd4\x1d)\xad\x1a`)Y\x81F\xe6\xbe\x16nA\xad\r\xbd@T\x03<\x9f3\xbb\xda\x82$\xa2\xf3\xd7r\xe7cnH\xb3<\xbfp\x83r\xe8\xf1\xb9\x93>\xc5\x12wC\xbe\"\x06 \x9e\xf0-\xf9\xcb\xf2\xf6\xe8\x80\xd38//file0\x00') r1 = open(&(0x7f0000000100)='.\x00', 0x0, 0x0) renameat2(r1, &(0x7f0000000400)='./file0/file0\x00', r1, &(0x7f0000000000)='./file0\x00', 0x27000000) 21:38:07 executing program 3: set_mempolicy(0x8003, &(0x7f0000000300)=0x75f, 0x9) open(&(0x7f0000000300)='.\x00', 0x0, 0x0) r0 = syz_open_procfs(0x0, &(0x7f00000000c0)='fd/3\x00') r1 = syz_open_dev$swradio(&(0x7f0000000100)='/dev/swradio#\x00', 0x0, 0x2) mount$9p_fd(0x900000000000000, &(0x7f0000000300)='.\x00', &(0x7f0000000080)='9p\x00', 0x0, &(0x7f0000000740)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}}) 21:38:07 executing program 1: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) r3 = syz_open_procfs(0x0, &(0x7f00000000c0)='fd/3\x00') mount$9p_fd(0x8000000000, &(0x7f0000000300)='.\x00', &(0x7f0000000080)='9p\x00', 0x0, &(0x7f00000003c0)={'trans=fd,', {'rfdno', 0x3d, r3}, 0x2c, {'wfdno', 0x3d, r2}}) 21:38:07 executing program 5: set_mempolicy(0x8003, &(0x7f0000000300)=0x75f, 0x9) open(&(0x7f0000000300)='.\x00', 0x0, 0x0) r0 = syz_open_procfs(0x0, &(0x7f00000000c0)='fd/3\x00') r1 = syz_open_dev$swradio(&(0x7f0000000100)='/dev/swradio#\x00', 0x0, 0x2) mount$9p_fd(0x4000000000000000, &(0x7f0000000300)='.\x00', &(0x7f0000000080)='9p\x00', 0x0, &(0x7f0000000740)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}}) 21:38:07 executing program 4: set_mempolicy(0x8003, &(0x7f0000000300)=0x75f, 0x9) open(&(0x7f0000000300)='.\x00', 0x0, 0x0) r0 = syz_open_procfs(0x0, &(0x7f00000000c0)='fd/3\x00') r1 = syz_open_dev$swradio(&(0x7f0000000100)='/dev/swradio#\x00', 0x0, 0x2) mount$9p_fd(0xedc000000000, &(0x7f0000000300)='.\x00', &(0x7f0000000080)='9p\x00', 0x0, &(0x7f0000000740)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}}) 21:38:07 executing program 3: set_mempolicy(0x8003, &(0x7f0000000300)=0x75f, 0x9) open(&(0x7f0000000300)='.\x00', 0x0, 0x0) r0 = syz_open_procfs(0x0, &(0x7f00000000c0)='fd/3\x00') r1 = syz_open_dev$swradio(&(0x7f0000000100)='/dev/swradio#\x00', 0x0, 0x2) mount$9p_fd(0xa00000000000000, &(0x7f0000000300)='.\x00', &(0x7f0000000080)='9p\x00', 0x0, &(0x7f0000000740)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}}) 21:38:07 executing program 5: set_mempolicy(0x8003, &(0x7f0000000300)=0x75f, 0x9) open(&(0x7f0000000300)='.\x00', 0x0, 0x0) r0 = syz_open_procfs(0x0, &(0x7f00000000c0)='fd/3\x00') r1 = syz_open_dev$swradio(&(0x7f0000000100)='/dev/swradio#\x00', 0x0, 0x2) mount$9p_fd(0x5c00000000000000, &(0x7f0000000300)='.\x00', &(0x7f0000000080)='9p\x00', 0x0, &(0x7f0000000740)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}}) [ 227.126908][T14408] FAULT_INJECTION: forcing a failure. [ 227.126908][T14408] name failslab, interval 1, probability 0, space 0, times 0 [ 227.178760][T14408] CPU: 1 PID: 14408 Comm: syz-executor.0 Not tainted 5.11.0-syzkaller #0 [ 227.187211][T14408] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 227.197365][T14408] Call Trace: [ 227.200631][T14408] dump_stack+0x116/0x15d [ 227.204954][T14408] should_fail+0x23c/0x250 [ 227.209387][T14408] __should_failslab+0x81/0x90 [ 227.214829][T14408] ? tomoyo_realpath_from_path+0x98/0x3b0 [ 227.220538][T14408] should_failslab+0x5/0x20 [ 227.225045][T14408] __kmalloc+0x59/0x360 [ 227.229256][T14408] tomoyo_realpath_from_path+0x98/0x3b0 [ 227.234848][T14408] tomoyo_check_open_permission+0xaf/0x370 [ 227.240649][T14408] tomoyo_file_open+0xd3/0xf0 [ 227.245328][T14408] security_file_open+0x3f/0x90 [ 227.250188][T14408] do_dentry_open+0x22d/0x890 [ 227.254893][T14408] vfs_open+0x43/0x50 [ 227.258881][T14408] path_openat+0x1847/0x20a0 [ 227.263458][T14408] do_filp_open+0xbd/0x1d0 [ 227.267902][T14408] ? _raw_spin_unlock+0x22/0x40 [ 227.272791][T14408] ? alloc_fd+0x35d/0x3b0 [ 227.277126][T14408] do_sys_openat2+0xa3/0x250 [ 227.281791][T14408] __x64_sys_openat+0xef/0x110 [ 227.286548][T14408] do_syscall_64+0x39/0x80 [ 227.290946][T14408] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 227.296851][T14408] RIP: 0033:0x419384 [ 227.300743][T14408] Code: 84 00 00 00 00 00 44 89 54 24 0c e8 96 f9 ff ff 44 8b 54 24 0c 44 89 e2 48 89 ee 41 89 c0 bf 9c ff ff ff b8 01 01 00 00 0f 05 <48> 3d 00 f0 ff ff 77 34 44 89 c7 89 44 24 0c e8 c8 f9 ff ff 8b 44 [ 227.320513][T14408] RSP: 002b:00007f8175ef9ed0 EFLAGS: 00000293 ORIG_RAX: 0000000000000101 21:38:07 executing program 4: set_mempolicy(0x8003, &(0x7f0000000300)=0x75f, 0x9) open(&(0x7f0000000300)='.\x00', 0x0, 0x0) r0 = syz_open_procfs(0x0, &(0x7f00000000c0)='fd/3\x00') r1 = syz_open_dev$swradio(&(0x7f0000000100)='/dev/swradio#\x00', 0x0, 0x2) mount$9p_fd(0x1000000000000, &(0x7f0000000300)='.\x00', &(0x7f0000000080)='9p\x00', 0x0, &(0x7f0000000740)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}}) [ 227.328905][T14408] RAX: ffffffffffffffda RBX: 00000000004af960 RCX: 0000000000419384 [ 227.336856][T14408] RDX: 0000000000000002 RSI: 00007f8175efa000 RDI: 00000000ffffff9c [ 227.344876][T14408] RBP: 00007f8175efa000 R08: 0000000000000000 R09: ffffffffffffffff [ 227.352874][T14408] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000002 [ 227.360824][T14408] R13: 0000000000000004 R14: 0000000020000248 R15: 0000000000000003 21:38:07 executing program 5: set_mempolicy(0x8003, &(0x7f0000000300)=0x75f, 0x9) open(&(0x7f0000000300)='.\x00', 0x0, 0x0) r0 = syz_open_procfs(0x0, &(0x7f00000000c0)='fd/3\x00') r1 = syz_open_dev$swradio(&(0x7f0000000100)='/dev/swradio#\x00', 0x0, 0x2) mount$9p_fd(0x8cffffff00000000, &(0x7f0000000300)='.\x00', &(0x7f0000000080)='9p\x00', 0x0, &(0x7f0000000740)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}}) 21:38:07 executing program 2: set_mempolicy(0x8003, &(0x7f0000000300)=0x75f, 0x9) r0 = open(&(0x7f0000000300)='.\x00', 0x0, 0x0) symlinkat(&(0x7f0000000040)='\x13\x13w\xc5\xfc5\xd4\x14T\xd5\xd4\x1d)\xad\x1a`)Y\x81F\xe6\xbe\x16nA\xad\r\xbd@T\x03<\x9f3\xbb\xda\x82$\xa2\xf3\xd7r\xe7cnH\xb3<\xbfp\x83r\xe8\xf1\xb9\x93>\xc5\x12wC\xbe\"\x06 \x9e\xf0-\xf9\xcb\xf2\xf6\xe8\x80\xd38/\x00', r0, &(0x7f00000000c0)='./file0\x00') mkdirat(r0, &(0x7f0000000200)='\x13\x13w\xc5\xfc5\xd4\x14T\xd5\xd4\x1d)\xad\x1a`)Y\x81F\xe6\xbe\x16nA\xad\r\xbd@T\x03<\x9f3\xbb\xda\x82$\xa2\xf3\xd7r\xe7cnH\xb3<\xbfp\x83r\xe8\xf1\xb9\x93>\xc5\x12wC\xbe\"\x06 \x9e\xf0-\xf9\xcb\xf2\xf6\xe8\x80\xd38/\x00', 0x0) symlinkat(&(0x7f0000000340)='./file0/file0\x00', r0, &(0x7f0000000380)='\x13\x13w\xc5\xfc5\xd4\x14T\xd5\xd4\x1d)\xad\x1a`)Y\x81F\xe6\xbe\x16nA\xad\r\xbd@T\x03<\x9f3\xbb\xda\x82$\xa2\xf3\xd7r\xe7cnH\xb3<\xbfp\x83r\xe8\xf1\xb9\x93>\xc5\x12wC\xbe\"\x06 \x9e\xf0-\xf9\xcb\xf2\xf6\xe8\x80\xd38//file0\x00') r1 = open(&(0x7f0000000100)='.\x00', 0x0, 0x0) renameat2(r1, &(0x7f0000000400)='./file0/file0\x00', r1, &(0x7f0000000000)='./file0\x00', 0x2f000000) 21:38:07 executing program 1: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) r3 = syz_open_procfs(0x0, &(0x7f00000000c0)='fd/3\x00') mount$9p_fd(0xedc000000000, &(0x7f0000000300)='.\x00', &(0x7f0000000080)='9p\x00', 0x0, &(0x7f00000003c0)={'trans=fd,', {'rfdno', 0x3d, r3}, 0x2c, {'wfdno', 0x3d, r2}}) [ 227.395730][T14408] ERROR: Out of memory at tomoyo_realpath_from_path. [ 227.417159][T14408] loop0: detected capacity change from 512 to 0 [ 227.480777][T14408] EXT4-fs (loop0): ext4_check_descriptors: Checksum for group 0 failed (38247!=0) [ 227.501458][T14408] EXT4-fs (loop0): group descriptors corrupted! 21:38:07 executing program 0 (fault-call:0 fault-nth:18): syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x40000, 0x3, &(0x7f0000000200)=[{&(0x7f0000010000)="20000000000100000c000000d90000000f0000000100000000000000000000000020000000200000200000002cc4645f2cc4645f0100ffff53ef0100010000002cc4645f000000000000000001000000000000000b0000008000000038000000c20200006b0400000000000000000000000000000000000073797a6b616c6c6572000000000000002f746d702f73797a2d696d61676567656e3338363633343038350000000000000000000000000000000000000000000000000000000000000000000000000000000000000000010000000000000000000000000000000000000000000000000000000000d9ca5cac99fd4329af4dde786c1a5d13010040000c000000000000002cc4645f", 0x10c, 0x400}, {&(0x7f0000010200)="0500000000000000000000000000000000000000040100002b", 0x19, 0x560}, {&(0x7f0000010300)="000000000000000000000000000000000000000000000000000000001481910a040000001400000024", 0x29, 0x7e0}], 0x0, &(0x7f0000000040)={[{@usrjquota='usrjquota='}, {@data_err_abort='data_err=abort'}]}) 21:38:07 executing program 4: set_mempolicy(0x8003, &(0x7f0000000300)=0x75f, 0x9) open(&(0x7f0000000300)='.\x00', 0x0, 0x0) r0 = syz_open_procfs(0x0, &(0x7f00000000c0)='fd/3\x00') r1 = syz_open_dev$swradio(&(0x7f0000000100)='/dev/swradio#\x00', 0x0, 0x2) mount$9p_fd(0x40000000000000, &(0x7f0000000300)='.\x00', &(0x7f0000000080)='9p\x00', 0x0, &(0x7f0000000740)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}}) 21:38:07 executing program 3: set_mempolicy(0x8003, &(0x7f0000000300)=0x75f, 0x9) open(&(0x7f0000000300)='.\x00', 0x0, 0x0) r0 = syz_open_procfs(0x0, &(0x7f00000000c0)='fd/3\x00') r1 = syz_open_dev$swradio(&(0x7f0000000100)='/dev/swradio#\x00', 0x0, 0x2) mount$9p_fd(0xb00000000000000, &(0x7f0000000300)='.\x00', &(0x7f0000000080)='9p\x00', 0x0, &(0x7f0000000740)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}}) 21:38:07 executing program 5: set_mempolicy(0x8003, &(0x7f0000000300)=0x75f, 0x9) open(&(0x7f0000000300)='.\x00', 0x0, 0x0) r0 = syz_open_procfs(0x0, &(0x7f00000000c0)='fd/3\x00') r1 = syz_open_dev$swradio(&(0x7f0000000100)='/dev/swradio#\x00', 0x0, 0x2) mount$9p_fd(0xf6ffffff00000000, &(0x7f0000000300)='.\x00', &(0x7f0000000080)='9p\x00', 0x0, &(0x7f0000000740)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}}) 21:38:07 executing program 2: set_mempolicy(0x8003, &(0x7f0000000300)=0x75f, 0x9) r0 = open(&(0x7f0000000300)='.\x00', 0x0, 0x0) symlinkat(&(0x7f0000000040)='\x13\x13w\xc5\xfc5\xd4\x14T\xd5\xd4\x1d)\xad\x1a`)Y\x81F\xe6\xbe\x16nA\xad\r\xbd@T\x03<\x9f3\xbb\xda\x82$\xa2\xf3\xd7r\xe7cnH\xb3<\xbfp\x83r\xe8\xf1\xb9\x93>\xc5\x12wC\xbe\"\x06 \x9e\xf0-\xf9\xcb\xf2\xf6\xe8\x80\xd38/\x00', r0, &(0x7f00000000c0)='./file0\x00') mkdirat(r0, &(0x7f0000000200)='\x13\x13w\xc5\xfc5\xd4\x14T\xd5\xd4\x1d)\xad\x1a`)Y\x81F\xe6\xbe\x16nA\xad\r\xbd@T\x03<\x9f3\xbb\xda\x82$\xa2\xf3\xd7r\xe7cnH\xb3<\xbfp\x83r\xe8\xf1\xb9\x93>\xc5\x12wC\xbe\"\x06 \x9e\xf0-\xf9\xcb\xf2\xf6\xe8\x80\xd38/\x00', 0x0) symlinkat(&(0x7f0000000340)='./file0/file0\x00', r0, &(0x7f0000000380)='\x13\x13w\xc5\xfc5\xd4\x14T\xd5\xd4\x1d)\xad\x1a`)Y\x81F\xe6\xbe\x16nA\xad\r\xbd@T\x03<\x9f3\xbb\xda\x82$\xa2\xf3\xd7r\xe7cnH\xb3<\xbfp\x83r\xe8\xf1\xb9\x93>\xc5\x12wC\xbe\"\x06 \x9e\xf0-\xf9\xcb\xf2\xf6\xe8\x80\xd38//file0\x00') r1 = open(&(0x7f0000000100)='.\x00', 0x0, 0x0) renameat2(r1, &(0x7f0000000400)='./file0/file0\x00', r1, &(0x7f0000000000)='./file0\x00', 0x3f000000) 21:38:07 executing program 1: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) r3 = syz_open_procfs(0x0, &(0x7f00000000c0)='fd/3\x00') mount$9p_fd(0x1000000000000, &(0x7f0000000300)='.\x00', &(0x7f0000000080)='9p\x00', 0x0, &(0x7f00000003c0)={'trans=fd,', {'rfdno', 0x3d, r3}, 0x2c, {'wfdno', 0x3d, r2}}) 21:38:07 executing program 4: set_mempolicy(0x8003, &(0x7f0000000300)=0x75f, 0x9) open(&(0x7f0000000300)='.\x00', 0x0, 0x0) r0 = syz_open_procfs(0x0, &(0x7f00000000c0)='fd/3\x00') r1 = syz_open_dev$swradio(&(0x7f0000000100)='/dev/swradio#\x00', 0x0, 0x2) mount$9p_fd(0xfeffff00000000, &(0x7f0000000300)='.\x00', &(0x7f0000000080)='9p\x00', 0x0, &(0x7f0000000740)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}}) 21:38:07 executing program 5: set_mempolicy(0x8003, &(0x7f0000000300)=0x75f, 0x9) open(&(0x7f0000000300)='.\x00', 0x0, 0x0) r0 = syz_open_procfs(0x0, &(0x7f00000000c0)='fd/3\x00') r1 = syz_open_dev$swradio(&(0x7f0000000100)='/dev/swradio#\x00', 0x0, 0x2) mount$9p_fd(0xfeffffff00000000, &(0x7f0000000300)='.\x00', &(0x7f0000000080)='9p\x00', 0x0, &(0x7f0000000740)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}}) [ 227.645787][T14473] FAULT_INJECTION: forcing a failure. [ 227.645787][T14473] name failslab, interval 1, probability 0, space 0, times 0 21:38:07 executing program 3: set_mempolicy(0x8003, &(0x7f0000000300)=0x75f, 0x9) open(&(0x7f0000000300)='.\x00', 0x0, 0x0) r0 = syz_open_procfs(0x0, &(0x7f00000000c0)='fd/3\x00') r1 = syz_open_dev$swradio(&(0x7f0000000100)='/dev/swradio#\x00', 0x0, 0x2) mount$9p_fd(0xc00000000000000, &(0x7f0000000300)='.\x00', &(0x7f0000000080)='9p\x00', 0x0, &(0x7f0000000740)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}}) 21:38:07 executing program 2: set_mempolicy(0x8003, &(0x7f0000000300)=0x75f, 0x9) r0 = open(&(0x7f0000000300)='.\x00', 0x0, 0x0) symlinkat(&(0x7f0000000040)='\x13\x13w\xc5\xfc5\xd4\x14T\xd5\xd4\x1d)\xad\x1a`)Y\x81F\xe6\xbe\x16nA\xad\r\xbd@T\x03<\x9f3\xbb\xda\x82$\xa2\xf3\xd7r\xe7cnH\xb3<\xbfp\x83r\xe8\xf1\xb9\x93>\xc5\x12wC\xbe\"\x06 \x9e\xf0-\xf9\xcb\xf2\xf6\xe8\x80\xd38/\x00', r0, &(0x7f00000000c0)='./file0\x00') mkdirat(r0, &(0x7f0000000200)='\x13\x13w\xc5\xfc5\xd4\x14T\xd5\xd4\x1d)\xad\x1a`)Y\x81F\xe6\xbe\x16nA\xad\r\xbd@T\x03<\x9f3\xbb\xda\x82$\xa2\xf3\xd7r\xe7cnH\xb3<\xbfp\x83r\xe8\xf1\xb9\x93>\xc5\x12wC\xbe\"\x06 \x9e\xf0-\xf9\xcb\xf2\xf6\xe8\x80\xd38/\x00', 0x0) symlinkat(&(0x7f0000000340)='./file0/file0\x00', r0, &(0x7f0000000380)='\x13\x13w\xc5\xfc5\xd4\x14T\xd5\xd4\x1d)\xad\x1a`)Y\x81F\xe6\xbe\x16nA\xad\r\xbd@T\x03<\x9f3\xbb\xda\x82$\xa2\xf3\xd7r\xe7cnH\xb3<\xbfp\x83r\xe8\xf1\xb9\x93>\xc5\x12wC\xbe\"\x06 \x9e\xf0-\xf9\xcb\xf2\xf6\xe8\x80\xd38//file0\x00') r1 = open(&(0x7f0000000100)='.\x00', 0x0, 0x0) renameat2(r1, &(0x7f0000000400)='./file0/file0\x00', r1, &(0x7f0000000000)='./file0\x00', 0x40000000) 21:38:07 executing program 1: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) r3 = syz_open_procfs(0x0, &(0x7f00000000c0)='fd/3\x00') mount$9p_fd(0x4000000000000, &(0x7f0000000300)='.\x00', &(0x7f0000000080)='9p\x00', 0x0, &(0x7f00000003c0)={'trans=fd,', {'rfdno', 0x3d, r3}, 0x2c, {'wfdno', 0x3d, r2}}) [ 227.693764][T14473] CPU: 0 PID: 14473 Comm: syz-executor.0 Not tainted 5.11.0-syzkaller #0 [ 227.702234][T14473] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 227.712374][T14473] Call Trace: [ 227.715652][T14473] dump_stack+0x116/0x15d [ 227.720057][T14473] should_fail+0x23c/0x250 [ 227.724465][T14473] __should_failslab+0x81/0x90 [ 227.729223][T14473] ? tomoyo_encode2+0x1d3/0x350 [ 227.734222][T14473] should_failslab+0x5/0x20 [ 227.738712][T14473] __kmalloc+0x59/0x360 [ 227.742855][T14473] tomoyo_encode2+0x1d3/0x350 [ 227.747522][T14473] tomoyo_realpath_from_path+0x35e/0x3b0 [ 227.753192][T14473] tomoyo_check_open_permission+0xaf/0x370 [ 227.759052][T14473] tomoyo_file_open+0xd3/0xf0 [ 227.763748][T14473] security_file_open+0x3f/0x90 [ 227.768583][T14473] do_dentry_open+0x22d/0x890 [ 227.773256][T14473] vfs_open+0x43/0x50 [ 227.777295][T14473] path_openat+0x1847/0x20a0 [ 227.781963][T14473] do_filp_open+0xbd/0x1d0 [ 227.786550][T14473] ? _raw_spin_unlock+0x22/0x40 [ 227.791398][T14473] ? alloc_fd+0x35d/0x3b0 [ 227.795737][T14473] do_sys_openat2+0xa3/0x250 [ 227.800340][T14473] __x64_sys_openat+0xef/0x110 [ 227.805087][T14473] do_syscall_64+0x39/0x80 [ 227.809537][T14473] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 227.815412][T14473] RIP: 0033:0x419384 [ 227.819286][T14473] Code: 84 00 00 00 00 00 44 89 54 24 0c e8 96 f9 ff ff 44 8b 54 24 0c 44 89 e2 48 89 ee 41 89 c0 bf 9c ff ff ff b8 01 01 00 00 0f 05 <48> 3d 00 f0 ff ff 77 34 44 89 c7 89 44 24 0c e8 c8 f9 ff ff 8b 44 21:38:07 executing program 4: set_mempolicy(0x8003, &(0x7f0000000300)=0x75f, 0x9) open(&(0x7f0000000300)='.\x00', 0x0, 0x0) r0 = syz_open_procfs(0x0, &(0x7f00000000c0)='fd/3\x00') r1 = syz_open_dev$swradio(&(0x7f0000000100)='/dev/swradio#\x00', 0x0, 0x2) mount$9p_fd(0x100000000000000, &(0x7f0000000300)='.\x00', &(0x7f0000000080)='9p\x00', 0x0, &(0x7f0000000740)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}}) [ 227.838884][T14473] RSP: 002b:00007f8175ef9ed0 EFLAGS: 00000293 ORIG_RAX: 0000000000000101 [ 227.847284][T14473] RAX: ffffffffffffffda RBX: 00000000004af960 RCX: 0000000000419384 [ 227.855246][T14473] RDX: 0000000000000002 RSI: 00007f8175efa000 RDI: 00000000ffffff9c [ 227.863336][T14473] RBP: 00007f8175efa000 R08: 0000000000000000 R09: ffffffffffffffff [ 227.871399][T14473] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000002 [ 227.879349][T14473] R13: 0000000000000004 R14: 0000000020000248 R15: 0000000000000003 [ 227.987056][T14473] ERROR: Out of memory at tomoyo_realpath_from_path. [ 227.995465][T14473] loop0: detected capacity change from 512 to 0 [ 228.013771][T14473] EXT4-fs (loop0): ext4_check_descriptors: Checksum for group 0 failed (38247!=0) [ 228.023734][T14473] EXT4-fs (loop0): group descriptors corrupted! 21:38:08 executing program 0 (fault-call:0 fault-nth:19): syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x40000, 0x3, &(0x7f0000000200)=[{&(0x7f0000010000)="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", 0x10c, 0x400}, {&(0x7f0000010200)="0500000000000000000000000000000000000000040100002b", 0x19, 0x560}, {&(0x7f0000010300)="000000000000000000000000000000000000000000000000000000001481910a040000001400000024", 0x29, 0x7e0}], 0x0, &(0x7f0000000040)={[{@usrjquota='usrjquota='}, {@data_err_abort='data_err=abort'}]}) 21:38:08 executing program 3: set_mempolicy(0x8003, &(0x7f0000000300)=0x75f, 0x9) open(&(0x7f0000000300)='.\x00', 0x0, 0x0) r0 = syz_open_procfs(0x0, &(0x7f00000000c0)='fd/3\x00') r1 = syz_open_dev$swradio(&(0x7f0000000100)='/dev/swradio#\x00', 0x0, 0x2) mount$9p_fd(0xd00000000000000, &(0x7f0000000300)='.\x00', &(0x7f0000000080)='9p\x00', 0x0, &(0x7f0000000740)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}}) 21:38:08 executing program 2: set_mempolicy(0x8003, &(0x7f0000000300)=0x75f, 0x9) r0 = open(&(0x7f0000000300)='.\x00', 0x0, 0x0) symlinkat(&(0x7f0000000040)='\x13\x13w\xc5\xfc5\xd4\x14T\xd5\xd4\x1d)\xad\x1a`)Y\x81F\xe6\xbe\x16nA\xad\r\xbd@T\x03<\x9f3\xbb\xda\x82$\xa2\xf3\xd7r\xe7cnH\xb3<\xbfp\x83r\xe8\xf1\xb9\x93>\xc5\x12wC\xbe\"\x06 \x9e\xf0-\xf9\xcb\xf2\xf6\xe8\x80\xd38/\x00', r0, &(0x7f00000000c0)='./file0\x00') mkdirat(r0, &(0x7f0000000200)='\x13\x13w\xc5\xfc5\xd4\x14T\xd5\xd4\x1d)\xad\x1a`)Y\x81F\xe6\xbe\x16nA\xad\r\xbd@T\x03<\x9f3\xbb\xda\x82$\xa2\xf3\xd7r\xe7cnH\xb3<\xbfp\x83r\xe8\xf1\xb9\x93>\xc5\x12wC\xbe\"\x06 \x9e\xf0-\xf9\xcb\xf2\xf6\xe8\x80\xd38/\x00', 0x0) symlinkat(&(0x7f0000000340)='./file0/file0\x00', r0, &(0x7f0000000380)='\x13\x13w\xc5\xfc5\xd4\x14T\xd5\xd4\x1d)\xad\x1a`)Y\x81F\xe6\xbe\x16nA\xad\r\xbd@T\x03<\x9f3\xbb\xda\x82$\xa2\xf3\xd7r\xe7cnH\xb3<\xbfp\x83r\xe8\xf1\xb9\x93>\xc5\x12wC\xbe\"\x06 \x9e\xf0-\xf9\xcb\xf2\xf6\xe8\x80\xd38//file0\x00') r1 = open(&(0x7f0000000100)='.\x00', 0x0, 0x0) renameat2(r1, &(0x7f0000000400)='./file0/file0\x00', r1, &(0x7f0000000000)='./file0\x00', 0x4d000000) 21:38:08 executing program 5: set_mempolicy(0x8003, &(0x7f0000000300)=0x75f, 0x9) open(&(0x7f0000000300)='.\x00', 0x0, 0x0) r0 = syz_open_procfs(0x0, &(0x7f00000000c0)='fd/3\x00') r1 = syz_open_dev$swradio(&(0x7f0000000100)='/dev/swradio#\x00', 0x0, 0x2) mount$9p_fd(0xff00000000000000, &(0x7f0000000300)='.\x00', &(0x7f0000000080)='9p\x00', 0x0, &(0x7f0000000740)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}}) 21:38:08 executing program 1: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) r3 = syz_open_procfs(0x0, &(0x7f00000000c0)='fd/3\x00') mount$9p_fd(0x40000000000000, &(0x7f0000000300)='.\x00', &(0x7f0000000080)='9p\x00', 0x0, &(0x7f00000003c0)={'trans=fd,', {'rfdno', 0x3d, r3}, 0x2c, {'wfdno', 0x3d, r2}}) 21:38:08 executing program 4: set_mempolicy(0x8003, &(0x7f0000000300)=0x75f, 0x9) open(&(0x7f0000000300)='.\x00', 0x0, 0x0) r0 = syz_open_procfs(0x0, &(0x7f00000000c0)='fd/3\x00') r1 = syz_open_dev$swradio(&(0x7f0000000100)='/dev/swradio#\x00', 0x0, 0x2) mount$9p_fd(0x100000200000000, &(0x7f0000000300)='.\x00', &(0x7f0000000080)='9p\x00', 0x0, &(0x7f0000000740)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}}) 21:38:08 executing program 2: set_mempolicy(0x8003, &(0x7f0000000300)=0x75f, 0x9) r0 = open(&(0x7f0000000300)='.\x00', 0x0, 0x0) symlinkat(&(0x7f0000000040)='\x13\x13w\xc5\xfc5\xd4\x14T\xd5\xd4\x1d)\xad\x1a`)Y\x81F\xe6\xbe\x16nA\xad\r\xbd@T\x03<\x9f3\xbb\xda\x82$\xa2\xf3\xd7r\xe7cnH\xb3<\xbfp\x83r\xe8\xf1\xb9\x93>\xc5\x12wC\xbe\"\x06 \x9e\xf0-\xf9\xcb\xf2\xf6\xe8\x80\xd38/\x00', r0, &(0x7f00000000c0)='./file0\x00') mkdirat(r0, &(0x7f0000000200)='\x13\x13w\xc5\xfc5\xd4\x14T\xd5\xd4\x1d)\xad\x1a`)Y\x81F\xe6\xbe\x16nA\xad\r\xbd@T\x03<\x9f3\xbb\xda\x82$\xa2\xf3\xd7r\xe7cnH\xb3<\xbfp\x83r\xe8\xf1\xb9\x93>\xc5\x12wC\xbe\"\x06 \x9e\xf0-\xf9\xcb\xf2\xf6\xe8\x80\xd38/\x00', 0x0) symlinkat(&(0x7f0000000340)='./file0/file0\x00', r0, &(0x7f0000000380)='\x13\x13w\xc5\xfc5\xd4\x14T\xd5\xd4\x1d)\xad\x1a`)Y\x81F\xe6\xbe\x16nA\xad\r\xbd@T\x03<\x9f3\xbb\xda\x82$\xa2\xf3\xd7r\xe7cnH\xb3<\xbfp\x83r\xe8\xf1\xb9\x93>\xc5\x12wC\xbe\"\x06 \x9e\xf0-\xf9\xcb\xf2\xf6\xe8\x80\xd38//file0\x00') r1 = open(&(0x7f0000000100)='.\x00', 0x0, 0x0) renameat2(r1, &(0x7f0000000400)='./file0/file0\x00', r1, &(0x7f0000000000)='./file0\x00', 0x5c000000) 21:38:08 executing program 4: set_mempolicy(0x8003, &(0x7f0000000300)=0x75f, 0x9) open(&(0x7f0000000300)='.\x00', 0x0, 0x0) r0 = syz_open_procfs(0x0, &(0x7f00000000c0)='fd/3\x00') r1 = syz_open_dev$swradio(&(0x7f0000000100)='/dev/swradio#\x00', 0x0, 0x2) mount$9p_fd(0x200000000000000, &(0x7f0000000300)='.\x00', &(0x7f0000000080)='9p\x00', 0x0, &(0x7f0000000740)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}}) 21:38:08 executing program 5: set_mempolicy(0x8003, &(0x7f0000000300)=0x75f, 0x9) open(&(0x7f0000000300)='.\x00', 0x0, 0x0) r0 = syz_open_procfs(0x0, &(0x7f00000000c0)='fd/3\x00') r1 = syz_open_dev$swradio(&(0x7f0000000100)='/dev/swradio#\x00', 0x0, 0x2) mount$9p_fd(0xff9f000000000000, &(0x7f0000000300)='.\x00', &(0x7f0000000080)='9p\x00', 0x0, &(0x7f0000000740)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}}) 21:38:08 executing program 1: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) r3 = syz_open_procfs(0x0, &(0x7f00000000c0)='fd/3\x00') mount$9p_fd(0xfeffff00000000, &(0x7f0000000300)='.\x00', &(0x7f0000000080)='9p\x00', 0x0, &(0x7f00000003c0)={'trans=fd,', {'rfdno', 0x3d, r3}, 0x2c, {'wfdno', 0x3d, r2}}) 21:38:08 executing program 3: set_mempolicy(0x8003, &(0x7f0000000300)=0x75f, 0x9) open(&(0x7f0000000300)='.\x00', 0x0, 0x0) r0 = syz_open_procfs(0x0, &(0x7f00000000c0)='fd/3\x00') r1 = syz_open_dev$swradio(&(0x7f0000000100)='/dev/swradio#\x00', 0x0, 0x2) mount$9p_fd(0xe00000000000000, &(0x7f0000000300)='.\x00', &(0x7f0000000080)='9p\x00', 0x0, &(0x7f0000000740)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}}) 21:38:08 executing program 4: set_mempolicy(0x8003, &(0x7f0000000300)=0x75f, 0x9) open(&(0x7f0000000300)='.\x00', 0x0, 0x0) r0 = syz_open_procfs(0x0, &(0x7f00000000c0)='fd/3\x00') r1 = syz_open_dev$swradio(&(0x7f0000000100)='/dev/swradio#\x00', 0x0, 0x2) mount$9p_fd(0x300000000000000, &(0x7f0000000300)='.\x00', &(0x7f0000000080)='9p\x00', 0x0, &(0x7f0000000740)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}}) [ 228.180716][T14539] FAULT_INJECTION: forcing a failure. [ 228.180716][T14539] name failslab, interval 1, probability 0, space 0, times 0 [ 228.244397][T14539] CPU: 1 PID: 14539 Comm: syz-executor.0 Not tainted 5.11.0-syzkaller #0 [ 228.252892][T14539] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 228.263005][T14539] Call Trace: [ 228.266274][T14539] dump_stack+0x116/0x15d [ 228.270634][T14539] should_fail+0x23c/0x250 [ 228.275050][T14539] __should_failslab+0x81/0x90 [ 228.280769][T14539] ? tomoyo_realpath_from_path+0x98/0x3b0 [ 228.286487][T14539] should_failslab+0x5/0x20 [ 228.291111][T14539] __kmalloc+0x59/0x360 [ 228.295256][T14539] ? path_openat+0x1e0d/0x20a0 [ 228.300015][T14539] tomoyo_realpath_from_path+0x98/0x3b0 [ 228.305576][T14539] tomoyo_path_number_perm+0xc1/0x2d0 [ 228.310979][T14539] ? fsnotify+0x34a/0x1190 [ 228.315412][T14539] ? __rcu_read_unlock+0x5c/0x250 [ 228.320508][T14539] tomoyo_file_ioctl+0x1c/0x20 [ 228.325269][T14539] security_file_ioctl+0x45/0x90 [ 228.330319][T14539] __se_sys_ioctl+0x48/0x140 [ 228.334905][T14539] __x64_sys_ioctl+0x3f/0x50 [ 228.339573][T14539] do_syscall_64+0x39/0x80 [ 228.344050][T14539] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 228.349937][T14539] RIP: 0033:0x465b57 [ 228.353821][T14539] Code: 3c 1c 48 f7 d8 49 39 c4 72 b8 e8 a4 4d 02 00 85 c0 78 bd 48 83 c4 08 4c 89 e0 5b 41 5c c3 0f 1f 44 00 00 b8 10 00 00 00 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 228.373504][T14539] RSP: 002b:00007f8175ef9f48 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 228.381913][T14539] RAX: ffffffffffffffda RBX: 00000000004af960 RCX: 0000000000465b57 [ 228.389873][T14539] RDX: 0000000000000004 RSI: 0000000000004c00 RDI: 0000000000000005 [ 228.397837][T14539] RBP: 0000000000000005 R08: 0000000000000000 R09: ffffffffffffffff [ 228.405810][T14539] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000004 [ 228.413772][T14539] R13: 0000000000000004 R14: 0000000020000248 R15: 0000000000000003 [ 228.474213][T14539] ERROR: Out of memory at tomoyo_realpath_from_path. [ 228.496871][T14539] loop0: detected capacity change from 512 to 0 [ 228.511609][T14539] EXT4-fs (loop0): ext4_check_descriptors: Checksum for group 0 failed (38247!=0) [ 228.527951][T14539] EXT4-fs (loop0): group descriptors corrupted! 21:38:08 executing program 4: set_mempolicy(0x8003, &(0x7f0000000300)=0x75f, 0x9) open(&(0x7f0000000300)='.\x00', 0x0, 0x0) r0 = syz_open_procfs(0x0, &(0x7f00000000c0)='fd/3\x00') r1 = syz_open_dev$swradio(&(0x7f0000000100)='/dev/swradio#\x00', 0x0, 0x2) mount$9p_fd(0x400000000000000, &(0x7f0000000300)='.\x00', &(0x7f0000000080)='9p\x00', 0x0, &(0x7f0000000740)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}}) 21:38:08 executing program 3: set_mempolicy(0x8003, &(0x7f0000000300)=0x75f, 0x9) open(&(0x7f0000000300)='.\x00', 0x0, 0x0) r0 = syz_open_procfs(0x0, &(0x7f00000000c0)='fd/3\x00') r1 = syz_open_dev$swradio(&(0x7f0000000100)='/dev/swradio#\x00', 0x0, 0x2) mount$9p_fd(0xfffffffffffffff, &(0x7f0000000300)='.\x00', &(0x7f0000000080)='9p\x00', 0x0, &(0x7f0000000740)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}}) 21:38:08 executing program 5: set_mempolicy(0x8003, &(0x7f0000000300)=0x75f, 0x9) open(&(0x7f0000000300)='.\x00', 0x0, 0x0) r0 = syz_open_procfs(0x0, &(0x7f00000000c0)='fd/3\x00') r1 = syz_open_dev$swradio(&(0x7f0000000100)='/dev/swradio#\x00', 0x0, 0x2) mount$9p_fd(0xffff000000000000, &(0x7f0000000300)='.\x00', &(0x7f0000000080)='9p\x00', 0x0, &(0x7f0000000740)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}}) 21:38:08 executing program 2: set_mempolicy(0x8003, &(0x7f0000000300)=0x75f, 0x9) r0 = open(&(0x7f0000000300)='.\x00', 0x0, 0x0) symlinkat(&(0x7f0000000040)='\x13\x13w\xc5\xfc5\xd4\x14T\xd5\xd4\x1d)\xad\x1a`)Y\x81F\xe6\xbe\x16nA\xad\r\xbd@T\x03<\x9f3\xbb\xda\x82$\xa2\xf3\xd7r\xe7cnH\xb3<\xbfp\x83r\xe8\xf1\xb9\x93>\xc5\x12wC\xbe\"\x06 \x9e\xf0-\xf9\xcb\xf2\xf6\xe8\x80\xd38/\x00', r0, &(0x7f00000000c0)='./file0\x00') mkdirat(r0, &(0x7f0000000200)='\x13\x13w\xc5\xfc5\xd4\x14T\xd5\xd4\x1d)\xad\x1a`)Y\x81F\xe6\xbe\x16nA\xad\r\xbd@T\x03<\x9f3\xbb\xda\x82$\xa2\xf3\xd7r\xe7cnH\xb3<\xbfp\x83r\xe8\xf1\xb9\x93>\xc5\x12wC\xbe\"\x06 \x9e\xf0-\xf9\xcb\xf2\xf6\xe8\x80\xd38/\x00', 0x0) symlinkat(&(0x7f0000000340)='./file0/file0\x00', r0, &(0x7f0000000380)='\x13\x13w\xc5\xfc5\xd4\x14T\xd5\xd4\x1d)\xad\x1a`)Y\x81F\xe6\xbe\x16nA\xad\r\xbd@T\x03<\x9f3\xbb\xda\x82$\xa2\xf3\xd7r\xe7cnH\xb3<\xbfp\x83r\xe8\xf1\xb9\x93>\xc5\x12wC\xbe\"\x06 \x9e\xf0-\xf9\xcb\xf2\xf6\xe8\x80\xd38//file0\x00') r1 = open(&(0x7f0000000100)='.\x00', 0x0, 0x0) renameat2(r1, &(0x7f0000000400)='./file0/file0\x00', r1, &(0x7f0000000000)='./file0\x00', 0x8cffffff) 21:38:08 executing program 0 (fault-call:0 fault-nth:20): syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x40000, 0x3, &(0x7f0000000200)=[{&(0x7f0000010000)="20000000000100000c000000d90000000f0000000100000000000000000000000020000000200000200000002cc4645f2cc4645f0100ffff53ef0100010000002cc4645f000000000000000001000000000000000b0000008000000038000000c20200006b0400000000000000000000000000000000000073797a6b616c6c6572000000000000002f746d702f73797a2d696d61676567656e3338363633343038350000000000000000000000000000000000000000000000000000000000000000000000000000000000000000010000000000000000000000000000000000000000000000000000000000d9ca5cac99fd4329af4dde786c1a5d13010040000c000000000000002cc4645f", 0x10c, 0x400}, {&(0x7f0000010200)="0500000000000000000000000000000000000000040100002b", 0x19, 0x560}, {&(0x7f0000010300)="000000000000000000000000000000000000000000000000000000001481910a040000001400000024", 0x29, 0x7e0}], 0x0, &(0x7f0000000040)={[{@usrjquota='usrjquota='}, {@data_err_abort='data_err=abort'}]}) 21:38:08 executing program 1: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) r3 = syz_open_procfs(0x0, &(0x7f00000000c0)='fd/3\x00') mount$9p_fd(0x100000000000000, &(0x7f0000000300)='.\x00', &(0x7f0000000080)='9p\x00', 0x0, &(0x7f00000003c0)={'trans=fd,', {'rfdno', 0x3d, r3}, 0x2c, {'wfdno', 0x3d, r2}}) 21:38:08 executing program 5: set_mempolicy(0x8003, &(0x7f0000000300)=0x75f, 0x9) open(&(0x7f0000000300)='.\x00', 0x0, 0x0) r0 = syz_open_procfs(0x0, &(0x7f00000000c0)='fd/3\x00') r1 = syz_open_dev$swradio(&(0x7f0000000100)='/dev/swradio#\x00', 0x0, 0x2) mount$9p_fd(0xffffffff00000000, &(0x7f0000000300)='.\x00', &(0x7f0000000080)='9p\x00', 0x0, &(0x7f0000000740)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}}) 21:38:08 executing program 2: set_mempolicy(0x8003, &(0x7f0000000300)=0x75f, 0x9) r0 = open(&(0x7f0000000300)='.\x00', 0x0, 0x0) symlinkat(&(0x7f0000000040)='\x13\x13w\xc5\xfc5\xd4\x14T\xd5\xd4\x1d)\xad\x1a`)Y\x81F\xe6\xbe\x16nA\xad\r\xbd@T\x03<\x9f3\xbb\xda\x82$\xa2\xf3\xd7r\xe7cnH\xb3<\xbfp\x83r\xe8\xf1\xb9\x93>\xc5\x12wC\xbe\"\x06 \x9e\xf0-\xf9\xcb\xf2\xf6\xe8\x80\xd38/\x00', r0, &(0x7f00000000c0)='./file0\x00') mkdirat(r0, &(0x7f0000000200)='\x13\x13w\xc5\xfc5\xd4\x14T\xd5\xd4\x1d)\xad\x1a`)Y\x81F\xe6\xbe\x16nA\xad\r\xbd@T\x03<\x9f3\xbb\xda\x82$\xa2\xf3\xd7r\xe7cnH\xb3<\xbfp\x83r\xe8\xf1\xb9\x93>\xc5\x12wC\xbe\"\x06 \x9e\xf0-\xf9\xcb\xf2\xf6\xe8\x80\xd38/\x00', 0x0) symlinkat(&(0x7f0000000340)='./file0/file0\x00', r0, &(0x7f0000000380)='\x13\x13w\xc5\xfc5\xd4\x14T\xd5\xd4\x1d)\xad\x1a`)Y\x81F\xe6\xbe\x16nA\xad\r\xbd@T\x03<\x9f3\xbb\xda\x82$\xa2\xf3\xd7r\xe7cnH\xb3<\xbfp\x83r\xe8\xf1\xb9\x93>\xc5\x12wC\xbe\"\x06 \x9e\xf0-\xf9\xcb\xf2\xf6\xe8\x80\xd38//file0\x00') r1 = open(&(0x7f0000000100)='.\x00', 0x0, 0x0) renameat2(r1, &(0x7f0000000400)='./file0/file0\x00', r1, &(0x7f0000000000)='./file0\x00', 0xb0270000) [ 228.646082][T14588] FAULT_INJECTION: forcing a failure. [ 228.646082][T14588] name failslab, interval 1, probability 0, space 0, times 0 [ 228.671473][T14588] CPU: 0 PID: 14588 Comm: syz-executor.0 Not tainted 5.11.0-syzkaller #0 [ 228.679972][T14588] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 228.690017][T14588] Call Trace: [ 228.693277][T14588] dump_stack+0x116/0x15d [ 228.697592][T14588] should_fail+0x23c/0x250 [ 228.702081][T14588] __should_failslab+0x81/0x90 [ 228.706877][T14588] ? tomoyo_encode2+0x1d3/0x350 [ 228.711712][T14588] should_failslab+0x5/0x20 [ 228.716194][T14588] __kmalloc+0x59/0x360 [ 228.720392][T14588] tomoyo_encode2+0x1d3/0x350 [ 228.725072][T14588] tomoyo_realpath_from_path+0x35e/0x3b0 [ 228.730860][T14588] tomoyo_path_number_perm+0xc1/0x2d0 [ 228.736216][T14588] ? fsnotify+0x34a/0x1190 [ 228.740682][T14588] ? __rcu_read_unlock+0x5c/0x250 [ 228.745763][T14588] tomoyo_file_ioctl+0x1c/0x20 [ 228.750514][T14588] security_file_ioctl+0x45/0x90 [ 228.755466][T14588] __se_sys_ioctl+0x48/0x140 [ 228.760084][T14588] __x64_sys_ioctl+0x3f/0x50 [ 228.764670][T14588] do_syscall_64+0x39/0x80 [ 228.769087][T14588] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 228.774967][T14588] RIP: 0033:0x465b57 21:38:08 executing program 4: set_mempolicy(0x8003, &(0x7f0000000300)=0x75f, 0x9) open(&(0x7f0000000300)='.\x00', 0x0, 0x0) r0 = syz_open_procfs(0x0, &(0x7f00000000c0)='fd/3\x00') r1 = syz_open_dev$swradio(&(0x7f0000000100)='/dev/swradio#\x00', 0x0, 0x2) mount$9p_fd(0x500000000000000, &(0x7f0000000300)='.\x00', &(0x7f0000000080)='9p\x00', 0x0, &(0x7f0000000740)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}}) [ 228.778919][T14588] Code: 3c 1c 48 f7 d8 49 39 c4 72 b8 e8 a4 4d 02 00 85 c0 78 bd 48 83 c4 08 4c 89 e0 5b 41 5c c3 0f 1f 44 00 00 b8 10 00 00 00 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 228.798635][T14588] RSP: 002b:00007f8175ef9f48 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 228.807059][T14588] RAX: ffffffffffffffda RBX: 00000000004af960 RCX: 0000000000465b57 [ 228.815011][T14588] RDX: 0000000000000004 RSI: 0000000000004c00 RDI: 0000000000000005 [ 228.822962][T14588] RBP: 0000000000000005 R08: 0000000000000000 R09: ffffffffffffffff [ 228.830979][T14588] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000004 [ 228.838970][T14588] R13: 0000000000000004 R14: 0000000020000248 R15: 0000000000000003 21:38:08 executing program 3: set_mempolicy(0x8003, &(0x7f0000000300)=0x75f, 0x9) open(&(0x7f0000000300)='.\x00', 0x0, 0x0) r0 = syz_open_procfs(0x0, &(0x7f00000000c0)='fd/3\x00') r1 = syz_open_dev$swradio(&(0x7f0000000100)='/dev/swradio#\x00', 0x0, 0x2) mount$9p_fd(0x1000000000000000, &(0x7f0000000300)='.\x00', &(0x7f0000000080)='9p\x00', 0x0, &(0x7f0000000740)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}}) 21:38:08 executing program 2: set_mempolicy(0x8003, &(0x7f0000000300)=0x75f, 0x9) r0 = open(&(0x7f0000000300)='.\x00', 0x0, 0x0) symlinkat(&(0x7f0000000040)='\x13\x13w\xc5\xfc5\xd4\x14T\xd5\xd4\x1d)\xad\x1a`)Y\x81F\xe6\xbe\x16nA\xad\r\xbd@T\x03<\x9f3\xbb\xda\x82$\xa2\xf3\xd7r\xe7cnH\xb3<\xbfp\x83r\xe8\xf1\xb9\x93>\xc5\x12wC\xbe\"\x06 \x9e\xf0-\xf9\xcb\xf2\xf6\xe8\x80\xd38/\x00', r0, &(0x7f00000000c0)='./file0\x00') mkdirat(r0, &(0x7f0000000200)='\x13\x13w\xc5\xfc5\xd4\x14T\xd5\xd4\x1d)\xad\x1a`)Y\x81F\xe6\xbe\x16nA\xad\r\xbd@T\x03<\x9f3\xbb\xda\x82$\xa2\xf3\xd7r\xe7cnH\xb3<\xbfp\x83r\xe8\xf1\xb9\x93>\xc5\x12wC\xbe\"\x06 \x9e\xf0-\xf9\xcb\xf2\xf6\xe8\x80\xd38/\x00', 0x0) symlinkat(&(0x7f0000000340)='./file0/file0\x00', r0, &(0x7f0000000380)='\x13\x13w\xc5\xfc5\xd4\x14T\xd5\xd4\x1d)\xad\x1a`)Y\x81F\xe6\xbe\x16nA\xad\r\xbd@T\x03<\x9f3\xbb\xda\x82$\xa2\xf3\xd7r\xe7cnH\xb3<\xbfp\x83r\xe8\xf1\xb9\x93>\xc5\x12wC\xbe\"\x06 \x9e\xf0-\xf9\xcb\xf2\xf6\xe8\x80\xd38//file0\x00') r1 = open(&(0x7f0000000100)='.\x00', 0x0, 0x0) renameat2(r1, &(0x7f0000000400)='./file0/file0\x00', r1, &(0x7f0000000000)='./file0\x00', 0xe1270000) 21:38:08 executing program 5: set_mempolicy(0x8003, &(0x7f0000000300)=0x75f, 0x9) open(&(0x7f0000000300)='.\x00', 0x0, 0x0) r0 = syz_open_procfs(0x0, &(0x7f00000000c0)='fd/3\x00') r1 = syz_open_dev$swradio(&(0x7f0000000100)='/dev/swradio#\x00', 0x0, 0x2) mount$9p_fd(0xffffffffffffff0f, &(0x7f0000000300)='.\x00', &(0x7f0000000080)='9p\x00', 0x0, &(0x7f0000000740)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}}) [ 228.981948][T14588] ERROR: Out of memory at tomoyo_realpath_from_path. [ 229.017090][T14588] loop0: detected capacity change from 512 to 0 [ 229.034438][T14588] EXT4-fs (loop0): ext4_check_descriptors: Checksum for group 0 failed (38247!=0) [ 229.063372][T14588] EXT4-fs (loop0): group descriptors corrupted! 21:38:09 executing program 0 (fault-call:0 fault-nth:21): syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x40000, 0x3, &(0x7f0000000200)=[{&(0x7f0000010000)="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", 0x10c, 0x400}, {&(0x7f0000010200)="0500000000000000000000000000000000000000040100002b", 0x19, 0x560}, {&(0x7f0000010300)="000000000000000000000000000000000000000000000000000000001481910a040000001400000024", 0x29, 0x7e0}], 0x0, &(0x7f0000000040)={[{@usrjquota='usrjquota='}, {@data_err_abort='data_err=abort'}]}) 21:38:09 executing program 4: set_mempolicy(0x8003, &(0x7f0000000300)=0x75f, 0x9) open(&(0x7f0000000300)='.\x00', 0x0, 0x0) r0 = syz_open_procfs(0x0, &(0x7f00000000c0)='fd/3\x00') r1 = syz_open_dev$swradio(&(0x7f0000000100)='/dev/swradio#\x00', 0x0, 0x2) mount$9p_fd(0x600000000000000, &(0x7f0000000300)='.\x00', &(0x7f0000000080)='9p\x00', 0x0, &(0x7f0000000740)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}}) 21:38:09 executing program 3: set_mempolicy(0x8003, &(0x7f0000000300)=0x75f, 0x9) open(&(0x7f0000000300)='.\x00', 0x0, 0x0) r0 = syz_open_procfs(0x0, &(0x7f00000000c0)='fd/3\x00') r1 = syz_open_dev$swradio(&(0x7f0000000100)='/dev/swradio#\x00', 0x0, 0x2) mount$9p_fd(0x1100000000000000, &(0x7f0000000300)='.\x00', &(0x7f0000000080)='9p\x00', 0x0, &(0x7f0000000740)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}}) 21:38:09 executing program 5: set_mempolicy(0x8003, &(0x7f0000000300)=0x75f, 0x9) open(&(0x7f0000000300)='.\x00', 0x0, 0x0) r0 = syz_open_procfs(0x0, &(0x7f00000000c0)='fd/3\x00') r1 = syz_open_dev$swradio(&(0x7f0000000100)='/dev/swradio#\x00', 0x0, 0x2) mount$9p_fd(0x0, &(0x7f0000000300)='.\x00', &(0x7f0000000080)='9p\x00', 0x2, &(0x7f0000000740)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}}) 21:38:09 executing program 2: set_mempolicy(0x8003, &(0x7f0000000300)=0x75f, 0x9) r0 = open(&(0x7f0000000300)='.\x00', 0x0, 0x0) symlinkat(&(0x7f0000000040)='\x13\x13w\xc5\xfc5\xd4\x14T\xd5\xd4\x1d)\xad\x1a`)Y\x81F\xe6\xbe\x16nA\xad\r\xbd@T\x03<\x9f3\xbb\xda\x82$\xa2\xf3\xd7r\xe7cnH\xb3<\xbfp\x83r\xe8\xf1\xb9\x93>\xc5\x12wC\xbe\"\x06 \x9e\xf0-\xf9\xcb\xf2\xf6\xe8\x80\xd38/\x00', r0, &(0x7f00000000c0)='./file0\x00') mkdirat(r0, &(0x7f0000000200)='\x13\x13w\xc5\xfc5\xd4\x14T\xd5\xd4\x1d)\xad\x1a`)Y\x81F\xe6\xbe\x16nA\xad\r\xbd@T\x03<\x9f3\xbb\xda\x82$\xa2\xf3\xd7r\xe7cnH\xb3<\xbfp\x83r\xe8\xf1\xb9\x93>\xc5\x12wC\xbe\"\x06 \x9e\xf0-\xf9\xcb\xf2\xf6\xe8\x80\xd38/\x00', 0x0) symlinkat(&(0x7f0000000340)='./file0/file0\x00', r0, &(0x7f0000000380)='\x13\x13w\xc5\xfc5\xd4\x14T\xd5\xd4\x1d)\xad\x1a`)Y\x81F\xe6\xbe\x16nA\xad\r\xbd@T\x03<\x9f3\xbb\xda\x82$\xa2\xf3\xd7r\xe7cnH\xb3<\xbfp\x83r\xe8\xf1\xb9\x93>\xc5\x12wC\xbe\"\x06 \x9e\xf0-\xf9\xcb\xf2\xf6\xe8\x80\xd38//file0\x00') r1 = open(&(0x7f0000000100)='.\x00', 0x0, 0x0) renameat2(r1, &(0x7f0000000400)='./file0/file0\x00', r1, &(0x7f0000000000)='./file0\x00', 0xe2270000) 21:38:09 executing program 1: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) r3 = syz_open_procfs(0x0, &(0x7f00000000c0)='fd/3\x00') mount$9p_fd(0x200000000000000, &(0x7f0000000300)='.\x00', &(0x7f0000000080)='9p\x00', 0x0, &(0x7f00000003c0)={'trans=fd,', {'rfdno', 0x3d, r3}, 0x2c, {'wfdno', 0x3d, r2}}) [ 229.170499][T14631] FAULT_INJECTION: forcing a failure. [ 229.170499][T14631] name failslab, interval 1, probability 0, space 0, times 0 [ 229.204554][T14631] CPU: 0 PID: 14631 Comm: syz-executor.0 Not tainted 5.11.0-syzkaller #0 21:38:09 executing program 4: set_mempolicy(0x8003, &(0x7f0000000300)=0x75f, 0x9) open(&(0x7f0000000300)='.\x00', 0x0, 0x0) r0 = syz_open_procfs(0x0, &(0x7f00000000c0)='fd/3\x00') r1 = syz_open_dev$swradio(&(0x7f0000000100)='/dev/swradio#\x00', 0x0, 0x2) mount$9p_fd(0x700000000000000, &(0x7f0000000300)='.\x00', &(0x7f0000000080)='9p\x00', 0x0, &(0x7f0000000740)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}}) [ 229.213062][T14631] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 229.222543][ T9557] warn_unsupported: 2 callbacks suppressed [ 229.222556][ T9557] kernel read not supported for file root/syzkaller-testdir051064025/syzkaller.PVWmQb/193 (pid: 9557 comm: kworker/1:4) [ 229.223115][T14631] Call Trace: [ 229.223128][T14631] dump_stack+0x116/0x15d [ 229.249060][T14631] should_fail+0x23c/0x250 [ 229.253515][T14631] ? loop_set_status_from_info+0x3a0/0x3a0 [ 229.259360][T14631] __should_failslab+0x81/0x90 [ 229.264152][T14631] ? __kthread_create_on_node+0x7a/0x270 [ 229.269788][T14631] should_failslab+0x5/0x20 [ 229.274728][T14631] kmem_cache_alloc_trace+0x39/0x320 [ 229.280033][T14631] ? find_inode_fast+0x223/0x250 [ 229.284970][T14631] ? __down_read_common+0x14e/0x510 [ 229.290170][T14631] ? loop_set_status_from_info+0x3a0/0x3a0 [ 229.296045][T14631] __kthread_create_on_node+0x7a/0x270 [ 229.301638][T14631] ? widen_string+0x3a/0x280 [ 229.306234][T14631] ? loop_set_status_from_info+0x3a0/0x3a0 [ 229.312090][T14631] kthread_create_on_node+0x72/0xa0 [ 229.317318][T14631] ? loop_attr_do_show_dio+0x70/0x70 [ 229.322695][T14631] loop_configure+0x55a/0xc40 [ 229.327372][T14631] lo_ioctl+0x54b/0x11e0 [ 229.331610][T14631] ? ___cache_free+0x3c/0x2f0 [ 229.336287][T14631] ? blkdev_common_ioctl+0xa29/0x1060 [ 229.341661][T14631] ? lo_release+0x120/0x120 [ 229.346163][T14631] blkdev_ioctl+0x1d0/0x3c0 [ 229.350662][T14631] block_ioctl+0x6d/0x80 [ 229.354916][T14631] ? blkdev_iopoll+0x70/0x70 [ 229.359504][T14631] __se_sys_ioctl+0xcb/0x140 [ 229.364097][T14631] __x64_sys_ioctl+0x3f/0x50 [ 229.368706][T14631] do_syscall_64+0x39/0x80 [ 229.373128][T14631] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 229.379033][T14631] RIP: 0033:0x465b57 [ 229.382917][T14631] Code: 3c 1c 48 f7 d8 49 39 c4 72 b8 e8 a4 4d 02 00 85 c0 78 bd 48 83 c4 08 4c 89 e0 5b 41 5c c3 0f 1f 44 00 00 b8 10 00 00 00 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 229.402532][T14631] RSP: 002b:00007f8175ef9f48 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 229.410939][T14631] RAX: ffffffffffffffda RBX: 00000000004af960 RCX: 0000000000465b57 21:38:09 executing program 3: set_mempolicy(0x8003, &(0x7f0000000300)=0x75f, 0x9) open(&(0x7f0000000300)='.\x00', 0x0, 0x0) r0 = syz_open_procfs(0x0, &(0x7f00000000c0)='fd/3\x00') r1 = syz_open_dev$swradio(&(0x7f0000000100)='/dev/swradio#\x00', 0x0, 0x2) mount$9p_fd(0x1200000000000000, &(0x7f0000000300)='.\x00', &(0x7f0000000080)='9p\x00', 0x0, &(0x7f0000000740)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}}) 21:38:09 executing program 1: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) r3 = syz_open_procfs(0x0, &(0x7f00000000c0)='fd/3\x00') mount$9p_fd(0x300000000000000, &(0x7f0000000300)='.\x00', &(0x7f0000000080)='9p\x00', 0x0, &(0x7f00000003c0)={'trans=fd,', {'rfdno', 0x3d, r3}, 0x2c, {'wfdno', 0x3d, r2}}) 21:38:09 executing program 2: set_mempolicy(0x8003, &(0x7f0000000300)=0x75f, 0x9) r0 = open(&(0x7f0000000300)='.\x00', 0x0, 0x0) symlinkat(&(0x7f0000000040)='\x13\x13w\xc5\xfc5\xd4\x14T\xd5\xd4\x1d)\xad\x1a`)Y\x81F\xe6\xbe\x16nA\xad\r\xbd@T\x03<\x9f3\xbb\xda\x82$\xa2\xf3\xd7r\xe7cnH\xb3<\xbfp\x83r\xe8\xf1\xb9\x93>\xc5\x12wC\xbe\"\x06 \x9e\xf0-\xf9\xcb\xf2\xf6\xe8\x80\xd38/\x00', r0, &(0x7f00000000c0)='./file0\x00') mkdirat(r0, &(0x7f0000000200)='\x13\x13w\xc5\xfc5\xd4\x14T\xd5\xd4\x1d)\xad\x1a`)Y\x81F\xe6\xbe\x16nA\xad\r\xbd@T\x03<\x9f3\xbb\xda\x82$\xa2\xf3\xd7r\xe7cnH\xb3<\xbfp\x83r\xe8\xf1\xb9\x93>\xc5\x12wC\xbe\"\x06 \x9e\xf0-\xf9\xcb\xf2\xf6\xe8\x80\xd38/\x00', 0x0) symlinkat(&(0x7f0000000340)='./file0/file0\x00', r0, &(0x7f0000000380)='\x13\x13w\xc5\xfc5\xd4\x14T\xd5\xd4\x1d)\xad\x1a`)Y\x81F\xe6\xbe\x16nA\xad\r\xbd@T\x03<\x9f3\xbb\xda\x82$\xa2\xf3\xd7r\xe7cnH\xb3<\xbfp\x83r\xe8\xf1\xb9\x93>\xc5\x12wC\xbe\"\x06 \x9e\xf0-\xf9\xcb\xf2\xf6\xe8\x80\xd38//file0\x00') r1 = open(&(0x7f0000000100)='.\x00', 0x0, 0x0) renameat2(r1, &(0x7f0000000400)='./file0/file0\x00', r1, &(0x7f0000000000)='./file0\x00', 0xf4ffffff) [ 229.418950][T14631] RDX: 0000000000000004 RSI: 0000000000004c00 RDI: 0000000000000005 [ 229.426910][T14631] RBP: 0000000000000005 R08: 0000000000000000 R09: ffffffffffffffff [ 229.434962][T14631] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000004 [ 229.435003][ T9557] kernel read not supported for file root/syzkaller-testdir051064025/syzkaller.PVWmQb/193 (pid: 9557 comm: kworker/1:4) [ 229.442927][T14631] R13: 0000000000000004 R14: 0000000020000248 R15: 0000000000000003 21:38:09 executing program 5: set_mempolicy(0x8003, &(0x7f0000000300)=0x75f, 0x9) open(&(0x7f0000000300)='.\x00', 0x0, 0x0) r0 = syz_open_procfs(0x0, &(0x7f00000000c0)='fd/3\x00') r1 = syz_open_dev$swradio(&(0x7f0000000100)='/dev/swradio#\x00', 0x0, 0x2) mount$9p_fd(0x0, &(0x7f0000000300)='.\x00', &(0x7f0000000080)='9p\x00', 0x3, &(0x7f0000000740)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}}) 21:38:09 executing program 0 (fault-call:0 fault-nth:22): syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x40000, 0x3, &(0x7f0000000200)=[{&(0x7f0000010000)="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", 0x10c, 0x400}, {&(0x7f0000010200)="0500000000000000000000000000000000000000040100002b", 0x19, 0x560}, {&(0x7f0000010300)="000000000000000000000000000000000000000000000000000000001481910a040000001400000024", 0x29, 0x7e0}], 0x0, &(0x7f0000000040)={[{@usrjquota='usrjquota='}, {@data_err_abort='data_err=abort'}]}) 21:38:09 executing program 3: set_mempolicy(0x8003, &(0x7f0000000300)=0x75f, 0x9) open(&(0x7f0000000300)='.\x00', 0x0, 0x0) r0 = syz_open_procfs(0x0, &(0x7f00000000c0)='fd/3\x00') r1 = syz_open_dev$swradio(&(0x7f0000000100)='/dev/swradio#\x00', 0x0, 0x2) mount$9p_fd(0x2010000000000000, &(0x7f0000000300)='.\x00', &(0x7f0000000080)='9p\x00', 0x0, &(0x7f0000000740)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}}) 21:38:09 executing program 4: set_mempolicy(0x8003, &(0x7f0000000300)=0x75f, 0x9) open(&(0x7f0000000300)='.\x00', 0x0, 0x0) r0 = syz_open_procfs(0x0, &(0x7f00000000c0)='fd/3\x00') r1 = syz_open_dev$swradio(&(0x7f0000000100)='/dev/swradio#\x00', 0x0, 0x2) mount$9p_fd(0x800000000000000, &(0x7f0000000300)='.\x00', &(0x7f0000000080)='9p\x00', 0x0, &(0x7f0000000740)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}}) [ 229.582787][ T9557] kernel read not supported for file root/syzkaller-testdir051064025/syzkaller.PVWmQb/194 (pid: 9557 comm: kworker/1:4) 21:38:09 executing program 2: set_mempolicy(0x8003, &(0x7f0000000300)=0x75f, 0x9) r0 = open(&(0x7f0000000300)='.\x00', 0x0, 0x0) symlinkat(&(0x7f0000000040)='\x13\x13w\xc5\xfc5\xd4\x14T\xd5\xd4\x1d)\xad\x1a`)Y\x81F\xe6\xbe\x16nA\xad\r\xbd@T\x03<\x9f3\xbb\xda\x82$\xa2\xf3\xd7r\xe7cnH\xb3<\xbfp\x83r\xe8\xf1\xb9\x93>\xc5\x12wC\xbe\"\x06 \x9e\xf0-\xf9\xcb\xf2\xf6\xe8\x80\xd38/\x00', r0, &(0x7f00000000c0)='./file0\x00') mkdirat(r0, &(0x7f0000000200)='\x13\x13w\xc5\xfc5\xd4\x14T\xd5\xd4\x1d)\xad\x1a`)Y\x81F\xe6\xbe\x16nA\xad\r\xbd@T\x03<\x9f3\xbb\xda\x82$\xa2\xf3\xd7r\xe7cnH\xb3<\xbfp\x83r\xe8\xf1\xb9\x93>\xc5\x12wC\xbe\"\x06 \x9e\xf0-\xf9\xcb\xf2\xf6\xe8\x80\xd38/\x00', 0x0) symlinkat(&(0x7f0000000340)='./file0/file0\x00', r0, &(0x7f0000000380)='\x13\x13w\xc5\xfc5\xd4\x14T\xd5\xd4\x1d)\xad\x1a`)Y\x81F\xe6\xbe\x16nA\xad\r\xbd@T\x03<\x9f3\xbb\xda\x82$\xa2\xf3\xd7r\xe7cnH\xb3<\xbfp\x83r\xe8\xf1\xb9\x93>\xc5\x12wC\xbe\"\x06 \x9e\xf0-\xf9\xcb\xf2\xf6\xe8\x80\xd38//file0\x00') r1 = open(&(0x7f0000000100)='.\x00', 0x0, 0x0) renameat2(r1, &(0x7f0000000400)='./file0/file0\x00', r1, &(0x7f0000000000)='./file0\x00', 0xf6ffffff) [ 229.630869][T14666] FAULT_INJECTION: forcing a failure. [ 229.630869][T14666] name failslab, interval 1, probability 0, space 0, times 0 [ 229.660258][T14666] CPU: 1 PID: 14666 Comm: syz-executor.0 Not tainted 5.11.0-syzkaller #0 [ 229.668706][T14666] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 229.678754][T14666] Call Trace: [ 229.682026][T14666] dump_stack+0x116/0x15d [ 229.686381][T14666] should_fail+0x23c/0x250 [ 229.690850][T14666] ? __kernfs_new_node+0x73/0x360 [ 229.695924][T14666] __should_failslab+0x81/0x90 [ 229.700724][T14666] should_failslab+0x5/0x20 [ 229.705231][T14666] kmem_cache_alloc+0x36/0x2e0 [ 229.709989][T14666] ? __rcu_read_unlock+0x5c/0x250 [ 229.715009][T14666] __kernfs_new_node+0x73/0x360 [ 229.719852][T14666] ? rb_insert_color+0x7e/0x310 [ 229.724698][T14666] ? update_load_avg+0x1ad/0x2d0 [ 229.729627][T14666] kernfs_create_dir_ns+0x5e/0x140 [ 229.734726][T14666] internal_create_group+0x138/0x850 [ 229.740007][T14666] ? set_disk_ro+0x19e/0x1d0 [ 229.744652][T14666] sysfs_create_group+0x1b/0x20 [ 229.749518][T14666] loop_configure+0x9b4/0xc40 [ 229.754210][T14666] lo_ioctl+0x54b/0x11e0 [ 229.758434][T14666] ? ___cache_free+0x3c/0x2f0 [ 229.763097][T14666] ? blkdev_common_ioctl+0xa29/0x1060 [ 229.768453][T14666] ? lo_release+0x120/0x120 [ 229.772948][T14666] blkdev_ioctl+0x1d0/0x3c0 [ 229.777432][T14666] block_ioctl+0x6d/0x80 [ 229.781658][T14666] ? blkdev_iopoll+0x70/0x70 [ 229.786376][T14666] __se_sys_ioctl+0xcb/0x140 [ 229.790960][T14666] __x64_sys_ioctl+0x3f/0x50 [ 229.795550][T14666] do_syscall_64+0x39/0x80 [ 229.799959][T14666] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 229.805845][T14666] RIP: 0033:0x465b57 [ 229.809717][T14666] Code: 3c 1c 48 f7 d8 49 39 c4 72 b8 e8 a4 4d 02 00 85 c0 78 bd 48 83 c4 08 4c 89 e0 5b 41 5c c3 0f 1f 44 00 00 b8 10 00 00 00 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 21:38:09 executing program 1: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) r3 = syz_open_procfs(0x0, &(0x7f00000000c0)='fd/3\x00') mount$9p_fd(0x400000000000000, &(0x7f0000000300)='.\x00', &(0x7f0000000080)='9p\x00', 0x0, &(0x7f00000003c0)={'trans=fd,', {'rfdno', 0x3d, r3}, 0x2c, {'wfdno', 0x3d, r2}}) [ 229.829305][T14666] RSP: 002b:00007f8175ef9f48 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 229.837762][T14666] RAX: ffffffffffffffda RBX: 00000000004af960 RCX: 0000000000465b57 [ 229.845711][T14666] RDX: 0000000000000004 RSI: 0000000000004c00 RDI: 0000000000000005 [ 229.853663][T14666] RBP: 0000000000000005 R08: 0000000000000000 R09: ffffffffffffffff [ 229.861621][T14666] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000004 [ 229.869573][T14666] R13: 0000000000000004 R14: 0000000020000248 R15: 0000000000000003 21:38:09 executing program 4: set_mempolicy(0x8003, &(0x7f0000000300)=0x75f, 0x9) open(&(0x7f0000000300)='.\x00', 0x0, 0x0) r0 = syz_open_procfs(0x0, &(0x7f00000000c0)='fd/3\x00') r1 = syz_open_dev$swradio(&(0x7f0000000100)='/dev/swradio#\x00', 0x0, 0x2) mount$9p_fd(0x900000000000000, &(0x7f0000000300)='.\x00', &(0x7f0000000080)='9p\x00', 0x0, &(0x7f0000000740)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}}) 21:38:09 executing program 3: set_mempolicy(0x8003, &(0x7f0000000300)=0x75f, 0x9) open(&(0x7f0000000300)='.\x00', 0x0, 0x0) r0 = syz_open_procfs(0x0, &(0x7f00000000c0)='fd/3\x00') r1 = syz_open_dev$swradio(&(0x7f0000000100)='/dev/swradio#\x00', 0x0, 0x2) mount$9p_fd(0x2500000000000000, &(0x7f0000000300)='.\x00', &(0x7f0000000080)='9p\x00', 0x0, &(0x7f0000000740)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}}) 21:38:09 executing program 5: set_mempolicy(0x8003, &(0x7f0000000300)=0x75f, 0x9) open(&(0x7f0000000300)='.\x00', 0x0, 0x0) r0 = syz_open_procfs(0x0, &(0x7f00000000c0)='fd/3\x00') r1 = syz_open_dev$swradio(&(0x7f0000000100)='/dev/swradio#\x00', 0x0, 0x2) mount$9p_fd(0x0, &(0x7f0000000300)='.\x00', &(0x7f0000000080)='9p\x00', 0x4, &(0x7f0000000740)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}}) [ 229.901343][T14666] loop0: detected capacity change from 512 to 0 [ 229.914331][T14666] EXT4-fs (loop0): ext4_check_descriptors: Checksum for group 0 failed (38247!=0) 21:38:09 executing program 3: set_mempolicy(0x8003, &(0x7f0000000300)=0x75f, 0x9) open(&(0x7f0000000300)='.\x00', 0x0, 0x0) r0 = syz_open_procfs(0x0, &(0x7f00000000c0)='fd/3\x00') r1 = syz_open_dev$swradio(&(0x7f0000000100)='/dev/swradio#\x00', 0x0, 0x2) mount$9p_fd(0x4000000000000000, &(0x7f0000000300)='.\x00', &(0x7f0000000080)='9p\x00', 0x0, &(0x7f0000000740)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}}) 21:38:09 executing program 2: set_mempolicy(0x8003, &(0x7f0000000300)=0x75f, 0x9) r0 = open(&(0x7f0000000300)='.\x00', 0x0, 0x0) symlinkat(&(0x7f0000000040)='\x13\x13w\xc5\xfc5\xd4\x14T\xd5\xd4\x1d)\xad\x1a`)Y\x81F\xe6\xbe\x16nA\xad\r\xbd@T\x03<\x9f3\xbb\xda\x82$\xa2\xf3\xd7r\xe7cnH\xb3<\xbfp\x83r\xe8\xf1\xb9\x93>\xc5\x12wC\xbe\"\x06 \x9e\xf0-\xf9\xcb\xf2\xf6\xe8\x80\xd38/\x00', r0, &(0x7f00000000c0)='./file0\x00') mkdirat(r0, &(0x7f0000000200)='\x13\x13w\xc5\xfc5\xd4\x14T\xd5\xd4\x1d)\xad\x1a`)Y\x81F\xe6\xbe\x16nA\xad\r\xbd@T\x03<\x9f3\xbb\xda\x82$\xa2\xf3\xd7r\xe7cnH\xb3<\xbfp\x83r\xe8\xf1\xb9\x93>\xc5\x12wC\xbe\"\x06 \x9e\xf0-\xf9\xcb\xf2\xf6\xe8\x80\xd38/\x00', 0x0) symlinkat(&(0x7f0000000340)='./file0/file0\x00', r0, &(0x7f0000000380)='\x13\x13w\xc5\xfc5\xd4\x14T\xd5\xd4\x1d)\xad\x1a`)Y\x81F\xe6\xbe\x16nA\xad\r\xbd@T\x03<\x9f3\xbb\xda\x82$\xa2\xf3\xd7r\xe7cnH\xb3<\xbfp\x83r\xe8\xf1\xb9\x93>\xc5\x12wC\xbe\"\x06 \x9e\xf0-\xf9\xcb\xf2\xf6\xe8\x80\xd38//file0\x00') r1 = open(&(0x7f0000000100)='.\x00', 0x0, 0x0) renameat2(r1, &(0x7f0000000400)='./file0/file0\x00', r1, &(0x7f0000000000)='./file0\x00', 0xfbffffff) [ 229.971350][T14666] EXT4-fs (loop0): group descriptors corrupted! 21:38:09 executing program 4: set_mempolicy(0x8003, &(0x7f0000000300)=0x75f, 0x9) open(&(0x7f0000000300)='.\x00', 0x0, 0x0) r0 = syz_open_procfs(0x0, &(0x7f00000000c0)='fd/3\x00') r1 = syz_open_dev$swradio(&(0x7f0000000100)='/dev/swradio#\x00', 0x0, 0x2) mount$9p_fd(0xa00000000000000, &(0x7f0000000300)='.\x00', &(0x7f0000000080)='9p\x00', 0x0, &(0x7f0000000740)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}}) 21:38:10 executing program 3: set_mempolicy(0x8003, &(0x7f0000000300)=0x75f, 0x9) open(&(0x7f0000000300)='.\x00', 0x0, 0x0) r0 = syz_open_procfs(0x0, &(0x7f00000000c0)='fd/3\x00') r1 = syz_open_dev$swradio(&(0x7f0000000100)='/dev/swradio#\x00', 0x0, 0x2) mount$9p_fd(0x5c00000000000000, &(0x7f0000000300)='.\x00', &(0x7f0000000080)='9p\x00', 0x0, &(0x7f0000000740)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}}) 21:38:10 executing program 0 (fault-call:0 fault-nth:23): syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x40000, 0x3, &(0x7f0000000200)=[{&(0x7f0000010000)="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", 0x10c, 0x400}, {&(0x7f0000010200)="0500000000000000000000000000000000000000040100002b", 0x19, 0x560}, {&(0x7f0000010300)="000000000000000000000000000000000000000000000000000000001481910a040000001400000024", 0x29, 0x7e0}], 0x0, &(0x7f0000000040)={[{@usrjquota='usrjquota='}, {@data_err_abort='data_err=abort'}]}) 21:38:10 executing program 1: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) r3 = syz_open_procfs(0x0, &(0x7f00000000c0)='fd/3\x00') mount$9p_fd(0x500000000000000, &(0x7f0000000300)='.\x00', &(0x7f0000000080)='9p\x00', 0x0, &(0x7f00000003c0)={'trans=fd,', {'rfdno', 0x3d, r3}, 0x2c, {'wfdno', 0x3d, r2}}) [ 230.034407][ T9557] kernel read not supported for file root/syzkaller-testdir051064025/syzkaller.PVWmQb/195 (pid: 9557 comm: kworker/1:4) [ 230.092574][ T9557] kernel read not supported for file root/syzkaller-testdir051064025/syzkaller.PVWmQb/195 (pid: 9557 comm: kworker/1:4) 21:38:10 executing program 2: set_mempolicy(0x8003, &(0x7f0000000300)=0x75f, 0x9) r0 = open(&(0x7f0000000300)='.\x00', 0x0, 0x0) symlinkat(&(0x7f0000000040)='\x13\x13w\xc5\xfc5\xd4\x14T\xd5\xd4\x1d)\xad\x1a`)Y\x81F\xe6\xbe\x16nA\xad\r\xbd@T\x03<\x9f3\xbb\xda\x82$\xa2\xf3\xd7r\xe7cnH\xb3<\xbfp\x83r\xe8\xf1\xb9\x93>\xc5\x12wC\xbe\"\x06 \x9e\xf0-\xf9\xcb\xf2\xf6\xe8\x80\xd38/\x00', r0, &(0x7f00000000c0)='./file0\x00') mkdirat(r0, &(0x7f0000000200)='\x13\x13w\xc5\xfc5\xd4\x14T\xd5\xd4\x1d)\xad\x1a`)Y\x81F\xe6\xbe\x16nA\xad\r\xbd@T\x03<\x9f3\xbb\xda\x82$\xa2\xf3\xd7r\xe7cnH\xb3<\xbfp\x83r\xe8\xf1\xb9\x93>\xc5\x12wC\xbe\"\x06 \x9e\xf0-\xf9\xcb\xf2\xf6\xe8\x80\xd38/\x00', 0x0) symlinkat(&(0x7f0000000340)='./file0/file0\x00', r0, &(0x7f0000000380)='\x13\x13w\xc5\xfc5\xd4\x14T\xd5\xd4\x1d)\xad\x1a`)Y\x81F\xe6\xbe\x16nA\xad\r\xbd@T\x03<\x9f3\xbb\xda\x82$\xa2\xf3\xd7r\xe7cnH\xb3<\xbfp\x83r\xe8\xf1\xb9\x93>\xc5\x12wC\xbe\"\x06 \x9e\xf0-\xf9\xcb\xf2\xf6\xe8\x80\xd38//file0\x00') r1 = open(&(0x7f0000000100)='.\x00', 0x0, 0x0) renameat2(r1, &(0x7f0000000400)='./file0/file0\x00', r1, &(0x7f0000000000)='./file0\x00', 0xfeffffff) [ 230.187895][T14723] FAULT_INJECTION: forcing a failure. [ 230.187895][T14723] name failslab, interval 1, probability 0, space 0, times 0 [ 230.200614][T14723] CPU: 0 PID: 14723 Comm: syz-executor.0 Not tainted 5.11.0-syzkaller #0 [ 230.209108][T14723] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 230.219160][T14723] Call Trace: [ 230.222433][T14723] dump_stack+0x116/0x15d [ 230.226781][T14723] should_fail+0x23c/0x250 [ 230.231193][T14723] ? radix_tree_node_alloc+0x154/0x1f0 21:38:10 executing program 3: set_mempolicy(0x8003, &(0x7f0000000300)=0x75f, 0x9) open(&(0x7f0000000300)='.\x00', 0x0, 0x0) r0 = syz_open_procfs(0x0, &(0x7f00000000c0)='fd/3\x00') r1 = syz_open_dev$swradio(&(0x7f0000000100)='/dev/swradio#\x00', 0x0, 0x2) mount$9p_fd(0x8cffffff00000000, &(0x7f0000000300)='.\x00', &(0x7f0000000080)='9p\x00', 0x0, &(0x7f0000000740)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}}) 21:38:10 executing program 4: set_mempolicy(0x8003, &(0x7f0000000300)=0x75f, 0x9) open(&(0x7f0000000300)='.\x00', 0x0, 0x0) r0 = syz_open_procfs(0x0, &(0x7f00000000c0)='fd/3\x00') r1 = syz_open_dev$swradio(&(0x7f0000000100)='/dev/swradio#\x00', 0x0, 0x2) mount$9p_fd(0xb00000000000000, &(0x7f0000000300)='.\x00', &(0x7f0000000080)='9p\x00', 0x0, &(0x7f0000000740)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}}) [ 230.236706][T14723] __should_failslab+0x81/0x90 [ 230.241466][T14723] should_failslab+0x5/0x20 [ 230.246408][T14723] kmem_cache_alloc+0x36/0x2e0 [ 230.251203][T14723] ? cpumask_next+0x1e/0x30 [ 230.256357][T14723] radix_tree_node_alloc+0x154/0x1f0 [ 230.261755][T14723] idr_get_free+0x22a/0x5d0 [ 230.266768][T14723] idr_alloc_cyclic+0xe3/0x2d0 [ 230.271531][T14723] ? __radix_tree_preload+0x19e/0x1c0 [ 230.276911][T14723] __kernfs_new_node+0xbd/0x360 [ 230.281757][T14723] ? update_load_avg+0x1ad/0x2d0 21:38:10 executing program 1: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) r3 = syz_open_procfs(0x0, &(0x7f00000000c0)='fd/3\x00') mount$9p_fd(0x600000000000000, &(0x7f0000000300)='.\x00', &(0x7f0000000080)='9p\x00', 0x0, &(0x7f00000003c0)={'trans=fd,', {'rfdno', 0x3d, r3}, 0x2c, {'wfdno', 0x3d, r2}}) 21:38:10 executing program 5: set_mempolicy(0x8003, &(0x7f0000000300)=0x75f, 0x9) open(&(0x7f0000000300)='.\x00', 0x0, 0x0) r0 = syz_open_procfs(0x0, &(0x7f00000000c0)='fd/3\x00') r1 = syz_open_dev$swradio(&(0x7f0000000100)='/dev/swradio#\x00', 0x0, 0x2) mount$9p_fd(0x0, &(0x7f0000000300)='.\x00', &(0x7f0000000080)='9p\x00', 0x5, &(0x7f0000000740)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}}) [ 230.286681][T14723] ? rb_insert_color+0x7e/0x310 [ 230.291698][T14723] kernfs_create_dir_ns+0x5e/0x140 [ 230.297000][T14723] internal_create_group+0x138/0x850 [ 230.302282][T14723] sysfs_create_group+0x1b/0x20 [ 230.307216][T14723] loop_configure+0x9b4/0xc40 [ 230.312011][T14723] lo_ioctl+0x54b/0x11e0 [ 230.316232][T14723] ? ___cache_free+0x3c/0x2f0 [ 230.320898][T14723] ? blkdev_common_ioctl+0xa29/0x1060 [ 230.326248][T14723] ? lo_release+0x120/0x120 [ 230.330819][T14723] blkdev_ioctl+0x1d0/0x3c0 [ 230.335322][T14723] block_ioctl+0x6d/0x80 [ 230.339550][T14723] ? blkdev_iopoll+0x70/0x70 [ 230.344125][T14723] __se_sys_ioctl+0xcb/0x140 [ 230.348733][T14723] __x64_sys_ioctl+0x3f/0x50 [ 230.353326][T14723] do_syscall_64+0x39/0x80 [ 230.357738][T14723] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 230.363651][T14723] RIP: 0033:0x465b57 [ 230.367559][T14723] Code: 3c 1c 48 f7 d8 49 39 c4 72 b8 e8 a4 4d 02 00 85 c0 78 bd 48 83 c4 08 4c 89 e0 5b 41 5c c3 0f 1f 44 00 00 b8 10 00 00 00 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 230.387155][T14723] RSP: 002b:00007f8175ef9f48 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 230.395575][T14723] RAX: ffffffffffffffda RBX: 00000000004af960 RCX: 0000000000465b57 [ 230.403527][T14723] RDX: 0000000000000004 RSI: 0000000000004c00 RDI: 0000000000000005 [ 230.411480][T14723] RBP: 0000000000000005 R08: 0000000000000000 R09: ffffffffffffffff [ 230.419432][T14723] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000004 [ 230.427378][T14723] R13: 0000000000000004 R14: 0000000020000248 R15: 0000000000000003 [ 230.438104][T14723] loop0: detected capacity change from 512 to 0 [ 230.460513][T14723] EXT4-fs (loop0): ext4_check_descriptors: Checksum for group 0 failed (38247!=0) [ 230.477324][T14723] EXT4-fs (loop0): group descriptors corrupted! 21:38:10 executing program 2: set_mempolicy(0x8003, &(0x7f0000000300)=0x75f, 0x9) r0 = open(&(0x7f0000000300)='.\x00', 0x0, 0x0) symlinkat(&(0x7f0000000040)='\x13\x13w\xc5\xfc5\xd4\x14T\xd5\xd4\x1d)\xad\x1a`)Y\x81F\xe6\xbe\x16nA\xad\r\xbd@T\x03<\x9f3\xbb\xda\x82$\xa2\xf3\xd7r\xe7cnH\xb3<\xbfp\x83r\xe8\xf1\xb9\x93>\xc5\x12wC\xbe\"\x06 \x9e\xf0-\xf9\xcb\xf2\xf6\xe8\x80\xd38/\x00', r0, &(0x7f00000000c0)='./file0\x00') mkdirat(r0, &(0x7f0000000200)='\x13\x13w\xc5\xfc5\xd4\x14T\xd5\xd4\x1d)\xad\x1a`)Y\x81F\xe6\xbe\x16nA\xad\r\xbd@T\x03<\x9f3\xbb\xda\x82$\xa2\xf3\xd7r\xe7cnH\xb3<\xbfp\x83r\xe8\xf1\xb9\x93>\xc5\x12wC\xbe\"\x06 \x9e\xf0-\xf9\xcb\xf2\xf6\xe8\x80\xd38/\x00', 0x0) symlinkat(&(0x7f0000000340)='./file0/file0\x00', r0, &(0x7f0000000380)='\x13\x13w\xc5\xfc5\xd4\x14T\xd5\xd4\x1d)\xad\x1a`)Y\x81F\xe6\xbe\x16nA\xad\r\xbd@T\x03<\x9f3\xbb\xda\x82$\xa2\xf3\xd7r\xe7cnH\xb3<\xbfp\x83r\xe8\xf1\xb9\x93>\xc5\x12wC\xbe\"\x06 \x9e\xf0-\xf9\xcb\xf2\xf6\xe8\x80\xd38//file0\x00') r1 = open(&(0x7f0000000100)='.\x00', 0x0, 0x0) renameat2(r1, &(0x7f0000000400)='./file0/file0\x00', r1, &(0x7f0000000000)='./file0\x00', 0xff000000) 21:38:10 executing program 0 (fault-call:0 fault-nth:24): syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x40000, 0x3, &(0x7f0000000200)=[{&(0x7f0000010000)="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", 0x10c, 0x400}, {&(0x7f0000010200)="0500000000000000000000000000000000000000040100002b", 0x19, 0x560}, {&(0x7f0000010300)="000000000000000000000000000000000000000000000000000000001481910a040000001400000024", 0x29, 0x7e0}], 0x0, &(0x7f0000000040)={[{@usrjquota='usrjquota='}, {@data_err_abort='data_err=abort'}]}) 21:38:10 executing program 1: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) r3 = syz_open_procfs(0x0, &(0x7f00000000c0)='fd/3\x00') mount$9p_fd(0x700000000000000, &(0x7f0000000300)='.\x00', &(0x7f0000000080)='9p\x00', 0x0, &(0x7f00000003c0)={'trans=fd,', {'rfdno', 0x3d, r3}, 0x2c, {'wfdno', 0x3d, r2}}) [ 230.531033][ T3648] kernel read not supported for file root/syzkaller-testdir051064025/syzkaller.PVWmQb/196 (pid: 3648 comm: kworker/1:2) 21:38:10 executing program 4: set_mempolicy(0x8003, &(0x7f0000000300)=0x75f, 0x9) open(&(0x7f0000000300)='.\x00', 0x0, 0x0) r0 = syz_open_procfs(0x0, &(0x7f00000000c0)='fd/3\x00') r1 = syz_open_dev$swradio(&(0x7f0000000100)='/dev/swradio#\x00', 0x0, 0x2) mount$9p_fd(0xc00000000000000, &(0x7f0000000300)='.\x00', &(0x7f0000000080)='9p\x00', 0x0, &(0x7f0000000740)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}}) 21:38:10 executing program 3: set_mempolicy(0x8003, &(0x7f0000000300)=0x75f, 0x9) open(&(0x7f0000000300)='.\x00', 0x0, 0x0) r0 = syz_open_procfs(0x0, &(0x7f00000000c0)='fd/3\x00') r1 = syz_open_dev$swradio(&(0x7f0000000100)='/dev/swradio#\x00', 0x0, 0x2) mount$9p_fd(0xf6ffffff00000000, &(0x7f0000000300)='.\x00', &(0x7f0000000080)='9p\x00', 0x0, &(0x7f0000000740)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}}) 21:38:10 executing program 2: set_mempolicy(0x8003, &(0x7f0000000300)=0x75f, 0x9) r0 = open(&(0x7f0000000300)='.\x00', 0x0, 0x0) symlinkat(&(0x7f0000000040)='\x13\x13w\xc5\xfc5\xd4\x14T\xd5\xd4\x1d)\xad\x1a`)Y\x81F\xe6\xbe\x16nA\xad\r\xbd@T\x03<\x9f3\xbb\xda\x82$\xa2\xf3\xd7r\xe7cnH\xb3<\xbfp\x83r\xe8\xf1\xb9\x93>\xc5\x12wC\xbe\"\x06 \x9e\xf0-\xf9\xcb\xf2\xf6\xe8\x80\xd38/\x00', r0, &(0x7f00000000c0)='./file0\x00') mkdirat(r0, &(0x7f0000000200)='\x13\x13w\xc5\xfc5\xd4\x14T\xd5\xd4\x1d)\xad\x1a`)Y\x81F\xe6\xbe\x16nA\xad\r\xbd@T\x03<\x9f3\xbb\xda\x82$\xa2\xf3\xd7r\xe7cnH\xb3<\xbfp\x83r\xe8\xf1\xb9\x93>\xc5\x12wC\xbe\"\x06 \x9e\xf0-\xf9\xcb\xf2\xf6\xe8\x80\xd38/\x00', 0x0) symlinkat(&(0x7f0000000340)='./file0/file0\x00', r0, &(0x7f0000000380)='\x13\x13w\xc5\xfc5\xd4\x14T\xd5\xd4\x1d)\xad\x1a`)Y\x81F\xe6\xbe\x16nA\xad\r\xbd@T\x03<\x9f3\xbb\xda\x82$\xa2\xf3\xd7r\xe7cnH\xb3<\xbfp\x83r\xe8\xf1\xb9\x93>\xc5\x12wC\xbe\"\x06 \x9e\xf0-\xf9\xcb\xf2\xf6\xe8\x80\xd38//file0\x00') r1 = open(&(0x7f0000000100)='.\x00', 0x0, 0x0) renameat2(r1, &(0x7f0000000400)='./file0/file0\x00', r1, &(0x7f0000000000)='./file0\x00', 0xffffff7f) 21:38:10 executing program 5: set_mempolicy(0x8003, &(0x7f0000000300)=0x75f, 0x9) open(&(0x7f0000000300)='.\x00', 0x0, 0x0) r0 = syz_open_procfs(0x0, &(0x7f00000000c0)='fd/3\x00') r1 = syz_open_dev$swradio(&(0x7f0000000100)='/dev/swradio#\x00', 0x0, 0x2) mount$9p_fd(0x0, &(0x7f0000000300)='.\x00', &(0x7f0000000080)='9p\x00', 0x6, &(0x7f0000000740)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}}) [ 230.629760][ T3648] kernel read not supported for file root/syzkaller-testdir051064025/syzkaller.PVWmQb/196 (pid: 3648 comm: kworker/1:2) [ 230.654501][T14768] FAULT_INJECTION: forcing a failure. [ 230.654501][T14768] name failslab, interval 1, probability 0, space 0, times 0 [ 230.683946][T14768] CPU: 1 PID: 14768 Comm: syz-executor.0 Not tainted 5.11.0-syzkaller #0 [ 230.692481][T14768] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 230.702527][T14768] Call Trace: [ 230.705795][T14768] dump_stack+0x116/0x15d [ 230.710118][T14768] should_fail+0x23c/0x250 [ 230.714689][T14768] ? __kernfs_new_node+0x73/0x360 [ 230.719709][T14768] __should_failslab+0x81/0x90 [ 230.724497][T14768] should_failslab+0x5/0x20 [ 230.728987][T14768] kmem_cache_alloc+0x36/0x2e0 [ 230.733819][T14768] __kernfs_new_node+0x73/0x360 [ 230.738694][T14768] ? bpf_lsm_kernfs_init_security+0x5/0x10 [ 230.744487][T14768] ? security_kernfs_init_security+0x7b/0x90 [ 230.750511][T14768] ? rb_insert_color+0x7e/0x310 [ 230.755341][T14768] kernfs_new_node+0x5b/0xd0 [ 230.759977][T14768] __kernfs_create_file+0x45/0x1a0 [ 230.765079][T14768] sysfs_add_file_mode_ns+0x1c1/0x250 [ 230.770453][T14768] internal_create_group+0x2e4/0x850 [ 230.775739][T14768] sysfs_create_group+0x1b/0x20 [ 230.780627][T14768] loop_configure+0x9b4/0xc40 [ 230.785289][T14768] lo_ioctl+0x54b/0x11e0 [ 230.790118][T14768] ? ___cache_free+0x3c/0x2f0 [ 230.794779][T14768] ? blkdev_common_ioctl+0xa29/0x1060 [ 230.800131][T14768] ? lo_release+0x120/0x120 [ 230.804721][T14768] blkdev_ioctl+0x1d0/0x3c0 [ 230.809213][T14768] block_ioctl+0x6d/0x80 [ 230.813448][T14768] ? blkdev_iopoll+0x70/0x70 [ 230.818021][T14768] __se_sys_ioctl+0xcb/0x140 [ 230.822605][T14768] __x64_sys_ioctl+0x3f/0x50 [ 230.827233][T14768] do_syscall_64+0x39/0x80 [ 230.831720][T14768] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 230.837632][T14768] RIP: 0033:0x465b57 [ 230.841504][T14768] Code: 3c 1c 48 f7 d8 49 39 c4 72 b8 e8 a4 4d 02 00 85 c0 78 bd 48 83 c4 08 4c 89 e0 5b 41 5c c3 0f 1f 44 00 00 b8 10 00 00 00 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 230.861099][T14768] RSP: 002b:00007f8175ef9f48 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 230.869490][T14768] RAX: ffffffffffffffda RBX: 00000000004af960 RCX: 0000000000465b57 [ 230.877442][T14768] RDX: 0000000000000004 RSI: 0000000000004c00 RDI: 0000000000000005 [ 230.885394][T14768] RBP: 0000000000000005 R08: 0000000000000000 R09: ffffffffffffffff [ 230.893344][T14768] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000004 [ 230.901306][T14768] R13: 0000000000000004 R14: 0000000020000248 R15: 0000000000000003 [ 230.910563][T14768] loop0: detected capacity change from 512 to 0 21:38:10 executing program 3: set_mempolicy(0x8003, &(0x7f0000000300)=0x75f, 0x9) open(&(0x7f0000000300)='.\x00', 0x0, 0x0) r0 = syz_open_procfs(0x0, &(0x7f00000000c0)='fd/3\x00') r1 = syz_open_dev$swradio(&(0x7f0000000100)='/dev/swradio#\x00', 0x0, 0x2) mount$9p_fd(0xfeffffff00000000, &(0x7f0000000300)='.\x00', &(0x7f0000000080)='9p\x00', 0x0, &(0x7f0000000740)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}}) 21:38:10 executing program 4: set_mempolicy(0x8003, &(0x7f0000000300)=0x75f, 0x9) open(&(0x7f0000000300)='.\x00', 0x0, 0x0) r0 = syz_open_procfs(0x0, &(0x7f00000000c0)='fd/3\x00') r1 = syz_open_dev$swradio(&(0x7f0000000100)='/dev/swradio#\x00', 0x0, 0x2) mount$9p_fd(0xd00000000000000, &(0x7f0000000300)='.\x00', &(0x7f0000000080)='9p\x00', 0x0, &(0x7f0000000740)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}}) 21:38:10 executing program 1: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) r3 = syz_open_procfs(0x0, &(0x7f00000000c0)='fd/3\x00') mount$9p_fd(0x800000000000000, &(0x7f0000000300)='.\x00', &(0x7f0000000080)='9p\x00', 0x0, &(0x7f00000003c0)={'trans=fd,', {'rfdno', 0x3d, r3}, 0x2c, {'wfdno', 0x3d, r2}}) [ 230.938153][T14768] EXT4-fs (loop0): ext4_check_descriptors: Checksum for group 0 failed (38247!=0) [ 230.948802][T14768] EXT4-fs (loop0): group descriptors corrupted! 21:38:10 executing program 2: set_mempolicy(0x8003, &(0x7f0000000300)=0x75f, 0x9) r0 = open(&(0x7f0000000300)='.\x00', 0x0, 0x0) symlinkat(&(0x7f0000000040)='\x13\x13w\xc5\xfc5\xd4\x14T\xd5\xd4\x1d)\xad\x1a`)Y\x81F\xe6\xbe\x16nA\xad\r\xbd@T\x03<\x9f3\xbb\xda\x82$\xa2\xf3\xd7r\xe7cnH\xb3<\xbfp\x83r\xe8\xf1\xb9\x93>\xc5\x12wC\xbe\"\x06 \x9e\xf0-\xf9\xcb\xf2\xf6\xe8\x80\xd38/\x00', r0, &(0x7f00000000c0)='./file0\x00') mkdirat(r0, &(0x7f0000000200)='\x13\x13w\xc5\xfc5\xd4\x14T\xd5\xd4\x1d)\xad\x1a`)Y\x81F\xe6\xbe\x16nA\xad\r\xbd@T\x03<\x9f3\xbb\xda\x82$\xa2\xf3\xd7r\xe7cnH\xb3<\xbfp\x83r\xe8\xf1\xb9\x93>\xc5\x12wC\xbe\"\x06 \x9e\xf0-\xf9\xcb\xf2\xf6\xe8\x80\xd38/\x00', 0x0) symlinkat(&(0x7f0000000340)='./file0/file0\x00', r0, &(0x7f0000000380)='\x13\x13w\xc5\xfc5\xd4\x14T\xd5\xd4\x1d)\xad\x1a`)Y\x81F\xe6\xbe\x16nA\xad\r\xbd@T\x03<\x9f3\xbb\xda\x82$\xa2\xf3\xd7r\xe7cnH\xb3<\xbfp\x83r\xe8\xf1\xb9\x93>\xc5\x12wC\xbe\"\x06 \x9e\xf0-\xf9\xcb\xf2\xf6\xe8\x80\xd38//file0\x00') r1 = open(&(0x7f0000000100)='.\x00', 0x0, 0x0) renameat2(r1, &(0x7f0000000400)='./file0/file0\x00', r1, &(0x7f0000000000)='./file0\x00', 0xffffff8c) 21:38:11 executing program 0 (fault-call:0 fault-nth:25): syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x40000, 0x3, &(0x7f0000000200)=[{&(0x7f0000010000)="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", 0x10c, 0x400}, {&(0x7f0000010200)="0500000000000000000000000000000000000000040100002b", 0x19, 0x560}, {&(0x7f0000010300)="000000000000000000000000000000000000000000000000000000001481910a040000001400000024", 0x29, 0x7e0}], 0x0, &(0x7f0000000040)={[{@usrjquota='usrjquota='}, {@data_err_abort='data_err=abort'}]}) [ 231.005491][ T5] kernel read not supported for file root/syzkaller-testdir051064025/syzkaller.PVWmQb/197 (pid: 5 comm: kworker/0:0) 21:38:11 executing program 4: set_mempolicy(0x8003, &(0x7f0000000300)=0x75f, 0x9) open(&(0x7f0000000300)='.\x00', 0x0, 0x0) r0 = syz_open_procfs(0x0, &(0x7f00000000c0)='fd/3\x00') r1 = syz_open_dev$swradio(&(0x7f0000000100)='/dev/swradio#\x00', 0x0, 0x2) mount$9p_fd(0xe00000000000000, &(0x7f0000000300)='.\x00', &(0x7f0000000080)='9p\x00', 0x0, &(0x7f0000000740)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}}) 21:38:11 executing program 3: set_mempolicy(0x8003, &(0x7f0000000300)=0x75f, 0x9) open(&(0x7f0000000300)='.\x00', 0x0, 0x0) r0 = syz_open_procfs(0x0, &(0x7f00000000c0)='fd/3\x00') r1 = syz_open_dev$swradio(&(0x7f0000000100)='/dev/swradio#\x00', 0x0, 0x2) mount$9p_fd(0xff00000000000000, &(0x7f0000000300)='.\x00', &(0x7f0000000080)='9p\x00', 0x0, &(0x7f0000000740)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}}) [ 231.076746][ T3648] kernel read not supported for file root/syzkaller-testdir051064025/syzkaller.PVWmQb/197 (pid: 3648 comm: kworker/1:2) 21:38:11 executing program 2: set_mempolicy(0x8003, &(0x7f0000000300)=0x75f, 0x9) r0 = open(&(0x7f0000000300)='.\x00', 0x0, 0x0) symlinkat(&(0x7f0000000040)='\x13\x13w\xc5\xfc5\xd4\x14T\xd5\xd4\x1d)\xad\x1a`)Y\x81F\xe6\xbe\x16nA\xad\r\xbd@T\x03<\x9f3\xbb\xda\x82$\xa2\xf3\xd7r\xe7cnH\xb3<\xbfp\x83r\xe8\xf1\xb9\x93>\xc5\x12wC\xbe\"\x06 \x9e\xf0-\xf9\xcb\xf2\xf6\xe8\x80\xd38/\x00', r0, &(0x7f00000000c0)='./file0\x00') mkdirat(r0, &(0x7f0000000200)='\x13\x13w\xc5\xfc5\xd4\x14T\xd5\xd4\x1d)\xad\x1a`)Y\x81F\xe6\xbe\x16nA\xad\r\xbd@T\x03<\x9f3\xbb\xda\x82$\xa2\xf3\xd7r\xe7cnH\xb3<\xbfp\x83r\xe8\xf1\xb9\x93>\xc5\x12wC\xbe\"\x06 \x9e\xf0-\xf9\xcb\xf2\xf6\xe8\x80\xd38/\x00', 0x0) symlinkat(&(0x7f0000000340)='./file0/file0\x00', r0, &(0x7f0000000380)='\x13\x13w\xc5\xfc5\xd4\x14T\xd5\xd4\x1d)\xad\x1a`)Y\x81F\xe6\xbe\x16nA\xad\r\xbd@T\x03<\x9f3\xbb\xda\x82$\xa2\xf3\xd7r\xe7cnH\xb3<\xbfp\x83r\xe8\xf1\xb9\x93>\xc5\x12wC\xbe\"\x06 \x9e\xf0-\xf9\xcb\xf2\xf6\xe8\x80\xd38//file0\x00') r1 = open(&(0x7f0000000100)='.\x00', 0x0, 0x0) renameat2(r1, &(0x7f0000000400)='./file0/file0\x00', r1, &(0x7f0000000000)='./file0\x00', 0xfffffff4) 21:38:11 executing program 5: set_mempolicy(0x8003, &(0x7f0000000300)=0x75f, 0x9) open(&(0x7f0000000300)='.\x00', 0x0, 0x0) r0 = syz_open_procfs(0x0, &(0x7f00000000c0)='fd/3\x00') r1 = syz_open_dev$swradio(&(0x7f0000000100)='/dev/swradio#\x00', 0x0, 0x2) mount$9p_fd(0x0, &(0x7f0000000300)='.\x00', &(0x7f0000000080)='9p\x00', 0x7, &(0x7f0000000740)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}}) [ 231.118152][T14807] FAULT_INJECTION: forcing a failure. [ 231.118152][T14807] name failslab, interval 1, probability 0, space 0, times 0 21:38:11 executing program 4: set_mempolicy(0x8003, &(0x7f0000000300)=0x75f, 0x9) open(&(0x7f0000000300)='.\x00', 0x0, 0x0) r0 = syz_open_procfs(0x0, &(0x7f00000000c0)='fd/3\x00') r1 = syz_open_dev$swradio(&(0x7f0000000100)='/dev/swradio#\x00', 0x0, 0x2) mount$9p_fd(0xfffffffffffffff, &(0x7f0000000300)='.\x00', &(0x7f0000000080)='9p\x00', 0x0, &(0x7f0000000740)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}}) 21:38:11 executing program 1: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) r3 = syz_open_procfs(0x0, &(0x7f00000000c0)='fd/3\x00') mount$9p_fd(0x900000000000000, &(0x7f0000000300)='.\x00', &(0x7f0000000080)='9p\x00', 0x0, &(0x7f00000003c0)={'trans=fd,', {'rfdno', 0x3d, r3}, 0x2c, {'wfdno', 0x3d, r2}}) [ 231.169804][T14807] CPU: 1 PID: 14807 Comm: syz-executor.0 Not tainted 5.11.0-syzkaller #0 [ 231.178250][T14807] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 231.188311][T14807] Call Trace: [ 231.191596][T14807] dump_stack+0x116/0x15d [ 231.195925][T14807] should_fail+0x23c/0x250 [ 231.200337][T14807] ? __kernfs_new_node+0x73/0x360 [ 231.205362][T14807] __should_failslab+0x81/0x90 [ 231.210147][T14807] should_failslab+0x5/0x20 [ 231.214680][T14807] kmem_cache_alloc+0x36/0x2e0 [ 231.219432][T14807] __kernfs_new_node+0x73/0x360 [ 231.224369][T14807] ? kernfs_link_sibling+0x227/0x240 [ 231.229749][T14807] ? security_kernfs_init_security+0x7b/0x90 [ 231.235718][T14807] ? rb_insert_color+0x7e/0x310 [ 231.240558][T14807] kernfs_new_node+0x5b/0xd0 [ 231.245142][T14807] __kernfs_create_file+0x45/0x1a0 [ 231.250270][T14807] sysfs_add_file_mode_ns+0x1c1/0x250 [ 231.255655][T14807] internal_create_group+0x2e4/0x850 [ 231.260919][T14807] sysfs_create_group+0x1b/0x20 [ 231.265843][T14807] loop_configure+0x9b4/0xc40 [ 231.270611][T14807] lo_ioctl+0x54b/0x11e0 [ 231.274846][T14807] ? ___cache_free+0x3c/0x2f0 [ 231.279502][T14807] ? blkdev_common_ioctl+0xa29/0x1060 [ 231.284857][T14807] ? lo_release+0x120/0x120 [ 231.289390][T14807] blkdev_ioctl+0x1d0/0x3c0 [ 231.293869][T14807] block_ioctl+0x6d/0x80 [ 231.298157][T14807] ? blkdev_iopoll+0x70/0x70 [ 231.302832][T14807] __se_sys_ioctl+0xcb/0x140 [ 231.307413][T14807] __x64_sys_ioctl+0x3f/0x50 [ 231.311982][T14807] do_syscall_64+0x39/0x80 [ 231.316377][T14807] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 231.322250][T14807] RIP: 0033:0x465b57 [ 231.326133][T14807] Code: 3c 1c 48 f7 d8 49 39 c4 72 b8 e8 a4 4d 02 00 85 c0 78 bd 48 83 c4 08 4c 89 e0 5b 41 5c c3 0f 1f 44 00 00 b8 10 00 00 00 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 231.345748][T14807] RSP: 002b:00007f8175ef9f48 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 231.354138][T14807] RAX: ffffffffffffffda RBX: 00000000004af960 RCX: 0000000000465b57 [ 231.362129][T14807] RDX: 0000000000000004 RSI: 0000000000004c00 RDI: 0000000000000005 [ 231.370270][T14807] RBP: 0000000000000005 R08: 0000000000000000 R09: ffffffffffffffff [ 231.378239][T14807] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000004 [ 231.386191][T14807] R13: 0000000000000004 R14: 0000000020000248 R15: 0000000000000003 [ 231.395228][T14807] loop0: detected capacity change from 512 to 0 [ 231.418763][T14807] EXT4-fs (loop0): ext4_check_descriptors: Checksum for group 0 failed (38247!=0) [ 231.442657][T14807] EXT4-fs (loop0): group descriptors corrupted! 21:38:11 executing program 2: set_mempolicy(0x8003, &(0x7f0000000300)=0x75f, 0x9) r0 = open(&(0x7f0000000300)='.\x00', 0x0, 0x0) symlinkat(&(0x7f0000000040)='\x13\x13w\xc5\xfc5\xd4\x14T\xd5\xd4\x1d)\xad\x1a`)Y\x81F\xe6\xbe\x16nA\xad\r\xbd@T\x03<\x9f3\xbb\xda\x82$\xa2\xf3\xd7r\xe7cnH\xb3<\xbfp\x83r\xe8\xf1\xb9\x93>\xc5\x12wC\xbe\"\x06 \x9e\xf0-\xf9\xcb\xf2\xf6\xe8\x80\xd38/\x00', r0, &(0x7f00000000c0)='./file0\x00') mkdirat(r0, &(0x7f0000000200)='\x13\x13w\xc5\xfc5\xd4\x14T\xd5\xd4\x1d)\xad\x1a`)Y\x81F\xe6\xbe\x16nA\xad\r\xbd@T\x03<\x9f3\xbb\xda\x82$\xa2\xf3\xd7r\xe7cnH\xb3<\xbfp\x83r\xe8\xf1\xb9\x93>\xc5\x12wC\xbe\"\x06 \x9e\xf0-\xf9\xcb\xf2\xf6\xe8\x80\xd38/\x00', 0x0) symlinkat(&(0x7f0000000340)='./file0/file0\x00', r0, &(0x7f0000000380)='\x13\x13w\xc5\xfc5\xd4\x14T\xd5\xd4\x1d)\xad\x1a`)Y\x81F\xe6\xbe\x16nA\xad\r\xbd@T\x03<\x9f3\xbb\xda\x82$\xa2\xf3\xd7r\xe7cnH\xb3<\xbfp\x83r\xe8\xf1\xb9\x93>\xc5\x12wC\xbe\"\x06 \x9e\xf0-\xf9\xcb\xf2\xf6\xe8\x80\xd38//file0\x00') r1 = open(&(0x7f0000000100)='.\x00', 0x0, 0x0) renameat2(r1, &(0x7f0000000400)='./file0/file0\x00', r1, &(0x7f0000000000)='./file0\x00', 0xfffffff6) 21:38:11 executing program 0 (fault-call:0 fault-nth:26): syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x40000, 0x3, &(0x7f0000000200)=[{&(0x7f0000010000)="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", 0x10c, 0x400}, {&(0x7f0000010200)="0500000000000000000000000000000000000000040100002b", 0x19, 0x560}, {&(0x7f0000010300)="000000000000000000000000000000000000000000000000000000001481910a040000001400000024", 0x29, 0x7e0}], 0x0, &(0x7f0000000040)={[{@usrjquota='usrjquota='}, {@data_err_abort='data_err=abort'}]}) 21:38:11 executing program 4: set_mempolicy(0x8003, &(0x7f0000000300)=0x75f, 0x9) open(&(0x7f0000000300)='.\x00', 0x0, 0x0) r0 = syz_open_procfs(0x0, &(0x7f00000000c0)='fd/3\x00') r1 = syz_open_dev$swradio(&(0x7f0000000100)='/dev/swradio#\x00', 0x0, 0x2) mount$9p_fd(0x1000000000000000, &(0x7f0000000300)='.\x00', &(0x7f0000000080)='9p\x00', 0x0, &(0x7f0000000740)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}}) [ 231.493344][T10606] kernel read not supported for file root/syzkaller-testdir051064025/syzkaller.PVWmQb/198 (pid: 10606 comm: kworker/1:6) 21:38:11 executing program 1: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) r3 = syz_open_procfs(0x0, &(0x7f00000000c0)='fd/3\x00') mount$9p_fd(0xa00000000000000, &(0x7f0000000300)='.\x00', &(0x7f0000000080)='9p\x00', 0x0, &(0x7f00000003c0)={'trans=fd,', {'rfdno', 0x3d, r3}, 0x2c, {'wfdno', 0x3d, r2}}) 21:38:11 executing program 3: set_mempolicy(0x8003, &(0x7f0000000300)=0x75f, 0x9) open(&(0x7f0000000300)='.\x00', 0x0, 0x0) r0 = syz_open_procfs(0x0, &(0x7f00000000c0)='fd/3\x00') r1 = syz_open_dev$swradio(&(0x7f0000000100)='/dev/swradio#\x00', 0x0, 0x2) mount$9p_fd(0xff9f000000000000, &(0x7f0000000300)='.\x00', &(0x7f0000000080)='9p\x00', 0x0, &(0x7f0000000740)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}}) 21:38:11 executing program 5: set_mempolicy(0x8003, &(0x7f0000000300)=0x75f, 0x9) open(&(0x7f0000000300)='.\x00', 0x0, 0x0) r0 = syz_open_procfs(0x0, &(0x7f00000000c0)='fd/3\x00') r1 = syz_open_dev$swradio(&(0x7f0000000100)='/dev/swradio#\x00', 0x0, 0x2) mount$9p_fd(0x0, &(0x7f0000000300)='.\x00', &(0x7f0000000080)='9p\x00', 0x8, &(0x7f0000000740)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}}) [ 231.607422][T14856] FAULT_INJECTION: forcing a failure. [ 231.607422][T14856] name failslab, interval 1, probability 0, space 0, times 0 [ 231.620178][T14856] CPU: 1 PID: 14856 Comm: syz-executor.0 Not tainted 5.11.0-syzkaller #0 [ 231.628598][T14856] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 231.638698][T14856] Call Trace: [ 231.641963][T14856] dump_stack+0x116/0x15d [ 231.646369][T14856] should_fail+0x23c/0x250 [ 231.650791][T14856] ? __kernfs_new_node+0x73/0x360 [ 231.655863][T14856] __should_failslab+0x81/0x90 [ 231.660606][T14856] should_failslab+0x5/0x20 [ 231.665088][T14856] kmem_cache_alloc+0x36/0x2e0 [ 231.669917][T14856] __kernfs_new_node+0x73/0x360 [ 231.674746][T14856] ? kernfs_link_sibling+0x227/0x240 [ 231.680063][T14856] kernfs_new_node+0x5b/0xd0 [ 231.685068][T14856] __kernfs_create_file+0x45/0x1a0 [ 231.690158][T14856] sysfs_add_file_mode_ns+0x1c1/0x250 [ 231.695565][T14856] internal_create_group+0x2e4/0x850 [ 231.700832][T14856] sysfs_create_group+0x1b/0x20 [ 231.705684][T14856] loop_configure+0x9b4/0xc40 [ 231.710345][T14856] lo_ioctl+0x54b/0x11e0 [ 231.714573][T14856] ? ___cache_free+0x3c/0x2f0 [ 231.719337][T14856] ? blkdev_common_ioctl+0xa29/0x1060 [ 231.724689][T14856] ? lo_release+0x120/0x120 [ 231.729249][T14856] blkdev_ioctl+0x1d0/0x3c0 [ 231.733733][T14856] block_ioctl+0x6d/0x80 [ 231.737963][T14856] ? blkdev_iopoll+0x70/0x70 [ 231.742535][T14856] __se_sys_ioctl+0xcb/0x140 [ 231.747181][T14856] __x64_sys_ioctl+0x3f/0x50 [ 231.751781][T14856] do_syscall_64+0x39/0x80 [ 231.756225][T14856] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 231.762176][T14856] RIP: 0033:0x465b57 [ 231.766054][T14856] Code: 3c 1c 48 f7 d8 49 39 c4 72 b8 e8 a4 4d 02 00 85 c0 78 bd 48 83 c4 08 4c 89 e0 5b 41 5c c3 0f 1f 44 00 00 b8 10 00 00 00 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 231.785741][T14856] RSP: 002b:00007f8175ef9f48 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 231.794131][T14856] RAX: ffffffffffffffda RBX: 00000000004af960 RCX: 0000000000465b57 21:38:11 executing program 3: set_mempolicy(0x8003, &(0x7f0000000300)=0x75f, 0x9) open(&(0x7f0000000300)='.\x00', 0x0, 0x0) r0 = syz_open_procfs(0x0, &(0x7f00000000c0)='fd/3\x00') r1 = syz_open_dev$swradio(&(0x7f0000000100)='/dev/swradio#\x00', 0x0, 0x2) mount$9p_fd(0xffff000000000000, &(0x7f0000000300)='.\x00', &(0x7f0000000080)='9p\x00', 0x0, &(0x7f0000000740)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}}) [ 231.802081][T14856] RDX: 0000000000000004 RSI: 0000000000004c00 RDI: 0000000000000005 [ 231.810044][T14856] RBP: 0000000000000005 R08: 0000000000000000 R09: ffffffffffffffff [ 231.817997][T14856] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000004 [ 231.825964][T14856] R13: 0000000000000004 R14: 0000000020000248 R15: 0000000000000003 [ 231.836450][T14856] loop0: detected capacity change from 512 to 0 21:38:11 executing program 4: set_mempolicy(0x8003, &(0x7f0000000300)=0x75f, 0x9) open(&(0x7f0000000300)='.\x00', 0x0, 0x0) r0 = syz_open_procfs(0x0, &(0x7f00000000c0)='fd/3\x00') r1 = syz_open_dev$swradio(&(0x7f0000000100)='/dev/swradio#\x00', 0x0, 0x2) mount$9p_fd(0x1100000000000000, &(0x7f0000000300)='.\x00', &(0x7f0000000080)='9p\x00', 0x0, &(0x7f0000000740)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}}) 21:38:11 executing program 5: set_mempolicy(0x8003, &(0x7f0000000300)=0x75f, 0x9) open(&(0x7f0000000300)='.\x00', 0x0, 0x0) r0 = syz_open_procfs(0x0, &(0x7f00000000c0)='fd/3\x00') r1 = syz_open_dev$swradio(&(0x7f0000000100)='/dev/swradio#\x00', 0x0, 0x2) mount$9p_fd(0x0, &(0x7f0000000300)='.\x00', &(0x7f0000000080)='9p\x00', 0x9, &(0x7f0000000740)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}}) [ 231.867523][T14856] EXT4-fs (loop0): ext4_check_descriptors: Checksum for group 0 failed (38247!=0) [ 231.902700][T14856] EXT4-fs (loop0): group descriptors corrupted! 21:38:11 executing program 2: set_mempolicy(0x8003, &(0x7f0000000300)=0x75f, 0x9) r0 = open(&(0x7f0000000300)='.\x00', 0x0, 0x0) symlinkat(&(0x7f0000000040)='\x13\x13w\xc5\xfc5\xd4\x14T\xd5\xd4\x1d)\xad\x1a`)Y\x81F\xe6\xbe\x16nA\xad\r\xbd@T\x03<\x9f3\xbb\xda\x82$\xa2\xf3\xd7r\xe7cnH\xb3<\xbfp\x83r\xe8\xf1\xb9\x93>\xc5\x12wC\xbe\"\x06 \x9e\xf0-\xf9\xcb\xf2\xf6\xe8\x80\xd38/\x00', r0, &(0x7f00000000c0)='./file0\x00') mkdirat(r0, &(0x7f0000000200)='\x13\x13w\xc5\xfc5\xd4\x14T\xd5\xd4\x1d)\xad\x1a`)Y\x81F\xe6\xbe\x16nA\xad\r\xbd@T\x03<\x9f3\xbb\xda\x82$\xa2\xf3\xd7r\xe7cnH\xb3<\xbfp\x83r\xe8\xf1\xb9\x93>\xc5\x12wC\xbe\"\x06 \x9e\xf0-\xf9\xcb\xf2\xf6\xe8\x80\xd38/\x00', 0x0) symlinkat(&(0x7f0000000340)='./file0/file0\x00', r0, &(0x7f0000000380)='\x13\x13w\xc5\xfc5\xd4\x14T\xd5\xd4\x1d)\xad\x1a`)Y\x81F\xe6\xbe\x16nA\xad\r\xbd@T\x03<\x9f3\xbb\xda\x82$\xa2\xf3\xd7r\xe7cnH\xb3<\xbfp\x83r\xe8\xf1\xb9\x93>\xc5\x12wC\xbe\"\x06 \x9e\xf0-\xf9\xcb\xf2\xf6\xe8\x80\xd38//file0\x00') r1 = open(&(0x7f0000000100)='.\x00', 0x0, 0x0) renameat2(r1, &(0x7f0000000400)='./file0/file0\x00', r1, &(0x7f0000000000)='./file0\x00', 0xfffffffb) 21:38:11 executing program 1: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) r3 = syz_open_procfs(0x0, &(0x7f00000000c0)='fd/3\x00') mount$9p_fd(0xb00000000000000, &(0x7f0000000300)='.\x00', &(0x7f0000000080)='9p\x00', 0x0, &(0x7f00000003c0)={'trans=fd,', {'rfdno', 0x3d, r3}, 0x2c, {'wfdno', 0x3d, r2}}) 21:38:11 executing program 3: set_mempolicy(0x8003, &(0x7f0000000300)=0x75f, 0x9) open(&(0x7f0000000300)='.\x00', 0x0, 0x0) r0 = syz_open_procfs(0x0, &(0x7f00000000c0)='fd/3\x00') r1 = syz_open_dev$swradio(&(0x7f0000000100)='/dev/swradio#\x00', 0x0, 0x2) mount$9p_fd(0xffffffff00000000, &(0x7f0000000300)='.\x00', &(0x7f0000000080)='9p\x00', 0x0, &(0x7f0000000740)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}}) 21:38:11 executing program 4: set_mempolicy(0x8003, &(0x7f0000000300)=0x75f, 0x9) open(&(0x7f0000000300)='.\x00', 0x0, 0x0) r0 = syz_open_procfs(0x0, &(0x7f00000000c0)='fd/3\x00') r1 = syz_open_dev$swradio(&(0x7f0000000100)='/dev/swradio#\x00', 0x0, 0x2) mount$9p_fd(0x1200000000000000, &(0x7f0000000300)='.\x00', &(0x7f0000000080)='9p\x00', 0x0, &(0x7f0000000740)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}}) 21:38:11 executing program 0 (fault-call:0 fault-nth:27): syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x40000, 0x3, &(0x7f0000000200)=[{&(0x7f0000010000)="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", 0x10c, 0x400}, {&(0x7f0000010200)="0500000000000000000000000000000000000000040100002b", 0x19, 0x560}, {&(0x7f0000010300)="000000000000000000000000000000000000000000000000000000001481910a040000001400000024", 0x29, 0x7e0}], 0x0, &(0x7f0000000040)={[{@usrjquota='usrjquota='}, {@data_err_abort='data_err=abort'}]}) 21:38:12 executing program 5: set_mempolicy(0x8003, &(0x7f0000000300)=0x75f, 0x9) open(&(0x7f0000000300)='.\x00', 0x0, 0x0) r0 = syz_open_procfs(0x0, &(0x7f00000000c0)='fd/3\x00') r1 = syz_open_dev$swradio(&(0x7f0000000100)='/dev/swradio#\x00', 0x0, 0x2) mount$9p_fd(0x0, &(0x7f0000000300)='.\x00', &(0x7f0000000080)='9p\x00', 0xa, &(0x7f0000000740)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}}) 21:38:12 executing program 3: set_mempolicy(0x8003, &(0x7f0000000300)=0x75f, 0x9) open(&(0x7f0000000300)='.\x00', 0x0, 0x0) r0 = syz_open_procfs(0x0, &(0x7f00000000c0)='fd/3\x00') r1 = syz_open_dev$swradio(&(0x7f0000000100)='/dev/swradio#\x00', 0x0, 0x2) mount$9p_fd(0xffffffffffffff0f, &(0x7f0000000300)='.\x00', &(0x7f0000000080)='9p\x00', 0x0, &(0x7f0000000740)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}}) 21:38:12 executing program 2: set_mempolicy(0x8003, &(0x7f0000000300)=0x75f, 0x9) r0 = open(&(0x7f0000000300)='.\x00', 0x0, 0x0) symlinkat(&(0x7f0000000040)='\x13\x13w\xc5\xfc5\xd4\x14T\xd5\xd4\x1d)\xad\x1a`)Y\x81F\xe6\xbe\x16nA\xad\r\xbd@T\x03<\x9f3\xbb\xda\x82$\xa2\xf3\xd7r\xe7cnH\xb3<\xbfp\x83r\xe8\xf1\xb9\x93>\xc5\x12wC\xbe\"\x06 \x9e\xf0-\xf9\xcb\xf2\xf6\xe8\x80\xd38/\x00', r0, &(0x7f00000000c0)='./file0\x00') mkdirat(r0, &(0x7f0000000200)='\x13\x13w\xc5\xfc5\xd4\x14T\xd5\xd4\x1d)\xad\x1a`)Y\x81F\xe6\xbe\x16nA\xad\r\xbd@T\x03<\x9f3\xbb\xda\x82$\xa2\xf3\xd7r\xe7cnH\xb3<\xbfp\x83r\xe8\xf1\xb9\x93>\xc5\x12wC\xbe\"\x06 \x9e\xf0-\xf9\xcb\xf2\xf6\xe8\x80\xd38/\x00', 0x0) symlinkat(&(0x7f0000000340)='./file0/file0\x00', r0, &(0x7f0000000380)='\x13\x13w\xc5\xfc5\xd4\x14T\xd5\xd4\x1d)\xad\x1a`)Y\x81F\xe6\xbe\x16nA\xad\r\xbd@T\x03<\x9f3\xbb\xda\x82$\xa2\xf3\xd7r\xe7cnH\xb3<\xbfp\x83r\xe8\xf1\xb9\x93>\xc5\x12wC\xbe\"\x06 \x9e\xf0-\xf9\xcb\xf2\xf6\xe8\x80\xd38//file0\x00') r1 = open(&(0x7f0000000100)='.\x00', 0x0, 0x0) renameat2(r1, &(0x7f0000000400)='./file0/file0\x00', r1, &(0x7f0000000000)='./file0\x00', 0xfffffffe) [ 232.078657][T14903] FAULT_INJECTION: forcing a failure. [ 232.078657][T14903] name failslab, interval 1, probability 0, space 0, times 0 21:38:12 executing program 4: set_mempolicy(0x8003, &(0x7f0000000300)=0x75f, 0x9) open(&(0x7f0000000300)='.\x00', 0x0, 0x0) r0 = syz_open_procfs(0x0, &(0x7f00000000c0)='fd/3\x00') r1 = syz_open_dev$swradio(&(0x7f0000000100)='/dev/swradio#\x00', 0x0, 0x2) mount$9p_fd(0x2010000000000000, &(0x7f0000000300)='.\x00', &(0x7f0000000080)='9p\x00', 0x0, &(0x7f0000000740)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}}) 21:38:12 executing program 1: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) r3 = syz_open_procfs(0x0, &(0x7f00000000c0)='fd/3\x00') mount$9p_fd(0xc00000000000000, &(0x7f0000000300)='.\x00', &(0x7f0000000080)='9p\x00', 0x0, &(0x7f00000003c0)={'trans=fd,', {'rfdno', 0x3d, r3}, 0x2c, {'wfdno', 0x3d, r2}}) [ 232.127657][T14903] CPU: 1 PID: 14903 Comm: syz-executor.0 Not tainted 5.11.0-syzkaller #0 [ 232.136118][T14903] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 232.146519][T14903] Call Trace: [ 232.149791][T14903] dump_stack+0x116/0x15d [ 232.154200][T14903] should_fail+0x23c/0x250 [ 232.158603][T14903] ? __kernfs_new_node+0x73/0x360 [ 232.164896][T14903] __should_failslab+0x81/0x90 [ 232.169751][T14903] should_failslab+0x5/0x20 [ 232.174274][T14903] kmem_cache_alloc+0x36/0x2e0 [ 232.179134][T14903] __kernfs_new_node+0x73/0x360 [ 232.183977][T14903] ? kernfs_link_sibling+0x227/0x240 [ 232.189302][T14903] kernfs_new_node+0x5b/0xd0 [ 232.193877][T14903] __kernfs_create_file+0x45/0x1a0 [ 232.198978][T14903] sysfs_add_file_mode_ns+0x1c1/0x250 [ 232.204329][T14903] internal_create_group+0x2e4/0x850 [ 232.209630][T14903] sysfs_create_group+0x1b/0x20 [ 232.214508][T14903] loop_configure+0x9b4/0xc40 [ 232.219170][T14903] lo_ioctl+0x54b/0x11e0 [ 232.223425][T14903] ? ___cache_free+0x3c/0x2f0 [ 232.228097][T14903] ? blkdev_common_ioctl+0xa29/0x1060 [ 232.233447][T14903] ? lo_release+0x120/0x120 [ 232.237993][T14903] blkdev_ioctl+0x1d0/0x3c0 [ 232.242472][T14903] block_ioctl+0x6d/0x80 [ 232.246704][T14903] ? blkdev_iopoll+0x70/0x70 [ 232.251333][T14903] __se_sys_ioctl+0xcb/0x140 [ 232.255906][T14903] __x64_sys_ioctl+0x3f/0x50 [ 232.261361][T14903] do_syscall_64+0x39/0x80 [ 232.265833][T14903] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 232.271761][T14903] RIP: 0033:0x465b57 [ 232.275630][T14903] Code: 3c 1c 48 f7 d8 49 39 c4 72 b8 e8 a4 4d 02 00 85 c0 78 bd 48 83 c4 08 4c 89 e0 5b 41 5c c3 0f 1f 44 00 00 b8 10 00 00 00 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 232.295318][T14903] RSP: 002b:00007f8175ef9f48 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 232.303773][T14903] RAX: ffffffffffffffda RBX: 00000000004af960 RCX: 0000000000465b57 [ 232.311729][T14903] RDX: 0000000000000004 RSI: 0000000000004c00 RDI: 0000000000000005 [ 232.319699][T14903] RBP: 0000000000000005 R08: 0000000000000000 R09: ffffffffffffffff [ 232.327647][T14903] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000004 [ 232.335755][T14903] R13: 0000000000000004 R14: 0000000020000248 R15: 0000000000000003 [ 232.346312][T14903] loop0: detected capacity change from 512 to 0 [ 232.355275][T14903] EXT4-fs (loop0): ext4_check_descriptors: Checksum for group 0 failed (38247!=0) 21:38:12 executing program 2: set_mempolicy(0x8003, &(0x7f0000000300)=0x75f, 0x9) r0 = open(&(0x7f0000000300)='.\x00', 0x0, 0x0) symlinkat(&(0x7f0000000040)='\x13\x13w\xc5\xfc5\xd4\x14T\xd5\xd4\x1d)\xad\x1a`)Y\x81F\xe6\xbe\x16nA\xad\r\xbd@T\x03<\x9f3\xbb\xda\x82$\xa2\xf3\xd7r\xe7cnH\xb3<\xbfp\x83r\xe8\xf1\xb9\x93>\xc5\x12wC\xbe\"\x06 \x9e\xf0-\xf9\xcb\xf2\xf6\xe8\x80\xd38/\x00', r0, &(0x7f00000000c0)='./file0\x00') mkdirat(r0, &(0x7f0000000200)='\x13\x13w\xc5\xfc5\xd4\x14T\xd5\xd4\x1d)\xad\x1a`)Y\x81F\xe6\xbe\x16nA\xad\r\xbd@T\x03<\x9f3\xbb\xda\x82$\xa2\xf3\xd7r\xe7cnH\xb3<\xbfp\x83r\xe8\xf1\xb9\x93>\xc5\x12wC\xbe\"\x06 \x9e\xf0-\xf9\xcb\xf2\xf6\xe8\x80\xd38/\x00', 0x0) symlinkat(&(0x7f0000000340)='./file0/file0\x00', r0, &(0x7f0000000380)='\x13\x13w\xc5\xfc5\xd4\x14T\xd5\xd4\x1d)\xad\x1a`)Y\x81F\xe6\xbe\x16nA\xad\r\xbd@T\x03<\x9f3\xbb\xda\x82$\xa2\xf3\xd7r\xe7cnH\xb3<\xbfp\x83r\xe8\xf1\xb9\x93>\xc5\x12wC\xbe\"\x06 \x9e\xf0-\xf9\xcb\xf2\xf6\xe8\x80\xd38//file0\x00') r1 = open(&(0x7f0000000100)='.\x00', 0x0, 0x0) renameat2(r1, &(0x7f0000000400)='./file0/file0\x00', r1, &(0x7f0000000000)='./file0\x00', 0x1000000000000) [ 232.393366][T14903] EXT4-fs (loop0): group descriptors corrupted! 21:38:12 executing program 3: set_mempolicy(0x8003, &(0x7f0000000300)=0x75f, 0x9) open(&(0x7f0000000300)='.\x00', 0x0, 0x0) r0 = syz_open_procfs(0x0, &(0x7f00000000c0)='fd/3\x00') r1 = syz_open_dev$swradio(&(0x7f0000000100)='/dev/swradio#\x00', 0x0, 0x2) mount$9p_fd(0x0, &(0x7f0000000300)='.\x00', &(0x7f0000000080)='9p\x00', 0x2, &(0x7f0000000740)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}}) 21:38:12 executing program 4: set_mempolicy(0x8003, &(0x7f0000000300)=0x75f, 0x9) open(&(0x7f0000000300)='.\x00', 0x0, 0x0) r0 = syz_open_procfs(0x0, &(0x7f00000000c0)='fd/3\x00') r1 = syz_open_dev$swradio(&(0x7f0000000100)='/dev/swradio#\x00', 0x0, 0x2) mount$9p_fd(0x2500000000000000, &(0x7f0000000300)='.\x00', &(0x7f0000000080)='9p\x00', 0x0, &(0x7f0000000740)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}}) 21:38:12 executing program 1: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) r3 = syz_open_procfs(0x0, &(0x7f00000000c0)='fd/3\x00') mount$9p_fd(0xd00000000000000, &(0x7f0000000300)='.\x00', &(0x7f0000000080)='9p\x00', 0x0, &(0x7f00000003c0)={'trans=fd,', {'rfdno', 0x3d, r3}, 0x2c, {'wfdno', 0x3d, r2}}) 21:38:12 executing program 0 (fault-call:0 fault-nth:28): syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x40000, 0x3, &(0x7f0000000200)=[{&(0x7f0000010000)="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", 0x10c, 0x400}, {&(0x7f0000010200)="0500000000000000000000000000000000000000040100002b", 0x19, 0x560}, {&(0x7f0000010300)="000000000000000000000000000000000000000000000000000000001481910a040000001400000024", 0x29, 0x7e0}], 0x0, &(0x7f0000000040)={[{@usrjquota='usrjquota='}, {@data_err_abort='data_err=abort'}]}) 21:38:12 executing program 5: set_mempolicy(0x8003, &(0x7f0000000300)=0x75f, 0x9) open(&(0x7f0000000300)='.\x00', 0x0, 0x0) r0 = syz_open_procfs(0x0, &(0x7f00000000c0)='fd/3\x00') r1 = syz_open_dev$swradio(&(0x7f0000000100)='/dev/swradio#\x00', 0x0, 0x2) mount$9p_fd(0x0, &(0x7f0000000300)='.\x00', &(0x7f0000000080)='9p\x00', 0xb, &(0x7f0000000740)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}}) 21:38:12 executing program 4: set_mempolicy(0x8003, &(0x7f0000000300)=0x75f, 0x9) open(&(0x7f0000000300)='.\x00', 0x0, 0x0) r0 = syz_open_procfs(0x0, &(0x7f00000000c0)='fd/3\x00') r1 = syz_open_dev$swradio(&(0x7f0000000100)='/dev/swradio#\x00', 0x0, 0x2) mount$9p_fd(0x4000000000000000, &(0x7f0000000300)='.\x00', &(0x7f0000000080)='9p\x00', 0x0, &(0x7f0000000740)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}}) 21:38:12 executing program 2: set_mempolicy(0x8003, &(0x7f0000000300)=0x75f, 0x9) r0 = open(&(0x7f0000000300)='.\x00', 0x0, 0x0) symlinkat(&(0x7f0000000040)='\x13\x13w\xc5\xfc5\xd4\x14T\xd5\xd4\x1d)\xad\x1a`)Y\x81F\xe6\xbe\x16nA\xad\r\xbd@T\x03<\x9f3\xbb\xda\x82$\xa2\xf3\xd7r\xe7cnH\xb3<\xbfp\x83r\xe8\xf1\xb9\x93>\xc5\x12wC\xbe\"\x06 \x9e\xf0-\xf9\xcb\xf2\xf6\xe8\x80\xd38/\x00', r0, &(0x7f00000000c0)='./file0\x00') mkdirat(r0, &(0x7f0000000200)='\x13\x13w\xc5\xfc5\xd4\x14T\xd5\xd4\x1d)\xad\x1a`)Y\x81F\xe6\xbe\x16nA\xad\r\xbd@T\x03<\x9f3\xbb\xda\x82$\xa2\xf3\xd7r\xe7cnH\xb3<\xbfp\x83r\xe8\xf1\xb9\x93>\xc5\x12wC\xbe\"\x06 \x9e\xf0-\xf9\xcb\xf2\xf6\xe8\x80\xd38/\x00', 0x0) symlinkat(&(0x7f0000000340)='./file0/file0\x00', r0, &(0x7f0000000380)='\x13\x13w\xc5\xfc5\xd4\x14T\xd5\xd4\x1d)\xad\x1a`)Y\x81F\xe6\xbe\x16nA\xad\r\xbd@T\x03<\x9f3\xbb\xda\x82$\xa2\xf3\xd7r\xe7cnH\xb3<\xbfp\x83r\xe8\xf1\xb9\x93>\xc5\x12wC\xbe\"\x06 \x9e\xf0-\xf9\xcb\xf2\xf6\xe8\x80\xd38//file0\x00') r1 = open(&(0x7f0000000100)='.\x00', 0x0, 0x0) renameat2(r1, &(0x7f0000000400)='./file0/file0\x00', r1, &(0x7f0000000000)='./file0\x00', 0x4000000000000) 21:38:12 executing program 3: set_mempolicy(0x8003, &(0x7f0000000300)=0x75f, 0x9) open(&(0x7f0000000300)='.\x00', 0x0, 0x0) r0 = syz_open_procfs(0x0, &(0x7f00000000c0)='fd/3\x00') r1 = syz_open_dev$swradio(&(0x7f0000000100)='/dev/swradio#\x00', 0x0, 0x2) mount$9p_fd(0x0, &(0x7f0000000300)='.\x00', &(0x7f0000000080)='9p\x00', 0x3, &(0x7f0000000740)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}}) 21:38:12 executing program 1: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) r3 = syz_open_procfs(0x0, &(0x7f00000000c0)='fd/3\x00') mount$9p_fd(0xe00000000000000, &(0x7f0000000300)='.\x00', &(0x7f0000000080)='9p\x00', 0x0, &(0x7f00000003c0)={'trans=fd,', {'rfdno', 0x3d, r3}, 0x2c, {'wfdno', 0x3d, r2}}) [ 232.587551][T14959] FAULT_INJECTION: forcing a failure. [ 232.587551][T14959] name failslab, interval 1, probability 0, space 0, times 0 [ 232.613608][T14959] CPU: 0 PID: 14959 Comm: syz-executor.0 Not tainted 5.11.0-syzkaller #0 [ 232.622087][T14959] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 232.632134][T14959] Call Trace: 21:38:12 executing program 5: set_mempolicy(0x8003, &(0x7f0000000300)=0x75f, 0x9) open(&(0x7f0000000300)='.\x00', 0x0, 0x0) r0 = syz_open_procfs(0x0, &(0x7f00000000c0)='fd/3\x00') r1 = syz_open_dev$swradio(&(0x7f0000000100)='/dev/swradio#\x00', 0x0, 0x2) mount$9p_fd(0x0, &(0x7f0000000300)='.\x00', &(0x7f0000000080)='9p\x00', 0xc, &(0x7f0000000740)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}}) 21:38:12 executing program 4: set_mempolicy(0x8003, &(0x7f0000000300)=0x75f, 0x9) open(&(0x7f0000000300)='.\x00', 0x0, 0x0) r0 = syz_open_procfs(0x0, &(0x7f00000000c0)='fd/3\x00') r1 = syz_open_dev$swradio(&(0x7f0000000100)='/dev/swradio#\x00', 0x0, 0x2) mount$9p_fd(0x5c00000000000000, &(0x7f0000000300)='.\x00', &(0x7f0000000080)='9p\x00', 0x0, &(0x7f0000000740)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}}) [ 232.635405][T14959] dump_stack+0x116/0x15d [ 232.639743][T14959] should_fail+0x23c/0x250 [ 232.644160][T14959] ? __kernfs_new_node+0x73/0x360 [ 232.649187][T14959] __should_failslab+0x81/0x90 [ 232.653947][T14959] should_failslab+0x5/0x20 [ 232.658447][T14959] kmem_cache_alloc+0x36/0x2e0 [ 232.663211][T14959] __kernfs_new_node+0x73/0x360 [ 232.668060][T14959] ? kernfs_link_sibling+0x227/0x240 [ 232.673345][T14959] kernfs_new_node+0x5b/0xd0 [ 232.677952][T14959] __kernfs_create_file+0x45/0x1a0 [ 232.683043][T14959] sysfs_add_file_mode_ns+0x1c1/0x250 [ 232.688521][T14959] internal_create_group+0x2e4/0x850 [ 232.693798][T14959] sysfs_create_group+0x1b/0x20 [ 232.698648][T14959] loop_configure+0x9b4/0xc40 [ 232.703382][T14959] lo_ioctl+0x54b/0x11e0 [ 232.707746][T14959] ? ___cache_free+0x3c/0x2f0 [ 232.712411][T14959] ? blkdev_common_ioctl+0xa29/0x1060 [ 232.717779][T14959] ? lo_release+0x120/0x120 [ 232.722259][T14959] blkdev_ioctl+0x1d0/0x3c0 [ 232.726809][T14959] block_ioctl+0x6d/0x80 [ 232.731039][T14959] ? blkdev_iopoll+0x70/0x70 [ 232.735823][T14959] __se_sys_ioctl+0xcb/0x140 [ 232.740558][T14959] __x64_sys_ioctl+0x3f/0x50 [ 232.745239][T14959] do_syscall_64+0x39/0x80 [ 232.749653][T14959] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 232.755586][T14959] RIP: 0033:0x465b57 [ 232.759510][T14959] Code: 3c 1c 48 f7 d8 49 39 c4 72 b8 e8 a4 4d 02 00 85 c0 78 bd 48 83 c4 08 4c 89 e0 5b 41 5c c3 0f 1f 44 00 00 b8 10 00 00 00 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 232.779105][T14959] RSP: 002b:00007f8175ef9f48 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 232.787560][T14959] RAX: ffffffffffffffda RBX: 00000000004af960 RCX: 0000000000465b57 [ 232.795526][T14959] RDX: 0000000000000004 RSI: 0000000000004c00 RDI: 0000000000000005 [ 232.803656][T14959] RBP: 0000000000000005 R08: 0000000000000000 R09: ffffffffffffffff [ 232.811605][T14959] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000004 [ 232.819568][T14959] R13: 0000000000000004 R14: 0000000020000248 R15: 0000000000000003 [ 232.834239][T14959] loop0: detected capacity change from 512 to 0 [ 232.872028][T14959] EXT4-fs (loop0): ext4_check_descriptors: Checksum for group 0 failed (38247!=0) [ 232.894036][T14959] EXT4-fs (loop0): group descriptors corrupted! 21:38:12 executing program 4: set_mempolicy(0x8003, &(0x7f0000000300)=0x75f, 0x9) open(&(0x7f0000000300)='.\x00', 0x0, 0x0) r0 = syz_open_procfs(0x0, &(0x7f00000000c0)='fd/3\x00') r1 = syz_open_dev$swradio(&(0x7f0000000100)='/dev/swradio#\x00', 0x0, 0x2) mount$9p_fd(0x8cffffff00000000, &(0x7f0000000300)='.\x00', &(0x7f0000000080)='9p\x00', 0x0, &(0x7f0000000740)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}}) 21:38:12 executing program 0 (fault-call:0 fault-nth:29): syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x40000, 0x3, &(0x7f0000000200)=[{&(0x7f0000010000)="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", 0x10c, 0x400}, {&(0x7f0000010200)="0500000000000000000000000000000000000000040100002b", 0x19, 0x560}, {&(0x7f0000010300)="000000000000000000000000000000000000000000000000000000001481910a040000001400000024", 0x29, 0x7e0}], 0x0, &(0x7f0000000040)={[{@usrjquota='usrjquota='}, {@data_err_abort='data_err=abort'}]}) 21:38:12 executing program 2: set_mempolicy(0x8003, &(0x7f0000000300)=0x75f, 0x9) r0 = open(&(0x7f0000000300)='.\x00', 0x0, 0x0) symlinkat(&(0x7f0000000040)='\x13\x13w\xc5\xfc5\xd4\x14T\xd5\xd4\x1d)\xad\x1a`)Y\x81F\xe6\xbe\x16nA\xad\r\xbd@T\x03<\x9f3\xbb\xda\x82$\xa2\xf3\xd7r\xe7cnH\xb3<\xbfp\x83r\xe8\xf1\xb9\x93>\xc5\x12wC\xbe\"\x06 \x9e\xf0-\xf9\xcb\xf2\xf6\xe8\x80\xd38/\x00', r0, &(0x7f00000000c0)='./file0\x00') mkdirat(r0, &(0x7f0000000200)='\x13\x13w\xc5\xfc5\xd4\x14T\xd5\xd4\x1d)\xad\x1a`)Y\x81F\xe6\xbe\x16nA\xad\r\xbd@T\x03<\x9f3\xbb\xda\x82$\xa2\xf3\xd7r\xe7cnH\xb3<\xbfp\x83r\xe8\xf1\xb9\x93>\xc5\x12wC\xbe\"\x06 \x9e\xf0-\xf9\xcb\xf2\xf6\xe8\x80\xd38/\x00', 0x0) symlinkat(&(0x7f0000000340)='./file0/file0\x00', r0, &(0x7f0000000380)='\x13\x13w\xc5\xfc5\xd4\x14T\xd5\xd4\x1d)\xad\x1a`)Y\x81F\xe6\xbe\x16nA\xad\r\xbd@T\x03<\x9f3\xbb\xda\x82$\xa2\xf3\xd7r\xe7cnH\xb3<\xbfp\x83r\xe8\xf1\xb9\x93>\xc5\x12wC\xbe\"\x06 \x9e\xf0-\xf9\xcb\xf2\xf6\xe8\x80\xd38//file0\x00') r1 = open(&(0x7f0000000100)='.\x00', 0x0, 0x0) renameat2(r1, &(0x7f0000000400)='./file0/file0\x00', r1, &(0x7f0000000000)='./file0\x00', 0x100000000000000) 21:38:12 executing program 1: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) r3 = syz_open_procfs(0x0, &(0x7f00000000c0)='fd/3\x00') mount$9p_fd(0xfffffffffffffff, &(0x7f0000000300)='.\x00', &(0x7f0000000080)='9p\x00', 0x0, &(0x7f00000003c0)={'trans=fd,', {'rfdno', 0x3d, r3}, 0x2c, {'wfdno', 0x3d, r2}}) 21:38:12 executing program 3: set_mempolicy(0x8003, &(0x7f0000000300)=0x75f, 0x9) open(&(0x7f0000000300)='.\x00', 0x0, 0x0) r0 = syz_open_procfs(0x0, &(0x7f00000000c0)='fd/3\x00') r1 = syz_open_dev$swradio(&(0x7f0000000100)='/dev/swradio#\x00', 0x0, 0x2) mount$9p_fd(0x0, &(0x7f0000000300)='.\x00', &(0x7f0000000080)='9p\x00', 0x4, &(0x7f0000000740)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}}) 21:38:13 executing program 2: set_mempolicy(0x8003, &(0x7f0000000300)=0x75f, 0x9) r0 = open(&(0x7f0000000300)='.\x00', 0x0, 0x0) symlinkat(&(0x7f0000000040)='\x13\x13w\xc5\xfc5\xd4\x14T\xd5\xd4\x1d)\xad\x1a`)Y\x81F\xe6\xbe\x16nA\xad\r\xbd@T\x03<\x9f3\xbb\xda\x82$\xa2\xf3\xd7r\xe7cnH\xb3<\xbfp\x83r\xe8\xf1\xb9\x93>\xc5\x12wC\xbe\"\x06 \x9e\xf0-\xf9\xcb\xf2\xf6\xe8\x80\xd38/\x00', r0, &(0x7f00000000c0)='./file0\x00') mkdirat(r0, &(0x7f0000000200)='\x13\x13w\xc5\xfc5\xd4\x14T\xd5\xd4\x1d)\xad\x1a`)Y\x81F\xe6\xbe\x16nA\xad\r\xbd@T\x03<\x9f3\xbb\xda\x82$\xa2\xf3\xd7r\xe7cnH\xb3<\xbfp\x83r\xe8\xf1\xb9\x93>\xc5\x12wC\xbe\"\x06 \x9e\xf0-\xf9\xcb\xf2\xf6\xe8\x80\xd38/\x00', 0x0) symlinkat(&(0x7f0000000340)='./file0/file0\x00', r0, &(0x7f0000000380)='\x13\x13w\xc5\xfc5\xd4\x14T\xd5\xd4\x1d)\xad\x1a`)Y\x81F\xe6\xbe\x16nA\xad\r\xbd@T\x03<\x9f3\xbb\xda\x82$\xa2\xf3\xd7r\xe7cnH\xb3<\xbfp\x83r\xe8\xf1\xb9\x93>\xc5\x12wC\xbe\"\x06 \x9e\xf0-\xf9\xcb\xf2\xf6\xe8\x80\xd38//file0\x00') r1 = open(&(0x7f0000000100)='.\x00', 0x0, 0x0) renameat2(r1, &(0x7f0000000400)='./file0/file0\x00', r1, &(0x7f0000000000)='./file0\x00', 0x101000000000000) [ 233.056153][T15015] FAULT_INJECTION: forcing a failure. [ 233.056153][T15015] name failslab, interval 1, probability 0, space 0, times 0 [ 233.083353][T15015] CPU: 0 PID: 15015 Comm: syz-executor.0 Not tainted 5.11.0-syzkaller #0 [ 233.091795][T15015] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 233.101842][T15015] Call Trace: 21:38:13 executing program 4: set_mempolicy(0x8003, &(0x7f0000000300)=0x75f, 0x9) open(&(0x7f0000000300)='.\x00', 0x0, 0x0) r0 = syz_open_procfs(0x0, &(0x7f00000000c0)='fd/3\x00') r1 = syz_open_dev$swradio(&(0x7f0000000100)='/dev/swradio#\x00', 0x0, 0x2) mount$9p_fd(0xf6ffffff00000000, &(0x7f0000000300)='.\x00', &(0x7f0000000080)='9p\x00', 0x0, &(0x7f0000000740)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}}) [ 233.105114][T15015] dump_stack+0x116/0x15d [ 233.109551][T15015] should_fail+0x23c/0x250 [ 233.114481][T15015] ? __kernfs_new_node+0x73/0x360 [ 233.119504][T15015] __should_failslab+0x81/0x90 [ 233.124291][T15015] should_failslab+0x5/0x20 [ 233.128838][T15015] kmem_cache_alloc+0x36/0x2e0 [ 233.133596][T15015] __kernfs_new_node+0x73/0x360 [ 233.138447][T15015] ? kernfs_link_sibling+0x227/0x240 [ 233.143711][T15015] kernfs_new_node+0x5b/0xd0 [ 233.148278][T15015] __kernfs_create_file+0x45/0x1a0 [ 233.153369][T15015] sysfs_add_file_mode_ns+0x1c1/0x250 [ 233.158731][T15015] internal_create_group+0x2e4/0x850 [ 233.163998][T15015] sysfs_create_group+0x1b/0x20 [ 233.168830][T15015] loop_configure+0x9b4/0xc40 [ 233.173514][T15015] lo_ioctl+0x54b/0x11e0 [ 233.177826][T15015] ? ___cache_free+0x3c/0x2f0 [ 233.182624][T15015] ? blkdev_common_ioctl+0xa29/0x1060 [ 233.188056][T15015] ? lo_release+0x120/0x120 [ 233.192986][T15015] blkdev_ioctl+0x1d0/0x3c0 [ 233.197491][T15015] block_ioctl+0x6d/0x80 [ 233.201799][T15015] ? blkdev_iopoll+0x70/0x70 [ 233.206385][T15015] __se_sys_ioctl+0xcb/0x140 [ 233.210959][T15015] __x64_sys_ioctl+0x3f/0x50 [ 233.215588][T15015] do_syscall_64+0x39/0x80 [ 233.220004][T15015] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 233.225882][T15015] RIP: 0033:0x465b57 [ 233.229763][T15015] Code: 3c 1c 48 f7 d8 49 39 c4 72 b8 e8 a4 4d 02 00 85 c0 78 bd 48 83 c4 08 4c 89 e0 5b 41 5c c3 0f 1f 44 00 00 b8 10 00 00 00 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 233.249397][T15015] RSP: 002b:00007f8175ef9f48 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 233.257856][T15015] RAX: ffffffffffffffda RBX: 00000000004af960 RCX: 0000000000465b57 [ 233.265808][T15015] RDX: 0000000000000004 RSI: 0000000000004c00 RDI: 0000000000000005 [ 233.273761][T15015] RBP: 0000000000000005 R08: 0000000000000000 R09: ffffffffffffffff [ 233.281710][T15015] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000004 [ 233.289659][T15015] R13: 0000000000000004 R14: 0000000020000248 R15: 0000000000000003 21:38:13 executing program 5: set_mempolicy(0x8003, &(0x7f0000000300)=0x75f, 0x9) open(&(0x7f0000000300)='.\x00', 0x0, 0x0) r0 = syz_open_procfs(0x0, &(0x7f00000000c0)='fd/3\x00') r1 = syz_open_dev$swradio(&(0x7f0000000100)='/dev/swradio#\x00', 0x0, 0x2) mount$9p_fd(0x0, &(0x7f0000000300)='.\x00', &(0x7f0000000080)='9p\x00', 0xd, &(0x7f0000000740)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}}) 21:38:13 executing program 3: set_mempolicy(0x8003, &(0x7f0000000300)=0x75f, 0x9) open(&(0x7f0000000300)='.\x00', 0x0, 0x0) r0 = syz_open_procfs(0x0, &(0x7f00000000c0)='fd/3\x00') r1 = syz_open_dev$swradio(&(0x7f0000000100)='/dev/swradio#\x00', 0x0, 0x2) mount$9p_fd(0x0, &(0x7f0000000300)='.\x00', &(0x7f0000000080)='9p\x00', 0x5, &(0x7f0000000740)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}}) 21:38:13 executing program 1: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) r3 = syz_open_procfs(0x0, &(0x7f00000000c0)='fd/3\x00') mount$9p_fd(0x1000000000000000, &(0x7f0000000300)='.\x00', &(0x7f0000000080)='9p\x00', 0x0, &(0x7f00000003c0)={'trans=fd,', {'rfdno', 0x3d, r3}, 0x2c, {'wfdno', 0x3d, r2}}) [ 233.310587][T15015] loop0: detected capacity change from 512 to 0 [ 233.335122][T15015] EXT4-fs (loop0): ext4_check_descriptors: Checksum for group 0 failed (38247!=0) [ 233.350923][T15015] EXT4-fs (loop0): group descriptors corrupted! 21:38:13 executing program 2: set_mempolicy(0x8003, &(0x7f0000000300)=0x75f, 0x9) r0 = open(&(0x7f0000000300)='.\x00', 0x0, 0x0) symlinkat(&(0x7f0000000040)='\x13\x13w\xc5\xfc5\xd4\x14T\xd5\xd4\x1d)\xad\x1a`)Y\x81F\xe6\xbe\x16nA\xad\r\xbd@T\x03<\x9f3\xbb\xda\x82$\xa2\xf3\xd7r\xe7cnH\xb3<\xbfp\x83r\xe8\xf1\xb9\x93>\xc5\x12wC\xbe\"\x06 \x9e\xf0-\xf9\xcb\xf2\xf6\xe8\x80\xd38/\x00', r0, &(0x7f00000000c0)='./file0\x00') mkdirat(r0, &(0x7f0000000200)='\x13\x13w\xc5\xfc5\xd4\x14T\xd5\xd4\x1d)\xad\x1a`)Y\x81F\xe6\xbe\x16nA\xad\r\xbd@T\x03<\x9f3\xbb\xda\x82$\xa2\xf3\xd7r\xe7cnH\xb3<\xbfp\x83r\xe8\xf1\xb9\x93>\xc5\x12wC\xbe\"\x06 \x9e\xf0-\xf9\xcb\xf2\xf6\xe8\x80\xd38/\x00', 0x0) symlinkat(&(0x7f0000000340)='./file0/file0\x00', r0, &(0x7f0000000380)='\x13\x13w\xc5\xfc5\xd4\x14T\xd5\xd4\x1d)\xad\x1a`)Y\x81F\xe6\xbe\x16nA\xad\r\xbd@T\x03<\x9f3\xbb\xda\x82$\xa2\xf3\xd7r\xe7cnH\xb3<\xbfp\x83r\xe8\xf1\xb9\x93>\xc5\x12wC\xbe\"\x06 \x9e\xf0-\xf9\xcb\xf2\xf6\xe8\x80\xd38//file0\x00') r1 = open(&(0x7f0000000100)='.\x00', 0x0, 0x0) renameat2(r1, &(0x7f0000000400)='./file0/file0\x00', r1, &(0x7f0000000000)='./file0\x00', 0x200000000000000) 21:38:13 executing program 4: set_mempolicy(0x8003, &(0x7f0000000300)=0x75f, 0x9) open(&(0x7f0000000300)='.\x00', 0x0, 0x0) r0 = syz_open_procfs(0x0, &(0x7f00000000c0)='fd/3\x00') r1 = syz_open_dev$swradio(&(0x7f0000000100)='/dev/swradio#\x00', 0x0, 0x2) mount$9p_fd(0xfeffffff00000000, &(0x7f0000000300)='.\x00', &(0x7f0000000080)='9p\x00', 0x0, &(0x7f0000000740)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}}) 21:38:13 executing program 0 (fault-call:0 fault-nth:30): syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x40000, 0x3, &(0x7f0000000200)=[{&(0x7f0000010000)="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", 0x10c, 0x400}, {&(0x7f0000010200)="0500000000000000000000000000000000000000040100002b", 0x19, 0x560}, {&(0x7f0000010300)="000000000000000000000000000000000000000000000000000000001481910a040000001400000024", 0x29, 0x7e0}], 0x0, &(0x7f0000000040)={[{@usrjquota='usrjquota='}, {@data_err_abort='data_err=abort'}]}) 21:38:13 executing program 5: set_mempolicy(0x8003, &(0x7f0000000300)=0x75f, 0x9) open(&(0x7f0000000300)='.\x00', 0x0, 0x0) r0 = syz_open_procfs(0x0, &(0x7f00000000c0)='fd/3\x00') r1 = syz_open_dev$swradio(&(0x7f0000000100)='/dev/swradio#\x00', 0x0, 0x2) mount$9p_fd(0x0, &(0x7f0000000300)='.\x00', &(0x7f0000000080)='9p\x00', 0xe, &(0x7f0000000740)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}}) 21:38:13 executing program 3: set_mempolicy(0x8003, &(0x7f0000000300)=0x75f, 0x9) open(&(0x7f0000000300)='.\x00', 0x0, 0x0) r0 = syz_open_procfs(0x0, &(0x7f00000000c0)='fd/3\x00') r1 = syz_open_dev$swradio(&(0x7f0000000100)='/dev/swradio#\x00', 0x0, 0x2) mount$9p_fd(0x0, &(0x7f0000000300)='.\x00', &(0x7f0000000080)='9p\x00', 0x6, &(0x7f0000000740)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}}) 21:38:13 executing program 4: set_mempolicy(0x8003, &(0x7f0000000300)=0x75f, 0x9) open(&(0x7f0000000300)='.\x00', 0x0, 0x0) r0 = syz_open_procfs(0x0, &(0x7f00000000c0)='fd/3\x00') r1 = syz_open_dev$swradio(&(0x7f0000000100)='/dev/swradio#\x00', 0x0, 0x2) mount$9p_fd(0xff00000000000000, &(0x7f0000000300)='.\x00', &(0x7f0000000080)='9p\x00', 0x0, &(0x7f0000000740)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}}) 21:38:13 executing program 2: set_mempolicy(0x8003, &(0x7f0000000300)=0x75f, 0x9) r0 = open(&(0x7f0000000300)='.\x00', 0x0, 0x0) symlinkat(&(0x7f0000000040)='\x13\x13w\xc5\xfc5\xd4\x14T\xd5\xd4\x1d)\xad\x1a`)Y\x81F\xe6\xbe\x16nA\xad\r\xbd@T\x03<\x9f3\xbb\xda\x82$\xa2\xf3\xd7r\xe7cnH\xb3<\xbfp\x83r\xe8\xf1\xb9\x93>\xc5\x12wC\xbe\"\x06 \x9e\xf0-\xf9\xcb\xf2\xf6\xe8\x80\xd38/\x00', r0, &(0x7f00000000c0)='./file0\x00') mkdirat(r0, &(0x7f0000000200)='\x13\x13w\xc5\xfc5\xd4\x14T\xd5\xd4\x1d)\xad\x1a`)Y\x81F\xe6\xbe\x16nA\xad\r\xbd@T\x03<\x9f3\xbb\xda\x82$\xa2\xf3\xd7r\xe7cnH\xb3<\xbfp\x83r\xe8\xf1\xb9\x93>\xc5\x12wC\xbe\"\x06 \x9e\xf0-\xf9\xcb\xf2\xf6\xe8\x80\xd38/\x00', 0x0) symlinkat(&(0x7f0000000340)='./file0/file0\x00', r0, &(0x7f0000000380)='\x13\x13w\xc5\xfc5\xd4\x14T\xd5\xd4\x1d)\xad\x1a`)Y\x81F\xe6\xbe\x16nA\xad\r\xbd@T\x03<\x9f3\xbb\xda\x82$\xa2\xf3\xd7r\xe7cnH\xb3<\xbfp\x83r\xe8\xf1\xb9\x93>\xc5\x12wC\xbe\"\x06 \x9e\xf0-\xf9\xcb\xf2\xf6\xe8\x80\xd38//file0\x00') r1 = open(&(0x7f0000000100)='.\x00', 0x0, 0x0) renameat2(r1, &(0x7f0000000400)='./file0/file0\x00', r1, &(0x7f0000000000)='./file0\x00', 0x300000000000000) 21:38:13 executing program 1: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) r3 = syz_open_procfs(0x0, &(0x7f00000000c0)='fd/3\x00') mount$9p_fd(0x1100000000000000, &(0x7f0000000300)='.\x00', &(0x7f0000000080)='9p\x00', 0x0, &(0x7f00000003c0)={'trans=fd,', {'rfdno', 0x3d, r3}, 0x2c, {'wfdno', 0x3d, r2}}) [ 233.564373][T15059] loop0: detected capacity change from 512 to 0 [ 233.576564][T15059] FAULT_INJECTION: forcing a failure. [ 233.576564][T15059] name failslab, interval 1, probability 0, space 0, times 0 [ 233.602053][T15059] CPU: 1 PID: 15059 Comm: syz-executor.0 Not tainted 5.11.0-syzkaller #0 21:38:13 executing program 4: set_mempolicy(0x8003, &(0x7f0000000300)=0x75f, 0x9) open(&(0x7f0000000300)='.\x00', 0x0, 0x0) r0 = syz_open_procfs(0x0, &(0x7f00000000c0)='fd/3\x00') r1 = syz_open_dev$swradio(&(0x7f0000000100)='/dev/swradio#\x00', 0x0, 0x2) mount$9p_fd(0xff9f000000000000, &(0x7f0000000300)='.\x00', &(0x7f0000000080)='9p\x00', 0x0, &(0x7f0000000740)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}}) [ 233.610588][T15059] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 233.620656][T15059] Call Trace: [ 233.624011][T15059] dump_stack+0x116/0x15d [ 233.628352][T15059] should_fail+0x23c/0x250 [ 233.632948][T15059] __should_failslab+0x81/0x90 [ 233.637978][T15059] ? kobject_uevent_env+0x1a7/0xc40 [ 233.643187][T15059] should_failslab+0x5/0x20 [ 233.647685][T15059] kmem_cache_alloc_trace+0x39/0x320 [ 233.652996][T15059] ? vprintk_func+0x11b/0x120 [ 233.657672][T15059] ? dev_uevent_filter+0x70/0x70 21:38:13 executing program 3: set_mempolicy(0x8003, &(0x7f0000000300)=0x75f, 0x9) open(&(0x7f0000000300)='.\x00', 0x0, 0x0) r0 = syz_open_procfs(0x0, &(0x7f00000000c0)='fd/3\x00') r1 = syz_open_dev$swradio(&(0x7f0000000100)='/dev/swradio#\x00', 0x0, 0x2) mount$9p_fd(0x0, &(0x7f0000000300)='.\x00', &(0x7f0000000080)='9p\x00', 0x7, &(0x7f0000000740)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}}) 21:38:13 executing program 5: set_mempolicy(0x8003, &(0x7f0000000300)=0x75f, 0x9) open(&(0x7f0000000300)='.\x00', 0x0, 0x0) r0 = syz_open_procfs(0x0, &(0x7f00000000c0)='fd/3\x00') r1 = syz_open_dev$swradio(&(0x7f0000000100)='/dev/swradio#\x00', 0x0, 0x2) mount$9p_fd(0x0, &(0x7f0000000300)='.\x00', &(0x7f0000000080)='9p\x00', 0x10, &(0x7f0000000740)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}}) [ 233.662663][T15059] kobject_uevent_env+0x1a7/0xc40 [ 233.667683][T15059] ? set_capacity_and_notify+0x1a4/0x1b0 [ 233.673310][T15059] kobject_uevent+0x18/0x20 [ 233.677962][T15059] loop_configure+0xac7/0xc40 [ 233.682634][T15059] lo_ioctl+0x54b/0x11e0 [ 233.686870][T15059] ? ___cache_free+0x3c/0x2f0 [ 233.691546][T15059] ? blkdev_common_ioctl+0xa29/0x1060 [ 233.696991][T15059] ? lo_release+0x120/0x120 [ 233.701493][T15059] blkdev_ioctl+0x1d0/0x3c0 [ 233.706060][T15059] block_ioctl+0x6d/0x80 [ 233.710294][T15059] ? blkdev_iopoll+0x70/0x70 [ 233.714936][T15059] __se_sys_ioctl+0xcb/0x140 [ 233.719507][T15059] __x64_sys_ioctl+0x3f/0x50 [ 233.724096][T15059] do_syscall_64+0x39/0x80 [ 233.728501][T15059] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 233.734502][T15059] RIP: 0033:0x465b57 [ 233.738413][T15059] Code: 3c 1c 48 f7 d8 49 39 c4 72 b8 e8 a4 4d 02 00 85 c0 78 bd 48 83 c4 08 4c 89 e0 5b 41 5c c3 0f 1f 44 00 00 b8 10 00 00 00 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 233.760541][T15059] RSP: 002b:00007f8175ef9f48 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 233.768932][T15059] RAX: ffffffffffffffda RBX: 00000000004af960 RCX: 0000000000465b57 [ 233.776898][T15059] RDX: 0000000000000004 RSI: 0000000000004c00 RDI: 0000000000000005 [ 233.785021][T15059] RBP: 0000000000000005 R08: 0000000000000000 R09: ffffffffffffffff [ 233.792990][T15059] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000004 [ 233.800941][T15059] R13: 0000000000000004 R14: 0000000020000248 R15: 0000000000000003 [ 233.836984][T15059] EXT4-fs (loop0): ext4_check_descriptors: Checksum for group 0 failed (38247!=0) [ 233.868852][T15059] EXT4-fs (loop0): group descriptors corrupted! 21:38:13 executing program 2: set_mempolicy(0x8003, &(0x7f0000000300)=0x75f, 0x9) r0 = open(&(0x7f0000000300)='.\x00', 0x0, 0x0) symlinkat(&(0x7f0000000040)='\x13\x13w\xc5\xfc5\xd4\x14T\xd5\xd4\x1d)\xad\x1a`)Y\x81F\xe6\xbe\x16nA\xad\r\xbd@T\x03<\x9f3\xbb\xda\x82$\xa2\xf3\xd7r\xe7cnH\xb3<\xbfp\x83r\xe8\xf1\xb9\x93>\xc5\x12wC\xbe\"\x06 \x9e\xf0-\xf9\xcb\xf2\xf6\xe8\x80\xd38/\x00', r0, &(0x7f00000000c0)='./file0\x00') mkdirat(r0, &(0x7f0000000200)='\x13\x13w\xc5\xfc5\xd4\x14T\xd5\xd4\x1d)\xad\x1a`)Y\x81F\xe6\xbe\x16nA\xad\r\xbd@T\x03<\x9f3\xbb\xda\x82$\xa2\xf3\xd7r\xe7cnH\xb3<\xbfp\x83r\xe8\xf1\xb9\x93>\xc5\x12wC\xbe\"\x06 \x9e\xf0-\xf9\xcb\xf2\xf6\xe8\x80\xd38/\x00', 0x0) symlinkat(&(0x7f0000000340)='./file0/file0\x00', r0, &(0x7f0000000380)='\x13\x13w\xc5\xfc5\xd4\x14T\xd5\xd4\x1d)\xad\x1a`)Y\x81F\xe6\xbe\x16nA\xad\r\xbd@T\x03<\x9f3\xbb\xda\x82$\xa2\xf3\xd7r\xe7cnH\xb3<\xbfp\x83r\xe8\xf1\xb9\x93>\xc5\x12wC\xbe\"\x06 \x9e\xf0-\xf9\xcb\xf2\xf6\xe8\x80\xd38//file0\x00') r1 = open(&(0x7f0000000100)='.\x00', 0x0, 0x0) renameat2(r1, &(0x7f0000000400)='./file0/file0\x00', r1, &(0x7f0000000000)='./file0\x00', 0x400000000000000) 21:38:13 executing program 4: set_mempolicy(0x8003, &(0x7f0000000300)=0x75f, 0x9) open(&(0x7f0000000300)='.\x00', 0x0, 0x0) r0 = syz_open_procfs(0x0, &(0x7f00000000c0)='fd/3\x00') r1 = syz_open_dev$swradio(&(0x7f0000000100)='/dev/swradio#\x00', 0x0, 0x2) mount$9p_fd(0xffff000000000000, &(0x7f0000000300)='.\x00', &(0x7f0000000080)='9p\x00', 0x0, &(0x7f0000000740)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}}) 21:38:13 executing program 1: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) r3 = syz_open_procfs(0x0, &(0x7f00000000c0)='fd/3\x00') mount$9p_fd(0x1200000000000000, &(0x7f0000000300)='.\x00', &(0x7f0000000080)='9p\x00', 0x0, &(0x7f00000003c0)={'trans=fd,', {'rfdno', 0x3d, r3}, 0x2c, {'wfdno', 0x3d, r2}}) 21:38:13 executing program 0 (fault-call:0 fault-nth:31): syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x40000, 0x3, &(0x7f0000000200)=[{&(0x7f0000010000)="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", 0x10c, 0x400}, {&(0x7f0000010200)="0500000000000000000000000000000000000000040100002b", 0x19, 0x560}, {&(0x7f0000010300)="000000000000000000000000000000000000000000000000000000001481910a040000001400000024", 0x29, 0x7e0}], 0x0, &(0x7f0000000040)={[{@usrjquota='usrjquota='}, {@data_err_abort='data_err=abort'}]}) 21:38:13 executing program 2: set_mempolicy(0x8003, &(0x7f0000000300)=0x75f, 0x9) r0 = open(&(0x7f0000000300)='.\x00', 0x0, 0x0) symlinkat(&(0x7f0000000040)='\x13\x13w\xc5\xfc5\xd4\x14T\xd5\xd4\x1d)\xad\x1a`)Y\x81F\xe6\xbe\x16nA\xad\r\xbd@T\x03<\x9f3\xbb\xda\x82$\xa2\xf3\xd7r\xe7cnH\xb3<\xbfp\x83r\xe8\xf1\xb9\x93>\xc5\x12wC\xbe\"\x06 \x9e\xf0-\xf9\xcb\xf2\xf6\xe8\x80\xd38/\x00', r0, &(0x7f00000000c0)='./file0\x00') mkdirat(r0, &(0x7f0000000200)='\x13\x13w\xc5\xfc5\xd4\x14T\xd5\xd4\x1d)\xad\x1a`)Y\x81F\xe6\xbe\x16nA\xad\r\xbd@T\x03<\x9f3\xbb\xda\x82$\xa2\xf3\xd7r\xe7cnH\xb3<\xbfp\x83r\xe8\xf1\xb9\x93>\xc5\x12wC\xbe\"\x06 \x9e\xf0-\xf9\xcb\xf2\xf6\xe8\x80\xd38/\x00', 0x0) symlinkat(&(0x7f0000000340)='./file0/file0\x00', r0, &(0x7f0000000380)='\x13\x13w\xc5\xfc5\xd4\x14T\xd5\xd4\x1d)\xad\x1a`)Y\x81F\xe6\xbe\x16nA\xad\r\xbd@T\x03<\x9f3\xbb\xda\x82$\xa2\xf3\xd7r\xe7cnH\xb3<\xbfp\x83r\xe8\xf1\xb9\x93>\xc5\x12wC\xbe\"\x06 \x9e\xf0-\xf9\xcb\xf2\xf6\xe8\x80\xd38//file0\x00') r1 = open(&(0x7f0000000100)='.\x00', 0x0, 0x0) renameat2(r1, &(0x7f0000000400)='./file0/file0\x00', r1, &(0x7f0000000000)='./file0\x00', 0x500000000000000) 21:38:13 executing program 3: set_mempolicy(0x8003, &(0x7f0000000300)=0x75f, 0x9) open(&(0x7f0000000300)='.\x00', 0x0, 0x0) r0 = syz_open_procfs(0x0, &(0x7f00000000c0)='fd/3\x00') r1 = syz_open_dev$swradio(&(0x7f0000000100)='/dev/swradio#\x00', 0x0, 0x2) mount$9p_fd(0x0, &(0x7f0000000300)='.\x00', &(0x7f0000000080)='9p\x00', 0x8, &(0x7f0000000740)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}}) 21:38:13 executing program 5: set_mempolicy(0x8003, &(0x7f0000000300)=0x75f, 0x9) open(&(0x7f0000000300)='.\x00', 0x0, 0x0) r0 = syz_open_procfs(0x0, &(0x7f00000000c0)='fd/3\x00') r1 = syz_open_dev$swradio(&(0x7f0000000100)='/dev/swradio#\x00', 0x0, 0x2) mount$9p_fd(0x0, &(0x7f0000000300)='.\x00', &(0x7f0000000080)='9p\x00', 0x11, &(0x7f0000000740)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}}) 21:38:14 executing program 4: set_mempolicy(0x8003, &(0x7f0000000300)=0x75f, 0x9) open(&(0x7f0000000300)='.\x00', 0x0, 0x0) r0 = syz_open_procfs(0x0, &(0x7f00000000c0)='fd/3\x00') r1 = syz_open_dev$swradio(&(0x7f0000000100)='/dev/swradio#\x00', 0x0, 0x2) mount$9p_fd(0xffffffff00000000, &(0x7f0000000300)='.\x00', &(0x7f0000000080)='9p\x00', 0x0, &(0x7f0000000740)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}}) [ 234.054088][T15113] loop0: detected capacity change from 512 to 0 [ 234.063130][T15113] FAULT_INJECTION: forcing a failure. [ 234.063130][T15113] name failslab, interval 1, probability 0, space 0, times 0 [ 234.080829][T15113] CPU: 0 PID: 15113 Comm: syz-executor.0 Not tainted 5.11.0-syzkaller #0 [ 234.089266][T15113] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 234.099931][T15113] Call Trace: 21:38:14 executing program 1: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) r3 = syz_open_procfs(0x0, &(0x7f00000000c0)='fd/3\x00') mount$9p_fd(0x2010000000000000, &(0x7f0000000300)='.\x00', &(0x7f0000000080)='9p\x00', 0x0, &(0x7f00000003c0)={'trans=fd,', {'rfdno', 0x3d, r3}, 0x2c, {'wfdno', 0x3d, r2}}) 21:38:14 executing program 2: set_mempolicy(0x8003, &(0x7f0000000300)=0x75f, 0x9) r0 = open(&(0x7f0000000300)='.\x00', 0x0, 0x0) symlinkat(&(0x7f0000000040)='\x13\x13w\xc5\xfc5\xd4\x14T\xd5\xd4\x1d)\xad\x1a`)Y\x81F\xe6\xbe\x16nA\xad\r\xbd@T\x03<\x9f3\xbb\xda\x82$\xa2\xf3\xd7r\xe7cnH\xb3<\xbfp\x83r\xe8\xf1\xb9\x93>\xc5\x12wC\xbe\"\x06 \x9e\xf0-\xf9\xcb\xf2\xf6\xe8\x80\xd38/\x00', r0, &(0x7f00000000c0)='./file0\x00') mkdirat(r0, &(0x7f0000000200)='\x13\x13w\xc5\xfc5\xd4\x14T\xd5\xd4\x1d)\xad\x1a`)Y\x81F\xe6\xbe\x16nA\xad\r\xbd@T\x03<\x9f3\xbb\xda\x82$\xa2\xf3\xd7r\xe7cnH\xb3<\xbfp\x83r\xe8\xf1\xb9\x93>\xc5\x12wC\xbe\"\x06 \x9e\xf0-\xf9\xcb\xf2\xf6\xe8\x80\xd38/\x00', 0x0) symlinkat(&(0x7f0000000340)='./file0/file0\x00', r0, &(0x7f0000000380)='\x13\x13w\xc5\xfc5\xd4\x14T\xd5\xd4\x1d)\xad\x1a`)Y\x81F\xe6\xbe\x16nA\xad\r\xbd@T\x03<\x9f3\xbb\xda\x82$\xa2\xf3\xd7r\xe7cnH\xb3<\xbfp\x83r\xe8\xf1\xb9\x93>\xc5\x12wC\xbe\"\x06 \x9e\xf0-\xf9\xcb\xf2\xf6\xe8\x80\xd38//file0\x00') r1 = open(&(0x7f0000000100)='.\x00', 0x0, 0x0) renameat2(r1, &(0x7f0000000400)='./file0/file0\x00', r1, &(0x7f0000000000)='./file0\x00', 0x600000000000000) [ 234.103219][T15113] dump_stack+0x116/0x15d [ 234.107555][T15113] should_fail+0x23c/0x250 [ 234.111964][T15113] __should_failslab+0x81/0x90 [ 234.116791][T15113] ? kzalloc+0x1d/0x30 [ 234.120910][T15113] should_failslab+0x5/0x20 [ 234.125405][T15113] __kmalloc+0x59/0x360 [ 234.129627][T15113] kzalloc+0x1d/0x30 [ 234.133600][T15113] kobject_get_path+0x7c/0x110 [ 234.138484][T15113] kobject_uevent_env+0x1be/0xc40 [ 234.143570][T15113] ? set_capacity_and_notify+0x1a4/0x1b0 [ 234.149204][T15113] kobject_uevent+0x18/0x20 21:38:14 executing program 5: set_mempolicy(0x8003, &(0x7f0000000300)=0x75f, 0x9) open(&(0x7f0000000300)='.\x00', 0x0, 0x0) r0 = syz_open_procfs(0x0, &(0x7f00000000c0)='fd/3\x00') r1 = syz_open_dev$swradio(&(0x7f0000000100)='/dev/swradio#\x00', 0x0, 0x2) mount$9p_fd(0x0, &(0x7f0000000300)='.\x00', &(0x7f0000000080)='9p\x00', 0x12, &(0x7f0000000740)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}}) [ 234.153707][T15113] loop_configure+0xac7/0xc40 [ 234.158469][T15113] lo_ioctl+0x54b/0x11e0 [ 234.162764][T15113] ? ___cache_free+0x3c/0x2f0 [ 234.167609][T15113] ? blkdev_common_ioctl+0xa29/0x1060 [ 234.172983][T15113] ? lo_release+0x120/0x120 [ 234.177492][T15113] blkdev_ioctl+0x1d0/0x3c0 [ 234.181985][T15113] block_ioctl+0x6d/0x80 [ 234.186225][T15113] ? blkdev_iopoll+0x70/0x70 [ 234.190804][T15113] __se_sys_ioctl+0xcb/0x140 [ 234.195394][T15113] __x64_sys_ioctl+0x3f/0x50 [ 234.200029][T15113] do_syscall_64+0x39/0x80 21:38:14 executing program 3: set_mempolicy(0x8003, &(0x7f0000000300)=0x75f, 0x9) open(&(0x7f0000000300)='.\x00', 0x0, 0x0) r0 = syz_open_procfs(0x0, &(0x7f00000000c0)='fd/3\x00') r1 = syz_open_dev$swradio(&(0x7f0000000100)='/dev/swradio#\x00', 0x0, 0x2) mount$9p_fd(0x0, &(0x7f0000000300)='.\x00', &(0x7f0000000080)='9p\x00', 0x9, &(0x7f0000000740)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}}) [ 234.204452][T15113] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 234.210433][T15113] RIP: 0033:0x465b57 [ 234.214320][T15113] Code: 3c 1c 48 f7 d8 49 39 c4 72 b8 e8 a4 4d 02 00 85 c0 78 bd 48 83 c4 08 4c 89 e0 5b 41 5c c3 0f 1f 44 00 00 b8 10 00 00 00 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 234.234011][T15113] RSP: 002b:00007f8175ef9f48 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 234.242506][T15113] RAX: ffffffffffffffda RBX: 00000000004af960 RCX: 0000000000465b57 [ 234.250454][T15113] RDX: 0000000000000004 RSI: 0000000000004c00 RDI: 0000000000000005 [ 234.258406][T15113] RBP: 0000000000000005 R08: 0000000000000000 R09: ffffffffffffffff [ 234.266353][T15113] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000004 [ 234.274314][T15113] R13: 0000000000000004 R14: 0000000020000248 R15: 0000000000000003 [ 234.293238][T15113] EXT4-fs (loop0): ext4_check_descriptors: Checksum for group 0 failed (38247!=0) 21:38:14 executing program 1: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) r3 = syz_open_procfs(0x0, &(0x7f00000000c0)='fd/3\x00') mount$9p_fd(0x2500000000000000, &(0x7f0000000300)='.\x00', &(0x7f0000000080)='9p\x00', 0x0, &(0x7f00000003c0)={'trans=fd,', {'rfdno', 0x3d, r3}, 0x2c, {'wfdno', 0x3d, r2}}) [ 234.305295][T15113] EXT4-fs (loop0): group descriptors corrupted! 21:38:14 executing program 2: set_mempolicy(0x8003, &(0x7f0000000300)=0x75f, 0x9) r0 = open(&(0x7f0000000300)='.\x00', 0x0, 0x0) symlinkat(&(0x7f0000000040)='\x13\x13w\xc5\xfc5\xd4\x14T\xd5\xd4\x1d)\xad\x1a`)Y\x81F\xe6\xbe\x16nA\xad\r\xbd@T\x03<\x9f3\xbb\xda\x82$\xa2\xf3\xd7r\xe7cnH\xb3<\xbfp\x83r\xe8\xf1\xb9\x93>\xc5\x12wC\xbe\"\x06 \x9e\xf0-\xf9\xcb\xf2\xf6\xe8\x80\xd38/\x00', r0, &(0x7f00000000c0)='./file0\x00') mkdirat(r0, &(0x7f0000000200)='\x13\x13w\xc5\xfc5\xd4\x14T\xd5\xd4\x1d)\xad\x1a`)Y\x81F\xe6\xbe\x16nA\xad\r\xbd@T\x03<\x9f3\xbb\xda\x82$\xa2\xf3\xd7r\xe7cnH\xb3<\xbfp\x83r\xe8\xf1\xb9\x93>\xc5\x12wC\xbe\"\x06 \x9e\xf0-\xf9\xcb\xf2\xf6\xe8\x80\xd38/\x00', 0x0) symlinkat(&(0x7f0000000340)='./file0/file0\x00', r0, &(0x7f0000000380)='\x13\x13w\xc5\xfc5\xd4\x14T\xd5\xd4\x1d)\xad\x1a`)Y\x81F\xe6\xbe\x16nA\xad\r\xbd@T\x03<\x9f3\xbb\xda\x82$\xa2\xf3\xd7r\xe7cnH\xb3<\xbfp\x83r\xe8\xf1\xb9\x93>\xc5\x12wC\xbe\"\x06 \x9e\xf0-\xf9\xcb\xf2\xf6\xe8\x80\xd38//file0\x00') r1 = open(&(0x7f0000000100)='.\x00', 0x0, 0x0) renameat2(r1, &(0x7f0000000400)='./file0/file0\x00', r1, &(0x7f0000000000)='./file0\x00', 0x700000000000000) 21:38:14 executing program 0 (fault-call:0 fault-nth:32): syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x40000, 0x3, &(0x7f0000000200)=[{&(0x7f0000010000)="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", 0x10c, 0x400}, {&(0x7f0000010200)="0500000000000000000000000000000000000000040100002b", 0x19, 0x560}, {&(0x7f0000010300)="000000000000000000000000000000000000000000000000000000001481910a040000001400000024", 0x29, 0x7e0}], 0x0, &(0x7f0000000040)={[{@usrjquota='usrjquota='}, {@data_err_abort='data_err=abort'}]}) 21:38:14 executing program 4: set_mempolicy(0x8003, &(0x7f0000000300)=0x75f, 0x9) open(&(0x7f0000000300)='.\x00', 0x0, 0x0) r0 = syz_open_procfs(0x0, &(0x7f00000000c0)='fd/3\x00') r1 = syz_open_dev$swradio(&(0x7f0000000100)='/dev/swradio#\x00', 0x0, 0x2) mount$9p_fd(0xffffffffffffff0f, &(0x7f0000000300)='.\x00', &(0x7f0000000080)='9p\x00', 0x0, &(0x7f0000000740)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}}) [ 234.395271][ T8977] warn_unsupported: 28 callbacks suppressed [ 234.395285][ T8977] kernel read not supported for file root/syzkaller-testdir051064025/syzkaller.PVWmQb/208 (pid: 8977 comm: kworker/0:3) 21:38:14 executing program 1: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) r3 = syz_open_procfs(0x0, &(0x7f00000000c0)='fd/3\x00') mount$9p_fd(0x3f00000000000000, &(0x7f0000000300)='.\x00', &(0x7f0000000080)='9p\x00', 0x0, &(0x7f00000003c0)={'trans=fd,', {'rfdno', 0x3d, r3}, 0x2c, {'wfdno', 0x3d, r2}}) [ 234.464490][T15169] loop0: detected capacity change from 512 to 0 [ 234.470388][ T5] kernel read not supported for file root/syzkaller-testdir496628174/syzkaller.h9GlBV/211 (pid: 5 comm: kworker/0:0) [ 234.486109][T15169] FAULT_INJECTION: forcing a failure. [ 234.486109][T15169] name failslab, interval 1, probability 0, space 0, times 0 [ 234.524924][T15169] CPU: 1 PID: 15169 Comm: syz-executor.0 Not tainted 5.11.0-syzkaller #0 [ 234.533367][T15169] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 234.534851][ T5] kernel read not supported for file root/syzkaller-testdir051064025/syzkaller.PVWmQb/208 (pid: 5 comm: kworker/0:0) [ 234.543473][T15169] Call Trace: [ 234.543481][T15169] dump_stack+0x116/0x15d [ 234.563294][T15169] should_fail+0x23c/0x250 [ 234.567704][T15169] __should_failslab+0x81/0x90 [ 234.572462][T15169] should_failslab+0x5/0x20 [ 234.575672][T15177] vivid-006: kernel_thread() failed [ 234.577009][T15169] kmem_cache_alloc_node+0x46/0x2e0 [ 234.587380][T15169] ? __alloc_skb+0x98/0x300 [ 234.591877][T15169] __alloc_skb+0x98/0x300 [ 234.596223][T15169] alloc_uevent_skb+0x5b/0x120 [ 234.601052][T15169] kobject_uevent_env+0x863/0xc40 [ 234.606070][T15169] ? set_capacity_and_notify+0x1a4/0x1b0 [ 234.611698][T15169] kobject_uevent+0x18/0x20 [ 234.616268][T15169] loop_configure+0xac7/0xc40 [ 234.620944][T15169] lo_ioctl+0x54b/0x11e0 [ 234.625176][T15169] ? ___cache_free+0x3c/0x2f0 [ 234.629848][T15169] ? blkdev_common_ioctl+0xa29/0x1060 [ 234.635221][T15169] ? lo_release+0x120/0x120 [ 234.638159][ T5] kernel read not supported for file root/syzkaller-testdir496628174/syzkaller.h9GlBV/211 (pid: 5 comm: kworker/0:0) [ 234.639744][T15169] blkdev_ioctl+0x1d0/0x3c0 [ 234.639764][T15169] block_ioctl+0x6d/0x80 [ 234.660697][T15169] ? blkdev_iopoll+0x70/0x70 [ 234.665300][T15169] __se_sys_ioctl+0xcb/0x140 [ 234.669885][T15169] __x64_sys_ioctl+0x3f/0x50 [ 234.674472][T15169] do_syscall_64+0x39/0x80 [ 234.678895][T15169] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 234.684784][T15169] RIP: 0033:0x465b57 [ 234.689223][T15169] Code: 3c 1c 48 f7 d8 49 39 c4 72 b8 e8 a4 4d 02 00 85 c0 78 bd 48 83 c4 08 4c 89 e0 5b 41 5c c3 0f 1f 44 00 00 b8 10 00 00 00 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 234.708825][T15169] RSP: 002b:00007f8175ef9f48 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 234.717477][T15169] RAX: ffffffffffffffda RBX: 00000000004af960 RCX: 0000000000465b57 21:38:14 executing program 2: set_mempolicy(0x8003, &(0x7f0000000300)=0x75f, 0x9) r0 = open(&(0x7f0000000300)='.\x00', 0x0, 0x0) symlinkat(&(0x7f0000000040)='\x13\x13w\xc5\xfc5\xd4\x14T\xd5\xd4\x1d)\xad\x1a`)Y\x81F\xe6\xbe\x16nA\xad\r\xbd@T\x03<\x9f3\xbb\xda\x82$\xa2\xf3\xd7r\xe7cnH\xb3<\xbfp\x83r\xe8\xf1\xb9\x93>\xc5\x12wC\xbe\"\x06 \x9e\xf0-\xf9\xcb\xf2\xf6\xe8\x80\xd38/\x00', r0, &(0x7f00000000c0)='./file0\x00') mkdirat(r0, &(0x7f0000000200)='\x13\x13w\xc5\xfc5\xd4\x14T\xd5\xd4\x1d)\xad\x1a`)Y\x81F\xe6\xbe\x16nA\xad\r\xbd@T\x03<\x9f3\xbb\xda\x82$\xa2\xf3\xd7r\xe7cnH\xb3<\xbfp\x83r\xe8\xf1\xb9\x93>\xc5\x12wC\xbe\"\x06 \x9e\xf0-\xf9\xcb\xf2\xf6\xe8\x80\xd38/\x00', 0x0) symlinkat(&(0x7f0000000340)='./file0/file0\x00', r0, &(0x7f0000000380)='\x13\x13w\xc5\xfc5\xd4\x14T\xd5\xd4\x1d)\xad\x1a`)Y\x81F\xe6\xbe\x16nA\xad\r\xbd@T\x03<\x9f3\xbb\xda\x82$\xa2\xf3\xd7r\xe7cnH\xb3<\xbfp\x83r\xe8\xf1\xb9\x93>\xc5\x12wC\xbe\"\x06 \x9e\xf0-\xf9\xcb\xf2\xf6\xe8\x80\xd38//file0\x00') r1 = open(&(0x7f0000000100)='.\x00', 0x0, 0x0) renameat2(r1, &(0x7f0000000400)='./file0/file0\x00', r1, &(0x7f0000000000)='./file0\x00', 0x800000000000000) 21:38:14 executing program 4: set_mempolicy(0x8003, &(0x7f0000000300)=0x75f, 0x9) open(&(0x7f0000000300)='.\x00', 0x0, 0x0) r0 = syz_open_procfs(0x0, &(0x7f00000000c0)='fd/3\x00') r1 = syz_open_dev$swradio(&(0x7f0000000100)='/dev/swradio#\x00', 0x0, 0x2) mount$9p_fd(0x0, &(0x7f0000000300)='.\x00', &(0x7f0000000080)='9p\x00', 0x2, &(0x7f0000000740)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}}) 21:38:14 executing program 5: set_mempolicy(0x8003, &(0x7f0000000300)=0x75f, 0x9) open(&(0x7f0000000300)='.\x00', 0x0, 0x0) r0 = syz_open_procfs(0x0, &(0x7f00000000c0)='fd/3\x00') r1 = syz_open_dev$swradio(&(0x7f0000000100)='/dev/swradio#\x00', 0x0, 0x2) mount$9p_fd(0x0, &(0x7f0000000300)='.\x00', &(0x7f0000000080)='9p\x00', 0x25, &(0x7f0000000740)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}}) 21:38:14 executing program 3: set_mempolicy(0x8003, &(0x7f0000000300)=0x75f, 0x9) open(&(0x7f0000000300)='.\x00', 0x0, 0x0) r0 = syz_open_procfs(0x0, &(0x7f00000000c0)='fd/3\x00') r1 = syz_open_dev$swradio(&(0x7f0000000100)='/dev/swradio#\x00', 0x0, 0x2) mount$9p_fd(0x0, &(0x7f0000000300)='.\x00', &(0x7f0000000080)='9p\x00', 0xa, &(0x7f0000000740)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}}) [ 234.725931][T15169] RDX: 0000000000000004 RSI: 0000000000004c00 RDI: 0000000000000005 [ 234.734615][T15169] RBP: 0000000000000005 R08: 0000000000000000 R09: ffffffffffffffff [ 234.743162][T15169] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000004 [ 234.751205][T15169] R13: 0000000000000004 R14: 0000000020000248 R15: 0000000000000003 [ 234.801019][T15169] EXT4-fs (loop0): ext4_check_descriptors: Checksum for group 0 failed (38247!=0) [ 234.818552][T15169] EXT4-fs (loop0): group descriptors corrupted! 21:38:14 executing program 0 (fault-call:0 fault-nth:33): syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x40000, 0x3, &(0x7f0000000200)=[{&(0x7f0000010000)="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", 0x10c, 0x400}, {&(0x7f0000010200)="0500000000000000000000000000000000000000040100002b", 0x19, 0x560}, {&(0x7f0000010300)="000000000000000000000000000000000000000000000000000000001481910a040000001400000024", 0x29, 0x7e0}], 0x0, &(0x7f0000000040)={[{@usrjquota='usrjquota='}, {@data_err_abort='data_err=abort'}]}) 21:38:14 executing program 2: set_mempolicy(0x8003, &(0x7f0000000300)=0x75f, 0x9) r0 = open(&(0x7f0000000300)='.\x00', 0x0, 0x0) symlinkat(&(0x7f0000000040)='\x13\x13w\xc5\xfc5\xd4\x14T\xd5\xd4\x1d)\xad\x1a`)Y\x81F\xe6\xbe\x16nA\xad\r\xbd@T\x03<\x9f3\xbb\xda\x82$\xa2\xf3\xd7r\xe7cnH\xb3<\xbfp\x83r\xe8\xf1\xb9\x93>\xc5\x12wC\xbe\"\x06 \x9e\xf0-\xf9\xcb\xf2\xf6\xe8\x80\xd38/\x00', r0, &(0x7f00000000c0)='./file0\x00') mkdirat(r0, &(0x7f0000000200)='\x13\x13w\xc5\xfc5\xd4\x14T\xd5\xd4\x1d)\xad\x1a`)Y\x81F\xe6\xbe\x16nA\xad\r\xbd@T\x03<\x9f3\xbb\xda\x82$\xa2\xf3\xd7r\xe7cnH\xb3<\xbfp\x83r\xe8\xf1\xb9\x93>\xc5\x12wC\xbe\"\x06 \x9e\xf0-\xf9\xcb\xf2\xf6\xe8\x80\xd38/\x00', 0x0) symlinkat(&(0x7f0000000340)='./file0/file0\x00', r0, &(0x7f0000000380)='\x13\x13w\xc5\xfc5\xd4\x14T\xd5\xd4\x1d)\xad\x1a`)Y\x81F\xe6\xbe\x16nA\xad\r\xbd@T\x03<\x9f3\xbb\xda\x82$\xa2\xf3\xd7r\xe7cnH\xb3<\xbfp\x83r\xe8\xf1\xb9\x93>\xc5\x12wC\xbe\"\x06 \x9e\xf0-\xf9\xcb\xf2\xf6\xe8\x80\xd38//file0\x00') r1 = open(&(0x7f0000000100)='.\x00', 0x0, 0x0) renameat2(r1, &(0x7f0000000400)='./file0/file0\x00', r1, &(0x7f0000000000)='./file0\x00', 0x900000000000000) 21:38:14 executing program 5: set_mempolicy(0x8003, &(0x7f0000000300)=0x75f, 0x9) open(&(0x7f0000000300)='.\x00', 0x0, 0x0) r0 = syz_open_procfs(0x0, &(0x7f00000000c0)='fd/3\x00') r1 = syz_open_dev$swradio(&(0x7f0000000100)='/dev/swradio#\x00', 0x0, 0x2) mount$9p_fd(0x0, &(0x7f0000000300)='.\x00', &(0x7f0000000080)='9p\x00', 0x5c, &(0x7f0000000740)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}}) [ 234.891410][ T5] kernel read not supported for file root/syzkaller-testdir583426511/syzkaller.VVQl22/214 (pid: 5 comm: kworker/0:0) [ 234.929569][ T5] kernel read not supported for file root/syzkaller-testdir496628174/syzkaller.h9GlBV/212 (pid: 5 comm: kworker/0:0) 21:38:14 executing program 1: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) r3 = syz_open_procfs(0x0, &(0x7f00000000c0)='fd/3\x00') mount$9p_fd(0x5c00000000000000, &(0x7f0000000300)='.\x00', &(0x7f0000000080)='9p\x00', 0x0, &(0x7f00000003c0)={'trans=fd,', {'rfdno', 0x3d, r3}, 0x2c, {'wfdno', 0x3d, r2}}) [ 234.953092][T15211] loop0: detected capacity change from 512 to 0 [ 234.966109][T15211] FAULT_INJECTION: forcing a failure. [ 234.966109][T15211] name failslab, interval 1, probability 0, space 0, times 0 [ 234.982747][T15211] CPU: 1 PID: 15211 Comm: syz-executor.0 Not tainted 5.11.0-syzkaller #0 [ 234.991174][T15211] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 235.001222][T15211] Call Trace: [ 235.004503][T15211] dump_stack+0x116/0x15d [ 235.005384][ T9777] kernel read not supported for file root/syzkaller-testdir051064025/syzkaller.PVWmQb/210 (pid: 9777 comm: kworker/0:5) [ 235.008837][T15211] should_fail+0x23c/0x250 [ 235.008858][T15211] ? alloc_uevent_skb+0x5b/0x120 [ 235.030865][T15211] __should_failslab+0x81/0x90 [ 235.035689][T15211] should_failslab+0x5/0x20 [ 235.040210][T15211] kmem_cache_alloc_node_trace+0x4b/0x2e0 [ 235.045942][T15211] ? __kmalloc_node_track_caller+0x30/0x40 [ 235.051773][T15211] ? alloc_uevent_skb+0x5b/0x120 [ 235.056699][T15211] __kmalloc_node_track_caller+0x30/0x40 [ 235.059041][ T9777] kernel read not supported for file root/syzkaller-testdir583426511/syzkaller.VVQl22/214 (pid: 9777 comm: kworker/0:5) [ 235.062403][T15211] __alloc_skb+0xd2/0x300 [ 235.062426][T15211] alloc_uevent_skb+0x5b/0x120 [ 235.083947][T15211] kobject_uevent_env+0x863/0xc40 [ 235.088997][T15211] ? set_capacity_and_notify+0x1a4/0x1b0 [ 235.094628][T15211] kobject_uevent+0x18/0x20 [ 235.099136][T15211] loop_configure+0xac7/0xc40 21:38:15 executing program 4: set_mempolicy(0x8003, &(0x7f0000000300)=0x75f, 0x9) open(&(0x7f0000000300)='.\x00', 0x0, 0x0) r0 = syz_open_procfs(0x0, &(0x7f00000000c0)='fd/3\x00') r1 = syz_open_dev$swradio(&(0x7f0000000100)='/dev/swradio#\x00', 0x0, 0x2) mount$9p_fd(0x0, &(0x7f0000000300)='.\x00', &(0x7f0000000080)='9p\x00', 0x3, &(0x7f0000000740)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}}) [ 235.103808][T15211] lo_ioctl+0x54b/0x11e0 [ 235.108065][T15211] ? ___cache_free+0x3c/0x2f0 [ 235.112743][T15211] ? blkdev_common_ioctl+0xa29/0x1060 [ 235.118106][T15211] ? lo_release+0x120/0x120 [ 235.122598][T15211] blkdev_ioctl+0x1d0/0x3c0 [ 235.127102][T15211] block_ioctl+0x6d/0x80 [ 235.131336][T15211] ? blkdev_iopoll+0x70/0x70 [ 235.135976][T15211] __se_sys_ioctl+0xcb/0x140 [ 235.140583][T15211] __x64_sys_ioctl+0x3f/0x50 [ 235.145172][T15211] do_syscall_64+0x39/0x80 [ 235.149583][T15211] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 235.155542][T15211] RIP: 0033:0x465b57 [ 235.159427][T15211] Code: 3c 1c 48 f7 d8 49 39 c4 72 b8 e8 a4 4d 02 00 85 c0 78 bd 48 83 c4 08 4c 89 e0 5b 41 5c c3 0f 1f 44 00 00 b8 10 00 00 00 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 235.179038][T15211] RSP: 002b:00007f8175ef9f48 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 235.187434][T15211] RAX: ffffffffffffffda RBX: 00000000004af960 RCX: 0000000000465b57 [ 235.195394][T15211] RDX: 0000000000000004 RSI: 0000000000004c00 RDI: 0000000000000005 [ 235.203379][T15211] RBP: 0000000000000005 R08: 0000000000000000 R09: ffffffffffffffff [ 235.211338][T15211] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000004 [ 235.219349][T15211] R13: 0000000000000004 R14: 0000000020000248 R15: 0000000000000003 21:38:15 executing program 2: set_mempolicy(0x8003, &(0x7f0000000300)=0x75f, 0x9) r0 = open(&(0x7f0000000300)='.\x00', 0x0, 0x0) symlinkat(&(0x7f0000000040)='\x13\x13w\xc5\xfc5\xd4\x14T\xd5\xd4\x1d)\xad\x1a`)Y\x81F\xe6\xbe\x16nA\xad\r\xbd@T\x03<\x9f3\xbb\xda\x82$\xa2\xf3\xd7r\xe7cnH\xb3<\xbfp\x83r\xe8\xf1\xb9\x93>\xc5\x12wC\xbe\"\x06 \x9e\xf0-\xf9\xcb\xf2\xf6\xe8\x80\xd38/\x00', r0, &(0x7f00000000c0)='./file0\x00') mkdirat(r0, &(0x7f0000000200)='\x13\x13w\xc5\xfc5\xd4\x14T\xd5\xd4\x1d)\xad\x1a`)Y\x81F\xe6\xbe\x16nA\xad\r\xbd@T\x03<\x9f3\xbb\xda\x82$\xa2\xf3\xd7r\xe7cnH\xb3<\xbfp\x83r\xe8\xf1\xb9\x93>\xc5\x12wC\xbe\"\x06 \x9e\xf0-\xf9\xcb\xf2\xf6\xe8\x80\xd38/\x00', 0x0) symlinkat(&(0x7f0000000340)='./file0/file0\x00', r0, &(0x7f0000000380)='\x13\x13w\xc5\xfc5\xd4\x14T\xd5\xd4\x1d)\xad\x1a`)Y\x81F\xe6\xbe\x16nA\xad\r\xbd@T\x03<\x9f3\xbb\xda\x82$\xa2\xf3\xd7r\xe7cnH\xb3<\xbfp\x83r\xe8\xf1\xb9\x93>\xc5\x12wC\xbe\"\x06 \x9e\xf0-\xf9\xcb\xf2\xf6\xe8\x80\xd38//file0\x00') r1 = open(&(0x7f0000000100)='.\x00', 0x0, 0x0) renameat2(r1, &(0x7f0000000400)='./file0/file0\x00', r1, &(0x7f0000000000)='./file0\x00', 0xa00000000000000) 21:38:15 executing program 1: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) r3 = syz_open_procfs(0x0, &(0x7f00000000c0)='fd/3\x00') mount$9p_fd(0x8cffffff00000000, &(0x7f0000000300)='.\x00', &(0x7f0000000080)='9p\x00', 0x0, &(0x7f00000003c0)={'trans=fd,', {'rfdno', 0x3d, r3}, 0x2c, {'wfdno', 0x3d, r2}}) [ 235.282448][ T3648] kernel read not supported for file root/syzkaller-testdir496628174/syzkaller.h9GlBV/212 (pid: 3648 comm: kworker/1:2) 21:38:15 executing program 5: set_mempolicy(0x8003, &(0x7f0000000300)=0x75f, 0x9) open(&(0x7f0000000300)='.\x00', 0x0, 0x0) r0 = syz_open_procfs(0x0, &(0x7f00000000c0)='fd/3\x00') r1 = syz_open_dev$swradio(&(0x7f0000000100)='/dev/swradio#\x00', 0x0, 0x2) mount$9p_fd(0x0, &(0x7f0000000300)='.\x00', &(0x7f0000000080)='9p\x00', 0x300, &(0x7f0000000740)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}}) 21:38:15 executing program 3: set_mempolicy(0x8003, &(0x7f0000000300)=0x75f, 0x9) open(&(0x7f0000000300)='.\x00', 0x0, 0x0) r0 = syz_open_procfs(0x0, &(0x7f00000000c0)='fd/3\x00') r1 = syz_open_dev$swradio(&(0x7f0000000100)='/dev/swradio#\x00', 0x0, 0x2) mount$9p_fd(0x0, &(0x7f0000000300)='.\x00', &(0x7f0000000080)='9p\x00', 0xb, &(0x7f0000000740)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}}) [ 235.329295][T15211] EXT4-fs (loop0): ext4_check_descriptors: Checksum for group 0 failed (38247!=0) [ 235.347576][T15211] EXT4-fs (loop0): group descriptors corrupted! 21:38:15 executing program 5: set_mempolicy(0x8003, &(0x7f0000000300)=0x75f, 0x9) open(&(0x7f0000000300)='.\x00', 0x0, 0x0) r0 = syz_open_procfs(0x0, &(0x7f00000000c0)='fd/3\x00') r1 = syz_open_dev$swradio(&(0x7f0000000100)='/dev/swradio#\x00', 0x0, 0x2) mount$9p_fd(0x0, &(0x7f0000000300)='.\x00', &(0x7f0000000080)='9p\x00', 0x500, &(0x7f0000000740)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}}) [ 235.392238][ T5] kernel read not supported for file root/syzkaller-testdir583426511/syzkaller.VVQl22/215 (pid: 5 comm: kworker/0:0) 21:38:15 executing program 0 (fault-call:0 fault-nth:34): syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x40000, 0x3, &(0x7f0000000200)=[{&(0x7f0000010000)="20000000000100000c000000d90000000f0000000100000000000000000000000020000000200000200000002cc4645f2cc4645f0100ffff53ef0100010000002cc4645f000000000000000001000000000000000b0000008000000038000000c20200006b0400000000000000000000000000000000000073797a6b616c6c6572000000000000002f746d702f73797a2d696d61676567656e3338363633343038350000000000000000000000000000000000000000000000000000000000000000000000000000000000000000010000000000000000000000000000000000000000000000000000000000d9ca5cac99fd4329af4dde786c1a5d13010040000c000000000000002cc4645f", 0x10c, 0x400}, {&(0x7f0000010200)="0500000000000000000000000000000000000000040100002b", 0x19, 0x560}, {&(0x7f0000010300)="000000000000000000000000000000000000000000000000000000001481910a040000001400000024", 0x29, 0x7e0}], 0x0, &(0x7f0000000040)={[{@usrjquota='usrjquota='}, {@data_err_abort='data_err=abort'}]}) 21:38:15 executing program 2: set_mempolicy(0x8003, &(0x7f0000000300)=0x75f, 0x9) r0 = open(&(0x7f0000000300)='.\x00', 0x0, 0x0) symlinkat(&(0x7f0000000040)='\x13\x13w\xc5\xfc5\xd4\x14T\xd5\xd4\x1d)\xad\x1a`)Y\x81F\xe6\xbe\x16nA\xad\r\xbd@T\x03<\x9f3\xbb\xda\x82$\xa2\xf3\xd7r\xe7cnH\xb3<\xbfp\x83r\xe8\xf1\xb9\x93>\xc5\x12wC\xbe\"\x06 \x9e\xf0-\xf9\xcb\xf2\xf6\xe8\x80\xd38/\x00', r0, &(0x7f00000000c0)='./file0\x00') mkdirat(r0, &(0x7f0000000200)='\x13\x13w\xc5\xfc5\xd4\x14T\xd5\xd4\x1d)\xad\x1a`)Y\x81F\xe6\xbe\x16nA\xad\r\xbd@T\x03<\x9f3\xbb\xda\x82$\xa2\xf3\xd7r\xe7cnH\xb3<\xbfp\x83r\xe8\xf1\xb9\x93>\xc5\x12wC\xbe\"\x06 \x9e\xf0-\xf9\xcb\xf2\xf6\xe8\x80\xd38/\x00', 0x0) symlinkat(&(0x7f0000000340)='./file0/file0\x00', r0, &(0x7f0000000380)='\x13\x13w\xc5\xfc5\xd4\x14T\xd5\xd4\x1d)\xad\x1a`)Y\x81F\xe6\xbe\x16nA\xad\r\xbd@T\x03<\x9f3\xbb\xda\x82$\xa2\xf3\xd7r\xe7cnH\xb3<\xbfp\x83r\xe8\xf1\xb9\x93>\xc5\x12wC\xbe\"\x06 \x9e\xf0-\xf9\xcb\xf2\xf6\xe8\x80\xd38//file0\x00') r1 = open(&(0x7f0000000100)='.\x00', 0x0, 0x0) renameat2(r1, &(0x7f0000000400)='./file0/file0\x00', r1, &(0x7f0000000000)='./file0\x00', 0xb00000000000000) 21:38:15 executing program 1: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) r3 = syz_open_procfs(0x0, &(0x7f00000000c0)='fd/3\x00') mount$9p_fd(0xf6ffffff00000000, &(0x7f0000000300)='.\x00', &(0x7f0000000080)='9p\x00', 0x0, &(0x7f00000003c0)={'trans=fd,', {'rfdno', 0x3d, r3}, 0x2c, {'wfdno', 0x3d, r2}}) 21:38:15 executing program 4: set_mempolicy(0x8003, &(0x7f0000000300)=0x75f, 0x9) open(&(0x7f0000000300)='.\x00', 0x0, 0x0) r0 = syz_open_procfs(0x0, &(0x7f00000000c0)='fd/3\x00') r1 = syz_open_dev$swradio(&(0x7f0000000100)='/dev/swradio#\x00', 0x0, 0x2) mount$9p_fd(0x0, &(0x7f0000000300)='.\x00', &(0x7f0000000080)='9p\x00', 0x4, &(0x7f0000000740)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}}) [ 235.533810][T15267] loop0: detected capacity change from 512 to 0 [ 235.548430][T15267] FAULT_INJECTION: forcing a failure. [ 235.548430][T15267] name failslab, interval 1, probability 0, space 0, times 0 [ 235.563992][T15267] CPU: 0 PID: 15267 Comm: syz-executor.0 Not tainted 5.11.0-syzkaller #0 [ 235.572457][T15267] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 235.582499][T15267] Call Trace: [ 235.585763][T15267] dump_stack+0x116/0x15d [ 235.590141][T15267] should_fail+0x23c/0x250 [ 235.594556][T15267] ? skb_clone+0x131/0x1f0 [ 235.598953][T15267] __should_failslab+0x81/0x90 [ 235.603733][T15267] should_failslab+0x5/0x20 [ 235.608225][T15267] kmem_cache_alloc+0x36/0x2e0 [ 235.612988][T15267] skb_clone+0x131/0x1f0 [ 235.617223][T15267] netlink_broadcast_filtered+0x4fd/0xb80 [ 235.623124][T15267] ? skb_put+0xb9/0xf0 [ 235.627177][T15267] netlink_broadcast+0x35/0x50 [ 235.631922][T15267] kobject_uevent_env+0x8c9/0xc40 [ 235.637009][T15267] ? set_capacity_and_notify+0x1a4/0x1b0 [ 235.642623][T15267] kobject_uevent+0x18/0x20 [ 235.647148][T15267] loop_configure+0xac7/0xc40 [ 235.651900][T15267] lo_ioctl+0x54b/0x11e0 [ 235.656186][T15267] ? ___cache_free+0x3c/0x2f0 [ 235.660847][T15267] ? blkdev_common_ioctl+0xa29/0x1060 [ 235.666212][T15267] ? lo_release+0x120/0x120 [ 235.670696][T15267] blkdev_ioctl+0x1d0/0x3c0 [ 235.675225][T15267] block_ioctl+0x6d/0x80 [ 235.679468][T15267] ? blkdev_iopoll+0x70/0x70 [ 235.684106][T15267] __se_sys_ioctl+0xcb/0x140 [ 235.688776][T15267] __x64_sys_ioctl+0x3f/0x50 [ 235.693484][T15267] do_syscall_64+0x39/0x80 [ 235.698594][T15267] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 235.704557][T15267] RIP: 0033:0x465b57 [ 235.708434][T15267] Code: 3c 1c 48 f7 d8 49 39 c4 72 b8 e8 a4 4d 02 00 85 c0 78 bd 48 83 c4 08 4c 89 e0 5b 41 5c c3 0f 1f 44 00 00 b8 10 00 00 00 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 235.728107][T15267] RSP: 002b:00007f8175ef9f48 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 235.736498][T15267] RAX: ffffffffffffffda RBX: 00000000004af960 RCX: 0000000000465b57 [ 235.744447][T15267] RDX: 0000000000000004 RSI: 0000000000004c00 RDI: 0000000000000005 [ 235.752407][T15267] RBP: 0000000000000005 R08: 0000000000000000 R09: ffffffffffffffff [ 235.760375][T15267] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000004 [ 235.768326][T15267] R13: 0000000000000004 R14: 0000000020000248 R15: 0000000000000003 21:38:15 executing program 5: set_mempolicy(0x8003, &(0x7f0000000300)=0x75f, 0x9) open(&(0x7f0000000300)='.\x00', 0x0, 0x0) r0 = syz_open_procfs(0x0, &(0x7f00000000c0)='fd/3\x00') r1 = syz_open_dev$swradio(&(0x7f0000000100)='/dev/swradio#\x00', 0x0, 0x2) mount$9p_fd(0x0, &(0x7f0000000300)='.\x00', &(0x7f0000000080)='9p\x00', 0x600, &(0x7f0000000740)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}}) 21:38:15 executing program 3: set_mempolicy(0x8003, &(0x7f0000000300)=0x75f, 0x9) open(&(0x7f0000000300)='.\x00', 0x0, 0x0) r0 = syz_open_procfs(0x0, &(0x7f00000000c0)='fd/3\x00') r1 = syz_open_dev$swradio(&(0x7f0000000100)='/dev/swradio#\x00', 0x0, 0x2) mount$9p_fd(0x0, &(0x7f0000000300)='.\x00', &(0x7f0000000080)='9p\x00', 0xc, &(0x7f0000000740)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}}) [ 235.786401][T15267] EXT4-fs (loop0): ext4_check_descriptors: Checksum for group 0 failed (38247!=0) 21:38:15 executing program 2: set_mempolicy(0x8003, &(0x7f0000000300)=0x75f, 0x9) r0 = open(&(0x7f0000000300)='.\x00', 0x0, 0x0) symlinkat(&(0x7f0000000040)='\x13\x13w\xc5\xfc5\xd4\x14T\xd5\xd4\x1d)\xad\x1a`)Y\x81F\xe6\xbe\x16nA\xad\r\xbd@T\x03<\x9f3\xbb\xda\x82$\xa2\xf3\xd7r\xe7cnH\xb3<\xbfp\x83r\xe8\xf1\xb9\x93>\xc5\x12wC\xbe\"\x06 \x9e\xf0-\xf9\xcb\xf2\xf6\xe8\x80\xd38/\x00', r0, &(0x7f00000000c0)='./file0\x00') mkdirat(r0, &(0x7f0000000200)='\x13\x13w\xc5\xfc5\xd4\x14T\xd5\xd4\x1d)\xad\x1a`)Y\x81F\xe6\xbe\x16nA\xad\r\xbd@T\x03<\x9f3\xbb\xda\x82$\xa2\xf3\xd7r\xe7cnH\xb3<\xbfp\x83r\xe8\xf1\xb9\x93>\xc5\x12wC\xbe\"\x06 \x9e\xf0-\xf9\xcb\xf2\xf6\xe8\x80\xd38/\x00', 0x0) symlinkat(&(0x7f0000000340)='./file0/file0\x00', r0, &(0x7f0000000380)='\x13\x13w\xc5\xfc5\xd4\x14T\xd5\xd4\x1d)\xad\x1a`)Y\x81F\xe6\xbe\x16nA\xad\r\xbd@T\x03<\x9f3\xbb\xda\x82$\xa2\xf3\xd7r\xe7cnH\xb3<\xbfp\x83r\xe8\xf1\xb9\x93>\xc5\x12wC\xbe\"\x06 \x9e\xf0-\xf9\xcb\xf2\xf6\xe8\x80\xd38//file0\x00') r1 = open(&(0x7f0000000100)='.\x00', 0x0, 0x0) renameat2(r1, &(0x7f0000000400)='./file0/file0\x00', r1, &(0x7f0000000000)='./file0\x00', 0xc00000000000000) 21:38:15 executing program 4: set_mempolicy(0x8003, &(0x7f0000000300)=0x75f, 0x9) open(&(0x7f0000000300)='.\x00', 0x0, 0x0) r0 = syz_open_procfs(0x0, &(0x7f00000000c0)='fd/3\x00') r1 = syz_open_dev$swradio(&(0x7f0000000100)='/dev/swradio#\x00', 0x0, 0x2) mount$9p_fd(0x0, &(0x7f0000000300)='.\x00', &(0x7f0000000080)='9p\x00', 0x5, &(0x7f0000000740)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}}) [ 235.851499][T15267] EXT4-fs (loop0): group descriptors corrupted! 21:38:15 executing program 0 (fault-call:0 fault-nth:35): syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x40000, 0x3, &(0x7f0000000200)=[{&(0x7f0000010000)="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", 0x10c, 0x400}, {&(0x7f0000010200)="0500000000000000000000000000000000000000040100002b", 0x19, 0x560}, {&(0x7f0000010300)="000000000000000000000000000000000000000000000000000000001481910a040000001400000024", 0x29, 0x7e0}], 0x0, &(0x7f0000000040)={[{@usrjquota='usrjquota='}, {@data_err_abort='data_err=abort'}]}) 21:38:15 executing program 3: set_mempolicy(0x8003, &(0x7f0000000300)=0x75f, 0x9) open(&(0x7f0000000300)='.\x00', 0x0, 0x0) r0 = syz_open_procfs(0x0, &(0x7f00000000c0)='fd/3\x00') r1 = syz_open_dev$swradio(&(0x7f0000000100)='/dev/swradio#\x00', 0x0, 0x2) mount$9p_fd(0x0, &(0x7f0000000300)='.\x00', &(0x7f0000000080)='9p\x00', 0xd, &(0x7f0000000740)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}}) 21:38:15 executing program 5: set_mempolicy(0x8003, &(0x7f0000000300)=0x75f, 0x9) open(&(0x7f0000000300)='.\x00', 0x0, 0x0) r0 = syz_open_procfs(0x0, &(0x7f00000000c0)='fd/3\x00') r1 = syz_open_dev$swradio(&(0x7f0000000100)='/dev/swradio#\x00', 0x0, 0x2) mount$9p_fd(0x0, &(0x7f0000000300)='.\x00', &(0x7f0000000080)='9p\x00', 0x700, &(0x7f0000000740)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}}) 21:38:15 executing program 4: set_mempolicy(0x8003, &(0x7f0000000300)=0x75f, 0x9) open(&(0x7f0000000300)='.\x00', 0x0, 0x0) r0 = syz_open_procfs(0x0, &(0x7f00000000c0)='fd/3\x00') r1 = syz_open_dev$swradio(&(0x7f0000000100)='/dev/swradio#\x00', 0x0, 0x2) mount$9p_fd(0x0, &(0x7f0000000300)='.\x00', &(0x7f0000000080)='9p\x00', 0x6, &(0x7f0000000740)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}}) [ 235.975179][T15306] loop0: detected capacity change from 512 to 0 [ 235.986098][T15306] FAULT_INJECTION: forcing a failure. [ 235.986098][T15306] name failslab, interval 1, probability 0, space 0, times 0 [ 236.030119][T15306] CPU: 0 PID: 15306 Comm: syz-executor.0 Not tainted 5.11.0-syzkaller #0 [ 236.038628][T15306] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 236.048672][T15306] Call Trace: [ 236.051943][T15306] dump_stack+0x116/0x15d [ 236.056343][T15306] should_fail+0x23c/0x250 [ 236.060743][T15306] __should_failslab+0x81/0x90 [ 236.065490][T15306] ? call_usermodehelper_setup+0x81/0x160 [ 236.071197][T15306] should_failslab+0x5/0x20 [ 236.075764][T15306] kmem_cache_alloc_trace+0x39/0x320 [ 236.081081][T15306] ? add_uevent_var+0x16e/0x1c0 [ 236.085930][T15306] call_usermodehelper_setup+0x81/0x160 [ 236.091512][T15306] ? add_uevent_var+0x1c0/0x1c0 [ 236.096342][T15306] kobject_uevent_env+0xb31/0xc40 [ 236.101404][T15306] ? set_capacity_and_notify+0x1a4/0x1b0 [ 236.107061][T15306] kobject_uevent+0x18/0x20 [ 236.111555][T15306] loop_configure+0xac7/0xc40 [ 236.116257][T15306] lo_ioctl+0x54b/0x11e0 [ 236.120524][T15306] ? ___cache_free+0x3c/0x2f0 [ 236.125185][T15306] ? blkdev_common_ioctl+0xa29/0x1060 [ 236.130540][T15306] ? lo_release+0x120/0x120 [ 236.135024][T15306] blkdev_ioctl+0x1d0/0x3c0 [ 236.139505][T15306] block_ioctl+0x6d/0x80 [ 236.143794][T15306] ? blkdev_iopoll+0x70/0x70 [ 236.148366][T15306] __se_sys_ioctl+0xcb/0x140 [ 236.153013][T15306] __x64_sys_ioctl+0x3f/0x50 [ 236.157584][T15306] do_syscall_64+0x39/0x80 [ 236.162071][T15306] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 236.167947][T15306] RIP: 0033:0x465b57 [ 236.171843][T15306] Code: 3c 1c 48 f7 d8 49 39 c4 72 b8 e8 a4 4d 02 00 85 c0 78 bd 48 83 c4 08 4c 89 e0 5b 41 5c c3 0f 1f 44 00 00 b8 10 00 00 00 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 236.191463][T15306] RSP: 002b:00007f8175ef9f48 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 236.199871][T15306] RAX: ffffffffffffffda RBX: 00000000004af960 RCX: 0000000000465b57 [ 236.207831][T15306] RDX: 0000000000000004 RSI: 0000000000004c00 RDI: 0000000000000005 [ 236.215783][T15306] RBP: 0000000000000005 R08: 0000000000000000 R09: ffffffffffffffff 21:38:16 executing program 2: set_mempolicy(0x8003, &(0x7f0000000300)=0x75f, 0x9) r0 = open(&(0x7f0000000300)='.\x00', 0x0, 0x0) symlinkat(&(0x7f0000000040)='\x13\x13w\xc5\xfc5\xd4\x14T\xd5\xd4\x1d)\xad\x1a`)Y\x81F\xe6\xbe\x16nA\xad\r\xbd@T\x03<\x9f3\xbb\xda\x82$\xa2\xf3\xd7r\xe7cnH\xb3<\xbfp\x83r\xe8\xf1\xb9\x93>\xc5\x12wC\xbe\"\x06 \x9e\xf0-\xf9\xcb\xf2\xf6\xe8\x80\xd38/\x00', r0, &(0x7f00000000c0)='./file0\x00') mkdirat(r0, &(0x7f0000000200)='\x13\x13w\xc5\xfc5\xd4\x14T\xd5\xd4\x1d)\xad\x1a`)Y\x81F\xe6\xbe\x16nA\xad\r\xbd@T\x03<\x9f3\xbb\xda\x82$\xa2\xf3\xd7r\xe7cnH\xb3<\xbfp\x83r\xe8\xf1\xb9\x93>\xc5\x12wC\xbe\"\x06 \x9e\xf0-\xf9\xcb\xf2\xf6\xe8\x80\xd38/\x00', 0x0) symlinkat(&(0x7f0000000340)='./file0/file0\x00', r0, &(0x7f0000000380)='\x13\x13w\xc5\xfc5\xd4\x14T\xd5\xd4\x1d)\xad\x1a`)Y\x81F\xe6\xbe\x16nA\xad\r\xbd@T\x03<\x9f3\xbb\xda\x82$\xa2\xf3\xd7r\xe7cnH\xb3<\xbfp\x83r\xe8\xf1\xb9\x93>\xc5\x12wC\xbe\"\x06 \x9e\xf0-\xf9\xcb\xf2\xf6\xe8\x80\xd38//file0\x00') r1 = open(&(0x7f0000000100)='.\x00', 0x0, 0x0) renameat2(r1, &(0x7f0000000400)='./file0/file0\x00', r1, &(0x7f0000000000)='./file0\x00', 0xd00000000000000) [ 236.223782][T15306] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000004 [ 236.231783][T15306] R13: 0000000000000004 R14: 0000000020000248 R15: 0000000000000003 [ 236.273720][T15306] EXT4-fs (loop0): ext4_check_descriptors: Checksum for group 0 failed (38247!=0) 21:38:16 executing program 3: set_mempolicy(0x8003, &(0x7f0000000300)=0x75f, 0x9) open(&(0x7f0000000300)='.\x00', 0x0, 0x0) r0 = syz_open_procfs(0x0, &(0x7f00000000c0)='fd/3\x00') r1 = syz_open_dev$swradio(&(0x7f0000000100)='/dev/swradio#\x00', 0x0, 0x2) mount$9p_fd(0x0, &(0x7f0000000300)='.\x00', &(0x7f0000000080)='9p\x00', 0xe, &(0x7f0000000740)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}}) 21:38:16 executing program 1: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) r3 = syz_open_procfs(0x0, &(0x7f00000000c0)='fd/3\x00') mount$9p_fd(0xfeffffff00000000, &(0x7f0000000300)='.\x00', &(0x7f0000000080)='9p\x00', 0x0, &(0x7f00000003c0)={'trans=fd,', {'rfdno', 0x3d, r3}, 0x2c, {'wfdno', 0x3d, r2}}) [ 236.350483][T15306] EXT4-fs (loop0): group descriptors corrupted! 21:38:16 executing program 2: set_mempolicy(0x8003, &(0x7f0000000300)=0x75f, 0x9) r0 = open(&(0x7f0000000300)='.\x00', 0x0, 0x0) symlinkat(&(0x7f0000000040)='\x13\x13w\xc5\xfc5\xd4\x14T\xd5\xd4\x1d)\xad\x1a`)Y\x81F\xe6\xbe\x16nA\xad\r\xbd@T\x03<\x9f3\xbb\xda\x82$\xa2\xf3\xd7r\xe7cnH\xb3<\xbfp\x83r\xe8\xf1\xb9\x93>\xc5\x12wC\xbe\"\x06 \x9e\xf0-\xf9\xcb\xf2\xf6\xe8\x80\xd38/\x00', r0, &(0x7f00000000c0)='./file0\x00') mkdirat(r0, &(0x7f0000000200)='\x13\x13w\xc5\xfc5\xd4\x14T\xd5\xd4\x1d)\xad\x1a`)Y\x81F\xe6\xbe\x16nA\xad\r\xbd@T\x03<\x9f3\xbb\xda\x82$\xa2\xf3\xd7r\xe7cnH\xb3<\xbfp\x83r\xe8\xf1\xb9\x93>\xc5\x12wC\xbe\"\x06 \x9e\xf0-\xf9\xcb\xf2\xf6\xe8\x80\xd38/\x00', 0x0) symlinkat(&(0x7f0000000340)='./file0/file0\x00', r0, &(0x7f0000000380)='\x13\x13w\xc5\xfc5\xd4\x14T\xd5\xd4\x1d)\xad\x1a`)Y\x81F\xe6\xbe\x16nA\xad\r\xbd@T\x03<\x9f3\xbb\xda\x82$\xa2\xf3\xd7r\xe7cnH\xb3<\xbfp\x83r\xe8\xf1\xb9\x93>\xc5\x12wC\xbe\"\x06 \x9e\xf0-\xf9\xcb\xf2\xf6\xe8\x80\xd38//file0\x00') r1 = open(&(0x7f0000000100)='.\x00', 0x0, 0x0) renameat2(r1, &(0x7f0000000400)='./file0/file0\x00', r1, &(0x7f0000000000)='./file0\x00', 0xe00000000000000) 21:38:16 executing program 4: set_mempolicy(0x8003, &(0x7f0000000300)=0x75f, 0x9) open(&(0x7f0000000300)='.\x00', 0x0, 0x0) r0 = syz_open_procfs(0x0, &(0x7f00000000c0)='fd/3\x00') r1 = syz_open_dev$swradio(&(0x7f0000000100)='/dev/swradio#\x00', 0x0, 0x2) mount$9p_fd(0x0, &(0x7f0000000300)='.\x00', &(0x7f0000000080)='9p\x00', 0x7, &(0x7f0000000740)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}}) 21:38:16 executing program 0 (fault-call:0 fault-nth:36): syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x40000, 0x3, &(0x7f0000000200)=[{&(0x7f0000010000)="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", 0x10c, 0x400}, {&(0x7f0000010200)="0500000000000000000000000000000000000000040100002b", 0x19, 0x560}, {&(0x7f0000010300)="000000000000000000000000000000000000000000000000000000001481910a040000001400000024", 0x29, 0x7e0}], 0x0, &(0x7f0000000040)={[{@usrjquota='usrjquota='}, {@data_err_abort='data_err=abort'}]}) 21:38:16 executing program 1: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) r3 = syz_open_procfs(0x0, &(0x7f00000000c0)='fd/3\x00') mount$9p_fd(0xff00000000000000, &(0x7f0000000300)='.\x00', &(0x7f0000000080)='9p\x00', 0x0, &(0x7f00000003c0)={'trans=fd,', {'rfdno', 0x3d, r3}, 0x2c, {'wfdno', 0x3d, r2}}) 21:38:16 executing program 3: set_mempolicy(0x8003, &(0x7f0000000300)=0x75f, 0x9) open(&(0x7f0000000300)='.\x00', 0x0, 0x0) r0 = syz_open_procfs(0x0, &(0x7f00000000c0)='fd/3\x00') r1 = syz_open_dev$swradio(&(0x7f0000000100)='/dev/swradio#\x00', 0x0, 0x2) mount$9p_fd(0x0, &(0x7f0000000300)='.\x00', &(0x7f0000000080)='9p\x00', 0x10, &(0x7f0000000740)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}}) 21:38:16 executing program 5: set_mempolicy(0x8003, &(0x7f0000000300)=0x75f, 0x9) open(&(0x7f0000000300)='.\x00', 0x0, 0x0) r0 = syz_open_procfs(0x0, &(0x7f00000000c0)='fd/3\x00') r1 = syz_open_dev$swradio(&(0x7f0000000100)='/dev/swradio#\x00', 0x0, 0x2) mount$9p_fd(0x0, &(0x7f0000000300)='.\x00', &(0x7f0000000080)='9p\x00', 0x900, &(0x7f0000000740)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}}) 21:38:16 executing program 2: set_mempolicy(0x8003, &(0x7f0000000300)=0x75f, 0x9) r0 = open(&(0x7f0000000300)='.\x00', 0x0, 0x0) symlinkat(&(0x7f0000000040)='\x13\x13w\xc5\xfc5\xd4\x14T\xd5\xd4\x1d)\xad\x1a`)Y\x81F\xe6\xbe\x16nA\xad\r\xbd@T\x03<\x9f3\xbb\xda\x82$\xa2\xf3\xd7r\xe7cnH\xb3<\xbfp\x83r\xe8\xf1\xb9\x93>\xc5\x12wC\xbe\"\x06 \x9e\xf0-\xf9\xcb\xf2\xf6\xe8\x80\xd38/\x00', r0, &(0x7f00000000c0)='./file0\x00') mkdirat(r0, &(0x7f0000000200)='\x13\x13w\xc5\xfc5\xd4\x14T\xd5\xd4\x1d)\xad\x1a`)Y\x81F\xe6\xbe\x16nA\xad\r\xbd@T\x03<\x9f3\xbb\xda\x82$\xa2\xf3\xd7r\xe7cnH\xb3<\xbfp\x83r\xe8\xf1\xb9\x93>\xc5\x12wC\xbe\"\x06 \x9e\xf0-\xf9\xcb\xf2\xf6\xe8\x80\xd38/\x00', 0x0) symlinkat(&(0x7f0000000340)='./file0/file0\x00', r0, &(0x7f0000000380)='\x13\x13w\xc5\xfc5\xd4\x14T\xd5\xd4\x1d)\xad\x1a`)Y\x81F\xe6\xbe\x16nA\xad\r\xbd@T\x03<\x9f3\xbb\xda\x82$\xa2\xf3\xd7r\xe7cnH\xb3<\xbfp\x83r\xe8\xf1\xb9\x93>\xc5\x12wC\xbe\"\x06 \x9e\xf0-\xf9\xcb\xf2\xf6\xe8\x80\xd38//file0\x00') r1 = open(&(0x7f0000000100)='.\x00', 0x0, 0x0) renameat2(r1, &(0x7f0000000400)='./file0/file0\x00', r1, &(0x7f0000000000)='./file0\x00', 0x1000000000000000) [ 236.547802][T15359] loop0: detected capacity change from 512 to 0 [ 236.556239][T15359] FAULT_INJECTION: forcing a failure. [ 236.556239][T15359] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 236.584082][T15359] CPU: 0 PID: 15359 Comm: syz-executor.0 Not tainted 5.11.0-syzkaller #0 [ 236.592579][T15359] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 236.602640][T15359] Call Trace: [ 236.605926][T15359] dump_stack+0x116/0x15d [ 236.610250][T15359] should_fail+0x23c/0x250 [ 236.614654][T15359] should_fail_usercopy+0x16/0x20 [ 236.619661][T15359] strncpy_from_user+0x21/0x250 [ 236.624514][T15359] getname_flags+0xb8/0x3d0 [ 236.629006][T15359] do_mkdirat+0x3a/0x220 [ 236.633230][T15359] __x64_sys_mkdir+0x32/0x40 [ 236.637882][T15359] do_syscall_64+0x39/0x80 [ 236.642282][T15359] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 236.648174][T15359] RIP: 0033:0x464ea7 [ 236.652097][T15359] Code: 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 83 c8 ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 b8 53 00 00 00 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 236.671694][T15359] RSP: 002b:00007f8175ef9fa8 EFLAGS: 00000213 ORIG_RAX: 0000000000000053 [ 236.680100][T15359] RAX: ffffffffffffffda RBX: 0000000020000200 RCX: 0000000000464ea7 [ 236.688123][T15359] RDX: 0000000000000004 RSI: 00000000000001ff RDI: 0000000020000100 21:38:16 executing program 3: set_mempolicy(0x8003, &(0x7f0000000300)=0x75f, 0x9) open(&(0x7f0000000300)='.\x00', 0x0, 0x0) r0 = syz_open_procfs(0x0, &(0x7f00000000c0)='fd/3\x00') r1 = syz_open_dev$swradio(&(0x7f0000000100)='/dev/swradio#\x00', 0x0, 0x2) mount$9p_fd(0x0, &(0x7f0000000300)='.\x00', &(0x7f0000000080)='9p\x00', 0x11, &(0x7f0000000740)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}}) [ 236.696082][T15359] RBP: 00007f8175efa040 R08: 0000000000000000 R09: ffffffffffffffff [ 236.704172][T15359] R10: 0000000000000000 R11: 0000000000000213 R12: 0000000020000000 [ 236.712133][T15359] R13: 0000000020000100 R14: 00007f8175efa000 R15: 0000000020000040 21:38:16 executing program 0 (fault-call:0 fault-nth:37): syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x40000, 0x3, &(0x7f0000000200)=[{&(0x7f0000010000)="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", 0x10c, 0x400}, {&(0x7f0000010200)="0500000000000000000000000000000000000000040100002b", 0x19, 0x560}, {&(0x7f0000010300)="000000000000000000000000000000000000000000000000000000001481910a040000001400000024", 0x29, 0x7e0}], 0x0, &(0x7f0000000040)={[{@usrjquota='usrjquota='}, {@data_err_abort='data_err=abort'}]}) [ 236.740860][T15370] vivid-008: kernel_thread() failed 21:38:16 executing program 4: set_mempolicy(0x8003, &(0x7f0000000300)=0x75f, 0x9) open(&(0x7f0000000300)='.\x00', 0x0, 0x0) r0 = syz_open_procfs(0x0, &(0x7f00000000c0)='fd/3\x00') r1 = syz_open_dev$swradio(&(0x7f0000000100)='/dev/swradio#\x00', 0x0, 0x2) mount$9p_fd(0x0, &(0x7f0000000300)='.\x00', &(0x7f0000000080)='9p\x00', 0x8, &(0x7f0000000740)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}}) 21:38:16 executing program 2: set_mempolicy(0x8003, &(0x7f0000000300)=0x75f, 0x9) r0 = open(&(0x7f0000000300)='.\x00', 0x0, 0x0) symlinkat(&(0x7f0000000040)='\x13\x13w\xc5\xfc5\xd4\x14T\xd5\xd4\x1d)\xad\x1a`)Y\x81F\xe6\xbe\x16nA\xad\r\xbd@T\x03<\x9f3\xbb\xda\x82$\xa2\xf3\xd7r\xe7cnH\xb3<\xbfp\x83r\xe8\xf1\xb9\x93>\xc5\x12wC\xbe\"\x06 \x9e\xf0-\xf9\xcb\xf2\xf6\xe8\x80\xd38/\x00', r0, &(0x7f00000000c0)='./file0\x00') mkdirat(r0, &(0x7f0000000200)='\x13\x13w\xc5\xfc5\xd4\x14T\xd5\xd4\x1d)\xad\x1a`)Y\x81F\xe6\xbe\x16nA\xad\r\xbd@T\x03<\x9f3\xbb\xda\x82$\xa2\xf3\xd7r\xe7cnH\xb3<\xbfp\x83r\xe8\xf1\xb9\x93>\xc5\x12wC\xbe\"\x06 \x9e\xf0-\xf9\xcb\xf2\xf6\xe8\x80\xd38/\x00', 0x0) symlinkat(&(0x7f0000000340)='./file0/file0\x00', r0, &(0x7f0000000380)='\x13\x13w\xc5\xfc5\xd4\x14T\xd5\xd4\x1d)\xad\x1a`)Y\x81F\xe6\xbe\x16nA\xad\r\xbd@T\x03<\x9f3\xbb\xda\x82$\xa2\xf3\xd7r\xe7cnH\xb3<\xbfp\x83r\xe8\xf1\xb9\x93>\xc5\x12wC\xbe\"\x06 \x9e\xf0-\xf9\xcb\xf2\xf6\xe8\x80\xd38//file0\x00') r1 = open(&(0x7f0000000100)='.\x00', 0x0, 0x0) renameat2(r1, &(0x7f0000000400)='./file0/file0\x00', r1, &(0x7f0000000000)='./file0\x00', 0x1100000000000000) [ 236.808694][T15386] loop0: detected capacity change from 512 to 0 [ 236.818153][T15386] FAULT_INJECTION: forcing a failure. [ 236.818153][T15386] name failslab, interval 1, probability 0, space 0, times 0 [ 236.848226][T15386] CPU: 0 PID: 15386 Comm: syz-executor.0 Not tainted 5.11.0-syzkaller #0 21:38:16 executing program 5: set_mempolicy(0x8003, &(0x7f0000000300)=0x75f, 0x9) open(&(0x7f0000000300)='.\x00', 0x0, 0x0) r0 = syz_open_procfs(0x0, &(0x7f00000000c0)='fd/3\x00') r1 = syz_open_dev$swradio(&(0x7f0000000100)='/dev/swradio#\x00', 0x0, 0x2) mount$9p_fd(0x0, &(0x7f0000000300)='.\x00', &(0x7f0000000080)='9p\x00', 0xa00, &(0x7f0000000740)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}}) [ 236.856665][T15386] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 236.866718][T15386] Call Trace: [ 236.870051][T15386] dump_stack+0x116/0x15d [ 236.874388][T15386] should_fail+0x23c/0x250 [ 236.878808][T15386] ? __d_alloc+0x36/0x370 [ 236.883215][T15386] __should_failslab+0x81/0x90 [ 236.887976][T15386] should_failslab+0x5/0x20 [ 236.892478][T15386] kmem_cache_alloc+0x36/0x2e0 [ 236.897241][T15386] __d_alloc+0x36/0x370 [ 236.901385][T15386] d_alloc+0x2a/0x110 21:38:16 executing program 3: set_mempolicy(0x8003, &(0x7f0000000300)=0x75f, 0x9) open(&(0x7f0000000300)='.\x00', 0x0, 0x0) r0 = syz_open_procfs(0x0, &(0x7f00000000c0)='fd/3\x00') r1 = syz_open_dev$swradio(&(0x7f0000000100)='/dev/swradio#\x00', 0x0, 0x2) mount$9p_fd(0x0, &(0x7f0000000300)='.\x00', &(0x7f0000000080)='9p\x00', 0x12, &(0x7f0000000740)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}}) [ 236.905380][T15386] __lookup_hash+0x8f/0x180 [ 236.909960][T15386] filename_create+0xdb/0x3c0 [ 236.914701][T15386] do_mkdirat+0x5a/0x220 [ 236.918939][T15386] __x64_sys_mkdir+0x32/0x40 [ 236.924153][T15386] do_syscall_64+0x39/0x80 [ 236.928578][T15386] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 236.934479][T15386] RIP: 0033:0x464ea7 [ 236.938375][T15386] Code: 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 83 c8 ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 b8 53 00 00 00 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 21:38:16 executing program 2: set_mempolicy(0x8003, &(0x7f0000000300)=0x75f, 0x9) r0 = open(&(0x7f0000000300)='.\x00', 0x0, 0x0) symlinkat(&(0x7f0000000040)='\x13\x13w\xc5\xfc5\xd4\x14T\xd5\xd4\x1d)\xad\x1a`)Y\x81F\xe6\xbe\x16nA\xad\r\xbd@T\x03<\x9f3\xbb\xda\x82$\xa2\xf3\xd7r\xe7cnH\xb3<\xbfp\x83r\xe8\xf1\xb9\x93>\xc5\x12wC\xbe\"\x06 \x9e\xf0-\xf9\xcb\xf2\xf6\xe8\x80\xd38/\x00', r0, &(0x7f00000000c0)='./file0\x00') mkdirat(r0, &(0x7f0000000200)='\x13\x13w\xc5\xfc5\xd4\x14T\xd5\xd4\x1d)\xad\x1a`)Y\x81F\xe6\xbe\x16nA\xad\r\xbd@T\x03<\x9f3\xbb\xda\x82$\xa2\xf3\xd7r\xe7cnH\xb3<\xbfp\x83r\xe8\xf1\xb9\x93>\xc5\x12wC\xbe\"\x06 \x9e\xf0-\xf9\xcb\xf2\xf6\xe8\x80\xd38/\x00', 0x0) symlinkat(&(0x7f0000000340)='./file0/file0\x00', r0, &(0x7f0000000380)='\x13\x13w\xc5\xfc5\xd4\x14T\xd5\xd4\x1d)\xad\x1a`)Y\x81F\xe6\xbe\x16nA\xad\r\xbd@T\x03<\x9f3\xbb\xda\x82$\xa2\xf3\xd7r\xe7cnH\xb3<\xbfp\x83r\xe8\xf1\xb9\x93>\xc5\x12wC\xbe\"\x06 \x9e\xf0-\xf9\xcb\xf2\xf6\xe8\x80\xd38//file0\x00') r1 = open(&(0x7f0000000100)='.\x00', 0x0, 0x0) renameat2(r1, &(0x7f0000000400)='./file0/file0\x00', r1, &(0x7f0000000000)='./file0\x00', 0x1200000000000000) 21:38:16 executing program 4: set_mempolicy(0x8003, &(0x7f0000000300)=0x75f, 0x9) open(&(0x7f0000000300)='.\x00', 0x0, 0x0) r0 = syz_open_procfs(0x0, &(0x7f00000000c0)='fd/3\x00') r1 = syz_open_dev$swradio(&(0x7f0000000100)='/dev/swradio#\x00', 0x0, 0x2) mount$9p_fd(0x0, &(0x7f0000000300)='.\x00', &(0x7f0000000080)='9p\x00', 0x9, &(0x7f0000000740)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}}) [ 236.957989][T15386] RSP: 002b:00007f8175ef9fa8 EFLAGS: 00000213 ORIG_RAX: 0000000000000053 [ 236.966937][T15386] RAX: ffffffffffffffda RBX: 0000000020000200 RCX: 0000000000464ea7 [ 236.974907][T15386] RDX: 0000000000000004 RSI: 00000000000001ff RDI: 0000000020000100 [ 236.982875][T15386] RBP: 00007f8175efa040 R08: 0000000000000000 R09: ffffffffffffffff [ 236.990848][T15386] R10: 0000000000000000 R11: 0000000000000213 R12: 0000000020000000 [ 236.998817][T15386] R13: 0000000020000100 R14: 00007f8175efa000 R15: 0000000020000040 21:38:17 executing program 5: set_mempolicy(0x8003, &(0x7f0000000300)=0x75f, 0x9) open(&(0x7f0000000300)='.\x00', 0x0, 0x0) r0 = syz_open_procfs(0x0, &(0x7f00000000c0)='fd/3\x00') r1 = syz_open_dev$swradio(&(0x7f0000000100)='/dev/swradio#\x00', 0x0, 0x2) mount$9p_fd(0x0, &(0x7f0000000300)='.\x00', &(0x7f0000000080)='9p\x00', 0xb00, &(0x7f0000000740)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}}) 21:38:17 executing program 1: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) r3 = syz_open_procfs(0x0, &(0x7f00000000c0)='fd/3\x00') mount$9p_fd(0xffff000000000000, &(0x7f0000000300)='.\x00', &(0x7f0000000080)='9p\x00', 0x0, &(0x7f00000003c0)={'trans=fd,', {'rfdno', 0x3d, r3}, 0x2c, {'wfdno', 0x3d, r2}}) 21:38:17 executing program 2: set_mempolicy(0x8003, &(0x7f0000000300)=0x75f, 0x9) r0 = open(&(0x7f0000000300)='.\x00', 0x0, 0x0) symlinkat(&(0x7f0000000040)='\x13\x13w\xc5\xfc5\xd4\x14T\xd5\xd4\x1d)\xad\x1a`)Y\x81F\xe6\xbe\x16nA\xad\r\xbd@T\x03<\x9f3\xbb\xda\x82$\xa2\xf3\xd7r\xe7cnH\xb3<\xbfp\x83r\xe8\xf1\xb9\x93>\xc5\x12wC\xbe\"\x06 \x9e\xf0-\xf9\xcb\xf2\xf6\xe8\x80\xd38/\x00', r0, &(0x7f00000000c0)='./file0\x00') mkdirat(r0, &(0x7f0000000200)='\x13\x13w\xc5\xfc5\xd4\x14T\xd5\xd4\x1d)\xad\x1a`)Y\x81F\xe6\xbe\x16nA\xad\r\xbd@T\x03<\x9f3\xbb\xda\x82$\xa2\xf3\xd7r\xe7cnH\xb3<\xbfp\x83r\xe8\xf1\xb9\x93>\xc5\x12wC\xbe\"\x06 \x9e\xf0-\xf9\xcb\xf2\xf6\xe8\x80\xd38/\x00', 0x0) symlinkat(&(0x7f0000000340)='./file0/file0\x00', r0, &(0x7f0000000380)='\x13\x13w\xc5\xfc5\xd4\x14T\xd5\xd4\x1d)\xad\x1a`)Y\x81F\xe6\xbe\x16nA\xad\r\xbd@T\x03<\x9f3\xbb\xda\x82$\xa2\xf3\xd7r\xe7cnH\xb3<\xbfp\x83r\xe8\xf1\xb9\x93>\xc5\x12wC\xbe\"\x06 \x9e\xf0-\xf9\xcb\xf2\xf6\xe8\x80\xd38//file0\x00') r1 = open(&(0x7f0000000100)='.\x00', 0x0, 0x0) renameat2(r1, &(0x7f0000000400)='./file0/file0\x00', r1, &(0x7f0000000000)='./file0\x00', 0x1201000000000000) 21:38:17 executing program 3: set_mempolicy(0x8003, &(0x7f0000000300)=0x75f, 0x9) open(&(0x7f0000000300)='.\x00', 0x0, 0x0) r0 = syz_open_procfs(0x0, &(0x7f00000000c0)='fd/3\x00') r1 = syz_open_dev$swradio(&(0x7f0000000100)='/dev/swradio#\x00', 0x0, 0x2) mount$9p_fd(0x0, &(0x7f0000000300)='.\x00', &(0x7f0000000080)='9p\x00', 0x25, &(0x7f0000000740)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}}) 21:38:17 executing program 0 (fault-call:0 fault-nth:38): syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x40000, 0x3, &(0x7f0000000200)=[{&(0x7f0000010000)="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", 0x10c, 0x400}, {&(0x7f0000010200)="0500000000000000000000000000000000000000040100002b", 0x19, 0x560}, {&(0x7f0000010300)="000000000000000000000000000000000000000000000000000000001481910a040000001400000024", 0x29, 0x7e0}], 0x0, &(0x7f0000000040)={[{@usrjquota='usrjquota='}, {@data_err_abort='data_err=abort'}]}) 21:38:17 executing program 4: set_mempolicy(0x8003, &(0x7f0000000300)=0x75f, 0x9) open(&(0x7f0000000300)='.\x00', 0x0, 0x0) r0 = syz_open_procfs(0x0, &(0x7f00000000c0)='fd/3\x00') r1 = syz_open_dev$swradio(&(0x7f0000000100)='/dev/swradio#\x00', 0x0, 0x2) mount$9p_fd(0x0, &(0x7f0000000300)='.\x00', &(0x7f0000000080)='9p\x00', 0xa, &(0x7f0000000740)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}}) 21:38:17 executing program 2: set_mempolicy(0x8003, &(0x7f0000000300)=0x75f, 0x9) r0 = open(&(0x7f0000000300)='.\x00', 0x0, 0x0) symlinkat(&(0x7f0000000040)='\x13\x13w\xc5\xfc5\xd4\x14T\xd5\xd4\x1d)\xad\x1a`)Y\x81F\xe6\xbe\x16nA\xad\r\xbd@T\x03<\x9f3\xbb\xda\x82$\xa2\xf3\xd7r\xe7cnH\xb3<\xbfp\x83r\xe8\xf1\xb9\x93>\xc5\x12wC\xbe\"\x06 \x9e\xf0-\xf9\xcb\xf2\xf6\xe8\x80\xd38/\x00', r0, &(0x7f00000000c0)='./file0\x00') mkdirat(r0, &(0x7f0000000200)='\x13\x13w\xc5\xfc5\xd4\x14T\xd5\xd4\x1d)\xad\x1a`)Y\x81F\xe6\xbe\x16nA\xad\r\xbd@T\x03<\x9f3\xbb\xda\x82$\xa2\xf3\xd7r\xe7cnH\xb3<\xbfp\x83r\xe8\xf1\xb9\x93>\xc5\x12wC\xbe\"\x06 \x9e\xf0-\xf9\xcb\xf2\xf6\xe8\x80\xd38/\x00', 0x0) symlinkat(&(0x7f0000000340)='./file0/file0\x00', r0, &(0x7f0000000380)='\x13\x13w\xc5\xfc5\xd4\x14T\xd5\xd4\x1d)\xad\x1a`)Y\x81F\xe6\xbe\x16nA\xad\r\xbd@T\x03<\x9f3\xbb\xda\x82$\xa2\xf3\xd7r\xe7cnH\xb3<\xbfp\x83r\xe8\xf1\xb9\x93>\xc5\x12wC\xbe\"\x06 \x9e\xf0-\xf9\xcb\xf2\xf6\xe8\x80\xd38//file0\x00') r1 = open(&(0x7f0000000100)='.\x00', 0x0, 0x0) renameat2(r1, &(0x7f0000000400)='./file0/file0\x00', r1, &(0x7f0000000000)='./file0\x00', 0x2000000000000000) 21:38:17 executing program 3: set_mempolicy(0x8003, &(0x7f0000000300)=0x75f, 0x9) open(&(0x7f0000000300)='.\x00', 0x0, 0x0) r0 = syz_open_procfs(0x0, &(0x7f00000000c0)='fd/3\x00') r1 = syz_open_dev$swradio(&(0x7f0000000100)='/dev/swradio#\x00', 0x0, 0x2) mount$9p_fd(0x0, &(0x7f0000000300)='.\x00', &(0x7f0000000080)='9p\x00', 0x5c, &(0x7f0000000740)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}}) 21:38:17 executing program 1: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) r3 = syz_open_procfs(0x0, &(0x7f00000000c0)='fd/3\x00') mount$9p_fd(0xffffff7f00000000, &(0x7f0000000300)='.\x00', &(0x7f0000000080)='9p\x00', 0x0, &(0x7f00000003c0)={'trans=fd,', {'rfdno', 0x3d, r3}, 0x2c, {'wfdno', 0x3d, r2}}) [ 237.233034][T15441] loop0: detected capacity change from 512 to 0 21:38:17 executing program 5: set_mempolicy(0x8003, &(0x7f0000000300)=0x75f, 0x9) open(&(0x7f0000000300)='.\x00', 0x0, 0x0) r0 = syz_open_procfs(0x0, &(0x7f00000000c0)='fd/3\x00') r1 = syz_open_dev$swradio(&(0x7f0000000100)='/dev/swradio#\x00', 0x0, 0x2) mount$9p_fd(0x0, &(0x7f0000000300)='.\x00', &(0x7f0000000080)='9p\x00', 0xc00, &(0x7f0000000740)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}}) [ 237.273789][T15441] FAULT_INJECTION: forcing a failure. [ 237.273789][T15441] name failslab, interval 1, probability 0, space 0, times 0 [ 237.323383][T15441] CPU: 0 PID: 15441 Comm: syz-executor.0 Not tainted 5.11.0-syzkaller #0 [ 237.331829][T15441] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 237.341877][T15441] Call Trace: [ 237.345156][T15441] dump_stack+0x116/0x15d [ 237.350354][T15441] should_fail+0x23c/0x250 [ 237.354767][T15441] ? __d_alloc+0x36/0x370 [ 237.359091][T15441] __should_failslab+0x81/0x90 [ 237.363850][T15441] should_failslab+0x5/0x20 [ 237.368358][T15441] kmem_cache_alloc+0x36/0x2e0 [ 237.373110][T15441] __d_alloc+0x36/0x370 [ 237.377256][T15441] d_alloc+0x2a/0x110 [ 237.381328][T15441] __lookup_hash+0x8f/0x180 [ 237.385825][T15441] filename_create+0xdb/0x3c0 [ 237.390501][T15441] do_mkdirat+0x5a/0x220 [ 237.394869][T15441] __x64_sys_mkdir+0x32/0x40 [ 237.399462][T15441] do_syscall_64+0x39/0x80 [ 237.403946][T15441] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 237.409830][T15441] RIP: 0033:0x464ea7 [ 237.413756][T15441] Code: 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 83 c8 ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 b8 53 00 00 00 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 237.433354][T15441] RSP: 002b:00007f8175ef9fa8 EFLAGS: 00000213 ORIG_RAX: 0000000000000053 [ 237.441766][T15441] RAX: ffffffffffffffda RBX: 0000000020000200 RCX: 0000000000464ea7 [ 237.449731][T15441] RDX: 0000000000000004 RSI: 00000000000001ff RDI: 0000000020000100 [ 237.457703][T15441] RBP: 00007f8175efa040 R08: 0000000000000000 R09: ffffffffffffffff [ 237.465689][T15441] R10: 0000000000000000 R11: 0000000000000213 R12: 0000000020000000 21:38:17 executing program 2: set_mempolicy(0x8003, &(0x7f0000000300)=0x75f, 0x9) r0 = open(&(0x7f0000000300)='.\x00', 0x0, 0x0) symlinkat(&(0x7f0000000040)='\x13\x13w\xc5\xfc5\xd4\x14T\xd5\xd4\x1d)\xad\x1a`)Y\x81F\xe6\xbe\x16nA\xad\r\xbd@T\x03<\x9f3\xbb\xda\x82$\xa2\xf3\xd7r\xe7cnH\xb3<\xbfp\x83r\xe8\xf1\xb9\x93>\xc5\x12wC\xbe\"\x06 \x9e\xf0-\xf9\xcb\xf2\xf6\xe8\x80\xd38/\x00', r0, &(0x7f00000000c0)='./file0\x00') mkdirat(r0, &(0x7f0000000200)='\x13\x13w\xc5\xfc5\xd4\x14T\xd5\xd4\x1d)\xad\x1a`)Y\x81F\xe6\xbe\x16nA\xad\r\xbd@T\x03<\x9f3\xbb\xda\x82$\xa2\xf3\xd7r\xe7cnH\xb3<\xbfp\x83r\xe8\xf1\xb9\x93>\xc5\x12wC\xbe\"\x06 \x9e\xf0-\xf9\xcb\xf2\xf6\xe8\x80\xd38/\x00', 0x0) symlinkat(&(0x7f0000000340)='./file0/file0\x00', r0, &(0x7f0000000380)='\x13\x13w\xc5\xfc5\xd4\x14T\xd5\xd4\x1d)\xad\x1a`)Y\x81F\xe6\xbe\x16nA\xad\r\xbd@T\x03<\x9f3\xbb\xda\x82$\xa2\xf3\xd7r\xe7cnH\xb3<\xbfp\x83r\xe8\xf1\xb9\x93>\xc5\x12wC\xbe\"\x06 \x9e\xf0-\xf9\xcb\xf2\xf6\xe8\x80\xd38//file0\x00') r1 = open(&(0x7f0000000100)='.\x00', 0x0, 0x0) renameat2(r1, &(0x7f0000000400)='./file0/file0\x00', r1, &(0x7f0000000000)='./file0\x00', 0x2500000000000000) [ 237.473658][T15441] R13: 0000000020000100 R14: 00007f8175efa000 R15: 0000000020000040 21:38:17 executing program 4: set_mempolicy(0x8003, &(0x7f0000000300)=0x75f, 0x9) open(&(0x7f0000000300)='.\x00', 0x0, 0x0) r0 = syz_open_procfs(0x0, &(0x7f00000000c0)='fd/3\x00') r1 = syz_open_dev$swradio(&(0x7f0000000100)='/dev/swradio#\x00', 0x0, 0x2) mount$9p_fd(0x0, &(0x7f0000000300)='.\x00', &(0x7f0000000080)='9p\x00', 0xb, &(0x7f0000000740)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}}) 21:38:17 executing program 3: set_mempolicy(0x8003, &(0x7f0000000300)=0x75f, 0x9) open(&(0x7f0000000300)='.\x00', 0x0, 0x0) r0 = syz_open_procfs(0x0, &(0x7f00000000c0)='fd/3\x00') r1 = syz_open_dev$swradio(&(0x7f0000000100)='/dev/swradio#\x00', 0x0, 0x2) mount$9p_fd(0x0, &(0x7f0000000300)='.\x00', &(0x7f0000000080)='9p\x00', 0x300, &(0x7f0000000740)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}}) 21:38:17 executing program 1: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) r3 = syz_open_procfs(0x0, &(0x7f00000000c0)='fd/3\x00') mount$9p_fd(0xffffffffffffff0f, &(0x7f0000000300)='.\x00', &(0x7f0000000080)='9p\x00', 0x0, &(0x7f00000003c0)={'trans=fd,', {'rfdno', 0x3d, r3}, 0x2c, {'wfdno', 0x3d, r2}}) 21:38:17 executing program 5: set_mempolicy(0x8003, &(0x7f0000000300)=0x75f, 0x9) open(&(0x7f0000000300)='.\x00', 0x0, 0x0) r0 = syz_open_procfs(0x0, &(0x7f00000000c0)='fd/3\x00') r1 = syz_open_dev$swradio(&(0x7f0000000100)='/dev/swradio#\x00', 0x0, 0x2) mount$9p_fd(0x0, &(0x7f0000000300)='.\x00', &(0x7f0000000080)='9p\x00', 0xd00, &(0x7f0000000740)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}}) 21:38:17 executing program 2: set_mempolicy(0x8003, &(0x7f0000000300)=0x75f, 0x9) r0 = open(&(0x7f0000000300)='.\x00', 0x0, 0x0) symlinkat(&(0x7f0000000040)='\x13\x13w\xc5\xfc5\xd4\x14T\xd5\xd4\x1d)\xad\x1a`)Y\x81F\xe6\xbe\x16nA\xad\r\xbd@T\x03<\x9f3\xbb\xda\x82$\xa2\xf3\xd7r\xe7cnH\xb3<\xbfp\x83r\xe8\xf1\xb9\x93>\xc5\x12wC\xbe\"\x06 \x9e\xf0-\xf9\xcb\xf2\xf6\xe8\x80\xd38/\x00', r0, &(0x7f00000000c0)='./file0\x00') mkdirat(r0, &(0x7f0000000200)='\x13\x13w\xc5\xfc5\xd4\x14T\xd5\xd4\x1d)\xad\x1a`)Y\x81F\xe6\xbe\x16nA\xad\r\xbd@T\x03<\x9f3\xbb\xda\x82$\xa2\xf3\xd7r\xe7cnH\xb3<\xbfp\x83r\xe8\xf1\xb9\x93>\xc5\x12wC\xbe\"\x06 \x9e\xf0-\xf9\xcb\xf2\xf6\xe8\x80\xd38/\x00', 0x0) symlinkat(&(0x7f0000000340)='./file0/file0\x00', r0, &(0x7f0000000380)='\x13\x13w\xc5\xfc5\xd4\x14T\xd5\xd4\x1d)\xad\x1a`)Y\x81F\xe6\xbe\x16nA\xad\r\xbd@T\x03<\x9f3\xbb\xda\x82$\xa2\xf3\xd7r\xe7cnH\xb3<\xbfp\x83r\xe8\xf1\xb9\x93>\xc5\x12wC\xbe\"\x06 \x9e\xf0-\xf9\xcb\xf2\xf6\xe8\x80\xd38//file0\x00') r1 = open(&(0x7f0000000100)='.\x00', 0x0, 0x0) renameat2(r1, &(0x7f0000000400)='./file0/file0\x00', r1, &(0x7f0000000000)='./file0\x00', 0x2700000000000000) 21:38:17 executing program 0 (fault-call:0 fault-nth:39): syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x40000, 0x3, &(0x7f0000000200)=[{&(0x7f0000010000)="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", 0x10c, 0x400}, {&(0x7f0000010200)="0500000000000000000000000000000000000000040100002b", 0x19, 0x560}, {&(0x7f0000010300)="000000000000000000000000000000000000000000000000000000001481910a040000001400000024", 0x29, 0x7e0}], 0x0, &(0x7f0000000040)={[{@usrjquota='usrjquota='}, {@data_err_abort='data_err=abort'}]}) 21:38:17 executing program 5: set_mempolicy(0x8003, &(0x7f0000000300)=0x75f, 0x9) open(&(0x7f0000000300)='.\x00', 0x0, 0x0) r0 = syz_open_procfs(0x0, &(0x7f00000000c0)='fd/3\x00') r1 = syz_open_dev$swradio(&(0x7f0000000100)='/dev/swradio#\x00', 0x0, 0x2) mount$9p_fd(0x0, &(0x7f0000000300)='.\x00', &(0x7f0000000080)='9p\x00', 0xe00, &(0x7f0000000740)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}}) 21:38:17 executing program 4: set_mempolicy(0x8003, &(0x7f0000000300)=0x75f, 0x9) open(&(0x7f0000000300)='.\x00', 0x0, 0x0) r0 = syz_open_procfs(0x0, &(0x7f00000000c0)='fd/3\x00') r1 = syz_open_dev$swradio(&(0x7f0000000100)='/dev/swradio#\x00', 0x0, 0x2) mount$9p_fd(0x0, &(0x7f0000000300)='.\x00', &(0x7f0000000080)='9p\x00', 0xc, &(0x7f0000000740)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}}) 21:38:17 executing program 3: set_mempolicy(0x8003, &(0x7f0000000300)=0x75f, 0x9) open(&(0x7f0000000300)='.\x00', 0x0, 0x0) r0 = syz_open_procfs(0x0, &(0x7f00000000c0)='fd/3\x00') r1 = syz_open_dev$swradio(&(0x7f0000000100)='/dev/swradio#\x00', 0x0, 0x2) mount$9p_fd(0x0, &(0x7f0000000300)='.\x00', &(0x7f0000000080)='9p\x00', 0x500, &(0x7f0000000740)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}}) 21:38:17 executing program 1: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) r3 = syz_open_procfs(0x0, &(0x7f00000000c0)='fd/3\x00') mount$9p_fd(0x0, &(0x7f0000000300)='.\x00', &(0x7f0000000080)='9p\x00', 0x2, &(0x7f00000003c0)={'trans=fd,', {'rfdno', 0x3d, r3}, 0x2c, {'wfdno', 0x3d, r2}}) [ 237.782461][T15521] loop0: detected capacity change from 512 to 0 [ 237.789181][T15521] FAULT_INJECTION: forcing a failure. [ 237.789181][T15521] name failslab, interval 1, probability 0, space 0, times 0 [ 237.801987][T15521] CPU: 0 PID: 15521 Comm: syz-executor.0 Not tainted 5.11.0-syzkaller #0 [ 237.811378][T15521] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 237.821440][T15521] Call Trace: [ 237.824715][T15521] dump_stack+0x116/0x15d [ 237.829097][T15521] should_fail+0x23c/0x250 [ 237.833570][T15521] __should_failslab+0x81/0x90 [ 237.838331][T15521] ? tomoyo_encode2+0x1d3/0x350 [ 237.843181][T15521] should_failslab+0x5/0x20 [ 237.847701][T15521] __kmalloc+0x59/0x360 [ 237.851941][T15521] tomoyo_encode2+0x1d3/0x350 [ 237.856612][T15521] tomoyo_realpath_from_path+0x35e/0x3b0 [ 237.862311][T15521] tomoyo_path_number_perm+0xc1/0x2d0 [ 237.867715][T15521] ? _raw_spin_unlock+0x22/0x40 [ 237.872550][T15521] ? __d_add+0x390/0x450 [ 237.876834][T15521] ? terminate_walk+0x24e/0x270 [ 237.882184][T15521] ? filename_create+0x36f/0x3c0 [ 237.887107][T15521] tomoyo_path_mkdir+0x50/0x70 [ 237.891967][T15521] security_path_mkdir+0x95/0xf0 [ 237.896913][T15521] do_mkdirat+0xf7/0x220 [ 237.901210][T15521] __x64_sys_mkdir+0x32/0x40 [ 237.905780][T15521] do_syscall_64+0x39/0x80 [ 237.910520][T15521] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 237.916452][T15521] RIP: 0033:0x464ea7 [ 237.920353][T15521] Code: 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 83 c8 ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 b8 53 00 00 00 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 237.939956][T15521] RSP: 002b:00007f8175ef9fa8 EFLAGS: 00000213 ORIG_RAX: 0000000000000053 [ 237.948355][T15521] RAX: ffffffffffffffda RBX: 0000000020000200 RCX: 0000000000464ea7 [ 237.956312][T15521] RDX: 0000000000000004 RSI: 00000000000001ff RDI: 0000000020000100 [ 237.964263][T15521] RBP: 00007f8175efa040 R08: 0000000000000000 R09: ffffffffffffffff [ 237.972242][T15521] R10: 0000000000000000 R11: 0000000000000213 R12: 0000000020000000 21:38:17 executing program 2: set_mempolicy(0x8003, &(0x7f0000000300)=0x75f, 0x9) r0 = open(&(0x7f0000000300)='.\x00', 0x0, 0x0) symlinkat(&(0x7f0000000040)='\x13\x13w\xc5\xfc5\xd4\x14T\xd5\xd4\x1d)\xad\x1a`)Y\x81F\xe6\xbe\x16nA\xad\r\xbd@T\x03<\x9f3\xbb\xda\x82$\xa2\xf3\xd7r\xe7cnH\xb3<\xbfp\x83r\xe8\xf1\xb9\x93>\xc5\x12wC\xbe\"\x06 \x9e\xf0-\xf9\xcb\xf2\xf6\xe8\x80\xd38/\x00', r0, &(0x7f00000000c0)='./file0\x00') mkdirat(r0, &(0x7f0000000200)='\x13\x13w\xc5\xfc5\xd4\x14T\xd5\xd4\x1d)\xad\x1a`)Y\x81F\xe6\xbe\x16nA\xad\r\xbd@T\x03<\x9f3\xbb\xda\x82$\xa2\xf3\xd7r\xe7cnH\xb3<\xbfp\x83r\xe8\xf1\xb9\x93>\xc5\x12wC\xbe\"\x06 \x9e\xf0-\xf9\xcb\xf2\xf6\xe8\x80\xd38/\x00', 0x0) symlinkat(&(0x7f0000000340)='./file0/file0\x00', r0, &(0x7f0000000380)='\x13\x13w\xc5\xfc5\xd4\x14T\xd5\xd4\x1d)\xad\x1a`)Y\x81F\xe6\xbe\x16nA\xad\r\xbd@T\x03<\x9f3\xbb\xda\x82$\xa2\xf3\xd7r\xe7cnH\xb3<\xbfp\x83r\xe8\xf1\xb9\x93>\xc5\x12wC\xbe\"\x06 \x9e\xf0-\xf9\xcb\xf2\xf6\xe8\x80\xd38//file0\x00') r1 = open(&(0x7f0000000100)='.\x00', 0x0, 0x0) renameat2(r1, &(0x7f0000000400)='./file0/file0\x00', r1, &(0x7f0000000000)='./file0\x00', 0x2f00000000000000) [ 237.980272][T15521] R13: 0000000020000100 R14: 00007f8175efa000 R15: 0000000020000040 [ 238.000332][T15529] vivid-000: kernel_thread() failed [ 238.009391][T15521] ERROR: Out of memory at tomoyo_realpath_from_path. 21:38:18 executing program 2: set_mempolicy(0x8003, &(0x7f0000000300)=0x75f, 0x9) r0 = open(&(0x7f0000000300)='.\x00', 0x0, 0x0) symlinkat(&(0x7f0000000040)='\x13\x13w\xc5\xfc5\xd4\x14T\xd5\xd4\x1d)\xad\x1a`)Y\x81F\xe6\xbe\x16nA\xad\r\xbd@T\x03<\x9f3\xbb\xda\x82$\xa2\xf3\xd7r\xe7cnH\xb3<\xbfp\x83r\xe8\xf1\xb9\x93>\xc5\x12wC\xbe\"\x06 \x9e\xf0-\xf9\xcb\xf2\xf6\xe8\x80\xd38/\x00', r0, &(0x7f00000000c0)='./file0\x00') mkdirat(r0, &(0x7f0000000200)='\x13\x13w\xc5\xfc5\xd4\x14T\xd5\xd4\x1d)\xad\x1a`)Y\x81F\xe6\xbe\x16nA\xad\r\xbd@T\x03<\x9f3\xbb\xda\x82$\xa2\xf3\xd7r\xe7cnH\xb3<\xbfp\x83r\xe8\xf1\xb9\x93>\xc5\x12wC\xbe\"\x06 \x9e\xf0-\xf9\xcb\xf2\xf6\xe8\x80\xd38/\x00', 0x0) symlinkat(&(0x7f0000000340)='./file0/file0\x00', r0, &(0x7f0000000380)='\x13\x13w\xc5\xfc5\xd4\x14T\xd5\xd4\x1d)\xad\x1a`)Y\x81F\xe6\xbe\x16nA\xad\r\xbd@T\x03<\x9f3\xbb\xda\x82$\xa2\xf3\xd7r\xe7cnH\xb3<\xbfp\x83r\xe8\xf1\xb9\x93>\xc5\x12wC\xbe\"\x06 \x9e\xf0-\xf9\xcb\xf2\xf6\xe8\x80\xd38//file0\x00') r1 = open(&(0x7f0000000100)='.\x00', 0x0, 0x0) renameat2(r1, &(0x7f0000000400)='./file0/file0\x00', r1, &(0x7f0000000000)='./file0\x00', 0x3f00000000000000) 21:38:18 executing program 3: set_mempolicy(0x8003, &(0x7f0000000300)=0x75f, 0x9) open(&(0x7f0000000300)='.\x00', 0x0, 0x0) r0 = syz_open_procfs(0x0, &(0x7f00000000c0)='fd/3\x00') r1 = syz_open_dev$swradio(&(0x7f0000000100)='/dev/swradio#\x00', 0x0, 0x2) mount$9p_fd(0x0, &(0x7f0000000300)='.\x00', &(0x7f0000000080)='9p\x00', 0x600, &(0x7f0000000740)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}}) 21:38:18 executing program 4: set_mempolicy(0x8003, &(0x7f0000000300)=0x75f, 0x9) open(&(0x7f0000000300)='.\x00', 0x0, 0x0) r0 = syz_open_procfs(0x0, &(0x7f00000000c0)='fd/3\x00') r1 = syz_open_dev$swradio(&(0x7f0000000100)='/dev/swradio#\x00', 0x0, 0x2) mount$9p_fd(0x0, &(0x7f0000000300)='.\x00', &(0x7f0000000080)='9p\x00', 0xd, &(0x7f0000000740)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}}) [ 238.065344][T15534] 9pnet: Insufficient options for proto=fd [ 238.086924][T15521] EXT4-fs (loop0): ext4_check_descriptors: Checksum for group 0 failed (38247!=0) 21:38:18 executing program 5: set_mempolicy(0x8003, &(0x7f0000000300)=0x75f, 0x9) open(&(0x7f0000000300)='.\x00', 0x0, 0x0) r0 = syz_open_procfs(0x0, &(0x7f00000000c0)='fd/3\x00') r1 = syz_open_dev$swradio(&(0x7f0000000100)='/dev/swradio#\x00', 0x0, 0x2) mount$9p_fd(0x0, &(0x7f0000000300)='.\x00', &(0x7f0000000080)='9p\x00', 0x1020, &(0x7f0000000740)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}}) 21:38:18 executing program 2: set_mempolicy(0x8003, &(0x7f0000000300)=0x75f, 0x9) r0 = open(&(0x7f0000000300)='.\x00', 0x0, 0x0) symlinkat(&(0x7f0000000040)='\x13\x13w\xc5\xfc5\xd4\x14T\xd5\xd4\x1d)\xad\x1a`)Y\x81F\xe6\xbe\x16nA\xad\r\xbd@T\x03<\x9f3\xbb\xda\x82$\xa2\xf3\xd7r\xe7cnH\xb3<\xbfp\x83r\xe8\xf1\xb9\x93>\xc5\x12wC\xbe\"\x06 \x9e\xf0-\xf9\xcb\xf2\xf6\xe8\x80\xd38/\x00', r0, &(0x7f00000000c0)='./file0\x00') mkdirat(r0, &(0x7f0000000200)='\x13\x13w\xc5\xfc5\xd4\x14T\xd5\xd4\x1d)\xad\x1a`)Y\x81F\xe6\xbe\x16nA\xad\r\xbd@T\x03<\x9f3\xbb\xda\x82$\xa2\xf3\xd7r\xe7cnH\xb3<\xbfp\x83r\xe8\xf1\xb9\x93>\xc5\x12wC\xbe\"\x06 \x9e\xf0-\xf9\xcb\xf2\xf6\xe8\x80\xd38/\x00', 0x0) symlinkat(&(0x7f0000000340)='./file0/file0\x00', r0, &(0x7f0000000380)='\x13\x13w\xc5\xfc5\xd4\x14T\xd5\xd4\x1d)\xad\x1a`)Y\x81F\xe6\xbe\x16nA\xad\r\xbd@T\x03<\x9f3\xbb\xda\x82$\xa2\xf3\xd7r\xe7cnH\xb3<\xbfp\x83r\xe8\xf1\xb9\x93>\xc5\x12wC\xbe\"\x06 \x9e\xf0-\xf9\xcb\xf2\xf6\xe8\x80\xd38//file0\x00') r1 = open(&(0x7f0000000100)='.\x00', 0x0, 0x0) renameat2(r1, &(0x7f0000000400)='./file0/file0\x00', r1, &(0x7f0000000000)='./file0\x00', 0x4000000000000000) [ 238.115295][T15521] EXT4-fs (loop0): group descriptors corrupted! 21:38:18 executing program 5: set_mempolicy(0x8003, &(0x7f0000000300)=0x75f, 0x9) open(&(0x7f0000000300)='.\x00', 0x0, 0x0) r0 = syz_open_procfs(0x0, &(0x7f00000000c0)='fd/3\x00') r1 = syz_open_dev$swradio(&(0x7f0000000100)='/dev/swradio#\x00', 0x0, 0x2) mount$9p_fd(0x0, &(0x7f0000000300)='.\x00', &(0x7f0000000080)='9p\x00', 0x1100, &(0x7f0000000740)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}}) 21:38:18 executing program 0 (fault-call:0 fault-nth:40): syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x40000, 0x3, &(0x7f0000000200)=[{&(0x7f0000010000)="20000000000100000c000000d90000000f0000000100000000000000000000000020000000200000200000002cc4645f2cc4645f0100ffff53ef0100010000002cc4645f000000000000000001000000000000000b0000008000000038000000c20200006b0400000000000000000000000000000000000073797a6b616c6c6572000000000000002f746d702f73797a2d696d61676567656e3338363633343038350000000000000000000000000000000000000000000000000000000000000000000000000000000000000000010000000000000000000000000000000000000000000000000000000000d9ca5cac99fd4329af4dde786c1a5d13010040000c000000000000002cc4645f", 0x10c, 0x400}, {&(0x7f0000010200)="0500000000000000000000000000000000000000040100002b", 0x19, 0x560}, {&(0x7f0000010300)="000000000000000000000000000000000000000000000000000000001481910a040000001400000024", 0x29, 0x7e0}], 0x0, &(0x7f0000000040)={[{@usrjquota='usrjquota='}, {@data_err_abort='data_err=abort'}]}) 21:38:18 executing program 3: set_mempolicy(0x8003, &(0x7f0000000300)=0x75f, 0x9) open(&(0x7f0000000300)='.\x00', 0x0, 0x0) r0 = syz_open_procfs(0x0, &(0x7f00000000c0)='fd/3\x00') r1 = syz_open_dev$swradio(&(0x7f0000000100)='/dev/swradio#\x00', 0x0, 0x2) mount$9p_fd(0x0, &(0x7f0000000300)='.\x00', &(0x7f0000000080)='9p\x00', 0x700, &(0x7f0000000740)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}}) [ 238.210472][T15540] 9pnet: Insufficient options for proto=fd 21:38:18 executing program 1: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) r3 = syz_open_procfs(0x0, &(0x7f00000000c0)='fd/3\x00') mount$9p_fd(0x0, &(0x7f0000000300)='.\x00', &(0x7f0000000080)='9p\x00', 0x3, &(0x7f00000003c0)={'trans=fd,', {'rfdno', 0x3d, r3}, 0x2c, {'wfdno', 0x3d, r2}}) 21:38:18 executing program 4: set_mempolicy(0x8003, &(0x7f0000000300)=0x75f, 0x9) open(&(0x7f0000000300)='.\x00', 0x0, 0x0) r0 = syz_open_procfs(0x0, &(0x7f00000000c0)='fd/3\x00') r1 = syz_open_dev$swradio(&(0x7f0000000100)='/dev/swradio#\x00', 0x0, 0x2) mount$9p_fd(0x0, &(0x7f0000000300)='.\x00', &(0x7f0000000080)='9p\x00', 0xe, &(0x7f0000000740)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}}) 21:38:18 executing program 2: set_mempolicy(0x8003, &(0x7f0000000300)=0x75f, 0x9) r0 = open(&(0x7f0000000300)='.\x00', 0x0, 0x0) symlinkat(&(0x7f0000000040)='\x13\x13w\xc5\xfc5\xd4\x14T\xd5\xd4\x1d)\xad\x1a`)Y\x81F\xe6\xbe\x16nA\xad\r\xbd@T\x03<\x9f3\xbb\xda\x82$\xa2\xf3\xd7r\xe7cnH\xb3<\xbfp\x83r\xe8\xf1\xb9\x93>\xc5\x12wC\xbe\"\x06 \x9e\xf0-\xf9\xcb\xf2\xf6\xe8\x80\xd38/\x00', r0, &(0x7f00000000c0)='./file0\x00') mkdirat(r0, &(0x7f0000000200)='\x13\x13w\xc5\xfc5\xd4\x14T\xd5\xd4\x1d)\xad\x1a`)Y\x81F\xe6\xbe\x16nA\xad\r\xbd@T\x03<\x9f3\xbb\xda\x82$\xa2\xf3\xd7r\xe7cnH\xb3<\xbfp\x83r\xe8\xf1\xb9\x93>\xc5\x12wC\xbe\"\x06 \x9e\xf0-\xf9\xcb\xf2\xf6\xe8\x80\xd38/\x00', 0x0) symlinkat(&(0x7f0000000340)='./file0/file0\x00', r0, &(0x7f0000000380)='\x13\x13w\xc5\xfc5\xd4\x14T\xd5\xd4\x1d)\xad\x1a`)Y\x81F\xe6\xbe\x16nA\xad\r\xbd@T\x03<\x9f3\xbb\xda\x82$\xa2\xf3\xd7r\xe7cnH\xb3<\xbfp\x83r\xe8\xf1\xb9\x93>\xc5\x12wC\xbe\"\x06 \x9e\xf0-\xf9\xcb\xf2\xf6\xe8\x80\xd38//file0\x00') r1 = open(&(0x7f0000000100)='.\x00', 0x0, 0x0) renameat2(r1, &(0x7f0000000400)='./file0/file0\x00', r1, &(0x7f0000000000)='./file0\x00', 0x4d00000000000000) 21:38:18 executing program 5: set_mempolicy(0x8003, &(0x7f0000000300)=0x75f, 0x9) open(&(0x7f0000000300)='.\x00', 0x0, 0x0) r0 = syz_open_procfs(0x0, &(0x7f00000000c0)='fd/3\x00') r1 = syz_open_dev$swradio(&(0x7f0000000100)='/dev/swradio#\x00', 0x0, 0x2) mount$9p_fd(0x0, &(0x7f0000000300)='.\x00', &(0x7f0000000080)='9p\x00', 0x1200, &(0x7f0000000740)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}}) [ 238.338652][T15572] loop0: detected capacity change from 512 to 0 [ 238.353938][T15572] FAULT_INJECTION: forcing a failure. [ 238.353938][T15572] name failslab, interval 1, probability 0, space 0, times 0 [ 238.376420][T15572] CPU: 1 PID: 15572 Comm: syz-executor.0 Not tainted 5.11.0-syzkaller #0 [ 238.384919][T15572] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 238.395122][T15572] Call Trace: [ 238.398397][T15572] dump_stack+0x116/0x15d [ 238.402760][T15572] should_fail+0x23c/0x250 [ 238.407177][T15572] __should_failslab+0x81/0x90 [ 238.411942][T15572] ? tomoyo_encode2+0x1d3/0x350 [ 238.416847][T15572] should_failslab+0x5/0x20 [ 238.421344][T15572] __kmalloc+0x59/0x360 [ 238.425501][T15572] tomoyo_encode2+0x1d3/0x350 [ 238.430193][T15572] tomoyo_realpath_from_path+0x35e/0x3b0 [ 238.434117][T15590] 9pnet: Insufficient options for proto=fd [ 238.435864][T15572] tomoyo_path_number_perm+0xc1/0x2d0 [ 238.447015][T15572] ? _raw_spin_unlock+0x22/0x40 [ 238.447351][T15586] vivid-006: kernel_thread() failed [ 238.451883][T15572] ? __d_add+0x390/0x450 [ 238.451903][T15572] ? terminate_walk+0x24e/0x270 [ 238.451925][T15572] ? filename_create+0x36f/0x3c0 [ 238.471085][T15572] tomoyo_path_mkdir+0x50/0x70 [ 238.479555][T15572] security_path_mkdir+0x95/0xf0 [ 238.484506][T15572] do_mkdirat+0xf7/0x220 [ 238.488887][T15572] __x64_sys_mkdir+0x32/0x40 [ 238.493525][T15572] do_syscall_64+0x39/0x80 [ 238.497956][T15572] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 238.503856][T15572] RIP: 0033:0x464ea7 [ 238.507764][T15572] Code: 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 83 c8 ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 b8 53 00 00 00 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 238.527375][T15572] RSP: 002b:00007f8175ef9fa8 EFLAGS: 00000213 ORIG_RAX: 0000000000000053 21:38:18 executing program 5: set_mempolicy(0x8003, &(0x7f0000000300)=0x75f, 0x9) open(&(0x7f0000000300)='.\x00', 0x0, 0x0) r0 = syz_open_procfs(0x0, &(0x7f00000000c0)='fd/3\x00') r1 = syz_open_dev$swradio(&(0x7f0000000100)='/dev/swradio#\x00', 0x0, 0x2) mount$9p_fd(0x0, &(0x7f0000000300)='.\x00', &(0x7f0000000080)='9p\x00', 0x2010, &(0x7f0000000740)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}}) 21:38:18 executing program 2: set_mempolicy(0x8003, &(0x7f0000000300)=0x75f, 0x9) r0 = open(&(0x7f0000000300)='.\x00', 0x0, 0x0) symlinkat(&(0x7f0000000040)='\x13\x13w\xc5\xfc5\xd4\x14T\xd5\xd4\x1d)\xad\x1a`)Y\x81F\xe6\xbe\x16nA\xad\r\xbd@T\x03<\x9f3\xbb\xda\x82$\xa2\xf3\xd7r\xe7cnH\xb3<\xbfp\x83r\xe8\xf1\xb9\x93>\xc5\x12wC\xbe\"\x06 \x9e\xf0-\xf9\xcb\xf2\xf6\xe8\x80\xd38/\x00', r0, &(0x7f00000000c0)='./file0\x00') mkdirat(r0, &(0x7f0000000200)='\x13\x13w\xc5\xfc5\xd4\x14T\xd5\xd4\x1d)\xad\x1a`)Y\x81F\xe6\xbe\x16nA\xad\r\xbd@T\x03<\x9f3\xbb\xda\x82$\xa2\xf3\xd7r\xe7cnH\xb3<\xbfp\x83r\xe8\xf1\xb9\x93>\xc5\x12wC\xbe\"\x06 \x9e\xf0-\xf9\xcb\xf2\xf6\xe8\x80\xd38/\x00', 0x0) symlinkat(&(0x7f0000000340)='./file0/file0\x00', r0, &(0x7f0000000380)='\x13\x13w\xc5\xfc5\xd4\x14T\xd5\xd4\x1d)\xad\x1a`)Y\x81F\xe6\xbe\x16nA\xad\r\xbd@T\x03<\x9f3\xbb\xda\x82$\xa2\xf3\xd7r\xe7cnH\xb3<\xbfp\x83r\xe8\xf1\xb9\x93>\xc5\x12wC\xbe\"\x06 \x9e\xf0-\xf9\xcb\xf2\xf6\xe8\x80\xd38//file0\x00') r1 = open(&(0x7f0000000100)='.\x00', 0x0, 0x0) renameat2(r1, &(0x7f0000000400)='./file0/file0\x00', r1, &(0x7f0000000000)='./file0\x00', 0x5c00000000000000) 21:38:18 executing program 5: set_mempolicy(0x8003, &(0x7f0000000300)=0x75f, 0x9) open(&(0x7f0000000300)='.\x00', 0x0, 0x0) r0 = syz_open_procfs(0x0, &(0x7f00000000c0)='fd/3\x00') r1 = syz_open_dev$swradio(&(0x7f0000000100)='/dev/swradio#\x00', 0x0, 0x2) mount$9p_fd(0x0, &(0x7f0000000300)='.\x00', &(0x7f0000000080)='9p\x00', 0x2500, &(0x7f0000000740)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}}) 21:38:18 executing program 2: set_mempolicy(0x8003, &(0x7f0000000300)=0x75f, 0x9) r0 = open(&(0x7f0000000300)='.\x00', 0x0, 0x0) symlinkat(&(0x7f0000000040)='\x13\x13w\xc5\xfc5\xd4\x14T\xd5\xd4\x1d)\xad\x1a`)Y\x81F\xe6\xbe\x16nA\xad\r\xbd@T\x03<\x9f3\xbb\xda\x82$\xa2\xf3\xd7r\xe7cnH\xb3<\xbfp\x83r\xe8\xf1\xb9\x93>\xc5\x12wC\xbe\"\x06 \x9e\xf0-\xf9\xcb\xf2\xf6\xe8\x80\xd38/\x00', r0, &(0x7f00000000c0)='./file0\x00') mkdirat(r0, &(0x7f0000000200)='\x13\x13w\xc5\xfc5\xd4\x14T\xd5\xd4\x1d)\xad\x1a`)Y\x81F\xe6\xbe\x16nA\xad\r\xbd@T\x03<\x9f3\xbb\xda\x82$\xa2\xf3\xd7r\xe7cnH\xb3<\xbfp\x83r\xe8\xf1\xb9\x93>\xc5\x12wC\xbe\"\x06 \x9e\xf0-\xf9\xcb\xf2\xf6\xe8\x80\xd38/\x00', 0x0) symlinkat(&(0x7f0000000340)='./file0/file0\x00', r0, &(0x7f0000000380)='\x13\x13w\xc5\xfc5\xd4\x14T\xd5\xd4\x1d)\xad\x1a`)Y\x81F\xe6\xbe\x16nA\xad\r\xbd@T\x03<\x9f3\xbb\xda\x82$\xa2\xf3\xd7r\xe7cnH\xb3<\xbfp\x83r\xe8\xf1\xb9\x93>\xc5\x12wC\xbe\"\x06 \x9e\xf0-\xf9\xcb\xf2\xf6\xe8\x80\xd38//file0\x00') r1 = open(&(0x7f0000000100)='.\x00', 0x0, 0x0) renameat2(r1, &(0x7f0000000400)='./file0/file0\x00', r1, &(0x7f0000000000)='./file0\x00', 0x8cffffff00000000) 21:38:18 executing program 5: set_mempolicy(0x8003, &(0x7f0000000300)=0x75f, 0x9) open(&(0x7f0000000300)='.\x00', 0x0, 0x0) r0 = syz_open_procfs(0x0, &(0x7f00000000c0)='fd/3\x00') r1 = syz_open_dev$swradio(&(0x7f0000000100)='/dev/swradio#\x00', 0x0, 0x2) mount$9p_fd(0x0, &(0x7f0000000300)='.\x00', &(0x7f0000000080)='9p\x00', 0x4000, &(0x7f0000000740)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}}) 21:38:18 executing program 2: set_mempolicy(0x8003, &(0x7f0000000300)=0x75f, 0x9) r0 = open(&(0x7f0000000300)='.\x00', 0x0, 0x0) symlinkat(&(0x7f0000000040)='\x13\x13w\xc5\xfc5\xd4\x14T\xd5\xd4\x1d)\xad\x1a`)Y\x81F\xe6\xbe\x16nA\xad\r\xbd@T\x03<\x9f3\xbb\xda\x82$\xa2\xf3\xd7r\xe7cnH\xb3<\xbfp\x83r\xe8\xf1\xb9\x93>\xc5\x12wC\xbe\"\x06 \x9e\xf0-\xf9\xcb\xf2\xf6\xe8\x80\xd38/\x00', r0, &(0x7f00000000c0)='./file0\x00') mkdirat(r0, &(0x7f0000000200)='\x13\x13w\xc5\xfc5\xd4\x14T\xd5\xd4\x1d)\xad\x1a`)Y\x81F\xe6\xbe\x16nA\xad\r\xbd@T\x03<\x9f3\xbb\xda\x82$\xa2\xf3\xd7r\xe7cnH\xb3<\xbfp\x83r\xe8\xf1\xb9\x93>\xc5\x12wC\xbe\"\x06 \x9e\xf0-\xf9\xcb\xf2\xf6\xe8\x80\xd38/\x00', 0x0) symlinkat(&(0x7f0000000340)='./file0/file0\x00', r0, &(0x7f0000000380)='\x13\x13w\xc5\xfc5\xd4\x14T\xd5\xd4\x1d)\xad\x1a`)Y\x81F\xe6\xbe\x16nA\xad\r\xbd@T\x03<\x9f3\xbb\xda\x82$\xa2\xf3\xd7r\xe7cnH\xb3<\xbfp\x83r\xe8\xf1\xb9\x93>\xc5\x12wC\xbe\"\x06 \x9e\xf0-\xf9\xcb\xf2\xf6\xe8\x80\xd38//file0\x00') r1 = open(&(0x7f0000000100)='.\x00', 0x0, 0x0) renameat2(r1, &(0x7f0000000400)='./file0/file0\x00', r1, &(0x7f0000000000)='./file0\x00', 0xb027000000000000) [ 238.535789][T15572] RAX: ffffffffffffffda RBX: 0000000020000200 RCX: 0000000000464ea7 [ 238.543755][T15572] RDX: 0000000000000004 RSI: 00000000000001ff RDI: 0000000020000100 [ 238.551728][T15572] RBP: 00007f8175efa040 R08: 0000000000000000 R09: ffffffffffffffff [ 238.559692][T15572] R10: 0000000000000000 R11: 0000000000000213 R12: 0000000020000000 [ 238.567745][T15572] R13: 0000000020000100 R14: 00007f8175efa000 R15: 0000000020000040 [ 238.617881][T15590] 9pnet: Insufficient options for proto=fd [ 238.712065][T15572] ERROR: Out of memory at tomoyo_realpath_from_path. [ 238.719967][T15572] EXT4-fs (loop0): ext4_check_descriptors: Checksum for group 0 failed (38247!=0) [ 238.734571][T15572] EXT4-fs (loop0): group descriptors corrupted! 21:38:18 executing program 0 (fault-call:0 fault-nth:41): syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x40000, 0x3, &(0x7f0000000200)=[{&(0x7f0000010000)="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", 0x10c, 0x400}, {&(0x7f0000010200)="0500000000000000000000000000000000000000040100002b", 0x19, 0x560}, {&(0x7f0000010300)="000000000000000000000000000000000000000000000000000000001481910a040000001400000024", 0x29, 0x7e0}], 0x0, &(0x7f0000000040)={[{@usrjquota='usrjquota='}, {@data_err_abort='data_err=abort'}]}) 21:38:18 executing program 4: set_mempolicy(0x8003, &(0x7f0000000300)=0x75f, 0x9) open(&(0x7f0000000300)='.\x00', 0x0, 0x0) r0 = syz_open_procfs(0x0, &(0x7f00000000c0)='fd/3\x00') r1 = syz_open_dev$swradio(&(0x7f0000000100)='/dev/swradio#\x00', 0x0, 0x2) mount$9p_fd(0x0, &(0x7f0000000300)='.\x00', &(0x7f0000000080)='9p\x00', 0x10, &(0x7f0000000740)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}}) 21:38:18 executing program 3: set_mempolicy(0x8003, &(0x7f0000000300)=0x75f, 0x9) open(&(0x7f0000000300)='.\x00', 0x0, 0x0) r0 = syz_open_procfs(0x0, &(0x7f00000000c0)='fd/3\x00') r1 = syz_open_dev$swradio(&(0x7f0000000100)='/dev/swradio#\x00', 0x0, 0x2) mount$9p_fd(0x0, &(0x7f0000000300)='.\x00', &(0x7f0000000080)='9p\x00', 0x900, &(0x7f0000000740)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}}) 21:38:18 executing program 1: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) r3 = syz_open_procfs(0x0, &(0x7f00000000c0)='fd/3\x00') mount$9p_fd(0x0, &(0x7f0000000300)='.\x00', &(0x7f0000000080)='9p\x00', 0x4, &(0x7f00000003c0)={'trans=fd,', {'rfdno', 0x3d, r3}, 0x2c, {'wfdno', 0x3d, r2}}) 21:38:18 executing program 5: set_mempolicy(0x8003, &(0x7f0000000300)=0x75f, 0x9) open(&(0x7f0000000300)='.\x00', 0x0, 0x0) r0 = syz_open_procfs(0x0, &(0x7f00000000c0)='fd/3\x00') r1 = syz_open_dev$swradio(&(0x7f0000000100)='/dev/swradio#\x00', 0x0, 0x2) mount$9p_fd(0x0, &(0x7f0000000300)='.\x00', &(0x7f0000000080)='9p\x00', 0x5c00, &(0x7f0000000740)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}}) 21:38:18 executing program 2: set_mempolicy(0x8003, &(0x7f0000000300)=0x75f, 0x9) r0 = open(&(0x7f0000000300)='.\x00', 0x0, 0x0) symlinkat(&(0x7f0000000040)='\x13\x13w\xc5\xfc5\xd4\x14T\xd5\xd4\x1d)\xad\x1a`)Y\x81F\xe6\xbe\x16nA\xad\r\xbd@T\x03<\x9f3\xbb\xda\x82$\xa2\xf3\xd7r\xe7cnH\xb3<\xbfp\x83r\xe8\xf1\xb9\x93>\xc5\x12wC\xbe\"\x06 \x9e\xf0-\xf9\xcb\xf2\xf6\xe8\x80\xd38/\x00', r0, &(0x7f00000000c0)='./file0\x00') mkdirat(r0, &(0x7f0000000200)='\x13\x13w\xc5\xfc5\xd4\x14T\xd5\xd4\x1d)\xad\x1a`)Y\x81F\xe6\xbe\x16nA\xad\r\xbd@T\x03<\x9f3\xbb\xda\x82$\xa2\xf3\xd7r\xe7cnH\xb3<\xbfp\x83r\xe8\xf1\xb9\x93>\xc5\x12wC\xbe\"\x06 \x9e\xf0-\xf9\xcb\xf2\xf6\xe8\x80\xd38/\x00', 0x0) symlinkat(&(0x7f0000000340)='./file0/file0\x00', r0, &(0x7f0000000380)='\x13\x13w\xc5\xfc5\xd4\x14T\xd5\xd4\x1d)\xad\x1a`)Y\x81F\xe6\xbe\x16nA\xad\r\xbd@T\x03<\x9f3\xbb\xda\x82$\xa2\xf3\xd7r\xe7cnH\xb3<\xbfp\x83r\xe8\xf1\xb9\x93>\xc5\x12wC\xbe\"\x06 \x9e\xf0-\xf9\xcb\xf2\xf6\xe8\x80\xd38//file0\x00') r1 = open(&(0x7f0000000100)='.\x00', 0x0, 0x0) renameat2(r1, &(0x7f0000000400)='./file0/file0\x00', r1, &(0x7f0000000000)='./file0\x00', 0xe127000000000000) 21:38:18 executing program 1: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) r3 = syz_open_procfs(0x0, &(0x7f00000000c0)='fd/3\x00') mount$9p_fd(0x0, &(0x7f0000000300)='.\x00', &(0x7f0000000080)='9p\x00', 0x5, &(0x7f00000003c0)={'trans=fd,', {'rfdno', 0x3d, r3}, 0x2c, {'wfdno', 0x3d, r2}}) 21:38:18 executing program 2: set_mempolicy(0x8003, &(0x7f0000000300)=0x75f, 0x9) r0 = open(&(0x7f0000000300)='.\x00', 0x0, 0x0) symlinkat(&(0x7f0000000040)='\x13\x13w\xc5\xfc5\xd4\x14T\xd5\xd4\x1d)\xad\x1a`)Y\x81F\xe6\xbe\x16nA\xad\r\xbd@T\x03<\x9f3\xbb\xda\x82$\xa2\xf3\xd7r\xe7cnH\xb3<\xbfp\x83r\xe8\xf1\xb9\x93>\xc5\x12wC\xbe\"\x06 \x9e\xf0-\xf9\xcb\xf2\xf6\xe8\x80\xd38/\x00', r0, &(0x7f00000000c0)='./file0\x00') mkdirat(r0, &(0x7f0000000200)='\x13\x13w\xc5\xfc5\xd4\x14T\xd5\xd4\x1d)\xad\x1a`)Y\x81F\xe6\xbe\x16nA\xad\r\xbd@T\x03<\x9f3\xbb\xda\x82$\xa2\xf3\xd7r\xe7cnH\xb3<\xbfp\x83r\xe8\xf1\xb9\x93>\xc5\x12wC\xbe\"\x06 \x9e\xf0-\xf9\xcb\xf2\xf6\xe8\x80\xd38/\x00', 0x0) symlinkat(&(0x7f0000000340)='./file0/file0\x00', r0, &(0x7f0000000380)='\x13\x13w\xc5\xfc5\xd4\x14T\xd5\xd4\x1d)\xad\x1a`)Y\x81F\xe6\xbe\x16nA\xad\r\xbd@T\x03<\x9f3\xbb\xda\x82$\xa2\xf3\xd7r\xe7cnH\xb3<\xbfp\x83r\xe8\xf1\xb9\x93>\xc5\x12wC\xbe\"\x06 \x9e\xf0-\xf9\xcb\xf2\xf6\xe8\x80\xd38//file0\x00') r1 = open(&(0x7f0000000100)='.\x00', 0x0, 0x0) renameat2(r1, &(0x7f0000000400)='./file0/file0\x00', r1, &(0x7f0000000000)='./file0\x00', 0xe227000000000000) 21:38:18 executing program 5: set_mempolicy(0x8003, &(0x7f0000000300)=0x75f, 0x9) open(&(0x7f0000000300)='.\x00', 0x0, 0x0) r0 = syz_open_procfs(0x0, &(0x7f00000000c0)='fd/3\x00') r1 = syz_open_dev$swradio(&(0x7f0000000100)='/dev/swradio#\x00', 0x0, 0x2) mount$9p_fd(0x0, &(0x7f0000000300)='.\x00', &(0x7f0000000080)='9p\x00', 0x9fff, &(0x7f0000000740)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}}) [ 238.881049][T15637] loop0: detected capacity change from 512 to 0 [ 238.900836][T15637] FAULT_INJECTION: forcing a failure. [ 238.900836][T15637] name failslab, interval 1, probability 0, space 0, times 0 [ 238.974132][T15637] CPU: 1 PID: 15637 Comm: syz-executor.0 Not tainted 5.11.0-syzkaller #0 [ 238.982818][T15637] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 238.992874][T15637] Call Trace: [ 238.996271][T15637] dump_stack+0x116/0x15d [ 239.000596][T15637] should_fail+0x23c/0x250 [ 239.005071][T15637] ? ext4_alloc_inode+0x27/0x300 [ 239.009991][T15637] __should_failslab+0x81/0x90 [ 239.014752][T15637] ? set_qf_name+0x230/0x230 [ 239.019323][T15637] should_failslab+0x5/0x20 [ 239.023841][T15637] kmem_cache_alloc+0x36/0x2e0 [ 239.028613][T15637] ? set_qf_name+0x230/0x230 [ 239.033195][T15637] ext4_alloc_inode+0x27/0x300 [ 239.037941][T15637] ? set_qf_name+0x230/0x230 [ 239.042564][T15637] new_inode_pseudo+0x38/0x190 [ 239.047337][T15637] new_inode+0x21/0x100 [ 239.051475][T15637] __ext4_new_inode+0x134/0x3020 [ 239.056403][T15637] ext4_mkdir+0x28a/0x750 [ 239.060737][T15637] vfs_mkdir+0x288/0x350 [ 239.065020][T15637] do_mkdirat+0x132/0x220 [ 239.069336][T15637] __x64_sys_mkdir+0x32/0x40 [ 239.074003][T15637] do_syscall_64+0x39/0x80 [ 239.078408][T15637] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 239.084282][T15637] RIP: 0033:0x464ea7 [ 239.088156][T15637] Code: 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 83 c8 ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 b8 53 00 00 00 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 239.107829][T15637] RSP: 002b:00007f8175ef9fa8 EFLAGS: 00000213 ORIG_RAX: 0000000000000053 [ 239.116220][T15637] RAX: ffffffffffffffda RBX: 0000000020000200 RCX: 0000000000464ea7 21:38:19 executing program 3: set_mempolicy(0x8003, &(0x7f0000000300)=0x75f, 0x9) open(&(0x7f0000000300)='.\x00', 0x0, 0x0) r0 = syz_open_procfs(0x0, &(0x7f00000000c0)='fd/3\x00') r1 = syz_open_dev$swradio(&(0x7f0000000100)='/dev/swradio#\x00', 0x0, 0x2) mount$9p_fd(0x0, &(0x7f0000000300)='.\x00', &(0x7f0000000080)='9p\x00', 0xa00, &(0x7f0000000740)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}}) [ 239.124189][T15637] RDX: 0000000000000004 RSI: 00000000000001ff RDI: 0000000020000100 [ 239.132141][T15637] RBP: 00007f8175efa040 R08: 0000000000000000 R09: ffffffffffffffff [ 239.140220][T15637] R10: 0000000000000000 R11: 0000000000000213 R12: 0000000020000000 [ 239.148170][T15637] R13: 0000000020000100 R14: 00007f8175efa000 R15: 0000000020000040 21:38:19 executing program 4: set_mempolicy(0x8003, &(0x7f0000000300)=0x75f, 0x9) open(&(0x7f0000000300)='.\x00', 0x0, 0x0) r0 = syz_open_procfs(0x0, &(0x7f00000000c0)='fd/3\x00') r1 = syz_open_dev$swradio(&(0x7f0000000100)='/dev/swradio#\x00', 0x0, 0x2) mount$9p_fd(0x0, &(0x7f0000000300)='.\x00', &(0x7f0000000080)='9p\x00', 0x11, &(0x7f0000000740)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}}) [ 239.211986][T15655] 9pnet: Insufficient options for proto=fd 21:38:19 executing program 0 (fault-call:0 fault-nth:42): syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x40000, 0x3, &(0x7f0000000200)=[{&(0x7f0000010000)="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", 0x10c, 0x400}, {&(0x7f0000010200)="0500000000000000000000000000000000000000040100002b", 0x19, 0x560}, {&(0x7f0000010300)="000000000000000000000000000000000000000000000000000000001481910a040000001400000024", 0x29, 0x7e0}], 0x0, &(0x7f0000000040)={[{@usrjquota='usrjquota='}, {@data_err_abort='data_err=abort'}]}) [ 239.253421][T15655] 9pnet: Insufficient options for proto=fd 21:38:19 executing program 5: set_mempolicy(0x8003, &(0x7f0000000300)=0x75f, 0x9) open(&(0x7f0000000300)='.\x00', 0x0, 0x0) r0 = syz_open_procfs(0x0, &(0x7f00000000c0)='fd/3\x00') r1 = syz_open_dev$swradio(&(0x7f0000000100)='/dev/swradio#\x00', 0x0, 0x2) mount$9p_fd(0x0, &(0x7f0000000300)='.\x00', &(0x7f0000000080)='9p\x00', 0xedc0, &(0x7f0000000740)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}}) 21:38:19 executing program 1: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) r3 = syz_open_procfs(0x0, &(0x7f00000000c0)='fd/3\x00') mount$9p_fd(0x0, &(0x7f0000000300)='.\x00', &(0x7f0000000080)='9p\x00', 0x6, &(0x7f00000003c0)={'trans=fd,', {'rfdno', 0x3d, r3}, 0x2c, {'wfdno', 0x3d, r2}}) 21:38:19 executing program 2: set_mempolicy(0x8003, &(0x7f0000000300)=0x75f, 0x9) r0 = open(&(0x7f0000000300)='.\x00', 0x0, 0x0) symlinkat(&(0x7f0000000040)='\x13\x13w\xc5\xfc5\xd4\x14T\xd5\xd4\x1d)\xad\x1a`)Y\x81F\xe6\xbe\x16nA\xad\r\xbd@T\x03<\x9f3\xbb\xda\x82$\xa2\xf3\xd7r\xe7cnH\xb3<\xbfp\x83r\xe8\xf1\xb9\x93>\xc5\x12wC\xbe\"\x06 \x9e\xf0-\xf9\xcb\xf2\xf6\xe8\x80\xd38/\x00', r0, &(0x7f00000000c0)='./file0\x00') mkdirat(r0, &(0x7f0000000200)='\x13\x13w\xc5\xfc5\xd4\x14T\xd5\xd4\x1d)\xad\x1a`)Y\x81F\xe6\xbe\x16nA\xad\r\xbd@T\x03<\x9f3\xbb\xda\x82$\xa2\xf3\xd7r\xe7cnH\xb3<\xbfp\x83r\xe8\xf1\xb9\x93>\xc5\x12wC\xbe\"\x06 \x9e\xf0-\xf9\xcb\xf2\xf6\xe8\x80\xd38/\x00', 0x0) symlinkat(&(0x7f0000000340)='./file0/file0\x00', r0, &(0x7f0000000380)='\x13\x13w\xc5\xfc5\xd4\x14T\xd5\xd4\x1d)\xad\x1a`)Y\x81F\xe6\xbe\x16nA\xad\r\xbd@T\x03<\x9f3\xbb\xda\x82$\xa2\xf3\xd7r\xe7cnH\xb3<\xbfp\x83r\xe8\xf1\xb9\x93>\xc5\x12wC\xbe\"\x06 \x9e\xf0-\xf9\xcb\xf2\xf6\xe8\x80\xd38//file0\x00') r1 = open(&(0x7f0000000100)='.\x00', 0x0, 0x0) renameat2(r1, &(0x7f0000000400)='./file0/file0\x00', r1, &(0x7f0000000000)='./file0\x00', 0xf4ffffff00000000) [ 239.329111][T15678] loop0: detected capacity change from 512 to 0 [ 239.339166][T15678] FAULT_INJECTION: forcing a failure. [ 239.339166][T15678] name failslab, interval 1, probability 0, space 0, times 0 [ 239.369066][T15678] CPU: 1 PID: 15678 Comm: syz-executor.0 Not tainted 5.11.0-syzkaller #0 21:38:19 executing program 3: set_mempolicy(0x8003, &(0x7f0000000300)=0x75f, 0x9) open(&(0x7f0000000300)='.\x00', 0x0, 0x0) r0 = syz_open_procfs(0x0, &(0x7f00000000c0)='fd/3\x00') r1 = syz_open_dev$swradio(&(0x7f0000000100)='/dev/swradio#\x00', 0x0, 0x2) mount$9p_fd(0x0, &(0x7f0000000300)='.\x00', &(0x7f0000000080)='9p\x00', 0xb00, &(0x7f0000000740)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}}) [ 239.377508][T15678] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 239.387568][T15678] Call Trace: [ 239.390854][T15678] dump_stack+0x116/0x15d [ 239.395359][T15678] should_fail+0x23c/0x250 [ 239.399840][T15678] ? security_inode_alloc+0x30/0x180 [ 239.405219][T15678] __should_failslab+0x81/0x90 [ 239.409986][T15678] should_failslab+0x5/0x20 [ 239.414481][T15678] kmem_cache_alloc+0x36/0x2e0 [ 239.419244][T15678] security_inode_alloc+0x30/0x180 [ 239.424397][T15678] inode_init_always+0x211/0x430 21:38:19 executing program 5: set_mempolicy(0x8003, &(0x7f0000000300)=0x75f, 0x9) open(&(0x7f0000000300)='.\x00', 0x0, 0x0) r0 = syz_open_procfs(0x0, &(0x7f00000000c0)='fd/3\x00') r1 = syz_open_dev$swradio(&(0x7f0000000100)='/dev/swradio#\x00', 0x0, 0x2) mount$9p_fd(0x0, &(0x7f0000000300)='.\x00', &(0x7f0000000080)='9p\x00', 0xff00, &(0x7f0000000740)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}}) [ 239.429323][T15678] ? set_qf_name+0x230/0x230 [ 239.433906][T15678] new_inode_pseudo+0x6f/0x190 [ 239.438667][T15678] new_inode+0x21/0x100 [ 239.442908][T15678] __ext4_new_inode+0x134/0x3020 [ 239.447852][T15678] ext4_mkdir+0x28a/0x750 [ 239.451651][T15690] 9pnet: Insufficient options for proto=fd [ 239.452178][T15678] vfs_mkdir+0x288/0x350 [ 239.462204][T15678] do_mkdirat+0x132/0x220 [ 239.466617][T15678] __x64_sys_mkdir+0x32/0x40 [ 239.471214][T15678] do_syscall_64+0x39/0x80 21:38:19 executing program 3: set_mempolicy(0x8003, &(0x7f0000000300)=0x75f, 0x9) open(&(0x7f0000000300)='.\x00', 0x0, 0x0) r0 = syz_open_procfs(0x0, &(0x7f00000000c0)='fd/3\x00') r1 = syz_open_dev$swradio(&(0x7f0000000100)='/dev/swradio#\x00', 0x0, 0x2) mount$9p_fd(0x0, &(0x7f0000000300)='.\x00', &(0x7f0000000080)='9p\x00', 0xc00, &(0x7f0000000740)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}}) [ 239.475835][T15678] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 239.481722][T15678] RIP: 0033:0x464ea7 [ 239.485604][T15678] Code: 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 83 c8 ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 b8 53 00 00 00 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 239.505204][T15678] RSP: 002b:00007f8175ef9fa8 EFLAGS: 00000213 ORIG_RAX: 0000000000000053 [ 239.513664][T15678] RAX: ffffffffffffffda RBX: 0000000020000200 RCX: 0000000000464ea7 [ 239.521839][T15678] RDX: 0000000000000004 RSI: 00000000000001ff RDI: 0000000020000100 [ 239.529901][T15678] RBP: 00007f8175efa040 R08: 0000000000000000 R09: ffffffffffffffff [ 239.539381][T15678] R10: 0000000000000000 R11: 0000000000000213 R12: 0000000020000000 [ 239.547438][T15678] R13: 0000000020000100 R14: 00007f8175efa000 R15: 0000000020000040 21:38:19 executing program 1: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) r3 = syz_open_procfs(0x0, &(0x7f00000000c0)='fd/3\x00') mount$9p_fd(0x0, &(0x7f0000000300)='.\x00', &(0x7f0000000080)='9p\x00', 0x7, &(0x7f00000003c0)={'trans=fd,', {'rfdno', 0x3d, r3}, 0x2c, {'wfdno', 0x3d, r2}}) [ 239.583443][T15694] 9pnet: Insufficient options for proto=fd 21:38:19 executing program 2: set_mempolicy(0x8003, &(0x7f0000000300)=0x75f, 0x9) r0 = open(&(0x7f0000000300)='.\x00', 0x0, 0x0) symlinkat(&(0x7f0000000040)='\x13\x13w\xc5\xfc5\xd4\x14T\xd5\xd4\x1d)\xad\x1a`)Y\x81F\xe6\xbe\x16nA\xad\r\xbd@T\x03<\x9f3\xbb\xda\x82$\xa2\xf3\xd7r\xe7cnH\xb3<\xbfp\x83r\xe8\xf1\xb9\x93>\xc5\x12wC\xbe\"\x06 \x9e\xf0-\xf9\xcb\xf2\xf6\xe8\x80\xd38/\x00', r0, &(0x7f00000000c0)='./file0\x00') mkdirat(r0, &(0x7f0000000200)='\x13\x13w\xc5\xfc5\xd4\x14T\xd5\xd4\x1d)\xad\x1a`)Y\x81F\xe6\xbe\x16nA\xad\r\xbd@T\x03<\x9f3\xbb\xda\x82$\xa2\xf3\xd7r\xe7cnH\xb3<\xbfp\x83r\xe8\xf1\xb9\x93>\xc5\x12wC\xbe\"\x06 \x9e\xf0-\xf9\xcb\xf2\xf6\xe8\x80\xd38/\x00', 0x0) symlinkat(&(0x7f0000000340)='./file0/file0\x00', r0, &(0x7f0000000380)='\x13\x13w\xc5\xfc5\xd4\x14T\xd5\xd4\x1d)\xad\x1a`)Y\x81F\xe6\xbe\x16nA\xad\r\xbd@T\x03<\x9f3\xbb\xda\x82$\xa2\xf3\xd7r\xe7cnH\xb3<\xbfp\x83r\xe8\xf1\xb9\x93>\xc5\x12wC\xbe\"\x06 \x9e\xf0-\xf9\xcb\xf2\xf6\xe8\x80\xd38//file0\x00') r1 = open(&(0x7f0000000100)='.\x00', 0x0, 0x0) renameat2(r1, &(0x7f0000000400)='./file0/file0\x00', r1, &(0x7f0000000000)='./file0\x00', 0xf6ffffff00000000) 21:38:19 executing program 4: set_mempolicy(0x8003, &(0x7f0000000300)=0x75f, 0x9) open(&(0x7f0000000300)='.\x00', 0x0, 0x0) r0 = syz_open_procfs(0x0, &(0x7f00000000c0)='fd/3\x00') r1 = syz_open_dev$swradio(&(0x7f0000000100)='/dev/swradio#\x00', 0x0, 0x2) mount$9p_fd(0x0, &(0x7f0000000300)='.\x00', &(0x7f0000000080)='9p\x00', 0x12, &(0x7f0000000740)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}}) 21:38:19 executing program 5: set_mempolicy(0x8003, &(0x7f0000000300)=0x75f, 0x9) open(&(0x7f0000000300)='.\x00', 0x0, 0x0) r0 = syz_open_procfs(0x0, &(0x7f00000000c0)='fd/3\x00') r1 = syz_open_dev$swradio(&(0x7f0000000100)='/dev/swradio#\x00', 0x0, 0x2) mount$9p_fd(0x0, &(0x7f0000000300)='.\x00', &(0x7f0000000080)='9p\x00', 0xff9f, &(0x7f0000000740)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}}) [ 239.664065][ T3648] warn_unsupported: 67 callbacks suppressed [ 239.664075][ T3648] kernel read not supported for file root/syzkaller-testdir583426511/syzkaller.VVQl22/228 (pid: 3648 comm: kworker/1:2) [ 239.675986][ T8977] kernel read not supported for file root/syzkaller-testdir496628174/syzkaller.h9GlBV/229 (pid: 8977 comm: kworker/0:3) 21:38:19 executing program 0 (fault-call:0 fault-nth:43): syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x40000, 0x3, &(0x7f0000000200)=[{&(0x7f0000010000)="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", 0x10c, 0x400}, {&(0x7f0000010200)="0500000000000000000000000000000000000000040100002b", 0x19, 0x560}, {&(0x7f0000010300)="000000000000000000000000000000000000000000000000000000001481910a040000001400000024", 0x29, 0x7e0}], 0x0, &(0x7f0000000040)={[{@usrjquota='usrjquota='}, {@data_err_abort='data_err=abort'}]}) 21:38:19 executing program 3: set_mempolicy(0x8003, &(0x7f0000000300)=0x75f, 0x9) open(&(0x7f0000000300)='.\x00', 0x0, 0x0) r0 = syz_open_procfs(0x0, &(0x7f00000000c0)='fd/3\x00') r1 = syz_open_dev$swradio(&(0x7f0000000100)='/dev/swradio#\x00', 0x0, 0x2) mount$9p_fd(0x0, &(0x7f0000000300)='.\x00', &(0x7f0000000080)='9p\x00', 0xd00, &(0x7f0000000740)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}}) 21:38:19 executing program 5: set_mempolicy(0x8003, &(0x7f0000000300)=0x75f, 0x9) open(&(0x7f0000000300)='.\x00', 0x0, 0x0) r0 = syz_open_procfs(0x0, &(0x7f00000000c0)='fd/3\x00') r1 = syz_open_dev$swradio(&(0x7f0000000100)='/dev/swradio#\x00', 0x0, 0x2) mount$9p_fd(0x0, &(0x7f0000000300)='.\x00', &(0x7f0000000080)='9p\x00', 0x400000, &(0x7f0000000740)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}}) 21:38:19 executing program 2: set_mempolicy(0x8003, &(0x7f0000000300)=0x75f, 0x9) r0 = open(&(0x7f0000000300)='.\x00', 0x0, 0x0) symlinkat(&(0x7f0000000040)='\x13\x13w\xc5\xfc5\xd4\x14T\xd5\xd4\x1d)\xad\x1a`)Y\x81F\xe6\xbe\x16nA\xad\r\xbd@T\x03<\x9f3\xbb\xda\x82$\xa2\xf3\xd7r\xe7cnH\xb3<\xbfp\x83r\xe8\xf1\xb9\x93>\xc5\x12wC\xbe\"\x06 \x9e\xf0-\xf9\xcb\xf2\xf6\xe8\x80\xd38/\x00', r0, &(0x7f00000000c0)='./file0\x00') mkdirat(r0, &(0x7f0000000200)='\x13\x13w\xc5\xfc5\xd4\x14T\xd5\xd4\x1d)\xad\x1a`)Y\x81F\xe6\xbe\x16nA\xad\r\xbd@T\x03<\x9f3\xbb\xda\x82$\xa2\xf3\xd7r\xe7cnH\xb3<\xbfp\x83r\xe8\xf1\xb9\x93>\xc5\x12wC\xbe\"\x06 \x9e\xf0-\xf9\xcb\xf2\xf6\xe8\x80\xd38/\x00', 0x0) symlinkat(&(0x7f0000000340)='./file0/file0\x00', r0, &(0x7f0000000380)='\x13\x13w\xc5\xfc5\xd4\x14T\xd5\xd4\x1d)\xad\x1a`)Y\x81F\xe6\xbe\x16nA\xad\r\xbd@T\x03<\x9f3\xbb\xda\x82$\xa2\xf3\xd7r\xe7cnH\xb3<\xbfp\x83r\xe8\xf1\xb9\x93>\xc5\x12wC\xbe\"\x06 \x9e\xf0-\xf9\xcb\xf2\xf6\xe8\x80\xd38//file0\x00') r1 = open(&(0x7f0000000100)='.\x00', 0x0, 0x0) renameat2(r1, &(0x7f0000000400)='./file0/file0\x00', r1, &(0x7f0000000000)='./file0\x00', 0xfbffffff00000000) [ 239.774721][ T3648] kernel read not supported for file root/syzkaller-testdir496628174/syzkaller.h9GlBV/229 (pid: 3648 comm: kworker/1:2) [ 239.812215][ T8977] kernel read not supported for file root/syzkaller-testdir583426511/syzkaller.VVQl22/229 (pid: 8977 comm: kworker/0:3) 21:38:19 executing program 1: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) r3 = syz_open_procfs(0x0, &(0x7f00000000c0)='fd/3\x00') mount$9p_fd(0x0, &(0x7f0000000300)='.\x00', &(0x7f0000000080)='9p\x00', 0x8, &(0x7f00000003c0)={'trans=fd,', {'rfdno', 0x3d, r3}, 0x2c, {'wfdno', 0x3d, r2}}) [ 239.869758][T15734] loop0: detected capacity change from 512 to 0 [ 239.876491][ T8977] kernel read not supported for file root/syzkaller-testdir496628174/syzkaller.h9GlBV/230 (pid: 8977 comm: kworker/0:3) [ 239.888461][T15734] FAULT_INJECTION: forcing a failure. [ 239.888461][T15734] name failslab, interval 1, probability 0, space 0, times 0 [ 239.906141][ T3648] kernel read not supported for file root/syzkaller-testdir583426511/syzkaller.VVQl22/229 (pid: 3648 comm: kworker/1:2) [ 239.908980][ T8977] kernel read not supported for file root/syzkaller-testdir051064025/syzkaller.PVWmQb/232 (pid: 8977 comm: kworker/0:3) [ 239.932080][T15734] CPU: 0 PID: 15734 Comm: syz-executor.0 Not tainted 5.11.0-syzkaller #0 [ 239.940494][T15734] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 239.950540][T15734] Call Trace: [ 239.953807][T15734] dump_stack+0x116/0x15d [ 239.958128][T15734] should_fail+0x23c/0x250 [ 239.962526][T15734] ? jbd2__journal_start+0xf7/0x3f0 [ 239.967707][T15734] __should_failslab+0x81/0x90 [ 239.972451][T15734] should_failslab+0x5/0x20 [ 239.976963][T15734] kmem_cache_alloc+0x36/0x2e0 [ 239.981709][T15734] jbd2__journal_start+0xf7/0x3f0 [ 239.986773][T15734] __ext4_journal_start_sb+0x154/0x310 [ 239.992302][T15734] __ext4_new_inode+0xc57/0x3020 [ 239.997238][T15734] ext4_mkdir+0x28a/0x750 [ 240.001551][T15734] vfs_mkdir+0x288/0x350 [ 240.005775][T15734] do_mkdirat+0x132/0x220 [ 240.010086][T15734] __x64_sys_mkdir+0x32/0x40 [ 240.014666][T15734] do_syscall_64+0x39/0x80 [ 240.019063][T15734] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 240.024938][T15734] RIP: 0033:0x464ea7 [ 240.028812][T15734] Code: 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 83 c8 ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 b8 53 00 00 00 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 240.048444][T15734] RSP: 002b:00007f8175ef9fa8 EFLAGS: 00000213 ORIG_RAX: 0000000000000053 [ 240.056852][T15734] RAX: ffffffffffffffda RBX: 0000000020000200 RCX: 0000000000464ea7 [ 240.064924][T15734] RDX: 0000000000000004 RSI: 00000000000001ff RDI: 0000000020000100 [ 240.072937][T15734] RBP: 00007f8175efa040 R08: 0000000000000000 R09: ffffffffffffffff [ 240.080913][T15734] R10: 0000000000000000 R11: 0000000000000213 R12: 0000000020000000 [ 240.088886][T15734] R13: 0000000020000100 R14: 00007f8175efa000 R15: 0000000020000040 [ 240.099480][T15746] vivid-006: kernel_thread() failed [ 240.109817][ T3648] kernel read not supported for file root/syzkaller-testdir496628174/syzkaller.h9GlBV/230 (pid: 3648 comm: kworker/1:2) 21:38:20 executing program 2: set_mempolicy(0x8003, &(0x7f0000000300)=0x75f, 0x9) r0 = open(&(0x7f0000000300)='.\x00', 0x0, 0x0) symlinkat(&(0x7f0000000040)='\x13\x13w\xc5\xfc5\xd4\x14T\xd5\xd4\x1d)\xad\x1a`)Y\x81F\xe6\xbe\x16nA\xad\r\xbd@T\x03<\x9f3\xbb\xda\x82$\xa2\xf3\xd7r\xe7cnH\xb3<\xbfp\x83r\xe8\xf1\xb9\x93>\xc5\x12wC\xbe\"\x06 \x9e\xf0-\xf9\xcb\xf2\xf6\xe8\x80\xd38/\x00', r0, &(0x7f00000000c0)='./file0\x00') mkdirat(r0, &(0x7f0000000200)='\x13\x13w\xc5\xfc5\xd4\x14T\xd5\xd4\x1d)\xad\x1a`)Y\x81F\xe6\xbe\x16nA\xad\r\xbd@T\x03<\x9f3\xbb\xda\x82$\xa2\xf3\xd7r\xe7cnH\xb3<\xbfp\x83r\xe8\xf1\xb9\x93>\xc5\x12wC\xbe\"\x06 \x9e\xf0-\xf9\xcb\xf2\xf6\xe8\x80\xd38/\x00', 0x0) symlinkat(&(0x7f0000000340)='./file0/file0\x00', r0, &(0x7f0000000380)='\x13\x13w\xc5\xfc5\xd4\x14T\xd5\xd4\x1d)\xad\x1a`)Y\x81F\xe6\xbe\x16nA\xad\r\xbd@T\x03<\x9f3\xbb\xda\x82$\xa2\xf3\xd7r\xe7cnH\xb3<\xbfp\x83r\xe8\xf1\xb9\x93>\xc5\x12wC\xbe\"\x06 \x9e\xf0-\xf9\xcb\xf2\xf6\xe8\x80\xd38//file0\x00') r1 = open(&(0x7f0000000100)='.\x00', 0x0, 0x0) renameat2(r1, &(0x7f0000000400)='./file0/file0\x00', r1, &(0x7f0000000000)='./file0\x00', 0xfeffffff00000000) 21:38:20 executing program 4: set_mempolicy(0x8003, &(0x7f0000000300)=0x75f, 0x9) open(&(0x7f0000000300)='.\x00', 0x0, 0x0) r0 = syz_open_procfs(0x0, &(0x7f00000000c0)='fd/3\x00') r1 = syz_open_dev$swradio(&(0x7f0000000100)='/dev/swradio#\x00', 0x0, 0x2) mount$9p_fd(0x0, &(0x7f0000000300)='.\x00', &(0x7f0000000080)='9p\x00', 0x25, &(0x7f0000000740)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}}) 21:38:20 executing program 3: set_mempolicy(0x8003, &(0x7f0000000300)=0x75f, 0x9) open(&(0x7f0000000300)='.\x00', 0x0, 0x0) r0 = syz_open_procfs(0x0, &(0x7f00000000c0)='fd/3\x00') r1 = syz_open_dev$swradio(&(0x7f0000000100)='/dev/swradio#\x00', 0x0, 0x2) mount$9p_fd(0x0, &(0x7f0000000300)='.\x00', &(0x7f0000000080)='9p\x00', 0xe00, &(0x7f0000000740)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}}) 21:38:20 executing program 5: set_mempolicy(0x8003, &(0x7f0000000300)=0x75f, 0x9) open(&(0x7f0000000300)='.\x00', 0x0, 0x0) r0 = syz_open_procfs(0x0, &(0x7f00000000c0)='fd/3\x00') r1 = syz_open_dev$swradio(&(0x7f0000000100)='/dev/swradio#\x00', 0x0, 0x2) mount$9p_fd(0x0, &(0x7f0000000300)='.\x00', &(0x7f0000000080)='9p\x00', 0xfeffff, &(0x7f0000000740)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}}) [ 240.150427][ T3648] kernel read not supported for file root/syzkaller-testdir051064025/syzkaller.PVWmQb/232 (pid: 3648 comm: kworker/1:2) [ 240.185168][T15756] 9pnet: Insufficient options for proto=fd 21:38:20 executing program 4: set_mempolicy(0x8003, &(0x7f0000000300)=0x75f, 0x9) open(&(0x7f0000000300)='.\x00', 0x0, 0x0) r0 = syz_open_procfs(0x0, &(0x7f00000000c0)='fd/3\x00') r1 = syz_open_dev$swradio(&(0x7f0000000100)='/dev/swradio#\x00', 0x0, 0x2) mount$9p_fd(0x0, &(0x7f0000000300)='.\x00', &(0x7f0000000080)='9p\x00', 0x5c, &(0x7f0000000740)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}}) 21:38:20 executing program 2: set_mempolicy(0x8003, &(0x7f0000000300)=0x75f, 0x9) r0 = open(&(0x7f0000000300)='.\x00', 0x0, 0x0) symlinkat(&(0x7f0000000040)='\x13\x13w\xc5\xfc5\xd4\x14T\xd5\xd4\x1d)\xad\x1a`)Y\x81F\xe6\xbe\x16nA\xad\r\xbd@T\x03<\x9f3\xbb\xda\x82$\xa2\xf3\xd7r\xe7cnH\xb3<\xbfp\x83r\xe8\xf1\xb9\x93>\xc5\x12wC\xbe\"\x06 \x9e\xf0-\xf9\xcb\xf2\xf6\xe8\x80\xd38/\x00', r0, &(0x7f00000000c0)='./file0\x00') mkdirat(r0, &(0x7f0000000200)='\x13\x13w\xc5\xfc5\xd4\x14T\xd5\xd4\x1d)\xad\x1a`)Y\x81F\xe6\xbe\x16nA\xad\r\xbd@T\x03<\x9f3\xbb\xda\x82$\xa2\xf3\xd7r\xe7cnH\xb3<\xbfp\x83r\xe8\xf1\xb9\x93>\xc5\x12wC\xbe\"\x06 \x9e\xf0-\xf9\xcb\xf2\xf6\xe8\x80\xd38/\x00', 0x0) symlinkat(&(0x7f0000000340)='./file0/file0\x00', r0, &(0x7f0000000380)='\x13\x13w\xc5\xfc5\xd4\x14T\xd5\xd4\x1d)\xad\x1a`)Y\x81F\xe6\xbe\x16nA\xad\r\xbd@T\x03<\x9f3\xbb\xda\x82$\xa2\xf3\xd7r\xe7cnH\xb3<\xbfp\x83r\xe8\xf1\xb9\x93>\xc5\x12wC\xbe\"\x06 \x9e\xf0-\xf9\xcb\xf2\xf6\xe8\x80\xd38//file0\x00') r1 = open(&(0x7f0000000100)='.\x00', 0x0, 0x0) renameat2(r1, &(0x7f0000000400)='./file0/file0\x00', r1, &(0x7f0000000000)='./file0\x00', 0xff00000000000000) [ 240.276476][T15734] EXT4-fs error (device sda1) in __ext4_new_inode:1081: Out of memory [ 240.280465][ T8977] kernel read not supported for file root/syzkaller-testdir496628174/syzkaller.h9GlBV/231 (pid: 8977 comm: kworker/0:3) 21:38:20 executing program 5: set_mempolicy(0x8003, &(0x7f0000000300)=0x75f, 0x9) open(&(0x7f0000000300)='.\x00', 0x0, 0x0) r0 = syz_open_procfs(0x0, &(0x7f00000000c0)='fd/3\x00') r1 = syz_open_dev$swradio(&(0x7f0000000100)='/dev/swradio#\x00', 0x0, 0x2) mount$9p_fd(0x0, &(0x7f0000000300)='.\x00', &(0x7f0000000080)='9p\x00', 0x1000000, &(0x7f0000000740)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}}) 21:38:20 executing program 0 (fault-call:0 fault-nth:44): syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x40000, 0x3, &(0x7f0000000200)=[{&(0x7f0000010000)="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", 0x10c, 0x400}, {&(0x7f0000010200)="0500000000000000000000000000000000000000040100002b", 0x19, 0x560}, {&(0x7f0000010300)="000000000000000000000000000000000000000000000000000000001481910a040000001400000024", 0x29, 0x7e0}], 0x0, &(0x7f0000000040)={[{@usrjquota='usrjquota='}, {@data_err_abort='data_err=abort'}]}) 21:38:20 executing program 4: set_mempolicy(0x8003, &(0x7f0000000300)=0x75f, 0x9) open(&(0x7f0000000300)='.\x00', 0x0, 0x0) r0 = syz_open_procfs(0x0, &(0x7f00000000c0)='fd/3\x00') r1 = syz_open_dev$swradio(&(0x7f0000000100)='/dev/swradio#\x00', 0x0, 0x2) mount$9p_fd(0x0, &(0x7f0000000300)='.\x00', &(0x7f0000000080)='9p\x00', 0x300, &(0x7f0000000740)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}}) 21:38:20 executing program 2: set_mempolicy(0x8003, &(0x7f0000000300)=0x75f, 0x9) r0 = open(&(0x7f0000000300)='.\x00', 0x0, 0x0) symlinkat(&(0x7f0000000040)='\x13\x13w\xc5\xfc5\xd4\x14T\xd5\xd4\x1d)\xad\x1a`)Y\x81F\xe6\xbe\x16nA\xad\r\xbd@T\x03<\x9f3\xbb\xda\x82$\xa2\xf3\xd7r\xe7cnH\xb3<\xbfp\x83r\xe8\xf1\xb9\x93>\xc5\x12wC\xbe\"\x06 \x9e\xf0-\xf9\xcb\xf2\xf6\xe8\x80\xd38/\x00', r0, &(0x7f00000000c0)='./file0\x00') mkdirat(r0, &(0x7f0000000200)='\x13\x13w\xc5\xfc5\xd4\x14T\xd5\xd4\x1d)\xad\x1a`)Y\x81F\xe6\xbe\x16nA\xad\r\xbd@T\x03<\x9f3\xbb\xda\x82$\xa2\xf3\xd7r\xe7cnH\xb3<\xbfp\x83r\xe8\xf1\xb9\x93>\xc5\x12wC\xbe\"\x06 \x9e\xf0-\xf9\xcb\xf2\xf6\xe8\x80\xd38/\x00', 0x0) symlinkat(&(0x7f0000000340)='./file0/file0\x00', r0, &(0x7f0000000380)='\x13\x13w\xc5\xfc5\xd4\x14T\xd5\xd4\x1d)\xad\x1a`)Y\x81F\xe6\xbe\x16nA\xad\r\xbd@T\x03<\x9f3\xbb\xda\x82$\xa2\xf3\xd7r\xe7cnH\xb3<\xbfp\x83r\xe8\xf1\xb9\x93>\xc5\x12wC\xbe\"\x06 \x9e\xf0-\xf9\xcb\xf2\xf6\xe8\x80\xd38//file0\x00') r1 = open(&(0x7f0000000100)='.\x00', 0x0, 0x0) renameat2(r1, &(0x7f0000000400)='./file0/file0\x00', r1, &(0x7f0000000000)='./file0\x00', 0xffffff7f00000000) 21:38:20 executing program 1: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) r3 = syz_open_procfs(0x0, &(0x7f00000000c0)='fd/3\x00') mount$9p_fd(0x0, &(0x7f0000000300)='.\x00', &(0x7f0000000080)='9p\x00', 0x9, &(0x7f00000003c0)={'trans=fd,', {'rfdno', 0x3d, r3}, 0x2c, {'wfdno', 0x3d, r2}}) [ 240.364812][T15780] 9pnet: Insufficient options for proto=fd 21:38:20 executing program 3: set_mempolicy(0x8003, &(0x7f0000000300)=0x75f, 0x9) open(&(0x7f0000000300)='.\x00', 0x0, 0x0) r0 = syz_open_procfs(0x0, &(0x7f00000000c0)='fd/3\x00') r1 = syz_open_dev$swradio(&(0x7f0000000100)='/dev/swradio#\x00', 0x0, 0x2) mount$9p_fd(0x0, &(0x7f0000000300)='.\x00', &(0x7f0000000080)='9p\x00', 0x1020, &(0x7f0000000740)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}}) [ 240.426684][T15790] loop0: detected capacity change from 512 to 0 [ 240.458586][T15790] FAULT_INJECTION: forcing a failure. [ 240.458586][T15790] name failslab, interval 1, probability 0, space 0, times 0 [ 240.494925][T15790] CPU: 1 PID: 15790 Comm: syz-executor.0 Not tainted 5.11.0-syzkaller #0 [ 240.503461][T15790] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 240.513595][T15790] Call Trace: [ 240.516865][T15790] dump_stack+0x116/0x15d [ 240.521207][T15790] should_fail+0x23c/0x250 [ 240.525624][T15790] __should_failslab+0x81/0x90 [ 240.530388][T15790] ? kcalloc+0x32/0x50 [ 240.534460][T15790] should_failslab+0x5/0x20 [ 240.539091][T15790] __kmalloc+0x59/0x360 21:38:20 executing program 2: set_mempolicy(0x8003, &(0x7f0000000300)=0x75f, 0x9) r0 = open(&(0x7f0000000300)='.\x00', 0x0, 0x0) symlinkat(&(0x7f0000000040)='\x13\x13w\xc5\xfc5\xd4\x14T\xd5\xd4\x1d)\xad\x1a`)Y\x81F\xe6\xbe\x16nA\xad\r\xbd@T\x03<\x9f3\xbb\xda\x82$\xa2\xf3\xd7r\xe7cnH\xb3<\xbfp\x83r\xe8\xf1\xb9\x93>\xc5\x12wC\xbe\"\x06 \x9e\xf0-\xf9\xcb\xf2\xf6\xe8\x80\xd38/\x00', r0, &(0x7f00000000c0)='./file0\x00') mkdirat(r0, &(0x7f0000000200)='\x13\x13w\xc5\xfc5\xd4\x14T\xd5\xd4\x1d)\xad\x1a`)Y\x81F\xe6\xbe\x16nA\xad\r\xbd@T\x03<\x9f3\xbb\xda\x82$\xa2\xf3\xd7r\xe7cnH\xb3<\xbfp\x83r\xe8\xf1\xb9\x93>\xc5\x12wC\xbe\"\x06 \x9e\xf0-\xf9\xcb\xf2\xf6\xe8\x80\xd38/\x00', 0x0) symlinkat(&(0x7f0000000340)='./file0/file0\x00', r0, &(0x7f0000000380)='\x13\x13w\xc5\xfc5\xd4\x14T\xd5\xd4\x1d)\xad\x1a`)Y\x81F\xe6\xbe\x16nA\xad\r\xbd@T\x03<\x9f3\xbb\xda\x82$\xa2\xf3\xd7r\xe7cnH\xb3<\xbfp\x83r\xe8\xf1\xb9\x93>\xc5\x12wC\xbe\"\x06 \x9e\xf0-\xf9\xcb\xf2\xf6\xe8\x80\xd38//file0\x00') r1 = open(&(0x7f0000000100)='.\x00', 0x0, 0x0) renameat2(r1, &(0x7f0000000400)='./file0/file0\x00', r1, &(0x7f0000000000)='./file0\x00', 0xffffffff00000000) [ 240.543244][T15790] ? crc32c_pcl_intel_update+0x164/0x180 [ 240.548877][T15790] kcalloc+0x32/0x50 [ 240.552854][T15790] ext4_find_extent+0x21c/0x7f0 [ 240.557706][T15790] ? __find_get_block+0x4de/0x640 [ 240.562730][T15790] ext4_ext_map_blocks+0xd9/0x1fd0 [ 240.567842][T15790] ? __ext4_handle_dirty_metadata+0x146/0x5a0 [ 240.573936][T15790] ? __down_read_common+0x14e/0x510 [ 240.579190][T15790] ? ext4_es_lookup_extent+0x221/0x500 [ 240.584647][T15790] ext4_map_blocks+0x1d1/0xff0 [ 240.589415][T15790] ext4_getblk+0xb1/0x3c0 21:38:20 executing program 3: set_mempolicy(0x8003, &(0x7f0000000300)=0x75f, 0x9) open(&(0x7f0000000300)='.\x00', 0x0, 0x0) r0 = syz_open_procfs(0x0, &(0x7f00000000c0)='fd/3\x00') r1 = syz_open_dev$swradio(&(0x7f0000000100)='/dev/swradio#\x00', 0x0, 0x2) mount$9p_fd(0x0, &(0x7f0000000300)='.\x00', &(0x7f0000000080)='9p\x00', 0x1100, &(0x7f0000000740)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}}) [ 240.593837][T15790] ext4_bread+0x28/0x130 [ 240.598077][T15790] ext4_append+0xd1/0x1c0 [ 240.602404][T15790] ext4_init_new_dir+0x177/0x500 [ 240.607485][T15790] ext4_mkdir+0x329/0x750 [ 240.611902][T15790] vfs_mkdir+0x288/0x350 [ 240.616146][T15790] do_mkdirat+0x132/0x220 [ 240.620570][T15790] __x64_sys_mkdir+0x32/0x40 [ 240.625157][T15790] do_syscall_64+0x39/0x80 [ 240.629566][T15790] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 240.635454][T15790] RIP: 0033:0x464ea7 [ 240.639511][T15790] Code: 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 83 c8 ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 b8 53 00 00 00 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 240.659205][T15790] RSP: 002b:00007f8175ef9fa8 EFLAGS: 00000213 ORIG_RAX: 0000000000000053 [ 240.667616][T15790] RAX: ffffffffffffffda RBX: 0000000020000200 RCX: 0000000000464ea7 [ 240.675580][T15790] RDX: 0000000000000004 RSI: 00000000000001ff RDI: 0000000020000100 [ 240.683554][T15790] RBP: 00007f8175efa040 R08: 0000000000000000 R09: ffffffffffffffff 21:38:20 executing program 2: set_mempolicy(0x8003, &(0x7f0000000300)=0x75f, 0x9) r0 = open(&(0x7f0000000300)='.\x00', 0x0, 0x0) symlinkat(&(0x7f0000000040)='\x13\x13w\xc5\xfc5\xd4\x14T\xd5\xd4\x1d)\xad\x1a`)Y\x81F\xe6\xbe\x16nA\xad\r\xbd@T\x03<\x9f3\xbb\xda\x82$\xa2\xf3\xd7r\xe7cnH\xb3<\xbfp\x83r\xe8\xf1\xb9\x93>\xc5\x12wC\xbe\"\x06 \x9e\xf0-\xf9\xcb\xf2\xf6\xe8\x80\xd38/\x00', r0, &(0x7f00000000c0)='./file0\x00') mkdirat(r0, &(0x7f0000000200)='\x13\x13w\xc5\xfc5\xd4\x14T\xd5\xd4\x1d)\xad\x1a`)Y\x81F\xe6\xbe\x16nA\xad\r\xbd@T\x03<\x9f3\xbb\xda\x82$\xa2\xf3\xd7r\xe7cnH\xb3<\xbfp\x83r\xe8\xf1\xb9\x93>\xc5\x12wC\xbe\"\x06 \x9e\xf0-\xf9\xcb\xf2\xf6\xe8\x80\xd38/\x00', 0x0) symlinkat(&(0x7f0000000340)='./file0/file0\x00', r0, &(0x7f0000000380)='\x13\x13w\xc5\xfc5\xd4\x14T\xd5\xd4\x1d)\xad\x1a`)Y\x81F\xe6\xbe\x16nA\xad\r\xbd@T\x03<\x9f3\xbb\xda\x82$\xa2\xf3\xd7r\xe7cnH\xb3<\xbfp\x83r\xe8\xf1\xb9\x93>\xc5\x12wC\xbe\"\x06 \x9e\xf0-\xf9\xcb\xf2\xf6\xe8\x80\xd38//file0\x00') r1 = open(&(0x7f0000000100)='.\x00', 0x0, 0x0) renameat2(r1, &(0x7f0000000400)='./file0/file0\x00', r1, &(0x7f0000000000)='./file0\x00', 0xffffffffffffffff) 21:38:20 executing program 3: set_mempolicy(0x8003, &(0x7f0000000300)=0x75f, 0x9) open(&(0x7f0000000300)='.\x00', 0x0, 0x0) r0 = syz_open_procfs(0x0, &(0x7f00000000c0)='fd/3\x00') r1 = syz_open_dev$swradio(&(0x7f0000000100)='/dev/swradio#\x00', 0x0, 0x2) mount$9p_fd(0x0, &(0x7f0000000300)='.\x00', &(0x7f0000000080)='9p\x00', 0x1200, &(0x7f0000000740)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}}) [ 240.691520][T15790] R10: 0000000000000000 R11: 0000000000000213 R12: 0000000020000000 [ 240.699678][T15790] R13: 0000000020000100 R14: 00007f8175efa000 R15: 0000000020000040 [ 240.712491][T15790] EXT4-fs (loop0): ext4_check_descriptors: Checksum for group 0 failed (38247!=0) [ 240.734282][T15803] 9pnet: Insufficient options for proto=fd 21:38:20 executing program 5: set_mempolicy(0x8003, &(0x7f0000000300)=0x75f, 0x9) open(&(0x7f0000000300)='.\x00', 0x0, 0x0) r0 = syz_open_procfs(0x0, &(0x7f00000000c0)='fd/3\x00') r1 = syz_open_dev$swradio(&(0x7f0000000100)='/dev/swradio#\x00', 0x0, 0x2) mount$9p_fd(0x0, &(0x7f0000000300)='.\x00', &(0x7f0000000080)='9p\x00', 0x2000000, &(0x7f0000000740)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}}) [ 240.748033][T15790] EXT4-fs (loop0): group descriptors corrupted! [ 240.757393][T15824] 9pnet: Insufficient options for proto=fd 21:38:20 executing program 4: set_mempolicy(0x8003, &(0x7f0000000300)=0x75f, 0x9) open(&(0x7f0000000300)='.\x00', 0x0, 0x0) r0 = syz_open_procfs(0x0, &(0x7f00000000c0)='fd/3\x00') r1 = syz_open_dev$swradio(&(0x7f0000000100)='/dev/swradio#\x00', 0x0, 0x2) mount$9p_fd(0x0, &(0x7f0000000300)='.\x00', &(0x7f0000000080)='9p\x00', 0x500, &(0x7f0000000740)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}}) 21:38:20 executing program 5: set_mempolicy(0x8003, &(0x7f0000000300)=0x75f, 0x9) open(&(0x7f0000000300)='.\x00', 0x0, 0x0) r0 = syz_open_procfs(0x0, &(0x7f00000000c0)='fd/3\x00') r1 = syz_open_dev$swradio(&(0x7f0000000100)='/dev/swradio#\x00', 0x0, 0x2) mount$9p_fd(0x0, &(0x7f0000000300)='.\x00', &(0x7f0000000080)='9p\x00', 0x3000000, &(0x7f0000000740)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}}) 21:38:20 executing program 0 (fault-call:0 fault-nth:45): syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x40000, 0x3, &(0x7f0000000200)=[{&(0x7f0000010000)="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", 0x10c, 0x400}, {&(0x7f0000010200)="0500000000000000000000000000000000000000040100002b", 0x19, 0x560}, {&(0x7f0000010300)="000000000000000000000000000000000000000000000000000000001481910a040000001400000024", 0x29, 0x7e0}], 0x0, &(0x7f0000000040)={[{@usrjquota='usrjquota='}, {@data_err_abort='data_err=abort'}]}) 21:38:20 executing program 3: set_mempolicy(0x8003, &(0x7f0000000300)=0x75f, 0x9) open(&(0x7f0000000300)='.\x00', 0x0, 0x0) r0 = syz_open_procfs(0x0, &(0x7f00000000c0)='fd/3\x00') r1 = syz_open_dev$swradio(&(0x7f0000000100)='/dev/swradio#\x00', 0x0, 0x2) mount$9p_fd(0x0, &(0x7f0000000300)='.\x00', &(0x7f0000000080)='9p\x00', 0x2010, &(0x7f0000000740)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}}) 21:38:20 executing program 2: set_mempolicy(0x8003, &(0x7f0000000300)=0x75f, 0x9) r0 = open(&(0x7f0000000300)='.\x00', 0x280, 0x0) symlinkat(&(0x7f0000000040)='\x13\x13w\xc5\xfc5\xd4\x14T\xd5\xd4\x1d)\xad\x1a`)Y\x81F\xe6\xbe\x16nA\xad\r\xbd@T\x03<\x9f3\xbb\xda\x82$\xa2\xf3\xd7r\xe7cnH\xb3<\xbfp\x83r\xe8\xf1\xb9\x93>\xc5\x12wC\xbe\"\x06 \x9e\xf0-\xf9\xcb\xf2\xf6\xe8\x80\xd38/\x00', r0, &(0x7f00000000c0)='./file0\x00') mkdirat(r0, &(0x7f0000000200)='\x13\x13w\xc5\xfc5\xd4\x14T\xd5\xd4\x1d)\xad\x1a`)Y\x81F\xe6\xbe\x16nA\xad\r\xbd@T\x03<\x9f3\xbb\xda\x82$\xa2\xf3\xd7r\xe7cnH\xb3<\xbfp\x83r\xe8\xf1\xb9\x93>\xc5\x12wC\xbe\"\x06 \x9e\xf0-\xf9\xcb\xf2\xf6\xe8\x80\xd38/\x00', 0x0) symlinkat(&(0x7f0000000340)='./file0/file0\x00', r0, &(0x7f0000000380)='\x13\x13w\xc5\xfc5\xd4\x14T\xd5\xd4\x1d)\xad\x1a`)Y\x81F\xe6\xbe\x16nA\xad\r\xbd@T\x03<\x9f3\xbb\xda\x82$\xa2\xf3\xd7r\xe7cnH\xb3<\xbfp\x83r\xe8\xf1\xb9\x93>\xc5\x12wC\xbe\"\x06 \x9e\xf0-\xf9\xcb\xf2\xf6\xe8\x80\xd38//file0\x00') r1 = open(&(0x7f0000000100)='.\x00', 0x0, 0x0) renameat2(r1, &(0x7f0000000400)='./file0/file0\x00', r1, &(0x7f0000000000)='./file0\x00', 0x0) 21:38:20 executing program 1: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) r3 = syz_open_procfs(0x0, &(0x7f00000000c0)='fd/3\x00') mount$9p_fd(0x0, &(0x7f0000000300)='.\x00', &(0x7f0000000080)='9p\x00', 0xa, &(0x7f00000003c0)={'trans=fd,', {'rfdno', 0x3d, r3}, 0x2c, {'wfdno', 0x3d, r2}}) 21:38:20 executing program 1: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) r3 = syz_open_procfs(0x0, &(0x7f00000000c0)='fd/3\x00') mount$9p_fd(0x0, &(0x7f0000000300)='.\x00', &(0x7f0000000080)='9p\x00', 0xb, &(0x7f00000003c0)={'trans=fd,', {'rfdno', 0x3d, r3}, 0x2c, {'wfdno', 0x3d, r2}}) [ 240.960652][T15860] loop0: detected capacity change from 512 to 0 [ 240.972175][T15860] FAULT_INJECTION: forcing a failure. [ 240.972175][T15860] name failslab, interval 1, probability 0, space 0, times 0 [ 240.984970][T15860] CPU: 0 PID: 15860 Comm: syz-executor.0 Not tainted 5.11.0-syzkaller #0 [ 240.993382][T15860] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 241.003463][T15860] Call Trace: [ 241.006745][T15860] dump_stack+0x116/0x15d [ 241.011121][T15860] should_fail+0x23c/0x250 [ 241.015587][T15860] __should_failslab+0x81/0x90 [ 241.020364][T15860] ? kcalloc+0x32/0x50 [ 241.024430][T15860] should_failslab+0x5/0x20 [ 241.028930][T15860] __kmalloc+0x59/0x360 [ 241.033082][T15860] ? kcalloc+0x32/0x50 [ 241.037146][T15860] kcalloc+0x32/0x50 [ 241.041721][T15860] ext4_find_extent+0x21c/0x7f0 [ 241.047315][T15860] ext4_ext_map_blocks+0xd9/0x1fd0 [ 241.052424][T15860] ? __ext4_handle_dirty_metadata+0x146/0x5a0 [ 241.058490][T15860] ? __down_write_common+0x45/0x870 [ 241.063748][T15860] ? __down_read_common+0x14e/0x510 [ 241.068971][T15860] ? ext4_es_lookup_extent+0x221/0x500 [ 241.074499][T15860] ext4_map_blocks+0x726/0xff0 [ 241.079261][T15860] ext4_getblk+0xb1/0x3c0 [ 241.083659][T15860] ext4_bread+0x28/0x130 [ 241.087882][T15860] ext4_append+0xd1/0x1c0 [ 241.092192][T15860] ext4_init_new_dir+0x177/0x500 [ 241.097179][T15860] ext4_mkdir+0x329/0x750 [ 241.101559][T15860] vfs_mkdir+0x288/0x350 [ 241.105782][T15860] do_mkdirat+0x132/0x220 [ 241.110112][T15860] __x64_sys_mkdir+0x32/0x40 [ 241.114683][T15860] do_syscall_64+0x39/0x80 [ 241.119135][T15860] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 241.125256][T15860] RIP: 0033:0x464ea7 [ 241.129129][T15860] Code: 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 83 c8 ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 b8 53 00 00 00 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 241.148715][T15860] RSP: 002b:00007f8175ef9fa8 EFLAGS: 00000213 ORIG_RAX: 0000000000000053 21:38:21 executing program 3: set_mempolicy(0x8003, &(0x7f0000000300)=0x75f, 0x9) open(&(0x7f0000000300)='.\x00', 0x0, 0x0) r0 = syz_open_procfs(0x0, &(0x7f00000000c0)='fd/3\x00') r1 = syz_open_dev$swradio(&(0x7f0000000100)='/dev/swradio#\x00', 0x0, 0x2) mount$9p_fd(0x0, &(0x7f0000000300)='.\x00', &(0x7f0000000080)='9p\x00', 0x2500, &(0x7f0000000740)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}}) 21:38:21 executing program 2: r0 = syz_open_procfs(0x0, &(0x7f00000000c0)='fd/3\x00') r1 = syz_open_dev$swradio(&(0x7f0000000100)='/dev/swradio#\x00', 0x0, 0x2) mount$9p_fd(0x0, &(0x7f0000000300)='.\x00', &(0x7f0000000080)='9p\x00', 0x0, &(0x7f0000000740)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}}) setsockopt$inet_opts(r0, 0x0, 0x9, &(0x7f0000000440)="7ea35f373ff959461d3dde9a8a8ba52b8c7f7fba9270a59dac8541fe959732b74e3b2836c907ec9cf40a2351eae5f88846cc692a3e161f41158808e9995e493b4b64f1803bc8e4fe06b00b0b8a2362163b1f385e32ede877db3a9e81a7dc36c31ea1c4b2ddd8ea5b1b71ca3e896a84538101721d4f207801ef3b1c41c5ebac1bf1ef777ae7337c32a9942d1cea42508c0059f2aeb5978da0892dd0437ec16985dfd7c36928dc196f63ea92cdb01fdf00edd08486bc91208a570e5714a074ffe6f8e88fb23aa9dbacc84e77d5edc96550202dedb0fe7bfb8459f141bddd6e15c3b16f9a683c1238c03718f87944a0ed9df19edde48845db03b0098ec408d752743342bc5d509275454edc8fc9f6d45f3119cdf101e40552024bf9b4dd92678c6f8c402a5932fdb9e1e2d31eb0705d6a4558ad9be0b9c97e23fb999bfa71e88a7448d734224c7a7c07efcc11e7dd0de4ac3153f883b92072ea2557661db46adae3801ff412ffcec0193911491130ff37f7aa26139ac1d44f9e6022355a590c27a81cd72ca64f7befdecf58eab0002127257f981eff3ba0cc4de5478f014719c75d4a181241640e8d30dab813d9a29ede665910eac938382d6de2ff8c1852e846b05e819a023e0ceb29a0438c8f4cc950be9989cffcae9c8ec4338821dd5c4a298391ba3942fe60b4132df53d63d78570c4c0f1081611eac56acbc2f1873d295e33ef9799e3d52fba20e7e79434b22dddbb1e8f351451134309fad6117ff74d9f930f05d93c7317cd9df1b40ef7f98c93aff0841bdcdde6b6f2cb451e145be440bff93d1c33baf86992093752614bae6ed51cfbd10eb78fc41f730bc7199d6d0f6250918a387c13668f2703f2f0a859956762ffd98682a46c6d9e7b0fdea862b68632d25ddca1ae7043a98374203f51946e7586016bbc6ebd0566d842840e495d7389711859c8209fd3fef0531924aa2f037d8277452e4c86696b7939bbb6d961fc071dc2c8a2239448dfad3e1682d73bc8b2d19fe922b60dda64bc84517bf9e442ad1004b6302bcf375861a40c1fadd629dd8368efd98b013d41fe39bb25410b509c835b30f22a5a28555d8fa2a61d294b03741d5575f5b9112e3ffb34a9b114d6a3ad4170bd2cbf0b5771acff495c9dbfc0fdb5d7b86f9b268f3372ec660e50451e8aed58ef16a7ed0bc4bf63b54981325ed622a47896fb1a9c98fb5b389d22a118d95822a12dd513fc03d4beeefc9e293041926f3dcf16b288dce0845735c921a88c580c843b864e40bc2b803c13a70f33cdb316a620d16cdd447de608cac5dd46aaa84de63875acd178bf1f91f3f68fc682f4d2793a0bc52a640d0783ff8daf2372947614ef65bf7bb48b6abbeed10b231ab7849df2c2f46b15089722aa7f579fdf77ee641294dd334f6d8573a31e63dacc104057fd78b57ee762ec25e70b2042f0c4ccfd67bcdcf655d7dc5903a76460874d94691f983d28e276e28aedce88cd9d765b62601f5a55bbce48fdfa6fad5f73aaf00c4bf0f294794e084a72e02e7afa3fb4386c83c91bcc964972d6d3103726a0fe42b48172b0fc4cfd8c137c71c9f7baf7d432b6e20130ccae88165841314eeda935e436d0e90e83cc0b8d90ae2e097e06860a6d076697d4da11ebe4b9a6c36936f33a2e52945fd187647dd3a04d4f006e0f0fb3dba330a6c99476a0e2d817b860ddaa58e9b899915d8da155462151ba71e6e0c933c91c55b6611967f0affcf8161b805c043b8a9333cd727403de80f759330e366b77e03547e9b718f5dea14a335d2217fbb575d37bced016a8d5f325d860f6d077a5d101879655eb89a3b936f31983d1275630108db5bb00af812350efb7fd6877ea66f8f8b9c5b580596d869911703b8416da0c4a42e13c1dbe6329da1bdc83495338856eb6219cbdb1e3e9193f39a9c4c75588bc8a7d277094925793299cddd7cf409ff31ab55f80e6e74d2fec8e44e521fd64765f9cecfcef73beabd6f4f08e42950dcc29a84c51abe4e136762230fc3ad8843ae961300344931c594d9a28391654c286d1e6af32776ff479040a2a4f739f8bdf67b718b8bb3139598db2be54ec8d57805a2ccb8588b3c1f741fd92520fa9a1aceb2a3b0f7d08097c52a1cf9dc1660bcf477481a8d191979d7a057a13b0f5c73e12af945e9f87ef316cd3cfe9737595656ec560dd2acac69e136bbcfadcb3d9848724040efb38304ae27f434cdce19acc7c86c724ca39a8ede179f1d38df2fe1ba3391d5560d05bebaba64e6ed3835f80ed604517e9cea381d794910230b625ab56c241dead76b0e680fc159f199f31e2c032e187f7e126c0b2c2d905b9452329e1e93e2c1d5c42b0900be89aa0f0466270cf4a4c6f9963cbf7c7e78408919e583f09d7c74beb9819a3f9eb4cc9d122f611bc72672ae5925e0dcf0dd93663524f994d57792a3266c9acbaed2b7f404d13f6c0f84906a9db6e3ec482a7627059620deadaf98f06ba4702ae05f9e9e484b297d0e4e1d2e63ffcb780f364fc92ed6f4d1b15cef8d200a6ad2de01e4356bf5cb4b2916d7557e7cddcc4bc878205d22206c40b812fe53bad7edc9f851631693b9eee14b40bf44f4bcb3f837ed76f15673ef08aa5a4c192dbfc17e469b4c23ae7d2bc2efbf7ab04b90dc2a103e4a7ff2e5103081b0a0ea60477a70b37d3313ebb00414ce597e369c96952246bcf2a2de79dc0e163ab47d1debd1b39c46cb23eddef976a9899a4f55420cb8ffe74ac3a8844acec08af99747ea87a103abd8eff5579dbc689aa3404d8534cbdb3a1518ead73392c06fa8178bbfbeba6dd19d5566c05f9ce3d6078625357f09f0f28e4b6adb0e3bce7bdc554b2622e52c43d703c820b5a3b86dd703d316933aa40d26d1f6d14c8d32875ef408c97dfba0ab9bf18be55fc4d8d3eed4b04b1d77d54becf362613cd6b4d9eaeb1757f9a19a914d9852c4fd14a9335f0dd7caa112eae2fb8de5566d9fd91bd1471a1ed9adc45e4e23f5cdcc0995c373c5f0ce0762b945f7b004d96661ace82e7dc708cdcac1479790c6ef3b1e133e5d1adb96f33a2e8eaadb6c6e00550471dc72e4c48ac9e004d6af6a96e64e5ab9c5335b257afefc6b66acde2170cedca68f590a1fa6e3a6382d42d27e889c3d6d6531a4c13397c41f1e2395517bbb974ff5a1b85d468ecd753d3334edf55c124e820422b7ed4f160223dff38564326ec9aa328f25f3f8a40006f46277cfa2f2c8120914b7949b25b56dbc87c8be22187717689e02a557f7311f464312a8730fd0d084d4e5ca4b8f16d0b0fb20cad7678bfa5b6f8bf9f03fd950be22ce70c1771f67a1def3902417c196e3c931629cbd99aef37df2baf0a1893b36a76254abbd078fc112822e1ffd9d7d2518c78f18f912e37e30c3ac1956feb1ed7b5ff27d390266ab4b83549642f1a4b9c1332ff321019217f2c960eb9b91954e855b4f4b95b3c6c13f98bcc2a757062d1349af80a8a6d2f2f31ca3c18a389f1529f9e4608e4756daf9e649c721e0a81027e2bf1a5cee57c5792f41e705073309e399763a05157692385d7f8d4bc0180bad00fc1b86c6cb9feff46b7985d12611aefcfc0dbc0918ff749beef3effed3af78ad36902dfc6f59f39c68a846fe955304158526bccbc764edc2de80921c5a0a2d86a578d2a7f86c448390281d2c7c47814abdbead7f021f80de85fae2ce14cb89310a3f4d4374a2c7f1e8cc77fed56f147ee52b0a949d720a112d6f0dc86b2207f3ef97230bfb889a908ddebb899f091a789c57fcd7e7a3c94e4b816533e2145eb836b74723fd7e034524ff37909a077ebe57d936700f69d293dc5bde871f8aa4f2eb2867770ad0e009467110f57afbfadf5335542c6cc3b0fa8f6d0771f8a3ee806b9148bcc52dd3c7b10b0eb9817eff62f0c258aa09336c7c696075bfe2af67e3ee7abbe1885b56c3276f92126f72a2835f46c54c0a26c56af357e4fc8df4431fbbc8a44b62131f2b8f853c1d31a62df14973fd832e041b27243cb765222ab48fd11c66b26d7fc224519bf5cf4f8ee812d2b7b754bc1b1421d2b62a40fc6fdce58d1c7847a1914584d739faf9b2873358d3fd076f5c896a6c9d0e71d5ab6d37c290fd9221fd3b84bf7924a01d1eae44b066ff680380d06e54dc1ce59c3a8a29e54ff3d3e723472fb34e7b5ab5e214e2cf89add6aed5cc71a3794cb0de745338e15b0562d5738d6c9d947dd519bdc6ed099e982fe7382d630e19341e8e2a93c379f84c4837aa9d976d13d65bc96f73f3e10d94a3af6800a1385df3fcb37352a22f6621c3eab1fbfcdd57f4f20b0e77fab73f842e72a2b7f40385deb6983f82cc421407eda83efd33692c7d908401a7ee27704a100b165bf958e2b165d42d6988ed1b9662555897335d1e3933ea6f05c42ac9d621ed44a5dd41b19d6c1ddafc9fd42e597e82f49c1f8f9b689750629b5cd8e339258147263d2478c738ce992b3479e901f966b95025c304e40d1738bf82bce95db95986db0e53300b30fa173c24ea294997506fc5540e8cf93951e3bbc4e793fd62e606b425b5ae31397f717b55ed0ec6f14b51adce6a6fe13b964d88c21e1c659a00578d9e99fc9246404bc5badc90b1942b7fd2bdf0dcc4cdad97350c6fd1e5143feb63ebd2fe790a4dedbe2c2a9854c8a12d6b55d627959486bae210fa089c91d354949fd929367c0195a36ad5df96fb395392c13a8496c431943a621f8768245a7bfff7c2c633ff8927f03849c8b906d528fa13ba53f17ae7432cdc89af74406b88c5039ccd83e91689d6f9b2a575b7ba48ab68f4a143bfcb808d8fff2af3a588a9b9f702d780551544a5ab18a1878487a45651bca9a4d46a64c72c8dfdd685177ad48759ffcc492f41ed4f53d9500026d958ff5fff35da80790f5f07a1e0ae437b83e736b4b74a25c1b09142041c3514774c38fcffa92aec06b4d429ea06264dd4cc1a6b68e1c6e6f3755b631bae87973bec3d07be9cbf54fe807621dc08c524fbee379a0dc260f827b12a5c53b5dc47871b273a5e593efc62d07db5d86f03ae7daf0ecf12e87408e9e3d36c0f7b720550b12234570e5039c882acf96dff7e3356c690da7e9324fec567a46a5bdfafcef8036d0ba921fd5efd2bd135ee6c686ee5da2271be50a4ee49f55c32ab735f026785926b81bf9ee79e848e2936c3f86a723caeeed357dbff5e5cdf93f718abe475ed132370781466cd32dd2b62b1929ae3adbf447e1f8901d3fda43814503bedbeae31a58333b6b83506180929fb3d54cca69ab0fd5b43b57d18e38d61206392ef8b03829f4c07acc11e89848b299d8c3aa470b1c42867c4173b3ebd3bd37cefae0a8f1f4f7608ffa6763244c0d5081e623a4f7d12ff86d681237aaf7b635924fa5fecc483371444b3fc98be49c69bd30bacd0d56b87d8a077b8bd7c7cc9aa554c3c097ea05e7eb191bc01efd1a97bc992ff4b1ed69d4e9c0f836f3dbb022aee0604b77daf3c40bc23d1c7864f700f9b32e3e66b84a36feb0d2956698ab70d85da3ba04a1742e76fd05aff54df3d46a396f75ecba20dc1349af95a5db0320d5bfd33773385a7997029b06c570c2b6317e47dafe9577ff13c56f58c95d46996bb84f7580335e906dc3ea07753ac64cbb4b2b23aff297c5a309f2eb8bd8ee1b575f025ab4bf4ad26d4330d080e7116a91d4ce68deb12f4615c527c372b1c0fa131e29c611a669892dc8b33b92c93c0fae7c425548eeb98954aece5ca0b94c0fbe167619a3eb2ed700fe5d02b1c8019a6d4a8d186a17bcd6cd5f5554eacca8eeb1", 0x1000) set_mempolicy(0x8003, &(0x7f0000000300)=0x75f, 0x9) r2 = open(&(0x7f0000000300)='.\x00', 0x0, 0x0) symlinkat(&(0x7f0000000040)='\x13\x13w\xc5\xfc5\xd4\x14T\xd5\xd4\x1d)\xad\x1a`)Y\x81F\xe6\xbe\x16nA\xad\r\xbd@T\x03<\x9f3\xbb\xda\x82$\xa2\xf3\xd7r\xe7cnH\xb3<\xbfp\x83r\xe8\xf1\xb9\x93>\xc5\x12wC\xbe\"\x06 \x9e\xf0-\xf9\xcb\xf2\xf6\xe8\x80\xd38/\x00', r2, &(0x7f00000000c0)='./file0\x00') mkdirat(r2, &(0x7f0000000200)='\x13\x13w\xc5\xfc5\xd4\x14T\xd5\xd4\x1d)\xad\x1a`)Y\x81F\xe6\xbe\x16nA\xad\r\xbd@T\x03<\x9f3\xbb\xda\x82$\xa2\xf3\xd7r\xe7cnH\xb3<\xbfp\x83r\xe8\xf1\xb9\x93>\xc5\x12wC\xbe\"\x06 \x9e\xf0-\xf9\xcb\xf2\xf6\xe8\x80\xd38/\x00', 0x0) symlinkat(&(0x7f0000000340)='./file0/file0\x00', r2, &(0x7f0000000380)='\x13\x13w\xc5\xfc5\xd4\x14T\xd5\xd4\x1d)\xad\x1a`)Y\x81F\xe6\xbe\x16nA\xad\r\xbd@T\x03<\x9f3\xbb\xda\x82$\xa2\xf3\xd7r\xe7cnH\xb3<\xbfp\x83r\xe8\xf1\xb9\x93>\xc5\x12wC\xbe\"\x06 \x9e\xf0-\xf9\xcb\xf2\xf6\xe8\x80\xd38//file0\x00') r3 = open(&(0x7f0000000100)='.\x00', 0x0, 0x0) renameat2(r3, &(0x7f0000000400)='./file0/file0\x00', r3, &(0x7f0000000000)='./file0\x00', 0x0) [ 241.157108][T15860] RAX: ffffffffffffffda RBX: 0000000020000200 RCX: 0000000000464ea7 [ 241.165059][T15860] RDX: 0000000000000004 RSI: 00000000000001ff RDI: 0000000020000100 [ 241.173010][T15860] RBP: 00007f8175efa040 R08: 0000000000000000 R09: ffffffffffffffff [ 241.180979][T15860] R10: 0000000000000000 R11: 0000000000000213 R12: 0000000020000000 [ 241.188929][T15860] R13: 0000000020000100 R14: 00007f8175efa000 R15: 0000000020000040 21:38:21 executing program 4: set_mempolicy(0x8003, &(0x7f0000000300)=0x75f, 0x9) open(&(0x7f0000000300)='.\x00', 0x0, 0x0) r0 = syz_open_procfs(0x0, &(0x7f00000000c0)='fd/3\x00') r1 = syz_open_dev$swradio(&(0x7f0000000100)='/dev/swradio#\x00', 0x0, 0x2) mount$9p_fd(0x0, &(0x7f0000000300)='.\x00', &(0x7f0000000080)='9p\x00', 0x600, &(0x7f0000000740)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}}) [ 241.209193][T15869] 9pnet: Insufficient options for proto=fd [ 241.227754][T15869] 9pnet: Insufficient options for proto=fd 21:38:21 executing program 0 (fault-call:0 fault-nth:46): syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x40000, 0x3, &(0x7f0000000200)=[{&(0x7f0000010000)="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", 0x10c, 0x400}, {&(0x7f0000010200)="0500000000000000000000000000000000000000040100002b", 0x19, 0x560}, {&(0x7f0000010300)="000000000000000000000000000000000000000000000000000000001481910a040000001400000024", 0x29, 0x7e0}], 0x0, &(0x7f0000000040)={[{@usrjquota='usrjquota='}, {@data_err_abort='data_err=abort'}]}) [ 241.254079][T15878] 9pnet: Insufficient options for proto=fd 21:38:21 executing program 3: set_mempolicy(0x8003, &(0x7f0000000300)=0x75f, 0x9) open(&(0x7f0000000300)='.\x00', 0x0, 0x0) r0 = syz_open_procfs(0x0, &(0x7f00000000c0)='fd/3\x00') r1 = syz_open_dev$swradio(&(0x7f0000000100)='/dev/swradio#\x00', 0x0, 0x2) mount$9p_fd(0x0, &(0x7f0000000300)='.\x00', &(0x7f0000000080)='9p\x00', 0x4000, &(0x7f0000000740)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}}) 21:38:21 executing program 5: set_mempolicy(0x8003, &(0x7f0000000300)=0x75f, 0x9) open(&(0x7f0000000300)='.\x00', 0x0, 0x0) r0 = syz_open_procfs(0x0, &(0x7f00000000c0)='fd/3\x00') r1 = syz_open_dev$swradio(&(0x7f0000000100)='/dev/swradio#\x00', 0x0, 0x2) mount$9p_fd(0x0, &(0x7f0000000300)='.\x00', &(0x7f0000000080)='9p\x00', 0x4000000, &(0x7f0000000740)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}}) 21:38:21 executing program 1: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) r3 = syz_open_procfs(0x0, &(0x7f00000000c0)='fd/3\x00') mount$9p_fd(0x0, &(0x7f0000000300)='.\x00', &(0x7f0000000080)='9p\x00', 0xc, &(0x7f00000003c0)={'trans=fd,', {'rfdno', 0x3d, r3}, 0x2c, {'wfdno', 0x3d, r2}}) 21:38:21 executing program 2: set_mempolicy(0x8003, &(0x7f0000000300)=0x75f, 0x9) r0 = open(&(0x7f0000000300)='.\x00', 0x0, 0x0) symlinkat(&(0x7f0000000040)='\x13\x13w\xc5\xfc5\xd4\x14T\xd5\xd4\x1d)\xad\x1a`)Y\x81F\xe6\xbe\x16nA\xad\r\xbd@T\x03<\x9f3\xbb\xda\x82$\xa2\xf3\xd7r\xe7cnH\xb3<\xbfp\x83r\xe8\xf1\xb9\x93>\xc5\x12wC\xbe\"\x06 \x9e\xf0-\xf9\xcb\xf2\xf6\xe8\x80\xd38/\x00', r0, &(0x7f00000000c0)='./file0\x00') symlinkat(&(0x7f0000000340)='./file0/file0\x00', r0, &(0x7f0000000380)='\x13\x13w\xc5\xfc5\xd4\x14T\xd5\xd4\x1d)\xad\x1a`)Y\x81F\xe6\xbe\x16nA\xad\r\xbd@T\x03<\x9f3\xbb\xda\x82$\xa2\xf3\xd7r\xe7cnH\xb3<\xbfp\x83r\xe8\xf1\xb9\x93>\xc5\x12wC\xbe\"\x06 \x9e\xf0-\xf9\xcb\xf2\xf6\xe8\x80\xd38//file0\x00') ioctl$sock_kcm_SIOCKCMCLONE(r0, 0x89e2, &(0x7f0000000440)={r0}) epoll_ctl$EPOLL_CTL_ADD(r0, 0x1, r1, &(0x7f0000000480)) r2 = open(&(0x7f0000000200)='\x13\x13w\xc5\xfc5\xd4\x14T\xd5\xd4\x1d)\xad\x1a`)Y\x81F\xe6\xbe\x16nA\xad\r\xbd@T\x03<\x9f3\xbb\xda\x82$\xa2\xf3\xd7r\xe7cnH\xb3<\xbfp\x83r\xe8\xf1\xb9\x93>\xc5\x12wC\xbe\"\x06 \x9e\xf0-\xf9\xcb\xf2\xf6\xe8\x80\xd38/\x00', 0x8000, 0xc0) renameat2(r2, &(0x7f0000000400)='./file0/file0\x00', r2, &(0x7f00000004c0)='\x13\x13w\xc5\xfc5\xd4\x14T\xd5\xd4\x1d)\xad\x1a`)Y\x81F\xe6\xbe\x16nA\xad\r\xbd@T\x03<\x9f3\xbb\xda\x82$\xa2\xf3\xd7r\xe7cnH\xb3<\xbfp\x83r\xe8\xf1\xb9\x93>\xc5\x12wC\xbe\"\x06 \x9e\xf0-\xf9\xcb\xf2\xf6\xe8\x80\xd38//file0\x00', 0x0) sendto(r0, &(0x7f0000000140)="78f1156a7726077356236fd1f2d9e5930b7a5c00709bb85e24d2c75b53b36703716cc4d9ec5400034787d4e2e1b4c2bc79", 0x31, 0x0, &(0x7f0000000180)=@pppol2tpv3={0x18, 0x1, {0x0, r0, {0x2, 0x4e23, @loopback}, 0x3, 0x0, 0x0, 0x1}}, 0x80) creat(&(0x7f0000000280)='\x13\x13w\xc5\xfc5\xd4\x14T\xd5\xd4\x1d)\xad\x1a`)Y\x81F\xe6\xbe\x16nA\xad\r\xbd@T\x03<\x9f3\xbb\xda\x82$\xa2\xf3\xd7r\xe7cnH\xb3<\xbfp\x83r\xe8\xf1\xb9\x93>\xc5\x12wC\xbe\"\x06 \x9e\xf0-\xf9\xcb\xf2\xf6\xe8\x80\xd38//file0\x00', 0x100) [ 241.331322][T15889] 9pnet: Insufficient options for proto=fd 21:38:21 executing program 4: set_mempolicy(0x8003, &(0x7f0000000300)=0x75f, 0x9) open(&(0x7f0000000300)='.\x00', 0x0, 0x0) r0 = syz_open_procfs(0x0, &(0x7f00000000c0)='fd/3\x00') r1 = syz_open_dev$swradio(&(0x7f0000000100)='/dev/swradio#\x00', 0x0, 0x2) mount$9p_fd(0x0, &(0x7f0000000300)='.\x00', &(0x7f0000000080)='9p\x00', 0x700, &(0x7f0000000740)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}}) [ 241.372425][T15892] loop0: detected capacity change from 512 to 0 [ 241.386850][T15892] FAULT_INJECTION: forcing a failure. [ 241.386850][T15892] name failslab, interval 1, probability 0, space 0, times 0 [ 241.401431][T15892] CPU: 1 PID: 15892 Comm: syz-executor.0 Not tainted 5.11.0-syzkaller #0 [ 241.411426][T15892] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 241.421625][T15892] Call Trace: [ 241.424984][T15892] dump_stack+0x116/0x15d [ 241.429485][T15892] should_fail+0x23c/0x250 [ 241.433909][T15892] ? ext4_mb_new_blocks+0x2fb/0x1170 [ 241.439199][T15892] __should_failslab+0x81/0x90 [ 241.444030][T15892] should_failslab+0x5/0x20 [ 241.448534][T15892] kmem_cache_alloc+0x36/0x2e0 [ 241.453367][T15892] ext4_mb_new_blocks+0x2fb/0x1170 [ 241.453820][T15901] 9pnet: Insufficient options for proto=fd [ 241.458483][T15892] ? ext4_inode_to_goal_block+0x1bd/0x1d0 [ 241.470019][T15892] ext4_ext_map_blocks+0x146f/0x1fd0 [ 241.475740][T15892] ? __ext4_handle_dirty_metadata+0x146/0x5a0 [ 241.482059][T15892] ? __down_read_common+0x14e/0x510 [ 241.487267][T15892] ? ext4_es_lookup_extent+0x221/0x500 [ 241.492996][T15892] ext4_map_blocks+0x726/0xff0 [ 241.498660][T15892] ext4_getblk+0xb1/0x3c0 [ 241.502999][T15892] ext4_bread+0x28/0x130 [ 241.507316][T15892] ext4_append+0xd1/0x1c0 [ 241.511652][T15892] ext4_init_new_dir+0x177/0x500 [ 241.516605][T15892] ext4_mkdir+0x329/0x750 [ 241.521730][T15892] vfs_mkdir+0x288/0x350 [ 241.526199][T15892] do_mkdirat+0x132/0x220 [ 241.530609][T15892] __x64_sys_mkdir+0x32/0x40 [ 241.535294][T15892] do_syscall_64+0x39/0x80 [ 241.539747][T15892] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 241.545635][T15892] RIP: 0033:0x464ea7 [ 241.549530][T15892] Code: 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 83 c8 ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 b8 53 00 00 00 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 241.569132][T15892] RSP: 002b:00007f8175ef9fa8 EFLAGS: 00000213 ORIG_RAX: 0000000000000053 [ 241.578433][T15892] RAX: ffffffffffffffda RBX: 0000000020000200 RCX: 0000000000464ea7 [ 241.586429][T15892] RDX: 0000000000000004 RSI: 00000000000001ff RDI: 0000000020000100 [ 241.594396][T15892] RBP: 00007f8175efa040 R08: 0000000000000000 R09: ffffffffffffffff [ 241.602366][T15892] R10: 0000000000000000 R11: 0000000000000213 R12: 0000000020000000 [ 241.610351][T15892] R13: 0000000020000100 R14: 00007f8175efa000 R15: 0000000020000040 [ 241.657129][T15909] 9pnet: Insufficient options for proto=fd 21:38:21 executing program 2: set_mempolicy(0x8003, &(0x7f0000000300)=0x75f, 0x9) r0 = open(&(0x7f0000000300)='.\x00', 0x0, 0x0) r1 = syz_open_procfs(0xffffffffffffffff, &(0x7f0000000140)='net/dev_mcast\x00') accept$unix(r1, &(0x7f0000000180)=@abs, &(0x7f0000000280)=0x6e) symlinkat(&(0x7f0000000040)='\x13\x13w\xc5\xfc5\xd4\x14T\xd5\xd4\x1d)\xad\x1a`)Y\x81F\xe6\xbe\x16nA\xad\r\xbd@T\x03<\x9f3\xbb\xda\x82$\xa2\xf3\xd7r\xe7cnH\xb3<\xbfp\x83r\xe8\xf1\xb9\x93>\xc5\x12wC\xbe\"\x06 \x9e\xf0-\xf9\xcb\xf2\xf6\xe8\x80\xd38/\x00', r0, &(0x7f00000000c0)='./file0\x00') mkdirat(r0, &(0x7f0000000200)='\x13\x13w\xc5\xfc5\xd4\x14T\xd5\xd4\x1d)\xad\x1a`)Y\x81F\xe6\xbe\x16nA\xad\r\xbd@T\x03<\x9f3\xbb\xda\x82$\xa2\xf3\xd7r\xe7cnH\xb3<\xbfp\x83r\xe8\xf1\xb9\x93>\xc5\x12wC\xbe\"\x06 \x9e\xf0-\xf9\xcb\xf2\xf6\xe8\x80\xd38/\x00', 0x0) symlinkat(&(0x7f0000000340)='./file0/file0\x00', r0, &(0x7f0000000380)='\x13\x13w\xc5\xfc5\xd4\x14T\xd5\xd4\x1d)\xad\x1a`)Y\x81F\xe6\xbe\x16nA\xad\r\xbd@T\x03<\x9f3\xbb\xda\x82$\xa2\xf3\xd7r\xe7cnH\xb3<\xbfp\x83r\xe8\xf1\xb9\x93>\xc5\x12wC\xbe\"\x06 \x9e\xf0-\xf9\xcb\xf2\xf6\xe8\x80\xd38//file0\x00') r2 = open(&(0x7f0000000100)='.\x00', 0x0, 0x0) renameat2(r2, &(0x7f0000000400)='./file0/file0\x00', r2, &(0x7f0000000000)='./file0\x00', 0x0) 21:38:21 executing program 1: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) r3 = syz_open_procfs(0x0, &(0x7f00000000c0)='fd/3\x00') mount$9p_fd(0x0, &(0x7f0000000300)='.\x00', &(0x7f0000000080)='9p\x00', 0xd, &(0x7f00000003c0)={'trans=fd,', {'rfdno', 0x3d, r3}, 0x2c, {'wfdno', 0x3d, r2}}) 21:38:21 executing program 0 (fault-call:0 fault-nth:47): syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x40000, 0x3, &(0x7f0000000200)=[{&(0x7f0000010000)="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", 0x10c, 0x400}, {&(0x7f0000010200)="0500000000000000000000000000000000000000040100002b", 0x19, 0x560}, {&(0x7f0000010300)="000000000000000000000000000000000000000000000000000000001481910a040000001400000024", 0x29, 0x7e0}], 0x0, &(0x7f0000000040)={[{@usrjquota='usrjquota='}, {@data_err_abort='data_err=abort'}]}) 21:38:21 executing program 5: set_mempolicy(0x8003, &(0x7f0000000300)=0x75f, 0x9) open(&(0x7f0000000300)='.\x00', 0x0, 0x0) r0 = syz_open_procfs(0x0, &(0x7f00000000c0)='fd/3\x00') r1 = syz_open_dev$swradio(&(0x7f0000000100)='/dev/swradio#\x00', 0x0, 0x2) mount$9p_fd(0x0, &(0x7f0000000300)='.\x00', &(0x7f0000000080)='9p\x00', 0x5000000, &(0x7f0000000740)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}}) 21:38:21 executing program 3: set_mempolicy(0x8003, &(0x7f0000000300)=0x75f, 0x9) open(&(0x7f0000000300)='.\x00', 0x0, 0x0) r0 = syz_open_procfs(0x0, &(0x7f00000000c0)='fd/3\x00') r1 = syz_open_dev$swradio(&(0x7f0000000100)='/dev/swradio#\x00', 0x0, 0x2) mount$9p_fd(0x0, &(0x7f0000000300)='.\x00', &(0x7f0000000080)='9p\x00', 0x5c00, &(0x7f0000000740)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}}) 21:38:21 executing program 4: set_mempolicy(0x8003, &(0x7f0000000300)=0x75f, 0x9) open(&(0x7f0000000300)='.\x00', 0x0, 0x0) r0 = syz_open_procfs(0x0, &(0x7f00000000c0)='fd/3\x00') r1 = syz_open_dev$swradio(&(0x7f0000000100)='/dev/swradio#\x00', 0x0, 0x2) mount$9p_fd(0x0, &(0x7f0000000300)='.\x00', &(0x7f0000000080)='9p\x00', 0x900, &(0x7f0000000740)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}}) [ 241.795488][T15931] loop0: detected capacity change from 512 to 0 [ 241.803819][T15931] FAULT_INJECTION: forcing a failure. [ 241.803819][T15931] name failslab, interval 1, probability 0, space 0, times 0 [ 241.832175][T15931] CPU: 1 PID: 15931 Comm: syz-executor.0 Not tainted 5.11.0-syzkaller #0 [ 241.840595][T15931] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 241.850654][T15931] Call Trace: [ 241.853925][T15931] dump_stack+0x116/0x15d [ 241.858242][T15931] should_fail+0x23c/0x250 [ 241.862653][T15931] ? ext4_mb_new_blocks+0x6d1/0x1170 [ 241.867921][T15931] __should_failslab+0x81/0x90 [ 241.872673][T15931] should_failslab+0x5/0x20 [ 241.877154][T15931] kmem_cache_alloc+0x36/0x2e0 [ 241.881955][T15931] ext4_mb_new_blocks+0x6d1/0x1170 [ 241.887048][T15931] ? ext4_inode_to_goal_block+0x1bd/0x1d0 [ 241.892755][T15931] ext4_ext_map_blocks+0x146f/0x1fd0 [ 241.898147][T15931] ? __ext4_handle_dirty_metadata+0x146/0x5a0 [ 241.904210][T15931] ? __down_read_common+0x14e/0x510 [ 241.909400][T15931] ? ext4_es_lookup_extent+0x221/0x500 [ 241.914882][T15931] ext4_map_blocks+0x726/0xff0 [ 241.919661][T15931] ext4_getblk+0xb1/0x3c0 [ 241.923971][T15931] ext4_bread+0x28/0x130 [ 241.928195][T15931] ext4_append+0xd1/0x1c0 [ 241.932508][T15931] ext4_init_new_dir+0x177/0x500 [ 241.937501][T15931] ext4_mkdir+0x329/0x750 [ 241.941814][T15931] vfs_mkdir+0x288/0x350 [ 241.946093][T15931] do_mkdirat+0x132/0x220 [ 241.950450][T15931] __x64_sys_mkdir+0x32/0x40 [ 241.956850][T15931] do_syscall_64+0x39/0x80 [ 241.961251][T15931] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 241.967172][T15931] RIP: 0033:0x464ea7 [ 241.971047][T15931] Code: 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 83 c8 ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 b8 53 00 00 00 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 241.990848][T15931] RSP: 002b:00007f8175ef9fa8 EFLAGS: 00000213 ORIG_RAX: 0000000000000053 [ 241.999346][T15931] RAX: ffffffffffffffda RBX: 0000000020000200 RCX: 0000000000464ea7 [ 242.007297][T15931] RDX: 0000000000000004 RSI: 00000000000001ff RDI: 0000000020000100 [ 242.015247][T15931] RBP: 00007f8175efa040 R08: 0000000000000000 R09: ffffffffffffffff [ 242.023197][T15931] R10: 0000000000000000 R11: 0000000000000213 R12: 0000000020000000 [ 242.031147][T15931] R13: 0000000020000100 R14: 00007f8175efa000 R15: 0000000020000040 21:38:22 executing program 0 (fault-call:0 fault-nth:48): syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x40000, 0x3, &(0x7f0000000200)=[{&(0x7f0000010000)="20000000000100000c000000d90000000f0000000100000000000000000000000020000000200000200000002cc4645f2cc4645f0100ffff53ef0100010000002cc4645f000000000000000001000000000000000b0000008000000038000000c20200006b0400000000000000000000000000000000000073797a6b616c6c6572000000000000002f746d702f73797a2d696d61676567656e3338363633343038350000000000000000000000000000000000000000000000000000000000000000000000000000000000000000010000000000000000000000000000000000000000000000000000000000d9ca5cac99fd4329af4dde786c1a5d13010040000c000000000000002cc4645f", 0x10c, 0x400}, {&(0x7f0000010200)="0500000000000000000000000000000000000000040100002b", 0x19, 0x560}, {&(0x7f0000010300)="000000000000000000000000000000000000000000000000000000001481910a040000001400000024", 0x29, 0x7e0}], 0x0, &(0x7f0000000040)={[{@usrjquota='usrjquota='}, {@data_err_abort='data_err=abort'}]}) 21:38:22 executing program 2: set_mempolicy(0x8003, &(0x7f0000000300)=0x75f, 0x9) r0 = open(&(0x7f0000000300)='.\x00', 0x0, 0x0) symlinkat(&(0x7f0000000040)='\x13\x13w\xc5\xfc5\xd4\x14T\xd5\xd4\x1d)\xad\x1a`)Y\x81F\xe6\xbe\x16nA\xad\r\xbd@T\x03<\x9f3\xbb\xda\x82$\xa2\xf3\xd7r\xe7cnH\xb3<\xbfp\x83r\xe8\xf1\xb9\x93>\xc5\x12wC\xbe\"\x06 \x9e\xf0-\xf9\xcb\xf2\xf6\xe8\x80\xd38/\x00', r0, &(0x7f00000000c0)='./file0\x00') mkdirat(r0, &(0x7f0000000200)='\x13\x13w\xc5\xfc5\xd4\x14T\xd5\xd4\x1d)\xad\x1a`)Y\x81F\xe6\xbe\x16nA\xad\r\xbd@T\x03<\x9f3\xbb\xda\x82$\xa2\xf3\xd7r\xe7cnH\xb3<\xbfp\x83r\xe8\xf1\xb9\x93>\xc5\x12wC\xbe\"\x06 \x9e\xf0-\xf9\xcb\xf2\xf6\xe8\x80\xd38/\x00', 0x0) symlinkat(&(0x7f0000000340)='./file0/file0\x00', r0, &(0x7f0000000380)='\x13\x13w\xc5\xfc5\xd4\x14T\xd5\xd4\x1d)\xad\x1a`)Y\x81F\xe6\xbe\x16nA\xad\r\xbd@T\x03<\x9f3\xbb\xda\x82$\xa2\xf3\xd7r\xe7cnH\xb3<\xbfp\x83r\xe8\xf1\xb9\x93>\xc5\x12wC\xbe\"\x06 \x9e\xf0-\xf9\xcb\xf2\xf6\xe8\x80\xd38//file0\x00') r1 = open(&(0x7f0000000100)='.\x00', 0x0, 0x0) renameat2(r1, &(0x7f0000000400)='./file0/file0\x00', r1, &(0x7f0000000000)='./file0\x00', 0x0) add_key(&(0x7f0000000140)='id_legacy\x00', &(0x7f0000000180)={'syz', 0x1}, 0x0, 0x0, 0xfffffffffffffffd) 21:38:22 executing program 3: set_mempolicy(0x8003, &(0x7f0000000300)=0x75f, 0x9) open(&(0x7f0000000300)='.\x00', 0x0, 0x0) r0 = syz_open_procfs(0x0, &(0x7f00000000c0)='fd/3\x00') r1 = syz_open_dev$swradio(&(0x7f0000000100)='/dev/swradio#\x00', 0x0, 0x2) mount$9p_fd(0x0, &(0x7f0000000300)='.\x00', &(0x7f0000000080)='9p\x00', 0x9fff, &(0x7f0000000740)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}}) 21:38:22 executing program 4: set_mempolicy(0x8003, &(0x7f0000000300)=0x75f, 0x9) open(&(0x7f0000000300)='.\x00', 0x0, 0x0) r0 = syz_open_procfs(0x0, &(0x7f00000000c0)='fd/3\x00') r1 = syz_open_dev$swradio(&(0x7f0000000100)='/dev/swradio#\x00', 0x0, 0x2) mount$9p_fd(0x0, &(0x7f0000000300)='.\x00', &(0x7f0000000080)='9p\x00', 0xa00, &(0x7f0000000740)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}}) 21:38:22 executing program 5: set_mempolicy(0x8003, &(0x7f0000000300)=0x75f, 0x9) open(&(0x7f0000000300)='.\x00', 0x0, 0x0) r0 = syz_open_procfs(0x0, &(0x7f00000000c0)='fd/3\x00') r1 = syz_open_dev$swradio(&(0x7f0000000100)='/dev/swradio#\x00', 0x0, 0x2) mount$9p_fd(0x0, &(0x7f0000000300)='.\x00', &(0x7f0000000080)='9p\x00', 0x6000000, &(0x7f0000000740)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}}) [ 242.166179][T15961] loop0: detected capacity change from 512 to 0 [ 242.172941][T15961] FAULT_INJECTION: forcing a failure. [ 242.172941][T15961] name failslab, interval 1, probability 0, space 0, times 0 [ 242.185649][T15961] CPU: 1 PID: 15961 Comm: syz-executor.0 Not tainted 5.11.0-syzkaller #0 [ 242.194061][T15961] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 242.204385][T15961] Call Trace: [ 242.208616][T15961] dump_stack+0x116/0x15d [ 242.213041][T15961] should_fail+0x23c/0x250 [ 242.217454][T15961] ? __es_insert_extent+0x546/0xe80 [ 242.222761][T15961] __should_failslab+0x81/0x90 [ 242.227526][T15961] should_failslab+0x5/0x20 [ 242.232083][T15961] kmem_cache_alloc+0x36/0x2e0 [ 242.237280][T15961] __es_insert_extent+0x546/0xe80 [ 242.242339][T15961] ext4_es_insert_extent+0x1bb/0x1a80 [ 242.247714][T15961] ? ext4_es_lookup_extent+0x221/0x500 [ 242.253182][T15961] ext4_map_blocks+0xaf4/0xff0 [ 242.257942][T15961] ext4_getblk+0xb1/0x3c0 [ 242.262274][T15961] ext4_bread+0x28/0x130 [ 242.267068][T15961] ext4_append+0xd1/0x1c0 [ 242.271473][T15961] ext4_init_new_dir+0x177/0x500 [ 242.276408][T15961] ext4_mkdir+0x329/0x750 [ 242.280737][T15961] vfs_mkdir+0x288/0x350 [ 242.284999][T15961] do_mkdirat+0x132/0x220 [ 242.289395][T15961] __x64_sys_mkdir+0x32/0x40 [ 242.294091][T15961] do_syscall_64+0x39/0x80 [ 242.298552][T15961] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 242.304499][T15961] RIP: 0033:0x464ea7 [ 242.308390][T15961] Code: 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 83 c8 ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 b8 53 00 00 00 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 242.328006][T15961] RSP: 002b:00007f8175ef9fa8 EFLAGS: 00000213 ORIG_RAX: 0000000000000053 [ 242.336416][T15961] RAX: ffffffffffffffda RBX: 0000000020000200 RCX: 0000000000464ea7 [ 242.344993][T15961] RDX: 0000000000000004 RSI: 00000000000001ff RDI: 0000000020000100 [ 242.352968][T15961] RBP: 00007f8175efa040 R08: 0000000000000000 R09: ffffffffffffffff 21:38:22 executing program 3: set_mempolicy(0x8003, &(0x7f0000000300)=0x75f, 0x9) open(&(0x7f0000000300)='.\x00', 0x0, 0x0) r0 = syz_open_procfs(0x0, &(0x7f00000000c0)='fd/3\x00') r1 = syz_open_dev$swradio(&(0x7f0000000100)='/dev/swradio#\x00', 0x0, 0x2) mount$9p_fd(0x0, &(0x7f0000000300)='.\x00', &(0x7f0000000080)='9p\x00', 0xedc0, &(0x7f0000000740)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}}) 21:38:22 executing program 2: set_mempolicy(0x8003, &(0x7f0000000300)=0x75f, 0x9) r0 = open(&(0x7f0000000300)='.\x00', 0x0, 0x0) write$9p(r0, &(0x7f00000001c0)="a2df48ee9d9c6680b25c79ff66de8e64a9b1a94090e8aff92b589a075f6e87966dbd87931eff2a667a2f1f54d1a09326c73609725209e9", 0x37) symlinkat(&(0x7f0000000040)='\x13\x13w\xc5\xfc5\xd4\x14T\xd5\xd4\x1d)\xad\x1a`)Y\x81F\xe6\xbe\x16nA\xad\r\xbd@T\x03<\x9f3\xbb\xda\x82$\xa2\xf3\xd7r\xe7cnH\xb3<\xbfp\x83r\xe8\xf1\xb9\x93>\xc5\x12wC\xbe\"\x06 \x9e\xf0-\xf9\xcb\xf2\xf6\xe8\x80\xd38/\x00', r0, &(0x7f00000000c0)='./file0\x00') mkdirat(r0, &(0x7f0000000200)='\x13\x13w\xc5\xfc5\xd4\x14T\xd5\xd4\x1d)\xad\x1a`)Y\x81F\xe6\xbe\x16nA\xad\r\xbd@T\x03<\x9f3\xbb\xda\x82$\xa2\xf3\xd7r\xe7cnH\xb3<\xbfp\x83r\xe8\xf1\xb9\x93>\xc5\x12wC\xbe\"\x06 \x9e\xf0-\xf9\xcb\xf2\xf6\xe8\x80\xd38/\x00', 0x0) symlinkat(&(0x7f0000000340)='./file0/file0\x00', r0, &(0x7f0000000140)='\x13\x13w\xc5\xfc5\xd4\x14T\xd5\xd4\x1d)\xad\x1a`)Y\x81F\xe6\xbe\x16nA\xad\r\xbd@T\x03<\x9f3\xbb\xda\x82$\xa2\xf3\xd7r\xe7cnH\xb3<\xbfp\x83r\xe8\xf1\xb9\x93>\xc5\x12wC\xbe\"\x06 \x9e\xf0-\xf9\xcb\xf2\xf6\xe8\x80\xd38//file0\x00') r1 = open(&(0x7f0000000100)='.\x00', 0x0, 0x0) renameat2(r1, &(0x7f0000000400)='./file0/file0\x00', r1, &(0x7f0000000000)='./file0\x00', 0x0) [ 242.360938][T15961] R10: 0000000000000000 R11: 0000000000000213 R12: 0000000020000000 [ 242.368933][T15961] R13: 0000000020000100 R14: 00007f8175efa000 R15: 0000000020000040 21:38:22 executing program 1: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) r3 = syz_open_procfs(0x0, &(0x7f00000000c0)='fd/3\x00') mount$9p_fd(0x0, &(0x7f0000000300)='.\x00', &(0x7f0000000080)='9p\x00', 0xe, &(0x7f00000003c0)={'trans=fd,', {'rfdno', 0x3d, r3}, 0x2c, {'wfdno', 0x3d, r2}}) 21:38:22 executing program 3: set_mempolicy(0x8003, &(0x7f0000000300)=0x75f, 0x9) open(&(0x7f0000000300)='.\x00', 0x0, 0x0) r0 = syz_open_procfs(0x0, &(0x7f00000000c0)='fd/3\x00') r1 = syz_open_dev$swradio(&(0x7f0000000100)='/dev/swradio#\x00', 0x0, 0x2) mount$9p_fd(0x0, &(0x7f0000000300)='.\x00', &(0x7f0000000080)='9p\x00', 0xff00, &(0x7f0000000740)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}}) 21:38:22 executing program 2: set_mempolicy(0x8003, &(0x7f0000000300)=0x75f, 0x9) socket$nl_generic(0x10, 0x3, 0x10) r0 = open(&(0x7f0000000300)='.\x00', 0x0, 0x0) symlinkat(&(0x7f0000000040)='\x13\x13w\xc5\xfc5\xd4\x14T\xd5\xd4\x1d)\xad\x1a`)Y\x81F\xe6\xbe\x16nA\xad\r\xbd@T\x03<\x9f3\xbb\xda\x82$\xa2\xf3\xd7r\xe7cnH\xb3<\xbfp\x83r\xe8\xf1\xb9\x93>\xc5\x12wC\xbe\"\x06 \x9e\xf0-\xf9\xcb\xf2\xf6\xe8\x80\xd38/\x00', r0, &(0x7f00000000c0)='./file0\x00') mkdirat(r0, &(0x7f0000000200)='\x13\x13w\xc5\xfc5\xd4\x14T\xd5\xd4\x1d)\xad\x1a`)Y\x81F\xe6\xbe\x16nA\xad\r\xbd@T\x03<\x9f3\xbb\xda\x82$\xa2\xf3\xd7r\xe7cnH\xb3<\xbfp\x83r\xe8\xf1\xb9\x93>\xc5\x12wC\xbe\"\x06 \x9e\xf0-\xf9\xcb\xf2\xf6\xe8\x80\xd38/\x00', 0x0) symlinkat(&(0x7f0000000340)='./file0/file0\x00', r0, &(0x7f0000000380)='\x13\x13w\xc5\xfc5\xd4\x14T\xd5\xd4\x1d)\xad\x1a`)Y\x81F\xe6\xbe\x16nA\xad\r\xbd@T\x03<\x9f3\xbb\xda\x82$\xa2\xf3\xd7r\xe7cnH\xb3<\xbfp\x83r\xe8\xf1\xb9\x93>\xc5\x12wC\xbe\"\x06 \x9e\xf0-\xf9\xcb\xf2\xf6\xe8\x80\xd38//file0\x00') r1 = perf_event_open(&(0x7f0000000180)={0x0, 0x70, 0x3, 0x0, 0x0, 0x0, 0x0, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r2 = syz_open_dev$usbfs(&(0x7f0000000080)='/dev/bus/usb/00#/00#\x00', 0x4000000000000072, 0x4a441) r3 = dup3(r1, r2, 0x0) getsockopt$inet_sctp_SCTP_MAX_BURST(0xffffffffffffffff, 0x84, 0x14, &(0x7f0000000000)=@assoc_value={0x0}, &(0x7f0000000040)=0x8) getsockopt$inet_sctp_SCTP_GET_PEER_ADDR_INFO(0xffffffffffffffff, 0x84, 0xf, &(0x7f00000000c0)={r4, @in={{0x2, 0x0, @empty}}, 0x10001, 0x0, 0x5}, &(0x7f0000000000)=0x98) setsockopt$inet_sctp6_SCTP_STREAM_SCHEDULER(0xffffffffffffffff, 0x84, 0x7b, &(0x7f00000002c0)={r4, 0x2}, 0x8) getsockopt$inet_sctp6_SCTP_DEFAULT_PRINFO(r3, 0x84, 0x72, &(0x7f0000000000)={r4, 0x1}, 0x0) r5 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000240)='nl80211\x00', 0xffffffffffffffff) sendmsg$NL80211_CMD_JOIN_MESH(r3, &(0x7f00000003c0)={&(0x7f0000000200)={0x10, 0x0, 0x0, 0x4000000}, 0xc, &(0x7f0000000280)={&(0x7f0000000400)=ANY=[@ANYBLOB="46e700008e9c758939c333749d94897a61999c8159b0c2a73bd50dbaf044d09d183aaa955268fbc252370de00c91f507af60841888759b68c1f7cdb3e859f5bddb5ac3ccaf0dd9f2411f038bd54883a5de176c00cb96cfda2e9c1d58e444911b827b9b3fa84566fe564745cd39e1b8063e6155351b6e678d4b6299ff4dfe6a793f6f0a215b514705a0f4fad93b9484f43b64d984076780454a7b079bdd99eeae7c0622", @ANYRES16=r5, @ANYBLOB="080025bd7000fddbdf25440000000400cc002800240048e4db39d6da72d216e0dde0f4405d55b492ccffd8dbc77cc51ec55382d36d9defdff7ac08006b0000800000"], 0x48}, 0x1, 0x0, 0x0, 0x800}, 0x4000080) sendmsg$NL80211_CMD_SET_INTERFACE(r0, &(0x7f000000e3c0)={&(0x7f000000e2c0)={0x10, 0x0, 0x0, 0x80}, 0xc, &(0x7f000000e380)={&(0x7f000000e300)={0x48, r5, 0x400, 0x70bd2b, 0x25dfdbfc, {{}, {@void, @void}}, [@NL80211_ATTR_MESH_ID={0xa}, @NL80211_ATTR_IFTYPE={0x8, 0x5, 0xb}, @NL80211_ATTR_MESH_ID={0xa}, @NL80211_ATTR_4ADDR={0x5, 0x53, 0x1}, @mon_options=[@NL80211_ATTR_MU_MIMO_FOLLOW_MAC_ADDR={0xa}]]}, 0x48}, 0x1, 0x0, 0x0, 0x48000}, 0x40) recvmmsg(r0, &(0x7f0000007cc0)=[{{0x0, 0x0, &(0x7f0000001740)=[{&(0x7f0000000440)=""/247, 0xf7}, {&(0x7f0000000540)=""/214, 0xd6}, {&(0x7f0000000140)=""/183, 0xb7}, {&(0x7f0000000640)=""/4096, 0x1000}, {&(0x7f0000000280)=""/58, 0x3a}, {&(0x7f0000001640)=""/230, 0xe6}, {&(0x7f00000002c0)=""/26, 0x1a}], 0x7, &(0x7f00000017c0)=""/4096, 0x1000}, 0x8000}, {{&(0x7f00000027c0)=@x25={0x9, @remote}, 0x80, &(0x7f0000002c40)=[{&(0x7f0000002840)=""/209, 0xd1}, {&(0x7f0000002940)=""/221, 0xdd}, {&(0x7f0000002a40)=""/199, 0xc7}, {&(0x7f0000002b40)=""/161, 0xa1}, {&(0x7f0000002c00)=""/33, 0x21}], 0x5}, 0x1}, {{&(0x7f0000002cc0), 0x80, &(0x7f0000004000)=[{&(0x7f0000002d40)=""/208, 0xd0}, {&(0x7f0000002e40)=""/179, 0xb3}, {&(0x7f0000002f00)=""/123, 0x7b}, {&(0x7f0000002f80)=""/98, 0x62}, {&(0x7f0000003000)=""/4096, 0x1000}], 0x5, &(0x7f0000004080)=""/25, 0x19}, 0x5}, {{&(0x7f00000040c0)=@nl=@unspec, 0x80, &(0x7f0000004680)=[{&(0x7f0000004140)=""/226, 0xe2}, {&(0x7f0000004240)=""/12, 0xc}, {&(0x7f0000004280)=""/255, 0xff}, {&(0x7f0000004380)=""/33, 0x21}, {&(0x7f00000043c0)=""/130, 0x82}, {&(0x7f0000004480)=""/51, 0x33}, {&(0x7f00000044c0)=""/157, 0x9d}, {&(0x7f0000004580)=""/99, 0x63}, {&(0x7f0000004600)=""/99, 0x63}], 0x9, &(0x7f0000004740)=""/210, 0xd2}, 0x1}, {{&(0x7f0000004840)=@nl=@proc, 0x80, &(0x7f0000004b40)=[{&(0x7f00000048c0)=""/65, 0x41}, {&(0x7f0000004940)=""/192, 0xc0}, {&(0x7f0000004a00)=""/163, 0xa3}, {&(0x7f0000004ac0)=""/122, 0x7a}], 0x4}, 0x7}, {{&(0x7f0000004b80)=@pppol2tp={0x18, 0x1, {0x0, 0xffffffffffffffff, {0x2, 0x0, @private}}}, 0x80, &(0x7f0000005040)=[{&(0x7f0000004c00)=""/21, 0x15}, {&(0x7f0000004c40)=""/79, 0x4f}, {&(0x7f0000004cc0)=""/205, 0xcd}, {&(0x7f0000004dc0)=""/144, 0x90}, {&(0x7f0000004e80)=""/220, 0xdc}, {&(0x7f0000004f80)=""/129, 0x81}], 0x6, &(0x7f00000050c0)=""/225, 0xe1}, 0x274}, {{0x0, 0x0, &(0x7f0000005400)=[{&(0x7f00000051c0)=""/151, 0x97}, {&(0x7f0000005280)=""/119, 0x77}, {&(0x7f0000005300)=""/238, 0xee}], 0x3}, 0x3ff}, {{&(0x7f0000005440)=@l2tp6={0xa, 0x0, 0x0, @empty}, 0x80, &(0x7f00000069c0)=[{&(0x7f00000054c0)=""/4096, 0x1000}, {&(0x7f00000064c0)=""/60, 0x3c}, {&(0x7f0000006500)=""/247, 0xf7}, {&(0x7f0000006600)=""/109, 0x6d}, {&(0x7f0000006680)=""/246, 0xf6}, {&(0x7f0000006780)=""/219, 0xdb}, {&(0x7f0000006880)=""/25, 0x19}, {&(0x7f00000068c0)=""/107, 0x6b}, {&(0x7f0000006940)=""/125, 0x7d}], 0x9, &(0x7f0000006a80)=""/63, 0x3f}}, {{&(0x7f0000006ac0)=@ax25={{0x3, @default}, [@default, @netrom, @null, @default, @netrom, @null, @netrom, @null]}, 0x80, &(0x7f0000007c80)=[{&(0x7f0000006b40)=""/4096, 0x1000}, {&(0x7f0000007b40)=""/110, 0x6e}, {&(0x7f0000007bc0)=""/178, 0xb2}], 0x3}, 0x4}], 0x9, 0x40000001, &(0x7f0000007f00)={0x77359400}) recvmmsg(0xffffffffffffffff, &(0x7f000000e040)=[{{&(0x7f0000007f40)=@rc, 0x80, &(0x7f00000093c0)=[{&(0x7f0000007fc0)=""/59, 0x3b}, {&(0x7f0000008000)=""/220, 0xdc}, {&(0x7f0000008100)=""/130, 0x82}, {&(0x7f00000081c0)=""/171, 0xab}, {&(0x7f0000008280)=""/26, 0x1a}, {&(0x7f00000082c0)=""/25, 0x19}, {&(0x7f0000008300)=""/144, 0x90}, {&(0x7f00000083c0)=""/4096, 0x1000}], 0x8, &(0x7f0000009440)=""/64, 0x40}, 0x1}, {{&(0x7f0000009480)=@in6={0xa, 0x0, 0x0, @empty}, 0x80, &(0x7f0000009880)=[{&(0x7f000000d800)=""/182, 0xb6}, {&(0x7f00000095c0)=""/213, 0xd5}, {&(0x7f00000096c0)=""/120, 0x78}, {&(0x7f0000009740)=""/187, 0xbb}, {&(0x7f0000009800)=""/65, 0x41}], 0x5}, 0x5}, {{&(0x7f0000009900)=@nfc, 0x80, &(0x7f000000ae40)=[{&(0x7f0000009980)=""/116, 0x74}, {&(0x7f0000009a00)=""/4096, 0x1000}, {&(0x7f000000aa00)=""/154, 0x9a}, {&(0x7f000000aac0)=""/78, 0x4e}, {&(0x7f000000ab40)=""/105, 0x69}, {&(0x7f000000abc0)=""/92, 0x5c}, {&(0x7f000000ac40)=""/250, 0xfa}, {&(0x7f000000ad40)=""/200, 0xc8}], 0x8}, 0xfffffffc}, {{&(0x7f000000aec0)=@vsock={0x28, 0x0, 0x0, @hyper}, 0x80, &(0x7f000000c1c0)=[{&(0x7f000000e400)=""/4096, 0x1000}, {&(0x7f000000bf40)=""/190, 0xbe}, {&(0x7f000000b040)=""/122, 0x7a}, {&(0x7f000000af40)=""/194, 0xc2}, {&(0x7f000000c140)=""/112, 0x70}], 0x5}, 0x2f6d}, {{&(0x7f000000c240)=@nl=@unspec, 0x80, &(0x7f000000d500)=[{&(0x7f000000c2c0)=""/219, 0xdb}, {&(0x7f000000c3c0)=""/4096, 0x1000}, {&(0x7f000000d3c0)=""/211, 0xd3}, {&(0x7f000000d4c0)=""/63, 0x3f}], 0x4}, 0x9}, {{&(0x7f000000d540)=@pppol2tpin6={0x18, 0x1, {0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, {0xa, 0x0, 0x0, @remote}}}, 0x80, &(0x7f000000d6c0)=[{&(0x7f000000d5c0)=""/254, 0xfe}], 0x1, &(0x7f000000d700)=""/79, 0x4f}}, {{&(0x7f000000d780)=@ethernet={0x0, @random}, 0x80, &(0x7f000000d940), 0x0, &(0x7f000000d980)=""/14, 0xe}, 0x6}, {{&(0x7f000000d9c0)=@ax25={{0x3, @rose}, [@default, @remote, @null, @netrom, @null, @default, @null]}, 0x80, &(0x7f000000db00)=[{&(0x7f000000da40)=""/186, 0xba}], 0x1}, 0x1}, {{0x0, 0x0, &(0x7f0000009500)=[{&(0x7f000000db40)=""/102, 0x66}, {&(0x7f000000dbc0)=""/18, 0x12}, {&(0x7f000000dc00)=""/143, 0x8f}, {&(0x7f000000dcc0)=""/64, 0x40}, {&(0x7f000000dd00)=""/52, 0x34}, {&(0x7f000000dd40)=""/153, 0x99}, {&(0x7f000000de00)=""/147, 0x93}], 0x7, &(0x7f000000df40)=""/239, 0xef}, 0x8}], 0x9, 0x40010020, &(0x7f000000e280)={0x0, 0x3938700}) r6 = open(&(0x7f0000000100)='.\x00', 0x0, 0x0) renameat2(r6, &(0x7f0000000400)='./file0/file0\x00', r6, &(0x7f0000000000)='./file0\x00', 0x0) [ 242.431380][T15961] EXT4-fs (loop0): ext4_check_descriptors: Checksum for group 0 failed (38247!=0) [ 242.441092][T15961] EXT4-fs (loop0): group descriptors corrupted! 21:38:22 executing program 5: set_mempolicy(0x8003, &(0x7f0000000300)=0x75f, 0x9) open(&(0x7f0000000300)='.\x00', 0x0, 0x0) r0 = syz_open_procfs(0x0, &(0x7f00000000c0)='fd/3\x00') r1 = syz_open_dev$swradio(&(0x7f0000000100)='/dev/swradio#\x00', 0x0, 0x2) mount$9p_fd(0x0, &(0x7f0000000300)='.\x00', &(0x7f0000000080)='9p\x00', 0x7000000, &(0x7f0000000740)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}}) 21:38:22 executing program 0 (fault-call:0 fault-nth:49): syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x40000, 0x3, &(0x7f0000000200)=[{&(0x7f0000010000)="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", 0x10c, 0x400}, {&(0x7f0000010200)="0500000000000000000000000000000000000000040100002b", 0x19, 0x560}, {&(0x7f0000010300)="000000000000000000000000000000000000000000000000000000001481910a040000001400000024", 0x29, 0x7e0}], 0x0, &(0x7f0000000040)={[{@usrjquota='usrjquota='}, {@data_err_abort='data_err=abort'}]}) 21:38:22 executing program 2: r0 = openat$incfs(0xffffffffffffff9c, &(0x7f0000000140)='.pending_reads\x00', 0x0, 0x124) ioctl$vim2m_VIDIOC_REQBUFS(r0, 0xc0145608, &(0x7f0000000180)={0x1fe0, 0x2, 0x4}) set_mempolicy(0x8003, &(0x7f0000000300)=0x75f, 0x9) r1 = open(&(0x7f0000000300)='.\x00', 0x0, 0x0) symlinkat(&(0x7f0000000040)='\x13\x13w\xc5\xfc5\xd4\x14T\xd5\xd4\x1d)\xad\x1a`)Y\x81F\xe6\xbe\x16nA\xad\r\xbd@T\x03<\x9f3\xbb\xda\x82$\xa2\xf3\xd7r\xe7cnH\xb3<\xbfp\x83r\xe8\xf1\xb9\x93>\xc5\x12wC\xbe\"\x06 \x9e\xf0-\xf9\xcb\xf2\xf6\xe8\x80\xd38//file0\x00', r1, &(0x7f00000000c0)='./file0\x00') mkdirat(r1, &(0x7f0000000200)='\x13\x13w\xc5\xfc5\xd4\x14T\xd5\xd4\x1d)\xad\x1a`)Y\x81F\xe6\xbe\x16nA\xad\r\xbd@T\x03<\x9f3\xbb\xda\x82$\xa2\xf3\xd7r\xe7cnH\xb3<\xbfp\x83r\xe8\xf1\xb9\x93>\xc5\x12wC\xbe\"\x06 \x9e\xf0-\xf9\xcb\xf2\xf6\xe8\x80\xd38/\x00', 0x0) symlinkat(&(0x7f0000000340)='./file0/file0\x00', r1, &(0x7f0000000380)='\x13\x13w\xc5\xfc5\xd4\x14T\xd5\xd4\x1d)\xad\x1a`)Y\x81F\xe6\xbe\x16nA\xad\r\xbd@T\x03<\x9f3\xbb\xda\x82$\xa2\xf3\xd7r\xe7cnH\xb3<\xbfp\x83r\xe8\xf1\xb9\x93>\xc5\x12wC\xbe\"\x06 \x9e\xf0-\xf9\xcb\xf2\xf6\xe8\x80\xd38//file0\x00') r2 = open(&(0x7f0000000100)='.\x00', 0x0, 0x0) renameat2(r2, &(0x7f0000000400)='./file0/file0\x00', r2, &(0x7f0000000000)='./file0\x00', 0x0) open(&(0x7f0000000280)='\x13\x13w\xc5\xfc5\xd4\x14T\xd5\xd4\x1d)\xad\x1a`)Y\x81F\xe6\xbe\x16nA\xad\r\xbd@T\x03<\x9f3\xbb\xda\x82$\xa2\xf3\xd7r\xe7cnH\xb3<\xbfp\x83r\xe8\xf1\xb9\x93>\xc5\x12wC\xbe\"\x06 \x9e\xf0-\xf9\xcb\xf2\xf6\xe8\x80\xd38//file0\x00', 0xc482, 0x20) 21:38:22 executing program 3: set_mempolicy(0x8003, &(0x7f0000000300)=0x75f, 0x9) open(&(0x7f0000000300)='.\x00', 0x0, 0x0) r0 = syz_open_procfs(0x0, &(0x7f00000000c0)='fd/3\x00') r1 = syz_open_dev$swradio(&(0x7f0000000100)='/dev/swradio#\x00', 0x0, 0x2) mount$9p_fd(0x0, &(0x7f0000000300)='.\x00', &(0x7f0000000080)='9p\x00', 0xff9f, &(0x7f0000000740)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}}) 21:38:22 executing program 4: set_mempolicy(0x8003, &(0x7f0000000300)=0x75f, 0x9) open(&(0x7f0000000300)='.\x00', 0x0, 0x0) r0 = syz_open_procfs(0x0, &(0x7f00000000c0)='fd/3\x00') r1 = syz_open_dev$swradio(&(0x7f0000000100)='/dev/swradio#\x00', 0x0, 0x2) mount$9p_fd(0x0, &(0x7f0000000300)='.\x00', &(0x7f0000000080)='9p\x00', 0xb00, &(0x7f0000000740)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}}) 21:38:22 executing program 5: set_mempolicy(0x8003, &(0x7f0000000300)=0x75f, 0x9) open(&(0x7f0000000300)='.\x00', 0x0, 0x0) r0 = syz_open_procfs(0x0, &(0x7f00000000c0)='fd/3\x00') r1 = syz_open_dev$swradio(&(0x7f0000000100)='/dev/swradio#\x00', 0x0, 0x2) mount$9p_fd(0x0, &(0x7f0000000300)='.\x00', &(0x7f0000000080)='9p\x00', 0x8000000, &(0x7f0000000740)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}}) 21:38:22 executing program 1: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) r3 = syz_open_procfs(0x0, &(0x7f00000000c0)='fd/3\x00') mount$9p_fd(0x0, &(0x7f0000000300)='.\x00', &(0x7f0000000080)='9p\x00', 0x10, &(0x7f00000003c0)={'trans=fd,', {'rfdno', 0x3d, r3}, 0x2c, {'wfdno', 0x3d, r2}}) [ 242.635444][T16008] loop0: detected capacity change from 512 to 0 [ 242.659540][T16008] FAULT_INJECTION: forcing a failure. [ 242.659540][T16008] name failslab, interval 1, probability 0, space 0, times 0 [ 242.672227][T16008] CPU: 1 PID: 16008 Comm: syz-executor.0 Not tainted 5.11.0-syzkaller #0 [ 242.680643][T16008] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 242.690694][T16008] Call Trace: [ 242.693973][T16008] dump_stack+0x116/0x15d [ 242.698315][T16008] should_fail+0x23c/0x250 [ 242.702800][T16008] ? __es_insert_extent+0x546/0xe80 [ 242.707996][T16008] __should_failslab+0x81/0x90 [ 242.712756][T16008] should_failslab+0x5/0x20 [ 242.717354][T16008] kmem_cache_alloc+0x36/0x2e0 [ 242.722110][T16008] __es_insert_extent+0x546/0xe80 [ 242.727135][T16008] ext4_es_insert_extent+0x1bb/0x1a80 [ 242.732556][T16008] ? ext4_es_lookup_extent+0x221/0x500 [ 242.738018][T16008] ext4_map_blocks+0xaf4/0xff0 [ 242.742795][T16008] ext4_getblk+0xb1/0x3c0 [ 242.747115][T16008] ext4_bread+0x28/0x130 [ 242.751344][T16008] ext4_append+0xd1/0x1c0 [ 242.755669][T16008] ext4_init_new_dir+0x177/0x500 [ 242.760627][T16008] ext4_mkdir+0x329/0x750 [ 242.764963][T16008] vfs_mkdir+0x288/0x350 [ 242.769203][T16008] do_mkdirat+0x132/0x220 [ 242.773530][T16008] __x64_sys_mkdir+0x32/0x40 [ 242.778148][T16008] do_syscall_64+0x39/0x80 [ 242.782555][T16008] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 242.788659][T16008] RIP: 0033:0x464ea7 [ 242.792545][T16008] Code: 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 83 c8 ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 b8 53 00 00 00 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 242.812153][T16008] RSP: 002b:00007f8175ef9fa8 EFLAGS: 00000213 ORIG_RAX: 0000000000000053 [ 242.820559][T16008] RAX: ffffffffffffffda RBX: 0000000020000200 RCX: 0000000000464ea7 [ 242.828524][T16008] RDX: 0000000000000004 RSI: 00000000000001ff RDI: 0000000020000100 21:38:22 executing program 2: set_mempolicy(0x8003, &(0x7f0000000300)=0x75f, 0x9) r0 = open(&(0x7f0000000300)='.\x00', 0x0, 0x0) symlinkat(&(0x7f0000000140)='./file0\x00', r0, &(0x7f0000000080)='./file0\x00') mkdirat(r0, &(0x7f0000000200)='\x13\x13w\xc5\xfc5\xd4\x14T\xd5\xd4\x1d)\xad\x1a`)Y\x81F\xe6\xbe\x16nA\xad\r\xbd@T\x03<\x9f3\xbb\xda\x82$\xa2\xf3\xd7r\xe7cnH\xb3<\xbfp\x83r\xe8\xf1\xb9\x93>\xc5\x12wC\xbe\"\x06 \x9e\xf0-\xf9\xcb\xf2\xf6\xe8\x80\xd38/\x00', 0x0) symlinkat(&(0x7f0000000340)='./file0/file0\x00', r0, &(0x7f0000000380)='\x13\x13w\xc5\xfc5\xd4\x14T\xd5\xd4\x1d)\xad\x1a`)Y\x81F\xe6\xbe\x16nA\xad\r\xbd@T\x03<\x9f3\xbb\xda\x82$\xa2\xf3\xd7r\xe7cnH\xb3<\xbfp\x83r\xe8\xf1\xb9\x93>\xc5\x12wC\xbe\"\x06 \x9e\xf0-\xf9\xcb\xf2\xf6\xe8\x80\xd38//file0\x00') r1 = open(&(0x7f0000000180)='./file0/file0\x00', 0x0, 0x120) renameat2(r1, &(0x7f0000000400)='./file0/file0\x00', r1, &(0x7f0000000000)='./file0\x00', 0x0) [ 242.836485][T16008] RBP: 00007f8175efa040 R08: 0000000000000000 R09: ffffffffffffffff [ 242.844452][T16008] R10: 0000000000000000 R11: 0000000000000213 R12: 0000000020000000 [ 242.852416][T16008] R13: 0000000020000100 R14: 00007f8175efa000 R15: 0000000020000040 21:38:22 executing program 3: set_mempolicy(0x8003, &(0x7f0000000300)=0x75f, 0x9) open(&(0x7f0000000300)='.\x00', 0x0, 0x0) r0 = syz_open_procfs(0x0, &(0x7f00000000c0)='fd/3\x00') r1 = syz_open_dev$swradio(&(0x7f0000000100)='/dev/swradio#\x00', 0x0, 0x2) mount$9p_fd(0x0, &(0x7f0000000300)='.\x00', &(0x7f0000000080)='9p\x00', 0x400000, &(0x7f0000000740)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}}) 21:38:22 executing program 1: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) r3 = syz_open_procfs(0x0, &(0x7f00000000c0)='fd/3\x00') mount$9p_fd(0x0, &(0x7f0000000300)='.\x00', &(0x7f0000000080)='9p\x00', 0x11, &(0x7f00000003c0)={'trans=fd,', {'rfdno', 0x3d, r3}, 0x2c, {'wfdno', 0x3d, r2}}) 21:38:22 executing program 2: set_mempolicy(0x8003, &(0x7f0000000300)=0x75f, 0x9) r0 = open(&(0x7f0000000300)='.\x00', 0x0, 0x0) symlinkat(&(0x7f0000000040)='\x13\x13w\xc5\xfc5\xd4\x14T\xd5\xd4\x1d)\xad\x1a`)Y\x81F\xe6\xbe\x16nA\xad\r\xbd@T\x03<\x9f3\xbb\xda\x82$\xa2\xf3\xd7r\xe7cnH\xb3<\xbfp\x83r\xe8\xf1\xb9\x93>\xc5\x12wC\xbe\"\x06 \x9e\xf0-\xf9\xcb\xf2\xf6\xe8\x80\xd38/\x00', r0, &(0x7f00000000c0)='./file0\x00') add_key$keyring(&(0x7f00000001c0)='keyring\x00', &(0x7f0000000280)={'syz', 0x1}, 0x0, 0x0, 0xfffffffffffffffa) mkdirat(r0, &(0x7f0000000200)='\x13\x13w\xc5\xfc5\xd4\x14T\xd5\xd4\x1d)\xad\x1a`)Y\x81F\xe6\xbe\x16nA\xad\r\xbd@T\x03<\x9f3\xbb\xda\x82$\xa2\xf3\xd7r\xe7cnH\xb3<\xbfp\x83r\xe8\xf1\xb9\x93>\xc5\x12wC\xbe\"\x06 \x9e\xf0-\xf9\xcb\xf2\xf6\xe8\x80\xd38/\x00', 0x0) symlinkat(&(0x7f0000000340)='./file0/file0\x00', r0, &(0x7f0000000380)='\x13\x13w\xc5\xfc5\xd4\x14T\xd5\xd4\x1d)\xad\x1a`)Y\x81F\xe6\xbe\x16nA\xad\r\xbd@T\x03<\x9f3\xbb\xda\x82$\xa2\xf3\xd7r\xe7cnH\xb3<\xbfp\x83r\xe8\xf1\xb9\x93>\xc5\x12wC\xbe\"\x06 \x9e\xf0-\xf9\xcb\xf2\xf6\xe8\x80\xd38//file0\x00') r1 = open(&(0x7f0000000100)='.\x00', 0x0, 0x0) r2 = syz_open_procfs(0x0, &(0x7f00000000c0)='fd/3\x00') r3 = syz_open_dev$swradio(&(0x7f0000000100)='/dev/swradio#\x00', 0x0, 0x2) mount$9p_fd(0x0, &(0x7f0000000300)='.\x00', &(0x7f0000000080)='9p\x00', 0x0, &(0x7f0000000440)=ANY=[@ANYBLOB='trans=fd,rfdno=', @ANYRESHEX=r2, @ANYBLOB=',wfdno=', @ANYRESHEX=r3, @ANYBLOB="2c00b713c5acaa7eee85f5329683c19ff2db9406872742ed47430c3c260b392e7232d09eb7bb37556a71eb7e0d3f73b65afdb5a55bfbfb6a86d1373fe5efc9af22ce310ba684607abc1f399adf9d253ffc7c4bfc41d92b24e12e"]) mkdirat(r2, &(0x7f0000000140)='\x13\x13w\xc5\xfc5\xd4\x14T\xd5\xd4\x1d)\xad\x1a`)Y\x81F\xe6\xbe\x16nA\xad\r\xbd@T\x03<\x9f3\xbb\xda\x82$\xa2\xf3\xd7r\xe7cnH\xb3<\xbfp\x83r\xe8\xf1\xb9\x93>\xc5\x12wC\xbe\"\x06 \x9e\xf0-\xf9\xcb\xf2\xf6\xe8\x80\xd38/\x00', 0x140) renameat2(r1, &(0x7f0000000400)='./file0/file0\x00', r1, &(0x7f0000000000)='./file0\x00', 0x0) 21:38:22 executing program 4: set_mempolicy(0x8003, &(0x7f0000000300)=0x75f, 0x9) open(&(0x7f0000000300)='.\x00', 0x0, 0x0) r0 = syz_open_procfs(0x0, &(0x7f00000000c0)='fd/3\x00') r1 = syz_open_dev$swradio(&(0x7f0000000100)='/dev/swradio#\x00', 0x0, 0x2) mount$9p_fd(0x0, &(0x7f0000000300)='.\x00', &(0x7f0000000080)='9p\x00', 0xc00, &(0x7f0000000740)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}}) 21:38:22 executing program 5: set_mempolicy(0x8003, &(0x7f0000000300)=0x75f, 0x9) open(&(0x7f0000000300)='.\x00', 0x0, 0x0) r0 = syz_open_procfs(0x0, &(0x7f00000000c0)='fd/3\x00') r1 = syz_open_dev$swradio(&(0x7f0000000100)='/dev/swradio#\x00', 0x0, 0x2) mount$9p_fd(0x0, &(0x7f0000000300)='.\x00', &(0x7f0000000080)='9p\x00', 0x9000000, &(0x7f0000000740)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}}) [ 243.107455][T16062] vivid-004: kernel_thread() failed [ 243.128823][T16008] EXT4-fs (loop0): ext4_check_descriptors: Checksum for group 0 failed (38247!=0) [ 243.149189][T16008] EXT4-fs (loop0): group descriptors corrupted! 21:38:23 executing program 0 (fault-call:0 fault-nth:50): syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x40000, 0x3, &(0x7f0000000200)=[{&(0x7f0000010000)="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", 0x10c, 0x400}, {&(0x7f0000010200)="0500000000000000000000000000000000000000040100002b", 0x19, 0x560}, {&(0x7f0000010300)="000000000000000000000000000000000000000000000000000000001481910a040000001400000024", 0x29, 0x7e0}], 0x0, &(0x7f0000000040)={[{@usrjquota='usrjquota='}, {@data_err_abort='data_err=abort'}]}) 21:38:23 executing program 1: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) r3 = syz_open_procfs(0x0, &(0x7f00000000c0)='fd/3\x00') mount$9p_fd(0x0, &(0x7f0000000300)='.\x00', &(0x7f0000000080)='9p\x00', 0x12, &(0x7f00000003c0)={'trans=fd,', {'rfdno', 0x3d, r3}, 0x2c, {'wfdno', 0x3d, r2}}) 21:38:23 executing program 3: set_mempolicy(0x8003, &(0x7f0000000300)=0x75f, 0x9) open(&(0x7f0000000300)='.\x00', 0x0, 0x0) r0 = syz_open_procfs(0x0, &(0x7f00000000c0)='fd/3\x00') r1 = syz_open_dev$swradio(&(0x7f0000000100)='/dev/swradio#\x00', 0x0, 0x2) mount$9p_fd(0x0, &(0x7f0000000300)='.\x00', &(0x7f0000000080)='9p\x00', 0xfeffff, &(0x7f0000000740)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}}) 21:38:23 executing program 5: set_mempolicy(0x8003, &(0x7f0000000300)=0x75f, 0x9) open(&(0x7f0000000300)='.\x00', 0x0, 0x0) r0 = syz_open_procfs(0x0, &(0x7f00000000c0)='fd/3\x00') r1 = syz_open_dev$swradio(&(0x7f0000000100)='/dev/swradio#\x00', 0x0, 0x2) mount$9p_fd(0x0, &(0x7f0000000300)='.\x00', &(0x7f0000000080)='9p\x00', 0xa000000, &(0x7f0000000740)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}}) 21:38:23 executing program 2: set_mempolicy(0x8003, &(0x7f0000000300)=0x75f, 0x9) r0 = open(&(0x7f0000000300)='.\x00', 0x0, 0x0) symlinkat(&(0x7f0000000040)='\x13\x13w\xc5\xfc5\xd4\x14T\xd5\xd4\x1d)\xad\x1a`)Y\x81F\xe6\xbe\x16nA\xad\r\xbd@T\x03<\x9f3\xbb\xda\x82$\xa2\xf3\xd7r\xe7cnH\xb3<\xbfp\x83r\xe8\xf1\xb9\x93>\xc5\x12wC\xbe\"\x06 \x9e\xf0-\xf9\xcb\xf2\xf6\xe8\x80\xd38/\x00', r0, &(0x7f00000000c0)='./file0\x00') mkdirat(r0, &(0x7f0000000200)='\x13\x13w\xc5\xfc5\xd4\x14T\xd5\xd4\x1d)\xad\x1a`)Y\x81F\xe6\xbe\x16nA\xad\r\xbd@T\x03<\x9f3\xbb\xda\x82$\xa2\xf3\xd7r\xe7cnH\xb3<\xbfp\x83r\xe8\xf1\xb9\x93>\xc5\x12wC\xbe\"\x06 \x9e\xf0-\xf9\xcb\xf2\xf6\xe8\x80\xd38/\x00', 0x0) symlinkat(&(0x7f0000000340)='./file0/file0\x00', r0, &(0x7f0000000380)='\x13\x13w\xc5\xfc5\xd4\x14T\xd5\xd4\x1d)\xad\x1a`)Y\x81F\xe6\xbe\x16nA\xad\r\xbd@T\x03<\x9f3\xbb\xda\x82$\xa2\xf3\xd7r\xe7cnH\xb3<\xbfp\x83r\xe8\xf1\xb9\x93>\xc5\x12wC\xbe\"\x06 \x9e\xf0-\xf9\xcb\xf2\xf6\xe8\x80\xd38//file0\x00') ioctl$sock_bt_hci(r0, 0x400448ca, &(0x7f0000001380)="2b25e9a6a374bbe98fb16713b519e03ec4622187f84e3153cc774448dadb0c38e1af94cbf460d18d3b2e15d5fd8966a21fb006849788b500d2ff50ac8e6837847d1d365b7ba115dce1f4d1ca2d1d9ce57cdf972c364b5edaa2d85c83aa7679f5920e449b6cf7afe5ff8006775f118a40e829c8867aaddd30198042a71c3ea377bdfc5ea617a6dbfbf97aa092568709356875b84cba1a2de474b8ab394456b988cf78af13a0536add86d72bd64630baea774e0d941914868b28ba307a99a1953d507107") r1 = open(&(0x7f0000000100)='.\x00', 0x0, 0x0) bpf$BPF_GET_PROG_INFO(0xf, &(0x7f0000000540)={0xffffffffffffffff, 0xc0, &(0x7f0000000480)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, ""/16, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, &(0x7f0000000440)}}, 0x10) read$FUSE(r1, &(0x7f0000001600)={0x2020}, 0x2020) r2 = bpf$MAP_CREATE(0x0, &(0x7f0000000100)={0x17, 0x0, 0x40002, 0x2, 0x0, 0x1}, 0x2c) r3 = bpf$MAP_CREATE(0x0, &(0x7f0000fe6000)={0x3, 0x4, 0x4, 0x100000009, 0x0, 0x1}, 0x40) r4 = bpf$PROG_LOAD(0x5, &(0x7f0000001300)={0x3, 0x7, &(0x7f0000000000)=@framed={{}, [@map={0x18, 0x0, 0x1, 0x0, r2}, @map={0x18, 0x0, 0x1, 0x0, r3}]}, &(0x7f0000000080)='GPL\x00', 0x2, 0x1000, &(0x7f0000000280)=""/4096, 0x0, 0x0, [], 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0}, 0x70) bpf$BPF_GET_PROG_INFO(0xf, &(0x7f00000001c0)={r4, 0xc0, &(0x7f0000000500)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, ""/16, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}}, 0x10) preadv(r1, &(0x7f0000000140)=[{&(0x7f0000001480)=""/172, 0xac}, {&(0x7f0000001540)=""/143, 0x8f}], 0x2, 0x4, 0xc9) sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000580)={0x0, 0x0, &(0x7f0000000780)={0x0}}, 0x0) bpf$BPF_GET_PROG_INFO(0xf, &(0x7f00000001c0)={r4, 0xc0, &(0x7f0000000500)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, ""/16, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}}, 0x10) renameat2(r1, &(0x7f0000000400)='./file0/file0\x00', r1, &(0x7f0000000000)='./file0\x00', 0x0) 21:38:23 executing program 4: set_mempolicy(0x8003, &(0x7f0000000300)=0x75f, 0x9) open(&(0x7f0000000300)='.\x00', 0x0, 0x0) r0 = syz_open_procfs(0x0, &(0x7f00000000c0)='fd/3\x00') r1 = syz_open_dev$swradio(&(0x7f0000000100)='/dev/swradio#\x00', 0x0, 0x2) mount$9p_fd(0x0, &(0x7f0000000300)='.\x00', &(0x7f0000000080)='9p\x00', 0xd00, &(0x7f0000000740)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}}) 21:38:23 executing program 3: set_mempolicy(0x8003, &(0x7f0000000300)=0x75f, 0x9) open(&(0x7f0000000300)='.\x00', 0x0, 0x0) r0 = syz_open_procfs(0x0, &(0x7f00000000c0)='fd/3\x00') r1 = syz_open_dev$swradio(&(0x7f0000000100)='/dev/swradio#\x00', 0x0, 0x2) mount$9p_fd(0x0, &(0x7f0000000300)='.\x00', &(0x7f0000000080)='9p\x00', 0x1000000, &(0x7f0000000740)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}}) 21:38:23 executing program 4: set_mempolicy(0x8003, &(0x7f0000000300)=0x75f, 0x9) open(&(0x7f0000000300)='.\x00', 0x0, 0x0) r0 = syz_open_procfs(0x0, &(0x7f00000000c0)='fd/3\x00') r1 = syz_open_dev$swradio(&(0x7f0000000100)='/dev/swradio#\x00', 0x0, 0x2) mount$9p_fd(0x0, &(0x7f0000000300)='.\x00', &(0x7f0000000080)='9p\x00', 0xe00, &(0x7f0000000740)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}}) 21:38:23 executing program 1: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) r3 = syz_open_procfs(0x0, &(0x7f00000000c0)='fd/3\x00') mount$9p_fd(0x0, &(0x7f0000000300)='.\x00', &(0x7f0000000080)='9p\x00', 0x25, &(0x7f00000003c0)={'trans=fd,', {'rfdno', 0x3d, r3}, 0x2c, {'wfdno', 0x3d, r2}}) 21:38:23 executing program 2: set_mempolicy(0x0, &(0x7f0000000300)=0x75f, 0x10000000000000d) r0 = open(&(0x7f0000000300)='.\x00', 0x0, 0x0) symlinkat(&(0x7f0000000040)='\x13\x13w\xc5\xfc5\xd4\x14T\xd5\xd4\x1d)\xad\x1a`)Y\x81F\xe6\xbe\x16nA\xad\r\xbd@T\x03<\x9f3\xbb\xda\x82$\xa2\xf3\xd7r\xe7cnH\xb3<\xbfp\x83r\xe8\xf1\xb9\x93>\xc5\x12wC\xbe\"\x06 \x9e\xf0-\xf9\xcb\xf2\xf6\xe8\x80\xd38/\x00', r0, &(0x7f00000000c0)='./file0\x00') mkdirat(r0, &(0x7f0000000200)='\x13\x13w\xc5\xfc5\xd4\x14T\xd5\xd4\x1d)\xad\x1a`)Y\x81F\xe6\xbe\x16nA\xad\r\xbd@T\x03<\x9f3\xbb\xda\x82$\xa2\xf3\xd7r\xe7cnH\xb3<\xbfp\x83r\xe8\xf1\xb9\x93>\xc5\x12wC\xbe\"\x06 \x9e\xf0-\xf9\xcb\xf2\xf6\xe8\x80\xd38/\x00', 0x0) symlinkat(&(0x7f0000000340)='./file0/file0\x00', r0, &(0x7f0000000380)='\x13\x13w\xc5\xfc5\xd4\x14T\xd5\xd4\x1d)\xad\x1a`)Y\x81F\xe6\xbe\x16nA\xad\r\xbd@T\x03<\x9f3\xbb\xda\x82$\xa2\xf3\xd7r\xe7cnH\xb3<\xbfp\x83r\xe8\xf1\xb9\x93>\xc5\x12wC\xbe\"\x06 \x9e\xf0-\xf9\xcb\xf2\xf6\xe8\x80\xd38//file0\x00') recvmmsg(r0, &(0x7f0000001c80)=[{{&(0x7f0000000140)=@l2={0x1f, 0x0, @fixed}, 0x80, &(0x7f0000001700)=[{&(0x7f00000001c0)=""/12, 0xc}, {&(0x7f0000000440)=""/234, 0xea}, {&(0x7f0000000540)=""/4096, 0x1000}, {&(0x7f0000000280)=""/34, 0x22}, {&(0x7f0000001540)=""/155, 0x9b}, {&(0x7f0000001600)=""/234, 0xea}], 0x6, &(0x7f0000001780)=""/151, 0x97}, 0x12d}, {{&(0x7f0000001840)=@l2={0x1f, 0x0, @fixed}, 0x80, &(0x7f00000002c0)=[{&(0x7f00000018c0)=""/197, 0xc5}, {&(0x7f00000019c0)=""/94, 0x5e}, {&(0x7f0000001a40)=""/147, 0x93}, {&(0x7f0000001b00)=""/144, 0x90}], 0x4, &(0x7f0000001bc0)=""/166, 0xa6}, 0x5}], 0x2, 0x160, 0x0) r1 = open(&(0x7f0000000100)='.\x00', 0x0, 0x0) renameat2(r1, &(0x7f0000000400)='./file0/file0\x00', r1, &(0x7f0000000000)='./file0\x00', 0x0) [ 243.316089][T16097] loop0: detected capacity change from 512 to 0 [ 243.351267][T16097] FAULT_INJECTION: forcing a failure. [ 243.351267][T16097] name failslab, interval 1, probability 0, space 0, times 0 21:38:23 executing program 5: set_mempolicy(0x8003, &(0x7f0000000300)=0x75f, 0x9) open(&(0x7f0000000300)='.\x00', 0x0, 0x0) r0 = syz_open_procfs(0x0, &(0x7f00000000c0)='fd/3\x00') r1 = syz_open_dev$swradio(&(0x7f0000000100)='/dev/swradio#\x00', 0x0, 0x2) mount$9p_fd(0x0, &(0x7f0000000300)='.\x00', &(0x7f0000000080)='9p\x00', 0xb000000, &(0x7f0000000740)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}}) [ 243.381438][T16097] CPU: 0 PID: 16097 Comm: syz-executor.0 Not tainted 5.11.0-syzkaller #0 [ 243.389908][T16097] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 243.402273][T16097] Call Trace: [ 243.405546][T16097] dump_stack+0x116/0x15d [ 243.409867][T16097] should_fail+0x23c/0x250 [ 243.414332][T16097] ? jbd2_journal_add_journal_head+0x6c/0x3a0 [ 243.420404][T16097] __should_failslab+0x81/0x90 [ 243.425165][T16097] should_failslab+0x5/0x20 [ 243.429666][T16097] kmem_cache_alloc+0x36/0x2e0 [ 243.434500][T16097] ? ext4_fc_track_range+0x49/0x560 [ 243.439709][T16097] jbd2_journal_add_journal_head+0x6c/0x3a0 [ 243.445585][T16097] jbd2_journal_get_create_access+0x2c/0x280 [ 243.451550][T16097] __ext4_journal_get_create_access+0x55/0x1a0 [ 243.457702][T16097] ext4_getblk+0x206/0x3c0 [ 243.462191][T16097] ext4_bread+0x28/0x130 [ 243.466476][T16097] ext4_append+0xd1/0x1c0 [ 243.470835][T16097] ext4_init_new_dir+0x177/0x500 [ 243.475870][T16097] ext4_mkdir+0x329/0x750 [ 243.480271][T16097] vfs_mkdir+0x288/0x350 [ 243.484494][T16097] do_mkdirat+0x132/0x220 [ 243.488813][T16097] __x64_sys_mkdir+0x32/0x40 [ 243.493385][T16097] do_syscall_64+0x39/0x80 [ 243.497784][T16097] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 243.503673][T16097] RIP: 0033:0x464ea7 [ 243.507549][T16097] Code: 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 83 c8 ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 b8 53 00 00 00 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 243.527137][T16097] RSP: 002b:00007f8175ef9fa8 EFLAGS: 00000213 ORIG_RAX: 0000000000000053 [ 243.535528][T16097] RAX: ffffffffffffffda RBX: 0000000020000200 RCX: 0000000000464ea7 [ 243.543490][T16097] RDX: 0000000000000004 RSI: 00000000000001ff RDI: 0000000020000100 [ 243.551441][T16097] RBP: 00007f8175efa040 R08: 0000000000000000 R09: ffffffffffffffff [ 243.559401][T16097] R10: 0000000000000000 R11: 0000000000000213 R12: 0000000020000000 [ 243.567428][T16097] R13: 0000000020000100 R14: 00007f8175efa000 R15: 0000000020000040 21:38:23 executing program 3: set_mempolicy(0x8003, &(0x7f0000000300)=0x75f, 0x9) open(&(0x7f0000000300)='.\x00', 0x0, 0x0) r0 = syz_open_procfs(0x0, &(0x7f00000000c0)='fd/3\x00') r1 = syz_open_dev$swradio(&(0x7f0000000100)='/dev/swradio#\x00', 0x0, 0x2) mount$9p_fd(0x0, &(0x7f0000000300)='.\x00', &(0x7f0000000080)='9p\x00', 0x2000000, &(0x7f0000000740)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}}) [ 243.590334][T16097] ENOMEM in journal_alloc_journal_head, retrying. [ 243.627711][T16097] EXT4-fs (loop0): ext4_check_descriptors: Checksum for group 0 failed (38247!=0) [ 243.650211][T16097] EXT4-fs (loop0): group descriptors corrupted! 21:38:23 executing program 0 (fault-call:0 fault-nth:51): syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x40000, 0x3, &(0x7f0000000200)=[{&(0x7f0000010000)="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", 0x10c, 0x400}, {&(0x7f0000010200)="0500000000000000000000000000000000000000040100002b", 0x19, 0x560}, {&(0x7f0000010300)="000000000000000000000000000000000000000000000000000000001481910a040000001400000024", 0x29, 0x7e0}], 0x0, &(0x7f0000000040)={[{@usrjquota='usrjquota='}, {@data_err_abort='data_err=abort'}]}) 21:38:23 executing program 4: set_mempolicy(0x8003, &(0x7f0000000300)=0x75f, 0x9) open(&(0x7f0000000300)='.\x00', 0x0, 0x0) r0 = syz_open_procfs(0x0, &(0x7f00000000c0)='fd/3\x00') r1 = syz_open_dev$swradio(&(0x7f0000000100)='/dev/swradio#\x00', 0x0, 0x2) mount$9p_fd(0x0, &(0x7f0000000300)='.\x00', &(0x7f0000000080)='9p\x00', 0x1020, &(0x7f0000000740)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}}) 21:38:23 executing program 1: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) r3 = syz_open_procfs(0x0, &(0x7f00000000c0)='fd/3\x00') mount$9p_fd(0x0, &(0x7f0000000300)='.\x00', &(0x7f0000000080)='9p\x00', 0x5c, &(0x7f00000003c0)={'trans=fd,', {'rfdno', 0x3d, r3}, 0x2c, {'wfdno', 0x3d, r2}}) 21:38:23 executing program 2: set_mempolicy(0x8003, &(0x7f0000000300)=0x75f, 0x9) r0 = open(&(0x7f0000000300)='.\x00', 0x0, 0x0) symlinkat(&(0x7f0000000040)='\x13\x13w\xc5\xfc5\xd4\x14T\xd5\xd4\x1d)\xad\x1a`)Y\x81F\xe6\xbe\x16nA\xad\r\xbd@T\x03<\x9f3\xbb\xda\x82$\xa2\xf3\xd7r\xe7cnH\xb3<\xbfp\x83r\xe8\xf1\xb9\x93>\xc5\x12wC\xbe\"\x06 \x9e\xf0-\xf9\xcb\xf2\xf6\xe8\x80\xd38/\x00', r0, &(0x7f00000000c0)='./file0\x00') mkdirat(r0, &(0x7f0000000200)='\x13\x13w\xc5\xfc5\xd4\x14T\xd5\xd4\x1d)\xad\x1a`)Y\x81F\xe6\xbe\x16nA\xad\r\xbd@T\x03<\x9f3\xbb\xda\x82$\xa2\xf3\xd7r\xe7cnH\xb3<\xbfp\x83r\xe8\xf1\xb9\x93>\xc5\x12wC\xbe\"\x06 \x9e\xf0-\xf9\xcb\xf2\xf6\xe8\x80\xd38/\x00', 0x0) r1 = request_key(&(0x7f0000000980)='keyring\x00', &(0x7f00000009c0)={'syz', 0x0}, 0x0, 0x0) set_mempolicy(0x1, &(0x7f0000000280), 0x30000000) keyctl$invalidate(0x15, r1) add_key$user(&(0x7f0000000140)='user\x00', &(0x7f0000000180)={'syz', 0x1}, &(0x7f00000001c0)="1a3afaf80329daedfa9112c8c3d18f4b3752", 0x12, r1) symlinkat(&(0x7f0000000340)='./file0/file0\x00', r0, &(0x7f0000000380)='\x13\x13w\xc5\xfc5\xd4\x14T\xd5\xd4\x1d)\xad\x1a`)Y\x81F\xe6\xbe\x16nA\xad\r\xbd@T\x03<\x9f3\xbb\xda\x82$\xa2\xf3\xd7r\xe7cnH\xb3<\xbfp\x83r\xe8\xf1\xb9\x93>\xc5\x12wC\xbe\"\x06 \x9e\xf0-\xf9\xcb\xf2\xf6\xe8\x80\xd38//file0\x00') r2 = open(&(0x7f0000000100)='.\x00', 0x4e4040, 0x0) renameat2(r2, &(0x7f0000000400)='./file0/file0\x00', r2, &(0x7f0000000000)='./file0\x00', 0x0) 21:38:23 executing program 5: set_mempolicy(0x8003, &(0x7f0000000300)=0x75f, 0x9) open(&(0x7f0000000300)='.\x00', 0x0, 0x0) r0 = syz_open_procfs(0x0, &(0x7f00000000c0)='fd/3\x00') r1 = syz_open_dev$swradio(&(0x7f0000000100)='/dev/swradio#\x00', 0x0, 0x2) mount$9p_fd(0x0, &(0x7f0000000300)='.\x00', &(0x7f0000000080)='9p\x00', 0xc000000, &(0x7f0000000740)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}}) 21:38:23 executing program 3: set_mempolicy(0x8003, &(0x7f0000000300)=0x75f, 0x9) open(&(0x7f0000000300)='.\x00', 0x0, 0x0) r0 = syz_open_procfs(0x0, &(0x7f00000000c0)='fd/3\x00') r1 = syz_open_dev$swradio(&(0x7f0000000100)='/dev/swradio#\x00', 0x0, 0x2) mount$9p_fd(0x0, &(0x7f0000000300)='.\x00', &(0x7f0000000080)='9p\x00', 0x3000000, &(0x7f0000000740)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}}) 21:38:23 executing program 4: set_mempolicy(0x8003, &(0x7f0000000300)=0x75f, 0x9) open(&(0x7f0000000300)='.\x00', 0x0, 0x0) r0 = syz_open_procfs(0x0, &(0x7f00000000c0)='fd/3\x00') r1 = syz_open_dev$swradio(&(0x7f0000000100)='/dev/swradio#\x00', 0x0, 0x2) mount$9p_fd(0x0, &(0x7f0000000300)='.\x00', &(0x7f0000000080)='9p\x00', 0x1100, &(0x7f0000000740)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}}) 21:38:23 executing program 2: set_mempolicy(0x8003, &(0x7f0000000300)=0x75f, 0x9) r0 = open(&(0x7f0000000300)='.\x00', 0x0, 0x0) symlinkat(&(0x7f0000000040)='\x13\x13w\xc5\xfc5\xd4\x14T\xd5\xd4\x1d)\xad\x1a`)Y\x81F\xe6\xbe\x16nA\xad\r\xbd@T\x03<\x9f3\xbb\xda\x82$\xa2\xf3\xd7r\xe7cnH\xb3<\xbfp\x83r\xe8\xf1\xb9\x93>\xc5\x12wC\xbe\"\x06 \x9e\xf0-\xf9\xcb\xf2\xf6\xe8\x80\xd38/\x00', r0, &(0x7f00000000c0)='./file0\x00') symlinkat(&(0x7f0000000340)='./file0/file0\x00', r0, &(0x7f0000000380)='\x13\x13w\xc5\xfc5\xd4\x14T\xd5\xd4\x1d)\xad\x1a`)Y\x81F\xe6\xbe\x16nA\xad\r\xbd@T\x03<\x9f3\xbb\xda\x82$\xa2\xf3\xd7r\xe7cnH\xb3<\xbfp\x83r\xe8\xf1\xb9\x93>\xc5\x12wC\xbe\"\x06 \x9e\xf0-\xf9\xcb\xf2\xf6\xe8\x80\xd38//file0\x00') r1 = open(&(0x7f0000000100)='.\x00', 0x0, 0x0) renameat2(r1, &(0x7f0000000400)='./file0/file0\x00', r1, &(0x7f0000000000)='./file0\x00', 0x0) recvmsg(r1, &(0x7f0000000280)={&(0x7f0000000140)=@ieee802154={0x24, @short}, 0x80, &(0x7f00000001c0)=[{&(0x7f0000000440)=""/224, 0xe0}], 0x1, &(0x7f0000000540)=""/147, 0x93}, 0x0) 21:38:23 executing program 3: set_mempolicy(0x8003, &(0x7f0000000300)=0x75f, 0x9) open(&(0x7f0000000300)='.\x00', 0x0, 0x0) r0 = syz_open_procfs(0x0, &(0x7f00000000c0)='fd/3\x00') r1 = syz_open_dev$swradio(&(0x7f0000000100)='/dev/swradio#\x00', 0x0, 0x2) mount$9p_fd(0x0, &(0x7f0000000300)='.\x00', &(0x7f0000000080)='9p\x00', 0x4000000, &(0x7f0000000740)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}}) [ 243.852275][T16157] loop0: detected capacity change from 512 to 0 [ 243.870193][T16157] FAULT_INJECTION: forcing a failure. [ 243.870193][T16157] name failslab, interval 1, probability 0, space 0, times 0 [ 243.887994][T16157] CPU: 1 PID: 16157 Comm: syz-executor.0 Not tainted 5.11.0-syzkaller #0 [ 243.896439][T16157] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 243.906537][T16157] Call Trace: [ 243.909814][T16157] dump_stack+0x116/0x15d [ 243.914150][T16157] should_fail+0x23c/0x250 [ 243.918565][T16157] __should_failslab+0x81/0x90 [ 243.923333][T16157] ? __se_sys_mount+0x4e/0x2e0 [ 243.928100][T16157] should_failslab+0x5/0x20 [ 243.932647][T16157] __kmalloc_track_caller+0x57/0x360 [ 243.937930][T16157] ? strnlen_user+0x137/0x1c0 [ 243.942627][T16157] strndup_user+0x73/0x120 [ 243.947034][T16157] __se_sys_mount+0x4e/0x2e0 21:38:23 executing program 5: set_mempolicy(0x8003, &(0x7f0000000300)=0x75f, 0x9) open(&(0x7f0000000300)='.\x00', 0x0, 0x0) r0 = syz_open_procfs(0x0, &(0x7f00000000c0)='fd/3\x00') r1 = syz_open_dev$swradio(&(0x7f0000000100)='/dev/swradio#\x00', 0x0, 0x2) mount$9p_fd(0x0, &(0x7f0000000300)='.\x00', &(0x7f0000000080)='9p\x00', 0xd000000, &(0x7f0000000740)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}}) [ 243.951620][T16157] ? mntput+0x45/0x70 [ 243.955602][T16157] ? __fpregs_load_activate+0x103/0x1f0 [ 243.961204][T16157] __x64_sys_mount+0x63/0x70 [ 243.965797][T16157] do_syscall_64+0x39/0x80 [ 243.970244][T16157] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 243.976138][T16157] RIP: 0033:0x4672ba [ 243.980019][T16157] Code: 48 c7 c2 bc ff ff ff f7 d8 64 89 02 b8 ff ff ff ff eb d2 e8 b8 04 00 00 0f 1f 84 00 00 00 00 00 49 89 ca b8 a5 00 00 00 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 21:38:23 executing program 2: r0 = openat$cgroup_ro(0xffffffffffffffff, &(0x7f0000000140)='cpu.stat\x00', 0x0, 0x0) set_mempolicy(0x8003, &(0x7f0000000300)=0x75f, 0x9) r1 = open(&(0x7f0000000480)='\x13\x13w\xc5\xfc5\xd4\x14T\xd5\xd4\x1d)\xad\x1a`)Y\x81F\xe6\xbe\x16nA\xad\r\xbd@T\x03<\x9f3\xbb\xda\x82$\xa2\xf3\xd7r\xe7cnH\xb3<\xbfp\x83r\xe8\xf1\xb9\x93>\xc5\x12wC\xbe\"\x06 \x9e\xf0-\xf9\xcb\xf2\xf6\xe8\x80\xd38/\x00', 0x0, 0xb2) symlinkat(&(0x7f0000000040)='\x13\x13w\xc5\xfc5\xd4\x14T\xd5\xd4\x1d)\xad\x1a`)Y\x81F\xe6\xbe\x16nA\xad\r\xbd@T\x03<\x9f3\xbb\xda\x82$\xa2\xf3\xd7r\xe7cnH\xb3<\xbfp\x83r\xe8\xf1\xb9\x93>\xc5\x12wC\xbe\"\x06 \x9e\xf0-\xf9\xcb\xf2\xf6\xe8\x80\xd38/\x00', r1, &(0x7f00000000c0)='./file0\x00') mkdirat(r1, &(0x7f0000000200)='\x13\x13w\xc5\xfc5\xd4\x14T\xd5\xd4\x1d)\xad\x1a`)Y\x81F\xe6\xbe\x16nA\xad\r\xbd@T\x03<\x9f3\xbb\xda\x82$\xa2\xf3\xd7r\xe7cnH\xb3<\xbfp\x83r\xe8\xf1\xb9\x93>\xc5\x12wC\xbe\"\x06 \x9e\xf0-\xf9\xcb\xf2\xf6\xe8\x80\xd38/\x00', 0x0) symlinkat(&(0x7f0000000340)='./file0/file0\x00', r1, &(0x7f0000000380)='\x13\x13w\xc5\xfc5\xd4\x14T\xd5\xd4\x1d)\xad\x1a`)Y\x81F\xe6\xbe\x16nA\xad\r\xbd@T\x03<\x9f3\xbb\xda\x82$\xa2\xf3\xd7r\xe7cnH\xb3<\xbfp\x83r\xe8\xf1\xb9\x93>\xc5\x12wC\xbe\"\x06 \x9e\xf0-\xf9\xcb\xf2\xf6\xe8\x80\xd38//file0\x00') r2 = open(&(0x7f0000000100)='.\x00', 0x0, 0x0) renameat2(r2, &(0x7f0000000400)='./file0/file0\x00', r2, &(0x7f0000000000)='./file0\x00', 0x0) ioctl$DRM_IOCTL_PRIME_FD_TO_HANDLE(r0, 0xc00c642e, &(0x7f0000000440)={0x0, 0x0, r2}) r3 = syz_open_procfs(0x0, &(0x7f00000000c0)='fd/3\x00') r4 = syz_open_dev$swradio(&(0x7f0000000100)='/dev/swradio#\x00', 0x0, 0x2) mount$9p_fd(0x0, &(0x7f0000000300)='.\x00', &(0x7f0000000080)='9p\x00', 0x0, &(0x7f0000000740)={'trans=fd,', {'rfdno', 0x3d, r3}, 0x2c, {'wfdno', 0x3d, r4}}) sendmsg$RDMA_NLDEV_CMD_RES_CM_ID_GET(r3, &(0x7f00000002c0)={&(0x7f0000000180)={0x10, 0x0, 0x0, 0x10}, 0xc, &(0x7f0000000280)={&(0x7f00000001c0)={0x18, 0x140b, 0x100, 0x70bd25, 0x25dfdbfc, "", [@RDMA_NLDEV_ATTR_RES_CM_IDN={0x8, 0x3f, 0x2}]}, 0x18}, 0x1, 0x0, 0x0, 0x4000}, 0x0) 21:38:23 executing program 4: set_mempolicy(0x8003, &(0x7f0000000300)=0x75f, 0x9) open(&(0x7f0000000300)='.\x00', 0x0, 0x0) r0 = syz_open_procfs(0x0, &(0x7f00000000c0)='fd/3\x00') r1 = syz_open_dev$swradio(&(0x7f0000000100)='/dev/swradio#\x00', 0x0, 0x2) mount$9p_fd(0x0, &(0x7f0000000300)='.\x00', &(0x7f0000000080)='9p\x00', 0x1200, &(0x7f0000000740)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}}) [ 243.999621][T16157] RSP: 002b:00007f8175ef9fa8 EFLAGS: 00000206 ORIG_RAX: 00000000000000a5 [ 244.008201][T16157] RAX: ffffffffffffffda RBX: 0000000020000200 RCX: 00000000004672ba [ 244.016181][T16157] RDX: 0000000020000000 RSI: 0000000020000100 RDI: 00007f8175efa000 [ 244.024153][T16157] RBP: 00007f8175efa040 R08: 00007f8175efa040 R09: 0000000020000000 [ 244.032123][T16157] R10: 0000000000000000 R11: 0000000000000206 R12: 0000000020000000 [ 244.040119][T16157] R13: 0000000020000100 R14: 00007f8175efa000 R15: 0000000020000040 [ 244.116316][T16194] vivid-004: kernel_thread() failed 21:38:24 executing program 0 (fault-call:0 fault-nth:52): syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x40000, 0x3, &(0x7f0000000200)=[{&(0x7f0000010000)="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", 0x10c, 0x400}, {&(0x7f0000010200)="0500000000000000000000000000000000000000040100002b", 0x19, 0x560}, {&(0x7f0000010300)="000000000000000000000000000000000000000000000000000000001481910a040000001400000024", 0x29, 0x7e0}], 0x0, &(0x7f0000000040)={[{@usrjquota='usrjquota='}, {@data_err_abort='data_err=abort'}]}) 21:38:24 executing program 3: set_mempolicy(0x8003, &(0x7f0000000300)=0x75f, 0x9) open(&(0x7f0000000300)='.\x00', 0x0, 0x0) r0 = syz_open_procfs(0x0, &(0x7f00000000c0)='fd/3\x00') r1 = syz_open_dev$swradio(&(0x7f0000000100)='/dev/swradio#\x00', 0x0, 0x2) mount$9p_fd(0x0, &(0x7f0000000300)='.\x00', &(0x7f0000000080)='9p\x00', 0x5000000, &(0x7f0000000740)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}}) 21:38:24 executing program 1: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) r3 = syz_open_procfs(0x0, &(0x7f00000000c0)='fd/3\x00') mount$9p_fd(0x0, &(0x7f0000000300)='.\x00', &(0x7f0000000080)='9p\x00', 0x300, &(0x7f00000003c0)={'trans=fd,', {'rfdno', 0x3d, r3}, 0x2c, {'wfdno', 0x3d, r2}}) 21:38:24 executing program 5: set_mempolicy(0x8003, &(0x7f0000000300)=0x75f, 0x9) open(&(0x7f0000000300)='.\x00', 0x0, 0x0) r0 = syz_open_procfs(0x0, &(0x7f00000000c0)='fd/3\x00') r1 = syz_open_dev$swradio(&(0x7f0000000100)='/dev/swradio#\x00', 0x0, 0x2) mount$9p_fd(0x0, &(0x7f0000000300)='.\x00', &(0x7f0000000080)='9p\x00', 0xe000000, &(0x7f0000000740)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}}) 21:38:24 executing program 4: set_mempolicy(0x8003, &(0x7f0000000300)=0x75f, 0x9) open(&(0x7f0000000300)='.\x00', 0x0, 0x0) r0 = syz_open_procfs(0x0, &(0x7f00000000c0)='fd/3\x00') r1 = syz_open_dev$swradio(&(0x7f0000000100)='/dev/swradio#\x00', 0x0, 0x2) mount$9p_fd(0x0, &(0x7f0000000300)='.\x00', &(0x7f0000000080)='9p\x00', 0x2010, &(0x7f0000000740)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}}) 21:38:24 executing program 2: set_mempolicy(0x8003, &(0x7f0000000300)=0x4, 0xffffffff) r0 = open(&(0x7f00000002c0)='./file0\x00', 0x82180, 0x0) symlinkat(&(0x7f0000000040)='\x13\x13w\xc5\xfc5\xd4\x14T\xd5\xd4\x1d)\xad\x1a`)Y\x81F\xe6\xbe\x16nA\xad\r\xbd@T\x03<\x9f3\xbb\xda\x82$\xa2\xf3\xd7r\xe7cnH\xb3<\xbfp\x83r\xe8\xf1\xb9\x93>\xc5\x12wC\xbe\"\x06 \x9e\xf0-\xf9\xcb\xf2\xf6\xe8\x80\xd38/\x00', r0, &(0x7f00000000c0)='./file0\x00') socket$inet(0x2, 0x2, 0x7) mkdirat(r0, &(0x7f0000000200)='\x13\x13w\xc5\xfc5\xd4\x14T\xd5\xd4\x1d)\xad\x1a`)Y\x81F\xe6\xbe\x16nA\xad\r\xbd@T\x03<\x9f3\xbb\xda\x82$\xa2\xf3\xd7r\xe7cnH\xb3<\xbfp\x83r\xe8\xf1\xb9\x93>\xc5\x12wC\xbe\"\x06 \x9e\xf0-\xf9\xcb\xf2\xf6\xe8\x80\xd38/\x00', 0x0) symlinkat(&(0x7f0000000340)='./file0/file0\x00', r0, &(0x7f0000000380)='\x13\x13w\xc5\xfc5\xd4\x14T\xd5\xd4\x1d)\xad\x1a`)Y\x81F\xe6\xbe\x16nA\xad\r\xbd@T\x03<\x9f3\xbb\xda\x82$\xa2\xf3\xd7r\xe7cnH\xb3<\xbfp\x83r\xe8\xf1\xb9\x93>\xc5\x12wC\xbe\"\x06 \x9e\xf0-\xf9\xcb\xf2\xf6\xe8\x80\xd38//file0\x00') r1 = open(&(0x7f0000000100)='.\x00', 0x0, 0x0) renameat2(r1, &(0x7f0000000400)='./file0/file0\x00', r1, &(0x7f0000000000)='./file0\x00', 0x0) r2 = bpf$PROG_LOAD(0x5, &(0x7f00000008c0)={0x1a, 0x6, &(0x7f00000006c0)=@raw=[@call={0x85, 0x0, 0x0, 0x21}, @exit, @jmp={0x5, 0x0, 0x8, 0x5, 0xe, 0x80, 0xffffffffffffffff}, @func={0x85, 0x0, 0x1, 0x0, 0xffffffffffffffff}, @btf_id={0x18, 0x3, 0x3, 0x0, 0x3}], &(0x7f0000000700)='syzkaller\x00', 0x3ff, 0xf1, &(0x7f0000000740)=""/241, 0x41100, 0x18, [], 0x0, 0x19, r0, 0x8, &(0x7f0000000840)={0x9, 0x1}, 0x8, 0x10, &(0x7f0000000880)={0x1, 0x0, 0xffff, 0x8}, 0x10}, 0x78) ioctl$LOOP_SET_FD(r0, 0x4c00, r2) syz_mount_image$ubifs(&(0x7f0000000140)='ubifs\x00', &(0x7f0000000180)='./file0\x00', 0x2, 0x2, &(0x7f0000000280)=[{&(0x7f00000001c0)="c261b2ac117320411c385e38b0f0daafb9c6b306d50b27f84600311633c1f3f1", 0x20, 0xffff}, {&(0x7f0000000440)="5b8e8f5228c67143f4920945fd8430ceccc9e68f797b84fa8a2aef780bf6264cc6e089aceb26ea584fb04459ff75dd6b2a2e8cfc310be38c08b9e79419303a2a543f1d9fb69b96af54138e316ea2198a5be7874f7d770a7c729a3567eebcebf17684d8dc78e4bdf603416e9c8145b98de4161f8176f3ac6175d0d8a6f297b30993c0a29771b8ae2f524c27749d1b0ea120fbbfa4e82f0388424dbb62898fab96d53da83e96455f9d1fa21ea06c6d24e72f3da52e", 0xb4, 0xfffffffffffffeff}], 0x42a, &(0x7f0000000500)=ANY=[@ANYBLOB="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", @ANYRESDEC=0x0, @ANYBLOB=',permit_directio,\x00']) [ 244.210365][T16221] loop0: detected capacity change from 512 to 0 [ 244.219212][T16221] FAULT_INJECTION: forcing a failure. [ 244.219212][T16221] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 244.234913][T16221] CPU: 0 PID: 16221 Comm: syz-executor.0 Not tainted 5.11.0-syzkaller #0 [ 244.244005][T16221] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 244.254096][T16221] Call Trace: 21:38:24 executing program 1: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) r3 = syz_open_procfs(0x0, &(0x7f00000000c0)='fd/3\x00') mount$9p_fd(0x0, &(0x7f0000000300)='.\x00', &(0x7f0000000080)='9p\x00', 0x500, &(0x7f00000003c0)={'trans=fd,', {'rfdno', 0x3d, r3}, 0x2c, {'wfdno', 0x3d, r2}}) [ 244.257378][T16221] dump_stack+0x116/0x15d [ 244.261839][T16221] should_fail+0x23c/0x250 [ 244.266251][T16221] should_fail_usercopy+0x16/0x20 [ 244.271265][T16221] _copy_from_user+0x1c/0xd0 [ 244.276110][T16221] strndup_user+0xb0/0x120 [ 244.280523][T16221] __se_sys_mount+0x4e/0x2e0 [ 244.285127][T16221] ? mntput+0x45/0x70 [ 244.289194][T16221] ? __fpregs_load_activate+0x103/0x1f0 [ 244.294803][T16221] __x64_sys_mount+0x63/0x70 [ 244.299419][T16221] do_syscall_64+0x39/0x80 [ 244.303832][T16221] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 244.309731][T16221] RIP: 0033:0x4672ba [ 244.313612][T16221] Code: 48 c7 c2 bc ff ff ff f7 d8 64 89 02 b8 ff ff ff ff eb d2 e8 b8 04 00 00 0f 1f 84 00 00 00 00 00 49 89 ca b8 a5 00 00 00 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 244.315985][T16213] loop2: detected capacity change from 16382 to 0 [ 244.333237][T16221] RSP: 002b:00007f8175ef9fa8 EFLAGS: 00000206 ORIG_RAX: 00000000000000a5 [ 244.333260][T16221] RAX: ffffffffffffffda RBX: 0000000020000200 RCX: 00000000004672ba 21:38:24 executing program 4: set_mempolicy(0x8003, &(0x7f0000000300)=0x75f, 0x9) open(&(0x7f0000000300)='.\x00', 0x0, 0x0) r0 = syz_open_procfs(0x0, &(0x7f00000000c0)='fd/3\x00') r1 = syz_open_dev$swradio(&(0x7f0000000100)='/dev/swradio#\x00', 0x0, 0x2) mount$9p_fd(0x0, &(0x7f0000000300)='.\x00', &(0x7f0000000080)='9p\x00', 0x2500, &(0x7f0000000740)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}}) 21:38:24 executing program 5: set_mempolicy(0x8003, &(0x7f0000000300)=0x75f, 0x9) open(&(0x7f0000000300)='.\x00', 0x0, 0x0) r0 = syz_open_procfs(0x0, &(0x7f00000000c0)='fd/3\x00') r1 = syz_open_dev$swradio(&(0x7f0000000100)='/dev/swradio#\x00', 0x0, 0x2) mount$9p_fd(0x0, &(0x7f0000000300)='.\x00', &(0x7f0000000080)='9p\x00', 0x10000000, &(0x7f0000000740)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}}) 21:38:24 executing program 3: set_mempolicy(0x8003, &(0x7f0000000300)=0x75f, 0x9) open(&(0x7f0000000300)='.\x00', 0x0, 0x0) r0 = syz_open_procfs(0x0, &(0x7f00000000c0)='fd/3\x00') r1 = syz_open_dev$swradio(&(0x7f0000000100)='/dev/swradio#\x00', 0x0, 0x2) mount$9p_fd(0x0, &(0x7f0000000300)='.\x00', &(0x7f0000000080)='9p\x00', 0x6000000, &(0x7f0000000740)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}}) [ 244.333271][T16221] RDX: 0000000020000000 RSI: 0000000020000100 RDI: 00007f8175efa000 [ 244.333281][T16221] RBP: 00007f8175efa040 R08: 00007f8175efa040 R09: 0000000020000000 [ 244.333292][T16221] R10: 0000000000000000 R11: 0000000000000206 R12: 0000000020000000 [ 244.333302][T16221] R13: 0000000020000100 R14: 00007f8175efa000 R15: 0000000020000040 21:38:24 executing program 5: set_mempolicy(0x8003, &(0x7f0000000300)=0x75f, 0x9) open(&(0x7f0000000300)='.\x00', 0x0, 0x0) r0 = syz_open_procfs(0x0, &(0x7f00000000c0)='fd/3\x00') r1 = syz_open_dev$swradio(&(0x7f0000000100)='/dev/swradio#\x00', 0x0, 0x2) mount$9p_fd(0x0, &(0x7f0000000300)='.\x00', &(0x7f0000000080)='9p\x00', 0x11000000, &(0x7f0000000740)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}}) 21:38:24 executing program 1: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) r3 = syz_open_procfs(0x0, &(0x7f00000000c0)='fd/3\x00') mount$9p_fd(0x0, &(0x7f0000000300)='.\x00', &(0x7f0000000080)='9p\x00', 0x600, &(0x7f00000003c0)={'trans=fd,', {'rfdno', 0x3d, r3}, 0x2c, {'wfdno', 0x3d, r2}}) 21:38:24 executing program 0 (fault-call:0 fault-nth:53): syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x40000, 0x3, &(0x7f0000000200)=[{&(0x7f0000010000)="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", 0x10c, 0x400}, {&(0x7f0000010200)="0500000000000000000000000000000000000000040100002b", 0x19, 0x560}, {&(0x7f0000010300)="000000000000000000000000000000000000000000000000000000001481910a040000001400000024", 0x29, 0x7e0}], 0x0, &(0x7f0000000040)={[{@usrjquota='usrjquota='}, {@data_err_abort='data_err=abort'}]}) 21:38:24 executing program 4: set_mempolicy(0x8003, &(0x7f0000000300)=0x75f, 0x9) open(&(0x7f0000000300)='.\x00', 0x0, 0x0) r0 = syz_open_procfs(0x0, &(0x7f00000000c0)='fd/3\x00') r1 = syz_open_dev$swradio(&(0x7f0000000100)='/dev/swradio#\x00', 0x0, 0x2) mount$9p_fd(0x0, &(0x7f0000000300)='.\x00', &(0x7f0000000080)='9p\x00', 0x4000, &(0x7f0000000740)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}}) 21:38:24 executing program 3: set_mempolicy(0x8003, &(0x7f0000000300)=0x75f, 0x9) open(&(0x7f0000000300)='.\x00', 0x0, 0x0) r0 = syz_open_procfs(0x0, &(0x7f00000000c0)='fd/3\x00') r1 = syz_open_dev$swradio(&(0x7f0000000100)='/dev/swradio#\x00', 0x0, 0x2) mount$9p_fd(0x0, &(0x7f0000000300)='.\x00', &(0x7f0000000080)='9p\x00', 0x7000000, &(0x7f0000000740)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}}) [ 244.532468][T16265] loop2: detected capacity change from 16382 to 0 21:38:24 executing program 5: set_mempolicy(0x8003, &(0x7f0000000300)=0x75f, 0x9) open(&(0x7f0000000300)='.\x00', 0x0, 0x0) r0 = syz_open_procfs(0x0, &(0x7f00000000c0)='fd/3\x00') r1 = syz_open_dev$swradio(&(0x7f0000000100)='/dev/swradio#\x00', 0x0, 0x2) mount$9p_fd(0x0, &(0x7f0000000300)='.\x00', &(0x7f0000000080)='9p\x00', 0x12000000, &(0x7f0000000740)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}}) 21:38:24 executing program 4: set_mempolicy(0x8003, &(0x7f0000000300)=0x75f, 0x9) open(&(0x7f0000000300)='.\x00', 0x0, 0x0) r0 = syz_open_procfs(0x0, &(0x7f00000000c0)='fd/3\x00') r1 = syz_open_dev$swradio(&(0x7f0000000100)='/dev/swradio#\x00', 0x0, 0x2) mount$9p_fd(0x0, &(0x7f0000000300)='.\x00', &(0x7f0000000080)='9p\x00', 0x5c00, &(0x7f0000000740)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}}) 21:38:24 executing program 2: set_mempolicy(0x8003, &(0x7f0000000300)=0x75f, 0x9) r0 = open(&(0x7f0000000300)='.\x00', 0x0, 0x0) symlinkat(&(0x7f0000000040)='\x13\x13w\xc5\xfc5\xd4\x14T\xd5\xd4\x1d)\xad\x1a`)Y\x81F\xe6\xbe\x16nA\xad\r\xbd@T\x03<\x9f3\xbb\xda\x82$\xa2\xf3\xd7r\xe7cnH\xb3<\xbfp\x83r\xe8\xf1\xb9\x93>\xc5\x12wC\xbe\"\x06 \x9e\xf0-\xf9\xcb\xf2\xf6\xe8\x80\xd38/\x00', r0, &(0x7f00000000c0)='./file0\x00') mkdirat(r0, &(0x7f0000000200)='\x13\x13w\xc5\xfc5\xd4\x14T\xd5\xd4\x1d)\xad\x1a`)Y\x81F\xe6\xbe\x16nA\xad\r\xbd@T\x03<\x9f3\xbb\xda\x82$\xa2\xf3\xd7r\xe7cnH\xb3<\xbfp\x83r\xe8\xf1\xb9\x93>\xc5\x12wC\xbe\"\x06 \x9e\xf0-\xf9\xcb\xf2\xf6\xe8\x80\xd38/\x00', 0x0) symlinkat(&(0x7f0000000340)='./file0/file0\x00', r0, &(0x7f0000000380)='\x13\x13w\xc5\xfc5\xd4\x14T\xd5\xd4\x1d)\xad\x1a`)Y\x81F\xe6\xbe\x16nA\xad\r\xbd@T\x03<\x9f3\xbb\xda\x82$\xa2\xf3\xd7r\xe7cnH\xb3<\xbfp\x83r\xe8\xf1\xb9\x93>\xc5\x12wC\xbe\"\x06 \x9e\xf0-\xf9\xcb\xf2\xf6\xe8\x80\xd38//file0\x00') stat(&(0x7f00000001c0)='./file0\x00', &(0x7f0000000280)) rmdir(&(0x7f0000000140)='\x13\x13w\xc5\xfc5\xd4\x14T\xd5\xd4\x1d)\xad\x1a`)Y\x81F\xe6\xbe\x16nA\xad\r\xbd@T\x03<\x9f3\xbb\xda\x82$\xa2\xf3\xd7r\xe7cnH\xb3<\xbfp\x83r\xe8\xf1\xb9\x93>\xc5\x12wC\xbe\"\x06 \x9e\xf0-\xf9\xcb\xf2\xf6\xe8\x80\xd38//file1\x00') r1 = open(&(0x7f0000000100)='.\x00', 0x0, 0x0) socket$nl_netfilter(0x10, 0x3, 0xc) renameat2(r1, &(0x7f0000000400)='./file0/file0\x00', r1, &(0x7f0000000000)='./file0\x00', 0x0) 21:38:24 executing program 1: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) r3 = syz_open_procfs(0x0, &(0x7f00000000c0)='fd/3\x00') mount$9p_fd(0x0, &(0x7f0000000300)='.\x00', &(0x7f0000000080)='9p\x00', 0x700, &(0x7f00000003c0)={'trans=fd,', {'rfdno', 0x3d, r3}, 0x2c, {'wfdno', 0x3d, r2}}) [ 244.620730][T16277] loop0: detected capacity change from 512 to 0 [ 244.639819][T16277] FAULT_INJECTION: forcing a failure. [ 244.639819][T16277] name failslab, interval 1, probability 0, space 0, times 0 [ 244.685786][T16277] CPU: 1 PID: 16277 Comm: syz-executor.0 Not tainted 5.11.0-syzkaller #0 [ 244.694236][T16277] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 244.704291][T16277] Call Trace: [ 244.707566][T16277] dump_stack+0x116/0x15d [ 244.711901][T16277] should_fail+0x23c/0x250 [ 244.716315][T16277] __should_failslab+0x81/0x90 [ 244.721089][T16277] ? __se_sys_mount+0x91/0x2e0 [ 244.725866][T16277] should_failslab+0x5/0x20 [ 244.730384][T16277] __kmalloc_track_caller+0x57/0x360 [ 244.736356][T16277] ? strnlen_user+0x137/0x1c0 [ 244.741020][T16277] strndup_user+0x73/0x120 [ 244.745585][T16277] __se_sys_mount+0x91/0x2e0 [ 244.751123][T16277] ? mntput+0x45/0x70 [ 244.755116][T16277] ? __fpregs_load_activate+0x103/0x1f0 [ 244.760659][T16277] __x64_sys_mount+0x63/0x70 [ 244.765284][T16277] do_syscall_64+0x39/0x80 [ 244.769695][T16277] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 244.775667][T16277] RIP: 0033:0x4672ba [ 244.779552][T16277] Code: 48 c7 c2 bc ff ff ff f7 d8 64 89 02 b8 ff ff ff ff eb d2 e8 b8 04 00 00 0f 1f 84 00 00 00 00 00 49 89 ca b8 a5 00 00 00 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 244.799212][T16277] RSP: 002b:00007f8175ef9fa8 EFLAGS: 00000206 ORIG_RAX: 00000000000000a5 [ 244.807604][T16277] RAX: ffffffffffffffda RBX: 0000000020000200 RCX: 00000000004672ba [ 244.815554][T16277] RDX: 0000000020000000 RSI: 0000000020000100 RDI: 00007f8175efa000 [ 244.823504][T16277] RBP: 00007f8175efa040 R08: 00007f8175efa040 R09: 0000000020000000 21:38:24 executing program 3: set_mempolicy(0x8003, &(0x7f0000000300)=0x75f, 0x9) open(&(0x7f0000000300)='.\x00', 0x0, 0x0) r0 = syz_open_procfs(0x0, &(0x7f00000000c0)='fd/3\x00') r1 = syz_open_dev$swradio(&(0x7f0000000100)='/dev/swradio#\x00', 0x0, 0x2) mount$9p_fd(0x0, &(0x7f0000000300)='.\x00', &(0x7f0000000080)='9p\x00', 0x8000000, &(0x7f0000000740)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}}) [ 244.831475][T16277] R10: 0000000000000000 R11: 0000000000000206 R12: 0000000020000000 [ 244.839425][T16277] R13: 0000000020000100 R14: 00007f8175efa000 R15: 0000000020000040 [ 244.860996][T16308] 9pnet: Insufficient options for proto=fd 21:38:24 executing program 4: set_mempolicy(0x8003, &(0x7f0000000300)=0x75f, 0x9) open(&(0x7f0000000300)='.\x00', 0x0, 0x0) r0 = syz_open_procfs(0x0, &(0x7f00000000c0)='fd/3\x00') r1 = syz_open_dev$swradio(&(0x7f0000000100)='/dev/swradio#\x00', 0x0, 0x2) mount$9p_fd(0x0, &(0x7f0000000300)='.\x00', &(0x7f0000000080)='9p\x00', 0x9fff, &(0x7f0000000740)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}}) [ 244.893113][ T9777] warn_unsupported: 69 callbacks suppressed [ 244.893124][ T9777] kernel read not supported for file root/syzkaller-testdir051064025/syzkaller.PVWmQb/250 (pid: 9777 comm: kworker/0:5) [ 244.943672][ T9777] kernel read not supported for file root/syzkaller-testdir051064025/syzkaller.PVWmQb/250 (pid: 9777 comm: kworker/0:5) 21:38:24 executing program 2: set_mempolicy(0x8003, &(0x7f0000000300)=0x4, 0x9) set_mempolicy(0x2, &(0x7f0000000140)=0x1, 0x3f) r0 = open(&(0x7f0000000300)='.\x00', 0x0, 0x0) symlinkat(&(0x7f0000000040)='\x13\x13w\xc5\xfc5\xd4\x14T\xd5\xd4\x1d)\xad\x1a`)Y\x81F\xe6\xbe\x16nA\xad\r\xbd@T\x03<\x9f3\xbb\xda\x82$\xa2\xf3\xd7r\xe7cnH\xb3<\xbfp\x83r\xe8\xf1\xb9\x93>\xc5\x12wC\xbe\"\x06 \x9e\xf0-\xf9\xcb\xf2\xf6\xe8\x80\xd38/\x00', r0, &(0x7f00000000c0)='./file0\x00') mkdirat(r0, &(0x7f0000000200)='\x13\x13w\xc5\xfc5\xd4\x14T\xd5\xd4\x1d)\xad\x1a`)Y\x81F\xe6\xbe\x16nA\xad\r\xbd@T\x03<\x9f3\xbb\xda\x82$\xa2\xf3\xd7r\xe7cnH\xb3<\xbfp\x83r\xe8\xf1\xb9\x93>\xc5\x12wC\xbe\"\x06 \x9e\xf0-\xf9\xcb\xf2\xf6\xe8\x80\xd38/\x00', 0x0) symlinkat(&(0x7f0000000340)='./file0/file0\x00', r0, &(0x7f0000000380)='\x13\x13w\xc5\xfc5\xd4\x14T\xd5\xd4\x1d)\xad\x1a`)Y\x81F\xe6\xbe\x16nA\xad\r\xbd@T\x03<\x9f3\xbb\xda\x82$\xa2\xf3\xd7r\xe7cnH\xb3<\xbfp\x83r\xe8\xf1\xb9\x93>\xc5\x12wC\xbe\"\x06 \x9e\xf0-\xf9\xcb\xf2\xf6\xe8\x80\xd38//file0\x00') r1 = open(&(0x7f0000000100)='.\x00', 0x0, 0x0) renameat2(r1, &(0x7f0000000400)='./file0/file0\x00', r1, &(0x7f0000000000)='./file0\x00', 0x0) 21:38:24 executing program 5: set_mempolicy(0x8003, &(0x7f0000000300)=0x75f, 0x9) open(&(0x7f0000000300)='.\x00', 0x0, 0x0) r0 = syz_open_procfs(0x0, &(0x7f00000000c0)='fd/3\x00') r1 = syz_open_dev$swradio(&(0x7f0000000100)='/dev/swradio#\x00', 0x0, 0x2) mount$9p_fd(0x0, &(0x7f0000000300)='.\x00', &(0x7f0000000080)='9p\x00', 0x20100000, &(0x7f0000000740)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}}) 21:38:24 executing program 4: set_mempolicy(0x8003, &(0x7f0000000300)=0x75f, 0x9) open(&(0x7f0000000300)='.\x00', 0x0, 0x0) r0 = syz_open_procfs(0x0, &(0x7f00000000c0)='fd/3\x00') r1 = syz_open_dev$swradio(&(0x7f0000000100)='/dev/swradio#\x00', 0x0, 0x2) mount$9p_fd(0x0, &(0x7f0000000300)='.\x00', &(0x7f0000000080)='9p\x00', 0xedc0, &(0x7f0000000740)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}}) [ 244.985579][ T9557] kernel read not supported for file root/syzkaller-testdir496628174/syzkaller.h9GlBV/252 (pid: 9557 comm: kworker/1:4) [ 245.061116][ T9557] kernel read not supported for file root/syzkaller-testdir496628174/syzkaller.h9GlBV/252 (pid: 9557 comm: kworker/1:4) 21:38:25 executing program 0 (fault-call:0 fault-nth:54): syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x40000, 0x3, &(0x7f0000000200)=[{&(0x7f0000010000)="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", 0x10c, 0x400}, {&(0x7f0000010200)="0500000000000000000000000000000000000000040100002b", 0x19, 0x560}, {&(0x7f0000010300)="000000000000000000000000000000000000000000000000000000001481910a040000001400000024", 0x29, 0x7e0}], 0x0, &(0x7f0000000040)={[{@usrjquota='usrjquota='}, {@data_err_abort='data_err=abort'}]}) 21:38:25 executing program 5: set_mempolicy(0x8003, &(0x7f0000000300)=0x75f, 0x9) open(&(0x7f0000000300)='.\x00', 0x0, 0x0) r0 = syz_open_procfs(0x0, &(0x7f00000000c0)='fd/3\x00') r1 = syz_open_dev$swradio(&(0x7f0000000100)='/dev/swradio#\x00', 0x0, 0x2) mount$9p_fd(0x0, &(0x7f0000000300)='.\x00', &(0x7f0000000080)='9p\x00', 0x25000000, &(0x7f0000000740)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}}) 21:38:25 executing program 2: set_mempolicy(0x8003, &(0x7f0000000300)=0x75f, 0x9) r0 = open(&(0x7f0000000300)='.\x00', 0x0, 0x0) r1 = syz_open_procfs(0x0, &(0x7f00000000c0)='fd/3\x00') r2 = syz_open_dev$swradio(&(0x7f0000000100)='/dev/swradio#\x00', 0x0, 0x2) mount$9p_fd(0x0, &(0x7f0000000300)='.\x00', &(0x7f0000000080)='9p\x00', 0x0, &(0x7f0000000740)={'trans=fd,', {'rfdno', 0x3d, r1}, 0x2c, {'wfdno', 0x3d, r2}}) symlinkat(&(0x7f0000000040)='\x13\x13w\xc5\xfc5\xd4\x14T\xd5\xd4\x1d)\xad\x1a`)Y\x81F\xe6\xbe\x16nA\xad\r\xbd@T\x03<\x9f3\xbb\xda\x82$\xa2\xf3\xd7r\xe7cnH\xb3<\xbfp\x83r\xe8\xf1\xb9\x93>\xc5\x12wC\xbe\"\x06 \x9e\xf0-\xf9\xcb\xf2\xf6\xe8\x80\xd38/\x00', r1, &(0x7f0000000280)='\x13\x13w\xc5\xfc5\xd4\x14T\xd5\xd4\x1d)\xad\x1a`)Y\x81F\xe6\xbe\x16nA\xad\r\xbd@T\x03<\x9f3\xbb\xda\x82$\xa2\xf3\xd7r\xe7cnH\xb3<\xbfp\x83r\xe8\xf1\xb9\x93>\xc5\x12wC\xbe\"\x06 \x9e\xf0-\xf9\xcb\xf2\xf6\xe8\x80\xd38/\x00') mkdirat(r0, &(0x7f0000000200)='\x13\x13w\xc5\xfc5\xd4\x14T\xd5\xd4\x1d)\xad\x1a`)Y\x81F\xe6\xbe\x16nA\xad\r\xbd@T\x03<\x9f3\xbb\xda\x82$\xa2\xf3\xd7r\xe7cnH\xb3<\xbfp\x83r\xe8\xf1\xb9\x93>\xc5\x12wC\xbe\"\x06 \x9e\xf0-\xf9\xcb\xf2\xf6\xe8\x80\xd38/\x00', 0x0) symlinkat(&(0x7f0000000340)='./file0/file0\x00', r0, &(0x7f0000000380)='\x13\x13w\xc5\xfc5\xd4\x14T\xd5\xd4\x1d)\xad\x1a`)Y\x81F\xe6\xbe\x16nA\xad\r\xbd@T\x03<\x9f3\xbb\xda\x82$\xa2\xf3\xd7r\xe7cnH\xb3<\xbfp\x83r\xe8\xf1\xb9\x93>\xc5\x12wC\xbe\"\x06 \x9e\xf0-\xf9\xcb\xf2\xf6\xe8\x80\xd38//file0\x00') r3 = open(&(0x7f0000000100)='.\x00', 0x0, 0x0) add_key$user(&(0x7f0000000140)='user\x00', &(0x7f0000000180)={'syz', 0x0}, &(0x7f00000001c0)="41486c3af47693fde245117df7bd98272adce65625a8db554731b347832c9c2339d9eba68cb564d989c481e9db01fe4e894a7127267eb67d9b08f9cb13a9fb50", 0x40, 0xfffffffffffffffe) renameat2(r3, &(0x7f0000000400)='./file0/file0\x00', r3, &(0x7f0000000000)='./file0\x00', 0x0) 21:38:25 executing program 4: set_mempolicy(0x8003, &(0x7f0000000300)=0x75f, 0x9) open(&(0x7f0000000300)='.\x00', 0x0, 0x0) r0 = syz_open_procfs(0x0, &(0x7f00000000c0)='fd/3\x00') r1 = syz_open_dev$swradio(&(0x7f0000000100)='/dev/swradio#\x00', 0x0, 0x2) mount$9p_fd(0x0, &(0x7f0000000300)='.\x00', &(0x7f0000000080)='9p\x00', 0xff00, &(0x7f0000000740)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}}) 21:38:25 executing program 3: set_mempolicy(0x8003, &(0x7f0000000300)=0x75f, 0x9) open(&(0x7f0000000300)='.\x00', 0x0, 0x0) r0 = syz_open_procfs(0x0, &(0x7f00000000c0)='fd/3\x00') r1 = syz_open_dev$swradio(&(0x7f0000000100)='/dev/swradio#\x00', 0x0, 0x2) mount$9p_fd(0x0, &(0x7f0000000300)='.\x00', &(0x7f0000000080)='9p\x00', 0x9000000, &(0x7f0000000740)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}}) 21:38:25 executing program 1: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) r3 = syz_open_procfs(0x0, &(0x7f00000000c0)='fd/3\x00') mount$9p_fd(0x0, &(0x7f0000000300)='.\x00', &(0x7f0000000080)='9p\x00', 0x900, &(0x7f00000003c0)={'trans=fd,', {'rfdno', 0x3d, r3}, 0x2c, {'wfdno', 0x3d, r2}}) [ 245.154270][T16308] 9pnet: Insufficient options for proto=fd [ 245.232320][ T9777] kernel read not supported for file root/syzkaller-testdir496628174/syzkaller.h9GlBV/253 (pid: 9777 comm: kworker/0:5) [ 245.240967][ T9557] kernel read not supported for file root/syzkaller-testdir330001169/syzkaller.9ERo5L/267 (pid: 9557 comm: kworker/1:4) [ 245.270859][T16356] loop0: detected capacity change from 512 to 0 21:38:25 executing program 3: set_mempolicy(0x8003, &(0x7f0000000300)=0x75f, 0x9) open(&(0x7f0000000300)='.\x00', 0x0, 0x0) r0 = syz_open_procfs(0x0, &(0x7f00000000c0)='fd/3\x00') r1 = syz_open_dev$swradio(&(0x7f0000000100)='/dev/swradio#\x00', 0x0, 0x2) mount$9p_fd(0x0, &(0x7f0000000300)='.\x00', &(0x7f0000000080)='9p\x00', 0xa000000, &(0x7f0000000740)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}}) 21:38:25 executing program 4: set_mempolicy(0x8003, &(0x7f0000000300)=0x75f, 0x9) open(&(0x7f0000000300)='.\x00', 0x0, 0x0) r0 = syz_open_procfs(0x0, &(0x7f00000000c0)='fd/3\x00') r1 = syz_open_dev$swradio(&(0x7f0000000100)='/dev/swradio#\x00', 0x0, 0x2) mount$9p_fd(0x0, &(0x7f0000000300)='.\x00', &(0x7f0000000080)='9p\x00', 0xff9f, &(0x7f0000000740)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}}) [ 245.277111][ T9777] kernel read not supported for file root/syzkaller-testdir496628174/syzkaller.h9GlBV/253 (pid: 9777 comm: kworker/0:5) [ 245.298142][ T9777] kernel read not supported for file root/syzkaller-testdir051064025/syzkaller.PVWmQb/252 (pid: 9777 comm: kworker/0:5) [ 245.308892][T16364] 9pnet: Insufficient options for proto=fd [ 245.328722][T16356] FAULT_INJECTION: forcing a failure. [ 245.328722][T16356] name failslab, interval 1, probability 0, space 0, times 0 [ 245.381813][T16377] 9pnet: Insufficient options for proto=fd [ 245.389949][ T9777] kernel read not supported for file root/syzkaller-testdir496628174/syzkaller.h9GlBV/254 (pid: 9777 comm: kworker/0:5) [ 245.394620][ T3648] kernel read not supported for file root/syzkaller-testdir051064025/syzkaller.PVWmQb/252 (pid: 3648 comm: kworker/1:2) [ 245.420039][T16356] CPU: 1 PID: 16356 Comm: syz-executor.0 Not tainted 5.11.0-syzkaller #0 [ 245.428486][T16356] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 245.438577][T16356] Call Trace: [ 245.441857][T16356] dump_stack+0x116/0x15d [ 245.446206][T16356] should_fail+0x23c/0x250 [ 245.450661][T16356] __should_failslab+0x81/0x90 [ 245.455622][T16356] ? __se_sys_mount+0xf2/0x2e0 [ 245.460387][T16356] should_failslab+0x5/0x20 [ 245.464986][T16356] kmem_cache_alloc_trace+0x39/0x320 [ 245.470270][T16356] ? _copy_from_user+0x94/0xd0 [ 245.471306][T16380] vivid-006: kernel_thread() failed [ 245.475030][T16356] __se_sys_mount+0xf2/0x2e0 [ 245.475053][T16356] ? mntput+0x45/0x70 [ 245.488904][T16356] ? __fpregs_load_activate+0x103/0x1f0 [ 245.494451][T16356] __x64_sys_mount+0x63/0x70 [ 245.499066][T16356] do_syscall_64+0x39/0x80 [ 245.503486][T16356] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 245.509380][T16356] RIP: 0033:0x4672ba 21:38:25 executing program 3: set_mempolicy(0x8003, &(0x7f0000000300)=0x75f, 0x9) open(&(0x7f0000000300)='.\x00', 0x0, 0x0) r0 = syz_open_procfs(0x0, &(0x7f00000000c0)='fd/3\x00') r1 = syz_open_dev$swradio(&(0x7f0000000100)='/dev/swradio#\x00', 0x0, 0x2) mount$9p_fd(0x0, &(0x7f0000000300)='.\x00', &(0x7f0000000080)='9p\x00', 0xb000000, &(0x7f0000000740)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}}) [ 245.513268][T16356] Code: 48 c7 c2 bc ff ff ff f7 d8 64 89 02 b8 ff ff ff ff eb d2 e8 b8 04 00 00 0f 1f 84 00 00 00 00 00 49 89 ca b8 a5 00 00 00 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 245.532893][T16356] RSP: 002b:00007f8175ef9fa8 EFLAGS: 00000206 ORIG_RAX: 00000000000000a5 [ 245.541358][T16356] RAX: ffffffffffffffda RBX: 0000000020000200 RCX: 00000000004672ba [ 245.549356][T16356] RDX: 0000000020000000 RSI: 0000000020000100 RDI: 00007f8175efa000 [ 245.557320][T16356] RBP: 00007f8175efa040 R08: 00007f8175efa040 R09: 0000000020000000 [ 245.565281][T16356] R10: 0000000000000000 R11: 0000000000000206 R12: 0000000020000000 [ 245.573264][T16356] R13: 0000000020000100 R14: 00007f8175efa000 R15: 0000000020000040 21:38:25 executing program 4: set_mempolicy(0x8003, &(0x7f0000000300)=0x75f, 0x9) open(&(0x7f0000000300)='.\x00', 0x0, 0x0) r0 = syz_open_procfs(0x0, &(0x7f00000000c0)='fd/3\x00') r1 = syz_open_dev$swradio(&(0x7f0000000100)='/dev/swradio#\x00', 0x0, 0x2) mount$9p_fd(0x0, &(0x7f0000000300)='.\x00', &(0x7f0000000080)='9p\x00', 0x400000, &(0x7f0000000740)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}}) 21:38:25 executing program 2: set_mempolicy(0x8003, &(0x7f0000000300)=0x75f, 0x9) r0 = open(&(0x7f0000000300)='.\x00', 0x0, 0x0) symlinkat(&(0x7f0000000040)='\x13\x13w\xc5\xfc5\xd4\x14T\xd5\xd4\x1d)\xad\x1a`)Y\x81F\xe6\xbe\x16nA\xad\r\xbd@T\x03<\x9f3\xbb\xda\x82$\xa2\xf3\xd7r\xe7cnH\xb3<\xbfp\x83r\xe8\xf1\xb9\x93>\xc5\x12wC\xbe\"\x06 \x9e\xf0-\xf9\xcb\xf2\xf6\xe8\x80\xd38/\x00', r0, &(0x7f00000000c0)='./file0\x00') mkdirat(r0, &(0x7f0000000200)='\x13\x13w\xc5\xfc5\xd4\x14T\xd5\xd4\x1d)\xad\x1a`)Y\x81F\xe6\xbe\x16nA\xad\r\xbd@T\x03<\x9f3\xbb\xda\x82$\xa2\xf3\xd7r\xe7cnH\xb3<\xbfp\x83r\xe8\xf1\xb9\x93>\xc5\x12wC\xbe\"\x06 \x9e\xf0-\xf9\xcb\xf2\xf6\xe8\x80\xd38/\x00', 0x0) symlinkat(&(0x7f0000000340)='./file0/file0\x00', r0, &(0x7f0000000380)='\x13\x13w\xc5\xfc5\xd4\x14T\xd5\xd4\x1d)\xad\x1a`)Y\x81F\xe6\xbe\x16nA\xad\r\xbd@T\x03<\x9f3\xbb\xda\x82$\xa2\xf3\xd7r\xe7cnH\xb3<\xbfp\x83r\xe8\xf1\xb9\x93>\xc5\x12wC\xbe\"\x06 \x9e\xf0-\xf9\xcb\xf2\xf6\xe8\x80\xd38//file0\x00') r1 = open(&(0x7f0000000100)='.\x00', 0x0, 0x0) readlinkat(r1, &(0x7f0000000140)='\x13\x13w\xc5\xfc5\xd4\x14T\xd5\xd4\x1d)\xad\x1a`)Y\x81F\xe6\xbe\x16nA\xad\r\xbd@T\x03<\x9f3\xbb\xda\x82$\xa2\xf3\xd7r\xe7cnH\xb3<\xbfp\x83r\xe8\xf1\xb9\x93>\xc5\x12wC\xbe\"\x06 \x9e\xf0-\xf9\xcb\xf2\xf6\xe8\x80\xd38/\x00', &(0x7f0000000440)=""/138, 0x8a) renameat2(r1, &(0x7f0000000400)='./file0/file0\x00', r1, &(0x7f00000001c0)='./file0\x00', 0x4) 21:38:25 executing program 5: set_mempolicy(0x8003, &(0x7f0000000300)=0x75f, 0x9) open(&(0x7f0000000300)='.\x00', 0x0, 0x0) r0 = syz_open_procfs(0x0, &(0x7f00000000c0)='fd/3\x00') r1 = syz_open_dev$swradio(&(0x7f0000000100)='/dev/swradio#\x00', 0x0, 0x2) mount$9p_fd(0x0, &(0x7f0000000300)='.\x00', &(0x7f0000000080)='9p\x00', 0x40000000, &(0x7f0000000740)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}}) 21:38:25 executing program 0 (fault-call:0 fault-nth:55): syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x40000, 0x3, &(0x7f0000000200)=[{&(0x7f0000010000)="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", 0x10c, 0x400}, {&(0x7f0000010200)="0500000000000000000000000000000000000000040100002b", 0x19, 0x560}, {&(0x7f0000010300)="000000000000000000000000000000000000000000000000000000001481910a040000001400000024", 0x29, 0x7e0}], 0x0, &(0x7f0000000040)={[{@usrjquota='usrjquota='}, {@data_err_abort='data_err=abort'}]}) 21:38:25 executing program 1: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) r3 = syz_open_procfs(0x0, &(0x7f00000000c0)='fd/3\x00') mount$9p_fd(0x0, &(0x7f0000000300)='.\x00', &(0x7f0000000080)='9p\x00', 0xa00, &(0x7f00000003c0)={'trans=fd,', {'rfdno', 0x3d, r3}, 0x2c, {'wfdno', 0x3d, r2}}) 21:38:25 executing program 2: set_mempolicy(0x8003, &(0x7f0000000300)=0x75f, 0x9) r0 = open(&(0x7f0000000300)='.\x00', 0x0, 0x0) symlinkat(&(0x7f0000000040)='\x13\x13w\xc5\xfc5\xd4\x14T\xd5\xd4\x1d)\xad\x1a`)Y\x81F\xe6\xbe\x16nA\xad\r\xbd@T\x03<\x9f3\xbb\xda\x82$\xa2\xf3\xd7r\xe7cnH\xb3<\xbfp\x83r\xe8\xf1\xb9\x93>\xc5\x12wC\xbe\"\x06 \x9e\xf0-\xf9\xcb\xf2\xf6\xe8\x80\xd38/\x00', r0, &(0x7f00000000c0)='./file0\x00') mkdirat(r0, &(0x7f0000000200)='\x13\x13w\xc5\xfc5\xd4\x14T\xd5\xd4\x1d)\xad\x1a`)Y\x81F\xe6\xbe\x16nA\xad\r\xbd@T\x03<\x9f3\xbb\xda\x82$\xa2\xf3\xd7r\xe7cnH\xb3<\xbfp\x83r\xe8\xf1\xb9\x93>\xc5\x12wC\xbe\"\x06 \x9e\xf0-\xf9\xcb\xf2\xf6\xe8\x80\xd38/\x00', 0x0) symlinkat(&(0x7f0000000340)='./file0/file0\x00', r0, &(0x7f0000000380)='\x13\x13w\xc5\xfc5\xd4\x14T\xd5\xd4\x1d)\xad\x1a`)Y\x81F\xe6\xbe\x16nA\xad\r\xbd@T\x03<\x9f3\xbb\xda\x82$\xa2\xf3\xd7r\xe7cnH\xb3<\xbfp\x83r\xe8\xf1\xb9\x93>\xc5\x12wC\xbe\"\x06 \x9e\xf0-\xf9\xcb\xf2\xf6\xe8\x80\xd38//file0\x00') open(&(0x7f0000000100)='.\x00', 0x0, 0x0) 21:38:25 executing program 3: set_mempolicy(0x8003, &(0x7f0000000300)=0x75f, 0x9) open(&(0x7f0000000300)='.\x00', 0x0, 0x0) r0 = syz_open_procfs(0x0, &(0x7f00000000c0)='fd/3\x00') r1 = syz_open_dev$swradio(&(0x7f0000000100)='/dev/swradio#\x00', 0x0, 0x2) mount$9p_fd(0x0, &(0x7f0000000300)='.\x00', &(0x7f0000000080)='9p\x00', 0xc000000, &(0x7f0000000740)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}}) 21:38:25 executing program 5: set_mempolicy(0x8003, &(0x7f0000000300)=0x75f, 0x9) open(&(0x7f0000000300)='.\x00', 0x0, 0x0) r0 = syz_open_procfs(0x0, &(0x7f00000000c0)='fd/3\x00') r1 = syz_open_dev$swradio(&(0x7f0000000100)='/dev/swradio#\x00', 0x0, 0x2) mount$9p_fd(0x0, &(0x7f0000000300)='.\x00', &(0x7f0000000080)='9p\x00', 0x5c000000, &(0x7f0000000740)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}}) 21:38:25 executing program 4: set_mempolicy(0x8003, &(0x7f0000000300)=0x75f, 0x9) open(&(0x7f0000000300)='.\x00', 0x0, 0x0) r0 = syz_open_procfs(0x0, &(0x7f00000000c0)='fd/3\x00') r1 = syz_open_dev$swradio(&(0x7f0000000100)='/dev/swradio#\x00', 0x0, 0x2) mount$9p_fd(0x0, &(0x7f0000000300)='.\x00', &(0x7f0000000080)='9p\x00', 0xfeffff, &(0x7f0000000740)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}}) 21:38:25 executing program 2: set_mempolicy(0x8003, &(0x7f0000000300)=0x75f, 0x9) r0 = open(&(0x7f0000000300)='.\x00', 0x0, 0x0) symlinkat(&(0x7f0000000040)='\x13\x13w\xc5\xfc5\xd4\x14T\xd5\xd4\x1d)\xad\x1a`)Y\x81F\xe6\xbe\x16nA\xad\r\xbd@T\x03<\x9f3\xbb\xda\x82$\xa2\xf3\xd7r\xe7cnH\xb3<\xbfp\x83r\xe8\xf1\xb9\x93>\xc5\x12wC\xbe\"\x06 \x9e\xf0-\xf9\xcb\xf2\xf6\xe8\x80\xd38/\x00', r0, &(0x7f00000000c0)='./file0\x00') link(&(0x7f0000000140)='./file1\x00', &(0x7f0000000180)='\x13\x13w\xc5\xfc5\xd4\x14T\xd5\xd4\x1d)\xad\x1a`)Y\x81F\xe6\xbe\x16nA\xad\r\xbd@T\x03<\x9f3\xbb\xda\x82$\xa2\xf3\xd7r\xe7cnH\xb3<\xbfp\x83r\xe8\xf1\xb9\x93>\xc5\x12wC\xbe\"\x06 \x9e\xf0-\xf9\xcb\xf2\xf6\xe8\x80\xd38//file0\x00') mkdirat(r0, &(0x7f0000000200)='\x13\x13w\xc5\xfc5\xd4\x14T\xd5\xd4\x1d)\xad\x1a`)Y\x81F\xe6\xbe\x16nA\xad\r\xbd@T\x03<\x9f3\xbb\xda\x82$\xa2\xf3\xd7r\xe7cnH\xb3<\xbfp\x83r\xe8\xf1\xb9\x93>\xc5\x12wC\xbe\"\x06 \x9e\xf0-\xf9\xcb\xf2\xf6\xe8\x80\xd38/\x00', 0x0) symlinkat(&(0x7f0000000340)='./file0/file0\x00', r0, &(0x7f0000000380)='\x13\x13w\xc5\xfc5\xd4\x14T\xd5\xd4\x1d)\xad\x1a`)Y\x81F\xe6\xbe\x16nA\xad\r\xbd@T\x03<\x9f3\xbb\xda\x82$\xa2\xf3\xd7r\xe7cnH\xb3<\xbfp\x83r\xe8\xf1\xb9\x93>\xc5\x12wC\xbe\"\x06 \x9e\xf0-\xf9\xcb\xf2\xf6\xe8\x80\xd38//file0\x00') open(&(0x7f0000000100)='.\x00', 0x0, 0x0) rename(&(0x7f0000001e00)='\x13\x13w\xc5\xfc5\xd4\x14T\xd5\xd4\x1d)\xad\x1a`)Y\x81F\xe6\xbe\x16nA\xad\r\xbd@T\x03<\x9f3\xbb\xda\x82$\xa2\xf3\xd7r\xe7cnH\xb3<\xbfp\x83r\xe8\xf1\xb9\x93>\xc5\x12wC\xbe\"\x06 \x9e\xf0-\xf9\xcb\xf2\xf6\xe8\x80\xd38//file0\x00', &(0x7f0000001e80)='./file0/file0\x00') r1 = syz_open_procfs(0x0, &(0x7f00000000c0)='fd/3\x00') r2 = syz_open_dev$swradio(&(0x7f0000000100)='/dev/swradio#\x00', 0x0, 0x2) mount$9p_fd(0x0, &(0x7f0000000300)='.\x00', &(0x7f0000000080)='9p\x00', 0x1040000, &(0x7f0000000740)={'trans=fd,', {'rfdno', 0x3d, r1}, 0x2c, {'wfdno', 0x3d, r2}}) r3 = openat$zero(0xffffffffffffff9c, &(0x7f0000000280)='/dev/zero\x00', 0x494000, 0x0) syz_mount_image$ext4(&(0x7f00000002c0)='ext3\x00', &(0x7f00000006c0)='\x13\x13w\xc5\xfc5\xd4\x14T\xd5\xd4\x1d)\xad\x1a`)Y\x81F\xe6\xbe\x16nA\xad\r\xbd@T\x03<\x9f3\xbb\xda\x82$\xa2\xf3\xd7r\xe7cnH\xb3<\xbfp\x83r\xe8\xf1\xb9\x93>\xc5\x12wC\xbe\"\x06 \x9e\xf0-\xf9\xcb\xf2\xf6\xe8\x80\xd38//file0\x00', 0x20, 0x9, &(0x7f0000001c00)=[{&(0x7f0000000400)="09a2a00d5b666032493174344b545180ea3807313929815d5ff0fa8c7083419fe3f27ecfe4a3125508161ed628f239089341643e970c295a", 0x38, 0x1}, {&(0x7f0000000780)="8dc129f0356de0baa267a006c116af1b9cff159a41026a97c4df931dbbe2fb99ba33050c4df618802d49cd093c3b365cec7799be42264b575a1e683d29cf9343cd34db2f9e3cf4aaa6c0887035803c6f411a79058b5d352b1ef68502f44a9ca636a880fcd6560c7bba75bbfbf83ed7c676e4cc5a1a60c9fab578477f162b5361a04bdc9b4b10eb894fbc3bf22003ae2287959271c86753fa52845d9cb12e97390c37ba493c3253d4bce387db841e5ca7299c0094d35a", 0xb6, 0x9}, {&(0x7f0000000840)="58d5a68008b4a7573baab5501601037c6a15f730f3d1551120e85a83e9aa1e055a9d102ba83d89919e43d604b49d81ba02bb22486bc1b169659a9d16779ce333b64d28f77536e8b5917c4180840ac25b6a6d4fb320ddefd772655318a437738ab6b1f045e81cbdb650bedeb93126adf60f99c00f324833e3b530603a1ea0076e14d9f1b314269c48fe409a5ff8376846f891137ac27e255ddf66882929a131668c1d4b4e6fe0f3", 0xa7, 0x8}, {&(0x7f0000000900)="8696e84979a359eedfcb2908d466a6f3fafa2cea04675740391fe719ea72d670177f7b8d458d120a2fe20c90face49012b4d7d55958cb77bb71bf9be54a666693d9458373d5f4f044cc5587df7ab396749986e23fdd5f2687d00561963346a37b1915f8f2da5e2886610d40131df5f6366929a48414cb4b95aa3ef18296ac8b6edb67754958cfa669b480010bf0706b5", 0x90, 0x4}, {&(0x7f00000009c0)="4c6ca53abc235cc6cbd29b23ea21114ef2be636829d3a922be29", 0x1a, 0x1}, {&(0x7f0000000a00)="eb4a3dd2989d49196bbfdf0731db7def4ef6dfd21b3da92bb21e795039a402b1181787c88569503d762f604de184f479643455279a2fca767cea1fae1fd5a4b2b3923e9a08f0c92f624815a8ba4a640922f65f63581554124b69928103aca8653bd5e3aa351d34b02f353088d67b0116835f6a3f7309da1399e712be5b796841a86bd7b737ba57b937ac89ec97af06bd06155025dc4b2c685d8730ff6de5e04bdaa3d1d3376d67355f876f3599e2a24d82dec950cedc7ce94ddde4c12f79827dd3", 0xc1, 0xe40}, {&(0x7f0000000b00)="bdcfd7de2682c1f6e96badc764671c4eb161cd4743a3ce9bd5cca38fe239fd06c9856c00ae20c6b759fb524452732b70ca6a2ac6f649fa0e1d7aeaaa253a93af9c", 0x41, 0x9e86}, {&(0x7f0000000b80)="681ec65def32da180781ec39b5d6d0db2be5b5d99b98a465b31b7db124defd0533712d7d894457bbdc2ef6b096a81e3a8cd1e6576e6240b2938926f892b2ac273db919f906eda267", 0x48, 0xfff}, {&(0x7f0000000c00)="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", 0x1000, 0x81}], 0x800000, &(0x7f0000001d00)={[{@user_xattr='user_xattr'}, {@bh='bh'}, {@data_writeback='data=writeback'}, {@sysvgroups='sysvgroups'}, {@noquota='noquota'}], [{@appraise_type='appraise_type=imasig'}]}) r4 = syz_open_procfs(0x0, &(0x7f00000000c0)='fd/3\x00') r5 = syz_open_dev$swradio(&(0x7f0000000100)='/dev/swradio#\x00', 0x0, 0x2) mount$9p_fd(0x0, &(0x7f0000000300)='.\x00', &(0x7f0000000080)='9p\x00', 0x0, &(0x7f0000000740)={'trans=fd,', {'rfdno', 0x3d, r4}, 0x2c, {'wfdno', 0x3d, r5}}) renameat2(r4, &(0x7f0000001d80)='\x13\x13w\xc5\xfc5\xd4\x14T\xd5\xd4\x1d)\xad\x1a`)Y\x81F\xe6\xbe\x16nA\xad\r\xbd@T\x03<\x9f3\xbb\xda\x82$\xa2\xf3\xd7r\xe7cnH\xb3<\xbfp\x83r\xe8\xf1\xb9\x93>\xc5\x12wC\xbe\"\x06 \x9e\xf0-\xf9\xcb\xf2\xf6\xe8\x80\xd38/\x00', r3, &(0x7f0000000000)='./file0\x00', 0x5) ioctl$BTRFS_IOC_GET_SUBVOL_INFO(r3, 0x81f8943c, &(0x7f00000004c0)) chdir(&(0x7f0000000440)='\x13\x13w\xc5\xfc5\xd4\x14T\xd5\xd4\x1d)\xad\x1a`)Y\x81F\xe6\xbe\x16nA\xad\r\xbd@T\x03<\x9f3\xbb\xda\x82$\xa2\xf3\xd7r\xe7cnH\xb3<\xbfp\x83r\xe8\xf1\xb9\x93>\xc5\x12wC\xbe\"\x06 \x9e\xf0-\xf9\xcb\xf2\xf6\xe8\x80\xd38//file0\x00') [ 245.889326][T16421] loop0: detected capacity change from 512 to 0 [ 245.928824][T16421] FAULT_INJECTION: forcing a failure. 21:38:25 executing program 4: set_mempolicy(0x8003, &(0x7f0000000300)=0x75f, 0x9) open(&(0x7f0000000300)='.\x00', 0x0, 0x0) r0 = syz_open_procfs(0x0, &(0x7f00000000c0)='fd/3\x00') r1 = syz_open_dev$swradio(&(0x7f0000000100)='/dev/swradio#\x00', 0x0, 0x2) mount$9p_fd(0x0, &(0x7f0000000300)='.\x00', &(0x7f0000000080)='9p\x00', 0x1000000, &(0x7f0000000740)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}}) 21:38:25 executing program 1: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) r3 = syz_open_procfs(0x0, &(0x7f00000000c0)='fd/3\x00') mount$9p_fd(0x0, &(0x7f0000000300)='.\x00', &(0x7f0000000080)='9p\x00', 0xb00, &(0x7f00000003c0)={'trans=fd,', {'rfdno', 0x3d, r3}, 0x2c, {'wfdno', 0x3d, r2}}) [ 245.928824][T16421] name failslab, interval 1, probability 0, space 0, times 0 [ 245.953465][T16421] CPU: 1 PID: 16421 Comm: syz-executor.0 Not tainted 5.11.0-syzkaller #0 [ 245.962020][T16421] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 245.972073][T16421] Call Trace: [ 245.975350][T16421] dump_stack+0x116/0x15d [ 245.979687][T16421] should_fail+0x23c/0x250 [ 245.984207][T16421] __should_failslab+0x81/0x90 21:38:25 executing program 5: set_mempolicy(0x8003, &(0x7f0000000300)=0x75f, 0x9) open(&(0x7f0000000300)='.\x00', 0x0, 0x0) r0 = syz_open_procfs(0x0, &(0x7f00000000c0)='fd/3\x00') r1 = syz_open_dev$swradio(&(0x7f0000000100)='/dev/swradio#\x00', 0x0, 0x2) mount$9p_fd(0x0, &(0x7f0000000300)='.\x00', &(0x7f0000000080)='9p\x00', 0x8cffffff, &(0x7f0000000740)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}}) 21:38:25 executing program 3: set_mempolicy(0x8003, &(0x7f0000000300)=0x75f, 0x9) open(&(0x7f0000000300)='.\x00', 0x0, 0x0) r0 = syz_open_procfs(0x0, &(0x7f00000000c0)='fd/3\x00') r1 = syz_open_dev$swradio(&(0x7f0000000100)='/dev/swradio#\x00', 0x0, 0x2) mount$9p_fd(0x0, &(0x7f0000000300)='.\x00', &(0x7f0000000080)='9p\x00', 0xd000000, &(0x7f0000000740)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}}) [ 245.989045][T16421] ? __se_sys_mount+0xf2/0x2e0 [ 245.993803][T16421] should_failslab+0x5/0x20 [ 245.998292][T16421] kmem_cache_alloc_trace+0x39/0x320 [ 246.003576][T16421] ? _copy_from_user+0x94/0xd0 [ 246.008339][T16421] __se_sys_mount+0xf2/0x2e0 [ 246.012937][T16421] ? mntput+0x45/0x70 [ 246.016977][T16421] ? __fpregs_load_activate+0x103/0x1f0 [ 246.022522][T16421] __x64_sys_mount+0x63/0x70 [ 246.027133][T16421] do_syscall_64+0x39/0x80 [ 246.031588][T16421] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 246.037570][T16421] RIP: 0033:0x4672ba [ 246.041455][T16421] Code: 48 c7 c2 bc ff ff ff f7 d8 64 89 02 b8 ff ff ff ff eb d2 e8 b8 04 00 00 0f 1f 84 00 00 00 00 00 49 89 ca b8 a5 00 00 00 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 246.061230][T16421] RSP: 002b:00007f8175ef9fa8 EFLAGS: 00000206 ORIG_RAX: 00000000000000a5 [ 246.069635][T16421] RAX: ffffffffffffffda RBX: 0000000020000200 RCX: 00000000004672ba [ 246.077596][T16421] RDX: 0000000020000000 RSI: 0000000020000100 RDI: 00007f8175efa000 [ 246.085566][T16421] RBP: 00007f8175efa040 R08: 00007f8175efa040 R09: 0000000020000000 [ 246.093520][T16421] R10: 0000000000000000 R11: 0000000000000206 R12: 0000000020000000 [ 246.101471][T16421] R13: 0000000020000100 R14: 00007f8175efa000 R15: 0000000020000040 [ 246.110172][T16443] loop2: detected capacity change from 158 to 0 [ 246.136697][T16449] 9pnet: Insufficient options for proto=fd [ 246.158374][T16449] 9pnet: Insufficient options for proto=fd 21:38:26 executing program 5: set_mempolicy(0x8003, &(0x7f0000000300)=0x75f, 0x9) open(&(0x7f0000000300)='.\x00', 0x0, 0x0) r0 = syz_open_procfs(0x0, &(0x7f00000000c0)='fd/3\x00') r1 = syz_open_dev$swradio(&(0x7f0000000100)='/dev/swradio#\x00', 0x0, 0x2) mount$9p_fd(0x0, &(0x7f0000000300)='.\x00', &(0x7f0000000080)='9p\x00', 0xc0ed0000, &(0x7f0000000740)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}}) 21:38:26 executing program 0 (fault-call:0 fault-nth:56): syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x40000, 0x3, &(0x7f0000000200)=[{&(0x7f0000010000)="20000000000100000c000000d90000000f0000000100000000000000000000000020000000200000200000002cc4645f2cc4645f0100ffff53ef0100010000002cc4645f000000000000000001000000000000000b0000008000000038000000c20200006b0400000000000000000000000000000000000073797a6b616c6c6572000000000000002f746d702f73797a2d696d61676567656e3338363633343038350000000000000000000000000000000000000000000000000000000000000000000000000000000000000000010000000000000000000000000000000000000000000000000000000000d9ca5cac99fd4329af4dde786c1a5d13010040000c000000000000002cc4645f", 0x10c, 0x400}, {&(0x7f0000010200)="0500000000000000000000000000000000000000040100002b", 0x19, 0x560}, {&(0x7f0000010300)="000000000000000000000000000000000000000000000000000000001481910a040000001400000024", 0x29, 0x7e0}], 0x0, &(0x7f0000000040)={[{@usrjquota='usrjquota='}, {@data_err_abort='data_err=abort'}]}) 21:38:26 executing program 4: set_mempolicy(0x8003, &(0x7f0000000300)=0x75f, 0x9) open(&(0x7f0000000300)='.\x00', 0x0, 0x0) r0 = syz_open_procfs(0x0, &(0x7f00000000c0)='fd/3\x00') r1 = syz_open_dev$swradio(&(0x7f0000000100)='/dev/swradio#\x00', 0x0, 0x2) mount$9p_fd(0x0, &(0x7f0000000300)='.\x00', &(0x7f0000000080)='9p\x00', 0x1000002, &(0x7f0000000740)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}}) [ 246.213735][T16468] loop2: detected capacity change from 158 to 0 21:38:26 executing program 1: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) r3 = syz_open_procfs(0x0, &(0x7f00000000c0)='fd/3\x00') mount$9p_fd(0x0, &(0x7f0000000300)='.\x00', &(0x7f0000000080)='9p\x00', 0xc00, &(0x7f00000003c0)={'trans=fd,', {'rfdno', 0x3d, r3}, 0x2c, {'wfdno', 0x3d, r2}}) 21:38:26 executing program 2: set_mempolicy(0x8003, &(0x7f0000000300)=0x75f, 0x9) r0 = open(&(0x7f0000000300)='.\x00', 0x0, 0x0) symlinkat(&(0x7f0000000040)='\x13\x13w\xc5\xfc5\xd4\x14T\xd5\xd4\x1d)\xad\x1a`)Y\x81F\xe6\xbe\x16nA\xad\r\xbd@T\x03<\x9f3\xbb\xda\x82$\xa2\xf3\xd7r\xe7cnH\xb3<\xbfp\x83r\xe8\xf1\xb9\x93>\xc5\x12wC\xbe\"\x06 \x9e\xf0-\xf9\xcb\xf2\xf6\xe8\x80\xd38/\x00', r0, &(0x7f00000000c0)='./file0\x00') mkdirat(r0, &(0x7f0000000200)='\x13\x13w\xc5\xfc5\xd4\x14T\xd5\xd4\x1d)\xad\x1a`)Y\x81F\xe6\xbe\x16nA\xad\r\xbd@T\x03<\x9f3\xbb\xda\x82$\xa2\xf3\xd7r\xe7cnH\xb3<\xbfp\x83r\xe8\xf1\xb9\x93>\xc5\x12wC\xbe\"\x06 \x9e\xf0-\xf9\xcb\xf2\xf6\xe8\x80\xd38/\x00', 0x0) rename(&(0x7f0000000140)='\x13\x13w\xc5\xfc5\xd4\x14T\xd5\xd4\x1d)\xad\x1a`)Y\x81F\xe6\xbe\x16nA\xad\r\xbd@T\x03<\x9f3\xbb\xda\x82$\xa2\xf3\xd7r\xe7cnH\xb3<\xbfp\x83r\xe8\xf1\xb9\x93>\xc5\x12wC\xbe\"\x06 \x9e\xf0-\xf9\xcb\xf2\xf6\xe8\x80\xd38//file0\x00', &(0x7f00000001c0)='./file0\x00') symlinkat(&(0x7f0000000340)='./file0/file0\x00', r0, &(0x7f0000000380)='\x13\x13w\xc5\xfc5\xd4\x14T\xd5\xd4\x1d)\xad\x1a`)Y\x81F\xe6\xbe\x16nA\xad\r\xbd@T\x03<\x9f3\xbb\xda\x82$\xa2\xf3\xd7r\xe7cnH\xb3<\xbfp\x83r\xe8\xf1\xb9\x93>\xc5\x12wC\xbe\"\x06 \x9e\xf0-\xf9\xcb\xf2\xf6\xe8\x80\xd38//file0\x00') r1 = syz_open_procfs(0x0, &(0x7f00000000c0)='fd/3\x00') openat2$dir(0xffffffffffffff9c, &(0x7f0000000dc0)='\x13\x13w\xc5\xfc5\xd4\x14T\xd5\xd4\x1d)\xad\x1a`)Y\x81F\xe6\xbe\x16nA\xad\r\xbd@T\x03<\x9f3\xbb\xda\x82$\xa2\xf3\xd7r\xe7cnH\xb3<\xbfp\x83r\xe8\xf1\xb9\x93>\xc5\x12wC\xbe\"\x06 \x9e\xf0-\xf9\xcb\xf2\xf6\xe8\x80\xd38//file0\x00', &(0x7f0000000e40)={0x0, 0x3, 0x3}, 0x18) r2 = syz_mount_image$cramfs(&(0x7f0000000280)='cramfs\x00', &(0x7f0000000540)='\x13\x13w\xc5\xfc5\xd4\x14T\xd5\xd4\x1d)\xad\x1a`)Y\x81F\xe6\xbe\x16nA\xad\r\xbd@T\x03<\x9f3\xbb\xda\x82$\xa2\xf3\xd7r\xe7cnH\xb3<\xbfp\x83r\xe8\xf1\xb9\x93>\xc5\x12wC\xbe\"\x06 \x9e\xf0-\xf9\xcb\xf2\xf6\xe8\x80\xd38//file0\x00', 0x2, 0x9, &(0x7f0000000b80)=[{&(0x7f00000002c0)="329dfa1e5d4ff9744bb9be95e365cd6d9cec71e0f0d62426f8967bbacea07730e48a6edb85702929d366a34e94acfaaeba02846a7c6baef05b4905284a4dda", 0x3f, 0x7fffffff}, {&(0x7f00000005c0)="82e8f44034b6bcbddb4d6a899f75bba9b5e78eb06ce7dfba2bc8bbd9cf234f2728ce1ee11f7bcc3a4e05257870e22c7ef04632deaeaaedb6b9ed04daa0b4a3117448367fb50ce8ab335dab5892a2daed18e50aa3a3dcfe97da4b22330e0350a0f13ef1ca8511ce19940d3b576ddce6755c67cef3cda477ddd33b27b96694b63a9fe97b66a91557176ccfe605630a1755fc3bb0d0e40843910d842b14bc0f4210db1f31f9e0c28a7f06c7cb521faf293cb627eb6b400be2245dca238e0559a2b20e9666f1138698d125e6724a1b895278ce6f6430ebd0b2e35b97f83be2008e19228eae3e663372cd218339d643", 0xed, 0x1000}, {&(0x7f00000006c0)="e0b2ed37ececadff8bdddfd8c04327448d626001d1b47834035057af64c5c52037034b52011749e935a2936a81f14e6439197b9683e50a31863bd0823c818ac9fca2c1eb27f47836e05547f4b7faba9b6eb2e7d4eca3dde16c9a4876ad8aa6b9fa831c95a9ae866696449dbd86940d2472ffcbd19f812833", 0x78, 0x557}, {&(0x7f0000000780)="cf09581046a71a85b15fff63caddbe7f10cc4a781f58aabba6d23473dbf74ca661b061847c5086da9676f2589d5ee82cd6bd65484158f3afacf3d17228b9820136401508f44bb6fb6a1158bc2069531c30953517b980dfbb4393a574e97afbed75afd046469ba2bd39952af28b43f89c7c78fe995cc6dba7aedc4816081c81f14f3afac3980c2d69e13fc7c8b99d480698de3a22d66a88a994c43b8aa53383c0ff5b1f2e0472a94e0916", 0xaa, 0xfffffffffffffffc}, {&(0x7f0000000840)="33f1ed6e0f2e390e255091c5951da4ea710956345b5aa273d1d12d8477b6a54655a46026273b9f4d1c014794cd2f666db7974226cfee823db7e1406376d5d1861e492441104c2b2b6ef37becde9dc786ab6ea5785ba226840d96057dfcfaaff481c8f273250bcbe43dad0eb794776d15a6eb2dc26a1e04dd52e980c4a380040d09f327563d9ebfa01995359cf6c378f9f1734c92f8e4ed9dbd5784f6d3160f729783e4dac012623804256098472757574e9cab70ba7ea5bffa4f8941", 0xbc, 0x5}, {&(0x7f0000000900)="5df09ef8e9660efacfd40620a78dbaa89ed6b7c6e0d528d8939c87b91a8c1a73c249e390cdab07d49bc1a5d0bb6c407b781d963ffab54f113e05a9a772a53bb857ea77be6e463017dd76e96be9f816f27c", 0x51, 0x8}, {&(0x7f0000000980)="a0dec1b503b9ca24b2c5f576490e3764ed913203a3ec0406135f914446d5f72e30372230cc4577269ee6037c027766c128d29d68325ae4a3b6ad1cbc57b4065a334b6bb6a02bb42c256206975f0120bee5d6e9faffd2c86dff82def8497c697c4c5ab984cc9a5db294b167f9a27a47bf15aebb8f5abd9ada5c463426baa79bc194177a1aa7c6ea5e1164286e1930a1a2206882dd2aff607272619cce031e1858f3a1d06ef5552b6051da33d546d6e8f3181ee03084d7", 0xb6, 0x8}, {&(0x7f0000000a40)="e3fcaac386f0cf129c4e82aa9753fde25a95d2c8ce23816529bdb3f4e889cc7127b8f23b06d226c05a34612ae56e9fc90c2c7b5878b8ecd65b15230de961d2730f7af2626a8254dcce23360d05fd55a705f5e2f09ba259c23022ab63798eaf139214cf4228b3086e2c9598cb4f", 0x6d, 0x6}, {&(0x7f0000000ac0)="506627a37594803de32e2e0f8f4b567e5cc48bd641881eb1dcfdae82edd2aa45a554c1eafb8556a0f633341cd6b8c6043b7a4921270e67bb1c84268c17accfe904f2fbab9b88dff04b93a85c1950194534f7e0d16a0ac606ca39af139845634740861f92026810e31efb2eec162b5196a2317450500a2c56af0faa859796866d9a8cfd315f732f3ea3", 0x89, 0xdc09}], 0x2000, &(0x7f0000000c80)={[{}, {'trans=fd,'}, {'fd/3\x00'}, {',:!}}'}], [{@defcontext={'defcontext', 0x3d, 'unconfined_u'}}, {@func={'func', 0x3d, 'FIRMWARE_CHECK'}}, {@audit='audit'}, {@obj_type={'obj_type', 0x3d, '9p\x00'}}, {@measure='measure'}]}) readlinkat(r2, &(0x7f0000000d00)='\x13\x13w\xc5\xfc5\xd4\x14T\xd5\xd4\x1d)\xad\x1a`)Y\x81F\xe6\xbe\x16nA\xad\r\xbd@T\x03<\x9f3\xbb\xda\x82$\xa2\xf3\xd7r\xe7cnH\xb3<\xbfp\x83r\xe8\xf1\xb9\x93>\xc5\x12wC\xbe\"\x06 \x9e\xf0-\xf9\xcb\xf2\xf6\xe8\x80\xd38//file0\x00', &(0x7f0000000d80)=""/36, 0x24) r3 = syz_open_dev$swradio(&(0x7f0000000100)='/dev/swradio#\x00', 0x0, 0x2) mount$9p_fd(0x0, &(0x7f0000000300)='.\x00', &(0x7f0000000080)='9p\x00', 0x0, &(0x7f0000000740)={'trans=fd,', {'rfdno', 0x3d, r1}, 0x2c, {'wfdno', 0x3d, r3}}) getdents64(r1, &(0x7f0000000440)=""/194, 0xc2) r4 = open(&(0x7f0000000100)='.\x00', 0x0, 0x0) renameat2(r4, &(0x7f0000000400)='./file0/file0\x00', r4, &(0x7f0000000000)='./file0\x00', 0x0) 21:38:26 executing program 3: set_mempolicy(0x8003, &(0x7f0000000300)=0x75f, 0x9) open(&(0x7f0000000300)='.\x00', 0x0, 0x0) r0 = syz_open_procfs(0x0, &(0x7f00000000c0)='fd/3\x00') r1 = syz_open_dev$swradio(&(0x7f0000000100)='/dev/swradio#\x00', 0x0, 0x2) mount$9p_fd(0x0, &(0x7f0000000300)='.\x00', &(0x7f0000000080)='9p\x00', 0xe000000, &(0x7f0000000740)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}}) [ 246.316759][T16484] loop0: detected capacity change from 512 to 0 [ 246.323762][T16484] FAULT_INJECTION: forcing a failure. [ 246.323762][T16484] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 246.385218][T16484] CPU: 0 PID: 16484 Comm: syz-executor.0 Not tainted 5.11.0-syzkaller #0 [ 246.393673][T16484] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 246.403819][T16484] Call Trace: [ 246.407086][T16484] dump_stack+0x116/0x15d [ 246.411418][T16484] should_fail+0x23c/0x250 [ 246.415826][T16484] should_fail_usercopy+0x16/0x20 [ 246.420850][T16484] _copy_from_user+0x1c/0xd0 [ 246.425507][T16484] __se_sys_mount+0x115/0x2e0 [ 246.430182][T16484] ? mntput+0x45/0x70 [ 246.434197][T16484] ? __fpregs_load_activate+0x103/0x1f0 [ 246.439800][T16484] __x64_sys_mount+0x63/0x70 [ 246.444384][T16484] do_syscall_64+0x39/0x80 [ 246.448815][T16484] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 246.454704][T16484] RIP: 0033:0x4672ba [ 246.458586][T16484] Code: 48 c7 c2 bc ff ff ff f7 d8 64 89 02 b8 ff ff ff ff eb d2 e8 b8 04 00 00 0f 1f 84 00 00 00 00 00 49 89 ca b8 a5 00 00 00 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 246.478188][T16484] RSP: 002b:00007f8175ef9fa8 EFLAGS: 00000206 ORIG_RAX: 00000000000000a5 [ 246.486597][T16484] RAX: ffffffffffffffda RBX: 0000000020000200 RCX: 00000000004672ba [ 246.495735][T16484] RDX: 0000000020000000 RSI: 0000000020000100 RDI: 00007f8175efa000 [ 246.503697][T16484] RBP: 00007f8175efa040 R08: 00007f8175efa040 R09: 0000000020000000 [ 246.511656][T16484] R10: 0000000000000000 R11: 0000000000000206 R12: 0000000020000000 [ 246.519677][T16484] R13: 0000000020000100 R14: 00007f8175efa000 R15: 0000000020000040 21:38:26 executing program 5: set_mempolicy(0x8003, &(0x7f0000000300)=0x75f, 0x9) open(&(0x7f0000000300)='.\x00', 0x0, 0x0) r0 = syz_open_procfs(0x0, &(0x7f00000000c0)='fd/3\x00') r1 = syz_open_dev$swradio(&(0x7f0000000100)='/dev/swradio#\x00', 0x0, 0x2) mount$9p_fd(0x0, &(0x7f0000000300)='.\x00', &(0x7f0000000080)='9p\x00', 0xf6ffffff, &(0x7f0000000740)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}}) 21:38:26 executing program 4: set_mempolicy(0x8003, &(0x7f0000000300)=0x75f, 0x9) open(&(0x7f0000000300)='.\x00', 0x0, 0x0) r0 = syz_open_procfs(0x0, &(0x7f00000000c0)='fd/3\x00') r1 = syz_open_dev$swradio(&(0x7f0000000100)='/dev/swradio#\x00', 0x0, 0x2) mount$9p_fd(0x0, &(0x7f0000000300)='.\x00', &(0x7f0000000080)='9p\x00', 0x2000000, &(0x7f0000000740)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}}) 21:38:26 executing program 1: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) r3 = syz_open_procfs(0x0, &(0x7f00000000c0)='fd/3\x00') mount$9p_fd(0x0, &(0x7f0000000300)='.\x00', &(0x7f0000000080)='9p\x00', 0xd00, &(0x7f00000003c0)={'trans=fd,', {'rfdno', 0x3d, r3}, 0x2c, {'wfdno', 0x3d, r2}}) [ 246.569050][T16506] loop2: detected capacity change from 264192 to 0 21:38:26 executing program 3: set_mempolicy(0x8003, &(0x7f0000000300)=0x75f, 0x9) open(&(0x7f0000000300)='.\x00', 0x0, 0x0) r0 = syz_open_procfs(0x0, &(0x7f00000000c0)='fd/3\x00') r1 = syz_open_dev$swradio(&(0x7f0000000100)='/dev/swradio#\x00', 0x0, 0x2) mount$9p_fd(0x0, &(0x7f0000000300)='.\x00', &(0x7f0000000080)='9p\x00', 0x10000000, &(0x7f0000000740)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}}) [ 246.638306][T16484] EXT4-fs (loop0): ext4_check_descriptors: Checksum for group 0 failed (38247!=0) [ 246.661280][T16517] loop2: detected capacity change from 264192 to 0 [ 246.665462][T16484] EXT4-fs (loop0): group descriptors corrupted! 21:38:26 executing program 5: set_mempolicy(0x8003, &(0x7f0000000300)=0x75f, 0x9) open(&(0x7f0000000300)='.\x00', 0x0, 0x0) r0 = syz_open_procfs(0x0, &(0x7f00000000c0)='fd/3\x00') r1 = syz_open_dev$swradio(&(0x7f0000000100)='/dev/swradio#\x00', 0x0, 0x2) mount$9p_fd(0x0, &(0x7f0000000300)='.\x00', &(0x7f0000000080)='9p\x00', 0xfeffffff, &(0x7f0000000740)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}}) [ 246.722450][T16506] vivid-004: kernel_thread() failed 21:38:26 executing program 1: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) r3 = syz_open_procfs(0x0, &(0x7f00000000c0)='fd/3\x00') mount$9p_fd(0x0, &(0x7f0000000300)='.\x00', &(0x7f0000000080)='9p\x00', 0xe00, &(0x7f00000003c0)={'trans=fd,', {'rfdno', 0x3d, r3}, 0x2c, {'wfdno', 0x3d, r2}}) 21:38:26 executing program 5: set_mempolicy(0x8003, &(0x7f0000000300)=0x75f, 0x9) open(&(0x7f0000000300)='.\x00', 0x0, 0x0) r0 = syz_open_procfs(0x0, &(0x7f00000000c0)='fd/3\x00') r1 = syz_open_dev$swradio(&(0x7f0000000100)='/dev/swradio#\x00', 0x0, 0x2) mount$9p_fd(0x0, &(0x7f0000000300)='.\x00', &(0x7f0000000080)='9p\x00', 0xff000000, &(0x7f0000000740)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}}) 21:38:26 executing program 0 (fault-call:0 fault-nth:57): syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x40000, 0x3, &(0x7f0000000200)=[{&(0x7f0000010000)="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", 0x10c, 0x400}, {&(0x7f0000010200)="0500000000000000000000000000000000000000040100002b", 0x19, 0x560}, {&(0x7f0000010300)="000000000000000000000000000000000000000000000000000000001481910a040000001400000024", 0x29, 0x7e0}], 0x0, &(0x7f0000000040)={[{@usrjquota='usrjquota='}, {@data_err_abort='data_err=abort'}]}) 21:38:26 executing program 2: set_mempolicy(0x8003, &(0x7f0000000300)=0x75f, 0x9) r0 = open(&(0x7f0000000300)='.\x00', 0x0, 0x0) symlinkat(&(0x7f0000000080)='\x13\x13w\xc5\xfc5\xd4\x14T\xd5\xd4\x1d)\xad\x1a`)Y\x81F\xe6\xbe\x16nA\xad\r\xbd@T\x03<\x9f3\xbb\xda\x82$\xa2\xf3\xd7r\xe7cnH\xb3<\xbfp\x83r\xe8\xf1\xb9\x93>\xc5\x12wC\xbe\"\x06 \x9e\xf0-\xf9\xcb\xf2\xf6\xe8\x80\xd38//file0\x00', r0, &(0x7f0000000140)='./file0/file0\x00') mkdirat(r0, &(0x7f0000000200)='\x13\x13w\xc5\xfc5\xd4\x14T\xd5\xd4\x1d)\xad\x1a`)Y\x81F\xe6\xbe\x16nA\xad\r\xbd@T\x03<\x9f3\xbb\xda\x82$\xa2\xf3\xd7r\xe7cnH\xb3<\xbfp\x83r\xe8\xf1\xb9\x93>\xc5\x12wC\xbe\"\x06 \x9e\xf0-\xf9\xcb\xf2\xf6\xe8\x80\xd38/\x00', 0x0) symlinkat(&(0x7f0000000340)='./file0/file0\x00', r0, &(0x7f0000000380)='\x13\x13w\xc5\xfc5\xd4\x14T\xd5\xd4\x1d)\xad\x1a`)Y\x81F\xe6\xbe\x16nA\xad\r\xbd@T\x03<\x9f3\xbb\xda\x82$\xa2\xf3\xd7r\xe7cnH\xb3<\xbfp\x83r\xe8\xf1\xb9\x93>\xc5\x12wC\xbe\"\x06 \x9e\xf0-\xf9\xcb\xf2\xf6\xe8\x80\xd38//file0\x00') r1 = open(&(0x7f0000000100)='.\x00', 0x0, 0x0) renameat2(r1, &(0x7f0000000400)='./file0/file0\x00', r1, &(0x7f0000000000)='./file0\x00', 0x0) 21:38:26 executing program 4: set_mempolicy(0x8003, &(0x7f0000000300)=0x75f, 0x9) open(&(0x7f0000000300)='.\x00', 0x0, 0x0) r0 = syz_open_procfs(0x0, &(0x7f00000000c0)='fd/3\x00') r1 = syz_open_dev$swradio(&(0x7f0000000100)='/dev/swradio#\x00', 0x0, 0x2) mount$9p_fd(0x0, &(0x7f0000000300)='.\x00', &(0x7f0000000080)='9p\x00', 0x2000001, &(0x7f0000000740)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}}) 21:38:26 executing program 3: set_mempolicy(0x8003, &(0x7f0000000300)=0x75f, 0x9) open(&(0x7f0000000300)='.\x00', 0x0, 0x0) r0 = syz_open_procfs(0x0, &(0x7f00000000c0)='fd/3\x00') r1 = syz_open_dev$swradio(&(0x7f0000000100)='/dev/swradio#\x00', 0x0, 0x2) mount$9p_fd(0x0, &(0x7f0000000300)='.\x00', &(0x7f0000000080)='9p\x00', 0x11000000, &(0x7f0000000740)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}}) 21:38:26 executing program 5: set_mempolicy(0x8003, &(0x7f0000000300)=0x75f, 0x9) open(&(0x7f0000000300)='.\x00', 0x0, 0x0) r0 = syz_open_procfs(0x0, &(0x7f00000000c0)='fd/3\x00') r1 = syz_open_dev$swradio(&(0x7f0000000100)='/dev/swradio#\x00', 0x0, 0x2) mount$9p_fd(0x0, &(0x7f0000000300)='.\x00', &(0x7f0000000080)='9p\x00', 0xff9f0000, &(0x7f0000000740)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}}) 21:38:26 executing program 2: set_mempolicy(0x8003, &(0x7f0000000300)=0x75f, 0x9) r0 = open(&(0x7f0000000300)='.\x00', 0x0, 0x0) symlinkat(&(0x7f0000000040)='\x13\x13w\xc5\xfc5\xd4\x14T\xd5\xd4\x1d)\xad\x1a`)Y\x81F\xe6\xbe\x16nA\xad\r\xbd@T\x03<\x9f3\xbb\xda\x82$\xa2\xf3\xd7r\xe7cnH\xb3<\xbfp\x83r\xe8\xf1\xb9\x93>\xc5\x12wC\xbe\"\x06 \x9e\xf0-\xf9\xcb\xf2\xf6\xe8\x80\xd38/\x00', r0, &(0x7f00000000c0)='./file0\x00') mkdirat(r0, &(0x7f0000000200)='\x13\x13w\xc5\xfc5\xd4\x14T\xd5\xd4\x1d)\xad\x1a`)Y\x81F\xe6\xbe\x16nA\xad\r\xbd@T\x03<\x9f3\xbb\xda\x82$\xa2\xf3\xd7r\xe7cnH\xb3<\xbfp\x83r\xe8\xf1\xb9\x93>\xc5\x12wC\xbe\"\x06 \x9e\xf0-\xf9\xcb\xf2\xf6\xe8\x80\xd38/\x00', 0x0) symlinkat(&(0x7f0000000340)='./file0/file0\x00', r0, &(0x7f0000000380)='\x13\x13w\xc5\xfc5\xd4\x14T\xd5\xd4\x1d)\xad\x1a`)Y\x81F\xe6\xbe\x16nA\xad\r\xbd@T\x03<\x9f3\xbb\xda\x82$\xa2\xf3\xd7r\xe7cnH\xb3<\xbfp\x83r\xe8\xf1\xb9\x93>\xc5\x12wC\xbe\"\x06 \x9e\xf0-\xf9\xcb\xf2\xf6\xe8\x80\xd38//file0\x00') r1 = open(&(0x7f0000000100)='.\x00', 0x0, 0x0) mount$9p_virtio(&(0x7f0000000140)='syz\x00', &(0x7f0000000180)='\x13\x13w\xc5\xfc5\xd4\x14T\xd5\xd4\x1d)\xad\x1a`)Y\x81F\xe6\xbe\x16nA\xad\r\xbd@T\x03<\x9f3\xbb\xda\x82$\xa2\xf3\xd7r\xe7cnH\xb3<\xbfp\x83r\xe8\xf1\xb9\x93>\xc5\x12wC\xbe\"\x06 \x9e\xf0-\xf9\xcb\xf2\xf6\xe8\x80\xd38//file0\x00', &(0x7f0000000280)='9p\x00', 0x802400, &(0x7f00000002c0)={'trans=virtio,', {[{@version_L='version=9p2000.L'}], [{@smackfstransmute={'smackfstransmute'}}]}}) renameat2(r1, &(0x7f0000000400)='./file0/file0\x00', r1, &(0x7f0000000000)='./file0\x00', 0x0) 21:38:26 executing program 1: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) r3 = syz_open_procfs(0x0, &(0x7f00000000c0)='fd/3\x00') mount$9p_fd(0x0, &(0x7f0000000300)='.\x00', &(0x7f0000000080)='9p\x00', 0x1020, &(0x7f00000003c0)={'trans=fd,', {'rfdno', 0x3d, r3}, 0x2c, {'wfdno', 0x3d, r2}}) [ 246.867049][T16565] loop0: detected capacity change from 512 to 0 [ 246.891883][T16565] FAULT_INJECTION: forcing a failure. [ 246.891883][T16565] name failslab, interval 1, probability 0, space 0, times 0 [ 246.959308][T16565] CPU: 1 PID: 16565 Comm: syz-executor.0 Not tainted 5.11.0-syzkaller #0 [ 246.967743][T16565] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 246.977816][T16565] Call Trace: [ 246.981093][T16565] dump_stack+0x116/0x15d [ 246.985432][T16565] should_fail+0x23c/0x250 [ 246.989877][T16565] ? getname_flags+0x84/0x3d0 [ 246.994550][T16565] __should_failslab+0x81/0x90 [ 246.999363][T16565] should_failslab+0x5/0x20 [ 247.003933][T16565] kmem_cache_alloc+0x36/0x2e0 21:38:26 executing program 5: set_mempolicy(0x8003, &(0x7f0000000300)=0x75f, 0x9) open(&(0x7f0000000300)='.\x00', 0x0, 0x0) r0 = syz_open_procfs(0x0, &(0x7f00000000c0)='fd/3\x00') r1 = syz_open_dev$swradio(&(0x7f0000000100)='/dev/swradio#\x00', 0x0, 0x2) mount$9p_fd(0x0, &(0x7f0000000300)='.\x00', &(0x7f0000000080)='9p\x00', 0xffff0000, &(0x7f0000000740)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}}) 21:38:26 executing program 3: set_mempolicy(0x8003, &(0x7f0000000300)=0x75f, 0x9) open(&(0x7f0000000300)='.\x00', 0x0, 0x0) r0 = syz_open_procfs(0x0, &(0x7f00000000c0)='fd/3\x00') r1 = syz_open_dev$swradio(&(0x7f0000000100)='/dev/swradio#\x00', 0x0, 0x2) mount$9p_fd(0x0, &(0x7f0000000300)='.\x00', &(0x7f0000000080)='9p\x00', 0x12000000, &(0x7f0000000740)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}}) 21:38:27 executing program 2: set_mempolicy(0x8003, &(0x7f0000000480)=0x75f, 0x9) r0 = open(&(0x7f0000000300)='.\x00', 0x0, 0x0) symlinkat(&(0x7f0000000040)='\x13\x13w\xc5\xfc5\xd4\x14T\xd5\xd4\x1d)\xad\x1a`)Y\x81F\xe6\xbe\x16nA\xad\r\xbd@T\x03<\x9f3\xbb\xda\x82$\xa2\xf3\xd7r\xe7cnH\xb3<\xbfp\x83r\xe8\xf1\xb9\x93>\xc5\x12wC\xbe\"\x06 \x9e\xf0-\xf9\xcb\xf2\xf6\xe8\x80\xd38/\x00', r0, &(0x7f00000000c0)='./file0\x00') mkdirat(r0, &(0x7f0000000200)='\x13\x13w\xc5\xfc5\xd4\x14T\xd5\xd4\x1d)\xad\x1a`)Y\x81F\xe6\xbe\x16nA\xad\r\xbd@T\x03<\x9f3\xbb\xda\x82$\xa2\xf3\xd7r\xe7cnH\xb3<\xbfp\x83r\xe8\xf1\xb9\x93>\xc5\x12wC\xbe\"\x06 \x9e\xf0-\xf9\xcb\xf2\xf6\xe8\x80\xd38/\x00', 0x0) symlinkat(&(0x7f0000000340)='./file0/file0\x00', r0, &(0x7f0000000380)='\x13\x13w\xc5\xfc5\xd4\x14T\xd5\xd4\x1d)\xad\x1a`)Y\x81F\xe6\xbe\x16nA\xad\r\xbd@T\x03<\x9f3\xbb\xda\x82$\xa2\xf3\xd7r\xe7cnH\xb3<\xbfp\x83r\xe8\xf1\xb9\x93>\xc5\x12wC\xbe\"\x06 \x9e\xf0-\xf9\xcb\xf2\xf6\xe8\x80\xd38//file0\x00') r1 = open(&(0x7f0000000100)='.\x00', 0x200, 0x0) r2 = openat$full(0xffffffffffffff9c, &(0x7f0000000140)='/dev/full\x00', 0x4401, 0x0) r3 = syz_genetlink_get_family_id$batadv(&(0x7f00000001c0)='batadv\x00', r1) unlinkat(r2, &(0x7f0000000540)='\x13\x13w\xc5\xfc5\xd4\x14T\xd5\xd4\x1d)\xad\x1a`)Y\x81F\xe6\xbe\x16nA\xad\r\xbd@T\x03<\x9f3\xbb\xda\x82$\xa2\xf3\xd7r\xe7cnH\xb3<\xbfp\x83r\xe8\xf1\xb9\x93>\xc5\x12wC\xbe\"\x06 \x9e\xf0-\xf9\xcb\xf2\xf6\xe8\x80\xd38//file0\x00', 0x200) sendmsg$BATADV_CMD_GET_GATEWAYS(r2, &(0x7f0000000440)={&(0x7f0000000180)={0x10, 0x0, 0x0, 0x800000}, 0xc, &(0x7f00000002c0)={&(0x7f0000000280)=ANY=[@ANYBLOB='$\x00\x00\x00', @ANYRES16=r3, @ANYBLOB="00022cbd7000fbdbdf250a00000008003c000000001005002b0062910000"], 0x24}, 0x1, 0x0, 0x0, 0x80}, 0x40000) renameat2(r1, &(0x7f0000000400)='./file0/file0\x00', r1, &(0x7f0000000000)='./file0\x00', 0x0) set_mempolicy(0x1, &(0x7f0000000500)=0x3, 0x6) open(&(0x7f00000005c0)='\x13\x13w\xc5\xfc5\xd4\x14T\xd5\xd4\x1d)\xad\x1a`)Y\x81F\xe6\xbe\x16nA\xad\r\xbd@T\x03<\x9f3\xbb\xda\x82$\xa2\xf3\xd7r\xe7cnH\xb3<\xbfp\x83r\xe8\xf1\xb9\x93>\xc5\x12wC\xbe\"\x06 \x9e\xf0-\xf9\xcb\xf2\xf6\xe8\x80\xd38/\x00', 0x40400, 0x166) set_mempolicy(0x3, &(0x7f00000004c0)=0x9, 0x9) [ 247.008817][T16565] ? irqentry_exit_cond_resched+0x22/0x40 [ 247.014605][T16565] ? irqentry_exit+0x2a/0x40 [ 247.019196][T16565] getname_flags+0x84/0x3d0 [ 247.023692][T16565] user_path_at_empty+0x28/0x50 [ 247.028617][T16565] __se_sys_mount+0x209/0x2e0 [ 247.033302][T16565] __x64_sys_mount+0x63/0x70 [ 247.037934][T16565] do_syscall_64+0x39/0x80 [ 247.042350][T16565] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 247.048243][T16565] RIP: 0033:0x4672ba 21:38:27 executing program 5: set_mempolicy(0x8003, &(0x7f0000000300)=0x75f, 0x9) open(&(0x7f0000000300)='.\x00', 0x0, 0x0) r0 = syz_open_procfs(0x0, &(0x7f00000000c0)='fd/3\x00') r1 = syz_open_dev$swradio(&(0x7f0000000100)='/dev/swradio#\x00', 0x0, 0x2) mount$9p_fd(0x0, &(0x7f0000000300)='.\x00', &(0x7f0000000080)='9p\x00', 0xfffffe00, &(0x7f0000000740)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}}) [ 247.052172][T16565] Code: 48 c7 c2 bc ff ff ff f7 d8 64 89 02 b8 ff ff ff ff eb d2 e8 b8 04 00 00 0f 1f 84 00 00 00 00 00 49 89 ca b8 a5 00 00 00 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 247.071782][T16565] RSP: 002b:00007f8175ef9fa8 EFLAGS: 00000206 ORIG_RAX: 00000000000000a5 [ 247.080193][T16565] RAX: ffffffffffffffda RBX: 0000000020000200 RCX: 00000000004672ba [ 247.088207][T16565] RDX: 0000000020000000 RSI: 0000000020000100 RDI: 00007f8175efa000 [ 247.096212][T16565] RBP: 00007f8175efa040 R08: 00007f8175efa040 R09: 0000000020000000 21:38:27 executing program 4: set_mempolicy(0x8003, &(0x7f0000000300)=0x75f, 0x9) open(&(0x7f0000000300)='.\x00', 0x0, 0x0) r0 = syz_open_procfs(0x0, &(0x7f00000000c0)='fd/3\x00') r1 = syz_open_dev$swradio(&(0x7f0000000100)='/dev/swradio#\x00', 0x0, 0x2) mount$9p_fd(0x0, &(0x7f0000000300)='.\x00', &(0x7f0000000080)='9p\x00', 0x3000000, &(0x7f0000000740)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}}) [ 247.104221][T16565] R10: 0000000000000000 R11: 0000000000000206 R12: 0000000020000000 [ 247.112193][T16565] R13: 0000000020000100 R14: 00007f8175efa000 R15: 0000000020000040 21:38:27 executing program 0 (fault-call:0 fault-nth:58): syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x40000, 0x3, &(0x7f0000000200)=[{&(0x7f0000010000)="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", 0x10c, 0x400}, {&(0x7f0000010200)="0500000000000000000000000000000000000000040100002b", 0x19, 0x560}, {&(0x7f0000010300)="000000000000000000000000000000000000000000000000000000001481910a040000001400000024", 0x29, 0x7e0}], 0x0, &(0x7f0000000040)={[{@usrjquota='usrjquota='}, {@data_err_abort='data_err=abort'}]}) 21:38:27 executing program 5: set_mempolicy(0x8003, &(0x7f0000000300)=0x75f, 0x9) open(&(0x7f0000000300)='.\x00', 0x0, 0x0) r0 = syz_open_procfs(0x0, &(0x7f00000000c0)='fd/3\x00') r1 = syz_open_dev$swradio(&(0x7f0000000100)='/dev/swradio#\x00', 0x0, 0x2) mount$9p_fd(0x0, &(0x7f0000000300)='.\x00', &(0x7f0000000080)='9p\x00', 0xffffff8c, &(0x7f0000000740)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}}) 21:38:27 executing program 3: set_mempolicy(0x8003, &(0x7f0000000300)=0x75f, 0x9) open(&(0x7f0000000300)='.\x00', 0x0, 0x0) r0 = syz_open_procfs(0x0, &(0x7f00000000c0)='fd/3\x00') r1 = syz_open_dev$swradio(&(0x7f0000000100)='/dev/swradio#\x00', 0x0, 0x2) mount$9p_fd(0x0, &(0x7f0000000300)='.\x00', &(0x7f0000000080)='9p\x00', 0x20100000, &(0x7f0000000740)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}}) 21:38:27 executing program 1: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) r3 = syz_open_procfs(0x0, &(0x7f00000000c0)='fd/3\x00') mount$9p_fd(0x0, &(0x7f0000000300)='.\x00', &(0x7f0000000080)='9p\x00', 0x1100, &(0x7f00000003c0)={'trans=fd,', {'rfdno', 0x3d, r3}, 0x2c, {'wfdno', 0x3d, r2}}) 21:38:27 executing program 4: set_mempolicy(0x8003, &(0x7f0000000300)=0x75f, 0x9) open(&(0x7f0000000300)='.\x00', 0x0, 0x0) r0 = syz_open_procfs(0x0, &(0x7f00000000c0)='fd/3\x00') r1 = syz_open_dev$swradio(&(0x7f0000000100)='/dev/swradio#\x00', 0x0, 0x2) mount$9p_fd(0x0, &(0x7f0000000300)='.\x00', &(0x7f0000000080)='9p\x00', 0x4000000, &(0x7f0000000740)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}}) 21:38:27 executing program 2: set_mempolicy(0x8003, &(0x7f0000000300)=0x75f, 0x9) r0 = open(&(0x7f0000000300)='.\x00', 0x0, 0x0) sendmsg$nl_route_sched(r0, &(0x7f00000001c0)={&(0x7f0000000140)={0x10, 0x0, 0x0, 0x8000}, 0xc, &(0x7f0000000180)={&(0x7f0000000440)=@deltaction={0xf0, 0x31, 0x200, 0x70bd28, 0x25dfdbfc, {}, [@TCA_ACT_TAB={0x34, 0x1, [{0x10, 0x6, 0x0, 0x0, @TCA_ACT_KIND={0xb, 0x1, 'skbmod\x00'}}, {0x10, 0x1a, 0x0, 0x0, @TCA_ACT_KIND={0x9, 0x1, 'vlan\x00'}}, {0x10, 0x19, 0x0, 0x0, @TCA_ACT_KIND={0xb, 0x1, 'police\x00'}}]}, @TCA_ACT_TAB={0x38, 0x1, [{0xc, 0x1a, 0x0, 0x0, @TCA_ACT_INDEX={0x8, 0x3, 0x8}}, {0xc, 0x1d, 0x0, 0x0, @TCA_ACT_INDEX={0x8}}, {0xc, 0x1c, 0x0, 0x0, @TCA_ACT_INDEX={0x8, 0x3, 0x8000}}, {0x10, 0x11, 0x0, 0x0, @TCA_ACT_KIND={0xc, 0x1, 'skbedit\x00'}}]}, @TCA_ACT_TAB={0x10, 0x1, [{0xc, 0x7, 0x0, 0x0, @TCA_ACT_KIND={0x8, 0x1, 'ife\x00'}}]}, @TCA_ACT_TAB={0x28, 0x1, [{0xc, 0x6, 0x0, 0x0, @TCA_ACT_INDEX={0x8, 0x3, 0x100}}, {0xc, 0x1f, 0x0, 0x0, @TCA_ACT_KIND={0x8, 0x1, 'nat\x00'}}, {0xc, 0xe, 0x0, 0x0, @TCA_ACT_KIND={0x8, 0x1, 'bpf\x00'}}]}, @TCA_ACT_TAB={0x38, 0x1, [{0x10, 0x19, 0x0, 0x0, @TCA_ACT_KIND={0xb, 0x1, 'police\x00'}}, {0xc, 0x15, 0x0, 0x0, @TCA_ACT_INDEX={0x8}}, {0xc, 0x8, 0x0, 0x0, @TCA_ACT_KIND={0x7, 0x1, 'xt\x00'}}, {0xc, 0x3, 0x0, 0x0, @TCA_ACT_INDEX={0x8, 0x3, 0xe7}}]}]}, 0xf0}, 0x1, 0x0, 0x0, 0x800}, 0x804) symlinkat(&(0x7f0000000040)='\x13\x13w\xc5\xfc5\xd4\x14T\xd5\xd4\x1d)\xad\x1a`)Y\x81F\xe6\xbe\x16nA\xad\r\xbd@T\x03<\x9f3\xbb\xda\x82$\xa2\xf3\xd7r\xe7cnH\xb3<\xbfp\x83r\xe8\xf1\xb9\x93>\xc5\x12wC\xbe\"\x06 \x9e\xf0-\xf9\xcb\xf2\xf6\xe8\x80\xd38/\x00', r0, &(0x7f00000000c0)='./file0\x00') mkdirat(r0, &(0x7f0000000200)='\x13\x13w\xc5\xfc5\xd4\x14T\xd5\xd4\x1d)\xad\x1a`)Y\x81F\xe6\xbe\x16nA\xad\r\xbd@T\x03<\x9f3\xbb\xda\x82$\xa2\xf3\xd7r\xe7cnH\xb3<\xbfp\x83r\xe8\xf1\xb9\x93>\xc5\x12wC\xbe\"\x06 \x9e\xf0-\xf9\xcb\xf2\xf6\xe8\x80\xd38/\x00', 0x0) symlinkat(&(0x7f0000000340)='./file0/file0\x00', r0, &(0x7f0000000380)='\x13\x13w\xc5\xfc5\xd4\x14T\xd5\xd4\x1d)\xad\x1a`)Y\x81F\xe6\xbe\x16nA\xad\r\xbd@T\x03<\x9f3\xbb\xda\x82$\xa2\xf3\xd7r\xe7cnH\xb3<\xbfp\x83r\xe8\xf1\xb9\x93>\xc5\x12wC\xbe\"\x06 \x9e\xf0-\xf9\xcb\xf2\xf6\xe8\x80\xd38//file0\x00') r1 = open(&(0x7f0000000100)='.\x00', 0x0, 0x0) renameat2(r1, &(0x7f0000000400)='./file0/file0\x00', r1, &(0x7f0000000000)='./file0\x00', 0x0) 21:38:27 executing program 5: set_mempolicy(0x8003, &(0x7f0000000300)=0x75f, 0x9) open(&(0x7f0000000300)='.\x00', 0x0, 0x0) r0 = syz_open_procfs(0x0, &(0x7f00000000c0)='fd/3\x00') r1 = syz_open_dev$swradio(&(0x7f0000000100)='/dev/swradio#\x00', 0x0, 0x2) mount$9p_fd(0x0, &(0x7f0000000300)='.\x00', &(0x7f0000000080)='9p\x00', 0xfffffff6, &(0x7f0000000740)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}}) 21:38:27 executing program 3: set_mempolicy(0x8003, &(0x7f0000000300)=0x75f, 0x9) open(&(0x7f0000000300)='.\x00', 0x0, 0x0) r0 = syz_open_procfs(0x0, &(0x7f00000000c0)='fd/3\x00') r1 = syz_open_dev$swradio(&(0x7f0000000100)='/dev/swradio#\x00', 0x0, 0x2) mount$9p_fd(0x0, &(0x7f0000000300)='.\x00', &(0x7f0000000080)='9p\x00', 0x25000000, &(0x7f0000000740)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}}) 21:38:27 executing program 2: set_mempolicy(0x8003, &(0x7f0000000300)=0x4, 0x2000000000009) r0 = add_key$keyring(&(0x7f0000000280)='keyring\x00', &(0x7f00000002c0)={'syz', 0x1}, 0x0, 0x0, 0xfffffffffffffffe) add_key(&(0x7f0000000180)='id_resolver\x00', &(0x7f00000001c0)={'syz', 0x0}, 0x0, 0x0, r0) r1 = open(&(0x7f0000000300)='.\x00', 0x0, 0x0) symlinkat(&(0x7f0000000040)='\x13\x13w\xc5\xfc5\xd4\x14T\xd5\xd4\x1d)\xad\x1a`)Y\x81F\xe6\xbe\x16nA\xad\r\xbd@T\x03<\x9f3\xbb\xda\x82$\xa2\xf3\xd7r\xe7cnH\xb3<\xbfp\x83r\xe8\xf1\xb9\x93>\xc5\x12wC\xbe\"\x06 \x9e\xf0-\xf9\xcb\xf2\xf6\xe8\x80\xd38/\x00', r1, &(0x7f00000000c0)='./file0\x00') mkdirat(r1, &(0x7f0000000200)='\x13\x13w\xc5\xfc5\xd4\x14T\xd5\xd4\x1d)\xad\x1a`)Y\x81F\xe6\xbe\x16nA\xad\r\xbd@T\x03<\x9f3\xbb\xda\x82$\xa2\xf3\xd7r\xe7cnH\xb3<\xbfp\x83r\xe8\xf1\xb9\x93>\xc5\x12wC\xbe\"\x06 \x9e\xf0-\xf9\xcb\xf2\xf6\xe8\x80\xd38/\x00', 0x0) llistxattr(&(0x7f0000000140)='./file0/file0/file0\x00', &(0x7f0000000440)=""/217, 0xd9) symlinkat(&(0x7f0000000340)='./file0/file0\x00', r1, &(0x7f0000000380)='\x13\x13w\xc5\xfc5\xd4\x14T\xd5\xd4\x1d)\xad\x1a`)Y\x81F\xe6\xbe\x16nA\xad\r\xbd@T\x03<\x9f3\xbb\xda\x82$\xa2\xf3\xd7r\xe7cnH\xb3<\xbfp\x83r\xe8\xf1\xb9\x93>\xc5\x12wC\xbe\"\x06 \x9e\xf0-\xf9\xcb\xf2\xf6\xe8\x80\xd38//file0\x00') r2 = open(&(0x7f0000000100)='.\x00', 0x0, 0x0) r3 = syz_open_procfs(0x0, &(0x7f00000000c0)='fd/3\x00') r4 = syz_open_dev$swradio(&(0x7f0000000100)='/dev/swradio#\x00', 0x0, 0x2) mount$9p_fd(0x0, &(0x7f0000000300)='.\x00', &(0x7f0000000080)='9p\x00', 0x0, &(0x7f0000000740)={'trans=fd,', {'rfdno', 0x3d, r3}, 0x2c, {'wfdno', 0x3d, r4}}) mknodat(r3, &(0x7f0000000540)='\x13\x13w\xc5\xfc5\xd4\x14T\xd5\xd4\x1d)\xad\x1a`)Y\x81F\xe6\xbe\x16nA\xad\r\xbd@T\x03<\x9f3\xbb\xda\x82$\xa2\xf3\xd7r\xe7cnH\xb3<\xbfp\x83r\xe8\xf1\xb9\x93>\xc5\x12wC\xbe\"\x06 \x9e\xf0-\xf9\xcb\xf2\xf6\xe8\x80\xd38/\x00', 0x4, 0x1f) renameat2(r2, &(0x7f0000000400)='./file0/file0\x00', r2, &(0x7f0000000000)='./file0\x00', 0x0) 21:38:27 executing program 5: set_mempolicy(0x8003, &(0x7f0000000300)=0x75f, 0x9) open(&(0x7f0000000300)='.\x00', 0x0, 0x0) r0 = syz_open_procfs(0x0, &(0x7f00000000c0)='fd/3\x00') r1 = syz_open_dev$swradio(&(0x7f0000000100)='/dev/swradio#\x00', 0x0, 0x2) mount$9p_fd(0x0, &(0x7f0000000300)='.\x00', &(0x7f0000000080)='9p\x00', 0xfffffffe, &(0x7f0000000740)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}}) 21:38:27 executing program 1: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) r3 = syz_open_procfs(0x0, &(0x7f00000000c0)='fd/3\x00') mount$9p_fd(0x0, &(0x7f0000000300)='.\x00', &(0x7f0000000080)='9p\x00', 0x1200, &(0x7f00000003c0)={'trans=fd,', {'rfdno', 0x3d, r3}, 0x2c, {'wfdno', 0x3d, r2}}) [ 247.403145][T16640] loop0: detected capacity change from 512 to 0 21:38:27 executing program 4: set_mempolicy(0x8003, &(0x7f0000000300)=0x75f, 0x9) open(&(0x7f0000000300)='.\x00', 0x0, 0x0) r0 = syz_open_procfs(0x0, &(0x7f00000000c0)='fd/3\x00') r1 = syz_open_dev$swradio(&(0x7f0000000100)='/dev/swradio#\x00', 0x0, 0x2) mount$9p_fd(0x0, &(0x7f0000000300)='.\x00', &(0x7f0000000080)='9p\x00', 0x5000000, &(0x7f0000000740)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}}) [ 247.448746][T16640] FAULT_INJECTION: forcing a failure. [ 247.448746][T16640] name failslab, interval 1, probability 0, space 0, times 0 [ 247.488559][T16640] CPU: 1 PID: 16640 Comm: syz-executor.0 Not tainted 5.11.0-syzkaller #0 [ 247.497046][T16640] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 247.507111][T16640] Call Trace: [ 247.510387][T16640] dump_stack+0x116/0x15d [ 247.514737][T16640] should_fail+0x23c/0x250 [ 247.519164][T16640] __should_failslab+0x81/0x90 [ 247.524039][T16640] ? tomoyo_encode2+0x1d3/0x350 [ 247.529889][T16640] should_failslab+0x5/0x20 [ 247.534395][T16640] __kmalloc+0x59/0x360 [ 247.538548][T16640] ? crypto_shash_update+0x12c/0x190 [ 247.544174][T16640] tomoyo_encode2+0x1d3/0x350 [ 247.548980][T16640] tomoyo_encode+0x25/0x30 [ 247.553392][T16640] tomoyo_mount_permission+0x1d7/0x700 [ 247.558907][T16640] ? __rcu_read_unlock+0x5c/0x250 [ 247.563988][T16640] ? ___cache_free+0x3c/0x2f0 [ 247.568687][T16640] ? terminate_walk+0x24e/0x270 [ 247.573605][T16640] tomoyo_sb_mount+0x31/0x40 [ 247.578191][T16640] security_sb_mount+0x5c/0xb0 [ 247.583034][T16640] path_mount+0xb1/0x1ca0 [ 247.587363][T16640] __se_sys_mount+0x23d/0x2e0 [ 247.592038][T16640] __x64_sys_mount+0x63/0x70 [ 247.596622][T16640] do_syscall_64+0x39/0x80 [ 247.601162][T16640] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 247.608094][T16640] RIP: 0033:0x4672ba [ 247.611981][T16640] Code: 48 c7 c2 bc ff ff ff f7 d8 64 89 02 b8 ff ff ff ff eb d2 e8 b8 04 00 00 0f 1f 84 00 00 00 00 00 49 89 ca b8 a5 00 00 00 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 247.631602][T16640] RSP: 002b:00007f8175ef9fa8 EFLAGS: 00000206 ORIG_RAX: 00000000000000a5 [ 247.640100][T16640] RAX: ffffffffffffffda RBX: 0000000020000200 RCX: 00000000004672ba [ 247.648757][T16640] RDX: 0000000020000000 RSI: 0000000020000100 RDI: 00007f8175efa000 [ 247.656777][T16640] RBP: 00007f8175efa040 R08: 00007f8175efa040 R09: 0000000020000000 [ 247.664737][T16640] R10: 0000000000000000 R11: 0000000000000206 R12: 0000000020000000 [ 247.672895][T16640] R13: 0000000020000100 R14: 00007f8175efa000 R15: 0000000020000040 [ 247.769796][T16660] vivid-004: kernel_thread() failed 21:38:27 executing program 0 (fault-call:0 fault-nth:59): syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x40000, 0x3, &(0x7f0000000200)=[{&(0x7f0000010000)="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", 0x10c, 0x400}, {&(0x7f0000010200)="0500000000000000000000000000000000000000040100002b", 0x19, 0x560}, {&(0x7f0000010300)="000000000000000000000000000000000000000000000000000000001481910a040000001400000024", 0x29, 0x7e0}], 0x0, &(0x7f0000000040)={[{@usrjquota='usrjquota='}, {@data_err_abort='data_err=abort'}]}) 21:38:27 executing program 5: set_mempolicy(0x8003, &(0x7f0000000300)=0x75f, 0x9) open(&(0x7f0000000300)='.\x00', 0x0, 0x0) r0 = syz_open_procfs(0x0, &(0x7f00000000c0)='fd/3\x00') r1 = syz_open_dev$swradio(&(0x7f0000000100)='/dev/swradio#\x00', 0x0, 0x2) mount$9p_fd(0x0, &(0x7f0000000300)='.\x00', &(0x7f0000000080)='9p\x00', 0x8000000000, &(0x7f0000000740)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}}) 21:38:27 executing program 4: set_mempolicy(0x8003, &(0x7f0000000300)=0x75f, 0x9) open(&(0x7f0000000300)='.\x00', 0x0, 0x0) r0 = syz_open_procfs(0x0, &(0x7f00000000c0)='fd/3\x00') r1 = syz_open_dev$swradio(&(0x7f0000000100)='/dev/swradio#\x00', 0x0, 0x2) mount$9p_fd(0x0, &(0x7f0000000300)='.\x00', &(0x7f0000000080)='9p\x00', 0x6000000, &(0x7f0000000740)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}}) 21:38:27 executing program 3: set_mempolicy(0x8003, &(0x7f0000000300)=0x75f, 0x9) open(&(0x7f0000000300)='.\x00', 0x0, 0x0) r0 = syz_open_procfs(0x0, &(0x7f00000000c0)='fd/3\x00') r1 = syz_open_dev$swradio(&(0x7f0000000100)='/dev/swradio#\x00', 0x0, 0x2) mount$9p_fd(0x0, &(0x7f0000000300)='.\x00', &(0x7f0000000080)='9p\x00', 0x40000000, &(0x7f0000000740)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}}) 21:38:27 executing program 1: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) r3 = syz_open_procfs(0x0, &(0x7f00000000c0)='fd/3\x00') mount$9p_fd(0x0, &(0x7f0000000300)='.\x00', &(0x7f0000000080)='9p\x00', 0x2010, &(0x7f00000003c0)={'trans=fd,', {'rfdno', 0x3d, r3}, 0x2c, {'wfdno', 0x3d, r2}}) 21:38:27 executing program 2: set_mempolicy(0x8003, &(0x7f0000000300)=0x75f, 0x9) r0 = open(&(0x7f0000000280)='\x13\x13w\xc5\xfc5\xd4\x14T\xd5\xd4\x1d)\xad\x1a`)Y\x81F\xe6\xbe\x16nA\xad\r\xbd@T\x03<\x9f3\xbb\xda\x82$\xa2\xf3\xd7r\xe7cnH\xb3<\xbfp\x83r\xe8\xf1\xb9\x93>\xc5\x12wC\xbe\"\x06 \x9e\xf0-\xf9\xcb\xf2\xf6\xe8\x80\xd38//file0\x00', 0x102, 0x0) set_mempolicy(0xc000, &(0x7f0000000100)=0x20, 0x709b) symlinkat(&(0x7f0000000040)='\x13\x13w\xc5\xfc5\xd4\x14T\xd5\xd4\x1d)\xad\x1a`)Y\x81F\xe6\xbe\x16nA\xad\r\xbd@T\x03<\x9f3\xbb\xda\x82$\xa2\xf3\xd7r\xe7cnH\xb3<\xbfp\x83r\xe8\xf1\xb9\x93>\xc5\x12wC\xbe\"\x06 \x9e\xf0-\xf9\xcb\xf2\xf6\xe8\x80\xd38/\x00', r0, &(0x7f00000000c0)='./file0\x00') mkdirat(r0, &(0x7f0000000200)='./file0/file0\x00', 0x0) symlinkat(&(0x7f0000000340)='./file0/file0\x00', r0, &(0x7f0000000380)='\x13\x13w\xc5\xfc5\xd4\x14T\xd5\xd4\x1d)\xad\x1a`)Y\x81F\xe6\xbe\x16nA\xad\r\xbd@T\x03<\x9f3\xbb\xda\x82$\xa2\xf3\xd7r\xe7cnH\xb3<\xbfp\x83r\xe8\xf1\xb9\x93>\xc5\x12wC\xbe\"\x06 \x9e\xf0-\xf9\xcb\xf2\xf6\xe8\x80\xd38//file0\x00') perf_event_open(&(0x7f0000000180)={0x0, 0x70, 0x4, 0x8, 0x80, 0x40, 0x0, 0xe7, 0xa000, 0x0, 0x0, 0x1, 0x1, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x1, 0x0, 0x0, 0x0, 0x1, 0x1, 0x3, 0x0, 0x0, 0x1, 0x1, 0x1, 0x0, 0x1, 0x1, 0x1, 0x0, 0x1, 0x1, 0x0, 0x0, 0x1, @perf_bp={&(0x7f0000000140)}, 0x50009, 0x100000001, 0x3, 0xa8cbc5a0cf716fde, 0x9, 0x700, 0x6}, 0x0, 0x13, r0, 0x8) r1 = open(&(0x7f0000000440)='\x13\x13w\xc5\xfc5\xd4\x14T\xd5\xd4\x1d)\xad\x1a`)Y\x81F\xe6\xbe\x16nA\xad\r\xbd@T\x03<\x9f3\xbb\xda\x82$\xa2\xf3\xd7r\xe7cnH\xb3<\xbfp\x83r\xe8\xf1\xb9\x93>\xc5\x12wC\xbe\"\x06 \x9e\xf0-\xf9\xcb\xf2\xf6\xe8\x80\xd38/\x00', 0x0, 0xe3) renameat2(r1, &(0x7f0000000400)='./file0/file0\x00', r1, &(0x7f0000000000)='./file0\x00', 0x0) 21:38:27 executing program 5: set_mempolicy(0x8003, &(0x7f0000000300)=0x75f, 0x9) open(&(0x7f0000000300)='.\x00', 0x0, 0x0) r0 = syz_open_procfs(0x0, &(0x7f00000000c0)='fd/3\x00') r1 = syz_open_dev$swradio(&(0x7f0000000100)='/dev/swradio#\x00', 0x0, 0x2) mount$9p_fd(0x0, &(0x7f0000000300)='.\x00', &(0x7f0000000080)='9p\x00', 0xedc000000000, &(0x7f0000000740)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}}) 21:38:27 executing program 2: set_mempolicy(0x8003, &(0x7f0000000300)=0x75f, 0x7) r0 = open(&(0x7f0000000280)='\x13\x13w\xc5\xfc5\xd4\x14T\xd5\xd4\x1d)\xad\x1a`)Y\x81F\xe6\xbe\x16nA\xad\r\xbd@T\x03<\x9f3\xbb\xda\x82$\xa2\xf3\xd7r\xe7cnH\xb3<\xbfp\x83r\xe8\xf1\xb9\x93>\xc5\x12wC\xbe\"\x06 \x9e\xf0-\xf9\xcb\xf2\xf6\xe8\x80\xd38//file0/file0\x00', 0x24000, 0x0) symlinkat(&(0x7f0000000040)='\x13\x13w\xc5\xfc5\xd4\x14T\xd5\xd4\x1d)\xad\x1a`)Y\x81F\xe6\xbe\x16nA\xad\r\xbd@T\x03<\x9f3\xbb\xda\x82$\xa2\xf3\xd7r\xe7cnH\xb3<\xbfp\x83r\xe8\xf1\xb9\x93>\xc5\x12wC\xbe\"\x06 \x9e\xf0-\xf9\xcb\xf2\xf6\xe8\x80\xd38/\x00', r0, &(0x7f00000000c0)='./file0\x00') set_mempolicy(0x8000, &(0x7f0000000140)=0x80000000, 0x10000) mkdirat(r0, &(0x7f0000000200)='\x13\x13w\xc5\xfc5\xd4\x14T\xd5\xd4\x1d)\xad\x1a`)Y\x81F\xe6\xbe\x16nA\xad\r\xbd@T\x03<\x9f3\xbb\xda\x82$\xa2\xf3\xd7r\xe7cnH\xb3<\xbfp\x83r\xe8\xf1\xb9\x93>\xc5\x12wC\xbe\"\x06 \x9e\xf0-\xf9\xcb\xf2\xf6\xe8\x80\xd38/\x00', 0x0) symlinkat(&(0x7f0000000340)='./file0/file0\x00', r0, &(0x7f0000000380)='\x13\x13w\xc5\xfc5\xd4\x14T\xd5\xd4\x1d)\xad\x1a`)Y\x81F\xe6\xbe\x16nA\xad\r\xbd@T\x03<\x9f3\xbb\xda\x82$\xa2\xf3\xd7r\xe7cnH\xb3<\xbfp\x83r\xe8\xf1\xb9\x93>\xc5\x12wC\xbe\"\x06 \x9e\xf0-\xf9\xcb\xf2\xf6\xe8\x80\xd38//file0\x00') r1 = open(&(0x7f0000000100)='.\x00', 0x4401, 0x0) renameat2(r1, &(0x7f0000000400)='./file0/file0\x00', r1, &(0x7f0000000000)='./file0\x00', 0x0) [ 247.933563][T16705] loop0: detected capacity change from 512 to 0 [ 247.945810][T16705] FAULT_INJECTION: forcing a failure. [ 247.945810][T16705] name failslab, interval 1, probability 0, space 0, times 0 [ 247.958530][T16705] CPU: 1 PID: 16705 Comm: syz-executor.0 Not tainted 5.11.0-syzkaller #0 [ 247.966939][T16705] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 247.977166][T16705] Call Trace: [ 247.980443][T16705] dump_stack+0x116/0x15d [ 247.984767][T16705] should_fail+0x23c/0x250 [ 247.989174][T16705] __should_failslab+0x81/0x90 [ 247.993984][T16705] ? tomoyo_encode2+0x1d3/0x350 [ 247.998894][T16705] should_failslab+0x5/0x20 [ 248.003403][T16705] __kmalloc+0x59/0x360 [ 248.007551][T16705] ? crypto_shash_update+0x12c/0x190 [ 248.012876][T16705] tomoyo_encode2+0x1d3/0x350 [ 248.017553][T16705] tomoyo_encode+0x25/0x30 [ 248.021954][T16705] tomoyo_mount_permission+0x1d7/0x700 [ 248.027411][T16705] ? __rcu_read_unlock+0x5c/0x250 [ 248.032504][T16705] ? ___cache_free+0x3c/0x2f0 [ 248.037161][T16705] ? terminate_walk+0x24e/0x270 [ 248.041999][T16705] tomoyo_sb_mount+0x31/0x40 [ 248.046706][T16705] security_sb_mount+0x5c/0xb0 [ 248.051500][T16705] path_mount+0xb1/0x1ca0 [ 248.055811][T16705] __se_sys_mount+0x23d/0x2e0 [ 248.060470][T16705] __x64_sys_mount+0x63/0x70 [ 248.065041][T16705] do_syscall_64+0x39/0x80 [ 248.069444][T16705] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 248.075337][T16705] RIP: 0033:0x4672ba [ 248.079222][T16705] Code: 48 c7 c2 bc ff ff ff f7 d8 64 89 02 b8 ff ff ff ff eb d2 e8 b8 04 00 00 0f 1f 84 00 00 00 00 00 49 89 ca b8 a5 00 00 00 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 248.098821][T16705] RSP: 002b:00007f8175ef9fa8 EFLAGS: 00000206 ORIG_RAX: 00000000000000a5 [ 248.107215][T16705] RAX: ffffffffffffffda RBX: 0000000020000200 RCX: 00000000004672ba [ 248.115182][T16705] RDX: 0000000020000000 RSI: 0000000020000100 RDI: 00007f8175efa000 [ 248.123158][T16705] RBP: 00007f8175efa040 R08: 00007f8175efa040 R09: 0000000020000000 21:38:28 executing program 3: set_mempolicy(0x8003, &(0x7f0000000300)=0x75f, 0x9) open(&(0x7f0000000300)='.\x00', 0x0, 0x0) r0 = syz_open_procfs(0x0, &(0x7f00000000c0)='fd/3\x00') r1 = syz_open_dev$swradio(&(0x7f0000000100)='/dev/swradio#\x00', 0x0, 0x2) mount$9p_fd(0x0, &(0x7f0000000300)='.\x00', &(0x7f0000000080)='9p\x00', 0x5c000000, &(0x7f0000000740)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}}) [ 248.131158][T16705] R10: 0000000000000000 R11: 0000000000000206 R12: 0000000020000000 [ 248.139110][T16705] R13: 0000000020000100 R14: 00007f8175efa000 R15: 0000000020000040 21:38:28 executing program 1: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) r3 = syz_open_procfs(0x0, &(0x7f00000000c0)='fd/3\x00') mount$9p_fd(0x0, &(0x7f0000000300)='.\x00', &(0x7f0000000080)='9p\x00', 0x2500, &(0x7f00000003c0)={'trans=fd,', {'rfdno', 0x3d, r3}, 0x2c, {'wfdno', 0x3d, r2}}) 21:38:28 executing program 4: set_mempolicy(0x8003, &(0x7f0000000300)=0x75f, 0x9) open(&(0x7f0000000300)='.\x00', 0x0, 0x0) r0 = syz_open_procfs(0x0, &(0x7f00000000c0)='fd/3\x00') r1 = syz_open_dev$swradio(&(0x7f0000000100)='/dev/swradio#\x00', 0x0, 0x2) mount$9p_fd(0x0, &(0x7f0000000300)='.\x00', &(0x7f0000000080)='9p\x00', 0x7000000, &(0x7f0000000740)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}}) 21:38:28 executing program 5: set_mempolicy(0x8003, &(0x7f0000000300)=0x75f, 0x9) open(&(0x7f0000000300)='.\x00', 0x0, 0x0) r0 = syz_open_procfs(0x0, &(0x7f00000000c0)='fd/3\x00') r1 = syz_open_dev$swradio(&(0x7f0000000100)='/dev/swradio#\x00', 0x0, 0x2) mount$9p_fd(0x0, &(0x7f0000000300)='.\x00', &(0x7f0000000080)='9p\x00', 0x1000000000000, &(0x7f0000000740)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}}) 21:38:28 executing program 0 (fault-call:0 fault-nth:60): syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x40000, 0x3, &(0x7f0000000200)=[{&(0x7f0000010000)="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", 0x10c, 0x400}, {&(0x7f0000010200)="0500000000000000000000000000000000000000040100002b", 0x19, 0x560}, {&(0x7f0000010300)="000000000000000000000000000000000000000000000000000000001481910a040000001400000024", 0x29, 0x7e0}], 0x0, &(0x7f0000000040)={[{@usrjquota='usrjquota='}, {@data_err_abort='data_err=abort'}]}) 21:38:28 executing program 2: set_mempolicy(0x8003, &(0x7f0000000300)=0x75f, 0x9) r0 = open(&(0x7f0000000300)='.\x00', 0x0, 0x0) symlinkat(&(0x7f0000000040)='\x13\x13w\xc5\xfc5\xd4\x14T\xd5\xd4\x1d)\xad\x1a`)Y\x81F\xe6\xbe\x16nA\xad\r\xbd@T\x03<\x9f3\xbb\xda\x82$\xa2\xf3\xd7r\xe7cnH\xb3<\xbfp\x83r\xe8\xf1\xb9\x93>\xc5\x12wC\xbe\"\x06 \x9e\xf0-\xf9\xcb\xf2\xf6\xe8\x80\xd38/\x00', r0, &(0x7f00000000c0)='./file0\x00') mkdirat(r0, &(0x7f0000000200)='\x13\x13w\xc5\xfc5\xd4\x14T\xd5\xd4\x1d)\xad\x1a`)Y\x81F\xe6\xbe\x16nA\xad\r\xbd@T\x03<\x9f3\xbb\xda\x82$\xa2\xf3\xd7r\xe7cnH\xb3<\xbfp\x83r\xe8\xf1\xb9\x93>\xc5\x12wC\xbe\"\x06 \x9e\xf0-\xf9\xcb\xf2\xf6\xe8\x80\xd38/\x00', 0x0) symlinkat(&(0x7f0000000340)='./file0/file0\x00', r0, &(0x7f0000000380)='\x13\x13w\xc5\xfc5\xd4\x14T\xd5\xd4\x1d)\xad\x1a`)Y\x81F\xe6\xbe\x16nA\xad\r\xbd@T\x03<\x9f3\xbb\xda\x82$\xa2\xf3\xd7r\xe7cnH\xb3<\xbfp\x83r\xe8\xf1\xb9\x93>\xc5\x12wC\xbe\"\x06 \x9e\xf0-\xf9\xcb\xf2\xf6\xe8\x80\xd38//file0\x00') r1 = syz_mount_image$minix(&(0x7f0000000140)='minix\x00', &(0x7f0000000180)='./file0/file0/file0\x00', 0x1ff, 0xa, &(0x7f0000000a40)=[{&(0x7f0000000280)="4cff8b56cf2e97012d689c1e482cfdf29b6b99503b6e2c92ea372da4f022995f7a3cde688fa1e794c85a88f091333d3a6cf8126fe8a98638ec0f8e7ccf2837ed850d36161a8289c0de1f1586815a8c835d9462f6c2bca8866f626a19a6f0f33e413996d61768936e94cad890cd8c10e91254970c2325d1e8b5b7d8e59a", 0x7d, 0x2}, {&(0x7f00000001c0), 0x0, 0x10001}, {&(0x7f0000000440)="a8c24ab0ec0bf11045efc902e141c918386220cd1d08903d46bbe786d68b7d59e7b92e861242a92770f8afecfc7b21d95d914316dab7544d51dc2fdde689e80a8cb00946a35635877328a24ba70e0906684e56f74b854a5584eb1e20d9168bc9d2eef7043abcc371492fb1371b81bb89c3ccb002c8c615353046eedbd6e7ea02d7690112756a7aad0dfe3745bf4f98b149cb4cab037b64e7d1889f43568152938bc609649fbbb7b09818cba04c628e613f1879d7c6b83cd79865717e239cbf140366c58fbdb660dce355", 0xca, 0xce}, {&(0x7f0000000540)="911fa7d4006149d58f97d3ec4bea6c5af23e5bd5d5e75d7c48facb76223ebd9b749e06096af5f0aee44ba914993fdd37b0f4357e708cbb963fea108a439a20d537508ef2c6ba922a426c27421e38b20c2a8d8d627d91a1fa426374dd03396b98217d66d292b48f80a6372a08a496fb375cc6369d5f574f243959c888d9e7b40dd80c97a361a5c61d27850c5b84d55ad8313c799691e114e3e6fb6d773493bb4ee7f36a84f40182e7c26acaeba31c914ac0d12b69d3e7a7f28062d8bb2001c438d4b4be31bf3aa01bc7306e70e05e43b97cb9f979ed3dba41f1675e62a76be1c4e48c0f45", 0xe4, 0x20000000}, {&(0x7f0000000640)="5c1233362703c2225241a819decf0280b2c51a14858f73e582e0a7b4ca2d3aee35502a70e2432df3330dbd3bc30fe449e796d1a6eb76bd7c26d6d0eb5caa6078299387", 0x43, 0x6}, {&(0x7f00000006c0)="72c8793dd12c6344e70a4f01f94d9ab5557192e5cf1d7e6a994751ae6e40018dad85cd331277f345c064a5ca110036c41af4426a13227eedb98989f7649d45377f1dc5d65a6d871f67db8682ff51714c200a93319b3264f9e4fea8e8506fc8ff694f2593e6f628f539cdb6dd4cc89bb97178c65feec24261299d91f4ecb06fe43d8ba349355fa825782579bbaf1684d9094be347d10a0bdb2aea45a4e8dcebc2d53974d92fb53b0502044ffdd85bda1b08f227359563e6ffa050818f4186", 0xbe, 0x9}, {&(0x7f0000000780)="334524d8496b574ab1fe2928921bb6380493272f95c1928eab2a422f3f6613f8869a39cc8f58b3cccd37898e0fce4fd5eead86518957838f891c72395e4c9cc3da50f04bc4e5881861ac005a32dd7da397bb20fa48e632567057303756ae8d7fb4ae9e116e47b2f744d099609ad1b7a06c6a32a1953a8d288d48319091178128af971cf4c2f37ee7138191e193b704b3911d7b54e64b123e95915c5daa4e2d517169b588d6c5627b7ab23526ac6e5d45f220b5839c4b47", 0xb7, 0x2}, {&(0x7f0000000840)="00cb87e3bfc8fb3045846c57a60f45303a446cbc6e5c1585d00bd450dea19224cafcdee31873cd4beb6b060471cf31bd4a3407e7777e99953012bc41d6888027bbf0e44bda692544821129486d1f906784ab01f31650421c53ff3c316102e4b31c7b70d847e66154fb33a9725ab1a01fc556b1035332457c956e0dbe", 0x7c, 0x6}, {&(0x7f00000008c0)="d33a96979c2c4ec9ac24518f48cedf1fed832673c8a7aa6ba3541a3902dffe555cd63480d75a18d951ffe50183e87bb505d80ff3b175a62b518dd424a9b60187033bd88c0cf7094e64191cec3c78f952421f2ae375e4acc4d1f4595ad0883116d60586a3e84560d84be6cdef8f1e4ad0db02fdd98533a37c075fbbf4df80d53937e01928675c47b60b25f370ba90234a759c4951f394e2c9a3d6", 0x9a, 0x6}, {&(0x7f0000000980)="244ae29885227c2070e934c3c0fd61d8c7161bb69c5b33066dc0f4c4a4405cfc14453576e2f9ad75b34e4fdf167d32467477fa193032800e85f9c3d99ce453276b3cc9fecb6a84163bace52b8427864c03322b063dd81e6c489326794f7a91b70657814355704828c7910f264c9e169a748a1726ddb2511e51e8b9a900022544c6cc91ca1259a994cce736", 0x8b, 0xa3b2}], 0x100000, &(0x7f00000015c0)={[{}, {}, {'!&'}, {'$0\x81,'}, {'[}.}\b\xef\f\xe6>\x85\xc4\x94\xbfV%\xb3\xeb\xdd@O\xcc\x99\x80\r\xc5\xa3\xe4+1\x184\x18\xee2\xc7z_\xef\x058\x10\x15\xbc\xe9\x9aF\xe2To\x9b\xf89,p1\x83)\x83\xdd,\xe8\xd3\x1b\xf7\xa2\x9bA1*-\x8a`\x8f\n\x9a\x13y\x80\x90R\xaa\x7f\x94c\xa0\x9f\xa3\xf2\xf5ej\xebr,\v^5\';\xb2\xd2n\xd5\x91\xca\x94\rNh\xfa\xbb\x16\xe4\t\b\x83\xac\xf0\xf6\xb5)~Sc\xc9#\xd1\x06\xfb\xe6\xe19i\x10\xb31\x11\xdc\x14\x94\x95\xf6\x8a\"\x94,\xe8\xd3)\x02'}], [{@pcr={'pcr', 0x3d, 0x25}}, {@seclabel='seclabel'}, {@smackfsfloor={'smackfsfloor'}}, {@smackfshat={'smackfshat', 0x3d, '/+#!+Bd\xec|8\x16}D1\xacxuF\x86P\x17\x8b\xebU\xd2\x8eq\x93\xad\x00=\x85\x85a\xa4\xb0$\xef'}}, {@mask={'mask', 0x3d, '^MAY_APPEND'}}]}) mkdirat(r1, &(0x7f0000000bc0)='\x13\x13w\xc5\xfc5\xd4\x14T\xd5\xd4\x1d)\xad\x1a`)Y\x81F\xe6\xbe\x16nA\xad\r\xbd@T\x03<\x9f3\xbb\xda\x82$\xa2\xf3\xd7r\xe7cnH\xb3<\xbfp\x83r\xe8\xf1\xb9\x93>\xc5\x12wC\xbe\"\x06 \x9e\xf0-\xf9\xcb\xf2\xf6\xe8\x80\xd38//file0\x00', 0x100) r2 = open(&(0x7f0000000100)='.\x00', 0x0, 0x0) renameat2(r2, &(0x7f0000000400)='./file0/file0\x00', r2, &(0x7f0000000000)='./file0\x00', 0x0) r3 = bpf$PROG_LOAD(0x5, &(0x7f0000000080)={0x3, 0x8, &(0x7f0000001700)=ANY=[@ANYBLOB="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"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, [], 0x0, 0x0, 0xffffffffffffffff, 0x8, &(0x7f0000000000), 0x8, 0x10, &(0x7f0000000000)={0xfffffffd}, 0x10}, 0x78) bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000040)={r3, 0x0, 0xe, 0x300, &(0x7f0000000140)="e3d0e9d6d9d18e5f39868de363d3", 0x0, 0x19d, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x40) ioctl$FS_IOC_RESVSP(r3, 0x40305828, &(0x7f00000001c0)={0x0, 0x0, 0x4, 0x6035}) 21:38:28 executing program 3: set_mempolicy(0x8003, &(0x7f0000000300)=0x75f, 0x9) open(&(0x7f0000000300)='.\x00', 0x0, 0x0) r0 = syz_open_procfs(0x0, &(0x7f00000000c0)='fd/3\x00') r1 = syz_open_dev$swradio(&(0x7f0000000100)='/dev/swradio#\x00', 0x0, 0x2) mount$9p_fd(0x0, &(0x7f0000000300)='.\x00', &(0x7f0000000080)='9p\x00', 0x8cffffff, &(0x7f0000000740)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}}) 21:38:28 executing program 5: set_mempolicy(0x8003, &(0x7f0000000300)=0x75f, 0x9) open(&(0x7f0000000300)='.\x00', 0x0, 0x0) r0 = syz_open_procfs(0x0, &(0x7f00000000c0)='fd/3\x00') r1 = syz_open_dev$swradio(&(0x7f0000000100)='/dev/swradio#\x00', 0x0, 0x2) mount$9p_fd(0x0, &(0x7f0000000300)='.\x00', &(0x7f0000000080)='9p\x00', 0x40000000000000, &(0x7f0000000740)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}}) 21:38:28 executing program 1: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) r3 = syz_open_procfs(0x0, &(0x7f00000000c0)='fd/3\x00') mount$9p_fd(0x0, &(0x7f0000000300)='.\x00', &(0x7f0000000080)='9p\x00', 0x3f00, &(0x7f00000003c0)={'trans=fd,', {'rfdno', 0x3d, r3}, 0x2c, {'wfdno', 0x3d, r2}}) 21:38:28 executing program 4: set_mempolicy(0x8003, &(0x7f0000000300)=0x75f, 0x9) open(&(0x7f0000000300)='.\x00', 0x0, 0x0) r0 = syz_open_procfs(0x0, &(0x7f00000000c0)='fd/3\x00') r1 = syz_open_dev$swradio(&(0x7f0000000100)='/dev/swradio#\x00', 0x0, 0x2) mount$9p_fd(0x0, &(0x7f0000000300)='.\x00', &(0x7f0000000080)='9p\x00', 0x8000000, &(0x7f0000000740)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}}) 21:38:28 executing program 1: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) r3 = syz_open_procfs(0x0, &(0x7f00000000c0)='fd/3\x00') mount$9p_fd(0x0, &(0x7f0000000300)='.\x00', &(0x7f0000000080)='9p\x00', 0x4000, &(0x7f00000003c0)={'trans=fd,', {'rfdno', 0x3d, r3}, 0x2c, {'wfdno', 0x3d, r2}}) 21:38:28 executing program 5: set_mempolicy(0x8003, &(0x7f0000000300)=0x75f, 0x9) open(&(0x7f0000000300)='.\x00', 0x0, 0x0) r0 = syz_open_procfs(0x0, &(0x7f00000000c0)='fd/3\x00') r1 = syz_open_dev$swradio(&(0x7f0000000100)='/dev/swradio#\x00', 0x0, 0x2) mount$9p_fd(0x0, &(0x7f0000000300)='.\x00', &(0x7f0000000080)='9p\x00', 0xfeffff00000000, &(0x7f0000000740)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}}) 21:38:28 executing program 3: set_mempolicy(0x8003, &(0x7f0000000300)=0x75f, 0x9) open(&(0x7f0000000300)='.\x00', 0x0, 0x0) r0 = syz_open_procfs(0x0, &(0x7f00000000c0)='fd/3\x00') r1 = syz_open_dev$swradio(&(0x7f0000000100)='/dev/swradio#\x00', 0x0, 0x2) mount$9p_fd(0x0, &(0x7f0000000300)='.\x00', &(0x7f0000000080)='9p\x00', 0xc0ed0000, &(0x7f0000000740)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}}) [ 248.419444][T16753] loop2: detected capacity change from 264192 to 0 [ 248.447992][T16760] loop0: detected capacity change from 512 to 0 21:38:28 executing program 4: set_mempolicy(0x8003, &(0x7f0000000300)=0x75f, 0x9) open(&(0x7f0000000300)='.\x00', 0x0, 0x0) r0 = syz_open_procfs(0x0, &(0x7f00000000c0)='fd/3\x00') r1 = syz_open_dev$swradio(&(0x7f0000000100)='/dev/swradio#\x00', 0x0, 0x2) mount$9p_fd(0x0, &(0x7f0000000300)='.\x00', &(0x7f0000000080)='9p\x00', 0x9000000, &(0x7f0000000740)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}}) [ 248.466122][T16760] FAULT_INJECTION: forcing a failure. [ 248.466122][T16760] name failslab, interval 1, probability 0, space 0, times 0 [ 248.479034][T16760] CPU: 0 PID: 16760 Comm: syz-executor.0 Not tainted 5.11.0-syzkaller #0 [ 248.487528][T16760] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 248.497582][T16760] Call Trace: [ 248.500863][T16760] dump_stack+0x116/0x15d [ 248.505189][T16760] should_fail+0x23c/0x250 [ 248.509758][T16760] __should_failslab+0x81/0x90 [ 248.514524][T16760] ? tomoyo_encode2+0x1d3/0x350 [ 248.519367][T16760] should_failslab+0x5/0x20 [ 248.523857][T16760] __kmalloc+0x59/0x360 [ 248.528030][T16760] tomoyo_encode2+0x1d3/0x350 [ 248.532699][T16760] tomoyo_realpath_from_path+0x35e/0x3b0 [ 248.538398][T16760] tomoyo_mount_permission+0x215/0x700 [ 248.543858][T16760] ? __rcu_read_unlock+0x5c/0x250 [ 248.548870][T16760] ? ___cache_free+0x3c/0x2f0 [ 248.553525][T16760] ? terminate_walk+0x24e/0x270 [ 248.558362][T16760] tomoyo_sb_mount+0x31/0x40 [ 248.563011][T16760] security_sb_mount+0x5c/0xb0 [ 248.567759][T16760] path_mount+0xb1/0x1ca0 [ 248.572069][T16760] __se_sys_mount+0x23d/0x2e0 [ 248.576770][T16760] __x64_sys_mount+0x63/0x70 [ 248.581415][T16760] do_syscall_64+0x39/0x80 [ 248.585817][T16760] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 248.591710][T16760] RIP: 0033:0x4672ba [ 248.595584][T16760] Code: 48 c7 c2 bc ff ff ff f7 d8 64 89 02 b8 ff ff ff ff eb d2 e8 b8 04 00 00 0f 1f 84 00 00 00 00 00 49 89 ca b8 a5 00 00 00 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 248.616737][T16760] RSP: 002b:00007f8175ef9fa8 EFLAGS: 00000206 ORIG_RAX: 00000000000000a5 [ 248.625184][T16760] RAX: ffffffffffffffda RBX: 0000000020000200 RCX: 00000000004672ba [ 248.633133][T16760] RDX: 0000000020000000 RSI: 0000000020000100 RDI: 00007f8175efa000 [ 248.641132][T16760] RBP: 00007f8175efa040 R08: 00007f8175efa040 R09: 0000000020000000 [ 248.649083][T16760] R10: 0000000000000000 R11: 0000000000000206 R12: 0000000020000000 [ 248.657189][T16760] R13: 0000000020000100 R14: 00007f8175efa000 R15: 0000000020000040 21:38:28 executing program 5: set_mempolicy(0x8003, &(0x7f0000000300)=0x75f, 0x9) open(&(0x7f0000000300)='.\x00', 0x0, 0x0) r0 = syz_open_procfs(0x0, &(0x7f00000000c0)='fd/3\x00') r1 = syz_open_dev$swradio(&(0x7f0000000100)='/dev/swradio#\x00', 0x0, 0x2) mount$9p_fd(0x0, &(0x7f0000000300)='.\x00', &(0x7f0000000080)='9p\x00', 0x100000000000000, &(0x7f0000000740)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}}) [ 248.670995][T16760] ERROR: Out of memory at tomoyo_realpath_from_path. [ 248.680308][T16753] loop2: detected capacity change from 264192 to 0 [ 248.704219][T16783] 9pnet: Insufficient options for proto=fd 21:38:28 executing program 3: set_mempolicy(0x8003, &(0x7f0000000300)=0x75f, 0x9) open(&(0x7f0000000300)='.\x00', 0x0, 0x0) r0 = syz_open_procfs(0x0, &(0x7f00000000c0)='fd/3\x00') r1 = syz_open_dev$swradio(&(0x7f0000000100)='/dev/swradio#\x00', 0x0, 0x2) mount$9p_fd(0x0, &(0x7f0000000300)='.\x00', &(0x7f0000000080)='9p\x00', 0xf6ffffff, &(0x7f0000000740)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}}) 21:38:28 executing program 0 (fault-call:0 fault-nth:61): syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x40000, 0x3, &(0x7f0000000200)=[{&(0x7f0000010000)="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", 0x10c, 0x400}, {&(0x7f0000010200)="0500000000000000000000000000000000000000040100002b", 0x19, 0x560}, {&(0x7f0000010300)="000000000000000000000000000000000000000000000000000000001481910a040000001400000024", 0x29, 0x7e0}], 0x0, &(0x7f0000000040)={[{@usrjquota='usrjquota='}, {@data_err_abort='data_err=abort'}]}) 21:38:28 executing program 2: set_mempolicy(0x8003, &(0x7f0000000300)=0x75f, 0x9) r0 = open(&(0x7f0000000300)='.\x00', 0x0, 0x0) set_mempolicy(0x2, &(0x7f0000000140)=0xffffffff80000001, 0x1f) symlinkat(&(0x7f0000000040)='\x13\x13w\xc5\xfc5\xd4\x14T\xd5\xd4\x1d)\xad\x1a`)Y\x81F\xe6\xbe\x16nA\xad\r\xbd@T\x03<\x9f3\xbb\xda\x82$\xa2\xf3\xd7r\xe7cnH\xb3<\xbfp\x83r\xe8\xf1\xb9\x93>\xc5\x12wC\xbe\"\x06 \x9e\xf0-\xf9\xcb\xf2\xf6\xe8\x80\xd38/\x00', r0, &(0x7f00000000c0)='./file0\x00') mkdirat(r0, &(0x7f0000000200)='\x13\x13w\xc5\xfc5\xd4\x14T\xd5\xd4\x1d)\xad\x1a`)Y\x81F\xe6\xbe\x16nA\xad\r\xbd@T\x03<\x9f3\xbb\xda\x82$\xa2\xf3\xd7r\xe7cnH\xb3<\xbfp\x83r\xe8\xf1\xb9\x93>\xc5\x12wC\xbe\"\x06 \x9e\xf0-\xf9\xcb\xf2\xf6\xe8\x80\xd38/\x00', 0x0) symlinkat(&(0x7f0000000340)='./file0/file0\x00', r0, &(0x7f0000000380)='\x13\x13w\xc5\xfc5\xd4\x14T\xd5\xd4\x1d)\xad\x1a`)Y\x81F\xe6\xbe\x16nA\xad\r\xbd@T\x03<\x9f3\xbb\xda\x82$\xa2\xf3\xd7r\xe7cnH\xb3<\xbfp\x83r\xe8\xf1\xb9\x93>\xc5\x12wC\xbe\"\x06 \x9e\xf0-\xf9\xcb\xf2\xf6\xe8\x80\xd38//file0\x00') r1 = open(&(0x7f0000000100)='.\x00', 0x0, 0x0) renameat2(r1, &(0x7f0000000400)='./file0/file0\x00', r1, &(0x7f0000000000)='./file0\x00', 0x0) 21:38:28 executing program 5: set_mempolicy(0x8003, &(0x7f0000000300)=0x75f, 0x9) open(&(0x7f0000000300)='.\x00', 0x0, 0x0) r0 = syz_open_procfs(0x0, &(0x7f00000000c0)='fd/3\x00') r1 = syz_open_dev$swradio(&(0x7f0000000100)='/dev/swradio#\x00', 0x0, 0x2) mount$9p_fd(0x0, &(0x7f0000000300)='.\x00', &(0x7f0000000080)='9p\x00', 0x200000000000000, &(0x7f0000000740)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}}) 21:38:28 executing program 4: set_mempolicy(0x8003, &(0x7f0000000300)=0x75f, 0x9) open(&(0x7f0000000300)='.\x00', 0x0, 0x0) r0 = syz_open_procfs(0x0, &(0x7f00000000c0)='fd/3\x00') r1 = syz_open_dev$swradio(&(0x7f0000000100)='/dev/swradio#\x00', 0x0, 0x2) mount$9p_fd(0x0, &(0x7f0000000300)='.\x00', &(0x7f0000000080)='9p\x00', 0xa000000, &(0x7f0000000740)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}}) 21:38:28 executing program 1: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) r3 = syz_open_procfs(0x0, &(0x7f00000000c0)='fd/3\x00') mount$9p_fd(0x0, &(0x7f0000000300)='.\x00', &(0x7f0000000080)='9p\x00', 0x5c00, &(0x7f00000003c0)={'trans=fd,', {'rfdno', 0x3d, r3}, 0x2c, {'wfdno', 0x3d, r2}}) 21:38:28 executing program 3: set_mempolicy(0x8003, &(0x7f0000000300)=0x75f, 0x9) open(&(0x7f0000000300)='.\x00', 0x0, 0x0) r0 = syz_open_procfs(0x0, &(0x7f00000000c0)='fd/3\x00') r1 = syz_open_dev$swradio(&(0x7f0000000100)='/dev/swradio#\x00', 0x0, 0x2) mount$9p_fd(0x0, &(0x7f0000000300)='.\x00', &(0x7f0000000080)='9p\x00', 0xfeffffff, &(0x7f0000000740)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}}) [ 248.894336][T16805] 9pnet: Insufficient options for proto=fd 21:38:28 executing program 5: set_mempolicy(0x8003, &(0x7f0000000300)=0x75f, 0x9) open(&(0x7f0000000300)='.\x00', 0x0, 0x0) r0 = syz_open_procfs(0x0, &(0x7f00000000c0)='fd/3\x00') r1 = syz_open_dev$swradio(&(0x7f0000000100)='/dev/swradio#\x00', 0x0, 0x2) mount$9p_fd(0x0, &(0x7f0000000300)='.\x00', &(0x7f0000000080)='9p\x00', 0x300000000000000, &(0x7f0000000740)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}}) [ 248.952906][T16817] loop0: detected capacity change from 512 to 0 [ 248.980129][T16817] FAULT_INJECTION: forcing a failure. [ 248.980129][T16817] name failslab, interval 1, probability 0, space 0, times 0 [ 249.007725][T16817] CPU: 0 PID: 16817 Comm: syz-executor.0 Not tainted 5.11.0-syzkaller #0 [ 249.016275][T16817] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 249.026359][T16817] Call Trace: [ 249.029629][T16817] dump_stack+0x116/0x15d [ 249.033953][T16817] should_fail+0x23c/0x250 [ 249.038394][T16817] __should_failslab+0x81/0x90 [ 249.043174][T16817] ? tomoyo_encode2+0x1d3/0x350 [ 249.048017][T16817] should_failslab+0x5/0x20 [ 249.052561][T16817] __kmalloc+0x59/0x360 [ 249.056703][T16817] tomoyo_encode2+0x1d3/0x350 [ 249.061365][T16817] tomoyo_realpath_from_path+0x35e/0x3b0 [ 249.066986][T16817] tomoyo_mount_permission+0x215/0x700 [ 249.072489][T16817] ? __rcu_read_unlock+0x5c/0x250 [ 249.077500][T16817] ? ___cache_free+0x3c/0x2f0 [ 249.082158][T16817] ? terminate_walk+0x24e/0x270 [ 249.087020][T16817] tomoyo_sb_mount+0x31/0x40 [ 249.091605][T16817] security_sb_mount+0x5c/0xb0 [ 249.096391][T16817] path_mount+0xb1/0x1ca0 [ 249.100715][T16817] __se_sys_mount+0x23d/0x2e0 [ 249.105387][T16817] __x64_sys_mount+0x63/0x70 [ 249.110748][T16817] do_syscall_64+0x39/0x80 [ 249.115156][T16817] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 249.121090][T16817] RIP: 0033:0x4672ba [ 249.124967][T16817] Code: 48 c7 c2 bc ff ff ff f7 d8 64 89 02 b8 ff ff ff ff eb d2 e8 b8 04 00 00 0f 1f 84 00 00 00 00 00 49 89 ca b8 a5 00 00 00 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 249.144630][T16817] RSP: 002b:00007f8175ef9fa8 EFLAGS: 00000206 ORIG_RAX: 00000000000000a5 [ 249.153022][T16817] RAX: ffffffffffffffda RBX: 0000000020000200 RCX: 00000000004672ba [ 249.160976][T16817] RDX: 0000000020000000 RSI: 0000000020000100 RDI: 00007f8175efa000 [ 249.168929][T16817] RBP: 00007f8175efa040 R08: 00007f8175efa040 R09: 0000000020000000 [ 249.176928][T16817] R10: 0000000000000000 R11: 0000000000000206 R12: 0000000020000000 [ 249.184889][T16817] R13: 0000000020000100 R14: 00007f8175efa000 R15: 0000000020000040 [ 249.194578][ T3301] ieee802154 phy0 wpan0: encryption failed: -22 21:38:29 executing program 2: set_mempolicy(0x8003, &(0x7f0000000300)=0x75f, 0x9) r0 = open(&(0x7f0000000300)='.\x00', 0x0, 0x0) symlinkat(&(0x7f0000000040)='\x13\x13w\xc5\xfc5\xd4\x14T\xd5\xd4\x1d)\xad\x1a`)Y\x81F\xe6\xbe\x16nA\xad\r\xbd@T\x03<\x9f3\xbb\xda\x82$\xa2\xf3\xd7r\xe7cnH\xb3<\xbfp\x83r\xe8\xf1\xb9\x93>\xc5\x12wC\xbe\"\x06 \x9e\xf0-\xf9\xcb\xf2\xf6\xe8\x80\xd38/\x00', r0, &(0x7f00000000c0)='./file0\x00') mkdirat(r0, &(0x7f0000000200)='\x13\x13w\xc5\xfc5\xd4\x14T\xd5\xd4\x1d)\xad\x1a`)Y\x81F\xe6\xbe\x16nA\xad\r\xbd@T\x03<\x9f3\xbb\xda\x82$\xa2\xf3\xd7r\xe7cnH\xb3<\xbfp\x83r\xe8\xf1\xb9\x93>\xc5\x12wC\xbe\"\x06 \x9e\xf0-\xf9\xcb\xf2\xf6\xe8\x80\xd38/\x00', 0x0) symlinkat(&(0x7f0000000340)='./file0/file0\x00', r0, &(0x7f0000000380)='\x13\x13w\xc5\xfc5\xd4\x14T\xd5\xd4\x1d)\xad\x1a`)Y\x81F\xe6\xbe\x16nA\xad\r\xbd@T\x03<\x9f3\xbb\xda\x82$\xa2\xf3\xd7r\xe7cnH\xb3<\xbfp\x83r\xe8\xf1\xb9\x93>\xc5\x12wC\xbe\"\x06 \x9e\xf0-\xf9\xcb\xf2\xf6\xe8\x80\xd38//file0\x00') r1 = open(&(0x7f0000000100)='.\x00', 0x0, 0x0) renameat2(r1, &(0x7f0000000400)='./file0/file0\x00', r1, &(0x7f0000000000)='./file0\x00', 0x0) fsconfig$FSCONFIG_SET_PATH_EMPTY(r1, 0x4, &(0x7f0000000140)='^-:[S]\\\\%\x00', &(0x7f0000000180)='\x13\x13w\xc5\xfc5\xd4\x14T\xd5\xd4\x1d)\xad\x1a`)Y\x81F\xe6\xbe\x16nA\xad\r\xbd@T\x03<\x9f3\xbb\xda\x82$\xa2\xf3\xd7r\xe7cnH\xb3<\xbfp\x83r\xe8\xf1\xb9\x93>\xc5\x12wC\xbe\"\x06 \x9e\xf0-\xf9\xcb\xf2\xf6\xe8\x80\xd38//file0\x00', 0xffffffffffffff9c) 21:38:29 executing program 3: set_mempolicy(0x8003, &(0x7f0000000300)=0x75f, 0x9) open(&(0x7f0000000300)='.\x00', 0x0, 0x0) r0 = syz_open_procfs(0x0, &(0x7f00000000c0)='fd/3\x00') r1 = syz_open_dev$swradio(&(0x7f0000000100)='/dev/swradio#\x00', 0x0, 0x2) mount$9p_fd(0x0, &(0x7f0000000300)='.\x00', &(0x7f0000000080)='9p\x00', 0xff000000, &(0x7f0000000740)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}}) 21:38:29 executing program 5: set_mempolicy(0x8003, &(0x7f0000000300)=0x75f, 0x9) open(&(0x7f0000000300)='.\x00', 0x0, 0x0) r0 = syz_open_procfs(0x0, &(0x7f00000000c0)='fd/3\x00') r1 = syz_open_dev$swradio(&(0x7f0000000100)='/dev/swradio#\x00', 0x0, 0x2) mount$9p_fd(0x0, &(0x7f0000000300)='.\x00', &(0x7f0000000080)='9p\x00', 0x400000000000000, &(0x7f0000000740)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}}) [ 249.194677][ T3301] ieee802154 phy1 wpan1: encryption failed: -22 [ 249.217922][T16832] vivid-008: kernel_thread() failed 21:38:29 executing program 4: set_mempolicy(0x8003, &(0x7f0000000300)=0x75f, 0x9) open(&(0x7f0000000300)='.\x00', 0x0, 0x0) r0 = syz_open_procfs(0x0, &(0x7f00000000c0)='fd/3\x00') r1 = syz_open_dev$swradio(&(0x7f0000000100)='/dev/swradio#\x00', 0x0, 0x2) mount$9p_fd(0x0, &(0x7f0000000300)='.\x00', &(0x7f0000000080)='9p\x00', 0xb000000, &(0x7f0000000740)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}}) 21:38:29 executing program 2: set_mempolicy(0x8003, &(0x7f0000000300)=0x75f, 0x9) r0 = open(&(0x7f0000000940)='.\x00', 0x0, 0x0) symlinkat(&(0x7f0000000040)='\x13\x13w\xc5\xfc5\xd4\x14T\xd5\xd4\x1d)\xad\x1a`)Y\x81F\xe6\xbe\x16nA\xad\r\xbd@T\x03<\x9f3\xbb\xda\x82$\xa2\xf3\xd7r\xe7cnH\xb3<\xbfp\x83r\xe8\xf1\xb9\x93>\xc5\x12wC\xbe\"\x06 \x9e\xf0-\xf9\xcb\xf2\xf6\xe8\x80\xd38/\x00', r0, &(0x7f00000000c0)='./file0\x00') r1 = syz_mount_image$fuse(&(0x7f0000000140)='fuse\x00', &(0x7f0000000180)='./file1\x00', 0x0, 0x0, 0x0, 0x10000, &(0x7f0000000240)={{'fd', 0x3d, r0}, 0x2c, {'rootmode', 0x3d, 0xc000}, 0x2c, {'user_id', 0x3d, 0xee00}, 0x2c, {'group_id', 0x3d, 0xffffffffffffffff}, 0x2c, {[{@allow_other='allow_other'}, {@allow_other='allow_other'}], [{@dont_hash='dont_hash'}]}}) mkdirat(r1, &(0x7f0000000440)='./file0\x00', 0x50) r2 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000980)='/proc/sysvipc/sem\x00', 0x0, 0x0) setsockopt$IPT_SO_SET_REPLACE(r2, 0x0, 0x40, &(0x7f0000000a00)=@raw={'raw\x00', 0x9, 0x3, 0x250, 0x0, 0xffffffff, 0xffffffff, 0xe0, 0xffffffff, 0x1b8, 0xffffffff, 0xffffffff, 0x1b8, 0xffffffff, 0x3, &(0x7f00000009c0), {[{{@uncond, 0x0, 0x98, 0xe0, 0x0, {}, [@common=@ttl={{0x28, 'ttl\x00'}, {0x0, 0x3}}]}, @unspec=@CT0={0x48, 'CT\x00', 0x0, {0x1, 0x75d, 0x6, 0x0, 'syz0\x00', {0x8}}}}, {{@ip={@remote, @rand_addr=0x64010100, 0x0, 0xffffff00, 'veth0_to_batadv\x00', 'ip6_vti0\x00', {0xff}, {}, 0x1, 0x2, 0x48}, 0x0, 0x70, 0xd8}, @unspec=@CT2={0x68, 'CT\x00', 0x2, {0x8, 0x8, 0xf07, 0xffff, 'pptp\x00', 'syz1\x00'}}}], {{[], 0x0, 0x70, 0x98}, {0x28}}}}, 0x2b0) symlinkat(&(0x7f0000000340)='./file0/file0\x00', r0, &(0x7f0000000380)='\x13\x13w\xc5\xfc5\xd4\x14T\xd5\xd4\x1d)\xad\x1a`)Y\x81F\xe6\xbe\x16nA\xad\r\xbd@T\x03<\x9f3\xbb\xda\x82$\xa2\xf3\xd7r\xe7cnH\xb3<\xbfp\x83r\xe8\xf1\xb9\x93>\xc5\x12wC\xbe\"\x06 \x9e\xf0-\xf9\xcb\xf2\xf6\xe8\x80\xd38//file0\x00') renameat2(0xffffffffffffffff, &(0x7f0000000400)='./file0/file0\x00', 0xffffffffffffffff, &(0x7f0000000000)='./file0\x00', 0x0) mount(&(0x7f0000000100)=@sg0='/dev/sg0\x00', &(0x7f0000000480)='./file0/file0\x00', &(0x7f0000000200)='sockfs\x00', 0x8000, &(0x7f00000001c0)='group_id') mount(&(0x7f00000004c0)=@loop={'/dev/loop', 0x0}, &(0x7f0000000500)='\x13\x13w\xc5\xfc5\xd4\x14T\xd5\xd4\x1d)\xad\x1a`)Y\x81F\xe6\xbe\x16nA\xad\r\xbd@T\x03<\x9f3\xbb\xda\x82$\xa2\xf3\xd7r\xe7cnH\xb3<\xbfp\x83r\xe8\xf1\xb9\x93>\xc5\x12wC\xbe\"\x06 \x9e\xf0-\xf9\xcb\xf2\xf6\xe8\x80\xd38/\x00', &(0x7f0000000580)='tmpfs\x00', 0x20, &(0x7f00000005c0)='\x00') umount2(&(0x7f0000000cc0)='\x13\x13w\xc5\xfc5\xd4\x14T\xd5\xd4\x1d)\xad\x1a`)Y\x81F\xe6\xbe\x16nA\xad\r\xbd@T\x03<\x9f3\xbb\xda\x82$\xa2\xf3\xd7r\xe7cnH\xb3<\xbfp\x83r\xe8\xf1\xb9\x93>\xc5\x12wC\xbe\"\x06 \x9e\xf0-\xf9\xcb\xf2\xf6\xe8\x80\xd38/\x00', 0x1) r3 = syz_mount_image$efs(&(0x7f0000000600)='efs\x00', &(0x7f0000000640)='./file0/file0\x00', 0x7, 0x2, &(0x7f00000007c0)=[{&(0x7f0000000680)="2716f960765c70570a0445b05a2d814809a8282c187487a1c5ded22ce94faa20831d8bb60e951dcc7226b57c8995c1d945b095f1d178fccab5837f7901174f0fb3c5c3aaae2180a0dbb1007f1bb0727073c7b1adcedec1ee6fc85f651ea13fc94cd6ab5bf75ecaa0a89ffd8f79af023e58617018023ee830166c7e9fe0cb837ce2e2e9de1e19aa24b6bbe04be49241808d66bcc0b60a3ccf", 0x98, 0x4cb}, {&(0x7f0000000740)="18760e84661b3dce2abd902c42fbd8c76254664e703be213324703b503e71efdd6fe7b6981092344e27e419d1c2deee06a28d394a82fef056f94816badda6e02f2483a", 0x43, 0x1}], 0x2080, &(0x7f0000000800)=ANY=[@ANYBLOB="5d2c6170706a616973655f74795002000000617369672c65a430e804", @ANYRESDEC=0xee00, @ANYBLOB=',dont_measure,dont_appraise,\x00']) renameat2(r3, &(0x7f0000000880)='\x13\x13w\xc5\xfc5\xd4\x14T\xd5\xd4\x1d)\xad\x1a`)Y\x81F\xe6\xbe\x16nA\xad\r\xbd@T\x03<\x9f3\xbb\xda\x82$\xa2\xf3\xd7r\xe7cnH\xb3<\xbfp\x83r\xe8\xf1\xb9\x93>\xc5\x12wC\xbe\"\x06 \x9e\xf0-\xf9\xcb\xf2\xf6\xe8\x80\xd38//file0\x00', r1, &(0x7f0000000900)='./file0/file0\x00', 0x3) [ 249.377013][T16859] fuse: Bad value for 'user_id' [ 249.390818][T16859] loop2: detected capacity change from 4 to 0 [ 249.397518][T16817] ERROR: Out of memory at tomoyo_realpath_from_path. [ 249.440887][T16859] fuse: Bad value for 'user_id' 21:38:29 executing program 0 (fault-call:0 fault-nth:62): syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x40000, 0x3, &(0x7f0000000200)=[{&(0x7f0000010000)="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", 0x10c, 0x400}, {&(0x7f0000010200)="0500000000000000000000000000000000000000040100002b", 0x19, 0x560}, {&(0x7f0000010300)="000000000000000000000000000000000000000000000000000000001481910a040000001400000024", 0x29, 0x7e0}], 0x0, &(0x7f0000000040)={[{@usrjquota='usrjquota='}, {@data_err_abort='data_err=abort'}]}) 21:38:29 executing program 5: set_mempolicy(0x8003, &(0x7f0000000300)=0x75f, 0x9) open(&(0x7f0000000300)='.\x00', 0x0, 0x0) r0 = syz_open_procfs(0x0, &(0x7f00000000c0)='fd/3\x00') r1 = syz_open_dev$swradio(&(0x7f0000000100)='/dev/swradio#\x00', 0x0, 0x2) mount$9p_fd(0x0, &(0x7f0000000300)='.\x00', &(0x7f0000000080)='9p\x00', 0x500000000000000, &(0x7f0000000740)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}}) 21:38:29 executing program 3: set_mempolicy(0x8003, &(0x7f0000000300)=0x75f, 0x9) open(&(0x7f0000000300)='.\x00', 0x0, 0x0) r0 = syz_open_procfs(0x0, &(0x7f00000000c0)='fd/3\x00') r1 = syz_open_dev$swradio(&(0x7f0000000100)='/dev/swradio#\x00', 0x0, 0x2) mount$9p_fd(0x0, &(0x7f0000000300)='.\x00', &(0x7f0000000080)='9p\x00', 0xff9f0000, &(0x7f0000000740)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}}) 21:38:29 executing program 4: set_mempolicy(0x8003, &(0x7f0000000300)=0x75f, 0x9) open(&(0x7f0000000300)='.\x00', 0x0, 0x0) r0 = syz_open_procfs(0x0, &(0x7f00000000c0)='fd/3\x00') r1 = syz_open_dev$swradio(&(0x7f0000000100)='/dev/swradio#\x00', 0x0, 0x2) mount$9p_fd(0x0, &(0x7f0000000300)='.\x00', &(0x7f0000000080)='9p\x00', 0xc000000, &(0x7f0000000740)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}}) 21:38:29 executing program 1: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) r3 = syz_open_procfs(0x0, &(0x7f00000000c0)='fd/3\x00') mount$9p_fd(0x0, &(0x7f0000000300)='.\x00', &(0x7f0000000080)='9p\x00', 0xedc0, &(0x7f00000003c0)={'trans=fd,', {'rfdno', 0x3d, r3}, 0x2c, {'wfdno', 0x3d, r2}}) 21:38:29 executing program 5: set_mempolicy(0x8003, &(0x7f0000000300)=0x75f, 0x9) open(&(0x7f0000000300)='.\x00', 0x0, 0x0) r0 = syz_open_procfs(0x0, &(0x7f00000000c0)='fd/3\x00') r1 = syz_open_dev$swradio(&(0x7f0000000100)='/dev/swradio#\x00', 0x0, 0x2) mount$9p_fd(0x0, &(0x7f0000000300)='.\x00', &(0x7f0000000080)='9p\x00', 0x600000000000000, &(0x7f0000000740)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}}) [ 249.508355][T16867] loop2: detected capacity change from 4 to 0 21:38:29 executing program 1: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) r3 = syz_open_procfs(0x0, &(0x7f00000000c0)='fd/3\x00') mount$9p_fd(0x0, &(0x7f0000000300)='.\x00', &(0x7f0000000080)='9p\x00', 0xff00, &(0x7f00000003c0)={'trans=fd,', {'rfdno', 0x3d, r3}, 0x2c, {'wfdno', 0x3d, r2}}) 21:38:29 executing program 2: set_mempolicy(0x8003, &(0x7f0000000300)=0x75f, 0x9) r0 = open(&(0x7f0000000300)='.\x00', 0x0, 0x0) symlinkat(&(0x7f0000000040)='\x13\x13w\xc5\xfc5\xd4\x14T\xd5\xd4\x1d)\xad\x1a`)Y\x81F\xe6\xbe\x16nA\xad\r\xbd@T\x03<\x9f3\xbb\xda\x82$\xa2\xf3\xd7r\xe7cnH\xb3<\xbfp\x83r\xe8\xf1\xb9\x93>\xc5\x12wC\xbe\"\x06 \x9e\xf0-\xf9\xcb\xf2\xf6\xe8\x80\xd38/\x00', r0, &(0x7f00000000c0)='./file0\x00') mkdirat(r0, &(0x7f0000000200)='\x13\x13w\xc5\xfc5\xd4\x14T\xd5\xd4\x1d)\xad\x1a`)Y\x81F\xe6\xbe\x16nA\xad\r\xbd@T\x03<\x9f3\xbb\xda\x82$\xa2\xf3\xd7r\xe7cnH\xb3<\xbfp\x83r\xe8\xf1\xb9\x93>\xc5\x12wC\xbe\"\x06 \x9e\xf0-\xf9\xcb\xf2\xf6\xe8\x80\xd38/\x00', 0x0) symlinkat(&(0x7f0000000340)='./file0/file0\x00', r0, &(0x7f0000000380)='\x13\x13w\xc5\xfc5\xd4\x14T\xd5\xd4\x1d)\xad\x1a`)Y\x81F\xe6\xbe\x16nA\xad\r\xbd@T\x03<\x9f3\xbb\xda\x82$\xa2\xf3\xd7r\xe7cnH\xb3<\xbfp\x83r\xe8\xf1\xb9\x93>\xc5\x12wC\xbe\"\x06 \x9e\xf0-\xf9\xcb\xf2\xf6\xe8\x80\xd38//file0\x00') r1 = open(&(0x7f0000000100)='.\x00', 0x0, 0x0) renameat2(r1, &(0x7f0000000400)='./file0/file0\x00', r1, &(0x7f0000000000)='./file0\x00', 0x0) open(&(0x7f0000000140)='./file0/file0\x00', 0x800, 0x112) 21:38:29 executing program 3: set_mempolicy(0x8003, &(0x7f0000000300)=0x75f, 0x9) open(&(0x7f0000000300)='.\x00', 0x0, 0x0) r0 = syz_open_procfs(0x0, &(0x7f00000000c0)='fd/3\x00') r1 = syz_open_dev$swradio(&(0x7f0000000100)='/dev/swradio#\x00', 0x0, 0x2) mount$9p_fd(0x0, &(0x7f0000000300)='.\x00', &(0x7f0000000080)='9p\x00', 0xffff0000, &(0x7f0000000740)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}}) [ 249.609723][T16896] loop0: detected capacity change from 512 to 0 [ 249.618433][T16896] FAULT_INJECTION: forcing a failure. [ 249.618433][T16896] name failslab, interval 1, probability 0, space 0, times 0 [ 249.636229][T16896] CPU: 1 PID: 16896 Comm: syz-executor.0 Not tainted 5.11.0-syzkaller #0 [ 249.644681][T16896] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 249.654775][T16896] Call Trace: [ 249.658053][T16896] dump_stack+0x116/0x15d [ 249.662492][T16896] should_fail+0x23c/0x250 [ 249.666913][T16896] ? getname_kernel+0x37/0x1d0 [ 249.671679][T16896] __should_failslab+0x81/0x90 [ 249.676456][T16896] should_failslab+0x5/0x20 [ 249.680958][T16896] kmem_cache_alloc+0x36/0x2e0 [ 249.685723][T16896] getname_kernel+0x37/0x1d0 [ 249.690432][T16896] kern_path+0x19/0x40 [ 249.694497][T16896] tomoyo_mount_permission+0x5e9/0x700 [ 249.700049][T16896] ? terminate_walk+0x24e/0x270 [ 249.704910][T16896] tomoyo_sb_mount+0x31/0x40 [ 249.709513][T16896] security_sb_mount+0x5c/0xb0 [ 249.714280][T16896] path_mount+0xb1/0x1ca0 [ 249.718609][T16896] __se_sys_mount+0x23d/0x2e0 [ 249.723365][T16896] __x64_sys_mount+0x63/0x70 [ 249.727949][T16896] do_syscall_64+0x39/0x80 [ 249.732413][T16896] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 249.738328][T16896] RIP: 0033:0x4672ba 21:38:29 executing program 5: set_mempolicy(0x8003, &(0x7f0000000300)=0x75f, 0x9) open(&(0x7f0000000300)='.\x00', 0x0, 0x0) r0 = syz_open_procfs(0x0, &(0x7f00000000c0)='fd/3\x00') r1 = syz_open_dev$swradio(&(0x7f0000000100)='/dev/swradio#\x00', 0x0, 0x2) mount$9p_fd(0x0, &(0x7f0000000300)='.\x00', &(0x7f0000000080)='9p\x00', 0x700000000000000, &(0x7f0000000740)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}}) 21:38:29 executing program 3: set_mempolicy(0x8003, &(0x7f0000000300)=0x75f, 0x9) open(&(0x7f0000000300)='.\x00', 0x0, 0x0) r0 = syz_open_procfs(0x0, &(0x7f00000000c0)='fd/3\x00') r1 = syz_open_dev$swradio(&(0x7f0000000100)='/dev/swradio#\x00', 0x0, 0x2) mount$9p_fd(0x0, &(0x7f0000000300)='.\x00', &(0x7f0000000080)='9p\x00', 0xfffffe00, &(0x7f0000000740)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}}) 21:38:29 executing program 2: r0 = open(&(0x7f0000000300)='.\x00', 0x0, 0x0) ioctl$VHOST_SET_FEATURES(r0, 0x4008af00, &(0x7f0000000140)=0x1d) symlinkat(&(0x7f0000000040)='\x13\x13w\xc5\xfc5\xd4\x14T\xd5\xd4\x1d)\xad\x1a`)Y\x81F\xe6\xbe\x16nA\xad\r\xbd@T\x03<\x9f3\xbb\xda\x82$\xa2\xf3\xd7r\xe7cnH\xb3<\xbfp\x83r\xe8\xf1\xb9\x93>\xc5\x12wC\xbe\"\x06 \x9e\xf0-\xf9\xcb\xf2\xf6\xe8\x80\xd38/\x00', r0, &(0x7f00000000c0)='./file0\x00') r1 = syz_mount_image$tmpfs(&(0x7f0000000180)='tmpfs\x00', &(0x7f0000000280)='\x13\x13w\xc5\xfc5\xd4\x14T\xd5\xd4\x1d)\xad\x1a`)Y\x81F\xe6\xbe\x16nA\xad\r\xbd@T\x03<\x9f3\xbb\xda\x82$\xa2\xf3\xd7r\xe7cnH\xb3<\xbfp\x83r\xe8\xf1\xb9\x93>\xc5\x12wC\xbe\"\x06 \x9e\xf0-\xf9\xcb\xf2\xf6\xe8\x80\xd38/\x00', 0x3f, 0x3, &(0x7f0000000540)=[{&(0x7f00000001c0)="7ce2b4ef9bde386a2f23", 0xa, 0x738}, {&(0x7f0000000440)="850c5ada0d054e0f7c8767b62227809bcd6c31b2da73f8b4217d280dfdfb4b565236f29d4cb1a0b541fd07cc043c2d8831f13b07e05b21bb07b182", 0x3b, 0xa725}, {&(0x7f0000000480)="d052291e5fbf7ee901ae9b689062d8f07a6f9cb0c96eaca9be3709d2588e5d2d847cdace75ec06dd1d89a2ada98f99b763bae6fda9e02d500a2b01161badbbbbaac618ba1ff05c3836affd3eb2592ea1a4f7769739f03ffa8519e1a74fb80bf7463de73d91fabe0e99e33ed70c18742e34271879a32ad76120539cf20e3a4acc3f0a506a7be2b30484fe4303a988a7", 0x8f, 0x9}], 0x1000, &(0x7f00000005c0)={[{@nr_inodes={'nr_inodes', 0x3d, [0x30, 0x0, 0x6, 0x39]}}, {@nr_blocks={'nr_blocks', 0x3d, [0x32, 0x35, 0x37]}}, {@huge_advise='huge=advise'}, {@nr_blocks={'nr_blocks', 0x3d, [0x70, 0x74, 0x6d, 0x70]}}, {@uid={'uid', 0x3d, 0xffffffffffffffff}}, {@gid={'gid', 0x3d, 0xffffffffffffffff}}, {@huge_advise='huge=advise'}], [{@fowner_gt={'fowner>', 0xffffffffffffffff}}, {@fsname={'fsname', 0x3d, '%\'+-'}}]}) renameat2(r1, &(0x7f0000000680)='\x13\x13w\xc5\xfc5\xd4\x14T\xd5\xd4\x1d)\xad\x1a`)Y\x81F\xe6\xbe\x16nA\xad\r\xbd@T\x03<\x9f3\xbb\xda\x82$\xa2\xf3\xd7r\xe7cnH\xb3<\xbfp\x83r\xe8\xf1\xb9\x93>\xc5\x12wC\xbe\"\x06 \x9e\xf0-\xf9\xcb\xf2\xf6\xe8\x80\xd38//file0\x00', r0, &(0x7f0000000700)='\x13\x13w\xc5\xfc5\xd4\x14T\xd5\xd4\x1d)\xad\x1a`)Y\x81F\xe6\xbe\x16nA\xad\r\xbd@T\x03<\x9f3\xbb\xda\x82$\xa2\xf3\xd7r\xe7cnH\xb3<\xbfp\x83r\xe8\xf1\xb9\x93>\xc5\x12wC\xbe\"\x06 \x9e\xf0-\xf9\xcb\xf2\xf6\xe8\x80\xd38/\x00', 0x2) mkdirat(r0, &(0x7f0000000200)='\x13\x13w\xc5\xfc5\xd4\x14T\xd5\xd4\x1d)\xad\x1a`)Y\x81F\xe6\xbe\x16nA\xad\r\xbd@T\x03<\x9f3\xbb\xda\x82$\xa2\xf3\xd7r\xe7cnH\xb3<\xbfp\x83r\xe8\xf1\xb9\x93>\xc5\x12wC\xbe\"\x06 \x9e\xf0-\xf9\xcb\xf2\xf6\xe8\x80\xd38/\x00', 0x0) symlinkat(&(0x7f0000000340)='./file0/file0\x00', r0, &(0x7f0000000380)='\x13\x13w\xc5\xfc5\xd4\x14T\xd5\xd4\x1d)\xad\x1a`)Y\x81F\xe6\xbe\x16nA\xad\r\xbd@T\x03<\x9f3\xbb\xda\x82$\xa2\xf3\xd7r\xe7cnH\xb3<\xbfp\x83r\xe8\xf1\xb9\x93>\xc5\x12wC\xbe\"\x06 \x9e\xf0-\xf9\xcb\xf2\xf6\xe8\x80\xd38//file0\x00') r2 = open(&(0x7f0000000100)='.\x00', 0x0, 0x0) renameat2(r2, &(0x7f0000000400)='./file0/file0\x00', r2, &(0x7f0000000000)='./file0\x00', 0x0) [ 249.742214][T16896] Code: 48 c7 c2 bc ff ff ff f7 d8 64 89 02 b8 ff ff ff ff eb d2 e8 b8 04 00 00 0f 1f 84 00 00 00 00 00 49 89 ca b8 a5 00 00 00 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 249.761913][T16896] RSP: 002b:00007f8175ef9fa8 EFLAGS: 00000206 ORIG_RAX: 00000000000000a5 [ 249.770323][T16896] RAX: ffffffffffffffda RBX: 0000000020000200 RCX: 00000000004672ba [ 249.778294][T16896] RDX: 0000000020000000 RSI: 0000000020000100 RDI: 00007f8175efa000 [ 249.786263][T16896] RBP: 00007f8175efa040 R08: 00007f8175efa040 R09: 0000000020000000 [ 249.794234][T16896] R10: 0000000000000000 R11: 0000000000000206 R12: 0000000020000000 [ 249.802207][T16896] R13: 0000000020000100 R14: 00007f8175efa000 R15: 0000000020000040 [ 249.862462][T16917] loop2: detected capacity change from 167 to 0 21:38:29 executing program 0 (fault-call:0 fault-nth:63): syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x40000, 0x3, &(0x7f0000000200)=[{&(0x7f0000010000)="20000000000100000c000000d90000000f0000000100000000000000000000000020000000200000200000002cc4645f2cc4645f0100ffff53ef0100010000002cc4645f000000000000000001000000000000000b0000008000000038000000c20200006b0400000000000000000000000000000000000073797a6b616c6c6572000000000000002f746d702f73797a2d696d61676567656e3338363633343038350000000000000000000000000000000000000000000000000000000000000000000000000000000000000000010000000000000000000000000000000000000000000000000000000000d9ca5cac99fd4329af4dde786c1a5d13010040000c000000000000002cc4645f", 0x10c, 0x400}, {&(0x7f0000010200)="0500000000000000000000000000000000000000040100002b", 0x19, 0x560}, {&(0x7f0000010300)="000000000000000000000000000000000000000000000000000000001481910a040000001400000024", 0x29, 0x7e0}], 0x0, &(0x7f0000000040)={[{@usrjquota='usrjquota='}, {@data_err_abort='data_err=abort'}]}) 21:38:29 executing program 5: set_mempolicy(0x8003, &(0x7f0000000300)=0x75f, 0x9) open(&(0x7f0000000300)='.\x00', 0x0, 0x0) r0 = syz_open_procfs(0x0, &(0x7f00000000c0)='fd/3\x00') r1 = syz_open_dev$swradio(&(0x7f0000000100)='/dev/swradio#\x00', 0x0, 0x2) mount$9p_fd(0x0, &(0x7f0000000300)='.\x00', &(0x7f0000000080)='9p\x00', 0x800000000000000, &(0x7f0000000740)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}}) 21:38:29 executing program 4: set_mempolicy(0x8003, &(0x7f0000000300)=0x75f, 0x9) open(&(0x7f0000000300)='.\x00', 0x0, 0x0) r0 = syz_open_procfs(0x0, &(0x7f00000000c0)='fd/3\x00') r1 = syz_open_dev$swradio(&(0x7f0000000100)='/dev/swradio#\x00', 0x0, 0x2) mount$9p_fd(0x0, &(0x7f0000000300)='.\x00', &(0x7f0000000080)='9p\x00', 0xd000000, &(0x7f0000000740)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}}) 21:38:29 executing program 3: set_mempolicy(0x8003, &(0x7f0000000300)=0x75f, 0x9) open(&(0x7f0000000300)='.\x00', 0x0, 0x0) r0 = syz_open_procfs(0x0, &(0x7f00000000c0)='fd/3\x00') r1 = syz_open_dev$swradio(&(0x7f0000000100)='/dev/swradio#\x00', 0x0, 0x2) mount$9p_fd(0x0, &(0x7f0000000300)='.\x00', &(0x7f0000000080)='9p\x00', 0xffffff8c, &(0x7f0000000740)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}}) 21:38:29 executing program 1: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) r3 = syz_open_procfs(0x0, &(0x7f00000000c0)='fd/3\x00') mount$9p_fd(0x0, &(0x7f0000000300)='.\x00', &(0x7f0000000080)='9p\x00', 0x40000, &(0x7f00000003c0)={'trans=fd,', {'rfdno', 0x3d, r3}, 0x2c, {'wfdno', 0x3d, r2}}) [ 249.969495][T16917] loop2: detected capacity change from 167 to 0 [ 249.980956][T10606] warn_unsupported: 60 callbacks suppressed [ 249.980967][T10606] kernel read not supported for file root/syzkaller-testdir583426511/syzkaller.VVQl22/269 (pid: 10606 comm: kworker/1:6) 21:38:29 executing program 3: set_mempolicy(0x8003, &(0x7f0000000300)=0x75f, 0x9) open(&(0x7f0000000300)='.\x00', 0x0, 0x0) r0 = syz_open_procfs(0x0, &(0x7f00000000c0)='fd/3\x00') r1 = syz_open_dev$swradio(&(0x7f0000000100)='/dev/swradio#\x00', 0x0, 0x2) mount$9p_fd(0x0, &(0x7f0000000300)='.\x00', &(0x7f0000000080)='9p\x00', 0xfffffff6, &(0x7f0000000740)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}}) 21:38:30 executing program 2: set_mempolicy(0x8003, &(0x7f0000000300)=0x75f, 0x9) r0 = open(&(0x7f0000000300)='.\x00', 0x0, 0x0) creat(&(0x7f0000000140)='./file0\x00', 0x40) symlinkat(&(0x7f0000000040)='\x13\x13w\xc5\xfc5\xd4\x14T\xd5\xd4\x1d)\xad\x1a`)Y\x81F\xe6\xbe\x16nA\xad\r\xbd@T\x03<\x9f3\xbb\xda\x82$\xa2\xf3\xd7r\xe7cnH\xb3<\xbfp\x83r\xe8\xf1\xb9\x93>\xc5\x12wC\xbe\"\x06 \x9e\xf0-\xf9\xcb\xf2\xf6\xe8\x80\xd38/\x00', r0, &(0x7f00000000c0)='./file0\x00') mkdirat(r0, &(0x7f0000000200)='\x13\x13w\xc5\xfc5\xd4\x14T\xd5\xd4\x1d)\xad\x1a`)Y\x81F\xe6\xbe\x16nA\xad\r\xbd@T\x03<\x9f3\xbb\xda\x82$\xa2\xf3\xd7r\xe7cnH\xb3<\xbfp\x83r\xe8\xf1\xb9\x93>\xc5\x12wC\xbe\"\x06 \x9e\xf0-\xf9\xcb\xf2\xf6\xe8\x80\xd38/\x00', 0x0) symlinkat(&(0x7f0000000340)='./file0/file0\x00', r0, &(0x7f0000000380)='\x13\x13w\xc5\xfc5\xd4\x14T\xd5\xd4\x1d)\xad\x1a`)Y\x81F\xe6\xbe\x16nA\xad\r\xbd@T\x03<\x9f3\xbb\xda\x82$\xa2\xf3\xd7r\xe7cnH\xb3<\xbfp\x83r\xe8\xf1\xb9\x93>\xc5\x12wC\xbe\"\x06 \x9e\xf0-\xf9\xcb\xf2\xf6\xe8\x80\xd38//file0\x00') r1 = open(&(0x7f0000000100)='.\x00', 0x0, 0x0) renameat2(r1, &(0x7f0000000400)='./file0/file0\x00', r1, &(0x7f0000000000)='./file0\x00', 0x0) [ 250.030646][T16951] loop0: detected capacity change from 512 to 0 [ 250.048887][T16951] FAULT_INJECTION: forcing a failure. [ 250.048887][T16951] name failslab, interval 1, probability 0, space 0, times 0 [ 250.067656][T16951] CPU: 1 PID: 16951 Comm: syz-executor.0 Not tainted 5.11.0-syzkaller #0 [ 250.076199][T16951] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 250.086272][T16951] Call Trace: [ 250.089550][T16951] dump_stack+0x116/0x15d [ 250.093969][T16951] should_fail+0x23c/0x250 [ 250.098386][T16951] __should_failslab+0x81/0x90 [ 250.103228][T16951] ? tomoyo_realpath_from_path+0x98/0x3b0 [ 250.105471][ T9777] kernel read not supported for file root/syzkaller-testdir583426511/syzkaller.VVQl22/269 (pid: 9777 comm: kworker/0:5) [ 250.108965][T16951] should_failslab+0x5/0x20 [ 250.108986][T16951] __kmalloc+0x59/0x360 [ 250.130261][T16951] ? getname_kernel+0x37/0x1d0 [ 250.135037][T16951] tomoyo_realpath_from_path+0x98/0x3b0 [ 250.140659][T16951] tomoyo_mount_permission+0x639/0x700 [ 250.146219][T16951] ? terminate_walk+0x24e/0x270 [ 250.151086][T16951] tomoyo_sb_mount+0x31/0x40 [ 250.155773][T16951] security_sb_mount+0x5c/0xb0 [ 250.160543][T16951] path_mount+0xb1/0x1ca0 [ 250.164866][T16951] __se_sys_mount+0x23d/0x2e0 [ 250.169572][T16951] __x64_sys_mount+0x63/0x70 [ 250.174203][T16951] do_syscall_64+0x39/0x80 [ 250.178622][T16951] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 250.186312][T16951] RIP: 0033:0x4672ba [ 250.190196][T16951] Code: 48 c7 c2 bc ff ff ff f7 d8 64 89 02 b8 ff ff ff ff eb d2 e8 b8 04 00 00 0f 1f 84 00 00 00 00 00 49 89 ca b8 a5 00 00 00 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 250.209800][T16951] RSP: 002b:00007f8175ef9fa8 EFLAGS: 00000206 ORIG_RAX: 00000000000000a5 [ 250.218210][T16951] RAX: ffffffffffffffda RBX: 0000000020000200 RCX: 00000000004672ba 21:38:30 executing program 5: set_mempolicy(0x8003, &(0x7f0000000300)=0x75f, 0x9) open(&(0x7f0000000300)='.\x00', 0x0, 0x0) r0 = syz_open_procfs(0x0, &(0x7f00000000c0)='fd/3\x00') r1 = syz_open_dev$swradio(&(0x7f0000000100)='/dev/swradio#\x00', 0x0, 0x2) mount$9p_fd(0x0, &(0x7f0000000300)='.\x00', &(0x7f0000000080)='9p\x00', 0x900000000000000, &(0x7f0000000740)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}}) 21:38:30 executing program 1: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) r3 = syz_open_procfs(0x0, &(0x7f00000000c0)='fd/3\x00') mount$9p_fd(0x0, &(0x7f0000000300)='.\x00', &(0x7f0000000080)='9p\x00', 0x400000, &(0x7f00000003c0)={'trans=fd,', {'rfdno', 0x3d, r3}, 0x2c, {'wfdno', 0x3d, r2}}) 21:38:30 executing program 4: set_mempolicy(0x8003, &(0x7f0000000300)=0x75f, 0x9) open(&(0x7f0000000300)='.\x00', 0x0, 0x0) r0 = syz_open_procfs(0x0, &(0x7f00000000c0)='fd/3\x00') r1 = syz_open_dev$swradio(&(0x7f0000000100)='/dev/swradio#\x00', 0x0, 0x2) mount$9p_fd(0x0, &(0x7f0000000300)='.\x00', &(0x7f0000000080)='9p\x00', 0xe000000, &(0x7f0000000740)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}}) 21:38:30 executing program 5: set_mempolicy(0x8003, &(0x7f0000000300)=0x75f, 0x9) open(&(0x7f0000000300)='.\x00', 0x0, 0x0) r0 = syz_open_procfs(0x0, &(0x7f00000000c0)='fd/3\x00') r1 = syz_open_dev$swradio(&(0x7f0000000100)='/dev/swradio#\x00', 0x0, 0x2) mount$9p_fd(0x0, &(0x7f0000000300)='.\x00', &(0x7f0000000080)='9p\x00', 0xa00000000000000, &(0x7f0000000740)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}}) 21:38:30 executing program 3: set_mempolicy(0x8003, &(0x7f0000000300)=0x75f, 0x9) open(&(0x7f0000000300)='.\x00', 0x0, 0x0) r0 = syz_open_procfs(0x0, &(0x7f00000000c0)='fd/3\x00') r1 = syz_open_dev$swradio(&(0x7f0000000100)='/dev/swradio#\x00', 0x0, 0x2) mount$9p_fd(0x0, &(0x7f0000000300)='.\x00', &(0x7f0000000080)='9p\x00', 0xfffffffe, &(0x7f0000000740)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}}) [ 250.226185][T16951] RDX: 0000000020000000 RSI: 0000000020000100 RDI: 00007f8175efa000 [ 250.234191][T16951] RBP: 00007f8175efa040 R08: 00007f8175efa040 R09: 0000000020000000 [ 250.242678][T16951] R10: 0000000000000000 R11: 0000000000000206 R12: 0000000020000000 [ 250.250645][T16951] R13: 0000000020000100 R14: 00007f8175efa000 R15: 0000000020000040 [ 250.302544][T10606] kernel read not supported for file root/syzkaller-testdir583426511/syzkaller.VVQl22/270 (pid: 10606 comm: kworker/1:6) [ 250.368763][T10606] kernel read not supported for file root/syzkaller-testdir583426511/syzkaller.VVQl22/270 (pid: 10606 comm: kworker/1:6) [ 250.407020][T16951] ERROR: Out of memory at tomoyo_realpath_from_path. 21:38:30 executing program 0 (fault-call:0 fault-nth:64): syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x40000, 0x3, &(0x7f0000000200)=[{&(0x7f0000010000)="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", 0x10c, 0x400}, {&(0x7f0000010200)="0500000000000000000000000000000000000000040100002b", 0x19, 0x560}, {&(0x7f0000010300)="000000000000000000000000000000000000000000000000000000001481910a040000001400000024", 0x29, 0x7e0}], 0x0, &(0x7f0000000040)={[{@usrjquota='usrjquota='}, {@data_err_abort='data_err=abort'}]}) 21:38:30 executing program 2: set_mempolicy(0x8003, &(0x7f0000000300)=0x75f, 0x9) r0 = open(&(0x7f0000000300)='.\x00', 0x0, 0x0) symlinkat(&(0x7f0000000040)='\x13\x13w\xc5\xfc5\xd4\x14T\xd5\xd4\x1d)\xad\x1a`)Y\x81F\xe6\xbe\x16nA\xad\r\xbd@T\x03<\x9f3\xbb\xda\x82$\xa2\xf3\xd7r\xe7cnH\xb3<\xbfp\x83r\xe8\xf1\xb9\x93>\xc5\x12wC\xbe\"\x06 \x9e\xf0-\xf9\xcb\xf2\xf6\xe8\x80\xd38/\x00', r0, &(0x7f00000000c0)='./file0\x00') r1 = syz_open_procfs(0x0, &(0x7f00000000c0)='fd/3\x00') r2 = syz_open_dev$swradio(&(0x7f0000000100)='/dev/swradio#\x00', 0x0, 0x2) mount$9p_fd(0x0, &(0x7f0000000300)='.\x00', &(0x7f0000000080)='9p\x00', 0x0, &(0x7f0000000740)={'trans=fd,', {'rfdno', 0x3d, r1}, 0x2c, {'wfdno', 0x3d, r2}}) r3 = syz_open_procfs(0x0, &(0x7f00000000c0)='fd/3\x00') r4 = syz_open_dev$swradio(&(0x7f0000000100)='/dev/swradio#\x00', 0x0, 0x2) mount$9p_fd(0x0, &(0x7f0000000300)='.\x00', &(0x7f0000000080)='9p\x00', 0x0, &(0x7f0000000740)={'trans=fd,', {'rfdno', 0x3d, r3}, 0x2c, {'wfdno', 0x3d, r4}}) renameat2(r1, &(0x7f0000000180)='./file0/file0\x00', r3, &(0x7f00000001c0)='./file1\x00', 0x4) mkdirat(r0, &(0x7f0000000200)='\x13\x13w\xc5\xfc5\xd4\x14T\xd5\xd4\x1d)\xad\x1a`)Y\x81F\xe6\xbe\x16nA\xad\r\xbd@T\x03<\x9f3\xbb\xda\x82$\xa2\xf3\xd7r\xe7cnH\xb3<\xbfp\x83r\xe8\xf1\xb9\x93>\xc5\x12wC\xbe\"\x06 \x9e\xf0-\xf9\xcb\xf2\xf6\xe8\x80\xd38/\x00', 0x0) symlinkat(&(0x7f0000000340)='./file0/file0\x00', r0, &(0x7f0000000380)='\x13\x13w\xc5\xfc5\xd4\x14T\xd5\xd4\x1d)\xad\x1a`)Y\x81F\xe6\xbe\x16nA\xad\r\xbd@T\x03<\x9f3\xbb\xda\x82$\xa2\xf3\xd7r\xe7cnH\xb3<\xbfp\x83r\xe8\xf1\xb9\x93>\xc5\x12wC\xbe\"\x06 \x9e\xf0-\xf9\xcb\xf2\xf6\xe8\x80\xd38//file0\x00') r5 = open(&(0x7f0000000100)='.\x00', 0x0, 0x0) renameat2(r5, &(0x7f0000000140)='./file0/file0\x00', r5, &(0x7f0000000000)='./file0\x00', 0x0) 21:38:30 executing program 4: set_mempolicy(0x8003, &(0x7f0000000300)=0x75f, 0x9) open(&(0x7f0000000300)='.\x00', 0x0, 0x0) r0 = syz_open_procfs(0x0, &(0x7f00000000c0)='fd/3\x00') r1 = syz_open_dev$swradio(&(0x7f0000000100)='/dev/swradio#\x00', 0x0, 0x2) mount$9p_fd(0x0, &(0x7f0000000300)='.\x00', &(0x7f0000000080)='9p\x00', 0x10000000, &(0x7f0000000740)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}}) 21:38:30 executing program 5: set_mempolicy(0x8003, &(0x7f0000000300)=0x75f, 0x9) open(&(0x7f0000000300)='.\x00', 0x0, 0x0) r0 = syz_open_procfs(0x0, &(0x7f00000000c0)='fd/3\x00') r1 = syz_open_dev$swradio(&(0x7f0000000100)='/dev/swradio#\x00', 0x0, 0x2) mount$9p_fd(0x0, &(0x7f0000000300)='.\x00', &(0x7f0000000080)='9p\x00', 0xb00000000000000, &(0x7f0000000740)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}}) 21:38:30 executing program 1: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) r3 = syz_open_procfs(0x0, &(0x7f00000000c0)='fd/3\x00') mount$9p_fd(0x0, &(0x7f0000000300)='.\x00', &(0x7f0000000080)='9p\x00', 0xfeffff, &(0x7f00000003c0)={'trans=fd,', {'rfdno', 0x3d, r3}, 0x2c, {'wfdno', 0x3d, r2}}) 21:38:30 executing program 3: set_mempolicy(0x8003, &(0x7f0000000300)=0x75f, 0x9) open(&(0x7f0000000300)='.\x00', 0x0, 0x0) r0 = syz_open_procfs(0x0, &(0x7f00000000c0)='fd/3\x00') r1 = syz_open_dev$swradio(&(0x7f0000000100)='/dev/swradio#\x00', 0x0, 0x2) mount$9p_fd(0x0, &(0x7f0000000300)='.\x00', &(0x7f0000000080)='9p\x00', 0x8000000000, &(0x7f0000000740)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}}) [ 250.554328][T17002] loop0: detected capacity change from 512 to 0 [ 250.565857][T17002] FAULT_INJECTION: forcing a failure. [ 250.565857][T17002] name failslab, interval 1, probability 0, space 0, times 0 [ 250.568750][T10606] kernel read not supported for file root/syzkaller-testdir583426511/syzkaller.VVQl22/271 (pid: 10606 comm: kworker/1:6) [ 250.604394][T17002] CPU: 1 PID: 17002 Comm: syz-executor.0 Not tainted 5.11.0-syzkaller #0 [ 250.612844][T17002] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 250.624448][T17002] Call Trace: [ 250.627765][T17002] dump_stack+0x116/0x15d [ 250.632103][T17002] should_fail+0x23c/0x250 [ 250.637247][T17002] __should_failslab+0x81/0x90 [ 250.642003][T17002] ? tomoyo_encode2+0x1d3/0x350 [ 250.646850][T17002] should_failslab+0x5/0x20 [ 250.651345][T17002] __kmalloc+0x59/0x360 [ 250.655596][T17002] tomoyo_encode2+0x1d3/0x350 [ 250.660275][T17002] tomoyo_realpath_from_path+0x35e/0x3b0 [ 250.665912][T17002] tomoyo_mount_permission+0x639/0x700 [ 250.671450][T17002] ? terminate_walk+0x24e/0x270 [ 250.676348][T17002] tomoyo_sb_mount+0x31/0x40 [ 250.680946][T17002] security_sb_mount+0x5c/0xb0 [ 250.685768][T17002] path_mount+0xb1/0x1ca0 [ 250.690103][T17002] __se_sys_mount+0x23d/0x2e0 [ 250.694781][T17002] __x64_sys_mount+0x63/0x70 [ 250.699371][T17002] do_syscall_64+0x39/0x80 [ 250.703796][T17002] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 250.709758][T17002] RIP: 0033:0x4672ba [ 250.713644][T17002] Code: 48 c7 c2 bc ff ff ff f7 d8 64 89 02 b8 ff ff ff ff eb d2 e8 b8 04 00 00 0f 1f 84 00 00 00 00 00 49 89 ca b8 a5 00 00 00 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 250.733244][T17002] RSP: 002b:00007f8175ef9fa8 EFLAGS: 00000206 ORIG_RAX: 00000000000000a5 [ 250.741666][T17002] RAX: ffffffffffffffda RBX: 0000000020000200 RCX: 00000000004672ba 21:38:30 executing program 3: set_mempolicy(0x8003, &(0x7f0000000300)=0x75f, 0x9) open(&(0x7f0000000300)='.\x00', 0x0, 0x0) r0 = syz_open_procfs(0x0, &(0x7f00000000c0)='fd/3\x00') r1 = syz_open_dev$swradio(&(0x7f0000000100)='/dev/swradio#\x00', 0x0, 0x2) mount$9p_fd(0x0, &(0x7f0000000300)='.\x00', &(0x7f0000000080)='9p\x00', 0xedc000000000, &(0x7f0000000740)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}}) [ 250.749634][T17002] RDX: 0000000020000000 RSI: 0000000020000100 RDI: 00007f8175efa000 [ 250.757600][T17002] RBP: 00007f8175efa040 R08: 00007f8175efa040 R09: 0000000020000000 [ 250.765579][T17002] R10: 0000000000000000 R11: 0000000000000206 R12: 0000000020000000 [ 250.773541][T17002] R13: 0000000020000100 R14: 00007f8175efa000 R15: 0000000020000040 21:38:30 executing program 5: set_mempolicy(0x8003, &(0x7f0000000300)=0x75f, 0x9) open(&(0x7f0000000300)='.\x00', 0x0, 0x0) r0 = syz_open_procfs(0x0, &(0x7f00000000c0)='fd/3\x00') r1 = syz_open_dev$swradio(&(0x7f0000000100)='/dev/swradio#\x00', 0x0, 0x2) mount$9p_fd(0x0, &(0x7f0000000300)='.\x00', &(0x7f0000000080)='9p\x00', 0xc00000000000000, &(0x7f0000000740)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}}) [ 250.820677][T10606] kernel read not supported for file root/syzkaller-testdir330001169/syzkaller.9ERo5L/286 (pid: 10606 comm: kworker/1:6) [ 250.857696][T10606] kernel read not supported for file root/syzkaller-testdir330001169/syzkaller.9ERo5L/286 (pid: 10606 comm: kworker/1:6) 21:38:30 executing program 5: set_mempolicy(0x8003, &(0x7f0000000300)=0x75f, 0x9) open(&(0x7f0000000300)='.\x00', 0x0, 0x0) r0 = syz_open_procfs(0x0, &(0x7f00000000c0)='fd/3\x00') r1 = syz_open_dev$swradio(&(0x7f0000000100)='/dev/swradio#\x00', 0x0, 0x2) mount$9p_fd(0x0, &(0x7f0000000300)='.\x00', &(0x7f0000000080)='9p\x00', 0xd00000000000000, &(0x7f0000000740)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}}) 21:38:30 executing program 1: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) r3 = syz_open_procfs(0x0, &(0x7f00000000c0)='fd/3\x00') mount$9p_fd(0x0, &(0x7f0000000300)='.\x00', &(0x7f0000000080)='9p\x00', 0x1000000, &(0x7f00000003c0)={'trans=fd,', {'rfdno', 0x3d, r3}, 0x2c, {'wfdno', 0x3d, r2}}) 21:38:30 executing program 3: set_mempolicy(0x8003, &(0x7f0000000300)=0x75f, 0x9) open(&(0x7f0000000300)='.\x00', 0x0, 0x0) r0 = syz_open_procfs(0x0, &(0x7f00000000c0)='fd/3\x00') r1 = syz_open_dev$swradio(&(0x7f0000000100)='/dev/swradio#\x00', 0x0, 0x2) mount$9p_fd(0x0, &(0x7f0000000300)='.\x00', &(0x7f0000000080)='9p\x00', 0x1000000000000, &(0x7f0000000740)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}}) 21:38:30 executing program 5: set_mempolicy(0x8003, &(0x7f0000000300)=0x75f, 0x9) open(&(0x7f0000000300)='.\x00', 0x0, 0x0) r0 = syz_open_procfs(0x0, &(0x7f00000000c0)='fd/3\x00') r1 = syz_open_dev$swradio(&(0x7f0000000100)='/dev/swradio#\x00', 0x0, 0x2) mount$9p_fd(0x0, &(0x7f0000000300)='.\x00', &(0x7f0000000080)='9p\x00', 0xe00000000000000, &(0x7f0000000740)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}}) 21:38:31 executing program 0 (fault-call:0 fault-nth:65): syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x40000, 0x3, &(0x7f0000000200)=[{&(0x7f0000010000)="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", 0x10c, 0x400}, {&(0x7f0000010200)="0500000000000000000000000000000000000000040100002b", 0x19, 0x560}, {&(0x7f0000010300)="000000000000000000000000000000000000000000000000000000001481910a040000001400000024", 0x29, 0x7e0}], 0x0, &(0x7f0000000040)={[{@usrjquota='usrjquota='}, {@data_err_abort='data_err=abort'}]}) 21:38:31 executing program 2: set_mempolicy(0x8003, &(0x7f0000000300)=0x75f, 0x9) r0 = open(&(0x7f0000000300)='.\x00', 0x0, 0x0) syz_mount_image$f2fs(&(0x7f0000000000)='f2fs\x00', &(0x7f0000000040)='./mnt\x00', 0x0, 0x2, &(0x7f0000000200)=[{&(0x7f0000010000)="1020f5f201000e0009000000030000000c000000090000000100000001000000000000000040000000000000180000001f0000000200000002000000020000000100000018000000000200000002000000060000000a0000000e000000100000030000000100000002", 0x69, 0x400}, {0x0, 0x0, 0xfffffffffffffffc}], 0x0, &(0x7f0000000140)=ANY=[@ANYBLOB='background_gc=s']) symlinkat(&(0x7f0000000040)='\x13\x13w\xc5\xfc5\xd4\x14T\xd5\xd4\x1d)\xad\x1a`)Y\x81F\xe6\xbe\x16nA\xad\r\xbd@T\x03<\x9f3\xbb\xda\x82$\xa2\xf3\xd7r\xe7cnH\xb3<\xbfp\x83r\xe8\xf1\xb9\x93>\xc5\x12wC\xbe\"\x06 \x9e\xf0-\xf9\xcb\xf2\xf6\xe8\x80\xd38/\x00', r0, &(0x7f00000000c0)='./file0\x00') mkdirat(r0, &(0x7f0000000200)='\x13\x13w\xc5\xfc5\xd4\x14T\xd5\xd4\x1d)\xad\x1a`)Y\x81F\xe6\xbe\x16nA\xad\r\xbd@T\x03<\x9f3\xbb\xda\x82$\xa2\xf3\xd7r\xe7cnH\xb3<\xbfp\x83r\xe8\xf1\xb9\x93>\xc5\x12wC\xbe\"\x06 \x9e\xf0-\xf9\xcb\xf2\xf6\xe8\x80\xd38/\x00', 0x0) symlinkat(&(0x7f0000000340)='./file0/file0\x00', r0, &(0x7f0000000380)='\x13\x13w\xc5\xfc5\xd4\x14T\xd5\xd4\x1d)\xad\x1a`)Y\x81F\xe6\xbe\x16nA\xad\r\xbd@T\x03<\x9f3\xbb\xda\x82$\xa2\xf3\xd7r\xe7cnH\xb3<\xbfp\x83r\xe8\xf1\xb9\x93>\xc5\x12wC\xbe\"\x06 \x9e\xf0-\xf9\xcb\xf2\xf6\xe8\x80\xd38//file0\x00') r1 = open(&(0x7f0000000140)='./file0/file0\x00', 0x214401, 0x0) renameat2(r1, &(0x7f0000000100)='./file0/file0\x00', r1, &(0x7f0000000000)='./file0\x00', 0x0) 21:38:31 executing program 4: set_mempolicy(0x8003, &(0x7f0000000300)=0x75f, 0x9) open(&(0x7f0000000300)='.\x00', 0x0, 0x0) r0 = syz_open_procfs(0x0, &(0x7f00000000c0)='fd/3\x00') r1 = syz_open_dev$swradio(&(0x7f0000000100)='/dev/swradio#\x00', 0x0, 0x2) mount$9p_fd(0x0, &(0x7f0000000300)='.\x00', &(0x7f0000000080)='9p\x00', 0x11000000, &(0x7f0000000740)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}}) 21:38:31 executing program 3: set_mempolicy(0x8003, &(0x7f0000000300)=0x75f, 0x9) open(&(0x7f0000000300)='.\x00', 0x0, 0x0) r0 = syz_open_procfs(0x0, &(0x7f00000000c0)='fd/3\x00') r1 = syz_open_dev$swradio(&(0x7f0000000100)='/dev/swradio#\x00', 0x0, 0x2) mount$9p_fd(0x0, &(0x7f0000000300)='.\x00', &(0x7f0000000080)='9p\x00', 0x40000000000000, &(0x7f0000000740)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}}) 21:38:31 executing program 1: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) r3 = syz_open_procfs(0x0, &(0x7f00000000c0)='fd/3\x00') mount$9p_fd(0x0, &(0x7f0000000300)='.\x00', &(0x7f0000000080)='9p\x00', 0x2000000, &(0x7f00000003c0)={'trans=fd,', {'rfdno', 0x3d, r3}, 0x2c, {'wfdno', 0x3d, r2}}) 21:38:31 executing program 5: set_mempolicy(0x8003, &(0x7f0000000300)=0x75f, 0x9) open(&(0x7f0000000300)='.\x00', 0x0, 0x0) r0 = syz_open_procfs(0x0, &(0x7f00000000c0)='fd/3\x00') r1 = syz_open_dev$swradio(&(0x7f0000000100)='/dev/swradio#\x00', 0x0, 0x2) mount$9p_fd(0x0, &(0x7f0000000300)='.\x00', &(0x7f0000000080)='9p\x00', 0xfffffffffffffff, &(0x7f0000000740)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}}) [ 251.045799][T17002] ERROR: Out of memory at tomoyo_realpath_from_path. [ 251.130394][T17064] loop2: detected capacity change from 16383 to 0 [ 251.157703][T10606] kernel read not supported for file root/syzkaller-testdir583426511/syzkaller.VVQl22/272 (pid: 10606 comm: kworker/1:6) [ 251.170501][T17068] loop0: detected capacity change from 512 to 0 21:38:31 executing program 5: set_mempolicy(0x8003, &(0x7f0000000300)=0x75f, 0x9) open(&(0x7f0000000300)='.\x00', 0x0, 0x0) r0 = syz_open_procfs(0x0, &(0x7f00000000c0)='fd/3\x00') r1 = syz_open_dev$swradio(&(0x7f0000000100)='/dev/swradio#\x00', 0x0, 0x2) mount$9p_fd(0x0, &(0x7f0000000300)='.\x00', &(0x7f0000000080)='9p\x00', 0x1000000000000000, &(0x7f0000000740)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}}) 21:38:31 executing program 3: set_mempolicy(0x8003, &(0x7f0000000300)=0x75f, 0x9) open(&(0x7f0000000300)='.\x00', 0x0, 0x0) r0 = syz_open_procfs(0x0, &(0x7f00000000c0)='fd/3\x00') r1 = syz_open_dev$swradio(&(0x7f0000000100)='/dev/swradio#\x00', 0x0, 0x2) mount$9p_fd(0x0, &(0x7f0000000300)='.\x00', &(0x7f0000000080)='9p\x00', 0xfeffff00000000, &(0x7f0000000740)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}}) [ 251.185550][T17064] F2FS-fs (loop2): Magic Mismatch, valid(0xf2f52010) - read(0x0) [ 251.206362][T17068] FAULT_INJECTION: forcing a failure. [ 251.206362][T17068] name failslab, interval 1, probability 0, space 0, times 0 [ 251.225548][T17064] F2FS-fs (loop2): Can't find valid F2FS filesystem in 2th superblock 21:38:31 executing program 1: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) r3 = syz_open_procfs(0x0, &(0x7f00000000c0)='fd/3\x00') mount$9p_fd(0x0, &(0x7f0000000300)='.\x00', &(0x7f0000000080)='9p\x00', 0x3000000, &(0x7f00000003c0)={'trans=fd,', {'rfdno', 0x3d, r3}, 0x2c, {'wfdno', 0x3d, r2}}) [ 251.234040][T17068] CPU: 0 PID: 17068 Comm: syz-executor.0 Not tainted 5.11.0-syzkaller #0 [ 251.242524][T17068] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 251.252654][T17068] Call Trace: [ 251.255927][T17068] dump_stack+0x116/0x15d [ 251.260260][T17068] should_fail+0x23c/0x250 [ 251.264683][T17068] __should_failslab+0x81/0x90 [ 251.269442][T17068] ? legacy_init_fs_context+0x2d/0x70 [ 251.274812][T17068] should_failslab+0x5/0x20 [ 251.279308][T17068] kmem_cache_alloc_trace+0x39/0x320 [ 251.284694][T17068] ? kmem_cache_alloc_trace+0x1a1/0x320 [ 251.290726][T17068] ? alloc_fs_context+0x46/0x500 [ 251.296545][T17068] legacy_init_fs_context+0x2d/0x70 [ 251.302726][T17068] alloc_fs_context+0x419/0x500 [ 251.307614][T17068] fs_context_for_mount+0x1d/0x20 [ 251.312634][T17068] path_mount+0xdaf/0x1ca0 [ 251.317043][T17068] __se_sys_mount+0x23d/0x2e0 [ 251.321735][T17068] __x64_sys_mount+0x63/0x70 [ 251.326317][T17068] do_syscall_64+0x39/0x80 [ 251.330749][T17068] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 251.336634][T17068] RIP: 0033:0x4672ba [ 251.341742][T17068] Code: 48 c7 c2 bc ff ff ff f7 d8 64 89 02 b8 ff ff ff ff eb d2 e8 b8 04 00 00 0f 1f 84 00 00 00 00 00 49 89 ca b8 a5 00 00 00 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 251.361384][T17068] RSP: 002b:00007f8175ef9fa8 EFLAGS: 00000206 ORIG_RAX: 00000000000000a5 [ 251.369787][T17068] RAX: ffffffffffffffda RBX: 0000000020000200 RCX: 00000000004672ba [ 251.378611][T17068] RDX: 0000000020000000 RSI: 0000000020000100 RDI: 00007f8175efa000 21:38:31 executing program 5: set_mempolicy(0x8003, &(0x7f0000000300)=0x75f, 0x9) open(&(0x7f0000000300)='.\x00', 0x0, 0x0) r0 = syz_open_procfs(0x0, &(0x7f00000000c0)='fd/3\x00') r1 = syz_open_dev$swradio(&(0x7f0000000100)='/dev/swradio#\x00', 0x0, 0x2) mount$9p_fd(0x0, &(0x7f0000000300)='.\x00', &(0x7f0000000080)='9p\x00', 0x1100000000000000, &(0x7f0000000740)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}}) 21:38:31 executing program 3: set_mempolicy(0x8003, &(0x7f0000000300)=0x75f, 0x9) open(&(0x7f0000000300)='.\x00', 0x0, 0x0) r0 = syz_open_procfs(0x0, &(0x7f00000000c0)='fd/3\x00') r1 = syz_open_dev$swradio(&(0x7f0000000100)='/dev/swradio#\x00', 0x0, 0x2) mount$9p_fd(0x0, &(0x7f0000000300)='.\x00', &(0x7f0000000080)='9p\x00', 0x100000000000000, &(0x7f0000000740)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}}) [ 251.387518][T17068] RBP: 00007f8175efa040 R08: 00007f8175efa040 R09: 0000000020000000 [ 251.395582][T17068] R10: 0000000000000000 R11: 0000000000000206 R12: 0000000020000000 [ 251.403602][T17068] R13: 0000000020000100 R14: 00007f8175efa000 R15: 0000000020000040 21:38:31 executing program 4: set_mempolicy(0x8003, &(0x7f0000000300)=0x75f, 0x9) open(&(0x7f0000000300)='.\x00', 0x0, 0x0) r0 = syz_open_procfs(0x0, &(0x7f00000000c0)='fd/3\x00') r1 = syz_open_dev$swradio(&(0x7f0000000100)='/dev/swradio#\x00', 0x0, 0x2) mount$9p_fd(0x0, &(0x7f0000000300)='.\x00', &(0x7f0000000080)='9p\x00', 0x12000000, &(0x7f0000000740)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}}) [ 251.432410][T10606] kernel read not supported for file root/syzkaller-testdir583426511/syzkaller.VVQl22/272 (pid: 10606 comm: kworker/1:6) [ 251.474224][T17085] loop2: detected capacity change from 16383 to 0 [ 251.479442][ T8977] kernel read not supported for file root/syzkaller-testdir583426511/syzkaller.VVQl22/273 (pid: 8977 comm: kworker/0:3) [ 251.486131][T17085] F2FS-fs (loop2): Magic Mismatch, valid(0xf2f52010) - read(0x0) [ 251.501232][T17085] F2FS-fs (loop2): Can't find valid F2FS filesystem in 2th superblock 21:38:31 executing program 0 (fault-call:0 fault-nth:66): syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x40000, 0x3, &(0x7f0000000200)=[{&(0x7f0000010000)="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", 0x10c, 0x400}, {&(0x7f0000010200)="0500000000000000000000000000000000000000040100002b", 0x19, 0x560}, {&(0x7f0000010300)="000000000000000000000000000000000000000000000000000000001481910a040000001400000024", 0x29, 0x7e0}], 0x0, &(0x7f0000000040)={[{@usrjquota='usrjquota='}, {@data_err_abort='data_err=abort'}]}) 21:38:31 executing program 2: r0 = accept4$tipc(0xffffffffffffffff, &(0x7f0000000140)=@id, &(0x7f0000000180)=0x10, 0x400) setsockopt$sock_int(r0, 0x1, 0x1e, &(0x7f00000001c0)=0x9, 0x4) set_mempolicy(0x8003, &(0x7f0000000300)=0x75f, 0x9) r1 = open(&(0x7f0000000300)='.\x00', 0x0, 0x0) symlinkat(&(0x7f0000000040)='\x13\x13w\xc5\xfc5\xd4\x14T\xd5\xd4\x1d)\xad\x1a`)Y\x81F\xe6\xbe\x16nA\xad\r\xbd@T\x03<\x9f3\xbb\xda\x82$\xa2\xf3\xd7r\xe7cnH\xb3<\xbfp\x83r\xe8\xf1\xb9\x93>\xc5\x12wC\xbe\"\x06 \x9e\xf0-\xf9\xcb\xf2\xf6\xe8\x80\xd38/\x00', r1, &(0x7f00000000c0)='./file0\x00') mkdirat(r1, &(0x7f0000000200)='\x13\x13w\xc5\xfc5\xd4\x14T\xd5\xd4\x1d)\xad\x1a`)Y\x81F\xe6\xbe\x16nA\xad\r\xbd@T\x03<\x9f3\xbb\xda\x82$\xa2\xf3\xd7r\xe7cnH\xb3<\xbfp\x83r\xe8\xf1\xb9\x93>\xc5\x12wC\xbe\"\x06 \x9e\xf0-\xf9\xcb\xf2\xf6\xe8\x80\xd38/\x00', 0x0) symlinkat(&(0x7f0000000340)='./file0/file0\x00', r1, &(0x7f0000000380)='\x13\x13w\xc5\xfc5\xd4\x14T\xd5\xd4\x1d)\xad\x1a`)Y\x81F\xe6\xbe\x16nA\xad\r\xbd@T\x03<\x9f3\xbb\xda\x82$\xa2\xf3\xd7r\xe7cnH\xb3<\xbfp\x83r\xe8\xf1\xb9\x93>\xc5\x12wC\xbe\"\x06 \x9e\xf0-\xf9\xcb\xf2\xf6\xe8\x80\xd38//file0\x00') ioctl$FS_IOC_GET_ENCRYPTION_KEY_STATUS(r1, 0xc080661a, &(0x7f0000000280)={@desc={0x1, 0x0, @desc4='\x85\xba\xa1t\xf0\xcb\x11B'}}) r2 = open(&(0x7f0000000100)='.\x00', 0x0, 0x0) renameat2(r2, &(0x7f0000000400)='./file0/file0\x00', r2, &(0x7f0000000000)='./file0\x00', 0x0) 21:38:31 executing program 5: set_mempolicy(0x8003, &(0x7f0000000300)=0x75f, 0x9) open(&(0x7f0000000300)='.\x00', 0x0, 0x0) r0 = syz_open_procfs(0x0, &(0x7f00000000c0)='fd/3\x00') r1 = syz_open_dev$swradio(&(0x7f0000000100)='/dev/swradio#\x00', 0x0, 0x2) mount$9p_fd(0x0, &(0x7f0000000300)='.\x00', &(0x7f0000000080)='9p\x00', 0x1200000000000000, &(0x7f0000000740)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}}) 21:38:31 executing program 1: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) r3 = syz_open_procfs(0x0, &(0x7f00000000c0)='fd/3\x00') mount$9p_fd(0x0, &(0x7f0000000300)='.\x00', &(0x7f0000000080)='9p\x00', 0x4000000, &(0x7f00000003c0)={'trans=fd,', {'rfdno', 0x3d, r3}, 0x2c, {'wfdno', 0x3d, r2}}) 21:38:31 executing program 3: set_mempolicy(0x8003, &(0x7f0000000300)=0x75f, 0x9) open(&(0x7f0000000300)='.\x00', 0x0, 0x0) r0 = syz_open_procfs(0x0, &(0x7f00000000c0)='fd/3\x00') r1 = syz_open_dev$swradio(&(0x7f0000000100)='/dev/swradio#\x00', 0x0, 0x2) mount$9p_fd(0x0, &(0x7f0000000300)='.\x00', &(0x7f0000000080)='9p\x00', 0x200000000000000, &(0x7f0000000740)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}}) 21:38:31 executing program 4: set_mempolicy(0x8003, &(0x7f0000000300)=0x75f, 0x9) open(&(0x7f0000000300)='.\x00', 0x0, 0x0) r0 = syz_open_procfs(0x0, &(0x7f00000000c0)='fd/3\x00') r1 = syz_open_dev$swradio(&(0x7f0000000100)='/dev/swradio#\x00', 0x0, 0x2) mount$9p_fd(0x0, &(0x7f0000000300)='.\x00', &(0x7f0000000080)='9p\x00', 0x20100000, &(0x7f0000000740)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}}) 21:38:31 executing program 5: set_mempolicy(0x8003, &(0x7f0000000300)=0x75f, 0x9) open(&(0x7f0000000300)='.\x00', 0x0, 0x0) r0 = syz_open_procfs(0x0, &(0x7f00000000c0)='fd/3\x00') r1 = syz_open_dev$swradio(&(0x7f0000000100)='/dev/swradio#\x00', 0x0, 0x2) mount$9p_fd(0x0, &(0x7f0000000300)='.\x00', &(0x7f0000000080)='9p\x00', 0x2010000000000000, &(0x7f0000000740)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}}) 21:38:31 executing program 1: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) r3 = syz_open_procfs(0x0, &(0x7f00000000c0)='fd/3\x00') mount$9p_fd(0x0, &(0x7f0000000300)='.\x00', &(0x7f0000000080)='9p\x00', 0x5000000, &(0x7f00000003c0)={'trans=fd,', {'rfdno', 0x3d, r3}, 0x2c, {'wfdno', 0x3d, r2}}) [ 251.646431][T17128] loop0: detected capacity change from 512 to 0 [ 251.666334][T17128] FAULT_INJECTION: forcing a failure. [ 251.666334][T17128] name failslab, interval 1, probability 0, space 0, times 0 [ 251.684140][T17128] CPU: 0 PID: 17128 Comm: syz-executor.0 Not tainted 5.11.0-syzkaller #0 [ 251.692583][T17128] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 251.702708][T17128] Call Trace: [ 251.705981][T17128] dump_stack+0x116/0x15d [ 251.710320][T17128] should_fail+0x23c/0x250 [ 251.714740][T17128] __should_failslab+0x81/0x90 [ 251.719503][T17128] ? legacy_init_fs_context+0x2d/0x70 [ 251.726098][T17128] should_failslab+0x5/0x20 [ 251.730592][T17128] kmem_cache_alloc_trace+0x39/0x320 [ 251.735888][T17128] ? kmem_cache_alloc_trace+0x1a1/0x320 [ 251.741421][T17128] ? alloc_fs_context+0x46/0x500 [ 251.746349][T17128] legacy_init_fs_context+0x2d/0x70 [ 251.751545][T17128] alloc_fs_context+0x419/0x500 [ 251.756445][T17128] fs_context_for_mount+0x1d/0x20 [ 251.761450][T17128] path_mount+0xdaf/0x1ca0 [ 251.765846][T17128] __se_sys_mount+0x23d/0x2e0 [ 251.770568][T17128] __x64_sys_mount+0x63/0x70 [ 251.775224][T17128] do_syscall_64+0x39/0x80 [ 251.779634][T17128] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 251.785509][T17128] RIP: 0033:0x4672ba [ 251.789453][T17128] Code: 48 c7 c2 bc ff ff ff f7 d8 64 89 02 b8 ff ff ff ff eb d2 e8 b8 04 00 00 0f 1f 84 00 00 00 00 00 49 89 ca b8 a5 00 00 00 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 251.809055][T17128] RSP: 002b:00007f8175ef9fa8 EFLAGS: 00000206 ORIG_RAX: 00000000000000a5 [ 251.817462][T17128] RAX: ffffffffffffffda RBX: 0000000020000200 RCX: 00000000004672ba [ 251.825429][T17128] RDX: 0000000020000000 RSI: 0000000020000100 RDI: 00007f8175efa000 [ 251.833397][T17128] RBP: 00007f8175efa040 R08: 00007f8175efa040 R09: 0000000020000000 21:38:31 executing program 3: set_mempolicy(0x8003, &(0x7f0000000300)=0x75f, 0x9) open(&(0x7f0000000300)='.\x00', 0x0, 0x0) r0 = syz_open_procfs(0x0, &(0x7f00000000c0)='fd/3\x00') r1 = syz_open_dev$swradio(&(0x7f0000000100)='/dev/swradio#\x00', 0x0, 0x2) mount$9p_fd(0x0, &(0x7f0000000300)='.\x00', &(0x7f0000000080)='9p\x00', 0x300000000000000, &(0x7f0000000740)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}}) 21:38:31 executing program 4: set_mempolicy(0x8003, &(0x7f0000000300)=0x75f, 0x9) open(&(0x7f0000000300)='.\x00', 0x0, 0x0) r0 = syz_open_procfs(0x0, &(0x7f00000000c0)='fd/3\x00') r1 = syz_open_dev$swradio(&(0x7f0000000100)='/dev/swradio#\x00', 0x0, 0x2) mount$9p_fd(0x0, &(0x7f0000000300)='.\x00', &(0x7f0000000080)='9p\x00', 0x25000000, &(0x7f0000000740)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}}) 21:38:31 executing program 2: set_mempolicy(0x8003, &(0x7f0000000300)=0x75f, 0x9) r0 = open(&(0x7f0000000300)='.\x00', 0x0, 0x0) symlinkat(&(0x7f0000000040)='\x13\x13w\xc5\xfc5\xd4\x14T\xd5\xd4\x1d)\xad\x1a`)Y\x81F\xe6\xbe\x16nA\xad\r\xbd@T\x03<\x9f3\xbb\xda\x82$\xa2\xf3\xd7r\xe7cnH\xb3<\xbfp\x83r\xe8\xf1\xb9\x93>\xc5\x12wC\xbe\"\x06 \x9e\xf0-\xf9\xcb\xf2\xf6\xe8\x80\xd38/\x00', r0, &(0x7f00000000c0)='./file0\x00') mkdirat(r0, &(0x7f0000000200)='\x13\x13w\xc5\xfc5\xd4\x14T\xd5\xd4\x1d)\xad\x1a`)Y\x81F\xe6\xbe\x16nA\xad\r\xbd@T\x03<\x9f3\xbb\xda\x82$\xa2\xf3\xd7r\xe7cnH\xb3<\xbfp\x83r\xe8\xf1\xb9\x93>\xc5\x12wC\xbe\"\x06 \x9e\xf0-\xf9\xcb\xf2\xf6\xe8\x80\xd38/\x00', 0x0) symlinkat(&(0x7f0000000340)='./file0/file0\x00', r0, &(0x7f0000000380)='\x13\x13w\xc5\xfc5\xd4\x14T\xd5\xd4\x1d)\xad\x1a`)Y\x81F\xe6\xbe\x16nA\xad\r\xbd@T\x03<\x9f3\xbb\xda\x82$\xa2\xf3\xd7r\xe7cnH\xb3<\xbfp\x83r\xe8\xf1\xb9\x93>\xc5\x12wC\xbe\"\x06 \x9e\xf0-\xf9\xcb\xf2\xf6\xe8\x80\xd38//file0\x00') r1 = syz_open_procfs(0x0, &(0x7f00000000c0)='fd/3\x00') r2 = syz_open_dev$swradio(&(0x7f0000000100)='/dev/swradio#\x00', 0x0, 0x2) mount$9p_fd(0x0, &(0x7f0000000300)='.\x00', &(0x7f0000000080)='9p\x00', 0x0, &(0x7f0000000740)=ANY=[@ANYBLOB='trans=fd,rfdno=', @ANYRESHEX=r1, @ANYBLOB, @ANYRESHEX=r2, @ANYBLOB=',\x00']) mkdirat(r1, &(0x7f0000000140)='./file0\x00', 0x0) r3 = open(&(0x7f0000000100)='.\x00', 0x0, 0x0) renameat2(r3, &(0x7f0000000400)='./file0/file0\x00', r3, &(0x7f0000000000)='./file0\x00', 0x0) [ 251.841352][T17128] R10: 0000000000000000 R11: 0000000000000206 R12: 0000000020000000 [ 251.849304][T17128] R13: 0000000020000100 R14: 00007f8175efa000 R15: 0000000020000040 [ 251.873321][T17150] 9pnet: Insufficient options for proto=fd 21:38:31 executing program 5: set_mempolicy(0x8003, &(0x7f0000000300)=0x75f, 0x9) open(&(0x7f0000000300)='.\x00', 0x0, 0x0) r0 = syz_open_procfs(0x0, &(0x7f00000000c0)='fd/3\x00') r1 = syz_open_dev$swradio(&(0x7f0000000100)='/dev/swradio#\x00', 0x0, 0x2) mount$9p_fd(0x0, &(0x7f0000000300)='.\x00', &(0x7f0000000080)='9p\x00', 0x2500000000000000, &(0x7f0000000740)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}}) 21:38:31 executing program 0 (fault-call:0 fault-nth:67): syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x40000, 0x3, &(0x7f0000000200)=[{&(0x7f0000010000)="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", 0x10c, 0x400}, {&(0x7f0000010200)="0500000000000000000000000000000000000000040100002b", 0x19, 0x560}, {&(0x7f0000010300)="000000000000000000000000000000000000000000000000000000001481910a040000001400000024", 0x29, 0x7e0}], 0x0, &(0x7f0000000040)={[{@usrjquota='usrjquota='}, {@data_err_abort='data_err=abort'}]}) 21:38:31 executing program 5: set_mempolicy(0x8003, &(0x7f0000000300)=0x75f, 0x9) open(&(0x7f0000000300)='.\x00', 0x0, 0x0) r0 = syz_open_procfs(0x0, &(0x7f00000000c0)='fd/3\x00') r1 = syz_open_dev$swradio(&(0x7f0000000100)='/dev/swradio#\x00', 0x0, 0x2) mount$9p_fd(0x0, &(0x7f0000000300)='.\x00', &(0x7f0000000080)='9p\x00', 0x4000000000000000, &(0x7f0000000740)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}}) [ 252.003095][T17169] loop0: detected capacity change from 512 to 0 [ 252.015258][T17169] FAULT_INJECTION: forcing a failure. [ 252.015258][T17169] name failslab, interval 1, probability 0, space 0, times 0 [ 252.025774][T17168] 9pnet: Insufficient options for proto=fd [ 252.027984][T17169] CPU: 1 PID: 17169 Comm: syz-executor.0 Not tainted 5.11.0-syzkaller #0 [ 252.042062][T17169] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 252.052176][T17169] Call Trace: [ 252.056448][T17169] dump_stack+0x116/0x15d [ 252.059103][T17168] 9pnet: Insufficient options for proto=fd [ 252.061747][T17169] should_fail+0x23c/0x250 [ 252.071952][T17169] __should_failslab+0x81/0x90 [ 252.076748][T17169] ? vfs_parse_fs_string+0x5e/0xc0 [ 252.081854][T17169] should_failslab+0x5/0x20 [ 252.086351][T17169] __kmalloc_track_caller+0x57/0x360 [ 252.091652][T17169] kmemdup_nul+0x27/0x70 [ 252.095909][T17169] vfs_parse_fs_string+0x5e/0xc0 [ 252.100852][T17169] path_mount+0xf57/0x1ca0 [ 252.105265][T17169] __se_sys_mount+0x23d/0x2e0 [ 252.109986][T17169] __x64_sys_mount+0x63/0x70 [ 252.114568][T17169] do_syscall_64+0x39/0x80 [ 252.119768][T17169] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 252.125679][T17169] RIP: 0033:0x4672ba [ 252.129896][T17169] Code: 48 c7 c2 bc ff ff ff f7 d8 64 89 02 b8 ff ff ff ff eb d2 e8 b8 04 00 00 0f 1f 84 00 00 00 00 00 49 89 ca b8 a5 00 00 00 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 21:38:32 executing program 4: set_mempolicy(0x8003, &(0x7f0000000300)=0x75f, 0x9) open(&(0x7f0000000300)='.\x00', 0x0, 0x0) r0 = syz_open_procfs(0x0, &(0x7f00000000c0)='fd/3\x00') r1 = syz_open_dev$swradio(&(0x7f0000000100)='/dev/swradio#\x00', 0x0, 0x2) mount$9p_fd(0x0, &(0x7f0000000300)='.\x00', &(0x7f0000000080)='9p\x00', 0x40000000, &(0x7f0000000740)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}}) 21:38:32 executing program 3: set_mempolicy(0x8003, &(0x7f0000000300)=0x75f, 0x9) open(&(0x7f0000000300)='.\x00', 0x0, 0x0) r0 = syz_open_procfs(0x0, &(0x7f00000000c0)='fd/3\x00') r1 = syz_open_dev$swradio(&(0x7f0000000100)='/dev/swradio#\x00', 0x0, 0x2) mount$9p_fd(0x0, &(0x7f0000000300)='.\x00', &(0x7f0000000080)='9p\x00', 0x400000000000000, &(0x7f0000000740)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}}) 21:38:32 executing program 2: set_mempolicy(0x8003, &(0x7f0000000300)=0x75f, 0x9) r0 = open(&(0x7f0000000300)='.\x00', 0x0, 0x0) symlinkat(&(0x7f0000000040)='\x13\x13w\xc5\xfc5\xd4\x14T\xd5\xd4\x1d)\xad\x1a`)Y\x81F\xe6\xbe\x16nA\xad\r\xbd@T\x03<\x9f3\xbb\xda\x82$\xa2\xf3\xd7r\xe7cnH\xb3<\xbfp\x83r\xe8\xf1\xb9\x93>\xc5\x12wC\xbe\"\x06 \x9e\xf0-\xf9\xcb\xf2\xf6\xe8\x80\xd38/\x00', r0, &(0x7f00000000c0)='./file0\x00') mkdirat(r0, &(0x7f0000000200)='\x13\x13w\xc5\xfc5\xd4\x14T\xd5\xd4\x1d)\xad\x1a`)Y\x81F\xe6\xbe\x16nA\xad\r\xbd@T\x03<\x9f3\xbb\xda\x82$\xa2\xf3\xd7r\xe7cnH\xb3<\xbfp\x83r\xe8\xf1\xb9\x93>\xc5\x12wC\xbe\"\x06 \x9e\xf0-\xf9\xcb\xf2\xf6\xe8\x80\xd38/\x00', 0x0) symlinkat(&(0x7f0000000340)='./file0/file0\x00', r0, &(0x7f0000000380)='\x13\x13w\xc5\xfc5\xd4\x14T\xd5\xd4\x1d)\xad\x1a`)Y\x81F\xe6\xbe\x16nA\xad\r\xbd@T\x03<\x9f3\xbb\xda\x82$\xa2\xf3\xd7r\xe7cnH\xb3<\xbfp\x83r\xe8\xf1\xb9\x93>\xc5\x12wC\xbe\"\x06 \x9e\xf0-\xf9\xcb\xf2\xf6\xe8\x80\xd38//file0\x00') getxattr(&(0x7f00000005c0)='\x13\x13w\xc5\xfc5\xd4\x14T\xd5\xd4\x1d)\xad\x1a`)Y\x81F\xe6\xbe\x16nA\xad\r\xbd@T\x03<\x9f3\xbb\xda\x82$\xa2\xf3\xd7r\xe7cnH\xb3<\xbfp\x83r\xe8\xf1\xb9\x93>\xc5\x12wC\xbe\"\x06 \x9e\xf0-\xf9\xcb\xf2\xf6\xe8\x80\xd38/\x00', &(0x7f00000002c0)=@known='system.posix_acl_access\x00', &(0x7f0000000640)=""/84, 0x54) newfstatat(0xffffffffffffff9c, &(0x7f0000000280)='./file0\x00', &(0x7f0000000440)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x0) syz_mount_image$fuse(&(0x7f0000000140)='fuse\x00', &(0x7f0000000180)='\x13\x13w\xc5\xfc5\xd4\x14T\xd5\xd4\x1d)\xad\x1a`)Y\x81F\xe6\xbe\x16nA\xad\r\xbd@T\x03<\x9f3\xbb\xda\x82$\xa2\xf3\xd7r\xe7cnH\xb3<\xbfp\x83r\xe8\xf1\xb9\x93>\xc5\x12wC\xbe\"\x06 \x9e\xf0-\xf9\xcb\xf2\xf6\xe8\x80\xd38/\x00', 0x0, 0x0, 0x0, 0x2000, &(0x7f00000004c0)={{'fd', 0x3d, r0}, 0x2c, {'rootmode', 0x3d, 0x8000}, 0x2c, {'user_id', 0x3d, 0xee01}, 0x2c, {'group_id', 0x3d, r1}, 0x2c, {[{@default_permissions='default_permissions'}, {@max_read={'max_read', 0x3d, 0x9}}, {@allow_other='allow_other'}, {@max_read={'max_read', 0x3d, 0x800}}], [{@subj_user={'subj_user', 0x3d, '(][@-'}}]}}) r2 = open(&(0x7f0000000100)='.\x00', 0x0, 0x0) renameat2(r2, &(0x7f0000000400)='./file0/file0\x00', r2, &(0x7f0000000000)='./file0\x00', 0x0) [ 252.149508][T17169] RSP: 002b:00007f8175ef9fa8 EFLAGS: 00000206 ORIG_RAX: 00000000000000a5 [ 252.158037][T17169] RAX: ffffffffffffffda RBX: 0000000020000200 RCX: 00000000004672ba [ 252.166010][T17169] RDX: 0000000020000000 RSI: 0000000020000100 RDI: 00007f8175efa000 [ 252.174823][T17169] RBP: 00007f8175efa040 R08: 00007f8175efa040 R09: 0000000020000000 [ 252.182798][T17169] R10: 0000000000000000 R11: 0000000000000206 R12: 0000000020000000 [ 252.190766][T17169] R13: 0000000020000100 R14: 00007f8175efa000 R15: 0000000020000040 21:38:32 executing program 4: set_mempolicy(0x8003, &(0x7f0000000300)=0x75f, 0x9) open(&(0x7f0000000300)='.\x00', 0x0, 0x0) r0 = syz_open_procfs(0x0, &(0x7f00000000c0)='fd/3\x00') r1 = syz_open_dev$swradio(&(0x7f0000000100)='/dev/swradio#\x00', 0x0, 0x2) mount$9p_fd(0x0, &(0x7f0000000300)='.\x00', &(0x7f0000000080)='9p\x00', 0x5c000000, &(0x7f0000000740)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}}) 21:38:32 executing program 5: set_mempolicy(0x8003, &(0x7f0000000300)=0x75f, 0x9) open(&(0x7f0000000300)='.\x00', 0x0, 0x0) r0 = syz_open_procfs(0x0, &(0x7f00000000c0)='fd/3\x00') r1 = syz_open_dev$swradio(&(0x7f0000000100)='/dev/swradio#\x00', 0x0, 0x2) mount$9p_fd(0x0, &(0x7f0000000300)='.\x00', &(0x7f0000000080)='9p\x00', 0x5c00000000000000, &(0x7f0000000740)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}}) 21:38:32 executing program 1: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) r3 = syz_open_procfs(0x0, &(0x7f00000000c0)='fd/3\x00') mount$9p_fd(0x0, &(0x7f0000000300)='.\x00', &(0x7f0000000080)='9p\x00', 0x6000000, &(0x7f00000003c0)={'trans=fd,', {'rfdno', 0x3d, r3}, 0x2c, {'wfdno', 0x3d, r2}}) 21:38:32 executing program 3: set_mempolicy(0x8003, &(0x7f0000000300)=0x75f, 0x9) open(&(0x7f0000000300)='.\x00', 0x0, 0x0) r0 = syz_open_procfs(0x0, &(0x7f00000000c0)='fd/3\x00') r1 = syz_open_dev$swradio(&(0x7f0000000100)='/dev/swradio#\x00', 0x0, 0x2) mount$9p_fd(0x0, &(0x7f0000000300)='.\x00', &(0x7f0000000080)='9p\x00', 0x500000000000000, &(0x7f0000000740)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}}) 21:38:32 executing program 2: set_mempolicy(0x8003, &(0x7f0000000300)=0x75f, 0x9) r0 = open(&(0x7f0000000300)='.\x00', 0x0, 0x0) symlinkat(&(0x7f0000000040)='\x13\x13w\xc5\xfc5\xd4\x14T\xd5\xd4\x1d)\xad\x1a`)Y\x81F\xe6\xbe\x16nA\xad\r\xbd@T\x03<\x9f3\xbb\xda\x82$\xa2\xf3\xd7r\xe7cnH\xb3<\xbfp\x83r\xe8\xf1\xb9\x93>\xc5\x12wC\xbe\"\x06 \x9e\xf0-\xf9\xcb\xf2\xf6\xe8\x80\xd38/\x00', r0, &(0x7f00000000c0)='./file0\x00') openat$hwrng(0xffffffffffffff9c, &(0x7f0000000000)='/dev/hwrng\x00', 0x189000, 0x0) mkdirat(r0, &(0x7f0000000200)='\x13\x13w\xc5\xfc5\xd4\x14T\xd5\xd4\x1d)\xad\x1a`)Y\x81F\xe6\xbe\x16nA\xad\r\xbd@T\x03<\x9f3\xbb\xda\x82$\xa2\xf3\xd7r\xe7cnH\xb3<\xbfp\x83r\xe8\xf1\xb9\x93>\xc5\x12wC\xbe\"\x06 \x9e\xf0-\xf9\xcb\xf2\xf6\xe8\x80\xd38/\x00', 0x0) symlinkat(&(0x7f0000000340)='./file0/file0\x00', r0, &(0x7f0000000380)='\x13\x13w\xc5\xfc5\xd4\x14T\xd5\xd4\x1d)\xad\x1a`)Y\x81F\xe6\xbe\x16nA\xad\r\xbd@T\x03<\x9f3\xbb\xda\x82$\xa2\xf3\xd7r\xe7cnH\xb3<\xbfp\x83r\xe8\xf1\xb9\x93>\xc5\x12wC\xbe\"\x06 \x9e\xf0-\xf9\xcb\xf2\xf6\xe8\x80\xd38//file0\x00') r1 = open(&(0x7f0000000100)='.\x00', 0x0, 0x0) r2 = syz_mount_image$cramfs(&(0x7f0000000140)='cramfs\x00', &(0x7f0000000180)='\x13\x13w\xc5\xfc5\xd4\x14T\xd5\xd4\x1d)\xad\x1a`)Y\x81F\xe6\xbe\x16nA\xad\r\xbd@T\x03<\x9f3\xbb\xda\x82$\xa2\xf3\xd7r\xe7cnH\xb3<\xbfp\x83r\xe8\xf1\xb9\x93>\xc5\x12wC\xbe\"\x06 \x9e\xf0-\xf9\xcb\xf2\xf6\xe8\x80\xd38//file0\x00', 0x1000, 0x2, &(0x7f0000000280)=[{&(0x7f0000000440)="81f5153adc4bdbe56dcb19255187a205ec5bd426ba0bb368ea89a2a2f405324078e5ce4048238a414694b9ab74fd4e7181c3911e1f4de54c7c8e70566814e93fa2038c4fddabfc4bd156e9261fdb7e74dbd73997b5b898bb7f68c9cff2c46bfd416423b571d984b67009415fe254e3d8584168258631b1fd03a3a5a966c9154a55db6347b0f1de2a", 0x88, 0x100000001}, {&(0x7f0000000500)="da6f2d5e44612696a0162a0c005ce42856c40d9e6635eb657a81b5263796390ff07a5b539aa4b0ecbe34e816cdcec5593183b792b6b4e123960d51ef3572f2339ae1c8c23368dc8152217bf7f15e7c68736cf1116c5e119afc588071bd5a1f1149cdbae7ac077bd86abbd53ab3fbe241a082333ef62924df45176607b6fab5e11ef0184e9d", 0x85, 0x3f}], 0x20010, &(0x7f00000002c0)={[{}], [{@fsname={'fsname', 0x3d, '&'}}, {@defcontext={'defcontext', 0x3d, 'staff_u'}}, {@dont_appraise='dont_appraise'}, {@subj_role={'subj_role', 0x3d, '{[]'}}]}) renameat2(r2, &(0x7f0000000400)='./file0/file0\x00', r1, &(0x7f00000005c0)='./file0/file0\x00', 0x0) 21:38:32 executing program 5: set_mempolicy(0x8003, &(0x7f0000000300)=0x75f, 0x9) open(&(0x7f0000000300)='.\x00', 0x0, 0x0) r0 = syz_open_procfs(0x0, &(0x7f00000000c0)='fd/3\x00') r1 = syz_open_dev$swradio(&(0x7f0000000100)='/dev/swradio#\x00', 0x0, 0x2) mount$9p_fd(0x0, &(0x7f0000000300)='.\x00', &(0x7f0000000080)='9p\x00', 0x8cffffff00000000, &(0x7f0000000740)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}}) [ 252.356212][T17150] 9pnet: Insufficient options for proto=fd 21:38:32 executing program 3: set_mempolicy(0x8003, &(0x7f0000000300)=0x75f, 0x9) open(&(0x7f0000000300)='.\x00', 0x0, 0x0) r0 = syz_open_procfs(0x0, &(0x7f00000000c0)='fd/3\x00') r1 = syz_open_dev$swradio(&(0x7f0000000100)='/dev/swradio#\x00', 0x0, 0x2) mount$9p_fd(0x0, &(0x7f0000000300)='.\x00', &(0x7f0000000080)='9p\x00', 0x600000000000000, &(0x7f0000000740)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}}) 21:38:32 executing program 0 (fault-call:0 fault-nth:68): syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x40000, 0x3, &(0x7f0000000200)=[{&(0x7f0000010000)="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", 0x10c, 0x400}, {&(0x7f0000010200)="0500000000000000000000000000000000000000040100002b", 0x19, 0x560}, {&(0x7f0000010300)="000000000000000000000000000000000000000000000000000000001481910a040000001400000024", 0x29, 0x7e0}], 0x0, &(0x7f0000000040)={[{@usrjquota='usrjquota='}, {@data_err_abort='data_err=abort'}]}) 21:38:32 executing program 4: set_mempolicy(0x8003, &(0x7f0000000300)=0x75f, 0x9) open(&(0x7f0000000300)='.\x00', 0x0, 0x0) r0 = syz_open_procfs(0x0, &(0x7f00000000c0)='fd/3\x00') r1 = syz_open_dev$swradio(&(0x7f0000000100)='/dev/swradio#\x00', 0x0, 0x2) mount$9p_fd(0x0, &(0x7f0000000300)='.\x00', &(0x7f0000000080)='9p\x00', 0x8cffffff, &(0x7f0000000740)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}}) 21:38:32 executing program 5: set_mempolicy(0x8003, &(0x7f0000000300)=0x75f, 0x9) open(&(0x7f0000000300)='.\x00', 0x0, 0x0) r0 = syz_open_procfs(0x0, &(0x7f00000000c0)='fd/3\x00') r1 = syz_open_dev$swradio(&(0x7f0000000100)='/dev/swradio#\x00', 0x0, 0x2) mount$9p_fd(0x0, &(0x7f0000000300)='.\x00', &(0x7f0000000080)='9p\x00', 0xf6ffffff00000000, &(0x7f0000000740)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}}) [ 252.421642][T17208] loop2: detected capacity change from 264192 to 0 21:38:32 executing program 5: set_mempolicy(0x8003, &(0x7f0000000300)=0x75f, 0x9) open(&(0x7f0000000300)='.\x00', 0x0, 0x0) r0 = syz_open_procfs(0x0, &(0x7f00000000c0)='fd/3\x00') r1 = syz_open_dev$swradio(&(0x7f0000000100)='/dev/swradio#\x00', 0x0, 0x2) mount$9p_fd(0x0, &(0x7f0000000300)='.\x00', &(0x7f0000000080)='9p\x00', 0xfeffffff00000000, &(0x7f0000000740)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}}) 21:38:32 executing program 1: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) r3 = syz_open_procfs(0x0, &(0x7f00000000c0)='fd/3\x00') mount$9p_fd(0x0, &(0x7f0000000300)='.\x00', &(0x7f0000000080)='9p\x00', 0x7000000, &(0x7f00000003c0)={'trans=fd,', {'rfdno', 0x3d, r3}, 0x2c, {'wfdno', 0x3d, r2}}) [ 252.536571][T17235] loop0: detected capacity change from 512 to 0 21:38:32 executing program 4: set_mempolicy(0x8003, &(0x7f0000000300)=0x75f, 0x9) open(&(0x7f0000000300)='.\x00', 0x0, 0x0) r0 = syz_open_procfs(0x0, &(0x7f00000000c0)='fd/3\x00') r1 = syz_open_dev$swradio(&(0x7f0000000100)='/dev/swradio#\x00', 0x0, 0x2) mount$9p_fd(0x0, &(0x7f0000000300)='.\x00', &(0x7f0000000080)='9p\x00', 0xc0ed0000, &(0x7f0000000740)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}}) 21:38:32 executing program 2: set_mempolicy(0x8003, &(0x7f0000000300)=0x75f, 0x9) r0 = open(&(0x7f0000000300)='.\x00', 0x80, 0x0) ioctl$VT_RESIZEX(r0, 0x560a, &(0x7f0000000140)={0x9, 0x7, 0x2e6, 0x80, 0x800, 0xfffe}) symlinkat(&(0x7f0000000040)='\x13\x13w\xc5\xfc5\xd4\x14T\xd5\xd4\x1d)\xad\x1a`)Y\x81F\xe6\xbe\x16nA\xad\r\xbd@T\x03<\x9f3\xbb\xda\x82$\xa2\xf3\xd7r\xe7cnH\xb3<\xbfp\x83r\xe8\xf1\xb9\x93>\xc5\x12wC\xbe\"\x06 \x9e\xf0-\xf9\xcb\xf2\xf6\xe8\x80\xd38/\x00', r0, &(0x7f00000000c0)='./file0\x00') mkdirat(r0, &(0x7f0000000200)='\x13\x13w\xc5\xfc5\xd4\x14T\xd5\xd4\x1d)\xad\x1a`)Y\x81F\xe6\xbe\x16nA\xad\r\xbd@T\x03<\x9f3\xbb\xda\x82$\xa2\xf3\xd7r\xe7cnH\xb3<\xbfp\x83r\xe8\xf1\xb9\x93>\xc5\x12wC\xbe\"\x06 \x9e\xf0-\xf9\xcb\xf2\xf6\xe8\x80\xd38/\x00', 0x0) symlinkat(&(0x7f0000000340)='./file0/file0\x00', r0, &(0x7f0000000380)='\x13\x13w\xc5\xfc5\xd4\x14T\xd5\xd4\x1d)\xad\x1a`)Y\x81F\xe6\xbe\x16nA\xad\r\xbd@T\x03<\x9f3\xbb\xda\x82$\xa2\xf3\xd7r\xe7cnH\xb3<\xbfp\x83r\xe8\xf1\xb9\x93>\xc5\x12wC\xbe\"\x06 \x9e\xf0-\xf9\xcb\xf2\xf6\xe8\x80\xd38//file0\x00') r1 = open(&(0x7f0000000100)='.\x00', 0x0, 0x0) renameat2(r1, &(0x7f0000000400)='./file0/file0\x00', r1, &(0x7f0000000000)='./file0\x00', 0x0) [ 252.579416][T17235] FAULT_INJECTION: forcing a failure. [ 252.579416][T17235] name failslab, interval 1, probability 0, space 0, times 0 [ 252.592262][T17235] CPU: 1 PID: 17235 Comm: syz-executor.0 Not tainted 5.11.0-syzkaller #0 [ 252.600679][T17235] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 252.610736][T17235] Call Trace: [ 252.614010][T17235] dump_stack+0x116/0x15d [ 252.618339][T17235] should_fail+0x23c/0x250 [ 252.622791][T17235] ? ext4_mount+0x40/0x40 21:38:32 executing program 3: set_mempolicy(0x8003, &(0x7f0000000300)=0x75f, 0x9) open(&(0x7f0000000300)='.\x00', 0x0, 0x0) r0 = syz_open_procfs(0x0, &(0x7f00000000c0)='fd/3\x00') r1 = syz_open_dev$swradio(&(0x7f0000000100)='/dev/swradio#\x00', 0x0, 0x2) mount$9p_fd(0x0, &(0x7f0000000300)='.\x00', &(0x7f0000000080)='9p\x00', 0x700000000000000, &(0x7f0000000740)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}}) [ 252.627142][T17235] ? getname_kernel+0x37/0x1d0 [ 252.631905][T17235] __should_failslab+0x81/0x90 [ 252.636672][T17235] should_failslab+0x5/0x20 [ 252.641183][T17235] kmem_cache_alloc+0x36/0x2e0 [ 252.645945][T17235] ? ext4_mount+0x40/0x40 [ 252.650280][T17235] getname_kernel+0x37/0x1d0 [ 252.654873][T17235] ? ext4_mount+0x40/0x40 [ 252.659209][T17235] kern_path+0x19/0x40 [ 252.663283][T17235] blkdev_get_by_path+0x54/0x1b0 [ 252.668300][T17235] mount_bdev+0x47/0x290 [ 252.672530][T17235] ? aa_get_newest_label+0x74/0x250 [ 252.677802][T17235] ? ext4_errno_to_code+0x110/0x110 [ 252.682985][T17235] ext4_mount+0x2d/0x40 [ 252.687120][T17235] legacy_get_tree+0x70/0xc0 [ 252.691695][T17235] vfs_get_tree+0x4a/0x1a0 [ 252.696097][T17235] path_mount+0x11b6/0x1ca0 [ 252.700587][T17235] __se_sys_mount+0x23d/0x2e0 [ 252.705250][T17235] __x64_sys_mount+0x63/0x70 [ 252.709823][T17235] do_syscall_64+0x39/0x80 [ 252.714282][T17235] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 252.720175][T17235] RIP: 0033:0x4672ba [ 252.724051][T17235] Code: 48 c7 c2 bc ff ff ff f7 d8 64 89 02 b8 ff ff ff ff eb d2 e8 b8 04 00 00 0f 1f 84 00 00 00 00 00 49 89 ca b8 a5 00 00 00 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 252.743640][T17235] RSP: 002b:00007f8175ef9fa8 EFLAGS: 00000206 ORIG_RAX: 00000000000000a5 [ 252.752136][T17235] RAX: ffffffffffffffda RBX: 0000000020000200 RCX: 00000000004672ba [ 252.760215][T17235] RDX: 0000000020000000 RSI: 0000000020000100 RDI: 00007f8175efa000 [ 252.768180][T17235] RBP: 00007f8175efa040 R08: 00007f8175efa040 R09: 0000000020000000 [ 252.780131][T17235] R10: 0000000000000000 R11: 0000000000000206 R12: 0000000020000000 [ 252.788131][T17235] R13: 0000000020000100 R14: 00007f8175efa000 R15: 0000000020000040 21:38:32 executing program 5: set_mempolicy(0x8003, &(0x7f0000000300)=0x75f, 0x9) open(&(0x7f0000000300)='.\x00', 0x0, 0x0) r0 = syz_open_procfs(0x0, &(0x7f00000000c0)='fd/3\x00') r1 = syz_open_dev$swradio(&(0x7f0000000100)='/dev/swradio#\x00', 0x0, 0x2) mount$9p_fd(0x0, &(0x7f0000000300)='.\x00', &(0x7f0000000080)='9p\x00', 0xff00000000000000, &(0x7f0000000740)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}}) 21:38:32 executing program 4: set_mempolicy(0x8003, &(0x7f0000000300)=0x75f, 0x9) open(&(0x7f0000000300)='.\x00', 0x0, 0x0) r0 = syz_open_procfs(0x0, &(0x7f00000000c0)='fd/3\x00') r1 = syz_open_dev$swradio(&(0x7f0000000100)='/dev/swradio#\x00', 0x0, 0x2) mount$9p_fd(0x0, &(0x7f0000000300)='.\x00', &(0x7f0000000080)='9p\x00', 0xf6ffffff, &(0x7f0000000740)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}}) [ 252.826873][T17255] 9pnet: Insufficient options for proto=fd 21:38:32 executing program 2: set_mempolicy(0x8003, &(0x7f0000000300)=0x75f, 0x9) r0 = open(&(0x7f0000000300)='.\x00', 0x0, 0x0) symlinkat(&(0x7f0000000040)='\x13\x13w\xc5\xfc5\xd4\x14T\xd5\xd4\x1d)\xad\x1a`)Y\x81F\xe6\xbe\x16nA\xad\r\xbd@T\x03<\x9f3\xbb\xda\x82$\xa2\xf3\xd7r\xe7cnH\xb3<\xbfp\x83r\xe8\xf1\xb9\x93>\xc5\x12wC\xbe\"\x06 \x9e\xf0-\xf9\xcb\xf2\xf6\xe8\x80\xd38/\x00', r0, &(0x7f00000000c0)='./file0\x00') mkdirat(r0, &(0x7f0000000200)='\x13\x13w\xc5\xfc5\xd4\x14T\xd5\xd4\x1d)\xad\x1a`)Y\x81F\xe6\xbe\x16nA\xad\r\xbd@T\x03<\x9f3\xbb\xda\x82$\xa2\xf3\xd7r\xe7cnH\xb3<\xbfp\x83r\xe8\xf1\xb9\x93>\xc5\x12wC\xbe\"\x06 \x9e\xf0-\xf9\xcb\xf2\xf6\xe8\x80\xd38/\x00', 0x0) symlinkat(&(0x7f0000000340)='./file0/file0\x00', r0, &(0x7f0000000380)='\x13\x13w\xc5\xfc5\xd4\x14T\xd5\xd4\x1d)\xad\x1a`)Y\x81F\xe6\xbe\x16nA\xad\r\xbd@T\x03<\x9f3\xbb\xda\x82$\xa2\xf3\xd7r\xe7cnH\xb3<\xbfp\x83r\xe8\xf1\xb9\x93>\xc5\x12wC\xbe\"\x06 \x9e\xf0-\xf9\xcb\xf2\xf6\xe8\x80\xd38//file0\x00') r1 = open(&(0x7f0000000100)='.\x00', 0x0, 0x0) r2 = syz_mount_image$pvfs2(&(0x7f0000000140)='pvfs2\x00', &(0x7f0000000180)='./file0/file0\x00', 0x3, 0x0, &(0x7f00000001c0), 0x800020, &(0x7f0000000280)={[{'%8[:/'}, {':'}], [{@rootcontext={'rootcontext', 0x3d, 'staff_u'}}, {@smackfstransmute={'smackfstransmute'}}, {@dont_hash='dont_hash'}]}) mkdirat(r2, &(0x7f00000002c0)='./file0/file0\x00', 0x41) renameat2(r1, &(0x7f0000000400)='./file0/file0\x00', r1, &(0x7f0000000000)='./file0\x00', 0x0) 21:38:32 executing program 3: set_mempolicy(0x8003, &(0x7f0000000300)=0x75f, 0x9) open(&(0x7f0000000300)='.\x00', 0x0, 0x0) r0 = syz_open_procfs(0x0, &(0x7f00000000c0)='fd/3\x00') r1 = syz_open_dev$swradio(&(0x7f0000000100)='/dev/swradio#\x00', 0x0, 0x2) mount$9p_fd(0x0, &(0x7f0000000300)='.\x00', &(0x7f0000000080)='9p\x00', 0x800000000000000, &(0x7f0000000740)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}}) [ 252.976374][T17255] 9pnet: Insufficient options for proto=fd 21:38:33 executing program 0 (fault-call:0 fault-nth:69): syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x40000, 0x3, &(0x7f0000000200)=[{&(0x7f0000010000)="20000000000100000c000000d90000000f0000000100000000000000000000000020000000200000200000002cc4645f2cc4645f0100ffff53ef0100010000002cc4645f000000000000000001000000000000000b0000008000000038000000c20200006b0400000000000000000000000000000000000073797a6b616c6c6572000000000000002f746d702f73797a2d696d61676567656e3338363633343038350000000000000000000000000000000000000000000000000000000000000000000000000000000000000000010000000000000000000000000000000000000000000000000000000000d9ca5cac99fd4329af4dde786c1a5d13010040000c000000000000002cc4645f", 0x10c, 0x400}, {&(0x7f0000010200)="0500000000000000000000000000000000000000040100002b", 0x19, 0x560}, {&(0x7f0000010300)="000000000000000000000000000000000000000000000000000000001481910a040000001400000024", 0x29, 0x7e0}], 0x0, &(0x7f0000000040)={[{@usrjquota='usrjquota='}, {@data_err_abort='data_err=abort'}]}) 21:38:33 executing program 5: set_mempolicy(0x8003, &(0x7f0000000300)=0x75f, 0x9) open(&(0x7f0000000300)='.\x00', 0x0, 0x0) r0 = syz_open_procfs(0x0, &(0x7f00000000c0)='fd/3\x00') r1 = syz_open_dev$swradio(&(0x7f0000000100)='/dev/swradio#\x00', 0x0, 0x2) mount$9p_fd(0x0, &(0x7f0000000300)='.\x00', &(0x7f0000000080)='9p\x00', 0xff9f000000000000, &(0x7f0000000740)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}}) 21:38:33 executing program 4: set_mempolicy(0x8003, &(0x7f0000000300)=0x75f, 0x9) open(&(0x7f0000000300)='.\x00', 0x0, 0x0) r0 = syz_open_procfs(0x0, &(0x7f00000000c0)='fd/3\x00') r1 = syz_open_dev$swradio(&(0x7f0000000100)='/dev/swradio#\x00', 0x0, 0x2) mount$9p_fd(0x0, &(0x7f0000000300)='.\x00', &(0x7f0000000080)='9p\x00', 0xfeffffff, &(0x7f0000000740)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}}) 21:38:33 executing program 3: set_mempolicy(0x8003, &(0x7f0000000300)=0x75f, 0x9) open(&(0x7f0000000300)='.\x00', 0x0, 0x0) r0 = syz_open_procfs(0x0, &(0x7f00000000c0)='fd/3\x00') r1 = syz_open_dev$swradio(&(0x7f0000000100)='/dev/swradio#\x00', 0x0, 0x2) mount$9p_fd(0x0, &(0x7f0000000300)='.\x00', &(0x7f0000000080)='9p\x00', 0x900000000000000, &(0x7f0000000740)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}}) 21:38:33 executing program 1: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) r3 = syz_open_procfs(0x0, &(0x7f00000000c0)='fd/3\x00') mount$9p_fd(0x0, &(0x7f0000000300)='.\x00', &(0x7f0000000080)='9p\x00', 0x8000000, &(0x7f00000003c0)={'trans=fd,', {'rfdno', 0x3d, r3}, 0x2c, {'wfdno', 0x3d, r2}}) 21:38:33 executing program 2: set_mempolicy(0x8003, &(0x7f0000000300)=0x75f, 0x9) r0 = open(&(0x7f0000000300)='.\x00', 0x0, 0x0) symlinkat(&(0x7f0000000040)='\x13\x13w\xc5\xfc5\xd4\x14T\xd5\xd4\x1d)\xad\x1a`)Y\x81F\xe6\xbe\x16nA\xad\r\xbd@T\x03<\x9f3\xbb\xda\x82$\xa2\xf3\xd7r\xe7cnH\xb3<\xbfp\x83r\xe8\xf1\xb9\x93>\xc5\x12wC\xbe\"\x06 \x9e\xf0-\xf9\xcb\xf2\xf6\xe8\x80\xd38/\x00', r0, &(0x7f00000000c0)='./file0\x00') mkdirat(r0, &(0x7f0000000200)='\x13\x13w\xc5\xfc5\xd4\x14T\xd5\xd4\x1d)\xad\x1a`)Y\x81F\xe6\xbe\x16nA\xad\r\xbd@T\x03<\x9f3\xbb\xda\x82$\xa2\xf3\xd7r\xe7cnH\xb3<\xbfp\x83r\xe8\xf1\xb9\x93>\xc5\x12wC\xbe\"\x06 \x9e\xf0-\xf9\xcb\xf2\xf6\xe8\x80\xd38/\x00', 0x0) symlinkat(&(0x7f0000000340)='./file0/file0\x00', r0, &(0x7f0000000380)='\x13\x13w\xc5\xfc5\xd4\x14T\xd5\xd4\x1d)\xad\x1a`)Y\x81F\xe6\xbe\x16nA\xad\r\xbd@T\x03<\x9f3\xbb\xda\x82$\xa2\xf3\xd7r\xe7cnH\xb3<\xbfp\x83r\xe8\xf1\xb9\x93>\xc5\x12wC\xbe\"\x06 \x9e\xf0-\xf9\xcb\xf2\xf6\xe8\x80\xd38//file0\x00') r1 = open(&(0x7f0000000100)='.\x00', 0x0, 0x0) getdents64(0xffffffffffffffff, &(0x7f0000000440)=""/218, 0xda) renameat2(r1, &(0x7f0000000400)='./file0/file0\x00', r1, &(0x7f0000000000)='./file0\x00', 0x0) 21:38:33 executing program 4: set_mempolicy(0x8003, &(0x7f0000000300)=0x75f, 0x9) open(&(0x7f0000000300)='.\x00', 0x0, 0x0) r0 = syz_open_procfs(0x0, &(0x7f00000000c0)='fd/3\x00') r1 = syz_open_dev$swradio(&(0x7f0000000100)='/dev/swradio#\x00', 0x0, 0x2) mount$9p_fd(0x0, &(0x7f0000000300)='.\x00', &(0x7f0000000080)='9p\x00', 0xff000000, &(0x7f0000000740)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}}) 21:38:33 executing program 3: set_mempolicy(0x8003, &(0x7f0000000300)=0x75f, 0x9) open(&(0x7f0000000300)='.\x00', 0x0, 0x0) r0 = syz_open_procfs(0x0, &(0x7f00000000c0)='fd/3\x00') r1 = syz_open_dev$swradio(&(0x7f0000000100)='/dev/swradio#\x00', 0x0, 0x2) mount$9p_fd(0x0, &(0x7f0000000300)='.\x00', &(0x7f0000000080)='9p\x00', 0xa00000000000000, &(0x7f0000000740)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}}) 21:38:33 executing program 1: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) r3 = syz_open_procfs(0x0, &(0x7f00000000c0)='fd/3\x00') mount$9p_fd(0x0, &(0x7f0000000300)='.\x00', &(0x7f0000000080)='9p\x00', 0x9000000, &(0x7f00000003c0)={'trans=fd,', {'rfdno', 0x3d, r3}, 0x2c, {'wfdno', 0x3d, r2}}) 21:38:33 executing program 2: set_mempolicy(0x8003, &(0x7f0000000300)=0x75f, 0x9) r0 = open(&(0x7f0000000300)='.\x00', 0x0, 0x0) symlinkat(&(0x7f0000000040)='\x13\x13w\xc5\xfc5\xd4\x14T\xd5\xd4\x1d)\xad\x1a`)Y\x81F\xe6\xbe\x16nA\xad\r\xbd@T\x03<\x9f3\xbb\xda\x82$\xa2\xf3\xd7r\xe7cnH\xb3<\xbfp\x83r\xe8\xf1\xb9\x93>\xc5\x12wC\xbe\"\x06 \x9e\xf0-\xf9\xcb\xf2\xf6\xe8\x80\xd38/\x00', r0, &(0x7f00000000c0)='./file0\x00') mkdirat(r0, &(0x7f0000000200)='\x13\x13w\xc5\xfc5\xd4\x14T\xd5\xd4\x1d)\xad\x1a`)Y\x81F\xe6\xbe\x16nA\xad\r\xbd@T\x03<\x9f3\xbb\xda\x82$\xa2\xf3\xd7r\xe7cnH\xb3<\xbfp\x83r\xe8\xf1\xb9\x93>\xc5\x12wC\xbe\"\x06 \x9e\xf0-\xf9\xcb\xf2\xf6\xe8\x80\xd38/\x00', 0x0) symlinkat(&(0x7f0000000340)='./file0/file0\x00', r0, &(0x7f0000000380)='\x13\x13w\xc5\xfc5\xd4\x14T\xd5\xd4\x1d)\xad\x1a`)Y\x81F\xe6\xbe\x16nA\xad\r\xbd@T\x03<\x9f3\xbb\xda\x82$\xa2\xf3\xd7r\xe7cnH\xb3<\xbfp\x83r\xe8\xf1\xb9\x93>\xc5\x12wC\xbe\"\x06 \x9e\xf0-\xf9\xcb\xf2\xf6\xe8\x80\xd38//file0\x00') r1 = open(&(0x7f0000000100)='.\x00', 0x802, 0x0) renameat2(r1, &(0x7f0000000400)='./file0/file0\x00', r1, &(0x7f0000000000)='./file0\x00', 0x0) 21:38:33 executing program 5: set_mempolicy(0x8003, &(0x7f0000000300)=0x75f, 0x9) open(&(0x7f0000000300)='.\x00', 0x0, 0x0) r0 = syz_open_procfs(0x0, &(0x7f00000000c0)='fd/3\x00') r1 = syz_open_dev$swradio(&(0x7f0000000100)='/dev/swradio#\x00', 0x0, 0x2) mount$9p_fd(0x0, &(0x7f0000000300)='.\x00', &(0x7f0000000080)='9p\x00', 0xffff000000000000, &(0x7f0000000740)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}}) [ 253.152505][T17310] loop0: detected capacity change from 512 to 0 [ 253.203736][T17310] FAULT_INJECTION: forcing a failure. [ 253.203736][T17310] name failslab, interval 1, probability 0, space 0, times 0 21:38:33 executing program 4: set_mempolicy(0x8003, &(0x7f0000000300)=0x75f, 0x9) open(&(0x7f0000000300)='.\x00', 0x0, 0x0) r0 = syz_open_procfs(0x0, &(0x7f00000000c0)='fd/3\x00') r1 = syz_open_dev$swradio(&(0x7f0000000100)='/dev/swradio#\x00', 0x0, 0x2) mount$9p_fd(0x0, &(0x7f0000000300)='.\x00', &(0x7f0000000080)='9p\x00', 0xff9f0000, &(0x7f0000000740)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}}) [ 253.299830][T17310] CPU: 1 PID: 17310 Comm: syz-executor.0 Not tainted 5.11.0-syzkaller #0 [ 253.308288][T17310] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 253.318399][T17310] Call Trace: [ 253.321689][T17310] dump_stack+0x116/0x15d [ 253.326099][T17310] should_fail+0x23c/0x250 [ 253.330518][T17310] __should_failslab+0x81/0x90 [ 253.335338][T17310] ? prealloc_shrinker+0x5e/0x1b0 [ 253.340346][T17310] should_failslab+0x5/0x20 [ 253.344829][T17310] __kmalloc+0x59/0x360 [ 253.349042][T17310] prealloc_shrinker+0x5e/0x1b0 [ 253.353887][T17310] alloc_super+0x464/0x520 [ 253.358284][T17310] ? mount_bdev+0x290/0x290 [ 253.362771][T17310] sget+0x189/0x370 [ 253.366637][T17310] ? test_bdev_super+0x30/0x30 [ 253.371385][T17310] mount_bdev+0xd3/0x290 [ 253.375621][T17310] ? ext4_mount+0x40/0x40 [ 253.380103][T17310] ? ext4_errno_to_code+0x110/0x110 [ 253.385309][T17310] ext4_mount+0x2d/0x40 [ 253.389454][T17310] legacy_get_tree+0x70/0xc0 [ 253.394036][T17310] vfs_get_tree+0x4a/0x1a0 [ 253.398488][T17310] path_mount+0x11b6/0x1ca0 [ 253.402974][T17310] __se_sys_mount+0x23d/0x2e0 [ 253.407685][T17310] __x64_sys_mount+0x63/0x70 [ 253.412309][T17310] do_syscall_64+0x39/0x80 [ 253.416723][T17310] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 253.422598][T17310] RIP: 0033:0x4672ba [ 253.426472][T17310] Code: 48 c7 c2 bc ff ff ff f7 d8 64 89 02 b8 ff ff ff ff eb d2 e8 b8 04 00 00 0f 1f 84 00 00 00 00 00 49 89 ca b8 a5 00 00 00 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 253.446086][T17310] RSP: 002b:00007f8175ef9fa8 EFLAGS: 00000206 ORIG_RAX: 00000000000000a5 [ 253.454497][T17310] RAX: ffffffffffffffda RBX: 0000000020000200 RCX: 00000000004672ba [ 253.462460][T17310] RDX: 0000000020000000 RSI: 0000000020000100 RDI: 00007f8175efa000 [ 253.470412][T17310] RBP: 00007f8175efa040 R08: 00007f8175efa040 R09: 0000000020000000 [ 253.478450][T17310] R10: 0000000000000000 R11: 0000000000000206 R12: 0000000020000000 [ 253.486413][T17310] R13: 0000000020000100 R14: 00007f8175efa000 R15: 0000000020000040 21:38:33 executing program 0 (fault-call:0 fault-nth:70): syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x40000, 0x3, &(0x7f0000000200)=[{&(0x7f0000010000)="20000000000100000c000000d90000000f0000000100000000000000000000000020000000200000200000002cc4645f2cc4645f0100ffff53ef0100010000002cc4645f000000000000000001000000000000000b0000008000000038000000c20200006b0400000000000000000000000000000000000073797a6b616c6c6572000000000000002f746d702f73797a2d696d61676567656e3338363633343038350000000000000000000000000000000000000000000000000000000000000000000000000000000000000000010000000000000000000000000000000000000000000000000000000000d9ca5cac99fd4329af4dde786c1a5d13010040000c000000000000002cc4645f", 0x10c, 0x400}, {&(0x7f0000010200)="0500000000000000000000000000000000000000040100002b", 0x19, 0x560}, {&(0x7f0000010300)="000000000000000000000000000000000000000000000000000000001481910a040000001400000024", 0x29, 0x7e0}], 0x0, &(0x7f0000000040)={[{@usrjquota='usrjquota='}, {@data_err_abort='data_err=abort'}]}) 21:38:33 executing program 2: set_mempolicy(0x8003, &(0x7f0000000300)=0x75f, 0x9) r0 = open(&(0x7f0000000300)='.\x00', 0x0, 0x0) symlinkat(&(0x7f0000000040)='\x13\x13w\xc5\xfc5\xd4\x14T\xd5\xd4\x1d)\xad\x1a`)Y\x81F\xe6\xbe\x16nA\xad\r\xbd@T\x03<\x9f3\xbb\xda\x82$\xa2\xf3\xd7r\xe7cnH\xb3<\xbfp\x83r\xe8\xf1\xb9\x93>\xc5\x12wC\xbe\"\x06 \x9e\xf0-\xf9\xcb\xf2\xf6\xe8\x80\xd38/\x00', r0, &(0x7f00000000c0)='./file0\x00') mkdirat(r0, &(0x7f0000000200)='\x13\x13w\xc5\xfc5\xd4\x14T\xd5\xd4\x1d)\xad\x1a`)Y\x81F\xe6\xbe\x16nA\xad\r\xbd@T\x03<\x9f3\xbb\xda\x82$\xa2\xf3\xd7r\xe7cnH\xb3<\xbfp\x83r\xe8\xf1\xb9\x93>\xc5\x12wC\xbe\"\x06 \x9e\xf0-\xf9\xcb\xf2\xf6\xe8\x80\xd38/\x00', 0x0) symlinkat(&(0x7f0000000340)='./file0/file0\x00', r0, &(0x7f0000000380)='\x13\x13w\xc5\xfc5\xd4\x14T\xd5\xd4\x1d)\xad\x1a`)Y\x81F\xe6\xbe\x16nA\xad\r\xbd@T\x03<\x9f3\xbb\xda\x82$\xa2\xf3\xd7r\xe7cnH\xb3<\xbfp\x83r\xe8\xf1\xb9\x93>\xc5\x12wC\xbe\"\x06 \x9e\xf0-\xf9\xcb\xf2\xf6\xe8\x80\xd38//file0\x00') r1 = open(&(0x7f0000000100)='.\x00', 0x0, 0x0) renameat2(r1, &(0x7f0000000400)='./file0\x00', r1, &(0x7f0000000000)='./file0\x00', 0x5) symlink(&(0x7f0000000140)='./file0/file0\x00', &(0x7f0000000180)='\x13\x13w\xc5\xfc5\xd4\x14T\xd5\xd4\x1d)\xad\x1a`)Y\x81F\xe6\xbe\x16nA\xad\r\xbd@T\x03<\x9f3\xbb\xda\x82$\xa2\xf3\xd7r\xe7cnH\xb3<\xbfp\x83r\xe8\xf1\xb9\x93>\xc5\x12wC\xbe\"\x06 \x9e\xf0-\xf9\xcb\xf2\xf6\xe8\x80\xd38//file0\x00') openat2$dir(0xffffffffffffff9c, &(0x7f0000000280)='./file0\x00', &(0x7f00000002c0)={0x131602, 0x3, 0x1}, 0x18) 21:38:33 executing program 5: set_mempolicy(0x8003, &(0x7f0000000300)=0x75f, 0x9) open(&(0x7f0000000300)='.\x00', 0x0, 0x0) r0 = syz_open_procfs(0x0, &(0x7f00000000c0)='fd/3\x00') r1 = syz_open_dev$swradio(&(0x7f0000000100)='/dev/swradio#\x00', 0x0, 0x2) mount$9p_fd(0x0, &(0x7f0000000300)='.\x00', &(0x7f0000000080)='9p\x00', 0xffffffff00000000, &(0x7f0000000740)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}}) 21:38:33 executing program 3: set_mempolicy(0x8003, &(0x7f0000000300)=0x75f, 0x9) open(&(0x7f0000000300)='.\x00', 0x0, 0x0) r0 = syz_open_procfs(0x0, &(0x7f00000000c0)='fd/3\x00') r1 = syz_open_dev$swradio(&(0x7f0000000100)='/dev/swradio#\x00', 0x0, 0x2) mount$9p_fd(0x0, &(0x7f0000000300)='.\x00', &(0x7f0000000080)='9p\x00', 0xb00000000000000, &(0x7f0000000740)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}}) 21:38:33 executing program 4: set_mempolicy(0x8003, &(0x7f0000000300)=0x75f, 0x9) open(&(0x7f0000000300)='.\x00', 0x0, 0x0) r0 = syz_open_procfs(0x0, &(0x7f00000000c0)='fd/3\x00') r1 = syz_open_dev$swradio(&(0x7f0000000100)='/dev/swradio#\x00', 0x0, 0x2) mount$9p_fd(0x0, &(0x7f0000000300)='.\x00', &(0x7f0000000080)='9p\x00', 0xffff0000, &(0x7f0000000740)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}}) 21:38:33 executing program 1: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) r3 = syz_open_procfs(0x0, &(0x7f00000000c0)='fd/3\x00') mount$9p_fd(0x0, &(0x7f0000000300)='.\x00', &(0x7f0000000080)='9p\x00', 0xa000000, &(0x7f00000003c0)={'trans=fd,', {'rfdno', 0x3d, r3}, 0x2c, {'wfdno', 0x3d, r2}}) [ 253.767374][T17356] loop0: detected capacity change from 512 to 0 [ 253.781429][T17356] FAULT_INJECTION: forcing a failure. [ 253.781429][T17356] name failslab, interval 1, probability 0, space 0, times 0 [ 253.796883][T17356] CPU: 0 PID: 17356 Comm: syz-executor.0 Not tainted 5.11.0-syzkaller #0 [ 253.806003][T17356] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 253.816113][T17356] Call Trace: [ 253.819387][T17356] dump_stack+0x116/0x15d [ 253.823721][T17356] should_fail+0x23c/0x250 [ 253.828153][T17356] __should_failslab+0x81/0x90 [ 253.832920][T17356] ? prealloc_shrinker+0x5e/0x1b0 [ 253.837990][T17356] should_failslab+0x5/0x20 [ 253.842558][T17356] __kmalloc+0x59/0x360 [ 253.846713][T17356] prealloc_shrinker+0x5e/0x1b0 [ 253.851599][T17356] alloc_super+0x464/0x520 [ 253.856145][T17356] ? mount_bdev+0x290/0x290 [ 253.860638][T17356] sget+0x189/0x370 [ 253.864500][T17356] ? test_bdev_super+0x30/0x30 [ 253.869250][T17356] mount_bdev+0xd3/0x290 [ 253.873474][T17356] ? ext4_mount+0x40/0x40 [ 253.877784][T17356] ? ext4_errno_to_code+0x110/0x110 [ 253.882963][T17356] ext4_mount+0x2d/0x40 [ 253.887098][T17356] legacy_get_tree+0x70/0xc0 [ 253.891670][T17356] vfs_get_tree+0x4a/0x1a0 [ 253.896070][T17356] path_mount+0x11b6/0x1ca0 [ 253.900557][T17356] __se_sys_mount+0x23d/0x2e0 [ 253.905214][T17356] __x64_sys_mount+0x63/0x70 [ 253.909838][T17356] do_syscall_64+0x39/0x80 [ 253.914257][T17356] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 253.920135][T17356] RIP: 0033:0x4672ba [ 253.924008][T17356] Code: 48 c7 c2 bc ff ff ff f7 d8 64 89 02 b8 ff ff ff ff eb d2 e8 b8 04 00 00 0f 1f 84 00 00 00 00 00 49 89 ca b8 a5 00 00 00 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 253.943597][T17356] RSP: 002b:00007f8175ef9fa8 EFLAGS: 00000206 ORIG_RAX: 00000000000000a5 [ 253.951995][T17356] RAX: ffffffffffffffda RBX: 0000000020000200 RCX: 00000000004672ba [ 253.959944][T17356] RDX: 0000000020000000 RSI: 0000000020000100 RDI: 00007f8175efa000 21:38:33 executing program 4: set_mempolicy(0x8003, &(0x7f0000000300)=0x75f, 0x9) open(&(0x7f0000000300)='.\x00', 0x0, 0x0) r0 = syz_open_procfs(0x0, &(0x7f00000000c0)='fd/3\x00') r1 = syz_open_dev$swradio(&(0x7f0000000100)='/dev/swradio#\x00', 0x0, 0x2) mount$9p_fd(0x0, &(0x7f0000000300)='.\x00', &(0x7f0000000080)='9p\x00', 0xfffffe00, &(0x7f0000000740)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}}) 21:38:33 executing program 5: set_mempolicy(0x8003, &(0x7f0000000300)=0x75f, 0x9) open(&(0x7f0000000300)='.\x00', 0x0, 0x0) r0 = syz_open_procfs(0x0, &(0x7f00000000c0)='fd/3\x00') r1 = syz_open_dev$swradio(&(0x7f0000000100)='/dev/swradio#\x00', 0x0, 0x2) mount$9p_fd(0x0, &(0x7f0000000300)='.\x00', &(0x7f0000000080)='9p\x00', 0xffffffffffffff0f, &(0x7f0000000740)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}}) 21:38:33 executing program 2: set_mempolicy(0x8003, &(0x7f0000000300)=0x75f, 0x9) r0 = open(&(0x7f00000002c0)='./file1\x00', 0x430742, 0x4) symlinkat(&(0x7f0000000040)='\x13\x13w\xc5\xfc5\xd4\x14T\xd5\xd4\x1d)\xad\x1a`)Y\x81F\xe6\xbe\x16nA\xad\r\xbd@T\x03<\x9f3\xbb\xda\x82$\xa2\xf3\xd7r\xe7cnH\xb3<\xbfp\x83r\xe8\xf1\xb9\x93>\xc5\x12wC\xbe\"\x06 \x9e\xf0-\xf9\xcb\xf2\xf6\xe8\x80\xd38/\x00', r0, &(0x7f00000000c0)='./file0\x00') r1 = syz_open_dev$swradio(&(0x7f0000000100)='/dev/swradio#\x00', 0x0, 0x2) mount$9p_fd(0x0, &(0x7f0000000300)='.\x00', &(0x7f0000000080)='9p\x00', 0x0, &(0x7f0000000740)={'trans=fd,', {'rfdno'}, 0x2c, {'wfdno', 0x3d, r1}}) write$P9_RVERSION(0xffffffffffffffff, &(0x7f00000001c0)={0x15, 0x65, 0xffff, 0x400, 0x8, '9P2000.L'}, 0x15) mkdirat(r0, &(0x7f0000000200)='\x13\x13w\xc5\xfc5\xd4\x14T\xd5\xd4\x1d)\xad\x1a`)Y\x81F\xe6\xbe\x16nA\xad\r\xbd@T\x03<\x9f3\xbb\xda\x82$\xa2\xf3\xd7r\xe7cnH\xb3<\xbfp\x83r\xe8\xf1\xb9\x93>\xc5\x12wC\xbe\"\x06 \x9e\xf0-\xf9\xcb\xf2\xf6\xe8\x80\xd38/\x00', 0x0) r2 = syz_open_procfs(0x0, &(0x7f00000000c0)='fd/3\x00') r3 = syz_open_dev$swradio(&(0x7f0000000100)='/dev/swradio#\x00', 0x0, 0x2) mount$9p_fd(0x0, &(0x7f0000000300)='.\x00', &(0x7f0000000080)='9p\x00', 0x0, &(0x7f0000000740)={'trans=fd,', {'rfdno', 0x3d, r2}, 0x2c, {'wfdno', 0x3d, r3}}) unlinkat(r2, &(0x7f0000000280)='./file0/file0\x00', 0x200) symlinkat(&(0x7f0000000340)='./file0/file0\x00', r0, &(0x7f0000000380)='\x13\x13w\xc5\xfc5\xd4\x14T\xd5\xd4\x1d)\xad\x1a`)Y\x81F\xe6\xbe\x16nA\xad\r\xbd@T\x03<\x9f3\xbb\xda\x82$\xa2\xf3\xd7r\xe7cnH\xb3<\xbfp\x83r\xe8\xf1\xb9\x93>\xc5\x12wC\xbe\"\x06 \x9e\xf0-\xf9\xcb\xf2\xf6\xe8\x80\xd38//file0\x00') r4 = open(&(0x7f0000000100)='.\x00', 0x0, 0x0) renameat2(r4, &(0x7f0000000140)='\x13\x13w\xc5\xfc5\xd4\x14T\xd5\xd4\x1d)\xad\x1a`)Y\x81F\xe6\xbe\x16nA\xad\r\xbd@T\x03<\x9f3\xbb\xda\x82$\xa2\xf3\xd7r\xe7cnH\xb3<\xbfp\x83r\xe8\xf1\xb9\x93>\xc5\x12wC\xbe\"\x06 \x9e\xf0-\xf9\xcb\xf2\xf6\xe8\x80\xd38//file0\x00', r4, &(0x7f0000000000)='./file0\x00', 0x0) 21:38:33 executing program 3: set_mempolicy(0x8003, &(0x7f0000000300)=0x75f, 0x9) open(&(0x7f0000000300)='.\x00', 0x0, 0x0) r0 = syz_open_procfs(0x0, &(0x7f00000000c0)='fd/3\x00') r1 = syz_open_dev$swradio(&(0x7f0000000100)='/dev/swradio#\x00', 0x0, 0x2) mount$9p_fd(0x0, &(0x7f0000000300)='.\x00', &(0x7f0000000080)='9p\x00', 0xc00000000000000, &(0x7f0000000740)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}}) [ 253.967897][T17356] RBP: 00007f8175efa040 R08: 00007f8175efa040 R09: 0000000020000000 [ 253.975890][T17356] R10: 0000000000000000 R11: 0000000000000206 R12: 0000000020000000 [ 253.983842][T17356] R13: 0000000020000100 R14: 00007f8175efa000 R15: 0000000020000040 21:38:34 executing program 0 (fault-call:0 fault-nth:71): syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x40000, 0x3, &(0x7f0000000200)=[{&(0x7f0000010000)="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", 0x10c, 0x400}, {&(0x7f0000010200)="0500000000000000000000000000000000000000040100002b", 0x19, 0x560}, {&(0x7f0000010300)="000000000000000000000000000000000000000000000000000000001481910a040000001400000024", 0x29, 0x7e0}], 0x0, &(0x7f0000000040)={[{@usrjquota='usrjquota='}, {@data_err_abort='data_err=abort'}]}) 21:38:34 executing program 4: set_mempolicy(0x8003, &(0x7f0000000300)=0x75f, 0x9) open(&(0x7f0000000300)='.\x00', 0x0, 0x0) r0 = syz_open_procfs(0x0, &(0x7f00000000c0)='fd/3\x00') r1 = syz_open_dev$swradio(&(0x7f0000000100)='/dev/swradio#\x00', 0x0, 0x2) mount$9p_fd(0x0, &(0x7f0000000300)='.\x00', &(0x7f0000000080)='9p\x00', 0xffffff8c, &(0x7f0000000740)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}}) 21:38:34 executing program 2: set_mempolicy(0x8003, &(0x7f0000000300)=0x75f, 0x9) r0 = open(&(0x7f0000000300)='.\x00', 0x0, 0x0) symlinkat(&(0x7f0000000040)='\x13\x13w\xc5\xfc5\xd4\x14T\xd5\xd4\x1d)\xad\x1a`)Y\x81F\xe6\xbe\x16nA\xad\r\xbd@T\x03<\x9f3\xbb\xda\x82$\xa2\xf3\xd7r\xe7cnH\xb3<\xbfp\x83r\xe8\xf1\xb9\x93>\xc5\x12wC\xbe\"\x06 \x9e\xf0-\xf9\xcb\xf2\xf6\xe8\x80\xd38/\x00', r0, &(0x7f00000000c0)='./file0\x00') mkdirat(r0, &(0x7f0000000200)='\x13\x13w\xc5\xfc5\xd4\x14T\xd5\xd4\x1d)\xad\x1a`)Y\x81F\xe6\xbe\x16nA\xad\r\xbd@T\x03<\x9f3\xbb\xda\x82$\xa2\xf3\xd7r\xe7cnH\xb3<\xbfp\x83r\xe8\xf1\xb9\x93>\xc5\x12wC\xbe\"\x06 \x9e\xf0-\xf9\xcb\xf2\xf6\xe8\x80\xd38/\x00', 0x0) symlinkat(&(0x7f0000000140)='\x13\x13w\xc5\xfc5\xd4\x14T\xd5\xd4\x1d)\xad\x1a`)Y\x81F\xe6\xbe\x16nA\xad\r\xbd@T\x03<\x9f3\xbb\xda\x82$\xa2\xf3\xd7r\xe7cnH\xb3<\xbfp\x83r\xe8\xf1\xb9\x93>\xc5\x12wC\xbe\"\x06 \x9e\xf0-\xf9\xcb\xf2\xf6\xe8\x80\xd38/\x00', r0, &(0x7f0000000380)='\x13\x13w\xc5\xfc5\xd4\x14T\xd5\xd4\x1d)\xad\x1a`)Y\x81F\xe6\xbe\x16nA\xad\r\xbd@T\x03<\x9f3\xbb\xda\x82$\xa2\xf3\xd7r\xe7cnH\xb3<\xbfp\x83r\xe8\xf1\xb9\x93>\xc5\x12wC\xbe\"\x06 \x9e\xf0-\xf9\xcb\xf2\xf6\xe8\x80\xd38//file0\x00') r1 = open(&(0x7f0000000100)='.\x00', 0x0, 0x0) renameat2(r1, &(0x7f0000000400)='./file0/file0\x00', r1, &(0x7f0000000000)='./file0\x00', 0x0) 21:38:34 executing program 5: set_mempolicy(0x8003, &(0x7f0000000300)=0x75f, 0x9) open(&(0x7f0000000300)='.\x00', 0x0, 0x0) r0 = syz_open_procfs(0x0, &(0x7f00000000c0)='fd/3\x00') r1 = syz_open_dev$swradio(&(0x7f0000000100)='/dev/swradio#\x00', 0x0, 0x2) mount$9p_fd(0x0, &(0x7f0000000300)='.\x00', &(0x7f0000000080)='9p\x00', 0x0, &(0x7f0000000740)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}}) [ 254.053228][T17375] 9pnet: Insufficient options for proto=fd [ 254.071303][T17379] 9pnet: Insufficient options for proto=fd 21:38:34 executing program 3: set_mempolicy(0x8003, &(0x7f0000000300)=0x75f, 0x9) open(&(0x7f0000000300)='.\x00', 0x0, 0x0) r0 = syz_open_procfs(0x0, &(0x7f00000000c0)='fd/3\x00') r1 = syz_open_dev$swradio(&(0x7f0000000100)='/dev/swradio#\x00', 0x0, 0x2) mount$9p_fd(0x0, &(0x7f0000000300)='.\x00', &(0x7f0000000080)='9p\x00', 0xd00000000000000, &(0x7f0000000740)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}}) [ 254.116054][T17384] loop0: detected capacity change from 512 to 0 [ 254.123567][T17384] FAULT_INJECTION: forcing a failure. [ 254.123567][T17384] name failslab, interval 1, probability 0, space 0, times 0 [ 254.144044][T17384] CPU: 1 PID: 17384 Comm: syz-executor.0 Not tainted 5.11.0-syzkaller #0 [ 254.152484][T17384] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 254.162538][T17384] Call Trace: [ 254.165970][T17384] dump_stack+0x116/0x15d [ 254.170312][T17384] should_fail+0x23c/0x250 [ 254.174734][T17384] __should_failslab+0x81/0x90 [ 254.179505][T17384] ? prealloc_shrinker+0x5e/0x1b0 [ 254.184584][T17384] should_failslab+0x5/0x20 [ 254.189134][T17384] __kmalloc+0x59/0x360 [ 254.193324][T17384] prealloc_shrinker+0x5e/0x1b0 [ 254.198219][T17384] alloc_super+0x464/0x520 [ 254.202639][T17384] ? mount_bdev+0x290/0x290 [ 254.207158][T17384] sget+0x189/0x370 [ 254.210969][T17384] ? test_bdev_super+0x30/0x30 21:38:34 executing program 4: set_mempolicy(0x8003, &(0x7f0000000300)=0x75f, 0x9) open(&(0x7f0000000300)='.\x00', 0x0, 0x0) r0 = syz_open_procfs(0x0, &(0x7f00000000c0)='fd/3\x00') r1 = syz_open_dev$swradio(&(0x7f0000000100)='/dev/swradio#\x00', 0x0, 0x2) mount$9p_fd(0x0, &(0x7f0000000300)='.\x00', &(0x7f0000000080)='9p\x00', 0xfffffff6, &(0x7f0000000740)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}}) 21:38:34 executing program 2: set_mempolicy(0x8003, &(0x7f0000000300)=0x75f, 0x9) set_mempolicy(0x2, &(0x7f0000000140)=0x4, 0xfff) r0 = open(&(0x7f0000000180)='.\x00', 0x0, 0x0) r1 = syz_mount_image$v7(&(0x7f0000000040)='v7\x00', &(0x7f0000000280)='./file0/file0\x00', 0x6ac, 0x5, &(0x7f0000000700)=[{&(0x7f00000004c0)="dab882f92dc923dbdbb9cc1bb2f88705146988d5fb0ebeaa0a38d2812bbe8284f7c8b16e570ee1a449b311aea8dccf0d7b179e2aedd2e3b108332ded0481e72f15f8f847e5294cefb1ca5931ade538cc0d979b02da018508344264015b3932026a49e7ec5dab53593ced1b97b4cfad2c91f3efa0a7205489ab83", 0x7a, 0xc486}, {&(0x7f0000000540)="62edb50384f2ec3a33d9150dd590c2ff76fd09679fffc8fa7bb2bc90390f944ee16f1ac11de450b51fc0c7a207f47ff04aed8f3aaf08231171956dcec31afc9cd3b7df538207af4ae4d2df36881a7b30d61c326e8627c3f6e57a718a07d31fc7a4008a6a826a30e777875f4ece96af15ecd6b4466887415f33ed186a1c755a1eb678a7887eddd7aab043fdb335dcf80ecaf62719", 0x94, 0x1ff}, {&(0x7f0000000600)="25944fac1eee50e99d1c6240089a02c0c2936913738b0a816d401a7f7a76457e0cf278cb906d877b253c404b9123cced6723734d9dd7cf8cd2862c646868e5d8ce0eb30ddf306eafe775c35988e211360ab73f3511196de7ce1824c1d45117e3d3fb4b839bd550eef804fd6f13d6e364aa93593e8d840722", 0x78, 0x80000001}, {&(0x7f00000002c0)="7cfb3aa886a46a9f66d2b189c25c27c36237015a4727bea8cb", 0x19, 0x1}, {&(0x7f0000000680)="f675bb0fa091c2bb6dc705c0f651d43ff792b0f678823c6e46cb936377fc0b41a9b29307dede848cb6d97c722cec7e2cab19c5960ab56a3297562d54c178227c3a34068b3862dbebcb157a79b7cb571cfa65e8b56826d30987bad049ea", 0x5d, 0xf6cd}], 0x8000, &(0x7f0000000780)={[], [{@appraise='appraise'}, {@smackfsdef={'smackfsdef', 0x3d, '-&'}}, {@hash='hash'}, {@subj_user={'subj_user', 0x3d, '+'}}, {@fowner_eq={'fowner', 0x3d, 0xffffffffffffffff}}, {@fowner_lt={'fowner<', 0xee01}}, {@smackfsdef={'smackfsdef', 0x3d, '@,&l\']('}}, {@seclabel='seclabel'}, {@uid_lt={'uid<', 0xee00}}]}) symlinkat(&(0x7f0000000080)='\x13\x13w\xc5\xfc5\xd4\x14T\xd5\xd4\x1d)\xad\x1a`)Y\x81F\xe6\xbe\x16nA\xad\r\xbd@T\x03<\x9f3\xbb\xda\x82$\xa2\xf3\xd7r\xe7cnH\xb3<\xbfp\x83r\xe8\xf1\xb9\x93>\xc5\x12wC\xbe\"\x06 \x9e\xf0-\xf9\xcb\xf2\xf6\xe8\x80\xd38/\x00', r1, &(0x7f0000000840)='\x13\x13w\xc5\xfc5\xd4\x14T\xd5\xd4\x1d)\xad\x1a`)Y\x81F\xe6\xbe\x16nA\xad\r\xbd@T\x03<\x9f3\xbb\xda\x82$\xa2\xf3\xd7r\xe7cnH\xb3<\xbfp\x83r\xe8\xf1\xb9\x93>\xc5\x12wC\xbe\"\x06 \x9e\xf0-\xf9\xcb\xf2\xf6\xe8\x80\xd38//file0\x00') mkdirat(r0, &(0x7f0000000200)='\x13\x13w\xc5\xfc5\xd4\x14T\xd5\xd4\x1d)\xad\x1a`)Y\x81F\xe6\xbe\x16nA\xad\r\xbd@T\x03<\x9f3\xbb\xda\x82$\xa2\xf3\xd7r\xe7cnH\xb3<\xbfp\x83r\xe8\xf1\xb9\x93>\xc5\x12wC\xbe\"\x06 \x9e\xf0-\xf9\xcb\xf2\xf6\xe8\x80\xd38/\x00', 0x0) symlinkat(&(0x7f0000000340)='./file0/file0\x00', r0, &(0x7f0000000380)='\x13\x13w\xc5\xfc5\xd4\x14T\xd5\xd4\x1d)\xad\x1a`)Y\x81F\xe6\xbe\x16nA\xad\r\xbd@T\x03<\x9f3\xbb\xda\x82$\xa2\xf3\xd7r\xe7cnH\xb3<\xbfp\x83r\xe8\xf1\xb9\x93>\xc5\x12wC\xbe\"\x06 \x9e\xf0-\xf9\xcb\xf2\xf6\xe8\x80\xd38//file0\x00') r2 = open(&(0x7f0000000100)='.\x00', 0x0, 0x0) renameat2(r2, &(0x7f0000000400)='./file0/file0\x00', r2, &(0x7f0000000000)='./file0\x00', 0x0) sendfile(r0, 0xffffffffffffffff, &(0x7f00000001c0)=0xffff, 0x9) [ 254.215730][T17384] mount_bdev+0xd3/0x290 [ 254.220149][T17384] ? ext4_mount+0x40/0x40 [ 254.224566][T17384] ? ext4_errno_to_code+0x110/0x110 [ 254.229883][T17384] ext4_mount+0x2d/0x40 [ 254.234090][T17384] legacy_get_tree+0x70/0xc0 [ 254.238758][T17384] vfs_get_tree+0x4a/0x1a0 [ 254.243182][T17384] path_mount+0x11b6/0x1ca0 [ 254.247767][T17384] __se_sys_mount+0x23d/0x2e0 [ 254.252440][T17384] __x64_sys_mount+0x63/0x70 [ 254.257113][T17384] do_syscall_64+0x39/0x80 [ 254.262250][T17384] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 254.269160][T17384] RIP: 0033:0x4672ba [ 254.273489][T17384] Code: 48 c7 c2 bc ff ff ff f7 d8 64 89 02 b8 ff ff ff ff eb d2 e8 b8 04 00 00 0f 1f 84 00 00 00 00 00 49 89 ca b8 a5 00 00 00 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 254.293342][T17384] RSP: 002b:00007f8175ef9fa8 EFLAGS: 00000206 ORIG_RAX: 00000000000000a5 [ 254.301750][T17384] RAX: ffffffffffffffda RBX: 0000000020000200 RCX: 00000000004672ba [ 254.310414][T17384] RDX: 0000000020000000 RSI: 0000000020000100 RDI: 00007f8175efa000 [ 254.318415][T17384] RBP: 00007f8175efa040 R08: 00007f8175efa040 R09: 0000000020000000 [ 254.327234][T17384] R10: 0000000000000000 R11: 0000000000000206 R12: 0000000020000000 [ 254.335206][T17384] R13: 0000000020000100 R14: 00007f8175efa000 R15: 0000000020000040 21:38:34 executing program 1: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) r3 = syz_open_procfs(0x0, &(0x7f00000000c0)='fd/3\x00') mount$9p_fd(0x0, &(0x7f0000000300)='.\x00', &(0x7f0000000080)='9p\x00', 0xb000000, &(0x7f00000003c0)={'trans=fd,', {'rfdno', 0x3d, r3}, 0x2c, {'wfdno', 0x3d, r2}}) [ 254.395014][T17407] loop2: detected capacity change from 264192 to 0 21:38:34 executing program 3: set_mempolicy(0x8003, &(0x7f0000000300)=0x75f, 0x9) open(&(0x7f0000000300)='.\x00', 0x0, 0x0) r0 = syz_open_procfs(0x0, &(0x7f00000000c0)='fd/3\x00') r1 = syz_open_dev$swradio(&(0x7f0000000100)='/dev/swradio#\x00', 0x0, 0x2) mount$9p_fd(0x0, &(0x7f0000000300)='.\x00', &(0x7f0000000080)='9p\x00', 0xe00000000000000, &(0x7f0000000740)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}}) 21:38:34 executing program 5: set_mempolicy(0x8003, &(0x7f0000000300)=0x75f, 0x9) open(&(0x7f0000000300)='.\x00', 0x0, 0x0) r0 = syz_open_procfs(0x0, &(0x7f00000000c0)='fd/3\x00') r1 = syz_open_dev$swradio(&(0x7f0000000100)='/dev/swradio#\x00', 0x0, 0x2) mount$9p_fd(0x0, &(0x7f0000000300)='.\x00', &(0x7f0000000080)='9p\x00', 0x0, &(0x7f0000000740)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}, 0x2c, {[], [], 0x2}}) 21:38:34 executing program 4: set_mempolicy(0x8003, &(0x7f0000000300)=0x75f, 0x9) open(&(0x7f0000000300)='.\x00', 0x0, 0x0) r0 = syz_open_procfs(0x0, &(0x7f00000000c0)='fd/3\x00') r1 = syz_open_dev$swradio(&(0x7f0000000100)='/dev/swradio#\x00', 0x0, 0x2) mount$9p_fd(0x0, &(0x7f0000000300)='.\x00', &(0x7f0000000080)='9p\x00', 0xfffffffe, &(0x7f0000000740)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}}) 21:38:34 executing program 0 (fault-call:0 fault-nth:72): syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x40000, 0x3, &(0x7f0000000200)=[{&(0x7f0000010000)="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", 0x10c, 0x400}, {&(0x7f0000010200)="0500000000000000000000000000000000000000040100002b", 0x19, 0x560}, {&(0x7f0000010300)="000000000000000000000000000000000000000000000000000000001481910a040000001400000024", 0x29, 0x7e0}], 0x0, &(0x7f0000000040)={[{@usrjquota='usrjquota='}, {@data_err_abort='data_err=abort'}]}) 21:38:34 executing program 5: set_mempolicy(0x8003, &(0x7f0000000300)=0x75f, 0x9) open(&(0x7f0000000300)='.\x00', 0x0, 0x0) r0 = syz_open_procfs(0x0, &(0x7f00000000c0)='fd/3\x00') r1 = syz_open_dev$swradio(&(0x7f0000000100)='/dev/swradio#\x00', 0x0, 0x2) mount$9p_fd(0x0, &(0x7f0000000300)='.\x00', &(0x7f0000000080)='9p\x00', 0x0, &(0x7f0000000740)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}, 0x2c, {[], [], 0x3}}) 21:38:34 executing program 2: set_mempolicy(0x8003, &(0x7f0000000300)=0x75f, 0x9) r0 = open(&(0x7f0000000300)='.\x00', 0x0, 0x0) symlinkat(&(0x7f0000000040)='\x13\x13w\xc5\xfc5\xd4\x14T\xd5\xd4\x1d)\xad\x1a`)Y\x81F\xe6\xbe\x16nA\xad\r\xbd@T\x03<\x9f3\xbb\xda\x82$\xa2\xf3\xd7r\xe7cnH\xb3<\xbfp\x83r\xe8\xf1\xb9\x93>\xc5\x12wC\xbe\"\x06 \x9e\xf0-\xf9\xcb\xf2\xf6\xe8\x80\xd38/\x00', r0, &(0x7f00000000c0)='./file0\x00') sendmsg$TCPDIAG_GETSOCK(r0, &(0x7f00000001c0)={&(0x7f0000000140)={0x10, 0x0, 0x0, 0x8}, 0xc, &(0x7f0000000180)={&(0x7f0000000440)={0x11f4, 0x12, 0x100, 0x70bd2a, 0x25dfdbfe, {0x1a, 0xff, 0x1f, 0x7f, {0x4e20, 0x4e21, [0x9, 0xd621, 0x7, 0x7fff], [0xb2, 0x1, 0x9, 0x400], 0x0, [0x6e, 0x5]}, 0x40, 0xbbf}, [@INET_DIAG_REQ_BYTECODE={0x39, 0x1, "4940696c6ac96fb6945b744d8038e33d93b3682bd4dab96bbd1870b8db66f0586466e539f5168ed0d990ccfbd6dd450eac6e05f143"}, @INET_DIAG_REQ_BYTECODE={0x1004, 0x1, "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"}, @INET_DIAG_REQ_BYTECODE={0x53, 0x1, "fee9ebee2b1ac7bafa7351eee1efefa2f614ea96ffc813f7256730ea93df795e0911c7fc55966d71384551dd666990847debefe5d64601d8c2d802d5105bc75b379d828a82d9537a9d9f42961a45c4"}, @INET_DIAG_REQ_BYTECODE={0x9f, 0x1, "972b93dce59b4f3794acf65ebee34b7d86d1e1dbc7877c71788dcde38e4a12214fd432168acdc3900819e5f9d1be868bd7d5854bbada04217c197fb7f75295daa7a37d633bfbfa3b36c2f64d17dc470c155142ece05a5aa7f091a655cfc25935f4f7b702c0140c4a60ade5461cd2e4aeb7d25fa8ebc03c28caf808cb32ae0948f83c9c601c807084041acd7c6c818d96bde1760a5ca10be3ea94a5"}, @INET_DIAG_REQ_BYTECODE={0x4}, @INET_DIAG_REQ_BYTECODE={0x6f, 0x1, "db4dcb8c28581534f9bc5e6fe4c2c8dc00cbd80ec5997e53223ab0046f813c4115f670258f90e89e4f09cf0104c9383bf82094d9f636585aa55f7dacc8e3674bf814540a5b0a65a7d09815c7369c59282817f52e6b061d7c96319d8b552b08bac60833b5b7fba816af9ebf"}]}, 0x11f4}, 0x1, 0x0, 0x0, 0x4001}, 0x0) mkdirat(r0, &(0x7f0000000200)='\x13\x13w\xc5\xfc5\xd4\x14T\xd5\xd4\x1d)\xad\x1a`)Y\x81F\xe6\xbe\x16nA\xad\r\xbd@T\x03<\x9f3\xbb\xda\x82$\xa2\xf3\xd7r\xe7cnH\xb3<\xbfp\x83r\xe8\xf1\xb9\x93>\xc5\x12wC\xbe\"\x06 \x9e\xf0-\xf9\xcb\xf2\xf6\xe8\x80\xd38/\x00', 0x0) symlinkat(&(0x7f0000000340)='./file0/file0\x00', r0, &(0x7f0000000380)='\x13\x13w\xc5\xfc5\xd4\x14T\xd5\xd4\x1d)\xad\x1a`)Y\x81F\xe6\xbe\x16nA\xad\r\xbd@T\x03<\x9f3\xbb\xda\x82$\xa2\xf3\xd7r\xe7cnH\xb3<\xbfp\x83r\xe8\xf1\xb9\x93>\xc5\x12wC\xbe\"\x06 \x9e\xf0-\xf9\xcb\xf2\xf6\xe8\x80\xd38//file0\x00') r1 = open(&(0x7f0000000100)='.\x00', 0x0, 0x0) renameat2(r1, &(0x7f0000000400)='./file0/file0\x00', r1, &(0x7f0000000000)='./file0\x00', 0x0) 21:38:34 executing program 1: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) r3 = syz_open_procfs(0x0, &(0x7f00000000c0)='fd/3\x00') mount$9p_fd(0x0, &(0x7f0000000300)='.\x00', &(0x7f0000000080)='9p\x00', 0xc000000, &(0x7f00000003c0)={'trans=fd,', {'rfdno', 0x3d, r3}, 0x2c, {'wfdno', 0x3d, r2}}) 21:38:34 executing program 3: set_mempolicy(0x8003, &(0x7f0000000300)=0x75f, 0x9) open(&(0x7f0000000300)='.\x00', 0x0, 0x0) r0 = syz_open_procfs(0x0, &(0x7f00000000c0)='fd/3\x00') r1 = syz_open_dev$swradio(&(0x7f0000000100)='/dev/swradio#\x00', 0x0, 0x2) mount$9p_fd(0x0, &(0x7f0000000300)='.\x00', &(0x7f0000000080)='9p\x00', 0xfffffffffffffff, &(0x7f0000000740)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}}) [ 254.579746][T17436] loop0: detected capacity change from 512 to 0 [ 254.619158][T17436] FAULT_INJECTION: forcing a failure. 21:38:34 executing program 4: set_mempolicy(0x8003, &(0x7f0000000300)=0x75f, 0x9) open(&(0x7f0000000300)='.\x00', 0x0, 0x0) r0 = syz_open_procfs(0x0, &(0x7f00000000c0)='fd/3\x00') r1 = syz_open_dev$swradio(&(0x7f0000000100)='/dev/swradio#\x00', 0x0, 0x2) mount$9p_fd(0x0, &(0x7f0000000300)='.\x00', &(0x7f0000000080)='9p\x00', 0x8000000000, &(0x7f0000000740)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}}) [ 254.619158][T17436] name failslab, interval 1, probability 0, space 0, times 0 [ 254.632092][T17436] CPU: 0 PID: 17436 Comm: syz-executor.0 Not tainted 5.11.0-syzkaller #0 [ 254.640525][T17436] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 254.650585][T17436] Call Trace: [ 254.653881][T17436] dump_stack+0x116/0x15d [ 254.658215][T17436] should_fail+0x23c/0x250 [ 254.662631][T17436] __should_failslab+0x81/0x90 [ 254.667406][T17436] should_failslab+0x5/0x20 [ 254.671893][T17436] kmem_cache_alloc_node_trace+0x4b/0x2e0 [ 254.677602][T17436] ? __kmalloc_node+0x30/0x40 [ 254.682265][T17436] __kmalloc_node+0x30/0x40 [ 254.686754][T17436] kvmalloc_node+0x81/0xf0 [ 254.691150][T17436] __list_lru_init+0x1dd/0x520 [ 254.695961][T17436] alloc_super+0x490/0x520 [ 254.700373][T17436] ? mount_bdev+0x290/0x290 [ 254.704884][T17436] sget+0x189/0x370 [ 254.708729][T17436] ? test_bdev_super+0x30/0x30 [ 254.713475][T17436] mount_bdev+0xd3/0x290 [ 254.717768][T17436] ? ext4_mount+0x40/0x40 [ 254.722078][T17436] ? ext4_errno_to_code+0x110/0x110 [ 254.727267][T17436] ext4_mount+0x2d/0x40 [ 254.731422][T17436] legacy_get_tree+0x70/0xc0 [ 254.736059][T17436] vfs_get_tree+0x4a/0x1a0 [ 254.740471][T17436] path_mount+0x11b6/0x1ca0 [ 254.744973][T17436] __se_sys_mount+0x23d/0x2e0 [ 254.749629][T17436] __x64_sys_mount+0x63/0x70 [ 254.754214][T17436] do_syscall_64+0x39/0x80 [ 254.758667][T17436] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 254.764554][T17436] RIP: 0033:0x4672ba [ 254.768429][T17436] Code: 48 c7 c2 bc ff ff ff f7 d8 64 89 02 b8 ff ff ff ff eb d2 e8 b8 04 00 00 0f 1f 84 00 00 00 00 00 49 89 ca b8 a5 00 00 00 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 254.788015][T17436] RSP: 002b:00007f8175ef9fa8 EFLAGS: 00000206 ORIG_RAX: 00000000000000a5 [ 254.796493][T17436] RAX: ffffffffffffffda RBX: 0000000020000200 RCX: 00000000004672ba [ 254.804535][T17436] RDX: 0000000020000000 RSI: 0000000020000100 RDI: 00007f8175efa000 [ 254.812497][T17436] RBP: 00007f8175efa040 R08: 00007f8175efa040 R09: 0000000020000000 [ 254.820464][T17436] R10: 0000000000000000 R11: 0000000000000206 R12: 0000000020000000 21:38:34 executing program 2: set_mempolicy(0x8003, &(0x7f0000000300)=0x75f, 0x9) r0 = open(&(0x7f0000000300)='.\x00', 0x0, 0x0) symlinkat(&(0x7f0000000040)='\x13\x13w\xc5\xfc5\xd4\x14T\xd5\xd4\x1d)\xad\x1a`)Y\x81F\xe6\xbe\x16nA\xad\r\xbd@T\x03<\x9f3\xbb\xda\x82$\xa2\xf3\xd7r\xe7cnH\xb3<\xbfp\x83r\xe8\xf1\xb9\x93>\xc5\x12wC\xbe\"\x06 \x9e\xf0-\xf9\xcb\xf2\xf6\xe8\x80\xd38/\x00', r0, &(0x7f00000000c0)='./file0\x00') mkdirat(r0, &(0x7f0000000200)='\x13\x13w\xc5\xfc5\xd4\x14T\xd5\xd4\x1d)\xad\x1a`)Y\x81F\xe6\xbe\x16nA\xad\r\xbd@T\x03<\x9f3\xbb\xda\x82$\xa2\xf3\xd7r\xe7cnH\xb3<\xbfp\x83r\xe8\xf1\xb9\x93>\xc5\x12wC\xbe\"\x06 \x9e\xf0-\xf9\xcb\xf2\xf6\xe8\x80\xd38/\x00', 0x0) symlinkat(&(0x7f0000000340)='./file0/file0\x00', r0, &(0x7f0000000380)='\x13\x13w\xc5\xfc5\xd4\x14T\xd5\xd4\x1d)\xad\x1a`)Y\x81F\xe6\xbe\x16nA\xad\r\xbd@T\x03<\x9f3\xbb\xda\x82$\xa2\xf3\xd7r\xe7cnH\xb3<\xbfp\x83r\xe8\xf1\xb9\x93>\xc5\x12wC\xbe\"\x06 \x9e\xf0-\xf9\xcb\xf2\xf6\xe8\x80\xd38//file0\x00') mkdirat(r0, &(0x7f0000000140)='\x13\x13w\xc5\xfc5\xd4\x14T\xd5\xd4\x1d)\xad\x1a`)Y\x81F\xe6\xbe\x16nA\xad\r\xbd@T\x03<\x9f3\xbb\xda\x82$\xa2\xf3\xd7r\xe7cnH\xb3<\xbfp\x83r\xe8\xf1\xb9\x93>\xc5\x12wC\xbe\"\x06 \x9e\xf0-\xf9\xcb\xf2\xf6\xe8\x80\xd38//file0\x00', 0x1) r1 = open(&(0x7f0000000100)='.\x00', 0x0, 0x0) r2 = syz_open_procfs(0x0, &(0x7f00000000c0)='fd/3\x00') r3 = syz_open_dev$swradio(&(0x7f0000000100)='/dev/swradio#\x00', 0x0, 0x2) lsetxattr$security_capability(&(0x7f0000000280)='\x13\x13w\xc5\xfc5\xd4\x14T\xd5\xd4\x1d)\xad\x1a`)Y\x81F\xe6\xbe\x16nA\xad\r\xbd@T\x03<\x9f3\xbb\xda\x82$\xa2\xf3\xd7r\xe7cnH\xb3<\xbfp\x83r\xe8\xf1\xb9\x93>\xc5\x12wC\xbe\"\x06 \x9e\xf0-\xf9\xcb\xf2\xf6\xe8\x80\xd38//file0\x00', &(0x7f00000001c0)='security.capability\x00', &(0x7f0000000440)=@v2={0x2000000, [{0x5, 0x5}, {0x7, 0xffffff01}]}, 0x14, 0x0) mount$9p_fd(0x0, &(0x7f0000000300)='.\x00', &(0x7f0000000080)='9p\x00', 0x0, &(0x7f0000000740)=ANY=[@ANYBLOB='trans=fd,rfdno=', @ANYRESHEX=r2, @ANYBLOB=',wfdno=', @ANYRESHEX=r3, @ANYBLOB="7194"]) renameat2(r2, &(0x7f0000000400)='./file0/file0\x00', r1, &(0x7f0000000000)='./file1\x00', 0x2) 21:38:34 executing program 4: set_mempolicy(0x8003, &(0x7f0000000300)=0x75f, 0x9) open(&(0x7f0000000300)='.\x00', 0x0, 0x0) r0 = syz_open_procfs(0x0, &(0x7f00000000c0)='fd/3\x00') r1 = syz_open_dev$swradio(&(0x7f0000000100)='/dev/swradio#\x00', 0x0, 0x2) mount$9p_fd(0x0, &(0x7f0000000300)='.\x00', &(0x7f0000000080)='9p\x00', 0xedc000000000, &(0x7f0000000740)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}}) [ 254.828415][T17436] R13: 0000000020000100 R14: 00007f8175efa000 R15: 0000000020000040 21:38:34 executing program 5: set_mempolicy(0x8003, &(0x7f0000000300)=0x75f, 0x9) open(&(0x7f0000000300)='.\x00', 0x0, 0x0) r0 = syz_open_procfs(0x0, &(0x7f00000000c0)='fd/3\x00') r1 = syz_open_dev$swradio(&(0x7f0000000100)='/dev/swradio#\x00', 0x0, 0x2) mount$9p_fd(0x0, &(0x7f0000000300)='.\x00', &(0x7f0000000080)='9p\x00', 0x0, &(0x7f0000000740)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}, 0x2c, {[], [], 0x4}}) 21:38:34 executing program 1: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) r3 = syz_open_procfs(0x0, &(0x7f00000000c0)='fd/3\x00') mount$9p_fd(0x0, &(0x7f0000000300)='.\x00', &(0x7f0000000080)='9p\x00', 0xd000000, &(0x7f00000003c0)={'trans=fd,', {'rfdno', 0x3d, r3}, 0x2c, {'wfdno', 0x3d, r2}}) 21:38:34 executing program 0 (fault-call:0 fault-nth:73): syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x40000, 0x3, &(0x7f0000000200)=[{&(0x7f0000010000)="20000000000100000c000000d90000000f0000000100000000000000000000000020000000200000200000002cc4645f2cc4645f0100ffff53ef0100010000002cc4645f000000000000000001000000000000000b0000008000000038000000c20200006b0400000000000000000000000000000000000073797a6b616c6c6572000000000000002f746d702f73797a2d696d61676567656e3338363633343038350000000000000000000000000000000000000000000000000000000000000000000000000000000000000000010000000000000000000000000000000000000000000000000000000000d9ca5cac99fd4329af4dde786c1a5d13010040000c000000000000002cc4645f", 0x10c, 0x400}, {&(0x7f0000010200)="0500000000000000000000000000000000000000040100002b", 0x19, 0x560}, {&(0x7f0000010300)="000000000000000000000000000000000000000000000000000000001481910a040000001400000024", 0x29, 0x7e0}], 0x0, &(0x7f0000000040)={[{@usrjquota='usrjquota='}, {@data_err_abort='data_err=abort'}]}) [ 254.934956][T17465] 9pnet: Insufficient options for proto=fd 21:38:34 executing program 3: set_mempolicy(0x8003, &(0x7f0000000300)=0x75f, 0x9) open(&(0x7f0000000300)='.\x00', 0x0, 0x0) r0 = syz_open_procfs(0x0, &(0x7f00000000c0)='fd/3\x00') r1 = syz_open_dev$swradio(&(0x7f0000000100)='/dev/swradio#\x00', 0x0, 0x2) mount$9p_fd(0x0, &(0x7f0000000300)='.\x00', &(0x7f0000000080)='9p\x00', 0x1000000000000000, &(0x7f0000000740)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}}) [ 254.984334][T17479] 9pnet: Insufficient options for proto=fd [ 254.997532][ T3648] warn_unsupported: 12 callbacks suppressed [ 254.997543][ T3648] kernel read not supported for file root/syzkaller-testdir051064025/syzkaller.PVWmQb/304 (pid: 3648 comm: kworker/1:2) 21:38:34 executing program 4: set_mempolicy(0x8003, &(0x7f0000000300)=0x75f, 0x9) open(&(0x7f0000000300)='.\x00', 0x0, 0x0) r0 = syz_open_procfs(0x0, &(0x7f00000000c0)='fd/3\x00') r1 = syz_open_dev$swradio(&(0x7f0000000100)='/dev/swradio#\x00', 0x0, 0x2) mount$9p_fd(0x0, &(0x7f0000000300)='.\x00', &(0x7f0000000080)='9p\x00', 0x1000000000000, &(0x7f0000000740)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}}) 21:38:35 executing program 1: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) r3 = syz_open_procfs(0x0, &(0x7f00000000c0)='fd/3\x00') mount$9p_fd(0x0, &(0x7f0000000300)='.\x00', &(0x7f0000000080)='9p\x00', 0xe000000, &(0x7f00000003c0)={'trans=fd,', {'rfdno', 0x3d, r3}, 0x2c, {'wfdno', 0x3d, r2}}) 21:38:35 executing program 2: set_mempolicy(0x8003, &(0x7f0000000300)=0x75f, 0x9) r0 = open(&(0x7f0000000300)='.\x00', 0x0, 0x0) symlinkat(&(0x7f0000000440)='./file0\x00', r0, &(0x7f0000000280)='\x13\x13w\xc5\xfc5\xd4\x14T\xd5\xd4\x1d)\xad\x1a`)Y\x81F\xe6\xbe\x16nA\xad\r\xbd@T\x03<\x9f3\xbb\xda\x82$\xa2\xf3\xd7r\xe7cnH\xb3<\xbfp\x83r\xe8\xf1\xb9\x93>\xc5\x12wC\xbe\"\x06 \x9e\xf0-\xf9\xcb\xf2\xf6\xe8\x80\xd38/\x00') mkdirat(r0, &(0x7f0000000200)='\x13\x13w\xc5\xfc5\xd4\x14T\xd5\xd4\x1d)\xad\x1a`)Y\x81F\xe6\xbe\x16nA\xad\r\xbd@T\x03<\x9f3\xbb\xda\x82$\xa2\xf3\xd7r\xe7cnH\xb3<\xbfp\x83r\xe8\xf1\xb9\x93>\xc5\x12wC\xbe\"\x06 \x9e\xf0-\xf9\xcb\xf2\xf6\xe8\x80\xd38/\x00', 0x0) symlinkat(&(0x7f0000000340)='./file0/file0\x00', r0, &(0x7f0000000380)='\x13\x13w\xc5\xfc5\xd4\x14T\xd5\xd4\x1d)\xad\x1a`)Y\x81F\xe6\xbe\x16nA\xad\r\xbd@T\x03<\x9f3\xbb\xda\x82$\xa2\xf3\xd7r\xe7cnH\xb3<\xbfp\x83r\xe8\xf1\xb9\x93>\xc5\x12wC\xbe\"\x06 \x9e\xf0-\xf9\xcb\xf2\xf6\xe8\x80\xd38//file0\x00') r1 = open(&(0x7f0000000100)='.\x00', 0x0, 0x0) renameat2(r1, &(0x7f0000000400)='./file0/file0\x00', r1, &(0x7f0000000000)='./file0\x00', 0x0) r2 = openat$tcp_mem(0xffffffffffffff9c, &(0x7f0000000140)='/proc/sys/net/ipv4/tcp_wmem\x00', 0x1, 0x0) listxattr(&(0x7f0000000040)='\x13\x13w\xc5\xfc5\xd4\x14T\xd5\xd4\x1d)\xad\x1a`)Y\x81F\xe6\xbe\x16nA\xad\r\xbd@T\x03<\x9f3\xbb\xda\x82$\xa2\xf3\xd7r\xe7cnH\xb3<\xbfp\x83r\xe8\xf1\xb9\x93>\xc5\x12wC\xbe\"\x06 \x9e\xf0-\xf9\xcb\xf2\xf6\xe8\x80\xd38/\x00', &(0x7f0000000480)=""/203, 0xcb) poll(&(0x7f0000000180)=[{r2, 0x40}], 0x1, 0x1) r3 = bpf$PROG_LOAD(0x5, &(0x7f0000000080)={0x3, 0x8, &(0x7f0000000cc0)=ANY=[@ANYBLOB="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"], &(0x7f0000000100)='GPL\x00'}, 0x48) bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000040)={r3, 0x0, 0xe, 0x300, &(0x7f0000000140)="e3d0e9d6d9d18e5f39868de363d3", 0x0, 0x19d, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x40) write$binfmt_script(r3, &(0x7f0000000580)={'#! ', '\x13\x13w\xc5\xfc5\xd4\x14T\xd5\xd4\x1d)\xad\x1a`)Y\x81F\xe6\xbe\x16nA\xad\r\xbd@T\x03<\x9f3\xbb\xda\x82$\xa2\xf3\xd7r\xe7cnH\xb3<\xbfp\x83r\xe8\xf1\xb9\x93>\xc5\x12wC\xbe\"\x06 \x9e\xf0-\xf9\xcb\xf2\xf6\xe8\x80\xd38/', [{0x20, '+'}, {0x20, '@-'}, {0x20, '&.%'}], 0xa, "f39283e55bcd1f64fc1a35b3227388dcb51671c02298104e2f45341db4310ed187836c8c5b7122c8078884b82372e3b425f240ab5f6817921777d2eb0d7115c2a67256aedc509eb8579864f076438f0100ecd435c72e56768752b851da4457756f6ffb9fc6f1cb7b0d6033fd5add575be405d1ab3e407bc35de972d5bf961374d429bc2e3c03f4767d76b53fa793274bd32cee76dedec2dfefb21faec521af3440b21e83333501d3acea3a9e2a6e1c54820d16c240681b9782e941"}, 0x115) 21:38:35 executing program 3: set_mempolicy(0x8003, &(0x7f0000000300)=0x75f, 0x9) open(&(0x7f0000000300)='.\x00', 0x0, 0x0) r0 = syz_open_procfs(0x0, &(0x7f00000000c0)='fd/3\x00') r1 = syz_open_dev$swradio(&(0x7f0000000100)='/dev/swradio#\x00', 0x0, 0x2) mount$9p_fd(0x0, &(0x7f0000000300)='.\x00', &(0x7f0000000080)='9p\x00', 0x1100000000000000, &(0x7f0000000740)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}}) [ 255.030683][T17487] loop0: detected capacity change from 512 to 0 [ 255.052244][T17487] FAULT_INJECTION: forcing a failure. [ 255.052244][T17487] name failslab, interval 1, probability 0, space 0, times 0 [ 255.105454][T17487] CPU: 0 PID: 17487 Comm: syz-executor.0 Not tainted 5.11.0-syzkaller #0 [ 255.113907][T17487] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 255.125000][T17487] Call Trace: [ 255.128277][T17487] dump_stack+0x116/0x15d [ 255.132852][T17487] should_fail+0x23c/0x250 [ 255.137274][T17487] __should_failslab+0x81/0x90 [ 255.142105][T17487] should_failslab+0x5/0x20 [ 255.146606][T17487] kmem_cache_alloc_node_trace+0x4b/0x2e0 [ 255.152416][T17487] ? __kmalloc_node+0x30/0x40 [ 255.157103][T17487] __kmalloc_node+0x30/0x40 [ 255.161635][T17487] kvmalloc_node+0x81/0xf0 [ 255.166086][T17487] __list_lru_init+0x1dd/0x520 [ 255.170846][T17487] alloc_super+0x490/0x520 [ 255.175246][T17487] ? mount_bdev+0x290/0x290 [ 255.179811][T17487] sget+0x189/0x370 [ 255.183603][T17487] ? test_bdev_super+0x30/0x30 [ 255.188414][T17487] mount_bdev+0xd3/0x290 [ 255.192636][T17487] ? ext4_mount+0x40/0x40 [ 255.196963][T17487] ? ext4_errno_to_code+0x110/0x110 [ 255.202159][T17487] ext4_mount+0x2d/0x40 [ 255.206473][T17487] legacy_get_tree+0x70/0xc0 [ 255.211055][T17487] vfs_get_tree+0x4a/0x1a0 [ 255.215699][T17487] path_mount+0x11b6/0x1ca0 [ 255.220268][T17487] __se_sys_mount+0x23d/0x2e0 [ 255.225016][T17487] __x64_sys_mount+0x63/0x70 [ 255.229596][T17487] do_syscall_64+0x39/0x80 [ 255.233997][T17487] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 255.239977][T17487] RIP: 0033:0x4672ba [ 255.243851][T17487] Code: 48 c7 c2 bc ff ff ff f7 d8 64 89 02 b8 ff ff ff ff eb d2 e8 b8 04 00 00 0f 1f 84 00 00 00 00 00 49 89 ca b8 a5 00 00 00 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 255.264217][T17487] RSP: 002b:00007f8175ef9fa8 EFLAGS: 00000206 ORIG_RAX: 00000000000000a5 [ 255.272645][T17487] RAX: ffffffffffffffda RBX: 0000000020000200 RCX: 00000000004672ba [ 255.280604][T17487] RDX: 0000000020000000 RSI: 0000000020000100 RDI: 00007f8175efa000 [ 255.288665][T17487] RBP: 00007f8175efa040 R08: 00007f8175efa040 R09: 0000000020000000 [ 255.296668][T17487] R10: 0000000000000000 R11: 0000000000000206 R12: 0000000020000000 21:38:35 executing program 5: set_mempolicy(0x8003, &(0x7f0000000300)=0x75f, 0x9) open(&(0x7f0000000300)='.\x00', 0x0, 0x0) r0 = syz_open_procfs(0x0, &(0x7f00000000c0)='fd/3\x00') r1 = syz_open_dev$swradio(&(0x7f0000000100)='/dev/swradio#\x00', 0x0, 0x2) mount$9p_fd(0x0, &(0x7f0000000300)='.\x00', &(0x7f0000000080)='9p\x00', 0x0, &(0x7f0000000740)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}, 0x2c, {[], [], 0x5}}) 21:38:35 executing program 4: set_mempolicy(0x8003, &(0x7f0000000300)=0x75f, 0x9) open(&(0x7f0000000300)='.\x00', 0x0, 0x0) r0 = syz_open_procfs(0x0, &(0x7f00000000c0)='fd/3\x00') r1 = syz_open_dev$swradio(&(0x7f0000000100)='/dev/swradio#\x00', 0x0, 0x2) mount$9p_fd(0x0, &(0x7f0000000300)='.\x00', &(0x7f0000000080)='9p\x00', 0x40000000000000, &(0x7f0000000740)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}}) 21:38:35 executing program 1: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) r3 = syz_open_procfs(0x0, &(0x7f00000000c0)='fd/3\x00') mount$9p_fd(0x0, &(0x7f0000000300)='.\x00', &(0x7f0000000080)='9p\x00', 0x10000000, &(0x7f00000003c0)={'trans=fd,', {'rfdno', 0x3d, r3}, 0x2c, {'wfdno', 0x3d, r2}}) [ 255.304618][T17487] R13: 0000000020000100 R14: 00007f8175efa000 R15: 0000000020000040 [ 255.322416][T17505] 9pnet: Insufficient options for proto=fd [ 255.342700][T17505] 9pnet: Insufficient options for proto=fd 21:38:35 executing program 3: set_mempolicy(0x8003, &(0x7f0000000300)=0x75f, 0x9) open(&(0x7f0000000300)='.\x00', 0x0, 0x0) r0 = syz_open_procfs(0x0, &(0x7f00000000c0)='fd/3\x00') r1 = syz_open_dev$swradio(&(0x7f0000000100)='/dev/swradio#\x00', 0x0, 0x2) mount$9p_fd(0x0, &(0x7f0000000300)='.\x00', &(0x7f0000000080)='9p\x00', 0x1200000000000000, &(0x7f0000000740)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}}) 21:38:35 executing program 0 (fault-call:0 fault-nth:74): syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x40000, 0x3, &(0x7f0000000200)=[{&(0x7f0000010000)="20000000000100000c000000d90000000f0000000100000000000000000000000020000000200000200000002cc4645f2cc4645f0100ffff53ef0100010000002cc4645f000000000000000001000000000000000b0000008000000038000000c20200006b0400000000000000000000000000000000000073797a6b616c6c6572000000000000002f746d702f73797a2d696d61676567656e3338363633343038350000000000000000000000000000000000000000000000000000000000000000000000000000000000000000010000000000000000000000000000000000000000000000000000000000d9ca5cac99fd4329af4dde786c1a5d13010040000c000000000000002cc4645f", 0x10c, 0x400}, {&(0x7f0000010200)="0500000000000000000000000000000000000000040100002b", 0x19, 0x560}, {&(0x7f0000010300)="000000000000000000000000000000000000000000000000000000001481910a040000001400000024", 0x29, 0x7e0}], 0x0, &(0x7f0000000040)={[{@usrjquota='usrjquota='}, {@data_err_abort='data_err=abort'}]}) 21:38:35 executing program 4: set_mempolicy(0x8003, &(0x7f0000000300)=0x75f, 0x9) open(&(0x7f0000000300)='.\x00', 0x0, 0x0) r0 = syz_open_procfs(0x0, &(0x7f00000000c0)='fd/3\x00') r1 = syz_open_dev$swradio(&(0x7f0000000100)='/dev/swradio#\x00', 0x0, 0x2) mount$9p_fd(0x0, &(0x7f0000000300)='.\x00', &(0x7f0000000080)='9p\x00', 0xfeffff00000000, &(0x7f0000000740)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}}) 21:38:35 executing program 3: set_mempolicy(0x8003, &(0x7f0000000300)=0x75f, 0x9) open(&(0x7f0000000300)='.\x00', 0x0, 0x0) r0 = syz_open_procfs(0x0, &(0x7f00000000c0)='fd/3\x00') r1 = syz_open_dev$swradio(&(0x7f0000000100)='/dev/swradio#\x00', 0x0, 0x2) mount$9p_fd(0x0, &(0x7f0000000300)='.\x00', &(0x7f0000000080)='9p\x00', 0x2010000000000000, &(0x7f0000000740)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}}) [ 255.468872][ T9777] kernel read not supported for file root/syzkaller-testdir051064025/syzkaller.PVWmQb/305 (pid: 9777 comm: kworker/0:5) [ 255.502493][T17528] loop0: detected capacity change from 512 to 0 [ 255.542865][T17528] FAULT_INJECTION: forcing a failure. [ 255.542865][T17528] name failslab, interval 1, probability 0, space 0, times 0 21:38:35 executing program 4: set_mempolicy(0x8003, &(0x7f0000000300)=0x75f, 0x9) open(&(0x7f0000000300)='.\x00', 0x0, 0x0) r0 = syz_open_procfs(0x0, &(0x7f00000000c0)='fd/3\x00') r1 = syz_open_dev$swradio(&(0x7f0000000100)='/dev/swradio#\x00', 0x0, 0x2) mount$9p_fd(0x0, &(0x7f0000000300)='.\x00', &(0x7f0000000080)='9p\x00', 0x100000000000000, &(0x7f0000000740)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}}) 21:38:35 executing program 5: set_mempolicy(0x8003, &(0x7f0000000300)=0x75f, 0x9) open(&(0x7f0000000300)='.\x00', 0x0, 0x0) r0 = syz_open_procfs(0x0, &(0x7f00000000c0)='fd/3\x00') r1 = syz_open_dev$swradio(&(0x7f0000000100)='/dev/swradio#\x00', 0x0, 0x2) mount$9p_fd(0x0, &(0x7f0000000300)='.\x00', &(0x7f0000000080)='9p\x00', 0x0, &(0x7f0000000740)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}, 0x2c, {[], [], 0x6}}) 21:38:35 executing program 1: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) r3 = syz_open_procfs(0x0, &(0x7f00000000c0)='fd/3\x00') mount$9p_fd(0x0, &(0x7f0000000300)='.\x00', &(0x7f0000000080)='9p\x00', 0x11000000, &(0x7f00000003c0)={'trans=fd,', {'rfdno', 0x3d, r3}, 0x2c, {'wfdno', 0x3d, r2}}) [ 255.669414][T17528] CPU: 1 PID: 17528 Comm: syz-executor.0 Not tainted 5.11.0-syzkaller #0 [ 255.678172][T17528] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 255.688259][T17528] Call Trace: [ 255.691537][T17528] dump_stack+0x116/0x15d [ 255.695876][T17528] should_fail+0x23c/0x250 [ 255.700413][T17528] __should_failslab+0x81/0x90 [ 255.705185][T17528] ? __list_lru_init+0x70/0x520 [ 255.710040][T17528] should_failslab+0x5/0x20 [ 255.714546][T17528] __kmalloc+0x59/0x360 [ 255.718744][T17528] ? __kmalloc_node+0x30/0x40 [ 255.723458][T17528] __list_lru_init+0x70/0x520 [ 255.728142][T17528] alloc_super+0x4bf/0x520 [ 255.732566][T17528] ? mount_bdev+0x290/0x290 [ 255.737073][T17528] sget+0x189/0x370 [ 255.740884][T17528] ? test_bdev_super+0x30/0x30 [ 255.745712][T17528] mount_bdev+0xd3/0x290 [ 255.749959][T17528] ? ext4_mount+0x40/0x40 [ 255.754296][T17528] ? ext4_errno_to_code+0x110/0x110 [ 255.759550][T17528] ext4_mount+0x2d/0x40 [ 255.763706][T17528] legacy_get_tree+0x70/0xc0 [ 255.768327][T17528] vfs_get_tree+0x4a/0x1a0 [ 255.772837][T17528] path_mount+0x11b6/0x1ca0 [ 255.777400][T17528] __se_sys_mount+0x23d/0x2e0 [ 255.782082][T17528] __x64_sys_mount+0x63/0x70 [ 255.786772][T17528] do_syscall_64+0x39/0x80 [ 255.791212][T17528] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 255.797110][T17528] RIP: 0033:0x4672ba 21:38:35 executing program 3: set_mempolicy(0x8003, &(0x7f0000000300)=0x75f, 0x9) open(&(0x7f0000000300)='.\x00', 0x0, 0x0) r0 = syz_open_procfs(0x0, &(0x7f00000000c0)='fd/3\x00') r1 = syz_open_dev$swradio(&(0x7f0000000100)='/dev/swradio#\x00', 0x0, 0x2) mount$9p_fd(0x0, &(0x7f0000000300)='.\x00', &(0x7f0000000080)='9p\x00', 0x2500000000000000, &(0x7f0000000740)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}}) [ 255.801007][T17528] Code: 48 c7 c2 bc ff ff ff f7 d8 64 89 02 b8 ff ff ff ff eb d2 e8 b8 04 00 00 0f 1f 84 00 00 00 00 00 49 89 ca b8 a5 00 00 00 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 255.820619][T17528] RSP: 002b:00007f8175ef9fa8 EFLAGS: 00000206 ORIG_RAX: 00000000000000a5 [ 255.829037][T17528] RAX: ffffffffffffffda RBX: 0000000020000200 RCX: 00000000004672ba [ 255.837015][T17528] RDX: 0000000020000000 RSI: 0000000020000100 RDI: 00007f8175efa000 [ 255.845059][T17528] RBP: 00007f8175efa040 R08: 00007f8175efa040 R09: 0000000020000000 [ 255.853032][T17528] R10: 0000000000000000 R11: 0000000000000206 R12: 0000000020000000 [ 255.861006][T17528] R13: 0000000020000100 R14: 00007f8175efa000 R15: 0000000020000040 21:38:35 executing program 4: set_mempolicy(0x8003, &(0x7f0000000300)=0x75f, 0x9) open(&(0x7f0000000300)='.\x00', 0x0, 0x0) r0 = syz_open_procfs(0x0, &(0x7f00000000c0)='fd/3\x00') r1 = syz_open_dev$swradio(&(0x7f0000000100)='/dev/swradio#\x00', 0x0, 0x2) mount$9p_fd(0x0, &(0x7f0000000300)='.\x00', &(0x7f0000000080)='9p\x00', 0x100000200000000, &(0x7f0000000740)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}}) 21:38:35 executing program 3: set_mempolicy(0x8003, &(0x7f0000000300)=0x75f, 0x9) open(&(0x7f0000000300)='.\x00', 0x0, 0x0) r0 = syz_open_procfs(0x0, &(0x7f00000000c0)='fd/3\x00') r1 = syz_open_dev$swradio(&(0x7f0000000100)='/dev/swradio#\x00', 0x0, 0x2) mount$9p_fd(0x0, &(0x7f0000000300)='.\x00', &(0x7f0000000080)='9p\x00', 0x4000000000000000, &(0x7f0000000740)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}}) [ 255.910439][T10606] kernel read not supported for file root/syzkaller-testdir051064025/syzkaller.PVWmQb/306 (pid: 10606 comm: kworker/1:6) 21:38:35 executing program 1: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) r3 = syz_open_procfs(0x0, &(0x7f00000000c0)='fd/3\x00') mount$9p_fd(0x0, &(0x7f0000000300)='.\x00', &(0x7f0000000080)='9p\x00', 0x12000000, &(0x7f00000003c0)={'trans=fd,', {'rfdno', 0x3d, r3}, 0x2c, {'wfdno', 0x3d, r2}}) 21:38:35 executing program 5: set_mempolicy(0x8003, &(0x7f0000000300)=0x75f, 0x9) open(&(0x7f0000000300)='.\x00', 0x0, 0x0) r0 = syz_open_procfs(0x0, &(0x7f00000000c0)='fd/3\x00') r1 = syz_open_dev$swradio(&(0x7f0000000100)='/dev/swradio#\x00', 0x0, 0x2) mount$9p_fd(0x0, &(0x7f0000000300)='.\x00', &(0x7f0000000080)='9p\x00', 0x0, &(0x7f0000000740)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}, 0x2c, {[], [], 0x7}}) 21:38:35 executing program 3: set_mempolicy(0x8003, &(0x7f0000000300)=0x75f, 0x9) open(&(0x7f0000000300)='.\x00', 0x0, 0x0) r0 = syz_open_procfs(0x0, &(0x7f00000000c0)='fd/3\x00') r1 = syz_open_dev$swradio(&(0x7f0000000100)='/dev/swradio#\x00', 0x0, 0x2) mount$9p_fd(0x0, &(0x7f0000000300)='.\x00', &(0x7f0000000080)='9p\x00', 0x5c00000000000000, &(0x7f0000000740)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}}) [ 255.984075][T10606] kernel read not supported for file root/syzkaller-testdir051064025/syzkaller.PVWmQb/306 (pid: 10606 comm: kworker/1:6) 21:38:36 executing program 0 (fault-call:0 fault-nth:75): syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x40000, 0x3, &(0x7f0000000200)=[{&(0x7f0000010000)="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", 0x10c, 0x400}, {&(0x7f0000010200)="0500000000000000000000000000000000000000040100002b", 0x19, 0x560}, {&(0x7f0000010300)="000000000000000000000000000000000000000000000000000000001481910a040000001400000024", 0x29, 0x7e0}], 0x0, &(0x7f0000000040)={[{@usrjquota='usrjquota='}, {@data_err_abort='data_err=abort'}]}) 21:38:36 executing program 4: set_mempolicy(0x8003, &(0x7f0000000300)=0x75f, 0x9) open(&(0x7f0000000300)='.\x00', 0x0, 0x0) r0 = syz_open_procfs(0x0, &(0x7f00000000c0)='fd/3\x00') r1 = syz_open_dev$swradio(&(0x7f0000000100)='/dev/swradio#\x00', 0x0, 0x2) mount$9p_fd(0x0, &(0x7f0000000300)='.\x00', &(0x7f0000000080)='9p\x00', 0x200000000000000, &(0x7f0000000740)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}}) 21:38:36 executing program 1: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) r3 = syz_open_procfs(0x0, &(0x7f00000000c0)='fd/3\x00') mount$9p_fd(0x0, &(0x7f0000000300)='.\x00', &(0x7f0000000080)='9p\x00', 0x20100000, &(0x7f00000003c0)={'trans=fd,', {'rfdno', 0x3d, r3}, 0x2c, {'wfdno', 0x3d, r2}}) 21:38:36 executing program 3: set_mempolicy(0x8003, &(0x7f0000000300)=0x75f, 0x9) open(&(0x7f0000000300)='.\x00', 0x0, 0x0) r0 = syz_open_procfs(0x0, &(0x7f00000000c0)='fd/3\x00') r1 = syz_open_dev$swradio(&(0x7f0000000100)='/dev/swradio#\x00', 0x0, 0x2) mount$9p_fd(0x0, &(0x7f0000000300)='.\x00', &(0x7f0000000080)='9p\x00', 0x8cffffff00000000, &(0x7f0000000740)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}}) [ 256.116404][T10606] kernel read not supported for file root/syzkaller-testdir051064025/syzkaller.PVWmQb/307 (pid: 10606 comm: kworker/1:6) 21:38:36 executing program 2: set_mempolicy(0x8003, &(0x7f0000000300)=0x75f, 0x9) set_mempolicy(0x2, &(0x7f0000000100)=0x17, 0x3ff) r0 = open(&(0x7f0000000300)='.\x00', 0x0, 0x0) symlinkat(&(0x7f0000000040)='\x13\x13w\xc5\xfc5\xd4\x14T\xd5\xd4\x1d)\xad\x1a`)Y\x81F\xe6\xbe\x16nA\xad\r\xbd@T\x03<\x9f3\xbb\xda\x82$\xa2\xf3\xd7r\xe7cnH\xb3<\xbfp\x83r\xe8\xf1\xb9\x93>\xc5\x12wC\xbe\"\x06 \x9e\xf0-\xf9\xcb\xf2\xf6\xe8\x80\xd38/\x00', r0, &(0x7f00000000c0)='./file0\x00') mkdirat(r0, &(0x7f0000000200)='\x13\x13w\xc5\xfc5\xd4\x14T\xd5\xd4\x1d)\xad\x1a`)Y\x81F\xe6\xbe\x16nA\xad\r\xbd@T\x03<\x9f3\xbb\xda\x82$\xa2\xf3\xd7r\xe7cnH\xb3<\xbfp\x83r\xe8\xf1\xb9\x93>\xc5\x12wC\xbe\"\x06 \x9e\xf0-\xf9\xcb\xf2\xf6\xe8\x80\xd38/\x00', 0x0) symlinkat(&(0x7f0000000340)='./file0/file0\x00', r0, &(0x7f0000000380)='\x13\x13w\xc5\xfc5\xd4\x14T\xd5\xd4\x1d)\xad\x1a`)Y\x81F\xe6\xbe\x16nA\xad\r\xbd@T\x03<\x9f3\xbb\xda\x82$\xa2\xf3\xd7r\xe7cnH\xb3<\xbfp\x83r\xe8\xf1\xb9\x93>\xc5\x12wC\xbe\"\x06 \x9e\xf0-\xf9\xcb\xf2\xf6\xe8\x80\xd38//file0\x00') renameat2(0xffffffffffffffff, &(0x7f0000000400)='./file0/file0\x00', 0xffffffffffffffff, &(0x7f0000000000)='./file0\x00', 0x0) ioctl$BTRFS_IOC_BALANCE_V2(0xffffffffffffffff, 0xc4009420, &(0x7f00000003c0)={0x15, 0x2, {0x3, @struct={0xcc, 0xdfc3}, 0x0, 0x0, 0x0, 0x1, 0x5, 0x1, 0x0, @struct={0x0, 0x2a25}, 0x0, 0x0, [0x5, 0x4b, 0x92e, 0x7, 0x5]}, {0x3, @struct={0x0, 0x46}, 0x0, 0x0, 0x9, 0x2, 0x3, 0x2, 0x41, @struct, 0x0, 0x6, [0x8, 0x2, 0x1, 0x9]}, {0x4, @usage=0x5, 0x0, 0x1, 0x0, 0x3, 0x0, 0x0, 0x1, @usage=0x8003, 0x1, 0x1, [0x0, 0x40, 0x0, 0xb9, 0x7]}, {0x80000001, 0x0, 0x8}}) r2 = socket$inet_tcp(0x2, 0x1, 0x0) ioctl$sock_SIOCADDRT(r2, 0x890b, &(0x7f0000000040)={0x0, @l2tp={0x2, 0x0, @empty}, @vsock={0x28, 0x0, 0xffffd8ef, @local}, @nl=@unspec, 0x29fd, 0x0, 0x0, 0x0, 0x0, &(0x7f0000000340)='veth0_macvtap\x00', 0x4}) ioctl$BTRFS_IOC_GET_SUBVOL_INFO(r2, 0x81f8943c, &(0x7f0000001640)={0x0, ""/256, 0x0, 0x0, 0x0}) ioctl$BTRFS_IOC_SUBVOL_CREATE_V2(0xffffffffffffffff, 0x50009418, &(0x7f0000004380)={{}, r3, 0x0, @unused=[0x20, 0x80000001, 0x0, 0x8], @name="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"}) ioctl$BTRFS_IOC_SNAP_DESTROY_V2(0xffffffffffffffff, 0x5000943f, &(0x7f0000002200)={{}, r3, 0xa, @inherit={0x88, &(0x7f00000007c0)=ANY=[@ANYBLOB="00000000000000000800000000000000040000000045f90009000000000000000000000000000000010000000000000001000000010000000080000000000000080000000000000000f0ffffffffffff08000000000000000900000000000000030000000000000040000008000000002d050000000000000500000000d067cdb20180ba36bc16000000eb15406500000000fe8149e8ccdb5cbf8bc000dfff1107a9e3be087b002138dac1912b36055fac5b5fb0aeb7b84603a2bb6ee749c2c045ce9e5678e473395619975ca63262bba31b5eee891c491f913981abf6b5b64e012eb9d95ec5580a496f2b19856924e13814edfc32883eff90d5b89d2619abe34d3f5ad3236ba7de9193dc3533c7617cbd3e609c6b11b51e019596281fafd0e5b861"]}, @subvolid=0x7}) ioctl$BTRFS_IOC_RM_DEV_V2(0xffffffffffffffff, 0x5000943a, &(0x7f0000002380)={{}, r3, 0x0, @unused=[0x1c89, 0x1, 0x80000001, 0x101], @devid=r1}) ioctl$BTRFS_IOC_WAIT_SYNC(0xffffffffffffffff, 0x40089416, &(0x7f0000000000)=r3) ioctl$BTRFS_IOC_SNAP_DESTROY_V2(0xffffffffffffffff, 0x5000943f, &(0x7f00000009c0)={{}, r3, 0x10, @inherit={0x80, &(0x7f0000000080)=ANY=[@ANYBLOB="4d9fc3f725aed5861f198d71a2c9b3750100000000000000070000000000000005aa4400000000000300000000000000000000000000000000100000000003000001000000000000000000000000001101000100000000000000000090c5bf01020000750000000000000005000000000000000000000009000000ffffffff00"]}, @name="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"}) r4 = perf_event_open(&(0x7f000001d000)={0x1, 0x4b, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x0, 0x1000000}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) ioctl$BTRFS_IOC_BALANCE_PROGRESS(0xffffffffffffffff, 0x84009422, &(0x7f0000000c00)={0x0, 0x0, {0x0, @struct}, {0x0, @usage, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @struct}, {0x0, @usage, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @struct}}) ioctl$BTRFS_IOC_SCRUB(r4, 0xc400941b, &(0x7f0000000380)={r5, 0x0, 0x5, 0x1}) ioctl$BTRFS_IOC_SUBVOL_CREATE_V2(r0, 0x50009418, &(0x7f0000000440)={{r0}, r3, 0x4, @inherit={0x98, &(0x7f0000000140)={0x0, 0xa, 0x1, 0xfc15, {0x21, 0x651, 0xd, 0x7e0, 0x8}, [0x5, 0x7fffffff, 0xb23, 0x3ff, 0x9, 0x401, 0x0, 0x9, 0x7fffffff, 0x7]}}, @devid=r5}) [ 256.197164][T17600] loop0: detected capacity change from 512 to 0 21:38:36 executing program 4: set_mempolicy(0x8003, &(0x7f0000000300)=0x75f, 0x9) open(&(0x7f0000000300)='.\x00', 0x0, 0x0) r0 = syz_open_procfs(0x0, &(0x7f00000000c0)='fd/3\x00') r1 = syz_open_dev$swradio(&(0x7f0000000100)='/dev/swradio#\x00', 0x0, 0x2) mount$9p_fd(0x0, &(0x7f0000000300)='.\x00', &(0x7f0000000080)='9p\x00', 0x300000000000000, &(0x7f0000000740)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}}) [ 256.245365][T17600] FAULT_INJECTION: forcing a failure. [ 256.245365][T17600] name failslab, interval 1, probability 0, space 0, times 0 21:38:36 executing program 5: set_mempolicy(0x8003, &(0x7f0000000300)=0x75f, 0x9) open(&(0x7f0000000300)='.\x00', 0x0, 0x0) r0 = syz_open_procfs(0x0, &(0x7f00000000c0)='fd/3\x00') r1 = syz_open_dev$swradio(&(0x7f0000000100)='/dev/swradio#\x00', 0x0, 0x2) mount$9p_fd(0x0, &(0x7f0000000300)='.\x00', &(0x7f0000000080)='9p\x00', 0x0, &(0x7f0000000740)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}, 0x2c, {[], [], 0x8}}) 21:38:36 executing program 3: set_mempolicy(0x8003, &(0x7f0000000300)=0x75f, 0x9) open(&(0x7f0000000300)='.\x00', 0x0, 0x0) r0 = syz_open_procfs(0x0, &(0x7f00000000c0)='fd/3\x00') r1 = syz_open_dev$swradio(&(0x7f0000000100)='/dev/swradio#\x00', 0x0, 0x2) mount$9p_fd(0x0, &(0x7f0000000300)='.\x00', &(0x7f0000000080)='9p\x00', 0xf6ffffff00000000, &(0x7f0000000740)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}}) 21:38:36 executing program 2: set_mempolicy(0x8003, &(0x7f0000000300)=0x75f, 0x9) r0 = open(&(0x7f0000000300)='.\x00', 0x0, 0x0) symlinkat(&(0x7f0000000040)='\x13\x13w\xc5\xfc5\xd4\x14T\xd5\xd4\x1d)\xad\x1a`)Y\x81F\xe6\xbe\x16nA\xad\r\xbd@T\x03<\x9f3\xbb\xda\x82$\xa2\xf3\xd7r\xe7cnH\xb3<\xbfp\x83r\xe8\xf1\xb9\x93>\xc5\x12wC\xbe\"\x06 \x9e\xf0-\xf9\xcb\xf2\xf6\xe8\x80\xd38/\x00', r0, &(0x7f00000000c0)='./file0\x00') mkdirat(r0, &(0x7f0000000200)='\x13\x13w\xc5\xfc5\xd4\x14T\xd5\xd4\x1d)\xad\x1a`)Y\x81F\xe6\xbe\x16nA\xad\r\xbd@T\x03<\x9f3\xbb\xda\x82$\xa2\xf3\xd7r\xe7cnH\xb3<\xbfp\x83r\xe8\xf1\xb9\x93>\xc5\x12wC\xbe\"\x06 \x9e\xf0-\xf9\xcb\xf2\xf6\xe8\x80\xd38/\x00', 0x0) symlinkat(&(0x7f0000000340)='./file0/file0\x00', r0, &(0x7f0000000380)='\x13\x13w\xc5\xfc5\xd4\x14T\xd5\xd4\x1d)\xad\x1a`)Y\x81F\xe6\xbe\x16nA\xad\r\xbd@T\x03<\x9f3\xbb\xda\x82$\xa2\xf3\xd7r\xe7cnH\xb3<\xbfp\x83r\xe8\xf1\xb9\x93>\xc5\x12wC\xbe\"\x06 \x9e\xf0-\xf9\xcb\xf2\xf6\xe8\x80\xd38//file0\x00') r1 = open(&(0x7f0000000100)='.\x00', 0x0, 0x0) renameat2(r1, &(0x7f0000000400)='./file0/file0\x00', r1, &(0x7f0000000000)='./file0\x00', 0x0) r2 = syz_open_procfs(0x0, &(0x7f00000000c0)='fd/3\x00') syz_mount_image$gfs2meta(&(0x7f0000000440)='gfs2meta\x00', &(0x7f0000000480)='\x13\x13w\xc5\xfc5\xd4\x14T\xd5\xd4\x1d)\xad\x1a`)Y\x81F\xe6\xbe\x16nA\xad\r\xbd@T\x03<\x9f3\xbb\xda\x82$\xa2\xf3\xd7r\xe7cnH\xb3<\xbfp\x83r\xe8\xf1\xb9\x93>\xc5\x12wC\xbe\"\x06 \x9e\xf0-\xf9\xcb\xf2\xf6\xe8\x80\xd38//file0\x00', 0x0, 0x9, &(0x7f0000000a00)=[{&(0x7f0000000500)="605adc1e093e392c3c0d6c5c1592cb727d49e2049f5f539caf35ff612ee18bce63994cd7211b5c7f0762c038508aa885fa277b88ca40b887ef7077388fddafd7e0e30fead6f928203dc21555c9a4f3be8ca6585036d56f9135ac2e9d690fd2140007f87cf309efb5fc7ef363ec8957d978274230f7", 0x75, 0x7fff}, {&(0x7f0000000580)="d89a3e12fd8a1cf7fcb3548d3a34c0c160dcb6fb3dab860f8f46bfb054659df3874028d36b4c9991088a8cae71bec85c8d", 0x31, 0x9}, {&(0x7f00000005c0)="10d687b2f1682354da07e68672f712ea59b0561312797e1b84ca5dbef4122191a6e9318a9c1204ee47ec8b0051fe3333c1d26b6785d51cefdf89ccc98be906b2a85d6cde2f7c433457a2237161cf131598e3e2b5f2999170b808e570f8acb33910a0d74d4eff308afc27c09bcd6701c61851369ef10acd27903eed7f1d6a627912722e8df5d1a11d764cc04296abc9b39cdd533c094ed6b94b7a6cf5443f348ee63ec4756dff18aea7c086527fb4d571c28f875f2eeb3058024476d9062abc7e7f7ae6df03dd358d", 0xc8, 0x8}, {&(0x7f00000006c0)="dbea433968a63cb6cfe969e269f9f7028468eb36d4cd607a", 0x18, 0x6}, {&(0x7f0000000700)="c4c535b9c4fc460aec6233c6d704ce8a36e50ee2c90bbf9b61f2b3381d1c756de3f1db91eed2322e24e55172f4a7f8e5077ace439b230923dad59d2a0cbc65d869e946414cf4a051cdb10f981addda9fd5c669", 0x53, 0x1}, {&(0x7f0000000780)="07b169e2fd202749f6f0dbd2e007cbfea183983f2fc5e84130d0e0e6a30e20d49042081ba001fc4448dba480e2afb0e92b23a869e6c19f9b5b1bcebf0eb62b9df3adab125e7593be18b17740e85d3fb3ad", 0x51, 0x20000000000}, {&(0x7f0000000800)="27c25bcfaf0d2fabd549134e7d6dba224b31d18292e421240969571e14280d71c587c15dccbb2666dec2b0274518fe87dca7185368dd127f0cb0e250cfd162dab4b0a0351a66a7c94cf253cff02aa4a6ad4b2a96046d390d97fe316e2934576b65f299b01abe7733cdd081c293259b0a60bd6fab24b9cc2b5f5f4c6ced4481046c145ba65ffc808f84f1", 0x8a, 0x3}, {&(0x7f00000008c0)="d658cae43ab153264a67ebe8f92f06f1a1593e4554f1386c862a7330de51f6bcc3b2698ac298d93de21022e838207da2cd3b035ba606870a0b3742b042f187e4f25f212aa59eee01fc2ec192a32e7a664092e79df8d6b624f9681af5616ec78353942ba50a27bf7636fb65273b1c848fa6bc2c919655d059126177c14206a83f195cec3f6815141ccef5c7878d0d92709a30020d8e0be1c0d7d059e42d7a440fb6918e845cfa14e5fb2c12a1588b2c14d178b970de29d3c2a25cab036bafb616befe76ef65e113bf9031885ed668691b", 0xd0, 0x100000000}, {&(0x7f00000009c0)="b307dfecc3decb94dec9081c03ed0dd3fa3e4013a081", 0x16, 0x2}], 0x10400, &(0x7f0000000b00)={[{'rfdno'}, {'/dev/swradio#\x00'}, {':'}], [{@fscontext={'fscontext', 0x3d, 'staff_u'}}, {@dont_appraise='dont_appraise'}, {@uid_lt={'uid<', 0xee01}}, {@subj_type={'subj_type', 0x3d, 'trans=fd,'}}, {@seclabel='seclabel'}]}) mount$9p_fd(0x0, &(0x7f0000000300)='.\x00', &(0x7f0000000080)='9p\x00', 0x0, &(0x7f0000000280)={'trans=fd,', {'rfdno', 0x3d, r2}, 0x2c, {'wfdno'}, 0x2c, {[], [{@fowner_lt={'fowner<', 0xee00}}]}}) renameat2(r0, &(0x7f0000000140)='\x13\x13w\xc5\xfc5\xd4\x14T\xd5\xd4\x1d)\xad\x1a`)Y\x81F\xe6\xbe\x16nA\xad\r\xbd@T\x03<\x9f3\xbb\xda\x82$\xa2\xf3\xd7r\xe7cnH\xb3<\xbfp\x83r\xe8\xf1\xb9\x93>\xc5\x12wC\xbe\"\x06 \x9e\xf0-\xf9\xcb\xf2\xf6\xe8\x80\xd38//file0\x00', r2, &(0x7f00000001c0)='./file0/file0\x00', 0xede7dba98d908b59) 21:38:36 executing program 1: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) r3 = syz_open_procfs(0x0, &(0x7f00000000c0)='fd/3\x00') mount$9p_fd(0x0, &(0x7f0000000300)='.\x00', &(0x7f0000000080)='9p\x00', 0x25000000, &(0x7f00000003c0)={'trans=fd,', {'rfdno', 0x3d, r3}, 0x2c, {'wfdno', 0x3d, r2}}) [ 256.383364][T17600] CPU: 0 PID: 17600 Comm: syz-executor.0 Not tainted 5.11.0-syzkaller #0 [ 256.391815][T17600] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 256.401866][T17600] Call Trace: [ 256.405141][T17600] dump_stack+0x116/0x15d [ 256.409468][T17600] should_fail+0x23c/0x250 [ 256.413881][T17600] __should_failslab+0x81/0x90 [ 256.418712][T17600] should_failslab+0x5/0x20 [ 256.423225][T17600] kmem_cache_alloc_node_trace+0x4b/0x2e0 [ 256.428960][T17600] ? __kmalloc_node+0x30/0x40 [ 256.433636][T17600] __kmalloc_node+0x30/0x40 [ 256.438141][T17600] kvmalloc_node+0x81/0xf0 [ 256.442564][T17600] __list_lru_init+0x1dd/0x520 [ 256.447332][T17600] alloc_super+0x4bf/0x520 [ 256.451755][T17600] ? mount_bdev+0x290/0x290 [ 256.456264][T17600] sget+0x189/0x370 [ 256.460075][T17600] ? test_bdev_super+0x30/0x30 [ 256.464976][T17600] mount_bdev+0xd3/0x290 [ 256.469229][T17600] ? ext4_mount+0x40/0x40 [ 256.473623][T17600] ? ext4_errno_to_code+0x110/0x110 [ 256.478811][T17600] ext4_mount+0x2d/0x40 21:38:36 executing program 4: set_mempolicy(0x8003, &(0x7f0000000300)=0x75f, 0x9) open(&(0x7f0000000300)='.\x00', 0x0, 0x0) r0 = syz_open_procfs(0x0, &(0x7f00000000c0)='fd/3\x00') r1 = syz_open_dev$swradio(&(0x7f0000000100)='/dev/swradio#\x00', 0x0, 0x2) mount$9p_fd(0x0, &(0x7f0000000300)='.\x00', &(0x7f0000000080)='9p\x00', 0x400000000000000, &(0x7f0000000740)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}}) 21:38:36 executing program 4: set_mempolicy(0x8003, &(0x7f0000000300)=0x75f, 0x9) open(&(0x7f0000000300)='.\x00', 0x0, 0x0) r0 = syz_open_procfs(0x0, &(0x7f00000000c0)='fd/3\x00') r1 = syz_open_dev$swradio(&(0x7f0000000100)='/dev/swradio#\x00', 0x0, 0x2) mount$9p_fd(0x0, &(0x7f0000000300)='.\x00', &(0x7f0000000080)='9p\x00', 0x500000000000000, &(0x7f0000000740)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}}) [ 256.482993][T17600] legacy_get_tree+0x70/0xc0 [ 256.487673][T17600] vfs_get_tree+0x4a/0x1a0 [ 256.492092][T17600] path_mount+0x11b6/0x1ca0 [ 256.496612][T17600] __se_sys_mount+0x23d/0x2e0 [ 256.501355][T17600] __x64_sys_mount+0x63/0x70 [ 256.506008][T17600] do_syscall_64+0x39/0x80 [ 256.510422][T17600] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 256.516364][T17600] RIP: 0033:0x4672ba [ 256.520335][T17600] Code: 48 c7 c2 bc ff ff ff f7 d8 64 89 02 b8 ff ff ff ff eb d2 e8 b8 04 00 00 0f 1f 84 00 00 00 00 00 49 89 ca b8 a5 00 00 00 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 256.527358][T17634] loop2: detected capacity change from 264192 to 0 [ 256.539941][T17600] RSP: 002b:00007f8175ef9fa8 EFLAGS: 00000206 ORIG_RAX: 00000000000000a5 [ 256.539965][T17600] RAX: ffffffffffffffda RBX: 0000000020000200 RCX: 00000000004672ba [ 256.539976][T17600] RDX: 0000000020000000 RSI: 0000000020000100 RDI: 00007f8175efa000 [ 256.570925][T17600] RBP: 00007f8175efa040 R08: 00007f8175efa040 R09: 0000000020000000 [ 256.572399][T17634] gfs2meta: Unknown parameter 'rfdno' [ 256.578898][T17600] R10: 0000000000000000 R11: 0000000000000206 R12: 0000000020000000 [ 256.578913][T17600] R13: 0000000020000100 R14: 00007f8175efa000 R15: 0000000020000040 [ 256.625299][T17642] 9pnet: Insufficient options for proto=fd [ 256.643787][T10606] kernel read not supported for file root/syzkaller-testdir051064025/syzkaller.PVWmQb/308 (pid: 10606 comm: kworker/1:6) [ 256.704530][T10606] kernel read not supported for file root/syzkaller-testdir051064025/syzkaller.PVWmQb/308 (pid: 10606 comm: kworker/1:6) [ 256.825887][T17634] loop2: detected capacity change from 264192 to 0 [ 256.832991][T17634] gfs2meta: Unknown parameter 'rfdno' 21:38:36 executing program 0 (fault-call:0 fault-nth:76): syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x40000, 0x3, &(0x7f0000000200)=[{&(0x7f0000010000)="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", 0x10c, 0x400}, {&(0x7f0000010200)="0500000000000000000000000000000000000000040100002b", 0x19, 0x560}, {&(0x7f0000010300)="000000000000000000000000000000000000000000000000000000001481910a040000001400000024", 0x29, 0x7e0}], 0x0, &(0x7f0000000040)={[{@usrjquota='usrjquota='}, {@data_err_abort='data_err=abort'}]}) 21:38:36 executing program 3: set_mempolicy(0x8003, &(0x7f0000000300)=0x75f, 0x9) open(&(0x7f0000000300)='.\x00', 0x0, 0x0) r0 = syz_open_procfs(0x0, &(0x7f00000000c0)='fd/3\x00') r1 = syz_open_dev$swradio(&(0x7f0000000100)='/dev/swradio#\x00', 0x0, 0x2) mount$9p_fd(0x0, &(0x7f0000000300)='.\x00', &(0x7f0000000080)='9p\x00', 0xfeffffff00000000, &(0x7f0000000740)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}}) 21:38:36 executing program 4: set_mempolicy(0x8003, &(0x7f0000000300)=0x75f, 0x9) open(&(0x7f0000000300)='.\x00', 0x0, 0x0) r0 = syz_open_procfs(0x0, &(0x7f00000000c0)='fd/3\x00') r1 = syz_open_dev$swradio(&(0x7f0000000100)='/dev/swradio#\x00', 0x0, 0x2) mount$9p_fd(0x0, &(0x7f0000000300)='.\x00', &(0x7f0000000080)='9p\x00', 0x600000000000000, &(0x7f0000000740)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}}) 21:38:36 executing program 1: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) r3 = syz_open_procfs(0x0, &(0x7f00000000c0)='fd/3\x00') mount$9p_fd(0x0, &(0x7f0000000300)='.\x00', &(0x7f0000000080)='9p\x00', 0x3f000000, &(0x7f00000003c0)={'trans=fd,', {'rfdno', 0x3d, r3}, 0x2c, {'wfdno', 0x3d, r2}}) 21:38:36 executing program 5: set_mempolicy(0x8003, &(0x7f0000000300)=0x75f, 0x9) open(&(0x7f0000000300)='.\x00', 0x0, 0x0) r0 = syz_open_procfs(0x0, &(0x7f00000000c0)='fd/3\x00') r1 = syz_open_dev$swradio(&(0x7f0000000100)='/dev/swradio#\x00', 0x0, 0x2) mount$9p_fd(0x0, &(0x7f0000000300)='.\x00', &(0x7f0000000080)='9p\x00', 0x0, &(0x7f0000000740)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}, 0x2c, {[], [], 0x9}}) [ 256.878384][T17629] 9pnet: Insufficient options for proto=fd 21:38:36 executing program 2: set_mempolicy(0x8003, &(0x7f0000000300)=0x75f, 0x9) r0 = open(&(0x7f0000000300)='.\x00', 0x0, 0x0) symlinkat(&(0x7f0000000040)='\x13\x13w\xc5\xfc5\xd4\x14T\xd5\xd4\x1d)\xad\x1a`)Y\x81F\xe6\xbe\x16nA\xad\r\xbd@T\x03<\x9f3\xbb\xda\x82$\xa2\xf3\xd7r\xe7cnH\xb3<\xbfp\x83r\xe8\xf1\xb9\x93>\xc5\x12wC\xbe\"\x06 \x9e\xf0-\xf9\xcb\xf2\xf6\xe8\x80\xd38/\x00', r0, &(0x7f00000000c0)='./file0\x00') mkdirat(r0, &(0x7f0000000200)='\x13\x13w\xc5\xfc5\xd4\x14T\xd5\xd4\x1d)\xad\x1a`)Y\x81F\xe6\xbe\x16nA\xad\r\xbd@T\x03<\x9f3\xbb\xda\x82$\xa2\xf3\xd7r\xe7cnH\xb3<\xbfp\x83r\xe8\xf1\xb9\x93>\xc5\x12wC\xbe\"\x06 \x9e\xf0-\xf9\xcb\xf2\xf6\xe8\x80\xd38/\x00', 0x0) symlinkat(&(0x7f0000000340)='./file0/file0\x00', r0, &(0x7f0000000380)='\x13\x13w\xc5\xfc5\xd4\x14T\xd5\xd4\x1d)\xad\x1a`)Y\x81F\xe6\xbe\x16nA\xad\r\xbd@T\x03<\x9f3\xbb\xda\x82$\xa2\xf3\xd7r\xe7cnH\xb3<\xbfp\x83r\xe8\xf1\xb9\x93>\xc5\x12wC\xbe\"\x06 \x9e\xf0-\xf9\xcb\xf2\xf6\xe8\x80\xd38//file0\x00') r1 = open(&(0x7f0000000100)='.\x00', 0x0, 0x0) open$dir(&(0x7f0000000140)='.\x00', 0x0, 0x100) renameat2(r1, &(0x7f0000000400)='./file0/file0\x00', r1, &(0x7f0000000000)='./file0\x00', 0x0) [ 256.963101][T10606] kernel read not supported for file root/syzkaller-testdir051064025/syzkaller.PVWmQb/309 (pid: 10606 comm: kworker/1:6) [ 256.964772][T17673] loop0: detected capacity change from 512 to 0 21:38:36 executing program 1: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) r3 = syz_open_procfs(0x0, &(0x7f00000000c0)='fd/3\x00') mount$9p_fd(0x0, &(0x7f0000000300)='.\x00', &(0x7f0000000080)='9p\x00', 0x5c000000, &(0x7f00000003c0)={'trans=fd,', {'rfdno', 0x3d, r3}, 0x2c, {'wfdno', 0x3d, r2}}) 21:38:37 executing program 4: set_mempolicy(0x8003, &(0x7f0000000300)=0x75f, 0x9) open(&(0x7f0000000300)='.\x00', 0x0, 0x0) r0 = syz_open_procfs(0x0, &(0x7f00000000c0)='fd/3\x00') r1 = syz_open_dev$swradio(&(0x7f0000000100)='/dev/swradio#\x00', 0x0, 0x2) mount$9p_fd(0x0, &(0x7f0000000300)='.\x00', &(0x7f0000000080)='9p\x00', 0x700000000000000, &(0x7f0000000740)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}}) [ 257.015816][T17673] FAULT_INJECTION: forcing a failure. [ 257.015816][T17673] name failslab, interval 1, probability 0, space 0, times 0 [ 257.028753][T17673] CPU: 0 PID: 17673 Comm: syz-executor.0 Not tainted 5.11.0-syzkaller #0 [ 257.037170][T17673] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 257.048186][T17673] Call Trace: [ 257.051550][T17673] dump_stack+0x116/0x15d [ 257.055961][T17673] should_fail+0x23c/0x250 [ 257.060381][T17673] __should_failslab+0x81/0x90 [ 257.065175][T17673] ? ext4_fill_super+0x64/0x8410 [ 257.070108][T17673] should_failslab+0x5/0x20 [ 257.074674][T17673] __kmalloc_track_caller+0x57/0x360 [ 257.079956][T17673] ? bdev_name+0x1e1/0x240 [ 257.084376][T17673] kstrdup+0x31/0x70 [ 257.088284][T17673] ext4_fill_super+0x64/0x8410 [ 257.093045][T17673] ? vsnprintf+0xe8f/0xed0 [ 257.097549][T17673] ? snprintf+0x6f/0x90 [ 257.101769][T17673] ? register_shrinker_prepared+0xdf/0xf0 [ 257.107493][T17673] ? set_blocksize+0x197/0x2a0 21:38:37 executing program 2: set_mempolicy(0x8003, &(0x7f0000000300)=0x75f, 0x9) r0 = open(&(0x7f0000000440)='\x13\x13w\xc5\xfc5\xd4\x14T\xd5\xd4\x1d)\xad\x1a`)Y\x81F\xe6\xbe\x16nA\xad\r\xbd@T\x03<\x9f3\xbb\xda\x82$\xa2\xf3\xd7r\xe7cnH\xb3<\xbfp\x83r\xe8\xf1\xb9\x93>\xc5\x12wC\xbe\"\x06 \x9e\xf0-\xf9\xcb\xf2\xf6\xe8\x80\xd38/\x00', 0x2140c0, 0x100) symlinkat(&(0x7f0000000040)='\x13\x13w\xc5\xfc5\xd4\x14T\xd5\xd4\x1d)\xad\x1a`)Y\x81F\xe6\xbe\x16nA\xad\r\xbd@T\x03<\x9f3\xbb\xda\x82$\xa2\xf3\xd7r\xe7cnH\xb3<\xbfp\x83r\xe8\xf1\xb9\x93>\xc5\x12wC\xbe\"\x06 \x9e\xf0-\xf9\xcb\xf2\xf6\xe8\x80\xd38/\x00', r0, &(0x7f00000000c0)='./file0\x00') mkdirat(r0, &(0x7f0000000200)='\x13\x13w\xc5\xfc5\xd4\x14T\xd5\xd4\x1d)\xad\x1a`)Y\x81F\xe6\xbe\x16nA\xad\r\xbd@T\x03<\x9f3\xbb\xda\x82$\xa2\xf3\xd7r\xe7cnH\xb3<\xbfp\x83r\xe8\xf1\xb9\x93>\xc5\x12wC\xbe\"\x06 \x9e\xf0-\xf9\xcb\xf2\xf6\xe8\x80\xd38/\x00', 0x0) symlinkat(&(0x7f0000000340)='./file0/file0\x00', r0, &(0x7f0000000380)='\x13\x13w\xc5\xfc5\xd4\x14T\xd5\xd4\x1d)\xad\x1a`)Y\x81F\xe6\xbe\x16nA\xad\r\xbd@T\x03<\x9f3\xbb\xda\x82$\xa2\xf3\xd7r\xe7cnH\xb3<\xbfp\x83r\xe8\xf1\xb9\x93>\xc5\x12wC\xbe\"\x06 \x9e\xf0-\xf9\xcb\xf2\xf6\xe8\x80\xd38//file0\x00') r1 = open(&(0x7f0000000100)='.\x00', 0x0, 0x0) renameat2(r1, &(0x7f0000000400)='./file0/file0\x00', r0, &(0x7f0000000000)='./file0\x00', 0x0) mkdirat(r1, &(0x7f0000000140)='\x13\x13w\xc5\xfc5\xd4\x14T\xd5\xd4\x1d)\xad\x1a`)Y\x81F\xe6\xbe\x16nA\xad\r\xbd@T\x03<\x9f3\xbb\xda\x82$\xa2\xf3\xd7r\xe7cnH\xb3<\xbfp\x83r\xe8\xf1\xb9\x93>\xc5\x12wC\xbe\"\x06 \x9e\xf0-\xf9\xcb\xf2\xf6\xe8\x80\xd38/\x00', 0x101) [ 257.112287][T17673] mount_bdev+0x1e8/0x290 [ 257.116623][T17673] ? ext4_mount+0x40/0x40 [ 257.120998][T17673] ? ext4_errno_to_code+0x110/0x110 [ 257.126196][T17673] ext4_mount+0x2d/0x40 [ 257.130433][T17673] legacy_get_tree+0x70/0xc0 [ 257.135044][T17673] vfs_get_tree+0x4a/0x1a0 [ 257.139461][T17673] path_mount+0x11b6/0x1ca0 [ 257.143954][T17673] __se_sys_mount+0x23d/0x2e0 [ 257.148677][T17673] __x64_sys_mount+0x63/0x70 [ 257.153247][T17673] do_syscall_64+0x39/0x80 [ 257.157673][T17673] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 257.163551][T17673] RIP: 0033:0x4672ba [ 257.167426][T17673] Code: 48 c7 c2 bc ff ff ff f7 d8 64 89 02 b8 ff ff ff ff eb d2 e8 b8 04 00 00 0f 1f 84 00 00 00 00 00 49 89 ca b8 a5 00 00 00 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 257.187064][T17673] RSP: 002b:00007f8175ef9fa8 EFLAGS: 00000206 ORIG_RAX: 00000000000000a5 [ 257.195472][T17673] RAX: ffffffffffffffda RBX: 0000000020000200 RCX: 00000000004672ba [ 257.203595][T17673] RDX: 0000000020000000 RSI: 0000000020000100 RDI: 00007f8175efa000 21:38:37 executing program 3: set_mempolicy(0x8003, &(0x7f0000000300)=0x75f, 0x9) open(&(0x7f0000000300)='.\x00', 0x0, 0x0) r0 = syz_open_procfs(0x0, &(0x7f00000000c0)='fd/3\x00') r1 = syz_open_dev$swradio(&(0x7f0000000100)='/dev/swradio#\x00', 0x0, 0x2) mount$9p_fd(0x0, &(0x7f0000000300)='.\x00', &(0x7f0000000080)='9p\x00', 0xff00000000000000, &(0x7f0000000740)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}}) 21:38:37 executing program 5: set_mempolicy(0x8003, &(0x7f0000000300)=0x75f, 0x9) open(&(0x7f0000000300)='.\x00', 0x0, 0x0) r0 = syz_open_procfs(0x0, &(0x7f00000000c0)='fd/3\x00') r1 = syz_open_dev$swradio(&(0x7f0000000100)='/dev/swradio#\x00', 0x0, 0x2) mount$9p_fd(0x0, &(0x7f0000000300)='.\x00', &(0x7f0000000080)='9p\x00', 0x0, &(0x7f0000000740)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}, 0x2c, {[], [], 0xa}}) 21:38:37 executing program 2: set_mempolicy(0x8003, &(0x7f0000000300)=0x75f, 0x9) r0 = open(&(0x7f0000000300)='.\x00', 0x0, 0x0) symlinkat(&(0x7f0000000040)='\x13\x13w\xc5\xfc5\xd4\x14T\xd5\xd4\x1d)\xad\x1a`)Y\x81F\xe6\xbe\x16nA\xad\r\xbd@T\x03<\x9f3\xbb\xda\x82$\xa2\xf3\xd7r\xe7cnH\xb3<\xbfp\x83r\xe8\xf1\xb9\x93>\xc5\x12wC\xbe\"\x06 \x9e\xf0-\xf9\xcb\xf2\xf6\xe8\x80\xd38/\x00', r0, &(0x7f00000000c0)='./file0\x00') mkdirat(r0, &(0x7f0000000200)='\x13\x13w\xc5\xfc5\xd4\x14T\xd5\xd4\x1d)\xad\x1a`)Y\x81F\xe6\xbe\x16nA\xad\r\xbd@T\x03<\x9f3\xbb\xda\x82$\xa2\xf3\xd7r\xe7cnH\xb3<\xbfp\x83r\xe8\xf1\xb9\x93>\xc5\x12wC\xbe\"\x06 \x9e\xf0-\xf9\xcb\xf2\xf6\xe8\x80\xd38/\x00', 0x0) symlinkat(&(0x7f0000000340)='./file0/file0\x00', r0, &(0x7f0000000380)='\x13\x13w\xc5\xfc5\xd4\x14T\xd5\xd4\x1d)\xad\x1a`)Y\x81F\xe6\xbe\x16nA\xad\r\xbd@T\x03<\x9f3\xbb\xda\x82$\xa2\xf3\xd7r\xe7cnH\xb3<\xbfp\x83r\xe8\xf1\xb9\x93>\xc5\x12wC\xbe\"\x06 \x9e\xf0-\xf9\xcb\xf2\xf6\xe8\x80\xd38//file0\x00') r1 = open(&(0x7f0000000100)='.\x00', 0x0, 0x0) renameat2(r1, &(0x7f0000000400)='./file0/file0\x00', r1, &(0x7f0000000000)='./file0\x00', 0x0) [ 257.211557][T17673] RBP: 00007f8175efa040 R08: 00007f8175efa040 R09: 0000000020000000 [ 257.219509][T17673] R10: 0000000000000000 R11: 0000000000000206 R12: 0000000020000000 [ 257.227596][T17673] R13: 0000000020000100 R14: 00007f8175efa000 R15: 0000000020000040 [ 257.243515][T17695] 9pnet: Insufficient options for proto=fd 21:38:37 executing program 0 (fault-call:0 fault-nth:77): syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x40000, 0x3, &(0x7f0000000200)=[{&(0x7f0000010000)="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", 0x10c, 0x400}, {&(0x7f0000010200)="0500000000000000000000000000000000000000040100002b", 0x19, 0x560}, {&(0x7f0000010300)="000000000000000000000000000000000000000000000000000000001481910a040000001400000024", 0x29, 0x7e0}], 0x0, &(0x7f0000000040)={[{@usrjquota='usrjquota='}, {@data_err_abort='data_err=abort'}]}) 21:38:37 executing program 4: set_mempolicy(0x8003, &(0x7f0000000300)=0x75f, 0x9) open(&(0x7f0000000300)='.\x00', 0x0, 0x0) r0 = syz_open_procfs(0x0, &(0x7f00000000c0)='fd/3\x00') r1 = syz_open_dev$swradio(&(0x7f0000000100)='/dev/swradio#\x00', 0x0, 0x2) mount$9p_fd(0x0, &(0x7f0000000300)='.\x00', &(0x7f0000000080)='9p\x00', 0x800000000000000, &(0x7f0000000740)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}}) 21:38:37 executing program 3: set_mempolicy(0x8003, &(0x7f0000000300)=0x75f, 0x9) open(&(0x7f0000000300)='.\x00', 0x0, 0x0) r0 = syz_open_procfs(0x0, &(0x7f00000000c0)='fd/3\x00') r1 = syz_open_dev$swradio(&(0x7f0000000100)='/dev/swradio#\x00', 0x0, 0x2) mount$9p_fd(0x0, &(0x7f0000000300)='.\x00', &(0x7f0000000080)='9p\x00', 0xff9f000000000000, &(0x7f0000000740)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}}) [ 257.333307][T17710] 9pnet: Insufficient options for proto=fd 21:38:37 executing program 1: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) r3 = syz_open_procfs(0x0, &(0x7f00000000c0)='fd/3\x00') mount$9p_fd(0x0, &(0x7f0000000300)='.\x00', &(0x7f0000000080)='9p\x00', 0x8cffffff, &(0x7f00000003c0)={'trans=fd,', {'rfdno', 0x3d, r3}, 0x2c, {'wfdno', 0x3d, r2}}) 21:38:37 executing program 4: set_mempolicy(0x8003, &(0x7f0000000300)=0x75f, 0x9) open(&(0x7f0000000300)='.\x00', 0x0, 0x0) r0 = syz_open_procfs(0x0, &(0x7f00000000c0)='fd/3\x00') r1 = syz_open_dev$swradio(&(0x7f0000000100)='/dev/swradio#\x00', 0x0, 0x2) mount$9p_fd(0x0, &(0x7f0000000300)='.\x00', &(0x7f0000000080)='9p\x00', 0x900000000000000, &(0x7f0000000740)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}}) [ 257.380715][ T3648] kernel read not supported for file root/syzkaller-testdir051064025/syzkaller.PVWmQb/310 (pid: 3648 comm: kworker/1:2) [ 257.393496][T17720] loop0: detected capacity change from 512 to 0 21:38:37 executing program 3: set_mempolicy(0x8003, &(0x7f0000000300)=0x75f, 0x9) open(&(0x7f0000000300)='.\x00', 0x0, 0x0) r0 = syz_open_procfs(0x0, &(0x7f00000000c0)='fd/3\x00') r1 = syz_open_dev$swradio(&(0x7f0000000100)='/dev/swradio#\x00', 0x0, 0x2) mount$9p_fd(0x0, &(0x7f0000000300)='.\x00', &(0x7f0000000080)='9p\x00', 0xffff000000000000, &(0x7f0000000740)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}}) 21:38:37 executing program 2: set_mempolicy(0x8003, &(0x7f0000000300)=0x75f, 0x9) r0 = open(&(0x7f0000000300)='.\x00', 0x0, 0x0) symlinkat(&(0x7f0000000040)='\x13\x13w\xc5\xfc5\xd4\x14T\xd5\xd4\x1d)\xad\x1a`)Y\x81F\xe6\xbe\x16nA\xad\r\xbd@T\x03<\x9f3\xbb\xda\x82$\xa2\xf3\xd7r\xe7cnH\xb3<\xbfp\x83r\xe8\xf1\xb9\x93>\xc5\x12wC\xbe\"\x06 \x9e\xf0-\xf9\xcb\xf2\xf6\xe8\x80\xd38/\x00', r0, &(0x7f00000000c0)='./file0\x00') r1 = openat$cgroup_ro(r0, &(0x7f00000001c0)='memory.current\x00', 0x0, 0x0) mkdirat(r1, &(0x7f0000000140)='\x13\x13w\xc5\xfc5\xd4\x14T\xd5\xd4\x1d)\xad\x1a`)Y\x81F\xe6\xbe\x16nA\xad\r\xbd@T\x03<\x9f3\xbb\xda\x82$\xa2\xf3\xd7r\xe7cnH\xb3<\xbfp\x83r\xe8\xf1\xb9\x93>\xc5\x12wC\xbe\"\x06 \x9e\xf0-\xf9\xcb\xf2\xf6\xe8\x80\xd38/\x00', 0x88) symlinkat(&(0x7f0000000340)='./file0/file0\x00', r0, &(0x7f0000000380)='\x13\x13w\xc5\xfc5\xd4\x14T\xd5\xd4\x1d)\xad\x1a`)Y\x81F\xe6\xbe\x16nA\xad\r\xbd@T\x03<\x9f3\xbb\xda\x82$\xa2\xf3\xd7r\xe7cnH\xb3<\xbfp\x83r\xe8\xf1\xb9\x93>\xc5\x12wC\xbe\"\x06 \x9e\xf0-\xf9\xcb\xf2\xf6\xe8\x80\xd38//file0\x00') r2 = open(&(0x7f0000000100)='.\x00', 0x0, 0x0) renameat2(r2, &(0x7f0000000400)='./file0/file0\x00', r2, &(0x7f0000000000)='./file0\x00', 0x0) [ 257.443231][T17720] FAULT_INJECTION: forcing a failure. [ 257.443231][T17720] name failslab, interval 1, probability 0, space 0, times 0 [ 257.503912][ T8977] kernel read not supported for file root/syzkaller-testdir051064025/syzkaller.PVWmQb/310 (pid: 8977 comm: kworker/0:3) [ 257.548501][T17720] CPU: 1 PID: 17720 Comm: syz-executor.0 Not tainted 5.11.0-syzkaller #0 [ 257.558180][T17720] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 257.568229][T17720] Call Trace: [ 257.571503][T17720] dump_stack+0x116/0x15d [ 257.575852][T17720] should_fail+0x23c/0x250 [ 257.580289][T17720] __should_failslab+0x81/0x90 [ 257.585924][T17720] ? ext4_fill_super+0x64/0x8410 [ 257.590852][T17720] should_failslab+0x5/0x20 [ 257.595339][T17720] __kmalloc_track_caller+0x57/0x360 [ 257.600603][T17720] ? bdev_name+0x1e1/0x240 [ 257.605056][T17720] kstrdup+0x31/0x70 [ 257.608931][T17720] ext4_fill_super+0x64/0x8410 [ 257.613718][T17720] ? vsnprintf+0xe8f/0xed0 [ 257.618117][T17720] ? snprintf+0x6f/0x90 [ 257.622264][T17720] ? register_shrinker_prepared+0xdf/0xf0 [ 257.627964][T17720] ? set_blocksize+0x197/0x2a0 [ 257.632786][T17720] mount_bdev+0x1e8/0x290 [ 257.637097][T17720] ? ext4_mount+0x40/0x40 [ 257.641477][T17720] ? ext4_errno_to_code+0x110/0x110 [ 257.646685][T17720] ext4_mount+0x2d/0x40 [ 257.650844][T17720] legacy_get_tree+0x70/0xc0 [ 257.655423][T17720] vfs_get_tree+0x4a/0x1a0 [ 257.659820][T17720] path_mount+0x11b6/0x1ca0 [ 257.664307][T17720] __se_sys_mount+0x23d/0x2e0 [ 257.668975][T17720] __x64_sys_mount+0x63/0x70 [ 257.673613][T17720] do_syscall_64+0x39/0x80 [ 257.678014][T17720] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 257.683964][T17720] RIP: 0033:0x4672ba [ 257.687837][T17720] Code: 48 c7 c2 bc ff ff ff f7 d8 64 89 02 b8 ff ff ff ff eb d2 e8 b8 04 00 00 0f 1f 84 00 00 00 00 00 49 89 ca b8 a5 00 00 00 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 257.707423][T17720] RSP: 002b:00007f8175ef9fa8 EFLAGS: 00000206 ORIG_RAX: 00000000000000a5 [ 257.715902][T17720] RAX: ffffffffffffffda RBX: 0000000020000200 RCX: 00000000004672ba [ 257.723867][T17720] RDX: 0000000020000000 RSI: 0000000020000100 RDI: 00007f8175efa000 [ 257.731829][T17720] RBP: 00007f8175efa040 R08: 00007f8175efa040 R09: 0000000020000000 [ 257.739778][T17720] R10: 0000000000000000 R11: 0000000000000206 R12: 0000000020000000 21:38:37 executing program 3: set_mempolicy(0x8003, &(0x7f0000000300)=0x75f, 0x9) open(&(0x7f0000000300)='.\x00', 0x0, 0x0) r0 = syz_open_procfs(0x0, &(0x7f00000000c0)='fd/3\x00') r1 = syz_open_dev$swradio(&(0x7f0000000100)='/dev/swradio#\x00', 0x0, 0x2) mount$9p_fd(0x0, &(0x7f0000000300)='.\x00', &(0x7f0000000080)='9p\x00', 0xffffffff00000000, &(0x7f0000000740)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}}) 21:38:37 executing program 4: set_mempolicy(0x8003, &(0x7f0000000300)=0x75f, 0x9) open(&(0x7f0000000300)='.\x00', 0x0, 0x0) r0 = syz_open_procfs(0x0, &(0x7f00000000c0)='fd/3\x00') r1 = syz_open_dev$swradio(&(0x7f0000000100)='/dev/swradio#\x00', 0x0, 0x2) mount$9p_fd(0x0, &(0x7f0000000300)='.\x00', &(0x7f0000000080)='9p\x00', 0xa00000000000000, &(0x7f0000000740)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}}) 21:38:37 executing program 5: set_mempolicy(0x8003, &(0x7f0000000300)=0x75f, 0x9) open(&(0x7f0000000300)='.\x00', 0x0, 0x0) r0 = syz_open_procfs(0x0, &(0x7f00000000c0)='fd/3\x00') r1 = syz_open_dev$swradio(&(0x7f0000000100)='/dev/swradio#\x00', 0x0, 0x2) mount$9p_fd(0x0, &(0x7f0000000300)='.\x00', &(0x7f0000000080)='9p\x00', 0x0, &(0x7f0000000740)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}, 0x2c, {[], [], 0xb}}) [ 257.748103][T17720] R13: 0000000020000100 R14: 00007f8175efa000 R15: 0000000020000040 21:38:37 executing program 2: set_mempolicy(0x8003, &(0x7f0000000300)=0x75f, 0x9) r0 = open(&(0x7f0000000300)='.\x00', 0x0, 0x0) symlinkat(&(0x7f0000000040)='\x13\x13w\xc5\xfc5\xd4\x14T\xd5\xd4\x1d)\xad\x1a`)Y\x81F\xe6\xbe\x16nA\xad\r\xbd@T\x03<\x9f3\xbb\xda\x82$\xa2\xf3\xd7r\xe7cnH\xb3<\xbfp\x83r\xe8\xf1\xb9\x93>\xc5\x12wC\xbe\"\x06 \x9e\xf0-\xf9\xcb\xf2\xf6\xe8\x80\xd38/\x00', r0, &(0x7f00000000c0)='./file0\x00') mkdirat(r0, &(0x7f0000000200)='\x13\x13w\xc5\xfc5\xd4\x14T\xd5\xd4\x1d)\xad\x1a`)Y\x81F\xe6\xbe\x16nA\xad\r\xbd@T\x03<\x9f3\xbb\xda\x82$\xa2\xf3\xd7r\xe7cnH\xb3<\xbfp\x83r\xe8\xf1\xb9\x93>\xc5\x12wC\xbe\"\x06 \x9e\xf0-\xf9\xcb\xf2\xf6\xe8\x80\xd38/\x00', 0x0) symlinkat(&(0x7f0000000340)='./file0/file0\x00', r0, &(0x7f0000000380)='\x13\x13w\xc5\xfc5\xd4\x14T\xd5\xd4\x1d)\xad\x1a`)Y\x81F\xe6\xbe\x16nA\xad\r\xbd@T\x03<\x9f3\xbb\xda\x82$\xa2\xf3\xd7r\xe7cnH\xb3<\xbfp\x83r\xe8\xf1\xb9\x93>\xc5\x12wC\xbe\"\x06 \x9e\xf0-\xf9\xcb\xf2\xf6\xe8\x80\xd38//file0\x00') r1 = open(&(0x7f0000000100)='.\x00', 0x0, 0x0) r2 = syz_open_procfs(0x0, &(0x7f00000000c0)='fd/3\x00') r3 = syz_open_dev$swradio(&(0x7f0000000100)='/dev/swradio#\x00', 0x0, 0x2) mount$9p_fd(0x0, &(0x7f0000000300)='.\x00', &(0x7f0000000080)='9p\x00', 0x0, &(0x7f0000000740)={'trans=fd,', {'rfdno', 0x3d, r2}, 0x2c, {'wfdno', 0x3d, r3}}) getsockopt$inet_sctp_SCTP_RTOINFO(r2, 0x84, 0x0, &(0x7f0000000140)={0x0, 0x3, 0x7f, 0xffffd6bd}, &(0x7f0000000180)=0x10) renameat2(r1, &(0x7f0000000400)='./file0/file0\x00', r1, &(0x7f0000000000)='./file0\x00', 0x0) 21:38:37 executing program 3: set_mempolicy(0x8003, &(0x7f0000000300)=0x75f, 0x9) open(&(0x7f0000000300)='.\x00', 0x0, 0x0) r0 = syz_open_procfs(0x0, &(0x7f00000000c0)='fd/3\x00') r1 = syz_open_dev$swradio(&(0x7f0000000100)='/dev/swradio#\x00', 0x0, 0x2) mount$9p_fd(0x0, &(0x7f0000000300)='.\x00', &(0x7f0000000080)='9p\x00', 0xffffffffffffff0f, &(0x7f0000000740)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}}) 21:38:38 executing program 0 (fault-call:0 fault-nth:78): syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x40000, 0x3, &(0x7f0000000200)=[{&(0x7f0000010000)="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", 0x10c, 0x400}, {&(0x7f0000010200)="0500000000000000000000000000000000000000040100002b", 0x19, 0x560}, {&(0x7f0000010300)="000000000000000000000000000000000000000000000000000000001481910a040000001400000024", 0x29, 0x7e0}], 0x0, &(0x7f0000000040)={[{@usrjquota='usrjquota='}, {@data_err_abort='data_err=abort'}]}) 21:38:38 executing program 4: set_mempolicy(0x8003, &(0x7f0000000300)=0x75f, 0x9) open(&(0x7f0000000300)='.\x00', 0x0, 0x0) r0 = syz_open_procfs(0x0, &(0x7f00000000c0)='fd/3\x00') r1 = syz_open_dev$swradio(&(0x7f0000000100)='/dev/swradio#\x00', 0x0, 0x2) mount$9p_fd(0x0, &(0x7f0000000300)='.\x00', &(0x7f0000000080)='9p\x00', 0xb00000000000000, &(0x7f0000000740)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}}) 21:38:38 executing program 5: set_mempolicy(0x8003, &(0x7f0000000300)=0x75f, 0x9) open(&(0x7f0000000300)='.\x00', 0x0, 0x0) r0 = syz_open_procfs(0x0, &(0x7f00000000c0)='fd/3\x00') r1 = syz_open_dev$swradio(&(0x7f0000000100)='/dev/swradio#\x00', 0x0, 0x2) mount$9p_fd(0x0, &(0x7f0000000300)='.\x00', &(0x7f0000000080)='9p\x00', 0x0, &(0x7f0000000740)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}, 0x2c, {[], [], 0xc}}) 21:38:38 executing program 3: set_mempolicy(0x8003, &(0x7f0000000300)=0x75f, 0x9) open(&(0x7f0000000300)='.\x00', 0x0, 0x0) r0 = syz_open_procfs(0x0, &(0x7f00000000c0)='fd/3\x00') r1 = syz_open_dev$swradio(&(0x7f0000000100)='/dev/swradio#\x00', 0x0, 0x2) mount$9p_fd(0x0, &(0x7f0000000300)='.\x00', &(0x7f0000000080)='9p\x00', 0x0, &(0x7f0000000740)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}}) 21:38:38 executing program 2: set_mempolicy(0x8003, &(0x7f0000000300)=0x75f, 0x9) r0 = open(&(0x7f0000000300)='.\x00', 0x0, 0x0) symlinkat(&(0x7f0000000040)='\x13\x13w\xc5\xfc5\xd4\x14T\xd5\xd4\x1d)\xad\x1a`)Y\x81F\xe6\xbe\x16nA\xad\r\xbd@T\x03<\x9f3\xbb\xda\x82$\xa2\xf3\xd7r\xe7cnH\xb3<\xbfp\x83r\xe8\xf1\xb9\x93>\xc5\x12wC\xbe\"\x06 \x9e\xf0-\xf9\xcb\xf2\xf6\xe8\x80\xd38/\x00', r0, &(0x7f00000000c0)='./file0\x00') openat$bsg(0xffffffffffffff9c, &(0x7f00000001c0)='/dev/bsg\x00', 0x0, 0x0) openat$ipvs(0xffffffffffffff9c, &(0x7f0000000280)='/proc/sys/net/ipv4/vs/sync_ports\x00', 0x2, 0x0) r1 = bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000180)={&(0x7f0000000140)='afs_lookup\x00', r0}, 0xfffffffffffffe5f) mmap(&(0x7f0000ffb000/0x4000)=nil, 0x4000, 0xa, 0x10010, r1, 0xa846e000) mkdirat(r0, &(0x7f0000000200)='\x13\x13w\xc5\xfc5\xd4\x14T\xd5\xd4\x1d)\xad\x1a`)Y\x81F\xe6\xbe\x16nA\xad\r\xbd@T\x03<\x9f3\xbb\xda\x82$\xa2\xf3\xd7r\xe7cnH\xb3<\xbfp\x83r\xe8\xf1\xb9\x93>\xc5\x12wC\xbe\"\x06 \x9e\xf0-\xf9\xcb\xf2\xf6\xe8\x80\xd38/\x00', 0x0) symlinkat(&(0x7f0000000340)='./file0/file0\x00', r0, &(0x7f0000000380)='\x13\x13w\xc5\xfc5\xd4\x14T\xd5\xd4\x1d)\xad\x1a`)Y\x81F\xe6\xbe\x16nA\xad\r\xbd@T\x03<\x9f3\xbb\xda\x82$\xa2\xf3\xd7r\xe7cnH\xb3<\xbfp\x83r\xe8\xf1\xb9\x93>\xc5\x12wC\xbe\"\x06 \x9e\xf0-\xf9\xcb\xf2\xf6\xe8\x80\xd38//file0\x00') r2 = open(&(0x7f0000000100)='.\x00', 0x0, 0x0) open(&(0x7f0000000440)='\x13\x13w\xc5\xfc5\xd4\x14T\xd5\xd4\x1d)\xad\x1a`)Y\x81F\xe6\xbe\x16nA\xad\r\xbd@T\x03<\x9f3\xbb\xda\x82$\xa2\xf3\xd7r\xe7cnH\xb3<\xbfp\x83r\xe8\xf1\xb9\x93>\xc5\x12wC\xbe\"\x06 \x9e\xf0-\xf9\xcb\xf2\xf6\xe8\x80\xd38//file0/file0\x00', 0x200000, 0x130) renameat2(r2, &(0x7f0000000400)='./file0/file0\x00', r2, &(0x7f0000000000)='./file0\x00', 0x0) 21:38:38 executing program 1: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) r3 = syz_open_procfs(0x0, &(0x7f00000000c0)='fd/3\x00') mount$9p_fd(0x0, &(0x7f0000000300)='.\x00', &(0x7f0000000080)='9p\x00', 0xc0ed0000, &(0x7f00000003c0)={'trans=fd,', {'rfdno', 0x3d, r3}, 0x2c, {'wfdno', 0x3d, r2}}) 21:38:38 executing program 4: set_mempolicy(0x8003, &(0x7f0000000300)=0x75f, 0x9) open(&(0x7f0000000300)='.\x00', 0x0, 0x0) r0 = syz_open_procfs(0x0, &(0x7f00000000c0)='fd/3\x00') r1 = syz_open_dev$swradio(&(0x7f0000000100)='/dev/swradio#\x00', 0x0, 0x2) mount$9p_fd(0x0, &(0x7f0000000300)='.\x00', &(0x7f0000000080)='9p\x00', 0xc00000000000000, &(0x7f0000000740)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}}) 21:38:38 executing program 1: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) r3 = syz_open_procfs(0x0, &(0x7f00000000c0)='fd/3\x00') mount$9p_fd(0x0, &(0x7f0000000300)='.\x00', &(0x7f0000000080)='9p\x00', 0xf6ffffff, &(0x7f00000003c0)={'trans=fd,', {'rfdno', 0x3d, r3}, 0x2c, {'wfdno', 0x3d, r2}}) [ 258.201318][T17792] loop0: detected capacity change from 512 to 0 [ 258.237093][T17792] FAULT_INJECTION: forcing a failure. [ 258.237093][T17792] name failslab, interval 1, probability 0, space 0, times 0 [ 258.284271][T17792] CPU: 0 PID: 17792 Comm: syz-executor.0 Not tainted 5.11.0-syzkaller #0 [ 258.292719][T17792] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 258.302772][T17792] Call Trace: [ 258.306069][T17792] dump_stack+0x116/0x15d [ 258.310401][T17792] should_fail+0x23c/0x250 [ 258.314814][T17792] __should_failslab+0x81/0x90 [ 258.319583][T17792] ? ext4_fill_super+0x89/0x8410 [ 258.324598][T17792] should_failslab+0x5/0x20 [ 258.329095][T17792] kmem_cache_alloc_trace+0x39/0x320 [ 258.334373][T17792] ext4_fill_super+0x89/0x8410 [ 258.339166][T17792] ? vsnprintf+0xe8f/0xed0 [ 258.343568][T17792] ? snprintf+0x6f/0x90 [ 258.347724][T17792] ? register_shrinker_prepared+0xdf/0xf0 [ 258.353499][T17792] ? set_blocksize+0x197/0x2a0 [ 258.358257][T17792] mount_bdev+0x1e8/0x290 [ 258.362574][T17792] ? ext4_mount+0x40/0x40 [ 258.366904][T17792] ? ext4_errno_to_code+0x110/0x110 [ 258.372182][T17792] ext4_mount+0x2d/0x40 [ 258.376329][T17792] legacy_get_tree+0x70/0xc0 [ 258.380901][T17792] vfs_get_tree+0x4a/0x1a0 [ 258.385330][T17792] path_mount+0x11b6/0x1ca0 [ 258.389823][T17792] __se_sys_mount+0x23d/0x2e0 [ 258.394553][T17792] __x64_sys_mount+0x63/0x70 [ 258.399133][T17792] do_syscall_64+0x39/0x80 [ 258.403624][T17792] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 258.409605][T17792] RIP: 0033:0x4672ba [ 258.413533][T17792] Code: 48 c7 c2 bc ff ff ff f7 d8 64 89 02 b8 ff ff ff ff eb d2 e8 b8 04 00 00 0f 1f 84 00 00 00 00 00 49 89 ca b8 a5 00 00 00 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 21:38:38 executing program 3: set_mempolicy(0x8003, &(0x7f0000000300)=0x75f, 0x9) open(&(0x7f0000000300)='.\x00', 0x0, 0x0) r0 = syz_open_procfs(0x0, &(0x7f00000000c0)='fd/3\x00') r1 = syz_open_dev$swradio(&(0x7f0000000100)='/dev/swradio#\x00', 0x0, 0x2) mount$9p_fd(0x0, &(0x7f0000000300)='.\x00', &(0x7f0000000080)='9p\x00', 0x0, &(0x7f0000000740)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}, 0x2c, {[], [], 0x2}}) 21:38:38 executing program 5: set_mempolicy(0x8003, &(0x7f0000000300)=0x75f, 0x9) open(&(0x7f0000000300)='.\x00', 0x0, 0x0) r0 = syz_open_procfs(0x0, &(0x7f00000000c0)='fd/3\x00') r1 = syz_open_dev$swradio(&(0x7f0000000100)='/dev/swradio#\x00', 0x0, 0x2) mount$9p_fd(0x0, &(0x7f0000000300)='.\x00', &(0x7f0000000080)='9p\x00', 0x0, &(0x7f0000000740)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}, 0x2c, {[], [], 0xd}}) 21:38:38 executing program 2: set_mempolicy(0x8003, &(0x7f0000000300)=0x75f, 0x9) r0 = open(&(0x7f0000000300)='.\x00', 0x0, 0x0) symlinkat(&(0x7f0000000040)='\x13\x13w\xc5\xfc5\xd4\x14T\xd5\xd4\x1d)\xad\x1a`)Y\x81F\xe6\xbe\x16nA\xad\r\xbd@T\x03<\x9f3\xbb\xda\x82$\xa2\xf3\xd7r\xe7cnH\xb3<\xbfp\x83r\xe8\xf1\xb9\x93>\xc5\x12wC\xbe\"\x06 \x9e\xf0-\xf9\xcb\xf2\xf6\xe8\x80\xd38/\x00', r0, &(0x7f00000000c0)='./file0\x00') mkdirat(r0, &(0x7f0000000200)='\x13\x13w\xc5\xfc5\xd4\x14T\xd5\xd4\x1d)\xad\x1a`)Y\x81F\xe6\xbe\x16nA\xad\r\xbd@T\x03<\x9f3\xbb\xda\x82$\xa2\xf3\xd7r\xe7cnH\xb3<\xbfp\x83r\xe8\xf1\xb9\x93>\xc5\x12wC\xbe\"\x06 \x9e\xf0-\xf9\xcb\xf2\xf6\xe8\x80\xd38/\x00', 0x0) symlinkat(&(0x7f0000000340)='./file0/file0\x00', r0, &(0x7f0000000380)='\x13\x13w\xc5\xfc5\xd4\x14T\xd5\xd4\x1d)\xad\x1a`)Y\x81F\xe6\xbe\x16nA\xad\r\xbd@T\x03<\x9f3\xbb\xda\x82$\xa2\xf3\xd7r\xe7cnH\xb3<\xbfp\x83r\xe8\xf1\xb9\x93>\xc5\x12wC\xbe\"\x06 \x9e\xf0-\xf9\xcb\xf2\xf6\xe8\x80\xd38//file0\x00') r1 = syz_open_procfs(0x0, &(0x7f00000000c0)='fd/3\x00') r2 = syz_open_dev$swradio(&(0x7f0000000100)='/dev/swradio#\x00', 0x0, 0x2) mount$9p_fd(0x0, &(0x7f0000000300)='.\x00', &(0x7f0000000080)='9p\x00', 0x0, &(0x7f0000000440)=ANY=[@ANYBLOB='trans=fd,rfdno=', @ANYRESHEX=r1, @ANYBLOB=',wfdno=', @ANYRESHEX=r2, @ANYBLOB="5a471ea62dff5f3497c2858d017ec0c595be5670fae0296554c8ee81124bf731984193f6cc49472a09f5515d53cf867bd8b4538bb04ffe76db92fa569041e851844d5fea8e8d8819cf293040ebef449d5708a773fc853549071409a9a253964ed03469e8445cec3fe31acbdfb4d409d73344069b27e1bcf1bbf50404bc721a94d39ee04b2f131fab0c36b521dfd9ad45bc6b63b924fd64a5da6d36c8"]) mknodat(0xffffffffffffffff, &(0x7f0000000180)='\x13\x13w\xc5\xfc5\xd4\x14T\xd5\xd4\x1d)\xad\x1a`)Y\x81F\xe6\xbe\x16nA\xad\r\xbd@T\x03<\x9f3\xbb\xda\x82$\xa2\xf3\xd7r\xe7cnH\xb3<\xbfp\x83r\xe8\xf1\xb9\x93>\xc5\x12wC\xbe\"\x06 \x9e\xf0-\xf9\xcb\xf2\xf6\xe8\x80\xd38//file0\x00', 0x8000, 0x0) r3 = mq_open(&(0x7f0000000000)='eth0\x00', 0x842, 0x0, 0x0) mq_notify(r3, &(0x7f0000000380)) r4 = socket$inet_udplite(0x2, 0x2, 0x88) getsockopt$sock_cred(r4, 0x1, 0x11, &(0x7f0000000000), &(0x7f0000000040)=0xc) r5 = socket$nl_route(0x10, 0x3, 0x0) getsockopt$sock_cred(r5, 0x1, 0x11, &(0x7f0000000040)={0x0, 0x0, 0x0}, &(0x7f0000000080)=0xc) setfsgid(r6) fchown(0xffffffffffffffff, 0x0, r6) fchownat(r1, &(0x7f0000000140)='./file0\x00', 0xee00, r6, 0x200) r7 = open(&(0x7f00000002c0)='./file0/file0\x00', 0xa8d00, 0x0) renameat2(r7, &(0x7f0000000400)='./file0/file0\x00', r7, &(0x7f0000000000)='./file0\x00', 0x0) [ 258.433134][T17792] RSP: 002b:00007f8175ef9fa8 EFLAGS: 00000206 ORIG_RAX: 00000000000000a5 [ 258.441531][T17792] RAX: ffffffffffffffda RBX: 0000000020000200 RCX: 00000000004672ba [ 258.449482][T17792] RDX: 0000000020000000 RSI: 0000000020000100 RDI: 00007f8175efa000 [ 258.457466][T17792] RBP: 00007f8175efa040 R08: 00007f8175efa040 R09: 0000000020000000 [ 258.465530][T17792] R10: 0000000000000000 R11: 0000000000000206 R12: 0000000020000000 [ 258.473509][T17792] R13: 0000000020000100 R14: 00007f8175efa000 R15: 0000000020000040 21:38:38 executing program 4: set_mempolicy(0x8003, &(0x7f0000000300)=0x75f, 0x9) open(&(0x7f0000000300)='.\x00', 0x0, 0x0) r0 = syz_open_procfs(0x0, &(0x7f00000000c0)='fd/3\x00') r1 = syz_open_dev$swradio(&(0x7f0000000100)='/dev/swradio#\x00', 0x0, 0x2) mount$9p_fd(0x0, &(0x7f0000000300)='.\x00', &(0x7f0000000080)='9p\x00', 0xd00000000000000, &(0x7f0000000740)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}}) [ 258.524702][T17817] 9pnet: Insufficient options for proto=fd [ 258.552915][T17817] 9pnet: Insufficient options for proto=fd 21:38:38 executing program 0 (fault-call:0 fault-nth:79): syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x40000, 0x3, &(0x7f0000000200)=[{&(0x7f0000010000)="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", 0x10c, 0x400}, {&(0x7f0000010200)="0500000000000000000000000000000000000000040100002b", 0x19, 0x560}, {&(0x7f0000010300)="000000000000000000000000000000000000000000000000000000001481910a040000001400000024", 0x29, 0x7e0}], 0x0, &(0x7f0000000040)={[{@usrjquota='usrjquota='}, {@data_err_abort='data_err=abort'}]}) 21:38:38 executing program 4: set_mempolicy(0x8003, &(0x7f0000000300)=0x75f, 0x9) open(&(0x7f0000000300)='.\x00', 0x0, 0x0) r0 = syz_open_procfs(0x0, &(0x7f00000000c0)='fd/3\x00') r1 = syz_open_dev$swradio(&(0x7f0000000100)='/dev/swradio#\x00', 0x0, 0x2) mount$9p_fd(0x0, &(0x7f0000000300)='.\x00', &(0x7f0000000080)='9p\x00', 0xe00000000000000, &(0x7f0000000740)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}}) 21:38:38 executing program 2: set_mempolicy(0x8003, &(0x7f0000000300)=0x75f, 0x9) r0 = open(&(0x7f0000000300)='.\x00', 0x0, 0x0) symlinkat(&(0x7f0000000040)='\x13\x13w\xc5\xfc5\xd4\x14T\xd5\xd4\x1d)\xad\x1a`)Y\x81F\xe6\xbe\x16nA\xad\r\xbd@T\x03<\x9f3\xbb\xda\x82$\xa2\xf3\xd7r\xe7cnH\xb3<\xbfp\x83r\xe8\xf1\xb9\x93>\xc5\x12wC\xbe\"\x06 \x9e\xf0-\xf9\xcb\xf2\xf6\xe8\x80\xd38/\x00', r0, &(0x7f00000000c0)='./file0\x00') mkdirat(r0, &(0x7f0000000200)='\x13\x13w\xc5\xfc5\xd4\x14T\xd5\xd4\x1d)\xad\x1a`)Y\x81F\xe6\xbe\x16nA\xad\r\xbd@T\x03<\x9f3\xbb\xda\x82$\xa2\xf3\xd7r\xe7cnH\xb3<\xbfp\x83r\xe8\xf1\xb9\x93>\xc5\x12wC\xbe\"\x06 \x9e\xf0-\xf9\xcb\xf2\xf6\xe8\x80\xd38/\x00', 0x0) symlinkat(&(0x7f0000000340)='./file0/file0\x00', r0, &(0x7f0000000380)='\x13\x13w\xc5\xfc5\xd4\x14T\xd5\xd4\x1d)\xad\x1a`)Y\x81F\xe6\xbe\x16nA\xad\r\xbd@T\x03<\x9f3\xbb\xda\x82$\xa2\xf3\xd7r\xe7cnH\xb3<\xbfp\x83r\xe8\xf1\xb9\x93>\xc5\x12wC\xbe\"\x06 \x9e\xf0-\xf9\xcb\xf2\xf6\xe8\x80\xd38//file0\x00') r1 = open(&(0x7f0000000100)='.\x00', 0x0, 0x0) bpf$OBJ_PIN_PROG(0x6, &(0x7f0000000780)={&(0x7f0000000740)='./file0\x00', r1}, 0x10) accept4$unix(r1, &(0x7f0000000140)=@abs, &(0x7f00000001c0)=0x6e, 0xc00) renameat2(r1, &(0x7f0000000400)='./file0/file0\x00', r1, &(0x7f0000000000)='./file0\x00', 0x0) r2 = openat$btrfs_control(0xffffffffffffff9c, &(0x7f0000000280)='/dev/btrfs-control\x00', 0x4000c3, 0x0) sendmsg$sock(r2, &(0x7f0000000700)={&(0x7f0000000440)=@nfc_llcp={0x27, 0x1, 0x0, 0x3, 0x2, 0x84, "c58f248b2d245eec8200045152a52b257589c450cffcc7daf06a22e4688268086eece428432a2be10681d41d1bd109a42f29578ab2637b03ad308604159ee9", 0x2e}, 0x80, &(0x7f00000002c0)=[{&(0x7f00000004c0)="a43d2e53f7436f7dfcd200e1ac948f9976a7502177965c280a7929724050a9c248d12dc09ccdeb8f5ece14f749f0cb3e64da5292a1de3b3993a93112e073976a4c0fb435fd7d46e382e18bb15b7328a327a451b08657cddbf43560877abf545461139fcf41735c45be7e7729f36a5053daab99e749172dc89db3a705ad87a6e2113ec68c493a10688e1db9bf461b270c478a3b35d3e42a82e66f9bd51eab65d7f4f09bd7d6480238bdcf97dce85028752c55eaf2272fbc05a7c1c5f39bac07c13d4b81e8140ec304d9c93d7e3527d7051ee82d85e57aa74cd4a338ab", 0xdc}, {&(0x7f00000005c0)="0215f211919fd3ba0ce6de97a924c251d655f268cb7783ba180cab99a9db2fe538ac61aecb30c93cf244ef153a949ca42f306d2bb065433ba0163d65f6aef6dbb9a26cf9ad74471dd7875572022794db5a114747095396237cd046209845a8da59cbecf421bbd21f2628d747881a87e794f08259bc4a0727e937182f5be5c55c6cff13e335ca523782affe0d93cc805a7b361d055ac5467718b8d8134ac8d4b67f66f957a61dff380da24bf963711141cae075e3a1fa7f02b94b", 0xba}], 0x2, &(0x7f0000000680)=[@txtime={{0x18, 0x1, 0x3d, 0x2}}, @mark={{0x14, 0x1, 0x24, 0x2}}, @timestamping={{0x14, 0x1, 0x25, 0x8}}, @txtime={{0x18, 0x1, 0x3d, 0x5}}], 0x60}, 0x10) 21:38:38 executing program 5: set_mempolicy(0x8003, &(0x7f0000000300)=0x75f, 0x9) open(&(0x7f0000000300)='.\x00', 0x0, 0x0) r0 = syz_open_procfs(0x0, &(0x7f00000000c0)='fd/3\x00') r1 = syz_open_dev$swradio(&(0x7f0000000100)='/dev/swradio#\x00', 0x0, 0x2) mount$9p_fd(0x0, &(0x7f0000000300)='.\x00', &(0x7f0000000080)='9p\x00', 0x0, &(0x7f0000000740)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}, 0x2c, {[], [], 0xe}}) 21:38:38 executing program 3: set_mempolicy(0x8003, &(0x7f0000000300)=0x75f, 0x9) open(&(0x7f0000000300)='.\x00', 0x0, 0x0) r0 = syz_open_procfs(0x0, &(0x7f00000000c0)='fd/3\x00') r1 = syz_open_dev$swradio(&(0x7f0000000100)='/dev/swradio#\x00', 0x0, 0x2) mount$9p_fd(0x0, &(0x7f0000000300)='.\x00', &(0x7f0000000080)='9p\x00', 0x0, &(0x7f0000000740)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}, 0x2c, {[], [], 0x3}}) 21:38:38 executing program 1: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) r3 = syz_open_procfs(0x0, &(0x7f00000000c0)='fd/3\x00') mount$9p_fd(0x0, &(0x7f0000000300)='.\x00', &(0x7f0000000080)='9p\x00', 0xfeffffff, &(0x7f00000003c0)={'trans=fd,', {'rfdno', 0x3d, r3}, 0x2c, {'wfdno', 0x3d, r2}}) 21:38:38 executing program 5: set_mempolicy(0x8003, &(0x7f0000000300)=0x75f, 0x9) open(&(0x7f0000000300)='.\x00', 0x0, 0x0) r0 = syz_open_procfs(0x0, &(0x7f00000000c0)='fd/3\x00') r1 = syz_open_dev$swradio(&(0x7f0000000100)='/dev/swradio#\x00', 0x0, 0x2) mount$9p_fd(0x0, &(0x7f0000000300)='.\x00', &(0x7f0000000080)='9p\x00', 0x0, &(0x7f0000000740)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}, 0x2c, {[], [], 0x10}}) [ 258.753821][T17854] loop0: detected capacity change from 512 to 0 [ 258.762786][T17854] FAULT_INJECTION: forcing a failure. [ 258.762786][T17854] name failslab, interval 1, probability 0, space 0, times 0 [ 258.814128][T17854] CPU: 1 PID: 17854 Comm: syz-executor.0 Not tainted 5.11.0-syzkaller #0 [ 258.822562][T17854] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 258.832617][T17854] Call Trace: [ 258.835969][T17854] dump_stack+0x116/0x15d [ 258.840309][T17854] should_fail+0x23c/0x250 [ 258.844735][T17854] __should_failslab+0x81/0x90 [ 258.849680][T17854] ? ext4_fill_super+0x213/0x8410 [ 258.854697][T17854] should_failslab+0x5/0x20 [ 258.859244][T17854] kmem_cache_alloc_trace+0x39/0x320 [ 258.864527][T17854] ? ext4_fill_super+0x89/0x8410 [ 258.869460][T17854] ext4_fill_super+0x213/0x8410 [ 258.874329][T17854] ? vsnprintf+0xe8f/0xed0 [ 258.878747][T17854] ? snprintf+0x6f/0x90 [ 258.882944][T17854] ? register_shrinker_prepared+0xdf/0xf0 [ 258.888664][T17854] ? set_blocksize+0x197/0x2a0 [ 258.893490][T17854] mount_bdev+0x1e8/0x290 [ 258.897853][T17854] ? ext4_mount+0x40/0x40 [ 258.902172][T17854] ? ext4_errno_to_code+0x110/0x110 [ 258.907379][T17854] ext4_mount+0x2d/0x40 [ 258.911606][T17854] legacy_get_tree+0x70/0xc0 [ 258.916212][T17854] vfs_get_tree+0x4a/0x1a0 [ 258.920648][T17854] path_mount+0x11b6/0x1ca0 [ 258.925226][T17854] __se_sys_mount+0x23d/0x2e0 [ 258.929893][T17854] __x64_sys_mount+0x63/0x70 [ 258.934545][T17854] do_syscall_64+0x39/0x80 [ 258.939032][T17854] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 258.944920][T17854] RIP: 0033:0x4672ba [ 258.948801][T17854] Code: 48 c7 c2 bc ff ff ff f7 d8 64 89 02 b8 ff ff ff ff eb d2 e8 b8 04 00 00 0f 1f 84 00 00 00 00 00 49 89 ca b8 a5 00 00 00 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 258.968405][T17854] RSP: 002b:00007f8175ef9fa8 EFLAGS: 00000206 ORIG_RAX: 00000000000000a5 [ 258.976916][T17854] RAX: ffffffffffffffda RBX: 0000000020000200 RCX: 00000000004672ba [ 258.984883][T17854] RDX: 0000000020000000 RSI: 0000000020000100 RDI: 00007f8175efa000 [ 258.992851][T17854] RBP: 00007f8175efa040 R08: 00007f8175efa040 R09: 0000000020000000 [ 259.000865][T17854] R10: 0000000000000000 R11: 0000000000000206 R12: 0000000020000000 21:38:38 executing program 3: set_mempolicy(0x8003, &(0x7f0000000300)=0x75f, 0x9) open(&(0x7f0000000300)='.\x00', 0x0, 0x0) r0 = syz_open_procfs(0x0, &(0x7f00000000c0)='fd/3\x00') r1 = syz_open_dev$swradio(&(0x7f0000000100)='/dev/swradio#\x00', 0x0, 0x2) mount$9p_fd(0x0, &(0x7f0000000300)='.\x00', &(0x7f0000000080)='9p\x00', 0x0, &(0x7f0000000740)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}, 0x2c, {[], [], 0x4}}) 21:38:38 executing program 2: set_mempolicy(0x8003, &(0x7f0000000300)=0x75f, 0x9) r0 = open(&(0x7f0000000300)='.\x00', 0x0, 0x0) symlinkat(&(0x7f0000000040)='\x13\x13w\xc5\xfc5\xd4\x14T\xd5\xd4\x1d)\xad\x1a`)Y\x81F\xe6\xbe\x16nA\xad\r\xbd@T\x03<\x9f3\xbb\xda\x82$\xa2\xf3\xd7r\xe7cnH\xb3<\xbfp\x83r\xe8\xf1\xb9\x93>\xc5\x12wC\xbe\"\x06 \x9e\xf0-\xf9\xcb\xf2\xf6\xe8\x80\xd38/\x00', r0, &(0x7f00000000c0)='./file0\x00') mkdirat(r0, &(0x7f0000000200)='\x13\x13w\xc5\xfc5\xd4\x14T\xd5\xd4\x1d)\xad\x1a`)Y\x81F\xe6\xbe\x16nA\xad\r\xbd@T\x03<\x9f3\xbb\xda\x82$\xa2\xf3\xd7r\xe7cnH\xb3<\xbfp\x83r\xe8\xf1\xb9\x93>\xc5\x12wC\xbe\"\x06 \x9e\xf0-\xf9\xcb\xf2\xf6\xe8\x80\xd38/\x00', 0x0) symlinkat(&(0x7f0000000280)='./file0\x00', r0, &(0x7f0000000380)='./file0/file0\x00') r1 = open(&(0x7f0000000100)='.\x00', 0x0, 0x0) pipe(&(0x7f0000000140)={0xffffffffffffffff, 0xffffffffffffffff}) write$P9_RREADDIR(r2, &(0x7f0000000180)={0x4f, 0x29, 0x2, {0x521c, [{{0x20, 0x0, 0x7}, 0x7, 0x0, 0x7, './file0'}, {{0x10, 0x3, 0x1}, 0x7, 0x4a, 0xffffffffffffffb5, './file0/file0'}]}}, 0x4f) renameat2(r1, &(0x7f0000000400)='./file0/file0\x00', r1, &(0x7f0000000000)='./file0\x00', 0x0) 21:38:38 executing program 4: set_mempolicy(0x8003, &(0x7f0000000300)=0x75f, 0x9) open(&(0x7f0000000300)='.\x00', 0x0, 0x0) r0 = syz_open_procfs(0x0, &(0x7f00000000c0)='fd/3\x00') r1 = syz_open_dev$swradio(&(0x7f0000000100)='/dev/swradio#\x00', 0x0, 0x2) mount$9p_fd(0x0, &(0x7f0000000300)='.\x00', &(0x7f0000000080)='9p\x00', 0xfffffffffffffff, &(0x7f0000000740)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}}) 21:38:38 executing program 5: set_mempolicy(0x8003, &(0x7f0000000300)=0x75f, 0x9) open(&(0x7f0000000300)='.\x00', 0x0, 0x0) r0 = syz_open_procfs(0x0, &(0x7f00000000c0)='fd/3\x00') r1 = syz_open_dev$swradio(&(0x7f0000000100)='/dev/swradio#\x00', 0x0, 0x2) mount$9p_fd(0x0, &(0x7f0000000300)='.\x00', &(0x7f0000000080)='9p\x00', 0x0, &(0x7f0000000740)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}, 0x2c, {[], [], 0x11}}) [ 259.008844][T17854] R13: 0000000020000100 R14: 00007f8175efa000 R15: 0000000020000040 21:38:39 executing program 1: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) r3 = syz_open_procfs(0x0, &(0x7f00000000c0)='fd/3\x00') mount$9p_fd(0x0, &(0x7f0000000300)='.\x00', &(0x7f0000000080)='9p\x00', 0xff000000, &(0x7f00000003c0)={'trans=fd,', {'rfdno', 0x3d, r3}, 0x2c, {'wfdno', 0x3d, r2}}) 21:38:39 executing program 0 (fault-call:0 fault-nth:80): syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x40000, 0x3, &(0x7f0000000200)=[{&(0x7f0000010000)="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", 0x10c, 0x400}, {&(0x7f0000010200)="0500000000000000000000000000000000000000040100002b", 0x19, 0x560}, {&(0x7f0000010300)="000000000000000000000000000000000000000000000000000000001481910a040000001400000024", 0x29, 0x7e0}], 0x0, &(0x7f0000000040)={[{@usrjquota='usrjquota='}, {@data_err_abort='data_err=abort'}]}) 21:38:39 executing program 2: set_mempolicy(0x8003, &(0x7f0000000300)=0x75f, 0x9) set_mempolicy(0x8000, &(0x7f0000000140)=0x7, 0x2) r0 = open(&(0x7f0000000300)='.\x00', 0x0, 0x0) r1 = syz_mount_image$msdos(&(0x7f0000000080)='msdos\x00', &(0x7f0000000180)='./file0/file0\x00', 0x4, 0x3, &(0x7f0000000280)=[{&(0x7f0000000440)="8bf9845939cbb6d45dd9d7097c8dda95abe11f4063849bd75e0f558ebbc1e63e1458d5cc55522f9a611fea817eac87096fbadd0dc6a0e30aebb47a56252292ec4aef9847aec6fb924de111a780bf8b129482e4012ab81ec6c4a202525d17034bd2b10fa4f5447b71fb3ca3e5bd0a8db569401069ca21bb0c5c81c8ceb0ca88a91dfb7b03938541e7ad97df933b334c33b53b4cb3bfd02a8daea73d17eb0d3288dcc72e1c02e7dba19d1be5d3957450343d7ab84daa70269a", 0xb8, 0x10001}, {&(0x7f0000000500)="edf51bf65532907dce8004826bdaf1d54c07d8d9c440fa2d059fa71394f9fccf3a943a5a9b61212da8d2cb2e01400cfda9a2e9fe02976edb98e1bfd054eb956d32384b2ca61c0765160515ecdf074eda47cba48061a3fd5c7860be9d6c103351f6e847299a9dcb3244d4b2fabad4ca74dfaa0d4e05503c2d2ea045fdb4ca8c64340055257e78f655b38930d68c1ce99268efd1545112f4f5bef3527261356fb38e02e7bb7665d1a82aba9c954a7cd4c9d12a6c9e2f1e219c2966ef5827aa062019c1f2ce5de27b1b635310b5022c2f2b37e1a44b7ecd7571ae348ee0863a86dda6fc76b4cdd58774d9f80c90faaa10b3563b8c27d80df9991d02fc70af05bafca50c1b391ef1bf11b7bb535ada307319c97cd29a18102dc4084976053338012fc507fe392af5b2106dea8ef16eebdcb044f1a772c38c8ff0473b312a51ad1bf28f472d31016af361b1dd916c340b6106cf1081d2247a10578460c48f2fe9238c762f4cf5665414005f5dc44a6e8be58350af6d6ae5d198a723b933860e0909254005254f4adec18a11a3e3e84a18a92d8ce5d62b0d4b495390479d4a3044a8e317c1289c0b2570cdccc86fe04cf6e051d3cf656c564dc4e0feb8755e7b89912c9f9e7fbfcec9804187abe49bdf301ac0fe268793b268cd3095ba793347ee761fc37e8f6b46101a578256b54e6c99ce09c2a7262ed2939929772b552493467cc2c3fa31d0a34909363d02bf07fe656ffb0d0fd63cf42b4d40d9866c1de3834d6e94cd0f57dc00bdc5a49c84a95267ed3c7b78c7ce64b7a45a4d84d59b24f7c7a4df60f38f4d6429abd61bd1a57a85ea95aaddf19d579c7c7318d9f8950b018d4ffbea07d705b4f7dfd889e22f6a20be6f944f0811356181199f077059446a5b20188b0a08cc06ff417aefe734c61b06b2c7290427e7b8b9596bd07438d3df86db65d7127d4814b06059a6347c527e1eefaebb428a3f0881e92e8b65dbf07f48d63a1af9ff09218008b5b0b32f3345fd70d7aced85100bf6aee1cca899666b944fc0534c060ca8bd81bac590054f3180de0e94d2e17e3a05d94ad5c81683dc4c5c0baa639d94a43cc3e414c0a0a0680f4dec309961efc4e6329c2c5be7b2048589bc00dd341f7046b194ea3b6e4a12ae844f39188e2451726cf9327d0be4d9459439f12c95a3eb2c7d525a14d04534ab1de06b87cc9c46fd46add28b80ab35828fa1c516108f16ae342f6c33d2c57f1a57cbce8520e7337800284e8e16676b50837792893206e871ee042df8df45201b9f11bffecd945bf6467dab1939e1e10d96faf45a0692da1a6b37fc3da84335e655ece6aa36f8596c35c01e356466750a951efab1a8de5409e146f3d6d367d6039986a784ded0a2c9a3c1e837c2393c6b3e76fcfc3763d1950852c4b5f3b10f992035977f595255fc4dc85710c04af71497a03731dd06ee07d2a1b9b6140d642d1f2b7016b9ea58853a7b59723c293194afeb6cef672a6f056ddd81c83b17ccc483af44938f9ceca1dc6b0e1d835dc1317202dfa55f9e3fa9f4c3af80e9a4b2e2083b5f20ff293d15a4a9a77ea716c1f66e18113c2b15a57d3b496dd989e51a308f9f78020b3bdc5788ba9b8a175613eeaf24db266120a4f81c9cadf8e17e55a8cbfc3f61edeaaa42be73d9c91cd70dc5faff044e4b31be06cd614e5094becc76b774eb92b1a20f4d3244309249a9d185e240f3beb0eaf03844bea34d9f8424e59ee5270be609606ea9e9b74d1a3ec3f61b2591b051e4d0e34392a91dfdde40ef33677a23e3ef1c2b01d8c6fc89d238ebfff84715c76e02b556f4fdd4623e69e7c353e2c171e688d7365e0795a694553b673a247020db6a613aeb2f89a58227a26c5bd8f1ff72211ee63a851b2ea7ac1c85d6fc4b9f38596e5ba1fc146cb5dda04007d5c02399a419f4ca8bc604c6f10feeb29ffdb4a36500f9b86a471f0f260fe39eb1732ceffbd81a67a4548c8d6ba3ed8f7cac227b828eec72f609d52905973de83d694bb39211f24f19b9dcbbc3e9e1bc29d405d91728941987aa0f51822ba56687d0eb922f04b4a0edcffcca405c187d8afc21c850437c9f770258c8c32851b0c513a5e363f161934dbab50ad5a85d316e5a11ce7a4f72d6e197923b596308db235e45acdb1660eeace2ffdeebd7e927c280b6bd0a8762fd156e40bfb98dd7e6a37e0d20da37767429613ad849ff05bd048aa0c5ef6a1e2934dbfd7d98efc10fbf0340c2a40e232322f1c2e2ed651868570f55d1082971abf079cd3d40cc511c56569df535a736b3b2bc5f64c975407739b2c612a177bbad80a0d368f3113b5fc858e70c28a07b522aa77150a4d6fa508e189d9bf469b59b2fdf6b5852ee5331230c480e1c5efafa8f7a67965b789a1d8d9c078a5c87d4a1d0035d8f9dcb2541dd29fd42eebbd13c972fc1d148f043b7a3b2e6910f6a4e217a76b416fbd0fb91809538fe1fd8fe18298e596bb6724d2cd627344adb808e0e8c2f380bb2a0a59c925c45bc1139c24ca0fe6ea00054620c2a6e9003b3a878af3f40a1cb55a34bd5ba7423c50b3ccb92905f1811459bcdcaa45369fd591ff61ac2c8e65fbde7e52dc9eb9400349953d5774f19c073b41453bf10e710a6e7a0cd4020cf03d120cd938c3aff71fc090237a77a4c052840c598311dc49fab8c9b338815fbc94b8cc92338aa994fead7d5c243273529a35b4b60cfe934526e638baadbd02999f21131d3428e8bbfbadba43bb75e861774d7c5507dc245a27d7800f60ffc2f45369b7f6fddb136aca450516067d4c94f9e8c7dc43e91cc6342e8743c84b63fe8e02c8ff42acfa2e26929d2f275060420bae860783da211ba8d0b4bf521feb85e03f45b8a9622dac65bcdcfa8c869eafbf4945dce7197365de4a6524af6af50f0cba5bbeadd1501bf086748657e3b0ae2286e21d6d2dc3c730888dc4395e827dc39964b93de4936ccefbab343d577d3bb081b195387dbba0e50a66f356d098a73247b9037b104bcc32707d64caf40febbdabb48901442f809f95f0718a6e7390592002669173f3e9fd72100c595c2ed44c8514aceadd87089b908010a9e41a4cd19656a0a6310abd8609186ae9c9eb217ff0b7989e3975f94e92b8694b4849cc7e4c6f41ba61ab77b49b42bb2b26e61f9ba7612b822a4c3d7235ffed2003b3cbd60d9eb461d259ef503be3a9ee3f607e4bedb7c1e0dc76b974b1ec502d1e05e560e0e1a838585b12d188706db6f889513d69d11e9279ead374e306e9fab25f888c71ad53af76fda2419b6e3ea79b88198e10e5c5f9dc4a7102a5689c2dc335206b223ffa26b0adb5c4c07a006d2ef54de4f86c322ba1293124d7dc940720d83865badb7abb0cd97cb4812f31034dbaa8bc88688baa64208706c9fb6158d510c545f2591030437080346c5f29777bff87ea060cacbbc803d97bfce3cc38d7b22ab2cae7e13b942d9a4220cde7859b70218822db82a1b4b2052c0015ec7ce6ba18338cd9e05c4e3095c9deb632e0e0089c407aa5f26396bba6207e5e8b3c7ae37ac8584994a63bcf3aeaff92242f93565e019ac3aba2f51780c598f69166e0d8ffaf5efafbeac99872672f05a7c6058f8d32ed35e9745cb282ea6187d15d79ececbaf560dee9a5e4a5188a090d6747575971444df13cbc4d21c0c8df268a0b9a061c57103862e3fa6103afd48fec8e1530cee129c3c447cc4686897fcc2058b4d57d2ab11594495d9efdf1c2591a95d09771ab87c2843e62a7c729a5deac084cb7531847166d0a70210d8b4053450983334c380fc63df40ab118b230988809e9b3215ecf3a915f34c2c527312113b60362ac6450206ee7450294b92424b82e42b269412646a2fd80e4859974e0e07cd267c3f805db248bced02bca403091648051cc42e137665770a928408aa7d76b5f200fdd0524723d445adb6b103c0839e037e4584b79dcadb2ad99edf3d05b520248f056e7992550c2d7051f9840e01fc1fdd9922ef05b1fd4671e3d1cb308339988842c10f2f935e366eb186729111b033d571ff8bfc396abad5db472bd65ea89d5e3d418f104e9ad6f22fffff1adf2737611b099521c2f6aadcef6e736b4b9a9e24f5e49439f7f1cc27204ebcd1b7a2e5d092eff373971e0b43325584d6a2411dac838de30e2b77b72c676177e167a29ee658c223676dba9df7182b29db77d47debb9d80eaebba8059aa91cb3851ebee791d77ef1b2d3863f993c3fa376262c70f4ac1dcd0bac37487ae80facdc5f132186a1d08461ea51bf33c8ae3b7bc80fc7a57c8ffacff6a20fca60c0cb38f898611fae7ce30b89fc7968ba952a5d7885b686abfeaed2e8eb2eebdafca70b7156a45c5ca4743d765e68cb5cb428930e8ac12787f84828706c5f4d57cb8592debbe51d0ddc0c72eb860ce668d3c86cc776914c82abbabb4eb1761364445e9ae3eea2924eec003baad6c049e2897c6073d8fb663579a0dbeceb2550f56c844a0a19664e7a02d22f97424354c8b02430472c39f9157102bf386a3a18d024bd258f42a3e21d8714114dd288f22ab06040c2baaf8df8f4ff68e43222058f14ed2e66c52c4f96cb3253439498e5b6cead5de22836014a53a73599fd02b233992963fbf2a2a1781e839eb2ae47212fed43fd749347e4079d3363a295624a56d137bc1a6441dc9170380fc343cf613d72d106992ec22864b082d27fda26c4fafce1ad42a4ab4a991068ddaaf6348782290baed898d2e3ddb957bdf96361246f5fbe3edb14a686559a6eae9f7bfee3550148fb48d1bce3ee5f2430473133c3976c934c0acbf4d7d039488597798b15f3a24a13bb077da801c77f5648d747114267987d5d92b59488247f52d8335d0822c09c0884a2a2a80f8a31668ecdb0f4db3a4236e17a02aaf9a16e3c29f23f1660fcfa1ccd2da0e124ad9763ab23c4b8f22aca3f68fa1cca968e16c25e8f0e1273028039c905ea21332a04294510bbb83373a065ffc7f9c8f03dc73e53a4413408b870cba5189f252f5b2cae1669dbaf82a6cfaba01379a0a72a05a01e3f8d7a7680adaf90974ffbb5a01ef4b8c8dd787df0f7f0c480bf99a656635558bf7462039d7307dab2985867661b1514f3711c962e056bc2fa1e74b3611b410eb9962ad3abda874da2ba23164f696551ae455fa4203a4094a9f06a5fd16aae2dc099ed59c2c90cd2c051a0d57f0b3171c56465119aadbb6a6064d94d7605f5b5b0a2a3c66bfaa7081eb93c8dd14df0be3780b4d3a8537bc369c0af841cfd1dec9bb318c8a4a709ad72c78456b45cbceea005a45abe97de0a70bfefcd24e9423a6b6ca7426e8a3d1763605144376903ad83e0047ef84d8a522f53652306599c6b8864836958a3e79239c00f39f3fcffa98ebd1259c5dd000d48fbbdac446d79819e5b055fe2e792664fa07295a792ead241451c8f64af1474bce7e5c6e7f3628850ad94472b4dd919fa810aed4d8bfc535b72a7fc2d016efa7c541176eb05cdc35c14a00ada2c7afe09df2512e7c5bdd67104edfc0b67f4eb8f7f4c944f5f2ca8201083d17627d36f56d2541be1a4ea88538594ea3a700cb07e0bebb13e5cb627a54de68f1c4986543d434292a433fe5816d5120385a9d6bbafa50fd6fc80ec6bbd1bd6b61ca39b4c804dae0ea94c444e205e4b855cf0b2d5a24a97be9e39f43579b5f947a5d252e58818c1b64d7a3119817daf0fdbece7d0ccf8e976c38941360a8c02c41b00d12df4d863ef546de76a1c7d40beac8e856194e4b9b0a72f26f1e9a41d0e54e2ab2dae291f6a44a7", 0x1000}, {&(0x7f00000001c0)="22508d821a3701ab69f07ae153b81f0f9d781a5fdd1b10cb1139724409e107e7914da012c27148b48cdf", 0x2a, 0x80000000}], 0x10000, &(0x7f0000001500)={[{@dots='dots'}, {@dots='dots'}, {@fat=@usefree='usefree'}, {@fat=@tz_utc='tz=UTC'}, {@fat=@check_strict='check=strict'}], [{@func={'func', 0x3d, 'BPRM_CHECK'}}, {@obj_type={'obj_type'}}, {@fowner_gt={'fowner>'}}, {@seclabel='seclabel'}, {@measure='measure'}, {@euid_lt={'euid<', 0xffffffffffffffff}}, {@smackfsfloor={'smackfsfloor', 0x3d, '&-*'}}]}) symlinkat(&(0x7f0000001600)='\x13\x13w\xc5\xfc5\xd4\x14T\xd5\xd4\x1d)\xad\x1a`)Y\x81F\xe6\xbe\x16nA\xad\r\xbd@T\x03<\x9f3\xbb\xda\x82$\xa2\xf3\xd7r\xe7cnH\xb3<\xbfp\x83r\xe8\xf1\xb9\x93>\xc5\x12wC\xbe\"\x06 \x9e\xf0-\xf9\xcb\xf2\xf6\xe8\x80\xd38//file0\x00', r1, &(0x7f0000000040)='./file0\x00') mkdirat(r0, &(0x7f0000000200)='\x13\x13w\xc5\xfc5\xd4\x14T\xd5\xd4\x1d)\xad\x1a`)Y\x81F\xe6\xbe\x16nA\xad\r\xbd@T\x03<\x9f3\xbb\xda\x82$\xa2\xf3\xd7r\xe7cnH\xb3<\xbfp\x83r\xe8\xf1\xb9\x93>\xc5\x12wC\xbe\"\x06 \x9e\xf0-\xf9\xcb\xf2\xf6\xe8\x80\xd38/\x00', 0x0) symlinkat(&(0x7f0000000340)='./file0/file0\x00', r0, &(0x7f0000000380)='\x13\x13w\xc5\xfc5\xd4\x14T\xd5\xd4\x1d)\xad\x1a`)Y\x81F\xe6\xbe\x16nA\xad\r\xbd@T\x03<\x9f3\xbb\xda\x82$\xa2\xf3\xd7r\xe7cnH\xb3<\xbfp\x83r\xe8\xf1\xb9\x93>\xc5\x12wC\xbe\"\x06 \x9e\xf0-\xf9\xcb\xf2\xf6\xe8\x80\xd38//file0\x00') r2 = open(&(0x7f0000000100)='.\x00', 0x0, 0x0) renameat2(r2, &(0x7f0000000400)='./file0/file0\x00', r2, &(0x7f0000000000)='./file0\x00', 0x0) ftruncate(r2, 0x52) 21:38:39 executing program 3: set_mempolicy(0x8003, &(0x7f0000000300)=0x75f, 0x9) open(&(0x7f0000000300)='.\x00', 0x0, 0x0) r0 = syz_open_procfs(0x0, &(0x7f00000000c0)='fd/3\x00') r1 = syz_open_dev$swradio(&(0x7f0000000100)='/dev/swradio#\x00', 0x0, 0x2) mount$9p_fd(0x0, &(0x7f0000000300)='.\x00', &(0x7f0000000080)='9p\x00', 0x0, &(0x7f0000000740)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}, 0x2c, {[], [], 0x5}}) 21:38:39 executing program 1: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) r3 = syz_open_procfs(0x0, &(0x7f00000000c0)='fd/3\x00') mount$9p_fd(0x0, &(0x7f0000000300)='.\x00', &(0x7f0000000080)='9p\x00', 0xffff0000, &(0x7f00000003c0)={'trans=fd,', {'rfdno', 0x3d, r3}, 0x2c, {'wfdno', 0x3d, r2}}) 21:38:39 executing program 4: set_mempolicy(0x8003, &(0x7f0000000300)=0x75f, 0x9) open(&(0x7f0000000300)='.\x00', 0x0, 0x0) r0 = syz_open_procfs(0x0, &(0x7f00000000c0)='fd/3\x00') r1 = syz_open_dev$swradio(&(0x7f0000000100)='/dev/swradio#\x00', 0x0, 0x2) mount$9p_fd(0x0, &(0x7f0000000300)='.\x00', &(0x7f0000000080)='9p\x00', 0x1000000000000000, &(0x7f0000000740)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}}) 21:38:39 executing program 5: set_mempolicy(0x8003, &(0x7f0000000300)=0x75f, 0x9) open(&(0x7f0000000300)='.\x00', 0x0, 0x0) r0 = syz_open_procfs(0x0, &(0x7f00000000c0)='fd/3\x00') r1 = syz_open_dev$swradio(&(0x7f0000000100)='/dev/swradio#\x00', 0x0, 0x2) mount$9p_fd(0x0, &(0x7f0000000300)='.\x00', &(0x7f0000000080)='9p\x00', 0x0, &(0x7f0000000740)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}, 0x2c, {[], [], 0x12}}) 21:38:39 executing program 4: set_mempolicy(0x8003, &(0x7f0000000300)=0x75f, 0x9) open(&(0x7f0000000300)='.\x00', 0x0, 0x0) r0 = syz_open_procfs(0x0, &(0x7f00000000c0)='fd/3\x00') r1 = syz_open_dev$swradio(&(0x7f0000000100)='/dev/swradio#\x00', 0x0, 0x2) mount$9p_fd(0x0, &(0x7f0000000300)='.\x00', &(0x7f0000000080)='9p\x00', 0x1100000000000000, &(0x7f0000000740)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}}) 21:38:39 executing program 1: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) r3 = syz_open_procfs(0x0, &(0x7f00000000c0)='fd/3\x00') mount$9p_fd(0x0, &(0x7f0000000300)='.\x00', &(0x7f0000000080)='9p\x00', 0xfffffe00, &(0x7f00000003c0)={'trans=fd,', {'rfdno', 0x3d, r3}, 0x2c, {'wfdno', 0x3d, r2}}) 21:38:39 executing program 3: set_mempolicy(0x8003, &(0x7f0000000300)=0x75f, 0x9) open(&(0x7f0000000300)='.\x00', 0x0, 0x0) r0 = syz_open_procfs(0x0, &(0x7f00000000c0)='fd/3\x00') r1 = syz_open_dev$swradio(&(0x7f0000000100)='/dev/swradio#\x00', 0x0, 0x2) mount$9p_fd(0x0, &(0x7f0000000300)='.\x00', &(0x7f0000000080)='9p\x00', 0x0, &(0x7f0000000740)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}, 0x2c, {[], [], 0x6}}) [ 259.279013][T17914] loop2: detected capacity change from 264192 to 0 21:38:39 executing program 2: set_mempolicy(0x8003, &(0x7f0000000300)=0x75f, 0x9) r0 = open(&(0x7f0000000300)='.\x00', 0x0, 0x0) symlinkat(&(0x7f0000000040)='\x13\x13w\xc5\xfc5\xd4\x14T\xd5\xd4\x1d)\xad\x1a`)Y\x81F\xe6\xbe\x16nA\xad\r\xbd@T\x03<\x9f3\xbb\xda\x82$\xa2\xf3\xd7r\xe7cnH\xb3<\xbfp\x83r\xe8\xf1\xb9\x93>\xc5\x12wC\xbe\"\x06 \x9e\xf0-\xf9\xcb\xf2\xf6\xe8\x80\xd38/\x00', r0, &(0x7f00000000c0)='./file0\x00') mkdirat(r0, &(0x7f0000000200)='\x13\x13w\xc5\xfc5\xd4\x14T\xd5\xd4\x1d)\xad\x1a`)Y\x81F\xe6\xbe\x16nA\xad\r\xbd@T\x03<\x9f3\xbb\xda\x82$\xa2\xf3\xd7r\xe7cnH\xb3<\xbfp\x83r\xe8\xf1\xb9\x93>\xc5\x12wC\xbe\"\x06 \x9e\xf0-\xf9\xcb\xf2\xf6\xe8\x80\xd38/\x00', 0x0) symlinkat(&(0x7f0000000340)='./file0/file0\x00', r0, &(0x7f0000000380)='\x13\x13w\xc5\xfc5\xd4\x14T\xd5\xd4\x1d)\xad\x1a`)Y\x81F\xe6\xbe\x16nA\xad\r\xbd@T\x03<\x9f3\xbb\xda\x82$\xa2\xf3\xd7r\xe7cnH\xb3<\xbfp\x83r\xe8\xf1\xb9\x93>\xc5\x12wC\xbe\"\x06 \x9e\xf0-\xf9\xcb\xf2\xf6\xe8\x80\xd38//file0\x00') faccessat(r0, &(0x7f0000000140)='./file0\x00', 0x20) r1 = open(&(0x7f0000000100)='.\x00', 0x0, 0x0) renameat2(r1, &(0x7f0000000400)='./file0/file0\x00', r1, &(0x7f0000000000)='./file0\x00', 0x0) [ 259.346568][T17921] loop0: detected capacity change from 512 to 0 [ 259.363003][T17921] FAULT_INJECTION: forcing a failure. [ 259.363003][T17921] name failslab, interval 1, probability 0, space 0, times 0 [ 259.377382][T17921] CPU: 0 PID: 17921 Comm: syz-executor.0 Not tainted 5.11.0-syzkaller #0 [ 259.386613][T17921] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 259.396670][T17921] Call Trace: [ 259.399980][T17921] dump_stack+0x116/0x15d [ 259.404368][T17921] should_fail+0x23c/0x250 [ 259.408857][T17921] __should_failslab+0x81/0x90 [ 259.413609][T17921] should_failslab+0x5/0x20 [ 259.418098][T17921] kmem_cache_alloc_node+0x46/0x2e0 [ 259.423296][T17921] ? create_task_io_context+0x36/0x1e0 [ 259.428855][T17921] create_task_io_context+0x36/0x1e0 [ 259.434155][T17921] submit_bio_checks+0xa1f/0xb40 [ 259.439153][T17921] ? kmem_cache_alloc+0x18e/0x2e0 [ 259.444256][T17921] ? mempool_alloc_slab+0x16/0x20 [ 259.449262][T17921] submit_bio_noacct+0x33/0x960 [ 259.454204][T17921] ? mempool_alloc+0x71/0x320 [ 259.458886][T17921] ? mark_page_accessed+0x52f/0x5f0 [ 259.464068][T17921] ? __rcu_read_unlock+0x45/0x250 [ 259.472640][T17921] ? __bio_add_page+0x1a3/0x210 [ 259.477474][T17921] submit_bio+0x200/0x360 [ 259.481802][T17921] ? bio_add_page+0x1fc/0x260 [ 259.486459][T17921] submit_bh_wbc+0x39d/0x3e0 [ 259.491249][T17921] submit_bh+0x21/0x30 [ 259.495302][T17921] ? __wait_on_buffer+0x60/0x60 [ 259.500204][T17921] ext4_read_bh+0xdf/0x190 [ 259.504606][T17921] ext4_sb_bread_unmovable+0xf1/0x1d0 [ 259.509961][T17921] ext4_fill_super+0x45a/0x8410 [ 259.514880][T17921] ? vsnprintf+0xe8f/0xed0 [ 259.519282][T17921] ? snprintf+0x6f/0x90 [ 259.523430][T17921] ? register_shrinker_prepared+0xdf/0xf0 [ 259.529185][T17921] ? set_blocksize+0x197/0x2a0 [ 259.534077][T17921] mount_bdev+0x1e8/0x290 [ 259.538392][T17921] ? ext4_mount+0x40/0x40 [ 259.542782][T17921] ? ext4_errno_to_code+0x110/0x110 [ 259.547960][T17921] ext4_mount+0x2d/0x40 [ 259.552142][T17921] legacy_get_tree+0x70/0xc0 [ 259.556727][T17921] vfs_get_tree+0x4a/0x1a0 [ 259.561303][T17921] path_mount+0x11b6/0x1ca0 [ 259.565830][T17921] __se_sys_mount+0x23d/0x2e0 [ 259.570487][T17921] __x64_sys_mount+0x63/0x70 [ 259.575169][T17921] do_syscall_64+0x39/0x80 [ 259.579586][T17921] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 259.585476][T17921] RIP: 0033:0x4672ba [ 259.589626][T17921] Code: 48 c7 c2 bc ff ff ff f7 d8 64 89 02 b8 ff ff ff ff eb d2 e8 b8 04 00 00 0f 1f 84 00 00 00 00 00 49 89 ca b8 a5 00 00 00 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 259.610102][T17921] RSP: 002b:00007f8175ef9fa8 EFLAGS: 00000206 ORIG_RAX: 00000000000000a5 [ 259.618643][T17921] RAX: ffffffffffffffda RBX: 0000000020000200 RCX: 00000000004672ba [ 259.626598][T17921] RDX: 0000000020000000 RSI: 0000000020000100 RDI: 00007f8175efa000 [ 259.634563][T17921] RBP: 00007f8175efa040 R08: 00007f8175efa040 R09: 0000000020000000 21:38:39 executing program 5: set_mempolicy(0x8003, &(0x7f0000000300)=0x75f, 0x9) open(&(0x7f0000000300)='.\x00', 0x0, 0x0) r0 = syz_open_procfs(0x0, &(0x7f00000000c0)='fd/3\x00') r1 = syz_open_dev$swradio(&(0x7f0000000100)='/dev/swradio#\x00', 0x0, 0x2) mount$9p_fd(0x0, &(0x7f0000000300)='.\x00', &(0x7f0000000080)='9p\x00', 0x0, &(0x7f0000000740)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}, 0x2c, {[], [], 0x25}}) [ 259.642516][T17921] R10: 0000000000000000 R11: 0000000000000206 R12: 0000000020000000 [ 259.651527][T17921] R13: 0000000020000100 R14: 00007f8175efa000 R15: 0000000020000040 [ 259.679598][T17921] EXT4-fs (loop0): ext4_check_descriptors: Checksum for group 0 failed (38247!=0) 21:38:39 executing program 4: set_mempolicy(0x8003, &(0x7f0000000300)=0x75f, 0x9) open(&(0x7f0000000300)='.\x00', 0x0, 0x0) r0 = syz_open_procfs(0x0, &(0x7f00000000c0)='fd/3\x00') r1 = syz_open_dev$swradio(&(0x7f0000000100)='/dev/swradio#\x00', 0x0, 0x2) mount$9p_fd(0x0, &(0x7f0000000300)='.\x00', &(0x7f0000000080)='9p\x00', 0x1200000000000000, &(0x7f0000000740)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}}) [ 259.699791][T17921] EXT4-fs (loop0): group descriptors corrupted! 21:38:39 executing program 0 (fault-call:0 fault-nth:81): syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x40000, 0x3, &(0x7f0000000200)=[{&(0x7f0000010000)="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", 0x10c, 0x400}, {&(0x7f0000010200)="0500000000000000000000000000000000000000040100002b", 0x19, 0x560}, {&(0x7f0000010300)="000000000000000000000000000000000000000000000000000000001481910a040000001400000024", 0x29, 0x7e0}], 0x0, &(0x7f0000000040)={[{@usrjquota='usrjquota='}, {@data_err_abort='data_err=abort'}]}) 21:38:39 executing program 2: set_mempolicy(0x8003, &(0x7f0000000300)=0x9, 0x6) r0 = open(&(0x7f0000000300)='.\x00', 0x0, 0x0) r1 = openat$nvram(0xffffffffffffff9c, &(0x7f0000000140)='/dev/nvram\x00', 0x0, 0x0) setsockopt$pppl2tp_PPPOL2TP_SO_SENDSEQ(r1, 0x111, 0x3, 0x0, 0x4) symlinkat(&(0x7f0000000040)='\x13\x13w\xc5\xfc5\xd4\x14T\xd5\xd4\x1d)\xad\x1a`)Y\x81F\xe6\xbe\x16nA\xad\r\xbd@T\x03<\x9f3\xbb\xda\x82$\xa2\xf3\xd7r\xe7cnH\xb3<\xbfp\x83r\xe8\xf1\xb9\x93>\xc5\x12wC\xbe\"\x06 \x9e\xf0-\xf9\xcb\xf2\xf6\xe8\x80\xd38/\x00', r0, &(0x7f00000000c0)='./file0\x00') mkdirat(r0, &(0x7f0000000200)='\x13\x13w\xc5\xfc5\xd4\x14T\xd5\xd4\x1d)\xad\x1a`)Y\x81F\xe6\xbe\x16nA\xad\r\xbd@T\x03<\x9f3\xbb\xda\x82$\xa2\xf3\xd7r\xe7cnH\xb3<\xbfp\x83r\xe8\xf1\xb9\x93>\xc5\x12wC\xbe\"\x06 \x9e\xf0-\xf9\xcb\xf2\xf6\xe8\x80\xd38/\x00', 0x0) symlinkat(&(0x7f0000000340)='./file0/file0\x00', r0, &(0x7f0000000380)='\x13\x13w\xc5\xfc5\xd4\x14T\xd5\xd4\x1d)\xad\x1a`)Y\x81F\xe6\xbe\x16nA\xad\r\xbd@T\x03<\x9f3\xbb\xda\x82$\xa2\xf3\xd7r\xe7cnH\xb3<\xbfp\x83r\xe8\xf1\xb9\x93>\xc5\x12wC\xbe\"\x06 \x9e\xf0-\xf9\xcb\xf2\xf6\xe8\x80\xd38//file0\x00') r2 = open(&(0x7f0000000100)='.\x00', 0x0, 0x0) bind(r1, &(0x7f0000000280)=@phonet={0x23, 0x81, 0x1, 0x3}, 0x80) renameat2(r2, &(0x7f0000000400)='./file0/file0\x00', r2, &(0x7f0000000000)='./file0\x00', 0x0) set_mempolicy(0x1, &(0x7f0000000180)=0x8000, 0x7f) 21:38:39 executing program 3: set_mempolicy(0x8003, &(0x7f0000000300)=0x75f, 0x9) open(&(0x7f0000000300)='.\x00', 0x0, 0x0) r0 = syz_open_procfs(0x0, &(0x7f00000000c0)='fd/3\x00') r1 = syz_open_dev$swradio(&(0x7f0000000100)='/dev/swradio#\x00', 0x0, 0x2) mount$9p_fd(0x0, &(0x7f0000000300)='.\x00', &(0x7f0000000080)='9p\x00', 0x0, &(0x7f0000000740)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}, 0x2c, {[], [], 0x7}}) 21:38:39 executing program 5: set_mempolicy(0x8003, &(0x7f0000000300)=0x75f, 0x9) open(&(0x7f0000000300)='.\x00', 0x0, 0x0) r0 = syz_open_procfs(0x0, &(0x7f00000000c0)='fd/3\x00') r1 = syz_open_dev$swradio(&(0x7f0000000100)='/dev/swradio#\x00', 0x0, 0x2) mount$9p_fd(0x0, &(0x7f0000000300)='.\x00', &(0x7f0000000080)='9p\x00', 0x0, &(0x7f0000000740)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}, 0x2c, {[], [], 0x5c}}) 21:38:39 executing program 4: set_mempolicy(0x8003, &(0x7f0000000300)=0x75f, 0x9) open(&(0x7f0000000300)='.\x00', 0x0, 0x0) r0 = syz_open_procfs(0x0, &(0x7f00000000c0)='fd/3\x00') r1 = syz_open_dev$swradio(&(0x7f0000000100)='/dev/swradio#\x00', 0x0, 0x2) mount$9p_fd(0x0, &(0x7f0000000300)='.\x00', &(0x7f0000000080)='9p\x00', 0x2010000000000000, &(0x7f0000000740)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}}) 21:38:39 executing program 3: set_mempolicy(0x8003, &(0x7f0000000300)=0x75f, 0x9) open(&(0x7f0000000300)='.\x00', 0x0, 0x0) r0 = syz_open_procfs(0x0, &(0x7f00000000c0)='fd/3\x00') r1 = syz_open_dev$swradio(&(0x7f0000000100)='/dev/swradio#\x00', 0x0, 0x2) mount$9p_fd(0x0, &(0x7f0000000300)='.\x00', &(0x7f0000000080)='9p\x00', 0x0, &(0x7f0000000740)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}, 0x2c, {[], [], 0x8}}) [ 259.877310][T17976] loop0: detected capacity change from 512 to 0 21:38:39 executing program 1: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) r3 = syz_open_procfs(0x0, &(0x7f00000000c0)='fd/3\x00') mount$9p_fd(0x0, &(0x7f0000000300)='.\x00', &(0x7f0000000080)='9p\x00', 0xffffff7f, &(0x7f00000003c0)={'trans=fd,', {'rfdno', 0x3d, r3}, 0x2c, {'wfdno', 0x3d, r2}}) 21:38:39 executing program 5: set_mempolicy(0x8003, &(0x7f0000000300)=0x75f, 0x9) open(&(0x7f0000000300)='.\x00', 0x0, 0x0) r0 = syz_open_procfs(0x0, &(0x7f00000000c0)='fd/3\x00') r1 = syz_open_dev$swradio(&(0x7f0000000100)='/dev/swradio#\x00', 0x0, 0x2) mount$9p_fd(0x0, &(0x7f0000000300)='.\x00', &(0x7f0000000080)='9p\x00', 0x0, &(0x7f0000000240)=ANY=[@ANYBLOB="7472616e733d66642c7266646e6f3d45e450af140db80cdcc9265cdf3ea3fd296bec273b5845256ae56788bd71da863e2b325915249d8848d64d69ac22fef3638639e57d8e0f6854f4d3202a66d97a843391c50cb25657c1667ce40b1dc547dd4d609921fff17c6ca91bc1d8a05b4553fd5dfa7292bbb5a04a", @ANYRESHEX=r0, @ANYBLOB=',wfdno=', @ANYRESHEX=r1, @ANYBLOB=',\x00']) r2 = syz_open_procfs(0x0, &(0x7f00000000c0)='fd/3\x00') r3 = syz_open_dev$swradio(&(0x7f0000000100)='/dev/swradio#\x00', 0x0, 0x2) r4 = openat(0xffffffffffffffff, &(0x7f0000000040)='./file0\x00', 0x80000, 0x24) ioctl$VIDIOC_CREATE_BUFS(r4, 0xc100565c, &(0x7f0000000140)={0x200, 0x8, 0x3, {0x5, @sdr={0x38415262, 0x8}}, 0x1}) mount$9p_fd(0x0, &(0x7f0000000300)='.\x00', &(0x7f0000000080)='9p\x00', 0x0, &(0x7f0000000740)={'trans=fd,', {'rfdno', 0x3d, r2}, 0x2c, {'wfdno', 0x3d, r3}}) ioctl$SNDCTL_DSP_SETFRAGMENT(r2, 0xc004500a, &(0x7f0000000000)=0x35f50bc4) 21:38:39 executing program 4: set_mempolicy(0x8003, &(0x7f0000000300)=0x75f, 0x9) open(&(0x7f0000000300)='.\x00', 0x0, 0x0) r0 = syz_open_procfs(0x0, &(0x7f00000000c0)='fd/3\x00') r1 = syz_open_dev$swradio(&(0x7f0000000100)='/dev/swradio#\x00', 0x0, 0x2) mount$9p_fd(0x0, &(0x7f0000000300)='.\x00', &(0x7f0000000080)='9p\x00', 0x2500000000000000, &(0x7f0000000740)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}}) 21:38:39 executing program 2: set_mempolicy(0x8003, &(0x7f0000000300)=0x75f, 0x9) r0 = open(&(0x7f0000000300)='.\x00', 0x0, 0x2) symlinkat(&(0x7f0000000040)='\x13\x13w\xc5\xfc5\xd4\x14T\xd5\xd4\x1d)\xad\x1a`)Y\x81F\xe6\xbe\x16nA\xad\r\xbd@T\x03<\x9f3\xbb\xda\x82$\xa2\xf3\xd7r\xe7cnH\xb3<\xbfp\x83r\xe8\xf1\xb9\x93>\xc5\x12wC\xbe\"\x06 \x9e\xf0-\xf9\xcb\xf2\xf6\xe8\x80\xd38/\x00', r0, &(0x7f00000000c0)='./file0\x00') mkdirat(r0, &(0x7f0000000200)='\x13\x13w\xc5\xfc5\xd4\x14T\xd5\xd4\x1d)\xad\x1a`)Y\x81F\xe6\xbe\x16nA\xad\r\xbd@T\x03<\x9f3\xbb\xda\x82$\xa2\xf3\xd7r\xe7cnH\xb3<\xbfp\x83r\xe8\xf1\xb9\x93>\xc5\x12wC\xbe\"\x06 \x9e\xf0-\xf9\xcb\xf2\xf6\xe8\x80\xd38/\x00', 0x0) symlinkat(&(0x7f0000000340)='./file0/file0\x00', r0, &(0x7f0000000380)='\x13\x13w\xc5\xfc5\xd4\x14T\xd5\xd4\x1d)\xad\x1a`)Y\x81F\xe6\xbe\x16nA\xad\r\xbd@T\x03<\x9f3\xbb\xda\x82$\xa2\xf3\xd7r\xe7cnH\xb3<\xbfp\x83r\xe8\xf1\xb9\x93>\xc5\x12wC\xbe\"\x06 \x9e\xf0-\xf9\xcb\xf2\xf6\xe8\x80\xd38//file0\x00') r1 = open(&(0x7f0000000100)='.\x00', 0x0, 0x0) renameat2(r1, &(0x7f0000000400)='./file0/file0\x00', r1, &(0x7f0000000000)='./file0\x00', 0x0) ioctl$BTRFS_IOC_INO_LOOKUP_USER(0xffffffffffffffff, 0xd000943e, &(0x7f0000000440)={0x0, 0x0, "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", "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"}) [ 259.940194][T17976] FAULT_INJECTION: forcing a failure. [ 259.940194][T17976] name failslab, interval 1, probability 0, space 0, times 0 21:38:39 executing program 3: set_mempolicy(0x8003, &(0x7f0000000300)=0x75f, 0x9) open(&(0x7f0000000300)='.\x00', 0x0, 0x0) r0 = syz_open_procfs(0x0, &(0x7f00000000c0)='fd/3\x00') r1 = syz_open_dev$swradio(&(0x7f0000000100)='/dev/swradio#\x00', 0x0, 0x2) mount$9p_fd(0x0, &(0x7f0000000300)='.\x00', &(0x7f0000000080)='9p\x00', 0x0, &(0x7f0000000740)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}, 0x2c, {[], [], 0x9}}) [ 260.028590][T17999] 9pnet: Insufficient options for proto=fd [ 260.041412][T17976] CPU: 1 PID: 17976 Comm: syz-executor.0 Not tainted 5.11.0-syzkaller #0 [ 260.049964][T17976] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 260.060047][T17976] Call Trace: [ 260.063422][T17976] dump_stack+0x116/0x15d [ 260.067745][T17976] should_fail+0x23c/0x250 [ 260.072163][T17976] __should_failslab+0x81/0x90 [ 260.076916][T17976] should_failslab+0x5/0x20 [ 260.081475][T17976] kmem_cache_alloc_node_trace+0x4b/0x2e0 [ 260.088134][T17976] ? __kmalloc_node+0x30/0x40 [ 260.092875][T17976] __kmalloc_node+0x30/0x40 [ 260.097385][T17976] crypto_create_tfm_node+0x4a/0x1f0 [ 260.102689][T17976] ? crypto_alg_mod_lookup+0x397/0x4e0 [ 260.108209][T17976] crypto_alloc_tfm_node+0x100/0x290 [ 260.113490][T17976] crypto_alloc_shash+0x2b/0x30 [ 260.118322][T17976] ext4_fill_super+0x661/0x8410 [ 260.123154][T17976] ? vsnprintf+0xe8f/0xed0 [ 260.127574][T17976] ? snprintf+0x6f/0x90 [ 260.131710][T17976] ? register_shrinker_prepared+0xdf/0xf0 [ 260.137508][T17976] ? set_blocksize+0x197/0x2a0 [ 260.142256][T17976] mount_bdev+0x1e8/0x290 [ 260.146577][T17976] ? ext4_mount+0x40/0x40 [ 260.150906][T17976] ? ext4_errno_to_code+0x110/0x110 [ 260.156158][T17976] ext4_mount+0x2d/0x40 [ 260.160294][T17976] legacy_get_tree+0x70/0xc0 [ 260.165057][T17976] vfs_get_tree+0x4a/0x1a0 [ 260.169516][T17976] path_mount+0x11b6/0x1ca0 [ 260.174010][T17976] __se_sys_mount+0x23d/0x2e0 [ 260.178678][T17976] __x64_sys_mount+0x63/0x70 [ 260.183323][T17976] do_syscall_64+0x39/0x80 [ 260.187738][T17976] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 260.193616][T17976] RIP: 0033:0x4672ba [ 260.197514][T17976] Code: 48 c7 c2 bc ff ff ff f7 d8 64 89 02 b8 ff ff ff ff eb d2 e8 b8 04 00 00 0f 1f 84 00 00 00 00 00 49 89 ca b8 a5 00 00 00 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 260.218944][T17976] RSP: 002b:00007f8175ef9fa8 EFLAGS: 00000206 ORIG_RAX: 00000000000000a5 [ 260.227451][T17976] RAX: ffffffffffffffda RBX: 0000000020000200 RCX: 00000000004672ba [ 260.235417][T17976] RDX: 0000000020000000 RSI: 0000000020000100 RDI: 00007f8175efa000 [ 260.243370][T17976] RBP: 00007f8175efa040 R08: 00007f8175efa040 R09: 0000000020000000 [ 260.251930][T17976] R10: 0000000000000000 R11: 0000000000000206 R12: 0000000020000000 [ 260.260165][T17976] R13: 0000000020000100 R14: 00007f8175efa000 R15: 0000000020000040 21:38:40 executing program 4: set_mempolicy(0x8003, &(0x7f0000000300)=0x75f, 0x9) open(&(0x7f0000000300)='.\x00', 0x0, 0x0) r0 = syz_open_procfs(0x0, &(0x7f00000000c0)='fd/3\x00') r1 = syz_open_dev$swradio(&(0x7f0000000100)='/dev/swradio#\x00', 0x0, 0x2) mount$9p_fd(0x0, &(0x7f0000000300)='.\x00', &(0x7f0000000080)='9p\x00', 0x4000000000000000, &(0x7f0000000740)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}}) [ 260.293104][ T3648] warn_unsupported: 34 callbacks suppressed [ 260.293114][ T3648] kernel read not supported for file root/syzkaller-testdir051064025/syzkaller.PVWmQb/320 (pid: 3648 comm: kworker/1:2) [ 260.329649][ T8977] kernel read not supported for file root/syzkaller-testdir496628174/syzkaller.h9GlBV/320 (pid: 8977 comm: kworker/0:3) [ 260.363817][T18006] 9pnet: Insufficient options for proto=fd [ 260.409313][ T3648] kernel read not supported for file root/syzkaller-testdir496628174/syzkaller.h9GlBV/320 (pid: 3648 comm: kworker/1:2) 21:38:40 executing program 0 (fault-call:0 fault-nth:82): syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x40000, 0x3, &(0x7f0000000200)=[{&(0x7f0000010000)="20000000000100000c000000d90000000f0000000100000000000000000000000020000000200000200000002cc4645f2cc4645f0100ffff53ef0100010000002cc4645f000000000000000001000000000000000b0000008000000038000000c20200006b0400000000000000000000000000000000000073797a6b616c6c6572000000000000002f746d702f73797a2d696d61676567656e3338363633343038350000000000000000000000000000000000000000000000000000000000000000000000000000000000000000010000000000000000000000000000000000000000000000000000000000d9ca5cac99fd4329af4dde786c1a5d13010040000c000000000000002cc4645f", 0x10c, 0x400}, {&(0x7f0000010200)="0500000000000000000000000000000000000000040100002b", 0x19, 0x560}, {&(0x7f0000010300)="000000000000000000000000000000000000000000000000000000001481910a040000001400000024", 0x29, 0x7e0}], 0x0, &(0x7f0000000040)={[{@usrjquota='usrjquota='}, {@data_err_abort='data_err=abort'}]}) 21:38:40 executing program 4: set_mempolicy(0x8003, &(0x7f0000000300)=0x75f, 0x9) open(&(0x7f0000000300)='.\x00', 0x0, 0x0) r0 = syz_open_procfs(0x0, &(0x7f00000000c0)='fd/3\x00') r1 = syz_open_dev$swradio(&(0x7f0000000100)='/dev/swradio#\x00', 0x0, 0x2) mount$9p_fd(0x0, &(0x7f0000000300)='.\x00', &(0x7f0000000080)='9p\x00', 0x5c00000000000000, &(0x7f0000000740)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}}) 21:38:40 executing program 5: set_mempolicy(0x8003, &(0x7f0000000300)=0x75f, 0x9) open(&(0x7f0000000300)='.\x00', 0x0, 0x100) r0 = syz_open_procfs(0x0, &(0x7f00000000c0)='fd/3\x00') r1 = syz_open_dev$swradio(&(0x7f0000000100)='/dev/swradio#\x00', 0x0, 0x2) mount$9p_fd(0x0, &(0x7f0000000300)='.\x00', &(0x7f0000000080)='9p\x00', 0x0, &(0x7f0000000740)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}}) 21:38:40 executing program 3: set_mempolicy(0x8003, &(0x7f0000000300)=0x75f, 0x9) open(&(0x7f0000000300)='.\x00', 0x0, 0x0) r0 = syz_open_procfs(0x0, &(0x7f00000000c0)='fd/3\x00') r1 = syz_open_dev$swradio(&(0x7f0000000100)='/dev/swradio#\x00', 0x0, 0x2) mount$9p_fd(0x0, &(0x7f0000000300)='.\x00', &(0x7f0000000080)='9p\x00', 0x0, &(0x7f0000000740)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}, 0x2c, {[], [], 0xa}}) 21:38:40 executing program 2: set_mempolicy(0x8003, &(0x7f0000000300)=0x75f, 0x9) r0 = open(&(0x7f00000018c0)='\x13\x13w\xc5\xfc5\xd4\x14T\xd5\xd4\x1d)\xad\x1a`)Y\x81F\xe6\xbe\x16nA\xad\r\xbd@T\x03<\x9f3\xbb\xda\x82$\xa2\xf3\xd7r\xe7cnH\xb3<\xbfp\x83r\xe8\xf1\xb9\x93>\xc5\x12wC\xbe\"\x06 \x9e\xf0-\xf9\xcb\xf2\xf6\xe8\x80\xd38//file0\x00', 0x3, 0x48) r1 = syz_mount_image$msdos(&(0x7f00000000c0)='msdos\x00', &(0x7f0000000200)='./file0\x00', 0xf32, 0x7, &(0x7f0000001800)=[{&(0x7f0000000240)="7cd08fdf5f4eecec1552d0d093b70280309dd6165602f1f9753453b10e7ed500c9e8f5c79d4c01682194be7f3642329ff99a42e0aff3e272e937d1b792cace44c38ffa31b550448c60a1bef2657adf9a477efd4584408affc8a3bdfc6cbd7f83d71c2ffcec9298be605eaa9dccce1893ce285fe211cbe87c65f49548ea1724f63876ee6fd4930ff53b0df42bcf9f8b6cdaf90c0419e722dfce5f865e952c2d876261ca6d53e47594c2b4b6f5dc2c2d337995de48464abe46e96838117fd55d81", 0xc0, 0x4d3}, {&(0x7f0000000440)="73e30857d80a6e30414f041c596cf0282d308f2962b8c3f0309f1bd9589a81e2affcbfc52bd601e2a333ee8aa383f7055397d51744e7c04ac831ad08bd803d94cc867c70a7", 0x45, 0x5}, {&(0x7f00000004c0)="10f64d8189d7295349cfafabfbd58827a67d7ef013c54e727dc728df7b9078c706b455d0a780b995add84cde6790e7e20af1308b7c4bc00284806106249907d8b47d106e35a912e0db9c6a4701bc79ddf72168ae5d803d937602b70cf1d184ee9c37b2b8ac4b858beadbeae206925168f012428d186dc42015d9799789ea2d0f36", 0x81, 0x1dc3}, {&(0x7f0000000580)="09d8d905708bdc3e39324b8ca53a4f2cb13d7d08c4ec138f2f854f21f6a384eb9a1326c4b92a5ce0da5d8ce1666be08ffbc1bc8089c4b32bf0431dac8660f7a21d967df61ed8b50573b099893e7f1b68d6a2be51395bddcd696c27a5972cd650eef1e57f34bec53874c8b91623e5bfa83456f16ffd92746c84cd0044b3406603cff2cdb006d55e7f3e96", 0x8a, 0x8001}, {&(0x7f0000000640)="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", 0x1000, 0x100}, {&(0x7f0000001640)="81f7904e2e020f7623f0456baa897f1820935a4cd41c66806040588abed818b06010bc5cc3abd9f576fb139022feeba77d1c76b528ff6ff2a1eef8cfd5319b5c04481d19b2b38a0f0e75844f3c08d588248a78fb54bc09d63b88c25d9790c868fb6ce449df1a08d5d832c7dbda0412c49767babc0b73c099d4b825a2620095b954d43f63a58667f2d869be2dbf2a5fd79948504ceaad27a036d71a45f8ae9f32db80da6eef027e7272", 0xa9, 0x9}, {&(0x7f0000001700)="e85fa9fb102d7ab1452a3820a7628474715fd94d9d2f0dbffc76e1c5d2c2f22efb433808dc83f783b88e31a946a527e1007717afd5b4d781c274aea2202f1991af36d4d79948b91999efc4e8cedf9f11f0345081708d0ed35eecb051c8795a0580267ea5078ae29172a888b7e4adc99a1851d4ce5e3176a2c2a59b4bf183393c8a510f63eba308ffaa31c6be82105ef30bac2d2bfeb6286921c28d87fe97a938ee16867a339eb2a2350b7bd3f54fe61e56d8e5140e0db6f3be132e8720ffb30f0bcddc4b6f3cdf8b74aae5fc6036ea538822389004b13651f0d072909f0225863e", 0xe1, 0x517}], 0x4000, &(0x7f0000001940)=ANY=[@ANYBLOB="646f74733a18b93803912c646f7473246e6f646f74732c646f6e745f686173682c6d61736b3d5e273ff6884d41595f524541442c61707072616973655f747970e549696d617369672c7375626a5f726f6c653d5eaf5b2c6673636f6e746578743d73797374656d5f752c005b4e"]) symlinkat(&(0x7f00000001c0)='./file0\x00', r1, &(0x7f0000000040)='\x13\x13w\xc5\xfc5\xd4\x14T\xd5\xd4\x1d)\xad\x1a`)Y\x81F\xe6\xbe\x16nA\xad\r\xbd@T\x03<\x9f3\xbb\xda\x82$\xa2\xf3\xd7r\xe7cnH\xb3<\xbfp\x83r\xe8\xf1\xb9\x93>\xc5\x12wC\xbe\"\x06 \x9e\xf0-\xf9\xcb\xf2\xf6\xe8\x80\xd38//file0\x00') mkdirat(r0, &(0x7f0000000140)='\x13\x13w\xc5\xfc5\xd4\x14T\xd5\xd4\x1d)\xad\x1a`)Y\x81F\xe6\xbe\x16nA\xad\r\xbd@T\x03<\x9f3\xbb\xda\x82$\xa2\xf3\xd7r\xe7cnH\xb3<\xbfp\x83r\xe8\xf1\xb9\x93>\xc5\x12wC\xbe\"\x06 \x9e\xf0-\xf9\xcb\xf2\xf6\xe8\x80\xd38/\x00', 0x0) symlinkat(&(0x7f0000000340)='./file0/file0\x00', r0, &(0x7f0000000380)='\x13\x13w\xc5\xfc5\xd4\x14T\xd5\xd4\x1d)\xad\x1a`)Y\x81F\xe6\xbe\x16nA\xad\r\xbd@T\x03<\x9f3\xbb\xda\x82$\xa2\xf3\xd7r\xe7cnH\xb3<\xbfp\x83r\xe8\xf1\xb9\x93>\xc5\x12wC\xbe\"\x06 \x9e\xf0-\xf9\xcb\xf2\xf6\xe8\x80\xd38//file0\x00') r2 = open(&(0x7f0000000100)='.\x00', 0x0, 0x0) renameat2(r2, &(0x7f0000000400)='./file0/file0\x00', r2, &(0x7f0000000000)='./file0\x00', 0x0) ioctl$VIDIOC_QUERYBUF(0xffffffffffffffff, 0xc0585609, &(0x7f00000019c0)={0x1, 0xc, 0x4, 0x0, 0x9, {}, {0x5, 0x0, 0x1f, 0x8, 0x0, 0x8, "30758e16"}, 0x1, 0x4, @offset=0x200, 0x41}) 21:38:40 executing program 1: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) r3 = syz_open_procfs(0x0, &(0x7f00000000c0)='fd/3\x00') mount$9p_fd(0x0, &(0x7f0000000300)='.\x00', &(0x7f0000000080)='9p\x00', 0xffffff8c, &(0x7f00000003c0)={'trans=fd,', {'rfdno', 0x3d, r3}, 0x2c, {'wfdno', 0x3d, r2}}) [ 260.621068][T17976] EXT4-fs (loop0): Cannot load crc32c driver. 21:38:40 executing program 4: set_mempolicy(0x8003, &(0x7f0000000300)=0x75f, 0x9) open(&(0x7f0000000300)='.\x00', 0x0, 0x0) r0 = syz_open_procfs(0x0, &(0x7f00000000c0)='fd/3\x00') r1 = syz_open_dev$swradio(&(0x7f0000000100)='/dev/swradio#\x00', 0x0, 0x2) mount$9p_fd(0x0, &(0x7f0000000300)='.\x00', &(0x7f0000000080)='9p\x00', 0x8cffffff00000000, &(0x7f0000000740)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}}) [ 260.692774][T18037] loop2: detected capacity change from 128 to 0 [ 260.697980][ T8977] kernel read not supported for file root/syzkaller-testdir496628174/syzkaller.h9GlBV/321 (pid: 8977 comm: kworker/0:3) [ 260.721938][T18037] FAT-fs (loop2): Unrecognized mount option "dots:¹8‘" or missing value [ 260.726886][T18051] loop0: detected capacity change from 512 to 0 21:38:40 executing program 1: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) r3 = syz_open_procfs(0x0, &(0x7f00000000c0)='fd/3\x00') mount$9p_fd(0x0, &(0x7f0000000300)='.\x00', &(0x7f0000000080)='9p\x00', 0xfffffff6, &(0x7f00000003c0)={'trans=fd,', {'rfdno', 0x3d, r3}, 0x2c, {'wfdno', 0x3d, r2}}) [ 260.759195][ T9777] kernel read not supported for file root/syzkaller-testdir051064025/syzkaller.PVWmQb/321 (pid: 9777 comm: kworker/0:5) [ 260.780821][T18051] FAULT_INJECTION: forcing a failure. [ 260.780821][T18051] name failslab, interval 1, probability 0, space 0, times 0 [ 260.796355][T18051] CPU: 0 PID: 18051 Comm: syz-executor.0 Not tainted 5.11.0-syzkaller #0 [ 260.804818][T18051] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 260.810533][ T3648] kernel read not supported for file root/syzkaller-testdir051064025/syzkaller.PVWmQb/321 (pid: 3648 comm: kworker/1:2) [ 260.814864][T18051] Call Trace: [ 260.814873][T18051] dump_stack+0x116/0x15d [ 260.835003][T18051] should_fail+0x23c/0x250 [ 260.839425][T18051] __should_failslab+0x81/0x90 [ 260.844196][T18051] should_failslab+0x5/0x20 [ 260.848689][T18051] kmem_cache_alloc_node_trace+0x4b/0x2e0 [ 260.854412][T18051] ? __kmalloc_node+0x30/0x40 21:38:40 executing program 3: set_mempolicy(0x8003, &(0x7f0000000300)=0x75f, 0x9) open(&(0x7f0000000300)='.\x00', 0x0, 0x0) r0 = syz_open_procfs(0x0, &(0x7f00000000c0)='fd/3\x00') r1 = syz_open_dev$swradio(&(0x7f0000000100)='/dev/swradio#\x00', 0x0, 0x2) mount$9p_fd(0x0, &(0x7f0000000300)='.\x00', &(0x7f0000000080)='9p\x00', 0x0, &(0x7f0000000740)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}, 0x2c, {[], [], 0xb}}) [ 260.859097][T18051] __kmalloc_node+0x30/0x40 [ 260.863601][T18051] kvmalloc_node+0x81/0xf0 [ 260.868027][T18051] ext4_fill_super+0x353f/0x8410 [ 260.872962][T18051] ? snprintf+0x6f/0x90 [ 260.878159][T18051] ? register_shrinker_prepared+0xdf/0xf0 [ 260.885029][T18051] mount_bdev+0x1e8/0x290 [ 260.889405][T18051] ? ext4_mount+0x40/0x40 [ 260.893729][T18051] ? ext4_errno_to_code+0x110/0x110 [ 260.898946][T18051] ext4_mount+0x2d/0x40 [ 260.903849][T18051] legacy_get_tree+0x70/0xc0 [ 260.908793][T18051] vfs_get_tree+0x4a/0x1a0 [ 260.914104][T18051] path_mount+0x11b6/0x1ca0 [ 260.919694][T18051] __se_sys_mount+0x23d/0x2e0 [ 260.925440][T18051] __x64_sys_mount+0x63/0x70 [ 260.932220][T18051] do_syscall_64+0x39/0x80 [ 260.937523][T18051] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 260.944341][T18051] RIP: 0033:0x4672ba [ 260.949424][T18051] Code: 48 c7 c2 bc ff ff ff f7 d8 64 89 02 b8 ff ff ff ff eb d2 e8 b8 04 00 00 0f 1f 84 00 00 00 00 00 49 89 ca b8 a5 00 00 00 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 260.970139][T18051] RSP: 002b:00007f8175ef9fa8 EFLAGS: 00000206 ORIG_RAX: 00000000000000a5 [ 260.978624][T18051] RAX: ffffffffffffffda RBX: 0000000020000200 RCX: 00000000004672ba [ 260.986592][T18051] RDX: 0000000020000000 RSI: 0000000020000100 RDI: 00007f8175efa000 [ 260.994612][T18051] RBP: 00007f8175efa040 R08: 00007f8175efa040 R09: 0000000020000000 [ 261.002589][T18051] R10: 0000000000000000 R11: 0000000000000206 R12: 0000000020000000 21:38:40 executing program 5: set_mempolicy(0x8003, &(0x7f0000000300)=0x75f, 0x9) open(&(0x7f0000000300)='.\x00', 0x0, 0x0) r0 = syz_open_procfs(0x0, &(0x7f00000000c0)='fd/3\x00') r1 = syz_open_dev$swradio(&(0x7f0000000100)='/dev/swradio#\x00', 0x0, 0x2) mount$9p_fd(0x0, &(0x7f0000000300)='.\x00', &(0x7f0000000080)='9p\x00', 0x0, &(0x7f0000000740)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}}) r2 = fcntl$dupfd(r1, 0x406, r0) ioctl$FBIOPUT_VSCREENINFO(r2, 0x4601, &(0x7f0000000140)={0x1000, 0x30, 0x3c00, 0x80, 0x1, 0x7, 0xf, 0x2, {0x0, 0x4, 0x1}, {0x7, 0x0, 0x1}, {0x40, 0x8, 0x1}, {0xffffffff, 0x8000}, 0x1, 0x80, 0x59, 0xd6ff, 0x1, 0x5, 0x80, 0x7, 0x3, 0x10001, 0x101, 0x5, 0x29, 0x2, 0x0, 0xd}) [ 261.010543][T18051] R13: 0000000020000100 R14: 00007f8175efa000 R15: 0000000020000040 [ 261.020527][T18051] EXT4-fs (loop0): not enough memory [ 261.042234][T18058] loop2: detected capacity change from 128 to 0 21:38:41 executing program 0 (fault-call:0 fault-nth:83): syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x40000, 0x3, &(0x7f0000000200)=[{&(0x7f0000010000)="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", 0x10c, 0x400}, {&(0x7f0000010200)="0500000000000000000000000000000000000000040100002b", 0x19, 0x560}, {&(0x7f0000010300)="000000000000000000000000000000000000000000000000000000001481910a040000001400000024", 0x29, 0x7e0}], 0x0, &(0x7f0000000040)={[{@usrjquota='usrjquota='}, {@data_err_abort='data_err=abort'}]}) [ 261.059827][ T9777] kernel read not supported for file root/syzkaller-testdir496628174/syzkaller.h9GlBV/322 (pid: 9777 comm: kworker/0:5) [ 261.081983][T18058] FAT-fs (loop2): Unrecognized mount option "dots:¹8‘" or missing value 21:38:41 executing program 4: set_mempolicy(0x8003, &(0x7f0000000300)=0x75f, 0x9) open(&(0x7f0000000300)='.\x00', 0x0, 0x0) r0 = syz_open_procfs(0x0, &(0x7f00000000c0)='fd/3\x00') r1 = syz_open_dev$swradio(&(0x7f0000000100)='/dev/swradio#\x00', 0x0, 0x2) mount$9p_fd(0x0, &(0x7f0000000300)='.\x00', &(0x7f0000000080)='9p\x00', 0xf6ffffff00000000, &(0x7f0000000740)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}}) 21:38:41 executing program 1: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) r3 = syz_open_procfs(0x0, &(0x7f00000000c0)='fd/3\x00') mount$9p_fd(0x0, &(0x7f0000000300)='.\x00', &(0x7f0000000080)='9p\x00', 0xfffffffe, &(0x7f00000003c0)={'trans=fd,', {'rfdno', 0x3d, r3}, 0x2c, {'wfdno', 0x3d, r2}}) [ 261.145206][ T9777] kernel read not supported for file root/syzkaller-testdir496628174/syzkaller.h9GlBV/322 (pid: 9777 comm: kworker/0:5) 21:38:41 executing program 2: set_mempolicy(0x8003, &(0x7f0000000300)=0x75f, 0x9) r0 = open(&(0x7f0000000300)='.\x00', 0x0, 0x0) symlinkat(&(0x7f0000000040)='\x13\x13w\xc5\xfc5\xd4\x14T\xd5\xd4\x1d)\xad\x1a`)Y\x81F\xe6\xbe\x16nA\xad\r\xbd@T\x03<\x9f3\xbb\xda\x82$\xa2\xf3\xd7r\xe7cnH\xb3<\xbfp\x83r\xe8\xf1\xb9\x93>\xc5\x12wC\xbe\"\x06 \x9e\xf0-\xf9\xcb\xf2\xf6\xe8\x80\xd38/\x00', r0, &(0x7f00000000c0)='./file0\x00') mkdirat(r0, &(0x7f0000000200)='\x13\x13w\xc5\xfc5\xd4\x14T\xd5\xd4\x1d)\xad\x1a`)Y\x81F\xe6\xbe\x16nA\xad\r\xbd@T\x03<\x9f3\xbb\xda\x82$\xa2\xf3\xd7r\xe7cnH\xb3<\xbfp\x83r\xe8\xf1\xb9\x93>\xc5\x12wC\xbe\"\x06 \x9e\xf0-\xf9\xcb\xf2\xf6\xe8\x80\xd38/\x00', 0x0) symlinkat(&(0x7f0000000340)='./file0/file0\x00', r0, &(0x7f0000000380)='\x13\x13w\xc5\xfc5\xd4\x14T\xd5\xd4\x1d)\xad\x1a`)Y\x81F\xe6\xbe\x16nA\xad\r\xbd@T\x03<\x9f3\xbb\xda\x82$\xa2\xf3\xd7r\xe7cnH\xb3<\xbfp\x83r\xe8\xf1\xb9\x93>\xc5\x12wC\xbe\"\x06 \x9e\xf0-\xf9\xcb\xf2\xf6\xe8\x80\xd38//file0\x00') set_mempolicy(0x0, &(0x7f0000000140)=0xffff, 0x4000000000) r1 = open(&(0x7f0000000100)='.\x00', 0x0, 0x0) renameat2(r1, &(0x7f0000000400)='./file0/file0\x00', r1, &(0x7f0000000000)='./file0\x00', 0x0) 21:38:41 executing program 3: set_mempolicy(0x8003, &(0x7f0000000300)=0x75f, 0x9) open(&(0x7f0000000300)='.\x00', 0x0, 0x0) r0 = syz_open_procfs(0x0, &(0x7f00000000c0)='fd/3\x00') r1 = syz_open_dev$swradio(&(0x7f0000000100)='/dev/swradio#\x00', 0x0, 0x2) mount$9p_fd(0x0, &(0x7f0000000300)='.\x00', &(0x7f0000000080)='9p\x00', 0x0, &(0x7f0000000740)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}, 0x2c, {[], [], 0xc}}) [ 261.200696][ T8977] kernel read not supported for file root/syzkaller-testdir051064025/syzkaller.PVWmQb/322 (pid: 8977 comm: kworker/0:3) 21:38:41 executing program 5: set_mempolicy(0x8003, &(0x7f0000000300)=0x75f, 0x9) socket(0xf, 0x3, 0x3) open(&(0x7f0000000300)='.\x00', 0x0, 0x0) r0 = syz_open_procfs(0x0, &(0x7f00000000c0)='fd/3\x00') r1 = syz_open_dev$swradio(&(0x7f0000000100)='/dev/swradio#\x00', 0x0, 0x2) mount$9p_fd(0x0, &(0x7f0000000300)='.\x00', &(0x7f0000000080)='9p\x00', 0x0, &(0x7f0000000140)=ANY=[@ANYBLOB="08010000733d66642c7266646e551e00f6a1e5c3e8a60db6a3af22909e452f01b9bb457f34633a0eeb95bed0d0924378d137c1adcc63f9bede035939c9e2917056b2625deec3bd8ecdece9dfbbf87b91c11268b8ea03691ebe0e1b8f4ed9827120d556837f8e81ebd01753caf2d5b16eaa4d3ef26bce811aced4e0ca768d2a815f702dfc614f17d6f1601e6e09c4e164db12359abc153f66b443cf986833e0c524bda9a4b7e702d246554df86faeb84c9761e3a651077c1ef0a0ffbb390000000000000000", @ANYRESHEX=r0, @ANYBLOB=',wfdno=', @ANYRESHEX=r1, @ANYBLOB=',\x00']) write$binfmt_misc(0xffffffffffffffff, &(0x7f0000000240)={'syz0', "d28981e8714c8eeb5a3bd2344c1611c1081deddc859995b4fd48b9fc74e2993c707834f3201abb65f4648077eeb399320f7f07809b1636341a2989803559d9cc95a1eb3cf93cb0479b6da0bca79b8801530aa10d1d033101e5a204a8fb3f6f7403af83d91d84b37bb96ee5826c5614e55237688a1eb8c9969706f429d914d401e63e79dac77d2bf6bba1a3a072caa08dde5e"}, 0x96) 21:38:41 executing program 4: set_mempolicy(0x8003, &(0x7f0000000300)=0x75f, 0x9) open(&(0x7f0000000300)='.\x00', 0x0, 0x0) r0 = syz_open_procfs(0x0, &(0x7f00000000c0)='fd/3\x00') r1 = syz_open_dev$swradio(&(0x7f0000000100)='/dev/swradio#\x00', 0x0, 0x2) mount$9p_fd(0x0, &(0x7f0000000300)='.\x00', &(0x7f0000000080)='9p\x00', 0xfeffffff00000000, &(0x7f0000000740)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}}) [ 261.261028][T18095] loop0: detected capacity change from 512 to 0 [ 261.290390][T18095] FAULT_INJECTION: forcing a failure. [ 261.290390][T18095] name failslab, interval 1, probability 0, space 0, times 0 21:38:41 executing program 1: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) r3 = syz_open_procfs(0x0, &(0x7f00000000c0)='fd/3\x00') mount$9p_fd(0x0, &(0x7f0000000300)='.\x00', &(0x7f0000000080)='9p\x00', 0x8000000000, &(0x7f00000003c0)={'trans=fd,', {'rfdno', 0x3d, r3}, 0x2c, {'wfdno', 0x3d, r2}}) [ 261.347682][ T8977] kernel read not supported for file root/syzkaller-testdir496628174/syzkaller.h9GlBV/323 (pid: 8977 comm: kworker/0:3) [ 261.352709][T18095] CPU: 1 PID: 18095 Comm: syz-executor.0 Not tainted 5.11.0-syzkaller #0 [ 261.368640][T18095] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 261.378706][T18095] Call Trace: [ 261.382012][T18095] dump_stack+0x116/0x15d [ 261.386494][T18095] should_fail+0x23c/0x250 [ 261.390919][T18095] __should_failslab+0x81/0x90 [ 261.395725][T18095] should_failslab+0x5/0x20 [ 261.400840][T18095] kmem_cache_alloc_node_trace+0x4b/0x2e0 [ 261.406566][T18095] ? __kmalloc_node+0x30/0x40 [ 261.411261][T18095] __kmalloc_node+0x30/0x40 [ 261.415755][T18095] kvmalloc_node+0x81/0xf0 [ 261.420200][T18095] ext4_fill_super+0x353f/0x8410 [ 261.425131][T18095] ? snprintf+0x6f/0x90 [ 261.429277][T18095] ? register_shrinker_prepared+0xdf/0xf0 [ 261.434984][T18095] mount_bdev+0x1e8/0x290 [ 261.439304][T18095] ? ext4_mount+0x40/0x40 [ 261.443614][T18095] ? ext4_errno_to_code+0x110/0x110 [ 261.448792][T18095] ext4_mount+0x2d/0x40 [ 261.452939][T18095] legacy_get_tree+0x70/0xc0 [ 261.457587][T18095] vfs_get_tree+0x4a/0x1a0 [ 261.462073][T18095] path_mount+0x11b6/0x1ca0 [ 261.466569][T18095] __se_sys_mount+0x23d/0x2e0 [ 261.471348][T18095] __x64_sys_mount+0x63/0x70 [ 261.475929][T18095] do_syscall_64+0x39/0x80 [ 261.480342][T18095] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 261.486224][T18095] RIP: 0033:0x4672ba [ 261.490109][T18095] Code: 48 c7 c2 bc ff ff ff f7 d8 64 89 02 b8 ff ff ff ff eb d2 e8 b8 04 00 00 0f 1f 84 00 00 00 00 00 49 89 ca b8 a5 00 00 00 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 261.509729][T18095] RSP: 002b:00007f8175ef9fa8 EFLAGS: 00000206 ORIG_RAX: 00000000000000a5 [ 261.518122][T18095] RAX: ffffffffffffffda RBX: 0000000020000200 RCX: 00000000004672ba [ 261.526074][T18095] RDX: 0000000020000000 RSI: 0000000020000100 RDI: 00007f8175efa000 [ 261.534235][T18095] RBP: 00007f8175efa040 R08: 00007f8175efa040 R09: 0000000020000000 21:38:41 executing program 2: set_mempolicy(0x8003, &(0x7f0000000300)=0x75f, 0x9) r0 = open(&(0x7f0000000300)='.\x00', 0x0, 0x0) symlinkat(&(0x7f0000000040)='\x13\x13w\xc5\xfc5\xd4\x14T\xd5\xd4\x1d)\xad\x1a`)Y\x81F\xe6\xbe\x16nA\xad\r\xbd@T\x03<\x9f3\xbb\xda\x82$\xa2\xf3\xd7r\xe7cnH\xb3<\xbfp\x83r\xe8\xf1\xb9\x93>\xc5\x12wC\xbe\"\x06 \x9e\xf0-\xf9\xcb\xf2\xf6\xe8\x80\xd38/\x00', r0, &(0x7f00000000c0)='./file0\x00') mkdirat(r0, &(0x7f0000000200)='\x13\x13w\xc5\xfc5\xd4\x14T\xd5\xd4\x1d)\xad\x1a`)Y\x81F\xe6\xbe\x16nA\xad\r\xbd@T\x03<\x9f3\xbb\xda\x82$\xa2\xf3\xd7r\xe7cnH\xb3<\xbfp\x83r\xe8\xf1\xb9\x93>\xc5\x12wC\xbe\"\x06 \x9e\xf0-\xf9\xcb\xf2\xf6\xe8\x80\xd38/\x00', 0x0) symlinkat(&(0x7f0000000340)='./file0/file0\x00', r0, &(0x7f0000000380)='\x13\x13w\xc5\xfc5\xd4\x14T\xd5\xd4\x1d)\xad\x1a`)Y\x81F\xe6\xbe\x16nA\xad\r\xbd@T\x03<\x9f3\xbb\xda\x82$\xa2\xf3\xd7r\xe7cnH\xb3<\xbfp\x83r\xe8\xf1\xb9\x93>\xc5\x12wC\xbe\"\x06 \x9e\xf0-\xf9\xcb\xf2\xf6\xe8\x80\xd38//file0\x00') r1 = open(&(0x7f0000000100)='.\x00', 0x0, 0x0) renameat2(r1, &(0x7f0000000400)='./file0/file0\x00', r1, &(0x7f0000000000)='./file0\x00', 0x0) 21:38:41 executing program 5: set_mempolicy(0x8003, &(0x7f0000000300)=0x75f, 0x9) open(&(0x7f0000000300)='.\x00', 0x0, 0x0) r0 = syz_open_procfs(0x0, &(0x7f00000000c0)='fd/3\x00') r1 = syz_open_dev$swradio(&(0x7f0000000100)='/dev/swradio#\x00', 0x0, 0x2) ioctl$VIDIOC_ENUM_FREQ_BANDS(r0, 0xc0405665, &(0x7f0000000000)={0x8, 0x3, 0xdb5a, 0x20, 0xaa, 0x80000001, 0x8}) ioctl$VIDIOC_LOG_STATUS(r0, 0x5646, 0x0) mount$9p_fd(0x0, &(0x7f0000000300)='.\x00', &(0x7f0000000080)='9p\x00', 0x0, &(0x7f0000000740)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}}) 21:38:41 executing program 4: set_mempolicy(0x8003, &(0x7f0000000300)=0x75f, 0x9) open(&(0x7f0000000300)='.\x00', 0x0, 0x0) r0 = syz_open_procfs(0x0, &(0x7f00000000c0)='fd/3\x00') r1 = syz_open_dev$swradio(&(0x7f0000000100)='/dev/swradio#\x00', 0x0, 0x2) mount$9p_fd(0x0, &(0x7f0000000300)='.\x00', &(0x7f0000000080)='9p\x00', 0xff00000000000000, &(0x7f0000000740)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}}) [ 261.542184][T18095] R10: 0000000000000000 R11: 0000000000000206 R12: 0000000020000000 [ 261.550149][T18095] R13: 0000000020000100 R14: 00007f8175efa000 R15: 0000000020000040 [ 261.559847][T18095] EXT4-fs (loop0): not enough memory 21:38:41 executing program 3: set_mempolicy(0x8003, &(0x7f0000000300)=0x75f, 0x9) open(&(0x7f0000000300)='.\x00', 0x0, 0x0) r0 = syz_open_procfs(0x0, &(0x7f00000000c0)='fd/3\x00') r1 = syz_open_dev$swradio(&(0x7f0000000100)='/dev/swradio#\x00', 0x0, 0x2) mount$9p_fd(0x0, &(0x7f0000000300)='.\x00', &(0x7f0000000080)='9p\x00', 0x0, &(0x7f0000000740)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}, 0x2c, {[], [], 0xd}}) 21:38:41 executing program 0 (fault-call:0 fault-nth:84): syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x40000, 0x3, &(0x7f0000000200)=[{&(0x7f0000010000)="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", 0x10c, 0x400}, {&(0x7f0000010200)="0500000000000000000000000000000000000000040100002b", 0x19, 0x560}, {&(0x7f0000010300)="000000000000000000000000000000000000000000000000000000001481910a040000001400000024", 0x29, 0x7e0}], 0x0, &(0x7f0000000040)={[{@usrjquota='usrjquota='}, {@data_err_abort='data_err=abort'}]}) 21:38:41 executing program 2: set_mempolicy(0x8003, &(0x7f0000000300)=0x75f, 0x9) r0 = open(&(0x7f0000000300)='.\x00', 0x0, 0x0) socket$inet6(0xa, 0x80000, 0x6) symlinkat(&(0x7f0000000040)='\x13\x13w\xc5\xfc5\xd4\x14T\xd5\xd4\x1d)\xad\x1a`)Y\x81F\xe6\xbe\x16nA\xad\r\xbd@T\x03<\x9f3\xbb\xda\x82$\xa2\xf3\xd7r\xe7cnH\xb3<\xbfp\x83r\xe8\xf1\xb9\x93>\xc5\x12wC\xbe\"\x06 \x9e\xf0-\xf9\xcb\xf2\xf6\xe8\x80\xd38/\x00', r0, &(0x7f00000000c0)='./file0\x00') mkdirat(r0, &(0x7f0000000200)='\x13\x13w\xc5\xfc5\xd4\x14T\xd5\xd4\x1d)\xad\x1a`)Y\x81F\xe6\xbe\x16nA\xad\r\xbd@T\x03<\x9f3\xbb\xda\x82$\xa2\xf3\xd7r\xe7cnH\xb3<\xbfp\x83r\xe8\xf1\xb9\x93>\xc5\x12wC\xbe\"\x06 \x9e\xf0-\xf9\xcb\xf2\xf6\xe8\x80\xd38/\x00', 0x0) symlinkat(&(0x7f0000000340)='./file0/file0\x00', r0, &(0x7f0000000380)='\x13\x13w\xc5\xfc5\xd4\x14T\xd5\xd4\x1d)\xad\x1a`)Y\x81F\xe6\xbe\x16nA\xad\r\xbd@T\x03<\x9f3\xbb\xda\x82$\xa2\xf3\xd7r\xe7cnH\xb3<\xbfp\x83r\xe8\xf1\xb9\x93>\xc5\x12wC\xbe\"\x06 \x9e\xf0-\xf9\xcb\xf2\xf6\xe8\x80\xd38//file0\x00') set_mempolicy(0x2, &(0x7f0000000140)=0x2, 0x1f) r1 = open(&(0x7f0000000100)='.\x00', 0x0, 0x0) renameat2(r1, &(0x7f0000000400)='./file0/file0\x00', r1, &(0x7f0000000000)='./file0\x00', 0x0) 21:38:41 executing program 4: set_mempolicy(0x8003, &(0x7f0000000300)=0x75f, 0x9) open(&(0x7f0000000300)='.\x00', 0x0, 0x0) r0 = syz_open_procfs(0x0, &(0x7f00000000c0)='fd/3\x00') r1 = syz_open_dev$swradio(&(0x7f0000000100)='/dev/swradio#\x00', 0x0, 0x2) mount$9p_fd(0x0, &(0x7f0000000300)='.\x00', &(0x7f0000000080)='9p\x00', 0xff9f000000000000, &(0x7f0000000740)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}}) 21:38:41 executing program 5: set_mempolicy(0x8003, &(0x7f0000000300)=0x75f, 0x9) open(&(0x7f0000000300)='.\x00', 0x0, 0x0) r0 = syz_open_procfs(0x0, &(0x7f00000000c0)='fd/3\x00') r1 = syz_open_dev$swradio(&(0x7f0000000100)='/dev/swradio#\x00', 0x0, 0x2) mount$9p_fd(0x0, &(0x7f0000000300)='.\x00', &(0x7f0000000080)='9p\x00', 0x0, &(0x7f0000000140)=ANY=[@ANYBLOB='trans=fd,rfdno=', @ANYRESHEX=r0, @ANYBLOB=',wfdno=', @ANYRESHEX=r1, @ANYBLOB="2c0050e96bf017bc16f8bc7c5c5d02252d149abe3a9c46589a6bfad1645a1fcc3c637bbe83aeff99a7252f2db96180ad5d03ec788badf319c33b7f0cb17c0f8942ba1c8f582dd0a2913eacc9ecd82435e41c85840aba242d39e290ebfd739f7281336731f95c8d1d67c3fd36257e347831e393ac3b2039bb8522bcea20067410c4065d3c6db5c5eb10b9410d720efc7b30b99b5742e5df62989fc29d958c1c9c2bec5c86668818d856308e8194349544bbd58ef502e2590603ef7487bf"]) [ 261.695610][T18142] loop0: detected capacity change from 512 to 0 [ 261.712416][T18142] FAULT_INJECTION: forcing a failure. [ 261.712416][T18142] name failslab, interval 1, probability 0, space 0, times 0 [ 261.791730][T18142] CPU: 0 PID: 18142 Comm: syz-executor.0 Not tainted 5.11.0-syzkaller #0 [ 261.800179][T18142] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 261.810229][T18142] Call Trace: [ 261.813494][T18142] dump_stack+0x116/0x15d [ 261.817840][T18142] should_fail+0x23c/0x250 [ 261.822329][T18142] ? mempool_alloc_slab+0x16/0x20 [ 261.827347][T18142] __should_failslab+0x81/0x90 [ 261.832136][T18142] should_failslab+0x5/0x20 [ 261.836637][T18142] kmem_cache_alloc+0x36/0x2e0 [ 261.841394][T18142] ? __rcu_read_unlock+0x5c/0x250 [ 261.846419][T18142] ? xas_load+0x332/0x360 [ 261.850754][T18142] mempool_alloc_slab+0x16/0x20 [ 261.855603][T18142] ? mempool_free+0x130/0x130 [ 261.860270][T18142] mempool_alloc+0x64/0x320 [ 261.864766][T18142] ? mark_page_accessed+0x52f/0x5f0 [ 261.869956][T18142] ? pagecache_get_page+0x3b5/0x980 [ 261.875151][T18142] ? PageHuge+0x59/0xc0 [ 261.879350][T18142] bio_alloc_bioset+0x138/0x3b0 [ 261.884187][T18142] ? _raw_spin_unlock+0x22/0x40 [ 261.889052][T18142] ? __find_get_block_slow+0x230/0x3b0 [ 261.894622][T18142] submit_bh_wbc+0x134/0x3e0 [ 261.899236][T18142] submit_bh+0x21/0x30 [ 261.903309][T18142] ? __wait_on_buffer+0x60/0x60 [ 261.908149][T18142] ext4_read_bh_nowait+0xdd/0x140 [ 261.913225][T18142] ext4_fill_super+0x3a28/0x8410 [ 261.918241][T18142] ? snprintf+0x6f/0x90 [ 261.922388][T18142] ? register_shrinker_prepared+0xdf/0xf0 [ 261.928112][T18142] mount_bdev+0x1e8/0x290 [ 261.932439][T18142] ? ext4_mount+0x40/0x40 [ 261.936829][T18142] ? ext4_errno_to_code+0x110/0x110 [ 261.942021][T18142] ext4_mount+0x2d/0x40 [ 261.946171][T18142] legacy_get_tree+0x70/0xc0 [ 261.950759][T18142] vfs_get_tree+0x4a/0x1a0 [ 261.955173][T18142] path_mount+0x11b6/0x1ca0 [ 261.959762][T18142] __se_sys_mount+0x23d/0x2e0 [ 261.964434][T18142] __x64_sys_mount+0x63/0x70 [ 261.969032][T18142] do_syscall_64+0x39/0x80 [ 261.973446][T18142] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 261.979338][T18142] RIP: 0033:0x4672ba [ 261.983221][T18142] Code: 48 c7 c2 bc ff ff ff f7 d8 64 89 02 b8 ff ff ff ff eb d2 e8 b8 04 00 00 0f 1f 84 00 00 00 00 00 49 89 ca b8 a5 00 00 00 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 262.003082][T18142] RSP: 002b:00007f8175ef9fa8 EFLAGS: 00000206 ORIG_RAX: 00000000000000a5 [ 262.011562][T18142] RAX: ffffffffffffffda RBX: 0000000020000200 RCX: 00000000004672ba [ 262.019516][T18142] RDX: 0000000020000000 RSI: 0000000020000100 RDI: 00007f8175efa000 [ 262.027467][T18142] RBP: 00007f8175efa040 R08: 00007f8175efa040 R09: 0000000020000000 21:38:42 executing program 3: set_mempolicy(0x8003, &(0x7f0000000300)=0x75f, 0x9) open(&(0x7f0000000300)='.\x00', 0x0, 0x0) r0 = syz_open_procfs(0x0, &(0x7f00000000c0)='fd/3\x00') r1 = syz_open_dev$swradio(&(0x7f0000000100)='/dev/swradio#\x00', 0x0, 0x2) mount$9p_fd(0x0, &(0x7f0000000300)='.\x00', &(0x7f0000000080)='9p\x00', 0x0, &(0x7f0000000740)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}, 0x2c, {[], [], 0xe}}) 21:38:42 executing program 5: set_mempolicy(0x8003, &(0x7f0000000300)=0x75f, 0x9) open(&(0x7f0000000300)='.\x00', 0x0, 0x0) r0 = syz_open_procfs(0x0, &(0x7f00000000c0)='fd/3\x00') r1 = syz_open_dev$swradio(&(0x7f0000000100)='/dev/swradio#\x00', 0x0, 0x2) ioctl$FS_IOC_SETFLAGS(r1, 0x40086602, &(0x7f0000000000)=0x800000) mount$9p_fd(0x0, &(0x7f0000000300)='.\x00', &(0x7f0000000080)='9p\x00', 0x0, &(0x7f0000000740)=ANY=[@ANYBLOB='trans=fd,rfdno=', @ANYRESHEX=r0, @ANYBLOB=',wfdno=', @ANYRESHEX=r1, @ANYBLOB="2cef"]) 21:38:42 executing program 2: newfstatat(0xffffffffffffff9c, &(0x7f0000000280)='./file0/file0\x00', &(0x7f0000000440)={0x0, 0x0, 0x0, 0x0, 0x0}, 0x100) mount$bpf(0x0, &(0x7f0000000140)='\x13\x13w\xc5\xfc5\xd4\x14T\xd5\xd4\x1d)\xad\x1a`)Y\x81F\xe6\xbe\x16nA\xad\r\xbd@T\x03<\x9f3\xbb\xda\x82$\xa2\xf3\xd7r\xe7cnH\xb3<\xbfp\x83r\xe8\xf1\xb9\x93>\xc5\x12wC\xbe\"\x06 \x9e\xf0-\xf9\xcb\xf2\xf6\xe8\x80\xd38//file0\x00', &(0x7f00000001c0)='bpf\x00', 0x811, &(0x7f00000004c0)={[{@mode={'mode', 0x3d, 0x7}}, {@mode={'mode', 0x3d, 0x80}}, {@mode={'mode'}}, {@mode={'mode', 0x3d, 0x2cbee275}}, {@mode={'mode', 0x3d, 0x7fff}}], [{@euid_eq={'euid', 0x3d, 0xffffffffffffffff}}, {@euid_eq={'euid', 0x3d, r0}}, {@euid_gt={'euid>', 0xee01}}]}) r1 = socket$inet_udplite(0x2, 0x2, 0x88) getsockopt$sock_cred(r1, 0x1, 0x11, &(0x7f0000000240)={0x0, 0x0, 0x0}, &(0x7f0000000280)=0x5) setuid(r2) mount$bpf(0x0, &(0x7f00000002c0)='./file0/file0\x00', &(0x7f00000005c0)='bpf\x00', 0x60, &(0x7f0000000600)={[{@mode={'mode', 0x3d, 0xafed}}, {@mode={'mode', 0x3d, 0x81}}], [{@smackfshat={'smackfshat', 0x3d, '\xaf,'}}, {@fowner_eq={'fowner', 0x3d, r2}}, {@fsname={'fsname', 0x3d, ':'}}, {@uid_gt={'uid>', r0}}, {@euid_lt={'euid<', r0}}, {@subj_role={'subj_role', 0x3d, ']\x92\xe3'}}, {@fsname={'fsname', 0x3d, 'euid'}}, {@subj_type={'subj_type', 0x3d, 'mode'}}]}) set_mempolicy(0x8003, &(0x7f0000000300)=0x75f, 0x9) r4 = open(&(0x7f0000000300)='.\x00', 0x0, 0x0) symlinkat(&(0x7f0000000040)='\x13\x13w\xc5\xfc5\xd4\x14T\xd5\xd4\x1d)\xad\x1a`)Y\x81F\xe6\xbe\x16nA\xad\r\xbd@T\x03<\x9f3\xbb\xda\x82$\xa2\xf3\xd7r\xe7cnH\xb3<\xbfp\x83r\xe8\xf1\xb9\x93>\xc5\x12wC\xbe\"\x06 \x9e\xf0-\xf9\xcb\xf2\xf6\xe8\x80\xd38/\x00', r4, &(0x7f00000000c0)='./file0\x00') mkdirat(r4, &(0x7f0000000200)='\x13\x13w\xc5\xfc5\xd4\x14T\xd5\xd4\x1d)\xad\x1a`)Y\x81F\xe6\xbe\x16nA\xad\r\xbd@T\x03<\x9f3\xbb\xda\x82$\xa2\xf3\xd7r\xe7cnH\xb3<\xbfp\x83r\xe8\xf1\xb9\x93>\xc5\x12wC\xbe\"\x06 \x9e\xf0-\xf9\xcb\xf2\xf6\xe8\x80\xd38/\x00', 0x0) symlinkat(&(0x7f0000000340)='./file0/file0\x00', r4, &(0x7f0000000380)='\x13\x13w\xc5\xfc5\xd4\x14T\xd5\xd4\x1d)\xad\x1a`)Y\x81F\xe6\xbe\x16nA\xad\r\xbd@T\x03<\x9f3\xbb\xda\x82$\xa2\xf3\xd7r\xe7cnH\xb3<\xbfp\x83r\xe8\xf1\xb9\x93>\xc5\x12wC\xbe\"\x06 \x9e\xf0-\xf9\xcb\xf2\xf6\xe8\x80\xd38//file0\x00') r5 = syz_mount_image$tmpfs(&(0x7f0000000700)='tmpfs\x00', &(0x7f0000000740)='\x13\x13w\xc5\xfc5\xd4\x14T\xd5\xd4\x1d)\xad\x1a`)Y\x81F\xe6\xbe\x16nA\xad\r\xbd@T\x03<\x9f3\xbb\xda\x82$\xa2\xf3\xd7r\xe7cnH\xb3<\xbfp\x83r\xe8\xf1\xb9\x93>\xc5\x12wC\xbe\"\x06 \x9e\xf0-\xf9\xcb\xf2\xf6\xe8\x80\xd38/\x00', 0x6, 0x2, &(0x7f0000000880)=[{&(0x7f00000007c0)="c6dfaaa461f90b1ce02e0312356cdce1ea0d3a94b577a05570e71762340ed5c2a1e5c04cecefd3484c66f6a773b4a7333eff1df6b50c24c6e28d90a256fb13447a3bb60c1b33f25362730443c940b3b33700043ef66cd21b8a198191ebd63e3f5b0f846f1e14b6d9", 0x68}, {&(0x7f0000000840)="2a68ecb9697e8741c0ad60cf00f414a378124c7eba1ed286", 0x18, 0x9}], 0x80084, &(0x7f0000000ac0)={[{@nr_inodes={'nr_inodes', 0x3d, [0x78, 0x39, 0x36, 0x35]}}, {@mode={'mode', 0x3d, 0x7ff}}, {@nr_blocks={'nr_blocks', 0x3d, [0x39]}}, {@huge_never='huge=never'}, {@gid={'gid', 0x3d, r3}}], [{@context={'context', 0x3d, 'system_u'}}, {@defcontext={'defcontext', 0x3d, 'user_u'}}, {@obj_type={'obj_type', 0x3d, '+-/%\x19'}}, {@fsname={'fsname', 0x3d, '[^'}}, {@appraise='appraise'}, {@measure='measure'}, {@dont_measure='dont_measure'}, {@subj_role={'subj_role', 0x3d, '\'!'}}, {@fsuuid={'fsuuid', 0x3d, {[0x36, 0x38, 0x38, 0x63, 0x33, 0x36, 0x63, 0x38], 0x2d, [0x34, 0x2, 0x0, 0x64], 0x2d, [0x61, 0x36, 0x64, 0x35], 0x2d, [0x63, 0x63, 0x39, 0x34], 0x2d, [0x61, 0x57, 0x61, 0x33, 0x34, 0x66, 0x33, 0x65]}}}, {@obj_user={'obj_user', 0x3d, '#@\x88\xee(.^,\''}}]}) readlinkat(r5, &(0x7f00000009c0)='\x13\x13w\xc5\xfc5\xd4\x14T\xd5\xd4\x1d)\xad\x1a`)Y\x81F\xe6\xbe\x16nA\xad\r\xbd@T\x03<\x9f3\xbb\xda\x82$\xa2\xf3\xd7r\xe7cnH\xb3<\xbfp\x83r\xe8\xf1\xb9\x93>\xc5\x12wC\xbe\"\x06 \x9e\xf0-\xf9\xcb\xf2\xf6\xe8\x80\xd38//file0\x00', &(0x7f0000000a40)=""/65, 0x41) r6 = open(&(0x7f0000000100)='.\x00', 0x0, 0x0) renameat2(r6, &(0x7f0000000400)='./file0/file0\x00', r6, &(0x7f0000000000)='./file0\x00', 0x0) [ 262.035419][T18142] R10: 0000000000000000 R11: 0000000000000206 R12: 0000000020000000 [ 262.043368][T18142] R13: 0000000020000100 R14: 00007f8175efa000 R15: 0000000020000040 21:38:42 executing program 1: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) r3 = syz_open_procfs(0x0, &(0x7f00000000c0)='fd/3\x00') mount$9p_fd(0x0, &(0x7f0000000300)='.\x00', &(0x7f0000000080)='9p\x00', 0xedc000000000, &(0x7f00000003c0)={'trans=fd,', {'rfdno', 0x3d, r3}, 0x2c, {'wfdno', 0x3d, r2}}) 21:38:42 executing program 4: set_mempolicy(0x8003, &(0x7f0000000300)=0x75f, 0x9) open(&(0x7f0000000300)='.\x00', 0x0, 0x0) r0 = syz_open_procfs(0x0, &(0x7f00000000c0)='fd/3\x00') r1 = syz_open_dev$swradio(&(0x7f0000000100)='/dev/swradio#\x00', 0x0, 0x2) mount$9p_fd(0x0, &(0x7f0000000300)='.\x00', &(0x7f0000000080)='9p\x00', 0xffff000000000000, &(0x7f0000000740)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}}) 21:38:42 executing program 3: set_mempolicy(0x8003, &(0x7f0000000300)=0x75f, 0x9) open(&(0x7f0000000300)='.\x00', 0x0, 0x0) r0 = syz_open_procfs(0x0, &(0x7f00000000c0)='fd/3\x00') r1 = syz_open_dev$swradio(&(0x7f0000000100)='/dev/swradio#\x00', 0x0, 0x2) mount$9p_fd(0x0, &(0x7f0000000300)='.\x00', &(0x7f0000000080)='9p\x00', 0x0, &(0x7f0000000740)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}, 0x2c, {[], [], 0x10}}) 21:38:42 executing program 5: r0 = bpf$PROG_LOAD(0x5, &(0x7f0000000080)={0x3, 0x8, &(0x7f0000000cc0)=ANY=[@ANYBLOB="620af8ff0c200021bfa100000000000007010000f8ffffffb702000003000000bd120000000000008500000006000000b70000000000000095000000000000003faf4f2aa3d9b18ed812a2e2c49e8020a6f4e0e4a9446ca2b5f1cc1a100a9af698393aa0f3881f9c24aa56f15199fad0093c59d66b5ece9f36c70d0f13905ea23c22624c9f87f9793f50bb546040677b0c5077da80fb982c1e9400e693146cea484a415b76966118b64f751a0f241b072e90080008002d75593a286cecc93e64c227c95aa0b784625704f07a72c2918451ebdcf4cef809606056fe5c34664c0af9360a1f7a5e6b607130c89f18c0c1089d8b8588d72ec29c48b45ef4adf634be763289d01aa27ae8b09e00e79ab20b0b8ed8fb7a68af2ad0000000000000006f803c6468972089b302d7bf6023cdcedb5e0125ebbcebdde510cb2364149215108333719acd97cfa107d40224edc5465a932b77e74e802a0d42bc6099ad2300000080006ef6c1060900000000000010c6394ffa82b8e942c89112f40cfd7c3a1d37a6ab87b1586602d985430cea0162ab3fcf4591c926abfb076719237c8d0e60b0eea24492a660583eecdbf5bcd3de3a83209da17a0faf60fd6ad9b97aa5fa68480366c9c6fd6fa5043aa3926b81e3b59c9b081d6a08000000ea2b1a52496dfcaf99431412fd134a996382a1a04d5bb924cfe5f3185418d60532af9c4d2ec7c32f2095e63c80aff9fa740b5b7632f32230916f89c6dad7603f2ba2a790d62d6faec2fed44da4928b30142ba11de6c5d50b83bae616b5054d1e7c13b1355d6f4a8245ffa4997da9c77af4c0eb97fca585ec6bf58351d564beb61e8caab9c70764b0a8a7583c90b3433b809bdb9fbd48bc873495cbff8a326eea31ae4e0f7505ebf6c9d13330ca006bce1a84521f14518c9b476fccbd6c712016219848624b87cec2dbe98223a0eb4fa39f6b5c02e6d6d90756ff57902a8f57000000009700cf0b4b8bc2294133000000000000000000030000000000000000000000000010008bc0d9559711e6e8861c46495ba585a4b2d02edc3e28dd271c896249ed85b980680b6c4a000000002b435ac15fc0288d9b2a169cdcacc413b48dafb7a2c8cb482bac0ac502d9ba96ffffff7f00000000df73be83bb7d5ad897ef3b7cda42013d53046da21b40216e14ba2d6af8656bfff17addaedab25b30002abbba7fa725f38400be7c1f001b2cd317902f19e385be9e48dccff729433282830689da6b53b2633398631c7771429d120000003341bf4a00fcffffffffffffffe09fec2271fe01589646efd1cf870cd7bb2366fde4a59429738fcc917a57f94f6c453cea793cc5ee0c2a5ff870ce5dfd3467decb05cfd9fcb32c8ed1dbd9d10a64c108285e71b5565b1768ee58969c41595212fe29df17bcad70fb4021428ce970275d5bc8955778567bc79e13b78249788f11f761038b75d4fe32b561d46ea3abe0fa4d30dc94ef241875f3b4b6ab7929a57affe7d7fa29822aea68a660e717a04becff0f719197724f4fce1093b62d7e8c7123d8ecbbc55bf404e4e1f74b7eed82571be54c72d978cf906df0042e36acd37d7f9e119f2c06f815312e0cfe222a06f56dd022c074eb8a322fb0bf47c0a8d154b405c37feaf3dd95f6ef2acd1fe582786105c7df8be5877050c91301bb997316dbf17866fb84d4173731efe895ff2e1c5560926e90109b598502d3e959efc71f665c4d75cf2458e3542c9062ece84c99a061887a20639b41c8c12ee86c50804042b3eac1f879b136345cf67ca3fb5aac518a75f9e7d7101d5e186c489b3a06fb99e0aa7f23a054de2f4d92d6bd72ee2c9fdc75aaaf1e3e483b4ad05573af403269b4a39ce402939444018971cbf3583784acbda216550d7aec6b79e30cbd128f54c2d3335457acf37331766e472391e358c3b377327ac9ecc34f24c9ae153ec60ac0694da85bff9f5f4df9b3e90e5c708ce65cd6b2c5ea1393fdf24285bf16b99c9cc0ad1857216f1a985f369191ae954febb3df464bfe0f7f3ee9afe7befb89d2777399f5874c553aeb3729cffe86e66964ae09bb6d163118e4cbe024fd452277c3887d6116c6cc9d8046c216c1f895778cb26e22a2a998de44aeadea2a40da8daccf080842a486721737390cbf3a74cb2003016f1514216bdf57d2a40d40b51ab63e96ec8485b3b8a8c9ae3d14f93100c2e0893862eef552fcde2981f48c482bde6e4a4304e50c349f4f9ecee27defc93871c5f99b355b72d538ba4958ea8e4aa37094191e10096e7e60fc3541a2c905a1a95e9571bf38ae1981c4238ecaee6f75cd0a6881bd1517a8107c7a69163db660250df98674152f94e32409e2a3bce109b6000000000000000000d6d5210d7560eb92d6a97a27602b81f7636df1535bef1497f92186086e29c6bc5a1fad6ec9a31137abf9a404abde7750898b1bd627e87306703be8672d70d1ab57075228a9f46ed9bd1f08fb8191bbab2dc51de3a61f0868afc4294859323e7a45319f18101288a0268893373750d1a8fe64680b0a3fc22dd704e4214de5946912d6c98cd1a9fbe1e7d58c08acaf30235b928a31d2eca55f74a23641f61f2d5b308cf0d031b0c7f0ced69993e9960ff5f76015e600263d9756237badf4e7965bbe2777e808fcba821aa8e8c5c39609ff854356cb4900000000000000000000000000c1fee30a3f7a85d1b29e58c77685efc0ceb1c8e5729c66418d169fc03aa188546b3ad2a182068e1e3a0e2505bc7f41019645466ac96e0d4b3bc19faa5449209b085f3c334b47f067bbab40743b2a428f1da1f68df75cf43f8ecc8d3726602111b40e761fd21081920382f14d12ca3c3431ee97471c7868c6da7eaa69eb7f7f8040c6fa31bb1d0d1280fbc22bf73468"], &(0x7f0000000100)='GPL\x00'}, 0x48) bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000040)={r0, 0x0, 0xe, 0x300, &(0x7f0000000140)="e3d0e9d6d9d18e5f39868de363d3", 0x0, 0x19d, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x40) ioctl$BTRFS_IOC_QUOTA_RESCAN_STATUS(r0, 0x8040942d, &(0x7f0000000240)) set_mempolicy(0x8003, &(0x7f0000000300)=0x75f, 0x9) open(&(0x7f0000000300)='.\x00', 0x0, 0x0) set_mempolicy(0x8003, &(0x7f0000000000)=0xffffffffffffffff, 0x8000) set_mempolicy(0x0, &(0x7f0000000040)=0x670, 0x7) r1 = syz_open_procfs(0x0, &(0x7f00000000c0)='fd/3\x00') r2 = syz_open_dev$swradio(&(0x7f0000000100)='/dev/swradio#\x00', 0x0, 0x2) mount$9p_fd(0x0, &(0x7f0000000300)='.\x00', &(0x7f0000000080)='9p\x00', 0x0, &(0x7f0000000340)=ANY=[@ANYBLOB="747261c0cd4cc0e62103c48324654d6e733d66642c7266cbef6f3d7825cafdf6a878d02997e239a395a9e63c65616ece183b6a33b6ffc264795c49018accbc069b7e106d4f2684b1dabbbe13e975799c8f201eba762cfe57af0a3bc1d9052986d52b214ff7fa8fc0c2a98844309559431b8d9cbeacf8398bff96d23c6437988d192e0211192c61d29b9e976697295eda37f14152ce0ab2734ea543f12e2e2e336f1b93c392ef82dfef38a1ce242ebaf1f3a1b0852eeb3e8a7e7e7d", @ANYRESHEX=r1, @ANYBLOB=',wfdno=', @ANYRESHEX=r2, @ANYBLOB="2c005a30c6bb5f4966d690bb9f49"]) r3 = syz_open_procfs(0x0, &(0x7f00000000c0)='fd/3\x00') r4 = syz_open_dev$swradio(&(0x7f0000000100)='/dev/swradio#\x00', 0x0, 0x2) mount$9p_fd(0x0, &(0x7f0000000300)='.\x00', &(0x7f0000000080)='9p\x00', 0x0, &(0x7f0000000740)={'trans=fd,', {'rfdno', 0x3d, r3}, 0x2c, {'wfdno', 0x3d, r4}}) setsockopt$TIPC_GROUP_JOIN(r3, 0x10f, 0x87, &(0x7f0000000180)={0x43}, 0x10) 21:38:42 executing program 2: set_mempolicy(0x8003, &(0x7f0000000300)=0x75f, 0x9) r0 = open(&(0x7f0000000300)='.\x00', 0x0, 0x0) keyctl$invalidate(0x15, 0x0) r1 = request_key(&(0x7f0000000980)='keyring\x00', &(0x7f00000009c0)={'syz', 0x0}, 0x0, 0x0) keyctl$invalidate(0x15, r1) keyctl$dh_compute(0x17, &(0x7f0000000700)={0x0, 0x0, r1}, &(0x7f0000001900)=""/230, 0xe6, &(0x7f0000001b00)={&(0x7f0000001a00)={'sha224-ni\x00'}, &(0x7f0000001a40)="13d77727086a1ad273073495c24d53b4b002a4dd8eb7cdc76eddaf0bb5d649d2dc03da623850a2147f512bcc9caa7f797c8d9d209b777e0ea359d8101ebfdb807ff4a5d3a9b8ba4c9d257f161ce24b9acb7cd7b45386dd888e8174c5841e62a75daf307e34b8be7830fbbd0eb6c6f8fc5647da898cf66ee771a1d68e184e93bddc34d31cf7feadde870166feabce", 0x8e}) symlinkat(&(0x7f0000000040)='\x13\x13w\xc5\xfc5\xd4\x14T\xd5\xd4\x1d)\xad\x1a`)Y\x81F\xe6\xbe\x16nA\xad\r\xbd@T\x03<\x9f3\xbb\xda\x82$\xa2\xf3\xd7r\xe7cnH\xb3<\xbfp\x83r\xe8\xf1\xb9\x93>\xc5\x12wC\xbe\"\x06 \x9e\xf0-\xf9\xcb\xf2\xf6\xe8\x80\xd38/\x00', r0, &(0x7f00000000c0)='./file0\x00') mkdirat(r0, &(0x7f0000000200)='\x13\x13w\xc5\xfc5\xd4\x14T\xd5\xd4\x1d)\xad\x1a`)Y\x81F\xe6\xbe\x16nA\xad\r\xbd@T\x03<\x9f3\xbb\xda\x82$\xa2\xf3\xd7r\xe7cnH\xb3<\xbfp\x83r\xe8\xf1\xb9\x93>\xc5\x12wC\xbe\"\x06 \x9e\xf0-\xf9\xcb\xf2\xf6\xe8\x80\xd38/\x00', 0x0) io_submit(0x0, 0x1, &(0x7f0000000280)=[&(0x7f00000001c0)={0x0, 0x0, 0x0, 0x0, 0x5, r0, &(0x7f0000000140)="3942994742426ba722b3c414fded967cae946f90f7aed8c31310f5b4a847e750d3ae9532708c17289700a5beae3de1f636461d015a1640ec3ed84983358e0ef219eb5b5e6c783e7d236e8fd784cea28fa060964e4206154f1af7d77f3d8b9a2fdc5cb40f5c2d1c0aa20865b1fdf2", 0x6e, 0x5, 0x0, 0x3}]) symlinkat(&(0x7f0000000340)='./file0/file0\x00', r0, &(0x7f0000000380)='\x13\x13w\xc5\xfc5\xd4\x14T\xd5\xd4\x1d)\xad\x1a`)Y\x81F\xe6\xbe\x16nA\xad\r\xbd@T\x03<\x9f3\xbb\xda\x82$\xa2\xf3\xd7r\xe7cnH\xb3<\xbfp\x83r\xe8\xf1\xb9\x93>\xc5\x12wC\xbe\"\x06 \x9e\xf0-\xf9\xcb\xf2\xf6\xe8\x80\xd38//file0\x00') r2 = open(&(0x7f0000000100)='.\x00', 0x0, 0x0) renameat2(r2, &(0x7f0000000400)='./file0/file0\x00', r2, &(0x7f0000000000)='./file0\x00', 0x0) r3 = syz_open_procfs(0x0, &(0x7f00000000c0)='fd/3\x00') r4 = syz_open_dev$swradio(&(0x7f0000000100)='/dev/swradio#\x00', 0x0, 0x2) mount$9p_fd(0x0, &(0x7f0000000300)='.\x00', &(0x7f0000000080)='9p\x00', 0x0, &(0x7f0000000740)={'trans=fd,', {'rfdno', 0x3d, r3}, 0x2c, {'wfdno', 0x3d, r4}}) r5 = socket$inet_udplite(0x2, 0x2, 0x88) getsockopt$sock_cred(r5, 0x1, 0x11, &(0x7f0000000240)={0x0, 0x0}, &(0x7f0000000280)=0x5) setuid(r6) syz_mount_image$btrfs(&(0x7f0000000440)='btrfs\x00', &(0x7f0000000480)='./file0/file0\x00', 0x100000000, 0x5, &(0x7f0000001780)=[{&(0x7f00000004c0)="25d01c13b3", 0x5, 0x3ff}, {&(0x7f0000000500)="066e7202a7bd65d9a8522cdd652e55297dcf4616a38b7ff1bae0e37934858e25fa5affa41d4e62b159baa9a3fd919febb9c6c77358887019f0e0c42702f0ab59ccc861b49bcb2ce273eb34a7a8e28418ca3bfff26036067c625a8ca001a029", 0x5f, 0x5}, {&(0x7f0000000580)="03dcf308ac27111f21596c00d85a50434b1a928ada9f7888a7ba313689d6a09df9b373be30fa9d56bd4f4b3e8266c48a48d2aef6408c5ca73612c135fefdb1ed11a300257e214a9035be63e210ee7a0161b70525ac00cff2f752e6cd2918465c6237a7046e842a2e8c8bf4833e3d2c4576bf72664da72aa417d67e16c31ebaedc7e0cf7521d769a10f0332d639c33272ac09a77b26362a6f81a513ba811aa44406591458da5d0c", 0xa7, 0x8}, {&(0x7f0000000640)="96defbcfbc70851be6815454003d0385d01cc2eb91df6a7bf3788dd30d605578bfc6f20ebe85772e834697fb2737c63b1668a93fc583ea92258c43f84a46a6441ce4e8aa55189e877c9cd5722570ff2387f5b94f01b95f3d519e1b393f0434677338d55161584f9e8ab2d035eb251296ef04dd2db06c4d061a91b3685b6db5803c226305b755468b6ad8cfba34b816b6380e5623a3e6c6dd8db99de005c2dd98e544f9", 0xa3, 0x7}, {&(0x7f0000000780)="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", 0x1000, 0x4}], 0x921408, &(0x7f0000001800)={[{@ssd='ssd'}, {@ssd='ssd'}, {@compress_force_algo={'compress-force', 0x3d, 'zstd'}}, {@skip_balance='skip_balance'}, {@usebackuproot='usebackuproot'}, {@check_int_data='check_int_data'}, {@ref_verify='ref_verify'}, {@fragment_metadata='fragment=metadata'}, {@clear_cache='clear_cache'}], [{@dont_measure='dont_measure'}, {@obj_role={'obj_role', 0x3d, '.log\x00'}}, {@permit_directio='permit_directio'}, {@func={'func', 0x3d, 'KEXEC_INITRAMFS_CHECK'}}, {@fowner_lt={'fowner<', r6}}, {@pcr={'pcr', 0x3d, 0x12}}]}) openat$incfs(r3, &(0x7f00000002c0)='.log\x00', 0x400800, 0x66) [ 262.347898][T18196] 9pnet: Insufficient options for proto=fd [ 262.404207][T18216] 9pnet: Insufficient options for proto=fd [ 262.439454][T18217] loop2: detected capacity change from 264192 to 0 [ 262.458017][T18142] EXT4-fs (loop0): ext4_check_descriptors: Checksum for group 0 failed (38247!=0) [ 262.468451][T18142] EXT4-fs (loop0): group descriptors corrupted! 21:38:42 executing program 0: syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x40000, 0x3, &(0x7f0000000200)=[{&(0x7f0000010000)="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", 0x10c, 0x400}, {&(0x7f0000010200)="0500000000000000000000000000000000000000040100002b", 0x19, 0x560}, {&(0x7f0000010300)="000000000000000000000000000000000000000000000000000000001481910a040000001400000024", 0x29, 0x7e0}], 0x0, &(0x7f0000000040)={[{@usrjquota='usrjquota='}, {@data_err_abort='data_err=abort'}]}) 21:38:42 executing program 4: set_mempolicy(0x8003, &(0x7f0000000300)=0x75f, 0x9) open(&(0x7f0000000300)='.\x00', 0x0, 0x0) r0 = syz_open_procfs(0x0, &(0x7f00000000c0)='fd/3\x00') r1 = syz_open_dev$swradio(&(0x7f0000000100)='/dev/swradio#\x00', 0x0, 0x2) mount$9p_fd(0x0, &(0x7f0000000300)='.\x00', &(0x7f0000000080)='9p\x00', 0xffffffff00000000, &(0x7f0000000740)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}}) 21:38:42 executing program 1: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) r3 = syz_open_procfs(0x0, &(0x7f00000000c0)='fd/3\x00') mount$9p_fd(0x0, &(0x7f0000000300)='.\x00', &(0x7f0000000080)='9p\x00', 0x1000000000000, &(0x7f00000003c0)={'trans=fd,', {'rfdno', 0x3d, r3}, 0x2c, {'wfdno', 0x3d, r2}}) 21:38:42 executing program 3: set_mempolicy(0x8003, &(0x7f0000000300)=0x75f, 0x9) open(&(0x7f0000000300)='.\x00', 0x0, 0x0) r0 = syz_open_procfs(0x0, &(0x7f00000000c0)='fd/3\x00') r1 = syz_open_dev$swradio(&(0x7f0000000100)='/dev/swradio#\x00', 0x0, 0x2) mount$9p_fd(0x0, &(0x7f0000000300)='.\x00', &(0x7f0000000080)='9p\x00', 0x0, &(0x7f0000000740)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}, 0x2c, {[], [], 0x11}}) 21:38:42 executing program 5: set_mempolicy(0x8003, &(0x7f0000000300)=0x75f, 0x9) open(&(0x7f0000000300)='.\x00', 0x0, 0x0) r0 = syz_open_procfs(0x0, &(0x7f0000000000)='net/igmp\x00') r1 = syz_open_dev$swradio(&(0x7f0000000100)='/dev/swradio#\x00', 0x0, 0x2) mount$9p_fd(0x0, &(0x7f0000000300)='.\x00', &(0x7f0000000080)='9p\x00', 0x0, &(0x7f0000000740)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}}) 21:38:42 executing program 2: set_mempolicy(0x8003, &(0x7f0000000300)=0x75f, 0x9) r0 = open(&(0x7f0000000300)='.\x00', 0x0, 0x0) symlinkat(&(0x7f0000000040)='\x13\x13w\xc5\xfc5\xd4\x14T\xd5\xd4\x1d)\xad\x1a`)Y\x81F\xe6\xbe\x16nA\xad\r\xbd@T\x03<\x9f3\xbb\xda\x82$\xa2\xf3\xd7r\xe7cnH\xb3<\xbfp\x83r\xe8\xf1\xb9\x93>\xc5\x12wC\xbe\"\x06 \x9e\xf0-\xf9\xcb\xf2\xf6\xe8\x80\xd38/\x00', r0, &(0x7f00000000c0)='./file0\x00') mkdirat(r0, &(0x7f0000000200)='\x13\x13w\xc5\xfc5\xd4\x14T\xd5\xd4\x1d)\xad\x1a`)Y\x81F\xe6\xbe\x16nA\xad\r\xbd@T\x03<\x9f3\xbb\xda\x82$\xa2\xf3\xd7r\xe7cnH\xb3<\xbfp\x83r\xe8\xf1\xb9\x93>\xc5\x12wC\xbe\"\x06 \x9e\xf0-\xf9\xcb\xf2\xf6\xe8\x80\xd38/\x00', 0x0) symlinkat(&(0x7f0000000340)='./file0/file0\x00', r0, &(0x7f0000000380)='\x13\x13w\xc5\xfc5\xd4\x14T\xd5\xd4\x1d)\xad\x1a`)Y\x81F\xe6\xbe\x16nA\xad\r\xbd@T\x03<\x9f3\xbb\xda\x82$\xa2\xf3\xd7r\xe7cnH\xb3<\xbfp\x83r\xe8\xf1\xb9\x93>\xc5\x12wC\xbe\"\x06 \x9e\xf0-\xf9\xcb\xf2\xf6\xe8\x80\xd38//file0\x00') r1 = open(&(0x7f0000000100)='.\x00', 0x4003, 0x83) renameat2(r1, &(0x7f0000000400)='./file0/file0\x00', r1, &(0x7f0000000000)='./file0\x00', 0x0) 21:38:42 executing program 2: socketpair(0x29, 0x80000, 0x5, &(0x7f0000000140)={0xffffffffffffffff, 0xffffffffffffffff}) setsockopt$inet_sctp_SCTP_DISABLE_FRAGMENTS(r0, 0x84, 0x8, &(0x7f0000000180)=0x7, 0x4) set_mempolicy(0x8003, &(0x7f0000000300)=0x75f, 0x9) socketpair(0x6, 0x4, 0x8, &(0x7f00000001c0)) r1 = open(&(0x7f0000000300)='.\x00', 0x0, 0x0) symlinkat(&(0x7f0000000040)='\x13\x13w\xc5\xfc5\xd4\x14T\xd5\xd4\x1d)\xad\x1a`)Y\x81F\xe6\xbe\x16nA\xad\r\xbd@T\x03<\x9f3\xbb\xda\x82$\xa2\xf3\xd7r\xe7cnH\xb3<\xbfp\x83r\xe8\xf1\xb9\x93>\xc5\x12wC\xbe\"\x06 \x9e\xf0-\xf9\xcb\xf2\xf6\xe8\x80\xd38/\x00', r1, &(0x7f00000000c0)='./file0\x00') mkdirat(r1, &(0x7f0000000200)='\x13\x13w\xc5\xfc5\xd4\x14T\xd5\xd4\x1d)\xad\x1a`)Y\x81F\xe6\xbe\x16nA\xad\r\xbd@T\x03<\x9f3\xbb\xda\x82$\xa2\xf3\xd7r\xe7cnH\xb3<\xbfp\x83r\xe8\xf1\xb9\x93>\xc5\x12wC\xbe\"\x06 \x9e\xf0-\xf9\xcb\xf2\xf6\xe8\x80\xd38/\x00', 0x0) symlinkat(&(0x7f0000000340)='./file0/file0\x00', r1, &(0x7f0000000380)='\x13\x13w\xc5\xfc5\xd4\x14T\xd5\xd4\x1d)\xad\x1a`)Y\x81F\xe6\xbe\x16nA\xad\r\xbd@T\x03<\x9f3\xbb\xda\x82$\xa2\xf3\xd7r\xe7cnH\xb3<\xbfp\x83r\xe8\xf1\xb9\x93>\xc5\x12wC\xbe\"\x06 \x9e\xf0-\xf9\xcb\xf2\xf6\xe8\x80\xd38//file0\x00') r2 = syz_open_procfs(0x0, &(0x7f00000000c0)='fd/3\x00') r3 = syz_open_dev$swradio(&(0x7f0000000100)='/dev/swradio#\x00', 0x0, 0x2) mount$9p_fd(0x0, &(0x7f0000000300)='.\x00', &(0x7f0000000080)='9p\x00', 0x0, &(0x7f0000000740)={'trans=fd,', {'rfdno', 0x3d, r2}, 0x2c, {'wfdno', 0x3d, r3}}) name_to_handle_at(r2, &(0x7f0000001b00)='\x13\x13w\xc5\xfc5\xd4\x14T\xd5\xd4\x1d)\xad\x1a`)Y\x81F\xe6\xbe\x16nA\xad\r\xbd@T\x03<\x9f3\xbb\xda\x82$\xa2\xf3\xd7r\xe7cnH\xb3<\xbfp\x83r\xe8\xf1\xb9\x93>\xc5\x12wC\xbe\"\x06 \x9e\xf0-\xf9\xcb\xf2\xf6\xe8\x80\xd38//file0\x00', &(0x7f0000001b80)={0x77, 0x6d, "34650f58fe4e71327ed4d41004b70d531b592b190d3bb2d6a972924095cc02a83370757f5c9ce5e4e32085ce8b9001635f2983a84284b3c2c9f8d843c1cfc2758780a90f22b29215110acd35e362e238a2040eaeb8bcfc8ee8352a2a3c9c3c7aeba678e1910ae4dd3ebff032db41f5"}, &(0x7f0000001c00), 0x0) r4 = pidfd_getfd(0xffffffffffffffff, r1, 0x0) readlinkat(r4, &(0x7f0000001a80)='./file0\x00', &(0x7f0000001ac0)=""/34, 0x22) sendmsg$kcm(r0, &(0x7f0000001a40)={&(0x7f0000000280)=@alg={0x26, 'hash\x00', 0x0, 0x0, 'xcbc-aes-neon\x00'}, 0x80, &(0x7f0000000580)=[{&(0x7f0000000440)="d938ef004339c829dfdd7304e2c4626e30", 0x11}, {&(0x7f0000000480)="22db57d83be7b3488cda880449dc9d9731a28bb3ef4eabc14b15c078ac7725958580964ea7e2a0d9171c17bdedc057f76f61f10d7a403adddb4c1416c1161b9f63f33205c52cfa1af9539b392c24d00abda916ebc5267f2e4681934573008287d58330594fa7364fa32b3fdbd5f7eed4468e191c9e8352f2bc4b8957062e4933e4b130b0fc778842654005601bffd52c676be1eb5524ee16be50665f4934978fabc97a857747b1bf7e84447e22e8e30c5be3ef7862", 0xb5}, {&(0x7f0000000540)="d11ddb56f2c593b7458b5cf7a35ac100d3de1f7ca0f144e70cb5d77b11858b45ddab528a5a3d87f5db8a6b46a606b7b9ec6e526585d1c7f5db9c742ed34b6c", 0x3f}], 0x3, &(0x7f00000005c0)=[{0x1010, 0x10e, 0x800, "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"}, {0xb0, 0x115, 0x5, "58f55e17b052ea8f914136afa7e81e87486b8bb69ed8958514e7c9a65d81cba454252b74307345ff781c04e41e1d47b5a8d1c7c0a3b6b7cdf3b49f15c32f3ba4703192c73ba6a80b2ace5b02933e61e15b63b6f02ee4d239e8fb7db1c6b438d71639f838a46f1f613286cc7f310125f74bcf897cd5167545c6f5c35c72bb9ca5af44fb8e70167e83601cc0bc7246b41ac3dd9a4c08cff4c338"}, {0xf8, 0x110, 0x7, "4aa6f5a49e5ad48da966db89d7032337a818056c21d9eaa6c9e175843fbb91e5c658dfc564ec971879b067236c0552be70e0dc85a118aa49b943138859ab17491852e1249cb8225a295b0df0ef7391b14ae8f7ec19de7d9f7b1bcdc35ec7a215eb7b376c4ab23c3d3dcd1690fc5281e346571ac41a40b17eb7dc92e8ac4bca12d2c64fd685974e6bd445fda1035dddd210b474c79c483c0ea750fb3bf6b68a141c9f106e73e984a4ad93dc58bcbf545e39674f43a7534f74bf9b8d414edcd50517b8fad830a4c789beedaf35d69d1c3be8ffbd0f1d0dea0506fa1eabc357797a2a47c4"}, {0x40, 0x10f, 0xfffffffc, "6f45a315767409d4e8c916a93c11d510381edb80434c3d56a40dca83c1d7f7048f19eade9fe32f715ff4e4993f"}, {0x38, 0x107, 0xffffff6b, "fb212939568cc3f6d140512561dd439d6873bdae3a86cfcc18dd4024d536b53d1b62be409e93504d"}, {0x98, 0x100, 0x0, "c1c19ff654194711de4223aae83ff6717aa3ba7d121d6259409bfdc96af7324b83a4518073d41f9d0429df8a80257e9d9f90511d2ae606274cbeb83c32a6cd27eb36d2577101bc736216703157e2d8e9d63c6c022f2af402671c4309f2e916a39276b0b21d6b0e8c51dfd5e889ff1ca8ba158ab9678ba4ef4e80ed176d6ee73fb95489fb"}, {0xe8, 0x105, 0xa7de619, "53951e3a1ee0ff918c9bfacea9cb95d2f181c037804abe829fd72fea5c550a1d6d39c6284cbf527d3538d356d47ebc99ed30fcc7bd59fd0016b53ddf26e6be368dce8e0586bbb20c4b0d24969ab7bdcee99a885166e8bfd4857e9dff10af27d77218211cd4e8d2045d05269a5af0aef2d8b1769af3297e98fb97e1bd74220d98c5c32efc314c7e001b0e51b1206cf5b95f4c62d876411fa58894e2e3a89a6ef0a9a43fe4b5fc23a54189d339689226f83c69664338e74be977da965c02da17daaa6409bbeab3607bf4eed0d2fea5ac35030f181b"}, {0x48, 0x3a, 0x4212, "9664c329506c1f876741dbae90676055cb3a52f4c6d3173c8242b3e4e1bcb167cdd845e023e106c548ba201e5e388adeaa"}, {0x78, 0x1, 0x1, "8623529246dff99ed08e66d5ef4cee86ea9659fa423edde047988321fdc2924483b492360a6be5c77b691a0e00bb43d94591828e0749b84c4a55986705f3bff0c8380dfc59e02b67dd5cc9a96d48b4a84cc0fde7aa36fc9c18340f5a0213f11d1cc8"}], 0x1470}, 0x85) r5 = open(&(0x7f0000000100)='.\x00', 0x20001, 0x0) renameat2(r5, &(0x7f0000000400)='./file0/file0\x00', r5, &(0x7f0000000000)='./file0\x00', 0x0) 21:38:42 executing program 4: set_mempolicy(0x8003, &(0x7f0000000300)=0x75f, 0x9) open(&(0x7f0000000300)='.\x00', 0x0, 0x0) r0 = syz_open_procfs(0x0, &(0x7f00000000c0)='fd/3\x00') r1 = syz_open_dev$swradio(&(0x7f0000000100)='/dev/swradio#\x00', 0x0, 0x2) mount$9p_fd(0x0, &(0x7f0000000300)='.\x00', &(0x7f0000000080)='9p\x00', 0xffffffffffffff0f, &(0x7f0000000740)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}}) [ 262.599920][T18232] loop0: detected capacity change from 512 to 0 [ 262.626621][T18232] EXT4-fs (loop0): ext4_check_descriptors: Checksum for group 0 failed (38247!=0) [ 262.637542][T18232] EXT4-fs (loop0): group descriptors corrupted! 21:38:42 executing program 5: set_mempolicy(0x8003, &(0x7f0000000300)=0xfffffffffffff3ab, 0x409) open(&(0x7f0000000300)='.\x00', 0x0, 0x0) r0 = syz_open_procfs(0x0, &(0x7f00000000c0)='fd/3\x00') r1 = syz_open_dev$swradio(&(0x7f0000000100)='/dev/swradio#\x00', 0x0, 0x2) mount$9p_fd(0x0, &(0x7f0000000300)='.\x00', &(0x7f0000000080)='9p\x00', 0x0, &(0x7f0000000740)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}}) 21:38:42 executing program 1: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) r3 = syz_open_procfs(0x0, &(0x7f00000000c0)='fd/3\x00') mount$9p_fd(0x0, &(0x7f0000000300)='.\x00', &(0x7f0000000080)='9p\x00', 0x4000000000000, &(0x7f00000003c0)={'trans=fd,', {'rfdno', 0x3d, r3}, 0x2c, {'wfdno', 0x3d, r2}}) 21:38:42 executing program 0: syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x124f8, 0x3, &(0x7f0000000200)=[{&(0x7f0000010000)="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", 0x10c, 0x400}, {&(0x7f0000010200)="0500000000000000000000000000000000000000040100002b", 0x19, 0x560}, {&(0x7f0000010300)="000000000000000000000000000000000000000000000000000000001481910a040000001400000024", 0x29, 0x7e0}], 0x0, &(0x7f0000000040)={[{@usrjquota='usrjquota='}, {@data_err_abort='data_err=abort'}]}) 21:38:42 executing program 3: set_mempolicy(0x8003, &(0x7f0000000300)=0x75f, 0x9) open(&(0x7f0000000300)='.\x00', 0x0, 0x0) r0 = syz_open_procfs(0x0, &(0x7f00000000c0)='fd/3\x00') r1 = syz_open_dev$swradio(&(0x7f0000000100)='/dev/swradio#\x00', 0x0, 0x2) mount$9p_fd(0x0, &(0x7f0000000300)='.\x00', &(0x7f0000000080)='9p\x00', 0x0, &(0x7f0000000740)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}, 0x2c, {[], [], 0x12}}) 21:38:42 executing program 4: set_mempolicy(0x8003, &(0x7f0000000300)=0x75f, 0x9) open(&(0x7f0000000300)='.\x00', 0x0, 0x0) r0 = syz_open_procfs(0x0, &(0x7f00000000c0)='fd/3\x00') r1 = syz_open_dev$swradio(&(0x7f0000000100)='/dev/swradio#\x00', 0x0, 0x2) mount$9p_fd(0x0, &(0x7f0000000300)='.\x00', &(0x7f0000000080)='9p\x00', 0x0, &(0x7f0000000740)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}}) 21:38:42 executing program 2: set_mempolicy(0x8003, &(0x7f0000000300)=0x75f, 0x9) r0 = open(&(0x7f0000000300)='.\x00', 0x0, 0x0) symlinkat(&(0x7f0000000040)='\x13\x13w\xc5\xfc5\xd4\x14T\xd5\xd4\x1d)\xad\x1a`)Y\x81F\xe6\xbe\x16nA\xad\r\xbd@T\x03<\x9f3\xbb\xda\x82$\xa2\xf3\xd7r\xe7cnH\xb3<\xbfp\x83r\xe8\xf1\xb9\x93>\xc5\x12wC\xbe\"\x06 \x9e\xf0-\xf9\xcb\xf2\xf6\xe8\x80\xd38/\x00', r0, &(0x7f00000000c0)='./file0\x00') mkdirat(r0, &(0x7f0000000200)='\x13\x13w\xc5\xfc5\xd4\x14T\xd5\xd4\x1d)\xad\x1a`)Y\x81F\xe6\xbe\x16nA\xad\r\xbd@T\x03<\x9f3\xbb\xda\x82$\xa2\xf3\xd7r\xe7cnH\xb3<\xbfp\x83r\xe8\xf1\xb9\x93>\xc5\x12wC\xbe\"\x06 \x9e\xf0-\xf9\xcb\xf2\xf6\xe8\x80\xd38/\x00', 0x0) symlinkat(&(0x7f0000000340)='./file0/file0\x00', r0, &(0x7f0000000380)='\x13\x13w\xc5\xfc5\xd4\x14T\xd5\xd4\x1d)\xad\x1a`)Y\x81F\xe6\xbe\x16nA\xad\r\xbd@T\x03<\x9f3\xbb\xda\x82$\xa2\xf3\xd7r\xe7cnH\xb3<\xbfp\x83r\xe8\xf1\xb9\x93>\xc5\x12wC\xbe\"\x06 \x9e\xf0-\xf9\xcb\xf2\xf6\xe8\x80\xd38//file0\x00') r1 = open(&(0x7f0000000100)='.\x00', 0x0, 0x0) mount$overlay(0x0, &(0x7f0000000180)='./file0/file0\x00', &(0x7f00000001c0)='overlay\x00', 0x80, &(0x7f0000000500)=ANY=[@ANYBLOB='metacopy=on,workdir=./file0,index=on,xino=off,xino=auto,defcontext=sysadm_u,seclabel,uid<', @ANYRESDEC=0xee00, @ANYBLOB="2c7375626a7f757365723d277d2cba73a19b01646bbe213e6175643d2c00001ecd000000000000000000000000757357caac77eb343f002b3938b991ef9d23254eb7804f3e"]) r2 = socket(0x2b, 0x4, 0x8) sendfile(r2, r1, &(0x7f0000000140)=0x7f, 0x1ff) renameat2(r1, &(0x7f0000000400)='./file0/file0\x00', r1, &(0x7f0000000000)='./file0\x00', 0x0) [ 262.796975][T18271] loop0: detected capacity change from 146 to 0 [ 262.821974][T18271] EXT4-fs (loop0): bad geometry: block count 256 exceeds size of device (73 blocks) 21:38:42 executing program 4: set_mempolicy(0x8003, &(0x7f0000000300)=0x75f, 0x9) open(&(0x7f0000000300)='.\x00', 0x0, 0x0) r0 = syz_open_procfs(0x0, &(0x7f00000000c0)='fd/3\x00') r1 = syz_open_dev$swradio(&(0x7f0000000100)='/dev/swradio#\x00', 0x0, 0x2) mount$9p_fd(0x0, &(0x7f0000000300)='.\x00', &(0x7f0000000080)='9p\x00', 0x0, &(0x7f0000000740)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}, 0x2c, {[], [], 0x2}}) 21:38:42 executing program 1: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) r3 = syz_open_procfs(0x0, &(0x7f00000000c0)='fd/3\x00') mount$9p_fd(0x0, &(0x7f0000000300)='.\x00', &(0x7f0000000080)='9p\x00', 0x40000000000000, &(0x7f00000003c0)={'trans=fd,', {'rfdno', 0x3d, r3}, 0x2c, {'wfdno', 0x3d, r2}}) 21:38:42 executing program 5: set_mempolicy(0x8003, &(0x7f0000000300)=0x75f, 0x9) open(&(0x7f0000000300)='.\x00', 0x0, 0x0) r0 = syz_open_procfs(0x0, &(0x7f00000000c0)='fd/3\x00') r1 = syz_open_dev$swradio(&(0x7f0000000100)='/dev/swradio#\x00', 0x0, 0x2) mount$9p_fd(0x0, &(0x7f0000000300)='.\x00', &(0x7f0000000080)='9p\x00', 0x0, &(0x7f0000000740)=ANY=[@ANYBLOB='trans=fd,rfdno=', @ANYRESHEX=r0, @ANYBLOB="1a6ef7116e6f3d", @ANYRESHEX=r1, @ANYBLOB=',\x00']) 21:38:42 executing program 3: set_mempolicy(0x8003, &(0x7f0000000300)=0x75f, 0x9) open(&(0x7f0000000300)='.\x00', 0x0, 0x0) r0 = syz_open_procfs(0x0, &(0x7f00000000c0)='fd/3\x00') r1 = syz_open_dev$swradio(&(0x7f0000000100)='/dev/swradio#\x00', 0x0, 0x2) mount$9p_fd(0x0, &(0x7f0000000300)='.\x00', &(0x7f0000000080)='9p\x00', 0x0, &(0x7f0000000740)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}, 0x2c, {[], [], 0x25}}) [ 262.901693][T18271] loop0: detected capacity change from 146 to 0 [ 262.927864][T18271] EXT4-fs (loop0): bad geometry: block count 256 exceeds size of device (73 blocks) 21:38:42 executing program 2: set_mempolicy(0x8003, &(0x7f0000000300)=0x75f, 0x9) r0 = open(&(0x7f0000000300)='.\x00', 0x0, 0x0) symlinkat(&(0x7f0000000040)='\x13\x13w\xc5\xfc5\xd4\x14T\xd5\xd4\x1d)\xad\x1a`)Y\x81F\xe6\xbe\x16nA\xad\r\xbd@T\x03<\x9f3\xbb\xda\x82$\xa2\xf3\xd7r\xe7cnH\xb3<\xbfp\x83r\xe8\xf1\xb9\x93>\xc5\x12wC\xbe\"\x06 \x9e\xf0-\xf9\xcb\xf2\xf6\xe8\x80\xd38/\x00', r0, &(0x7f00000000c0)='./file0\x00') mkdirat(r0, &(0x7f0000000200)='\x13\x13w\xc5\xfc5\xd4\x14T\xd5\xd4\x1d)\xad\x1a`)Y\x81F\xe6\xbe\x16nA\xad\r\xbd@T\x03<\x9f3\xbb\xda\x82$\xa2\xf3\xd7r\xe7cnH\xb3<\xbfp\x83r\xe8\xf1\xb9\x93>\xc5\x12wC\xbe\"\x06 \x9e\xf0-\xf9\xcb\xf2\xf6\xe8\x80\xd38/\x00', 0x0) symlinkat(&(0x7f0000000340)='./file0/file0\x00', r0, &(0x7f0000000380)='\x13\x13w\xc5\xfc5\xd4\x14T\xd5\xd4\x1d)\xad\x1a`)Y\x81F\xe6\xbe\x16nA\xad\r\xbd@T\x03<\x9f3\xbb\xda\x82$\xa2\xf3\xd7r\xe7cnH\xb3<\xbfp\x83r\xe8\xf1\xb9\x93>\xc5\x12wC\xbe\"\x06 \x9e\xf0-\xf9\xcb\xf2\xf6\xe8\x80\xd38//file0\x00') r1 = open(&(0x7f0000000100)='.\x00', 0x0, 0x0) renameat2(r1, &(0x7f0000000400)='./file0/file0\x00', r1, &(0x7f0000000000)='./file0\x00', 0x0) r2 = syz_open_procfs(0x0, &(0x7f00000000c0)='fd/3\x00') r3 = syz_open_dev$swradio(&(0x7f0000000100)='/dev/swradio#\x00', 0x0, 0x2) mount$9p_fd(0x0, &(0x7f0000000300)='.\x00', &(0x7f0000000080)='9p\x00', 0x0, &(0x7f0000000740)={'trans=fd,', {'rfdno', 0x3d, r2}, 0x2c, {'wfdno', 0x3d, r3}}) connect(r2, &(0x7f0000000140)=@hci={0x1f, 0x2}, 0x80) [ 262.958581][T18304] 9pnet: Insufficient options for proto=fd 21:38:43 executing program 0: syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x124f9, 0x3, &(0x7f0000000200)=[{&(0x7f0000010000)="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", 0x10c, 0x400}, {&(0x7f0000010200)="0500000000000000000000000000000000000000040100002b", 0x19, 0x560}, {&(0x7f0000010300)="000000000000000000000000000000000000000000000000000000001481910a040000001400000024", 0x29, 0x7e0}], 0x0, &(0x7f0000000040)={[{@usrjquota='usrjquota='}, {@data_err_abort='data_err=abort'}]}) 21:38:43 executing program 1: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) r3 = syz_open_procfs(0x0, &(0x7f00000000c0)='fd/3\x00') mount$9p_fd(0x0, &(0x7f0000000300)='.\x00', &(0x7f0000000080)='9p\x00', 0xfeffff00000000, &(0x7f00000003c0)={'trans=fd,', {'rfdno', 0x3d, r3}, 0x2c, {'wfdno', 0x3d, r2}}) [ 263.016670][T18316] 9pnet: Insufficient options for proto=fd 21:38:43 executing program 4: set_mempolicy(0x8003, &(0x7f0000000300)=0x75f, 0x9) open(&(0x7f0000000300)='.\x00', 0x0, 0x0) r0 = syz_open_procfs(0x0, &(0x7f00000000c0)='fd/3\x00') r1 = syz_open_dev$swradio(&(0x7f0000000100)='/dev/swradio#\x00', 0x0, 0x2) mount$9p_fd(0x0, &(0x7f0000000300)='.\x00', &(0x7f0000000080)='9p\x00', 0x0, &(0x7f0000000740)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}, 0x2c, {[], [], 0x3}}) [ 263.096444][T18320] vivid-004: kernel_thread() failed 21:38:43 executing program 5: set_mempolicy(0x8003, &(0x7f0000000300)=0x75f, 0x9) r0 = open(&(0x7f0000000300)='.\x00', 0x0, 0x0) r1 = syz_open_procfs(0x0, &(0x7f00000000c0)='fd/3\x00') r2 = syz_open_dev$swradio(&(0x7f0000000100)='/dev/swradio#\x00', 0x0, 0x2) mount$9p_fd(0x0, &(0x7f0000000300)='.\x00', &(0x7f0000000080)='9p\x00', 0x0, &(0x7f0000000740)={'trans=fd,', {'rfdno', 0x3d, r1}, 0x2c, {'wfdno', 0x3d, r2}}) r3 = bpf$PROG_LOAD(0x5, &(0x7f0000000080)={0x3, 0x8, &(0x7f0000000cc0)=ANY=[@ANYBLOB="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"], &(0x7f0000000100)='GPL\x00'}, 0x48) bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000040)={r3, 0x0, 0xe, 0x300, &(0x7f0000000140)="e3d0e9d6d9d18e5f39868de363d3", 0x0, 0x19d, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x40) mount$9p_fd(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000000040)='9p\x00', 0x2448, &(0x7f0000000140)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r3}, 0x2c, {[{@noextend='noextend'}, {@loose='loose'}, {@posixacl='posixacl'}, {@privport='privport'}, {@nodevmap='nodevmap'}], [{@subj_type={'subj_type', 0x3d, '.@/#,'}}, {@dont_appraise='dont_appraise'}, {@uid_gt={'uid>', 0xee01}}, {@dont_appraise='dont_appraise'}]}}) 21:38:43 executing program 3: set_mempolicy(0x8003, &(0x7f0000000300)=0x75f, 0x9) open(&(0x7f0000000300)='.\x00', 0x0, 0x0) r0 = syz_open_procfs(0x0, &(0x7f00000000c0)='fd/3\x00') r1 = syz_open_dev$swradio(&(0x7f0000000100)='/dev/swradio#\x00', 0x0, 0x2) mount$9p_fd(0x0, &(0x7f0000000300)='.\x00', &(0x7f0000000080)='9p\x00', 0x0, &(0x7f0000000740)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}, 0x2c, {[], [], 0x5c}}) 21:38:43 executing program 2: set_mempolicy(0x8003, &(0x7f0000000300)=0x75f, 0x9) set_mempolicy(0x3, &(0x7f0000000140)=0x9, 0x7fffffff) r0 = open(&(0x7f0000000300)='.\x00', 0x0, 0x0) symlinkat(&(0x7f0000000040)='\x13\x13w\xc5\xfc5\xd4\x14T\xd5\xd4\x1d)\xad\x1a`)Y\x81F\xe6\xbe\x16nA\xad\r\xbd@T\x03<\x9f3\xbb\xda\x82$\xa2\xf3\xd7r\xe7cnH\xb3<\xbfp\x83r\xe8\xf1\xb9\x93>\xc5\x12wC\xbe\"\x06 \x9e\xf0-\xf9\xcb\xf2\xf6\xe8\x80\xd38/\x00', r0, &(0x7f00000000c0)='./file0\x00') add_key$keyring(&(0x7f00000001c0)='keyring\x00', &(0x7f0000000280)={'syz', 0x1}, 0x0, 0x0, 0xffffffffffffffff) mkdirat(r0, &(0x7f0000000200)='\x13\x13w\xc5\xfc5\xd4\x14T\xd5\xd4\x1d)\xad\x1a`)Y\x81F\xe6\xbe\x16nA\xad\r\xbd@T\x03<\x9f3\xbb\xda\x82$\xa2\xf3\xd7r\xe7cnH\xb3<\xbfp\x83r\xe8\xf1\xb9\x93>\xc5\x12wC\xbe\"\x06 \x9e\xf0-\xf9\xcb\xf2\xf6\xe8\x80\xd38/\x00', 0x0) symlinkat(&(0x7f0000000340)='./file0/file0\x00', r0, &(0x7f0000000380)='\x13\x13w\xc5\xfc5\xd4\x14T\xd5\xd4\x1d)\xad\x1a`)Y\x81F\xe6\xbe\x16nA\xad\r\xbd@T\x03<\x9f3\xbb\xda\x82$\xa2\xf3\xd7r\xe7cnH\xb3<\xbfp\x83r\xe8\xf1\xb9\x93>\xc5\x12wC\xbe\"\x06 \x9e\xf0-\xf9\xcb\xf2\xf6\xe8\x80\xd38//file0\x00') set_mempolicy(0x4000, &(0x7f0000000180)=0x4, 0x8) set_mempolicy(0x0, &(0x7f00000002c0)=0xfffffffffffff000, 0x7ff) r1 = open(&(0x7f0000000100)='.\x00', 0x0, 0x0) renameat2(r1, &(0x7f0000000400)='./file0/file0\x00', r1, &(0x7f0000000000)='./file0\x00', 0x0) [ 263.170315][T18337] loop0: detected capacity change from 146 to 0 [ 263.195539][T18337] EXT4-fs (loop0): bad geometry: block count 256 exceeds size of device (73 blocks) 21:38:43 executing program 4: set_mempolicy(0x8003, &(0x7f0000000300)=0x75f, 0x9) open(&(0x7f0000000300)='.\x00', 0x0, 0x0) r0 = syz_open_procfs(0x0, &(0x7f00000000c0)='fd/3\x00') r1 = syz_open_dev$swradio(&(0x7f0000000100)='/dev/swradio#\x00', 0x0, 0x2) mount$9p_fd(0x0, &(0x7f0000000300)='.\x00', &(0x7f0000000080)='9p\x00', 0x0, &(0x7f0000000740)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}, 0x2c, {[], [], 0x4}}) 21:38:43 executing program 3: set_mempolicy(0x8003, &(0x7f0000000300)=0x75f, 0x9) open(&(0x7f0000000300)='.\x00', 0x0, 0x0) r0 = syz_open_procfs(0x0, &(0x7f00000000c0)='fd/3\x00') set_mempolicy(0x2, &(0x7f0000000000)=0x3, 0x8) r1 = syz_open_dev$swradio(&(0x7f0000000100)='/dev/swradio#\x00', 0x0, 0x2) mount$9p_fd(0x0, &(0x7f0000000300)='.\x00', &(0x7f0000000080)='9p\x00', 0x0, &(0x7f0000000740)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}}) 21:38:43 executing program 1: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) r3 = syz_open_procfs(0x0, &(0x7f00000000c0)='fd/3\x00') mount$9p_fd(0x0, &(0x7f0000000300)='.\x00', &(0x7f0000000080)='9p\x00', 0x100000000000000, &(0x7f00000003c0)={'trans=fd,', {'rfdno', 0x3d, r3}, 0x2c, {'wfdno', 0x3d, r2}}) [ 263.276213][T18337] loop0: detected capacity change from 146 to 0 [ 263.295377][T18337] EXT4-fs (loop0): bad geometry: block count 256 exceeds size of device (73 blocks) 21:38:43 executing program 5: set_mempolicy(0x8003, &(0x7f0000000300)=0x75f, 0x9) r0 = bpf$BPF_MAP_GET_FD_BY_ID(0xe, &(0x7f0000000480)={0xffffffffffffffff, 0xe4, 0x18}, 0xc) bpf$MAP_CREATE(0x0, &(0x7f0000000340)={0x1c, 0x2, 0x1, 0x103, 0xa00, r0, 0x23e, [], 0x0, 0xffffffffffffffff, 0x0, 0x5, 0x3}, 0x40) mkdir(&(0x7f0000000040)='./file0\x00', 0x42) r1 = open(&(0x7f0000000300)='.\x00', 0x0, 0x0) r2 = syz_open_procfs(0x0, &(0x7f00000000c0)='fd/3\x00') r3 = syz_open_dev$swradio(&(0x7f0000000100)='/dev/swradio#\x00', 0x0, 0x2) write$RDMA_USER_CM_CMD_GET_EVENT(r1, &(0x7f0000000000)={0xc, 0x8, 0xfa00, {&(0x7f0000000140)}}, 0x10) mount$9p_fd(0x0, &(0x7f0000000300)='.\x00', &(0x7f0000000080)='9p\x00', 0x0, &(0x7f0000000740)=ANY=[@ANYBLOB="7472616e733d0000008066646e6f3d", @ANYRESHEX=r2, @ANYBLOB=',wfdno=', @ANYRESHEX=r3, @ANYBLOB=',\x00']) mount$overlay(0x0, &(0x7f0000000380)='./file0/file0\x00', &(0x7f00000003c0)='overlay\x00', 0x39e040, &(0x7f0000000400)={[{@xino_auto='xino=auto'}], [{@obj_role={'obj_role', 0x3d, 'fd/3\x00'}}, {@smackfshat={'smackfshat', 0x3d, '/dev/swradio#\x00'}}, {@func={'func', 0x3d, 'FILE_MMAP'}}, {@permit_directio='permit_directio'}, {@appraise_type='appraise_type=imasig'}]}) 21:38:43 executing program 2: set_mempolicy(0x8003, &(0x7f0000000300)=0x75f, 0x9) r0 = open(&(0x7f0000000300)='.\x00', 0x0, 0x0) symlinkat(&(0x7f0000000040)='\x13\x13w\xc5\xfc5\xd4\x14T\xd5\xd4\x1d)\xad\x1a`)Y\x81F\xe6\xbe\x16nA\xad\r\xbd@T\x03<\x9f3\xbb\xda\x82$\xa2\xf3\xd7r\xe7cnH\xb3<\xbfp\x83r\xe8\xf1\xb9\x93>\xc5\x12wC\xbe\"\x06 \x9e\xf0-\xf9\xcb\xf2\xf6\xe8\x80\xd38/\x00', r0, &(0x7f00000000c0)='./file0\x00') mkdirat(r0, &(0x7f0000000200)='\x13\x13w\xc5\xfc5\xd4\x14T\xd5\xd4\x1d)\xad\x1a`)Y\x81F\xe6\xbe\x16nA\xad\r\xbd@T\x03<\x9f3\xbb\xda\x82$\xa2\xf3\xd7r\xe7cnH\xb3<\xbfp\x83r\xe8\xf1\xb9\x93>\xc5\x12wC\xbe\"\x06 \x9e\xf0-\xf9\xcb\xf2\xf6\xe8\x80\xd38/\x00', 0x0) symlinkat(&(0x7f0000000340)='./file0/file0\x00', r0, &(0x7f0000000380)='\x13\x13w\xc5\xfc5\xd4\x14T\xd5\xd4\x1d)\xad\x1a`)Y\x81F\xe6\xbe\x16nA\xad\r\xbd@T\x03<\x9f3\xbb\xda\x82$\xa2\xf3\xd7r\xe7cnH\xb3<\xbfp\x83r\xe8\xf1\xb9\x93>\xc5\x12wC\xbe\"\x06 \x9e\xf0-\xf9\xcb\xf2\xf6\xe8\x80\xd38//file0\x00') r1 = open(&(0x7f0000000100)='.\x00', 0x0, 0x0) renameat2(r1, &(0x7f0000000400)='./file0/file0\x00', r1, &(0x7f0000000000)='./file0\x00', 0x0) r2 = syz_open_procfs(0x0, &(0x7f00000000c0)='fd/3\x00') r3 = syz_open_dev$swradio(&(0x7f0000000100)='/dev/swradio#\x00', 0x0, 0x2) mount$9p_fd(0x0, &(0x7f0000000300)='.\x00', &(0x7f0000000080)='9p\x00', 0x0, &(0x7f0000000740)={'trans=fd,', {'rfdno', 0x3d, r2}, 0x2c, {'wfdno', 0x3d, r3}}) accept4(r2, &(0x7f0000000140)=@can, &(0x7f00000001c0)=0x80, 0x80800) 21:38:43 executing program 3: set_mempolicy(0x8003, &(0x7f0000000300)=0x75f, 0x9) sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000000240)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x8}, 0xc, &(0x7f0000000040)={&(0x7f00000004c0)=ANY=[@ANYBLOB="300100003100020027bd7000ffdbdf25000000002c0001000c003f0008000300a40000000c001e0008000300000000001000150009000100766c616e00000000680001000c00070008000300050000000c00010008000100698165000c000e0008000300ff0300000c000c0008000100697074000c001600080001006270660010001d00090001006373756d000000000c00100008000300090000000c00010008000100697074003c0001000c00130008000100627066000c0012000800010062706600100007000b000100736b626d6f640000100019000b0001006d697272656400004c000100100011000c000100736b6265646974000c001c0008000300000000000c001a0008000300010000801000f4b39786b29224306f1441eeae0d000b000100706f6c696365000010000c000a00010070656469740000004ebcbbd9bce349a529b5d8c1e3f497d60386a516a1fd2d308db8c7d2c962efdee2d4fff3c947cf25808a2b22645ab4da14976bb71e0c44e80c57"], 0x130}, 0x1, 0x0, 0x0, 0x80}, 0x10000011) open(&(0x7f0000000300)='.\x00', 0x0, 0x0) r0 = syz_open_procfs(0x0, &(0x7f00000000c0)='fd/3\x00') r1 = syz_open_dev$swradio(&(0x7f0000000100)='/dev/swradio#\x00', 0x0, 0x2) r2 = openat$nvram(0xffffffffffffff9c, &(0x7f0000000140)='/dev/nvram\x00', 0x40880, 0x0) ioctl$VIDIOC_S_FREQUENCY(r2, 0x402c5639, &(0x7f0000000180)={0x4, 0x2, 0xbbf7}) mount$9p_fd(0x0, &(0x7f0000000300)='.\x00', &(0x7f0000000080)='9p\x00', 0x0, &(0x7f00000001c0)=ANY=[@ANYBLOB="7472616e733d66642f72e2646e6f04", @ANYRESHEX=r0, @ANYBLOB="4c7766646e6f3d5b11fb5ee07ed88ee445f17892", @ANYRESHEX=r1, @ANYRESOCT=0x0]) 21:38:43 executing program 4: set_mempolicy(0x8003, &(0x7f0000000300)=0x75f, 0x9) open(&(0x7f0000000300)='.\x00', 0x0, 0x0) r0 = syz_open_procfs(0x0, &(0x7f00000000c0)='fd/3\x00') r1 = syz_open_dev$swradio(&(0x7f0000000100)='/dev/swradio#\x00', 0x0, 0x2) mount$9p_fd(0x0, &(0x7f0000000300)='.\x00', &(0x7f0000000080)='9p\x00', 0x0, &(0x7f0000000740)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}, 0x2c, {[], [], 0x5}}) 21:38:43 executing program 0: syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x124fa, 0x3, &(0x7f0000000200)=[{&(0x7f0000010000)="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", 0x10c, 0x400}, {&(0x7f0000010200)="0500000000000000000000000000000000000000040100002b", 0x19, 0x560}, {&(0x7f0000010300)="000000000000000000000000000000000000000000000000000000001481910a040000001400000024", 0x29, 0x7e0}], 0x0, &(0x7f0000000040)={[{@usrjquota='usrjquota='}, {@data_err_abort='data_err=abort'}]}) 21:38:43 executing program 1: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) r3 = syz_open_procfs(0x0, &(0x7f00000000c0)='fd/3\x00') mount$9p_fd(0x0, &(0x7f0000000300)='.\x00', &(0x7f0000000080)='9p\x00', 0x200000000000000, &(0x7f00000003c0)={'trans=fd,', {'rfdno', 0x3d, r3}, 0x2c, {'wfdno', 0x3d, r2}}) [ 263.408574][T18389] 9pnet: Could not find request transport: fd/râdno0x0000000000000004Lwfdno=[û^à~ØŽäEñx’0x000000000000000500000000000000000000000 [ 263.463483][T18396] vivid-004: kernel_thread() failed 21:38:43 executing program 5: set_mempolicy(0x8003, &(0x7f0000000300)=0x75f, 0x9) r0 = open(&(0x7f0000000300)='.\x00', 0x0, 0x0) r1 = syz_open_procfs(0x0, &(0x7f00000000c0)='fd/3\x00') r2 = syz_open_dev$swradio(&(0x7f0000000100)='/dev/swradio#\x00', 0x0, 0x2) r3 = dup2(r1, r0) r4 = socket$inet6_sctp(0xa, 0x1, 0x84) r5 = perf_event_open(&(0x7f0000000180)={0x0, 0x70, 0x3, 0x0, 0x0, 0x0, 0x0, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r6 = syz_open_dev$usbfs(&(0x7f0000000080)='/dev/bus/usb/00#/00#\x00', 0x4000000000000072, 0x4a441) r7 = dup3(r5, r6, 0x0) getsockopt$inet_sctp_SCTP_MAX_BURST(0xffffffffffffffff, 0x84, 0x14, &(0x7f0000000000)=@assoc_value={0x0}, &(0x7f0000000040)=0x8) getsockopt$inet_sctp_SCTP_GET_PEER_ADDR_INFO(0xffffffffffffffff, 0x84, 0xf, &(0x7f00000000c0)={r8, @in={{0x2, 0x0, @empty}}, 0x10001, 0x0, 0x5}, &(0x7f0000000000)=0x98) setsockopt$inet_sctp6_SCTP_STREAM_SCHEDULER(0xffffffffffffffff, 0x84, 0x7b, &(0x7f00000002c0)={r8, 0x2}, 0x8) getsockopt$inet_sctp6_SCTP_DEFAULT_PRINFO(r7, 0x84, 0x72, &(0x7f0000000000)={r8, 0x1}, 0x0) setsockopt$inet_sctp6_SCTP_PEER_ADDR_PARAMS(r4, 0x84, 0x9, &(0x7f0000000000)={r8, @in={{0x2, 0x1, @broadcast}}, 0x0, 0x0, 0x2bf, 0x4, 0x6c}, 0x9c) setsockopt$inet_sctp6_SCTP_ADD_STREAMS(r3, 0x84, 0x79, &(0x7f0000000000)={r8, 0x8, 0x6}, 0x8) mount$9p_fd(0x0, &(0x7f0000000300)='.\x00', &(0x7f0000000080)='9p\x00', 0x0, &(0x7f0000000740)={'trans=fd,', {'rfdno', 0x3d, r1}, 0x2c, {'wfdno', 0x3d, r2}}) 21:38:43 executing program 3: set_mempolicy(0x8003, &(0x7f0000000300)=0x75f, 0x9) open(&(0x7f0000000300)='.\x00', 0x0, 0x0) set_mempolicy(0x0, &(0x7f0000000280)=0xff, 0x7) r0 = syz_open_procfs(0x0, &(0x7f00000000c0)='fd/3\x00') r1 = syz_open_dev$swradio(&(0x7f0000000100)='/dev/swradio#\x00', 0x0, 0x2) mount$9p_fd(0x0, &(0x7f0000000300)='.\x00', &(0x7f0000000080)='9p\x00', 0x0, &(0x7f0000000740)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}}) mount$overlay(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000000040)='overlay\x00', 0x200005, &(0x7f0000000140)={[{@redirect_dir={'redirect_dir', 0x3d, './file0'}}, {@nfs_export_off='nfs_export=off'}, {@index_off='index=off'}, {@redirect_dir={'redirect_dir', 0x3d, './file0'}}, {@nfs_export_on='nfs_export=on'}, {@lowerdir={'lowerdir', 0x3d, './file0'}}, {@index_on='index=on'}, {@metacopy_on='metacopy=on'}, {@metacopy_on='metacopy=on'}], [{@rootcontext={'rootcontext', 0x3d, 'staff_u'}}, {@smackfsfloor={'smackfsfloor', 0x3d, '#:\\$'}}, {@fsuuid={'fsuuid', 0x3d, {[0x65, 0x65, 0x38, 0x62, 0x35, 0x37, 0x66, 0x36], 0x2d, [0x38, 0x32, 0x52, 0x37], 0x2d, [0x62, 0x56, 0x38, 0x66], 0x2d, [0x34, 0x66, 0x36, 0x30], 0x2d, [0x65, 0x36, 0x33, 0x66, 0x65, 0x37, 0x36, 0x66]}}}, {@fsname={'fsname', 0x3d, '9p\x00'}}, {@uid_lt={'uid<', 0xffffffffffffffff}}, {@dont_appraise='dont_appraise'}]}) 21:38:43 executing program 4: set_mempolicy(0x8003, &(0x7f0000000300)=0x75f, 0x9) open(&(0x7f0000000300)='.\x00', 0x0, 0x0) r0 = syz_open_procfs(0x0, &(0x7f00000000c0)='fd/3\x00') r1 = syz_open_dev$swradio(&(0x7f0000000100)='/dev/swradio#\x00', 0x0, 0x2) mount$9p_fd(0x0, &(0x7f0000000300)='.\x00', &(0x7f0000000080)='9p\x00', 0x0, &(0x7f0000000740)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}, 0x2c, {[], [], 0x6}}) 21:38:43 executing program 2: set_mempolicy(0x8003, &(0x7f0000000300)=0x75f, 0x9) r0 = open(&(0x7f0000000300)='.\x00', 0x0, 0x0) symlinkat(&(0x7f0000000040)='\x13\x13w\xc5\xfc5\xd4\x14T\xd5\xd4\x1d)\xad\x1a`)Y\x81F\xe6\xbe\x16nA\xad\r\xbd@T\x03<\x9f3\xbb\xda\x82$\xa2\xf3\xd7r\xe7cnH\xb3<\xbfp\x83r\xe8\xf1\xb9\x93>\xc5\x12wC\xbe\"\x06 \x9e\xf0-\xf9\xcb\xf2\xf6\xe8\x80\xd38/\x00', r0, &(0x7f00000000c0)='./file0\x00') mkdirat(r0, &(0x7f0000000200)='\x13\x13w\xc5\xfc5\xd4\x14T\xd5\xd4\x1d)\xad\x1a`)Y\x81F\xe6\xbe\x16nA\xad\r\xbd@T\x03<\x9f3\xbb\xda\x82$\xa2\xf3\xd7r\xe7cnH\xb3<\xbfp\x83r\xe8\xf1\xb9\x93>\xc5\x12wC\xbe\"\x06 \x9e\xf0-\xf9\xcb\xf2\xf6\xe8\x80\xd38/\x00', 0x0) symlinkat(&(0x7f0000000340)='./file0/file0\x00', r0, &(0x7f0000000380)='\x13\x13w\xc5\xfc5\xd4\x14T\xd5\xd4\x1d)\xad\x1a`)Y\x81F\xe6\xbe\x16nA\xad\r\xbd@T\x03<\x9f3\xbb\xda\x82$\xa2\xf3\xd7r\xe7cnH\xb3<\xbfp\x83r\xe8\xf1\xb9\x93>\xc5\x12wC\xbe\"\x06 \x9e\xf0-\xf9\xcb\xf2\xf6\xe8\x80\xd38//file0\x00') r1 = open(&(0x7f0000000100)='.\x00', 0x0, 0x0) renameat2(r1, &(0x7f0000000140)='./file0/file0\x00', r1, &(0x7f0000000000)='./file0\x00', 0x4) [ 263.483700][T18400] loop0: detected capacity change from 146 to 0 [ 263.522320][T18400] EXT4-fs (loop0): bad geometry: block count 256 exceeds size of device (73 blocks) 21:38:43 executing program 1: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) r3 = syz_open_procfs(0x0, &(0x7f00000000c0)='fd/3\x00') mount$9p_fd(0x0, &(0x7f0000000300)='.\x00', &(0x7f0000000080)='9p\x00', 0x300000000000000, &(0x7f00000003c0)={'trans=fd,', {'rfdno', 0x3d, r3}, 0x2c, {'wfdno', 0x3d, r2}}) 21:38:43 executing program 5: set_mempolicy(0x8003, &(0x7f0000000300)=0x75f, 0x9) open(&(0x7f0000000300)='.\x00', 0x0, 0x0) r0 = syz_open_procfs(0x0, &(0x7f00000000c0)='fd/3\x00') r1 = syz_open_dev$swradio(&(0x7f0000000100)='/dev/swradio#\x00', 0x0, 0x2) mount$9p_fd(0x0, &(0x7f0000000300)='.\x00', &(0x7f0000000080)='9p\x00', 0x0, &(0x7f0000000740)=ANY=[@ANYBLOB='trans=fd,rfdno=', @ANYRESHEX=r0, @ANYBLOB=',wfdno=', @ANYRESHEX=r1, @ANYBLOB="2cc9"]) 21:38:43 executing program 2: set_mempolicy(0x8003, &(0x7f0000000300)=0x75f, 0x9) r0 = open(&(0x7f0000000300)='.\x00', 0x0, 0x0) symlinkat(&(0x7f0000000040)='\x13\x13w\xc5\xfc5\xd4\x14T\xd5\xd4\x1d)\xad\x1a`)Y\x81F\xe6\xbe\x16nA\xad\r\xbd@T\x03<\x9f3\xbb\xda\x82$\xa2\xf3\xd7r\xe7cnH\xb3<\xbfp\x83r\xe8\xf1\xb9\x93>\xc5\x12wC\xbe\"\x06 \x9e\xf0-\xf9\xcb\xf2\xf6\xe8\x80\xd38/\x00', r0, &(0x7f00000000c0)='./file0\x00') mkdirat(r0, &(0x7f0000000200)='\x13\x13w\xc5\xfc5\xd4\x14T\xd5\xd4\x1d)\xad\x1a`)Y\x81F\xe6\xbe\x16nA\xad\r\xbd@T\x03<\x9f3\xbb\xda\x82$\xa2\xf3\xd7r\xe7cnH\xb3<\xbfp\x83r\xe8\xf1\xb9\x93>\xc5\x12wC\xbe\"\x06 \x9e\xf0-\xf9\xcb\xf2\xf6\xe8\x80\xd38/\x00', 0x0) symlinkat(&(0x7f0000000340)='./file0/file0\x00', r0, &(0x7f0000000380)='\x13\x13w\xc5\xfc5\xd4\x14T\xd5\xd4\x1d)\xad\x1a`)Y\x81F\xe6\xbe\x16nA\xad\r\xbd@T\x03<\x9f3\xbb\xda\x82$\xa2\xf3\xd7r\xe7cnH\xb3<\xbfp\x83r\xe8\xf1\xb9\x93>\xc5\x12wC\xbe\"\x06 \x9e\xf0-\xf9\xcb\xf2\xf6\xe8\x80\xd38//file0\x00') r1 = open(&(0x7f0000000100)='.\x00', 0x0, 0x0) renameat2(r1, &(0x7f0000000400)='./file0/file0\x00', r1, &(0x7f0000000000)='./file0\x00', 0x0) openat$null(0xffffffffffffff9c, &(0x7f0000000140)='/dev/null\x00', 0x400, 0x0) [ 263.636317][T18431] vivid-006: kernel_thread() failed 21:38:43 executing program 3: r0 = bpf$PROG_LOAD(0x5, &(0x7f0000000080)={0x3, 0x8, &(0x7f0000000cc0)=ANY=[@ANYBLOB="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"], &(0x7f0000000100)='GPL\x00'}, 0x48) bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000040)={r0, 0x0, 0xe, 0x300, &(0x7f0000000140)="e3d0e9d6d9d18e5f39868de363d3", 0x0, 0x19d, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x40) ioctl$BTRFS_IOC_QGROUP_CREATE(r0, 0x4010942a, &(0x7f0000000180)={0x1, 0x5}) set_mempolicy(0x8003, &(0x7f0000000300)=0x75f, 0x9) r1 = open(&(0x7f0000000300)='.\x00', 0x0, 0x0) r2 = syz_open_procfs(0x0, &(0x7f00000000c0)='fd/3\x00') set_mempolicy(0x1, &(0x7f00000002c0)=0x40000ed9d, 0x800000002) r3 = syz_open_dev$vcsn(&(0x7f0000000040)='/dev/vcs#\x00', 0x1f, 0xa40) ioctl$sock_bt_bnep_BNEPGETCONNINFO(r3, 0x800442d3, &(0x7f0000000080)={0x9, 0x0, 0x0, @link_local={0x1, 0x80, 0xc2, 0x0, 0x0, 0xe}, 'syz_tun\x00'}) setsockopt$SO_BINDTODEVICE(r2, 0x1, 0x19, &(0x7f0000000000)='veth0_to_team\x00', 0x10) socket(0x1, 0x6a01dacd1d8bfb4a, 0x5) syz_open_dev$swradio(&(0x7f0000000100)='/dev/swradio#\x00', 0x0, 0x2) sendmsg$IPSET_CMD_LIST(r1, &(0x7f0000000280)={&(0x7f00000001c0)={0x10, 0x0, 0x0, 0x40000000}, 0xc, &(0x7f0000000240)={&(0x7f0000000200)={0x24, 0x7, 0x6, 0x801, 0x0, 0x0, {0x1}, [@IPSET_ATTR_FLAGS={0x8, 0x6, 0x1, 0x0, 0x4}, @IPSET_ATTR_FLAGS={0x8, 0x6, 0x1, 0x0, 0x5}]}, 0x24}, 0x1, 0x0, 0x0, 0x40}, 0x800) 21:38:43 executing program 4: set_mempolicy(0x8003, &(0x7f0000000300)=0x75f, 0x9) open(&(0x7f0000000300)='.\x00', 0x0, 0x0) r0 = syz_open_procfs(0x0, &(0x7f00000000c0)='fd/3\x00') r1 = syz_open_dev$swradio(&(0x7f0000000100)='/dev/swradio#\x00', 0x0, 0x2) mount$9p_fd(0x0, &(0x7f0000000300)='.\x00', &(0x7f0000000080)='9p\x00', 0x0, &(0x7f0000000740)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}, 0x2c, {[], [], 0x7}}) [ 263.675951][T18400] loop0: detected capacity change from 146 to 0 [ 263.707230][T18400] EXT4-fs (loop0): bad geometry: block count 256 exceeds size of device (73 blocks) 21:38:43 executing program 2: set_mempolicy(0x8003, &(0x7f0000000140)=0x75f, 0x9) r0 = open(&(0x7f0000000980)='\x13\x13w\xc5\xfc5\xd4\x14T\xd5\xd4\x1d)\xad\x1a`)Y\x81F\xe6\xbe\x16nA\xad\r\xbd@T\x03<\x9f3\xbb\xda\x82$\xa2\xf3\xd7r\xe7cnH\xb3<\xbfp\x83r\xe8\xf1\xb9\x93>\xc5\x12wC\xbe\"\x06 \x9e\xf0-\xf9\xcb\xf2\xf6\xe8\x80\xd38//file0\x00', 0x0, 0x0) symlinkat(&(0x7f0000000040)='\x13\x13w\xc5\xfc5\xd4\x14T\xd5\xd4\x1d)\xad\x1a`)Y\x81F\xe6\xbe\x16nA\xad\r\xbd@T\x03<\x9f3\xbb\xda\x82$\xa2\xf3\xd7r\xe7cnH\xb3<\xbfp\x83r\xe8\xf1\xb9\x93>\xc5\x12wC\xbe\"\x06 \x9e\xf0-\xf9\xcb\xf2\xf6\xe8\x80\xd38/\x00', r0, &(0x7f00000000c0)='./file0\x00') mkdirat(r0, &(0x7f0000000200)='\x13\x13w\xc5\xfc5\xd4\x14T\xd5\xd4\x1d)\xad\x1a`)Y\x81F\xe6\xbe\x16nA\xad\r\xbd@T\x03<\x9f3\xbb\xda\x82$\xa2\xf3\xd7r\xe7cnH\xb3<\xbfp\x83r\xe8\xf1\xb9\x93>\xc5\x12wC\xbe\"\x06 \x9e\xf0-\xf9\xcb\xf2\xf6\xe8\x80\xd38/\x00', 0x0) symlinkat(&(0x7f0000000340)='./file0/file0\x00', r0, &(0x7f0000000380)='\x13\x13w\xc5\xfc5\xd4\x14T\xd5\xd4\x1d)\xad\x1a`)Y\x81F\xe6\xbe\x16nA\xad\r\xbd@T\x03<\x9f3\xbb\xda\x82$\xa2\xf3\xd7r\xe7cnH\xb3<\xbfp\x83r\xe8\xf1\xb9\x93>\xc5\x12wC\xbe\"\x06 \x9e\xf0-\xf9\xcb\xf2\xf6\xe8\x80\xd38//file0\x00') r1 = open(&(0x7f0000000100)='.\x00', 0x0, 0x0) set_mempolicy(0x3, &(0x7f00000007c0)=0x3, 0x7898) r2 = syz_mount_image$romfs(&(0x7f00000001c0)='romfs\x00', &(0x7f0000000280)='./file0/file0\x00', 0xdf8, 0x7, &(0x7f0000000700)=[{&(0x7f00000002c0)="67ad6ba5ec1ffb89604e7da931be157bf424b9dcafc6fe0c1f2b4f", 0x1b}, {&(0x7f0000000440)="ccae103a03774a966f3a79002c293d87ee05b2a37cffb969f5145c52e4ed7ee687c774745420dc152b33fc72d991", 0x2e, 0x45283c30}, {&(0x7f0000000480)="1804d4be6a33b99fdc00071e60b5782a0cd53f1c0a111c2930d3b77e836be5a9e915a63c4a510579b07ecaa9fe956a8bce7711b2afe995f072dba4726e4ce32b1cf6f4a6185684191d22df3ecc1ff74d987b377900f8a231b21af19688c0e205b22d7566875ad61b", 0x68, 0x3}, {&(0x7f0000000500)="65a30b4c796f9dd4dad3f65a4c9d3f0e215a3aaf2e65b127bf1d8b7315ac0216dd6a04eed3e4", 0x26, 0x5}, {&(0x7f0000000540)="aca6ca833dd4a0f6c0de6f07a5a8cd34e8d319e0f045ff98731137c30caebd0eff", 0x21, 0x2}, {&(0x7f0000000580)="0ae445b02ad68cd23d4fcec08e6bad9114a6098722d9160ea709beb1b8e61ec83d893aabcbd53b4f11df82e81d5d6c0785f9d79ccd943ee966a8d3aaaeeeb351bda099ca75185a3ee6a44652120e7dab767f9b02589bfd375d74c0fd536498b0f089", 0x62, 0x51c}, {&(0x7f0000000600)="73e64ba8224457c4aaf0d7d1b210d468603d25616933f32f71362b5b112a48986e8a7c82b1392ca44b5aa1eb749050d01586852ea29f324adbd5ece325994582692607daeb95b9204897434ca5bcf478ac0a3440866a469f81d23a115ab30384e85ee2e033c82787148d1ea5f061005c8d8a5c013cdefc79f615b13217688bf05541b4fec6fb0495936dc882293124799a54063977cb7c663b04dcfb031d5ba4efdc359338b91dfe142f05f702e5e91fa7bde9ecbbde78efc8558974191c79b2376a7761f5649ea311b06ce10afbbcb8dd38c519722be6f79856f58c6610da92bf2ae3d80a9a", 0xe6, 0x5}], 0x3000008, &(0x7f0000000a00)=ANY=[@ANYBLOB=',rootcontext=root,fowner>', @ANYRESDEC=0xee00, @ANYBLOB=',smackfsdef=,fowner<', @ANYRESDEC=0xee00, @ANYBLOB="2c7569643c1ad5946938efc81e0070a80976be6a6cd073d5405ea9bc2c3a72ec43812f8a12a37ee6fa181284ae884baad71ac6a9c63a9b8c364d77118156879b1269ac5224ece6fb4b198e7560661a1258eebb8b4aa12f9b8e51aa5b5f0105124e4eca3555045d7bc8f6d77d993a0b6bba31643d0180000000000000415bea5367dbf0636b7f7dab020c0820e3001abaca150864f6100947b2da0ddcd6d486efdf24cf", @ANYRESDEC=0xee01, @ANYBLOB=',smackfsdef=^,\x00']) r3 = openat$fb0(0xffffffffffffff9c, &(0x7f0000000840)='/dev/fb0\x00', 0x101000, 0x0) sendfile(r2, r3, &(0x7f0000000880)=0x5, 0x2) renameat2(r1, &(0x7f0000000400)='./file0/file0\x00', r1, &(0x7f0000000000)='./file0\x00', 0x0) r4 = syz_open_procfs(0x0, &(0x7f00000000c0)='fd/3\x00') r5 = syz_open_dev$swradio(&(0x7f0000000100)='/dev/swradio#\x00', 0x0, 0x2) mount$9p_fd(0x0, &(0x7f0000000300)='.\x00', &(0x7f0000000080)='9p\x00', 0x0, &(0x7f0000000740)=ANY=[@ANYBLOB="7472616e733d66642c72666437dfb8", @ANYRESHEX=r4, @ANYBLOB=',wfdno=', @ANYRESHEX=r5, @ANYBLOB=',\x00']) mkdirat(r4, &(0x7f00000008c0)='\x13\x13w\xc5\xfc5\xd4\x14T\xd5\xd4\x1d)\xad\x1a`)Y\x81F\xe6\xbe\x16nA\xad\r\xbd@T\x03<\x9f3\xbb\xda\x82$\xa2\xf3\xd7r\xe7cnH\xb3<\xbfp\x83r\xe8\xf1\xb9\x93>\xc5\x12wC\xbe\"\x06 \x9e\xf0-\xf9\xcb\xf2\xf6\xe8\x80\xd38/\x00', 0xa2) set_mempolicy(0x4000, &(0x7f0000000180), 0x1) 21:38:43 executing program 0: syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x12500, 0x3, &(0x7f0000000200)=[{&(0x7f0000010000)="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", 0x10c, 0x400}, {&(0x7f0000010200)="0500000000000000000000000000000000000000040100002b", 0x19, 0x560}, {&(0x7f0000010300)="000000000000000000000000000000000000000000000000000000001481910a040000001400000024", 0x29, 0x7e0}], 0x0, &(0x7f0000000040)={[{@usrjquota='usrjquota='}, {@data_err_abort='data_err=abort'}]}) 21:38:43 executing program 1: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) r3 = syz_open_procfs(0x0, &(0x7f00000000c0)='fd/3\x00') mount$9p_fd(0x0, &(0x7f0000000300)='.\x00', &(0x7f0000000080)='9p\x00', 0x400000000000000, &(0x7f00000003c0)={'trans=fd,', {'rfdno', 0x3d, r3}, 0x2c, {'wfdno', 0x3d, r2}}) 21:38:43 executing program 5: set_mempolicy(0x8003, &(0x7f0000000300)=0x75f, 0x9) open(&(0x7f0000000300)='.\x00', 0x0, 0x0) r0 = syz_open_procfs(0x0, &(0x7f00000000c0)='fd/3\x00') r1 = syz_open_dev$swradio(&(0x7f0000000100)='/dev/swradio#\x00', 0x0, 0x2) mount$9p_fd(0x0, &(0x7f0000000300)='.\x00', &(0x7f0000000080)='9p\x00', 0x0, &(0x7f0000000340)=ANY=[@ANYBLOB="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", @ANYRESHEX=r0, @ANYBLOB=',wfdno=', @ANYRESHEX=r1, @ANYBLOB="2c00336d15161619d81bc083750e76a9ed1be0f26dabb661af611480fffdf6f0636bd988b62565e6d3c6c7c4326cecf1e9e08a23a9e527ca693a065a240c7d833a7137610259856d170f720a5e3a07"]) 21:38:43 executing program 3: set_mempolicy(0x8003, &(0x7f0000000300)=0x75f, 0x9) open(&(0x7f0000000300)='.\x00', 0x0, 0x0) r0 = syz_open_procfs(0x0, &(0x7f00000000c0)='fd/3\x00') r1 = syz_open_dev$swradio(&(0x7f0000000100)='/dev/swradio#\x00', 0x0, 0x2) r2 = bpf$PROG_LOAD(0x5, &(0x7f0000000080)={0x3, 0x8, &(0x7f0000000cc0)=ANY=[@ANYBLOB="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"], &(0x7f0000000100)='GPL\x00'}, 0x48) bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000040)={r2, 0x0, 0xe, 0x300, &(0x7f0000000140)="e3d0e9d6d9d18e5f39868de363d3", 0x0, 0x19d, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x40) close(r2) mount$9p_fd(0x0, &(0x7f0000000300)='.\x00', &(0x7f0000000080)='9p\x00', 0x0, &(0x7f0000000740)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}}) 21:38:43 executing program 4: set_mempolicy(0x8003, &(0x7f0000000300)=0x75f, 0x9) open(&(0x7f0000000300)='.\x00', 0x0, 0x0) r0 = syz_open_procfs(0x0, &(0x7f00000000c0)='fd/3\x00') r1 = syz_open_dev$swradio(&(0x7f0000000100)='/dev/swradio#\x00', 0x0, 0x2) mount$9p_fd(0x0, &(0x7f0000000300)='.\x00', &(0x7f0000000080)='9p\x00', 0x0, &(0x7f0000000740)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}, 0x2c, {[], [], 0x8}}) [ 263.922053][T18477] loop0: detected capacity change from 146 to 0 [ 263.933254][T18483] 9pnet: Insufficient options for proto=fd [ 263.940371][T18477] EXT4-fs (loop0): bad geometry: block count 256 exceeds size of device (73 blocks) [ 263.950167][T18476] loop2: detected capacity change from 264192 to 0 21:38:43 executing program 1: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) r3 = syz_open_procfs(0x0, &(0x7f00000000c0)='fd/3\x00') mount$9p_fd(0x0, &(0x7f0000000300)='.\x00', &(0x7f0000000080)='9p\x00', 0x500000000000000, &(0x7f00000003c0)={'trans=fd,', {'rfdno', 0x3d, r3}, 0x2c, {'wfdno', 0x3d, r2}}) 21:38:43 executing program 5: set_mempolicy(0x8003, &(0x7f0000000300)=0x75f, 0x9) open(&(0x7f0000000300)='.\x00', 0x0, 0x0) r0 = syz_open_procfs(0x0, &(0x7f00000000c0)='fd/3\x00') r1 = syz_open_dev$swradio(&(0x7f0000000100)='/dev/swradio#\x00', 0x0, 0x2) mount$9p_fd(0x0, &(0x7f0000000300)='.\x00', &(0x7f0000000080)='9p\x00', 0x0, &(0x7f0000000140)=ANY=[@ANYBLOB='trans=fd,rfdno=', @ANYRESHEX=r0, @ANYBLOB=',wfdno=', @ANYRESHEX=r1, @ANYBLOB="0073db4590e94ad0e235ad3ac64606c499514dd8bec435cd28f11f4cda2d932c48c2563eb862923af4b7ae96aa712e56699575b6d6cdc9c2acbf75e46836f8265103266a0127cbd7046d2db7866207c19b6181360599e1f151961d8e76e4344dc1a37dd87e"]) [ 263.972152][T18490] 9pnet: Insufficient options for proto=fd 21:38:44 executing program 3: set_mempolicy(0x8003, &(0x7f0000000300)=0x75f, 0x9) open(&(0x7f0000000040)='.\x00', 0x102, 0x160) r0 = syz_open_procfs(0x0, &(0x7f00000000c0)='fd/3\x00') r1 = syz_open_dev$swradio(&(0x7f0000000000)='/dev/swradio#\x00', 0x0, 0x2) mount$9p_fd(0x0, &(0x7f0000000300)='.\x00', &(0x7f0000000080)='9p\x00', 0x0, &(0x7f0000000740)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}}) 21:38:44 executing program 4: set_mempolicy(0x8003, &(0x7f0000000300)=0x75f, 0x9) open(&(0x7f0000000300)='.\x00', 0x0, 0x0) r0 = syz_open_procfs(0x0, &(0x7f00000000c0)='fd/3\x00') r1 = syz_open_dev$swradio(&(0x7f0000000100)='/dev/swradio#\x00', 0x0, 0x2) mount$9p_fd(0x0, &(0x7f0000000300)='.\x00', &(0x7f0000000080)='9p\x00', 0x0, &(0x7f0000000740)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}, 0x2c, {[], [], 0x9}}) [ 264.039494][T18504] 9pnet: Insufficient options for proto=fd [ 264.067140][T18504] 9pnet: Insufficient options for proto=fd [ 264.073047][T18476] loop2: detected capacity change from 264192 to 0 21:38:44 executing program 2: set_mempolicy(0x8003, &(0x7f0000000300)=0x75f, 0x9) r0 = open(&(0x7f0000000300)='.\x00', 0x0, 0x0) clock_gettime(0x1, &(0x7f00000001c0)) utimensat(r0, &(0x7f0000000140)='\x13\x13w\xc5\xfc5\xd4\x14T\xd5\xd4\x1d)\xad\x1a`)Y\x81F\xe6\xbe\x16nA\xad\r\xbd@T\x03<\x9f3\xbb\xda\x82$\xa2\xf3\xd7r\xe7cnH\xb3<\xbfp\x83r\xe8\xf1\xb9\x93>\xc5\x12wC\xbe\"\x06 \x9e\xf0-\xf9\xcb\xf2\xf6\xe8\x80\xd38//file0\x00', &(0x7f0000000280)={{0x0, 0x2710}, {0x77359400}}, 0x0) symlinkat(&(0x7f0000000040)='\x13\x13w\xc5\xfc5\xd4\x14T\xd5\xd4\x1d)\xad\x1a`)Y\x81F\xe6\xbe\x16nA\xad\r\xbd@T\x03<\x9f3\xbb\xda\x82$\xa2\xf3\xd7r\xe7cnH\xb3<\xbfp\x83r\xe8\xf1\xb9\x93>\xc5\x12wC\xbe\"\x06 \x9e\xf0-\xf9\xcb\xf2\xf6\xe8\x80\xd38/\x00', r0, &(0x7f00000000c0)='./file0\x00') r1 = syz_open_procfs(0x0, &(0x7f00000000c0)='fd/3\x00') r2 = syz_open_dev$swradio(&(0x7f0000000100)='/dev/swradio#\x00', 0x0, 0x2) mount$9p_fd(0x0, &(0x7f0000000300)='.\x00', &(0x7f0000000080)='9p\x00', 0x0, &(0x7f0000000740)={'trans=fd,', {'rfdno', 0x3d, r1}, 0x2c, {'wfdno', 0x3d, r2}}) mkdirat(r1, &(0x7f0000000200)='\x13\x13w\xc5\xfc5\xd4\x14T\xd5\xd4\x1d)\xad\x1a`)Y\x81F\xe6\xbe\x16nA\xad\r\xbd@T\x03<\x9f3\xbb\xda\x82$\xa2\xf3\xd7r\xe7cnH\xb3<\xbfp\x83r\xe8\xf1\xb9\x93>\xc5\x12wC\xbe\"\x06 \x9e\xf0-\xf9\xcb\xf2\xf6\xe8\x80\xd38/\x00', 0x0) symlinkat(&(0x7f0000000340)='./file0/file0\x00', r0, &(0x7f0000000380)='\x13\x13w\xc5\xfc5\xd4\x14T\xd5\xd4\x1d)\xad\x1a`)Y\x81F\xe6\xbe\x16nA\xad\r\xbd@T\x03<\x9f3\xbb\xda\x82$\xa2\xf3\xd7r\xe7cnH\xb3<\xbfp\x83r\xe8\xf1\xb9\x93>\xc5\x12wC\xbe\"\x06 \x9e\xf0-\xf9\xcb\xf2\xf6\xe8\x80\xd38//file0\x00') r3 = open(&(0x7f0000000100)='.\x00', 0x0, 0x0) renameat2(r3, &(0x7f0000000400)='./file0/file0\x00', r3, &(0x7f0000000000)='./file0\x00', 0x0) [ 264.115495][T18522] 9pnet: Insufficient options for proto=fd [ 264.147518][T18477] loop0: detected capacity change from 146 to 0 21:38:44 executing program 3: set_mempolicy(0x8003, &(0x7f0000000300)=0x75f, 0x9) open(&(0x7f0000000300)='.\x00', 0x0, 0x0) r0 = syz_open_procfs(0x0, &(0x7f00000000c0)='fd/3\x00') r1 = syz_open_dev$swradio(&(0x7f0000000100)='/dev/swradio#\x00', 0x0, 0x2) mount$9p_fd(0x0, &(0x7f0000000300)='.\x00', &(0x7f0000000080)='9p\x00', 0x0, &(0x7f0000000740)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}}) r2 = syz_open_dev$vcsa(&(0x7f0000000000)='/dev/vcsa#\x00', 0x3, 0x8000) preadv(r2, &(0x7f0000000340)=[{&(0x7f0000000140)=""/142, 0x8e}, {&(0x7f0000000040)=""/60, 0x3c}, {&(0x7f0000000200)=""/218, 0xda}], 0x3, 0x9, 0x0) 21:38:44 executing program 1: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) r3 = syz_open_procfs(0x0, &(0x7f00000000c0)='fd/3\x00') mount$9p_fd(0x0, &(0x7f0000000300)='.\x00', &(0x7f0000000080)='9p\x00', 0x600000000000000, &(0x7f00000003c0)={'trans=fd,', {'rfdno', 0x3d, r3}, 0x2c, {'wfdno', 0x3d, r2}}) [ 264.166169][T18531] 9pnet: Insufficient options for proto=fd [ 264.182264][T18477] EXT4-fs (loop0): bad geometry: block count 256 exceeds size of device (73 blocks) 21:38:44 executing program 0: syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x12540, 0x3, &(0x7f0000000200)=[{&(0x7f0000010000)="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", 0x10c, 0x400}, {&(0x7f0000010200)="0500000000000000000000000000000000000000040100002b", 0x19, 0x560}, {&(0x7f0000010300)="000000000000000000000000000000000000000000000000000000001481910a040000001400000024", 0x29, 0x7e0}], 0x0, &(0x7f0000000040)={[{@usrjquota='usrjquota='}, {@data_err_abort='data_err=abort'}]}) 21:38:44 executing program 4: set_mempolicy(0x8003, &(0x7f0000000300)=0x75f, 0x9) open(&(0x7f0000000300)='.\x00', 0x0, 0x0) r0 = syz_open_procfs(0x0, &(0x7f00000000c0)='fd/3\x00') r1 = syz_open_dev$swradio(&(0x7f0000000100)='/dev/swradio#\x00', 0x0, 0x2) mount$9p_fd(0x0, &(0x7f0000000300)='.\x00', &(0x7f0000000080)='9p\x00', 0x0, &(0x7f0000000740)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}, 0x2c, {[], [], 0xa}}) 21:38:44 executing program 1: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) r3 = syz_open_procfs(0x0, &(0x7f00000000c0)='fd/3\x00') mount$9p_fd(0x0, &(0x7f0000000300)='.\x00', &(0x7f0000000080)='9p\x00', 0x700000000000000, &(0x7f00000003c0)={'trans=fd,', {'rfdno', 0x3d, r3}, 0x2c, {'wfdno', 0x3d, r2}}) 21:38:44 executing program 5: set_mempolicy(0x8003, &(0x7f0000000300)=0x75f, 0x9) open(&(0x7f0000000300)='.\x00', 0x0, 0x0) r0 = syz_open_procfs(0x0, &(0x7f00000000c0)='fd/3\x00') r1 = syz_open_dev$swradio(&(0x7f0000000100)='/dev/swradio#\x00', 0x0, 0x2) r2 = bpf$PROG_LOAD(0x5, &(0x7f0000000080)={0x3, 0x8, &(0x7f0000000cc0)=ANY=[@ANYBLOB="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"], &(0x7f0000000100)='GPL\x00'}, 0x48) bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000040)={r2, 0x0, 0xe, 0x300, &(0x7f0000000140)="e3d0e9d6d9d18e5f39868de363d3", 0x0, 0x19d, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x40) preadv(r2, &(0x7f0000000000)=[{&(0x7f0000000140)=""/239, 0xef}, {&(0x7f0000000340)=""/229, 0xe5}, {&(0x7f0000000440)=""/252, 0xfc}, {&(0x7f0000000540)=""/209, 0xd1}], 0x4, 0x3, 0x80000001) mount$9p_fd(0x0, &(0x7f0000000300)='.\x00', &(0x7f0000000080)='9p\x00', 0x0, &(0x7f0000000740)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}}) 21:38:44 executing program 3: set_mempolicy(0x4000, &(0x7f0000000000)=0x75d, 0x9) open(&(0x7f0000000300)='.\x00', 0x0, 0x0) r0 = syz_open_procfs(0x0, &(0x7f00000000c0)='fd/3\x00') r1 = syz_open_dev$swradio(&(0x7f0000000100)='/dev/swradio#\x00', 0x0, 0x2) mount$9p_fd(0x0, &(0x7f0000000300)='.\x00', &(0x7f0000000080)='9p\x00', 0x0, &(0x7f0000000740)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}}) [ 264.315302][T18544] vivid-004: kernel_thread() failed 21:38:44 executing program 2: set_mempolicy(0x8003, &(0x7f0000000300)=0x75f, 0x9) r0 = open(&(0x7f0000000300)='.\x00', 0x2000, 0x30) symlinkat(&(0x7f0000000040)='\x13\x13w\xc5\xfc5\xd4\x14T\xd5\xd4\x1d)\xad\x1a`)Y\x81F\xe6\xbe\x16nA\xad\r\xbd@T\x03<\x9f3\xbb\xda\x82$\xa2\xf3\xd7r\xe7cnH\xb3<\xbfp\x83r\xe8\xf1\xb9\x93>\xc5\x12wC\xbe\"\x06 \x9e\xf0-\xf9\xcb\xf2\xf6\xe8\x80\xd38/\x00', r0, &(0x7f00000000c0)='./file0\x00') mkdirat(r0, &(0x7f0000000200)='\x13\x13w\xc5\xfc5\xd4\x14T\xd5\xd4\x1d)\xad\x1a`)Y\x81F\xe6\xbe\x16nA\xad\r\xbd@T\x03<\x9f3\xbb\xda\x82$\xa2\xf3\xd7r\xe7cnH\xb3<\xbfp\x83r\xe8\xf1\xb9\x93>\xc5\x12wC\xbe\"\x06 \x9e\xf0-\xf9\xcb\xf2\xf6\xe8\x80\xd38/\x00', 0x0) symlinkat(&(0x7f0000000340)='./file0/file0\x00', r0, &(0x7f0000000380)='\x13\x13w\xc5\xfc5\xd4\x14T\xd5\xd4\x1d)\xad\x1a`)Y\x81F\xe6\xbe\x16nA\xad\r\xbd@T\x03<\x9f3\xbb\xda\x82$\xa2\xf3\xd7r\xe7cnH\xb3<\xbfp\x83r\xe8\xf1\xb9\x93>\xc5\x12wC\xbe\"\x06 \x9e\xf0-\xf9\xcb\xf2\xf6\xe8\x80\xd38//file0\x00') r1 = open(&(0x7f0000000100)='.\x00', 0x0, 0x0) renameat2(r1, &(0x7f0000000400)='./file0/file0\x00', r1, &(0x7f0000000000)='./file0\x00', 0x0) [ 264.342443][T18568] loop0: detected capacity change from 146 to 0 [ 264.351388][T18568] EXT4-fs (loop0): bad geometry: block count 256 exceeds size of device (73 blocks) 21:38:44 executing program 1: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) r3 = syz_open_procfs(0x0, &(0x7f00000000c0)='fd/3\x00') mount$9p_fd(0x0, &(0x7f0000000300)='.\x00', &(0x7f0000000080)='9p\x00', 0x800000000000000, &(0x7f00000003c0)={'trans=fd,', {'rfdno', 0x3d, r3}, 0x2c, {'wfdno', 0x3d, r2}}) [ 264.407236][T18568] loop0: detected capacity change from 146 to 0 [ 264.415973][T18568] EXT4-fs (loop0): bad geometry: block count 256 exceeds size of device (73 blocks) [ 264.470149][T18588] ================================================================== [ 264.478253][T18588] BUG: KCSAN: data-race in p9_client_cb / p9_client_rpc [ 264.485182][T18588] [ 264.487495][T18588] write to 0xffff88802b4994c8 of 4 bytes by task 8977 on cpu 0: [ 264.495130][T18588] p9_client_cb+0x14/0x40 [ 264.499449][T18588] p9_conn_cancel+0x3a1/0x400 [ 264.504123][T18588] p9_read_work+0x812/0x870 [ 264.508618][T18588] process_one_work+0x3e1/0x950 [ 264.513491][T18588] worker_thread+0x616/0xa70 [ 264.518061][T18588] kthread+0x20b/0x230 [ 264.522115][T18588] ret_from_fork+0x1f/0x30 [ 264.526519][T18588] [ 264.528829][T18588] read to 0xffff88802b4994c8 of 4 bytes by task 18588 on cpu 1: [ 264.536531][T18588] p9_client_rpc+0x158/0x660 [ 264.541103][T18588] p9_client_version+0x8e/0x340 [ 264.546027][T18588] p9_client_create+0x601/0x6f0 [ 264.550950][T18588] v9fs_session_init+0xf5/0xd90 [ 264.555792][T18588] v9fs_mount+0x57/0x550 [ 264.560022][T18588] legacy_get_tree+0x70/0xc0 [ 264.564593][T18588] vfs_get_tree+0x4a/0x1a0 [ 264.568998][T18588] path_mount+0x11b6/0x1ca0 [ 264.573482][T18588] __se_sys_mount+0x23d/0x2e0 [ 264.578142][T18588] __x64_sys_mount+0x63/0x70 [ 264.582724][T18588] do_syscall_64+0x39/0x80 [ 264.587140][T18588] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 264.593016][T18588] [ 264.595450][T18588] Reported by Kernel Concurrency Sanitizer on: [ 264.601581][T18588] CPU: 1 PID: 18588 Comm: syz-executor.4 Not tainted 5.11.0-syzkaller #0 [ 264.609984][T18588] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 264.620028][T18588] ================================================================== [ 264.628073][T18588] Kernel panic - not syncing: panic_on_warn set ... [ 264.634644][T18588] CPU: 1 PID: 18588 Comm: syz-executor.4 Not tainted 5.11.0-syzkaller #0 [ 264.643060][T18588] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 264.653121][T18588] Call Trace: [ 264.656387][T18588] dump_stack+0x116/0x15d [ 264.660714][T18588] panic+0x1e7/0x5fa [ 264.664601][T18588] ? vprintk_emit+0x2e2/0x360 [ 264.669272][T18588] kcsan_report+0x67b/0x680 [ 264.673768][T18588] ? kcsan_setup_watchpoint+0x472/0x4d0 [ 264.679311][T18588] ? p9_client_rpc+0x158/0x660 [ 264.684066][T18588] ? p9_client_version+0x8e/0x340 [ 264.689076][T18588] ? p9_client_create+0x601/0x6f0 [ 264.694085][T18588] ? v9fs_session_init+0xf5/0xd90 [ 264.699102][T18588] ? v9fs_mount+0x57/0x550 [ 264.703508][T18588] ? legacy_get_tree+0x70/0xc0 [ 264.708256][T18588] ? vfs_get_tree+0x4a/0x1a0 [ 264.713184][T18588] ? path_mount+0x11b6/0x1ca0 [ 264.717845][T18588] ? __se_sys_mount+0x23d/0x2e0 [ 264.722685][T18588] ? __x64_sys_mount+0x63/0x70 [ 264.727439][T18588] ? do_syscall_64+0x39/0x80 [ 264.732021][T18588] ? entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 264.738078][T18588] ? __mutex_unlock_slowpath+0x106/0x130 [ 264.743723][T18588] ? mutex_unlock+0x1d/0x20 [ 264.748232][T18588] ? vb2_fop_poll+0x24a/0x270 [ 264.752908][T18588] kcsan_setup_watchpoint+0x472/0x4d0 [ 264.758273][T18588] ? p9_fd_request+0x276/0x2a0 [ 264.763041][T18588] p9_client_rpc+0x158/0x660 [ 264.767612][T18588] ? v4l2_event_pending+0x15/0x20 [ 264.772625][T18588] ? vb2_fop_poll+0x24a/0x270 [ 264.777297][T18588] ? vb2_fop_read+0x1f0/0x1f0 [ 264.781972][T18588] ? v4l2_write+0x170/0x170 [ 264.786466][T18588] p9_client_version+0x8e/0x340 [ 264.791297][T18588] ? p9_fd_create+0x1d1/0x1e0 [ 264.795971][T18588] p9_client_create+0x601/0x6f0 [ 264.800808][T18588] v9fs_session_init+0xf5/0xd90 [ 264.805651][T18588] ? kmem_cache_alloc_trace+0x1a1/0x320 [ 264.811202][T18588] ? v9fs_mount+0x41/0x550 [ 264.815604][T18588] v9fs_mount+0x57/0x550 [ 264.819837][T18588] ? apparmor_capable+0xfe/0x160 [ 264.824766][T18588] ? tsan.module_ctor+0x10/0x10 [ 264.829602][T18588] legacy_get_tree+0x70/0xc0 [ 264.834180][T18588] vfs_get_tree+0x4a/0x1a0 [ 264.838586][T18588] path_mount+0x11b6/0x1ca0 [ 264.843072][T18588] __se_sys_mount+0x23d/0x2e0 [ 264.847739][T18588] ? __fpregs_load_activate+0x103/0x1f0 [ 264.853275][T18588] __x64_sys_mount+0x63/0x70 [ 264.857858][T18588] do_syscall_64+0x39/0x80 [ 264.862269][T18588] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 264.868252][T18588] RIP: 0033:0x465d99 [ 264.872131][T18588] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 264.891723][T18588] RSP: 002b:00007f15c4ff4188 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5 [ 264.900211][T18588] RAX: ffffffffffffffda RBX: 000000000056c008 RCX: 0000000000465d99 [ 264.908171][T18588] RDX: 0000000020000080 RSI: 0000000020000300 RDI: 0000000000000000 [ 264.916125][T18588] RBP: 00000000004bcf27 R08: 0000000020000740 R09: 0000000000000000 [ 264.924081][T18588] R10: 0000000000000000 R11: 0000000000000246 R12: 000000000056c008 [ 264.932047][T18588] R13: 00007fff9197760f R14: 00007f15c4ff4300 R15: 0000000000022000 [ 264.940672][T18588] Kernel Offset: disabled [ 264.944982][T18588] Rebooting in 86400 seconds..